This signature file may be used to cryptographically verify file integrity,
like this::

    $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D
    $ gpg --list-keys 0xA16EB94D
    pub   2048R/A16EB94D 2008-08-15 [expires: 2023-08-12]
    uid   Turnkey Linux Release Key <release@turnkeylinux.com>

    $ gpg --verify turnkey-canvas-12.0-squeeze-x86-ovf.zip.sig
    gpg: Signature made Tue Aug 21 11:32:10 UTC 2012 using RSA key ID A16EB94D
    gpg: Good signature from "Turnkey Linux Release Key

For your convenience we also include file checksums:

* sha1sum  6568207903da90af63592eb8edfae6d4f2345c12
* md5sum   969bff42dc5a779b6538e2a65208b96d

You can calculate these on your end and compare to check for errors, but
cryptographic verification is recommended for security reasons.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)

iQEcBAABAgAGBQJQM3GmAAoJEIXCXpWhbrlNB/UIAM33RpVzBsf09wFXjQpPg/P0
DKL/WJ4eg6zuDX0bUh+8Y4qn0GjX2Im2kW8cW1BzBngXVCRlfml5WCSIZIm3hXq+
WI489rVi1vepn20eaZOdDPnf82hHJn+kJ16vpgnyAZlHZK4zXw/RTq3SW4T4PG3q
+/0X5MgIzEXgsk9K2BQjib5r0Szr0IxgLO11oH9S06AI17Q/jIteLr3khhahRrSk
4PeIGjdwbfRA87+hP2FqV+vWGrFdMZioYcE5VJsvNaXcZs5awlGt6qujShucsU8k
O2BQycVPdapsGAY7TXRnspYhpRPCDVDdbXNvXmr6Roc3hq9QaXgJmW1uPnEgoFA=
=A0qD
-----END PGP SIGNATURE-----