How to verify the APK signing certificate fingerprint? (linux)

[Pocketchange]

Hi btctalk!

I'm stumped on how to "import GPG key" on this apk file.  I'm on linux and been trying for a couple days.

https://github.com/Blockstream/green_android

Can anyone point me to a resource to accomplish this?

Thank you!

[vv181]

As shown at https://help.blockstream.com/hc/en-us/articles/900002174043-How-do-I-verify-the-Blockstream-Green-binaries-, you can do:

Code:

$ gpg --keyserver keyserver.ubuntu.com --recv-keys "04BE BF2E 35A2 AF2F FDF1 FA5D E7F0 54AA 2E76 E792"

If it fails, try:

Code:

$ gpg --verbose --keyserver hkp://keyserver.ubuntu.com:80 --recv-keys "04BE BF2E 35A2 AF2F FDF1 FA5D E7F0 54AA 2E76 E792"

[Pocketchange]

I really appreciate the help vv181! I looked at a lot of places for help except blockstreams articles. 
I thought it would be simpler if they just put the code on their github page.

Thank you!

[Orneved50]

Hi btctalk!

I'm stumped on how to "import GPG key" on this apk file.  I'm on linux and been trying for a couple days.

https://github.com/Blockstream/green_android

Can anyone point me to a resource to accomplish this?   Mayo Clinic Patient Portal App


Thank you!

Hello,

To import a GPG key for the APK file from the GitHub repository "Blockstream/green_android" on Linux, follow these steps:

Download the repository's GPG key: gpg --recv-keys <KEY_ID>

Verify the APK signing certificate fingerprint:

jarsigner -verify -verbose -certs <APK_FILE>

For detailed instructions and troubleshooting, refer to the repository's documentation or GPG and APK signing guides online.