+1 for writing a FEP, I would contribute to that effort
require ed25519, recommend rsa-v1_5_sha256
I think it should be the other way around: require rsa-v1_5_sha256, recommend ed25519. Since RSA is already used, implementers can start with RFC-9421 and add support for ed25519 later.
As far as I know, Mastodon and WordPress implemented RFC-9421 but not ed25519.
tootik
It's developed by @nprofile1q... (he's on a tootik instance, you can test your implementation there)
require ed25519, recommend rsa-v1_5_sha256
I think it should be the other way around: require rsa-v1_5_sha256, recommend ed25519. Since RSA is already used, implementers can start with RFC-9421 and add support for ed25519 later.
As far as I know, Mastodon and WordPress implemented RFC-9421 but not ed25519.
tootik
It's developed by @nprofile1q... (he's on a tootik instance, you can test your implementation there)