There are some issues with C2SP checkpoints as documented in https://github.com/sigstore/sigstore-conformance/pull/241 * at least we should not expect all signatures to be from the log key
There are some issues with C2SP checkpoints as documented in sigstore/sigstore-conformance#241