Posts on this page:
Recently I wrote a sample function which allows security administrators to dump trusted root certificates from Microsoft web site.
Microsoft maintains a number of predefined trusted root CAs which are members of Microsoft Root Certificate Program. Here are several useful links on TechNet wiki:
In addition, update mechanism is described here: KB931125.
Generally speaking, Microsoft maintains a special certificate trust list (CTL) which is located here. This CTL contains hashes and extended properties for each member of the root certificate program. Also, each certificate is downloadable at: