CONTINUOUS INTERNET TELEMETRY24H DRIFT3,055 material changesacross 2,744 domains · -343 vs yesterdayDNS DRIFT24 domains changed DNS providertop destination cloudflare.com · -3 vs yesterdayEMAIL DRIFT3 domains switched email providertop destination h-email.net · -3 vs yesterdayCERT DRIFT8 domains switched issuing CA24h · +1 vs yesterdayNOW3,310 curated domains not answering-6,408 vs yesterdayERRORS10,954 responded with an errorlast probe · 5xx / 404 / 429 / 40324H DRIFT3,055 material changesacross 2,744 domains · -343 vs yesterdayDNS DRIFT24 domains changed DNS providertop destination cloudflare.com · -3 vs yesterdayEMAIL DRIFT3 domains switched email providertop destination h-email.net · -3 vs yesterdayCERT DRIFT8 domains switched issuing CA24h · +1 vs yesterdayNOW3,310 curated domains not answering-6,408 vs yesterdayERRORS10,954 responded with an errorlast probe · 5xx / 404 / 429 / 403

sonic.com

Observed 2026-07-13T00:15:49.660294778+00:00 (13h ago). Every field below was attested with an Ed25519 signature at scan time.

Up right now
Runs onSonic
Email bySalesforce
Secured byLet's Encrypt
Also usesAtlassianDocuSignGoogle Search Console
1 subdomain · hospitality
Every line above is a signed observation. Check the math at the bottom of the page.
INFRASTRUCTURE MAPwhat sonic.com actually stands on - every host below is a signed observation
sonic.com
A / AAAA
69.12.210.18969.12.210.190
Sonicserves the site
NS
c.auth-ns.sonic.netd.auth-ns.sonic.neta.auth-ns.sonic.netb.auth-ns.sonic.net
sonic.netanswers its DNS
MX
mailin-02.mx.sonic.netmailin-01.mx.sonic.net
Salesforcereceives its email
TLS
www.sonic.com
Let's Encryptissued its certificate

DNS Records

A 2

  • 69.12.210.189
  • 69.12.210.190

MX 2

  • 10mailin-02.mx.sonic.net
  • 10mailin-01.mx.sonic.net

TXT 17

  • 00D40000000MozY=1TBJx0000000HSH
  • wrike-verification=MjExNTQzMDo0N2I4NDBiNGJhZDQ4ODc4Zjg1OWFhZTk3MTVkN2U3NmM5NjFjM2I4NmE4ZjA1YmQyNTc1ZGQ1OTEwODgwZTgy
  • logmein-verification-code=xFTc9hooKfdmhtuWKzq0TOShE
  • MS=ms24382993
  • v=spf1 mx include:mail.sonic.net include:spf.protection.outlook.com include:_spf.salesforce.com include:registrarmail.net ~all
  • twilio-domain-verification=75b47af0a83aef18e12af9ae08933bd8
  • atlassian-domain-verification=RHhxPwnzlI1md7281NcRejrFnIKCO2IJwXE8rulsAPfa3PzbPXGheT6bdOy9UIPO
  • google-gws-recovery-domain-verification=50976538
  • docusign=4cc02cc6-64bf-4e39-9893-76bb8c362d2f
  • anthropic-domain-verification-samves=VpsM5ahiuUIk2MSpRLBpxH506

NS 4

  • c.auth-ns.sonic.net
  • d.auth-ns.sonic.net
  • a.auth-ns.sonic.net
  • b.auth-ns.sonic.net

SOA 1

  • a.auth-ns.sonic.net hostmaster.sonic.net

TLS Certificates (3)

Common NameIssuerExpires
www.sonic.com C=US, O=Let's Encrypt, CN=YR2 Fri, 11 Sep 2026 07:51:39 +0000
YR2 C=US, O=ISRG, CN=Root YR Sat, 02 Sep 2028 23:59:59 +0000
Root YR C=US, O=Internet Security Research Group, CN=ISRG Root X1 Thu, 02 Sep 2032 23:59:59 +0000

Subdomains (1)

The proof

Signed at scan time. Check the math yourself. Every line above is part of one signed observation. Re-hash it and check the Ed25519 signature in your own browser; nothing leaves your machine.

Verify this receipt

Put the receipt on your own site. A live badge showing what DomainDrift observes and signs for sonic.com. It updates itself. It attests a signed observation - not that the site is safe.

DomainDrift signed-observation badge for sonic.com <a href="https://domaindrift.io/t/sonic.com"> <img src="https://domaindrift.io/badge/sonic.com.svg" width="300" height="64" alt="DomainDrift signed observations for sonic.com"> </a>

Ed25519 Receipt

Receipt ID
c1b1ecc8-aa25-4371-80c8-407cc5d7cad2
Output Hash
f6981ce6c59e3764f23df2c63fcbc9947647e974dfe2df060921e3a0e61532f8
Signature
ed25519:74bb5eb9ba8d6f0b191216ce6b4cd5548e37eea230e5cbc0d2ae7dd388eff39da043a53a8d4da40ac4f42c15c1649b3afc3cd14f871debf7ea5ca0ad6743e902
Public Key
ed25519:178c3bd0f57d9d64b83cc4630753381e1a465005a2bbba3d032371f24af0bfd8
Parent
(genesis)
Plane
fast
Verify this in your browser