This signature file may be used to cryptographically verify file integrity, like this:: $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D $ gpg --list-keys 0xA16EB94D pub 2048R/A16EB94D 2008-08-15 [expires: 2023-08-12] uid Turnkey Linux Release Key $ gpg --verify turnkey-prestashop-13.0-wheezy-i386-openstack.tar.gz.sig gpg: Signature made Tue Oct 15 18:18:47 UTC 2013 using RSA key ID A16EB94D gpg: Good signature from "Turnkey Linux Release Key" For your convenience we also include file checksums: * sha1sum 34117e772bf0715033605bcb89414535a823f0c0 * md5sum 9c8388a15c0cb23fc84f48793586e595 You can calculate these on your end and compare to check for errors, but cryptographic verification is recommended for security reasons. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iQEcBAABAgAGBQJSXYb+AAoJEIXCXpWhbrlNROkIAJC9eYLnEGvfkhXD26yDUs2a Zl40wvOxfJ1rctwyq23ALV4CqRpXjqIHwA2EloOh7ksnf7HZ+KTeK1g/mBeOdXP2 WflEc3YRdO5Xfi4MRi4O26WESaHUQHzI7Kv+g2OLknpjF/+X3XwM3XVxISzg+Tql ksEaoPMDn+vBxymsFT44inhtzhT9ZpL0fdLn7xIcVBe+0O0aQEMKLjvq1+e7U3k6 1emYdcJYZgRmbuNz7DcNh9fUNIUYYJnlPSPddv3B8U8XQCyAlgf8e8H7YV/Rk3se CQ+kkG+QtuD1hIHy/gm+odWK+WHErxBzNSSbWHseDOWiE/Naly/IiXN1CYg+qWg= =UEH7 -----END PGP SIGNATURE-----