CONTINUOUS INTERNET TELEMETRY24H DRIFT1,973 material changesacross 1,796 domains · -578 vs yesterdayDNS DRIFT16 domains changed DNS providertop destination afternic.comEMAIL DRIFT3 domains switched email providertop destination gpphosted.com · -2 vs yesterdayCERT DRIFT2 domains switched issuing CA24h · -3 vs yesterdayNOW3,404 curated domains not answeringlast probe, steadyERRORS10,888 responded with an errorlast probe · 5xx / 404 / 429 / 40324H DRIFT1,973 material changesacross 1,796 domains · -578 vs yesterdayDNS DRIFT16 domains changed DNS providertop destination afternic.comEMAIL DRIFT3 domains switched email providertop destination gpphosted.com · -2 vs yesterdayCERT DRIFT2 domains switched issuing CA24h · -3 vs yesterdayNOW3,404 curated domains not answeringlast probe, steadyERRORS10,888 responded with an errorlast probe · 5xx / 404 / 429 / 403

xfinity.com

Observed 2026-07-14T02:07:23.753Z (15h ago). Every field below was attested with an Ed25519 signature at scan time.

Up right now
Runs onCloudflare
Registered withCSC Corporate Domains, Inc.
Also usesGoogle Search Console
IPv6 · 20 subdomains · telecom
Every line above is a signed observation. Check the math at the bottom of the page.
INFRASTRUCTURE MAPwhat xfinity.com actually stands on - every host below is a signed observation
xfinity.com
A / AAAA
96.99.240.1552001:558:feed:dc:96:99:240:155
Cloudflareserves the site
NS
dns103.comcast.netdns105.comcast.netdns104.comcast.netdns102.comcast.net+1 more
comcast.netanswers its DNS
MX
mx2h1.comcast.netmx1c1.comcast.netmx2a1.comcast.netmx2c1.comcast.net+2 more
comcast.netreceives its email

HTTPS probe

redirect Redirecting (3xx) 301 → https://www.xfinity.com/
HTTP status301
Servercloudflare
TLS protocolHTTP/2
TLS issuernot observed
Behind Cloudflareyes
Response time59 ms
DNS resolutionNOERROR
Redirect chain
https://www.xfinity.com/

Every field above is part of the same signed observation as the records below. Blank means not observed, never "none".

DNS Records

A 1

  • 96.99.240.155

AAAA 1

  • 2001:558:feed:dc:96:99:240:155

MX 6

  • 5mx2h1.comcast.net
  • 5mx1c1.comcast.net
  • 5mx2a1.comcast.net
  • 5mx2c1.comcast.net
  • 5mx1h1.comcast.net
  • 5mx1a1.comcast.net

TXT 9

  • google-site-verification=TdiYkU4LcqtDvZoxDOjjUQwrrUnjS0wTKriu25iH-38
  • google-site-verification=jbytp59dW82AQqr9wK5V9-uZhr0wXrCJ7n9U3mUilQg
  • _j1ncje2qqdf6r89itljcpdy9ybjj8w3
  • apple-domain-verification=XqlyQica-2VyxgDz4zdPt1gCVxZ9oHyW13971aF8rbY
  • v=spf1 -all
  • google-site-verification=KqEt_C6gzuYBzr08xM7T6e5yXNmsxUAMu8ZtNQejaCs
  • v=DMARC1;p=reject;rua=mailto:dmarc-rua@dmarctest.comcast.net
  • v=STSv1; id=1667432290;
  • v=DNSSEC1; (detected)

NS 5

  • dns103.comcast.net
  • dns105.comcast.net
  • dns104.comcast.net
  • dns102.comcast.net
  • dns101.comcast.net

SOA 1

  • dns101.comcast.net dnsadmin.comcast.net

TLS Certificates (0)

None.

Subdomains (20)

The proof

Signed at scan time. Check the math yourself. Every line above is part of one signed observation. Re-hash it and check the Ed25519 signature in your own browser; nothing leaves your machine.

Verify this receipt

Put the receipt on your own site. A live badge showing what DomainDrift observes and signs for xfinity.com. It updates itself. It attests a signed observation - not that the site is safe.

DomainDrift signed-observation badge for xfinity.com <a href="https://domaindrift.io/t/xfinity.com"> <img src="https://domaindrift.io/badge/xfinity.com.svg" width="300" height="64" alt="DomainDrift signed observations for xfinity.com"> </a>

Ed25519 Receipt

Receipt ID
4a6cd7cd-095e-444f-9405-c4a73286f7fd
Output Hash
a925c6c888f1f64f0b58e74b40e11eb86262cfe11f86fa517dafe622cdf1f0be
Signature
ed25519:fffd7a30802efbb1cb7b7a783fe62afdb196ee60b6707753afecc8bd0d1c1a08f3424c2b2ca7ec9abb1ac8420cb8fb31d1b15c8d304786a76f505c8bf70db509
Public Key
ed25519:d610d74ef18f683e5beb859d241d5e67dff0c122e8928b06bec1c2476f4ba27b
Parent
(genesis)
Plane
fast
Verify this in your browser