@@ -5,13 +5,13 @@ title: How can I verify Tor Browser's signature?
seo_slug: how-to-verify-signature
---
description:
Digital signature is a process ensuring that a certain package was generated by its developers and has not been tampered with.
Below we explain why it is important and how to verify that the Tor program you download is the one we have created and has not been modified by some attacker.
Each file on our [download page](https://www.torproject.org/download/) is accompanied by a file with the same name as the package and the extension ".asc". These .asc files are GPG signatures.
They allow you to verify the file you've downloaded is exactly the one that we intended you to get.
For example, torbrowser-install-8.0.8_en-US.exe is accompanied by torbrowser-install-8.0.8_en-US.exe.asc.
For a list of which developer signs which package, see our [signing keys page](https://www.torproject.org/docs/signing-keys.html.en).
We now show how you can verify the downloaded file's digital signature on different operating systems.
Please notice that a signature is dated the moment the package has been signed.
...
...
@@ -29,7 +29,7 @@ In order to verify the signature you will need to type a few commands in windows
The Tor Browser team signs Tor Browser releases.
Import its key (0x4E2C6E8793298290) by starting cmd.exe and typing:
