TXT record

A TXT record (short for text record) is a type of resource record in the Domain name system (DNS) used to provide the ability to associate arbitrary text with a host or other name, such as human readable information about a server, network, data center, or other accounting information.^[1]

It is also often used in a more structured fashion to record small amounts of machine-readable data into the DNS.

Background

A domain may have multiple TXT records associated with it, provided the DNS server implementation supports this.^[2] Each record can in turn have one or more character strings.^[3] Traditionally these text fields were used for a variety of non-standardised uses, such as a full company or organisation name, or the address of a host.

In 1993 RFC 1464 proposed a simple approach to storing attributes and their values in these text fields. This is now used extensively in:

• Verification of domain ownership^[4][5]
• Implementation of Sender Policy Framework,^[6]
• DomainKeys Identified Mail records for verifying the sender of email messages;^[7]
• Zero-configuration networking DNS-based service discovery.^[8][9]
• DMARC policies

Format

The structure of a received DNS record is as follows. Name, Type, Class, TTL and Data length are documented in RFC 1035,^[10] while TXT Length and TXT form the RDATA field as documented in RFC 6763.^[11]

Record Structure

Field	Type	Description
Name	Label Sequence	The domain name, encoded as a sequence of labels.
Type	2-byte Integer.	The record type. In this case will be 0x0010 as the Type is TXT
Class	2-byte Integer	The class.
TTL	4-byte Integer	Time-To-Live, i.e. how long a record can be cached before it should be requeried.
Data Length	2-byte Integer	Length of the record type-specific data.
TXT Length	1-byte Integer	Length of TXT string
TXT	String	The utf-8 encoded String

TXT response example from example.com

This is the hex returned as part of the DNS response from example.com when queried for TXT records. 0000 34 48 81 a0 00 01 00 02 00 00 00 01 07 65 78 61 0010 6d 70 6c 65 03 63 6f 6d 00 00 10 00 01 c0 0c 00 0020 10 00 01 00 00 54 5f 00 0c 0b 76 3d 73 70 66 31 0030 20 2d 61 6c 6c c0 0c 00 10 00 01 00 00 54 5f 00 0040 21 20 38 6a 35 6e 66 71 6c 64 32 30 7a 70 63 79 0050 72 38 78 6a 77 30 79 64 63 66 71 39 72 6b 38 68 0060 67 6d 00 00 29 02 00 00 00 00 00 00 00 As part of this response, there are two text records, the first of which is shown below (beginning at byte 54). 0000 c0 0c 00 10 00 01 00 00 54 5f 00 0c 0b 76 3d 73 0010 70 66 31 20 2d 61 6c 6c This decodes as follows: Record Structure Field Hex Value Name 0xc00c example.com (This is a jump directive to an earlier label) Type 0x0010 IN Class 0x0010 TXT TTL 0x0000545f 21599 (5 hours, 59 minutes, 59 seconds) Data Length 0x000c 12 TXT Length 0x0b 11 TXT 0x 76 3d 73 70 66 31 20 2d 61 6c 6c v=spf1 -all

As unstructured text, organisations can use the TXT string in any way they define, for example:

example.com.   IN   TXT   "This domain name is reserved for use in documentation"

RFC 1464 defines a structured format that can be used to define attributes and their values in a single record,^[2] as in these examples:

host.widgets.com.   IN   TXT   "printer=lpr5"
sam.widgets.com.    IN   TXT   "favorite drink=orange juice"

In practice, services using TXT records often do not follow this RFC, but instead have their own specific format.^[12][13]

Example usage

The character string from a TXT record used for SPF:

"v=spf1 ip4:192.0.2.0/24 ip4:198.51.100.123 ip6:2620:0:860::/46 a -all"

An example of use for DMARC:

"v=DMARC1;p=none;sp=quarantine;pct=100;rua=mailto:dmarcreports@example.com;"

Use for site verification:

"google-site-verification=6P08Ow5E-8Q0m6vQ7FMAqAYIDprkVV8fUf_7hZ4Qvc8"

Use for custom email service:

_amazonses.example.com.   IN   TXT   "pmBGN/7MjnfhTKUZ06Enqq1PeGUaOkw8lGhcfwefcHU="

See also

• List of DNS record types
• DMARC
• DKIM
• E-mail authentication

References

1. Rich Rosenbaum (May 1993). RFC 1464 Using the Domain Name System To Store Arbitrary String Attributes. IETF. doi:10.17487/RFC1464. RFC 1464. Retrieved 2016-02-05.
2. Rosenbaum, R. "Using the Domain Name System To Store Arbitrary String Attributes". Tools.ietf.org. Retrieved 14 October 2018.
3. P. Mockapetris (November 1987). "TXT RDATA format". Domain names - implementation and specification. IETF. sec. 3.3.14. doi:10.17487/RFC1035. RFC 1035.
4. "Verify your site ownership". Retrieved 18 December 2018.
5. "Domain Verification". Facebook. Retrieved 18 December 2018.
6. Scott Kitterman (April 2014). "DNS Resource Records". Sender Policy Framework (SPF) for Authorizing Use of Domains in Email, Version 1. IETF. sec. 3.1. doi:10.17487/RFC7208. RFC 7208. Retrieved 2014-04-26.
7. "About TXT records". Google Apps Administration. Retrieved 2014-08-17.
8. S. Cheshire and M. Krochmal, Apple Inc. (February 2013). Multicast DNS. IETF. doi:10.17487/RFC6762. RFC 6762.
9. S. Cheshire and M. Krochmal, Apple Inc. (February 2013). DNS-Based Service Discovery. IETF. doi:10.17487/RFC6763. RFC 6763.
10. "rfc1035". datatracker.ietf.org. Retrieved 2021-08-15.
11. "rfc6763". datatracker.ietf.org. Retrieved 2021-08-15.
12. "DNS Record Verification". WebNots. Retrieved 21 December 2018.
13. "Amazon SES Domain Verification TXT Records". Amazon. Retrieved 21 December 2018.