This functionality should be implemented in the same way as the Microsoft Base Cryptographic Provider. This implementation is described in some detail in the The SHA/MD5 RSA Signature Type section.