From b129b4ceaaab3e93b0cef21379cd2bef597c67b1 Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Fri, 14 Jul 2023 17:03:20 -0400
Subject: [PATCH 001/417] prepare for alt login

---
 salt/kratos/enabled.sls   | 3 +--
 salt/nginx/etc/nginx.conf | 2 +-
 2 files changed, 2 insertions(+), 3 deletions(-)

diff --git a/salt/kratos/enabled.sls b/salt/kratos/enabled.sls
index 52d53a4db..31097ccf4 100644
--- a/salt/kratos/enabled.sls
+++ b/salt/kratos/enabled.sls
@@ -21,8 +21,7 @@ so-kratos:
       - sobridge:
         - ipv4_address: {{ DOCKER.containers['so-kratos'].ip }}
     - binds:
-      - /opt/so/conf/kratos/schema.json:/kratos-conf/schema.json:ro    
-      - /opt/so/conf/kratos/kratos.yaml:/kratos-conf/kratos.yaml:ro
+      - /opt/so/conf/kratos/:/kratos-conf:ro
       - /opt/so/log/kratos/:/kratos-log:rw
       - /nsm/kratos/db:/kratos-data:rw
       {% if DOCKER.containers['so-kratos'].custom_bind_mounts %}
diff --git a/salt/nginx/etc/nginx.conf b/salt/nginx/etc/nginx.conf
index 52e3d6d3d..925583ff3 100644
--- a/salt/nginx/etc/nginx.conf
+++ b/salt/nginx/etc/nginx.conf
@@ -146,7 +146,7 @@ http {
 			proxy_set_header      X-Forwarded-Proto $scheme;
 		}
 
-		location ~ ^/auth/.*?(login) {
+		location ~ ^/auth/.*?(login|oidc/callback/) {
 			rewrite               /auth/(.*) /$1 break;
 			limit_req             zone=auth_throttle burst={{ NGINXMERGED.config.throttle_login_burst }} nodelay;
 			limit_req_status      429;

From b24afac0f4776e72a23320da05c7013508d48795 Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Tue, 18 Jul 2023 10:48:42 -0400
Subject: [PATCH 002/417] upgrade registry version

---
 salt/registry/enabled.sls | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/salt/registry/enabled.sls b/salt/registry/enabled.sls
index 4d9867676..9ea3ad1df 100644
--- a/salt/registry/enabled.sls
+++ b/salt/registry/enabled.sls
@@ -14,7 +14,7 @@ include:
 # Install the registry container
 so-dockerregistry:
   docker_container.running:
-    - image: ghcr.io/security-onion-solutions/registry:latest
+    - image: ghcr.io/security-onion-solutions/registry:2.8.2
     - hostname: so-registry
     - networks:
       - sobridge:

From 101e2e8ba19cdfd875419bed0661584758a40ae9 Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Mon, 24 Jul 2023 17:05:52 -0400
Subject: [PATCH 003/417] do not redirect to API URLs when not logged in

---
 salt/nginx/etc/nginx.conf | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/salt/nginx/etc/nginx.conf b/salt/nginx/etc/nginx.conf
index 925583ff3..bdcbdeacc 100644
--- a/salt/nginx/etc/nginx.conf
+++ b/salt/nginx/etc/nginx.conf
@@ -296,7 +296,9 @@ http {
 		error_page 429 = @error429;
 
 		location @error401 {
-			add_header    Set-Cookie "AUTH_REDIRECT=$request_uri;Path=/;Max-Age=14400";
+			if ($request_uri ~* ^/(?!(^/api/.*))) {
+				add_header    Set-Cookie "AUTH_REDIRECT=$request_uri;Path=/;Max-Age=14400";
+			}
 			return        302 /auth/self-service/login/browser;
 		}
 

From 6d56deb2e46730df2fdeda35af096c6548cf1036 Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Tue, 25 Jul 2023 08:12:45 -0400
Subject: [PATCH 004/417] oidc 1

---
 salt/kratos/config.sls          |  8 +++
 salt/kratos/defaults.yaml       | 13 +++++
 salt/kratos/files/oidc.jsonnet  |  8 +++
 salt/kratos/map.jinja           |  4 ++
 salt/kratos/soc_kratos.yaml     | 86 +++++++++++++++++++++++++++++++++
 salt/manager/tools/sbin/so-user | 13 +++--
 6 files changed, 128 insertions(+), 4 deletions(-)
 create mode 100644 salt/kratos/files/oidc.jsonnet

diff --git a/salt/kratos/config.sls b/salt/kratos/config.sls
index 55949ea3c..0be43b460 100644
--- a/salt/kratos/config.sls
+++ b/salt/kratos/config.sls
@@ -51,6 +51,14 @@ kratosschema:
     - group: 928
     - mode: 600
 
+kratosoidc:
+  file.managed:
+    - name: /opt/so/conf/kratos/oidc.jsonnet
+    - source: salt://kratos/files/oidc.jsonnet
+    - user: 928
+    - group: 928
+    - mode: 600
+
 kratosconfig:
   file.managed:
     - name: /opt/so/conf/kratos/kratos.yaml
diff --git a/salt/kratos/defaults.yaml b/salt/kratos/defaults.yaml
index 3f5370dde..202670e3d 100644
--- a/salt/kratos/defaults.yaml
+++ b/salt/kratos/defaults.yaml
@@ -1,5 +1,18 @@
 kratos:
   enabled: False
+  oidc:
+    enabled: false
+    config:
+      id: SSO
+      mapper_url: file:///kratos-conf/oidc.jsonnet
+      subject_source: userinfo
+      scopes:
+        - email
+        - profile
+      requested_claims:
+        id_token:
+          email:
+            essential: true
   config:
     session:
       lifespan: 24h
diff --git a/salt/kratos/files/oidc.jsonnet b/salt/kratos/files/oidc.jsonnet
new file mode 100644
index 000000000..c155b275d
--- /dev/null
+++ b/salt/kratos/files/oidc.jsonnet
@@ -0,0 +1,8 @@
+local claims = std.extVar('claims');
+{
+  identity: {
+    traits: {
+      email: if 'email' in claims then claims.email else claims.preferred_username
+    },
+  },
+}
\ No newline at end of file
diff --git a/salt/kratos/map.jinja b/salt/kratos/map.jinja
index 6a2b1e0c9..6d1e2917c 100644
--- a/salt/kratos/map.jinja
+++ b/salt/kratos/map.jinja
@@ -20,3 +20,7 @@
 {% do KRATOSDEFAULTS.kratos.config.courier.smtp.update({'connection_uri': KRATOSDEFAULTS.kratos.config.courier.smtp.connection_uri | replace("URL_BASE", GLOBALS.url_base)}) %}
 
 {% set KRATOSMERGED = salt['pillar.get']('kratos', default=KRATOSDEFAULTS.kratos, merge=true) %}
+
+{% if KRATOSMERGED.oidc.enabled and 'oidc' in salt['pillar.get']('licensed_features') %}
+{%   do KRATOSMERGED.config.selfservice.methods.update({'oidc': {'enabled': true, 'config': {'providers': [KRATOSMERGED.oidc.config]}}}) %}
+{% endif %}
\ No newline at end of file
diff --git a/salt/kratos/soc_kratos.yaml b/salt/kratos/soc_kratos.yaml
index b580e9611..3d63f825e 100644
--- a/salt/kratos/soc_kratos.yaml
+++ b/salt/kratos/soc_kratos.yaml
@@ -3,6 +3,91 @@ kratos:
     description: You can enable or disable Kratos.
     advanced: True
     helpLink: kratos.html
+
+  oidc:
+    enabled: 
+      description: Set to True to enable OIDC / Single Sign-On (SSO) into SOC. Requires a valid Security Onion license key.
+      global: True
+      helpLink: oidc.html
+    config:
+      id: 
+        description: Customize the OIDC provider name. This name appears on the login page. Required.
+        global: True
+        forcedType: string
+        helpLink: oidc.html
+      provider:
+        description: "Specify the provider type. Required. Valid values are: auth0, generic, github, google, microsoft"
+        global: True
+        forcedType: string
+        regex: "auth0|generic|github|google|microsoft"
+        regexFailureMessage: "Valid values are: auth0, generic, github, google, microsoft"
+        helpLink: oidc.html
+      client_id: 
+        description: Specify the client ID, also referenced as the application ID. Required.
+        global: True
+        forcedType: string
+        helpLink: oidc.html
+      client_secret: 
+        description: Specify the client secret. Required.
+        global: True
+        forcedType: string
+        helpLink: oidc.html
+      microsoft_tenant:
+        description: Specify the Microsoft Active Directory Tenant ID. Required when provider is 'microsoft'.
+        global: True
+        forcedType: string
+        helpLink: oidc.html
+      subject_source: 
+        description: The source of the subject identifier. Typically 'userinfo'. Only used when provider is 'microsoft'.
+        global: True
+        forcedType: string
+        regex: me|userinfo
+        regexFailureMessage: "Valid values are: me, userinfo"
+        helpLink: oidc.html
+      auth_url: 
+        description: Provider's auth URL. Required when provider is 'generic'.
+        global: True
+        forcedType: string
+        helpLink: oidc.html
+      issuer_url: 
+        description: Provider's issuer URL. Required when provider is 'generic'.
+        global: True
+        forcedType: string
+        helpLink: oidc.html
+      mapper_url: 
+        description: A file path or URL in Jsonnet format, used to map OIDC claims to the Kratos schema. Defaults to an included file that maps the email claim. Note that the contents of the included file can be customized via the "OIDC Claims Mapping" setting.
+        advanced: True
+        global: True
+        forcedType: string
+        helpLink: oidc.html
+      token_url: 
+        description: Provider's token URL. Required when provider is 'generic'.
+        global: True
+        forcedType: string
+        helpLink: oidc.html
+      scope: 
+        description: List of scoped data categories to request in the authentication response. Typically 'email' and 'profile' are the minimum required scopes. Some providers use an alternate scope name, such as 'user:email'.
+        advanced: True
+        global: True
+        forcedType: "[]string"
+        helpLink: oidc.html
+      requested_claims: 
+        id_token:
+          email:
+            essential:
+              description: Specifies whether the email claim is necessary. Typically leave this value set to true.
+              advanced: True
+              global: True
+              helpLink: oidc.html
+  files:
+    oidc__jsonnet:
+      title: OIDC Claims Mapping
+      description: Customize the OIDC claim mappings to the Kratos schema. The default mappings include the minimum required for login functionality, so this typically does not need to be customized. Visit https://jsonnet.org for more information about this file format.
+      advanced: True
+      file: True
+      global: True
+      helpLink: oidc.html
+
   config:
     session:
       lifespan: 
@@ -65,6 +150,7 @@ kratos:
                 global: True
                 advanced: True
                 helpLink: kratos.html
+
       flows:
         settings:
           privileged_session_max_age:
diff --git a/salt/manager/tools/sbin/so-user b/salt/manager/tools/sbin/so-user
index 50836e94c..98850143e 100755
--- a/salt/manager/tools/sbin/so-user
+++ b/salt/manager/tools/sbin/so-user
@@ -341,14 +341,19 @@ function syncElastic() {
       "  and ic.identity_id=i.id " \
       "  and ict.id=ic.identity_credential_type_id " \
       "  and ict.name='password' " \
-      "  and instr(ic.config, 'hashed_password') " \
       "  and i.state == 'active' " \
       "order by ici.identifier;" | \
       sqlite3 -cmd ".timeout ${databaseTimeout}" "$databasePath")
     [[ $? != 0 ]] && fail "Unable to read credential hashes from database"
-    echo "${userData}" | \
-      jq -r '.user + ":" + .data.hashed_password' \
-      >> "$usersTmpFile"
+
+    user_data_formatted=$(echo "${userData}" | jq -r '.user + ":" + .data.hashed_password')
+    if lookup_salt_value "licensed_features" "" "pillar" | grep -x oidc; then
+      # generate random placeholder salt/hash for users without passwords
+      random_crypt=$(get_random_value 53)
+      user_data_formatted=$(echo "${user_data_formatted}" | sed -r "s/^(.+:)\$/\\1\$2a\$12${random_crypt}/")
+    fi
+
+    echo "${user_data_formatted}" >> "$usersTmpFile"
 
     # Append the user roles
     while IFS="" read -r rolePair || [ -n "$rolePair" ]; do

From b712d505f2fc63278376bf212fc674c38c6613c1 Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Wed, 26 Jul 2023 09:21:23 -0400
Subject: [PATCH 005/417] update version to use kilo images

---
 VERSION | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/VERSION b/VERSION
index 79a614418..7f2e97617 100644
--- a/VERSION
+++ b/VERSION
@@ -1 +1 @@
-2.4.4
+2.4.0-kilo

From aa36e9a785b01c67052c7008775235f94a4fad41 Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Thu, 27 Jul 2023 08:40:27 -0400
Subject: [PATCH 006/417] oidc

---
 salt/kratos/defaults.yaml       | 2 +-
 salt/kratos/soc_kratos.yaml     | 8 ++++----
 salt/manager/tools/sbin/so-user | 4 ++--
 3 files changed, 7 insertions(+), 7 deletions(-)

diff --git a/salt/kratos/defaults.yaml b/salt/kratos/defaults.yaml
index 202670e3d..1e2eef5ed 100644
--- a/salt/kratos/defaults.yaml
+++ b/salt/kratos/defaults.yaml
@@ -6,7 +6,7 @@ kratos:
       id: SSO
       mapper_url: file:///kratos-conf/oidc.jsonnet
       subject_source: userinfo
-      scopes:
+      scope:
         - email
         - profile
       requested_claims:
diff --git a/salt/kratos/soc_kratos.yaml b/salt/kratos/soc_kratos.yaml
index 3d63f825e..6269fda60 100644
--- a/salt/kratos/soc_kratos.yaml
+++ b/salt/kratos/soc_kratos.yaml
@@ -6,7 +6,7 @@ kratos:
 
   oidc:
     enabled: 
-      description: Set to True to enable OIDC / Single Sign-On (SSO) into SOC. Requires a valid Security Onion license key.
+      description: Set to True to enable OIDC / Single Sign-On (SSO) to SOC. Requires a valid Security Onion license key.
       global: True
       helpLink: oidc.html
     config:
@@ -104,7 +104,7 @@ kratos:
       methods:
         password:
           enabled: 
-            description: Set to True to enable traditional password authentication. Leave as default to ensure proper security protections remain in place.
+            description: Set to True to enable traditional password authentication to SOC. Typically set to true, except when exclusively using OIDC authentication. 
             global: True
             advanced: True
             helpLink: kratos.html
@@ -115,7 +115,7 @@ kratos:
               helpLink: kratos.html
         totp:
           enabled: 
-            description: Set to True to enable Time-based One-Time Password (TOTP) multi-factor authentication (MFA). Enable to ensure proper security protections remain in place. Be aware that disabling this setting, after users have already setup TOTP, may prevent users from logging in.
+            description: Set to True to enable Time-based One-Time Password (TOTP) multi-factor authentication (MFA) to SOC. Enable to ensure proper security protections remain in place. Be aware that disabling this setting, after users have already setup TOTP, may prevent users from logging in.
             global: True
             helpLink: kratos.html
           config:
@@ -126,7 +126,7 @@ kratos:
               helpLink: kratos.html
         webauthn:
           enabled:
-            description: Set to True to enable Security Keys (WebAuthn / PassKeys) for passwordless or multi-factor authentication (MFA) logins. Security Keys are a Public-Key Infrastructure (PKI) based authentication method, typically involving biometric hardware devices, such as laptop fingerprint scanners and USB hardware keys. Be aware that disabling this setting, after users have already setup their accounts with Security Keys, may prevent users from logging in.
+            description: Set to True to enable Security Keys (WebAuthn / PassKeys) for passwordless or multi-factor authentication (MFA) SOC logins. Security Keys are a Public-Key Infrastructure (PKI) based authentication method, typically involving biometric hardware devices, such as laptop fingerprint scanners and USB hardware keys. Be aware that disabling this setting, after users have already setup their accounts with Security Keys, may prevent users from logging in.
             global: True
             helpLink: kratos.html
           config:
diff --git a/salt/manager/tools/sbin/so-user b/salt/manager/tools/sbin/so-user
index 98850143e..d597cdacb 100755
--- a/salt/manager/tools/sbin/so-user
+++ b/salt/manager/tools/sbin/so-user
@@ -235,8 +235,8 @@ function updatePassword() {
     # Update DB with new hash
     echo "update identity_credentials set config=CAST('{\"hashed_password\":\"$passwordHash\"}' as BLOB), created_at=datetime('now'), updated_at=datetime('now') where identity_id='${identityId}' and identity_credential_type_id=(select id from identity_credential_types where name='password');" | sqlite3 -cmd ".timeout ${databaseTimeout}" "$databasePath"
     # Deactivate MFA
-    echo "delete from identity_credential_identifiers where identity_credential_id=(select id from identity_credentials where identity_id='${identityId}' and identity_credential_type_id=(select id from identity_credential_types where name in ('totp', 'webauthn')));" | sqlite3 -cmd ".timeout ${databaseTimeout}" "$databasePath"
-    echo "delete from identity_credentials where identity_id='${identityId}' and identity_credential_type_id=(select id from identity_credential_types where name in ('totp', 'webauthn'));" | sqlite3 -cmd ".timeout ${databaseTimeout}" "$databasePath"
+    echo "delete from identity_credential_identifiers where identity_credential_id=(select id from identity_credentials where identity_id='${identityId}' and identity_credential_type_id=(select id from identity_credential_types where name in ('totp', 'webauthn', 'oidc')));" | sqlite3 -cmd ".timeout ${databaseTimeout}" "$databasePath"
+    echo "delete from identity_credentials where identity_id='${identityId}' and identity_credential_type_id=(select id from identity_credential_types where name in ('totp', 'webauthn', 'oidc'));" | sqlite3 -cmd ".timeout ${databaseTimeout}" "$databasePath"
     [[ $? != 0 ]] && fail "Unable to update password"
   fi
 }

From a5c47835641a728591704d1fc4c8cbe430bd957e Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Thu, 27 Jul 2023 18:36:50 -0400
Subject: [PATCH 007/417] oidc

---
 salt/kratos/soc_kratos.yaml | 5 ++---
 1 file changed, 2 insertions(+), 3 deletions(-)

diff --git a/salt/kratos/soc_kratos.yaml b/salt/kratos/soc_kratos.yaml
index 6269fda60..0ac2fcd44 100644
--- a/salt/kratos/soc_kratos.yaml
+++ b/salt/kratos/soc_kratos.yaml
@@ -50,7 +50,7 @@ kratos:
         forcedType: string
         helpLink: oidc.html
       issuer_url: 
-        description: Provider's issuer URL. Required when provider is 'generic'.
+        description: Provider's issuer URL. Required when provider is 'auth0' or 'generic'.
         global: True
         forcedType: string
         helpLink: oidc.html
@@ -66,8 +66,7 @@ kratos:
         forcedType: string
         helpLink: oidc.html
       scope: 
-        description: List of scoped data categories to request in the authentication response. Typically 'email' and 'profile' are the minimum required scopes. Some providers use an alternate scope name, such as 'user:email'.
-        advanced: True
+        description: List of scoped data categories to request in the authentication response. Typically 'email' and 'profile' are the minimum required scopes. However, GitHub requires `user:email', instead and Auth0 requires 'profile', 'email', and 'openid'.
         global: True
         forcedType: "[]string"
         helpLink: oidc.html

From a885baf9603061784bb7641749e3c7039376cc9b Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Wed, 23 Aug 2023 15:24:32 -0400
Subject: [PATCH 008/417] add desktop to grid

---
 salt/manager/tools/sbin/so-minion | 11 ++++-------
 setup/so-setup                    | 15 +++++++++++++--
 2 files changed, 17 insertions(+), 9 deletions(-)

diff --git a/salt/manager/tools/sbin/so-minion b/salt/manager/tools/sbin/so-minion
index edc0b1404..de55c3a5b 100755
--- a/salt/manager/tools/sbin/so-minion
+++ b/salt/manager/tools/sbin/so-minion
@@ -187,15 +187,9 @@ function add_logstash_to_minion() {
 # Security Onion Desktop
 function add_desktop_to_minion() {
     printf '%s\n'\
-		"host:"\
-		"  mainint: '$MNIC'"\
 		"desktop:"\
 		"  gui:"\
-		"    enabled: true"\
-		"sensoroni:"\
-		"  enabled: True"\
-		"  config:"\		
-		"    node_description: '${NODE_DESCRIPTION//\'/''}'" >> $PILLARFILE
+		"    enabled: true"\ >> $PILLARFILE
 }
 
 # Add basic host info to the minion file
@@ -556,6 +550,9 @@ function createRECEIVER() {
 	add_telegraf_to_minion
 }
 
+function createDESKTOP() {
+	add_desktop_to_minion
+}
 
 function testConnection() {
 	retry 15 3 "salt '$MINION_ID' test.ping" True
diff --git a/setup/so-setup b/setup/so-setup
index c3172280f..8e8b7af43 100755
--- a/setup/so-setup
+++ b/setup/so-setup
@@ -333,7 +333,7 @@ if [[ $is_desktop ]]; then
 		exit 1
 	fi
 
-#	if ! whiptail_desktop_install; then
+	if ! whiptail_desktop_install; then
 	if [[ $is_desktop_iso ]]; then
 		if whiptail_desktop_nongrid_iso; then
 			# Remove setup from auto launching
@@ -365,7 +365,7 @@ if [[ $is_desktop ]]; then
 			exit 0
 		fi
 	fi
-#	fi
+	fi
 
 	# If you got this far then you want to join the grid
 	is_minion=true
@@ -574,6 +574,17 @@ if ! [[ -f $install_opt_file ]]; then
 		check_manager_connection
 		set_minion_info
 		whiptail_end_settings
+
+	elif [[ $is_desktop ]]; then
+		info "Setting up as node type desktop"
+		#check_requirements "desktop"
+		networking_needful
+		collect_mngr_hostname
+		add_mngr_ip_to_hosts
+		check_manager_connection
+		set_minion_info
+		whiptail_end_settings
+
 	fi
 
 	if [[ $waitforstate ]]; then

From 4a489afb893077be5575076359fe9a2be42b7df5 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Fri, 25 Aug 2023 08:55:00 -0400
Subject: [PATCH 009/417] remove old and install new watchdog package

---
 salt/common/packages.sls           | 2 --
 salt/strelka/filestream/config.sls | 8 ++++++++
 2 files changed, 8 insertions(+), 2 deletions(-)

diff --git a/salt/common/packages.sls b/salt/common/packages.sls
index 5f4a348e7..fe36a1fa1 100644
--- a/salt/common/packages.sls
+++ b/salt/common/packages.sls
@@ -21,7 +21,6 @@ commonpkgs:
       - python3-dateutil
       - python3-docker
       - python3-packaging
-      - python3-watchdog
       - python3-lxml
       - git
       - rsync
@@ -78,7 +77,6 @@ commonpkgs:
       - python3-packaging
       - python3-pyyaml
       - python3-rich
-      - python3-watchdog
       - rsync
       - sqlite
       - tcpdump
diff --git a/salt/strelka/filestream/config.sls b/salt/strelka/filestream/config.sls
index 993a59650..a254e9253 100644
--- a/salt/strelka/filestream/config.sls
+++ b/salt/strelka/filestream/config.sls
@@ -47,6 +47,14 @@ filestream_config:
         FILESTREAMCONFIG: {{ STRELKAMERGED.filestream.config }}
 
 # Filecheck Section
+remove_old_watchdog:
+  pkg.removed:
+    - name: python3-watchdog
+
+install_watchdog:
+  pkg.installed:
+    - name: securityonion-python39-watchdog
+
 filecheck_logdir:
   file.directory:
     - name: /opt/so/log/strelka

From ab1d97c985130bb3504ec3eee4ea330953cdb595 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Fri, 25 Aug 2023 09:39:16 -0400
Subject: [PATCH 010/417] restart filecheck if watchdog pkg changes

---
 salt/strelka/filestream/config.sls | 1 +
 1 file changed, 1 insertion(+)

diff --git a/salt/strelka/filestream/config.sls b/salt/strelka/filestream/config.sls
index a254e9253..a84ab5ba1 100644
--- a/salt/strelka/filestream/config.sls
+++ b/salt/strelka/filestream/config.sls
@@ -135,6 +135,7 @@ filecheck_restart:
     - onchanges:
       - file: filecheck_script
       - file: filecheck_conf
+      - pkg: install_watchdog
 
 filcheck_history_clean:
   cron.present:

From 0a88c812e867b51d19eb643d47dab1f9f7c24df3 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Fri, 25 Aug 2023 13:03:33 -0400
Subject: [PATCH 011/417] differnet watchdog package names for debian vs redhat
 fams

---
 salt/strelka/filestream/config.sls | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/salt/strelka/filestream/config.sls b/salt/strelka/filestream/config.sls
index a84ab5ba1..833a08505 100644
--- a/salt/strelka/filestream/config.sls
+++ b/salt/strelka/filestream/config.sls
@@ -47,6 +47,12 @@ filestream_config:
         FILESTREAMCONFIG: {{ STRELKAMERGED.filestream.config }}
 
 # Filecheck Section
+{% if GLOBALS.os_family == 'Debian' %}
+install_watchdog:
+  pkg.installed:
+    - name: python3-watchdog
+
+{% elif GLOBALS.os_family == 'RedHat' %}
 remove_old_watchdog:
   pkg.removed:
     - name: python3-watchdog
@@ -54,6 +60,7 @@ remove_old_watchdog:
 install_watchdog:
   pkg.installed:
     - name: securityonion-python39-watchdog
+{% endif %}
 
 filecheck_logdir:
   file.directory:

From c22f9687fb1f23f5232c1a21e4dfa59555def7ec Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Fri, 25 Aug 2023 13:40:34 -0400
Subject: [PATCH 012/417] sync local repo in soup

---
 salt/manager/tools/sbin/soup | 14 +++++++++++---
 1 file changed, 11 insertions(+), 3 deletions(-)

diff --git a/salt/manager/tools/sbin/soup b/salt/manager/tools/sbin/soup
index 934cef2ee..21933c1a8 100755
--- a/salt/manager/tools/sbin/soup
+++ b/salt/manager/tools/sbin/soup
@@ -303,6 +303,7 @@ check_log_size_limit() {
 
 check_os_updates() {
   # Check to see if there are OS updates
+  echo "Checking for OS updates."
   NEEDUPDATES="We have detected missing operating system (OS) updates. Do you want to install these OS updates now? This could take a while depending on the size of your grid and how many packages are missing, but it is recommended to keep your system updated."
   OSUPDATES=$(dnf -q list updates | grep -v docker | grep -v containerd | grep -v salt | grep -v Available | wc -l)
   if [[ "$OSUPDATES" -gt 0 ]]; then
@@ -437,6 +438,11 @@ post_to_2.4.20() {
   POSTVERSION=2.4.20
 }
 
+repo_sync() {
+  echo "Sync the local repo."
+  su socore -c '/usr/sbin/so-repo-sync'
+}
+
 stop_salt_master() {
     # kill all salt jobs across the grid because the hang indefinitely if they are queued and salt-master restarts
     set +e
@@ -762,9 +768,7 @@ main() {
   fi
   echo "Verifying we have the latest soup script."
   verify_latest_update_script
-  echo "Checking for OS updates."
-  check_os_updates
-  
+
   echo "Let's see if we need to update Security Onion."
   upgrade_check
   upgrade_space
@@ -776,6 +780,10 @@ main() {
   if [[ $is_airgap -eq 0 ]]; then
     yum clean all
     check_os_updates
+  elif [[ $OS == 'oracle' || $OS == 'redhat'|| $OS == 'centos' ]]; then
+    # sync remote repo down to local if not airgap
+    repo_sync
+    check_os_updates
   fi
 
   if [ "$is_hotfix" == "true" ]; then

From 388c90f64113af0f750fec4aa091bda4064571b0 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Fri, 25 Aug 2023 14:56:42 -0400
Subject: [PATCH 013/417] add oel to set_os

---
 salt/common/tools/sbin/so-common | 4 ++++
 salt/manager/tools/sbin/soup     | 2 +-
 2 files changed, 5 insertions(+), 1 deletion(-)

diff --git a/salt/common/tools/sbin/so-common b/salt/common/tools/sbin/so-common
index a76aab1f1..03b19d756 100755
--- a/salt/common/tools/sbin/so-common
+++ b/salt/common/tools/sbin/so-common
@@ -446,6 +446,10 @@ set_os() {
 			OS=centos
 			OSVER=9
 			is_centos=true
+		elif grep -q "Oracle Linux Server release 9" /etc/system-release; then
+			OS=oel
+			OSVER=9
+			is_oracle=true
 		fi
 		cron_service_name="crond"
 	else
diff --git a/salt/manager/tools/sbin/soup b/salt/manager/tools/sbin/soup
index 21933c1a8..5cb59d6ac 100755
--- a/salt/manager/tools/sbin/soup
+++ b/salt/manager/tools/sbin/soup
@@ -780,7 +780,7 @@ main() {
   if [[ $is_airgap -eq 0 ]]; then
     yum clean all
     check_os_updates
-  elif [[ $OS == 'oracle' || $OS == 'redhat'|| $OS == 'centos' ]]; then
+  elif [[ $OS == 'oel' || $OS == 'rocky'|| $OS == 'centos' ]]; then
     # sync remote repo down to local if not airgap
     repo_sync
     check_os_updates

From 022ee36bca46ae016b0e14868dfcf1cf726c68dd Mon Sep 17 00:00:00 2001
From: Jason Ertel <github@jasonertel.com>
Date: Fri, 25 Aug 2023 16:44:03 -0400
Subject: [PATCH 014/417] ingest pfsense sample data

---
 salt/common/tools/sbin/so-test | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/salt/common/tools/sbin/so-test b/salt/common/tools/sbin/so-test
index 8d6bcf4e1..90309766b 100755
--- a/salt/common/tools/sbin/so-test
+++ b/salt/common/tools/sbin/so-test
@@ -5,4 +5,10 @@
 # https://securityonion.net/license; you may not use this file except in compliance with the
 # Elastic License 2.0.
 
+set -e
+
+# Playback live sample data onto monitor interface
 so-tcpreplay /opt/samples/* 2> /dev/null
+
+# Ingest sample pfsense log entry
+echo "<134>$(date '+%b %d %H:%M:%S') filterlog[31624]: 84,,,1567509287,igb0.244,match,pass,in,4,0x0,,64,0,0,DF,6,tcp,64,192.168.1.1,10.10.10.10,56320,443,0,S,3333585167,,65535,,mss;nop;wscale;nop;nop;TS;sackOK;eol" | nc -uv -w1 localhost 514

From 5879eeabfa12a370feed8b7a462ed36ee379230e Mon Sep 17 00:00:00 2001
From: Jason Ertel <github@jasonertel.com>
Date: Fri, 25 Aug 2023 16:45:31 -0400
Subject: [PATCH 015/417] ingest pfsense sample data

---
 salt/common/tools/sbin/so-test | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/salt/common/tools/sbin/so-test b/salt/common/tools/sbin/so-test
index 90309766b..7286a35a8 100755
--- a/salt/common/tools/sbin/so-test
+++ b/salt/common/tools/sbin/so-test
@@ -11,4 +11,4 @@ set -e
 so-tcpreplay /opt/samples/* 2> /dev/null
 
 # Ingest sample pfsense log entry
-echo "<134>$(date '+%b %d %H:%M:%S') filterlog[31624]: 84,,,1567509287,igb0.244,match,pass,in,4,0x0,,64,0,0,DF,6,tcp,64,192.168.1.1,10.10.10.10,56320,443,0,S,3333585167,,65535,,mss;nop;wscale;nop;nop;TS;sackOK;eol" | nc -uv -w1 localhost 514
+echo "<134>$(date '+%b %d %H:%M:%S') filterlog[31624]: 84,,,1567509287,igb0.244,match,pass,in,4,0x0,,64,0,0,DF,6,tcp,64,192.168.1.1,10.10.10.10,56320,443,0,S,3333585167,,65535,,mss;nop;wscale;nop;nop;TS;sackOK;eol" | nc -uv -w1 localhost 514 > /dev/null 2>&1

From 1ef4d2cde11d581dd5b3f871460306f554f90a0c Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Mon, 28 Aug 2023 09:37:45 -0400
Subject: [PATCH 016/417] dont need to repo_sync rocky or centos

---
 salt/manager/tools/sbin/soup | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/salt/manager/tools/sbin/soup b/salt/manager/tools/sbin/soup
index 5cb59d6ac..37c9b3ba5 100755
--- a/salt/manager/tools/sbin/soup
+++ b/salt/manager/tools/sbin/soup
@@ -780,7 +780,7 @@ main() {
   if [[ $is_airgap -eq 0 ]]; then
     yum clean all
     check_os_updates
-  elif [[ $OS == 'oel' || $OS == 'rocky'|| $OS == 'centos' ]]; then
+  elif [[ $OS == 'oel' ]]; then
     # sync remote repo down to local if not airgap
     repo_sync
     check_os_updates

From a8ec3717c44d1fd76343b321babaa7e44ab64bea Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Mon, 28 Aug 2023 10:20:53 -0400
Subject: [PATCH 017/417] fail soup if so-repo-sync fails

---
 salt/manager/tools/sbin/so-repo-sync | 4 +++-
 salt/manager/tools/sbin/soup         | 2 +-
 2 files changed, 4 insertions(+), 2 deletions(-)

diff --git a/salt/manager/tools/sbin/so-repo-sync b/salt/manager/tools/sbin/so-repo-sync
index 3e129cd0d..84384fcdf 100644
--- a/salt/manager/tools/sbin/so-repo-sync
+++ b/salt/manager/tools/sbin/so-repo-sync
@@ -11,6 +11,8 @@ set_version
 set_os
 salt_minion_count
 
+set -e
+
 curl --retry 5 --retry-delay 60 -A "reposync/$VERSION/$OS/$(uname -r)/$MINIONCOUNT" https://sigs.securityonion.net/checkup --output /tmp/checkup
 dnf reposync --norepopath -g --delete -m -c /opt/so/conf/reposync/repodownload.conf --repoid=securityonionsync --download-metadata -p /nsm/repo/
-createrepo /nsm/repo	
\ No newline at end of file
+createrepo /nsm/repo
diff --git a/salt/manager/tools/sbin/soup b/salt/manager/tools/sbin/soup
index 37c9b3ba5..45e3df530 100755
--- a/salt/manager/tools/sbin/soup
+++ b/salt/manager/tools/sbin/soup
@@ -440,7 +440,7 @@ post_to_2.4.20() {
 
 repo_sync() {
   echo "Sync the local repo."
-  su socore -c '/usr/sbin/so-repo-sync'
+  su socore -c '/usr/sbin/so-repo-sync' || fail "Unable to complete so-repo-sync."
 }
 
 stop_salt_master() {

From c10e686ec6f91d55bc53c8bd3b73c7f431b77bb9 Mon Sep 17 00:00:00 2001
From: Jason Ertel <github@jasonertel.com>
Date: Mon, 28 Aug 2023 11:07:28 -0400
Subject: [PATCH 018/417] fix path to intermediate ca cert on heavy nodes

---
 salt/redis/enabled.sls | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/salt/redis/enabled.sls b/salt/redis/enabled.sls
index 4c452bec0..27177d217 100644
--- a/salt/redis/enabled.sls
+++ b/salt/redis/enabled.sls
@@ -33,7 +33,7 @@ so-redis:
       {% if grains['role'] in ['so-manager', 'so-managersearch', 'so-standalone', 'so-import'] %}
       - /etc/pki/ca.crt:/certs/ca.crt:ro
       {% else %}
-      - /etc/pki/certs/intca.crt:/certs/ca.crt:ro
+      - /etc/pki/tls/certs/intca.crt:/certs/ca.crt:ro
       {% endif %}
       {% if DOCKER.containers['so-redis'].custom_bind_mounts %}
         {% for BIND in DOCKER.containers['so-redis'].custom_bind_mounts %}

From 6b0fbe4634609603fdbddcc86d7eeea96e406a3b Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Mon, 28 Aug 2023 11:53:45 -0400
Subject: [PATCH 019/417] include so-repo-sync in soup_manager_scripts state

---
 salt/common/soup_scripts.sls | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/salt/common/soup_scripts.sls b/salt/common/soup_scripts.sls
index 8dff85ddb..041649200 100644
--- a/salt/common/soup_scripts.sls
+++ b/salt/common/soup_scripts.sls
@@ -19,4 +19,5 @@ soup_manager_scripts:
     - source: salt://manager/tools/sbin
     - include_pat:
         - so-firewall
-        - soup
\ No newline at end of file
+        - so-repo-sync
+        - soup

From bd61ee22be5ea6e0568505f4dc1381322efd70fe Mon Sep 17 00:00:00 2001
From: Mike Reeves <mike.reeves@securityonionsolutions.com>
Date: Mon, 28 Aug 2023 14:41:06 -0400
Subject: [PATCH 020/417] Update defaults.map.jinja

---
 salt/soc/defaults.map.jinja | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/salt/soc/defaults.map.jinja b/salt/soc/defaults.map.jinja
index 7720e7027..2587051c5 100644
--- a/salt/soc/defaults.map.jinja
+++ b/salt/soc/defaults.map.jinja
@@ -16,7 +16,7 @@
 {# add nodes from the logstash:nodes pillar to soc.server.modules.elastic.remoteHostUrls #}
 {% for node_type, minions in salt['pillar.get']('logstash:nodes', {}).items() %}
 {%   for m in minions.keys() %}
-{%     do SOCDEFAULTS.soc.config.server.modules.elastic.remoteHostUrls.append(m) %}
+{%     do SOCDEFAULTS.soc.config.server.modules.elastic.remoteHostUrls.append('https://' ~ m ~ ':9200') %}
 {%   endfor %}
 {% endfor %}
 

From 1c3d3d703ce4baf6e445721afd8facd53905c232 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Tue, 29 Aug 2023 08:56:01 -0400
Subject: [PATCH 021/417] add desktop.map.jinja for global vars

---
 salt/vars/desktop.map.jinja | 1 +
 1 file changed, 1 insertion(+)
 create mode 100644 salt/vars/desktop.map.jinja

diff --git a/salt/vars/desktop.map.jinja b/salt/vars/desktop.map.jinja
new file mode 100644
index 000000000..964f69663
--- /dev/null
+++ b/salt/vars/desktop.map.jinja
@@ -0,0 +1 @@
+{% set ROLE_GLOBALS = {} %}

From a1b1294247d2464b66a56a22a400bb7341daff1c Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Tue, 29 Aug 2023 09:05:01 -0400
Subject: [PATCH 022/417] desktop doesnt need docker state

---
 salt/logrotate/init.sls | 1 +
 salt/top.sls            | 4 ++--
 2 files changed, 3 insertions(+), 2 deletions(-)

diff --git a/salt/logrotate/init.sls b/salt/logrotate/init.sls
index 1b096f9db..bdfc3b86c 100644
--- a/salt/logrotate/init.sls
+++ b/salt/logrotate/init.sls
@@ -3,6 +3,7 @@
 logrotateconfdir:
   file.directory:
     - name: /opt/so/conf/logrotate
+    - makedirs: True
 
 commonlogrotatescript:
   file.managed:
diff --git a/salt/top.sls b/salt/top.sls
index 2323731a1..4a605b13c 100644
--- a/salt/top.sls
+++ b/salt/top.sls
@@ -28,12 +28,12 @@ base:
     - motd
     - salt.minion-check
     - salt.lasthighstate
-    - docker
 
   'not *_desktop and G@saltversion:{{saltversion}}':
     - match: compound
     - common
-  
+    - docker
+
   '*_sensor and G@saltversion:{{saltversion}}':
     - match: compound
     - sensor

From 67ea7d31e110da56301dda1f49b84df7f1888df8 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Tue, 29 Aug 2023 09:32:10 -0400
Subject: [PATCH 023/417] dont exec so-setup desktop

---
 setup/so-functions | 4 +---
 setup/so-whiptail  | 4 +---
 2 files changed, 2 insertions(+), 6 deletions(-)

diff --git a/setup/so-functions b/setup/so-functions
index fc0876248..9f7e61fa1 100755
--- a/setup/so-functions
+++ b/setup/so-functions
@@ -1664,9 +1664,7 @@ process_installtype() {
 	elif [ "$install_type" = 'RECEIVER' ]; then
 		is_receiver=true
 	elif [ "$install_type" = 'DESKTOP' ]; then
-		if [ "$setup_type" != 'desktop' ]; then
-			exec bash so-setup desktop
-		fi
+		is_desktop=true
 	fi
 
 }
diff --git a/setup/so-whiptail b/setup/so-whiptail
index c55e2db8f..01c0ffde9 100755
--- a/setup/so-whiptail
+++ b/setup/so-whiptail
@@ -678,9 +678,7 @@ whiptail_install_type_dist_existing() {
 	elif [ "$install_type" = 'RECEIVER' ]; then
 		is_receiver=true
 	elif [ "$install_type" = 'DESKTOP' ]; then
-		if [ "$setup_type" != 'desktop' ]; then
-			exec bash so-setup desktop
-		fi
+		is_desktop=true
 	fi
 
 	local exitstatus=$?

From 532b2c222a1180663dbc5420fe7cbd157c7c49d9 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Tue, 29 Aug 2023 10:16:51 -0400
Subject: [PATCH 024/417] edit other/desktop install whiptail

---
 setup/so-whiptail | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/setup/so-whiptail b/setup/so-whiptail
index 01c0ffde9..702949813 100755
--- a/setup/so-whiptail
+++ b/setup/so-whiptail
@@ -692,7 +692,7 @@ whiptail_install_type_other() {
 
 	install_type=$(whiptail --title "$whiptail_title" --menu \
 		"Choose node type:" 10 65 2 \
-		"DESKTOP" "Setup will run 'so-setup desktop' " 3>&1 1>&2 2>&3)
+		"DESKTOP" 3>&1 1>&2 2>&3)
 	
 	local exitstatus=$?
 	whiptail_check_exitstatus $exitstatus

From 0455063a39500fad28ba6fb8c0521244211dd01c Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Tue, 29 Aug 2023 10:26:29 -0400
Subject: [PATCH 025/417] edit other/desktop install whiptail

---
 setup/so-whiptail | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/setup/so-whiptail b/setup/so-whiptail
index 702949813..6188406cb 100755
--- a/setup/so-whiptail
+++ b/setup/so-whiptail
@@ -692,7 +692,7 @@ whiptail_install_type_other() {
 
 	install_type=$(whiptail --title "$whiptail_title" --menu \
 		"Choose node type:" 10 65 2 \
-		"DESKTOP" 3>&1 1>&2 2>&3)
+		"DESKTOP" "Install Security Onion Desktop " 3>&1 1>&2 2>&3)
 	
 	local exitstatus=$?
 	whiptail_check_exitstatus $exitstatus

From d40bbf6b090fce2fc922e6cf7d5e1f078195da46 Mon Sep 17 00:00:00 2001
From: weslambert <wlambertts@gmail.com>
Date: Tue, 29 Aug 2023 10:59:40 -0400
Subject: [PATCH 026/417] Add Apache templates

---
 salt/elasticsearch/defaults.yaml | 36 ++++++++++++++++++++++++++++++++
 1 file changed, 36 insertions(+)

diff --git a/salt/elasticsearch/defaults.yaml b/salt/elasticsearch/defaults.yaml
index 3ea24c3fd..8ae75f984 100644
--- a/salt/elasticsearch/defaults.yaml
+++ b/salt/elasticsearch/defaults.yaml
@@ -286,6 +286,42 @@ elasticsearch:
         data_stream:
           hidden: false
           allow_custom_routing: false
+    so-logs-apache_x_access:
+      index_sorting: False
+      index_template:
+        index_patterns:
+          - "logs-apache.access-*"
+        template:
+          settings:
+            index:
+              number_of_replicas: 0
+        composed_of:
+          - "logs-apache.access@package"
+          - "logs-apache.access@custom"
+          - "so-fleet_globals-1"
+          - "so-fleet_agent_id_verification-1"
+        priority: 501
+        data_stream:
+          hidden: false
+          allow_custom_routing: false
+    so-logs-apache_x_error:
+      index_sorting: False
+      index_template:
+        index_patterns:
+          - "logs-apache.error-*"
+        template:
+          settings:
+            index:
+              number_of_replicas: 0
+        composed_of:
+          - "logs-apache.error@package"
+          - "logs-apache.error@custom"
+          - "so-fleet_globals-1"
+          - "so-fleet_agent_id_verification-1"
+        priority: 501
+        data_stream:
+          hidden: false
+          allow_custom_routing: false
     so-logs-auditd_x_log:
       index_sorting: False
       index_template:

From f118e25e8c8e424cd80110f04eeac77e4470aa95 Mon Sep 17 00:00:00 2001
From: weslambert <wlambertts@gmail.com>
Date: Tue, 29 Aug 2023 11:00:31 -0400
Subject: [PATCH 027/417] Add Apache references

---
 salt/elasticsearch/soc_elasticsearch.yaml | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/salt/elasticsearch/soc_elasticsearch.yaml b/salt/elasticsearch/soc_elasticsearch.yaml
index a960facd1..1823337b5 100644
--- a/salt/elasticsearch/soc_elasticsearch.yaml
+++ b/salt/elasticsearch/soc_elasticsearch.yaml
@@ -201,7 +201,8 @@ elasticsearch:
     so-logs-windows_x_powershell: *indexSettings
     so-logs-windows_x_powershell_operational: *indexSettings
     so-logs-windows_x_sysmon_operational: *indexSettings
-    so-logs-auditd_x_log: *indexSettings
+    so-logs-apache_x_access: *indexSettings
+    so-logs-apache_x_error: *indexSettings
     so-logs-aws_x_cloudtrail: *indexSettings
     so-logs-aws_x_cloudwatch_logs: *indexSettings
     so-logs-aws_x_ec2_logs: *indexSettings

From c01a9006a6609a0d928bea0c640fe997d42c415e Mon Sep 17 00:00:00 2001
From: weslambert <wlambertts@gmail.com>
Date: Tue, 29 Aug 2023 11:01:22 -0400
Subject: [PATCH 028/417] Add Apache package

---
 salt/elasticfleet/defaults.yaml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/salt/elasticfleet/defaults.yaml b/salt/elasticfleet/defaults.yaml
index 77fa9dd31..55e70113f 100644
--- a/salt/elasticfleet/defaults.yaml
+++ b/salt/elasticfleet/defaults.yaml
@@ -26,6 +26,7 @@ elasticfleet:
         - stderr
         - stdout
   packages:
+    - apache
     - auditd
     - aws
     - azure

From d2063c7e119d77f31139c6c9c94a5e5de1f18b3e Mon Sep 17 00:00:00 2001
From: weslambert <wlambertts@gmail.com>
Date: Tue, 29 Aug 2023 11:14:49 -0400
Subject: [PATCH 029/417] Add auditd reference back

---
 salt/elasticsearch/soc_elasticsearch.yaml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/salt/elasticsearch/soc_elasticsearch.yaml b/salt/elasticsearch/soc_elasticsearch.yaml
index 1823337b5..e4de29e00 100644
--- a/salt/elasticsearch/soc_elasticsearch.yaml
+++ b/salt/elasticsearch/soc_elasticsearch.yaml
@@ -203,6 +203,7 @@ elasticsearch:
     so-logs-windows_x_sysmon_operational: *indexSettings
     so-logs-apache_x_access: *indexSettings
     so-logs-apache_x_error: *indexSettings
+    so-logs-auditd_x_log: *indexSettings
     so-logs-aws_x_cloudtrail: *indexSettings
     so-logs-aws_x_cloudwatch_logs: *indexSettings
     so-logs-aws_x_ec2_logs: *indexSettings

From a4dc48237215eb3f87e377a28d5077f08be915ba Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Tue, 29 Aug 2023 13:10:06 -0400
Subject: [PATCH 030/417] add is_desktop_grid var

---
 setup/so-functions | 2 +-
 setup/so-whiptail  | 2 ++
 2 files changed, 3 insertions(+), 1 deletion(-)

diff --git a/setup/so-functions b/setup/so-functions
index 9f7e61fa1..4e105dcd6 100755
--- a/setup/so-functions
+++ b/setup/so-functions
@@ -1883,7 +1883,7 @@ securityonion_repo() {
 		if [ -n "$(ls -A /etc/yum.repos.d/ 2>/dev/null)" ]; then
 			logCmd "mv -v /etc/yum.repos.d/* /root/oldrepos/"
 		fi
-		if [[ $is_desktop_iso ]]; then
+		if [[ ! $is_desktop_grid ]]; then
 			gpg_rpm_import
 			if [[ ! $is_airgap ]]; then
 				echo "https://repo.securityonion.net/file/so-repo/prod/2.4/oracle/9" > /etc/yum/mirror.txt
diff --git a/setup/so-whiptail b/setup/so-whiptail
index 6188406cb..62f60a84a 100755
--- a/setup/so-whiptail
+++ b/setup/so-whiptail
@@ -58,6 +58,8 @@ whiptail_desktop_install() {
 	whiptail --title "$whiptail_title" \
 		--yesno "$message" 11 75 --defaultno
 
+	is_desktop_grid=$?
+
 }
 
 whiptail_desktop_nongrid_iso() {

From 706a6e2d56ca045f97e2393d270e01a406334928 Mon Sep 17 00:00:00 2001
From: weslambert <wlambertts@gmail.com>
Date: Wed, 30 Aug 2023 08:34:04 -0400
Subject: [PATCH 031/417] Make sure a data stream is created for syslog

---
 salt/elasticsearch/defaults.yaml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/salt/elasticsearch/defaults.yaml b/salt/elasticsearch/defaults.yaml
index 8ae75f984..33362825f 100644
--- a/salt/elasticsearch/defaults.yaml
+++ b/salt/elasticsearch/defaults.yaml
@@ -4187,6 +4187,7 @@ elasticsearch:
     so-syslog:
       index_sorting: False
       index_template:
+        data_stream: {}
         index_patterns:
           - logs-syslog-so*
         template:

From ce05f29dc4e436060a05cf02adfe3aa9578e3ee6 Mon Sep 17 00:00:00 2001
From: Wes <wlambertts@gmail.com>
Date: Wed, 30 Aug 2023 13:03:28 +0000
Subject: [PATCH 032/417] Add port_bindings for port 514

---
 salt/docker/defaults.yaml | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/salt/docker/defaults.yaml b/salt/docker/defaults.yaml
index e39feaf06..a5d6c5d6d 100644
--- a/salt/docker/defaults.yaml
+++ b/salt/docker/defaults.yaml
@@ -178,6 +178,9 @@ docker:
       extra_env: []
     'so-elastic-agent':
       final_octet: 46
+      port_bindings:
+        - 0.0.0.0:514:514/tcp
+        - 0.0.0.0:514:514/udp
       custom_bind_mounts: []
       extra_hosts: []
       extra_env: []

From 655eea2b007124d9abe0674b5281435817cf290d Mon Sep 17 00:00:00 2001
From: Wes <wlambertts@gmail.com>
Date: Wed, 30 Aug 2023 13:03:56 +0000
Subject: [PATCH 033/417] Add port_bindings

---
 salt/elasticagent/enabled.sls | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/salt/elasticagent/enabled.sls b/salt/elasticagent/enabled.sls
index 963b8549b..7d0f401e9 100644
--- a/salt/elasticagent/enabled.sls
+++ b/salt/elasticagent/enabled.sls
@@ -31,6 +31,10 @@ so-elastic-agent:
         - {{ XTRAHOST }}
           {% endfor %}
         {% endif %}
+    - port_bindings:
+      {% for BINDING in DOCKER.containers['so-elastic-agent'].port_bindings %}
+      - {{ BINDING }}
+      {% endfor %}
     - binds:
       - /opt/so/conf/elastic-agent/elastic-agent.yml:/usr/share/elastic-agent/elastic-agent.yml:ro
       - /opt/so/log/elasticagent:/usr/share/elastic-agent/logs

From 0e22acc255cc62af53810156eabaf9471d8bbcae Mon Sep 17 00:00:00 2001
From: Wes <wlambertts@gmail.com>
Date: Wed, 30 Aug 2023 13:04:32 +0000
Subject: [PATCH 034/417] Add tcp and udp integration

---
 .../files/elastic-agent.yml.jinja             | 51 +++++++++++++++++++
 1 file changed, 51 insertions(+)

diff --git a/salt/elasticagent/files/elastic-agent.yml.jinja b/salt/elasticagent/files/elastic-agent.yml.jinja
index 92aacfa44..7d0b93344 100644
--- a/salt/elasticagent/files/elastic-agent.yml.jinja
+++ b/salt/elasticagent/files/elastic-agent.yml.jinja
@@ -430,3 +430,54 @@ inputs:
         exclude_files:
           - >-
             broker|capture_loss|cluster|ecat_arp_info|known_hosts|known_services|loaded_scripts|ntp|ocsp|packet_filter|reporter|stats|stderr|stdout.log$
+  - id: udp-udp-35051de0-46a5-11ee-8d5d-9f98c8182f60
+    name: syslog-udp-514
+    revision: 3
+    type: udp
+    use_output: default
+    meta:
+      package:
+        name: udp
+        version: 1.10.0
+    data_stream:
+      namespace: so
+    package_policy_id: 35051de0-46a5-11ee-8d5d-9f98c8182f60
+    streams:
+      - id: udp-udp.generic-35051de0-46a5-11ee-8d5d-9f98c8182f60
+        data_stream:
+          dataset: syslog
+        pipeline: syslog
+        host: '0.0.0.0:514'
+        max_message_size: 10KiB
+        processors:
+          - add_fields:
+              fields:
+                module: syslog
+              target: event
+        tags:
+          - syslog
+  - id: tcp-tcp-33d37bb0-46a5-11ee-8d5d-9f98c8182f60
+    name: syslog-tcp-514
+    revision: 3
+    type: tcp
+    use_output: default
+    meta:
+      package:
+        name: tcp
+        version: 1.10.0
+    data_stream:
+      namespace: so
+    package_policy_id: 33d37bb0-46a5-11ee-8d5d-9f98c8182f60
+    streams:
+      - id: tcp-tcp.generic-33d37bb0-46a5-11ee-8d5d-9f98c8182f60
+        data_stream:
+          dataset: syslog
+        pipeline: syslog
+        host: '0.0.0.0:514'
+        processors:
+          - add_fields:
+              fields:
+                module: syslog
+              target: event
+        tags:
+          - syslog

From 60b0af5ab793fa1b6a592743f162e6905b797798 Mon Sep 17 00:00:00 2001
From: Wes <wlambertts@gmail.com>
Date: Wed, 30 Aug 2023 13:05:30 +0000
Subject: [PATCH 035/417] Allow external syslog

---
 salt/firewall/defaults.yaml | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/salt/firewall/defaults.yaml b/salt/firewall/defaults.yaml
index ff127c419..ecb4bad6b 100644
--- a/salt/firewall/defaults.yaml
+++ b/salt/firewall/defaults.yaml
@@ -1141,6 +1141,12 @@ firewall:
             localhost:
               portgroups:
                 - all
+            self:
+              portgroups:
+                - syslog
+            syslog:
+              portgroups:
+                - syslog
             customhostgroup0:
               portgroups: []
             customhostgroup1:

From ae01da780e242ddc084e3fb7907a952d0599cb88 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Wed, 30 Aug 2023 09:10:59 -0400
Subject: [PATCH 036/417] desktop network install nongrid

---
 setup/so-functions |  2 +-
 setup/so-setup     | 61 +++++++++++++++++++++++-----------------------
 setup/so-whiptail  |  6 ++++-
 3 files changed, 37 insertions(+), 32 deletions(-)

diff --git a/setup/so-functions b/setup/so-functions
index 4e105dcd6..1c0cad2a7 100755
--- a/setup/so-functions
+++ b/setup/so-functions
@@ -1883,7 +1883,7 @@ securityonion_repo() {
 		if [ -n "$(ls -A /etc/yum.repos.d/ 2>/dev/null)" ]; then
 			logCmd "mv -v /etc/yum.repos.d/* /root/oldrepos/"
 		fi
-		if [[ ! $is_desktop_grid ]]; then
+		if ! $is_desktop_grid; then
 			gpg_rpm_import
 			if [[ ! $is_airgap ]]; then
 				echo "https://repo.securityonion.net/file/so-repo/prod/2.4/oracle/9" > /etc/yum/mirror.txt
diff --git a/setup/so-setup b/setup/so-setup
index b946c06c8..61c0d88e3 100755
--- a/setup/so-setup
+++ b/setup/so-setup
@@ -333,38 +333,39 @@ if [[ $is_desktop ]]; then
 		exit 1
 	fi
 
-	if ! whiptail_desktop_install; then
-	if [[ $is_desktop_iso ]]; then
-		if whiptail_desktop_nongrid_iso; then
-			# Remove setup from auto launching
-			parse_install_username
-			sed -i '$ d' /home/$INSTALLUSERNAME/.bash_profile >> "$setup_log" 2>&1
-			securityonion_repo
-			info "Enabling graphical interface and setting it to load at boot"
-			systemctl set-default graphical.target
-			info "Setting desktop background"
-			set_desktop_background
-			echo "Desktop Install Complete!"
-			echo ""
-			echo "Please reboot to start graphical interface."
-			exit 0
+	whiptail_desktop_install
+	if ! is_desktop_grid; then
+		if [[ $is_desktop_iso ]]; then
+			if whiptail_desktop_nongrid_iso; then
+				# Remove setup from auto launching
+				parse_install_username
+				sed -i '$ d' /home/$INSTALLUSERNAME/.bash_profile >> "$setup_log" 2>&1
+				securityonion_repo
+				info "Enabling graphical interface and setting it to load at boot"
+				systemctl set-default graphical.target
+				info "Setting desktop background"
+				set_desktop_background
+				echo "Desktop Install Complete!"
+				echo ""
+				echo "Please reboot to start graphical interface."
+				exit 0
+			else
+				# Abort!
+				exit 0
+			fi
 		else
-			# Abort!
-			exit 0
+			if whiptail_desktop_nongrid_network; then
+				info ""
+				info ""
+				info "Kicking off the automated setup of the Security Onion Desktop. This can take a while depending on your network connection."
+				info ""
+				info ""
+				desktop_salt_local
+			else
+				# Abort!
+				exit 0
+			fi
 		fi
-	else
-		if whiptail_desktop_nongrid_network; then
-			info ""
-			info ""
-			info "Kicking off the automated setup of the Security Onion Desktop. This can take a while depending on your network connection."
-			info ""
-			info ""
-			desktop_salt_local
-		else
-			# Abort!
-			exit 0
-		fi
-	fi
 	fi
 
 	# If you got this far then you want to join the grid
diff --git a/setup/so-whiptail b/setup/so-whiptail
index 62f60a84a..8fd3b5fdd 100755
--- a/setup/so-whiptail
+++ b/setup/so-whiptail
@@ -58,7 +58,11 @@ whiptail_desktop_install() {
 	whiptail --title "$whiptail_title" \
 		--yesno "$message" 11 75 --defaultno
 
-	is_desktop_grid=$?
+	if [ $? -eq 0 ]; then
+		is_desktop_grid=true
+	else
+		is_desktop_grid=false
+	fi
 
 }
 

From 97587064f8dd55b427d362c76748e73c581ce936 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Wed, 30 Aug 2023 09:48:52 -0400
Subject: [PATCH 037/417] remove packages from nongrid desktop install

---
 setup/so-functions | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/setup/so-functions b/setup/so-functions
index 1c0cad2a7..eab98b849 100755
--- a/setup/so-functions
+++ b/setup/so-functions
@@ -91,7 +91,7 @@ desktop_salt_local() {
 	securityonion_repo
 	gpg_rpm_import
 	# Install salt
-	logCmd "yum -y install salt-minion-$SALTVERSION httpd-tools python3 python36-docker python36-dateutil python36-m2crypto python36-mysql python36-packaging python36-lxml yum-utils device-mapper-persistent-data lvm2 openssl jq"
+	logCmd "yum -y install salt-minion-$SALTVERSION httpd-tools python3 python3-dateutil yum-utils device-mapper-persistent-data lvm2 openssl jq"
 	logCmd "yum -y update --exclude=salt*"
 
 	logCmd "salt-call state.apply desktop --local --file-root=../salt/ -l info"

From a3eeba4761991448fbaf3eb0ae48383e5681a3dc Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Wed, 30 Aug 2023 09:51:09 -0400
Subject: [PATCH 038/417] do networking_needful for nongrid desktop network
 install

---
 setup/so-setup | 1 +
 1 file changed, 1 insertion(+)

diff --git a/setup/so-setup b/setup/so-setup
index 61c0d88e3..de117331d 100755
--- a/setup/so-setup
+++ b/setup/so-setup
@@ -355,6 +355,7 @@ if [[ $is_desktop ]]; then
 			fi
 		else
 			if whiptail_desktop_nongrid_network; then
+				networking_needful
 				info ""
 				info ""
 				info "Kicking off the automated setup of the Security Onion Desktop. This can take a while depending on your network connection."

From 8381fa1d4220d0943eb5efc703c8040bf505d923 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Wed, 30 Aug 2023 10:26:24 -0400
Subject: [PATCH 039/417] cant import globals because of nongrid desktop
 install~

---
 salt/desktop/xwindows.sls | 4 +---
 1 file changed, 1 insertion(+), 3 deletions(-)

diff --git a/salt/desktop/xwindows.sls b/salt/desktop/xwindows.sls
index b18109d45..66e4c9a05 100644
--- a/salt/desktop/xwindows.sls
+++ b/salt/desktop/xwindows.sls
@@ -1,7 +1,5 @@
-{% from 'vars/globals.map.jinja' import GLOBALS %}
-
 {# we only want this state to run it is CentOS #}
-{% if GLOBALS.os == 'OEL' %}
+{% if grains.os == 'OEL' %}
 
 include:
   - desktop.packages

From b14614ae53f055cb75be9fab8744dfcf7a811639 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Wed, 30 Aug 2023 10:32:13 -0400
Subject: [PATCH 040/417] need $ for vars

---
 setup/so-setup | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/setup/so-setup b/setup/so-setup
index de117331d..f6e5c8c4e 100755
--- a/setup/so-setup
+++ b/setup/so-setup
@@ -334,7 +334,7 @@ if [[ $is_desktop ]]; then
 	fi
 
 	whiptail_desktop_install
-	if ! is_desktop_grid; then
+	if ! $is_desktop_grid; then
 		if [[ $is_desktop_iso ]]; then
 			if whiptail_desktop_nongrid_iso; then
 				# Remove setup from auto launching

From b45e114ef25389be5fb97d1a8dc896e8b872d887 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Wed, 30 Aug 2023 10:41:34 -0400
Subject: [PATCH 041/417] cant use GLOBALS var due to desktop nongrid install

---
 salt/desktop/packages.sls   | 4 +---
 salt/desktop/remove_gui.sls | 4 +---
 2 files changed, 2 insertions(+), 6 deletions(-)

diff --git a/salt/desktop/packages.sls b/salt/desktop/packages.sls
index 524c2c266..3817f2e80 100644
--- a/salt/desktop/packages.sls
+++ b/salt/desktop/packages.sls
@@ -1,7 +1,5 @@
-{% from 'vars/globals.map.jinja' import GLOBALS %}
-
 {# we only want this state to run it is CentOS #}
-{% if GLOBALS.os == 'OEL' %}
+{% if grains.os == 'OEL' %}
 
 desktop_packages:
   pkg.installed:
diff --git a/salt/desktop/remove_gui.sls b/salt/desktop/remove_gui.sls
index 53d927cbe..d8de07a9a 100644
--- a/salt/desktop/remove_gui.sls
+++ b/salt/desktop/remove_gui.sls
@@ -1,7 +1,5 @@
-{% from 'vars/globals.map.jinja' import GLOBALS %}
-
 {# we only want this state to run it is CentOS #}
-{% if GLOBALS.os == 'OEL' %}
+{% if grains.os == 'OEL' %}
 
 remove_graphical_target:
   file.symlink:

From fe690922de38a2d6ef9dd9da8afad312e39ad97e Mon Sep 17 00:00:00 2001
From: Wes <wlambertts@gmail.com>
Date: Wed, 30 Aug 2023 19:16:05 +0000
Subject: [PATCH 042/417] Add analyzer configuration to the defaults file

---
 salt/sensoroni/defaults.yaml | 28 ++++++++++++++++++++++++++++
 1 file changed, 28 insertions(+)

diff --git a/salt/sensoroni/defaults.yaml b/salt/sensoroni/defaults.yaml
index 4ccc11ce9..f53646ac2 100644
--- a/salt/sensoroni/defaults.yaml
+++ b/salt/sensoroni/defaults.yaml
@@ -8,3 +8,31 @@ sensoroni:
     node_checkin_interval_ms: 10000
     sensoronikey:
     soc_host:
+  analyzers:
+      emailrep:
+        base_url: https://emailrep.io/
+        api_key:
+      greynoise:
+        base_url: https://api.greynoise.io/
+        api_key:
+        api_version: community
+      localfile:
+        file_path: []
+      otx:
+        base_url: https://otx.alienvault.com/api/v1/
+        api_key:
+      pulsedive:
+        base_url: https://pulsedive.com/api/ 
+        api_key:
+      spamhaus:
+        lookup_host: zen.spamhaus.org
+        nameservers: []
+      urlscan:
+        base_url: https://urlscan.io/api/v1/
+        api_key:
+        enabled: False
+        visibility: public
+        timeout: 180
+      virustotal:
+        base_url: https://www.virustotal.com/api/v3/search?query=
+        api_key:

From 8cc19b0748c6804abe01abb8f7dd3df9dc23784f Mon Sep 17 00:00:00 2001
From: Wes <wlambertts@gmail.com>
Date: Wed, 30 Aug 2023 19:16:38 +0000
Subject: [PATCH 043/417] Add analyzer configuration description

---
 salt/sensoroni/soc_sensoroni.yaml | 142 ++++++++++++++++++++++++++++++
 1 file changed, 142 insertions(+)

diff --git a/salt/sensoroni/soc_sensoroni.yaml b/salt/sensoroni/soc_sensoroni.yaml
index 8a35272ea..6a728ef9c 100644
--- a/salt/sensoroni/soc_sensoroni.yaml
+++ b/salt/sensoroni/soc_sensoroni.yaml
@@ -37,3 +37,145 @@ sensoroni:
       helpLink: sensoroni.html
       global: True
       advanced: True
+  analyzers:
+    emailrep:
+      api_key:
+        description: API key for the EmailRep analyzer.
+        helpLink: sensoroni.html
+        global: True
+        sensitive: True
+        advanced: True
+        forcedType: string
+      base_url:
+        description: Base URL for the EmailRep analyzer.
+        helpLink: sensoroni.html
+        global: True
+        sensitive: False
+        advanced: True
+        forcedType: string
+    greynoise:
+      api_key:
+        description: API key for the GreyNoise analyzer.
+        helpLink: sensoroni.html
+        global: True
+        sensitive: True
+        advanced: True
+        forcedType: string
+      api_version:
+        description: API key for the GreyNoise analyzer.
+        helpLink: sensoroni.html
+        global: True
+        sensitive: False
+        advanced: True
+        forcedType: string
+      base_url:
+        description: Base URL for the GreyNoise analyzer.
+        helpLink: sensoroni.html
+        global: True
+        sensitive: False
+        advanced: True
+        forcedType: string
+    localfile:
+      file_path:
+        description: File path for the LocalFile analyzer.
+        helpLink: sensoroni.html
+        global: True
+        sensitive: False
+        advanced: True
+        forcedType: "[]string"
+    otx:
+      api_key:
+        description: API key for the OTX analyzer.
+        helpLink: sensoroni.html
+        global: True
+        sensitive: True
+        advanced: True
+        forcedType: string
+      base_url:
+        description: Base URL for the OTX analyzer.
+        helpLink: sensoroni.html
+        global: True
+        sensitive: False
+        advanced: True
+        forcedType: string
+    pulsedive:
+      api_key:
+        description: API key for the Pulsedive analyzer.
+        helpLink: sensoroni.html
+        global: True
+        sensitive: True
+        advanced: True
+        forcedType: string
+      base_url:
+        description: Base URL for the Pulsedive analyzer.
+        helpLink: sensoroni.html
+        global: True
+        sensitive: False
+        advanced: True
+        forcedType: string
+    spamhaus:
+      lookup_host:
+        description: Host to use for lookups.
+        helpLink: sensoroni.html
+        global: True
+        sensitive: False
+        advanced: True
+        forcedType: string
+      nameservers:
+        description: Nameservers used for queries.
+        helpLink: sensoroni.html
+        global: True
+        sensitive: False
+        advanced: True
+        forcedTypes: "[]string"
+    urlscan:
+      api_key:
+        description: API key for the Urlscan analyzer.
+        helpLink: sensoroni.html
+        global: True
+        sensitive: True
+        advanced: True
+        forcedType: string
+      base_url:
+        description: Base URL for the Urlscan analyzer.
+        helpLink: sensoroni.html
+        global: True
+        sensitive: False
+        advanced: True
+        forcedType: string
+      enabled:
+        description: Analyzer enabled
+        helpLink: sensoroni.html
+        global: True
+        sensitive: False
+        advanced: True
+        forcedType: bool
+      timeout:
+        description: Timeout for the Urlscan analyzer.
+        helpLink: sensoroni.html
+        global: True
+        sensitive: False
+        advanced: True
+        forcedType: int
+      visibility:
+        description: Type of visibility.
+        helpLink: sensoroni.html
+        global: True
+        sensitive: False
+        advanced: True
+        forcedType: string
+    virustotal:
+      api_key:
+        description: API key for the VirusTotal analyzer.
+        helpLink: sensoroni.html
+        global: True
+        sensitive: True
+        advanced: True
+        forcedType: string
+      base_url:
+        description: Base URL for the VirusTotal analyzer.
+        helpLink: sensoroni.html
+        global: True
+        sensitive: False
+        advanced: True
+        forcedType: string

From 78915f900b8aad6ebb9e4038ec1f4b0ad916add6 Mon Sep 17 00:00:00 2001
From: weslambert <wlambertts@gmail.com>
Date: Wed, 30 Aug 2023 15:37:30 -0400
Subject: [PATCH 044/417] Add fortigate package

---
 salt/elasticfleet/defaults.yaml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/salt/elasticfleet/defaults.yaml b/salt/elasticfleet/defaults.yaml
index 55e70113f..979e795f7 100644
--- a/salt/elasticfleet/defaults.yaml
+++ b/salt/elasticfleet/defaults.yaml
@@ -41,6 +41,7 @@ elasticfleet:
     - fleet_server
     - fim
     - fortinet
+    - fortinet_fortigate
     - gcp
     - github
     - google_workspace

From d090852895fb899fb9d029c57ae2c54e879a9722 Mon Sep 17 00:00:00 2001
From: weslambert <wlambertts@gmail.com>
Date: Wed, 30 Aug 2023 15:40:40 -0400
Subject: [PATCH 045/417] Correct fortigate template name

---
 salt/elasticsearch/defaults.yaml | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/salt/elasticsearch/defaults.yaml b/salt/elasticsearch/defaults.yaml
index 33362825f..cc2f5e1cd 100644
--- a/salt/elasticsearch/defaults.yaml
+++ b/salt/elasticsearch/defaults.yaml
@@ -970,18 +970,18 @@ elasticsearch:
         data_stream:
           hidden: false
           allow_custom_routing: false
-    so-logs-fortinet_x_fortigate:
+    so-logs-fortinet_fortigate_x_log:
       index_sorting: False
       index_template:
         index_patterns:
-          - "logs-fortinet.fortigate-*"
+          - "logs-fortinet_fortigate.log-*"
         template:
           settings:
             index:
               number_of_replicas: 0
         composed_of:
-          - "logs-fortinet.fortigate@package"
-          - "logs-fortinet.fortigate@custom"
+          - "logs-fortinet_fortigate.log@package"
+          - "logs-fortinet_fortigate.log@custom"
           - "so-fleet_globals-1"
           - "so-fleet_agent_id_verification-1"
         priority: 501

From 21e91a753701b2672fedc9a5025982b05138fb6b Mon Sep 17 00:00:00 2001
From: weslambert <wlambertts@gmail.com>
Date: Wed, 30 Aug 2023 16:10:38 -0400
Subject: [PATCH 046/417] Fix api_version

---
 salt/sensoroni/soc_sensoroni.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/salt/sensoroni/soc_sensoroni.yaml b/salt/sensoroni/soc_sensoroni.yaml
index 6a728ef9c..2d1536191 100644
--- a/salt/sensoroni/soc_sensoroni.yaml
+++ b/salt/sensoroni/soc_sensoroni.yaml
@@ -62,7 +62,7 @@ sensoroni:
         advanced: True
         forcedType: string
       api_version:
-        description: API key for the GreyNoise analyzer.
+        description: API version for the GreyNoise analyzer.
         helpLink: sensoroni.html
         global: True
         sensitive: False

From 41300af944c1c537ef9bf99bb2411d80bafdbb4e Mon Sep 17 00:00:00 2001
From: weslambert <wlambertts@gmail.com>
Date: Wed, 30 Aug 2023 16:30:32 -0400
Subject: [PATCH 047/417] Set global to false

---
 salt/sensoroni/soc_sensoroni.yaml | 38 +++++++++++++++----------------
 1 file changed, 19 insertions(+), 19 deletions(-)

diff --git a/salt/sensoroni/soc_sensoroni.yaml b/salt/sensoroni/soc_sensoroni.yaml
index 2d1536191..eb63dbe25 100644
--- a/salt/sensoroni/soc_sensoroni.yaml
+++ b/salt/sensoroni/soc_sensoroni.yaml
@@ -42,14 +42,14 @@ sensoroni:
       api_key:
         description: API key for the EmailRep analyzer.
         helpLink: sensoroni.html
-        global: True
+        global: False
         sensitive: True
         advanced: True
         forcedType: string
       base_url:
         description: Base URL for the EmailRep analyzer.
         helpLink: sensoroni.html
-        global: True
+        global: False
         sensitive: False
         advanced: True
         forcedType: string
@@ -57,21 +57,21 @@ sensoroni:
       api_key:
         description: API key for the GreyNoise analyzer.
         helpLink: sensoroni.html
-        global: True
+        global: False
         sensitive: True
         advanced: True
         forcedType: string
       api_version:
         description: API version for the GreyNoise analyzer.
         helpLink: sensoroni.html
-        global: True
+        global: False
         sensitive: False
         advanced: True
         forcedType: string
       base_url:
         description: Base URL for the GreyNoise analyzer.
         helpLink: sensoroni.html
-        global: True
+        global: False
         sensitive: False
         advanced: True
         forcedType: string
@@ -79,7 +79,7 @@ sensoroni:
       file_path:
         description: File path for the LocalFile analyzer.
         helpLink: sensoroni.html
-        global: True
+        global: False
         sensitive: False
         advanced: True
         forcedType: "[]string"
@@ -87,14 +87,14 @@ sensoroni:
       api_key:
         description: API key for the OTX analyzer.
         helpLink: sensoroni.html
-        global: True
+        global: False
         sensitive: True
         advanced: True
         forcedType: string
       base_url:
         description: Base URL for the OTX analyzer.
         helpLink: sensoroni.html
-        global: True
+        global: False
         sensitive: False
         advanced: True
         forcedType: string
@@ -102,14 +102,14 @@ sensoroni:
       api_key:
         description: API key for the Pulsedive analyzer.
         helpLink: sensoroni.html
-        global: True
+        global: False
         sensitive: True
         advanced: True
         forcedType: string
       base_url:
         description: Base URL for the Pulsedive analyzer.
         helpLink: sensoroni.html
-        global: True
+        global: False
         sensitive: False
         advanced: True
         forcedType: string
@@ -117,14 +117,14 @@ sensoroni:
       lookup_host:
         description: Host to use for lookups.
         helpLink: sensoroni.html
-        global: True
+        global: False
         sensitive: False
         advanced: True
         forcedType: string
       nameservers:
         description: Nameservers used for queries.
         helpLink: sensoroni.html
-        global: True
+        global: False
         sensitive: False
         advanced: True
         forcedTypes: "[]string"
@@ -132,35 +132,35 @@ sensoroni:
       api_key:
         description: API key for the Urlscan analyzer.
         helpLink: sensoroni.html
-        global: True
+        global: False
         sensitive: True
         advanced: True
         forcedType: string
       base_url:
         description: Base URL for the Urlscan analyzer.
         helpLink: sensoroni.html
-        global: True
+        global: False
         sensitive: False
         advanced: True
         forcedType: string
       enabled:
         description: Analyzer enabled
         helpLink: sensoroni.html
-        global: True
+        global: False
         sensitive: False
         advanced: True
         forcedType: bool
       timeout:
         description: Timeout for the Urlscan analyzer.
         helpLink: sensoroni.html
-        global: True
+        global: False
         sensitive: False
         advanced: True
         forcedType: int
       visibility:
         description: Type of visibility.
         helpLink: sensoroni.html
-        global: True
+        global: False
         sensitive: False
         advanced: True
         forcedType: string
@@ -168,14 +168,14 @@ sensoroni:
       api_key:
         description: API key for the VirusTotal analyzer.
         helpLink: sensoroni.html
-        global: True
+        global: False
         sensitive: True
         advanced: True
         forcedType: string
       base_url:
         description: Base URL for the VirusTotal analyzer.
         helpLink: sensoroni.html
-        global: True
+        global: False
         sensitive: False
         advanced: True
         forcedType: string

From 14a62805310e59d4e16f3b6809fa0d74860edb81 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Wed, 30 Aug 2023 16:49:17 -0400
Subject: [PATCH 048/417] iso desktop join grid - set install_type and
 minion_type

---
 setup/so-functions | 2 +-
 setup/so-setup     | 1 +
 2 files changed, 2 insertions(+), 1 deletion(-)

diff --git a/setup/so-functions b/setup/so-functions
index eab98b849..4f973d147 100755
--- a/setup/so-functions
+++ b/setup/so-functions
@@ -1269,7 +1269,7 @@ get_redirect() {
 get_minion_type() {
 	local minion_type
 	case "$install_type" in
-		'EVAL' | 'MANAGERSEARCH' | 'MANAGER' | 'SENSOR' | 'HEAVYNODE' | 'SEARCHNODE' | 'FLEET' | 'IDH' | 'STANDALONE' | 'IMPORT' | 'RECEIVER')
+		'EVAL' | 'MANAGERSEARCH' | 'MANAGER' | 'SENSOR' | 'HEAVYNODE' | 'SEARCHNODE' | 'FLEET' | 'IDH' | 'STANDALONE' | 'IMPORT' | 'RECEIVER' | 'DESKTOP')
 			minion_type=$(echo "$install_type" | tr '[:upper:]' '[:lower:]')
 			;;
 	esac
diff --git a/setup/so-setup b/setup/so-setup
index f6e5c8c4e..cdc7e67d6 100755
--- a/setup/so-setup
+++ b/setup/so-setup
@@ -104,6 +104,7 @@ if [ "$setup_type" = 'desktop' ]; then
 	# Check to see if this is an ISO. Usually this dir on exists on ISO installs.
 	if [ -d /root/SecurityOnion ]; then
 		is_desktop_iso=true
+		install_type='DESKTOP'
 	fi
 fi
 

From a615fc8e47f444ea9dc87390c897626b5b226216 Mon Sep 17 00:00:00 2001
From: Corey Ogburn <corey.ogburn@securityonionsolutions.com>
Date: Wed, 30 Aug 2023 15:33:01 -0600
Subject: [PATCH 049/417] New Config Default: longRelayTimeoutMs

Salt is getting a second timeout for operations known to take a long time such as sending and importing files. There's also an entry in soc_soc.yaml so the value can be changed in SOC's config page.
---
 salt/soc/defaults.yaml | 1 +
 salt/soc/soc_soc.yaml  | 5 +++++
 2 files changed, 6 insertions(+)

diff --git a/salt/soc/defaults.yaml b/salt/soc/defaults.yaml
index ff8b240ec..05543cd19 100644
--- a/salt/soc/defaults.yaml
+++ b/salt/soc/defaults.yaml
@@ -1012,6 +1012,7 @@ soc:
           verifyCert: false
         salt:
           queueDir: /opt/sensoroni/queue
+          longRelayTimeoutMs: 120000
         sostatus:
           refreshIntervalMs: 30000
           offlineThresholdMs: 900000
diff --git a/salt/soc/soc_soc.yaml b/salt/soc/soc_soc.yaml
index b2ed893f6..e94144069 100644
--- a/salt/soc/soc_soc.yaml
+++ b/salt/soc/soc_soc.yaml
@@ -111,6 +111,11 @@ soc:
             description: Duration (in milliseconds) that must elapse after a grid node fails to check-in before the node will be marked offline (fault).
             global: True
             advanced: True
+        salt:
+          longRelayTimeoutMs:
+            description: Duration (in milliseconds) to wait for a response from the Salt API when executing tasks known for being long running before giving up and showing an error on the SOC UI.
+            global: True
+            advanced: True
       client:
         enableReverseLookup:
           description: Set to true to enable reverse DNS lookups for IP addresses in the SOC UI.

From c812c3991ef952eb3b9e472ea4b1353221e72695 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Thu, 31 Aug 2023 08:54:13 -0400
Subject: [PATCH 050/417] we dont need to run convert-gnome-classic script

---
 salt/desktop/scripts/convert-gnome-classic.sh | 4 ----
 salt/desktop/xwindows.sls                     | 5 +----
 2 files changed, 1 insertion(+), 8 deletions(-)
 delete mode 100644 salt/desktop/scripts/convert-gnome-classic.sh

diff --git a/salt/desktop/scripts/convert-gnome-classic.sh b/salt/desktop/scripts/convert-gnome-classic.sh
deleted file mode 100644
index e69a43b2d..000000000
--- a/salt/desktop/scripts/convert-gnome-classic.sh
+++ /dev/null
@@ -1,4 +0,0 @@
-#!/bin/bash
-echo "Setting default session to gnome-classic"
-cp /usr/share/accountsservice/user-templates/standard /etc/accountsservice/user-templates/
-sed -i 's|Session=gnome|Session=gnome-classic|g' /etc/accountsservice/user-templates/standard
diff --git a/salt/desktop/xwindows.sls b/salt/desktop/xwindows.sls
index 66e4c9a05..85da0590c 100644
--- a/salt/desktop/xwindows.sls
+++ b/salt/desktop/xwindows.sls
@@ -12,10 +12,7 @@ graphical_target:
     - require:
       - desktop_packages
 
-convert_gnome_classic:
-  cmd.script:
-    - name: salt://desktop/scripts/convert-gnome-classic.sh
-
+{# set users to use gnome-classic #}
 {%   for username in salt['file.find'](path='/home/',mindepth=1,maxdepth=1,type='d') %}
 {%     set username = username.split('/')[2] %}
 {%     if username != 'zeek' %}

From da56a421e5b0a89c2fa7750249066762777191cd Mon Sep 17 00:00:00 2001
From: Doug Burks <doug.burks@securityonionsolutions.com>
Date: Thu, 31 Aug 2023 09:17:33 -0400
Subject: [PATCH 051/417] Update motd.md

---
 salt/soc/files/soc/motd.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/salt/soc/files/soc/motd.md b/salt/soc/files/soc/motd.md
index cf22e863d..d6b0d3d27 100644
--- a/salt/soc/files/soc/motd.md
+++ b/salt/soc/files/soc/motd.md
@@ -1,6 +1,6 @@
 ## Getting Started
 
-New to Security Onion 2? Click the menu in the upper-right corner and you'll find links for [Help](/docs/) and a [Cheatsheet](/docs/cheatsheet.pdf) that will help you best utilize Security Onion to hunt for evil! In addition, check out our free Security Onion 2 Essentials online course, available on our [Training](https://securityonionsolutions.com/training) website.
+New to Security Onion 2? Click the menu in the upper-right corner and you'll find links for [Help](/docs/) and a [Cheat Sheet](/docs/cheatsheet.pdf) that will help you best utilize Security Onion to hunt for evil! In addition, check out our free Security Onion 2 Essentials online course, available on our [Training](https://securityonionsolutions.com/training) website.
 
 If you're ready to dive in, take a look at the [Alerts](/#/alerts) interface to see what Security Onion has detected so far. Then go to the [Dashboards](/#/dashboards) interface for a general overview of all logs collected or go to the [Hunt](/#/hunt) interface for more focused threat hunting. Once you've found something of interest, escalate it to [Cases](/#/cases) to then collect evidence and analyze observables as you work towards closing the case.
 

From a60c34d5488bc88fbbe9a6f817dffd3327eecf8e Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Thu, 31 Aug 2023 09:40:54 -0400
Subject: [PATCH 052/417] exclude unnecessary pillars from desktop nodes

---
 pillar/top.sls | 18 ++++++++++--------
 1 file changed, 10 insertions(+), 8 deletions(-)

diff --git a/pillar/top.sls b/pillar/top.sls
index 4893c44f9..bf28b6474 100644
--- a/pillar/top.sls
+++ b/pillar/top.sls
@@ -2,21 +2,23 @@ base:
   '*':
     - global.soc_global
     - global.adv_global
-    - docker.soc_docker
-    - docker.adv_docker
-    - firewall.soc_firewall
-    - firewall.adv_firewall
-    - influxdb.token
     - logrotate.soc_logrotate
     - logrotate.adv_logrotate
-    - nginx.soc_nginx
-    - nginx.adv_nginx
-    - node_data.ips
     - ntp.soc_ntp
     - ntp.adv_ntp
     - patch.needs_restarting
     - patch.soc_patch
     - patch.adv_patch
+
+  '* and not *_desktop':
+    - docker.soc_docker
+    - docker.adv_docker
+    - firewall.soc_firewall
+    - firewall.adv_firewall
+    - influxdb.token
+    - nginx.soc_nginx
+    - nginx.adv_nginx
+    - node_data.ips
     - sensoroni.soc_sensoroni
     - sensoroni.adv_sensoroni
     - telegraf.soc_telegraf

From ee848b8a8c7c8b547d70885e5f03ea99a0f1e25e Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Thu, 31 Aug 2023 09:51:55 -0400
Subject: [PATCH 053/417] comments for desktop install

---
 setup/so-setup | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/setup/so-setup b/setup/so-setup
index cdc7e67d6..a9c7776c3 100755
--- a/setup/so-setup
+++ b/setup/so-setup
@@ -578,9 +578,9 @@ if ! [[ -f $install_opt_file ]]; then
 		set_minion_info
 		whiptail_end_settings
 
+	# desktop install will only get this far if joining the grid
 	elif [[ $is_desktop ]]; then
 		info "Setting up as node type desktop"
-		#check_requirements "desktop"
 		networking_needful
 		collect_mngr_hostname
 		add_mngr_ip_to_hosts

From 1a3b3b21fbd9dfbc0395659fb7183bea9f1c9d4d Mon Sep 17 00:00:00 2001
From: Wes <wlambertts@gmail.com>
Date: Thu, 31 Aug 2023 15:09:19 +0000
Subject: [PATCH 054/417] Change entropy value syntax

---
 salt/elasticsearch/files/ingest/strelka.file | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/salt/elasticsearch/files/ingest/strelka.file b/salt/elasticsearch/files/ingest/strelka.file
index 741e20aa1..a74a7c622 100644
--- a/salt/elasticsearch/files/ingest/strelka.file
+++ b/salt/elasticsearch/files/ingest/strelka.file
@@ -63,8 +63,8 @@
     { "set":         { "if": "ctx.rule?.score != null && ctx.rule?.score >= 50 && ctx.rule?.score <=69",   "field": "event.severity", "value": 2, "override": true }  },
     { "set":         { "if": "ctx.rule?.score != null && ctx.rule?.score >= 70 && ctx.rule?.score <=89",   "field": "event.severity", "value": 3, "override": true }  },
     { "set":         { "if": "ctx.rule?.score != null && ctx.rule?.score >= 90",   "field": "event.severity", "value": 4, "override": true }  },
-    { "set":         { "if": "ctx.scan?.entropy?.entropy == 0",   "field": "scan.entropy.entropy", "value": "0.0", "override": true }  },
-    { "set":         { "if": "ctx.scan?.pe?.image_version == 0",   "field": "scan.pe.image_version", "value": "0.0", "override": true }  },
+    { "set":         { "if": "ctx.scan?.entropy?.entropy == '0'",   "field": "scan.entropy.entropy", "value": "0.0", "override": true }  },
+    { "set":         { "if": "ctx.scan?.pe?.image_version == '0'",   "field": "scan.pe.image_version", "value": "0.0", "override": true }  },
     { "set":         { "field": "observer.name",        "value": "{{agent.name}}" }},
     { "convert" :    { "field" : "scan.exiftool","type": "string", "ignore_missing":true }},
     { "remove":         { "field": ["host", "path", "message", "exiftool", "scan.yara.meta"],                                         "ignore_missing": true  } },

From 0fed757b11c56af7106badc3ca5cb38786108b32 Mon Sep 17 00:00:00 2001
From: Wes <wlambertts@gmail.com>
Date: Thu, 31 Aug 2023 15:10:27 +0000
Subject: [PATCH 055/417] Add entropy mapping

---
 .../templates/component/so/so-scan-mappings.json      | 11 +++++++++--
 1 file changed, 9 insertions(+), 2 deletions(-)

diff --git a/salt/elasticsearch/templates/component/so/so-scan-mappings.json b/salt/elasticsearch/templates/component/so/so-scan-mappings.json
index 60dc5b928..8ddbe6077 100644
--- a/salt/elasticsearch/templates/component/so/so-scan-mappings.json
+++ b/salt/elasticsearch/templates/component/so/so-scan-mappings.json
@@ -33,10 +33,17 @@
                   }
                 }
               }
-            }
+            },
+	    "entropy": {
+              "properties": {
+                "entropy": {
+	          "type": "float"
+		}
+	      }
+	    }
           }
         }
       }
     }
   }
-}
\ No newline at end of file
+}

From b010919099acda92e7473ab605a9e2ae60f2049c Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Thu, 31 Aug 2023 13:21:32 -0400
Subject: [PATCH 056/417] add sensoroni, telegraf, common states to desktop.
 allow docker_registry connection to managers for desktop

---
 pillar/top.sls              | 10 +++++-----
 salt/firewall/defaults.yaml |  9 +++++++++
 salt/top.sls                | 26 +++-----------------------
 3 files changed, 17 insertions(+), 28 deletions(-)

diff --git a/pillar/top.sls b/pillar/top.sls
index bf28b6474..9f21a2c99 100644
--- a/pillar/top.sls
+++ b/pillar/top.sls
@@ -2,6 +2,7 @@ base:
   '*':
     - global.soc_global
     - global.adv_global
+    - influxdb.token
     - logrotate.soc_logrotate
     - logrotate.adv_logrotate
     - ntp.soc_ntp
@@ -9,20 +10,19 @@ base:
     - patch.needs_restarting
     - patch.soc_patch
     - patch.adv_patch
+    - sensoroni.soc_sensoroni
+    - sensoroni.adv_sensoroni
+    - telegraf.soc_telegraf
+    - telegraf.adv_telegraf
 
   '* and not *_desktop':
     - docker.soc_docker
     - docker.adv_docker
     - firewall.soc_firewall
     - firewall.adv_firewall
-    - influxdb.token
     - nginx.soc_nginx
     - nginx.adv_nginx
     - node_data.ips
-    - sensoroni.soc_sensoroni
-    - sensoroni.adv_sensoroni
-    - telegraf.soc_telegraf
-    - telegraf.adv_telegraf
 
   '*_manager or *_managersearch':
     - match: compound
diff --git a/salt/firewall/defaults.yaml b/salt/firewall/defaults.yaml
index ecb4bad6b..578a242f9 100644
--- a/salt/firewall/defaults.yaml
+++ b/salt/firewall/defaults.yaml
@@ -463,6 +463,9 @@ firewall:
                 - endgame
             desktop:
               portgroups:
+                - docker_registry
+                - influxdb
+                - sensoroni
                 - yum
             customhostgroup0:
               portgroups: []
@@ -651,6 +654,9 @@ firewall:
                 - endgame
             desktop:
               portgroups:
+                - docker_registry
+                - influxdb
+                - sensoroni
                 - yum
             customhostgroup0:
               portgroups: []
@@ -847,6 +853,9 @@ firewall:
                 - strelka_frontend
             desktop:
               portgroups:
+                - docker_registry
+                - influxdb
+                - sensoroni
                 - yum
             customhostgroup0:
               portgroups: []
diff --git a/salt/top.sls b/salt/top.sls
index 4a605b13c..ccad30307 100644
--- a/salt/top.sls
+++ b/salt/top.sls
@@ -28,18 +28,18 @@ base:
     - motd
     - salt.minion-check
     - salt.lasthighstate
+    - common
+    - sensoroni
+    - telegraf
 
   'not *_desktop and G@saltversion:{{saltversion}}':
     - match: compound
-    - common
     - docker
 
   '*_sensor and G@saltversion:{{saltversion}}':
     - match: compound
     - sensor
     - ssl
-    - sensoroni
-    - telegraf
     - firewall
     - nginx
     - pcap
@@ -57,11 +57,9 @@ base:
     - ca
     - ssl
     - registry
-    - sensoroni
     - manager
     - backup.config_backup
     - nginx
-    - telegraf
     - influxdb
     - soc
     - kratos
@@ -92,9 +90,7 @@ base:
     - ca
     - ssl
     - registry
-    - sensoroni
     - nginx
-    - telegraf
     - influxdb
     - soc
     - kratos
@@ -124,11 +120,9 @@ base:
     - ca
     - ssl
     - registry
-    - sensoroni
     - manager
     - backup.config_backup
     - nginx
-    - telegraf
     - influxdb
     - soc
     - kratos
@@ -157,9 +151,7 @@ base:
   '*_searchnode and G@saltversion:{{saltversion}}':
     - match: compound
     - ssl
-    - sensoroni
     - nginx
-    - telegraf
     - firewall
     - elasticsearch
     - logstash
@@ -172,9 +164,7 @@ base:
     - ca
     - ssl
     - registry
-    - sensoroni
     - nginx
-    - telegraf
     - influxdb
     - soc
     - kratos
@@ -201,9 +191,7 @@ base:
     - match: compound
     - sensor
     - ssl
-    - sensoroni
     - nginx
-    - telegraf
     - firewall
     - elasticsearch
     - logstash
@@ -224,10 +212,8 @@ base:
     - ca
     - ssl
     - registry
-    - sensoroni
     - manager
     - nginx
-    - telegraf
     - influxdb
     - soc
     - kratos
@@ -247,8 +233,6 @@ base:
   '*_receiver and G@saltversion:{{saltversion}}':
     - match: compound
     - ssl
-    - sensoroni
-    - telegraf
     - firewall
     - logstash
     - redis
@@ -258,8 +242,6 @@ base:
   '*_idh and G@saltversion:{{saltversion}}':
     - match: compound
     - ssl
-    - sensoroni
-    - telegraf
     - firewall
     - elasticfleet.install_agent_grid
     - docker_clean
@@ -268,8 +250,6 @@ base:
   '*_fleet and G@saltversion:{{saltversion}}':
     - match: compound
     - ssl
-    - sensoroni
-    - telegraf
     - firewall
     - logstash
     - elasticfleet

From 1871d48f7f1fe38686024804f0cde9c93ff75f27 Mon Sep 17 00:00:00 2001
From: Jason Ertel <github@jasonertel.com>
Date: Thu, 31 Aug 2023 20:42:00 -0400
Subject: [PATCH 057/417] remove unnecesary OTHER submenu

---
 setup/so-whiptail | 19 +------------------
 1 file changed, 1 insertion(+), 18 deletions(-)

diff --git a/setup/so-whiptail b/setup/so-whiptail
index 8fd3b5fdd..9622ad44a 100755
--- a/setup/so-whiptail
+++ b/setup/so-whiptail
@@ -563,7 +563,7 @@ whiptail_install_type() {
 			"EVAL" "Evaluation mode (not for production) " \
 			"STANDALONE" "Standalone production install " \
 			"DISTRIBUTED" "Distributed install submenu " \
-			"OTHER" "Other install types" \
+			"DESKTOP" "Install Security Onion Desktop" \
 			3>&1 1>&2 2>&3
 		)
 	elif [[ "$OSVER" == "focal" ]]; then
@@ -584,8 +584,6 @@ whiptail_install_type() {
 		else
 			whiptail_install_type_dist_existing
 		fi
-	elif [[ $install_type == "OTHER" ]]; then
-		whiptail_install_type_other
 	fi
 
 	export install_type
@@ -691,21 +689,6 @@ whiptail_install_type_dist_existing() {
 	whiptail_check_exitstatus $exitstatus
 }
 
-
-whiptail_install_type_other() {
-
-	[ -n "$TESTING" ] && return
-
-	install_type=$(whiptail --title "$whiptail_title" --menu \
-		"Choose node type:" 10 65 2 \
-		"DESKTOP" "Install Security Onion Desktop " 3>&1 1>&2 2>&3)
-	
-	local exitstatus=$?
-	whiptail_check_exitstatus $exitstatus
-
-	export install_type
-}
-
 whiptail_invalid_input() { # TODO: This should accept a list of arguments to specify what general pattern the input should follow
 	[ -n "$TESTING" ] && return
 	

From b64fa512688239d06ba8b09bc3261c595f943ee8 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Fri, 1 Sep 2023 09:16:24 -0400
Subject: [PATCH 058/417] give desktop docker state and pillars

---
 pillar/top.sls | 4 ++--
 salt/top.sls   | 5 +----
 2 files changed, 3 insertions(+), 6 deletions(-)

diff --git a/pillar/top.sls b/pillar/top.sls
index 9f21a2c99..53ec8a330 100644
--- a/pillar/top.sls
+++ b/pillar/top.sls
@@ -2,6 +2,8 @@ base:
   '*':
     - global.soc_global
     - global.adv_global
+    - docker.soc_docker
+    - docker.adv_docker
     - influxdb.token
     - logrotate.soc_logrotate
     - logrotate.adv_logrotate
@@ -16,8 +18,6 @@ base:
     - telegraf.adv_telegraf
 
   '* and not *_desktop':
-    - docker.soc_docker
-    - docker.adv_docker
     - firewall.soc_firewall
     - firewall.adv_firewall
     - nginx.soc_nginx
diff --git a/salt/top.sls b/salt/top.sls
index ccad30307..e278635b5 100644
--- a/salt/top.sls
+++ b/salt/top.sls
@@ -29,13 +29,10 @@ base:
     - salt.minion-check
     - salt.lasthighstate
     - common
+    - docker
     - sensoroni
     - telegraf
 
-  'not *_desktop and G@saltversion:{{saltversion}}':
-    - match: compound
-    - docker
-
   '*_sensor and G@saltversion:{{saltversion}}':
     - match: compound
     - sensor

From 0fb00d569e4417f382a211b8b89d3685c5ea46a1 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Fri, 1 Sep 2023 09:39:39 -0400
Subject: [PATCH 059/417] allow states for desktop. give all nodes
 docker_clean, order it last

---
 salt/allowed_states.map.jinja |  2 ++
 salt/docker_clean/init.sls    |  1 +
 salt/top.sls                  | 12 +-----------
 3 files changed, 4 insertions(+), 11 deletions(-)

diff --git a/salt/allowed_states.map.jinja b/salt/allowed_states.map.jinja
index a3c5c75ab..6932e8c84 100644
--- a/salt/allowed_states.map.jinja
+++ b/salt/allowed_states.map.jinja
@@ -188,6 +188,8 @@
           'docker_clean'
           ],
       'so-desktop': [
+          'docker_clean',
+          'telegraf'
           ],
   }, grain='role') %}
 
diff --git a/salt/docker_clean/init.sls b/salt/docker_clean/init.sls
index c11af4f56..ee60f5591 100644
--- a/salt/docker_clean/init.sls
+++ b/salt/docker_clean/init.sls
@@ -9,6 +9,7 @@
 prune_images:
   cmd.run:
     - name: so-docker-prune
+    - order: last
 
 {% else %}
 
diff --git a/salt/top.sls b/salt/top.sls
index e278635b5..2409aec82 100644
--- a/salt/top.sls
+++ b/salt/top.sls
@@ -32,6 +32,7 @@ base:
     - docker
     - sensoroni
     - telegraf
+    - docker_clean
 
   '*_sensor and G@saltversion:{{saltversion}}':
     - match: compound
@@ -44,7 +45,6 @@ base:
     - healthcheck
     - zeek
     - strelka
-    - docker_clean
     - elasticfleet.install_agent_grid
 
   '*_eval and G@saltversion:{{saltversion}}':
@@ -79,7 +79,6 @@ base:
     - playbook
     - redis
     - elasticfleet
-    - docker_clean
 
   '*_manager and G@saltversion:{{saltversion}}':
     - match: compound
@@ -108,7 +107,6 @@ base:
     - soctopus
     - playbook
     - elasticfleet
-    - docker_clean
 
   '*_standalone and G@saltversion:{{saltversion}}':
     - match: compound
@@ -143,7 +141,6 @@ base:
     - soctopus
     - playbook
     - elasticfleet
-    - docker_clean
 
   '*_searchnode and G@saltversion:{{saltversion}}':
     - match: compound
@@ -153,7 +150,6 @@ base:
     - elasticsearch
     - logstash
     - elasticfleet.install_agent_grid
-    - docker_clean
 
   '*_managersearch and G@saltversion:{{saltversion}}':
     - match: compound
@@ -182,7 +178,6 @@ base:
     - soctopus
     - playbook
     - elasticfleet
-    - docker_clean
 
   '*_heavynode and G@saltversion:{{saltversion}}':
     - match: compound
@@ -200,7 +195,6 @@ base:
     - zeek
     - elasticfleet.install_agent_grid
     - elasticagent
-    - docker_clean
   
   '*_import and G@saltversion:{{saltversion}}':
     - match: compound
@@ -225,7 +219,6 @@ base:
     - suricata
     - zeek
     - elasticfleet
-    - docker_clean
 
   '*_receiver and G@saltversion:{{saltversion}}':
     - match: compound
@@ -234,14 +227,12 @@ base:
     - logstash
     - redis
     - elasticfleet.install_agent_grid
-    - docker_clean
 
   '*_idh and G@saltversion:{{saltversion}}':
     - match: compound
     - ssl
     - firewall
     - elasticfleet.install_agent_grid
-    - docker_clean
     - idh
 
   '*_fleet and G@saltversion:{{saltversion}}':
@@ -252,7 +243,6 @@ base:
     - elasticfleet
     - elasticfleet.install_agent_grid
     - schedule
-    - docker_clean
 
   'J@desktop:gui:enabled:^[Tt][Rr][Uu][Ee]$ and ( G@saltversion:{{saltversion}} and G@os:OEL )':
     - match: compound

From b64d4e36584bca8ea60c7f7f4d9a99407cb52251 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Fri, 1 Sep 2023 09:53:26 -0400
Subject: [PATCH 060/417] add telegraf pillar to desktop

---
 salt/manager/tools/sbin/so-minion | 1 +
 1 file changed, 1 insertion(+)

diff --git a/salt/manager/tools/sbin/so-minion b/salt/manager/tools/sbin/so-minion
index de55c3a5b..075632985 100755
--- a/salt/manager/tools/sbin/so-minion
+++ b/salt/manager/tools/sbin/so-minion
@@ -552,6 +552,7 @@ function createRECEIVER() {
 
 function createDESKTOP() {
 	add_desktop_to_minion
+	add_telegraf_to_minion
 }
 
 function testConnection() {

From 546c562ef0ad9779c41adacc03378e515d826c50 Mon Sep 17 00:00:00 2001
From: Jason Ertel <github@jasonertel.com>
Date: Fri, 1 Sep 2023 10:31:02 -0400
Subject: [PATCH 061/417] expose standard relay timeout in config UI; up
 default to 45s to accommodate sluggish pillar.get calls

---
 salt/soc/defaults.yaml | 1 +
 salt/soc/soc_soc.yaml  | 4 ++++
 2 files changed, 5 insertions(+)

diff --git a/salt/soc/defaults.yaml b/salt/soc/defaults.yaml
index 05543cd19..6d8ed5bfd 100644
--- a/salt/soc/defaults.yaml
+++ b/salt/soc/defaults.yaml
@@ -1012,6 +1012,7 @@ soc:
           verifyCert: false
         salt:
           queueDir: /opt/sensoroni/queue
+          timeoutMs: 45000
           longRelayTimeoutMs: 120000
         sostatus:
           refreshIntervalMs: 30000
diff --git a/salt/soc/soc_soc.yaml b/salt/soc/soc_soc.yaml
index e94144069..291f564ed 100644
--- a/salt/soc/soc_soc.yaml
+++ b/salt/soc/soc_soc.yaml
@@ -116,6 +116,10 @@ soc:
             description: Duration (in milliseconds) to wait for a response from the Salt API when executing tasks known for being long running before giving up and showing an error on the SOC UI.
             global: True
             advanced: True
+          relayTimeoutMs:
+            description: Duration (in milliseconds) to wait for a response from the Salt API when executing common grid management tasks before giving up and showing an error on the SOC UI.
+            global: True
+            advanced: True
       client:
         enableReverseLookup:
           description: Set to true to enable reverse DNS lookups for IP addresses in the SOC UI.

From 765a22e6f0c435e4d9b36d957623b5bcf8b2cd30 Mon Sep 17 00:00:00 2001
From: weslambert <wlambertts@gmail.com>
Date: Fri, 1 Sep 2023 11:31:23 -0400
Subject: [PATCH 062/417] Add so-elastic-agent

---
 salt/firewall/containers.map.jinja | 1 +
 1 file changed, 1 insertion(+)

diff --git a/salt/firewall/containers.map.jinja b/salt/firewall/containers.map.jinja
index 617b4a216..02e8a4644 100644
--- a/salt/firewall/containers.map.jinja
+++ b/salt/firewall/containers.map.jinja
@@ -58,6 +58,7 @@
 {% set NODE_CONTAINERS = [
      'so-curator',
      'so-elasticsearch',
+     'so-elastic-agent',
      'so-logstash',
      'so-nginx',
      'so-redis',

From 3434d0f200ea1a79d4ad5c58c33fa3b04cb7093b Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Fri, 1 Sep 2023 12:02:30 -0400
Subject: [PATCH 063/417] add sensoroni and telegraf back to individual nodes.
 add seperate block for desktop

---
 salt/top.sls | 29 +++++++++++++++++++++++++++--
 1 file changed, 27 insertions(+), 2 deletions(-)

diff --git a/salt/top.sls b/salt/top.sls
index 2409aec82..b8ca0f14e 100644
--- a/salt/top.sls
+++ b/salt/top.sls
@@ -30,14 +30,14 @@ base:
     - salt.lasthighstate
     - common
     - docker
-    - sensoroni
-    - telegraf
     - docker_clean
 
   '*_sensor and G@saltversion:{{saltversion}}':
     - match: compound
     - sensor
     - ssl
+    - sensoroni
+    - telegraf
     - firewall
     - nginx
     - pcap
@@ -60,6 +60,8 @@ base:
     - influxdb
     - soc
     - kratos
+    - sensoroni
+    - telegraf
     - firewall
     - idstools
     - suricata.manager
@@ -92,6 +94,8 @@ base:
     - kratos
     - firewall
     - manager
+    - sensoroni
+    - telegraf
     - backup.config_backup
     - idstools
     - suricata.manager
@@ -122,6 +126,8 @@ base:
     - soc
     - kratos
     - firewall
+    - sensoroni
+    - telegraf
     - idstools
     - suricata.manager    
     - healthcheck
@@ -145,6 +151,8 @@ base:
   '*_searchnode and G@saltversion:{{saltversion}}':
     - match: compound
     - ssl
+    - sensoroni
+    - telegraf
     - nginx
     - firewall
     - elasticsearch
@@ -163,6 +171,8 @@ base:
     - kratos
     - firewall
     - manager
+    - sensoroni
+    - telegraf
     - backup.config_backup
     - idstools
     - suricata.manager
@@ -183,6 +193,8 @@ base:
     - match: compound
     - sensor
     - ssl
+    - sensoroni
+    - telegraf
     - nginx
     - firewall
     - elasticsearch
@@ -208,6 +220,8 @@ base:
     - influxdb
     - soc
     - kratos
+    - sensoroni
+    - telegraf
     - firewall
     - idstools
     - suricata.manager
@@ -223,6 +237,8 @@ base:
   '*_receiver and G@saltversion:{{saltversion}}':
     - match: compound
     - ssl
+    - sensoroni
+    - telegraf
     - firewall
     - logstash
     - redis
@@ -231,6 +247,8 @@ base:
   '*_idh and G@saltversion:{{saltversion}}':
     - match: compound
     - ssl
+    - sensoroni
+    - telegraf
     - firewall
     - elasticfleet.install_agent_grid
     - idh
@@ -238,12 +256,19 @@ base:
   '*_fleet and G@saltversion:{{saltversion}}':
     - match: compound
     - ssl
+    - sensoroni
+    - telegraf
     - firewall
     - logstash
     - elasticfleet
     - elasticfleet.install_agent_grid
     - schedule
 
+  '*_desktop and G@saltversion:{{saltversion}}':
+    - ssl
+    - sensoroni
+    - telegraf
+
   'J@desktop:gui:enabled:^[Tt][Rr][Uu][Ee]$ and ( G@saltversion:{{saltversion}} and G@os:OEL )':
     - match: compound
     - desktop

From 490669d3782fbc037a4a5474c2eafcd34bf89c8d Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Fri, 1 Sep 2023 12:03:01 -0400
Subject: [PATCH 064/417] add ssl to desktop for allowed_states

---
 salt/allowed_states.map.jinja | 1 +
 1 file changed, 1 insertion(+)

diff --git a/salt/allowed_states.map.jinja b/salt/allowed_states.map.jinja
index 6932e8c84..4e3e57f9c 100644
--- a/salt/allowed_states.map.jinja
+++ b/salt/allowed_states.map.jinja
@@ -188,6 +188,7 @@
           'docker_clean'
           ],
       'so-desktop': [
+          'ssl',
           'docker_clean',
           'telegraf'
           ],

From aebfb19ab77c409210935bfbdcdecce31a0b7c37 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Fri, 1 Sep 2023 12:05:28 -0400
Subject: [PATCH 065/417] add sostatus.sh to desktop for telegraf scripts

---
 salt/telegraf/defaults.yaml | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/salt/telegraf/defaults.yaml b/salt/telegraf/defaults.yaml
index 36ef679f0..a87fa952b 100644
--- a/salt/telegraf/defaults.yaml
+++ b/salt/telegraf/defaults.yaml
@@ -87,4 +87,5 @@ telegraf:
       - sostatus.sh
     fleet:
       - sostatus.sh
-    desktop: []
+    desktop:
+      - sostatus.sh

From 585fba4bc69a244aafe3717c87eb80b498e05347 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Fri, 1 Sep 2023 12:40:01 -0400
Subject: [PATCH 066/417] add functions salt_install_module_deps and
 salt_patch_x509_v2

---
 setup/so-functions | 23 ++++++++++++++++-------
 1 file changed, 16 insertions(+), 7 deletions(-)

diff --git a/setup/so-functions b/setup/so-functions
index 4f973d147..0300e8d21 100755
--- a/setup/so-functions
+++ b/setup/so-functions
@@ -94,6 +94,9 @@ desktop_salt_local() {
 	logCmd "yum -y install salt-minion-$SALTVERSION httpd-tools python3 python3-dateutil yum-utils device-mapper-persistent-data lvm2 openssl jq"
 	logCmd "yum -y update --exclude=salt*"
 
+	salt_install_module_deps
+	salt_patch_x509_v2
+
 	logCmd "salt-call state.apply desktop --local --file-root=../salt/ -l info"
 	read -r -d '' message <<- EOM
 		Finished Security Onion Desktop installation.
@@ -2073,21 +2076,27 @@ saltify() {
 	fi
 
 	logCmd "mkdir -p /etc/salt/minion.d"
+	salt_install_module_deps
+	salt_patch_x509_v2
+
+}
+
+# Run a salt command to generate the minion key
+salt_firstcheckin() {
+	salt-call state.show_top >> /dev/null 2>&1 # send output to /dev/null because we don't actually care about the ouput
+}
+
+salt_install_module_deps() {
     logCmd "salt-pip install docker --no-index --only-binary=:all: --find-links files/salt_module_deps/docker/"
     logCmd "salt-pip install pymysql --no-index --only-binary=:all: --find-links files/salt_module_deps/pymysql/"
+}
 
+salt_patch_x509_v2() {
 	# this can be removed when https://github.com/saltstack/salt/issues/64195 is resolved
 	if [ $SALTVERSION == "3006.1" ]; then
 		info "Salt version 3006.1 found. Patching /opt/saltstack/salt/lib/python3.10/site-packages/salt/states/x509_v2.py"
 		\cp -v ./files/patch/states/x509_v2.py /opt/saltstack/salt/lib/python3.10/site-packages/salt/states/x509_v2.py
 	fi
-
-}
-
-
-# Run a salt command to generate the minion key
-salt_firstcheckin() {
-	salt-call state.show_top >> /dev/null 2>&1 # send output to /dev/null because we don't actually care about the ouput
 }
 
 # Create an secrets pillar so that passwords survive re-install

From 8093e5ce7c44612225a27515aef4fed0dfbac468 Mon Sep 17 00:00:00 2001
From: Jason Ertel <github@jasonertel.com>
Date: Fri, 1 Sep 2023 13:01:17 -0400
Subject: [PATCH 067/417] use IP to avoid host issues

---
 salt/common/tools/sbin/so-test | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/salt/common/tools/sbin/so-test b/salt/common/tools/sbin/so-test
index 7286a35a8..1758a44bb 100755
--- a/salt/common/tools/sbin/so-test
+++ b/salt/common/tools/sbin/so-test
@@ -11,4 +11,4 @@ set -e
 so-tcpreplay /opt/samples/* 2> /dev/null
 
 # Ingest sample pfsense log entry
-echo "<134>$(date '+%b %d %H:%M:%S') filterlog[31624]: 84,,,1567509287,igb0.244,match,pass,in,4,0x0,,64,0,0,DF,6,tcp,64,192.168.1.1,10.10.10.10,56320,443,0,S,3333585167,,65535,,mss;nop;wscale;nop;nop;TS;sackOK;eol" | nc -uv -w1 localhost 514 > /dev/null 2>&1
+echo "<134>$(date '+%b %d %H:%M:%S') filterlog[31624]: 84,,,1567509287,igb0.244,match,pass,in,4,0x0,,64,0,0,DF,6,tcp,64,192.168.1.1,10.10.10.10,56320,443,0,S,3333585167,,65535,,mss;nop;wscale;nop;nop;TS;sackOK;eol" | nc -uv -w1 127.0.0.1 514 > /dev/null 2>&1

From 07ed93de19a011ddd18ccae0aa3f93ffe1fd5bf0 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Fri, 1 Sep 2023 14:33:32 -0400
Subject: [PATCH 068/417] add elastic agent to desktop

---
 salt/firewall/defaults.yaml | 17 ++++++++++++++---
 salt/top.sls                |  1 +
 2 files changed, 15 insertions(+), 3 deletions(-)

diff --git a/salt/firewall/defaults.yaml b/salt/firewall/defaults.yaml
index 578a242f9..75df49b25 100644
--- a/salt/firewall/defaults.yaml
+++ b/salt/firewall/defaults.yaml
@@ -289,6 +289,11 @@ firewall:
                 - elastic_agent_control
                 - elastic_agent_data
                 - elastic_agent_update
+            desktop:
+              portgroups:
+                - elastic_agent_control
+                - elastic_agent_data
+                - elastic_agent_update
             customhostgroup0:
               portgroups: []
             customhostgroup1:
@@ -467,6 +472,9 @@ firewall:
                 - influxdb
                 - sensoroni
                 - yum
+                - elastic_agent_control
+                - elastic_agent_data
+                - elastic_agent_update
             customhostgroup0:
               portgroups: []
             customhostgroup1:
@@ -658,6 +666,9 @@ firewall:
                 - influxdb
                 - sensoroni
                 - yum
+                - elastic_agent_control
+                - elastic_agent_data
+                - elastic_agent_update
             customhostgroup0:
               portgroups: []
             customhostgroup1:
@@ -857,6 +868,9 @@ firewall:
                 - influxdb
                 - sensoroni
                 - yum
+                - elastic_agent_control
+                - elastic_agent_data
+                - elastic_agent_update
             customhostgroup0:
               portgroups: []
             customhostgroup1:
@@ -1214,9 +1228,6 @@ firewall:
             analyst:
               portgroups:
                 - nginx
-            desktop:
-              portgroups:
-                - yum
             customhostgroup0:
               portgroups: []
             customhostgroup1:
diff --git a/salt/top.sls b/salt/top.sls
index b8ca0f14e..6db19b361 100644
--- a/salt/top.sls
+++ b/salt/top.sls
@@ -268,6 +268,7 @@ base:
     - ssl
     - sensoroni
     - telegraf
+    - elasticfleet.install_agent_grid
 
   'J@desktop:gui:enabled:^[Tt][Rr][Uu][Ee]$ and ( G@saltversion:{{saltversion}} and G@os:OEL )':
     - match: compound

From 335aaa55944ae951153c07b59d3ea2e53aa6c6be Mon Sep 17 00:00:00 2001
From: Jason Ertel <github@jasonertel.com>
Date: Fri, 1 Sep 2023 15:30:53 -0400
Subject: [PATCH 069/417] add additional test modes

---
 setup/so-setup | 19 ++++++++++++++++++-
 1 file changed, 18 insertions(+), 1 deletion(-)

diff --git a/setup/so-setup b/setup/so-setup
index a9c7776c3..99a7c672e 100755
--- a/setup/so-setup
+++ b/setup/so-setup
@@ -183,9 +183,26 @@ if [ -n "$test_profile" ]; then
 		install_type=SEARCHNODE
 		HOSTNAME=search
 		MSRVIP_OFFSET=-1
-	else
+	elif [[ "$test_profile" =~ "-managersearch" ]]; then
+		install_type=MANAGERSEARCH
+	elif [[ "$test_profile" =~ "-heavynode" ]]; then
+		install_type=HEAVYNODE
+		HOSTNAME=sensor
+		MSRVIP_OFFSET=-1
+	elif [[ "$test_profile" =~ "-desktop" ]]; then
+		install_type=DESKTOP
+		MSRVIP_OFFSET=-3
+		is_desktop_grid=true
+	fi
+	
+	if [[ -z "$HOSTNAME" ]]; then
 		HOSTNAME=manager
 	fi
+
+	if [[ "$install_type" =~ "DESKTOP" ]]; then
+		is_desktop=true
+		hostname=desktop
+	fi
 	
 	info "Activating test profile; profile=$test_profile; install_type=$install_type"
 

From 863db14b61b4d691ce38f7d28c2a47dc4fcf9b7b Mon Sep 17 00:00:00 2001
From: Jason Ertel <github@jasonertel.com>
Date: Fri, 1 Sep 2023 16:27:02 -0400
Subject: [PATCH 070/417] add additional test modes

---
 setup/so-setup | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/setup/so-setup b/setup/so-setup
index 99a7c672e..ce13af06b 100755
--- a/setup/so-setup
+++ b/setup/so-setup
@@ -201,7 +201,7 @@ if [ -n "$test_profile" ]; then
 
 	if [[ "$install_type" =~ "DESKTOP" ]]; then
 		is_desktop=true
-		hostname=desktop
+		HOSTNAME=desktop
 	fi
 	
 	info "Activating test profile; profile=$test_profile; install_type=$install_type"

From a11259c6832ce3331f55e62e704caaf6a6624cdb Mon Sep 17 00:00:00 2001
From: Jason Ertel <github@jasonertel.com>
Date: Fri, 1 Sep 2023 17:08:27 -0400
Subject: [PATCH 071/417] add additional test modes

---
 setup/so-setup | 1 +
 1 file changed, 1 insertion(+)

diff --git a/setup/so-setup b/setup/so-setup
index ce13af06b..c6ff27198 100755
--- a/setup/so-setup
+++ b/setup/so-setup
@@ -174,6 +174,7 @@ if [ -n "$test_profile" ]; then
 
 	# The below settings are hardcoded purely for automated testing purposes.
 	TESTING=true
+	is_desktop_grid=false
 	
 	if [[ "$test_profile" =~ "-sensor" ]]; then
 		install_type=SENSOR

From 6efdf1b9d0444ddb9f39127589c7cbba66d4af83 Mon Sep 17 00:00:00 2001
From: Jason Ertel <github@jasonertel.com>
Date: Fri, 1 Sep 2023 17:24:12 -0400
Subject: [PATCH 072/417] add additional test modes

---
 setup/so-functions | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/setup/so-functions b/setup/so-functions
index 4f973d147..efa6c800f 100755
--- a/setup/so-functions
+++ b/setup/so-functions
@@ -101,8 +101,10 @@ desktop_salt_local() {
 		Press the Enter key to reboot.
 	EOM
 
-	whiptail --title "$whiptail_title" --msgbox "$message" 12 75
-	reboot
+	if [[ -z "$TESTING" ]]; then
+		whiptail --title "$whiptail_title" --msgbox "$message" 12 75
+		reboot
+	fi
 	exit 0 
 
 }

From 0aae107155a18b89f49a8f5048ade3af5a49e4d4 Mon Sep 17 00:00:00 2001
From: Jason Ertel <github@jasonertel.com>
Date: Fri, 1 Sep 2023 20:30:53 -0400
Subject: [PATCH 073/417] ensure hostname is set

---
 setup/so-setup | 4 +---
 1 file changed, 1 insertion(+), 3 deletions(-)

diff --git a/setup/so-setup b/setup/so-setup
index c6ff27198..8537aa7c3 100755
--- a/setup/so-setup
+++ b/setup/so-setup
@@ -194,9 +194,7 @@ if [ -n "$test_profile" ]; then
 		install_type=DESKTOP
 		MSRVIP_OFFSET=-3
 		is_desktop_grid=true
-	fi
-	
-	if [[ -z "$HOSTNAME" ]]; then
+	else
 		HOSTNAME=manager
 	fi
 

From 0cf913a7c145c8213fa39176409a77291150f66b Mon Sep 17 00:00:00 2001
From: Jason Ertel <github@jasonertel.com>
Date: Sat, 2 Sep 2023 06:05:37 -0400
Subject: [PATCH 074/417] ensure hostname is set

---
 setup/so-setup | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/setup/so-setup b/setup/so-setup
index 8537aa7c3..7c419fae2 100755
--- a/setup/so-setup
+++ b/setup/so-setup
@@ -174,7 +174,6 @@ if [ -n "$test_profile" ]; then
 
 	# The below settings are hardcoded purely for automated testing purposes.
 	TESTING=true
-	is_desktop_grid=false
 	
 	if [[ "$test_profile" =~ "-sensor" ]]; then
 		install_type=SENSOR
@@ -201,6 +200,9 @@ if [ -n "$test_profile" ]; then
 	if [[ "$install_type" =~ "DESKTOP" ]]; then
 		is_desktop=true
 		HOSTNAME=desktop
+		if [[ -z "$is_desktop_grid" ]]; then
+			is_desktop_grid=false
+		fi
 	fi
 	
 	info "Activating test profile; profile=$test_profile; install_type=$install_type"

From 8e2bed7f91c93542777114325dfecdad7546b3ac Mon Sep 17 00:00:00 2001
From: Jason Ertel <github@jasonertel.com>
Date: Sun, 3 Sep 2023 19:56:40 -0400
Subject: [PATCH 075/417] MS testing

---
 setup/so-setup | 1 +
 1 file changed, 1 insertion(+)

diff --git a/setup/so-setup b/setup/so-setup
index 7c419fae2..c1d92ec62 100755
--- a/setup/so-setup
+++ b/setup/so-setup
@@ -185,6 +185,7 @@ if [ -n "$test_profile" ]; then
 		MSRVIP_OFFSET=-1
 	elif [[ "$test_profile" =~ "-managersearch" ]]; then
 		install_type=MANAGERSEARCH
+		HOSTNAME=manager
 	elif [[ "$test_profile" =~ "-heavynode" ]]; then
 		install_type=HEAVYNODE
 		HOSTNAME=sensor

From cf19c8f8c2fa88adf5deb26ee1c466e332622f0e Mon Sep 17 00:00:00 2001
From: Wes <wlambertts@gmail.com>
Date: Tue, 5 Sep 2023 13:43:41 +0000
Subject: [PATCH 076/417] Remove templates

