This signature file may be used to cryptographically verify file integrity, like this:: $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D $ gpg --list-keys 0xA16EB94D pub 2048R/A16EB94D 2008-08-15 [expires: 2023-08-12] uid Turnkey Linux Release Key $ gpg --verify debian-6-turnkey-statusnet_12.1-1_i386.tar.gz.sig gpg: Signature made Wed Jun 5 00:22:56 UTC 2013 using RSA key ID A16EB94D gpg: Good signature from "Turnkey Linux Release Key" For your convenience we also include file checksums: * sha1sum 5d30ab14cb66c419b395d1775bbc251c29ddbd6c * md5sum 69c4e10a33f26811642c4eeb0d3b1539 You can calculate these on your end and compare to check for errors, but cryptographic verification is recommended for security reasons. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iQEcBAABAgAGBQJRroTXAAoJEIXCXpWhbrlNOe4IAOhxx9bBmIbBdCsIw/AxSuY+ 024epQutxqsJ7ivJ54L7Q4CcqmeNZi/iIEguy2NPkIrzMRbFtjzrOrq8lWAajDgh 236txNHeWjSjaFJammHuuDsk1ykPA+bQk3kJOkiGSt95Iq9LtBG2ehk6jbwk+KHi YNwe7N7nJCYXl4/ReSMIw9Kj3yRB8gwmFTVA9u9QGs3C3l7A0UV8rj9k3OAz4xD6 43CYlRP1GVZLvUbMx277FzVVwqrb1ZuegVzpwduJ3YsGXpcHPnpYDRLwsTxzbtfG +ccKhBmfG2qEszYiHIfC+OVWh5J4+1RQ/QksaupO4Wt41e75D4EXYBot1Be/xYE= =YvfB -----END PGP SIGNATURE-----