This signature file may be used to cryptographically verify file integrity, like this:: $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D $ gpg --list-keys 0xA16EB94D pub 2048R/A16EB94D 2008-08-15 [expires: 2023-08-12] uid Turnkey Linux Release Key $ gpg --verify turnkey-processmaker-13.0-wheezy-i386-xen.tar.bz2.sig gpg: Signature made Fri Nov 1 09:38:45 UTC 2013 using RSA key ID A16EB94D gpg: Good signature from "Turnkey Linux Release Key" For your convenience we also include file checksums: * sha1sum b709a0031dfc035588e91ddf52cc4d20afe34ca7 * md5sum 9c6527e36867e4cc0f3998b752fd29df You can calculate these on your end and compare to check for errors, but cryptographic verification is recommended for security reasons. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iQEcBAABAgAGBQJSc3abAAoJEIXCXpWhbrlN1rAIAKvhx05iiXeGLRXXg6tvyM4b skKiWXj8gbNuICDSh7Axnu+otghW4rBy3/lUcQKawJ93xSbw+AGyxDNGRmwjxzsg QBD5Gp4YsAfcO9HzExSeG3kddNG8oyop+hwPvnr/cKsmDvWSJeKfVo3rYaFVaLgw 9bsjHpfYw266XeX1piM6Lo+OiSWiUQkoiIkdFgVJzt7fCU7R0IShzh9tZ+ONbVNm NTNN+nwcCMT+vqnA4/m6vApMyQcAmREyQa8+ZYf2nkP4K4lTGIcvKjhHo1n4QmLo 7T7gWBf66bj/t/aOma5PYsH7YbHLpHxK7CsgXejmuvdHcH/wjrm5aOz9bEzgKC0= =H1th -----END PGP SIGNATURE-----