I am not sure how to accomplish this goal and I am not sure what your security requirements are, but I will caution you that MAC address is a really poor means for authentication because it is easily spoofed. Using a few commands, it is easy to query MAC addresses associated with an access point and then simply change your MAC address to one of these addresses.
If you really want to filter or allow only certain MAC addresses, why not drop all packets from non white listed MAC addresses at the input instead of trying to filter them at the output of the netfilter chain? If you look at the diagram in figure 14-1 of
this link, I think you will see why mac filtering on the postrouting chain doesn't make a lot of technical sense.