Add checksums for core mod downloads/dependencies

This could be useful for increasing security of core mods/dependencies, avoiding somebody installing a malicious mod.

Implementing this for core mods is not too difficult, it only requires changes to the resources repo/BMBF backend. However, adding checksums for mod dependencies would be harder. It would require additions to the QMOD schema, which we do not have control over.