This signature file may be used to cryptographically verify file integrity, like this:: $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D $ gpg --list-keys 0xA16EB94D pub 2048R/A16EB94D 2008-08-15 [expires: 2023-08-12] uid Turnkey Linux Release Key $ gpg --verify debian-7-turnkey-b2evolution_13.0-1_amd64.tar.gz.sig gpg: Signature made Wed Oct 16 08:21:53 UTC 2013 using RSA key ID A16EB94D gpg: Good signature from "Turnkey Linux Release Key" For your convenience we also include file checksums: * sha1sum b865343526f6d8c731627e9c65fac5431e5851c0 * md5sum c82252a9d758147461b1e3f7860421b1 You can calculate these on your end and compare to check for errors, but cryptographic verification is recommended for security reasons. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iQEcBAABAgAGBQJSXkybAAoJEIXCXpWhbrlNUY0IAIOC/vb04nf0BHJA+1JSLRCB Gq2+Mmj4008LR8MNZOs4+oHK4PCcuyb8ee23h9s3cIx41LLWILCR2cIMLIDgf6/c Xe53H2atYxB7x8aCKZO6+4xF7kpyX7XSILREaJm/a/mJOsnVAuwpVWc3Rg14y2i/ RbroBTqu1/fQOC+lONCudvm0het2hWln5nsWCyWZRVKx39ODQOqyGD+l9/gsQ/0T a8C1yU8XH+k/Zn1/D9N2Iy9elX+7VoTlNBvFqEIs2UI1kp6XaAdl51VYISF39oUZ Niz8vAf0DYFsIHfIaHb7ZxtUAvLBuwgQVIIkP+EGFx0BDvPssvw8VgWfFsIx1ag= =NTcw -----END PGP SIGNATURE-----