-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

To ensure the image has not been corrupted in transmit or tampered with,
perform the following two steps to cryptographically verify image integrity:

1. Verify the authenticity of this file by checking that it is signed with our
   GPG release key:

    $ curl  | gpg --import
    $ gpg --list-keys --with-fingerprint release-bullseye-images@turnkeylinux.org
      pub   rsa4096 2021-08-04 [SC] [expires: 2041-07-30]
            E10F 6567 0C8E BE42 ED0C  3A49 CCA5 1174 468F 9073
      uid           [ unknown] TurnKey GNU/Linux Bullseye Images (GPG signing key for TurnKey Linux Bullseye Images) <release-bullseye-images@turnkeylinux.org>
      sub   rsa4096 2021-08-04 [S] [expires: 2041-07-30]
      
    $ gpg --verify turnkey-opencart-17.0-bullseye-amd64.iso.hash
      gpg: Signature made using RSA key ID E10F65670C8EBE42ED0C3A49CCA51174468F9073
      gpg: Good signature from "0"

2. Recalculate the image hash and make sure it matches your choice of hash below.

    $ sha256sum turnkey-opencart-17.0-bullseye-amd64.iso
      274a9d8f42f03ab6c76dd7e5fcfa9261d83764ad702939d76c4821bb09766960  turnkey-opencart-17.0-bullseye-amd64.iso

    $ sha512sum turnkey-opencart-17.0-bullseye-amd64.iso
      ed48fa2db96c517d5ab25f0ba7d98e5c2ce11cec6d8c42df0f5675329de8688d5273f119e4574a419338a8a7dab606d3b4c87eb7b7b2218d4d187098fa04b06c  turnkey-opencart-17.0-bullseye-amd64.iso

   Note, you can compare hashes automatically::

    $ sha256sum -c turnkey-opencart-17.0-bullseye-amd64.iso.hash
      turnkey-opencart-17.0-bullseye-amd64.iso: OK

    $ sha512sum -c turnkey-opencart-17.0-bullseye-amd64.iso.hash
      turnkey-opencart-17.0-bullseye-amd64.iso: OK

    Final note, when checking SHAs automatically, please ignore warning noting that some lines are improperly formatted.

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEE3YP+u+JWuSop/BuCHkh6RjHW/rYFAmJlPIMACgkQHkh6RjHW
/rY72w/9GhLMgamg2NBQsrmKOJEkFKiDTaV3mpHDIUNW6m56PmMrQFsWJGqMQoTx
NZl5sdS2WyPhUM3exNKAu5q3rRypb2bQ+lB+d5EvDq1a8cx5bGrA76zFKpVxJH+g
3CD5WYAJxDSazT35+ePCgPCxeL3EUFHRq6JqUsTLTDilvd86AvmhG9YGEXSWiL3+
CFmC2NJwzxOIuoLfiikZPE6jo4XkGbmT7s1fojVgDdqZenXxT/yJG0CCaAYH8KN9
rRvyIqpLmwWeQ/O0dvJ4anu2szb2JiRM1XNMsbXRtTS4AMuP+KTbrVT6QzlkNnzT
k5tO8U8CPE5mYeQkrsxxqGihMCI7lwgd8tlKQnEVNxGRrB0NLt8+x11Awh23TNnZ
wv1F5FONjEuz01bmBoTjQ9N2mTzhbuKYc6pAx6lraGJnVSSkcTEw93k6U3ItidGP
gwvnchaO71mlrn51LjG172P2kYSnjq16zfdXC8Pjgkw794ksgOCTwmWJAJon+bZ4
tvwQi9vsGGhk0Ou+N4xeQi1ov64Q6JrsHfPMAYLbKb0RLgZOZhhdrKE4UB/sDDoE
qSAJdtfcmjclmtih2pdvJC3ZguD0bnk9cMBrkve80FaE69bf79It5g+8qejd4o6m
lwVp0ozCYlBK4bqOi38AO36BhFZ3eexMvlbP14ObS9axrc4TRI4=
=ZbEU
-----END PGP SIGNATURE-----