To import a GPG key for the APK file from the GitHub repository "Blockstream/green_android" on Linux, follow these steps:
--snip--
OP already solved the problem, so i don't see necessity of giving more guide when it's flawed.
Depending on PGP version/config on user device, they might see error/fail message like this.
gpg: key E7F054AA2E76E792: new key but contains no user ID - skipped
gpg: Total number processed: 1
gpg: w/o user IDs: 1
jarsigner -verify -verbose -certs
For detailed instructions and troubleshooting, refer to the repository's documentation or GPG and APK signing guides online.
Why would you suggest using jarsigner when OP ask about verifying file with GPG key and GPG signature? From quick search, it seems to impossible without converting GPG key to different format[1].
[1] https://stackoverflow.com/a/11219493