Verify Oracle Linux Downloads
How to verify to Oracle Linux Download checksum
About Verifying Oracle Linux ISO Downloads
Oracle Linux downloads can be verified to ensure that they are exactly the downloads as published by Oracle and that they were downloaded without any corruption.
This page describes the steps to verify the integrity of Oracle Linux downloads regardless of download source.
Steps to Verify Oracle Linux Downloads
To verify Oracle Linux Downloads, you need:
- A checksum file corresponding to the ISO you downloaded
- The public GPG key to verify the Oracle key used to sign the the checksum file
The checksum file contains a list of files that are part of a download package with the corresponding checksums as well as a GPG signature. The GPG signature enables anyone to verify that checksum file was published by Oracle. The steps below describe how to verify they checksum file itself and then verify the contents of the Oracle Linux download by checking against the checksum file.
Import Oracle Linux GPG key
First, import the Oracle Linux GPG key corresponding to your Oracle Linux release:
Oracle Linux 9
# curl https://yum.oracle.com/RPM-GPG-KEY-oracle-ol9 | gpg --import
Oracle Linux 8
# curl https://yum.oracle.com/RPM-GPG-KEY-oracle-ol8 | gpg --import
Oracle Linux 7
# curl https://yum.oracle.com/RPM-GPG-KEY-oracle-ol7 | gpg --import
Oracle Linux 6
# curl https://yum.oracle.com/RPM-GPG-KEY-oracle-ol6 | gpg --import
Download and Verify Checksum File
Download the appopriate checksum file and place it in the same directory as the Oracle Linux download.
To verify the checksum file:
$ gpg --verify-files <checksum-file> Sample Command: $ gpg --verify-file OracleLinux-R8-U1-Server-x86_64.checksum
After verifying the checksum file, verify the download as follows:
$ grep <ISO filename> <checksum-file> | sha256sum -c Sample Command: $ grep OracleLinux-R8-U1-Server-x86_64.iso OracleLinux-R8-U1-Server-x86_64.checksum | sha256sum -c
GPG Key Fingerprint
Oracle Linux 9
# curl https://yum.oracle.com/RPM-GPG-KEY-oracle-ol9 -o RPM-GPG-KEY-oracle
# gpg --quiet --keyid-format 0xlong --with-fingerprint RPM-GPG-KEY-oracle
pub 4096R/0xBC4D06A08D8B756F 2022-01-19 Oracle Linux (release key 1)
Key fingerprint = 3E6D 826D 3FBA B389 C2F3 8E34 BC4D 06A0 8D8B 756F
sub 4096R/0xCEA2C8752E708C25 2022-01-19 [expires: 2041-06-01]
pub 4096R/0xA7DD07088B4EFBE6 2022-01-19 Oracle Linux (backup key 1)
Key fingerprint = 9822 3175 9C74 6706 5D0C E9B2 A7DD 0708 8B4E FBE6
sub 4096R/0x16E38751DA900791 2022-01-19 [expires: 2041-06-02]
Oracle Linux 8
# curl https://yum.oracle.com/RPM-GPG-KEY-oracle-ol8 -o RPM-GPG-KEY-oracle
# gpg --quiet --keyid-format 0xlong --with-fingerprint RPM-GPG-KEY-oracle
pub 4096R/0x82562EA9AD986DA3 2019-04-09 [SC] [expires: 2039-04-04]
Key fingerprint = 76FD 3DB1 3AB6 7410 B89D B10E 8256 2EA9 AD98 6DA3
uid Oracle OSS group (Open Source Software group)
sub 4096R/0x222F15DFD95DC12B 2019-04-09 [E] [expires: 2039-04-04]
Oracle Linux 7
# curl https://yum.oracle.com/RPM-GPG-KEY-oracle-ol7 -o RPM-GPG-KEY-oracle
# gpg --quiet --with-fingerprint RPM-GPG-KEY-oracle
pub 2048R/EC551F03 2010-07-01 Oracle OSS group (Open Source Software group) <build@oss.oracle.com>
Key fingerprint = 4214 4123 FECF C55B 9086 313D 72F9 7B74 EC55 1F03
Oracle Linux 6
# curl https://yum.oracle.com/RPM-GPG-KEY-oracle-ol6 -o RPM-GPG-KEY-oracle
# gpg --quiet --with-fingerprint RPM-GPG-KEY-oracle
pub 2048R/EC551F03 2010-07-01 Oracle OSS group (Open Source Software group) <build@oss.oracle.com>
Key fingerprint = 4214 4123 FECF C55B 9086 313D 72F9 7B74 EC55 1F03
Checksum Files
Oracle Linux 9
Oracle Linux 8
Oracle Linux 7
Oracle Linux 6
