This signature file may be used to cryptographically verify file integrity, like this:: $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D $ gpg --list-keys 0xA16EB94D pub 2048R/A16EB94D 2008-08-15 [expires: 2023-08-12] uid Turnkey Linux Release Key $ gpg --verify turnkey-postgresql-13.0-wheezy-i386.iso.sig gpg: Signature made Mon Oct 14 18:40:19 UTC 2013 using RSA key ID A16EB94D gpg: Good signature from "Turnkey Linux Release Key" For your convenience we also include file checksums: * sha1sum ce740f377e378724eb91b695099c9a031440b25b * md5sum b62fac2980b99bed5a5d554999d6e947 You can calculate these on your end and compare to check for errors, but cryptographic verification is recommended for security reasons. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iQEcBAABAgAGBQJSXDqLAAoJEIXCXpWhbrlNxHMIAKs9X6KSe8hGegNtTrAf/WVc G4JRx6FUmNoENFPXeNa9hljBpZYVFBag58JtO2B/aWQoQnHHm7Ayq3ddCXICbWN1 lGjL7ZGhx9yM9Ly2O1yaECC3U81BkaDL+u3VoToA9VuDRLPDv7SV0Fob917OCQgc a14485F8nHB/DytYrNxpoxIjj39zcof0mNG7G/arGQ9bObiFIwHmH4Y97sFC+eDB 9tcwK2icVTS0ExNawZi2WkxZl2Zu0+MHimaR9noEIsPDe7HQmP8cSFW852OTr/u3 357XTwocJOTc58nETxCxOjpAlKiwFMtqMuLw3zitiVH2Rk42P3oXhGFHioxxqlk= =9C2K -----END PGP SIGNATURE-----