How can I sign up on Openapi?

On Openapi you can sign up via: Google account Github account Email address In the latter case you will receive an email in a few seconds with instructions on how to complete the registration.

I did not receive the email after registering, what should I do?

The email will only be sent to those who selected email as their registration method, not to those who registered via Google account. If you have completed the registration with email and have not received a confirmation, we suggest you check that our communication is not: in the Promotions or Updates tab (GMAIL addresses) in junk or spam mail You checked and didn't solve it? No problem, contact us via the Support Form .

Can I change my password?

You can change your password if you register by e-mail: log into your personal area, in the Preferences section you can proceed to change your password.

I have forgotten my password, what can I do?

The password recovery procedure depends on the mode chosen during registration: Registration via email: click on 'I forgot my password' directly from the login area Registration via Gmail account: follow the instructions on the dedicated Google page Registration via Github account: click on "Forgot password?" directly from the login area

Is it possible to add an additional user to my Openapi account?

No, currently each account is associated with one email and no further users can be added. However, an additional email can be added for notifications.

Can I delete my Openapi account?

Yes, via your private area. Go to the 'Preferences' section: at the bottom you will find the box 'Delete your account' . ATTENTION: If you click on the 'Proceed' button your data will be permanently deleted and your tokens will be invalidated. This action cannot be undone.

What are the differences between individual and subscription requests?

On Openapi, requests can be made by purse (i.e. paid individually) or by subscription. The main differences between single and subscription requests are: Number of requests available Each subscription has a limit of requests, either monthly or yearly, whereas for single requests there is no limit but you need to have sufficient credit in your purse. Cost of requests The cost of a subscription request (monthly or annual) is cheaper than a single request.

Is it possible to access free requests?

Yes, some APIs allow for a number of daily and/or monthly free requests. The availability of these requests is visible at the API level in the Price section.

How does the Sandbox area work?

The sandbox area is designed to carry out all tests prior to releasing integrations into production. Test requests are completely free of charge, but you must set up 'sandbox credit' before proceeding. Responses in the sandbox environment are by way of example and may not be complete. For some APIs, VAT numbers will be available to use for your tests.

How do I create the token?

You can receive the token in two ways via: the OAuth API with the POST scope htts://oauth.openapi.it/token the "New Token" tool in the Authentication section

Where can I view my tokens?

To view your tokens, log into your private area under Authentication . Here you can also create a new token by clicking on the +New Token button.

Can I check my consumption?

Sure, you can check the consumption of individual calls or your subscription and at API level in the dedicated tab.

How can I check whether there are limits (rate limits) on the endpoints I am interested in?

Any limits are indicated in the descriptions of the individual APIs.

From which sources does the data provided by Openapi come?

Any data provided by Openapi comes from official and certified sources. In particular, the sources are the following Social Accounts Companies : Facebook, Twitter, LinkedIn Internal Revenue Service : Real Estate and Land Registry data, Invoicing Code, Company Activity Status, etc. Territorial Tax Assistance Centres (CAF) European Certification Authority and Identity Provider : Digital signature, SPID, time stamping, storage and massive PEC National Research Council (CNR) : as certified Registrar for website information CRIF : Personal, Economic, Employee, Web and Exponent Data of Italian Companies IndicePA : index of public administrations INPS : quarterly data on number of employees Ministry of Transport (on a European basis): Auto information and services Poste Italiane : API mailing of registered mail, telegrams, court documents in single or bulk form Chamber of Commerce Company Register : Chamber of Commerce Visas, Balance Sheets, XBRL, Company Info, etc. Protest Register and other registers : extraction of negative events and related score calculation Proprietary data calculation, processing and forecasting system : financial statements, financial groups, etc. Company websites : meta-information and text of web pages

Why is the identity document submission procedure necessary to activate certain APIs?

The obligation to identify oneself through the identity document of the individual or company requesting the service is only required for some services subject to the TULPS and its related license (Article 6 of the TULPS license).

Which document should I upload for identity verification when using certain APIs?

For some services, the TULPS regulations require the identification of the service user. In the case of companies, it is therefore required to upload an identity document (driver's license, passport, identity card) belonging to either the legal representative or a person with signing powers or a delegate for the provision and use of the specific service (e.g., IT manager or administrative office)

Can I contact you for assistance?

Yes, we are available for support and requests related to our API. Please fill in the Support Form and we will get back to you as soon as possible.

How can I top up the sandbox?

To top up the sandbox and run your first tests: Log in to your private Console area Go to the Preferences section Open the Sandbox tab Enter the customer data (Person or Company) and save the changes Select the credit to assign to the sandbox and confirm

I would like to top up my credit, how do I do this?

