This signature file may be used to cryptographically verify file integrity, like this:: $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D $ gpg --list-keys 0xA16EB94D pub 2048R/A16EB94D 2008-08-15 [expires: 2023-08-12] uid Turnkey Linux Release Key $ gpg --verify turnkey-mibew-12.1-squeeze-amd64.iso.sig gpg: Signature made Wed May 1 12:59:30 UTC 2013 using RSA key ID A16EB94D gpg: Good signature from "Turnkey Linux Release Key" For your convenience we also include file checksums: * sha1sum 7971dc2069bb50480ea236cbe92a0c330e28f366 * md5sum 9ee0e9805dbb14941cab80eabe66aa91 You can calculate these on your end and compare to check for errors, but cryptographic verification is recommended for security reasons. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iQEcBAABAgAGBQJRgRGpAAoJEIXCXpWhbrlN47gH/0e2LyB+y1ov/xegxGLntckF jjbFTyjMrxIkpsgBjo4Y7Rcd8w3wvNhzJWDJKRg1C2Egjkv3pSB5Q7tsGlC/dmeB uMmF0/fQS5oIsa9WjZmMtVc8A/GUSx1gMiolca/mQnGPIDm1cRrsLUeZc3gaYk9X CnEVMCz+BYqUOqeETiQeme0PuhtkGKTY9SOrLPmdmqz6qDA59FiJPdM7JfXIeaBT UH6DLzUmWjhbhiVlKostvcKCf0uLqiJh603Jjw+sTgBEwPSpXOFB8SOGnhEy+vK9 K6Y4NRastDobWKgPh/mVN9ti91UUIsyKBrX7KbB5YbzeSNIjyIf1qWCnI2sFK8U= =AHhp -----END PGP SIGNATURE-----