Looks like elastic is signing 8.8.x *beat package updates with SHA1. CentOS 9 doesn't support this anymore.
I can bypass it but maybe it's time to update these to something that's supported?
journal is chock full of errors from auditbeat, et al once these are installed.
Importing GPG key 0xD88E42B4:
Userid : "Elasticsearch (Elasticsearch Signing Key) email@example.com"
Fingerprint: 4609 5ACC 8548 582C 1A26 99A9 D27D 666C D88E 42B4
From : https://artifacts.elastic.co/GPG-KEY-elasticsearch
Is this ok [y/N]: y
warning: Signature not supported. Hash algorithm SHA1 not available.
Key import failed (code 2). Failing package is: packetbeat-8.8.2-1.x86_64
GPG Keys are configured as: https://artifacts.elastic.co/GPG-KEY-elasticsearch
The downloaded packages were saved in cache until the next successful transaction.
You can remove cached packages by executing 'dnf clean packages'.
Error: GPG check FAILED