diff --git a/docs/04-configuration/E2E_ENDPOINTS_LIST.md b/docs/04-configuration/E2E_ENDPOINTS_LIST.md
index 988cce7..4fc076a 100644
--- a/docs/04-configuration/E2E_ENDPOINTS_LIST.md
+++ b/docs/04-configuration/E2E_ENDPOINTS_LIST.md
@@ -6,8 +6,8 @@
**Run E2E (public profile recommended):** `./scripts/verify/verify-end-to-end-routing.sh --profile=public` (from LAN with DNS or use `E2E_USE_SYSTEM_RESOLVER=1` and `/etc/hosts` per [E2E_DNS_FROM_LAN_RUNBOOK.md](E2E_DNS_FROM_LAN_RUNBOOK.md)).
**Run E2E (private/admin):** `./scripts/verify/verify-end-to-end-routing.sh --profile=private`.
-**Latest verified public pass:** `2026-03-27` via `bash scripts/verify/verify-end-to-end-routing.sh --profile=public` with report at [verification_report.md](verification-evidence/e2e-verification-20260327_120814/verification_report.md). Result: exit `0`, `DNS passed: 38`, `Failed: 0`, `HTTPS passed: 23` (includes `www.*` canonical redirect + `Location` checks).
-**Latest verified private/admin pass:** `2026-03-27` via `bash scripts/verify/verify-end-to-end-routing.sh --profile=private` with report at [verification_report.md](verification-evidence/e2e-verification-20260327_122148/verification_report.md). Result: exit `0`, `DNS passed: 4`, `Failed: 0`.
+**Latest verified public pass:** `2026-03-27` via `bash scripts/verify/verify-end-to-end-routing.sh --profile=public` with report at [verification_report.md](verification-evidence/e2e-verification-20260327_134032/verification_report.md). Result: exit `0`, `DNS passed: 38`, `Failed: 0`, `HTTPS passed: 19`, `Skipped / optional: 1` (after `run-all-operator-tasks-from-lan.sh` NPM sync; `rpc.defi-oracle.io` may log HTTP 405 on the verifier probe but stays non-failing for the profile).
+**Latest verified private/admin pass:** `2026-03-27` via `bash scripts/verify/verify-end-to-end-routing.sh --profile=private` with report at [verification_report.md](verification-evidence/e2e-verification-20260327_134137/verification_report.md). Result: exit `0`, `DNS passed: 4`, `Failed: 0`.
## Verification profiles
diff --git a/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/all_e2e_results.json b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/all_e2e_results.json
new file mode 100644
index 0000000..6f76998
--- /dev/null
+++ b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/all_e2e_results.json
@@ -0,0 +1,928 @@
+[
+ {
+ "domain": "dbis-admin.d-bis.org",
+ "domain_type": "web",
+ "timestamp": "2026-03-27T13:40:32-07:00",
+ "tests": {
+ "dns": {
+ "status": "pass",
+ "resolved_ip": "76.53.10.36",
+ "expected_ip": "76.53.10.36"
+ },
+ "ssl": {
+ "status": "pass",
+ "cn": "dbis-admin.d-bis.org",
+ "issuer": "E7",
+ "expires": "Jun 15 06:47:43 2026 GMT"
+ },
+ "https": {
+ "status": "pass",
+ "http_code": 200,
+ "response_time_seconds": 0.048185,
+ "has_hsts": true,
+ "has_csp": true,
+ "has_xfo": true
+ }
+ }
+ },
+ {
+ "domain": "rpc-alltra-3.d-bis.org",
+ "domain_type": "rpc-http",
+ "timestamp": "2026-03-27T13:40:33-07:00",
+ "tests": {
+ "dns": {
+ "status": "pass",
+ "resolved_ip": "172.67.220.49",
+ "expected_ip": "any"
+ },
+ "ssl": {
+ "status": "pass",
+ "cn": "d-bis.org",
+ "issuer": "WE1",
+ "expires": "May 27 07:40:56 2026 GMT"
+ },
+ "rpc_http": {
+ "status": "pass",
+ "chain_id": "0x8a"
+ }
+ }
+ },
+ {
+ "domain": "mifos.d-bis.org",
+ "domain_type": "web",
+ "timestamp": "2026-03-27T13:40:33-07:00",
+ "tests": {
+ "dns": {
+ "status": "pass",
+ "resolved_ip": "172.67.220.49",
+ "expected_ip": "any"
+ },
+ "ssl": {
+ "status": "pass",
+ "cn": "d-bis.org",
+ "issuer": "WE1",
+ "expires": "May 27 07:40:56 2026 GMT"
+ },
+ "https": {
+ "status": "pass",
+ "http_code": 200,
+ "response_time_seconds": 0.129259,
+ "has_hsts": true,
+ "has_csp": false,
+ "has_xfo": true
+ }
+ }
+ },
+ {
+ "domain": "rpc-hybx-2.d-bis.org",
+ "domain_type": "rpc-http",
+ "timestamp": "2026-03-27T13:40:34-07:00",
+ "tests": {
+ "dns": {
+ "status": "pass",
+ "resolved_ip": "104.21.86.131",
+ "expected_ip": "any"
+ },
+ "ssl": {
+ "status": "pass",
+ "cn": "d-bis.org",
+ "issuer": "WE1",
+ "expires": "May 27 07:40:56 2026 GMT"
+ },
+ "rpc_http": {
+ "status": "pass",
+ "chain_id": "0x8a"
+ }
+ }
+ },
+ {
+ "domain": "cacti-hybx.d-bis.org",
+ "domain_type": "web",
+ "timestamp": "2026-03-27T13:40:34-07:00",
+ "tests": {
+ "dns": {
+ "status": "pass",
+ "resolved_ip": "104.21.86.131",
+ "expected_ip": "any"
+ },
+ "ssl": {
+ "status": "pass",
+ "cn": "d-bis.org",
+ "issuer": "WE1",
+ "expires": "May 27 07:40:56 2026 GMT"
+ },
+ "https": {
+ "status": "pass",
+ "http_code": 200,
+ "response_time_seconds": 0.122747,
+ "has_hsts": true,
+ "has_csp": false,
+ "has_xfo": true
+ }
+ }
+ },
+ {
+ "domain": "sankofa.nexus",
+ "domain_type": "web",
+ "timestamp": "2026-03-27T13:40:35-07:00",
+ "tests": {
+ "dns": {
+ "status": "pass",
+ "resolved_ip": "76.53.10.36",
+ "expected_ip": "76.53.10.36"
+ },
+ "ssl": {
+ "status": "pass",
+ "cn": "sankofa.nexus",
+ "issuer": "E8",
+ "expires": "Jun 16 06:48:37 2026 GMT"
+ },
+ "https": {
+ "status": "pass",
+ "http_code": 200,
+ "response_time_seconds": 0.088318,
+ "has_hsts": true,
+ "has_csp": true,
+ "has_xfo": true
+ }
+ }
+ },
+ {
+ "domain": "rpc-alltra.d-bis.org",
+ "domain_type": "rpc-http",
+ "timestamp": "2026-03-27T13:40:35-07:00",
+ "tests": {
+ "dns": {
+ "status": "pass",
+ "resolved_ip": "172.67.220.49",
+ "expected_ip": "any"
+ },
+ "ssl": {
+ "status": "pass",
+ "cn": "d-bis.org",
+ "issuer": "WE1",
+ "expires": "May 27 07:40:56 2026 GMT"
+ },
+ "rpc_http": {
+ "status": "pass",
+ "chain_id": "0x8a"
+ }
+ }
+ },
+ {
+ "domain": "rpc-http-pub.d-bis.org",
+ "domain_type": "rpc-http",
+ "timestamp": "2026-03-27T13:40:36-07:00",
+ "tests": {
+ "dns": {
+ "status": "pass",
+ "resolved_ip": "76.53.10.36",
+ "expected_ip": "76.53.10.36"
+ },
+ "ssl": {
+ "status": "pass",
+ "cn": "rpc-http-pub.d-bis.org",
+ "issuer": "E8",
+ "expires": "Jun 16 06:48:10 2026 GMT"
+ },
+ "rpc_http": {
+ "status": "pass",
+ "chain_id": "0x8a"
+ }
+ }
+ },
+ {
+ "domain": "rpc.public-0138.defi-oracle.io",
+ "domain_type": "rpc-http",
+ "timestamp": "2026-03-27T13:40:36-07:00",
+ "tests": {
+ "dns": {
+ "status": "pass",
+ "resolved_ip": "76.53.10.36",
+ "expected_ip": "76.53.10.36"
+ },
+ "ssl": {
+ "status": "pass",
+ "cn": "rpc.public-0138.defi-oracle.io",
+ "issuer": "E8",
+ "expires": "Apr 16 20:58:05 2026 GMT"
+ },
+ "rpc_http": {
+ "status": "pass",
+ "chain_id": "0x8a"
+ }
+ }
+ },
+ {
+ "domain": "studio.sankofa.nexus",
+ "domain_type": "web",
+ "timestamp": "2026-03-27T13:40:36-07:00",
+ "tests": {
+ "dns": {
+ "status": "pass",
+ "resolved_ip": "172.67.141.209",
+ "expected_ip": "any"
+ },
+ "ssl": {
+ "status": "pass",
+ "cn": "sankofa.nexus",
+ "issuer": "WE1",
+ "expires": "May 6 03:30:54 2026 GMT"
+ },
+ "https": {
+ "status": "pass",
+ "http_code": 200,
+ "response_time_seconds": 0.158212,
+ "has_hsts": false,
+ "has_csp": false,
+ "has_xfo": false
+ }
+ }
+ },
+ {
+ "domain": "dbis-api.d-bis.org",
+ "domain_type": "api",
+ "timestamp": "2026-03-27T13:40:37-07:00",
+ "tests": {
+ "dns": {
+ "status": "pass",
+ "resolved_ip": "76.53.10.36",
+ "expected_ip": "76.53.10.36"
+ },
+ "ssl": {
+ "status": "pass",
+ "cn": "dbis-api.d-bis.org",
+ "issuer": "E7",
+ "expires": "Jun 16 06:47:45 2026 GMT"
+ },
+ "https": {
+ "status": "pass",
+ "http_code": 200,
+ "response_time_seconds": 0.052015,
+ "has_hsts": true,
+ "has_csp": true,
+ "has_xfo": true
+ }
+ }
+ },
+ {
+ "domain": "rpc-hybx-3.d-bis.org",
+ "domain_type": "rpc-http",
+ "timestamp": "2026-03-27T13:40:37-07:00",
+ "tests": {
+ "dns": {
+ "status": "pass",
+ "resolved_ip": "172.67.220.49",
+ "expected_ip": "any"
+ },
+ "ssl": {
+ "status": "pass",
+ "cn": "d-bis.org",
+ "issuer": "WE1",
+ "expires": "May 27 07:40:56 2026 GMT"
+ },
+ "rpc_http": {
+ "status": "pass",
+ "chain_id": "0x8a"
+ }
+ }
+ },
+ {
+ "domain": "rpc.d-bis.org",
+ "domain_type": "rpc-http",
+ "timestamp": "2026-03-27T13:40:38-07:00",
+ "tests": {
+ "dns": {
+ "status": "pass",
+ "resolved_ip": "76.53.10.36",
+ "expected_ip": "76.53.10.36"
+ },
+ "ssl": {
+ "status": "pass",
+ "cn": "rpc.d-bis.org",
+ "issuer": "E7",
+ "expires": "Apr 30 13:35:45 2026 GMT"
+ },
+ "rpc_http": {
+ "status": "pass",
+ "chain_id": "0x8a"
+ }
+ }
+ },
+ {
+ "domain": "dapp.d-bis.org",
+ "domain_type": "web",
+ "timestamp": "2026-03-27T13:40:38-07:00",
+ "tests": {
+ "dns": {
+ "status": "pass",
+ "resolved_ip": "172.67.220.49",
+ "expected_ip": "any"
+ },
+ "ssl": {
+ "status": "pass",
+ "cn": "d-bis.org",
+ "issuer": "WE1",
