This signature file may be used to cryptographically verify file integrity, like this:: $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D $ gpg --list-keys 0xA16EB94D pub 2048R/A16EB94D 2008-08-15 [expires: 2023-08-12] uid Turnkey Linux Release Key $ gpg --verify turnkey-omeka-12.1-squeeze-i386.iso.sig gpg: Signature made Thu Apr 18 13:25:26 UTC 2013 using RSA key ID A16EB94D gpg: Good signature from "Turnkey Linux Release Key" For your convenience we also include file checksums: * sha1sum 54419c6016c32267f66670bf5e0f369326a69931 * md5sum 3414699edf91847f660db5b02711673c You can calculate these on your end and compare to check for errors, but cryptographic verification is recommended for security reasons. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iQEcBAABAgAGBQJRb/QsAAoJEIXCXpWhbrlNRYEIAJelFYq98Nvbh8Ou1tm6jlT3 TNpBX3E/M4oYug8bvhH4GHk7pVKhD95frG64abe3eMZhn3lQYxou9VP9/D27U2jN Cz2jitJGo6t9P7lIwBKMYAsiwDKqV4SEEjNj89P3Jrufj7s+3OF6fkbokoqI50sC 9rx/RhhRjrZ1YYOqXXbA9Af1E0evWYAedYJPiqvvHL1/LSk1lUOQATqgSUVJkFjI L3KjZi56am5f4Lp6GKw/RO+LqtKsohZy7xPqFXeJjxoSDwkuAwUYHxpha15dMR9R HvZ1x8UWhQngNjd0JX/PQOqcyG9+kr9A4vALHt4NwyYRwrFFwiHYGEq2cFjHFxc= =G1np -----END PGP SIGNATURE-----