This signature file may be used to cryptographically verify file integrity, like this:: $ gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 0xA16EB94D $ gpg --list-keys 0xA16EB94D pub 2048R/A16EB94D 2008-08-15 [expires: 2023-08-12] uid Turnkey Linux Release Key $ gpg --verify debian-6-turnkey-ushahidi_12.1-1_i386.tar.gz.sig gpg: Signature made Wed Jun 5 01:01:48 UTC 2013 using RSA key ID A16EB94D gpg: Good signature from "Turnkey Linux Release Key" For your convenience we also include file checksums: * sha1sum 0801b6b0a5d72e46b5303f90d85cac471c58af04 * md5sum 3394005ddb65339e4fe34e9341d2f656 You can calculate these on your end and compare to check for errors, but cryptographic verification is recommended for security reasons. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iQEcBAABAgAGBQJRro3zAAoJEIXCXpWhbrlNVAsH/RkR2n03Mgy1WnhWeBMvZZMB rvZVnB5s9pxSt64o9qdk9MBLmRzKesdwXxSs3q9SVBS1he0t9giKUb/n5OI9CZsV lp2cPGfu4GL8pf8qPDSQbLTSk68ODDizXs4H6//DH7cbIAQHQtFAENJp5Bth/5sz hmV84IhWNNomNUV7ql5z4OhnVgD2G2aRJdmqTkU7pJyY5tcsblSllb3dERYYYreK JXeDeX9Exed9gP/fOZbYs0ZsdayXtRDEIxsIyBLRfjL8j4cL1sk2ON8fWBRDpBCb gLRxCvX86t8Y14Rr+MrwEDf17By52a8c3IG1NwtXSa1DKyrLNBqKhHQfC/puLaU= =VYqd -----END PGP SIGNATURE-----