Record latest public E2E verification evidence

docs/04-configuration/ALL_VMIDS_ENDPOINTS.md

@@ -351,7 +351,7 @@ The following VMIDs were the older `25xx` RPC identities before the `21xx/22xx/2
 - `the-order.sankofa.nexus` / `www.the-order.sankofa.nexus` → OSJ management portal (secure auth). App source: **the_order** at `~/projects/the_order`. NPMplus default upstream: **order-haproxy** `http://192.168.11.39:80` (VMID **10210**), which proxies to Sankofa portal `http://192.168.11.51:3000` (7801). Fallback: set `THE_ORDER_UPSTREAM_IP` / `THE_ORDER_UPSTREAM_PORT` to `.51` / `3000` if HAProxy is offline. **`www.the-order.sankofa.nexus`** → **301** **`https://the-order.sankofa.nexus`** (same as `www.sankofa` / `www.phoenix`).
 - `studio.sankofa.nexus` → Routes to `http://192.168.11.72:8000` (Sankofa Studio / VMID 7805; app-owned `/` → `/studio/` redirect)
 
-**Public verification evidence (2026-04-05):** `bash scripts/verify/verify-end-to-end-routing.sh --profile=public` passed with `DNS passed: 60`, `HTTPS passed: 44`, and `Failed: 0`; Sankofa root, portal, admin, Studio, Phoenix, The Order, and `info.defi-oracle.io` all returned healthy responses. See [verification_report.md](verification-evidence/e2e-verification-20260405_160949/verification_report.md).
+**Public verification evidence (2026-04-13):** `bash scripts/verify/verify-end-to-end-routing.sh --profile=public` passed with `DNS passed: 60`, `HTTPS passed: 43`, and `Failed: 0`; Sankofa root, portal, admin, Studio, Phoenix, The Order, DBIS surfaces, Blockscout, and `info.defi-oracle.io` all returned healthy responses. See [verification_report.md](verification-evidence/e2e-verification-20260413_213757/verification_report.md).
 
 **Service Details:**
 - **Host:** r630-01 (192.168.11.11)

docs/04-configuration/E2E_ENDPOINTS_LIST.md

@@ -9,7 +9,7 @@
 
 **What each hostname should present (operator narrative):** [FQDN_EXPECTED_CONTENT.md](FQDN_EXPECTED_CONTENT.md).
 
-**Latest verified public transport/TLS pass:** `2026-04-02` via `bash scripts/verify/verify-end-to-end-routing.sh --profile=public` with report at [verification_report.md](verification-evidence/e2e-verification-20260402_130259/verification_report.md). Result: exit `0`, `DNS passed: 60`, `Failed: 0`, `HTTPS passed: 44` — includes the repaired DBIS, Keycloak, Studio, `info.defi-oracle.io`, `data.d-bis.org /v1/health`, and both Cacti hostnames.
+**Latest verified public transport/TLS pass:** `2026-04-13` via `bash scripts/verify/verify-end-to-end-routing.sh --profile=public` with report at [verification_report.md](verification-evidence/e2e-verification-20260413_213757/verification_report.md). Result: exit `0`, `DNS passed: 60`, `Failed: 0`, `HTTPS passed: 43` — includes the current Sankofa, DBIS, Blockscout, `info.defi-oracle.io`, `data.d-bis.org /v1/health`, and public Chain 138 RPC surfaces.
 **Resolved public regression snapshot:** the earlier `2026-04-02` regression run at [verification_report.md](verification-evidence/e2e-verification-20260402_074223/verification_report.md) is now historical only; its DBIS, Keycloak, Cacti, Studio, and `info.defi-oracle.io` warnings were resolved later the same day.
 **2026-04-01 verifier tightening:** `verify-end-to-end-routing.sh` rejects placeholder directory listings for **`core.d-bis.org`**, **`dbis-api.d-bis.org`**, and **`dbis-api-2.d-bis.org`**. The current `2026-04-02` pass succeeds because those hosts now serve the real DBIS API/runtime, not static placeholder content.
 **2026-04-04 explorer E2E tightening:** the canonical explorer **`explorer.d-bis.org`** is no longer treated as `optional-when-fail` in the public profile. The explorer-specific verifier now also checks the static **Visual Command Center** and the live **Mission Control** stream, bridge trace, and liquidity endpoints.

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/admin_d-bis_org_https_headers.txt

@@ -0,0 +1,17 @@
+HTTP/2 200 
+date: Tue, 14 Apr 2026 04:38:33 GMT
+content-type: text/html
+content-length: 795
+vary: Accept-Encoding
+last-modified: Thu, 02 Apr 2026 19:27:04 GMT
+etag: "69cec308-31b"
+x-frame-options: SAMEORIGIN
+x-content-type-options: nosniff
+x-xss-protection: 0
+accept-ranges: bytes
+alt-svc: h3=":443"; ma=86400
+content-security-policy: upgrade-insecure-requests
+strict-transport-security: max-age=63072000; includeSubDomains; preload
+
+
+0.036670

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/admin_sankofa_nexus_https_headers.txt

@@ -0,0 +1,20 @@
+HTTP/2 200 
+date: Tue, 14 Apr 2026 04:37:59 GMT
+content-type: text/html; charset=utf-8
+content-length: 5259
+vary: Accept-Encoding
+x-dns-prefetch-control: on
+strict-transport-security: max-age=63072000; includeSubDomains; preload
+x-frame-options: SAMEORIGIN
+x-content-type-options: nosniff
+x-xss-protection: 0
+referrer-policy: strict-origin-when-cross-origin
+permissions-policy: camera=(), microphone=(), geolocation=()
+content-security-policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; img-src 'self' data: https:; font-src 'self' data:; connect-src 'self' https:
+vary: RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding
+cache-control: s-maxage=31536000, stale-while-revalidate
+etag: "oibim89srm41x"
+alt-svc: h3=":443"; ma=86400
+
+
+0.101206

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/blockscout_defi-oracle_io_blockscout_api.txt

@@ -0,0 +1 @@
+{"total_blocks":3988859,"total_transactions":54618,"total_addresses":6794,"latest_block":3988858,"average_block_time":2000,"gas_prices":{"average":0.00000100021},"network_utilization_percentage":0,"transactions_today":2,"freshness":{"chain_head":{"block_number":3988858,"timestamp":"2026-04-14T04:39:03Z","age_seconds":1,"source":"reported","confidence":"high","provenance":"rpc","completeness":"complete"},"latest_indexed_block":{"block_number":3988858,"timestamp":"2026-04-14T04:39:03Z","age_seconds":1,"source":"reported","confidence":"high","provenance":"explorer_index","completeness":"complete"},"latest_indexed_transaction":{"block_number":3955203,"timestamp":"2026-04-13T09:57:13Z","age_seconds":67311,"hash":"0xf39682ae6d23f52dd8a701c75febae320e092efcd11cc9156779bde41435121c","source":"reported","confidence":"high","provenance":"tx_index","completeness":"stale"},"latest_non_empty_block":{"block_number":3955203,"timestamp":"2026-04-13T09:57:13Z","age_seconds":67311,"distance_from_head":33655,"source":"reported","confidence":"high","provenance":"tx_index","completeness":"stale"}},"completeness":{"transactions_feed":"stale","blocks_feed":"complete","gas_metrics":"complete","utilization_metrics":"complete"},"sampling":{"stats_generated_at":"2026-04-14T04:39:04Z","rpc_probe_at":"2026-04-14T04:39:03Z","stats_window_seconds":300},"diagnostics":{"tx_visibility_state":"stale","activity_state":"quiet_chain","explanation":"Recent sampled head blocks are empty, which indicates a quiet chain rather than a broken explorer.","tx_lag_blocks":33655,"tx_lag_seconds":67311,"recent_block_sample_size":128,"recent_non_empty_blocks":0,"recent_transactions":0,"latest_non_empty_block_from_block_feed":{"block_number":3955203,"timestamp":"2026-04-13T09:57:13Z","age_seconds":67311,"distance_from_head":33655,"source":"derived","confidence":"medium","provenance":"composite","completeness":"stale"},"source":"reported","confidence":"medium","provenance":"composite","completeness":"complete"}}

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/blockscout_defi-oracle_io_https_headers.txt

@@ -0,0 +1,18 @@
+HTTP/2 200 
+date: Tue, 14 Apr 2026 04:39:03 GMT
+content-type: text/html; charset=utf-8
+content-length: 112401
+vary: Accept-Encoding
+etag: "73xmbdy0q42ep2"
+vary: Accept-Encoding
+cache-control: no-store, no-cache, must-revalidate
+referrer-policy: strict-origin-when-cross-origin
+content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://cdn.jsdelivr.net https://unpkg.com https://cdnjs.cloudflare.com; style-src 'self' 'unsafe-inline' https://cdnjs.cloudflare.com; img-src 'self' data: https:; font-src 'self' https://cdnjs.cloudflare.com; connect-src 'self' https://blockscout.defi-oracle.io wss://blockscout.defi-oracle.io https://explorer.d-bis.org wss://explorer.d-bis.org https://rpc-http-pub.d-bis.org wss://rpc-ws-pub.d-bis.org http://192.168.11.221:8545 ws://192.168.11.221:8546;
+alt-svc: h3=":443"; ma=86400
+x-xss-protection: 0
+x-content-type-options: nosniff
+x-frame-options: SAMEORIGIN
+strict-transport-security: max-age=63072000; includeSubDomains; preload
+
+
+0.818945

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/cacti-alltra_d-bis_org_https_headers.txt

@@ -0,0 +1,20 @@
+HTTP/2 200 
+date: Tue, 14 Apr 2026 04:39:12 GMT
+content-type: text/html
+alt-svc: h3=":443"; ma=86400
+nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
+report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=4gAWxlUG3ZfjH3ES4S9IG7oqUk94JlEjGqt7tdHdmhtKTZTo0kFB3ylfqJqHSedOiMXrl7KwKAypOT3ZK0ihmAOProjapXZ5b93%2Fqqx3aG%2FgA7iSs8ShzP9lJ1KsiLR2TC%2FW9TW0CVdg"}]}
+last-modified: Thu, 02 Apr 2026 19:42:29 GMT
+referrer-policy: strict-origin-when-cross-origin
+vary: Accept-Encoding
+x-content-type-options: nosniff
+x-dns-prefetch-control: off
+x-frame-options: SAMEORIGIN
+x-permitted-cross-domain-policies: none
+cf-cache-status: DYNAMIC
+strict-transport-security: max-age=31536000; includeSubDomains
+server: cloudflare
+cf-ray: 9ec0067f1ad9cb96-LAX
+
+
+0.132701

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/cacti-hybx_d-bis_org_https_headers.txt

@@ -0,0 +1,20 @@
+HTTP/2 200 
+date: Tue, 14 Apr 2026 04:38:01 GMT
+content-type: text/html
+alt-svc: h3=":443"; ma=86400
+nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
+report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=qUMMjoJphS8u1VLGdNxqjlGx2%2BlFDONf3ByJIGqJCgHrkKG9NW%2FvxdyjkxeTKhWQq%2BnTb6cBZWTpP4SW3XzfL8vMl6J%2Ba6lcrWBYSCoE%2FQNyOmBAU7UE16ftkRgqebIKZaFUYq1bzw%3D%3D"}]}
+last-modified: Thu, 02 Apr 2026 19:42:29 GMT
+referrer-policy: strict-origin-when-cross-origin
+vary: Accept-Encoding
+x-content-type-options: nosniff
+x-dns-prefetch-control: off
+x-frame-options: SAMEORIGIN
+x-permitted-cross-domain-policies: none
+cf-cache-status: DYNAMIC
+strict-transport-security: max-age=31536000; includeSubDomains
+server: cloudflare
+cf-ray: 9ec004c41e7ef4ef-LAX
+
+
+0.152896

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/codespaces_d-bis_org_https_headers.txt

@@ -0,0 +1,10 @@
+HTTP/2 200 
+date: Tue, 14 Apr 2026 04:39:06 GMT
+x-dns-prefetch-control: off
+x-content-type-options: nosniff
+x-permitted-cross-domain-policies: none
+referrer-policy: strict-origin-when-cross-origin
+x-frame-options: SAMEORIGIN
+
+
+0.043850

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/core_d-bis_org_https_body.txt

@@ -0,0 +1 @@
+{"service":"dbis-core-banking-system","status":"healthy","version":"1.0.0","docs":"/api-docs","health":"/health"}

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/core_d-bis_org_https_headers.txt

@@ -0,0 +1,20 @@
+HTTP/2 200 
+date: Tue, 14 Apr 2026 04:37:57 GMT
+content-type: application/json; charset=utf-8
+content-length: 113
+vary: Accept-Encoding
+content-security-policy: default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';img-src 'self' data:;object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests
+cross-origin-opener-policy: same-origin
+cross-origin-resource-policy: same-origin
+origin-agent-cluster: ?1
+referrer-policy: no-referrer
+strict-transport-security: max-age=63072000; includeSubDomains; preload
+x-content-type-options: nosniff
+x-dns-prefetch-control: off
+x-download-options: noopen
+x-frame-options: SAMEORIGIN
+x-permitted-cross-domain-policies: none
+x-xss-protection: 0
+x-trace-id: 1633aae33134b8d463b6191e250ea32d
+x-span-id: 129c8df55f6a7732
+x-parent-span-id: 

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/d-bis_org_https_headers.txt

@@ -0,0 +1,18 @@
+HTTP/2 200 
+date: Tue, 14 Apr 2026 04:39:05 GMT
+content-type: text/html; charset=utf-8
+content-length: 22505
+vary: Accept-Encoding
+x-frame-options: SAMEORIGIN
+x-content-type-options: nosniff
+referrer-policy: strict-origin-when-cross-origin
+content-security-policy: default-src 'self'; script-src 'self'; style-src 'self' 'unsafe-inline'; img-src 'self' data: https:; font-src 'self'; connect-src 'self'; frame-ancestors 'none'; base-uri 'self'; form-action 'self'
+vary: RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding
+cache-control: s-maxage=31536000, stale-while-revalidate
+etag: "fqzlq2o9ljhd0"
+alt-svc: h3=":443"; ma=86400
+x-xss-protection: 0
+strict-transport-security: max-age=63072000; includeSubDomains; preload
+
+
+0.042445

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/dapp_d-bis_org_https_headers.txt

@@ -0,0 +1,12 @@
+HTTP/2 200 
+date: Tue, 14 Apr 2026 04:38:13 GMT
+content-type: text/html
+content-length: 470
+vary: Accept-Encoding
+last-modified: Sun, 22 Feb 2026 04:25:15 GMT
+etag: "699a852b-1d6"
+content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; font-src 'self' https://fonts.gstatic.com; img-src 'self' data: https:; connect-src 'self' https: wss: http://192.168.11.221:8545 ws://192.168.11.221:8546 https://rpc-http-pub.d-bis.org wss://rpc-ws-pub.d-bis.org; frame-src 'self' https:; frame-ancestors 'self';
+accept-ranges: bytes
+
+
+0.044502

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/dash_sankofa_nexus_https_headers.txt

@@ -0,0 +1,20 @@
+HTTP/2 200 
+date: Tue, 14 Apr 2026 04:37:59 GMT
+content-type: text/html; charset=utf-8
+content-length: 5259
+vary: Accept-Encoding
+x-dns-prefetch-control: on
+strict-transport-security: max-age=63072000; includeSubDomains; preload
+x-frame-options: SAMEORIGIN
+x-content-type-options: nosniff
+x-xss-protection: 0
+referrer-policy: strict-origin-when-cross-origin
+permissions-policy: camera=(), microphone=(), geolocation=()
+content-security-policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; img-src 'self' data: https:; font-src 'self' data:; connect-src 'self' https:
+vary: RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding
+cache-control: s-maxage=31536000, stale-while-revalidate
+etag: "oibim89srm41x"
+alt-svc: h3=":443"; ma=86400
+
+
+0.047525

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/data_d-bis_org_https_headers.txt

@@ -0,0 +1,20 @@
+HTTP/2 200 
+date: Tue, 14 Apr 2026 04:38:15 GMT
+content-type: application/json; charset=utf-8
+content-length: 100
+vary: Accept-Encoding
+content-security-policy: default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';img-src 'self' data:;object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests
+cross-origin-opener-policy: same-origin
+cross-origin-resource-policy: same-origin
+origin-agent-cluster: ?1
+referrer-policy: no-referrer
+strict-transport-security: max-age=63072000; includeSubDomains; preload
+x-content-type-options: nosniff
+x-dns-prefetch-control: off
+x-download-options: noopen
+x-frame-options: SAMEORIGIN
+x-permitted-cross-domain-policies: none
+x-xss-protection: 0
+x-trace-id: 7a3b504e7e7681d567909907672bb5f7
+x-span-id: 90fc7d122f1795fd
+x-parent-span-id: 

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/dbis-admin_d-bis_org_https_headers.txt

@@ -0,0 +1,18 @@
+HTTP/2 200 
+date: Tue, 14 Apr 2026 04:37:56 GMT
+content-type: text/html
+content-length: 795
+vary: Accept-Encoding
+last-modified: Thu, 02 Apr 2026 19:27:04 GMT
+etag: "69cec308-31b"
+x-frame-options: SAMEORIGIN
+x-content-type-options: nosniff
+x-xss-protection: 0
+accept-ranges: bytes
+alt-svc: h3=":443"; ma=86400
+content-security-policy: upgrade-insecure-requests
+strict-transport-security: max-age=63072000; includeSubDomains; preload
+referrer-policy: strict-origin-when-cross-origin
+
+
+0.031632

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/dbis-api-2_d-bis_org_https_body.txt

@@ -0,0 +1 @@
+{"service":"dbis-core-banking-system","status":"healthy","version":"1.0.0","docs":"/api-docs","health":"/health"}

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/dbis-api-2_d-bis_org_https_headers.txt

@@ -0,0 +1,20 @@
+HTTP/2 200 
+date: Tue, 14 Apr 2026 04:39:04 GMT
+content-type: application/json; charset=utf-8
+content-length: 113
+vary: Accept-Encoding
+content-security-policy: default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';img-src 'self' data:;object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests
+cross-origin-opener-policy: same-origin
+cross-origin-resource-policy: same-origin
+origin-agent-cluster: ?1
+referrer-policy: no-referrer
+strict-transport-security: max-age=63072000; includeSubDomains; preload
+x-content-type-options: nosniff
+x-dns-prefetch-control: off
+x-download-options: noopen
+x-frame-options: SAMEORIGIN
+x-permitted-cross-domain-policies: none
+x-xss-protection: 0
+x-trace-id: b1e0b40466d0d13d52c043897f76b4b9
+x-span-id: 7debed4e937ecfc6
+x-parent-span-id: 

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/dbis-api_d-bis_org_https_body.txt

@@ -0,0 +1 @@
+{"service":"dbis-core-banking-system","status":"healthy","version":"1.0.0","docs":"/api-docs","health":"/health"}

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/dbis-api_d-bis_org_https_headers.txt

@@ -0,0 +1,20 @@
+HTTP/2 200 
+date: Tue, 14 Apr 2026 04:38:10 GMT
+content-type: application/json; charset=utf-8
+content-length: 113
+vary: Accept-Encoding
+content-security-policy: default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';img-src 'self' data:;object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests
+cross-origin-opener-policy: same-origin
+cross-origin-resource-policy: same-origin
+origin-agent-cluster: ?1
+referrer-policy: no-referrer
+strict-transport-security: max-age=63072000; includeSubDomains; preload
+x-content-type-options: nosniff
+x-dns-prefetch-control: off
+x-download-options: noopen
+x-frame-options: SAMEORIGIN
+x-permitted-cross-domain-policies: none
+x-xss-protection: 0
+x-trace-id: 3fb4ddd20cecdb2c69e161ffbc749c43
+x-span-id: b0362d36686151b8
+x-parent-span-id: 

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/dev_d-bis_org_https_headers.txt

@@ -0,0 +1,10 @@
+HTTP/2 200 
+date: Tue, 14 Apr 2026 04:38:33 GMT
+x-dns-prefetch-control: off
+x-content-type-options: nosniff
+x-permitted-cross-domain-policies: none
+referrer-policy: strict-origin-when-cross-origin
+x-frame-options: SAMEORIGIN
+
+
+0.033050

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/developers_d-bis_org_https_headers.txt

@@ -0,0 +1,18 @@
+HTTP/2 200 
+date: Tue, 14 Apr 2026 04:38:01 GMT
+content-type: text/html; charset=utf-8
+content-length: 22505
+vary: Accept-Encoding
+x-frame-options: SAMEORIGIN
+x-content-type-options: nosniff
+referrer-policy: strict-origin-when-cross-origin
+content-security-policy: default-src 'self'; script-src 'self'; style-src 'self' 'unsafe-inline'; img-src 'self' data: https:; font-src 'self'; connect-src 'self'; frame-ancestors 'none'; base-uri 'self'; form-action 'self'
+vary: RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding
+cache-control: s-maxage=31536000, stale-while-revalidate
+etag: "fqzlq2o9ljhd0"
+alt-svc: h3=":443"; ma=86400
+x-xss-protection: 0
+strict-transport-security: max-age=63072000; includeSubDomains; preload
+
+
+0.055263

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/docs_d-bis_org_https_headers.txt

@@ -0,0 +1,18 @@
+HTTP/2 200 
+date: Tue, 14 Apr 2026 04:38:12 GMT
+content-type: text/html; charset=utf-8
+content-length: 112389
+vary: Accept-Encoding
+etag: "1qs6huqeax2eoq"
+vary: Accept-Encoding
+cache-control: no-store, no-cache, must-revalidate
+referrer-policy: strict-origin-when-cross-origin
+content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://cdn.jsdelivr.net https://unpkg.com https://cdnjs.cloudflare.com; style-src 'self' 'unsafe-inline' https://cdnjs.cloudflare.com; img-src 'self' data: https:; font-src 'self' https://cdnjs.cloudflare.com; connect-src 'self' https://blockscout.defi-oracle.io wss://blockscout.defi-oracle.io https://explorer.d-bis.org wss://explorer.d-bis.org https://rpc-http-pub.d-bis.org wss://rpc-ws-pub.d-bis.org http://192.168.11.221:8545 ws://192.168.11.221:8546;
+alt-svc: h3=":443"; ma=86400
+x-xss-protection: 0
+x-content-type-options: nosniff
+x-frame-options: SAMEORIGIN
+strict-transport-security: max-age=63072000; includeSubDomains; preload
+
+
+0.759169

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/explorer_d-bis_org_blockscout_api.txt

@@ -0,0 +1 @@
+{"total_blocks":3988845,"total_transactions":54618,"total_addresses":6794,"latest_block":3988844,"average_block_time":2000,"gas_prices":{"average":0.00000100021},"network_utilization_percentage":0,"transactions_today":2,"freshness":{"chain_head":{"block_number":3988844,"timestamp":"2026-04-14T04:38:35Z","age_seconds":1,"source":"reported","confidence":"high","provenance":"rpc","completeness":"complete"},"latest_indexed_block":{"block_number":3988844,"timestamp":"2026-04-14T04:38:35Z","age_seconds":1,"source":"reported","confidence":"high","provenance":"explorer_index","completeness":"complete"},"latest_indexed_transaction":{"block_number":3955203,"timestamp":"2026-04-13T09:57:13Z","age_seconds":67283,"hash":"0xf39682ae6d23f52dd8a701c75febae320e092efcd11cc9156779bde41435121c","source":"reported","confidence":"high","provenance":"tx_index","completeness":"stale"},"latest_non_empty_block":{"block_number":3955203,"timestamp":"2026-04-13T09:57:13Z","age_seconds":67283,"distance_from_head":33641,"source":"reported","confidence":"high","provenance":"tx_index","completeness":"stale"}},"completeness":{"transactions_feed":"stale","blocks_feed":"complete","gas_metrics":"complete","utilization_metrics":"complete"},"sampling":{"stats_generated_at":"2026-04-14T04:38:36Z","rpc_probe_at":"2026-04-14T04:38:35Z","stats_window_seconds":300},"diagnostics":{"tx_visibility_state":"stale","activity_state":"quiet_chain","explanation":"Recent sampled head blocks are empty, which indicates a quiet chain rather than a broken explorer.","tx_lag_blocks":33641,"tx_lag_seconds":67283,"recent_block_sample_size":128,"recent_non_empty_blocks":0,"recent_transactions":0,"latest_non_empty_block_from_block_feed":{"block_number":3955203,"timestamp":"2026-04-13T09:57:13Z","age_seconds":67283,"distance_from_head":33641,"source":"derived","confidence":"medium","provenance":"composite","completeness":"stale"},"source":"reported","confidence":"medium","provenance":"composite","completeness":"complete"}}

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/explorer_d-bis_org_command_center_body.txt

@@ -0,0 +1,748 @@
+<!DOCTYPE html>
+<html lang="en">
+<head>
+  <meta charset="UTF-8">
+  <meta name="viewport" content="width=device-width, initial-scale=1">
+  <title>Chain 138 — Visual Command Center</title>
+  <!-- Mermaid: local copy preferred; runtime fallback loader below -->
+  <script src="/thirdparty/mermaid.min.js"></script>
+  <style>
+    :root {
+      --bg: #0b0f14;
+      --panel: #0f172a;
+      --header: #111827;
+      --border: #1f2937;
+      --text: #e6edf3;
+      --muted: #94a3b8;
+      --accent: #2563eb;
+      --accent-hover: #1d4ed8;
+    }
+    * { box-sizing: border-box; }
+    body {
+      margin: 0;
+      font-family: system-ui, -apple-system, Segoe UI, Roboto, Ubuntu, sans-serif;
+      background: var(--bg);
+      color: var(--text);
+      min-height: 100vh;
+    }
+    header {
+      padding: 1rem 1.25rem;
+      background: var(--header);
+      border-bottom: 1px solid var(--border);
+    }
+    header h1 {
+      margin: 0;
+      font-size: 1.25rem;
+      font-weight: 700;
+    }
+    header p {
+      margin: 0.35rem 0 0;
+      font-size: 0.875rem;
+      color: var(--muted);
+      max-width: 52rem;
+      line-height: 1.45;
+    }
+    .toolbar {
+      display: flex;
+      flex-wrap: wrap;
+      align-items: center;
+      gap: 0.5rem;
+      padding: 0.65rem 1rem;
+      border-bottom: 1px solid var(--border);
+      background: rgba(17, 24, 39, 0.85);
+      position: sticky;
+      top: 0;
+      z-index: 10;
+    }
+    .tabs {
+      display: flex;
+      flex-wrap: wrap;
+      gap: 0.25rem;
+    }
+    .tab {
+      padding: 0.5rem 0.85rem;
+      cursor: pointer;
+      border: 1px solid transparent;
+      border-radius: 8px;
+      font-size: 0.8125rem;
+      font-weight: 600;
+      color: var(--muted);
+      background: transparent;
+    }
+    .tab:hover {
+      color: var(--text);
+      background: var(--border);
+    }
+    .tab.active {
+      color: #fff;
+      background: var(--accent);
+      border-color: var(--accent-hover);
+    }
+    .toolbar a.back {
+      margin-left: auto;
+      font-size: 0.8125rem;
+      color: #93c5fd;
+      text-decoration: none;
+    }
+    .toolbar a.back:hover { text-decoration: underline; }
+    .content {
+      display: none;
+      padding: 1.25rem;
+      max-width: 120rem;
+      margin: 0 auto;
+    }
+    .content.active { display: block; }
+    .panel-desc {
+      color: var(--muted);
+      font-size: 0.875rem;
+      line-height: 1.5;
+      margin-bottom: 1rem;
+      max-width: 56rem;
+    }
+    .mermaid-wrap {
+      background: var(--panel);
+      padding: 1.25rem;
+      border-radius: 12px;
+      border: 1px solid var(--border);
+      overflow-x: auto;
+      margin-bottom: 1.25rem;
+    }
+    .mermaid-wrap h3 {
+      margin: 0 0 0.75rem;
+      font-size: 0.95rem;
+      font-weight: 700;
+      color: #cbd5e1;
+    }
+    .mermaid-wrap + .mermaid-wrap { margin-top: 0.5rem; }
+    footer {
+      padding: 1.5rem;
+      border-top: 1px solid var(--border);
+      font-size: 0.75rem;
+      color: var(--muted);
+      text-align: center;
+    }
+    footer code { color: #a5b4fc; }
+    .status-note {
+      margin: 0.75rem 1.25rem 0;
+      padding: 0.85rem 1rem;
+      border-radius: 12px;
+      border: 1px solid #334155;
+      background: rgba(15, 23, 42, 0.8);
+      color: var(--muted);
+      font-size: 0.875rem;
+      line-height: 1.5;
+    }
+    .status-note a {
+      color: #93c5fd;
+      text-decoration: none;
+    }
+    .status-note a:hover { text-decoration: underline; }
+  </style>
+</head>
+<body>
+
+<header>
+  <h1>Chain 138 — deployment and liquidity topology</h1>
+  <p>Operator-style view of the architecture in <code>docs/02-architecture/SMOM_DBIS_138_FULL_DEPLOYMENT_FLOW_MAP.md</code>. Diagrams are informational only; contract addresses live in explorer config and repo references. The main explorer remains the canonical live operational surface. Deep links: <code>?tab=mission-control</code> or numeric <code>?tab=0</code>–<code>8</code> (slug per tab).</p>
+</header>
+
+<div class="status-note" id="mermaid-status">
+  Loading local diagram assets. If the local Mermaid bundle is unavailable, the page will try a trusted CDN fallback automatically.
+</div>
+
+<div class="status-note" id="command-center-fallback">
+  If diagram rendering is unavailable, use the main explorer operational surfaces directly:
+  <a href="/operations">Operations Hub</a>,
+  <a href="/bridge">Bridge Monitoring</a>,
+  <a href="/routes">Routes</a>,
+  <a href="/system">System</a>,
+  and <a href="/operator">Operator</a>.
+</div>
+
+<div class="toolbar">
+  <div class="tabs" role="tablist" aria-label="Topology panels">
+    <button type="button" id="tab-0" class="tab active" role="tab" aria-selected="true" aria-controls="panel-0" data-tab="0" tabindex="0">Master map</button>
+    <button type="button" id="tab-1" class="tab" role="tab" aria-selected="false" aria-controls="panel-1" data-tab="1" tabindex="-1">Network</button>
+    <button type="button" id="tab-2" class="tab" role="tab" aria-selected="false" aria-controls="panel-2" data-tab="2" tabindex="-1">Stack</button>
+    <button type="button" id="tab-3" class="tab" role="tab" aria-selected="false" aria-controls="panel-3" data-tab="3" tabindex="-1">Flows</button>
+    <button type="button" id="tab-4" class="tab" role="tab" aria-selected="false" aria-controls="panel-4" data-tab="4" tabindex="-1">Cross-chain</button>
+    <button type="button" id="tab-5" class="tab" role="tab" aria-selected="false" aria-controls="panel-5" data-tab="5" tabindex="-1">Public cW</button>
+    <button type="button" id="tab-6" class="tab" role="tab" aria-selected="false" aria-controls="panel-6" data-tab="6" tabindex="-1">Off-chain</button>
+    <button type="button" id="tab-7" class="tab" role="tab" aria-selected="false" aria-controls="panel-7" data-tab="7" tabindex="-1">Integrations</button>
+    <button type="button" id="tab-8" class="tab" role="tab" aria-selected="false" aria-controls="panel-8" data-tab="8" tabindex="-1">Mission Control</button>
+  </div>
+  <a class="back" href="/operations">Back to Operations</a>
+</div>
+
+<!-- 0 Master -->
+<div class="content active" id="panel-0" role="tabpanel" aria-labelledby="tab-0">
+  <p class="panel-desc">Hub, leaf endings, CCIP destinations, Alltra, the dedicated Avalanche cW corridor, the public cW mesh, and pending programs. Mainnet cW mint corridors and the optional TRUU rail are summarized under the Ethereum anchor.</p>
+  <div class="mermaid-wrap"><div class="mermaid" id="g-master">
+flowchart TB
+  subgraph LEAF_INGRESS["Leaves — access to 138"]
+    WU[Wallets · MetaMask Snaps · Ledger · Chainlist · SDKs · ethers.js]
+    OPS[Operators · Foundry scripts · relay · systemd · deploy hooks]
+    RPCPUB[Public RPC FQDNs · thirdweb mirrors]
+    FB[Fireblocks Web3 RPC]
+  end
+
+  subgraph LEAF_EDGE["Leaves — services that index or front 138"]
+    EXP[Explorer · Blockscout · token-aggregation]
+    INFO[info.defi-oracle.io]
+    DAPP[dapp.d-bis.org bridge UI]
+    DBIS[dbis-api Core hosts]
+    X402[x402 payment API]
+    MCP[MCP PMM controller]
+  end
+
+  subgraph HUB["CHAIN 138 — origin hub"]
+    C138["Besu EVM · tokens core · DODO PMM V2/V3 · RouterV2 · UniV3 / Balancer / Curve / 1inch pilots · CCIP bridges + router · AlltraAdapter · BridgeVault · ISO channels · mirror reserve vault settlement · Lockbox · Truth / Tron / Solana adapters"]
+  end
+
+  subgraph CCIP_ETH["Ethereum 1 — CCIP anchor"]
+    ETH1["WETH9 / WETH10 bridges · CCIPRelayRouter · RelayBridge · Logger · optional trustless stack"]
+    LEAF_ETH["Leaf — Mainnet native DEX venues · Li.Fi touchpoints on other chains · first-wave cW DODO pools · optional TRUU PMM rail"]
+  end
+
+  subgraph CCIP_L2["Other live CCIP EVM destinations"]
+    L2CLU["OP 10 · Base 8453 · Arb 42161 · Polygon 137 · BSC 56 · Avax 43114 · Gnosis 100 · Celo 42220 · Cronos 25"]
+    LEAF_L2["Leaf — per-chain native DEX · cW token transport · partial edge pools"]
+  end
+
+  subgraph ALLTRA["ALL Mainnet 651940"]
+    A651["AlltraAdapter peer · AUSDT · WETH · WALL · HYDX · DEX env placeholders"]
+    LEAF_651["Leaf — ALL native venues when configured"]
+  end
+
+  subgraph SPECIAL["Dedicated corridor from 138"]
+    AVAXCW["138 cUSDT to Avax cWUSDT mint path"]
+    LEAF_AVAX["Leaf — recipient on 43114"]
+  end
+
+  subgraph CW_MESH["Public cW GRU mesh"]
+    CW["Cross-public-EVM token matrix · pool design · Mainnet DODO concentration"]
+  end
+
+  subgraph PENDING["Pending separate scaffold"]
+    WEMIX[Wemix 1111 CCIP pending]
+    XDC[XDC Zero parallel program]
+    SCAFF[Etherlink Tezos OP L2 design]
+    PNON[Truth pointer · Tron adapter · Solana partial]
+  end
+
+  WU --> RPCPUB
+  RPCPUB --> C138
+  WU --> C138
+  OPS --> C138
+  EXP --> C138
+  INFO --> C138
+  DAPP --> C138
+  DBIS --> C138
+  X402 --> C138
+  MCP --> C138
+  FB --> C138
+
+  C138 <--> ETH1
+  C138 <--> L2CLU
+  C138 <--> A651
+  C138 --> AVAXCW
+  AVAXCW --> LEAF_AVAX
+
+  ETH1 <--> L2CLU
+  ETH1 --> LEAF_ETH
+  L2CLU --> LEAF_L2
+  A651 --> LEAF_651
+
+  CW -.->|pool and peg design| LEAF_ETH
+  CW -.->|token mesh| L2CLU
+
+  C138 -.-> WEMIX
+  C138 -.-> XDC
+  C138 -.-> SCAFF
+  C138 -.-> PNON
+  </div></div>
+</div>
+
+<!-- 1 Network -->
+<div class="content" id="panel-1" role="tabpanel" aria-labelledby="tab-1" hidden>
+  <p class="panel-desc">Chain 138 to the public EVM mesh, Alltra, pending or scaffold targets, Avalanche cW minting, and the separate Mainnet cW mint corridor that sits alongside the standard WETH-class CCIP rail.</p>
+  <div class="mermaid-wrap"><div class="mermaid">
+flowchart TB
+  subgraph C138["Chain 138 — primary"]
+    CORE[Core registry vault oracle ISO router]
+    PMM[DODO PMM V2 DVM + pools]
+    R2[EnhancedSwapRouterV2]
+    D3[D3MM pilot]
+    CCIPB[CCIP WETH9 WETH10 bridges]
+    ALLA[AlltraAdapter]
+    ADP[Truth Tron Solana adapters partial]
+  end
+
+  subgraph PUB["Public EVM mesh (cW*)"]
+    E1[Ethereum 1]
+    E10[Optimism 10]
+    E25[Cronos 25]
+    E56[BSC 56]
+    E100[Gnosis 100]
+    E137[Polygon 137]
+    E42161[Arbitrum 42161]
+    E43114[Avalanche 43114]
+    E8453[Base 8453]
+    E42220[Celo 42220]
+  end
+
+  subgraph PEND["Pending or separate"]
+    WEMIX[Wemix 1111 CCIP pending]
+    XDC[XDC Zero parallel program]
+    SCAFF[Etherlink Tezos OP L2 scaffold design]
+  end
+
+  subgraph A651["ALL Mainnet 651940"]
+    ALLTOK[AUSDT USDC WETH WALL HYDX]
+  end
+
+  C138 -->|CCIP WETH| PUB
+  C138 -->|CCIP WETH| E1
+  C138 -->|mainnet cW mint corridor| E1
+  C138 -->|AlltraAdapter| A651
+  PUB -->|CCIP return| C138
+  E1 -->|CCIP return| C138
+  C138 -.->|operator completion| WEMIX
+  C138 -.->|not CCIP matrix row| XDC
+  C138 -.->|future gated| SCAFF
+
+  C138 -->|avax cw corridor| E43114
+  </div></div>
+  <p class="panel-desc">Topology note: Mainnet now represents two Ethereum-facing patterns in production, the standard WETH-class CCIP rail and the dedicated <code>cUSDC/cUSDT -&gt; cWUSDC/cWUSDT</code> mint corridor.</p>
+</div>
+
+<!-- 2 Stack -->
+<div class="content" id="panel-2" role="tabpanel" aria-labelledby="tab-2" hidden>
+  <p class="panel-desc">On-chain layers: tokens, core, liquidity, cross-domain, reserve and settlement.</p>
+  <div class="mermaid-wrap"><div class="mermaid">
+flowchart TB
+  subgraph L1["Tokens and compliance"]
+    CT[cUSDT · cUSDC · cEUR* · cXAU* · mirrors · USDT · USDC]
+    GEN[WETH WETH10 LINK]
+  end
+
+  subgraph L2["Core infrastructure"]
+    REG[Compliance TokenFactory TokenRegistry BridgeVault]
+    POL[PolicyManager DebtRegistry FeeCollector]
+    ISO[ISO20022Router]
+  end
+
+  subgraph L3["Liquidity and execution"]
+    DVM[DVMFactory VendingMachine DODOPMMIntegration]
+    PRV[DODOPMMProvider PrivatePoolRegistry]
+    R2[EnhancedSwapRouterV2]
+    VEN[Uniswap v3 lane Balancer Curve 1inch pilots]
+    D3[D3Oracle D3Vault D3Proxy D3MMFactory]
+  end
+
+  subgraph L4["Cross-domain"]
+    CCIP[CCIP Router CCIPWETH9 CCIPWETH10]
+    ALL[AlltraAdapter]
+    LBX[Lockbox138]
+    CH[PaymentChannel Mirror AddressMapper]
+  end
+
+  subgraph L5["Reserve vault settlement"]
+    RS[ReserveSystem OraclePriceFeed]
+    VF[VaultFactory Ledger Liquidation XAUOracle]
+    MSR[MerchantSettlementRegistry WithdrawalEscrow]
+  end
+
+  L1 --> L2
+  L2 --> L3
+  L3 --> R2
+  R2 --> VEN
+  L2 --> L4
+  L2 --> L5
+  DVM --> PRV
+  </div></div>
+</div>
+
+<!-- 3 Flows -->
+<div class="content" id="panel-3" role="tabpanel" aria-labelledby="tab-3" hidden>
+  <p class="panel-desc">Same-chain 138: PMM pools, RouterV2 venues, D3 pilot.</p>
+  <div class="mermaid-wrap"><div class="mermaid">
+flowchart LR
+  subgraph inputs["Typical inputs"]
+    U1[cUSDT]
+    U2[cUSDC]
+    U3[USDT mirror]
+    U4[USDC mirror]
+    U5[cEURT]
+    U6[cXAUC]
+  end
+
+  subgraph path_pmm["DODO PMM"]
+    INT[DODOPMMIntegration]
+    POOL[Stable pools XAU public pools Private XAU registry]
+  end
+
+  subgraph path_r2["Router v2"]
+    R2[EnhancedSwapRouterV2]
+    UV3[Uniswap v3 WETH stable]
+    PILOT[Balancer Curve 1inch]
+  end
+
+  subgraph path_d3["Pilot"]
+    D3[D3MM WETH10 pilot pool]
+  end
+
+  inputs --> INT
+  INT --> POOL
+  inputs --> R2
+  R2 --> UV3
+  R2 --> PILOT
+  GEN2[WETH WETH10] --> R2
+  GEN2 --> D3
+  </div></div>
+</div>
+
+<!-- 4 Cross-chain -->
+<div class="content" id="panel-4" role="tabpanel" aria-labelledby="tab-4" hidden>
+  <p class="panel-desc">CCIP transport, Alltra round-trip, the dedicated c-to-cW mint corridors, and the orchestrated swap-bridge-swap target.</p>
+  <div class="mermaid-wrap">
+    <h3>CCIP — WETH primary transport</h3>
+    <div class="mermaid">
+sequenceDiagram
+  participant U as User or bot
+  participant C138 as Chain 138
+  participant BR as CCIPWETH9 or WETH10 bridge
