This signature file may be used to cryptographically verify file integrity, like this:: $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D $ gpg --list-keys 0xA16EB94D pub 2048R/A16EB94D 2008-08-15 [expires: 2023-08-12] uid Turnkey Linux Release Key $ gpg --verify debian-7-turnkey-movabletype_13.0-1_amd64.tar.gz.sig gpg: Signature made Wed Oct 16 09:25:46 UTC 2013 using RSA key ID A16EB94D gpg: Good signature from "Turnkey Linux Release Key" For your convenience we also include file checksums: * sha1sum d5d6741e14ae6a0bc16c503ecba7ad27bd495734 * md5sum dcd7ac7382fdf4daae487e50e2aea354 You can calculate these on your end and compare to check for errors, but cryptographic verification is recommended for security reasons. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iQEcBAABAgAGBQJSXluSAAoJEIXCXpWhbrlNMW0H/Rajpjjk8fim+kAzHR1Ory/i MvJr4RSLV69okw/q3EidllH2RDn0StIsMehG51kvk28e35YIyVNgSsM0mcdYuMYo 5tmJoWrgDe3OF4gz4abEGk67kMjpm9nl2wlCfGMWt3KUU/UPnEWCl3MoxNcBkEVF QsiDXR/pOahV0z7cuV6YB31nckAFGBlbnbuDPpww3fU9IjPjp0cvySScKGy8KDds S3Oma1fe5UIuBA+2AbtfgSuY63QbGaHmQDK6tqAZus9t2zDs5pHYesWtZ/HDRysv NCy9xYJndGNicSLBLeX1ZlLh0oaG5bJWIi/yHtz44YXFHdOAhSMphNzm/rPDtIY= =JDRM -----END PGP SIGNATURE-----