ret = RSA_verify(NID_sha256, hash,

	    pkg_checksum_type_size(PKG_HASH_TYPE_SHA256_RAW), cbdata->sig,

	    cbdata->siglen, rsa);