This signature file may be used to cryptographically verify file integrity,
like this::

    $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D
    $ gpg --list-keys 0xA16EB94D
      pub   2048R/A16EB94D 2008-08-15 [expires: 2023-08-12]
      uid   Turnkey Linux Release Key <release@turnkeylinux.com>

    $ gpg --verify debian-7-turnkey-gitlab_13.0-1_amd64.ova.sig
      gpg: Signature made Wed Oct 16 08:57:21 UTC 2013 using RSA key ID A16EB94D
      gpg: Good signature from "Turnkey Linux Release Key"

For your convenience we also include file checksums:

    * sha1sum  d023732c1c5d407fb5471b2e365a940ef6ddab73
    * md5sum   b88759b919bc650a98a115ad5a2ecff5

You can calculate these on your end and compare to check for errors, but
cryptographic verification is recommended for security reasons.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)

iQEcBAABAgAGBQJSXlThAAoJEIXCXpWhbrlNrLIIAIts3DCtNVdDu0aRN0MIY/fm
iQyb0Q5gNvwRGN3K3sJFhU1VWnymCoS+fqx+w4UaNrvU9J4lZ6ny7CxBt4SAdFEd
OlbB9IcSl6aODQh6Gxtj35IIqM0KGjOprewnXb39cTtijmCJ/nLK9Hv1sph6MkU2
gu5pBJ7sDfbWxTj2BrfrKjzOK6WkKfLQYTTBd9TYHJTg/a16IVDy4kIBqHBijMa9
LE+hfb9Z29DmOrizF/fY+HKo+ppxnEWWnIkZioQDzn9G2Q87jelzwny92+kZ+VbL
h90TbsHBoyR/8AHpKsCSE/iFxlqusntXIQADsgUaluCu6V45dNU3YpquEhhxQEo=
=4PrH
-----END PGP SIGNATURE-----