This signature file may be used to cryptographically verify file integrity,
like this::

    $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D
    $ gpg --list-keys 0xA16EB94D
      pub   2048R/A16EB94D 2008-08-15 [expires: 2023-08-12]
      uid   Turnkey Linux Release Key <release@turnkeylinux.com>

    $ gpg --verify turnkey-asp-net-apache-12.1-squeeze-i386-vmdk.zip.sig
      gpg: Signature made Tue Jun  4 19:44:38 UTC 2013 using RSA key ID A16EB94D
      gpg: Good signature from "Turnkey Linux Release Key"

For your convenience we also include file checksums:

    * sha1sum  06c67eefb71d29124da1f58ee8957b6baa41d342
    * md5sum   84a3b04120c554b15796a366e4e6b0db

You can calculate these on your end and compare to check for errors, but
cryptographic verification is recommended for security reasons.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)

iQEcBAABAgAGBQJRrkOYAAoJEIXCXpWhbrlNYpIIAOvrBY3lts/KTOji2Bnt1Qfv
+LD3LhOolEEdazWJrQieW564DuNIJ/ad6LVgRV75QVGobBGWxUWbK9wEuRvfmySv
egSaAm/QbKVwolONr9eDnNrw260zOzPc+E37TrvxXhYLYx2ueH732qVRmceSNjSl
J+q2ca+tsT4LZiKWaNc5qGlJPuaI8PwUIvxGxmd7W+WplJes5iLAhMhwvRYjWGxX
ewqqC8eVL85AqpqmNuyqgbUCbxzcUFxb2E44ZehfuScUhmqr+MwNLTECVjbOcd3w
05cKMIoedrYpRfwXfAf77OVA9uDzniDiHldRSKC1hu7pRt/6bh/XAVLWjI88QHI=
=Wk4U
-----END PGP SIGNATURE-----