+ "expires": "May 27 07:40:56 2026 GMT"
+ },
+ "https": {
+ "status": "pass",
+ "http_code": 301,
+ "response_time_seconds": 0.134693,
+ "has_hsts": true,
+ "has_csp": false,
+ "has_xfo": false
+ }
+ }
+ },
+ {
+ "domain": "www.sankofa.nexus",
+ "domain_type": "web",
+ "timestamp": "2026-03-27T13:40:39-07:00",
+ "tests": {
+ "dns": {
+ "status": "pass",
+ "resolved_ip": "76.53.10.36",
+ "expected_ip": "76.53.10.36"
+ },
+ "ssl": {
+ "status": "pass",
+ "cn": "www.sankofa.nexus",
+ "issuer": "E7",
+ "expires": "Apr 16 20:59:41 2026 GMT"
+ },
+ "https": {
+ "status": "pass",
+ "http_code": 301,
+ "response_time_seconds": 0.047036,
+ "canonical_redirect": true,
+ "location_header": "location: https://sankofa.nexus/"
+ }
+ }
+ },
+ {
+ "domain": "www.the-order.sankofa.nexus",
+ "domain_type": "web",
+ "timestamp": "2026-03-27T13:40:39-07:00",
+ "tests": {
+ "dns": {
+ "status": "pass",
+ "resolved_ip": "76.53.10.36",
+ "expected_ip": "76.53.10.36"
+ },
+ "ssl": {
+ "status": "pass",
+ "cn": "www.the-order.sankofa.nexus",
+ "issuer": "E8",
+ "expires": "Jun 25 04:52:05 2026 GMT"
+ },
+ "https": {
+ "status": "pass",
+ "http_code": 301,
+ "response_time_seconds": 0.043245,
+ "canonical_redirect": true,
+ "location_header": "location: https://the-order.sankofa.nexus/"
+ }
+ }
+ },
+ {
+ "domain": "mim4u.org",
+ "domain_type": "web",
+ "timestamp": "2026-03-27T13:40:39-07:00",
+ "tests": {
+ "dns": {
+ "status": "pass",
+ "resolved_ip": "76.53.10.36",
+ "expected_ip": "76.53.10.36"
+ },
+ "ssl": {
+ "status": "pass",
+ "cn": "mim4u.org",
+ "issuer": "E8",
+ "expires": "Jun 16 06:47:53 2026 GMT"
+ },
+ "https": {
+ "status": "warn",
+ "http_code": 502,
+ "response_time_seconds": 0.089702
+ }
+ }
+ },
+ {
+ "domain": "ws.rpc.d-bis.org",
+ "domain_type": "rpc-ws",
+ "timestamp": "2026-03-27T13:40:40-07:00",
+ "tests": {
+ "dns": {
+ "status": "pass",
+ "resolved_ip": "76.53.10.36",
+ "expected_ip": "76.53.10.36"
+ },
+ "ssl": {
+ "status": "pass",
+ "cn": "ws.rpc.d-bis.org",
+ "issuer": "E8",
+ "expires": "Apr 30 03:43:05 2026 GMT"
+ },
+ "websocket": {
+ "status": "pass",
+ "http_code": "400",
+ "full_test": true,
+ "full_test_output": "result"
+ }
+ }
+ },
+ {
+ "domain": "phoenix.sankofa.nexus",
+ "domain_type": "web",
+ "timestamp": "2026-03-27T13:40:46-07:00",
+ "tests": {
+ "dns": {
+ "status": "pass",
+ "resolved_ip": "76.53.10.36",
+ "expected_ip": "76.53.10.36"
+ },
+ "ssl": {
+ "status": "pass",
+ "cn": "phoenix.sankofa.nexus",
+ "issuer": "E7",
+ "expires": "Jun 16 06:47:58 2026 GMT"
+ },
+ "https": {
+ "status": "pass",
+ "http_code": 200,
+ "response_time_seconds": 0.047239,
+ "has_hsts": true,
+ "has_csp": true,
+ "has_xfo": true
+ }
+ }
+ },
+ {
+ "domain": "www.mim4u.org",
+ "domain_type": "web",
+ "timestamp": "2026-03-27T13:40:46-07:00",
+ "tests": {
+ "dns": {
+ "status": "pass",
+ "resolved_ip": "76.53.10.36",
+ "expected_ip": "76.53.10.36"
+ },
+ "ssl": {
+ "status": "pass",
+ "cn": "www.mim4u.org",
+ "issuer": "E8",
+ "expires": "Jun 15 06:47:54 2026 GMT"
+ },
+ "https": {
+ "status": "warn",
+ "http_code": 502,
+ "response_time_seconds": 0.055618
+ }
+ }
+ },
+ {
+ "domain": "wss.defi-oracle.io",
+ "domain_type": "rpc-ws",
+ "timestamp": "2026-03-27T13:40:46-07:00",
+ "tests": {
+ "dns": {
+ "status": "pass",
+ "resolved_ip": "76.53.10.36",
+ "expected_ip": "76.53.10.36"
+ },
+ "ssl": {
+ "status": "pass",
+ "cn": "wss.defi-oracle.io",
+ "issuer": "E8",
+ "expires": "Apr 30 03:44:57 2026 GMT"
+ },
+ "websocket": {
+ "status": "pass",
+ "http_code": "400",
+ "full_test": true,
+ "full_test_output": "result"
+ }
+ }
+ },
+ {
+ "domain": "the-order.sankofa.nexus",
+ "domain_type": "web",
+ "timestamp": "2026-03-27T13:40:52-07:00",
+ "tests": {
+ "dns": {
+ "status": "pass",
+ "resolved_ip": "76.53.10.36",
+ "expected_ip": "76.53.10.36"
+ },
+ "ssl": {
+ "status": "pass",
+ "cn": "the-order.sankofa.nexus",
+ "issuer": "E8",
+ "expires": "Jun 16 06:48:53 2026 GMT"
+ },
+ "https": {
+ "status": "pass",
+ "http_code": 200,
+ "response_time_seconds": 0.065987,
+ "has_hsts": true,
+ "has_csp": true,
+ "has_xfo": true
+ }
+ }
+ },
+ {
+ "domain": "rpc2.d-bis.org",
+ "domain_type": "rpc-http",
+ "timestamp": "2026-03-27T13:40:52-07:00",
+ "tests": {
+ "dns": {
+ "status": "pass",
+ "resolved_ip": "76.53.10.36",
+ "expected_ip": "76.53.10.36"
+ },
+ "ssl": {
+ "status": "pass",
+ "cn": "rpc2.d-bis.org",
+ "issuer": "E8",
+ "expires": "Apr 30 03:40:50 2026 GMT"
+ },
+ "rpc_http": {
+ "status": "pass",
+ "chain_id": "0x8a"
+ }
+ }
+ },
+ {
+ "domain": "rpc-ws-pub.d-bis.org",
+ "domain_type": "rpc-ws",
+ "timestamp": "2026-03-27T13:40:53-07:00",
+ "tests": {
+ "dns": {
+ "status": "pass",
+ "resolved_ip": "76.53.10.36",
+ "expected_ip": "76.53.10.36"
+ },
+ "ssl": {
+ "status": "pass",
+ "cn": "rpc-ws-pub.d-bis.org",
+ "issuer": "E7",
+ "expires": "Jun 16 06:48:27 2026 GMT"
+ },
+ "websocket": {
+ "status": "pass",
+ "http_code": "400",
+ "full_test": true,
+ "full_test_output": "result"
+ }
+ }
+ },
+ {
+ "domain": "dev.d-bis.org",
+ "domain_type": "web",
+ "timestamp": "2026-03-27T13:40:58-07:00",
+ "tests": {
+ "dns": {
+ "status": "pass",
+ "resolved_ip": "104.21.86.131",
+ "expected_ip": "any"
+ },
+ "ssl": {
+ "status": "pass",
+ "cn": "d-bis.org",
+ "issuer": "WE1",
+ "expires": "May 27 07:40:56 2026 GMT"
+ },
+ "https": {
+ "status": "pass",
+ "http_code": 200,
+ "response_time_seconds": 0.137467,
+ "has_hsts": true,
+ "has_csp": false,
+ "has_xfo": true
+ }
+ }
+ },
+ {
+ "domain": "rpc-alltra-2.d-bis.org",
+ "domain_type": "rpc-http",
+ "timestamp": "2026-03-27T13:40:59-07:00",
+ "tests": {
+ "dns": {
+ "status": "pass",
+ "resolved_ip": "172.67.220.49",
+ "expected_ip": "any"
+ },
+ "ssl": {
+ "status": "pass",
+ "cn": "d-bis.org",
+ "issuer": "WE1",
+ "expires": "May 27 07:40:56 2026 GMT"
+ },
+ "rpc_http": {
+ "status": "pass",
+ "chain_id": "0x8a"
+ }
+ }
+ },
+ {
+ "domain": "www.phoenix.sankofa.nexus",
+ "domain_type": "web",
+ "timestamp": "2026-03-27T13:40:59-07:00",
+ "tests": {
+ "dns": {
+ "status": "pass",
+ "resolved_ip": "76.53.10.36",
+ "expected_ip": "76.53.10.36"
+ },
+ "ssl": {
+ "status": "pass",
+ "cn": "www.phoenix.sankofa.nexus",
+ "issuer": "E8",
+ "expires": "Jun 15 06:48:02 2026 GMT"
+ },
+ "https": {
+ "status": "pass",
+ "http_code": 301,
+ "response_time_seconds": 0.071859,
+ "canonical_redirect": true,
+ "location_header": "location: https://phoenix.sankofa.nexus/health"
+ }
+ }
+ },
+ {
+ "domain": "gitea.d-bis.org",
+ "domain_type": "web",
+ "timestamp": "2026-03-27T13:40:59-07:00",
+ "tests": {
+ "dns": {
+ "status": "pass",
+ "resolved_ip": "104.21.86.131",
+ "expected_ip": "any"
+ },
+ "ssl": {
+ "status": "pass",
+ "cn": "d-bis.org",
+ "issuer": "WE1",
+ "expires": "May 27 07:40:56 2026 GMT"
+ },
+ "https": {
+ "status": "pass",
+ "http_code": 200,
+ "response_time_seconds": 0.113480,
+ "has_hsts": true,
+ "has_csp": false,
+ "has_xfo": true
+ }
+ }
+ },
+ {
+ "domain": "secure.mim4u.org",
+ "domain_type": "web",
+ "timestamp": "2026-03-27T13:41:00-07:00",
+ "tests": {
+ "dns": {
+ "status": "pass",
+ "resolved_ip": "76.53.10.36",
+ "expected_ip": "76.53.10.36"
+ },
+ "ssl": {
+ "status": "pass",
+ "cn": "secure.mim4u.org",
+ "issuer": "E8",
+ "expires": "Jun 16 06:48:46 2026 GMT"
+ },
+ "https": {
+ "status": "warn",
+ "http_code": 502,
+ "response_time_seconds": 0.039578
+ }
+ }
+ },
+ {
+ "domain": "explorer.d-bis.org",
+ "domain_type": "web",
+ "timestamp": "2026-03-27T13:41:00-07:00",
+ "tests": {
+ "dns": {
+ "status": "pass",
+ "resolved_ip": "76.53.10.36",
+ "expected_ip": "76.53.10.36"
+ },
+ "ssl": {
+ "status": "pass",
+ "cn": "explorer.d-bis.org",
+ "issuer": "E8",
+ "expires": "May 7 23:15:36 2026 GMT"
+ },
+ "https": {
+ "status": "pass",
+ "http_code": 200,
+ "response_time_seconds": 0.039903,
+ "has_hsts": true,
+ "has_csp": true,
+ "has_xfo": true
+ },
+ "blockscout_api": {
+ "status": "pass",
+ "http_code": 200
+ }
+ }
+ },
+ {
+ "domain": "training.mim4u.org",
+ "domain_type": "web",
+ "timestamp": "2026-03-27T13:41:01-07:00",
+ "tests": {
+ "dns": {
+ "status": "pass",
+ "resolved_ip": "76.53.10.36",
+ "expected_ip": "76.53.10.36"
+ },
+ "ssl": {
+ "status": "pass",
+ "cn": "training.mim4u.org",
+ "issuer": "E7",
+ "expires": "Jun 16 06:49:02 2026 GMT"
+ },
+ "https": {
+ "status": "warn",
+ "http_code": 502,
+ "response_time_seconds": 0.037443
+ }
+ }
+ },
+ {
+ "domain": "dbis-api-2.d-bis.org",
+ "domain_type": "api",
+ "timestamp": "2026-03-27T13:41:01-07:00",
+ "tests": {
+ "dns": {
+ "status": "pass",
