Unzip and validate signatures
To extract files from a Zip archive you need to create and use an instance of TElZipReader class.
If the archive is encrypted (DirectoryEncrypted is True), you should provide encrypting password via Password, and, if necessary, encryption certificates via EncryptingCertificates properties, before extraction. Alternatively, you can assign OnPasswordNeeded/OnPrivateKeyNeeded event handlers.
To validate the signature made over the archive's central directory, after opening the archive, call ValidateDirectorySignature.
To validate the signature made over a single archive entry, use ValidateSignature method.
Signing certificates are contained in the SigningCertificates list. If certain certificate required for validation is missing, it should be added to the list manually.