DKIM Record Checker
Check DKIM records by domain and selector, and verify the public key is valid.
What Is a DKIM Record?
A DKIM (DomainKeys Identified Mail) record is a DNS record used for email authentication. It helps verify the sender's identity and ensures that the email content hasn't been tampered with during transit. The DKIM record contains a public key that corresponds to a private key used by the sending mail server. When an email is sent, it's signed with the private key, and the receiving server uses the public key in the DKIM record to validate the signature, confirming the email's authenticity.
Email authentication knowledge base
The tags you'll find inside a DKIM record and what each one means.
- v
- The version tag specifies DKIM’s version, consistently required to be 1.
- p
- The public key tag, a character string created in DKIM setup, must not be left empty to remain valid.
- t
- This tag enumerates flags as a colon-separated sequence, with “y” and “s” as defined flags; any undefined flags should be disregarded.
- s
- This tag details service types relevant to the record. Absent or unrecognized service types must be overlooked by receiving servers.
- h
- This tag specifies permitted hash algorithms, defaulting to allow all. Receivers should ignore unknown algorithms, with the sender determining the list’s entries.
- n
- This tag serves as an optional note field for administrators, recommended for use only when needed.