expected Signing Sha256
Allow-list of expected app signing-certificate SHA-256 hashes (:/space-separated and case-insensitive accepted). Used by the device-integrity capture (gated by a verifier's transaction_data) to evaluate the repackaging signal. When empty (the default), repackaging is reported as INCONCLUSIVE and only the observed signing hashes are surfaced for out-of-band comparison by the backend/PSP.