This signature file may be used to cryptographically verify file integrity, like this:: $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D $ gpg --list-keys 0xA16EB94D pub 2048R/A16EB94D 2008-08-15 [expires: 2023-08-12] uid Turnkey Linux Release Key $ gpg --verify turnkey-phpbb-13.0-wheezy-i386.iso.sig gpg: Signature made Mon Oct 14 18:29:56 UTC 2013 using RSA key ID A16EB94D gpg: Good signature from "Turnkey Linux Release Key" For your convenience we also include file checksums: * sha1sum c1c2c16a1ff733a54c918922e30183177528ecbd * md5sum 96f4262f281a23bfc13713235239e8d7 You can calculate these on your end and compare to check for errors, but cryptographic verification is recommended for security reasons. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iQEcBAABAgAGBQJSXDgYAAoJEIXCXpWhbrlNjYwH/1EuT8ToBM0RvAbV6QBlLwf8 iJ9yiOGUEewExTpic/EwvZFbSLpBmODCRkANnIhElzjqrz0RD78/obnYp7GA+M8F nnR48GlkIjzJc6sDzv0CIcrE6KRcEFLLqX2JEzgIDStVVwKvb5qhGzIGHvWePokf 02p4B7a1UVeCk+pcKP/WdC/fJT7M85bhZIbJMmzFxbsWdSS3foZ8zhSzV9ceuH2L B9FGK6tE6FEhIX1njhorpe0j50Q4nSaj1VLFt7rNWHS6rqQJPH4x0sOWZ4pZn2HA 5zqT/a78JxPePrMP0mS/RjKETiKps+CBLQtDhd9i+LaTGgzPyHOsRRrr92rqDMw= =bJlk -----END PGP SIGNATURE-----