DKIM Record Checker

DKIM signs outgoing emails. Receivers verify the signature using a public key in DNS.

DKIM lives on <selector>._domainkey.<domain>. If selector is empty, we try common ones.

Result for avito.ru

Found
Selector: selector1 (TXT on selector1._domainkey.avito.ru) 
v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDOy9OeCGEEdcC6RLdAusZ8K7uoL+0rNPrRCw94dAMf9yJn1Qwl3F94WmllXB0FUCkavaOoguqkoy27Oi0kZ+2z78/eEQ4vrRq2C37XErUr8s8ciwHJ8KwMvbwCemmMRpANwNCZxlntmrSNO7m6Iy8rRyJLS448SFuCt8Cisv5S2wIDAQAB;
Selector: selector2 (TXT on selector2._domainkey.avito.ru) 
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyaUe10efWYcj3QEvLrwN6nqevYGVImqXF1WtQERz9kDcE0NHku19pRTiavwIP5CRZzSioU+pTWLoCukkjplfXgvpy4rIheM4tW2a4oJFhocyhvNg3LzJPh3qqt+mtand88bzxc6HacmHxxvOz5QAll8tM0TuqfRcWuw/gGnV2LQ3V0/tdI7Z/rQEWMvP1VCp5d8/aZhKMVjyCxWsTWqybYo/nA4lOUfBAtfhIlyKqw9STc4bQSRQcuH1TNs+VNI7B3bDFbChNE3qRHqgKSLCtVNk9+DZgd6lLChTjaUFh0Fn5CaTOAHh5uCemfQqU+Pfp9thKILnFpGCU6/mjTi7mQIDAQAB;
Selector: mail (TXT on mail._domainkey.avito.ru) 
v=DKIM1; g=*; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwxq3XtiP6wLCkBxe+3llhfRk+oXkzWrvz/4M6rArVkFJQCBv6WsIGOCVnuEybUpMOdJbtZRvRdzd8Sz3ggFIHc7aVOBnpkzI3odyr/64LY00idg1PmI7x0GVUG kYeLhEgtocCNQfDcuvbCiwPCNA/0dqNeV1/0UrPeIsXGpmjxDrAbFNT7LA0O+4snJ8/+bkQnsMH9PmeGqRUXMzUa/uUjNlPk7fgqw1hXPgjYe8Vk0qZwTlNKbnhGN25M9l9TcZjxE2Q5zJi041HNlkCxnwY0KQechgIaOdvHw8adV8Mtm12pJItr8vEyO3Irp0jC6tmZ4ay+5+4Cl85TDK5V6r+QIDAQAB

FAQ

Why does DKIM require a selector?
Selectors allow rotating keys and running multiple keys per domain.
Where is DKIM published?
TXT on <selector>._domainkey.<domain>.
DKIM record exists but emails still fail DKIM?
Signing may be disabled or the selector used in email differs from DNS.
Do I need DKIM if I have SPF?
Yes, many providers use both for best deliverability and DMARC alignment.
Can I have multiple DKIM selectors?
Yes, that is common for key rotation or multiple senders.

What is DKIM?

DKIM (DomainKeys Identified Mail) adds a cryptographic signature to outgoing emails. DNS stores a public key that allows receivers to verify authenticity.

Example

v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0B...

Common mistakes

  • Wrong selector (the record exists but under a different selector).
  • Key is split incorrectly across multiple TXT chunks (some DNS UIs break it).
  • Publishing DKIM but not enabling signing on the mail provider.

Related pages

More Email Tools