Any idea why would my Trust Store Version be different? I have all recent updates.

Hi JeffMerino,

Welcome to Apple Support Communities!

We see that you are wondering about the Trust Store Version number on your iPhone.

We’d be happy to help.

You may have other certificates installed that would change the basic Trust Store Version number on iOS 14.

You can look at Trust manually installed certificate profiles in iOS and iPadOS to see if your iPhone has any manually installed certificates.

Have a great day!

https://support.apple.com/en-us/HT212140

That is nonsense. The trust store version is a read-only file that is integral with a specific iOS version, so by definition it is the correct version for whatever the iOS version is.

The trust store does not contain site certificates, it contains the signatures of the Certificate Authorities (CAs) that issue certificates. If iOS encounters a certificate that is not signed by a trusted CA it displays a warning that the certificate may not be valid.

Go to Settings/General and scroll to the bottom. Do you see and entry called Device Management? If it isn’t there your phone is not under MDM. If you do see it tap on it. Do you see a management profile? If you do you may be able to delete it by tapping on it.

Another way to check. Back up the phone, then restore it to factory settings. If it is under MDM you will see a page when you try to set it up saying that it is remotely managed, and who is managing it. If you don’t see that it is not controlled by Mobile Device Management.

The way a phone is added to an MDM account is by connecting it to a Mac that has the Apple Configurator 2 application installed.

And to come back to the theme of this thread, the most recent trust store version is 2021021100, Asset Version 13. And, a perceptive observer will notice that version is the date it was last updated, February 11, 2021.

Iamasinpajamas wrote:et

I can’t find anything official from Apple for confirmed trust certificate numbers past iOS 12.

I can: List of available trusted root certificates in iOS 14, iPadOS 14, macOS 11, watchOS 7, and tvOS 14 - Apple Support. This is as of January, 2021. There was another update on February 11, 2021 that hasn’t been updated yet in the Knowledge Base.

Happening to me too, I think it’s someone creating MDM profiles using the official developer application from Apple. It’s my best guess so far, plus I found a file under my file application ending xcarchive, which I think stands for Xcode archive. Xcode is used to make apps. There’s a method of hacking iPhones called side loading, modifying known apps then having them uploaded.

I contacted Apple but they said you need the police and lawyers for them to be able to look up the information needed to link the individual phones if you don’t know the developer login!

Contact Apple. Refer them to this community log. Also make a Reddit account and post evidence and exactly what’s happening when. We can make a subreddit to join all the evidence and number of people affected.

https://www.reddit.com/u/Iamasinpajamas/?utm_source=share&utm_medium=ios_app&utm_name=iossmf

I have no idea. You really can learn very little from file names.

UPDATE: I did a little research, and it appears to be a developer’s tool that is used to specify temporary host addresses for testing apps before they are released. Have you ever installed an app that you got from a website and not from the app store?

This article lists the certificates for Trust Store version 2020082800, which is current for iOS 14.2 and later, iPadOS 14.2 and later, macOS 11 and later, watchOS 7.1 and later, and tvOS 14.2 and later.

Thank you for finding the link. This confirms the standard trust certificate should be different to ours. Do you use MDM/developer/enterprise or profiles on your devices?

No, I do not have MDM. And, as I said, my trust store version is 2021021100 Trust Asset 13 on 6 Apple devices. It’s just Apple’s documentation that has not been updated. Which I have reported through channels available to me as a level 10 user.

And, as I also said, MDM does not change the trust store version. What it does is add a profile in settings/General.

As this thread is just going around in circles I will cease following it going forward.

i have a verified compromised iPhone 11 Pro running ios14.6 and this trust certificate is on mine , it was this trust store version that had apple security engineers refer me to the police about spying

you should download a copy of your data from Apple ID

under Apple ID sign on information check ip addresses logging into your account

I have my own ip and also the ip of a different Isp

the police are now using a warrant to get the unknown up owners information

ive been complaining for 5 years of hacking and spying and until now dismissed by support as I had no other devices linked or profiles installed

fully updated and countless erase all content and dfu resets

According to Apple its correct and thats what they told me when i contacted them.Most of there devices on display has the same Certificate Trust Settings and so does my friends that has the IOS 14.6 installed.

Lol I’m guessing you are much more knowledgeable than Apple security engineers they would only be in the top tier of cyber security experts.

It has to do with the misuse of enterprise developer certificates for malicious activity. Not something the end user can change and requires secure documentation for anyone to request a change . Apple employees all have enterprise devices

From the Apple community help comment near the top, it sounds like the trust certificate number changes to show additional profiles have been added. I think that’s what we’re seeing. If the trust certificate has been altered, it allows fake DNS to be trusted. Developers can make HTTPS look authentic and all types of phishing, sending through their server first.

I think you don’t understand the purpose of the trust store. The trust store does not contain site certificates, it contains the signatures of the Certificate Authorities (CAs) that issue certificates. If iOS encounters a certificate that is not signed by a trusted CA it displays a warning that the certificate may not be valid.

Additional reading:

• https://playbooks.idmanagement.gov/fpki/trust-stores/
• https://en.wikipedia.org/wiki/Certificate_authority

I also have two PDF files saved on the file application, if I try to delete it says they don’t exist but they’ve been there for at least a week. Both called screenshot and then individual time and dates. Can’t open them. One 4 bytes, the other 300and something bytes.

I think the trust certificate number signifies there’s a MDM profile or other certificates installed. So that certificate might be genuine but used to signify the trust is subject to other profiles/certificates