-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Two steps are required to cryptographically verify image integrity.

1. By verifying the integrity of this signature file, you can be sure that
   the checksums included in this file are valid.

    $ gpg --keyserver hkp://pool.sks-keyservers.net --recv-keys 0xA16EB94D
    $ gpg --list-keys 0xA16EB94D
      pub   2048R/A16EB94D 2008-08-15 [expires: 2023-08-12]
      uid   Turnkey Linux Release Key <release@turnkeylinux.com>

    $ gpg --verify turnkey-openvpn-14.1-jessie-amd64.ova.sig
      gpg: Good signature from "Turnkey Linux Release Key"

2. By calculating the image checksum and validating the hashed value is the
   same as listed below, you can be sure the image was not corrupted in
   transit or tampered with.

    $ md5sum turnkey-openvpn-14.1-jessie-amd64.ova
      67fc4cdf0e684e24186fcacaaa40268d

    $ sha1sum turnkey-openvpn-14.1-jessie-amd64.ova
      bb9e819b9601b4db3497819907ea91b12af1b707

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)

iQEcBAEBAgAGBQJXDJn3AAoJEIXCXpWhbrlN29MIAOtISrdUGNFk7zxBqxrGXjoj
Qs1yzvWM8KihO7tZ4ZTPUAUqQk9SPzPBtp4Han8U3Uqghpz1a5DrwZpotOOo8y0J
m2Ws4Sjv1Q9SOce3l48Rbi0ihoY0IzEKIb7Hy5iccPeLnaN4A9cYYUfwxer3h77u
8rZbr5BphCz0Y13/XhstGqmFSI4GfrdRGNre47rGTgEC9MhxoAHAqpqAY8Ubb0yO
q60DXrQYDG0qFtRZs4QsauIpD0TIj+QHzkgA5M5OCcDnzerC0eufNtyKd0HZNgeZ
n9xYljZ3Ud584+BxdxF7A4Un7JdjeantJtUkpu5SnGsnxkF7eSpbLavW+nSefb4=
=nKu5
-----END PGP SIGNATURE-----