This signature file may be used to cryptographically verify file integrity,
like this::

    $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D
    $ gpg --list-keys 0xA16EB94D
      pub   2048R/A16EB94D 2008-08-15 [expires: 2023-08-12]
      uid   Turnkey Linux Release Key <release@turnkeylinux.com>

    $ gpg --verify turnkey-lapp-12.1-squeeze-i386-xen.tar.bz2.sig
      gpg: Signature made Tue Jun  4 21:50:55 UTC 2013 using RSA key ID A16EB94D
      gpg: Good signature from "Turnkey Linux Release Key"

For your convenience we also include file checksums:

    * sha1sum  5878f26e3f4b61dd04b70433c99d78970f9c6571
    * md5sum   9d88fcf1f8b781c2a06d7f6f9815fc3a

You can calculate these on your end and compare to check for errors, but
cryptographic verification is recommended for security reasons.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)

iQEcBAABAgAGBQJRrmE2AAoJEIXCXpWhbrlNXG8IAI5xz6cX9RJ/A7h3TkfLjeyW
zvtmeKqXdKlQ3ItUTDqC7ngPhtIGIE+p/OZM2pD/eXhcc1roHwRxtnaH6pUy5ycp
FNl+nUD4DotPClsmauCAo0QqTt38Xo3irUsehWK7BVm0woPiaPzDOdsB83kSCOWf
jFgjkf+J/QGKdXbzzS+BzpkX4+8eIJJNTchJkg7pX5jEM4eS5PLWZJVehs+H345E
66DY/UOAoeccQJTOeIh/DlyJOwOKhp5Vl3+IvNuDjGsHb1ujhWzOajFE7K0eEjI0
tiMkXnSTZoESwLZJvvvtjyt85ef64vAyNSjz7JxNv+iz7Q0CKUIa17425GWVos0=
=ykR6
-----END PGP SIGNATURE-----