get_public_key_string: Return the Base64/DER-encoded PKCS1
representation of the public key. (the DER form)
get_public_key_x509_string: Return the Base64/DER-encoded
representation of the "subject public key", suitable for use in X509
certificates. (the PEM form)
I did an experiment. I use the openssl command to make my keys.
Normally it makes PEM public keys which it emits in base64 encoded
form, but I told it to make in in DER form. It produces DER keys in
binary, so I base64 encoded it and put it in the DNS. As I expected,
the Mail::DKIM perl package verifies those signatures correctly.
This message's signature has a DER verification key so see what your
verifier thinks.
Even though either form works, it's probably worth a defect report to
say that PEM format is the one to use just in case someone uses a
library that cares about the difference.
R's,
John
_______________________________________________
NOTE WELL: This list operates according to
http://mipassoc.org/dkim/ietf-list-rules.html