Using ASP.NET membership providers on the client in a WinForms application is unsafe, because a malicious user can replace the provider of their choice by simply editing the application configuration file.
What exactly are you trying to achieve, and is safety important?