This signature file may be used to cryptographically verify file integrity, like this:: $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D $ gpg --list-keys 0xA16EB94D pub 2048R/A16EB94D 2008-08-15 [expires: 2023-08-12] uid Turnkey Linux Release Key $ gpg --verify debian-6-turnkey-owncloud_12.1-1_amd64.tar.gz.sig gpg: Signature made Tue Jun 4 15:01:26 UTC 2013 using RSA key ID A16EB94D gpg: Good signature from "Turnkey Linux Release Key" For your convenience we also include file checksums: * sha1sum 84a87e1d4cdb6a820441a84432aa893076509c1c * md5sum dd3b4cf9f7819ce14ad96d63ccdd392a You can calculate these on your end and compare to check for errors, but cryptographic verification is recommended for security reasons. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iQEcBAABAgAGBQJRrgE/AAoJEIXCXpWhbrlNys4H/3BQIFkeJAYF2c9vIw7RjPbo C3VgBk4R7jhfl2L0L75wp7AX6uzQq6LnQQDEcQzRip/Ebqmct++wk/7yKYaNaK5v 2J5eQkRVh9Klj5zbftkXBrwiQy29pcfnu2W9Q3CX1FcJLUtUehTIcj0rC+TQhzRk DcbGQj29zt+SCgyTs2dCNWmYsdicsaIAMfdLit8ededAS/FAHI2VXzhay365xdiI q8EoCRTvLTsfcY9OlbqpZp615WBQ9wm1LZDaxwnYfsKtCsSljJh8fWX5+L7+APZc OaeFqSOITq1bE2PeOW00NCjci2fgY5dVvVv1GdScDn7g8wXoseebt8SESPRVCWs= =RJP4 -----END PGP SIGNATURE-----