This signature file may be used to cryptographically verify file integrity,
like this::

    $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D
    $ gpg --list-keys 0xA16EB94D
      pub   2048R/A16EB94D 2008-08-15 [expires: 2023-08-12]
      uid   Turnkey Linux Release Key <release@turnkeylinux.com>

    $ gpg --verify turnkey-core-12.1-squeeze-amd64-vmdk.zip.sig
      gpg: Signature made Tue Jun  4 11:51:21 UTC 2013 using RSA key ID A16EB94D
      gpg: Good signature from "Turnkey Linux Release Key"

For your convenience we also include file checksums:

    * sha1sum  177429412c3b19d3604b8ad77a5b3f780b72a875
    * md5sum   c963c12c64a072a0db8c922594d2a6ff

You can calculate these on your end and compare to check for errors, but
cryptographic verification is recommended for security reasons.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)

iQEcBAABAgAGBQJRrdSzAAoJEIXCXpWhbrlN95kH/iO15q07xwxbJ8saJX2j0pZG
idv997U3/CcR4QntlljNJq3NE8wz8epZqLgbr2bdUCcJAN1WzLkmX+6nxMCkHaM1
adNjEMXyh8wl9epwV/1VzzuQxcrYywkA0UyGfKmkgVK/poaIAZwe9NTYFT6CSl3S
q1Swj6S0YRtNFzCFjlQ6bElFXRpYFcyqDZqsUQ8/sLN8yivQIDPmgUz9E447aW7K
n1SeQ0KsnsPvmdLTkKnqIy+/dwwtF8vsMxiZOY84dZ3E+mwCBfP7nthvBkJ+TjAj
8GnnzdvQuDm2SN0AI07HMSYHFCsDrjd0Dm487lgsKsj5AZY3Tlz8UIH6Ne+owNw=
=cjvp
-----END PGP SIGNATURE-----