This signature file may be used to cryptographically verify file integrity, like this:: $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D $ gpg --list-keys 0xA16EB94D pub 2048R/A16EB94D 2008-08-15 [expires: 2023-08-12] uid Turnkey Linux Release Key $ gpg --verify debian-6-turnkey-sencha_12.1-1_i386.tar.gz.sig gpg: Signature made Wed Jun 5 00:21:01 UTC 2013 using RSA key ID A16EB94D gpg: Good signature from "Turnkey Linux Release Key" For your convenience we also include file checksums: * sha1sum 998b32544745bb0ea21d11cfdc5081b008e490c8 * md5sum c435ce08621f8c0a1030702de598f9d9 You can calculate these on your end and compare to check for errors, but cryptographic verification is recommended for security reasons. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iQEcBAABAgAGBQJRroRXAAoJEIXCXpWhbrlN/hAIANy7U7c5yYGbQtJeUfqUO1C5 ux/MwB7++wGB+i5rSv8VNaedLFKKQPYPLc/NpHal8d33JAMfV1Tr035e2iJbz+H+ V+Tw/LVkqbsWqnFzQ139FyD+h76nQ2a+T+g3iLmZieqWFtVIDgsyTGfkU3qFdUzF TPjGL2NEzpfvlRhdp4Uxl0usZCXnoU6oXB8h4mL/xIEsvVPbP2T5l0VrmtPTWm6r hxBNOC99T2L83GaGWuzmOCEI3Et3aHS6vgd1WuGxYg94hUHE6ZTEnL3xsYyd2xLm LEyeCpQ01aJBxx49kQ1xcX6PAalB6Xmm0tPO5benMf0nEv3SXR+jgFIhVrEyeHk= =KTqK -----END PGP SIGNATURE-----