Comment 2 for bug 1974132

Indeed, but NIST is only listing minimum sizes, not recommended ones ;)
We need to use 4096bits when we can, 2048 makes sense only when using outdated software.

For example, Debian is recommending 4096 keys since 2010:
https://lists.debian.org/debian-devel-announce/2010/09/msg00003.html

See this article for more details: https://danielpocock.com/rsa-key-sizes-2048-or-4096-bits/