BIMI Lookup & Generator

Check BIMI (Brand Indicators for Message Identification) records for any domain, preview the brand logo, and build your own v=BIMI1 TXT record.

Try:

Configure BIMI Record

Selector Optional — default is default

Most setups use default. Custom selectors allow multiple BIMI records per domain.

Logo URL (l=) Required

Must be an HTTPS URL pointing to an SVG Tiny P/S file. The SVG must be square, and the viewBox must be defined. No JavaScript, external references, or animations.

VMC Certificate URL (a=) Optional — required for verified checkmark

A Verified Mark Certificate (VMC) from DigiCert or Entrust is required to display the verified checkmark badge in Gmail, Yahoo Mail, and Apple Mail. Without it, BIMI still works but no checkmark is shown.

Generated BIMI Record

Publish this as a TXT record on your DNS. The host/name must be default._bimi (for your domain).

How to Publish

Log in to your DNS provider (Cloudflare, Route 53, cPanel, etc.)
Create a new TXT record
Set the Name/Host to default._bimi (add your domain if required by your provider)
Paste the generated record as the Value/Content
Set TTL to 3600 (1 hour) or your provider's default
Propagation typically takes 5–30 minutes

Frequently Asked Questions

BIMI (Brand Indicators for Message Identification) is an email specification that allows brands to display their official logo next to authenticated emails in supported email clients such as Gmail, Yahoo Mail, Apple Mail, and Fastmail. It is published as a DNS TXT record at default._bimi.yourdomain.com and links to an SVG logo file. BIMI requires a strong DMARC policy (p=quarantine or p=reject) to be in place before it will activate.

A Verified Mark Certificate (VMC) is an X.509 digital certificate issued by an accredited authority (currently DigiCert and Entrust) that binds your logo to your domain and legal entity. It is referenced in the a= tag of your BIMI record. Gmail and Apple Mail require a VMC to show the verified checkmark. Without a VMC your BIMI record may still work in some clients (like Yahoo Mail) but the logo display is not guaranteed across all providers. VMCs typically cost $1,000–$1,500/year.

BIMI requires the logo to be in SVG Tiny P/S (Portable/Secure) format — a restricted subset of SVG designed for security and consistent rendering. Requirements include: hosted on HTTPS, square aspect ratio, viewBox attribute defined, no JavaScript or event handlers, no external references or linked images, no animations. Use the BIMI Group's SVG conversion tools to convert your logo.

As of 2025, BIMI is supported by: Gmail (requires VMC), Yahoo Mail (does not require VMC), Apple Mail iOS 16+/macOS Ventura+ (requires VMC), Fastmail, and La Poste. Outlook/Microsoft 365 uses its own BIMI implementation (BIMI with VMC is supported in some configurations). The list of supporting clients continues to grow. Check the BIMI Group's client list for the latest status.

The most common reasons are: (1) No VMC — Gmail requires a VMC in the a= tag. (2) DMARC policy is p=none — BIMI requires p=quarantine or p=reject. (3) SVG format issues — the logo isn't valid SVG Tiny P/S. (4) Logo not hosted on HTTPS — HTTP URLs are rejected. (5) DNS propagation — the record is new and hasn't propagated. (6) Non-square logo — the aspect ratio must be 1:1.

As of 2025, BIMI is supported by: Gmail (requires VMC for verified checkmark), Yahoo Mail (supports BIMI without a VMC — just a valid BIMI record and DMARC p=quarantine/reject), Apple Mail on iOS 16+ and macOS Ventura+ (requires VMC), Fastmail, and La Poste (France). Outlook/Microsoft 365 has its own logo system called BIMI-like brand indicators, with partial VMC support in some configurations. The number of supporting clients continues to grow — check the BIMI Group's client list for the latest status.

A VMC is required by Gmail and Apple Mail to display the verified sender logo with a blue checkmark badge. Without a VMC, your BIMI record still works in Yahoo Mail and some other clients — your logo can appear without the verified badge. VMCs are issued by two accredited Certificate Authorities: DigiCert and Entrust, and typically cost $1,000–$1,500 per year. They require your logo to be a registered trademark in the relevant jurisdiction(s). The VMC embeds your SVG logo and links it to your domain, providing the cryptographic proof that the email client uses to verify authenticity. For smaller organizations, starting with a VMC-free BIMI record for Yahoo is a cost-effective first step.

