Aren't passkeys usually just the same on both devices to check if the data exchange is legitimate? Have you tried just typing 0000 or something?