5. Choice and Strength of Keys and Algorithms
Section 3.3 of [RFC6376] describes DKIM's hash and signature
algorithms. It is updated as follows:
Signers SHOULD implement and verifiers MUST implement the Ed25519-SHA256 algorithm.
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
I'm using authentication_milter, and have/test @ fastmail.
I'm dual-signing my outbound, with both -rsa & -ed25519 dkim keys
rfc
states
that
testing @ fastmail, my rec'd mail headers report,
I'm working on an issue, with more detail, here,
not 100% clear yet where the problem lies ...
assuming that I'm reading the rfc correctly, DOES authentication_milter currently/correctly support Ed25519-SHA256 algorithm dkim verification?