This signature file may be used to cryptographically verify file integrity, like this:: $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D $ gpg --list-keys 0xA16EB94D pub 2048R/A16EB94D 2008-08-15 [expires: 2023-08-12] uid Turnkey Linux Release Key $ gpg --verify debian-6-turnkey-ejabberd_12.1-1_amd64.tar.gz.sig gpg: Signature made Tue Jun 4 13:16:56 UTC 2013 using RSA key ID A16EB94D gpg: Good signature from "Turnkey Linux Release Key" For your convenience we also include file checksums: * sha1sum d4ab35dafadf4d4c501f13aeb397728939582f39 * md5sum 3ea0f6786d0708e08a9150df8167fc77 You can calculate these on your end and compare to check for errors, but cryptographic verification is recommended for security reasons. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iQEcBAABAgAGBQJRrejCAAoJEIXCXpWhbrlNsFwH/jx4DFoGlb0XUsCWmflbZL4X FsZ+1Zt/vNHSwm9aRlYl3LkeP2c4oKruImGT8dQ2E2hqGFfJ9wsyG7RiCcVWAHSD GP+Fk7u4r64rvlSOOmjo3tkmKmRkiIc0e/yKvFsjhG4TaZ7z5nX1VzoUO6cE7wNK Xng9Nue7K8dd5kco8mO/NDfkedfALpev7XPD2+VJivnc+zaFS5QVvH0JM7LC0ooU MwJENDpVecJQudkci/Qsk9m22n81ZnojRknIOOVKoV6nazTGqLIqsHW+cTrXQHrQ nX+ktxV+C+urL5gbRo3cXcL1YmwTg4TN9ReAkl7/QCFNDoU5U2KleEm/3QizWuA= =/bUi -----END PGP SIGNATURE-----