This signature file may be used to cryptographically verify file integrity,
like this::

    $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D
    $ gpg --list-keys 0xA16EB94D
    pub   2048R/A16EB94D 2008-08-15 [expires: 2023-08-12]
    uid   Turnkey Linux Release Key <release@turnkeylinux.com>

    $ gpg --verify turnkey-rails-12.0-squeeze-x86-xen.tar.bz2.sig
    gpg: Signature made Tue Aug 21 16:43:37 UTC 2012 using RSA key ID A16EB94D
    gpg: Good signature from "Turnkey Linux Release Key

For your convenience we also include file checksums:

* sha1sum  59fb8af11cb2f286001081f83c239a0a30197aa4
* md5sum   0b2325a1ffd53648963fbe5a45ea9f33

You can calculate these on your end and compare to check for errors, but
cryptographic verification is recommended for security reasons.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)

iQEcBAABAgAGBQJQM7qtAAoJEIXCXpWhbrlNM/gH/2AyRdOSDBM9Ep4qyUrCnSUF
Wmc7DR81cFbuxyKZj80QR3serKQITbX+vf0ltEAQDRlj/3opcVuh4x04r5B3/65b
/Y6MsDYyE0cHoLSbVO9q1bA5aSYjIJGPZSxs/og4hDTRRDeO8BbtDEdRmb+82XPg
sdRZQmfE3VcQHkbTNhD+8XpiNuBVMh/SKEAn/RrDCqTJEOtCmT4M5wvZ9v8+Cf0p
QKzfsLZdCaH4y+BBkWQIi30Tb5izGlmBRlhuBMBeqabK//kZAfCf//E630AWM6TW
yA138gQiGqRM/mA19N6jWau6MPY2KF3v4GGs0JTBqMshGBBny29T9r70zrkhcWI=
=ygGw
-----END PGP SIGNATURE-----