2025 is coming to an end, and we want to pause to reflect on our achievements this year as part of the NRO RPKI Program. A significant achievement was submitting the first draft specification to address concerns about RPKI Trust Anchors (TAs) claiming resources for which they are not authoritative (read more about this milestone). After presenting this draft to the SIDROPS IETF Working Group during the IETF 124 meeting, the RPKI Steering Group received input from the technical community and engaged with various stakeholders. The group is now discussing options for the next draft version. Look for updates in the new year and join the SIDROPS mailing list to participate in the discussions. Additionally, we published a series of joint RPKI baseline documents. The first document outlines the process of creating ROAs through each Regional Internet Registry (RIR) portal and is covered in a previous blog article.

Continue

The Number Resource Organization (NRO) has published a new reference page to help network operators and other members of the Internet technical community learn how to create Route Origin Authorizations (ROAs) through each of the five Regional Internet Registries (RIRs). The process of creating ROAs through each RIR portal brings together links to each RIR’s official ROA documentation, support contacts, and a high-level summary of differences across RIRs. It’s a small but meaningful step toward making the Resource Public Key Infrastructure (RPKI) ecosystem easier to navigate, more transparent, and ultimately more consistent across RIR regions. Why this matters for routing security RPKI is a critical building block for improving the security and resilience of the Internet routing system.

Continue

Advancing DNS Resilience Through the AFRINIC DNS Programme The AFRINIC DNS Programme is a long-term initiative designed to enhance Internet stability, improve DNS performance, and expand critical technical infrastructure across Africa and the globe. Through its operational and policy framework, AFRINIC supports authoritative DNS hosting for African country-code top-level domains (ccTLDs), reverse DNS (in-addr.arpa) zones, deployment of copy or Root servers, and a globally distributed anycast network that ensures resilient and secure DNS services. AFRINIC's infrastructure includes secondary nameservers for the reverse delegation zones specified in RFC 5855 (IN-ADDR.ARPA and IP6.ARPA), enhancing the robustness and reliability of global reverse DNS services. Major Milestone: Anycast DNS Node Successfully Deployed at Uganda IXP Advancing DNS Resilience Through the AFRINIC DNS Programme AFRINIC is pleased to announce the successful deployment of a new two Anycast DNS nodes at the Uganda Internet Exchange Point (U-IXP).

Continue

This document describes Resource Public Key Infrastructure (RPKI) related best practices and lessons learned.  It provides general recommendations aimed at supporting the implementation and operation of RPKI in diverse environments. These insights are drawn from practical experience and collaborative discussions but are not intended to be prescriptive. 

Continue

Welcome to our third half-yearly update. While we publish release notes with each update and promote new features and bug fixes on social media, these reports take a broader look at recent changes. You can find our previous half-yearly reports here and here. In 2025, PeeringDB’s board approved a 50% increase in spending on development and operations compared to 2024. All committees now have access to these resources, allowing us to complete more development work each month and devote more time to operational improvements.

Continue

The NRO RPKI Program aims to provide a more consistent and uniformly secure, resilient and reliable RPKI service. For 2025, the RPKI Steering Group, which includes RPKI experts from the five RIRs, set out to work on two main areas:

• Enhancing the transparency, robustness and security of the RPKI system.
• Increasing the consistency of the RPKI system user experience across RIRs.

Continue