I have a .key file and a signed .apk file (android phongap application built using phonegap build).
How can I check if the .apk was signed using that key?
Asked
Active
Viewed 139 times
1 Answers
1
You could retrieve and compare the fingerprints of the public keys included in the apk file and your key file.
For the apk:
- Unpack the file
/META-INF/CERT.RSAfrom the apk. - Use
keytool -printcert -file CERT.RSAto compute the SHA1 + MD5 fingerprints.
For the key file:
- Run
keytool -list -v -keystore <keystore file> -alias <key alias>. - Input your keystore password.
- This will output the SHA1 + MD5 fingerprints. If you omit the
-vonly the MD5 fingerprint will be printed.
cygery
- 2,309
- 3
- 18
- 25
-
thanks, I did not eventually get to test this but it sounds just like what I asked for. – epeleg Aug 21 '14 at 04:12