This signature file may be used to cryptographically verify file integrity, like this:: $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D $ gpg --list-keys 0xA16EB94D pub 2048R/A16EB94D 2008-08-15 [expires: 2023-08-12] uid Turnkey Linux Release Key $ gpg --verify turnkey-symfony-13.0rc2-wheezy-amd64.iso.sig gpg: Signature made Wed Aug 7 09:05:30 UTC 2013 using RSA key ID A16EB94D gpg: Good signature from "Turnkey Linux Release Key" For your convenience we also include file checksums: * sha1sum 481d36e5c76de55b2e352f60f81eb8ae8b17193a * md5sum 132a83f4818fcf308c8e75d878857029 You can calculate these on your end and compare to check for errors, but cryptographic verification is recommended for security reasons. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iQEcBAABAgAGBQJSAg3QAAoJEIXCXpWhbrlNT6gH+wfhqAGuuFj3oFJAKIV1Ln2D ScBS+web2rtAJezDphAwYqkUH0GGqb0kkMRcpa2IDYJ1bSFcoT+G+2kDVtHLHkHn cssuINuQx2GaAYM5Rs1hubS0NUUUiMt6UVDh9aplhEuO7OxjwB2NCefKYFwLTdEY 1G5iQUOkhKqEtUDyYl8dN1NmJdRnxAmPrlogIdLIctVSoiBtFNfigARRV/0sBUGj 3UJgdmS92JHf1/0aAWSmNm03x9BueqkNgvZVxD2+cd6d7BW7If0SAZpTl5IhtcWR R3O+qy7i08TeWCz/1JBYG8rXUmW5X9SbWJeOyHvOhTXayQaVSDcHzv0C7B5sfqI= =5cpJ -----END PGP SIGNATURE-----