No offense but CAs still don’t support ed25519, a now 20 year old ECDSA standard that everyone uses basically everywhere else, including FIPS.

Although tbf I’m sure the NSA could yolo PKI in an “emergency” situation anyway by compromising a CA, though I don’t think that would happen unless its literally WWIII.