/*
 * Copyright (C) Internet Systems Consortium, Inc. ("ISC")
 *
 * SPDX-License-Identifier: MPL-2.0
 *
 * This Source Code Form is subject to the terms of the Mozilla Public
 * License, v. 2.0.  If a copy of the MPL was not distributed with this
 * file, you can obtain one at https://mozilla.org/MPL/2.0/.
 *
 * See the COPYRIGHT file distributed with this work for additional
 * information regarding copyright ownership.
 */

dnssec-policy "purgekeys" {
	keys {
		ksk key-directory lifetime 0 algorithm 13;
		zsk key-directory lifetime P30D algorithm 13;
	};
	/*
	 * Initially set to 0, so no keys are purged. Keys that are no longer
	 * in use will still be in the zone's keyring, one per view. After
	 * reconfig the purge-keys value is set to 7 days, at least one key
	 * will be eligible for purging, and should be purged from both
	 * keyrings without issues.
	 */
	purge-keys 0;
	//purge-keys P7D;
};