-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Two steps are required to cryptographically verify image integrity.

1. By verifying the integrity of this signature file, you can be sure that
   the checksums included in this file are valid.

    $ gpg --keyserver hkp://pool.sks-keyservers.net --recv-keys 0xA16EB94D
    $ gpg --list-keys 0xA16EB94D
      pub   2048R/A16EB94D 2008-08-15 [expires: 2023-08-12]
      uid   Turnkey Linux Release Key <release@turnkeylinux.com>

    $ gpg --verify turnkey-bugzilla-14.1-jessie-i386.iso.sig
      gpg: Good signature from "Turnkey Linux Release Key"

2. By calculating the image checksum and validating the hashed value is the
   same as listed below, you can be sure the image was not corrupted in
   transit or tampered with.

    $ md5sum turnkey-bugzilla-14.1-jessie-i386.iso
      2b6241666a00b85b3ed8c7ff5345ece7

    $ sha1sum turnkey-bugzilla-14.1-jessie-i386.iso
      16600bd6e8695489c68b8f3fb354ba74578aaa89

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)

iQEcBAEBAgAGBQJXCkPwAAoJEIXCXpWhbrlNWWUIAOk3+xvLu4JtYSX4IVxnpds2
HxHdzAIbrNcwH9VmT87rRxtDRovDPanY4lqWgGFx4Rl89fQQkcngstbBnrnrv0P5
3fYd9ac7d6R80bKq99w03yTusRQ72/+UWDiKvAQX5uICQlS9kjWS3UZ078hObJ6O
TxQimuEm32XS9UwFCFP5UGe5t8M/hHOds6FnVM8Wjppt6WrDy+y+hQjkVO3d5Hp9
YJLabewc3Ld4y2GZ8t2RrCGuWQk1UKWthJ8SLVBqQpF4A0AaEOqCRuJoYQvEm7kp
W0aXMWjJRHYYg0hofFrfNfXjD9wUMJWLsLsYlRfvVoKzqhRN+sU0v5ewmyo+ey0=
=I1wY
-----END PGP SIGNATURE-----