()

NAME¶

apkverifier - verify the signature on an Android APK

SYNOPSIS¶

Command line tool for verifying Android APK files:

apkverifier input.apk

input.apk is an existing file with an APK Signature

DESCRIPTION¶

Simple command line tool that verifies the signatures on Android APK binaries. It can verify APK Signature scheme v1, v2 and v3 and passes Google apksig's testing suite. It should support all algorithms and downgrade attack protection.

Because Android can handle even broken x509 cerficates and ZIP files, apkverifier is using the ZipReader from apkparser package and vendors crypto/x509 in internal/x509andr and github.com/fullsailor/pkcs7 (https://github.com/fullsailor/pkcs7) in the fullsailor/pkcs7 folder. The last two have some changes to handle some not-entirely-according-to-spec certificates.

Source file:	apkverifier.1.en.gz (from apkverifier 0.0~git20191015.7330a51-6.1+b5)
Source last updated:	2021-07-18T10:20:55Z
Converted to HTML:	2023-04-09T16:05:04Z

NAME¶

SYNOPSIS¶

DESCRIPTION¶

SEE ALSO¶