-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Two steps are required to cryptographically verify image integrity.

1. By verifying the integrity of this signature file, you can be sure that
   the checksums included in this file are valid.

    $ gpg --keyserver hkp://pool.sks-keyservers.net --recv-keys 0xA16EB94D
    $ gpg --list-keys 0xA16EB94D
      pub   2048R/A16EB94D 2008-08-15 [expires: 2023-08-12]
      uid   Turnkey Linux Release Key <release@turnkeylinux.com>

    $ gpg --verify debian-8-turnkey-phpbb_14.0-1_amd64.ova.sig
      gpg: Good signature from "Turnkey Linux Release Key"

2. By calculating the image checksum and validating the hashed value is the
   same as listed below, you can be sure the image was not corrupted in
   transit or tampered with.

    $ md5sum debian-8-turnkey-phpbb_14.0-1_amd64.ova
      b167d96f152e17efd61d2dded48e0f4f

    $ sha1sum debian-8-turnkey-phpbb_14.0-1_amd64.ova
      dc80516b2bd4f18e8a03950829a5aa42c87cb67a

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)

iQEcBAEBAgAGBQJWObxUAAoJEIXCXpWhbrlNJrEIAKYF8jBCSG4m8u2IVGZ0YUuz
Tt1ff2oT2ZU0v3g1Rx5Zwg6RlUOwAWDLHvPHa9HKNw5ONkhajEON3UTywm77z+qb
OFUO8NbitPSE8lsgdYE0abbyPhcAdL+MrB04Vf2Z4e6vUzzlgLoBof5URvIWIES9
eFz+A5UtSnTuaY1cdGkOf5deXbQ+3lMyKIV9m7qzq11G6hJQDU8rdWdw6Nqx5mzl
Uw5LbPFuPYcA1ARP162olMKDHnwzP+Tn6VdJzatn/B8WvCwYVSrV6xYxyQjQKe+j
eEEWwdUjDPUMImj0luXYskqMn9fPB4dFdXeZyP6Mj0qMv/3eWyHHWSEDK3bCw4k=
=V0Aq
-----END PGP SIGNATURE-----