This signature file may be used to cryptographically verify file integrity, like this:: $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D $ gpg --list-keys 0xA16EB94D pub 2048R/A16EB94D 2008-08-15 [expires: 2023-08-12] uid Turnkey Linux Release Key $ gpg --verify turnkey-phreedom-13.0rc3-wheezy-amd64.iso.sig gpg: Signature made Fri Sep 13 08:53:04 UTC 2013 using RSA key ID A16EB94D gpg: Good signature from "Turnkey Linux Release Key" For your convenience we also include file checksums: * sha1sum 2c49b76f50e96443288c0fdeea63ac7bfb4b443a * md5sum 9b498c1b934a4c838a327f4700347cbb You can calculate these on your end and compare to check for errors, but cryptographic verification is recommended for security reasons. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iQEcBAABAgAGBQJSMtJoAAoJEIXCXpWhbrlN8uwIAIB5NkjxoMh9j5NNQkjD2lyg InlVIcgCi5V1gQrypgTQvphXFGgLgu1Fr7Px2Ur21tK/c2hqRQFxsIdw2EFFVoyw jM5ao3boWnQbG/neD/U61ltFl+PTwsM4Loa0mOZEhXlVTVUD+r0ZXodvf/n1/zHs NdpZuZn/ZrQ0nj7BsoJbUvZ4Uh92kMoeOsQeeNBtCftsyYu6jec/Bn1I9XVTjBHk 6gsyjy6ASZVjI3nZz7BSJEszZCfXK6mF6/7wBpolosqmlJFtVu84PMDbI7hX8pEl gQoUVMRHxPb/+pGvgWct2y24ZCj4U1+1UD7Pie8AjSIxV66UxssI0rqTkmD+PrI= =3eot -----END PGP SIGNATURE-----