CONTINUOUS INTERNET TELEMETRY24H DRIFT2,923 material changesacross 2,645 domains · -475 vs yesterdayDNS DRIFT19 domains changed DNS providertop destination cloudflare.com · -8 vs yesterdayEMAIL DRIFT6 domains switched email providertop destination google.comCERT DRIFT6 domains switched issuing CA24h · -1 vs yesterdayNOW3,324 curated domains not answering-6,394 vs yesterdayERRORS10,949 responded with an errorlast probe · 5xx / 404 / 429 / 40324H DRIFT2,923 material changesacross 2,645 domains · -475 vs yesterdayDNS DRIFT19 domains changed DNS providertop destination cloudflare.com · -8 vs yesterdayEMAIL DRIFT6 domains switched email providertop destination google.comCERT DRIFT6 domains switched issuing CA24h · -1 vs yesterdayNOW3,324 curated domains not answering-6,394 vs yesterdayERRORS10,949 responded with an errorlast probe · 5xx / 404 / 429 / 403

ccsf.edu

Observed 2026-07-12T19:43:05.421Z (22h ago). Every field below was attested with an Ed25519 signature at scan time.

Up right now
Runs onCloudflare
Email byMicrosoft 365
Also usesGoogle Search Console
IPv6 · 2 subdomains · education_expanded
Every line above is a signed observation. Check the math at the bottom of the page.
INFRASTRUCTURE MAPwhat ccsf.edu actually stands on - every host below is a signed observation
ccsf.edu
A / AAAA
104.18.27.71104.18.26.712606:4700::6812:1a472606:4700::6812:1b47
Cloudflareserves the site
NS
blue.foundationdns.orgblue.foundationdns.comblue.foundationdns.net
foundationdns.org + foundationdns.com + moreanswers its DNS
MX
ccsf-edu.mail.protection.outlook.com
Microsoft 365receives its email

HTTPS probe

redirect Redirecting (3xx) 301 → http://www.ccsf.edu/
HTTP status301
Servercloudflare
TLS protocolHTTP/2
TLS issuernot observed
Behind Cloudflareyes
Response time72 ms
DNS resolutionNOERROR
Redirect chain
http://www.ccsf.edu/

Every field above is part of the same signed observation as the records below. Blank means not observed, never "none".

DNS Records

A 2

  • 104.18.27.71
  • 104.18.26.71

AAAA 2

  • 2606:4700::6812:1a47
  • 2606:4700::6812:1b47

MX 1

  • 0ccsf-edu.mail.protection.outlook.com

TXT 10

  • amazonses:RWNh9W/jj1Yee1YahLI6K3tZSiEhvFkvjKiVSJDFwL4=
  • RWNh9W/jj1Yee1YahLI6K3tZSiEhvFkvjKiVSJDFwL4=
  • 53122963B7EA733B94D3EA94A7B0CF04
  • google-site-verification=KoG9Dss8-CR0etYj7079Z1eAEE2zLlZMD8oHTthUx4U
  • sending_domain1073713=3ec4e3e553b9bd0d0ea63aaeba996085ccdd25a47379d4a88a93a64b281b63fe
  • v=spf1 include:spf1.ccsf.edu include:spf2.ccsf.edu ~all
  • 618FE7F6E809C4CD199E85C555BBF225
  • adobe-sign-verification=e6166d8e7d0dc2f98461305851c910ec
  • pardot1073713=67721d8277e1238534cd9c8991e1785420cff5d0f36f7aa8e7963ce01daa5e04
  • v=DMARC1; p=quarantine; aspf=s; sp=none; pct=20; rua=mailto:ar-dmarc@ccsf.edu; ruf=mailto:forensics-dmarc@ccsf.edu; fo=1

NS 3

  • blue.foundationdns.org
  • blue.foundationdns.com
  • blue.foundationdns.net

SOA 1

  • blue.foundationdns.com dns.cloudflare.com

TLS Certificates (0)

None.

Subdomains (2)

The proof

Signed at scan time. Check the math yourself. Every line above is part of one signed observation. Re-hash it and check the Ed25519 signature in your own browser; nothing leaves your machine.

Verify this receipt

Put the receipt on your own site. A live badge showing what DomainDrift observes and signs for ccsf.edu. It updates itself. It attests a signed observation - not that the site is safe.

DomainDrift signed-observation badge for ccsf.edu <a href="https://domaindrift.io/t/ccsf.edu"> <img src="https://domaindrift.io/badge/ccsf.edu.svg" width="300" height="64" alt="DomainDrift signed observations for ccsf.edu"> </a>

Ed25519 Receipt

Receipt ID
4a7ede0f-3574-44c9-bb91-a9cdd7bdcd52
Output Hash
b03efd4cfdb7acb63a0fc9d37d3bb4c01d163f0c12d5fcff322df7d685566237
Signature
ed25519:918af5c2863714aacdac44a5a71cf32d72097c9a065083709036936b1a24e04e434605079b934f6b294b6837d5c2029fb856655074abebc17ac84e9d18a93e08
Public Key
ed25519:d610d74ef18f683e5beb859d241d5e67dff0c122e8928b06bec1c2476f4ba27b
Parent
(genesis)
Plane
fast
Verify this in your browser