-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Two steps are required to cryptographically verify image integrity.

1. By verifying the integrity of this signature file, you can be sure that
   the checksums included in this file are valid.

    $ gpg --keyserver hkp://pool.sks-keyservers.net --recv-keys 0xA16EB94D
    $ gpg --list-keys 0xA16EB94D
      pub   2048R/A16EB94D 2008-08-15 [expires: 2023-08-12]
      uid   Turnkey Linux Release Key <release@turnkeylinux.com>

    $ gpg --verify turnkey-mongodb-14.0-jessie-amd64-xen.tar.bz2.sig
      gpg: Good signature from "Turnkey Linux Release Key"

2. By calculating the image checksum and validating the hashed value is the
   same as listed below, you can be sure the image was not corrupted in
   transit or tampered with.

    $ md5sum turnkey-mongodb-14.0-jessie-amd64-xen.tar.bz2
      07f7d1a746002ed8ec5e712881f62ab8

    $ sha1sum turnkey-mongodb-14.0-jessie-amd64-xen.tar.bz2
      2275ee494aa1a17ea96b3e1c80bc2e09603958c3

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)

iQEcBAEBAgAGBQJWXYG+AAoJEIXCXpWhbrlNYBkIAIqNJDEoXySYCy0jbaW7BXmO
WFIiDZkFdvd4eU7tIzoGlz90BM3Ik0MHNAG78kwnV0qKXEyrDCKR+4jSko+3ud7P
TiLLLgCoyA5LHkyTwDvdSDsbRsvUOsKux0+b53P9fK9CQc2ReAgyf0HXgNRH7PtC
1FH028McuZoWWOygvYzIrr+TVxIL4S8/3tuFhTNw396woRbmizM8k8pa5O5Jwgw3
tKn4qGOM0XQG3Xg5LnC8pYtLg+L+sivMiwWuTcxAqQepAo0wDTwH3s2vuMsaPipC
7c89Y4+TwuvtGnFMzeKTMG1fix836SSgeueBxEQy2SUg6+Pd9gW7YQJIUvazj/0=
=nwOw
-----END PGP SIGNATURE-----