+ "resolved_ip": "76.53.10.36",
+ "expected_ip": "76.53.10.36"
+ },
+ "ssl": {
+ "status": "pass",
+ "cn": "dbis-api-2.d-bis.org",
+ "issuer": "E8",
+ "expires": "Apr 16 20:56:22 2026 GMT"
+ },
+ "https": {
+ "status": "pass",
+ "http_code": 200,
+ "response_time_seconds": 0.036568,
+ "has_hsts": true,
+ "has_csp": true,
+ "has_xfo": true
+ }
+ }
+ },
+ {
+ "domain": "secure.d-bis.org",
+ "domain_type": "web",
+ "timestamp": "2026-03-27T13:41:01-07:00",
+ "tests": {
+ "dns": {
+ "status": "pass",
+ "resolved_ip": "76.53.10.36",
+ "expected_ip": "76.53.10.36"
+ },
+ "ssl": {
+ "status": "pass",
+ "cn": "secure.d-bis.org",
+ "issuer": "E7",
+ "expires": "Apr 16 20:58:28 2026 GMT"
+ },
+ "https": {
+ "status": "pass",
+ "http_code": 200,
+ "response_time_seconds": 0.044836,
+ "has_hsts": true,
+ "has_csp": true,
+ "has_xfo": true
+ }
+ }
+ },
+ {
+ "domain": "rpc-hybx.d-bis.org",
+ "domain_type": "rpc-http",
+ "timestamp": "2026-03-27T13:41:01-07:00",
+ "tests": {
+ "dns": {
+ "status": "pass",
+ "resolved_ip": "104.21.86.131",
+ "expected_ip": "any"
+ },
+ "ssl": {
+ "status": "pass",
+ "cn": "d-bis.org",
+ "issuer": "WE1",
+ "expires": "May 27 07:40:56 2026 GMT"
+ },
+ "rpc_http": {
+ "status": "pass",
+ "chain_id": "0x8a"
+ }
+ }
+ },
+ {
+ "domain": "codespaces.d-bis.org",
+ "domain_type": "web",
+ "timestamp": "2026-03-27T13:41:02-07:00",
+ "tests": {
+ "dns": {
+ "status": "pass",
+ "resolved_ip": "172.67.220.49",
+ "expected_ip": "any"
+ },
+ "ssl": {
+ "status": "pass",
+ "cn": "d-bis.org",
+ "issuer": "WE1",
+ "expires": "May 27 07:40:56 2026 GMT"
+ },
+ "https": {
+ "status": "pass",
+ "http_code": 200,
+ "response_time_seconds": 0.102393,
+ "has_hsts": true,
+ "has_csp": false,
+ "has_xfo": true
+ }
+ }
+ },
+ {
+ "domain": "rpc.defi-oracle.io",
+ "domain_type": "rpc-http",
+ "timestamp": "2026-03-27T13:41:02-07:00",
+ "tests": {
+ "dns": {
+ "status": "pass",
+ "resolved_ip": "76.53.10.36",
+ "expected_ip": "76.53.10.36"
+ },
+ "ssl": {
+ "status": "pass",
+ "cn": "*",
+ "issuer": "*",
+ "expires": "May 19 19:15:03 3025 GMT"
+ },
+ "rpc_http": {
+ "status": "skip",
+ "http_code": "405",
+ "error": "\r\n405 Not Allowed\r\n\r\n405 Not Allowed
\r\n\r\n"
+ }
+ }
+ },
+ {
+ "domain": "ws.rpc2.d-bis.org",
+ "domain_type": "rpc-ws",
+ "timestamp": "2026-03-27T13:41:03-07:00",
+ "tests": {
+ "dns": {
+ "status": "pass",
+ "resolved_ip": "76.53.10.36",
+ "expected_ip": "76.53.10.36"
+ },
+ "ssl": {
+ "status": "pass",
+ "cn": "ws.rpc2.d-bis.org",
+ "issuer": "E7",
+ "expires": "Apr 30 03:43:58 2026 GMT"
+ },
+ "websocket": {
+ "status": "pass",
+ "http_code": "400",
+ "full_test": true,
+ "full_test_output": "result"
+ }
+ }
+ },
+ {
+ "domain": "cacti-alltra.d-bis.org",
+ "domain_type": "web",
+ "timestamp": "2026-03-27T13:41:08-07:00",
+ "tests": {
+ "dns": {
+ "status": "pass",
+ "resolved_ip": "104.21.86.131",
+ "expected_ip": "any"
+ },
+ "ssl": {
+ "status": "pass",
+ "cn": "d-bis.org",
+ "issuer": "WE1",
+ "expires": "May 27 07:40:56 2026 GMT"
+ },
+ "https": {
+ "status": "pass",
+ "http_code": 200,
+ "response_time_seconds": 0.133026,
+ "has_hsts": true,
+ "has_csp": false,
+ "has_xfo": true
+ }
+ }
+ }
+]
diff --git a/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/cacti-alltra_d-bis_org_https_headers.txt b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/cacti-alltra_d-bis_org_https_headers.txt
new file mode 100644
index 0000000..7b6c401
--- /dev/null
+++ b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/cacti-alltra_d-bis_org_https_headers.txt
@@ -0,0 +1,20 @@
+HTTP/2 200
+date: Fri, 27 Mar 2026 20:41:09 GMT
+content-type: text/html
+alt-svc: h3=":443"; ma=86400
+nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
+last-modified: Tue, 10 Mar 2026 14:38:11 GMT
+referrer-policy: strict-origin-when-cross-origin
+vary: Accept-Encoding
+x-content-type-options: nosniff
+x-dns-prefetch-control: off
+x-frame-options: SAMEORIGIN
+x-permitted-cross-domain-policies: none
+cf-cache-status: DYNAMIC
+strict-transport-security: max-age=31536000; includeSubDomains
+report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=f8NeZozda4HsovLIQL01oQj63nadMyYeqRDkiXAHVVtis4Io4fq6f5ClcyYkmhpL9CV%2FAUzvrqi5E6Rql%2Ft3Qa4YcM4WUjQP2gcVRnoTkTeJ2l5pQahvcWI5x5NtC1KocjV3p5BKlhQq"}]}
+server: cloudflare
+cf-ray: 9e3136d70f1727ec-LAX
+
+
+0.133026
diff --git a/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/cacti-hybx_d-bis_org_https_headers.txt b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/cacti-hybx_d-bis_org_https_headers.txt
new file mode 100644
index 0000000..062c229
--- /dev/null
+++ b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/cacti-hybx_d-bis_org_https_headers.txt
@@ -0,0 +1,20 @@
+HTTP/2 200
+date: Fri, 27 Mar 2026 20:40:35 GMT
+content-type: text/html
+alt-svc: h3=":443"; ma=86400
+nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
+last-modified: Tue, 10 Mar 2026 14:38:22 GMT
+referrer-policy: strict-origin-when-cross-origin
+vary: Accept-Encoding
+x-content-type-options: nosniff
+x-dns-prefetch-control: off
+x-frame-options: SAMEORIGIN
+x-permitted-cross-domain-policies: none
+cf-cache-status: DYNAMIC
+strict-transport-security: max-age=31536000; includeSubDomains
+report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=dWhmwhiBuOkBb4Zhh8n9L6nFgmZe3f8ajvfCrunlO1KNEanDxYaeT6e8c0Emd3%2FHzmdtEntKPMvGGzw3diaNrOWeNU3xchSFv5qBWDJ3fqZPTlYo0B872OcuyY9qXQNZ6cpk6dTxAA%3D%3D"}]}
+server: cloudflare
+cf-ray: 9e313602cda4c961-LAX
+
+
+0.122747
diff --git a/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/codespaces_d-bis_org_https_headers.txt b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/codespaces_d-bis_org_https_headers.txt
new file mode 100644
index 0000000..ddd0c6c
--- /dev/null
+++ b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/codespaces_d-bis_org_https_headers.txt
@@ -0,0 +1,17 @@
+HTTP/2 200
+date: Fri, 27 Mar 2026 20:41:02 GMT
+referrer-policy: strict-origin-when-cross-origin
+x-content-type-options: nosniff
+x-dns-prefetch-control: off
+x-frame-options: SAMEORIGIN
+x-permitted-cross-domain-policies: none
+cf-cache-status: DYNAMIC
+strict-transport-security: max-age=31536000; includeSubDomains
+report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=cmll2l6EthHdX14gJDNzEheLY%2FY3pxyXR1y4YXOJJBh5n%2FoCd2eTf%2F7bCVykHvaIeVNv2Qy5spUQWO1tFMr2VjTHrzD6X0Rioskcb%2F9GQM%2Bg0KXsCqvHrVo7dTBB%2BSrxNK3nrJM%2FKg%3D%3D"}]}
+nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
+server: cloudflare
+cf-ray: 9e3136b01b1b2b77-LAX
+alt-svc: h3=":443"; ma=86400
+
+
+0.102393
diff --git a/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/dapp_d-bis_org_https_headers.txt b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/dapp_d-bis_org_https_headers.txt
new file mode 100644
index 0000000..1b66bf8
--- /dev/null
+++ b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/dapp_d-bis_org_https_headers.txt
@@ -0,0 +1,15 @@
+HTTP/2 301
+date: Fri, 27 Mar 2026 20:40:38 GMT
+content-type: text/html
+location: https://dapp.d-bis.org/
+nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
+cf-cache-status: DYNAMIC
+strict-transport-security: max-age=31536000; includeSubDomains
+x-content-type-options: nosniff
+report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=cCinyCyPjx0pMhMVnxKaVzYP9WOUQH%2FmCcWha0MGYJfl6PQTI9l3Qq3cDXhErs9AgF0SzNdi2MvYScUg0JI6auoO5yteaMvEtrYnWpf0lF7rCDjI27y3tmCwfaNdXHNNdw%3D%3D"}]}
+server: cloudflare
+cf-ray: 9e31361adf372efc-LAX
+alt-svc: h3=":443"; ma=86400
+
+
+0.134693
diff --git a/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/dbis-admin_d-bis_org_https_headers.txt b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/dbis-admin_d-bis_org_https_headers.txt
new file mode 100644
index 0000000..8dc54e1
--- /dev/null
+++ b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/dbis-admin_d-bis_org_https_headers.txt
@@ -0,0 +1,20 @@
+HTTP/2 200
+date: Fri, 27 Mar 2026 20:40:33 GMT
+content-type: text/html
+content-length: 31
+vary: Accept-Encoding
+last-modified: Tue, 10 Mar 2026 14:34:29 GMT
+alt-svc: h3=":443"; ma=86400
+x-xss-protection: 0
+x-content-type-options: nosniff
+x-frame-options: SAMEORIGIN
+content-security-policy: upgrade-insecure-requests
+strict-transport-security: max-age=63072000; includeSubDomains; preload
+x-content-type-options: nosniff
+x-frame-options: SAMEORIGIN
+x-xss-protection: 1; mode=block
+referrer-policy: strict-origin-when-cross-origin
