Summary

  • RIPE NCC's Standard Service Agreement defines the member as the natural person or legal entity that enters the agreement. A sale of shares may change control while leaving that legal person intact; an asset sale may move a network while leaving the member behind.
  • Ripe-831 requires number-resource transfers to be declared and approved and asks for official corporate documents, authority evidence and agreements or successor proof. It concerns registry accuracy and transfer, not automatic inheritance of every association right.
  • The central governance problem is classification. A name change, share purchase, statutory merger, business transfer and distressed sale can produce different legal and operational consequences even when all are called an acquisition.
  • Case-by-case review is necessary, but discretion without published categories, time limits, reasoned outcomes and review rights lets delay determine practical control. Portal access, payment and physical possession of network equipment should be evidence, not conclusive title.
  • RIPE NCC should use a provisional continuity status with narrow powers while evidence is assessed, publish decision clocks and anonymised reason codes, and permit independent review. Number Resource Society should treat verifiable operator succession and portable registration custody as design tests, not as a promise of automatic transfer.

Begin with the transaction, not the press release

Corporate announcements use broad verbs: acquires, merges, combines, takes over. Registry administration cannot rely on that vocabulary. The same headline can describe a purchase of all shares in a company, a statutory merger in which one entity survives, a merger that creates a new entity, a sale of a network business, a transfer of customer contracts, or the acquisition of equipment and staff without the seller's legal identity.

The legal consequences differ. In a share purchase, the company that signed the Standard Service Agreement may remain exactly the same legal person. Its shareholders and directors change, but its contracts, liabilities and membership ordinarily continue unless a change-of-control term says otherwise. Calling that membership inheritance is misleading because the member did not die.

In a statutory merger, the disappearing entity's rights and liabilities may pass by law to a universal successor. The relevant national law and official merger documents matter. The registry is not free to treat the event as a voluntary sale between unrelated parties if the law provides succession.

In an asset purchase, the buyer acquires whatever the contract and law validly transfer. The seller may continue to exist as the RIPE NCC member even after selling the operating network. Customer contracts, equipment, employees, autonomous systems, LIR accounts and number-resource registrations can follow different schedules. A label such as “network acquisition” does not answer which rights moved.

In a distressed sale, an administrator or court may approve a transaction quickly to preserve a going concern. Existing directors may have lost authority. A buyer may operate the network before every registration question is resolved. Delay can destroy value, yet speed can expose the registry to competing claims.

The first institutional requirement is therefore a transaction map. Who is the contracting member before the event? Does that legal person survive? Which legal instrument changes control or transfers assets? Which authority approved it? What operations continue, and under whose lawful control? Only after answering those questions can the registry decide what continuity means.

Four things are often mistaken for one

The first is association membership. Under the Standard Service Agreement and Articles of Association, the member is a natural person or legal entity with defined rights and obligations. Membership includes voting and attendance rights, payment duties and an institutional relationship. It is not merely a label attached to an IP address block.

The second is the LIR account. It is an administrative and billing relationship through which services are organised. One member may have more than one LIR account. An acquisition can involve one account, several accounts or only some operations supported through an account.

The third is registration of Internet number resources. Ripe-831 defines and regulates changes in the registered holder and requires transfers to be declared and approved. Accurate registration protects the integrity of the registry. The record is connected to the member relationship but has its own evidentiary and policy conditions.

The fourth is operational control. Engineers may possess credentials, run routers, announce prefixes, maintain customers and respond to incidents. Operational control can move before or after the formal transaction date. It is powerful evidence that continuity is at stake, but it does not by itself establish lawful succession.

Confusion among these four produces two opposite errors. Automatic inheritance assumes that whoever buys the network obtains membership, accounts and registrations as one bundle. Automatic discontinuity assumes that any change in corporate ownership requires termination and recreation of everything. Neither is reliable.

The proper objective is congruence. At the end of review, the legal member, authorised account contacts, registered holder and actual operator should align as far as policy and law permit. During review, the institution should be explicit about which elements remain provisional.

That distinction also protects voting legitimacy. If the original legal member survives a share purchase, its vote may continue, but the authorised representative and conflicts should be current. If a different buyer receives resources but has not yet become a member, it should not exercise the seller's ballot by possession. Constitutional rights require a constitutional basis.

