This signature file may be used to cryptographically verify file integrity, like this:: $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D $ gpg --list-keys 0xA16EB94D pub 2048R/A16EB94D 2008-08-15 [expires: 2023-08-12] uid Turnkey Linux Release Key $ gpg --verify turnkey-phreedom-13.0rc2-wheezy-amd64.iso.sig gpg: Signature made Wed Aug 7 08:37:29 UTC 2013 using RSA key ID A16EB94D gpg: Good signature from "Turnkey Linux Release Key" For your convenience we also include file checksums: * sha1sum 6bfa55079237461712ce2deafcdb5430247277eb * md5sum 661f16ff8d3fd3e7cea2a04885e4da10 You can calculate these on your end and compare to check for errors, but cryptographic verification is recommended for security reasons. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iQEcBAABAgAGBQJSAgdAAAoJEIXCXpWhbrlNgt4IAMGAg6rXHgSjAs4l7xFJsIcy oWi3gR1ykb+lmmoENaApCSaGL/ljF/y5OufOJpzs0ZisAbuI34VLdlrQT8YU7QDR HHBMXAHEzHoi9SQcnlnAVEoQMxXsUiqygDCjfz54AqVvodNajZhWYIevqprLWvDK gvTd32URn8Oh/XvZtcpx9G+iAMnnt18WoLZ/murSTwJ3Qe+t6iSwXfpfnunAH8eS Z96DYws8UkJix5mzrpCnTu2oH1Bf2JR8q18poTDXUxy1Hjk7QIIHfwfU3Yr7zEG4 BzEpTzXIPmOvEPWbjit+rnEb+lkw+Q4aVV2LCH7BugslouhWicP8kUgzf1RauiE= =t+kb -----END PGP SIGNATURE-----