How to use jarsigner for signing an apk?
You can find all the information you need about this topic on d.android.com: http://developer.android.com/tools/publishing/app-signing.html#signapp
jarsigner -verbose -sigalg SHA1withRSA -digestalg SHA1 -keystore my-release-key.keystoremy_application.apk alias_name
One thing that cost me a few hours already, but is also mentioned in the official documentation:
As of JDK 7, the default signing algorithim has changed, requiring you to specify the signature and digest algorithims (-sigalg and -digestalg) when you sign an APK
Use the jarsigner as below:
jarsigner -keystore <keystore_file> -storepass <storepassword> <filenameTosigned> <alias>
For -tsa option enter the next one:
jarsigner -verbose **-tsa http://timestamp.comodoca.com/rfc3161** -sigalg SHA1withRSA -digestalg SHA1 -keystore your_keystor_name.keystore YourAPK.apk youralias_key