This signature file may be used to cryptographically verify file integrity,
like this::

    $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D
    $ gpg --list-keys 0xA16EB94D
    pub   2048R/A16EB94D 2008-08-15 [expires: 2023-08-12]
    uid   Turnkey Linux Release Key <release@turnkeylinux.com>

    $ gpg --verify turnkey-canvas-12.0-squeeze-x86-openstack.tar.gz.sig
    gpg: Signature made Tue Aug 21 15:14:27 UTC 2012 using RSA key ID A16EB94D
    gpg: Good signature from "Turnkey Linux Release Key

For your convenience we also include file checksums:

* sha1sum  cf3e3d0e2abd8cbae177f54ed9066eb14ece913a
* md5sum   3356a7b35bb00a6b1d3e3f455aa79da1

You can calculate these on your end and compare to check for errors, but
cryptographic verification is recommended for security reasons.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)

iQEcBAABAgAGBQJQM6XCAAoJEIXCXpWhbrlNqscIAKfVw7eTBUVerIV0uqJy1L+0
XeMYjNhehJs9GUVwRTwl58v7Y6/5U/NNSWwIGDF+79CKxXOMAfegyEVzE+5qnMoc
o/rsRfTmuT2AKxOvJn5vwn4VH6F8eA0QDdVQzc259FJ0WJrmTTwVfN8CbmAc8u0w
J7Fuxp8nW1iOn166FsHis2rLA51WgH1UvGyIhzTxfvGFYmEaetDS07J0A5P0Yx05
Pe3VRtaRlJFuvKlRLPKr669P6y5NhLCI3ufYmIFbqjrCZV5lWblTMZ8SZ67b1Ehf
utwCTwvPOt9Vfubr8zUo4+7BlGTMi/ZnBhZp/nCXOAMd2H/jDzpwPFZcs6I/U1Y=
=jTw1
-----END PGP SIGNATURE-----