UAS pilot license as pkpass

I’ve got a UAS pilot license (basic one A1/A3), via free online course & exam. It took me around 3 hours.

It’s issued as a PDF with a barcode, which contains only a link:

% zbarimg /Users/aleksandrvin/Desktop/Screenshot\ 2024-04-19\ at\ 20.14.10.png
QR-Code:https://learningzone.eurocontrol.int/ilp/customs/Reports/DACUASComp/Certificate/Validation/13821406/?key=a3cb535bb93a2298410a18364c13cf7f888a6ca53dc6be40859cbfb11f65f1e5
scanned 1 barcode symbols from 1 images in 0,1 seconds

I like the concept of using virtual cards instead of plastic. So let’s try converting the certificate data into a pleasant-looking pkpass.

This is the original post that I am using.

Here are the steps I’ve followed (with some fixes):

Create Request Certificate

1. Open the keychain app on your macOS machine
2. Click on Keychain access > Certificate assistant > Request a Certificate From a Certificate Authority
3. Fill in email address and select Save to Disk
4. Click on Continue and Save (.certSigningRequest)

Create Identifier

1. Go to identifiers > create an identifier by clicking on the plus sign
2. Select Pass Type IDs > Click on continue
3. Fill in Description and a unique identifier pass.com.. > Click on Register
4. Select your registered pass identifier in list > Click on Create Certificate
5. Fill in your Pass certificate Name > Upload .certSigningRequest certificate from previous step, click Continue

Create Certificate

1. Download the created certificate (.cer)
2. Double click and open in Keychain app, choose login, then go to My Certificates > Click on relevant certificate > Export Pass Type ID:… > Save in .p12 format
3. Choose a password (This is your export password)

Create a pkpass by command line:

• Create a pass certificate with openssl and pkcs12 hashing type
• The Path to .p12 certificate (created in the previous step) goes as input
• The output will be the private key which will be stored in a .pem file
• Replace <import password> with your export password

openssl pkcs12 -in Certificates.p12 -clcerts -nokeys -out passcertificate.pem -passin pass:<import password> -legacy

Create a pass key with the following command

• The Path to .p12 certificate (created in the previous step) goes as input
• Replace with your export password
• Replace with a new key password (This will be your key password)

openssl pkcs12 -in Certificates.p12 -nocerts -out passkey.pem -passin pass:<import password> -passout pass:<key password> -legacy

Export WWDR certificate

1. In the Keychain access app > Certificates tab > Right click on the “Apple Worldwide Developer relations Certification Authority” (a.k.a WWDR)
2. Export “Apple ….” > Save as .pem file and rename it WWDR.pem (for convenience)

Define the information in your pass in the pass.json file

More information about the interface can be found here.

passTypeIdentifier key should have the value of your pass type id (starts with pass.com…) teamIdetifier key should be filled in, value can be found in the Apple developer account on the top right corner under your name.

A repo

And this is a nice fork of a tool that automates the process: https://github.com/aleksandr-vin/PKPassCreator