pub rsa4096 2016-06-25 [SC] 4B1F 400D F256 51B5 3C41 41B3 8B3F 30F9 C8C0 C2EF uid [ unknown] unman (Qubes OS signing key)sub rsa4096 2016-06-27 [S] [expires: 2024-06-30] sub rsa4096 2016-06-25 [E]
Once you have copies of the key, check the fingerprint:
gpg -n --import --import-options import-show unman.pubreplacing unman.pub with the path to the key. Once you are satisfied that you have a genuine key, you can use it to validate the packages.
sudo gpg -o /usr/share/keyrings/unman-keyring.gpg --dearmor unman.pubreplacing unman.pub with the path to the key.
deb [signed-by=/usr/share/keyrings/unman-keyring.gpg] https://qubes.3isec.org/4.2 trixie mainor:
deb [signed-by=/usr/share/keyrings/unman-keyring.gpg] https://qubes.3isec.org/4.2 noble main
Make sure that the definition matches the distribution you want.
sudo pacman-key --addThen either create a new file, or rename the existingsudo pacman-key --lsign unman cd /etc/pacman.d
99-qubes-repository-4.1.conf.disabledto
99-qubes-repository-4.1.confOpen the conf file for editing - the contents should be:
[qubes-r4.1] Server = https://qubes.3isec.org/arch/4.1Then update:
sudo pacman -Syuu
unman