Infrastructure
· 9 checks — DNS, redirects, IPv6, crawlability, URL variants, and domain intelligence rolled into one auditable list.FRedirect ChainAction4 redirect(s), 496 ms totalFIX
https://eib.org
41 ms · HTTP/1.1
https://www.eib.org/
187 ms · HTTP/1.1
https://www.eib.org/en/
38 ms · HTTP/1.1
http://www.eib.org/en/index
3 ms · HTTP/1.1
https://www.eib.org/en/index
228 ms · HTTP/1.1 FINAL
| # | URL | Status | Time | Protocol | Server |
|---|---|---|---|---|---|
| 1 | https://eib.org | 301 | 41 ms | HTTP/1.1 | volt-adc |
| 2 | https://www.eib.org/ | 301 | 187 ms | HTTP/1.1 | |
| 3 | https://www.eib.org/en/ | 302 | 38 ms | HTTP/1.1 | |
| 4 | http://www.eib.org/en/index | 301 | 3 ms | HTTP/1.1 | volt-cdn |
| 5 | https://www.eib.org/en/index | 200 | 228 ms | HTTP/1.1 |
See the visual redirect chain in the HTTP Probe tab →
Each redirect adds latency. Try to minimize the chain to 1 hop.
Redirect chain — each hop adds latency; combine into one redirect where possible.
Source: Google Search Central / web.dev
Redirect directly from https://eib.org to https://www.eib.org/en/index
Redirect chain could be flattened to one hop — server config tweak removes intermediate latency.
Source: web.dev
If permanent, use 301 instead.
302 (Found) is for genuinely temporary redirects — if this redirect is permanent, switch to 301 to preserve SEO equity.
Learn more ▾ ▴
Search engines treat 302 as temporary, keeping the original URL indexed and not transferring full link equity to the destination. Use 301 (Moved Permanently) for permanent redirects (HTTP→HTTPS, www-vs-non-www, URL restructures).
Source: Google Search Central
DCDN & DeliveryActionNo CDN detectedFIX
Consider using a CDN to improve global delivery speed and reduce origin load.
CIPv6 ReadinessActionNo IPv6 supportREVIEW
IPv6 support is increasingly important for global accessibility. About 40% of internet users have IPv6 connectivity.
No AAAA records — same impact as 'no IPv6 (AAAA) records'; IPv6-preferring clients pay extra latency falling back to IPv4.
Source: Google IPv6 stats
CCrawlabilityActionrobots.txt present, sitemap with 0 URLsREVIEW
Search engines may not be able to parse the sitemap. Fix XML validation errors.
An unparseable sitemap is silently ignored by Google — the URLs it advertises are never queued for crawl.
Learn more ▾ ▴
Google's sitemap parser is strict about XML validity. A single unescaped `&` or unclosed tag invalidates the whole file. Run your sitemap through a validator (Search Console's Sitemaps report flags it) and fix the offending entry. Most generators escape correctly; mistakes usually come from manually-written entries.
Source: sitemaps.org / Google Search Central
An empty sitemap provides no value. Add <url> entries for your pages.
An empty sitemap signals 'no content to index' to Google — actively harmful versus having no sitemap at all.
Learn more ▾ ▴
Google compares URLs in the sitemap against URLs it has crawled. An empty sitemap on a site with thousands of pages signals abandonment. Either populate it correctly (most CMSes auto-generate) or delete the file and let Google crawl normally.
Source: Google Search Central / sitemaps.org
Add a 'Sitemap:' directive to robots.txt so search engines can discover your sitemap.
robots.txt omits Sitemap: directive — crawlers must fetch /sitemap.xml by convention; reliable but missing the explicit hint.
