This signature file may be used to cryptographically verify file integrity, like this:: $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D $ gpg --list-keys 0xA16EB94D pub 2048R/A16EB94D 2008-08-15 [expires: 2023-08-12] uid Turnkey Linux Release Key $ gpg --verify debian-7-turnkey-pligg_13.0-1_amd64.tar.gz.sig gpg: Signature made Wed Oct 16 09:53:16 UTC 2013 using RSA key ID A16EB94D gpg: Good signature from "Turnkey Linux Release Key" For your convenience we also include file checksums: * sha1sum e36b7821de04bc54c07040b1247ee3f22c283012 * md5sum 7afd7869585914fa914080f307c17ca3 You can calculate these on your end and compare to check for errors, but cryptographic verification is recommended for security reasons. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iQEcBAABAgAGBQJSXmIFAAoJEIXCXpWhbrlNzLcIAKHwlXxLbe7JMAv8/KiGvszH HCs8MVaU382fKGoasd6jZBIEQ7u6sFFsRunNaJSnmNiC7e8rysqpmYA7KRWVbvAj iu/Eie7tAjkbTKBPhIS9vel7YPJu96wMhz/Zh8K1bi/61lJbQ/V4iFTjMcQxuzjJ cW/HHB6StULNTlIqj8UmC4OjcBk3bVD+A9t+MH4BUmypPnjccVnZwqRnvC0LtY3S 7pzP419beZY2ouO/0260FomtPmHSdn6MPuEsU550JZSqj9Yex36VDblCrm69VnBp M1Cum5itaSiW1fFgSRDmMRHs92yStavlfHZsm7MmsC8/3Gac74FcNLpmAew/A7o= =nE+G -----END PGP SIGNATURE-----