This signature file may be used to cryptographically verify file integrity, like this:: $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D $ gpg --list-keys 0xA16EB94D pub 2048R/A16EB94D 2008-08-15 [expires: 2023-08-12] uid Turnkey Linux Release Key $ gpg --verify turnkey-torrentserver-12.1-squeeze-i386.iso.sig gpg: Signature made Thu Apr 18 14:09:58 UTC 2013 using RSA key ID A16EB94D gpg: Good signature from "Turnkey Linux Release Key" For your convenience we also include file checksums: * sha1sum e70b8af9a4a9b35ccda41fd358e4baeaeac6596e * md5sum ccb7a1ac21462424873ebc65b87c3c3d You can calculate these on your end and compare to check for errors, but cryptographic verification is recommended for security reasons. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iQEcBAABAgAGBQJRb/6rAAoJEIXCXpWhbrlNMMwH/2g4kGUUZIKn8cOB8P8f5uPK c0ZYGmEU2K5ghQPw9gvXTwR8USOYsM8GJZVZb6YFq0ORFJtN+wGtHcFJI7B0m4Pq Da4nBGc+kwN/0PJ1wo5pggOr3opPJyEJQ+JbdW+QdQ8hl98oOBC2DgdNVuG0yGNL A5+JY2dTe14IwBMPwO/hXWU98kZPjbdD/e1KBLrLFTzXrdfQ1o8OrNtGuEPfRl6H p0NyrC93VI3ISHZvNgKsEy5LUx8QhsQSZtZYeLdgv3OGh626oNsN40FhVf1SCCpO e9flBuHPWN4boxSOs8tRi9GbrvHbcxOVNz8zZY5uyct+0xcMzZUdWh1uQlpX+Oo= =KANW -----END PGP SIGNATURE-----