---
 .../logs-elastic_agent.apm_server@custom.json |   12 -
 ...logs-elastic_agent.apm_server@package.json |  329 ---
 .../logs-elastic_agent.auditbeat@custom.json  |   12 -
 .../logs-elastic_agent.auditbeat@package.json |  329 ---
 .../logs-elastic_agent.cloudbeat@custom.json  |   12 -
 .../logs-elastic_agent.cloudbeat@package.json |  339 ---
 ...lastic_agent.endpoint_security@custom.json |   12 -
 ...astic_agent.endpoint_security@package.json |  329 ---
 .../logs-elastic_agent.filebeat@custom.json   |   12 -
 .../logs-elastic_agent.filebeat@package.json  |  329 ---
 ...ogs-elastic_agent.fleet_server@custom.json |   12 -
 ...gs-elastic_agent.fleet_server@package.json |  329 ---
 .../logs-elastic_agent.heartbeat@custom.json  |   12 -
 .../logs-elastic_agent.heartbeat@package.json |  329 ---
 .../logs-elastic_agent.metricbeat@custom.json |   12 -
 ...logs-elastic_agent.metricbeat@package.json |  329 ---
 ...logs-elastic_agent.osquerybeat@custom.json |   12 -
 ...ogs-elastic_agent.osquerybeat@package.json |  329 ---
 .../logs-elastic_agent.packetbeat@custom.json |   12 -
 ...logs-elastic_agent.packetbeat@package.json |  322 ---
 .../logs-system.application@custom.json       |   12 -
 .../logs-system.application@package.json      |  952 ------
 .../logs-system.auth@custom.json              |   12 -
 .../logs-system.auth@package.json             |  530 ----
 .../logs-system.security@custom.json          |   12 -
 .../logs-system.security@package.json         | 1840 ------------
 .../logs-system.syslog@custom.json            |   12 -
 .../logs-system.syslog@package.json           |  327 ---
 .../logs-system.system@custom.json            |   12 -
 .../logs-system.system@package.json           |  986 -------
 .../logs-windows.forwarded@custom.json        |   12 -
 .../logs-windows.forwarded@package.json       | 2544 -----------------
 .../logs-windows.powershell@custom.json       |   12 -
 .../logs-windows.powershell@package.json      | 1335 ---------
 ...windows.powershell_operational@custom.json |   12 -
 ...indows.powershell_operational@package.json | 1334 ---------
 ...ogs-windows.sysmon_operational@custom.json |   12 -
 ...gs-windows.sysmon_operational@package.json | 1752 ------------
 38 files changed, 15121 deletions(-)
 delete mode 100644 salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.apm_server@custom.json
 delete mode 100644 salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.apm_server@package.json
 delete mode 100644 salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.auditbeat@custom.json
 delete mode 100644 salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.auditbeat@package.json
 delete mode 100644 salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.cloudbeat@custom.json
 delete mode 100644 salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.cloudbeat@package.json
 delete mode 100644 salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.endpoint_security@custom.json
 delete mode 100644 salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.endpoint_security@package.json
 delete mode 100644 salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.filebeat@custom.json
 delete mode 100644 salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.filebeat@package.json
 delete mode 100644 salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.fleet_server@custom.json
 delete mode 100644 salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.fleet_server@package.json
 delete mode 100644 salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.heartbeat@custom.json
 delete mode 100644 salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.heartbeat@package.json
 delete mode 100644 salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.metricbeat@custom.json
 delete mode 100644 salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.metricbeat@package.json
 delete mode 100644 salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.osquerybeat@custom.json
 delete mode 100644 salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.osquerybeat@package.json
 delete mode 100644 salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.packetbeat@custom.json
 delete mode 100644 salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.packetbeat@package.json
 delete mode 100644 salt/elasticsearch/templates/component/elastic-agent/logs-system.application@custom.json
 delete mode 100644 salt/elasticsearch/templates/component/elastic-agent/logs-system.application@package.json
 delete mode 100644 salt/elasticsearch/templates/component/elastic-agent/logs-system.auth@custom.json
 delete mode 100644 salt/elasticsearch/templates/component/elastic-agent/logs-system.auth@package.json
 delete mode 100644 salt/elasticsearch/templates/component/elastic-agent/logs-system.security@custom.json
 delete mode 100644 salt/elasticsearch/templates/component/elastic-agent/logs-system.security@package.json
 delete mode 100644 salt/elasticsearch/templates/component/elastic-agent/logs-system.syslog@custom.json
 delete mode 100644 salt/elasticsearch/templates/component/elastic-agent/logs-system.syslog@package.json
 delete mode 100644 salt/elasticsearch/templates/component/elastic-agent/logs-system.system@custom.json
 delete mode 100644 salt/elasticsearch/templates/component/elastic-agent/logs-system.system@package.json
 delete mode 100644 salt/elasticsearch/templates/component/elastic-agent/logs-windows.forwarded@custom.json
 delete mode 100644 salt/elasticsearch/templates/component/elastic-agent/logs-windows.forwarded@package.json
 delete mode 100644 salt/elasticsearch/templates/component/elastic-agent/logs-windows.powershell@custom.json
 delete mode 100644 salt/elasticsearch/templates/component/elastic-agent/logs-windows.powershell@package.json
 delete mode 100644 salt/elasticsearch/templates/component/elastic-agent/logs-windows.powershell_operational@custom.json
 delete mode 100644 salt/elasticsearch/templates/component/elastic-agent/logs-windows.powershell_operational@package.json
 delete mode 100644 salt/elasticsearch/templates/component/elastic-agent/logs-windows.sysmon_operational@custom.json
 delete mode 100644 salt/elasticsearch/templates/component/elastic-agent/logs-windows.sysmon_operational@package.json

diff --git a/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.apm_server@custom.json b/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.apm_server@custom.json
deleted file mode 100644
index fe77af1db..000000000
--- a/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.apm_server@custom.json
+++ /dev/null
@@ -1,12 +0,0 @@
-{
-  "template": {
-    "settings": {}
-  },
-  "_meta": {
-    "package": {
-      "name": "elastic_agent"
-    },
-    "managed_by": "fleet",
-    "managed": true
-  }
-}
diff --git a/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.apm_server@package.json b/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.apm_server@package.json
deleted file mode 100644
index 919763caa..000000000
--- a/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.apm_server@package.json
+++ /dev/null
@@ -1,329 +0,0 @@
-        {"template": {
-          "settings": {
-            "index": {
-              "lifecycle": {
-                "name": "logs"
-              },
-              "codec": "best_compression",
-              "default_pipeline": "logs-elastic_agent.apm_server-1.7.0",
-              "mapping": {
-                "total_fields": {
-                  "limit": "10000"
-                }
-              },
-              "query": {
-                "default_field": [
-                  "cloud.account.id",
-                  "cloud.availability_zone",
-                  "cloud.instance.id",
-                  "cloud.instance.name",
-                  "cloud.machine.type",
-                  "cloud.provider",
-                  "cloud.region",
-                  "cloud.project.id",
-                  "cloud.image.id",
-                  "container.id",
-                  "container.image.name",
-                  "container.name",
-                  "host.architecture",
-                  "host.hostname",
-                  "host.id",
-                  "host.mac",
-                  "host.name",
-                  "host.os.family",
-                  "host.os.kernel",
-                  "host.os.name",
-                  "host.os.platform",
-                  "host.os.version",
-                  "host.os.build",
-                  "host.os.codename",
-                  "host.type",
-                  "ecs.version",
-                  "agent.build.original",
-                  "agent.ephemeral_id",
-                  "agent.id",
-                  "agent.name",
-                  "agent.type",
-                  "agent.version",
-                  "log.level",
-                  "message",
-                  "elastic_agent.id",
-                  "elastic_agent.process",
-                  "elastic_agent.version"
-                ]
-              }
-            }
-          },
-          "mappings": {
-            "dynamic": false,
-            "dynamic_templates": [
-              {
-                "container.labels": {
-                  "path_match": "container.labels.*",
-                  "mapping": {
-                    "type": "keyword"
-                  },
-                  "match_mapping_type": "string"
-                }
-              }
-            ],
-            "properties": {
-              "cloud": {
-                "properties": {
-                  "availability_zone": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "image": {
-                    "properties": {
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "instance": {
-                    "properties": {
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "provider": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "machine": {
-                    "properties": {
-                      "type": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "project": {
-                    "properties": {
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "region": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "account": {
-                    "properties": {
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  }
-                }
-              },
-              "container": {
-                "properties": {
-                  "image": {
-                    "properties": {
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "agent": {
-                "properties": {
-                  "build": {
-                    "properties": {
-                      "original": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "ephemeral_id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "type": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "version": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "@timestamp": {
-                "type": "date"
-              },
-              "ecs": {
-                "properties": {
-                  "version": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "log": {
-                "properties": {
-                  "level": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "data_stream": {
-                "properties": {
-                  "namespace": {
-                    "type": "constant_keyword"
-                  },
-                  "type": {
-                    "type": "constant_keyword"
-                  },
-                  "dataset": {
-                    "type": "constant_keyword"
-                  }
-                }
-              },
-              "host": {
-                "properties": {
-                  "hostname": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "os": {
-                    "properties": {
-                      "build": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "kernel": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "codename": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword",
-                        "fields": {
-                          "text": {
-                            "type": "text"
-                          }
-                        }
-                      },
-                      "family": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "version": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "platform": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "domain": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "ip": {
-                    "type": "ip"
-                  },
-                  "containerized": {
-                    "type": "boolean"
-                  },
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "type": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "mac": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "architecture": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "elastic_agent": {
-                "properties": {
-                  "process": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "version": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "snapshot": {
-                    "type": "boolean"
-                  }
-                }
-              },
-              "event": {
-                "properties": {
-                  "dataset": {
-                    "type": "constant_keyword"
-                  }
-                }
-              },
-              "message": {
-                "type": "text"
-              }
-            }
-          }
-        },
-        "_meta": {
-          "package": {
-            "name": "elastic_agent"
-          },
-          "managed_by": "fleet",
-          "managed": true
-        }
-      }
diff --git a/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.auditbeat@custom.json b/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.auditbeat@custom.json
deleted file mode 100644
index fe77af1db..000000000
--- a/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.auditbeat@custom.json
+++ /dev/null
@@ -1,12 +0,0 @@
-{
-  "template": {
-    "settings": {}
-  },
-  "_meta": {
-    "package": {
-      "name": "elastic_agent"
-    },
-    "managed_by": "fleet",
-    "managed": true
-  }
-}
diff --git a/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.auditbeat@package.json b/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.auditbeat@package.json
deleted file mode 100644
index 175ad4431..000000000
--- a/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.auditbeat@package.json
+++ /dev/null
@@ -1,329 +0,0 @@
-        {"template": {
-          "settings": {
-            "index": {
-              "lifecycle": {
-                "name": "logs"
-              },
-              "codec": "best_compression",
-              "default_pipeline": "logs-elastic_agent.auditbeat-1.7.0",
-              "mapping": {
-                "total_fields": {
-                  "limit": "10000"
-                }
-              },
-              "query": {
-                "default_field": [
-                  "cloud.account.id",
-                  "cloud.availability_zone",
-                  "cloud.instance.id",
-                  "cloud.instance.name",
-                  "cloud.machine.type",
-                  "cloud.provider",
-                  "cloud.region",
-                  "cloud.project.id",
-                  "cloud.image.id",
-                  "container.id",
-                  "container.image.name",
-                  "container.name",
-                  "host.architecture",
-                  "host.hostname",
-                  "host.id",
-                  "host.mac",
-                  "host.name",
-                  "host.os.family",
-                  "host.os.kernel",
-                  "host.os.name",
-                  "host.os.platform",
-                  "host.os.version",
-                  "host.os.build",
-                  "host.os.codename",
-                  "host.type",
-                  "ecs.version",
-                  "agent.build.original",
-                  "agent.ephemeral_id",
-                  "agent.id",
-                  "agent.name",
-                  "agent.type",
-                  "agent.version",
-                  "log.level",
-                  "message",
-                  "elastic_agent.id",
-                  "elastic_agent.process",
-                  "elastic_agent.version"
-                ]
-              }
-            }
-          },
-          "mappings": {
-            "dynamic": false,
-            "dynamic_templates": [
-              {
-                "container.labels": {
-                  "path_match": "container.labels.*",
-                  "mapping": {
-                    "type": "keyword"
-                  },
-                  "match_mapping_type": "string"
-                }
-              }
-            ],
-            "properties": {
-              "cloud": {
-                "properties": {
-                  "availability_zone": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "image": {
-                    "properties": {
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "instance": {
-                    "properties": {
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "provider": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "machine": {
-                    "properties": {
-                      "type": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "project": {
-                    "properties": {
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "region": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "account": {
-                    "properties": {
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  }
-                }
-              },
-              "container": {
-                "properties": {
-                  "image": {
-                    "properties": {
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "agent": {
-                "properties": {
-                  "build": {
-                    "properties": {
-                      "original": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "ephemeral_id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "type": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "version": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "@timestamp": {
-                "type": "date"
-              },
-              "ecs": {
-                "properties": {
-                  "version": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "log": {
-                "properties": {
-                  "level": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "data_stream": {
-                "properties": {
-                  "namespace": {
-                    "type": "constant_keyword"
-                  },
-                  "type": {
-                    "type": "constant_keyword"
-                  },
-                  "dataset": {
-                    "type": "constant_keyword"
-                  }
-                }
-              },
-              "host": {
-                "properties": {
-                  "hostname": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "os": {
-                    "properties": {
-                      "build": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "kernel": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "codename": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword",
-                        "fields": {
-                          "text": {
-                            "type": "text"
-                          }
-                        }
-                      },
-                      "family": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "version": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "platform": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "domain": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "ip": {
-                    "type": "ip"
-                  },
-                  "containerized": {
-                    "type": "boolean"
-                  },
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "type": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "mac": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "architecture": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "elastic_agent": {
-                "properties": {
-                  "process": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "version": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "snapshot": {
-                    "type": "boolean"
-                  }
-                }
-              },
-              "event": {
-                "properties": {
-                  "dataset": {
-                    "type": "constant_keyword"
-                  }
-                }
-              },
-              "message": {
-                "type": "text"
-              }
-            }
-          }
-        },
-        "_meta": {
-          "package": {
-            "name": "elastic_agent"
-          },
-          "managed_by": "fleet",
-          "managed": true
-        }
-      }
diff --git a/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.cloudbeat@custom.json b/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.cloudbeat@custom.json
deleted file mode 100644
index fe77af1db..000000000
--- a/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.cloudbeat@custom.json
+++ /dev/null
@@ -1,12 +0,0 @@
-{
-  "template": {
-    "settings": {}
-  },
-  "_meta": {
-    "package": {
-      "name": "elastic_agent"
-    },
-    "managed_by": "fleet",
-    "managed": true
-  }
-}
diff --git a/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.cloudbeat@package.json b/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.cloudbeat@package.json
deleted file mode 100644
index a96480471..000000000
--- a/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.cloudbeat@package.json
+++ /dev/null
@@ -1,339 +0,0 @@
-        {"template": {
-          "settings": {
-            "index": {
-              "lifecycle": {
-                "name": "logs"
-              },
-              "codec": "best_compression",
-              "default_pipeline": "logs-elastic_agent.cloudbeat-1.7.0",
-              "mapping": {
-                "total_fields": {
-                  "limit": "10000"
-                }
-              },
-              "query": {
-                "default_field": [
-                  "cloud.account.id",
-                  "cloud.availability_zone",
-                  "cloud.instance.id",
-                  "cloud.instance.name",
-                  "cloud.machine.type",
-                  "cloud.provider",
-                  "cloud.region",
-                  "cloud.project.id",
-                  "cloud.image.id",
-                  "container.id",
-                  "container.image.name",
-                  "container.name",
-                  "host.architecture",
-                  "host.hostname",
-                  "host.id",
-                  "host.mac",
-                  "host.name",
-                  "host.os.family",
-                  "host.os.kernel",
-                  "host.os.name",
-                  "host.os.platform",
-                  "host.os.version",
-                  "host.os.build",
-                  "host.os.codename",
-                  "host.type",
-                  "ecs.version",
-                  "agent.build.original",
-                  "agent.ephemeral_id",
-                  "agent.id",
-                  "agent.name",
-                  "agent.type",
-                  "agent.version",
-                  "log.level",
-                  "message",
-                  "decision_id",
-                  "elastic_agent.id",
-                  "elastic_agent.process",
-                  "elastic_agent.version"
-                ]
-              }
-            }
-          },
-          "mappings": {
-            "dynamic": false,
-            "dynamic_templates": [
-              {
-                "container.labels": {
-                  "path_match": "container.labels.*",
-                  "mapping": {
-                    "type": "keyword"
-                  },
-                  "match_mapping_type": "string"
-                }
-              }
-            ],
-            "properties": {
-              "container": {
-                "properties": {
-                  "image": {
-                    "properties": {
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "agent": {
-                "properties": {
-                  "build": {
-                    "properties": {
-                      "original": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "ephemeral_id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "type": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "version": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "log": {
-                "properties": {
-                  "level": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "elastic_agent": {
-                "properties": {
-                  "process": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "version": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "snapshot": {
-                    "type": "boolean"
-                  }
-                }
-              },
-              "message": {
-                "type": "match_only_text"
-              },
-              "cloud": {
-                "properties": {
-                  "availability_zone": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "image": {
-                    "properties": {
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "instance": {
-                    "properties": {
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "provider": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "machine": {
-                    "properties": {
-                      "type": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "project": {
-                    "properties": {
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "region": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "account": {
-                    "properties": {
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  }
-                }
-              },
-              "result": {
-                "type": "object"
-              },
-              "input": {
-                "type": "object"
-              },
-              "@timestamp": {
-                "type": "date"
-              },
-              "ecs": {
-                "properties": {
-                  "version": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "decision_id": {
-                "type": "text"
-              },
-              "data_stream": {
-                "properties": {
-                  "namespace": {
-                    "type": "constant_keyword"
-                  },
-                  "type": {
-                    "type": "constant_keyword"
-                  },
-                  "dataset": {
-                    "type": "constant_keyword"
-                  }
-                }
-              },
-              "host": {
-                "properties": {
-                  "hostname": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "os": {
-                    "properties": {
-                      "build": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "kernel": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "codename": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword",
-                        "fields": {
-                          "text": {
-                            "type": "text"
-                          }
-                        }
-                      },
-                      "family": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "version": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "platform": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "domain": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "ip": {
-                    "type": "ip"
-                  },
-                  "containerized": {
-                    "type": "boolean"
-                  },
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "type": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "mac": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "architecture": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "event": {
-                "properties": {
-                  "dataset": {
-                    "type": "constant_keyword"
-                  }
-                }
-              }
-            }
-          }
-        },
-        "_meta": {
-          "package": {
-            "name": "elastic_agent"
-          },
-          "managed_by": "fleet",
-          "managed": true
-        }
-      }
diff --git a/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.endpoint_security@custom.json b/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.endpoint_security@custom.json
deleted file mode 100644
index fe77af1db..000000000
--- a/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.endpoint_security@custom.json
+++ /dev/null
@@ -1,12 +0,0 @@
-{
-  "template": {
-    "settings": {}
-  },
-  "_meta": {
-    "package": {
-      "name": "elastic_agent"
-    },
-    "managed_by": "fleet",
-    "managed": true
-  }
-}
diff --git a/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.endpoint_security@package.json b/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.endpoint_security@package.json
deleted file mode 100644
index 5f16d18de..000000000
--- a/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.endpoint_security@package.json
+++ /dev/null
@@ -1,329 +0,0 @@
-        {"template": {
-          "settings": {
-            "index": {
-              "lifecycle": {
-                "name": "logs"
-              },
-              "codec": "best_compression",
-              "default_pipeline": "logs-elastic_agent.endpoint_security-1.7.0",
-              "mapping": {
-                "total_fields": {
-                  "limit": "10000"
-                }
-              },
-              "query": {
-                "default_field": [
-                  "cloud.account.id",
-                  "cloud.availability_zone",
-                  "cloud.instance.id",
-                  "cloud.instance.name",
-                  "cloud.machine.type",
-                  "cloud.provider",
-                  "cloud.region",
-                  "cloud.project.id",
-                  "cloud.image.id",
-                  "container.id",
-                  "container.image.name",
-                  "container.name",
-                  "host.architecture",
-                  "host.hostname",
-                  "host.id",
-                  "host.mac",
-                  "host.name",
-                  "host.os.family",
-                  "host.os.kernel",
-                  "host.os.name",
-                  "host.os.platform",
-                  "host.os.version",
-                  "host.os.build",
-                  "host.os.codename",
-                  "host.type",
-                  "ecs.version",
-                  "agent.build.original",
-                  "agent.ephemeral_id",
-                  "agent.id",
-                  "agent.name",
-                  "agent.type",
-                  "agent.version",
-                  "log.level",
-                  "message",
-                  "elastic_agent.id",
-                  "elastic_agent.process",
-                  "elastic_agent.version"
-                ]
-              }
-            }
-          },
-          "mappings": {
-            "dynamic": false,
-            "dynamic_templates": [
-              {
-                "container.labels": {
-                  "path_match": "container.labels.*",
-                  "mapping": {
-                    "type": "keyword"
-                  },
-                  "match_mapping_type": "string"
-                }
-              }
-            ],
-            "properties": {
-              "cloud": {
-                "properties": {
-                  "availability_zone": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "image": {
-                    "properties": {
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "instance": {
-                    "properties": {
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "provider": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "machine": {
-                    "properties": {
-                      "type": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "project": {
-                    "properties": {
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "region": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "account": {
-                    "properties": {
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  }
-                }
-              },
-              "container": {
-                "properties": {
-                  "image": {
-                    "properties": {
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "agent": {
-                "properties": {
-                  "build": {
-                    "properties": {
-                      "original": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "ephemeral_id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "type": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "version": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "@timestamp": {
-                "type": "date"
-              },
-              "ecs": {
-                "properties": {
-                  "version": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "log": {
-                "properties": {
-                  "level": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "data_stream": {
-                "properties": {
-                  "namespace": {
-                    "type": "constant_keyword"
-                  },
-                  "type": {
-                    "type": "constant_keyword"
-                  },
-                  "dataset": {
-                    "type": "constant_keyword"
-                  }
-                }
-              },
-              "host": {
-                "properties": {
-                  "hostname": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "os": {
-                    "properties": {
-                      "build": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "kernel": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "codename": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword",
-                        "fields": {
-                          "text": {
-                            "type": "text"
-                          }
-                        }
-                      },
-                      "family": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "version": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "platform": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "domain": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "ip": {
-                    "type": "ip"
-                  },
-                  "containerized": {
-                    "type": "boolean"
-                  },
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "type": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "mac": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "architecture": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "elastic_agent": {
-                "properties": {
-                  "process": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "version": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "snapshot": {
-                    "type": "boolean"
-                  }
-                }
-              },
-              "event": {
-                "properties": {
-                  "dataset": {
-                    "type": "constant_keyword"
-                  }
-                }
-              },
-              "message": {
-                "type": "text"
-              }
-            }
-          }
-        },
-        "_meta": {
-          "package": {
-            "name": "elastic_agent"
-          },
-          "managed_by": "fleet",
-          "managed": true
-        }
-      }
diff --git a/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.filebeat@custom.json b/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.filebeat@custom.json
deleted file mode 100644
index fe77af1db..000000000
--- a/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.filebeat@custom.json
+++ /dev/null
@@ -1,12 +0,0 @@
-{
-  "template": {
-    "settings": {}
-  },
-  "_meta": {
-    "package": {
-      "name": "elastic_agent"
-    },
-    "managed_by": "fleet",
-    "managed": true
-  }
-}
diff --git a/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.filebeat@package.json b/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.filebeat@package.json
deleted file mode 100644
index f5b1ab12a..000000000
--- a/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.filebeat@package.json
+++ /dev/null
@@ -1,329 +0,0 @@
-        {"template": {
-          "settings": {
-            "index": {
-              "lifecycle": {
-                "name": "logs"
-              },
-              "codec": "best_compression",
-              "default_pipeline": "logs-elastic_agent.filebeat-1.7.0",
-              "mapping": {
-                "total_fields": {
-                  "limit": "10000"
-                }
-              },
-              "query": {
-                "default_field": [
-                  "cloud.account.id",
-                  "cloud.availability_zone",
-                  "cloud.instance.id",
-                  "cloud.instance.name",
-                  "cloud.machine.type",
-                  "cloud.provider",
-                  "cloud.region",
-                  "cloud.project.id",
-                  "cloud.image.id",
-                  "container.id",
-                  "container.image.name",
-                  "container.name",
-                  "host.architecture",
-                  "host.hostname",
-                  "host.id",
-                  "host.mac",
-                  "host.name",
-                  "host.os.family",
-                  "host.os.kernel",
-                  "host.os.name",
-                  "host.os.platform",
-                  "host.os.version",
-                  "host.os.build",
-                  "host.os.codename",
-                  "host.type",
-                  "ecs.version",
-                  "agent.build.original",
-                  "agent.ephemeral_id",
-                  "agent.id",
-                  "agent.name",
-                  "agent.type",
-                  "agent.version",
-                  "log.level",
-                  "message",
-                  "elastic_agent.id",
-                  "elastic_agent.process",
-                  "elastic_agent.version"
-                ]
-              }
-            }
-          },
-          "mappings": {
-            "dynamic": false,
-            "dynamic_templates": [
-              {
-                "container.labels": {
-                  "path_match": "container.labels.*",
-                  "mapping": {
-                    "type": "keyword"
-                  },
-                  "match_mapping_type": "string"
-                }
-              }
-            ],
-            "properties": {
-              "cloud": {
-                "properties": {
-                  "availability_zone": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "image": {
-                    "properties": {
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "instance": {
-                    "properties": {
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "provider": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "machine": {
-                    "properties": {
-                      "type": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "project": {
-                    "properties": {
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "region": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "account": {
-                    "properties": {
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  }
-                }
-              },
-              "container": {
-                "properties": {
-                  "image": {
-                    "properties": {
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "agent": {
-                "properties": {
-                  "build": {
-                    "properties": {
-                      "original": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "ephemeral_id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "type": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "version": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "@timestamp": {
-                "type": "date"
-              },
-              "ecs": {
-                "properties": {
-                  "version": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "log": {
-                "properties": {
-                  "level": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "data_stream": {
-                "properties": {
-                  "namespace": {
-                    "type": "constant_keyword"
-                  },
-                  "type": {
-                    "type": "constant_keyword"
-                  },
-                  "dataset": {
-                    "type": "constant_keyword"
-                  }
-                }
-              },
-              "host": {
-                "properties": {
-                  "hostname": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "os": {
-                    "properties": {
-                      "build": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "kernel": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "codename": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword",
-                        "fields": {
-                          "text": {
-                            "type": "text"
-                          }
-                        }
-                      },
-                      "family": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "version": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "platform": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "domain": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "ip": {
-                    "type": "ip"
-                  },
-                  "containerized": {
-                    "type": "boolean"
-                  },
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "type": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "mac": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "architecture": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "elastic_agent": {
-                "properties": {
-                  "process": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "version": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "snapshot": {
-                    "type": "boolean"
-                  }
-                }
-              },
-              "event": {
-                "properties": {
-                  "dataset": {
-                    "type": "constant_keyword"
-                  }
-                }
-              },
-              "message": {
-                "type": "text"
-              }
-            }
-          }
-        },
-        "_meta": {
-          "package": {
-            "name": "elastic_agent"
-          },
-          "managed_by": "fleet",
-          "managed": true
-        }
-      }
diff --git a/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.fleet_server@custom.json b/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.fleet_server@custom.json
deleted file mode 100644
index fe77af1db..000000000
--- a/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.fleet_server@custom.json
+++ /dev/null
@@ -1,12 +0,0 @@
-{
-  "template": {
-    "settings": {}
-  },
-  "_meta": {
-    "package": {
-      "name": "elastic_agent"
-    },
-    "managed_by": "fleet",
-    "managed": true
-  }
-}
diff --git a/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.fleet_server@package.json b/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.fleet_server@package.json
deleted file mode 100644
index a61d9f7a9..000000000
--- a/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.fleet_server@package.json
+++ /dev/null
@@ -1,329 +0,0 @@
-        {"template": {
-          "settings": {
-            "index": {
-              "lifecycle": {
-                "name": "logs"
-              },
-              "codec": "best_compression",
-              "default_pipeline": "logs-elastic_agent.fleet_server-1.7.0",
-              "mapping": {
-                "total_fields": {
-                  "limit": "10000"
-                }
-              },
-              "query": {
-                "default_field": [
-                  "cloud.account.id",
-                  "cloud.availability_zone",
-                  "cloud.instance.id",
-                  "cloud.instance.name",
-                  "cloud.machine.type",
-                  "cloud.provider",
-                  "cloud.region",
-                  "cloud.project.id",
-                  "cloud.image.id",
-                  "container.id",
-                  "container.image.name",
-                  "container.name",
-                  "host.architecture",
-                  "host.hostname",
-                  "host.id",
-                  "host.mac",
-                  "host.name",
-                  "host.os.family",
-                  "host.os.kernel",
-                  "host.os.name",
-                  "host.os.platform",
-                  "host.os.version",
-                  "host.os.build",
-                  "host.os.codename",
-                  "host.type",
-                  "ecs.version",
-                  "agent.build.original",
-                  "agent.ephemeral_id",
-                  "agent.id",
-                  "agent.name",
-                  "agent.type",
-                  "agent.version",
-                  "log.level",
-                  "message",
-                  "elastic_agent.id",
-                  "elastic_agent.process",
-                  "elastic_agent.version"
-                ]
-              }
-            }
-          },
-          "mappings": {
-            "dynamic": false,
-            "dynamic_templates": [
-              {
-                "container.labels": {
-                  "path_match": "container.labels.*",
-                  "mapping": {
-                    "type": "keyword"
-                  },
-                  "match_mapping_type": "string"
-                }
-              }
-            ],
-            "properties": {
-              "cloud": {
-                "properties": {
-                  "availability_zone": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "image": {
-                    "properties": {
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "instance": {
-                    "properties": {
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "provider": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "machine": {
-                    "properties": {
-                      "type": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "project": {
-                    "properties": {
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "region": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "account": {
-                    "properties": {
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  }
-                }
-              },
-              "container": {
-                "properties": {
-                  "image": {
-                    "properties": {
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "agent": {
-                "properties": {
-                  "build": {
-                    "properties": {
-                      "original": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "ephemeral_id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "type": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "version": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "@timestamp": {
-                "type": "date"
-              },
-              "ecs": {
-                "properties": {
-                  "version": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "log": {
-                "properties": {
-                  "level": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "data_stream": {
-                "properties": {
-                  "namespace": {
-                    "type": "constant_keyword"
-                  },
-                  "type": {
-                    "type": "constant_keyword"
-                  },
-                  "dataset": {
-                    "type": "constant_keyword"
-                  }
-                }
-              },
-              "host": {
-                "properties": {
-                  "hostname": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "os": {
-                    "properties": {
-                      "build": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "kernel": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "codename": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword",
-                        "fields": {
-                          "text": {
-                            "type": "text"
-                          }
-                        }
-                      },
-                      "family": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "version": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "platform": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "domain": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "ip": {
-                    "type": "ip"
-                  },
-                  "containerized": {
-                    "type": "boolean"
-                  },
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "type": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "mac": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "architecture": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "elastic_agent": {
-                "properties": {
-                  "process": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "version": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "snapshot": {
-                    "type": "boolean"
-                  }
-                }
-              },
-              "event": {
-                "properties": {
-                  "dataset": {
-                    "type": "constant_keyword"
-                  }
-                }
-              },
-              "message": {
-                "type": "text"
-              }
-            }
-          }
-        },
-        "_meta": {
-          "package": {
-            "name": "elastic_agent"
-          },
-          "managed_by": "fleet",
-          "managed": true
-        }
-      }
diff --git a/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.heartbeat@custom.json b/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.heartbeat@custom.json
deleted file mode 100644
index fe77af1db..000000000
--- a/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.heartbeat@custom.json
+++ /dev/null
@@ -1,12 +0,0 @@
-{
-  "template": {
-    "settings": {}
-  },
-  "_meta": {
-    "package": {
-      "name": "elastic_agent"
-    },
-    "managed_by": "fleet",
-    "managed": true
-  }
-}
diff --git a/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.heartbeat@package.json b/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.heartbeat@package.json
deleted file mode 100644
index d7e244dc2..000000000
--- a/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.heartbeat@package.json
+++ /dev/null
@@ -1,329 +0,0 @@
-        {"template": {
-          "settings": {
-            "index": {
-              "lifecycle": {
-                "name": "logs"
-              },
-              "codec": "best_compression",
-              "default_pipeline": "logs-elastic_agent.heartbeat-1.7.0",
-              "mapping": {
-                "total_fields": {
-                  "limit": "10000"
-                }
-              },
-              "query": {
-                "default_field": [
-                  "cloud.account.id",
-                  "cloud.availability_zone",
-                  "cloud.instance.id",
-                  "cloud.instance.name",
-                  "cloud.machine.type",
-                  "cloud.provider",
-                  "cloud.region",
-                  "cloud.project.id",
-                  "cloud.image.id",
-                  "container.id",
-                  "container.image.name",
-                  "container.name",
-                  "host.architecture",
-                  "host.hostname",
-                  "host.id",
-                  "host.mac",
-                  "host.name",
-                  "host.os.family",
-                  "host.os.kernel",
-                  "host.os.name",
-                  "host.os.platform",
-                  "host.os.version",
-                  "host.os.build",
-                  "host.os.codename",
-                  "host.type",
-                  "ecs.version",
-                  "agent.build.original",
-                  "agent.ephemeral_id",
-                  "agent.id",
-                  "agent.name",
-                  "agent.type",
-                  "agent.version",
-                  "log.level",
-                  "message",
-                  "elastic_agent.id",
-                  "elastic_agent.process",
-                  "elastic_agent.version"
-                ]
-              }
-            }
-          },
-          "mappings": {
-            "dynamic": false,
-            "dynamic_templates": [
-              {
-                "container.labels": {
-                  "path_match": "container.labels.*",
-                  "mapping": {
-                    "type": "keyword"
-                  },
-                  "match_mapping_type": "string"
-                }
-              }
-            ],
-            "properties": {
-              "cloud": {
-                "properties": {
-                  "availability_zone": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "image": {
-                    "properties": {
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "instance": {
-                    "properties": {
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "provider": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "machine": {
-                    "properties": {
-                      "type": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "project": {
-                    "properties": {
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "region": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "account": {
-                    "properties": {
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  }
-                }
-              },
-              "container": {
-                "properties": {
-                  "image": {
-                    "properties": {
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "agent": {
-                "properties": {
-                  "build": {
-                    "properties": {
-                      "original": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "ephemeral_id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "type": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "version": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "@timestamp": {
-                "type": "date"
-              },
-              "ecs": {
-                "properties": {
-                  "version": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "log": {
-                "properties": {
-                  "level": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "data_stream": {
-                "properties": {
-                  "namespace": {
-                    "type": "constant_keyword"
-                  },
-                  "type": {
-                    "type": "constant_keyword"
-                  },
-                  "dataset": {
-                    "type": "constant_keyword"
-                  }
-                }
-              },
-              "host": {
-                "properties": {
-                  "hostname": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "os": {
-                    "properties": {
-                      "build": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "kernel": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "codename": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword",
-                        "fields": {
-                          "text": {
-                            "type": "text"
-                          }
-                        }
-                      },
-                      "family": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "version": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "platform": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "domain": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "ip": {
-                    "type": "ip"
-                  },
-                  "containerized": {
-                    "type": "boolean"
-                  },
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "type": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "mac": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "architecture": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "elastic_agent": {
-                "properties": {
-                  "process": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "version": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "snapshot": {
-                    "type": "boolean"
-                  }
-                }
-              },
-              "message": {
-                "type": "text"
-              },
-              "event": {
-                "properties": {
-                  "dataset": {
-                    "type": "constant_keyword"
-                  }
-                }
-              }
-            }
-          }
-        },
-        "_meta": {
-          "package": {
-            "name": "elastic_agent"
-          },
-          "managed_by": "fleet",
-          "managed": true
-        }
-      }
diff --git a/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.metricbeat@custom.json b/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.metricbeat@custom.json
deleted file mode 100644
index fe77af1db..000000000
--- a/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.metricbeat@custom.json
+++ /dev/null
@@ -1,12 +0,0 @@
-{
-  "template": {
-    "settings": {}
-  },
-  "_meta": {
-    "package": {
-      "name": "elastic_agent"
-    },
-    "managed_by": "fleet",
-    "managed": true
-  }
-}
diff --git a/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.metricbeat@package.json b/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.metricbeat@package.json
deleted file mode 100644
index 7b0c81283..000000000
--- a/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.metricbeat@package.json
+++ /dev/null
@@ -1,329 +0,0 @@
-        {"template": {
-          "settings": {
-            "index": {
-              "lifecycle": {
-                "name": "logs"
-              },
-              "codec": "best_compression",
-              "default_pipeline": "logs-elastic_agent.metricbeat-1.7.0",
-              "mapping": {
-                "total_fields": {
-                  "limit": "10000"
-                }
-              },
-              "query": {
-                "default_field": [
-                  "cloud.account.id",
-                  "cloud.availability_zone",
-                  "cloud.instance.id",
-                  "cloud.instance.name",
-                  "cloud.machine.type",
-                  "cloud.provider",
-                  "cloud.region",
-                  "cloud.project.id",
-                  "cloud.image.id",
-                  "container.id",
-                  "container.image.name",
-                  "container.name",
-                  "host.architecture",
-                  "host.hostname",
-                  "host.id",
-                  "host.mac",
-                  "host.name",
-                  "host.os.family",
-                  "host.os.kernel",
-                  "host.os.name",
-                  "host.os.platform",
-                  "host.os.version",
-                  "host.os.build",
-                  "host.os.codename",
-                  "host.type",
-                  "ecs.version",
-                  "agent.build.original",
-                  "agent.ephemeral_id",
-                  "agent.id",
-                  "agent.name",
-                  "agent.type",
-                  "agent.version",
-                  "log.level",
-                  "message",
-                  "elastic_agent.id",
-                  "elastic_agent.process",
-                  "elastic_agent.version"
-                ]
-              }
-            }
-          },
-          "mappings": {
-            "dynamic": false,
-            "dynamic_templates": [
-              {
-                "container.labels": {
-                  "path_match": "container.labels.*",
-                  "mapping": {
-                    "type": "keyword"
-                  },
-                  "match_mapping_type": "string"
-                }
-              }
-            ],
-            "properties": {
-              "cloud": {
-                "properties": {
-                  "availability_zone": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "image": {
-                    "properties": {
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "instance": {
-                    "properties": {
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "provider": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "machine": {
-                    "properties": {
-                      "type": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "project": {
-                    "properties": {
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "region": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "account": {
-                    "properties": {
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  }
-                }
-              },
-              "container": {
-                "properties": {
-                  "image": {
-                    "properties": {
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "agent": {
-                "properties": {
-                  "build": {
-                    "properties": {
-                      "original": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "ephemeral_id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "type": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "version": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "@timestamp": {
-                "type": "date"
-              },
-              "ecs": {
-                "properties": {
-                  "version": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "log": {
-                "properties": {
-                  "level": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "data_stream": {
-                "properties": {
-                  "namespace": {
-                    "type": "constant_keyword"
-                  },
-                  "type": {
-                    "type": "constant_keyword"
-                  },
-                  "dataset": {
-                    "type": "constant_keyword"
-                  }
-                }
-              },
-              "host": {
-                "properties": {
-                  "hostname": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "os": {
-                    "properties": {
-                      "build": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "kernel": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "codename": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword",
-                        "fields": {
-                          "text": {
-                            "type": "text"
-                          }
-                        }
-                      },
-                      "family": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "version": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "platform": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "domain": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "ip": {
-                    "type": "ip"
-                  },
-                  "containerized": {
-                    "type": "boolean"
-                  },
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "type": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "mac": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "architecture": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "elastic_agent": {
-                "properties": {
-                  "process": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "version": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "snapshot": {
-                    "type": "boolean"
-                  }
-                }
-              },
-              "event": {
-                "properties": {
-                  "dataset": {
-                    "type": "constant_keyword"
-                  }
-                }
-              },
-              "message": {
-                "type": "text"
-              }
-            }
-          }
-        },
-        "_meta": {
-          "package": {
-            "name": "elastic_agent"
-          },
-          "managed_by": "fleet",
-          "managed": true
-        }
-      }
diff --git a/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.osquerybeat@custom.json b/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.osquerybeat@custom.json
deleted file mode 100644
index fe77af1db..000000000
--- a/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.osquerybeat@custom.json
+++ /dev/null
@@ -1,12 +0,0 @@
-{
-  "template": {
-    "settings": {}
-  },
-  "_meta": {
-    "package": {
-      "name": "elastic_agent"
-    },
-    "managed_by": "fleet",
-    "managed": true
-  }
-}
diff --git a/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.osquerybeat@package.json b/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.osquerybeat@package.json
deleted file mode 100644
index 2a6780e69..000000000
--- a/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.osquerybeat@package.json
+++ /dev/null
@@ -1,329 +0,0 @@
-        {"template": {
-          "settings": {
-            "index": {
-              "lifecycle": {
-                "name": "logs"
-              },
-              "codec": "best_compression",
-              "default_pipeline": "logs-elastic_agent.osquerybeat-1.7.0",
-              "mapping": {
-                "total_fields": {
-                  "limit": "10000"
-                }
-              },
-              "query": {
-                "default_field": [
-                  "cloud.account.id",
-                  "cloud.availability_zone",
-                  "cloud.instance.id",
-                  "cloud.instance.name",
-                  "cloud.machine.type",
-                  "cloud.provider",
-                  "cloud.region",
-                  "cloud.project.id",
-                  "cloud.image.id",
-                  "container.id",
-                  "container.image.name",
-                  "container.name",
-                  "host.architecture",
-                  "host.hostname",
-                  "host.id",
-                  "host.mac",
-                  "host.name",
-                  "host.os.family",
-                  "host.os.kernel",
-                  "host.os.name",
-                  "host.os.platform",
-                  "host.os.version",
-                  "host.os.build",
-                  "host.os.codename",
-                  "host.type",
-                  "ecs.version",
-                  "agent.build.original",
-                  "agent.ephemeral_id",
-                  "agent.id",
-                  "agent.name",
-                  "agent.type",
-                  "agent.version",
-                  "log.level",
-                  "message",
-                  "elastic_agent.id",
-                  "elastic_agent.process",
-                  "elastic_agent.version"
-                ]
-              }
-            }
-          },
-          "mappings": {
-            "dynamic": false,
-            "dynamic_templates": [
-              {
-                "container.labels": {
-                  "path_match": "container.labels.*",
-                  "mapping": {
-                    "type": "keyword"
-                  },
-                  "match_mapping_type": "string"
-                }
-              }
-            ],
-            "properties": {
-              "cloud": {
-                "properties": {
-                  "availability_zone": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "image": {
-                    "properties": {
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "instance": {
-                    "properties": {
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "provider": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "machine": {
-                    "properties": {
-                      "type": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "project": {
-                    "properties": {
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "region": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "account": {
-                    "properties": {
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  }
-                }
-              },
-              "container": {
-                "properties": {
-                  "image": {
-                    "properties": {
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "agent": {
-                "properties": {
-                  "build": {
-                    "properties": {
-                      "original": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "ephemeral_id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "type": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "version": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "@timestamp": {
-                "type": "date"
-              },
-              "ecs": {
-                "properties": {
-                  "version": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "log": {
-                "properties": {
-                  "level": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "data_stream": {
-                "properties": {
-                  "namespace": {
-                    "type": "constant_keyword"
-                  },
-                  "type": {
-                    "type": "constant_keyword"
-                  },
-                  "dataset": {
-                    "type": "constant_keyword"
-                  }
-                }
-              },
-              "host": {
-                "properties": {
-                  "hostname": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "os": {
-                    "properties": {
-                      "build": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "kernel": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "codename": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword",
-                        "fields": {
-                          "text": {
-                            "type": "text"
-                          }
-                        }
-                      },
-                      "family": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "version": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "platform": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "domain": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "ip": {
-                    "type": "ip"
-                  },
-                  "containerized": {
-                    "type": "boolean"
-                  },
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "type": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "mac": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "architecture": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "elastic_agent": {
-                "properties": {
-                  "process": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "version": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "snapshot": {
-                    "type": "boolean"
-                  }
-                }
-              },
-              "event": {
-                "properties": {
-                  "dataset": {
-                    "type": "constant_keyword"
-                  }
-                }
-              },
-              "message": {
-                "type": "text"
-              }
-            }
-          }
-        },
-        "_meta": {
-          "package": {
-            "name": "elastic_agent"
-          },
-          "managed_by": "fleet",
-          "managed": true
-        }
-      }
diff --git a/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.packetbeat@custom.json b/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.packetbeat@custom.json
deleted file mode 100644
index fe77af1db..000000000
--- a/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.packetbeat@custom.json
+++ /dev/null
@@ -1,12 +0,0 @@
-{
-  "template": {
-    "settings": {}
-  },
-  "_meta": {
-    "package": {
-      "name": "elastic_agent"
-    },
-    "managed_by": "fleet",
-    "managed": true
-  }
-}
diff --git a/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.packetbeat@package.json b/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.packetbeat@package.json
deleted file mode 100644
index 973427be1..000000000
--- a/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent.packetbeat@package.json
+++ /dev/null
@@ -1,322 +0,0 @@
-        {"template": {
-          "settings": {
-            "index": {
-              "lifecycle": {
-                "name": "logs"
-              },
-              "codec": "best_compression",
-              "default_pipeline": "logs-elastic_agent.packetbeat-1.7.0",
-              "mapping": {
-                "total_fields": {
-                  "limit": "10000"
-                }
-              },
-              "query": {
-                "default_field": [
-                  "cloud.account.id",
-                  "cloud.availability_zone",
-                  "cloud.instance.id",
-                  "cloud.instance.name",
-                  "cloud.machine.type",
-                  "cloud.provider",
-                  "cloud.region",
-                  "cloud.project.id",
-                  "cloud.image.id",
-                  "container.id",
-                  "container.image.name",
-                  "container.name",
-                  "host.architecture",
-                  "host.hostname",
-                  "host.id",
-                  "host.mac",
-                  "host.name",
-                  "host.os.family",
-                  "host.os.kernel",
-                  "host.os.name",
-                  "host.os.platform",
-                  "host.os.version",
-                  "host.os.build",
-                  "host.os.codename",
-                  "host.type",
-                  "ecs.version",
-                  "agent.build.original",
-                  "agent.ephemeral_id",
-                  "agent.id",
-                  "agent.name",
-                  "agent.type",
-                  "agent.version",
-                  "log.level",
-                  "message",
-                  "elastic_agent.id",
-                  "elastic_agent.process",
-                  "elastic_agent.version"
-                ]
-              }
-            }
-          },
-          "mappings": {
-            "dynamic": false,
-            "dynamic_templates": [
-              {
-                "container.labels": {
-                  "path_match": "container.labels.*",
-                  "mapping": {
-                    "type": "keyword"
-                  },
-                  "match_mapping_type": "string"
-                }
-              }
-            ],
-            "properties": {
-              "cloud": {
-                "properties": {
-                  "availability_zone": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "image": {
-                    "properties": {
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "instance": {
-                    "properties": {
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "provider": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "machine": {
-                    "properties": {
-                      "type": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "project": {
-                    "properties": {
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "region": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "account": {
-                    "properties": {
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  }
-                }
-              },
-              "container": {
-                "properties": {
-                  "image": {
-                    "properties": {
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "agent": {
-                "properties": {
-                  "build": {
-                    "properties": {
-                      "original": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "ephemeral_id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "type": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "version": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "@timestamp": {
-                "type": "date"
-              },
-              "ecs": {
-                "properties": {
-                  "version": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "log": {
-                "properties": {
-                  "level": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "data_stream": {
-                "properties": {
-                  "namespace": {
-                    "type": "constant_keyword"
-                  },
-                  "type": {
-                    "type": "constant_keyword"
-                  },
-                  "dataset": {
-                    "type": "constant_keyword"
-                  }
-                }
-              },
-              "host": {
-                "properties": {
-                  "hostname": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "os": {
-                    "properties": {
-                      "build": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "kernel": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "codename": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword",
-                        "fields": {
-                          "text": {
-                            "type": "text"
-                          }
-                        }
-                      },
-                      "family": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "version": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "platform": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "domain": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "ip": {
-                    "type": "ip"
-                  },
-                  "containerized": {
-                    "type": "boolean"
-                  },
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "type": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "mac": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "architecture": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "elastic_agent": {
-                "properties": {
-                  "process": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "version": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "snapshot": {
-                    "type": "boolean"
-                  }
-                }
-              },
-              "message": {
-                "type": "text"
-              }
-            }
-          }
-        },
-        "_meta": {
-          "package": {
-            "name": "elastic_agent"
-          },
-          "managed_by": "fleet",
-          "managed": true
-        }
-      }
diff --git a/salt/elasticsearch/templates/component/elastic-agent/logs-system.application@custom.json b/salt/elasticsearch/templates/component/elastic-agent/logs-system.application@custom.json
deleted file mode 100644
index fe77af1db..000000000
--- a/salt/elasticsearch/templates/component/elastic-agent/logs-system.application@custom.json
+++ /dev/null
@@ -1,12 +0,0 @@
-{
-  "template": {
-    "settings": {}
-  },
-  "_meta": {
-    "package": {
-      "name": "elastic_agent"
-    },
-    "managed_by": "fleet",
-    "managed": true
-  }
-}
diff --git a/salt/elasticsearch/templates/component/elastic-agent/logs-system.application@package.json b/salt/elasticsearch/templates/component/elastic-agent/logs-system.application@package.json
deleted file mode 100644
index 05741a4f0..000000000
--- a/salt/elasticsearch/templates/component/elastic-agent/logs-system.application@package.json
+++ /dev/null
@@ -1,952 +0,0 @@
-        {"template": {
-          "settings": {
-            "index": {
-              "lifecycle": {
-                "name": "logs"
-              },
-              "codec": "best_compression",
-              "default_pipeline": "logs-system.application-1.6.4",
-              "mapping": {
-                "total_fields": {
-                  "limit": "10000"
-                }
-              },
-              "query": {
-                "default_field": [
-                  "cloud.account.id",
-                  "cloud.availability_zone",
-                  "cloud.instance.id",
-                  "cloud.instance.name",
-                  "cloud.machine.type",
-                  "cloud.provider",
-                  "cloud.region",
-                  "cloud.project.id",
-                  "cloud.image.id",
-                  "container.id",
-                  "container.image.name",
-                  "container.name",
-                  "host.architecture",
-                  "host.hostname",
-                  "host.id",
-                  "host.mac",
-                  "host.name",
-                  "host.os.family",
-                  "host.os.kernel",
-                  "host.os.name",
-                  "host.os.platform",
-                  "host.os.version",
-                  "host.os.build",
-                  "host.os.codename",
-                  "host.type",
-                  "event.code",
-                  "event.original",
-                  "error.message",
-                  "message",
-                  "winlog.api",
-                  "winlog.activity_id",
-                  "winlog.computer_name",
-                  "winlog.event_data.AuthenticationPackageName",
-                  "winlog.event_data.Binary",
-                  "winlog.event_data.BitlockerUserInputTime",
-                  "winlog.event_data.BootMode",
-                  "winlog.event_data.BootType",
-                  "winlog.event_data.BuildVersion",
-                  "winlog.event_data.Company",
-                  "winlog.event_data.CorruptionActionState",
-                  "winlog.event_data.CreationUtcTime",
-                  "winlog.event_data.Description",
-                  "winlog.event_data.Detail",
-                  "winlog.event_data.DeviceName",
-                  "winlog.event_data.DeviceNameLength",
-                  "winlog.event_data.DeviceTime",
-                  "winlog.event_data.DeviceVersionMajor",
-                  "winlog.event_data.DeviceVersionMinor",
-                  "winlog.event_data.DriveName",
-                  "winlog.event_data.DriverName",
-                  "winlog.event_data.DriverNameLength",
-                  "winlog.event_data.DwordVal",
-                  "winlog.event_data.EntryCount",
-                  "winlog.event_data.ExtraInfo",
-                  "winlog.event_data.FailureName",
-                  "winlog.event_data.FailureNameLength",
-                  "winlog.event_data.FileVersion",
-                  "winlog.event_data.FinalStatus",
-                  "winlog.event_data.Group",
-                  "winlog.event_data.IdleImplementation",
-                  "winlog.event_data.IdleStateCount",
-                  "winlog.event_data.ImpersonationLevel",
-                  "winlog.event_data.IntegrityLevel",
-                  "winlog.event_data.IpAddress",
-                  "winlog.event_data.IpPort",
-                  "winlog.event_data.KeyLength",
-                  "winlog.event_data.LastBootGood",
-                  "winlog.event_data.LastShutdownGood",
-                  "winlog.event_data.LmPackageName",
-                  "winlog.event_data.LogonGuid",
-                  "winlog.event_data.LogonId",
-                  "winlog.event_data.LogonProcessName",
-                  "winlog.event_data.LogonType",
-                  "winlog.event_data.MajorVersion",
-                  "winlog.event_data.MaximumPerformancePercent",
-                  "winlog.event_data.MemberName",
-                  "winlog.event_data.MemberSid",
-                  "winlog.event_data.MinimumPerformancePercent",
-                  "winlog.event_data.MinimumThrottlePercent",
-                  "winlog.event_data.MinorVersion",
-                  "winlog.event_data.NewProcessId",
-                  "winlog.event_data.NewProcessName",
-                  "winlog.event_data.NewSchemeGuid",
-                  "winlog.event_data.NewTime",
-                  "winlog.event_data.NominalFrequency",
-                  "winlog.event_data.Number",
-                  "winlog.event_data.OldSchemeGuid",
-                  "winlog.event_data.OldTime",
-                  "winlog.event_data.OriginalFileName",
-                  "winlog.event_data.Path",
-                  "winlog.event_data.PerformanceImplementation",
-                  "winlog.event_data.PreviousCreationUtcTime",
-                  "winlog.event_data.PreviousTime",
-                  "winlog.event_data.PrivilegeList",
-                  "winlog.event_data.ProcessId",
-                  "winlog.event_data.ProcessName",
-                  "winlog.event_data.ProcessPath",
-                  "winlog.event_data.ProcessPid",
-                  "winlog.event_data.Product",
-                  "winlog.event_data.PuaCount",
-                  "winlog.event_data.PuaPolicyId",
-                  "winlog.event_data.QfeVersion",
-                  "winlog.event_data.Reason",
-                  "winlog.event_data.SchemaVersion",
-                  "winlog.event_data.ScriptBlockText",
-                  "winlog.event_data.ServiceName",
-                  "winlog.event_data.ServiceVersion",
-                  "winlog.event_data.ShutdownActionType",
-                  "winlog.event_data.ShutdownEventCode",
-                  "winlog.event_data.ShutdownReason",
-                  "winlog.event_data.Signature",
-                  "winlog.event_data.SignatureStatus",
-                  "winlog.event_data.Signed",
-                  "winlog.event_data.StartTime",
-                  "winlog.event_data.State",
-                  "winlog.event_data.Status",
-                  "winlog.event_data.StopTime",
-                  "winlog.event_data.SubjectDomainName",
-                  "winlog.event_data.SubjectLogonId",
-                  "winlog.event_data.SubjectUserName",
-                  "winlog.event_data.SubjectUserSid",
-                  "winlog.event_data.TSId",
-                  "winlog.event_data.TargetDomainName",
-                  "winlog.event_data.TargetInfo",
-                  "winlog.event_data.TargetLogonGuid",
-                  "winlog.event_data.TargetLogonId",
-                  "winlog.event_data.TargetServerName",
-                  "winlog.event_data.TargetUserName",
-                  "winlog.event_data.TargetUserSid",
-                  "winlog.event_data.TerminalSessionId",
-                  "winlog.event_data.TokenElevationType",
-                  "winlog.event_data.TransmittedServices",
-                  "winlog.event_data.UserSid",
-                  "winlog.event_data.Version",
-                  "winlog.event_data.Workstation",
-                  "winlog.event_data.param1",
-                  "winlog.event_data.param2",
-                  "winlog.event_data.param3",
-                  "winlog.event_data.param4",
-                  "winlog.event_data.param5",
-                  "winlog.event_data.param6",
-                  "winlog.event_data.param7",
-                  "winlog.event_data.param8",
-                  "winlog.event_id",
-                  "winlog.keywords",
-                  "winlog.channel",
-                  "winlog.record_id",
-                  "winlog.related_activity_id",
-                  "winlog.opcode",
-                  "winlog.provider_guid",
-                  "winlog.provider_name",
-                  "winlog.task",
-                  "winlog.user.identifier",
-                  "winlog.user.name",
-                  "winlog.user.domain",
-                  "winlog.user.type"
-                ]
-              }
-            }
-          },
-          "mappings": {
-            "dynamic_templates": [
-              {
-                "container.labels": {
-                  "path_match": "container.labels.*",
-                  "mapping": {
-                    "type": "keyword"
-                  },
-                  "match_mapping_type": "string"
-                }
-              },
-              {
-                "winlog.user_data": {
-                  "path_match": "winlog.user_data.*",
-                  "mapping": {
-                    "type": "keyword"
-                  },
-                  "match_mapping_type": "string"
-                }
-              }
-            ],
-            "properties": {
-              "cloud": {
-                "properties": {
-                  "availability_zone": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "image": {
-                    "properties": {
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "instance": {
-                    "properties": {
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "provider": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "machine": {
-                    "properties": {
-                      "type": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "project": {
-                    "properties": {
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "region": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "account": {
-                    "properties": {
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  }
-                }
-              },
-              "container": {
-                "properties": {
-                  "image": {
-                    "properties": {
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "@timestamp": {
-                "type": "date"
-              },
-              "winlog": {
-                "properties": {
-                  "related_activity_id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "computer_name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "process": {
-                    "properties": {
-                      "pid": {
-                        "type": "long"
-                      },
-                      "thread": {
-                        "properties": {
-                          "id": {
-                            "type": "long"
-                          }
-                        }
-                      }
-                    }
-                  },
-                  "keywords": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "channel": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "event_data": {
-                    "properties": {
-                      "SignatureStatus": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DeviceTime": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ProcessName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "LogonGuid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "OriginalFileName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "BootMode": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Product": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TargetLogonGuid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "FileVersion": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "StopTime": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Status": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "CorruptionActionState": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "KeyLength": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "PreviousCreationUtcTime": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TargetInfo": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ServiceVersion": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "SubjectUserSid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "PerformanceImplementation": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TargetUserSid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Group": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Description": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ShutdownActionType": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DwordVal": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ProcessPid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DeviceVersionMajor": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ScriptBlockText": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TransmittedServices": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "MaximumPerformancePercent": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "NewTime": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "FinalStatus": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "IdleStateCount": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "MajorVersion": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Path": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "SchemaVersion": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TokenElevationType": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "MinorVersion": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "SubjectLogonId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "IdleImplementation": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ProcessPath": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "QfeVersion": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DeviceVersionMinor": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "OldTime": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "IpAddress": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DeviceName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Company": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "PuaPolicyId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "IntegrityLevel": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "LastShutdownGood": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "IpPort": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DriverNameLength": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "LmPackageName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "UserSid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "LastBootGood": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "PuaCount": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Version": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Signed": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "StartTime": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ShutdownEventCode": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "NewProcessName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "FailureNameLength": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ServiceName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "PreviousTime": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "State": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "BootType": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Binary": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ImpersonationLevel": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "MemberName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TargetUserName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Detail": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TerminalSessionId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "MemberSid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DriverName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DeviceNameLength": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "OldSchemeGuid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "CreationUtcTime": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Reason": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ShutdownReason": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TargetServerName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Number": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "BuildVersion": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "SubjectDomainName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "MinimumPerformancePercent": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "LogonId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "LogonProcessName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TSId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TargetDomainName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "PrivilegeList": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "param7": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "param8": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "param5": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "param6": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DriveName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "NewProcessId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "LogonType": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ExtraInfo": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "param3": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "param4": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "param1": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "param2": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TargetLogonId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Workstation": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "SubjectUserName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "FailureName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "NewSchemeGuid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Signature": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "MinimumThrottlePercent": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ProcessId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "EntryCount": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "BitlockerUserInputTime": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "AuthenticationPackageName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "NominalFrequency": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "opcode": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "version": {
-                    "type": "long"
-                  },
-                  "record_id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "event_id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "task": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "provider_guid": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "activity_id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "api": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "provider_name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "user": {
-                    "properties": {
-                      "identifier": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "domain": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "type": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  }
-                }
-              },
-              "data_stream": {
-                "properties": {
-                  "namespace": {
-                    "type": "constant_keyword"
-                  },
-                  "type": {
-                    "type": "constant_keyword"
-                  },
-                  "dataset": {
-                    "type": "constant_keyword"
-                  }
-                }
-              },
-              "host": {
-                "properties": {
-                  "hostname": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "os": {
-                    "properties": {
-                      "build": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "kernel": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "codename": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword",
-                        "fields": {
-                          "text": {
-                            "type": "text"
-                          }
-                        }
-                      },
-                      "family": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "version": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "platform": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "domain": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "ip": {
-                    "type": "ip"
-                  },
-                  "containerized": {
-                    "type": "boolean"
-                  },
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "type": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "mac": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "architecture": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "event": {
-                "properties": {
-                  "ingested": {
-                    "type": "date"
-                  },
-                  "code": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "original": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "created": {
-                    "type": "date"
-                  },
-                  "module": {
-                    "type": "constant_keyword",
-                    "value": "system"
-                  },
-                  "dataset": {
-                    "type": "constant_keyword",
-                    "value": "system.application"
-                  }
-                }
-              },
-              "error": {
-                "properties": {
-                  "message": {
-                    "type": "match_only_text"
-                  }
-                }
-              },
-              "message": {
-                "type": "match_only_text"
-              }
-            }
-          }
-        },
-        "_meta": {
-          "package": {
-            "name": "system"
-          },
-          "managed_by": "fleet",
-          "managed": true
-        }
-      }
diff --git a/salt/elasticsearch/templates/component/elastic-agent/logs-system.auth@custom.json b/salt/elasticsearch/templates/component/elastic-agent/logs-system.auth@custom.json
deleted file mode 100644
index fe77af1db..000000000
--- a/salt/elasticsearch/templates/component/elastic-agent/logs-system.auth@custom.json
+++ /dev/null
@@ -1,12 +0,0 @@
-{
-  "template": {
-    "settings": {}
-  },
-  "_meta": {
-    "package": {
-      "name": "elastic_agent"
-    },
-    "managed_by": "fleet",
-    "managed": true
-  }
-}
diff --git a/salt/elasticsearch/templates/component/elastic-agent/logs-system.auth@package.json b/salt/elasticsearch/templates/component/elastic-agent/logs-system.auth@package.json
deleted file mode 100644
index 51e707850..000000000
--- a/salt/elasticsearch/templates/component/elastic-agent/logs-system.auth@package.json
+++ /dev/null
@@ -1,530 +0,0 @@
-{
-  "template": {
-    "settings": {
-      "index": {
-        "lifecycle": {
-          "name": "logs"
-        },
-        "codec": "best_compression",
-        "default_pipeline": "logs-system.auth-1.6.4",
-        "mapping": {
-          "total_fields": {
-            "limit": "10000"
-          }
-        },
-        "query": {
-          "default_field": [
-            "cloud.account.id",
-            "cloud.availability_zone",
-            "cloud.instance.id",
-            "cloud.instance.name",
-            "cloud.machine.type",
-            "cloud.provider",
-            "cloud.region",
-            "cloud.project.id",
-            "cloud.image.id",
-            "container.id",
-            "container.image.name",
-            "container.name",
-            "host.architecture",
-            "host.hostname",
-            "host.id",
-            "host.mac",
-            "host.name",
-            "host.os.family",
-            "host.os.kernel",
-            "host.os.name",
-            "host.os.platform",
-            "host.os.version",
-            "host.os.build",
-            "host.os.codename",
-            "host.os.full",
-            "host.type",
-            "event.action",
-            "event.category",
-            "event.code",
-            "event.kind",
-            "event.outcome",
-            "event.provider",
-            "event.type",
-            "ecs.version",
-            "error.message",
-            "group.id",
-            "group.name",
-            "message",
-            "process.name",
-            "related.hosts",
-            "related.user",
-            "source.as.organization.name",
-            "source.geo.city_name",
-            "source.geo.continent_name",
-            "source.geo.country_iso_code",
-            "source.geo.country_name",
-            "source.geo.region_iso_code",
-            "source.geo.region_name",
-            "user.effective.name",
-            "user.id",
-            "user.name",
-            "system.auth.ssh.method",
-            "system.auth.ssh.signature",
-            "system.auth.ssh.event",
-            "system.auth.sudo.error",
-            "system.auth.sudo.tty",
-            "system.auth.sudo.pwd",
-            "system.auth.sudo.user",
-            "system.auth.sudo.command",
-            "system.auth.useradd.home",
-            "system.auth.useradd.shell",
-            "version"
-          ]
-        }
-      }
-    },
-    "mappings": {
-      "dynamic_templates": [
-        {
-          "container.labels": {
-            "path_match": "container.labels.*",
-            "mapping": {
-              "type": "keyword"
-            },
-            "match_mapping_type": "string"
-          }
-        }
-      ],
-      "properties": {
-        "container": {
-          "properties": {
-            "image": {
-              "properties": {
-                "name": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                }
-              }
-            },
-            "name": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "id": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            }
-          }
-        },
-        "process": {
-          "properties": {
-            "name": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "pid": {
-              "type": "long"
-            }
-          }
-        },
-        "source": {
-          "properties": {
-            "geo": {
-              "properties": {
-                "continent_name": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "region_iso_code": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "city_name": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "country_iso_code": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "country_name": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "location": {
-                  "type": "geo_point"
-                },
-                "region_name": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                }
-              }
-            },
-            "as": {
-              "properties": {
-                "number": {
-                  "type": "long"
-                },
-                "organization": {
-                  "properties": {
-                    "name": {
-                      "ignore_above": 1024,
-                      "type": "keyword"
-                    }
-                  }
-                }
-              }
-            },
-            "port": {
-              "type": "long"
-            },
-            "ip": {
-              "type": "ip"
-            }
-          }
-        },
-        "error": {
-          "properties": {
-            "message": {
-              "type": "match_only_text"
-            }
-          }
-        },
-        "message": {
-          "type": "match_only_text"
-        },
-        "version": {
-          "ignore_above": 1024,
-          "type": "keyword"
-        },
-        "cloud": {
-          "properties": {
-            "availability_zone": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "image": {
-              "properties": {
-                "id": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                }
-              }
-            },
-            "instance": {
-              "properties": {
-                "name": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "id": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                }
-              }
-            },
-            "provider": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "machine": {
-              "properties": {
-                "type": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                }
-              }
-            },
-            "project": {
-              "properties": {
-                "id": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                }
-              }
-            },
-            "region": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "account": {
-              "properties": {
-                "id": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                }
-              }
-            }
-          }
-        },
-        "@timestamp": {
-          "type": "date"
-        },
-        "system": {
-          "properties": {
-            "auth": {
-              "properties": {
-                "ssh": {
-                  "properties": {
-                    "method": {
-                      "ignore_above": 1024,
-                      "type": "keyword"
-                    },
-                    "dropped_ip": {
-                      "type": "ip"
-                    },
-                    "signature": {
-                      "ignore_above": 1024,
-                      "type": "keyword"
-                    },
-                    "event": {
-                      "ignore_above": 1024,
-                      "type": "keyword"
-                    }
-                  }
-                },
-                "sudo": {
-                  "properties": {
-                    "tty": {
-                      "ignore_above": 1024,
-                      "type": "keyword"
-                    },
-                    "error": {
-                      "ignore_above": 1024,
-                      "type": "keyword"
-                    },
-                    "pwd": {
-                      "ignore_above": 1024,
-                      "type": "keyword"
-                    },
-                    "user": {
-                      "ignore_above": 1024,
-                      "type": "keyword"
-                    },
-                    "command": {
-                      "ignore_above": 1024,
-                      "type": "keyword"
-                    }
-                  }
-                },
-                "useradd": {
-                  "properties": {
-                    "shell": {
-                      "ignore_above": 1024,
-                      "type": "keyword"
-                    },
-                    "home": {
-                      "ignore_above": 1024,
-                      "type": "keyword"
-                    }
-                  }
-                }
-              }
-            }
-          }
-        },
-        "ecs": {
-          "properties": {
-            "version": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            }
-          }
-        },
-        "related": {
-          "properties": {
-            "hosts": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "ip": {
-              "type": "ip"
-            },
-            "user": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            }
-          }
-        },
-        "data_stream": {
-          "properties": {
-            "namespace": {
-              "type": "constant_keyword"
-            },
-            "type": {
-              "type": "constant_keyword",
-              "value": "logs"
-            },
-            "dataset": {
-              "type": "constant_keyword"
-            }
-          }
-        },
-        "host": {
-          "properties": {
-            "hostname": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "os": {
-              "properties": {
-                "build": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "kernel": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "codename": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "name": {
-                  "ignore_above": 1024,
-                  "type": "keyword",
-                  "fields": {
-                    "text": {
-                      "type": "text"
-                    }
-                  }
-                },
-                "family": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "version": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "platform": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "full": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                }
-              }
-            },
-            "domain": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "ip": {
-              "type": "ip"
-            },
-            "containerized": {
-              "type": "boolean"
-            },
-            "name": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "id": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "type": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "mac": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "architecture": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            }
-          }
-        },
-        "event": {
-          "properties": {
-            "sequence": {
-              "type": "long"
-            },
-            "ingested": {
-              "type": "date"
-            },
-            "code": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "provider": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "created": {
-              "type": "date"
-            },
-            "kind": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "module": {
-              "type": "constant_keyword",
-              "value": "system"
-            },
-            "action": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "category": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "type": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "dataset": {
-              "type": "constant_keyword",
-              "value": "system.auth"
-            },
-            "outcome": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            }
-          }
-        },
-        "user": {
-          "properties": {
-            "effective": {
-              "properties": {
-                "name": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                }
-              }
-            },
-            "name": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "id": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            }
-          }
-        },
-        "group": {
-          "properties": {
-            "name": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "id": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            }
-          }
-        }
-      }
-    }
-  },
-  "_meta": {
-    "package": {
-      "name": "system"
-    },
-    "managed_by": "fleet",
-    "managed": true
-  }
-}
diff --git a/salt/elasticsearch/templates/component/elastic-agent/logs-system.security@custom.json b/salt/elasticsearch/templates/component/elastic-agent/logs-system.security@custom.json
deleted file mode 100644
index fe77af1db..000000000
--- a/salt/elasticsearch/templates/component/elastic-agent/logs-system.security@custom.json
+++ /dev/null
@@ -1,12 +0,0 @@
-{
-  "template": {
-    "settings": {}
-  },
-  "_meta": {
-    "package": {
-      "name": "elastic_agent"
-    },
-    "managed_by": "fleet",
-    "managed": true
-  }
-}
diff --git a/salt/elasticsearch/templates/component/elastic-agent/logs-system.security@package.json b/salt/elasticsearch/templates/component/elastic-agent/logs-system.security@package.json
deleted file mode 100644
index a74cd4a70..000000000
--- a/salt/elasticsearch/templates/component/elastic-agent/logs-system.security@package.json
+++ /dev/null
@@ -1,1840 +0,0 @@
-        {"template": {
-          "settings": {
-            "index": {
-              "lifecycle": {
-                "name": "logs"
-              },
-              "codec": "best_compression",
-              "default_pipeline": "logs-system.security-1.6.4",
-              "mapping": {
-                "total_fields": {
-                  "limit": "10000"
-                }
-              },
-              "query": {
-                "default_field": [
-                  "cloud.account.id",
-                  "cloud.availability_zone",
-                  "cloud.instance.id",
-                  "cloud.instance.name",
-                  "cloud.machine.type",
-                  "cloud.provider",
-                  "cloud.region",
-                  "cloud.project.id",
-                  "cloud.image.id",
-                  "container.id",
-                  "container.image.name",
-                  "container.name",
-                  "host.architecture",
-                  "host.hostname",
-                  "host.id",
-                  "host.mac",
-                  "host.name",
-                  "host.os.family",
-                  "host.os.kernel",
-                  "host.os.name",
-                  "host.os.platform",
-                  "host.os.version",
-                  "host.os.build",
-                  "host.os.codename",
-                  "host.type",
-                  "event.action",
-                  "event.category",
-                  "event.code",
-                  "event.kind",
-                  "event.outcome",
-                  "event.provider",
-                  "event.type",
-                  "tags",
-                  "input.type",
-                  "ecs.version",
-                  "group.domain",
-                  "group.id",
-                  "group.name",
-                  "log.file.path",
-                  "log.level",
-                  "message",
-                  "process.args",
-                  "process.command_line",
-                  "process.entity_id",
-                  "process.executable",
-                  "process.name",
-                  "process.parent.executable",
-                  "process.parent.name",
-                  "process.title",
-                  "related.hash",
-                  "related.hosts",
-                  "related.user",
-                  "service.name",
-                  "service.type",
-                  "source.domain",
-                  "user.domain",
-                  "user.id",
-                  "user.name",
-                  "user.effective.domain",
-                  "user.effective.id",
-                  "user.effective.name",
-                  "user.target.group.domain",
-                  "user.target.group.id",
-                  "user.target.group.name",
-                  "user.target.name",
-                  "user.target.domain",
-                  "user.target.id",
-                  "user.changes.name",
-                  "winlog.logon.type",
-                  "winlog.logon.id",
-                  "winlog.logon.failure.reason",
-                  "winlog.logon.failure.status",
-                  "winlog.logon.failure.sub_status",
-                  "winlog.api",
-                  "winlog.activity_id",
-                  "winlog.channel",
-                  "winlog.computer_name",
-                  "winlog.computerObject.domain",
-                  "winlog.computerObject.id",
-                  "winlog.computerObject.name",
-                  "winlog.event_data.AccessGranted",
-                  "winlog.event_data.AccessList",
-                  "winlog.event_data.AccessListDescription",
-                  "winlog.event_data.AccessMask",
-                  "winlog.event_data.AccessMaskDescription",
-                  "winlog.event_data.AccessRemoved",
-                  "winlog.event_data.AccountDomain",
-                  "winlog.event_data.AccountExpires",
-                  "winlog.event_data.AccountName",
-                  "winlog.event_data.AllowedToDelegateTo",
-                  "winlog.event_data.AuditPolicyChanges",
-                  "winlog.event_data.AuditPolicyChangesDescription",
-                  "winlog.event_data.AuditSourceName",
-                  "winlog.event_data.AuthenticationPackageName",
-                  "winlog.event_data.Binary",
-                  "winlog.event_data.BitlockerUserInputTime",
-                  "winlog.event_data.BootMode",
-                  "winlog.event_data.BootType",
-                  "winlog.event_data.BuildVersion",
-                  "winlog.event_data.CallerProcessId",
-                  "winlog.event_data.CallerProcessName",
-                  "winlog.event_data.Category",
-                  "winlog.event_data.CategoryId",
-                  "winlog.event_data.ClientAddress",
-                  "winlog.event_data.ClientName",
-                  "winlog.event_data.CommandLine",
-                  "winlog.event_data.Company",
-                  "winlog.event_data.CorruptionActionState",
-                  "winlog.event_data.CrashOnAuditFailValue",
-                  "winlog.event_data.CreationUtcTime",
-                  "winlog.event_data.Description",
-                  "winlog.event_data.Detail",
-                  "winlog.event_data.DeviceName",
-                  "winlog.event_data.DeviceNameLength",
-                  "winlog.event_data.DeviceTime",
-                  "winlog.event_data.DeviceVersionMajor",
-                  "winlog.event_data.DeviceVersionMinor",
-                  "winlog.event_data.DisplayName",
-                  "winlog.event_data.DomainBehaviorVersion",
-                  "winlog.event_data.DomainName",
-                  "winlog.event_data.DomainPolicyChanged",
-                  "winlog.event_data.DomainSid",
-                  "winlog.event_data.DriveName",
-                  "winlog.event_data.DriverName",
-                  "winlog.event_data.DriverNameLength",
-                  "winlog.event_data.Dummy",
-                  "winlog.event_data.DwordVal",
-                  "winlog.event_data.EntryCount",
-                  "winlog.event_data.EventSourceId",
-                  "winlog.event_data.ExtraInfo",
-                  "winlog.event_data.FailureName",
-                  "winlog.event_data.FailureNameLength",
-                  "winlog.event_data.FailureReason",
-                  "winlog.event_data.FileVersion",
-                  "winlog.event_data.FinalStatus",
-                  "winlog.event_data.Group",
-                  "winlog.event_data.GroupTypeChange",
-                  "winlog.event_data.HandleId",
-                  "winlog.event_data.HomeDirectory",
-                  "winlog.event_data.HomePath",
-                  "winlog.event_data.IdleImplementation",
-                  "winlog.event_data.IdleStateCount",
-                  "winlog.event_data.ImpersonationLevel",
-                  "winlog.event_data.IntegrityLevel",
-                  "winlog.event_data.IpAddress",
-                  "winlog.event_data.IpPort",
-                  "winlog.event_data.KerberosPolicyChange",
-                  "winlog.event_data.KeyLength",
-                  "winlog.event_data.LastBootGood",
-                  "winlog.event_data.LastShutdownGood",
-                  "winlog.event_data.LmPackageName",
-                  "winlog.event_data.LogonGuid",
-                  "winlog.event_data.LogonHours",
-                  "winlog.event_data.LogonId",
-                  "winlog.event_data.LogonID",
-                  "winlog.event_data.LogonProcessName",
-                  "winlog.event_data.LogonType",
-                  "winlog.event_data.MachineAccountQuota",
-                  "winlog.event_data.MajorVersion",
-                  "winlog.event_data.MandatoryLabel",
-                  "winlog.event_data.MaximumPerformancePercent",
-                  "winlog.event_data.MemberName",
-                  "winlog.event_data.MemberSid",
-                  "winlog.event_data.MinimumPerformancePercent",
-                  "winlog.event_data.MinimumThrottlePercent",
-                  "winlog.event_data.MinorVersion",
-                  "winlog.event_data.MixedDomainMode",
-                  "winlog.event_data.NewProcessId",
-                  "winlog.event_data.NewProcessName",
-                  "winlog.event_data.NewSchemeGuid",
-                  "winlog.event_data.NewSd",
-                  "winlog.event_data.NewSdDacl0",
-                  "winlog.event_data.NewSdDacl1",
-                  "winlog.event_data.NewSdDacl2",
-                  "winlog.event_data.NewSdSacl0",
-                  "winlog.event_data.NewSdSacl1",
-                  "winlog.event_data.NewSdSacl2",
-                  "winlog.event_data.NewTargetUserName",
-                  "winlog.event_data.NewTime",
-                  "winlog.event_data.NewUACList",
-                  "winlog.event_data.NewUacValue",
-                  "winlog.event_data.NominalFrequency",
-                  "winlog.event_data.Number",
-                  "winlog.event_data.ObjectName",
-                  "winlog.event_data.ObjectServer",
-                  "winlog.event_data.ObjectType",
-                  "winlog.event_data.OemInformation",
-                  "winlog.event_data.OldSchemeGuid",
-                  "winlog.event_data.OldSd",
-                  "winlog.event_data.OldSdDacl0",
-                  "winlog.event_data.OldSdDacl1",
-                  "winlog.event_data.OldSdDacl2",
-                  "winlog.event_data.OldSdSacl0",
-                  "winlog.event_data.OldSdSacl1",
-                  "winlog.event_data.OldSdSacl2",
-                  "winlog.event_data.OldTargetUserName",
-                  "winlog.event_data.OldTime",
-                  "winlog.event_data.OldUacValue",
-                  "winlog.event_data.OriginalFileName",
-                  "winlog.event_data.PackageName",
-                  "winlog.event_data.PasswordLastSet",
-                  "winlog.event_data.PasswordHistoryLength",
-                  "winlog.event_data.Path",
-                  "winlog.event_data.ParentProcessName",
-                  "winlog.event_data.PerformanceImplementation",
-                  "winlog.event_data.PreviousCreationUtcTime",
-                  "winlog.event_data.PreAuthType",
-                  "winlog.event_data.PreviousTime",
-                  "winlog.event_data.PrimaryGroupId",
-                  "winlog.event_data.PrivilegeList",
-                  "winlog.event_data.ProcessId",
-                  "winlog.event_data.ProcessName",
-                  "winlog.event_data.ProcessPath",
-                  "winlog.event_data.ProcessPid",
-                  "winlog.event_data.Product",
-                  "winlog.event_data.ProfilePath",
-                  "winlog.event_data.PuaCount",
-                  "winlog.event_data.PuaPolicyId",
-                  "winlog.event_data.QfeVersion",
-                  "winlog.event_data.Reason",
-                  "winlog.event_data.ResourceAttributes",
-                  "winlog.event_data.SamAccountName",
-                  "winlog.event_data.SchemaVersion",
-                  "winlog.event_data.ScriptPath",
-                  "winlog.event_data.SidHistory",
-                  "winlog.event_data.ScriptBlockText",
-                  "winlog.event_data.Service",
-                  "winlog.event_data.ServiceAccount",
-                  "winlog.event_data.ServiceFileName",
-                  "winlog.event_data.ServiceName",
-                  "winlog.event_data.ServiceSid",
-                  "winlog.event_data.ServiceStartType",
-                  "winlog.event_data.ServiceType",
-                  "winlog.event_data.ServiceVersion",
-                  "winlog.event_data.SessionName",
-                  "winlog.event_data.ShutdownActionType",
-                  "winlog.event_data.ShutdownEventCode",
-                  "winlog.event_data.ShutdownReason",
-                  "winlog.event_data.SidFilteringEnabled",
-                  "winlog.event_data.Signature",
-                  "winlog.event_data.SignatureStatus",
-                  "winlog.event_data.Signed",
-                  "winlog.event_data.StartTime",
-                  "winlog.event_data.State",
-                  "winlog.event_data.Status",
-                  "winlog.event_data.StatusDescription",
-                  "winlog.event_data.StopTime",
-                  "winlog.event_data.SubCategory",
-                  "winlog.event_data.SubCategoryGuid",
-                  "winlog.event_data.SubcategoryGuid",
-                  "winlog.event_data.SubCategoryId",
-                  "winlog.event_data.SubcategoryId",
-                  "winlog.event_data.SubjectDomainName",
-                  "winlog.event_data.SubjectLogonId",
-                  "winlog.event_data.SubjectUserName",
-                  "winlog.event_data.SubjectUserSid",
-                  "winlog.event_data.SubStatus",
-                  "winlog.event_data.TSId",
-                  "winlog.event_data.TargetDomainName",
-                  "winlog.event_data.TargetInfo",
-                  "winlog.event_data.TargetLogonGuid",
-                  "winlog.event_data.TargetLogonId",
-                  "winlog.event_data.TargetServerName",
-                  "winlog.event_data.TargetSid",
-                  "winlog.event_data.TargetUserName",
-                  "winlog.event_data.TargetUserSid",
-                  "winlog.event_data.TdoAttributes",
-                  "winlog.event_data.TdoDirection",
-                  "winlog.event_data.TdoType",
-                  "winlog.event_data.TerminalSessionId",
-                  "winlog.event_data.TicketEncryptionType",
-                  "winlog.event_data.TicketEncryptionTypeDescription",
-                  "winlog.event_data.TicketOptions",
-                  "winlog.event_data.TicketOptionsDescription",
-                  "winlog.event_data.TokenElevationType",
-                  "winlog.event_data.TransmittedServices",
-                  "winlog.event_data.UserAccountControl",
-                  "winlog.event_data.UserParameters",
-                  "winlog.event_data.UserPrincipalName",
-                  "winlog.event_data.UserSid",
-                  "winlog.event_data.UserWorkstations",
-                  "winlog.event_data.Version",
-                  "winlog.event_data.Workstation",
-                  "winlog.event_data.WorkstationName",
-                  "winlog.event_data.param1",
-                  "winlog.event_data.param2",
-                  "winlog.event_data.param3",
-                  "winlog.event_data.param4",
-                  "winlog.event_data.param5",
-                  "winlog.event_data.param6",
-                  "winlog.event_data.param7",
-                  "winlog.event_data.param8",
-                  "winlog.event_id",
-                  "winlog.keywords",
-                  "winlog.level",
-                  "winlog.outcome",
-                  "winlog.record_id",
-                  "winlog.related_activity_id",
-                  "winlog.opcode",
-                  "winlog.provider_guid",
-                  "winlog.provider_name",
-                  "winlog.task",
-                  "winlog.time_created",
-                  "winlog.trustAttribute",
-                  "winlog.trustDirection",
-                  "winlog.trustType",
-                  "winlog.user_data.BackupPath",
-                  "winlog.user_data.Channel",
-                  "winlog.user_data.SubjectDomainName",
-                  "winlog.user_data.SubjectLogonId",
-                  "winlog.user_data.SubjectUserName",
-                  "winlog.user_data.SubjectUserSid",
-                  "winlog.user_data.xml_name",
-                  "winlog.user.identifier",
-                  "winlog.user.name",
-                  "winlog.user.domain",
-                  "winlog.user.type"
-                ]
-              }
-            }
-          },
-          "mappings": {
-            "dynamic_templates": [
-              {
-                "container.labels": {
-                  "path_match": "container.labels.*",
-                  "mapping": {
-                    "type": "keyword"
-                  },
-                  "match_mapping_type": "string"
-                }
-              }
-            ],
-            "properties": {
-              "container": {
-                "properties": {
-                  "image": {
-                    "properties": {
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "process": {
-                "properties": {
-                  "args": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "parent": {
-                    "properties": {
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "executable": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "pid": {
-                    "type": "long"
-                  },
-                  "args_count": {
-                    "type": "long"
-                  },
-                  "entity_id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "title": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "command_line": {
-                    "ignore_above": 1024,
-                    "type": "wildcard"
-                  },
-                  "executable": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "winlog": {
-                "properties": {
-                  "related_activity_id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "keywords": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "logon": {
-                    "properties": {
-                      "failure": {
-                        "properties": {
-                          "reason": {
-                            "ignore_above": 1024,
-                            "type": "keyword"
-                          },
-                          "sub_status": {
-                            "ignore_above": 1024,
-                            "type": "keyword"
-                          },
-                          "status": {
-                            "ignore_above": 1024,
-                            "type": "keyword"
-                          }
-                        }
-                      },
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "type": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "channel": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "event_data": {
-                    "properties": {
-                      "ProcessName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "LogonGuid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "OriginalFileName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "BootMode": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Product": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "LogonHours": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TargetLogonGuid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "FileVersion": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TicketOptions": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "AllowedToDelegateTo": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TdoAttributes": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "StopTime": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Status": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "AccessMask": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "KeyLength": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ResourceAttributes": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "SessionName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "PasswordHistoryLength": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TargetInfo": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "OldSd": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TargetUserSid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Group": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "PackageName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ShutdownActionType": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DwordVal": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DeviceVersionMajor": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "SidHistory": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TransmittedServices": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "WorkstationName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "SubStatus": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "IdleStateCount": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Path": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "SchemaVersion": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "MinorVersion": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "CrashOnAuditFailValue": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ProcessPath": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DeviceVersionMinor": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "OldTime": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "HandleId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "IpAddress": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "LastShutdownGood": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "IpPort": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DriverNameLength": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "LmPackageName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "UserSid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "LastBootGood": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "AccessListDescription": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "PuaCount": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Version": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "MachineAccountQuota": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "OldUacValue": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "UserParameters": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Signed": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "StartTime": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "SubCategoryId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "OldTargetUserName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "NewUacValue": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "CallerProcessId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ProfilePath": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ServiceName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "State": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "FailureReason": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "BootType": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Binary": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ImpersonationLevel": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "MemberName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TargetUserName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DomainPolicyChanged": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "CategoryId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "PreAuthType": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "AccountDomain": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "MemberSid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DriverName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "NewUACList": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "SubcategoryGuid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ShutdownReason": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "SidFilteringEnabled": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TargetServerName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "AuditPolicyChanges": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Number": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TargetDomainName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "EventSourceId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DriveName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "NewProcessId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "LogonType": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ExtraInfo": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "PrimaryGroupId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ObjectName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TargetLogonId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Workstation": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "PasswordLastSet": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "NewSchemeGuid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "MinimumThrottlePercent": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "GroupTypeChange": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "AccessList": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "AuthenticationPackageName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "NominalFrequency": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "SignatureStatus": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DeviceTime": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DomainSid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ScriptPath": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TicketEncryptionType": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TicketOptionsDescription": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ServiceType": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ObjectServer": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "HomePath": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "UserWorkstations": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "SamAccountName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DomainName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "CorruptionActionState": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "AuditSourceName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "SubCategoryGuid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "PreviousCreationUtcTime": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ServiceVersion": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "AuditPolicyChangesDescription": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "AccessMaskDescription": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "SubjectUserSid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "AccountName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "PerformanceImplementation": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TicketEncryptionTypeDescription": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ServiceAccount": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Description": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ProcessPid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ScriptBlockText": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ObjectType": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "MaximumPerformancePercent": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "KerberosPolicyChange": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "NewTime": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "FinalStatus": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "MajorVersion": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "MandatoryLabel": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "HomeDirectory": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TokenElevationType": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "SubjectLogonId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "IdleImplementation": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "QfeVersion": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "AccountExpires": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ServiceStartType": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "UserPrincipalName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "NewSdSacl1": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Dummy": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "NewSdSacl0": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DeviceName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "NewSdSacl2": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Company": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "PuaPolicyId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "OldSdSacl2": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "IntegrityLevel": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "OldSdSacl1": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "OldSdSacl0": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TargetSid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "NewSd": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "NewTargetUserName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ClientName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "StatusDescription": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "NewSdDacl0": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "NewSdDacl2": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "NewSdDacl1": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DomainBehaviorVersion": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "AccessGranted": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ParentProcessName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "SubcategoryId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "AccessRemoved": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ShutdownEventCode": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "NewProcessName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "FailureNameLength": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "PreviousTime": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "MixedDomainMode": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Detail": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "OldSdDacl1": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "OldSdDacl0": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Category": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TerminalSessionId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "OldSdDacl2": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ClientAddress": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DeviceNameLength": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "OldSchemeGuid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "CreationUtcTime": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "CallerProcessName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TdoType": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Reason": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ServiceFileName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DisplayName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "BuildVersion": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "SubjectDomainName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "MinimumPerformancePercent": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "LogonId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "LogonProcessName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TSId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "PrivilegeList": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "param7": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "param8": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "param5": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "param6": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Service": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TdoDirection": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "param3": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "param4": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "param1": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "param2": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "CommandLine": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "SubjectUserName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "UserAccountControl": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "OemInformation": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "FailureName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Signature": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "SubCategory": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ServiceSid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ProcessId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "EntryCount": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "LogonID": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "BitlockerUserInputTime": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "opcode": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "provider_guid": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "activity_id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "time_created": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "trustDirection": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "api": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "provider_name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "outcome": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "computer_name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "process": {
-                    "properties": {
-                      "pid": {
-                        "type": "long"
-                      },
-                      "thread": {
-                        "properties": {
-                          "id": {
-                            "type": "long"
-                          }
-                        }
-                      }
-                    }
-                  },
-                  "trustAttribute": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "level": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "computerObject": {
-                    "properties": {
-                      "domain": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "user_data": {
-                    "properties": {
-                      "SubjectUserName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "BackupPath": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Channel": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "SubjectDomainName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "SubjectLogonId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "SubjectUserSid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "xml_name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "version": {
-                    "type": "long"
-                  },
-                  "record_id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "event_id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "task": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "trustType": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "user": {
-                    "properties": {
-                      "identifier": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "domain": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "type": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  }
-                }
-              },
-              "log": {
-                "properties": {
-                  "file": {
-                    "properties": {
-                      "path": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "level": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "source": {
-                "properties": {
-                  "port": {
-                    "type": "long"
-                  },
-                  "domain": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "ip": {
-                    "type": "ip"
-                  }
-                }
-              },
-              "message": {
-                "type": "match_only_text"
-              },
-              "tags": {
-                "ignore_above": 1024,
-                "type": "keyword"
-              },
-              "cloud": {
-                "properties": {
-                  "availability_zone": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "image": {
-                    "properties": {
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "instance": {
-                    "properties": {
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "provider": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "machine": {
-                    "properties": {
-                      "type": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "project": {
-                    "properties": {
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "region": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "account": {
-                    "properties": {
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  }
-                }
-              },
-              "input": {
-                "properties": {
-                  "type": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "@timestamp": {
-                "type": "date"
-              },
-              "ecs": {
-                "properties": {
-                  "version": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "related": {
-                "properties": {
-                  "hosts": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "ip": {
-                    "type": "ip"
-                  },
-                  "user": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "hash": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "data_stream": {
-                "properties": {
-                  "namespace": {
-                    "type": "constant_keyword"
-                  },
-                  "type": {
-                    "type": "constant_keyword",
-                    "value": "logs"
-                  },
-                  "dataset": {
-                    "type": "constant_keyword"
-                  }
-                }
-              },
-              "service": {
-                "properties": {
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "type": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "host": {
-                "properties": {
-                  "hostname": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "os": {
-                    "properties": {
-                      "build": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "kernel": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "codename": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword",
-                        "fields": {
-                          "text": {
-                            "type": "text"
-                          }
-                        }
-                      },
-                      "family": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "version": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "platform": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "domain": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "ip": {
-                    "type": "ip"
-                  },
-                  "containerized": {
-                    "type": "boolean"
-                  },
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "type": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "mac": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "architecture": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "event": {
-                "properties": {
-                  "sequence": {
-                    "type": "long"
-                  },
-                  "ingested": {
-                    "type": "date"
-                  },
-                  "code": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "provider": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "created": {
-                    "type": "date"
-                  },
-                  "kind": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "module": {
-                    "type": "constant_keyword",
-                    "value": "system"
-                  },
-                  "action": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "category": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "type": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "dataset": {
-                    "type": "constant_keyword",
-                    "value": "system.security"
-                  },
-                  "outcome": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "user": {
-                "properties": {
-                  "effective": {
-                    "properties": {
-                      "domain": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "domain": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "changes": {
-                    "properties": {
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "target": {
-                    "properties": {
-                      "domain": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "group": {
-                        "properties": {
-                          "domain": {
-                            "ignore_above": 1024,
-                            "type": "keyword"
-                          },
-                          "name": {
-                            "ignore_above": 1024,
-                            "type": "keyword"
-                          },
-                          "id": {
-                            "ignore_above": 1024,
-                            "type": "keyword"
-                          }
-                        }
-                      }
-                    }
-                  }
-                }
-              },
-              "group": {
-                "properties": {
-                  "domain": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              }
-            }
-          }
-        },
-        "_meta": {
-          "package": {
-            "name": "system"
-          },
-          "managed_by": "fleet",
-          "managed": true
-        }
-      }
diff --git a/salt/elasticsearch/templates/component/elastic-agent/logs-system.syslog@custom.json b/salt/elasticsearch/templates/component/elastic-agent/logs-system.syslog@custom.json
deleted file mode 100644
index fe77af1db..000000000
--- a/salt/elasticsearch/templates/component/elastic-agent/logs-system.syslog@custom.json
+++ /dev/null
@@ -1,12 +0,0 @@
-{
-  "template": {
-    "settings": {}
-  },
-  "_meta": {
-    "package": {
-      "name": "elastic_agent"
-    },
-    "managed_by": "fleet",
-    "managed": true
-  }
-}
diff --git a/salt/elasticsearch/templates/component/elastic-agent/logs-system.syslog@package.json b/salt/elasticsearch/templates/component/elastic-agent/logs-system.syslog@package.json
deleted file mode 100644
index 30576a635..000000000
--- a/salt/elasticsearch/templates/component/elastic-agent/logs-system.syslog@package.json
+++ /dev/null
@@ -1,327 +0,0 @@
-{
-  "template": {
-    "settings": {
-      "index": {
-        "lifecycle": {
-          "name": "logs"
-        },
-        "codec": "best_compression",
-        "default_pipeline": "logs-system.syslog-1.6.4",
-        "mapping": {
-          "total_fields": {
-            "limit": "10000"
-          }
-        },
-        "query": {
-          "default_field": [
-            "cloud.account.id",
-            "cloud.availability_zone",
-            "cloud.instance.id",
-            "cloud.instance.name",
-            "cloud.machine.type",
-            "cloud.provider",
-            "cloud.region",
-            "cloud.project.id",
-            "cloud.image.id",
-            "container.id",
-            "container.image.name",
-            "container.name",
-            "host.architecture",
-            "host.hostname",
-            "host.id",
-            "host.mac",
-            "host.name",
-            "host.os.family",
-            "host.os.kernel",
-            "host.os.name",
-            "host.os.platform",
-            "host.os.version",
-            "host.os.build",
-            "host.os.codename",
-            "host.os.full",
-            "host.type",
-            "event.action",
-            "event.category",
-            "event.code",
-            "event.kind",
-            "event.outcome",
-            "event.provider",
-            "event.type",
-            "ecs.version",
-            "message",
-            "process.name"
-          ]
-        }
-      }
-    },
-    "mappings": {
-      "dynamic_templates": [
-        {
-          "container.labels": {
-            "path_match": "container.labels.*",
-            "mapping": {
-              "type": "keyword"
-            },
-            "match_mapping_type": "string"
-          }
-        }
-      ],
-      "properties": {
-        "cloud": {
-          "properties": {
-            "availability_zone": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "image": {
-              "properties": {
-                "id": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                }
-              }
-            },
-            "instance": {
-              "properties": {
-                "name": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "id": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                }
-              }
-            },
-            "provider": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "machine": {
-              "properties": {
-                "type": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                }
-              }
-            },
-            "project": {
-              "properties": {
-                "id": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                }
-              }
-            },
-            "region": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "account": {
-              "properties": {
-                "id": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                }
-              }
-            }
-          }
-        },
-        "container": {
-          "properties": {
-            "image": {
-              "properties": {
-                "name": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                }
-              }
-            },
-            "name": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "id": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            }
-          }
-        },
-        "process": {
-          "properties": {
-            "name": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "pid": {
-              "type": "long"
-            }
-          }
-        },
-        "@timestamp": {
-          "type": "date"
-        },
-        "ecs": {
-          "properties": {
-            "version": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            }
-          }
-        },
-        "data_stream": {
-          "properties": {
-            "namespace": {
-              "type": "constant_keyword"
-            },
-            "type": {
-              "type": "constant_keyword",
-              "value": "logs"
-            },
-            "dataset": {
-              "type": "constant_keyword"
-            }
-          }
-        },
-        "host": {
-          "properties": {
-            "hostname": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "os": {
-              "properties": {
-                "build": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "kernel": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "codename": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "name": {
-                  "ignore_above": 1024,
-                  "type": "keyword",
-                  "fields": {
-                    "text": {
-                      "type": "text"
-                    }
-                  }
-                },
-                "family": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "version": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "platform": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "full": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                }
-              }
-            },
-            "domain": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "ip": {
-              "type": "ip"
-            },
-            "containerized": {
-              "type": "boolean"
-            },
-            "name": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "id": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "type": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "mac": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "architecture": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            }
-          }
-        },
-        "event": {
-          "properties": {
-            "sequence": {
-              "type": "long"
-            },
-            "ingested": {
-              "type": "date"
-            },
-            "code": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "provider": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "created": {
-              "type": "date"
-            },
-            "kind": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "module": {
-              "type": "constant_keyword",
-              "value": "system"
-            },
-            "action": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "category": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "type": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "dataset": {
-              "type": "constant_keyword",
-              "value": "system.syslog"
-            },
-            "outcome": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            }
-          }
-        },
-        "message": {
-          "type": "match_only_text"
-        }
-      }
-    }
-  },
-  "_meta": {
-    "package": {
-      "name": "system"
-    },
-    "managed_by": "fleet",
-    "managed": true
-  }
-}
diff --git a/salt/elasticsearch/templates/component/elastic-agent/logs-system.system@custom.json b/salt/elasticsearch/templates/component/elastic-agent/logs-system.system@custom.json
deleted file mode 100644
index fe77af1db..000000000
--- a/salt/elasticsearch/templates/component/elastic-agent/logs-system.system@custom.json
+++ /dev/null
@@ -1,12 +0,0 @@
-{
-  "template": {
-    "settings": {}
-  },
-  "_meta": {
-    "package": {
-      "name": "elastic_agent"
-    },
-    "managed_by": "fleet",
-    "managed": true
-  }
-}
diff --git a/salt/elasticsearch/templates/component/elastic-agent/logs-system.system@package.json b/salt/elasticsearch/templates/component/elastic-agent/logs-system.system@package.json
deleted file mode 100644
index 068e6846b..000000000
--- a/salt/elasticsearch/templates/component/elastic-agent/logs-system.system@package.json
+++ /dev/null
@@ -1,986 +0,0 @@
-{
-  "template": {
-    "settings": {
-      "index": {
-        "lifecycle": {
-          "name": "logs"
-        },
-        "codec": "best_compression",
-        "default_pipeline": "logs-system.system-1.6.4",
-        "mapping": {
-          "total_fields": {
-            "limit": "10000"
-          }
-        },
-        "query": {
-          "default_field": [
-            "cloud.account.id",
-            "cloud.availability_zone",
-            "cloud.instance.id",
-            "cloud.instance.name",
-            "cloud.machine.type",
-            "cloud.provider",
-            "cloud.region",
-            "cloud.project.id",
-            "cloud.image.id",
-            "container.id",
-            "container.image.name",
-            "container.name",
-            "host.architecture",
-            "host.hostname",
-            "host.id",
-            "host.mac",
-            "host.name",
-            "host.os.family",
-            "host.os.kernel",
-            "host.os.name",
-            "host.os.platform",
-            "host.os.version",
-            "host.os.build",
-            "host.os.codename",
-            "host.type",
-            "event.action",
-            "event.category",
-            "event.code",
-            "event.kind",
-            "event.original",
-            "event.outcome",
-            "event.provider",
-            "event.type",
-            "error.message",
-            "message",
-            "winlog.api",
-            "winlog.activity_id",
-            "winlog.computer_name",
-            "winlog.event_data.AuthenticationPackageName",
-            "winlog.event_data.Binary",
-            "winlog.event_data.BitlockerUserInputTime",
-            "winlog.event_data.BootMode",
-            "winlog.event_data.BootType",
-            "winlog.event_data.BuildVersion",
-            "winlog.event_data.Company",
-            "winlog.event_data.CorruptionActionState",
-            "winlog.event_data.CreationUtcTime",
-            "winlog.event_data.Description",
-            "winlog.event_data.Detail",
-            "winlog.event_data.DeviceName",
-            "winlog.event_data.DeviceNameLength",
-            "winlog.event_data.DeviceTime",
-            "winlog.event_data.DeviceVersionMajor",
-            "winlog.event_data.DeviceVersionMinor",
-            "winlog.event_data.DriveName",
-            "winlog.event_data.DriverName",
-            "winlog.event_data.DriverNameLength",
-            "winlog.event_data.DwordVal",
-            "winlog.event_data.EntryCount",
-            "winlog.event_data.ExtraInfo",
-            "winlog.event_data.FailureName",
-            "winlog.event_data.FailureNameLength",
-            "winlog.event_data.FileVersion",
-            "winlog.event_data.FinalStatus",
-            "winlog.event_data.Group",
-            "winlog.event_data.IdleImplementation",
-            "winlog.event_data.IdleStateCount",
-            "winlog.event_data.ImpersonationLevel",
-            "winlog.event_data.IntegrityLevel",
-            "winlog.event_data.IpAddress",
-            "winlog.event_data.IpPort",
-            "winlog.event_data.KeyLength",
-            "winlog.event_data.LastBootGood",
-            "winlog.event_data.LastShutdownGood",
-            "winlog.event_data.LmPackageName",
-            "winlog.event_data.LogonGuid",
-            "winlog.event_data.LogonId",
-            "winlog.event_data.LogonProcessName",
-            "winlog.event_data.LogonType",
-            "winlog.event_data.MajorVersion",
-            "winlog.event_data.MaximumPerformancePercent",
-            "winlog.event_data.MemberName",
-            "winlog.event_data.MemberSid",
-            "winlog.event_data.MinimumPerformancePercent",
-            "winlog.event_data.MinimumThrottlePercent",
-            "winlog.event_data.MinorVersion",
-            "winlog.event_data.NewProcessId",
-            "winlog.event_data.NewProcessName",
-            "winlog.event_data.NewSchemeGuid",
-            "winlog.event_data.NewTime",
-            "winlog.event_data.NominalFrequency",
-            "winlog.event_data.Number",
-            "winlog.event_data.OldSchemeGuid",
-            "winlog.event_data.OldTime",
-            "winlog.event_data.OriginalFileName",
-            "winlog.event_data.Path",
-            "winlog.event_data.PerformanceImplementation",
-            "winlog.event_data.PreviousCreationUtcTime",
-            "winlog.event_data.PreviousTime",
-            "winlog.event_data.PrivilegeList",
-            "winlog.event_data.ProcessId",
-            "winlog.event_data.ProcessName",
-            "winlog.event_data.ProcessPath",
-            "winlog.event_data.ProcessPid",
-            "winlog.event_data.Product",
-            "winlog.event_data.PuaCount",
-            "winlog.event_data.PuaPolicyId",
-            "winlog.event_data.QfeVersion",
-            "winlog.event_data.Reason",
-            "winlog.event_data.SchemaVersion",
-            "winlog.event_data.ScriptBlockText",
-            "winlog.event_data.ServiceName",
-            "winlog.event_data.ServiceVersion",
-            "winlog.event_data.ShutdownActionType",
-            "winlog.event_data.ShutdownEventCode",
-            "winlog.event_data.ShutdownReason",
-            "winlog.event_data.Signature",
-            "winlog.event_data.SignatureStatus",
-            "winlog.event_data.Signed",
-            "winlog.event_data.StartTime",
-            "winlog.event_data.State",
-            "winlog.event_data.Status",
-            "winlog.event_data.StopTime",
-            "winlog.event_data.SubjectDomainName",
-            "winlog.event_data.SubjectLogonId",
-            "winlog.event_data.SubjectUserName",
-            "winlog.event_data.SubjectUserSid",
-            "winlog.event_data.TSId",
-            "winlog.event_data.TargetDomainName",
-            "winlog.event_data.TargetInfo",
-            "winlog.event_data.TargetLogonGuid",
-            "winlog.event_data.TargetLogonId",
-            "winlog.event_data.TargetServerName",
-            "winlog.event_data.TargetUserName",
-            "winlog.event_data.TargetUserSid",
-            "winlog.event_data.TerminalSessionId",
-            "winlog.event_data.TokenElevationType",
-            "winlog.event_data.TransmittedServices",
-            "winlog.event_data.UserSid",
-            "winlog.event_data.Version",
-            "winlog.event_data.Workstation",
-            "winlog.event_data.param1",
-            "winlog.event_data.param2",
-            "winlog.event_data.param3",
-            "winlog.event_data.param4",
-            "winlog.event_data.param5",
-            "winlog.event_data.param6",
-            "winlog.event_data.param7",
-            "winlog.event_data.param8",
-            "winlog.event_id",
-            "winlog.keywords",
-            "winlog.channel",
-            "winlog.record_id",
-            "winlog.related_activity_id",
-            "winlog.opcode",
-            "winlog.provider_guid",
-            "winlog.provider_name",
-            "winlog.task",
-            "winlog.user.identifier",
-            "winlog.user.name",
-            "winlog.user.domain",
-            "winlog.user.type"
-          ]
-        }
-      }
-    },
-    "mappings": {
-      "dynamic_templates": [
-        {
-          "container.labels": {
-            "path_match": "container.labels.*",
-            "mapping": {
-              "type": "keyword"
-            },
-            "match_mapping_type": "string"
-          }
-        },
-        {
-          "winlog.user_data": {
-            "path_match": "winlog.user_data.*",
-            "mapping": {
-              "type": "keyword"
-            },
-            "match_mapping_type": "string"
-          }
-        }
-      ],
-      "properties": {
-        "cloud": {
-          "properties": {
-            "availability_zone": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "image": {
-              "properties": {
-                "id": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                }
-              }
-            },
-            "instance": {
-              "properties": {
-                "name": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "id": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                }
-              }
-            },
-            "provider": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "machine": {
-              "properties": {
-                "type": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                }
-              }
-            },
-            "project": {
-              "properties": {
-                "id": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                }
-              }
-            },
-            "region": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "account": {
-              "properties": {
-                "id": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                }
-              }
-            }
-          }
-        },
-        "container": {
-          "properties": {
-            "image": {
-              "properties": {
-                "name": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                }
-              }
-            },
-            "name": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "id": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            }
-          }
-        },
-        "@timestamp": {
-          "type": "date"
-        },
-        "winlog": {
-          "properties": {
-            "related_activity_id": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "computer_name": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "process": {
-              "properties": {
-                "pid": {
-                  "type": "long"
-                },
-                "thread": {
-                  "properties": {
-                    "id": {
-                      "type": "long"
-                    }
-                  }
-                }
-              }
-            },
-            "keywords": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "channel": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "event_data": {
-              "properties": {
-                "SignatureStatus": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "DeviceTime": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "ProcessName": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "LogonGuid": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "OriginalFileName": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "BootMode": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "Product": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "TargetLogonGuid": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "FileVersion": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "StopTime": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "Status": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "CorruptionActionState": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "KeyLength": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "PreviousCreationUtcTime": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "TargetInfo": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "ServiceVersion": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "SubjectUserSid": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "PerformanceImplementation": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "TargetUserSid": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "Group": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "Description": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "ShutdownActionType": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "DwordVal": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "ProcessPid": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "DeviceVersionMajor": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "ScriptBlockText": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "TransmittedServices": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "MaximumPerformancePercent": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "NewTime": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "FinalStatus": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "IdleStateCount": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "MajorVersion": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "Path": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "SchemaVersion": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "TokenElevationType": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "MinorVersion": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "SubjectLogonId": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "IdleImplementation": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "ProcessPath": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "QfeVersion": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "DeviceVersionMinor": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "OldTime": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "IpAddress": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "DeviceName": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "Company": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "PuaPolicyId": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "IntegrityLevel": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "LastShutdownGood": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "IpPort": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "DriverNameLength": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "LmPackageName": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "UserSid": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "LastBootGood": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "PuaCount": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "Version": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "Signed": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "StartTime": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "ShutdownEventCode": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "NewProcessName": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "FailureNameLength": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "ServiceName": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "PreviousTime": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "State": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "BootType": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "Binary": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "ImpersonationLevel": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "MemberName": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "TargetUserName": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "Detail": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "TerminalSessionId": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "MemberSid": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "DriverName": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "DeviceNameLength": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "OldSchemeGuid": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "CreationUtcTime": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "Reason": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "ShutdownReason": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "TargetServerName": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "Number": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "BuildVersion": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "SubjectDomainName": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "MinimumPerformancePercent": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "LogonId": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "LogonProcessName": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "TSId": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "TargetDomainName": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "PrivilegeList": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "param7": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "param8": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "param5": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "param6": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "DriveName": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "NewProcessId": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "LogonType": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "ExtraInfo": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "param3": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "param4": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "param1": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "param2": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "TargetLogonId": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "Workstation": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "SubjectUserName": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "FailureName": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "NewSchemeGuid": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "Signature": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "MinimumThrottlePercent": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "ProcessId": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "EntryCount": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "BitlockerUserInputTime": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "AuthenticationPackageName": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "NominalFrequency": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                }
-              }
-            },
-            "opcode": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "version": {
-              "type": "long"
-            },
-            "record_id": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "event_id": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "task": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "provider_guid": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "activity_id": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "api": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "provider_name": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "user": {
-              "properties": {
-                "identifier": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "domain": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "name": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "type": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                }
-              }
-            }
-          }
-        },
-        "data_stream": {
-          "properties": {
-            "namespace": {
-              "type": "constant_keyword"
-            },
-            "type": {
-              "type": "constant_keyword"
-            },
-            "dataset": {
-              "type": "constant_keyword"
-            }
-          }
-        },
-        "host": {
-          "properties": {
-            "hostname": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "os": {
-              "properties": {
-                "build": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "kernel": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "codename": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "name": {
-                  "ignore_above": 1024,
-                  "type": "keyword",
-                  "fields": {
-                    "text": {
-                      "type": "text"
-                    }
-                  }
-                },
-                "family": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "version": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                },
-                "platform": {
-                  "ignore_above": 1024,
-                  "type": "keyword"
-                }
-              }
-            },
-            "domain": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "ip": {
-              "type": "ip"
-            },
-            "containerized": {
-              "type": "boolean"
-            },
-            "name": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "id": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "type": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "mac": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "architecture": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            }
-          }
-        },
-        "event": {
-          "properties": {
-            "code": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "original": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "created": {
-              "type": "date"
-            },
-            "kind": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "module": {
-              "type": "constant_keyword",
-              "value": "system"
-            },
-            "type": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "sequence": {
-              "type": "long"
-            },
-            "ingested": {
-              "type": "date"
-            },
-            "provider": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "action": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "category": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            },
-            "dataset": {
-              "type": "constant_keyword",
-              "value": "system.system"
-            },
-            "outcome": {
-              "ignore_above": 1024,
-              "type": "keyword"
-            }
-          }
-        },
-        "error": {
-          "properties": {
-            "message": {
-              "type": "match_only_text"
-            }
-          }
-        },
-        "message": {
-          "type": "match_only_text"
-        }
-      }
-    }
-  },
-  "_meta": {
-    "package": {
-      "name": "system"
-    },
-    "managed_by": "fleet",
-    "managed": true
-  }
-}
diff --git a/salt/elasticsearch/templates/component/elastic-agent/logs-windows.forwarded@custom.json b/salt/elasticsearch/templates/component/elastic-agent/logs-windows.forwarded@custom.json
deleted file mode 100644
index fe77af1db..000000000
--- a/salt/elasticsearch/templates/component/elastic-agent/logs-windows.forwarded@custom.json
+++ /dev/null
@@ -1,12 +0,0 @@
-{
-  "template": {
-    "settings": {}
-  },
-  "_meta": {
-    "package": {
-      "name": "elastic_agent"
-    },
-    "managed_by": "fleet",
-    "managed": true
-  }
-}
diff --git a/salt/elasticsearch/templates/component/elastic-agent/logs-windows.forwarded@package.json b/salt/elasticsearch/templates/component/elastic-agent/logs-windows.forwarded@package.json
deleted file mode 100644
index 967641107..000000000
--- a/salt/elasticsearch/templates/component/elastic-agent/logs-windows.forwarded@package.json
+++ /dev/null
@@ -1,2544 +0,0 @@
-        {"template": {
-          "settings": {
-            "index": {
-              "lifecycle": {
-                "name": "logs"
-              },
-              "codec": "best_compression",
-              "default_pipeline": "logs-windows.forwarded-1.20.1",
-              "mapping": {
-                "total_fields": {
-                  "limit": "10000"
-                }
-              },
-              "analysis": {
-                "analyzer": {
-                  "powershell_script_analyzer": {
-                    "pattern": "[\\W&&[^-]]+",
-                    "type": "pattern"
-                  }
-                }
-              },
-              "query": {
-                "default_field": [
-                  "cloud.account.id",
-                  "cloud.availability_zone",
-                  "cloud.instance.id",
-                  "cloud.instance.name",
-                  "cloud.machine.type",
-                  "cloud.provider",
-                  "cloud.region",
-                  "cloud.project.id",
-                  "cloud.image.id",
-                  "container.id",
-                  "container.image.name",
-                  "container.name",
-                  "host.architecture",
-                  "host.hostname",
-                  "host.id",
-                  "host.mac",
-                  "host.name",
-                  "host.os.family",
-                  "host.os.kernel",
-                  "host.os.name",
-                  "host.os.platform",
-                  "host.os.version",
-                  "host.os.build",
-                  "host.os.codename",
-                  "host.type",
-                  "event.action",
-                  "event.category",
-                  "event.code",
-                  "event.kind",
-                  "event.outcome",
-                  "event.provider",
-                  "event.type",
-                  "tags",
-                  "input.type",
-                  "destination.domain",
-                  "destination.user.domain",
-                  "destination.user.id",
-                  "destination.user.name",
-                  "dns.answers.class",
-                  "dns.answers.data",
-                  "dns.answers.name",
-                  "dns.answers.type",
-                  "dns.header_flags",
-                  "dns.id",
-                  "dns.op_code",
-                  "dns.question.class",
-                  "dns.question.name",
-                  "dns.question.registered_domain",
-                  "dns.question.subdomain",
-                  "dns.question.top_level_domain",
-                  "dns.question.type",
-                  "dns.response_code",
-                  "dns.type",
-                  "ecs.version",
-                  "file.code_signature.status",
-                  "file.code_signature.subject_name",
-                  "file.directory",
-                  "file.extension",
-                  "file.hash.md5",
-                  "file.hash.sha1",
-                  "file.hash.sha256",
-                  "file.hash.sha512",
-                  "file.name",
-                  "file.path",
-                  "file.pe.architecture",
-                  "file.pe.company",
-                  "file.pe.description",
-                  "file.pe.file_version",
-                  "file.pe.imphash",
-                  "file.pe.original_file_name",
-                  "file.pe.product",
-                  "group.domain",
-                  "group.id",
-                  "group.name",
-                  "log.file.path",
-                  "log.level",
-                  "message",
-                  "network.community_id",
-                  "network.direction",
-                  "network.protocol",
-                  "network.transport",
-                  "network.type",
-                  "process.args",
-                  "process.command_line",
-                  "process.entity_id",
-                  "process.executable",
-                  "process.hash.md5",
-                  "process.hash.sha1",
-                  "process.hash.sha256",
-                  "process.hash.sha512",
-                  "process.name",
-                  "process.parent.args",
-                  "process.parent.command_line",
-                  "process.parent.entity_id",
-                  "process.parent.executable",
-                  "process.parent.hash.md5",
-                  "process.parent.hash.sha1",
-                  "process.parent.hash.sha256",
-                  "process.parent.hash.sha512",
-                  "process.parent.name",
-                  "process.parent.pe.architecture",
-                  "process.parent.pe.company",
-                  "process.parent.pe.description",
-                  "process.parent.pe.file_version",
-                  "process.parent.pe.imphash",
-                  "process.parent.pe.original_file_name",
-                  "process.parent.pe.product",
-                  "process.parent.title",
-                  "process.pe.architecture",
-                  "process.pe.company",
-                  "process.pe.description",
-                  "process.pe.file_version",
-                  "process.pe.imphash",
-                  "process.pe.original_file_name",
-                  "process.pe.product",
-                  "process.title",
-                  "process.working_directory",
-                  "registry.data.strings",
-                  "registry.data.type",
-                  "registry.hive",
-                  "registry.key",
-                  "registry.path",
-                  "registry.value",
-                  "related.hash",
-                  "related.hosts",
-                  "related.user",
-                  "rule.name",
-                  "service.name",
-                  "service.type",
-                  "source.domain",
-                  "source.user.domain",
-                  "source.user.id",
-                  "source.user.name",
-                  "user.domain",
-                  "user.id",
-                  "user.name",
-                  "user.target.group.domain",
-                  "user.target.group.id",
-                  "user.target.group.name",
-                  "user.target.name",
-                  "sysmon.dns.status",
-                  "winlog.logon.type",
-                  "winlog.logon.id",
-                  "winlog.logon.failure.reason",
-                  "winlog.logon.failure.status",
-                  "winlog.logon.failure.sub_status",
-                  "winlog.api",
-                  "winlog.activity_id",
-                  "winlog.computer_name",
-                  "winlog.level",
-                  "winlog.outcome",
-                  "winlog.trustAttribute",
-                  "winlog.trustDirection",
-                  "winlog.trustType",
-                  "winlog.computerObject.domain",
-                  "winlog.computerObject.id",
-                  "winlog.computerObject.name",
-                  "winlog.event_data.AccessGranted",
-                  "winlog.event_data.AccessMask",
-                  "winlog.event_data.AccessMaskDescription",
-                  "winlog.event_data.AccessRemoved",
-                  "winlog.event_data.AccountDomain",
-                  "winlog.event_data.AccountExpires",
-                  "winlog.event_data.AccountName",
-                  "winlog.event_data.AllowedToDelegateTo",
-                  "winlog.event_data.AuditPolicyChanges",
-                  "winlog.event_data.AuditPolicyChangesDescription",
-                  "winlog.event_data.AuditSourceName",
-                  "winlog.event_data.AuthenticationPackageName",
-                  "winlog.event_data.Binary",
-                  "winlog.event_data.BitlockerUserInputTime",
-                  "winlog.event_data.BootMode",
-                  "winlog.event_data.BootType",
-                  "winlog.event_data.BuildVersion",
-                  "winlog.event_data.CallerProcessId",
-                  "winlog.event_data.CallerProcessName",
-                  "winlog.event_data.Category",
-                  "winlog.event_data.CategoryId",
-                  "winlog.event_data.ClientAddress",
-                  "winlog.event_data.ClientInfo",
-                  "winlog.event_data.ClientName",
-                  "winlog.event_data.CommandLine",
-                  "winlog.event_data.Company",
-                  "winlog.event_data.ComputerAccountChange",
-                  "winlog.event_data.Configuration",
-                  "winlog.event_data.CorruptionActionState",
-                  "winlog.event_data.CrashOnAuditFailValue",
-                  "winlog.event_data.CreationUtcTime",
-                  "winlog.event_data.Description",
-                  "winlog.event_data.Detail",
-                  "winlog.event_data.DeviceName",
-                  "winlog.event_data.DeviceNameLength",
-                  "winlog.event_data.DeviceTime",
-                  "winlog.event_data.DeviceVersionMajor",
-                  "winlog.event_data.DeviceVersionMinor",
-                  "winlog.event_data.DisplayName",
-                  "winlog.event_data.DnsHostName",
-                  "winlog.event_data.DomainBehaviorVersion",
-                  "winlog.event_data.DomainName",
-                  "winlog.event_data.DomainPolicyChanged",
-                  "winlog.event_data.DomainSid",
-                  "winlog.event_data.DriveName",
-                  "winlog.event_data.DriverName",
-                  "winlog.event_data.DriverNameLength",
-                  "winlog.event_data.Dummy",
-                  "winlog.event_data.DwordVal",
-                  "winlog.event_data.EntryCount",
-                  "winlog.event_data.EventSourceId",
-                  "winlog.event_data.EventType",
-                  "winlog.event_data.ExtraInfo",
-                  "winlog.event_data.FailureName",
-                  "winlog.event_data.FailureNameLength",
-                  "winlog.event_data.FailureReason",
-                  "winlog.event_data.FileVersion",
-                  "winlog.event_data.FinalStatus",
-                  "winlog.event_data.Group",
-                  "winlog.event_data.GroupTypeChange",
-                  "winlog.event_data.HandleId",
-                  "winlog.event_data.HomeDirectory",
-                  "winlog.event_data.HomePath",
-                  "winlog.event_data.IdleImplementation",
-                  "winlog.event_data.IdleStateCount",
-                  "winlog.event_data.ImpersonationLevel",
-                  "winlog.event_data.IntegrityLevel",
-                  "winlog.event_data.IpAddress",
-                  "winlog.event_data.IpPort",
-                  "winlog.event_data.KerberosPolicyChange",
-                  "winlog.event_data.KeyLength",
-                  "winlog.event_data.LastBootGood",
-                  "winlog.event_data.LastShutdownGood",
-                  "winlog.event_data.LmPackageName",
-                  "winlog.event_data.LogonGuid",
-                  "winlog.event_data.LogonHours",
-                  "winlog.event_data.LogonId",
-                  "winlog.event_data.LogonID",
-                  "winlog.event_data.LogonProcessName",
-                  "winlog.event_data.LogonType",
-                  "winlog.event_data.MachineAccountQuota",
-                  "winlog.event_data.MajorVersion",
-                  "winlog.event_data.MandatoryLabel",
-                  "winlog.event_data.MaximumPerformancePercent",
-                  "winlog.event_data.MemberName",
-                  "winlog.event_data.MemberSid",
-                  "winlog.event_data.MinimumPerformancePercent",
-                  "winlog.event_data.MinimumThrottlePercent",
-                  "winlog.event_data.MinorVersion",
-                  "winlog.event_data.MixedDomainMode",
-                  "winlog.event_data.NewProcessId",
-                  "winlog.event_data.NewProcessName",
-                  "winlog.event_data.NewSchemeGuid",
-                  "winlog.event_data.NewSd",
-                  "winlog.event_data.NewSdDacl0",
-                  "winlog.event_data.NewSdDacl1",
-                  "winlog.event_data.NewSdDacl2",
-                  "winlog.event_data.NewSdSacl0",
-                  "winlog.event_data.NewSdSacl1",
-                  "winlog.event_data.NewSdSacl2",
-                  "winlog.event_data.NewTargetUserName",
-                  "winlog.event_data.NewTime",
-                  "winlog.event_data.NewUACList",
-                  "winlog.event_data.NewUacValue",
-                  "winlog.event_data.NominalFrequency",
-                  "winlog.event_data.Number",
-                  "winlog.event_data.ObjectName",
-                  "winlog.event_data.ObjectServer",
-                  "winlog.event_data.ObjectType",
-                  "winlog.event_data.OemInformation",
-                  "winlog.event_data.OldSchemeGuid",
-                  "winlog.event_data.OldSd",
-                  "winlog.event_data.OldSdDacl0",
-                  "winlog.event_data.OldSdDacl1",
-                  "winlog.event_data.OldSdDacl2",
-                  "winlog.event_data.OldSdSacl0",
-                  "winlog.event_data.OldSdSacl1",
-                  "winlog.event_data.OldSdSacl2",
-                  "winlog.event_data.OldTargetUserName",
-                  "winlog.event_data.OldTime",
-                  "winlog.event_data.OldUacValue",
-                  "winlog.event_data.OriginalFileName",
-                  "winlog.event_data.PackageName",
-                  "winlog.event_data.PasswordLastSet",
-                  "winlog.event_data.PasswordHistoryLength",
-                  "winlog.event_data.Path",
-                  "winlog.event_data.ParentProcessName",
-                  "winlog.event_data.PerformanceImplementation",
-                  "winlog.event_data.PreviousCreationUtcTime",
-                  "winlog.event_data.PreAuthType",
-                  "winlog.event_data.PreviousTime",
-                  "winlog.event_data.PrimaryGroupId",
-                  "winlog.event_data.PrivilegeList",
-                  "winlog.event_data.ProcessId",
-                  "winlog.event_data.ProcessName",
-                  "winlog.event_data.ProcessPath",
-                  "winlog.event_data.ProcessPid",
-                  "winlog.event_data.Product",
-                  "winlog.event_data.ProfilePath",
-                  "winlog.event_data.PuaCount",
-                  "winlog.event_data.PuaPolicyId",
-                  "winlog.event_data.QfeVersion",
-                  "winlog.event_data.Reason",
-                  "winlog.event_data.SamAccountName",
-                  "winlog.event_data.SchemaVersion",
-                  "winlog.event_data.ScriptPath",
-                  "winlog.event_data.Session",
-                  "winlog.event_data.SidHistory",
-                  "winlog.event_data.ScriptBlockText",
-                  "winlog.event_data.Service",
-                  "winlog.event_data.ServiceAccount",
-                  "winlog.event_data.ServiceFileName",
-                  "winlog.event_data.ServiceName",
-                  "winlog.event_data.ServicePrincipalNames",
-                  "winlog.event_data.ServiceSid",
-                  "winlog.event_data.ServiceStartType",
-                  "winlog.event_data.ServiceType",
-                  "winlog.event_data.ServiceVersion",
-                  "winlog.event_data.SessionName",
-                  "winlog.event_data.ShutdownActionType",
-                  "winlog.event_data.ShutdownEventCode",
-                  "winlog.event_data.ShutdownReason",
-                  "winlog.event_data.SidFilteringEnabled",
-                  "winlog.event_data.Signature",
-                  "winlog.event_data.SignatureStatus",
-                  "winlog.event_data.Signed",
-                  "winlog.event_data.StartTime",
-                  "winlog.event_data.State",
-                  "winlog.event_data.Status",
-                  "winlog.event_data.StatusDescription",
-                  "winlog.event_data.StopTime",
-                  "winlog.event_data.SubCategory",
-                  "winlog.event_data.SubCategoryGuid",
-                  "winlog.event_data.SubcategoryGuid",
-                  "winlog.event_data.SubCategoryId",
-                  "winlog.event_data.SubcategoryId",
-                  "winlog.event_data.SubjectDomainName",
-                  "winlog.event_data.SubjectLogonId",
-                  "winlog.event_data.SubjectUserName",
-                  "winlog.event_data.SubjectUserSid",
-                  "winlog.event_data.SubStatus",
-                  "winlog.event_data.TSId",
-                  "winlog.event_data.TargetDomainName",
-                  "winlog.event_data.TargetInfo",
-                  "winlog.event_data.TargetLogonGuid",
-                  "winlog.event_data.TargetLogonId",
-                  "winlog.event_data.TargetServerName",
-                  "winlog.event_data.TargetSid",
-                  "winlog.event_data.TargetUserName",
-                  "winlog.event_data.TargetUserSid",
-                  "winlog.event_data.TdoAttributes",
-                  "winlog.event_data.TdoDirection",
-                  "winlog.event_data.TdoType",
-                  "winlog.event_data.TerminalSessionId",
-                  "winlog.event_data.TicketEncryptionType",
-                  "winlog.event_data.TicketEncryptionTypeDescription",
-                  "winlog.event_data.TicketOptions",
-                  "winlog.event_data.TicketOptionsDescription",
-                  "winlog.event_data.TokenElevationType",
-                  "winlog.event_data.TransmittedServices",
-                  "winlog.event_data.UserAccountControl",
-                  "winlog.event_data.UserParameters",
-                  "winlog.event_data.UserPrincipalName",
-                  "winlog.event_data.UserSid",
-                  "winlog.event_data.UserWorkstations",
-                  "winlog.event_data.Version",
-                  "winlog.event_data.Workstation",
-                  "winlog.event_data.WorkstationName",
-                  "winlog.event_data.param1",
-                  "winlog.event_data.param2",
-                  "winlog.event_data.param3",
-                  "winlog.event_data.param4",
-                  "winlog.event_data.param5",
-                  "winlog.event_data.param6",
-                  "winlog.event_data.param7",
-                  "winlog.event_data.param8",
-                  "winlog.event_id",
-                  "winlog.keywords",
-                  "winlog.channel",
-                  "winlog.record_id",
-                  "winlog.related_activity_id",
-                  "winlog.opcode",
-                  "winlog.provider_guid",
-                  "winlog.provider_name",
-                  "winlog.task",
-                  "winlog.user_data.BackupPath",
-                  "winlog.user_data.Channel",
-                  "winlog.user_data.SubjectDomainName",
-                  "winlog.user_data.SubjectLogonId",
-                  "winlog.user_data.SubjectUserName",
-                  "winlog.user_data.SubjectUserSid",
-                  "winlog.user_data.xml_name",
-                  "winlog.user.identifier",
-                  "winlog.user.name",
-                  "winlog.user.domain",
-                  "winlog.user.type",
-                  "powershell.id",
-                  "powershell.pipeline_id",
-                  "powershell.runspace_id",
-                  "powershell.command.path",
-                  "powershell.command.name",
-                  "powershell.command.type",
-                  "powershell.command.value",
-                  "powershell.connected_user.domain",
-                  "powershell.connected_user.name",
-                  "powershell.engine.version",
-                  "powershell.engine.previous_state",
-                  "powershell.engine.new_state",
-                  "powershell.file.script_block_id",
-                  "powershell.file.script_block_text",
-                  "powershell.process.executable_version",
-                  "powershell.provider.new_state",
-                  "powershell.provider.name"
-                ]
-              }
-            }
-          },
-          "mappings": {
-            "dynamic_templates": [
-              {
-                "container.labels": {
-                  "path_match": "container.labels.*",
-                  "mapping": {
-                    "type": "keyword"
-                  },
-                  "match_mapping_type": "string"
-                }
-              }
-            ],
-            "properties": {
-              "container": {
-                "properties": {
-                  "image": {
-                    "properties": {
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "sysmon": {
-                "properties": {
-                  "file": {
-                    "properties": {
-                      "archived": {
-                        "type": "boolean"
-                      },
-                      "is_executable": {
-                        "type": "boolean"
-                      }
-                    }
-                  },
-                  "dns": {
-                    "properties": {
-                      "status": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  }
-                }
-              },
-              "log": {
-                "properties": {
-                  "file": {
-                    "properties": {
-                      "path": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "level": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "destination": {
-                "properties": {
-                  "port": {
-                    "type": "long"
-                  },
-                  "domain": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "ip": {
-                    "type": "ip"
-                  },
-                  "user": {
-                    "properties": {
-                      "domain": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword",
-                        "fields": {
-                          "text": {
-                            "type": "match_only_text"
-                          }
-                        }
-                      },
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  }
-                }
-              },
-              "rule": {
-                "properties": {
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "source": {
-                "properties": {
-                  "port": {
-                    "type": "long"
-                  },
-                  "domain": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "ip": {
-                    "type": "ip"
-                  },
-                  "user": {
-                    "properties": {
-                      "domain": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword",
-                        "fields": {
-                          "text": {
-                            "type": "match_only_text"
-                          }
-                        }
-                      },
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  }
-                }
-              },
-              "network": {
-                "properties": {
-                  "community_id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "protocol": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "transport": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "type": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "direction": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "cloud": {
-                "properties": {
-                  "availability_zone": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "image": {
-                    "properties": {
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "instance": {
-                    "properties": {
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "provider": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "machine": {
-                    "properties": {
-                      "type": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "project": {
-                    "properties": {
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "region": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "account": {
-                    "properties": {
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  }
-                }
-              },
-              "file": {
-                "properties": {
-                  "path": {
-                    "ignore_above": 1024,
-                    "type": "keyword",
-                    "fields": {
-                      "text": {
-                        "type": "match_only_text"
-                      }
-                    }
-                  },
-                  "extension": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "code_signature": {
-                    "properties": {
-                      "valid": {
-                        "type": "boolean"
-                      },
-                      "trusted": {
-                        "type": "boolean"
-                      },
-                      "subject_name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "exists": {
-                        "type": "boolean"
-                      },
-                      "status": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "pe": {
-                    "properties": {
-                      "file_version": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "product": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "imphash": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "description": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "company": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "original_file_name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "architecture": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "directory": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "hash": {
-                    "properties": {
-                      "sha1": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "sha256": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "sha512": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "md5": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  }
-                }
-              },
-              "ecs": {
-                "properties": {
-                  "version": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "related": {
-                "properties": {
-                  "hosts": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "ip": {
-                    "type": "ip"
-                  },
-                  "user": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "hash": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "powershell": {
-                "properties": {
-                  "sequence": {
-                    "type": "long"
-                  },
-                  "total": {
-                    "type": "long"
-                  },
-                  "connected_user": {
-                    "properties": {
-                      "domain": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "process": {
-                    "properties": {
-                      "executable_version": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "file": {
-                    "properties": {
-                      "script_block_text": {
-                        "search_analyzer": "powershell_script_analyzer",
-                        "analyzer": "powershell_script_analyzer",
-                        "type": "text"
-                      },
-                      "script_block_id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "engine": {
-                    "properties": {
-                      "previous_state": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "new_state": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "version": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "provider": {
-                    "properties": {
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "new_state": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "runspace_id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "pipeline_id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "command": {
-                    "properties": {
-                      "path": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "type": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "value": {
-                        "type": "text"
-                      }
-                    }
-                  }
-                }
-              },
-              "host": {
-                "properties": {
-                  "hostname": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "os": {
-                    "properties": {
-                      "build": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "kernel": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "codename": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword",
-                        "fields": {
-                          "text": {
-                            "type": "text"
-                          }
-                        }
-                      },
-                      "family": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "version": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "platform": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "domain": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "ip": {
-                    "type": "ip"
-                  },
-                  "containerized": {
-                    "type": "boolean"
-                  },
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "type": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "mac": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "architecture": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "event": {
-                "properties": {
-                  "sequence": {
-                    "type": "long"
-                  },
-                  "ingested": {
-                    "type": "date"
-                  },
-                  "code": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "provider": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "created": {
-                    "type": "date"
-                  },
-                  "kind": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "module": {
-                    "type": "constant_keyword",
-                    "value": "windows"
-                  },
-                  "action": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "category": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "type": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "dataset": {
-                    "type": "constant_keyword",
-                    "value": "windows.forwarded"
-                  },
-                  "outcome": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "group": {
-                "properties": {
-                  "domain": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "registry": {
-                "properties": {
-                  "hive": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "path": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "data": {
-                    "properties": {
-                      "strings": {
-                        "ignore_above": 1024,
-                        "type": "wildcard"
-                      },
-                      "type": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "value": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "key": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "process": {
-                "properties": {
-                  "args": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "parent": {
-                    "properties": {
-                      "args": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "pe": {
-                        "properties": {
-                          "file_version": {
-                            "ignore_above": 1024,
-                            "type": "keyword"
-                          },
-                          "product": {
-                            "ignore_above": 1024,
-                            "type": "keyword"
-                          },
-                          "imphash": {
-                            "ignore_above": 1024,
-                            "type": "keyword"
-                          },
-                          "description": {
-                            "ignore_above": 1024,
-                            "type": "keyword"
-                          },
-                          "company": {
-                            "ignore_above": 1024,
-                            "type": "keyword"
-                          },
-                          "original_file_name": {
-                            "ignore_above": 1024,
-                            "type": "keyword"
-                          },
-                          "architecture": {
-                            "ignore_above": 1024,
-                            "type": "keyword"
-                          }
-                        }
-                      },
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword",
-                        "fields": {
-                          "text": {
-                            "type": "match_only_text"
-                          }
-                        }
-                      },
-                      "start": {
-                        "type": "date"
-                      },
-                      "pid": {
-                        "type": "long"
-                      },
-                      "args_count": {
-                        "type": "long"
-                      },
-                      "entity_id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "title": {
-                        "ignore_above": 1024,
-                        "type": "keyword",
-                        "fields": {
-                          "text": {
-                            "type": "match_only_text"
-                          }
-                        }
-                      },
-                      "command_line": {
-                        "ignore_above": 1024,
-                        "type": "wildcard",
-                        "fields": {
-                          "text": {
-                            "type": "match_only_text"
-                          }
-                        }
-                      },
-                      "executable": {
-                        "ignore_above": 1024,
-                        "type": "keyword",
-                        "fields": {
-                          "text": {
-                            "type": "match_only_text"
-                          }
-                        }
-                      },
-                      "hash": {
-                        "properties": {
-                          "sha1": {
-                            "ignore_above": 1024,
-                            "type": "keyword"
-                          },
-                          "sha256": {
-                            "ignore_above": 1024,
-                            "type": "keyword"
-                          },
-                          "sha512": {
-                            "ignore_above": 1024,
-                            "type": "keyword"
-                          },
-                          "md5": {
-                            "ignore_above": 1024,
-                            "type": "keyword"
-                          }
-                        }
-                      }
-                    }
-                  },
-                  "pe": {
-                    "properties": {
-                      "file_version": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "product": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "imphash": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "description": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "company": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "original_file_name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "architecture": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword",
-                    "fields": {
-                      "text": {
-                        "type": "match_only_text"
-                      }
-                    }
-                  },
-                  "pid": {
-                    "type": "long"
-                  },
-                  "working_directory": {
-                    "ignore_above": 1024,
-                    "type": "keyword",
-                    "fields": {
-                      "text": {
-                        "type": "match_only_text"
-                      }
-                    }
-                  },
-                  "args_count": {
-                    "type": "long"
-                  },
-                  "entity_id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "title": {
-                    "ignore_above": 1024,
-                    "type": "keyword",
-                    "fields": {
-                      "text": {
-                        "type": "match_only_text"
-                      }
-                    }
-                  },
-                  "command_line": {
-                    "ignore_above": 1024,
-                    "type": "wildcard",
-                    "fields": {
-                      "text": {
-                        "type": "match_only_text"
-                      }
-                    }
-                  },
-                  "executable": {
-                    "ignore_above": 1024,
-                    "type": "keyword",
-                    "fields": {
-                      "text": {
-                        "type": "match_only_text"
-                      }
-                    }
-                  },
-                  "hash": {
-                    "properties": {
-                      "sha1": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "sha256": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "sha512": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "md5": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  }
-                }
-              },
-              "winlog": {
-                "properties": {
-                  "related_activity_id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "keywords": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "logon": {
-                    "properties": {
-                      "failure": {
-                        "properties": {
-                          "reason": {
-                            "ignore_above": 1024,
-                            "type": "keyword"
-                          },
-                          "sub_status": {
-                            "ignore_above": 1024,
-                            "type": "keyword"
-                          },
-                          "status": {
-                            "ignore_above": 1024,
-                            "type": "keyword"
-                          }
-                        }
-                      },
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "type": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "channel": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "event_data": {
-                    "properties": {
-                      "ProcessName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "LogonGuid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Configuration": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "OriginalFileName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "BootMode": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Product": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "LogonHours": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TargetLogonGuid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "FileVersion": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TicketOptions": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "AllowedToDelegateTo": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TdoAttributes": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "StopTime": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Status": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "AccessMask": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "KeyLength": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "SessionName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "PasswordHistoryLength": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TargetInfo": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "OldSd": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TargetUserSid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Group": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "PackageName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ShutdownActionType": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DwordVal": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DeviceVersionMajor": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "SidHistory": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TransmittedServices": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "WorkstationName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "SubStatus": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "IdleStateCount": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Path": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "SchemaVersion": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "MinorVersion": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "CrashOnAuditFailValue": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ProcessPath": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DeviceVersionMinor": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "OldTime": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "HandleId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "IpAddress": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DnsHostName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "LastShutdownGood": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "IpPort": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DriverNameLength": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "LmPackageName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "UserSid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "LastBootGood": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "PuaCount": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Version": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "MachineAccountQuota": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "OldUacValue": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "UserParameters": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Signed": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "StartTime": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "SubCategoryId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "OldTargetUserName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "NewUacValue": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "CallerProcessId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ProfilePath": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ServiceName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "State": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "FailureReason": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ComputerAccountChange": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "BootType": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Binary": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ImpersonationLevel": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "MemberName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TargetUserName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DomainPolicyChanged": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "CategoryId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "PreAuthType": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "AccountDomain": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "MemberSid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DriverName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "NewUACList": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "SubcategoryGuid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ShutdownReason": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "SidFilteringEnabled": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TargetServerName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "AuditPolicyChanges": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Number": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TargetDomainName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "EventSourceId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DriveName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "NewProcessId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "LogonType": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ExtraInfo": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "PrimaryGroupId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ObjectName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TargetLogonId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Workstation": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "PasswordLastSet": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "NewSchemeGuid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "MinimumThrottlePercent": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "GroupTypeChange": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "AuthenticationPackageName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "NominalFrequency": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "SignatureStatus": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DeviceTime": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DomainSid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ScriptPath": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TicketEncryptionType": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TicketOptionsDescription": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ServiceType": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ObjectServer": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "HomePath": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "UserWorkstations": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "SamAccountName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DomainName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "CorruptionActionState": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "AuditSourceName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "SubCategoryGuid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "PreviousCreationUtcTime": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ServiceVersion": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "AuditPolicyChangesDescription": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "AccessMaskDescription": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "SubjectUserSid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "AccountName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "PerformanceImplementation": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TicketEncryptionTypeDescription": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ServiceAccount": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Description": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ProcessPid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ScriptBlockText": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ObjectType": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ServicePrincipalNames": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "MaximumPerformancePercent": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "KerberosPolicyChange": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "NewTime": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "FinalStatus": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "MajorVersion": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "MandatoryLabel": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "HomeDirectory": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TokenElevationType": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "SubjectLogonId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "IdleImplementation": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "QfeVersion": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "AccountExpires": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ServiceStartType": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "UserPrincipalName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "NewSdSacl1": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Dummy": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "NewSdSacl0": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DeviceName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "NewSdSacl2": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Company": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "PuaPolicyId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "OldSdSacl2": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "EventType": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "IntegrityLevel": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "OldSdSacl1": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "OldSdSacl0": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TargetSid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "NewSd": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "NewTargetUserName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ClientName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "StatusDescription": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "NewSdDacl0": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "NewSdDacl2": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "NewSdDacl1": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DomainBehaviorVersion": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "AccessGranted": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ParentProcessName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "SubcategoryId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "AccessRemoved": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ShutdownEventCode": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "NewProcessName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "FailureNameLength": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "PreviousTime": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "MixedDomainMode": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ClientInfo": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Detail": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "OldSdDacl1": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "OldSdDacl0": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Category": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TerminalSessionId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "OldSdDacl2": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ClientAddress": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DeviceNameLength": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "OldSchemeGuid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "CreationUtcTime": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "CallerProcessName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TdoType": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Reason": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ServiceFileName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DisplayName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "BuildVersion": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "SubjectDomainName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "MinimumPerformancePercent": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "LogonId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "LogonProcessName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TSId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "PrivilegeList": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "param7": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "param8": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "param5": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "param6": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Service": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TdoDirection": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "param3": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "param4": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "param1": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "param2": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "CommandLine": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "SubjectUserName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "UserAccountControl": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "OemInformation": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "FailureName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Signature": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "SubCategory": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ServiceSid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ProcessId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "EntryCount": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "LogonID": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "BitlockerUserInputTime": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Session": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "opcode": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "provider_guid": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "activity_id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "time_created": {
-                    "type": "date"
-                  },
-                  "trustDirection": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "api": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "provider_name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "outcome": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "computer_name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "trustAttribute": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "process": {
-                    "properties": {
-                      "pid": {
-                        "type": "long"
-                      },
-                      "thread": {
-                        "properties": {
-                          "id": {
-                            "type": "long"
-                          }
-                        }
-                      }
-                    }
-                  },
-                  "level": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "computerObject": {
-                    "properties": {
-                      "domain": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "user_data": {
-                    "properties": {
-                      "SubjectUserName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "BackupPath": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Channel": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "SubjectDomainName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "SubjectLogonId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "SubjectUserSid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "xml_name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "version": {
-                    "type": "long"
-                  },
-                  "record_id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "event_id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "task": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "trustType": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "user": {
-                    "properties": {
-                      "identifier": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "domain": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "type": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  }
-                }
-              },
-              "dns": {
-                "properties": {
-                  "op_code": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "resolved_ip": {
-                    "type": "ip"
-                  },
-                  "response_code": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "question": {
-                    "properties": {
-                      "registered_domain": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "top_level_domain": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "subdomain": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "type": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "class": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "answers": {
-                    "properties": {
-                      "data": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "type": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "class": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ttl": {
-                        "type": "long"
-                      }
-                    }
-                  },
-                  "header_flags": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "type": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "message": {
-                "type": "match_only_text"
-              },
-              "tags": {
-                "ignore_above": 1024,
-                "type": "keyword"
-              },
-              "input": {
-                "properties": {
-                  "type": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "@timestamp": {
-                "type": "date"
-              },
-              "data_stream": {
-                "properties": {
-                  "namespace": {
-                    "type": "constant_keyword"
-                  },
-                  "type": {
-                    "type": "constant_keyword"
-                  },
-                  "dataset": {
-                    "type": "constant_keyword"
-                  }
-                }
-              },
-              "service": {
-                "properties": {
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "type": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "dataset": {
-                "properties": {
-                  "name": {
-                    "type": "constant_keyword"
-                  },
-                  "namespace": {
-                    "type": "constant_keyword"
-                  },
-                  "type": {
-                    "type": "constant_keyword"
-                  }
-                }
-              },
-              "user": {
-                "properties": {
-                  "domain": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword",
-                    "fields": {
-                      "text": {
-                        "type": "match_only_text"
-                      }
-                    }
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "target": {
-                    "properties": {
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword",
-                        "fields": {
-                          "text": {
-                            "type": "match_only_text"
-                          }
-                        }
-                      },
-                      "group": {
-                        "properties": {
-                          "domain": {
-                            "ignore_above": 1024,
-                            "type": "keyword"
-                          },
-                          "name": {
-                            "ignore_above": 1024,
-                            "type": "keyword"
-                          },
-                          "id": {
-                            "ignore_above": 1024,
-                            "type": "keyword"
-                          }
-                        }
-                      }
-                    }
-                  }
-                }
-              }
-            }
-          }
-        },
-        "_meta": {
-          "package": {
-            "name": "windows"
-          },
-          "managed_by": "fleet",
-          "managed": true
-        }
-      }
diff --git a/salt/elasticsearch/templates/component/elastic-agent/logs-windows.powershell@custom.json b/salt/elasticsearch/templates/component/elastic-agent/logs-windows.powershell@custom.json
deleted file mode 100644
index fe77af1db..000000000
--- a/salt/elasticsearch/templates/component/elastic-agent/logs-windows.powershell@custom.json
+++ /dev/null
@@ -1,12 +0,0 @@
-{
-  "template": {
-    "settings": {}
-  },
-  "_meta": {
-    "package": {
-      "name": "elastic_agent"
-    },
-    "managed_by": "fleet",
-    "managed": true
-  }
-}
diff --git a/salt/elasticsearch/templates/component/elastic-agent/logs-windows.powershell@package.json b/salt/elasticsearch/templates/component/elastic-agent/logs-windows.powershell@package.json
deleted file mode 100644
index ad0ff857e..000000000
--- a/salt/elasticsearch/templates/component/elastic-agent/logs-windows.powershell@package.json
+++ /dev/null
@@ -1,1335 +0,0 @@
-        {"template": {
-          "settings": {
-            "index": {
-              "lifecycle": {
-                "name": "logs"
-              },
-              "codec": "best_compression",
-              "default_pipeline": "logs-windows.powershell-1.20.1",
-              "mapping": {
-                "total_fields": {
-                  "limit": "10000"
-                }
-              },
-              "analysis": {
-                "analyzer": {
-                  "powershell_script_analyzer": {
-                    "pattern": "[\\W&&[^-]]+",
-                    "type": "pattern"
-                  }
-                }
-              },
-              "query": {
-                "default_field": [
-                  "cloud.account.id",
-                  "cloud.availability_zone",
-                  "cloud.instance.id",
-                  "cloud.instance.name",
-                  "cloud.machine.type",
-                  "cloud.provider",
-                  "cloud.region",
-                  "cloud.project.id",
-                  "cloud.image.id",
-                  "container.id",
-                  "container.image.name",
-                  "container.name",
-                  "host.architecture",
-                  "host.hostname",
-                  "host.id",
-                  "host.mac",
-                  "host.name",
-                  "host.os.family",
-                  "host.os.kernel",
-                  "host.os.name",
-                  "host.os.platform",
-                  "host.os.version",
-                  "host.os.build",
-                  "host.os.codename",
-                  "host.type",
-                  "event.action",
-                  "event.category",
-                  "event.code",
-                  "event.kind",
-                  "event.outcome",
-                  "event.provider",
-                  "event.type",
-                  "tags",
-                  "input.type",
-                  "destination.user.domain",
-                  "destination.user.id",
-                  "destination.user.name",
-                  "ecs.version",
-                  "file.directory",
-                  "file.extension",
-                  "file.name",
-                  "file.path",
-                  "log.level",
-                  "message",
-                  "process.args",
-                  "process.command_line",
-                  "process.entity_id",
-                  "process.executable",
-                  "process.name",
-                  "process.title",
-                  "related.hash",
-                  "related.hosts",
-                  "related.user",
-                  "source.user.domain",
-                  "source.user.id",
-                  "source.user.name",
-                  "user.domain",
-                  "user.id",
-                  "user.name",
-                  "powershell.id",
-                  "powershell.pipeline_id",
-                  "powershell.runspace_id",
-                  "powershell.command.path",
-                  "powershell.command.name",
-                  "powershell.command.type",
-                  "powershell.command.value",
-                  "powershell.connected_user.domain",
-                  "powershell.connected_user.name",
-                  "powershell.engine.version",
-                  "powershell.engine.previous_state",
-                  "powershell.engine.new_state",
-                  "powershell.file.script_block_id",
-                  "powershell.file.script_block_text",
-                  "powershell.process.executable_version",
-                  "powershell.provider.new_state",
-                  "powershell.provider.name",
-                  "winlog.api",
-                  "winlog.activity_id",
-                  "winlog.computer_name",
-                  "winlog.event_data.AuthenticationPackageName",
-                  "winlog.event_data.Binary",
-                  "winlog.event_data.BitlockerUserInputTime",
-                  "winlog.event_data.BootMode",
-                  "winlog.event_data.BootType",
-                  "winlog.event_data.BuildVersion",
-                  "winlog.event_data.Company",
-                  "winlog.event_data.CorruptionActionState",
-                  "winlog.event_data.CreationUtcTime",
-                  "winlog.event_data.Description",
-                  "winlog.event_data.Detail",
-                  "winlog.event_data.DeviceName",
-                  "winlog.event_data.DeviceNameLength",
-                  "winlog.event_data.DeviceTime",
-                  "winlog.event_data.DeviceVersionMajor",
-                  "winlog.event_data.DeviceVersionMinor",
-                  "winlog.event_data.DriveName",
-                  "winlog.event_data.DriverName",
-                  "winlog.event_data.DriverNameLength",
-                  "winlog.event_data.DwordVal",
-                  "winlog.event_data.EntryCount",
-                  "winlog.event_data.ExtraInfo",
-                  "winlog.event_data.FailureName",
-                  "winlog.event_data.FailureNameLength",
-                  "winlog.event_data.FileVersion",
-                  "winlog.event_data.FinalStatus",
-                  "winlog.event_data.Group",
-                  "winlog.event_data.IdleImplementation",
-                  "winlog.event_data.IdleStateCount",
-                  "winlog.event_data.ImpersonationLevel",
-                  "winlog.event_data.IntegrityLevel",
-                  "winlog.event_data.IpAddress",
-                  "winlog.event_data.IpPort",
-                  "winlog.event_data.KeyLength",
-                  "winlog.event_data.LastBootGood",
-                  "winlog.event_data.LastShutdownGood",
-                  "winlog.event_data.LmPackageName",
-                  "winlog.event_data.LogonGuid",
-                  "winlog.event_data.LogonId",
-                  "winlog.event_data.LogonProcessName",
-                  "winlog.event_data.LogonType",
-                  "winlog.event_data.MajorVersion",
-                  "winlog.event_data.MaximumPerformancePercent",
-                  "winlog.event_data.MemberName",
-                  "winlog.event_data.MemberSid",
-                  "winlog.event_data.MinimumPerformancePercent",
-                  "winlog.event_data.MinimumThrottlePercent",
-                  "winlog.event_data.MinorVersion",
-                  "winlog.event_data.NewProcessId",
-                  "winlog.event_data.NewProcessName",
-                  "winlog.event_data.NewSchemeGuid",
-                  "winlog.event_data.NewTime",
-                  "winlog.event_data.NominalFrequency",
-                  "winlog.event_data.Number",
-                  "winlog.event_data.OldSchemeGuid",
-                  "winlog.event_data.OldTime",
-                  "winlog.event_data.OriginalFileName",
-                  "winlog.event_data.Path",
-                  "winlog.event_data.PerformanceImplementation",
-                  "winlog.event_data.PreviousCreationUtcTime",
-                  "winlog.event_data.PreviousTime",
-                  "winlog.event_data.PrivilegeList",
-                  "winlog.event_data.ProcessId",
-                  "winlog.event_data.ProcessName",
-                  "winlog.event_data.ProcessPath",
-                  "winlog.event_data.ProcessPid",
-                  "winlog.event_data.Product",
-                  "winlog.event_data.PuaCount",
-                  "winlog.event_data.PuaPolicyId",
-                  "winlog.event_data.QfeVersion",
-                  "winlog.event_data.Reason",
-                  "winlog.event_data.SchemaVersion",
-                  "winlog.event_data.ScriptBlockText",
-                  "winlog.event_data.ServiceName",
-                  "winlog.event_data.ServiceVersion",
-                  "winlog.event_data.ShutdownActionType",
-                  "winlog.event_data.ShutdownEventCode",
-                  "winlog.event_data.ShutdownReason",
-                  "winlog.event_data.Signature",
-                  "winlog.event_data.SignatureStatus",
-                  "winlog.event_data.Signed",
-                  "winlog.event_data.StartTime",
-                  "winlog.event_data.State",
-                  "winlog.event_data.Status",
-                  "winlog.event_data.StopTime",
-                  "winlog.event_data.SubjectDomainName",
-                  "winlog.event_data.SubjectLogonId",
-                  "winlog.event_data.SubjectUserName",
-                  "winlog.event_data.SubjectUserSid",
-                  "winlog.event_data.TSId",
-                  "winlog.event_data.TargetDomainName",
-                  "winlog.event_data.TargetInfo",
-                  "winlog.event_data.TargetLogonGuid",
-                  "winlog.event_data.TargetLogonId",
-                  "winlog.event_data.TargetServerName",
-                  "winlog.event_data.TargetUserName",
-                  "winlog.event_data.TargetUserSid",
-                  "winlog.event_data.TerminalSessionId",
-                  "winlog.event_data.TokenElevationType",
-                  "winlog.event_data.TransmittedServices",
-                  "winlog.event_data.UserSid",
-                  "winlog.event_data.Version",
-                  "winlog.event_data.Workstation",
-                  "winlog.event_data.param1",
-                  "winlog.event_data.param2",
-                  "winlog.event_data.param3",
-                  "winlog.event_data.param4",
-                  "winlog.event_data.param5",
-                  "winlog.event_data.param6",
-                  "winlog.event_data.param7",
-                  "winlog.event_data.param8",
-                  "winlog.event_id",
-                  "winlog.keywords",
-                  "winlog.channel",
-                  "winlog.record_id",
-                  "winlog.related_activity_id",
-                  "winlog.opcode",
-                  "winlog.provider_guid",
-                  "winlog.provider_name",
-                  "winlog.task",
-                  "winlog.user.identifier",
-                  "winlog.user.name",
-                  "winlog.user.domain",
-                  "winlog.user.type"
-                ]
-              }
-            }
-          },
-          "mappings": {
-            "dynamic_templates": [
-              {
-                "container.labels": {
-                  "path_match": "container.labels.*",
-                  "mapping": {
-                    "type": "keyword"
-                  },
-                  "match_mapping_type": "string"
-                }
-              },
-              {
-                "winlog.user_data": {
-                  "path_match": "winlog.user_data.*",
-                  "mapping": {
-                    "type": "keyword"
-                  },
-                  "match_mapping_type": "string"
-                }
-              }
-            ],
-            "properties": {
-              "container": {
-                "properties": {
-                  "image": {
-                    "properties": {
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "process": {
-                "properties": {
-                  "args": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword",
-                    "fields": {
-                      "text": {
-                        "type": "match_only_text"
-                      }
-                    }
-                  },
-                  "pid": {
-                    "type": "long"
-                  },
-                  "args_count": {
-                    "type": "long"
-                  },
-                  "entity_id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "title": {
-                    "ignore_above": 1024,
-                    "type": "keyword",
-                    "fields": {
-                      "text": {
-                        "type": "match_only_text"
-                      }
-                    }
-                  },
-                  "command_line": {
-                    "ignore_above": 1024,
-                    "type": "wildcard",
-                    "fields": {
-                      "text": {
-                        "type": "match_only_text"
-                      }
-                    }
-                  },
-                  "executable": {
-                    "ignore_above": 1024,
-                    "type": "keyword",
-                    "fields": {
-                      "text": {
-                        "type": "match_only_text"
-                      }
-                    }
-                  }
-                }
-              },
-              "winlog": {
-                "properties": {
-                  "related_activity_id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "computer_name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "process": {
-                    "properties": {
-                      "pid": {
-                        "type": "long"
-                      },
-                      "thread": {
-                        "properties": {
-                          "id": {
-                            "type": "long"
-                          }
-                        }
-                      }
-                    }
-                  },
-                  "keywords": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "channel": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "event_data": {
-                    "properties": {
-                      "SignatureStatus": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DeviceTime": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ProcessName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "LogonGuid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "OriginalFileName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "BootMode": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Product": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TargetLogonGuid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "FileVersion": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "StopTime": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Status": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "CorruptionActionState": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "KeyLength": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "PreviousCreationUtcTime": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TargetInfo": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ServiceVersion": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "SubjectUserSid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "PerformanceImplementation": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TargetUserSid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Group": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Description": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ShutdownActionType": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DwordVal": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ProcessPid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DeviceVersionMajor": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ScriptBlockText": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TransmittedServices": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "MaximumPerformancePercent": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "NewTime": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "FinalStatus": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "IdleStateCount": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "MajorVersion": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Path": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "SchemaVersion": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TokenElevationType": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "MinorVersion": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "SubjectLogonId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "IdleImplementation": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ProcessPath": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "QfeVersion": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DeviceVersionMinor": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "OldTime": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "IpAddress": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DeviceName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Company": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "PuaPolicyId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "IntegrityLevel": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "LastShutdownGood": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "IpPort": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DriverNameLength": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "LmPackageName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "UserSid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "LastBootGood": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "PuaCount": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Version": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Signed": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "StartTime": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ShutdownEventCode": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "NewProcessName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "FailureNameLength": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ServiceName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "PreviousTime": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "State": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "BootType": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Binary": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ImpersonationLevel": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "MemberName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TargetUserName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Detail": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TerminalSessionId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "MemberSid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DriverName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DeviceNameLength": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "OldSchemeGuid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "CreationUtcTime": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Reason": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ShutdownReason": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TargetServerName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Number": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "BuildVersion": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "SubjectDomainName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "MinimumPerformancePercent": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "LogonId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "LogonProcessName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TSId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TargetDomainName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "PrivilegeList": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "param7": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "param8": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "param5": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "param6": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DriveName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "NewProcessId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "LogonType": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ExtraInfo": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "param3": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "param4": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "param1": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "param2": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TargetLogonId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Workstation": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "SubjectUserName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "FailureName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "NewSchemeGuid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Signature": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "MinimumThrottlePercent": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ProcessId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "EntryCount": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "BitlockerUserInputTime": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "AuthenticationPackageName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "NominalFrequency": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "opcode": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "version": {
-                    "type": "long"
-                  },
-                  "record_id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "event_id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "task": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "provider_guid": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "activity_id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "api": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "provider_name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "user": {
-                    "properties": {
-                      "identifier": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "domain": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "type": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  }
-                }
-              },
-              "log": {
-                "properties": {
-                  "level": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "destination": {
-                "properties": {
-                  "user": {
-                    "properties": {
-                      "domain": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword",
-                        "fields": {
-                          "text": {
-                            "type": "match_only_text"
-                          }
-                        }
-                      },
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  }
-                }
-              },
-              "source": {
-                "properties": {
-                  "user": {
-                    "properties": {
-                      "domain": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword",
-                        "fields": {
-                          "text": {
-                            "type": "match_only_text"
-                          }
-                        }
-                      },
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  }
-                }
-              },
-              "message": {
-                "type": "match_only_text"
-              },
-              "tags": {
-                "ignore_above": 1024,
-                "type": "keyword"
-              },
-              "cloud": {
-                "properties": {
-                  "availability_zone": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "image": {
-                    "properties": {
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "instance": {
-                    "properties": {
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "provider": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "machine": {
-                    "properties": {
-                      "type": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "project": {
-                    "properties": {
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "region": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "account": {
-                    "properties": {
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  }
-                }
-              },
-              "input": {
-                "properties": {
-                  "type": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "@timestamp": {
-                "type": "date"
-              },
-              "file": {
-                "properties": {
-                  "path": {
-                    "ignore_above": 1024,
-                    "type": "keyword",
-                    "fields": {
-                      "text": {
-                        "type": "match_only_text"
-                      }
-                    }
-                  },
-                  "extension": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "directory": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "ecs": {
-                "properties": {
-                  "version": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "related": {
-                "properties": {
-                  "hosts": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "ip": {
-                    "type": "ip"
-                  },
-                  "user": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "hash": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "data_stream": {
-                "properties": {
-                  "namespace": {
-                    "type": "constant_keyword"
-                  },
-                  "type": {
-                    "type": "constant_keyword"
-                  },
-                  "dataset": {
-                    "type": "constant_keyword"
-                  }
-                }
-              },
-              "powershell": {
-                "properties": {
-                  "sequence": {
-                    "type": "long"
-                  },
-                  "total": {
-                    "type": "long"
-                  },
-                  "connected_user": {
-                    "properties": {
-                      "domain": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "process": {
-                    "properties": {
-                      "executable_version": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "file": {
-                    "properties": {
-                      "script_block_text": {
-                        "search_analyzer": "powershell_script_analyzer",
-                        "analyzer": "powershell_script_analyzer",
-                        "type": "text"
-                      },
-                      "script_block_id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "engine": {
-                    "properties": {
-                      "previous_state": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "new_state": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "version": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "provider": {
-                    "properties": {
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "new_state": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "runspace_id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "pipeline_id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "command": {
-                    "properties": {
-                      "path": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "type": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "value": {
-                        "type": "text"
-                      }
-                    }
-                  }
-                }
-              },
-              "host": {
-                "properties": {
-                  "hostname": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "os": {
-                    "properties": {
-                      "build": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "kernel": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "codename": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword",
-                        "fields": {
-                          "text": {
-                            "type": "text"
-                          }
-                        }
-                      },
-                      "family": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "version": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "platform": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "domain": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "ip": {
-                    "type": "ip"
-                  },
-                  "containerized": {
-                    "type": "boolean"
-                  },
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "type": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "mac": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "architecture": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "event": {
-                "properties": {
-                  "sequence": {
-                    "type": "long"
-                  },
-                  "ingested": {
-                    "type": "date"
-                  },
-                  "code": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "provider": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "created": {
-                    "type": "date"
-                  },
-                  "kind": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "module": {
-                    "type": "constant_keyword",
-                    "value": "windows"
-                  },
-                  "action": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "category": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "type": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "dataset": {
-                    "type": "constant_keyword",
-                    "value": "windows.powershell"
-                  },
-                  "outcome": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "dataset": {
-                "properties": {
-                  "name": {
-                    "type": "constant_keyword"
-                  },
-                  "namespace": {
-                    "type": "constant_keyword"
-                  },
-                  "type": {
-                    "type": "constant_keyword"
-                  }
-                }
-              },
-              "user": {
-                "properties": {
-                  "domain": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword",
-                    "fields": {
-                      "text": {
-                        "type": "match_only_text"
-                      }
-                    }
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              }
-            }
-          }
-        },
-        "_meta": {
-          "package": {
-            "name": "windows"
-          },
-          "managed_by": "fleet",
-          "managed": true
-        }
-      }
diff --git a/salt/elasticsearch/templates/component/elastic-agent/logs-windows.powershell_operational@custom.json b/salt/elasticsearch/templates/component/elastic-agent/logs-windows.powershell_operational@custom.json
deleted file mode 100644
index fe77af1db..000000000
--- a/salt/elasticsearch/templates/component/elastic-agent/logs-windows.powershell_operational@custom.json
+++ /dev/null
@@ -1,12 +0,0 @@
-{
-  "template": {
-    "settings": {}
-  },
-  "_meta": {
-    "package": {
-      "name": "elastic_agent"
-    },
-    "managed_by": "fleet",
-    "managed": true
-  }
-}
diff --git a/salt/elasticsearch/templates/component/elastic-agent/logs-windows.powershell_operational@package.json b/salt/elasticsearch/templates/component/elastic-agent/logs-windows.powershell_operational@package.json
deleted file mode 100644
index b5cc588c9..000000000
--- a/salt/elasticsearch/templates/component/elastic-agent/logs-windows.powershell_operational@package.json
+++ /dev/null
@@ -1,1334 +0,0 @@
-        {"template": {
-          "settings": {
-            "index": {
-              "lifecycle": {
-                "name": "logs"
-              },
-              "codec": "best_compression",
-              "default_pipeline": "logs-windows.powershell_operational-1.20.1",
-              "mapping": {
-                "total_fields": {
-                  "limit": "10000"
-                }
-              },
-              "analysis": {
-                "analyzer": {
-                  "powershell_script_analyzer": {
-                    "pattern": "[\\W&&[^-]]+",
-                    "type": "pattern"
-                  }
-                }
-              },
-              "query": {
-                "default_field": [
-                  "cloud.account.id",
-                  "cloud.availability_zone",
-                  "cloud.instance.id",
-                  "cloud.instance.name",
-                  "cloud.machine.type",
-                  "cloud.provider",
-                  "cloud.region",
-                  "cloud.project.id",
-                  "cloud.image.id",
-                  "container.id",
-                  "container.image.name",
-                  "container.name",
-                  "host.architecture",
-                  "host.hostname",
-                  "host.id",
-                  "host.mac",
-                  "host.name",
-                  "host.os.family",
-                  "host.os.kernel",
-                  "host.os.name",
-                  "host.os.platform",
-                  "host.os.version",
-                  "host.os.build",
-                  "host.os.codename",
-                  "host.type",
-                  "event.action",
-                  "event.category",
-                  "event.code",
-                  "event.kind",
-                  "event.outcome",
-                  "event.provider",
-                  "event.type",
-                  "tags",
-                  "input.type",
-                  "destination.user.domain",
-                  "destination.user.id",
-                  "destination.user.name",
-                  "ecs.version",
-                  "file.directory",
-                  "file.extension",
-                  "file.name",
-                  "file.path",
-                  "log.level",
-                  "message",
-                  "process.args",
-                  "process.command_line",
-                  "process.entity_id",
-                  "process.executable",
-                  "process.name",
-                  "process.title",
-                  "related.hash",
-                  "related.hosts",
-                  "related.user",
-                  "source.user.domain",
-                  "source.user.id",
-                  "source.user.name",
-                  "user.domain",
-                  "user.id",
-                  "user.name",
-                  "powershell.id",
-                  "powershell.pipeline_id",
-                  "powershell.runspace_id",
-                  "powershell.command.path",
-                  "powershell.command.name",
-                  "powershell.command.type",
-                  "powershell.command.value",
-                  "powershell.connected_user.domain",
-                  "powershell.connected_user.name",
-                  "powershell.engine.version",
-                  "powershell.engine.previous_state",
-                  "powershell.engine.new_state",
-                  "powershell.file.script_block_id",
-                  "powershell.file.script_block_text",
-                  "powershell.process.executable_version",
-                  "powershell.provider.new_state",
-                  "powershell.provider.name",
-                  "winlog.api",
-                  "winlog.activity_id",
-                  "winlog.computer_name",
-                  "winlog.event_data.AuthenticationPackageName",
-                  "winlog.event_data.Binary",
-                  "winlog.event_data.BitlockerUserInputTime",
-                  "winlog.event_data.BootMode",
-                  "winlog.event_data.BootType",
-                  "winlog.event_data.BuildVersion",
-                  "winlog.event_data.Company",
-                  "winlog.event_data.CorruptionActionState",
-                  "winlog.event_data.CreationUtcTime",
-                  "winlog.event_data.Description",
-                  "winlog.event_data.Detail",
-                  "winlog.event_data.DeviceName",
-                  "winlog.event_data.DeviceNameLength",
-                  "winlog.event_data.DeviceTime",
-                  "winlog.event_data.DeviceVersionMajor",
-                  "winlog.event_data.DeviceVersionMinor",
-                  "winlog.event_data.DriveName",
-                  "winlog.event_data.DriverName",
-                  "winlog.event_data.DriverNameLength",
-                  "winlog.event_data.DwordVal",
-                  "winlog.event_data.EntryCount",
-                  "winlog.event_data.ExtraInfo",
-                  "winlog.event_data.FailureName",
-                  "winlog.event_data.FailureNameLength",
-                  "winlog.event_data.FileVersion",
-                  "winlog.event_data.FinalStatus",
-                  "winlog.event_data.Group",
-                  "winlog.event_data.IdleImplementation",
-                  "winlog.event_data.IdleStateCount",
-                  "winlog.event_data.ImpersonationLevel",
-                  "winlog.event_data.IntegrityLevel",
-                  "winlog.event_data.IpAddress",
-                  "winlog.event_data.IpPort",
-                  "winlog.event_data.KeyLength",
-                  "winlog.event_data.LastBootGood",
-                  "winlog.event_data.LastShutdownGood",
-                  "winlog.event_data.LmPackageName",
-                  "winlog.event_data.LogonGuid",
-                  "winlog.event_data.LogonId",
-                  "winlog.event_data.LogonProcessName",
-                  "winlog.event_data.LogonType",
-                  "winlog.event_data.MajorVersion",
-                  "winlog.event_data.MaximumPerformancePercent",
-                  "winlog.event_data.MemberName",
-                  "winlog.event_data.MemberSid",
-                  "winlog.event_data.MinimumPerformancePercent",
-                  "winlog.event_data.MinimumThrottlePercent",
-                  "winlog.event_data.MinorVersion",
-                  "winlog.event_data.NewProcessId",
-                  "winlog.event_data.NewProcessName",
-                  "winlog.event_data.NewSchemeGuid",
-                  "winlog.event_data.NewTime",
-                  "winlog.event_data.NominalFrequency",
-                  "winlog.event_data.Number",
-                  "winlog.event_data.OldSchemeGuid",
-                  "winlog.event_data.OldTime",
-                  "winlog.event_data.OriginalFileName",
-                  "winlog.event_data.Path",
-                  "winlog.event_data.PerformanceImplementation",
-                  "winlog.event_data.PreviousCreationUtcTime",
-                  "winlog.event_data.PreviousTime",
-                  "winlog.event_data.PrivilegeList",
-                  "winlog.event_data.ProcessId",
-                  "winlog.event_data.ProcessName",
-                  "winlog.event_data.ProcessPath",
-                  "winlog.event_data.ProcessPid",
-                  "winlog.event_data.Product",
-                  "winlog.event_data.PuaCount",
-                  "winlog.event_data.PuaPolicyId",
-                  "winlog.event_data.QfeVersion",
-                  "winlog.event_data.Reason",
-                  "winlog.event_data.SchemaVersion",
-                  "winlog.event_data.ScriptBlockText",
-                  "winlog.event_data.ServiceName",
-                  "winlog.event_data.ServiceVersion",
-                  "winlog.event_data.ShutdownActionType",
-                  "winlog.event_data.ShutdownEventCode",
-                  "winlog.event_data.ShutdownReason",
-                  "winlog.event_data.Signature",
-                  "winlog.event_data.SignatureStatus",
-                  "winlog.event_data.Signed",
-                  "winlog.event_data.StartTime",
-                  "winlog.event_data.State",
-                  "winlog.event_data.Status",
-                  "winlog.event_data.StopTime",
-                  "winlog.event_data.SubjectDomainName",
-                  "winlog.event_data.SubjectLogonId",
-                  "winlog.event_data.SubjectUserName",
-                  "winlog.event_data.SubjectUserSid",
-                  "winlog.event_data.TSId",
-                  "winlog.event_data.TargetDomainName",
-                  "winlog.event_data.TargetInfo",
-                  "winlog.event_data.TargetLogonGuid",
-                  "winlog.event_data.TargetLogonId",
-                  "winlog.event_data.TargetServerName",
-                  "winlog.event_data.TargetUserName",
-                  "winlog.event_data.TargetUserSid",
-                  "winlog.event_data.TerminalSessionId",
-                  "winlog.event_data.TokenElevationType",
-                  "winlog.event_data.TransmittedServices",
-                  "winlog.event_data.UserSid",
-                  "winlog.event_data.Version",
-                  "winlog.event_data.Workstation",
-                  "winlog.event_data.param1",
-                  "winlog.event_data.param2",
-                  "winlog.event_data.param3",
-                  "winlog.event_data.param4",
-                  "winlog.event_data.param5",
-                  "winlog.event_data.param6",
-                  "winlog.event_data.param7",
-                  "winlog.event_data.param8",
-                  "winlog.event_id",
-                  "winlog.keywords",
-                  "winlog.channel",
-                  "winlog.record_id",
-                  "winlog.related_activity_id",
-                  "winlog.opcode",
-                  "winlog.provider_guid",
-                  "winlog.provider_name",
-                  "winlog.task",
-                  "winlog.user.identifier",
-                  "winlog.user.name",
-                  "winlog.user.domain",
-                  "winlog.user.type"
-                ]
-              }
-            }
-          },
-          "mappings": {
-            "dynamic_templates": [
-              {
-                "container.labels": {
-                  "path_match": "container.labels.*",
-                  "mapping": {
-                    "type": "keyword"
-                  },
-                  "match_mapping_type": "string"
-                }
-              },
-              {
-                "winlog.user_data": {
-                  "path_match": "winlog.user_data.*",
-                  "mapping": {
-                    "type": "keyword"
-                  },
-                  "match_mapping_type": "string"
-                }
-              }
-            ],
-            "properties": {
-              "container": {
-                "properties": {
-                  "image": {
-                    "properties": {
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "process": {
-                "properties": {
-                  "args": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword",
-                    "fields": {
-                      "text": {
-                        "type": "match_only_text"
-                      }
-                    }
-                  },
-                  "pid": {
-                    "type": "long"
-                  },
-                  "args_count": {
-                    "type": "long"
-                  },
-                  "entity_id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "title": {
-                    "ignore_above": 1024,
-                    "type": "keyword",
-                    "fields": {
-                      "text": {
-                        "type": "match_only_text"
-                      }
-                    }
-                  },
-                  "command_line": {
-                    "ignore_above": 1024,
-                    "type": "wildcard",
-                    "fields": {
-                      "text": {
-                        "type": "match_only_text"
-                      }
-                    }
-                  },
-                  "executable": {
-                    "ignore_above": 1024,
-                    "type": "keyword",
-                    "fields": {
-                      "text": {
-                        "type": "match_only_text"
-                      }
-                    }
-                  }
-                }
-              },
-              "winlog": {
-                "properties": {
-                  "related_activity_id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "computer_name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "process": {
-                    "properties": {
-                      "pid": {
-                        "type": "long"
-                      },
-                      "thread": {
-                        "properties": {
-                          "id": {
-                            "type": "long"
-                          }
-                        }
-                      }
-                    }
-                  },
-                  "keywords": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "channel": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "event_data": {
-                    "properties": {
-                      "SignatureStatus": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DeviceTime": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ProcessName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "LogonGuid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "OriginalFileName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "BootMode": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Product": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TargetLogonGuid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "FileVersion": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "StopTime": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Status": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "CorruptionActionState": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "KeyLength": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "PreviousCreationUtcTime": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TargetInfo": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ServiceVersion": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "SubjectUserSid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "PerformanceImplementation": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TargetUserSid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Group": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Description": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ShutdownActionType": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DwordVal": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ProcessPid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DeviceVersionMajor": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ScriptBlockText": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TransmittedServices": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "MaximumPerformancePercent": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "NewTime": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "FinalStatus": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "IdleStateCount": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "MajorVersion": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Path": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "SchemaVersion": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TokenElevationType": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "MinorVersion": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "SubjectLogonId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "IdleImplementation": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ProcessPath": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "QfeVersion": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DeviceVersionMinor": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "OldTime": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "IpAddress": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DeviceName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Company": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "PuaPolicyId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "IntegrityLevel": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "LastShutdownGood": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "IpPort": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DriverNameLength": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "LmPackageName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "UserSid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "LastBootGood": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "PuaCount": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Version": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Signed": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "StartTime": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ShutdownEventCode": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "NewProcessName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "FailureNameLength": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ServiceName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "PreviousTime": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "State": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "BootType": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Binary": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ImpersonationLevel": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "MemberName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TargetUserName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Detail": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TerminalSessionId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "MemberSid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DriverName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DeviceNameLength": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "OldSchemeGuid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "CreationUtcTime": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Reason": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ShutdownReason": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TargetServerName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Number": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "BuildVersion": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "SubjectDomainName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "MinimumPerformancePercent": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "LogonId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "LogonProcessName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TSId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TargetDomainName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "PrivilegeList": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "param7": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "param8": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "param5": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "param6": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DriveName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "NewProcessId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "LogonType": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ExtraInfo": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "param3": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "param4": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "param1": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "param2": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TargetLogonId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Workstation": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "SubjectUserName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "FailureName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "NewSchemeGuid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Signature": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "MinimumThrottlePercent": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ProcessId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "EntryCount": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "BitlockerUserInputTime": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "AuthenticationPackageName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "NominalFrequency": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "opcode": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "version": {
-                    "type": "long"
-                  },
-                  "record_id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "event_id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "task": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "provider_guid": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "activity_id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "api": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "provider_name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "user": {
-                    "properties": {
-                      "identifier": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "domain": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "type": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  }
-                }
-              },
-              "log": {
-                "properties": {
-                  "level": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "destination": {
-                "properties": {
-                  "user": {
-                    "properties": {
-                      "domain": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword",
-                        "fields": {
-                          "text": {
-                            "type": "match_only_text"
-                          }
-                        }
-                      },
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  }
-                }
-              },
-              "source": {
-                "properties": {
-                  "user": {
-                    "properties": {
-                      "domain": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword",
-                        "fields": {
-                          "text": {
-                            "type": "match_only_text"
-                          }
-                        }
-                      },
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  }
-                }
-              },
-              "message": {
-                "type": "match_only_text"
-              },
-              "tags": {
-                "ignore_above": 1024,
-                "type": "keyword"
-              },
-              "cloud": {
-                "properties": {
-                  "availability_zone": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "image": {
-                    "properties": {
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "instance": {
-                    "properties": {
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "provider": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "machine": {
-                    "properties": {
-                      "type": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "project": {
-                    "properties": {
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "region": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "account": {
-                    "properties": {
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  }
-                }
-              },
-              "input": {
-                "properties": {
-                  "type": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "@timestamp": {
-                "type": "date"
-              },
-              "file": {
-                "properties": {
-                  "path": {
-                    "ignore_above": 1024,
-                    "type": "keyword",
-                    "fields": {
-                      "text": {
-                        "type": "match_only_text"
-                      }
-                    }
-                  },
-                  "extension": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "directory": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "ecs": {
-                "properties": {
-                  "version": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "related": {
-                "properties": {
-                  "hosts": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "ip": {
-                    "type": "ip"
-                  },
-                  "user": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "hash": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "data_stream": {
-                "properties": {
-                  "namespace": {
-                    "type": "constant_keyword"
-                  },
-                  "type": {
-                    "type": "constant_keyword"
-                  },
-                  "dataset": {
-                    "type": "constant_keyword"
-                  }
-                }
-              },
-              "powershell": {
-                "properties": {
-                  "sequence": {
-                    "type": "long"
-                  },
-                  "total": {
-                    "type": "long"
-                  },
-                  "connected_user": {
-                    "properties": {
-                      "domain": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "process": {
-                    "properties": {
-                      "executable_version": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "file": {
-                    "properties": {
-                      "script_block_text": {
-                        "analyzer": "powershell_script_analyzer",
-                        "type": "text"
-                      },
-                      "script_block_id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "engine": {
-                    "properties": {
-                      "previous_state": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "new_state": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "version": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "provider": {
-                    "properties": {
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "new_state": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "runspace_id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "pipeline_id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "command": {
-                    "properties": {
-                      "path": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "type": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "value": {
-                        "type": "text"
-                      }
-                    }
-                  }
-                }
-              },
-              "host": {
-                "properties": {
-                  "hostname": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "os": {
-                    "properties": {
-                      "build": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "kernel": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "codename": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword",
-                        "fields": {
-                          "text": {
-                            "type": "text"
-                          }
-                        }
-                      },
-                      "family": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "version": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "platform": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "domain": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "ip": {
-                    "type": "ip"
-                  },
-                  "containerized": {
-                    "type": "boolean"
-                  },
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "type": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "mac": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "architecture": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "event": {
-                "properties": {
-                  "sequence": {
-                    "type": "long"
-                  },
-                  "ingested": {
-                    "type": "date"
-                  },
-                  "code": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "provider": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "created": {
-                    "type": "date"
-                  },
-                  "kind": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "module": {
-                    "type": "constant_keyword",
-                    "value": "windows"
-                  },
-                  "action": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "category": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "type": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "dataset": {
-                    "type": "constant_keyword",
-                    "value": "windows.powershell_operational"
-                  },
-                  "outcome": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "dataset": {
-                "properties": {
-                  "name": {
-                    "type": "constant_keyword"
-                  },
-                  "namespace": {
-                    "type": "constant_keyword"
-                  },
-                  "type": {
-                    "type": "constant_keyword"
-                  }
-                }
-              },
-              "user": {
-                "properties": {
-                  "domain": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword",
-                    "fields": {
-                      "text": {
-                        "type": "match_only_text"
-                      }
-                    }
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              }
-            }
-          }
-        },
-        "_meta": {
-          "package": {
-            "name": "windows"
-          },
-          "managed_by": "fleet",
-          "managed": true
-        }
-      }
diff --git a/salt/elasticsearch/templates/component/elastic-agent/logs-windows.sysmon_operational@custom.json b/salt/elasticsearch/templates/component/elastic-agent/logs-windows.sysmon_operational@custom.json
deleted file mode 100644
index fe77af1db..000000000
--- a/salt/elasticsearch/templates/component/elastic-agent/logs-windows.sysmon_operational@custom.json
+++ /dev/null
@@ -1,12 +0,0 @@
-{
-  "template": {
-    "settings": {}
-  },
-  "_meta": {
-    "package": {
-      "name": "elastic_agent"
-    },
-    "managed_by": "fleet",
-    "managed": true
-  }
-}
diff --git a/salt/elasticsearch/templates/component/elastic-agent/logs-windows.sysmon_operational@package.json b/salt/elasticsearch/templates/component/elastic-agent/logs-windows.sysmon_operational@package.json
deleted file mode 100644
index 451eaf7aa..000000000
--- a/salt/elasticsearch/templates/component/elastic-agent/logs-windows.sysmon_operational@package.json
+++ /dev/null
@@ -1,1752 +0,0 @@
-        {"template": {
-          "settings": {
-            "index": {
-              "lifecycle": {
-                "name": "logs"
-              },
-              "codec": "best_compression",
-              "default_pipeline": "logs-windows.sysmon_operational-1.20.1",
-              "mapping": {
-                "total_fields": {
-                  "limit": "10000"
-                }
-              },
-              "query": {
-                "default_field": [
-                  "cloud.account.id",
-                  "cloud.availability_zone",
-                  "cloud.instance.id",
-                  "cloud.instance.name",
-                  "cloud.machine.type",
-                  "cloud.provider",
-                  "cloud.region",
-                  "cloud.project.id",
-                  "cloud.image.id",
-                  "container.id",
-                  "container.image.name",
-                  "container.name",
-                  "host.architecture",
-                  "host.hostname",
-                  "host.id",
-                  "host.mac",
-                  "host.name",
-                  "host.os.family",
-                  "host.os.kernel",
-                  "host.os.name",
-                  "host.os.platform",
-                  "host.os.version",
-                  "host.os.build",
-                  "host.os.codename",
-                  "host.type",
-                  "event.action",
-                  "event.category",
-                  "event.code",
-                  "event.kind",
-                  "event.outcome",
-                  "event.provider",
-                  "event.type",
-                  "tags",
-                  "input.type",
-                  "destination.domain",
-                  "dns.answers.class",
-                  "dns.answers.data",
-                  "dns.answers.name",
-                  "dns.answers.type",
-                  "dns.header_flags",
-                  "dns.id",
-                  "dns.op_code",
-                  "dns.question.class",
-                  "dns.question.name",
-                  "dns.question.registered_domain",
-                  "dns.question.subdomain",
-                  "dns.question.top_level_domain",
-                  "dns.question.type",
-                  "dns.response_code",
-                  "dns.type",
-                  "ecs.version",
-                  "error.code",
-                  "error.message",
-                  "file.code_signature.status",
-                  "file.code_signature.subject_name",
-                  "file.directory",
-                  "file.extension",
-                  "file.hash.md5",
-                  "file.hash.sha1",
-                  "file.hash.sha256",
-                  "file.hash.sha512",
-                  "file.name",
-                  "file.path",
-                  "file.pe.architecture",
-                  "file.pe.company",
-                  "file.pe.description",
-                  "file.pe.file_version",
-                  "file.pe.imphash",
-                  "file.pe.original_file_name",
-                  "file.pe.product",
-                  "group.domain",
-                  "group.id",
-                  "group.name",
-                  "log.level",
-                  "message",
-                  "network.community_id",
-                  "network.direction",
-                  "network.protocol",
-                  "network.transport",
-                  "network.type",
-                  "process.args",
-                  "process.command_line",
-                  "process.entity_id",
-                  "process.executable",
-                  "process.hash.md5",
-                  "process.hash.sha1",
-                  "process.hash.sha256",
-                  "process.hash.sha512",
-                  "process.name",
-                  "process.parent.args",
-                  "process.parent.command_line",
-                  "process.parent.entity_id",
-                  "process.parent.executable",
-                  "process.parent.name",
-                  "process.pe.architecture",
-                  "process.pe.company",
-                  "process.pe.description",
-                  "process.pe.file_version",
-                  "process.pe.imphash",
-                  "process.pe.original_file_name",
-                  "process.pe.product",
-                  "process.title",
-                  "process.working_directory",
-                  "registry.data.strings",
-                  "registry.data.type",
-                  "registry.hive",
-                  "registry.key",
-                  "registry.path",
-                  "registry.value",
-                  "related.hash",
-                  "related.hosts",
-                  "related.user",
-                  "rule.name",
-                  "service.name",
-                  "service.type",
-                  "source.domain",
-                  "user.domain",
-                  "user.id",
-                  "user.name",
-                  "user.target.group.domain",
-                  "user.target.group.id",
-                  "user.target.group.name",
-                  "user.target.name",
-                  "sysmon.dns.status",
-                  "winlog.api",
-                  "winlog.activity_id",
-                  "winlog.computer_name",
-                  "winlog.event_data.AuthenticationPackageName",
-                  "winlog.event_data.Binary",
-                  "winlog.event_data.BitlockerUserInputTime",
-                  "winlog.event_data.BootMode",
-                  "winlog.event_data.BootType",
-                  "winlog.event_data.BuildVersion",
-                  "winlog.event_data.CallTrace",
-                  "winlog.event_data.ClientInfo",
-                  "winlog.event_data.Company",
-                  "winlog.event_data.Configuration",
-                  "winlog.event_data.CorruptionActionState",
-                  "winlog.event_data.CreationUtcTime",
-                  "winlog.event_data.Description",
-                  "winlog.event_data.Detail",
-                  "winlog.event_data.DeviceName",
-                  "winlog.event_data.DeviceNameLength",
-                  "winlog.event_data.DeviceTime",
-                  "winlog.event_data.DeviceVersionMajor",
-                  "winlog.event_data.DeviceVersionMinor",
-                  "winlog.event_data.DriveName",
-                  "winlog.event_data.DriverName",
-                  "winlog.event_data.DriverNameLength",
-                  "winlog.event_data.DwordVal",
-                  "winlog.event_data.EntryCount",
-                  "winlog.event_data.EventType",
-                  "winlog.event_data.EventNamespace",
-                  "winlog.event_data.ExtraInfo",
-                  "winlog.event_data.FailureName",
-                  "winlog.event_data.FailureNameLength",
-                  "winlog.event_data.FileVersion",
-                  "winlog.event_data.FinalStatus",
-                  "winlog.event_data.GrantedAccess",
-                  "winlog.event_data.Group",
-                  "winlog.event_data.IdleImplementation",
-                  "winlog.event_data.IdleStateCount",
-                  "winlog.event_data.ImpersonationLevel",
-                  "winlog.event_data.IntegrityLevel",
-                  "winlog.event_data.IpAddress",
-                  "winlog.event_data.IpPort",
-                  "winlog.event_data.KeyLength",
-                  "winlog.event_data.LastBootGood",
-                  "winlog.event_data.LastShutdownGood",
-                  "winlog.event_data.LmPackageName",
-                  "winlog.event_data.LogonGuid",
-                  "winlog.event_data.LogonId",
-                  "winlog.event_data.LogonProcessName",
-                  "winlog.event_data.LogonType",
-                  "winlog.event_data.MajorVersion",
-                  "winlog.event_data.MaximumPerformancePercent",
-                  "winlog.event_data.MemberName",
-                  "winlog.event_data.MemberSid",
-                  "winlog.event_data.MinimumPerformancePercent",
-                  "winlog.event_data.MinimumThrottlePercent",
-                  "winlog.event_data.MinorVersion",
-                  "winlog.event_data.Name",
-                  "winlog.event_data.NewProcessId",
-                  "winlog.event_data.NewProcessName",
-                  "winlog.event_data.NewSchemeGuid",
-                  "winlog.event_data.NewThreadId",
-                  "winlog.event_data.NewTime",
-                  "winlog.event_data.NominalFrequency",
-                  "winlog.event_data.Number",
-                  "winlog.event_data.OldSchemeGuid",
-                  "winlog.event_data.OldTime",
-                  "winlog.event_data.Operation",
-                  "winlog.event_data.OriginalFileName",
-                  "winlog.event_data.Path",
-                  "winlog.event_data.PerformanceImplementation",
-                  "winlog.event_data.PreviousCreationUtcTime",
-                  "winlog.event_data.PreviousTime",
-                  "winlog.event_data.PrivilegeList",
-                  "winlog.event_data.ProcessId",
-                  "winlog.event_data.ProcessName",
-                  "winlog.event_data.ProcessPath",
-                  "winlog.event_data.ProcessPid",
-                  "winlog.event_data.Product",
-                  "winlog.event_data.PuaCount",
-                  "winlog.event_data.PuaPolicyId",
-                  "winlog.event_data.QfeVersion",
-                  "winlog.event_data.Query",
-                  "winlog.event_data.Reason",
-                  "winlog.event_data.SchemaVersion",
-                  "winlog.event_data.ScriptBlockText",
-                  "winlog.event_data.ServiceName",
-                  "winlog.event_data.ServiceVersion",
-                  "winlog.event_data.Session",
-                  "winlog.event_data.ShutdownActionType",
-                  "winlog.event_data.ShutdownEventCode",
-                  "winlog.event_data.ShutdownReason",
-                  "winlog.event_data.Signature",
-                  "winlog.event_data.SignatureStatus",
-                  "winlog.event_data.Signed",
-                  "winlog.event_data.StartAddress",
-                  "winlog.event_data.StartFunction",
-                  "winlog.event_data.StartModule",
-                  "winlog.event_data.StartTime",
-                  "winlog.event_data.State",
-                  "winlog.event_data.Status",
-                  "winlog.event_data.StopTime",
-                  "winlog.event_data.SubjectDomainName",
-                  "winlog.event_data.SubjectLogonId",
-                  "winlog.event_data.SubjectUserName",
-                  "winlog.event_data.SubjectUserSid",
-                  "winlog.event_data.TSId",
-                  "winlog.event_data.TargetDomainName",
-                  "winlog.event_data.TargetImage",
-                  "winlog.event_data.TargetInfo",
-                  "winlog.event_data.TargetLogonGuid",
-                  "winlog.event_data.TargetLogonId",
-                  "winlog.event_data.TargetProcessGUID",
-                  "winlog.event_data.TargetProcessId",
-                  "winlog.event_data.TargetServerName",
-                  "winlog.event_data.TargetUserName",
-                  "winlog.event_data.TargetUserSid",
-                  "winlog.event_data.TerminalSessionId",
-                  "winlog.event_data.TokenElevationType",
-                  "winlog.event_data.TransmittedServices",
-                  "winlog.event_data.Type",
-                  "winlog.event_data.UserSid",
-                  "winlog.event_data.Version",
-                  "winlog.event_data.Workstation",
-                  "winlog.event_data.param1",
-                  "winlog.event_data.param2",
-                  "winlog.event_data.param3",
-                  "winlog.event_data.param4",
-                  "winlog.event_data.param5",
-                  "winlog.event_data.param6",
-                  "winlog.event_data.param7",
-                  "winlog.event_data.param8",
-                  "winlog.event_id",
-                  "winlog.keywords",
-                  "winlog.channel",
-                  "winlog.record_id",
-                  "winlog.related_activity_id",
-                  "winlog.opcode",
-                  "winlog.provider_guid",
-                  "winlog.provider_name",
-                  "winlog.task",
-                  "winlog.user.identifier",
-                  "winlog.user.name",
-                  "winlog.user.domain",
-                  "winlog.user.type"
-                ]
-              }
-            }
-          },
-          "mappings": {
-            "dynamic_templates": [
-              {
-                "container.labels": {
-                  "path_match": "container.labels.*",
-                  "mapping": {
-                    "type": "keyword"
-                  },
-                  "match_mapping_type": "string"
-                }
-              },
-              {
-                "winlog.user_data": {
-                  "path_match": "winlog.user_data.*",
-                  "mapping": {
-                    "type": "keyword"
-                  },
-                  "match_mapping_type": "string"
-                }
-              }
-            ],
-            "properties": {
-              "container": {
-                "properties": {
-                  "image": {
-                    "properties": {
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "sysmon": {
-                "properties": {
-                  "file": {
-                    "properties": {
-                      "archived": {
-                        "type": "boolean"
-                      },
-                      "is_executable": {
-                        "type": "boolean"
-                      }
-                    }
-                  },
-                  "dns": {
-                    "properties": {
-                      "status": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  }
-                }
-              },
-              "log": {
-                "properties": {
-                  "level": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "destination": {
-                "properties": {
-                  "port": {
-                    "type": "long"
-                  },
-                  "domain": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "ip": {
-                    "type": "ip"
-                  }
-                }
-              },
-              "rule": {
-                "properties": {
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "source": {
-                "properties": {
-                  "port": {
-                    "type": "long"
-                  },
-                  "domain": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "ip": {
-                    "type": "ip"
-                  }
-                }
-              },
-              "error": {
-                "properties": {
-                  "code": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "message": {
-                    "type": "match_only_text"
-                  }
-                }
-              },
-              "network": {
-                "properties": {
-                  "community_id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "protocol": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "transport": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "type": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "direction": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "cloud": {
-                "properties": {
-                  "availability_zone": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "image": {
-                    "properties": {
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "instance": {
-                    "properties": {
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "provider": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "machine": {
-                    "properties": {
-                      "type": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "project": {
-                    "properties": {
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "region": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "account": {
-                    "properties": {
-                      "id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  }
-                }
-              },
-              "file": {
-                "properties": {
-                  "path": {
-                    "ignore_above": 1024,
-                    "type": "keyword",
-                    "fields": {
-                      "text": {
-                        "type": "match_only_text"
-                      }
-                    }
-                  },
-                  "extension": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "code_signature": {
-                    "properties": {
-                      "valid": {
-                        "type": "boolean"
-                      },
-                      "trusted": {
-                        "type": "boolean"
-                      },
-                      "subject_name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "exists": {
-                        "type": "boolean"
-                      },
-                      "status": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "pe": {
-                    "properties": {
-                      "file_version": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "product": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "imphash": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "description": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "company": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "original_file_name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "architecture": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "directory": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "hash": {
-                    "properties": {
-                      "sha1": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "sha256": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "sha512": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "md5": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  }
-                }
-              },
-              "ecs": {
-                "properties": {
-                  "version": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "related": {
-                "properties": {
-                  "hosts": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "ip": {
-                    "type": "ip"
-                  },
-                  "user": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "hash": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "host": {
-                "properties": {
-                  "hostname": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "os": {
-                    "properties": {
-                      "build": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "kernel": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "codename": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword",
-                        "fields": {
-                          "text": {
-                            "type": "text"
-                          }
-                        }
-                      },
-                      "family": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "version": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "platform": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "domain": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "ip": {
-                    "type": "ip"
-                  },
-                  "containerized": {
-                    "type": "boolean"
-                  },
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "type": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "mac": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "architecture": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "event": {
-                "properties": {
-                  "sequence": {
-                    "type": "long"
-                  },
-                  "ingested": {
-                    "type": "date"
-                  },
-                  "code": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "provider": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "created": {
-                    "type": "date"
-                  },
-                  "kind": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "module": {
-                    "type": "constant_keyword",
-                    "value": "windows"
-                  },
-                  "action": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "category": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "type": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "dataset": {
-                    "type": "constant_keyword",
-                    "value": "windows.sysmon_operational"
-                  },
-                  "outcome": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "group": {
-                "properties": {
-                  "domain": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "registry": {
-                "properties": {
-                  "hive": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "path": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "data": {
-                    "properties": {
-                      "strings": {
-                        "ignore_above": 1024,
-                        "type": "wildcard"
-                      },
-                      "type": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "value": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "key": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "process": {
-                "properties": {
-                  "args": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "parent": {
-                    "properties": {
-                      "args": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword",
-                        "fields": {
-                          "text": {
-                            "type": "match_only_text"
-                          }
-                        }
-                      },
-                      "pid": {
-                        "type": "long"
-                      },
-                      "args_count": {
-                        "type": "long"
-                      },
-                      "entity_id": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "command_line": {
-                        "ignore_above": 1024,
-                        "type": "wildcard",
-                        "fields": {
-                          "text": {
-                            "type": "match_only_text"
-                          }
-                        }
-                      },
-                      "executable": {
-                        "ignore_above": 1024,
-                        "type": "keyword",
-                        "fields": {
-                          "text": {
-                            "type": "match_only_text"
-                          }
-                        }
-                      }
-                    }
-                  },
-                  "pe": {
-                    "properties": {
-                      "file_version": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "product": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "imphash": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "description": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "company": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "original_file_name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "architecture": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword",
-                    "fields": {
-                      "text": {
-                        "type": "match_only_text"
-                      }
-                    }
-                  },
-                  "pid": {
-                    "type": "long"
-                  },
-                  "working_directory": {
-                    "ignore_above": 1024,
-                    "type": "keyword",
-                    "fields": {
-                      "text": {
-                        "type": "match_only_text"
-                      }
-                    }
-                  },
-                  "args_count": {
-                    "type": "long"
-                  },
-                  "entity_id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "title": {
-                    "ignore_above": 1024,
-                    "type": "keyword",
-                    "fields": {
-                      "text": {
-                        "type": "match_only_text"
-                      }
-                    }
-                  },
-                  "command_line": {
-                    "ignore_above": 1024,
-                    "type": "wildcard",
-                    "fields": {
-                      "text": {
-                        "type": "match_only_text"
-                      }
-                    }
-                  },
-                  "executable": {
-                    "ignore_above": 1024,
-                    "type": "keyword",
-                    "fields": {
-                      "text": {
-                        "type": "match_only_text"
-                      }
-                    }
-                  },
-                  "hash": {
-                    "properties": {
-                      "sha1": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "sha256": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "sha512": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "md5": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  }
-                }
-              },
-              "winlog": {
-                "properties": {
-                  "related_activity_id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "computer_name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "process": {
-                    "properties": {
-                      "pid": {
-                        "type": "long"
-                      },
-                      "thread": {
-                        "properties": {
-                          "id": {
-                            "type": "long"
-                          }
-                        }
-                      }
-                    }
-                  },
-                  "keywords": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "channel": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "event_data": {
-                    "properties": {
-                      "SignatureStatus": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DeviceTime": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ProcessName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "LogonGuid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Configuration": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "OriginalFileName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Query": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "BootMode": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Product": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "StartAddress": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TargetLogonGuid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "FileVersion": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "CallTrace": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "StopTime": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Status": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "GrantedAccess": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "CorruptionActionState": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "KeyLength": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "PreviousCreationUtcTime": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TargetInfo": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ServiceVersion": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "SubjectUserSid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "PerformanceImplementation": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TargetUserSid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Group": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "NewThreadId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Description": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ShutdownActionType": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DwordVal": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ProcessPid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DeviceVersionMajor": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ScriptBlockText": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TransmittedServices": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "MaximumPerformancePercent": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "NewTime": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "FinalStatus": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "IdleStateCount": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "MajorVersion": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Path": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "SchemaVersion": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TokenElevationType": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "MinorVersion": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "SubjectLogonId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "IdleImplementation": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ProcessPath": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "QfeVersion": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DeviceVersionMinor": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Type": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "OldTime": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "IpAddress": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DeviceName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Company": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "PuaPolicyId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "EventType": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "IntegrityLevel": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "LastShutdownGood": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "IpPort": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DriverNameLength": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "LmPackageName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "UserSid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "LastBootGood": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "PuaCount": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Version": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TargetProcessGUID": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Signed": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "StartTime": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ShutdownEventCode": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "NewProcessName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "FailureNameLength": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TargetProcessId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ServiceName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "PreviousTime": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "State": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "StartFunction": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "BootType": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Binary": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ClientInfo": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ImpersonationLevel": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "MemberName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TargetUserName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Detail": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TerminalSessionId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "MemberSid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DriverName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DeviceNameLength": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "OldSchemeGuid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Operation": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "CreationUtcTime": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Reason": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ShutdownReason": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TargetServerName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Number": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "BuildVersion": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "SubjectDomainName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TargetImage": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "MinimumPerformancePercent": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "LogonId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "LogonProcessName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TSId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TargetDomainName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "PrivilegeList": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "param7": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "param8": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "param5": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "param6": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "DriveName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "EventNamespace": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "NewProcessId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "LogonType": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ExtraInfo": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "StartModule": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "param3": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "param4": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "param1": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "param2": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "TargetLogonId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Workstation": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "SubjectUserName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "FailureName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "NewSchemeGuid": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Signature": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "MinimumThrottlePercent": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ProcessId": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "EntryCount": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "BitlockerUserInputTime": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "AuthenticationPackageName": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "NominalFrequency": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "Session": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "opcode": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "version": {
-                    "type": "long"
-                  },
-                  "record_id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "event_id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "task": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "provider_guid": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "activity_id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "api": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "provider_name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "user": {
-                    "properties": {
-                      "identifier": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "domain": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "type": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  }
-                }
-              },
-              "dns": {
-                "properties": {
-                  "op_code": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "resolved_ip": {
-                    "type": "ip"
-                  },
-                  "response_code": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "question": {
-                    "properties": {
-                      "registered_domain": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "top_level_domain": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "subdomain": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "type": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "class": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      }
-                    }
-                  },
-                  "answers": {
-                    "properties": {
-                      "data": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "type": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "class": {
-                        "ignore_above": 1024,
-                        "type": "keyword"
-                      },
-                      "ttl": {
-                        "type": "long"
-                      }
-                    }
-                  },
-                  "header_flags": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "type": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "message": {
-                "type": "match_only_text"
-              },
-              "tags": {
-                "ignore_above": 1024,
-                "type": "keyword"
-              },
-              "input": {
-                "properties": {
-                  "type": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "@timestamp": {
-                "type": "date"
-              },
-              "data_stream": {
-                "properties": {
-                  "namespace": {
-                    "type": "constant_keyword"
-                  },
-                  "type": {
-                    "type": "constant_keyword"
-                  },
-                  "dataset": {
-                    "type": "constant_keyword"
-                  }
-                }
-              },
-              "service": {
-                "properties": {
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "type": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  }
-                }
-              },
-              "dataset": {
-                "properties": {
-                  "name": {
-                    "type": "constant_keyword"
-                  },
-                  "namespace": {
-                    "type": "constant_keyword"
-                  },
-                  "type": {
-                    "type": "constant_keyword"
-                  }
-                }
-              },
-              "user": {
-                "properties": {
-                  "domain": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "name": {
-                    "ignore_above": 1024,
-                    "type": "keyword",
-                    "fields": {
-                      "text": {
-                        "type": "match_only_text"
-                      }
-                    }
-                  },
-                  "id": {
-                    "ignore_above": 1024,
-                    "type": "keyword"
-                  },
-                  "target": {
-                    "properties": {
-                      "name": {
-                        "ignore_above": 1024,
-                        "type": "keyword",
-                        "fields": {
-                          "text": {
-                            "type": "match_only_text"
-                          }
-                        }
-                      },
-                      "group": {
-                        "properties": {
-                          "domain": {
-                            "ignore_above": 1024,
-                            "type": "keyword"
-                          },
-                          "name": {
-                            "ignore_above": 1024,
-                            "type": "keyword"
-                          },
-                          "id": {
-                            "ignore_above": 1024,
-                            "type": "keyword"
-                          }
-                        }
-                      }
-                    }
-                  }
-                }
-              }
-            }
-          }
-        },
-        "_meta": {
-          "package": {
-            "name": "windows"
-          },
-          "managed_by": "fleet",
-          "managed": true
-        }
-      }

