The long hash strings in that file can be used to confirm that the file you download is not truncated, incomplete or altered.
Verifying on Linux and Mac¶
Open a terminal window.
Navigate to the folder containing the file you downloaded. ( cd "path/to/file" )
Then type sha256sum "filename" on the terminal.
$ cd path/to/file $ sha256sum "filename"
Verifying on Windows¶
Open a cmd window.
Navigate to the folder containing the file you downloaded ( cd "path/to/file" ).
Then type certUtil -hashfile "filename" SHA256 on your command prompt.
> cd path/to/file > certUtil -hashfile "filename" SHA256
To check this :-
- Copy the SHA256 hash displayed on your terminal or cmd.
- Then open the link which contains the list of all SHA256 hashes for the downloaded files.
- Press Ctrl+F in the window and paste the copied signature in the box which opens on the top right corner. You will get a single result highlighted if the signature is found.
- In Linux terminal, the name of the downloaded file is also printed along with the hash. Be careful not to copy it.
- When you get a match, also check that the name of the file in the list aside the hash is the same as that of your downloaded file.