-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

To ensure the image has not been corrupted in transmit or tampered with,
perform the following two steps to cryptographically verify image integrity:

1. Verify the authenticity of this file by checking that it is signed with our
   GPG release key:

    $ curl  | gpg --import
    $ gpg --list-keys --with-fingerprint release-bullseye-images@turnkeylinux.org
      pub   rsa4096 2021-08-04 [SC] [expires: 2041-07-30]
            E10F 6567 0C8E BE42 ED0C  3A49 CCA5 1174 468F 9073
      uid           [ unknown] TurnKey GNU/Linux Bullseye Images (GPG signing key for TurnKey Linux Bullseye Images) <release-bullseye-images@turnkeylinux.org>
      sub   rsa4096 2021-08-04 [S] [expires: 2041-07-30]
      
    $ gpg --verify turnkey-drupal9-17.1-bullseye-amd64.iso.hash
      gpg: Signature made using RSA key ID E10F65670C8EBE42ED0C3A49CCA51174468F9073
      gpg: Good signature from "0"

2. Recalculate the image hash and make sure it matches your choice of hash below.

    $ sha256sum turnkey-drupal9-17.1-bullseye-amd64.iso
      27bbb58d675f9cef8fd5884357fdca8c00ef4a65c377e6804ff73982d9f9cc39  turnkey-drupal9-17.1-bullseye-amd64.iso

    $ sha512sum turnkey-drupal9-17.1-bullseye-amd64.iso
      1ff8a6376362bc73e32734ef7a9945a6dbdba46bf5f42696cecd3d385fc247789c1c7ac120cfe0bacaf76667a259eb6b398157182f3dbaf1d9fd68d6ee2e500b  turnkey-drupal9-17.1-bullseye-amd64.iso

   Note, you can compare hashes automatically::

    $ sha256sum -c turnkey-drupal9-17.1-bullseye-amd64.iso.hash
      turnkey-drupal9-17.1-bullseye-amd64.iso: OK

    $ sha512sum -c turnkey-drupal9-17.1-bullseye-amd64.iso.hash
      turnkey-drupal9-17.1-bullseye-amd64.iso: OK

    Final note, when checking SHAs automatically, please ignore warning noting that some lines are improperly formatted.

-----BEGIN PGP SIGNATURE-----
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=pKD1
-----END PGP SIGNATURE-----