It would be nice if Proton added instructions somewhere for how to add your PGP key that it generates to your DNS records, and if it added an automated way to verify that the entry was added correctly. I see on Wikipedia that there is an OPENPGPKEY DNS record type (https://en.wikipedia.org/wiki/List_of_DNS_record_types). If I go to https://www.rfc-editor.org/rfc/rfc7929, I see instructions for how to format this record. It appears that for the email address example they give (hugh@example.com), then the entry key is the SHA-256 hash of "hugh" followed by ._openpgpkey.example.com. The type is "OPENPGPKEY", and the value is the public key. However, I am unsure if the public key is supposed to be added to the record with the opening and closing comments (-----BEGIN PGP PUBLIC KEY BLOCK----- and -----END PGP PUBLIC KEY BLOCK-----) or if these are supposed to be removed, and I am also not sure if the newline characters should be included in the value or if they should be stripped out of the public key first. It would be nice if Proton just displayed the record and corresponding instructions for the user as it does with DKIM, DMARC, etc. Additionally, I think there might be multiple conflicting standards proposals for this record format, so it would be neat if Proton included all of the current dominating ones.