So apparently even though distros aren't immediately dropping support for PGP, they are rapidly dropping GnuPG since the authors decided to just not comply with the OpenPGP standards
Arch Linux is building a new system for verifying package signatures that is made such that they can support signatures other than OpenPGP in the future, including with SSH keys, minisign and signify.