I just recently set up DMARC on my mail server and in received mails, the order of SPF, DKIM and DMARC headers are strange. Moreover, if DKIM signature missign, there is no DMARC related "Authentication-Results" header at all.
Is this correct? Shouldn't SPF auth header be before DMARC auth results?
I use postfix, opendkim, opendmark and postfix-policyd-spf-python.
Delivered-To: target@target.com
Received-SPF: Pass (sender SPF authorized) identity=mailfrom; client-ip=1.2.3.4; helo=mail.source.com; envelope-from=me@source.com; receiver=target@target.com
Authentication-Results: mail.target.com; dmarc=none header.from=source.com
Received: from mail.source.com (mail.source.com [1.2.3.4])
by mail.target.com (Postfix) with ESMTPS id A818B3404A5
for <target@target.com>; Sat, 27 Aug 2016 09:59:23 +0200 (CEST)