-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Two steps are required to cryptographically verify image integrity.

1. By verifying the integrity of this signature file, you can be sure that
   the checksums included in this file are valid.

    $ gpg --keyserver hkp://pool.sks-keyservers.net --recv-keys 0xA16EB94D
    $ gpg --list-keys 0xA16EB94D
      pub   2048R/A16EB94D 2008-08-15 [expires: 2023-08-12]
      uid   Turnkey Linux Release Key <release@turnkeylinux.com>

    $ gpg --verify turnkey-redmine-14.1-jessie-i386.iso.sig
      gpg: Good signature from "Turnkey Linux Release Key"

2. By calculating the image checksum and validating the hashed value is the
   same as listed below, you can be sure the image was not corrupted in
   transit or tampered with.

    $ md5sum turnkey-redmine-14.1-jessie-i386.iso
      51c27260700ae2317380160dd24c6ebb

    $ sha1sum turnkey-redmine-14.1-jessie-i386.iso
      6195844eca4e68ab3999e0e5d61c23ccc2944a9b

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)

iQEcBAEBAgAGBQJXCkP0AAoJEIXCXpWhbrlNn0IH/2vCvP/RoEaavf0oVqOzQFwp
fw9cgjL9mNRQuT2cMN1DGAzXKVU8w3WZQXAK0m3Znlmw/2Ff/3SRtDBDQNO9yoOh
Ig6ijZ10STsRa1U/I3ehCNVL+KvtljHL3l9Cg1MjmRkXBSPCNWnqx17mYU2JuVZS
i02fNFtKfcQDn2ONWlRrUhdNQT2eB7KWoY2gyVANyM+8r8AuT4DEEDMvKmAXfIOB
erciBk6Eon0LokisINJL2EQ63MP8KK/8h9O4WX0HU2tSrjBn4Uhdxddir5+xUG5r
1zPmmlP+1JI5n8/00DPTCFgbcZgdoYl8+9og6OpJFSyO0Kl9pFHqERmD7iPH/co=
=mGq4
-----END PGP SIGNATURE-----