> JSON parsing libraries have been observed to differ as to whether or not they make the ordering of object members visible to calling software. Implementations whose behavior does not depend on member ordering will be interoperable in the sense that they will not be affected by these differences.
So, different signature makes sense. But it should not be an issue as long as both software are calculating/validating the signature on the string and not json.
https://datatracker.ietf.org/doc/html/rfc8259
Says:
> JSON parsing libraries have been observed to differ as to whether or not they make the ordering of object members visible to calling software. Implementations whose behavior does not depend on member ordering will be interoperable in the sense that they will not be affected by these differences.
So, different signature makes sense. But it should not be an issue as long as both software are calculating/validating the signature on the string and not json.