This signature file may be used to cryptographically verify file integrity,
like this::

    $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D
    $ gpg --list-keys 0xA16EB94D
      pub   2048R/A16EB94D 2008-08-15 [expires: 2023-08-12]
      uid   Turnkey Linux Release Key <release@turnkeylinux.com>

    $ gpg --verify turnkey-moinmoin-12.1-squeeze-amd64-xen.tar.bz2.sig
      gpg: Signature made Tue Jun  4 14:29:43 UTC 2013 using RSA key ID A16EB94D
      gpg: Good signature from "Turnkey Linux Release Key"

For your convenience we also include file checksums:

    * sha1sum  a4cc4de8ea2a571d8f83a3482ad80226e61ec55f
    * md5sum   220d562e936362e73208191f6a4f1952

You can calculate these on your end and compare to check for errors, but
cryptographic verification is recommended for security reasons.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)

iQEcBAABAgAGBQJRrfnRAAoJEIXCXpWhbrlNr8EH/RMByiOPEcmpgQyPuMMiZxH2
FKX/Pabnh8tELNd5iJHBLlEGuUYoyEnXntCe1/NoNxzw/V4TcT4BkMEhICppRp+N
y8jIxjNhvjfReJ6MleM4naXrLd0ScgAjqK5+eQEuayXAxH4zcoZ313km9ilR8Vrz
nvbDspozsg8359NE9UWf9eYs2KaIfMIewdDQrJAgOAtq/b1jtouovAsjSvcxSJj5
g6z9oJdyx2HXl+tPK/bXHs2B3NOrF+A9UDYwUmQj0tlGWmObMeVLgk4TJnnpjWCR
uhHudqw6jSA/FALPI+zgB4LFAAnbRhKik/RTY/1bh6FEaS4I8fiHlQstxelns9g=
=nyA7
-----END PGP SIGNATURE-----