+  participant R as CCIP Router
+  participant D as Destination EVM
+
+  U->>C138: Fund WETH bridge fee LINK
+  U->>BR: Initiate cross-chain WETH transfer
+  BR->>R: CCIP message
+  R->>D: Deliver WETH class asset
+  Note over D: Native DEX or cW pools where deployed
+  D->>R: Optional return leg
+  R->>C138: Inbound to receiver bridge
+    </div>
+  </div>
+  <div class="mermaid-wrap">
+    <h3>Alltra — 138 to ALL Mainnet</h3>
+    <div class="mermaid">
+flowchart LR
+  A[Chain 138] -->|AlltraAdapter| B[ALL 651940]
+  B -->|AlltraAdapter| A
+    </div>
+  </div>
+  <div class="mermaid-wrap">
+    <h3>Special corridors — c* to cW* mint</h3>
+    <div class="mermaid">
+flowchart LR
+  S1[cUSDT on 138] -->|avax cw relay mint| T1[cWUSDT on Avalanche]
+  S2[cUSDC on 138] -->|mainnet relay mint| T2[cWUSDC on Mainnet]
+  S3[cUSDT on 138] -->|mainnet relay mint| T3[cWUSDT on Mainnet]
+    </div>
+  </div>
+  <div class="mermaid-wrap">
+    <h3>Orchestrated swap-bridge-swap (design target)</h3>
+    <div class="mermaid">
+flowchart LR
+  Q[QuoteService POST api bridge quote] --> S1[Source leg e.g. 138 PMM]
+  S1 --> BR[Bridge CCIP Alltra or special]
+  BR --> S2[Destination leg DEX or cW pool]
+    </div>
+  </div>
+</div>
+
+<!-- 5 Public cW -->
+<div class="content" id="panel-5" role="tabpanel" aria-labelledby="tab-5" hidden>
+  <p class="panel-desc">Ethereum Mainnet first-wave cW DODO mesh, plus the separate optional TRUU PMM rail. See PMM_DEX_ROUTING_STATUS and cross-chain-pmm-lps deployment-status for live detail.</p>
+  <div class="mermaid-wrap"><div class="mermaid">
+flowchart TB
+  subgraph ETH["Ethereum Mainnet"]
+    CW[cWUSDT cWUSDC cWEURC cWGBPC cWAUDC cWCADC cWJPYC cWCHFC]
+    HUB[USDC USDT]
+    DODO[DODO PMM Wave 1 pools]
+  end
+
+  CW <--> DODO
+  HUB <--> DODO
+  </div></div>
+  <p class="panel-desc">TRUU note: the optional Mainnet Truth rail is a separate volatile PMM lane and is not part of the default cW stable mesh.</p>
+  <div class="mermaid-wrap">
+    <h3>Mainnet TRUU PMM (volatile, optional)</h3>
+    <div class="mermaid">
+flowchart LR
+  subgraph TRUUmesh["Mainnet TRUU rail optional"]
+    CWu[cWUSDT or cWUSDC]
+    TRUU[TRUU ERC-20]
+    PMM[DODO PMM integration]
+  end
+
+  CWu <--> PMM
+  TRUU <--> PMM
+    </div>
+  </div>
+</div>
+
+<!-- 6 Off-chain -->
+<div class="content" id="panel-6" role="tabpanel" aria-labelledby="tab-6" hidden>
+  <p class="panel-desc">Wallets, edge FQDNs, APIs, operators feeding Chain 138 RPC, plus the explorer-hosted Mission Control visual surfaces.</p>
+  <div class="mermaid-wrap"><div class="mermaid">
+flowchart TB
+  subgraph users["Wallets and tools"]
+    MM[MetaMask custom network Snaps]
+    MCP[MCP PMM controller allowlist 138]
+  end
+
+  subgraph edge["Public edge"]
+    EXP[explorer.d-bis.org Blockscout token-aggregation]
+    MC[Mission Control visual panels]
+    INFO[info.defi-oracle.io]
+    DAPP[dapp.d-bis.org bridge UI]
+    RPC[rpc-http-pub.d-bis.org public RPC]
+  end
+
+  subgraph api["APIs"]
+    TA[token-aggregation v1 v2 quote pools bridge routes]
+    DBIS[dbis-api Core runtime]
+    X402[x402-api readiness surface]
+  end
+
+  subgraph ops["Operator"]
+    REL[CCIP relay systemd]
+    SCR[smom-dbis-138 forge scripts]
+  end
+
+  users --> edge
+  EXP --> MC
+  edge --> api
+  MC --> api
+  api --> C138[Chain 138 RPC]
+  ops --> C138
+  </div></div>
+  <p class="panel-desc">Mission Control note: the live visual display lives in the main explorer SPA, especially the bridge-monitoring and operator surfaces. This command center stays focused on the static architecture view.</p>
+</div>
+
+<!-- 7 Integrations -->
+<div class="content" id="panel-7" role="tabpanel" aria-labelledby="tab-7" hidden>
+  <p class="panel-desc">Contract families vs wallet/client integrations not spelled out in every zoom diagram. Wormhole remains docs/MCP scope, not canonical 138 addresses.</p>
+  <div class="mermaid-wrap"><div class="mermaid">
+flowchart LR
+  subgraph chain138_tech["Chain 138 contract families"]
+    A[Besu EVM]
+    B[ERC-20 core registries]
+    C[DODO V2 V3]
+    D[UniV3 Bal Curve 1inch pilots]
+    E[CCIP bridges router]
+    F[Alltra Vault ISO channels]
+  end
+
+  subgraph public_integrations["Wallet and client integrations"]
+    L[Ledger]
+    CL[Chainlist]
+    TW[thirdweb RPC]
+    ETH[ethers.js]
+    MM[MetaMask Snaps]
+  end
+
+  chain138_tech --> public_integrations
+  </div></div>
+</div>
+
+<!-- 8 Mission Control -->
+<div class="content" id="panel-8" role="tabpanel" aria-labelledby="tab-8" hidden>
+  <p class="panel-desc">Mission Control is the live explorer surface for SSE health, labeled bridge traces, cached liquidity proxy results, and operator-facing API references. The interactive controls live in the main explorer SPA; this tab is the architecture companion with direct entry points.</p>
+  <div class="mermaid-wrap">
+    <h3>Mission Control visual flow</h3>
+    <div class="mermaid">
+flowchart LR
+  UI[Explorer SPA Mission Control panels]
+  SSE[SSE stream]
+  TRACE[Bridge trace]
+  LIQ[Liquidity proxy]
+  T4[Track 4 script API]
+  API[Explorer Go API]
+  UP[Blockscout and token-aggregation upstreams]
+
+  UI --> SSE
+  UI --> TRACE
+  UI --> LIQ
+  UI -.->|operator-only| T4
+  SSE --> API
+  TRACE --> API
+  LIQ --> API
+  T4 --> API
+  TRACE --> UP
+  LIQ --> UP
+    </div>
+  </div>
+  <div class="mermaid-wrap">
+    <h3>Live entry points</h3>
+    <p class="panel-desc">Use the main explorer UI for the visual Mission Control experience, then open the raw APIs when you need direct payloads or verification.</p>
+    <div style="display:grid; grid-template-columns:repeat(auto-fit, minmax(220px, 1fr)); gap:0.75rem;">
+      <a href="/operator" style="display:block; text-decoration:none; color:inherit; border:1px solid var(--border); border-radius:14px; padding:1rem; background:var(--panel);"><div style="font-weight:700; margin-bottom:0.3rem;">Operator hub</div><div style="color:var(--muted); line-height:1.5;">Explorer SPA surface with Mission Control and operator-facing API references.</div></a>
+      <a href="/bridge" style="display:block; text-decoration:none; color:inherit; border:1px solid var(--border); border-radius:14px; padding:1rem; background:var(--panel);"><div style="font-weight:700; margin-bottom:0.3rem;">Bridge monitoring</div><div style="color:var(--muted); line-height:1.5;">Includes the visible Mission Control bridge-trace card and SSE stream entry point.</div></a>
+      <a href="/explorer-api/v1/mission-control/stream" target="_blank" rel="noopener noreferrer" style="display:block; text-decoration:none; color:inherit; border:1px solid var(--border); border-radius:14px; padding:1rem; background:var(--panel);"><div style="font-weight:700; margin-bottom:0.3rem;">SSE stream</div><div style="color:var(--muted); line-height:1.5;"><code>GET /explorer-api/v1/mission-control/stream</code></div></a>
+      <a href="/explorer-api/v1/mission-control/bridge/trace?tx=0x2f31d4f9a97be754b800f4af1a9eedf3b107d353bfa1a19e81417497a76c05c2" target="_blank" rel="noopener noreferrer" style="display:block; text-decoration:none; color:inherit; border:1px solid var(--border); border-radius:14px; padding:1rem; background:var(--panel);"><div style="font-weight:700; margin-bottom:0.3rem;">Bridge trace example</div><div style="color:var(--muted); line-height:1.5;"><code>GET /explorer-api/v1/mission-control/bridge/trace</code></div></a>
+      <a href="/explorer-api/v1/mission-control/liquidity/token/0x93E66202A11B1772E55407B32B44e5Cd8eda7f22/pools" target="_blank" rel="noopener noreferrer" style="display:block; text-decoration:none; color:inherit; border:1px solid var(--border); border-radius:14px; padding:1rem; background:var(--panel);"><div style="font-weight:700; margin-bottom:0.3rem;">Liquidity example</div><div style="color:var(--muted); line-height:1.5;"><code>GET /explorer-api/v1/mission-control/liquidity/token/{address}/pools</code></div></a>
+      <div style="border:1px solid var(--border); border-radius:14px; padding:1rem; background:var(--panel);"><div style="font-weight:700; margin-bottom:0.3rem;">Track 4 script API</div><div style="color:var(--muted); line-height:1.5;"><code>POST /explorer-api/v1/track4/operator/run-script</code><br>Requires wallet auth, IP allowlisting, and backend allowlist config.</div></div>
+    </div>
+  </div>
+</div>
+
+<footer>
+  Source: <code>proxmox/docs/02-architecture/SMOM_DBIS_138_FULL_DEPLOYMENT_FLOW_MAP.md</code> — addresses: <code>config/smart-contracts-master.json</code> and CONTRACT_ADDRESSES_REFERENCE.
+</footer>
+
+<script>
+(function () {
+  mermaid.initialize({
+    startOnLoad: false,
+    theme: 'dark',
+    securityLevel: 'loose',
+    flowchart: { curve: 'basis', padding: 12 },
+    sequence: { actorMargin: 24, boxMargin: 8 }
+  });
+
+  var TAB_SLUGS = ['master', 'network', 'stack', 'flows', 'cross-chain', 'public-cw', 'off-chain', 'integrations', 'mission-control'];
+  var TAB_BY_NAME = {};
+  TAB_SLUGS.forEach(function (s, i) { TAB_BY_NAME[s] = i; });
+
+  var tabs = document.querySelectorAll('.tab');
+  var panels = document.querySelectorAll('.content[role="tabpanel"]');
+  var tablist = document.querySelector('[role="tablist"]');
+  var done = {};
+
+  function parseInitialTab() {
+    var q = new URLSearchParams(window.location.search).get('tab');
+    if (q == null || q === '') return 0;
+    var n = parseInt(q, 10);
+    if (!isNaN(n) && n >= 0 && n < tabs.length) return n;
+    var key = String(q).toLowerCase().trim().replace(/\s+/g, '-');
+    if (Object.prototype.hasOwnProperty.call(TAB_BY_NAME, key)) return TAB_BY_NAME[key];
+    return 0;
+  }
+
+  function ensureMermaid() {
+    if (window.mermaid && typeof window.mermaid.run === 'function') {
+      return Promise.resolve(window.mermaid);
+    }
+    return new Promise(function (resolve, reject) {
+      var script = document.createElement('script');
+      script.src = 'https://cdn.jsdelivr.net/npm/mermaid@10/dist/mermaid.min.js';
+      script.async = true;
+      script.onload = function () {
+        if (window.mermaid && typeof window.mermaid.run === 'function') resolve(window.mermaid);
+        else reject(new Error('Mermaid fallback loaded without runtime'));
+      };
+      script.onerror = function () {
+        reject(new Error('Mermaid fallback failed to load'));
+      };
+      document.head.appendChild(script);
+    });
+  }
+
+  function syncUrl(index) {
+    var slug = TAB_SLUGS[index] != null ? TAB_SLUGS[index] : String(index);
+    try {
+      var u = new URL(window.location.href);
+      u.searchParams.set('tab', slug);
+      history.replaceState(null, '', u.pathname + u.search + u.hash);
+    } catch (e) { /* file:// or restricted */ }
+  }
+
+  function setActive(index) {
+    if (index < 0) index = 0;
+    if (index >= tabs.length) index = tabs.length - 1;
+    tabs.forEach(function (t, i) {
+      var on = i === index;
+      t.classList.toggle('active', on);
+      t.setAttribute('aria-selected', on ? 'true' : 'false');
+      t.setAttribute('tabindex', on ? '0' : '-1');
+    });
+    panels.forEach(function (p, i) {
+      var on = i === index;
+      p.classList.toggle('active', on);
+      if (on) p.removeAttribute('hidden');
+      else p.setAttribute('hidden', '');
+    });
+  }
+
+  async function renderPanel(index) {
+    var panel = document.getElementById('panel-' + index);
+    if (!panel || done[index]) return;
+    done[index] = true;
+    var nodes = panel.querySelectorAll('.mermaid');
+    if (nodes.length) {
+      try {
+        await ensureMermaid();
+        await mermaid.run({ nodes: nodes });
+        var status = document.getElementById('mermaid-status');
+        if (status) status.textContent = 'Diagram assets loaded. This page is a public reference surface; the main explorer remains the canonical live operational view.';
+      } catch (e) {
+        console.error('Mermaid render failed for panel', index, e);
+        var statusError = document.getElementById('mermaid-status');
+        if (statusError) statusError.textContent = 'Diagram rendering failed. Use the Operations Hub or the main explorer for live operational surfaces.';
+      }
+    }
+  }
+
+  async function showTab(index, opts) {
+    opts = opts || {};
+    setActive(index);
+    await renderPanel(index);
+    if (!opts.skipUrl) syncUrl(index);
+  }
+
+  tabs.forEach(function (tab) {
+    tab.addEventListener('click', function () {
+      var i = parseInt(tab.getAttribute('data-tab'), 10);
+      showTab(i);
+    });
+  });
+
+  if (tablist) {
+    tablist.addEventListener('keydown', function (e) {
+      var cur = -1;
+      tabs.forEach(function (t, idx) {
+        if (t.getAttribute('aria-selected') === 'true') cur = idx;
+      });
+      if (cur < 0) return;
+      var next = cur;
+      if (e.key === 'ArrowRight') {
+        e.preventDefault();
+        next = (cur + 1) % tabs.length;
+      } else if (e.key === 'ArrowLeft') {
+        e.preventDefault();
+        next = (cur - 1 + tabs.length) % tabs.length;
+      } else if (e.key === 'Home') {
+        e.preventDefault();
+        next = 0;
+      } else if (e.key === 'End') {
+        e.preventDefault();
+        next = tabs.length - 1;
+      } else {
+        return;
+      }
+      showTab(next).then(function () {
+        tabs[next].focus();
+      });
+    });
+  }
+
+  async function boot() {
+    var initial = parseInitialTab();
+    await showTab(initial, { skipUrl: true });
+    try {
+      var u = new URL(window.location.href);
+      if (u.searchParams.has('tab')) syncUrl(initial);
+    } catch (e2) { /* ignore */ }
+  }
+  if (document.readyState === 'loading') {
+    document.addEventListener('DOMContentLoaded', boot);
+  } else {
+    boot();
+  }
+})();
+</script>
+</body>
+</html>

