Yep, that is my point :)

These addresses are either scraped from WHOIS or from the list of members.

The list of members has this on every member page:

> Apart from agreed Internet operational purposes, no part of this information may be reproduced, stored in a retrieval system or transmitted, in any form or by any means (electronic, mechanical, recorded or otherwise), without prior permission of the RIPE NCC. Any use of this information to target advertising, or similar activities, is explicitly forbidden and may be prosecuted. The RIPE NCC requests notification of any such activities or suspicions thereof.

And this kind of spam quite obviously is not "agreed internet operational purposes".

Example: https://www.ripe.net/membership/indices/data/nl.ripencc-cs.html

-Cynthia

On Mon, Mar 1, 2021 at 1:03 PM Pavel Polyakov <p.polyakov+ripe@urdn.com.ua> wrote:

Cynthia Revström via members-discuss <members-discuss@ripe.net> wrote:

> My question is, has anyone else received this same email or was it
> just a one-off?

I did too. But I think this happens because your LIR email address is
published in the whois of your organization object. At least, this is
why it happened in my case.

--
PP