This is not the exact algorithm used by the cluster but works about 50% of the time so you can usually succeed within 2 or 3 tries and get access to the EEPROM. I reverse engineered it by writing an RB8 simulator that returned specific simple seeds (e.g. 0x00000000, 0x00000001, etc.) and then had VAG K+CAN Commander try to access the simulator while I observed the keys being sent in response to the various seeds. It works fine on the two RB8 1J0920926C clusters that I have. No idea if it works on other RB8 clusters.

Spent a few more hours on this today, and with the help of the Z3 theorem prover (good info here: https://www.enigmatos.com/hacking-cars-with-z3/) and some trial and error, came up with the exact algorithm:


So far it's worked every time...

Only the EEPROM. I don't know much about the RB8 cluster (e.g. memory map, which kwp1281 commands are supported for reading RAM/ROM, etc.)
I can probably figure some of this out by trial and error when I have time, but I'm mostly focused on the VDO clusters. But if you have any RB8 info you want to share, please do!

Got hold of an Audi RB4 crypto cluster (8E0920950L) and found out that this same seed/key algorithm works for it.