Sign the carta manifiesto
Sign the carta manifiesto with the FIEL (e.firma) to AUTHORIZE CFDI stamping for this RFC. A fiscal profile is created on hold (status “requires_action”) and cannot stamp invoices until this is signed — do it once per profile. Uses the FIEL stored on the profile, or upload one raw via multipart — curl -F cer=@fiel.cer -F key=@fiel.key -F password=.... (The same FIEL is reused for descarga masiva.)
Authorizations
API key: Authorization: Bearer sk_test_... or sk_live_....
Headers
Pin a dated API release (Stripe-style). Omit to use the current version. An unknown value returns 400 request.invalid_version. Echoed back on every response.
"2026-07-10"
Connect: act on behalf of one of your connected accounts (its acct_…/org_… id). Omit to act as your own organization. Not honored on /v1/api_keys.
"org_2P9connectedacct"
Safely retry any POST. The first response is stored for 24h and replayed byte-for-byte for identical retries (the replay adds an idempotent-replayed: true header). Reusing the key with a different body is 409 idempotency.key_reuse; an in-flight duplicate is 409 idempotency.key_processing. This makes retrying a 502/429 safe — no duplicate stamp.
"a1b2c3d4-e5f6-4789-8abc-1234567890ab"
Path Parameters
Fiscal-profile id, e.g. "fp_2P9K3sample".
1Body
Response
Default Response
Always "manifest".
manifest The fiscal profile this manifiesto belongs to.
Resulting carta-manifiesto signing state.
pending_signature, signed When the manifiesto was signed (ISO-8601 UTC), or null.
True when the service reported the manifiesto was already signed (no re-sign).
Raw PAC/SAT response code for the signing operation.
Raw PAC/SAT response message.
Signed carta-manifiesto XML, base64 (empty when the service reports it was already signed).
Signed carta-manifiesto PDF, base64 (empty when not returned).