diff --git a/tlpkg/gpg/tl-key-extension.txt b/tlpkg/gpg/tl-key-extension.txt
index 9007f0f8..63b214f4 100644
--- a/tlpkg/gpg/tl-key-extension.txt
+++ b/tlpkg/gpg/tl-key-extension.txt
@@ -31,15 +31,20 @@ unset GNUPGHOME
 # send keys
 # make sure that .gnupg/dirmngr.conf does NOT contain hkp-cacert lines!!!
 
-# upload to keys.openpgp.org:
-gpg --export $KEYID | curl -T - https://keys.openpgp.org
-# this will give an URL to associate key with email, visit it!
+# upload to keyserver
+keyservers=(
+  "hkps://keys.openpgp.org/"
+  "hkps://keyserver.ubuntu.com/"
+)
+for ks in ${keyservers[@]} ; do 
+  gpg --send-key --keyserver $ks $KEYID
+done
 
-# upload to ubuntu key server:
-gpg --send-key --keyserver hkp://keyserver.ubuntu.com:80 $KEYID
-#
-# to check if it's there:
-gpg --list-key --keyserver hkp://keyserver.ubuntu.com:80 tex-live
+
+# old, not needed?
+# # upload to keys.openpgp.org:
+# gpg --export $KEYID | curl -T - https://keys.openpgp.org
+# # this will give an URL to associate key with email, visit it!
 
 
 # update TeX Live repository
@@ -52,6 +57,7 @@ svn commit
 
 # on the TUG server (needs the exported public key in
 # texlive.asc, see above how to export it)
+# NOTE: this needs to be done with the correct owner of the .gnupg directory
 gpg --homedir /home/texlive/.gnupg --import texlive.asc
 
 # can view that .asc with:
@@ -72,7 +78,7 @@ More info:
 . (tl)gpg foo.asc will sometimes report expiration info.
 
 . given files updated in Master/tlpkg/gpg, can export into asc:
-gpg --homedir ..../Master/tlpkg/gpg --export -a 0x0D5E5D9106BAB6BC >tl.asc
+  gpg --homedir ..../Master/tlpkg/gpg --export -a $KEYID >tl.asc
 
 . gpg --verify --verbose foo.asc reports some info.