This signature file may be used to cryptographically verify file integrity, like this:: $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D $ gpg --list-keys 0xA16EB94D pub 2048R/A16EB94D 2008-08-15 [expires: 2023-08-12] uid Turnkey Linux Release Key $ gpg --verify turnkey-mysql-13.0-wheezy-i386.iso.sig gpg: Signature made Mon Oct 14 18:13:04 UTC 2013 using RSA key ID A16EB94D gpg: Good signature from "Turnkey Linux Release Key" For your convenience we also include file checksums: * sha1sum 1a168fa6c8d608426ff9efe6c733ddd4143ff177 * md5sum df166d54708fa38d66556e7994c52517 You can calculate these on your end and compare to check for errors, but cryptographic verification is recommended for security reasons. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iQEcBAABAgAGBQJSXDQnAAoJEIXCXpWhbrlN7ewIAKZdDyN97Qh2wXwdbz90D5dv QPkWdwCxl1WcMrpxLl+rURWlwTtflGc8j7voL2W0uPPIlf8s+V7nRhKNeFV5M49/ mh8RRC/meDO2DrXKCumDbFrmnr+K+1NzuBsuF+TrByZxidoW46T9BPU3xjQlq1QQ bjeIRfPGMpxwHI8Yg01W2KMArIR2mG3QH1OMErU1pbiwBJ4h++hOarKSOPJbNaAQ FJiCuuJiFfMPaxNABq+oItxwxgIs3UrJouWSw9ibqJoLQejAxF/Tpzk/dLjnb1rK EDsXlRSWnwaHl9fMUcv/OyuyfH27hrgTVpiFC/mQbEMewOxB/s9HWbEqSVljgAE= =nuSw -----END PGP SIGNATURE-----