Source: sitemaps.org
<!DOCTYPE html>
<html lang="en" class="page-index">
<head>
<meta name="google-site-verification" content="ej7DCzns06I5qrf4Xn5aafoQeDdFowTaWUwsWxCRIxc" />
<meta content="text/html; charset=utf-8" http-equiv="Content-Type"/>
<meta content="IE=9,10,11,edge" http-equiv="X-UA-Compatible"/>
<meta content="width=device-width, initial-scale=1.0" name="viewport"/>
<meta content="350888674962511" property="fb:pages"/>
<link rel="shortcut icon" href="/img/icons/favicons/favicon-32x32.png?v=0.1" sizes="32x32">
<link rel="shortcut icon" href="/img/icons/favicons/favicon-16x16.png?v=0.1" sizes="16x16">
<link rel="shortcut icon" href="/img/icons/favicons/android-chrome-192x192.png?v=0.1" sizes="192x192">
<link rel="shortcut icon" href="/img/icons/favicons/android-chrome-512x512.png?v=0.1" sizes="512x512">
<!-- iOS -->
<link rel="apple-touch-icon" href="/img/icons/favicons/apple-touch-icon.png?v=0.1">
<title lang="en">Homepage | European Investment Bank</title>
<meta name="description" content="The European Investment Bank (EIB) is the lending arm of the European Union. We are the world’s largest multilateral lender and the biggest provider of climate finance."></meta>
<meta name="copyright" content="European Investment Bank">
<!-- generics -->
<link rel="shortcut icon" href="/img/icons/favicons/favicon-32x32.png?v=0.1" sizes="32x32">
<link rel="shortcut icon" href="/img/icons/favicons/favicon-16x16.png?v=0.1" sizes="16x16">
<link rel="shortcut icon" href="/img/icons/favicons/android-chrome-192x192.png?v=0.1" sizes="192x192">
<link rel="shortcut icon" href="/img/icons/favicons/android-chrome-512x512.png?v=0.1" sizes="512x512">
<!-- iOS -->
<link rel="apple-touch-icon" href="/img/icons/favicons/apple-touch-icon.png?v=0.1">
<link rel="canonical" href="https://www.eib.org/en/index" />
<link rel="alternate" href="https://www.eib.org/en/index" hreflang="en"/>
<link rel="alternate" href="https://www.eib.org/fr/index" hreflang="fr"/>
<link rel="alternate" href="https://www.eib.org/de/index" hreflang="de"/>
<meta property="twitter:image" content="https://www.eib.org/photos/rs/ff58d908-cb76-4dbf-901e-5058a9854634/largeprvw/image.jpg"/>
<meta property="og:image" content="https://www.eib.org/photos/rs/ff58d908-cb76-4dbf-901e-5058a9854634/largeprvw/image.jpg"/>
<script type="application/ld+json">
{
"@context": "https://schema.org",
"@type": ["GovernmentOrganization"],
"name": "European Investment Bank (EIB)",
"@id": "https://www.eib.org/en/about/index",
"url": "https://www.eib.org/en/index",
"logo": "https://www.eib.org/img/logos/eib-logogroup.png",
"description": "The European Investment Bank (EIB) is the long-term lending institution of the European Union owned by its Member States.",
"sameAs": [
"https://twitter.com/EIB",
"https://www.linkedin.com/company/european-investment-bank/",
"https://en.wikipedia.org/wiki/European_Investment_Bank",
"https://www.facebook.com/EuropeanInvestmentBank",
"https://www.youtube.com/EIBtheEUbank",
"https://www.instagram.com/europeaninvestmentbank/",
"https://whatsapp.com/channel/0029VaAMHR12kNFwddDgU20r"
],
"contactPoint": {
"@type": "ContactPoint",
"email": "info@eib.org",
"telephone": "+352 4379 1",
"areaServed": "EU and Global",
"availableLanguage": ["en", "fr", "de", "es", "it", "pt"]
},
"address": {
"@type": "PostalAddress",
"streetAddress": "98-100, boulevard Konrad Adenauer",
"addressLocality": "Luxembourg",
"postalCode": "L-2950",
"addressCountry": "LU"
},
"knowsAbout": [
"EIB Group strategic priorities",
"Projects supported by the EIB",
"EIB products",
"Regions of activity",
"EIB stories and essays",
"EIB Group newsroom",
"Affordable and sustainable housing",
"Security and defence",
"TechEU",
"Procurement",
"Investor relations",
"Careers",
"Economic research",
