Rocky Linux 8 - AppStream 0.0 B/s | 0 B 00:00
Errors during downloading metadata for repository ‘appstream’:
Curl error (77): Problem with the SSL CA cert (path? access rights?) for https://mirrors.rockylinux.org/mirrorlist?arch=x86_64&repo=AppStream-8 [error setting certificate verify locations:
CAfile: /etc/pki/tls/certs/ca-bundle.crt
CApath: none]
Error: Failed to download metadata for repo ‘appstream’: Cannot prepare internal mirrorlist: Curl error (77): Problem with the SSL CA cert (path? access rights?) for https://mirrors.rockylinux.org/mirrorlist?arch=x86_64&repo=AppStream-8 [error setting certificate verify locations:
CAfile: /etc/pki/tls/certs/ca-bundle.crt
CApath: none]
Rocky Linux 8 - AppStream 0.0 B/s | 0 B 00:00
Errors during downloading metadata for repository ‘appstream’:
Curl error (77): Problem with the SSL CA cert (path? access rights?) for https://mirrors.rockylinux.org/mirrorlist?arch=x86_64&repo=AppStream-8 [error setting certificate verify locations:
CAfile: /etc/pki/tls/certs/ca-bundle.crt
CApath: none]
Error: Failed to download metadata for repo ‘appstream’: Cannot prepare internal mirrorlist: Curl error (77): Problem with the SSL CA cert (path? access rights?) for https://mirrors.rockylinux.org/mirrorlist?arch=x86_64&repo=AppStream-8 [error setting certificate verify locations:
CAfile: /etc/pki/tls/certs/ca-bundle.crt
CApath: none]
Nop!! Tried all your proposed methods. It’s all ended up to the same error message:
set sslverify=0 into /etc/dnf/dnf.conf
dnf reinstall ca-certificates
Rocky Linux 8 - AppStream 0.0 B/s | 0 B 00:00
Errors during downloading metadata for repository ‘appstream’:
Curl error (77): Problem with the SSL CA cert (path? access rights?) for https://mirrors.rockylinux.org/mirrorlist?arch=x86_64&repo=AppStream-8 [error setting certificate verify locations:
CAfile: /etc/pki/tls/certs/ca-bundle.crt
CApath: none]
Error: Failed to download metadata for repo ‘appstream’: Cannot prepare internal mirrorlist: Curl error (77): Problem with the SSL CA cert (path? access rights?) for https://mirrors.rockylinux.org/mirrorlist?arch=x86_64&repo=AppStream-8 [error setting certificate verify locations:
CAfile: /etc/pki/tls/certs/ca-bundle.crt
CApath: none]
I’ve blew away to system and reloaded Rocky Linus from scratch already. One final thought about this issue is the old installation was a migrated Centos 8 to Rocky 8 and then upgraded to Rocky 8.4 after. This time around it’s a Rocky 8.4 all the way.
I have just install Rocky Linux 8.4 and ran into the same issue… I followed all the steps and get the same errors. I ran "update-crypto-policies --show " and the output was “DEFAULT”
Why 8.4? The 8.5 image is available, isn’t it?
(Only the latest version can be properly supported because that is the only version that can get updates from RHEL sources.)
The reason I think this will work is that you somehow have a corrupted ca-certificates and this is causing dnf to not be able to fetch new packages from the https mirrorlist or mirrors (because it can’t establish a verified TLS connection). So the above rpm command should update (and fix) ca-certificates from the http mirror (so not requiring a TLS connection) which should hopefully fix the issue allowing the rest of your system to be updated normally after that.