This signature file may be used to cryptographically verify file integrity, like this:: $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D $ gpg --list-keys 0xA16EB94D pub 2048R/A16EB94D 2008-08-15 [expires: 2023-08-12] uid Turnkey Linux Release Key $ gpg --verify turnkey-limesurvey-12.0-squeeze-x86-openstack.tar.gz.sig gpg: Signature made Tue Aug 21 15:38:00 UTC 2012 using RSA key ID A16EB94D gpg: Good signature from "Turnkey Linux Release Key For your convenience we also include file checksums: * sha1sum 5b9763847256c2dae540285c002416d75724c914 * md5sum da73f9c63bde87b9acd5d120390c0941 You can calculate these on your end and compare to check for errors, but cryptographic verification is recommended for security reasons. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iQEcBAABAgAGBQJQM6tLAAoJEIXCXpWhbrlN0qQIANm1gSYD6vs4HO1Qq/MC16t4 O0XeGqDYkyHsKHzyHydHyv+Qu8/RIdmKCAGrD2B0YICr/xFYAGdhOMkkLyLzb/t4 eKN/UOscRL3TpAtagomrPkEBbLHcqnXIaIxbAb6rh6lxRd+2cPkHCtGkS25iED40 BjDsgSEwm3KlpzWlE5F4usvsCNMqvHR8nMg2nX9vPjV4uZbnhCTzfZ3Q0md52O/1 OtHivDUDTXYtcEJONQ896SbwvTBoxUpACjom0zcXeoOf8eQtRCZxAMxn241N7E+K umcFvF8W8vi7bXMsAlzJ/McZ5jlsqqyghQ5qc7dUoALFx69CA+doHHafcD7Jhn0= =lkoJ -----END PGP SIGNATURE-----