Cryptographic verification of downloaded material

Handlers should, where possible, support cryptographic verification of the material they download. In particular, http/s downloads should accept a md5/sha(N) option to verify contents against a known hash.