+content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https: data:; style-src 'self' 'unsafe-inline' https: data:; font-src 'self' https: data:; img-src 'self' data: https: blob:; connect-src 'self' https: wss: ws:; media-src 'self' https: data:; object-src 'none'; base-uri 'self'; form-action 'self' https:; frame-ancestors 'none'; upgrade-insecure-requests
+
+
+0.048185
diff --git a/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/dbis-api-2_d-bis_org_https_headers.txt b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/dbis-api-2_d-bis_org_https_headers.txt
new file mode 100644
index 0000000..d400470
--- /dev/null
+++ b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/dbis-api-2_d-bis_org_https_headers.txt
@@ -0,0 +1,19 @@
+HTTP/2 200
+date: Fri, 27 Mar 2026 20:41:01 GMT
+content-type: text/html; charset=utf-8
+content-length: 344
+vary: Accept-Encoding
+alt-svc: h3=":443"; ma=86400
+x-xss-protection: 0
+x-content-type-options: nosniff
+x-frame-options: SAMEORIGIN
+content-security-policy: upgrade-insecure-requests
+strict-transport-security: max-age=63072000; includeSubDomains; preload
+x-content-type-options: nosniff
+x-frame-options: SAMEORIGIN
+x-xss-protection: 1; mode=block
+referrer-policy: strict-origin-when-cross-origin
+content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https: data:; style-src 'self' 'unsafe-inline' https: data:; font-src 'self' https: data:; img-src 'self' data: https: blob:; connect-src 'self' https: wss: ws:; media-src 'self' https: data:; object-src 'none'; base-uri 'self'; form-action 'self' https:; frame-ancestors 'none'; upgrade-insecure-requests
+
+
+0.036568
diff --git a/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/dbis-api_d-bis_org_https_headers.txt b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/dbis-api_d-bis_org_https_headers.txt
new file mode 100644
index 0000000..49f5169
--- /dev/null
+++ b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/dbis-api_d-bis_org_https_headers.txt
@@ -0,0 +1,19 @@
+HTTP/2 200
+date: Fri, 27 Mar 2026 20:40:37 GMT
+content-type: text/html; charset=utf-8
+content-length: 344
+vary: Accept-Encoding
+alt-svc: h3=":443"; ma=86400
+x-xss-protection: 0
+x-content-type-options: nosniff
+x-frame-options: SAMEORIGIN
+content-security-policy: upgrade-insecure-requests
+strict-transport-security: max-age=63072000; includeSubDomains; preload
+x-content-type-options: nosniff
+x-frame-options: SAMEORIGIN
+x-xss-protection: 1; mode=block
+referrer-policy: strict-origin-when-cross-origin
+content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https: data:; style-src 'self' 'unsafe-inline' https: data:; font-src 'self' https: data:; img-src 'self' data: https: blob:; connect-src 'self' https: wss: ws:; media-src 'self' https: data:; object-src 'none'; base-uri 'self'; form-action 'self' https:; frame-ancestors 'none'; upgrade-insecure-requests
+
+
+0.052015
diff --git a/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/dev_d-bis_org_https_headers.txt b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/dev_d-bis_org_https_headers.txt
new file mode 100644
index 0000000..16fc32e
--- /dev/null
+++ b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/dev_d-bis_org_https_headers.txt
@@ -0,0 +1,17 @@
+HTTP/2 200
+date: Fri, 27 Mar 2026 20:40:59 GMT
+referrer-policy: strict-origin-when-cross-origin
+x-content-type-options: nosniff
+x-dns-prefetch-control: off
+x-frame-options: SAMEORIGIN
+x-permitted-cross-domain-policies: none
+cf-cache-status: DYNAMIC
+strict-transport-security: max-age=31536000; includeSubDomains
+report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=qmt%2BbVFJ2EwVGI0OLmGJL8Lkx%2BERxAEqJsPQuMWo1d4t3AYUZrwU%2BdIR5cmwtOQAqOsAZN7wOelPdw4h%2FZVFHpW7oct8yg40Aze3%2BhVjifrgWiDtGRAU8Z%2FIQ1jV%2BaKM"}]}
+nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
+server: cloudflare
+cf-ray: 9e313698ab19490e-LAX
+alt-svc: h3=":443"; ma=86400
+
+
+0.137467
diff --git a/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/explorer_d-bis_org_blockscout_api.txt b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/explorer_d-bis_org_blockscout_api.txt
new file mode 100644
index 0000000..d55cdaf
--- /dev/null
+++ b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/explorer_d-bis_org_blockscout_api.txt
@@ -0,0 +1 @@
+{"average_block_time":2.0e3,"coin_image":"https://coin-images.coingecko.com/coins/images/39140/small/ETH.png?1720706783","coin_price":"1975.13","coin_price_change_percentage":-8.93,"gas_price_updated_at":"2026-03-27T20:40:55.112693Z","gas_prices":{"slow":2.0,"average":2.0,"fast":2.0},"gas_prices_update_in":25339,"gas_used_today":"421762900","market_cap":"0.000","network_utilization_percentage":0.0491656,"secondary_coin_image":null,"secondary_coin_price":null,"static_gas_price":null,"total_addresses":"441","total_blocks":"3352124","total_gas_used":"0","total_transactions":"28499","transactions_today":"6704","tvl":null}
\ No newline at end of file
diff --git a/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/explorer_d-bis_org_https_headers.txt b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/explorer_d-bis_org_https_headers.txt
new file mode 100644
index 0000000..5ce3444
--- /dev/null
+++ b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/explorer_d-bis_org_https_headers.txt
@@ -0,0 +1,20 @@
+HTTP/2 200
+date: Fri, 27 Mar 2026 20:41:00 GMT
+content-type: text/html
+content-length: 79248
+vary: Accept-Encoding
+last-modified: Fri, 27 Mar 2026 20:39:14 GMT
+etag: "69c6eaf2-13590"
+cache-control: no-store, no-cache, must-revalidate
+content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://cdn.jsdelivr.net https://unpkg.com https://cdnjs.cloudflare.com; style-src 'self' 'unsafe-inline' https://cdnjs.cloudflare.com; img-src 'self' data: https:; font-src 'self' https://cdnjs.cloudflare.com; connect-src 'self' https://explorer.d-bis.org wss://explorer.d-bis.org https://rpc-http-pub.d-bis.org wss://rpc-ws-pub.d-bis.org http://192.168.11.221:8545 ws://192.168.11.221:8546;
+accept-ranges: bytes
+alt-svc: h3=":443"; ma=86400
+x-xss-protection: 0
+x-content-type-options: nosniff
+x-frame-options: SAMEORIGIN
+strict-transport-security: max-age=63072000; includeSubDomains; preload
+x-content-type-options: nosniff
+x-frame-options: SAMEORIGIN
+x-xss-protection: 1; mode=block
+referrer-policy: strict-origin-when-cross-origin
+content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https: data:; style-src 'self' 'unsafe-inline' https: data:; font-src 'self' https: data:; img-src 'self' data: https: blob:; connect-src 'self' https: wss: ws:; media-src 'self' https: data:; object-src 'none'; base-uri 'self'; form-action 'self' https:; frame-ancestors 'none'; upgrade-insecure-requests
diff --git a/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/gitea_d-bis_org_https_headers.txt b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/gitea_d-bis_org_https_headers.txt
new file mode 100644
index 0000000..cbf7214
--- /dev/null
+++ b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/gitea_d-bis_org_https_headers.txt
@@ -0,0 +1,17 @@
+HTTP/2 200
+date: Fri, 27 Mar 2026 20:41:00 GMT
+referrer-policy: strict-origin-when-cross-origin
+x-content-type-options: nosniff
+x-dns-prefetch-control: off
+x-frame-options: SAMEORIGIN
+x-permitted-cross-domain-policies: none
+cf-cache-status: DYNAMIC
+strict-transport-security: max-age=31536000; includeSubDomains
+report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=wY6qWCOjIlaaMg11zTMNBcKFuDsOIbZbbrXVu%2FRNkNMMsjETgQGbufbZo3Ow7YVZlAEYAt%2BFTRJ5mEeQgo8%2FQNy5JdOdzaP8VdFRy%2FfhnGk%2FzNAKZO8cjKCcfBu%2FQyHS0%2Bc%3D"}]}
+nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
+server: cloudflare
+cf-ray: 9e3136a0cd32d7ab-LAX
+alt-svc: h3=":443"; ma=86400
+
+
+0.113480
diff --git a/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/mifos_d-bis_org_https_headers.txt b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/mifos_d-bis_org_https_headers.txt
new file mode 100644
index 0000000..713548a
--- /dev/null
+++ b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/mifos_d-bis_org_https_headers.txt
@@ -0,0 +1,20 @@
+HTTP/2 200
+date: Fri, 27 Mar 2026 20:40:34 GMT
+content-type: text/html
+nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
+report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=Lg4tY0tUDoH9QvsPHHjl61IXVrGNonfx5jn4IiNf4HGj4VBE8QTez4vHyWTk%2FGh3DZcwXRbHprUcCuwmkzVuT7iMlHfEhViCaRXP49i98n1vXfkgzP8bA4FDoDCLlUfpB68%3D"}]}
+last-modified: Mon, 31 Mar 2025 07:37:06 GMT
+referrer-policy: strict-origin-when-cross-origin
+vary: Accept-Encoding
+x-content-type-options: nosniff
+x-dns-prefetch-control: off