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/explorer_d-bis_org_https_headers.txt

@@ -0,0 +1,19 @@
+HTTP/2 200 
+date: Tue, 14 Apr 2026 04:38:36 GMT
+content-type: text/html; charset=utf-8
+content-length: 112387
+vary: Accept-Encoding
+etag: "2e390qw8q32eoo"
+vary: Accept-Encoding
+cache-control: no-store, no-cache, must-revalidate
+referrer-policy: strict-origin-when-cross-origin
+content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://cdn.jsdelivr.net https://unpkg.com https://cdnjs.cloudflare.com; style-src 'self' 'unsafe-inline' https://cdnjs.cloudflare.com; img-src 'self' data: https:; font-src 'self' https://cdnjs.cloudflare.com; connect-src 'self' https://blockscout.defi-oracle.io wss://blockscout.defi-oracle.io https://explorer.d-bis.org wss://explorer.d-bis.org https://rpc-http-pub.d-bis.org wss://rpc-ws-pub.d-bis.org http://192.168.11.221:8545 ws://192.168.11.221:8546;
+alt-svc: h3=":443"; ma=86400
+x-xss-protection: 0
+x-content-type-options: nosniff
+x-frame-options: SAMEORIGIN
+strict-transport-security: max-age=63072000; includeSubDomains; preload
+referrer-policy: strict-origin-when-cross-origin
+
+
+0.714852

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/explorer_d-bis_org_mission_control_liquidity.json

@@ -0,0 +1 @@
+{"pools":[{"address":"0x9e89bae009adf128782e19e8341996c596ac40dc","dex":"dodo","token0":{"address":"0x93e66202a11b1772e55407b32b44e5cd8eda7f22","symbol":"cUSDT","name":"Tether USD (Compliant)","source":"db"},"token1":{"address":"0xf22258f57794cc8e06237084b353ab30fffa640b","symbol":"cUSDC","name":"USD Coin (Compliant)","source":"db"},"reserves":{"token0":"983891197998","token1":"1016108797998"},"tvl":1999999.995996,"volume24h":0,"feeTier":null},{"address":"0x866cb44b59303d8dc5f4f9e3e7a8e8b0bf238d66","dex":"dodo","token0":{"address":"0x93e66202a11b1772e55407b32b44e5cd8eda7f22","symbol":"cUSDT","name":"Tether USD (Compliant)","source":"db"},"token1":{"address":"0x004b63a7b5b0e06f6bb6adb4a5f9f590bf3182d1","symbol":"USDT","name":"Tether USD (Chain 138)","source":"db"},"reserves":{"token0":"999872497998","token1":"1000127497998"},"tvl":1999999.995996,"volume24h":0,"feeTier":null}]}

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/explorer_d-bis_org_mission_control_stream_headers.txt

@@ -0,0 +1,22 @@
+HTTP/2 200 
+date: Tue, 14 Apr 2026 04:38:37 GMT
+content-type: text/event-stream
+access-control-allow-headers: Authorization, Content-Type, X-API-Key
+access-control-allow-methods: GET, POST, OPTIONS
+access-control-allow-origin: *
+cache-control: no-cache
+content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://cdn.jsdelivr.net https://unpkg.com https://cdnjs.cloudflare.com; style-src 'self' 'unsafe-inline' https://cdnjs.cloudflare.com; font-src 'self' https://cdnjs.cloudflare.com; img-src 'self' data: https:; connect-src 'self' https://blockscout.defi-oracle.io https://explorer.d-bis.org https://rpc-http-pub.d-bis.org wss://rpc-ws-pub.d-bis.org http://192.168.11.221:8545 ws://192.168.11.221:8546;
+permissions-policy: geolocation=(), microphone=(), camera=()
+referrer-policy: strict-origin-when-cross-origin
+strict-transport-security: max-age=63072000; includeSubDomains; preload
+x-content-type-options: nosniff
+x-explorer-name: SolaceScan
+x-explorer-version: 1.0.0
+x-frame-options: SAMEORIGIN
+x-xss-protection: 0
+access-control-allow-origin: *
+access-control-allow-methods: GET, POST, OPTIONS
+access-control-allow-headers: Content-Type, Authorization
+alt-svc: h3=":443"; ma=86400
+referrer-policy: strict-origin-when-cross-origin
+

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/explorer_d-bis_org_mission_control_trace.json

@@ -0,0 +1 @@
+{"data":{"blockscout_url":"https://explorer.d-bis.org/tx/0x2f31d4f9a97be754b800f4af1a9eedf3b107d353bfa1a19e81417497a76c05c2","from":"0x4a666f96fc8764181194447a7dfdb7d471b301c8","from_registry":"DEPLOYER_ADMIN_138","source":"blockscout","to":"0x152ed3e9912161b76bdfd368d0c84b7c31c10de7","to_registry":"CW_L1_BRIDGE_CHAIN138","tx_hash":"0x2f31d4f9a97be754b800f4af1a9eedf3b107d353bfa1a19e81417497a76c05c2"}}

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/gitea_d-bis_org_https_headers.txt

@@ -0,0 +1,10 @@
+HTTP/2 200 
+date: Tue, 14 Apr 2026 04:38:35 GMT
+x-dns-prefetch-control: off
+x-content-type-options: nosniff
+x-permitted-cross-domain-policies: none
+referrer-policy: strict-origin-when-cross-origin
+x-frame-options: SAMEORIGIN
+
+
+0.047911

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/identity_d-bis_org_https_headers.txt

@@ -0,0 +1,18 @@
+HTTP/2 200 
+date: Tue, 14 Apr 2026 04:38:12 GMT
+content-type: text/html; charset=utf-8
+content-length: 22505
+vary: Accept-Encoding
+x-frame-options: SAMEORIGIN
+x-content-type-options: nosniff
+referrer-policy: strict-origin-when-cross-origin
+content-security-policy: default-src 'self'; script-src 'self'; style-src 'self' 'unsafe-inline'; img-src 'self' data: https:; font-src 'self'; connect-src 'self'; frame-ancestors 'none'; base-uri 'self'; form-action 'self'
+vary: RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding
+cache-control: s-maxage=31536000, stale-while-revalidate
+etag: "fqzlq2o9ljhd0"
+alt-svc: h3=":443"; ma=86400
+x-xss-protection: 0
+strict-transport-security: max-age=63072000; includeSubDomains; preload
+
+
+0.041018

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/info_defi-oracle_io_https_headers.txt

@@ -0,0 +1,19 @@
+HTTP/2 200 
+date: Tue, 14 Apr 2026 04:38:09 GMT
+content-type: text/html
+vary: Accept-Encoding
+last-modified: Sun, 05 Apr 2026 23:21:29 GMT
+report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=G3%2FVkBHk8XFOQWXoLWYOIccuTc77K5arXo%2B32byLz0M9ev9qFEvAjphi7pBeJ0Th6xMVKaIyXEUmm2aSWQL%2F%2Fr6bIBPmFj01q%2FO5jv7Hv2h6l5196oONhO5j0%2BGZsJUgtmjt9JLK"}]}
+alt-svc: h3=":443"; ma=86400
+x-xss-protection: 0
+x-content-type-options: nosniff
+x-frame-options: SAMEORIGIN
+content-security-policy: upgrade-insecure-requests
+strict-transport-security: max-age=63072000; includeSubDomains; preload
+nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
+cf-cache-status: DYNAMIC
+server: cloudflare
+cf-ray: 9ec004f56c2e2f47-LAX
+
+
+0.155903

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/interop_d-bis_org_https_headers.txt

@@ -0,0 +1,18 @@
+HTTP/2 200 
+date: Tue, 14 Apr 2026 04:38:11 GMT
+content-type: text/html; charset=utf-8
+content-length: 22505
+vary: Accept-Encoding
+x-frame-options: SAMEORIGIN
+x-content-type-options: nosniff
+referrer-policy: strict-origin-when-cross-origin
+content-security-policy: default-src 'self'; script-src 'self'; style-src 'self' 'unsafe-inline'; img-src 'self' data: https:; font-src 'self'; connect-src 'self'; frame-ancestors 'none'; base-uri 'self'; form-action 'self'
+vary: RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding
+cache-control: s-maxage=31536000, stale-while-revalidate
+etag: "fqzlq2o9ljhd0"
+alt-svc: h3=":443"; ma=86400
+x-xss-protection: 0
+strict-transport-security: max-age=63072000; includeSubDomains; preload
+
+
+0.048357

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/keycloak_sankofa_nexus_https_headers.txt

@@ -0,0 +1,13 @@
+HTTP/2 302 
+date: Tue, 14 Apr 2026 04:38:14 GMT
+location: https://keycloak.sankofa.nexus/admin/
+referrer-policy: no-referrer
+strict-transport-security: max-age=63072000; includeSubDomains; preload
+x-content-type-options: nosniff
+x-xss-protection: 0
+alt-svc: h3=":443"; ma=86400
+x-frame-options: SAMEORIGIN
+content-security-policy: upgrade-insecure-requests
+
+
+0.042813

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/members_d-bis_org_https_headers.txt

