-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

To ensure the image has not been corrupted in transmit or tampered with,
perform the following two steps to cryptographically verify image integrity:

1. Verify the authenticity of this file by checking that it is signed with our
   GPG release key:

    $ curl  | gpg --import
    $ gpg --list-keys --with-fingerprint release-bullseye-images@turnkeylinux.org
      pub   rsa4096 2021-08-04 [SC] [expires: 2041-07-30]
            E10F 6567 0C8E BE42 ED0C  3A49 CCA5 1174 468F 9073
      uid           [ unknown] TurnKey GNU/Linux Bullseye Images (GPG signing key for TurnKey Linux Bullseye Images) <release-bullseye-images@turnkeylinux.org>
      sub   rsa4096 2021-08-04 [S] [expires: 2041-07-30]
      
    $ gpg --verify turnkey-tomcat-apache-17.1-bullseye-amd64.iso.hash
      gpg: Signature made using RSA key ID E10F65670C8EBE42ED0C3A49CCA51174468F9073
      gpg: Good signature from "0"

2. Recalculate the image hash and make sure it matches your choice of hash below.

    $ sha256sum turnkey-tomcat-apache-17.1-bullseye-amd64.iso
      2cb6cbbe3d6f3e74553bfd3335ec83cec4fcaab021b20e8b01f4d09355f18650  turnkey-tomcat-apache-17.1-bullseye-amd64.iso

    $ sha512sum turnkey-tomcat-apache-17.1-bullseye-amd64.iso
      d0eeeb0a98dfee643f9f668e0a387f96e92f2c62059eb3c0199093707a9b02dbc9fdbf3778ef19ec08d7ee2f6c463f08fd29c1614a8e2c84ae197075fd83fcdd  turnkey-tomcat-apache-17.1-bullseye-amd64.iso

   Note, you can compare hashes automatically::

    $ sha256sum -c turnkey-tomcat-apache-17.1-bullseye-amd64.iso.hash
      turnkey-tomcat-apache-17.1-bullseye-amd64.iso: OK

    $ sha512sum -c turnkey-tomcat-apache-17.1-bullseye-amd64.iso.hash
      turnkey-tomcat-apache-17.1-bullseye-amd64.iso: OK

    Final note, when checking SHAs automatically, please ignore warning noting that some lines are improperly formatted.

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEE3YP+u+JWuSop/BuCHkh6RjHW/rYFAmM0CT0ACgkQHkh6RjHW
/rZlsxAAia+zTRbZBwYezgmMXxzWFMM6zIhP09M8HdRdCU4oI8dZcSx+cXza3FXy
cqKvnrYIjCW7NNu1812Ot+NqNUyYLrdL5TihXFlzZn8i1eRZLT9rf19gILREKsfi
HV1cBmpO716YE2J/dcXkQc1LS2Sb41CGb7FtSTif4eBCDoKO+pNPC/9rsiAVQsuR
q5OhiZW9WkAQlYzp8itVe6vBgDbL601F+tMXesd6MeJDQaJ0cFcu2rs0r2rABW0o
OHntKposqKwubX+Yu2a6fdpNZLdamKAiD8z9xOzqTLhOWC11acRy02NUUkHW8YJS
gepnH5P1gGUf9sKz6TJP7sdJs+s2OX/eNp0ow+KPQeTeFXZ6XIq8SnzKRYf4G+Uw
uMJEFqIPM4BT7vdFYCqtKzf2ujzIwYSkiqjKZJ/ApYoaHu9gs2MFPDfDeaLqovd7
r8hkxUGJ1o75f0SnNVpcLNlAYfpUkjyVv8m9XM3+mwr80p395lC068R5VoL4GEil
mYrNjsvGW5WXCRToo0gq+KEofdK8h7CdeAgSjxJWDT9hw+QCL8g1zx0CCx0lLEdi
f/CzOeVJVKnJ5ynbTq7fj8xWDtnvjCW6Rb3v+q+yKdzU6vlHoPihXjBiHpFRhs+T
aF9hdf7khibA34woH56PP6MgE59PWw10AeLaHC3/xOhzVUCV6Uk=
=LJeu
-----END PGP SIGNATURE-----