This signature file may be used to cryptographically verify file integrity, like this:: $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D $ gpg --list-keys 0xA16EB94D pub 2048R/A16EB94D 2008-08-15 [expires: 2023-08-12] uid Turnkey Linux Release Key $ gpg --verify debian-6-turnkey-lamp_12.0-1_i386.tar.gz.sig gpg: Signature made Tue Aug 21 13:55:57 UTC 2012 using RSA key ID A16EB94D gpg: Good signature from "Turnkey Linux Release Key For your convenience we also include file checksums: * sha1sum 94757ef40b43b93ca5eebdcbe7fa59f1664b9e62 * md5sum 7755bbf70bb323527875c06c9bce804f You can calculate these on your end and compare to check for errors, but cryptographic verification is recommended for security reasons. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iQEcBAABAgAGBQJQM5NlAAoJEIXCXpWhbrlNZ7AH/3VK5rEqgUrtIC54kFlUFg41 DtxFTqj1sUsJMed09T2gZpiyhMdhh+5+Wc7Hd6X7o53hVNOuQgDUIxUQCjkstP9n pnIX0fGWWCtY8o7L3EHc8FlnGwSyDZacwDrEfPFuVBZX2YEiphMkptDUh3ABKYwR 97W5/8UOqMbQnnAVOTq9u5YyClXI6sMTzqiBBb+iMtxcS73j6fwT9u4lWai38X/H 7RHC00/k4BPVqm09wxGs4OmVQwlGOrBEYKMT1HxBPd/S1zwafP9aIvSnpU3Gv8TW ZEkN+nMR3vLJLVNLFgxzjDyHI87+WjilMI0lE0SEPTOyCP6WHtHXlnBWOgp5yVw= =XfJt -----END PGP SIGNATURE-----