Exim: Can there be multiple authenticators in the "Begin Authenticators" Section, one for each smtp relay?

You can use the client_condition authenticator option (cf. Section SMTP authentication of the manual).

Exim accepts at most two authenticators for a given public name: as client side and a server side authenticator.

However the functionality you are seeking is already in Debian's default configuration: dowload the exim4-config package and extract the files (its an ar archive containing two tar archives).

The file /etc/exim4/conf.d/auth/30_exim4-config_examples contains client authenticators that:

1. read the password from the /etc/exim4/passwd.client file, so the password is not in Exim's configuration. The format of the file is a line per server in the <servername>:<username>:<password> format,
2. choose the password according to the host,
3. are well tested, so you don't have to test Exim's string expansions.

Debian configuration boils up to the following client authenticator:

# this returns the matching line from passwd.client and doubles all ^
PASSWDLINE=${sg{\
                ${lookup{$host}nwildlsearch{CONFDIR/passwd.client}{$value}fail}\
                }\
                {\\N[\\^]\\N}\
                {^^}\
            }

plain:
  driver = plaintext
  public_name = PLAIN
.ifndef AUTH_CLIENT_ALLOW_NOTLS_PASSWORDS
  client_send = "<; ${if !eq{$tls_out_cipher}{}\
                    {^${extract{1}{:}{PASSWDLINE}}\
                     ^${sg{PASSWDLINE}{\\N([^:]+:)(.*)\\N}{\\$2}}\
                   }fail}"
.else
  client_send = "<; ^${extract{1}{:}{PASSWDLINE}}\
                    ^${sg{PASSWDLINE}{\\N([^:]+:)(.*)\\N}{\\$2}}"
.endif

In the same authenticator, you can use if-condition to select set of username:password to authenticated. But you need the "condition" to choose which relay to be used first.

For example, for mail send to [email protected] will use smtp-relay-1.example.com authenticated by my-username:top-secret-password, and [email protected] will use smtp-relay-2.example.com authenticated by my-username2:top-secret-password2

The routers and transports will be the same

begin routers

my_domains_relay:
  debug_print = "R: my_domains_relay for $local_part@$domain"
  driver = manualroute
  domains = +local_domains
  transport = remote_smtp_smarthost
  route_list = * "<+ smtp-relay-1.example.com:465"
  host_find_failed = defer
  no_more

smart_host_relay:
  debug_print = "R: smart_host_relay for $local_part@$domain"
  driver = manualroute
  transport = remote_smtp_smarthost
  route_list = * "<+ smtp-relay-2.example.net:465"
  host_find_failed = defer
  no_more

begin transports

remote_smtp_smarthost:
  debug_print = "T: remote_smtp_smarthost for $local_part@$domain"
  driver = smtp
  port = 465
  hosts_require_tls = *
  hosts_require_auth = *

The authenticators need to change to something like this

begin authenticators

login:
  driver = plaintext
  public_name = PLAIN
  client_send = ^${if   eq{$domain}{domain1.com}\
                        {my-username}\
                        {my-username2}}\
                ^${if   eq{$domain}{domain1.com}\
                        {top-secret-password}\
                        {top-secret-password2}}