This signature file may be used to cryptographically verify file integrity, like this:: $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D $ gpg --list-keys 0xA16EB94D pub 2048R/A16EB94D 2008-08-15 [expires: 2023-08-12] uid Turnkey Linux Release Key $ gpg --verify turnkey-mysql-12.0-squeeze-x86-openstack.tar.gz.sig gpg: Signature made Tue Aug 21 15:54:31 UTC 2012 using RSA key ID A16EB94D gpg: Good signature from "Turnkey Linux Release Key For your convenience we also include file checksums: * sha1sum d50dd6f7e376ccc91efc6a514e6cfd0b04298068 * md5sum 1a300fa9dd8c9aa7824e6b5370ef2ba7 You can calculate these on your end and compare to check for errors, but cryptographic verification is recommended for security reasons. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iQEcBAABAgAGBQJQM68tAAoJEIXCXpWhbrlNkyIIAJJWEM+r039ftDM2H7JWmsMi f7aGaaMhq609+iDiVAG9vik0nIuX9LbfP8BiEu/ABw7b7/2YSDfiUw+Y9TfEVm5H nKu3cMF2FxJUD2C2YfunL72tkkBxVLNcEvGBtwLj9cYF09VPFPFb6r8HRnap77ka RECj9VQSqApBG9JfP/mirKeg2di1pCRH8n6UMA7aRGan93kzwThu0SjFvpz90CvK t6imHDS+aFU5Ji1+vbwgGtdmPMXqLrJMI5hwfH6DICZMcT9yMM1mwazjEI12a9RG 9ua63WAfw1USp+c3/ZXpSKxqJFde3B9cpRax95wvGLjbUBJEGAFlhlhDLeiecng= =FJMW -----END PGP SIGNATURE-----