This signature file may be used to cryptographically verify file integrity,
like this::

    $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D
    $ gpg --list-keys 0xA16EB94D
      pub   2048R/A16EB94D 2008-08-15 [expires: 2023-08-12]
      uid   Turnkey Linux Release Key <release@turnkeylinux.com>

    $ gpg --verify turnkey-silverstripe-13.0-wheezy-i386-vmdk.zip.sig
      gpg: Signature made Tue Oct 15 18:39:51 UTC 2013 using RSA key ID A16EB94D
      gpg: Good signature from "Turnkey Linux Release Key"

For your convenience we also include file checksums:

    * sha1sum  37e17db39be43fbd9066bca536a90ff6b43c9e13
    * md5sum   c38b1160ea016d221f322f74a95e7460

You can calculate these on your end and compare to check for errors, but
cryptographic verification is recommended for security reasons.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)

iQEcBAABAgAGBQJSXYvrAAoJEIXCXpWhbrlNZxwH/AuwkGFQD5aWKcIQ4xLNjSdh
SnXf6aSNVdJotEjXRo/3XcPdDywe4X4NSR/kTfFJ48VgbgbuCg1VfOpv9uKqMT+O
GyHdooLkl/6kmD56rB+1PfG6DISq0eQ1h3FZ80aKN5BHO4dS4DRMHkzbzgPVL3RH
Fop5WRArQzLWHIkz88yT4uYRRzaJTfWavZuW9oHTX3BV9d8d69dO8Pd7LbM6sZSC
V/3uNufxwfEtBPFDipg/lZlqS5n+BopbIl1nNbKcnedmYJej+OoEslIbAYdB/sIL
v+jZSt/ggLMjckkZ3NcF/vBhj2yNb49ZCDioa8KQNSjea2DqnvurNDLDKKhXUng=
=qwsa
-----END PGP SIGNATURE-----