-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

To ensure the image has not been corrupted in transmit or tampered with,
perform the following two steps to cryptographically verify image integrity:

1. Verify the authenticity of this file by checking that it is signed with our
   GPG release key:

    $ curl  | gpg --import
    $ gpg --list-keys --with-fingerprint release-bullseye-images@turnkeylinux.org
      pub   rsa4096 2021-08-04 [SC] [expires: 2041-07-30]
            E10F 6567 0C8E BE42 ED0C  3A49 CCA5 1174 468F 9073
      uid           [ unknown] TurnKey GNU/Linux Bullseye Images (GPG signing key for TurnKey Linux Bullseye Images) <release-bullseye-images@turnkeylinux.org>
      sub   rsa4096 2021-08-04 [S] [expires: 2041-07-30]
      
    $ gpg --verify turnkey-syncthing-17.1-bullseye-amd64.iso.hash
      gpg: Signature made using RSA key ID E10F65670C8EBE42ED0C3A49CCA51174468F9073
      gpg: Good signature from "0"

2. Recalculate the image hash and make sure it matches your choice of hash below.

    $ sha256sum turnkey-syncthing-17.1-bullseye-amd64.iso
      295208527e1855eb3ece6854a4a8070ab2e9c23f49417d60923b8d8be6375977  turnkey-syncthing-17.1-bullseye-amd64.iso

    $ sha512sum turnkey-syncthing-17.1-bullseye-amd64.iso
      32640bd723a2062d9cb4c656d9255b705e465ba1a199715a68bdabe33ae3be090e9346a19f4a4a93842d3ff49a0a96e8910c23d3736bf0ca2db3ae292eae5218  turnkey-syncthing-17.1-bullseye-amd64.iso

   Note, you can compare hashes automatically::

    $ sha256sum -c turnkey-syncthing-17.1-bullseye-amd64.iso.hash
      turnkey-syncthing-17.1-bullseye-amd64.iso: OK

    $ sha512sum -c turnkey-syncthing-17.1-bullseye-amd64.iso.hash
      turnkey-syncthing-17.1-bullseye-amd64.iso: OK

    Final note, when checking SHAs automatically, please ignore warning noting that some lines are improperly formatted.

-----BEGIN PGP SIGNATURE-----
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=+MDU
-----END PGP SIGNATURE-----