Checksum of Download Package on Linux

  1. After downloading Zulu, at the command line, run the checksum command.

    sha256sum <zulu_package>.rpm

    Sample response:

    b3d1c044decbbe2b736d342226145667dc9c62f0d22802d0886b699c075b4b2f zulu11.41.23-ca-jdk11.0.8-linux.x86_64.rpm

  2. View the list of installed public keys.

    Install GnuPG if it is not present. See

    rpm -q gpg-pubkey --qf '%{name}-%{version}-%{release} --> %{summary}\n'

  3. For RHEL, SLES, or Oracle Linux systems, check the package signature.

    rpm -vK <zulu_package>.rpm

    Sample response

    <zulu_package>.rpm: Header V4 RSA/SHA256 Signature, key ID 219bd9c9: OK Header SHA1 digest: OK (a0752b6b1b69687a0ad8f9965a881d3775e1b8e5) V4 RSA/SHA256 Signature, key ID 219bd9c9: OK MD5 digest: OK (c0ef98f624a35020494f724ca212554a)

    If you have not imported Azul public key or did not use a software repository to download the Zulu installation file, NOKEY is displayed instead of OK in the Signature line.

  4. Proceed to the installation section to corresponding to your operating system and Zulu installer package.