Repository Signing Key Change

The repository signing key used for the CUDA RPM and Deb packages has been updated to reflect modern standards. As a result, package managers may have problems with installing or upgrading CUDA 8 packages.

Systems with repositories updated with CUDA 8.0 need to download and re-install the ‘cuda-repo-*’ package for your distribution of Linux. Re-installation of this package will import the new signing key with ID 7fa2af80.

Alternatively, you can manually import this key by downloading 7fa2af80.pub from the appropriate repository (for example, Ubuntu 14.04 x86_64 would be https://developer.download.nvidia.com/compute/cuda/repos/ubuntu1404/x86_64/7fa2af80.pub) and then running, as root:
a) For Ubuntu distributions
cat 7fa2af80.pub | apt-key add -
b) For Fedora, RHEL and SUSE distributions
rpm --import 7fa2af80.pub

At a future date, CUDA packages will begin removing the old public key with ID 5C37D3BE. If you are only using the newly signed repositories, it is safe to remove the old key manually by running, as root:
a) For Ubuntu distributions
apt-key del 5C37D3BE
b) For Fedora, RHEL and SUSE distributions
rpm -e gpg-pubkey-5c37d3be

Thanks for this update, nadeemm.

One question: your instructions above suggest downloading the apt repository key over http. I notice that the same address does not work over https. Does NVIDIA by any chance host a copy of this key that is served securely?

Thanks,
Anand

HTTPS should work now. I’ve updated nadeemm’s post with the https link.