From b66be9c22640b3809a86134d01cbd42edcf4917a Mon Sep 17 00:00:00 2001
From: Jason Ertel <github@jasonertel.com>
Date: Tue, 5 Sep 2023 12:46:49 -0400
Subject: [PATCH 077/417] only ingest pfsense on sensor nodes

---
 salt/common/tools/sbin/so-test | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/salt/common/tools/sbin/so-test b/salt/common/tools/sbin/so-test
index 1758a44bb..01b4da637 100755
--- a/salt/common/tools/sbin/so-test
+++ b/salt/common/tools/sbin/so-test
@@ -5,10 +5,14 @@
 # https://securityonion.net/license; you may not use this file except in compliance with the
 # Elastic License 2.0.
 
+. /usr/sbin/so-common
+
 set -e
 
 # Playback live sample data onto monitor interface
 so-tcpreplay /opt/samples/* 2> /dev/null
 
 # Ingest sample pfsense log entry
-echo "<134>$(date '+%b %d %H:%M:%S') filterlog[31624]: 84,,,1567509287,igb0.244,match,pass,in,4,0x0,,64,0,0,DF,6,tcp,64,192.168.1.1,10.10.10.10,56320,443,0,S,3333585167,,65535,,mss;nop;wscale;nop;nop;TS;sackOK;eol" | nc -uv -w1 127.0.0.1 514 > /dev/null 2>&1
+if is_sensor_node; then
+    echo "<134>$(date '+%b %d %H:%M:%S') filterlog[31624]: 84,,,1567509287,igb0.244,match,pass,in,4,0x0,,64,0,0,DF,6,tcp,64,192.168.1.1,10.10.10.10,56320,443,0,S,3333585167,,65535,,mss;nop;wscale;nop;nop;TS;sackOK;eol" | nc -uv -w1 127.0.0.1 514 > /dev/null 2>&1
+fi

From ffaab4a1b47d7949ab6ff061d97d0b59f95ad049 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Wed, 6 Sep 2023 14:19:53 -0400
Subject: [PATCH 078/417] only add endgame to action if it is populated

---
 salt/soc/merged.map.jinja | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/salt/soc/merged.map.jinja b/salt/soc/merged.map.jinja
index dc2f889bb..c17c23b25 100644
--- a/salt/soc/merged.map.jinja
+++ b/salt/soc/merged.map.jinja
@@ -35,7 +35,7 @@
 {% endif %}
 
 {% set standard_actions = SOCMERGED.config.pop('actions') %}
-{% if pillar.global.endgamehost is defined %}
+{% if pillar.global.endgamehost != '' %}
 {%   set endgame_dict = {
        "name": "Endgame",
        "description": "Endgame Endpoint Investigation and Response",

From 60f1947eb4b4f5a6d2b5c43507164246a92e63cd Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Thu, 7 Sep 2023 14:01:19 -0400
Subject: [PATCH 079/417] prevent endgame_dict from being added to
 standard_actions if it is already present

---
 salt/soc/merged.map.jinja | 14 +++++++++++++-
 1 file changed, 13 insertions(+), 1 deletion(-)

diff --git a/salt/soc/merged.map.jinja b/salt/soc/merged.map.jinja
index c17c23b25..052ff9941 100644
--- a/salt/soc/merged.map.jinja
+++ b/salt/soc/merged.map.jinja
@@ -35,7 +35,17 @@
 {% endif %}
 
 {% set standard_actions = SOCMERGED.config.pop('actions') %}
+
 {% if pillar.global.endgamehost != '' %}
+{# this is added to prevent endgame_dict from being added to standard_actions for each time this file is rendered #}
+{%   set endgame = namespace(add=true) %}
+{%   for d in standard_actions %}
+{%     if d.name is defined %}
+{%       if d.name == 'Endgame' %}
+{%         set endgame.add = false %}
+{%       endif %}
+{%     endif %}
+{%   endfor %}
 {%   set endgame_dict = {
        "name": "Endgame",
        "description": "Endgame Endpoint Investigation and Response",
@@ -44,7 +54,9 @@
        "links": ["https://" ~ pillar.global.endgamehost ~ "/endpoints/{:agent.id}"]
      }
 %}
-{%   do standard_actions.append(endgame_dict) %}
+{%   if endgame.add %}
+{%     do standard_actions.append(endgame_dict) %}
+{%   endif %}
 {% endif %}
 
 {%   do SOCMERGED.config.server.client.hunt.update({'actions': standard_actions}) %}

From 35157f2e8b27c313235a4cbd95fa4e0bb77ea12f Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Thu, 7 Sep 2023 15:46:04 -0400
Subject: [PATCH 080/417] add comment

---
 salt/soc/merged.map.jinja | 1 +
 1 file changed, 1 insertion(+)

diff --git a/salt/soc/merged.map.jinja b/salt/soc/merged.map.jinja
index 052ff9941..33c0070ad 100644
--- a/salt/soc/merged.map.jinja
+++ b/salt/soc/merged.map.jinja
@@ -38,6 +38,7 @@
 
 {% if pillar.global.endgamehost != '' %}
 {# this is added to prevent endgame_dict from being added to standard_actions for each time this file is rendered #}
+{# since this map file is rendered 3 times, it causes endgame_dict to appened 3 times if custom actions are defined in the pillar #}
 {%   set endgame = namespace(add=true) %}
 {%   for d in standard_actions %}
 {%     if d.name is defined %}

From f8ae3f12e65aeb6a5efa851b6a55f81adeab94df Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Thu, 7 Sep 2023 17:22:10 -0400
Subject: [PATCH 081/417] addl node types

---
 setup/so-setup | 12 ++++++++++++
 1 file changed, 12 insertions(+)

diff --git a/setup/so-setup b/setup/so-setup
index c1d92ec62..030afdf47 100755
--- a/setup/so-setup
+++ b/setup/so-setup
@@ -194,6 +194,18 @@ if [ -n "$test_profile" ]; then
 		install_type=DESKTOP
 		MSRVIP_OFFSET=-3
 		is_desktop_grid=true
+	elif [[ "$test_profile" =~ "-idh" ]]; then
+		install_type=IDH
+		HOSTNAME=idh
+		MSRVIP_OFFSET=-4
+	elif [[ "$test_profile" =~ "-receiver" ]]; then
+		install_type=RECEIVER
+		HOSTNAME=receiver
+		MSRVIP_OFFSET=-5
+	elif [[ "$test_profile" =~ "-fleet" ]]; then
+		install_type=FLEET
+		HOSTNAME=fleet
+		MSRVIP_OFFSET=-6
 	else
 		HOSTNAME=manager
 	fi

From 598515e5b447770bb9cee1dae8d8e7974ff08112 Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Fri, 8 Sep 2023 09:21:13 -0400
Subject: [PATCH 082/417] give priority to presets

---
 setup/so-functions | 26 ++++++++++++++------------
 1 file changed, 14 insertions(+), 12 deletions(-)

diff --git a/setup/so-functions b/setup/so-functions
index 5015b4bff..5d6ada340 100755
--- a/setup/so-functions
+++ b/setup/so-functions
@@ -398,20 +398,22 @@ collect_mngr_hostname() {
 		sed -i "/$MSRV/d" /etc/hosts
 	fi
 
-	if ! getent hosts "$MSRV"; then
-		whiptail_manager_ip
+	if [[ -z "$MSRVIP" ]]; then
+		if ! getent hosts "$MSRV"; then
+			whiptail_manager_ip
 
-		while ! valid_ip4 "$MSRVIP" || [[ $MSRVIP == "$MAINIP" || $MSRVIP == "127.0.0.1" ]]; do
-			whiptail_invalid_input
+			while ! valid_ip4 "$MSRVIP" || [[ $MSRVIP == "$MAINIP" || $MSRVIP == "127.0.0.1" ]]; do
+				whiptail_invalid_input
+				whiptail_manager_ip "$MSRVIP"
+			done
+		else
+			MSRVIP=$(getent hosts "$MSRV" | awk 'NR==1{print $1}')
 			whiptail_manager_ip "$MSRVIP"
-		done
-	else
-		MSRVIP=$(getent hosts "$MSRV" | awk 'NR==1{print $1}')
-		whiptail_manager_ip "$MSRVIP"
-		while ! valid_ip4 "$MSRVIP" || [[ $MSRVIP == "$MAINIP" || $MSRVIP == "127.0.0.1" ]]; do
-			whiptail_invalid_input
-			whiptail_manager_ip "$MSRVIP"
-		done
+			while ! valid_ip4 "$MSRVIP" || [[ $MSRVIP == "$MAINIP" || $MSRVIP == "127.0.0.1" ]]; do
+				whiptail_invalid_input
+				whiptail_manager_ip "$MSRVIP"
+			done
+		fi
 	fi
 }
 

From e814a3409f4dc2ac56fcdc5c32d79c6231dff1c7 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Fri, 8 Sep 2023 15:28:24 -0400
Subject: [PATCH 083/417] fix rule location for rulecat.conf. run
 so-rule-update if rules change in /opt/so/rules/nids

---
 salt/idstools/enabled.sls              |  1 +
 salt/idstools/etc/rulecat.conf         |  4 ++--
 salt/idstools/sorules/extraction.rules | 26 --------------------------
 salt/idstools/sorules/filters.rules    | 11 -----------
 4 files changed, 3 insertions(+), 39 deletions(-)
 delete mode 100644 salt/idstools/sorules/extraction.rules
 delete mode 100644 salt/idstools/sorules/filters.rules

diff --git a/salt/idstools/enabled.sls b/salt/idstools/enabled.sls
index 3f5acda19..31afc5113 100644
--- a/salt/idstools/enabled.sls
+++ b/salt/idstools/enabled.sls
@@ -77,6 +77,7 @@ run_so-rule-update:
       - docker_container: so-idstools
     - onchanges:
       - file: idstoolsetcsync
+      - file: synclocalnidsrules
     - order: last
 
 {% else %}
diff --git a/salt/idstools/etc/rulecat.conf b/salt/idstools/etc/rulecat.conf
index 8be3aa1ce..d6f3d93d8 100644
--- a/salt/idstools/etc/rulecat.conf
+++ b/salt/idstools/etc/rulecat.conf
@@ -3,8 +3,8 @@
 --merged=/opt/so/rules/nids/all.rules
 --local=/opt/so/rules/nids/local.rules
 {%-   if GLOBALS.md_engine == "SURICATA" %}
---local=/opt/so/rules/nids/sorules/extraction.rules
---local=/opt/so/rules/nids/sorules/filters.rules
+--local=/opt/so/rules/nids/extraction.rules
+--local=/opt/so/rules/nids/filters.rules
 {%-   endif %}
 --url=http://{{ GLOBALS.manager }}:7788/suricata/emerging-all.rules
 --disable=/opt/so/idstools/etc/disable.conf
diff --git a/salt/idstools/sorules/extraction.rules b/salt/idstools/sorules/extraction.rules
deleted file mode 100644
index bccfc69d6..000000000
--- a/salt/idstools/sorules/extraction.rules
+++ /dev/null
@@ -1,26 +0,0 @@
-# Extract all PDF mime type
-alert http any any -> any any (msg:"FILE pdf detected"; filemagic:"PDF document"; filestore; sid:1100000; rev:1;)
-alert smtp any any -> any any (msg:"FILE pdf detected"; filemagic:"PDF document"; filestore; sid:1100001; rev:1;)
-alert nfs any any -> any any (msg:"FILE pdf detected"; filemagic:"PDF document"; filestore; sid:1100002; rev:1;)
-alert smb any any -> any any (msg:"FILE pdf detected"; filemagic:"PDF document"; filestore; sid:1100003; rev:1;)
-# Extract EXE/DLL file types
-alert http any any -> any any (msg:"FILE EXE detected"; filemagic:"PE32 executable"; filestore; sid:1100004; rev:1;)
-alert smtp any any -> any any (msg:"FILE EXE detected"; filemagic:"PE32 executable"; filestore; sid:1100005; rev:1;)
-alert nfs any any -> any any (msg:"FILE EXE detected"; filemagic:"PE32 executable"; filestore; sid:1100006; rev:1;)
-alert smb any any -> any any (msg:"FILE EXE detected"; filemagic:"PE32 executable"; filestore; sid:1100007; rev:1;)
-alert http any any -> any any (msg:"FILE EXE detected"; filemagic:"MS-DOS executable"; filestore; sid:1100008; rev:1;)
-alert smtp any any -> any any (msg:"FILE EXE detected"; filemagic:"MS-DOS executable"; filestore; sid:1100009; rev:1;)
-alert nfs any any -> any any (msg:"FILE EXE detected"; filemagic:"MS-DOS executable"; filestore; sid:1100010; rev:1;)
-alert smb any any -> any any (msg:"FILE EXE detected"; filemagic:"MS-DOS executable"; filestore; sid:1100011; rev:1;)
-
-# Extract all Zip files
-alert http any any -> any any (msg:"FILE ZIP detected"; filemagic:"Zip"; filestore; sid:1100012; rev:1;)
-alert smtp any any -> any any (msg:"FILE ZIP detected"; filemagic:"Zip"; filestore; sid:1100013; rev:1;)
-alert nfs any any -> any any (msg:"FILE ZIP detected"; filemagic:"Zip"; filestore; sid:1100014; rev:1;)
-alert smb any any -> any any (msg:"FILE ZIP detected"; filemagic:"Zip"; filestore; sid:1100015; rev:1;)
-
-# Extract Word Docs
-alert http any any -> any any (msg:"FILE WORDDOC detected"; filemagic:"Composite Document File V2 Document"; filestore; sid:1100016; rev:1;)
-alert smtp any any -> any any (msg:"FILE WORDDOC detected"; filemagic:"Composite Document File V2 Document"; filestore; sid:1100017; rev:1;)
-alert nfs any any -> any any (msg:"FILE WORDDOC detected"; filemagic:"Composite Document File V2 Document"; filestore; sid:1100018; rev:1;)
-alert smb any any -> any any (msg:"FILE WORDDOC detected"; filemagic:"Composite Document File V2 Document"; filestore; sid:1100019; rev:1;)
\ No newline at end of file
diff --git a/salt/idstools/sorules/filters.rules b/salt/idstools/sorules/filters.rules
deleted file mode 100644
index 051d1913f..000000000
--- a/salt/idstools/sorules/filters.rules
+++ /dev/null
@@ -1,11 +0,0 @@
-# Start the filters at sid 1200000
-# Example of filtering out *google.com from being in the dns log.
-#config dns any any -> any any (dns.query; content:"google.com"; config: logging disable, type tx, scope tx; sid:1200000;)
-# Example of filtering out  *google.com from being in the http log.
-#config http any any -> any any (http.host; content:"google.com"; config: logging disable, type tx, scope tx; sid:1200001;)
-# Example of filtering out  someuseragent from being in the http log.
-#config http any any -> any any (http.user_agent; content:"someuseragent"; config: logging disable, type tx, scope tx; sid:1200002;)
-# Example of filtering out  Google's certificate from being in the ssl log.
-#config tls any any -> any any (tls.fingerprint; content:"4f:a4:5e:58:7e:d9:db:20:09:d7:b6:c7:ff:58:c4:7b:dc:3f:55:b4"; config: logging disable, type tx, scope tx; sid:1200003;)
-# Example of filtering out a md5 of a file from being in the files log.
-#config fileinfo any any -> any any (fileinfo.filemd5; content:"7a125dc69c82d5caf94d3913eecde4b5"; config: logging disable, type tx, scope tx; sid:1200004;)

From f1d0db81714941b6652337638291cac55124e8e8 Mon Sep 17 00:00:00 2001
From: Wes <wlambertts@gmail.com>
Date: Mon, 11 Sep 2023 13:30:11 +0000
Subject: [PATCH 084/417] /app to /kibana/app

---
 salt/nginx/etc/nginx.conf | 14 +++++++++++++-
 1 file changed, 13 insertions(+), 1 deletion(-)

diff --git a/salt/nginx/etc/nginx.conf b/salt/nginx/etc/nginx.conf
index 05da0b5d8..b2616e946 100644
--- a/salt/nginx/etc/nginx.conf
+++ b/salt/nginx/etc/nginx.conf
@@ -230,7 +230,19 @@ http {
 			proxy_cookie_path     /api/ /influxdb/api/;
 		}
 
-		location /kibana/ {
+                location /app/ {
+                        auth_request          /auth/sessions/whoami;
+                        rewrite               /app/(.*) /app/$1 break;
+                        proxy_pass            http://{{ GLOBALS.manager }}:5601/app/;
+                        proxy_read_timeout    300;
+                        proxy_connect_timeout 300;
+                        proxy_set_header      Host $host;
+                        proxy_set_header      X-Real-IP $remote_addr;
+                        proxy_set_header      X-Forwarded-For $proxy_add_x_forwarded_for;
+                        proxy_set_header      Proxy "";
+                        proxy_set_header      X-Forwarded-Proto $scheme;
+     
+                location /kibana/ {
 			auth_request          /auth/sessions/whoami;
 			rewrite               /kibana/(.*) /$1 break;
 			proxy_pass            http://{{ GLOBALS.manager }}:5601/;

From 35ebbc974c370ac0ac4a4f0d8c8403d677656c85 Mon Sep 17 00:00:00 2001
From: Wes <wlambertts@gmail.com>
Date: Mon, 11 Sep 2023 13:52:16 +0000
Subject: [PATCH 085/417] Change description to indicate that opencanary
 modules only apply to IDH nodes

---
 salt/idh/soc_idh.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/salt/idh/soc_idh.yaml b/salt/idh/soc_idh.yaml
index f792812e4..1d6918405 100644
--- a/salt/idh/soc_idh.yaml
+++ b/salt/idh/soc_idh.yaml
@@ -23,7 +23,7 @@ idh:
                   class: *loggingOptions
                   filename: *loggingOptions
       portscan_x_enabled: &serviceOptions
-        description: To enable this opencanary module, set this value to true. To disable set to false.
+        description: To enable this opencanary module, set this value to true. To disable set to false. This option only applies to IDH nodes within your grid.
         helpLink: idh.html
       portscan_x_logfile: *loggingOptions
       portscan_x_synrate:

From 30c3255cb28f5d62dc9fcae4186a7a2b4554faf7 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Tue, 12 Sep 2023 08:39:42 -0400
Subject: [PATCH 086/417] dont manage sorules

---
 salt/idstools/sync_files.sls | 17 -----------------
 1 file changed, 17 deletions(-)

diff --git a/salt/idstools/sync_files.sls b/salt/idstools/sync_files.sls
index e8d5edda6..64479e937 100644
--- a/salt/idstools/sync_files.sls
+++ b/salt/idstools/sync_files.sls
@@ -26,13 +26,6 @@ rulesdir:
     - group: 939
     - makedirs: True
 
-SOrulesdir:
-  file.directory:
-    - name: /opt/so/rules/nids/sorules
-    - user: 939
-    - group: 939
-    - makedirs: True
-
 # Don't show changes because all.rules can be large
 synclocalnidsrules:
   file.recurse:
@@ -42,13 +35,3 @@ synclocalnidsrules:
     - group: 939
     - show_changes: False
     - include_pat: 'E@.rules'
-
-# Don't show changes because all.rules can be large
-syncnidsSOrules:
-  file.recurse:
-    - name: /opt/so/rules/nids/sorules
-    - source: salt://idstools/sorules/
-    - user: 939
-    - group: 939
-    - show_changes: False
-    - include_pat: 'E@.rules'

From 11b8e1341885118bd22ccee21d5c6e1776f474f8 Mon Sep 17 00:00:00 2001
From: Doug Burks <doug.burks@securityonionsolutions.com>
Date: Wed, 13 Sep 2023 07:37:54 -0400
Subject: [PATCH 087/417] FIX: SOC Config pcap doc links should point to steno
 docs #11302

---
 salt/pcap/soc_pcap.yaml | 18 +++++++++---------
 1 file changed, 9 insertions(+), 9 deletions(-)

diff --git a/salt/pcap/soc_pcap.yaml b/salt/pcap/soc_pcap.yaml
index 0f4b7e1e4..32204a23a 100644
--- a/salt/pcap/soc_pcap.yaml
+++ b/salt/pcap/soc_pcap.yaml
@@ -1,35 +1,35 @@
 pcap:
   enabled: 
     description: You can enable or disable Stenographer on all sensors or a single sensor.
-    helpLink: pcap.html
+    helpLink: stenographer.html
   config:
     maxdirectoryfiles:
       description: The maximum number of packet/index files to create before deleting old files.
-      helpLink: pcap.html
+      helpLink: stenographer.html
     diskfreepercentage:
       description: The disk space percent to always keep free for PCAP
-      helpLink: pcap.html
+      helpLink: stenographer.html
     blocks:
       description: The number of 1MB packet blocks used by AF_PACKET to store packets in memory, per thread. You shouldn't need to change this. 
       advanced: True
-      helpLink: pcap.html
+      helpLink: stenographer.html
     preallocate_file_mb:
       description: File size to pre-allocate for individual PCAP files. You shouldn't need to change this. 
       advanced: True
-      helpLink: pcap.html
+      helpLink: stenographer.html
     aiops:
       description: The max number of async writes to allow at once.
       advanced: True
-      helpLink: pcap.html
+      helpLink: stenographer.html
     pin_to_cpu:
       description: Enable CPU pinning for PCAP.
       advanced: True
-      helpLink: pcap.html
+      helpLink: stenographer.html
     cpus_to_pin_to:
       description: CPU to pin PCAP to. Currently only a single CPU is supported.
       advanced: True
-      helpLink: pcap.html
+      helpLink: stenographer.html
     disks:
       description: List of disks to use for PCAP. This is currently not used.
       advanced: True
-      helpLink: pcap.html
+      helpLink: stenographer.html

From 22c0323bdae337f5cb4431ff6a1f54a0ddcc9f81 Mon Sep 17 00:00:00 2001
From: Mike Reeves <mike.reeves@securityonionsolutions.com>
Date: Wed, 13 Sep 2023 10:57:45 -0400
Subject: [PATCH 088/417] Update so-minion

---
 salt/manager/tools/sbin/so-minion | 9 ++++++++-
 1 file changed, 8 insertions(+), 1 deletion(-)

diff --git a/salt/manager/tools/sbin/so-minion b/salt/manager/tools/sbin/so-minion
index 075632985..01a58585f 100755
--- a/salt/manager/tools/sbin/so-minion
+++ b/salt/manager/tools/sbin/so-minion
@@ -239,6 +239,10 @@ function add_sensor_to_minion() {
 	echo "      threads: '$CORECOUNT'" >> $PILLARFILE
 	echo "pcap:" >> $PILLARFILE
 	echo "  enabled: True" >> $PILLARFILE
+	if [[ $is_pcaplimit ]]; then
+		echo "  config:" >> $PILLARFILE
+		echo "    diskfreepercentage: 40" >> $PILLARFILE
+	fi
 	echo "  " >> $PILLARFILE
 }
 
@@ -409,6 +413,7 @@ function apply_ES_state() {
 	salt-call state.apply elasticsearch concurrent=True
 }
 function createEVAL() {
+	is_pcaplimit=true
 	add_elasticsearch_to_minion
 	add_sensor_to_minion
 	add_strelka_to_minion
@@ -429,6 +434,7 @@ function createEVAL() {
 }
 
 function createSTANDALONE() {
+	is_pcaplimit=true
 	add_elasticsearch_to_minion
 	add_logstash_to_minion
 	add_sensor_to_minion
@@ -520,8 +526,9 @@ function createIDH() {
 }
 
 function createHEAVYNODE() {
+	is_pcaplimit=true
 	add_elasticsearch_to_minion
-    add_elastic_agent_to_minion
+	add_elastic_agent_to_minion
 	add_logstash_to_minion
 	add_sensor_to_minion
 	add_strelka_to_minion

From 33d68478b6678e6707061b4f8e2755f2b705b0a6 Mon Sep 17 00:00:00 2001
From: Mike Reeves <mike.reeves@securityonionsolutions.com>
Date: Wed, 13 Sep 2023 11:48:16 -0400
Subject: [PATCH 089/417] Update so-minion

---
 salt/manager/tools/sbin/so-minion | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/salt/manager/tools/sbin/so-minion b/salt/manager/tools/sbin/so-minion
index 01a58585f..64084dbd0 100755
--- a/salt/manager/tools/sbin/so-minion
+++ b/salt/manager/tools/sbin/so-minion
@@ -241,7 +241,7 @@ function add_sensor_to_minion() {
 	echo "  enabled: True" >> $PILLARFILE
 	if [[ $is_pcaplimit ]]; then
 		echo "  config:" >> $PILLARFILE
-		echo "    diskfreepercentage: 40" >> $PILLARFILE
+		echo "    diskfreepercentage: 60" >> $PILLARFILE
 	fi
 	echo "  " >> $PILLARFILE
 }

From e067b7134e3ed344af40eabfe6a281567705e6e7 Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Thu, 14 Sep 2023 07:38:07 -0400
Subject: [PATCH 090/417] exclude docker pull unauth errors from failing setup
 since they'll be retried

---
 setup/so-verify | 1 +
 1 file changed, 1 insertion(+)

diff --git a/setup/so-verify b/setup/so-verify
index 07d24d114..e907e8bdc 100755
--- a/setup/so-verify
+++ b/setup/so-verify
@@ -52,6 +52,7 @@ log_has_errors() {
         grep -vE "/nsm/rules/yara*" | \
         grep -vE "Failed to restart snapd" | \
         grep -vE "Login Failed Details" | \
+        grep -vE "response from daemon: unauthorized" | \
         grep -vE "Running scope as unit" &> "$error_log"
     
     if [[ $? -eq 0 ]]; then

From 59d077f3ffb94df96c183b817786b738ff5d0432 Mon Sep 17 00:00:00 2001
From: defensivedepth <josh@defensivedepth.com>
Date: Thu, 14 Sep 2023 08:32:17 -0400
Subject: [PATCH 091/417] Fix regex

---
 .../tools/sbin_jinja/so-elastic-agent-gen-installers            | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/salt/elasticfleet/tools/sbin_jinja/so-elastic-agent-gen-installers b/salt/elasticfleet/tools/sbin_jinja/so-elastic-agent-gen-installers
index c935521fd..275bc6a11 100755
--- a/salt/elasticfleet/tools/sbin_jinja/so-elastic-agent-gen-installers
+++ b/salt/elasticfleet/tools/sbin_jinja/so-elastic-agent-gen-installers
@@ -46,7 +46,7 @@ do
 done 
 
 printf "\n### Stripping out unused components"
-find /nsm/elastic-agent-workspace/elastic-agent-*/data/elastic-agent-*/components -regex '.*fleet.*\|.*packet.*\|.*apm*.*\|.*audit.*\|.*heart.*\|.*cloud.*' -delete 
+find /nsm/elastic-agent-workspace/elastic-agent-*/data/elastic-agent-*/components -maxdepth 1 -regex '.*fleet.*\|.*packet.*\|.*apm.*\|.*audit.*\|.*heart.*\|.*cloud.*' -delete 
 
 printf "\n### Tarring everything up again"
 for OS in "${OSARCH[@]}"

From 0c11a9b7337c523cf24396cdd264cdcf69c6d979 Mon Sep 17 00:00:00 2001
From: defensivedepth <josh@defensivedepth.com>
Date: Thu, 14 Sep 2023 09:33:17 -0400
Subject: [PATCH 092/417] Add transform role

---
 salt/elasticsearch/config.map.jinja | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/salt/elasticsearch/config.map.jinja b/salt/elasticsearch/config.map.jinja
index ed4a5033f..37447cabb 100644
--- a/salt/elasticsearch/config.map.jinja
+++ b/salt/elasticsearch/config.map.jinja
@@ -21,7 +21,7 @@
         {% do ELASTICSEARCHDEFAULTS.elasticsearch.config.discovery.seed_hosts.append(NODE.keys()|first) %}
       {% endfor %}
       {% if grains.id.split('_') | last == 'manager' %}
-        {% do ELASTICSEARCHDEFAULTS.elasticsearch.config.node.update({'roles': ['master','data','remote_cluster_client']}) %}
+        {% do ELASTICSEARCHDEFAULTS.elasticsearch.config.node.update({'roles': ['master','data','remote_cluster_client','transform']}) %}
       {% else %}
         {% do ELASTICSEARCHDEFAULTS.elasticsearch.config.node.update({'roles': ['master', 'data_hot', 'remote_cluster_client']}) %}
       {% endif %}

From c65c9777bdb8590faf056039f7602e2254249137 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Thu, 14 Sep 2023 17:42:25 -0400
Subject: [PATCH 093/417] improvents for checking system requirements

---
 setup/so-functions | 58 ++++++++++++++++++++++++++++++++++------------
 setup/so-setup     | 22 +++++++++---------
 setup/so-variables |  8 +++----
 setup/so-whiptail  | 17 +-------------
 4 files changed, 59 insertions(+), 46 deletions(-)

diff --git a/setup/so-functions b/setup/so-functions
index 5d6ada340..3707e3141 100755
--- a/setup/so-functions
+++ b/setup/so-functions
@@ -707,8 +707,6 @@ checkin_at_boot() {
 }
 
 check_requirements() {
-	local standalone_or_dist=$1
-	local node_type=$2 # optional
 	local req_mem
 	local req_cores
 	local req_storage
@@ -716,27 +714,57 @@ check_requirements() {
 	readarray -t nic_list <<< "$(ip link| awk -F: '$0 !~ "lo|vir|veth|br|docker|wl|^[^0-9]"{print $2}' | grep -vwe "bond0"  | sed 's/ //g' | sed -r 's/(.*)(\.[0-9]+)@\1/\1\2/g')"
 	local num_nics=${#nic_list[@]}
 	
-	if [[ "$standalone_or_dist" == 'standalone' ]]; then
+	if [[ $is_eval ]]; then
 		req_mem=12
 		req_cores=4
 		req_nics=2
-	elif [[ "$standalone_or_dist" == 'dist' ]]; then
-		req_mem=8
+	elif [[ $is_standalone ]]; then
+		req_mem=24
 		req_cores=4
-		if [[ "$node_type" == 'sensor' ]]; then req_nics=2; else req_nics=1; fi
-		if [[ "$node_type" == 'fleet' ]]; then req_mem=4; fi
-		if [[ "$node_type" == 'idh' ]]; then req_mem=1 req_cores=2; fi
-	elif [[ "$standalone_or_dist" == 'import' ]]; then
+		req_nics=2
+	elif [[ $is_manager ]]; then
+		req_mem=16
+		req_cores=4
+		req_nics=1
+	elif [[ $is_managersearch ]]; then
+		req_mem=16
+		req_cores=8
+		req_nics=1
+	elif [[ $is_sensor ]]; then
+		req_mem=12
+		req_cores=4
+		req_nics=2
+	elif [[ $is_fleet ]]; then
 		req_mem=4
+		req_cores=4
+		req_nics=1
+	elif [[ $is_searchnode ]]; then
+		req_mem=16
+		req_cores=4
+		req_nics=1
+	elif [[ $is_heavynode ]]; then
+		req_mem=24
+		req_cores=4
+		req_nics=2
+	elif [[ $is_idh ]]; then
+		req_mem=1
+		req_cores=2
+		req_nics=1
+	elif [[ $is_import ]]; then
+		req_mem=4
+		req_cores=2
+		req_nics=1
+	elif [[ $is_receiver ]]; then
+		req_mem=8
 		req_cores=2
 		req_nics=1
 	fi
 
 	if [[ $setup_type == 'network' ]] ; then
-		if [[ -n $nsm_mount ]]; then
-			if [[ "$standalone_or_dist" == 'import' ]]; then
+		if [[ -n $nsm_mount ]]; then # does a /nsm mount exist
+			if [[ $is_import ]]; then
 				req_storage=50
-			elif [[ "$node_type" == 'idh' ]]; then
+			elif [[ $is_idh ]]; then
 			    req_storage=12
 			else
 				req_storage=100
@@ -748,10 +776,10 @@ check_requirements() {
 				whiptail_storage_requirements "/nsm" "${free_space_nsm} GB" "${req_storage} GB"
 			fi
 		else
-			if [[ "$standalone_or_dist" == 'import' ]]; then
+			if [[ $is_import ]]; then
 				req_storage=50
-			elif [[ "$node_type" == 'idh' ]]; then
-			        req_storage=12
+			elif [[ $is_idh ]]; then
+			    req_storage=12
 			else
 				req_storage=200
 			fi
diff --git a/setup/so-setup b/setup/so-setup
index 030afdf47..e35dde579 100755
--- a/setup/so-setup
+++ b/setup/so-setup
@@ -422,7 +422,7 @@ if ! [[ -f $install_opt_file ]]; then
 		# If it is an install from ISO is this airgap?
 		[[ $is_iso ]] && whiptail_airgap
 		# Make sure minimum requirements are met
-		check_requirements "manager"
+		check_requirements
 		# Do networking things
 		networking_needful
 		# Do we need a proxy?
@@ -453,7 +453,7 @@ if ! [[ -f $install_opt_file ]]; then
 		monints=true
 		check_elastic_license
 		[[ $is_iso ]] && whiptail_airgap
-		check_requirements "manager"
+		check_requirements
 		networking_needful
 		[[ ! $is_airgap ]] && collect_net_method
 		collect_dockernet
@@ -474,7 +474,7 @@ if ! [[ -f $install_opt_file ]]; then
 		check_elastic_license
 		waitforstate=true
 		[[ $is_iso ]] && whiptail_airgap
-		check_requirements "manager"
+		check_requirements
 		networking_needful
 		[[ ! $is_airgap ]] && collect_net_method
 		collect_dockernet
@@ -494,7 +494,7 @@ if ! [[ -f $install_opt_file ]]; then
 		check_elastic_license
 		waitforstate=true
 		[[ $is_iso ]] && whiptail_airgap
-		check_requirements "manager"
+		check_requirements
 		networking_needful
 		[[ ! $is_airgap ]] && collect_net_method
 		collect_dockernet
@@ -512,7 +512,7 @@ if ! [[ -f $install_opt_file ]]; then
 	elif [[ $is_sensor ]]; then
 		info "Setting up as node type sensor"
 		monints=true
-		check_requirements "sensor"
+		check_requirements
 		calculate_useable_cores
 		networking_needful
 		check_network_manager_conf
@@ -527,7 +527,7 @@ if ! [[ -f $install_opt_file ]]; then
 
 	elif [[ $is_fleet ]]; then
 		info "Setting up as node type fleet"
-		check_requirements "fleet"
+		check_requirements
 		networking_needful
 		check_network_manager_conf
 		set_network_dev_status_list
@@ -540,7 +540,7 @@ if ! [[ -f $install_opt_file ]]; then
 
 	elif [[ $is_searchnode ]]; then
 		info "Setting up as node type searchnode"
-		check_requirements "elasticsearch"
+		check_requirements
 		networking_needful
 		check_network_manager_conf
 		set_network_dev_status_list
@@ -554,7 +554,7 @@ if ! [[ -f $install_opt_file ]]; then
 	elif [[ $is_heavynode ]]; then
 		info "Setting up as node type heavynode"
 		monints=true
-		check_requirements "heavynode"
+		check_requirements
 		calculate_useable_cores
 		networking_needful
 		check_network_manager_conf
@@ -569,7 +569,7 @@ if ! [[ -f $install_opt_file ]]; then
 
 	elif [[ $is_idh ]]; then
 		info "Setting up as node type idh"
-		check_requirements "idh"
+		check_requirements
 		networking_needful
 		collect_mngr_hostname
 		add_mngr_ip_to_hosts
@@ -583,7 +583,7 @@ if ! [[ -f $install_opt_file ]]; then
 		waitforstate=true
 		[[ $is_iso ]] && whiptail_airgap
 		check_elastic_license
-		check_requirements "import"
+		check_requirements
 		networking_needful
 		[[ ! $is_airgap ]] && detect_cloud
 		collect_dockernet
@@ -601,7 +601,7 @@ if ! [[ -f $install_opt_file ]]; then
 
 	elif [[ $is_receiver ]]; then
 		info "Setting up as node type receiver"
-		check_requirements "receiver"
+		check_requirements
 		networking_needful
 		collect_mngr_hostname
 		add_mngr_ip_to_hosts
diff --git a/setup/so-variables b/setup/so-variables
index 7c5e51c6c..7f6522487 100644
--- a/setup/so-variables
+++ b/setup/so-variables
@@ -5,7 +5,7 @@ mkdir -p /nsm
 total_mem=$(grep MemTotal /proc/meminfo | awk '{print $2}' | sed -r 's/.{3}$//')
 export total_mem
 
-total_mem_hr=$(grep MemTotal /proc/meminfo | awk '{ printf("%.0f", $2/1024/1024); }')
+total_mem_hr=$(grep MemTotal /proc/meminfo | awk '{ printf("%.0f", $2/1000/1000); }')
 export total_mem_hr
 
 num_cpu_cores=$(nproc)
@@ -32,10 +32,10 @@ export filesystem_root
 filesystem_nsm=$(df /nsm | awk '$3 ~ /[0-9]+/ { print $2 * 1000 }')
 export filesystem_nsm
 
-free_space_nsm=$(df -Pk /nsm | sed 1d | grep -v used | awk '{ print $4 / 1048576 }' | awk '{ printf("%.0f", $1) }')
+free_space_nsm=$(df -Pk /nsm | sed 1d | grep -v used | awk '{ print $4 / 1042803 }' | awk '{ printf("%.0f", $1) }')
 export free_space_nsm
 
-free_space_root=$(df -Pk / | sed 1d | grep -v used | awk '{ print $4 / 1048576 }' | awk '{ printf("%.0f", $1) }')
+free_space_root=$(df -Pk / | sed 1d | grep -v used | awk '{ print $4 / 1042803 }' | awk '{ printf("%.0f", $1) }')
 export free_space_root
 
 readarray -t mountpoints <<< "$(lsblk -nlo MOUNTPOINT)"
@@ -218,4 +218,4 @@ patch_pillar_file="$local_salt_dir/pillar/patch/soc_patch.sls"
 export patch_pillar_file
 
 adv_patch_pillar_file="$local_salt_dir/pillar/patch/adv_patch.sls"
-export adv_patch_pillar_file
\ No newline at end of file
+export adv_patch_pillar_file
diff --git a/setup/so-whiptail b/setup/so-whiptail
index 9622ad44a..ede138d26 100755
--- a/setup/so-whiptail
+++ b/setup/so-whiptail
@@ -232,7 +232,7 @@ whiptail_requirements_error() {
 
 	[ -n "$TESTING" ] && return
 
-	if [[ $(echo "$requirement_needed" | tr '[:upper:]' '[:lower:]') == 'nics' ]]; then
+	if [[ $(echo "$requirement_needed" | tr '[:upper:]' '[:lower:]') =~ 'nic' ]]; then
 		whiptail --title "$whiptail_title" \
 			--msgbox "This machine currently has $current_val $requirement_needed, but needs $needed_val to meet minimum requirements. Select OK to exit setup and reconfigure the machine."  10 75
 		
@@ -1184,21 +1184,6 @@ whiptail_reinstall() {
 	whiptail_check_exitstatus $exitstatus
 }
 
-whiptail_requirements_error() {
-
-	local requirement_needed=$1
-	local current_val=$2
-	local needed_val=$3
-
-	[ -n "$TESTING" ] && return
-
-	whiptail --title "$whiptail_title" \
-	--yesno "This machine currently has $current_val $requirement_needed, but needs $needed_val to meet minimum requirements. Select YES to continue anyway, or select NO to cancel."  10 75
-
-	local exitstatus=$?
-	whiptail_check_exitstatus $exitstatus
-}
-
 whiptail_sensor_config() {
 
 	[ -n "$TESTING" ] && return

From 98499c3963e564af5694d11f736ca93877e930c6 Mon Sep 17 00:00:00 2001
From: Wes <wlambertts@gmail.com>
Date: Fri, 15 Sep 2023 13:51:46 +0000
Subject: [PATCH 094/417] Clean component template directory

---
 salt/elasticsearch/enabled.sls | 1 +
 1 file changed, 1 insertion(+)

diff --git a/salt/elasticsearch/enabled.sls b/salt/elasticsearch/enabled.sls
index 8baff4901..fa0f824b4 100644
--- a/salt/elasticsearch/enabled.sls
+++ b/salt/elasticsearch/enabled.sls
@@ -108,6 +108,7 @@ escomponenttemplates:
     - source: salt://elasticsearch/templates/component
     - user: 930
     - group: 939
+    - clean: True
     - onchanges_in:
       - cmd: so-elasticsearch-templates
       

From f9cbde10a6787d5eefa11696d85cdc35b1d5e3d3 Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Mon, 18 Sep 2023 11:19:21 -0400
Subject: [PATCH 095/417] avoid volume sprawl

---
 salt/influxdb/config.sls  | 8 ++++++++
 salt/influxdb/enabled.sls | 1 +
 salt/playbook/config.sls  | 8 ++++++++
 salt/playbook/enabled.sls | 1 +
 salt/redis/config.sls     | 7 +++++++
 salt/redis/enabled.sls    | 1 +
 6 files changed, 26 insertions(+)

diff --git a/salt/influxdb/config.sls b/salt/influxdb/config.sls
index 54e20b713..3520e46b3 100644
--- a/salt/influxdb/config.sls
+++ b/salt/influxdb/config.sls
@@ -25,6 +25,14 @@ influxlogdir:
     - group: 939
     - makedirs: True
 
+influxlogdir:
+  file.directory:
+    - name: /opt/so/conf/influxdb/etc
+    - dir_mode: 750
+    - user: 939
+    - group: 939
+    - makedirs: True
+
 influxdbdir:
   file.directory:
     - name: /nsm/influxdb
diff --git a/salt/influxdb/enabled.sls b/salt/influxdb/enabled.sls
index 70f4c404f..c0733c12c 100644
--- a/salt/influxdb/enabled.sls
+++ b/salt/influxdb/enabled.sls
@@ -38,6 +38,7 @@ so-influxdb:
     - binds:
       - /opt/so/log/influxdb/:/log:rw
       - /opt/so/conf/influxdb/config.yaml:/conf/config.yaml:ro
+      - /opt/so/conf/influxdb/etc:/etc/influxdb2:rw
       - /nsm/influxdb:/var/lib/influxdb2:rw
       - /etc/pki/influxdb.crt:/conf/influxdb.crt:ro
       - /etc/pki/influxdb.key:/conf/influxdb.key:ro
diff --git a/salt/playbook/config.sls b/salt/playbook/config.sls
index 7d37f8873..f4c2cf137 100644
--- a/salt/playbook/config.sls
+++ b/salt/playbook/config.sls
@@ -91,6 +91,14 @@ playbooklogdir:
     - group: 939
     - makedirs: True
 
+playbookfilesdir:
+  file.directory:
+    - name: /opt/so/conf/playbook/redmine-files
+    - dir_mode: 775
+    - user: 939
+    - group: 939
+    - makedirs: True
+
 {%   if 'idh' in salt['cmd.shell']("ls /opt/so/saltstack/local/pillar/minions/|awk -F'_' {'print $2'}|awk -F'.' {'print $1'}").split() %}
 idh-plays:
   file.recurse:
diff --git a/salt/playbook/enabled.sls b/salt/playbook/enabled.sls
index 434cb18e4..e70fec693 100644
--- a/salt/playbook/enabled.sls
+++ b/salt/playbook/enabled.sls
@@ -33,6 +33,7 @@ so-playbook:
       - sobridge:
         - ipv4_address: {{ DOCKER.containers['so-playbook'].ip }}
     - binds:
+      - /opt/so/conf/playbook/redmine-files:/usr/src/redmine/files:rw
       - /opt/so/log/playbook:/playbook/log:rw
       {% if DOCKER.containers['so-playbook'].custom_bind_mounts %}
         {% for BIND in DOCKER.containers['so-playbook'].custom_bind_mounts %}
diff --git a/salt/redis/config.sls b/salt/redis/config.sls
index d698040f8..053d46707 100644
--- a/salt/redis/config.sls
+++ b/salt/redis/config.sls
@@ -25,6 +25,13 @@ redisworkdir:
     - group: 939
     - makedirs: True
 
+redisdatadir:
+  file.directory:
+    - name: /nsm/redis/data
+    - user: 939
+    - group: 939
+    - makedirs: True
+
 redislogdir:
   file.directory:
     - name: /opt/so/log/redis
diff --git a/salt/redis/enabled.sls b/salt/redis/enabled.sls
index 27177d217..fc206e3cb 100644
--- a/salt/redis/enabled.sls
+++ b/salt/redis/enabled.sls
@@ -28,6 +28,7 @@ so-redis:
       - /opt/so/log/redis:/var/log/redis:rw
       - /opt/so/conf/redis/etc/redis.conf:/usr/local/etc/redis/redis.conf:ro
       - /opt/so/conf/redis/working:/redis:rw
+      - /nsm/redis/data:/data:rw
       - /etc/pki/redis.crt:/certs/redis.crt:ro
       - /etc/pki/redis.key:/certs/redis.key:ro
       {% if grains['role'] in ['so-manager', 'so-managersearch', 'so-standalone', 'so-import'] %}

From bbef96ac25fafe91f29b432133a4ba0773b7a367 Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Mon, 18 Sep 2023 12:12:57 -0400
Subject: [PATCH 096/417] use unique name

---
 salt/influxdb/config.sls | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/salt/influxdb/config.sls b/salt/influxdb/config.sls
index 3520e46b3..66c681a0d 100644
--- a/salt/influxdb/config.sls
+++ b/salt/influxdb/config.sls
@@ -25,7 +25,7 @@ influxlogdir:
     - group: 939
     - makedirs: True
 
-influxlogdir:
+influxetcdir:
   file.directory:
     - name: /opt/so/conf/influxdb/etc
     - dir_mode: 750

From 66bb1272aef598de001d9f134847ceecdd36a4fe Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Mon, 18 Sep 2023 13:39:56 -0400
Subject: [PATCH 097/417] avoid volume sprawl

---
 salt/strelka/config.sls              | 14 ++++++++++++++
 salt/strelka/coordinator/enabled.sls |  1 +
 salt/strelka/gatekeeper/enabled.sls  |  1 +
 3 files changed, 16 insertions(+)

diff --git a/salt/strelka/config.sls b/salt/strelka/config.sls
index bf3ac3dca..1d0f75adf 100644
--- a/salt/strelka/config.sls
+++ b/salt/strelka/config.sls
@@ -43,6 +43,20 @@ strelka_sbin:
     - group: 939
     - file_mode: 755
 
+strelkagkredisdatadir:
+  file.directory:
+    - name: /nsm/strelka/gk-redis-data
+    - user: 939
+    - group: 939
+    - makedirs: True
+
+strelkacoordredisdatadir:
+  file.directory:
+    - name: /nsm/strelka/coord-redis-data
+    - user: 939
+    - group: 939
+    - makedirs: True
+
 {% else %}
 
 {{sls}}_state_not_allowed:
diff --git a/salt/strelka/coordinator/enabled.sls b/salt/strelka/coordinator/enabled.sls
index 7a156bc9a..1222378f7 100644
--- a/salt/strelka/coordinator/enabled.sls
+++ b/salt/strelka/coordinator/enabled.sls
@@ -39,6 +39,7 @@ strelka_coordinator:
     {% endif %}
   {% if DOCKER.containers['so-strelka-coordinator'].custom_bind_mounts %}
     - binds:
+      - /nsm/strelka/coord-redis-data:/data:rw
         {% for BIND in DOCKER.containers['so-strelka-coordinator'].custom_bind_mounts %}
       - {{ BIND }}
         {% endfor %}
diff --git a/salt/strelka/gatekeeper/enabled.sls b/salt/strelka/gatekeeper/enabled.sls
index b309403f4..185910f83 100644
--- a/salt/strelka/gatekeeper/enabled.sls
+++ b/salt/strelka/gatekeeper/enabled.sls
@@ -33,6 +33,7 @@ strelka_gatekeeper:
       {% endfor %}
     {% if DOCKER.containers['so-strelka-gatekeeper'].custom_bind_mounts %}
     - binds:
+      - /nsm/strelka/gk-redis-data:/data:rw
       {% for BIND in DOCKER.containers['so-strelka-gatekeeper'].custom_bind_mounts %}
       - {{ BIND }}
       {% endfor %}

From bb3632d1b262a8cdaaead837be15edd0f33019a9 Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Mon, 18 Sep 2023 14:38:15 -0400
Subject: [PATCH 098/417] fix bind if statement

---
 salt/strelka/coordinator/enabled.sls | 4 ++--
 salt/strelka/gatekeeper/enabled.sls  | 8 ++++----
 2 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/salt/strelka/coordinator/enabled.sls b/salt/strelka/coordinator/enabled.sls
index 1222378f7..3440cd5a4 100644
--- a/salt/strelka/coordinator/enabled.sls
+++ b/salt/strelka/coordinator/enabled.sls
@@ -37,13 +37,13 @@ strelka_coordinator:
       - {{ XTRAENV }}
       {% endfor %}
     {% endif %}
-  {% if DOCKER.containers['so-strelka-coordinator'].custom_bind_mounts %}
     - binds:
       - /nsm/strelka/coord-redis-data:/data:rw
+      {% if DOCKER.containers['so-strelka-coordinator'].custom_bind_mounts %}
         {% for BIND in DOCKER.containers['so-strelka-coordinator'].custom_bind_mounts %}
       - {{ BIND }}
         {% endfor %}
-  {% endif %}
+      {% endif %}
 delete_so-strelka-coordinator_so-status.disabled:
   file.uncomment:
     - name: /opt/so/conf/so-status/so-status.conf
diff --git a/salt/strelka/gatekeeper/enabled.sls b/salt/strelka/gatekeeper/enabled.sls
index 185910f83..8d06ddf6a 100644
--- a/salt/strelka/gatekeeper/enabled.sls
+++ b/salt/strelka/gatekeeper/enabled.sls
@@ -31,13 +31,13 @@ strelka_gatekeeper:
       {% for BINDING in DOCKER.containers['so-strelka-gatekeeper'].port_bindings %}
       - {{ BINDING }}
       {% endfor %}
-    {% if DOCKER.containers['so-strelka-gatekeeper'].custom_bind_mounts %}
     - binds:
       - /nsm/strelka/gk-redis-data:/data:rw
-      {% for BIND in DOCKER.containers['so-strelka-gatekeeper'].custom_bind_mounts %}
+      {% if DOCKER.containers['so-strelka-gatekeeper'].custom_bind_mounts %}
+        {% for BIND in DOCKER.containers['so-strelka-gatekeeper'].custom_bind_mounts %}
       - {{ BIND }}
-      {% endfor %}
-    {% endif %}
+        {% endfor %}
+      {% endif %}
     {% if DOCKER.containers['so-strelka-gatekeeper'].extra_env %}
     - environment:
       {% for XTRAENV in DOCKER.containers['so-strelka-gatekeeper'].extra_env %}

From a914a022732a3691ab52dff7bf10f37d4121cffc Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Mon, 18 Sep 2023 14:43:02 -0400
Subject: [PATCH 099/417] prune unused volumes during upgrade

---
 salt/manager/tools/sbin/soup | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/salt/manager/tools/sbin/soup b/salt/manager/tools/sbin/soup
index 45e3df530..1251f9a57 100755
--- a/salt/manager/tools/sbin/soup
+++ b/salt/manager/tools/sbin/soup
@@ -434,7 +434,8 @@ post_to_2.4.10() {
 }
 
 post_to_2.4.20() {
-  echo "Nothing to apply"
+  echo "Pruning unused volumes"
+  docker volume prune -f
   POSTVERSION=2.4.20
 }
 

From 151e8bfc4e4c19e8daaffbd902cfd0169ced9721 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Mon, 18 Sep 2023 15:21:45 -0400
Subject: [PATCH 100/417] fix idstool extra_env for container

---
 salt/idstools/enabled.sls | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/salt/idstools/enabled.sls b/salt/idstools/enabled.sls
index 31afc5113..decc5a5b2 100644
--- a/salt/idstools/enabled.sls
+++ b/salt/idstools/enabled.sls
@@ -26,8 +26,8 @@ so-idstools:
       - http_proxy={{ proxy }}
       - https_proxy={{ proxy }}
       - no_proxy={{ salt['pillar.get']('manager:no_proxy') }}
-      {% if DOCKER.containers['so-elastalert'].extra_env %}
-        {% for XTRAENV in DOCKER.containers['so-elastalert'].extra_env %}
+      {% if DOCKER.containers['so-idstools'].extra_env %}
+        {% for XTRAENV in DOCKER.containers['so-idstools'].extra_env %}
       - {{ XTRAENV }}
         {% endfor %}
       {% endif %}

From 5bac1e4d15f65ba01e3337acf7be0921e6a6fa99 Mon Sep 17 00:00:00 2001
From: Wes <wlambertts@gmail.com>
Date: Mon, 18 Sep 2023 21:31:15 +0000
Subject: [PATCH 101/417] Show correct dates and Kibana URL for already
 processed EVTX files

---
 salt/common/tools/sbin_jinja/so-import-evtx | 51 +++++++++++----------
 1 file changed, 26 insertions(+), 25 deletions(-)

diff --git a/salt/common/tools/sbin_jinja/so-import-evtx b/salt/common/tools/sbin_jinja/so-import-evtx
index 59a13612c..f48f935bc 100755
--- a/salt/common/tools/sbin_jinja/so-import-evtx
+++ b/salt/common/tools/sbin_jinja/so-import-evtx
@@ -80,8 +80,8 @@ function evtx2es() {
     -e "SHIFTTS=$SHIFTDATE" \
     -v "$EVTX:/tmp/data.evtx" \
     -v "/nsm/import/$HASH/evtx/:/tmp/evtx/" \
-    -v "/nsm/import/evtx-end_newest:/tmp/newest" \
-    -v "/nsm/import/evtx-start_oldest:/tmp/oldest" \
+    -v "/nsm/import/$HASH/evtx-end_newest:/tmp/newest" \
+    -v "/nsm/import/$HASH/evtx-start_oldest:/tmp/oldest" \
     --entrypoint "/evtx_calc_timestamps.sh" \
     {{ MANAGER }}:5000/{{ IMAGEREPO }}/so-pcaptools:{{ VERSION }} >> $LOG_FILE 2>&1
 }
@@ -111,12 +111,6 @@ INVALID_EVTXS_COUNT=0
 VALID_EVTXS_COUNT=0
 SKIPPED_EVTXS_COUNT=0
 
-touch /nsm/import/evtx-start_oldest
-touch /nsm/import/evtx-end_newest
-
-echo $START_OLDEST > /nsm/import/evtx-start_oldest
-echo $END_NEWEST > /nsm/import/evtx-end_newest
-
 # paths must be quoted in case they include spaces
 for EVTX in $INPUT_FILES; do
   EVTX=$(/usr/bin/realpath "$EVTX")
@@ -141,8 +135,15 @@ for EVTX in $INPUT_FILES; do
     status "- this EVTX has already been imported; skipping"
     SKIPPED_EVTXS_COUNT=$((SKIPPED_EVTXS_COUNT + 1))
   else
+    # create EVTX directory
     EVTX_DIR=$HASH_DIR/evtx
     mkdir -p $EVTX_DIR
+    # create import timestamp files
+    for i in evtx-start_oldest evtx-end_newest; do
+      if ! [ -f "$i" ]; then
+        touch /nsm/import/$HASH/$i
+      fi
+    done
 
     # import evtx and write them to import ingest pipeline
     status "- importing logs to Elasticsearch..."
@@ -154,28 +155,28 @@ for EVTX in $INPUT_FILES; do
       VALID_EVTXS_COUNT=$((VALID_EVTXS_COUNT + 1))
     fi
 
-    # compare $START to $START_OLDEST
-    START=$(cat /nsm/import/evtx-start_oldest)
-    START_COMPARE=$(date -d $START +%s)
-    START_OLDEST_COMPARE=$(date -d $START_OLDEST +%s)
-    if [ $START_COMPARE -lt $START_OLDEST_COMPARE ]; then
-      START_OLDEST=$START
-    fi  
-
-    # compare $ENDNEXT to $END_NEWEST
-    END=$(cat /nsm/import/evtx-end_newest)
-    ENDNEXT=`date +%Y-%m-%d --date="$END 1 day"`
-    ENDNEXT_COMPARE=$(date -d $ENDNEXT +%s)
-    END_NEWEST_COMPARE=$(date -d $END_NEWEST +%s)
-    if [ $ENDNEXT_COMPARE -gt $END_NEWEST_COMPARE ]; then
-      END_NEWEST=$ENDNEXT
-    fi  
-
     cp -f "${EVTX}" "${EVTX_DIR}"/data.evtx
     chmod 644 "${EVTX_DIR}"/data.evtx
 
   fi # end of valid evtx
 
+  # compare $START to $START_OLDEST
+  START=$(cat /nsm/import/$HASH/evtx-start_oldest)
+  START_COMPARE=$(date -d $START +%s)
+  START_OLDEST_COMPARE=$(date -d $START_OLDEST +%s)
+  if [ $START_COMPARE -lt $START_OLDEST_COMPARE ]; then
+    START_OLDEST=$START
+  fi
+
+  # compare $ENDNEXT to $END_NEWEST
+  END=$(cat /nsm/import/$HASH/evtx-end_newest)
+  ENDNEXT=`date +%Y-%m-%d --date="$END 1 day"`
+  ENDNEXT_COMPARE=$(date -d $ENDNEXT +%s)
+  END_NEWEST_COMPARE=$(date -d $END_NEWEST +%s)
+  if [ $ENDNEXT_COMPARE -gt $END_NEWEST_COMPARE ]; then
+    END_NEWEST=$ENDNEXT
+  fi
+
   status
 
 done # end of for-loop processing evtx files

From 47e611682a5849c08ad93e2170567c658fd64b7c Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Tue, 19 Sep 2023 09:24:12 -0400
Subject: [PATCH 102/417] ignore debian apt update output

---
 setup/so-verify | 1 +
 1 file changed, 1 insertion(+)

diff --git a/setup/so-verify b/setup/so-verify
index e907e8bdc..e9a8a375c 100755
--- a/setup/so-verify
+++ b/setup/so-verify
@@ -53,6 +53,7 @@ log_has_errors() {
         grep -vE "Failed to restart snapd" | \
         grep -vE "Login Failed Details" | \
         grep -vE "response from daemon: unauthorized" | \
+        grep -vE "Reading first line of patchfile" | \
         grep -vE "Running scope as unit" &> "$error_log"
     
     if [[ $? -eq 0 ]]; then

From a1e963f834918a909245c74551f98bb37933b7a8 Mon Sep 17 00:00:00 2001
From: Wes <wlambertts@gmail.com>
Date: Tue, 19 Sep 2023 13:28:20 +0000
Subject: [PATCH 103/417] Reverse timestamps where necessary

---
 salt/common/tools/sbin_jinja/so-import-evtx | 13 +++++++++++--
 1 file changed, 11 insertions(+), 2 deletions(-)

diff --git a/salt/common/tools/sbin_jinja/so-import-evtx b/salt/common/tools/sbin_jinja/so-import-evtx
index f48f935bc..d12f34593 100755
--- a/salt/common/tools/sbin_jinja/so-import-evtx
+++ b/salt/common/tools/sbin_jinja/so-import-evtx
@@ -160,8 +160,18 @@ for EVTX in $INPUT_FILES; do
 
   fi # end of valid evtx
 
-  # compare $START to $START_OLDEST
+  # determine start and end and make sure they aren't reversed
   START=$(cat /nsm/import/$HASH/evtx-start_oldest)
+  END=$(cat /nsm/import/$HASH/evtx-end_newest)
+  START_EPOCH=`date -d "$START" +"%s"`
+  END_EPOCH=`date -d "$END" +"%s"`
+  if [ "$START_EPOCH" -gt "$END_EPOCH" ]; then
+    TEMP=$START
+    START=$END
+    END=$TEMP
+  fi
+
+  # compare $START to $START_OLDEST
   START_COMPARE=$(date -d $START +%s)
   START_OLDEST_COMPARE=$(date -d $START_OLDEST +%s)
   if [ $START_COMPARE -lt $START_OLDEST_COMPARE ]; then
@@ -169,7 +179,6 @@ for EVTX in $INPUT_FILES; do
   fi
 
   # compare $ENDNEXT to $END_NEWEST
-  END=$(cat /nsm/import/$HASH/evtx-end_newest)
   ENDNEXT=`date +%Y-%m-%d --date="$END 1 day"`
   ENDNEXT_COMPARE=$(date -d $ENDNEXT +%s)
   END_NEWEST_COMPARE=$(date -d $END_NEWEST +%s)

From 508260bd468bbeafaa86f0b05b879df75a32ec70 Mon Sep 17 00:00:00 2001
From: Wes <wlambertts@gmail.com>
Date: Tue, 19 Sep 2023 13:32:03 +0000
Subject: [PATCH 104/417] Use event.created for timestamp

---
 salt/elasticsearch/files/ingest/.fleet_final_pipeline-1 | 1 +
 1 file changed, 1 insertion(+)

diff --git a/salt/elasticsearch/files/ingest/.fleet_final_pipeline-1 b/salt/elasticsearch/files/ingest/.fleet_final_pipeline-1
index 688000fb7..52b6bae7a 100644
--- a/salt/elasticsearch/files/ingest/.fleet_final_pipeline-1
+++ b/salt/elasticsearch/files/ingest/.fleet_final_pipeline-1
@@ -80,6 +80,7 @@
     { "set":        { "if": "ctx.network?.type == 'ipv6'", "override": true, "field": "destination.ipv6", "value": "true" } },
     { "set":        { "if": "ctx.tags.0 == 'import'", "override": true, "field": "data_stream.dataset", "value": "import" } },
     { "set":        { "if": "ctx.tags.0 == 'import'", "override": true, "field": "data_stream.namespace", "value": "so" } },
+    { "date":       { "if": "ctx.event?.module == 'system'", "field": "event.created", "target_field": "@timestamp", "formats": ["yyyy-MM-dd'T'HH:mm:ss.SSSSSS'Z'"] } },
     { "community_id":{ "if": "ctx.event?.dataset == 'endpoint.events.network'", "ignore_failure":true }  },
     { "remove":     { "field": [ "message2", "type", "fields", "category", "module", "dataset", "event.dataset_temp", "dataset_tag_temp", "module_temp" ], "ignore_missing": true, "ignore_failure": true } } 
   ],

From 2e0ea3f37412b766773a7725ddd19e4d15df0590 Mon Sep 17 00:00:00 2001
From: Wes <wlambertts@gmail.com>
Date: Tue, 19 Sep 2023 13:33:12 +0000
Subject: [PATCH 105/417] Set final pipeline

---
 salt/elasticsearch/defaults.yaml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/salt/elasticsearch/defaults.yaml b/salt/elasticsearch/defaults.yaml
index cc2f5e1cd..91e5191f6 100644
--- a/salt/elasticsearch/defaults.yaml
+++ b/salt/elasticsearch/defaults.yaml
@@ -3689,6 +3689,7 @@ elasticsearch:
               refresh_interval: 30s
               number_of_shards: 1
               number_of_replicas: 0
+              final_pipeline: ".fleet_final_pipeline-1"
         composed_of: 
           - agent-mappings
           - dtc-agent-mappings

From 3fa3f83007e216f29579778595a66654d24518d4 Mon Sep 17 00:00:00 2001
From: Doug Burks <doug.burks@securityonionsolutions.com>
Date: Wed, 20 Sep 2023 08:22:52 -0400
Subject: [PATCH 106/417] Update soc_sensoroni.yaml

---
 salt/sensoroni/soc_sensoroni.yaml | 54 +++++++++++++++----------------
 1 file changed, 27 insertions(+), 27 deletions(-)

diff --git a/salt/sensoroni/soc_sensoroni.yaml b/salt/sensoroni/soc_sensoroni.yaml
index eb63dbe25..db51da358 100644
--- a/salt/sensoroni/soc_sensoroni.yaml
+++ b/salt/sensoroni/soc_sensoroni.yaml
@@ -2,53 +2,53 @@ sensoroni:
   enabled:
     description: Enable or disable Sensoroni.
     advanced: True
-    helpLink: sensoroni.html
+    helpLink: grid.html
   config:
     analyze:
       enabled:
         description: Enable or disable the analyzer.
         advanced: True
-        helpLink: sensoroni.html
+        helpLink: cases.html
       timeout_ms:
         description: Timeout period for the analyzer.
         advanced: True
-        helpLink: sensoroni.html
+        helpLink: cases.html
       parallel_limit:
         description: Parallel limit for the analyzer.
         advanced: True
-        helpLink: sensoroni.html
+        helpLink: cases.html
     node_checkin_interval_ms:
       description: Interval in ms to checkin to the soc_host.
       advanced: True
-      helpLink: sensoroni.html
+      helpLink: grid.html
     node_description:
       description: Description of the specific node.
-      helpLink: sensoroni.html
+      helpLink: grid.html
       node: True
       forcedType: string
     sensoronikey:
       description: Shared key for sensoroni authentication.
-      helpLink: sensoroni.html
+      helpLink: grid.html
       global: True
       sensitive: True
       advanced: True
     soc_host:
       description: Host for sensoroni agents to connect to.
-      helpLink: sensoroni.html
+      helpLink: grid.html
       global: True
       advanced: True
   analyzers:
     emailrep:
       api_key:
         description: API key for the EmailRep analyzer.
-        helpLink: sensoroni.html
+        helpLink: cases.html
         global: False
         sensitive: True
         advanced: True
         forcedType: string
       base_url:
         description: Base URL for the EmailRep analyzer.
-        helpLink: sensoroni.html
+        helpLink: cases.html
         global: False
         sensitive: False
         advanced: True
@@ -56,21 +56,21 @@ sensoroni:
     greynoise:
       api_key:
         description: API key for the GreyNoise analyzer.
-        helpLink: sensoroni.html
+        helpLink: cases.html
         global: False
         sensitive: True
         advanced: True
         forcedType: string
       api_version:
         description: API version for the GreyNoise analyzer.
-        helpLink: sensoroni.html
+        helpLink: cases.html
         global: False
         sensitive: False
         advanced: True
         forcedType: string
       base_url:
         description: Base URL for the GreyNoise analyzer.
-        helpLink: sensoroni.html
+        helpLink: cases.html
         global: False
         sensitive: False
         advanced: True
@@ -78,7 +78,7 @@ sensoroni:
     localfile:
       file_path:
         description: File path for the LocalFile analyzer.
-        helpLink: sensoroni.html
+        helpLink: cases.html
         global: False
         sensitive: False
         advanced: True
@@ -86,14 +86,14 @@ sensoroni:
     otx:
       api_key:
         description: API key for the OTX analyzer.
-        helpLink: sensoroni.html
+        helpLink: cases.html
         global: False
         sensitive: True
         advanced: True
         forcedType: string
       base_url:
         description: Base URL for the OTX analyzer.
-        helpLink: sensoroni.html
+        helpLink: cases.html
         global: False
         sensitive: False
         advanced: True
@@ -101,14 +101,14 @@ sensoroni:
     pulsedive:
       api_key:
         description: API key for the Pulsedive analyzer.
-        helpLink: sensoroni.html
+        helpLink: cases.html
         global: False
         sensitive: True
         advanced: True
         forcedType: string
       base_url:
         description: Base URL for the Pulsedive analyzer.
-        helpLink: sensoroni.html
+        helpLink: cases.html
         global: False
         sensitive: False
         advanced: True
@@ -116,14 +116,14 @@ sensoroni:
     spamhaus:
       lookup_host:
         description: Host to use for lookups.
-        helpLink: sensoroni.html
+        helpLink: cases.html
         global: False
         sensitive: False
         advanced: True
         forcedType: string
       nameservers:
         description: Nameservers used for queries.
-        helpLink: sensoroni.html
+        helpLink: cases.html
         global: False
         sensitive: False
         advanced: True
@@ -131,35 +131,35 @@ sensoroni:
     urlscan:
       api_key:
         description: API key for the Urlscan analyzer.
-        helpLink: sensoroni.html
+        helpLink: cases.html
         global: False
         sensitive: True
         advanced: True
         forcedType: string
       base_url:
         description: Base URL for the Urlscan analyzer.
-        helpLink: sensoroni.html
+        helpLink: cases.html
         global: False
         sensitive: False
         advanced: True
         forcedType: string
       enabled:
         description: Analyzer enabled
-        helpLink: sensoroni.html
+        helpLink: cases.html
         global: False
         sensitive: False
         advanced: True
         forcedType: bool
       timeout:
         description: Timeout for the Urlscan analyzer.
-        helpLink: sensoroni.html
+        helpLink: cases.html
         global: False
         sensitive: False
         advanced: True
         forcedType: int
       visibility:
         description: Type of visibility.
-        helpLink: sensoroni.html
+        helpLink: cases.html
         global: False
         sensitive: False
         advanced: True
@@ -167,14 +167,14 @@ sensoroni:
     virustotal:
       api_key:
         description: API key for the VirusTotal analyzer.
-        helpLink: sensoroni.html
+        helpLink: cases.html
         global: False
         sensitive: True
         advanced: True
         forcedType: string
       base_url:
         description: Base URL for the VirusTotal analyzer.
-        helpLink: sensoroni.html
+        helpLink: cases.html
         global: False
         sensitive: False
         advanced: True

From fa3a79a7875e03dc115cd8d93fb98c93764d532f Mon Sep 17 00:00:00 2001
From: Jason Ertel <jertel@users.noreply.github.com>
Date: Thu, 21 Sep 2023 09:41:44 -0400
Subject: [PATCH 107/417] Update soup to prune in background

---
 salt/manager/tools/sbin/soup | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/salt/manager/tools/sbin/soup b/salt/manager/tools/sbin/soup
index 1251f9a57..c3f9f29d4 100755
--- a/salt/manager/tools/sbin/soup
+++ b/salt/manager/tools/sbin/soup
@@ -434,8 +434,8 @@ post_to_2.4.10() {
 }
 
 post_to_2.4.20() {
-  echo "Pruning unused volumes"
-  docker volume prune -f
+  echo "Pruning unused docker volumes on all nodes - This process will run in the background."
+  salt --async \* cmd.run "docker volume prune -f"
   POSTVERSION=2.4.20
 }
 

From eeeae08ec885ae8be7d56b96f1d52ca3530688e5 Mon Sep 17 00:00:00 2001
From: Wes <wlambertts@gmail.com>
Date: Thu, 21 Sep 2023 18:39:06 +0000
Subject: [PATCH 108/417] /app/ to /app/dashboards/

---
 salt/nginx/etc/nginx.conf | 25 +++++++++++++------------
 1 file changed, 13 insertions(+), 12 deletions(-)

diff --git a/salt/nginx/etc/nginx.conf b/salt/nginx/etc/nginx.conf
index b2616e946..795663384 100644
--- a/salt/nginx/etc/nginx.conf
+++ b/salt/nginx/etc/nginx.conf
@@ -230,18 +230,19 @@ http {
 			proxy_cookie_path     /api/ /influxdb/api/;
 		}
 
-                location /app/ {
-                        auth_request          /auth/sessions/whoami;
-                        rewrite               /app/(.*) /app/$1 break;
-                        proxy_pass            http://{{ GLOBALS.manager }}:5601/app/;
-                        proxy_read_timeout    300;
-                        proxy_connect_timeout 300;
-                        proxy_set_header      Host $host;
-                        proxy_set_header      X-Real-IP $remote_addr;
-                        proxy_set_header      X-Forwarded-For $proxy_add_x_forwarded_for;
-                        proxy_set_header      Proxy "";
-                        proxy_set_header      X-Forwarded-Proto $scheme;
-     
+                location /app/dashboards/ {
+                         auth_request          /auth/sessions/whoami;
+                         rewrite               /app/dashboards/(.*) /app/dashboards/$1 break;
+                         proxy_pass            http://{{ GLOBALS.manager }}:5601/app/;
+                         proxy_read_timeout    300;
+                         proxy_connect_timeout 300;
+                         proxy_set_header      Host $host;
+                         proxy_set_header      X-Real-IP $remote_addr;
+                         proxy_set_header      X-Forwarded-For $proxy_add_x_forwarded_for;
+                         proxy_set_header      Proxy "";
+                         proxy_set_header      X-Forwarded-Proto $scheme;
+                } 
+               
                 location /kibana/ {
 			auth_request          /auth/sessions/whoami;
 			rewrite               /kibana/(.*) /$1 break;

From c95af6b9922d7b8cbf13d9b2b951243594ca7c2d Mon Sep 17 00:00:00 2001
From: weslambert <wlambertts@gmail.com>
Date: Mon, 25 Sep 2023 14:39:33 -0400
Subject: [PATCH 109/417] Add a note about testing analyzers outside of the
 Sensoroni Docker container

---
 salt/sensoroni/files/analyzers/README.md | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

diff --git a/salt/sensoroni/files/analyzers/README.md b/salt/sensoroni/files/analyzers/README.md
index 8b1f44f29..a75799558 100644
--- a/salt/sensoroni/files/analyzers/README.md
+++ b/salt/sensoroni/files/analyzers/README.md
@@ -141,7 +141,6 @@ Additionally, to support airgapped users, the dependency packages themselves, an
 pip download -r <my-analyzer-path>/requirements.txt -d <my-analyzer-path>/source-packages
 ```
 
-
 ### Analyzer Architecture
 
 The Sensoroni Docker container is responsible for executing analyzers. Only the manager's Sensoroni container will process analyzer jobs. Other nodes in the grid, such as sensors and search nodes, will not be assigned analyzer jobs.
@@ -154,6 +153,12 @@ The analyzer itself will only run when a user in SOC enqueues an analyzer job, s
 python -m urlhaus '{"artifactType":"url","value":"https://bigbadbotnet.invalid",...}'
 ```
 
+To manually test an analyzer outside of the Sensoroni Docker container, use a command similar to the following:
+
+```bash
+PYTHONPATH=. python urlhaus/urlhaus.py '{"artifactType":"url","value":"https://bigbadbotnet.invalid",...}'
+```
+
 It is up to each analyzer to determine whether the provided input is compatible with that analyzer. This is assisted by the analyzer metadata, as described earlier in this document, with the use of the `supportedTypes` list.
 
 Once the analyzer completes its functionality, it must terminate promptly. See the following sections for more details on expected internal behavior of the analyzer.

From 7cb9b5f2577b92cbcd8d908050eaffb40812807d Mon Sep 17 00:00:00 2001
From: weslambert <wlambertts@gmail.com>
Date: Mon, 25 Sep 2023 14:41:20 -0400
Subject: [PATCH 110/417] Add the blank line that was removed from the previous
 commit

