This signature file may be used to cryptographically verify file integrity, like this:: $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D $ gpg --list-keys 0xA16EB94D pub 2048R/A16EB94D 2008-08-15 [expires: 2023-08-12] uid Turnkey Linux Release Key $ gpg --verify turnkey-tendenci-13.0-wheezy-i386.iso.sig gpg: Signature made Mon Oct 14 19:31:39 UTC 2013 using RSA key ID A16EB94D gpg: Good signature from "Turnkey Linux Release Key" For your convenience we also include file checksums: * sha1sum 3f23820401f43dbc18ab28cfdf28e513d2d86250 * md5sum 1ae3459abb4f86c438e74764ad392e10 You can calculate these on your end and compare to check for errors, but cryptographic verification is recommended for security reasons. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iQEcBAABAgAGBQJSXEaOAAoJEIXCXpWhbrlN0lMH/RjkFfWnddXeK5HucmGInipH FBQrN8oHUxzNRgUbZ27UQIBDg+LUrR3muose5JzfI2K2Wt1KqiTmt1cOBtat45Fd u/leD4BYeQl1wzdMCvNCg93R5MSob66QjfeycDdEQHnvmwFY0wAYIJPBbAnc+9Yb rRnWGfzgoRtMqFU0pkaJCCvKGOBrTwkuvPfuCBODqkUdFi6R6w3g7GgIYJRwWags Dm7edR4Oyu4Dm2oFSv0gTUmtOB2bKyyrV9rUKpF4uj8JK+HiEZnmdU25+fymtbiQ Y1LmljfVbq6WZIyBJT0/OLjzePQtgHVo5GqUnTNkJcm/yCnNs8Fw5nYS1GhPdxM= =/wXc -----END PGP SIGNATURE-----