+x-frame-options: SAMEORIGIN
+x-permitted-cross-domain-policies: none
+cf-cache-status: DYNAMIC
+strict-transport-security: max-age=31536000; includeSubDomains
+server: cloudflare
+cf-ray: 9e3135fd0c332b62-LAX
+alt-svc: h3=":443"; ma=86400
+
+
+0.129259
diff --git a/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/mim4u_org_https_headers.txt b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/mim4u_org_https_headers.txt
new file mode 100644
index 0000000..ac6394d
--- /dev/null
+++ b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/mim4u_org_https_headers.txt
@@ -0,0 +1,18 @@
+HTTP/2 502
+date: Fri, 27 Mar 2026 20:40:40 GMT
+content-type: text/html
+content-length: 122
+alt-svc: h3=":443"; ma=86400
+x-xss-protection: 0
+x-content-type-options: nosniff
+x-frame-options: SAMEORIGIN
+content-security-policy: upgrade-insecure-requests
+strict-transport-security: max-age=63072000; includeSubDomains; preload
+x-content-type-options: nosniff
+x-frame-options: SAMEORIGIN
+x-xss-protection: 1; mode=block
+referrer-policy: strict-origin-when-cross-origin
+content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https: data:; style-src 'self' 'unsafe-inline' https: data:; font-src 'self' https: data:; img-src 'self' data: https: blob:; connect-src 'self' https: wss: ws:; media-src 'self' https: data:; object-src 'none'; base-uri 'self'; form-action 'self' https:; frame-ancestors 'none'; upgrade-insecure-requests
+
+
+0.089702
diff --git a/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/phoenix_sankofa_nexus_https_headers.txt b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/phoenix_sankofa_nexus_https_headers.txt
new file mode 100644
index 0000000..9c91a44
--- /dev/null
+++ b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/phoenix_sankofa_nexus_https_headers.txt
@@ -0,0 +1,20 @@
+HTTP/2 200
+date: Fri, 27 Mar 2026 20:40:46 GMT
+content-type: application/json; charset=utf-8
+content-length: 54
+vary: Accept-Encoding
+x-content-type-options: nosniff
+x-frame-options: SAMEORIGIN
+x-xss-protection: 0
+strict-transport-security: max-age=63072000; includeSubDomains; preload
+content-security-policy: default-src 'self'; script-src 'self' 'nonce-f7oZ79fkmHF5pFaZFuVUNw=='; style-src 'self' 'nonce-f7oZ79fkmHF5pFaZFuVUNw=='; img-src 'self' data: https:; font-src 'self' data:; connect-src 'self'; frame-ancestors 'none'; base-uri 'self'; form-action 'self'; upgrade-insecure-requests
+referrer-policy: strict-origin-when-cross-origin
+permissions-policy: geolocation=(), microphone=(), camera=(), payment=(), usb=(), magnetometer=(), gyroscope=(), accelerometer=()
+x-permitted-cross-domain-policies: none
+cross-origin-embedder-policy: require-corp
+cross-origin-opener-policy: same-origin
+cross-origin-resource-policy: same-origin
+alt-svc: h3=":443"; ma=86400
+x-content-type-options: nosniff
+x-frame-options: SAMEORIGIN
+x-xss-protection: 1; mode=block
diff --git a/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/rpc-alltra-2_d-bis_org_rpc_response.txt b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/rpc-alltra-2_d-bis_org_rpc_response.txt
new file mode 100644
index 0000000..1283cc7
--- /dev/null
+++ b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/rpc-alltra-2_d-bis_org_rpc_response.txt
@@ -0,0 +1 @@
+{"jsonrpc":"2.0","id":1,"result":"0x8a"}
\ No newline at end of file
diff --git a/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/rpc-alltra-3_d-bis_org_rpc_response.txt b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/rpc-alltra-3_d-bis_org_rpc_response.txt
new file mode 100644
index 0000000..1283cc7
--- /dev/null
+++ b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/rpc-alltra-3_d-bis_org_rpc_response.txt
@@ -0,0 +1 @@
+{"jsonrpc":"2.0","id":1,"result":"0x8a"}
\ No newline at end of file
diff --git a/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/rpc-alltra_d-bis_org_rpc_response.txt b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/rpc-alltra_d-bis_org_rpc_response.txt
new file mode 100644
index 0000000..1283cc7
--- /dev/null
+++ b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/rpc-alltra_d-bis_org_rpc_response.txt
@@ -0,0 +1 @@
+{"jsonrpc":"2.0","id":1,"result":"0x8a"}
\ No newline at end of file
diff --git a/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/rpc-http-pub_d-bis_org_rpc_response.txt b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/rpc-http-pub_d-bis_org_rpc_response.txt
new file mode 100644
index 0000000..1283cc7
--- /dev/null
+++ b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/rpc-http-pub_d-bis_org_rpc_response.txt
@@ -0,0 +1 @@
+{"jsonrpc":"2.0","id":1,"result":"0x8a"}
\ No newline at end of file
diff --git a/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/rpc-hybx-2_d-bis_org_rpc_response.txt b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/rpc-hybx-2_d-bis_org_rpc_response.txt
new file mode 100644
index 0000000..1283cc7
--- /dev/null
+++ b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/rpc-hybx-2_d-bis_org_rpc_response.txt
@@ -0,0 +1 @@
+{"jsonrpc":"2.0","id":1,"result":"0x8a"}
\ No newline at end of file
diff --git a/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/rpc-hybx-3_d-bis_org_rpc_response.txt b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/rpc-hybx-3_d-bis_org_rpc_response.txt
new file mode 100644
index 0000000..1283cc7
--- /dev/null
+++ b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/rpc-hybx-3_d-bis_org_rpc_response.txt
@@ -0,0 +1 @@
+{"jsonrpc":"2.0","id":1,"result":"0x8a"}
\ No newline at end of file
diff --git a/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/rpc-hybx_d-bis_org_rpc_response.txt b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/rpc-hybx_d-bis_org_rpc_response.txt
new file mode 100644
index 0000000..1283cc7
--- /dev/null
+++ b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/rpc-hybx_d-bis_org_rpc_response.txt
@@ -0,0 +1 @@
+{"jsonrpc":"2.0","id":1,"result":"0x8a"}
\ No newline at end of file
diff --git a/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/rpc2_d-bis_org_rpc_response.txt b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/rpc2_d-bis_org_rpc_response.txt
new file mode 100644
index 0000000..1283cc7
--- /dev/null
+++ b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/rpc2_d-bis_org_rpc_response.txt
@@ -0,0 +1 @@
+{"jsonrpc":"2.0","id":1,"result":"0x8a"}
\ No newline at end of file
diff --git a/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/rpc_d-bis_org_rpc_response.txt b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/rpc_d-bis_org_rpc_response.txt
new file mode 100644
index 0000000..1283cc7
--- /dev/null
+++ b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/rpc_d-bis_org_rpc_response.txt
@@ -0,0 +1 @@
+{"jsonrpc":"2.0","id":1,"result":"0x8a"}
\ No newline at end of file
diff --git a/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/rpc_defi-oracle_io_rpc_response.txt b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/rpc_defi-oracle_io_rpc_response.txt
new file mode 100644
index 0000000..02c6980
--- /dev/null
+++ b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/rpc_defi-oracle_io_rpc_response.txt
@@ -0,0 +1,6 @@
+
+405 Not Allowed
+
+405 Not Allowed
+
+
diff --git a/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/rpc_public-0138_defi-oracle_io_rpc_response.txt b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/rpc_public-0138_defi-oracle_io_rpc_response.txt
new file mode 100644
index 0000000..a55ebe8
--- /dev/null
+++ b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/rpc_public-0138_defi-oracle_io_rpc_response.txt
@@ -0,0 +1 @@
+{"jsonrpc":"2.0","result":"0x8a","id":1}
\ No newline at end of file
diff --git a/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/sankofa_nexus_https_headers.txt b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/sankofa_nexus_https_headers.txt
new file mode 100644
index 0000000..82c731c
--- /dev/null
+++ b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/sankofa_nexus_https_headers.txt
@@ -0,0 +1,19 @@
+HTTP/2 200
+date: Fri, 27 Mar 2026 20:40:35 GMT
+content-type: text/html; charset=utf-8
+content-length: 5165
+vary: Accept-Encoding
+x-dns-prefetch-control: on
+strict-transport-security: max-age=63072000; includeSubDomains; preload
+x-frame-options: SAMEORIGIN
+x-content-type-options: nosniff
+x-xss-protection: 0
+referrer-policy: strict-origin-when-cross-origin
+permissions-policy: camera=(), microphone=(), geolocation=()
