-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

To ensure the image has not been corrupted in transmit or tampered with,
perform the following two steps to cryptographically verify image integrity:

1. Verify the authenticity of this file by checking that it is signed with our
   GPG release key:

    $ curl  | gpg --import
    $ gpg --list-keys --with-fingerprint release-bullseye-images@turnkeylinux.org
      pub   rsa4096 2021-08-04 [SC] [expires: 2041-07-30]
            E10F 6567 0C8E BE42 ED0C  3A49 CCA5 1174 468F 9073
      uid           [ unknown] TurnKey GNU/Linux Bullseye Images (GPG signing key for TurnKey Linux Bullseye Images) <release-bullseye-images@turnkeylinux.org>
      sub   rsa4096 2021-08-04 [S] [expires: 2041-07-30]
      
    $ gpg --verify debian-11-turnkey-ushahidi_17.1-1_amd64.tar.gz.hash
      gpg: Signature made using RSA key ID E10F65670C8EBE42ED0C3A49CCA51174468F9073
      gpg: Good signature from "0"

2. Recalculate the image hash and make sure it matches your choice of hash below.

    $ sha256sum debian-11-turnkey-ushahidi_17.1-1_amd64.tar.gz
      7a5bd8ec0f33bcc019f759d30c8bfa681a0ec2fac3b8f71db4106ef81de71b2a  debian-11-turnkey-ushahidi_17.1-1_amd64.tar.gz

    $ sha512sum debian-11-turnkey-ushahidi_17.1-1_amd64.tar.gz
      25c97b329258124eb58235ddc258df615751679769d5165fd6e5ba241385f4ac9bd866d3b7304bbc5c179fb90005493138aa8ecb0ab08190d8f0bfe656138853  debian-11-turnkey-ushahidi_17.1-1_amd64.tar.gz

   Note, you can compare hashes automatically::

    $ sha256sum -c debian-11-turnkey-ushahidi_17.1-1_amd64.tar.gz.hash
      debian-11-turnkey-ushahidi_17.1-1_amd64.tar.gz: OK

    $ sha512sum -c debian-11-turnkey-ushahidi_17.1-1_amd64.tar.gz.hash
      debian-11-turnkey-ushahidi_17.1-1_amd64.tar.gz: OK

    Final note, when checking SHAs automatically, please ignore warning noting that some lines are improperly formatted.

-----BEGIN PGP SIGNATURE-----
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=Qlse
-----END PGP SIGNATURE-----