New Endpoint: Certificate Checker

Certificate Checker is Live

We just shipped a new endpoint that lets you check the status of Apple signing certificates. Upload a .p12, .pfx, or .mobileprovision file and get back everything you need to know about the certificate inside it.

This has been a common ask from folks working with iOS certificate tooling — you have a cert file but you want to know if it is still valid, when it expires, or if Apple pulled it. Now you can check all of that with a single API call.

What You Get Back

The response includes the full certificate breakdown:

• Subject & Issuer — who owns it, who signed it, team ID, org name
• Validity period — exact dates for when the cert was issued and when it expires
• Fingerprints — SHA-256, SHA-1, and MD5 hashes for identification
• OCSP revocation status — checks Apple's servers in real time to tell you if the cert is Signed, Revoked, or Unknown
• Revocation details — if it is revoked, you get the reason and timestamp
• Entitlements — for .mobileprovision files, you get the full list of active entitlements (push notifications, app groups, sign-in with Apple, etc.)
• Certificate type — whether it is an Enterprise or Personal certificate

Endpoint

POST https://developer.nabzclan.vip/api/certificate-checker

Quick Example

Check a P12 file:

curl -X POST https://developer.nabzclan.vip/api/certificate-checker   -H "Authorization: Bearer YOUR_API_TOKEN"   -H "Accept: application/json"   -F "[email protected]"   -F "password=mypassword"

Check a mobileprovision file (no password needed):

curl -X POST https://developer.nabzclan.vip/api/certificate-checker   -H "Authorization: Bearer YOUR_API_TOKEN"   -H "Accept: application/json"   -F "[email protected]"

Why We Built This

If you are building anything around iOS app signing — whether that is a signing service, a certificate manager, or just an internal tool to keep track of your team's certs — you probably need to check cert status programmatically at some point. Doing it manually through Apple's portal is slow and doesn't scale. This endpoint gives you the same info in a fraction of a second.

It also pairs well with the other P12 tools we already have. You can verify a password with /api/p12-verify, crack an unknown password with /api/p12-crack, change the password with /api/p12passwordchanger, and now check the cert status with /api/certificate-checker. Full toolkit.

Get Started

Head over to your Dashboard to grab an API token, or check the full documentation for all the details on parameters and response format.