+content-security-policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; img-src 'self' data: https:; font-src 'self' data:; connect-src 'self' https:
+vary: RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding
+cache-control: s-maxage=31536000, stale-while-revalidate
+etag: "yc5tqwrxjc3zb"
+alt-svc: h3=":443"; ma=86400
+content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https: data:; style-src 'self' 'unsafe-inline' https: data:; font-src 'self' https: data:; img-src 'self' data: https: blob:; connect-src 'self' https: wss: ws:; media-src 'self' https: data:; object-src 'none'; base-uri 'self'; form-action 'self' https:; frame-ancestors 'none'; upgrade-insecure-requests
+
diff --git a/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/secure_d-bis_org_https_headers.txt b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/secure_d-bis_org_https_headers.txt
new file mode 100644
index 0000000..e95e1bd
--- /dev/null
+++ b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/secure_d-bis_org_https_headers.txt
@@ -0,0 +1,20 @@
+HTTP/2 200
+date: Fri, 27 Mar 2026 20:41:01 GMT
+content-type: text/html
+content-length: 31
+vary: Accept-Encoding
+last-modified: Tue, 10 Mar 2026 14:34:29 GMT
+alt-svc: h3=":443"; ma=86400
+x-xss-protection: 0
+x-content-type-options: nosniff
+x-frame-options: SAMEORIGIN
+content-security-policy: upgrade-insecure-requests
+strict-transport-security: max-age=63072000; includeSubDomains; preload
+x-content-type-options: nosniff
+x-frame-options: SAMEORIGIN
+x-xss-protection: 1; mode=block
+referrer-policy: strict-origin-when-cross-origin
+content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https: data:; style-src 'self' 'unsafe-inline' https: data:; font-src 'self' https: data:; img-src 'self' data: https: blob:; connect-src 'self' https: wss: ws:; media-src 'self' https: data:; object-src 'none'; base-uri 'self'; form-action 'self' https:; frame-ancestors 'none'; upgrade-insecure-requests
+
+
+0.044836
diff --git a/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/secure_mim4u_org_https_headers.txt b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/secure_mim4u_org_https_headers.txt
new file mode 100644
index 0000000..ad808ea
--- /dev/null
+++ b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/secure_mim4u_org_https_headers.txt
@@ -0,0 +1,18 @@
+HTTP/2 502
+date: Fri, 27 Mar 2026 20:41:00 GMT
+content-type: text/html
+content-length: 122
+alt-svc: h3=":443"; ma=86400
+x-xss-protection: 0
+x-content-type-options: nosniff
+x-frame-options: SAMEORIGIN
+content-security-policy: upgrade-insecure-requests
+strict-transport-security: max-age=63072000; includeSubDomains; preload
+x-content-type-options: nosniff
+x-frame-options: SAMEORIGIN
+x-xss-protection: 1; mode=block
+referrer-policy: strict-origin-when-cross-origin
+content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https: data:; style-src 'self' 'unsafe-inline' https: data:; font-src 'self' https: data:; img-src 'self' data: https: blob:; connect-src 'self' https: wss: ws:; media-src 'self' https: data:; object-src 'none'; base-uri 'self'; form-action 'self' https:; frame-ancestors 'none'; upgrade-insecure-requests
+
+
+0.039578
diff --git a/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/studio_sankofa_nexus_https_headers.txt b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/studio_sankofa_nexus_https_headers.txt
new file mode 100644
index 0000000..4c6384d
--- /dev/null
+++ b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/studio_sankofa_nexus_https_headers.txt
@@ -0,0 +1,14 @@
+HTTP/2 200
+date: Fri, 27 Mar 2026 20:40:37 GMT
+content-type: text/html; charset=utf-8
+vary: Accept-Encoding
+last-modified: Sat, 28 Feb 2026 16:54:14 GMT
+report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=APaBHQl3T2EffLK36x8sJc%2BO%2B68g7N88s1dlgFoPrOE0gYbpvsYqQ9HpZDwxv2W6NjikzornPFlO4tUw1QXBFdwKyM8vQ4W%2BCqo%2BgKJE6Dvfy7ZPr%2BzmVSXfQsV03Lb%2BRXoSpJZbTA%3D%3D"}]}
+nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
+cf-cache-status: DYNAMIC
+server: cloudflare
+cf-ray: 9e3136102ee1b860-LAX
+alt-svc: h3=":443"; ma=86400
+
+
+0.158212
diff --git a/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/the-order_sankofa_nexus_https_headers.txt b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/the-order_sankofa_nexus_https_headers.txt
new file mode 100644
index 0000000..5f34194
--- /dev/null
+++ b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/the-order_sankofa_nexus_https_headers.txt
@@ -0,0 +1,20 @@
+HTTP/2 200
+date: Fri, 27 Mar 2026 20:40:52 GMT
+content-type: text/html; charset=utf-8
+content-length: 5165
+vary: Accept-Encoding
+x-dns-prefetch-control: on
+strict-transport-security: max-age=63072000; includeSubDomains; preload
+x-frame-options: SAMEORIGIN
+x-content-type-options: nosniff
+x-xss-protection: 0
+referrer-policy: strict-origin-when-cross-origin
+permissions-policy: camera=(), microphone=(), geolocation=()
+content-security-policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; img-src 'self' data: https:; font-src 'self' data:; connect-src 'self' https:
+vary: RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding
+cache-control: s-maxage=31536000, stale-while-revalidate
+etag: "yc5tqwrxjc3zb"
+alt-svc: h3=":443"; ma=86400
+x-content-type-options: nosniff
+x-frame-options: SAMEORIGIN
+x-xss-protection: 1; mode=block
diff --git a/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/training_mim4u_org_https_headers.txt b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/training_mim4u_org_https_headers.txt
new file mode 100644
index 0000000..2867a07
--- /dev/null
+++ b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/training_mim4u_org_https_headers.txt
@@ -0,0 +1,18 @@
+HTTP/2 502
+date: Fri, 27 Mar 2026 20:41:01 GMT
+content-type: text/html
+content-length: 122
+alt-svc: h3=":443"; ma=86400
+x-xss-protection: 0
+x-content-type-options: nosniff
+x-frame-options: SAMEORIGIN
+content-security-policy: upgrade-insecure-requests
+strict-transport-security: max-age=63072000; includeSubDomains; preload
+x-content-type-options: nosniff
+x-frame-options: SAMEORIGIN
+x-xss-protection: 1; mode=block
+referrer-policy: strict-origin-when-cross-origin
+content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https: data:; style-src 'self' 'unsafe-inline' https: data:; font-src 'self' https: data:; img-src 'self' data: https: blob:; connect-src 'self' https: wss: ws:; media-src 'self' https: data:; object-src 'none'; base-uri 'self'; form-action 'self' https:; frame-ancestors 'none'; upgrade-insecure-requests
+
+
+0.037443
diff --git a/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/verification_report.md b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/verification_report.md
new file mode 100644
index 0000000..fec52e2
--- /dev/null
+++ b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/verification_report.md
@@ -0,0 +1,390 @@
+# End-to-End Routing Verification Report
+
+**Date**: 2026-03-27T13:41:09-07:00
+**Public IP**: 76.53.10.36
+**Profile**: public
+**Verifier**: intlc
+
+## All endpoints (38)
+
+| Domain | Type | URL |
+|--------|------|-----|
+| cacti-alltra.d-bis.org | web | https://cacti-alltra.d-bis.org |
+| cacti-hybx.d-bis.org | web | https://cacti-hybx.d-bis.org |
+| codespaces.d-bis.org | web | https://codespaces.d-bis.org |
+| dapp.d-bis.org | web | https://dapp.d-bis.org |
+| dbis-admin.d-bis.org | web | https://dbis-admin.d-bis.org |
+| dbis-api-2.d-bis.org | api | https://dbis-api-2.d-bis.org |
+| dbis-api.d-bis.org | api | https://dbis-api.d-bis.org |
+| dev.d-bis.org | web | https://dev.d-bis.org |
+| explorer.d-bis.org | web | https://explorer.d-bis.org |
+| gitea.d-bis.org | web | https://gitea.d-bis.org |
+| mifos.d-bis.org | web | https://mifos.d-bis.org |
+| mim4u.org | web | https://mim4u.org |
+| phoenix.sankofa.nexus | web | https://phoenix.sankofa.nexus |
+| rpc-alltra-2.d-bis.org | rpc-http | https://rpc-alltra-2.d-bis.org |
+| rpc-alltra-3.d-bis.org | rpc-http | https://rpc-alltra-3.d-bis.org |
+| rpc-alltra.d-bis.org | rpc-http | https://rpc-alltra.d-bis.org |
+| rpc-http-pub.d-bis.org | rpc-http | https://rpc-http-pub.d-bis.org |
+| rpc-hybx-2.d-bis.org | rpc-http | https://rpc-hybx-2.d-bis.org |
+| rpc-hybx-3.d-bis.org | rpc-http | https://rpc-hybx-3.d-bis.org |
+| rpc-hybx.d-bis.org | rpc-http | https://rpc-hybx.d-bis.org |
+| rpc-ws-pub.d-bis.org | rpc-ws | https://rpc-ws-pub.d-bis.org |
+| rpc.d-bis.org | rpc-http | https://rpc.d-bis.org |
+| rpc.defi-oracle.io | rpc-http | https://rpc.defi-oracle.io |
