Get the last order details for each domain

The GETLASTORDER action returns information about the latest certificate requested or issued for every domain in the active subscription.

This action enables you to monitor certificate management performed via customer ACME clients, track certificate issuance and renewal activities, identify potential issues (such as missed renewals or abnormal ordering patterns), and implement other value-added services for your customers.

Retrieval modes

The GETLASTORDER action supports the following retrieval modes:

  • ACME account–specific view — Retrieve last‑order information for domains for which certificates were requested under a specific ACME account.

  • Subscription‑level view — Retrieve the latest order for each domain in the subscription, regardless of which ACME account requested the certificate.

  • Subscription‑level view with ACME account breakdown — Retrieve last‑order information for each domain per ACME account, allowing multiple entries for the same domain.

Action: GETLASTORDER

Variable Name Type Requirement Max. Length Description

loginName

string

required

64 chars

Your account username.

This value is case sensitive.

loginPassword

string

required

128 chars

Your account password.

This value is case sensitive.

action

string

required

30 chars

The action to be taken.

In this case, the value is: GETLASTORDER.

acmeAccountID

string

required

32 chars

Your Base64 URL-encoded ACME account ID.

includeAdditionalAccounts

string

optional

1 char

Indicates whether orders from all ACME accounts that share the same External Account Binding (EAB) should be considered when determining the latest order for each domain.

The allowed values are:

  • N — (Default) Only orders placed under the specified acmeAccountID are considered.

  • Y — Orders from all ACME accounts within the same subscription are considered when determining the latest order for each domain.

If includeAdditionalAccounts is not specified, the value defaults to N, and the request behaves as an ACME account–specific view. For more details, see Retrieval modes.

perACMEAccount

string

optional

1 char

Indicates whether to return last‑order information per domain broken down by ACME account.

The allowed values are:

  • N — (Default) Return the most recent order per domain within the whole subscription.

  • Y — Return last‑order information for each domain per ACME account.

If perACMEAccount is not specified, the value defaults to N, and the request behaves as a subscription‑level view. If perACMEAccount is set to Y, the request behaves as a subscription‑level view with an ACME account breakdown. For more details, see Retrieval modes.

This parameter is evaluated only when includeAdditionalAccounts=Y.

filter

string

optional

32767 chars

(Optional) Expression for filtering.

  • Expression format: <JSON field name> <operation> <value>.

  • Allowed fields for filtering: domainName, validNotAfter.

  • Operations supported for string values: =, !=, ?, !?.

  • Operations supported for date values: =, !=, >, <, >=, <=.

  • Multiple filter parameters are allowed.

The result scope depends on the combination of parameters:

  • If only acmeAccountID is provided, the response includes data for that ACME account only.

  • If includeAdditionalAccounts=Y, the response includes the latest order for each domain across all ACME accounts that share the same external account binding (EAB).

  • If includeAdditionalAccounts=Y and perACMEaccount=Y, the response includes last order information for each domain, broken down by ACME account.

Response parameters

The response contains the statusCode and statusDesc parameters, which indicate the status of the certificate request and provide its description. The table below lists the possible values for these parameters, along with the corresponding status name (status) for reference.

The status column is for reference only and is not included in the API response.
Status Code Status Status Description

3

failed

PRE-SIGN FAILED

5

failed

POST-SIGN FAILED

6

issued

Valid

7

rejected

Rejected

8

revoked

Revoked

9

issued

Issued but not yet collected

13

pending

Awaiting Request

14

replaced

Replaced

Sample request

curl --location --request POST 'https://secure.trust-provider.com/products/!ACMEAdmin' \
--header 'Content-Type: application/x-www-form-urlencoded' \
--data-urlencode 'loginName=loginName' \
--data-urlencode 'loginPassword=loginPassword' \
--data-urlencode 'action=GETLASTORDER' \
--data-urlencode 'acmeAccountID=ABc_123xYZ456'

Success responses

Success response with data
{
    "Orders": [
        {
            "orderNumber": 123455,
            "acmeOrderID": "1ABCdEFGY1XYZ",
            "acmeOrderStatus": "valid",
            "certificateID": 123456770,
            "statusCode": 6,
            "statusDesc": "Valid",
            "domainName": "example.com",
            "serialNumber": "1AB234C082DE565F5A38DA",
            "validNotBefore": "2025-05-16T14:54:51Z",
            "validNotAfter": "2026-05-15T14:54:53Z",
            "acmeAccountID": "ABc_123xYZ456",
            "acmeEABKeyID": "5643Yx321_cBA"
        },
        {
            "orderNumber": 123457,
            "acmeOrderID": "ZYX321_abc654DeF1",
            "acmeOrderStatus": "processing",
            "certificateID": 123456779,
            "statusCode": 3,
            "statusDesc": "PRE-SIGN FAILED!!!",
            "domainName": "domain.com",
            "serialNumber": "",
            "validNotBefore": "",
            "validNotAfter": "",
            "acmeAccountID": "654ZYx321_cBA",
            "acmeEABKeyID": "ZYx321_abc654DeF1"
        }
    ]
}
Success response without data
{
    "Orders": [ ]
}