---
apiVersion: certificates.k8s.io/v1
kind: CertificateSigningRequest
metadata:
  creationTimestamp: "2026-06-10T11:19:43Z"
  generateName: csr-
  managedFields:
  - apiVersion: certificates.k8s.io/v1
    fieldsType: FieldsV1
    fieldsV1:
      f:metadata:
        f:generateName: {}
    manager: ovnkube
    operation: Update
    time: "2026-06-10T11:19:43Z"
  - apiVersion: certificates.k8s.io/v1
    fieldsType: FieldsV1
    fieldsV1:
      f:status:
        f:conditions:
          .: {}
          k:{"type":"Approved"}:
            .: {}
            f:lastTransitionTime: {}
            f:lastUpdateTime: {}
            f:message: {}
            f:reason: {}
            f:status: {}
            f:type: {}
    manager: ovnkube-identity
    operation: Update
    subresource: approval
    time: "2026-06-10T11:19:43Z"
  - apiVersion: certificates.k8s.io/v1
    fieldsType: FieldsV1
    fieldsV1:
      f:status:
        f:certificate: {}
    manager: kube-controller-manager
    operation: Update
    subresource: status
    time: "2026-06-10T11:19:48Z"
  name: csr-9xzmj
  resourceVersion: "7873"
  uid: b12eee23-8cb0-4291-a52c-85694b68cd7e
spec:
  expirationSeconds: 86400
  extra:
    authentication.kubernetes.io/credential-id:
    - X509SHA256=8d3cf832ada507e2ea1b3fa8e8f15e905440e14af2c7fedd865399004af43cb9
  groups:
  - system:nodes
  - system:authenticated
  request: LS0tLS1CRUdJTiBDRVJUSUZJQ0FURSBSRVFVRVNULS0tLS0KTUlJQkREQ0Jzd0lCQURCUk1Sa3dGd1lEVlFRS0V4QnplWE4wWlcwNmIzWnVMVzV2WkdWek1UUXdNZ1lEVlFRRApFeXR6ZVhOMFpXMDZiM1p1TFc1dlpHVTZhWEF0TVRBdE1DMHhNemd0TlRNdVpXTXlMbWx1ZEdWeWJtRnNNRmt3CkV3WUhLb1pJemowQ0FRWUlLb1pJemowREFRY0RRZ0FFdXhtSVdNNDZhYXU3U0NpR1A1cUJNeDJnVjdsb25jaWoKamkzZklVUFEyK3J6ckd1MW9UU1VWWnhZVEhCcHAzU0tvbHZIWFFaOFVOVFdQeWdwc3JIVzFLQUFNQW9HQ0NxRwpTTTQ5QkFNQ0EwZ0FNRVVDSUhYb243em9qMXRNN3RMbkVvSG55bVVpaDN3YWQ4SEhqc2dIZzBLcjFScGtBaUVBCnhaQkhNaEpydEF3ZEc3S0hPNkc0VERwWUdpYVJqSGN1VStrNVBlNFJPNzA9Ci0tLS0tRU5EIENFUlRJRklDQVRFIFJFUVVFU1QtLS0tLQo=
  signerName: kubernetes.io/kube-apiserver-client
  usages:
  - digital signature
  - client auth
  username: system:node:ip-10-0-138-53.ec2.internal
status:
  certificate: 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
  conditions:
  - lastTransitionTime: "2026-06-10T11:19:43Z"
    lastUpdateTime: "2026-06-10T11:19:43Z"
    message: Auto-approved CSR "csr-9xzmj"
    reason: AutoApproved
    status: "True"
    type: Approved