-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Two steps are required to cryptographically verify image integrity.

1. By verifying the integrity of this signature file, you can be sure that
   the checksums included in this file are valid.

    $ gpg --keyserver hkp://pool.sks-keyservers.net --recv-keys 0xA16EB94D
    $ gpg --list-keys 0xA16EB94D
      pub   2048R/A16EB94D 2008-08-15 [expires: 2023-08-12]
      uid   Turnkey Linux Release Key <release@turnkeylinux.com>

    $ gpg --verify turnkey-zurmo-14.1-jessie-amd64-xen.tar.bz2.sig
      gpg: Good signature from "Turnkey Linux Release Key"

2. By calculating the image checksum and validating the hashed value is the
   same as listed below, you can be sure the image was not corrupted in
   transit or tampered with.

    $ md5sum turnkey-zurmo-14.1-jessie-amd64-xen.tar.bz2
      03df679c821c745427cb13b3af98c903

    $ sha1sum turnkey-zurmo-14.1-jessie-amd64-xen.tar.bz2
      de3c07325f2ef7e93ec98f645b9ea95c333a8ca0

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)

iQEcBAEBAgAGBQJXDJn9AAoJEIXCXpWhbrlNFUcIAIETF0EuXDnMm1LaG0xzM7Th
eMbVLPGFGGgLaHFNDOCQZMrZz/66gAOmx49r8d2/WIksAWSw9I0FoEymkZwu5xbb
nZqMX9bPZPxCS3JGXmCqGPRQYIl3udGxEz9GNF4KAAPqeR3Sc7lyzZ7XgijjI+DM
qhmDud3xibbuDfB4SiezKzvIfW5MpZrZzTFW1cJryVCYXguofvVxUFzJOHEUMLn9
IicRbLfhenG1adoKQ8Pyc9uHqkRX1gWo1gHcgO7byQVk0u/CwWw74Od6cKUXwnhQ
0dXtN1agthQwjmVT2QOxAf9dEe6o8nMUcn44Gv2phrUfdI+cM7mGl+d4OD80pNM=
=ATj1
-----END PGP SIGNATURE-----