The u2f dev guide leaves this part unspecified: will a single-facet AppId without the www prefix work for a visitor who accesses the site with the www-prefix? Will browsers consider them a match?
If not, I believe there are two alternatives for U2F deployments, neither very pleasant IMO - I explain below why so:
Now, I said that having to deal with the "www." explicitly isn't pleasant. My rationale is that single-site SSL certificates (including more diligent ones like EV-certs) deal with the www-prefix URLs transparently to web users. I see no reason why U2F would consider this a security hole and required an explicit way to deal with it.
The browser will not consider them a match unless there is a JSON resource that supports this. See FIDO AppID and Facet Specification v1.0: Section 3.1 Processing Rules for AppID and FacetID Assertions.