The current rules contain the right ingredients

Ripe-831 begins from registry accuracy. It requires reliable data about the natural or legal persons holding registrations and about the resources registered to them. Transfers must be declared to RIPE NCC for approval. Requests connected to a business-structure change need official documentation from national authorities, information about the parties, authority evidence and, depending on the circumstances, a transfer agreement or successor confirmation.

This is a sound anti-fraud foundation. Number-resource records are valuable. A forged acquisition letter or compromised portal account should not be sufficient to redirect them. Requiring official company documents and authorised signatories is proportionate.

The procedure also recognises complexity. It contemplates mergers, acquisitions, bankruptcy and liquidation. It recognises a legal successor. Where a transferring party no longer exists, it requires evidence of closure and an earlier agreement, while reserving a possibility of accepting authorised confirmation from the receiving side and reversing the change if a competing party later produces superior proof.

That reservation is important. It reveals that some decisions occur under imperfect evidence. The registry may need to keep records accurate enough for operations while legal documentation catches up. Reversibility is a legitimate tool when facts remain contestable.

The current public guidance on mergers and acquisitions asks both LIRs and End Users to update their information and provide recent company-registration documents. The billing guidance requires outstanding annual fees to be settled before a merger, transfer or account closure proceeds. These rules connect identity, authority and financial regularity.

What the public materials do not provide is a complete decision architecture. They do not publish typical processing times by transaction type, reason codes for additional evidence, a formal provisional status or an independent route to challenge delay. A statement that cases are assessed individually explains flexibility, not accountability.

The criticism should remain bounded. Absence of public detail is not proof of arbitrary decisions. Staff may follow consistent internal practice and resolve cases efficiently. The governance question is whether parties and affected operators can know the standard, predict the timeline and obtain reasons when the outcome matters.

A share sale is the easiest case, until it is not

Consider a company that remains registered under the same name and number after all shares are sold. The legal person has not changed. Its Standard Service Agreement continues. On a narrow contractual view, there is no membership transfer.

Operationally, however, control may change completely. New directors appoint new contacts. The parent company may centralise billing, security and routing. The previous voting contact may be dismissed. The business may be integrated into a group that already holds other memberships. The formal member survives while its institutional will changes.

The registry needs accurate authority and contact information. It may also need to understand whether the transaction triggers sanctions, conflict, corporate-group or due-diligence concerns under applicable rules. Yet it should not pretend that a new legal person has inherited membership if none has.

This case exposes an asymmetry in member-based governance. A complete change of beneficial control can occur with little constitutional interruption, while an asset transfer to a new small company can require extensive re-contracting. Legal-person continuity is administratively clear, but it does not mean the constituency behind the vote remained stable.

Transparency should therefore distinguish legal continuity from control continuity. The public does not need commercially sensitive deal terms. The member register should be current, and the institution should be capable of aggregating ultimate-control changes in privacy-protecting reports. Where corporate groups hold several memberships, conflict and voting-coordination questions may arise even though each legal entity remains separate.

A share sale also demonstrates why portal credentials cannot decide succession. The buyer may obtain the seller's systems at closing and control the account immediately. That access supports the claim that corporate authority changed; it is not the legal basis of membership. A compromised credential would otherwise become a constitutional conveyance.

The appropriate response is a control-change update with a defined completion period, not an invented membership transfer. The member should confirm new authorised representatives, relevant ownership information and contact security. Services continue unless a separate ground justifies restriction.

Statutory merger requires recognition without improvisation

A merger may dissolve one entity into another by operation of law. The surviving company may become universal successor to contracts and liabilities. In another jurisdiction, consent or notice may be required for particular relationships. The registry cannot decide the effect from a generic checklist alone.

Official merger certificates, commercial-register extracts and the governing law are therefore central. Staff need authority to request translations, legal opinions or confirmation from both sides where records are ambiguous. The demand should be proportionate to the uncertainty, not a ritual request for every possible paper.

If the law clearly provides universal succession, forcing the successor to stage a fictional voluntary transfer may misdescribe the event. Conversely, universal corporate succession may not override policy restrictions attached to a particular resource registration. The institution must explain which conclusion comes from corporate law and which comes from registry policy.

