This signature file may be used to cryptographically verify file integrity,
like this::

    $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D
    $ gpg --list-keys 0xA16EB94D
      pub   2048R/A16EB94D 2008-08-15 [expires: 2023-08-12]
      uid   Turnkey Linux Release Key <release@turnkeylinux.com>

    $ gpg --verify debian-7-turnkey-canvas_13.0-1_amd64.ova.sig
      gpg: Signature made Wed Oct 16 08:40:42 UTC 2013 using RSA key ID A16EB94D
      gpg: Good signature from "Turnkey Linux Release Key"

For your convenience we also include file checksums:

    * sha1sum  c1ef5eef7d657bf545398ff244651446db734c77
    * md5sum   10d6aab1e2d48268845fa67d887ed1a1

You can calculate these on your end and compare to check for errors, but
cryptographic verification is recommended for security reasons.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)

iQEcBAABAgAGBQJSXlD0AAoJEIXCXpWhbrlNOgQIAKPkzQBe2ko8nB7/HvT+K9Do
EJbgq2lvTtuzJH3FFu3kNVLUnKb2RVFkSAWe+OVd8Kf2wQJUS1gj1fNSrbxHFV+n
YI2mWVWkMkJIJS1XGFRz4CQY9OofsrGNE8EdJf38ZcoBQMvF6W5e8TIBKgJmKuUt
diHRPHQCNDXBYkg9lyxyldbLzOIGRDiLrR4imuFL5S7GGyKMHMifh2LHbpVxueVv
TDHam1/V41m8IK8MzoJ8pkeGSEWzzn27eyJ973NHHHPEeOPnMIGOky2HDrgcVcJW
XtnQ0N4L26vEbuaa8w35PcFLfgdSR9sFMmooc2wRiTi/KDf89XszL6SCBXSUWsU=
=qTMa
-----END PGP SIGNATURE-----