gpg --recv-keys fails / no longer use keyservers for anything

Not sure. gpg has a lot of stuff built-in…

https://manpages.debian.org/bullseye/gpg/gpg.1.en.html

–locate-keys
–locate-external-keys
–auto-key-retrieve
–auto-key-import
–auto-key-locate mechanisms

cert

Locate a key using DNS CERT, as specified in RFC-4398.

pka

Locate a key using DNS PKA.

dane

Locate a key using DANE, as specified in draft-ietf-dane-openpgpkey-05.txt.

wkd

Locate a key using the Web Key Directory protocol.

ldap

Using DNS Service Discovery, check the domain in question for any LDAP keyservers to use. If this fails, attempt to locate the key using the PGP Universal method of checking ‘ldap://keys.(thedomain)’.

ntds

Locate the key using the Active Directory (Windows only).

keyserver

Locate a key using a keyserver.

Related, How can I verify Tor Browser's signature? | Tor Project | Support uses:

gpg –auto-key-locate nodefault,wkd --locate-keys torbrowser@torproject.org


https://dev.gnupg.org/T4618