pgp --encrypt <input> [<input2> ...] --recipient <user> [-r <user2> ...] [options]
Where:
<input> is the name of the file to be encrypted. It is required. You can encrypt multiple files by listing them, separated by a space. The default output filename for an encrypted file is <input filename>.pgp. Note that stdin can be used only by itself and cannot be combined with other inputs.
<user> is the user ID, portion of the user ID, or the key ID of the recipient. It is required. The public key of the recipient must be on the keyring. You must specify a recipient; you cannot encrypt to your own key by not specifying a recipient. You can encrypt the file to multiple recipients by listing them, separated by a space.
[options] let you modify the command. Options are:
--adk can be used only together with the option --sda. Note that if any of the keys used with the option --adk have ADKs, they will also be used. --anonymize hides the key IDs of recipients. This allows you to encrypt to multiple recipients without any of the recipients being able to see who else
the data was encrypted to when they decrypt it.
--archive saves the output as an archive. It cannot be used with the options --text-mode or --sda. When using --archive, directories can be in the input file: without this option, the directories are skipped.
-a or --armor armors the encrypted file.
--cipher. If the option --cipher is used, the existing cipher will be forcefully overridden and the key preferences and algorithm lists in the SDK will be ignored. This can create messages that don’t comply with the OpenPGP standard. This option must be used together with the option --force.
--comment saves a comment at the beginning of the file with the header tag "Comment". It works only if --armor is specified as well.
--compress toggles compression. If enabled, the preferred compression algorithm of the recipient is used.
--compression-algorithm. If the option --compressionalgorithm is used, the existing compression algorithm will be forcefully overridden and the key preferences and algorithm lists in the SDK will be ignored. This can create messages that do not comply with the OpenPGP standard. This option must be used together with the option --force.
--email processes input data as an RFC 822-encoded email message, which means that MIME headers and CRLF line endings will be respected by PGP Command Line. The resulting file has a .pgp extension. Note that PGP Command Line does not send the resulting encrypted message, it only
creates it.
--encrypt-to-self lets you encrypt to the default key in addition to any other specified keys. The default is off.
--eyes-only. Text inputs that are processed using this option can only be decrypted to the screen.
--force required to use --compression-algorithm and --cipher.
--input-cleanup cleans up the input file, depending on the arguments you specify: off (default), remove, or wipe.
--output lets you specify a different name for the encrypted file.
--overwrite sets the overwrite behavior when PGP Command Line tries to create an output file that already exists. This option accepts the following arguments: off (default), remove, rename, or wipe.
--root-path can only be used with either --sda or --archive.
--sda cannot be used together with the command --sign (such as -es). For more information, refer to the option --sda.
--sign lets you sign the encrypted file.
--temp-cleanup cleans up the temporary file(s) depending on the arguments you specify: off, remove, or wipe (default). For large encryption jobs, this option should be set to remove to speed up the process.
--text forces the input to canonical text mode. Do not use with binary files (automatic detection of file types is not supported).
-v |--verbose gives a verbose (detailed) report about the operation.