-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

If you wish to verify the integrity of these downloads, use the following in a
terminal:

$ shasum -a 256 /path/to/installer/file

The resulting text should match the checksum for the file shown below.

This file has been signed with a digital signature. If you wish to confirm
that no modifications have been made by third parties, first fetch the
packaging key from GitHub:

$ curl https://raw.githubusercontent.com/dae/anki/master/pkgkey.asc | gpg --import

Then verify this file, eg:

$ gpg --verify /path/to/checksum/file 2>&1 | grep Good

If the file is unchanged, you should see:

gpg: Good signature from "Anki Signatures <gpg@ankiweb.net>" [unknown]

SHA256 checksums follow:

554525fc0af88e2e8a8e13a3715c9cde05a59c2f81ec6b85a5b28edd40959b7d  anki-2.1.40-linux.tar.bz2
711bdf543513ab526a36e3ece555820c5aa1d03f6f02c5498f789804d3d5c091  anki-2.1.40-mac.dmg
5f24823235610f2a4a3555eada8a90dfcd0496bdb6ccf570b76f7699852a0b1a  anki-2.1.40-windows.exe

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEEHKk0tAuE9EgxbOL8wKNRl5s347kFAmAfY8MACgkQwKNRl5s3
47kPsA/9G76sg5xoJQ9v4wiLmnMYmTvFEIDzomdFA5v9C+6n7amVfrdG1km1xadc
Xl7w5czq4pKTI9j7g45++pLT2W/YfIbtAXlDwhSwPXbI2Ty/Ijx6jGtnCVwq7Lc+
Vowmfq9rIcSORvKHcRFiMT8KWF2mKknxAJ47BV36HoKCYZry3asbRFBtevg9DcV5
E1hVoQI0CLwjb+QttU3Rd/w1RBHwWZgIFiziAYmLYys796s/TLgqYIRJuaj8o5qc
tLczEvDejBgketwwgBQHQpytvHZq21oSmY/7hv9HP7agrJxeB63CO7ooLpIgDHgW
S2N1WTu0vGf7gyfkF8E1KCC5fTrm+6Jj+wzLMhq1yt8verSrJ6o5zPn2i31sxZm8
twH7zZDTeFhQagVRVyQ0F8dsABzd8R79mtiyAVL17oQDVsH9PnzDQLyiXiUoATXr
vZbAo46W88kL6kebp3fif3KbtWlQINvF8tE9fZJESIubGV14bcHC8xnk+oOw91hu
kg7i7VDg2Gi7IPPbx6aSeCDaYcyOUgynYP0fKwJPrHgh6bOUx1vxQwI4jIpGl4zZ
X/uCaw18T4St1i34ggrvdAd3qpt2CyfaxuRpeKyeq5TW/wn7DDlUUDYLE1jFVmi2
5K63Hllq0gBRlX1C25koXhryMirlK8iuodcIS0S/ABHIBMPDc38=
=o07V
-----END PGP SIGNATURE-----