-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

To ensure the image has not been corrupted in transmit or tampered with,
perform the following two steps to cryptographically verify image integrity:

1. Verify the authenticity of this file by checking that it is signed with our
   GPG release key:

    $ curl  | gpg --import
    $ gpg --list-keys --with-fingerprint release-bullseye-images@turnkeylinux.org
      pub   rsa4096 2021-08-04 [SC] [expires: 2041-07-30]
            E10F 6567 0C8E BE42 ED0C  3A49 CCA5 1174 468F 9073
      uid           [ unknown] TurnKey GNU/Linux Bullseye Images (GPG signing key for TurnKey Linux Bullseye Images) <release-bullseye-images@turnkeylinux.org>
      sub   rsa4096 2021-08-04 [S] [expires: 2041-07-30]
      
    $ gpg --verify debian-11-turnkey-espocrm_17.1-1_amd64.tar.gz.hash
      gpg: Signature made using RSA key ID E10F65670C8EBE42ED0C3A49CCA51174468F9073
      gpg: Good signature from "0"

2. Recalculate the image hash and make sure it matches your choice of hash below.

    $ sha256sum debian-11-turnkey-espocrm_17.1-1_amd64.tar.gz
      ff4db42b07a2ce079ae700980f2d55d1eae14e655cbe0304862110c506703f67  debian-11-turnkey-espocrm_17.1-1_amd64.tar.gz

    $ sha512sum debian-11-turnkey-espocrm_17.1-1_amd64.tar.gz
      00763f34ecc7da776d81a73801006e16be702303c7a2491fbc845b4999b8ac3354e1d9a47c1434fac963d917f7321853da409bee94841d3265f4507ecbea719a  debian-11-turnkey-espocrm_17.1-1_amd64.tar.gz

   Note, you can compare hashes automatically::

    $ sha256sum -c debian-11-turnkey-espocrm_17.1-1_amd64.tar.gz.hash
      debian-11-turnkey-espocrm_17.1-1_amd64.tar.gz: OK

    $ sha512sum -c debian-11-turnkey-espocrm_17.1-1_amd64.tar.gz.hash
      debian-11-turnkey-espocrm_17.1-1_amd64.tar.gz: OK

    Final note, when checking SHAs automatically, please ignore warning noting that some lines are improperly formatted.

-----BEGIN PGP SIGNATURE-----
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=7p5H
-----END PGP SIGNATURE-----