-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

To ensure the image has not been corrupted in transmit or tampered with,
perform the following two steps to cryptographically verify image integrity:

1. Verify the authenticity of this file by checking that it is signed with our
   GPG release key:

    $ curl  | gpg --import
    $ gpg --list-keys --with-fingerprint release-bullseye-images@turnkeylinux.org
      pub   rsa4096 2021-08-04 [SC] [expires: 2041-07-30]
            E10F 6567 0C8E BE42 ED0C  3A49 CCA5 1174 468F 9073
      uid           [ unknown] TurnKey GNU/Linux Bullseye Images (GPG signing key for TurnKey Linux Bullseye Images) <release-bullseye-images@turnkeylinux.org>
      sub   rsa4096 2021-08-04 [S] [expires: 2041-07-30]
      
    $ gpg --verify debian-11-turnkey-ghost_17.1-1_amd64.tar.gz.hash
      gpg: Signature made using RSA key ID E10F65670C8EBE42ED0C3A49CCA51174468F9073
      gpg: Good signature from "0"

2. Recalculate the image hash and make sure it matches your choice of hash below.

    $ sha256sum debian-11-turnkey-ghost_17.1-1_amd64.tar.gz
      fa7649096edac9c2308dafd50e137eda7d9fbd98546a385510290272f7e48eb5  debian-11-turnkey-ghost_17.1-1_amd64.tar.gz

    $ sha512sum debian-11-turnkey-ghost_17.1-1_amd64.tar.gz
      c51c8390bf19c39f217c877dfd3018cadee55d44dfa751361ee23817b5f53924860c91dccd14cc893c1565f6fd46cd661920774600f4671b41a3af36d8316b02  debian-11-turnkey-ghost_17.1-1_amd64.tar.gz

   Note, you can compare hashes automatically::

    $ sha256sum -c debian-11-turnkey-ghost_17.1-1_amd64.tar.gz.hash
      debian-11-turnkey-ghost_17.1-1_amd64.tar.gz: OK

    $ sha512sum -c debian-11-turnkey-ghost_17.1-1_amd64.tar.gz.hash
      debian-11-turnkey-ghost_17.1-1_amd64.tar.gz: OK

    Final note, when checking SHAs automatically, please ignore warning noting that some lines are improperly formatted.

-----BEGIN PGP SIGNATURE-----
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=S1SM
-----END PGP SIGNATURE-----