This signature file may be used to cryptographically verify file integrity, like this:: $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D $ gpg --list-keys 0xA16EB94D pub 2048R/A16EB94D 2008-08-15 [expires: 2023-08-12] uid Turnkey Linux Release Key $ gpg --verify turnkey-limesurvey-12.0-squeeze-x86.iso.sig gpg: Signature made Sat Aug 18 17:16:21 UTC 2012 using RSA key ID A16EB94D gpg: Good signature from "Turnkey Linux Release Key For your convenience we also include file checksums: * sha1sum 7bb368d9ea69ae0cbea1dd672fe99e86c34551f2 * md5sum 835840857258d80c2b252d4254e84eba You can calculate these on your end and compare to check for errors, but cryptographic verification is recommended for security reasons. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iQEcBAABAgAGBQJQL83aAAoJEIXCXpWhbrlNpIcH/iyh13F4LSAOg1fuNKWdG77x 088m2K4BIMfMq+ew3Hx4T885ZzbeEj2iOghWIPyCcDPTUC7CZw7eU9g3VGM7GsCy q1o6y16QwUsra7dVynWj1PX4ahCyjJVCjTUI8iIH7LZPQPep4UhKTenJ6p0+3m4C F0hnirrG5pmDyKySYOQIq55I0JXTHC+rysXL18aLMTlIFcUw7p6hXRvnWHJ9IeHx 3HwDBJPj+Vz5umY8aUsRg8lhP3PQfHUl3PKx84zLOIYozM0uXQWh8pnlw7tszRjv WoSXBbLVnuqSpv62CIDRQ7Eqmgg4sEZvlv8FT4sE8jq5pgIHfocl69GTFG6EGNc= =OcPV -----END PGP SIGNATURE-----