I trying to find a way to verify apk files I download from F-Droid. I see there is a PGP signature provided with each apk, but I dont know how to implement it for apk verification? I’ve read couple old threads here on forum regarding verification or actually lack of straight forward way to do it.
Is it still the case? Decrypting F-Droid apk in Openkeyvhain results in a crash. Log refers to issues with the apk or it’s encryption. Same fail with Simplex app.
Got a mismatch of sha256 on some non android important app earlier today and decided to verify all apps I am using.
I’d appreciate a helpfull guide.