Log in to your personal area and click on Transactions , then on Recharge your wallet . Select the desired amount and proceed with the payment. In this area, you can also activate the Auto Recharge option, which allows you to request an automatic top-up when your credit falls below a certain threshold. You no longer have to worry about making a payment every time your credit is about to run out. Set a minimum threshold and a top-up amount: the automatic top-up will only start if your credit is below the indicated limit and you can deactivate it at any time. Option only available for payment by credit card.

What are the payment methods?

The payment methods for topping up your purse or activating a subscription are as follows: PayPal Credit Card Transfer The credit card payment method requires the activation of the recurring payment in the case of a monthly or annual subscription. The recurring payment can be deactivated at any time via your Private Area. It is also possible to activate the auto-recharge function, i.e. to set a minimum threshold and a recharge amount in order to always have credit in Openapi. The automatic top-up will only start if your availability is below the indicated limit and you can deactivate it at any time. The option can be activated at the time of purchase and is only available for payment by Credit Card.

How does Auto-Recharge work?

The Auto-Recharge function can be activated during payment and allows you to always have available credit in your Openapi account. In the purchase phase you can set a minimum threshold and a recharge amount. The automatic top-up will only start if your availability is lower than the indicated limit. The auto top-up functionality can be deactivated at any time. The option is available when paying by Credit Card.

I would like to activate a subscription, how can I do?

You can select the desired subscription plan in the dedicated section at the API level.

How do monthly and annual subscriptions work?

Monthly and annual subscriptions differ by: charging methods request limits The monthly subscription has a duration of 30 days and any remaining requests cannot be used in the following month even if they are renewed. The annual subscription has a duration of 365 days and requests, net of API-specific instalment limits, can be used as required by the customer, throughout the year or over a more limited period of time.

What is the difference between an annual subscription and a monthly subscription paid in advance for 12 months?

The annual subscription has no monthly consumption limits, net of instalment limits set at API level. In practice, requests can be made at any time of the year. The monthly subscription paid in advance for 12 months, on the other hand, has the same call limits as the 'normal' monthly, but allows for savings compared to the latter.

Can I check the status of my subscription(s)?

Yes, via your personal area. Go to the My Subscriptions section and you will find the status and usage report of the subscription(s) you have activated. You can also check the consumption of your subscription(s) in the dedicated API section.

Can the options 'Subscription payment' and 'Payment per request' co-exist?

Within the same account, you can select different payment methods for each API. For example, you can activate a monthly or annual subscription for the use of certain APIs and, at the same time, pay for the use of other services on a per request basis. When activating subscriptions, we always suggest having a minimum amount of credit in your purse. This way, even if the requests in the subscription run out, you can still continue to use the API with single requests.

I have run out of requests in my subscription and need new ones. What can I do?

If you have run out of requests in your subscription before the expiry date, you can choose to: renew your previous subscription immediately take out any other type of subscription, at a different cost and for a different duration from your previous subscription not subscribe at all and use single requests. In this case you must check your credit and top up your purse if necessary. You will be charged per individual request.

eSignature solutions with European validity, all available in one API

Automatic and Mass Signature Certificates, with or without OTP, can be purchased via the endpoints

POST /certificates/namirial-automatic
POST /certificates/namirial-otp

Once the request has been made via the API, a link will be available in the response to initiate the identification procedure, according to current regulations, of the applicant and thus obtain the certificate.

Our service includes video recognition, which can be done from the comfort of your home or office in a few seconds. Alternatively, other identification procedures are available via:

SPID
CIE
CNS
Digital signature

PLEASE NOTE: Purchase of the certificate is essential in order to use the Automatic and Massive Qualified Electronic Signature service (with or without OTP).

The certificate is valid for 3 years.

The CERT_USERNAME and CERT_PASSWORD credentials are not issued immediately after purchasing a QES signing certificate. To obtain them, it is necessary to complete the certificate holder identification procedure.

After submitting a purchase request through the POST /certificates/namirial-automatic or POST /certificates/namirial-otp endpoints, the API response returns the certificateLink field, which contains the URL required to start the identification process. The procedure usually takes only a few minutes and must be completed directly by the certificate holder.

Once the activation process has been successfully completed, the credentials are delivered through separate channels to ensure the highest level of security:

SMS containing the PIN;
Email containing the CERT_USERNAME and a password-protected PDF attachment containing the CERT_PASSWORD.

To open the PDF and view the CERT_PASSWORD, you must use the PIN received via SMS.

Separating the delivery channels for the credentials reduces the risk of unauthorized access and provides enhanced protection for the signing certificate.

