InboxKit logo

DKIM Record
Checker

Validate DKIM signatures and verify email authenticationEnsure your emails are cryptographically signed and trusted

Public Key Validation
Selector Auto-Detection
Cryptographic Verification

Check DKIM Record

Verify DKIM configuration and public key setup

Selector Scanning

Auto-detect common DKIM selectors

Key Validation

Verify public key format and strength

Security Analysis

Check key size and algorithm strength

Missing DKIM Records?

InboxKit automatically generates and manages DKIM keys for all your domains.

Get DKIM Setup Help

DKIM Record Checker Guide

Understanding DomainKeys Identified Mail (DKIM) authentication

How DKIM Works

  1. 1.Email server signs outgoing messages with private key
  2. 2.Signature added to email headers (DKIM-Signature)
  3. 3.Receiving server retrieves public key from DNS
  4. 4.Signature verified using public key
  5. 5.Email authenticated if signature matches

Common DKIM Issues

  • Key size less than 1024 bits (insecure)
  • Incorrect selector configuration
  • DNS record formatting errors
  • Mismatched public/private key pairs
  • Multiple TXT strings not concatenated

Common DKIM Selectors by Provider

Email Services

  • • Google Workspace: google
  • • Microsoft 365: selector1, selector2
  • • Zoho: zoho

Marketing Platforms

  • • Mailchimp: k1, k2, k3
  • • SendGrid: s1, s2, sendgrid
  • • Mailgun: pic, krs, mailgun

Transactional

  • • Amazon SES: amazonses
  • • Postmark: YYYYMMDD
  • • SparkPost: sparkpost

What is a DKIM Record Checker?

A DKIM record checker is an essential email authentication tool that validates DomainKeys Identified Mail (DKIM) records in your domain's DNS. DKIM uses cryptographic signatures to verify that emails haven't been tampered with during transmission and originate from authorized servers. Our checker automatically scans common DKIM selectors and validates public key configurations.

Why DKIM Verification Matters

DKIM authentication is crucial for email deliverability and security. Major email providers like Gmail, Outlook, and Yahoo require DKIM signatures for bulk senders. Without proper DKIM configuration, your emails may be marked as spam or rejected entirely. Regular DKIM checks ensure your email authentication remains intact and effective.

DKIM Best Practices for 2024

  • Use 2048-bit RSA keys for stronger security (1024-bit is deprecated)
  • Implement separate DKIM selectors for different email services
  • Rotate DKIM keys periodically to maintain security
  • Monitor DKIM pass rates through DMARC reports
  • Ensure DNS records are properly formatted with no extra spaces
  • Test DKIM signatures regularly with authentication checkers

Automate Your Email Authentication

Stop managing DNS records manually. InboxKit handles SPF, DKIM, and DMARC automatically.

Start Free TrialView Setup Guides