This signature file may be used to cryptographically verify file integrity,
like this::

    $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D
    $ gpg --list-keys 0xA16EB94D
      pub   2048R/A16EB94D 2008-08-15 [expires: 2023-08-12]
      uid   Turnkey Linux Release Key <release@turnkeylinux.com>

    $ gpg --verify turnkey-vanilla-13.0-wheezy-i386-xen.tar.bz2.sig
      gpg: Signature made Fri Nov  1 09:58:53 UTC 2013 using RSA key ID A16EB94D
      gpg: Good signature from "Turnkey Linux Release Key"

For your convenience we also include file checksums:

    * sha1sum  a1855862effc2c0918016ae23c96fe6899e54b16
    * md5sum   9039688c8f5f51792696c2337b622a83

You can calculate these on your end and compare to check for errors, but
cryptographic verification is recommended for security reasons.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)

iQEcBAABAgAGBQJSc3tWAAoJEIXCXpWhbrlNV/gH/AiccgY55QO2DNtXDjXmH/Aa
nyQ46KJmTKIOm5CDtdGgxsMp1nLZz/W1vD+izoqYtyz9Qn8FfVL1YwrGMko9AxHK
Jdg+2H+5dg4GHuw2bvY4hUp7L7ILDntFPRxVzRrgAeF95uE4eg8Q/4ccDz07vXh3
meD4hYhbSeQUEJ9mDZc2lV4DOIDwNhXPsxlxPIV2TyVkzLsCMlES5l9RkZpK3EZd
TDxkvUAiH9yvaD6VyST9nY8+D/1qPr56tly0YvTWnydRyUC9a3TCqvAKOGuxfhhv
1OXl0yThEPPhibmYjj/ecMntQmfiFij3nBZW/1lBWdDLCTG9SC59QLwnIF2MF+4=
=sGXy
-----END PGP SIGNATURE-----