diff --git a/README.rst b/README.rst
index 8904cd87cda0e4d15247260bdd8e6fe33281468b..5b140d7d01146f5ffba60958ab758546eb2968ed 100644
--- a/README.rst
+++ b/README.rst
@@ -7,7 +7,7 @@ and hosts.
Installation
------------
-::
+.. code:: shell
git clone https://www.shore.co.il/cgit/ssh-ca
cd ssh-ca
@@ -16,23 +16,33 @@ Installation
Usage
-----
-To start a new certificate authority::
+To start a new certificate authority
+
+.. code:: shell
ssh-ca init
-To sign a user's public key::
+To sign a user's public key
+
+.. code:: shell
ssh-ca signuser username
-To sign a hosts's public key::
+To sign a hosts's public key
+
+.. code:: shell
ssh-ca signhost hostname
-To generate a new keypair for a host with a signed public key::
+To generate a new keypair for a host with a signed public key
+
+.. code:: shell
ssh-ca newhost hostname
-To generate a new keypair for a user with a signed public key::
+To generate a new keypair for a user with a signed public key
+
+.. code:: shell
ssh-ca newuser username
@@ -40,22 +50,23 @@ Authenticating hosts
--------------------
#. Sign the server's public key or generate a new pair and copy the files over.
-#. Add the following line to `/etc/ssh/sshd_config`::
+#. Add the following line to :code:`/etc/ssh/sshd_config`::
HostCertificate /path/to/the/signed/public/key
#. Add a line to your `known_hosts` file to authorize signed public keys to a
-specific top level domain. For example if your domain is example.com and the
-contents of `CA.pub` is::
+ specific top level domain. For example if your domain is example.com and the
+ contents of :code:`CA.pub` is::
- ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQC2fAkeidfnPn712B4uW3XhKyFt9FcJtVwSPKDSCykULg3X5gVV/Xa1yb4ameY3ihXOqQOlG3YpYnOQ8KdM67WtnERVbTJIfieRjGzoURz9NquLFXSKsuQrXMWRNHqXAHw7VirPvKL4cSc4l00Az1HDnHhMIclPY8G+8SkRIRsTwwwa5QjGF2wuhC6j5UHJSaF7qLFw9FSaCsEJTkQxtCD4+Rd/dxv3kVWSkm5DbNG0z3QHyISW7XDvyXP+1ccSb5+IWC0yQCT4OJNFUMDb+SdD7AzDHfI9Z5zTp56uGV23lywWhSvv20UPA0SyXJNGPOw7uJ1ak8q4SBh60PtOENQf ssh-ca
+ ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQC2fAkeidfnPn712B4uW3XhKyFt9FcJtVwSPKDSCykULg3X5gVV/Xa1yb4ameY3ihXOqQOlG3YpYnOQ8KdM67WtnERVbTJIfieRjGzoURz9NquLFXSKsuQrXMWRNHqXAHw7VirPvKL4cSc4l00Az1HDnHhMIclPY8G+8SkRIRsTwwwa5QjGF2wuhC6j5UHJSaF7qLFw9FSaCsEJTkQxtCD4+Rd/dxv3kVWSkm5DbNG0z3QHyISW7XDvyXP+1ccSb5+IWC0yQCT4OJNFUMDb+SdD7AzDHfI9Z5zTp56uGV23lywWhSvv20UPA0SyXJNGPOw7uJ1ak8q4SBh60PtOENQf ssh-ca
Then the line will be::
@cert-authority *.example.com ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQC2fAkeidfnPn712B4uW3XhKyFt9FcJtVwSPKDSCykULg3X5gVV/Xa1yb4ameY3ihXOqQOlG3YpYnOQ8KdM67WtnERVbTJIfieRjGzoURz9NquLFXSKsuQrXMWRNHqXAHw7VirPvKL4cSc4l00Az1HDnHhMIclPY8G+8SkRIRsTwwwa5QjGF2wuhC6j5UHJSaF7qLFw9FSaCsEJTkQxtCD4+Rd/dxv3kVWSkm5DbNG0z3QHyISW7XDvyXP+1ccSb5+IWC0yQCT4OJNFUMDb+SdD7AzDHfI9Z5zTp56uGV23lywWhSvv20UPA0SyXJNGPOw7uJ1ak8q4SBh60PtOENQf ssh-ca
#. You can also add it system wide by adding the above line to
-`/etc/ssh/ssh_known_hosts` and the following line to your `ssh_config` file::
+:code:`/etc/ssh/ssh_known_hosts` and the following line to your
+:code:`ssh_config` file::
GlobalKnownHostsFile /etc/ssh/ssh_known_hosts
@@ -67,21 +78,22 @@ Authenticating users
--------------------
#. Sign the user's public key or generate a new pair and copy them over.
-#. Copy CA.pub over to the host.
-#. Add the following line to `/etc/ssh/sshd_config`::
+#. Copy :code:`CA.pub` over to the host.
+#. Add the following line to :code:`/etc/ssh/sshd_config`::
TrustedUserCAKeys /path/to/CA.pub
Development
-----------
-To ease development ``make clean`` and ``make test`` are available. It's
-recommended to add ``make test`` to your git pre-commit hook.
+To ease development :code:`make clean` and :code:`make test` are available.
+It's recommended to add :code:`make test` to your git pre-commit hook.
License
-------
-This software is licnesed under the MIT licese (see the ``LICENSE.txt`` file).
+This software is licnesed under the MIT licese (see the :code:`LICENSE.txt`
+file).
Author
------