-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Two steps are required to cryptographically verify image integrity.

1. By verifying the integrity of this signature file, you can be sure that
   the checksums included in this file are valid.

    $ gpg --keyserver hkp://pool.sks-keyservers.net --recv-keys 0xA16EB94D
    $ gpg --list-keys 0xA16EB94D
      pub   2048R/A16EB94D 2008-08-15 [expires: 2023-08-12]
      uid   Turnkey Linux Release Key <release@turnkeylinux.com>

    $ gpg --verify turnkey-projectpier-14.0-jessie-amd64-xen.tar.bz2.sig
      gpg: Good signature from "Turnkey Linux Release Key"

2. By calculating the image checksum and validating the hashed value is the
   same as listed below, you can be sure the image was not corrupted in
   transit or tampered with.

    $ md5sum turnkey-projectpier-14.0-jessie-amd64-xen.tar.bz2
      22866975c43bf2e8f3822e8743b219f1

    $ sha1sum turnkey-projectpier-14.0-jessie-amd64-xen.tar.bz2
      223ced2052a22788483fe745f10ad20586b80b1b

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)

iQEcBAEBAgAGBQJWMdiCAAoJEIXCXpWhbrlNUdIIAI2FKa/8WCQfq/zsx21oJkae
6EZyy+2hv3eAtafLdZ3111gY27XsrnPnP5Jc+dwul4gGWYpX4rLwuY8/xe2n5dnC
7zRC7glt14VYK7TN7DqYAIJagbkjnn8M3sKHMEuYjiUIYWId7McD1zenSB5fNQ9P
6Qx7v3KMXzpRwb38MdwegSIzMd8+ftBTPL20CNaMX5aKlTg8ZcDV3yIYH5xkt2zz
sK4LNawSgScI1bnxGdwYs9x+AWKIOCjQHLR65Qlwm4CU6656y8qXusl1RuaVCfci
YQ8rsAO1QIrvVx2vYVxxzKxFl90ExC8eCXG1ZqivYFYdLNgv/Ua7nHBxg6r3ZSU=
=+J5/
-----END PGP SIGNATURE-----