For Privacy Pass specifically, I think it is worth defining an OPTIONAL endpoint /.well-known/mirror-resource
that would allow clients to retrieve all issuer keys before discovering it when prompted by an Origin. A
similar endpoint is provided in Cloudflare attester implementation [2] for instance. This endpoint could be as
simple as a list:
GET /.well-known/mirror-resources
https://issuer1.example/.well-known/private-token-issuer-directory
https://issuer2.example/.well-known/private-token-issuer-directory
From the adoption call: