User certificates (S/MIME)
User certificates can be automatically requested via our e-mail encryption gateway by sending an empty e-mail with the subject GetPublicKey to the respective e-mail address. The Bundesbank's e-mail gateway system sends back an automated and signed e-mail containing the e-mail address' public key. If the requested e-mail address does not have its own public key yet, the domain key (see below) is sent back.
You can also ask a member of staff directly to send you a signed e-mail.
In addition to the individual user certificates, the Bundesbank uses the following domain keys.
Domäne & Fingerprint | Certificate |
*@bundesbank.de Fingerprint: f3 18 7a 2a 50 d5 93 94 6d ca 57 e2 8f 9d cc 37 33 13 e6 f7 | |
*@externe-mitarbeiter.bundesbank.de Fingerprint: 6e e2 ca cd 95 57 6a 18 6f 6e 79 7d ce 1f fe 59 fb 1c 13 98 |
In addition to its own certificates, the Deutsche Bundesbank also uses certificates from the ESCB-PKI for secure e-mail traffic. The certificate of the root and sub-CA, as well as current revocation lists and policies can be found here: