This signature file may be used to cryptographically verify file integrity, like this:: $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D $ gpg --list-keys 0xA16EB94D pub 2048R/A16EB94D 2008-08-15 [expires: 2023-08-12] uid Turnkey Linux Release Key $ gpg --verify turnkey-wordpress-12.1-squeeze-i386-openstack.tar.gz.sig gpg: Signature made Wed Jun 5 01:20:20 UTC 2013 using RSA key ID A16EB94D gpg: Good signature from "Turnkey Linux Release Key" For your convenience we also include file checksums: * sha1sum 683d830d4250eaa2d0d745a1642f549ec85ea4d7 * md5sum 909e31d9f8e44a5921ad9584600d255d You can calculate these on your end and compare to check for errors, but cryptographic verification is recommended for security reasons. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iQEcBAABAgAGBQJRrpJKAAoJEIXCXpWhbrlNJnAIAILg6lH/vTGwJmwGa4QuaL95 RBVaVAWPMZWewVP0MpbX2sD3MN2MbGUKCn7XPWsagXMFmdng3x2a2EktCuAACFWM +3Zwswh8M6qGk2LjU1htwoRlgqVj5yTIqLJqq6KHfRnG99NdIsCUFOhZm87ogL6+ 0p0BcY2RBzHaq3riLoUEj3pUMTphJyAlxzv+pqgK+AzpQPtdH3dLdZC1DQuRuw2y nWzZc7CQ8aICIXHwj7uLAw6idEK8Rfa3v6brP1ra0CymMVjf7vgwBcel4ElDKpuO Ad0ZexTTtKtuKZ8wgPp8NIOwZsg9N/whzlGyazZBaOAFLOMeQLNx/e9Aj/ZJu7M= =DIW7 -----END PGP SIGNATURE-----