This signature file may be used to cryptographically verify file integrity, like this:: $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D $ gpg --list-keys 0xA16EB94D pub 2048R/A16EB94D 2008-08-15 [expires: 2023-08-12] uid Turnkey Linux Release Key $ gpg --verify turnkey-prestashop-12.0-squeeze-x86.iso.sig gpg: Signature made Sat Aug 18 17:51:26 UTC 2012 using RSA key ID A16EB94D gpg: Good signature from "Turnkey Linux Release Key For your convenience we also include file checksums: * sha1sum 2f0b49e9eeaad13f8f7a6f694dc2593e3b2c1d74 * md5sum c9b3f911cfdc757dd6eea0936181bbf4 You can calculate these on your end and compare to check for errors, but cryptographic verification is recommended for security reasons. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iQEcBAABAgAGBQJQL9YUAAoJEIXCXpWhbrlNuCEH/AoYoSlJg9vXht8pv5y+81eH ufePVt7Qtd4nXwSHw9QZSY/zHY1JRjGevH/SrZX/gd8EKVF2uhA+r39g42q8xLcS qcIhwxLPFucrKL62aN3EVG5D8Yi7lj+0BBo1Gt0WYeMXC+F35dYX5PV03ijodXVh D/JfmB9nwq+EBLbBvkQAkk5gb5Y+P0mG8rfsX64tK5TVA9gS8xA64x+uazBubbXa rdCr//vNO5BXSmDhWzq/AC527WUMxB6Q8g3zjh2J5UEdI7TiJ+E481DL53UPosF2 4oGxKzMYhAcrVTZ9CC8QUJEK2Z3jQRhf+XvaXIJgJVjW5FSsL6ANvYBg/2mhqww= =Ifpj -----END PGP SIGNATURE-----