-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Two steps are required to cryptographically verify image integrity.

1. By verifying the integrity of this signature file, you can be sure that
   the checksums included in this file are valid.

    $ gpg --keyserver hkp://pool.sks-keyservers.net --recv-keys 0xA16EB94D
    $ gpg --list-keys 0xA16EB94D
      pub   2048R/A16EB94D 2008-08-15 [expires: 2023-08-12]
      uid   Turnkey Linux Release Key <release@turnkeylinux.com>

    $ gpg --verify turnkey-twiki-14.1-jessie-amd64.iso.sig
      gpg: Good signature from "Turnkey Linux Release Key"

2. By calculating the image checksum and validating the hashed value is the
   same as listed below, you can be sure the image was not corrupted in
   transit or tampered with.

    $ md5sum turnkey-twiki-14.1-jessie-amd64.iso
      139962312ee109d47f4c27eaa18eb58c

    $ sha1sum turnkey-twiki-14.1-jessie-amd64.iso
      4467cfd71a4c12f173e17a497b1dcb2fe3869f1b

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)

iQEcBAEBAgAGBQJXCkP1AAoJEIXCXpWhbrlNd6wH/A1VZj3uXaPeG+udZcZWfI10
TGRr3sEGE76CldOOiKyvlt2u5unEo+baTAVriL/HnGr6q54kdKgleMNJyq0dWr94
w5dUHHBuii5Wwsj6hZ7dCFLLaiv/voOmV+TR/DtLMuqi1dX/jykxNdjMSSmok860
ETOCWwxegaQhbxYvDlwy2p3G3cXACdDDwVHmIWr6fHMecA+agdxwqEQKDKblqtv5
Hk5NEV2qC4z1nksJy0R7X16ZpgLMpU7m0pNh/XOIp/iYxIZqBGuAECPUp7YmiRdL
7XPhXPULwQqk1vUBreNhT15sOcHFRPdxTLK8eKfZWDEvp+lyrIX3LqZgmPxZywc=
=1tF8
-----END PGP SIGNATURE-----