Need your own package repository for Alpine, Cargo, CocoaPods, Composer, Conan, CRAN, Dart, Debian, Docker, Go, Helm, LuaRocks, Maven, npm, NuGet, P2, Python, RedHat, Ruby, Terraform, Vagrant, Raw & More?

Cloudsmith provides better DevOps with simple and secure delivery of your software, from dev to production.

Start My Free 7-Day Trial
 Open-Source rabbitmq rabbitmq / rabbitmq-server  GitHub Project
Open source RabbitMQ releases
Note: Packages in this repository are licensed as Mozilla Public License 2.0 (dependencies may be licensed differently).

Tool-Specific Instructions

Although we use GPG (and RSA) keys across each repository and package format, client-side tools might have specific instructions that differ (or require manual steps). To add or use the signing key for these tools, please click on the package format specific tabs above.

Public GPG Key

GPG-based key signing is used by:   Debian logo RedHat logo

The public GPG key for the rabbitmq/rabbitmq-server is:

-----BEGIN PGP PUBLIC KEY BLOCK-----
Version: GnuPG v2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=CfXb
-----END PGP PUBLIC KEY BLOCK-----

It has the following long (20 bytes) and short (8 bytes) fingerprints:

C072C9604725BAA218E1F2479F4587F226208342
9F4587F226208342

You can download the GPG key or fetch it via the command-line:

curl -sL 'https://dl.cloudsmith.io/public/rabbitmq/rabbitmq-server/gpg.9F4587F226208342.key'

Public RSA Key

RSA-based key signing is used by:  

The public RSA key for the rabbitmq/rabbitmq-server is:

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

It has the following long (16 bytes) and short (8 bytes) fingerprints:

2D3E2AF56B74DD35DC6B317D252B86DB
DC6B317D252B86DB

You can download the RSA key or fetch it via the command-line:

curl -sL 'https://dl.cloudsmith.io/public/rabbitmq/rabbitmq-server/rsa.DC6B317D252B86DB.key'

Need Help?

If you couldn't find what you needed in our documentation, then you can always chat to a member of our team instead. It's our mission to be your dedicated off-site team for package management, and we mean it. Come and chat with us, anytime.

Debian logo

Debian Signing Key Installation

The following instructions are for Debian (e.g. apt, deb, dpkg) packages or compatible.

Automated Installation (Bash)

If you installed the rabbitmq/rabbitmq-server repository by following one of the repository installation instructions then you don't need take any further action. The GPG key should already have been installed alongside the repository.

Manual Installation

If you'd like to manually install the GPG key, you can utilise curl to retrieve the GPG key and install it by executing:

curl -sL 'https://dl.cloudsmith.io/public/rabbitmq/rabbitmq-server/gpg.9F4587F226208342.key' | sudo apt-key add -

Or you can add it directly without curl by executing:

sudo apt-key add - <<EOF
    -----BEGIN PGP PUBLIC KEY BLOCK-----
Version: GnuPG v2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=CfXb
-----END PGP PUBLIC KEY BLOCK-----
    EOF

Removing Installation / Uninstalling

If you want to remove the public GPG key for the rabbitmq/rabbitmq-server repository then you can do so by executing the following:

sudo apt-key remove C072C9604725BAA218E1F2479F4587F226208342

Note: Don't do this if you currently have the repository installed and wish to continue using it. If you remove the key the next fetch will fail.

Viewing Installed Keys

If you want to verify that a GPG public key has been installed or removed, you can view the list of all installed keys by executing:

apt-key list
RedHat logo

RedHat Signing Key Installation

The following instructions are for RedHat (e.g. dnf, rpm, yum, zypper) packages or compatible.

Automated Installation (Bash)

If you installed the rabbitmq/rabbitmq-server repository by following one of the repository installation instructions then you don't need take any further action. The GPG key should already have been installed alongside the repository.

Manual Installation

If you'd like to manually install the GPG key, you can utilise curl to retrieve the GPG key and install it by executing:

rpm --import 'https://dl.cloudsmith.io/public/rabbitmq/rabbitmq-server/gpg.9F4587F226208342.key'

Or you can add it directly without curl by executing:

cat > /tmp/rabbitmq-rabbitmq-server.key <<EOF
    -----BEGIN PGP PUBLIC KEY BLOCK-----
Version: GnuPG v2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=CfXb
-----END PGP PUBLIC KEY BLOCK-----
    EOF
    rpm --import /tmp/rabbitmq-rabbitmq-server.key
    rm -f /tmp/rabbitmq-rabbitmq-server.key

Removing Installation / Uninstalling

If you want to remove the public GPG key for the rabbitmq/rabbitmq-server repository then you can do so by executing the following:

gpgkey=$(rpm -q gpg-pubkey --qf '%{name}-%{version}-%{release} %{summary}\n' | grep "(rabbitmq/rabbitmq-server)" | awk '{ print $1 }')
test ! -z "$gpgkey" && sudo rpm -e --allmatches "$gpgkey"

Note: Don't do this if you currently have the repository installed and wish to continue using it. If you remove the key the next fetch will fail.

Viewing Installed Keys

If you want to verify that a GPG public key has been installed or removed, you can view the list of all installed keys by executing:

rpm -q gpg-pubkey --qf '%{name}-%{version}-%{release} --> %{summary}\n'

What's this page? All Cloudsmith repositories and packages are signed using GPG (or RSA) keys where supported. GPG (or RSA) signatures and checksums provide reliable mechanisms to ensure that the packages that you download/install are neither corrupt nor modified. GPG is generally preferred, but RSA is used for some package formats (such as Alpine). Learn more in the signing keys documentation.

Top