This signature file may be used to cryptographically verify file integrity, like this:: $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D $ gpg --list-keys 0xA16EB94D pub 2048R/A16EB94D 2008-08-15 [expires: 2023-08-12] uid Turnkey Linux Release Key $ gpg --verify debian-6-turnkey-otrs_12.1-1_i386.tar.gz.sig gpg: Signature made Tue Jun 4 22:55:34 UTC 2013 using RSA key ID A16EB94D gpg: Good signature from "Turnkey Linux Release Key" For your convenience we also include file checksums: * sha1sum 404f2eeb3d1df45a869ee77f0cbcdecc26575589 * md5sum 61fc98b892fd9d61b03d33e9accf610d You can calculate these on your end and compare to check for errors, but cryptographic verification is recommended for security reasons. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iQEcBAABAgAGBQJRrnBdAAoJEIXCXpWhbrlNwAwH/1Ur/qPR7xFvVCvLLa6nNyOw wYJqukALxp/qWXxechLcdbcKfr99Ib6ic0cmwCPXMYiBBVBh9JT/hVePjJhDu5N6 wY4MDZrfKOgcgcAbZTUqMxq09oSEC0MjWKFHbx5HegTUl/Wf30fOq02sETiRd2rP Z9Klc737ZTs+tJP2mto13xU/Pu0iPqg0uJEC0FshCQJKW88u42Alb8D/afKqUB4L uCqKPYgwxL2mrBlpzjzGU5QIxNJ5/8y0nkUJsGtcpiga7ZreC+n9l0/1y1oW4roO Y+NNk6If0S2qESVq1c7W6noN2TnPERKfZLHUme8VNrOHduJZJPG7FrlGnZVIF6A= =W7iK -----END PGP SIGNATURE-----