Membership rights deserve separate treatment. If the agreement passes to a universal successor and the successor meets membership conditions, continuity may be appropriate. If the Articles require a new admission act, that act should be identified. The public rules should not leave parties guessing whether resource recognition implies voting eligibility.

Timing is especially important. A legal merger can take effect at midnight on a date fixed by law. Registry review may still be pending. Services cannot sensibly oscillate between entities while the documents are assessed. A provisional notation should record that the surviving entity is acting as asserted successor, subject to verification, with limited powers and a fixed review date.

The notation should not imply doubt where the law is clear. It is an administrative bridge, not a public accusation. Once verification is complete, the record should show the effective date and legal basis. If rejected, the institution should give reasons and preserve a short period for review unless security or law requires immediate action.

This is ordinary administrative discipline: classify the legal event, identify relevant facts, apply announced criteria, record reasons, and make the decision reviewable.

Asset sales create the hardest separation

An asset purchaser may buy the network that gives practical meaning to the number-resource registrations while the seller remains the member. Customers, equipment and employees move; the seller keeps its legal shell and perhaps other businesses. Which part is supposed to carry the registry relationship?

The answer cannot be “the network” without definition. A network is not one legal entity. The buyer may acquire fibre and contracts but not the seller's liabilities. It may operate services under a transition agreement. Some customers may remain. The seller may retain a data centre or another autonomous system.

Ripe-831 correctly demands a list of resources requested for transfer and evidence supporting the change. The registry must avoid allowing a broad acquisition announcement to sweep in unrelated registrations. Each resource set needs a traceable connection to the transferred business or a policy-compliant voluntary transfer.

The membership position is clearer. Unless the member itself disappears or its agreement validly passes, the buyer should not inherit the seller's association vote. It may become a member through its own agreement. The seller may remain a member for retained accounts and resources, or close after completing transfers.

The interim period is where governance quality is tested. The buyer may need to update contacts and security information to protect the live network, yet final transfer may await documents or payment. The seller may have little incentive to cooperate after receiving the purchase price. Customers bear the risk of a dispute they cannot see.

A provisional continuity order should specify who may perform essential changes, which registrations are covered, what acts are prohibited and when the order expires. Essential acts might include correcting incident contacts, maintaining route-origin authorisations within existing operational scope and addressing security compromise. Prohibited acts should include onward transfer, speculative expansion and changes that prejudice ownership claims.

This narrow authority separates continuity from disposition. The registry is not awarding the asset. It is preventing a documentation gap from turning into stale or insecure records while the proper legal holder is determined.

Time can decide the case without appearing in the decision

Discretion is often defended as necessary because transactions vary. That is true. But flexible criteria and unlimited time are different things. A party that can keep a network operating for only thirty days does not receive meaningful due process from an accurate answer delivered in six months.

Delay advantages some claimants. The seller may retain formal status while the buyer funds operations. The buyer may control equipment while the seller controls registry credentials. An insolvency office-holder may face a statutory sale deadline. Customers may migrate, reducing the value of the disputed business. By the time the registry decides, the practical outcome may already be irreversible.

Published service clocks would make this power visible. The institution could distinguish a completeness check, ordinary verified transaction, complex transaction and contested succession. Each category would have a target and a maximum period, with written reasons for extension.

The clock should pause when a party fails to provide specifically requested evidence, but not when the request is vague. A notice should identify the factual question, document type or legal ambiguity to be resolved. Repeated requests for substantially the same material should be tracked.

Urgency needs a standard. A claimant should show a real risk to registry accuracy, authentication, customers or a court-approved transaction. Commercial preference for a quick closing is not enough. Where urgency is established, provisional continuity can preserve services without accelerating final recognition beyond what evidence permits.

The registry should publish aggregate duration bands and outcomes. Parties need not be named. Readers should be able to see how many share-control updates, mergers, asset transfers, distressed sales and contested cases were completed, extended, withdrawn or refused.

Time data also improve internal management. A category with repeated delay may reveal unclear guidance or dependence on one specialist. Transparency is not merely a constraint on staff; it supplies evidence for resourcing the function.

