NAME

       sq network keyserver fetch - Retrieve certificates from key servers

SYNOPSIS

       sq network keyserver fetch [OPTIONS] QUERY

DESCRIPTION

       Retrieve certificates from key servers.

       By  default, any returned certificates are stored in the local certificate store.  This can be overridden
       by using `--output` option.

       When a certificate is retrieved from a verifying key server (currently, this is  limited  to  a  list  of
       known servers: `hkps://keys.openpgp.org`, `hkps://keys.mailvelope.com`, and `hkps://mail-api.proton.me`),
       and  imported  into  the  local  certificate  store,  the  User  IDs  are  also certificated with a local
       server-specific key.  That proxy certificate is in turn  certified  as  a  minimally  trusted  CA  (trust
       amount:  1 of 120) by the local trust root.  How much a proxy key server CA is trusted can be tuned using
       `sq pki link add` or `sq pki link retract` in the usual way.

OPTIONS

   Subcommand options
       -B, --binary
              Emit binary data

       --all  Fetch updates for all known certificates

       -o, --output=FILE
              Write to FILE (or stdout when omitted) instead of importing into the certificate store

       -s, --server=URI
              Set the key server to use.  Can be given multiple times.

        QUERY Retrieve certificate(s) using QUERY. This may be a fingerprint, a KeyID, or an email address.

   Global options
       See sq(1) for a description of the global options.

SEE ALSO

       sq(1), sq-network(1), sq-network-keyserver(1).

       For the full documentation see <https://book.sequoia-pgp.org>.

VERSION

       0.34.0 (sequoia-openpgp 1.19.0)

Sequoia PGP                                          0.34.0                                                SQ(1)