NAME

age - simple, modern and secure encryption tool

SYNOPSIS

age --recipient RECIPIENT [-a] [-o OUTPUT] [INPUT]
age --decrypt [-i KEY] [-o OUTPUT] [INPUT]

DESCRIPTION

-o, --output OUTPUT

Write the result to the file at path OUTPUT.

-a, --armor

Encrypt to a PEM encoded format.

-p, --passphrase

Encrypt with a passphrase.

-r, --recipient RECIPIENT

Encrypt to the specified RECIPIENT. Can be repeated.

-d, --decrypt

Decrypt the input to the output.

-i, --identity KEY

Use the private key file at path KEY. Can be repeated.

INPUT defaults to standard input, and OUTPUT defaults to standard output.

RECIPIENT can be an age public key, as generated by age-keygen(1), ("age1...") or an SSH public key ("ssh-ed25519 AAAA...", "ssh-rsa AAAA...").

KEY is a path to a file with age secret keys, one per line (ignoring "#" prefixed comments and empty lines), or to an SSH key file. Multiple keys can be provided, and any unused ones will be ignored.

EXAMPLES

Generate a key with age-keygen(1):

$ age-keygen -o key.txt
Public key: age1ql3z7hjy54pw3hyww5ayyfg7zqgvc7w3j2elw8zmrj2kg5sfn9aqmcac8p

Encrypt a file:

$ age -r age1ql3z7hjy54pw3hyww5ayyfg7zqgvc7w3j2elw8zmrj2kg5sfn9aqmcac8p < file > file.age

Decrypt a file:

$ age -d -i key.txt -o file file.age

SEE ALSO

age-keygen(1)

AUTHORS

Filippo Valsorda <github@filippo.io>

See https://github.com/FiloSottile/age/graphs/contributors