-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Two steps are required to cryptographically verify image integrity.

1. By verifying the integrity of this signature file, you can be sure that
   the checksums included in this file are valid.

    $ gpg --keyserver hkp://pool.sks-keyservers.net --recv-keys 0xA16EB94D
    $ gpg --list-keys 0xA16EB94D
      pub   2048R/A16EB94D 2008-08-15 [expires: 2023-08-12]
      uid   Turnkey Linux Release Key <release@turnkeylinux.com>

    $ gpg --verify turnkey-simplemachines-14.0-jessie-amd64.iso.sig
      gpg: Good signature from "Turnkey Linux Release Key"

2. By calculating the image checksum and validating the hashed value is the
   same as listed below, you can be sure the image was not corrupted in
   transit or tampered with.

    $ md5sum turnkey-simplemachines-14.0-jessie-amd64.iso
      270f26e9c76669a49ea42d85b7a3b47e

    $ sha1sum turnkey-simplemachines-14.0-jessie-amd64.iso
      cb8d92d985be08fc8f076b00bb001ced112ff8f7

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)

iQEcBAEBAgAGBQJV7BrqAAoJEIXCXpWhbrlNHKYH+QFCymc0x6yU5VrGqjgygdFd
gADaVdM+Iea4uWhkaeFer3wr0Keq0xDKVUb9KEyGc5BEn6AddgEFRilEpivdQX4l
WD5bQu16zVxndcQAmxJNCpTY43cm+Oh9HN3Z+W/sxFHmFGcXdkgEI24mHfqMYm6r
+SCgPWVYJ8Qh5o4JMEJTXM2+fpCnsKbFE7JBoLqzl37NnEvm3pADzKKWesAjVDN5
cRl60xHrEharb9U/q2cGsQWA9k2UHfQuzWJEHvXYzxK4XsWZ3ejfTmd5hHXK3Src
5HAtjlfnyty59n2TlnKTDBWgUUQbrmKLcX1qDxxhxT9ax4LtCKSY48OnrxOpVM4=
=ChGq
-----END PGP SIGNATURE-----