Can AssetBundles be signed on creation and then validated on the client?

I'm considering creating asset bundles that include configuration data for the difficulty of my game, either as scriptable objects or as XML or JSON or similar.

This is the first time I've looked through the asset bundle documentation. I was expecting to see some sort of signing mechanism where I would sign my assetbundles when they are creted, and include the public key in my app.

Does this exist? Within my app, how do I ensure that the assetbundle I've just downloaded is legitimate?