Update System Software fails because of missing RPM-GPG-KEY-EPEL

tss

Member
Aug 22, 2011
13
3
53
Running CENTOS 5.10 x86_64 vmware WHM 11.44.1 (build 17)

Ran into this problem. Tried to do an update but got this error message:

Code:
rpmts_HdrFromFdno: Header V4 DSA signature: NOKEY, key ID 217521f6
Turns out, for some reason, yum couldn't find this GPG key, which should have been located at:
/etc/pki/rpm-gpg/RPM-GPG-KEY-EPEL.
It's the public GPG key for the EPEL repository.

I had to download and install this manually to get the update to work. Here's how to do it:

Go to https://fedoraproject.org/keys to find the missing key.

I first tried wget to retrieve the key:

Code:
[~]# wget [url]https://fedoraproject.org/static/217521F6.txt[/url]
--2014-08-26 10:45:43--  [url]https://fedoraproject.org/static/217521F6.txt[/url]
Resolving fedoraproject.org... 209.132.181.16, 152.19.134.146, 140.211.169.197, ...
Connecting to fedoraproject.org|209.132.181.16|:443... connected.
ERROR: certificate common name `*.fedoraproject.org' doesn't match requested host name `fedoraproject.org'.
To connect to fedoraproject.org insecurely, use `--no-check-certificate'.
Unable to establish SSL connection.
Don't you love stuff like this? I thought wildcards certificates were supposed to match any version of the domain, but apparently they don't match the base domain.

Anyway, I created the file 217521F6.txt in nano and copied the text from the web browser, then moved and renamed the file:

Code:
[~]# mv 217521F6.txt /etc/pki/rpm-gpg/RPM-GPG-KEY-EPEL
Next, import the key:

Code:
[~]# rpm --import /etc/pki/rpm-gpg/RPM-GPG-KEY-EPEL
After that, run "Update System Software" again. It worked this time, and should work in the future.

Hope this helps someone...
 
Last edited by a moderator:

cPanelMichael

Administrator
Staff member
Apr 11, 2011
47,904
2,218
463
Hello :)

I am happy to see you were able to resolve the issue. Thank you for sharing your solution.