-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Two steps are required to cryptographically verify image integrity.

1. By verifying the integrity of this signature file, you can be sure that
   the checksums included in this file are valid.

    $ gpg --keyserver hkp://pool.sks-keyservers.net --recv-keys 0xA16EB94D
    $ gpg --list-keys 0xA16EB94D
      pub   2048R/A16EB94D 2008-08-15 [expires: 2023-08-12]
      uid   Turnkey Linux Release Key <release@turnkeylinux.com>

    $ gpg --verify turnkey-pligg-14.0-jessie-amd64.ova.sig
      gpg: Good signature from "Turnkey Linux Release Key"

2. By calculating the image checksum and validating the hashed value is the
   same as listed below, you can be sure the image was not corrupted in
   transit or tampered with.

    $ md5sum turnkey-pligg-14.0-jessie-amd64.ova
      2f20b0bb1bebef2859479c8d4959df8e

    $ sha1sum turnkey-pligg-14.0-jessie-amd64.ova
      74003c1f1b7619236ae226b18dba2d10105ac3d0

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)

iQEcBAEBAgAGBQJWMJdYAAoJEIXCXpWhbrlNh3sIAJn86q9KWWYRAmUUFfArwl0v
XTkVxrREm/TNNJgrTiFoNU6nhXkWUZcUQkPVylumwY5Gx1Uy5tfitJBYVJE4G5k3
KZHkAj82GEEI+kHw17WsS1UKFle7J9fqh88/6Q22Zl2GUU91WJ7g1DuIXuvIj9Ql
Qe5XMPTewLJFd+1sbbfL2P7FNoz+FfR1e7NIa4SMbLaCkihBRMw7S8/0eOYY0/ni
tfKZdmNpC4kBPKqDnFfvbs3jCiOFLQjOXW2OiQEgNPSyqi8l9K0jBmTSwaYM1F9A
rLfRolC+0hEYFVu4K4WAYR7FkS2+QIvpZAhO0YLnBJ+NGOG1sBUrYmQhjdFTnIU=
=7t0l
-----END PGP SIGNATURE-----