This Dart library and sample app enable reading and verifying Machine Readable Travel Documents (MRTD) such as ePassports and eID cards using a mobile phone.

It interfaces with the go-passport-issuer backend, which utilizes the gmrtd Go library for low-level MRTD operations. The backend performs both Passive Authentication (PA) and Active Authentication (AA) to verify document authenticity and prevent cloning, then converts the verified data into Verifiable Credentials (VCs) used in the Yivi ecosystem.

• Passive Authentication (PA): Verifies data integrity and authenticity through digital signatures from the issuing authority
• Active Authentication (AA): Prevents chip cloning by challenging the passport's unique cryptographic keys
• Masterlist Support: Includes support for Dutch and German Certificate Authority masterlists for comprehensive document verification

This repository includes documentation for the library, the example app, and background information. Published documentation is available via GitHub Pages: privacybydesign.github.io/vcmrtd

This repository contains an example app that demonstrates how to use the library to read and verify MRTD data. The app is built using Flutter and can be run on both Android and iOS devices. It can be run with or without Veriable Credential generation.

Some screenshots of the example app:

Make sure your local Android keystore certificate SHA256 fingerpint is added to the Android AssetsLinks in the go-passport-issuer. One can simpy retrieve the SHA265 hash with the following command:

keytool -list -v -alias androiddebugkey -keystore ~/.android/debug.keystore -storepass android -keypass android

The SHA256 hash should be available here:

Copyright (C) 2025 Yivi B.V. vcmrtd is free software: you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation, either version 3 of the License, or (at your option) any later version.

This project builds upon the work of dmrtd, we hard forked it for our own use and made significant improvements. dmrtd is also licensed under the GNU General Public License v3.