Infrastructure
· 9 checks — DNS, redirects, IPv6, crawlability, URL variants, and domain intelligence rolled into one auditable list.BRedirect Chain2 redirect(s), 510 ms totalREVIEW
https://www.mmhmm.app
67 ms · HTTP/1.1
https://www.airtime.com/
235 ms · HTTP/1.1
https://www.airtime.com/home
209 ms · HTTP/1.1 FINAL
| # | URL | Status | Time | Protocol | Server |
|---|---|---|---|---|---|
| 1 | https://www.mmhmm.app | 301 | 67 ms | HTTP/1.1 | Vercel |
| 2 | https://www.airtime.com/ | 307 | 235 ms | HTTP/1.1 | Vercel |
| 3 | https://www.airtime.com/home | 200 | 209 ms | HTTP/1.1 | Vercel |
See the visual redirect chain in the HTTP Probe tab →
Each redirect adds latency. Try to minimize the chain to 1 hop.
Redirect chain — each hop adds latency; combine into one redirect where possible.
Source: Google Search Central / web.dev
CIPv6 ReadinessActionNo IPv6 supportREVIEW
IPv6 support is increasingly important for global accessibility. About 40% of internet users have IPv6 connectivity.
No AAAA records — same impact as 'no IPv6 (AAAA) records'; IPv6-preferring clients pay extra latency falling back to IPv4.
Source: Google IPv6 stats
BDomain Intelligencemmhmm.app — via Squarespace Domains II LLC., 6 years old, hosted on AWSREVIEW
EXPIRED
April 26, 2026
46 days
Issued by Let's Encrypt
6 years
Registered April 26, 2020
Enabled
Protects against DNS spoofing
AWS
ASN AS16509
76.76.21.21
Squarespace Domains II LLC.
Expiry timeline
Recommended actions
- Domain has EXPIRED — renew immediately to avoid total site outage
This domain expires on April 26, 2026. Domains that expire accidentally cause complete website downtime. Enable auto-renewal or renew manually now.
Domain expiry approaching — renew immediately and ensure auto-renew + alerting are configured.
Source: ICANN renewal policy
BTLS Certificate Expiry & Recommendations46 days until leaf cert expires — 3 issues to addressREVIEW
Certificate validity
Recommended actions
- Add includeSubDomains to the HSTS directive
- Add the preload directive and submit to hstspreload.org once max-age + includeSubDomains are in place
- Enable OCSP stapling on your TLS server to remove a CA roundtrip and protect user privacy
BCDN & DeliveryVercelREVIEW
ADNS Records2 A records, 21 ms lookupPASS
| A | 76.76.21.142, 66.33.60.66 |
| AAAA | — |
| CNAME | cname.vercel-dns.com |
| NS | ns3.vercel-dns-3.com, ns1.vercel-dns-3.com, ns4.vercel-dns-3.com, ns2.vercel-dns-3.com |
| MX | — |
| TXT | — |
| CAA | Lookup not available with standard resolver |
A CNAME at the zone apex can break MX and NS records. Use ALIAS/ANAME or A records instead.
CNAME at the apex (example.com) breaks every other apex record (MX, TXT, NS) — DNS-protocol violation per RFC 1034.
Learn more ▾ ▴
RFC 1034 forbids CNAME alongside other records at the same name. Some DNS providers offer ALIAS / ANAME / flattened-CNAME records that work around this — use those instead. Otherwise apex-level CNAME breaks email (no MX), domain ownership verification (no TXT), and more.
Source: RFC 1034
CAA record lookup requires a specialized DNS resolver. This check will be available in a future update.
Informational: CAA (Certification Authority Authorization) records weren't checked in this scan.
SPF helps prevent email spoofing. Add a TXT record starting with 'v=spf1'.
Without SPF, receiving servers can't validate sending IPs — your domain is easier to spoof in phishing.
Learn more ▾ ▴
SPF complements DMARC. Both should be published. SPF records list authorized sending IPs (e.g., `v=spf1 include:_spf.google.com ~all` for Google Workspace). After publishing, verify in Google Postmaster Tools or mxtoolbox.
Source: RFC 7208 (SPF)
A+Crawlabilityrobots.txt present, sitemap with 210 URLsPASS
User-Agent: *
Allow: /
Disallow: /cms/
Sitemap: https://www.airtime.com/sitemap.xml
AURL Variantswww/non-www, trailing slash, HTTP→HTTPSPASS
www / non-www
Preferred variant: www
HTTP → HTTPS
Use 301 (permanent) instead of 302 (temporary)