This signature file may be used to cryptographically verify file integrity,
like this::

    $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D
    $ gpg --list-keys 0xA16EB94D
    pub   2048R/A16EB94D 2008-08-15 [expires: 2023-08-12]
    uid   Turnkey Linux Release Key <release@turnkeylinux.com>

    $ gpg --verify turnkey-tomatocart-12.0-squeeze-x86-vmdk.zip.sig
    gpg: Signature made Tue Aug 21 12:31:18 UTC 2012 using RSA key ID A16EB94D
    gpg: Good signature from "Turnkey Linux Release Key

For your convenience we also include file checksums:

* sha1sum  b50aa13fcb6fe30bc84657347d96bb2ffb13dd9a
* md5sum   03bb27faed6dec24e2027a03b9d1ec23

You can calculate these on your end and compare to check for errors, but
cryptographic verification is recommended for security reasons.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)

iQEcBAABAgAGBQJQM3+LAAoJEIXCXpWhbrlNRr0IAMKh69t5iFTvTSofvDMxawP3
vgbYINx0v4YmG2F4Wnk7/3bibd6S+6pqf+mHIo/CdHOmA1+hL/MRDkH/JmQuvyP0
jISqq4LzahWiwSQG3uNUM7YarFuIbReEXfmJcVXFI8xd2d0/E1E88+gcD0TCX1Vm
jOQIK7LydIKFkTEdAtV2DO4NJ/s/mRWF29NK9bvesQ43EU5ZIjs7+d6HE1e7D7lb
gTX49wlYsAz0sxZIhWjvz0KxCk6r3b7JN6S/xCVZlwl38vA4hLUp4WE9SsB12v8b
6Xx7F3ghIvsULvq+IHCGx4XLvj0ymYAq+KnmDDCEAcEJVBU82V5naQFW7gkvh6s=
=DVxm
-----END PGP SIGNATURE-----