---
 salt/sensoroni/files/analyzers/README.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/salt/sensoroni/files/analyzers/README.md b/salt/sensoroni/files/analyzers/README.md
index a75799558..19335a545 100644
--- a/salt/sensoroni/files/analyzers/README.md
+++ b/salt/sensoroni/files/analyzers/README.md
@@ -141,6 +141,7 @@ Additionally, to support airgapped users, the dependency packages themselves, an
 pip download -r <my-analyzer-path>/requirements.txt -d <my-analyzer-path>/source-packages
 ```
 
+
 ### Analyzer Architecture
 
 The Sensoroni Docker container is responsible for executing analyzers. Only the manager's Sensoroni container will process analyzer jobs. Other nodes in the grid, such as sensors and search nodes, will not be assigned analyzer jobs.

From e25d1c0ff34a37a895c2725dc1e247141b5d6e59 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Tue, 26 Sep 2023 10:01:21 -0400
Subject: [PATCH 111/417] so-salt-minion-check is jinja template

---
 salt/common/tools/{sbin => sbin_jinja}/so-salt-minion-check | 0
 1 file changed, 0 insertions(+), 0 deletions(-)
 rename salt/common/tools/{sbin => sbin_jinja}/so-salt-minion-check (100%)

diff --git a/salt/common/tools/sbin/so-salt-minion-check b/salt/common/tools/sbin_jinja/so-salt-minion-check
similarity index 100%
rename from salt/common/tools/sbin/so-salt-minion-check
rename to salt/common/tools/sbin_jinja/so-salt-minion-check

From 0bba68769bf6602dfeb8a1484adfa246c17d1fd0 Mon Sep 17 00:00:00 2001
From: Wes <wlambertts@gmail.com>
Date: Tue, 26 Sep 2023 14:05:12 +0000
Subject: [PATCH 112/417] Make scan.pe.image_version type of 'float'

---
 .../templates/component/so/so-scan-mappings.json             | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/salt/elasticsearch/templates/component/so/so-scan-mappings.json b/salt/elasticsearch/templates/component/so/so-scan-mappings.json
index 8ddbe6077..008a6ab10 100644
--- a/salt/elasticsearch/templates/component/so/so-scan-mappings.json
+++ b/salt/elasticsearch/templates/component/so/so-scan-mappings.json
@@ -20,7 +20,10 @@
                       "type": "float"
                     }
                   }
-                }
+                },
+		"image_version": {
+	          "type": "float"
+		}
               }
             },
             "elf": {

From 2abf434ebefb502b5bf2abfcf8c3cec3b173cde4 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Tue, 26 Sep 2023 10:56:20 -0400
Subject: [PATCH 113/417] create snapshots of default, local salt and pillars
 during soup. rsync soup with --delete

---
 salt/common/tools/sbin/so-common |  6 ++----
 salt/manager/tools/sbin/soup     | 12 ++++++++++++
 2 files changed, 14 insertions(+), 4 deletions(-)

diff --git a/salt/common/tools/sbin/so-common b/salt/common/tools/sbin/so-common
index 03b19d756..0dfb19bbe 100755
--- a/salt/common/tools/sbin/so-common
+++ b/salt/common/tools/sbin/so-common
@@ -154,13 +154,11 @@ check_salt_minion_status() {
 	return $status
 }
 
-
-
 copy_new_files() {
   # Copy new files over to the salt dir
   cd $UPDATE_DIR
-  rsync -a salt $DEFAULT_SALT_DIR/
-  rsync -a pillar $DEFAULT_SALT_DIR/
+  rsync -a salt $DEFAULT_SALT_DIR/ --delete
+  rsync -a pillar $DEFAULT_SALT_DIR/ --delete
   chown -R socore:socore $DEFAULT_SALT_DIR/
   chmod 755 $DEFAULT_SALT_DIR/pillar/firewall/addfirewall.sh
   cd /tmp
diff --git a/salt/manager/tools/sbin/soup b/salt/manager/tools/sbin/soup
index 1251f9a57..8ec9f9bad 100755
--- a/salt/manager/tools/sbin/soup
+++ b/salt/manager/tools/sbin/soup
@@ -171,6 +171,13 @@ airgap_update_dockers() {
   fi
 }
 
+backup_old_states_pillars() {
+
+	tar czf /nsm/backup/$(echo $INSTALLEDVERSION)_$(date +%Y%m%d-%H%M%S)_soup_default_states_pillars.tar.gz /opt/so/saltstack/default/
+	tar czf /nsm/backup/$(echo $INSTALLEDVERSION)_$(date +%Y%m%d-%H%M%S)_soup_local_states_pillars.tar.gz /opt/so/saltstack/local/
+
+}
+
 update_registry() {
   docker stop so-dockerregistry
   docker rm so-dockerregistry
@@ -789,6 +796,7 @@ main() {
 
   if [ "$is_hotfix" == "true" ]; then
     echo "Applying $HOTFIXVERSION hotfix"
+    backup_old_states_pillars
     copy_new_files
     apply_hotfix
     echo "Hotfix applied"
@@ -845,6 +853,10 @@ main() {
       update_centos_repo
     fi
 
+    echo ""
+    echo "Creating snapshots of default and local Salt states and pillars and saving to /nsm/backup/"
+    backup_old_states_pillars
+
     echo ""
     echo "Copying new Security Onion code from $UPDATE_DIR to $DEFAULT_SALT_DIR."
     copy_new_files

From 48801da44e9df1c589a165fa42f7778bfed26b93 Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Tue, 26 Sep 2023 18:12:20 -0400
Subject: [PATCH 114/417] log check tool initial

---
 salt/common/tools/sbin/so-log-check | 174 ++++++++++++++++++++++++++++
 1 file changed, 174 insertions(+)
 create mode 100755 salt/common/tools/sbin/so-log-check

diff --git a/salt/common/tools/sbin/so-log-check b/salt/common/tools/sbin/so-log-check
new file mode 100755
index 000000000..6a3ca9876
--- /dev/null
+++ b/salt/common/tools/sbin/so-log-check
@@ -0,0 +1,174 @@
+#!/bin/bash
+#
+# Copyright Security Onion Solutions LLC and/or licensed to Security Onion Solutions LLC under one
+# or more contributor license agreements. Licensed under the Elastic License 2.0 as shown at 
+# https://securityonion.net/license; you may not use this file except in compliance with the
+# Elastic License 2.0.
+
+. /usr/sbin/so-common
+
+RECENT_LOG_LINES=200
+EXCLUDE_STARTUP_ERRORS=N
+EXCLUDE_FALSE_POSITIVE_ERRORS=N
+EXCLUDE_KNOWN_ERRORS=N
+
+while [[ $# -gt 0 ]]; do
+    case $1 in
+        --exclude-connection-errors)
+            EXCLUDE_STARTUP_ERRORS=Y
+            ;;
+        --exclude-false-positives)
+            EXCLUDE_FALSE_POSITIVE_ERRORS=Y
+            ;;
+        --exclude-known-errors)
+            EXCLUDE_KNOWN_ERRORS=Y
+            ;;
+        --unknown)
+            EXCLUDE_STARTUP_ERRORS=Y
+            EXCLUDE_FALSE_POSITIVE_ERRORS=Y
+            EXCLUDE_KNOWN_ERRORS=Y
+            ;;
+        --recent-log-lines)
+            shift
+            RECENT_LOG_LINES=$1
+            ;;
+        *)
+            echo "Usage: $0 [options]"
+            echo ""
+            echo "where options are:"
+            echo "  --recent-log-lines N            looks at the most recent N log lines per file or container; defaults to 200"
+            echo "  --exclude-connection-errors     exclude errors caused by a recent server or container restart"
+            echo "  --exclude-false-positives       exclude logs that are not actual errors but contain the error string"
+            echo "  --exclude-known-errors          exclude errors that are known and non-critical issues"
+            echo "  --unknown                       exclude everthing mentioned above; only show unknown errors"
+            echo ""
+            echo "A non-zero return value indicates errors were found"
+            exit 1
+            ;;
+    esac
+    shift
+done
+
+echo "Security Onion Log Check - $(date)"
+echo "-------------------------------------------"
+echo ""
+echo "- RECENT_LOG_LINES:                $RECENT_LOG_LINES"
+echo "- EXCLUDE_STARTUP_ERRORS:          $EXCLUDE_STARTUP_ERRORS"
+echo "- EXCLUDE_FALSE_POSITIVE_ERRORS:   $EXCLUDE_FALSE_POSITIVE_ERRORS"
+echo "- EXCLUDE_KNOWN_ERRORS:            $EXCLUDE_KNOWN_ERRORS"
+echo ""
+
+function status() {
+    header "$1"
+}
+
+function exclude_container() {
+    name=$1
+
+    exclude_id=$(docker ps | grep "$name" | awk '{print $1}')
+    if [[ -n "$exclude_id" ]]; then
+        CONTAINER_IDS=$(echo $CONTAINER_IDS | sed -e "s/$exclude_id//g")
+        return $?
+    fi
+    return $?
+}
+
+function exclude_log() {
+    name=$1
+
+    LOG_FILES=$(echo "$LOG_FILES" | sed -e "s/$name//g")
+}
+
+function check_for_errors() {
+    if cat /tmp/log_check | grep -i error | grep -vEi "$EXCLUDED_ERRORS"; then
+        RESULT=1
+    fi
+}
+
+EXCLUDED_ERRORS="__LOG_CHECK_PLACEHOLDER_EXCLUSION__"
+
+if [[ $EXCLUDE_STARTUP_ERRORS == 'Y' ]]; then
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|database is locked"           # server not yet ready
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|econnreset"                   # server not yet ready
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|unreachable"                  # server not yet ready
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|no route to host"             # server not yet ready
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|not running"                  # server not yet ready
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|unavailable"                  # server not yet ready
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|request.py"                   # server not yet ready (python stack output)
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|httperror"                    # server not yet ready
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|servfail"                     # server not yet ready
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|connection refused"           # server not yet ready
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|missing shards"               # server not yet ready
+fi
+
+if [[ $EXCLUDE_FALSE_POSITIVE_ERRORS == 'Y' ]]; then
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|elastalert_status_error"      # false positive
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|elastalert_error.json"        # false positive
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|error: '0'"                   # false positive
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|errors_index"                 # false positive
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|noerror"                      # false positive
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|emerging-all.rules"           # false positive (error in rulename)
+fi
+
+if [[ $EXCLUDE_KNOWN_ERRORS == 'Y' ]]; then
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|eof"
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|_ml"                          # Elastic ML errors 
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|iteration"
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|communication packets"
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|use of closed"
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|bookkeeper"
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|noindices"
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|failed to start transient scope"
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|status 200"                   # request successful, contained error string in content
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|so-user.lock exists"
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|systemd-run"
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|retcode: 1"
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|telemetry-task"
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|redisqueue"
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|fleet_detail_query"
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|num errors=0"
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|provisioning/alerting"
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|provisioning/notifiers"
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|provisoning/plugins"
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|active-responses.log"
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|scanentropy"
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|integration policy"
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|blob unknown"
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|token required"
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|zeekcaptureloss"
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|unable to create detection"
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|error installing new prebuilt rules"
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|parent.error"
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|req.LocalMeta.host.ip"        # known issue 
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|sendmail"                     # zeek
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|example"                      # example test data
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|so_long_term"                 # setup in progress, influxdb not yet setup
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|stats.log"
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|context deadline exceeded"
+fi
+
+RESULT=0
+
+# Check Security Onion container stdout/stderr logs
+CONTAINER_IDS=$(docker ps -q)
+exclude_container so-kibana
+exclude_container so-idstools
+
+for container_id in $CONTAINER_IDS; do
+    status "Checking container $container_id"
+    docker logs -n $RECENT_LOG_LINES $container_id > /tmp/log_check 2>&1
+    check_for_errors
+done
+
+# Check Security Onion related log files
+LOG_FILES=$(find /opt/so/log/ /nsm -name \*.log)
+exclude_log "\s?.*kibana.log"
+LOG_FILES="$LOG_FILES /var/log/cron"
+
+for log_file in $LOG_FILES; do
+    status "Checking log file $log_file"
+    tail -n $RECENT_LOG_LINES $log_file > /tmp/log_check
+    check_for_errors
+done
+
+exit $RESULT
\ No newline at end of file

From 2c8d413f168fe2dedcf9e7eb91dfc806377ee3b5 Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Tue, 26 Sep 2023 18:14:37 -0400
Subject: [PATCH 115/417] log check tool initial

---
 salt/common/tools/sbin/so-log-check | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/salt/common/tools/sbin/so-log-check b/salt/common/tools/sbin/so-log-check
index 6a3ca9876..752a6d51e 100755
--- a/salt/common/tools/sbin/so-log-check
+++ b/salt/common/tools/sbin/so-log-check
@@ -40,7 +40,7 @@ while [[ $# -gt 0 ]]; do
             echo "  --exclude-connection-errors     exclude errors caused by a recent server or container restart"
             echo "  --exclude-false-positives       exclude logs that are not actual errors but contain the error string"
             echo "  --exclude-known-errors          exclude errors that are known and non-critical issues"
-            echo "  --unknown                       exclude everthing mentioned above; only show unknown errors"
+            echo "  --unknown                       exclude everything mentioned above; only show unknown errors"
             echo ""
             echo "A non-zero return value indicates errors were found"
             exit 1

From 9c854a13ccf44b56163ed90d9ae8e26d163a0ff2 Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Tue, 26 Sep 2023 21:41:44 -0400
Subject: [PATCH 116/417] skip zeek spool logs due to test data false positives

---
 salt/common/tools/sbin/so-log-check | 32 ++++++++++++++++++++++-------
 1 file changed, 25 insertions(+), 7 deletions(-)

diff --git a/salt/common/tools/sbin/so-log-check b/salt/common/tools/sbin/so-log-check
index 752a6d51e..6169e9720 100755
--- a/salt/common/tools/sbin/so-log-check
+++ b/salt/common/tools/sbin/so-log-check
@@ -38,7 +38,7 @@ while [[ $# -gt 0 ]]; do
             echo "where options are:"
             echo "  --recent-log-lines N            looks at the most recent N log lines per file or container; defaults to 200"
             echo "  --exclude-connection-errors     exclude errors caused by a recent server or container restart"
-            echo "  --exclude-false-positives       exclude logs that are not actual errors but contain the error string"
+            echo "  --exclude-false-positives       exclude logs that are known false positives"
             echo "  --exclude-known-errors          exclude errors that are known and non-critical issues"
             echo "  --unknown                       exclude everything mentioned above; only show unknown errors"
             echo ""
@@ -76,7 +76,8 @@ function exclude_container() {
 function exclude_log() {
     name=$1
 
-    LOG_FILES=$(echo "$LOG_FILES" | sed -e "s/$name//g")
+    cat /tmp/log_check_files | grep -v $name > /tmp/log_check_files.new
+    mv /tmp/log_check_files.new /tmp/log_check_files
 }
 
 function check_for_errors() {
@@ -97,8 +98,10 @@ if [[ $EXCLUDE_STARTUP_ERRORS == 'Y' ]]; then
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|request.py"                   # server not yet ready (python stack output)
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|httperror"                    # server not yet ready
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|servfail"                     # server not yet ready
-    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|connection refused"           # server not yet ready
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|connect"                      # server not yet ready
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|missing shards"               # server not yet ready
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|failed to send metrics"       # server not yet ready
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|influxsize kbytes"            # server not yet ready (telegraf)
 fi
 
 if [[ $EXCLUDE_FALSE_POSITIVE_ERRORS == 'Y' ]]; then
@@ -107,11 +110,15 @@ if [[ $EXCLUDE_FALSE_POSITIVE_ERRORS == 'Y' ]]; then
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|error: '0'"                   # false positive
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|errors_index"                 # false positive
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|noerror"                      # false positive
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|deprecated"                   # false positive (playbook)
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|could cause errors"           # false positive (playbook)
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|id.orig_h"                    # false positive (zeek test data)
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|emerging-all.rules"           # false positive (error in rulename)
 fi
 
 if [[ $EXCLUDE_KNOWN_ERRORS == 'Y' ]]; then
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|eof"
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|forbidden"                    # playbook
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|_ml"                          # Elastic ML errors 
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|iteration"
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|communication packets"
@@ -161,14 +168,25 @@ for container_id in $CONTAINER_IDS; do
 done
 
 # Check Security Onion related log files
-LOG_FILES=$(find /opt/so/log/ /nsm -name \*.log)
-exclude_log "\s?.*kibana.log"
-LOG_FILES="$LOG_FILES /var/log/cron"
+find /opt/so/log/ /nsm -name \*.log > /tmp/log_check_files
+echo "/var/log/cron" >> /tmp/log_check_files
+exclude_log "kibana.log"
+exclude_log "spool"
 
-for log_file in $LOG_FILES; do
+for log_file in $(cat /tmp/log_check_files); do
     status "Checking log file $log_file"
     tail -n $RECENT_LOG_LINES $log_file > /tmp/log_check
     check_for_errors
 done
 
+# Cleanup temp files
+rm -f /tmp/log_check_files
+rm -f /tmp/log_check
+
+if [[ $RESULT -eq 0 ]]; then
+    echo -e "\nResult: No errors found"
+else
+    echo -e "\nResult: One or more errors found"
+fi
+
 exit $RESULT
\ No newline at end of file

From b47d915cb6318bfa8af3a29763fe38015764ec2f Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Wed, 27 Sep 2023 09:30:19 -0400
Subject: [PATCH 117/417] don't inspect imported zeek output

---
 salt/common/tools/sbin/so-log-check | 14 ++++++++++++--
 1 file changed, 12 insertions(+), 2 deletions(-)

diff --git a/salt/common/tools/sbin/so-log-check b/salt/common/tools/sbin/so-log-check
index 6169e9720..621f0027a 100755
--- a/salt/common/tools/sbin/so-log-check
+++ b/salt/common/tools/sbin/so-log-check
@@ -101,7 +101,12 @@ if [[ $EXCLUDE_STARTUP_ERRORS == 'Y' ]]; then
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|connect"                      # server not yet ready
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|missing shards"               # server not yet ready
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|failed to send metrics"       # server not yet ready
-    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|influxsize kbytes"            # server not yet ready (telegraf)
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|influxsize kbytes"            # server not yet ready (telegraf waiting on influx)
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|expected field at"            # server not yet ready (telegraf waiting on health data)
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|cached the public key"        # server not yet ready (salt minion waiting on key acceptance)
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|no ingest nodes"              # server not yet ready (logstash waiting on elastic)
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|failed to poll"               # server not yet ready (sensoroni waiting on soc)
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|minions returned with non"    # server not yet ready (salt waiting on minions)
 fi
 
 if [[ $EXCLUDE_FALSE_POSITIVE_ERRORS == 'Y' ]]; then
@@ -110,14 +115,18 @@ if [[ $EXCLUDE_FALSE_POSITIVE_ERRORS == 'Y' ]]; then
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|error: '0'"                   # false positive
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|errors_index"                 # false positive
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|noerror"                      # false positive
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|error-template"               # false positive (elastic templates)
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|deprecated"                   # false positive (playbook)
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|could cause errors"           # false positive (playbook)
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|id.orig_h"                    # false positive (zeek test data)
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|emerging-all.rules"           # false positive (error in rulename)
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|invalid query input"          # false positive (Invalid user input in hunt query)
 fi
 
 if [[ $EXCLUDE_KNOWN_ERRORS == 'Y' ]]; then
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|eof"
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|urlerror"                     # idstools connection timeout
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|timeouterror"                 # idstools connection timeout
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|forbidden"                    # playbook
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|_ml"                          # Elastic ML errors 
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|iteration"
@@ -146,7 +155,7 @@ if [[ $EXCLUDE_KNOWN_ERRORS == 'Y' ]]; then
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|unable to create detection"
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|error installing new prebuilt rules"
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|parent.error"
-    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|req.LocalMeta.host.ip"        # known issue 
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|req.LocalMeta.host.ip"        # known issue in GH
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|sendmail"                     # zeek
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|example"                      # example test data
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|so_long_term"                 # setup in progress, influxdb not yet setup
@@ -172,6 +181,7 @@ find /opt/so/log/ /nsm -name \*.log > /tmp/log_check_files
 echo "/var/log/cron" >> /tmp/log_check_files
 exclude_log "kibana.log"
 exclude_log "spool"
+exclude_log "import"
 
 for log_file in $(cat /tmp/log_check_files); do
     status "Checking log file $log_file"

From 05e7c32cf9f6d9246e458d33d0b13aa43b337d06 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Wed, 27 Sep 2023 10:08:08 -0400
Subject: [PATCH 118/417] remove duplicate filecheck_run cron

---
 salt/strelka/filestream/config.sls | 10 ++++++++++
 1 file changed, 10 insertions(+)

diff --git a/salt/strelka/filestream/config.sls b/salt/strelka/filestream/config.sls
index 833a08505..0f9f38914 100644
--- a/salt/strelka/filestream/config.sls
+++ b/salt/strelka/filestream/config.sls
@@ -108,6 +108,11 @@ filecheck_stdout.log:
 
 {% if GLOBALS.md_engine == 'ZEEK' %}
 
+remove_filecheck_run:
+  cron.absent:
+    - identifier: filecheck_run
+    - user: socore
+
 filecheck_run_socore:
   cron.present:
     - name: 'ps -ef | grep filecheck | grep -v grep > /dev/null 2>&1 || python3 /opt/so/conf/strelka/filecheck >> /opt/so/log/strelka/filecheck_stdout.log 2>&1 &'
@@ -121,6 +126,11 @@ remove_filecheck_run_suricata:
 
 {% elif GLOBALS.md_engine == 'SURICATA'%}
 
+remove_filecheck_run:
+  cron.absent:
+    - identifier: filecheck_run
+    - user: suricata
+
 filecheck_run_suricata:
   cron.present:
     - name: 'ps -ef | grep filecheck | grep -v grep > /dev/null 2>&1 || python3 /opt/so/conf/strelka/filecheck >> /opt/so/log/strelka/filecheck_stdout.log 2>&1 &'

From c4fea9cb9da5a5044ad1c7be9aeca417b4e6ab96 Mon Sep 17 00:00:00 2001
From: Mike Reeves <mike.reeves@securityonionsolutions.com>
Date: Wed, 27 Sep 2023 11:03:58 -0400
Subject: [PATCH 119/417] Update nginx.conf

---
 salt/nginx/etc/nginx.conf | 1 +
 1 file changed, 1 insertion(+)

diff --git a/salt/nginx/etc/nginx.conf b/salt/nginx/etc/nginx.conf
index 795663384..3ef0c5c1f 100644
--- a/salt/nginx/etc/nginx.conf
+++ b/salt/nginx/etc/nginx.conf
@@ -8,6 +8,7 @@
 worker_processes auto;
 error_log /var/log/nginx/error.log;
 pid /run/nginx.pid;
+user nobody;
 
 include /usr/share/nginx/modules/*.conf;
 

From 87cc389088eb0f1886c73610f70e3701eb625d20 Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Wed, 27 Sep 2023 15:36:13 -0400
Subject: [PATCH 120/417] deb OS doesn't use /var/log/cron, skip

---
 salt/common/tools/sbin/so-log-check | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/salt/common/tools/sbin/so-log-check b/salt/common/tools/sbin/so-log-check
index 621f0027a..d377d0236 100755
--- a/salt/common/tools/sbin/so-log-check
+++ b/salt/common/tools/sbin/so-log-check
@@ -178,7 +178,9 @@ done
 
 # Check Security Onion related log files
 find /opt/so/log/ /nsm -name \*.log > /tmp/log_check_files
-echo "/var/log/cron" >> /tmp/log_check_files
+if [[ -f /var/log/cron ]]; then
+    echo "/var/log/cron" >> /tmp/log_check_files
+fi
 exclude_log "kibana.log"
 exclude_log "spool"
 exclude_log "import"

From f094b1162d7c23cd5bb2d98d7e34fb2f7b6afecf Mon Sep 17 00:00:00 2001
From: Mike Reeves <mike.reeves@securityonionsolutions.com>
Date: Wed, 27 Sep 2023 15:48:05 -0400
Subject: [PATCH 121/417] Update defaults.yaml

---
 salt/zeek/defaults.yaml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/salt/zeek/defaults.yaml b/salt/zeek/defaults.yaml
index 8e6814b2e..783c38820 100644
--- a/salt/zeek/defaults.yaml
+++ b/salt/zeek/defaults.yaml
@@ -8,9 +8,9 @@ zeek:
       buffer: 128*1024*1024
     zeekctl:
       MailTo: root@localhost
-      MailConnectionSummary: 1
+      MailConnectionSummary: 0
       MinDiskSpace: 5
-      MailHostUpDown: 1
+      MailHostUpDown: 0
       LogRotationInterval: 3600
       LogExpireInterval: 0
       StatsLogEnable: 1

From 4666916077db773dfb10d94e0decb85620d0c453 Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Wed, 27 Sep 2023 15:48:52 -0400
Subject: [PATCH 122/417] ignore generic python stack trace log lines of code,
 rely on actual error messages

---
 salt/common/tools/sbin/so-log-check | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/salt/common/tools/sbin/so-log-check b/salt/common/tools/sbin/so-log-check
index d377d0236..9deeba1cd 100755
--- a/salt/common/tools/sbin/so-log-check
+++ b/salt/common/tools/sbin/so-log-check
@@ -125,6 +125,8 @@ fi
 
 if [[ $EXCLUDE_KNOWN_ERRORS == 'Y' ]]; then
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|eof"
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|raise error"                 # redis/python generic stack line, rely on other lines for actual error
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|fail(error)"                 # redis/python generic stack line, rely on other lines for actual error
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|urlerror"                     # idstools connection timeout
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|timeouterror"                 # idstools connection timeout
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|forbidden"                    # playbook

From 2427344dca2fc963b9b9d608f7f665141610d9aa Mon Sep 17 00:00:00 2001
From: Mike Reeves <mike.reeves@securityonionsolutions.com>
Date: Wed, 27 Sep 2023 15:58:58 -0400
Subject: [PATCH 123/417] Update defaults.yaml

---
 salt/zeek/defaults.yaml | 1 -
 1 file changed, 1 deletion(-)

diff --git a/salt/zeek/defaults.yaml b/salt/zeek/defaults.yaml
index 783c38820..4435670a2 100644
--- a/salt/zeek/defaults.yaml
+++ b/salt/zeek/defaults.yaml
@@ -28,7 +28,6 @@ zeek:
         - misc/loaded-scripts
         - tuning/defaults
         - misc/capture-loss
-        - misc/stats
         - frameworks/software/vulnerable
         - frameworks/software/version-changes
         - protocols/ftp/software

From 2fb73cd51621a8dea6a6f8d31597273e05ff12fb Mon Sep 17 00:00:00 2001
From: Mike Reeves <mike.reeves@securityonionsolutions.com>
Date: Wed, 27 Sep 2023 16:07:38 -0400
Subject: [PATCH 124/417] Update defaults.yaml

---
 salt/telegraf/defaults.yaml | 8 --------
 1 file changed, 8 deletions(-)

diff --git a/salt/telegraf/defaults.yaml b/salt/telegraf/defaults.yaml
index a87fa952b..ab8679e57 100644
--- a/salt/telegraf/defaults.yaml
+++ b/salt/telegraf/defaults.yaml
@@ -11,7 +11,6 @@ telegraf:
     quiet: 'false'
   scripts:
     eval:
-      - beatseps.sh
       - checkfiles.sh
       - influxdbsize.sh
       - oldpcap.sh
@@ -23,7 +22,6 @@ telegraf:
       - zeekcaptureloss.sh
       - zeekloss.sh
     standalone:
-      - beatseps.sh
       - checkfiles.sh
       - eps.sh
       - influxdbsize.sh
@@ -36,13 +34,11 @@ telegraf:
       - zeekcaptureloss.sh
       - zeekloss.sh
     manager:
-      - beatseps.sh
       - influxdbsize.sh
       - raid.sh
       - redis.sh
       - sostatus.sh
     managersearch:
-      - beatseps.sh
       - eps.sh
       - influxdbsize.sh
       - raid.sh
@@ -51,7 +47,6 @@ telegraf:
     import:
       - sostatus.sh
     sensor:
-      - beatseps.sh
       - checkfiles.sh
       - oldpcap.sh
       - raid.sh
@@ -61,7 +56,6 @@ telegraf:
       - zeekcaptureloss.sh
       - zeekloss.sh
     heavynode:
-      - beatseps.sh
       - checkfiles.sh
       - eps.sh
       - oldpcap.sh
@@ -75,12 +69,10 @@ telegraf:
     idh:
       - sostatus.sh
     searchnode:
-      - beatseps.sh
       - eps.sh
       - raid.sh
       - sostatus.sh
     receiver:
-      - beatseps.sh
       - eps.sh
       - raid.sh
       - redis.sh

From 039d5ae9aa4a65e8e8bce9d5e45bfd51682c0e84 Mon Sep 17 00:00:00 2001
From: Mike Reeves <mike.reeves@securityonionsolutions.com>
Date: Wed, 27 Sep 2023 16:09:27 -0400
Subject: [PATCH 125/417] Delete salt/telegraf/scripts/beatseps.sh

---
 salt/telegraf/scripts/beatseps.sh | 38 -------------------------------
 1 file changed, 38 deletions(-)
 delete mode 100644 salt/telegraf/scripts/beatseps.sh

diff --git a/salt/telegraf/scripts/beatseps.sh b/salt/telegraf/scripts/beatseps.sh
deleted file mode 100644
index 5f3db53f8..000000000
--- a/salt/telegraf/scripts/beatseps.sh
+++ /dev/null
@@ -1,38 +0,0 @@
-#!/bin/bash
-#
-# Copyright Security Onion Solutions LLC and/or licensed to Security Onion Solutions LLC under one
-# or more contributor license agreements. Licensed under the Elastic License 2.0 as shown at 
-# https://securityonion.net/license; you may not use this file except in compliance with the
-# Elastic License 2.0.
-
-
-
-# if this script isn't already running
-if [[ ! "`pidof -x $(basename $0) -o %PPID`" ]]; then
-
-  PREVCOUNTFILE='/tmp/beatseps.txt'
-  EVENTCOUNTCURRENT="$(curl -s localhost:5066/stats | jq '.libbeat.output.events.acked')"
-  FAILEDEVENTCOUNT="$(curl -s localhost:5066/stats | jq '.libbeat.output.events.failed')"
-
-  if [ ! -z "$EVENTCOUNTCURRENT" ]; then
-
-    if [ -f "$PREVCOUNTFILE" ]; then
-      EVENTCOUNTPREVIOUS=`cat $PREVCOUNTFILE`
-    else
-      echo "${EVENTCOUNTCURRENT}" > $PREVCOUNTFILE
-      exit 0
-    fi
-
-    echo "${EVENTCOUNTCURRENT}" > $PREVCOUNTFILE
-    # the division by 30 is because the agent interval is 30 seconds
-    EVENTS=$(((EVENTCOUNTCURRENT - EVENTCOUNTPREVIOUS)/30))
-    if [ "$EVENTS" -lt 0 ]; then
-      EVENTS=0
-    fi
-
-    echo "fbstats eps=${EVENTS%%.*},failed=$FAILEDEVENTCOUNT"
-  fi
-
-fi
-
-exit 0

From 24def3a196efc12506f11de8c32e5d52cc6bd24b Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Wed, 27 Sep 2023 16:50:01 -0400
Subject: [PATCH 126/417] ignore generic python stack trace log lines of code,
 rely on actual error messages

---
 salt/common/tools/sbin/so-log-check | 11 ++++++-----
 1 file changed, 6 insertions(+), 5 deletions(-)

diff --git a/salt/common/tools/sbin/so-log-check b/salt/common/tools/sbin/so-log-check
index 9deeba1cd..f89995065 100755
--- a/salt/common/tools/sbin/so-log-check
+++ b/salt/common/tools/sbin/so-log-check
@@ -107,6 +107,7 @@ if [[ $EXCLUDE_STARTUP_ERRORS == 'Y' ]]; then
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|no ingest nodes"              # server not yet ready (logstash waiting on elastic)
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|failed to poll"               # server not yet ready (sensoroni waiting on soc)
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|minions returned with non"    # server not yet ready (salt waiting on minions)
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|so_long_term"                 # server not yet ready (influxdb not yet setup)
 fi
 
 if [[ $EXCLUDE_FALSE_POSITIVE_ERRORS == 'Y' ]]; then
@@ -121,23 +122,25 @@ if [[ $EXCLUDE_FALSE_POSITIVE_ERRORS == 'Y' ]]; then
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|id.orig_h"                    # false positive (zeek test data)
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|emerging-all.rules"           # false positive (error in rulename)
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|invalid query input"          # false positive (Invalid user input in hunt query)
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|example"                      # false positive (example test data)
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|status 200"                   # false positive (request successful, contained error string in content)
 fi
 
 if [[ $EXCLUDE_KNOWN_ERRORS == 'Y' ]]; then
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|eof"
-    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|raise error"                 # redis/python generic stack line, rely on other lines for actual error
-    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|fail(error)"                 # redis/python generic stack line, rely on other lines for actual error
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|raise error"                  # redis/python generic stack line, rely on other lines for actual error
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|fail\\(error\\)"              # redis/python generic stack line, rely on other lines for actual error
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|urlerror"                     # idstools connection timeout
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|timeouterror"                 # idstools connection timeout
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|forbidden"                    # playbook
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|_ml"                          # Elastic ML errors 
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|context canceled"             # elastic agent during shutdown
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|iteration"
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|communication packets"
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|use of closed"
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|bookkeeper"
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|noindices"
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|failed to start transient scope"
-    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|status 200"                   # request successful, contained error string in content
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|so-user.lock exists"
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|systemd-run"
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|retcode: 1"
@@ -159,8 +162,6 @@ if [[ $EXCLUDE_KNOWN_ERRORS == 'Y' ]]; then
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|parent.error"
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|req.LocalMeta.host.ip"        # known issue in GH
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|sendmail"                     # zeek
-    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|example"                      # example test data
-    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|so_long_term"                 # setup in progress, influxdb not yet setup
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|stats.log"
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|context deadline exceeded"
 fi

From 76c0b881ff3e6a4011e71c2f6ca9941f290349bb Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Wed, 27 Sep 2023 18:20:50 -0400
Subject: [PATCH 127/417] exclude import from snapshotting previous version
 pillars and states

---
 salt/manager/tools/sbin/soup | 16 +++++++++++-----
 1 file changed, 11 insertions(+), 5 deletions(-)

diff --git a/salt/manager/tools/sbin/soup b/salt/manager/tools/sbin/soup
index 8c6c2b237..8259bf6ab 100755
--- a/salt/manager/tools/sbin/soup
+++ b/salt/manager/tools/sbin/soup
@@ -518,7 +518,7 @@ up_to_2.4.10() {
 }
 
 up_to_2.4.20() {
-  echo "Nothing to do for 2.4.20"
+  echo "Preupgrade soup changes for 2.4.20"
   
   INSTALLEDVERSION=2.4.20
 }
@@ -796,7 +796,10 @@ main() {
 
   if [ "$is_hotfix" == "true" ]; then
     echo "Applying $HOTFIXVERSION hotfix"
-    backup_old_states_pillars
+    # since we don't run the backup.config_backup state on import we wont snapshot previous version states and pillars
+    if [[ ! "$MINIONID" =~ "_import" ]]; then
+      backup_old_states_pillars
+    fi
     copy_new_files
     apply_hotfix
     echo "Hotfix applied"
@@ -853,9 +856,12 @@ main() {
       update_centos_repo
     fi
 
-    echo ""
-    echo "Creating snapshots of default and local Salt states and pillars and saving to /nsm/backup/"
-    backup_old_states_pillars
+    # since we don't run the backup.config_backup state on import we wont snapshot previous version states and pillars
+    if [[ ! "$MINIONID" =~ "_import" ]]; then
+      echo ""
+      echo "Creating snapshots of default and local Salt states and pillars and saving to /nsm/backup/"
+      backup_old_states_pillars
+    fi
 
     echo ""
     echo "Copying new Security Onion code from $UPDATE_DIR to $DEFAULT_SALT_DIR."

From d72e4ae97d7514cf7fe8b3ade06279079f2504aa Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Wed, 27 Sep 2023 18:39:23 -0400
Subject: [PATCH 128/417] ignore soctopus errors

---
 salt/common/tools/sbin/so-log-check | 1 +
 1 file changed, 1 insertion(+)

diff --git a/salt/common/tools/sbin/so-log-check b/salt/common/tools/sbin/so-log-check
index f89995065..f9393ce8a 100755
--- a/salt/common/tools/sbin/so-log-check
+++ b/salt/common/tools/sbin/so-log-check
@@ -135,6 +135,7 @@ if [[ $EXCLUDE_KNOWN_ERRORS == 'Y' ]]; then
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|forbidden"                    # playbook
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|_ml"                          # Elastic ML errors 
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|context canceled"             # elastic agent during shutdown
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|exited with code 128"         # soctopus errors during forced restart by highstate
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|iteration"
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|communication packets"
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|use of closed"

From 419acab48aea966593207cb396372b6daecb5833 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Wed, 27 Sep 2023 19:17:13 -0400
Subject: [PATCH 129/417] revert up_to_2.4.20

---
 salt/manager/tools/sbin/soup | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/salt/manager/tools/sbin/soup b/salt/manager/tools/sbin/soup
index 8259bf6ab..960c50f31 100755
--- a/salt/manager/tools/sbin/soup
+++ b/salt/manager/tools/sbin/soup
@@ -518,7 +518,7 @@ up_to_2.4.10() {
 }
 
 up_to_2.4.20() {
-  echo "Preupgrade soup changes for 2.4.20"
+  echo "Nothing to do for 2.4.20"
   
   INSTALLEDVERSION=2.4.20
 }

From 49115cde55027eba0fe73cf95acd46f1714ec5a3 Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Wed, 27 Sep 2023 19:55:46 -0400
Subject: [PATCH 130/417] logcheck improvements

---
 salt/common/tools/sbin/so-log-check | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/salt/common/tools/sbin/so-log-check b/salt/common/tools/sbin/so-log-check
index f9393ce8a..e75c9cd60 100755
--- a/salt/common/tools/sbin/so-log-check
+++ b/salt/common/tools/sbin/so-log-check
@@ -136,6 +136,9 @@ if [[ $EXCLUDE_KNOWN_ERRORS == 'Y' ]]; then
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|_ml"                          # Elastic ML errors 
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|context canceled"             # elastic agent during shutdown
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|exited with code 128"         # soctopus errors during forced restart by highstate
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|geoip database update"        # airgap can't update GeoIP DB
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|filenotfounderror"            # bug in 2.4.10 filecheck salt state caused duplicate cronjobs
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|salt-minion-check"            # bug in early 2.4 place Jinja script in non-jinja salt dir causing cron output errors
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|iteration"
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|communication packets"
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|use of closed"

From 9ee64f93ca25384a3e18fb9308981aa45f7dcdfc Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Wed, 27 Sep 2023 20:17:59 -0400
Subject: [PATCH 131/417] logcheck improvements

---
 salt/common/tools/sbin/so-log-check | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/salt/common/tools/sbin/so-log-check b/salt/common/tools/sbin/so-log-check
index e75c9cd60..b4b40a90b 100755
--- a/salt/common/tools/sbin/so-log-check
+++ b/salt/common/tools/sbin/so-log-check
@@ -119,6 +119,7 @@ if [[ $EXCLUDE_FALSE_POSITIVE_ERRORS == 'Y' ]]; then
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|error-template"               # false positive (elastic templates)
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|deprecated"                   # false positive (playbook)
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|could cause errors"           # false positive (playbook)
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|_error.yml"                   # false positive (playbook)
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|id.orig_h"                    # false positive (zeek test data)
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|emerging-all.rules"           # false positive (error in rulename)
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|invalid query input"          # false positive (Invalid user input in hunt query)
@@ -139,6 +140,7 @@ if [[ $EXCLUDE_KNOWN_ERRORS == 'Y' ]]; then
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|geoip database update"        # airgap can't update GeoIP DB
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|filenotfounderror"            # bug in 2.4.10 filecheck salt state caused duplicate cronjobs
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|salt-minion-check"            # bug in early 2.4 place Jinja script in non-jinja salt dir causing cron output errors
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|generating elastalert config" # playbook expected error
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|iteration"
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|communication packets"
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|use of closed"

From 621da9e7e319df596b343847480be8ca4fce3d36 Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Wed, 27 Sep 2023 22:20:54 -0400
Subject: [PATCH 132/417] more exclusions

---
 salt/common/tools/sbin/so-log-check | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/salt/common/tools/sbin/so-log-check b/salt/common/tools/sbin/so-log-check
index b4b40a90b..c6a966385 100755
--- a/salt/common/tools/sbin/so-log-check
+++ b/salt/common/tools/sbin/so-log-check
@@ -101,6 +101,7 @@ if [[ $EXCLUDE_STARTUP_ERRORS == 'Y' ]]; then
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|connect"                      # server not yet ready
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|missing shards"               # server not yet ready
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|failed to send metrics"       # server not yet ready
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|broken pipe"                  # server not yet ready
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|influxsize kbytes"            # server not yet ready (telegraf waiting on influx)
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|expected field at"            # server not yet ready (telegraf waiting on health data)
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|cached the public key"        # server not yet ready (salt minion waiting on key acceptance)
@@ -118,6 +119,7 @@ if [[ $EXCLUDE_FALSE_POSITIVE_ERRORS == 'Y' ]]; then
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|noerror"                      # false positive
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|error-template"               # false positive (elastic templates)
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|deprecated"                   # false positive (playbook)
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|windows"                      # false positive (playbook)
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|could cause errors"           # false positive (playbook)
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|_error.yml"                   # false positive (playbook)
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|id.orig_h"                    # false positive (zeek test data)
@@ -129,7 +131,7 @@ fi
 
 if [[ $EXCLUDE_KNOWN_ERRORS == 'Y' ]]; then
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|eof"
-    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|raise error"                  # redis/python generic stack line, rely on other lines for actual error
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|raise"                        # redis/python generic stack line, rely on other lines for actual error
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|fail\\(error\\)"              # redis/python generic stack line, rely on other lines for actual error
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|urlerror"                     # idstools connection timeout
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|timeouterror"                 # idstools connection timeout

From 89a9c30cc89371979ed8ea50b12a2e00ad978158 Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Thu, 28 Sep 2023 08:27:31 -0400
Subject: [PATCH 133/417] exclude known issues

---
 salt/common/tools/sbin/so-log-check | 10 +++++++---
 1 file changed, 7 insertions(+), 3 deletions(-)

diff --git a/salt/common/tools/sbin/so-log-check b/salt/common/tools/sbin/so-log-check
index c6a966385..865846fac 100755
--- a/salt/common/tools/sbin/so-log-check
+++ b/salt/common/tools/sbin/so-log-check
@@ -102,6 +102,7 @@ if [[ $EXCLUDE_STARTUP_ERRORS == 'Y' ]]; then
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|missing shards"               # server not yet ready
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|failed to send metrics"       # server not yet ready
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|broken pipe"                  # server not yet ready
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|timeout exceeded"             # server not yet ready (telegraf waiting on elasticsearch)
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|influxsize kbytes"            # server not yet ready (telegraf waiting on influx)
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|expected field at"            # server not yet ready (telegraf waiting on health data)
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|cached the public key"        # server not yet ready (salt minion waiting on key acceptance)
@@ -117,6 +118,7 @@ if [[ $EXCLUDE_FALSE_POSITIVE_ERRORS == 'Y' ]]; then
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|error: '0'"                   # false positive
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|errors_index"                 # false positive
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|noerror"                      # false positive
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|fs_errors"                    # false positive (suricata stats)
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|error-template"               # false positive (elastic templates)
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|deprecated"                   # false positive (playbook)
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|windows"                      # false positive (playbook)
@@ -143,6 +145,7 @@ if [[ $EXCLUDE_KNOWN_ERRORS == 'Y' ]]; then
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|filenotfounderror"            # bug in 2.4.10 filecheck salt state caused duplicate cronjobs
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|salt-minion-check"            # bug in early 2.4 place Jinja script in non-jinja salt dir causing cron output errors
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|generating elastalert config" # playbook expected error
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|activerecord"                 # playbook expected error
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|iteration"
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|communication packets"
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|use of closed"
@@ -192,9 +195,10 @@ find /opt/so/log/ /nsm -name \*.log > /tmp/log_check_files
 if [[ -f /var/log/cron ]]; then
     echo "/var/log/cron" >> /tmp/log_check_files
 fi
-exclude_log "kibana.log"
-exclude_log "spool"
-exclude_log "import"
+exclude_log "kibana.log"  # kibana error logs are too verbose with large varieties of errors most of which are temporary
+exclude_log "spool"       # disregard zeek analyze logs
+exclude_log "import"      # disregard imported test data the contains error strings
+exclude_log "update.log"  # ignore playbook updates due to known issues
 
 for log_file in $(cat /tmp/log_check_files); do
     status "Checking log file $log_file"

From 202eb7e8765ff239734bcecd0c7327bb40dec33a Mon Sep 17 00:00:00 2001
From: weslambert <wlambertts@gmail.com>
Date: Thu, 28 Sep 2023 09:16:56 -0400
Subject: [PATCH 134/417] Exclude known_certs

---
 salt/elasticfleet/defaults.yaml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/salt/elasticfleet/defaults.yaml b/salt/elasticfleet/defaults.yaml
index 979e795f7..6737df17d 100644
--- a/salt/elasticfleet/defaults.yaml
+++ b/salt/elasticfleet/defaults.yaml
@@ -15,6 +15,7 @@ elasticfleet:
         - cluster
         - console
         - ecat_arp_info
+        - known_certs
         - known_hosts
         - known_services
         - loaded_scripts

From ee45fc31a2894137a82a2e90a6e3fb2aff39c2ba Mon Sep 17 00:00:00 2001
From: Mike Reeves <mike.reeves@securityonionsolutions.com>
Date: Thu, 28 Sep 2023 11:04:16 -0400
Subject: [PATCH 135/417] Delete salt/strelka/tools/sbin_jinja/so-yara-download

---
 .../strelka/tools/sbin_jinja/so-yara-download | 21 -------------------
 1 file changed, 21 deletions(-)
 delete mode 100644 salt/strelka/tools/sbin_jinja/so-yara-download

diff --git a/salt/strelka/tools/sbin_jinja/so-yara-download b/salt/strelka/tools/sbin_jinja/so-yara-download
deleted file mode 100644
index a8087173c..000000000
--- a/salt/strelka/tools/sbin_jinja/so-yara-download
+++ /dev/null
@@ -1,21 +0,0 @@
-#!/bin/bash
-NOROOT=1
-. /usr/sbin/so-common
-
-{%- set proxy = salt['pillar.get']('manager:proxy') %}
-
-# Download the rules from the internet
-{%- if proxy %}
-export http_proxy={{ proxy }} 
-export https_proxy={{ proxy }} 
-export no_proxy=salt['pillar.get']('manager:no_proxy') 
-{%- endif %}
-
-mkdir -p /tmp/yara
-cd /tmp/yara
-git clone https://github.com/Security-Onion-Solutions/securityonion-yara.git
-mkdir -p /nsm/rules/yara
-rsync -shav --progress /tmp/yara/securityonion-yara/yara /nsm/rules/
-cd /tmp
-rm -rf /tmp/yara
-

From a77a53f20b3bbdd6d6b7965e6bb4e65a146ae154 Mon Sep 17 00:00:00 2001
From: Mike Reeves <mike.reeves@securityonionsolutions.com>
Date: Thu, 28 Sep 2023 11:10:17 -0400
Subject: [PATCH 136/417] Update init.sls

---
 salt/manager/init.sls | 9 +++++++++
 1 file changed, 9 insertions(+)

diff --git a/salt/manager/init.sls b/salt/manager/init.sls
index b9d2d3ba9..146bca126 100644
--- a/salt/manager/init.sls
+++ b/salt/manager/init.sls
@@ -26,6 +26,15 @@ repo_log_dir:
       - user
       - group
 
+yara_log_dir:
+  file.directory:
+    - name: /opt/so/log/yarasync
+    - user: socore
+    - group: socore
+    - recurse:
+      - user
+      - group
+
 repo_conf_dir:
   file.directory:
     - name: /opt/so/conf/reposync

From 7a21b7903dfbdf57518ba2a667b5aa14f4c8f640 Mon Sep 17 00:00:00 2001
From: Mike Reeves <mike.reeves@securityonionsolutions.com>
Date: Thu, 28 Sep 2023 11:46:43 -0400
Subject: [PATCH 137/417] Fix manager cron logic

---
 salt/manager/init.sls | 92 +++++++++++++++++++------------------------
 1 file changed, 40 insertions(+), 52 deletions(-)

diff --git a/salt/manager/init.sls b/salt/manager/init.sls
index 146bca126..55badaf10 100644
--- a/salt/manager/init.sls
+++ b/salt/manager/init.sls
@@ -61,21 +61,23 @@ manager_sbin:
     - group: 939
     - file_mode: 755
 
-#manager_sbin_jinja:
-#  file.recurse:
-#    - name: /usr/sbin
-#    - source: salt://manager/tools/sbin_jinja
-#    - user: 939
-#    - group: 939 
-#    - file_mode: 755
-#    - template: jinja
+yara_update_scripts:
+  file.recurse:
+    - name: /usr/sbin/
+    - source: salt://manager/tools/sbin_jinja/
+    - user: socore
+    - group: socore
+    - file_mode: 755
+    - template: jinja
+    - defaults:
+        EXCLUDEDRULES: {{ STRELKAMERGED.rules.excluded }}
 
 so-repo-sync:
-  {% if MANAGERMERGED.reposync.enabled %}
+  {%     if MANAGERMERGED.reposync.enabled or ! GLOBALS.airgap %}
   cron.present:
-  {% else %}
+  {%     else %}
   cron.absent:
-  {% endif %}
+  {%     endif %}
     - user: socore
     - name: '/usr/sbin/so-repo-sync >> /opt/so/log/reposync/reposync.log 2>&1'
     - identifier: so-repo-sync
@@ -91,7 +93,15 @@ socore_own_saltstack:
       - user
       - group
 
-{%   if STRELKAMERGED.rules.enabled %}
+rules_dir:
+  file.directory:
+    - name: /nsm/rules/yara
+    - user: socore
+    - group: socore
+    - makedirs: True
+
+{%    if STRELKAMERGED.rules.enabled %}
+
 strelkarepos:
   file.managed:
     - name: /opt/so/conf/strelka/repos.txt
@@ -100,67 +110,45 @@ strelkarepos:
     - defaults:
         STRELKAREPOS: {{ STRELKAMERGED.rules.repos }}
     - makedirs: True
-{%   endif %}
-
-yara_update_scripts:
-  file.recurse:
-    - name: /usr/sbin/
-    - source: salt://manager/tools/sbin_jinja/
-    - user: socore
-    - group: socore
-    - file_mode: 755
-    - template: jinja
-    - defaults:
-        EXCLUDEDRULES: {{ STRELKAMERGED.rules.excluded }}
-
-rules_dir:
-  file.directory:
-    - name: /nsm/rules/yara
-    - user: socore
-    - group: socore
-    - makedirs: True
-
-{%   if GLOBALS.airgap %}
-remove_strelka-yara-download:
-  cron.absent:
-    - user: socore
-    - identifier: strelka-yara-download
 
 strelka-yara-update:
+  {%       if MANAGERMERGED.reposync.enabled or ! GLOBALS.airgap %}
   cron.present:
+  {%       else %}
+  cron.absent:
+  {%       endif %}
     - user: socore
-    - name: '/usr/sbin/so-yara-update >> /nsm/strelka/log/yara-update.log 2>&1'
+    - name: '/usr/sbin/so-yara-update >> /opt/so/log/yarasync/yara-update.log 2>&1'
     - identifier: strelka-yara-update
     - hour: '7'
     - minute: '1'
 
-update_yara_rules:
-  cmd.run:
-    - name: /usr/sbin/so-yara-update
-    - onchanges:
-      - file: yara_update_scripts
-{%   else %}
-remove_strelka-yara-update:
-  cron.absent:
-    - user: socore
-    - identifier: strelka-yara-update
-
 strelka-yara-download:
+  {%       if MANAGERMERGED.reposync.enabled or ! GLOBALS.airgap %}
   cron.present:
+  {%       else %}
+  cron.absent:
+  {%       endif %}
     - user: socore
     - name: '/usr/sbin/so-yara-download >> /nsm/strelka/log/yara-download.log 2>&1'
     - identifier: strelka-yara-download
     - hour: '7'
     - minute: '1'
 
+{%      if ! GLOBALS.airgap %}
+update_yara_rules:
+  cmd.run:
+    - name: /usr/sbin/so-yara-update
+    - onchanges:
+      - file: yara_update_scripts
+
 download_yara_rules:
   cmd.run:
     - name: /usr/sbin/so-yara-download
     - onchanges:
       - file: yara_update_scripts
-{%   endif %}
-
-
+{%      endif %}
+{%     endif %}
 {% else %}
 
 {{sls}}_state_not_allowed:

From 5040df7551474d521fef76a2872913f046b8fdc5 Mon Sep 17 00:00:00 2001
From: Mike Reeves <mike.reeves@securityonionsolutions.com>
Date: Thu, 28 Sep 2023 12:32:40 -0400
Subject: [PATCH 138/417] Fix manager cron logic

---
 salt/manager/init.sls | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/salt/manager/init.sls b/salt/manager/init.sls
index 55badaf10..68d51c2af 100644
--- a/salt/manager/init.sls
+++ b/salt/manager/init.sls
@@ -73,7 +73,7 @@ yara_update_scripts:
         EXCLUDEDRULES: {{ STRELKAMERGED.rules.excluded }}
 
 so-repo-sync:
-  {%     if MANAGERMERGED.reposync.enabled or ! GLOBALS.airgap %}
+  {%     if MANAGERMERGED.reposync.enabled or not GLOBALS.airgap %}
   cron.present:
   {%     else %}
   cron.absent:
@@ -112,7 +112,7 @@ strelkarepos:
     - makedirs: True
 
 strelka-yara-update:
-  {%       if MANAGERMERGED.reposync.enabled or ! GLOBALS.airgap %}
+  {%       if MANAGERMERGED.reposync.enabled or not GLOBALS.airgap %}
   cron.present:
   {%       else %}
   cron.absent:
@@ -124,18 +124,18 @@ strelka-yara-update:
     - minute: '1'
 
 strelka-yara-download:
-  {%       if MANAGERMERGED.reposync.enabled or ! GLOBALS.airgap %}
+  {%       if MANAGERMERGED.reposync.enabled or not GLOBALS.airgap %}
   cron.present:
   {%       else %}
   cron.absent:
   {%       endif %}
     - user: socore
-    - name: '/usr/sbin/so-yara-download >> /nsm/strelka/log/yara-download.log 2>&1'
+    - name: '/usr/sbin/so-yara-download >> /opt/so/log/yarasync/yara-download.log 2>&1'
     - identifier: strelka-yara-download
     - hour: '7'
     - minute: '1'
 
-{%      if ! GLOBALS.airgap %}
+{%      if not GLOBALS.airgap %}
 update_yara_rules:
   cmd.run:
     - name: /usr/sbin/so-yara-update

From 018186ccbd1d63ec1e0785e13a9579f27751264c Mon Sep 17 00:00:00 2001
From: Wes <wlambertts@gmail.com>
Date: Thu, 28 Sep 2023 16:43:56 +0000
Subject: [PATCH 139/417] Upgrade packages and load integrations when packages
 change

---
 salt/elasticfleet/config.sls | 9 +++++++++
 1 file changed, 9 insertions(+)

diff --git a/salt/elasticfleet/config.sls b/salt/elasticfleet/config.sls
index 902b5eb4c..82b975697 100644
--- a/salt/elasticfleet/config.sls
+++ b/salt/elasticfleet/config.sls
@@ -59,6 +59,14 @@ eastatedir:
     - group: 939
     - makedirs: True
 
+eapackageupgrade:
+  file.managed:
+    - name: /usr/sbin/so-elastic-fleet-package-upgrade
+    - source: salt://elasticfleet/tools/sbin_jinja/so-elastic-fleet-package-upgrade
+    - user: 947
+    - group: 939
+    - template: jinja
+
 {%   if GLOBALS.role != "so-fleet" %}
 eaintegrationsdir:
   file.directory:
@@ -88,6 +96,7 @@ ea-integrations-load:
     - onchanges:
       - file: eaintegration
       - file: eadynamicintegration
+      - file: eapackageupgrade
 {% endif %}
 {% else %}
 

From 95d32cb07689a8792e6b2be213c38314797c8eec Mon Sep 17 00:00:00 2001
From: Mike Reeves <mike.reeves@securityonionsolutions.com>
Date: Thu, 28 Sep 2023 12:49:46 -0400
Subject: [PATCH 140/417] Fix manager cron logic

---
 salt/manager/init.sls | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/salt/manager/init.sls b/salt/manager/init.sls
index 68d51c2af..e808325ef 100644
--- a/salt/manager/init.sls
+++ b/salt/manager/init.sls
@@ -73,7 +73,7 @@ yara_update_scripts:
         EXCLUDEDRULES: {{ STRELKAMERGED.rules.excluded }}
 
 so-repo-sync:
-  {%     if MANAGERMERGED.reposync.enabled or not GLOBALS.airgap %}
+  {%     if MANAGERMERGED.reposync.enabled %}
   cron.present:
   {%     else %}
   cron.absent:
@@ -112,7 +112,7 @@ strelkarepos:
     - makedirs: True
 
 strelka-yara-update:
-  {%       if MANAGERMERGED.reposync.enabled or not GLOBALS.airgap %}
+  {%       if MANAGERMERGED.reposync.enabled and not GLOBALS.airgap %} 
   cron.present:
   {%       else %}
   cron.absent:
@@ -124,7 +124,7 @@ strelka-yara-update:
     - minute: '1'
 
 strelka-yara-download:
-  {%       if MANAGERMERGED.reposync.enabled or not GLOBALS.airgap %}
+  {%       if MANAGERMERGED.reposync.enabled and not GLOBALS.airgap %}
   cron.present:
   {%       else %}
   cron.absent:

From ff359460508df28a1a5f022b63507cd076f94047 Mon Sep 17 00:00:00 2001
From: Mike Reeves <mike.reeves@securityonionsolutions.com>
Date: Thu, 28 Sep 2023 13:06:21 -0400
Subject: [PATCH 141/417] Fix manager cron logic

---
 setup/so-functions | 10 ++++------
 1 file changed, 4 insertions(+), 6 deletions(-)

diff --git a/setup/so-functions b/setup/so-functions
index 3707e3141..679142e2a 100755
--- a/setup/so-functions
+++ b/setup/so-functions
@@ -1963,12 +1963,10 @@ securityonion_repo() {
 	fi
 	if [[ $is_rpm ]]; then logCmd "dnf repolist all"; fi
 	if [[ $waitforstate ]]; then
-		if [[ ! $is_airgap ]]; then
-			if [[ $is_rpm ]]; then
+		if [[ $is_rpm ]]; then
 				# Build the repo locally so we can use it
 				echo "Syncing Repos"
 				repo_sync_local
-			fi
 		fi
 	fi
 }
@@ -1978,7 +1976,7 @@ repo_sync_local() {
 	if [[ $is_supported ]]; then
 		# Sync the repo from the the SO repo locally.
 		# Check for reposync
-		info "Backing up old repos"
+		info "Adding Repo Download Configuration"
 		mkdir -p /nsm/repo
 		mkdir -p /opt/so/conf/reposync/cache
 		echo "https://repo.securityonion.net/file/so-repo/prod/2.4/oracle/9" > /opt/so/conf/reposync/mirror.txt
@@ -2002,10 +2000,10 @@ repo_sync_local() {
 		if [[ ! $is_airgap ]]; then
         	curl --retry 5 --retry-delay 60 -A "netinstall/$SOVERSION/$OS/$(uname -r)/1" https://sigs.securityonion.net/checkup --output /tmp/install
 			logCmd "dnf reposync --norepopath -g --delete -m -c /opt/so/conf/reposync/repodownload.conf --repoid=securityonionsync --download-metadata -p /nsm/repo/"
+			# After the download is complete run createrepo
+			create_repo
 		fi
 
-	# After the download is complete run createrepo
-	create_repo
 	else
 		# Add the proper repos for unsupported stuff
 		echo "Adding Repos"

From 8c44481ee15a2776d32cff1b1e0e6e68619300f5 Mon Sep 17 00:00:00 2001
From: Wes <wlambertts@gmail.com>
Date: Thu, 28 Sep 2023 17:57:31 +0000
Subject: [PATCH 142/417] Load templates after package changes

---
 .../tools/sbin_jinja/so-elastic-fleet-package-upgrade            | 1 +
 1 file changed, 1 insertion(+)

diff --git a/salt/elasticfleet/tools/sbin_jinja/so-elastic-fleet-package-upgrade b/salt/elasticfleet/tools/sbin_jinja/so-elastic-fleet-package-upgrade
index 2fb3f7798..a092e3ecb 100644
--- a/salt/elasticfleet/tools/sbin_jinja/so-elastic-fleet-package-upgrade
+++ b/salt/elasticfleet/tools/sbin_jinja/so-elastic-fleet-package-upgrade
@@ -15,3 +15,4 @@ elastic_fleet_package_install "{{ PACKAGE }}" "$VERSION"
 echo
 {%- endfor %}
 echo
+/usr/sbin/so-elasticsearch-templates-load

From 670cd190518ba9337d63af1dbff0d8052c674241 Mon Sep 17 00:00:00 2001
From: Wes <wlambertts@gmail.com>
Date: Thu, 28 Sep 2023 18:04:07 +0000
Subject: [PATCH 143/417] Exclude package upgrade script

---
 salt/elasticfleet/config.sls | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/salt/elasticfleet/config.sls b/salt/elasticfleet/config.sls
index 82b975697..d2e357c91 100644
--- a/salt/elasticfleet/config.sls
+++ b/salt/elasticfleet/config.sls
@@ -37,6 +37,8 @@ elasticfleet_sbin_jinja:
     - group: 939 
     - file_mode: 755
     - template: jinja
+    - exclude_pat:
+      - so-elastic-fleet-package-upgrade # exclude this because we need to watch it for changes
 
 eaconfdir:
   file.directory:

From b8aad7f5e605b47aab7b704b75c7dc65c4d9f5b0 Mon Sep 17 00:00:00 2001
From: Mike Reeves <mike.reeves@securityonionsolutions.com>
Date: Thu, 28 Sep 2023 19:44:49 -0400
Subject: [PATCH 144/417] Update defaults.yaml

---
 salt/elasticfleet/defaults.yaml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/salt/elasticfleet/defaults.yaml b/salt/elasticfleet/defaults.yaml
index 6737df17d..a4862623d 100644
--- a/salt/elasticfleet/defaults.yaml
+++ b/salt/elasticfleet/defaults.yaml
@@ -13,6 +13,7 @@ elasticfleet:
         - broker
         - capture_loss
         - cluster
+        - conn-summary
         - console
         - ecat_arp_info
         - known_certs

From ec3cc7a854137ab4f701c022aa895ecab864851f Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Fri, 29 Sep 2023 10:49:36 -0400
Subject: [PATCH 145/417] exclude all playbook logs

---
 salt/common/tools/sbin/so-log-check | 21 +++++++++++++--------
 1 file changed, 13 insertions(+), 8 deletions(-)

diff --git a/salt/common/tools/sbin/so-log-check b/salt/common/tools/sbin/so-log-check
index 865846fac..03b2e5c68 100755
--- a/salt/common/tools/sbin/so-log-check
+++ b/salt/common/tools/sbin/so-log-check
@@ -118,6 +118,8 @@ if [[ $EXCLUDE_FALSE_POSITIVE_ERRORS == 'Y' ]]; then
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|error: '0'"                   # false positive
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|errors_index"                 # false positive
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|noerror"                      # false positive
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|adding component template"    # false positive (elastic security)
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|adding index template"        # false positive (elastic security)
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|fs_errors"                    # false positive (suricata stats)
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|error-template"               # false positive (elastic templates)
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|deprecated"                   # false positive (playbook)
@@ -141,7 +143,7 @@ if [[ $EXCLUDE_KNOWN_ERRORS == 'Y' ]]; then
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|_ml"                          # Elastic ML errors 
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|context canceled"             # elastic agent during shutdown
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|exited with code 128"         # soctopus errors during forced restart by highstate
-    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|geoip database update"        # airgap can't update GeoIP DB
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|geoip databases update"       # airgap can't update GeoIP DB
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|filenotfounderror"            # bug in 2.4.10 filecheck salt state caused duplicate cronjobs
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|salt-minion-check"            # bug in early 2.4 place Jinja script in non-jinja salt dir causing cron output errors
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|generating elastalert config" # playbook expected error
@@ -181,11 +183,13 @@ RESULT=0
 
 # Check Security Onion container stdout/stderr logs
 CONTAINER_IDS=$(docker ps -q)
-exclude_container so-kibana
-exclude_container so-idstools
+exclude_container so-kibana   # kibana error logs are too verbose with large varieties of errors most of which are temporary
+exclude_container so-idstools # ignore due to known issues and noisy logging
+exclude_container so-playbook # ignore due to several playbook known issues
 
 for container_id in $CONTAINER_IDS; do
-    status "Checking container $container_id"
+    container_name=$(docker ps --format json | jq ". | select(.ID==\"$container_id\")|.Names")
+    status "Checking container $container_name"
     docker logs -n $RECENT_LOG_LINES $container_id > /tmp/log_check 2>&1
     check_for_errors
 done
@@ -195,10 +199,11 @@ find /opt/so/log/ /nsm -name \*.log > /tmp/log_check_files
 if [[ -f /var/log/cron ]]; then
     echo "/var/log/cron" >> /tmp/log_check_files
 fi
-exclude_log "kibana.log"  # kibana error logs are too verbose with large varieties of errors most of which are temporary
-exclude_log "spool"       # disregard zeek analyze logs
-exclude_log "import"      # disregard imported test data the contains error strings
-exclude_log "update.log"  # ignore playbook updates due to known issues
+exclude_log "kibana.log"   # kibana error logs are too verbose with large varieties of errors most of which are temporary
+exclude_log "spool"        # disregard zeek analyze logs as this is data specific
+exclude_log "import"       # disregard imported test data the contains error strings
+exclude_log "update.log"   # ignore playbook updates due to several known issues
+exclude_log "playbook.log" # ignore due to several playbook known issues
 
 for log_file in $(cat /tmp/log_check_files); do
     status "Checking log file $log_file"

From 9d3f6059eed0a07395b0e687b6f7c85b9394c842 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Fri, 29 Sep 2023 11:10:08 -0400
Subject: [PATCH 146/417] remove redis from eval

---
 salt/telegraf/defaults.yaml | 1 -
 salt/top.sls                | 1 -
 2 files changed, 2 deletions(-)

diff --git a/salt/telegraf/defaults.yaml b/salt/telegraf/defaults.yaml
index ab8679e57..0b7d532b1 100644
--- a/salt/telegraf/defaults.yaml
+++ b/salt/telegraf/defaults.yaml
@@ -15,7 +15,6 @@ telegraf:
       - influxdbsize.sh
       - oldpcap.sh
       - raid.sh
-      - redis.sh
       - sostatus.sh
       - stenoloss.sh
       - suriloss.sh
diff --git a/salt/top.sls b/salt/top.sls
index 6db19b361..4f84e17ac 100644
--- a/salt/top.sls
+++ b/salt/top.sls
@@ -79,7 +79,6 @@ base:
     - utility
     - soctopus
     - playbook
-    - redis
     - elasticfleet
 
   '*_manager and G@saltversion:{{saltversion}}':

From d546d520690abd4f9ea549e60de483907b0c1eda Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Fri, 29 Sep 2023 14:08:44 -0400
Subject: [PATCH 147/417] exclude logstash

---
 salt/common/tools/sbin/so-log-check | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/salt/common/tools/sbin/so-log-check b/salt/common/tools/sbin/so-log-check
index 03b2e5c68..b19026cad 100755
--- a/salt/common/tools/sbin/so-log-check
+++ b/salt/common/tools/sbin/so-log-check
@@ -91,7 +91,10 @@ EXCLUDED_ERRORS="__LOG_CHECK_PLACEHOLDER_EXCLUSION__"
 if [[ $EXCLUDE_STARTUP_ERRORS == 'Y' ]]; then
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|database is locked"           # server not yet ready
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|econnreset"                   # server not yet ready
-    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|unreachable"                  # server not yet ready
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|unreachable"                  # server not yet ready (logstash waiting on elastic)
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|shutdown process"             # server not yet ready (logstash waiting on elastic)
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|contain valid certificates"   # server not yet ready (logstash waiting on elastic)
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|failedaction"                 # server not yet ready (logstash waiting on elastic)
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|no route to host"             # server not yet ready
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|not running"                  # server not yet ready
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|unavailable"                  # server not yet ready
@@ -148,6 +151,7 @@ if [[ $EXCLUDE_KNOWN_ERRORS == 'Y' ]]; then
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|salt-minion-check"            # bug in early 2.4 place Jinja script in non-jinja salt dir causing cron output errors
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|generating elastalert config" # playbook expected error
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|activerecord"                 # playbook expected error
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|monitoring.metrics"           # known issue with elastic agent casting the field incorrectly if an integer value shows up before a float
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|iteration"
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|communication packets"
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|use of closed"

From ad01be66ea34cc039fd214c1f8f749942e6545aa Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Fri, 29 Sep 2023 14:09:04 -0400
Subject: [PATCH 148/417] remove checkmine engine. add x509.get_pem_entries to
 managers mine_functions. simplify mine update during soup

---
 salt/manager/tools/sbin/soup                     | 2 +-
 salt/salt/etc/minion.d/mine_functions.conf.jinja | 4 ++++
 salt/salt/master.sls                             | 9 +++------
 3 files changed, 8 insertions(+), 7 deletions(-)

diff --git a/salt/manager/tools/sbin/soup b/salt/manager/tools/sbin/soup
index 960c50f31..333be836b 100755
--- a/salt/manager/tools/sbin/soup
+++ b/salt/manager/tools/sbin/soup
@@ -580,7 +580,7 @@ update_centos_repo() {
 update_salt_mine() {
     echo "Populating the mine with network.ip_addrs pillar.host.mainint for each host."
     set +e
-    salt \* cmd.run cmd='MAININT=$(salt-call pillar.get host:mainint --out=newline_values_only) && salt-call mine.send name=network.ip_addrs interface="$MAININT"'
+    salt \* mine.update
     set -e
 }
 
diff --git a/salt/salt/etc/minion.d/mine_functions.conf.jinja b/salt/salt/etc/minion.d/mine_functions.conf.jinja
index 378d2c435..2ae345cdf 100644
--- a/salt/salt/etc/minion.d/mine_functions.conf.jinja
+++ b/salt/salt/etc/minion.d/mine_functions.conf.jinja
@@ -2,3 +2,7 @@ mine_interval: 35
 mine_functions:
   network.ip_addrs:
     - interface: {{ GLOBALS.main_interface }}
+{% if GLOBALS.is_manager -%}
+  x509.get_pem_entries:
+    - glob_path: '/etc/pki/ca.crt'
+{% endif -%}
diff --git a/salt/salt/master.sls b/salt/salt/master.sls
index 8b2b6c7d0..b10a4df0f 100644
--- a/salt/salt/master.sls
+++ b/salt/salt/master.sls
@@ -18,17 +18,14 @@ salt_master_service:
     - enable: True
 
 checkmine_engine:
-  file.managed:
+  file.absent:
     - name: /etc/salt/engines/checkmine.py
-    - source: salt://salt/engines/checkmine.py
-    - makedirs: True
     - watch_in:
         - service: salt_minion_service
 
 engines_config:
-  file.managed:
+  file.absent:
     - name: /etc/salt/minion.d/engines.conf
-    - source: salt://salt/files/engines.conf
     - watch_in:
         - service: salt_minion_service
 
@@ -38,4 +35,4 @@ engines_config:
   test.fail_without_changes:
     - name: {{sls}}_state_not_allowed
 
-{% endif %}
\ No newline at end of file
+{% endif %}

From e8b67da08bdf5a8239a33d7e6e99450d2d4b49fb Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Fri, 29 Sep 2023 14:20:20 -0400
Subject: [PATCH 149/417] exclude oom error from cmd line

---
 salt/common/tools/sbin/so-log-check | 1 +
 1 file changed, 1 insertion(+)

diff --git a/salt/common/tools/sbin/so-log-check b/salt/common/tools/sbin/so-log-check
index b19026cad..63a33c4ee 100755
--- a/salt/common/tools/sbin/so-log-check
+++ b/salt/common/tools/sbin/so-log-check
@@ -121,6 +121,7 @@ if [[ $EXCLUDE_FALSE_POSITIVE_ERRORS == 'Y' ]]; then
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|error: '0'"                   # false positive
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|errors_index"                 # false positive
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|noerror"                      # false positive
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|outofmemoryerror"             # false positive (elastic command line)
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|adding component template"    # false positive (elastic security)
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|adding index template"        # false positive (elastic security)
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|fs_errors"                    # false positive (suricata stats)

From 8690304dffce6fc1ef2a923edf8ec2b80d90079d Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Fri, 29 Sep 2023 16:17:19 -0400
Subject: [PATCH 150/417] change how mine_functions.conf is managed during
 setup

---
 salt/salt/etc/minion.d/mine_functions.conf.jinja | 4 ++--
 salt/salt/mine_functions.sls                     | 5 +++++
 salt/salt/minion.sls                             | 9 +--------
 setup/so-functions                               | 3 +--
 4 files changed, 9 insertions(+), 12 deletions(-)
 create mode 100644 salt/salt/mine_functions.sls

diff --git a/salt/salt/etc/minion.d/mine_functions.conf.jinja b/salt/salt/etc/minion.d/mine_functions.conf.jinja
index 2ae345cdf..e3c62e75c 100644
--- a/salt/salt/etc/minion.d/mine_functions.conf.jinja
+++ b/salt/salt/etc/minion.d/mine_functions.conf.jinja
@@ -1,8 +1,8 @@
 mine_interval: 35
 mine_functions:
   network.ip_addrs:
-    - interface: {{ GLOBALS.main_interface }}
-{% if GLOBALS.is_manager -%}
+    - interface: {{ pillar.host.mainint }}
+{% if grains.role in ['so-eval','so-import','so-manager','so-managersearch','so-standalone'] -%}
   x509.get_pem_entries:
     - glob_path: '/etc/pki/ca.crt'
 {% endif -%}
diff --git a/salt/salt/mine_functions.sls b/salt/salt/mine_functions.sls
new file mode 100644
index 000000000..27a905847
--- /dev/null
+++ b/salt/salt/mine_functions.sls
@@ -0,0 +1,5 @@
+mine_functions:
+  file.managed:
+    - name: /etc/salt/minion.d/mine_functions.conf
+    - source: salt://salt/etc/minion.d/mine_functions.conf.jinja
+    - template: jinja
diff --git a/salt/salt/minion.sls b/salt/salt/minion.sls
index 43f7539f9..865bd367f 100644
--- a/salt/salt/minion.sls
+++ b/salt/salt/minion.sls
@@ -12,6 +12,7 @@ include:
   - salt
   - systemd.reload
   - repo.client
+  - salt.mine_functions
 
 {% if INSTALLEDSALTVERSION|string != SALTVERSION|string %}
 
@@ -78,14 +79,6 @@ salt_minion_service_unit_file:
 
 {% endif %}
 
-mine_functions:
-  file.managed:
-    - name: /etc/salt/minion.d/mine_functions.conf
-    - source: salt://salt/etc/minion.d/mine_functions.conf.jinja
-    - template: jinja
-    - defaults:
-        GLOBALS: {{ GLOBALS }}
-
 # this has to be outside the if statement above since there are <requisite>_in calls to this state
 salt_minion_service:
   service.running:
diff --git a/setup/so-functions b/setup/so-functions
index 679142e2a..eab7a4add 100755
--- a/setup/so-functions
+++ b/setup/so-functions
@@ -649,8 +649,7 @@ configure_minion() {
 		"log_level_logfile: info"\
 		"log_file: /opt/so/log/salt/minion" >> "$minion_config"
 
-	cp -f ../salt/salt/etc/minion.d/mine_functions.conf.jinja /etc/salt/minion.d/mine_functions.conf
-	sed -i "s/{{ GLOBALS.main_interface }}/$MNIC/" /etc/salt/minion.d/mine_functions.conf
+	logCmd "salt-call state.apply salt.mine_functions -l info"
 
 	{
 		logCmd "systemctl enable salt-minion";

From 827ed7b273cf2a9180fa94e7cd398a2e178dbfcb Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Fri, 29 Sep 2023 17:08:42 -0400
Subject: [PATCH 151/417] run salt.mine_function state locally and provide
 pillar info to it

---
 setup/so-functions | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/setup/so-functions b/setup/so-functions
index eab7a4add..b55ae0def 100755
--- a/setup/so-functions
+++ b/setup/so-functions
@@ -649,7 +649,8 @@ configure_minion() {
 		"log_level_logfile: info"\
 		"log_file: /opt/so/log/salt/minion" >> "$minion_config"
 
-	logCmd "salt-call state.apply salt.mine_functions -l info"
+	info "Running: salt-call state.apply salt.mine_functions --local --file-root=../salt/ -l info pillar='{"host": {"mainint": "$MNIC"}}'"
+	salt-call state.apply salt.mine_functions --local --file-root=../salt/ -l info pillar="{'host': {'mainint': $MNIC}}"
 
 	{
 		logCmd "systemctl enable salt-minion";

From 39ea1d317df32c17e96f3566fea64ddfbd33b297 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Fri, 29 Sep 2023 17:12:14 -0400
Subject: [PATCH 152/417] add comment

---
 salt/salt/mine_functions.sls | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/salt/salt/mine_functions.sls b/salt/salt/mine_functions.sls
index 27a905847..49a47e524 100644
--- a/salt/salt/mine_functions.sls
+++ b/salt/salt/mine_functions.sls
@@ -1,3 +1,11 @@
+# Copyright Security Onion Solutions LLC and/or licensed to Security Onion Solutions LLC under one
+# or more contributor license agreements. Licensed under the Elastic License 2.0 as shown at
+# https://securityonion.net/license; you may not use this file except in compliance with the
+# Elastic License 2.0.
+
+# this state was seperated from salt.minion state since it is called during setup
+# GLOBALS are imported in the salt.minion state and that is not available at that point in setup
+# this state is included in the salt.minion state
 mine_functions:
   file.managed:
     - name: /etc/salt/minion.d/mine_functions.conf

From ea085c5ff6aafb1e06b5851e8731c934c6fc3ccf Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Fri, 29 Sep 2023 21:38:13 -0400
Subject: [PATCH 153/417] more known errors

---
 salt/common/tools/sbin/so-log-check | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/salt/common/tools/sbin/so-log-check b/salt/common/tools/sbin/so-log-check
index 63a33c4ee..ba5285bf3 100755
--- a/salt/common/tools/sbin/so-log-check
+++ b/salt/common/tools/sbin/so-log-check
@@ -105,6 +105,7 @@ if [[ $EXCLUDE_STARTUP_ERRORS == 'Y' ]]; then
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|missing shards"               # server not yet ready
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|failed to send metrics"       # server not yet ready
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|broken pipe"                  # server not yet ready
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|status: 502"                  # server not yet ready (nginx waiting on upstream)
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|timeout exceeded"             # server not yet ready (telegraf waiting on elasticsearch)
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|influxsize kbytes"            # server not yet ready (telegraf waiting on influx)
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|expected field at"            # server not yet ready (telegraf waiting on health data)
@@ -153,6 +154,8 @@ if [[ $EXCLUDE_KNOWN_ERRORS == 'Y' ]]; then
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|generating elastalert config" # playbook expected error
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|activerecord"                 # playbook expected error
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|monitoring.metrics"           # known issue with elastic agent casting the field incorrectly if an integer value shows up before a float
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|repodownload.conf does not"   # known issue with reposync on pre-2.4.20 
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|missing versions record"      # stenographer corrupt index
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|iteration"
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|communication packets"
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|use of closed"

From 8c7933cd60feabd414036da72cf3c2282212b99d Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Sat, 30 Sep 2023 18:11:29 -0400
Subject: [PATCH 154/417] fix exclusion

---
 salt/common/tools/sbin/so-log-check | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/salt/common/tools/sbin/so-log-check b/salt/common/tools/sbin/so-log-check
index ba5285bf3..dac1121bc 100755
--- a/salt/common/tools/sbin/so-log-check
+++ b/salt/common/tools/sbin/so-log-check
@@ -154,7 +154,7 @@ if [[ $EXCLUDE_KNOWN_ERRORS == 'Y' ]]; then
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|generating elastalert config" # playbook expected error
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|activerecord"                 # playbook expected error
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|monitoring.metrics"           # known issue with elastic agent casting the field incorrectly if an integer value shows up before a float
-    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|repodownload.conf does not"   # known issue with reposync on pre-2.4.20 
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|repodownload.conf"            # known issue with reposync on pre-2.4.20 
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|missing versions record"      # stenographer corrupt index
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|iteration"
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|communication packets"

From cd8a74290b6f1259d21e294282ac83dc9aeddaa5 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Mon, 2 Oct 2023 10:36:17 -0400
Subject: [PATCH 155/417] hold openssl version

---
 salt/common/init.sls     |  1 -
 salt/common/packages.sls | 11 ++++++++++-
 2 files changed, 10 insertions(+), 2 deletions(-)

diff --git a/salt/common/init.sls b/salt/common/init.sls
index f50f0c61b..37ea4239d 100644
--- a/salt/common/init.sls
+++ b/salt/common/init.sls
@@ -91,7 +91,6 @@ vimconfig:
 alwaysupdated:
   pkg.latest:
     - pkgs:
-      - openssl
       - openssh-server
       - bash
     - skip_suggestions: True
diff --git a/salt/common/packages.sls b/salt/common/packages.sls
index 8b54bdbf5..f5707a377 100644
--- a/salt/common/packages.sls
+++ b/salt/common/packages.sls
@@ -46,6 +46,12 @@ python-rich:
 {% endif %}
 
 {% if GLOBALS.os_family == 'RedHat' %}
+
+holdversion_openssl:
+  pkg.held:
+    - name: - openssl
+    - version: 1:3.0.7-16.0.1.el9_2
+
 commonpkgs:
   pkg.installed:
     - skip_suggestions: True
@@ -65,7 +71,7 @@ commonpkgs:
       - mariadb-devel
       - net-tools
       - nmap-ncat
-      - openssl
+      - openssl: 1:3.0.7-16.0.1.el9_2
       - procps-ng
       - python3-dnf-plugin-versionlock
       - python3-docker
@@ -79,4 +85,7 @@ commonpkgs:
       - unzip
       - wget
       - yum-utils
+
+
+
 {% endif %}

From 70a36bafa54b92e258f4e5a2942006c04dcd7b1e Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Mon, 2 Oct 2023 10:38:54 -0400
Subject: [PATCH 156/417] remove -

---
 salt/common/packages.sls | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/salt/common/packages.sls b/salt/common/packages.sls
index f5707a377..ae723fd94 100644
--- a/salt/common/packages.sls
+++ b/salt/common/packages.sls
@@ -49,7 +49,7 @@ python-rich:
 
 holdversion_openssl:
   pkg.held:
-    - name: - openssl
+    - name: openssl
     - version: 1:3.0.7-16.0.1.el9_2
 
 commonpkgs:

From dfe399291f9398435fd0520955bf19826400bb04 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Mon, 2 Oct 2023 10:54:41 -0400
Subject: [PATCH 157/417] hold openssl-libs

---
 salt/common/packages.sls | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/salt/common/packages.sls b/salt/common/packages.sls
index ae723fd94..f7c8fd5dc 100644
--- a/salt/common/packages.sls
+++ b/salt/common/packages.sls
@@ -52,6 +52,11 @@ holdversion_openssl:
     - name: openssl
     - version: 1:3.0.7-16.0.1.el9_2
 
+holdversion_openssl-libs:
+  pkg.held:
+    - name: openssl-libs
+    - version: 1:3.0.7-16.0.1.el9_2
+
 commonpkgs:
   pkg.installed:
     - skip_suggestions: True

From c1ab8952eb727c0cf0cea085c6b75aa468109b0e Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Mon, 2 Oct 2023 10:59:51 -0400
Subject: [PATCH 158/417] hold openssl-devel

---
 salt/common/packages.sls | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/salt/common/packages.sls b/salt/common/packages.sls
index f7c8fd5dc..a4a32f15f 100644
--- a/salt/common/packages.sls
+++ b/salt/common/packages.sls
@@ -57,6 +57,11 @@ holdversion_openssl-libs:
     - name: openssl-libs
     - version: 1:3.0.7-16.0.1.el9_2
 
+holdversion_openssl-devel:
+  pkg.held:
+    - name: openssl-devel
+    - version: 1:3.0.7-16.0.1.el9_2
+
 commonpkgs:
   pkg.installed:
     - skip_suggestions: True

From f85dd910a302bad9515390d99d7929fe8106fe3c Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Mon, 2 Oct 2023 11:13:08 -0400
Subject: [PATCH 159/417] hold openssl from update during setup

---
 salt/common/packages.sls | 2 ++
 setup/so-functions       | 3 ++-
 2 files changed, 4 insertions(+), 1 deletion(-)

diff --git a/salt/common/packages.sls b/salt/common/packages.sls
index a4a32f15f..0bf8616be 100644
--- a/salt/common/packages.sls
+++ b/salt/common/packages.sls
@@ -47,6 +47,8 @@ python-rich:
 
 {% if GLOBALS.os_family == 'RedHat' %}
 
+# holding these since openssl-devel-1:3.0.7-16.0.1.el9_2 seems to be a requirement for mariadb-devel-3:10.5.16-2.el9_0
+# https://github.com/Security-Onion-Solutions/securityonion/discussions/11443
 holdversion_openssl:
   pkg.held:
     - name: openssl
diff --git a/setup/so-functions b/setup/so-functions
index 679142e2a..26e1b2dab 100755
--- a/setup/so-functions
+++ b/setup/so-functions
@@ -2443,7 +2443,8 @@ update_sudoers_for_testing() {
 update_packages() {
 	if [[ $is_oracle ]]; then
 		logCmd "dnf repolist"
-		logCmd "dnf -y update --allowerasing --exclude=salt*,docker*,containerd*"
+		# holding openssl https://github.com/Security-Onion-Solutions/securityonion/discussions/11443
+		logCmd "dnf -y update --allowerasing --exclude=salt*,docker*,containerd*,openssl*"
 		RMREPOFILES=("oracle-linux-ol9.repo" "uek-ol9.repo" "virt-ol9.repo")
 		info "Removing repo files added by oracle-repos package update"
 		for FILE in ${RMREPOFILES[@]}; do

From 0f08d5d640a2e0e0fa6767ded9a7ec9d934c15ae Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Mon, 2 Oct 2023 11:43:03 -0400
Subject: [PATCH 160/417] install openssl version 1:3.0.7-16.0.1.el9_2

---
 setup/so-functions | 1 +
 1 file changed, 1 insertion(+)

diff --git a/setup/so-functions b/setup/so-functions
index 26e1b2dab..243e89c99 100755
--- a/setup/so-functions
+++ b/setup/so-functions
@@ -2444,6 +2444,7 @@ update_packages() {
 	if [[ $is_oracle ]]; then
 		logCmd "dnf repolist"
 		# holding openssl https://github.com/Security-Onion-Solutions/securityonion/discussions/11443
+		logCmd "dnf -y install openssl-1:3.0.7-16.0.1.el9_2 openssl-libs-1:3.0.7-16.0.1.el9_2 openssl-devel-1:3.0.7-16.0.1.el9_2"
 		logCmd "dnf -y update --allowerasing --exclude=salt*,docker*,containerd*,openssl*"
 		RMREPOFILES=("oracle-linux-ol9.repo" "uek-ol9.repo" "virt-ol9.repo")
 		info "Removing repo files added by oracle-repos package update"

From 3a5c6ee43aac37d2f385bd93091f89dd3dd84bc1 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Mon, 2 Oct 2023 12:09:13 -0400
Subject: [PATCH 161/417] install version lock before we try to hold pkgs

---
 salt/common/packages.sls | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/salt/common/packages.sls b/salt/common/packages.sls
index 0bf8616be..827cc6bf0 100644
--- a/salt/common/packages.sls
+++ b/salt/common/packages.sls
@@ -47,6 +47,11 @@ python-rich:
 
 {% if GLOBALS.os_family == 'RedHat' %}
 
+# install versionlock first so we can hold packages in the next states
+install_versionlock:
+  pkg.installed:
+    - name: python3-dnf-plugin-versionlock
+
 # holding these since openssl-devel-1:3.0.7-16.0.1.el9_2 seems to be a requirement for mariadb-devel-3:10.5.16-2.el9_0
 # https://github.com/Security-Onion-Solutions/securityonion/discussions/11443
 holdversion_openssl:
@@ -85,7 +90,6 @@ commonpkgs:
       - nmap-ncat
       - openssl: 1:3.0.7-16.0.1.el9_2
       - procps-ng
-      - python3-dnf-plugin-versionlock
       - python3-docker
       - python3-m2crypto
       - python3-packaging

From 6547afe6c07cc064587a44c3ca13b723c92d7375 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Mon, 2 Oct 2023 13:35:00 -0400
Subject: [PATCH 162/417] dont hold openssl-devel

---
 salt/common/packages.sls | 9 +--------
 1 file changed, 1 insertion(+), 8 deletions(-)

diff --git a/salt/common/packages.sls b/salt/common/packages.sls
index 827cc6bf0..185bf536e 100644
--- a/salt/common/packages.sls
+++ b/salt/common/packages.sls
@@ -64,11 +64,6 @@ holdversion_openssl-libs:
     - name: openssl-libs
     - version: 1:3.0.7-16.0.1.el9_2
 
-holdversion_openssl-devel:
-  pkg.held:
-    - name: openssl-devel
-    - version: 1:3.0.7-16.0.1.el9_2
-
 commonpkgs:
   pkg.installed:
     - skip_suggestions: True
@@ -85,10 +80,10 @@ commonpkgs:
       - httpd-tools
       - jq
       - lvm2
+      - openssl: 1:3.0.7-16.0.1.el9_2
       - mariadb-devel
       - net-tools
       - nmap-ncat
-      - openssl: 1:3.0.7-16.0.1.el9_2
       - procps-ng
       - python3-docker
       - python3-m2crypto
@@ -102,6 +97,4 @@ commonpkgs:
       - wget
       - yum-utils
 
-
-
 {% endif %}

From 6b90961e87221dcb3e16a5702ff618b237274a28 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Mon, 2 Oct 2023 14:26:28 -0400
Subject: [PATCH 163/417] openssl-libs

---
 salt/common/packages.sls | 1 +
 1 file changed, 1 insertion(+)

diff --git a/salt/common/packages.sls b/salt/common/packages.sls
index 185bf536e..adef3828b 100644
--- a/salt/common/packages.sls
+++ b/salt/common/packages.sls
@@ -81,6 +81,7 @@ commonpkgs:
       - jq
       - lvm2
       - openssl: 1:3.0.7-16.0.1.el9_2
+      - openssl-libs: 1:3.0.7-16.0.1.el9_2
       - mariadb-devel
       - net-tools
       - nmap-ncat

From d7a14d9e00ab8b098a32c4487a09b22332980da2 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Mon, 2 Oct 2023 15:08:22 -0400
Subject: [PATCH 164/417] update holds

---
 salt/common/packages.sls | 1 +
 1 file changed, 1 insertion(+)

diff --git a/salt/common/packages.sls b/salt/common/packages.sls
index adef3828b..b002c62e9 100644
--- a/salt/common/packages.sls
+++ b/salt/common/packages.sls
@@ -67,6 +67,7 @@ holdversion_openssl-libs:
 commonpkgs:
   pkg.installed:
     - skip_suggestions: True
+    - update_holds: True
     - pkgs:
       - curl
       - device-mapper-persistent-data

From 57e76232eca7076451d7075ad400d8156daae718 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Mon, 2 Oct 2023 15:48:53 -0400
Subject: [PATCH 165/417] openssl pkgs in own state

---
 salt/common/packages.sls | 12 +++++++++---
 1 file changed, 9 insertions(+), 3 deletions(-)

diff --git a/salt/common/packages.sls b/salt/common/packages.sls
index b002c62e9..ca0326839 100644
--- a/salt/common/packages.sls
+++ b/salt/common/packages.sls
@@ -64,10 +64,18 @@ holdversion_openssl-libs:
     - name: openssl-libs
     - version: 1:3.0.7-16.0.1.el9_2
 
-commonpkgs:
+openssl_pkgs:
   pkg.installed:
     - skip_suggestions: True
     - update_holds: True
+    - pkgs:
+      - openssl: 1:3.0.7-16.0.1.el9_2
+      - openssl-libs: 1:3.0.7-16.0.1.el9_2
+      - openssl-devel: 1:3.0.7-16.0.1.el9_2
+
+commonpkgs:
+  pkg.installed:
+    - skip_suggestions: True
     - pkgs:
       - curl
       - device-mapper-persistent-data
@@ -81,8 +89,6 @@ commonpkgs:
       - httpd-tools
       - jq
       - lvm2
-      - openssl: 1:3.0.7-16.0.1.el9_2
-      - openssl-libs: 1:3.0.7-16.0.1.el9_2
       - mariadb-devel
       - net-tools
       - nmap-ncat

From 8995752c2722116e2cf328d067a24371e68bcd33 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Mon, 2 Oct 2023 16:17:26 -0400
Subject: [PATCH 166/417] let openssl-devel be installed with mariadb

---
 salt/common/packages.sls | 1 -
 1 file changed, 1 deletion(-)

diff --git a/salt/common/packages.sls b/salt/common/packages.sls
index ca0326839..b4e97a81d 100644
--- a/salt/common/packages.sls
+++ b/salt/common/packages.sls
@@ -71,7 +71,6 @@ openssl_pkgs:
     - pkgs:
       - openssl: 1:3.0.7-16.0.1.el9_2
       - openssl-libs: 1:3.0.7-16.0.1.el9_2
-      - openssl-devel: 1:3.0.7-16.0.1.el9_2
 
 commonpkgs:
   pkg.installed:

From c699c2fe2ab9cb2d94e6460d5a5ea69cc60d38fa Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Tue, 3 Oct 2023 09:43:29 -0400
Subject: [PATCH 167/417] exclude known issues

---
 salt/common/tools/sbin/so-log-check | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/salt/common/tools/sbin/so-log-check b/salt/common/tools/sbin/so-log-check
index dac1121bc..c2d16fd86 100755
--- a/salt/common/tools/sbin/so-log-check
+++ b/salt/common/tools/sbin/so-log-check
@@ -118,7 +118,7 @@ fi
 
 if [[ $EXCLUDE_FALSE_POSITIVE_ERRORS == 'Y' ]]; then
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|elastalert_status_error"      # false positive
-    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|elastalert_error.json"        # false positive
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|elastalert_error"             # false positive
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|error: '0'"                   # false positive
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|errors_index"                 # false positive
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|noerror"                      # false positive
@@ -156,6 +156,7 @@ if [[ $EXCLUDE_KNOWN_ERRORS == 'Y' ]]; then
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|monitoring.metrics"           # known issue with elastic agent casting the field incorrectly if an integer value shows up before a float
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|repodownload.conf"            # known issue with reposync on pre-2.4.20 
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|missing versions record"      # stenographer corrupt index
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|soc.field."                   # known ingest type collisions issue with earlier versions of SO
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|iteration"
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|communication packets"
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|use of closed"

From 66be04e78a8c1a6717134024c89773af2b9d1b7f Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Tue, 3 Oct 2023 09:53:40 -0400
Subject: [PATCH 168/417] remove mariadb

---
 salt/common/init.sls             |  1 +
 salt/common/packages.sls         | 29 ++++-------------------------
 salt/common/tools/sbin/so-common |  2 +-
 setup/so-functions               |  3 +--
 4 files changed, 7 insertions(+), 28 deletions(-)

diff --git a/salt/common/init.sls b/salt/common/init.sls
index 37ea4239d..f50f0c61b 100644
--- a/salt/common/init.sls
+++ b/salt/common/init.sls
@@ -91,6 +91,7 @@ vimconfig:
 alwaysupdated:
   pkg.latest:
     - pkgs:
+      - openssl
       - openssh-server
       - bash
     - skip_suggestions: True
diff --git a/salt/common/packages.sls b/salt/common/packages.sls
index b4e97a81d..c5d2729fd 100644
--- a/salt/common/packages.sls
+++ b/salt/common/packages.sls
@@ -47,35 +47,15 @@ python-rich:
 
 {% if GLOBALS.os_family == 'RedHat' %}
 
-# install versionlock first so we can hold packages in the next states
-install_versionlock:
-  pkg.installed:
-    - name: python3-dnf-plugin-versionlock
-
-# holding these since openssl-devel-1:3.0.7-16.0.1.el9_2 seems to be a requirement for mariadb-devel-3:10.5.16-2.el9_0
-# https://github.com/Security-Onion-Solutions/securityonion/discussions/11443
-holdversion_openssl:
-  pkg.held:
-    - name: openssl
-    - version: 1:3.0.7-16.0.1.el9_2
-
-holdversion_openssl-libs:
-  pkg.held:
-    - name: openssl-libs
-    - version: 1:3.0.7-16.0.1.el9_2
-
-openssl_pkgs:
-  pkg.installed:
-    - skip_suggestions: True
-    - update_holds: True
-    - pkgs:
-      - openssl: 1:3.0.7-16.0.1.el9_2
-      - openssl-libs: 1:3.0.7-16.0.1.el9_2
+remove_mariadb:
+  pkg.removed:
+    - name: mariadb-devel
 
 commonpkgs:
   pkg.installed:
     - skip_suggestions: True
     - pkgs:
+      - python3-dnf-plugin-versionlock
       - curl
       - device-mapper-persistent-data
       - fuse
@@ -88,7 +68,6 @@ commonpkgs:
       - httpd-tools
       - jq
       - lvm2
-      - mariadb-devel
       - net-tools
       - nmap-ncat
       - procps-ng
diff --git a/salt/common/tools/sbin/so-common b/salt/common/tools/sbin/so-common
index 0dfb19bbe..f754b34ef 100755
--- a/salt/common/tools/sbin/so-common
+++ b/salt/common/tools/sbin/so-common
@@ -240,7 +240,7 @@ gpg_rpm_import() {
 	    else
 	        local RPMKEYSLOC="$UPDATE_DIR/salt/repo/client/files/$OS/keys"
 	    fi
-		RPMKEYS=('RPM-GPG-KEY-oracle' 'RPM-GPG-KEY-EPEL-9' 'SALT-PROJECT-GPG-PUBKEY-2023.pub' 'docker.pub' 'securityonion.pub' 'MariaDB-Server-GPG-KEY')
+		RPMKEYS=('RPM-GPG-KEY-oracle' 'RPM-GPG-KEY-EPEL-9' 'SALT-PROJECT-GPG-PUBKEY-2023.pub' 'docker.pub' 'securityonion.pub')
 		for RPMKEY in "${RPMKEYS[@]}"; do
     	        rpm --import $RPMKEYSLOC/$RPMKEY
 	        echo "Imported $RPMKEY"
diff --git a/setup/so-functions b/setup/so-functions
index 243e89c99..84d6d80f9 100755
--- a/setup/so-functions
+++ b/setup/so-functions
@@ -2444,8 +2444,7 @@ update_packages() {
 	if [[ $is_oracle ]]; then
 		logCmd "dnf repolist"
 		# holding openssl https://github.com/Security-Onion-Solutions/securityonion/discussions/11443
-		logCmd "dnf -y install openssl-1:3.0.7-16.0.1.el9_2 openssl-libs-1:3.0.7-16.0.1.el9_2 openssl-devel-1:3.0.7-16.0.1.el9_2"
-		logCmd "dnf -y update --allowerasing --exclude=salt*,docker*,containerd*,openssl*"
+		logCmd "dnf -y update --allowerasing --exclude=salt*,docker*,containerd*"
 		RMREPOFILES=("oracle-linux-ol9.repo" "uek-ol9.repo" "virt-ol9.repo")
 		info "Removing repo files added by oracle-repos package update"
 		for FILE in ${RMREPOFILES[@]}; do

From 2434ce14d3fe1ed8773e085a6696b9d01026d1c5 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Tue, 3 Oct 2023 10:01:07 -0400
Subject: [PATCH 169/417] remove removing mariadb-devel

---
 salt/common/packages.sls | 4 ----
 setup/so-functions       | 1 -
 2 files changed, 5 deletions(-)

diff --git a/salt/common/packages.sls b/salt/common/packages.sls
index c5d2729fd..521f2201c 100644
--- a/salt/common/packages.sls
+++ b/salt/common/packages.sls
@@ -47,10 +47,6 @@ python-rich:
 
 {% if GLOBALS.os_family == 'RedHat' %}
 
-remove_mariadb:
-  pkg.removed:
-    - name: mariadb-devel
-
 commonpkgs:
   pkg.installed:
     - skip_suggestions: True
diff --git a/setup/so-functions b/setup/so-functions
index 84d6d80f9..679142e2a 100755
--- a/setup/so-functions
+++ b/setup/so-functions
@@ -2443,7 +2443,6 @@ update_sudoers_for_testing() {
 update_packages() {
 	if [[ $is_oracle ]]; then
 		logCmd "dnf repolist"
-		# holding openssl https://github.com/Security-Onion-Solutions/securityonion/discussions/11443
 		logCmd "dnf -y update --allowerasing --exclude=salt*,docker*,containerd*"
 		RMREPOFILES=("oracle-linux-ol9.repo" "uek-ol9.repo" "virt-ol9.repo")
 		info "Removing repo files added by oracle-repos package update"

From f3ba28062b48e6bfd9adb55c649057eb6987ca14 Mon Sep 17 00:00:00 2001
From: Mike Reeves <mike.reeves@securityonionsolutions.com>
Date: Tue, 3 Oct 2023 10:05:56 -0400
Subject: [PATCH 170/417] Remove MySQL

---
 salt/mysql/config.sls | 2 +-
 setup/so-functions    | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/salt/mysql/config.sls b/salt/mysql/config.sls
index 5f9010011..274f25d76 100644
--- a/salt/mysql/config.sls
+++ b/salt/mysql/config.sls
@@ -9,7 +9,7 @@
 
 # MySQL Setup
 mysqlpkgs:
-  pkg.installed:
+  pkg.removed:
     - skip_suggestions: False
     - pkgs:
       {% if grains['os_family'] != 'RedHat' %}
diff --git a/setup/so-functions b/setup/so-functions
index 679142e2a..aad627a8d 100755
--- a/setup/so-functions
+++ b/setup/so-functions
@@ -2088,7 +2088,7 @@ saltify() {
 		if [[ $waitforstate ]]; then
 			retry 150 20 "apt-get -y install salt-common=$SALTVERSION salt-minion=$SALTVERSION salt-master=$SALTVERSION" || fail_setup
 			retry 150 20 "apt-mark hold salt-minion salt-common salt-master" || fail_setup
-			retry 150 20 "apt-get -y install python3-pip python3-dateutil python3-m2crypto python3-mysqldb python3-packaging python3-influxdb python3-lxml" || exit 1
+			retry 150 20 "apt-get -y install python3-pip python3-dateutil python3-m2crypto python3-packaging python3-influxdb python3-lxml" || exit 1
 		else
 			retry 150 20 "apt-get -y install salt-common=$SALTVERSION salt-minion=$SALTVERSION" || fail_setup
 			retry 150 20 "apt-mark hold salt-minion salt-common" || fail_setup

From d78b55873d369e0fa759d8c484ad2e51289ee286 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Tue, 3 Oct 2023 10:15:28 -0400
Subject: [PATCH 171/417] remove mariadb-devel

---
 salt/common/packages.sls | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/salt/common/packages.sls b/salt/common/packages.sls
index 521f2201c..c5d2729fd 100644
--- a/salt/common/packages.sls
+++ b/salt/common/packages.sls
@@ -47,6 +47,10 @@ python-rich:
 
 {% if GLOBALS.os_family == 'RedHat' %}
 
+remove_mariadb:
+  pkg.removed:
+    - name: mariadb-devel
+
 commonpkgs:
   pkg.installed:
     - skip_suggestions: True

From d79e27774c06e77787e8cb171990444594b37abb Mon Sep 17 00:00:00 2001
From: Mike Reeves <mike.reeves@securityonionsolutions.com>
Date: Thu, 5 Oct 2023 11:27:48 -0400
Subject: [PATCH 172/417] 2.4.20

---
 DOWNLOAD_AND_VERIFY_ISO.md                 |  22 ++++++++++-----------
 sigs/securityonion-2.4.20-20231006.iso.sig | Bin 0 -> 566 bytes
 2 files changed, 11 insertions(+), 11 deletions(-)
 create mode 100644 sigs/securityonion-2.4.20-20231006.iso.sig

diff --git a/DOWNLOAD_AND_VERIFY_ISO.md b/DOWNLOAD_AND_VERIFY_ISO.md
index 1e6299a8e..f78ed8045 100644
--- a/DOWNLOAD_AND_VERIFY_ISO.md
+++ b/DOWNLOAD_AND_VERIFY_ISO.md
@@ -1,18 +1,18 @@
-### 2.4.10-20230821 ISO image released on 2023/08/21
+### 2.4.20-20231006 ISO image released on 2023/08/21
 
 
 
 ### Download and Verify
 
-2.4.10-20230821 ISO image:  
-https://download.securityonion.net/file/securityonion/securityonion-2.4.10-20230821.iso
+2.4.20-20231006 ISO image:  
+https://download.securityonion.net/file/securityonion/securityonion-2.4.20-20231006.iso
  
-MD5: 353EB36F807DC947F08F79B3DCFA420E  
-SHA1: B25E3BEDB81BBEF319DC710267E6D78422F39C56  
-SHA256: 3D369E92FEB65D14E1A981E99FA223DA52C92057A037C243AD6332B6B9A6D9BC  
+MD5: 269F00308C53976BF0EAE788D1DB29DB  
+SHA1: 3F7C2324AE1271112F3B752BA4724AF36688FC27  
+SHA256: 542B8B3F4F75AD24DC78007F8FE0857E00DC4CC9F4870154DCB8D5D0C4144B65  
 
 Signature for ISO image:  
-https://github.com/Security-Onion-Solutions/securityonion/raw/2.4/main/sigs/securityonion-2.4.10-20230821.iso.sig
+https://github.com/Security-Onion-Solutions/securityonion/raw/2.4/main/sigs/securityonion-2.4.20-20231006.iso.sig
 
 Signing key:  
 https://raw.githubusercontent.com/Security-Onion-Solutions/securityonion/2.4/main/KEYS  
@@ -26,22 +26,22 @@ wget https://raw.githubusercontent.com/Security-Onion-Solutions/securityonion/2.
 
 Download the signature file for the ISO:  
 ```
-wget https://github.com/Security-Onion-Solutions/securityonion/raw/2.4/main/sigs/securityonion-2.4.10-20230821.iso.sig
+wget https://github.com/Security-Onion-Solutions/securityonion/raw/2.4/main/sigs/securityonion-2.4.20-20231006.iso.sig
 ```
 
 Download the ISO image:  
 ```
-wget https://download.securityonion.net/file/securityonion/securityonion-2.4.10-20230821.iso
+wget https://download.securityonion.net/file/securityonion/securityonion-2.4.20-20231006.iso
 ```
 
 Verify the downloaded ISO image using the signature file:  
 ```
-gpg --verify securityonion-2.4.10-20230821.iso.sig securityonion-2.4.10-20230821.iso
+gpg --verify securityonion-2.4.20-20231006.iso.sig securityonion-2.4.20-20231006.iso
 ```
 
 The output should show "Good signature" and the Primary key fingerprint should match what's shown below:
 ```
-gpg: Signature made Mon 21 Aug 2023 09:47:50 AM EDT using RSA key ID FE507013
+gpg: Signature made Tue 03 Oct 2023 11:40:51 AM EDT using RSA key ID FE507013
 gpg: Good signature from "Security Onion Solutions, LLC <info@securityonionsolutions.com>"
 gpg: WARNING: This key is not certified with a trusted signature!
 gpg:          There is no indication that the signature belongs to the owner.
diff --git a/sigs/securityonion-2.4.20-20231006.iso.sig b/sigs/securityonion-2.4.20-20231006.iso.sig
new file mode 100644
index 0000000000000000000000000000000000000000..b253c67343b7b2cf16a7e755c9994273a0ddcbf3
GIT binary patch
literal 566
zcmV-60?GY}0y6{v0SEvc79j-41gSkXz6^6dp_W8^5Ma0dP;e6k0%aUF0{{vM5PT3|
zxBgIY6PPIv|8AKBz*y#69E5wO6vi|oL@`l#Tb0V-g6qpodgIz_Qz?#fV&dsL)bw7;
zEQ5dR`7WH2!A2&_oP21_JVTNA-V)o_J5B1nXhuKq`dW;jVYtmpO|bDSl2_jc>+i~z
z!YaS~vE>O;Knj%{_=6*d1>;fqP7xtOq7dlE*J3+rJ@LOtG8j8$gDzLp(Yp+n>O*9Y
zZ;w4lR4oDEQ5tlI#JsHlxdTPdpKI;7=?!Mjr=4})v59Qq@d3juf)K@ROkoR{Vtq8j
zOfw_a81qDfNkCEs`A^plu`Gznwc-l3IdkH{5K}tU%EmV33V?2_i~4tT02)RIx<x!9
zX+D}dBLB^KO)PT=g(cbNVv6pJaD;*F@bFe#_c)63gS}M0%BymtPuPSoOzocuj0CBA
zTZRs_NZtIGAQ@~frain=*q{XiM!eU_2Q)Q}XBCW>GEU&aRRnk}JYjQpnhK>`SjSi#
ze2u@u?YU>5_R;{3*6BAG1}iQSBOdN#r48V3bvTv`XYcuiUoJom;3*m4_}RLXHbgV~
zRnf9Ycgu(Tuxhq02}9f7VB85+A9}Q#K&Y5;+wQ~#<<lL(yDHTk07|I5M*qIf*2~hv
z5I};jB$FFVvV%849|up*s6Wm9O`qT2CvSXAGl9Ul6`pBw8N+<=$;}eF|6|qk@T?Gn
E)m>o@5C8xG

literal 0
HcmV?d00001


From c25aed9a2b285631764a5ce2dfd93f01022d81c1 Mon Sep 17 00:00:00 2001
From: Mike Reeves <mike.reeves@securityonionsolutions.com>
Date: Thu, 5 Oct 2023 11:37:49 -0400
Subject: [PATCH 173/417] Update DOWNLOAD_AND_VERIFY_ISO.md

---
 DOWNLOAD_AND_VERIFY_ISO.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/DOWNLOAD_AND_VERIFY_ISO.md b/DOWNLOAD_AND_VERIFY_ISO.md
index f78ed8045..dabfd285c 100644
--- a/DOWNLOAD_AND_VERIFY_ISO.md
+++ b/DOWNLOAD_AND_VERIFY_ISO.md
@@ -1,4 +1,4 @@
-### 2.4.20-20231006 ISO image released on 2023/08/21
+### 2.4.20-20231006 ISO image released on 2023/10/06
 
 
 

From 4dc24b22c79042e8f6959f5e59e21b8fb7249410 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Tue, 10 Oct 2023 10:51:59 -0400
Subject: [PATCH 174/417] accept icmp on input chain

---
 salt/firewall/iptables.jinja | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/salt/firewall/iptables.jinja b/salt/firewall/iptables.jinja
index c15a54e46..074663e15 100644
--- a/salt/firewall/iptables.jinja
+++ b/salt/firewall/iptables.jinja
@@ -89,7 +89,6 @@ COMMIT
 -A INPUT -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT
 -A INPUT -i lo -j ACCEPT
 -A INPUT -m conntrack --ctstate INVALID -j DROP
--A INPUT -j REJECT --reject-with icmp-host-prohibited
 -A INPUT -p icmp -j ACCEPT
 -A INPUT -j LOGGING
 -A FORWARD -j DOCKER-USER
@@ -103,6 +102,7 @@ COMMIT
 -A FORWARD -m conntrack --ctstate INVALID -j DROP
 -A FORWARD -j REJECT --reject-with icmp-host-prohibited
 -A OUTPUT -o lo -j ACCEPT
+# block icmp timestamp reply
 -A OUTPUT -p icmp -m icmp --icmp-type 14 -j DROP
 
 {%- for rule in D2 %}

From 49ebbf3232fe08091f796b1e7b1100fa9aed7d56 Mon Sep 17 00:00:00 2001
From: Mike Reeves <mike.reeves@securityonionsolutions.com>
Date: Tue, 10 Oct 2023 11:05:39 -0400
Subject: [PATCH 175/417] Update VERSION

---
 VERSION | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/VERSION b/VERSION
index a3ab5389f..8ea99f559 100644
--- a/VERSION
+++ b/VERSION
@@ -1 +1 @@
-2.4.20
+2.4.30

From a283e7ea0bea9928ff27ba42f022a5d07934520e Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Tue, 10 Oct 2023 13:00:54 -0400
Subject: [PATCH 176/417] remove checkmine salt engine

---
 salt/salt/engines/checkmine.py | 28 ----------------------------
 salt/salt/files/engines.conf   |  6 ------
 2 files changed, 34 deletions(-)
 delete mode 100644 salt/salt/engines/checkmine.py
 delete mode 100644 salt/salt/files/engines.conf

diff --git a/salt/salt/engines/checkmine.py b/salt/salt/engines/checkmine.py
deleted file mode 100644
index 5cc0a5ad3..000000000
--- a/salt/salt/engines/checkmine.py
+++ /dev/null
@@ -1,28 +0,0 @@
-# -*- coding: utf-8 -*-
-
-import logging
-from time import sleep
-from os import remove
-
-log = logging.getLogger(__name__)
-
-def start(interval=30):
-  log.info("checkmine engine started")
-  minionid = __grains__['id']
-  while True:
-    try:
-      ca_crt = __salt__['saltutil.runner']('mine.get', tgt=minionid, fun='x509.get_pem_entries')[minionid]['/etc/pki/ca.crt']
-      log.info('Successfully queried Salt mine for the CA.')
-    except:
-      log.error('Could not pull CA from the Salt mine.')
-      log.info('Removing /var/cache/salt/master/minions/%s/mine.p to force Salt mine to be repopulated.' % minionid)
-      try:
-        remove('/var/cache/salt/master/minions/%s/mine.p' % minionid)
-        log.info('Removed /var/cache/salt/master/minions/%s/mine.p' % minionid)
-      except FileNotFoundError:
-        log.error('/var/cache/salt/master/minions/%s/mine.p does not exist' % minionid)
-
-      __salt__['mine.send'](name='x509.get_pem_entries', glob_path='/etc/pki/ca.crt')
-      log.warning('Salt mine repopulated with /etc/pki/ca.crt')
-
-    sleep(interval)
\ No newline at end of file
diff --git a/salt/salt/files/engines.conf b/salt/salt/files/engines.conf
deleted file mode 100644
index c9e20adf3..000000000
--- a/salt/salt/files/engines.conf
+++ /dev/null
@@ -1,6 +0,0 @@
-engines_dirs:
-  - /etc/salt/engines
-
-engines:
-  - checkmine:
-      interval: 30
\ No newline at end of file

From 89467adf9c3ba493c397836a942b9f75b9eb183e Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Tue, 10 Oct 2023 13:05:43 -0400
Subject: [PATCH 177/417] batch the salt mine update

---
 salt/manager/tools/sbin/soup | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/salt/manager/tools/sbin/soup b/salt/manager/tools/sbin/soup
index 333be836b..e4b388e22 100755
--- a/salt/manager/tools/sbin/soup
+++ b/salt/manager/tools/sbin/soup
@@ -580,7 +580,7 @@ update_centos_repo() {
 update_salt_mine() {
     echo "Populating the mine with network.ip_addrs pillar.host.mainint for each host."
     set +e
-    salt \* mine.update
+    salt \* mine.update -b 50
     set -e
 }
 

From 4193130ed05fc6cd6e34e1432161737c23996a74 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Tue, 10 Oct 2023 13:07:12 -0400
Subject: [PATCH 178/417] reduce salt mine interval to 25 minutes

---
 salt/salt/etc/minion.d/mine_functions.conf.jinja | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/salt/salt/etc/minion.d/mine_functions.conf.jinja b/salt/salt/etc/minion.d/mine_functions.conf.jinja
index e3c62e75c..3851238fd 100644
--- a/salt/salt/etc/minion.d/mine_functions.conf.jinja
+++ b/salt/salt/etc/minion.d/mine_functions.conf.jinja
@@ -1,4 +1,4 @@
-mine_interval: 35
+mine_interval: 25
 mine_functions:
   network.ip_addrs:
     - interface: {{ pillar.host.mainint }}

From 2094b4f6889d74fe4fc6b597511b38c8bc838fa7 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Wed, 11 Oct 2023 09:04:36 -0400
Subject: [PATCH 179/417] upgrade to salt 3006.3

---
 salt/salt/master.defaults.yaml | 2 +-
 salt/salt/minion.defaults.yaml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/salt/salt/master.defaults.yaml b/salt/salt/master.defaults.yaml
index 126039802..40b6f5268 100644
--- a/salt/salt/master.defaults.yaml
+++ b/salt/salt/master.defaults.yaml
@@ -2,4 +2,4 @@
 # When updating the salt version, also update the version in securityonion-builds/images/iso-task/Dockerfile and saltify function in so-functions
 salt:
   master:
-    version: 3006.1
+    version: 3006.3
diff --git a/salt/salt/minion.defaults.yaml b/salt/salt/minion.defaults.yaml
index 7e1540d17..71fd18f96 100644
--- a/salt/salt/minion.defaults.yaml
+++ b/salt/salt/minion.defaults.yaml
@@ -2,6 +2,6 @@
 # When updating the salt version, also update the version in securityonion-builds/images/iso-task/Dockerfile and saltify function in so-functions
 salt:
   minion:
-    version: 3006.1
+    version: 3006.3
     check_threshold: 3600 # in seconds, threshold used for so-salt-minion-check. any value less than 600 seconds may cause a lot of salt-minion restarts since the job to touch the file occurs every 5-8 minutes by default
     service_start_delay: 30 # in seconds.

From d357864d69bc9abf1800558c28160321df8ae191 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Wed, 11 Oct 2023 15:32:11 -0400
Subject: [PATCH 180/417] fix upgrade_salt function for oel

---
 salt/manager/tools/sbin/soup | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/salt/manager/tools/sbin/soup b/salt/manager/tools/sbin/soup
index e4b388e22..acde3f74a 100755
--- a/salt/manager/tools/sbin/soup
+++ b/salt/manager/tools/sbin/soup
@@ -628,8 +628,8 @@ upgrade_salt() {
   SALTUPGRADED=True
   echo "Performing upgrade of Salt from $INSTALLEDSALTVERSION to $NEWSALTVERSION."
   echo ""
-  # If CentOS
-  if [[ $OS == 'centos' ]]; then
+  # If Oracle Linux
+  if [[ $OS == 'oel' ]]; then
     echo "Removing yum versionlock for Salt."
     echo ""
     yum versionlock delete "salt-*"

From 1043315e6b35cf8d07d924ab8ce6d296b5752e62 Mon Sep 17 00:00:00 2001
From: defensivedepth <josh@defensivedepth.com>
Date: Thu, 12 Oct 2023 09:22:26 -0400
Subject: [PATCH 181/417] Manage Elastic Defend Integration manually

---
 .../elastic-defend-endpoints.json             |  0
 .../tools/sbin/so-elastic-fleet-common        | 18 +++++++++++++
 ...ic-fleet-integration-policy-elastic-defend | 27 +++++++++++++++++++
 .../so-elastic-fleet-integration-policy-load  |  4 +++
 4 files changed, 49 insertions(+)
 rename salt/elasticfleet/files/integrations/{endpoints-initial => elastic-defend}/elastic-defend-endpoints.json (100%)
 mode change 100755 => 100644 salt/elasticfleet/tools/sbin/so-elastic-fleet-common
 create mode 100755 salt/elasticfleet/tools/sbin/so-elastic-fleet-integration-policy-elastic-defend
 mode change 100755 => 100644 salt/elasticfleet/tools/sbin/so-elastic-fleet-integration-policy-load

diff --git a/salt/elasticfleet/files/integrations/endpoints-initial/elastic-defend-endpoints.json b/salt/elasticfleet/files/integrations/elastic-defend/elastic-defend-endpoints.json
similarity index 100%
rename from salt/elasticfleet/files/integrations/endpoints-initial/elastic-defend-endpoints.json
rename to salt/elasticfleet/files/integrations/elastic-defend/elastic-defend-endpoints.json
diff --git a/salt/elasticfleet/tools/sbin/so-elastic-fleet-common b/salt/elasticfleet/tools/sbin/so-elastic-fleet-common
old mode 100755
new mode 100644
index 6ada43003..c0b4db53a
--- a/salt/elasticfleet/tools/sbin/so-elastic-fleet-common
+++ b/salt/elasticfleet/tools/sbin/so-elastic-fleet-common
@@ -42,6 +42,23 @@ elastic_fleet_integration_create() {
     curl -K /opt/so/conf/elasticsearch/curl.config -L -X POST "localhost:5601/api/fleet/package_policies" -H 'kbn-xsrf: true' -H 'Content-Type: application/json' -d "$JSON_STRING"
 }
 
+
+elastic_fleet_integration_remove() {
+
+    AGENT_POLICY=$1
+
+    NAME=$2
+
+    INTEGRATION_ID=$(/usr/sbin/so-elastic-fleet-agent-policy-view "$AGENT_POLICY" | jq -r '.item.package_policies[] | select(.name=="'"$NAME"'") | .id')
+
+    JSON_STRING=$( jq -n \
+                    --arg INTEGRATIONID "$INTEGRATION_ID" \
+                    '{"packagePolicyIds":[$INTEGRATIONID]}'
+                    )
+
+    curl -K /opt/so/conf/elasticsearch/curl.config -L -X POST "localhost:5601/api/fleet/package_policies/delete" -H 'kbn-xsrf: true' -H 'Content-Type: application/json' -d "$JSON_STRING"
+}
+
 elastic_fleet_integration_update() {
 
     UPDATE_ID=$1
@@ -98,3 +115,4 @@ elastic_fleet_policy_update() {
 
     curl -K /opt/so/conf/elasticsearch/curl.config -L -X PUT "localhost:5601/api/fleet/agent_policies/$POLICYID" -H 'kbn-xsrf: true' -H 'Content-Type: application/json' -d "$JSON_STRING"
 }
+
diff --git a/salt/elasticfleet/tools/sbin/so-elastic-fleet-integration-policy-elastic-defend b/salt/elasticfleet/tools/sbin/so-elastic-fleet-integration-policy-elastic-defend
new file mode 100755
index 000000000..c4a7d39fd
--- /dev/null
+++ b/salt/elasticfleet/tools/sbin/so-elastic-fleet-integration-policy-elastic-defend
@@ -0,0 +1,27 @@
+#!/bin/bash
+# Copyright Security Onion Solutions LLC and/or licensed to Security Onion Solutions LLC under one
+# or more contributor license agreements. Licensed under the Elastic License 2.0 as shown at
+# https://securityonion.net/license; you may not use this file except in compliance with the
+# Elastic License 2.0.
+
+# Usage: Run with --force to update the Elastic Defend integration policy
+
+. /usr/sbin/so-elastic-fleet-common
+
+# Manage Elastic Defend Integration for Initial Endpoints Policy
+for INTEGRATION in /opt/so/conf/elastic-fleet/integrations/elastic-defend/*.json
+do
+  printf "\n\nInitial Endpoints Policy - Loading $INTEGRATION\n"
+  elastic_fleet_integration_check "endpoints-initial" "$INTEGRATION"
+  if [ -n "$INTEGRATION_ID" ]; then
+    if [ "$1" = "--force" ]; then
+      printf "\n\nIntegration $NAME exists - Updating integration\n"
+      elastic_fleet_integration_update "$INTEGRATION_ID" "@$INTEGRATION"
+    else
+      printf "\n\nIntegration $NAME exists - Not updating - rerun with --force to force the update.\n"
+    fi
+  else
+    printf "\n\nIntegration does not exist - Creating integration\n"
+    elastic_fleet_integration_create "@$INTEGRATION"
+  fi
+done
diff --git a/salt/elasticfleet/tools/sbin/so-elastic-fleet-integration-policy-load b/salt/elasticfleet/tools/sbin/so-elastic-fleet-integration-policy-load
old mode 100755
new mode 100644
index ae0fbb6ba..44e7ccf2b
--- a/salt/elasticfleet/tools/sbin/so-elastic-fleet-integration-policy-load
+++ b/salt/elasticfleet/tools/sbin/so-elastic-fleet-integration-policy-load
@@ -12,6 +12,9 @@ if [ ! -f /opt/so/state/eaintegrations.txt ]; then
   # First, check for any package upgrades
   /usr/sbin/so-elastic-fleet-package-upgrade
 
+  # Second, configure Elastic Defend Integration seperately
+  /usr/sbin/so-elastic-fleet-integration-policy-elastic-defend
+
   # Initial Endpoints
   for INTEGRATION in /opt/so/conf/elastic-fleet/integrations/endpoints-initial/*.json
   do
@@ -65,3 +68,4 @@ else
   exit $RETURN_CODE
 fi
 
+

From ab4c5acd0c905bad8cdc6acddf41d26dd04de00e Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Thu, 12 Oct 2023 09:28:07 -0400
Subject: [PATCH 182/417] update bootstrap-salt.sh with stable branch

---
 salt/salt/scripts/bootstrap-salt.sh      | 2074 +++++-
 salt/salt/scripts/bootstrap-salt_orig.sh | 8126 ++++++++++++++++++++++
 2 files changed, 9976 insertions(+), 224 deletions(-)
 create mode 100644 salt/salt/scripts/bootstrap-salt_orig.sh

diff --git a/salt/salt/scripts/bootstrap-salt.sh b/salt/salt/scripts/bootstrap-salt.sh
index 47d25949c..ace3bce26 100644
--- a/salt/salt/scripts/bootstrap-salt.sh
+++ b/salt/salt/scripts/bootstrap-salt.sh
@@ -14,7 +14,7 @@
 #
 #          BUGS: https://github.com/saltstack/salt-bootstrap/issues
 #
-#     COPYRIGHT: (c) 2012-2021 by the SaltStack Team, see AUTHORS.rst for more
+#     COPYRIGHT: (c) 2012-2022 by the SaltStack Team, see AUTHORS.rst for more
 #                details.
 #
 #       LICENSE: Apache 2.0
@@ -23,7 +23,7 @@
 #======================================================================================================================
 set -o nounset                              # Treat unset variables as an error
 
-__ScriptVersion="2021.09.17"
+__ScriptVersion="2023.08.03"
 __ScriptName="bootstrap-salt.sh"
 
 __ScriptFullName="$0"
@@ -224,7 +224,6 @@ _KEEP_TEMP_FILES=${BS_KEEP_TEMP_FILES:-$BS_FALSE}
 _TEMP_CONFIG_DIR="null"
 _SALTSTACK_REPO_URL="https://github.com/saltstack/salt.git"
 _SALT_REPO_URL=${_SALTSTACK_REPO_URL}
-_DOWNSTREAM_PKG_REPO=$BS_FALSE
 _TEMP_KEYS_DIR="null"
 _SLEEP="${__DEFAULT_SLEEP}"
 _INSTALL_MASTER=$BS_FALSE
@@ -268,6 +267,8 @@ _CUSTOM_MASTER_CONFIG="null"
 _CUSTOM_MINION_CONFIG="null"
 _QUIET_GIT_INSTALLATION=$BS_FALSE
 _REPO_URL="repo.saltproject.io"
+_ONEDIR_DIR="salt"
+_ONEDIR_NIGHTLY_DIR="salt-dev/${_ONEDIR_DIR}"
 _PY_EXE="python3"
 _INSTALL_PY="$BS_FALSE"
 _TORNADO_MAX_PY3_VERSION="5.0"
@@ -275,6 +276,9 @@ _POST_NEON_INSTALL=$BS_FALSE
 _MINIMUM_PIP_VERSION="9.0.1"
 _MINIMUM_SETUPTOOLS_VERSION="9.1"
 _POST_NEON_PIP_INSTALL_ARGS="--prefix=/usr"
+_PIP_DOWNLOAD_ARGS=""
+_QUICK_START="$BS_FALSE"
+_AUTO_ACCEPT_MINION_KEYS="$BS_FALSE"
 
 # Defaults for install arguments
 ITYPE="stable"
@@ -290,110 +294,130 @@ __usage() {
   Usage :  ${__ScriptName} [options] <install-type> [install-type-args]
 
   Installation types:
-    - stable              Install latest stable release. This is the default
-                          install type
-    - stable [branch]     Install latest version on a branch. Only supported
-                          for packages available at repo.saltproject.io
-    - stable [version]    Install a specific version. Only supported for
-                          packages available at repo.saltproject.io
-                          To pin a 3xxx minor version, specify it as 3xxx.0
-    - testing             RHEL-family specific: configure EPEL testing repo
-    - git                 Install from the head of the master branch
-    - git [ref]           Install from any git ref (such as a branch, tag, or
-                          commit)
+    - stable               Install latest stable release. This is the default
+                           install type
+    - stable [branch]      Install latest version on a branch. Only supported
+                           for packages available at repo.saltproject.io
+    - stable [version]     Install a specific version. Only supported for
+                           packages available at repo.saltproject.io
+                           To pin a 3xxx minor version, specify it as 3xxx.0
+    - testing              RHEL-family specific: configure EPEL testing repo
+    - git                  Install from the head of the master branch
+    - git [ref]            Install from any git ref (such as a branch, tag, or
+                           commit)
+    - onedir               Install latest onedir release.
+    - onedir [version]     Install a specific version. Only supported for
+                           onedir packages available at repo.saltproject.io
+
+    - onedir_rc            Install latest onedir RC release.
+    - onedir_rc [version]  Install a specific version. Only supported for
+                           onedir RC packages available at repo.saltproject.io
+    - old-stable           Install latest old stable release.
+    - old-stable [branch]  Install latest version on a branch. Only supported
+                           for packages available at repo.saltproject.io
+    - old-stable [version] Install a specific version. Only supported for
+                           packages available at repo.saltproject.io
+                           To pin a 3xxx minor version, specify it as 3xxx.0
 
   Examples:
     - ${__ScriptName}
     - ${__ScriptName} stable
-    - ${__ScriptName} stable 2017.7
-    - ${__ScriptName} stable 2017.7.2
+    - ${__ScriptName} stable 3006
+    - ${__ScriptName} stable 3006.1
     - ${__ScriptName} testing
     - ${__ScriptName} git
     - ${__ScriptName} git 2017.7
     - ${__ScriptName} git v2017.7.2
     - ${__ScriptName} git 06f249901a2e2f1ed310d58ea3921a129f214358
+    - ${__ScriptName} onedir
+    - ${__ScriptName} onedir 3006
+    - ${__ScriptName} onedir_rc
+    - ${__ScriptName} onedir_rc 3006
+    - ${__ScriptName} old-stable
+    - ${__ScriptName} old-stable 3005
+    - ${__ScriptName} old-stable 3005.1
+
 
   Options:
-    -h  Display this message
-    -v  Display script version
-    -n  No colours
-    -D  Show debug output
+    -a  Pip install all Python pkg dependencies for Salt. Requires -V to install
+        all pip pkgs into the virtualenv.
+        (Only available for Ubuntu based distributions)
+    -A  Pass the salt-master DNS name or IP. This will be stored under
+        \${BS_SALT_ETC_DIR}/minion.d/99-master-address.conf
+    -b  Assume that dependencies are already installed and software sources are
+        set up. If git is selected, git tree is still checked out as dependency
+        step.
     -c  Temporary configuration directory
-    -g  Salt Git repository URL. Default: ${_SALTSTACK_REPO_URL}
-    -w  Install packages from downstream package repository rather than
-        upstream, saltstack package repository. This is currently only
-        implemented for SUSE.
-    -k  Temporary directory holding the minion keys which will pre-seed
-        the master.
-    -s  Sleep time used when waiting for daemons to start, restart and when
-        checking for the services running. Default: ${__DEFAULT_SLEEP}
-    -L  Also install salt-cloud and required python-libcloud package
-    -M  Also install salt-master
-    -S  Also install salt-syndic
-    -N  Do not install salt-minion
-    -X  Do not start daemons after installation
-    -d  Disables checking if Salt services are enabled to start on system boot.
-        You can also do this by touching /tmp/disable_salt_checks on the target
-        host. Default: \${BS_FALSE}
-    -P  Allow pip based installations. On some distributions the required salt
-        packages or its dependencies are not available as a package for that
-        distribution. Using this flag allows the script to use pip as a last
-        resort method. NOTE: This only works for functions which actually
-        implement pip based installations.
-    -U  If set, fully upgrade the system prior to bootstrapping Salt
-    -I  If set, allow insecure connections while downloading any files. For
-        example, pass '--no-check-certificate' to 'wget' or '--insecure' to
-        'curl'. On Debian and Ubuntu, using this option with -U allows obtaining
-        GnuPG archive keys insecurely if distro has changed release signatures.
-    -F  Allow copied files to overwrite existing (config, init.d, etc)
-    -K  If set, keep the temporary files in the temporary directories specified
-        with -c and -k
     -C  Only run the configuration function. Implies -F (forced overwrite).
         To overwrite Master or Syndic configs, -M or -S, respectively, must
         also be specified. Salt installation will be ommitted, but some of the
         dependencies could be installed to write configuration with -j or -J.
-    -A  Pass the salt-master DNS name or IP. This will be stored under
-        \${BS_SALT_ETC_DIR}/minion.d/99-master-address.conf
-    -i  Pass the salt-minion id. This will be stored under
-        \${BS_SALT_ETC_DIR}/minion_id
-    -p  Extra-package to install while installing Salt dependencies. One package
-        per -p flag. You are responsible for providing the proper package name.
-    -H  Use the specified HTTP proxy for all download URLs (including https://).
-        For example: http://myproxy.example.com:3128
-    -b  Assume that dependencies are already installed and software sources are
-        set up. If git is selected, git tree is still checked out as dependency
-        step.
+    -d  Disables checking if Salt services are enabled to start on system boot.
+        You can also do this by touching /tmp/disable_salt_checks on the target
+        host. Default: \${BS_FALSE}
+    -D  Show debug output
     -f  Force shallow cloning for git installations.
         This may result in an "n/a" in the version number.
-    -l  Disable ssl checks. When passed, switches "https" calls to "http" where
-        possible.
-    -V  Install Salt into virtualenv
-        (only available for Ubuntu based distributions)
-    -a  Pip install all Python pkg dependencies for Salt. Requires -V to install
-        all pip pkgs into the virtualenv.
-        (Only available for Ubuntu based distributions)
-    -r  Disable all repository configuration performed by this script. This
-        option assumes all necessary repository configuration is already present
-        on the system.
-    -R  Specify a custom repository URL. Assumes the custom repository URL
-        points to a repository that mirrors Salt packages located at
-        repo.saltproject.io. The option passed with -R replaces the
-        "repo.saltproject.io". If -R is passed, -r is also set. Currently only
-        works on CentOS/RHEL and Debian based distributions.
-    -J  Replace the Master config file with data passed in as a JSON string. If
-        a Master config file is found, a reasonable effort will be made to save
-        the file with a ".bak" extension. If used in conjunction with -C or -F,
-        no ".bak" file will be created as either of those options will force
-        a complete overwrite of the file.
+    -F  Allow copied files to overwrite existing (config, init.d, etc)
+    -g  Salt Git repository URL. Default: ${_SALTSTACK_REPO_URL}
+    -h  Display this message
+    -H  Use the specified HTTP proxy for all download URLs (including https://).
+        For example: http://myproxy.example.com:3128
+    -i  Pass the salt-minion id. This will be stored under
+        \${BS_SALT_ETC_DIR}/minion_id
+    -I  If set, allow insecure connections while downloading any files. For
+        example, pass '--no-check-certificate' to 'wget' or '--insecure' to
+        'curl'. On Debian and Ubuntu, using this option with -U allows obtaining
+        GnuPG archive keys insecurely if distro has changed release signatures.
     -j  Replace the Minion config file with data passed in as a JSON string. If
         a Minion config file is found, a reasonable effort will be made to save
         the file with a ".bak" extension. If used in conjunction with -C or -F,
         no ".bak" file will be created as either of those options will force
         a complete overwrite of the file.
+    -J  Replace the Master config file with data passed in as a JSON string. If
+        a Master config file is found, a reasonable effort will be made to save
+        the file with a ".bak" extension. If used in conjunction with -C or -F,
+        no ".bak" file will be created as either of those options will force
+        a complete overwrite of the file.
+    -k  Temporary directory holding the minion keys which will pre-seed
+        the master.
+    -K  If set, keep the temporary files in the temporary directories specified
+        with -c and -k
+    -l  Disable ssl checks. When passed, switches "https" calls to "http" where
+        possible.
+    -L  Also install salt-cloud and required python-libcloud package
+    -M  Also install salt-master
+    -n  No colours
+    -N  Do not install salt-minion
+    -p  Extra-package to install while installing Salt dependencies. One package
+        per -p flag. You are responsible for providing the proper package name.
+    -P  Allow pip based installations. On some distributions the required salt
+        packages or its dependencies are not available as a package for that
+        distribution. Using this flag allows the script to use pip as a last
+        resort method. NOTE: This only works for functions which actually
+        implement pip based installations.
     -q  Quiet salt installation from git (setup.py install -q)
+    -Q  Quickstart, install the Salt master and the Salt minion.
+        And automatically accept the minion key.
+    -R  Specify a custom repository URL. Assumes the custom repository URL
+        points to a repository that mirrors Salt packages located at
+        repo.saltproject.io. The option passed with -R replaces the
+        "repo.saltproject.io". If -R is passed, -r is also set. Currently only
+        works on CentOS/RHEL and Debian based distributions and macOS.
+    -s  Sleep time used when waiting for daemons to start, restart and when
+        checking for the services running. Default: ${__DEFAULT_SLEEP}
+    -S  Also install salt-syndic
+    -r  Disable all repository configuration performed by this script. This
+        option assumes all necessary repository configuration is already present
+        on the system.
+    -U  If set, fully upgrade the system prior to bootstrapping Salt
+    -v  Display script version
+    -V  Install Salt into virtualenv
+        (only available for Ubuntu based distributions)
     -x  Changes the Python version used to install Salt.
         For CentOS 6 git installations python2.7 is supported.
-        Fedora git installation, CentOS 7, Debian 9, Ubuntu 16.04 and 18.04 support python3.
+        Fedora git installation, CentOS 7, Ubuntu 18.04 support python3.
+    -X  Do not start daemons after installation
     -y  Installs a different python version on host. Currently this has only been
         tested with CentOS 6 and is considered experimental. This will install the
         ius repo on the box if disable repo is false. This must be used in conjunction
@@ -406,7 +430,7 @@ EOT
 }   # ----------  end of function __usage  ----------
 
 
-while getopts ':hvnDc:g:Gyx:wk:s:MSNXCPFUKIA:i:Lp:dH:bflV:J:j:rR:aq' opt
+while getopts ':hvnDc:g:Gyx:k:s:MSNXCPFUKIA:i:Lp:dH:bflV:J:j:rR:aqQ' opt
 do
   case "${opt}" in
 
@@ -422,7 +446,6 @@ do
          echowarn "No need to provide this option anymore, now it is a default behavior."
          ;;
 
-    w )  _DOWNSTREAM_PKG_REPO=$BS_TRUE                  ;;
     k )  _TEMP_KEYS_DIR="$OPTARG"                       ;;
     s )  _SLEEP=$OPTARG                                 ;;
     M )  _INSTALL_MASTER=$BS_TRUE                       ;;
@@ -451,6 +474,7 @@ do
     J )  _CUSTOM_MASTER_CONFIG=$OPTARG                  ;;
     j )  _CUSTOM_MINION_CONFIG=$OPTARG                  ;;
     q )  _QUIET_GIT_INSTALLATION=$BS_TRUE               ;;
+    Q )  _QUICK_START=$BS_TRUE                          ;;
     x )  _PY_EXE="$OPTARG"                              ;;
     y )  _INSTALL_PY="$BS_TRUE"                         ;;
 
@@ -572,7 +596,6 @@ fi
 echoinfo "Running version: ${__ScriptVersion}"
 echoinfo "Executed by: ${CALLER}"
 echoinfo "Command line: '${__ScriptFullName} ${__ScriptArgs}'"
-#echowarn "Running the unstable version of ${__ScriptName}"
 
 # Define installation type
 if [ "$#" -gt 0 ];then
@@ -582,7 +605,7 @@ if [ "$#" -gt 0 ];then
 fi
 
 # Check installation type
-if [ "$(echo "$ITYPE" | grep -E '(stable|testing|git)')" = "" ]; then
+if [ "$(echo "$ITYPE" | grep -E '(stable|testing|git|onedir|onedir_rc|old-stable)')" = "" ]; then
     echoerror "Installation type \"$ITYPE\" is not known..."
     exit 1
 fi
@@ -602,23 +625,123 @@ if [ "$ITYPE" = "git" ]; then
 # If doing stable install, check if version specified
 elif [ "$ITYPE" = "stable" ]; then
     if [ "$#" -eq 0 ];then
-        STABLE_REV="latest"
+        ONEDIR_REV="latest"
+        _ONEDIR_REV="latest"
+        ITYPE="onedir"
     else
-        if [ "$(echo "$1" | grep -E '^(latest|1\.6|1\.7|2014\.1|2014\.7|2015\.5|2015\.8|2016\.3|2016\.11|2017\.7|2018\.3|2019\.2|3000|3001|3002|3003|3004)$')" != "" ]; then
-            STABLE_REV="$1"
+        if [ "$(echo "$1" | grep -E '^(nightly|latest|3005|3006)$')" != "" ]; then
+            ONEDIR_REV="$1"
+            _ONEDIR_REV="$1"
+            ITYPE="onedir"
             shift
-        elif [ "$(echo "$1" | grep -E '^(2[0-9]*\.[0-9]*\.[0-9]*|[3-9][0-9]{3}(\.[0-9]*)?)$')" != "" ]; then
+        elif [ "$(echo "$1" | grep -E '^([3-9][0-5]{2}[5-9](\.[0-9]*)?)')" != "" ]; then
+            ONEDIR_REV="minor/$1"
+            _ONEDIR_REV="$1"
+            ITYPE="onedir"
+            shift
+        else
+            echo "Unknown stable version: $1 (valid: 3005, 3006, latest)"
+            exit 1
+        fi
+    fi
+
+# If doing old-stable install, check if version specified
+elif [ "$ITYPE" = "old-stable" ]; then
+    if [ "$#" -eq 0 ];then
+        ITYPE="stable"
+    else
+        if [ "$(echo "$1" | grep -E '^(3003|3004|3005)$')" != "" ]; then
+            STABLE_REV="$1"
+            ITYPE="stable"
+            shift
+        elif [ "$(echo "$1" | grep -E '^([3-9][0-5]{3}(\.[0-9]*)?)$')" != "" ]; then
             # Handle the 3xxx.0 version as 3xxx archive (pin to minor) and strip the fake ".0" suffix
+            ITYPE="stable"
             STABLE_REV=$(echo "$1" | sed -E 's/^([3-9][0-9]{3})\.0$/\1/')
             if [ "$(uname)" != "Darwin" ]; then
                 STABLE_REV="archive/$STABLE_REV"
             fi
             shift
         else
-            echo "Unknown stable version: $1 (valid: 1.6, 1.7, 2014.1, 2014.7, 2015.5, 2015.8, 2016.3, 2016.11, 2017.7, 2018.3, 2019.2, 3000, 3001, 3002, 3003, 3004, latest, \$MAJOR.\$MINOR.\$PATCH until 2019.2, \$MAJOR or \$MAJOR.\$PATCH starting from 3000)"
+            echo "Unknown old stable version: $1 (valid: 3003, 3004, 3005)"
             exit 1
         fi
     fi
+
+elif [ "$ITYPE" = "onedir" ]; then
+    if [ "$#" -eq 0 ];then
+        ONEDIR_REV="latest"
+    else
+        if [ "$(echo "$1" | grep -E '^(nightly|latest|3005|3006)$')" != "" ]; then
+            ONEDIR_REV="$1"
+            shift
+        elif [ "$(echo "$1" | grep -E '^(3005(\.[0-9]*)?)')" != "" ]; then
+            # Handle the 3005.0 version as 3005 archive (pin to minor) and strip the fake ".0" suffix
+            ONEDIR_REV=$(echo "$1" | sed -E 's/^(3005)\.0$/\1/')
+            ONEDIR_REV="minor/$ONEDIR_REV"
+            shift
+        elif [ "$(echo "$1" | grep -E '^([3-9][0-9]{3}(\.[0-9]*)?)')" != "" ]; then
+            ONEDIR_REV="minor/$1"
+            shift
+        else
+            echo "Unknown onedir version: $1 (valid: 3005, 3006, latest, nightly.)"
+            exit 1
+        fi
+    fi
+
+elif [ "$ITYPE" = "onedir_rc" ]; then
+    # Change the _ONEDIR_DIR to be the location for the RC packages
+    _ONEDIR_DIR="salt_rc/salt"
+
+    # Change ITYPE to onedir so we use the regular onedir functions
+    ITYPE="onedir"
+
+    if [ "$#" -eq 0 ];then
+        ONEDIR_REV="latest"
+    else
+        if [ "$(echo "$1" | grep -E '^(latest)$')" != "" ]; then
+            ONEDIR_REV="$1"
+            shift
+        elif [ "$(echo "$1" | grep -E '^([3-9][0-9]{3}?rc[0-9]-[0-9]$)')" != "" ]; then
+            # Handle the 3xxx.0 version as 3xxx archive (pin to minor) and strip the fake ".0" suffix
+            #ONEDIR_REV=$(echo "$1" | sed -E 's/^([3-9][0-9]{3})\.0$/\1/')
+            ONEDIR_REV="minor/$1"
+            shift
+        elif [ "$(echo "$1" | grep -E '^([3-9][0-9]{3}\.[0-9]?rc[0-9]$)')" != "" ]; then
+            # Handle the 3xxx.0 version as 3xxx archive (pin to minor) and strip the fake ".0" suffix
+            #ONEDIR_REV=$(echo "$1" | sed -E 's/^([3-9][0-9]{3})\.0$/\1/')
+            ONEDIR_REV="minor/$1"
+            shift
+        else
+            echo "Unknown onedir_rc version: $1 (valid: 3005-1, latest.)"
+            exit 1
+        fi
+    fi
+fi
+
+# Doing a quick start, so install master
+# set master address to 127.0.0.1
+if [ "$_QUICK_START" -eq "$BS_TRUE" ]; then
+  # make install type is stable
+  ITYPE="stable"
+
+  # make sure the revision is latest
+  STABLE_REV="latest"
+  ONEDIR_REV="latest"
+
+  # make sure we're installing the master
+  _INSTALL_MASTER=$BS_TRUE
+
+  # override incase install minion
+  # is set to false
+  _INSTALL_MINION=$BS_TRUE
+
+  # Set master address to loopback IP
+  _SALT_MASTER_ADDRESS="127.0.0.1"
+
+  # Auto accept the minion key
+  # when the install is done.
+  _AUTO_ACCEPT_MINION_KEYS=$BS_TRUE
 fi
 
 # Check for any unparsed arguments. Should be an error.
@@ -824,6 +947,18 @@ __fetch_verify() {
     return 1
 }
 
+#---  FUNCTION  -------------------------------------------------------------------------------------------------------
+#         NAME:  __check_url_exists
+#  DESCRIPTION:  Checks if a URL exists
+#----------------------------------------------------------------------------------------------------------------------
+__check_url_exists() {
+  _URL="$1"
+  if curl --output /dev/null --silent --fail "${_URL}"; then
+    return 0
+  else
+    return 1
+  fi
+}
 #---  FUNCTION  -------------------------------------------------------------------------------------------------------
 #          NAME:  __gather_hardware_info
 #   DESCRIPTION:  Discover hardware information
@@ -945,7 +1080,7 @@ __strip_duplicates() {
 __sort_release_files() {
     KNOWN_RELEASE_FILES=$(echo "(arch|alpine|centos|debian|ubuntu|fedora|redhat|suse|\
         mandrake|mandriva|gentoo|slackware|turbolinux|unitedlinux|void|lsb|system|\
-        oracle|os)(-|_)(release|version)" | sed -E 's:[[:space:]]::g')
+        oracle|os|almalinux|rocky)(-|_)(release|version)" | sed -E 's:[[:space:]]::g')
     primary_release_files=""
     secondary_release_files=""
     # Sort know VS un-known files first
@@ -959,7 +1094,7 @@ __sort_release_files() {
     done
 
     # Now let's sort by know files importance, max important goes last in the max_prio list
-    max_prio="redhat-release centos-release oracle-release fedora-release"
+    max_prio="redhat-release centos-release oracle-release fedora-release almalinux-release rocky-release"
     for entry in $max_prio; do
         if [ "$(echo "${primary_release_files}" | grep "$entry")" != "" ]; then
             primary_release_files=$(echo "${primary_release_files}" | sed -e "s:\\(.*\\)\\($entry\\)\\(.*\\):\\2 \\1 \\3:g")
@@ -1028,6 +1163,8 @@ __gather_linux_system_info() {
         elif [ "${DISTRO_NAME}" = "Arch" ]; then
             DISTRO_NAME="Arch Linux"
             return
+        elif [ "${DISTRO_NAME}" = "Rocky" ]; then
+            DISTRO_NAME="Rocky Linux"
         fi
         rv=$(lsb_release -sr)
         [ "${rv}" != "" ] && DISTRO_VERSION=$(__parse_version_string "$rv")
@@ -1086,6 +1223,8 @@ __gather_linux_system_info() {
             unitedlinux        ) n="UnitedLinux"    ;;
             void               ) n="VoidLinux"      ;;
             oracle             ) n="Oracle Linux"   ;;
+            almalinux          ) n="AlmaLinux"      ;;
+            rocky              ) n="Rocky Linux"    ;;
             system             )
                 while read -r line; do
                     [ "${n}x" != "systemx" ] && break
@@ -1308,7 +1447,7 @@ __gather_system_info() {
 #----------------------------------------------------------------------------------------------------------------------
 # shellcheck disable=SC2034
 __ubuntu_derivatives_translation() {
-    UBUNTU_DERIVATIVES="(trisquel|linuxmint|linaro|elementary_os|neon)"
+    UBUNTU_DERIVATIVES="(trisquel|linuxmint|linaro|elementary_os|neon|pop)"
     # Mappings
     trisquel_6_ubuntu_base="12.04"
     linuxmint_13_ubuntu_base="12.04"
@@ -1321,6 +1460,8 @@ __ubuntu_derivatives_translation() {
     neon_16_ubuntu_base="16.04"
     neon_18_ubuntu_base="18.04"
     neon_20_ubuntu_base="20.04"
+    neon_22_ubuntu_base="22.04"
+    pop_22_ubuntu_base="22.04"
 
     # Translate Ubuntu derivatives to their base Ubuntu version
     match=$(echo "$DISTRO_NAME_L" | grep -E ${UBUNTU_DERIVATIVES})
@@ -1380,9 +1521,13 @@ __check_dpkg_architecture() {
             if [ "$_CUSTOM_REPO_URL" != "null" ]; then
                 warn_msg="Support for arm64 is experimental, make sure the custom repository used has the expected structure and contents."
             else
-                # Saltstack official repository does not yet have arm64 metadata,
-                # use amd64 repositories on arm64, since all pkgs are arch-independent
-                __REPO_ARCH="amd64"
+                # Saltstack official repository has arm64 metadata beginning with Debian 11,
+                # use amd64 repositories on arm64 for anything older, since all pkgs are arch-independent
+                if [ "$DISTRO_NAME_L" = "debian" ] || [ "$DISTRO_MAJOR_VERSION" -lt 11 ]; then
+                  __REPO_ARCH="amd64"
+                else
+                  __REPO_ARCH="arm64"
+                fi
                 __REPO_ARCH_DEB="deb [signed-by=/usr/share/keyrings/salt-archive-keyring.gpg arch=$__REPO_ARCH]"
                 warn_msg="Support for arm64 packages is experimental and might rely on architecture-independent packages from the amd64 repository."
             fi
@@ -1462,6 +1607,9 @@ __ubuntu_codename_translation() {
         "21")
             DISTRO_CODENAME="hirsute"
             ;;
+        "22")
+            DISTRO_CODENAME="jammy"
+            ;;
         *)
             DISTRO_CODENAME="trusty"
             ;;
@@ -1488,10 +1636,12 @@ __debian_derivatives_translation() {
     devuan_1_debian_base="8.0"
     devuan_2_debian_base="9.0"
     kali_1_debian_base="7.0"
+    kali_2021_debian_base="10.0"
     linuxmint_1_debian_base="8.0"
     raspbian_8_debian_base="8.0"
     raspbian_9_debian_base="9.0"
     raspbian_10_debian_base="10.0"
+    raspbian_11_debian_base="11.0"
     bunsenlabs_9_debian_base="9.0"
     turnkey_9_debian_base="9.0"
 
@@ -1590,11 +1740,13 @@ __check_end_of_life_versions() {
             #  = 17.04, 17.10
             #  = 18.10
             #  = 19.04, 19.10
+            #  = 20.10
             if [ "$DISTRO_MAJOR_VERSION" -lt 16 ] || \
                 [ "$DISTRO_MAJOR_VERSION" -eq 17 ] || \
                 [ "$DISTRO_MAJOR_VERSION" -eq 19 ] || \
                 { [ "$DISTRO_MAJOR_VERSION" -eq 16 ] && [ "$DISTRO_MINOR_VERSION" -eq 10 ]; } || \
-                { [ "$DISTRO_MAJOR_VERSION" -eq 18 ] && [ "$DISTRO_MINOR_VERSION" -eq 10 ]; }; then
+                { [ "$DISTRO_MAJOR_VERSION" -eq 18 ] && [ "$DISTRO_MINOR_VERSION" -eq 10 ]; } || \
+                { [ "$DISTRO_MAJOR_VERSION" -eq 20 ] && [ "$DISTRO_MINOR_VERSION" -eq 10 ]; }; then
                 echoerror "End of life distributions are not supported."
                 echoerror "Please consider upgrading to the next stable. See:"
                 echoerror "    https://wiki.ubuntu.com/Releases"
@@ -1812,14 +1964,14 @@ elif [ "${DISTRO_NAME_L}" = "debian" ]; then
   __debian_codename_translation
 fi
 
-if [ "$(echo "${DISTRO_NAME_L}" | grep -E '(debian|ubuntu|centos|gentoo|red_hat|oracle|scientific|amazon|fedora|macosx)')" = "" ] && [ "$ITYPE" = "stable" ] && [ "$STABLE_REV" != "latest" ]; then
+if [ "$(echo "${DISTRO_NAME_L}" | grep -E '(debian|ubuntu|centos|gentoo|red_hat|oracle|scientific|amazon|fedora|macosx|almalinux|rocky)')" = "" ] && [ "$ITYPE" = "stable" ] && [ "$STABLE_REV" != "latest" ]; then
     echoerror "${DISTRO_NAME} does not have major version pegged packages support"
     exit 1
 fi
 
 # Only RedHat based distros have testing support
 if [ "${ITYPE}" = "testing" ]; then
-    if [ "$(echo "${DISTRO_NAME_L}" | grep -E '(centos|red_hat|amazon|oracle)')" = "" ]; then
+    if [ "$(echo "${DISTRO_NAME_L}" | grep -E '(centos|red_hat|amazon|oracle|almalinux|rocky)')" = "" ]; then
         echoerror "${DISTRO_NAME} does not have testing packages support"
         exit 1
     fi
@@ -1850,10 +2002,6 @@ if [ "$ITYPE" = "git" ]; then
                 if [ "$__NEW_VS_TAG_REGEX_MATCH" = "MATCH" ]; then
                     _POST_NEON_INSTALL=$BS_TRUE
                     __TAG_REGEX_MATCH="${__NEW_VS_TAG_REGEX_MATCH}"
-                    if [ "$(echo "${GIT_REV}" | cut -c -1)" != "v" ]; then
-                        # We do this to properly clone tags
-                        GIT_REV="v${GIT_REV}"
-                    fi
                     echodebug "Post Neon Tag Regex Match On: ${GIT_REV}"
                 else
                     __TAG_REGEX_MATCH=$(echo "${GIT_REV}" | sed -E 's/^(v?[0-9]{1,4}\.[0-9]{1,2})(\.[0-9]{1,2})?.*$/MATCH/')
@@ -1865,10 +2013,6 @@ if [ "$ITYPE" = "git" ]; then
                 if [ "$__NEW_VS_TAG_REGEX_MATCH" = "MATCH" ]; then
                     _POST_NEON_INSTALL=$BS_TRUE
                     __TAG_REGEX_MATCH="${__NEW_VS_TAG_REGEX_MATCH}"
-                    if [ "$(echo "${GIT_REV}" | cut -c -1)" != "v" ]; then
-                        # We do this to properly clone tags
-                        GIT_REV="v${GIT_REV}"
-                    fi
                     echodebug "Post Neon Tag Regex Match On: ${GIT_REV}"
                 else
                     __TAG_REGEX_MATCH=$(echo "${GIT_REV}" | sed 's/^.*\(v\?[[:digit:]]\{1,4\}\.[[:digit:]]\{1,2\}\)\(\.[[:digit:]]\{1,2\}\)\?.*$/MATCH/')
@@ -2031,20 +2175,13 @@ __rpm_import_gpg() {
 #----------------------------------------------------------------------------------------------------------------------
 __yum_install_noinput() {
 
-    ENABLE_EPEL_CMD=""
-    # Skip Amazon Linux for the first round, since EPEL is no longer required.
-    # See issue #724
-    if [ $_DISABLE_REPOS -eq $BS_FALSE ] && [ "$DISTRO_NAME_L" != "amazon_linux_ami" ]; then
-        ENABLE_EPEL_CMD="--enablerepo=${_EPEL_REPO}"
-    fi
-
     if [ "$DISTRO_NAME_L" = "oracle_linux" ]; then
         # We need to install one package at a time because --enablerepo=X disables ALL OTHER REPOS!!!!
         for package in "${@}"; do
-            yum -y install "${package}" || yum -y install "${package}" ${ENABLE_EPEL_CMD} || return $?
+            yum -y install "${package}" || yum -y install "${package}" || return $?
         done
     else
-        yum -y install "${@}" ${ENABLE_EPEL_CMD} || return $?
+        yum -y install "${@}" || return $?
     fi
 }   # ----------  end of function __yum_install_noinput  ----------
 
@@ -2057,6 +2194,15 @@ __dnf_install_noinput() {
     dnf -y install "${@}" || return $?
 }   # ----------  end of function __dnf_install_noinput  ----------
 
+#---  FUNCTION  -------------------------------------------------------------------------------------------------------
+#          NAME:  __tdnf_install_noinput
+#   DESCRIPTION:  (DRY) dnf install with noinput options
+#----------------------------------------------------------------------------------------------------------------------
+__tdnf_install_noinput() {
+
+    tdnf -y install "${@}" || return $?
+}   # ----------  end of function __tdnf_install_noinput  ----------
+
 #---  FUNCTION  -------------------------------------------------------------------------------------------------------
 #          NAME:  __git_clone_and_checkout
 #   DESCRIPTION:  (DRY) Helper function to clone and checkout salt to a
@@ -2582,7 +2728,7 @@ __activate_virtualenv() {
 #          NAME:  __install_pip_pkgs
 #   DESCRIPTION:  Return 0 or 1 if successfully able to install pip packages. Can provide a different python version to
 #                 install pip packages with. If $py_ver is not specified it will use the default python version.
-#    PARAMETERS:  pkgs, py_ver
+#    PARAMETERS:  pkgs, py_ver, upgrade
 #----------------------------------------------------------------------------------------------------------------------
 
 __install_pip_pkgs() {
@@ -2751,15 +2897,15 @@ EOM
     fi
 
     echodebug "Running '${_pip_cmd} install wheel ${_setuptools_dep}'"
-    ${_pip_cmd} install ${_POST_NEON_PIP_INSTALL_ARGS} wheel "${_setuptools_dep}"
+    ${_pip_cmd} install --upgrade ${_POST_NEON_PIP_INSTALL_ARGS} wheel "${_setuptools_dep}"
 
     echoinfo "Installing salt using ${_py_exe}"
     cd "${_SALT_GIT_CHECKOUT_DIR}" || return 1
 
     mkdir /tmp/git/deps
     echoinfo "Downloading Salt Dependencies from PyPi"
-    echodebug "Running '${_pip_cmd} download -d /tmp/git/deps .'"
-    ${_pip_cmd} download -d /tmp/git/deps . || (echo "Failed to download salt dependencies" && return 1)
+    echodebug "Running '${_pip_cmd} download -d /tmp/git/deps ${_PIP_DOWNLOAD_ARGS} .'"
+    ${_pip_cmd} download -d /tmp/git/deps ${_PIP_DOWNLOAD_ARGS} . || (echo "Failed to download salt dependencies" && return 1)
 
     echoinfo "Installing Downloaded Salt Dependencies"
     echodebug "Running '${_pip_cmd} install --ignore-installed ${_POST_NEON_PIP_INSTALL_ARGS} /tmp/git/deps/*'"
@@ -2918,7 +3064,8 @@ __enable_universe_repository() {
 __install_saltstack_ubuntu_repository() {
     # Workaround for latest non-LTS Ubuntu
     if { [ "$DISTRO_MAJOR_VERSION" -eq 20 ] && [ "$DISTRO_MINOR_VERSION" -eq 10 ]; } || \
-        { [ "$DISTRO_MAJOR_VERSION" -eq 21 ] && [ "$DISTRO_MINOR_VERSION" -eq 04 ]; }; then
+        # remove 22 version when salt packages for 22.04 are available
+        [ "$DISTRO_MAJOR_VERSION" -eq 21 ] ||  [ "$DISTRO_MAJOR_VERSION" -eq 22 ]; then
         echowarn "Non-LTS Ubuntu detected, but stable packages requested. Trying packages for previous LTS release. You may experience problems."
         UBUNTU_VERSION=20.04
         UBUNTU_CODENAME="focal"
@@ -2957,6 +3104,58 @@ __install_saltstack_ubuntu_repository() {
     __wait_for_apt apt-get update || return 1
 }
 
+__install_saltstack_ubuntu_onedir_repository() {
+    # Workaround for latest non-LTS Ubuntu
+    if { [ "$DISTRO_MAJOR_VERSION" -eq 20 ] && [ "$DISTRO_MINOR_VERSION" -eq 10 ]; } || \
+        [ "$DISTRO_MAJOR_VERSION" -eq 21 ]; then
+        echowarn "Non-LTS Ubuntu detected, but stable packages requested. Trying packages for previous LTS release. You may experience problems."
+        UBUNTU_VERSION=20.04
+        UBUNTU_CODENAME="focal"
+    else
+        UBUNTU_VERSION=${DISTRO_VERSION}
+        UBUNTU_CODENAME=${DISTRO_CODENAME}
+    fi
+
+    # Install downloader backend for GPG keys fetching
+    __PACKAGES='wget'
+
+    # Required as it is not installed by default on Ubuntu 18+
+    if [ "$DISTRO_MAJOR_VERSION" -ge 18 ]; then
+        __PACKAGES="${__PACKAGES} gnupg"
+    fi
+
+    # Make sure https transport is available
+    if [ "$HTTP_VAL" = "https" ] ; then
+        __PACKAGES="${__PACKAGES} apt-transport-https ca-certificates"
+    fi
+
+    # shellcheck disable=SC2086,SC2090
+    __apt_get_install_noinput ${__PACKAGES} || return 1
+
+    __PY_VERSION_REPO="apt"
+    if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
+        __PY_VERSION_REPO="py3"
+    fi
+
+    # SaltStack's stable Ubuntu repository:
+    SALTSTACK_UBUNTU_URL="${HTTP_VAL}://${_REPO_URL}/${_ONEDIR_DIR}/${__PY_VERSION_REPO}/ubuntu/${UBUNTU_VERSION}/${__REPO_ARCH}/${ONEDIR_REV}/"
+    if [ "${ONEDIR_REV}" = "nightly" ] ; then
+        SALTSTACK_UBUNTU_URL="${HTTP_VAL}://${_REPO_URL}/${_ONEDIR_NIGHTLY_DIR}/${__PY_VERSION_REPO}/ubuntu/${UBUNTU_VERSION}/${__REPO_ARCH}/"
+    fi
+    echo "$__REPO_ARCH_DEB $SALTSTACK_UBUNTU_URL $UBUNTU_CODENAME main" > /etc/apt/sources.list.d/salt.list
+
+    if [ "$(echo "${ONEDIR_REV}" | grep -E '(3004|3005)')" != "" ]; then
+      __apt_key_fetch "${SALTSTACK_UBUNTU_URL}salt-archive-keyring.gpg" || return 1
+    elif [ "$(echo "${ONEDIR_REV}" | grep -E '(latest|nightly)')" != "" ]; then
+      __apt_key_fetch "${SALTSTACK_UBUNTU_URL}salt-archive-keyring.gpg" || \
+      __apt_key_fetch "${SALTSTACK_UBUNTU_URL}SALT-PROJECT-GPG-PUBKEY-2023.gpg" || return 1
+    else
+      __apt_key_fetch "${SALTSTACK_UBUNTU_URL}SALT-PROJECT-GPG-PUBKEY-2023.gpg" || return 1
+    fi
+
+    __wait_for_apt apt-get update || return 1
+}
+
 install_ubuntu_deps() {
     if [ $_DISABLE_REPOS -eq $BS_FALSE ]; then
         # Install add-apt-repository
@@ -3032,7 +3231,7 @@ install_ubuntu_stable_deps() {
 
     if [ "${_UPGRADE_SYS}" -eq $BS_TRUE ]; then
         if [ "${_INSECURE_DL}" -eq $BS_TRUE ]; then
-            if [ "$DISTRO_MAJOR_VERSION" -ge 20 ] || [ "$DISTRO_MAJOR_VERSION" -ge 21 ]; then
+            if [ "$DISTRO_MAJOR_VERSION" -ge 20 ] || [ "$DISTRO_MAJOR_VERSION" -ge 21 ] || [ "$DISTRO_MAJOR_VERSION" -ge 22 ]; then
                 __apt_get_install_noinput --allow-unauthenticated debian-archive-keyring && apt-get update || return 1
             else
                 __apt_get_install_noinput --allow-unauthenticated debian-archive-keyring &&
@@ -3113,6 +3312,9 @@ install_ubuntu_git_deps() {
         fi
     else
         __PACKAGES="python${PY_PKG_VER}-dev python${PY_PKG_VER}-pip python${PY_PKG_VER}-setuptools gcc"
+        if [ "$DISTRO_MAJOR_VERSION" -ge 22 ]; then
+            __PACKAGES="${__PACKAGES} g++"
+        fi
         # shellcheck disable=SC2086
         __apt_get_install_noinput ${__PACKAGES} || return 1
     fi
@@ -3126,6 +3328,44 @@ install_ubuntu_git_deps() {
     return 0
 }
 
+install_ubuntu_onedir_deps() {
+    if [ "${_SLEEP}" -eq "${__DEFAULT_SLEEP}" ] && [ "$DISTRO_MAJOR_VERSION" -lt 16 ]; then
+        # The user did not pass a custom sleep value as an argument, let's increase the default value
+        echodebug "On Ubuntu systems we increase the default sleep value to 10."
+        echodebug "See https://github.com/saltstack/salt/issues/12248 for more info."
+        _SLEEP=10
+    fi
+
+    if [ $_START_DAEMONS -eq $BS_FALSE ]; then
+        echowarn "Not starting daemons on Debian based distributions is not working mostly because starting them is the default behaviour."
+    fi
+
+    # No user interaction, libc6 restart services for example
+    export DEBIAN_FRONTEND=noninteractive
+
+    __wait_for_apt apt-get update || return 1
+
+    if [ "${_UPGRADE_SYS}" -eq $BS_TRUE ]; then
+        if [ "${_INSECURE_DL}" -eq $BS_TRUE ]; then
+            if [ "$DISTRO_MAJOR_VERSION" -ge 20 ] || [ "$DISTRO_MAJOR_VERSION" -ge 21 ]; then
+                __apt_get_install_noinput --allow-unauthenticated debian-archive-keyring && apt-get update || return 1
+            else
+                __apt_get_install_noinput --allow-unauthenticated debian-archive-keyring &&
+                    apt-key update && apt-get update || return 1
+            fi
+        fi
+
+        __apt_get_upgrade_noinput || return 1
+    fi
+
+    if [ "$_DISABLE_REPOS" -eq "$BS_FALSE" ] || [ "$_CUSTOM_REPO_URL" != "null" ]; then
+        __check_dpkg_architecture || return 1
+        __install_saltstack_ubuntu_onedir_repository || return 1
+    fi
+
+    install_ubuntu_deps || return 1
+}
+
 install_ubuntu_stable() {
     __PACKAGES=""
 
@@ -3170,7 +3410,15 @@ install_ubuntu_git() {
         _POST_NEON_PIP_INSTALL_ARGS=""
         __install_salt_from_repo_post_neon "${_PY_EXE}" || return 1
         cd "${_SALT_GIT_CHECKOUT_DIR}" || return 1
-        sed -i 's:/usr/bin:/usr/local/bin:g' pkg/*.service
+
+        # Account for new path for services files in later releases
+        if [ -d "pkg/common" ]; then
+          _SERVICE_DIR="pkg/common"
+        else
+          _SERVICE_DIR="pkg"
+        fi
+
+        sed -i 's:/usr/bin:/usr/local/bin:g' ${_SERVICE_DIR}/*.service
         return 0
     fi
 
@@ -3185,6 +3433,28 @@ install_ubuntu_git() {
     return 0
 }
 
+install_ubuntu_onedir() {
+    __PACKAGES=""
+
+    if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ];then
+        __PACKAGES="${__PACKAGES} salt-cloud"
+    fi
+    if [ "$_INSTALL_MASTER" -eq $BS_TRUE ]; then
+        __PACKAGES="${__PACKAGES} salt-master"
+    fi
+    if [ "$_INSTALL_MINION" -eq $BS_TRUE ]; then
+        __PACKAGES="${__PACKAGES} salt-minion"
+    fi
+    if [ "$_INSTALL_SYNDIC" -eq $BS_TRUE ]; then
+        __PACKAGES="${__PACKAGES} salt-syndic"
+    fi
+
+    # shellcheck disable=SC2086
+    __apt_get_install_noinput ${__PACKAGES} || return 1
+
+    return 0
+}
+
 install_ubuntu_stable_post() {
     for fname in api master minion syndic; do
         # Skip salt-api since the service should be opt-in and not necessarily started on boot
@@ -3220,8 +3490,15 @@ install_ubuntu_git_post() {
         [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
         [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
 
+        # Account for new path for services files in later releases
+        if [ -f "${_SALT_GIT_CHECKOUT_DIR}/pkg/common/salt-${fname}.service" ]; then
+          _SERVICE_DIR="${_SALT_GIT_CHECKOUT_DIR}/pkg/common"
+        else
+          _SERVICE_DIR="${_SALT_GIT_CHECKOUT_DIR}/pkg"
+        fi
+
         if [ -f /bin/systemctl ] && [ "$DISTRO_MAJOR_VERSION" -ge 16 ]; then
-            __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/salt-${fname}.service" "/lib/systemd/system/salt-${fname}.service"
+            __copyfile "${_SERVICE_DIR}/salt-${fname}.service" "/lib/systemd/system/salt-${fname}.service"
 
