This signature file may be used to cryptographically verify file integrity, like this:: $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D $ gpg --list-keys 0xA16EB94D pub 2048R/A16EB94D 2008-08-15 [expires: 2023-08-12] uid Turnkey Linux Release Key $ gpg --verify turnkey-joomla15-13.0-wheezy-amd64-openstack.tar.gz.sig gpg: Signature made Wed Oct 16 09:03:40 UTC 2013 using RSA key ID A16EB94D gpg: Good signature from "Turnkey Linux Release Key" For your convenience we also include file checksums: * sha1sum 41d8c54aa7f5babb0b7b55255c136af1198acb2f * md5sum cc0448eec6442d7bca4a2c1189fc02db You can calculate these on your end and compare to check for errors, but cryptographic verification is recommended for security reasons. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iQEcBAABAgAGBQJSXlZjAAoJEIXCXpWhbrlNk/sIAIX/XuTSlknPAxAcjm8mM64j VDYbam96IQELK52MxmkO9+3GQEM26R/qcEV4gtvCeBhJ2xX9kxyBJKR/3GJXU0mB 56Wpn0rPD30Ds4IeergKXY+x6qf7ByXRtvgkJk+AVNh+HkDtP0Vo9d0J1X9ixqB5 4CjMCxjhEuFSwigFXBfIAac43+cFh/5wZ1+ysEY9GxxyQyjUr0ofdkv5xP0AbF60 zLJlHfv+PCzkwjjM2fgjggg5l9rwoQQAlt05cKICVAuu51znatqAnJMHbSnyzHKF 9w4kBB58MCmBo4mjd2qHBgvw32H/0AlyKVNkpS4CrO4MBAvC/98r5NlLJStjzDQ= =02Fj -----END PGP SIGNATURE-----