@@ -0,0 +1,18 @@
+HTTP/2 200 
+date: Tue, 14 Apr 2026 04:37:58 GMT
+content-type: text/html; charset=utf-8
+content-length: 22505
+vary: Accept-Encoding
+x-frame-options: SAMEORIGIN
+x-content-type-options: nosniff
+referrer-policy: strict-origin-when-cross-origin
+content-security-policy: default-src 'self'; script-src 'self'; style-src 'self' 'unsafe-inline'; img-src 'self' data: https:; font-src 'self'; connect-src 'self'; frame-ancestors 'none'; base-uri 'self'; form-action 'self'
+vary: RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding
+cache-control: s-maxage=31536000, stale-while-revalidate
+etag: "fqzlq2o9ljhd0"
+alt-svc: h3=":443"; ma=86400
+x-xss-protection: 0
+strict-transport-security: max-age=63072000; includeSubDomains; preload
+
+
+0.059026

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/mifos_d-bis_org_https_headers.txt

@@ -0,0 +1,12 @@
+HTTP/2 200 
+date: Tue, 14 Apr 2026 04:37:58 GMT
+content-type: text/html
+content-length: 2147
+last-modified: Wed, 07 May 2025 12:00:31 GMT
+vary: Accept-Encoding
+etag: "681b4b5f-863"
+alt-svc: h3=":443"; ma=86400
+accept-ranges: bytes
+
+
+0.029235

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/mim4u_org_https_headers.txt

@@ -0,0 +1,18 @@
+HTTP/2 200 
+date: Tue, 14 Apr 2026 04:38:14 GMT
+content-type: text/html
+content-length: 2710
+vary: Accept-Encoding
+last-modified: Tue, 31 Mar 2026 05:21:47 GMT
+etag: "69cb59eb-a96"
+accept-ranges: bytes
+alt-svc: h3=":443"; ma=86400
+x-xss-protection: 0
+x-content-type-options: nosniff
+x-frame-options: SAMEORIGIN
+content-security-policy: upgrade-insecure-requests
+strict-transport-security: max-age=63072000; includeSubDomains; preload
+referrer-policy: strict-origin-when-cross-origin
+
+
+0.046604

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/ops_d-bis_org_https_headers.txt

@@ -0,0 +1,18 @@
+HTTP/2 200 
+date: Tue, 14 Apr 2026 04:38:13 GMT
+content-type: text/html; charset=utf-8
+content-length: 22505
+vary: Accept-Encoding
+x-frame-options: SAMEORIGIN
+x-content-type-options: nosniff
+referrer-policy: strict-origin-when-cross-origin
+content-security-policy: default-src 'self'; script-src 'self'; style-src 'self' 'unsafe-inline'; img-src 'self' data: https:; font-src 'self'; connect-src 'self'; frame-ancestors 'none'; base-uri 'self'; form-action 'self'
+vary: RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding
+cache-control: s-maxage=31536000, stale-while-revalidate
+etag: "fqzlq2o9ljhd0"
+alt-svc: h3=":443"; ma=86400
+x-xss-protection: 0
+strict-transport-security: max-age=63072000; includeSubDomains; preload
+
+
+0.049331

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/phoenix_sankofa_nexus_https_headers.txt

@@ -0,0 +1,14 @@
+HTTP/2 200 
+date: Tue, 14 Apr 2026 04:38:21 GMT
+content-type: application/json
+content-length: 33
+vary: Accept-Encoding
+alt-svc: h3=":443"; ma=86400
+x-xss-protection: 0
+x-content-type-options: nosniff
+x-frame-options: SAMEORIGIN
+content-security-policy: upgrade-insecure-requests
+strict-transport-security: max-age=63072000; includeSubDomains; preload
+
+
+0.033717

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/policy_d-bis_org_https_headers.txt

@@ -0,0 +1,18 @@
+HTTP/2 200 
+date: Tue, 14 Apr 2026 04:38:00 GMT
+content-type: text/html; charset=utf-8
+content-length: 22505
+vary: Accept-Encoding
+x-frame-options: SAMEORIGIN
+x-content-type-options: nosniff
+referrer-policy: strict-origin-when-cross-origin
+content-security-policy: default-src 'self'; script-src 'self'; style-src 'self' 'unsafe-inline'; img-src 'self' data: https:; font-src 'self'; connect-src 'self'; frame-ancestors 'none'; base-uri 'self'; form-action 'self'
+vary: RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding
+cache-control: s-maxage=31536000, stale-while-revalidate
+etag: "fqzlq2o9ljhd0"
+alt-svc: h3=":443"; ma=86400
+x-xss-protection: 0
+strict-transport-security: max-age=63072000; includeSubDomains; preload
+
+
+0.056643

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/portal_sankofa_nexus_https_headers.txt

@@ -0,0 +1,20 @@
+HTTP/2 200 
+date: Tue, 14 Apr 2026 04:38:01 GMT
+content-type: text/html; charset=utf-8
+content-length: 5259
+vary: Accept-Encoding
+x-dns-prefetch-control: on
+strict-transport-security: max-age=63072000; includeSubDomains; preload
+x-frame-options: SAMEORIGIN
+x-content-type-options: nosniff
+x-xss-protection: 0
+referrer-policy: strict-origin-when-cross-origin
+permissions-policy: camera=(), microphone=(), geolocation=()
+content-security-policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; img-src 'self' data: https:; font-src 'self' data:; connect-src 'self' https:
+vary: RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding
+cache-control: s-maxage=31536000, stale-while-revalidate
+etag: "oibim89srm41x"
+alt-svc: h3=":443"; ma=86400
+
+
+0.050630

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/research_d-bis_org_https_headers.txt

@@ -0,0 +1,18 @@
+HTTP/2 200 
+date: Tue, 14 Apr 2026 04:38:00 GMT
+content-type: text/html; charset=utf-8
+content-length: 22505
+vary: Accept-Encoding
+x-frame-options: SAMEORIGIN
+x-content-type-options: nosniff
+referrer-policy: strict-origin-when-cross-origin
+content-security-policy: default-src 'self'; script-src 'self'; style-src 'self' 'unsafe-inline'; img-src 'self' data: https:; font-src 'self'; connect-src 'self'; frame-ancestors 'none'; base-uri 'self'; form-action 'self'
+vary: RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding
+cache-control: s-maxage=31536000, stale-while-revalidate
+etag: "fqzlq2o9ljhd0"
+alt-svc: h3=":443"; ma=86400
+x-xss-protection: 0
+strict-transport-security: max-age=63072000; includeSubDomains; preload
+
+
+0.050059

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/rpc-alltra-2_d-bis_org_rpc_response.txt

@@ -0,0 +1 @@
+{"jsonrpc":"2.0","id":1,"result":"0x8a"}

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/rpc-alltra-3_d-bis_org_rpc_response.txt

@@ -0,0 +1 @@
+{"jsonrpc":"2.0","id":1,"result":"0x8a"}

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/rpc-alltra_d-bis_org_rpc_response.txt

@@ -0,0 +1 @@
+{"jsonrpc":"2.0","id":1,"result":"0x8a"}

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/rpc-core_d-bis_org_rpc_response.txt

@@ -0,0 +1 @@
+{"jsonrpc":"2.0","id":1,"result":"0x8a"}

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/rpc-http-pub_d-bis_org_rpc_response.txt

@@ -0,0 +1 @@
+{"jsonrpc":"2.0","id":1,"result":"0x8a"}

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/rpc-hybx-2_d-bis_org_rpc_response.txt

@@ -0,0 +1 @@
+{"jsonrpc":"2.0","id":1,"result":"0x8a"}

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/rpc-hybx-3_d-bis_org_rpc_response.txt

@@ -0,0 +1 @@
+{"jsonrpc":"2.0","id":1,"result":"0x8a"}

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/rpc-hybx_d-bis_org_rpc_response.txt

@@ -0,0 +1 @@
+{"jsonrpc":"2.0","id":1,"result":"0x8a"}

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/rpc2_d-bis_org_rpc_response.txt

@@ -0,0 +1 @@
+{"jsonrpc":"2.0","id":1,"result":"0x8a"}

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/rpc_d-bis_org_rpc_response.txt

@@ -0,0 +1 @@
+{"jsonrpc":"2.0","id":1,"result":"0x8a"}

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/rpc_defi-oracle_io_rpc_response.txt

@@ -0,0 +1 @@
+{"jsonrpc":"2.0","id":1,"result":"0x8a"}

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/rpc_public-0138_defi-oracle_io_rpc_response.txt

@@ -0,0 +1 @@
+{"jsonrpc":"2.0","id":1,"result":"0x8a"}

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/sandbox_d-bis_org_https_headers.txt

@@ -0,0 +1,18 @@
+HTTP/2 200 
+date: Tue, 14 Apr 2026 04:38:15 GMT
+content-type: text/html; charset=utf-8
+content-length: 22505
+vary: Accept-Encoding
+x-frame-options: SAMEORIGIN
+x-content-type-options: nosniff
+referrer-policy: strict-origin-when-cross-origin
+content-security-policy: default-src 'self'; script-src 'self'; style-src 'self' 'unsafe-inline'; img-src 'self' data: https:; font-src 'self'; connect-src 'self'; frame-ancestors 'none'; base-uri 'self'; form-action 'self'
+vary: RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding
+cache-control: s-maxage=31536000, stale-while-revalidate
+etag: "fqzlq2o9ljhd0"
+alt-svc: h3=":443"; ma=86400
+x-xss-protection: 0
+strict-transport-security: max-age=63072000; includeSubDomains; preload
+
+
+0.046276

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/sankofa_nexus_https_headers.txt

@@ -0,0 +1,19 @@
+HTTP/2 200 
+date: Tue, 14 Apr 2026 04:38:02 GMT
+content-type: text/html; charset=utf-8
+vary: Accept-Encoding
+x-content-type-options: nosniff
+x-dns-prefetch-control: on
+strict-transport-security: max-age=63072000; includeSubDomains; preload
+x-frame-options: SAMEORIGIN
+referrer-policy: strict-origin-when-cross-origin
+permissions-policy: camera=(), microphone=(), geolocation=()
+content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; img-src 'self' data: https:; font-src 'self' data:; connect-src 'self' https: ws: wss:
+vary: RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding
+link: </_next/static/media/e4af272ccee01ff0-s.p.woff2>; rel=preload; as="font"; crossorigin=""; type="font/woff2"
+cache-control: private, no-cache, no-store, max-age=0, must-revalidate
+alt-svc: h3=":443"; ma=86400
+x-xss-protection: 0
+
+
+0.069909

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/secure_d-bis_org_https_headers.txt

@@ -0,0 +1,18 @@
+HTTP/2 200 
+date: Tue, 14 Apr 2026 04:39:05 GMT
+content-type: text/html
+content-length: 795
+vary: Accept-Encoding
+last-modified: Thu, 02 Apr 2026 19:27:04 GMT
+etag: "69cec308-31b"
+x-frame-options: SAMEORIGIN
+x-content-type-options: nosniff
+x-xss-protection: 0
+accept-ranges: bytes
+alt-svc: h3=":443"; ma=86400
+content-security-policy: upgrade-insecure-requests
+strict-transport-security: max-age=63072000; includeSubDomains; preload
+referrer-policy: strict-origin-when-cross-origin
+
+
+0.043003

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/secure_mim4u_org_https_headers.txt

@@ -0,0 +1,18 @@
+HTTP/2 200 
+date: Tue, 14 Apr 2026 04:38:35 GMT
+content-type: text/html
+content-length: 2710
+vary: Accept-Encoding
+last-modified: Tue, 31 Mar 2026 05:21:47 GMT
+etag: "69cb59eb-a96"
+accept-ranges: bytes
+alt-svc: h3=":443"; ma=86400
+x-xss-protection: 0
+x-content-type-options: nosniff
+x-frame-options: SAMEORIGIN
+content-security-policy: upgrade-insecure-requests
+strict-transport-security: max-age=63072000; includeSubDomains; preload
+referrer-policy: strict-origin-when-cross-origin
+
+
+0.028530

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/status_d-bis_org_https_headers.txt

@@ -0,0 +1,18 @@
+HTTP/2 200 
+date: Tue, 14 Apr 2026 04:38:33 GMT
+content-type: text/html; charset=utf-8
+content-length: 22505
+vary: Accept-Encoding
+x-frame-options: SAMEORIGIN
+x-content-type-options: nosniff
+referrer-policy: strict-origin-when-cross-origin
+content-security-policy: default-src 'self'; script-src 'self'; style-src 'self' 'unsafe-inline'; img-src 'self' data: https:; font-src 'self'; connect-src 'self'; frame-ancestors 'none'; base-uri 'self'; form-action 'self'
+vary: RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding
+cache-control: s-maxage=31536000, stale-while-revalidate
+etag: "fqzlq2o9ljhd0"
+alt-svc: h3=":443"; ma=86400
+x-xss-protection: 0
+strict-transport-security: max-age=63072000; includeSubDomains; preload
+
+
+0.053485

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/studio_sankofa_nexus_https_headers.txt

@@ -0,0 +1,13 @@
+HTTP/2 502 
+date: Tue, 14 Apr 2026 04:38:10 GMT
+content-type: text/html
+content-length: 122
+alt-svc: h3=":443"; ma=86400
+x-xss-protection: 0
+x-content-type-options: nosniff
+x-frame-options: SAMEORIGIN
+content-security-policy: upgrade-insecure-requests
+strict-transport-security: max-age=63072000; includeSubDomains; preload
+
+
+0.036162

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/the-order_sankofa_nexus_https_headers.txt

