-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

To ensure the image has not been corrupted in transmit or tampered with,
perform the following two steps to cryptographically verify image integrity:

1. Verify the authenticity of this file by checking that it is signed with our
   GPG release key:

    $ curl https://raw.githubusercontent.com/turnkeylinux/common/18.x/keys/tkl-bookworm-images.asc | gpg --import
    $ gpg --list-keys --with-fingerprint release-bookworm-images@turnkeylinux.org
      pub   rsa4096 2023-05-22 [SC] [expires: 2043-05-17]
            2614 7592 087C 0EDE 4214  3B63 7761 DEBA BBCF BA7C
      uid           [ unknown] TurnKey GNU/Linux Bookworm Images (GPG signing key for TurnKey Linux Bookworm Images) <release-bookworm-images@turnkeylinux.org>
      sub   rsa4096 2023-05-22 [S] [expires: 2043-05-17]
      
    $ gpg --verify turnkey-wireguard-18.0-bookworm-amd64.iso.hash
      gpg: Signature made using RSA key ID 26147592087C0EDE42143B637761DEBABBCFBA7C
      gpg: Good signature from "0"

2. Recalculate the image hash and make sure it matches your choice of hash below.

    $ sha256sum turnkey-wireguard-18.0-bookworm-amd64.iso
      86033338f55154263b4f85188f75e3ffca43d47ef0835d8e3cbf5f55f5d01fe6  turnkey-wireguard-18.0-bookworm-amd64.iso

    $ sha512sum turnkey-wireguard-18.0-bookworm-amd64.iso
      92c4d8613a50c52d66a37e18235e8ab404c5bb12d39950396a1e3e32551a197efebbc8ea30f199bae3b9ae54aabe841f1b096550bf3e757765c8e72a2ae0f371  turnkey-wireguard-18.0-bookworm-amd64.iso

   Note, you can compare hashes automatically::

    $ sha256sum -c turnkey-wireguard-18.0-bookworm-amd64.iso.hash
      turnkey-wireguard-18.0-bookworm-amd64.iso: OK

    $ sha512sum -c turnkey-wireguard-18.0-bookworm-amd64.iso.hash
      turnkey-wireguard-18.0-bookworm-amd64.iso: OK

    Final note, when checking SHAs automatically, please ignore warning noting that some lines are improperly formatted.

-----BEGIN PGP SIGNATURE-----
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=D3UQ
-----END PGP SIGNATURE-----