Redownload. Check again. I'm on satellite internet with the horrible latencies and frequent timeouts associated with that tech, I recently had the netinstall image for Debian fail integrity checking three times in a row, from the http mirrors. Guy from the link said it himself, download via torrent and all is well.<p>Generally, being on such terrible interwebs I get angry whenever I hear people claim torrents are only for piracy. We all know they're wrong, but my legal torrent use has really never been more intense. Rsync's ability for aggressive retrying is also blessed :)
There are a bunch of reasons this could've happened -- corrupted downloads are not unheard of on poor connections. Maybe the file was truncated.<p>Or maybe it was the NSA. Without any further analysis, this isn't particularly noteworthy.
Can't speak to targeted interference, but I can fetch the ISO and signature from the mirror he used, and verify it successfully.<p>output: <a href="https://gist.github.com/daveio/edac4aaee516cd6a408d5c8e763cef5f" rel="nofollow">https://gist.github.com/daveio/edac4aaee516cd6a408d5c8e763ce...</a>
For reference, here's a check of the torrent with the .torrent file I snagged from <a href="https://www.qubes-os.org/downloads/" rel="nofollow">https://www.qubes-os.org/downloads/</a> last night. Master signing key checked against the fingerprint published on the mailing list in 2013. Looks legit.<p><pre><code> Qubes-R3.2-x86_64 moi$ gpg --verify Qubes-R3.2-x86_64.iso.asc Qubes-R3.2-x86_64.iso
gpg: Signature made Tue Sep 20 18:33:37 2016 BST using RSA key ID 03FA5082
gpg: Good signature from "Qubes OS Release 3 Signing Key" [full]</code></pre>