This signature file may be used to cryptographically verify file integrity, like this:: $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D $ gpg --list-keys 0xA16EB94D pub 2048R/A16EB94D 2008-08-15 [expires: 2023-08-12] uid Turnkey Linux Release Key $ gpg --verify turnkey-phpbb-12.1-squeeze-i386-openstack.tar.gz.sig gpg: Signature made Tue Jun 4 23:03:12 UTC 2013 using RSA key ID A16EB94D gpg: Good signature from "Turnkey Linux Release Key" For your convenience we also include file checksums: * sha1sum c7e99807b2a3358769d056d5c791f95d0a5e21d7 * md5sum 38d2b879a00ad2bf53e5048399ca2e34 You can calculate these on your end and compare to check for errors, but cryptographic verification is recommended for security reasons. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iQEcBAABAgAGBQJRrnIjAAoJEIXCXpWhbrlN6IsIAM4oQBz4b3u3AK52zXpdPcag nIfQGYPDBjaGdkEirhsmGBlnsqnlBk7y04ypCHJJhWdYs5/iPd7jLiVNmS9IhBno HWJJUhO4m+BMCy/mAcQNOlx9GTOg8iiR1EPxTSGPHSHgvcqwAzdnV4yZTXfJuAY/ WHwOQ3iB3/qd/O0sjYeqisk1qKFLUu6vuWpfhzM5DYlcAq+NfwuHX6R29CJi5zHZ E6sOqAYECi1ZcDGVAeU+yRhSZA9ywo+V7Vdp8qJbNGFCxihqVqNx+gg3Yy2ykFOs IIeCaayPGxdVgsXFjU12TvEKPUXgbmUfDLPb0UtKigLDXfCf+ppO+VrIpesZ35c= =hhQT -----END PGP SIGNATURE-----