Menu
View Categories

How to create Certificate for iOS

To publish or build your iOS app with QuikApp, you need files from your Apple Developer Account and optionally App Store Connect API keys (for TestFlight uploads).

Team ID

How to get Team ID

Certificate Setup

Case 1: Fresh Certificate (New Setup)

1. Generate CSR (Certificate Signing Request)

On macOS:

  1. Open Keychain Access → Menu → Certificate Assistant → Request a Certificate From a Certificate Authority…
  2. Enter: User Email Address (Apple ID email). Common Name (e.g., “QuikApp Distribution”)
  3. Select Saved to disk.
  4. Save as: CertificateSigningRequest.certSigningRequest

On Windows:

  1. Use OpenSSL to generate CSR (alternative to Keychain).est
				
					openssl req -new -newkey rsa:2048 -nodes -keyout ios_private_key.key -out CertificateSigningRequest.certSigningRequest

2. Create New Certificate in Apple Developer Portal

  1. Log in to Apple Developer Account.
  2. Go to Certificates, Identifiers & Profiles → Certificates.
  3. Click + Add → Select Apple Distribution.
  4. Upload the CSR file you generated.
  5. Apple generates a new certificate → Download .cer.

3. Import Certificate into Keychain Access (Mac)

  1. Double-click the downloaded .cer → it will install in Keychain Access under My Certificates.
  2. The private key (from CSR) is automatically paired with the certificate.

4. Export Certificate as .p12

  1. In Keychain Access, go to My Certificates.
  2. Find the newly installed Apple Distribution certificate.
  3. Right-click → Export.
  4. Choose format: .p12 (Personal Information Exchange).
  5. Set a password (secure; you’ll need it later).
  6. Save file: ios_distribution.p12.

Upload to QuikApp

  1. Upload .p12 file + password to QuikApp → Certificates section.

Case 2: Already Present Certificate (Existing Setup)

If you already have a Distribution Certificate installed in your Keychain:

  1. Locate Certificate
    1. Open Keychain Access → My Certificates.
    2. Look for Apple Distribution certificate with private key.
  2. Export as .p12
    1. Right-click certificate → Export.
    2. Choose format .p12.
    3. Set a password (needed when uploading).
    4. Save file: ios_distribution_existing.p12.
  3. Upload to QuikApp
    1. Upload existing .p12 + password into QuikApp.

Notes

  • Option A (P12 Flow) is recommended because:
    • Everything (certificate + private key) is bundled into one secure .p12 file.
    • Simpler for automation and CI/CD (e.g., Codemagic, QuikApp).
  • Keep backup copies of .p12 in a secure vault (e.g., 1Password, Keychain, Bitwarden).
  • You can reuse the same .p12 across multiple Macs/Windows machines.

Case 1: Fresh Certificate (New Setup)

On Windows:

  1. Generate CSR (Certificate Signing Request)
    • Open PowerShell or Command Prompt (with OpenSSL installed).
    • Run:
				
					openssl req -new -newkey rsa:2048 -nodes -keyout ios_private_key.key -out CertificateSigningRequest.certSigningRequest
  1. This creates two files:
    • ios_private_key.key → private key (keep safe).
    • CertificateSigningRequest.certSigningRequest → CSR file.
  2. Apple generates a new certificate → Download .cer.

Create Certificate in Apple Developer Portal

  1. Log in: https://developer.apple.com/account
  2. Go to Certificates, Identifiers & Profiles → Certificates
  3. Click ➕ Add → Select Apple Distribution.
  4. Upload the CSR (CertificateSigningRequest.certSigningRequest).
  5. Download the generated ios_distribution.cer.

Generate Private Key with OpenSSL

  1. If not already created from CSR step, run in Terminal:
  2. Produces ios_private_key.key.
				
					openssl genrsa -out ios_private_key.key 2048

Upload to QuikApp

  1. ios_distribution.cer
  2. ios_private_key.key

On macOS:

Generate CSR (Certificate Signing Request)

  1. Open Keychain Access → Menu → Certificate Assistant → Request a Certificate from a Certificate Authority…
  2. Enter: User Email Address (Apple ID email). Common Name (e.g., “QuikApp Distribution”)
  3. Save as CertificateSigningRequest.certSigningRequest.
  4. You can also use OpenSSL on macOS if preferred.

Create Certificate in Apple Developer Portal

  1. Log in: https://developer.apple.com/account
  2. Navigate: Certificates, Identifiers & Profiles → Certificates.
  3. Click +Add → Choose Apple Distribution.
  4. Upload the CSR.
  5. Download generated ios_distribution.cer.

Generate Private Key with OpenSSL

  1. If not already created from CSR step, run in OpenSSL installed Command Prompt:
				
					openssl genrsa -out ios_private_key.key 2048

Produces ios_private_key.key.

4.Upload to QuikApp

Upload ios_distribution.cer + ios_private_key.key.

Case 2: Already Present Certificate (Existing Setup)

Windows steps

Download Existing Distribution Certificate

  1. Log in to https://developer.apple.com/account.
  2. Navigate to Certificates → All Certificates.
  3. Locate your existing Apple Distribution certificate.
  4. Download: ios_distribution.cer.

Generate Private Key (if not backed up earlier)

  1. If you still have the original .key file from CSR generation → reuse it.
  2. If you don’t have the private key anymore, you must create a new certificate (Apple does not allow regenerating .key).
  3. Example command (if re-generating fresh CSR):
				
					openssl genrsa -out ios_private_key.key 2048

Upload to QuikApp

  1. Upload ios_distribution.cer + matching ios_private_key.key.
macOS Step

Download Existing Distribution Certificate

  1. Log in to https://developer.apple.com/account.
  2. Go to Certificates → All Certificates.
  3. Find yiyr Apple Distribution certificate → Download iOS_distribution_cer.

Check for Matching Private Key in Keychain

  1. Open Keychain Access → My Certificates.
  2. If certificate + private key pair is already present → you can export to .p12 (Option A) OR extract .key with OpenSSL.
  3. If private key is missing , you must create new certificate (Apple won’t let you recover private key).

Generate Private Key with OpenSSL (if needed)

				
					openssl genrsa -out ios_private_key.key 2048

Upload to QuikApp

  1. Upload ios_distribution.cer + matching ios_private_key.key.
Private Key (.key) Notes
  • The .key file is only for Manual Flow (Option B).
  • If you lose the private key, the certificate becomes unusable → you must generate a new CSR + new certificate.
  • Keep .key in secure storage (password manager, encrypted vault)

Build powerful, fully customizable Android and iOS apps effortlessly with our platform no coding required. Empower your vision with professional features and seamless publishing.

Facebook-f Instagram Twitter Youtube
Menu

Get help anytime check out our

Knowledge Base
Copyright © 2026 Quikapp, All rights reserved.
💬
Smart SiteBot
Online
Hi 👋 Ask me anything about this website.