-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Two steps are required to cryptographically verify image integrity.

1. By verifying the integrity of this signature file, you can be sure that
   the checksums included in this file are valid.

    $ gpg --keyserver hkp://pool.sks-keyservers.net --recv-keys 0xA16EB94D
    $ gpg --list-keys 0xA16EB94D
      pub   2048R/A16EB94D 2008-08-15 [expires: 2023-08-12]
      uid   Turnkey Linux Release Key <release@turnkeylinux.com>

    $ gpg --verify turnkey-typo3-14.0-jessie-amd64.iso.sig
      gpg: Good signature from "Turnkey Linux Release Key"

2. By calculating the image checksum and validating the hashed value is the
   same as listed below, you can be sure the image was not corrupted in
   transit or tampered with.

    $ md5sum turnkey-typo3-14.0-jessie-amd64.iso
      99a4784add28f1692b09a520a122bdb1

    $ sha1sum turnkey-typo3-14.0-jessie-amd64.iso
      bf39c43e6564381743a4428311a227bdfca6c49f

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)

iQEcBAEBAgAGBQJV7BrqAAoJEIXCXpWhbrlNRR4IAMi1BKFmJWGGAjR1lMP8D0He
TitDsM+oKygdbD4cqJ5dm9OSzO8A1XTQxUFezaHNUR4u9LFN6e13D4ujFSh29MgY
RW6lKFmahd3Y7MrNQV7WNgdr3famHauG4vC6qmhchZyCGcWfNLGu1VewJeU5gtjf
ozu2joxPcqptHSdfyinbRGJ4pUYZwzIS+89N9Yw6YVjSTAxEPiNB6/M5d/ZTWE0D
kduENYPp/ag5wgMuQWI+8Wc/Auj6IXwaKR8Kf1quxME1kuC4DDSjHQj1kaxTGNtg
c8OESQ1Az+b+DHqMR/t3fKZnmt+zdMek9gjqF17HGWnLd4264quFpuExnBR38fY=
=4Uoi
-----END PGP SIGNATURE-----