BIMI displays your brand's logo as the sender avatar in supporting email clients — the visual that appears in the inbox list next to your sender name, even before the email is opened. This provides instant brand recognition in a crowded inbox. Studies by the BIMI Group have shown that emails with displayed logos can see up to 21% higher open rates. Beyond open rates, the logo trains recipients to visually associate your brand with trustworthy email — making spoofed emails without your logo immediately suspicious. The verified checkmark (with VMC) adds a trust signal similar to social media verified badges, signalling the email is genuinely from your organization.

Use this BIMI Lookup tool — enter your domain to instantly verify your BIMI DNS record, DMARC prerequisite, logo URL, and VMC status. Additionally: (1) send a test email to a Yahoo Mail address (Yahoo supports BIMI without VMC) and check if your logo appears in the inbox; (2) send a test to a Gmail account — if you have a VMC, the verified checkmark should appear; (3) use the BIMI Group's inspector for a detailed diagnostic; (4) use MXToolbox BIMI checker for an additional verification. Remember that email clients cache BIMI records, so changes may take a few hours to appear.

BIMI requires your logo in SVG Tiny P/S (Portable/Secure) format — a strict security-hardened subset of SVG. Key requirements:

Required: HTTPS hosting at a stable URL, square aspect ratio (1:1) with viewBox defined, solid background filling the full canvas (no transparent background), no external file references, served with Content-Type: image/svg+xml.

Not allowed: JavaScript, event handlers (onclick, onload), CSS animations, embedded fonts, <image> elements referencing external files, or <script> tags.

Use the BIMI Group's free SVG validator to verify your logo before publishing the BIMI record.

About This BIMI Lookup & Generator

This free BIMI tool has two modes. The Lookup tab queries the {selector}._bimi.{domain} DNS TXT record, parses every tag, and previews the brand logo if a valid SVG URL is present. The Generator tab builds a valid BIMI record interactively. Note: BIMI requires an active DMARC policy of p=quarantine or p=reject — without it, email clients will not display the logo.

When to use this tool

Verify that a BIMI record is published and correctly formatted
Preview how your brand logo will appear in supporting email clients
Check whether a VMC (Verified Mark Certificate) is linked for the verified checkmark
Build or update a BIMI record with the interactive generator

Standards & References

How BIMI Works

Authenticate Email

Your domain must have SPF, DKIM, and DMARC (p=quarantine or p=reject) all passing correctly.

Prepare SVG Logo

Convert your logo to SVG Tiny P/S format. Host it at a public, stable HTTPS URL — it should never change or move.

Publish BIMI Record

Add a TXT record at default._bimi.yourdomain.com pointing to your logo (and optionally your VMC).

Logo Appears in Inbox

Supporting email clients fetch your logo and display it in the sender avatar area — building trust and brand recognition.

The email authentication chain: SPF verifies the sending IP → DKIM verifies the message signature → DMARC ties them together with a policy → BIMI displays your brand logo once all three pass.

BIMI Tag Reference

Tag	Name	Required	Description
`v`	Version	Yes	Always `BIMI1`. Must be the first tag.
`l`	Logo URL	Yes	HTTPS URL to the SVG Tiny P/S logo file. Must be publicly accessible and stable. Set to empty string (`l=`) to opt out of BIMI without removing the record.
`a`	Authority (VMC)	Optional	HTTPS URL to the PEM-encoded Verified Mark Certificate (VMC). Required by Gmail and Apple Mail to show the verified checkmark. Issued by DigiCert or Entrust.

Why Implement BIMI?

Instant Brand Recognition

Your logo appears as the sender avatar before the email is even opened — making your brand immediately recognizable in a crowded inbox and boosting open rates.

Verified Checkmark Badge

With a VMC, Gmail and Apple Mail display a blue verified checkmark alongside your logo — signalling to recipients that this email is genuinely from your brand, not a spoof.

Forces Strong Authentication

To implement BIMI you must have SPF, DKIM, and a DMARC policy of p=quarantine or p=reject — so pursuing BIMI naturally results in a fully hardened email security posture.

Higher Deliverability

The strong authentication chain required for BIMI significantly improves sender reputation with major mailbox providers, reducing the chance of landing in spam folders.

Phishing Protection for Recipients

Legitimate emails carry your visual logo; phishing attempts don't. Recipients learn to expect and trust your logo, making spoofed emails without it immediately suspicious.

No Cost for Basic BIMI

A basic BIMI record with just l= costs nothing beyond hosting an SVG file — and already works in Yahoo Mail. Only the VMC (for the verified checkmark in Gmail) requires a paid certificate.

SVG Logo Requirements for BIMI

BIMI enforces strict SVG requirements to ensure consistent, safe rendering across all email clients. Your logo must comply with SVG Tiny P/S (Portable/Secure) — a security-hardened subset of SVG.

Required

File format: SVG Tiny P/S (IETF RFC profile)
Hosted on HTTPS at a stable, permanent URL
Square aspect ratio (1:1) with viewBox defined
Full-bleed design — logo should fill the entire canvas
Background fills the entire viewBox (no transparent backgrounds)
Content-Type: image/svg+xml served by the web server

Not Allowed

JavaScript or event handlers (onclick, onload, etc.)
External references, <image> tags, or linked resources
Animations (<animate>, CSS animations, SMIL)
Embedded fonts or @font-face declarations
Non-square aspect ratio or missing viewBox
HTTP URLs (insecure hosting)

Use the BIMI Group's free SVG validator or tools like Inkscape (export as Plain SVG and remove unsupported features) to prepare a compliant logo.

Verified Mark Certificate (VMC) Providers

VMCs are required by Gmail and Apple Mail to display the verified sender checkmark. They are currently issued by two accredited Certificate Authorities:

DigiCert

One of the two accredited VMC issuers. DigiCert is a well-established CA offering VMC certificates for BIMI, including logo validation and trademark verification.

Typical cost: ~$1,000–$1,500 / year

Entrust

The other accredited VMC CA. Entrust provides VMC issuance as part of its identity and certificate portfolio, with logo validation and an audit process.

Typical cost: ~$1,000–$1,500 / year

VMC prerequisites: Your logo must be a registered trademark in the relevant jurisdiction(s). The CA will verify trademark ownership as part of the issuance process. Allow 2–4 weeks for validation and issuance. The VMC embeds your SVG logo and must be renewed annually along with your BIMI record update.

The Email Authentication Stack

BIMI is the final, visible layer of the email authentication stack. It only activates once SPF, DKIM, and DMARC are all correctly in place.

Protocol	What it authenticates	DNS Record	Our Tool
SPF	The sending server's IP address is authorized to send for the domain	`TXT` at root domain	SPF Lookup & Generator
DKIM	The message was cryptographically signed by an authorized sender and not altered	`TXT` at `{selector}._domainkey.{domain}`	DKIM Checker
DMARC	SPF/DKIM alignment with the visible `From:` header — sets enforcement policy and reporting	`TXT` at `_dmarc.{domain}`	DMARC Lookup & Generator
BIMI	Displays the domain's brand logo in supporting email clients once SPF, DKIM, and DMARC all pass	`TXT` at `default._bimi.{domain}`	This tool
MX	Where inbound email for the domain should be delivered	`MX` at root domain	MX Lookup

Related Email Authentication Tools

View all articles

BIMI Display Adoption: Why Your Perfectly-Configured Logo Might Still Not Show Up

A perfectly-configured BIMI setup — valid SPF/DKIM/DMARC, correctly-formatted SVG, even a VMC certificate — can still show no logo in most inboxes, because each mailbox provider independently decides whether and when to display BIMI logos. Here's the provider-by-provider adoption patchwork, why SVG Tiny PS (BIMI's restricted SVG profile) commonly rejects design-tool exports, and why "specification-compliant" and "logo actually displays" are genuinely different claims.

Jun 13, 2026

BIMI Certificates Explained: VMC, CMC, and the Trademark Verification Chain

A BIMI logo in an inbox is the endpoint of a verification chain that can include a Verified Mark Certificate — a specific X.509 certificate type tied to trademark registration, issued by a small number of specialised Certificate Authorities. Here's what's actually in a VMC, the CMC alternative, BIMI's restricted SVG logo format, and how it all depends on DMARC enforcement underneath.

Jun 12, 2026

Email Deliverability Beyond Authentication: Reputation, Engagement, and IP Warming

SPF, DKIM, and DMARC prove you're legitimate — but engagement rates, complaint rates, list hygiene, and domain age determine whether you land in inbox or spam. Here's the deliverability signals major providers actually use, IP warming schedules, and the 2024 Google/Yahoo requirements in practice.

Jun 9, 2026

BIMI Setup Guide: How Email Logo Authentication Fits Into the Full Stack

BIMI is the capstone of email authentication — but it requires SPF, DKIM, and DMARC at p=reject to function. Here's the full setup guide, what Verified Mark Certificates are, which inboxes support it, and the most common misconfigurations.

Jun 8, 2026

BIMI Lookup — Check Your Domain's Email Brand Logo Configuration

Learn what BIMI is, how it works alongside DMARC and DKIM to display brand logos in email inboxes, what a BIMI lookup reveals, and how to implement it for your domain.

Jun 6, 2026