gpg auto-locate-key selects expired/revoked key

Andrew Gallagher andrewg at
Thu Jun 9 13:08:06 CEST 2022

On 09/06/2022 11:50, Jan Eden wrote:
> jan ~ % gpg --refresh-key 0xFB73E21AF1163937
> gpg: refreshing 1 key from hkp://
> gpg: key FB73E21AF1163937: "Andrew Gallagher <andrewg at>" not changed
> gpg: Total number processed: 1
> gpg:              unchanged: 1

You're using the keyserver, but it has been broken for some
time (it's currently lagging by about 360 thousand keys).
was configured by default in some previous releases of gnupg but has
since been replaced.

You should edit dirmngr.conf and change your default keyserver to e.g. or (other keyservers are
available, see


% more ~/.gnupg/dirmngr.conf
keyserver hkps://


-------------- next part --------------
A non-text attachment was scrubbed...
Name: OpenPGP_signature
Type: application/pgp-signature
Size: 833 bytes
Desc: OpenPGP digital signature
URL: <>

More information about the Gnupg-users mailing list