-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Two steps are required to cryptographically verify image integrity.

1. By verifying the integrity of this signature file, you can be sure that
   the checksums included in this file are valid.

    $ gpg --keyserver hkp://pool.sks-keyservers.net --recv-keys 0xA16EB94D
    $ gpg --list-keys 0xA16EB94D
      pub   2048R/A16EB94D 2008-08-15 [expires: 2023-08-12]
      uid   Turnkey Linux Release Key <release@turnkeylinux.com>

    $ gpg --verify turnkey-lamp-14.1-jessie-amd64.ova.sig
      gpg: Good signature from "Turnkey Linux Release Key"

2. By calculating the image checksum and validating the hashed value is the
   same as listed below, you can be sure the image was not corrupted in
   transit or tampered with.

    $ md5sum turnkey-lamp-14.1-jessie-amd64.ova
      287067da9a56c56e2130063eb7956c71

    $ sha1sum turnkey-lamp-14.1-jessie-amd64.ova
      14e54814854cdaff4c56b32c7b87a5e7f40ba4f1

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)

iQEcBAEBAgAGBQJXDJn0AAoJEIXCXpWhbrlNOrgIANt2vzbfMrlUGWVMF/3QG3CE
UbH5nTnwO1MNMIhWQ5XZ8r5u00Ybzv1fPVJU5SPRcgIPQ5T0f7Fwu8Z2+Cw8n2Cb
OxADChlkniHHT1HQPrG8y6XC+lgHQNR1AD/W9wBsx6hvJcfg4+owZ2X6VLCTyzry
KtPxhH8hMxG2RneNgUqyvsRfQGe9e4YwSnaQhUu5Ozbiy1OcGmkMQ4GFwNmXIz57
NjPN3i7io7Of8m5nGVefY70UGNAz9s89bHGgM8WCXnR9DvqivkasYOY9A2YGNbWm
WGwa2aZLsCChbVHI18kB8mUPIocaB/xRL5Ko+fsAnNWJWcbgPAaRg0Fp9i2BQ+I=
=Minq
-----END PGP SIGNATURE-----