20230825重新编辑和分析
0:d=0 hl=4 l= 904 cons: SEQUENCE
4:d=1 hl=2 l= 9 prim: OBJECT :pkcs7-signedData
15:d=1 hl=4 l= 889 cons: cont [ 0 ]
19:d=2 hl=4 l= 885 cons: SEQUENCE
23:d=3 hl=2 l= 1 prim: INTEGER :01
26:d=3 hl=2 l= 0 cons: SET
28:d=3 hl=2 l= 11 cons: SEQUENCE
30:d=4 hl=2 l= 9 prim: OBJECT :pkcs7-data
41:d=3 hl=4 l= 861 cons: cont [ 0 ]
45:d=4 hl=4 l= 857 cons: SEQUENCE
49:d=5 hl=4 l= 577 cons: SEQUENCE
53:d=6 hl=2 l= 3 cons: cont [ 0 ]
55:d=7 hl=2 l= 1 prim: INTEGER :02
58:d=6 hl=2 l= 15 prim: INTEGER :1212AA120901AA06AA2872AA744350
75:d=6 hl=2 l= 13 cons: SEQUENCE
77:d=7 hl=2 l= 9 prim: OBJECT :sha1WithRSAEncryption
88:d=7 hl=2 l= 0 prim: NULL
90:d=6 hl=3 l= 131 cons: SEQUENCE
93:d=7 hl=2 l= 11 cons: SET
95:d=8 hl=2 l= 9 cons: SEQUENCE
97:d=9 hl=2 l= 3 prim: OBJECT :countryName
102:d=9 hl=2 l= 2 prim: PRINTABLESTRING :US
106:d=7 hl=2 l= 19 cons: SET
108:d=8 hl=2 l= 17 cons: SEQUENCE
110:d=9 hl=2 l= 3 prim: OBJECT :organizationName
115:d=9 hl=2 l= 10 prim: PRINTABLESTRING :Apple Inc.
127:d=7 hl=2 l= 38 cons: SET
129:d=8 hl=2 l= 36 cons: SEQUENCE
131:d=9 hl=2 l= 3 prim: OBJECT :organizationalUnitName
136:d=9 hl=2 l= 29 prim: PRINTABLESTRING :Apple Certification Authority
167:d=7 hl=2 l= 55 cons: SET
169:d=8 hl=2 l= 53 cons: SEQUENCE
171:d=9 hl=2 l= 3 prim: OBJECT :commonName
176:d=9 hl=2 l= 46 prim: PRINTABLESTRING :Apple iPod Accessories Certification Authority
224:d=6 hl=2 l= 30 cons: SEQUENCE
226:d=7 hl=2 l= 13 prim: UTCTIME :120901143758Z
241:d=7 hl=2 l= 13 prim: UTCTIME :200901143758Z
256:d=6 hl=2 l= 112 cons: SEQUENCE
258:d=7 hl=2 l= 11 cons: SET
260:d=8 hl=2 l= 9 cons: SEQUENCE
262:d=9 hl=2 l= 3 prim: OBJECT :countryName
267:d=9 hl=2 l= 2 prim: PRINTABLESTRING :US
271:d=7 hl=2 l= 19 cons: SET
273:d=8 hl=2 l= 17 cons: SEQUENCE
275:d=9 hl=2 l= 3 prim: OBJECT :organizationName
280:d=9 hl=2 l= 10 prim: UTF8STRING :Apple Inc.
292:d=7 hl=2 l= 31 cons: SET
294:d=8 hl=2 l= 29 cons: SEQUENCE
296:d=9 hl=2 l= 3 prim: OBJECT :organizationalUnitName
301:d=9 hl=2 l= 22 prim: UTF8STRING :Apple iPod Accessories
325:d=7 hl=2 l= 43 cons: SET
327:d=8 hl=2 l= 41 cons: SEQUENCE
329:d=9 hl=2 l= 3 prim: OBJECT :commonName
334:d=9 hl=2 l= 34 prim: UTF8STRING :IPA_1212AA120901AA06AA2872AA744350
370:d=6 hl=3 l= 159 cons: SEQUENCE
373:d=7 hl=2 l= 13 cons: SEQUENCE
375:d=8 hl=2 l= 9 prim: OBJECT :rsaEncryption
386:d=8 hl=2 l= 0 prim: NULL
388:d=7 hl=3 l= 141 prim: BIT STRING RSA1024的公钥 N 和 E。私钥D在芯片中无法导出的,就是用这个RSA1024私钥对消息请求进行签名完成的MFi验证
0000 - 00 30 81 89 02 81 81 00-9e 0d 60 f7 13 f6 dd b2 .0........`.....
0010 - 1b 9c dd fc 21 80 89 7a-ea 73 76 24 c9 e8 54 fa ....!..z.sv$..T.
0020 - c0 ae a4 6f 74 a4 a8 a0-63 5c c8 56 f7 fc 14 7e ...ot...c\.V...~
0030 - a1 d7 0a a7 58 5c 30 1f-03 e4 5f b5 04 06 43 79 ....X\0..._...Cy
0040 - 5c 92 d8 94 24 74 59 5f-47 9d a4 fe ae 0b ef 27 \...$tY_G......'
