-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

To ensure the image has not been corrupted in transmit or tampered with,
perform the following two steps to cryptographically verify image integrity:

1. Verify the authenticity of this file by checking that it is signed with our
   GPG release key:

    $ curl  | gpg --import
    $ gpg --list-keys --with-fingerprint release-bullseye-images@turnkeylinux.org
      pub   rsa4096 2021-08-04 [SC] [expires: 2041-07-30]
            E10F 6567 0C8E BE42 ED0C  3A49 CCA5 1174 468F 9073
      uid           [ unknown] TurnKey GNU/Linux Bullseye Images (GPG signing key for TurnKey Linux Bullseye Images) <release-bullseye-images@turnkeylinux.org>
      sub   rsa4096 2021-08-04 [S] [expires: 2041-07-30]
      
    $ gpg --verify debian-11-turnkey-jenkins_17.1-1_amd64.tar.gz.hash
      gpg: Signature made using RSA key ID E10F65670C8EBE42ED0C3A49CCA51174468F9073
      gpg: Good signature from "0"

2. Recalculate the image hash and make sure it matches your choice of hash below.

    $ sha256sum debian-11-turnkey-jenkins_17.1-1_amd64.tar.gz
      085677b725b5b481cde7d99c23f491742494b1b561467778920920f423ae602c  debian-11-turnkey-jenkins_17.1-1_amd64.tar.gz

    $ sha512sum debian-11-turnkey-jenkins_17.1-1_amd64.tar.gz
      f77e3d3cf78d799d52284ec1f20f26b81d441159b98c7895f08f0dbbe9e9dc9a220e1036a47c453d8396e6f349f519d2b0e95a944099a69e3cab29741485f69f  debian-11-turnkey-jenkins_17.1-1_amd64.tar.gz

   Note, you can compare hashes automatically::

    $ sha256sum -c debian-11-turnkey-jenkins_17.1-1_amd64.tar.gz.hash
      debian-11-turnkey-jenkins_17.1-1_amd64.tar.gz: OK

    $ sha512sum -c debian-11-turnkey-jenkins_17.1-1_amd64.tar.gz.hash
      debian-11-turnkey-jenkins_17.1-1_amd64.tar.gz: OK

    Final note, when checking SHAs automatically, please ignore warning noting that some lines are improperly formatted.

-----BEGIN PGP SIGNATURE-----
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=ax1e
-----END PGP SIGNATURE-----