CONTINUOUS INTERNET TELEMETRY24H DRIFT2,861 material changesacross 2,518 domains · -537 vs yesterdayDNS DRIFT21 domains changed DNS providertop destination cloudflare.com · -6 vs yesterdayEMAIL DRIFT4 domains switched email providertop destination reyrey.com · -2 vs yesterdayCERT DRIFT7 domains switched issuing CA24hNOW3,306 curated domains not answering-6,412 vs yesterdayERRORS10,966 responded with an errorlast probe · 5xx / 404 / 429 / 40324H DRIFT2,861 material changesacross 2,518 domains · -537 vs yesterdayDNS DRIFT21 domains changed DNS providertop destination cloudflare.com · -6 vs yesterdayEMAIL DRIFT4 domains switched email providertop destination reyrey.com · -2 vs yesterdayCERT DRIFT7 domains switched issuing CA24hNOW3,306 curated domains not answering-6,412 vs yesterdayERRORS10,966 responded with an errorlast probe · 5xx / 404 / 429 / 403

nextdirect.com

Observed 2026-07-12T23:41:43.675Z (9h ago). Every field below was attested with an Ed25519 signature at scan time.

Up right now
Runs onCloudflare
Email byMimecast
Also usesFacebook/MetaGoogle Search Console
IPv6 · 12 subdomains · tranco_10k
Every line above is a signed observation. Check the math at the bottom of the page.
INFRASTRUCTURE MAPwhat nextdirect.com actually stands on - every host below is a signed observation
nextdirect.com
A / AAAA
23.61.209.1912600:1406:5e00:48a::1bc22600:1406:5e00:48f::1bc2
Cloudflareserves the site
NS
udns2.cscdns.ukudns1.cscdns.net
cscdns.uk + cscdns.netanswers its DNS
MX
eu-smtp-inbound-2.mimecast.comeu-smtp-inbound-1.mimecast.com
Mimecastreceives its email

HTTPS probe

redirect Redirecting (3xx) 301 → https://www.nextdirect.com/CountrySelect
HTTP status301
Servercloudflare
TLS protocolHTTP/2
TLS issuernot observed
Behind Cloudflareyes
Response time139 ms
DNS resolutionNOERROR
Redirect chain
https://www.nextdirect.com/CountrySelect

Every field above is part of the same signed observation as the records below. Blank means not observed, never "none".

DNS Records

A 1

  • 23.61.209.191

AAAA 2

  • 2600:1406:5e00:48a::1bc2
  • 2600:1406:5e00:48f::1bc2

MX 2

  • 10eu-smtp-inbound-2.mimecast.com
  • 10eu-smtp-inbound-1.mimecast.com

TXT 10

  • MS=ms44033477
  • facebook-domain-verification=j2fughhww7qxlqpqr3r9uggwmwr1f5
  • onetrust-domain-verification=5ca4d87b296d4c1f964a0b060ed3cac3
  • hnjkl2l4m8r9jt8cy4b7m6m3c7933yp4
  • v=spf1 include:_u.nextdirect.com._spf.smart.ondmarc.com -all
  • Digicert Validation Order # 00742086 dkerzan@edgecast.com
  • google-site-verification=KhdYBHNZuiyYSdQHPBSXKS06qdYs9ee3IO680TGOGP4
  • v=DMARC1; p=reject; pct=100; sp=reject; rua=mailto:b47e7205@inbox.ondmarc.com; ruf=mailto:b47e7205@inbox.ondmarc.com; adkim=r; aspf=r; fo=0; rf=afrf; ri=3600
  • v=DKIM1; (detected)
  • v=STSv1; id=1774433502840

NS 2

  • udns2.cscdns.uk
  • udns1.cscdns.net

SOA 1

  • udns1.cscdns.net premiumdns.support.neustar

TLS Certificates (0)

None.

Subdomains (12)

The proof

Signed at scan time. Check the math yourself. Every line above is part of one signed observation. Re-hash it and check the Ed25519 signature in your own browser; nothing leaves your machine.

Verify this receipt

Put the receipt on your own site. A live badge showing what DomainDrift observes and signs for nextdirect.com. It updates itself. It attests a signed observation - not that the site is safe.

DomainDrift signed-observation badge for nextdirect.com <a href="https://domaindrift.io/t/nextdirect.com"> <img src="https://domaindrift.io/badge/nextdirect.com.svg" width="300" height="64" alt="DomainDrift signed observations for nextdirect.com"> </a>

Ed25519 Receipt

Receipt ID
f11fbb10-dc4a-4b95-b707-4fb4187b64ee
Output Hash
c251f8a427142f266aa34fe26a175fc55f7cdb235cc17402331d6de9ee64cbe1
Signature
ed25519:89ed20e784d370b665e871022341937ae02a3ea668074d96a4c962d6e80450b122e35ec6249205b64e6202c12e6de6be28680b57f4ac5607c24d3b3abe9d400c
Public Key
ed25519:d610d74ef18f683e5beb859d241d5e67dff0c122e8928b06bec1c2476f4ba27b
Parent
(genesis)
Plane
fast
Verify this in your browser