-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Two steps are required to cryptographically verify image integrity.

1. By verifying the integrity of this signature file, you can be sure that
   the checksums included in this file are valid.

    $ gpg --keyserver hkp://pool.sks-keyservers.net --recv-keys 0xA16EB94D
    $ gpg --list-keys 0xA16EB94D
      pub   2048R/A16EB94D 2008-08-15 [expires: 2023-08-12]
      uid   Turnkey Linux Release Key <release@turnkeylinux.com>

    $ gpg --verify turnkey-web2py-14.1-jessie-i386.iso.sig
      gpg: Good signature from "Turnkey Linux Release Key"

2. By calculating the image checksum and validating the hashed value is the
   same as listed below, you can be sure the image was not corrupted in
   transit or tampered with.

    $ md5sum turnkey-web2py-14.1-jessie-i386.iso
      aab6a41a84a7fbf7152c2a6c7ca68343

    $ sha1sum turnkey-web2py-14.1-jessie-i386.iso
      fed743df6cfeec9fd64a4e62543a92deeec12bcd

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)

iQEcBAEBAgAGBQJXCkP1AAoJEIXCXpWhbrlNvZUH/2xdAs4m0miS72OwU8b7aJJb
btS7IjDEpEiXv56kkT73Nlkxp4S44YC0mV1toSMwhU1BHD9oZyQPMc0TQHNNN6oi
9hy1ozSaCFJVoUUYDPNET65NpbFX7wp59sDk0mEk2mZ9PdLjzbPqNYPc23Dxnqsd
KPc8OxzffMgz+cHuoaANz5RFM8i8RkAPko/w+A8r9j1wcHBwzXR2gzaA3jSd1JwO
+s8hTs6f2Ryni75G1SQdzhX+fgAy/3MZagsvKA1G5i4tQEtUtDxjfl/81Q0lrE5b
q7FHNpj1JQ0Y8gJvdYMaxDAZMZrCOg2qPQ6q2YbjvpmdHWoPX2zY8k3wtlVBV4c=
=WMmJ
-----END PGP SIGNATURE-----