-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

To ensure the image has not been corrupted in transmit or tampered with,
perform the following two steps to cryptographically verify image integrity:

1. Verify the authenticity of this file by checking that it is signed with our
   GPG release key:

    $ curl  | gpg --import
    $ gpg --list-keys --with-fingerprint release-bullseye-images@turnkeylinux.org
      pub   rsa4096 2021-08-04 [SC] [expires: 2041-07-30]
            E10F 6567 0C8E BE42 ED0C  3A49 CCA5 1174 468F 9073
      uid           [ unknown] TurnKey GNU/Linux Bullseye Images (GPG signing key for TurnKey Linux Bullseye Images) <release-bullseye-images@turnkeylinux.org>
      sub   rsa4096 2021-08-04 [S] [expires: 2041-07-30]
      
    $ gpg --verify turnkey-core-17.1-bullseye-amd64.iso.hash
      gpg: Signature made using RSA key ID E10F65670C8EBE42ED0C3A49CCA51174468F9073
      gpg: Good signature from "0"

2. Recalculate the image hash and make sure it matches your choice of hash below.

    $ sha256sum turnkey-core-17.1-bullseye-amd64.iso
      e89d421a4d46a4a35c583b9e6a18a6a5a11d373209d0d30a82c193492af60222  turnkey-core-17.1-bullseye-amd64.iso

    $ sha512sum turnkey-core-17.1-bullseye-amd64.iso
      74cc7c8f1d8808ac7e55fa27273671ab9ce007ebed65f2234777cf0b50ba5031e2b1b01563a758afee3161921299cfc1605cf6c0f0758056ac5b663a36e45be4  turnkey-core-17.1-bullseye-amd64.iso

   Note, you can compare hashes automatically::

    $ sha256sum -c turnkey-core-17.1-bullseye-amd64.iso.hash
      turnkey-core-17.1-bullseye-amd64.iso: OK

    $ sha512sum -c turnkey-core-17.1-bullseye-amd64.iso.hash
      turnkey-core-17.1-bullseye-amd64.iso: OK

    Final note, when checking SHAs automatically, please ignore warning noting that some lines are improperly formatted.

-----BEGIN PGP SIGNATURE-----
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=Mh/V
-----END PGP SIGNATURE-----