@@ -0,0 +1,20 @@
+HTTP/2 200 
+date: Tue, 14 Apr 2026 04:38:27 GMT
+content-type: text/html; charset=utf-8
+content-length: 5259
+vary: Accept-Encoding
+x-dns-prefetch-control: on
+strict-transport-security: max-age=63072000; includeSubDomains; preload
+x-frame-options: SAMEORIGIN
+x-content-type-options: nosniff
+x-xss-protection: 0
+referrer-policy: strict-origin-when-cross-origin
+permissions-policy: camera=(), microphone=(), geolocation=()
+content-security-policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; img-src 'self' data: https:; font-src 'self' data:; connect-src 'self' https:
+vary: RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding
+cache-control: s-maxage=31536000, stale-while-revalidate
+etag: "oibim89srm41x"
+alt-svc: h3=":443"; ma=86400
+
+
+0.048021

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/training_mim4u_org_https_headers.txt

@@ -0,0 +1,18 @@
+HTTP/2 200 
+date: Tue, 14 Apr 2026 04:39:02 GMT
+content-type: text/html
+content-length: 2710
+vary: Accept-Encoding
+last-modified: Tue, 31 Mar 2026 05:21:47 GMT
+etag: "69cb59eb-a96"
+accept-ranges: bytes
+alt-svc: h3=":443"; ma=86400
+x-xss-protection: 0
+x-content-type-options: nosniff
+x-frame-options: SAMEORIGIN
+content-security-policy: upgrade-insecure-requests
+strict-transport-security: max-age=63072000; includeSubDomains; preload
+referrer-policy: strict-origin-when-cross-origin
+
+
+0.049295

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/verification_report.md

@@ -0,0 +1,594 @@
+# End-to-End Routing Verification Report
+
+**Date**: 2026-04-13T21:39:13-07:00
+**Public IP**: 76.53.10.36
+**Profile**: public
+**Verifier**: intlc
+
+## All endpoints (60)
+
+| Domain | Type | URL |
+|--------|------|-----|
+| admin.d-bis.org | web | https://admin.d-bis.org |
+| admin.sankofa.nexus | web | https://admin.sankofa.nexus |
+| blockscout.defi-oracle.io | web | https://blockscout.defi-oracle.io |
+| cacti-alltra.d-bis.org | web | https://cacti-alltra.d-bis.org |
+| cacti-hybx.d-bis.org | web | https://cacti-hybx.d-bis.org |
+| codespaces.d-bis.org | web | https://codespaces.d-bis.org |
+| core.d-bis.org | web | https://core.d-bis.org |
+| d-bis.org | web | https://d-bis.org |
+| dapp.d-bis.org | web | https://dapp.d-bis.org |
+| dash.sankofa.nexus | web | https://dash.sankofa.nexus |
+| data.d-bis.org | api | https://data.d-bis.org |
+| dbis-admin.d-bis.org | web | https://dbis-admin.d-bis.org |
+| dbis-api-2.d-bis.org | api | https://dbis-api-2.d-bis.org |
+| dbis-api.d-bis.org | api | https://dbis-api.d-bis.org |
+| dev.d-bis.org | web | https://dev.d-bis.org |
+| developers.d-bis.org | web | https://developers.d-bis.org |
+| docs.d-bis.org | web | https://docs.d-bis.org |
+| explorer.d-bis.org | web | https://explorer.d-bis.org |
+| gitea.d-bis.org | web | https://gitea.d-bis.org |
+| identity.d-bis.org | web | https://identity.d-bis.org |
+| info.defi-oracle.io | web | https://info.defi-oracle.io |
+| interop.d-bis.org | web | https://interop.d-bis.org |
+| keycloak.sankofa.nexus | web | https://keycloak.sankofa.nexus |
+| members.d-bis.org | web | https://members.d-bis.org |
+| mifos.d-bis.org | web | https://mifos.d-bis.org |
+| mim4u.org | web | https://mim4u.org |
+| ops.d-bis.org | web | https://ops.d-bis.org |
+| phoenix.sankofa.nexus | web | https://phoenix.sankofa.nexus |
+| policy.d-bis.org | web | https://policy.d-bis.org |
+| portal.sankofa.nexus | web | https://portal.sankofa.nexus |
+| research.d-bis.org | web | https://research.d-bis.org |
+| rpc-alltra-2.d-bis.org | rpc-http | https://rpc-alltra-2.d-bis.org |
+| rpc-alltra-3.d-bis.org | rpc-http | https://rpc-alltra-3.d-bis.org |
+| rpc-alltra.d-bis.org | rpc-http | https://rpc-alltra.d-bis.org |
+| rpc-core.d-bis.org | rpc-http | https://rpc-core.d-bis.org |
+| rpc-http-pub.d-bis.org | rpc-http | https://rpc-http-pub.d-bis.org |
+| rpc-hybx-2.d-bis.org | rpc-http | https://rpc-hybx-2.d-bis.org |
+| rpc-hybx-3.d-bis.org | rpc-http | https://rpc-hybx-3.d-bis.org |
+| rpc-hybx.d-bis.org | rpc-http | https://rpc-hybx.d-bis.org |
+| rpc-ws-pub.d-bis.org | rpc-ws | https://rpc-ws-pub.d-bis.org |
+| rpc.d-bis.org | rpc-http | https://rpc.d-bis.org |
+| rpc.defi-oracle.io | rpc-http | https://rpc.defi-oracle.io |
+| rpc.public-0138.defi-oracle.io | rpc-http | https://rpc.public-0138.defi-oracle.io |
+| rpc2.d-bis.org | rpc-http | https://rpc2.d-bis.org |
+| sandbox.d-bis.org | web | https://sandbox.d-bis.org |
+| sankofa.nexus | web | https://sankofa.nexus |
+| secure.d-bis.org | web | https://secure.d-bis.org |
+| secure.mim4u.org | web | https://secure.mim4u.org |
+| status.d-bis.org | web | https://status.d-bis.org |
+| studio.sankofa.nexus | web | https://studio.sankofa.nexus |
+| the-order.sankofa.nexus | web | https://the-order.sankofa.nexus |
+| training.mim4u.org | web | https://training.mim4u.org |
+| ws.rpc.d-bis.org | rpc-ws | https://ws.rpc.d-bis.org |
+| ws.rpc2.d-bis.org | rpc-ws | https://ws.rpc2.d-bis.org |
+| wss.defi-oracle.io | rpc-ws | https://wss.defi-oracle.io |
+| www.d-bis.org | web | https://www.d-bis.org |
+| www.mim4u.org | web | https://www.mim4u.org |
+| www.phoenix.sankofa.nexus | web | https://www.phoenix.sankofa.nexus |
+| www.sankofa.nexus | web | https://www.sankofa.nexus |
+| www.the-order.sankofa.nexus | web | https://www.the-order.sankofa.nexus |
+
+## Summary
+
+- **Total domains tested**: 60
+- **DNS tests passed**: 60
+- **HTTPS tests passed**: 43
+- **Explorer surface failures**: 0
+- **Failed tests**: 0
+- **Skipped / optional (not configured or unreachable)**: 0
+- **Average response time**: 0.10298224999999998s
+
+## Results overview
+
+| Domain | Type | DNS | SSL | HTTPS | Root | RPC | Explorer+ |
+|--------|------|-----|-----|-------|------|-----|-----------|
+| dbis-admin.d-bis.org | web | pass | pass | pass | - | - | - |
+| core.d-bis.org | web | pass | pass | pass | - | - | - |
+| rpc-alltra-3.d-bis.org | rpc-http | pass | pass | - | - | pass | - |
+| mifos.d-bis.org | web | pass | pass | pass | - | - | - |
+| members.d-bis.org | web | pass | pass | pass | - | - | - |
+| admin.sankofa.nexus | web | pass | pass | pass | - | - | - |
+| dash.sankofa.nexus | web | pass | pass | pass | - | - | - |
+| rpc-hybx-2.d-bis.org | rpc-http | pass | pass | - | - | pass | - |
+| research.d-bis.org | web | pass | pass | pass | - | - | - |
+| policy.d-bis.org | web | pass | pass | pass | - | - | - |
+| portal.sankofa.nexus | web | pass | pass | pass | - | - | - |
+| cacti-hybx.d-bis.org | web | pass | pass | pass | - | - | - |
+| developers.d-bis.org | web | pass | pass | pass | - | - | - |
+| sankofa.nexus | web | pass | pass | pass | - | - | - |
+| rpc-alltra.d-bis.org | rpc-http | pass | pass | - | - | pass | - |
+| rpc-http-pub.d-bis.org | rpc-http | pass | pass | - | - | pass | - |
+| info.defi-oracle.io | web | pass | pass | pass | - | - | - |
+| rpc.public-0138.defi-oracle.io | rpc-http | pass | pass | - | - | pass | - |
+| studio.sankofa.nexus | web | pass | pass | warn | - | - | - |
+| www.d-bis.org | web | pass | pass | pass | - | - | - |
+| dbis-api.d-bis.org | api | pass | pass | pass | - | - | - |
+| interop.d-bis.org | web | pass | pass | pass | - | - | - |
+| docs.d-bis.org | web | pass | pass | pass | - | - | - |
+| identity.d-bis.org | web | pass | pass | pass | - | - | - |
+| rpc-hybx-3.d-bis.org | rpc-http | pass | pass | - | - | pass | - |
+| rpc.d-bis.org | rpc-http | pass | pass | - | - | pass | - |
+| dapp.d-bis.org | web | pass | pass | pass | - | - | - |
+| ops.d-bis.org | web | pass | pass | pass | - | - | - |
+| www.sankofa.nexus | web | pass | pass | pass | - | - | - |
+| www.the-order.sankofa.nexus | web | pass | pass | pass | - | - | - |
+| keycloak.sankofa.nexus | web | pass | pass | pass | - | - | - |
+| mim4u.org | web | pass | pass | pass | - | - | - |
+| data.d-bis.org | api | pass | pass | pass | - | - | - |
+| sandbox.d-bis.org | web | pass | pass | pass | - | - | - |
+| ws.rpc.d-bis.org | rpc-ws | pass | pass | - | - | - | - |
+| phoenix.sankofa.nexus | web | pass | pass | pass | - | - | - |
+| www.mim4u.org | web | pass | pass | pass | - | - | - |
+| wss.defi-oracle.io | rpc-ws | pass | pass | - | - | - | - |
+| the-order.sankofa.nexus | web | pass | pass | pass | - | - | - |
+| rpc2.d-bis.org | rpc-http | pass | pass | - | - | pass | - |
+| rpc-ws-pub.d-bis.org | rpc-ws | pass | pass | - | - | - | - |
+| dev.d-bis.org | web | pass | pass | pass | - | - | - |
+| admin.d-bis.org | web | pass | pass | pass | - | - | - |
+| status.d-bis.org | web | pass | pass | pass | - | - | - |
+| rpc-alltra-2.d-bis.org | rpc-http | pass | pass | - | - | pass | - |
+| www.phoenix.sankofa.nexus | web | pass | pass | pass | - | - | - |
+| gitea.d-bis.org | web | pass | pass | pass | - | - | - |
+| secure.mim4u.org | web | pass | pass | pass | - | - | - |
+| explorer.d-bis.org | web | pass | pass | pass | - | - | - |
+| training.mim4u.org | web | pass | pass | pass | - | - | - |
+| blockscout.defi-oracle.io | web | pass | pass | pass | - | - | - |
+| dbis-api-2.d-bis.org | api | pass | pass | pass | - | - | - |
+| d-bis.org | web | pass | pass | pass | - | - | - |
+| rpc-core.d-bis.org | rpc-http | pass | pass | - | - | pass | - |
+| secure.d-bis.org | web | pass | pass | pass | - | - | - |
+| rpc-hybx.d-bis.org | rpc-http | pass | pass | - | - | pass | - |
+| codespaces.d-bis.org | web | pass | pass | pass | - | - | - |
+| rpc.defi-oracle.io | rpc-http | pass | pass | - | - | pass | - |
+| ws.rpc2.d-bis.org | rpc-ws | pass | pass | - | - | - | - |
+| cacti-alltra.d-bis.org | web | pass | pass | pass | - | - | - |
+
+## Test Results by Domain (detail)
+
+
+### dbis-admin.d-bis.org
+- Type: web
+- DNS: pass
+- SSL: pass
+- HTTPS: pass
+- Details: See `all_e2e_results.json`
+
+### core.d-bis.org
+- Type: web
+- DNS: pass
+- SSL: pass
+- HTTPS: pass
+- Details: See `all_e2e_results.json`
+
+### rpc-alltra-3.d-bis.org
+- Type: rpc-http
+- DNS: pass
+- SSL: pass
+- RPC: pass
+- Details: See `all_e2e_results.json`
+
+### mifos.d-bis.org
+- Type: web
+- DNS: pass
+- SSL: pass
+- HTTPS: pass
+- Details: See `all_e2e_results.json`
+
+### members.d-bis.org
+- Type: web
+- DNS: pass
+- SSL: pass
+- HTTPS: pass
+- Details: See `all_e2e_results.json`
+
+### admin.sankofa.nexus
+- Type: web
+- DNS: pass
+- SSL: pass
+- HTTPS: pass
+- Details: See `all_e2e_results.json`
+
+### dash.sankofa.nexus
+- Type: web
+- DNS: pass
+- SSL: pass
+- HTTPS: pass
+- Details: See `all_e2e_results.json`
+
+### rpc-hybx-2.d-bis.org
+- Type: rpc-http
+- DNS: pass
+- SSL: pass
+- RPC: pass
+- Details: See `all_e2e_results.json`
+
+### research.d-bis.org
+- Type: web
+- DNS: pass
+- SSL: pass
+- HTTPS: pass
+- Details: See `all_e2e_results.json`
+
+### policy.d-bis.org
+- Type: web
+- DNS: pass
+- SSL: pass
+- HTTPS: pass
+- Details: See `all_e2e_results.json`
+
+### portal.sankofa.nexus
+- Type: web
+- DNS: pass
+- SSL: pass
+- HTTPS: pass
+- Details: See `all_e2e_results.json`
+
+### cacti-hybx.d-bis.org
+- Type: web
+- DNS: pass
+- SSL: pass
+- HTTPS: pass
+- Details: See `all_e2e_results.json`
+
+### developers.d-bis.org
+- Type: web
+- DNS: pass
+- SSL: pass
+- HTTPS: pass
+- Details: See `all_e2e_results.json`
+
+### sankofa.nexus
+- Type: web
+- DNS: pass
+- SSL: pass
+- HTTPS: pass
+- Details: See `all_e2e_results.json`
+
+### rpc-alltra.d-bis.org
+- Type: rpc-http
+- DNS: pass
+- SSL: pass
+- RPC: pass
+- Details: See `all_e2e_results.json`
+
+### rpc-http-pub.d-bis.org
+- Type: rpc-http
+- DNS: pass
+- SSL: pass
+- RPC: pass
+- Details: See `all_e2e_results.json`
+
+### info.defi-oracle.io
+- Type: web
+- DNS: pass
+- SSL: pass
+- HTTPS: pass
+- Details: See `all_e2e_results.json`
+
+### rpc.public-0138.defi-oracle.io
+- Type: rpc-http
+- DNS: pass
+- SSL: pass
+- RPC: pass
+- Details: See `all_e2e_results.json`
+
+### studio.sankofa.nexus
+- Type: web
+- DNS: pass
+- SSL: pass
+- HTTPS: warn
+- Details: See `all_e2e_results.json`
+
+### www.d-bis.org
+- Type: web
+- DNS: pass
+- SSL: pass
+- HTTPS: pass
+- Details: See `all_e2e_results.json`
+
+### dbis-api.d-bis.org
+- Type: api
+- DNS: pass
+- SSL: pass
+- HTTPS: pass
+- Details: See `all_e2e_results.json`
+
+### interop.d-bis.org
+- Type: web
+- DNS: pass
+- SSL: pass
+- HTTPS: pass
+- Details: See `all_e2e_results.json`
+
+### docs.d-bis.org
+- Type: web
+- DNS: pass
+- SSL: pass
+- HTTPS: pass
+- Details: See `all_e2e_results.json`
+
+### identity.d-bis.org
+- Type: web
+- DNS: pass
+- SSL: pass
+- HTTPS: pass
+- Details: See `all_e2e_results.json`
+
+### rpc-hybx-3.d-bis.org
+- Type: rpc-http
+- DNS: pass
+- SSL: pass
+- RPC: pass
+- Details: See `all_e2e_results.json`
+
+### rpc.d-bis.org
+- Type: rpc-http
+- DNS: pass
+- SSL: pass
+- RPC: pass
+- Details: See `all_e2e_results.json`
+
+### dapp.d-bis.org
+- Type: web
+- DNS: pass
+- SSL: pass
+- HTTPS: pass
+- Details: See `all_e2e_results.json`
+
+### ops.d-bis.org
+- Type: web
+- DNS: pass
+- SSL: pass
+- HTTPS: pass
+- Details: See `all_e2e_results.json`
+
+### www.sankofa.nexus
+- Type: web
+- DNS: pass
+- SSL: pass
+- HTTPS: pass
+- Details: See `all_e2e_results.json`
+
+### www.the-order.sankofa.nexus
+- Type: web
+- DNS: pass
+- SSL: pass
+- HTTPS: pass
+- Details: See `all_e2e_results.json`
+
+### keycloak.sankofa.nexus
+- Type: web
+- DNS: pass
+- SSL: pass
+- HTTPS: pass
+- Details: See `all_e2e_results.json`
+
+### mim4u.org
+- Type: web
+- DNS: pass
+- SSL: pass
+- HTTPS: pass
+- Details: See `all_e2e_results.json`
+
+### data.d-bis.org
+- Type: api
+- DNS: pass
+- SSL: pass
+- HTTPS: pass
+- Details: See `all_e2e_results.json`
+
+### sandbox.d-bis.org
+- Type: web
+- DNS: pass
+- SSL: pass
+- HTTPS: pass
+- Details: See `all_e2e_results.json`
+
+### ws.rpc.d-bis.org
+- Type: rpc-ws
+- DNS: pass
+- SSL: pass
+- Details: See `all_e2e_results.json`
+
+### phoenix.sankofa.nexus
+- Type: web
+- DNS: pass
+- SSL: pass
+- HTTPS: pass
+- Details: See `all_e2e_results.json`
+
+### www.mim4u.org
+- Type: web
+- DNS: pass
+- SSL: pass
+- HTTPS: pass
+- Details: See `all_e2e_results.json`
+
+### wss.defi-oracle.io
+- Type: rpc-ws
+- DNS: pass
+- SSL: pass
+- Details: See `all_e2e_results.json`
+
+### the-order.sankofa.nexus
+- Type: web
+- DNS: pass
+- SSL: pass
+- HTTPS: pass
+- Details: See `all_e2e_results.json`
+
+### rpc2.d-bis.org
+- Type: rpc-http
+- DNS: pass
+- SSL: pass
+- RPC: pass
+- Details: See `all_e2e_results.json`
+
+### rpc-ws-pub.d-bis.org
+- Type: rpc-ws
+- DNS: pass
+- SSL: pass
+- Details: See `all_e2e_results.json`
+
+### dev.d-bis.org
+- Type: web
+- DNS: pass
+- SSL: pass
+- HTTPS: pass
+- Details: See `all_e2e_results.json`
+
+### admin.d-bis.org
+- Type: web
+- DNS: pass
+- SSL: pass
+- HTTPS: pass
+- Details: See `all_e2e_results.json`
+
+### status.d-bis.org
+- Type: web
+- DNS: pass
+- SSL: pass
+- HTTPS: pass
+- Details: See `all_e2e_results.json`
+
+### rpc-alltra-2.d-bis.org
+- Type: rpc-http
+- DNS: pass
+- SSL: pass
+- RPC: pass
+- Details: See `all_e2e_results.json`
+
+### www.phoenix.sankofa.nexus
+- Type: web
+- DNS: pass
+- SSL: pass
+- HTTPS: pass
+- Details: See `all_e2e_results.json`
+
+### gitea.d-bis.org
+- Type: web
+- DNS: pass
+- SSL: pass
+- HTTPS: pass
+- Details: See `all_e2e_results.json`
+
+### secure.mim4u.org
+- Type: web
+- DNS: pass
+- SSL: pass
+- HTTPS: pass
+- Details: See `all_e2e_results.json`
+
+### explorer.d-bis.org
+- Type: web
+- DNS: pass
+- SSL: pass
+- HTTPS: pass
+- Blockscout API: pass
+- Command Center: pass
+- Mission Control stream: pass
+- Mission Control trace: pass
+- Mission Control liquidity: pass
+- Details: See `all_e2e_results.json`
+
+### training.mim4u.org
+- Type: web
+- DNS: pass
+- SSL: pass
+- HTTPS: pass
+- Details: See `all_e2e_results.json`
+
+### blockscout.defi-oracle.io
+- Type: web
+- DNS: pass
+- SSL: pass
+- HTTPS: pass
+- Blockscout API: pass
+- Details: See `all_e2e_results.json`
+
+### dbis-api-2.d-bis.org
+- Type: api
+- DNS: pass
+- SSL: pass
+- HTTPS: pass
+- Details: See `all_e2e_results.json`
+
+### d-bis.org
+- Type: web
+- DNS: pass
+- SSL: pass
+- HTTPS: pass
+- Details: See `all_e2e_results.json`
+
+### rpc-core.d-bis.org
+- Type: rpc-http
+- DNS: pass
+- SSL: pass
+- RPC: pass
+- Details: See `all_e2e_results.json`
+
+### secure.d-bis.org
+- Type: web
+- DNS: pass
+- SSL: pass
+- HTTPS: pass
+- Details: See `all_e2e_results.json`
+
+### rpc-hybx.d-bis.org
+- Type: rpc-http
+- DNS: pass
+- SSL: pass
+- RPC: pass
+- Details: See `all_e2e_results.json`
+
+### codespaces.d-bis.org
+- Type: web
+- DNS: pass
+- SSL: pass
+- HTTPS: pass
+- Details: See `all_e2e_results.json`
+
+### rpc.defi-oracle.io
+- Type: rpc-http
+- DNS: pass
+- SSL: pass
+- RPC: pass
+- Details: See `all_e2e_results.json`
+
+### ws.rpc2.d-bis.org
+- Type: rpc-ws
+- DNS: pass
+- SSL: pass
+- Details: See `all_e2e_results.json`
+
+### cacti-alltra.d-bis.org
+- Type: web
+- DNS: pass
+- SSL: pass
+- HTTPS: pass
+- Details: See `all_e2e_results.json`
+
+## Files Generated
+
+- `all_e2e_results.json` - Complete E2E test results
+- `*_https_headers.txt` - HTTP response headers per domain
+- `*_rpc_response.txt` - RPC response per domain
+- `verification_report.md` - This report
+
+## Notes
+
+- **Optional domains:** Domains in `E2E_OPTIONAL_WHEN_FAIL` (default: many d-bis.org/sankofa/mim4u/rpc) have any fail treated as skip so the run passes when off-LAN or services unreachable. The canonical explorer `explorer.d-bis.org` is intentionally **not** in that list anymore. Set `E2E_OPTIONAL_WHEN_FAIL=` (empty) for strict mode.
+- WebSocket tests require `wscat` tool: `npm install -g wscat`
+- OpenSSL fetch uses `timeout` (`E2E_OPENSSL_TIMEOUT` / `E2E_OPENSSL_X509_TIMEOUT`, defaults 15s / 5s) so `openssl s_client` cannot hang indefinitely
+- Internal connectivity tests require access to NPMplus container
+- Explorer (explorer.d-bis.org): verifies Blockscout API, `/chain138-command-center.html`, and Mission Control stream / trace / liquidity endpoints. Use `SKIP_BLOCKSCOUT_API=1` only when you need to skip the Blockscout API sub-check specifically.
+
+## Next Steps
+
+1. Review test results for each domain
+2. Investigate any failed tests
+3. Test WebSocket connections for RPC WS domains (if wscat available)
+4. Test internal connectivity from NPMplus container
+5. Update source-of-truth JSON after verification

