Artifactory enables the management of multiple RSA signing keys allowing you to store and manage the RSA pubic and private keys that are used to sign and verify the Alpine Linux Index files.
The RSA Key Pair is assigned to local or virtual Alpine Linux Repositories in the Repository Advanced tab of the Alpine Repository.
RSA Keys for Alpine Repositories
If you do not configure RSA keys, users have to use the
allow-untrusted flag. For more information, see Configuring Alpine Package Manager to work with Artifactory.
If Vault is configured, follow the steps in Vault.