This signature file may be used to cryptographically verify file integrity, like this:: $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D $ gpg --list-keys 0xA16EB94D pub 2048R/A16EB94D 2008-08-15 [expires: 2023-08-12] uid Turnkey Linux Release Key $ gpg --verify debian-6-turnkey-mantis_12.1-1_i386.tar.gz.sig gpg: Signature made Tue Jun 4 22:06:25 UTC 2013 using RSA key ID A16EB94D gpg: Good signature from "Turnkey Linux Release Key" For your convenience we also include file checksums: * sha1sum e25cace3a9fe35c71e1489807be0b866837551c0 * md5sum 04f2d57ca2f5b6a3f99e39e929a7b699 You can calculate these on your end and compare to check for errors, but cryptographic verification is recommended for security reasons. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iQEcBAABAgAGBQJRrmTYAAoJEIXCXpWhbrlNzrsH/2GQymrtb5UjvY8Et2QzDtsc bigkzv1JwGcdq0wsQ2I7yvJ5z/KUH+wkKuNq4Z5PmwQrzEetpuyN/k/lLA8fWRLz IO+qQjqwqkj6rqhNYHOfcuJ1c3jh4c/qzp6NkRzzApdCAuifQuacSXoe7vilLJVb tpPmT0/azJICK0BPtyyZurKp7eoVN0jWiqPnKKIYuKHlNyFRp+ss1v3+NrHw9SSG zR2zrs3wT+CVUrI63ScbErEPmUL0pGe/Z/50zr2bgqiyNRkul1G0P0weEX4JPoA5 fpWV0YRy58KI7J7FXjzixYwvThhRd1MYvEDVnuek1EDYHWLco/cmSBOjV8/erKE= =owHe -----END PGP SIGNATURE-----