@zacharius Keep in mind that with PKI you can have entirely unauthenticated /transactions/, by instead authenticating / encrypting /content/.
Post to site, and GPG-sign post. Send private message, encrypted to recipient.
Problem here is that there's massive metadata leakage. CCC have covered this in recent years IIRC.
There's also the directory / routing problem.
Generalistic and moderated instance.