diff --git a/mautrix_telegram/example-config.yaml b/mautrix_telegram/example-config.yaml
index 3a08ff27..3f3d938f 100644
--- a/mautrix_telegram/example-config.yaml
+++ b/mautrix_telegram/example-config.yaml
@@ -280,6 +280,10 @@ bridge:
         # Only relevant when using end-to-bridge encryption, required when using encryption with next-gen auth (MSC3861).
         # Changing this option requires updating the appservice registration file.
         msc4190: false
+        # Should the bridge bot generate a recovery key and cross-signing keys and verify itself?
+        # Note that without the latest version of MSC4190, this will fail if you reset the bridge database.
+        # The generated recovery key will be printed in logs.
+        self_sign: false
         # Require encryption, drop any unencrypted messages.
         require: false
         # Enable key sharing? If enabled, key requests for rooms where users are in will be fulfilled.
diff --git a/optional-requirements.txt b/optional-requirements.txt
index 3fd62c53..09acf5fd 100644
--- a/optional-requirements.txt
+++ b/optional-requirements.txt
@@ -20,6 +20,7 @@ prometheus_client>=0.6,<0.23
 python-olm>=3,<4
 pycryptodome>=3,<4
 unpaddedbase64>=1,<3
+base58>=2,<3
 
 #/sqlite
 aiosqlite>=0.16,<0.22
diff --git a/requirements.txt b/requirements.txt
index 898e0898..4feb3f19 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -3,7 +3,7 @@ python-magic>=0.4,<0.5
 commonmark>=0.8,<0.10
 aiohttp>=3,<4
 yarl>=1,<2
-mautrix>=0.20.9rc3,<0.21
+mautrix>=0.21.0b5,<0.22
 tulir-telethon==1.99.0a6
 asyncpg>=0.20,<1
 mako>=1,<2