Reasons are a security control

Some institutions resist detailed reasons because they fear teaching fraudsters which documents succeed. That concern is legitimate but overstated. A decision can explain the governing standard and decisive facts without publishing authentication methods or confidential evidence.

A reasoned approval might state that the same legal person survived a share acquisition, new authorised contacts were verified and no resource transfer occurred. A merger approval might state that official records established universal succession and that the successor entered or continued the required agreement. An asset-transfer approval might identify the resource set and policy basis.

A refusal should be equally clear: the documents did not connect the claimed resources to the acquired business; signatory authority was not established; the transaction remained contested; policy conditions were not met; or the receiving party had not completed the necessary relationship.

Reasons deter arbitrary claims. A fraudster cannot rely on a generic assertion that “the company was acquired” when the decision framework requires a particular legal event. Legitimate parties can prepare complete materials. Reviewers can detect inconsistency.

The decision should distinguish evidence not received from evidence considered limited public evidence. It should identify whether the defect can be cured. A temporary rejection for missing translation is different from a substantive finding that the claimant is not the successor.

Confidential annexes may be necessary for sensitive ownership and security material. The claimant should still receive enough information to challenge the conclusion. Public aggregate reason codes can show patterns without disclosing deals.

Administrative legality is often described as a burden on rapid operations. Here it is part of operational security. Clear authority, traceable evidence and reviewable decisions reduce the chance that records are changed by the wrong party.

Payment should not become proof of title

RIPE NCC's billing page states that full annual fees must be paid before a merger, transfer or LIR closure begins. Requiring accounts to be settled protects the association from using a transaction to evade obligations. It also gives staff a clear administrative precondition.

Payment nevertheless answers a narrow question. It shows that someone funded an account. It does not prove that the payer is the legal successor or entitled to particular resources. An acquirer may pay to preserve continuity while reserving rights against the seller. A parent may pay a subsidiary's invoice. An administrator may pay essential services without conceding ownership.

The same is true of historic payments. Years of paying fees support evidence of an established relationship but do not cure a defective transfer. If payment became title, the easiest path to hijacking would be to settle an invoice.

The institution should therefore separate financial clearance from substantive approval in notices and decisions. “Account paid” should appear as one completed condition, not as a reason the transaction is legally valid.

There should also be a mechanism for disputed payment. A buyer may be willing to deposit the fee while ownership is reviewed. The registry can accept payment without allocating constitutional rights, subject to refund or final accounting. This prevents the billing calendar from forcing a premature substantive choice.

Fees themselves can affect bargaining. If all arrears must be paid before any continuity action, a solvent buyer may effectively satisfy old liabilities to protect customers. That may be commercially reasonable, but the burden should be visible. The registry should publish whether exceptions or escrow are available in court-supervised cases.

Financial regularity matters. It should never be allowed to masquerade as succession evidence.

Review must preserve the possibility of correction

A party denied recognition needs more than an invitation to send another email. Review should be institutionally distinct from the original decision, time-limited and capable of preserving a safe status quo.

The reviewer does not need to decide corporate ownership for the world. The question is narrower: did RIPE NCC apply its published classification, consider relevant evidence, explain its conclusion and choose proportionate interim measures? If a national court has decided succession, the reviewer respects that decision within its scope.

Standing should include the current registered member, asserted successor, receiving party, insolvency office-holder and another party able to show a direct legal claim. Downstream customers ordinarily should not litigate ownership, but they should be able to submit continuity evidence without obtaining party status.

Review periods must fit operational reality. An initial request for reconsideration could be filed within ten working days, with a decision in twenty unless complexity is explained. A security emergency may require immediate temporary controls, but those controls should receive prompt retrospective review.

The reviewer should be able to continue, narrow or end provisional authority. It should be able to require clearer reasons or additional fact-finding. It should not grant a transfer that violates policy merely because delay is inconvenient.

Final decisions can be summarised anonymously. Over time, those summaries form a body of predictable practice. Parties learn how a statutory merger differs from an asset purchase. Staff gain precedents. The association can amend guidance when recurring cases expose a gap.

The alternative is oral tradition. Experienced advisers may know what the registry expects, while small or first-time acquirers do not. That inequality is unnecessary and increases avoidable error.