             # Skip salt-api since the service should be opt-in and not necessarily started on boot
             [ $fname = "api" ] && continue
@@ -3236,8 +3513,8 @@ install_ubuntu_git_post() {
             if [ ! -f $_upstart_conf ]; then
                 # upstart does not know about our service, let's copy the proper file
                 echowarn "Upstart does not appear to know about salt-$fname"
-                echodebug "Copying ${_SALT_GIT_CHECKOUT_DIR}/pkg/salt-$fname.upstart to $_upstart_conf"
-                __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/salt-${fname}.upstart" "$_upstart_conf"
+                echodebug "Copying ${_SERVICE_DIR}/salt-$fname.upstart to $_upstart_conf"
+                __copyfile "${_SERVICE_DIR}/salt-${fname}.upstart" "$_upstart_conf"
                 # Set service to know about virtualenv
                 if [ "${_VIRTUALENV_DIR}" != "null" ]; then
                     echo "SALT_USE_VIRTUALENV=${_VIRTUALENV_DIR}" > /etc/default/salt-${fname}
@@ -3349,17 +3626,8 @@ install_ubuntu_check_services() {
 #   Debian Install Functions
 #
 __install_saltstack_debian_repository() {
-    if [ "$DISTRO_MAJOR_VERSION" -eq 11 ]; then
-        # Packages for Debian 11 at repo.saltproject.io are not yet available
-        # Set up repository for Debian 10 for Debian 11 for now until support
-        # is available at repo.saltproject.io for Debian 11.
-        echowarn "Debian 11 distribution detected, but stable packages requested. Trying packages from Debian 10. You may experience problems."
-        DEBIAN_RELEASE="10"
-        DEBIAN_CODENAME="buster"
-    else
-        DEBIAN_RELEASE="$DISTRO_MAJOR_VERSION"
-        DEBIAN_CODENAME="$DISTRO_CODENAME"
-    fi
+    DEBIAN_RELEASE="$DISTRO_MAJOR_VERSION"
+    DEBIAN_CODENAME="$DISTRO_CODENAME"
 
     __PY_VERSION_REPO="apt"
     if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
@@ -3391,6 +3659,50 @@ __install_saltstack_debian_repository() {
     __wait_for_apt apt-get update || return 1
 }
 
+__install_saltstack_debian_onedir_repository() {
+    DEBIAN_RELEASE="$DISTRO_MAJOR_VERSION"
+    DEBIAN_CODENAME="$DISTRO_CODENAME"
+
+    __PY_VERSION_REPO="apt"
+    if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
+        __PY_VERSION_REPO="py3"
+    fi
+
+    # Install downloader backend for GPG keys fetching
+    __PACKAGES='wget'
+
+    # Required as it is not installed by default on Debian 9+
+    if [ "$DISTRO_MAJOR_VERSION" -ge 9 ]; then
+        __PACKAGES="${__PACKAGES} gnupg2"
+    fi
+
+    # Make sure https transport is available
+    if [ "$HTTP_VAL" = "https" ] ; then
+        __PACKAGES="${__PACKAGES} apt-transport-https ca-certificates"
+    fi
+
+    # shellcheck disable=SC2086,SC2090
+    __apt_get_install_noinput ${__PACKAGES} || return 1
+
+    # amd64 is just a part of repository URI, 32-bit pkgs are hosted under the same location
+    SALTSTACK_DEBIAN_URL="${HTTP_VAL}://${_REPO_URL}/${_ONEDIR_DIR}/${__PY_VERSION_REPO}/debian/${DEBIAN_RELEASE}/${__REPO_ARCH}/${ONEDIR_REV}/"
+    if [ "${ONEDIR_REV}" = "nightly" ] ; then
+        SALTSTACK_DEBIAN_URL="${HTTP_VAL}://${_REPO_URL}/${_ONEDIR_NIGHTLY_DIR}/${__PY_VERSION_REPO}/debian/${DEBIAN_RELEASE}/${__REPO_ARCH}/"
+    fi
+    echo "$__REPO_ARCH_DEB $SALTSTACK_DEBIAN_URL $DEBIAN_CODENAME main" > "/etc/apt/sources.list.d/salt.list"
+
+    if [ "$(echo "${ONEDIR_REV}" | grep -E '(3004|3005)')" != "" ]; then
+      __apt_key_fetch "${SALTSTACK_DEBIAN_URL}salt-archive-keyring.gpg" || return 1
+    elif [ "$(echo "${ONEDIR_REV}" | grep -E '(latest|nightly)')" != "" ]; then
+      __apt_key_fetch "${SALTSTACK_DEBIAN_URL}salt-archive-keyring.gpg" || \
+      __apt_key_fetch "${SALTSTACK_DEBIAN_URL}SALT-PROJECT-GPG-PUBKEY-2023.gpg" || return 1
+    else
+      __apt_key_fetch "${SALTSTACK_DEBIAN_URL}SALT-PROJECT-GPG-PUBKEY-2023.gpg" || return 1
+    fi
+
+    __wait_for_apt apt-get update || return 1
+}
+
 install_debian_deps() {
     if [ $_START_DAEMONS -eq $BS_FALSE ]; then
         echowarn "Not starting daemons on Debian based distributions is not working mostly because starting them is the default behaviour."
@@ -3444,6 +3756,59 @@ install_debian_deps() {
     return 0
 }
 
+install_debian_onedir_deps() {
+    if [ $_START_DAEMONS -eq $BS_FALSE ]; then
+        echowarn "Not starting daemons on Debian based distributions is not working mostly because starting them is the default behaviour."
+    fi
+
+    # No user interaction, libc6 restart services for example
+    export DEBIAN_FRONTEND=noninteractive
+
+    __wait_for_apt apt-get update || return 1
+
+    if [ "${_UPGRADE_SYS}" -eq $BS_TRUE ]; then
+        # Try to update GPG keys first if allowed
+        if [ "${_INSECURE_DL}" -eq $BS_TRUE ]; then
+            if [ "$DISTRO_MAJOR_VERSION" -ge 10 ]; then
+                __apt_get_install_noinput --allow-unauthenticated debian-archive-keyring && apt-get update || return 1
+            else
+                __apt_get_install_noinput --allow-unauthenticated debian-archive-keyring &&
+                    apt-key update && apt-get update || return 1
+            fi
+        fi
+
+        __apt_get_upgrade_noinput || return 1
+    fi
+
+    if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
+        PY_PKG_VER=3
+    else
+        PY_PKG_VER=""
+    fi
+
+    # Additionally install procps and pciutils which allows for Docker bootstraps. See 366#issuecomment-39666813
+    __PACKAGES='procps pciutils'
+
+    # YAML module is used for generating custom master/minion configs
+    __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-yaml"
+
+    # shellcheck disable=SC2086
+    __apt_get_install_noinput ${__PACKAGES} || return 1
+
+    if [ "$_DISABLE_REPOS" -eq "$BS_FALSE" ] || [ "$_CUSTOM_REPO_URL" != "null" ]; then
+        __check_dpkg_architecture || return 1
+        __install_saltstack_debian_onedir_repository || return 1
+    fi
+
+    if [ "${_EXTRA_PACKAGES}" != "" ]; then
+        echoinfo "Installing the following extra packages as requested: ${_EXTRA_PACKAGES}"
+        # shellcheck disable=SC2086
+        __apt_get_install_noinput ${_EXTRA_PACKAGES} || return 1
+    fi
+
+    return 0
+}
+
 install_debian_git_pre() {
     if ! __check_command_exists git; then
         __apt_get_install_noinput git || return 1
@@ -3692,7 +4057,15 @@ install_debian_git() {
         _POST_NEON_PIP_INSTALL_ARGS=""
         __install_salt_from_repo_post_neon "${_PY_EXE}" || return 1
         cd "${_SALT_GIT_CHECKOUT_DIR}" || return 1
-        sed -i 's:/usr/bin:/usr/local/bin:g' pkg/*.service
+
+        # Account for new path for services files in later releases
+        if [ -d "pkg/common" ]; then
+          _SERVICE_DIR="pkg/common"
+        else
+          _SERVICE_DIR="pkg"
+        fi
+
+        sed -i 's:/usr/bin:/usr/local/bin:g' ${_SERVICE_DIR}/*.service
         return 0
     fi
 
@@ -3720,6 +4093,28 @@ install_debian_9_git() {
     return 0
 }
 
+install_debian_onedir() {
+    __PACKAGES=""
+
+    if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ];then
+        __PACKAGES="${__PACKAGES} salt-cloud"
+    fi
+    if [ "$_INSTALL_MASTER" -eq $BS_TRUE ]; then
+        __PACKAGES="${__PACKAGES} salt-master"
+    fi
+    if [ "$_INSTALL_MINION" -eq $BS_TRUE ]; then
+        __PACKAGES="${__PACKAGES} salt-minion"
+    fi
+    if [ "$_INSTALL_SYNDIC" -eq $BS_TRUE ]; then
+        __PACKAGES="${__PACKAGES} salt-syndic"
+    fi
+
+    # shellcheck disable=SC2086
+    __apt_get_install_noinput ${__PACKAGES} || return 1
+
+    return 0
+}
+
 install_debian_git_post() {
     for fname in api master minion syndic; do
         # Skip if not meant to be installed
@@ -3729,16 +4124,23 @@ install_debian_git_post() {
         [ "$fname" = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
         [ "$fname" = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
 
+        # Account for new path for services files in later releases
+        if [ -f "${_SALT_GIT_CHECKOUT_DIR}/pkg/common/salt-${fname}.service" ]; then
+          _SERVICE_DIR="${_SALT_GIT_CHECKOUT_DIR}/pkg/common"
+        else
+          _SERVICE_DIR="${_SALT_GIT_CHECKOUT_DIR}/pkg"
+        fi
+
         # Configure SystemD for Debian 8 "Jessie" and later
         if [ -f /bin/systemctl ]; then
             if [ ! -f /lib/systemd/system/salt-${fname}.service ] || \
                 { [ -f /lib/systemd/system/salt-${fname}.service ] && [ $_FORCE_OVERWRITE -eq $BS_TRUE ]; }; then
-                if [ -f "${_SALT_GIT_CHECKOUT_DIR}/pkg/salt-${fname}.service" ]; then
-                    __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/salt-${fname}.service" /lib/systemd/system
-                    __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/salt-${fname}.environment" "/etc/default/salt-${fname}"
+                if [ -f "${_SERVICE_DIR}/salt-${fname}.service" ]; then
+                    __copyfile "${_SERVICE_DIR}/salt-${fname}.service" /lib/systemd/system
+                    __copyfile "${_SERVICE_DIR}/salt-${fname}.environment" "/etc/default/salt-${fname}"
                 else
                     # workaround before adding Debian-specific unit files to the Salt main repo
-                    __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/salt-${fname}.service" /lib/systemd/system
+                    __copyfile "${_SERVICE_DIR}/salt-${fname}.service" /lib/systemd/system
                     sed -i -e '/^Type/ s/notify/simple/' /lib/systemd/system/salt-${fname}.service
                 fi
             fi
@@ -3770,6 +4172,13 @@ install_debian_git_post() {
     done
 }
 
+install_debian_2021_post() {
+    # Kali 2021 (debian derivative) disables all network services by default
+    # Using archlinux post function to enable salt systemd services
+    install_arch_linux_post || return 1
+    return 0
+}
+
 install_debian_restart_daemons() {
     [ "$_START_DAEMONS" -eq $BS_FALSE ] && return 0
 
@@ -3826,6 +4235,41 @@ install_debian_check_services() {
 #   Fedora Install Functions
 #
 
+__install_saltstack_fedora_onedir_repository() {
+    if [ "$ITYPE" = "stable" ]; then
+        REPO_REV="$ONEDIR_REV"
+    else
+        REPO_REV="latest"
+    fi
+
+    __PY_VERSION_REPO="yum"
+    if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
+        __PY_VERSION_REPO="py3"
+    fi
+
+    GPG_KEY="SALT-PROJECT-GPG-PUBKEY-2023.pub"
+
+    REPO_FILE="/etc/yum.repos.d/salt.repo"
+
+    if [ ! -s "$REPO_FILE" ] || [ "$_FORCE_OVERWRITE" -eq $BS_TRUE ]; then
+        FETCH_URL="${HTTP_VAL}://${_REPO_URL}/${_ONEDIR_DIR}/${__PY_VERSION_REPO}/fedora/${DISTRO_MAJOR_VERSION}/${CPU_ARCH_L}/${ONEDIR_REV}"
+        if [ "${ONEDIR_REV}" = "nightly" ] ; then
+            FETCH_URL="${HTTP_VAL}://${_REPO_URL}/${_ONEDIR_NIGHTLY_DIR}/${__PY_VERSION_REPO}/fedora/${DISTRO_MAJOR_VERSION}/${CPU_ARCH_L}/"
+        fi
+
+        __fetch_url "${REPO_FILE}" "${FETCH_URL}.repo"
+
+        __rpm_import_gpg "${FETCH_URL}/${GPG_KEY}" || return 1
+
+        yum clean metadata || return 1
+    elif [ "$REPO_REV" != "latest" ]; then
+        echowarn "salt.repo already exists, ignoring salt version argument."
+        echowarn "Use -F (forced overwrite) to install $REPO_REV."
+    fi
+
+    return 0
+}
+
 install_fedora_deps() {
     if [ "$_UPGRADE_SYS" -eq $BS_TRUE ]; then
         dnf -y update || return 1
@@ -3985,6 +4429,9 @@ install_fedora_git_deps() {
             done
     else
         __PACKAGES="python${PY_PKG_VER}-devel python${PY_PKG_VER}-pip python${PY_PKG_VER}-setuptools gcc"
+        if [ "${DISTRO_VERSION}" -ge 35 ]; then
+            __PACKAGES="${__PACKAGES} gcc-c++"
+        fi
         # shellcheck disable=SC2086
         __dnf_install_noinput ${__PACKAGES} || return 1
     fi
@@ -4028,7 +4475,18 @@ install_fedora_git_post() {
         [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
         [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
 
-        __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/rpm/salt-${fname}.service" "/lib/systemd/system/salt-${fname}.service"
+        # Account for new path for services files in later releases
+        if [ -f "${_SALT_GIT_CHECKOUT_DIR}/pkg/common/salt-${fname}.service" ]; then
+          _SERVICE_DIR="${_SALT_GIT_CHECKOUT_DIR}/pkg/common"
+        else
+          _SERVICE_DIR="${_SALT_GIT_CHECKOUT_DIR}/pkg/rpm"
+        fi
+        __copyfile "${_SERVICE_DIR}/salt-${fname}.service" "/lib/systemd/system/salt-${fname}.service"
+
+        # Salt executables are located under `/usr/local/bin/` on Fedora 36+
+        #if [ "${DISTRO_VERSION}" -ge 36 ]; then
+        #  sed -i -e 's:/usr/bin/:/usr/local/bin/:g' /lib/systemd/system/salt-*.service
+        #fi
 
         # Skip salt-api since the service should be opt-in and not necessarily started on boot
         [ $fname = "api" ] && continue
@@ -4076,6 +4534,83 @@ install_fedora_check_services() {
 
     return 0
 }
+
+install_fedora_onedir_deps() {
+
+    if [ "$_UPGRADE_SYS" -eq $BS_TRUE ]; then
+        yum -y update || return 1
+    fi
+
+    if [ "$_DISABLE_REPOS" -eq "$BS_TRUE" ] && [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
+        echowarn "Detected -r or -R option while installing Salt packages for Python 3."
+        echowarn "Python 3 packages for older Salt releases requires the EPEL repository to be installed."
+        echowarn "Installing the EPEL repository automatically is disabled when using the -r or -R options."
+    fi
+
+    if [ "$_DISABLE_REPOS" -eq "$BS_FALSE" ]; then
+        __install_saltstack_fedora_onedir_repository || return 1
+    fi
+
+    # If -R was passed, we need to configure custom repo url with rsync-ed packages
+    # Which is still handled in __install_saltstack_rhel_repository. This call has
+    # its own check in case -r was passed without -R.
+    if [ "$_CUSTOM_REPO_URL" != "null" ]; then
+        __install_saltstack_fedora_onedir_repository || return 1
+    fi
+
+    if [ "$DISTRO_MAJOR_VERSION" -ge 8 ]; then
+        __PACKAGES="dnf-utils chkconfig"
+    else
+        __PACKAGES="yum-utils chkconfig"
+    fi
+
+    __PACKAGES="${__PACKAGES} procps"
+
+    # shellcheck disable=SC2086
+    __yum_install_noinput ${__PACKAGES} || return 1
+
+    if [ "${_EXTRA_PACKAGES}" != "" ]; then
+        echoinfo "Installing the following extra packages as requested: ${_EXTRA_PACKAGES}"
+        # shellcheck disable=SC2086
+        __yum_install_noinput ${_EXTRA_PACKAGES} || return 1
+    fi
+
+    return 0
+
+}
+
+
+install_fedora_onedir() {
+    STABLE_REV=$ONEDIR_REV
+    #install_fedora_stable || return 1
+
+    __PACKAGES=""
+
+    if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ];then
+        __PACKAGES="${__PACKAGES} salt-cloud"
+    fi
+    if [ "$_INSTALL_MASTER" -eq $BS_TRUE ];then
+        __PACKAGES="${__PACKAGES} salt-master"
+    fi
+    if [ "$_INSTALL_MINION" -eq $BS_TRUE ]; then
+        __PACKAGES="${__PACKAGES} salt-minion"
+    fi
+    if [ "$_INSTALL_SYNDIC" -eq $BS_TRUE ];then
+        __PACKAGES="${__PACKAGES} salt-syndic"
+    fi
+
+    # shellcheck disable=SC2086
+    __yum_install_noinput ${__PACKAGES} || return 1
+
+    return 0
+}
+
+install_fedora_onedir_post() {
+    STABLE_REV=$ONEDIR_REV
+    install_fedora_stable_post || return 1
+
+    return 0
+}
 #
 #   Ended Fedora Install Functions
 #
@@ -4085,27 +4620,13 @@ install_fedora_check_services() {
 #
 #   CentOS Install Functions
 #
-__install_epel_repository() {
-    if [ ${_EPEL_REPOS_INSTALLED} -eq $BS_TRUE ]; then
-        return 0
-    fi
-
-    # Check if epel repo is already enabled and flag it accordingly
-    if yum repolist | grep -q "^[!]\\?${_EPEL_REPO}/"; then
-        _EPEL_REPOS_INSTALLED=$BS_TRUE
-        return 0
-    fi
-
-    # Download latest 'epel-release' package for the distro version directly
-    epel_repo_url="${HTTP_VAL}://dl.fedoraproject.org/pub/epel/epel-release-latest-${DISTRO_MAJOR_VERSION}.noarch.rpm"
-    rpm -Uvh --force "$epel_repo_url" || return 1
-
-    _EPEL_REPOS_INSTALLED=$BS_TRUE
-
-    return 0
-}
-
 __install_saltstack_rhel_repository() {
+  if [ "${DISTRO_MAJOR_VERSION}" -ge 9 ]; then
+    echoerror "Old stable repository unavailable on RH variants greater than or equal to 9"
+    echoerror "Use the stable install type."
+    exit 1
+  fi
+
     if [ "$ITYPE" = "stable" ]; then
         repo_rev="$STABLE_REV"
     else
@@ -4120,7 +4641,19 @@ __install_saltstack_rhel_repository() {
     # Avoid using '$releasever' variable for yum.
     # Instead, this should work correctly on all RHEL variants.
     base_url="${HTTP_VAL}://${_REPO_URL}/${__PY_VERSION_REPO}/redhat/${DISTRO_MAJOR_VERSION}/\$basearch/${repo_rev}/"
-    gpg_key="SALTSTACK-GPG-KEY.pub"
+    if [ "${DISTRO_MAJOR_VERSION}" -eq 7 ]; then
+        gpg_key="SALTSTACK-GPG-KEY.pub base/RPM-GPG-KEY-CentOS-7"
+    elif [ "${DISTRO_MAJOR_VERSION}" -ge 9 ]; then
+        gpg_key="SALTSTACK-GPG-KEY2.pub"
+    else
+        gpg_key="SALTSTACK-GPG-KEY.pub"
+    fi
+
+    gpg_key_urls=""
+    for key in $gpg_key; do
+        gpg_key_urls=$(printf "${base_url}${key},%s" "$gpg_key_urls")
+    done
+
     repo_file="/etc/yum.repos.d/salt.repo"
 
     if [ ! -s "$repo_file" ] || [ "$_FORCE_OVERWRITE" -eq $BS_TRUE ]; then
@@ -4130,13 +4663,80 @@ name=SaltStack ${repo_rev} Release Channel for RHEL/CentOS \$releasever
 baseurl=${base_url}
 skip_if_unavailable=True
 gpgcheck=1
-gpgkey=${base_url}${gpg_key}
+gpgkey=${gpg_key_urls}
 enabled=1
 enabled_metadata=1
 _eof
 
         fetch_url="${HTTP_VAL}://${_REPO_URL}/${__PY_VERSION_REPO}/redhat/${DISTRO_MAJOR_VERSION}/${CPU_ARCH_L}/${repo_rev}/"
-        __rpm_import_gpg "${fetch_url}${gpg_key}" || return 1
+        for key in $gpg_key; do
+            __rpm_import_gpg "${fetch_url}${key}" || return 1
+        done
+
+        yum clean metadata || return 1
+    elif [ "$repo_rev" != "latest" ]; then
+        echowarn "salt.repo already exists, ignoring salt version argument."
+        echowarn "Use -F (forced overwrite) to install $repo_rev."
+    fi
+
+    return 0
+}
+
+__install_saltstack_rhel_onedir_repository() {
+    if [ "$ITYPE" = "stable" ]; then
+        repo_rev="$ONEDIR_REV"
+    else
+        repo_rev="latest"
+    fi
+
+    __PY_VERSION_REPO="yum"
+    if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
+        __PY_VERSION_REPO="py3"
+    fi
+
+    # Avoid using '$releasever' variable for yum.
+    # Instead, this should work correctly on all RHEL variants.
+    base_url="${HTTP_VAL}://${_REPO_URL}/${_ONEDIR_DIR}/${__PY_VERSION_REPO}/redhat/${DISTRO_MAJOR_VERSION}/\$basearch/${ONEDIR_REV}/"
+    if [ "${ONEDIR_REV}" = "nightly" ] ; then
+        base_url="${HTTP_VAL}://${_REPO_URL}/${_ONEDIR_NIGHTLY_DIR}/${__PY_VERSION_REPO}/redhat/${DISTRO_MAJOR_VERSION}/\$basearch/"
+    fi
+    if [ "$(echo "${ONEDIR_REV}" | grep -E '(3004|3005)')" != "" ] || [ "${ONEDIR_REV}" = "nightly" ]; then
+      if [ "${DISTRO_MAJOR_VERSION}" -eq 9 ]; then
+          gpg_key="SALTSTACK-GPG-KEY2.pub"
+      else
+          gpg_key="SALTSTACK-GPG-KEY.pub"
+      fi
+    else
+        gpg_key="SALT-PROJECT-GPG-PUBKEY-2023.pub"
+    fi
+
+    gpg_key_urls=""
+    for key in $gpg_key; do
+        gpg_key_urls=$(printf "${base_url}${key},%s" "$gpg_key_urls")
+    done
+
+    repo_file="/etc/yum.repos.d/salt.repo"
+
+    if [ ! -s "$repo_file" ] || [ "$_FORCE_OVERWRITE" -eq $BS_TRUE ]; then
+        cat <<_eof > "$repo_file"
+[saltstack]
+name=SaltStack ${repo_rev} Release Channel for RHEL/CentOS \$releasever
+baseurl=${base_url}
+skip_if_unavailable=True
+gpgcheck=1
+gpgkey=${gpg_key_urls}
+enabled=1
+enabled_metadata=1
+_eof
+
+        fetch_url="${HTTP_VAL}://${_REPO_URL}/${_ONEDIR_DIR}/${__PY_VERSION_REPO}/redhat/${DISTRO_MAJOR_VERSION}/${CPU_ARCH_L}/${ONEDIR_REV}/"
+        if [ "${ONEDIR_REV}" = "nightly" ] ; then
+            fetch_url="${HTTP_VAL}://${_REPO_URL}/${_ONEDIR_NIGHTLY_DIR}/${__PY_VERSION_REPO}/redhat/${DISTRO_MAJOR_VERSION}/${CPU_ARCH_L}/"
+        fi
+        for key in $gpg_key; do
+            __rpm_import_gpg "${fetch_url}${key}" || return 1
+        done
+
         yum clean metadata || return 1
     elif [ "$repo_rev" != "latest" ]; then
         echowarn "salt.repo already exists, ignoring salt version argument."
@@ -4158,7 +4758,6 @@ install_centos_stable_deps() {
     fi
 
     if [ "$_DISABLE_REPOS" -eq "$BS_FALSE" ]; then
-        __install_epel_repository || return 1
         __install_saltstack_rhel_repository || return 1
     fi
 
@@ -4179,27 +4778,29 @@ install_centos_stable_deps() {
         if [ "$DISTRO_MAJOR_VERSION" -ge 8 ]; then
             # YAML module is used for generating custom master/minion configs
             if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
-                __PACKAGES="${__PACKAGES} python3-pyyaml"
+                __PACKAGES="${__PACKAGES} python3-pyyaml python3-setuptools"
             else
                 __PACKAGES="${__PACKAGES} python2-pyyaml"
             fi
         elif [ "$DISTRO_MAJOR_VERSION" -eq 7 ]; then
             # YAML module is used for generating custom master/minion configs
             if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
-                __PACKAGES="${__PACKAGES} python36-PyYAML"
+                __PACKAGES="${__PACKAGES} python36-PyYAML python36-setuptools"
             else
                 __PACKAGES="${__PACKAGES} PyYAML"
             fi
         else
             # YAML module is used for generating custom master/minion configs
             if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
-                __PACKAGES="${__PACKAGES} python34-PyYAML"
+                __PACKAGES="${__PACKAGES} python34-PyYAML python34-setuptools"
             else
                 __PACKAGES="${__PACKAGES} PyYAML"
             fi
         fi
     fi
 
+    __PACKAGES="${__PACKAGES} procps"
+
     # shellcheck disable=SC2086
     __yum_install_noinput ${__PACKAGES} || return 1
 
@@ -4216,40 +4817,29 @@ install_centos_stable_deps() {
 install_centos_stable() {
     __PACKAGES=""
 
-    local cloud='salt-cloud'
-    local master='salt-master'
-    local minion='salt-minion'
-    local syndic='salt-syndic'
-
-    if echo "$STABLE_REV" | grep -q "archive";then # point release being applied
-        local ver=$(echo "$STABLE_REV"|awk -F/ '{print $2}') # strip archive/
-    elif echo "$STABLE_REV" | egrep -vq "archive|latest";then # latest or major version(3003, 3004, etc) being applie
-        local ver=$STABLE_REV
-    fi
-
-    if [ ! -z $ver ]; then
-        cloud+="-$ver"
-        master+="-$ver"
-        minion+="-$ver"
-        syndic+="-$ver"
-    fi
-
     if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ];then
-        __PACKAGES="${__PACKAGES} $cloud"
+        __PACKAGES="${__PACKAGES} salt-cloud"
     fi
     if [ "$_INSTALL_MASTER" -eq $BS_TRUE ];then
-        __PACKAGES="${__PACKAGES} $master"
+        __PACKAGES="${__PACKAGES} salt-master"
     fi
     if [ "$_INSTALL_MINION" -eq $BS_TRUE ]; then
-        __PACKAGES="${__PACKAGES} $minion"
+        __PACKAGES="${__PACKAGES} salt-minion"
     fi
     if [ "$_INSTALL_SYNDIC" -eq $BS_TRUE ];then
-        __PACKAGES="${__PACKAGES} $syndic"
+        __PACKAGES="${__PACKAGES} salt-syndic"
     fi
 
     # shellcheck disable=SC2086
     __yum_install_noinput ${__PACKAGES} || return 1
 
+    # Workaround for 3.11 broken on CentOS Stream 8.x
+    # Re-install Python 3.6
+    _py_version=$(${_PY_EXE} -c "import sys; print('{0}.{1}'.format(*sys.version_info))")
+    if [ "$DISTRO_MAJOR_VERSION" -eq 8 ] && [ "${_py_version}" = "3.11" ]; then
+      __yum_install_noinput python3
+    fi
+
     return 0
 }
 
@@ -4285,7 +4875,14 @@ install_centos_stable_post() {
 }
 
 install_centos_git_deps() {
-    install_centos_stable_deps || return 1
+    # First try stable deps then fall back to onedir deps if that one fails
+    # if we're installing on a Red Hat based host that doesn't have the classic
+    # package repos available.
+    # Set ONEDIR_REV to STABLE_REV in case we
+    # end up calling install_centos_onedir_deps
+    ONEDIR_REV=${STABLE_REV}
+    install_centos_onedir_deps || \
+    return 1
 
     if [ "$_INSECURE_DL" -eq $BS_FALSE ] && [ "${_SALT_REPO_URL%%://*}" = "https" ]; then
         __yum_install_noinput ca-certificates || return 1
@@ -4445,10 +5042,16 @@ install_centos_git_post() {
         [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
         [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
 
+        # Account for new path for services files in later releases
+        if [ -f "${_SALT_GIT_CHECKOUT_DIR}/pkg/common/salt-${fname}.service" ]; then
+          _SERVICE_FILE="${_SALT_GIT_CHECKOUT_DIR}/pkg/common/salt-${fname}.service"
+        else
+          _SERVICE_FILE="${_SALT_GIT_CHECKOUT_DIR}/pkg/rpm/salt-${fname}.service"
+        fi
         if [ -f /bin/systemctl ]; then
             if [ ! -f "/usr/lib/systemd/system/salt-${fname}.service" ] || \
                 { [ -f "/usr/lib/systemd/system/salt-${fname}.service" ] && [ "$_FORCE_OVERWRITE" -eq $BS_TRUE ]; }; then
-                __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/rpm/salt-${fname}.service" /usr/lib/systemd/system
+                __copyfile "${_SERVICE_FILE}" /usr/lib/systemd/system
             fi
 
             SYSTEMD_RELOAD=$BS_TRUE
@@ -4468,6 +5071,102 @@ install_centos_git_post() {
     return 0
 }
 
+install_centos_onedir_deps() {
+    if [ "$_UPGRADE_SYS" -eq $BS_TRUE ]; then
+        yum -y update || return 1
+    fi
+
+    if [ "$_DISABLE_REPOS" -eq "$BS_TRUE" ] && [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
+        echowarn "Detected -r or -R option while installing Salt packages for Python 3."
+        echowarn "Python 3 packages for older Salt releases requires the EPEL repository to be installed."
+        echowarn "Installing the EPEL repository automatically is disabled when using the -r or -R options."
+    fi
+
+    if [ "$_DISABLE_REPOS" -eq "$BS_FALSE" ]; then
+        __install_saltstack_rhel_onedir_repository || return 1
+    fi
+
+    # If -R was passed, we need to configure custom repo url with rsync-ed packages
+    # Which is still handled in __install_saltstack_rhel_repository. This call has
+    # its own check in case -r was passed without -R.
+    if [ "$_CUSTOM_REPO_URL" != "null" ]; then
+        __install_saltstack_rhel_onedir_repository || return 1
+    fi
+
+    if [ "$DISTRO_MAJOR_VERSION" -ge 8 ]; then
+        __PACKAGES="dnf-utils chkconfig"
+    else
+        __PACKAGES="yum-utils chkconfig"
+    fi
+
+    __PACKAGES="${__PACKAGES} procps"
+
+    # shellcheck disable=SC2086
+    __yum_install_noinput ${__PACKAGES} || return 1
+
+    if [ "${_EXTRA_PACKAGES}" != "" ]; then
+        echoinfo "Installing the following extra packages as requested: ${_EXTRA_PACKAGES}"
+        # shellcheck disable=SC2086
+        __yum_install_noinput ${_EXTRA_PACKAGES} || return 1
+    fi
+
+
+    return 0
+}
+
+install_centos_onedir() {
+    __PACKAGES=""
+
+    if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ];then
+        __PACKAGES="${__PACKAGES} salt-cloud"
+    fi
+    if [ "$_INSTALL_MASTER" -eq $BS_TRUE ];then
+        __PACKAGES="${__PACKAGES} salt-master"
+    fi
+    if [ "$_INSTALL_MINION" -eq $BS_TRUE ]; then
+        __PACKAGES="${__PACKAGES} salt-minion"
+    fi
+    if [ "$_INSTALL_SYNDIC" -eq $BS_TRUE ];then
+        __PACKAGES="${__PACKAGES} salt-syndic"
+    fi
+
+    # shellcheck disable=SC2086
+    __yum_install_noinput ${__PACKAGES} || return 1
+
+    return 0
+}
+
+install_centos_onedir_post() {
+    SYSTEMD_RELOAD=$BS_FALSE
+
+    for fname in api master minion syndic; do
+        # Skip salt-api since the service should be opt-in and not necessarily started on boot
+        [ $fname = "api" ] && continue
+
+        # Skip if not meant to be installed
+        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
+        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
+        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
+
+        if [ -f /bin/systemctl ]; then
+            /bin/systemctl is-enabled salt-${fname}.service > /dev/null 2>&1 || (
+                /bin/systemctl preset salt-${fname}.service > /dev/null 2>&1 &&
+                /bin/systemctl enable salt-${fname}.service > /dev/null 2>&1
+            )
+
+            SYSTEMD_RELOAD=$BS_TRUE
+        elif [ -f "/etc/init.d/salt-${fname}" ]; then
+            /sbin/chkconfig salt-${fname} on
+        fi
+    done
+
+    if [ "$SYSTEMD_RELOAD" -eq $BS_TRUE ]; then
+        /bin/systemctl daemon-reload
+    fi
+
+    return 0
+}
+
 install_centos_restart_daemons() {
     [ $_START_DAEMONS -eq $BS_FALSE ] && return
 
@@ -4567,6 +5266,11 @@ install_red_hat_linux_git_deps() {
     return 0
 }
 
+install_red_hat_linux_onedir_deps() {
+    install_centos_onedir_deps || return 1
+    return 0
+}
+
 install_red_hat_enterprise_stable_deps() {
     install_red_hat_linux_stable_deps || return 1
     return 0
@@ -4577,6 +5281,11 @@ install_red_hat_enterprise_git_deps() {
     return 0
 }
 
+install_red_hat_enterprise_onedir_deps() {
+    install_red_hat_linux_onedir_deps || return 1
+    return 0
+}
+
 install_red_hat_enterprise_linux_stable_deps() {
     install_red_hat_linux_stable_deps || return 1
     return 0
@@ -4587,6 +5296,11 @@ install_red_hat_enterprise_linux_git_deps() {
     return 0
 }
 
+install_red_hat_enterprise_linux_onedir_deps() {
+    install_red_hat_linux_onedir_deps || return 1
+    return 0
+}
+
 install_red_hat_enterprise_server_stable_deps() {
     install_red_hat_linux_stable_deps || return 1
     return 0
@@ -4597,6 +5311,11 @@ install_red_hat_enterprise_server_git_deps() {
     return 0
 }
 
+install_red_hat_enterprise_server_onedir_deps() {
+    install_red_hat_linux_onedir_deps || return 1
+    return 0
+}
+
 install_red_hat_enterprise_workstation_stable_deps() {
     install_red_hat_linux_stable_deps || return 1
     return 0
@@ -4607,6 +5326,11 @@ install_red_hat_enterprise_workstation_git_deps() {
     return 0
 }
 
+install_red_hat_enterprise_workstation_onedir_deps() {
+    install_red_hat_linux_timat_deps || return 1
+    return 0
+}
+
 install_red_hat_linux_stable() {
     install_centos_stable || return 1
     return 0
@@ -4617,6 +5341,11 @@ install_red_hat_linux_git() {
     return 0
 }
 
+install_red_hat_linux_onedir() {
+    install_centos_onedir || return 1
+    return 0
+}
+
 install_red_hat_enterprise_stable() {
     install_red_hat_linux_stable || return 1
     return 0
@@ -4627,6 +5356,11 @@ install_red_hat_enterprise_git() {
     return 0
 }
 
+install_red_hat_enterprise_onedir() {
+    install_red_hat_linux_onedir || return 1
+    return 0
+}
+
 install_red_hat_enterprise_linux_stable() {
     install_red_hat_linux_stable || return 1
     return 0
@@ -4637,6 +5371,11 @@ install_red_hat_enterprise_linux_git() {
     return 0
 }
 
+install_red_hat_enterprise_linux_onedir() {
+    install_red_hat_linux_onedir || return 1
+    return 0
+}
+
 install_red_hat_enterprise_server_stable() {
     install_red_hat_linux_stable || return 1
     return 0
@@ -4647,6 +5386,11 @@ install_red_hat_enterprise_server_git() {
     return 0
 }
 
+install_red_hat_enterprise_server_onedir() {
+    install_red_hat_linux_onedir || return 1
+    return 0
+}
+
 install_red_hat_enterprise_workstation_stable() {
     install_red_hat_linux_stable || return 1
     return 0
@@ -4657,6 +5401,11 @@ install_red_hat_enterprise_workstation_git() {
     return 0
 }
 
+install_red_hat_enterprise_workstation_onedir() {
+    install_red_hat_linux_onedir || return 1
+    return 0
+}
+
 install_red_hat_linux_stable_post() {
     install_centos_stable_post || return 1
     return 0
@@ -4801,6 +5550,15 @@ install_red_hat_enterprise_workstation_testing_post() {
 #   Oracle Linux Install Functions
 #
 install_oracle_linux_stable_deps() {
+    # Install Oracle's EPEL.
+    if [ ${_EPEL_REPOS_INSTALLED} -eq $BS_FALSE ]; then
+        _EPEL_REPO=oracle-epel-release-el${DISTRO_MAJOR_VERSION}
+        if ! rpm -q "${_EPEL_REPO}" > /dev/null; then
+            __yum_install_noinput "${_EPEL_REPO}"
+        fi
+        _EPEL_REPOS_INSTALLED=$BS_TRUE
+    fi
+
     install_centos_stable_deps || return 1
     return 0
 }
@@ -4810,6 +5568,11 @@ install_oracle_linux_git_deps() {
     return 0
 }
 
+install_oracle_linux_onedir_deps() {
+    install_centos_onedir_deps || return 1
+    return 0
+}
+
 install_oracle_linux_testing_deps() {
     install_centos_testing_deps || return 1
     return 0
@@ -4825,6 +5588,11 @@ install_oracle_linux_git() {
     return 0
 }
 
+install_oracle_linux_onedir() {
+    install_centos_onedir || return 1
+    return 0
+}
+
 install_oracle_linux_testing() {
     install_centos_testing || return 1
     return 0
@@ -4840,6 +5608,11 @@ install_oracle_linux_git_post() {
     return 0
 }
 
+install_oracle_linux_onedir_post() {
+    install_centos_onedir_post || return 1
+    return 0
+}
+
 install_oracle_linux_testing_post() {
     install_centos_testing_post || return 1
     return 0
@@ -4859,6 +5632,162 @@ install_oracle_linux_check_services() {
 #
 #######################################################################################################################
 
+#######################################################################################################################
+#
+#   AlmaLinux Install Functions
+#
+install_almalinux_stable_deps() {
+    install_centos_stable_deps || return 1
+    return 0
+}
+
+install_almalinux_git_deps() {
+    install_centos_git_deps || return 1
+    return 0
+}
+
+install_almalinux_onedir_deps() {
+    install_centos_onedir_deps || return 1
+    return 0
+}
+
+install_almalinux_testing_deps() {
+    install_centos_testing_deps || return 1
+    return 0
+}
+
+install_almalinux_stable() {
+    install_centos_stable || return 1
+    return 0
+}
+
+install_almalinux_git() {
+    install_centos_git || return 1
+    return 0
+}
+
+install_almalinux_onedir() {
+    install_centos_onedir || return 1
+    return 0
+}
+
+install_almalinux_testing() {
+    install_centos_testing || return 1
+    return 0
+}
+
+install_almalinux_stable_post() {
+    install_centos_stable_post || return 1
+    return 0
+}
+
+install_almalinux_git_post() {
+    install_centos_git_post || return 1
+    return 0
+}
+
+install_almalinux_onedir_post() {
+    install_centos_onedir_post || return 1
+    return 0
+}
+
+install_almalinux_testing_post() {
+    install_centos_testing_post || return 1
+    return 0
+}
+
+install_almalinux_restart_daemons() {
+    install_centos_restart_daemons || return 1
+    return 0
+}
+
+install_almalinux_check_services() {
+    install_centos_check_services || return 1
+    return 0
+}
+#
+#   Ended AlmaLinux Install Functions
+#
+#######################################################################################################################
+
+#######################################################################################################################
+#
+#   Rocky Linux Install Functions
+#
+install_rocky_linux_stable_deps() {
+    install_centos_stable_deps || return 1
+    return 0
+}
+
+install_rocky_linux_git_deps() {
+    install_centos_git_deps || return 1
+    return 0
+}
+
+install_rocky_linux_onedir_deps() {
+    install_centos_onedir_deps || return 1
+    return 0
+}
+
+install_rocky_linux_testing_deps() {
+    install_centos_testing_deps || return 1
+    return 0
+}
+
+install_rocky_linux_stable() {
+    install_centos_stable || return 1
+    return 0
+}
+
+install_rocky_linux_onedir() {
+    install_centos_onedir || return 1
+    return 0
+}
+
+install_rocky_linux_git() {
+    install_centos_git || return 1
+    return 0
+}
+
+install_rocky_linux_testing() {
+    install_centos_testing || return 1
+    return 0
+}
+
+install_rocky_linux_stable_post() {
+    install_centos_stable_post || return 1
+    return 0
+}
+
+install_rocky_linux_git_post() {
+    install_centos_git_post || return 1
+    return 0
+}
+
+install_rocky_linux_onedir_post() {
+    install_centos_onedir_post || return 1
+    return 0
+}
+
+install_rocky_linux_testing_post() {
+    install_centos_testing_post || return 1
+    return 0
+}
+
+install_rocky_linux_restart_daemons() {
+    install_centos_restart_daemons || return 1
+    return 0
+}
+
+install_rocky_linux_check_services() {
+    install_centos_check_services || return 1
+    return 0
+}
+#
+#   Ended Rocky Linux Install Functions
+#
+#######################################################################################################################
+
 #######################################################################################################################
 #
 #   Scientific Linux Install Functions
@@ -4873,6 +5802,11 @@ install_scientific_linux_git_deps() {
     return 0
 }
 
+install_scientific_linux_onedir_deps() {
+    install_centos_onedir_deps || return 1
+    return 0
+}
+
 install_scientific_linux_testing_deps() {
     install_centos_testing_deps || return 1
     return 0
@@ -4888,6 +5822,11 @@ install_scientific_linux_git() {
     return 0
 }
 
+install_scientific_linux_onedir() {
+    install_centos_onedir || return 1
+    return 0
+}
+
 install_scientific_linux_testing() {
     install_centos_testing || return 1
     return 0
@@ -4903,6 +5842,11 @@ install_scientific_linux_git_post() {
     return 0
 }
 
+install_scientific_linux_onedir_post() {
+    install_centos_onedir_post || return 1
+    return 0
+}
+
 install_scientific_linux_testing_post() {
     install_centos_testing_post || return 1
     return 0
@@ -4936,6 +5880,11 @@ install_cloud_linux_git_deps() {
     return 0
 }
 
+install_cloud_linux_onedir_deps() {
+    install_centos_onedir_deps || return 1
+    return 0
+}
+
 install_cloud_linux_testing_deps() {
     install_centos_testing_deps || return 1
     return 0
@@ -5029,8 +5978,8 @@ install_alpine_linux_git_deps() {
             fi
         fi
     else
-        apk -U add python2 py2-pip py2-setuptools || return 1
-        _PY_EXE=python2
+        apk -U add python3 python3-dev py3-pip py3-setuptools g++ linux-headers zeromq-dev openrc || return 1
+        _PY_EXE=python3
         return 0
     fi
 
@@ -5500,6 +6449,100 @@ _eof
     fi
 }
 
+install_amazon_linux_ami_2_onedir_deps() {
+    # Shim to figure out if we're using old (rhel) or new (aws) rpms.
+    _USEAWS=$BS_FALSE
+    pkg_append="python"
+
+    if [ "$ITYPE" = "onedir" ]; then
+        repo_rev="$ONEDIR_REV"
+    else
+        repo_rev="latest"
+    fi
+
+    if echo $repo_rev | grep -E -q '^archive'; then
+        year=$(echo "$repo_rev" | cut -d '/' -f 2 | cut -c1-4)
+    else
+        year=$(echo "$repo_rev" | cut -c1-4)
+    fi
+
+    # We need to install yum-utils before doing anything else when installing on
+    # Amazon Linux ECS-optimized images. See issue #974.
+    __yum_install_noinput yum-utils
+
+    # Do upgrade early
+    if [ "$_UPGRADE_SYS" -eq $BS_TRUE ]; then
+        yum -y update || return 1
+    fi
+
+    if [ $_DISABLE_REPOS -eq $BS_FALSE ] || [ "$_CUSTOM_REPO_URL" != "null" ]; then
+        __REPO_FILENAME="salt.repo"
+        __PY_VERSION_REPO="yum"
+        PY_PKG_VER=""
+        repo_label="saltstack-repo"
+        repo_name="SaltStack repo for Amazon Linux 2"
+        if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
+            __REPO_FILENAME="salt.repo"
+            __PY_VERSION_REPO="py3"
+            PY_PKG_VER=3
+            repo_label="saltstack-py3-repo"
+            repo_name="SaltStack Python 3 repo for Amazon Linux 2"
+        fi
+
+        base_url="$HTTP_VAL://${_REPO_URL}/${_ONEDIR_DIR}/${__PY_VERSION_REPO}/amazon/2/\$basearch/$repo_rev/"
+        if [ "${ONEDIR_REV}" = "nightly" ] ; then
+            base_url="$HTTP_VAL://${_REPO_URL}/${_ONEDIR_NIGHTLY_DIR}/${__PY_VERSION_REPO}/amazon/2/\$basearch/"
+        fi
+
+        if [ "$(echo "${ONEDIR_REV}" | grep -E '(3004|3005)')" != "" ] || [ "${ONEDIR_REV}" = "nightly" ]; then
+          gpg_key="${base_url}SALTSTACK-GPG-KEY.pub,${base_url}base/RPM-GPG-KEY-CentOS-7"
+          if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
+            gpg_key="${base_url}SALTSTACK-GPG-KEY.pub"
+          fi
+        else
+          gpg_key="${base_url}SALT-PROJECT-GPG-PUBKEY-2023.pub"
+        fi
+
+        # This should prob be refactored to use __install_saltstack_rhel_repository()
+        # With args passed in to do the right thing.  Reformatted to be more like the
+        # amazon linux yum file.
+        if [ ! -s "/etc/yum.repos.d/${__REPO_FILENAME}" ]; then
+          cat <<_eof > "/etc/yum.repos.d/${__REPO_FILENAME}"
+[$repo_label]
+name=$repo_name
+failovermethod=priority
+priority=10
+gpgcheck=1
+gpgkey=$gpg_key
+baseurl=$base_url
+_eof
+        fi
+
+    fi
+
+    if [ "${_POST_NEON_INSTALL}" -eq $BS_FALSE ]; then
+        # Package python-ordereddict-1.1-2.el6.noarch is obsoleted by python26-2.6.9-2.88.amzn1.x86_64
+        # which is already installed
+        if [ -n "${PY_PKG_VER}" ] && [ "${PY_PKG_VER}" -eq 3 ]; then
+            __PACKAGES="${pkg_append}${PY_PKG_VER}-m2crypto ${pkg_append}${PY_PKG_VER}-pyyaml"
+        else
+            __PACKAGES="m2crypto PyYAML ${pkg_append}-futures"
+        fi
+
+        __PACKAGES="${__PACKAGES} ${pkg_append}${PY_PKG_VER}-crypto ${pkg_append}${PY_PKG_VER}-jinja2 procps-ng"
+        __PACKAGES="${__PACKAGES} ${pkg_append}${PY_PKG_VER}-msgpack ${pkg_append}${PY_PKG_VER}-requests ${pkg_append}${PY_PKG_VER}-zmq"
+
+        # shellcheck disable=SC2086
+        __yum_install_noinput ${__PACKAGES} || return 1
+    fi
+
+    if [ "${_EXTRA_PACKAGES}" != "" ]; then
+        echoinfo "Installing the following extra packages as requested: ${_EXTRA_PACKAGES}"
+        # shellcheck disable=SC2086
+        __yum_install_noinput ${_EXTRA_PACKAGES} || return 1
+    fi
+}
+
 install_amazon_linux_ami_stable() {
     install_centos_stable || return 1
     return 0
@@ -5575,6 +6618,16 @@ install_amazon_linux_ami_2_check_services() {
     return 0
 }
 
+install_amazon_linux_ami_2_onedir() {
+    install_centos_stable || return 1
+    return 0
+}
+
+install_amazon_linux_ami_2_onedir_post() {
+    install_centos_stable_post || return 1
+    return 0
+}
+
 #
 #   Ended Amazon Linux AMI Install Functions
 #
@@ -5666,6 +6719,10 @@ install_arch_linux_git_deps() {
     return 0
 }
 
+install_arch_linux_onedir_deps() {
+    install_arch_linux_stable_deps || return 1
+}
+
 install_arch_linux_stable() {
     # Pacman does not resolve dependencies on outdated versions
     # They always need to be updated
@@ -5684,6 +6741,8 @@ install_arch_linux_stable() {
 
 install_arch_linux_git() {
 
+    _POST_NEON_PIP_INSTALL_ARGS="${_POST_NEON_PIP_INSTALL_ARGS} --use-pep517"
+    _PIP_DOWNLOAD_ARGS="${_PIP_DOWNLOAD_ARGS} --use-pep517"
     if [ "${_POST_NEON_INSTALL}" -eq $BS_TRUE ]; then
          __install_salt_from_repo_post_neon "${_PY_EXE}" || return 1
         return 0
@@ -5741,8 +6800,15 @@ install_arch_linux_git_post() {
         [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
         [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
 
+        # Account for new path for services files in later releases
+        if [ -f "${_SALT_GIT_CHECKOUT_DIR}/pkg/common/salt-${fname}.service" ]; then
+          _SERVICE_DIR="${_SALT_GIT_CHECKOUT_DIR}/pkg/common"
+        else
+          _SERVICE_DIR="${_SALT_GIT_CHECKOUT_DIR}/pkg/rpm"
+        fi
+
         if [ -f /usr/bin/systemctl ]; then
-            __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/rpm/salt-${fname}.service" "/lib/systemd/system/salt-${fname}.service"
+            __copyfile "${_SERVICE_DIR}/salt-${fname}.service" "/lib/systemd/system/salt-${fname}.service"
 
             # Skip salt-api since the service should be opt-in and not necessarily started on boot
             [ $fname = "api" ] && continue
@@ -5809,11 +6875,342 @@ install_arch_check_services() {
 
     return 0
 }
+
+install_arch_linux_onedir() {
+  install_arch_linux_stable || return 1
+
+  return 0
+}
+
+install_arch_linux_onedir_post() {
+  install_arch_linux_post || return 1
+
+  return 0
+}
 #
 #   Ended Arch Install Functions
 #
 #######################################################################################################################
 
+#######################################################################################################################
+#
+#   Photon OS Install Functions
+#
+
+__install_saltstack_photon_onedir_repository() {
+    if [ "$ITYPE" = "stable" ]; then
+        REPO_REV="$ONEDIR_REV"
+    else
+        REPO_REV="latest"
+    fi
+
+    __PY_VERSION_REPO="yum"
+    if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
+        __PY_VERSION_REPO="py3"
+    fi
+
+    REPO_FILE="/etc/yum.repos.d/salt.repo"
+
+    if [ ! -s "$REPO_FILE" ] || [ "$_FORCE_OVERWRITE" -eq $BS_TRUE ]; then
+        FETCH_URL="${HTTP_VAL}://${_REPO_URL}/${_ONEDIR_DIR}/${__PY_VERSION_REPO}/photon/${DISTRO_MAJOR_VERSION}/${CPU_ARCH_L}/${ONEDIR_REV}"
+        if [ "${ONEDIR_REV}" = "nightly" ] ; then
+            FETCH_URL="${HTTP_VAL}://${_REPO_URL}/${_ONEDIR_NIGHTLY_DIR}/${__PY_VERSION_REPO}/photon/${DISTRO_MAJOR_VERSION}/${CPU_ARCH_L}/"
+        fi
+
+        __fetch_url "${REPO_FILE}" "${FETCH_URL}.repo"
+
+        GPG_KEY="SALT-PROJECT-GPG-PUBKEY-2023.pub"
+
+        __rpm_import_gpg "${FETCH_URL}/${GPG_KEY}" || return 1
+
+        tdnf makecache || return 1
+    elif [ "$REPO_REV" != "latest" ]; then
+        echowarn "salt.repo already exists, ignoring salt version argument."
+        echowarn "Use -F (forced overwrite) to install $REPO_REV."
+    fi
+
+    return 0
+}
+
+install_photon_deps() {
+    if [ "$_UPGRADE_SYS" -eq $BS_TRUE ]; then
+        tdnf -y update || return 1
+    fi
+
+    __PACKAGES="${__PACKAGES:=}"
+    if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -lt 3 ]; then
+        echoerror "There are no Python 2 stable packages for Fedora, only Py3 packages"
+        return 1
+    fi
+
+    PY_PKG_VER=3
+
+    __PACKAGES="${__PACKAGES} libyaml procps-ng python${PY_PKG_VER}-crypto python${PY_PKG_VER}-jinja2"
+    __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-msgpack python${PY_PKG_VER}-requests python${PY_PKG_VER}-zmq"
+    __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-pip python${PY_PKG_VER}-m2crypto python${PY_PKG_VER}-pyyaml"
+    __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-systemd"
+    if [ "${_EXTRA_PACKAGES}" != "" ]; then
+        echoinfo "Installing the following extra packages as requested: ${_EXTRA_PACKAGES}"
+    fi
+
+    # shellcheck disable=SC2086
+    __tdnf_install_noinput ${__PACKAGES} ${_EXTRA_PACKAGES} || return 1
+
+    return 0
+}
+
+install_photon_stable_post() {
+    for fname in api master minion syndic; do
+        # Skip salt-api since the service should be opt-in and not necessarily started on boot
+        [ $fname = "api" ] && continue
+
+        # Skip if not meant to be installed
+        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
+        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
+        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
+
+        systemctl is-enabled salt-$fname.service || (systemctl preset salt-$fname.service && systemctl enable salt-$fname.service)
+        sleep 1
+        systemctl daemon-reload
+    done
+}
+
+install_photon_git_deps() {
+    if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
+        # Packages are named python3-<whatever>
+        PY_PKG_VER=3
+    else
+        PY_PKG_VER=2
+    fi
+
+    __PACKAGES=""
+    if ! __check_command_exists ps; then
+        __PACKAGES="${__PACKAGES} procps-ng"
+    fi
+    if ! __check_command_exists git; then
+        __PACKAGES="${__PACKAGES} git"
+    fi
+
+    if [ -n "${__PACKAGES}" ]; then
+        # shellcheck disable=SC2086
+        __tdnf_install_noinput ${__PACKAGES} || return 1
+        __PACKAGES=""
+    fi
+
+    __git_clone_and_checkout || return 1
+
+    if [ "${_POST_NEON_INSTALL}" -eq $BS_FALSE ]; then
+
+        if [ "$_INSECURE_DL" -eq $BS_FALSE ] && [ "${_SALT_REPO_URL%%://*}" = "https" ]; then
+            __PACKAGES="${__PACKAGES} ca-certificates"
+        fi
+        if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ]; then
+            __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-libcloud python${PY_PKG_VER}-netaddr"
+        fi
+
+        install_photon_deps || return 1
+
+        if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
+            if __check_command_exists python3; then
+                __python="python3"
+            fi
+        elif [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 2 ]; then
+            if __check_command_exists python2; then
+                __python="python2"
+            fi
+        else
+            if ! __check_command_exists python; then
+                echoerror "Unable to find a python binary?!"
+                return 1
+            fi
+            # Let's hope it's the right one
+            __python="python"
+        fi
+
+        grep tornado "${_SALT_GIT_CHECKOUT_DIR}/requirements/base.txt" | while IFS='
+    '         read -r dep; do
+                echodebug "Running '${__python}' -m pip install '${dep}'"
+                "${__python}" -m pip install "${dep}" || return 1
+            done
+    else
+        __PACKAGES="python${PY_PKG_VER}-devel python${PY_PKG_VER}-pip python${PY_PKG_VER}-setuptools gcc"
+        # shellcheck disable=SC2086
+        __tdnf_install_noinput ${__PACKAGES} || return 1
+    fi
+
+    # Need newer version of setuptools on Photon
+    _setuptools_dep="setuptools>=${_MINIMUM_SETUPTOOLS_VERSION}"
+    echodebug "Running '${_PY_EXE} -m pip --upgrade install ${_setuptools_dep}'"
+    ${_PY_EXE} -m pip install --upgrade "${_setuptools_dep}"
+
+    # Let's trigger config_salt()
+    if [ "$_TEMP_CONFIG_DIR" = "null" ]; then
+        _TEMP_CONFIG_DIR="${_SALT_GIT_CHECKOUT_DIR}/conf/"
+        CONFIG_SALT_FUNC="config_salt"
+    fi
+
+    return 0
+}
+
+install_photon_git() {
+    if [ "${_PY_EXE}" != "" ]; then
+        _PYEXE=${_PY_EXE}
+        echoinfo "Using the following python version: ${_PY_EXE} to install salt"
+    else
+        _PYEXE='python2'
+    fi
+
+    if [ -f "${_SALT_GIT_CHECKOUT_DIR}/salt/syspaths.py" ]; then
+        ${_PYEXE} setup.py --salt-config-dir="$_SALT_ETC_DIR" --salt-cache-dir="${_SALT_CACHE_DIR}" ${SETUP_PY_INSTALL_ARGS} install --prefix=/usr || return 1
+    else
+        ${_PYEXE} setup.py ${SETUP_PY_INSTALL_ARGS} install --prefix=/usr || return 1
+    fi
+    return 0
+}
+
+install_photon_git_post() {
+    for fname in api master minion syndic; do
+        # Skip if not meant to be installed
+        [ $fname = "api" ] && \
+            ([ "$_INSTALL_MASTER" -eq $BS_FALSE ] || ! __check_command_exists "salt-${fname}") && continue
+        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
+        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
+        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
+
+        # Account for new path for services files in later releases
+        if [ -f "${_SALT_GIT_CHECKOUT_DIR}/pkg/common/salt-${fname}.service" ]; then
+          _SERVICE_DIR="${_SALT_GIT_CHECKOUT_DIR}/pkg/common"
+        else
+          _SERVICE_DIR="${_SALT_GIT_CHECKOUT_DIR}/pkg/rpm"
+        fi
+        __copyfile "${_SERVICE_DIR}/salt-${fname}.service" "/lib/systemd/system/salt-${fname}.service"
+
+        # Salt executables are located under `/usr/local/bin/` on Fedora 36+
+        #if [ "${DISTRO_VERSION}" -ge 36 ]; then
+        #  sed -i -e 's:/usr/bin/:/usr/local/bin/:g' /lib/systemd/system/salt-*.service
+        #fi
+
+        # Skip salt-api since the service should be opt-in and not necessarily started on boot
+        [ $fname = "api" ] && continue
+
+        systemctl is-enabled salt-$fname.service || (systemctl preset salt-$fname.service && systemctl enable salt-$fname.service)
+        sleep 1
+        systemctl daemon-reload
+    done
+}
+
+install_photon_restart_daemons() {
+    [ $_START_DAEMONS -eq $BS_FALSE ] && return
+
+    for fname in api master minion syndic; do
+        # Skip salt-api since the service should be opt-in and not necessarily started on boot
+        [ $fname = "api" ] && continue
+
+        # Skip if not meant to be installed
+        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
+        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
+        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
+
+        systemctl stop salt-$fname > /dev/null 2>&1
+        systemctl start salt-$fname.service && continue
+        echodebug "Failed to start salt-$fname using systemd"
+        if [ "$_ECHO_DEBUG" -eq $BS_TRUE ]; then
+            systemctl status salt-$fname.service
+            journalctl -xe
+        fi
+    done
+}
+
+install_photon_check_services() {
+    for fname in api master minion syndic; do
+        # Skip salt-api since the service should be opt-in and not necessarily started on boot
+        [ $fname = "api" ] && continue
+
+        # Skip if not meant to be installed
+        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
+        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
+        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
+
+        __check_services_systemd salt-$fname || return 1
+    done
+
+    return 0
+}
+
+install_photon_onedir_deps() {
+
+    if [ "$_UPGRADE_SYS" -eq $BS_TRUE ]; then
+        tdnf -y update || return 1
+    fi
+
+    if [ "$_DISABLE_REPOS" -eq "$BS_TRUE" ] && [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
+        echowarn "Detected -r or -R option while installing Salt packages for Python 3."
+        echowarn "Python 3 packages for older Salt releases requires the EPEL repository to be installed."
+        echowarn "Installing the EPEL repository automatically is disabled when using the -r or -R options."
+    fi
+
+    if [ "$_DISABLE_REPOS" -eq "$BS_FALSE" ]; then
+        __install_saltstack_photon_onedir_repository || return 1
+    fi
+
+    # If -R was passed, we need to configure custom repo url with rsync-ed packages
+    # Which is still handled in __install_saltstack_rhel_repository. This call has
+    # its own check in case -r was passed without -R.
+    if [ "$_CUSTOM_REPO_URL" != "null" ]; then
+        __install_saltstack_photon_onedir_repository || return 1
+    fi
+
+    __PACKAGES="procps-ng"
+
+    # shellcheck disable=SC2086
+    __tdnf_install_noinput ${__PACKAGES} || return 1
+
+    if [ "${_EXTRA_PACKAGES}" != "" ]; then
+        echoinfo "Installing the following extra packages as requested: ${_EXTRA_PACKAGES}"
+        # shellcheck disable=SC2086
+        __tdnf_install_noinput ${_EXTRA_PACKAGES} || return 1
+    fi
+
+    return 0
+
+}
+
+
+install_photon_onedir() {
+    STABLE_REV=$ONEDIR_REV
+
+    __PACKAGES=""
+
+    if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ];then
+        __PACKAGES="${__PACKAGES} salt-cloud"
+    fi
+    if [ "$_INSTALL_MASTER" -eq $BS_TRUE ];then
+        __PACKAGES="${__PACKAGES} salt-master"
+    fi
+    if [ "$_INSTALL_MINION" -eq $BS_TRUE ]; then
+        __PACKAGES="${__PACKAGES} salt-minion"
+    fi
+    if [ "$_INSTALL_SYNDIC" -eq $BS_TRUE ];then
+        __PACKAGES="${__PACKAGES} salt-syndic"
+    fi
+
+    # shellcheck disable=SC2086
+    __tdnf_install_noinput ${__PACKAGES} || return 1
+
+    return 0
+}
+
+install_photon_onedir_post() {
+    STABLE_REV=$ONEDIR_REV
+    install_photon_stable_post || return 1
+
+    return 0
+}
+#
+#   Ended Fedora Install Functions
+#
+#######################################################################################################################
+
 #######################################################################################################################
 #
 #   FreeBSD Install Functions
@@ -5841,15 +7238,15 @@ install_freebsd_git_deps() {
 
     if [ "${_POST_NEON_INSTALL}" -eq $BS_FALSE ]; then
 
-        SALT_DEPENDENCIES=$(/usr/local/sbin/pkg rquery %dn py38-salt)
+        SALT_DEPENDENCIES=$(/usr/local/sbin/pkg rquery %dn py39-salt)
         # shellcheck disable=SC2086
         /usr/local/sbin/pkg install -y ${SALT_DEPENDENCIES} python || return 1
 
-        /usr/local/sbin/pkg install -y py38-requests || return 1
-        /usr/local/sbin/pkg install -y py38-tornado4 || return 1
+        /usr/local/sbin/pkg install -y py39-requests || return 1
+        /usr/local/sbin/pkg install -y py39-tornado4 || return 1
 
     else
-        /usr/local/sbin/pkg install -y python py38-pip py38-setuptools libzmq4 libunwind || return 1
+        /usr/local/sbin/pkg install -y python py39-pip py39-setuptools libzmq4 libunwind || return 1
     fi
 
     echodebug "Adapting paths to FreeBSD"
@@ -5895,7 +7292,7 @@ install_freebsd_stable() {
 # installing latest version of salt from FreeBSD CURRENT ports repo
 #
     # shellcheck disable=SC2086
-    /usr/local/sbin/pkg install -y py38-salt || return 1
+    /usr/local/sbin/pkg install -y py39-salt || return 1
 
     return 0
 }
@@ -5987,6 +7384,15 @@ install_freebsd_restart_daemons() {
         service salt_$fname start
     done
 }
+
+install_freebsd_onedir() {
+#
+# call install_freebsd_stable
+#
+    install_freebsd_stable || return 1
+
+    return 0
+}
 #
 #   Ended FreeBSD Install Functions
 #
@@ -6021,7 +7427,7 @@ install_openbsd_git_deps() {
     __git_clone_and_checkout || return 1
 
     if [ "${_POST_NEON_INSTALL}" -eq $BS_TRUE ]; then
-        pkg_add -I -v py-pip py-setuptools
+        pkg_add -I -v py3-pip py3-setuptools
     fi
 
     #
@@ -6105,6 +7511,14 @@ install_openbsd_restart_daemons() {
     return 0
 }
 
+install_openbsd_onedir() {
+#
+# Call install_openbsd_stable
+#
+    install_openbsd_stable || return 1
+
+    return 0
+}
 #
 #   Ended OpenBSD Install Functions
 #
@@ -6305,6 +7719,14 @@ install_smartos_restart_daemons() {
 
     return 0
 }
+install_smartos_onedir() {
+#
+# call install_smartos_stable
+#
+    install_smartos_stable || return 1
+
+    return 0
+}
 #
 #   Ended SmartOS Install Functions
 #
@@ -6321,19 +7743,16 @@ __set_suse_pkg_repo() {
     # Set distro repo variable
     if [ "${DISTRO_MAJOR_VERSION}" -gt 2015 ]; then
         DISTRO_REPO="openSUSE_Tumbleweed"
+    elif [ "${DISTRO_MAJOR_VERSION}" -eq 15 ] && [ "${DISTRO_MINOR_VERSION}" -ge 4 ]; then
+        DISTRO_REPO="${DISTRO_MAJOR_VERSION}.${DISTRO_MINOR_VERSION}"
     elif [ "${DISTRO_MAJOR_VERSION}" -ge 42 ] || [ "${DISTRO_MAJOR_VERSION}" -eq 15 ]; then
         DISTRO_REPO="openSUSE_Leap_${DISTRO_MAJOR_VERSION}.${DISTRO_MINOR_VERSION}"
     else
         DISTRO_REPO="SLE_${DISTRO_MAJOR_VERSION}_SP${SUSE_PATCHLEVEL}"
     fi
 
-    if [ "$_DOWNSTREAM_PKG_REPO" -eq $BS_TRUE ]; then
-        suse_pkg_url_base="https://download.opensuse.org/repositories/systemsmanagement:/saltstack"
-        suse_pkg_url_path="${DISTRO_REPO}/systemsmanagement:saltstack.repo"
-    else
-        suse_pkg_url_base="${HTTP_VAL}://repo.saltproject.io/opensuse"
-        suse_pkg_url_path="${DISTRO_REPO}/systemsmanagement:saltstack:products.repo"
-    fi
+    suse_pkg_url_base="https://download.opensuse.org/repositories/systemsmanagement:/saltstack"
+    suse_pkg_url_path="${DISTRO_REPO}/systemsmanagement:saltstack.repo"
     SUSE_PKG_URL="$suse_pkg_url_base/$suse_pkg_url_path"
 }
 
@@ -6353,7 +7772,7 @@ __version_lte() {
              zypper --non-interactive install --auto-agree-with-licenses python || return 1
     fi
 
-    if [ "$(python -c 'import sys; V1=tuple([int(i) for i in sys.argv[1].split(".")]); V2=tuple([int(i) for i in sys.argv[2].split(".")]); print V1<=V2' "$1" "$2")" = "True" ]; then
+    if [ "$(${_PY_EXE} -c 'import sys; V1=tuple([int(i) for i in sys.argv[1].split(".")]); V2=tuple([int(i) for i in sys.argv[2].split(".")]); print(V1<=V2)' "$1" "$2")" = "True" ]; then
         __ZYPPER_REQUIRES_REPLACE_FILES=${BS_TRUE}
     else
         __ZYPPER_REQUIRES_REPLACE_FILES=${BS_FALSE}
@@ -6470,7 +7889,7 @@ install_opensuse_git_deps() {
         fi
     # Check for Tumbleweed
     elif [ "${DISTRO_MAJOR_VERSION}" -ge 20210101 ]; then
-        __PACKAGES="python3-pip"
+        __PACKAGES="python3-pip gcc-c++ python3-pyzmq-devel"
     else
         __PACKAGES="python-pip python-setuptools gcc"
     fi
@@ -6487,6 +7906,10 @@ install_opensuse_git_deps() {
     return 0
 }
 
+install_opensuse_onedir_deps() {
+    install_opensuse_stable_deps || return 1
+}
+
 install_opensuse_stable() {
     __PACKAGES=""
 
@@ -6519,6 +7942,10 @@ install_opensuse_git() {
     return 0
 }
 
+install_opensuse_onedir() {
+  install_opensuse_stable || return 1
+}
+
 install_opensuse_stable_post() {
     for fname in api master minion syndic; do
         # Skip salt-api since the service should be opt-in and not necessarily started on boot
@@ -6563,10 +7990,17 @@ install_opensuse_git_post() {
                 use_usr_lib=$BS_TRUE
             fi
 
-            if [ "${use_usr_lib}" -eq $BS_TRUE ]; then
-                __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/salt-${fname}.service" "/usr/lib/systemd/system/salt-${fname}.service"
+            # Account for new path for services files in later releases
+            if [ -f "${_SALT_GIT_CHECKOUT_DIR}/pkg/common/salt-${fname}.service" ]; then
+              _SERVICE_DIR="${_SALT_GIT_CHECKOUT_DIR}/pkg/common"
             else
-                __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/salt-${fname}.service" "/lib/systemd/system/salt-${fname}.service"
+              _SERVICE_DIR="${_SALT_GIT_CHECKOUT_DIR}/pkg/"
+            fi
+
+            if [ "${use_usr_lib}" -eq $BS_TRUE ]; then
+                __copyfile "${_SERVICE_DIR}/salt-${fname}.service" "/usr/lib/systemd/system/salt-${fname}.service"
+            else
+                __copyfile "${_SERVICE_DIR}/salt-${fname}.service" "/lib/systemd/system/salt-${fname}.service"
             fi
 
             continue
@@ -6581,6 +8015,10 @@ install_opensuse_git_post() {
     return 0
 }
 
+install_opensuse_onedir_post() {
+  install_opensuse_stable_post || return 1
+}
+
 install_opensuse_restart_daemons() {
     [ $_START_DAEMONS -eq $BS_FALSE ] && return
 
@@ -6740,6 +8178,11 @@ install_opensuse_15_git() {
     return 0
 }
 
+install_opensuse_15_onedir_deps() {
+    __opensuse_prep_install || return 1
+    return 0
+}
+
 #
 #   End of openSUSE Leap 15
 #
@@ -6769,6 +8212,13 @@ install_suse_15_git_deps() {
     return 0
 }
 
+install_suse_15_onedir_deps() {
+    __opensuse_prep_install || return 1
+    install_opensuse_15_onedir_deps || return 1
+
+    return 0
+}
+
 install_suse_15_stable() {
     install_opensuse_stable || return 1
     return 0
@@ -6779,6 +8229,11 @@ install_suse_15_git() {
     return 0
 }
 
+install_suse_15_onedir() {
+    install_opensuse_stable || return 1
+    return 0
+}
+
 install_suse_15_stable_post() {
     install_opensuse_stable_post || return 1
     return 0
@@ -6789,6 +8244,11 @@ install_suse_15_git_post() {
     return 0
 }
 
+install_suse_15_onedir_post() {
+    install_opensuse_stable_post || return 1
+    return 0
+}
+
 install_suse_15_restart_daemons() {
     install_opensuse_restart_daemons || return 1
     return 0
@@ -6871,6 +8331,11 @@ install_suse_12_git_deps() {
     return 0
 }
 
+install_suse_12_onedir_deps() {
+    install_suse_12_stable_deps || return 1
+    return 0
+}
+
 install_suse_12_stable() {
     install_opensuse_stable || return 1
     return 0
@@ -6881,6 +8346,11 @@ install_suse_12_git() {
     return 0
 }
 
+install_suse_12_onedir() {
+    install_opensuse_stable || return 1
+    return 0
+}
+
 install_suse_12_stable_post() {
     install_opensuse_stable_post || return 1
     return 0
@@ -6891,6 +8361,11 @@ install_suse_12_git_post() {
     return 0
 }
 
+install_suse_12_onedir_post() {
+    install_opensuse_stable_post || return 1
+    return 0
+}
+
 install_suse_12_restart_daemons() {
     install_opensuse_restart_daemons || return 1
     return 0
@@ -6967,6 +8442,11 @@ install_suse_11_git_deps() {
     return 0
 }
 
+install_suse_11_onedir_deps() {
+    install_suse_11_stable_deps || return 1
+    return 0
+}
+
 install_suse_11_stable() {
     install_opensuse_stable || return 1
     return 0
@@ -6977,6 +8457,11 @@ install_suse_11_git() {
     return 0
 }
 
+install_suse_11_onedir() {
+    install_opensuse_stable || return 1
+    return 0
+}
+
 install_suse_11_stable_post() {
     install_opensuse_stable_post || return 1
     return 0
@@ -6987,6 +8472,11 @@ install_suse_11_git_post() {
     return 0
 }
 
+install_suse_11_onedir_post() {
+    install_opensuse_stable_post || return 1
+    return 0
+}
+
 install_suse_11_restart_daemons() {
     install_opensuse_restart_daemons || return 1
     return 0
@@ -7086,11 +8576,6 @@ __gentoo_pre_dep() {
         mkdir /etc/portage
     fi
 
-    # Enable Python 3.6 target for pre Neon Salt release
-    if echo "${STABLE_REV}" | grep -q "2019" || [ "${ITYPE}" = "git" ] && [ "${_POST_NEON_INSTALL}" -eq $BS_FALSE ]; then
-        EXTRA_PYTHON_TARGET=python3_6
-    fi
-
     # Enable Python 3.7 target for Salt Neon using GIT
     if [ "${ITYPE}" = "git" ] && [ "${GIT_REV}" = "v3000" ]; then
         EXTRA_PYTHON_TARGET=python3_7
@@ -7186,6 +8671,9 @@ install_gentoo_git_deps() {
         __emerge ${GENTOO_GIT_PACKAGES} || return 1
     fi
 
+    echoinfo "Running emerge -v1 setuptools"
+    __emerge -v1 setuptools || return 1
+
     __git_clone_and_checkout || return 1
     __gentoo_post_dep || return 1
 }
@@ -7233,6 +8721,11 @@ install_gentoo_git() {
     return 0
 }
 
+install_gentoo_onedir() {
+  STABLE_REV=${ONEDIR_REV}
+  install_gentoo_stable || return 1
+}
+
 install_gentoo_post() {
     for fname in api master minion syndic; do
         # Skip salt-api since the service should be opt-in and not necessarily started on boot
@@ -7268,8 +8761,15 @@ install_gentoo_git_post() {
         [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
         [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
 
+        # Account for new path for services files in later releases
+        if [ -f "${_SALT_GIT_CHECKOUT_DIR}/pkg/common/salt-${fname}.service" ]; then
+          _SERVICE_DIR="${_SALT_GIT_CHECKOUT_DIR}/pkg/common"
+        else
+          _SERVICE_DIR="${_SALT_GIT_CHECKOUT_DIR}/pkg"
+        fi
+
         if __check_command_exists systemctl ; then
-            __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/salt-${fname}.service" "/lib/systemd/system/salt-${fname}.service"
+            __copyfile "${_SERVICE_DIR}/salt-${fname}.service" "/lib/systemd/system/salt-${fname}.service"
 
             # Skip salt-api since the service should be opt-in and not necessarily started on boot
             [ $fname = "api" ] && continue
@@ -7315,6 +8815,10 @@ _eof
     return 0
 }
 
+install_gentoo_onedir_post() {
+  install_gentoo_post || return 1
+}
+
 install_gentoo_restart_daemons() {
     [ $_START_DAEMONS -eq $BS_FALSE ] && return
 
@@ -7466,7 +8970,46 @@ __macosx_get_packagesite() {
     fi
 
     PKG="salt-${STABLE_REV}-${__PY_VERSION_REPO}-${DARWIN_ARCH}.pkg"
-    SALTPKGCONFURL="https://repo.saltproject.io/osx/${PKG}"
+    SALTPKGCONFURL="https://${_REPO_URL}/osx/${PKG}"
+}
+
+__parse_repo_json_python() {
+
+  # Using latest, grab the right
+  # version from the repo.json
+  _JSON_VERSION=$(python - <<-EOF
+import json, urllib.request
+url = "https://repo.saltproject.io/salt/py3/macos/repo.json"
+response = urllib.request.urlopen(url)
+data = json.loads(response.read())
+version = data["${_ONEDIR_REV}"][list(data["${_ONEDIR_REV}"])[0]]['version']
+print(version)
+EOF
+)
+echo "${_JSON_VERSION}"
+}
+
+__macosx_get_packagesite_onedir() {
+    DARWIN_ARCH="x86_64"
+
+    __PY_VERSION_REPO="py2"
+    if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
+        __PY_VERSION_REPO="py3"
+    fi
+
+    if [ "$(echo "$_ONEDIR_REV" | grep -E '^(latest)$')" != "" ]; then
+      _PKG_VERSION=$(__parse_repo_json_python)
+    elif [ "$(echo "$_ONEDIR_REV" | grep -E '^([3-9][0-9]{3}(\.[0-9]*))')" != "" ]; then
+      _PKG_VERSION=$_ONEDIR_REV
+    else
+      _PKG_VERSION=$(__parse_repo_json_python)
+    fi
+    if [ "$(echo "$_ONEDIR_REV" | grep -E '^(3005)')" != "" ]; then
+      PKG="salt-${_PKG_VERSION}-macos-${DARWIN_ARCH}.pkg"
+    else
+      PKG="salt-${_PKG_VERSION}-${__PY_VERSION_REPO}-${DARWIN_ARCH}.pkg"
+    fi
+    SALTPKGCONFURL="https://${_REPO_URL}/${_ONEDIR_DIR}/${__PY_VERSION_REPO}/macos/${ONEDIR_REV}/${PKG}"
 }
 
 # Using a separate conf step to head for idempotent install...
@@ -7475,11 +9018,21 @@ __configure_macosx_pkg_details() {
     return 0
 }
 
+__configure_macosx_pkg_details_onedir() {
+    __macosx_get_packagesite_onedir || return 1
+    return 0
+}
+
 install_macosx_stable_deps() {
     __configure_macosx_pkg_details || return 1
     return 0
 }
 
+install_macosx_onedir_deps() {
+    __configure_macosx_pkg_details_onedir || return 1
+    return 0
+}
+
 install_macosx_git_deps() {
     install_macosx_stable_deps || return 1
 
@@ -7526,6 +9079,16 @@ install_macosx_stable() {
     return 0
 }
 
+install_macosx_onedir() {
+    install_macosx_onedir_deps || return 1
+
+    __fetch_url "/tmp/${PKG}" "${SALTPKGCONFURL}" || return 1
+
+    /usr/sbin/installer -pkg "/tmp/${PKG}" -target / || return 1
+
+    return 0
+}
+
 install_macosx_git() {
 
     if [ -n "$_PY_EXE" ]; then
@@ -7563,6 +9126,11 @@ install_macosx_stable_post() {
     return 0
 }
 
+install_macosx_onedir_post() {
+    install_macosx_stable_post || return 1
+    return 0
+}
+
 install_macosx_git_post() {
     install_macosx_stable_post || return 1
     return 0
@@ -7571,8 +9139,15 @@ install_macosx_git_post() {
 install_macosx_restart_daemons() {
     [ $_START_DAEMONS -eq $BS_FALSE ] && return
 
-    /bin/launchctl unload -w /Library/LaunchDaemons/com.saltstack.salt.minion.plist || return 1
-    /bin/launchctl load -w /Library/LaunchDaemons/com.saltstack.salt.minion.plist || return 1
+    if [ "$_INSTALL_MINION" -eq $BS_TRUE ]; then
+      /bin/launchctl unload -w /Library/LaunchDaemons/com.saltstack.salt.minion.plist || return 1
+      /bin/launchctl load -w /Library/LaunchDaemons/com.saltstack.salt.minion.plist || return 1
+    fi
+
+    if [ "$_INSTALL_MASTER" -eq $BS_TRUE ]; then
+      /bin/launchctl unload -w /Library/LaunchDaemons/com.saltstack.salt.master.plist || return 1
+      /bin/launchctl load -w /Library/LaunchDaemons/com.saltstack.salt.master.plist || return 1
+    fi
 
    return 0
 }
@@ -7774,6 +9349,43 @@ preseed_master() {
 #
 #######################################################################################################################
 
+#######################################################################################################################
+#
+#   This function checks if all of the installed daemons are running or not.
+#
+daemons_running_onedir() {
+    [ "$_START_DAEMONS" -eq $BS_FALSE ] && return 0
+
+    FAILED_DAEMONS=0
+    for fname in api master minion syndic; do
+        # Skip salt-api since the service should be opt-in and not necessarily started on boot
+        [ $fname = "api" ] && continue
+
+        # Skip if not meant to be installed
+        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
+        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
+        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
+
+        if [ -f "/opt/saltstack/salt/run/run" ]; then
+            salt_path="/opt/saltstack/salt/run/run ${fname}"
+        else
+            salt_path="salt-${fname}"
+        fi
+        process_running=$(pgrep -f "${salt_path}")
+        if [ "${process_running}" = "" ]; then
+            echoerror "${salt_path} was not found running"
+            FAILED_DAEMONS=$((FAILED_DAEMONS + 1))
+        fi
+    done
+
+    return $FAILED_DAEMONS
+}
+
+#
+#  Ended daemons running check function
+#
+#######################################################################################################################
+
 #######################################################################################################################
 #
 #   This function checks if all of the installed daemons are running or not.
@@ -7874,6 +9486,7 @@ echodebug "PRESEED_MASTER_FUNC=${PRESEED_MASTER_FUNC}"
 INSTALL_FUNC_NAMES="install_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}_${ITYPE}"
 INSTALL_FUNC_NAMES="$INSTALL_FUNC_NAMES install_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}${PREFIXED_DISTRO_MINOR_VERSION}_${ITYPE}"
 INSTALL_FUNC_NAMES="$INSTALL_FUNC_NAMES install_${DISTRO_NAME_L}_${ITYPE}"
+echodebug "INSTALL_FUNC_NAMES=${INSTALL_FUNC_NAMES}"
 
 INSTALL_FUNC="null"
 for FUNC_NAME in $(__strip_duplicates "$INSTALL_FUNC_NAMES"); do
@@ -7925,6 +9538,7 @@ DAEMONS_RUNNING_FUNC_NAMES="$DAEMONS_RUNNING_FUNC_NAMES daemons_running_${DISTRO
 DAEMONS_RUNNING_FUNC_NAMES="$DAEMONS_RUNNING_FUNC_NAMES daemons_running_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}${PREFIXED_DISTRO_MINOR_VERSION}"
 DAEMONS_RUNNING_FUNC_NAMES="$DAEMONS_RUNNING_FUNC_NAMES daemons_running_${DISTRO_NAME_L}_${ITYPE}"
 DAEMONS_RUNNING_FUNC_NAMES="$DAEMONS_RUNNING_FUNC_NAMES daemons_running_${DISTRO_NAME_L}"
+DAEMONS_RUNNING_FUNC_NAMES="$DAEMONS_RUNNING_FUNC_NAMES daemons_running_${ITYPE}"
 DAEMONS_RUNNING_FUNC_NAMES="$DAEMONS_RUNNING_FUNC_NAMES daemons_running"
 
 DAEMONS_RUNNING_FUNC="null"
@@ -8114,6 +9728,11 @@ if [ "$DAEMONS_RUNNING_FUNC" != "null" ] && [ ${_START_DAEMONS} -eq $BS_TRUE ];
     fi
 fi
 
+if [ "$_AUTO_ACCEPT_MINION_KEYS" -eq "$BS_TRUE" ]; then
+  echoinfo "Accepting the Salt Minion Keys"
+  salt-key -yA
+fi
+
 # Done!
 if [ "$_CONFIG_ONLY" -eq $BS_FALSE ]; then
     echoinfo "Salt installed!"
@@ -8121,6 +9740,13 @@ else
     echoinfo "Salt configured!"
 fi
 
+if [ "$_QUICK_START" -eq "$BS_TRUE" ]; then
+  echoinfo "Congratulations!"
+  echoinfo "A couple of commands to try:"
+  echoinfo "  salt \* test.ping"
+  echoinfo "  salt \* test.version"
+fi
+
 exit 0
 
