-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Two steps are required to cryptographically verify image integrity.

1. By verifying the integrity of this signature file, you can be sure that
   the checksums included in this file are valid.

    $ gpg --keyserver hkp://pool.sks-keyservers.net --recv-keys 0xA16EB94D
    $ gpg --list-keys 0xA16EB94D
      pub   2048R/A16EB94D 2008-08-15 [expires: 2023-08-12]
      uid   Turnkey Linux Release Key <release@turnkeylinux.com>

    $ gpg --verify turnkey-phreebooks-14.1-jessie-amd64.ova.sig
      gpg: Good signature from "Turnkey Linux Release Key"

2. By calculating the image checksum and validating the hashed value is the
   same as listed below, you can be sure the image was not corrupted in
   transit or tampered with.

    $ md5sum turnkey-phreebooks-14.1-jessie-amd64.ova
      c23fccb725fe3fe327a29eeddf0870f3

    $ sha1sum turnkey-phreebooks-14.1-jessie-amd64.ova
      bf73cbd5d57aa1270c8e7c0c7e4da156957b0862

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)

iQEcBAEBAgAGBQJXDJn4AAoJEIXCXpWhbrlN894H/jx9g/I+OB/zvCTeo4wpAsvQ
ug2RPFeIST0UPSmZzniBg3IcTMRbt6nCS5xdzEZhEc8ZfpSoMiEr1YULHzC1Ik70
odLUrwlIKWHk12+WhichuxNfR+fkEu1Ig6Ssi5+zted5/uGmYFsPFjAdt6Q33frI
L8rQ+tB9VEgIBtMpIuS0I9w2GOIdIvlRCito8QLW00I3fRrND9f7G1FEQusTxQ3z
teUpO6m4Et2pkG+XMWp/bqxMjWofkQcwD09SaWX1qZSA8/MfZH9hLIiNHX72xmGV
IcDelK78mnABYo9OOZ0xxZO4+ynjG66f/RekwiTNSk0S96/Zlk6LOgPIvGChsGw=
=EjhE
-----END PGP SIGNATURE-----