we've been consistently pretty surprised that webauthn doesn't define an API for fetching the public key by the cred ID -- seems like a common use case, anyone know the context on why this wasn't allowed for passkeys?