This signature file may be used to cryptographically verify file integrity, like this:: $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D $ gpg --list-keys 0xA16EB94D pub 2048R/A16EB94D 2008-08-15 [expires: 2023-08-12] uid Turnkey Linux Release Key $ gpg --verify turnkey-twiki-13.0-wheezy-i386-openstack.tar.gz.sig gpg: Signature made Tue Oct 15 20:27:12 UTC 2013 using RSA key ID A16EB94D gpg: Good signature from "Turnkey Linux Release Key" For your convenience we also include file checksums: * sha1sum c1536fbd9aeac498aa2d1c620762a05a9429b7f5 * md5sum 67ac0ee88546717043d7ad5932553499 You can calculate these on your end and compare to check for errors, but cryptographic verification is recommended for security reasons. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iQEcBAABAgAGBQJSXaUZAAoJEIXCXpWhbrlN6/YH/As6MD+oHW31BtMMPio+Ks+U 8b9BuW9HC9bUoH8Vb/svc9/5f9DBkztkW900aTfIpLFKeq9ejpjL/kBHAMY0zelx qJWKQV/7i2FIP3DMYev9un+CD1XMMVxoO41R7QdnNC73lV659lxxwb59w9w0AqbB 4Nnn2JzYusJPLTmQ39GBBYOF949/FpWBgv8KJULdDf3cI/Ou4TsWsOK6uWyaI9oq h4SKJtvrWXI2vtIpgeodJT7pOLE9BJaDZyzkwtwmcbFGJQ04zc5XHPcbxxwyC5VY +cEAQqsJ+TSt0ksJAuhZGC0nWOHSJIDnQrEpAXKKoPnZ2GnNUxz0W+CMbOjn1Ws= =RmbP -----END PGP SIGNATURE-----