This signature file may be used to cryptographically verify file integrity, like this:: $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D $ gpg --list-keys 0xA16EB94D pub 2048R/A16EB94D 2008-08-15 [expires: 2023-08-12] uid Turnkey Linux Release Key $ gpg --verify turnkey-phpbb-12.1-squeeze-amd64.iso.sig gpg: Signature made Wed May 1 13:22:35 UTC 2013 using RSA key ID A16EB94D gpg: Good signature from "Turnkey Linux Release Key" For your convenience we also include file checksums: * sha1sum bdfd64c6d6c320acc06a51c290cdd45bbd4b1290 * md5sum 5a1cb633c17132c0b4e5ccad594fe8e6 You can calculate these on your end and compare to check for errors, but cryptographic verification is recommended for security reasons. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iQEcBAABAgAGBQJRgRcSAAoJEIXCXpWhbrlNInUH+walOud511KoTxALvjepd+aQ +LHCQ/O1hdAc6jHfGuQA7CUFuhog3MCAXoLF24FQtUWwW98Zi7HmCT/1kfTHtzcf QStLcw5sLVPfz99EPhs+SgPBb2/5ny6quQW/3rKYITmPK9YU2tK0NAtZ1Shwxi4X 711EJ81YQEhUZXTxORowPhLN2xG0Qi0heNdASs8i5HKUnY8iN2QCqY3qghNkuVB1 TKtyU7I8QZ8RXX057wxlft9Q22Pg5U4dIaNzrQ8+LUy4++j0vURd5UGG0i8PfFBh 66zvScfXhjkyT7W9g3d+U8qJMtXKu5TPS9kX+3PN1VuMdeIOHy2h5ZczMgeddwU= =tbHF -----END PGP SIGNATURE-----