I’ve inherited an Ubuntu 18.04 server which has had some custom repositories and keys added to it in the past. I’d like to ensure all keys are still in use, and see which packages each of them are validating. Is there a way to do this?
I can list all keys by using
apt-key list and looking in
/etc/apt/trusted.gpg[.d], but how can I compare them to repositories and packages?