This signature file may be used to cryptographically verify file integrity,
like this::

    $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D
    $ gpg --list-keys 0xA16EB94D
    pub   2048R/A16EB94D 2008-08-15 [expires: 2023-08-12]
    uid   Turnkey Linux Release Key <release@turnkeylinux.com>

    $ gpg --verify turnkey-tomcat-apache-12.0-squeeze-x86-openstack.tar.gz.sig
    gpg: Signature made Tue Aug 21 16:38:47 UTC 2012 using RSA key ID A16EB94D
    gpg: Good signature from "Turnkey Linux Release Key

For your convenience we also include file checksums:

* sha1sum  d611dcc74a0d0ba2ded65cfff4165861ef636c16
* md5sum   a27690d116208457068c19e745ddf416

You can calculate these on your end and compare to check for errors, but
cryptographic verification is recommended for security reasons.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)

iQEcBAABAgAGBQJQM7mJAAoJEIXCXpWhbrlNHL8IANebWDq7N1+O/qnCIy93tJtX
v4TxkquHnaCbs1kcLwfyC9cwilOVHSd1m9levwkUepRLLwgbqhTLTS2wmzY2PwC9
iPZ7/w9ZReZI9YQ7nbTksFTu8oQ26j2c/grj0Bewp6s/yOi2Kc2RtC1j96hPS8lE
OcfuWCwKbNWQ/PoQqAn+sMLA7RrPmEx1vgJ8w5UwobXUntpFBPJmZx3Qb2do5uyG
m34lX2SnJR/+LBAz/xrvLOWeBM6i4QiV9Hh4+WL86YDJkwWkRQzMB/MtYhXkOnFs
+A1og71kHXmkv5aBFXu/Q4KoqeaIhbjqbOq2wUeI001QYJyaMn+5J0At3Qf2Zuc=
=wetP
-----END PGP SIGNATURE-----