-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 To ensure the image has not been corrupted in transmit or tampered with, perform the following two steps to cryptographically verify image integrity: 1. Verify the authenticity of this file by checking that it is signed with our GPG release key: $ curl | gpg --import $ gpg --list-keys --with-fingerprint release-bullseye-images@turnkeylinux.org pub rsa4096 2021-08-04 [SC] [expires: 2041-07-30] E10F 6567 0C8E BE42 ED0C 3A49 CCA5 1174 468F 9073 uid [ unknown] TurnKey GNU/Linux Bullseye Images (GPG signing key for TurnKey Linux Bullseye Images) sub rsa4096 2021-08-04 [S] [expires: 2041-07-30] $ gpg --verify debian-11-turnkey-symfony_17.1-1_amd64.tar.gz.hash gpg: Signature made using RSA key ID E10F65670C8EBE42ED0C3A49CCA51174468F9073 gpg: Good signature from "0" 2. Recalculate the image hash and make sure it matches your choice of hash below. $ sha256sum debian-11-turnkey-symfony_17.1-1_amd64.tar.gz 5ad63a0edc66791dfffe3a9ec59bed6d4c8cbd0417837df43c4cd69c2f04201c debian-11-turnkey-symfony_17.1-1_amd64.tar.gz $ sha512sum debian-11-turnkey-symfony_17.1-1_amd64.tar.gz a97f98e3d23f983c1d49ba7b2c76e92ae6e16891ebabf3aef1807c51fddf0241d097f87a2d54d77e6d359424eef7dbe6888678497f7c54edc0ef8778b5b26edf debian-11-turnkey-symfony_17.1-1_amd64.tar.gz Note, you can compare hashes automatically:: $ sha256sum -c debian-11-turnkey-symfony_17.1-1_amd64.tar.gz.hash debian-11-turnkey-symfony_17.1-1_amd64.tar.gz: OK $ sha512sum -c debian-11-turnkey-symfony_17.1-1_amd64.tar.gz.hash debian-11-turnkey-symfony_17.1-1_amd64.tar.gz: OK Final note, when checking SHAs automatically, please ignore warning noting that some lines are improperly formatted. -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEE3YP+u+JWuSop/BuCHkh6RjHW/rYFAmOccf0ACgkQHkh6RjHW /rbLLw//QvNKKidYOPSbLXQ7b8aafKyRPUkAy+hb3MLvgOl+sODzJWY/Cy1lIafY 8e0ufndbL0/0OWyxgopQpeEpMe4Hs5O97qpowfcM6VyJojsankhxKHZttsDuiK/r fZ1bPok+sEPbEY+6VfphZdEa2gmo25sYgF8Bxu9tnuu2AxIZ7K9cnAghBkO7u7yF ikDj9bNu6OtQhtseEnNGTWtV3++31Kq43ovGdTXsZCdrdp3io4aVcvRQuzLWjGOf YHqE72r9C+bHNJ5CpYC+9D5OrJFoBgS9g9hPjw6EpMFAhe579Eeab5EpAn+c4eA1 p46KLXL1Xb/x8fSvammBPf5D1vfm0+o2x+qsrHRhDBeR42OL1Tkzp8Z1hXqsGa4U 58nW/NDvC0Js7dbNLVe25cGkvkuBLFLctcDwHXxQroQEkMrYKOJrHWZZMU68cu2j qy6wKaOJHVC75pE7H4yTD86J5cu1hzCs5byd1tiZIfZ4xQDOnjuRk76+SnpJTKA/ I76xSpNFgz5tgzX2ZQXLAhqBZbIcxhScNruh6ocPARw+XdO/nzzSUZ4bjQM6tl/G 0lLroMcezmZTAvU5DgycV8P+X1ayFR7KpbsuUiXOtHyhypN81wyBMFSEOSXNDFAw s0+wW6oDGXoyyhKKLdHl7GreslHbeop89N4+UeW6q3AkENpjUWo= =/cTg -----END PGP SIGNATURE-----