I store my multifactor authentication recovery codes in plaintext on a flash drive. The flash drive is stored in a safe place that can only realistically be accessed by me. I periodically generate a PDF from these codes and print it.
There's a good amount of reading on ways that other people manage this:
- Best practices for storing 2FA recovery codes
- How to securely store and manage one-time backup codes for 2FA?
In choosing this approach, I considered not only the possibility that I would need to recover access to an MFA-protected account, but also the possibility