This signature file may be used to cryptographically verify file integrity, like this:: $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D $ gpg --list-keys 0xA16EB94D pub 2048R/A16EB94D 2008-08-15 [expires: 2023-08-12] uid Turnkey Linux Release Key $ gpg --verify turnkey-otrs-12.1-squeeze-i386.iso.sig gpg: Signature made Thu Apr 18 13:35:01 UTC 2013 using RSA key ID A16EB94D gpg: Good signature from "Turnkey Linux Release Key" For your convenience we also include file checksums: * sha1sum 4f712382c6cbe6e92aba67e32855da9eb054e004 * md5sum ae52ce127479bfdd974969fdbc3e95a2 You can calculate these on your end and compare to check for errors, but cryptographic verification is recommended for security reasons. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iQEcBAABAgAGBQJRb/Z6AAoJEIXCXpWhbrlN5DsH/3z7126B4pmqQ1rlPneiPCKK TsMlUIS+G5/rTtIv9zKd8FKQshZoETfv75cReoZuIb5qe25gfqepPUas473baTis JTi/0bP/OSH0eMzfCMXEPep3s49sCkIp6EXko2BP+CyA0q/pHKWvFCxDNvAkSynn JXm1yQ6mdlz1deosHezojOI7P2Hc3eLyei4xrg5t7T5Rb7/FC8glGPduToJhxG8g YfZxd/rx9J0APf7IC1a25vTWdcEiCXS+ymn+twdcLQlthOYqUScwbOmF2XDyOS1E EC87rQixGzgvs57N/LRjolea0+GTbyGJ4MIGSfJle+KP1FjI/b9XYFwUXpp3kcQ= =z1cH -----END PGP SIGNATURE-----