This signature file may be used to cryptographically verify file integrity, like this:: $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D $ gpg --list-keys 0xA16EB94D pub 2048R/A16EB94D 2008-08-15 [expires: 2023-08-12] uid Turnkey Linux Release Key $ gpg --verify turnkey-django-12.0-squeeze-x86.iso.sig gpg: Signature made Sat Aug 18 17:28:26 UTC 2012 using RSA key ID A16EB94D gpg: Good signature from "Turnkey Linux Release Key For your convenience we also include file checksums: * sha1sum ff31243d0843b0d850dbdd52a8aa40faf68144d1 * md5sum 08eac124892af3d4e6aed51b46baec8e You can calculate these on your end and compare to check for errors, but cryptographic verification is recommended for security reasons. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iQEcBAABAgAGBQJQL9CxAAoJEIXCXpWhbrlNHbMIAMzTpE5q+MIlI62b8BAImoCT OZqzkFGU2W5qZZtdoPIsXBkl463Vd8RvqIHx43Z1HEO0FXdMTHwws+m/uGl94/2o BVCSdA/QsQ0dCvDkj022t+S989v96mQMAX5TFisIO8kwvzF+LQj+wp1+bTyCuA9k sEYK+MontNjKKn6xdtYzELbfvxfZf7+B4xuxFRr65ustgEnFZehcjk+c3iiC3oec U80Dl8pcTtei1JZ9GArQR9Jaz9BsEtiRmxiKZv3Y6pmyTPlBY0+tIVM+S2otqB8w lMnTQvyL9SHONwx/fxv3Tc3Tmsw66eRxGee/zHMSs2FU7X4/1//Z4D9hPtl+62k= =UwN+ -----END PGP SIGNATURE-----