This signature file may be used to cryptographically verify file integrity, like this:: $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D $ gpg --list-keys 0xA16EB94D pub 2048R/A16EB94D 2008-08-15 [expires: 2023-08-12] uid Turnkey Linux Release Key $ gpg --verify turnkey-phpnuke-12.1-squeeze-i386.iso.sig gpg: Signature made Thu Apr 18 18:05:49 UTC 2013 using RSA key ID A16EB94D gpg: Good signature from "Turnkey Linux Release Key" For your convenience we also include file checksums: * sha1sum 60f3ef3a549d8460b084b7ebcc960b16b9e0851d * md5sum 8fdd7d4c008bdfd166813732396a5ec9 You can calculate these on your end and compare to check for errors, but cryptographic verification is recommended for security reasons. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iQEcBAABAgAGBQJRcDXyAAoJEIXCXpWhbrlN/ZMIAJzGbLNp6uLyfVVW3oKJsdbh 2Z9scHHDPndL8RvedSd8FQWSymkxZ2keegGYgObB6piFA5e3+z1mUjsL2M3aU0br 0VLUE0dp+J85M8msvOcU+rC90QPOIJ5ijZEOARl52gLUqPvXMNZn/s7fzL9Doolb FqiuiJSAzZHIdp0zRrtT+qOBSVeSDq0w2q7T/USkEOW1EL/OoXH5qqkZKYPhmdYI RXKiNK8fR1bYKZ28hHmEFJ97XYkpdDxmJyfn5PQLd8mEkd0M7Bp0t/JpcLBxlkrc DIaTXfRz4jB076k+IEPO2dIJHIHjUcdU4Qxq54lHXdseU0F/GdMs7Zd/HJof2iY= =IHwm -----END PGP SIGNATURE-----