1 /* 2 * Copyright (C) Internet Systems Consortium, Inc. ("ISC") 3 * 4 * SPDX-License-Identifier: MPL-2.0 5 * 6 * This Source Code Form is subject to the terms of the Mozilla Public 7 * License, v. 2.0. If a copy of the MPL was not distributed with this 8 * file, you can obtain one at https://mozilla.org/MPL/2.0/. 9 * 10 * See the COPYRIGHT file distributed with this work for additional 11 * information regarding copyright ownership. 12 */ 13 14 dnssec-policy "csk-roll2-autosign" { 15 signatures-refresh 12h; 16 signatures-validity P1D; 17 signatures-validity-dnskey P1D; 18 19 dnskey-ttl 1h; 20 publish-safety PT1H; 21 retire-safety 1h; 22 purge-keys 0; 23 24 cds-digest-types { "sha-256"; "sha-384"; }; // use two digest type for testing purposes 25 keys { 26 csk key-directory lifetime P6M algorithm ecdsa256; 27 }; 28 29 zone-propagation-delay PT1H; 30 max-zone-ttl 1d; 31 32 parent-ds-ttl PT1H; 33 parent-propagation-delay P1W; 34 }; 35 36 dnssec-policy "csk-roll2-manual" { 37 manual-mode yes; 38 39 signatures-refresh 12h; 40 signatures-validity P1D; 41 signatures-validity-dnskey P1D; 42 43 dnskey-ttl 1h; 44 publish-safety PT1H; 45 retire-safety 1h; 46 purge-keys 0; 47 48 cds-digest-types { "sha-256"; "sha-384"; }; // use two digest type for testing purposes 49 keys { 50 csk key-directory lifetime P6M algorithm ecdsa256; 51 }; 52 53 zone-propagation-delay PT1H; 54 max-zone-ttl 1d; 55 56 parent-ds-ttl PT1H; 57 parent-propagation-delay P1W; 58 }; 59
Indexes created Sun Mar 01 05:31:48 UTC 2026