-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Two steps are required to cryptographically verify image integrity.

1. By verifying the integrity of this signature file, you can be sure that
   the checksums included in this file are valid.

    $ gpg --keyserver hkp://pool.sks-keyservers.net --recv-keys 0xA16EB94D
    $ gpg --list-keys 0xA16EB94D
      pub   2048R/A16EB94D 2008-08-15 [expires: 2023-08-12]
      uid   Turnkey Linux Release Key <release@turnkeylinux.com>

    $ gpg --verify turnkey-wordpress-14.0-jessie-amd64.ova.sig
      gpg: Good signature from "Turnkey Linux Release Key"

2. By calculating the image checksum and validating the hashed value is the
   same as listed below, you can be sure the image was not corrupted in
   transit or tampered with.

    $ md5sum turnkey-wordpress-14.0-jessie-amd64.ova
      dea93894c312bea448192760c9596cf9

    $ sha1sum turnkey-wordpress-14.0-jessie-amd64.ova
      d2e868df59c641918346e3fc703b9e2f021bd772

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)

iQEcBAEBAgAGBQJWMJdaAAoJEIXCXpWhbrlNLa8H/3ro96rT1HC8t9G65jqOEvNO
wMyKBrGEn3WDNyq1Zk5jvSX+JjRFuSAjA5Mu8w1bbq/9g0ml94tcl50H7+B1R2a2
XwT81OFtAVJftiwVrgwU85mB1Dyn2+NnWhPg6AMUFHwaV0YaTOf9C2CiYOEMlcaS
MO8bGrJ/ssFPHjI5RQ+4feYvoI01mLFjBU7lN8m5ojFw4OGdMIgP3xQRxWfHDgPO
UFuAPKSLF8Qhoj680ckVmH13QwSNdH4j+jIjhhjjKnxSdNWo8wxypL1B/qYlmoPq
V2fXNWPl6RmhwIZDSP91hlcYKvfPyZ3252wrowYpYKTWy11252NyPw9pahu/DAw=
=XH1o
-----END PGP SIGNATURE-----