Verify ExpressVPN PGP signature for Linux

linux-devices

Need a VPN for Linux?

Get ExpressVPN Now
refer a friend

Love ExpressVPN? Want a free month?

Refer a friend now

This tutorial will show you how to verify that the installer for the ExpressVPN app for Linux really came from ExpressVPN. This involves a system called PGP, which ExpressVPN uses to digitally sign its installers for Linux.

To learn how to set up your VPN for Linux, see the setup tutorial for the ExpressVPN app for Linux.

Jump to section

Download the PGP key
Verify the fingerprint of the PGP key
Download the signature file
Verifying the signature on an installer
Updating Linux system via Software Updater


Download the PGP key

There are two methods to downloading the PGP key. Try them in the following order:

Method 1:

Download the ExpressVPN PGP key by running the command:

gpg --keyserver x-hkp://pool.sks-keyservers.net --recv-keys 0xAFF2A1415F6A3A38

download pgp key

If the above method does not work, try the method below.

Method 2:

Download the PGP key by clicking here and then Save File.

After the download is complete, run the following command:

gpg --import expressvpn_release_public_key_0xAFF2A1415F6A3A38.asc

Back to top


Verify the fingerprint of the PGP key

Run this command: gpg --fingerprint release@expressvpn.com and verify the fingerprint is 1D0B 09AD 6C93 FEE9 3FDD  BD9D AFF2 A141 5F6A 3A38

verify pgp signature

Back to top


Download the singature file

To download the signature file:

  1. Sign in to your account
  2. Click Set up ExpressVPN
  3. On the left side of the screen, select Linux
  4. Click on Signature fileclick signature file

Back to top


Verifying the signature on an installer

Now that you’ve installed ExpressVPN’s PGP key, you can use it to verify the authenticity of files released by ExpressVPN.

Whenever you download a new version of ExpressVPN for Linux, use the following steps to confirm that it was really issued by ExpressVPN:

Navigate to the folder where you downloaded the installer file and signature file. For example: cd ~/Downloads/

Once inside the folder, run one of the commands below. Make sure you’re entering the correct file name.

Ubuntu / Debian 64-bit::  gpg --verify expressvpn_[...].asc

Ubuntu / Debian 32-bit:: gpg --verify expressvpn_[...].asc

Fedora / CentOS 64-bit::  gpg --verify expressvpn_[...].asc

Fedora / CentOS 32-bit:: gpg --verify expressvpn_[...].asc

You should see the primary key fingerprint displayed as in the screen below.

pgp verified

Verify the fingerprint is 1D0B 09AD 6C93 FEE9 3FDD BD9D AFF2 A141 5F6A 3A38. This is the same fingerprint you saw above.

Back to top


Updating Linux system via Software Updater

Note: This section is only required for users who want to update their Linux system.

Click on the Dash icon of the Unity Launcher.

launch dash

Search for Update Manager or Software Updater and open the program.

launch update manager

Wait for the Software Updater to finish checking for updates. Click Install Now when prompted.

install now

Back to top

Was this article helpful?15 3 Undo