CONTINUOUS INTERNET TELEMETRY24H DRIFT1,255 material changesacross 1,082 domains · -823 vs yesterdayDNS DRIFT7 domains changed DNS providertop destination alidns.com · -8 vs yesterdayCERT DRIFT12 domains switched issuing CA24h · -34 vs yesterdayNOW2,257 curated domains not answering+1,131 vs yesterdayERRORS15,439 responded with an errorlast probe · 5xx / 404 / TLSTHROTTLED39,503 throttled or blocked our scanner429 rate-limit / 403 bot-block24H DRIFT1,255 material changesacross 1,082 domains · -823 vs yesterdayDNS DRIFT7 domains changed DNS providertop destination alidns.com · -8 vs yesterdayCERT DRIFT12 domains switched issuing CA24h · -34 vs yesterdayNOW2,257 curated domains not answering+1,131 vs yesterdayERRORS15,439 responded with an errorlast probe · 5xx / 404 / TLSTHROTTLED39,503 throttled or blocked our scanner429 rate-limit / 403 bot-block

headframe.io

Observed Jul 18, 2026, 14:05 UTC (1d ago). Every field below was attested with an Ed25519 signature at scan time.

Up right now
Runs onYandex.Cloud
Email byGoogle Workspace
Secured byLet's Encrypt
Also usesAtlassianGoogle Search Console
1 subdomain · tranco_100k
Every line above is a signed observation. Check the math at the bottom of the page.
INFRASTRUCTURE MAPwhat headframe.io actually stands on - every host below is a signed observation
headframe.io
A / AAAA
51.250.54.63
Yandex.Cloudserves the site
NS
cruz.ns.cloudflare.compranab.ns.cloudflare.com
cloudflare.comanswers its DNS
MX
aspmx.l.google.comalt3.aspmx.l.google.comalt4.aspmx.l.google.comalt1.aspmx.l.google.com+1 more
Google Workspacereceives its email
TLS
headframe.io
Let's Encryptissued its certificate

DNS Records

A 1

  • 51.250.54.63

MX 5

  • 1aspmx.l.google.com
  • 10alt3.aspmx.l.google.com
  • 10alt4.aspmx.l.google.com
  • 5alt1.aspmx.l.google.com
  • 5alt2.aspmx.l.google.com

TXT 8

  • atlassian-domain-verification=tLNFitZfPecJaRjSCpbNlKRbokaVr5Y/aWebFNe4juMc850j9t06dIpNfB3b5p8S
  • google-site-verification=C9kAAGTbybcIWoMoxTavXaLwbm8PGt8HdhEaoio2ZYY
  • google-site-verification=bPtqwAVxBKHk9oJkjvJTpVxxp60Xl0hqJ5O8IVuw6XU
  • google-site-verification=bqAhziFFumYGVrS5kttPzGp9jr-hAkO0ZAc1Jcq3avE
  • rm_verify=2aa40f7e27
  • v=spf1 include:_spf.google.com include:mailgun.org include:spf.unisender.com ~all
  • yandex-verification: d1b02543c56eba19
  • v=DMARC1; p=quarantine; pct=10; rua=mailto:0aa53ff214ae4571ba2cac996cc2b9f5@dmarc-reports.cloudflare.net

NS 2

  • cruz.ns.cloudflare.com
  • pranab.ns.cloudflare.com

SOA 1

  • cruz.ns.cloudflare.com dns.cloudflare.com

TLS Certificates (3)

Common NameIssuerExpires
headframe.io C=US, O=Let's Encrypt, CN=YR2 Sun, 13 Sep 2026 06:28:38 +0000
YR2 C=US, O=ISRG, CN=Root YR Sat, 02 Sep 2028 23:59:59 +0000
Root YR C=US, O=Internet Security Research Group, CN=ISRG Root X1 Thu, 02 Sep 2032 23:59:59 +0000

Subdomains (1)

The proof

Signed at scan time. Check the math yourself. Every line above is part of one signed observation. Re-hash it and check the Ed25519 signature in your own browser; nothing leaves your machine.

Verify this receipt

Put the receipt on your own site. A live badge showing what DomainDrift observes and signs for headframe.io. It updates itself. It attests a signed observation - not that the site is safe.

DomainDrift signed-observation badge for headframe.io <a href="https://domaindrift.io/t/headframe.io"> <img src="https://domaindrift.io/badge/headframe.io.svg" width="300" height="64" alt="DomainDrift signed observations for headframe.io"> </a>

Ed25519 Receipt

Receipt ID
dade5300-2aa8-46e4-9994-7c207ef28b52
Output Hash
994c45ceba41e3362733271dc839572d7d68281ce74eea944b6c119a0cfe137a
Signature
ed25519:3282a3093d17d0df976a92d83774cbcc265a78106322c83d2124eab4796cc40bb0e64533803f0bb32568ff53de2d562c24c2cb3f5bd1cf28b7ad5f7c6a194409
Public Key
ed25519:178c3bd0f57d9d64b83cc4630753381e1a465005a2bbba3d032371f24af0bfd8
Parent
(genesis)
Plane
fast
Verify this in your browser