A seven-stage acquisition decision

First, identify the pre-transaction legal member, all affected LIR accounts and the exact resource registrations. Do not begin with the buyer's brand or the public transaction name.

Second, classify the legal event: name change, share-control change, statutory merger, asset transfer, internal reorganisation, distressed sale or contested succession. Mixed transactions may require more than one category.

Third, establish authority. Verify the persons acting for the surviving entity, seller, buyer or office-holder. Secure portal access and record any conflict among instructions.

Fourth, map each right separately. Decide continuity of membership, accounts, billing, resource registrations, contacts, certification and voting representation. An answer for one does not settle the others.

Fifth, assess continuity risk. Identify live services, downstream assignments, security dependencies and deadlines. If necessary, issue a narrow provisional order with an expiry date.

Sixth, decide with reasons within the published clock. State the evidence, legal characterisation, policy condition and effective date. Where facts remain disputed, state what is provisional and reversible.

Seventh, provide independent review and close the record. Reconcile contact, billing and registration data; end temporary powers; and publish an anonymised category, duration and outcome.

This sequence does not eliminate judgment. It disciplines judgment. It gives parties a common vocabulary and keeps operational urgency from erasing legal accuracy.

What cannot be inferred from the public record

The documents establish that the member is a contracting legal person, that transfers require approval and evidence, and that business-structure changes receive specific treatment. They establish that legal successors may act and that all-resource transfers can lead to membership closure.

They do not establish how often an acquisition request is refused, how long an ordinary or contested case takes, or how many cases use provisional arrangements. They do not show whether corporate-control changes are consistently recorded when the legal member survives. They do not identify any case in which delay harmed a network.

It would therefore be improper to accuse RIPE NCC of arbitrary acquisition decisions on this evidence. The institutional claim is narrower: public law-like safeguards are appropriate where a private association decides whether a new controller can exercise services and rights connected to live network records.

Nor does the evidence support automatic inheritance. The variation among transactions is real. Fraud and competing claims are real. Official documents can be incomplete or inconsistent across jurisdictions. A rigid rule that every acquirer succeeds would sacrifice accuracy and invite abuse.

The choice is not automatic transfer or unlimited discretion. It is structured discretion: announced categories, proportionate evidence, interim continuity, decision times, reasons and review.

Future case data could show that current practice already meets much of this standard. If so, publication would increase confidence at low cost. If not, the gaps would identify a practical reform agenda.

Interim control is not final entitlement

The most difficult period is the gap between signing and settled recognition. A buyer may need enough authority to keep a network running, update urgent contacts, maintain certification and satisfy customers. At the same time, the registry should not treat the buyer as fully entitled before legal identity, transaction scope and policy conditions are verified. Interim control is necessary; final entitlement is a different decision.

This distinction should be explicit. Interim control should be narrow, time-limited and logged. It should allow urgent operational preservation, not asset stripping or disputed transfers. It should identify who requested the authority, what evidence was supplied, which records may be touched and when full review will occur. If a seller, creditor, receiver or minority owner contests the transaction, the registry should preserve the status quo where possible while recording the dispute.

The problem is not hypothetical. Acquisitions often involve staged closings, asset carve-outs, transitional-service agreements, regulatory approvals and post-closing integration. A network may be operated by the target while the purchaser controls finance. Customer contracts may move later than shares. Address registrations may sit with a subsidiary that is not the main acquisition target. Treating "the company was bought" as a single event hides these steps.

A registry can avoid commercial judgment while still requiring transaction granularity. It need not decide whether the acquisition price was fair or whether the buyer's strategy is wise. It can require proof of legal authority, continuity plan, affected resources, responsible contacts and dispute status. That is not corporate regulation; it is record hygiene for a scarce operational identifier.

The seller's promises cannot bind the registry by themselves

Acquisition agreements often contain representations and warranties about assets, contracts and authority. A seller may promise that it controls number resources, that no disputes exist, that records are accurate and that cooperation will be provided after closing. Those promises matter between buyer and seller. They do not automatically bind the registry or convert a private warranty into public recognition.

