-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Two steps are required to cryptographically verify image integrity.

1. By verifying the integrity of this signature file, you can be sure that
   the checksums included in this file are valid.

    $ gpg --keyserver hkp://pool.sks-keyservers.net --recv-keys 0xA16EB94D
    $ gpg --list-keys 0xA16EB94D
      pub   2048R/A16EB94D 2008-08-15 [expires: 2023-08-12]
      uid   Turnkey Linux Release Key <release@turnkeylinux.com>

    $ gpg --verify turnkey-mambo-14.1-jessie-amd64.iso.sig
      gpg: Good signature from "Turnkey Linux Release Key"

2. By calculating the image checksum and validating the hashed value is the
   same as listed below, you can be sure the image was not corrupted in
   transit or tampered with.

    $ md5sum turnkey-mambo-14.1-jessie-amd64.iso
      4da2eeb94555a78d6f22ca9c5902b602

    $ sha1sum turnkey-mambo-14.1-jessie-amd64.iso
      c217f609712d57710add20279e6ec5b638c0a0ff

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)

iQEcBAEBAgAGBQJXCkPyAAoJEIXCXpWhbrlNZxQH/2qu7kvjbaY179Wo5A7V+WnE
TFxk9LxYAOqOIYXlmo4V0JuR9fi2N+RqDEY5eohlgsrwZzdN2JndeTdybObf02EN
lweHOEgvJDkTVYfox6X6X/If+ip8Cd0UeQK1B/GUU24jon4w3zB3YzXUP45B7WzG
GlDit/SbadlQJgxOy0adAO3qjWGjrblaIFI3GpMnCV8yCzPIlMpYKGep7UAU8Gn4
hDeH2ZGbJYdsumCWU6W7SmgJqwDdM9uVpTdUkrnKZHXe2tmh329VYQ86q4sG6wcU
hcXbn8HpkFzBbdZbH7ZWl2+OaI6nmMC+r3xJ0hm5qDcPmir2DitW3WmMHTkGm/s=
=aN5I
-----END PGP SIGNATURE-----