CONTINUOUS INTERNET TELEMETRY24H DRIFT1,436 material changesacross 1,242 domains · +982 vs yesterdayDNS DRIFT21 domains changed DNS providertop destination parity.domains · +17 vs yesterdayEMAIL DRIFT6 domains switched email providertop destination pphosted.com · +4 vs yesterdayNOW575 curated domains not answering-1,640 vs yesterdayERRORS2,925 responded with an errorlast probe · 5xx / 404 / TLSTHROTTLED7,932 throttled or blocked our scanner429 rate-limit / 403 bot-blockMOVERtiktok.comDMARC enforcement downgraded: p=reject → no DMARC record24H DRIFT1,436 material changesacross 1,242 domains · +982 vs yesterdayDNS DRIFT21 domains changed DNS providertop destination parity.domains · +17 vs yesterdayEMAIL DRIFT6 domains switched email providertop destination pphosted.com · +4 vs yesterdayNOW575 curated domains not answering-1,640 vs yesterdayERRORS2,925 responded with an errorlast probe · 5xx / 404 / TLSTHROTTLED7,932 throttled or blocked our scanner429 rate-limit / 403 bot-blockMOVERtiktok.comDMARC enforcement downgraded: p=reject → no DMARC record

cips.org

Observed 2026-07-17T15:34:12.894821329+00:00 (8h ago). Every field below was attested with an Ed25519 signature at scan time.

Up right now
Runs onCloudflare
Email byMimecast
Secured byLet's Encrypt
Also usesZoomAtlassian
tranco_100k
Every line above is a signed observation. Check the math at the bottom of the page.
INFRASTRUCTURE MAPwhat cips.org actually stands on - every host below is a signed observation
cips.org
A / AAAA
13.248.160.13776.223.34.124
Cloudflareserves the site
NS
ns38.domaincontrol.comns37.domaincontrol.com
domaincontrol.comanswers its DNS
MX
eu-smtp-inbound-1.mimecast.comeu-smtp-inbound-2.mimecast.com
Mimecastreceives its email
TLS
cips.org
Let's Encryptissued its certificate

DNS Records

A 2

  • 13.248.160.137
  • 76.223.34.124

MX 2

  • 10eu-smtp-inbound-1.mimecast.com
  • 10eu-smtp-inbound-2.mimecast.com

TXT 8

  • v=spf1 redirect=3303w1az._spf._d.mim.ec
  • apple-domain-verification=UGjuGJRn8xZe6lxz
  • qcY55q4RfnjfAF2dw6r/5nQsQ0SR+BxR0SXp9IKWX8e28d1DfwZq1DDb6Gp07tht+O45TZeg3721v3/ttFc9bA==
  • ZOOM_verify_TyVPwtckPQutQ5zFiaUzzM
  • atlassian-domain-verification=b77YxYUhXxoP8XQBWHW5V87nNkmlI2QKa9Vww8mvYeZ49fL9MtOgaSaWGa1uiEFb
  • mandrill_verify.K55166igVPCa5m4Mjrnodw
  • asv=52b24ca587ef2a11cc983a145b3c33e6
  • v=DMARC1; p=reject; rua=mailto:4a7dfe9d8741891@rep.dmarcanalyzer.com; ruf=mailto:4a7dfe9d8741891@for.dmarcanalyzer.com; fo=1;

NS 2

  • ns38.domaincontrol.com
  • ns37.domaincontrol.com

SOA 1

  • ns37.domaincontrol.com dns.jomax.net

SRV 1

  • sipdir.online.lync.com:443 p100

TLS Certificates (3)

Common NameIssuerExpires
cips.org C=US, O=Let's Encrypt, CN=YR2 Mon, 12 Oct 2026 07:21:48 +0000
YR2 C=US, O=ISRG, CN=Root YR Sat, 02 Sep 2028 23:59:59 +0000
Root YR C=US, O=Internet Security Research Group, CN=ISRG Root X1 Thu, 02 Sep 2032 23:59:59 +0000

Subdomains (0)

None observed.

The proof

Signed at scan time. Check the math yourself. Every line above is part of one signed observation. Re-hash it and check the Ed25519 signature in your own browser; nothing leaves your machine.

Verify this receipt

Put the receipt on your own site. A live badge showing what DomainDrift observes and signs for cips.org. It updates itself. It attests a signed observation - not that the site is safe.

DomainDrift signed-observation badge for cips.org <a href="https://domaindrift.io/t/cips.org"> <img src="https://domaindrift.io/badge/cips.org.svg" width="300" height="64" alt="DomainDrift signed observations for cips.org"> </a>

Ed25519 Receipt

Receipt ID
0ea498c6-15bb-4c72-a410-b0b8682b2456
Output Hash
911d434729e05e903b7b667ccc5eab72e702cb95aea7c38e3c6c0cf53cd4152b
Signature
ed25519:0c7dd1c0026ba8c896009ccd2757cd860c8420bc0b41418c5bce2fa07b7c494e4eb14c31ee45913697aa9c7795e579b1034a41439770aa6dcaba66e10485410b
Public Key
ed25519:178c3bd0f57d9d64b83cc4630753381e1a465005a2bbba3d032371f24af0bfd8
Parent
(genesis)
Plane
fast
Verify this in your browser