-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Two steps are required to cryptographically verify image integrity.

1. By verifying the integrity of this signature file, you can be sure that
   the checksums included in this file are valid.

    $ gpg --keyserver hkp://pool.sks-keyservers.net --recv-keys 0xA16EB94D
    $ gpg --list-keys 0xA16EB94D
      pub   2048R/A16EB94D 2008-08-15 [expires: 2023-08-12]
      uid   Turnkey Linux Release Key <release@turnkeylinux.com>

    $ gpg --verify turnkey-yiiframework-14.1-jessie-amd64.iso.sig
      gpg: Good signature from "Turnkey Linux Release Key"

2. By calculating the image checksum and validating the hashed value is the
   same as listed below, you can be sure the image was not corrupted in
   transit or tampered with.

    $ md5sum turnkey-yiiframework-14.1-jessie-amd64.iso
      426c6f2c224dc9952f3eee75d359e4fb

    $ sha1sum turnkey-yiiframework-14.1-jessie-amd64.iso
      5ff98d9e657e524405e41739a860e27cbbd11141

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)

iQEcBAEBAgAGBQJXCkP1AAoJEIXCXpWhbrlNixUH/0eWRK7DIC9zV+3J3zqNIDv7
lj3ivzRE1M0U0CYCPijm6nqjxlAnGDNOR6nJHCcFwBerPimhkJp87Hx6Psu7Zd2d
BoFt1Umn0tHzzKQjjzsJ64POsE89QATP1RoJiMsGZiOE3sVC8BDzrCAwilBq4Q1g
jWIIYYF7KbOeMDzCK5N6i5wnNwosVjqDXlv2wqTLXLXPExZBxyWyThZI2LlXawds
seFIn9WZgakw9ZWuVz0CHrWE7d+8qvX847mHzHfuZ/dglh1Q9Gsfps2IItAGTT4I
a0MK+bzx4MgHRRd2eEscJnQcV6zkta8IO6B7YmUwuG2/LVPbicT7eL6GATYthBY=
=RaIr
-----END PGP SIGNATURE-----