The buyer's risk is therefore two-layered. It can sue the seller if a warranty proves false, but it still needs the registry to recognise the relevant change. Damages may not restore customer continuity if records are frozen or transfer conditions are unmet. Escrow and indemnity can shift financial loss, but they cannot by themselves repair routing authority, reverse delegation, certification or contact accuracy.

For that reason, diligence should treat registry recognition as a closing condition rather than a post-closing clerical task. The buyer should identify all member accounts, LIR relationships, independent resources, sponsored parties, route objects, ROAs, reverse-DNS delegations, abuse contacts and known disputes. It should confirm who can sign registry documents and whether any resource is outside the corporate perimeter being acquired.

The registry can support this without becoming the buyer's adviser. It can publish a checklist of recognition evidence and offer a pre-closing non-binding status confirmation where privacy and policy allow. The confirmation would not approve the transaction. It would state what the registry currently sees and what evidence would be needed to update the record after closing.

Post-closing silence is a governance risk

Many acquisitions succeed operationally because nothing visibly breaks. That can make post-closing registry updates look optional. The acquired network keeps routing, customers keep service and invoices are paid. But stale registry state accumulates risk. Contacts leave. Old maintainers retain credentials. Parent companies merge again. A later transfer, certification change or abuse escalation exposes the neglected update at the worst moment.

The registry should therefore define post-closing clocks. After a change of control or asset transfer, the responsible party should update identity, authority and contact evidence within a fixed period or certify that no registry-facing change occurred. Failure should trigger reminders, limited warnings and eventually proportionate service restrictions. The goal is not punishment. It is to prevent a private transaction from leaving public records behind.

The clock should be sensitive to transaction complexity. A small asset purchase can have a short deadline. A regulated cross-border acquisition may need staged evidence. Insolvency or court-supervised sales may require temporary authority and later confirmation. What matters is that delay becomes a managed state, not the default outcome.

Members and buyers would benefit from predictability. They could price the administrative work, write cooperation clauses, hold back consideration until registry steps are complete and avoid discovering years later that inherited membership was assumed rather than proven.

Acquisition records should preserve negative facts

Registry succession records often focus on the positive act: the buyer acquired, the member changed, the contact was updated. Negative facts are just as important. The registry should record whether any dispute was disclosed, whether any resource was excluded, whether any customer-facing dependency was left outside the transaction, whether any sponsor or maintainer relationship required later action, and whether any certification or reverse-DNS state was intentionally deferred.

These negative facts protect future buyers and operators. A later transaction can see that a caveat was resolved or that a warning remains. A court or reviewer can tell whether the registry ignored known uncertainty or preserved it. Customers can be told whether their service is inside the recognised continuity path. Without such notation, each acquisition resets institutional memory and invites the same questions to be asked again from scratch.

Negative notation should not become a permanent scar. It should have review dates, cure evidence and expiry where appropriate. The aim is to preserve uncertainty while it matters and remove it when it no longer does. That discipline allows a registry to be cautious without turning every acquisition into an indefinite suspect file.

Membership is a status, not a trophy in the sale

An acquisition transfers control because law and contract say it does. RIPE NCC membership continues or changes because the identity of the legal member, the agreement and the association's rules support that result. Number-resource registrations move because policy conditions and evidence support the receiving party. Network operations continue because people, systems and customers remain connected. These events can coincide. They need not.

The institutional temptation is to collapse them for speed. The legal temptation is to freeze everything until perfect evidence arrives. A credible registry must resist both. It should preserve what must remain accurate and secure while refusing to turn temporary control into final entitlement.

The reform is procedural rather than ideological. Publish the transaction categories. Start the clock. Explain the evidence. Grant only the interim authority necessary for continuity. Decide each right separately. Allow review before delay becomes the outcome.

Number Resource Society should carry the same discipline into any future model. Verifiable operator identity and portable registration custody could make succession less dependent on one institutional relationship, but portability must not become anonymous transferability. A buyer should inherit only what lawfully and transparently follows the transaction.

Membership is not a prize placed in a closing binder. It is a governed relationship. Its continuity after an acquisition should be neither presumed nor improvised; it should be demonstrated, bounded and reviewable.

Directory links

  • RIPE Network Coordination Centre (RIPE NCC)
  • RIPE NCC members and Local Internet Registries
  • Number Resource Society