-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

md5:
1d700ef9cf471c1e38ac865b62d8f075
sha1:
878b37cbcff7a058a5a31108bb35577ec5674bcc
sha256:
95504091fa4cb9d6fa2fed7b6961c0077491f0470e4154bb577e65e73457358a
sha512:
f9e23b586b36b870f1796b0bed579f87ded3fb536478bd9f9e6a00f32cfc2f944ac135e3c6948acab3252dd687d9b53f46903b390dadbd51d24e63a186ab2049

Use an app like HashCalc to verify these hashes

If you're concerned about us using weak algorithms here like md5 and sha1, there's no way to collide md5 and sha1 at the same time.
I.e., you could do a collision with just md5, but that would change the sha1, or vice versa.
That's why you should be checking all 4 hashes, or at least the sha256/512 ones. The md5/sha1 sums are more for CRC than security.
-----BEGIN PGP SIGNATURE-----
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=ywl3
-----END PGP SIGNATURE-----