Lib.rs

Cryptography | Command line utilities
#minisign #command-line

app rsign2

A command-line tool to sign files and verify signatures

by Frank Denis

19 releases

new 0.6.6 Mar 3, 2026
0.6.5 Nov 3, 2025
0.6.4 Dec 9, 2024
0.6.3 Jun 3, 2023
0.5.4 Apr 29, 2019

#1479 in Cryptography

Download history 8/week @ 2025-11-20 1/week @ 2025-11-27 137/week @ 2025-12-04 6/week @ 2025-12-11 18/week @ 2025-12-18 32/week @ 2026-01-01 47/week @ 2026-01-08 99/week @ 2026-01-15 60/week @ 2026-01-22 30/week @ 2026-01-29 7/week @ 2026-02-05 198/week @ 2026-02-12 226/week @ 2026-02-19 161/week @ 2026-02-26

594 downloads per month

MIT license

28KB
678 lines

rsign2

A Rust implementation of Minisign.

All signatures produced by rsign can be verified with minisign and minizign including trusted comments, and vice versa.

In Rust, signatures can also be verified with the minisign-verify crate.

rsign2 is a maintained fork of rsign, originally written by Daniel Rangel.

Main differences with rsign:

  • rsign2 is written in pure Rust.
  • rsign2 has way less dependencies.
  • rsign2 includes bug fixes and improvements.
  • rsign2 supports WebAssembly.

API documentation

rsign2 is only a command-line tool. It relies on the Minisign crate for all cryptographic operations, which can also be embedded in any application:

API documentation on docs.rs

Usage

Generating a key pair

rsign generate

Generates a new key pair. The public key is stored in rsign.pub by default. The secret key will be written at ~/.rsign/rsign.key. You can change the default paths with -p and -s respectively.

Use -W to create a key without a password, or --unencrypted to store the secret key without any encryption at all (useful for CI pipelines).

Use -f to overwrite an existing key pair.

Signing

rsign sign myfile.txt

Sign myfile.txt with your secret key. Files are prehashed automatically, so there is no size limit.

You can add a signed trusted comment with:

rsign sign myfile.txt -t "my trusted comment"

Verifying

rsign verify myfile.txt -p rsign.pub

Or use a public key string directly:

rsign verify myfile.txt -P <public key string>

If the signature file has a custom name (other than myfile.txt.minisig):

rsign verify myfile.txt -P <public key string> -x mysignature.file

Use -q for quiet mode (no output on success), or -o to output the file content after successful verification.

Full help

Usage: rsign [COMMAND]

Commands:
  generate  Generate public and private keys
  verify    Verify a signed file with a given public key
  sign      Sign a file with a given private key
  help      Print this message or the help of the given subcommand(s)

Options:
  -h, --help     Print help
  -V, --version  Print version

Dependencies

~4–17MB
~206K SLoC