This signature file may be used to cryptographically verify file integrity, like this:: $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D $ gpg --list-keys 0xA16EB94D pub 2048R/A16EB94D 2008-08-15 [expires: 2023-08-12] uid Turnkey Linux Release Key $ gpg --verify debian-7-turnkey-joomla25_13.0-1_amd64.tar.gz.sig gpg: Signature made Wed Oct 16 08:54:23 UTC 2013 using RSA key ID A16EB94D gpg: Good signature from "Turnkey Linux Release Key" For your convenience we also include file checksums: * sha1sum 2cbdd326ac35fd889319c8a6583c12c44c02ff02 * md5sum 85142ef68bc81de82830d04e34579cbe You can calculate these on your end and compare to check for errors, but cryptographic verification is recommended for security reasons. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iQEcBAABAgAGBQJSXlQ4AAoJEIXCXpWhbrlNEpcIANo5UprxmIfsLoby82n6qBiv w0z9DpQaG5xLfcZ3FAtGIG8odZ8eRzGoPZ7ndUACDdcY2enfAyxolVADedqN+qjf eTwMKt05WGkBamB4dLXKyLFSrWwOjlFWxsSG39o45QaOJGls2GPfIKwfHTNTa/lP rbm7JwUa8kFdNAvDad3iaxwW7PgXaFbbLBLG0JbZlAhwaFz09hxZtSoR2GOWzWtn IuIMMkqBL6VTF993HWOFdM5s65j0NYZ/oVVVDLk3SWPHLW8QlvJk+nTFHuwFd/45 A+orCvSca3XG/tE7fr3mj0L+DMMTh5OmESYoY9dRJ8opl/lNiF3aq6Q1NCA9jAg= =2Tik -----END PGP SIGNATURE-----