---
apiVersion: certificates.k8s.io/v1
kind: CertificateSigningRequest
metadata:
  creationTimestamp: "2026-05-20T21:43:32Z"
  generateName: csr-
  managedFields:
  - apiVersion: certificates.k8s.io/v1
    fieldsType: FieldsV1
    fieldsV1:
      f:status:
        f:certificate: {}
    manager: kube-controller-manager
    operation: Update
    subresource: status
    time: "2026-05-20T21:43:32Z"
  - apiVersion: certificates.k8s.io/v1
    fieldsType: FieldsV1
    fieldsV1:
      f:metadata:
        f:generateName: {}
    manager: ovnkube
    operation: Update
    time: "2026-05-20T21:43:32Z"
  - apiVersion: certificates.k8s.io/v1
    fieldsType: FieldsV1
    fieldsV1:
      f:status:
        f:conditions:
          .: {}
          k:{"type":"Approved"}:
            .: {}
            f:lastTransitionTime: {}
            f:lastUpdateTime: {}
            f:message: {}
            f:reason: {}
            f:status: {}
            f:type: {}
    manager: ovnkube-identity
    operation: Update
    subresource: approval
    time: "2026-05-20T21:43:32Z"
  name: csr-nkzh5
  resourceVersion: "5761"
  uid: 81d6777a-2e71-4dbc-8ffb-654df929a567
spec:
  expirationSeconds: 86400
  extra:
    authentication.kubernetes.io/credential-id:
    - X509SHA256=9b28a85c42278e4af294fee6897e8bd507c5f80600d1ff16e5f40db74b985e1f
  groups:
  - system:nodes
  - system:authenticated
  request: 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
  signerName: kubernetes.io/kube-apiserver-client
  usages:
  - digital signature
  - client auth
  username: system:node:ip-10-0-141-67.ec2.internal
status:
  certificate: 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
  conditions:
  - lastTransitionTime: "2026-05-20T21:43:32Z"
    lastUpdateTime: "2026-05-20T21:43:32Z"
    message: Auto-approved CSR "csr-nkzh5"
    reason: AutoApproved
    status: "True"
    type: Approved