-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

md5:
4e584238f075814495cb769c75445ee3
sha1:
38f8be5d1a6963579dd7b031a9a42ea133b25a9e
sha256:
82fba19145d5cc547febb6e863cd15110758f8c615ab5c63bff76b46eff3fb02
sha512:
42a495662088feb7f7d1b266f2216051edc634cb2ef3293899c30971a39c167cf33a9467427f8916692f65ace3a752d52409d2d688ae19fc633ca058609d7257

Use an app like HashCalc to verify these hashes

If you're concerned about us using weak algorithms here like md5 and sha1, there's no way to collide md5 and sha1 at the same time.
I.e., you could do a collision with just md5, but that would change the sha1, or vice versa.
That's why you should be checking all 4 hashes, or at least the sha256/512 ones. The md5/sha1 sums are more for CRC than security.
-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEETYf5hKIig5JX/jalu9uZGunHyUIFAmoItegACgkQu9uZGunH
yUIy8Q/+IzhOpaZpvSjGrYYGC16fOyk4lYQaLjlwQ7GPbOIfgVkLuKHJ6ZaU7wpn
BvicOhfcfNyNnjsrdqhb5VLPNJw6oawUvnIj8IZURdfYt4y7EWCJJDVujrZYHyQI
5HVivU62EnfTo076sgtd+2+dbNS7BxXrg4SdbmExeIHvWbRQQcnDtwIsnEn8QHEv
qYzDYola7JTZrTT1k5vEAIOwzJoLFsKz6UoKA/2g3NEUrBNmU/8tmU2N+wg5Pv8s
d2aWq4qrbclcBJLdvJshrCIIs+jS1ao0p8fM+XuXg8Dcj9tGd4WfedktsRpfXEtl
g2L61wy3IKIkGJQCAwfs/zvls4XmYP7edk6SuTkuST+IKqz02U3v/KpX7xP+tCV1
Fmkc/xo/MFmTRrUwCuybORs3La4eppGl0aMLG+YLbj3rQ4P6Uyu2uVyXLYJ62+bj
FbjcHxT1s8FTgmpymZt9BJg9SLgRSCtyM4/rcVPZycU8S1Uk13rYWnJXbi87tm+M
ilA3hNOV/lHfdlUSB1z9mZ3Vfcw+RB0fNMvMUYgDVeIppKlz2v9DeoSYz6+Yys/A
/8Z7OLvKuSdXAWxL0gLwk1t/6MmVUmcR+ensS3vzcAYytsH38dtXL7/ezVO1cFBR
321BT7b+2uaea6iAtfa4SDoGsIo52wALGE7rMBsnHWs0DhAqg5A=
=i3wQ
-----END PGP SIGNATURE-----