We are aware of the issue and looking into if anything on the Zoom side affected this change. (ZOOM-146185)
For now, the work around is to add your JWT Token to a query param to the download_url and not use the authorization bearer header:
$access_token=JWT_TOKEN_HERE
Thanks,
Tommy