mac下查看.mobileprovision文件及鑰匙串中證書.cer文件
一. mobileprovision文件查看
xxx.mobileprovision是ios開發中的設備描述文件,里面有證書信息、調試設備的UUID信息、bundle identifier等,此文件是二進制格式不能直接打開,那么如何查看其中信息呢
方法1 使用mac自帶security命令行
用mac自帶的命令security,cd到mobileprovision所在的文件夾,執行
security cms -D -i XXX.mobileprovision
會得到下面的dict結構的詳細信息
<?xml version="1.0" encoding="UTF-8"?> <!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd"> <plist version="1.0"> <dict> <key>AppIDName</key> <string>xxxx</string> <key>ApplicationIdentifierPrefix</key> <array> <string>xxxx</string> </array> <key>CreationDate</key> <date>2016-10-31T04:06:14Z</date> <key>Platform</key> <array> <string>iOS</string> </array> <key>DeveloperCertificates</key> <array> <data>MIIFkDCCBHigxxxxxxxxxxxxxxxxxxWnPvqA5L3daJ1NY43ZXn5t6oGiAMwmrf8tXE/qgUpR+JH3+BENoD2y/DiQBTOzyb/LBC/KwNrdR5J95xsg9O3x5hEP8A0c</data> </array> <key>Entitlements</key> <dict> <key>com.apple.developer.pass-type-identifiers</key> <array> <string>xxxxx.*</string> </array> <key>keychain-access-groups</key> <array> <string>xxxxx.*</string> </array> <key>inter-app-audio</key> <true/> <key>get-task-allow</key> <true/> <key>application-identifier</key> <string>8YBR4R554P.com.playcrab.heracles.dev</string> <key>com.apple.developer.healthkit</key> <true/> <key>com.apple.developer.ubiquity-kvstore-identifier</key> <string>8YBR4R554P.*</string> <key>com.apple.developer.ubiquity-container-identifiers</key> <array> <string>8YBR4R554P.*</string> </array> <key>com.apple.developer.associated-domains</key> <string>*</string> <key>com.apple.security.application-groups</key> <array> </array> <key>com.apple.developer.homekit</key> <true/> <key>com.apple.developer.team-identifier</key> <string>8YBR4R554P</string> <key>com.apple.external-accessory.wireless-configuration</key> <true/> <key>aps-environment</key> <string>development</string> <key>com.apple.developer.in-app-payments</key> <array> </array> <key>com.apple.developer.default-data-protection</key> <string>NSFileProtectionComplete</string> <key>com.apple.developer.networking.vpn.api</key> <array> <string>allow-vpn</string> </array> <key>com.apple.developer.siri</key> <true/> </dict> <key>ExpirationDate</key> <date>2017-10-31T04:06:14Z</date> <key>Name</key> <string>xxxx</string> <key>ProvisionedDevices</key> <array> <string>70daba5aefxxxxxb5cf04ec73a385d970</string> <string>d8c16f16ef33xxxxxx3aad0xxxa382a9e2</string> </array> <key>TeamIdentifier</key> <array> <string>8YBRxxxx54P</string> </array> <key>TeamName</key> <string>Nxxxx</string> <key>TimeToLive</key> <integer>365</integer> <key>UUID</key> <string>1c38459f-7xxxxxe286351</string> <key>Version</key> <integer>1</integer> </dict>
方案2 mobileprovision-read命令來實現
在Terminal下輸入下面的命令並回車
curl https://raw.githubusercontent.com/0xc010d/mobileprovision-read/master/main.m | clang -framework Foundation -framework Security -o /usr/local/bin/mobileprovision-read -x objective-c -
這條命令的作用是下載mobileprovision-read的源碼,然后編譯,最后把生成的二進制文件mobileprovision-read
放入到/usr/local/bin/
路徑下。
執行下面命令后,可以得到與上面dict展示一樣的信息
mobileprovision-read -f xxx.mobileprovision
二. 鑰匙串中證書.cer文件查看
鑰匙串訪問(keychain access.app)中斷各種證書,如何查看他們的公鑰和私鑰信息呢,比如如下證書中的公私鑰信息呢
需要右鍵將其導出成.p12文件,之后將.p12文件轉成.pem文件,轉成.pem的方法使用下面的命令
openssl pkcs12 -in xxx.p12 -out xxx.pem -nodes
之后用記事本打開xxx.pem文件,就能讀到公鑰私鑰了
Bag Attributes friendlyName: iPhone Developer: Ning xx (3Q73CFK5RP) localKeyID: F0 BF 58 9E FD 88 7D 61 7E 41 2B 0F 5B F2 03 C5 1F BC 0D 16 subject=/UID=RNG8K5DALX/CN=iPhone Developer: Ning xx (xxxx)/OU=8YBR4R554P/O=Ning Liu/C=US issuer=/C=US/O=Apple Inc./OU=Apple Worldwide Developer Relations/CN=Apple Worldwide Developer Relations Certification Authority -----BEGIN CERTIFICATE----- xxxxx IG9uIHRoaXMgY2VydGlmaWNhdGUgYnkgYW55IHBhcnR5IGFzc3Vt XnbnM/N12EGccq7oH5WPQSOrcte5NxVFTdhT1mY7i4/7/Hf3N4n2gpjUUtykg8H4 jDQERpZHSbQYyHpcdiH6f9EsSXM+bA1a5yEpPL0zUJJSgCXR -----END CERTIFICATE----- Bag Attributes friendlyName: xx localKeyID: F0 BF 58 9E FD 88 7D 61 7E 41 2B 0F 5B F2 03 C5 1F BC 0D 16 Key Attributes: <No Attributes> -----BEGIN RSA PRIVATE KEY----- MIIEpQIBAAKCAQEAvz/81SxGFOHWOlR6kC4vi+UO8o/4QW9vx7wu54utXb22hh9P XbNv81+NQUo+e1BRr5h6ueDPUQFunBscQ10CNQp6CEHgTntYXMT2P 9a9+2mLCLZxGpKSbmYwuD4Sf1dpXKSOBc5rtPzlul2uHLbx10MSJri4= -----END RSA PRIVATE KEY-----
上面是查看鑰匙串中的公鑰和密鑰,那么怎么查看.cer呢?可以將其雙擊安裝到鑰匙串中,再按上述方法查看。
參考