This signature file may be used to cryptographically verify file integrity, like this:: $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D $ gpg --list-keys 0xA16EB94D pub 2048R/A16EB94D 2008-08-15 [expires: 2023-08-12] uid Turnkey Linux Release Key $ gpg --verify debian-6-turnkey-torrentserver_12.1-1_i386.tar.gz.sig gpg: Signature made Wed Jun 5 00:52:45 UTC 2013 using RSA key ID A16EB94D gpg: Good signature from "Turnkey Linux Release Key" For your convenience we also include file checksums: * sha1sum db3d04aca59d64569181e6150649ebc351e2f7bf * md5sum ab860bb6ab881b2d21799ed65ebc65df You can calculate these on your end and compare to check for errors, but cryptographic verification is recommended for security reasons. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iQEcBAABAgAGBQJRrovTAAoJEIXCXpWhbrlNEWUH/0prACclCx0iMkcL/9YgHlmd ic/1oAjO9TOn19cg764kabL9xy9y/QoSUyJJ12K0iCNHlvPFu19hj65TWhtOOZXS QrvvYqrw8JpoKc7rg+h6WhDQz/hYiTMV6y+CIvJ2V70F8EUkLuWbrnq9YBdorrjc inOt0PR8kkl3XHCrRDPn8Jv1sFxSqYEYr63SV1iPlvQXXP5575BHEmtRYhXMVnZp B2q7RJK2GEi1kbYNSOT2SW8c6f7lSwFGZxm5g/YJYLmR1+4sF92VD1IwVWUmdzCN z+tmuGaRUCQ3iEZkzMSAx4aQNCJ082L04enan8wNvJW+4e3Ej2F9OGKOmtJ8CQI= =Pfy8 -----END PGP SIGNATURE-----