Print Page - How to verify the APK signing certificate fingerprint? (linux)

Title: How to verify the APK signing certificate fingerprint? (linux)
Post by: Pocketchange on August 21, 2023, 10:02:45 PM

Hi btctalk!

I'm stumped on how to "import GPG key" on this apk file. I'm on linux and been trying for a couple days.

https://github.com/Blockstream/green_android (https://github.com/Blockstream/green_android)

Can anyone point me to a resource to accomplish this?

Thank you!

Title: Re: How to verify the APK signing certificate fingerprint? (linux)
Post by: vv181 on August 21, 2023, 10:58:00 PM

As shown at https://help.blockstream.com/hc/en-us/articles/900002174043-How-do-I-verify-the-Blockstream-Green-binaries-, you can do:

Code:

$ gpg --keyserver keyserver.ubuntu.com --recv-keys "04BE BF2E 35A2 AF2F FDF1 FA5D E7F0 54AA 2E76 E792"

If it fails, try:

Code:

$ gpg --verbose --keyserver hkp://keyserver.ubuntu.com:80 --recv-keys "04BE BF2E 35A2 AF2F FDF1 FA5D E7F0 54AA 2E76 E792"

Title: Re: How to verify the APK signing certificate fingerprint? (linux)
Post by: Pocketchange on August 21, 2023, 11:20:10 PM

I really appreciate the help vv181! I looked at a lot of places for help except blockstreams articles. ???
I thought it would be simpler if they just put the code on their github page.

Thank you!

Title: Re: How to verify the APK signing certificate fingerprint? (linux)
Post by: Orneved50 on August 25, 2023, 10:29:03 AM

Quote from: Pocketchange on August 21, 2023, 10:02:45 PM

Hello,

To import a GPG key for the APK file from the GitHub repository "Blockstream/green_android" on Linux, follow these steps:

Download the repository's GPG key: gpg --recv-keys <KEY_ID>

Verify the APK signing certificate fingerprint:

jarsigner -verify -verbose -certs <APK_FILE>

For detailed instructions and troubleshooting, refer to the repository's documentation or GPG and APK signing guides online.

Bitcoin Forum

Bitcoin => Bitcoin Technical Support => Topic started by: Pocketchange on August 21, 2023, 10:02:45 PM