Creating keys for package signing
This document describes how to create a public and a private key for signing of packages and indexes. The public key should be distributed and installed into /etc/apk/keys on the alpine box that will install the packages. This basically means that the main developers public keys should be in /etc/apk/keys on all alpine boxes.
Since the public key needs to be unique for each developer the email address should be used as name for the public key.