-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

To ensure the image has not been corrupted in transmit or tampered with,
perform the following two steps to cryptographically verify image integrity:

1. Verify the authenticity of this file by checking that it is signed with our
   GPG release key:

    $ curl  | gpg --import
    $ gpg --list-keys --with-fingerprint release-bullseye-images@turnkeylinux.org
      pub   rsa4096 2021-08-04 [SC] [expires: 2041-07-30]
            E10F 6567 0C8E BE42 ED0C  3A49 CCA5 1174 468F 9073
      uid           [ unknown] TurnKey GNU/Linux Bullseye Images (GPG signing key for TurnKey Linux Bullseye Images) <release-bullseye-images@turnkeylinux.org>
      sub   rsa4096 2021-08-04 [S] [expires: 2041-07-30]
      
    $ gpg --verify debian-11-turnkey-gitea_17.2-1_amd64.tar.gz.hash
      gpg: Signature made using RSA key ID E10F65670C8EBE42ED0C3A49CCA51174468F9073
      gpg: Good signature from "0"

2. Recalculate the image hash and make sure it matches your choice of hash below.

    $ sha256sum debian-11-turnkey-gitea_17.2-1_amd64.tar.gz
      7cf34cd0d9571d849bff35e5cad52ce2a1318c0f88026081e8a8b60a0cb981cb  debian-11-turnkey-gitea_17.2-1_amd64.tar.gz

    $ sha512sum debian-11-turnkey-gitea_17.2-1_amd64.tar.gz
      315acd70eb4c4f46718b0eb283f5aa3010da8fc61233b82c91ba24a1c3deead46692510c03703a1cce9892b4bcb9f732faec2c8d0743a4c76c9d3c0c5a64d3d8  debian-11-turnkey-gitea_17.2-1_amd64.tar.gz

   Note, you can compare hashes automatically::

    $ sha256sum -c debian-11-turnkey-gitea_17.2-1_amd64.tar.gz.hash
      debian-11-turnkey-gitea_17.2-1_amd64.tar.gz: OK

    $ sha512sum -c debian-11-turnkey-gitea_17.2-1_amd64.tar.gz.hash
      debian-11-turnkey-gitea_17.2-1_amd64.tar.gz: OK

    Final note, when checking SHAs automatically, please ignore warning noting that some lines are improperly formatted.

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEE3YP+u+JWuSop/BuCHkh6RjHW/rYFAmQEVSAACgkQHkh6RjHW
/rb7qg/9E3Ov5nslUEf7Gx1ogdBKMdhigoc8/pvt+I/XPbsS4HQXcGCQehnPGcaF
sCYMYV/UMdD5o3NIHMS4OHhGswWSQZOvEMHpA7Q0fga41MpwZ4Egxqc+LMeqbs1P
LGerxb4TVPSH3RWJTWGWcLWjW1TL0Yg+Vs9WVZNR3uw3yRol8HuYGgrLnEfnhz94
LgB0o5FLgvGSUbsJRAbwa0DHzQVoxyvoyY2WphP4YJIwZn7vx/ZVrdayPDZ8wPex
eIf1uEYixL17coeZFEPQroLRnWO42iu+byI1MkaTKWC74Iur5EhW/q0lnubf7qBW
2lmRN0e04InIsMOx60yFdgMkl5ur0tlb/lt9IaiO1XOsABPNKdaQSaePxko0eHQ6
ag9OJTR9JItfhdMYH17SHu0jPHZCf9GlBs7zaq9i3UjMMfdNa1A6drrcECyWP6HZ
qG2NoGeWcmBiiyeJQ/v47QQWVu48Ldgw33VSuOeAxGx7FPJYYIJOywWTp28tGLWc
ft85fRE5TH14AzoqMbcrs8xTMMMQjby1U9BtSu1Opq8YnKeVgbmVSSxekHygRcjW
4eNwFAzXK4zQggIuaQa1N6gUQtlqROLgCWmgOO54W9sLNKjwyDyXgDQoOHl88HYJ
8mY0HSFyLic/DSc2bLwPkQmvm6QLQXu2DSK52dpR5qu2M49XVq8=
=YKcE
-----END PGP SIGNATURE-----