-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

To ensure the image has not been corrupted in transmit or tampered with,
perform the following two steps to cryptographically verify image integrity:

1. Verify the authenticity of this file by checking that it is signed with our
   GPG release key:

    $ curl  | gpg --import
    $ gpg --list-keys --with-fingerprint release-bullseye-images@turnkeylinux.org
      pub   rsa4096 2021-08-04 [SC] [expires: 2041-07-30]
            E10F 6567 0C8E BE42 ED0C  3A49 CCA5 1174 468F 9073
      uid           [ unknown] TurnKey GNU/Linux Bullseye Images (GPG signing key for TurnKey Linux Bullseye Images) <release-bullseye-images@turnkeylinux.org>
      sub   rsa4096 2021-08-04 [S] [expires: 2041-07-30]
      
    $ gpg --verify turnkey-gitlab-17.1-bullseye-amd64.iso.hash
      gpg: Signature made using RSA key ID E10F65670C8EBE42ED0C3A49CCA51174468F9073
      gpg: Good signature from "0"

2. Recalculate the image hash and make sure it matches your choice of hash below.

    $ sha256sum turnkey-gitlab-17.1-bullseye-amd64.iso
      d6c6fee7c06f31f2d52046a6f1d7e618b7516bb2e41a967e8b0f782b08f6780b  turnkey-gitlab-17.1-bullseye-amd64.iso

    $ sha512sum turnkey-gitlab-17.1-bullseye-amd64.iso
      e5a329922df5cc297e1ad3706c65840bfa574c456c8672b4a0cde9073bff0d1b0d10a89f3176dd817ac63020dbcb94e984b5feb0488936cca48d324357d248f1  turnkey-gitlab-17.1-bullseye-amd64.iso

   Note, you can compare hashes automatically::

    $ sha256sum -c turnkey-gitlab-17.1-bullseye-amd64.iso.hash
      turnkey-gitlab-17.1-bullseye-amd64.iso: OK

    $ sha512sum -c turnkey-gitlab-17.1-bullseye-amd64.iso.hash
      turnkey-gitlab-17.1-bullseye-amd64.iso: OK

    Final note, when checking SHAs automatically, please ignore warning noting that some lines are improperly formatted.

-----BEGIN PGP SIGNATURE-----
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=xwUC
-----END PGP SIGNATURE-----