Once an app binary has been uploaded and deployed to devices via MDM it can be hard to find which particular build is actually deployed to the world.

If you may happen to have binaries that share the same BundleID, CFBundleVersion, and CFBundleVersionShortString there is no way to tell which app is actually uploaded. If we could see an md5 checksum or sha1 or sha256 it wold be a nice and easy way to know with confidence which binary was uploaded.