Enable signature verification for OTA updates by adding
`sign-verify` key for remote "origin".
After this only commits signed with known key will be used for
update, i.e. public key must be placed into well-known system places
or added into remote config by using keys `verification-key` or
`verification-file`.

Signed-off-by: Denis Pynkin <denis.pynkin@collabora.com>