This signature file may be used to cryptographically verify file integrity, like this:: $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D $ gpg --list-keys 0xA16EB94D pub 2048R/A16EB94D 2008-08-15 [expires: 2023-08-12] uid Turnkey Linux Release Key $ gpg --verify turnkey-owncloud-12.1-squeeze-amd64.iso.sig gpg: Signature made Wed May 1 13:19:13 UTC 2013 using RSA key ID A16EB94D gpg: Good signature from "Turnkey Linux Release Key" For your convenience we also include file checksums: * sha1sum 22998ead0d9b6f7f7d548a104b56ec0957f58ef0 * md5sum 48afb6580a1a67b5b5ba4feb5df54157 You can calculate these on your end and compare to check for errors, but cryptographic verification is recommended for security reasons. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iQEcBAABAgAGBQJRgRZJAAoJEIXCXpWhbrlNjUMIAK49rrnCXjiW1N+ZWmoUPXm9 WE6UDTipsIn4v55tP2bzotuWmTW0/5ogmUvOEwqdIwbhAvnTvMO4qvv3Yj7px7dr vgJZinWhYbDBjqK7f/A1Hg8/BN+VOuEARtZCt7ytdnYX7ztoDuQ3Kq/Npc29Zr9z jMqQo8T6/W1NAlvX5rVk8iZi8TYurppUZSTOwfdIvG2ysr2NyW95RRne3FJMSgn7 HCULVaHfizciKXrw/mOP5Jb+N1T1qu0VB4ZK/seQi2EX+ozVFzTsUFKikXjzbdSp BdVqbyiU2LCFWfTTxWH88NUviffjGIYhX1J2UXI8uKSTxd7bdjr+oux+zXorLQc= =6fna -----END PGP SIGNATURE-----