List SSH-keys on the nitrokey

T.L.7Gadi · May 15, 2026, 7:16am

Hello!

Is there an option to list all ssh-keys I created on the nitrokey?

I ask because I recently made a factory reset of the gpg-card function to enable the SE.

The Secure Element is enabled by default if no cryptographic key in OpenPGP Card and PIV is already saved on the device. This is automatically the case after resetting the OpenPGP Card or the entire Nitrokey.

This was not the case. I made the factory reset with the

gpg2 --card-edit

command and still

nitropy nk3 get-config opcard.use_se050_backend

gave me false

Anyway. After the reset and setting the SE I wonder whether my SSH key is still on the stick - what I expect.

So can I query those keys?

Regards

T.L.

nku · May 16, 2026, 7:20am

A Nitrokey does not store SSH Keys. GPG Keys or FIDO2 keys can be used for ssh and nitropy can show you these.

When the se050 backend gets manually activated, it wipes the GPG Keys. FIDO2 keys are not backed by the se050.

T.L.7Gadi · May 17, 2026, 4:47am

True. Sorry. I know read the instruction here and now understand this.

So You mention that

How?

Thanks!

Regards

TL

geoW · May 17, 2026, 5:27am

Try:
nitropy fido2 list-credentials

T.L.7Gadi · May 17, 2026, 8:27am

Hello @geoW Thank you!

Hm seems that I have only 9 more crendetials left, from currently 5 stored. Why so few?

Regards

T.L.

geoW · May 17, 2026, 9:13am

Q: How many keys can my Nitrokey 3 store?