If you are running Tixati in Windows, the Authenticode popup will always show "Tixati Software Inc.". You can also verify the file's signature in the properties by right-clicking it.
In Linux you can use gpg to verify any release.
First, download and import our public key (you only need to do this once ever):
gpg --import tixati.key
Then, download the .asc signature file from the link next to the file you are downloading.
On the command line, from the same directory that has your downloaded files:
gpg --verify darkmx-1.12-linux64.tar.gz.asc darkmx-1.12-linux64.tar.gz
You should see something like this:
gpg: Signature made Thu 25 Feb 2021 05:28:26 PM EST
gpg: using RSA key 9DEA5E350F9D285E46D3B7E3CE737F191AF5DCFB
gpg: Good signature from "Tixati Software Inc. (KH) <firstname.lastname@example.org>" [unknown]
gpg: WARNING: This key is not certified with a trusted signature!
gpg: There is no indication that the signature belongs to the owner.
Primary key fingerprint: 9DEA 5E35 0F9D 285E 46D3 B7E3 CE73 7F19 1AF5 DCFB
The important part is
gpg: Good signature from "Tixati Software Inc. (KH) <email@example.com>"