This signature file may be used to cryptographically verify file integrity, like this:: $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D $ gpg --list-keys 0xA16EB94D pub 2048R/A16EB94D 2008-08-15 [expires: 2023-08-12] uid Turnkey Linux Release Key $ gpg --verify turnkey-twiki-12.1-squeeze-amd64.iso.sig gpg: Signature made Wed May 1 14:00:51 UTC 2013 using RSA key ID A16EB94D gpg: Good signature from "Turnkey Linux Release Key" For your convenience we also include file checksums: * sha1sum 106cfd722cfb442f30f616ec0e3b12b0fc0b0686 * md5sum caae44b601d23cb33d13edd884acdf31 You can calculate these on your end and compare to check for errors, but cryptographic verification is recommended for security reasons. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iQEcBAABAgAGBQJRgSAJAAoJEIXCXpWhbrlNjMcIANumWQQr2DWQeBoReZBtWbCq fdiTEX2R6TD0+4eSZAFTcwZo0kR7vBaK2bg+rNkJL/pBe/3DcpKP8Ji3INQs9SUq 44XKsw3FDz8Sqpqt9K6H9fbvqI2OHOVY961rgednqcLmTriJHdvbSJQV+ohjvuK0 UdKI3q7mJkRxVs9GhvMIrzChuOPRhNsiV1saajg+yhNqyuTIIyelDpDXoW2KSFYv mRcoJznTvvYkTZ7WVljXxVqLS/A5ZLJ7pSTIBwsqGEGhOc2eaLPL8F/OE7Slqz0R CeeKu+/lTH/1/DpfabEZiQ3yQcsIEOl+C8l9wSPgT6RgQCgOA1NZq5TlQuk5QuU= =kH+R -----END PGP SIGNATURE-----