-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

To ensure the image has not been corrupted in transmit or tampered with,
perform the following two steps to cryptographically verify image integrity:

1. Verify the authenticity of this file by checking that it is signed with our
   GPG release key:

    $ curl  | gpg --import
    $ gpg --list-keys --with-fingerprint release-bullseye-images@turnkeylinux.org
      pub   rsa4096 2021-08-04 [SC] [expires: 2041-07-30]
            E10F 6567 0C8E BE42 ED0C  3A49 CCA5 1174 468F 9073
      uid           [ unknown] TurnKey GNU/Linux Bullseye Images (GPG signing key for TurnKey Linux Bullseye Images) <release-bullseye-images@turnkeylinux.org>
      sub   rsa4096 2021-08-04 [S] [expires: 2041-07-30]
      
    $ gpg --verify turnkey-xoops-17.0-bullseye-amd64.iso.hash
      gpg: Signature made using RSA key ID E10F65670C8EBE42ED0C3A49CCA51174468F9073
      gpg: Good signature from "0"

2. Recalculate the image hash and make sure it matches your choice of hash below.

    $ sha256sum turnkey-xoops-17.0-bullseye-amd64.iso
      61074b62194805840e757e5956e377a17258d4b8aacd0fdeb229a7c7607f106c  turnkey-xoops-17.0-bullseye-amd64.iso

    $ sha512sum turnkey-xoops-17.0-bullseye-amd64.iso
      7dd1d5e38538e8f7d21538bd5e0cf1ccf98faeadfa5ddbe68917c65c02896bf60e872fe53ac314c7f0d49845cf7ef2c2a91c6ef16d46dec302acc244cdc5b41c  turnkey-xoops-17.0-bullseye-amd64.iso

   Note, you can compare hashes automatically::

    $ sha256sum -c turnkey-xoops-17.0-bullseye-amd64.iso.hash
      turnkey-xoops-17.0-bullseye-amd64.iso: OK

    $ sha512sum -c turnkey-xoops-17.0-bullseye-amd64.iso.hash
      turnkey-xoops-17.0-bullseye-amd64.iso: OK

    Final note, when checking SHAs automatically, please ignore warning noting that some lines are improperly formatted.

-----BEGIN PGP SIGNATURE-----
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=NjPA
-----END PGP SIGNATURE-----