Colleagues, Just flagging that the CRA has been officially published in the EU’s Official Journal: https://eur-lex.europa.eu/legal-content/EN/TXT/PDF/?uri=OJ:L_202402847 Quick reminder: the CRA should apply from 11 December 2027, with the exception of the reporting obligations concerning actively exploited vulnerabilities and severe incidents having an impact on the security of products with digital elements, which should apply from 11 September 2026. The provisions on notification of conformity assessment bodies (CAB) should apply as of 11 June 2026. All the best Romain -- Romain Bosc Sr Public Policy & Governance Officer RIPE NCC E: rbosc@ripe.net