This signature file may be used to cryptographically verify file integrity, like this:: $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D $ gpg --list-keys 0xA16EB94D pub 2048R/A16EB94D 2008-08-15 [expires: 2023-08-12] uid Turnkey Linux Release Key $ gpg --verify turnkey-bitkey-13.0-wheezy-amd64.iso.sig gpg: Signature made Wed Apr 23 16:51:28 IDT 2014 using RSA key ID A16EB94D gpg: Good signature from "Turnkey Linux Release Key" For your convenience we also include file checksums: * sha1sum a91c587f46bd5e4b699a8329674ef0c6b318c5f2 * md5sum e6233cb7e56c5be38e14e4ea7e08372c You can calculate these on your end and compare to check for errors, but cryptographic verification is recommended for security reasons. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iQEcBAABAgAGBQJTV8VbAAoJEIXCXpWhbrlN1qwIAMJ7HYPHnuVsHOCDUiZI2Uyi QPAmCr01G1OFg+FtNU+FYVC0T4yLFV5l3HRRHbQzv/HVJX3O+bKmKFRxZgaqLKdv tSLELQ6u3ixrNTBIW7n+BgbuftjGoojR78hLDqMQRPUE/je6op9mAg0ZXBwKHB9W QJEQjGWUhDGjiAi7oMjtGxTBVQ3h58ZziOI9ZTU4rzq/8deWB2dDYHBVhJIKUV+D lfVJvvdYZ+qLSbcXjUegYrVfKkb/vyaE9nqb1bupHBK3r+lMN+savNATgel5JLJP 9OS0hfrXZOPc9Ry3hrK5Ui1WUo47NqV6jUsubeYIH4mfCItXI1KwVitoM/x62Ww= =bbwC -----END PGP SIGNATURE-----