This signature file may be used to cryptographically verify file integrity, like this:: $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D $ gpg --list-keys 0xA16EB94D pub 2048R/A16EB94D 2008-08-15 [expires: 2023-08-12] uid Turnkey Linux Release Key $ gpg --verify turnkey-mibew-13.0-wheezy-amd64.iso.sig gpg: Signature made Tue Oct 15 15:36:12 UTC 2013 using RSA key ID A16EB94D gpg: Good signature from "Turnkey Linux Release Key" For your convenience we also include file checksums: * sha1sum e110049606f6bd1a25019a0a2129e4df68283073 * md5sum 9795b17f914ff2b310bac32a21c8083e You can calculate these on your end and compare to check for errors, but cryptographic verification is recommended for security reasons. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iQEcBAABAgAGBQJSXWDlAAoJEIXCXpWhbrlNBVkH/RkN6RUrdQZksjytbkaaeeTZ uoGR+lAyphLpqKJ4hzsYs/cjBmEqibpZIinb6ZCX78NO9TMVimsCCEk4oNN6PXlw lwPnTslgs+/ftGcON4mJsabT7bJNhz+9jTd8tKJHltpKui//0PHIMIA6jgP0ZUIW sPazz3azCs3RuH+PjDfgo6G9bzDN87bZ3MpNzE+JAkbtLMB2Y5Cp/FxohjgOh2b1 0ToLH94XZTFOqiXRhcRpAakRdB4eBDkRSnCOFs382yqFgH/QPPrulFbmFJmG0zTs caC/BOXph/lojMgm9nMHCWQ0rJ0N2o1a44u2ymW2dXHANrmrPuLI/S9mKgZQUt0= =u4gd -----END PGP SIGNATURE-----