On 16 June 2010 around 21:20 UTC I witnessed a key generation procedure by which a DNSSEC Key Signing Key for signing the DNS root has been created.
The representation of this key in the DS RR format is as follows:
. IN DS 19036 8 2 49AAC11D7B6F6446702E54A1607371607A1A41855200FD2CE1CDDE32F24E8FB5
The hash of this DS RR represented as a biometric wordlist reads:
deckhand pedigree snapline breakaway kickoff hemisphere flytrap detergent guidance coherence eating outfielder facial hurricane hamlet fortitude keyboard Bradbury cranky leprosy Dupont adroitness willow Chicago tempest sandalwood tactics component uproot distortion payday positive
For more information about the publication of the trust anchor see:
http://www.root-dnssec.org/wp-content/uploads/2010/01/draft-icann-dnssec-trust-anchor-00.txt
For more information on the signing of the root see:
http://www.root-dnssec.org/
Olaf Kolkman
July 13, 2010
A PGP signed version of this declaration can be found here.