+| rpc.public-0138.defi-oracle.io | rpc-http | https://rpc.public-0138.defi-oracle.io |
+| rpc2.d-bis.org | rpc-http | https://rpc2.d-bis.org |
+| sankofa.nexus | web | https://sankofa.nexus |
+| secure.d-bis.org | web | https://secure.d-bis.org |
+| secure.mim4u.org | web | https://secure.mim4u.org |
+| studio.sankofa.nexus | web | https://studio.sankofa.nexus |
+| the-order.sankofa.nexus | web | https://the-order.sankofa.nexus |
+| training.mim4u.org | web | https://training.mim4u.org |
+| ws.rpc.d-bis.org | rpc-ws | https://ws.rpc.d-bis.org |
+| ws.rpc2.d-bis.org | rpc-ws | https://ws.rpc2.d-bis.org |
+| wss.defi-oracle.io | rpc-ws | https://wss.defi-oracle.io |
+| www.mim4u.org | web | https://www.mim4u.org |
+| www.phoenix.sankofa.nexus | web | https://www.phoenix.sankofa.nexus |
+| www.sankofa.nexus | web | https://www.sankofa.nexus |
+| www.the-order.sankofa.nexus | web | https://www.the-order.sankofa.nexus |
+
+## Summary
+
+- **Total domains tested**: 38
+- **DNS tests passed**: 38
+- **HTTPS tests passed**: 19
+- **Failed tests**: 0
+- **Skipped / optional (not configured or unreachable)**: 1
+- **Average response time**: 0.07994821739130435s
+
+## Results overview
+
+| Domain | Type | DNS | SSL | HTTPS | RPC |
+|--------|------|-----|-----|-------|-----|
+| dbis-admin.d-bis.org | web | pass | pass | pass | - |
+| rpc-alltra-3.d-bis.org | rpc-http | pass | pass | - | pass |
+| mifos.d-bis.org | web | pass | pass | pass | - |
+| rpc-hybx-2.d-bis.org | rpc-http | pass | pass | - | pass |
+| cacti-hybx.d-bis.org | web | pass | pass | pass | - |
+| sankofa.nexus | web | pass | pass | pass | - |
+| rpc-alltra.d-bis.org | rpc-http | pass | pass | - | pass |
+| rpc-http-pub.d-bis.org | rpc-http | pass | pass | - | pass |
+| rpc.public-0138.defi-oracle.io | rpc-http | pass | pass | - | pass |
+| studio.sankofa.nexus | web | pass | pass | pass | - |
+| dbis-api.d-bis.org | api | pass | pass | pass | - |
+| rpc-hybx-3.d-bis.org | rpc-http | pass | pass | - | pass |
+| rpc.d-bis.org | rpc-http | pass | pass | - | pass |
+| dapp.d-bis.org | web | pass | pass | pass | - |
+| www.sankofa.nexus | web | pass | pass | pass | - |
+| www.the-order.sankofa.nexus | web | pass | pass | pass | - |
+| mim4u.org | web | pass | pass | warn | - |
+| ws.rpc.d-bis.org | rpc-ws | pass | pass | - | - |
+| phoenix.sankofa.nexus | web | pass | pass | pass | - |
+| www.mim4u.org | web | pass | pass | warn | - |
+| wss.defi-oracle.io | rpc-ws | pass | pass | - | - |
+| the-order.sankofa.nexus | web | pass | pass | pass | - |
+| rpc2.d-bis.org | rpc-http | pass | pass | - | pass |
+| rpc-ws-pub.d-bis.org | rpc-ws | pass | pass | - | - |
+| dev.d-bis.org | web | pass | pass | pass | - |
+| rpc-alltra-2.d-bis.org | rpc-http | pass | pass | - | pass |
+| www.phoenix.sankofa.nexus | web | pass | pass | pass | - |
+| gitea.d-bis.org | web | pass | pass | pass | - |
+| secure.mim4u.org | web | pass | pass | warn | - |
+| explorer.d-bis.org | web | pass | pass | pass | - |
+| training.mim4u.org | web | pass | pass | warn | - |
+| dbis-api-2.d-bis.org | api | pass | pass | pass | - |
+| secure.d-bis.org | web | pass | pass | pass | - |
+| rpc-hybx.d-bis.org | rpc-http | pass | pass | - | pass |
+| codespaces.d-bis.org | web | pass | pass | pass | - |
+| rpc.defi-oracle.io | rpc-http | pass | pass | - | skip |
+| ws.rpc2.d-bis.org | rpc-ws | pass | pass | - | - |
+| cacti-alltra.d-bis.org | web | pass | pass | pass | - |
+
+## Test Results by Domain (detail)
+
+
+### dbis-admin.d-bis.org
+- Type: web
+- DNS: pass
+- SSL: pass
+- HTTPS: pass
+- Details: See `all_e2e_results.json`
+
+### rpc-alltra-3.d-bis.org
+- Type: rpc-http
+- DNS: pass
+- SSL: pass
+- RPC: pass
+- Details: See `all_e2e_results.json`
+
+### mifos.d-bis.org
+- Type: web
+- DNS: pass
+- SSL: pass
+- HTTPS: pass
+- Details: See `all_e2e_results.json`
+
+### rpc-hybx-2.d-bis.org
+- Type: rpc-http
+- DNS: pass
+- SSL: pass
+- RPC: pass
+- Details: See `all_e2e_results.json`
+
+### cacti-hybx.d-bis.org
+- Type: web
+- DNS: pass
+- SSL: pass
+- HTTPS: pass
+- Details: See `all_e2e_results.json`
+
+### sankofa.nexus
+- Type: web
+- DNS: pass
+- SSL: pass
+- HTTPS: pass
+- Details: See `all_e2e_results.json`
+
+### rpc-alltra.d-bis.org
+- Type: rpc-http
+- DNS: pass
+- SSL: pass
+- RPC: pass
+- Details: See `all_e2e_results.json`
+
+### rpc-http-pub.d-bis.org
+- Type: rpc-http
+- DNS: pass
+- SSL: pass
+- RPC: pass
+- Details: See `all_e2e_results.json`
+
+### rpc.public-0138.defi-oracle.io
+- Type: rpc-http
+- DNS: pass
+- SSL: pass
+- RPC: pass
+- Details: See `all_e2e_results.json`
+
+### studio.sankofa.nexus
+- Type: web
+- DNS: pass
+- SSL: pass
+- HTTPS: pass
+- Details: See `all_e2e_results.json`
+
+### dbis-api.d-bis.org
+- Type: api
+- DNS: pass
+- SSL: pass
+- HTTPS: pass
+- Details: See `all_e2e_results.json`
+
+### rpc-hybx-3.d-bis.org
+- Type: rpc-http
+- DNS: pass
+- SSL: pass
+- RPC: pass
+- Details: See `all_e2e_results.json`
+
+### rpc.d-bis.org
+- Type: rpc-http
+- DNS: pass
+- SSL: pass
+- RPC: pass
+- Details: See `all_e2e_results.json`
+
+### dapp.d-bis.org
+- Type: web
+- DNS: pass
+- SSL: pass
+- HTTPS: pass
+- Details: See `all_e2e_results.json`
+
+### www.sankofa.nexus
+- Type: web
+- DNS: pass
+- SSL: pass
+- HTTPS: pass
+- Details: See `all_e2e_results.json`
+
+### www.the-order.sankofa.nexus
+- Type: web
+- DNS: pass
+- SSL: pass
+- HTTPS: pass
+- Details: See `all_e2e_results.json`
+
+### mim4u.org
+- Type: web
+- DNS: pass
+- SSL: pass
+- HTTPS: warn
+- Details: See `all_e2e_results.json`
+
+### ws.rpc.d-bis.org
+- Type: rpc-ws
+- DNS: pass
+- SSL: pass
+- Details: See `all_e2e_results.json`
+
+### phoenix.sankofa.nexus
+- Type: web
+- DNS: pass
+- SSL: pass
+- HTTPS: pass
+- Details: See `all_e2e_results.json`
+
+### www.mim4u.org
+- Type: web
+- DNS: pass
+- SSL: pass
+- HTTPS: warn
+- Details: See `all_e2e_results.json`
+
+### wss.defi-oracle.io
+- Type: rpc-ws
+- DNS: pass
+- SSL: pass
+- Details: See `all_e2e_results.json`
+
+### the-order.sankofa.nexus
+- Type: web
+- DNS: pass
+- SSL: pass
+- HTTPS: pass
+- Details: See `all_e2e_results.json`
+
+### rpc2.d-bis.org
+- Type: rpc-http
+- DNS: pass
+- SSL: pass
+- RPC: pass
+- Details: See `all_e2e_results.json`
+
+### rpc-ws-pub.d-bis.org
+- Type: rpc-ws
+- DNS: pass
+- SSL: pass
+- Details: See `all_e2e_results.json`
+
+### dev.d-bis.org
+- Type: web
+- DNS: pass
+- SSL: pass
+- HTTPS: pass
+- Details: See `all_e2e_results.json`
+
+### rpc-alltra-2.d-bis.org
+- Type: rpc-http
+- DNS: pass
+- SSL: pass
+- RPC: pass
+- Details: See `all_e2e_results.json`
+
+### www.phoenix.sankofa.nexus
+- Type: web
+- DNS: pass
+- SSL: pass
+- HTTPS: pass
+- Details: See `all_e2e_results.json`
+
+### gitea.d-bis.org
+- Type: web
+- DNS: pass
+- SSL: pass
+- HTTPS: pass
+- Details: See `all_e2e_results.json`
+
+### secure.mim4u.org
+- Type: web
+- DNS: pass
+- SSL: pass
+- HTTPS: warn
+- Details: See `all_e2e_results.json`
+
+### explorer.d-bis.org
+- Type: web
+- DNS: pass
+- SSL: pass
+- HTTPS: pass
+- Blockscout API: pass
+- Details: See `all_e2e_results.json`
+
+### training.mim4u.org
+- Type: web
+- DNS: pass
+- SSL: pass
+- HTTPS: warn
+- Details: See `all_e2e_results.json`
+
+### dbis-api-2.d-bis.org
+- Type: api
+- DNS: pass
+- SSL: pass
+- HTTPS: pass
+- Details: See `all_e2e_results.json`
+
+### secure.d-bis.org
+- Type: web
+- DNS: pass
+- SSL: pass
+- HTTPS: pass
+- Details: See `all_e2e_results.json`
+
+### rpc-hybx.d-bis.org
+- Type: rpc-http
+- DNS: pass
+- SSL: pass
+- RPC: pass
+- Details: See `all_e2e_results.json`
+
+### codespaces.d-bis.org
+- Type: web
+- DNS: pass
+- SSL: pass
+- HTTPS: pass
+- Details: See `all_e2e_results.json`
+
+### rpc.defi-oracle.io
+- Type: rpc-http
+- DNS: pass
+- SSL: pass
+- RPC: skip
+- Details: See `all_e2e_results.json`
+
+### ws.rpc2.d-bis.org
+- Type: rpc-ws
+- DNS: pass
+- SSL: pass
+- Details: See `all_e2e_results.json`
+
+### cacti-alltra.d-bis.org
+- Type: web
+- DNS: pass
+- SSL: pass
+- HTTPS: pass
+- Details: See `all_e2e_results.json`
+
+## Files Generated
+
+- `all_e2e_results.json` - Complete E2E test results
+- `*_https_headers.txt` - HTTP response headers per domain
+- `*_rpc_response.txt` - RPC response per domain
+- `verification_report.md` - This report
+
+## Notes
+
+- **Optional domains:** Domains in `E2E_OPTIONAL_WHEN_FAIL` (default: many d-bis.org/sankofa/mim4u/rpc) have any fail treated as skip so the run passes when off-LAN or services unreachable. Set `E2E_OPTIONAL_WHEN_FAIL=` (empty) for strict mode.
