-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Two steps are required to cryptographically verify image integrity.

1. By verifying the integrity of this signature file, you can be sure that
   the checksums included in this file are valid.

    $ gpg --keyserver hkp://pool.sks-keyservers.net --recv-keys 0xA16EB94D
    $ gpg --list-keys 0xA16EB94D
      pub   2048R/A16EB94D 2008-08-15 [expires: 2023-08-12]
      uid   Turnkey Linux Release Key <release@turnkeylinux.com>

    $ gpg --verify debian-8-turnkey-symfony_14.0-1_amd64.ova.sig
      gpg: Good signature from "Turnkey Linux Release Key"

2. By calculating the image checksum and validating the hashed value is the
   same as listed below, you can be sure the image was not corrupted in
   transit or tampered with.

    $ md5sum debian-8-turnkey-symfony_14.0-1_amd64.ova
      17c3fdc7e5b2ee910adba6179d1abbcc

    $ sha1sum debian-8-turnkey-symfony_14.0-1_amd64.ova
      772fe87a8250765f5d4b7b165a85d06993f47cf1

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)

iQEcBAEBAgAGBQJWObxWAAoJEIXCXpWhbrlNgA8H/0DZueL7A4cit+XuVIIdl67W
yTUC1Wh4Jruxg3iF7GsMulbplTFH53v/4pSDdMtGILSs3HOZUQyA+EN9QsY7MEd+
wk+amtY3obPQ2wcrsC1JGrm9YY2ZOQhdydC5SyEnhByKsZdfkauKJeKSjij9pPGa
M9Ob/tbE1aEmERUrZkeH36sNCwfAzWCWfqkcfTwBLOKQqXV08LjPPVhDJNZlepuv
i2eAJq6eVAjoxWq9FmnPmRPudRjKD95SaTidMDicFtiTeP+MGGf9j3YbfTitWISt
hS/HgawSFoDqZaVXTTcCNdP4Z826zeSmJkmKDsao8bwWKCdJtjMTRDnUZv8z6s4=
=PWHl
-----END PGP SIGNATURE-----