Update match manual decryption example

[tylermilner]

When attempting to manually decrypt some provisioning profiles generated by match, I noticed that the existing manual decryption example was generating a bad decrypt error:

tylermilner@Tylers-MBP adhoc % openssl aes-256-cbc -k 'password' -in 'AdHoc_com.tylermilner.appname.mobileprovision' -out 'AdHoc_com.tylermilner.appname.decrypted.mobileprovision' -a -d       
bad decrypt
8547113792:error:06FFF064:digital envelope routines:CRYPTO_internal:bad decrypt:/AppleInternal/Library/BuildRoots/97f6331a-ba75-11ed-a4bc-863efbbaf80d/Library/Caches/com.apple.xbs/Sources/libressl/libressl-3.3/crypto/evp/evp_enc.c:554:

Based on the code samples for .cer + .p12 repackaging, I noticed that they have the -md flag specified at the end. Adding this flag with the appropriate hash type results in a successful decryption:

tylermilner@Tylers-MBP adhoc % openssl aes-256-cbc -k 'password' -in 'AdHoc_com.tylermilner.appname.mobileprovision' -out 'AdHoc_com.tylermilner.appname.decrypted.mobileprovision' -a -d -md md5

Also in my case, my match repo password contains an exclamation point !, which was causing dquote> to be output with no actual decryption happening when run:

tylermilner@Tylers-MBP adhoc % openssl aes-256-cbc -k "password!" -in "AdHoc_com.tylermilner.appname.mobileprovision" -out "AdHoc_com.tylermilner.appname.decrypted.mobileprovision" -a -d -md md5
dquote> 

It appears that the ! was causing the trailing quote for the password parameter to get removed when run, which I could verify by pressing up arrow ↑ to stage the previous command in Terminal (notice missing double quote " after password):

openssl aes-256-cbc -k "password! -in "AdHoc_com.tylermilner.appname.mobileprovision" -out "AdHoc_com.tylermilner.appname.decrypted.mobileprovision" -a -d -md md5

Switching from double quotes to single quotes as suggested in this SO post, allowed my command to succeed with the ! in the password. I added a note here in the docs to make others aware as well.

[google-cla]

Thanks for your pull request! It looks like this may be your first contribution to a Google open source project. Before we can look at your pull request, you'll need to sign a Contributor License Agreement (CLA).

View this failed invocation of the CLA check for more information.

For the most up to date status, view the checks section at the bottom of the pull request.

[rogerluan]

👏 Well done! Great improvement, thank you so much!

[rogerluan]

Netlify deploy is broken on master too, so we can merge this in as is :)