This signature file may be used to cryptographically verify file integrity,
like this::

    $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D
    $ gpg --list-keys 0xA16EB94D
      pub   2048R/A16EB94D 2008-08-15 [expires: 2023-08-12]
      uid   Turnkey Linux Release Key <release@turnkeylinux.com>

    $ gpg --verify turnkey-yiiframework-13.0-wheezy-i386-xen.tar.bz2.sig
      gpg: Signature made Fri Nov  1 10:00:22 UTC 2013 using RSA key ID A16EB94D
      gpg: Good signature from "Turnkey Linux Release Key"

For your convenience we also include file checksums:

    * sha1sum  33762f174ee708158d0df7f4e9933e04deebb533
    * md5sum   992859bd0890575ba0a927609e1a827a

You can calculate these on your end and compare to check for errors, but
cryptographic verification is recommended for security reasons.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)

iQEcBAABAgAGBQJSc3utAAoJEIXCXpWhbrlN2ZsH/3mD+zkuBgIiwvwnvRTa4GbX
SltfXQmkiJVOGjWV2kgAr7K03Hz7M+mtNdaCZ8z7+KBAempsQZnuwkfbqBH3t4Xw
t98FcFLIPIndMNdeHThPrxpJBKB0HxaZecVSzeL/zi5sr0jJXA7t1OoqS9F6zo9M
cmnWRJB3QKGG/KfjT4DQ6G6rFFXJCwj+QrEoNnAfxgz8Kq9+POPsa5NEIEuKLH/o
3sH4OsL47o8tN/a1RWcAvtJp965VCHhBhd7EKI5Gx36iitiIK5exgjhfwJShMU65
MbdJWy148xRfZP+izcX8wbyBC5n2+IiHi5z9lgHFs0gBMyhYgjmKuHkeiubATN8=
=QN2Q
-----END PGP SIGNATURE-----