User certificates (S/MIME)
User certificates can be automatically requested via our e-mail encryption gateway by sending an empty e-mail with the subject GetPublicKey to the respective e-mail address. The Bundesbank's e-mail gateway system sends back an automated and signed e-mail containing the e-mail address' public key. If the requested e-mail address does not have its own public key yet, the domain key (see below) is sent back.
You can also ask a member of staff directly to send you a signed e-mail.
In addition to the individual user certificates, the Bundesbank uses the following domain key.
Domain & Fingerprint | Certificate |
*@bundesbank.de Fingerprint: 22 0a 65 b8 6e f8 d5 94 f2 de b5 b7 d6 bd 34 f2 bb 2f cf 2f |
Domainkey Bundesbank
2 KB, CER
bundesbank.de
|
The domain key above can be used for the domains *@bundesbank.de and *@externe-mitarbeiter.bundesbank.de. If a separate key is required for *@externe-mitarbeiter.bundesbank.de, please use the following:
Domain & Fingerprint | Certificate |
*@externe-mitarbeiter.bundesbank.de Fingerprint: 17 f2 2f e1 00 ee 6c 61 e6 7b d3 df 5d ee 58 a1 e7 20 50 91 |
Domainkey Externe Mitarbeiter Bundesbank
2 KB, CER
bundesbank.de
|
In addition to its own certificates, the Deutsche Bundesbank also uses certificates from the ESCB-PKI for secure e-mail traffic. The certificate of the root and sub-CA, as well as current revocation lists and policies can be found here: