-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Two steps are required to cryptographically verify image integrity.

1. By verifying the integrity of this signature file, you can be sure that
   the checksums included in this file are valid.

    $ gpg --keyserver hkp://pool.sks-keyservers.net --recv-keys 0xA16EB94D
    $ gpg --list-keys 0xA16EB94D
      pub   2048R/A16EB94D 2008-08-15 [expires: 2023-08-12]
      uid   Turnkey Linux Release Key <release@turnkeylinux.com>

    $ gpg --verify debian-8-turnkey-openldap_14.0-1_amd64.tar.gz.sig
      gpg: Good signature from "Turnkey Linux Release Key"

2. By calculating the image checksum and validating the hashed value is the
   same as listed below, you can be sure the image was not corrupted in
   transit or tampered with.

    $ md5sum debian-8-turnkey-openldap_14.0-1_amd64.tar.gz
      e0c3f99aaab55a422a25e4a1c78957d1

    $ sha1sum debian-8-turnkey-openldap_14.0-1_amd64.tar.gz
      7a95399b51a976c0657f3dacb09e15c14bf35781

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)

iQEcBAEBAgAGBQJWObxUAAoJEIXCXpWhbrlNmF8IAM8qam8JFwY0rII46kWZzsB+
BZuZwIDTg7wdF6XSOxAB40wo7TVgi35JS6pFj9ZgcViS6ES2RBfX6d9RS2pDMnAO
C7oLxWabT/5RiY6mjgHRKGIJxJvCyjJnzkx8mbujiFDFYBLVTZB/zaLpLa8VnSnj
buiQ9z17qNZ2hpRVb1bFKm079P56p10ZRnszkmNtNc6NKIIco3qZlXWzZV9lZ2xr
Gs1AvVEkm4aehaaNec6prlG7hqL/7YvzhxX86ipNXVDM63U7l4ZRueIZKsizde5V
wgAt25GXr12ivh4nEbC5HqYmO6ixD4okYA4q/7LsDPFi1Q/ZQfS+bhfadEKr1Ik=
=ewgP
-----END PGP SIGNATURE-----