-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

To ensure the image has not been corrupted in transmit or tampered with,
perform the following two steps to cryptographically verify image integrity:

1. Verify the authenticity of this file by checking that it is signed with our
   GPG release key:

    $ curl  | gpg --import
    $ gpg --list-keys --with-fingerprint release-bullseye-images@turnkeylinux.org
      pub   rsa4096 2021-08-04 [SC] [expires: 2041-07-30]
            E10F 6567 0C8E BE42 ED0C  3A49 CCA5 1174 468F 9073
      uid           [ unknown] TurnKey GNU/Linux Bullseye Images (GPG signing key for TurnKey Linux Bullseye Images) <release-bullseye-images@turnkeylinux.org>
      sub   rsa4096 2021-08-04 [S] [expires: 2041-07-30]
      
    $ gpg --verify turnkey-vanilla-17.0-bullseye-amd64.iso.hash
      gpg: Signature made using RSA key ID E10F65670C8EBE42ED0C3A49CCA51174468F9073
      gpg: Good signature from "0"

2. Recalculate the image hash and make sure it matches your choice of hash below.

    $ sha256sum turnkey-vanilla-17.0-bullseye-amd64.iso
      63818b07bb1d36c889bcd050ab6afc767926b8e05e72ebb0f3de20437371bd2d  turnkey-vanilla-17.0-bullseye-amd64.iso

    $ sha512sum turnkey-vanilla-17.0-bullseye-amd64.iso
      81e0ec432b89c91dc9bea4676e0e364d86e7f1400b1ce7315641f9916c0d171a804b6e7f0b2dd2fcbe08a0e36a5add8c528363f701100ab15ef753a1be2142ef  turnkey-vanilla-17.0-bullseye-amd64.iso

   Note, you can compare hashes automatically::

    $ sha256sum -c turnkey-vanilla-17.0-bullseye-amd64.iso.hash
      turnkey-vanilla-17.0-bullseye-amd64.iso: OK

    $ sha512sum -c turnkey-vanilla-17.0-bullseye-amd64.iso.hash
      turnkey-vanilla-17.0-bullseye-amd64.iso: OK

    Final note, when checking SHAs automatically, please ignore warning noting that some lines are improperly formatted.

-----BEGIN PGP SIGNATURE-----
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=iLi+
-----END PGP SIGNATURE-----