-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

To ensure the image has not been corrupted in transmit or tampered with,
perform the following two steps to cryptographically verify image integrity:

1. Verify the authenticity of this file by checking that it is signed with our
   GPG release key:

    $ curl https://raw.githubusercontent.com/turnkeylinux/common/master/keys/tkl-buster-images.asc | gpg --import
    $ gpg --list-keys --with-fingerprint release-buster-images@turnkeylinux.org
      pub   rsa4096 2020-02-05 [SC] [expires: 2040-01-31]
            A8B2 EF42 8781 9B03 D351  6CCA 7623 1C20 425E 9772
      uid           [ unknown] TurnKey GNU/Linux Buster Images (GPG signing key for TurnKey Linux Buster Images) <release-buster-images@turnkeylinux.org>
      sub   rsa4096 2020-02-05 [S] [expires: 2040-01-31]
      
    $ gpg --verify turnkey-collabtive-16.1-buster-amd64.iso.hash
      gpg: Signature made using RSA key ID A8B2EF4287819B03D3516CCA76231C20425E9772
      gpg: Good signature from "0"

2. Recalculate the image hash and make sure it matches your choice of hash below.

    $ sha256sum turnkey-collabtive-16.1-buster-amd64.iso
      841b86031277ff193eafa017d0b10e376a94ba79ef3e77a3d92e8d9b6291b4d1  turnkey-collabtive-16.1-buster-amd64.iso

    $ sha512sum turnkey-collabtive-16.1-buster-amd64.iso
      3528bf6b70aaa770a8602fe0300d21592420d25cbaab8a5e24edb36f4541de987c6c322bd94e530b760fd07835d4831b2a0439d450c9f77f6f59b5bf8f79dcb7  turnkey-collabtive-16.1-buster-amd64.iso

   Note, you can compare hashes automatically::

    $ sha256sum -c turnkey-collabtive-16.1-buster-amd64.iso.hash
      turnkey-collabtive-16.1-buster-amd64.iso: OK

    $ sha512sum -c turnkey-collabtive-16.1-buster-amd64.iso.hash
      turnkey-collabtive-16.1-buster-amd64.iso: OK

    Final note, when checking SHAs automatically, please ignore warning noting that some lines are improperly formatted.

-----BEGIN PGP SIGNATURE-----
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=EeeL
-----END PGP SIGNATURE-----