Exhale

Hence "What you know" is inherently safer than "Who you are" or "What you have" or however this is worded.

This assumes entirely that the sole threat is law enforcement. In addition, it ignores that passkeys can be password protected.

plain old passwords

Which are susceptible to MITM attacks, imposter attacks, and keylogger attacks.

I have a password manager

Which contains a database which can be copied and attacked offline. This is especially a threat if the content is synchronized.
And is especially susceptible to keylogger attacks – since you now only need to obtain one password to gain access to everything stored in it.