 # vim: set sts=4 ts=4 et
diff --git a/salt/salt/scripts/bootstrap-salt_orig.sh b/salt/salt/scripts/bootstrap-salt_orig.sh
new file mode 100644
index 000000000..47d25949c
--- /dev/null
+++ b/salt/salt/scripts/bootstrap-salt_orig.sh
@@ -0,0 +1,8126 @@
+#!/bin/sh -
+
+# WARNING: Changes to this file in the salt repo will be overwritten!
+# Please submit pull requests against the salt-bootstrap repo:
+# https://github.com/saltstack/salt-bootstrap
+
+#======================================================================================================================
+# vim: softtabstop=4 shiftwidth=4 expandtab fenc=utf-8 spell spelllang=en cc=120
+#======================================================================================================================
+#
+#          FILE: bootstrap-salt.sh
+#
+#   DESCRIPTION: Bootstrap Salt installation for various systems/distributions
+#
+#          BUGS: https://github.com/saltstack/salt-bootstrap/issues
+#
+#     COPYRIGHT: (c) 2012-2021 by the SaltStack Team, see AUTHORS.rst for more
+#                details.
+#
+#       LICENSE: Apache 2.0
+#  ORGANIZATION: SaltStack (saltproject.io)
+#       CREATED: 10/15/2012 09:49:37 PM WEST
+#======================================================================================================================
+set -o nounset                              # Treat unset variables as an error
+
+__ScriptVersion="2021.09.17"
+__ScriptName="bootstrap-salt.sh"
+
+__ScriptFullName="$0"
+__ScriptArgs="$*"
+
+#======================================================================================================================
+#  Environment variables taken into account.
+#----------------------------------------------------------------------------------------------------------------------
+#   * BS_COLORS:                If 0 disables colour support
+#   * BS_PIP_ALLOWED:           If 1 enable pip based installations(if needed)
+#   * BS_PIP_ALL:               If 1 enable all python packages to be installed via pip instead of apt, requires setting virtualenv
+#   * BS_VIRTUALENV_DIR:        The virtualenv to install salt into (shouldn't exist yet)
+#   * BS_ECHO_DEBUG:            If 1 enable debug echo which can also be set by -D
+#   * BS_SALT_ETC_DIR:          Defaults to /etc/salt (Only tweak'able on git based installations)
+#   * BS_SALT_CACHE_DIR:        Defaults to /var/cache/salt (Only tweak'able on git based installations)
+#   * BS_KEEP_TEMP_FILES:       If 1, don't move temporary files, instead copy them
+#   * BS_FORCE_OVERWRITE:       Force overriding copied files(config, init.d, etc)
+#   * BS_UPGRADE_SYS:           If 1 and an option, upgrade system. Default 0.
+#   * BS_GENTOO_USE_BINHOST:    If 1 add `--getbinpkg` to gentoo's emerge
+#   * BS_SALT_MASTER_ADDRESS:   The IP or DNS name of the salt-master the minion should connect to
+#   * BS_SALT_GIT_CHECKOUT_DIR: The directory where to clone Salt on git installations
+#======================================================================================================================
+
+
+# Bootstrap script truth values
+BS_TRUE=1
+BS_FALSE=0
+
+# Default sleep time used when waiting for daemons to start, restart and checking for these running
+__DEFAULT_SLEEP=3
+
+#---  FUNCTION  -------------------------------------------------------------------------------------------------------
+#          NAME:  __detect_color_support
+#   DESCRIPTION:  Try to detect color support.
+#----------------------------------------------------------------------------------------------------------------------
+_COLORS=${BS_COLORS:-$(tput colors 2>/dev/null || echo 0)}
+__detect_color_support() {
+    # shellcheck disable=SC2181
+    if [ $? -eq 0 ] && [ "$_COLORS" -gt 2 ]; then
+        RC='\033[1;31m'
+        GC='\033[1;32m'
+        BC='\033[1;34m'
+        YC='\033[1;33m'
+        EC='\033[0m'
+    else
+        RC=""
+        GC=""
+        BC=""
+        YC=""
+        EC=""
+    fi
+}
+__detect_color_support
+
+
+#---  FUNCTION  -------------------------------------------------------------------------------------------------------
+#          NAME:  echoerr
+#   DESCRIPTION:  Echo errors to stderr.
+#----------------------------------------------------------------------------------------------------------------------
+echoerror() {
+    printf "${RC} * ERROR${EC}: %s\\n" "$@" 1>&2;
+}
+
+#---  FUNCTION  -------------------------------------------------------------------------------------------------------
+#          NAME:  echoinfo
+#   DESCRIPTION:  Echo information to stdout.
+#----------------------------------------------------------------------------------------------------------------------
+echoinfo() {
+    printf "${GC} *  INFO${EC}: %s\\n" "$@";
+}
+
+#---  FUNCTION  -------------------------------------------------------------------------------------------------------
+#          NAME:  echowarn
+#   DESCRIPTION:  Echo warning information to stdout.
+#----------------------------------------------------------------------------------------------------------------------
+echowarn() {
+    printf "${YC} *  WARN${EC}: %s\\n" "$@";
+}
+
+#---  FUNCTION  -------------------------------------------------------------------------------------------------------
+#          NAME:  echodebug
+#   DESCRIPTION:  Echo debug information to stdout.
+#----------------------------------------------------------------------------------------------------------------------
+echodebug() {
+    if [ "$_ECHO_DEBUG" -eq $BS_TRUE ]; then
+        printf "${BC} * DEBUG${EC}: %s\\n" "$@";
+    fi
+}
+
+#---  FUNCTION  -------------------------------------------------------------------------------------------------------
+#          NAME:  __check_command_exists
+#   DESCRIPTION:  Check if a command exists.
+#----------------------------------------------------------------------------------------------------------------------
+__check_command_exists() {
+    command -v "$1" > /dev/null 2>&1
+}
+
+#---  FUNCTION  -------------------------------------------------------------------------------------------------------
+#          NAME:  __check_pip_allowed
+#   DESCRIPTION:  Simple function to let the users know that -P needs to be used.
+#----------------------------------------------------------------------------------------------------------------------
+__check_pip_allowed() {
+    if [ $# -eq 1 ]; then
+        _PIP_ALLOWED_ERROR_MSG=$1
+    else
+        _PIP_ALLOWED_ERROR_MSG="pip based installations were not allowed. Retry using '-P'"
+    fi
+
+    if [ "$_PIP_ALLOWED" -eq $BS_FALSE ]; then
+        echoerror "$_PIP_ALLOWED_ERROR_MSG"
+        __usage
+        exit 1
+    fi
+}
+
+#---  FUNCTION  -------------------------------------------------------------------------------------------------------
+#         NAME:  __check_config_dir
+#  DESCRIPTION:  Checks the config directory, retrieves URLs if provided.
+#----------------------------------------------------------------------------------------------------------------------
+__check_config_dir() {
+    CC_DIR_NAME="$1"
+    CC_DIR_BASE=$(basename "${CC_DIR_NAME}")
+
+    case "$CC_DIR_NAME" in
+        http://*|https://*)
+            __fetch_url "/tmp/${CC_DIR_BASE}" "${CC_DIR_NAME}"
+            CC_DIR_NAME="/tmp/${CC_DIR_BASE}"
+            ;;
+        ftp://*)
+            __fetch_url "/tmp/${CC_DIR_BASE}" "${CC_DIR_NAME}"
+            CC_DIR_NAME="/tmp/${CC_DIR_BASE}"
+            ;;
+        *://*)
+            echoerror "Unsupported URI scheme for $CC_DIR_NAME"
+            echo "null"
+            return
+            ;;
+        *)
+            if [ ! -e "${CC_DIR_NAME}" ]; then
+                echoerror "The configuration directory or archive $CC_DIR_NAME does not exist."
+                echo "null"
+                return
+            fi
+            ;;
+    esac
+
+    case "$CC_DIR_NAME" in
+        *.tgz|*.tar.gz)
+            tar -zxf "${CC_DIR_NAME}" -C /tmp
+            CC_DIR_BASE=$(basename "${CC_DIR_BASE}" ".tgz")
+            CC_DIR_BASE=$(basename "${CC_DIR_BASE}" ".tar.gz")
+            CC_DIR_NAME="/tmp/${CC_DIR_BASE}"
+            ;;
+        *.tbz|*.tar.bz2)
+            tar -xjf "${CC_DIR_NAME}" -C /tmp
+            CC_DIR_BASE=$(basename "${CC_DIR_BASE}" ".tbz")
+            CC_DIR_BASE=$(basename "${CC_DIR_BASE}" ".tar.bz2")
+            CC_DIR_NAME="/tmp/${CC_DIR_BASE}"
+            ;;
+        *.txz|*.tar.xz)
+            tar -xJf "${CC_DIR_NAME}" -C /tmp
+            CC_DIR_BASE=$(basename "${CC_DIR_BASE}" ".txz")
+            CC_DIR_BASE=$(basename "${CC_DIR_BASE}" ".tar.xz")
+            CC_DIR_NAME="/tmp/${CC_DIR_BASE}"
+            ;;
+    esac
+
+    echo "${CC_DIR_NAME}"
+}
+
+#---  FUNCTION  -------------------------------------------------------------------------------------------------------
+#         NAME:  __check_unparsed_options
+#  DESCRIPTION:  Checks the placed after the install arguments
+#----------------------------------------------------------------------------------------------------------------------
+__check_unparsed_options() {
+    shellopts="$1"
+    # grep alternative for SunOS
+    if [ -f /usr/xpg4/bin/grep ]; then
+        grep='/usr/xpg4/bin/grep'
+    else
+        grep='grep'
+    fi
+    unparsed_options=$( echo "$shellopts" | ${grep} -E '(^|[[:space:]])[-]+[[:alnum:]]' )
+    if [ "$unparsed_options" != "" ]; then
+        __usage
+        echo
+        echoerror "options are only allowed before install arguments"
+        echo
+        exit 1
+    fi
+}
+
+
+#----------------------------------------------------------------------------------------------------------------------
+#  Handle command line arguments
+#----------------------------------------------------------------------------------------------------------------------
+_KEEP_TEMP_FILES=${BS_KEEP_TEMP_FILES:-$BS_FALSE}
+_TEMP_CONFIG_DIR="null"
+_SALTSTACK_REPO_URL="https://github.com/saltstack/salt.git"
+_SALT_REPO_URL=${_SALTSTACK_REPO_URL}
+_DOWNSTREAM_PKG_REPO=$BS_FALSE
+_TEMP_KEYS_DIR="null"
+_SLEEP="${__DEFAULT_SLEEP}"
+_INSTALL_MASTER=$BS_FALSE
+_INSTALL_SYNDIC=$BS_FALSE
+_INSTALL_MINION=$BS_TRUE
+_INSTALL_CLOUD=$BS_FALSE
+_VIRTUALENV_DIR=${BS_VIRTUALENV_DIR:-"null"}
+_START_DAEMONS=$BS_TRUE
+_DISABLE_SALT_CHECKS=$BS_FALSE
+_ECHO_DEBUG=${BS_ECHO_DEBUG:-$BS_FALSE}
+_CONFIG_ONLY=$BS_FALSE
+_PIP_ALLOWED=${BS_PIP_ALLOWED:-$BS_FALSE}
+_PIP_ALL=${BS_PIP_ALL:-$BS_FALSE}
+_SALT_ETC_DIR=${BS_SALT_ETC_DIR:-/etc/salt}
+_SALT_CACHE_DIR=${BS_SALT_CACHE_DIR:-/var/cache/salt}
+_PKI_DIR=${_SALT_ETC_DIR}/pki
+_FORCE_OVERWRITE=${BS_FORCE_OVERWRITE:-$BS_FALSE}
+_GENTOO_USE_BINHOST=${BS_GENTOO_USE_BINHOST:-$BS_FALSE}
+_EPEL_REPO=${BS_EPEL_REPO:-epel}
+_EPEL_REPOS_INSTALLED=$BS_FALSE
+_UPGRADE_SYS=${BS_UPGRADE_SYS:-$BS_FALSE}
+_INSECURE_DL=${BS_INSECURE_DL:-$BS_FALSE}
+_CURL_ARGS=${BS_CURL_ARGS:-}
+_FETCH_ARGS=${BS_FETCH_ARGS:-}
+_GPG_ARGS=${BS_GPG_ARGS:-}
+_WGET_ARGS=${BS_WGET_ARGS:-}
+_SALT_MASTER_ADDRESS=${BS_SALT_MASTER_ADDRESS:-null}
+_SALT_MINION_ID="null"
+# _SIMPLIFY_VERSION is mostly used in Solaris based distributions
+_SIMPLIFY_VERSION=$BS_TRUE
+_LIBCLOUD_MIN_VERSION="0.14.0"
+_EXTRA_PACKAGES=""
+_HTTP_PROXY=""
+_SALT_GIT_CHECKOUT_DIR=${BS_SALT_GIT_CHECKOUT_DIR:-/tmp/git/salt}
+_NO_DEPS=$BS_FALSE
+_FORCE_SHALLOW_CLONE=$BS_FALSE
+_DISABLE_SSL=$BS_FALSE
+_DISABLE_REPOS=$BS_FALSE
+_CUSTOM_REPO_URL="null"
+_CUSTOM_MASTER_CONFIG="null"
+_CUSTOM_MINION_CONFIG="null"
+_QUIET_GIT_INSTALLATION=$BS_FALSE
+_REPO_URL="repo.saltproject.io"
+_PY_EXE="python3"
+_INSTALL_PY="$BS_FALSE"
+_TORNADO_MAX_PY3_VERSION="5.0"
+_POST_NEON_INSTALL=$BS_FALSE
+_MINIMUM_PIP_VERSION="9.0.1"
+_MINIMUM_SETUPTOOLS_VERSION="9.1"
+_POST_NEON_PIP_INSTALL_ARGS="--prefix=/usr"
+
+# Defaults for install arguments
+ITYPE="stable"
+
+
+#---  FUNCTION  -------------------------------------------------------------------------------------------------------
+#         NAME:  __usage
+#  DESCRIPTION:  Display usage information.
+#----------------------------------------------------------------------------------------------------------------------
+__usage() {
+    cat << EOT
+
+  Usage :  ${__ScriptName} [options] <install-type> [install-type-args]
+
+  Installation types:
+    - stable              Install latest stable release. This is the default
+                          install type
+    - stable [branch]     Install latest version on a branch. Only supported
+                          for packages available at repo.saltproject.io
+    - stable [version]    Install a specific version. Only supported for
+                          packages available at repo.saltproject.io
+                          To pin a 3xxx minor version, specify it as 3xxx.0
+    - testing             RHEL-family specific: configure EPEL testing repo
+    - git                 Install from the head of the master branch
+    - git [ref]           Install from any git ref (such as a branch, tag, or
+                          commit)
+
+  Examples:
+    - ${__ScriptName}
+    - ${__ScriptName} stable
+    - ${__ScriptName} stable 2017.7
+    - ${__ScriptName} stable 2017.7.2
+    - ${__ScriptName} testing
+    - ${__ScriptName} git
+    - ${__ScriptName} git 2017.7
+    - ${__ScriptName} git v2017.7.2
+    - ${__ScriptName} git 06f249901a2e2f1ed310d58ea3921a129f214358
+
+  Options:
+    -h  Display this message
+    -v  Display script version
+    -n  No colours
+    -D  Show debug output
+    -c  Temporary configuration directory
+    -g  Salt Git repository URL. Default: ${_SALTSTACK_REPO_URL}
+    -w  Install packages from downstream package repository rather than
+        upstream, saltstack package repository. This is currently only
+        implemented for SUSE.
+    -k  Temporary directory holding the minion keys which will pre-seed
+        the master.
+    -s  Sleep time used when waiting for daemons to start, restart and when
+        checking for the services running. Default: ${__DEFAULT_SLEEP}
+    -L  Also install salt-cloud and required python-libcloud package
+    -M  Also install salt-master
+    -S  Also install salt-syndic
+    -N  Do not install salt-minion
+    -X  Do not start daemons after installation
+    -d  Disables checking if Salt services are enabled to start on system boot.
+        You can also do this by touching /tmp/disable_salt_checks on the target
+        host. Default: \${BS_FALSE}
+    -P  Allow pip based installations. On some distributions the required salt
+        packages or its dependencies are not available as a package for that
+        distribution. Using this flag allows the script to use pip as a last
+        resort method. NOTE: This only works for functions which actually
+        implement pip based installations.
+    -U  If set, fully upgrade the system prior to bootstrapping Salt
+    -I  If set, allow insecure connections while downloading any files. For
+        example, pass '--no-check-certificate' to 'wget' or '--insecure' to
+        'curl'. On Debian and Ubuntu, using this option with -U allows obtaining
+        GnuPG archive keys insecurely if distro has changed release signatures.
+    -F  Allow copied files to overwrite existing (config, init.d, etc)
+    -K  If set, keep the temporary files in the temporary directories specified
+        with -c and -k
+    -C  Only run the configuration function. Implies -F (forced overwrite).
+        To overwrite Master or Syndic configs, -M or -S, respectively, must
+        also be specified. Salt installation will be ommitted, but some of the
+        dependencies could be installed to write configuration with -j or -J.
+    -A  Pass the salt-master DNS name or IP. This will be stored under
+        \${BS_SALT_ETC_DIR}/minion.d/99-master-address.conf
+    -i  Pass the salt-minion id. This will be stored under
+        \${BS_SALT_ETC_DIR}/minion_id
+    -p  Extra-package to install while installing Salt dependencies. One package
+        per -p flag. You are responsible for providing the proper package name.
+    -H  Use the specified HTTP proxy for all download URLs (including https://).
+        For example: http://myproxy.example.com:3128
+    -b  Assume that dependencies are already installed and software sources are
+        set up. If git is selected, git tree is still checked out as dependency
+        step.
+    -f  Force shallow cloning for git installations.
+        This may result in an "n/a" in the version number.
+    -l  Disable ssl checks. When passed, switches "https" calls to "http" where
+        possible.
+    -V  Install Salt into virtualenv
+        (only available for Ubuntu based distributions)
+    -a  Pip install all Python pkg dependencies for Salt. Requires -V to install
+        all pip pkgs into the virtualenv.
+        (Only available for Ubuntu based distributions)
+    -r  Disable all repository configuration performed by this script. This
+        option assumes all necessary repository configuration is already present
+        on the system.
+    -R  Specify a custom repository URL. Assumes the custom repository URL
+        points to a repository that mirrors Salt packages located at
+        repo.saltproject.io. The option passed with -R replaces the
+        "repo.saltproject.io". If -R is passed, -r is also set. Currently only
+        works on CentOS/RHEL and Debian based distributions.
+    -J  Replace the Master config file with data passed in as a JSON string. If
+        a Master config file is found, a reasonable effort will be made to save
+        the file with a ".bak" extension. If used in conjunction with -C or -F,
+        no ".bak" file will be created as either of those options will force
+        a complete overwrite of the file.
+    -j  Replace the Minion config file with data passed in as a JSON string. If
+        a Minion config file is found, a reasonable effort will be made to save
+        the file with a ".bak" extension. If used in conjunction with -C or -F,
+        no ".bak" file will be created as either of those options will force
+        a complete overwrite of the file.
+    -q  Quiet salt installation from git (setup.py install -q)
+    -x  Changes the Python version used to install Salt.
+        For CentOS 6 git installations python2.7 is supported.
+        Fedora git installation, CentOS 7, Debian 9, Ubuntu 16.04 and 18.04 support python3.
+    -y  Installs a different python version on host. Currently this has only been
+        tested with CentOS 6 and is considered experimental. This will install the
+        ius repo on the box if disable repo is false. This must be used in conjunction
+        with -x <pythonversion>.  For example:
+            sh bootstrap.sh -P -y -x python2.7 git v2017.7.2
+        The above will install python27 and install the git version of salt using the
+        python2.7 executable. This only works for git and pip installations.
+
+EOT
+}   # ----------  end of function __usage  ----------
+
+
+while getopts ':hvnDc:g:Gyx:wk:s:MSNXCPFUKIA:i:Lp:dH:bflV:J:j:rR:aq' opt
+do
+  case "${opt}" in
+
+    h )  __usage; exit 0                                ;;
+    v )  echo "$0 -- Version $__ScriptVersion"; exit 0  ;;
+    n )  _COLORS=0; __detect_color_support              ;;
+    D )  _ECHO_DEBUG=$BS_TRUE                           ;;
+    c )  _TEMP_CONFIG_DIR="$OPTARG"                     ;;
+    g )  _SALT_REPO_URL=$OPTARG                         ;;
+
+    G )  echowarn "The '-G' option is DEPRECATED and will be removed in the future stable release!"
+         echowarn "Bootstrap will always use 'https' protocol to clone from SaltStack GitHub repo."
+         echowarn "No need to provide this option anymore, now it is a default behavior."
+         ;;
+
+    w )  _DOWNSTREAM_PKG_REPO=$BS_TRUE                  ;;
+    k )  _TEMP_KEYS_DIR="$OPTARG"                       ;;
+    s )  _SLEEP=$OPTARG                                 ;;
+    M )  _INSTALL_MASTER=$BS_TRUE                       ;;
+    S )  _INSTALL_SYNDIC=$BS_TRUE                       ;;
+    N )  _INSTALL_MINION=$BS_FALSE                      ;;
+    X )  _START_DAEMONS=$BS_FALSE                       ;;
+    C )  _CONFIG_ONLY=$BS_TRUE                          ;;
+    P )  _PIP_ALLOWED=$BS_TRUE                          ;;
+    F )  _FORCE_OVERWRITE=$BS_TRUE                      ;;
+    U )  _UPGRADE_SYS=$BS_TRUE                          ;;
+    K )  _KEEP_TEMP_FILES=$BS_TRUE                      ;;
+    I )  _INSECURE_DL=$BS_TRUE                          ;;
+    A )  _SALT_MASTER_ADDRESS=$OPTARG                   ;;
+    i )  _SALT_MINION_ID=$OPTARG                        ;;
+    L )  _INSTALL_CLOUD=$BS_TRUE                        ;;
+    p )  _EXTRA_PACKAGES="$_EXTRA_PACKAGES $OPTARG"     ;;
+    d )  _DISABLE_SALT_CHECKS=$BS_TRUE                  ;;
+    H )  _HTTP_PROXY="$OPTARG"                          ;;
+    b )  _NO_DEPS=$BS_TRUE                              ;;
+    f )  _FORCE_SHALLOW_CLONE=$BS_TRUE                  ;;
+    l )  _DISABLE_SSL=$BS_TRUE                          ;;
+    V )  _VIRTUALENV_DIR="$OPTARG"                      ;;
+    a )  _PIP_ALL=$BS_TRUE                              ;;
+    r )  _DISABLE_REPOS=$BS_TRUE                        ;;
+    R )  _CUSTOM_REPO_URL=$OPTARG                       ;;
+    J )  _CUSTOM_MASTER_CONFIG=$OPTARG                  ;;
+    j )  _CUSTOM_MINION_CONFIG=$OPTARG                  ;;
+    q )  _QUIET_GIT_INSTALLATION=$BS_TRUE               ;;
+    x )  _PY_EXE="$OPTARG"                              ;;
+    y )  _INSTALL_PY="$BS_TRUE"                         ;;
+
+    \?)  echo
+         echoerror "Option does not exist : $OPTARG"
+         __usage
+         exit 1
+         ;;
+
+  esac    # --- end of case ---
+done
+shift $((OPTIND-1))
+
+
+# Define our logging file and pipe paths
+LOGFILE="/tmp/$( echo "$__ScriptName" | sed s/.sh/.log/g )"
+LOGPIPE="/tmp/$( echo "$__ScriptName" | sed s/.sh/.logpipe/g )"
+# Ensure no residual pipe exists
+rm "$LOGPIPE" 2>/dev/null
+
+# Create our logging pipe
+# On FreeBSD we have to use mkfifo instead of mknod
+if ! (mknod "$LOGPIPE" p >/dev/null 2>&1 || mkfifo "$LOGPIPE" >/dev/null 2>&1); then
+    echoerror "Failed to create the named pipe required to log"
+    exit 1
+fi
+
+# What ever is written to the logpipe gets written to the logfile
+tee < "$LOGPIPE" "$LOGFILE" &
+
+# Close STDOUT, reopen it directing it to the logpipe
+exec 1>&-
+exec 1>"$LOGPIPE"
+# Close STDERR, reopen it directing it to the logpipe
+exec 2>&-
+exec 2>"$LOGPIPE"
+
+
+#---  FUNCTION  -------------------------------------------------------------------------------------------------------
+#          NAME:  __exit_cleanup
+#   DESCRIPTION:  Cleanup any leftovers after script has ended
+#
+#
+#   http://www.unix.com/man-page/POSIX/1posix/trap/
+#
+#               Signal Number   Signal Name
+#               1               SIGHUP
+#               2               SIGINT
+#               3               SIGQUIT
+#               6               SIGABRT
+#               9               SIGKILL
+#              14               SIGALRM
+#              15               SIGTERM
+#----------------------------------------------------------------------------------------------------------------------
+APT_ERR=$(mktemp /tmp/apt_error.XXXXXX)
+__exit_cleanup() {
+    EXIT_CODE=$?
+
+    if [ "$ITYPE" = "git" ] && [ -d "${_SALT_GIT_CHECKOUT_DIR}" ]; then
+        if [ $_KEEP_TEMP_FILES -eq $BS_FALSE ]; then
+            # Clean up the checked out repository
+            echodebug "Cleaning up the Salt Temporary Git Repository"
+            # shellcheck disable=SC2164
+            cd "${__SALT_GIT_CHECKOUT_PARENT_DIR}"
+            rm -rf "${_SALT_GIT_CHECKOUT_DIR}"
+            #rm -rf "${_SALT_GIT_CHECKOUT_DIR}/deps"
+        else
+            echowarn "Not cleaning up the Salt Temporary git repository on request"
+            echowarn "Note that if you intend to re-run this script using the git approach, you might encounter some issues"
+        fi
+    fi
+
+    # Remove the logging pipe when the script exits
+    if [ -p "$LOGPIPE" ]; then
+        echodebug "Removing the logging pipe $LOGPIPE"
+        rm -f "$LOGPIPE"
+    fi
+
+    # Remove the temporary apt error file when the script exits
+    if [ -f "$APT_ERR" ]; then
+        echodebug "Removing the temporary apt error file $APT_ERR"
+        rm -f "$APT_ERR"
+    fi
+
+    # Kill tee when exiting, CentOS, at least requires this
+    # shellcheck disable=SC2009
+    TEE_PID=$(ps ax | grep tee | grep "$LOGFILE" | awk '{print $1}')
+
+    [ "$TEE_PID" = "" ] && exit $EXIT_CODE
+
+    echodebug "Killing logging pipe tee's with pid(s): $TEE_PID"
+
+    # We need to trap errors since killing tee will cause a 127 errno
+    # We also do this as late as possible so we don't "mis-catch" other errors
+    __trap_errors() {
+        echoinfo "Errors Trapped: $EXIT_CODE"
+        # Exit with the "original" exit code, not the trapped code
+        exit $EXIT_CODE
+    }
+    trap "__trap_errors" INT ABRT QUIT TERM
+
+    # Now we're "good" to kill tee
+    kill -s TERM "$TEE_PID"
+
+    # In case the 127 errno is not triggered, exit with the "original" exit code
+    exit $EXIT_CODE
+}
+trap "__exit_cleanup" EXIT INT
+
+
+# Let's discover how we're being called
+# shellcheck disable=SC2009
+CALLER=$(ps -a -o pid,args | grep $$ | grep -v grep | tr -s ' ' | cut -d ' ' -f 3)
+
+if [ "${CALLER}x" = "${0}x" ]; then
+    CALLER="shell pipe"
+fi
+
+echoinfo "Running version: ${__ScriptVersion}"
+echoinfo "Executed by: ${CALLER}"
+echoinfo "Command line: '${__ScriptFullName} ${__ScriptArgs}'"
+#echowarn "Running the unstable version of ${__ScriptName}"
+
+# Define installation type
+if [ "$#" -gt 0 ];then
+    __check_unparsed_options "$*"
+    ITYPE=$1
+    shift
+fi
+
+# Check installation type
+if [ "$(echo "$ITYPE" | grep -E '(stable|testing|git)')" = "" ]; then
+    echoerror "Installation type \"$ITYPE\" is not known..."
+    exit 1
+fi
+
+# If doing a git install, check what branch/tag/sha will be checked out
+if [ "$ITYPE" = "git" ]; then
+    if [ "$#" -eq 0 ];then
+        GIT_REV="master"
+    else
+        GIT_REV="$1"
+        shift
+    fi
+
+    # Disable shell warning about unbound variable during git install
+    STABLE_REV="latest"
+
+# If doing stable install, check if version specified
+elif [ "$ITYPE" = "stable" ]; then
+    if [ "$#" -eq 0 ];then
+        STABLE_REV="latest"
+    else
+        if [ "$(echo "$1" | grep -E '^(latest|1\.6|1\.7|2014\.1|2014\.7|2015\.5|2015\.8|2016\.3|2016\.11|2017\.7|2018\.3|2019\.2|3000|3001|3002|3003|3004)$')" != "" ]; then
+            STABLE_REV="$1"
+            shift
+        elif [ "$(echo "$1" | grep -E '^(2[0-9]*\.[0-9]*\.[0-9]*|[3-9][0-9]{3}(\.[0-9]*)?)$')" != "" ]; then
+            # Handle the 3xxx.0 version as 3xxx archive (pin to minor) and strip the fake ".0" suffix
+            STABLE_REV=$(echo "$1" | sed -E 's/^([3-9][0-9]{3})\.0$/\1/')
+            if [ "$(uname)" != "Darwin" ]; then
+                STABLE_REV="archive/$STABLE_REV"
+            fi
+            shift
+        else
+            echo "Unknown stable version: $1 (valid: 1.6, 1.7, 2014.1, 2014.7, 2015.5, 2015.8, 2016.3, 2016.11, 2017.7, 2018.3, 2019.2, 3000, 3001, 3002, 3003, 3004, latest, \$MAJOR.\$MINOR.\$PATCH until 2019.2, \$MAJOR or \$MAJOR.\$PATCH starting from 3000)"
+            exit 1
+        fi
+    fi
+fi
+
+# Check for any unparsed arguments. Should be an error.
+if [ "$#" -gt 0 ]; then
+    __usage
+    echo
+    echoerror "Too many arguments."
+    exit 1
+fi
+
+# whoami alternative for SunOS
+if [ -f /usr/xpg4/bin/id ]; then
+    whoami='/usr/xpg4/bin/id -un'
+else
+    whoami='whoami'
+fi
+
+# Root permissions are required to run this script
+if [ "$($whoami)" != "root" ]; then
+    echoerror "Salt requires root privileges to install. Please re-run this script as root."
+    exit 1
+fi
+
+# Check that we're actually installing one of minion/master/syndic
+if [ "$_INSTALL_MINION" -eq $BS_FALSE ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && [ "$_CONFIG_ONLY" -eq $BS_FALSE ]; then
+    echowarn "Nothing to install or configure"
+    exit 1
+fi
+
+# Check that we're installing a minion if we're being passed a master address
+if [ "$_INSTALL_MINION" -eq $BS_FALSE ] && [ "$_SALT_MASTER_ADDRESS" != "null" ]; then
+    echoerror "Don't pass a master address (-A) if no minion is going to be bootstrapped."
+    exit 1
+fi
+
+# Check that we're installing a minion if we're being passed a minion id
+if [ "$_INSTALL_MINION" -eq $BS_FALSE ] && [ "$_SALT_MINION_ID" != "null" ]; then
+    echoerror "Don't pass a minion id (-i) if no minion is going to be bootstrapped."
+    exit 1
+fi
+
+# Check that we're installing or configuring a master if we're being passed a master config json dict
+if [ "$_CUSTOM_MASTER_CONFIG" != "null" ]; then
+    if [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && [ "$_CONFIG_ONLY" -eq $BS_FALSE ]; then
+        echoerror "Don't pass a master config JSON dict (-J) if no master is going to be bootstrapped or configured."
+        exit 1
+    fi
+fi
+
+# Check that we're installing or configuring a minion if we're being passed a minion config json dict
+if [ "$_CUSTOM_MINION_CONFIG" != "null" ]; then
+    if [ "$_INSTALL_MINION" -eq $BS_FALSE ] && [ "$_CONFIG_ONLY" -eq $BS_FALSE ]; then
+        echoerror "Don't pass a minion config JSON dict (-j) if no minion is going to be bootstrapped or configured."
+        exit 1
+    fi
+fi
+
+# Check if we're installing via a different Python executable and set major version variables
+if [ -n "$_PY_EXE" ]; then
+    if [ "$(uname)" = "Darwin" ]; then
+      _PY_PKG_VER=$(echo "$_PY_EXE" | sed "s/\\.//g")
+    else
+      _PY_PKG_VER=$(echo "$_PY_EXE" | sed -E "s/\\.//g")
+    fi
+
+    _PY_MAJOR_VERSION=$(echo "$_PY_PKG_VER" | cut -c 7)
+    if [ "$_PY_MAJOR_VERSION" != 3 ] && [ "$_PY_MAJOR_VERSION" != 2 ]; then
+        echoerror "Detected -x option, but Python major version is not 2 or 3."
+        echoerror "The -x option must be passed as python2, python27, or python2.7 (or use the Python '3' versions of examples)."
+        exit 1
+    fi
+
+    if [ "$_PY_EXE" != "python3" ]; then
+        echoinfo "Detected -x option. Using $_PY_EXE to install Salt."
+    fi
+else
+    _PY_PKG_VER=""
+    _PY_MAJOR_VERSION=""
+fi
+
+# If the configuration directory or archive does not exist, error out
+if [ "$_TEMP_CONFIG_DIR" != "null" ]; then
+    _TEMP_CONFIG_DIR="$(__check_config_dir "$_TEMP_CONFIG_DIR")"
+    [ "$_TEMP_CONFIG_DIR" = "null" ] && exit 1
+fi
+
+# If the pre-seed keys directory does not exist, error out
+if [ "$_TEMP_KEYS_DIR" != "null" ] && [ ! -d "$_TEMP_KEYS_DIR" ]; then
+    echoerror "The pre-seed keys directory ${_TEMP_KEYS_DIR} does not exist."
+    exit 1
+fi
+
+# -a and -V only work from git
+if [ "$ITYPE" != "git" ]; then
+    if [ $_PIP_ALL -eq $BS_TRUE ]; then
+        echoerror "Pip installing all python packages with -a is only possible when installing Salt via git"
+        exit 1
+    fi
+    if [ "$_VIRTUALENV_DIR" != "null" ]; then
+        echoerror "Virtualenv installs via -V is only possible when installing Salt via git"
+        exit 1
+    fi
+fi
+
+# Set the _REPO_URL value based on if -R was passed or not. Defaults to repo.saltproject.io.
+if [ "$_CUSTOM_REPO_URL" != "null" ]; then
+    _REPO_URL="$_CUSTOM_REPO_URL"
+
+    # Check for -r since -R is being passed. Set -r with a warning.
+    if [ "$_DISABLE_REPOS" -eq $BS_FALSE ]; then
+        echowarn "Detected -R option. No other repositories will be configured when -R is used. Setting -r option to True."
+        _DISABLE_REPOS=$BS_TRUE
+    fi
+fi
+
+# Check the _DISABLE_SSL value and set HTTP or HTTPS.
+if [ "$_DISABLE_SSL" -eq $BS_TRUE ]; then
+    HTTP_VAL="http"
+else
+    HTTP_VAL="https"
+fi
+
+# Check the _QUIET_GIT_INSTALLATION value and set SETUP_PY_INSTALL_ARGS.
+if [ "$_QUIET_GIT_INSTALLATION" -eq $BS_TRUE ]; then
+    SETUP_PY_INSTALL_ARGS="-q"
+else
+    SETUP_PY_INSTALL_ARGS=""
+fi
+
+# Handle the insecure flags
+if [ "$_INSECURE_DL" -eq $BS_TRUE ]; then
+    _CURL_ARGS="${_CURL_ARGS} --insecure"
+    _FETCH_ARGS="${_FETCH_ARGS} --no-verify-peer"
+    _GPG_ARGS="${_GPG_ARGS} --keyserver-options no-check-cert"
+    _WGET_ARGS="${_WGET_ARGS} --no-check-certificate"
+else
+    _GPG_ARGS="${_GPG_ARGS} --keyserver-options ca-cert-file=/etc/ssl/certs/ca-certificates.crt"
+fi
+
+# Export the http_proxy configuration to our current environment
+if [ "${_HTTP_PROXY}" != "" ]; then
+    export http_proxy="${_HTTP_PROXY}"
+    export https_proxy="${_HTTP_PROXY}"
+    # Using "deprecated" option here, but that appears the only way to make it work.
+    # See https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=818802
+    # and https://bugs.launchpad.net/ubuntu/+source/gnupg2/+bug/1625848
+    _GPG_ARGS="${_GPG_ARGS},http-proxy=${_HTTP_PROXY}"
+fi
+
+# Work around for 'Docker + salt-bootstrap failure' https://github.com/saltstack/salt-bootstrap/issues/394
+if [ "${_DISABLE_SALT_CHECKS}" -eq $BS_FALSE ] && [ -f /tmp/disable_salt_checks ]; then
+    # shellcheck disable=SC2016
+    echowarn 'Found file: /tmp/disable_salt_checks, setting _DISABLE_SALT_CHECKS=$BS_TRUE'
+    _DISABLE_SALT_CHECKS=$BS_TRUE
+fi
+
+# Because -a can only be installed into virtualenv
+if [ "${_PIP_ALL}" -eq $BS_TRUE ] && [ "${_VIRTUALENV_DIR}" = "null" ]; then
+    usage
+    # Could possibly set up a default virtualenv location when -a flag is passed
+    echoerror "Using -a requires -V because pip pkgs should be siloed from python system pkgs"
+    exit 1
+fi
+
+# Make sure virtualenv directory does not already exist
+if [ -d "${_VIRTUALENV_DIR}" ]; then
+    echoerror "The directory ${_VIRTUALENV_DIR} for virtualenv already exists"
+    exit 1
+fi
+
+#---  FUNCTION  -------------------------------------------------------------------------------------------------------
+#         NAME:  __fetch_url
+#  DESCRIPTION:  Retrieves a URL and writes it to a given path
+#----------------------------------------------------------------------------------------------------------------------
+__fetch_url() {
+    # shellcheck disable=SC2086
+    curl $_CURL_ARGS -L -s -f -o "$1" "$2" >/dev/null 2>&1     ||
+        wget $_WGET_ARGS -q -O "$1" "$2" >/dev/null 2>&1       ||
+            fetch $_FETCH_ARGS -q -o "$1" "$2" >/dev/null 2>&1 ||  # FreeBSD
+                fetch -q -o "$1" "$2" >/dev/null 2>&1          ||  # Pre FreeBSD 10
+                    ftp -o "$1" "$2" >/dev/null 2>&1           ||  # OpenBSD
+                        (echoerror "$2 failed to download to $1"; exit 1)
+}
+
+#---  FUNCTION  -------------------------------------------------------------------------------------------------------
+#         NAME:  __fetch_verify
+#  DESCRIPTION:  Retrieves a URL, verifies its content and writes it to standard output
+#----------------------------------------------------------------------------------------------------------------------
+__fetch_verify() {
+    fetch_verify_url="$1"
+    fetch_verify_sum="$2"
+    fetch_verify_size="$3"
+
+    fetch_verify_tmpf=$(mktemp) && \
+    __fetch_url "$fetch_verify_tmpf" "$fetch_verify_url" && \
+    test "$(stat --format=%s "$fetch_verify_tmpf")" -eq "$fetch_verify_size" && \
+    test "$(md5sum "$fetch_verify_tmpf" | awk '{ print $1 }')" = "$fetch_verify_sum" && \
+    cat "$fetch_verify_tmpf" && \
+    if rm -f "$fetch_verify_tmpf"; then
+        return 0
+    fi
+    echo "Failed verification of $fetch_verify_url"
+    return 1
+}
+
+#---  FUNCTION  -------------------------------------------------------------------------------------------------------
+#          NAME:  __gather_hardware_info
+#   DESCRIPTION:  Discover hardware information
+#----------------------------------------------------------------------------------------------------------------------
+__gather_hardware_info() {
+    if [ -f /proc/cpuinfo ]; then
+        CPU_VENDOR_ID=$(awk '/vendor_id|Processor/ {sub(/-.*$/,"",$3); print $3; exit}' /proc/cpuinfo )
+    elif [ -f /usr/bin/kstat ]; then
+        # SmartOS.
+        # Solaris!?
+        # This has only been tested for a GenuineIntel CPU
+        CPU_VENDOR_ID=$(/usr/bin/kstat -p cpu_info:0:cpu_info0:vendor_id | awk '{print $2}')
+    else
+        CPU_VENDOR_ID=$( sysctl -n hw.model )
+    fi
+    # shellcheck disable=SC2034
+    CPU_VENDOR_ID_L=$( echo "$CPU_VENDOR_ID" | tr '[:upper:]' '[:lower:]' )
+    CPU_ARCH=$(uname -m 2>/dev/null || uname -p 2>/dev/null || echo "unknown")
+    CPU_ARCH_L=$( echo "$CPU_ARCH" | tr '[:upper:]' '[:lower:]' )
+}
+__gather_hardware_info
+
+
+#---  FUNCTION  -------------------------------------------------------------------------------------------------------
+#          NAME:  __gather_os_info
+#   DESCRIPTION:  Discover operating system information
+#----------------------------------------------------------------------------------------------------------------------
+__gather_os_info() {
+    OS_NAME=$(uname -s 2>/dev/null)
+    OS_NAME_L=$( echo "$OS_NAME" | tr '[:upper:]' '[:lower:]' )
+    OS_VERSION=$(uname -r)
+    # shellcheck disable=SC2034
+    OS_VERSION_L=$( echo "$OS_VERSION" | tr '[:upper:]' '[:lower:]' )
+}
+__gather_os_info
+
+
+#---  FUNCTION  -------------------------------------------------------------------------------------------------------
+#          NAME:  __parse_version_string
+#   DESCRIPTION:  Parse version strings ignoring the revision.
+#                 MAJOR.MINOR.REVISION becomes MAJOR.MINOR
+#----------------------------------------------------------------------------------------------------------------------
+__parse_version_string() {
+    VERSION_STRING="$1"
+    PARSED_VERSION=$(
+        echo "$VERSION_STRING" |
+        sed -e 's/^/#/' \
+            -e 's/^#[^0-9]*\([0-9][0-9]*\.[0-9][0-9]*\)\(\.[0-9][0-9]*\).*$/\1/' \
+            -e 's/^#[^0-9]*\([0-9][0-9]*\.[0-9][0-9]*\).*$/\1/' \
+            -e 's/^#[^0-9]*\([0-9][0-9]*\).*$/\1/' \
+            -e 's/^#.*$//'
+    )
+    echo "$PARSED_VERSION"
+}
+
+
+#---  FUNCTION  -------------------------------------------------------------------------------------------------------
+#          NAME:  __derive_debian_numeric_version
+#   DESCRIPTION:  Derive the numeric version from a Debian version string.
+#----------------------------------------------------------------------------------------------------------------------
+__derive_debian_numeric_version() {
+    NUMERIC_VERSION=""
+    INPUT_VERSION="$1"
+    if echo "$INPUT_VERSION" | grep -q '^[0-9]'; then
+        NUMERIC_VERSION="$INPUT_VERSION"
+    elif [ -z "$INPUT_VERSION" ] && [ -f "/etc/debian_version" ]; then
+        INPUT_VERSION="$(cat /etc/debian_version)"
+    fi
+    if [ -z "$NUMERIC_VERSION" ]; then
+        if [ "$INPUT_VERSION" = "wheezy/sid" ]; then
+            # I've found an EC2 wheezy image which did not tell its version
+            NUMERIC_VERSION=$(__parse_version_string "7.0")
+        elif [ "$INPUT_VERSION" = "jessie/sid" ]; then
+            NUMERIC_VERSION=$(__parse_version_string "8.0")
+        elif [ "$INPUT_VERSION" = "stretch/sid" ]; then
+            NUMERIC_VERSION=$(__parse_version_string "9.0")
+        elif [ "$INPUT_VERSION" = "buster/sid" ]; then
+            NUMERIC_VERSION=$(__parse_version_string "10.0")
+        elif [ "$INPUT_VERSION" = "bullseye/sid" ]; then
+            NUMERIC_VERSION=$(__parse_version_string "11.0")
+        else
+            echowarn "Unable to parse the Debian Version (codename: '$INPUT_VERSION')"
+        fi
+    fi
+    echo "$NUMERIC_VERSION"
+}
+
+
+#---  FUNCTION  -------------------------------------------------------------------------------------------------------
+#          NAME:  __unquote_string
+#   DESCRIPTION:  Strip single or double quotes from the provided string.
+#----------------------------------------------------------------------------------------------------------------------
+__unquote_string() {
+    # shellcheck disable=SC1117
+    echo "$*" | sed -e "s/^\([\"\']\)\(.*\)\1\$/\2/g"
+}
+
+#---  FUNCTION  -------------------------------------------------------------------------------------------------------
+#          NAME:  __camelcase_split
+#   DESCRIPTION:  Convert 'CamelCased' strings to 'Camel Cased'
+#----------------------------------------------------------------------------------------------------------------------
+__camelcase_split() {
+    echo "$*" | sed -e 's/\([^[:upper:][:punct:]]\)\([[:upper:]]\)/\1 \2/g'
+}
+
+#---  FUNCTION  -------------------------------------------------------------------------------------------------------
+#          NAME:  __strip_duplicates
+#   DESCRIPTION:  Strip duplicate strings
+#----------------------------------------------------------------------------------------------------------------------
+__strip_duplicates() {
+    echo "$*" | tr -s '[:space:]' '\n' | awk '!x[$0]++'
+}
+
+#---  FUNCTION  -------------------------------------------------------------------------------------------------------
+#          NAME:  __sort_release_files
+#   DESCRIPTION:  Custom sort function. Alphabetical or numerical sort is not
+#                 enough.
+#----------------------------------------------------------------------------------------------------------------------
+__sort_release_files() {
+    KNOWN_RELEASE_FILES=$(echo "(arch|alpine|centos|debian|ubuntu|fedora|redhat|suse|\
+        mandrake|mandriva|gentoo|slackware|turbolinux|unitedlinux|void|lsb|system|\
+        oracle|os)(-|_)(release|version)" | sed -E 's:[[:space:]]::g')
+    primary_release_files=""
+    secondary_release_files=""
+    # Sort know VS un-known files first
+    for release_file in $(echo "${@}" | sed -E 's:[[:space:]]:\n:g' | sort -f | uniq); do
+        match=$(echo "$release_file" | grep -E -i "${KNOWN_RELEASE_FILES}")
+        if [ "${match}" != "" ]; then
+            primary_release_files="${primary_release_files} ${release_file}"
+        else
+            secondary_release_files="${secondary_release_files} ${release_file}"
+        fi
+    done
+
+    # Now let's sort by know files importance, max important goes last in the max_prio list
+    max_prio="redhat-release centos-release oracle-release fedora-release"
+    for entry in $max_prio; do
+        if [ "$(echo "${primary_release_files}" | grep "$entry")" != "" ]; then
+            primary_release_files=$(echo "${primary_release_files}" | sed -e "s:\\(.*\\)\\($entry\\)\\(.*\\):\\2 \\1 \\3:g")
+        fi
+    done
+    # Now, least important goes last in the min_prio list
+    min_prio="lsb-release"
+    for entry in $min_prio; do
+        if [ "$(echo "${primary_release_files}" | grep "$entry")" != "" ]; then
+            primary_release_files=$(echo "${primary_release_files}" | sed -e "s:\\(.*\\)\\($entry\\)\\(.*\\):\\1 \\3 \\2:g")
+        fi
+    done
+
+    # Echo the results collapsing multiple white-space into a single white-space
+    echo "${primary_release_files} ${secondary_release_files}" | sed -E 's:[[:space:]]+:\n:g'
+}
+
+
+#---  FUNCTION  -------------------------------------------------------------------------------------------------------
+#          NAME:  __gather_linux_system_info
+#   DESCRIPTION:  Discover Linux system information
+#----------------------------------------------------------------------------------------------------------------------
+__gather_linux_system_info() {
+    DISTRO_NAME=""
+    DISTRO_VERSION=""
+
+    # Let's test if the lsb_release binary is available
+    rv=$(lsb_release >/dev/null 2>&1)
+
+    # shellcheck disable=SC2181
+    if [ $? -eq 0 ]; then
+        DISTRO_NAME=$(lsb_release -si)
+        if [ "${DISTRO_NAME}" = "Scientific" ]; then
+            DISTRO_NAME="Scientific Linux"
+        elif [ "$(echo "$DISTRO_NAME" | grep ^CloudLinux)" != "" ]; then
+            DISTRO_NAME="Cloud Linux"
+        elif [ "$(echo "$DISTRO_NAME" | grep ^RedHat)" != "" ]; then
+            # Let's convert 'CamelCased' to 'Camel Cased'
+            n=$(__camelcase_split "$DISTRO_NAME")
+            # Skip setting DISTRO_NAME this time, splitting CamelCase has failed.
+            # See https://github.com/saltstack/salt-bootstrap/issues/918
+            [ "$n" = "$DISTRO_NAME" ] && DISTRO_NAME="" || DISTRO_NAME="$n"
+        elif [ "$( echo "${DISTRO_NAME}" | grep openSUSE )" != "" ]; then
+            # lsb_release -si returns "openSUSE Tumbleweed" on openSUSE tumbleweed
+            # lsb_release -si returns "openSUSE project" on openSUSE 12.3
+            # lsb_release -si returns "openSUSE" on openSUSE 15.n
+            DISTRO_NAME="opensuse"
+        elif [ "${DISTRO_NAME}" = "SUSE LINUX" ]; then
+            if [ "$(lsb_release -sd | grep -i opensuse)" != "" ]; then
+                # openSUSE 12.2 reports SUSE LINUX on lsb_release -si
+                DISTRO_NAME="opensuse"
+            else
+                # lsb_release -si returns "SUSE LINUX" on SLES 11 SP3
+                DISTRO_NAME="suse"
+            fi
+        elif [ "${DISTRO_NAME}" = "EnterpriseEnterpriseServer" ]; then
+            # This the Oracle Linux Enterprise ID before ORACLE LINUX 5 UPDATE 3
+            DISTRO_NAME="Oracle Linux"
+        elif [ "${DISTRO_NAME}" = "OracleServer" ]; then
+            # This the Oracle Linux Server 6.5
+            DISTRO_NAME="Oracle Linux"
+        elif [ "${DISTRO_NAME}" = "AmazonAMI" ] || [ "${DISTRO_NAME}" = "Amazon" ]; then
+            DISTRO_NAME="Amazon Linux AMI"
+        elif [ "${DISTRO_NAME}" = "ManjaroLinux" ]; then
+            DISTRO_NAME="Arch Linux"
+        elif [ "${DISTRO_NAME}" = "Arch" ]; then
+            DISTRO_NAME="Arch Linux"
+            return
+        fi
+        rv=$(lsb_release -sr)
+        [ "${rv}" != "" ] && DISTRO_VERSION=$(__parse_version_string "$rv")
+    elif [ -f /etc/lsb-release ]; then
+        # We don't have the lsb_release binary, though, we do have the file it parses
+        DISTRO_NAME=$(grep DISTRIB_ID /etc/lsb-release | sed -e 's/.*=//')
+        rv=$(grep DISTRIB_RELEASE /etc/lsb-release | sed -e 's/.*=//')
+        [ "${rv}" != "" ] && DISTRO_VERSION=$(__parse_version_string "$rv")
+    fi
+
+    if [ "$DISTRO_NAME" != "" ] && [ "$DISTRO_VERSION" != "" ]; then
+        # We already have the distribution name and version
+        return
+    fi
+    # shellcheck disable=SC2035,SC2086
+    for rsource in $(__sort_release_files "$(
+            cd /etc && /bin/ls *[_-]release *[_-]version 2>/dev/null | env -i sort | \
+            sed -e '/^redhat-release$/d' -e '/^lsb-release$/d'; \
+            echo redhat-release lsb-release
+            )"); do
+
+        [ ! -f "/etc/${rsource}" ] && continue      # Does not exist
+
+        n=$(echo "${rsource}" | sed -e 's/[_-]release$//' -e 's/[_-]version$//')
+        shortname=$(echo "${n}" | tr '[:upper:]' '[:lower:]')
+        if [ "$shortname" = "debian" ]; then
+            rv=$(__derive_debian_numeric_version "$(cat /etc/${rsource})")
+        else
+            rv=$( (grep VERSION "/etc/${rsource}"; cat "/etc/${rsource}") | grep '[0-9]' | sed -e 'q' )
+        fi
+        [ "${rv}" = "" ] && [ "$shortname" != "arch" ] && continue  # There's no version information. Continue to next rsource
+        v=$(__parse_version_string "$rv")
+        case $shortname in
+            redhat             )
+                if [ "$(grep -E 'CentOS' /etc/${rsource})" != "" ]; then
+                    n="CentOS"
+                elif [ "$(grep -E 'Scientific' /etc/${rsource})" != "" ]; then
+                    n="Scientific Linux"
+                elif [ "$(grep -E 'Red Hat Enterprise Linux' /etc/${rsource})" != "" ]; then
+                    n="<R>ed <H>at <E>nterprise <L>inux"
+                else
+                    n="<R>ed <H>at <L>inux"
+                fi
+                ;;
+            arch               ) n="Arch Linux"     ;;
+            alpine             ) n="Alpine Linux"   ;;
+            centos             ) n="CentOS"         ;;
+            debian             ) n="Debian"         ;;
+            ubuntu             ) n="Ubuntu"         ;;
+            fedora             ) n="Fedora"         ;;
+            suse|opensuse      ) n="SUSE"           ;;
+            mandrake*|mandriva ) n="Mandriva"       ;;
+            gentoo             ) n="Gentoo"         ;;
+            slackware          ) n="Slackware"      ;;
+            turbolinux         ) n="TurboLinux"     ;;
+            unitedlinux        ) n="UnitedLinux"    ;;
+            void               ) n="VoidLinux"      ;;
+            oracle             ) n="Oracle Linux"   ;;
+            system             )
+                while read -r line; do
+                    [ "${n}x" != "systemx" ] && break
+                    case "$line" in
+                        *Amazon*Linux*AMI*)
+                            n="Amazon Linux AMI"
+                            break
+                    esac
+                done < "/etc/${rsource}"
+                ;;
+            os                 )
+                nn="$(__unquote_string "$(grep '^ID=' /etc/os-release | sed -e 's/^ID=\(.*\)$/\1/g')")"
+                rv="$(__unquote_string "$(grep '^VERSION_ID=' /etc/os-release | sed -e 's/^VERSION_ID=\(.*\)$/\1/g')")"
+                [ "${rv}" != "" ] && v=$(__parse_version_string "$rv") || v=""
+                case $(echo "${nn}" | tr '[:upper:]' '[:lower:]') in
+                    alpine      )
+                        n="Alpine Linux"
+                        v="${rv}"
+                        ;;
+                    amzn        )
+                        # Amazon AMI's after 2014.09 match here
+                        n="Amazon Linux AMI"
+                        ;;
+                    arch        )
+                        n="Arch Linux"
+                        v=""  # Arch Linux does not provide a version.
+                        ;;
+                    cloudlinux  )
+                        n="Cloud Linux"
+                        ;;
+                    debian      )
+                        n="Debian"
+                        v=$(__derive_debian_numeric_version "$v")
+                        ;;
+                    sles  )
+                        n="SUSE"
+                        v="${rv}"
+                        ;;
+                    opensuse-* )
+                        n="opensuse"
+                        v="${rv}"
+                        ;;
+                    *           )
+                        n=${nn}
+                        ;;
+                esac
+                ;;
+            *                  ) n="${n}"           ;
+        esac
+        DISTRO_NAME=$n
+        DISTRO_VERSION=$v
+        break
+    done
+}
+
+
+#---  FUNCTION  -------------------------------------------------------------------------------------------------------
+#          NAME:  __install_python()
+#   DESCRIPTION:  Install a different version of python on a host. Currently this has only been tested on CentOS 6 and
+#                 is considered experimental.
+#----------------------------------------------------------------------------------------------------------------------
+__install_python() {
+    if [ "$_PY_EXE" = "" ]; then
+        echoerror "Must specify -x <pythonversion> with -y to install a specific python version"
+        exit 1
+    fi
+
+    __PACKAGES="$_PY_PKG_VER"
+
+    if [ ${_DISABLE_REPOS} -eq ${BS_FALSE} ]; then
+        echoinfo "Attempting to install a repo to help provide a separate python package"
+        echoinfo "$DISTRO_NAME_L"
+        case "$DISTRO_NAME_L" in
+            "red_hat"|"centos")
+                __PYTHON_REPO_URL="https://repo.ius.io/ius-release-el${DISTRO_MAJOR_VERSION}.rpm"
+                ;;
+            *)
+                echoerror "Installing a repo to provide a python package is only supported on Redhat/CentOS.
+                If a repo is already available, please try running script with -r."
+                exit 1
+                ;;
+        esac
+
+        echoinfo "Installing IUS repo"
+        __yum_install_noinput "${__PYTHON_REPO_URL}" || return 1
+    fi
+
+    echoinfo "Installing ${__PACKAGES}"
+    __yum_install_noinput "${__PACKAGES}" || return 1
+}
+
+
+#---  FUNCTION  -------------------------------------------------------------------------------------------------------
+#          NAME:  __gather_sunos_system_info
+#   DESCRIPTION:  Discover SunOS system info
+#----------------------------------------------------------------------------------------------------------------------
+__gather_sunos_system_info() {
+    if [ -f /sbin/uname ]; then
+        DISTRO_VERSION=$(/sbin/uname -X | awk '/[kK][eE][rR][nN][eE][lL][iI][dD]/ { print $3 }')
+    fi
+
+    DISTRO_NAME=""
+    if [ -f /etc/release ]; then
+        while read -r line; do
+            [ "${DISTRO_NAME}" != "" ] && break
+            case "$line" in
+                *OpenIndiana*oi_[0-9]*)
+                    DISTRO_NAME="OpenIndiana"
+                    DISTRO_VERSION=$(echo "$line" | sed -nE "s/OpenIndiana(.*)oi_([[:digit:]]+)(.*)/\\2/p")
+                    break
+                    ;;
+                *OpenSolaris*snv_[0-9]*)
+                    DISTRO_NAME="OpenSolaris"
+                    DISTRO_VERSION=$(echo "$line" | sed -nE "s/OpenSolaris(.*)snv_([[:digit:]]+)(.*)/\\2/p")
+                    break
+                    ;;
+                *Oracle*Solaris*[0-9]*)
+                    DISTRO_NAME="Oracle Solaris"
+                    DISTRO_VERSION=$(echo "$line" | sed -nE "s/(Oracle Solaris) ([[:digit:]]+)(.*)/\\2/p")
+                    break
+                    ;;
+                *Solaris*)
+                    DISTRO_NAME="Solaris"
+                    # Let's make sure we not actually on a Joyent's SmartOS VM since some releases
+                    # don't have SmartOS in `/etc/release`, only `Solaris`
+                    if uname -v | grep joyent >/dev/null 2>&1; then
+                        DISTRO_NAME="SmartOS"
+                    fi
+                    break
+                    ;;
+                *NexentaCore*)
+                    DISTRO_NAME="Nexenta Core"
+                    break
+                    ;;
+                *SmartOS*)
+                    DISTRO_NAME="SmartOS"
+                    break
+                    ;;
+                *OmniOS*)
+                    DISTRO_NAME="OmniOS"
+                    DISTRO_VERSION=$(echo "$line" | awk '{print $3}')
+                    _SIMPLIFY_VERSION=$BS_FALSE
+                    break
+                    ;;
+            esac
+        done < /etc/release
+    fi
+
+    if [ "${DISTRO_NAME}" = "" ]; then
+        DISTRO_NAME="Solaris"
+        DISTRO_VERSION=$(
+            echo "${OS_VERSION}" |
+            sed -e 's;^4\.;1.;' \
+                -e 's;^5\.\([0-6]\)[^0-9]*$;2.\1;' \
+                -e 's;^5\.\([0-9][0-9]*\).*;\1;'
+        )
+    fi
+
+    if [ "${DISTRO_NAME}" = "SmartOS" ]; then
+        VIRTUAL_TYPE="smartmachine"
+        if [ "$(zonename)" = "global" ]; then
+            VIRTUAL_TYPE="global"
+        fi
+    fi
+}
+
+
+#---  FUNCTION  -------------------------------------------------------------------------------------------------------
+#          NAME:  __gather_bsd_system_info
+#   DESCRIPTION:  Discover OpenBSD, NetBSD and FreeBSD systems information
+#----------------------------------------------------------------------------------------------------------------------
+__gather_bsd_system_info() {
+    DISTRO_NAME=${OS_NAME}
+    DISTRO_VERSION=$(echo "${OS_VERSION}" | sed -e 's;[()];;' -e 's/-.*$//')
+}
+
+
+#---  FUNCTION  -------------------------------------------------------------------------------------------------------
+#          NAME:  __gather_osx_system_info
+#   DESCRIPTION:  Discover MacOS X
+#----------------------------------------------------------------------------------------------------------------------
+__gather_osx_system_info() {
+    DISTRO_NAME="MacOSX"
+    DISTRO_VERSION=$(sw_vers -productVersion)
+}
+
+
+#---  FUNCTION  -------------------------------------------------------------------------------------------------------
+#          NAME:  __gather_system_info
+#   DESCRIPTION:  Discover which system and distribution we are running.
+#----------------------------------------------------------------------------------------------------------------------
+__gather_system_info() {
+    case ${OS_NAME_L} in
+        linux )
+            __gather_linux_system_info
+            ;;
+        sunos )
+            __gather_sunos_system_info
+            ;;
+        openbsd|freebsd|netbsd )
+            __gather_bsd_system_info
+            ;;
+        darwin )
+            __gather_osx_system_info
+            ;;
+        * )
+            echoerror "${OS_NAME} not supported.";
+            exit 1
+            ;;
+    esac
+
+}
+
+
+#---  FUNCTION  -------------------------------------------------------------------------------------------------------
+#          NAME:  __ubuntu_derivatives_translation
+#   DESCRIPTION:  Map Ubuntu derivatives to their Ubuntu base versions.
+#                 If distro has a known Ubuntu base version, use those install
+#                 functions by pretending to be Ubuntu (i.e. change global vars)
+#----------------------------------------------------------------------------------------------------------------------
+# shellcheck disable=SC2034
+__ubuntu_derivatives_translation() {
+    UBUNTU_DERIVATIVES="(trisquel|linuxmint|linaro|elementary_os|neon)"
+    # Mappings
+    trisquel_6_ubuntu_base="12.04"
+    linuxmint_13_ubuntu_base="12.04"
+    linuxmint_17_ubuntu_base="14.04"
+    linuxmint_18_ubuntu_base="16.04"
+    linuxmint_19_ubuntu_base="18.04"
+    linuxmint_20_ubuntu_base="20.04"
+    linaro_12_ubuntu_base="12.04"
+    elementary_os_02_ubuntu_base="12.04"
+    neon_16_ubuntu_base="16.04"
+    neon_18_ubuntu_base="18.04"
+    neon_20_ubuntu_base="20.04"
+
+    # Translate Ubuntu derivatives to their base Ubuntu version
+    match=$(echo "$DISTRO_NAME_L" | grep -E ${UBUNTU_DERIVATIVES})
+
+    if [ "${match}" != "" ]; then
+        case $match in
+            "elementary_os")
+                _major=$(echo "$DISTRO_VERSION" | sed 's/\.//g')
+                ;;
+            "linuxmint")
+                export LSB_ETC_LSB_RELEASE=/etc/upstream-release/lsb-release
+                _major=$(echo "$DISTRO_VERSION" | sed 's/^\([0-9]*\).*/\1/g')
+                ;;
+            *)
+                _major=$(echo "$DISTRO_VERSION" | sed 's/^\([0-9]*\).*/\1/g')
+                ;;
+        esac
+
+        _ubuntu_version=$(eval echo "\$${match}_${_major}_ubuntu_base")
+
+        if [ "$_ubuntu_version" != "" ]; then
+            echodebug "Detected Ubuntu $_ubuntu_version derivative"
+            DISTRO_NAME_L="ubuntu"
+            DISTRO_VERSION="$_ubuntu_version"
+        fi
+    fi
+}
+
+
+#---  FUNCTION  -------------------------------------------------------------------------------------------------------
+#          NAME:  __check_dpkg_architecture
+#   DESCRIPTION:  Determine the primary architecture for packages to install on Debian and derivatives
+#                 and issue all necessary error messages.
+#----------------------------------------------------------------------------------------------------------------------
+__check_dpkg_architecture() {
+    if __check_command_exists dpkg; then
+        DPKG_ARCHITECTURE="$(dpkg --print-architecture)"
+    else
+        echoerror "dpkg: command not found."
+        return 1
+    fi
+
+    __REPO_ARCH="$DPKG_ARCHITECTURE"
+    __REPO_ARCH_DEB='deb [signed-by=/usr/share/keyrings/salt-archive-keyring.gpg]'
+    __return_code=0
+
+    case $DPKG_ARCHITECTURE in
+        "i386")
+            error_msg="$_REPO_URL likely doesn't have all required 32-bit packages for $DISTRO_NAME $DISTRO_MAJOR_VERSION."
+            # amd64 is just a part of repository URI, 32-bit pkgs are hosted under the same location
+            __REPO_ARCH="amd64"
+            ;;
+        "amd64")
+            error_msg=""
+            ;;
+        "arm64")
+            if [ "$_CUSTOM_REPO_URL" != "null" ]; then
+                warn_msg="Support for arm64 is experimental, make sure the custom repository used has the expected structure and contents."
+            else
+                # Saltstack official repository does not yet have arm64 metadata,
+                # use amd64 repositories on arm64, since all pkgs are arch-independent
+                __REPO_ARCH="amd64"
+                __REPO_ARCH_DEB="deb [signed-by=/usr/share/keyrings/salt-archive-keyring.gpg arch=$__REPO_ARCH]"
+                warn_msg="Support for arm64 packages is experimental and might rely on architecture-independent packages from the amd64 repository."
+            fi
+            error_msg=""
+            ;;
+        "armhf")
+            if [ "$DISTRO_NAME_L" = "ubuntu" ] || [ "$DISTRO_MAJOR_VERSION" -lt 8 ]; then
+                error_msg="Support for armhf packages at $_REPO_URL is limited to Debian/Raspbian 8 platforms."
+                __return_code=1
+            else
+                error_msg=""
+            fi
+            ;;
+        *)
+            error_msg="$_REPO_URL doesn't have packages for your system architecture: $DPKG_ARCHITECTURE."
+            __return_code=1
+            ;;
+    esac
+
+    if [ "${warn_msg:-}" != "" ]; then
+        # AArch64: Do not fail at this point, but warn the user about experimental support
+        # See https://github.com/saltstack/salt-bootstrap/issues/1240
+        echowarn "${warn_msg}"
+    fi
+    if [ "${error_msg}" != "" ]; then
+        echoerror "${error_msg}"
+        if [ "$ITYPE" != "git" ]; then
+            echoerror "You can try git installation mode, i.e.: sh ${__ScriptName} git v2017.7.2."
+            echoerror "It may be necessary to use git installation mode with pip and disable the SaltStack apt repository."
+            echoerror "For example:"
+            echoerror "    sh ${__ScriptName} -r -P git v2017.7.2"
+        fi
+    fi
+
+    if [ "${__return_code}" -eq 0 ]; then
+        return 0
+    else
+        return 1
+    fi
+}
+
+
+#---  FUNCTION  -------------------------------------------------------------------------------------------------------
+#          NAME:  __ubuntu_codename_translation
+#   DESCRIPTION:  Map Ubuntu major versions to their corresponding codenames
+#----------------------------------------------------------------------------------------------------------------------
+# shellcheck disable=SC2034
+__ubuntu_codename_translation() {
+    case $DISTRO_MINOR_VERSION in
+        "04")
+            _april="yes"
+            ;;
+        "10")
+            _april=""
+            ;;
+        *)
+            _april="yes"
+            ;;
+    esac
+
+    case $DISTRO_MAJOR_VERSION in
+        "12")
+            DISTRO_CODENAME="precise"
+            ;;
+        "14")
+            DISTRO_CODENAME="trusty"
+            ;;
+        "16")
+            DISTRO_CODENAME="xenial"
+            ;;
+        "18")
+            DISTRO_CODENAME="bionic"
+            ;;
+        "20")
+            DISTRO_CODENAME="focal"
+            ;;
+        "21")
+            DISTRO_CODENAME="hirsute"
+            ;;
+        *)
+            DISTRO_CODENAME="trusty"
+            ;;
+    esac
+}
+
+
+#---  FUNCTION  -------------------------------------------------------------------------------------------------------
+#          NAME:  __debian_derivatives_translation
+#   DESCRIPTION:  Map Debian derivatives to their Debian base versions.
+#                 If distro has a known Debian base version, use those install
+#                 functions by pretending to be Debian (i.e. change global vars)
+#----------------------------------------------------------------------------------------------------------------------
+# shellcheck disable=SC2034
+__debian_derivatives_translation() {
+    # If the file does not exist, return
+    [ ! -f /etc/os-release ] && return
+
+    DEBIAN_DERIVATIVES="(cumulus|devuan|kali|linuxmint|raspbian|bunsenlabs|turnkey)"
+    # Mappings
+    cumulus_2_debian_base="7.0"
+    cumulus_3_debian_base="8.0"
+    cumulus_4_debian_base="10.0"
+    devuan_1_debian_base="8.0"
+    devuan_2_debian_base="9.0"
+    kali_1_debian_base="7.0"
+    linuxmint_1_debian_base="8.0"
+    raspbian_8_debian_base="8.0"
+    raspbian_9_debian_base="9.0"
+    raspbian_10_debian_base="10.0"
+    bunsenlabs_9_debian_base="9.0"
+    turnkey_9_debian_base="9.0"
+
+    # Translate Debian derivatives to their base Debian version
+    match=$(echo "$DISTRO_NAME_L" | grep -E ${DEBIAN_DERIVATIVES})
+
+    if [ "${match}" != "" ]; then
+        case $match in
+            cumulus*)
+                _major=$(echo "$DISTRO_VERSION" | sed 's/^\([0-9]*\).*/\1/g')
+                _debian_derivative="cumulus"
+                ;;
+            devuan)
+                _major=$(echo "$DISTRO_VERSION" | sed 's/^\([0-9]*\).*/\1/g')
+                _debian_derivative="devuan"
+                ;;
+            kali)
+                _major=$(echo "$DISTRO_VERSION" | sed 's/^\([0-9]*\).*/\1/g')
+                _debian_derivative="kali"
+                ;;
+            linuxmint)
+                _major=$(echo "$DISTRO_VERSION" | sed 's/^\([0-9]*\).*/\1/g')
+                _debian_derivative="linuxmint"
+                ;;
+            raspbian)
+                _major=$(echo "$DISTRO_VERSION" | sed 's/^\([0-9]*\).*/\1/g')
+                _debian_derivative="raspbian"
+                ;;
+            bunsenlabs)
+                _major=$(echo "$DISTRO_VERSION" | sed 's/^\([0-9]*\).*/\1/g')
+                _debian_derivative="bunsenlabs"
+                ;;
+            turnkey)
+                _major=$(echo "$DISTRO_VERSION" | sed 's/^\([0-9]*\).*/\1/g')
+                _debian_derivative="turnkey"
+                ;;
+        esac
+
+        _debian_version=$(eval echo "\$${_debian_derivative}_${_major}_debian_base" 2>/dev/null)
+
+        if [ "$_debian_version" != "" ]; then
+            echodebug "Detected Debian $_debian_version derivative"
+            DISTRO_NAME_L="debian"
+            DISTRO_VERSION="$_debian_version"
+            DISTRO_MAJOR_VERSION="$(echo "$DISTRO_VERSION" | sed 's/^\([0-9]*\).*/\1/g')"
+        fi
+    fi
+}
+
+
+#---  FUNCTION  -------------------------------------------------------------------------------------------------------
+#          NAME:  __debian_codename_translation
+#   DESCRIPTION:  Map Debian major versions to their corresponding code names
+#----------------------------------------------------------------------------------------------------------------------
+# shellcheck disable=SC2034
+__debian_codename_translation() {
+
+    case $DISTRO_MAJOR_VERSION in
+        "9")
+            DISTRO_CODENAME="stretch"
+            ;;
+        "10")
+            DISTRO_CODENAME="buster"
+            ;;
+        "11")
+            DISTRO_CODENAME="bullseye"
+            ;;
+        *)
+            DISTRO_CODENAME="stretch"
+            ;;
+    esac
+}
+
+
+#---  FUNCTION  -------------------------------------------------------------------------------------------------------
+#          NAME:  __check_end_of_life_versions
+#   DESCRIPTION:  Check for end of life distribution versions
+#----------------------------------------------------------------------------------------------------------------------
+__check_end_of_life_versions() {
+    case "${DISTRO_NAME_L}" in
+        debian)
+            # Debian versions below 9 are not supported
+            if [ "$DISTRO_MAJOR_VERSION" -lt 9 ]; then
+                echoerror "End of life distributions are not supported."
+                echoerror "Please consider upgrading to the next stable. See:"
+                echoerror "    https://wiki.debian.org/DebianReleases"
+                exit 1
+            fi
+            ;;
+
+        ubuntu)
+            # Ubuntu versions not supported
+            #
+            #  < 16.04
+            #  = 16.10
+            #  = 17.04, 17.10
+            #  = 18.10
+            #  = 19.04, 19.10
+            if [ "$DISTRO_MAJOR_VERSION" -lt 16 ] || \
+                [ "$DISTRO_MAJOR_VERSION" -eq 17 ] || \
+                [ "$DISTRO_MAJOR_VERSION" -eq 19 ] || \
+                { [ "$DISTRO_MAJOR_VERSION" -eq 16 ] && [ "$DISTRO_MINOR_VERSION" -eq 10 ]; } || \
+                { [ "$DISTRO_MAJOR_VERSION" -eq 18 ] && [ "$DISTRO_MINOR_VERSION" -eq 10 ]; }; then
+                echoerror "End of life distributions are not supported."
+                echoerror "Please consider upgrading to the next stable. See:"
+                echoerror "    https://wiki.ubuntu.com/Releases"
+                exit 1
+            fi
+            ;;
+
+        opensuse)
+            # openSUSE versions not supported
+            #
+            #  <= 13.X
+            #  <= 42.2
+            if [ "$DISTRO_MAJOR_VERSION" -lt 15 ] || \
+                { [ "$DISTRO_MAJOR_VERSION" -eq 42 ] && [ "$DISTRO_MINOR_VERSION" -le 2 ]; }; then
+                echoerror "End of life distributions are not supported."
+                echoerror "Please consider upgrading to the next stable. See:"
+                echoerror "    http://en.opensuse.org/Lifetime"
+                exit 1
+            fi
+            ;;
+
+        suse)
+            # SuSE versions not supported
+            #
+            # < 11 SP4
+            # < 12 SP2
+            # < 15 SP1
+            SUSE_PATCHLEVEL=$(awk -F'=' '/VERSION_ID/ { print $2 }' /etc/os-release | grep -oP "\.\K\w+")
+            if [ "${SUSE_PATCHLEVEL}" = "" ]; then
+                SUSE_PATCHLEVEL="00"
+            fi
+            if [ "$DISTRO_MAJOR_VERSION" -lt 11 ] || \
+                { [ "$DISTRO_MAJOR_VERSION" -eq 11 ] && [ "$SUSE_PATCHLEVEL" -lt 04 ]; } || \
+                { [ "$DISTRO_MAJOR_VERSION" -eq 15 ] && [ "$SUSE_PATCHLEVEL" -lt 01 ]; } || \
+                { [ "$DISTRO_MAJOR_VERSION" -eq 12 ] && [ "$SUSE_PATCHLEVEL" -lt 02 ]; }; then
+                echoerror "Versions lower than SuSE 11 SP4, 12 SP2 or 15 SP1 are not supported."
+                echoerror "Please consider upgrading to the next stable"
+                echoerror "    https://www.suse.com/lifecycle/"
+                exit 1
+            fi
+            ;;
+
+        fedora)
+            # Fedora lower than 33 are no longer supported
+            if [ "$DISTRO_MAJOR_VERSION" -lt 33 ]; then
+                echoerror "End of life distributions are not supported."
+                echoerror "Please consider upgrading to the next stable. See:"
+                echoerror "    https://fedoraproject.org/wiki/Releases"
+                exit 1
+            fi
+            ;;
+
+        centos)
+            # CentOS versions lower than 7 are no longer supported
+            if [ "$DISTRO_MAJOR_VERSION" -lt 7 ]; then
+                echoerror "End of life distributions are not supported."
+                echoerror "Please consider upgrading to the next stable. See:"
+                echoerror "    http://wiki.centos.org/Download"
+                exit 1
+            fi
+            ;;
+
+        red_hat*linux)
+            # Red Hat (Enterprise) Linux versions lower than 7 are no longer supported
+            if [ "$DISTRO_MAJOR_VERSION" -lt 7 ]; then
+                echoerror "End of life distributions are not supported."
+                echoerror "Please consider upgrading to the next stable. See:"
+                echoerror "    https://access.redhat.com/support/policy/updates/errata/"
+                exit 1
+            fi
+            ;;
+
+        oracle*linux)
+            # Oracle Linux versions lower than 7 are no longer supported
+            if [ "$DISTRO_MAJOR_VERSION" -lt 7 ]; then
+                echoerror "End of life distributions are not supported."
+                echoerror "Please consider upgrading to the next stable. See:"
+                echoerror "    http://www.oracle.com/us/support/library/elsp-lifetime-069338.pdf"
+                exit 1
+            fi
+            ;;
+
+        scientific*linux)
+            # Scientific Linux versions lower than 7 are no longer supported
+            if [ "$DISTRO_MAJOR_VERSION" -lt 7 ]; then
+                echoerror "End of life distributions are not supported."
+                echoerror "Please consider upgrading to the next stable. See:"
+                echoerror "    https://www.scientificlinux.org/downloads/sl-versions/"
+                exit 1
+            fi
+            ;;
+
+        cloud*linux)
+            # Cloud Linux versions lower than 7 are no longer supported
+            if [ "$DISTRO_MAJOR_VERSION" -lt 7 ]; then
+                echoerror "End of life distributions are not supported."
+                echoerror "Please consider upgrading to the next stable. See:"
+                echoerror "    https://docs.cloudlinux.com/index.html?cloudlinux_life-cycle.html"
+                exit 1
+            fi
+            ;;
+
+        amazon*linux*ami)
+            # Amazon Linux versions 2018.XX and lower no longer supported
+            # Except for Amazon Linux 2, which reset the major version counter
+            if [ "$DISTRO_MAJOR_VERSION" -le 2018 ] && [ "$DISTRO_MAJOR_VERSION" -gt 10 ]; then
+                echoerror "End of life distributions are not supported."
+                echoerror "Please consider upgrading to the next stable. See:"
+                echoerror "    https://aws.amazon.com/amazon-linux-ami/"
+                exit 1
+            fi
+            ;;
+
+        freebsd)
+            # FreeBSD versions lower than 11 are EOL
+            if [ "$DISTRO_MAJOR_VERSION" -lt 11 ]; then
+                echoerror "Versions lower than FreeBSD 11 are EOL and no longer supported."
+                exit 1
+            fi
+            ;;
+
+        *)
+            ;;
+    esac
+}
+
+
+__gather_system_info
+
+echo
+echoinfo "System Information:"
+echoinfo "  CPU:          ${CPU_VENDOR_ID}"
+echoinfo "  CPU Arch:     ${CPU_ARCH}"
+echoinfo "  OS Name:      ${OS_NAME}"
+echoinfo "  OS Version:   ${OS_VERSION}"
+echoinfo "  Distribution: ${DISTRO_NAME} ${DISTRO_VERSION}"
+echo
+
+# Simplify distro name naming on functions
+DISTRO_NAME_L=$(echo "$DISTRO_NAME" | tr '[:upper:]' '[:lower:]' | sed 's/[^a-zA-Z0-9_ ]//g' | sed -Ee 's/([[:space:]])+/_/g' | sed -Ee 's/tumbleweed//' )
+
+# Simplify version naming on functions
+if [ "$DISTRO_VERSION" = "" ] || [ ${_SIMPLIFY_VERSION} -eq $BS_FALSE ]; then
+    DISTRO_MAJOR_VERSION=""
+    DISTRO_MINOR_VERSION=""
+    PREFIXED_DISTRO_MAJOR_VERSION=""
+    PREFIXED_DISTRO_MINOR_VERSION=""
+else
+    DISTRO_MAJOR_VERSION=$(echo "$DISTRO_VERSION" | sed 's/^\([0-9]*\).*/\1/g')
+    DISTRO_MINOR_VERSION=$(echo "$DISTRO_VERSION" | sed 's/^\([0-9]*\).\([0-9]*\).*/\2/g')
+    PREFIXED_DISTRO_MAJOR_VERSION="_${DISTRO_MAJOR_VERSION}"
+    if [ "${PREFIXED_DISTRO_MAJOR_VERSION}" = "_" ]; then
+        PREFIXED_DISTRO_MAJOR_VERSION=""
+    fi
+    PREFIXED_DISTRO_MINOR_VERSION="_${DISTRO_MINOR_VERSION}"
+    if [ "${PREFIXED_DISTRO_MINOR_VERSION}" = "_" ]; then
+        PREFIXED_DISTRO_MINOR_VERSION=""
+    fi
+fi
+
+# For Ubuntu derivatives, pretend to be their Ubuntu base version
+__ubuntu_derivatives_translation
+
+# For Debian derivates, pretend to be their Debian base version
+__debian_derivatives_translation
+
+# Fail soon for end of life versions
+__check_end_of_life_versions
+
+echodebug "Binaries will be searched using the following \$PATH: ${PATH}"
+
+# Let users know that we'll use a proxy
+if [ "${_HTTP_PROXY}" != "" ]; then
+    echoinfo "Using http proxy $_HTTP_PROXY"
+fi
+
+# Let users know what's going to be installed/configured
+if [ "$_INSTALL_MINION" -eq $BS_TRUE ]; then
+    if [ "$_CONFIG_ONLY" -eq $BS_FALSE ]; then
+        echoinfo "Installing minion"
+    else
+        echoinfo "Configuring minion"
+    fi
+fi
+
+if [ "$_INSTALL_MASTER" -eq $BS_TRUE ]; then
+    if [ "$_CONFIG_ONLY" -eq $BS_FALSE ]; then
+        echoinfo "Installing master"
+    else
+        echoinfo "Configuring master"
+    fi
+fi
+
+if [ "$_INSTALL_SYNDIC" -eq $BS_TRUE ]; then
+    if [ "$_CONFIG_ONLY" -eq $BS_FALSE ]; then
+        echoinfo "Installing syndic"
+    else
+        echoinfo "Configuring syndic"
+    fi
+fi
+
+if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ] && [ "$_CONFIG_ONLY" -eq $BS_FALSE ]; then
+    echoinfo "Installing salt-cloud and required python-libcloud package"
+fi
+
+if [ $_START_DAEMONS -eq $BS_FALSE ]; then
+    echoinfo "Daemons will not be started"
+fi
+
+if [ "${DISTRO_NAME_L}" = "ubuntu" ]; then
+  # For ubuntu versions, obtain the codename from the release version
+  __ubuntu_codename_translation
+elif [ "${DISTRO_NAME_L}" = "debian" ]; then
+  # For debian versions, obtain the codename from the release version
+  __debian_codename_translation
+fi
+
+if [ "$(echo "${DISTRO_NAME_L}" | grep -E '(debian|ubuntu|centos|gentoo|red_hat|oracle|scientific|amazon|fedora|macosx)')" = "" ] && [ "$ITYPE" = "stable" ] && [ "$STABLE_REV" != "latest" ]; then
+    echoerror "${DISTRO_NAME} does not have major version pegged packages support"
+    exit 1
+fi
+
+# Only RedHat based distros have testing support
+if [ "${ITYPE}" = "testing" ]; then
+    if [ "$(echo "${DISTRO_NAME_L}" | grep -E '(centos|red_hat|amazon|oracle)')" = "" ]; then
+        echoerror "${DISTRO_NAME} does not have testing packages support"
+        exit 1
+    fi
+    _EPEL_REPO="epel-testing"
+fi
+
+# Only Ubuntu has support for installing to virtualenvs
+if [ "${DISTRO_NAME_L}" != "ubuntu" ] && [ "$_VIRTUALENV_DIR" != "null" ]; then
+    echoerror "${DISTRO_NAME} does not have -V support"
+    exit 1
+fi
+
+# Only Ubuntu has support for pip installing all packages
+if [ "${DISTRO_NAME_L}" != "ubuntu" ] && [ $_PIP_ALL -eq $BS_TRUE ]; then
+    echoerror "${DISTRO_NAME} does not have -a support"
+    exit 1
+fi
+
+if [ "$ITYPE" = "git" ]; then
+
+    if [ "${GIT_REV}" = "master" ]; then
+        _POST_NEON_INSTALL=$BS_TRUE
+        __TAG_REGEX_MATCH="MATCH"
+    else
+        case ${OS_NAME_L} in
+            openbsd|freebsd|netbsd|darwin )
+                __NEW_VS_TAG_REGEX_MATCH=$(echo "${GIT_REV}" | sed -E 's/^(v?3[0-9]{3}(\.[0-9]{1,2})?).*$/MATCH/')
+                if [ "$__NEW_VS_TAG_REGEX_MATCH" = "MATCH" ]; then
+                    _POST_NEON_INSTALL=$BS_TRUE
+                    __TAG_REGEX_MATCH="${__NEW_VS_TAG_REGEX_MATCH}"
+                    if [ "$(echo "${GIT_REV}" | cut -c -1)" != "v" ]; then
+                        # We do this to properly clone tags
+                        GIT_REV="v${GIT_REV}"
+                    fi
+                    echodebug "Post Neon Tag Regex Match On: ${GIT_REV}"
+                else
+                    __TAG_REGEX_MATCH=$(echo "${GIT_REV}" | sed -E 's/^(v?[0-9]{1,4}\.[0-9]{1,2})(\.[0-9]{1,2})?.*$/MATCH/')
+                    echodebug "Pre Neon Tag Regex Match On: ${GIT_REV}"
+                fi
+                ;;
+            * )
+                __NEW_VS_TAG_REGEX_MATCH=$(echo "${GIT_REV}" | sed 's/^.*\(v\?3[[:digit:]]\{3\}\(\.[[:digit:]]\{1,2\}\)\?\).*$/MATCH/')
+                if [ "$__NEW_VS_TAG_REGEX_MATCH" = "MATCH" ]; then
+                    _POST_NEON_INSTALL=$BS_TRUE
+                    __TAG_REGEX_MATCH="${__NEW_VS_TAG_REGEX_MATCH}"
+                    if [ "$(echo "${GIT_REV}" | cut -c -1)" != "v" ]; then
+                        # We do this to properly clone tags
+                        GIT_REV="v${GIT_REV}"
+                    fi
+                    echodebug "Post Neon Tag Regex Match On: ${GIT_REV}"
+                else
+                    __TAG_REGEX_MATCH=$(echo "${GIT_REV}" | sed 's/^.*\(v\?[[:digit:]]\{1,4\}\.[[:digit:]]\{1,2\}\)\(\.[[:digit:]]\{1,2\}\)\?.*$/MATCH/')
+                    echodebug "Pre Neon Tag Regex Match On: ${GIT_REV}"
+                fi
+                ;;
+        esac
+    fi
+
+    if [ "$_POST_NEON_INSTALL" -eq $BS_TRUE ]; then
+        echo
+        echowarn "Post Neon git based installations will always install salt"
+        echowarn "and its dependencies using pip which will be upgraded to"
+        echowarn "at least v${_MINIMUM_PIP_VERSION}, and, in case the setuptools version is also"
+        echowarn "too old, it will be upgraded to at least v${_MINIMUM_SETUPTOOLS_VERSION}"
+        echo
+        echowarn "You have 10 seconds to cancel and stop the bootstrap process..."
+        echo
+        sleep 10
+        _PIP_ALLOWED=$BS_TRUE
+    fi
+fi
+
+
+#---  FUNCTION  -------------------------------------------------------------------------------------------------------
+#          NAME:  __function_defined
+#   DESCRIPTION:  Checks if a function is defined within this scripts scope
+#    PARAMETERS:  function name
+#       RETURNS:  0 or 1 as in defined or not defined
+#----------------------------------------------------------------------------------------------------------------------
+__function_defined() {
+    FUNC_NAME=$1
+    if [ "$(command -v "$FUNC_NAME")" != "" ]; then
+        echoinfo "Found function $FUNC_NAME"
+        return 0
+    fi
+    echodebug "$FUNC_NAME not found...."
+    return 1
+}
+
+
+#---  FUNCTION  -------------------------------------------------------------------------------------------------------
+#          NAME:  __wait_for_apt
+#   DESCRIPTION:  Check if any apt, apt-get, aptitude, or dpkg processes are running before
+#                 calling these again. This is useful when these process calls are part of
+#                 a boot process, such as on AWS AMIs. This func will wait until the boot
+#                 process is finished so the script doesn't exit on a locked proc.
+#----------------------------------------------------------------------------------------------------------------------
+__wait_for_apt(){
+    # Timeout set at 15 minutes
+    WAIT_TIMEOUT=900
+
+    # Run our passed in apt command
+    "${@}" 2>"$APT_ERR"
+    APT_RETURN=$?
+
+    # Make sure we're not waiting on a lock
+    while [ $APT_RETURN -ne 0 ] && grep -q '^E: Could not get lock' "$APT_ERR"; do
+        echoinfo "Aware of the lock. Patiently waiting $WAIT_TIMEOUT more seconds..."
+        sleep 1
+        WAIT_TIMEOUT=$((WAIT_TIMEOUT - 1))
+
+        if [ "$WAIT_TIMEOUT" -eq 0 ]; then
+            echoerror "Apt, apt-get, aptitude, or dpkg process is taking too long."
+            echoerror "Bootstrap script cannot proceed. Aborting."
+            return 1
+        else
+            "${@}" 2>"$APT_ERR"
+            APT_RETURN=$?
+        fi
+    done
+
+    return $APT_RETURN
+}
+
+#---  FUNCTION  -------------------------------------------------------------------------------------------------------
+#          NAME:  __apt_get_install_noinput
+#   DESCRIPTION:  (DRY) apt-get install with noinput options
+#    PARAMETERS:  packages
+#----------------------------------------------------------------------------------------------------------------------
+__apt_get_install_noinput() {
+    __wait_for_apt apt-get install -y -o DPkg::Options::=--force-confold "${@}"; return $?
+}   # ----------  end of function __apt_get_install_noinput  ----------
+
+
+#---  FUNCTION  -------------------------------------------------------------------------------------------------------
+#          NAME:  __apt_get_upgrade_noinput
+#   DESCRIPTION:  (DRY) apt-get upgrade with noinput options
+#----------------------------------------------------------------------------------------------------------------------
+__apt_get_upgrade_noinput() {
+    __wait_for_apt apt-get upgrade -y -o DPkg::Options::=--force-confold; return $?
+}   # ----------  end of function __apt_get_upgrade_noinput  ----------
+
+
+#---  FUNCTION  -------------------------------------------------------------------------------------------------------
+#          NAME:  __temp_gpg_pub
+#   DESCRIPTION:  Create a temporary file for downloading a GPG public key.
+#----------------------------------------------------------------------------------------------------------------------
+__temp_gpg_pub() {
+    if __check_command_exists mktemp; then
+        tempfile="$(mktemp /tmp/salt-gpg-XXXXXXXX.pub 2>/dev/null)"
+
+        if [ -z "$tempfile" ]; then
+            echoerror "Failed to create temporary file in /tmp"
+            return 1
+        fi
+    else
+        tempfile="/tmp/salt-gpg-$$.pub"
+    fi
+
+    echo $tempfile
+}   # ----------- end of function __temp_gpg_pub  -----------
+
+
+#---  FUNCTION  -------------------------------------------------------------------------------------------------------
+#          NAME:  __apt_key_fetch
+#   DESCRIPTION:  Download and import GPG public key for "apt-secure"
+#    PARAMETERS:  url
+#----------------------------------------------------------------------------------------------------------------------
+__apt_key_fetch() {
+    url=$1
+
+    tempfile="$(__temp_gpg_pub)"
+
+    __fetch_url "$tempfile" "$url" || return 1
+    cp -f "$tempfile" /usr/share/keyrings/salt-archive-keyring.gpg && chmod 644 /usr/share/keyrings/salt-archive-keyring.gpg || return 1
+    rm -f "$tempfile"
+
+    return 0
+}   # ----------  end of function __apt_key_fetch  ----------
+
+
+#---  FUNCTION  -------------------------------------------------------------------------------------------------------
+#          NAME:  __rpm_import_gpg
+#   DESCRIPTION:  Download and import GPG public key to rpm database
+#    PARAMETERS:  url
+#----------------------------------------------------------------------------------------------------------------------
+__rpm_import_gpg() {
+    url=$1
+
+    tempfile="$(__temp_gpg_pub)"
+
+    __fetch_url "$tempfile" "$url" || return 1
+
+    # At least on CentOS 8, a missing newline at the end causes:
+    #   error: /tmp/salt-gpg-n1gKUb1u.pub: key 1 not an armored public key.
+    # shellcheck disable=SC1003,SC2086
+    sed -i -e '$a\' $tempfile
+
+    rpm --import "$tempfile" || return 1
+    rm -f "$tempfile"
+
+    return 0
+}   # ----------  end of function __rpm_import_gpg  ----------
+
+
+#---  FUNCTION  -------------------------------------------------------------------------------------------------------
+#          NAME:  __yum_install_noinput
+#   DESCRIPTION:  (DRY) yum install with noinput options
+#----------------------------------------------------------------------------------------------------------------------
+__yum_install_noinput() {
+
+    ENABLE_EPEL_CMD=""
+    # Skip Amazon Linux for the first round, since EPEL is no longer required.
+    # See issue #724
+    if [ $_DISABLE_REPOS -eq $BS_FALSE ] && [ "$DISTRO_NAME_L" != "amazon_linux_ami" ]; then
+        ENABLE_EPEL_CMD="--enablerepo=${_EPEL_REPO}"
+    fi
+
+    if [ "$DISTRO_NAME_L" = "oracle_linux" ]; then
+        # We need to install one package at a time because --enablerepo=X disables ALL OTHER REPOS!!!!
+        for package in "${@}"; do
+            yum -y install "${package}" || yum -y install "${package}" ${ENABLE_EPEL_CMD} || return $?
+        done
+    else
+        yum -y install "${@}" ${ENABLE_EPEL_CMD} || return $?
+    fi
+}   # ----------  end of function __yum_install_noinput  ----------
+
+#---  FUNCTION  -------------------------------------------------------------------------------------------------------
+#          NAME:  __dnf_install_noinput
+#   DESCRIPTION:  (DRY) dnf install with noinput options
+#----------------------------------------------------------------------------------------------------------------------
+__dnf_install_noinput() {
+
+    dnf -y install "${@}" || return $?
+}   # ----------  end of function __dnf_install_noinput  ----------
+
+#---  FUNCTION  -------------------------------------------------------------------------------------------------------
+#          NAME:  __git_clone_and_checkout
+#   DESCRIPTION:  (DRY) Helper function to clone and checkout salt to a
+#                 specific revision.
+#----------------------------------------------------------------------------------------------------------------------
+__git_clone_and_checkout() {
+
+    echodebug "Installed git version: $(git --version | awk '{ print $3 }')"
+    # Turn off SSL verification if -I flag was set for insecure downloads
+    if [ "$_INSECURE_DL" -eq $BS_TRUE ]; then
+        export GIT_SSL_NO_VERIFY=1
+    fi
+
+    __SALT_GIT_CHECKOUT_PARENT_DIR=$(dirname "${_SALT_GIT_CHECKOUT_DIR}" 2>/dev/null)
+    __SALT_GIT_CHECKOUT_PARENT_DIR="${__SALT_GIT_CHECKOUT_PARENT_DIR:-/tmp/git}"
+    __SALT_CHECKOUT_REPONAME="$(basename "${_SALT_GIT_CHECKOUT_DIR}" 2>/dev/null)"
+    __SALT_CHECKOUT_REPONAME="${__SALT_CHECKOUT_REPONAME:-salt}"
+    [ -d "${__SALT_GIT_CHECKOUT_PARENT_DIR}" ] || mkdir "${__SALT_GIT_CHECKOUT_PARENT_DIR}"
+    # shellcheck disable=SC2164
+    cd "${__SALT_GIT_CHECKOUT_PARENT_DIR}"
+    if [ -d "${_SALT_GIT_CHECKOUT_DIR}" ]; then
+        echodebug "Found a checked out Salt repository"
+        # shellcheck disable=SC2164
+        cd "${_SALT_GIT_CHECKOUT_DIR}"
+        echodebug "Fetching git changes"
+        git fetch || return 1
+        # Tags are needed because of salt's versioning, also fetch that
+        echodebug "Fetching git tags"
+        git fetch --tags || return 1
+
+        # If we have the SaltStack remote set as upstream, we also need to fetch the tags from there
+        if [ "$(git remote -v | grep $_SALTSTACK_REPO_URL)" != "" ]; then
+            echodebug "Fetching upstream(SaltStack's Salt repository) git tags"
+            git fetch --tags upstream
+        else
+            echoinfo "Adding SaltStack's Salt repository as a remote"
+            git remote add upstream "$_SALTSTACK_REPO_URL"
+            echodebug "Fetching upstream(SaltStack's Salt repository) git tags"
+            git fetch --tags upstream
+        fi
+
+        echodebug "Hard reseting the cloned repository to ${GIT_REV}"
+        git reset --hard "$GIT_REV" || return 1
+
+        # Just calling `git reset --hard $GIT_REV` on a branch name that has
+        # already been checked out will not update that branch to the upstream
+        # HEAD; instead it will simply reset to itself.  Check the ref to see
+        # if it is a branch name, check out the branch, and pull in the
+        # changes.
+        if git branch -a | grep -q "${GIT_REV}"; then
+            echodebug "Rebasing the cloned repository branch"
+            git pull --rebase || return 1
+        fi
+    else
+        if [ "$_FORCE_SHALLOW_CLONE" -eq "${BS_TRUE}" ]; then
+            echoinfo "Forced shallow cloning of git repository."
+            __SHALLOW_CLONE=$BS_TRUE
+        elif [ "$__TAG_REGEX_MATCH" = "MATCH" ]; then
+            echoinfo "Git revision matches a Salt version tag, shallow cloning enabled."
+            __SHALLOW_CLONE=$BS_TRUE
+        else
+            echowarn "The git revision being installed does not match a Salt version tag. Shallow cloning disabled"
+            __SHALLOW_CLONE=$BS_FALSE
+        fi
+
+        if [ "$__SHALLOW_CLONE" -eq $BS_TRUE ]; then
+            # Let's try shallow cloning to speed up.
+            # Test for "--single-branch" option introduced in git 1.7.10, the minimal version of git where the shallow
+            # cloning we need actually works
+            if [ "$(git clone 2>&1 | grep 'single-branch')" != "" ]; then
+                # The "--single-branch" option is supported, attempt shallow cloning
+                echoinfo "Attempting to shallow clone $GIT_REV from Salt's repository ${_SALT_REPO_URL}"
+                if git clone --depth 1 --branch "$GIT_REV" "$_SALT_REPO_URL" "$__SALT_CHECKOUT_REPONAME"; then
+                    # shellcheck disable=SC2164
+                    cd "${_SALT_GIT_CHECKOUT_DIR}"
+                    __SHALLOW_CLONE=$BS_TRUE
+                else
+                    # Shallow clone above failed(missing upstream tags???), let's resume the old behaviour.
+                    echowarn "Failed to shallow clone."
+                    echoinfo "Resuming regular git clone and remote SaltStack repository addition procedure"
+                    __SHALLOW_CLONE=$BS_FALSE
+                fi
+            else
+                echodebug "Shallow cloning not possible. Required git version not met."
+                __SHALLOW_CLONE=$BS_FALSE
+            fi
+        fi
+
+        if [ "$__SHALLOW_CLONE" -eq $BS_FALSE ]; then
+            git clone "$_SALT_REPO_URL" "$__SALT_CHECKOUT_REPONAME" || return 1
+            # shellcheck disable=SC2164
+            cd "${_SALT_GIT_CHECKOUT_DIR}"
+
+            if ! echo "$_SALT_REPO_URL" | grep -q -F -w "${_SALTSTACK_REPO_URL#*://}"; then
+                # We need to add the saltstack repository as a remote and fetch tags for proper versioning
+                echoinfo "Adding SaltStack's Salt repository as a remote"
+                git remote add upstream "$_SALTSTACK_REPO_URL" || return 1
+
+                echodebug "Fetching upstream (SaltStack's Salt repository) git tags"
+                git fetch --tags upstream || return 1
+
+                # Check if GIT_REV is a remote branch or just a commit hash
+                if git branch -r | grep -q -F -w "origin/$GIT_REV"; then
+                    GIT_REV="origin/$GIT_REV"
+                fi
+            fi
+
+            echodebug "Checking out $GIT_REV"
+            git checkout "$GIT_REV" || return 1
+        fi
+
+    fi
+
+    echoinfo "Cloning Salt's git repository succeeded"
+    return 0
+}
+
+
+#---  FUNCTION  -------------------------------------------------------------------------------------------------------
+#          NAME:  __copyfile
+#   DESCRIPTION:  Simple function to copy files. Overrides if asked.
+#----------------------------------------------------------------------------------------------------------------------
+__copyfile() {
+    overwrite=$_FORCE_OVERWRITE
+    if [ $# -eq 2 ]; then
+        sfile=$1
+        dfile=$2
+    elif [ $# -eq 3 ]; then
+        sfile=$1
+        dfile=$2
+        overwrite=$3
+    else
+        echoerror "Wrong number of arguments for __copyfile()"
+        echoinfo "USAGE: __copyfile <source> <dest>  OR  __copyfile <source> <dest> <overwrite>"
+        exit 1
+    fi
+
+    # Does the source file exist?
+    if [ ! -f "$sfile" ]; then
+        echowarn "$sfile does not exist!"
+        return 1
+    fi
+
+    # If the destination is a directory, let's make it a full path so the logic
+    # below works as expected
+    if [ -d "$dfile" ]; then
+        echodebug "The passed destination ($dfile) is a directory"
+        dfile="${dfile}/$(basename "$sfile")"
+        echodebug "Full destination path is now: $dfile"
+    fi
+
+    if [ ! -f "$dfile" ]; then
+        # The destination file does not exist, copy
+        echodebug "Copying $sfile to $dfile"
+        cp "$sfile" "$dfile" || return 1
+    elif [ -f "$dfile" ] && [ "$overwrite" -eq $BS_TRUE ]; then
+        # The destination exist and we're overwriting
+        echodebug "Overwriting $dfile with $sfile"
+        cp -f "$sfile" "$dfile" || return 1
+    elif [ -f "$dfile" ] && [ "$overwrite" -ne $BS_TRUE ]; then
+        echodebug "Not overwriting $dfile with $sfile"
+    fi
+    return 0
+}
+
+
+#---  FUNCTION  -------------------------------------------------------------------------------------------------------
+#          NAME:  __movefile
+#   DESCRIPTION:  Simple function to move files. Overrides if asked.
+#----------------------------------------------------------------------------------------------------------------------
+__movefile() {
+    overwrite=$_FORCE_OVERWRITE
+    if [ $# -eq 2 ]; then
+        sfile=$1
+        dfile=$2
+    elif [ $# -eq 3 ]; then
+        sfile=$1
+        dfile=$2
+        overwrite=$3
+    else
+        echoerror "Wrong number of arguments for __movefile()"
+        echoinfo "USAGE: __movefile <source> <dest>  OR  __movefile <source> <dest> <overwrite>"
+        exit 1
+    fi
+
+    if [ $_KEEP_TEMP_FILES -eq $BS_TRUE ]; then
+        # We're being told not to move files, instead copy them so we can keep
+        # them around
+        echodebug "Since BS_KEEP_TEMP_FILES=1 we're copying files instead of moving them"
+        __copyfile "$sfile" "$dfile" "$overwrite"
+        return $?
+    fi
+
+    # Does the source file exist?
+    if [ ! -f "$sfile" ]; then
+        echowarn "$sfile does not exist!"
+        return 1
+    fi
+
+    # If the destination is a directory, let's make it a full path so the logic
+    # below works as expected
+    if [ -d "$dfile" ]; then
+        echodebug "The passed destination($dfile) is a directory"
+        dfile="${dfile}/$(basename "$sfile")"
+        echodebug "Full destination path is now: $dfile"
+    fi
+
+    if [ ! -f "$dfile" ]; then
+        # The destination file does not exist, move
+        echodebug "Moving $sfile to $dfile"
+        mv "$sfile" "$dfile" || return 1
+    elif [ -f "$dfile" ] && [ "$overwrite" -eq $BS_TRUE ]; then
+        # The destination exist and we're overwriting
+        echodebug "Overriding $dfile with $sfile"
+        mv -f "$sfile" "$dfile" || return 1
+    elif [ -f "$dfile" ] && [ "$overwrite" -ne $BS_TRUE ]; then
+        echodebug "Not overriding $dfile with $sfile"
+    fi
+
+    return 0
+}
+
+
+#---  FUNCTION  -------------------------------------------------------------------------------------------------------
+#          NAME:  __linkfile
+#   DESCRIPTION:  Simple function to create symlinks. Overrides if asked. Accepts globs.
+#----------------------------------------------------------------------------------------------------------------------
+__linkfile() {
+    overwrite=$_FORCE_OVERWRITE
+    if [ $# -eq 2 ]; then
+        target=$1
+        linkname=$2
+    elif [ $# -eq 3 ]; then
+        target=$1
+        linkname=$2
+        overwrite=$3
+    else
+        echoerror "Wrong number of arguments for __linkfile()"
+        echoinfo "USAGE: __linkfile <target> <link>  OR  __linkfile <tagret> <link> <overwrite>"
+        exit 1
+    fi
+
+    for sfile in $target; do
+        # Does the source file exist?
+        if [ ! -f "$sfile" ]; then
+            echowarn "$sfile does not exist!"
+            return 1
+        fi
+
+        # If the destination is a directory, let's make it a full path so the logic
+        # below works as expected
+        if [ -d "$linkname" ]; then
+            echodebug "The passed link name ($linkname) is a directory"
+            linkname="${linkname}/$(basename "$sfile")"
+            echodebug "Full destination path is now: $linkname"
+        fi
+
+        if [ ! -e "$linkname" ]; then
+            # The destination file does not exist, create link
+            echodebug "Creating $linkname symlink pointing to $sfile"
+            ln -s "$sfile" "$linkname" || return 1
+        elif [ -e "$linkname" ] && [ "$overwrite" -eq $BS_TRUE ]; then
+            # The destination exist and we're overwriting
+            echodebug "Overwriting $linkname symlink to point on $sfile"
+            ln -sf "$sfile" "$linkname" || return 1
+        elif [ -e "$linkname" ] && [ "$overwrite" -ne $BS_TRUE ]; then
+            echodebug "Not overwriting $linkname symlink to point on $sfile"
+        fi
+    done
+
+    return 0
+}
+
+#---  FUNCTION  -------------------------------------------------------------------------------------------------------
+#          NAME:  __overwriteconfig()
+#   DESCRIPTION:  Simple function to overwrite master or minion config files.
+#----------------------------------------------------------------------------------------------------------------------
+__overwriteconfig() {
+    if [ $# -eq 2 ]; then
+        target=$1
+        json=$2
+    else
+        echoerror "Wrong number of arguments for __convert_json_to_yaml_str()"
+        echoinfo "USAGE: __convert_json_to_yaml_str <configfile> <jsonstring>"
+        exit 1
+    fi
+
+    # Make a tempfile to dump any python errors into.
+    if __check_command_exists mktemp; then
+        tempfile="$(mktemp /tmp/salt-config-XXXXXXXX 2>/dev/null)"
+
+        if [ -z "$tempfile" ]; then
+            echoerror "Failed to create temporary file in /tmp"
+            return 1
+        fi
+    else
+        tempfile="/tmp/salt-config-$$"
+    fi
+
+    if [ -n "$_PY_EXE" ]; then
+        good_python="$_PY_EXE"
+    # If python does not have yaml installed we're on Arch and should use python2
+    elif python -c "import yaml" 2> /dev/null; then
+        good_python=python
+    else
+        good_python=python2
+    fi
+
+    # Convert json string to a yaml string and write it to config file. Output is dumped into tempfile.
+    "$good_python" -c "import json; import yaml; jsn=json.loads('$json'); yml=yaml.safe_dump(jsn, line_break='\\n', default_flow_style=False); config_file=open('$target', 'w'); config_file.write(yml); config_file.close();" 2>$tempfile
+
+    # No python errors output to the tempfile
+    if [ ! -s "$tempfile" ]; then
+        rm -f "$tempfile"
+        return 0
+    fi
+
+    # Errors are present in the tempfile - let's expose them to the user.
+    fullerror=$(cat "$tempfile")
+    echodebug "$fullerror"
+    echoerror "Python error encountered. This is likely due to passing in a malformed JSON string. Please use -D to see stacktrace."
+
+    rm -f "$tempfile"
+
+    return 1
+
+}
+
+#---  FUNCTION  -------------------------------------------------------------------------------------------------------
+#          NAME:  __check_services_systemd
+#   DESCRIPTION:  Return 0 or 1 in case the service is enabled or not
+#    PARAMETERS:  servicename
+#----------------------------------------------------------------------------------------------------------------------
+__check_services_systemd() {
+    if [ $# -eq 0 ]; then
+        echoerror "You need to pass a service name to check!"
+        exit 1
+    elif [ $# -ne 1 ]; then
+        echoerror "You need to pass a service name to check as the single argument to the function"
+    fi
+
+    servicename=$1
+    echodebug "Checking if service ${servicename} is enabled"
+
+    if [ "$(systemctl is-enabled "${servicename}")" = "enabled" ]; then
+        echodebug "Service ${servicename} is enabled"
+        return 0
+    else
+        echodebug "Service ${servicename} is NOT enabled"
+        return 1
+    fi
+}   # ----------  end of function __check_services_systemd  ----------
+
+
+#---  FUNCTION  -------------------------------------------------------------------------------------------------------
+#          NAME:  __check_services_upstart
+#   DESCRIPTION:  Return 0 or 1 in case the service is enabled or not
+#    PARAMETERS:  servicename
+#----------------------------------------------------------------------------------------------------------------------
+__check_services_upstart() {
+    if [ $# -eq 0 ]; then
+        echoerror "You need to pass a service name to check!"
+        exit 1
+    elif [ $# -ne 1 ]; then
+        echoerror "You need to pass a service name to check as the single argument to the function"
+    fi
+
+    servicename=$1
+    echodebug "Checking if service ${servicename} is enabled"
+
+    # Check if service is enabled to start at boot
+    if initctl list | grep "${servicename}" > /dev/null 2>&1; then
+        echodebug "Service ${servicename} is enabled"
+        return 0
+    else
+        echodebug "Service ${servicename} is NOT enabled"
+        return 1
+    fi
+}   # ----------  end of function __check_services_upstart  ----------
+
+
+#---  FUNCTION  -------------------------------------------------------------------------------------------------------
+#          NAME:  __check_services_sysvinit
+#   DESCRIPTION:  Return 0 or 1 in case the service is enabled or not
+#    PARAMETERS:  servicename
+#----------------------------------------------------------------------------------------------------------------------
+__check_services_sysvinit() {
+    if [ $# -eq 0 ]; then
+        echoerror "You need to pass a service name to check!"
+        exit 1
+    elif [ $# -ne 1 ]; then
+        echoerror "You need to pass a service name to check as the single argument to the function"
+    fi
+
+    servicename=$1
+    echodebug "Checking if service ${servicename} is enabled"
+
+    if [ "$(LC_ALL=C /sbin/chkconfig --list | grep "\\<${servicename}\\>" | grep '[2-5]:on')" != "" ]; then
+        echodebug "Service ${servicename} is enabled"
+        return 0
+    else
+        echodebug "Service ${servicename} is NOT enabled"
+        return 1
+    fi
+}   # ----------  end of function __check_services_sysvinit  ----------
+
+
+#---  FUNCTION  -------------------------------------------------------------------------------------------------------
+#          NAME:  __check_services_debian
+#   DESCRIPTION:  Return 0 or 1 in case the service is enabled or not
+#    PARAMETERS:  servicename
+#----------------------------------------------------------------------------------------------------------------------
+__check_services_debian() {
+    if [ $# -eq 0 ]; then
+        echoerror "You need to pass a service name to check!"
+        exit 1
+    elif [ $# -ne 1 ]; then
+        echoerror "You need to pass a service name to check as the single argument to the function"
+    fi
+
+    servicename=$1
+    echodebug "Checking if service ${servicename} is enabled"
+
+    # Check if the service is going to be started at any runlevel, fixes bootstrap in container (Docker, LXC)
+    if ls /etc/rc?.d/S*"${servicename}" >/dev/null 2>&1; then
+        echodebug "Service ${servicename} is enabled"
+        return 0
+    else
+        echodebug "Service ${servicename} is NOT enabled"
+        return 1
+    fi
+}   # ----------  end of function __check_services_debian  ----------
+
+
+#---  FUNCTION  -------------------------------------------------------------------------------------------------------
+#          NAME:  __check_services_openbsd
+#   DESCRIPTION:  Return 0 or 1 in case the service is enabled or not
+#    PARAMETERS:  servicename
+#----------------------------------------------------------------------------------------------------------------------
+__check_services_openbsd() {
+    if [ $# -eq 0 ]; then
+        echoerror "You need to pass a service name to check!"
+        exit 1
+    elif [ $# -ne 1 ]; then
+        echoerror "You need to pass a service name to check as the single argument to the function"
+    fi
+
+    servicename=$1
+    echodebug "Checking if service ${servicename} is enabled"
+
+    # shellcheck disable=SC2086,SC2046,SC2144
+    if rcctl get ${servicename} status; then
+        echodebug "Service ${servicename} is enabled"
+        return 0
+    else
+        echodebug "Service ${servicename} is NOT enabled"
+        return 1
+    fi
+}   # ----------  end of function __check_services_openbsd  ----------
+
+#---  FUNCTION  -------------------------------------------------------------------------------------------------------
+#          NAME:  __check_services_openrc
+#   DESCRIPTION:  Return 0 or 1 in case the service is enabled or not
+#    PARAMETERS:  servicename
+#----------------------------------------------------------------------------------------------------------------------
+__check_services_openrc() {
+    if [ $# -eq 0 ]; then
+        echoerror "You need to pass a service name to check!"
+        exit 1
+    elif [ $# -ne 1 ]; then
+        echoerror "You need to pass a service name to check as the single argument to the function"
+    fi
+
+    servicename=$1
+    echodebug "Checking if service ${servicename} is enabled"
+
+    # shellcheck disable=SC2086,SC2046,SC2144
+    if rc-status $(rc-status -r) | tail -n +2 | grep -q "\\<$servicename\\>"; then
+        echodebug "Service ${servicename} is enabled"
+        return 0
+    else
+        echodebug "Service ${servicename} is NOT enabled"
+        return 1
+    fi
+}   # ----------  end of function __check_services_openrc  ----------
+
+
+#---  FUNCTION  -------------------------------------------------------------------------------------------------------
+#          NAME:  __create_virtualenv
+#   DESCRIPTION:  Return 0 or 1 depending on successful creation of virtualenv
+#----------------------------------------------------------------------------------------------------------------------
+__create_virtualenv() {
+    if [ ! -d "$_VIRTUALENV_DIR" ]; then
+        echoinfo "Creating virtualenv ${_VIRTUALENV_DIR}"
+        if [ $_PIP_ALL -eq $BS_TRUE ]; then
+            virtualenv --no-site-packages "${_VIRTUALENV_DIR}" || return 1
+        else
+            virtualenv --system-site-packages "${_VIRTUALENV_DIR}" || return 1
+        fi
+    fi
+    return 0
+}   # ----------  end of function __create_virtualenv  ----------
+
+
+#---  FUNCTION  -------------------------------------------------------------------------------------------------------
+#          NAME:  __activate_virtualenv
+#   DESCRIPTION:  Return 0 or 1 depending on successful activation of virtualenv
+#----------------------------------------------------------------------------------------------------------------------
+__activate_virtualenv() {
+    set +o nounset
+    # Is virtualenv empty
+    if [ -z "$_VIRTUALENV_DIR" ]; then
+        __create_virtualenv || return 1
+        # shellcheck source=/dev/null
+        . "${_VIRTUALENV_DIR}/bin/activate" || return 1
+        echoinfo "Activated virtualenv ${_VIRTUALENV_DIR}"
+    fi
+    set -o nounset
+    return 0
+}   # ----------  end of function __activate_virtualenv  ----------
+
+#---  FUNCTION  -------------------------------------------------------------------------------------------------------
+#          NAME:  __install_pip_pkgs
+#   DESCRIPTION:  Return 0 or 1 if successfully able to install pip packages. Can provide a different python version to
+#                 install pip packages with. If $py_ver is not specified it will use the default python version.
+#    PARAMETERS:  pkgs, py_ver
+#----------------------------------------------------------------------------------------------------------------------
+
+__install_pip_pkgs() {
+    _pip_pkgs="$1"
+    _py_exe="$2"
+    _py_pkg=$(echo "$_py_exe" | sed -E "s/\\.//g")
+    _pip_cmd="${_py_exe} -m pip"
+
+    if [ "${_py_exe}" = "" ]; then
+        _py_exe='python'
+    fi
+
+    __check_pip_allowed
+
+    # Install pip and pip dependencies
+    if ! __check_command_exists "${_pip_cmd} --version"; then
+        __PACKAGES="${_py_pkg}-setuptools ${_py_pkg}-pip gcc"
+        # shellcheck disable=SC2086
+        if [ "$DISTRO_NAME_L" = "debian" ] || [ "$DISTRO_NAME_L" = "ubuntu" ];then
+            __PACKAGES="${__PACKAGES} ${_py_pkg}-dev"
+            __apt_get_install_noinput ${__PACKAGES} || return 1
+        else
+            __PACKAGES="${__PACKAGES} ${_py_pkg}-devel"
+            if [ "$DISTRO_NAME_L" = "fedora" ];then
+              __dnf_install_noinput ${__PACKAGES} || return 1
+            else
+              __yum_install_noinput ${__PACKAGES} || return 1
+            fi
+        fi
+
+    fi
+
+    echoinfo "Installing pip packages: ${_pip_pkgs} using ${_py_exe}"
+    # shellcheck disable=SC2086
+    ${_pip_cmd} install ${_pip_pkgs} || return 1
+}
+
+#---  FUNCTION  -------------------------------------------------------------------------------------------------------
+#          NAME:  __install_tornado_pip
+#    PARAMETERS:  python executable
+#   DESCRIPTION:  Return 0 or 1 if successfully able to install tornado<5.0
+#----------------------------------------------------------------------------------------------------------------------
+__install_tornado_pip() {
+    # OS needs tornado <5.0 from pip
+    __check_pip_allowed "You need to allow pip based installations (-P) for Tornado <5.0 in order to install Salt on Python 3"
+    ## install pip if its not installed and install tornado
+    __install_pip_pkgs "tornado<5.0" "${1}" || return 1
+}
+
+#---  FUNCTION  -------------------------------------------------------------------------------------------------------
+#          NAME:  __install_pip_deps
+#   DESCRIPTION:  Return 0 or 1 if successfully able to install pip packages via requirements file
+#    PARAMETERS:  requirements_file
+#----------------------------------------------------------------------------------------------------------------------
+__install_pip_deps() {
+    # Install virtualenv to system pip before activating virtualenv if thats going to be used
+    # We assume pip pkg is installed since that is distro specific
+    if [ "$_VIRTUALENV_DIR" != "null" ]; then
+        if ! __check_command_exists pip; then
+            echoerror "Pip not installed: required for -a installs"
+            exit 1
+        fi
+        pip install -U virtualenv
+        __activate_virtualenv || return 1
+    else
+        echoerror "Must have virtualenv dir specified for -a installs"
+    fi
+
+    requirements_file=$1
+    if [ ! -f "${requirements_file}" ]; then
+        echoerror "Requirements file: ${requirements_file} cannot be found, needed for -a (pip pkg) installs"
+        exit 1
+    fi
+
+    __PIP_PACKAGES=''
+    if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ]; then
+        # shellcheck disable=SC2089
+        __PIP_PACKAGES="${__PIP_PACKAGES} 'apache-libcloud>=$_LIBCLOUD_MIN_VERSION'"
+    fi
+
+    # shellcheck disable=SC2086,SC2090
+    pip install -U -r ${requirements_file} ${__PIP_PACKAGES}
+}   # ----------  end of function __install_pip_deps  ----------
+
+#---  FUNCTION  -------------------------------------------------------------------------------------------------------
+#          NAME:  __install_salt_from_repo_post_neon
+#   DESCRIPTION:  Return 0 or 1 if successfully able to install. Can provide a different python version to
+#                 install pip packages with. If $py_exe is not specified it will use the default python version.
+#    PARAMETERS:  py_exe
+#----------------------------------------------------------------------------------------------------------------------
+__install_salt_from_repo_post_neon() {
+    _py_exe="$1"
+
+    if [ "${_py_exe}" = "" ]; then
+        _py_exe='python'
+    fi
+
+    echodebug "__install_salt_from_repo_post_neon py_exe=$_py_exe"
+
+    _py_version=$(${_py_exe} -c "import sys; print('{0}.{1}'.format(*sys.version_info))")
+    _pip_cmd="pip${_py_version}"
+    if ! __check_command_exists "${_pip_cmd}"; then
+        echodebug "The pip binary '${_pip_cmd}' was not found in PATH"
+        _pip_cmd="pip$(echo "${_py_version}" | cut -c -1)"
+        if ! __check_command_exists "${_pip_cmd}"; then
+            echodebug "The pip binary '${_pip_cmd}' was not found in PATH"
+            _pip_cmd="pip"
+            if ! __check_command_exists "${_pip_cmd}"; then
+                echoerror "Unable to find a pip binary"
+                return 1
+            fi
+        fi
+    fi
+
+    __check_pip_allowed
+
+    echodebug "Installed pip version: $(${_pip_cmd} --version)"
+
+    CHECK_PIP_VERSION_SCRIPT=$(cat << EOM
+import sys
+try:
+    import pip
+    installed_pip_version=tuple([int(part.strip()) for part in pip.__version__.split('.') if part.isdigit()])
+    desired_pip_version=($(echo ${_MINIMUM_PIP_VERSION} | sed 's/\./, /g' ))
+    if installed_pip_version < desired_pip_version:
+        print('Desired pip version {!r} > Installed pip version {!r}'.format('.'.join(map(str, desired_pip_version)), '.'.join(map(str, installed_pip_version))))
+        sys.exit(1)
+    print('Desired pip version {!r} < Installed pip version {!r}'.format('.'.join(map(str, desired_pip_version)), '.'.join(map(str, installed_pip_version))))
+    sys.exit(0)
+except ImportError:
+    print('Failed to import pip')
+    sys.exit(1)
+EOM
+)
+    if ! ${_py_exe} -c "$CHECK_PIP_VERSION_SCRIPT"; then
+        # Upgrade pip to at least 1.2 which is when we can start using "python -m pip"
+        if [ "${_py_version}" = "3.5" ]; then
+          echodebug "Running '${_pip_cmd} install ${_POST_NEON_PIP_INSTALL_ARGS} pip>=${_MINIMUM_PIP_VERSION},<21.0'"
+          ${_pip_cmd} install ${_POST_NEON_PIP_INSTALL_ARGS} -v "pip>=${_MINIMUM_PIP_VERSION},<21.0"
+        else
+          echodebug "Running '${_pip_cmd} install ${_POST_NEON_PIP_INSTALL_ARGS} pip>=${_MINIMUM_PIP_VERSION}'"
+          ${_pip_cmd} install ${_POST_NEON_PIP_INSTALL_ARGS} -v "pip>=${_MINIMUM_PIP_VERSION}"
+        fi
+        sleep 1
+        echodebug "PATH: ${PATH}"
+        _pip_cmd="pip${_py_version}"
+        if ! __check_command_exists "${_pip_cmd}"; then
+            echodebug "The pip binary '${_pip_cmd}' was not found in PATH"
+            _pip_cmd="pip$(echo "${_py_version}" | cut -c -1)"
+            if ! __check_command_exists "${_pip_cmd}"; then
+                echodebug "The pip binary '${_pip_cmd}' was not found in PATH"
+                _pip_cmd="pip"
+                if ! __check_command_exists "${_pip_cmd}"; then
+                    echoerror "Unable to find a pip binary"
+                    return 1
+                fi
+            fi
+        fi
+        echodebug "Installed pip version: $(${_pip_cmd} --version)"
+    fi
+
+    _setuptools_dep="setuptools>=${_MINIMUM_SETUPTOOLS_VERSION}"
+    if [ "$_PY_MAJOR_VERSION" -eq 2 ]; then
+        # We also lock setuptools to <45 which is the latest release to support both py2 and py3
+        _setuptools_dep="${_setuptools_dep},<45"
+    fi
+
+    echodebug "Running '${_pip_cmd} install wheel ${_setuptools_dep}'"
+    ${_pip_cmd} install ${_POST_NEON_PIP_INSTALL_ARGS} wheel "${_setuptools_dep}"
+
+    echoinfo "Installing salt using ${_py_exe}"
+    cd "${_SALT_GIT_CHECKOUT_DIR}" || return 1
+
+    mkdir /tmp/git/deps
+    echoinfo "Downloading Salt Dependencies from PyPi"
+    echodebug "Running '${_pip_cmd} download -d /tmp/git/deps .'"
+    ${_pip_cmd} download -d /tmp/git/deps . || (echo "Failed to download salt dependencies" && return 1)
+
+    echoinfo "Installing Downloaded Salt Dependencies"
+    echodebug "Running '${_pip_cmd} install --ignore-installed ${_POST_NEON_PIP_INSTALL_ARGS} /tmp/git/deps/*'"
+    ${_pip_cmd} install --ignore-installed ${_POST_NEON_PIP_INSTALL_ARGS} /tmp/git/deps/* || return 1
+    rm -f /tmp/git/deps/*
+
+    echoinfo "Building Salt Python Wheel"
+
+    if [ "$_ECHO_DEBUG" -eq $BS_TRUE ]; then
+        SETUP_PY_INSTALL_ARGS="-v"
+    fi
+
+    echodebug "Running '${_py_exe} setup.py --salt-config-dir=$_SALT_ETC_DIR --salt-cache-dir=${_SALT_CACHE_DIR} ${SETUP_PY_INSTALL_ARGS} bdist_wheel'"
+    ${_py_exe} setup.py --salt-config-dir="$_SALT_ETC_DIR" --salt-cache-dir="${_SALT_CACHE_DIR}" ${SETUP_PY_INSTALL_ARGS} bdist_wheel || return 1
+    mv dist/salt*.whl /tmp/git/deps/ || return 1
+
+    cd "${__SALT_GIT_CHECKOUT_PARENT_DIR}" || return 1
+
+    echoinfo "Installing Built Salt Wheel"
+    ${_pip_cmd} uninstall --yes salt 2>/dev/null || true
+    echodebug "Running '${_pip_cmd} install --no-deps --force-reinstall ${_POST_NEON_PIP_INSTALL_ARGS} /tmp/git/deps/salt*.whl'"
+    ${_pip_cmd} install --no-deps --force-reinstall \
+        ${_POST_NEON_PIP_INSTALL_ARGS} \
+        --global-option="--salt-config-dir=$_SALT_ETC_DIR --salt-cache-dir=${_SALT_CACHE_DIR} ${SETUP_PY_INSTALL_ARGS}" \
+        /tmp/git/deps/salt*.whl || return 1
+
+    echoinfo "Checking if Salt can be imported using ${_py_exe}"
+    CHECK_SALT_SCRIPT=$(cat << EOM
+import os
+import sys
+try:
+    import salt
+    import salt.version
+    print('\nInstalled Salt Version: {}'.format(salt.version.__version__))
+    print('Installed Salt Package Path: {}\n'.format(os.path.dirname(salt.__file__)))
+    sys.exit(0)
+except ImportError:
+    print('\nFailed to import salt\n')
+    sys.exit(1)
+EOM
+)
+    if ! ${_py_exe} -c "$CHECK_SALT_SCRIPT"; then
+        return 1
+    fi
+    return 0
+}   # ----------  end of function __install_salt_from_repo_post_neon  ----------
+
+
+if [ "${_POST_NEON_INSTALL}" -eq $BS_FALSE ]; then
+    if [ "x${_PY_MAJOR_VERSION}" = "x" ]; then
+        # Default to python 2 for pre Neon installs
+        _PY_MAJOR_VERSION=2
+    fi
+else
+    if [ "x${_PY_MAJOR_VERSION}" = "x" ]; then
+        # Default to python 3 for post Neon install
+        _PY_MAJOR_VERSION=3
+    fi
+fi
+
+#######################################################################################################################
+#
+#   Distribution install functions
+#
+#   In order to install salt for a distribution you need to define:
+#
+#   To Install Dependencies, which is required, one of:
+#       1. install_<distro>_<major_version>_<install_type>_deps
+#       2. install_<distro>_<major_version>_<minor_version>_<install_type>_deps
+#       3. install_<distro>_<major_version>_deps
+#       4  install_<distro>_<major_version>_<minor_version>_deps
+#       5. install_<distro>_<install_type>_deps
+#       6. install_<distro>_deps
+#
+#   Optionally, define a salt configuration function, which will be called if
+#   the -c (config-dir) option is passed. One of:
+#       1. config_<distro>_<major_version>_<install_type>_salt
+#       2. config_<distro>_<major_version>_<minor_version>_<install_type>_salt
+#       3. config_<distro>_<major_version>_salt
+#       4  config_<distro>_<major_version>_<minor_version>_salt
+#       5. config_<distro>_<install_type>_salt
+#       6. config_<distro>_salt
+#       7. config_salt [THIS ONE IS ALREADY DEFINED AS THE DEFAULT]
+#
+#   Optionally, define a salt master pre-seed function, which will be called if
+#   the -k (pre-seed master keys) option is passed. One of:
+#       1. preseed_<distro>_<major_version>_<install_type>_master
+#       2. preseed_<distro>_<major_version>_<minor_version>_<install_type>_master
+#       3. preseed_<distro>_<major_version>_master
+#       4  preseed_<distro>_<major_version>_<minor_version>_master
+#       5. preseed_<distro>_<install_type>_master
+#       6. preseed_<distro>_master
+#       7. preseed_master [THIS ONE IS ALREADY DEFINED AS THE DEFAULT]
+#
+#   To install salt, which, of course, is required, one of:
+#       1. install_<distro>_<major_version>_<install_type>
+#       2. install_<distro>_<major_version>_<minor_version>_<install_type>
+#       3. install_<distro>_<install_type>
+#
+#   Optionally, define a post install function, one of:
+#       1. install_<distro>_<major_version>_<install_type>_post
+#       2. install_<distro>_<major_version>_<minor_version>_<install_type>_post
+#       3. install_<distro>_<major_version>_post
+#       4  install_<distro>_<major_version>_<minor_version>_post
+#       5. install_<distro>_<install_type>_post
+#       6. install_<distro>_post
+#
+#   Optionally, define a start daemons function, one of:
+#       1. install_<distro>_<major_version>_<install_type>_restart_daemons
+#       2. install_<distro>_<major_version>_<minor_version>_<install_type>_restart_daemons
+#       3. install_<distro>_<major_version>_restart_daemons
+#       4  install_<distro>_<major_version>_<minor_version>_restart_daemons
+#       5. install_<distro>_<install_type>_restart_daemons
+#       6. install_<distro>_restart_daemons
+#
+#       NOTE: The start daemons function should be able to restart any daemons
+#             which are running, or start if they're not running.
+#
+#   Optionally, define a daemons running function, one of:
+#       1. daemons_running_<distro>_<major_version>_<install_type>
+#       2. daemons_running_<distro>_<major_version>_<minor_version>_<install_type>
+#       3. daemons_running_<distro>_<major_version>
+#       4  daemons_running_<distro>_<major_version>_<minor_version>
+#       5. daemons_running_<distro>_<install_type>
+#       6. daemons_running_<distro>
+#       7. daemons_running  [THIS ONE IS ALREADY DEFINED AS THE DEFAULT]
+#
+#   Optionally, check enabled Services:
+#       1. install_<distro>_<major_version>_<install_type>_check_services
+#       2. install_<distro>_<major_version>_<minor_version>_<install_type>_check_services
+#       3. install_<distro>_<major_version>_check_services
+#       4  install_<distro>_<major_version>_<minor_version>_check_services
+#       5. install_<distro>_<install_type>_check_services
+#       6. install_<distro>_check_services
+#
+#######################################################################################################################
+
+
+#######################################################################################################################
+#
+#   Ubuntu Install Functions
+#
+__enable_universe_repository() {
+    if [ "$(grep -R universe /etc/apt/sources.list /etc/apt/sources.list.d/ | grep -v '#')" != "" ]; then
+        # The universe repository is already enabled
+        return 0
+    fi
+
+    echodebug "Enabling the universe repository"
+
+    add-apt-repository -y "deb http://archive.ubuntu.com/ubuntu $(lsb_release -sc) universe" || return 1
+
+    return 0
+}
+
+__install_saltstack_ubuntu_repository() {
+    # Workaround for latest non-LTS Ubuntu
+    if { [ "$DISTRO_MAJOR_VERSION" -eq 20 ] && [ "$DISTRO_MINOR_VERSION" -eq 10 ]; } || \
+        { [ "$DISTRO_MAJOR_VERSION" -eq 21 ] && [ "$DISTRO_MINOR_VERSION" -eq 04 ]; }; then
+        echowarn "Non-LTS Ubuntu detected, but stable packages requested. Trying packages for previous LTS release. You may experience problems."
+        UBUNTU_VERSION=20.04
+        UBUNTU_CODENAME="focal"
+    else
+        UBUNTU_VERSION=${DISTRO_VERSION}
+        UBUNTU_CODENAME=${DISTRO_CODENAME}
+    fi
+
+    # Install downloader backend for GPG keys fetching
+    __PACKAGES='wget'
+
+    # Required as it is not installed by default on Ubuntu 18+
+    if [ "$DISTRO_MAJOR_VERSION" -ge 18 ]; then
+        __PACKAGES="${__PACKAGES} gnupg"
+    fi
+
+    # Make sure https transport is available
+    if [ "$HTTP_VAL" = "https" ] ; then
+        __PACKAGES="${__PACKAGES} apt-transport-https ca-certificates"
+    fi
+
+    # shellcheck disable=SC2086,SC2090
+    __apt_get_install_noinput ${__PACKAGES} || return 1
+
+    __PY_VERSION_REPO="apt"
+    if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
+        __PY_VERSION_REPO="py3"
+    fi
+
+    # SaltStack's stable Ubuntu repository:
+    SALTSTACK_UBUNTU_URL="${HTTP_VAL}://${_REPO_URL}/${__PY_VERSION_REPO}/ubuntu/${UBUNTU_VERSION}/${__REPO_ARCH}/${STABLE_REV}"
+    echo "$__REPO_ARCH_DEB $SALTSTACK_UBUNTU_URL $UBUNTU_CODENAME main" > /etc/apt/sources.list.d/salt.list
+
+    __apt_key_fetch "$SALTSTACK_UBUNTU_URL/salt-archive-keyring.gpg" || return 1
+
+    __wait_for_apt apt-get update || return 1
+}
+
+install_ubuntu_deps() {
+    if [ $_DISABLE_REPOS -eq $BS_FALSE ]; then
+        # Install add-apt-repository
+        if ! __check_command_exists add-apt-repository; then
+            __apt_get_install_noinput software-properties-common || return 1
+        fi
+
+        __enable_universe_repository || return 1
+
+        __wait_for_apt apt-get update || return 1
+    fi
+
+    __PACKAGES=''
+
+    if [ "$DISTRO_MAJOR_VERSION" -lt 16 ]; then
+        # Minimal systems might not have upstart installed, install it
+        __PACKAGES="upstart"
+    fi
+
+    if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
+        PY_PKG_VER=3
+    else
+        PY_PKG_VER=""
+    fi
+
+    if [ "$DISTRO_MAJOR_VERSION" -ge 16 ] && [ -z "$_PY_EXE" ]; then
+        __PACKAGES="${__PACKAGES} python2.7"
+    fi
+
+    if [ "$_VIRTUALENV_DIR" != "null" ]; then
+        __PACKAGES="${__PACKAGES} python-virtualenv"
+    fi
+    # Need python-apt for managing packages via Salt
+    __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-apt"
+
+    # requests is still used by many salt modules
+    __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-requests"
+
+    # YAML module is used for generating custom master/minion configs
+    __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-yaml"
+
+    # Additionally install procps and pciutils which allows for Docker bootstraps. See 366#issuecomment-39666813
+    __PACKAGES="${__PACKAGES} procps pciutils"
+
+    # shellcheck disable=SC2086,SC2090
+    __apt_get_install_noinput ${__PACKAGES} || return 1
+
+    if [ "${_EXTRA_PACKAGES}" != "" ]; then
+        echoinfo "Installing the following extra packages as requested: ${_EXTRA_PACKAGES}"
+        # shellcheck disable=SC2086
+        __apt_get_install_noinput ${_EXTRA_PACKAGES} || return 1
+    fi
+
+    return 0
+}
+
+install_ubuntu_stable_deps() {
+    if [ "${_SLEEP}" -eq "${__DEFAULT_SLEEP}" ] && [ "$DISTRO_MAJOR_VERSION" -lt 16 ]; then
+        # The user did not pass a custom sleep value as an argument, let's increase the default value
+        echodebug "On Ubuntu systems we increase the default sleep value to 10."
+        echodebug "See https://github.com/saltstack/salt/issues/12248 for more info."
+        _SLEEP=10
+    fi
+
+    if [ $_START_DAEMONS -eq $BS_FALSE ]; then
+        echowarn "Not starting daemons on Debian based distributions is not working mostly because starting them is the default behaviour."
+    fi
+
+    # No user interaction, libc6 restart services for example
+    export DEBIAN_FRONTEND=noninteractive
+
+    __wait_for_apt apt-get update || return 1
+
+    if [ "${_UPGRADE_SYS}" -eq $BS_TRUE ]; then
+        if [ "${_INSECURE_DL}" -eq $BS_TRUE ]; then
+            if [ "$DISTRO_MAJOR_VERSION" -ge 20 ] || [ "$DISTRO_MAJOR_VERSION" -ge 21 ]; then
+                __apt_get_install_noinput --allow-unauthenticated debian-archive-keyring && apt-get update || return 1
+            else
+                __apt_get_install_noinput --allow-unauthenticated debian-archive-keyring &&
+                    apt-key update && apt-get update || return 1
+            fi
+        fi
+
+        __apt_get_upgrade_noinput || return 1
+    fi
+
+    if [ "$_DISABLE_REPOS" -eq "$BS_FALSE" ] || [ "$_CUSTOM_REPO_URL" != "null" ]; then
+        __check_dpkg_architecture || return 1
+        __install_saltstack_ubuntu_repository || return 1
+    fi
+
+    install_ubuntu_deps || return 1
+}
+
+install_ubuntu_git_deps() {
+    __wait_for_apt apt-get update || return 1
+
+    if ! __check_command_exists git; then
+        __apt_get_install_noinput git-core || return 1
+    fi
+
+    if [ "$_INSECURE_DL" -eq $BS_FALSE ] && [ "${_SALT_REPO_URL%%://*}" = "https" ]; then
+        __apt_get_install_noinput ca-certificates
+    fi
+
+    __git_clone_and_checkout || return 1
+
+    if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
+        PY_PKG_VER=3
+    else
+        PY_PKG_VER=""
+    fi
+
+    if [ "${_POST_NEON_INSTALL}" -eq $BS_FALSE ]; then
+
+        __PACKAGES=""
+
+        # See how we are installing packages
+        if [ "${_PIP_ALL}" -eq $BS_TRUE ]; then
+            __PACKAGES="${__PACKAGES} python-dev swig libssl-dev libzmq3 libzmq3-dev"
+
+            if ! __check_command_exists pip; then
+                __PACKAGES="${__PACKAGES} python-setuptools python-pip"
+            fi
+
+            # Get just the apt packages that are required to build all the pythons
+            # shellcheck disable=SC2086
+            __apt_get_install_noinput ${__PACKAGES} || return 1
+            # Install the pythons from requirements (only zmq for now)
+            __install_pip_deps "${_SALT_GIT_CHECKOUT_DIR}/requirements/zeromq.txt" || return 1
+        else
+            install_ubuntu_stable_deps || return 1
+
+            if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
+                __PACKAGES="${__PACKAGES} python3-setuptools"
+            else
+                # There is no m2crypto package for Py3 at this time - only install for Py2
+                __PACKAGES="${__PACKAGES} python-m2crypto"
+            fi
+
+            __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-crypto python${PY_PKG_VER}-jinja2"
+            __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-msgpack python${PY_PKG_VER}-requests"
+            __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-tornado python${PY_PKG_VER}-yaml"
+            __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-zmq"
+            __PACKAGES="${__PACKAGES} python-concurrent.futures"
+
+            if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ]; then
+                # Install python-libcloud if asked to
+                __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-libcloud"
+            fi
+
+            # shellcheck disable=SC2086
+            __apt_get_install_noinput ${__PACKAGES} || return 1
+        fi
+    else
+        __PACKAGES="python${PY_PKG_VER}-dev python${PY_PKG_VER}-pip python${PY_PKG_VER}-setuptools gcc"
+        # shellcheck disable=SC2086
+        __apt_get_install_noinput ${__PACKAGES} || return 1
+    fi
+
+    # Let's trigger config_salt()
+    if [ "$_TEMP_CONFIG_DIR" = "null" ]; then
+        _TEMP_CONFIG_DIR="${_SALT_GIT_CHECKOUT_DIR}/conf/"
+        CONFIG_SALT_FUNC="config_salt"
+    fi
+
+    return 0
+}
+
+install_ubuntu_stable() {
+    __PACKAGES=""
+
+    if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ];then
+        __PACKAGES="${__PACKAGES} salt-cloud"
+    fi
+    if [ "$_INSTALL_MASTER" -eq $BS_TRUE ]; then
+        __PACKAGES="${__PACKAGES} salt-master"
+    fi
+    if [ "$_INSTALL_MINION" -eq $BS_TRUE ]; then
+        __PACKAGES="${__PACKAGES} salt-minion"
+    fi
+    if [ "$_INSTALL_SYNDIC" -eq $BS_TRUE ]; then
+        __PACKAGES="${__PACKAGES} salt-syndic"
+    fi
+
+    # shellcheck disable=SC2086
+    __apt_get_install_noinput ${__PACKAGES} || return 1
+
+    return 0
+}
+
+install_ubuntu_git() {
+    # Activate virtualenv before install
+    if [ "${_VIRTUALENV_DIR}" != "null" ]; then
+        __activate_virtualenv || return 1
+    fi
+
+    if [ -n "$_PY_EXE" ]; then
+        _PYEXE=${_PY_EXE}
+    else
+        _PYEXE=python2.7
+    fi
+
+    if [ "${_POST_NEON_INSTALL}" -eq $BS_TRUE ]; then
+        # We can use --prefix on debian based ditributions
+        if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
+            _POST_NEON_PIP_INSTALL_ARGS="--target=/usr/lib/python3/dist-packages --install-option=--install-scripts=/usr/bin"
+        else
+            _POST_NEON_PIP_INSTALL_ARGS="--target=/usr/lib/python2.7/dist-packages --install-option=--install-scripts=/usr/bin"
+        fi
+        _POST_NEON_PIP_INSTALL_ARGS=""
+        __install_salt_from_repo_post_neon "${_PY_EXE}" || return 1
+        cd "${_SALT_GIT_CHECKOUT_DIR}" || return 1
+        sed -i 's:/usr/bin:/usr/local/bin:g' pkg/*.service
+        return 0
+    fi
+
+    if [ -f "${_SALT_GIT_CHECKOUT_DIR}/salt/syspaths.py" ]; then
+        # shellcheck disable=SC2086
+        "${_PYEXE}" setup.py --salt-config-dir="$_SALT_ETC_DIR" --salt-cache-dir="${_SALT_CACHE_DIR}" ${SETUP_PY_INSTALL_ARGS} install --install-layout=deb || return 1
+    else
+        # shellcheck disable=SC2086
+        "${_PYEXE}" setup.py ${SETUP_PY_INSTALL_ARGS} install --install-layout=deb || return 1
+    fi
+
+    return 0
+}
+
+install_ubuntu_stable_post() {
+    for fname in api master minion syndic; do
+        # Skip salt-api since the service should be opt-in and not necessarily started on boot
+        [ $fname = "api" ] && continue
+
+        # Skip if not meant to be installed
+        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
+        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
+        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
+
+        if [ -f /bin/systemctl ]; then
+            # Using systemd
+            /bin/systemctl is-enabled salt-$fname.service > /dev/null 2>&1 || (
+                /bin/systemctl preset salt-$fname.service > /dev/null 2>&1 &&
+                /bin/systemctl enable salt-$fname.service > /dev/null 2>&1
+            )
+            sleep 1
+            /bin/systemctl daemon-reload
+        elif [ -f /etc/init.d/salt-$fname ]; then
+            update-rc.d salt-$fname defaults
+        fi
+    done
+
+    return 0
+}
+
+install_ubuntu_git_post() {
+    for fname in api master minion syndic; do
+        # Skip if not meant to be installed
+        [ $fname = "api" ] && \
+            ([ "$_INSTALL_MASTER" -eq $BS_FALSE ] || ! __check_command_exists "salt-${fname}") && continue
+        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
+        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
+        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
+
+        if [ -f /bin/systemctl ] && [ "$DISTRO_MAJOR_VERSION" -ge 16 ]; then
+            __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/salt-${fname}.service" "/lib/systemd/system/salt-${fname}.service"
+
+            # Skip salt-api since the service should be opt-in and not necessarily started on boot
+            [ $fname = "api" ] && continue
+
+            systemctl is-enabled salt-$fname.service || (systemctl preset salt-$fname.service && systemctl enable salt-$fname.service)
+            sleep 1
+            systemctl daemon-reload
+        elif [ -f /sbin/initctl ]; then
+            _upstart_conf="/etc/init/salt-$fname.conf"
+            # We have upstart support
+            echodebug "There's upstart support"
+            if [ ! -f $_upstart_conf ]; then
+                # upstart does not know about our service, let's copy the proper file
+                echowarn "Upstart does not appear to know about salt-$fname"
+                echodebug "Copying ${_SALT_GIT_CHECKOUT_DIR}/pkg/salt-$fname.upstart to $_upstart_conf"
+                __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/salt-${fname}.upstart" "$_upstart_conf"
+                # Set service to know about virtualenv
+                if [ "${_VIRTUALENV_DIR}" != "null" ]; then
+                    echo "SALT_USE_VIRTUALENV=${_VIRTUALENV_DIR}" > /etc/default/salt-${fname}
+                fi
+                /sbin/initctl reload-configuration || return 1
+            fi
+        # No upstart support in Ubuntu!?
+        elif [ -f "${_SALT_GIT_CHECKOUT_DIR}/pkg/salt-${fname}.init" ]; then
+            echodebug "There's NO upstart support!?"
+            echodebug "Copying ${_SALT_GIT_CHECKOUT_DIR}/pkg/salt-${fname}.init to /etc/init.d/salt-$fname"
+            __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/salt-${fname}.init" "/etc/init.d/salt-$fname"
+            chmod +x /etc/init.d/salt-$fname
+
+            # Skip salt-api since the service should be opt-in and not necessarily started on boot
+            [ $fname = "api" ] && continue
+
+            update-rc.d salt-$fname defaults
+        else
+            echoerror "Neither upstart nor init.d was setup for salt-$fname"
+        fi
+    done
+
+    return 0
+}
+
+install_ubuntu_restart_daemons() {
+    [ $_START_DAEMONS -eq $BS_FALSE ] && return
+
+    # Ensure upstart configs / systemd units are loaded
+    if [ -f /bin/systemctl ] && [ "$DISTRO_MAJOR_VERSION" -ge 16 ]; then
+        systemctl daemon-reload
+    elif [ -f /sbin/initctl ]; then
+        /sbin/initctl reload-configuration
+    fi
+
+    for fname in api master minion syndic; do
+        # Skip salt-api since the service should be opt-in and not necessarily started on boot
+        [ $fname = "api" ] && continue
+
+        # Skip if not meant to be installed
+        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
+        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
+        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
+
+        if [ -f /bin/systemctl ] && [ "$DISTRO_MAJOR_VERSION" -ge 16 ]; then
+            echodebug "There's systemd support while checking salt-$fname"
+            systemctl stop salt-$fname > /dev/null 2>&1
+            systemctl start salt-$fname.service && continue
+            # We failed to start the service, let's test the SysV code below
+            echodebug "Failed to start salt-$fname using systemd"
+            if [ "$_ECHO_DEBUG" -eq $BS_TRUE ]; then
+                systemctl status salt-$fname.service
+                journalctl -xe
+            fi
+        fi
+
+        if [ -f /sbin/initctl ]; then
+            echodebug "There's upstart support while checking salt-$fname"
+
+            if status salt-$fname 2>/dev/null | grep -q running; then
+                stop salt-$fname || (echodebug "Failed to stop salt-$fname" && return 1)
+            fi
+
+            start salt-$fname && continue
+            # We failed to start the service, let's test the SysV code below
+            echodebug "Failed to start salt-$fname using Upstart"
+        fi
+
+        if [ ! -f /etc/init.d/salt-$fname ]; then
+            echoerror "No init.d support for salt-$fname was found"
+            return 1
+        fi
+
+        /etc/init.d/salt-$fname stop > /dev/null 2>&1
+        /etc/init.d/salt-$fname start
+    done
+
+    return 0
+}
+
+install_ubuntu_check_services() {
+    for fname in api master minion syndic; do
+        # Skip salt-api since the service should be opt-in and not necessarily started on boot
+        [ $fname = "api" ] && continue
+
+        # Skip if not meant to be installed
+        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
+        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
+        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
+
+        if [ -f /bin/systemctl ] && [ "$DISTRO_MAJOR_VERSION" -ge 16 ]; then
+            __check_services_systemd salt-$fname || return 1
+        elif [ -f /sbin/initctl ] && [ -f /etc/init/salt-${fname}.conf ]; then
+            __check_services_upstart salt-$fname || return 1
+        elif [ -f /etc/init.d/salt-$fname ]; then
+            __check_services_debian salt-$fname || return 1
+        fi
+    done
+
+    return 0
+}
+#
+#   End of Ubuntu Install Functions
+#
+#######################################################################################################################
+
+#######################################################################################################################
+#
+#   Debian Install Functions
+#
+__install_saltstack_debian_repository() {
+    if [ "$DISTRO_MAJOR_VERSION" -eq 11 ]; then
+        # Packages for Debian 11 at repo.saltproject.io are not yet available
+        # Set up repository for Debian 10 for Debian 11 for now until support
+        # is available at repo.saltproject.io for Debian 11.
+        echowarn "Debian 11 distribution detected, but stable packages requested. Trying packages from Debian 10. You may experience problems."
+        DEBIAN_RELEASE="10"
+        DEBIAN_CODENAME="buster"
+    else
+        DEBIAN_RELEASE="$DISTRO_MAJOR_VERSION"
+        DEBIAN_CODENAME="$DISTRO_CODENAME"
+    fi
+
+    __PY_VERSION_REPO="apt"
+    if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
+        __PY_VERSION_REPO="py3"
+    fi
+
+    # Install downloader backend for GPG keys fetching
+    __PACKAGES='wget'
+
+    # Required as it is not installed by default on Debian 9+
+    if [ "$DISTRO_MAJOR_VERSION" -ge 9 ]; then
+        __PACKAGES="${__PACKAGES} gnupg2"
+    fi
+
+    # Make sure https transport is available
+    if [ "$HTTP_VAL" = "https" ] ; then
+        __PACKAGES="${__PACKAGES} apt-transport-https ca-certificates"
+    fi
+
+    # shellcheck disable=SC2086,SC2090
+    __apt_get_install_noinput ${__PACKAGES} || return 1
+
+    # amd64 is just a part of repository URI, 32-bit pkgs are hosted under the same location
+    SALTSTACK_DEBIAN_URL="${HTTP_VAL}://${_REPO_URL}/${__PY_VERSION_REPO}/debian/${DEBIAN_RELEASE}/${__REPO_ARCH}/${STABLE_REV}"
+    echo "$__REPO_ARCH_DEB $SALTSTACK_DEBIAN_URL $DEBIAN_CODENAME main" > "/etc/apt/sources.list.d/salt.list"
+
+    __apt_key_fetch "$SALTSTACK_DEBIAN_URL/salt-archive-keyring.gpg" || return 1
+
+    __wait_for_apt apt-get update || return 1
+}
+
+install_debian_deps() {
+    if [ $_START_DAEMONS -eq $BS_FALSE ]; then
+        echowarn "Not starting daemons on Debian based distributions is not working mostly because starting them is the default behaviour."
+    fi
+
+    # No user interaction, libc6 restart services for example
+    export DEBIAN_FRONTEND=noninteractive
+
+    __wait_for_apt apt-get update || return 1
+
+    if [ "${_UPGRADE_SYS}" -eq $BS_TRUE ]; then
+        # Try to update GPG keys first if allowed
+        if [ "${_INSECURE_DL}" -eq $BS_TRUE ]; then
+            if [ "$DISTRO_MAJOR_VERSION" -ge 10 ]; then
+                __apt_get_install_noinput --allow-unauthenticated debian-archive-keyring && apt-get update || return 1
+            else
+                __apt_get_install_noinput --allow-unauthenticated debian-archive-keyring &&
+                    apt-key update && apt-get update || return 1
+            fi
+        fi
+
+        __apt_get_upgrade_noinput || return 1
+    fi
+
+    if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
+        PY_PKG_VER=3
+    else
+        PY_PKG_VER=""
+    fi
+
+    # Additionally install procps and pciutils which allows for Docker bootstraps. See 366#issuecomment-39666813
+    __PACKAGES='procps pciutils'
+
+    # YAML module is used for generating custom master/minion configs
+    __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-yaml"
+
+    # shellcheck disable=SC2086
+    __apt_get_install_noinput ${__PACKAGES} || return 1
+
+    if [ "$_DISABLE_REPOS" -eq "$BS_FALSE" ] || [ "$_CUSTOM_REPO_URL" != "null" ]; then
+        __check_dpkg_architecture || return 1
+        __install_saltstack_debian_repository || return 1
+    fi
+
+    if [ "${_EXTRA_PACKAGES}" != "" ]; then
+        echoinfo "Installing the following extra packages as requested: ${_EXTRA_PACKAGES}"
+        # shellcheck disable=SC2086
+        __apt_get_install_noinput ${_EXTRA_PACKAGES} || return 1
+    fi
+
+    return 0
+}
+
+install_debian_git_pre() {
+    if ! __check_command_exists git; then
+        __apt_get_install_noinput git || return 1
+    fi
+
+    if [ "$_INSECURE_DL" -eq $BS_FALSE ] && [ "${_SALT_REPO_URL%%://*}" = "https" ]; then
+        __apt_get_install_noinput ca-certificates
+    fi
+
+    __git_clone_and_checkout || return 1
+
+    # Let's trigger config_salt()
+    if [ "$_TEMP_CONFIG_DIR" = "null" ]; then
+        _TEMP_CONFIG_DIR="${_SALT_GIT_CHECKOUT_DIR}/conf/"
+        CONFIG_SALT_FUNC="config_salt"
+    fi
+}
+
+install_debian_git_deps() {
+    install_debian_deps || return 1
+    install_debian_git_pre || return 1
+
+    if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
+        PY_PKG_VER=3
+    else
+        PY_PKG_VER=""
+    fi
+
+    if [ "${_POST_NEON_INSTALL}" -eq $BS_FALSE ]; then
+        __PACKAGES="libzmq3 libzmq3-dev lsb-release python-apt python-backports.ssl-match-hostname"
+        __PACKAGES="${__PACKAGES} python-crypto python-jinja2 python-msgpack python-m2crypto"
+        __PACKAGES="${__PACKAGES} python-requests python-tornado python-yaml python-zmq"
+
+        if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ]; then
+            # Install python-libcloud if asked to
+            __PACKAGES="${__PACKAGES} python-libcloud"
+        fi
+
+        # shellcheck disable=SC2086
+        __apt_get_install_noinput ${__PACKAGES} || return 1
+    else
+        __PACKAGES="python${PY_PKG_VER}-dev python${PY_PKG_VER}-pip python${PY_PKG_VER}-setuptools gcc"
+        echodebug "install_debian_git_deps() Installing ${__PACKAGES}"
+        # shellcheck disable=SC2086
+        __apt_get_install_noinput ${__PACKAGES} || return 1
+    fi
+
+    return 0
+}
+
+install_debian_7_git_deps() {
+    install_debian_deps || return 1
+    install_debian_git_deps || return 1
+
+    return 0
+}
+
+install_debian_8_git_deps() {
+
+    if [ "${_POST_NEON_INSTALL}" -eq $BS_TRUE ]; then
+        echodebug "CALLING install_debian_git_deps"
+        install_debian_git_deps || return 1
+        return 0
+    fi
+
+    install_debian_deps || return 1
+
+    if ! __check_command_exists git; then
+        __apt_get_install_noinput git || return 1
+    fi
+
+    if [ "$_INSECURE_DL" -eq $BS_FALSE ] && [ "${_SALT_REPO_URL%%://*}" = "https" ]; then
+        __apt_get_install_noinput ca-certificates
+    fi
+
+    __git_clone_and_checkout || return 1
+
+    __PACKAGES="libzmq3 libzmq3-dev lsb-release python-apt python-crypto python-jinja2"
+    __PACKAGES="${__PACKAGES} python-m2crypto python-msgpack python-requests python-systemd"
+    __PACKAGES="${__PACKAGES} python-yaml python-zmq python-concurrent.futures"
+
+    if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ]; then
+        # Install python-libcloud if asked to
+        __PACKAGES="${__PACKAGES} python-libcloud"
+    fi
+
+    __PIP_PACKAGES=''
+    if (__check_pip_allowed >/dev/null 2>&1); then
+        __PIP_PACKAGES='tornado<5.0'
+        # Install development environment for building tornado Python module
+        __PACKAGES="${__PACKAGES} build-essential python-dev"
+
+        if ! __check_command_exists pip; then
+            __PACKAGES="${__PACKAGES} python-pip"
+        fi
+    # Attempt to configure backports repo on non-x86_64 system
+    elif [ $_DISABLE_REPOS -eq $BS_FALSE ] && [ "$DPKG_ARCHITECTURE" != "amd64" ]; then
+        # Check if Debian Backports repo already configured
+        if ! apt-cache policy | grep -q 'Debian Backports'; then
+            echo 'deb http://httpredir.debian.org/debian jessie-backports main' > \
+                /etc/apt/sources.list.d/backports.list
+        fi
+
+        __wait_for_apt apt-get update || return 1
+
+        # python-tornado package should be installed from backports repo
+        __PACKAGES="${__PACKAGES} python-backports.ssl-match-hostname python-tornado/jessie-backports"
+    else
+        __PACKAGES="${__PACKAGES} python-backports.ssl-match-hostname python-tornado"
+    fi
+
+    # shellcheck disable=SC2086
+    __apt_get_install_noinput ${__PACKAGES} || return 1
+
+    if [ "${__PIP_PACKAGES}" != "" ]; then
+        # shellcheck disable=SC2086,SC2090
+        pip install -U ${__PIP_PACKAGES} || return 1
+    fi
+
+    # Let's trigger config_salt()
+    if [ "$_TEMP_CONFIG_DIR" = "null" ]; then
+        _TEMP_CONFIG_DIR="${_SALT_GIT_CHECKOUT_DIR}/conf/"
+        CONFIG_SALT_FUNC="config_salt"
+    fi
+
+    return 0
+}
+
+install_debian_9_git_deps() {
+
+    if [ "${_POST_NEON_INSTALL}" -eq $BS_TRUE ]; then
+        install_debian_git_deps || return 1
+        return 0
+    fi
+
+    install_debian_deps || return 1
+    install_debian_git_pre || return 1
+
+    __PACKAGES="libzmq5 lsb-release"
+
+    if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
+        PY_PKG_VER=3
+    else
+        PY_PKG_VER=""
+
+        # These packages are PY2-ONLY
+        __PACKAGES="${__PACKAGES} python-backports-abc python-m2crypto python-concurrent.futures"
+    fi
+
+    __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-apt python${PY_PKG_VER}-crypto python${PY_PKG_VER}-jinja2"
+    __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-msgpack python${PY_PKG_VER}-requests python${PY_PKG_VER}-systemd"
+    __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-tornado python${PY_PKG_VER}-yaml python${PY_PKG_VER}-zmq"
+
+    if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ]; then
+        # Install python-libcloud if asked to
+        __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-libcloud"
+    fi
+
+    # shellcheck disable=SC2086
+    __apt_get_install_noinput ${__PACKAGES} || return 1
+
+    return 0
+}
+
+install_debian_10_git_deps() {
+
+    if [ "${_POST_NEON_INSTALL}" -eq $BS_TRUE ]; then
+        install_debian_git_deps || return 1
+        return 0
+    fi
+
+    install_debian_deps || return 1
+    install_debian_git_pre || return 1
+
+    if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
+        _py=${_PY_EXE}
+        PY_PKG_VER=3
+        __PACKAGES="python${PY_PKG_VER}-distutils"
+    else
+        _py="python"
+        PY_PKG_VER=""
+        __PACKAGES=""
+    fi
+
+    __install_tornado_pip ${_py}|| return 1
+    __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-msgpack python${PY_PKG_VER}-jinja2"
+    __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-tornado python${PY_PKG_VER}-yaml python${PY_PKG_VER}-zmq"
+
+    # shellcheck disable=SC2086
+    __apt_get_install_noinput ${__PACKAGES} || return 1
+
+    return 0
+}
+
+install_debian_stable() {
+    __PACKAGES=""
+
+    if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ];then
+        __PACKAGES="${__PACKAGES} salt-cloud"
+    fi
+    if [ "$_INSTALL_MASTER" -eq $BS_TRUE ]; then
+        __PACKAGES="${__PACKAGES} salt-master"
+    fi
+    if [ "$_INSTALL_MINION" -eq $BS_TRUE ]; then
+        __PACKAGES="${__PACKAGES} salt-minion"
+    fi
+    if [ "$_INSTALL_SYNDIC" -eq $BS_TRUE ]; then
+        __PACKAGES="${__PACKAGES} salt-syndic"
+    fi
+
+    # shellcheck disable=SC2086
+    __apt_get_install_noinput ${__PACKAGES} || return 1
+
+    return 0
+}
+
+install_debian_7_stable() {
+    install_debian_stable || return 1
+    return 0
+}
+
+install_debian_8_stable() {
+    install_debian_stable || return 1
+    return 0
+}
+
+install_debian_9_stable() {
+    install_debian_stable || return 1
+    return 0
+}
+
+install_debian_git() {
+    if [ -n "$_PY_EXE" ]; then
+        _PYEXE=${_PY_EXE}
+    else
+        _PYEXE=python
+    fi
+
+    if [ "${_POST_NEON_INSTALL}" -eq $BS_TRUE ]; then
+        # We can use --prefix on debian based ditributions
+        if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
+            _POST_NEON_PIP_INSTALL_ARGS="--target=/usr/lib/python3/dist-packages --install-option=--install-scripts=/usr/bin"
+        else
+            _POST_NEON_PIP_INSTALL_ARGS="--target=/usr/lib/python2.7/dist-packages --install-option=--install-scripts=/usr/bin"
+        fi
+        _POST_NEON_PIP_INSTALL_ARGS=""
+        __install_salt_from_repo_post_neon "${_PY_EXE}" || return 1
+        cd "${_SALT_GIT_CHECKOUT_DIR}" || return 1
+        sed -i 's:/usr/bin:/usr/local/bin:g' pkg/*.service
+        return 0
+    fi
+
+    if [ -f "${_SALT_GIT_CHECKOUT_DIR}/salt/syspaths.py" ]; then
+        # shellcheck disable=SC2086
+        "${_PYEXE}" setup.py --salt-config-dir="$_SALT_ETC_DIR" --salt-cache-dir="${_SALT_CACHE_DIR}" ${SETUP_PY_INSTALL_ARGS} install --install-layout=deb || return 1
+    else
+        # shellcheck disable=SC2086
+        "${_PYEXE}" setup.py ${SETUP_PY_INSTALL_ARGS} install --install-layout=deb || return 1
+    fi
+}
+
+install_debian_7_git() {
+    install_debian_git || return 1
+    return 0
+}
+
+install_debian_8_git() {
+    install_debian_git || return 1
+    return 0
+}
+
+install_debian_9_git() {
+    install_debian_git || return 1
+    return 0
+}
+
+install_debian_git_post() {
+    for fname in api master minion syndic; do
+        # Skip if not meant to be installed
+        [ "$fname" = "api" ] && \
+            ([ "$_INSTALL_MASTER" -eq $BS_FALSE ] || ! __check_command_exists "salt-${fname}") && continue
+        [ "$fname" = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
+        [ "$fname" = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
+        [ "$fname" = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
+
+        # Configure SystemD for Debian 8 "Jessie" and later
+        if [ -f /bin/systemctl ]; then
+            if [ ! -f /lib/systemd/system/salt-${fname}.service ] || \
+                { [ -f /lib/systemd/system/salt-${fname}.service ] && [ $_FORCE_OVERWRITE -eq $BS_TRUE ]; }; then
+                if [ -f "${_SALT_GIT_CHECKOUT_DIR}/pkg/salt-${fname}.service" ]; then
+                    __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/salt-${fname}.service" /lib/systemd/system
+                    __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/salt-${fname}.environment" "/etc/default/salt-${fname}"
+                else
+                    # workaround before adding Debian-specific unit files to the Salt main repo
+                    __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/salt-${fname}.service" /lib/systemd/system
+                    sed -i -e '/^Type/ s/notify/simple/' /lib/systemd/system/salt-${fname}.service
+                fi
+            fi
+
+            # Skip salt-api since the service should be opt-in and not necessarily started on boot
+            [ "$fname" = "api" ] && continue
+
+            /bin/systemctl enable "salt-${fname}.service"
+            SYSTEMD_RELOAD=$BS_TRUE
+
+        # Install initscripts for Debian 7 "Wheezy"
+        elif [ ! -f "/etc/init.d/salt-$fname" ] || \
+            { [ -f "/etc/init.d/salt-$fname" ] && [ "$_FORCE_OVERWRITE" -eq $BS_TRUE ]; }; then
+            __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/deb/salt-${fname}.init" "/etc/init.d/salt-${fname}"
+            __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/deb/salt-${fname}.environment" "/etc/default/salt-${fname}"
+
+            if [ ! -f "/etc/init.d/salt-${fname}" ]; then
+                echowarn "The init script for salt-${fname} was not found, skipping it..."
+                continue
+            fi
+
+            chmod +x "/etc/init.d/salt-${fname}"
+
+            # Skip salt-api since the service should be opt-in and not necessarily started on boot
+            [ "$fname" = "api" ] && continue
+
+            update-rc.d "salt-${fname}" defaults
+        fi
+    done
+}
+
+install_debian_restart_daemons() {
+    [ "$_START_DAEMONS" -eq $BS_FALSE ] && return 0
+
+    for fname in api master minion syndic; do
+        # Skip salt-api since the service should be opt-in and not necessarily started on boot
+        [ $fname = "api" ] && continue
+
+        # Skip if not meant to be installed
+        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
+        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
+        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
+
+        if [ -f /bin/systemctl ]; then
+            # Debian 8 uses systemd
+            /bin/systemctl stop salt-$fname > /dev/null 2>&1
+            /bin/systemctl start salt-$fname.service && continue
+            if [ "$_ECHO_DEBUG" -eq $BS_TRUE ]; then
+                systemctl status salt-$fname.service
+                journalctl -xe
+            fi
+        elif [ -f /etc/init.d/salt-$fname ]; then
+            # Still in SysV init
+            /etc/init.d/salt-$fname stop > /dev/null 2>&1
+            /etc/init.d/salt-$fname start
+        fi
+    done
+}
+
+install_debian_check_services() {
+    for fname in api master minion syndic; do
+        # Skip salt-api since the service should be opt-in and not necessarily started on boot
+        [ $fname = "api" ] && continue
+
+        # Skip if not meant to be installed
+        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
+        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
+        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
+
+        if [ -f /bin/systemctl ]; then
+            __check_services_systemd salt-$fname || return 1
+        elif [ -f /etc/init.d/salt-$fname ]; then
+            __check_services_debian salt-$fname || return 1
+        fi
+    done
+    return 0
+}
+#
+#   Ended Debian Install Functions
+#
+#######################################################################################################################
+
+#######################################################################################################################
+#
+#   Fedora Install Functions
+#
+
+install_fedora_deps() {
+    if [ "$_UPGRADE_SYS" -eq $BS_TRUE ]; then
+        dnf -y update || return 1
+    fi
+
+    __PACKAGES="${__PACKAGES:=}"
+    if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -lt 3 ]; then
+        echoerror "There are no Python 2 stable packages for Fedora, only Py3 packages"
+        return 1
+    fi
+
+    # Salt on Fedora is Py3
+    PY_PKG_VER=3
+
+    __PACKAGES="${__PACKAGES} dnf-utils libyaml procps-ng python${PY_PKG_VER}-crypto python${PY_PKG_VER}-jinja2"
+    __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-msgpack python${PY_PKG_VER}-requests python${PY_PKG_VER}-zmq"
+    __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-pip python${PY_PKG_VER}-m2crypto python${PY_PKG_VER}-pyyaml"
+    __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-systemd"
+    if [ "${_EXTRA_PACKAGES}" != "" ]; then
+        echoinfo "Installing the following extra packages as requested: ${_EXTRA_PACKAGES}"
+    fi
+
+    # shellcheck disable=SC2086
+    __dnf_install_noinput ${__PACKAGES} ${_EXTRA_PACKAGES} || return 1
+
+    return 0
+}
+
+install_fedora_stable() {
+    if [ "$STABLE_REV" = "latest" ]; then
+        __SALT_VERSION=""
+    else
+        __SALT_VERSION="$(dnf list --showduplicates salt | grep "$STABLE_REV" | head -n 1 | awk '{print $2}')"
+        if [ "x${__SALT_VERSION}" = "x" ]; then
+            echoerror "Could not find a stable install for Salt ${STABLE_REV}"
+            exit 1
+        fi
+        echoinfo "Installing Stable Package Version ${__SALT_VERSION}"
+        __SALT_VERSION="-${__SALT_VERSION}"
+    fi
+    __PACKAGES=""
+
+    if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ];then
+        __PACKAGES="${__PACKAGES} salt-cloud${__SALT_VERSION}"
+    fi
+    if [ "$_INSTALL_MASTER" -eq $BS_TRUE ]; then
+        __PACKAGES="${__PACKAGES} salt-master${__SALT_VERSION}"
+    fi
+    if [ "$_INSTALL_MINION" -eq $BS_TRUE ]; then
+        __PACKAGES="${__PACKAGES} salt-minion${__SALT_VERSION}"
+    fi
+    if [ "$_INSTALL_SYNDIC" -eq $BS_TRUE ]; then
+        __PACKAGES="${__PACKAGES} salt-syndic${__SALT_VERSION}"
+    fi
+
+    # shellcheck disable=SC2086
+    __dnf_install_noinput ${__PACKAGES} || return 1
+
+    __python="python3"
+    if ! __check_command_exists python3; then
+        echoerror "Could not find a python3 binary?!"
+        return 1
+    fi
+
+    if [ "${_POST_NEON_INSTALL}" -eq $BS_FALSE ]; then
+        __check_pip_allowed "You need to allow pip based installations (-P) for Tornado <5.0 in order to install Salt"
+        __installed_tornado_rpm=$(rpm -qa | grep python${PY_PKG_VER}-tornado)
+        if [ -n "${__installed_tornado_rpm}" ]; then
+            echodebug "Removing system package ${__installed_tornado_rpm}"
+            rpm -e --nodeps "${__installed_tornado_rpm}" || return 1
+        fi
+        __get_site_packages_dir_code=$(cat << EOM
+import site
+print([d for d in site.getsitepackages() if d.startswith('/usr/lib/python')][0])
+EOM
+)
+        __target_path=$(${__python} -c "${__get_site_packages_dir_code}")
+        echodebug "Running '${__python}' -m pip install --target ${__target_path} 'tornado<5.0'"
+        "${__python}" -m pip install --target "${__target_path}" "tornado<5" || return 1
+    fi
+
+    return 0
+}
+
+install_fedora_stable_post() {
+    for fname in api master minion syndic; do
+        # Skip salt-api since the service should be opt-in and not necessarily started on boot
+        [ $fname = "api" ] && continue
+
+        # Skip if not meant to be installed
+        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
+        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
+        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
+
+        systemctl is-enabled salt-$fname.service || (systemctl preset salt-$fname.service && systemctl enable salt-$fname.service)
+        sleep 1
+        systemctl daemon-reload
+    done
+}
+
+install_fedora_git_deps() {
+    if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
+        # Packages are named python3-<whatever>
+        PY_PKG_VER=3
+    else
+        PY_PKG_VER=2
+    fi
+
+    __PACKAGES=""
+    if ! __check_command_exists ps; then
+        __PACKAGES="${__PACKAGES} procps-ng"
+    fi
+    if ! __check_command_exists git; then
+        __PACKAGES="${__PACKAGES} git"
+    fi
+
+    if [ -n "${__PACKAGES}" ]; then
+        # shellcheck disable=SC2086
+        __dnf_install_noinput ${__PACKAGES} || return 1
+        __PACKAGES=""
+    fi
+
+    __git_clone_and_checkout || return 1
+
+    if [ "${_POST_NEON_INSTALL}" -eq $BS_FALSE ]; then
+
+        if [ "$_INSECURE_DL" -eq $BS_FALSE ] && [ "${_SALT_REPO_URL%%://*}" = "https" ]; then
+            __PACKAGES="${__PACKAGES} ca-certificates"
+        fi
+        if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ]; then
+            __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-libcloud python${PY_PKG_VER}-netaddr"
+        fi
+
+        install_fedora_deps || return 1
+
+        if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
+            if __check_command_exists python3; then
+                __python="python3"
+            fi
+        elif [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 2 ]; then
+            if __check_command_exists python2; then
+                __python="python2"
+            fi
+        else
+            if ! __check_command_exists python; then
+                echoerror "Unable to find a python binary?!"
+                return 1
+            fi
+            # Let's hope it's the right one
+            __python="python"
+        fi
+
+        grep tornado "${_SALT_GIT_CHECKOUT_DIR}/requirements/base.txt" | while IFS='
+    '         read -r dep; do
+                echodebug "Running '${__python}' -m pip install '${dep}'"
+                "${__python}" -m pip install "${dep}" || return 1
+            done
+    else
+        __PACKAGES="python${PY_PKG_VER}-devel python${PY_PKG_VER}-pip python${PY_PKG_VER}-setuptools gcc"
+        # shellcheck disable=SC2086
+        __dnf_install_noinput ${__PACKAGES} || return 1
+    fi
+
+    # Let's trigger config_salt()
+    if [ "$_TEMP_CONFIG_DIR" = "null" ]; then
+        _TEMP_CONFIG_DIR="${_SALT_GIT_CHECKOUT_DIR}/conf/"
+        CONFIG_SALT_FUNC="config_salt"
+    fi
+
+    return 0
+}
+
+install_fedora_git() {
+    if [ "${_PY_EXE}" != "" ]; then
+        _PYEXE=${_PY_EXE}
+        echoinfo "Using the following python version: ${_PY_EXE} to install salt"
+    else
+        _PYEXE='python2'
+    fi
+
+    if [ "${_POST_NEON_INSTALL}" -eq $BS_TRUE ]; then
+         __install_salt_from_repo_post_neon "${_PY_EXE}" || return 1
+        return 0
+    fi
+
+    if [ -f "${_SALT_GIT_CHECKOUT_DIR}/salt/syspaths.py" ]; then
+        ${_PYEXE} setup.py --salt-config-dir="$_SALT_ETC_DIR" --salt-cache-dir="${_SALT_CACHE_DIR}" ${SETUP_PY_INSTALL_ARGS} install --prefix=/usr || return 1
+    else
+        ${_PYEXE} setup.py ${SETUP_PY_INSTALL_ARGS} install --prefix=/usr || return 1
+    fi
+    return 0
+}
+
+install_fedora_git_post() {
+    for fname in api master minion syndic; do
+        # Skip if not meant to be installed
+        [ $fname = "api" ] && \
+            ([ "$_INSTALL_MASTER" -eq $BS_FALSE ] || ! __check_command_exists "salt-${fname}") && continue
+        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
+        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
+        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
+
+        __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/rpm/salt-${fname}.service" "/lib/systemd/system/salt-${fname}.service"
+
+        # Skip salt-api since the service should be opt-in and not necessarily started on boot
+        [ $fname = "api" ] && continue
+
+        systemctl is-enabled salt-$fname.service || (systemctl preset salt-$fname.service && systemctl enable salt-$fname.service)
+        sleep 1
+        systemctl daemon-reload
+    done
+}
+
+install_fedora_restart_daemons() {
+    [ $_START_DAEMONS -eq $BS_FALSE ] && return
+
+    for fname in api master minion syndic; do
+        # Skip salt-api since the service should be opt-in and not necessarily started on boot
+        [ $fname = "api" ] && continue
+
+        # Skip if not meant to be installed
+        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
+        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
+        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
+
+        systemctl stop salt-$fname > /dev/null 2>&1
+        systemctl start salt-$fname.service && continue
+        echodebug "Failed to start salt-$fname using systemd"
+        if [ "$_ECHO_DEBUG" -eq $BS_TRUE ]; then
+            systemctl status salt-$fname.service
+            journalctl -xe
+        fi
+    done
+}
+
+install_fedora_check_services() {
+    for fname in api master minion syndic; do
+        # Skip salt-api since the service should be opt-in and not necessarily started on boot
+        [ $fname = "api" ] && continue
+
+        # Skip if not meant to be installed
+        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
+        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
+        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
+
+        __check_services_systemd salt-$fname || return 1
+    done
+
+    return 0
+}
+#
+#   Ended Fedora Install Functions
+#
+#######################################################################################################################
+
+#######################################################################################################################
+#
+#   CentOS Install Functions
+#
+__install_epel_repository() {
+    if [ ${_EPEL_REPOS_INSTALLED} -eq $BS_TRUE ]; then
+        return 0
+    fi
+
+    # Check if epel repo is already enabled and flag it accordingly
+    if yum repolist | grep -q "^[!]\\?${_EPEL_REPO}/"; then
+        _EPEL_REPOS_INSTALLED=$BS_TRUE
+        return 0
+    fi
+
+    # Download latest 'epel-release' package for the distro version directly
+    epel_repo_url="${HTTP_VAL}://dl.fedoraproject.org/pub/epel/epel-release-latest-${DISTRO_MAJOR_VERSION}.noarch.rpm"
+    rpm -Uvh --force "$epel_repo_url" || return 1
+
+    _EPEL_REPOS_INSTALLED=$BS_TRUE
+
+    return 0
+}
+
+__install_saltstack_rhel_repository() {
+    if [ "$ITYPE" = "stable" ]; then
+        repo_rev="$STABLE_REV"
+    else
+        repo_rev="latest"
+    fi
+
+    __PY_VERSION_REPO="yum"
+    if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
+        __PY_VERSION_REPO="py3"
+    fi
+
+    # Avoid using '$releasever' variable for yum.
+    # Instead, this should work correctly on all RHEL variants.
+    base_url="${HTTP_VAL}://${_REPO_URL}/${__PY_VERSION_REPO}/redhat/${DISTRO_MAJOR_VERSION}/\$basearch/${repo_rev}/"
+    gpg_key="SALTSTACK-GPG-KEY.pub"
+    repo_file="/etc/yum.repos.d/salt.repo"
+
+    if [ ! -s "$repo_file" ] || [ "$_FORCE_OVERWRITE" -eq $BS_TRUE ]; then
+        cat <<_eof > "$repo_file"
+[saltstack]
+name=SaltStack ${repo_rev} Release Channel for RHEL/CentOS \$releasever
+baseurl=${base_url}
+skip_if_unavailable=True
+gpgcheck=1
+gpgkey=${base_url}${gpg_key}
+enabled=1
+enabled_metadata=1
+_eof
+
+        fetch_url="${HTTP_VAL}://${_REPO_URL}/${__PY_VERSION_REPO}/redhat/${DISTRO_MAJOR_VERSION}/${CPU_ARCH_L}/${repo_rev}/"
+        __rpm_import_gpg "${fetch_url}${gpg_key}" || return 1
+        yum clean metadata || return 1
+    elif [ "$repo_rev" != "latest" ]; then
+        echowarn "salt.repo already exists, ignoring salt version argument."
+        echowarn "Use -F (forced overwrite) to install $repo_rev."
+    fi
+
+    return 0
+}
+
+install_centos_stable_deps() {
+    if [ "$_UPGRADE_SYS" -eq $BS_TRUE ]; then
+        yum -y update || return 1
+    fi
+
+    if [ "$_DISABLE_REPOS" -eq "$BS_TRUE" ] && [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
+        echowarn "Detected -r or -R option while installing Salt packages for Python 3."
+        echowarn "Python 3 packages for older Salt releases requires the EPEL repository to be installed."
+        echowarn "Installing the EPEL repository automatically is disabled when using the -r or -R options."
+    fi
+
+    if [ "$_DISABLE_REPOS" -eq "$BS_FALSE" ]; then
+        __install_epel_repository || return 1
+        __install_saltstack_rhel_repository || return 1
+    fi
+
+    # If -R was passed, we need to configure custom repo url with rsync-ed packages
+    # Which is still handled in __install_saltstack_rhel_repository. This call has
+    # its own check in case -r was passed without -R.
+    if [ "$_CUSTOM_REPO_URL" != "null" ]; then
+        __install_saltstack_rhel_repository || return 1
+    fi
+
+    if [ "$DISTRO_MAJOR_VERSION" -ge 8 ]; then
+        __PACKAGES="dnf-utils chkconfig"
+    else
+        __PACKAGES="yum-utils chkconfig"
+    fi
+
+    if [ "${_POST_NEON_INSTALL}" -eq $BS_FALSE ]; then
+        if [ "$DISTRO_MAJOR_VERSION" -ge 8 ]; then
+            # YAML module is used for generating custom master/minion configs
+            if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
+                __PACKAGES="${__PACKAGES} python3-pyyaml"
+            else
+                __PACKAGES="${__PACKAGES} python2-pyyaml"
+            fi
+        elif [ "$DISTRO_MAJOR_VERSION" -eq 7 ]; then
+            # YAML module is used for generating custom master/minion configs
+            if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
+                __PACKAGES="${__PACKAGES} python36-PyYAML"
+            else
+                __PACKAGES="${__PACKAGES} PyYAML"
+            fi
+        else
+            # YAML module is used for generating custom master/minion configs
+            if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
+                __PACKAGES="${__PACKAGES} python34-PyYAML"
+            else
+                __PACKAGES="${__PACKAGES} PyYAML"
+            fi
+        fi
+    fi
+
+    # shellcheck disable=SC2086
+    __yum_install_noinput ${__PACKAGES} || return 1
+
+    if [ "${_EXTRA_PACKAGES}" != "" ]; then
+        echoinfo "Installing the following extra packages as requested: ${_EXTRA_PACKAGES}"
+        # shellcheck disable=SC2086
+        __yum_install_noinput ${_EXTRA_PACKAGES} || return 1
+    fi
+
+
+    return 0
+}
+
+install_centos_stable() {
+    __PACKAGES=""
+
+    local cloud='salt-cloud'
+    local master='salt-master'
+    local minion='salt-minion'
+    local syndic='salt-syndic'
+
+    if echo "$STABLE_REV" | grep -q "archive";then # point release being applied
+        local ver=$(echo "$STABLE_REV"|awk -F/ '{print $2}') # strip archive/
+    elif echo "$STABLE_REV" | egrep -vq "archive|latest";then # latest or major version(3003, 3004, etc) being applie
+        local ver=$STABLE_REV
+    fi
+
+    if [ ! -z $ver ]; then
+        cloud+="-$ver"
+        master+="-$ver"
+        minion+="-$ver"
+        syndic+="-$ver"
+    fi
+
+    if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ];then
+        __PACKAGES="${__PACKAGES} $cloud"
+    fi
+    if [ "$_INSTALL_MASTER" -eq $BS_TRUE ];then
+        __PACKAGES="${__PACKAGES} $master"
+    fi
+    if [ "$_INSTALL_MINION" -eq $BS_TRUE ]; then
+        __PACKAGES="${__PACKAGES} $minion"
+    fi
+    if [ "$_INSTALL_SYNDIC" -eq $BS_TRUE ];then
+        __PACKAGES="${__PACKAGES} $syndic"
+    fi
+
+    # shellcheck disable=SC2086
+    __yum_install_noinput ${__PACKAGES} || return 1
+
+    return 0
+}
+
+install_centos_stable_post() {
+    SYSTEMD_RELOAD=$BS_FALSE
+
+    for fname in api master minion syndic; do
+        # Skip salt-api since the service should be opt-in and not necessarily started on boot
+        [ $fname = "api" ] && continue
+
+        # Skip if not meant to be installed
+        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
+        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
+        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
+
+        if [ -f /bin/systemctl ]; then
+            /bin/systemctl is-enabled salt-${fname}.service > /dev/null 2>&1 || (
+                /bin/systemctl preset salt-${fname}.service > /dev/null 2>&1 &&
+                /bin/systemctl enable salt-${fname}.service > /dev/null 2>&1
+            )
+
+            SYSTEMD_RELOAD=$BS_TRUE
+        elif [ -f "/etc/init.d/salt-${fname}" ]; then
+            /sbin/chkconfig salt-${fname} on
+        fi
+    done
+
+    if [ "$SYSTEMD_RELOAD" -eq $BS_TRUE ]; then
+        /bin/systemctl daemon-reload
+    fi
+
+    return 0
+}
+
+install_centos_git_deps() {
+    install_centos_stable_deps || return 1
+
+    if [ "$_INSECURE_DL" -eq $BS_FALSE ] && [ "${_SALT_REPO_URL%%://*}" = "https" ]; then
+        __yum_install_noinput ca-certificates || return 1
+    fi
+
+    if ! __check_command_exists git; then
+        __yum_install_noinput git || return 1
+    fi
+
+    __git_clone_and_checkout || return 1
+
+    __PACKAGES=""
+
+    if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
+        if [ "$DISTRO_MAJOR_VERSION" -ge 8 ]; then
+            # Packages are named python3-<whatever>
+            PY_PKG_VER=3
+            __PACKAGES="${__PACKAGES} python3"
+        else
+            # Packages are named python36-<whatever>
+            PY_PKG_VER=36
+            __PACKAGES="${__PACKAGES} python36"
+        fi
+    else
+        PY_PKG_VER=""
+        if [ "$DISTRO_MAJOR_VERSION" -ge 8 ]; then
+            __PACKAGES="${__PACKAGES} python2"
+        elif [ "$DISTRO_MAJOR_VERSION" -eq 6 ]; then
+            PY_PKG_VER=27
+            __PACKAGES="${__PACKAGES} python27"
+        else
+            __PACKAGES="${__PACKAGES} python"
+        fi
+    fi
+
+    if [ "${_POST_NEON_INSTALL}" -eq $BS_FALSE ]; then
+        _install_m2crypto_req=false
+        if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
+            _py=${_PY_EXE}
+            if [ "$DISTRO_MAJOR_VERSION" -gt 6 ]; then
+                _install_m2crypto_req=true
+            fi
+        else
+            if [ "$DISTRO_MAJOR_VERSION" -eq 6 ]; then
+                _install_m2crypto_req=true
+            fi
+            _py="python"
+
+            # Only Py2 needs python-futures
+            __PACKAGES="${__PACKAGES} python-futures"
+
+            # There is no systemd-python3 package as of this writing
+            if [ "$DISTRO_MAJOR_VERSION" -ge 7 ]; then
+                __PACKAGES="${__PACKAGES} systemd-python"
+            fi
+        fi
+
+        if [ "$DISTRO_MAJOR_VERSION" -ge 8 ]; then
+            __install_tornado_pip ${_py} || return 1
+            __PACKAGES="${__PACKAGES} python3-m2crypto"
+        else
+            __PACKAGES="${__PACKAGES} m2crypto python${PY_PKG_VER}-crypto"
+        fi
+
+        __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-jinja2"
+        __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-msgpack python${PY_PKG_VER}-requests"
+        __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-tornado python${PY_PKG_VER}-zmq"
+
+        if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ]; then
+            __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-libcloud"
+        fi
+
+        if [ "${_INSTALL_PY}" -eq "${BS_TRUE}" ]; then
+            # Install Python if "-y" was passed in.
+            __install_python || return 1
+        fi
+
+        if [ "${_PY_EXE}" != "" ] && [ "$_PIP_ALLOWED" -eq "$BS_TRUE" ]; then
+            # If "-x" is defined, install dependencies with pip based on the Python version given.
+            _PIP_PACKAGES="m2crypto!=0.33.0 jinja2 msgpack-python pycrypto PyYAML tornado<5.0 zmq futures>=2.0"
+
+            # install swig and openssl on cent6
+            if $_install_m2crypto_req; then
+                __yum_install_noinput openssl-devel swig || return 1
+            fi
+
+            if [ -f "${_SALT_GIT_CHECKOUT_DIR}/requirements/base.txt" ]; then
+                # Filter out any commented lines from the requirements file
+                _REQ_LINES="$(grep '^[^#]' "${_SALT_GIT_CHECKOUT_DIR}/requirements/base.txt")"
+                for SINGLE_PACKAGE in ${_PIP_PACKAGES}; do
+                    __REQUIRED_VERSION="$(grep "${SINGLE_PACKAGE}" "${_REQ_LINES}")"
+                    if [ "${__REQUIRED_VERSION}" != "" ]; then
+                        _PIP_PACKAGES=$(echo "$_PIP_PACKAGES" | sed "s/${SINGLE_PACKAGE}/${__REQUIRED_VERSION}/")
+                    fi
+                done
+            fi
+
+            if [ "$_INSTALL_CLOUD" -eq "${BS_TRUE}" ]; then
+                _PIP_PACKAGES="${_PIP_PACKAGES} apache-libcloud"
+            fi
+
+            __install_pip_pkgs "${_PIP_PACKAGES}" "${_PY_EXE}" || return 1
+        else
+            # shellcheck disable=SC2086
+            __yum_install_noinput ${__PACKAGES} || return 1
+        fi
+    else
+        if [ "${_INSTALL_PY}" -eq "${BS_TRUE}" ] && [ "$DISTRO_MAJOR_VERSION" -lt 8 ]; then
+            # Install Python if "-y" was passed in.
+            __install_python || return 1
+        fi
+        __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-devel python${PY_PKG_VER}-pip python${PY_PKG_VER}-setuptools gcc"
+        # shellcheck disable=SC2086
+        __yum_install_noinput ${__PACKAGES} || return 1
+    fi
+
+    # Let's trigger config_salt()
+    if [ "$_TEMP_CONFIG_DIR" = "null" ]; then
+        _TEMP_CONFIG_DIR="${_SALT_GIT_CHECKOUT_DIR}/conf/"
+        CONFIG_SALT_FUNC="config_salt"
+    fi
+
+    return 0
+}
+
+install_centos_git() {
+    if [ "${_PY_EXE}" != "" ]; then
+        _PYEXE=${_PY_EXE}
+        echoinfo "Using the following python version: ${_PY_EXE} to install salt"
+    else
+        _PYEXE='python2'
+    fi
+
+    echodebug "_PY_EXE: $_PY_EXE"
+    if [ "${_POST_NEON_INSTALL}" -eq $BS_TRUE ]; then
+         __install_salt_from_repo_post_neon "${_PY_EXE}" || return 1
+        return 0
+    fi
+
+    if [ -f "${_SALT_GIT_CHECKOUT_DIR}/salt/syspaths.py" ]; then
+        $_PYEXE setup.py --salt-config-dir="$_SALT_ETC_DIR" --salt-cache-dir="${_SALT_CACHE_DIR}" ${SETUP_PY_INSTALL_ARGS} install --prefix=/usr || return 1
+    else
+        $_PYEXE setup.py ${SETUP_PY_INSTALL_ARGS} install --prefix=/usr || return 1
+    fi
+
+    return 0
+}
+
+install_centos_git_post() {
+    SYSTEMD_RELOAD=$BS_FALSE
+
+    for fname in api master minion syndic; do
+        # Skip if not meant to be installed
+        [ $fname = "api" ] && \
+            ([ "$_INSTALL_MASTER" -eq $BS_FALSE ] || ! __check_command_exists "salt-${fname}") && continue
+        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
+        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
+        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
+
+        if [ -f /bin/systemctl ]; then
+            if [ ! -f "/usr/lib/systemd/system/salt-${fname}.service" ] || \
+                { [ -f "/usr/lib/systemd/system/salt-${fname}.service" ] && [ "$_FORCE_OVERWRITE" -eq $BS_TRUE ]; }; then
+                __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/rpm/salt-${fname}.service" /usr/lib/systemd/system
+            fi
+
+            SYSTEMD_RELOAD=$BS_TRUE
+        elif [ ! -f "/etc/init.d/salt-$fname" ] || \
+            { [ -f "/etc/init.d/salt-$fname" ] && [ "$_FORCE_OVERWRITE" -eq $BS_TRUE ]; }; then
+            __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/rpm/salt-${fname}" /etc/init.d
+            chmod +x /etc/init.d/salt-${fname}
+        fi
+    done
+
+    if [ "$SYSTEMD_RELOAD" -eq $BS_TRUE ]; then
+        /bin/systemctl daemon-reload
+    fi
+
+    install_centos_stable_post || return 1
+
+    return 0
+}
+
+install_centos_restart_daemons() {
+    [ $_START_DAEMONS -eq $BS_FALSE ] && return
+
+    for fname in api master minion syndic; do
+        # Skip salt-api since the service should be opt-in and not necessarily started on boot
+        [ $fname = "api" ] && continue
+
+        # Skip if not meant to be installed
+        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
+        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
+        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
+
+        if [ -f /sbin/initctl ] && [ -f /etc/init/salt-${fname}.conf ]; then
+            # We have upstart support and upstart knows about our service
+            if ! /sbin/initctl status salt-$fname > /dev/null 2>&1; then
+                # Everything is in place and upstart gave us an error code? Fail!
+                return 1
+            fi
+
+            # upstart knows about this service.
+            # Let's try to stop it, and then start it
+            /sbin/initctl stop salt-$fname > /dev/null 2>&1
+            # Restart service
+            if ! /sbin/initctl start salt-$fname > /dev/null 2>&1; then
+                # Failed the restart?!
+                return 1
+            fi
+        elif [ -f /etc/init.d/salt-$fname ]; then
+            # Disable stdin to fix shell session hang on killing tee pipe
+            service salt-$fname stop < /dev/null > /dev/null 2>&1
+            service salt-$fname start < /dev/null
+        elif [ -f /usr/bin/systemctl ]; then
+            # CentOS 7 uses systemd
+            /usr/bin/systemctl stop salt-$fname > /dev/null 2>&1
+            /usr/bin/systemctl start salt-$fname.service && continue
+            echodebug "Failed to start salt-$fname using systemd"
+            if [ "$_ECHO_DEBUG" -eq $BS_TRUE ]; then
+                systemctl status salt-$fname.service
+                journalctl -xe
+            fi
+        fi
+    done
+}
+
+install_centos_testing_deps() {
+    install_centos_stable_deps || return 1
+    return 0
+}
+
+install_centos_testing() {
+    install_centos_stable || return 1
+    return 0
+}
+
+install_centos_testing_post() {
+    install_centos_stable_post || return 1
+    return 0
+}
+
+install_centos_check_services() {
+    for fname in api master minion syndic; do
+        # Skip salt-api since the service should be opt-in and not necessarily started on boot
+        [ $fname = "api" ] && continue
+
+        # Skip if not meant to be installed
+        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
+        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
+        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
+
+        if [ -f /sbin/initctl ] && [ -f /etc/init/salt-${fname}.conf ]; then
+            __check_services_upstart salt-$fname || return 1
+        elif [ -f /etc/init.d/salt-$fname ]; then
+            __check_services_sysvinit salt-$fname || return 1
+        elif [ -f /usr/bin/systemctl ]; then
+            __check_services_systemd salt-$fname || return 1
+        fi
+    done
+
+    return 0
+}
+#
+#   Ended CentOS Install Functions
+#
+#######################################################################################################################
+
+#######################################################################################################################
+#
+#   RedHat Install Functions
+#
+install_red_hat_linux_stable_deps() {
+    install_centos_stable_deps || return 1
+    return 0
+}
+
+install_red_hat_linux_git_deps() {
+    install_centos_git_deps || return 1
+    return 0
+}
+
+install_red_hat_enterprise_stable_deps() {
+    install_red_hat_linux_stable_deps || return 1
+    return 0
+}
+
+install_red_hat_enterprise_git_deps() {
+    install_red_hat_linux_git_deps || return 1
+    return 0
+}
+
+install_red_hat_enterprise_linux_stable_deps() {
+    install_red_hat_linux_stable_deps || return 1
+    return 0
+}
+
+install_red_hat_enterprise_linux_git_deps() {
+    install_red_hat_linux_git_deps || return 1
+    return 0
+}
+
+install_red_hat_enterprise_server_stable_deps() {
+    install_red_hat_linux_stable_deps || return 1
+    return 0
+}
+
+install_red_hat_enterprise_server_git_deps() {
+    install_red_hat_linux_git_deps || return 1
+    return 0
+}
+
+install_red_hat_enterprise_workstation_stable_deps() {
+    install_red_hat_linux_stable_deps || return 1
+    return 0
+}
+
+install_red_hat_enterprise_workstation_git_deps() {
+    install_red_hat_linux_git_deps || return 1
+    return 0
+}
+
+install_red_hat_linux_stable() {
+    install_centos_stable || return 1
+    return 0
+}
+
+install_red_hat_linux_git() {
+    install_centos_git || return 1
+    return 0
+}
+
+install_red_hat_enterprise_stable() {
+    install_red_hat_linux_stable || return 1
+    return 0
+}
+
+install_red_hat_enterprise_git() {
+    install_red_hat_linux_git || return 1
+    return 0
+}
+
+install_red_hat_enterprise_linux_stable() {
+    install_red_hat_linux_stable || return 1
+    return 0
+}
+
+install_red_hat_enterprise_linux_git() {
+    install_red_hat_linux_git || return 1
+    return 0
+}
+
+install_red_hat_enterprise_server_stable() {
+    install_red_hat_linux_stable || return 1
+    return 0
+}
+
+install_red_hat_enterprise_server_git() {
+    install_red_hat_linux_git || return 1
+    return 0
+}
+
+install_red_hat_enterprise_workstation_stable() {
+    install_red_hat_linux_stable || return 1
+    return 0
+}
+
+install_red_hat_enterprise_workstation_git() {
+    install_red_hat_linux_git || return 1
+    return 0
+}
+
+install_red_hat_linux_stable_post() {
+    install_centos_stable_post || return 1
+    return 0
+}
+
+install_red_hat_linux_restart_daemons() {
+    install_centos_restart_daemons || return 1
+    return 0
+}
+
+install_red_hat_linux_git_post() {
+    install_centos_git_post || return 1
+    return 0
+}
+
+install_red_hat_enterprise_stable_post() {
+    install_red_hat_linux_stable_post || return 1
+    return 0
+}
+
+install_red_hat_enterprise_restart_daemons() {
+    install_red_hat_linux_restart_daemons || return 1
+    return 0
+}
+
+install_red_hat_enterprise_git_post() {
+    install_red_hat_linux_git_post || return 1
+    return 0
+}
+
+install_red_hat_enterprise_linux_stable_post() {
+    install_red_hat_linux_stable_post || return 1
+    return 0
+}
+
+install_red_hat_enterprise_linux_restart_daemons() {
+    install_red_hat_linux_restart_daemons || return 1
+    return 0
+}
+
+install_red_hat_enterprise_linux_git_post() {
+    install_red_hat_linux_git_post || return 1
+    return 0
+}
+
+install_red_hat_enterprise_server_stable_post() {
+    install_red_hat_linux_stable_post || return 1
+    return 0
+}
+
+install_red_hat_enterprise_server_restart_daemons() {
+    install_red_hat_linux_restart_daemons || return 1
+    return 0
+}
+
+install_red_hat_enterprise_server_git_post() {
+    install_red_hat_linux_git_post || return 1
+    return 0
+}
+
+install_red_hat_enterprise_workstation_stable_post() {
+    install_red_hat_linux_stable_post || return 1
+    return 0
+}
+
+install_red_hat_enterprise_workstation_restart_daemons() {
+    install_red_hat_linux_restart_daemons || return 1
+    return 0
+}
+
+install_red_hat_enterprise_workstation_git_post() {
+    install_red_hat_linux_git_post || return 1
+    return 0
+}
+
+install_red_hat_linux_testing_deps() {
+    install_centos_testing_deps || return 1
+    return 0
+}
+
+install_red_hat_linux_testing() {
+    install_centos_testing || return 1
+    return 0
+}
+
+install_red_hat_linux_testing_post() {
+    install_centos_testing_post || return 1
+    return 0
+}
+
+install_red_hat_enterprise_testing_deps() {
+    install_centos_testing_deps || return 1
+    return 0
+}
+
+install_red_hat_enterprise_testing() {
+    install_centos_testing || return 1
+    return 0
+}
+
+install_red_hat_enterprise_testing_post() {
+    install_centos_testing_post || return 1
+    return 0
+}
+
+install_red_hat_enterprise_server_testing_deps() {
+    install_centos_testing_deps || return 1
+    return 0
+}
+
+install_red_hat_enterprise_server_testing() {
+    install_centos_testing || return 1
+    return 0
+}
+
+install_red_hat_enterprise_server_testing_post() {
+    install_centos_testing_post || return 1
+    return 0
+}
+
+install_red_hat_enterprise_workstation_testing_deps() {
+    install_centos_testing_deps || return 1
+    return 0
+}
+
+install_red_hat_enterprise_workstation_testing() {
+    install_centos_testing || return 1
+    return 0
+}
+
+install_red_hat_enterprise_workstation_testing_post() {
+    install_centos_testing_post || return 1
+    return 0
+}
+#
+#   Ended RedHat Install Functions
+#
+#######################################################################################################################
+
+#######################################################################################################################
+#
+#   Oracle Linux Install Functions
+#
+install_oracle_linux_stable_deps() {
+    install_centos_stable_deps || return 1
+    return 0
+}
+
+install_oracle_linux_git_deps() {
+    install_centos_git_deps || return 1
+    return 0
+}
+
+install_oracle_linux_testing_deps() {
+    install_centos_testing_deps || return 1
+    return 0
+}
+
+install_oracle_linux_stable() {
+    install_centos_stable || return 1
+    return 0
+}
+
+install_oracle_linux_git() {
+    install_centos_git || return 1
+    return 0
+}
+
+install_oracle_linux_testing() {
+    install_centos_testing || return 1
+    return 0
+}
+
+install_oracle_linux_stable_post() {
+    install_centos_stable_post || return 1
+    return 0
+}
+
+install_oracle_linux_git_post() {
+    install_centos_git_post || return 1
+    return 0
+}
+
+install_oracle_linux_testing_post() {
+    install_centos_testing_post || return 1
+    return 0
+}
+
+install_oracle_linux_restart_daemons() {
+    install_centos_restart_daemons || return 1
+    return 0
+}
+
+install_oracle_linux_check_services() {
+    install_centos_check_services || return 1
+    return 0
+}
+#
+#   Ended Oracle Linux Install Functions
+#
+#######################################################################################################################
+
+#######################################################################################################################
+#
+#   Scientific Linux Install Functions
+#
+install_scientific_linux_stable_deps() {
+    install_centos_stable_deps || return 1
+    return 0
+}
+
+install_scientific_linux_git_deps() {
+    install_centos_git_deps || return 1
+    return 0
+}
+
+install_scientific_linux_testing_deps() {
+    install_centos_testing_deps || return 1
+    return 0
+}
+
+install_scientific_linux_stable() {
+    install_centos_stable || return 1
+    return 0
+}
+
+install_scientific_linux_git() {
+    install_centos_git || return 1
+    return 0
+}
+
+install_scientific_linux_testing() {
+    install_centos_testing || return 1
+    return 0
+}
+
+install_scientific_linux_stable_post() {
+    install_centos_stable_post || return 1
+    return 0
+}
+
+install_scientific_linux_git_post() {
+    install_centos_git_post || return 1
+    return 0
+}
+
+install_scientific_linux_testing_post() {
+    install_centos_testing_post || return 1
+    return 0
+}
+
+install_scientific_linux_restart_daemons() {
+    install_centos_restart_daemons || return 1
+    return 0
+}
+
+install_scientific_linux_check_services() {
+    install_centos_check_services || return 1
+    return 0
+}
+#
+#   Ended Scientific Linux Install Functions
+#
+#######################################################################################################################
+
+#######################################################################################################################
+#
+#   CloudLinux Install Functions
+#
+install_cloud_linux_stable_deps() {
+    install_centos_stable_deps || return 1
+    return 0
+}
+
+install_cloud_linux_git_deps() {
+    install_centos_git_deps || return 1
+    return 0
+}
+
+install_cloud_linux_testing_deps() {
+    install_centos_testing_deps || return 1
+    return 0
+}
+
+install_cloud_linux_stable() {
+    install_centos_stable || return 1
+    return 0
+}
+
+install_cloud_linux_git() {
+    install_centos_git || return 1
+    return 0
+}
+
+install_cloud_linux_testing() {
+    install_centos_testing || return 1
+    return 0
+}
+
+install_cloud_linux_stable_post() {
+    install_centos_stable_post || return 1
+    return 0
+}
+
+install_cloud_linux_git_post() {
+    install_centos_git_post || return 1
+    return 0
+}
+
+install_cloud_linux_testing_post() {
+    install_centos_testing_post || return 1
+    return 0
+}
+
+install_cloud_linux_restart_daemons() {
+    install_centos_restart_daemons || return 1
+    return 0
+}
+
+install_cloud_linux_check_services() {
+    install_centos_check_services || return 1
+    return 0
+}
+#
+#   End of CloudLinux Install Functions
+#
+#######################################################################################################################
+
+#######################################################################################################################
+#
+#   Alpine Linux Install Functions
+#
+install_alpine_linux_stable_deps() {
+    if ! grep -q '^[^#].\+alpine/.\+/community' /etc/apk/repositories; then
+        # Add community repository entry based on the "main" repo URL
+        __REPO=$(grep '^[^#].\+alpine/.\+/main\>' /etc/apk/repositories)
+        echo "${__REPO}" | sed -e 's/main/community/' >> /etc/apk/repositories
+    fi
+
+    apk update
+
+    # Get latest root CA certs
+    apk -U add ca-certificates
+
+    if ! __check_command_exists openssl; then
+        # Install OpenSSL to be able to pull from https:// URLs
+        apk -U add openssl
+    fi
+}
+
+install_alpine_linux_git_deps() {
+    install_alpine_linux_stable_deps || return 1
+
+    if ! __check_command_exists git; then
+        apk -U add git  || return 1
+    fi
+
+    __git_clone_and_checkout || return 1
+
+    if [ "${_POST_NEON_INSTALL}" -eq $BS_FALSE ]; then
+        apk -U add python2 py-virtualenv py2-crypto py2-m2crypto py2-setuptools \
+            py2-jinja2 py2-yaml py2-markupsafe py2-msgpack py2-psutil \
+            py2-zmq zeromq py2-requests || return 1
+
+        if [ -f "${_SALT_GIT_CHECKOUT_DIR}/requirements/base.txt" ]; then
+            # We're on the master branch, install whichever tornado is on the requirements file
+            __REQUIRED_TORNADO="$(grep tornado "${_SALT_GIT_CHECKOUT_DIR}/requirements/base.txt")"
+            if [ "${__REQUIRED_TORNADO}" != "" ]; then
+                apk -U add py2-tornado || return 1
+            fi
+        fi
+    else
+        apk -U add python2 py2-pip py2-setuptools || return 1
+        _PY_EXE=python2
+        return 0
+    fi
+
+    # Let's trigger config_salt()
+    if [ "$_TEMP_CONFIG_DIR" = "null" ]; then
+        _TEMP_CONFIG_DIR="${_SALT_GIT_CHECKOUT_DIR}/conf/"
+        CONFIG_SALT_FUNC="config_salt"
+    fi
+}
+
+install_alpine_linux_stable() {
+    __PACKAGES="salt"
+
+    if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ];then
+        __PACKAGES="${__PACKAGES} salt-cloud"
+    fi
+    if [ "$_INSTALL_MASTER" -eq $BS_TRUE ]; then
+        __PACKAGES="${__PACKAGES} salt-master"
+    fi
+    if [ "$_INSTALL_MINION" -eq $BS_TRUE ]; then
+        __PACKAGES="${__PACKAGES} salt-minion"
+    fi
+    if [ "$_INSTALL_SYNDIC" -eq $BS_TRUE ]; then
+        __PACKAGES="${__PACKAGES} salt-syndic"
+    fi
+
+    # shellcheck disable=SC2086
+    apk -U add ${__PACKAGES} || return 1
+    return 0
+}
+
+install_alpine_linux_git() {
+
+    if [ "${_POST_NEON_INSTALL}" -eq $BS_TRUE ]; then
+         __install_salt_from_repo_post_neon "${_PY_EXE}" || return 1
+        return 0
+    fi
+
+    if [ -f "${_SALT_GIT_CHECKOUT_DIR}/salt/syspaths.py" ]; then
+        python2 setup.py --salt-config-dir="$_SALT_ETC_DIR" --salt-cache-dir="${_SALT_CACHE_DIR}" ${SETUP_PY_INSTALL_ARGS} install || return 1
+    else
+        python2 setup.py ${SETUP_PY_INSTALL_ARGS} install || return 1
+    fi
+}
+
+install_alpine_linux_post() {
+    for fname in api master minion syndic; do
+        # Skip if not meant to be installed
+        [ $fname = "api" ] && \
+            ([ "$_INSTALL_MASTER" -eq $BS_FALSE ] || ! __check_command_exists "salt-${fname}") && continue
+        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
+        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
+        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
+
+        if [ -f /sbin/rc-update ]; then
+            script_url="${_SALTSTACK_REPO_URL%.git}/raw/master/pkg/alpine/salt-$fname"
+            [ -f "/etc/init.d/salt-$fname" ] || __fetch_url "/etc/init.d/salt-$fname" "$script_url"
+
+            # shellcheck disable=SC2181
+            if [ $? -eq 0 ]; then
+                chmod +x "/etc/init.d/salt-$fname"
+            else
+                echoerror "Failed to get OpenRC init script for $OS_NAME from $script_url."
+                return 1
+            fi
+
+            # Skip salt-api since the service should be opt-in and not necessarily started on boot
+            [ $fname = "api" ] && continue
+
+            /sbin/rc-update add "salt-$fname" > /dev/null 2>&1 || return 1
+        fi
+    done
+}
+
+install_alpine_linux_restart_daemons() {
+    [ "${_START_DAEMONS}" -eq $BS_FALSE ] && return
+
+    for fname in api master minion syndic; do
+        # Skip salt-api since the service should be opt-in and not necessarily started on boot
+        [ $fname = "api" ] && continue
+
+        # Skip if not meant to be installed
+        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
+        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
+        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
+
+        # Disable stdin to fix shell session hang on killing tee pipe
+        /sbin/rc-service salt-$fname stop < /dev/null > /dev/null 2>&1
+        /sbin/rc-service salt-$fname start < /dev/null || return 1
+    done
+}
+
+install_alpine_linux_check_services() {
+    for fname in api master minion syndic; do
+        # Skip salt-api since the service should be opt-in and not necessarily started on boot
+        [ $fname = "api" ] && continue
+
+        # Skip if not meant to be installed
+        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
+        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
+        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
+
+        __check_services_openrc salt-$fname || return 1
+    done
+
+    return 0
+}
+
+daemons_running_alpine_linux() {
+    [ "${_START_DAEMONS}" -eq $BS_FALSE ] && return
+
+    FAILED_DAEMONS=0
+    for fname in api master minion syndic; do
+        # Skip salt-api since the service should be opt-in and not necessarily started on boot
+        [ $fname = "api" ] && continue
+
+        # Skip if not meant to be installed
+        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
+        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
+        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
+
+        # shellcheck disable=SC2009
+        if [ "$(ps wwwaux | grep -v grep | grep salt-$fname)" = "" ]; then
+            echoerror "salt-$fname was not found running"
+            FAILED_DAEMONS=$((FAILED_DAEMONS + 1))
+        fi
+    done
+
+    return $FAILED_DAEMONS
+}
+
+#
+#   Ended Alpine Linux Install Functions
+#
+#######################################################################################################################
+
+
+#######################################################################################################################
+#
+#   Amazon Linux AMI Install Functions
+#
+
+install_amazon_linux_ami_deps() {
+    # Shim to figure out if we're using old (rhel) or new (aws) rpms.
+    _USEAWS=$BS_FALSE
+    pkg_append="python"
+
+    if [ "$ITYPE" = "stable" ]; then
+        repo_rev="$STABLE_REV"
+    else
+        repo_rev="latest"
+    fi
+
+    if echo $repo_rev | grep -E -q '^archive'; then
+        year=$(echo "$repo_rev" | cut -d '/' -f 2 | cut -c1-4)
+    else
+        year=$(echo "$repo_rev" | cut -c1-4)
+    fi
+
+    if echo "$repo_rev" | grep -E -q '^(latest|2016\.11)$' || \
+            [ "$year" -gt 2016 ]; then
+       _USEAWS=$BS_TRUE
+       pkg_append="python27"
+    fi
+
+    # We need to install yum-utils before doing anything else when installing on
+    # Amazon Linux ECS-optimized images. See issue #974.
+    __yum_install_noinput yum-utils
+
+    # Do upgrade early
+    if [ "$_UPGRADE_SYS" -eq $BS_TRUE ]; then
+        yum -y update || return 1
+    fi
+
+    if [ $_DISABLE_REPOS -eq $BS_FALSE ] || [ "$_CUSTOM_REPO_URL" != "null" ]; then
+        __REPO_FILENAME="salt.repo"
+
+        # Set a few vars to make life easier.
+        if [ $_USEAWS -eq $BS_TRUE ]; then
+           base_url="$HTTP_VAL://${_REPO_URL}/yum/amazon/latest/\$basearch/$repo_rev/"
+           gpg_key="${base_url}SALTSTACK-GPG-KEY.pub"
+           repo_name="SaltStack repo for Amazon Linux"
+        else
+           base_url="$HTTP_VAL://${_REPO_URL}/yum/redhat/6/\$basearch/$repo_rev/"
+           gpg_key="${base_url}SALTSTACK-GPG-KEY.pub"
+           repo_name="SaltStack repo for RHEL/CentOS 6"
+        fi
+
+        # This should prob be refactored to use __install_saltstack_rhel_repository()
+        # With args passed in to do the right thing.  Reformatted to be more like the
+        # amazon linux yum file.
+        if [ ! -s "/etc/yum.repos.d/${__REPO_FILENAME}" ]; then
+          cat <<_eof > "/etc/yum.repos.d/${__REPO_FILENAME}"
+[saltstack-repo]
+name=$repo_name
+failovermethod=priority
+priority=10
+gpgcheck=1
+gpgkey=$gpg_key
+baseurl=$base_url
+_eof
+        fi
+
+    fi
+
+    if [ "${_POST_NEON_INSTALL}" -eq $BS_FALSE ]; then
+        # Package python-ordereddict-1.1-2.el6.noarch is obsoleted by python26-2.6.9-2.88.amzn1.x86_64
+        # which is already installed
+        __PACKAGES="m2crypto ${pkg_append}-crypto ${pkg_append}-jinja2 ${pkg_append}-PyYAML"
+        __PACKAGES="${__PACKAGES} ${pkg_append}-msgpack ${pkg_append}-requests ${pkg_append}-zmq"
+        __PACKAGES="${__PACKAGES} ${pkg_append}-futures"
+        # shellcheck disable=SC2086
+        __yum_install_noinput ${__PACKAGES} || return 1
+    fi
+
+    if [ "${_EXTRA_PACKAGES}" != "" ]; then
+        echoinfo "Installing the following extra packages as requested: ${_EXTRA_PACKAGES}"
+        # shellcheck disable=SC2086
+        __yum_install_noinput ${_EXTRA_PACKAGES} || return 1
+    fi
+}
+
+install_amazon_linux_ami_git_deps() {
+    if [ "$_INSECURE_DL" -eq $BS_FALSE ] && [ "${_SALT_REPO_URL%%://*}" = "https" ]; then
+        yum -y install ca-certificates || return 1
+    fi
+
+    PIP_EXE='pip'
+    if __check_command_exists python2.7; then
+        if ! __check_command_exists pip2.7; then
+            if ! __check_command_exists easy_install-2.7; then
+                __yum_install_noinput python27-setuptools
+            fi
+            /usr/bin/easy_install-2.7 pip || return 1
+        fi
+        PIP_EXE='/usr/local/bin/pip2.7'
+        _PY_EXE='python2.7'
+    fi
+
+    install_amazon_linux_ami_deps || return 1
+
+    if ! __check_command_exists git; then
+        __yum_install_noinput git || return 1
+    fi
+
+    __git_clone_and_checkout || return 1
+
+    if [ "${_POST_NEON_INSTALL}" -eq $BS_FALSE ]; then
+        __PACKAGES=""
+        __PIP_PACKAGES=""
+
+        if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ]; then
+            __check_pip_allowed "You need to allow pip based installations (-P) in order to install apache-libcloud"
+            __PACKAGES="${__PACKAGES} python27-pip"
+            __PIP_PACKAGES="${__PIP_PACKAGES} apache-libcloud>=$_LIBCLOUD_MIN_VERSION"
+        fi
+
+        if [ -f "${_SALT_GIT_CHECKOUT_DIR}/requirements/base.txt" ]; then
+            # We're on the master branch, install whichever tornado is on the requirements file
+            __REQUIRED_TORNADO="$(grep tornado "${_SALT_GIT_CHECKOUT_DIR}/requirements/base.txt")"
+            if [ "${__REQUIRED_TORNADO}" != "" ]; then
+                __PACKAGES="${__PACKAGES} ${pkg_append}-tornado"
+            fi
+        fi
+
+        if [ "${__PACKAGES}" != "" ]; then
+            # shellcheck disable=SC2086
+            __yum_install_noinput ${__PACKAGES} || return 1
+        fi
+
+        if [ "${__PIP_PACKAGES}" != "" ]; then
+            # shellcheck disable=SC2086
+            ${PIP_EXE} install ${__PIP_PACKAGES} || return 1
+        fi
+    else
+        __PACKAGES="python27-pip python27-setuptools python27-devel gcc"
+            # shellcheck disable=SC2086
+        __yum_install_noinput ${__PACKAGES} || return 1
+    fi
+
+    # Let's trigger config_salt()
+    if [ "$_TEMP_CONFIG_DIR" = "null" ]; then
+        _TEMP_CONFIG_DIR="${_SALT_GIT_CHECKOUT_DIR}/conf/"
+        CONFIG_SALT_FUNC="config_salt"
+    fi
+
+    return 0
+}
+
+install_amazon_linux_ami_2_git_deps() {
+    if [ "$_INSECURE_DL" -eq $BS_FALSE ] && [ "${_SALT_REPO_URL%%://*}" = "https" ]; then
+        yum -y install ca-certificates || return 1
+    fi
+
+    install_amazon_linux_ami_2_deps || return 1
+
+    if [ "$_PY_MAJOR_VERSION" -eq 2 ]; then
+        PY_PKG_VER=2
+        PIP_EXE='/bin/pip'
+    else
+        PY_PKG_VER=3
+        PIP_EXE='/bin/pip3'
+    fi
+    __PACKAGES="python${PY_PKG_VER}-pip"
+
+    if ! __check_command_exists "${PIP_EXE}"; then
+        # shellcheck disable=SC2086
+        __yum_install_noinput ${__PACKAGES} || return 1
+    fi
+
+    if ! __check_command_exists git; then
+        __yum_install_noinput git || return 1
+    fi
+
+    __git_clone_and_checkout || return 1
+
+    if [ "${_POST_NEON_INSTALL}" -eq $BS_FALSE ]; then
+
+        __PACKAGES=""
+        __PIP_PACKAGES=""
+
+        if [ "$_INSTALL_CLOUD" -eq "$BS_TRUE" ]; then
+            __check_pip_allowed "You need to allow pip based installations (-P) in order to install apache-libcloud"
+            if [ "$PARSED_VERSION" -eq "2" ]; then
+                if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq "3" ]; then
+                    __PACKAGES="${__PACKAGES} python3-pip"
+                    __PIP_PACKAGES="${__PIP_PACKAGES} tornado<$_TORNADO_MAX_PY3_VERSION"
+                else
+                    __PACKAGES="${__PACKAGES} python2-pip"
+                fi
+            else
+                __PACKAGES="${__PACKAGES} python27-pip"
+            fi
+            __PIP_PACKAGES="${__PIP_PACKAGES} apache-libcloud>=$_LIBCLOUD_MIN_VERSION"
+        fi
+
+        if [ -f "${_SALT_GIT_CHECKOUT_DIR}/requirements/base.txt" ]; then
+            # We're on the master branch, install whichever tornado is on the requirements file
+            __REQUIRED_TORNADO="$(grep tornado "${_SALT_GIT_CHECKOUT_DIR}/requirements/base.txt")"
+            if [ "${__REQUIRED_TORNADO}" != "" ]; then
+                if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq "3" ]; then
+                    __PIP_PACKAGES="${__PIP_PACKAGES} tornado<$_TORNADO_MAX_PY3_VERSION"
+                else
+                    __PACKAGES="${__PACKAGES} ${pkg_append}${PY_PKG_VER}-tornado"
+                fi
+            fi
+        fi
+
+        if [ "${__PIP_PACKAGES}" != "" ]; then
+            __check_pip_allowed "You need to allow pip based installations (-P) in order to install ${__PIP_PACKAGES}"
+            __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-pip"
+        fi
+
+        if [ "${__PACKAGES}" != "" ]; then
+            # shellcheck disable=SC2086
+            __yum_install_noinput ${__PACKAGES} || return 1
+        fi
+
+        if [ "${__PIP_PACKAGES}" != "" ]; then
+            # shellcheck disable=SC2086
+            ${PIP_EXE} install ${__PIP_PACKAGES} || return 1
+        fi
+    else
+        __PACKAGES="python${PY_PKG_VER}-pip python${PY_PKG_VER}-setuptools python${PY_PKG_VER}-devel gcc"
+        # shellcheck disable=SC2086
+        __yum_install_noinput ${__PACKAGES} || return 1
+    fi
+
+    # Let's trigger config_salt()
+    if [ "$_TEMP_CONFIG_DIR" = "null" ]; then
+        _TEMP_CONFIG_DIR="${_SALT_GIT_CHECKOUT_DIR}/conf/"
+        CONFIG_SALT_FUNC="config_salt"
+    fi
+
+    return 0
+}
+
+install_amazon_linux_ami_2_deps() {
+    # Shim to figure out if we're using old (rhel) or new (aws) rpms.
+    _USEAWS=$BS_FALSE
+    pkg_append="python"
+
+    if [ "$ITYPE" = "stable" ]; then
+        repo_rev="$STABLE_REV"
+    else
+        repo_rev="latest"
+    fi
+
+    if echo $repo_rev | grep -E -q '^archive'; then
+        year=$(echo "$repo_rev" | cut -d '/' -f 2 | cut -c1-4)
+    else
+        year=$(echo "$repo_rev" | cut -c1-4)
+    fi
+
+    if echo "$repo_rev" | grep -E -q '^(latest|2016\.11)$' || \
+            [ "$year" -gt 2016 ]; then
+       _USEAWS=$BS_TRUE
+       pkg_append="python"
+    fi
+
+    # We need to install yum-utils before doing anything else when installing on
+    # Amazon Linux ECS-optimized images. See issue #974.
+    __yum_install_noinput yum-utils
+
+    # Do upgrade early
+    if [ "$_UPGRADE_SYS" -eq $BS_TRUE ]; then
+        yum -y update || return 1
+    fi
+
+    if [ $_DISABLE_REPOS -eq $BS_FALSE ] || [ "$_CUSTOM_REPO_URL" != "null" ]; then
+        __REPO_FILENAME="salt.repo"
+        __PY_VERSION_REPO="yum"
+        PY_PKG_VER=""
+        repo_label="saltstack-repo"
+        repo_name="SaltStack repo for Amazon Linux 2"
+        if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
+            __REPO_FILENAME="salt.repo"
+            __PY_VERSION_REPO="py3"
+            PY_PKG_VER=3
+            repo_label="saltstack-py3-repo"
+            repo_name="SaltStack Python 3 repo for Amazon Linux 2"
+        fi
+
+        base_url="$HTTP_VAL://${_REPO_URL}/${__PY_VERSION_REPO}/amazon/2/\$basearch/$repo_rev/"
+        gpg_key="${base_url}SALTSTACK-GPG-KEY.pub,${base_url}base/RPM-GPG-KEY-CentOS-7"
+        if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
+            gpg_key="${base_url}SALTSTACK-GPG-KEY.pub"
+        fi
+
+        # This should prob be refactored to use __install_saltstack_rhel_repository()
+        # With args passed in to do the right thing.  Reformatted to be more like the
+        # amazon linux yum file.
+        if [ ! -s "/etc/yum.repos.d/${__REPO_FILENAME}" ]; then
+          cat <<_eof > "/etc/yum.repos.d/${__REPO_FILENAME}"
+[$repo_label]
+name=$repo_name
+failovermethod=priority
+priority=10
+gpgcheck=1
+gpgkey=$gpg_key
+baseurl=$base_url
+_eof
+        fi
+
+    fi
+
+    if [ "${_POST_NEON_INSTALL}" -eq $BS_FALSE ]; then
+        # Package python-ordereddict-1.1-2.el6.noarch is obsoleted by python26-2.6.9-2.88.amzn1.x86_64
+        # which is already installed
+        if [ -n "${PY_PKG_VER}" ] && [ "${PY_PKG_VER}" -eq 3 ]; then
+            __PACKAGES="${pkg_append}${PY_PKG_VER}-m2crypto ${pkg_append}${PY_PKG_VER}-pyyaml"
+        else
+            __PACKAGES="m2crypto PyYAML ${pkg_append}-futures"
+        fi
+
+        __PACKAGES="${__PACKAGES} ${pkg_append}${PY_PKG_VER}-crypto ${pkg_append}${PY_PKG_VER}-jinja2 procps-ng"
+        __PACKAGES="${__PACKAGES} ${pkg_append}${PY_PKG_VER}-msgpack ${pkg_append}${PY_PKG_VER}-requests ${pkg_append}${PY_PKG_VER}-zmq"
+
+        # shellcheck disable=SC2086
+        __yum_install_noinput ${__PACKAGES} || return 1
+    fi
+
+    if [ "${_EXTRA_PACKAGES}" != "" ]; then
+        echoinfo "Installing the following extra packages as requested: ${_EXTRA_PACKAGES}"
+        # shellcheck disable=SC2086
+        __yum_install_noinput ${_EXTRA_PACKAGES} || return 1
+    fi
+}
+
+install_amazon_linux_ami_stable() {
+    install_centos_stable || return 1
+    return 0
+}
+
+install_amazon_linux_ami_stable_post() {
+    install_centos_stable_post || return 1
+    return 0
+}
+
+install_amazon_linux_ami_restart_daemons() {
+    install_centos_restart_daemons || return 1
+    return 0
+}
+
+install_amazon_linux_ami_git() {
+    install_centos_git || return 1
+    return 0
+}
+
+install_amazon_linux_ami_git_post() {
+    install_centos_git_post || return 1
+    return 0
+}
+
+install_amazon_linux_ami_testing() {
+    install_centos_testing || return 1
+    return 0
+}
+
+install_amazon_linux_ami_testing_post() {
+    install_centos_testing_post || return 1
+    return 0
+}
+
+install_amazon_linux_ami_2_stable() {
+    install_centos_stable || return 1
+    return 0
+}
+
+install_amazon_linux_ami_2_stable_post() {
+    install_centos_stable_post || return 1
+    return 0
+}
+
+install_amazon_linux_ami_2_restart_daemons() {
+    install_centos_restart_daemons || return 1
+    return 0
+}
+
+install_amazon_linux_ami_2_git() {
+    install_centos_git || return 1
+    return 0
+}
+
+install_amazon_linux_ami_2_git_post() {
+    install_centos_git_post || return 1
+    return 0
+}
+
+install_amazon_linux_ami_2_testing() {
+    install_centos_testing || return 1
+    return 0
+}
+
+install_amazon_linux_ami_2_testing_post() {
+    install_centos_testing_post || return 1
+    return 0
+}
+
+install_amazon_linux_ami_2_check_services() {
+    install_centos_check_services || return 1
+    return 0
+}
+
+#
+#   Ended Amazon Linux AMI Install Functions
+#
+#######################################################################################################################
+
+#######################################################################################################################
+#
+#   Arch Install Functions
+#
+install_arch_linux_stable_deps() {
+    if [ ! -f /etc/pacman.d/gnupg ]; then
+        pacman-key --init && pacman-key --populate archlinux || return 1
+    fi
+
+    # Pacman does not resolve dependencies on outdated versions
+    # They always need to be updated
+    pacman -Syy --noconfirm
+
+    pacman -S --noconfirm --needed archlinux-keyring || return 1
+
+    pacman -Su --noconfirm --needed pacman || return 1
+
+    if __check_command_exists pacman-db-upgrade; then
+        pacman-db-upgrade || return 1
+    fi
+
+    if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 2 ]; then
+        PY_PKG_VER=2
+    else
+        PY_PKG_VER=""
+    fi
+
+    # YAML module is used for generating custom master/minion configs
+    # shellcheck disable=SC2086
+    pacman -Su --noconfirm --needed python${PY_PKG_VER}-yaml
+
+    if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ]; then
+        # shellcheck disable=SC2086
+        pacman -Su --noconfirm --needed python${PY_PKG_VER}-apache-libcloud || return 1
+    fi
+
+    if [ "${_EXTRA_PACKAGES}" != "" ]; then
+        echoinfo "Installing the following extra packages as requested: ${_EXTRA_PACKAGES}"
+        # shellcheck disable=SC2086
+        pacman -Su --noconfirm --needed ${_EXTRA_PACKAGES} || return 1
+    fi
+}
+
+install_arch_linux_git_deps() {
+    install_arch_linux_stable_deps
+
+    # Don't fail if un-installing python2-distribute threw an error
+    if ! __check_command_exists git; then
+        pacman -Sy --noconfirm --needed git  || return 1
+    fi
+
+    __git_clone_and_checkout || return 1
+
+    if [ "${_POST_NEON_INSTALL}" -eq $BS_FALSE ]; then
+        pacman -R --noconfirm python2-distribute
+        pacman -Su --noconfirm --needed python2-crypto python2-setuptools python2-jinja \
+            python2-m2crypto python2-markupsafe python2-msgpack python2-psutil \
+            python2-pyzmq zeromq python2-requests python2-systemd || return 1
+
+        if [ -f "${_SALT_GIT_CHECKOUT_DIR}/requirements/base.txt" ]; then
+            # We're on the master branch, install whichever tornado is on the requirements file
+            __REQUIRED_TORNADO="$(grep tornado "${_SALT_GIT_CHECKOUT_DIR}/requirements/base.txt")"
+            if [ "${__REQUIRED_TORNADO}" != "" ]; then
+                pacman -Su --noconfirm --needed python2-tornado
+            fi
+        fi
+    else
+        if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 2 ]; then
+            PY_PKG_VER=2
+        else
+            PY_PKG_VER=""
+        fi
+        __PACKAGES="python${PY_PKG_VER}-pip python${PY_PKG_VER}-setuptools gcc"
+        # shellcheck disable=SC2086
+        pacman -Su --noconfirm --needed ${__PACKAGES}
+    fi
+
+    # Let's trigger config_salt()
+    if [ "$_TEMP_CONFIG_DIR" = "null" ]; then
+        _TEMP_CONFIG_DIR="${_SALT_GIT_CHECKOUT_DIR}/conf/"
+        CONFIG_SALT_FUNC="config_salt"
+    fi
+
+    return 0
+}
+
+install_arch_linux_stable() {
+    # Pacman does not resolve dependencies on outdated versions
+    # They always need to be updated
+    pacman -Syy --noconfirm
+
+    pacman -Su --noconfirm --needed pacman || return 1
+    # See https://mailman.archlinux.org/pipermail/arch-dev-public/2013-June/025043.html
+    # to know why we're ignoring below.
+    pacman -Syu --noconfirm --ignore filesystem,bash || return 1
+    pacman -S --noconfirm --needed bash || return 1
+    pacman -Su --noconfirm || return 1
+    # We can now resume regular salt update
+    pacman -Syu --noconfirm salt || return 1
+    return 0
+}
+
+install_arch_linux_git() {
+
+    if [ "${_POST_NEON_INSTALL}" -eq $BS_TRUE ]; then
+         __install_salt_from_repo_post_neon "${_PY_EXE}" || return 1
+        return 0
+    fi
+
+    if [ -f "${_SALT_GIT_CHECKOUT_DIR}/salt/syspaths.py" ]; then
+        python2 setup.py --salt-config-dir="$_SALT_ETC_DIR" --salt-cache-dir="${_SALT_CACHE_DIR}" ${SETUP_PY_INSTALL_ARGS} install || return 1
+    else
+        python2 setup.py ${SETUP_PY_INSTALL_ARGS} install || return 1
+    fi
+    return 0
+}
+
+install_arch_linux_post() {
+    for fname in api master minion syndic; do
+        # Skip if not meant to be installed
+        [ $fname = "api" ] && \
+            ([ "$_INSTALL_MASTER" -eq $BS_FALSE ] || ! __check_command_exists "salt-${fname}") && continue
+        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
+        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
+        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
+
+        # Since Arch's pacman renames configuration files
+        if [ "$_TEMP_CONFIG_DIR" != "null" ] && [ -f "$_SALT_ETC_DIR/$fname.pacorig" ]; then
+            # Since a configuration directory was provided, it also means that any
+            # configuration file copied was renamed by Arch, see:
+            #   https://wiki.archlinux.org/index.php/Pacnew_and_Pacsave_Files#.pacorig
+            __copyfile "$_SALT_ETC_DIR/$fname.pacorig" "$_SALT_ETC_DIR/$fname" $BS_TRUE
+        fi
+
+        # Skip salt-api since the service should be opt-in and not necessarily started on boot
+        [ $fname = "api" ] && continue
+
+        if [ -f /usr/bin/systemctl ]; then
+            # Using systemd
+            /usr/bin/systemctl is-enabled salt-$fname.service > /dev/null 2>&1 || (
+                /usr/bin/systemctl preset salt-$fname.service > /dev/null 2>&1 &&
+                /usr/bin/systemctl enable salt-$fname.service > /dev/null 2>&1
+            )
+            sleep 1
+            /usr/bin/systemctl daemon-reload
+            continue
+        fi
+
+        # XXX: How do we enable old Arch init.d scripts?
+    done
+}
+
+install_arch_linux_git_post() {
+    for fname in api master minion syndic; do
+        # Skip if not meant to be installed
+        [ $fname = "api" ] && \
+            ([ "$_INSTALL_MASTER" -eq $BS_FALSE ] || ! __check_command_exists "salt-${fname}") && continue
+        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
+        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
+        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
+
+        if [ -f /usr/bin/systemctl ]; then
+            __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/rpm/salt-${fname}.service" "/lib/systemd/system/salt-${fname}.service"
+
+            # Skip salt-api since the service should be opt-in and not necessarily started on boot
+            [ $fname = "api" ] && continue
+
+            /usr/bin/systemctl is-enabled salt-${fname}.service > /dev/null 2>&1 || (
+                /usr/bin/systemctl preset salt-${fname}.service > /dev/null 2>&1 &&
+                /usr/bin/systemctl enable salt-${fname}.service > /dev/null 2>&1
+            )
+            sleep 1
+            /usr/bin/systemctl daemon-reload
+            continue
+        fi
+
+        # SysV init!?
+        __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/rpm/salt-$fname" "/etc/rc.d/init.d/salt-$fname"
+        chmod +x /etc/rc.d/init.d/salt-$fname
+    done
+}
+
+install_arch_linux_restart_daemons() {
+    [ $_START_DAEMONS -eq $BS_FALSE ] && return
+
+    for fname in api master minion syndic; do
+        # Skip salt-api since the service should be opt-in and not necessarily started on boot
+        [ $fname = "api" ] && continue
+
+        # Skip if not meant to be installed
+        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
+        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
+        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
+
+        if [ -f /usr/bin/systemctl ]; then
+            /usr/bin/systemctl stop salt-$fname.service > /dev/null 2>&1
+            /usr/bin/systemctl start salt-$fname.service && continue
+            echodebug "Failed to start salt-$fname using systemd"
+            if [ "$_ECHO_DEBUG" -eq $BS_TRUE ]; then
+                systemctl status salt-$fname.service
+                journalctl -xe
+            fi
+        fi
+
+        /etc/rc.d/salt-$fname stop > /dev/null 2>&1
+        /etc/rc.d/salt-$fname start
+    done
+}
+
+install_arch_check_services() {
+    if [ ! -f /usr/bin/systemctl ]; then
+        # Not running systemd!? Don't check!
+        return 0
+    fi
+
+    for fname in api master minion syndic; do
+        # Skip salt-api since the service should be opt-in and not necessarily started on boot
+        [ $fname = "api" ] && continue
+
+        # Skip if not meant to be installed
+        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
+        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
+        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
+
+        __check_services_systemd salt-$fname || return 1
+    done
+
+    return 0
+}
+#
+#   Ended Arch Install Functions
+#
+#######################################################################################################################
+
+#######################################################################################################################
+#
+#   FreeBSD Install Functions
+#
+
+# Using a separate conf step to head for idempotent install...
+__configure_freebsd_pkg_details() {
+    _SALT_ETC_DIR="/usr/local/etc/salt"
+    _PKI_DIR=${_SALT_ETC_DIR}/pki
+    _POST_NEON_PIP_INSTALL_ARGS="--prefix=/usr/local"
+}
+
+install_freebsd_deps() {
+    __configure_freebsd_pkg_details
+    pkg install -y pkg
+}
+
+install_freebsd_git_deps() {
+    install_freebsd_deps || return 1
+
+    if ! __check_command_exists git; then
+        /usr/local/sbin/pkg install -y git || return 1
+    fi
+    __git_clone_and_checkout || return 1
+
+    if [ "${_POST_NEON_INSTALL}" -eq $BS_FALSE ]; then
+
+        SALT_DEPENDENCIES=$(/usr/local/sbin/pkg rquery %dn py38-salt)
+        # shellcheck disable=SC2086
+        /usr/local/sbin/pkg install -y ${SALT_DEPENDENCIES} python || return 1
+
+        /usr/local/sbin/pkg install -y py38-requests || return 1
+        /usr/local/sbin/pkg install -y py38-tornado4 || return 1
+
+    else
+        /usr/local/sbin/pkg install -y python py38-pip py38-setuptools libzmq4 libunwind || return 1
+    fi
+
+    echodebug "Adapting paths to FreeBSD"
+    # The list of files was taken from Salt's BSD port Makefile
+    for file in doc/man/salt-key.1 doc/man/salt-cp.1 doc/man/salt-minion.1 \
+                doc/man/salt-syndic.1 doc/man/salt-master.1 doc/man/salt-run.1 \
+                doc/man/salt.7 doc/man/salt.1 doc/man/salt-call.1; do
+        [ ! -f $file ] && continue
+        echodebug "Patching ${file}"
+        sed -in -e "s|/etc/salt|${_SALT_ETC_DIR}|" \
+                -e "s|/srv/salt|${_SALT_ETC_DIR}/states|" \
+                -e "s|/srv/pillar|${_SALT_ETC_DIR}/pillar|" ${file}
+    done
+    if [ ! -f salt/syspaths.py ]; then
+        # We still can't provide the system paths, salt 0.16.x
+        # Let's patch salt's source and adapt paths to what's expected on FreeBSD
+        echodebug "Replacing occurrences of '/etc/salt' with ${_SALT_ETC_DIR}"
+        # The list of files was taken from Salt's BSD port Makefile
+        for file in conf/minion conf/master salt/config.py salt/client.py \
+                    salt/modules/mysql.py salt/utils/parsers.py salt/modules/tls.py \
+                    salt/modules/postgres.py salt/utils/migrations.py; do
+            [ ! -f $file ] && continue
+            echodebug "Patching ${file}"
+            sed -in -e "s|/etc/salt|${_SALT_ETC_DIR}|" \
+                    -e "s|/srv/salt|${_SALT_ETC_DIR}/states|" \
+                    -e "s|/srv/pillar|${_SALT_ETC_DIR}/pillar|" ${file}
+        done
+    fi
+    echodebug "Finished patching"
+
+    # Let's trigger config_salt()
+    if [ "$_TEMP_CONFIG_DIR" = "null" ]; then
+        _TEMP_CONFIG_DIR="${_SALT_GIT_CHECKOUT_DIR}/conf/"
+        CONFIG_SALT_FUNC="config_salt"
+
+    fi
+
+    return 0
+}
+
+install_freebsd_stable() {
+#
+# installing latest version of salt from FreeBSD CURRENT ports repo
+#
+    # shellcheck disable=SC2086
+    /usr/local/sbin/pkg install -y py38-salt || return 1
+
+    return 0
+}
+
+install_freebsd_git() {
+
+    # /usr/local/bin/python3 in FreeBSD is a symlink to /usr/local/bin/python3.7
+    __PYTHON_PATH=$(readlink -f "$(command -v python3)")
+    __ESCAPED_PYTHON_PATH=$(echo "${__PYTHON_PATH}" | sed 's/\//\\\//g')
+
+    if [ "${_POST_NEON_INSTALL}" -eq $BS_TRUE ]; then
+         __install_salt_from_repo_post_neon "${__PYTHON_PATH}" || return 1
+    for script in salt_api salt_master salt_minion salt_proxy salt_syndic; do
+        __fetch_url "/usr/local/etc/rc.d/${script}" "https://raw.githubusercontent.com/freebsd/freebsd-ports/master/sysutils/py-salt/files/${script}.in" || return 1
+        sed -i '' 's/%%PREFIX%%/\/usr\/local/g' /usr/local/etc/rc.d/${script}
+        sed -i '' "s/%%PYTHON_CMD%%/${__ESCAPED_PYTHON_PATH}/g" /usr/local/etc/rc.d/${script}
+        chmod +x /usr/local/etc/rc.d/${script} || return 1
+    done
+
+        return 0
+    fi
+
+    # Install from git
+    if [ ! -f salt/syspaths.py ]; then
+        # We still can't provide the system paths, salt 0.16.x
+        ${__PYTHON_PATH} setup.py ${SETUP_PY_INSTALL_ARGS} install || return 1
+    else
+        ${__PYTHON_PATH} setup.py \
+            --salt-root-dir=/ \
+            --salt-config-dir="${_SALT_ETC_DIR}" \
+            --salt-cache-dir="${_SALT_CACHE_DIR}" \
+            --salt-sock-dir=/var/run/salt \
+            --salt-srv-root-dir="${_SALT_ETC_DIR}" \
+            --salt-base-file-roots-dir="${_SALT_ETC_DIR}/states" \
+            --salt-base-pillar-roots-dir="${_SALT_ETC_DIR}/pillar" \
+            --salt-base-master-roots-dir="${_SALT_ETC_DIR}/salt-master" \
+            --salt-logs-dir=/var/log/salt \
+            --salt-pidfile-dir=/var/run \
+            ${SETUP_PY_INSTALL_ARGS} install \
+            || return 1
+    fi
+
+    for script in salt_api salt_master salt_minion salt_proxy salt_syndic; do
+        __fetch_url "/usr/local/etc/rc.d/${script}" "https://raw.githubusercontent.com/freebsd/freebsd-ports/master/sysutils/py-salt/files/${script}.in" || return 1
+        sed -i '' 's/%%PREFIX%%/\/usr\/local/g' /usr/local/etc/rc.d/${script}
+        sed -i '' "s/%%PYTHON_CMD%%/${__ESCAPED_PYTHON_PATH}/g" /usr/local/etc/rc.d/${script}
+        chmod +x /usr/local/etc/rc.d/${script} || return 1
+    done
+
+    # And we're good to go
+    return 0
+}
+
+install_freebsd_stable_post() {
+    for fname in api master minion syndic; do
+        # Skip salt-api since the service should be opt-in and not necessarily started on boot
+        [ $fname = "api" ] && continue
+
+        # Skip if not meant to be installed
+        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
+        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
+        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
+
+        enable_string="salt_${fname}_enable=YES"
+        grep "$enable_string" /etc/rc.conf >/dev/null 2>&1
+        [ $? -eq 1 ] && sysrc $enable_string
+
+    done
+}
+
+install_freebsd_git_post() {
+    install_freebsd_stable_post || return 1
+    return 0
+}
+
+install_freebsd_restart_daemons() {
+    [ $_START_DAEMONS -eq $BS_FALSE ] && return
+
+    for fname in api master minion syndic; do
+        # Skip salt-api since the service should be opt-in and not necessarily started on boot
+        [ $fname = "api" ] && continue
+
+        # Skip if not meant to be installed
+        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
+        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
+        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
+
+        service salt_$fname stop > /dev/null 2>&1
+        service salt_$fname start
+    done
+}
+#
+#   Ended FreeBSD Install Functions
+#
+#######################################################################################################################
+
+#######################################################################################################################
+#
+#   OpenBSD Install Functions
+#
+
+install_openbsd_deps() {
+    if [ $_DISABLE_REPOS -eq $BS_FALSE ]; then
+        OPENBSD_REPO='https://cdn.openbsd.org/pub/OpenBSD'
+        echoinfo "setting package repository to $OPENBSD_REPO"
+        echo "${OPENBSD_REPO}" >/etc/installurl || return 1
+    fi
+
+    if [ "${_EXTRA_PACKAGES}" != "" ]; then
+        echoinfo "Installing the following extra packages as requested: ${_EXTRA_PACKAGES}"
+        # shellcheck disable=SC2086
+        pkg_add -I -v ${_EXTRA_PACKAGES} || return 1
+    fi
+    return 0
+}
+
+install_openbsd_git_deps() {
+    install_openbsd_deps || return 1
+
+    if ! __check_command_exists git; then
+        pkg_add -I -v git || return 1
+    fi
+    __git_clone_and_checkout || return 1
+
+    if [ "${_POST_NEON_INSTALL}" -eq $BS_TRUE ]; then
+        pkg_add -I -v py-pip py-setuptools
+    fi
+
+    #
+    # Let's trigger config_salt()
+    #
+    if [ "$_TEMP_CONFIG_DIR" = "null" ]; then
+        _TEMP_CONFIG_DIR="${_SALT_GIT_CHECKOUT_DIR}/conf/"
+        CONFIG_SALT_FUNC="config_salt"
+    fi
+
+    return 0
+}
+
+install_openbsd_git() {
+    #
+    # Install from git
+    #
+    if [ "${_POST_NEON_INSTALL}" -eq $BS_TRUE ]; then
+         __install_salt_from_repo_post_neon "${_PY_EXE}" || return 1
+        return 0
+    fi
+
+    if [ ! -f salt/syspaths.py ]; then
+        # We still can't provide the system paths, salt 0.16.x
+        /usr/local/bin/python2.7 setup.py ${SETUP_PY_INSTALL_ARGS} install || return 1
+    fi
+    return 0
+}
+
+install_openbsd_stable() {
+    pkg_add -r -I -v salt || return 1
+    return 0
+}
+
+install_openbsd_post() {
+    for fname in api master minion syndic; do
+        [ $fname = "api" ] && continue
+        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
+        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
+        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
+
+        rcctl enable salt_$fname
+    done
+
+    return 0
+}
+
+install_openbsd_check_services() {
+    for fname in api master minion syndic; do
+        # Skip salt-api since the service should be opt-in and not necessarily started on boot
+        [ $fname = "api" ] && continue
+
+        # Skip if not meant to be installed
+        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
+        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
+        [ $fname = "syndic" ] && continue
+
+        if [ -f /etc/rc.d/salt_${fname} ]; then
+            __check_services_openbsd salt_${fname} || return 1
+        fi
+    done
+
+    return 0
+}
+
+install_openbsd_restart_daemons() {
+    [ $_START_DAEMONS -eq $BS_FALSE ] && return
+
+    for fname in api master minion syndic; do
+        # Skip salt-api since the service should be opt-in and not necessarily started on boot
+        [ $fname = "api" ] && continue
+
+        # Skip if not meant to be installed
+        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
+        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
+        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
+
+        rcctl restart salt_${fname}
+    done
+
+    return 0
+}
+
+#
+#   Ended OpenBSD Install Functions
+#
+#######################################################################################################################
+
+#######################################################################################################################
+#
+#   SmartOS Install Functions
+#
+install_smartos_deps() {
+    smartos_deps="$(pkgin show-deps salt | grep '^\s' | grep -v '\snot' | xargs) py27-m2crypto"
+    pkgin -y install "${smartos_deps}" || return 1
+
+    # Set _SALT_ETC_DIR to SmartOS default if they didn't specify
+    _SALT_ETC_DIR=${BS_SALT_ETC_DIR:-/opt/local/etc/salt}
+    # We also need to redefine the PKI directory
+    _PKI_DIR=${_SALT_ETC_DIR}/pki
+
+    # Let's trigger config_salt()
+    if [ "$_TEMP_CONFIG_DIR" = "null" ]; then
+        # Let's set the configuration directory to /tmp
+        _TEMP_CONFIG_DIR="/tmp"
+        CONFIG_SALT_FUNC="config_salt"
+
+        # Let's download, since they were not provided, the default configuration files
+        if [ ! -f "$_SALT_ETC_DIR/minion" ] && [ ! -f "$_TEMP_CONFIG_DIR/minion" ]; then
+            # shellcheck disable=SC2086
+            curl $_CURL_ARGS -s -o "$_TEMP_CONFIG_DIR/minion" -L \
+                https://raw.githubusercontent.com/saltstack/salt/master/conf/minion || return 1
+        fi
+        if [ ! -f "$_SALT_ETC_DIR/master" ] && [ ! -f $_TEMP_CONFIG_DIR/master ]; then
+            # shellcheck disable=SC2086
+            curl $_CURL_ARGS -s -o "$_TEMP_CONFIG_DIR/master" -L \
+                https://raw.githubusercontent.com/saltstack/salt/master/conf/master || return 1
+        fi
+    fi
+
+    if [ "$_INSTALL_CLOUD" -eq $BS_TRUE  ]; then
+        pkgin -y install py27-apache-libcloud || return 1
+    fi
+
+    if [ "${_EXTRA_PACKAGES}" != "" ]; then
+        echoinfo "Installing the following extra packages as requested: ${_EXTRA_PACKAGES}"
+        # shellcheck disable=SC2086
+        pkgin -y install ${_EXTRA_PACKAGES} || return 1
+    fi
+
+    return 0
+}
+
+install_smartos_git_deps() {
+    install_smartos_deps || return 1
+
+    if ! __check_command_exists git; then
+        pkgin -y install git || return 1
+    fi
+
+    __git_clone_and_checkout || return 1
+
+    if [ "${_POST_NEON_INSTALL}" -eq $BS_FALSE ]; then
+
+        if [ -f "${_SALT_GIT_CHECKOUT_DIR}/requirements/base.txt" ]; then
+            # Install whichever tornado is in the requirements file
+            __REQUIRED_TORNADO="$(grep tornado "${_SALT_GIT_CHECKOUT_DIR}/requirements/base.txt")"
+            __check_pip_allowed "You need to allow pip based installations (-P) in order to install the python package '${__REQUIRED_TORNADO}'"
+
+            # Install whichever futures is in the requirements file
+            __REQUIRED_FUTURES="$(grep futures "${_SALT_GIT_CHECKOUT_DIR}/requirements/base.txt")"
+            __check_pip_allowed "You need to allow pip based installations (-P) in order to install the python package '${__REQUIRED_FUTURES}'"
+
+            if [ "${__REQUIRED_TORNADO}" != "" ]; then
+                if ! __check_command_exists pip; then
+                    pkgin -y install py27-pip
+                fi
+                pip install -U "${__REQUIRED_TORNADO}"
+            fi
+
+            if [ "${__REQUIRED_FUTURES}" != "" ]; then
+                if ! __check_command_exists pip; then
+                    pkgin -y install py27-pip
+                fi
+                pip install -U "${__REQUIRED_FUTURES}"
+            fi
+        fi
+    else
+        if ! __check_command_exists pip; then
+            pkgin -y install py27-pip
+        fi
+        pkgin -y install py27-setuptools
+    fi
+
+    # Let's trigger config_salt()
+    if [ "$_TEMP_CONFIG_DIR" = "null" ]; then
+        _TEMP_CONFIG_DIR="${_SALT_GIT_CHECKOUT_DIR}/conf/"
+        CONFIG_SALT_FUNC="config_salt"
+    fi
+
+    return 0
+}
+
+install_smartos_stable() {
+    pkgin -y install salt || return 1
+    return 0
+}
+
+install_smartos_git() {
+
+    if [ "${_POST_NEON_INSTALL}" -eq $BS_TRUE ]; then
+         __install_salt_from_repo_post_neon "${_PY_EXE}" || return 1
+        return 0
+    fi
+
+    # Use setuptools in order to also install dependencies
+    # lets force our config path on the setup for now, since salt/syspaths.py only  got fixed in 2015.5.0
+    USE_SETUPTOOLS=1 /opt/local/bin/python setup.py --salt-config-dir="$_SALT_ETC_DIR" --salt-cache-dir="${_SALT_CACHE_DIR}" ${SETUP_PY_INSTALL_ARGS} install || return 1
+    return 0
+}
+
+install_smartos_post() {
+    smf_dir="/opt/custom/smf"
+
+    # Install manifest files if needed.
+    for fname in api master minion syndic; do
+        # Skip if not meant to be installed
+        [ $fname = "api" ] && \
+            ([ "$_INSTALL_MASTER" -eq $BS_FALSE ] || ! __check_command_exists "salt-${fname}") && continue
+        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
+        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
+        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
+
+        svcs network/salt-$fname > /dev/null 2>&1
+        if [ $? -eq 1 ]; then
+            if [ ! -f "$_TEMP_CONFIG_DIR/salt-$fname.xml" ]; then
+                # shellcheck disable=SC2086
+                curl $_CURL_ARGS -s -o "$_TEMP_CONFIG_DIR/salt-$fname.xml" -L \
+                    "https://raw.githubusercontent.com/saltstack/salt/master/pkg/smartos/salt-$fname.xml"
+            fi
+            svccfg import "$_TEMP_CONFIG_DIR/salt-$fname.xml"
+            if [ "${VIRTUAL_TYPE}" = "global" ]; then
+                if [ ! -d "$smf_dir" ]; then
+                    mkdir -p "$smf_dir" || return 1
+                fi
+                if [ ! -f "$smf_dir/salt-$fname.xml" ]; then
+                    __copyfile "$_TEMP_CONFIG_DIR/salt-$fname.xml" "$smf_dir/" || return 1
+                fi
+            fi
+        fi
+    done
+
+    return 0
+}
+
+install_smartos_git_post() {
+    smf_dir="/opt/custom/smf"
+
+    # Install manifest files if needed.
+    for fname in api master minion syndic; do
+        # Skip if not meant to be installed
+        [ $fname = "api" ] && \
+            ([ "$_INSTALL_MASTER" -eq $BS_FALSE ] || ! __check_command_exists "salt-${fname}") && continue
+        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
+        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
+        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
+
+        svcs "network/salt-$fname" > /dev/null 2>&1
+        if [ $? -eq 1 ]; then
+            svccfg import "${_SALT_GIT_CHECKOUT_DIR}/pkg/smartos/salt-$fname.xml"
+            if [ "${VIRTUAL_TYPE}" = "global" ]; then
+                if [ ! -d $smf_dir ]; then
+                    mkdir -p "$smf_dir"
+                fi
+                if [ ! -f "$smf_dir/salt-$fname.xml" ]; then
+                    __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/smartos/salt-$fname.xml" "$smf_dir/"
+                fi
+            fi
+        fi
+    done
+
+    return 0
+}
+
+install_smartos_restart_daemons() {
+    [ $_START_DAEMONS -eq $BS_FALSE ] && return
+
+    for fname in api master minion syndic; do
+        # Skip salt-api since the service should be opt-in and not necessarily started on boot
+        [ $fname = "api" ] && continue
+
+        # Skip if not meant to be installed
+        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
+        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
+        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
+
+        # Stop if running && Start service
+        svcadm disable salt-$fname > /dev/null 2>&1
+        svcadm enable salt-$fname
+    done
+
+    return 0
+}
+#
+#   Ended SmartOS Install Functions
+#
+#######################################################################################################################
+
+#######################################################################################################################
+#
+#    openSUSE Install Functions.
+#
+__ZYPPER_REQUIRES_REPLACE_FILES=-1
+
+__set_suse_pkg_repo() {
+
+    # Set distro repo variable
+    if [ "${DISTRO_MAJOR_VERSION}" -gt 2015 ]; then
+        DISTRO_REPO="openSUSE_Tumbleweed"
+    elif [ "${DISTRO_MAJOR_VERSION}" -ge 42 ] || [ "${DISTRO_MAJOR_VERSION}" -eq 15 ]; then
+        DISTRO_REPO="openSUSE_Leap_${DISTRO_MAJOR_VERSION}.${DISTRO_MINOR_VERSION}"
+    else
+        DISTRO_REPO="SLE_${DISTRO_MAJOR_VERSION}_SP${SUSE_PATCHLEVEL}"
+    fi
+
+    if [ "$_DOWNSTREAM_PKG_REPO" -eq $BS_TRUE ]; then
+        suse_pkg_url_base="https://download.opensuse.org/repositories/systemsmanagement:/saltstack"
+        suse_pkg_url_path="${DISTRO_REPO}/systemsmanagement:saltstack.repo"
+    else
+        suse_pkg_url_base="${HTTP_VAL}://repo.saltproject.io/opensuse"
+        suse_pkg_url_path="${DISTRO_REPO}/systemsmanagement:saltstack:products.repo"
+    fi
+    SUSE_PKG_URL="$suse_pkg_url_base/$suse_pkg_url_path"
+}
+
+__check_and_refresh_suse_pkg_repo() {
+    # Check to see if systemsmanagement_saltstack exists
+    __zypper repos | grep -q systemsmanagement_saltstack
+
+    if [ $? -eq 1 ]; then
+        # zypper does not yet know anything about systemsmanagement_saltstack
+        __zypper addrepo --refresh "${SUSE_PKG_URL}" || return 1
+    fi
+}
+
+__version_lte() {
+    if ! __check_command_exists python; then
+        zypper --non-interactive install --replacefiles --auto-agree-with-licenses python || \
+             zypper --non-interactive install --auto-agree-with-licenses python || return 1
+    fi
+
+    if [ "$(python -c 'import sys; V1=tuple([int(i) for i in sys.argv[1].split(".")]); V2=tuple([int(i) for i in sys.argv[2].split(".")]); print V1<=V2' "$1" "$2")" = "True" ]; then
+        __ZYPPER_REQUIRES_REPLACE_FILES=${BS_TRUE}
+    else
+        __ZYPPER_REQUIRES_REPLACE_FILES=${BS_FALSE}
+    fi
+}
+
+__zypper() {
+    # Check if any zypper process is running before calling zypper again.
+    # This is useful when a zypper call is part of a boot process and will
+    # wait until the zypper process is finished, such as on AWS AMIs.
+    while pgrep -l zypper; do
+        sleep 1
+    done
+
+    zypper --non-interactive "${@}"
+    # Return codes between 100 and 104 are only informations, not errors
+    # https://en.opensuse.org/SDB:Zypper_manual#EXIT_CODES
+    if [ "$?" -gt "99" ] && [ "$?" -le "104" ]; then
+        return 0
+    fi
+    return $?
+}
+
+__zypper_install() {
+    if [ "${__ZYPPER_REQUIRES_REPLACE_FILES}" = "-1" ]; then
+        __version_lte "1.10.4" "$(zypper --version | awk '{ print $2 }')"
+    fi
+    if [ "${__ZYPPER_REQUIRES_REPLACE_FILES}" = "${BS_TRUE}" ]; then
+        # In case of file conflicts replace old files.
+        # Option present in zypper 1.10.4 and newer:
+        # https://github.com/openSUSE/zypper/blob/95655728d26d6d5aef7796b675f4cc69bc0c05c0/package/zypper.changes#L253
+        __zypper install --auto-agree-with-licenses --replacefiles "${@}"; return $?
+    else
+        __zypper install --auto-agree-with-licenses "${@}"; return $?
+    fi
+}
+
+__opensuse_prep_install() {
+    # DRY function for common installation preparatory steps for SUSE
+    if [ $_DISABLE_REPOS -eq $BS_FALSE ]; then
+        # Is the repository already known
+        __set_suse_pkg_repo
+        # Check zypper repos and refresh if necessary
+        __check_and_refresh_suse_pkg_repo
+    fi
+
+    __zypper --gpg-auto-import-keys refresh
+
+    # shellcheck disable=SC2181
+    if [ $? -ne 0 ] && [ $? -ne 4 ]; then
+        # If the exit code is not 0, and it's not 4 (failed to update a
+        # repository) return a failure. Otherwise continue.
+        return 1
+    fi
+
+    if [ "$_UPGRADE_SYS" -eq $BS_TRUE ]; then
+        __zypper --gpg-auto-import-keys update || return 1
+    fi
+}
+
+install_opensuse_stable_deps() {
+    __opensuse_prep_install || return 1
+
+    if [ "$DISTRO_MAJOR_VERSION" -eq 12 ] && [ "$DISTRO_MINOR_VERSION" -eq 3 ]; then
+        # Because patterns-openSUSE-minimal_base-conflicts conflicts with python, lets remove the first one
+        __zypper remove patterns-openSUSE-minimal_base-conflicts
+    fi
+
+    # YAML module is used for generating custom master/minion configs
+    # requests is still used by many salt modules
+    # Salt needs python-zypp installed in order to use the zypper module
+    __PACKAGES="python-PyYAML python-requests python-zypp"
+
+    # shellcheck disable=SC2086
+    __zypper_install ${__PACKAGES} || return 1
+
+    if [ "${_EXTRA_PACKAGES}" != "" ]; then
+        echoinfo "Installing the following extra packages as requested: ${_EXTRA_PACKAGES}"
+        # shellcheck disable=SC2086
+        __zypper_install ${_EXTRA_PACKAGES} || return 1
+    fi
+
+    return 0
+}
+
+install_opensuse_git_deps() {
+    if [ "$_INSECURE_DL" -eq $BS_FALSE ] && [ "${_SALT_REPO_URL%%://*}" = "https" ] && ! __check_command_exists update-ca-certificates; then
+        __zypper_install ca-certificates || return 1
+    fi
+
+    install_opensuse_stable_deps || return 1
+
+    if ! __check_command_exists git; then
+        __zypper_install git  || return 1
+    fi
+
+    __git_clone_and_checkout || return 1
+
+    if [ "${_POST_NEON_INSTALL}" -eq $BS_FALSE ]; then
+        __zypper_install patch || return 1
+
+        __PACKAGES="libzmq5 python-Jinja2 python-m2crypto python-msgpack-python python-pycrypto python-pyzmq python-xml python-futures"
+
+        if [ -f "${_SALT_GIT_CHECKOUT_DIR}/requirements/base.txt" ]; then
+            # We're on the master branch, install whichever tornado is on the requirements file
+            __REQUIRED_TORNADO="$(grep tornado "${_SALT_GIT_CHECKOUT_DIR}/requirements/base.txt")"
+            if [ "${__REQUIRED_TORNADO}" != "" ]; then
+                __PACKAGES="${__PACKAGES} python-tornado"
+            fi
+        fi
+
+        if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ]; then
+            __PACKAGES="${__PACKAGES} python-apache-libcloud"
+        fi
+    # Check for Tumbleweed
+    elif [ "${DISTRO_MAJOR_VERSION}" -ge 20210101 ]; then
+        __PACKAGES="python3-pip"
+    else
+        __PACKAGES="python-pip python-setuptools gcc"
+    fi
+
+    # shellcheck disable=SC2086
+    __zypper_install ${__PACKAGES} || return 1
+
+    # Let's trigger config_salt()
+    if [ "$_TEMP_CONFIG_DIR" = "null" ]; then
+        _TEMP_CONFIG_DIR="${_SALT_GIT_CHECKOUT_DIR}/conf/"
+        CONFIG_SALT_FUNC="config_salt"
+    fi
+
+    return 0
+}
+
+install_opensuse_stable() {
+    __PACKAGES=""
+
+    if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ];then
+        __PACKAGES="${__PACKAGES} salt-cloud"
+    fi
+    if [ "$_INSTALL_MASTER" -eq $BS_TRUE ]; then
+        __PACKAGES="${__PACKAGES} salt-master"
+    fi
+    if [ "$_INSTALL_MINION" -eq $BS_TRUE ]; then
+        __PACKAGES="${__PACKAGES} salt-minion"
+    fi
+    if [ "$_INSTALL_SYNDIC" -eq $BS_TRUE ]; then
+        __PACKAGES="${__PACKAGES} salt-syndic"
+    fi
+
+    # shellcheck disable=SC2086
+    __zypper_install $__PACKAGES || return 1
+
+    return 0
+}
+
+install_opensuse_git() {
+    if [ "${_POST_NEON_INSTALL}" -eq $BS_TRUE ]; then
+         __install_salt_from_repo_post_neon "${_PY_EXE}" || return 1
+        return 0
+    fi
+
+    python setup.py ${SETUP_PY_INSTALL_ARGS} install --prefix=/usr || return 1
+    return 0
+}
+
+install_opensuse_stable_post() {
+    for fname in api master minion syndic; do
+        # Skip salt-api since the service should be opt-in and not necessarily started on boot
+        [ $fname = "api" ] && continue
+
+        # Skip if not meant to be installed
+        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
+        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
+        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
+
+        if [ -f /bin/systemctl ] || [ -f /usr/bin/systemctl ]; then
+            systemctl is-enabled salt-$fname.service || (systemctl preset salt-$fname.service && systemctl enable salt-$fname.service)
+            sleep 1
+            systemctl daemon-reload
+            continue
+        fi
+
+        /sbin/chkconfig --add salt-$fname
+        /sbin/chkconfig salt-$fname on
+    done
+
+    return 0
+}
+
+install_opensuse_git_post() {
+    for fname in api master minion syndic; do
+        # Skip if not meant to be installed
+        [ $fname = "api" ] && \
+            ([ "$_INSTALL_MASTER" -eq $BS_FALSE ] || ! __check_command_exists "salt-${fname}") && continue
+        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
+        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
+        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
+
+        if command -v systemctl; then
+            use_usr_lib=$BS_FALSE
+
+            if [ "${DISTRO_MAJOR_VERSION}" -ge 15 ]; then
+                use_usr_lib=$BS_TRUE
+            fi
+
+            if [ "${DISTRO_MAJOR_VERSION}" -eq 12 ] && [ -d "/usr/lib/systemd/" ]; then
+                use_usr_lib=$BS_TRUE
+            fi
+
+            if [ "${use_usr_lib}" -eq $BS_TRUE ]; then
+                __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/salt-${fname}.service" "/usr/lib/systemd/system/salt-${fname}.service"
+            else
+                __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/salt-${fname}.service" "/lib/systemd/system/salt-${fname}.service"
+            fi
+
+            continue
+        fi
+
+        __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/rpm/salt-$fname" "/etc/init.d/salt-$fname"
+        chmod +x /etc/init.d/salt-$fname
+    done
+
+    install_opensuse_stable_post || return 1
+
+    return 0
+}
+
+install_opensuse_restart_daemons() {
+    [ $_START_DAEMONS -eq $BS_FALSE ] && return
+
+    for fname in api master minion syndic; do
+        # Skip salt-api since the service should be opt-in and not necessarily started on boot
+        [ $fname = "api" ] && continue
+
+        # Skip if not meant to be installed
+        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
+        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
+        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
+
+        if [ -f /bin/systemctl ]; then
+            systemctl stop salt-$fname > /dev/null 2>&1
+            systemctl start salt-$fname.service && continue
+            echodebug "Failed to start salt-$fname using systemd"
+            if [ "$_ECHO_DEBUG" -eq $BS_TRUE ]; then
+                systemctl status salt-$fname.service
+                journalctl -xe
+            fi
+        fi
+
+        service salt-$fname stop > /dev/null 2>&1
+        service salt-$fname start
+    done
+}
+
+install_opensuse_check_services() {
+    if [ ! -f /bin/systemctl ]; then
+        # Not running systemd!? Don't check!
+        return 0
+    fi
+
+    for fname in api master minion syndic; do
+        # Skip salt-api since the service should be opt-in and not necessarily started on boot
+        [ $fname = "api" ] && continue
+
+        # Skip if not meant to be installed
+        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
+        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
+        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
+
+        __check_services_systemd salt-$fname > /dev/null 2>&1 || __check_services_systemd salt-$fname.service > /dev/null 2>&1 || return 1
+    done
+
+    return 0
+}
+#
+#   End of openSUSE Install Functions.
+#
+#######################################################################################################################
+
+#######################################################################################################################
+#
+#   openSUSE Leap 15
+#
+
+install_opensuse_15_stable_deps() {
+    __opensuse_prep_install || return 1
+
+    # SUSE only packages Salt for Python 3 on Leap 15
+    # Py3 is the default bootstrap install for Leap 15
+    # However, git installs might specify "-x python2"
+    if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 2 ]; then
+        PY_PKG_VER=2
+    else
+        PY_PKG_VER=3
+    fi
+
+    # YAML module is used for generating custom master/minion configs
+    # requests is still used by many salt modules
+    __PACKAGES="python${PY_PKG_VER}-PyYAML python${PY_PKG_VER}-requests"
+
+    # shellcheck disable=SC2086
+    __zypper_install ${__PACKAGES} || return 1
+
+    if [ "${_EXTRA_PACKAGES}" != "" ]; then
+        echoinfo "Installing the following extra packages as requested: ${_EXTRA_PACKAGES}"
+        # shellcheck disable=SC2086
+        __zypper_install ${_EXTRA_PACKAGES} || return 1
+    fi
+
+    return 0
+}
+
+install_opensuse_15_git_deps() {
+    install_opensuse_15_stable_deps || return 1
+
+    if ! __check_command_exists git; then
+        __zypper_install git  || return 1
+    fi
+
+    __git_clone_and_checkout || return 1
+
+    if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 2 ]; then
+        PY_PKG_VER=2
+    else
+        PY_PKG_VER=3
+    fi
+
+    __PACKAGES="python${PY_PKG_VER}-xml"
+
+    if [ "${_POST_NEON_INSTALL}" -eq $BS_FALSE ]; then
+
+        # Py3 is the default bootstrap install for Leap 15
+        # However, git installs might specify "-x python2"
+        if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 2 ]; then
+            # This is required by some of the python2 packages below
+            __PACKAGES="${__PACKAGES} libpython2_7-1_0 python2-futures python-ipaddress"
+        fi
+
+        __PACKAGES="${__PACKAGES} libzmq5 python${PY_PKG_VER}-Jinja2 python${PY_PKG_VER}-msgpack"
+        __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-pycrypto python${PY_PKG_VER}-pyzmq"
+
+        if [ -f "${_SALT_GIT_CHECKOUT_DIR}/requirements/base.txt" ]; then
+            # We're on the master branch, install whichever tornado is on the requirements file
+            __REQUIRED_TORNADO="$(grep tornado "${_SALT_GIT_CHECKOUT_DIR}/requirements/base.txt")"
+            if [ "${__REQUIRED_TORNADO}" != "" ]; then
+                __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-tornado"
+            fi
+        fi
+
+        if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ]; then
+            __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-apache-libcloud"
+        fi
+    else
+        __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-devel python${PY_PKG_VER}-pip python${PY_PKG_VER}-setuptools gcc"
+    fi
+
+    # shellcheck disable=SC2086
+    __zypper_install ${__PACKAGES} || return 1
+
+    # Let's trigger config_salt()
+    if [ "$_TEMP_CONFIG_DIR" = "null" ]; then
+        _TEMP_CONFIG_DIR="${_SALT_GIT_CHECKOUT_DIR}/conf/"
+        CONFIG_SALT_FUNC="config_salt"
+    fi
+
+    return 0
+}
+
+install_opensuse_15_git() {
+
+    # Py3 is the default bootstrap install for Leap 15
+    if [ -n "$_PY_EXE" ]; then
+        _PYEXE=${_PY_EXE}
+    else
+        _PYEXE=python3
+    fi
+
+    if [ "${_POST_NEON_INSTALL}" -eq $BS_TRUE ]; then
+         __install_salt_from_repo_post_neon "${_PY_EXE}" || return 1
+        return 0
+    fi
+
+    ${_PYEXE} setup.py ${SETUP_PY_INSTALL_ARGS} install --prefix=/usr || return 1
+    return 0
+}
+
+#
+#   End of openSUSE Leap 15
+#
+#######################################################################################################################
+
+#######################################################################################################################
+#
+#   SUSE Enterprise 15
+#
+
+install_suse_15_stable_deps() {
+    __opensuse_prep_install || return 1
+    install_opensuse_15_stable_deps || return 1
+
+    return 0
+}
+
+install_suse_15_git_deps() {
+    install_suse_15_stable_deps || return 1
+
+    if ! __check_command_exists git; then
+        __zypper_install git-core  || return 1
+    fi
+
+    install_opensuse_15_git_deps || return 1
+
+    return 0
+}
+
+install_suse_15_stable() {
+    install_opensuse_stable || return 1
+    return 0
+}
+
+install_suse_15_git() {
+    install_opensuse_15_git || return 1
+    return 0
+}
+
+install_suse_15_stable_post() {
+    install_opensuse_stable_post || return 1
+    return 0
+}
+
+install_suse_15_git_post() {
+    install_opensuse_git_post || return 1
+    return 0
+}
+
+install_suse_15_restart_daemons() {
+    install_opensuse_restart_daemons || return 1
+    return 0
+}
+
+#
+#   End of SUSE Enterprise 15
+#
+#######################################################################################################################
+
+#######################################################################################################################
+#
+#   SUSE Enterprise 12
+#
+
+install_suse_12_stable_deps() {
+    __opensuse_prep_install || return 1
+
+    # YAML module is used for generating custom master/minion configs
+    # requests is still used by many salt modules
+    # Salt needs python-zypp installed in order to use the zypper module
+    __PACKAGES="python-PyYAML python-requests python-zypp"
+
+    if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ]; then
+        __PACKAGES="${__PACKAGES} python-apache-libcloud"
+    fi
+
+    # shellcheck disable=SC2086,SC2090
+    __zypper_install ${__PACKAGES} || return 1
+
+    # SLES 11 SP3 ships with both python-M2Crypto-0.22.* and python-m2crypto-0.21 and we will be asked which
+    # we want to install, even with --non-interactive.
+    # Let's try to install the higher version first and then the lower one in case of failure
+    __zypper_install 'python-M2Crypto>=0.22' || __zypper_install 'python-M2Crypto>=0.21' || return 1
+
+    if [ "${_EXTRA_PACKAGES}" != "" ]; then
+        echoinfo "Installing the following extra packages as requested: ${_EXTRA_PACKAGES}"
+        # shellcheck disable=SC2086
+        __zypper_install ${_EXTRA_PACKAGES} || return 1
+    fi
+
+    return 0
+}
+
+install_suse_12_git_deps() {
+    install_suse_12_stable_deps || return 1
+
+    if ! __check_command_exists git; then
+        __zypper_install git-core  || return 1
+    fi
+
+    __git_clone_and_checkout || return 1
+
+    __PACKAGES=""
+    # shellcheck disable=SC2089
+    __PACKAGES="${__PACKAGES} libzmq4 python-Jinja2 python-msgpack-python python-pycrypto"
+    __PACKAGES="${__PACKAGES} python-pyzmq python-xml"
+
+    if [ -f "${_SALT_GIT_CHECKOUT_DIR}/requirements/base.txt" ]; then
+        # We're on the master branch, install whichever tornado is on the requirements file
+        __REQUIRED_TORNADO="$(grep tornado "${_SALT_GIT_CHECKOUT_DIR}/requirements/base.txt")"
+        if [ "${__REQUIRED_TORNADO}" != "" ]; then
+            __PACKAGES="${__PACKAGES} python-tornado"
+        fi
+    fi
+
+    if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ]; then
+        __PACKAGES="${__PACKAGES} python-apache-libcloud"
+    fi
+
+    # shellcheck disable=SC2086
+    __zypper_install ${__PACKAGES} || return 1
+
+    # Let's trigger config_salt()
+    if [ "$_TEMP_CONFIG_DIR" = "null" ]; then
+        _TEMP_CONFIG_DIR="${_SALT_GIT_CHECKOUT_DIR}/conf/"
+        CONFIG_SALT_FUNC="config_salt"
+    fi
+
+    return 0
+}
+
+install_suse_12_stable() {
+    install_opensuse_stable || return 1
+    return 0
+}
+
+install_suse_12_git() {
+    install_opensuse_git || return 1
+    return 0
+}
+
+install_suse_12_stable_post() {
+    install_opensuse_stable_post || return 1
+    return 0
+}
+
+install_suse_12_git_post() {
+    install_opensuse_git_post || return 1
+    return 0
+}
+
+install_suse_12_restart_daemons() {
+    install_opensuse_restart_daemons || return 1
+    return 0
+}
+
+#
+#   End of SUSE Enterprise 12
+#
+#######################################################################################################################
+
+#######################################################################################################################
+#
+#   SUSE Enterprise 11
+#
+
+install_suse_11_stable_deps() {
+    __opensuse_prep_install || return 1
+
+    # YAML module is used for generating custom master/minion configs
+    __PACKAGES="python-PyYAML"
+
+    # shellcheck disable=SC2086,SC2090
+    __zypper_install ${__PACKAGES} || return 1
+
+    # SLES 11 SP3 ships with both python-M2Crypto-0.22.* and python-m2crypto-0.21 and we will be asked which
+    # we want to install, even with --non-interactive.
+    # Let's try to install the higher version first and then the lower one in case of failure
+    __zypper_install 'python-M2Crypto>=0.22' || __zypper_install 'python-M2Crypto>=0.21' || return 1
+
+    if [ "${_EXTRA_PACKAGES}" != "" ]; then
+        echoinfo "Installing the following extra packages as requested: ${_EXTRA_PACKAGES}"
+        # shellcheck disable=SC2086
+        __zypper_install ${_EXTRA_PACKAGES} || return 1
+    fi
+
+    return 0
+}
+
+install_suse_11_git_deps() {
+    install_suse_11_stable_deps || return 1
+
+    if ! __check_command_exists git; then
+        __zypper_install git  || return 1
+    fi
+
+    __git_clone_and_checkout || return 1
+
+    __PACKAGES=""
+    # shellcheck disable=SC2089
+    __PACKAGES="${__PACKAGES} libzmq4 python-Jinja2 python-msgpack-python python-pycrypto"
+    __PACKAGES="${__PACKAGES} python-pyzmq python-xml python-zypp"
+
+    if [ -f "${_SALT_GIT_CHECKOUT_DIR}/requirements/base.txt" ]; then
+        # We're on the master branch, install whichever tornado is on the requirements file
+        __REQUIRED_TORNADO="$(grep tornado "${_SALT_GIT_CHECKOUT_DIR}/requirements/base.txt")"
+        if [ "${__REQUIRED_TORNADO}" != "" ]; then
+            __PACKAGES="${__PACKAGES} python-tornado"
+        fi
+    fi
+
+    if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ]; then
+        __PACKAGES="${__PACKAGES} python-apache-libcloud"
+    fi
+
+    # shellcheck disable=SC2086
+    __zypper_install ${__PACKAGES} || return 1
+
+    # Let's trigger config_salt()
+    if [ "$_TEMP_CONFIG_DIR" = "null" ]; then
+        _TEMP_CONFIG_DIR="${_SALT_GIT_CHECKOUT_DIR}/conf/"
+        CONFIG_SALT_FUNC="config_salt"
+    fi
+
+    return 0
+}
+
+install_suse_11_stable() {
+    install_opensuse_stable || return 1
+    return 0
+}
+
+install_suse_11_git() {
+    install_opensuse_git || return 1
+    return 0
+}
+
+install_suse_11_stable_post() {
+    install_opensuse_stable_post || return 1
+    return 0
+}
+
+install_suse_11_git_post() {
+    install_opensuse_git_post || return 1
+    return 0
+}
+
+install_suse_11_restart_daemons() {
+    install_opensuse_restart_daemons || return 1
+    return 0
+}
+
+
+#
+#   End of SUSE Enterprise 11
+#
+#######################################################################################################################
+
+#######################################################################################################################
+#
+# SUSE Enterprise General Functions
+#
+
+# Used for both SLE 11 and 12
+install_suse_check_services() {
+    if [ ! -f /bin/systemctl ]; then
+        # Not running systemd!? Don't check!
+        return 0
+    fi
+
+    for fname in api master minion syndic; do
+        # Skip salt-api since the service should be opt-in and not necessarily started on boot
+        [ $fname = "api" ] && continue
+
+        # Skip if not meant to be installed
+        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
+        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
+        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
+
+        __check_services_systemd salt-$fname || return 1
+    done
+
+    return 0
+}
+
+#
+#   End of SUSE Enterprise General Functions
+#
+#######################################################################################################################
+
+#######################################################################################################################
+#
+#    Gentoo Install Functions.
+#
+__autounmask() {
+    # Unmask package(s) and accept changes
+    #
+    # Usually it's a good thing to have config files protected by portage, but
+    # in this case this would require to interrupt the bootstrapping script at
+    # this point, manually merge the changes using etc-update/dispatch-conf/
+    # cfg-update and then restart the bootstrapping script, so instead we allow
+    # at this point to modify certain config files directly
+    export CONFIG_PROTECT_MASK="${CONFIG_PROTECT_MASK:-}
+        /etc/portage/package.accept_keywords
+        /etc/portage/package.keywords
+        /etc/portage/package.license
+        /etc/portage/package.unmask
+        /etc/portage/package.use"
+    emerge --autounmask --autounmask-continue --autounmask-only --autounmask-write "${@}"; return $?
+}
+
+__emerge() {
+    EMERGE_FLAGS='-q'
+    if [ "$_ECHO_DEBUG" -eq $BS_TRUE ]; then
+        EMERGE_FLAGS='-v'
+    fi
+
+    # Do not re-emerge packages that are already installed
+    EMERGE_FLAGS="${EMERGE_FLAGS} --noreplace"
+
+    if [ "$_GENTOO_USE_BINHOST" -eq $BS_TRUE ]; then
+        EMERGE_FLAGS="${EMERGE_FLAGS} --getbinpkg"
+    fi
+
+    # shellcheck disable=SC2086
+    emerge ${EMERGE_FLAGS} "${@}"; return $?
+}
+
+__gentoo_pre_dep() {
+    if [ "$_ECHO_DEBUG" -eq $BS_TRUE ]; then
+        if __check_command_exists eix; then
+            eix-sync
+        else
+            emerge --sync
+        fi
+    else
+        if __check_command_exists eix; then
+            eix-sync -q
+        else
+            emerge --sync --quiet
+        fi
+    fi
+    if [ ! -d /etc/portage ]; then
+        mkdir /etc/portage
+    fi
+
+    # Enable Python 3.6 target for pre Neon Salt release
+    if echo "${STABLE_REV}" | grep -q "2019" || [ "${ITYPE}" = "git" ] && [ "${_POST_NEON_INSTALL}" -eq $BS_FALSE ]; then
+        EXTRA_PYTHON_TARGET=python3_6
+    fi
+
+    # Enable Python 3.7 target for Salt Neon using GIT
+    if [ "${ITYPE}" = "git" ] && [ "${GIT_REV}" = "v3000" ]; then
+        EXTRA_PYTHON_TARGET=python3_7
+    fi
+
+    if [ -n "${EXTRA_PYTHON_TARGET:-}" ]; then
+        if ! emerge --info | sed 's/.*\(PYTHON_TARGETS="[^"]*"\).*/\1/' | grep -q "${EXTRA_PYTHON_TARGET}" ; then
+            echo "PYTHON_TARGETS=\"\${PYTHON_TARGETS} ${EXTRA_PYTHON_TARGET}\"" >> /etc/portage/make.conf
+            emerge --deep --with-bdeps=y --newuse --quiet @world
+        fi
+    fi
+}
+
+__gentoo_post_dep() {
+    if [ "${_EXTRA_PACKAGES}" != "" ]; then
+        echoinfo "Installing the following extra packages as requested: ${_EXTRA_PACKAGES}"
+        # shellcheck disable=SC2086
+        __autounmask ${_EXTRA_PACKAGES} || return 1
+        # shellcheck disable=SC2086
+        __emerge ${_EXTRA_PACKAGES} || return 1
+    fi
+
+    return 0
+}
+
+install_gentoo_deps() {
+    __gentoo_pre_dep || return 1
+
+    # Make sure that the 'libcloud' use flag is set when Salt Cloud support is requested
+    if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ]; then
+        SALT_USE_FILE='/etc/portage/package.use'
+        if [ -d '/etc/portage/package.use' ]; then
+            SALT_USE_FILE='/etc/portage/package.use/salt'
+        fi
+
+        SALT_USE_FLAGS="$(grep -E '^[<>=~]*app-admin/salt.*' ${SALT_USE_FILE} 2>/dev/null)"
+        SALT_USE_FLAG_LIBCLOUD="$(echo "${SALT_USE_FLAGS}" | grep ' libcloud' 2>/dev/null)"
+
+        # Set the libcloud use flag, if it is not set yet
+        if [ -z "${SALT_USE_FLAGS}" ]; then
+            echo "app-admin/salt libcloud" >> ${SALT_USE_FILE}
+        elif [ -z "${SALT_USE_FLAG_LIBCLOUD}" ]; then
+            sed 's#^\([<>=~]*app-admin/salt[^ ]*\)\(.*\)#\1 libcloud\2#g' -i ${SALT_USE_FILE}
+        fi
+    fi
+
+    __gentoo_post_dep || return 1
+}
+
+install_gentoo_git_deps() {
+    __gentoo_pre_dep || return 1
+
+    # Install pip if it does not exist
+    if ! __check_command_exists pip ; then
+        GENTOO_GIT_PACKAGES="${GENTOO_GIT_PACKAGES:-} dev-python/pip"
+    fi
+
+    # Install GIT if it does not exist
+    if ! __check_command_exists git ; then
+        GENTOO_GIT_PACKAGES="${GENTOO_GIT_PACKAGES:-} dev-vcs/git"
+    fi
+
+    # Salt <3000 does not automatically install dependencies. It has to be done manually.
+    if [ "${_POST_NEON_INSTALL}" -eq $BS_FALSE ]; then
+        GENTOO_GIT_PACKAGES="${GENTOO_GIT_PACKAGES:-}
+            sys-apps/pciutils
+            dev-python/pyyaml
+            dev-python/pyzmq
+            dev-python/libnacl
+            dev-python/pycryptodome
+            dev-python/py
+            dev-python/requests
+            <dev-python/msgpack-1.0
+            dev-python/jinja
+            dev-python/pyasn1
+            dev-python/markupsafe
+            dev-python/cython
+            dev-python/six
+            dev-python/idna
+            dev-python/pycurl
+            <www-servers/tornado-5.0"
+    fi
+
+    # Install libcloud when Salt Cloud support was requested
+    if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ]; then
+        GENTOO_GIT_PACKAGES="${GENTOO_GIT_PACKAGES:-} dev-python/libcloud"
+    fi
+
+    if [ -n "${GENTOO_GIT_PACKAGES:-}" ]; then
+        # shellcheck disable=SC2086
+        __autounmask ${GENTOO_GIT_PACKAGES} || return 1
+        # shellcheck disable=SC2086
+        __emerge ${GENTOO_GIT_PACKAGES} || return 1
+    fi
+
+    __git_clone_and_checkout || return 1
+    __gentoo_post_dep || return 1
+}
+
+install_gentoo_stable() {
+    GENTOO_SALT_PACKAGE="app-admin/salt"
+
+    STABLE_REV_WITHOUT_PREFIX=$(echo "${STABLE_REV}" | sed 's#archive/##')
+    if [ "${STABLE_REV_WITHOUT_PREFIX}" != "latest" ]; then
+        GENTOO_SALT_PACKAGE="=app-admin/salt-${STABLE_REV_WITHOUT_PREFIX}*"
+    fi
+
+    # shellcheck disable=SC2086
+    __autounmask ${GENTOO_SALT_PACKAGE} || return 1
+    # shellcheck disable=SC2086
+    __emerge ${GENTOO_SALT_PACKAGE} || return 1
+}
+
+install_gentoo_git() {
+    _PYEXE=${_PY_EXE}
+
+    if [ "$_PY_EXE" = "python3" ] || [ -z "$_PY_EXE" ]; then
+        if [ "${GIT_REV}" = "v3000" ]; then
+            # Salt Neon does not support Python 3.8 and greater
+            _PYEXE=python3.7
+        elif [ "${_POST_NEON_INSTALL}" -eq $BS_FALSE ]; then
+            # Tornado 4.3 ebuild supports only Python 3.6, use Python 3.6 as the default Python 3 interpreter
+            _PYEXE=python3.6
+        else
+            _PYEXE=$(emerge --info | grep -oE 'PYTHON_SINGLE_TARGET="[^"]*"' | sed -e 's/"//g' -e 's/_/./g' | cut -d= -f2)
+        fi
+    fi
+
+    if [ "${_POST_NEON_INSTALL}" -eq $BS_TRUE ]; then
+        __install_salt_from_repo_post_neon "${_PYEXE}" || return 1
+        return 0
+    fi
+
+    if [ -f "${_SALT_GIT_CHECKOUT_DIR}/salt/syspaths.py" ]; then
+        "${_PYEXE}" setup.py --salt-config-dir="$_SALT_ETC_DIR" --salt-cache-dir="${_SALT_CACHE_DIR}" ${SETUP_PY_INSTALL_ARGS} install || return 1
+    else
+        "${_PYEXE}" setup.py ${SETUP_PY_INSTALL_ARGS} install || return 1
+    fi
+
+    return 0
+}
+
+install_gentoo_post() {
+    for fname in api master minion syndic; do
+        # Skip salt-api since the service should be opt-in and not necessarily started on boot
+        [ $fname = "api" ] && continue
+
+        # Skip if not meant to be installed
+        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
+        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
+        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
+
+        if __check_command_exists systemctl ; then
+            systemctl is-enabled salt-$fname.service > /dev/null 2>&1 || (
+                systemctl preset salt-$fname.service > /dev/null 2>&1 &&
+                systemctl enable salt-$fname.service > /dev/null 2>&1
+            )
+        else
+            # Salt minion cannot start in a docker container because the "net" service is not available
+            if [ $fname = "minion" ] && [ -f /.dockerenv ]; then
+                sed '/need net/d' -i /etc/init.d/salt-$fname
+            fi
+
+            rc-update add "salt-$fname" > /dev/null 2>&1 || return 1
+        fi
+    done
+}
+
+install_gentoo_git_post() {
+    for fname in api master minion syndic; do
+        # Skip if not meant to be installed
+        [ $fname = "api" ] && \
+            ([ "$_INSTALL_MASTER" -eq $BS_FALSE ] || ! __check_command_exists "salt-${fname}") && continue
+        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
+        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
+        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
+
+        if __check_command_exists systemctl ; then
+            __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/salt-${fname}.service" "/lib/systemd/system/salt-${fname}.service"
+
+            # Skip salt-api since the service should be opt-in and not necessarily started on boot
+            [ $fname = "api" ] && continue
+
+            systemctl is-enabled salt-$fname.service > /dev/null 2>&1 || (
+                systemctl preset salt-$fname.service > /dev/null 2>&1 &&
+                systemctl enable salt-$fname.service > /dev/null 2>&1
+            )
+        else
+            cat <<_eof > "/etc/init.d/salt-${fname}"
+#!/sbin/openrc-run
+# Copyright 1999-2015 Gentoo Foundation
+# Distributed under the terms of the GNU General Public License v2
+
+command="/usr/bin/salt-${fname}"
+command_args="\${SALT_OPTS}"
+command_background="1"
+pidfile="/var/run/salt-${fname}.pid"
+name="SALT ${fname} daemon"
+retry="20"
+
+depend() {
+        use net logger
+}
+_eof
+            chmod +x /etc/init.d/salt-$fname
+
+            cat <<_eof > "/etc/conf.d/salt-${fname}"
+# /etc/conf.d/salt-${fname}: config file for /etc/init.d/salt-master
+
+# see man pages for salt-${fname} or run 'salt-${fname} --help'
+# for valid cmdline options
+SALT_OPTS="--log-level=warning"
+_eof
+
+            # Skip salt-api since the service should be opt-in and not necessarily started on boot
+            [ $fname = "api" ] && continue
+
+            rc-update add "salt-$fname" > /dev/null 2>&1 || return 1
+        fi
+    done
+
+    return 0
+}
+
+install_gentoo_restart_daemons() {
+    [ $_START_DAEMONS -eq $BS_FALSE ] && return
+
+    # Ensure upstart configs / systemd units are loaded
+    if __check_command_exists systemctl ; then
+        systemctl daemon-reload
+    fi
+
+    for fname in api master minion syndic; do
+        # Skip salt-api since the service should be opt-in and not necessarily started on boot
+        [ $fname = "api" ] && continue
+
+        # Skip if not meant to be installed
+        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
+        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
+        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
+
+        if __check_command_exists systemctl ; then
+            systemctl stop salt-$fname > /dev/null 2>&1
+            systemctl start salt-$fname.service && continue
+            echodebug "Failed to start salt-$fname using systemd"
+            if [ "$_ECHO_DEBUG" -eq $BS_TRUE ]; then
+                systemctl status salt-$fname.service
+                journalctl -xe
+            fi
+        else
+            # Disable stdin to fix shell session hang on killing tee pipe
+            rc-service salt-$fname stop < /dev/null > /dev/null 2>&1
+            rc-service salt-$fname start < /dev/null || return 1
+        fi
+    done
+
+    return 0
+}
+
+install_gentoo_check_services() {
+    for fname in api master minion syndic; do
+        # Skip salt-api since the service should be opt-in and not necessarily started on boot
+        [ $fname = "api" ] && continue
+
+        # Skip if not meant to be installed
+        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
+        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
+        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
+
+        if __check_command_exists systemctl ; then
+            __check_services_systemd salt-$fname || return 1
+        else
+            __check_services_openrc salt-$fname || return 1
+        fi
+    done
+
+    return 0
+}
+#
+#   End of Gentoo Install Functions.
+#
+#######################################################################################################################
+
+#######################################################################################################################
+#
+#   VoidLinux Install Functions
+#
+install_voidlinux_stable_deps() {
+    if [ "$_UPGRADE_SYS" -eq $BS_TRUE ]; then
+        xbps-install -Suy || return 1
+    fi
+
+    if [ "${_EXTRA_PACKAGES}" != "" ]; then
+        echoinfo "Installing the following extra packages as requested: ${_EXTRA_PACKAGES}"
+        xbps-install -Suy "${_EXTRA_PACKAGES}" || return 1
+    fi
+
+    return 0
+}
+
+install_voidlinux_stable() {
+    xbps-install -Suy salt || return 1
+    return 0
+}
+
+install_voidlinux_stable_post() {
+    for fname in master minion syndic; do
+        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
+        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
+        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
+
+        ln -s /etc/sv/salt-$fname /var/service/.
+    done
+}
+
+install_voidlinux_restart_daemons() {
+    [ $_START_DAEMONS -eq $BS_FALSE ] && return
+
+    for fname in master minion syndic; do
+        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
+        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
+        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
+
+        sv restart salt-$fname
+    done
+}
+
+install_voidlinux_check_services() {
+    for fname in master minion syndic; do
+        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
+        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
+        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
+
+        [ -e /var/service/salt-$fname ] || return 1
+    done
+
+    return 0
+}
+
+daemons_running_voidlinux() {
+    [ "$_START_DAEMONS" -eq $BS_FALSE ] && return 0
+
+    FAILED_DAEMONS=0
+    for fname in master minion syndic; do
+        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
+        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
+        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
+
+        if [ "$(sv status salt-$fname | grep run)" = "" ]; then
+            echoerror "salt-$fname was not found running"
+            FAILED_DAEMONS=$((FAILED_DAEMONS + 1))
+        fi
+    done
+
+    return $FAILED_DAEMONS
+}
+#
+#   Ended VoidLinux Install Functions
+#
+#######################################################################################################################
+
+#######################################################################################################################
+#
+#   OS X / Darwin Install Functions
+#
+
+__macosx_get_packagesite() {
+    DARWIN_ARCH="x86_64"
+
+    __PY_VERSION_REPO="py2"
+    if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
+        __PY_VERSION_REPO="py3"
+    fi
+
+    PKG="salt-${STABLE_REV}-${__PY_VERSION_REPO}-${DARWIN_ARCH}.pkg"
+    SALTPKGCONFURL="https://repo.saltproject.io/osx/${PKG}"
+}
+
+# Using a separate conf step to head for idempotent install...
+__configure_macosx_pkg_details() {
+    __macosx_get_packagesite || return 1
+    return 0
+}
+
+install_macosx_stable_deps() {
+    __configure_macosx_pkg_details || return 1
+    return 0
+}
+
+install_macosx_git_deps() {
+    install_macosx_stable_deps || return 1
+
+    if ! echo "$PATH" | grep -q /usr/local/bin; then
+        echowarn "/usr/local/bin was not found in \$PATH. Adding it for the duration of the script execution."
+        export PATH=/usr/local/bin:$PATH
+    fi
+
+    __fetch_url "/tmp/get-pip.py" "https://bootstrap.pypa.io/get-pip.py" || return 1
+
+    if [ -n "$_PY_EXE" ]; then
+        _PYEXE=${_PY_EXE}
+    else
+        _PYEXE=python2.7
+    fi
+
+    # Install PIP
+    $_PYEXE /tmp/get-pip.py || return 1
+
+    __git_clone_and_checkout || return 1
+
+    if [ "${_POST_NEON_INSTALL}" -eq $BS_TRUE ]; then
+        return 0
+    fi
+
+    __PIP_REQUIREMENTS="dev_python27.txt"
+    if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
+        __PIP_REQUIREMENTS="dev_python34.txt"
+    fi
+
+    requirements_file="${_SALT_GIT_CHECKOUT_DIR}/requirements/${__PIP_REQUIREMENTS}"
+    pip install -U -r "${requirements_file}" --install-option="--prefix=/opt/salt" || return 1
+
+    return 0
+}
+
+install_macosx_stable() {
+    install_macosx_stable_deps || return 1
+
+    __fetch_url "/tmp/${PKG}" "${SALTPKGCONFURL}" || return 1
+
+    /usr/sbin/installer -pkg "/tmp/${PKG}" -target / || return 1
+
+    return 0
+}
+
+install_macosx_git() {
+
+    if [ -n "$_PY_EXE" ]; then
+        _PYEXE=${_PY_EXE}
+    else
+        _PYEXE=python2.7
+    fi
+
+    if [ "${_POST_NEON_INSTALL}" -eq $BS_TRUE ]; then
+         __install_salt_from_repo_post_neon "${_PY_EXE}" || return 1
+        return 0
+    fi
+
+    if [ -f "${_SALT_GIT_CHECKOUT_DIR}/salt/syspaths.py" ]; then
+        $_PYEXE setup.py --salt-config-dir="$_SALT_ETC_DIR" --salt-cache-dir="${_SALT_CACHE_DIR}" ${SETUP_PY_INSTALL_ARGS} install --prefix=/opt/salt || return 1
+    else
+        $_PYEXE setup.py ${SETUP_PY_INSTALL_ARGS} install --prefix=/opt/salt || return 1
+    fi
+
+    return 0
+}
+
+install_macosx_stable_post() {
+    if [ ! -f /etc/paths.d/salt ]; then
+        print "%s\n" "/opt/salt/bin" "/usr/local/sbin" > /etc/paths.d/salt
+    fi
+
+     # Don'f fail because of unknown variable on the next step
+    set +o nounset
+    # shellcheck disable=SC1091
+    . /etc/profile
+    # Revert nounset to it's previous state
+    set -o nounset
+
+    return 0
+}
+
+install_macosx_git_post() {
+    install_macosx_stable_post || return 1
+    return 0
+}
+
+install_macosx_restart_daemons() {
+    [ $_START_DAEMONS -eq $BS_FALSE ] && return
+
+    /bin/launchctl unload -w /Library/LaunchDaemons/com.saltstack.salt.minion.plist || return 1
+    /bin/launchctl load -w /Library/LaunchDaemons/com.saltstack.salt.minion.plist || return 1
+
+   return 0
+}
+#
+#   Ended OS X / Darwin Install Functions
+#
+#######################################################################################################################
+
+#######################################################################################################################
+#
+#   Default minion configuration function. Matches ANY distribution as long as
+#   the -c options is passed.
+#
+config_salt() {
+    # If the configuration directory is not passed, return
+    [ "$_TEMP_CONFIG_DIR" = "null" ] && return
+
+    if [ "$_CONFIG_ONLY" -eq $BS_TRUE ]; then
+        echowarn "Passing -C (config only) option implies -F (forced overwrite)."
+
+        if [ "$_FORCE_OVERWRITE" -ne $BS_TRUE ]; then
+            echowarn "Overwriting configs in 11 seconds!"
+            sleep 11
+            _FORCE_OVERWRITE=$BS_TRUE
+        fi
+    fi
+
+    # Let's create the necessary directories
+    [ -d "$_SALT_ETC_DIR" ] || mkdir "$_SALT_ETC_DIR" || return 1
+    [ -d "$_PKI_DIR" ] || (mkdir -p "$_PKI_DIR" && chmod 700 "$_PKI_DIR") || return 1
+
+    # If -C or -F was passed, we don't need a .bak file for the config we're updating
+    # This is used in the custom master/minion config file checks below
+    CREATE_BAK=$BS_TRUE
+    if [ "$_FORCE_OVERWRITE" -eq $BS_TRUE ]; then
+        CREATE_BAK=$BS_FALSE
+    fi
+
+    CONFIGURED_ANYTHING=$BS_FALSE
+
+    # Copy the grains file if found
+    if [ -f "$_TEMP_CONFIG_DIR/grains" ]; then
+        echodebug "Moving provided grains file from $_TEMP_CONFIG_DIR/grains to $_SALT_ETC_DIR/grains"
+        __movefile "$_TEMP_CONFIG_DIR/grains" "$_SALT_ETC_DIR/grains" || return 1
+        CONFIGURED_ANYTHING=$BS_TRUE
+    fi
+
+    if [ "$_INSTALL_MINION" -eq $BS_TRUE ] || \
+        [ "$_CONFIG_ONLY" -eq $BS_TRUE ] || [ "$_CUSTOM_MINION_CONFIG" != "null" ]; then
+        # Create the PKI directory
+        [ -d "$_PKI_DIR/minion" ] || (mkdir -p "$_PKI_DIR/minion" && chmod 700 "$_PKI_DIR/minion") || return 1
+
+        # Check to see if a custom minion config json dict was provided
+        if [ "$_CUSTOM_MINION_CONFIG" != "null" ]; then
+
+            # Check if a minion config file already exists and move to .bak if needed
+            if [ -f "$_SALT_ETC_DIR/minion" ] && [ "$CREATE_BAK" -eq "$BS_TRUE" ]; then
+                __movefile "$_SALT_ETC_DIR/minion" "$_SALT_ETC_DIR/minion.bak" $BS_TRUE || return 1
+                CONFIGURED_ANYTHING=$BS_TRUE
+            fi
+
+            # Overwrite/create the config file with the yaml string
+            __overwriteconfig "$_SALT_ETC_DIR/minion" "$_CUSTOM_MINION_CONFIG" || return 1
+            CONFIGURED_ANYTHING=$BS_TRUE
+
+        # Copy the minions configuration if found
+        # Explicitly check for custom master config to avoid moving the minion config
+        elif [ -f "$_TEMP_CONFIG_DIR/minion" ] && [ "$_CUSTOM_MASTER_CONFIG" = "null" ]; then
+            __movefile "$_TEMP_CONFIG_DIR/minion" "$_SALT_ETC_DIR" "$_FORCE_OVERWRITE" || return 1
+            CONFIGURED_ANYTHING=$BS_TRUE
+        fi
+
+        # Copy the minion's keys if found
+        if [ -f "$_TEMP_CONFIG_DIR/minion.pem" ]; then
+            __movefile "$_TEMP_CONFIG_DIR/minion.pem" "$_PKI_DIR/minion/" "$_FORCE_OVERWRITE" || return 1
+            chmod 400 "$_PKI_DIR/minion/minion.pem" || return 1
+            CONFIGURED_ANYTHING=$BS_TRUE
+        fi
+        if [ -f "$_TEMP_CONFIG_DIR/minion.pub" ]; then
+            __movefile "$_TEMP_CONFIG_DIR/minion.pub" "$_PKI_DIR/minion/" "$_FORCE_OVERWRITE" || return 1
+            chmod 664 "$_PKI_DIR/minion/minion.pub" || return 1
+            CONFIGURED_ANYTHING=$BS_TRUE
+        fi
+        # For multi-master-pki, copy the master_sign public key if found
+        if [ -f "$_TEMP_CONFIG_DIR/master_sign.pub" ]; then
+            __movefile "$_TEMP_CONFIG_DIR/master_sign.pub" "$_PKI_DIR/minion/" || return 1
+            chmod 664 "$_PKI_DIR/minion/master_sign.pub" || return 1
+            CONFIGURED_ANYTHING=$BS_TRUE
+        fi
+    fi
+
+    # only (re)place master or syndic configs if -M (install master) or -S
+    # (install syndic) specified
+    OVERWRITE_MASTER_CONFIGS=$BS_FALSE
+    if [ "$_INSTALL_MASTER" -eq $BS_TRUE ] && [ "$_CONFIG_ONLY" -eq $BS_TRUE ]; then
+        OVERWRITE_MASTER_CONFIGS=$BS_TRUE
+    fi
+    if [ "$_INSTALL_SYNDIC" -eq $BS_TRUE ] && [ "$_CONFIG_ONLY" -eq $BS_TRUE ]; then
+        OVERWRITE_MASTER_CONFIGS=$BS_TRUE
+    fi
+
+    if [ "$_INSTALL_MASTER" -eq $BS_TRUE ] || [ "$_INSTALL_SYNDIC" -eq $BS_TRUE ] || [ "$OVERWRITE_MASTER_CONFIGS" -eq $BS_TRUE ] || [ "$_CUSTOM_MASTER_CONFIG" != "null" ]; then
+        # Create the PKI directory
+        [ -d "$_PKI_DIR/master" ] || (mkdir -p "$_PKI_DIR/master" && chmod 700 "$_PKI_DIR/master") || return 1
+
+        # Check to see if a custom master config json dict was provided
+        if [ "$_CUSTOM_MASTER_CONFIG" != "null" ]; then
+
+            # Check if a master config file already exists and move to .bak if needed
+            if [ -f "$_SALT_ETC_DIR/master" ] && [ "$CREATE_BAK" -eq "$BS_TRUE" ]; then
+                __movefile "$_SALT_ETC_DIR/master" "$_SALT_ETC_DIR/master.bak" $BS_TRUE || return 1
+                CONFIGURED_ANYTHING=$BS_TRUE
+            fi
+
+            # Overwrite/create the config file with the yaml string
+            __overwriteconfig "$_SALT_ETC_DIR/master" "$_CUSTOM_MASTER_CONFIG" || return 1
+            CONFIGURED_ANYTHING=$BS_TRUE
+
+        # Copy the masters configuration if found
+        elif [ -f "$_TEMP_CONFIG_DIR/master" ]; then
+            __movefile "$_TEMP_CONFIG_DIR/master" "$_SALT_ETC_DIR" || return 1
+            CONFIGURED_ANYTHING=$BS_TRUE
+        fi
+
+        # Copy the master's keys if found
+        if [ -f "$_TEMP_CONFIG_DIR/master.pem" ]; then
+            __movefile "$_TEMP_CONFIG_DIR/master.pem" "$_PKI_DIR/master/" || return 1
+            chmod 400 "$_PKI_DIR/master/master.pem" || return 1
+            CONFIGURED_ANYTHING=$BS_TRUE
+        fi
+        if [ -f "$_TEMP_CONFIG_DIR/master.pub" ]; then
+            __movefile "$_TEMP_CONFIG_DIR/master.pub" "$_PKI_DIR/master/" || return 1
+            chmod 664 "$_PKI_DIR/master/master.pub" || return 1
+            CONFIGURED_ANYTHING=$BS_TRUE
+        fi
+    fi
+
+    if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ]; then
+        # Recursively copy salt-cloud configs with overwriting if necessary
+        for file in "$_TEMP_CONFIG_DIR"/cloud*; do
+            if [ -f "$file" ]; then
+                __copyfile "$file" "$_SALT_ETC_DIR" || return 1
+            elif [ -d "$file" ]; then
+                subdir="$(basename "$file")"
+                mkdir -p "$_SALT_ETC_DIR/$subdir"
+                for file_d in "$_TEMP_CONFIG_DIR/$subdir"/*; do
+                    if [ -f "$file_d" ]; then
+                        __copyfile "$file_d" "$_SALT_ETC_DIR/$subdir" || return 1
+                    fi
+                done
+            fi
+        done
+    fi
+
+    if [ "$_CONFIG_ONLY" -eq $BS_TRUE ] && [ $CONFIGURED_ANYTHING -eq $BS_FALSE ]; then
+        echowarn "No configuration or keys were copied over. No configuration was done!"
+        exit 0
+    fi
+
+    return 0
+}
+#
+#  Ended Default Configuration function
+#
+#######################################################################################################################
+
+#######################################################################################################################
+#
+#   Default salt master minion keys pre-seed function. Matches ANY distribution
+#   as long as the -k option is passed.
+#
+preseed_master() {
+    # Create the PKI directory
+
+    if [ "$(find "$_TEMP_KEYS_DIR" -maxdepth 1 -type f | wc -l)" -lt 1 ]; then
+        echoerror "No minion keys were uploaded. Unable to pre-seed master"
+        return 1
+    fi
+
+    SEED_DEST="$_PKI_DIR/master/minions"
+    [ -d "$SEED_DEST" ] || (mkdir -p "$SEED_DEST" && chmod 700 "$SEED_DEST") || return 1
+
+    for keyfile in "$_TEMP_KEYS_DIR"/*; do
+        keyfile=$(basename "${keyfile}")
+        src_keyfile="${_TEMP_KEYS_DIR}/${keyfile}"
+        dst_keyfile="${SEED_DEST}/${keyfile}"
+
+        # If it's not a file, skip to the next
+        [ ! -f "$src_keyfile" ] && continue
+
+        __movefile "$src_keyfile" "$dst_keyfile" || return 1
+        chmod 664 "$dst_keyfile" || return 1
+    done
+
+    return 0
+}
+#
+#  Ended Default Salt Master Pre-Seed minion keys function
+#
+#######################################################################################################################
+
+#######################################################################################################################
+#
+#   This function checks if all of the installed daemons are running or not.
+#
+daemons_running() {
+    [ "$_START_DAEMONS" -eq $BS_FALSE ] && return 0
+
+    FAILED_DAEMONS=0
+    for fname in api master minion syndic; do
+        # Skip salt-api since the service should be opt-in and not necessarily started on boot
+        [ $fname = "api" ] && continue
+
+        # Skip if not meant to be installed
+        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
+        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
+        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
+
+        # shellcheck disable=SC2009
+        if [ "${DISTRO_NAME}" = "SmartOS" ]; then
+            if [ "$(svcs -Ho STA salt-$fname)" != "ON" ]; then
+                echoerror "salt-$fname was not found running"
+                FAILED_DAEMONS=$((FAILED_DAEMONS + 1))
+            fi
+        elif [ "$(ps wwwaux | grep -v grep | grep salt-$fname)" = "" ]; then
+            echoerror "salt-$fname was not found running"
+            FAILED_DAEMONS=$((FAILED_DAEMONS + 1))
+        fi
+    done
+
+    return $FAILED_DAEMONS
+}
+#
+#  Ended daemons running check function
+#
+#######################################################################################################################
+
+#======================================================================================================================
+# LET'S PROCEED WITH OUR INSTALLATION
+#======================================================================================================================
+
+# Let's get the dependencies install function
+DEP_FUNC_NAMES=""
+if [ ${_NO_DEPS} -eq $BS_FALSE ]; then
+    DEP_FUNC_NAMES="install_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}_${ITYPE}_deps"
+    DEP_FUNC_NAMES="$DEP_FUNC_NAMES install_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}${PREFIXED_DISTRO_MINOR_VERSION}_${ITYPE}_deps"
+    DEP_FUNC_NAMES="$DEP_FUNC_NAMES install_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}_deps"
+    DEP_FUNC_NAMES="$DEP_FUNC_NAMES install_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}${PREFIXED_DISTRO_MINOR_VERSION}_deps"
+    DEP_FUNC_NAMES="$DEP_FUNC_NAMES install_${DISTRO_NAME_L}_${ITYPE}_deps"
+    DEP_FUNC_NAMES="$DEP_FUNC_NAMES install_${DISTRO_NAME_L}_deps"
+fi
+
+DEPS_INSTALL_FUNC="null"
+for FUNC_NAME in $(__strip_duplicates "$DEP_FUNC_NAMES"); do
+    if __function_defined "$FUNC_NAME"; then
+        DEPS_INSTALL_FUNC="$FUNC_NAME"
+        break
+    fi
+done
+echodebug "DEPS_INSTALL_FUNC=${DEPS_INSTALL_FUNC}"
+
+# Let's get the Salt config function
+CONFIG_FUNC_NAMES="config_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}_${ITYPE}_salt"
+CONFIG_FUNC_NAMES="$CONFIG_FUNC_NAMES config_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}${PREFIXED_DISTRO_MINOR_VERSION}_${ITYPE}_salt"
+CONFIG_FUNC_NAMES="$CONFIG_FUNC_NAMES config_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}_salt"
+CONFIG_FUNC_NAMES="$CONFIG_FUNC_NAMES config_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}${PREFIXED_DISTRO_MINOR_VERSION}_salt"
+CONFIG_FUNC_NAMES="$CONFIG_FUNC_NAMES config_${DISTRO_NAME_L}_${ITYPE}_salt"
+CONFIG_FUNC_NAMES="$CONFIG_FUNC_NAMES config_${DISTRO_NAME_L}_salt"
+CONFIG_FUNC_NAMES="$CONFIG_FUNC_NAMES config_salt"
+
+CONFIG_SALT_FUNC="null"
+for FUNC_NAME in $(__strip_duplicates "$CONFIG_FUNC_NAMES"); do
+    if __function_defined "$FUNC_NAME"; then
+        CONFIG_SALT_FUNC="$FUNC_NAME"
+        break
+    fi
+done
+echodebug "CONFIG_SALT_FUNC=${CONFIG_SALT_FUNC}"
+
+# Let's get the pre-seed master function
+PRESEED_FUNC_NAMES="preseed_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}_${ITYPE}_master"
+PRESEED_FUNC_NAMES="$PRESEED_FUNC_NAMES preseed_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}${PREFIXED_DISTRO_MINOR_VERSION}_${ITYPE}_master"
+PRESEED_FUNC_NAMES="$PRESEED_FUNC_NAMES preseed_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}_master"
+PRESEED_FUNC_NAMES="$PRESEED_FUNC_NAMES preseed_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}${PREFIXED_DISTRO_MINOR_VERSION}_master"
+PRESEED_FUNC_NAMES="$PRESEED_FUNC_NAMES preseed_${DISTRO_NAME_L}_${ITYPE}_master"
+PRESEED_FUNC_NAMES="$PRESEED_FUNC_NAMES preseed_${DISTRO_NAME_L}_master"
+PRESEED_FUNC_NAMES="$PRESEED_FUNC_NAMES preseed_master"
+
+PRESEED_MASTER_FUNC="null"
+for FUNC_NAME in $(__strip_duplicates "$PRESEED_FUNC_NAMES"); do
+    if __function_defined "$FUNC_NAME"; then
+        PRESEED_MASTER_FUNC="$FUNC_NAME"
+        break
+    fi
+done
+echodebug "PRESEED_MASTER_FUNC=${PRESEED_MASTER_FUNC}"
+
+# Let's get the install function
+INSTALL_FUNC_NAMES="install_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}_${ITYPE}"
+INSTALL_FUNC_NAMES="$INSTALL_FUNC_NAMES install_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}${PREFIXED_DISTRO_MINOR_VERSION}_${ITYPE}"
+INSTALL_FUNC_NAMES="$INSTALL_FUNC_NAMES install_${DISTRO_NAME_L}_${ITYPE}"
+
+INSTALL_FUNC="null"
+for FUNC_NAME in $(__strip_duplicates "$INSTALL_FUNC_NAMES"); do
+    if __function_defined "$FUNC_NAME"; then
+        INSTALL_FUNC="$FUNC_NAME"
+        break
+    fi
+done
+echodebug "INSTALL_FUNC=${INSTALL_FUNC}"
+
+# Let's get the post install function
+POST_FUNC_NAMES="install_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}_${ITYPE}_post"
+POST_FUNC_NAMES="$POST_FUNC_NAMES install_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}${PREFIXED_DISTRO_MINOR_VERSION}_${ITYPE}_post"
+POST_FUNC_NAMES="$POST_FUNC_NAMES install_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}_post"
+POST_FUNC_NAMES="$POST_FUNC_NAMES install_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}${PREFIXED_DISTRO_MINOR_VERSION}_post"
+POST_FUNC_NAMES="$POST_FUNC_NAMES install_${DISTRO_NAME_L}_${ITYPE}_post"
+POST_FUNC_NAMES="$POST_FUNC_NAMES install_${DISTRO_NAME_L}_post"
+
+POST_INSTALL_FUNC="null"
+for FUNC_NAME in $(__strip_duplicates "$POST_FUNC_NAMES"); do
+    if __function_defined "$FUNC_NAME"; then
+        POST_INSTALL_FUNC="$FUNC_NAME"
+        break
+    fi
+done
+echodebug "POST_INSTALL_FUNC=${POST_INSTALL_FUNC}"
+
+# Let's get the start daemons install function
+STARTDAEMONS_FUNC_NAMES="install_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}_${ITYPE}_restart_daemons"
+STARTDAEMONS_FUNC_NAMES="$STARTDAEMONS_FUNC_NAMES install_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}${PREFIXED_DISTRO_MINOR_VERSION}_${ITYPE}_restart_daemons"
+STARTDAEMONS_FUNC_NAMES="$STARTDAEMONS_FUNC_NAMES install_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}_restart_daemons"
+STARTDAEMONS_FUNC_NAMES="$STARTDAEMONS_FUNC_NAMES install_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}${PREFIXED_DISTRO_MINOR_VERSION}_restart_daemons"
+STARTDAEMONS_FUNC_NAMES="$STARTDAEMONS_FUNC_NAMES install_${DISTRO_NAME_L}_${ITYPE}_restart_daemons"
+STARTDAEMONS_FUNC_NAMES="$STARTDAEMONS_FUNC_NAMES install_${DISTRO_NAME_L}_restart_daemons"
+
+STARTDAEMONS_INSTALL_FUNC="null"
+for FUNC_NAME in $(__strip_duplicates "$STARTDAEMONS_FUNC_NAMES"); do
+    if __function_defined "$FUNC_NAME"; then
+        STARTDAEMONS_INSTALL_FUNC="$FUNC_NAME"
+        break
+    fi
+done
+echodebug "STARTDAEMONS_INSTALL_FUNC=${STARTDAEMONS_INSTALL_FUNC}"
+
+# Let's get the daemons running check function.
+DAEMONS_RUNNING_FUNC_NAMES="daemons_running_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}_${ITYPE}"
+DAEMONS_RUNNING_FUNC_NAMES="$DAEMONS_RUNNING_FUNC_NAMES daemons_running_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}${PREFIXED_DISTRO_MINOR_VERSION}_${ITYPE}"
+DAEMONS_RUNNING_FUNC_NAMES="$DAEMONS_RUNNING_FUNC_NAMES daemons_running_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}"
+DAEMONS_RUNNING_FUNC_NAMES="$DAEMONS_RUNNING_FUNC_NAMES daemons_running_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}${PREFIXED_DISTRO_MINOR_VERSION}"
+DAEMONS_RUNNING_FUNC_NAMES="$DAEMONS_RUNNING_FUNC_NAMES daemons_running_${DISTRO_NAME_L}_${ITYPE}"
+DAEMONS_RUNNING_FUNC_NAMES="$DAEMONS_RUNNING_FUNC_NAMES daemons_running_${DISTRO_NAME_L}"
+DAEMONS_RUNNING_FUNC_NAMES="$DAEMONS_RUNNING_FUNC_NAMES daemons_running"
+
+DAEMONS_RUNNING_FUNC="null"
+for FUNC_NAME in $(__strip_duplicates "$DAEMONS_RUNNING_FUNC_NAMES"); do
+    if __function_defined "$FUNC_NAME"; then
+        DAEMONS_RUNNING_FUNC="$FUNC_NAME"
+        break
+    fi
+done
+echodebug "DAEMONS_RUNNING_FUNC=${DAEMONS_RUNNING_FUNC}"
+
+# Let's get the check services function
+if [ ${_DISABLE_SALT_CHECKS} -eq $BS_FALSE ]; then
+    CHECK_SERVICES_FUNC_NAMES="install_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}_${ITYPE}_check_services"
+    CHECK_SERVICES_FUNC_NAMES="$CHECK_SERVICES_FUNC_NAMES install_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}${PREFIXED_DISTRO_MINOR_VERSION}_${ITYPE}_check_services"
+    CHECK_SERVICES_FUNC_NAMES="$CHECK_SERVICES_FUNC_NAMES install_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}_check_services"
+    CHECK_SERVICES_FUNC_NAMES="$CHECK_SERVICES_FUNC_NAMES install_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}${PREFIXED_DISTRO_MINOR_VERSION}_check_services"
+    CHECK_SERVICES_FUNC_NAMES="$CHECK_SERVICES_FUNC_NAMES install_${DISTRO_NAME_L}_${ITYPE}_check_services"
+    CHECK_SERVICES_FUNC_NAMES="$CHECK_SERVICES_FUNC_NAMES install_${DISTRO_NAME_L}_check_services"
+else
+    CHECK_SERVICES_FUNC_NAMES=""
+fi
+
+CHECK_SERVICES_FUNC="null"
+for FUNC_NAME in $(__strip_duplicates "$CHECK_SERVICES_FUNC_NAMES"); do
+    if __function_defined "$FUNC_NAME"; then
+        CHECK_SERVICES_FUNC="$FUNC_NAME"
+        break
+    fi
+done
+echodebug "CHECK_SERVICES_FUNC=${CHECK_SERVICES_FUNC}"
+
+if [ ${_NO_DEPS} -eq $BS_FALSE ] && [ "$DEPS_INSTALL_FUNC" = "null" ]; then
+    echoerror "No dependencies installation function found. Exiting..."
+    exit 1
+fi
+
+if [ "$INSTALL_FUNC" = "null" ]; then
+    echoerror "No installation function found. Exiting..."
+    exit 1
+fi
+
+
+# Install dependencies
+if [ ${_NO_DEPS} -eq $BS_FALSE ] && [ $_CONFIG_ONLY -eq $BS_FALSE ]; then
+    # Only execute function is not in config mode only
+    echoinfo "Running ${DEPS_INSTALL_FUNC}()"
+    if ! ${DEPS_INSTALL_FUNC}; then
+        echoerror "Failed to run ${DEPS_INSTALL_FUNC}()!!!"
+        exit 1
+    fi
+fi
+
+
+if [ "${ITYPE}" = "git" ] && [ ${_NO_DEPS} -eq ${BS_TRUE} ]; then
+    if ! __git_clone_and_checkout; then
+        echo "Failed to clone and checkout git repository."
+        exit 1
+    fi
+fi
+
+
+# Triggering config_salt() if overwriting master or minion configs
+if [ "$_CUSTOM_MASTER_CONFIG" != "null" ] || [ "$_CUSTOM_MINION_CONFIG" != "null" ]; then
+    if [ "$_TEMP_CONFIG_DIR" = "null" ]; then
+        _TEMP_CONFIG_DIR="$_SALT_ETC_DIR"
+    fi
+
+    if [ ${_NO_DEPS} -eq $BS_FALSE ] && [ $_CONFIG_ONLY -eq $BS_TRUE ]; then
+        # Execute function to satisfy dependencies for configuration step
+        echoinfo "Running ${DEPS_INSTALL_FUNC}()"
+        if ! ${DEPS_INSTALL_FUNC}; then
+            echoerror "Failed to run ${DEPS_INSTALL_FUNC}()!!!"
+            exit 1
+        fi
+    fi
+fi
+
+# Configure Salt
+if [ "$CONFIG_SALT_FUNC" != "null" ] && [ "$_TEMP_CONFIG_DIR" != "null" ]; then
+    echoinfo "Running ${CONFIG_SALT_FUNC}()"
+    if ! ${CONFIG_SALT_FUNC}; then
+        echoerror "Failed to run ${CONFIG_SALT_FUNC}()!!!"
+        exit 1
+    fi
+fi
+
+# Drop the master address if passed
+if [ "$_SALT_MASTER_ADDRESS" != "null" ]; then
+    [ ! -d "$_SALT_ETC_DIR/minion.d" ] && mkdir -p "$_SALT_ETC_DIR/minion.d"
+    cat <<_eof > "$_SALT_ETC_DIR/minion.d/99-master-address.conf"
+master: $_SALT_MASTER_ADDRESS
+_eof
+fi
+
+# Drop the minion id if passed
+if [ "$_SALT_MINION_ID" != "null" ]; then
+    [ ! -d "$_SALT_ETC_DIR" ] && mkdir -p "$_SALT_ETC_DIR"
+    echo "$_SALT_MINION_ID" > "$_SALT_ETC_DIR/minion_id"
+fi
+
+# Pre-seed master keys
+if [ "$PRESEED_MASTER_FUNC" != "null" ] && [ "$_TEMP_KEYS_DIR" != "null" ]; then
+    echoinfo "Running ${PRESEED_MASTER_FUNC}()"
+    if ! ${PRESEED_MASTER_FUNC}; then
+        echoerror "Failed to run ${PRESEED_MASTER_FUNC}()!!!"
+        exit 1
+    fi
+fi
+
+# Install Salt
+if [ "$_CONFIG_ONLY" -eq $BS_FALSE ]; then
+    # Only execute function is not in config mode only
+    echoinfo "Running ${INSTALL_FUNC}()"
+    if ! ${INSTALL_FUNC}; then
+        echoerror "Failed to run ${INSTALL_FUNC}()!!!"
+        exit 1
+    fi
+fi
+
+# Run any post install function. Only execute function if not in config mode only
+if [ "$POST_INSTALL_FUNC" != "null" ] && [ "$_CONFIG_ONLY" -eq $BS_FALSE ]; then
+    echoinfo "Running ${POST_INSTALL_FUNC}()"
+    if ! ${POST_INSTALL_FUNC}; then
+        echoerror "Failed to run ${POST_INSTALL_FUNC}()!!!"
+        exit 1
+    fi
+fi
+
+# Run any check services function, Only execute function if not in config mode only
+if [ "$CHECK_SERVICES_FUNC" != "null" ] && [ "$_CONFIG_ONLY" -eq $BS_FALSE ]; then
+    echoinfo "Running ${CHECK_SERVICES_FUNC}()"
+    if ! ${CHECK_SERVICES_FUNC}; then
+        echoerror "Failed to run ${CHECK_SERVICES_FUNC}()!!!"
+        exit 1
+    fi
+fi
+
+# Run any start daemons function
+if [ "$STARTDAEMONS_INSTALL_FUNC" != "null" ] && [ ${_START_DAEMONS} -eq $BS_TRUE ]; then
+    echoinfo "Running ${STARTDAEMONS_INSTALL_FUNC}()"
+    echodebug "Waiting ${_SLEEP} seconds for processes to settle before checking for them"
+    sleep ${_SLEEP}
+    if ! ${STARTDAEMONS_INSTALL_FUNC}; then
+        echoerror "Failed to run ${STARTDAEMONS_INSTALL_FUNC}()!!!"
+        exit 1
+    fi
+fi
+
+# Check if the installed daemons are running or not
+if [ "$DAEMONS_RUNNING_FUNC" != "null" ] && [ ${_START_DAEMONS} -eq $BS_TRUE ]; then
+    echoinfo "Running ${DAEMONS_RUNNING_FUNC}()"
+    echodebug "Waiting ${_SLEEP} seconds for processes to settle before checking for them"
+    sleep ${_SLEEP}  # Sleep a little bit to let daemons start
+    if ! ${DAEMONS_RUNNING_FUNC}; then
+        echoerror "Failed to run ${DAEMONS_RUNNING_FUNC}()!!!"
+
+        for fname in api master minion syndic; do
+            # Skip salt-api since the service should be opt-in and not necessarily started on boot
+            [ $fname = "api" ] && continue
+
+            # Skip if not meant to be installed
+            [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
+            [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
+            [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
+
+            if [ "$_ECHO_DEBUG" -eq $BS_FALSE ]; then
+                echoerror "salt-$fname was not found running. Pass '-D' to ${__ScriptName} when bootstrapping for additional debugging information..."
+                continue
+            fi
+
+            [ ! -f "$_SALT_ETC_DIR/$fname" ] && [ $fname != "syndic" ] && echodebug "$_SALT_ETC_DIR/$fname does not exist"
+
+            echodebug "Running salt-$fname by hand outputs: $(nohup salt-$fname -l debug)"
+
+            [ ! -f /var/log/salt/$fname ] && echodebug "/var/log/salt/$fname does not exist. Can't cat its contents!" && continue
+
+            echodebug "DAEMON LOGS for $fname:"
+            echodebug "$(cat /var/log/salt/$fname)"
+            echo
+        done
+
+        echodebug "Running Processes:"
+        echodebug "$(ps auxwww)"
+
+        exit 1
+    fi
+fi
+
+# Done!
+if [ "$_CONFIG_ONLY" -eq $BS_FALSE ]; then
+    echoinfo "Salt installed!"
+else
+    echoinfo "Salt configured!"
+fi
+
+exit 0
+
+# vim: set sts=4 ts=4 et

