This signature file may be used to cryptographically verify file integrity, like this:: $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D $ gpg --list-keys 0xA16EB94D pub 2048R/A16EB94D 2008-08-15 [expires: 2023-08-12] uid Turnkey Linux Release Key $ gpg --verify turnkey-mongodb-13.0-wheezy-i386-openstack.tar.gz.sig gpg: Signature made Tue Oct 15 17:18:09 UTC 2013 using RSA key ID A16EB94D gpg: Good signature from "Turnkey Linux Release Key" For your convenience we also include file checksums: * sha1sum 4244593c79355c268cee92fb8b9bfb9684451a5d * md5sum 0f0fd280903e1dcc1c187d562c993337 You can calculate these on your end and compare to check for errors, but cryptographic verification is recommended for security reasons. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iQEcBAABAgAGBQJSXXjHAAoJEIXCXpWhbrlNXFMIALdBSPCYIsvKL5lBU8cqr6GP mYR+QnyPcW9gXQK4P4sFPdf63MgVhVEh86zzy4SWITJ4/YcgVqt4ykmEggxLZCrg fZ1KHA2dzBFMXLCvc0clMkoC2EkdNNz0ck2JpMxtZhjl6VcZaL8XSL3a5dG8nK3m qxOrRXE6w1+pww0dfViJ99R11u/pXLvk9B7lBy1UZGsoy4LN72l1e35jqwG9bENq Fh5jHcguW4jXTKHR3rw5BXRBgS9kMvFI2gOf5np+Jg/p+KNUXh5w344EjpVHN2ET aNUp/Qh3shbhpUGkkB5u37GGNGtgPAiY/QAhfdiCx0iUNsT0NmOmCClTE2IGTGQ= =ylga -----END PGP SIGNATURE-----