I accidentally became PureGym’s unofficial Apple Wallet developer

[NoahZuniga]

Judging by the size of the qr code, part 3 is too short to be a signature. Probably the token is just registered in a centralized system that the qr code scanner checks with to see if the code is valid.