-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Two steps are required to cryptographically verify image integrity.

1. By verifying the integrity of this signature file, you can be sure that
   the checksums included in this file are valid.

    $ gpg --keyserver hkp://pool.sks-keyservers.net --recv-keys 0xA16EB94D
    $ gpg --list-keys 0xA16EB94D
      pub   2048R/A16EB94D 2008-08-15 [expires: 2023-08-12]
      uid   Turnkey Linux Release Key <release@turnkeylinux.com>

    $ gpg --verify turnkey-cakephp-14.1-jessie-amd64-vmdk.zip.sig
      gpg: Good signature from "Turnkey Linux Release Key"

2. By calculating the image checksum and validating the hashed value is the
   same as listed below, you can be sure the image was not corrupted in
   transit or tampered with.

    $ md5sum turnkey-cakephp-14.1-jessie-amd64-vmdk.zip
      7320cf546bc820d5a70c702be29f003a

    $ sha1sum turnkey-cakephp-14.1-jessie-amd64-vmdk.zip
      ecc5e19e5ffb2cc8414b99a8464094f3598abf5d

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)

iQEcBAEBAgAGBQJXDJnwAAoJEIXCXpWhbrlNOLQH/0odn2AtO1rCif83nx6xyWVK
X2LMsusRo3Nx85NCbb34VLCKuiXxOCVFfXuAhvDOSiCbbxJFUwsSbvCYjQve+vIz
94J62Xl6kqZqv84n4mo0dTcXf7oHLW4zGInMwhoXIbnwXfaY1WRJxMh5w1n2+Znv
L8QHC3wbkMk8dr72a6U7DWwdk8DZMmVJdSo6GS92r7mwJvOWpT0/TVvw/AvOBKlP
luWVrIyJ2FK9IEG7C3012TvO6KbI9tCSaoL3R8nM6J+kkW3evl9YFhRfABrjNKNU
puGQcK5hloOIJV1BoQOuktopKpWJHQj3xztLzIUx2PiUN0+MirjnxAUXX/9mcUc=
=Iier
-----END PGP SIGNATURE-----