+- WebSocket tests require `wscat` tool: `npm install -g wscat`
+- OpenSSL fetch uses `timeout` (`E2E_OPENSSL_TIMEOUT` / `E2E_OPENSSL_X509_TIMEOUT`, defaults 15s / 5s) so `openssl s_client` cannot hang indefinitely
+- Internal connectivity tests require access to NPMplus container
+- Explorer (explorer.d-bis.org): optional Blockscout API check; use `SKIP_BLOCKSCOUT_API=1` to skip when backend is unreachable (e.g. off-LAN). Fix runbook: docs/03-deployment/BLOCKSCOUT_FIX_RUNBOOK.md
+
+## Next Steps
+
+1. Review test results for each domain
+2. Investigate any failed tests
+3. Test WebSocket connections for RPC WS domains (if wscat available)
+4. Test internal connectivity from NPMplus container
+5. Update source-of-truth JSON after verification
diff --git a/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/www_mim4u_org_https_headers.txt b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/www_mim4u_org_https_headers.txt
new file mode 100644
index 0000000..89606e5
--- /dev/null
+++ b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/www_mim4u_org_https_headers.txt
@@ -0,0 +1,18 @@
+HTTP/2 502
+date: Fri, 27 Mar 2026 20:40:46 GMT
+content-type: text/html
+content-length: 122
+alt-svc: h3=":443"; ma=86400
+x-xss-protection: 0
+x-content-type-options: nosniff
+x-frame-options: SAMEORIGIN
+content-security-policy: upgrade-insecure-requests
+strict-transport-security: max-age=63072000; includeSubDomains; preload
+x-content-type-options: nosniff
+x-frame-options: SAMEORIGIN
+x-xss-protection: 1; mode=block
+referrer-policy: strict-origin-when-cross-origin
+content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https: data:; style-src 'self' 'unsafe-inline' https: data:; font-src 'self' https: data:; img-src 'self' data: https: blob:; connect-src 'self' https: wss: ws:; media-src 'self' https: data:; object-src 'none'; base-uri 'self'; form-action 'self' https:; frame-ancestors 'none'; upgrade-insecure-requests
+
+
+0.055618
diff --git a/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/www_phoenix_sankofa_nexus_https_headers.txt b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/www_phoenix_sankofa_nexus_https_headers.txt
new file mode 100644
index 0000000..bb84b98
--- /dev/null
+++ b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/www_phoenix_sankofa_nexus_https_headers.txt
@@ -0,0 +1,14 @@
+HTTP/2 301
+date: Fri, 27 Mar 2026 20:40:59 GMT
+content-type: text/html
+content-length: 134
+location: https://phoenix.sankofa.nexus/health
+alt-svc: h3=":443"; ma=86400
+x-xss-protection: 0
+x-content-type-options: nosniff
+x-frame-options: SAMEORIGIN
+content-security-policy: upgrade-insecure-requests
+strict-transport-security: max-age=63072000; includeSubDomains; preload
+
+
+0.071859
diff --git a/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/www_sankofa_nexus_https_headers.txt b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/www_sankofa_nexus_https_headers.txt
new file mode 100644
index 0000000..c978409
--- /dev/null
+++ b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/www_sankofa_nexus_https_headers.txt
@@ -0,0 +1,14 @@
+HTTP/2 301
+date: Fri, 27 Mar 2026 20:40:39 GMT
+content-type: text/html
+content-length: 134
+location: https://sankofa.nexus/
+alt-svc: h3=":443"; ma=86400
+x-xss-protection: 0
+x-content-type-options: nosniff
+x-frame-options: SAMEORIGIN
+content-security-policy: upgrade-insecure-requests
+strict-transport-security: max-age=63072000; includeSubDomains; preload
+
+
+0.047036
diff --git a/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/www_the-order_sankofa_nexus_https_headers.txt b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/www_the-order_sankofa_nexus_https_headers.txt
new file mode 100644
index 0000000..7bf3438
--- /dev/null
+++ b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134032/www_the-order_sankofa_nexus_https_headers.txt
@@ -0,0 +1,8 @@
+HTTP/2 301
+date: Fri, 27 Mar 2026 20:40:39 GMT
+content-type: text/html
+content-length: 134
+location: https://the-order.sankofa.nexus/
+
+
+0.043245
diff --git a/docs/04-configuration/verification-evidence/e2e-verification-20260327_134137/all_e2e_results.json b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134137/all_e2e_results.json
new file mode 100644
index 0000000..0945c5f
--- /dev/null
+++ b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134137/all_e2e_results.json
@@ -0,0 +1,94 @@
+[
+ {
+ "domain": "ws.rpc-fireblocks.d-bis.org",
+ "domain_type": "rpc-ws",
+ "timestamp": "2026-03-27T13:41:37-07:00",
+ "tests": {
+ "dns": {
+ "status": "pass",
+ "resolved_ip": "76.53.10.36",
+ "expected_ip": "76.53.10.36"
+ },
+ "ssl": {
+ "status": "pass",
+ "cn": "ws.rpc-fireblocks.d-bis.org",
+ "issuer": "E8",
+ "expires": "May 22 21:48:21 2026 GMT"
+ },
+ "websocket": {
+ "status": "pass",
+ "http_code": "400",
+ "full_test": true,
+ "full_test_output": "result"
+ }
+ }
+ },
+ {
+ "domain": "rpc-http-prv.d-bis.org",
+ "domain_type": "rpc-http",
+ "timestamp": "2026-03-27T13:41:43-07:00",
+ "tests": {
+ "dns": {
+ "status": "pass",
+ "resolved_ip": "76.53.10.36",
+ "expected_ip": "76.53.10.36"
+ },
+ "ssl": {
+ "status": "pass",
+ "cn": "rpc-http-prv.d-bis.org",
+ "issuer": "E7",
+ "expires": "Jun 25 16:00:12 2026 GMT"
+ },
+ "rpc_http": {
+ "status": "pass",
+ "chain_id": "0x8a"
+ }
+ }
+ },
+ {
+ "domain": "rpc-fireblocks.d-bis.org",
+ "domain_type": "rpc-http",
+ "timestamp": "2026-03-27T13:41:43-07:00",
+ "tests": {
+ "dns": {
+ "status": "pass",
+ "resolved_ip": "76.53.10.36",
+ "expected_ip": "76.53.10.36"
+ },
+ "ssl": {
+ "status": "pass",
+ "cn": "rpc-fireblocks.d-bis.org",
+ "issuer": "E8",
+ "expires": "May 22 21:47:15 2026 GMT"
+ },
+ "rpc_http": {
+ "status": "pass",
+ "chain_id": "0x8a"
+ }
+ }
+ },
+ {
+ "domain": "rpc-ws-prv.d-bis.org",
+ "domain_type": "rpc-ws",
+ "timestamp": "2026-03-27T13:41:44-07:00",
+ "tests": {
+ "dns": {
+ "status": "pass",
+ "resolved_ip": "76.53.10.36",
+ "expected_ip": "76.53.10.36"
+ },
+ "ssl": {
+ "status": "pass",
+ "cn": "rpc-ws-prv.d-bis.org",
+ "issuer": "E7",
+ "expires": "Jun 16 06:48:19 2026 GMT"
+ },
+ "websocket": {
+ "status": "pass",
+ "http_code": "400",
+ "full_test": true,
+ "full_test_output": "result"
+ }
+ }
+ }
+]
diff --git a/docs/04-configuration/verification-evidence/e2e-verification-20260327_134137/rpc-fireblocks_d-bis_org_rpc_response.txt b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134137/rpc-fireblocks_d-bis_org_rpc_response.txt
new file mode 100644
index 0000000..1283cc7
--- /dev/null
+++ b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134137/rpc-fireblocks_d-bis_org_rpc_response.txt
@@ -0,0 +1 @@
+{"jsonrpc":"2.0","id":1,"result":"0x8a"}
\ No newline at end of file
diff --git a/docs/04-configuration/verification-evidence/e2e-verification-20260327_134137/rpc-http-prv_d-bis_org_rpc_response.txt b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134137/rpc-http-prv_d-bis_org_rpc_response.txt
new file mode 100644
index 0000000..1283cc7
--- /dev/null
+++ b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134137/rpc-http-prv_d-bis_org_rpc_response.txt
@@ -0,0 +1 @@
+{"jsonrpc":"2.0","id":1,"result":"0x8a"}
\ No newline at end of file
diff --git a/docs/04-configuration/verification-evidence/e2e-verification-20260327_134137/verification_report.md b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134137/verification_report.md
new file mode 100644
index 0000000..74a3542
--- /dev/null
+++ b/docs/04-configuration/verification-evidence/e2e-verification-20260327_134137/verification_report.md
@@ -0,0 +1,85 @@
+# End-to-End Routing Verification Report
+
+**Date**: 2026-03-27T13:41:49-07:00
+**Public IP**: 76.53.10.36
+**Profile**: private
+**Verifier**: intlc
+
+## All endpoints (4)
+
+| Domain | Type | URL |
+|--------|------|-----|
+| rpc-fireblocks.d-bis.org | rpc-http | https://rpc-fireblocks.d-bis.org |
+| rpc-http-prv.d-bis.org | rpc-http | https://rpc-http-prv.d-bis.org |
+| rpc-ws-prv.d-bis.org | rpc-ws | https://rpc-ws-prv.d-bis.org |
+| ws.rpc-fireblocks.d-bis.org | rpc-ws | https://ws.rpc-fireblocks.d-bis.org |
+
+## Summary
+
+- **Total domains tested**: 4
+- **DNS tests passed**: 4
+- **HTTPS tests passed**: 0
+- **Failed tests**: 0
+- **Skipped / optional (not configured or unreachable)**: 0
+- **Average response time**: 0s
+
+## Results overview
+
+| Domain | Type | DNS | SSL | HTTPS | RPC |
+|--------|------|-----|-----|-------|-----|
+| ws.rpc-fireblocks.d-bis.org | rpc-ws | pass | pass | - | - |
+| rpc-http-prv.d-bis.org | rpc-http | pass | pass | - | pass |
+| rpc-fireblocks.d-bis.org | rpc-http | pass | pass | - | pass |
+| rpc-ws-prv.d-bis.org | rpc-ws | pass | pass | - | - |
+
+## Test Results by Domain (detail)
+
+
+### ws.rpc-fireblocks.d-bis.org
+- Type: rpc-ws
+- DNS: pass
+- SSL: pass
+- Details: See `all_e2e_results.json`
+
+### rpc-http-prv.d-bis.org
+- Type: rpc-http
+- DNS: pass
+- SSL: pass
+- RPC: pass
+- Details: See `all_e2e_results.json`
+
+### rpc-fireblocks.d-bis.org
+- Type: rpc-http
+- DNS: pass
+- SSL: pass
+- RPC: pass
+- Details: See `all_e2e_results.json`
+
+### rpc-ws-prv.d-bis.org
+- Type: rpc-ws
+- DNS: pass
+- SSL: pass
+- Details: See `all_e2e_results.json`
+
+## Files Generated
+
+- `all_e2e_results.json` - Complete E2E test results
+- `*_https_headers.txt` - HTTP response headers per domain
+- `*_rpc_response.txt` - RPC response per domain
+- `verification_report.md` - This report
+
+## Notes
+
+- **Optional domains:** Domains in `E2E_OPTIONAL_WHEN_FAIL` (default: many d-bis.org/sankofa/mim4u/rpc) have any fail treated as skip so the run passes when off-LAN or services unreachable. Set `E2E_OPTIONAL_WHEN_FAIL=` (empty) for strict mode.
+- WebSocket tests require `wscat` tool: `npm install -g wscat`
+- OpenSSL fetch uses `timeout` (`E2E_OPENSSL_TIMEOUT` / `E2E_OPENSSL_X509_TIMEOUT`, defaults 15s / 5s) so `openssl s_client` cannot hang indefinitely
+- Internal connectivity tests require access to NPMplus container
+- Explorer (explorer.d-bis.org): optional Blockscout API check; use `SKIP_BLOCKSCOUT_API=1` to skip when backend is unreachable (e.g. off-LAN). Fix runbook: docs/03-deployment/BLOCKSCOUT_FIX_RUNBOOK.md
+
+## Next Steps
+
+1. Review test results for each domain
+2. Investigate any failed tests
+3. Test WebSocket connections for RPC WS domains (if wscat available)
+4. Test internal connectivity from NPMplus container
+5. Update source-of-truth JSON after verification