Move extension processing to after signature verification, and modernize it

index.bs

@@ -6069,14 +6069,15 @@ a numbered step. If outdented, it (today) is rendered as a bullet in the midst o
         processing steps may be concretely specified or it may be up to the [=[RP]=] what to do with extension outputs.
         The [=[RP]=] MAY ignore any or all extension outputs.
 
-        Note:  [=Client platforms=] MAY enact local policy that sets additional [=authenticator extensions=] or
+        [=Clients=] MAY set additional [=authenticator extensions=] or
         [=client extensions=] and thus cause values to appear in the [=authenticator extension outputs=] or
-        [=client extension outputs=] that were not originally specified as part of
-        <code>|pkOptions|.{{PublicKeyCredentialCreationOptions/extensions}}</code>. [=[RPS]=] MUST be prepared to handle such
-        situations, whether it be to ignore the unsolicited extensions or reject the attestation. The [=[RP]=] can make this
+        [=client extension outputs=] that were not
+        requested by the [=[RP]=] in <code>|pkOptions|.{{PublicKeyCredentialCreationOptions/extensions}}</code>.
+        The [=[RP]=] MUST be prepared to handle such situations,
+        whether by ignoring the unsolicited extensions or by rejecting the attestation. The [=[RP]=] can make this
         decision based on local policy and the extensions in use.
 
-        Note: Since all extensions are OPTIONAL for both the [=client=] and the [=authenticator=], the [=[RP]=] MUST also be
+        Since all extensions are OPTIONAL for both the [=client=] and the [=authenticator=], the [=[RP]=] MUST also be
         prepared to handle cases where none or not all of the requested extensions were acted upon.
     </li>
 
@@ -6256,14 +6257,15 @@ a numbered step. If outdented, it (today) is rendered as a bullet in the midst o
         processing steps may be concretely specified or it may be up to the [=[RP]=] what to do with extension outputs.
         The [=[RP]=] MAY ignore any or all extension outputs.
 
-        Note:  [=Client platforms=] MAY enact local policy that sets additional [=authenticator extensions=] or
+        [=Clients=] MAY set additional [=authenticator extensions=] or
         [=client extensions=] and thus cause values to appear in the [=authenticator extension outputs=] or
-        [=client extension outputs=] that were not originally specified as part of
-        <code>|pkOptions|.{{PublicKeyCredentialRequestOptions/extensions}}</code>. [=[RPS]=] MUST be prepared to handle such
-        situations, whether it be to ignore the unsolicited extensions or reject the assertion. The [=[RP]=] can make this
+        [=client extension outputs=] that were not
+        requested by the [=[RP]=] in <code>|pkOptions|.{{PublicKeyCredentialCreationOptions/extensions}}</code>.
+        The [=[RP]=] MUST be prepared to handle such situations,
+        whether by ignoring the unsolicited extensions or by rejecting the assertion. The [=[RP]=] can make this
         decision based on local policy and the extensions in use.
 
-        Note: Since all extensions are OPTIONAL for both the [=client=] and the [=authenticator=], the [=[RP]=] MUST also be
+        Since all extensions are OPTIONAL for both the [=client=] and the [=authenticator=], the [=[RP]=] MUST also be
         prepared to handle cases where none or not all of the requested extensions were acted upon.
     </li>