1ldns-keygen(1) General Commands Manual ldns-keygen(1)
2
3
4
6 ldns-keygen - generate a DNSSEC key pair
7
9 ldns-keygen [ OPTION ] DOMAIN
10
11
13 ldns-keygen is used to generate a private/public keypair. When run, it
14 will create 3 files; a .key file with the public DNSKEY, a .private
15 file with the private keydata and a .ds with the DS record of the
16 DNSKEY record.
17
18 It prints out the basename for these files: K<name>+<alg>+<id>
19
20
22 -a <algorithm>
23 Create a key with this algorithm. Specifying 'list' here gives a
24 list of supported algorithms. Several alias names are also
25 accepted (from older versions and other software), the list
26 gives names from the RFC. Also the plain algo number is
27 accepted.
28
29
30 -b <bits>
31 Use this many bits for the key length.
32
33
34 -k When given, generate a key signing key. This just sets the flag
35 field to 257 instead of 256 in the DNSKEY RR in the .key file.
36
37
38 -r device
39 Make ldns-keygen use this file to seed the random generator
40 with. This will default to /dev/random.
41
42
43 -v Show the version and exit
44
45
47 Written by the ldns team as an example for ldns usage.
48
49
51 Report bugs to <ldns-team@nlnetlabs.nl>.
52
53
55 Copyright (C) 2005-2008 NLnet Labs. This is free software. There is NO
56 warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PUR‐
57 POSE.
58
59
60
61 27 May 2008 ldns-keygen(1)