Can't get rid of GPG error in apt

Question

Before you mark this one duplicate hear me out:

When I run sudo apt-get update I'm getting the following classic error:

W: GPG error: http://de.archive.ubuntu.com trusty-updates Release: The following signatures were invalid: BADSIG 40976EAF437D05B5 Ubuntu Archive Automatic Signing Key <ftpmaster@ubuntu.com>

So the first thing I've tried was of course

sudo apt-key adv --recv-keys --keyserver keyserver.ubuntu.com 40976EAF437D05B5

which updated the key with new signatures but didn't solve the GPG error. If I run it again the key remains unchanged.

I did some research (read about 10 questions around here, all marked duplicate) and also tried removing /var/lib/apt/lists (https://askubuntu.com/a/64544/43951), which also didn't do it.

If I run

sudo aptitude -o Acquire::http::No-Cache=True -o Acquire::BrokenProxy=true update

I don't get the signature error but bad hashes:

W: Failed to fetch http://de.archive.ubuntu.com/ubuntu/dists/trusty-updates/main/binary-amd64/Packages: Hash Sum mismatch
W: Failed to fetch http://de.archive.ubuntu.com/ubuntu/dists/trusty-updates/universe/binary-amd64/Packages: Hash Sum mismatch
W: Failed to fetch http://de.archive.ubuntu.com/ubuntu/dists/trusty-updates/main/binary-i386/Packages: Hash Sum mismatch

score 4 · Accepted Answer · edited Apr 13 '17 at 12:23

4

Try a different mirror, like to the non-regional specific http://archive.ubuntu.com. Doing this is covered here.

You can also find out more mirrors on the Wiki.

edited Apr 13 '17 at 12:23

Community

1

answered Feb 21 '15 at 20:03

Wilf

30,732

Can't get rid of GPG error in apt

1 Answers1