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/www_d-bis_org_https_headers.txt

@@ -0,0 +1,14 @@
+HTTP/2 301 
+date: Tue, 14 Apr 2026 04:38:10 GMT
+content-type: text/html
+content-length: 134
+location: https://d-bis.org/
+alt-svc: h3=":443"; ma=86400
+x-xss-protection: 0
+x-content-type-options: nosniff
+x-frame-options: SAMEORIGIN
+content-security-policy: upgrade-insecure-requests
+strict-transport-security: max-age=63072000; includeSubDomains; preload
+
+
+0.035837

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/www_mim4u_org_https_headers.txt

@@ -0,0 +1,18 @@
+HTTP/2 200 
+date: Tue, 14 Apr 2026 04:38:21 GMT
+content-type: text/html
+content-length: 2710
+vary: Accept-Encoding
+last-modified: Tue, 31 Mar 2026 05:21:47 GMT
+etag: "69cb59eb-a96"
+accept-ranges: bytes
+alt-svc: h3=":443"; ma=86400
+x-xss-protection: 0
+x-content-type-options: nosniff
+x-frame-options: SAMEORIGIN
+content-security-policy: upgrade-insecure-requests
+strict-transport-security: max-age=63072000; includeSubDomains; preload
+referrer-policy: strict-origin-when-cross-origin
+
+
+0.040666

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/www_phoenix_sankofa_nexus_https_headers.txt

@@ -0,0 +1,14 @@
+HTTP/2 301 
+date: Tue, 14 Apr 2026 04:38:34 GMT
+content-type: text/html
+content-length: 134
+location: https://phoenix.sankofa.nexus/health
+alt-svc: h3=":443"; ma=86400
+x-xss-protection: 0
+x-content-type-options: nosniff
+x-frame-options: SAMEORIGIN
+content-security-policy: upgrade-insecure-requests
+strict-transport-security: max-age=63072000; includeSubDomains; preload
+
+
+0.076453

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/www_sankofa_nexus_https_headers.txt

@@ -0,0 +1,14 @@
+HTTP/2 301 
+date: Tue, 14 Apr 2026 04:38:13 GMT
+content-type: text/html
+content-length: 134
+location: https://sankofa.nexus/
+alt-svc: h3=":443"; ma=86400
+x-xss-protection: 0
+x-content-type-options: nosniff
+x-frame-options: SAMEORIGIN
+content-security-policy: upgrade-insecure-requests
+strict-transport-security: max-age=63072000; includeSubDomains; preload
+
+
+0.028209

docs/04-configuration/verification-evidence/e2e-verification-20260413_213757/www_the-order_sankofa_nexus_https_headers.txt

@@ -0,0 +1,14 @@
+HTTP/2 301 
+date: Tue, 14 Apr 2026 04:38:14 GMT
+content-type: text/html
+content-length: 134
+location: https://the-order.sankofa.nexus/
+alt-svc: h3=":443"; ma=86400
+x-xss-protection: 0
+x-content-type-options: nosniff
+x-frame-options: SAMEORIGIN
+content-security-policy: upgrade-insecure-requests
+strict-transport-security: max-age=63072000; includeSubDomains; preload
+
+
+0.044640