RFC Errata
RFC 4034, "Resource Records for the DNS Security Extensions", March 2005
Note: This RFC has been updated by RFC 4470, RFC 6014, RFC 6840, RFC 6944, RFC 9077
Source of RFC: dnsext (int)See Also: RFC 4034 w/ inline errata
Errata ID: 193
Status: Verified
Type: Editorial
Publication Format(s) : TEXT
Reported By: Donald E. Eastlake III
Date Reported: 2005-06-21
In Appendix B.1, it says:
For a DNSKEY RR with algorithm 1, the key tag is defined to be the most significant 16 bits of the least significant 24 bits in the public key modulus (in other words, the 4th to last and 3rd to last octets of the public key modulus).
It should say:
For a DNSKEY RR with algorithm 1, the key tag is defined to be the most significant 16 bits of the least significant 24 bits in the public key modulus (in other words, the 3rd to last and 2nd to last octets of the public key modulus).