Description

New DNSSEC trust anchor key were generated and is already published. New installations should have the key present. As an operator of DNSSEC validating server or client I want to have keys updated.

What SSTs and Layered Product teams should review this?

• rhel-sst-cs-net-and-perf-services
• rhel-sst-cs-plumbers

Dates

2025-01-11 Published new KSK key.
2026-10-11 Announced date of key rollover, started signing DNS records with new key