ldns-keygen(1) | General Commands Manual | ldns-keygen(1) |
ldns-keygen - generate a DNSSEC key pair
ldns-keygen [ OPTION ] DOMAIN
ldns-keygen is used to generate a private/public keypair. When run, it will create 3 files; a .key file with the public DNSKEY, a .private file with the private keydata and a .ds with the DS record of the DNSKEY record.
ldns-keygen can also be used to create symmetric keys (for TSIG) by selecting the appropriate algorithm: hmac-md5.sig-alg.reg.int, hmac-sha1, hmac-sha224, hmac-sha256, hmac-sha384 or hmac-sha512. In that case no DS record will be created and no .ds file.
ldns-keygen prints the basename for the key files: K<name>+<alg>+<id>
Written by the ldns team as an example for ldns usage.
Report bugs to <ldns-team@nlnetlabs.nl>.
Copyright (C) 2005-2008 NLnet Labs. This is free software. There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.
27 May 2008 |