-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Two steps are required to cryptographically verify image integrity.

1. By verifying the integrity of this signature file, you can be sure that
   the checksums included in this file are valid.

    $ gpg --keyserver hkp://pool.sks-keyservers.net --recv-keys 0xA16EB94D
    $ gpg --list-keys 0xA16EB94D
      pub   2048R/A16EB94D 2008-08-15 [expires: 2023-08-12]
      uid   Turnkey Linux Release Key <release@turnkeylinux.com>

    $ gpg --verify turnkey-processmaker-14.0-jessie-amd64.ova.sig
      gpg: Good signature from "Turnkey Linux Release Key"

2. By calculating the image checksum and validating the hashed value is the
   same as listed below, you can be sure the image was not corrupted in
   transit or tampered with.

    $ md5sum turnkey-processmaker-14.0-jessie-amd64.ova
      214b65f60bf32683e84a3a3cb05752fb

    $ sha1sum turnkey-processmaker-14.0-jessie-amd64.ova
      3ac5ec5a96b1340444e73951ddcc84bd021d66af

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)

iQEcBAEBAgAGBQJWMJdZAAoJEIXCXpWhbrlNWzsIAOJIbXKJ0Pf3V0zWmN9epNdf
QDS6RcE6vbuJdHdWh68Hw2WX10pgaIWqnOM3NftnO5tA1o+jRRhBUZNeo6HY9n4C
HIb0vHbQu03GUPymmpRcYsjU/99JRRjdx4NLh0xJLK5Oa8zeAf90g8rL//QZbL1Y
bIdICZi8ut60FxqVEpf5zZN5eLsKv9hyITwlFFMeZqvn42gfPxRM5mEwysCDi6Lu
CzS28mG8S7FY2lzzn4M67F5d8/b0Y8FFSOOmoYYkCs5w8w712xtA48zFY1zlPQNH
NrBwHW2Ck+nKZ41asjjVtihMuALFBkx1dgpd/xjZXSz5D/WJwMNv9GVQtvEBQO4=
=lTjU
-----END PGP SIGNATURE-----