A file that is required cannot be installed because the cabinet file <path> has an invalid digital signature. This may indicate that the cabinet file is corrupt. (4265838)

When installing Active Roles, the following error is received

• A file that is required cannot be installed because the cabinet file <path> has an invalid digital signature.  This may indicate that the cabinet file is corrupt.

By default, some Windows Server installations do not recognize DigiCert as a valid certificate authority. In most cases, Windows Server will periodically download an updated certificate authority list from Microsoft.

Servers that do not have a live internet connection will not be able to download the updated certificate authority list, causing an invalid digital signature error.

To verify that this issue is present, check the following in the Active Roles setup file:

1. Right click on the Active Roles Setup.exe file
2. Select Properties
3. Select the Digital Signatures tab
4. Select the signature in the box below and click the Details button
5. In the pane that opens, review the Digital Signature Information, and check for the following:
   • ​​The certificate in the signature cannot be verified

​

​If The certificate in the signature cannot be verified message is observed, this indicates that Windows does not recognize DigiCert as an authorized Certificate Authority.

To resolve this issue, download the and install updated DigiCert root certificates to the Trusted Root Certification Authorities store on the affected host, or provide the host with a network connection and run Windows Updates.