As far as signing the app is concerned I followed the instructions
here. Just scroll down to the "Sign your app from command line" section.
You must first create a key: Follow step 1,
here. I believe the keytool is found inside your sdk/tools folder, if I remember correctly.
Assuming you have generated a key, you then export some variables like so:
export P4A_RELEASE_KEYSTORE=~/keystores/<your-new-key>.keystore
export P4A_RELEASE_KEYSTORE_PASSWD=<your-new-key>
export P4A_RELEASE_KEYALIAS_PASSWD=<your-new-key>
export P4A_RELEASE_KEYALIAS=<your-key-alias>
Then: buildozer -v android release to build the app.
I built my app using SDK 23 and build-tools 28.0.3. I placed the .keystore file in the .buildozer/.../bin directory and following step 2 from first link above, I run:
~/.buildozer/android/platform/android-sdk-23/build-tools/28.0.3/zipalign -v 4 myapp-release.apk myapp-release-optimized.apk
and
finally according to step 3 I run:
~/.buildozer/android/platform/android-sdk-23/build-tools/28.0.3/apksigner sign --ks myappname.keystore --out MyApp.apk myapp-release-optimized.apk
where I had to enter the key.
The above worked for me.
Hopefully, the instructions will get you and/or someone else sorted out.
Regards,
Thomas