This signature file may be used to cryptographically verify file integrity, like this:: $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D $ gpg --list-keys 0xA16EB94D pub 2048R/A16EB94D 2008-08-15 [expires: 2023-08-12] uid Turnkey Linux Release Key $ gpg --verify turnkey-prestashop-12.1-squeeze-amd64-xen.tar.bz2.sig gpg: Signature made Tue Jun 4 15:46:39 UTC 2013 using RSA key ID A16EB94D gpg: Good signature from "Turnkey Linux Release Key" For your convenience we also include file checksums: * sha1sum 64c658d3aeefaca02b5824c981152707e295f018 * md5sum 1cd45d9748e2e59a222bf37e9887c7fa You can calculate these on your end and compare to check for errors, but cryptographic verification is recommended for security reasons. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iQEcBAABAgAGBQJRrgvYAAoJEIXCXpWhbrlNamEIAKl0LtxJkELoVm+o0NZLoWNK 6ZSYD1M6Pi+rwDUNIwkhrmy8y8vejFcNVjkrVCQgIUk26GhYgEsqVmks4L69NQY5 uBUYTSWZ1hAtpUEeE1JPxvJrTcRb9MURdFE7wkZWf6Yvzum5FvJUK2ABcHJCT8fN OwOCfwIS7xoH/LEk9Wz+9Qq6/sQvJqslbKxVfhDOBAjh3gDfJ1aBLPtm9rMFZP58 /qbJHSeFsYEcni8xpQZsM82WGJ1qylNGzK0wLL8xtFlAt8VAhqxdW6EJ62CSTWxJ p45jzivYti5X6BRYiW4GmgNI0WVmlVOVeV4lOFanq5mf9oiR6P/ts5sPzV9KF94= =p2aZ -----END PGP SIGNATURE-----