If you do not receive the email containing the credentials, please also check your Spam/Junk folder and ensure that the email address provided during the certificate request is correct.

Purchasing a QESeal certificate (available with a validity of 1 or 3 years) currently requires a manual procedure through customer support.

Follow these steps:

1. Contact customer support to start the purchase request.
2. Complete the purchase following the instructions provided by support and receive the identification form by email.
3. Submit the required documentation for the identification process:

identity document
company registration certificate (or equivalent document, depending on the applicant company's country)
completed form (received in step 2)

4. Receive the certificate credentials (certificateUsername and certificatePassword) at the email address specified in the form. The certificateUsername is a string with the prefix SHI.

IMPORTANT: Purchasing the seal is mandatory in order to use the QESeal service on Openapi.

You can carry out the signing process via API via the endpoints

POST/EU-QES_automatic for Massive Automatic Signature Certificate
POST/EU-QES_OTP for Remote Certificate with OTP
POST/EU-QES_eseal for Qualified Electronic Seal

The mandatory fields for the QES are three:

Document (inputDocument)
Signature Certificate Username
Signature Certificate Password

If the signatureType is not specified, the system will select the most suitable format (CAdES, PAdES, XAdES, PKCS#1) based on the uploaded file's mimeType.

The European eIDAS Regulation (Electronic Identification, Authentication and Trust Services) defines three levels of electronic signatures, each with different characteristics and legal value:

Simple Electronic Signature (SES)
It is the most basic form of electronic signature. It allows an action or consent to be associated with a user but provides limited guarantees regarding the signatory's identity. It is commonly used to accept terms and conditions, confirm online transactions, or access digital services.

Advanced Electronic Signature (AES)
It ensures a unique link between the signatory and the signed document, making it possible to identify the signatory and detect any subsequent changes to the document. In many cases, it may have the same legal effect as a handwritten signature and is suitable for signing contracts and private agreements.

Qualified Electronic Signature (QES)
This is the highest level of electronic signature defined by the eIDAS Regulation. Issued through a qualified certificate by a qualified trust service provider, it offers the highest level of security and has full legal validity throughout the European Union. In Italy, it is commonly associated with digital signatures.

Which One Should You Choose?

Type	Legal Value	Security Level	Examples and Use Cases
Simple Electronic Signature (SES)	Limited evidentiary value, subject to judicial assessment.	Low – can be strengthened through two-factor authentication or audit trails.	- Parcel delivery signatures - Acceptance of online notices (privacy policies, terms of use) - Internal company orders and approvals
Advanced Electronic Signature (AES)	May have the same legal value as a handwritten signature for certain contracts.	Medium – unique connection between signature, signatory, and document; detects subsequent modifications.	- Banking and insurance contracts - Real estate transactions (purchase agreements) - Access to services using digital identity systems (in dealings with public authorities)
Qualified Electronic Signature (QES) (Digital Signature)	Full legal value, equivalent to a handwritten signature throughout the EU.	High – based on a qualified certificate and a secure signature creation device (smart card, token, HSM, remote signature).	- Commercial and employment contracts - Official legal and tax documents - Public tenders and interactions with public administrations

Note: The information provided is for general informational purposes only and does not constitute legal advice. The choice of the most suitable type of electronic signature depends on the applicable regulatory framework, the level of risk, and the specific needs of your business. To identify the most appropriate solution, it is recommended to consult your legal team or specialized advisors.

QES OTP and QES Automatic services support different qualified electronic signature standards, each designed for specific document types and use cases:

CAdES (CMS Advanced Electronic Signatures): allows you to sign any type of file. The signed document is generally generated with a .p7m extension, which embeds both the original file and the digital signature.
PAdES (PDF Advanced Electronic Signatures): dedicated to PDF documents. It preserves the .pdf extension and allows the signature to be displayed directly within the document.
XAdES (XML Advanced Electronic Signatures): specifically designed for XML documents, commonly used for data exchange between applications and information systems.
PKCS#1: does not represent a document signature format, but rather an RSA-based cryptographic standard used to sign hashes or application-level data.

In summary, CAdES, PAdES, and XAdES define the format and method used to apply a digital signature to different types of documents, while PKCS#1 defines the cryptographic mechanism used to generate and verify the signature itself. The choice of standard depends on the document format and the integration requirements of the signing process.

Note: depending on the selected signature standard (CAdES, PAdES, XAdES, or PKCS#1), specific additional configuration options will be available and can be set during the signing request through the option field in the payload.

These options allow you, for example, to customize the signature behavior, the output document format, and other parameters specific to the selected standard.

