-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

To ensure the image has not been corrupted in transmit or tampered with,
perform the following two steps to cryptographically verify image integrity:

1. Verify the authenticity of this file by checking that it is signed with our
   GPG release key:

    $ curl  | gpg --import
    $ gpg --list-keys --with-fingerprint release-bullseye-images@turnkeylinux.org
      pub   rsa4096 2021-08-04 [SC] [expires: 2041-07-30]
            E10F 6567 0C8E BE42 ED0C  3A49 CCA5 1174 468F 9073
      uid           [ unknown] TurnKey GNU/Linux Bullseye Images (GPG signing key for TurnKey Linux Bullseye Images) <release-bullseye-images@turnkeylinux.org>
      sub   rsa4096 2021-08-04 [S] [expires: 2041-07-30]
      
    $ gpg --verify debian-11-turnkey-bugzilla_17.1-1_amd64.tar.gz.hash
      gpg: Signature made using RSA key ID E10F65670C8EBE42ED0C3A49CCA51174468F9073
      gpg: Good signature from "0"

2. Recalculate the image hash and make sure it matches your choice of hash below.

    $ sha256sum debian-11-turnkey-bugzilla_17.1-1_amd64.tar.gz
      4b8ac499cbd96eb9f327985e471158c7b87b0612e11df1f4352a552e16cf26d9  debian-11-turnkey-bugzilla_17.1-1_amd64.tar.gz

    $ sha512sum debian-11-turnkey-bugzilla_17.1-1_amd64.tar.gz
      f9dcc318559c8f4159ef601528f715bcf2a0975b8d56424005158167b2306c17612d8327beb25fa045d01fcb8b9064cfb62d55994af7beae71521dd13db20dd7  debian-11-turnkey-bugzilla_17.1-1_amd64.tar.gz

   Note, you can compare hashes automatically::

    $ sha256sum -c debian-11-turnkey-bugzilla_17.1-1_amd64.tar.gz.hash
      debian-11-turnkey-bugzilla_17.1-1_amd64.tar.gz: OK

    $ sha512sum -c debian-11-turnkey-bugzilla_17.1-1_amd64.tar.gz.hash
      debian-11-turnkey-bugzilla_17.1-1_amd64.tar.gz: OK

    Final note, when checking SHAs automatically, please ignore warning noting that some lines are improperly formatted.

-----BEGIN PGP SIGNATURE-----
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=5coG
-----END PGP SIGNATURE-----