This signature file may be used to cryptographically verify file integrity, like this:: $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D $ gpg --list-keys 0xA16EB94D pub 2048R/A16EB94D 2008-08-15 [expires: 2023-08-12] uid Turnkey Linux Release Key $ gpg --verify turnkey-omeka-12.1-squeeze-amd64-ovf.zip.sig gpg: Signature made Tue Jun 4 14:35:03 UTC 2013 using RSA key ID A16EB94D gpg: Good signature from "Turnkey Linux Release Key" For your convenience we also include file checksums: * sha1sum 28c887160ad518d19add8c3a794859d65246c94b * md5sum e14d10abf5547223aa58e303af35af80 You can calculate these on your end and compare to check for errors, but cryptographic verification is recommended for security reasons. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iQEcBAABAgAGBQJRrfsOAAoJEIXCXpWhbrlNjUQIANWjHQcu6TvJl7QzmZjssE+R 1Imv1qT6f86iEMZPpZZZlZ+w2RE6Had9f5xnPvNH8O/YslDZZOlF0j8G07sclSQR NBGhTMldt0BNXFPr0n7OcvRNM/QeT2BF3FP//2JnQkfc7g486gkL/m/f+6Xep5u1 BFWF5xVkOOMU8IFBiSeQeKiNyleAoBzKKUzuV+4Ehi+JTNc2v9FYWe0ZGXBcb4XT CFR+3aU8JCV2dIgD+3uLK5w21Wmi7Y9v2hMN/dnw6B55ZZWy1WjN/740w+mKfH5y MmASUSadMs+/hXGo0czxAsVZdAaCyCq5qnno8vxLbtsSRQ6mCWvFq7n/P/I1SOk= =5t6N -----END PGP SIGNATURE-----