-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

To ensure the image has not been corrupted in transmit or tampered with,
perform the following two steps to cryptographically verify image integrity:

1. Verify the authenticity of this file by checking that it is signed with our
   GPG release key:

    $ curl  | gpg --import
    $ gpg --list-keys --with-fingerprint release-bullseye-images@turnkeylinux.org
      pub   rsa4096 2021-08-04 [SC] [expires: 2041-07-30]
            E10F 6567 0C8E BE42 ED0C  3A49 CCA5 1174 468F 9073
      uid           [ unknown] TurnKey GNU/Linux Bullseye Images (GPG signing key for TurnKey Linux Bullseye Images) <release-bullseye-images@turnkeylinux.org>
      sub   rsa4096 2021-08-04 [S] [expires: 2041-07-30]
      
    $ gpg --verify debian-11-turnkey-mahara_17.1-1_amd64.tar.gz.hash
      gpg: Signature made using RSA key ID E10F65670C8EBE42ED0C3A49CCA51174468F9073
      gpg: Good signature from "0"

2. Recalculate the image hash and make sure it matches your choice of hash below.

    $ sha256sum debian-11-turnkey-mahara_17.1-1_amd64.tar.gz
      9314b6b4835698c422e2b8cc4103f29085355768b300e1ebebdad3ee1602740f  debian-11-turnkey-mahara_17.1-1_amd64.tar.gz

    $ sha512sum debian-11-turnkey-mahara_17.1-1_amd64.tar.gz
      fdc54cc105ad8e5e3e5345246160461dc4895f11f79f041f1044a2202aad46c2cd74c63a760ac8ec7b476436bcc0749e6f0202fa50ded9e6b05b393e45e0ff17  debian-11-turnkey-mahara_17.1-1_amd64.tar.gz

   Note, you can compare hashes automatically::

    $ sha256sum -c debian-11-turnkey-mahara_17.1-1_amd64.tar.gz.hash
      debian-11-turnkey-mahara_17.1-1_amd64.tar.gz: OK

    $ sha512sum -c debian-11-turnkey-mahara_17.1-1_amd64.tar.gz.hash
      debian-11-turnkey-mahara_17.1-1_amd64.tar.gz: OK

    Final note, when checking SHAs automatically, please ignore warning noting that some lines are improperly formatted.

-----BEGIN PGP SIGNATURE-----
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=zxJs
-----END PGP SIGNATURE-----