PubKey / Passphrase

I have recently got the hang of creating certificate templates with cert-tools, issuing them onto the bitcoin testnet chain with cert-issuer, and verifying them on the Blockcerts homepage.
I am now trying to add one of these certificates to the android app, and I am wondering how the passphrases used in the app relate to the public keys used to identify certificate recipients.