The RSS reader app Read You has a new signing key as of release 0.16.0. Right now, AppVerifier displays a failure, since it checks for the old signing key. You can verify the apk manually using the SHA-256 digest from #1219:
721e4043c439bd70c90f46ae166ddc233fc75c1235bf8cb27b99a4df09cc3b99
The original key was made public in the source for some reasons, allowing unauthorized parties to release builds using our signature. By switching to a new private signature restricted to core collaborators, we can ensure the authenticity of every APK. This prevents malicious actors from distributing unofficial or compromised builds.