sigstore-python chooses to use a specific signing algorithm for signing with the signing certificate: this seems like a fine decision.

Even for verifying the signing certificate signature, sigstore clients are not required to support more than one key type... but it would make sense to support the low hanging fruit in https://github.com/sigstore/architecture-docs/blob/main/algorithm-registry.md (IOW the algorithms supported by cryptography but not yet by sigstore.verify: RSA, EdDSA).

This requires some changes in verifier.py:

• verify_artifact()
• verify_dsse()
• after Sign and verify with rekorv2 #1432 also _v2_verifier_from_certificate()