From 0f31e2b8a797d261cb47d2119d782a2a84d8e385 Mon Sep 17 00:00:00 2001
From: Zachary Newman <z@znewman.net>
Date: Tue, 5 Apr 2022 09:23:09 -0700
Subject: [PATCH] docs: Point out where keys are stored in `sign-payload` docs

---
 README.md | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/README.md b/README.md
index 37c7d50b1..a4b7c3f6f 100644
--- a/README.md
+++ b/README.md
@@ -138,7 +138,8 @@ See also `tuf sign-payload` and `tuf add-signatures`.
 
 #### `tuf sign-payload --role=<role> <path>`
 
-Sign a file (outside of the TUF repo) using keys for the given `role` (from the TUF repo).
+Sign a file (outside of the TUF repo) using keys (in the TUF keys database,
+typically produced by `tuf gen-key`) for the given `role` (from the TUF repo).
 
 Typically, `path` will be the output of `tuf payload`.