This signature file may be used to cryptographically verify file integrity, like this:: $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D $ gpg --list-keys 0xA16EB94D pub 2048R/A16EB94D 2008-08-15 [expires: 2023-08-12] uid Turnkey Linux Release Key $ gpg --verify turnkey-processmaker-12.0-squeeze-x86.iso.sig gpg: Signature made Sat Aug 18 17:54:02 UTC 2012 using RSA key ID A16EB94D gpg: Good signature from "Turnkey Linux Release Key For your convenience we also include file checksums: * sha1sum 452cd8b2c5c6b7fd532bf08bc253462c34481a15 * md5sum 851c5d34b43ad608442f67bf66bb4405 You can calculate these on your end and compare to check for errors, but cryptographic verification is recommended for security reasons. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iQEcBAABAgAGBQJQL9awAAoJEIXCXpWhbrlNR48H/3/uKeb2q+FkinAr1EIhSXsh no2jPLs3EMi0EtZhXmVAis2ZMdOpqaLrgLizFqyhWhlOHUrXSsFHYlwP9RRTnI2Z OWW7h4IA+/YkY1NnGURe5b4dcINsf9OiS7EJvC2DuYx+FttTpMCt0MMj8axhuUlS rr8bBcQj7JgXZwI7rZtyegsqnP9AalHgsAnmN44m1xHHYohFfZsWqtfSU6gjApFH jsRX0biOHSGh5RSuJaTpUX5PhUtkf9ZWM5ylS7xOKlNW/7OhnL+1v1xHOOSeOcau 6eyW8178ShiFB8CyHSP/44j2V3jnSAee7Wq7BDIkAjXpYCBxCqmM5s0zg0UUFao= =d/+F -----END PGP SIGNATURE-----