-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Two steps are required to cryptographically verify image integrity.

1. By verifying the integrity of this signature file, you can be sure that
   the checksums included in this file are valid.

    $ gpg --keyserver hkp://pool.sks-keyservers.net --recv-keys 0xA16EB94D
    $ gpg --list-keys 0xA16EB94D
      pub   2048R/A16EB94D 2008-08-15 [expires: 2023-08-12]
      uid   Turnkey Linux Release Key <release@turnkeylinux.com>

    $ gpg --verify debian-8-turnkey-limesurvey_14.0-1_amd64.ova.sig
      gpg: Good signature from "Turnkey Linux Release Key"

2. By calculating the image checksum and validating the hashed value is the
   same as listed below, you can be sure the image was not corrupted in
   transit or tampered with.

    $ md5sum debian-8-turnkey-limesurvey_14.0-1_amd64.ova
      b4402071dc490e060fb81898c26e79d4

    $ sha1sum debian-8-turnkey-limesurvey_14.0-1_amd64.ova
      ed0979de1e5c66187e507c38958b656888e648a0

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)

iQEcBAEBAgAGBQJWObxTAAoJEIXCXpWhbrlNwKQIAOxUnydZbd4tjukn8c17ZtFL
jIz9EhibmFrAUpy9tS3hpPuvCN3EHPkLOwM1YM6CqY/+qlnMx6BphTnsbmP6RoK3
87F2DdHP6nkgjz5JsOfpT2gL0p43HRAYCt6YtgcoCi1GRG4eBpdX2DNNhR1oONXs
c4LeLKo2yjAicJalG6zxys9JvLWmGVtQcMfw3QypjrnyIlHRP6cAgk2E6BClROzJ
qPuNQu30h6S37LZ9Jxb7J0aRP2283vGLswV+RJAqV15HJuskM2UQ4GruISCocY7a
+IpHHhTnB+yHn7PURQAHAjx7THzIg7hb5BPRn5GtYKDq6DxWVwx9dPvrtzFSsac=
=rTTu
-----END PGP SIGNATURE-----