-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

To ensure the image has not been corrupted in transmit or tampered with,
perform the following two steps to cryptographically verify image integrity:

1. Verify the authenticity of this file by checking that it is signed with our
   GPG release key:

    $ curl  | gpg --import
    $ gpg --list-keys --with-fingerprint release-bullseye-images@turnkeylinux.org
      pub   rsa4096 2021-08-04 [SC] [expires: 2041-07-30]
            E10F 6567 0C8E BE42 ED0C  3A49 CCA5 1174 468F 9073
      uid           [ unknown] TurnKey GNU/Linux Bullseye Images (GPG signing key for TurnKey Linux Bullseye Images) <release-bullseye-images@turnkeylinux.org>
      sub   rsa4096 2021-08-04 [S] [expires: 2041-07-30]
      
    $ gpg --verify turnkey-tkldev-17.1-bullseye-amd64.iso.hash
      gpg: Signature made using RSA key ID E10F65670C8EBE42ED0C3A49CCA51174468F9073
      gpg: Good signature from "0"

2. Recalculate the image hash and make sure it matches your choice of hash below.

    $ sha256sum turnkey-tkldev-17.1-bullseye-amd64.iso
      1a2d40e2983bd04f393fb949a94f6a58d65d201e66ffb152dfb5b8d62ee4d98e  turnkey-tkldev-17.1-bullseye-amd64.iso

    $ sha512sum turnkey-tkldev-17.1-bullseye-amd64.iso
      452208235bfa340d0f369ae92e6f694177c2b3ae054ae7df1203d3bf0bcfe00e40872316634a1ce5dd299d48daa07d83ecd2daff54fed99ee2ed8ab91d48287b  turnkey-tkldev-17.1-bullseye-amd64.iso

   Note, you can compare hashes automatically::

    $ sha256sum -c turnkey-tkldev-17.1-bullseye-amd64.iso.hash
      turnkey-tkldev-17.1-bullseye-amd64.iso: OK

    $ sha512sum -c turnkey-tkldev-17.1-bullseye-amd64.iso.hash
      turnkey-tkldev-17.1-bullseye-amd64.iso: OK

    Final note, when checking SHAs automatically, please ignore warning noting that some lines are improperly formatted.

-----BEGIN PGP SIGNATURE-----
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=yEXG
-----END PGP SIGNATURE-----