From a671ac387a39a49d384323239692df3857478596 Mon Sep 17 00:00:00 2001
From: defensivedepth <josh@defensivedepth.com>
Date: Thu, 12 Oct 2023 09:45:20 -0400
Subject: [PATCH 183/417] Add hotfix changes

---
 HOTFIX                       |  2 +-
 salt/manager/tools/sbin/soup | 11 +++++++----
 2 files changed, 8 insertions(+), 5 deletions(-)

diff --git a/HOTFIX b/HOTFIX
index d3f5a12fa..afd2e4c40 100644
--- a/HOTFIX
+++ b/HOTFIX
@@ -1 +1 @@
-
+20231012
diff --git a/salt/manager/tools/sbin/soup b/salt/manager/tools/sbin/soup
index 960c50f31..fa714cda4 100755
--- a/salt/manager/tools/sbin/soup
+++ b/salt/manager/tools/sbin/soup
@@ -691,13 +691,16 @@ verify_latest_update_script() {
 
 # Keeping this block in case we need to do a hotfix that requires salt update
 apply_hotfix() {
-#  if [[ "$INSTALLEDVERSION" == "2.3.90" ]] ; then
-#    fix_wazuh
+  if [[ "$INSTALLEDVERSION" == "2.4.20" ]] ; then
+    salt-call state.appply elastic-fleet -l info queue=True
+    . /usr/sbin/so-elastic-fleet-common
+    elastic_fleet_integration_remove endpoints-initial elastic-defend-endpoints
+    /usr/sbin/so-elastic-fleet-integration-policy-elastic-defend
 #  elif [[ "$INSTALLEDVERSION" == "2.3.110" ]] ; then
 #    2_3_10_hotfix_1
-#  else
+  else
    echo "No actions required. ($INSTALLEDVERSION/$HOTFIXVERSION)"
-#  fi
+  fi
 }
 
 

From 967138cdff029ff5d0be3dac016be1cc2e7d9b13 Mon Sep 17 00:00:00 2001
From: defensivedepth <josh@defensivedepth.com>
Date: Thu, 12 Oct 2023 10:54:26 -0400
Subject: [PATCH 184/417] Apply state correctly

---
 salt/manager/tools/sbin/soup | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/salt/manager/tools/sbin/soup b/salt/manager/tools/sbin/soup
index fa714cda4..d128a7c4d 100755
--- a/salt/manager/tools/sbin/soup
+++ b/salt/manager/tools/sbin/soup
@@ -692,7 +692,7 @@ verify_latest_update_script() {
 # Keeping this block in case we need to do a hotfix that requires salt update
 apply_hotfix() {
   if [[ "$INSTALLEDVERSION" == "2.4.20" ]] ; then
-    salt-call state.appply elastic-fleet -l info queue=True
+    salt-call state.apply elastic-fleet -l info queue=True
     . /usr/sbin/so-elastic-fleet-common
     elastic_fleet_integration_remove endpoints-initial elastic-defend-endpoints
     /usr/sbin/so-elastic-fleet-integration-policy-elastic-defend

From 98eab906aff0d269bc92ed02c721afa02408a3ac Mon Sep 17 00:00:00 2001
From: defensivedepth <josh@defensivedepth.com>
Date: Thu, 12 Oct 2023 11:00:24 -0400
Subject: [PATCH 185/417] Apply named state

---
 salt/manager/tools/sbin/soup | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/salt/manager/tools/sbin/soup b/salt/manager/tools/sbin/soup
index d128a7c4d..375d48209 100755
--- a/salt/manager/tools/sbin/soup
+++ b/salt/manager/tools/sbin/soup
@@ -692,7 +692,7 @@ verify_latest_update_script() {
 # Keeping this block in case we need to do a hotfix that requires salt update
 apply_hotfix() {
   if [[ "$INSTALLEDVERSION" == "2.4.20" ]] ; then
-    salt-call state.apply elastic-fleet -l info queue=True
+    salt-call state.apply elasticfleet -l info queue=True
     . /usr/sbin/so-elastic-fleet-common
     elastic_fleet_integration_remove endpoints-initial elastic-defend-endpoints
     /usr/sbin/so-elastic-fleet-integration-policy-elastic-defend

From 8dc163f0748b22a2cf521208f006712e872797c7 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Thu, 12 Oct 2023 13:09:07 -0400
Subject: [PATCH 186/417] use script from develop branch

---
 salt/salt/scripts/bootstrap-salt.sh | 25 ++++++++++++++++++-------
 salt/salt/scripts/bs_dev            |  0
 salt/salt/scripts/bs_stable         |  0
 3 files changed, 18 insertions(+), 7 deletions(-)
 create mode 100644 salt/salt/scripts/bs_dev
 create mode 100644 salt/salt/scripts/bs_stable

diff --git a/salt/salt/scripts/bootstrap-salt.sh b/salt/salt/scripts/bootstrap-salt.sh
index ace3bce26..422e9395f 100644
--- a/salt/salt/scripts/bootstrap-salt.sh
+++ b/salt/salt/scripts/bootstrap-salt.sh
@@ -596,6 +596,7 @@ fi
 echoinfo "Running version: ${__ScriptVersion}"
 echoinfo "Executed by: ${CALLER}"
 echoinfo "Command line: '${__ScriptFullName} ${__ScriptArgs}'"
+echowarn "Running the unstable version of ${__ScriptName}"
 
 # Define installation type
 if [ "$#" -gt 0 ];then
@@ -1523,7 +1524,7 @@ __check_dpkg_architecture() {
             else
                 # Saltstack official repository has arm64 metadata beginning with Debian 11,
                 # use amd64 repositories on arm64 for anything older, since all pkgs are arch-independent
-                if [ "$DISTRO_NAME_L" = "debian" ] || [ "$DISTRO_MAJOR_VERSION" -lt 11 ]; then
+                if [ "$DISTRO_NAME_L" = "debian" ] && [ "$DISTRO_MAJOR_VERSION" -lt 11 ]; then
                   __REPO_ARCH="amd64"
                 else
                   __REPO_ARCH="arm64"
@@ -1709,6 +1710,14 @@ __debian_codename_translation() {
         "11")
             DISTRO_CODENAME="bullseye"
             ;;
+        "12")
+            DISTRO_CODENAME="bookworm"
+            # FIXME - TEMPORARY
+            # use bullseye packages until bookworm packages are available
+            DISTRO_CODENAME="bullseye"
+            DISTRO_MAJOR_VERSION=11
+            rv=11
+            ;;
         *)
             DISTRO_CODENAME="stretch"
             ;;
@@ -2196,7 +2205,7 @@ __dnf_install_noinput() {
 
 #---  FUNCTION  -------------------------------------------------------------------------------------------------------
 #          NAME:  __tdnf_install_noinput
-#   DESCRIPTION:  (DRY) dnf install with noinput options
+#   DESCRIPTION:  (DRY) tdnf install with noinput options
 #----------------------------------------------------------------------------------------------------------------------
 __tdnf_install_noinput() {
 
@@ -7033,15 +7042,17 @@ install_photon_git_deps() {
                 "${__python}" -m pip install "${dep}" || return 1
             done
     else
-        __PACKAGES="python${PY_PKG_VER}-devel python${PY_PKG_VER}-pip python${PY_PKG_VER}-setuptools gcc"
+        __PACKAGES="python${PY_PKG_VER}-devel python${PY_PKG_VER}-pip python${PY_PKG_VER}-setuptools gcc glibc-devel linux-devel.x86_64"
         # shellcheck disable=SC2086
         __tdnf_install_noinput ${__PACKAGES} || return 1
     fi
 
-    # Need newer version of setuptools on Photon
-    _setuptools_dep="setuptools>=${_MINIMUM_SETUPTOOLS_VERSION}"
-    echodebug "Running '${_PY_EXE} -m pip --upgrade install ${_setuptools_dep}'"
-    ${_PY_EXE} -m pip install --upgrade "${_setuptools_dep}"
+    if [ "${DISTRO_MAJOR_VERSION}" -gt 3 ]; then
+      # Need newer version of setuptools on Photon
+      _setuptools_dep="setuptools>=${_MINIMUM_SETUPTOOLS_VERSION}"
+      echodebug "Running '${_PY_EXE} -m pip --upgrade install ${_setuptools_dep}'"
+      ${_PY_EXE} -m pip install --upgrade "${_setuptools_dep}"
+    fi
 
     # Let's trigger config_salt()
     if [ "$_TEMP_CONFIG_DIR" = "null" ]; then
diff --git a/salt/salt/scripts/bs_dev b/salt/salt/scripts/bs_dev
new file mode 100644
index 000000000..e69de29bb
diff --git a/salt/salt/scripts/bs_stable b/salt/salt/scripts/bs_stable
new file mode 100644
index 000000000..e69de29bb

From 17ae9b33498c6d8ebaf4b503044a5c892ca77ace Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Thu, 12 Oct 2023 13:54:07 -0400
Subject: [PATCH 187/417] avoid reboot during testing

---
 setup/so-setup | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/setup/so-setup b/setup/so-setup
index e35dde579..17c62af81 100755
--- a/setup/so-setup
+++ b/setup/so-setup
@@ -91,7 +91,7 @@ fi
 # if packages are updated and the box isn't rebooted
 if [[ $is_debian ]]; then
 	update_packages
-	if [[ -f "/var/run/reboot-required" ]]; then
+	if [[ -f "/var/run/reboot-required" ]] && [ -z "$TESTING" ]; then
 		whiptail_debian_reboot_required
 		reboot
 	fi

From 6dd06c0fe94b55dd95c6314989a9a2ff87f6deb5 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Thu, 12 Oct 2023 15:07:47 -0400
Subject: [PATCH 188/417] change install_centos_onedir to install version
 provided from command line

---
 salt/salt/scripts/bootstrap-salt.sh | 21 +++++++++++++++++----
 1 file changed, 17 insertions(+), 4 deletions(-)

diff --git a/salt/salt/scripts/bootstrap-salt.sh b/salt/salt/scripts/bootstrap-salt.sh
index 422e9395f..464243c84 100644
--- a/salt/salt/scripts/bootstrap-salt.sh
+++ b/salt/salt/scripts/bootstrap-salt.sh
@@ -5126,17 +5126,30 @@ install_centos_onedir_deps() {
 install_centos_onedir() {
     __PACKAGES=""
 
+    local cloud='salt-cloud'
+    local master='salt-master'
+    local minion='salt-minion'
+    local syndic='salt-syndic'
+    local ver="$_ONEDIR_REV"
+
+    if [ ! -z $ver ]; then
+        cloud+="-$ver"
+        master+="-$ver"
+        minion+="-$ver"
+        syndic+="-$ver"
+    fi
+
     if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ];then
-        __PACKAGES="${__PACKAGES} salt-cloud"
+        __PACKAGES="${__PACKAGES} $cloud"
     fi
     if [ "$_INSTALL_MASTER" -eq $BS_TRUE ];then
-        __PACKAGES="${__PACKAGES} salt-master"
+        __PACKAGES="${__PACKAGES} $master"
     fi
     if [ "$_INSTALL_MINION" -eq $BS_TRUE ]; then
-        __PACKAGES="${__PACKAGES} salt-minion"
+        __PACKAGES="${__PACKAGES} $minion"
     fi
     if [ "$_INSTALL_SYNDIC" -eq $BS_TRUE ];then
-        __PACKAGES="${__PACKAGES} salt-syndic"
+        __PACKAGES="${__PACKAGES} $syndic"
     fi
 
     # shellcheck disable=SC2086

From b12c4a96e95b0a353c42a2c0b8c0a33f7e3e3f78 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Thu, 12 Oct 2023 15:11:25 -0400
Subject: [PATCH 189/417] remove files

