If you are running Tixati in Windows, the Authenticode popup will always show "Tixati Software Inc.". You can also verify the file's signature in the properties by right-clicking it.
In Linux you can use gpg to verify any release.
First, download and import our public key (you only need to do this once ever):
wget https://www.tixati.com/tixati.key
gpg --import tixati.key
Then, download the .asc signature file from the link next to the file you are downloading.
On the command line, from the same directory that has your downloaded files:
gpg --verify tixati-2.18-1.linux-64bit.tar.gz.asc tixati-2.18-1.linux-64bit.tar.gz
You should see something like this:
gpg: Signature made Sun 04 Oct 2015 12:20:39 AM EDT using RSA key ID 1AF5DCFB
gpg: Good signature from "Tixati Software Inc. (KH) <support@tixati.com>"
gpg: WARNING: This key is not certified with a trusted signature!
gpg: There is no indication that the signature belongs to the owner.
Primary key fingerprint: 9DEA 5E35 0F9D 285E 46D3 B7E3 CE73 7F19 1AF5 DCFB
The important part is
gpg: Good signature from "Tixati Software Inc. (KH) <support@tixati.com>"
