This signature file may be used to cryptographically verify file integrity, like this:: $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D $ gpg --list-keys 0xA16EB94D pub 2048R/A16EB94D 2008-08-15 [expires: 2023-08-12] uid Turnkey Linux Release Key $ gpg --verify turnkey-collabtive-13.0-wheezy-i386.iso.sig gpg: Signature made Mon Oct 14 17:22:52 UTC 2013 using RSA key ID A16EB94D gpg: Good signature from "Turnkey Linux Release Key" For your convenience we also include file checksums: * sha1sum 025b43fbb8c0f82d12e6386051742f3aa118e911 * md5sum 1cb70ca016ea43618618047687ec731f You can calculate these on your end and compare to check for errors, but cryptographic verification is recommended for security reasons. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iQEcBAABAgAGBQJSXChhAAoJEIXCXpWhbrlNWo8IAI+LVSbK4d5SlTbgFDCVRQBC sryPpL9HOpTo8+Rm+8Sw0Iyp4m2TaxIb2ULPUkJFQ1XsIKLG963+ial/9c/KIstK a3KC9qTuovo1+cInkATcR59Q3QTEP1nHvTdW5W38D5Jbh1Uq1OmBGzQmNpIH4c+O 6GLmwk/DVaLJVNV6H9xC4Ddi5MpkecECwNX7h+K/AFdb9iso1WxdB+x/j9njdZ2X 2kNoxVDjsm0fyJLE6h0YunKs/0kcIHBCn9BpuFqdzvYFuvisZ9iqC4FNzCFKwv4k NoLAFdSieg8u3lTQeS/YANqv8nhFPLGlEEu+bounOLkXCTKnLHettoRbyIlMl84= =Ujgg -----END PGP SIGNATURE-----