-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

To ensure the image has not been corrupted in transmit or tampered with,
perform the following two steps to cryptographically verify image integrity:

1. Verify the authenticity of this file by checking that it is signed with our
   GPG release key:

    $ curl  | gpg --import
    $ gpg --list-keys --with-fingerprint release-bullseye-images@turnkeylinux.org
      pub   rsa4096 2021-08-04 [SC] [expires: 2041-07-30]
            E10F 6567 0C8E BE42 ED0C  3A49 CCA5 1174 468F 9073
      uid           [ unknown] TurnKey GNU/Linux Bullseye Images (GPG signing key for TurnKey Linux Bullseye Images) <release-bullseye-images@turnkeylinux.org>
      sub   rsa4096 2021-08-04 [S] [expires: 2041-07-30]
      
    $ gpg --verify debian-11-turnkey-invoice-ninja_17.3-1_amd64.tar.gz.hash
      gpg: Signature made using RSA key ID E10F65670C8EBE42ED0C3A49CCA51174468F9073
      gpg: Good signature from "0"

2. Recalculate the image hash and make sure it matches your choice of hash below.

    $ sha256sum debian-11-turnkey-invoice-ninja_17.3-1_amd64.tar.gz
      809a216e25c176e56a447fed8d3ecafbac98ee0428c8c3f7f03339754416f834  debian-11-turnkey-invoice-ninja_17.3-1_amd64.tar.gz

    $ sha512sum debian-11-turnkey-invoice-ninja_17.3-1_amd64.tar.gz
      fbed10e9a5fd468e40f2ad2c8f17a5be3a8589719fab7a3053d19b0f1f5e4ad11a364d0561a5ef7e9a83263f86f724c3e0eeca2babb8ea586e12f2c3663707bb  debian-11-turnkey-invoice-ninja_17.3-1_amd64.tar.gz

   Note, you can compare hashes automatically::

    $ sha256sum -c debian-11-turnkey-invoice-ninja_17.3-1_amd64.tar.gz.hash
      debian-11-turnkey-invoice-ninja_17.3-1_amd64.tar.gz: OK

    $ sha512sum -c debian-11-turnkey-invoice-ninja_17.3-1_amd64.tar.gz.hash
      debian-11-turnkey-invoice-ninja_17.3-1_amd64.tar.gz: OK

    Final note, when checking SHAs automatically, please ignore warning noting that some lines are improperly formatted.

-----BEGIN PGP SIGNATURE-----
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=Bbhg
-----END PGP SIGNATURE-----