# Loading Singpass Root Signing Certificate

In order to verify if a Sign with Singpass signature is valid, see [here](https://docs.sign.singpass.gov.sg/for-users/verifying-sign-with-singpass-signatures).

Before that, the Singpass root signing certificate must be installed on your device and configured for your Adobe Acrobat Reader:

* You can download the **Adobe Acrobat Reader** application [here](https://get.adobe.com/uk/reader/)
* If you do not have the Singpass root signing certificate on your device, please follow the steps below.

{% hint style="success" %}
For **government agencies**, this should already be automatically available on your GSIB. If it is not, please raise a ticket to AFM to push “GSSP\_Acrobat Reader Digital Signature Fix\_2.0” to the agency's GSIBs.

For the rest of the agencies, you may follow the steps below or approach your IT department to push the certificates so that it applies across your agency.
{% endhint %}

### Automatically load the certificate

{% stepper %}
{% step %}
**Go to** [**GovTech CA Repository**](https://repository.nca.gov.sg/) **and download "Singapore National Root CA - B1 FDF"**

<figure><img src="https://372330916-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FXnljQgt54HuOtH3cKCRP%2Fuploads%2Fscqe2O6Mz3RNw8BuxUUy%2Fimage.png?alt=media&#x26;token=33d68cde-1271-4290-8429-9b6abdeb240d" alt=""><figcaption></figcaption></figure>
{% endstep %}

{% step %}
**Go to** [**Assurity NCA repository**](https://product.assurity.sg/nca/) **and download "SNRCA-G1.fdf" under "NCA Root Cert"**

<figure><img src="https://372330916-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FXnljQgt54HuOtH3cKCRP%2Fuploads%2FItJtAFB7Lnb9SydGvD4l%2FScreenshot%202025-11-06%20at%201.34.42%E2%80%AFPM.png?alt=media&#x26;token=1ddd1544-39db-4b88-aa2c-881fbac927d1" alt=""><figcaption></figcaption></figure>
{% endstep %}

{% step %}
**Open both of the files downloaded.**&#x20;

This should automatically load the certificates into your Adobe Acrobat reader.
{% endstep %}

{% step %}
**All done!**&#x20;

Open up a document generated by Sign and you should be able to see the the green tick and the words "Signed and all signatures are valid".&#x20;

{% hint style="warning" %}
If you are still facing issues, please attempt to load the certificate with the instructions in the next section: [Manually load the certificate](#manually-load-the-certificate)
{% endhint %}

<figure><img src="https://372330916-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FXnljQgt54HuOtH3cKCRP%2Fuploads%2Fs8x7K0Su5JhDBaDHbaBH%2FFrame%20427319133.png?alt=media&#x26;token=1317dc66-2a53-4d8d-a529-c39de5a45de4" alt=""><figcaption></figcaption></figure>
{% endstep %}
{% endstepper %}

### Manually load the certificate

{% hint style="warning" %}
***Still can't seem to verify after completing the steps?***

**From 13 Feb 2025, all new Singpass signing certificates are issued by the GovTech CA.** Prior to this, Singpass App users would have been issued signing certificates by Assurity Trusted Solution Pte Ltd (ATS), GovTech's wholly-owned subsidiary and an Accredited CA under the Electronic Transactions Act (2010).&#x20;

If you are unable to verify the document signature, the document may have been signed with the legacy ATS certificates. \
\
**Please follow the same steps above and load the ATS root cert by downloading it** [**here**](https://product.assurity.sg/nca/) **under the section "NCA Root Cert"** (you may download either "SNRCA-G1.cer" or "SNRCA-G1.crl").
{% endhint %}

{% stepper %}
{% step %}
**Go to** [**GovTech CA Repository**](https://repository.nca.gov.sg/) **and download Singapore National Root CA - B1 Certificate.**

<figure><img src="https://372330916-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FXnljQgt54HuOtH3cKCRP%2Fuploads%2F9g0foT203hLmmAy1qG0D%2FFrame%20427319122.png?alt=media&#x26;token=a3dc59ee-f8f6-492a-a529-f960e8e48692" alt=""><figcaption></figcaption></figure>
{% endstep %}

{% step %}

### Certificates Staging Environment

For staging environment, download the certificate below.

CER Format

{% file src="<https://372330916-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FXnljQgt54HuOtH3cKCRP%2Fuploads%2FoZC19MpeYsZ4S2ChPZtX%2FSNRCA-B1%20(Staging).cer?alt=media&token=3ac820d9-6541-4822-96e3-26301fa7c204>" %}
Singapore National Root CA - B1 CER format
{% endfile %}

CRT Format

{% file src="<https://372330916-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FXnljQgt54HuOtH3cKCRP%2Fuploads%2FBgav2NeOgOWZWJrjR0qc%2FSNRCA-B1%20(Staging).crt?alt=media&token=99f0fa2b-1c61-499c-816b-b16e236699f6>" %}
Singapore National Root CA - B1 CRT format
{% endfile %}
{% endstep %}

{% step %}
**In your folder that you have chosen, you should find the file RCA-B1.crt**

<figure><img src="https://372330916-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FXnljQgt54HuOtH3cKCRP%2Fuploads%2FlcxqrzdThGZDS2SclPsy%2FFrame%20427319123.png?alt=media&#x26;token=4648435d-21a1-4e09-9c80-226d27bab620" alt=""><figcaption></figcaption></figure>
{% endstep %}

{% step %}
**Open Adobe PDF reader.**

If you do not have this, you may download and install [here](https://get.adobe.com/uk/reader/).
{% endstep %}

{% step %}
**Click "Acrobat Reader" on the top left.**

<figure><img src="https://372330916-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FXnljQgt54HuOtH3cKCRP%2Fuploads%2FbHS7xj13E9MfVoD8w3qN%2FFrame%20427319124.png?alt=media&#x26;token=06c1193a-28f5-4751-bf80-ec89723946e7" alt=""><figcaption></figcaption></figure>
{% endstep %}

{% step %}
**Navigate to "Preferences"**

<figure><img src="https://372330916-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FXnljQgt54HuOtH3cKCRP%2Fuploads%2FQxblwFtBdPxLGvV8lccx%2FFrame%20427319125.png?alt=media&#x26;token=fb259b56-0516-4236-8aeb-bc36241ebbda" alt=""><figcaption></figcaption></figure>
{% endstep %}

{% step %}
**Under Categories, find and click "Signatures".**

<figure><img src="https://372330916-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FXnljQgt54HuOtH3cKCRP%2Fuploads%2FNRBXjA7YKUXps76nJqRC%2FFrame%20427319126.png?alt=media&#x26;token=927b100a-a32d-4503-9163-a7274b43d744" alt=""><figcaption></figcaption></figure>
{% endstep %}

{% step %}
**Click "more" under Identities and Trusted Certificates**.

<figure><img src="https://372330916-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FXnljQgt54HuOtH3cKCRP%2Fuploads%2F4bEfwBO8WYAZGBhVfjY1%2FFrame%20427319127.png?alt=media&#x26;token=607f5f16-4c10-431b-b391-17d841e9a44c" alt=""><figcaption></figcaption></figure>
{% endstep %}

{% step %}
**Click on "Trusted Certificates"**

<figure><img src="https://372330916-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FXnljQgt54HuOtH3cKCRP%2Fuploads%2FT6qdjjPWV47kBhMNV3Eg%2FFrame%20427319128.png?alt=media&#x26;token=da9372e0-558c-4222-96a6-9b187dbf9107" alt=""><figcaption></figcaption></figure>
{% endstep %}

{% step %}
**Click Import**

<figure><img src="https://372330916-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FXnljQgt54HuOtH3cKCRP%2Fuploads%2FsRfjmfnpbqAqQVW028YT%2FFrame%20427319129.png?alt=media&#x26;token=f3613127-5a29-4e54-a81e-cfeafd9bfb13" alt=""><figcaption></figcaption></figure>
{% endstep %}

{% step %}
**Under Contacts, click "Browse" and choose the certificate you have downloaded earlier. Click on "Singapore National Root CA - B1" that is loaded.**

<figure><img src="https://372330916-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FXnljQgt54HuOtH3cKCRP%2Fuploads%2Fwi2Z0EQr0wRKAdfhNDkS%2FFrame%204273191210.png?alt=media&#x26;token=af4d4354-6654-4fe3-820e-04359132c472" alt=""><figcaption></figcaption></figure>
{% endstep %}

{% step %}
**Under Certificates, click on Singapore National Root CA - B1 and then click Trust**

<figure><img src="https://372330916-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FXnljQgt54HuOtH3cKCRP%2Fuploads%2F6LEzVZBeNRrgFfkRTT8j%2FFrame%204273191211.png?alt=media&#x26;token=b275ad2a-56eb-486c-bf1a-6179581dd259" alt=""><figcaption></figcaption></figure>
{% endstep %}

{% step %}
**Check "Use this certificate as a trusted root" with a tick and press OK**

<figure><img src="https://372330916-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FXnljQgt54HuOtH3cKCRP%2Fuploads%2FXge6KA8cdxewNGn0X1Bf%2FFrame%204273191212.png?alt=media&#x26;token=be1d0b10-24fd-47c5-a768-433e6dfa2369" alt=""><figcaption></figcaption></figure>
{% endstep %}

{% step %}
**Click on Import**

<figure><img src="https://372330916-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FXnljQgt54HuOtH3cKCRP%2Fuploads%2FomAmbTSZY7qahtdHkJAH%2FFrame%204273191313.png?alt=media&#x26;token=02315dc5-19b1-4861-b75a-1f239c4a0202" alt=""><figcaption></figcaption></figure>

You should now be able to see Singapore National Root CA - B1 under your Trusted Certificates.

<figure><img src="https://372330916-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FXnljQgt54HuOtH3cKCRP%2Fuploads%2FzSbf0eXWcl88sbRqkW9T%2FFrame%204273191313b.png?alt=media&#x26;token=28ed4478-6b92-4894-b208-c573769d9788" alt=""><figcaption></figcaption></figure>
{% endstep %}

{% step %}
**Enable certification revocation checking**

This can be found under Preferences > Signatures > Verification

<figure><img src="https://372330916-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FXnljQgt54HuOtH3cKCRP%2Fuploads%2FZgTJicoEEDvTgV5u2jVQ%2FFrame%204273191214.png?alt=media&#x26;token=643087c7-cdfb-49c1-af1c-ac580e279ddd" alt=""><figcaption></figcaption></figure>

<figure><img src="https://372330916-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FXnljQgt54HuOtH3cKCRP%2Fuploads%2FJGOyH9oR2U1X7vuCGFHu%2FFrame%204273191314b.png?alt=media&#x26;token=2b944d88-19fd-4d7f-b32f-67a334674412" alt=""><figcaption></figcaption></figure>
{% endstep %}

{% step %}

### All done!

{% endstep %}
{% endstepper %}