This signature file may be used to cryptographically verify file integrity, like this:: $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D $ gpg --list-keys 0xA16EB94D pub 2048R/A16EB94D 2008-08-15 [expires: 2023-08-12] uid Turnkey Linux Release Key $ gpg --verify turnkey-etherpad-13.0-wheezy-amd64-xen.tar.bz2.sig gpg: Signature made Fri Nov 1 08:59:23 UTC 2013 using RSA key ID A16EB94D gpg: Good signature from "Turnkey Linux Release Key" For your convenience we also include file checksums: * sha1sum 1e55e3b28b549f89b2207c310f9e3efa3b501ec2 * md5sum 3509772abcf96ed1aded199506dc81e6 You can calculate these on your end and compare to check for errors, but cryptographic verification is recommended for security reasons. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iQEcBAABAgAGBQJSc21jAAoJEIXCXpWhbrlNkY4IAMABJ6qRgnuD3EzYavkwI7Vy YCRNAUCrOG3xqFvsyoxNpbHN08bGY5vtRIRzwdwaZ/8Eg6m4HN1OHapyclSG2wxQ OyxzZ7awxpc17kGBIlbgBLdMmIhYsB7XfHNKCzMK1eG4+w6GPlo0CP/wp33X2Rzv 7e1J6Q14oMp5WR68aKYywTL04zOqK1KqydG2hVEQBWLYXsBcNfNX6fNgpsKmRyDu /gDZWntldFkYxxjr1oru+EZ1wdw1mVFiSeVj5jE+4zobUWuot+u/2wqHUpdqtTcw Ok/vs5f7D+uYbnL+jB6UctHb48dRJIS7NXj8j61cm87huBTJGa6O1/PM6ldO17s= =FoTV -----END PGP SIGNATURE-----