Xton Technologies Software Binary Distribution and Signatures
XTAM Binary Components with MD5, SHA512 and PGP signatures
- Windows Interactive Setup (md5, sha512, pgp)
- Windows CLI Setup (md5, sha512, pgp)
- Linux Setup (md5, sha512, pgp)
- Offline Setup (md5, sha512, pgp)
- WEB GUI and Worker Module (md5, sha512, pgp)
- Directory Service Module (md5, sha512, pgp)
- Runtime Framework for Windows (md5, sha512, pgp)
- Runtime Framework for Linux x86 (md5, sha512, pgp)
- Runtime Framework for Linux ARM (md5, sha512, pgp)
- WEB Session Manager for Windows (md5, sha512, pgp)
- WEB Session Manager for Linux x86 (md5, sha512, pgp)
- WEB Session Manager for Linux ARM (md5, sha512, pgp)
- Federated Sign-In Module (md5, sha512, pgp)
- WEB Container Module (md5, sha512, pgp)
PGP public key ID: 4E8BCE41BA2F3FAF787D20FB9DA0CC93A1946EE0
XTAM Component Integrity
To verify the integrity of each Xton Technologies binary, we provide the MD5 and SHA-512 checksums and an OpenPGP signature. After you download any binary, you should calculate a checksum for your download and make sure if matches ours above. You may also match the OpenPGP signature against the provided key file.
Windows Integrity Check
You can use Microsoft methods to check the binary’s checksum or any other method you are comfortable using. In the example below, we will use CertUtil in PowerShell to calculate the hashes.
Copy both the downloaded binary and the MD5 or SHA512 hash file to the same directory and from within this location execute the command:
- MD5:
CertUtil -hashfile <FILE> MD5
- SHA512:
CertUtil -hashfile <FILE> SHA512
Compare the computed hash to make sure it matches the value from the download hash file.
You can verify the PGP signature using the below command, if available, or another Windows-based OpenPGP verification tool like Gpg4win.
- PGP:
gpg --verify <FILE.asc>
Linux Integrity Check
To verify hashes on Linux, copy both the downloaded binary and the MD5 or SHA512 hash file to the same directory and from within this location execute the command:
- MD5:
md5sum <FILE>
- SHA512:
shasum -c <FILE.sha512>
Compare the computed hash to make sure it matches the value from the download hash file.
You can verify the PGP signature using the below command from this same directory with the downloaded PGP file:
- PGP:
gpg --verify <FILE.asc>
- PGP2:
gpg2 --verify <FILE.asc>
PGP Signature
To verify PGP signatures import the Xton Technologies, LLC public key using the following command or import the public key below:
