-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Two steps are required to cryptographically verify image integrity.

1. By verifying the integrity of this signature file, you can be sure that
   the checksums included in this file are valid.

    $ gpg --keyserver hkp://pool.sks-keyservers.net --recv-keys 0xA16EB94D
    $ gpg --list-keys 0xA16EB94D
      pub   2048R/A16EB94D 2008-08-15 [expires: 2023-08-12]
      uid   Turnkey Linux Release Key <release@turnkeylinux.com>

    $ gpg --verify turnkey-mahara-14.1-jessie-i386.iso.sig
      gpg: Good signature from "Turnkey Linux Release Key"

2. By calculating the image checksum and validating the hashed value is the
   same as listed below, you can be sure the image was not corrupted in
   transit or tampered with.

    $ md5sum turnkey-mahara-14.1-jessie-i386.iso
      9feaef939b77efa29e513951d9fbf3bf

    $ sha1sum turnkey-mahara-14.1-jessie-i386.iso
      f28c47ebe0b1af58b0a3bd31c4dc1a8a7b9ba4a6

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)

iQEcBAEBAgAGBQJXCkPyAAoJEIXCXpWhbrlNnfUIAJ+QR6srRumgyz8W952ZNkD5
4Yq24T+ZlAdgum5tfvKsfJG/GyCjbLw23H0HAGqdtJU94JzM2duwAljIvz7hX7S4
MZR0I2hmBySXBsJoUNwXZr9K4wpWpyzIPiNCS1DfpbMM2fszJZ6jnolwg8HUa+xh
kyGFIKWnmsav1KXjB6gHJEbwPZB8AHqRTD1i/nf24NBNyZshwaI8QfAyPIMg+wOI
QobaJttvQVpEc0BNqgksGxsW7voi9gO0sWP8HnsFdGC3HZal42G5+kf2Yq1mtqQX
pb4bcw4VfgqTdNDr01KU/6dODHxN3lBFzDx2/3FmAMrzDaJurwv+pOui0EGQdeg=
=Kbdm
-----END PGP SIGNATURE-----