docs: Point out where keys are stored in sign-payload docs

theupdateframework · Apr 5, 2022 · 0f31e2b · 0f31e2b
1 parent 0e25bb5
commit 0f31e2b
Showing 1 changed file with 2 additions and 1 deletion.
diff --git a/README.md b/README.md
@@ -138,7 +138,8 @@ See also `tuf sign-payload` and `tuf add-signatures`.
 
 #### `tuf sign-payload --role=<role> <path>`
 
-Sign a file (outside of the TUF repo) using keys for the given `role` (from the TUF repo).
+Sign a file (outside of the TUF repo) using keys (in the TUF keys database,
+typically produced by `tuf gen-key`) for the given `role` (from the TUF repo).
 
 Typically, `path` will be the output of `tuf payload`.