-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Two steps are required to cryptographically verify image integrity.

1. By verifying the integrity of this signature file, you can be sure that
   the checksums included in this file are valid.

    $ gpg --keyserver hkp://pool.sks-keyservers.net --recv-keys 0xA16EB94D
    $ gpg --list-keys 0xA16EB94D
      pub   2048R/A16EB94D 2008-08-15 [expires: 2023-08-12]
      uid   Turnkey Linux Release Key <release@turnkeylinux.com>

    $ gpg --verify turnkey-core-14.0rc3-jessie-amd64.iso.sig
      gpg: Good signature from "Turnkey Linux Release Key"

2. By calculating the image checksum and validating the hashed value is the
   same as listed below, you can be sure the image was not corrupted in
   transit or tampered with.

    $ md5sum turnkey-core-14.0rc3-jessie-amd64.iso
      3d45cd7642bab942ef9b5cf0583d6a65

    $ sha1sum turnkey-core-14.0rc3-jessie-amd64.iso
      944a87d8774220e778b6b0e7efc447644c362885

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)

iQEcBAEBAgAGBQJV5sDuAAoJEIXCXpWhbrlN2ycH/RZvhrawaaIQ0+uYuYDdq9Lr
W3CCq0yxufVd/B5kvrdnRrU01JbVqmd9JFdkX3mKJxjsRvcs9tGw04wkQTZomAfX
7xfxrugZ26zxXhAPmSKMkJoa2DH/CuaKnV1lZkrGAgBYPqZ4E/ekO5gqGIElD798
W1jjKbvIwo2WVmmv2XjbGlX00o1T8IhWk/kq3yhvQmnF9rwg0M27Izdh6INUc4ZL
1va7pTy6ClQrrOUvuuWShTv6NM71iNUrLbHzce8haU0Y+ZSBNMW4RvvBFqZDu4Zw
LamwUrokd6RyIJuOah4r+ZHlPIOWb8xGmupc/P/Cf7CrZa3JcoBZ5xgYC8ygPNg=
=Hgmg
-----END PGP SIGNATURE-----