🟡 Medium   ⏱ 5–30 min  Last verified: 19 May 2026

📖 ~1 min read

Table of contents
  1. Symptom & Impact
  2. Environment & Reproduction
  3. Root Cause Analysis
  4. Quick Triage
  5. Step-by-Step Diagnosis
  6. Solution – Primary Fix
  7. Solution – Alternative Approaches
  8. Verification & Acceptance Criteria
  9. Rollback Plan
  10. Prevention & Hardening
  11. Related Errors & Cross-Refs
  12. References & Further Reading

Symptom & Impact

apt update shows 404, NO_PUBKEY, or signature errors, preventing package installation and security patching.

Environment & Reproduction

Ubuntu 20.04 with stale third-party repositories or region mirror outages in ‘/etc/apt/sources.list.d’.

Root Cause Analysis

Repository URL changes, expired signing keys, or unsupported distribution codename entries break apt trust and fetch.

Quick Triage

Run ‘sudo apt update’ and isolate failing repo lines; verify connectivity with curl or ping to mirror host.

Step-by-Step Diagnosis

Inspect all source files, check codename ‘focal’, and validate keyring configuration under ‘/etc/apt/trusted.gpg.d’.

Illustrative mockup for ubuntu-20-04-lts — ubuntu2004-cp03-apt-repo-errors.webp
Diagnosing apt repository and mirror issues — Illustrative mockup — Progressive Robot

Solution – Primary Fix

Disable bad repo entries, update keys using modern signed-by method, then run ‘sudo apt clean && sudo apt update’.

Still having issues? Our IT Solutions & Services team can diagnose and resolve this for you. Get in touch for a free consultation.

Illustrative mockup for ubuntu-20-04-lts — ubuntu2004-cp03-apt-repo-fix.webp
Fixing sources.list and repository signatures — Illustrative mockup — Progressive Robot

Solution – Alternative Approaches

Switch to another official mirror, use archive snapshots, or temporarily pin affected package versions.

Verification & Acceptance Criteria

apt update completes without errors and package candidate versions are resolvable.

Rollback Plan

Restore previous source list backups and revert key changes if production dependency resolution regresses.

Prevention & Hardening

Audit repositories regularly, remove abandoned PPAs, and prefer vendor-maintained focal repositories.

Hash Sum mismatch, Release file expired, and The repository is not signed errors.

Related tutorial: View the step-by-step tutorial for Ubuntu 20.04 LTS.

View all Ubuntu 20.04 LTS tutorials on the Tutorials Hub →

Browse all common problems & solutions on the Tutorials Hub.

References & Further Reading

Ubuntu apt-secure docs and best practices for signed-by keyring management.

Need Expert Help?

If you cannot resolve this yourself, our team offers hands-on Server Management, Managed IT Services, and flexible Support Plans. Contact us today — we respond within one business day.