Official MANRS Participant

MANRS Participation & Routing Security

39D is an official participant in MANRS — Mutually Agreed Norms for Routing Security. We implement practical controls that reduce route leaks, route hijacks, spoofed traffic and operational risk across BGP-based networks.

Verified participation

What our participation means

MANRS participants commit to recognised routing-security actions and ongoing conformance. For our clients and peers, this provides an independent trust signal that secure routing is part of the way we design and operate networks.

Our public participant profile provides the authoritative external reference for our MANRS status.

The four core actions

How we implement the MANRS principles

1. Prevent incorrect routing announcements

Customer and peer announcements are controlled with explicit prefix filters, prefix-length limits, maximum-prefix protection, bogon filtering, IRR checks and RPKI Route Origin Validation.

Read our BGP filtering guide

2. Prevent spoofed source traffic

Network designs use source-address validation and anti-spoofing controls aligned with BCP 38 and BCP 84, applied at appropriate customer, access and edge boundaries.

3. Support operational coordination

Accurate NOC, abuse and peering contacts, documented escalation paths and active monitoring help incidents reach the right engineers quickly.

Contact Matthew Southgate

4. Publish authoritative routing information

IRR route objects, RPKI ROAs, public ASN information and documented routing policies make announcements easier for other networks to validate.

View AS34979 information
Engineering controls

Routing security practices

RPKI validation

Validate route origins and identify invalid announcements before they can influence routing policy.

IRR validation

Compare advertised prefixes and origin ASNs against maintained routing registry data.

Prefix filtering

Accept only authorised networks and expected prefix lengths from customers and peers.

Maximum-prefix limits

Contain accidental leaks or unexpected route growth before it impacts the wider network.

Bogon filtering

Block invalid, reserved and inappropriate source or destination ranges at network boundaries.

Route leak monitoring

Monitor BGP sessions, route counts, origin changes and policy exceptions across the edge.

Consultancy

MANRS readiness and routing-security reviews

I help ISPs, hosting companies, MSPs and enterprise networks assess their current routing posture and implement the controls needed for a secure, supportable BGP environment.

  • MANRS readiness assessment
  • RPKI deployment and validation policy
  • IRR and PeeringDB data review
  • Customer and transit prefix-filter design
  • BCP 38 and BCP 84 anti-spoofing review
  • BGP communities and blackhole policy
  • Operational contact and escalation documentation
  • Route leak, hijack and failure simulations
Request a routing-security review
Frequently asked questions

MANRS and BGP security FAQs

Is 39D an official MANRS participant?

Yes. Our official MANRS participant profile is linked directly from this page.

Does MANRS replace normal BGP security engineering?

No. MANRS provides a clear set of expected actions, but they still need to be implemented through real routing policy, monitoring, operational procedures and accurate public data.

Can you help prepare another ISP for MANRS participation?

Yes. A review can cover filtering, anti-spoofing, RPKI, IRR records, PeeringDB, operational contacts, route monitoring and evidence required to demonstrate good routing practice.

Do you work with MikroTik and multi-vendor networks?

Yes. Reviews can cover MikroTik RouterOS as well as mixed environments involving carrier, open-source and enterprise routing platforms.