This signature file may be used to cryptographically verify file integrity,
like this::

    $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D
    $ gpg --list-keys 0xA16EB94D
      pub   2048R/A16EB94D 2008-08-15 [expires: 2023-08-12]
      uid   Turnkey Linux Release Key <release@turnkeylinux.com>

    $ gpg --verify turnkey-clipbucket-12.1-squeeze-amd64-xen.tar.bz2.sig
      gpg: Signature made Tue Jun  4 13:05:42 UTC 2013 using RSA key ID A16EB94D
      gpg: Good signature from "Turnkey Linux Release Key"

For your convenience we also include file checksums:

    * sha1sum  3f9d6c1e1739c8d089ff87e1b002003ba9a188d6
    * md5sum   da74a05214f382d51df0c3d28f1ab9c2

You can calculate these on your end and compare to check for errors, but
cryptographic verification is recommended for security reasons.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)

iQEcBAABAgAGBQJRreYfAAoJEIXCXpWhbrlNBG4H/1FlqYHuo0N1pdEpsoP4TRSm
5qKOF3c0GOyxXRiDpUbd61/NgzqrndM3zvkgXMyiOISiDEi7563ry4Uqo75pdFg+
dr/1RJ00WyzZ83+o2akUDdFY9S6r64E15PU7CA1gyLRF9Ux8w+hTcaQ03Amsb/fa
NizFzimSZctrDQyvR13KtlX0BQc84sluOYES3e2wxiOpK8QY3HBkY06TYz3Nb6wq
LIbbGHRhDx5clS1yAZLxb9tmdV3PLCjLHDFhMdYS08ye84GJdJDewICc0yTlbaKT
/quQN1elsCsUA4s29Fl9pRbL+kEws11eVpBnX4qgEhcYRj93fuUUu+JyGgJJfBw=
=gfnF
-----END PGP SIGNATURE-----