Skip to main content

API Platform

 

Access points to send traffic to BNPP CIB apis

 

important ! upcoming certificate update for api endpoints

As part of our 2025 certificate renewal, our servers will be using new certificates signed by updated Certificate Authorities

Please make sure your API clients trust these new authorities ( authorities should be added to API client truststore)

Intermediate CA : Thawte EV RSA CA G2_0.crt

Root CA : DigiCert Global Root G2_0.crt

 

New certificates

UrlsServer CertificateCertificate Authority (CA)

Available

Starting From

https://api-mtls.sandbox.cib.bnpparibas.com

TEST

PEM Format

P7B Format

Intermediate

Root

July 11th, 2025

https://api.sandbox.cib.bnpparibas.com

TEST

PEM Format

P7B Format

Intermediate

Root

July 11th, 2025

https://api-mtls.cib.bnpparibas.com

PROD

PEM Format

P7B Format

Intermediate

Root

August 23rd, 2025

https://api.cib.bnpparibas.com

PROD

PEM Format

P7B Format

Intermediate

Root

August 23rd, 2025

 

Current certificates

UrlsServer CertificateCertificate Authority (CA)Expires

https://api-mtls.sandbox.cib.bnpparibas.com

TEST

CRT Format

 

intermediate

Root

July 11th, 2025

https://api.sandbox.cib.bnpparibas.com

TEST

CRT Format

 

intermediate

Root

July 11th, 2025

https://api-mtls.cib.bnpparibas.com

PROD

CRT Format

P7B Format

intermediate

Root

August 23rd, 2025

https://api.cib.bnpparibas.com

PROD

CRT Format

P7B Format

intermediate

Root

August 23rd, 2025

EU TPP accessing PSD2 APIs with a QWAC issued by a QTSP

UrlsServer CertificateExpires
https://psd2.api.cib.bnpparibas.comCRT Format, P7B FormatMarch 22, 2026
https://api-mtls.sandbox.cib.bnpparibas.comsame as first section above 

UK TPP accessing PSD2 API with an OBWAC issued by OBIE

UrlsServer CertificateExpires
https://ob-uk.api.cib.bnpparibas.comCRT FormatP7B FormatJuly 30, 2023
https://api-mtls.sandbox.cib.bnpparibas.comsame as first section above 

 

Traffic from BNPP CIB API Platform (JWT)

BNPP CIB API Platform is generating traffic for third-parties with signed JWT. Each third-party receiving JWT must check
1) it has been signed by CIB API Platform using the public key bellow,
2) the JWT did not expire,
3) the audience contains their URL.

  • traffic from staging
  • traffic from sandbox
  • traffic from production

 

Traffic from BNPP CIB API Platform (MTLS)

Alternatively, mTLS can be used in some scenarios when BNPP CIB API Platform authenticate to a third-party API using a client certificate. The client certificates used are:

Important ! upcoming certificate update for 2025

As part of our 2025 certificate renewal, our client certificate will be using new certificates signed by updated Certificate Authorities

Please contact your BNP API Provider for more information

About us

BNP Paribas CIB is a leading global financial services firm, offering you solutions in capital markets, securities services, advisory, finance and treasury

 

group2