Troubleshooting Invalid DKIM Records
When setting up DKIM for your sender domain and something is wrong with the settings, they may show up as Invalid.
Please ensure the record types, names are values in your DNS manager exactly match the values requested in MailPoet interface. If you're having trouble verifying them, please check if you could be experiencing one of the following cases:
Domain name duplicated
Double check the DNS record name. Some DNS providers may create DNS records with a duplicate domain name, causing "mailpoet1._domainkey.example.com" record to be incorrectly created as "mailpoet1._domainkey.example.com.example.com". This is the case of GoDaddy and Namecheap, for example.
If this occurred in your case, try removing the domain name from the record's name, leaving it as " mailpoet1._domainkey", "mailpoet2._domainkey" and "_mailpoet".
To confirm this is what's happening, you can use the online tool https://www.mail-tester.com/spf-dkim-check
Duplicate the domain like this and check if you find a record for it:
DNS changes can take up to 24 hours to propagate
If you've just added the records, try waiting for 5-10 minutes and click "Verify DNS records" again. DNS changes can take up to 24 hours to propagate, but commonly you may see them within 5-30 minutes;
Cloudflare configuration
Proxy status
If you use Cloudflare as your domain's DNS provider, switch from "Proxied" to "DNS only" Proxy status for both of the CNAME records:
CNAME Flattening
Also, please turn off CNAME Flattening in Cloudflare, as it can cause issues with the DNS resolution and prevent the domain from being verified. More information about CNAME Flattening is available in Cloudflare's documentation here: https://developers.cloudflare.com/dns/additional-options/cname-flattening/