-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

To ensure the image has not been corrupted in transmit or tampered with,
perform the following two steps to cryptographically verify image integrity:

1. Verify the authenticity of this file by checking that it is signed with our
   GPG release key:

    $ curl  | gpg --import
    $ gpg --list-keys --with-fingerprint release-bullseye-images@turnkeylinux.org
      pub   rsa4096 2021-08-04 [SC] [expires: 2041-07-30]
            E10F 6567 0C8E BE42 ED0C  3A49 CCA5 1174 468F 9073
      uid           [ unknown] TurnKey GNU/Linux Bullseye Images (GPG signing key for TurnKey Linux Bullseye Images) <release-bullseye-images@turnkeylinux.org>
      sub   rsa4096 2021-08-04 [S] [expires: 2041-07-30]
      
    $ gpg --verify debian-11-turnkey-typo3_17.1-1_amd64.tar.gz.hash
      gpg: Signature made using RSA key ID E10F65670C8EBE42ED0C3A49CCA51174468F9073
      gpg: Good signature from "0"

2. Recalculate the image hash and make sure it matches your choice of hash below.

    $ sha256sum debian-11-turnkey-typo3_17.1-1_amd64.tar.gz
      dba289f75ac713333091e030707aacc7eea499278790615a745f89d25f48d124  debian-11-turnkey-typo3_17.1-1_amd64.tar.gz

    $ sha512sum debian-11-turnkey-typo3_17.1-1_amd64.tar.gz
      f5fcaf8534a91dbf592efc10d0a5e8cac5c40f72f906d4067c6a904d44cf28b079b9b8bd646e25f7bd7ced8f1a8f3253f3425289d46a7e0e4013c4bd61f99261  debian-11-turnkey-typo3_17.1-1_amd64.tar.gz

   Note, you can compare hashes automatically::

    $ sha256sum -c debian-11-turnkey-typo3_17.1-1_amd64.tar.gz.hash
      debian-11-turnkey-typo3_17.1-1_amd64.tar.gz: OK

    $ sha512sum -c debian-11-turnkey-typo3_17.1-1_amd64.tar.gz.hash
      debian-11-turnkey-typo3_17.1-1_amd64.tar.gz: OK

    Final note, when checking SHAs automatically, please ignore warning noting that some lines are improperly formatted.

-----BEGIN PGP SIGNATURE-----
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=hkTJ
-----END PGP SIGNATURE-----