Hi. We've implemented In-App provisioning in an OBO fashion, and we've done it using Visa's APIs. We've encountered some instability when using the Enrollment API, some of our requests fail (seemingly at random) and we are exploring options. 

Are there recommended practices with using the APIs to enroll and generate push provisioning bodies? Some request fail with 403 response codes for the same BINs. which causes inconsistent behaviour.

Is there an alternative to provide the In-App provisioning functionality without using the APIs, meaning, generating the respective cryptographic OTPs without Visa's services?