-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 To ensure the image has not been corrupted in transmit or tampered with, perform the following two steps to cryptographically verify image integrity: 1. Verify the authenticity of this file by checking that it is signed with our GPG release key: $ curl | gpg --import $ gpg --list-keys --with-fingerprint release-bullseye-images@turnkeylinux.org pub rsa4096 2021-08-04 [SC] [expires: 2041-07-30] E10F 6567 0C8E BE42 ED0C 3A49 CCA5 1174 468F 9073 uid [ unknown] TurnKey GNU/Linux Bullseye Images (GPG signing key for TurnKey Linux Bullseye Images) sub rsa4096 2021-08-04 [S] [expires: 2041-07-30] $ gpg --verify turnkey-nginx-php-fastcgi-17.0-bullseye-amd64.iso.hash gpg: Signature made using RSA key ID E10F65670C8EBE42ED0C3A49CCA51174468F9073 gpg: Good signature from "0" 2. Recalculate the image hash and make sure it matches your choice of hash below. $ sha256sum turnkey-nginx-php-fastcgi-17.0-bullseye-amd64.iso f77abe94688cceacdd145c5c2addda7259f620fece1872fbc52600fae31ccb02 turnkey-nginx-php-fastcgi-17.0-bullseye-amd64.iso $ sha512sum turnkey-nginx-php-fastcgi-17.0-bullseye-amd64.iso 67b594136be94799e2fab81d1f8d93bc257a600cce45364bbeb5902d16e6cc802c0880bedbd8d673ab9962741002e3a5eac61600f7752bed239280bf7b815d91 turnkey-nginx-php-fastcgi-17.0-bullseye-amd64.iso Note, you can compare hashes automatically:: $ sha256sum -c turnkey-nginx-php-fastcgi-17.0-bullseye-amd64.iso.hash turnkey-nginx-php-fastcgi-17.0-bullseye-amd64.iso: OK $ sha512sum -c turnkey-nginx-php-fastcgi-17.0-bullseye-amd64.iso.hash turnkey-nginx-php-fastcgi-17.0-bullseye-amd64.iso: OK Final note, when checking SHAs automatically, please ignore warning noting that some lines are improperly formatted. -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEE3YP+u+JWuSop/BuCHkh6RjHW/rYFAmJlPIMACgkQHkh6RjHW /raeVBAAjTocmQmzCzUw6XLL87d0OyuvjmL/lUlh9pIejlQMTXzoM5JPYAeirHIv aVo9ZsxFM/YAG+x4WO5KAGlCW73alVzb3xlvc9CycahQrhbEMh410Yo7AchfiZjW fKc8X7Dg+KkBtESYBpUVb0V9/eQ5zDe6XrbUb3FckHXjUsPGVcCHX+Xd/sigDqoM HzoEVmftDwWp8N2ALAvFLSQmmvyqOEkUQK2pTdhY/8FvBLFPaUy9kMaAWY9rLCWL qui1WaoNzgDCbHjMJ7hyLQpAbq6J/kaRX3Dlfiz3fGkK5Gd//juF5i+9fFhRS2mH cAeAGHT0wjm+7ZbD02I/6GbWKveHhNo/R5xD+tQ5oG/F6Ur01zqi7ebTva+Ezbi3 wQrod37G+RrQ95ZydAda1xdIsObBSpelTJscFiaPLptm6DhFoMjTAg3/8zmqGdAc zh3SXx+51tTKnrsomdyqf0pp7Cq3lngIMeVN8FZ3LToEzmcbQntOQHk5T7aP6aDj 7LpRPQE7ybTNa+vrpmgBtOmUmmtOcmw1EtyUG4RMfxrAaI87LysO7swykagnbp7v REguNBRr/NAPRJFM+2Yl4K7sRUTZ0XcTX1kMQGfS6pAGl0BnkGCh497Q5A5z8hWF I27kZKCsbf+lYqEk62se5lNMGXiLyBmv4gRboBm3ZIK2dcm1oC8= =AuoH -----END PGP SIGNATURE-----