How do I verify the cryptographic PGP signature of Matomo packages?
When we create a new Matomo (Piwik) release, right after the Matomo core packages
.tar.gz have been created, the Matomo release manager signs the packages using his PGP key. This creates a cryptographic signature which gives you the possibility to check that the release package you have downloaded is the same as the one that was provided by Matomo team. Learn how to verify the signature in this blog post with instructions for Windows, Mac OS X and Linux.
Thanks for contacting us! We will get in touch with you shortly.
Feedback on this page
Next FAQ: How do I enable Maintenance mode (to display a maintenance message in Matomo, and disable tracking) prior to updates?Previous FAQ: I would like to test early beta and RC releases, how do I enable automatic updates to use these development versions?