This signature file may be used to cryptographically verify file integrity,
like this::

    $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D
    $ gpg --list-keys 0xA16EB94D
      pub   2048R/A16EB94D 2008-08-15 [expires: 2023-08-12]
      uid   Turnkey Linux Release Key <release@turnkeylinux.com>

    $ gpg --verify turnkey-bambooinvoice-13.0-wheezy-i386-openstack.tar.gz.sig
      gpg: Signature made Tue Oct 15 15:05:53 UTC 2013 using RSA key ID A16EB94D
      gpg: Good signature from "Turnkey Linux Release Key"

For your convenience we also include file checksums:

    * sha1sum  2478700428bd2dac062527cad33c6efaaa4cd3e3
    * md5sum   a6bc2adb6e60c3aca5d5d6412d198060

You can calculate these on your end and compare to check for errors, but
cryptographic verification is recommended for security reasons.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)

iQEcBAABAgAGBQJSXVnIAAoJEIXCXpWhbrlNQBQH/1P0OPNyCqmnHL1ulVRzn9F3
dlXyP+g9kbaJcTlsnrpQQW7kWy4vja+2T8ob62e2RdGP91LU0U8xIr6IZkI6h29Z
UoMiGQ9hXEO3FoIu8gu4vVMT7vmZvHTCyOxxYHw+OhZoI4pE0g05DWfWpZbXdDJL
W8T1OJqVJJgteGuAPEQQo9UK/BhBCF3Fnq59E122zRn/6dlXNb7u/QA3Rf3NFRmf
HyYoT1pSvBmiwo52obEwWzwRvV/qt3uc4u2Y1q6NTbPA31oOCmROjdz5UTHkSh2U
FDyn+8zX4OXfSAV+hJIfzLDyAzzJsPirnKNuHBK4KymfTVw6tt/wlC5Gfhv/GJU=
=HDh1
-----END PGP SIGNATURE-----