-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Two steps are required to cryptographically verify image integrity.

1. By verifying the integrity of this signature file, you can be sure that
   the checksums included in this file are valid.

    $ gpg --keyserver hkp://pool.sks-keyservers.net --recv-keys 0xA16EB94D
    $ gpg --list-keys 0xA16EB94D
      pub   2048R/A16EB94D 2008-08-15 [expires: 2023-08-12]
      uid   Turnkey Linux Release Key <release@turnkeylinux.com>

    $ gpg --verify turnkey-nginx-php-fastcgi-14.1-jessie-amd64.iso.sig
      gpg: Good signature from "Turnkey Linux Release Key"

2. By calculating the image checksum and validating the hashed value is the
   same as listed below, you can be sure the image was not corrupted in
   transit or tampered with.

    $ md5sum turnkey-nginx-php-fastcgi-14.1-jessie-amd64.iso
      3d74ce80b6c3148d3982c2b6e7f12bd4

    $ sha1sum turnkey-nginx-php-fastcgi-14.1-jessie-amd64.iso
      bb7287f3eda4de5da1bc0845e1da7696923e0ce3

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)

iQEcBAEBAgAGBQJXCkPzAAoJEIXCXpWhbrlN0lIIAIlpBawOLQEMybxthZXXtTMG
3OOWiP+AhQiwK/F4CDSX62ASFAqYSawYCp95xLdtdkBnnC5CeqWKDJMw9yMEDSF9
UXFI9jaTXbChHJkCIcZKuwLyNlqUygPDtkdIi4a8JmPj8m/klM/D5L8sJiKGcAvA
bqCv/JiUWWyibmm7iZWgIs7ZnZiY2kOILWSOyiX8aGAK2mjbRtDLUxrLTRomNrpP
8LphYY1icbAvgUTuZn2nT16Se5p86RAORq4v2zcBE5GmpQ9OGkkORr7kRVRadeCy
KPUEYWApnWJI7Xj5Q1n1Nr3wpvnQZ+k2IaxmL6tcyFOW8VL/pqjVXF1u8dzmM8k=
=YuuF
-----END PGP SIGNATURE-----