This signature file may be used to cryptographically verify file integrity, like this:: $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D $ gpg --list-keys 0xA16EB94D pub 2048R/A16EB94D 2008-08-15 [expires: 2023-08-12] uid Turnkey Linux Release Key $ gpg --verify debian-6-turnkey-phreedom_12.0-1_i386.tar.gz.sig gpg: Signature made Tue Aug 21 14:29:28 UTC 2012 using RSA key ID A16EB94D gpg: Good signature from "Turnkey Linux Release Key For your convenience we also include file checksums: * sha1sum 31688e145142608e4036a8bbd4931f2241cbef16 * md5sum 0981603cfc511acf467014d2ee9d10af You can calculate these on your end and compare to check for errors, but cryptographic verification is recommended for security reasons. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iQEcBAABAgAGBQJQM5tAAAoJEIXCXpWhbrlNed8H/2qEuV/b8iDS8CYI2TH8myJh B2V7g/P1INHQFA41PfaRwPNk+uWsJMZ9zAYBgfnBwbOTiIVfu47h3JU9FPKFXHLa L62276LRwLlbTau6BZKN9smf4kQOfeIZGXllI6llICQ0jaLEH0BknlcvTG63ywW2 uCCdhyaekQtntt3MQ5GPOXHESOfk+Li6y8G7JSRxJoZEAVkgN0JgmVTorX77le1S 2vNxQ1aZBrTj7M8k39+5xF+wjgRtQ55QDH/vcgI07puA1S5fHu61FfTCjp4jYi46 meL7yeVdACsqARaZzBBQBwaoqQA/azC8ZIK83TKna583gMXF9voAIgLtNvugGq8= =MBYQ -----END PGP SIGNATURE-----