The site to site VPN is supported by default on the FTD without any specific license requirement. You would need the RAVPN licenses only if you are planning to use AnyConnect.

AnyConnect PLUS

* VPN functionality for PC and mobile platforms, including per-app VPN on mobile platforms.
* Basic endpoint context collection (Note: NOT full ISE context support).
* IEEE 802.1X Windows supplicant.
* Cisco Cloud Web Security agent for Windows & Mac OS X platforms.
* Cisco Web Security Appliance support.
* FIPS compliance.

AnyConnect APEX

* Everything that’s included in AnyConnect Plus.
* Clientless (browser-based) VPN termination on the Cisco ASA.
* VPN Compliance/Posture agent in conjunction with the Cisco ASA.
* Unified Compliance/Posture agent in conjunction with the Cisco ISE 1.3 or later.
* Next Generation Encryption/Suite B.

Below is the cisco link for anyconnect FAQ

https://www.cisco.com/c/en/us/support/docs/security/anyconnect-secure-mobility-client/200191-AnyConnect-Licensing-Frequently-Asked-Qu.html

The RA-VPN licenses require AnyConnect (Plus or Apex) subscription. However, those are only for RA-VPN. If you want to configure Site-to-Site VPN (IPSec) you don't need to purchase any additional licenses.

similar discussion happened in past here and

here for you firewall get onboard with cisco smart licenicing and get the strong encryption enable to use for VPN-TUNNEL with strong encryption. otherwise it will be 3Des.

Are you going to manage this Firewall from FMC or you using this firewall standalone?