gpg --keyserver hkp://pool.sks-keyservers.net --recv-keys 4E8BCE41BA2F3FAF787D20FB9DA0CC93A1946EE0
Xton Technologies, LLC public key:
-----BEGIN PGP PUBLIC KEY BLOCK----- mQGNBF/zTfgBDADTG3VLn1RAs88nIYnayy4tUm1Y8M27IS06bT/7gpd2Kcy9ktev gF2sjmA4tvsaaggj5zuI244AppXokpIAjBARudTFGbkUbJPZqvOU1h0gJfMPs6MO oUbxGd0RshmTMBM+4ObXkitJq5ESdOnxX0drv/bZ7PLGWMIgPcjVV2JlsXgeds++ YggxkViqonsATbom83tAF287RGG3LGFD0FQIExsYYovst4GKu1Ahg6VArYRJ+ISv 1zQvP6UCY1jER+YFPaanj1GJmc59jXXcPn3yMl0O2HMzIUW4a0gbaSoNf8zShfOu vgYxnaDL7iNoIr9ko/Fs5ZI/A1ynpSnjQAV0nMFp6UZZ3TFa3QK0rSYrQsMLAasu IhcH1rzjvvIxLyLHeVQd1Wua2ErbwUKXX+36Khnkxox451SBOsmaZybQOVFq6QM6 W3OmOGHOPPkTuxRBnkYAFFoINFt6n349Qz+i+hReKbAEeYJUb1NaWb0+YjZLNqHC 7eq8NpdhUCalyC8AEQEAAbQqWHRvbiBUZWNobm9sb2dpZXMsIExMQyA8aW5mb0B4 dG9udGVjaC5jb20+iQHUBBMBCAA+FiEETovOQbovP694fSD7naDMk6GUbuAFAl/z TfgCGwMFCQPCZwAFCwkIBwIGFQoJCAsCBBYCAwECHgECF4AACgkQnaDMk6GUbuDx fQv/RYenEUM1koGy2qBdMZC+gxJ6Qw3vkiC2ZEflhi+G7rjxgOaUDfr1c6G2MrAy hEciqikimcSBC0AcM+WxZ7mdrqav2wXDl8NYC6LDj5Bmv60tTWdBYqDyEKv5Y+xq 4s9IqcCqdZCFf2+eylqWLd85hQz0pyPvoAl38tDZTWhNXHSf7LFwnOZNZ0RVPQKj d1QMM7b3vz3YTyPmZzUS2ElV5tPkrI3PkmPd/V8S7ewErsr8vVBKSz98iHxcT5Io nnfQ18O7bJC1g6GnUFMa5Qk0sTuYNLlEh6tcDlCgZ82xlVffvDv3GkOpy4DY6BSb 7Uxu8yClpDk6FtLKlHshg8QzcDTFAjlj4xoxeCjpl/iHYPsXYS29tRqvXHKm6vdv 2FZeXk6Bxxo9G6dbQ/AafHl7DhOnK28HsU3vWo30xkhpOqmQQnXbtRLBmXCy0466 oMDPrAHsaZAzsOocoLD1hGXyEtDI7JNU/blBrhBY+B3VnweCS2wZFdem1e+LoPih Gl3cuQGNBF/zTfgBDACdt5Nrmia4u38Au8Ng82pEzc+uq7+FeiCo10n4aQ2mRLtg Db/Vk6U1YNiizW0qEVx0cnFaCdQvfXB5fgc2ckGI2+z+3e+ykeQ8FxmQGj91DfTB AmdqlwDbT4OnYQDmzoZERDdyC6gGtrpdy4TWm7fHvjmDwzkNUNdgB9XvYQQJlUyi im92ZD/9Q6hCApp7D+wU/1ynbCPuknjv5xLHEEo1I7UOHFjUlAbvuDVN1qEWYxtW 1ToBdkr7m/GV8js8SuatTS0SGMEpRnVGDHRef0CwJA2C11Mdf1qVAGaKP71XsY5a 7VWu3t5izmUM7HeKKtvGYQReDBIginvkyK2U4hWURKjdoaBd3oWzoCq3m0/cGQTb 03EP2bzCKHKWY3PWMXXB5hMP5EuyQYgu9l1qOIkYqTB6bxWbEJ+Wh4uGwDDWIGwI oEvUKgVbeuUf75AMK4A4jXmz8wkEEmbVjH+QFX/wYhsuml/OwvD9H3HXo5Z2m31j IVZHF4vvewF1FNgYBIkAEQEAAYkBvAQYAQgAJhYhBE6LzkG6Lz+veH0g+52gzJOh lG7gBQJf8034AhsMBQkDwmcAAAoJEJ2gzJOhlG7gGmcL/2bQIPlvbdW7vNZrpsNB +XutgXrlswpvqWToyzsjtbzBSPMR0r+I7eTUyFuNzYZFHi0K0kLgpdP+ddHWXj+0 QV/9TwG2vEt0qHinFiNgTkv5CajX0j6lCUO3YdCTaYfjEOnx24ej//uU/2VZFka0 LwI0+eSTRfE46X4mdvxh+8NSX5P1dJbWDiAvoBmW4Mftbgx1GYmHwPEWLr8r/gAC GZfjeqGlXAReVgP+8fAytb7Tvon+E5gDVOSEcd8YgTZvri8qygYVCzqcXilROkNf erlcH0iswWy/FVOri3pMk/3FCVTso9RWNqspt2xaVzpwLjcbdiB52OMvaP35/KOc 3sDaD4hYAIkKRkT6OOHPmuJGpqrNf2weBbPsGfM5cKbYLP79j9k5aXh5LFo5zGU2 eE1oVGrdCrg2GLEx4mjMeqrFfWU4bmhE7AdWAykDIno6xNuXGJW7DDKNgAUbS8qr v3nvKpsBW3YhtdsBnbPdYsThLblW/cWbgsWETlCuv7CJTQ== =Rg2D -----END PGP PUBLIC KEY BLOCK-----