-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Two steps are required to cryptographically verify image integrity.

1. By verifying the integrity of this signature file, you can be sure that
   the checksums included in this file are valid.

    $ gpg --keyserver hkp://pool.sks-keyservers.net --recv-keys 0xA16EB94D
    $ gpg --list-keys 0xA16EB94D
      pub   2048R/A16EB94D 2008-08-15 [expires: 2023-08-12]
      uid   Turnkey Linux Release Key <release@turnkeylinux.com>

    $ gpg --verify debian-8-turnkey-sahana-eden_14.1-1_amd64.ova.sig
      gpg: Good signature from "Turnkey Linux Release Key"

2. By calculating the image checksum and validating the hashed value is the
   same as listed below, you can be sure the image was not corrupted in
   transit or tampered with.

    $ md5sum debian-8-turnkey-sahana-eden_14.1-1_amd64.ova
      27a4c9f58989ffdb41b54a6f10b4b9ec

    $ sha1sum debian-8-turnkey-sahana-eden_14.1-1_amd64.ova
      b9e254d5c29e4e409678ea6772ed496b1f75f8bc

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)

iQEcBAEBAgAGBQJXDJnuAAoJEIXCXpWhbrlN/hwH/RDqNa4nDMsCwL7epNoPzNi0
q6G1SDpTGMnzF4nPN9pJBQp6E0t8nSSv4n4Du3g0u4UnknjjqIx3/ub8nQRtMX89
2IawhsG5g15T9PYd5Qz/YIly8W4Qnntv1by2Q2oU+of+ZR2BG+AIrvPdRTK2b7Ap
99SSYeJiZs9l0XiBPo4YzD8zcNohLhZbXm5/2gLVS6vhShLq+4ZLe1ZKgCnP584Y
jF43TDvkDLGqSWT0s0J89Cizt2TZ6uLdJZia6Th0/tSEaSx8VgXFsQ55q1RiiFmN
YbLi2g98/b9wiY65kHBa3wC27yBdsU9ClMPh5xe3QhArx9c0kDX/d0ZvKEXkelk=
=x0gH
-----END PGP SIGNATURE-----