0050 - 36 81 0a 09 a7 c3 26 f6-45 eb 52 07 91 cb 85 11 6.....&.E.R.....
0060 - 24 fd 7c 25 6f 5b 34 67-7a ac a1 f6 8c 25 a2 6a $.|%o[4gz....%.j
0070 - d3 3a ca 32 02 52 a0 57-f5 35 af 70 55 30 49 e6 .:.2.R.W.5.pU0I.
0080 - b4 f4 92 47 dc 09 0a cd-02 03 01 00 01 ...G.........
532:d=6 hl=2 l= 96 cons: cont [ 3 ]
534:d=7 hl=2 l= 94 cons: SEQUENCE
536:d=8 hl=2 l= 29 cons: SEQUENCE
538:d=9 hl=2 l= 3 prim: OBJECT :X509v3 Subject Key Identifier
543:d=9 hl=2 l= 22 prim: OCTET STRING
0000 - 04 14 ac d2 f8 0f d3 74-65 bc a1 ea d3 53 ab b9 .......te....S..
0010 - ef 8a 96 be 16 e7 ......
567:d=8 hl=2 l= 12 cons: SEQUENCE
569:d=9 hl=2 l= 3 prim: OBJECT :X509v3 Basic Constraints
574:d=9 hl=2 l= 1 prim: BOOLEAN :255
577:d=9 hl=2 l= 2 prim: OCTET STRING
0000 - 30 00 0.
581:d=8 hl=2 l= 31 cons: SEQUENCE
583:d=9 hl=2 l= 3 prim: OBJECT :X509v3 Authority Key Identifier
588:d=9 hl=2 l= 24 prim: OCTET STRING
0000 - 30 16 80 14 ff 4b 1a 43-9a f5 19 96 ab 18 00 2b 0....K.C.......+
0010 - 61 c9 ee 40 9d 8e c7 04- a..@....
614:d=8 hl=2 l= 14 cons: SEQUENCE
616:d=9 hl=2 l= 3 prim: OBJECT :X509v3 Key Usage
621:d=9 hl=2 l= 1 prim: BOOLEAN :255
624:d=9 hl=2 l= 4 prim: OCTET STRING
0000 - 03 02 03 b8 ....
630:d=5 hl=2 l= 13 cons: SEQUENCE
632:d=6 hl=2 l= 9 prim: OBJECT :sha1WithRSAEncryption
643:d=6 hl=2 l= 0 prim: NULL
645:d=5 hl=4 l= 257 prim: BIT STRING 证书的签名(RSA2048签名),使用苹果MFi根证书签名的。根证书如果泄漏了被拿到就可以伪造这个签名。然后批量生产真正的MFi芯片
0000 - 00 4a 3b 63 f0 70 9d eb-1b b7 e1 0c 17 d1 00 4c .J;c.p.........L
0010 - 8c 69 30 b2 47 13 b2 09-53 9e 4d c1 fa 68 f9 1d .i0.G...S.M..h..
0020 - 0d 88 8e db a9 bc df 0d-28 25 b2 c8 37 eb 31 0a ........(%..7.1.
0030 - 44 b5 a0 19 c3 60 ff b0-38 c0 67 0f c7 62 92 12 D....`..8.g..b..
0040 - 06 e5 02 fe fc 3c bb eb-64 6b b4 e5 cc 0b 89 67 .....<..dk.....g
0050 - 48 04 05 5d 83 4f b6 5f-f6 d4 42 26 65 ae 10 b7 H..].O._..B&e...
0060 - 9c d4 e1 4d bf 51 fe 56-86 de 36 9b 7e fa 2b 5b ...M.Q.V..6.~.+[
0070 - 74 d8 63 6f ad 3a 6d 1c-cd 82 f2 e3 64 30 82 f4 t.co.:m.....d0..
0080 - 74 34 51 06 c5 af 0f 0b-a0 c8 62 92 d0 5a eb c9 t4Q.......b..Z..
0090 - c4 19 52 38 0d 01 4d 17-35 74 3d 91 21 79 3c f3 ..R8..M.5t=.!y<.
00a0 - 8e 69 64 2f f2 16 74 51-82 8d 6f 12 06 3e 4c f2 .id/..tQ..o..>L.
00b0 - b5 0f 9a d5 eb 8a b5 ba-93 d9 42 98 1a 0e ed 97 ..........B.....
00c0 - 96 2a 58 d8 fc cf e3 76-ee ac 89 0f 4d 28 6e 3f .*X....v....M(n?
00d0 - c7 e4 5b 89 e7 a3 1b 6e-95 09 08 21 b7 20 54 ac ..[....n...!. T.
00e0 - 36 28 8b 31 3d 7f fc 70-f0 28 8d aa 95 96 4b ad 6(.1=..p.(....K.
00f0 - a7 03 1e d2 be c8 51 93-e6 3f 10 8b ed fa e5 00 ......Q..?......
0100 - d7 .
906:d=3 hl=2 l= 0 cons: SET