-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Two steps are required to cryptographically verify image integrity.

1. By verifying the integrity of this signature file, you can be sure that
   the checksums included in this file are valid.

    $ gpg --keyserver hkp://pool.sks-keyservers.net --recv-keys 0xA16EB94D
    $ gpg --list-keys 0xA16EB94D
      pub   2048R/A16EB94D 2008-08-15 [expires: 2023-08-12]
      uid   Turnkey Linux Release Key <release@turnkeylinux.com>

    $ gpg --verify debian-8-turnkey-cakephp_14.1-1_amd64.ova.sig
      gpg: Good signature from "Turnkey Linux Release Key"

2. By calculating the image checksum and validating the hashed value is the
   same as listed below, you can be sure the image was not corrupted in
   transit or tampered with.

    $ md5sum debian-8-turnkey-cakephp_14.1-1_amd64.ova
      f2cf275ba3a59d546d78884eb1161b44

    $ sha1sum debian-8-turnkey-cakephp_14.1-1_amd64.ova
      c94cf73dfd6e674b59e627fe7b70e2b7c8d3d37a

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)

iQEcBAEBAgAGBQJXDJnpAAoJEIXCXpWhbrlNO84H/1y7RXfQOHh1VimNXprySbEk
U9kk151zyapQ9ir84137jYae2d/DQ9izgycsxgn8EqVqxRP4l8+tqRMATR7RCqH1
6XtyJf3v8AUUnIae4W888MdamLUD11YHGDyRwQDHdVeFhkWakRTM+6hM8rC6jj3D
8ygu8wfc3qIyl38sNulJhAKfkFg9S/Ir3NxYWVdofxGAUw8VfHzi+45AYQHtMO0W
J2SR5SKa4AiluCixgfivl/WEEkPXOV/CZIpxI9jZx4gUNaSqXHoLo0W8zahBEPQ1
4k8+B5imnziEJVP+daRl8X3NeR3Zg4hyCebK9jQkaMbLT1XsWHMBz3g1Nv/LyOE=
=ebmw
-----END PGP SIGNATURE-----