seems it's time for a code exchange given that nextdns is, in fact, using pihole. 
also i've had a lot of stuff break via mobile today...android using nextdns as "private dns" solution. haven't had time to attribute it to (or rule out) their cname resolution upgrade though.