This signature file may be used to cryptographically verify file integrity,
like this::

    $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D
    $ gpg --list-keys 0xA16EB94D
    pub   2048R/A16EB94D 2008-08-15 [expires: 2023-08-12]
    uid   Turnkey Linux Release Key <release@turnkeylinux.com>

    $ gpg --verify turnkey-piwik-12.0-squeeze-x86-vmdk.zip.sig
    gpg: Signature made Tue Aug 21 12:13:41 UTC 2012 using RSA key ID A16EB94D
    gpg: Good signature from "Turnkey Linux Release Key

For your convenience we also include file checksums:

* sha1sum  668c5a1dd77c1bc1460c75b2bdede767795e9bfe
* md5sum   d26b7f8c8cc11ff80e37c5121818cfd9

You can calculate these on your end and compare to check for errors, but
cryptographic verification is recommended for security reasons.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)

iQEcBAABAgAGBQJQM3tqAAoJEIXCXpWhbrlN4bwH/1YkCsuwUSNzK+JEZP+UYUYD
2vxp26q32WNE+ZfVUe0AZo17ExGjKBT24GqBHy0Bh+Lvfsnhi9kcBX6NDOcFaIs5
FWxR+yfkmk4tZ3SZzYYQHAoVESPMmaIrO2XKKCiWu2y3lJ5BuA5SzXFRhGLiDldh
DiNSEMOe8iNWhhT3+5PHUs4/0WDC9MeXm/d3plHseWcp7sFTvWo1r3A8Gc1fCfrL
M5cpItEeCMTB5BnH/ZGBEFgacZPfrrJ/30VZ/rr+FNO9nt0LwQ1FcxxNYjnQAeoB
eH3n5FQ6ZKfV8+5bdG7U1bdj1X35fYdBHQxumpDL/tSINVw8AxY3Dw/c4T+L3Dg=
=j+bU
-----END PGP SIGNATURE-----