This signature file may be used to cryptographically verify file integrity, like this:: $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D $ gpg --list-keys 0xA16EB94D pub 2048R/A16EB94D 2008-08-15 [expires: 2023-08-12] uid Turnkey Linux Release Key $ gpg --verify turnkey-owncloud-13.0-wheezy-amd64.iso.sig gpg: Signature made Tue Oct 15 16:07:30 UTC 2013 using RSA key ID A16EB94D gpg: Good signature from "Turnkey Linux Release Key" For your convenience we also include file checksums: * sha1sum 99d44dec036291e2bd4b9b684fe50adc0bac25c7 * md5sum 0ce41b6a0231b4a7c3b3a6bcd4556f4b You can calculate these on your end and compare to check for errors, but cryptographic verification is recommended for security reasons. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iQEcBAABAgAGBQJSXWg3AAoJEIXCXpWhbrlNSSAH/0bys5NUAEMoOSs7V+otjNo3 IguP3sTM0sGZI8TBE2Ugep5gG1YSgL8hj5bpg1g+JT4KdmutzxFA6UT2DzanHmBn Be4LhJOWQMylbcRYUCV5xwsX0MExHVFMFDWAfrjzAX1e6cDaj7EogeHaZRaSQYo5 Ziq4Jl1rzh82bzXt/dCc4SJ0PGfJSofhVU3TUgPokwCDH8AbmskzJ0LcmI3mxWVo eIsKAY3FmdJIJw2GNq1U6SWbHOlcPOKAcbN9kkBRiazC1GkyQKXp4YV8xcaaUMHk 65/NCCJYsu971YkdzJTLN/C8kBQlEQBvu02daxfUSVjpmKodqjZbEqv1pOnNad4= =/CGc -----END PGP SIGNATURE-----