we have had EC PKI for over a decade now, it is time to move on, i agree

a keychain like this literally only has to be a few keys which you segregate for purposes or alts

there is already public registries of these keys but honestly the state of PKI is still pretty bad, and you would have to be silly to have me believe that pgp is fine, if it was then explain why it's becoming very common to use SSH for git repo auth?

i wouldn't say it's a symptom of a broken system so much as a failure of tech companies to care about security, which should be considered to be suspicious

that's worse than broken, that's corrupt