"EIB publications",
"EIB Group at a glance"
]
}
</script>
<script type="application/ld+json">
{
"@context": "https://schema.org",
"@type": "WebPage",
"name": "Homepage | European Investment Bank",
"description": "The European Investment Bank (EIB) is the lending arm of the European Union. We are the world’s largest multilateral lender and the biggest provider of climate finance.",
"url": "https://www.eib.org/en/index",
"publisher": {
"@id": "https://www.eib.org/en/about/index"
},
"datePublished": "2026-04-21T09:27:17Z",
"dateModified": "2026-04-21T09:27:09Z",
"inLanguage": "en-EN",
"isAccessibleForFree": true,
"potentialAction": [
{
"@type": "SearchAction",
"target": "https://www.eib.org/en/search?q={search_term_string}",
"query-input": "name=search_term_string"
}
],
"mainEntity": {
"@type": "ItemList",
"name": "services",
"itemListElement": [
{
"@type": "ListItem",
"position": 1,
"name": "Projects",
"url": "https://www.eib.org/en/projects/index"
},
{
"@type": "ListItem",
"position": 2,
"name": "News",
"url": "https://www.eib.org/en/press/index"
}
]
}
}
</script>
<style>
menu.eib-mega-menu{display:none}img.lozad {width:100%;height:100%;object-fit:cover;object-position:center;will-change:filter;display:block;}
</style>
<link rel="stylesheet" href="https://tech.eib.org/_tools/mix/css/eib-font.css">
<link rel="stylesheet" href="https://tech.eib.org/_tools/mix/font/fontawesome-pro/css/all.min.css"/>
<link rel="stylesheet" href="https://tech.eib.org/_tools/front/css/framework/bootstrap.min.css">
<link rel="stylesheet" href="https://tech.eib.org/_tools/front/css/framework/swiper-bundle.min.css">
<link rel="stylesheet" href="https://tech.eib.org/_tools/front/css/framework/rl/eib-styles.css?v=2.17">
<link rel="stylesheet" href="https://tech.eib.org/_tools/mix/css/all-style-rl.css?v=3.67">
<link href="https://tech.eib.org/_tools/front/css/framework/rl/header.css?v=1.634" media="screen" rel="stylesheet" type="text/css"/>
<link href="https://tech.eib.org/_tools/front/css/framework/rl/primer/primer.css" rel="stylesheet" type="text/css"/>
<link rel="stylesheet" href="https://tech.eib.org/_tools/front/css/framework/rl/footer.css?v=1.9">
<link href="https://tech.eib.org/_tools/front/css/fm/all-style.css?v=4.1" media="screen" rel="stylesheet" type="text/css"/>
<link rel="stylesheet" href="https://tech.eib.org/_tools/front/css/framework/jquery.fancybox.min.css">
<link rel="stylesheet" href="https://tech.eib.org/_tools/mix/css/gallery/thumbnail-gallery.css?v=1.41">
<link rel="stylesheet" href="https://tech.eib.org/_tools/front/css/framework/flag-icon.min.css">
<link rel="stylesheet" media="print" href="https://tech.eib.org/_tools/front/css/generic/print.css?v=1.2"/>
<link rel="stylesheet" href="https://tech.eib.org/_tools/front/css/framework/animations/scrollmation-gallery.css"/>
<link rel="stylesheet" href="https://tech.eib.org/_tools/front/css/framework/animations/scrollmation-text-on-image.css"/>
<link rel="stylesheet" href="https://tech.eib.org/_tools/front/css/framework/animations/scrollmation-two-col.css"/>
<link rel="stylesheet" type="text/css" href="https://tech.eib.org/_tools/front/css/framework/curator.embed.css"/>
<script src="https://tech.eib.org/_tools/front/js/framework/_rareloop/animate-in.js" defer></script>
<link rel="stylesheet" href="https://tech.eib.org/_tools/front/css/framework/animations/scrollmation-gallery.css"/>
<link rel="stylesheet" href="https://tech.eib.org/_tools/front/css/framework/animations/scrollmation-text-on-image.css"/>
<link rel="stylesheet" href="https://tech.eib.org/_tools/front/css/framework/animations/scrollmation-two-col.css"/>
<script charset="UTF-8" src="https://tech.eib.org/_tools/front/js/include-google.js" type="text/javascript"></script>
</head>
<body class="eib-homepage">
