Get ExpressVPN on your Linux.
Need a VPN for Linux?
Get ExpressVPN Now
Refer a friend to use ExpressVPN.
Love ExpressVPN? Want a free month?
Refer a Friend Now

This guide will show you how to verify the authenticity of the app installer for the ExpressVPN app for Linux. This process requires using a system called PGP, which ExpressVPN uses to digitally sign its installers for Linux.

Jump to…

1. Download the PGP key
2. Verify the fingerprint of the PGP key
3. Download the app installer and the signature file
4. Verifying the signature on an installer


1. Download the PGP key

There are two methods to download the PGP key. Try them in the following order:

Method 1:

Download the ExpressVPN PGP key by running the following command:

gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xAFF2A1415F6A3A38

Proceed to the next step to verify the fingerprint of the PGP key. If the above method does not work for you, try the method below.

Method 2:

Download the PGP key by running the following command:

wget https://www.expressvpn.com/expressvpn_release_public_key_0xAFF2A1415F6A3A38.asc

Alternatively, you can download the PGP key. When prompted, click Save File.

Next, import the PGP key by running the following command:

gpg --import expressvpn_release_public_key_0xAFF2A1415F6A3A38.asc

Need help? Contact the ExpressVPN Support Team for immediate assistance.

Back to top


2. Verify the fingerprint of the PGP key

Before using the PGP key, you are recommended to verify its fingerprint to make sure the PGP key is from ExpressVPN.

Run the following command:

gpg --fingerprint release@expressvpn.com

Verify the fingerprint of the PGP key is 1D0B 09AD 6C93 FEE9 3FDD BD9D AFF2 A141 5F6A 3A38.

Verify the fingerprint of the PGP key.

Need help? Contact the ExpressVPN Support Team for immediate assistance.

Back to top


3. Download the app installer and the signature file

  1. Sign in to your ExpressVPN account.
  2. Select your distro version. Click Download.
  3. Click Signature file.
    Click “Signature file.”

Need help? Contact the ExpressVPN Support Team for immediate assistance.

Back to top


4. Verify the signature of the installer

Follow these steps to verify that the app installer you are downloading is from ExpressVPN.

  1. In Terminal, navigate to the folder where you downloaded the installer file and signature file. For example: cd ~/Downloads/
  2. Run the following command: gpg --verify [name of the signature file you downloaded].asc
  3. If the app installer you downloaded is authentic, the primary key fingerprint that appears should match the fingerprint of the PGP key you download earlier.
    The primary key fingerprint that appears should match the fingerprint of the PGP key you download earlier.

Need help? Contact the ExpressVPN Support Team for immediate assistance.

Back to top

 

Was this article helpful?

We're sorry to hear that. Let us know how we can improve.

A member of our Support Team will follow up on your issue.