-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Two steps are required to cryptographically verify image integrity.

1. By verifying the integrity of this signature file, you can be sure that
   the checksums included in this file are valid.

    $ gpg --keyserver hkp://pool.sks-keyservers.net --recv-keys 0xA16EB94D
    $ gpg --list-keys 0xA16EB94D
      pub   2048R/A16EB94D 2008-08-15 [expires: 2023-08-12]
      uid   Turnkey Linux Release Key <release@turnkeylinux.com>

    $ gpg --verify turnkey-simpleinvoices-14.0-jessie-amd64-vmdk.zip.sig
      gpg: Good signature from "Turnkey Linux Release Key"

2. By calculating the image checksum and validating the hashed value is the
   same as listed below, you can be sure the image was not corrupted in
   transit or tampered with.

    $ md5sum turnkey-simpleinvoices-14.0-jessie-amd64-vmdk.zip
      28db3806f68a2180fe3b2deaa3e396f9

    $ sha1sum turnkey-simpleinvoices-14.0-jessie-amd64-vmdk.zip
      fa14b328f170cec6b6f2bfb2e5e455219ed26aa6

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)

iQEcBAEBAgAGBQJWMJdZAAoJEIXCXpWhbrlNHeUH/R8qqhJEx5oAQDNPsTsG9iO2
081HCEQLza9a7P9qFN9HUHBvWk/25g4RUC/uRaeGxCBz0kI4iI6vfFEeW5uMtstq
+qnwPcISHp1gnmc8IOsBuYAFKZVBatsqNCks1ks9z2Qh5jFeLbDAxC73dl//sGfn
T36QUJr9hXvqZM/nuHLohy1aatbFiez7iih5q4e9tZ3r8hkgnnEGZmBK7YOONlLT
LsrKzTc3uJDW6XUHHosZFAiY/c/s84F++BFPD6SmxOubDVOw3a03MlQEnx9Blpd1
BI4aPXKvVhb9DX0Yj1IwGLLklAQB+8H7mb7hUT4BNw7DZ2RKJ8/coZHB8oZeB/4=
=YgFt
-----END PGP SIGNATURE-----