This signature file may be used to cryptographically verify file integrity,
like this::

    $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D
    $ gpg --list-keys 0xA16EB94D
      pub   2048R/A16EB94D 2008-08-15 [expires: 2023-08-12]
      uid   Turnkey Linux Release Key <release@turnkeylinux.com>

    $ gpg --verify turnkey-appengine-python-12.1-squeeze-amd64-ovf.zip.sig
      gpg: Signature made Tue Jun  4 12:24:02 UTC 2013 using RSA key ID A16EB94D
      gpg: Good signature from "Turnkey Linux Release Key"

For your convenience we also include file checksums:

    * sha1sum  2ee39772fc1432180542bdaf59bcd35cb376ae70
    * md5sum   ae11be70eedf49d61d7b6fb9e30df37c

You can calculate these on your end and compare to check for errors, but
cryptographic verification is recommended for security reasons.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)

iQEcBAABAgAGBQJRrdxXAAoJEIXCXpWhbrlNc7oH/0eZOXYhq7q5FbFhoPIiq38f
E6yfmiPGpsu0y3nxq4P19TnrDem23jzNDmFGyhoAve16JU1c29YmYuKYMdJYMhb6
2JWCyVpfunMxB1FcOnTlhlgcG00wJhJti/GFdTn4+Brc0HzOqJYkuW7Bk9Hp2IJ4
Jy3KBsLLHu5GB6biuS5x9UPL8FgZYuTcT0P8s3/kjFRUIZA/vSaZZ6NTOBPCzJei
O5wQorBoOzhu7FnYVVxBtJXPceW0/xrJs4e2pWCV5b7nkDU4wWiXFKMOKaSRkmR/
4FXi9zDfMMWk4iqdjVDVcsXkNm6Ch0ZYv3uMBsuPaY0X8C8ygnoh2byohfjRnC4=
=ZSr/
-----END PGP SIGNATURE-----