-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 To ensure the image has not been corrupted in transmit or tampered with, perform the following two steps to cryptographically verify image integrity: 1. Verify the authenticity of this file by checking that it is signed with our GPG release key: $ curl | gpg --import $ gpg --list-keys --with-fingerprint release-bullseye-images@turnkeylinux.org pub rsa4096 2021-08-04 [SC] [expires: 2041-07-30] E10F 6567 0C8E BE42 ED0C 3A49 CCA5 1174 468F 9073 uid [ unknown] TurnKey GNU/Linux Bullseye Images (GPG signing key for TurnKey Linux Bullseye Images) sub rsa4096 2021-08-04 [S] [expires: 2041-07-30] $ gpg --verify turnkey-observium-17.1-bullseye-amd64.iso.hash gpg: Signature made using RSA key ID E10F65670C8EBE42ED0C3A49CCA51174468F9073 gpg: Good signature from "0" 2. Recalculate the image hash and make sure it matches your choice of hash below. $ sha256sum turnkey-observium-17.1-bullseye-amd64.iso 98668e33304c671de10c459cbaabbe7719b5c01453528efd7dd0249c9360d82a turnkey-observium-17.1-bullseye-amd64.iso $ sha512sum turnkey-observium-17.1-bullseye-amd64.iso fd6b6981185e4c7c6cf9cb7273337abfe00cbb407f0fb8b1071579f84b3ad0c24cd0b02b37eff000c6e386b85e7a3b9ab73c5046db31f7edeb711418e4a642c0 turnkey-observium-17.1-bullseye-amd64.iso Note, you can compare hashes automatically:: $ sha256sum -c turnkey-observium-17.1-bullseye-amd64.iso.hash turnkey-observium-17.1-bullseye-amd64.iso: OK $ sha512sum -c turnkey-observium-17.1-bullseye-amd64.iso.hash turnkey-observium-17.1-bullseye-amd64.iso: OK Final note, when checking SHAs automatically, please ignore warning noting that some lines are improperly formatted. -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEE3YP+u+JWuSop/BuCHkh6RjHW/rYFAmM0CTwACgkQHkh6RjHW /rYAQw//R8hcRYzToypamtLUxM0vhPtzSZYlJVyTob33zlZMHKQ8aOszxx4q35aq wsY4qgSwKR1Ca+GnB40hSDEuyNHkDCfLQXcEWsOqMvf8/xdm6q8J6CHIhS7V3RyQ 3E3ZOpuUWPSnMcvtlteMMTHZ2Uw6rJiP7PFrB+F2nM5isT70Zs2Sx0EQHR/MRoD3 cJsJ/lFwZgY/dts9F24TgysvZjjRcAsZ+BstoOw9ArtnwP/K3xFJ24AjBIsZR2Xj IP6UcpRvyfA9z0yNKFpLtuQGv2nzcWX38ShLVE3YWZvInOUIBvMtwW3yEuTHo2I5 RQRHmMzEUjGEJVcl95AoSES6TPFfSU6cdr1d2+quWJqe5f17rom4thcEgBDRkxK4 s5hYF9mEZm8sruXYOc3v7edoIZfUl8/sA92rw0uwUlpBRSim7maKk0FZXNFs+61J 6Ky4WbIN1IgMnuttpY7ATRyBohNJpDEdcd7ubJGVCZHGuULEwQJ2NhAZCQatlBfh zev7XbWag8ST0DqgT+plyf19Se7upQ3u0BpNNO3A3hGU4sISk+6bBLRTZQMHP5rT CwwBa28HEBZJ3d5ipiEe57CH7ssu5BRqlmFUPh6/lIfouxCeNLWoWdUjPqOa1QMA 7nUYjiJJpMNK4Rxgly5cjuSCwqzq2FYrcTg5HNvSM4AS1Poe+1Y= =tDJZ -----END PGP SIGNATURE-----