Shaman is about right I guess. I don't know the internals of the MII, and I know diddly-squat about any other sat-cards or their OS's, about CAM's, Emu's or advanced encryption techniques but logically you could either A) load the card and then try to exploit a weakness in it to extract what you need, or
build a complex software environment/emulator to run on a different processor (x86 say) thus enabling the executable code contained in the MII file (that code which is destined to run on the card (not the loader code) plus all the supporting environmental data also contained therein) to run without first loading it to a card.
Those two options may look something like :-
A) Break up the exe file into its constituent parts (easy), and pull out the loader and the data to be loaded to the card.
You could either then :-
1) Load the card and try to get all the data back off it, which is next to impossible ('cos smart cards are designed to be written to but not read from) and would take both an age and the more capable of us to acheive. At best you could get it all, and shaft the MII developers, or you could just get the keys. If you could do the latter, you would be fine 'till the next key change, and the next MII file was released.
2) Alternatively, you could break the key encryption in the file and decrypt the keys. The developers would then change the encryption process for the next file, and you'd have to start again. You also have a chance of reverse engineering any encrption/decryption logic in the loader (if present?), but that would end in the same way as above.
At best, I guess you could fathom the essence of the app. code running on the card, plus dump the various memory areas on the chip and that may give you the logic and access to rip keys and key logic from the original cards.
Then you would be laughing, but I don't think that's what you're asking.
To create an address space in which to emulate the MII card's processor i.e. it's instruction set, plus the card OS on top, and then the C*nax card code on top of that, with access to all the operational run-time data from each of these tiers (which certainly isn't available in the file anyway, nor could you easily supplement this externally), and emulating each of the protected memory areas of the original MII card would be a massive task. I doubt that an emulator exists in the public domain which you can download off the internet. ;)
Then of course you would have to build an API/new SoftCAM from scratch (either to execute in that simulated environment, or on the native host processor with access to the simulated address space), and port both to each platform that you wanted to run it on. Yes it's possible. We've all seen Commodore and Spectrum emulators for the PC (Oooh, hark at me showing me age...) but it's a huge ask when so little is know about the original environment.
Of course the third option is that you could buy a programmer and MII card.
Now I don't mean to be sarcastic, that isn't my intention, but that's about the size of what I think you're proposing. Now I almost certianly have some of the details wrong, and if you undestand this better than me then I'm happy to stand corrected (and indeed would love to hear your ideas) but the scale of what's involved in fabricating the environment to make this happen is too great to contemplate when buying a card is so cheap and easy.
And I'm not trying to sell the card. If I had my way, I'd blow the whole lot wide open and give it to the community with my best wishes.
STICK