In the Risk log, click on the risk and then on "Details". You'll find its SHA-2 hash.
In the Exception policy, under "Windows Exceptions > Applications", you can see the hashes as well.
##EDIT
If you want to grab all hashes, just export the Risk log and open it in a spreadsheet.