I’ve downloaded Signal apk from their site (signal.org) and tried to verify it but it seems off.
Not sure if you see the SHA256 numbers left:
9e02e254d943cf75081efb36ac89c1d4c9c8d71ef19b72f52456ef051e153134
Is it bad? 
I think you’re comparing different things
1 Like
Thank you for not using word ‘stupid’ in answer. 
I’ve thought so, but I do not have apksigner and wanted to avoid it’s installation.