<header class="header__landing">
<!-- start menu -->
<menu class="eib-mega-menu eib-mega-menu--v2 ">
<a class="eib-mega-menu__search eib-mega-menu__icon-link">
<svg width="20" height="20" viewbox="0 0 20 20" fill="inherit" xmlns="http://www.w3.org/2000/svg">
<path d="M19.9399 18.1499L13.4474 11.8017C14.4549 10.5282 14.9999 8.97107 14.9999 7.3333C14.9999 5.37287 14.2174 3.53465 12.8024 2.14866C11.3874 0.762663 9.50246 0 7.49997 0C5.49748 0 3.61248 0.765108 2.19749 2.14866C0.779996 3.53221 0 5.37287 0 7.3333C0 9.29129 0.782496 11.1344 2.19749 12.5179C3.61248 13.9039 5.49498 14.6666 7.49997 14.6666C9.17496 14.6666 10.765 14.1337 12.0674 13.1511L18.5599 19.4968C18.579 19.5154 18.6016 19.5302 18.6264 19.5403C18.6513 19.5504 18.678 19.5556 18.7049 19.5556C18.7318 19.5556 18.7585 19.5504 18.7834 19.5403C18.8083 19.5302 18.8309 19.5154 18.8499 19.4968L19.9399 18.4335C19.959 18.4149 19.9741 18.3928 19.9844 18.3684C19.9947 18.3441 20 18.318 20 18.2917C20 18.2654 19.9947 18.2393 19.9844 18.215C19.9741 18.1906 19.959 18.1685 19.9399 18.1499ZM11.46 11.2053C10.4 12.2393 8.99496 12.8088 7.49997 12.8088C6.00497 12.8088 4.59998 12.2393 3.53998 11.2053C2.48249 10.1688 1.89999 8.79507 1.89999 7.3333C1.89999 5.87153 2.48249 4.49531 3.53998 3.46132C4.59998 2.42732 6.00497 1.85777 7.49997 1.85777C8.99496 1.85777 10.4025 2.42488 11.46 3.46132C12.5174 4.49776 13.0999 5.87153 13.0999 7.3333C13.0999 8.79507 12.5174 10.1713 11.46 11.2053Z" fill="inherit"></path>
</svg> <span>Search</span> </a>
<span class="eib-mega-menu__languages eib-select"> <span class="eib-select__label">EN</span>
<ul class="eib-select__dropdown">
<li class="eib-select__option"><a class="eib-select__link" href="?lang=fr">FR</a></li>
<li class="eib-select__option"><a class="eib-select__link" href="?lang=de">DE</a></li>
</ul> </span>
<a class="eib-mega-menu__toggle eib-mega-menu__icon-link">
<svg width="24" height="16" viewbox="0 0 24 16" fill="#fff" xmlns="http://www.w3.org/2000/svg">
<rect width="24" height="2" fill="inherit"></rect>
<rect y="6.64648" width="24" height="2" fill="inherit"></rect>
<rect y="13.2939" width="24" height="2" fill="inherit"></rect>
</svg> <span>menu</span> </a> <a href='/en/index.htm' class="eib-mega-menu__logo-horizontal default-eib" title="European Investment Bank Group">
<svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 420.33 211.1">
<defs>
<style>
.cls-1 {
fill: none;
}
.cls-1,
.cls-2,
.cls-3,
.cls-4 {
stroke-width: 0px;
}
.cls-2 {
fill: #9d9d9c;
}
.cls-3 {
fill: #ffde00;
}
.cls-4 {
fill: #039;
}
</style>
</defs>
<g id="Base">
<rect class="cls-4 flagbackground-color" x="152.54" y="43.16" width="109.24" height="80.24"></rect>
<polygon class="cls-3 star-color" points="208.11 55.21 212.29 55.2
BTLS Certificate Expiry & Recommendations41 days until leaf cert expires — 4 issues to addressREVIEW
Certificate validity
Recommended actions
- Add includeSubDomains to the HSTS directive
- Add the preload directive and submit to hstspreload.org once max-age + includeSubDomains are in place
- Enable DNSSEC on your domain for DNS spoofing protection
- Enable OCSP stapling on your TLS server to remove a CA roundtrip and protect user privacy
A+DNS Records1 A records, 176 ms lookupPASS
| A | 159.60.131.141 |
| AAAA | — |
| CNAME | — |
| NS | ns2.eib.org, ns3.eib.org, ns1.eib.org |
| MX | 10 mx1.hc1688-68.eu.iphmx.com 10 mx2.hc1688-68.eu.iphmx.com |
