indexo.dev

apg.nl

.nl crawl

First seen 2026-05-19 · Last seen 2026-05-27 · ok HTTP/1.1 200 2080 ms crawled 2026-05-25

US · 162.159.140.127 · AS13335 Cloudflare, Inc.

Reputation 100/100

sector finance type homepage

HTML metadata

Title
APG - Voor nu, straks en later
Description
Als pensioenuitvoerder voor acht pensioenfondsen werkt APG elke dag aan een goed pensioen in een leefbare wereld. Lees meer hierover in onze publicaties.
Language
nl
Canonical
https://apg.nl/
Translations
  • en
  • nl

Open Graph

url
https://apg.nl/
title
APG - Voor nu, straks en later
locale
nl
site name
APG
description
Als pensioenuitvoerder voor acht pensioenfondsen werkt APG elke dag aan een goed pensioen in een leefbare wereld. Lees meer hierover in onze publicaties.

Technology

CDN
Cloudflare
Cookie consent
  • Cookiebot

Third-party hosts loaded (2)

  • consent.cookiebot.com×1
  • www.google.com×1

Social

DNS records live

NS
  • ns01.brandshelter.com
  • ns02.brandshelter.net
MX
  • 0 apg-nl.p-v1.mx.microsoft
TXT
Show 9 TXT records
  • MS=4CCC434B78573931A0B54461B99D71353875853D
  • mentimeter-cfff6095-aa91-468a-99b5-56f5ebb97e42
  • docker-verification=9a920da9-40dd-475c-9f36-5c0fecde648f
  • intersight=746ea2215ee0b77d7d0f52c3a70458a8c84b92d7e5a817d6d8157ec88b842186
  • lncAdi50Z0G+AK1cHe5jcCKDAgaft77jXEiN+26yABzpjduqsgq8PISJKuE8lqbd3mrPTWnk96UhYJq118DJ6w==
  • adobe-sign-verification=1c5cb87b6c4dcaf6a2a6a6dd7acb6179
  • MS=83D968CDF09723CF68680865ECED35D8947DC569
  • have-i-been-pwned-verification=dweb_8bw6lq61pc77mmrcr3zyvfsd
  • _mzl5vslbxg54zm9ne4p60p65clo9chm
Verified for
  • Apple
  • Atlassian
  • Dynamics 365
  • Google
  • Meta
  • Microsoft 365
  • Miro

Email authentication strong

SPF
not published
DMARC
v=DMARC1; p=reject; rua=mailto:nrczdx9y@ag.eu.dmarcadvisor.com
policy: reject (enforced)
DKIM
Show 4 DKIM selectors
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsAa6aS5XtHLvIwmkgQduaf6PGS5rHhSiofwswMxo3x6VVvuXH5MhkdJ2RoOYgv2LvgX2St4GyaiEcl…
  • k1: k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDbNrX2cY/GUKIFx2G/1I00ftdAj713WP9AQ1xir85i89sA2guU0ta4UX1Xzm06XIU6iBP41VwmPwBGRNofhBVR+e6WHUo…
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzLt7xCbRaEyv7E5KN5UcKea83yH9zlt724AfwjabsxH796D/hy4apKFUqzkimXUD9X3vW55CtTxDdVDeAw…
  • s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCjLljjJcHRtbPMPTUNsjniYG1Qc0Yt6myQkdirq/09ik760VEQqZ/QNGIR+dHXFXw8JOqjoHwR9DWDkeYu/i/Nem…
selectors probed

Certificates

Loading certificate

HTTP security headers

Header hygiene 85/100 Checked live page: https://apg.nl/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Permissions Policy
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SameOrigin
x-content-type-options
nosniff
content-security-policy
default-src 'none';script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.redditstatic.com/ads/pixel.js https://googleads.g.doubleclick.net https://d6unz3nsyh8vw.cloudfront.net/3SFv8DuWrRsddehY9xMi45LjA.js https://*.googletagmanager.com https://www.google.com https://consent.cookiebot.com https://www.gstatic.com https://*.google-analytics.com https://tagmanager.google.com https://snap.licdn.com https://connect.facebook.net https://consentcdn.cookiebot.com https://www.youtube.com https://player.vimeo.com https://www.connexys.nl https://analytics.apg.nl https://www.googleadservices.com https://js.monitor.azure.com https://static.hotjar.com https://script.hotjar.com https://platform.instagram.com https://collection.eu.maxsight.com https://www.instagram.com https://ingest.promptwatch.com;object-src 'self';style-src 'self' 'unsafe-inline' https://tagmanager.google.com https://googletagmanager.com https://fonts.googleapis.com https://static.hotjar.com https://script.hotjar.com;img-src '
strict-transport-security
max-age=31536000

Links to (3)

Linked from (3)