This signature file may be used to cryptographically verify file integrity,
like this::

    $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D
    $ gpg --list-keys 0xA16EB94D
      pub   2048R/A16EB94D 2008-08-15 [expires: 2023-08-12]
      uid   Turnkey Linux Release Key <release@turnkeylinux.com>

    $ gpg --verify turnkey-yiiframework-12.1-squeeze-i386.iso.sig
      gpg: Signature made Thu Apr 18 14:22:14 UTC 2013 using RSA key ID A16EB94D
      gpg: Good signature from "Turnkey Linux Release Key"

For your convenience we also include file checksums:

    * sha1sum  3b4cb260ba8675e6a0ad49a3a77ccfdf9be9025b
    * md5sum   6f57bf3eb225cceca279dbb973d14570

You can calculate these on your end and compare to check for errors, but
cryptographic verification is recommended for security reasons.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)

iQEcBAABAgAGBQJRcAGNAAoJEIXCXpWhbrlNDHgH/0XFkgiwu/4iOgdfUwcuIXIz
LN5D/gDG0PGJnp0BJjTz3hhxVwZsjPqXBzCKRiV4QaEJky/8DH6JgRxt1e9z1USo
bdbTr+BwKT7w94plzIRNrj6nkmvYztj1IYPvBhU/3X4hjivHbjMuwkIJ7Xi0e6cD
5REF7rp8oQqaw46qFkOVhqon/nzP5n1HceK2/cgEEIWBzRjYzT6xxwUs0uY9YQby
Is+BvhuRoZKLoKEsFKf0h7PgzF+j/jYsZJEbf/ZbsYWN89w5ZXigC/fL84y/H9ik
mCsXh8iBS+KQTLlzaJu64cF49ChDRKUoPwYScSmeU9bdMHlG5kL6FReIeHGQPV8=
=ICkq
-----END PGP SIGNATURE-----