Essentially yes, but with a few extra features such as Web of Trust to see which people in your contacts have an app installed and you can that the dev built and signed the app.
Discussion
What is to keep a clever hacker from maliciously installing a “trusted“ app on all of my friends’ phones and tricking me into installing the Trojan horse as well? My trust in their ability to have good opsec?
(It’s a trick question, I have no friends 🤭)