---
apiVersion: certificates.k8s.io/v1
kind: CertificateSigningRequest
metadata:
  creationTimestamp: "2026-04-24T21:16:44Z"
  generateName: csr-
  managedFields:
  - apiVersion: certificates.k8s.io/v1
    fieldsType: FieldsV1
    fieldsV1:
      f:status:
        f:certificate: {}
    manager: kube-controller-manager
    operation: Update
    subresource: status
    time: "2026-04-24T21:16:44Z"
  - apiVersion: certificates.k8s.io/v1
    fieldsType: FieldsV1
    fieldsV1:
      f:metadata:
        f:generateName: {}
    manager: ovnkube
    operation: Update
    time: "2026-04-24T21:16:44Z"
  - apiVersion: certificates.k8s.io/v1
    fieldsType: FieldsV1
    fieldsV1:
      f:status:
        f:conditions:
          .: {}
          k:{"type":"Approved"}:
            .: {}
            f:lastTransitionTime: {}
            f:lastUpdateTime: {}
            f:message: {}
            f:reason: {}
            f:status: {}
            f:type: {}
    manager: ovnkube-identity
    operation: Update
    subresource: approval
    time: "2026-04-24T21:16:44Z"
  name: csr-nlt28
  resourceVersion: "6124"
  uid: 6655858e-d8ab-4b7f-84e8-8701ee1bf62e
spec:
  expirationSeconds: 86400
  extra:
    authentication.kubernetes.io/credential-id:
    - X509SHA256=ff82540852a479f305cdadd83895bb12b19d3f8652f7b124fc318de557153883
  groups:
  - system:nodes
  - system:authenticated
  request: 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
  signerName: kubernetes.io/kube-apiserver-client
  usages:
  - digital signature
  - client auth
  username: system:node:ip-10-0-128-21.ec2.internal
status:
  certificate: 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
  conditions:
  - lastTransitionTime: "2026-04-24T21:16:44Z"
    lastUpdateTime: "2026-04-24T21:16:44Z"
    message: Auto-approved CSR "csr-nlt28"
    reason: AutoApproved
    status: "True"
    type: Approved