-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

To ensure the image has not been corrupted in transmit or tampered with,
perform the following two steps to cryptographically verify image integrity:

1. Verify the authenticity of this file by checking that it is signed with our
   GPG release key:

    $ curl  | gpg --import
    $ gpg --list-keys --with-fingerprint release-bullseye-images@turnkeylinux.org
      pub   rsa4096 2021-08-04 [SC] [expires: 2041-07-30]
            E10F 6567 0C8E BE42 ED0C  3A49 CCA5 1174 468F 9073
      uid           [ unknown] TurnKey GNU/Linux Bullseye Images (GPG signing key for TurnKey Linux Bullseye Images) <release-bullseye-images@turnkeylinux.org>
      sub   rsa4096 2021-08-04 [S] [expires: 2041-07-30]
      
    $ gpg --verify debian-11-turnkey-cakephp_17.1-1_amd64.tar.gz.hash
      gpg: Signature made using RSA key ID E10F65670C8EBE42ED0C3A49CCA51174468F9073
      gpg: Good signature from "0"

2. Recalculate the image hash and make sure it matches your choice of hash below.

    $ sha256sum debian-11-turnkey-cakephp_17.1-1_amd64.tar.gz
      f4491ee56014e603df08e616477244aeac6e807f87e7f21f69d8957dec6b256d  debian-11-turnkey-cakephp_17.1-1_amd64.tar.gz

    $ sha512sum debian-11-turnkey-cakephp_17.1-1_amd64.tar.gz
      90c3ba1db3c4ba3b8e37474de4839a91164e5cd9e0efc79ba621f6de49f06f475eeff4d972b483f4085bf97ff276329b8f018bae0575ba877aa328ca0b9a3c2e  debian-11-turnkey-cakephp_17.1-1_amd64.tar.gz

   Note, you can compare hashes automatically::

    $ sha256sum -c debian-11-turnkey-cakephp_17.1-1_amd64.tar.gz.hash
      debian-11-turnkey-cakephp_17.1-1_amd64.tar.gz: OK

    $ sha512sum -c debian-11-turnkey-cakephp_17.1-1_amd64.tar.gz.hash
      debian-11-turnkey-cakephp_17.1-1_amd64.tar.gz: OK

    Final note, when checking SHAs automatically, please ignore warning noting that some lines are improperly formatted.

-----BEGIN PGP SIGNATURE-----
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=xfnT
-----END PGP SIGNATURE-----