This signature file may be used to cryptographically verify file integrity,
like this::

    $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D
    $ gpg --list-keys 0xA16EB94D
      pub   2048R/A16EB94D 2008-08-15 [expires: 2023-08-12]
      uid   Turnkey Linux Release Key <release@turnkeylinux.com>

    $ gpg --verify debian-7-turnkey-yiiframework_13.0-1_i386.tar.gz.sig
      gpg: Signature made Tue Oct 15 20:33:00 UTC 2013 using RSA key ID A16EB94D
      gpg: Good signature from "Turnkey Linux Release Key"

For your convenience we also include file checksums:

    * sha1sum  e06741d775a56d76f7e9ff55aab64ae62dfb2cb0
    * md5sum   5d0297ffd3af23cef44ac69e544ff2ab

You can calculate these on your end and compare to check for errors, but
cryptographic verification is recommended for security reasons.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)

iQEcBAABAgAGBQJSXaZ1AAoJEIXCXpWhbrlNXzgIANR3GKZu2ygkE1+t4rOq8nG+
tTAZwt3Cm9tQk0xli7nit7VJ8oujJof8J7qUxrgloZQhR0rIO519IT008VYk9YUk
XbT82Jh9tZZtMCgv+4EMQFn5bS98vJZj7yO0Df1jeWR8vgQyV7MjphMxKgUQOiPg
lQe7fQ7LZs2zxCChOt88Jn5y4k2wtCmes9O9lXx6cyJIrRRPzGiyrYGUu4QJvGks
sk4GBQJpEgwPgB5Q05vUjNrQguqbaYFcvRwN5Su/ZnIyxvs1/kqFVbKTqfm75bC8
lAiTe0HaCoQtRyd7nyWzQvU7vyKtHAPQq8Sss5YZDy1KTkIDXQ3RVzTmIg4OQV8=
=bKnI
-----END PGP SIGNATURE-----