To view all available options, supported values, and implementation details, please refer to the technical documentation and the corresponding API schema for the selected signature standard. This will help you correctly configure the service according to your integration requirements.

Yes, the QES OTP and QES Automatic services allow you to customize the position of the signature within the document by specifying the page where it should be applied or the signature fields to be used.

Note: this feature is available exclusively for PAdES signatures, the only signature format that is visibly displayed within the PDF document.

If no configuration is specified, the signature is automatically placed in the bottom-left corner of the first page.

To customize the signature position through the /EU-QES_otp or /EU-QES_automatic endpoint, you can use the parameters available in the options object of the request payload.

1. Positioning by page (page)

You can specify the PDF page where the signature field will be created and the digital signature applied:

1 → first page of the document
2 → second page of the document
-1 → last page of the document

For example, by setting page: -1, the signature will be automatically inserted on the last page of the PDF.

When this parameter is used, the signature is always placed in the bottom-left corner of the selected page.

2. Sign all signature fields in the document (signAllFields)

If the document contains one or more predefined signature fields, you can set the following property inside the "signerImage" object:

"signAllFields": true

The signature will then be automatically applied to all signature fields available in the PDF.

3. Sign specific fields (fieldsNameList)

If you want to sign only specific fields, you can use the fieldsNameList parameter within the signerImage object.
The parameter must contain an array with the identifiers of the signature fields to be signed:

"fieldsNameList": [ "CustomerSignature", "ContractHolderSignature" ]

The signature will be applied exclusively to the fields specified in the array.

The service allows various configurations, such as:

Validation and signing mode (synchronous or asynchronous)
Signature level
Hash algorithm
Callback for notifications and updates

Some options are specific to certain formats, such as signature positioning in PDF documents.

The response depends on the request's status and may be:

Waiting for validation
Waiting for signature process to complete
Signature process completed

In case of a successful outcome ("DONE"), the response will include details such as status, signature format, selected options (e.g., signature level, hash algorithm, potential callback), and completion date.

Yes, through the GET /signatures/{id}/{actionType} endpoint, you can request the full details of the process, the signed document, the validated document, or the audit trail. The audit trail includes all information leading to the successful signature and allows for technical reconstruction of each step in case of disputes.

Both. The Qualified Electronic Signature (QES) via API allows you to choose between synchronous or asynchronous validation and signing.

The signature procedure has legal validity (eIDAS) and is reinforced by sending signatory verification OTPs. At the end of the signing procedure, it will also be possible to request via API both the signed document and the copy of the audit trail. The audit trail is the document that contains all the information that led to the successful signature. In the event of disputes, this file will make it possible to technically reproduce each step of the procedure. The audit trail contains data on the procedure (id, creation date, sending and expiry), on signatories (name, surname, email, telephone number, IP address) signatory authentication mode (authentication method, message sent and time of validation). The audit trail is archived in its original form for 10 years.

The electronic signature service (SES) allows you to sign PDF documents remotely in a simple, secure way and in compliance with applicable regulatory standards. Multiple signers can be involved in the same document, including with different signature placements within the pages.

The process is structured into the following steps:

1. API request submission
Make an API call including signer details (first and last name), the type of signature to apply (typed or drawn), the OTP authentication method (email or SMS), and the language of the interface and OTP communications. Depending on the selected authentication method, you will also need to provide the signer’s email address or mobile phone number.

2. Signature link generation
The system returns unique links for each signer, to be used to access the signing process. It is your responsibility to distribute the links to the respective signers and manage the delivery of the signing interface.

3. Document signing
Signers access the platform via the received link, complete OTP authentication, and proceed with signing the document.

4. Process completion and download
At the end of the process, the signed and validated document is made available for download, along with the complete operation log (audit trail), ensuring full traceability of the signing workflow.

Yes, it is possible to customize the SES signing interface for the end user already at the request stage.

Customization can include, for example, changing colors (background, title, and text) and the visibility of the sidebar, header, and footer, as well as adding your company logo. It is also possible to enable or disable the document download for the user.

Finally, at the end of the signing process, it is possible to configure a redirect URL to a custom web page.

Yes, it is possible to set the language of the SES signing interface at the signer level.

The language in which the user views the interface and receives communications (email or SMS containing the OTP) can be defined through the “Language” field within the Signers object.

Yes. The SES service allows you to define whether a signer's data can be modified during the signing process through the userEditableData object, available within the options object of the POST /EU-SES request.

By default, signers can modify certain personal information, including:

First and last name
Email address
Mobile phone number

These options are enabled by default and set to true.

