-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Two steps are required to cryptographically verify image integrity.

1. By verifying the integrity of this signature file, you can be sure that
   the checksums included in this file are valid.

    $ gpg --keyserver hkp://pool.sks-keyservers.net --recv-keys 0xA16EB94D
    $ gpg --list-keys 0xA16EB94D
      pub   2048R/A16EB94D 2008-08-15 [expires: 2023-08-12]
      uid   Turnkey Linux Release Key <release@turnkeylinux.com>

    $ gpg --verify debian-8-turnkey-mysql_14.0-1_amd64.ova.sig
      gpg: Good signature from "Turnkey Linux Release Key"

2. By calculating the image checksum and validating the hashed value is the
   same as listed below, you can be sure the image was not corrupted in
   transit or tampered with.

    $ md5sum debian-8-turnkey-mysql_14.0-1_amd64.ova
      966f2b9174b726c27d81f47734f545bd

    $ sha1sum debian-8-turnkey-mysql_14.0-1_amd64.ova
      4eba8770116594b0cc98a32e83898e8ed689503a

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)

iQEcBAEBAgAGBQJWObxUAAoJEIXCXpWhbrlNx1QH/3FHpcIVTN0SG40gFXXtmDI5
+ZajyH6/j64OJhYYtXzGK/DgFk7IpnPEl5eLGc+hSGtlcC+dwAoFLw3/D0dam7Dr
9FyNg2xspqxEBdg0mlG2B0oQ9ZJpt6RVmIFgZ+BvyrXqrihFNitTGEWp4xzy4plA
vcprLWrZfb65YG+mS4kNyX7LI0yAhSybBAHRPiz6kmQtoxEQTK08eGaCmt6GypAR
aVFTmPt5/sijLDj0PYakVXCuDUUaq+41iM0Bps5cLqWEb7MkjcXiTDgpjd9P7uAr
uRXFgThIqKInvZ4Qo/HOsizSdicDZQQ9+UhWkKIDiXzmvHBRQ6oUzGp6P0IUzkY=
=GP9q
-----END PGP SIGNATURE-----