I got this error today
Hello,
Thanks for the notification. The debian.orthanc-labs.com server is currently in the process of being migrated to a more recent server hosted on the UCLouvain infrastructure, which will solve this security warning. I’ll keep you updated.
Regards,
Sébastien-
Hello,
The Debian repository has just been moved from https://debian.orthanc-labs.com/ to https://orthanc.uclouvain.be/debian/, which uses a more recent HTTPS certificate. The instructions in the Orthanc Book have also been updated with this new location.
Please could you give a try?
Kind Regards,
Sébastien-
Please apt-key was deprecated and removed How To: 'apt-key' is deprecated, here's how to fix it - Debian - LearnLinuxTV Community
The instruction should be wget -qO - ``https://orthanc.uclouvain.be/debian/archive.key`` | sudo gpg --dearmor -o /usr/share/keyrings/orthanc-archive-keyring.gpg
Even after I generated the signature I get
Réception de : 6 https://orthanc.uclouvain.be/debian trixie InRelease [1 846 B]
Err : 6 https://orthanc.uclouvain.be/debian trixie InRelease
Sub-process /usr/bin/sqv returned an error code (1), error message is: Signing key on 93BE9F197ED5D0C30E593D8BA776582B312AC35D is not bound: No binding signature at time 2026-01-28T13:39:43Z because: Policy rejected non-revocation signature (PositiveCertification) requiring second pre-image resistance because: SHA1 is not considered secure since 2026-02-01T00:00:00Z
Attention : OpenPGP signature verification failed: https://orthanc.uclouvain.be/debian trixie InRelease: Sub-process /usr/bin/sqv returned an error code (1), error message is: Signing key on 93BE9F197ED5D0C30E593D8BA776582B312AC35D is not bound: No binding signature at time 2026-01-28T13:39:43Z because: Policy rejected non-revocation signature (PositiveCertification) requiring second pre-image resistance because: SHA1 is not considered secure since 2026-02-01T00:00:00Z
Erreur : Le dépôt https://orthanc.uclouvain.be/debian trixie InRelease n'est pas signé.
Notification : Les mises à jour depuis un tel dépôt ne peuvent s'effectuer de manière sécurisée, et sont donc désactivées par défaut.
Notification : Voir les pages de manuel d'apt-secure(8) pour la création des dépôts et les détails de configuration d'un utilisateur.
Hello,
The instructions I provided above explicitly referred to Debian 9, at a time when apt-key was still the proper tool. Please note that apt-key remained available until Debian 12, although it has been deprecated since Debian 11.
Regarding Debian 13, I have replaced the digest algorithm used by the custom repository with SHA-512, which resolves the error you reported that resulted from Debian’s recent rejection of SHA-1. I have also added instructions for using the custom repository on Debian 13 in the Orthanc Book.
I hope everything is now working correctly.
Kind Regards,
Sébastien-