If you want to prevent signers from modifying one or more fields, simply set the corresponding properties to false. The data will then be displayed in read-only mode within the signing interface and cannot be edited by the user.

This feature is particularly useful when you need to ensure that data collected and verified beforehand remains unchanged throughout the entire signing process.

Error 815 – invalid signer email is returned when the signer’s email address is not valid or has not been correctly provided in the request.

To resolve the issue, we recommend checking that the value provided is formally correct and does not contain unwanted spaces before or after the email address.

In particular, we suggest implementing the following client-side validations before sending the API request:

1. Syntax check (email format)
Ensure that the input string matches a valid email format (e.g. [email protected]).
If the format is incorrect, block the request directly in the user interface, preventing the API call.

2. String sanitization
Make sure to remove any leading or trailing spaces by applying a normalization such as .trim() to the email value.

3. Form validation enforcement
To minimize errors, it is recommended to prevent form submission until validation has been successfully completed, avoiding invalid API requests.

Yes, the service supports adding any type of timestamp, providing additional security and legal validity to signed documents.

The validity of a signed document can be verified through the POST /verify endpoint. The response will include details such as:

Confirmation of the signature validity and format used
Document owner
Certificate status and date
Any certificate revocation with the respective date
Presence and date of a timestamp

The activation and usage times of eSignature services vary depending on the type of signature or certificate requested:

Automatic QES (with or without OTP): certificate activation depends on the completion of the video identification process, which in most cases takes only a few minutes.
QESeal (Qualified Electronic Seal): certificate issuance generally requires up to 10 business days from the receipt of payment and all the documentation required for preliminary verification.
SES (Simple Electronic Signature): signer identification takes place in real time during the signing process through OTP verification.
Applying the signature or seal: once the service has been activated, the application of the automatic signature, the OTP signature, the simple signature (SES), or the electronic seal is performed in real time via API.

Under the Usage section, you can monitor free requests and those made through subscription or top-up. This is available in both graphical (monthly and yearly periods) and text summary formats.

The QES service has no annual fees. Payment is required only for certificate activation and actual usage.

The costs related to requests are:

from 0.013€ on subscription and 0.050€ on top-up for the service with Automatic Signature certificate
from 0,007€ on subscription and 0,050€ on top-up for the service with Automatic Signature certificate with OTP

The costs for certificates, on the other hand, are as follows:

137€ for the 3-year Automatic Signature certificate + video id
29€ for the 3-year Automatic Signature certificate with OTP + video id

The service has no annual fees. There is only a charge for activating the seal and for actual usage.

With regard to uses, the cost is as low as 0.013€/request on subscription or 0.050€/request on top-up.

With regard to the seal, it is possible to request activation for 1 or 3 years and the costs are 387€ for 1 year, 987€ for 3 years.

The cost is per signer, not per number of signatures applied to the document:

From €0.09 per signer with a subscription plan
€0.49 per signer for single requests charged on prepaid credit

If there are multiple signers, the cost is multiplied by the number of signers involved, applying the applicable rate (subscription or single request). The charge is applied at the time of the request, regardless of how the signing process is completed later.

During the signing process, it is possible to add a European legally valid timestamp at an additional cost of €0.15.

eSignature

eSignature solutions with European validity, all available in one API

How can I request Automatic and OTP Certificates via API?

How can I activate a QES signing certificate (OTP or Automatic) and obtain the CERT_USERNAME and CERT_PASSWORD credentials?

How can I request a Qualified Electronic Seal (QESeal)?

How can I sign the Qualified Electronic Signature via API?

What are the mandatory fields for the Qualified Electronic Signature (QES) process via API?

What is the difference between SES, AES and QES, and when should they be used?

What signature standards are supported by the QES OTP and QES Automatic services?

Is it possible to position the signature within a document using the QES OTP and QES Automatic services?

What configuration options are available for the QES service?

What are the possible response statuses after a QES signature request?

Will it be possible to request the details of the completed QES signature process via API?

Is the QES service available in synchronous or asynchronous mode?

What legal value does the electronic signature have?

How does the signing process work with our electronic signature service (SES)?

Is it possible to customize the SES signing interface for the end user?

Is it possible to customize the language of the SES signing interface?

Is it possible to allow or prevent signers from editing their data during the SES signing process?

The Post EU-SES service returns error 815 “invalid signer email”: how can it be resolved?

Does the QES service support timestamping of documents?

How can I verify the validity of a signed document?

What are the processing times for eSignature services?

How can I track my API E-Signature usage?

What are the costs for the QES service?

What are the costs of the QeSeal service?

What is the cost of the electronic signature service (SES)?