User certificates (S/MIME)
User certificates can be automatically requested via our e-mail encryption gateway by sending an empty e-mail with the subject GetPublicKey to the respective e-mail address. The Bundesbank's e-mail gateway system sends back an automated and signed e-mail containing the e-mail address' public key. If the requested e-mail address does not have its own public key yet, the domain key (see below) is sent back.
You can also ask a member of staff directly to send you a signed e-mail.
In addition to the individual user certificates, the Bundesbank uses the following domain keys.
| Domäne & Fingerprint | Certificate |
| *@bundesbank.de Fingerprint: e6 5b 11 74 f4 3c 8e c0 41 d8 eb 79 05 f3 98 45 62 b7 44 05 | |
| *@externe-mitarbeiter.bundesbank.de Fingerprint: 4b 5a 1b 90 0f a2 26 9c 0a 1c ff a5 6f de e6 3d 00 0b d4 14 | |
| *@bafin.bundesbank.de Fingerprint: 36 a1 21 0f f0 11 70 ca 23 8f 65 c1 38 20 30 30 35 5b d8 62 |
From January 2019, the Bundesbank will encrypt S/MIME e-mails using the AES algorithm.