| TXT | SPF v=spf1 +mx +exists:%{i}.spf.hc1688-68.eu.iphmx.com +include:spf-strict.postcloud... apple-domain-verification=8COSMKMO8Wdmzu2Swd9A-2jMDpPyhq6juMBW1RCi3uk gitpod-verification=MpcNe1KBZeEZC3jQwbdv0KWrRCV7C3J4IHSzThmEYu0= _globalsign-domain-verification=trwZ3JWZrF3Ij2HvzM1s5IrVP3RACG8zwWUCS5Ulsm globalsign-domain-verification=kwIjLH9Up6swVGy5hvEQ1yWKedD8sMR0Dl2JMAVtRC ikYiiLDoJMYRrsxT8yj7CFvdTAGG/czVBH96SFbq5CQ= _globalsign-domain-verification=dKQaXoWqzCkAnaVWWVxhJbAc1jNxXYEax2nKt-faWX knowbe4-site-verification=cf8b46b1dac5d50b00c948be258db72d atlassian-domain-verification=K3ec3aphD9u4ESgIlYWAA6C4dFNtq9tz99DCHWdvTaimEMpreM... linkedin-site-verification=3b4aa95b-d218-4521-8ada-300f591a0082 _globalsign-domain-verification=jLS-NzmY19bAiJr5TrACsKmn4Zb7ogsQ4S_bc44BmQ _globalsign-domain-verification=HC-tjrQuXj4gpReANZiR8-MEO-eRun1z4JFVWVyoz- MS=7D9FB61A39A855C80D60DD544558C0864E0EADD7 adobe-idp-site-verification=a3aead92f4b0c83d8a5358be27dde6e89ce78f3fc20e6c482f65... _globalsign-domain-verification=56sNryAdT2ENdZgj8Ft77ROJSgOCinMBjqVZaNSxLl infoblox-domain-mastery=5b25b9eeb5058d2add573a443b1223712b98cb94cc613ac89b29ba09... cisco-ci-domain-verification=b6441bc729e8accc5871b43b8b693bf1c8bca7cae18111a3747... MS=ms60465109 cloudflare_dashboard_sso=beaeb3062ecdea2335f7c06bc9f324cd google-site-verification=xqllmc-bZ8zpUMwQVG6iBeNS_kSwz_3twcZK962k8js vmware-cloud-verification-28f6e2ff-da5c-4bc7-aee9-9535e1a58b5e docusign=a10822ca-38e0-40f3-a882-3d99ecbf6799 _globalsign-domain-verification=NI_AaLDZjutpWARQkYrC6AaHPPR3lTS9iwyNyYTSj8 |
| CAA | Lookup not available with standard resolver |
Multiple A records provide failover if one server goes down.
Single A record means a single point of failure — if that IP goes down, your site is unreachable until DNS TTL expires.
Learn more ▾ ▴
Add multiple A records for round-robin failover, or use a managed DNS provider with health-checked failover (Route 53, Cloudflare, NS1). Short TTL (60-300s) lets clients recover faster on outages.
Source: SRE practice / DNS architecture
CAA record lookup requires a specialized DNS resolver. This check will be available in a future update.
Informational: CAA (Certification Authority Authorization) records weren't checked in this scan.
A+URL Variantswww/non-www, trailing slash, HTTP→HTTPSPASS
www / non-www
Preferred variant: non-www
HTTP → HTTPS
Consistent
A+Domain Intelligenceeib.org — via Network Solutions, LLC, 30 years, 4 months old, hosted on F5, FRPASS
1787 days
May 8, 2031
41 days
Issued by Let's Encrypt
30 years, 4 months
Registered May 7, 1996
Not enabled
Protects against DNS spoofing
F5, FR
ASN AS35280
159.60.131.141
Network Solutions, LLC
Expiry timeline
Recommended actions
- Enable DNSSEC to protect visitors from DNS spoofing
- Enable registrar lock (clientTransferProhibited) to block unauthorized domain transfers
DNSSEC protects against DNS spoofing attacks. While not required, enabling DNSSEC adds an additional layer of security. Contact your DNS provider to enable it.
Without DNSSEC, an attacker who can poison your DNS can hijack your domain — and SSL certs alone don't stop them.
Learn more ▾ ▴
DNSSEC adds cryptographic signatures to DNS records, preventing forged responses from poisoning resolver caches. Without it, an attacker who controls the network path can redirect your domain to a malicious server before any HTTPS handshake happens. Most modern registrars (Cloudflare, Google Domains, Route 53) enable it with one toggle.
Source: ICANN / RFC 4033
The domain can be transferred without an unlock step. Enable registrar lock (clientTransferProhibited) in your registrar's control panel to protect against unauthorized or accidental transfers.
Without registrar lock, an attacker who phishes your registrar credentials can transfer the domain in minutes — total brand hijack.
Learn more ▾ ▴
Registrar lock (clientTransferProhibited, clientUpdateProhibited, clientDeleteProhibited) requires extra verification before any transfer/update/delete. Every major registrar offers it free. Combined with 2FA on your registrar account, it's the strongest defense against domain hijacking.
Source: ICANN / domain-security best practice