-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Two steps are required to cryptographically verify image integrity.

1. By verifying the integrity of this signature file, you can be sure that
   the checksums included in this file are valid.

    $ gpg --keyserver hkp://pool.sks-keyservers.net --recv-keys 0xA16EB94D
    $ gpg --list-keys 0xA16EB94D
      pub   2048R/A16EB94D 2008-08-15 [expires: 2023-08-12]
      uid   Turnkey Linux Release Key <release@turnkeylinux.com>

    $ gpg --verify debian-8-turnkey-sahana-eden_14.0-1_amd64.ova.sig
      gpg: Good signature from "Turnkey Linux Release Key"

2. By calculating the image checksum and validating the hashed value is the
   same as listed below, you can be sure the image was not corrupted in
   transit or tampered with.

    $ md5sum debian-8-turnkey-sahana-eden_14.0-1_amd64.ova
      6b2b2106f9ed9fe58c5d74db08726281

    $ sha1sum debian-8-turnkey-sahana-eden_14.0-1_amd64.ova
      f51717683a7bf0b45adb0c9865745097c7179d96

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)

iQEcBAEBAgAGBQJWObxVAAoJEIXCXpWhbrlNY4gH/2PU2Gm1wo5PJGIcBb24VThY
lXEFfAUBCkLtfhftgWHoEgtqkySkDZJntp4HuQtC0wpJgDmeIJMEqYk7h734BMX3
6AtNmC3xZVCHy+QpdfEGDplt0OuRuYpOOrfLBp45eNx2qrQIuMstgfa1TGjcZLJZ
CtGSuAg8kEBtK+Way69wfWGLHUpF05DgN6uI2rVCk3aoiNVdKAVGPliCkIq1MvIv
7Fi3C5h2s0PGCIz5WEkuqOKioR6h2zFe7eFf1bBBygR6wr2/Nk3u+p6dGpdD1AXO
rUg7CZibQgmoCQ/BgCK1+SLJTyeXqYqfqNcE5ZH1MogEMqhq0JXZX+2ifEuLzlU=
=aVc2
-----END PGP SIGNATURE-----