GitLab EXPKEYSIG#

Did you ever get an error message like this during apt-get update?

The following signatures were invalid: EXPKEYSIG 3F01618A51312F3F GitLab B.V. (package repository signing key) <packages@gitlab.com>
# find the GPG keyrings that apt uses for GitLab and GitLab Runner
xs=$(rg 'signed-by=([^ \]]+)' --color never --only-matching -r '$1' /etc/apt/sources.list.d/*gitlab*.list | sort | uniq)
echo $xs

# add GitLab's current GPG key to all of them
cd /tmp
wget -q https://packages.gitlab.com/gpg.key
for x in $xs; do
  gpg --no-default-keyring --keyring $x --import /tmp/gpg.key
done

Note that by doing the above you trust the validity of the TLS certificate for packages.gitlab.com.