diff --git a/.github/workflows/build-kms-image.yml b/.github/workflows/build-kms-image.yml
index a824cc327..b3ce5ab06 100644
--- a/.github/workflows/build-kms-image.yml
+++ b/.github/workflows/build-kms-image.yml
@@ -1,7 +1,4 @@
 name: Build and upload KMS image
-env:
-  REGISTRY: ghcr.io
-  IMAGE_NAME: kmsserver
 
 on:
   workflow_dispatch:
diff --git a/.github/workflows/build-micro-service-manual.yml b/.github/workflows/build-micro-service-manual.yml
index 0111d13d5..6656460c7 100644
--- a/.github/workflows/build-micro-service-manual.yml
+++ b/.github/workflows/build-micro-service-manual.yml
@@ -10,6 +10,7 @@ on:
           - "join-service"
           - "kmsserver"
           - "verification-service"
+          - "qemu-metadata-api"
         required: true
         default: "join-service"
       imageTag:
@@ -50,6 +51,8 @@ jobs:
               echo "microServiceDockerfile=kms/Dockerfile" >> "$GITHUB_ENV" ;;
             "verification-service" )
               echo "microServiceDockerfile=verify/Dockerfile" >> "$GITHUB_ENV" ;;
+            "qemu-metadata-api" )
+              echo "microServiceDockerfile=hack/qemu-metadata-api/Dockerfile" >> "$GITHUB_ENV" ;;
           esac
 
       - name: Build and upload container image
diff --git a/.github/workflows/build-qemu-metadata-image.yml b/.github/workflows/build-qemu-metadata-image.yml
new file mode 100644
index 000000000..f28f138b3
--- /dev/null
+++ b/.github/workflows/build-qemu-metadata-image.yml
@@ -0,0 +1,41 @@
+name: Build and upload qemu-metadata-api image
+
+on:
+  workflow_dispatch:
+  push:
+    branches:
+      - main
+      - "release/**"
+    paths:
+      - "hackqemu-metadata-api/**"
+      - "internal/**"
+
+jobs:
+  build-qemu-metadata-api:
+    runs-on: ubuntu-22.04
+    permissions:
+      contents: read
+      packages: write
+    steps:
+      - name: Check out repository
+        id: checkout
+        uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 # tag=v3.1.0
+        with:
+          ref: ${{ github.head_ref }}
+
+      - name: Setup Go environment
+        uses: actions/setup-go@c4a742cab115ed795e34d4513e2cf7d472deb55f # tag=v3.3.1
+        with:
+          go-version: "1.19.3"
+
+      - name: Build and upload qemu-metadata server container image
+        id: build-and-upload
+        uses: ./.github/actions/build_micro_service
+        with:
+          name: qemu-metadata-api
+          projectVersion: "0.0.0"
+          dockerfile: hack/qemu-metadata-api/Dockerfile
+          githubToken: ${{ secrets.GITHUB_TOKEN }}
+          cosignPublicKey: ${{ startsWith(github.ref, 'refs/heads/release/v') && secrets.COSIGN_PUBLIC_KEY || secrets.COSIGN_DEV_PUBLIC_KEY }}
+          cosignPrivateKey: ${{ startsWith(github.ref, 'refs/heads/release/v') && secrets.COSIGN_PRIVATE_KEY || secrets.COSIGN_DEV_PRIVATE_KEY }}
+          cosignPassword: ${{ startsWith(github.ref, 'refs/heads/release/v') && secrets.COSIGN_PASSWORD || secrets.COSIGN_DEV_PASSWORD }}