Mmh, while I have sympathy for your situation, I do believe that your are a bit unfair to the turris team here. As far as I remember there was no promise of either manually configurable DNS or NTP servers anywhere.
I also believe (but I have not tried that myself) that selecting configuring NTP servers should be relatively easy in luci. Have a look at:
https://192.168.1.1/cgi-bin/luci/admin/system/system
I assume here you TO has the 192.168.1.1 IP address. As far as I can see this will allow you to manually configure NTP servers. BUT the TO like few other home routers has a battery powered real time clock so will keep a reasonable estimate for the wall clock time even if powered down, so you TO will not have the “traditional” window of “bad” time that home routers often have which make dnssec not work during bootup (AFAIK openwrt works around this by disabling dnssec until NTP worked to correctly set the time, so there is a window in which dnssec is not available which the TO most likely does not have).
About the DNS server settings I believe this is indeed not easily possible (in openwrt it is relatively easy, but the omnia uses its own DNS resolver (kresd) that does not seem to expose its config settings in either foris or luci, so you are right about DNS configurability, see https://doc.turris.cz/doc/en/howto/dns). Now according to https://doc.turris.cz/doc/en/public/dns_knot_misc kresd can actually be configured to a) use different DNS servers like cloudflare’s and also to use TLS encryption so your ISP can not see your DNS queries (but do not kid yourself, cloudflare now is the party that knows, so this is not anonymous). According to this thresd https://forum.test.turris.cz/t/using-dns-over-tls-or-https/6996/48 the over-TLS functionality is intended to show up in foris in the (unspecified) future.
Again, opinions can differ, but all I see with the turris folks are an active maintainers that care to implement new features and to distribute timely security updates (compared to other home routers).
So I still can not understand why the NTP and DNS issues are showstoppers that make you judge the TO to be alpha status and “not really usable” generally (as compared to your own use, there you are of course entitled to have the strictest requirements).