diff --git a/src/op-cli-installer/github-action/cli-installer/linux.ts b/src/op-cli-installer/github-action/cli-installer/linux.ts
index 7e96121..b65dfe5 100644
--- a/src/op-cli-installer/github-action/cli-installer/linux.ts
+++ b/src/op-cli-installer/github-action/cli-installer/linux.ts
@@ -34,6 +34,7 @@ export class LinuxInstaller extends CliInstaller implements Installer {
 			path.join(extractedPath, "op"),
 			path.join(extractedPath, "op.sig"),
 		);
+		core.info("1Password CLI signature verified");
 
 		core.addPath(extractedPath);
 		core.info("1Password CLI installed");
diff --git a/src/op-cli-installer/github-action/cli-installer/macos.ts b/src/op-cli-installer/github-action/cli-installer/macos.ts
index 11222bb..ac699a7 100644
--- a/src/op-cli-installer/github-action/cli-installer/macos.ts
+++ b/src/op-cli-installer/github-action/cli-installer/macos.ts
@@ -37,6 +37,7 @@ export class MacOsInstaller extends CliInstaller implements Installer {
 
 		core.info("Verifying 1Password CLI signature");
 		await verifyMacOsPackageSignature(pkgWithExtension);
+		core.info("1Password CLI signature verified");
 
 		const expandDir = "temp-pkg";
 		await execFileAsync("pkgutil", ["--expand", pkgWithExtension, expandDir]);
diff --git a/src/op-cli-installer/github-action/cli-installer/signature.ts b/src/op-cli-installer/github-action/cli-installer/signature.ts
index 46110c9..0ac9c77 100644
--- a/src/op-cli-installer/github-action/cli-installer/signature.ts
+++ b/src/op-cli-installer/github-action/cli-installer/signature.ts
@@ -14,14 +14,14 @@ export const APPLE_DEVELOPER_TEAM_ID = "2BUA8C4S2C";
 // Append-only: old certs stay listed so historical `op` versions still verify.
 // See https://www.1password.dev/cli/verify.
 export const ALLOWED_MACOS_SIGNING_CERT_FINGERPRINTS = [
-	"CAB578061B0209FB70934DA344EF6FEBCD3279B1C074C54B0D7D555743B9D89F",
-	"141DD87B2B231211F1440849798007DF621DE6EB3DAB985BC964EE9704C4A1C1",
+	"CAB578061B0209FB70934DA344EF6FEBCD3279B1C074C54B0D7D555743B9D89",
+	"141DD87B2B231211F1440849798007DF621DE6EB3DAB985BC964EE9704C4A1C",
 ];
 
 // 1Password's code-signing GPG key. Used to verify the detached `op.sig`
 // inside the Linux release zip. See https://www.1password.dev/cli/verify.
 export const ONEPASSWORD_GPG_KEY_FINGERPRINT =
-	"3FEF9748469ADBE15DA7CA80AC2D62742012EA22";
+	"3FEF9748469ADBE15DA7CA80AC2D62742012EA2";
 export const ONEPASSWORD_GPG_KEY_URL =
 	"https://downloads.1password.com/linux/keys/1password.asc";