Skip to main content
Requires: Apple Developer Program membership ($99/year)

1. Create a Merchant ID

  1. Sign in to your Apple Developer Account
  2. Go to Certificates, Identifiers & Profiles > Identifiers
  3. Click +, select Merchant IDs
  4. Enter a description and identifier (e.g., merchant.com.yourcompany.store)
  5. Click Register

2. Create Certificates

Select your Merchant ID and create both certificates: Payment Processing Certificate (encrypts payment data):
  1. Under Apple Pay Payment Processing Certificate, click Create Certificate
  2. Generate a CSR using Keychain Access (macOS)
  3. Upload the CSR and download the certificate
Merchant Identity Certificate (authenticates your server):
  1. Under Apple Pay Merchant Identity Certificate, click Create Certificate
  2. Generate a CSR and upload it
  3. Download and install the certificate
  4. Export as .p12 file from Keychain

3. Verify Your Domain

  1. In your Merchant ID settings, go to Merchant Domains > Add Domain
  2. Download the verification file
  3. Host it at https://yourdomain.com/.well-known/apple-developer-merchantid-domain-association
  4. Click Verify
The file must be served over HTTPS without redirects. Download the file only once — repeated downloads generate new content.

4. Store in Orchestra

Store your credentials in the Orchestra Portal for use with the Payments Library.

Testing

Use Apple Pay Sandbox with test cards in Safari on macOS or iOS.