This signature file may be used to cryptographically verify file integrity, like this:: $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D $ gpg --list-keys 0xA16EB94D pub 2048R/A16EB94D 2008-08-15 [expires: 2023-08-12] uid Turnkey Linux Release Key $ gpg --verify turnkey-omeka-13.0-wheezy-i386.iso.sig gpg: Signature made Mon Oct 14 18:18:03 UTC 2013 using RSA key ID A16EB94D gpg: Good signature from "Turnkey Linux Release Key" For your convenience we also include file checksums: * sha1sum cc10bff55880354c140d8aa7f6b898cdb6eb2f3d * md5sum 3ae0bd339241acb98653ce675b7e9cfd You can calculate these on your end and compare to check for errors, but cryptographic verification is recommended for security reasons. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iQEcBAABAgAGBQJSXDVQAAoJEIXCXpWhbrlNHbcIAJQH11lVpGaDJA7saINEoVPy lUKwe5sfG27PGoY2QsWLGl03FmbHTiahPRJACBwnpnuzhGZgbXWNdAsatBe6bN5E smqYHwXolqd5hYwAp8bEj8iD4bskSlU/IIBGxwZjDkdy0LzAyuCUOuNG5dEPPzuW zF/ZKlJihr+1rwSZlai3xx0JwILathFuat7EV7KpNEy2lUBNUWFppvAAPsrCrikj T6Vho1h8lLd/ZLwn6YtslG077aji4bU/EacpOoz+3bEnc7KoduLDLzuIST2p2mUb 4B7onYRezBfdLh9Ia2VJRk91aKe9KmUxtICVPX/4NMjsBPCQ4PtJ51KOysbhPvs= =r6qM -----END PGP SIGNATURE-----