-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

To ensure the image has not been corrupted in transmit or tampered with,
perform the following two steps to cryptographically verify image integrity:

1. Verify the authenticity of this file by checking that it is signed with our
   GPG release key:

    $ curl  | gpg --import
    $ gpg --list-keys --with-fingerprint release-bullseye-images@turnkeylinux.org
      pub   rsa4096 2021-08-04 [SC] [expires: 2041-07-30]
            E10F 6567 0C8E BE42 ED0C  3A49 CCA5 1174 468F 9073
      uid           [ unknown] TurnKey GNU/Linux Bullseye Images (GPG signing key for TurnKey Linux Bullseye Images) <release-bullseye-images@turnkeylinux.org>
      sub   rsa4096 2021-08-04 [S] [expires: 2041-07-30]
      
    $ gpg --verify debian-11-turnkey-snipe-it_17.3-1_amd64.tar.gz.hash
      gpg: Signature made using RSA key ID E10F65670C8EBE42ED0C3A49CCA51174468F9073
      gpg: Good signature from "0"

2. Recalculate the image hash and make sure it matches your choice of hash below.

    $ sha256sum debian-11-turnkey-snipe-it_17.3-1_amd64.tar.gz
      78a540c57f1f93d26f27dfdd523d906ed5af6e29b6dbcfe2d6d743b3427d5fd4  debian-11-turnkey-snipe-it_17.3-1_amd64.tar.gz

    $ sha512sum debian-11-turnkey-snipe-it_17.3-1_amd64.tar.gz
      5f3c47455e532a2c3d2751e77125e9e0f1ad9d9095dbd636313f14656f6ddd2cddae2e29d4553bb49693b95669c81ff4fffea58bab64bf2ef4f21e873d066474  debian-11-turnkey-snipe-it_17.3-1_amd64.tar.gz

   Note, you can compare hashes automatically::

    $ sha256sum -c debian-11-turnkey-snipe-it_17.3-1_amd64.tar.gz.hash
      debian-11-turnkey-snipe-it_17.3-1_amd64.tar.gz: OK

    $ sha512sum -c debian-11-turnkey-snipe-it_17.3-1_amd64.tar.gz.hash
      debian-11-turnkey-snipe-it_17.3-1_amd64.tar.gz: OK

    Final note, when checking SHAs automatically, please ignore warning noting that some lines are improperly formatted.

-----BEGIN PGP SIGNATURE-----
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=7Tc+
-----END PGP SIGNATURE-----