---
 salt/salt/scripts/bootstrap-salt_orig.sh | 8126 ----------------------
 salt/salt/scripts/bs_dev                 |    0
 salt/salt/scripts/bs_stable              |    0
 3 files changed, 8126 deletions(-)
 delete mode 100644 salt/salt/scripts/bootstrap-salt_orig.sh
 delete mode 100644 salt/salt/scripts/bs_dev
 delete mode 100644 salt/salt/scripts/bs_stable

diff --git a/salt/salt/scripts/bootstrap-salt_orig.sh b/salt/salt/scripts/bootstrap-salt_orig.sh
deleted file mode 100644
index 47d25949c..000000000
--- a/salt/salt/scripts/bootstrap-salt_orig.sh
+++ /dev/null
@@ -1,8126 +0,0 @@
-#!/bin/sh -
-
-# WARNING: Changes to this file in the salt repo will be overwritten!
-# Please submit pull requests against the salt-bootstrap repo:
-# https://github.com/saltstack/salt-bootstrap
-
-#======================================================================================================================
-# vim: softtabstop=4 shiftwidth=4 expandtab fenc=utf-8 spell spelllang=en cc=120
-#======================================================================================================================
-#
-#          FILE: bootstrap-salt.sh
-#
-#   DESCRIPTION: Bootstrap Salt installation for various systems/distributions
-#
-#          BUGS: https://github.com/saltstack/salt-bootstrap/issues
-#
-#     COPYRIGHT: (c) 2012-2021 by the SaltStack Team, see AUTHORS.rst for more
-#                details.
-#
-#       LICENSE: Apache 2.0
-#  ORGANIZATION: SaltStack (saltproject.io)
-#       CREATED: 10/15/2012 09:49:37 PM WEST
-#======================================================================================================================
-set -o nounset                              # Treat unset variables as an error
-
-__ScriptVersion="2021.09.17"
-__ScriptName="bootstrap-salt.sh"
-
-__ScriptFullName="$0"
-__ScriptArgs="$*"
-
-#======================================================================================================================
-#  Environment variables taken into account.
-#----------------------------------------------------------------------------------------------------------------------
-#   * BS_COLORS:                If 0 disables colour support
-#   * BS_PIP_ALLOWED:           If 1 enable pip based installations(if needed)
-#   * BS_PIP_ALL:               If 1 enable all python packages to be installed via pip instead of apt, requires setting virtualenv
-#   * BS_VIRTUALENV_DIR:        The virtualenv to install salt into (shouldn't exist yet)
-#   * BS_ECHO_DEBUG:            If 1 enable debug echo which can also be set by -D
-#   * BS_SALT_ETC_DIR:          Defaults to /etc/salt (Only tweak'able on git based installations)
-#   * BS_SALT_CACHE_DIR:        Defaults to /var/cache/salt (Only tweak'able on git based installations)
-#   * BS_KEEP_TEMP_FILES:       If 1, don't move temporary files, instead copy them
-#   * BS_FORCE_OVERWRITE:       Force overriding copied files(config, init.d, etc)
-#   * BS_UPGRADE_SYS:           If 1 and an option, upgrade system. Default 0.
-#   * BS_GENTOO_USE_BINHOST:    If 1 add `--getbinpkg` to gentoo's emerge
-#   * BS_SALT_MASTER_ADDRESS:   The IP or DNS name of the salt-master the minion should connect to
-#   * BS_SALT_GIT_CHECKOUT_DIR: The directory where to clone Salt on git installations
-#======================================================================================================================
-
-
-# Bootstrap script truth values
-BS_TRUE=1
-BS_FALSE=0
-
-# Default sleep time used when waiting for daemons to start, restart and checking for these running
-__DEFAULT_SLEEP=3
-
-#---  FUNCTION  -------------------------------------------------------------------------------------------------------
-#          NAME:  __detect_color_support
-#   DESCRIPTION:  Try to detect color support.
-#----------------------------------------------------------------------------------------------------------------------
-_COLORS=${BS_COLORS:-$(tput colors 2>/dev/null || echo 0)}
-__detect_color_support() {
-    # shellcheck disable=SC2181
-    if [ $? -eq 0 ] && [ "$_COLORS" -gt 2 ]; then
-        RC='\033[1;31m'
-        GC='\033[1;32m'
-        BC='\033[1;34m'
-        YC='\033[1;33m'
-        EC='\033[0m'
-    else
-        RC=""
-        GC=""
-        BC=""
-        YC=""
-        EC=""
-    fi
-}
-__detect_color_support
-
-
-#---  FUNCTION  -------------------------------------------------------------------------------------------------------
-#          NAME:  echoerr
-#   DESCRIPTION:  Echo errors to stderr.
-#----------------------------------------------------------------------------------------------------------------------
-echoerror() {
-    printf "${RC} * ERROR${EC}: %s\\n" "$@" 1>&2;
-}
-
-#---  FUNCTION  -------------------------------------------------------------------------------------------------------
-#          NAME:  echoinfo
-#   DESCRIPTION:  Echo information to stdout.
-#----------------------------------------------------------------------------------------------------------------------
-echoinfo() {
-    printf "${GC} *  INFO${EC}: %s\\n" "$@";
-}
-
-#---  FUNCTION  -------------------------------------------------------------------------------------------------------
-#          NAME:  echowarn
-#   DESCRIPTION:  Echo warning information to stdout.
-#----------------------------------------------------------------------------------------------------------------------
-echowarn() {
-    printf "${YC} *  WARN${EC}: %s\\n" "$@";
-}
-
-#---  FUNCTION  -------------------------------------------------------------------------------------------------------
-#          NAME:  echodebug
-#   DESCRIPTION:  Echo debug information to stdout.
-#----------------------------------------------------------------------------------------------------------------------
-echodebug() {
-    if [ "$_ECHO_DEBUG" -eq $BS_TRUE ]; then
-        printf "${BC} * DEBUG${EC}: %s\\n" "$@";
-    fi
-}
-
-#---  FUNCTION  -------------------------------------------------------------------------------------------------------
-#          NAME:  __check_command_exists
-#   DESCRIPTION:  Check if a command exists.
-#----------------------------------------------------------------------------------------------------------------------
-__check_command_exists() {
-    command -v "$1" > /dev/null 2>&1
-}
-
-#---  FUNCTION  -------------------------------------------------------------------------------------------------------
-#          NAME:  __check_pip_allowed
-#   DESCRIPTION:  Simple function to let the users know that -P needs to be used.
-#----------------------------------------------------------------------------------------------------------------------
-__check_pip_allowed() {
-    if [ $# -eq 1 ]; then
-        _PIP_ALLOWED_ERROR_MSG=$1
-    else
-        _PIP_ALLOWED_ERROR_MSG="pip based installations were not allowed. Retry using '-P'"
-    fi
-
-    if [ "$_PIP_ALLOWED" -eq $BS_FALSE ]; then
-        echoerror "$_PIP_ALLOWED_ERROR_MSG"
-        __usage
-        exit 1
-    fi
-}
-
-#---  FUNCTION  -------------------------------------------------------------------------------------------------------
-#         NAME:  __check_config_dir
-#  DESCRIPTION:  Checks the config directory, retrieves URLs if provided.
-#----------------------------------------------------------------------------------------------------------------------
-__check_config_dir() {
-    CC_DIR_NAME="$1"
-    CC_DIR_BASE=$(basename "${CC_DIR_NAME}")
-
-    case "$CC_DIR_NAME" in
-        http://*|https://*)
-            __fetch_url "/tmp/${CC_DIR_BASE}" "${CC_DIR_NAME}"
-            CC_DIR_NAME="/tmp/${CC_DIR_BASE}"
-            ;;
-        ftp://*)
-            __fetch_url "/tmp/${CC_DIR_BASE}" "${CC_DIR_NAME}"
-            CC_DIR_NAME="/tmp/${CC_DIR_BASE}"
-            ;;
-        *://*)
-            echoerror "Unsupported URI scheme for $CC_DIR_NAME"
-            echo "null"
-            return
-            ;;
-        *)
-            if [ ! -e "${CC_DIR_NAME}" ]; then
-                echoerror "The configuration directory or archive $CC_DIR_NAME does not exist."
-                echo "null"
-                return
-            fi
-            ;;
-    esac
-
-    case "$CC_DIR_NAME" in
-        *.tgz|*.tar.gz)
-            tar -zxf "${CC_DIR_NAME}" -C /tmp
-            CC_DIR_BASE=$(basename "${CC_DIR_BASE}" ".tgz")
-            CC_DIR_BASE=$(basename "${CC_DIR_BASE}" ".tar.gz")
-            CC_DIR_NAME="/tmp/${CC_DIR_BASE}"
-            ;;
-        *.tbz|*.tar.bz2)
-            tar -xjf "${CC_DIR_NAME}" -C /tmp
-            CC_DIR_BASE=$(basename "${CC_DIR_BASE}" ".tbz")
-            CC_DIR_BASE=$(basename "${CC_DIR_BASE}" ".tar.bz2")
-            CC_DIR_NAME="/tmp/${CC_DIR_BASE}"
-            ;;
-        *.txz|*.tar.xz)
-            tar -xJf "${CC_DIR_NAME}" -C /tmp
-            CC_DIR_BASE=$(basename "${CC_DIR_BASE}" ".txz")
-            CC_DIR_BASE=$(basename "${CC_DIR_BASE}" ".tar.xz")
-            CC_DIR_NAME="/tmp/${CC_DIR_BASE}"
-            ;;
-    esac
-
-    echo "${CC_DIR_NAME}"
-}
-
-#---  FUNCTION  -------------------------------------------------------------------------------------------------------
-#         NAME:  __check_unparsed_options
-#  DESCRIPTION:  Checks the placed after the install arguments
-#----------------------------------------------------------------------------------------------------------------------
-__check_unparsed_options() {
-    shellopts="$1"
-    # grep alternative for SunOS
-    if [ -f /usr/xpg4/bin/grep ]; then
-        grep='/usr/xpg4/bin/grep'
-    else
-        grep='grep'
-    fi
-    unparsed_options=$( echo "$shellopts" | ${grep} -E '(^|[[:space:]])[-]+[[:alnum:]]' )
-    if [ "$unparsed_options" != "" ]; then
-        __usage
-        echo
-        echoerror "options are only allowed before install arguments"
-        echo
-        exit 1
-    fi
-}
-
-
-#----------------------------------------------------------------------------------------------------------------------
-#  Handle command line arguments
-#----------------------------------------------------------------------------------------------------------------------
-_KEEP_TEMP_FILES=${BS_KEEP_TEMP_FILES:-$BS_FALSE}
-_TEMP_CONFIG_DIR="null"
-_SALTSTACK_REPO_URL="https://github.com/saltstack/salt.git"
-_SALT_REPO_URL=${_SALTSTACK_REPO_URL}
-_DOWNSTREAM_PKG_REPO=$BS_FALSE
-_TEMP_KEYS_DIR="null"
-_SLEEP="${__DEFAULT_SLEEP}"
-_INSTALL_MASTER=$BS_FALSE
-_INSTALL_SYNDIC=$BS_FALSE
-_INSTALL_MINION=$BS_TRUE
-_INSTALL_CLOUD=$BS_FALSE
-_VIRTUALENV_DIR=${BS_VIRTUALENV_DIR:-"null"}
-_START_DAEMONS=$BS_TRUE
-_DISABLE_SALT_CHECKS=$BS_FALSE
-_ECHO_DEBUG=${BS_ECHO_DEBUG:-$BS_FALSE}
-_CONFIG_ONLY=$BS_FALSE
-_PIP_ALLOWED=${BS_PIP_ALLOWED:-$BS_FALSE}
-_PIP_ALL=${BS_PIP_ALL:-$BS_FALSE}
-_SALT_ETC_DIR=${BS_SALT_ETC_DIR:-/etc/salt}
-_SALT_CACHE_DIR=${BS_SALT_CACHE_DIR:-/var/cache/salt}
-_PKI_DIR=${_SALT_ETC_DIR}/pki
-_FORCE_OVERWRITE=${BS_FORCE_OVERWRITE:-$BS_FALSE}
-_GENTOO_USE_BINHOST=${BS_GENTOO_USE_BINHOST:-$BS_FALSE}
-_EPEL_REPO=${BS_EPEL_REPO:-epel}
-_EPEL_REPOS_INSTALLED=$BS_FALSE
-_UPGRADE_SYS=${BS_UPGRADE_SYS:-$BS_FALSE}
-_INSECURE_DL=${BS_INSECURE_DL:-$BS_FALSE}
-_CURL_ARGS=${BS_CURL_ARGS:-}
-_FETCH_ARGS=${BS_FETCH_ARGS:-}
-_GPG_ARGS=${BS_GPG_ARGS:-}
-_WGET_ARGS=${BS_WGET_ARGS:-}
-_SALT_MASTER_ADDRESS=${BS_SALT_MASTER_ADDRESS:-null}
-_SALT_MINION_ID="null"
-# _SIMPLIFY_VERSION is mostly used in Solaris based distributions
-_SIMPLIFY_VERSION=$BS_TRUE
-_LIBCLOUD_MIN_VERSION="0.14.0"
-_EXTRA_PACKAGES=""
-_HTTP_PROXY=""
-_SALT_GIT_CHECKOUT_DIR=${BS_SALT_GIT_CHECKOUT_DIR:-/tmp/git/salt}
-_NO_DEPS=$BS_FALSE
-_FORCE_SHALLOW_CLONE=$BS_FALSE
-_DISABLE_SSL=$BS_FALSE
-_DISABLE_REPOS=$BS_FALSE
-_CUSTOM_REPO_URL="null"
-_CUSTOM_MASTER_CONFIG="null"
-_CUSTOM_MINION_CONFIG="null"
-_QUIET_GIT_INSTALLATION=$BS_FALSE
-_REPO_URL="repo.saltproject.io"
-_PY_EXE="python3"
-_INSTALL_PY="$BS_FALSE"
-_TORNADO_MAX_PY3_VERSION="5.0"
-_POST_NEON_INSTALL=$BS_FALSE
-_MINIMUM_PIP_VERSION="9.0.1"
-_MINIMUM_SETUPTOOLS_VERSION="9.1"
-_POST_NEON_PIP_INSTALL_ARGS="--prefix=/usr"
-
-# Defaults for install arguments
-ITYPE="stable"
-
-
-#---  FUNCTION  -------------------------------------------------------------------------------------------------------
-#         NAME:  __usage
-#  DESCRIPTION:  Display usage information.
-#----------------------------------------------------------------------------------------------------------------------
-__usage() {
-    cat << EOT
-
-  Usage :  ${__ScriptName} [options] <install-type> [install-type-args]
-
-  Installation types:
-    - stable              Install latest stable release. This is the default
-                          install type
-    - stable [branch]     Install latest version on a branch. Only supported
-                          for packages available at repo.saltproject.io
-    - stable [version]    Install a specific version. Only supported for
-                          packages available at repo.saltproject.io
-                          To pin a 3xxx minor version, specify it as 3xxx.0
-    - testing             RHEL-family specific: configure EPEL testing repo
-    - git                 Install from the head of the master branch
-    - git [ref]           Install from any git ref (such as a branch, tag, or
-                          commit)
-
-  Examples:
-    - ${__ScriptName}
-    - ${__ScriptName} stable
-    - ${__ScriptName} stable 2017.7
-    - ${__ScriptName} stable 2017.7.2
-    - ${__ScriptName} testing
-    - ${__ScriptName} git
-    - ${__ScriptName} git 2017.7
-    - ${__ScriptName} git v2017.7.2
-    - ${__ScriptName} git 06f249901a2e2f1ed310d58ea3921a129f214358
-
-  Options:
-    -h  Display this message
-    -v  Display script version
-    -n  No colours
-    -D  Show debug output
-    -c  Temporary configuration directory
-    -g  Salt Git repository URL. Default: ${_SALTSTACK_REPO_URL}
-    -w  Install packages from downstream package repository rather than
-        upstream, saltstack package repository. This is currently only
-        implemented for SUSE.
-    -k  Temporary directory holding the minion keys which will pre-seed
-        the master.
-    -s  Sleep time used when waiting for daemons to start, restart and when
-        checking for the services running. Default: ${__DEFAULT_SLEEP}
-    -L  Also install salt-cloud and required python-libcloud package
-    -M  Also install salt-master
-    -S  Also install salt-syndic
-    -N  Do not install salt-minion
-    -X  Do not start daemons after installation
-    -d  Disables checking if Salt services are enabled to start on system boot.
-        You can also do this by touching /tmp/disable_salt_checks on the target
-        host. Default: \${BS_FALSE}
-    -P  Allow pip based installations. On some distributions the required salt
-        packages or its dependencies are not available as a package for that
-        distribution. Using this flag allows the script to use pip as a last
-        resort method. NOTE: This only works for functions which actually
-        implement pip based installations.
-    -U  If set, fully upgrade the system prior to bootstrapping Salt
-    -I  If set, allow insecure connections while downloading any files. For
-        example, pass '--no-check-certificate' to 'wget' or '--insecure' to
-        'curl'. On Debian and Ubuntu, using this option with -U allows obtaining
-        GnuPG archive keys insecurely if distro has changed release signatures.
-    -F  Allow copied files to overwrite existing (config, init.d, etc)
-    -K  If set, keep the temporary files in the temporary directories specified
-        with -c and -k
-    -C  Only run the configuration function. Implies -F (forced overwrite).
-        To overwrite Master or Syndic configs, -M or -S, respectively, must
-        also be specified. Salt installation will be ommitted, but some of the
-        dependencies could be installed to write configuration with -j or -J.
-    -A  Pass the salt-master DNS name or IP. This will be stored under
-        \${BS_SALT_ETC_DIR}/minion.d/99-master-address.conf
-    -i  Pass the salt-minion id. This will be stored under
-        \${BS_SALT_ETC_DIR}/minion_id
-    -p  Extra-package to install while installing Salt dependencies. One package
-        per -p flag. You are responsible for providing the proper package name.
-    -H  Use the specified HTTP proxy for all download URLs (including https://).
-        For example: http://myproxy.example.com:3128
-    -b  Assume that dependencies are already installed and software sources are
-        set up. If git is selected, git tree is still checked out as dependency
-        step.
-    -f  Force shallow cloning for git installations.
-        This may result in an "n/a" in the version number.
-    -l  Disable ssl checks. When passed, switches "https" calls to "http" where
-        possible.
-    -V  Install Salt into virtualenv
-        (only available for Ubuntu based distributions)
-    -a  Pip install all Python pkg dependencies for Salt. Requires -V to install
-        all pip pkgs into the virtualenv.
-        (Only available for Ubuntu based distributions)
-    -r  Disable all repository configuration performed by this script. This
-        option assumes all necessary repository configuration is already present
-        on the system.
-    -R  Specify a custom repository URL. Assumes the custom repository URL
-        points to a repository that mirrors Salt packages located at
-        repo.saltproject.io. The option passed with -R replaces the
-        "repo.saltproject.io". If -R is passed, -r is also set. Currently only
-        works on CentOS/RHEL and Debian based distributions.
-    -J  Replace the Master config file with data passed in as a JSON string. If
-        a Master config file is found, a reasonable effort will be made to save
-        the file with a ".bak" extension. If used in conjunction with -C or -F,
-        no ".bak" file will be created as either of those options will force
-        a complete overwrite of the file.
-    -j  Replace the Minion config file with data passed in as a JSON string. If
-        a Minion config file is found, a reasonable effort will be made to save
-        the file with a ".bak" extension. If used in conjunction with -C or -F,
-        no ".bak" file will be created as either of those options will force
-        a complete overwrite of the file.
-    -q  Quiet salt installation from git (setup.py install -q)
-    -x  Changes the Python version used to install Salt.
-        For CentOS 6 git installations python2.7 is supported.
-        Fedora git installation, CentOS 7, Debian 9, Ubuntu 16.04 and 18.04 support python3.
-    -y  Installs a different python version on host. Currently this has only been
-        tested with CentOS 6 and is considered experimental. This will install the
-        ius repo on the box if disable repo is false. This must be used in conjunction
-        with -x <pythonversion>.  For example:
-            sh bootstrap.sh -P -y -x python2.7 git v2017.7.2
-        The above will install python27 and install the git version of salt using the
-        python2.7 executable. This only works for git and pip installations.
-
-EOT
-}   # ----------  end of function __usage  ----------
-
-
-while getopts ':hvnDc:g:Gyx:wk:s:MSNXCPFUKIA:i:Lp:dH:bflV:J:j:rR:aq' opt
-do
-  case "${opt}" in
-
-    h )  __usage; exit 0                                ;;
-    v )  echo "$0 -- Version $__ScriptVersion"; exit 0  ;;
-    n )  _COLORS=0; __detect_color_support              ;;
-    D )  _ECHO_DEBUG=$BS_TRUE                           ;;
-    c )  _TEMP_CONFIG_DIR="$OPTARG"                     ;;
-    g )  _SALT_REPO_URL=$OPTARG                         ;;
-
-    G )  echowarn "The '-G' option is DEPRECATED and will be removed in the future stable release!"
-         echowarn "Bootstrap will always use 'https' protocol to clone from SaltStack GitHub repo."
-         echowarn "No need to provide this option anymore, now it is a default behavior."
-         ;;
-
-    w )  _DOWNSTREAM_PKG_REPO=$BS_TRUE                  ;;
-    k )  _TEMP_KEYS_DIR="$OPTARG"                       ;;
-    s )  _SLEEP=$OPTARG                                 ;;
-    M )  _INSTALL_MASTER=$BS_TRUE                       ;;
-    S )  _INSTALL_SYNDIC=$BS_TRUE                       ;;
-    N )  _INSTALL_MINION=$BS_FALSE                      ;;
-    X )  _START_DAEMONS=$BS_FALSE                       ;;
-    C )  _CONFIG_ONLY=$BS_TRUE                          ;;
-    P )  _PIP_ALLOWED=$BS_TRUE                          ;;
-    F )  _FORCE_OVERWRITE=$BS_TRUE                      ;;
-    U )  _UPGRADE_SYS=$BS_TRUE                          ;;
-    K )  _KEEP_TEMP_FILES=$BS_TRUE                      ;;
-    I )  _INSECURE_DL=$BS_TRUE                          ;;
-    A )  _SALT_MASTER_ADDRESS=$OPTARG                   ;;
-    i )  _SALT_MINION_ID=$OPTARG                        ;;
-    L )  _INSTALL_CLOUD=$BS_TRUE                        ;;
-    p )  _EXTRA_PACKAGES="$_EXTRA_PACKAGES $OPTARG"     ;;
-    d )  _DISABLE_SALT_CHECKS=$BS_TRUE                  ;;
-    H )  _HTTP_PROXY="$OPTARG"                          ;;
-    b )  _NO_DEPS=$BS_TRUE                              ;;
-    f )  _FORCE_SHALLOW_CLONE=$BS_TRUE                  ;;
-    l )  _DISABLE_SSL=$BS_TRUE                          ;;
-    V )  _VIRTUALENV_DIR="$OPTARG"                      ;;
-    a )  _PIP_ALL=$BS_TRUE                              ;;
-    r )  _DISABLE_REPOS=$BS_TRUE                        ;;
-    R )  _CUSTOM_REPO_URL=$OPTARG                       ;;
-    J )  _CUSTOM_MASTER_CONFIG=$OPTARG                  ;;
-    j )  _CUSTOM_MINION_CONFIG=$OPTARG                  ;;
-    q )  _QUIET_GIT_INSTALLATION=$BS_TRUE               ;;
-    x )  _PY_EXE="$OPTARG"                              ;;
-    y )  _INSTALL_PY="$BS_TRUE"                         ;;
-
-    \?)  echo
-         echoerror "Option does not exist : $OPTARG"
-         __usage
-         exit 1
-         ;;
-
-  esac    # --- end of case ---
-done
-shift $((OPTIND-1))
-
-
-# Define our logging file and pipe paths
-LOGFILE="/tmp/$( echo "$__ScriptName" | sed s/.sh/.log/g )"
-LOGPIPE="/tmp/$( echo "$__ScriptName" | sed s/.sh/.logpipe/g )"
-# Ensure no residual pipe exists
-rm "$LOGPIPE" 2>/dev/null
-
-# Create our logging pipe
-# On FreeBSD we have to use mkfifo instead of mknod
-if ! (mknod "$LOGPIPE" p >/dev/null 2>&1 || mkfifo "$LOGPIPE" >/dev/null 2>&1); then
-    echoerror "Failed to create the named pipe required to log"
-    exit 1
-fi
-
-# What ever is written to the logpipe gets written to the logfile
-tee < "$LOGPIPE" "$LOGFILE" &
-
-# Close STDOUT, reopen it directing it to the logpipe
-exec 1>&-
-exec 1>"$LOGPIPE"
-# Close STDERR, reopen it directing it to the logpipe
-exec 2>&-
-exec 2>"$LOGPIPE"
-
-
-#---  FUNCTION  -------------------------------------------------------------------------------------------------------
-#          NAME:  __exit_cleanup
-#   DESCRIPTION:  Cleanup any leftovers after script has ended
-#
-#
-#   http://www.unix.com/man-page/POSIX/1posix/trap/
-#
-#               Signal Number   Signal Name
-#               1               SIGHUP
-#               2               SIGINT
-#               3               SIGQUIT
-#               6               SIGABRT
-#               9               SIGKILL
-#              14               SIGALRM
-#              15               SIGTERM
-#----------------------------------------------------------------------------------------------------------------------
-APT_ERR=$(mktemp /tmp/apt_error.XXXXXX)
-__exit_cleanup() {
-    EXIT_CODE=$?
-
-    if [ "$ITYPE" = "git" ] && [ -d "${_SALT_GIT_CHECKOUT_DIR}" ]; then
-        if [ $_KEEP_TEMP_FILES -eq $BS_FALSE ]; then
-            # Clean up the checked out repository
-            echodebug "Cleaning up the Salt Temporary Git Repository"
-            # shellcheck disable=SC2164
-            cd "${__SALT_GIT_CHECKOUT_PARENT_DIR}"
-            rm -rf "${_SALT_GIT_CHECKOUT_DIR}"
-            #rm -rf "${_SALT_GIT_CHECKOUT_DIR}/deps"
-        else
-            echowarn "Not cleaning up the Salt Temporary git repository on request"
-            echowarn "Note that if you intend to re-run this script using the git approach, you might encounter some issues"
-        fi
-    fi
-
-    # Remove the logging pipe when the script exits
-    if [ -p "$LOGPIPE" ]; then
-        echodebug "Removing the logging pipe $LOGPIPE"
-        rm -f "$LOGPIPE"
-    fi
-
-    # Remove the temporary apt error file when the script exits
-    if [ -f "$APT_ERR" ]; then
-        echodebug "Removing the temporary apt error file $APT_ERR"
-        rm -f "$APT_ERR"
-    fi
-
-    # Kill tee when exiting, CentOS, at least requires this
-    # shellcheck disable=SC2009
-    TEE_PID=$(ps ax | grep tee | grep "$LOGFILE" | awk '{print $1}')
-
-    [ "$TEE_PID" = "" ] && exit $EXIT_CODE
-
-    echodebug "Killing logging pipe tee's with pid(s): $TEE_PID"
-
-    # We need to trap errors since killing tee will cause a 127 errno
-    # We also do this as late as possible so we don't "mis-catch" other errors
-    __trap_errors() {
-        echoinfo "Errors Trapped: $EXIT_CODE"
-        # Exit with the "original" exit code, not the trapped code
-        exit $EXIT_CODE
-    }
-    trap "__trap_errors" INT ABRT QUIT TERM
-
-    # Now we're "good" to kill tee
-    kill -s TERM "$TEE_PID"
-
-    # In case the 127 errno is not triggered, exit with the "original" exit code
-    exit $EXIT_CODE
-}
-trap "__exit_cleanup" EXIT INT
-
-
-# Let's discover how we're being called
-# shellcheck disable=SC2009
-CALLER=$(ps -a -o pid,args | grep $$ | grep -v grep | tr -s ' ' | cut -d ' ' -f 3)
-
-if [ "${CALLER}x" = "${0}x" ]; then
-    CALLER="shell pipe"
-fi
-
-echoinfo "Running version: ${__ScriptVersion}"
-echoinfo "Executed by: ${CALLER}"
-echoinfo "Command line: '${__ScriptFullName} ${__ScriptArgs}'"
-#echowarn "Running the unstable version of ${__ScriptName}"
-
-# Define installation type
-if [ "$#" -gt 0 ];then
-    __check_unparsed_options "$*"
-    ITYPE=$1
-    shift
-fi
-
-# Check installation type
-if [ "$(echo "$ITYPE" | grep -E '(stable|testing|git)')" = "" ]; then
-    echoerror "Installation type \"$ITYPE\" is not known..."
-    exit 1
-fi
-
-# If doing a git install, check what branch/tag/sha will be checked out
-if [ "$ITYPE" = "git" ]; then
-    if [ "$#" -eq 0 ];then
-        GIT_REV="master"
-    else
-        GIT_REV="$1"
-        shift
-    fi
-
-    # Disable shell warning about unbound variable during git install
-    STABLE_REV="latest"
-
-# If doing stable install, check if version specified
-elif [ "$ITYPE" = "stable" ]; then
-    if [ "$#" -eq 0 ];then
-        STABLE_REV="latest"
-    else
-        if [ "$(echo "$1" | grep -E '^(latest|1\.6|1\.7|2014\.1|2014\.7|2015\.5|2015\.8|2016\.3|2016\.11|2017\.7|2018\.3|2019\.2|3000|3001|3002|3003|3004)$')" != "" ]; then
-            STABLE_REV="$1"
-            shift
-        elif [ "$(echo "$1" | grep -E '^(2[0-9]*\.[0-9]*\.[0-9]*|[3-9][0-9]{3}(\.[0-9]*)?)$')" != "" ]; then
-            # Handle the 3xxx.0 version as 3xxx archive (pin to minor) and strip the fake ".0" suffix
-            STABLE_REV=$(echo "$1" | sed -E 's/^([3-9][0-9]{3})\.0$/\1/')
-            if [ "$(uname)" != "Darwin" ]; then
-                STABLE_REV="archive/$STABLE_REV"
-            fi
-            shift
-        else
-            echo "Unknown stable version: $1 (valid: 1.6, 1.7, 2014.1, 2014.7, 2015.5, 2015.8, 2016.3, 2016.11, 2017.7, 2018.3, 2019.2, 3000, 3001, 3002, 3003, 3004, latest, \$MAJOR.\$MINOR.\$PATCH until 2019.2, \$MAJOR or \$MAJOR.\$PATCH starting from 3000)"
-            exit 1
-        fi
-    fi
-fi
-
-# Check for any unparsed arguments. Should be an error.
-if [ "$#" -gt 0 ]; then
-    __usage
-    echo
-    echoerror "Too many arguments."
-    exit 1
-fi
-
-# whoami alternative for SunOS
-if [ -f /usr/xpg4/bin/id ]; then
-    whoami='/usr/xpg4/bin/id -un'
-else
-    whoami='whoami'
-fi
-
-# Root permissions are required to run this script
-if [ "$($whoami)" != "root" ]; then
-    echoerror "Salt requires root privileges to install. Please re-run this script as root."
-    exit 1
-fi
-
-# Check that we're actually installing one of minion/master/syndic
-if [ "$_INSTALL_MINION" -eq $BS_FALSE ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && [ "$_CONFIG_ONLY" -eq $BS_FALSE ]; then
-    echowarn "Nothing to install or configure"
-    exit 1
-fi
-
-# Check that we're installing a minion if we're being passed a master address
-if [ "$_INSTALL_MINION" -eq $BS_FALSE ] && [ "$_SALT_MASTER_ADDRESS" != "null" ]; then
-    echoerror "Don't pass a master address (-A) if no minion is going to be bootstrapped."
-    exit 1
-fi
-
-# Check that we're installing a minion if we're being passed a minion id
-if [ "$_INSTALL_MINION" -eq $BS_FALSE ] && [ "$_SALT_MINION_ID" != "null" ]; then
-    echoerror "Don't pass a minion id (-i) if no minion is going to be bootstrapped."
-    exit 1
-fi
-
-# Check that we're installing or configuring a master if we're being passed a master config json dict
-if [ "$_CUSTOM_MASTER_CONFIG" != "null" ]; then
-    if [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && [ "$_CONFIG_ONLY" -eq $BS_FALSE ]; then
-        echoerror "Don't pass a master config JSON dict (-J) if no master is going to be bootstrapped or configured."
-        exit 1
-    fi
-fi
-
-# Check that we're installing or configuring a minion if we're being passed a minion config json dict
-if [ "$_CUSTOM_MINION_CONFIG" != "null" ]; then
-    if [ "$_INSTALL_MINION" -eq $BS_FALSE ] && [ "$_CONFIG_ONLY" -eq $BS_FALSE ]; then
-        echoerror "Don't pass a minion config JSON dict (-j) if no minion is going to be bootstrapped or configured."
-        exit 1
-    fi
-fi
-
-# Check if we're installing via a different Python executable and set major version variables
-if [ -n "$_PY_EXE" ]; then
-    if [ "$(uname)" = "Darwin" ]; then
-      _PY_PKG_VER=$(echo "$_PY_EXE" | sed "s/\\.//g")
-    else
-      _PY_PKG_VER=$(echo "$_PY_EXE" | sed -E "s/\\.//g")
-    fi
-
-    _PY_MAJOR_VERSION=$(echo "$_PY_PKG_VER" | cut -c 7)
-    if [ "$_PY_MAJOR_VERSION" != 3 ] && [ "$_PY_MAJOR_VERSION" != 2 ]; then
-        echoerror "Detected -x option, but Python major version is not 2 or 3."
-        echoerror "The -x option must be passed as python2, python27, or python2.7 (or use the Python '3' versions of examples)."
-        exit 1
-    fi
-
-    if [ "$_PY_EXE" != "python3" ]; then
-        echoinfo "Detected -x option. Using $_PY_EXE to install Salt."
-    fi
-else
-    _PY_PKG_VER=""
-    _PY_MAJOR_VERSION=""
-fi
-
-# If the configuration directory or archive does not exist, error out
-if [ "$_TEMP_CONFIG_DIR" != "null" ]; then
-    _TEMP_CONFIG_DIR="$(__check_config_dir "$_TEMP_CONFIG_DIR")"
-    [ "$_TEMP_CONFIG_DIR" = "null" ] && exit 1
-fi
-
-# If the pre-seed keys directory does not exist, error out
-if [ "$_TEMP_KEYS_DIR" != "null" ] && [ ! -d "$_TEMP_KEYS_DIR" ]; then
-    echoerror "The pre-seed keys directory ${_TEMP_KEYS_DIR} does not exist."
-    exit 1
-fi
-
-# -a and -V only work from git
-if [ "$ITYPE" != "git" ]; then
-    if [ $_PIP_ALL -eq $BS_TRUE ]; then
-        echoerror "Pip installing all python packages with -a is only possible when installing Salt via git"
-        exit 1
-    fi
-    if [ "$_VIRTUALENV_DIR" != "null" ]; then
-        echoerror "Virtualenv installs via -V is only possible when installing Salt via git"
-        exit 1
-    fi
-fi
-
-# Set the _REPO_URL value based on if -R was passed or not. Defaults to repo.saltproject.io.
-if [ "$_CUSTOM_REPO_URL" != "null" ]; then
-    _REPO_URL="$_CUSTOM_REPO_URL"
-
-    # Check for -r since -R is being passed. Set -r with a warning.
-    if [ "$_DISABLE_REPOS" -eq $BS_FALSE ]; then
-        echowarn "Detected -R option. No other repositories will be configured when -R is used. Setting -r option to True."
-        _DISABLE_REPOS=$BS_TRUE
-    fi
-fi
-
-# Check the _DISABLE_SSL value and set HTTP or HTTPS.
-if [ "$_DISABLE_SSL" -eq $BS_TRUE ]; then
-    HTTP_VAL="http"
-else
-    HTTP_VAL="https"
-fi
-
-# Check the _QUIET_GIT_INSTALLATION value and set SETUP_PY_INSTALL_ARGS.
-if [ "$_QUIET_GIT_INSTALLATION" -eq $BS_TRUE ]; then
-    SETUP_PY_INSTALL_ARGS="-q"
-else
-    SETUP_PY_INSTALL_ARGS=""
-fi
-
-# Handle the insecure flags
-if [ "$_INSECURE_DL" -eq $BS_TRUE ]; then
-    _CURL_ARGS="${_CURL_ARGS} --insecure"
-    _FETCH_ARGS="${_FETCH_ARGS} --no-verify-peer"
-    _GPG_ARGS="${_GPG_ARGS} --keyserver-options no-check-cert"
-    _WGET_ARGS="${_WGET_ARGS} --no-check-certificate"
-else
-    _GPG_ARGS="${_GPG_ARGS} --keyserver-options ca-cert-file=/etc/ssl/certs/ca-certificates.crt"
-fi
-
-# Export the http_proxy configuration to our current environment
-if [ "${_HTTP_PROXY}" != "" ]; then
-    export http_proxy="${_HTTP_PROXY}"
-    export https_proxy="${_HTTP_PROXY}"
-    # Using "deprecated" option here, but that appears the only way to make it work.
-    # See https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=818802
-    # and https://bugs.launchpad.net/ubuntu/+source/gnupg2/+bug/1625848
-    _GPG_ARGS="${_GPG_ARGS},http-proxy=${_HTTP_PROXY}"
-fi
-
-# Work around for 'Docker + salt-bootstrap failure' https://github.com/saltstack/salt-bootstrap/issues/394
-if [ "${_DISABLE_SALT_CHECKS}" -eq $BS_FALSE ] && [ -f /tmp/disable_salt_checks ]; then
-    # shellcheck disable=SC2016
-    echowarn 'Found file: /tmp/disable_salt_checks, setting _DISABLE_SALT_CHECKS=$BS_TRUE'
-    _DISABLE_SALT_CHECKS=$BS_TRUE
-fi
-
-# Because -a can only be installed into virtualenv
-if [ "${_PIP_ALL}" -eq $BS_TRUE ] && [ "${_VIRTUALENV_DIR}" = "null" ]; then
-    usage
-    # Could possibly set up a default virtualenv location when -a flag is passed
-    echoerror "Using -a requires -V because pip pkgs should be siloed from python system pkgs"
-    exit 1
-fi
-
-# Make sure virtualenv directory does not already exist
-if [ -d "${_VIRTUALENV_DIR}" ]; then
-    echoerror "The directory ${_VIRTUALENV_DIR} for virtualenv already exists"
-    exit 1
-fi
-
-#---  FUNCTION  -------------------------------------------------------------------------------------------------------
-#         NAME:  __fetch_url
-#  DESCRIPTION:  Retrieves a URL and writes it to a given path
-#----------------------------------------------------------------------------------------------------------------------
-__fetch_url() {
-    # shellcheck disable=SC2086
-    curl $_CURL_ARGS -L -s -f -o "$1" "$2" >/dev/null 2>&1     ||
-        wget $_WGET_ARGS -q -O "$1" "$2" >/dev/null 2>&1       ||
-            fetch $_FETCH_ARGS -q -o "$1" "$2" >/dev/null 2>&1 ||  # FreeBSD
-                fetch -q -o "$1" "$2" >/dev/null 2>&1          ||  # Pre FreeBSD 10
-                    ftp -o "$1" "$2" >/dev/null 2>&1           ||  # OpenBSD
-                        (echoerror "$2 failed to download to $1"; exit 1)
-}
-
-#---  FUNCTION  -------------------------------------------------------------------------------------------------------
-#         NAME:  __fetch_verify
-#  DESCRIPTION:  Retrieves a URL, verifies its content and writes it to standard output
-#----------------------------------------------------------------------------------------------------------------------
-__fetch_verify() {
-    fetch_verify_url="$1"
-    fetch_verify_sum="$2"
-    fetch_verify_size="$3"
-
-    fetch_verify_tmpf=$(mktemp) && \
-    __fetch_url "$fetch_verify_tmpf" "$fetch_verify_url" && \
-    test "$(stat --format=%s "$fetch_verify_tmpf")" -eq "$fetch_verify_size" && \
-    test "$(md5sum "$fetch_verify_tmpf" | awk '{ print $1 }')" = "$fetch_verify_sum" && \
-    cat "$fetch_verify_tmpf" && \
-    if rm -f "$fetch_verify_tmpf"; then
-        return 0
-    fi
-    echo "Failed verification of $fetch_verify_url"
-    return 1
-}
-
-#---  FUNCTION  -------------------------------------------------------------------------------------------------------
-#          NAME:  __gather_hardware_info
-#   DESCRIPTION:  Discover hardware information
-#----------------------------------------------------------------------------------------------------------------------
-__gather_hardware_info() {
-    if [ -f /proc/cpuinfo ]; then
-        CPU_VENDOR_ID=$(awk '/vendor_id|Processor/ {sub(/-.*$/,"",$3); print $3; exit}' /proc/cpuinfo )
-    elif [ -f /usr/bin/kstat ]; then
-        # SmartOS.
-        # Solaris!?
-        # This has only been tested for a GenuineIntel CPU
-        CPU_VENDOR_ID=$(/usr/bin/kstat -p cpu_info:0:cpu_info0:vendor_id | awk '{print $2}')
-    else
-        CPU_VENDOR_ID=$( sysctl -n hw.model )
-    fi
-    # shellcheck disable=SC2034
-    CPU_VENDOR_ID_L=$( echo "$CPU_VENDOR_ID" | tr '[:upper:]' '[:lower:]' )
-    CPU_ARCH=$(uname -m 2>/dev/null || uname -p 2>/dev/null || echo "unknown")
-    CPU_ARCH_L=$( echo "$CPU_ARCH" | tr '[:upper:]' '[:lower:]' )
-}
-__gather_hardware_info
-
-
-#---  FUNCTION  -------------------------------------------------------------------------------------------------------
-#          NAME:  __gather_os_info
-#   DESCRIPTION:  Discover operating system information
-#----------------------------------------------------------------------------------------------------------------------
-__gather_os_info() {
-    OS_NAME=$(uname -s 2>/dev/null)
-    OS_NAME_L=$( echo "$OS_NAME" | tr '[:upper:]' '[:lower:]' )
-    OS_VERSION=$(uname -r)
-    # shellcheck disable=SC2034
-    OS_VERSION_L=$( echo "$OS_VERSION" | tr '[:upper:]' '[:lower:]' )
-}
-__gather_os_info
-
-
-#---  FUNCTION  -------------------------------------------------------------------------------------------------------
-#          NAME:  __parse_version_string
-#   DESCRIPTION:  Parse version strings ignoring the revision.
-#                 MAJOR.MINOR.REVISION becomes MAJOR.MINOR
-#----------------------------------------------------------------------------------------------------------------------
-__parse_version_string() {
-    VERSION_STRING="$1"
-    PARSED_VERSION=$(
-        echo "$VERSION_STRING" |
-        sed -e 's/^/#/' \
-            -e 's/^#[^0-9]*\([0-9][0-9]*\.[0-9][0-9]*\)\(\.[0-9][0-9]*\).*$/\1/' \
-            -e 's/^#[^0-9]*\([0-9][0-9]*\.[0-9][0-9]*\).*$/\1/' \
-            -e 's/^#[^0-9]*\([0-9][0-9]*\).*$/\1/' \
-            -e 's/^#.*$//'
-    )
-    echo "$PARSED_VERSION"
-}
-
-
-#---  FUNCTION  -------------------------------------------------------------------------------------------------------
-#          NAME:  __derive_debian_numeric_version
-#   DESCRIPTION:  Derive the numeric version from a Debian version string.
-#----------------------------------------------------------------------------------------------------------------------
-__derive_debian_numeric_version() {
-    NUMERIC_VERSION=""
-    INPUT_VERSION="$1"
-    if echo "$INPUT_VERSION" | grep -q '^[0-9]'; then
-        NUMERIC_VERSION="$INPUT_VERSION"
-    elif [ -z "$INPUT_VERSION" ] && [ -f "/etc/debian_version" ]; then
-        INPUT_VERSION="$(cat /etc/debian_version)"
-    fi
-    if [ -z "$NUMERIC_VERSION" ]; then
-        if [ "$INPUT_VERSION" = "wheezy/sid" ]; then
-            # I've found an EC2 wheezy image which did not tell its version
-            NUMERIC_VERSION=$(__parse_version_string "7.0")
-        elif [ "$INPUT_VERSION" = "jessie/sid" ]; then
-            NUMERIC_VERSION=$(__parse_version_string "8.0")
-        elif [ "$INPUT_VERSION" = "stretch/sid" ]; then
-            NUMERIC_VERSION=$(__parse_version_string "9.0")
-        elif [ "$INPUT_VERSION" = "buster/sid" ]; then
-            NUMERIC_VERSION=$(__parse_version_string "10.0")
-        elif [ "$INPUT_VERSION" = "bullseye/sid" ]; then
-            NUMERIC_VERSION=$(__parse_version_string "11.0")
-        else
-            echowarn "Unable to parse the Debian Version (codename: '$INPUT_VERSION')"
-        fi
-    fi
-    echo "$NUMERIC_VERSION"
-}
-
-
-#---  FUNCTION  -------------------------------------------------------------------------------------------------------
-#          NAME:  __unquote_string
-#   DESCRIPTION:  Strip single or double quotes from the provided string.
-#----------------------------------------------------------------------------------------------------------------------
-__unquote_string() {
-    # shellcheck disable=SC1117
-    echo "$*" | sed -e "s/^\([\"\']\)\(.*\)\1\$/\2/g"
-}
-
-#---  FUNCTION  -------------------------------------------------------------------------------------------------------
-#          NAME:  __camelcase_split
-#   DESCRIPTION:  Convert 'CamelCased' strings to 'Camel Cased'
-#----------------------------------------------------------------------------------------------------------------------
-__camelcase_split() {
-    echo "$*" | sed -e 's/\([^[:upper:][:punct:]]\)\([[:upper:]]\)/\1 \2/g'
-}
-
-#---  FUNCTION  -------------------------------------------------------------------------------------------------------
-#          NAME:  __strip_duplicates
-#   DESCRIPTION:  Strip duplicate strings
-#----------------------------------------------------------------------------------------------------------------------
-__strip_duplicates() {
-    echo "$*" | tr -s '[:space:]' '\n' | awk '!x[$0]++'
-}
-
-#---  FUNCTION  -------------------------------------------------------------------------------------------------------
-#          NAME:  __sort_release_files
-#   DESCRIPTION:  Custom sort function. Alphabetical or numerical sort is not
-#                 enough.
-#----------------------------------------------------------------------------------------------------------------------
-__sort_release_files() {
-    KNOWN_RELEASE_FILES=$(echo "(arch|alpine|centos|debian|ubuntu|fedora|redhat|suse|\
-        mandrake|mandriva|gentoo|slackware|turbolinux|unitedlinux|void|lsb|system|\
-        oracle|os)(-|_)(release|version)" | sed -E 's:[[:space:]]::g')
-    primary_release_files=""
-    secondary_release_files=""
-    # Sort know VS un-known files first
-    for release_file in $(echo "${@}" | sed -E 's:[[:space:]]:\n:g' | sort -f | uniq); do
-        match=$(echo "$release_file" | grep -E -i "${KNOWN_RELEASE_FILES}")
-        if [ "${match}" != "" ]; then
-            primary_release_files="${primary_release_files} ${release_file}"
-        else
-            secondary_release_files="${secondary_release_files} ${release_file}"
-        fi
-    done
-
-    # Now let's sort by know files importance, max important goes last in the max_prio list
-    max_prio="redhat-release centos-release oracle-release fedora-release"
-    for entry in $max_prio; do
-        if [ "$(echo "${primary_release_files}" | grep "$entry")" != "" ]; then
-            primary_release_files=$(echo "${primary_release_files}" | sed -e "s:\\(.*\\)\\($entry\\)\\(.*\\):\\2 \\1 \\3:g")
-        fi
-    done
-    # Now, least important goes last in the min_prio list
-    min_prio="lsb-release"
-    for entry in $min_prio; do
-        if [ "$(echo "${primary_release_files}" | grep "$entry")" != "" ]; then
-            primary_release_files=$(echo "${primary_release_files}" | sed -e "s:\\(.*\\)\\($entry\\)\\(.*\\):\\1 \\3 \\2:g")
-        fi
-    done
-
-    # Echo the results collapsing multiple white-space into a single white-space
-    echo "${primary_release_files} ${secondary_release_files}" | sed -E 's:[[:space:]]+:\n:g'
-}
-
-
-#---  FUNCTION  -------------------------------------------------------------------------------------------------------
-#          NAME:  __gather_linux_system_info
-#   DESCRIPTION:  Discover Linux system information
-#----------------------------------------------------------------------------------------------------------------------
-__gather_linux_system_info() {
-    DISTRO_NAME=""
-    DISTRO_VERSION=""
-
-    # Let's test if the lsb_release binary is available
-    rv=$(lsb_release >/dev/null 2>&1)
-
-    # shellcheck disable=SC2181
-    if [ $? -eq 0 ]; then
-        DISTRO_NAME=$(lsb_release -si)
-        if [ "${DISTRO_NAME}" = "Scientific" ]; then
-            DISTRO_NAME="Scientific Linux"
-        elif [ "$(echo "$DISTRO_NAME" | grep ^CloudLinux)" != "" ]; then
-            DISTRO_NAME="Cloud Linux"
-        elif [ "$(echo "$DISTRO_NAME" | grep ^RedHat)" != "" ]; then
-            # Let's convert 'CamelCased' to 'Camel Cased'
-            n=$(__camelcase_split "$DISTRO_NAME")
-            # Skip setting DISTRO_NAME this time, splitting CamelCase has failed.
-            # See https://github.com/saltstack/salt-bootstrap/issues/918
-            [ "$n" = "$DISTRO_NAME" ] && DISTRO_NAME="" || DISTRO_NAME="$n"
-        elif [ "$( echo "${DISTRO_NAME}" | grep openSUSE )" != "" ]; then
-            # lsb_release -si returns "openSUSE Tumbleweed" on openSUSE tumbleweed
-            # lsb_release -si returns "openSUSE project" on openSUSE 12.3
-            # lsb_release -si returns "openSUSE" on openSUSE 15.n
-            DISTRO_NAME="opensuse"
-        elif [ "${DISTRO_NAME}" = "SUSE LINUX" ]; then
-            if [ "$(lsb_release -sd | grep -i opensuse)" != "" ]; then
-                # openSUSE 12.2 reports SUSE LINUX on lsb_release -si
-                DISTRO_NAME="opensuse"
-            else
-                # lsb_release -si returns "SUSE LINUX" on SLES 11 SP3
-                DISTRO_NAME="suse"
-            fi
-        elif [ "${DISTRO_NAME}" = "EnterpriseEnterpriseServer" ]; then
-            # This the Oracle Linux Enterprise ID before ORACLE LINUX 5 UPDATE 3
-            DISTRO_NAME="Oracle Linux"
-        elif [ "${DISTRO_NAME}" = "OracleServer" ]; then
-            # This the Oracle Linux Server 6.5
-            DISTRO_NAME="Oracle Linux"
-        elif [ "${DISTRO_NAME}" = "AmazonAMI" ] || [ "${DISTRO_NAME}" = "Amazon" ]; then
-            DISTRO_NAME="Amazon Linux AMI"
-        elif [ "${DISTRO_NAME}" = "ManjaroLinux" ]; then
-            DISTRO_NAME="Arch Linux"
-        elif [ "${DISTRO_NAME}" = "Arch" ]; then
-            DISTRO_NAME="Arch Linux"
-            return
-        fi
-        rv=$(lsb_release -sr)
-        [ "${rv}" != "" ] && DISTRO_VERSION=$(__parse_version_string "$rv")
-    elif [ -f /etc/lsb-release ]; then
-        # We don't have the lsb_release binary, though, we do have the file it parses
-        DISTRO_NAME=$(grep DISTRIB_ID /etc/lsb-release | sed -e 's/.*=//')
-        rv=$(grep DISTRIB_RELEASE /etc/lsb-release | sed -e 's/.*=//')
-        [ "${rv}" != "" ] && DISTRO_VERSION=$(__parse_version_string "$rv")
-    fi
-
-    if [ "$DISTRO_NAME" != "" ] && [ "$DISTRO_VERSION" != "" ]; then
-        # We already have the distribution name and version
-        return
-    fi
-    # shellcheck disable=SC2035,SC2086
-    for rsource in $(__sort_release_files "$(
-            cd /etc && /bin/ls *[_-]release *[_-]version 2>/dev/null | env -i sort | \
-            sed -e '/^redhat-release$/d' -e '/^lsb-release$/d'; \
-            echo redhat-release lsb-release
-            )"); do
-
-        [ ! -f "/etc/${rsource}" ] && continue      # Does not exist
-
-        n=$(echo "${rsource}" | sed -e 's/[_-]release$//' -e 's/[_-]version$//')
-        shortname=$(echo "${n}" | tr '[:upper:]' '[:lower:]')
-        if [ "$shortname" = "debian" ]; then
-            rv=$(__derive_debian_numeric_version "$(cat /etc/${rsource})")
-        else
-            rv=$( (grep VERSION "/etc/${rsource}"; cat "/etc/${rsource}") | grep '[0-9]' | sed -e 'q' )
-        fi
-        [ "${rv}" = "" ] && [ "$shortname" != "arch" ] && continue  # There's no version information. Continue to next rsource
-        v=$(__parse_version_string "$rv")
-        case $shortname in
-            redhat             )
-                if [ "$(grep -E 'CentOS' /etc/${rsource})" != "" ]; then
-                    n="CentOS"
-                elif [ "$(grep -E 'Scientific' /etc/${rsource})" != "" ]; then
-                    n="Scientific Linux"
-                elif [ "$(grep -E 'Red Hat Enterprise Linux' /etc/${rsource})" != "" ]; then
-                    n="<R>ed <H>at <E>nterprise <L>inux"
-                else
-                    n="<R>ed <H>at <L>inux"
-                fi
-                ;;
-            arch               ) n="Arch Linux"     ;;
-            alpine             ) n="Alpine Linux"   ;;
-            centos             ) n="CentOS"         ;;
-            debian             ) n="Debian"         ;;
-            ubuntu             ) n="Ubuntu"         ;;
-            fedora             ) n="Fedora"         ;;
-            suse|opensuse      ) n="SUSE"           ;;
-            mandrake*|mandriva ) n="Mandriva"       ;;
-            gentoo             ) n="Gentoo"         ;;
-            slackware          ) n="Slackware"      ;;
-            turbolinux         ) n="TurboLinux"     ;;
-            unitedlinux        ) n="UnitedLinux"    ;;
-            void               ) n="VoidLinux"      ;;
-            oracle             ) n="Oracle Linux"   ;;
-            system             )
-                while read -r line; do
-                    [ "${n}x" != "systemx" ] && break
-                    case "$line" in
-                        *Amazon*Linux*AMI*)
-                            n="Amazon Linux AMI"
-                            break
-                    esac
-                done < "/etc/${rsource}"
-                ;;
-            os                 )
-                nn="$(__unquote_string "$(grep '^ID=' /etc/os-release | sed -e 's/^ID=\(.*\)$/\1/g')")"
-                rv="$(__unquote_string "$(grep '^VERSION_ID=' /etc/os-release | sed -e 's/^VERSION_ID=\(.*\)$/\1/g')")"
-                [ "${rv}" != "" ] && v=$(__parse_version_string "$rv") || v=""
-                case $(echo "${nn}" | tr '[:upper:]' '[:lower:]') in
-                    alpine      )
-                        n="Alpine Linux"
-                        v="${rv}"
-                        ;;
-                    amzn        )
-                        # Amazon AMI's after 2014.09 match here
-                        n="Amazon Linux AMI"
-                        ;;
-                    arch        )
-                        n="Arch Linux"
-                        v=""  # Arch Linux does not provide a version.
-                        ;;
-                    cloudlinux  )
-                        n="Cloud Linux"
-                        ;;
-                    debian      )
-                        n="Debian"
-                        v=$(__derive_debian_numeric_version "$v")
-                        ;;
-                    sles  )
-                        n="SUSE"
-                        v="${rv}"
-                        ;;
-                    opensuse-* )
-                        n="opensuse"
-                        v="${rv}"
-                        ;;
-                    *           )
-                        n=${nn}
-                        ;;
-                esac
-                ;;
-            *                  ) n="${n}"           ;
-        esac
-        DISTRO_NAME=$n
-        DISTRO_VERSION=$v
-        break
-    done
-}
-
-
-#---  FUNCTION  -------------------------------------------------------------------------------------------------------
-#          NAME:  __install_python()
-#   DESCRIPTION:  Install a different version of python on a host. Currently this has only been tested on CentOS 6 and
-#                 is considered experimental.
-#----------------------------------------------------------------------------------------------------------------------
-__install_python() {
-    if [ "$_PY_EXE" = "" ]; then
-        echoerror "Must specify -x <pythonversion> with -y to install a specific python version"
-        exit 1
-    fi
-
-    __PACKAGES="$_PY_PKG_VER"
-
-    if [ ${_DISABLE_REPOS} -eq ${BS_FALSE} ]; then
-        echoinfo "Attempting to install a repo to help provide a separate python package"
-        echoinfo "$DISTRO_NAME_L"
-        case "$DISTRO_NAME_L" in
-            "red_hat"|"centos")
-                __PYTHON_REPO_URL="https://repo.ius.io/ius-release-el${DISTRO_MAJOR_VERSION}.rpm"
-                ;;
-            *)
-                echoerror "Installing a repo to provide a python package is only supported on Redhat/CentOS.
-                If a repo is already available, please try running script with -r."
-                exit 1
-                ;;
-        esac
-
-        echoinfo "Installing IUS repo"
-        __yum_install_noinput "${__PYTHON_REPO_URL}" || return 1
-    fi
-
-    echoinfo "Installing ${__PACKAGES}"
-    __yum_install_noinput "${__PACKAGES}" || return 1
-}
-
-
-#---  FUNCTION  -------------------------------------------------------------------------------------------------------
-#          NAME:  __gather_sunos_system_info
-#   DESCRIPTION:  Discover SunOS system info
-#----------------------------------------------------------------------------------------------------------------------
-__gather_sunos_system_info() {
-    if [ -f /sbin/uname ]; then
-        DISTRO_VERSION=$(/sbin/uname -X | awk '/[kK][eE][rR][nN][eE][lL][iI][dD]/ { print $3 }')
-    fi
-
-    DISTRO_NAME=""
-    if [ -f /etc/release ]; then
-        while read -r line; do
-            [ "${DISTRO_NAME}" != "" ] && break
-            case "$line" in
-                *OpenIndiana*oi_[0-9]*)
-                    DISTRO_NAME="OpenIndiana"
-                    DISTRO_VERSION=$(echo "$line" | sed -nE "s/OpenIndiana(.*)oi_([[:digit:]]+)(.*)/\\2/p")
-                    break
-                    ;;
-                *OpenSolaris*snv_[0-9]*)
-                    DISTRO_NAME="OpenSolaris"
-                    DISTRO_VERSION=$(echo "$line" | sed -nE "s/OpenSolaris(.*)snv_([[:digit:]]+)(.*)/\\2/p")
-                    break
-                    ;;
-                *Oracle*Solaris*[0-9]*)
-                    DISTRO_NAME="Oracle Solaris"
-                    DISTRO_VERSION=$(echo "$line" | sed -nE "s/(Oracle Solaris) ([[:digit:]]+)(.*)/\\2/p")
-                    break
-                    ;;
-                *Solaris*)
-                    DISTRO_NAME="Solaris"
-                    # Let's make sure we not actually on a Joyent's SmartOS VM since some releases
-                    # don't have SmartOS in `/etc/release`, only `Solaris`
-                    if uname -v | grep joyent >/dev/null 2>&1; then
-                        DISTRO_NAME="SmartOS"
-                    fi
-                    break
-                    ;;
-                *NexentaCore*)
-                    DISTRO_NAME="Nexenta Core"
-                    break
-                    ;;
-                *SmartOS*)
-                    DISTRO_NAME="SmartOS"
-                    break
-                    ;;
-                *OmniOS*)
-                    DISTRO_NAME="OmniOS"
-                    DISTRO_VERSION=$(echo "$line" | awk '{print $3}')
-                    _SIMPLIFY_VERSION=$BS_FALSE
-                    break
-                    ;;
-            esac
-        done < /etc/release
-    fi
-
-    if [ "${DISTRO_NAME}" = "" ]; then
-        DISTRO_NAME="Solaris"
-        DISTRO_VERSION=$(
-            echo "${OS_VERSION}" |
-            sed -e 's;^4\.;1.;' \
-                -e 's;^5\.\([0-6]\)[^0-9]*$;2.\1;' \
-                -e 's;^5\.\([0-9][0-9]*\).*;\1;'
-        )
-    fi
-
-    if [ "${DISTRO_NAME}" = "SmartOS" ]; then
-        VIRTUAL_TYPE="smartmachine"
-        if [ "$(zonename)" = "global" ]; then
-            VIRTUAL_TYPE="global"
-        fi
-    fi
-}
-
-
-#---  FUNCTION  -------------------------------------------------------------------------------------------------------
-#          NAME:  __gather_bsd_system_info
-#   DESCRIPTION:  Discover OpenBSD, NetBSD and FreeBSD systems information
-#----------------------------------------------------------------------------------------------------------------------
-__gather_bsd_system_info() {
-    DISTRO_NAME=${OS_NAME}
-    DISTRO_VERSION=$(echo "${OS_VERSION}" | sed -e 's;[()];;' -e 's/-.*$//')
-}
-
-
-#---  FUNCTION  -------------------------------------------------------------------------------------------------------
-#          NAME:  __gather_osx_system_info
-#   DESCRIPTION:  Discover MacOS X
-#----------------------------------------------------------------------------------------------------------------------
-__gather_osx_system_info() {
-    DISTRO_NAME="MacOSX"
-    DISTRO_VERSION=$(sw_vers -productVersion)
-}
-
-
-#---  FUNCTION  -------------------------------------------------------------------------------------------------------
-#          NAME:  __gather_system_info
-#   DESCRIPTION:  Discover which system and distribution we are running.
-#----------------------------------------------------------------------------------------------------------------------
-__gather_system_info() {
-    case ${OS_NAME_L} in
-        linux )
-            __gather_linux_system_info
-            ;;
-        sunos )
-            __gather_sunos_system_info
-            ;;
-        openbsd|freebsd|netbsd )
-            __gather_bsd_system_info
-            ;;
-        darwin )
-            __gather_osx_system_info
-            ;;
-        * )
-            echoerror "${OS_NAME} not supported.";
-            exit 1
-            ;;
-    esac
-
-}
-
-
-#---  FUNCTION  -------------------------------------------------------------------------------------------------------
-#          NAME:  __ubuntu_derivatives_translation
-#   DESCRIPTION:  Map Ubuntu derivatives to their Ubuntu base versions.
-#                 If distro has a known Ubuntu base version, use those install
-#                 functions by pretending to be Ubuntu (i.e. change global vars)
-#----------------------------------------------------------------------------------------------------------------------
-# shellcheck disable=SC2034
-__ubuntu_derivatives_translation() {
-    UBUNTU_DERIVATIVES="(trisquel|linuxmint|linaro|elementary_os|neon)"
-    # Mappings
-    trisquel_6_ubuntu_base="12.04"
-    linuxmint_13_ubuntu_base="12.04"
-    linuxmint_17_ubuntu_base="14.04"
-    linuxmint_18_ubuntu_base="16.04"
-    linuxmint_19_ubuntu_base="18.04"
-    linuxmint_20_ubuntu_base="20.04"
-    linaro_12_ubuntu_base="12.04"
-    elementary_os_02_ubuntu_base="12.04"
-    neon_16_ubuntu_base="16.04"
-    neon_18_ubuntu_base="18.04"
-    neon_20_ubuntu_base="20.04"
-
-    # Translate Ubuntu derivatives to their base Ubuntu version
-    match=$(echo "$DISTRO_NAME_L" | grep -E ${UBUNTU_DERIVATIVES})
-
-    if [ "${match}" != "" ]; then
-        case $match in
-            "elementary_os")
-                _major=$(echo "$DISTRO_VERSION" | sed 's/\.//g')
-                ;;
-            "linuxmint")
-                export LSB_ETC_LSB_RELEASE=/etc/upstream-release/lsb-release
-                _major=$(echo "$DISTRO_VERSION" | sed 's/^\([0-9]*\).*/\1/g')
-                ;;
-            *)
-                _major=$(echo "$DISTRO_VERSION" | sed 's/^\([0-9]*\).*/\1/g')
-                ;;
-        esac
-
-        _ubuntu_version=$(eval echo "\$${match}_${_major}_ubuntu_base")
-
-        if [ "$_ubuntu_version" != "" ]; then
-            echodebug "Detected Ubuntu $_ubuntu_version derivative"
-            DISTRO_NAME_L="ubuntu"
-            DISTRO_VERSION="$_ubuntu_version"
-        fi
-    fi
-}
-
-
-#---  FUNCTION  -------------------------------------------------------------------------------------------------------
-#          NAME:  __check_dpkg_architecture
-#   DESCRIPTION:  Determine the primary architecture for packages to install on Debian and derivatives
-#                 and issue all necessary error messages.
-#----------------------------------------------------------------------------------------------------------------------
-__check_dpkg_architecture() {
-    if __check_command_exists dpkg; then
-        DPKG_ARCHITECTURE="$(dpkg --print-architecture)"
-    else
-        echoerror "dpkg: command not found."
-        return 1
-    fi
-
-    __REPO_ARCH="$DPKG_ARCHITECTURE"
-    __REPO_ARCH_DEB='deb [signed-by=/usr/share/keyrings/salt-archive-keyring.gpg]'
-    __return_code=0
-
-    case $DPKG_ARCHITECTURE in
-        "i386")
-            error_msg="$_REPO_URL likely doesn't have all required 32-bit packages for $DISTRO_NAME $DISTRO_MAJOR_VERSION."
-            # amd64 is just a part of repository URI, 32-bit pkgs are hosted under the same location
-            __REPO_ARCH="amd64"
-            ;;
-        "amd64")
-            error_msg=""
-            ;;
-        "arm64")
-            if [ "$_CUSTOM_REPO_URL" != "null" ]; then
-                warn_msg="Support for arm64 is experimental, make sure the custom repository used has the expected structure and contents."
-            else
-                # Saltstack official repository does not yet have arm64 metadata,
-                # use amd64 repositories on arm64, since all pkgs are arch-independent
-                __REPO_ARCH="amd64"
-                __REPO_ARCH_DEB="deb [signed-by=/usr/share/keyrings/salt-archive-keyring.gpg arch=$__REPO_ARCH]"
-                warn_msg="Support for arm64 packages is experimental and might rely on architecture-independent packages from the amd64 repository."
-            fi
-            error_msg=""
-            ;;
-        "armhf")
-            if [ "$DISTRO_NAME_L" = "ubuntu" ] || [ "$DISTRO_MAJOR_VERSION" -lt 8 ]; then
-                error_msg="Support for armhf packages at $_REPO_URL is limited to Debian/Raspbian 8 platforms."
-                __return_code=1
-            else
-                error_msg=""
-            fi
-            ;;
-        *)
-            error_msg="$_REPO_URL doesn't have packages for your system architecture: $DPKG_ARCHITECTURE."
-            __return_code=1
-            ;;
-    esac
-
-    if [ "${warn_msg:-}" != "" ]; then
-        # AArch64: Do not fail at this point, but warn the user about experimental support
-        # See https://github.com/saltstack/salt-bootstrap/issues/1240
-        echowarn "${warn_msg}"
-    fi
-    if [ "${error_msg}" != "" ]; then
-        echoerror "${error_msg}"
-        if [ "$ITYPE" != "git" ]; then
-            echoerror "You can try git installation mode, i.e.: sh ${__ScriptName} git v2017.7.2."
-            echoerror "It may be necessary to use git installation mode with pip and disable the SaltStack apt repository."
-            echoerror "For example:"
-            echoerror "    sh ${__ScriptName} -r -P git v2017.7.2"
-        fi
-    fi
-
-    if [ "${__return_code}" -eq 0 ]; then
-        return 0
-    else
-        return 1
-    fi
-}
-
-
-#---  FUNCTION  -------------------------------------------------------------------------------------------------------
-#          NAME:  __ubuntu_codename_translation
-#   DESCRIPTION:  Map Ubuntu major versions to their corresponding codenames
-#----------------------------------------------------------------------------------------------------------------------
-# shellcheck disable=SC2034
-__ubuntu_codename_translation() {
-    case $DISTRO_MINOR_VERSION in
-        "04")
-            _april="yes"
-            ;;
-        "10")
-            _april=""
-            ;;
-        *)
-            _april="yes"
-            ;;
-    esac
-
-    case $DISTRO_MAJOR_VERSION in
-        "12")
-            DISTRO_CODENAME="precise"
-            ;;
-        "14")
-            DISTRO_CODENAME="trusty"
-            ;;
-        "16")
-            DISTRO_CODENAME="xenial"
-            ;;
-        "18")
-            DISTRO_CODENAME="bionic"
-            ;;
-        "20")
-            DISTRO_CODENAME="focal"
-            ;;
-        "21")
-            DISTRO_CODENAME="hirsute"
-            ;;
-        *)
-            DISTRO_CODENAME="trusty"
-            ;;
-    esac
-}
-
-
-#---  FUNCTION  -------------------------------------------------------------------------------------------------------
-#          NAME:  __debian_derivatives_translation
-#   DESCRIPTION:  Map Debian derivatives to their Debian base versions.
-#                 If distro has a known Debian base version, use those install
-#                 functions by pretending to be Debian (i.e. change global vars)
-#----------------------------------------------------------------------------------------------------------------------
-# shellcheck disable=SC2034
-__debian_derivatives_translation() {
-    # If the file does not exist, return
-    [ ! -f /etc/os-release ] && return
-
-    DEBIAN_DERIVATIVES="(cumulus|devuan|kali|linuxmint|raspbian|bunsenlabs|turnkey)"
-    # Mappings
-    cumulus_2_debian_base="7.0"
-    cumulus_3_debian_base="8.0"
-    cumulus_4_debian_base="10.0"
-    devuan_1_debian_base="8.0"
-    devuan_2_debian_base="9.0"
-    kali_1_debian_base="7.0"
-    linuxmint_1_debian_base="8.0"
-    raspbian_8_debian_base="8.0"
-    raspbian_9_debian_base="9.0"
-    raspbian_10_debian_base="10.0"
-    bunsenlabs_9_debian_base="9.0"
-    turnkey_9_debian_base="9.0"
-
-    # Translate Debian derivatives to their base Debian version
-    match=$(echo "$DISTRO_NAME_L" | grep -E ${DEBIAN_DERIVATIVES})
-
-    if [ "${match}" != "" ]; then
-        case $match in
-            cumulus*)
-                _major=$(echo "$DISTRO_VERSION" | sed 's/^\([0-9]*\).*/\1/g')
-                _debian_derivative="cumulus"
-                ;;
-            devuan)
-                _major=$(echo "$DISTRO_VERSION" | sed 's/^\([0-9]*\).*/\1/g')
-                _debian_derivative="devuan"
-                ;;
-            kali)
-                _major=$(echo "$DISTRO_VERSION" | sed 's/^\([0-9]*\).*/\1/g')
-                _debian_derivative="kali"
-                ;;
-            linuxmint)
-                _major=$(echo "$DISTRO_VERSION" | sed 's/^\([0-9]*\).*/\1/g')
-                _debian_derivative="linuxmint"
-                ;;
-            raspbian)
-                _major=$(echo "$DISTRO_VERSION" | sed 's/^\([0-9]*\).*/\1/g')
-                _debian_derivative="raspbian"
-                ;;
-            bunsenlabs)
-                _major=$(echo "$DISTRO_VERSION" | sed 's/^\([0-9]*\).*/\1/g')
-                _debian_derivative="bunsenlabs"
-                ;;
-            turnkey)
-                _major=$(echo "$DISTRO_VERSION" | sed 's/^\([0-9]*\).*/\1/g')
-                _debian_derivative="turnkey"
-                ;;
-        esac
-
-        _debian_version=$(eval echo "\$${_debian_derivative}_${_major}_debian_base" 2>/dev/null)
-
-        if [ "$_debian_version" != "" ]; then
-            echodebug "Detected Debian $_debian_version derivative"
-            DISTRO_NAME_L="debian"
-            DISTRO_VERSION="$_debian_version"
-            DISTRO_MAJOR_VERSION="$(echo "$DISTRO_VERSION" | sed 's/^\([0-9]*\).*/\1/g')"
-        fi
-    fi
-}
-
-
-#---  FUNCTION  -------------------------------------------------------------------------------------------------------
-#          NAME:  __debian_codename_translation
-#   DESCRIPTION:  Map Debian major versions to their corresponding code names
-#----------------------------------------------------------------------------------------------------------------------
-# shellcheck disable=SC2034
-__debian_codename_translation() {
-
-    case $DISTRO_MAJOR_VERSION in
-        "9")
-            DISTRO_CODENAME="stretch"
-            ;;
-        "10")
-            DISTRO_CODENAME="buster"
-            ;;
-        "11")
-            DISTRO_CODENAME="bullseye"
-            ;;
-        *)
-            DISTRO_CODENAME="stretch"
-            ;;
-    esac
-}
-
-
-#---  FUNCTION  -------------------------------------------------------------------------------------------------------
-#          NAME:  __check_end_of_life_versions
-#   DESCRIPTION:  Check for end of life distribution versions
-#----------------------------------------------------------------------------------------------------------------------
-__check_end_of_life_versions() {
-    case "${DISTRO_NAME_L}" in
-        debian)
-            # Debian versions below 9 are not supported
-            if [ "$DISTRO_MAJOR_VERSION" -lt 9 ]; then
-                echoerror "End of life distributions are not supported."
-                echoerror "Please consider upgrading to the next stable. See:"
-                echoerror "    https://wiki.debian.org/DebianReleases"
-                exit 1
-            fi
-            ;;
-
-        ubuntu)
-            # Ubuntu versions not supported
-            #
-            #  < 16.04
-            #  = 16.10
-            #  = 17.04, 17.10
-            #  = 18.10
-            #  = 19.04, 19.10
-            if [ "$DISTRO_MAJOR_VERSION" -lt 16 ] || \
-                [ "$DISTRO_MAJOR_VERSION" -eq 17 ] || \
-                [ "$DISTRO_MAJOR_VERSION" -eq 19 ] || \
-                { [ "$DISTRO_MAJOR_VERSION" -eq 16 ] && [ "$DISTRO_MINOR_VERSION" -eq 10 ]; } || \
-                { [ "$DISTRO_MAJOR_VERSION" -eq 18 ] && [ "$DISTRO_MINOR_VERSION" -eq 10 ]; }; then
-                echoerror "End of life distributions are not supported."
-                echoerror "Please consider upgrading to the next stable. See:"
-                echoerror "    https://wiki.ubuntu.com/Releases"
-                exit 1
-            fi
-            ;;
-
-        opensuse)
-            # openSUSE versions not supported
-            #
-            #  <= 13.X
-            #  <= 42.2
-            if [ "$DISTRO_MAJOR_VERSION" -lt 15 ] || \
-                { [ "$DISTRO_MAJOR_VERSION" -eq 42 ] && [ "$DISTRO_MINOR_VERSION" -le 2 ]; }; then
-                echoerror "End of life distributions are not supported."
-                echoerror "Please consider upgrading to the next stable. See:"
-                echoerror "    http://en.opensuse.org/Lifetime"
-                exit 1
-            fi
-            ;;
-
-        suse)
-            # SuSE versions not supported
-            #
-            # < 11 SP4
-            # < 12 SP2
-            # < 15 SP1
-            SUSE_PATCHLEVEL=$(awk -F'=' '/VERSION_ID/ { print $2 }' /etc/os-release | grep -oP "\.\K\w+")
-            if [ "${SUSE_PATCHLEVEL}" = "" ]; then
-                SUSE_PATCHLEVEL="00"
-            fi
-            if [ "$DISTRO_MAJOR_VERSION" -lt 11 ] || \
-                { [ "$DISTRO_MAJOR_VERSION" -eq 11 ] && [ "$SUSE_PATCHLEVEL" -lt 04 ]; } || \
-                { [ "$DISTRO_MAJOR_VERSION" -eq 15 ] && [ "$SUSE_PATCHLEVEL" -lt 01 ]; } || \
-                { [ "$DISTRO_MAJOR_VERSION" -eq 12 ] && [ "$SUSE_PATCHLEVEL" -lt 02 ]; }; then
-                echoerror "Versions lower than SuSE 11 SP4, 12 SP2 or 15 SP1 are not supported."
-                echoerror "Please consider upgrading to the next stable"
-                echoerror "    https://www.suse.com/lifecycle/"
-                exit 1
-            fi
-            ;;
-
-        fedora)
-            # Fedora lower than 33 are no longer supported
-            if [ "$DISTRO_MAJOR_VERSION" -lt 33 ]; then
-                echoerror "End of life distributions are not supported."
-                echoerror "Please consider upgrading to the next stable. See:"
-                echoerror "    https://fedoraproject.org/wiki/Releases"
-                exit 1
-            fi
-            ;;
-
-        centos)
-            # CentOS versions lower than 7 are no longer supported
-            if [ "$DISTRO_MAJOR_VERSION" -lt 7 ]; then
-                echoerror "End of life distributions are not supported."
-                echoerror "Please consider upgrading to the next stable. See:"
-                echoerror "    http://wiki.centos.org/Download"
-                exit 1
-            fi
-            ;;
-
-        red_hat*linux)
-            # Red Hat (Enterprise) Linux versions lower than 7 are no longer supported
-            if [ "$DISTRO_MAJOR_VERSION" -lt 7 ]; then
-                echoerror "End of life distributions are not supported."
-                echoerror "Please consider upgrading to the next stable. See:"
-                echoerror "    https://access.redhat.com/support/policy/updates/errata/"
-                exit 1
-            fi
-            ;;
-
-        oracle*linux)
-            # Oracle Linux versions lower than 7 are no longer supported
-            if [ "$DISTRO_MAJOR_VERSION" -lt 7 ]; then
-                echoerror "End of life distributions are not supported."
-                echoerror "Please consider upgrading to the next stable. See:"
-                echoerror "    http://www.oracle.com/us/support/library/elsp-lifetime-069338.pdf"
-                exit 1
-            fi
-            ;;
-
-        scientific*linux)
-            # Scientific Linux versions lower than 7 are no longer supported
-            if [ "$DISTRO_MAJOR_VERSION" -lt 7 ]; then
-                echoerror "End of life distributions are not supported."
-                echoerror "Please consider upgrading to the next stable. See:"
-                echoerror "    https://www.scientificlinux.org/downloads/sl-versions/"
-                exit 1
-            fi
-            ;;
-
-        cloud*linux)
-            # Cloud Linux versions lower than 7 are no longer supported
-            if [ "$DISTRO_MAJOR_VERSION" -lt 7 ]; then
-                echoerror "End of life distributions are not supported."
-                echoerror "Please consider upgrading to the next stable. See:"
-                echoerror "    https://docs.cloudlinux.com/index.html?cloudlinux_life-cycle.html"
-                exit 1
-            fi
-            ;;
-
-        amazon*linux*ami)
-            # Amazon Linux versions 2018.XX and lower no longer supported
-            # Except for Amazon Linux 2, which reset the major version counter
-            if [ "$DISTRO_MAJOR_VERSION" -le 2018 ] && [ "$DISTRO_MAJOR_VERSION" -gt 10 ]; then
-                echoerror "End of life distributions are not supported."
-                echoerror "Please consider upgrading to the next stable. See:"
-                echoerror "    https://aws.amazon.com/amazon-linux-ami/"
-                exit 1
-            fi
-            ;;
-
-        freebsd)
-            # FreeBSD versions lower than 11 are EOL
-            if [ "$DISTRO_MAJOR_VERSION" -lt 11 ]; then
-                echoerror "Versions lower than FreeBSD 11 are EOL and no longer supported."
-                exit 1
-            fi
-            ;;
-
-        *)
-            ;;
-    esac
-}
-
-
-__gather_system_info
-
-echo
-echoinfo "System Information:"
-echoinfo "  CPU:          ${CPU_VENDOR_ID}"
-echoinfo "  CPU Arch:     ${CPU_ARCH}"
-echoinfo "  OS Name:      ${OS_NAME}"
-echoinfo "  OS Version:   ${OS_VERSION}"
-echoinfo "  Distribution: ${DISTRO_NAME} ${DISTRO_VERSION}"
-echo
-
-# Simplify distro name naming on functions
-DISTRO_NAME_L=$(echo "$DISTRO_NAME" | tr '[:upper:]' '[:lower:]' | sed 's/[^a-zA-Z0-9_ ]//g' | sed -Ee 's/([[:space:]])+/_/g' | sed -Ee 's/tumbleweed//' )
-
-# Simplify version naming on functions
-if [ "$DISTRO_VERSION" = "" ] || [ ${_SIMPLIFY_VERSION} -eq $BS_FALSE ]; then
-    DISTRO_MAJOR_VERSION=""
-    DISTRO_MINOR_VERSION=""
-    PREFIXED_DISTRO_MAJOR_VERSION=""
-    PREFIXED_DISTRO_MINOR_VERSION=""
-else
-    DISTRO_MAJOR_VERSION=$(echo "$DISTRO_VERSION" | sed 's/^\([0-9]*\).*/\1/g')
-    DISTRO_MINOR_VERSION=$(echo "$DISTRO_VERSION" | sed 's/^\([0-9]*\).\([0-9]*\).*/\2/g')
-    PREFIXED_DISTRO_MAJOR_VERSION="_${DISTRO_MAJOR_VERSION}"
-    if [ "${PREFIXED_DISTRO_MAJOR_VERSION}" = "_" ]; then
-        PREFIXED_DISTRO_MAJOR_VERSION=""
-    fi
-    PREFIXED_DISTRO_MINOR_VERSION="_${DISTRO_MINOR_VERSION}"
-    if [ "${PREFIXED_DISTRO_MINOR_VERSION}" = "_" ]; then
-        PREFIXED_DISTRO_MINOR_VERSION=""
-    fi
-fi
-
-# For Ubuntu derivatives, pretend to be their Ubuntu base version
-__ubuntu_derivatives_translation
-
-# For Debian derivates, pretend to be their Debian base version
-__debian_derivatives_translation
-
-# Fail soon for end of life versions
-__check_end_of_life_versions
-
-echodebug "Binaries will be searched using the following \$PATH: ${PATH}"
-
-# Let users know that we'll use a proxy
-if [ "${_HTTP_PROXY}" != "" ]; then
-    echoinfo "Using http proxy $_HTTP_PROXY"
-fi
-
-# Let users know what's going to be installed/configured
-if [ "$_INSTALL_MINION" -eq $BS_TRUE ]; then
-    if [ "$_CONFIG_ONLY" -eq $BS_FALSE ]; then
-        echoinfo "Installing minion"
-    else
-        echoinfo "Configuring minion"
-    fi
-fi
-
-if [ "$_INSTALL_MASTER" -eq $BS_TRUE ]; then
-    if [ "$_CONFIG_ONLY" -eq $BS_FALSE ]; then
-        echoinfo "Installing master"
-    else
-        echoinfo "Configuring master"
-    fi
-fi
-
-if [ "$_INSTALL_SYNDIC" -eq $BS_TRUE ]; then
-    if [ "$_CONFIG_ONLY" -eq $BS_FALSE ]; then
-        echoinfo "Installing syndic"
-    else
-        echoinfo "Configuring syndic"
-    fi
-fi
-
-if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ] && [ "$_CONFIG_ONLY" -eq $BS_FALSE ]; then
-    echoinfo "Installing salt-cloud and required python-libcloud package"
-fi
-
-if [ $_START_DAEMONS -eq $BS_FALSE ]; then
-    echoinfo "Daemons will not be started"
-fi
-
-if [ "${DISTRO_NAME_L}" = "ubuntu" ]; then
-  # For ubuntu versions, obtain the codename from the release version
-  __ubuntu_codename_translation
-elif [ "${DISTRO_NAME_L}" = "debian" ]; then
-  # For debian versions, obtain the codename from the release version
-  __debian_codename_translation
-fi
-
-if [ "$(echo "${DISTRO_NAME_L}" | grep -E '(debian|ubuntu|centos|gentoo|red_hat|oracle|scientific|amazon|fedora|macosx)')" = "" ] && [ "$ITYPE" = "stable" ] && [ "$STABLE_REV" != "latest" ]; then
-    echoerror "${DISTRO_NAME} does not have major version pegged packages support"
-    exit 1
-fi
-
-# Only RedHat based distros have testing support
-if [ "${ITYPE}" = "testing" ]; then
-    if [ "$(echo "${DISTRO_NAME_L}" | grep -E '(centos|red_hat|amazon|oracle)')" = "" ]; then
-        echoerror "${DISTRO_NAME} does not have testing packages support"
-        exit 1
-    fi
-    _EPEL_REPO="epel-testing"
-fi
-
-# Only Ubuntu has support for installing to virtualenvs
-if [ "${DISTRO_NAME_L}" != "ubuntu" ] && [ "$_VIRTUALENV_DIR" != "null" ]; then
-    echoerror "${DISTRO_NAME} does not have -V support"
-    exit 1
-fi
-
-# Only Ubuntu has support for pip installing all packages
-if [ "${DISTRO_NAME_L}" != "ubuntu" ] && [ $_PIP_ALL -eq $BS_TRUE ]; then
-    echoerror "${DISTRO_NAME} does not have -a support"
-    exit 1
-fi
-
-if [ "$ITYPE" = "git" ]; then
-
-    if [ "${GIT_REV}" = "master" ]; then
-        _POST_NEON_INSTALL=$BS_TRUE
-        __TAG_REGEX_MATCH="MATCH"
-    else
-        case ${OS_NAME_L} in
-            openbsd|freebsd|netbsd|darwin )
-                __NEW_VS_TAG_REGEX_MATCH=$(echo "${GIT_REV}" | sed -E 's/^(v?3[0-9]{3}(\.[0-9]{1,2})?).*$/MATCH/')
-                if [ "$__NEW_VS_TAG_REGEX_MATCH" = "MATCH" ]; then
-                    _POST_NEON_INSTALL=$BS_TRUE
-                    __TAG_REGEX_MATCH="${__NEW_VS_TAG_REGEX_MATCH}"
-                    if [ "$(echo "${GIT_REV}" | cut -c -1)" != "v" ]; then
-                        # We do this to properly clone tags
-                        GIT_REV="v${GIT_REV}"
-                    fi
-                    echodebug "Post Neon Tag Regex Match On: ${GIT_REV}"
-                else
-                    __TAG_REGEX_MATCH=$(echo "${GIT_REV}" | sed -E 's/^(v?[0-9]{1,4}\.[0-9]{1,2})(\.[0-9]{1,2})?.*$/MATCH/')
-                    echodebug "Pre Neon Tag Regex Match On: ${GIT_REV}"
-                fi
-                ;;
-            * )
-                __NEW_VS_TAG_REGEX_MATCH=$(echo "${GIT_REV}" | sed 's/^.*\(v\?3[[:digit:]]\{3\}\(\.[[:digit:]]\{1,2\}\)\?\).*$/MATCH/')
-                if [ "$__NEW_VS_TAG_REGEX_MATCH" = "MATCH" ]; then
-                    _POST_NEON_INSTALL=$BS_TRUE
-                    __TAG_REGEX_MATCH="${__NEW_VS_TAG_REGEX_MATCH}"
-                    if [ "$(echo "${GIT_REV}" | cut -c -1)" != "v" ]; then
-                        # We do this to properly clone tags
-                        GIT_REV="v${GIT_REV}"
-                    fi
-                    echodebug "Post Neon Tag Regex Match On: ${GIT_REV}"
-                else
-                    __TAG_REGEX_MATCH=$(echo "${GIT_REV}" | sed 's/^.*\(v\?[[:digit:]]\{1,4\}\.[[:digit:]]\{1,2\}\)\(\.[[:digit:]]\{1,2\}\)\?.*$/MATCH/')
-                    echodebug "Pre Neon Tag Regex Match On: ${GIT_REV}"
-                fi
-                ;;
-        esac
-    fi
-
-    if [ "$_POST_NEON_INSTALL" -eq $BS_TRUE ]; then
-        echo
-        echowarn "Post Neon git based installations will always install salt"
-        echowarn "and its dependencies using pip which will be upgraded to"
-        echowarn "at least v${_MINIMUM_PIP_VERSION}, and, in case the setuptools version is also"
-        echowarn "too old, it will be upgraded to at least v${_MINIMUM_SETUPTOOLS_VERSION}"
-        echo
-        echowarn "You have 10 seconds to cancel and stop the bootstrap process..."
-        echo
-        sleep 10
-        _PIP_ALLOWED=$BS_TRUE
-    fi
-fi
-
-
-#---  FUNCTION  -------------------------------------------------------------------------------------------------------
-#          NAME:  __function_defined
-#   DESCRIPTION:  Checks if a function is defined within this scripts scope
-#    PARAMETERS:  function name
-#       RETURNS:  0 or 1 as in defined or not defined
-#----------------------------------------------------------------------------------------------------------------------
-__function_defined() {
-    FUNC_NAME=$1
-    if [ "$(command -v "$FUNC_NAME")" != "" ]; then
-        echoinfo "Found function $FUNC_NAME"
-        return 0
-    fi
-    echodebug "$FUNC_NAME not found...."
-    return 1
-}
-
-
-#---  FUNCTION  -------------------------------------------------------------------------------------------------------
-#          NAME:  __wait_for_apt
-#   DESCRIPTION:  Check if any apt, apt-get, aptitude, or dpkg processes are running before
-#                 calling these again. This is useful when these process calls are part of
-#                 a boot process, such as on AWS AMIs. This func will wait until the boot
-#                 process is finished so the script doesn't exit on a locked proc.
-#----------------------------------------------------------------------------------------------------------------------
-__wait_for_apt(){
-    # Timeout set at 15 minutes
-    WAIT_TIMEOUT=900
-
-    # Run our passed in apt command
-    "${@}" 2>"$APT_ERR"
-    APT_RETURN=$?
-
-    # Make sure we're not waiting on a lock
-    while [ $APT_RETURN -ne 0 ] && grep -q '^E: Could not get lock' "$APT_ERR"; do
-        echoinfo "Aware of the lock. Patiently waiting $WAIT_TIMEOUT more seconds..."
-        sleep 1
-        WAIT_TIMEOUT=$((WAIT_TIMEOUT - 1))
-
-        if [ "$WAIT_TIMEOUT" -eq 0 ]; then
-            echoerror "Apt, apt-get, aptitude, or dpkg process is taking too long."
-            echoerror "Bootstrap script cannot proceed. Aborting."
-            return 1
-        else
-            "${@}" 2>"$APT_ERR"
-            APT_RETURN=$?
-        fi
-    done
-
-    return $APT_RETURN
-}
-
-#---  FUNCTION  -------------------------------------------------------------------------------------------------------
-#          NAME:  __apt_get_install_noinput
-#   DESCRIPTION:  (DRY) apt-get install with noinput options
-#    PARAMETERS:  packages
-#----------------------------------------------------------------------------------------------------------------------
-__apt_get_install_noinput() {
-    __wait_for_apt apt-get install -y -o DPkg::Options::=--force-confold "${@}"; return $?
-}   # ----------  end of function __apt_get_install_noinput  ----------
-
-
-#---  FUNCTION  -------------------------------------------------------------------------------------------------------
-#          NAME:  __apt_get_upgrade_noinput
-#   DESCRIPTION:  (DRY) apt-get upgrade with noinput options
-#----------------------------------------------------------------------------------------------------------------------
-__apt_get_upgrade_noinput() {
-    __wait_for_apt apt-get upgrade -y -o DPkg::Options::=--force-confold; return $?
-}   # ----------  end of function __apt_get_upgrade_noinput  ----------
-
-
-#---  FUNCTION  -------------------------------------------------------------------------------------------------------
-#          NAME:  __temp_gpg_pub
-#   DESCRIPTION:  Create a temporary file for downloading a GPG public key.
-#----------------------------------------------------------------------------------------------------------------------
-__temp_gpg_pub() {
-    if __check_command_exists mktemp; then
-        tempfile="$(mktemp /tmp/salt-gpg-XXXXXXXX.pub 2>/dev/null)"
-
-        if [ -z "$tempfile" ]; then
-            echoerror "Failed to create temporary file in /tmp"
-            return 1
-        fi
-    else
-        tempfile="/tmp/salt-gpg-$$.pub"
-    fi
-
-    echo $tempfile
-}   # ----------- end of function __temp_gpg_pub  -----------
-
-
-#---  FUNCTION  -------------------------------------------------------------------------------------------------------
-#          NAME:  __apt_key_fetch
-#   DESCRIPTION:  Download and import GPG public key for "apt-secure"
-#    PARAMETERS:  url
-#----------------------------------------------------------------------------------------------------------------------
-__apt_key_fetch() {
-    url=$1
-
-    tempfile="$(__temp_gpg_pub)"
-
-    __fetch_url "$tempfile" "$url" || return 1
-    cp -f "$tempfile" /usr/share/keyrings/salt-archive-keyring.gpg && chmod 644 /usr/share/keyrings/salt-archive-keyring.gpg || return 1
-    rm -f "$tempfile"
-
-    return 0
-}   # ----------  end of function __apt_key_fetch  ----------
-
-
-#---  FUNCTION  -------------------------------------------------------------------------------------------------------
-#          NAME:  __rpm_import_gpg
-#   DESCRIPTION:  Download and import GPG public key to rpm database
-#    PARAMETERS:  url
-#----------------------------------------------------------------------------------------------------------------------
-__rpm_import_gpg() {
-    url=$1
-
-    tempfile="$(__temp_gpg_pub)"
-
-    __fetch_url "$tempfile" "$url" || return 1
-
-    # At least on CentOS 8, a missing newline at the end causes:
-    #   error: /tmp/salt-gpg-n1gKUb1u.pub: key 1 not an armored public key.
-    # shellcheck disable=SC1003,SC2086
-    sed -i -e '$a\' $tempfile
-
-    rpm --import "$tempfile" || return 1
-    rm -f "$tempfile"
-
-    return 0
-}   # ----------  end of function __rpm_import_gpg  ----------
-
-
-#---  FUNCTION  -------------------------------------------------------------------------------------------------------
-#          NAME:  __yum_install_noinput
-#   DESCRIPTION:  (DRY) yum install with noinput options
-#----------------------------------------------------------------------------------------------------------------------
-__yum_install_noinput() {
-
-    ENABLE_EPEL_CMD=""
-    # Skip Amazon Linux for the first round, since EPEL is no longer required.
-    # See issue #724
-    if [ $_DISABLE_REPOS -eq $BS_FALSE ] && [ "$DISTRO_NAME_L" != "amazon_linux_ami" ]; then
-        ENABLE_EPEL_CMD="--enablerepo=${_EPEL_REPO}"
-    fi
-
-    if [ "$DISTRO_NAME_L" = "oracle_linux" ]; then
-        # We need to install one package at a time because --enablerepo=X disables ALL OTHER REPOS!!!!
-        for package in "${@}"; do
-            yum -y install "${package}" || yum -y install "${package}" ${ENABLE_EPEL_CMD} || return $?
-        done
-    else
-        yum -y install "${@}" ${ENABLE_EPEL_CMD} || return $?
-    fi
-}   # ----------  end of function __yum_install_noinput  ----------
-
-#---  FUNCTION  -------------------------------------------------------------------------------------------------------
-#          NAME:  __dnf_install_noinput
-#   DESCRIPTION:  (DRY) dnf install with noinput options
-#----------------------------------------------------------------------------------------------------------------------
-__dnf_install_noinput() {
-
-    dnf -y install "${@}" || return $?
-}   # ----------  end of function __dnf_install_noinput  ----------
-
-#---  FUNCTION  -------------------------------------------------------------------------------------------------------
-#          NAME:  __git_clone_and_checkout
-#   DESCRIPTION:  (DRY) Helper function to clone and checkout salt to a
-#                 specific revision.
-#----------------------------------------------------------------------------------------------------------------------
-__git_clone_and_checkout() {
-
-    echodebug "Installed git version: $(git --version | awk '{ print $3 }')"
-    # Turn off SSL verification if -I flag was set for insecure downloads
-    if [ "$_INSECURE_DL" -eq $BS_TRUE ]; then
-        export GIT_SSL_NO_VERIFY=1
-    fi
-
-    __SALT_GIT_CHECKOUT_PARENT_DIR=$(dirname "${_SALT_GIT_CHECKOUT_DIR}" 2>/dev/null)
-    __SALT_GIT_CHECKOUT_PARENT_DIR="${__SALT_GIT_CHECKOUT_PARENT_DIR:-/tmp/git}"
-    __SALT_CHECKOUT_REPONAME="$(basename "${_SALT_GIT_CHECKOUT_DIR}" 2>/dev/null)"
-    __SALT_CHECKOUT_REPONAME="${__SALT_CHECKOUT_REPONAME:-salt}"
-    [ -d "${__SALT_GIT_CHECKOUT_PARENT_DIR}" ] || mkdir "${__SALT_GIT_CHECKOUT_PARENT_DIR}"
-    # shellcheck disable=SC2164
-    cd "${__SALT_GIT_CHECKOUT_PARENT_DIR}"
-    if [ -d "${_SALT_GIT_CHECKOUT_DIR}" ]; then
-        echodebug "Found a checked out Salt repository"
-        # shellcheck disable=SC2164
-        cd "${_SALT_GIT_CHECKOUT_DIR}"
-        echodebug "Fetching git changes"
-        git fetch || return 1
-        # Tags are needed because of salt's versioning, also fetch that
-        echodebug "Fetching git tags"
-        git fetch --tags || return 1
-
-        # If we have the SaltStack remote set as upstream, we also need to fetch the tags from there
-        if [ "$(git remote -v | grep $_SALTSTACK_REPO_URL)" != "" ]; then
-            echodebug "Fetching upstream(SaltStack's Salt repository) git tags"
-            git fetch --tags upstream
-        else
-            echoinfo "Adding SaltStack's Salt repository as a remote"
-            git remote add upstream "$_SALTSTACK_REPO_URL"
-            echodebug "Fetching upstream(SaltStack's Salt repository) git tags"
-            git fetch --tags upstream
-        fi
-
-        echodebug "Hard reseting the cloned repository to ${GIT_REV}"
-        git reset --hard "$GIT_REV" || return 1
-
-        # Just calling `git reset --hard $GIT_REV` on a branch name that has
-        # already been checked out will not update that branch to the upstream
-        # HEAD; instead it will simply reset to itself.  Check the ref to see
-        # if it is a branch name, check out the branch, and pull in the
-        # changes.
-        if git branch -a | grep -q "${GIT_REV}"; then
-            echodebug "Rebasing the cloned repository branch"
-            git pull --rebase || return 1
-        fi
-    else
-        if [ "$_FORCE_SHALLOW_CLONE" -eq "${BS_TRUE}" ]; then
-            echoinfo "Forced shallow cloning of git repository."
-            __SHALLOW_CLONE=$BS_TRUE
-        elif [ "$__TAG_REGEX_MATCH" = "MATCH" ]; then
-            echoinfo "Git revision matches a Salt version tag, shallow cloning enabled."
-            __SHALLOW_CLONE=$BS_TRUE
-        else
-            echowarn "The git revision being installed does not match a Salt version tag. Shallow cloning disabled"
-            __SHALLOW_CLONE=$BS_FALSE
-        fi
-
-        if [ "$__SHALLOW_CLONE" -eq $BS_TRUE ]; then
-            # Let's try shallow cloning to speed up.
-            # Test for "--single-branch" option introduced in git 1.7.10, the minimal version of git where the shallow
-            # cloning we need actually works
-            if [ "$(git clone 2>&1 | grep 'single-branch')" != "" ]; then
-                # The "--single-branch" option is supported, attempt shallow cloning
-                echoinfo "Attempting to shallow clone $GIT_REV from Salt's repository ${_SALT_REPO_URL}"
-                if git clone --depth 1 --branch "$GIT_REV" "$_SALT_REPO_URL" "$__SALT_CHECKOUT_REPONAME"; then
-                    # shellcheck disable=SC2164
-                    cd "${_SALT_GIT_CHECKOUT_DIR}"
-                    __SHALLOW_CLONE=$BS_TRUE
-                else
-                    # Shallow clone above failed(missing upstream tags???), let's resume the old behaviour.
-                    echowarn "Failed to shallow clone."
-                    echoinfo "Resuming regular git clone and remote SaltStack repository addition procedure"
-                    __SHALLOW_CLONE=$BS_FALSE
-                fi
-            else
-                echodebug "Shallow cloning not possible. Required git version not met."
-                __SHALLOW_CLONE=$BS_FALSE
-            fi
-        fi
-
-        if [ "$__SHALLOW_CLONE" -eq $BS_FALSE ]; then
-            git clone "$_SALT_REPO_URL" "$__SALT_CHECKOUT_REPONAME" || return 1
-            # shellcheck disable=SC2164
-            cd "${_SALT_GIT_CHECKOUT_DIR}"
-
-            if ! echo "$_SALT_REPO_URL" | grep -q -F -w "${_SALTSTACK_REPO_URL#*://}"; then
-                # We need to add the saltstack repository as a remote and fetch tags for proper versioning
-                echoinfo "Adding SaltStack's Salt repository as a remote"
-                git remote add upstream "$_SALTSTACK_REPO_URL" || return 1
-
-                echodebug "Fetching upstream (SaltStack's Salt repository) git tags"
-                git fetch --tags upstream || return 1
-
-                # Check if GIT_REV is a remote branch or just a commit hash
-                if git branch -r | grep -q -F -w "origin/$GIT_REV"; then
-                    GIT_REV="origin/$GIT_REV"
-                fi
-            fi
-
-            echodebug "Checking out $GIT_REV"
-            git checkout "$GIT_REV" || return 1
-        fi
-
-    fi
-
-    echoinfo "Cloning Salt's git repository succeeded"
-    return 0
-}
-
-
-#---  FUNCTION  -------------------------------------------------------------------------------------------------------
-#          NAME:  __copyfile
-#   DESCRIPTION:  Simple function to copy files. Overrides if asked.
-#----------------------------------------------------------------------------------------------------------------------
-__copyfile() {
-    overwrite=$_FORCE_OVERWRITE
-    if [ $# -eq 2 ]; then
-        sfile=$1
-        dfile=$2
-    elif [ $# -eq 3 ]; then
-        sfile=$1
-        dfile=$2
-        overwrite=$3
-    else
-        echoerror "Wrong number of arguments for __copyfile()"
-        echoinfo "USAGE: __copyfile <source> <dest>  OR  __copyfile <source> <dest> <overwrite>"
-        exit 1
-    fi
-
-    # Does the source file exist?
-    if [ ! -f "$sfile" ]; then
-        echowarn "$sfile does not exist!"
-        return 1
-    fi
-
-    # If the destination is a directory, let's make it a full path so the logic
-    # below works as expected
-    if [ -d "$dfile" ]; then
-        echodebug "The passed destination ($dfile) is a directory"
-        dfile="${dfile}/$(basename "$sfile")"
-        echodebug "Full destination path is now: $dfile"
-    fi
-
-    if [ ! -f "$dfile" ]; then
-        # The destination file does not exist, copy
-        echodebug "Copying $sfile to $dfile"
-        cp "$sfile" "$dfile" || return 1
-    elif [ -f "$dfile" ] && [ "$overwrite" -eq $BS_TRUE ]; then
-        # The destination exist and we're overwriting
-        echodebug "Overwriting $dfile with $sfile"
-        cp -f "$sfile" "$dfile" || return 1
-    elif [ -f "$dfile" ] && [ "$overwrite" -ne $BS_TRUE ]; then
-        echodebug "Not overwriting $dfile with $sfile"
-    fi
-    return 0
-}
-
-
-#---  FUNCTION  -------------------------------------------------------------------------------------------------------
-#          NAME:  __movefile
-#   DESCRIPTION:  Simple function to move files. Overrides if asked.
-#----------------------------------------------------------------------------------------------------------------------
-__movefile() {
-    overwrite=$_FORCE_OVERWRITE
-    if [ $# -eq 2 ]; then
-        sfile=$1
-        dfile=$2
-    elif [ $# -eq 3 ]; then
-        sfile=$1
-        dfile=$2
-        overwrite=$3
-    else
-        echoerror "Wrong number of arguments for __movefile()"
-        echoinfo "USAGE: __movefile <source> <dest>  OR  __movefile <source> <dest> <overwrite>"
-        exit 1
-    fi
-
-    if [ $_KEEP_TEMP_FILES -eq $BS_TRUE ]; then
-        # We're being told not to move files, instead copy them so we can keep
-        # them around
-        echodebug "Since BS_KEEP_TEMP_FILES=1 we're copying files instead of moving them"
-        __copyfile "$sfile" "$dfile" "$overwrite"
-        return $?
-    fi
-
-    # Does the source file exist?
-    if [ ! -f "$sfile" ]; then
-        echowarn "$sfile does not exist!"
-        return 1
-    fi
-
-    # If the destination is a directory, let's make it a full path so the logic
-    # below works as expected
-    if [ -d "$dfile" ]; then
-        echodebug "The passed destination($dfile) is a directory"
-        dfile="${dfile}/$(basename "$sfile")"
-        echodebug "Full destination path is now: $dfile"
-    fi
-
-    if [ ! -f "$dfile" ]; then
-        # The destination file does not exist, move
-        echodebug "Moving $sfile to $dfile"
-        mv "$sfile" "$dfile" || return 1
-    elif [ -f "$dfile" ] && [ "$overwrite" -eq $BS_TRUE ]; then
-        # The destination exist and we're overwriting
-        echodebug "Overriding $dfile with $sfile"
-        mv -f "$sfile" "$dfile" || return 1
-    elif [ -f "$dfile" ] && [ "$overwrite" -ne $BS_TRUE ]; then
-        echodebug "Not overriding $dfile with $sfile"
-    fi
-
-    return 0
-}
-
-
-#---  FUNCTION  -------------------------------------------------------------------------------------------------------
-#          NAME:  __linkfile
-#   DESCRIPTION:  Simple function to create symlinks. Overrides if asked. Accepts globs.
-#----------------------------------------------------------------------------------------------------------------------
-__linkfile() {
-    overwrite=$_FORCE_OVERWRITE
-    if [ $# -eq 2 ]; then
-        target=$1
-        linkname=$2
-    elif [ $# -eq 3 ]; then
-        target=$1
-        linkname=$2
-        overwrite=$3
-    else
-        echoerror "Wrong number of arguments for __linkfile()"
-        echoinfo "USAGE: __linkfile <target> <link>  OR  __linkfile <tagret> <link> <overwrite>"
-        exit 1
-    fi
-
-    for sfile in $target; do
-        # Does the source file exist?
-        if [ ! -f "$sfile" ]; then
-            echowarn "$sfile does not exist!"
-            return 1
-        fi
-
-        # If the destination is a directory, let's make it a full path so the logic
-        # below works as expected
-        if [ -d "$linkname" ]; then
-            echodebug "The passed link name ($linkname) is a directory"
-            linkname="${linkname}/$(basename "$sfile")"
-            echodebug "Full destination path is now: $linkname"
-        fi
-
-        if [ ! -e "$linkname" ]; then
-            # The destination file does not exist, create link
-            echodebug "Creating $linkname symlink pointing to $sfile"
-            ln -s "$sfile" "$linkname" || return 1
-        elif [ -e "$linkname" ] && [ "$overwrite" -eq $BS_TRUE ]; then
-            # The destination exist and we're overwriting
-            echodebug "Overwriting $linkname symlink to point on $sfile"
-            ln -sf "$sfile" "$linkname" || return 1
-        elif [ -e "$linkname" ] && [ "$overwrite" -ne $BS_TRUE ]; then
-            echodebug "Not overwriting $linkname symlink to point on $sfile"
-        fi
-    done
-
-    return 0
-}
-
-#---  FUNCTION  -------------------------------------------------------------------------------------------------------
-#          NAME:  __overwriteconfig()
-#   DESCRIPTION:  Simple function to overwrite master or minion config files.
-#----------------------------------------------------------------------------------------------------------------------
-__overwriteconfig() {
-    if [ $# -eq 2 ]; then
-        target=$1
-        json=$2
-    else
-        echoerror "Wrong number of arguments for __convert_json_to_yaml_str()"
-        echoinfo "USAGE: __convert_json_to_yaml_str <configfile> <jsonstring>"
-        exit 1
-    fi
-
-    # Make a tempfile to dump any python errors into.
-    if __check_command_exists mktemp; then
-        tempfile="$(mktemp /tmp/salt-config-XXXXXXXX 2>/dev/null)"
-
-        if [ -z "$tempfile" ]; then
-            echoerror "Failed to create temporary file in /tmp"
-            return 1
-        fi
-    else
-        tempfile="/tmp/salt-config-$$"
-    fi
-
-    if [ -n "$_PY_EXE" ]; then
-        good_python="$_PY_EXE"
-    # If python does not have yaml installed we're on Arch and should use python2
-    elif python -c "import yaml" 2> /dev/null; then
-        good_python=python
-    else
-        good_python=python2
-    fi
-
-    # Convert json string to a yaml string and write it to config file. Output is dumped into tempfile.
-    "$good_python" -c "import json; import yaml; jsn=json.loads('$json'); yml=yaml.safe_dump(jsn, line_break='\\n', default_flow_style=False); config_file=open('$target', 'w'); config_file.write(yml); config_file.close();" 2>$tempfile
-
-    # No python errors output to the tempfile
-    if [ ! -s "$tempfile" ]; then
-        rm -f "$tempfile"
-        return 0
-    fi
-
-    # Errors are present in the tempfile - let's expose them to the user.
-    fullerror=$(cat "$tempfile")
-    echodebug "$fullerror"
-    echoerror "Python error encountered. This is likely due to passing in a malformed JSON string. Please use -D to see stacktrace."
-
-    rm -f "$tempfile"
-
-    return 1
-
-}
-
-#---  FUNCTION  -------------------------------------------------------------------------------------------------------
-#          NAME:  __check_services_systemd
-#   DESCRIPTION:  Return 0 or 1 in case the service is enabled or not
-#    PARAMETERS:  servicename
-#----------------------------------------------------------------------------------------------------------------------
-__check_services_systemd() {
-    if [ $# -eq 0 ]; then
-        echoerror "You need to pass a service name to check!"
-        exit 1
-    elif [ $# -ne 1 ]; then
-        echoerror "You need to pass a service name to check as the single argument to the function"
-    fi
-
-    servicename=$1
-    echodebug "Checking if service ${servicename} is enabled"
-
-    if [ "$(systemctl is-enabled "${servicename}")" = "enabled" ]; then
-        echodebug "Service ${servicename} is enabled"
-        return 0
-    else
-        echodebug "Service ${servicename} is NOT enabled"
-        return 1
-    fi
-}   # ----------  end of function __check_services_systemd  ----------
-
-
-#---  FUNCTION  -------------------------------------------------------------------------------------------------------
-#          NAME:  __check_services_upstart
-#   DESCRIPTION:  Return 0 or 1 in case the service is enabled or not
-#    PARAMETERS:  servicename
-#----------------------------------------------------------------------------------------------------------------------
-__check_services_upstart() {
-    if [ $# -eq 0 ]; then
-        echoerror "You need to pass a service name to check!"
-        exit 1
-    elif [ $# -ne 1 ]; then
-        echoerror "You need to pass a service name to check as the single argument to the function"
-    fi
-
-    servicename=$1
-    echodebug "Checking if service ${servicename} is enabled"
-
-    # Check if service is enabled to start at boot
-    if initctl list | grep "${servicename}" > /dev/null 2>&1; then
-        echodebug "Service ${servicename} is enabled"
-        return 0
-    else
-        echodebug "Service ${servicename} is NOT enabled"
-        return 1
-    fi
-}   # ----------  end of function __check_services_upstart  ----------
-
-
-#---  FUNCTION  -------------------------------------------------------------------------------------------------------
-#          NAME:  __check_services_sysvinit
-#   DESCRIPTION:  Return 0 or 1 in case the service is enabled or not
-#    PARAMETERS:  servicename
-#----------------------------------------------------------------------------------------------------------------------
-__check_services_sysvinit() {
-    if [ $# -eq 0 ]; then
-        echoerror "You need to pass a service name to check!"
-        exit 1
-    elif [ $# -ne 1 ]; then
-        echoerror "You need to pass a service name to check as the single argument to the function"
-    fi
-
-    servicename=$1
-    echodebug "Checking if service ${servicename} is enabled"
-
-    if [ "$(LC_ALL=C /sbin/chkconfig --list | grep "\\<${servicename}\\>" | grep '[2-5]:on')" != "" ]; then
-        echodebug "Service ${servicename} is enabled"
-        return 0
-    else
-        echodebug "Service ${servicename} is NOT enabled"
-        return 1
-    fi
-}   # ----------  end of function __check_services_sysvinit  ----------
-
-
-#---  FUNCTION  -------------------------------------------------------------------------------------------------------
-#          NAME:  __check_services_debian
-#   DESCRIPTION:  Return 0 or 1 in case the service is enabled or not
-#    PARAMETERS:  servicename
-#----------------------------------------------------------------------------------------------------------------------
-__check_services_debian() {
-    if [ $# -eq 0 ]; then
-        echoerror "You need to pass a service name to check!"
-        exit 1
-    elif [ $# -ne 1 ]; then
-        echoerror "You need to pass a service name to check as the single argument to the function"
-    fi
-
-    servicename=$1
-    echodebug "Checking if service ${servicename} is enabled"
-
-    # Check if the service is going to be started at any runlevel, fixes bootstrap in container (Docker, LXC)
-    if ls /etc/rc?.d/S*"${servicename}" >/dev/null 2>&1; then
-        echodebug "Service ${servicename} is enabled"
-        return 0
-    else
-        echodebug "Service ${servicename} is NOT enabled"
-        return 1
-    fi
-}   # ----------  end of function __check_services_debian  ----------
-
-
-#---  FUNCTION  -------------------------------------------------------------------------------------------------------
-#          NAME:  __check_services_openbsd
-#   DESCRIPTION:  Return 0 or 1 in case the service is enabled or not
-#    PARAMETERS:  servicename
-#----------------------------------------------------------------------------------------------------------------------
-__check_services_openbsd() {
-    if [ $# -eq 0 ]; then
-        echoerror "You need to pass a service name to check!"
-        exit 1
-    elif [ $# -ne 1 ]; then
-        echoerror "You need to pass a service name to check as the single argument to the function"
-    fi
-
-    servicename=$1
-    echodebug "Checking if service ${servicename} is enabled"
-
-    # shellcheck disable=SC2086,SC2046,SC2144
-    if rcctl get ${servicename} status; then
-        echodebug "Service ${servicename} is enabled"
-        return 0
-    else
-        echodebug "Service ${servicename} is NOT enabled"
-        return 1
-    fi
-}   # ----------  end of function __check_services_openbsd  ----------
-
-#---  FUNCTION  -------------------------------------------------------------------------------------------------------
-#          NAME:  __check_services_openrc
-#   DESCRIPTION:  Return 0 or 1 in case the service is enabled or not
-#    PARAMETERS:  servicename
-#----------------------------------------------------------------------------------------------------------------------
-__check_services_openrc() {
-    if [ $# -eq 0 ]; then
-        echoerror "You need to pass a service name to check!"
-        exit 1
-    elif [ $# -ne 1 ]; then
-        echoerror "You need to pass a service name to check as the single argument to the function"
-    fi
-
-    servicename=$1
-    echodebug "Checking if service ${servicename} is enabled"
-
-    # shellcheck disable=SC2086,SC2046,SC2144
-    if rc-status $(rc-status -r) | tail -n +2 | grep -q "\\<$servicename\\>"; then
-        echodebug "Service ${servicename} is enabled"
-        return 0
-    else
-        echodebug "Service ${servicename} is NOT enabled"
-        return 1
-    fi
-}   # ----------  end of function __check_services_openrc  ----------
-
-
-#---  FUNCTION  -------------------------------------------------------------------------------------------------------
-#          NAME:  __create_virtualenv
-#   DESCRIPTION:  Return 0 or 1 depending on successful creation of virtualenv
-#----------------------------------------------------------------------------------------------------------------------
-__create_virtualenv() {
-    if [ ! -d "$_VIRTUALENV_DIR" ]; then
-        echoinfo "Creating virtualenv ${_VIRTUALENV_DIR}"
-        if [ $_PIP_ALL -eq $BS_TRUE ]; then
-            virtualenv --no-site-packages "${_VIRTUALENV_DIR}" || return 1
-        else
-            virtualenv --system-site-packages "${_VIRTUALENV_DIR}" || return 1
-        fi
-    fi
-    return 0
-}   # ----------  end of function __create_virtualenv  ----------
-
-
-#---  FUNCTION  -------------------------------------------------------------------------------------------------------
-#          NAME:  __activate_virtualenv
-#   DESCRIPTION:  Return 0 or 1 depending on successful activation of virtualenv
-#----------------------------------------------------------------------------------------------------------------------
-__activate_virtualenv() {
-    set +o nounset
-    # Is virtualenv empty
-    if [ -z "$_VIRTUALENV_DIR" ]; then
-        __create_virtualenv || return 1
-        # shellcheck source=/dev/null
-        . "${_VIRTUALENV_DIR}/bin/activate" || return 1
-        echoinfo "Activated virtualenv ${_VIRTUALENV_DIR}"
-    fi
-    set -o nounset
-    return 0
-}   # ----------  end of function __activate_virtualenv  ----------
-
-#---  FUNCTION  -------------------------------------------------------------------------------------------------------
-#          NAME:  __install_pip_pkgs
-#   DESCRIPTION:  Return 0 or 1 if successfully able to install pip packages. Can provide a different python version to
-#                 install pip packages with. If $py_ver is not specified it will use the default python version.
-#    PARAMETERS:  pkgs, py_ver
-#----------------------------------------------------------------------------------------------------------------------
-
-__install_pip_pkgs() {
-    _pip_pkgs="$1"
-    _py_exe="$2"
-    _py_pkg=$(echo "$_py_exe" | sed -E "s/\\.//g")
-    _pip_cmd="${_py_exe} -m pip"
-
-    if [ "${_py_exe}" = "" ]; then
-        _py_exe='python'
-    fi
-
-    __check_pip_allowed
-
-    # Install pip and pip dependencies
-    if ! __check_command_exists "${_pip_cmd} --version"; then
-        __PACKAGES="${_py_pkg}-setuptools ${_py_pkg}-pip gcc"
-        # shellcheck disable=SC2086
-        if [ "$DISTRO_NAME_L" = "debian" ] || [ "$DISTRO_NAME_L" = "ubuntu" ];then
-            __PACKAGES="${__PACKAGES} ${_py_pkg}-dev"
-            __apt_get_install_noinput ${__PACKAGES} || return 1
-        else
-            __PACKAGES="${__PACKAGES} ${_py_pkg}-devel"
-            if [ "$DISTRO_NAME_L" = "fedora" ];then
-              __dnf_install_noinput ${__PACKAGES} || return 1
-            else
-              __yum_install_noinput ${__PACKAGES} || return 1
-            fi
-        fi
-
-    fi
-
-    echoinfo "Installing pip packages: ${_pip_pkgs} using ${_py_exe}"
-    # shellcheck disable=SC2086
-    ${_pip_cmd} install ${_pip_pkgs} || return 1
-}
-
-#---  FUNCTION  -------------------------------------------------------------------------------------------------------
-#          NAME:  __install_tornado_pip
-#    PARAMETERS:  python executable
-#   DESCRIPTION:  Return 0 or 1 if successfully able to install tornado<5.0
-#----------------------------------------------------------------------------------------------------------------------
-__install_tornado_pip() {
-    # OS needs tornado <5.0 from pip
-    __check_pip_allowed "You need to allow pip based installations (-P) for Tornado <5.0 in order to install Salt on Python 3"
-    ## install pip if its not installed and install tornado
-    __install_pip_pkgs "tornado<5.0" "${1}" || return 1
-}
-
-#---  FUNCTION  -------------------------------------------------------------------------------------------------------
-#          NAME:  __install_pip_deps
-#   DESCRIPTION:  Return 0 or 1 if successfully able to install pip packages via requirements file
-#    PARAMETERS:  requirements_file
-#----------------------------------------------------------------------------------------------------------------------
-__install_pip_deps() {
-    # Install virtualenv to system pip before activating virtualenv if thats going to be used
-    # We assume pip pkg is installed since that is distro specific
-    if [ "$_VIRTUALENV_DIR" != "null" ]; then
-        if ! __check_command_exists pip; then
-            echoerror "Pip not installed: required for -a installs"
-            exit 1
-        fi
-        pip install -U virtualenv
-        __activate_virtualenv || return 1
-    else
-        echoerror "Must have virtualenv dir specified for -a installs"
-    fi
-
-    requirements_file=$1
-    if [ ! -f "${requirements_file}" ]; then
-        echoerror "Requirements file: ${requirements_file} cannot be found, needed for -a (pip pkg) installs"
-        exit 1
-    fi
-
-    __PIP_PACKAGES=''
-    if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ]; then
-        # shellcheck disable=SC2089
-        __PIP_PACKAGES="${__PIP_PACKAGES} 'apache-libcloud>=$_LIBCLOUD_MIN_VERSION'"
-    fi
-
-    # shellcheck disable=SC2086,SC2090
-    pip install -U -r ${requirements_file} ${__PIP_PACKAGES}
-}   # ----------  end of function __install_pip_deps  ----------
-
-#---  FUNCTION  -------------------------------------------------------------------------------------------------------
-#          NAME:  __install_salt_from_repo_post_neon
-#   DESCRIPTION:  Return 0 or 1 if successfully able to install. Can provide a different python version to
-#                 install pip packages with. If $py_exe is not specified it will use the default python version.
-#    PARAMETERS:  py_exe
-#----------------------------------------------------------------------------------------------------------------------
-__install_salt_from_repo_post_neon() {
-    _py_exe="$1"
-
-    if [ "${_py_exe}" = "" ]; then
-        _py_exe='python'
-    fi
-
-    echodebug "__install_salt_from_repo_post_neon py_exe=$_py_exe"
-
-    _py_version=$(${_py_exe} -c "import sys; print('{0}.{1}'.format(*sys.version_info))")
-    _pip_cmd="pip${_py_version}"
-    if ! __check_command_exists "${_pip_cmd}"; then
-        echodebug "The pip binary '${_pip_cmd}' was not found in PATH"
-        _pip_cmd="pip$(echo "${_py_version}" | cut -c -1)"
-        if ! __check_command_exists "${_pip_cmd}"; then
-            echodebug "The pip binary '${_pip_cmd}' was not found in PATH"
-            _pip_cmd="pip"
-            if ! __check_command_exists "${_pip_cmd}"; then
-                echoerror "Unable to find a pip binary"
-                return 1
-            fi
-        fi
-    fi
-
-    __check_pip_allowed
-
-    echodebug "Installed pip version: $(${_pip_cmd} --version)"
-
-    CHECK_PIP_VERSION_SCRIPT=$(cat << EOM
-import sys
-try:
-    import pip
-    installed_pip_version=tuple([int(part.strip()) for part in pip.__version__.split('.') if part.isdigit()])
-    desired_pip_version=($(echo ${_MINIMUM_PIP_VERSION} | sed 's/\./, /g' ))
-    if installed_pip_version < desired_pip_version:
-        print('Desired pip version {!r} > Installed pip version {!r}'.format('.'.join(map(str, desired_pip_version)), '.'.join(map(str, installed_pip_version))))
-        sys.exit(1)
-    print('Desired pip version {!r} < Installed pip version {!r}'.format('.'.join(map(str, desired_pip_version)), '.'.join(map(str, installed_pip_version))))
-    sys.exit(0)
-except ImportError:
-    print('Failed to import pip')
-    sys.exit(1)
-EOM
-)
-    if ! ${_py_exe} -c "$CHECK_PIP_VERSION_SCRIPT"; then
-        # Upgrade pip to at least 1.2 which is when we can start using "python -m pip"
-        if [ "${_py_version}" = "3.5" ]; then
-          echodebug "Running '${_pip_cmd} install ${_POST_NEON_PIP_INSTALL_ARGS} pip>=${_MINIMUM_PIP_VERSION},<21.0'"
-          ${_pip_cmd} install ${_POST_NEON_PIP_INSTALL_ARGS} -v "pip>=${_MINIMUM_PIP_VERSION},<21.0"
-        else
-          echodebug "Running '${_pip_cmd} install ${_POST_NEON_PIP_INSTALL_ARGS} pip>=${_MINIMUM_PIP_VERSION}'"
-          ${_pip_cmd} install ${_POST_NEON_PIP_INSTALL_ARGS} -v "pip>=${_MINIMUM_PIP_VERSION}"
-        fi
-        sleep 1
-        echodebug "PATH: ${PATH}"
-        _pip_cmd="pip${_py_version}"
-        if ! __check_command_exists "${_pip_cmd}"; then
-            echodebug "The pip binary '${_pip_cmd}' was not found in PATH"
-            _pip_cmd="pip$(echo "${_py_version}" | cut -c -1)"
-            if ! __check_command_exists "${_pip_cmd}"; then
-                echodebug "The pip binary '${_pip_cmd}' was not found in PATH"
-                _pip_cmd="pip"
-                if ! __check_command_exists "${_pip_cmd}"; then
-                    echoerror "Unable to find a pip binary"
-                    return 1
-                fi
-            fi
-        fi
-        echodebug "Installed pip version: $(${_pip_cmd} --version)"
-    fi
-
-    _setuptools_dep="setuptools>=${_MINIMUM_SETUPTOOLS_VERSION}"
-    if [ "$_PY_MAJOR_VERSION" -eq 2 ]; then
-        # We also lock setuptools to <45 which is the latest release to support both py2 and py3
-        _setuptools_dep="${_setuptools_dep},<45"
-    fi
-
-    echodebug "Running '${_pip_cmd} install wheel ${_setuptools_dep}'"
-    ${_pip_cmd} install ${_POST_NEON_PIP_INSTALL_ARGS} wheel "${_setuptools_dep}"
-
-    echoinfo "Installing salt using ${_py_exe}"
-    cd "${_SALT_GIT_CHECKOUT_DIR}" || return 1
-
-    mkdir /tmp/git/deps
-    echoinfo "Downloading Salt Dependencies from PyPi"
-    echodebug "Running '${_pip_cmd} download -d /tmp/git/deps .'"
-    ${_pip_cmd} download -d /tmp/git/deps . || (echo "Failed to download salt dependencies" && return 1)
-
-    echoinfo "Installing Downloaded Salt Dependencies"
-    echodebug "Running '${_pip_cmd} install --ignore-installed ${_POST_NEON_PIP_INSTALL_ARGS} /tmp/git/deps/*'"
-    ${_pip_cmd} install --ignore-installed ${_POST_NEON_PIP_INSTALL_ARGS} /tmp/git/deps/* || return 1
-    rm -f /tmp/git/deps/*
-
-    echoinfo "Building Salt Python Wheel"
-
-    if [ "$_ECHO_DEBUG" -eq $BS_TRUE ]; then
-        SETUP_PY_INSTALL_ARGS="-v"
-    fi
-
-    echodebug "Running '${_py_exe} setup.py --salt-config-dir=$_SALT_ETC_DIR --salt-cache-dir=${_SALT_CACHE_DIR} ${SETUP_PY_INSTALL_ARGS} bdist_wheel'"
-    ${_py_exe} setup.py --salt-config-dir="$_SALT_ETC_DIR" --salt-cache-dir="${_SALT_CACHE_DIR}" ${SETUP_PY_INSTALL_ARGS} bdist_wheel || return 1
-    mv dist/salt*.whl /tmp/git/deps/ || return 1
-
-    cd "${__SALT_GIT_CHECKOUT_PARENT_DIR}" || return 1
-
-    echoinfo "Installing Built Salt Wheel"
-    ${_pip_cmd} uninstall --yes salt 2>/dev/null || true
-    echodebug "Running '${_pip_cmd} install --no-deps --force-reinstall ${_POST_NEON_PIP_INSTALL_ARGS} /tmp/git/deps/salt*.whl'"
-    ${_pip_cmd} install --no-deps --force-reinstall \
-        ${_POST_NEON_PIP_INSTALL_ARGS} \
-        --global-option="--salt-config-dir=$_SALT_ETC_DIR --salt-cache-dir=${_SALT_CACHE_DIR} ${SETUP_PY_INSTALL_ARGS}" \
-        /tmp/git/deps/salt*.whl || return 1
-
-    echoinfo "Checking if Salt can be imported using ${_py_exe}"
-    CHECK_SALT_SCRIPT=$(cat << EOM
-import os
-import sys
-try:
-    import salt
-    import salt.version
-    print('\nInstalled Salt Version: {}'.format(salt.version.__version__))
-    print('Installed Salt Package Path: {}\n'.format(os.path.dirname(salt.__file__)))
-    sys.exit(0)
-except ImportError:
-    print('\nFailed to import salt\n')
-    sys.exit(1)
-EOM
-)
-    if ! ${_py_exe} -c "$CHECK_SALT_SCRIPT"; then
-        return 1
-    fi
-    return 0
-}   # ----------  end of function __install_salt_from_repo_post_neon  ----------
-
-
-if [ "${_POST_NEON_INSTALL}" -eq $BS_FALSE ]; then
-    if [ "x${_PY_MAJOR_VERSION}" = "x" ]; then
-        # Default to python 2 for pre Neon installs
-        _PY_MAJOR_VERSION=2
-    fi
-else
-    if [ "x${_PY_MAJOR_VERSION}" = "x" ]; then
-        # Default to python 3 for post Neon install
-        _PY_MAJOR_VERSION=3
-    fi
-fi
-
-#######################################################################################################################
-#
-#   Distribution install functions
-#
-#   In order to install salt for a distribution you need to define:
-#
-#   To Install Dependencies, which is required, one of:
-#       1. install_<distro>_<major_version>_<install_type>_deps
-#       2. install_<distro>_<major_version>_<minor_version>_<install_type>_deps
-#       3. install_<distro>_<major_version>_deps
-#       4  install_<distro>_<major_version>_<minor_version>_deps
-#       5. install_<distro>_<install_type>_deps
-#       6. install_<distro>_deps
-#
-#   Optionally, define a salt configuration function, which will be called if
-#   the -c (config-dir) option is passed. One of:
-#       1. config_<distro>_<major_version>_<install_type>_salt
-#       2. config_<distro>_<major_version>_<minor_version>_<install_type>_salt
-#       3. config_<distro>_<major_version>_salt
-#       4  config_<distro>_<major_version>_<minor_version>_salt
-#       5. config_<distro>_<install_type>_salt
-#       6. config_<distro>_salt
-#       7. config_salt [THIS ONE IS ALREADY DEFINED AS THE DEFAULT]
-#
-#   Optionally, define a salt master pre-seed function, which will be called if
-#   the -k (pre-seed master keys) option is passed. One of:
-#       1. preseed_<distro>_<major_version>_<install_type>_master
-#       2. preseed_<distro>_<major_version>_<minor_version>_<install_type>_master
-#       3. preseed_<distro>_<major_version>_master
-#       4  preseed_<distro>_<major_version>_<minor_version>_master
-#       5. preseed_<distro>_<install_type>_master
-#       6. preseed_<distro>_master
-#       7. preseed_master [THIS ONE IS ALREADY DEFINED AS THE DEFAULT]
-#
-#   To install salt, which, of course, is required, one of:
-#       1. install_<distro>_<major_version>_<install_type>
-#       2. install_<distro>_<major_version>_<minor_version>_<install_type>
-#       3. install_<distro>_<install_type>
-#
-#   Optionally, define a post install function, one of:
-#       1. install_<distro>_<major_version>_<install_type>_post
-#       2. install_<distro>_<major_version>_<minor_version>_<install_type>_post
-#       3. install_<distro>_<major_version>_post
-#       4  install_<distro>_<major_version>_<minor_version>_post
-#       5. install_<distro>_<install_type>_post
-#       6. install_<distro>_post
-#
-#   Optionally, define a start daemons function, one of:
-#       1. install_<distro>_<major_version>_<install_type>_restart_daemons
-#       2. install_<distro>_<major_version>_<minor_version>_<install_type>_restart_daemons
-#       3. install_<distro>_<major_version>_restart_daemons
-#       4  install_<distro>_<major_version>_<minor_version>_restart_daemons
-#       5. install_<distro>_<install_type>_restart_daemons
-#       6. install_<distro>_restart_daemons
-#
-#       NOTE: The start daemons function should be able to restart any daemons
-#             which are running, or start if they're not running.
-#
-#   Optionally, define a daemons running function, one of:
-#       1. daemons_running_<distro>_<major_version>_<install_type>
-#       2. daemons_running_<distro>_<major_version>_<minor_version>_<install_type>
-#       3. daemons_running_<distro>_<major_version>
-#       4  daemons_running_<distro>_<major_version>_<minor_version>
-#       5. daemons_running_<distro>_<install_type>
-#       6. daemons_running_<distro>
-#       7. daemons_running  [THIS ONE IS ALREADY DEFINED AS THE DEFAULT]
-#
-#   Optionally, check enabled Services:
-#       1. install_<distro>_<major_version>_<install_type>_check_services
-#       2. install_<distro>_<major_version>_<minor_version>_<install_type>_check_services
-#       3. install_<distro>_<major_version>_check_services
-#       4  install_<distro>_<major_version>_<minor_version>_check_services
-#       5. install_<distro>_<install_type>_check_services
-#       6. install_<distro>_check_services
-#
-#######################################################################################################################
-
-
-#######################################################################################################################
-#
-#   Ubuntu Install Functions
-#
-__enable_universe_repository() {
-    if [ "$(grep -R universe /etc/apt/sources.list /etc/apt/sources.list.d/ | grep -v '#')" != "" ]; then
-        # The universe repository is already enabled
-        return 0
-    fi
-
-    echodebug "Enabling the universe repository"
-
-    add-apt-repository -y "deb http://archive.ubuntu.com/ubuntu $(lsb_release -sc) universe" || return 1
-
-    return 0
-}
-
-__install_saltstack_ubuntu_repository() {
-    # Workaround for latest non-LTS Ubuntu
-    if { [ "$DISTRO_MAJOR_VERSION" -eq 20 ] && [ "$DISTRO_MINOR_VERSION" -eq 10 ]; } || \
-        { [ "$DISTRO_MAJOR_VERSION" -eq 21 ] && [ "$DISTRO_MINOR_VERSION" -eq 04 ]; }; then
-        echowarn "Non-LTS Ubuntu detected, but stable packages requested. Trying packages for previous LTS release. You may experience problems."
-        UBUNTU_VERSION=20.04
-        UBUNTU_CODENAME="focal"
-    else
-        UBUNTU_VERSION=${DISTRO_VERSION}
-        UBUNTU_CODENAME=${DISTRO_CODENAME}
-    fi
-
-    # Install downloader backend for GPG keys fetching
-    __PACKAGES='wget'
-
-    # Required as it is not installed by default on Ubuntu 18+
-    if [ "$DISTRO_MAJOR_VERSION" -ge 18 ]; then
-        __PACKAGES="${__PACKAGES} gnupg"
-    fi
-
-    # Make sure https transport is available
-    if [ "$HTTP_VAL" = "https" ] ; then
-        __PACKAGES="${__PACKAGES} apt-transport-https ca-certificates"
-    fi
-
-    # shellcheck disable=SC2086,SC2090
-    __apt_get_install_noinput ${__PACKAGES} || return 1
-
-    __PY_VERSION_REPO="apt"
-    if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
-        __PY_VERSION_REPO="py3"
-    fi
-
-    # SaltStack's stable Ubuntu repository:
-    SALTSTACK_UBUNTU_URL="${HTTP_VAL}://${_REPO_URL}/${__PY_VERSION_REPO}/ubuntu/${UBUNTU_VERSION}/${__REPO_ARCH}/${STABLE_REV}"
-    echo "$__REPO_ARCH_DEB $SALTSTACK_UBUNTU_URL $UBUNTU_CODENAME main" > /etc/apt/sources.list.d/salt.list
-
-    __apt_key_fetch "$SALTSTACK_UBUNTU_URL/salt-archive-keyring.gpg" || return 1
-
-    __wait_for_apt apt-get update || return 1
-}
-
-install_ubuntu_deps() {
-    if [ $_DISABLE_REPOS -eq $BS_FALSE ]; then
-        # Install add-apt-repository
-        if ! __check_command_exists add-apt-repository; then
-            __apt_get_install_noinput software-properties-common || return 1
-        fi
-
-        __enable_universe_repository || return 1
-
-        __wait_for_apt apt-get update || return 1
-    fi
-
-    __PACKAGES=''
-
-    if [ "$DISTRO_MAJOR_VERSION" -lt 16 ]; then
-        # Minimal systems might not have upstart installed, install it
-        __PACKAGES="upstart"
-    fi
-
-    if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
-        PY_PKG_VER=3
-    else
-        PY_PKG_VER=""
-    fi
-
-    if [ "$DISTRO_MAJOR_VERSION" -ge 16 ] && [ -z "$_PY_EXE" ]; then
-        __PACKAGES="${__PACKAGES} python2.7"
-    fi
-
-    if [ "$_VIRTUALENV_DIR" != "null" ]; then
-        __PACKAGES="${__PACKAGES} python-virtualenv"
-    fi
-    # Need python-apt for managing packages via Salt
-    __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-apt"
-
-    # requests is still used by many salt modules
-    __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-requests"
-
-    # YAML module is used for generating custom master/minion configs
-    __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-yaml"
-
-    # Additionally install procps and pciutils which allows for Docker bootstraps. See 366#issuecomment-39666813
-    __PACKAGES="${__PACKAGES} procps pciutils"
-
-    # shellcheck disable=SC2086,SC2090
-    __apt_get_install_noinput ${__PACKAGES} || return 1
-
-    if [ "${_EXTRA_PACKAGES}" != "" ]; then
-        echoinfo "Installing the following extra packages as requested: ${_EXTRA_PACKAGES}"
-        # shellcheck disable=SC2086
-        __apt_get_install_noinput ${_EXTRA_PACKAGES} || return 1
-    fi
-
-    return 0
-}
-
-install_ubuntu_stable_deps() {
-    if [ "${_SLEEP}" -eq "${__DEFAULT_SLEEP}" ] && [ "$DISTRO_MAJOR_VERSION" -lt 16 ]; then
-        # The user did not pass a custom sleep value as an argument, let's increase the default value
-        echodebug "On Ubuntu systems we increase the default sleep value to 10."
-        echodebug "See https://github.com/saltstack/salt/issues/12248 for more info."
-        _SLEEP=10
-    fi
-
-    if [ $_START_DAEMONS -eq $BS_FALSE ]; then
-        echowarn "Not starting daemons on Debian based distributions is not working mostly because starting them is the default behaviour."
-    fi
-
-    # No user interaction, libc6 restart services for example
-    export DEBIAN_FRONTEND=noninteractive
-
-    __wait_for_apt apt-get update || return 1
-
-    if [ "${_UPGRADE_SYS}" -eq $BS_TRUE ]; then
-        if [ "${_INSECURE_DL}" -eq $BS_TRUE ]; then
-            if [ "$DISTRO_MAJOR_VERSION" -ge 20 ] || [ "$DISTRO_MAJOR_VERSION" -ge 21 ]; then
-                __apt_get_install_noinput --allow-unauthenticated debian-archive-keyring && apt-get update || return 1
-            else
-                __apt_get_install_noinput --allow-unauthenticated debian-archive-keyring &&
-                    apt-key update && apt-get update || return 1
-            fi
-        fi
-
-        __apt_get_upgrade_noinput || return 1
-    fi
-
-    if [ "$_DISABLE_REPOS" -eq "$BS_FALSE" ] || [ "$_CUSTOM_REPO_URL" != "null" ]; then
-        __check_dpkg_architecture || return 1
-        __install_saltstack_ubuntu_repository || return 1
-    fi
-
-    install_ubuntu_deps || return 1
-}
-
-install_ubuntu_git_deps() {
-    __wait_for_apt apt-get update || return 1
-
-    if ! __check_command_exists git; then
-        __apt_get_install_noinput git-core || return 1
-    fi
-
-    if [ "$_INSECURE_DL" -eq $BS_FALSE ] && [ "${_SALT_REPO_URL%%://*}" = "https" ]; then
-        __apt_get_install_noinput ca-certificates
-    fi
-
-    __git_clone_and_checkout || return 1
-
-    if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
-        PY_PKG_VER=3
-    else
-        PY_PKG_VER=""
-    fi
-
-    if [ "${_POST_NEON_INSTALL}" -eq $BS_FALSE ]; then
-
-        __PACKAGES=""
-
-        # See how we are installing packages
-        if [ "${_PIP_ALL}" -eq $BS_TRUE ]; then
-            __PACKAGES="${__PACKAGES} python-dev swig libssl-dev libzmq3 libzmq3-dev"
-
-            if ! __check_command_exists pip; then
-                __PACKAGES="${__PACKAGES} python-setuptools python-pip"
-            fi
-
-            # Get just the apt packages that are required to build all the pythons
-            # shellcheck disable=SC2086
-            __apt_get_install_noinput ${__PACKAGES} || return 1
-            # Install the pythons from requirements (only zmq for now)
-            __install_pip_deps "${_SALT_GIT_CHECKOUT_DIR}/requirements/zeromq.txt" || return 1
-        else
-            install_ubuntu_stable_deps || return 1
-
-            if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
-                __PACKAGES="${__PACKAGES} python3-setuptools"
-            else
-                # There is no m2crypto package for Py3 at this time - only install for Py2
-                __PACKAGES="${__PACKAGES} python-m2crypto"
-            fi
-
-            __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-crypto python${PY_PKG_VER}-jinja2"
-            __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-msgpack python${PY_PKG_VER}-requests"
-            __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-tornado python${PY_PKG_VER}-yaml"
-            __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-zmq"
-            __PACKAGES="${__PACKAGES} python-concurrent.futures"
-
-            if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ]; then
-                # Install python-libcloud if asked to
-                __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-libcloud"
-            fi
-
-            # shellcheck disable=SC2086
-            __apt_get_install_noinput ${__PACKAGES} || return 1
-        fi
-    else
-        __PACKAGES="python${PY_PKG_VER}-dev python${PY_PKG_VER}-pip python${PY_PKG_VER}-setuptools gcc"
-        # shellcheck disable=SC2086
-        __apt_get_install_noinput ${__PACKAGES} || return 1
-    fi
-
-    # Let's trigger config_salt()
-    if [ "$_TEMP_CONFIG_DIR" = "null" ]; then
-        _TEMP_CONFIG_DIR="${_SALT_GIT_CHECKOUT_DIR}/conf/"
-        CONFIG_SALT_FUNC="config_salt"
-    fi
-
-    return 0
-}
-
-install_ubuntu_stable() {
-    __PACKAGES=""
-
-    if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ];then
-        __PACKAGES="${__PACKAGES} salt-cloud"
-    fi
-    if [ "$_INSTALL_MASTER" -eq $BS_TRUE ]; then
-        __PACKAGES="${__PACKAGES} salt-master"
-    fi
-    if [ "$_INSTALL_MINION" -eq $BS_TRUE ]; then
-        __PACKAGES="${__PACKAGES} salt-minion"
-    fi
-    if [ "$_INSTALL_SYNDIC" -eq $BS_TRUE ]; then
-        __PACKAGES="${__PACKAGES} salt-syndic"
-    fi
-
-    # shellcheck disable=SC2086
-    __apt_get_install_noinput ${__PACKAGES} || return 1
-
-    return 0
-}
-
-install_ubuntu_git() {
-    # Activate virtualenv before install
-    if [ "${_VIRTUALENV_DIR}" != "null" ]; then
-        __activate_virtualenv || return 1
-    fi
-
-    if [ -n "$_PY_EXE" ]; then
-        _PYEXE=${_PY_EXE}
-    else
-        _PYEXE=python2.7
-    fi
-
-    if [ "${_POST_NEON_INSTALL}" -eq $BS_TRUE ]; then
-        # We can use --prefix on debian based ditributions
-        if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
-            _POST_NEON_PIP_INSTALL_ARGS="--target=/usr/lib/python3/dist-packages --install-option=--install-scripts=/usr/bin"
-        else
-            _POST_NEON_PIP_INSTALL_ARGS="--target=/usr/lib/python2.7/dist-packages --install-option=--install-scripts=/usr/bin"
-        fi
-        _POST_NEON_PIP_INSTALL_ARGS=""
-        __install_salt_from_repo_post_neon "${_PY_EXE}" || return 1
-        cd "${_SALT_GIT_CHECKOUT_DIR}" || return 1
-        sed -i 's:/usr/bin:/usr/local/bin:g' pkg/*.service
-        return 0
-    fi
-
-    if [ -f "${_SALT_GIT_CHECKOUT_DIR}/salt/syspaths.py" ]; then
-        # shellcheck disable=SC2086
-        "${_PYEXE}" setup.py --salt-config-dir="$_SALT_ETC_DIR" --salt-cache-dir="${_SALT_CACHE_DIR}" ${SETUP_PY_INSTALL_ARGS} install --install-layout=deb || return 1
-    else
-        # shellcheck disable=SC2086
-        "${_PYEXE}" setup.py ${SETUP_PY_INSTALL_ARGS} install --install-layout=deb || return 1
-    fi
-
-    return 0
-}
-
-install_ubuntu_stable_post() {
-    for fname in api master minion syndic; do
-        # Skip salt-api since the service should be opt-in and not necessarily started on boot
-        [ $fname = "api" ] && continue
-
-        # Skip if not meant to be installed
-        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
-        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
-        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
-
-        if [ -f /bin/systemctl ]; then
-            # Using systemd
-            /bin/systemctl is-enabled salt-$fname.service > /dev/null 2>&1 || (
-                /bin/systemctl preset salt-$fname.service > /dev/null 2>&1 &&
-                /bin/systemctl enable salt-$fname.service > /dev/null 2>&1
-            )
-            sleep 1
-            /bin/systemctl daemon-reload
-        elif [ -f /etc/init.d/salt-$fname ]; then
-            update-rc.d salt-$fname defaults
-        fi
-    done
-
-    return 0
-}
-
-install_ubuntu_git_post() {
-    for fname in api master minion syndic; do
-        # Skip if not meant to be installed
-        [ $fname = "api" ] && \
-            ([ "$_INSTALL_MASTER" -eq $BS_FALSE ] || ! __check_command_exists "salt-${fname}") && continue
-        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
-        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
-        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
-
-        if [ -f /bin/systemctl ] && [ "$DISTRO_MAJOR_VERSION" -ge 16 ]; then
-            __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/salt-${fname}.service" "/lib/systemd/system/salt-${fname}.service"
-
-            # Skip salt-api since the service should be opt-in and not necessarily started on boot
-            [ $fname = "api" ] && continue
-
-            systemctl is-enabled salt-$fname.service || (systemctl preset salt-$fname.service && systemctl enable salt-$fname.service)
-            sleep 1
-            systemctl daemon-reload
-        elif [ -f /sbin/initctl ]; then
-            _upstart_conf="/etc/init/salt-$fname.conf"
-            # We have upstart support
-            echodebug "There's upstart support"
-            if [ ! -f $_upstart_conf ]; then
-                # upstart does not know about our service, let's copy the proper file
-                echowarn "Upstart does not appear to know about salt-$fname"
-                echodebug "Copying ${_SALT_GIT_CHECKOUT_DIR}/pkg/salt-$fname.upstart to $_upstart_conf"
-                __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/salt-${fname}.upstart" "$_upstart_conf"
-                # Set service to know about virtualenv
-                if [ "${_VIRTUALENV_DIR}" != "null" ]; then
-                    echo "SALT_USE_VIRTUALENV=${_VIRTUALENV_DIR}" > /etc/default/salt-${fname}
-                fi
-                /sbin/initctl reload-configuration || return 1
-            fi
-        # No upstart support in Ubuntu!?
-        elif [ -f "${_SALT_GIT_CHECKOUT_DIR}/pkg/salt-${fname}.init" ]; then
-            echodebug "There's NO upstart support!?"
-            echodebug "Copying ${_SALT_GIT_CHECKOUT_DIR}/pkg/salt-${fname}.init to /etc/init.d/salt-$fname"
-            __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/salt-${fname}.init" "/etc/init.d/salt-$fname"
-            chmod +x /etc/init.d/salt-$fname
-
-            # Skip salt-api since the service should be opt-in and not necessarily started on boot
-            [ $fname = "api" ] && continue
-
-            update-rc.d salt-$fname defaults
-        else
-            echoerror "Neither upstart nor init.d was setup for salt-$fname"
-        fi
-    done
-
-    return 0
-}
-
-install_ubuntu_restart_daemons() {
-    [ $_START_DAEMONS -eq $BS_FALSE ] && return
-
-    # Ensure upstart configs / systemd units are loaded
-    if [ -f /bin/systemctl ] && [ "$DISTRO_MAJOR_VERSION" -ge 16 ]; then
-        systemctl daemon-reload
-    elif [ -f /sbin/initctl ]; then
-        /sbin/initctl reload-configuration
-    fi
-
-    for fname in api master minion syndic; do
-        # Skip salt-api since the service should be opt-in and not necessarily started on boot
-        [ $fname = "api" ] && continue
-
-        # Skip if not meant to be installed
-        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
-        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
-        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
-
-        if [ -f /bin/systemctl ] && [ "$DISTRO_MAJOR_VERSION" -ge 16 ]; then
-            echodebug "There's systemd support while checking salt-$fname"
-            systemctl stop salt-$fname > /dev/null 2>&1
-            systemctl start salt-$fname.service && continue
-            # We failed to start the service, let's test the SysV code below
-            echodebug "Failed to start salt-$fname using systemd"
-            if [ "$_ECHO_DEBUG" -eq $BS_TRUE ]; then
-                systemctl status salt-$fname.service
-                journalctl -xe
-            fi
-        fi
-
-        if [ -f /sbin/initctl ]; then
-            echodebug "There's upstart support while checking salt-$fname"
-
-            if status salt-$fname 2>/dev/null | grep -q running; then
-                stop salt-$fname || (echodebug "Failed to stop salt-$fname" && return 1)
-            fi
-
-            start salt-$fname && continue
-            # We failed to start the service, let's test the SysV code below
-            echodebug "Failed to start salt-$fname using Upstart"
-        fi
-
-        if [ ! -f /etc/init.d/salt-$fname ]; then
-            echoerror "No init.d support for salt-$fname was found"
-            return 1
-        fi
-
-        /etc/init.d/salt-$fname stop > /dev/null 2>&1
-        /etc/init.d/salt-$fname start
-    done
-
-    return 0
-}
-
-install_ubuntu_check_services() {
-    for fname in api master minion syndic; do
-        # Skip salt-api since the service should be opt-in and not necessarily started on boot
-        [ $fname = "api" ] && continue
-
-        # Skip if not meant to be installed
-        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
-        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
-        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
-
-        if [ -f /bin/systemctl ] && [ "$DISTRO_MAJOR_VERSION" -ge 16 ]; then
-            __check_services_systemd salt-$fname || return 1
-        elif [ -f /sbin/initctl ] && [ -f /etc/init/salt-${fname}.conf ]; then
-            __check_services_upstart salt-$fname || return 1
-        elif [ -f /etc/init.d/salt-$fname ]; then
-            __check_services_debian salt-$fname || return 1
-        fi
-    done
-
-    return 0
-}
-#
-#   End of Ubuntu Install Functions
-#
-#######################################################################################################################
-
-#######################################################################################################################
-#
-#   Debian Install Functions
-#
-__install_saltstack_debian_repository() {
-    if [ "$DISTRO_MAJOR_VERSION" -eq 11 ]; then
-        # Packages for Debian 11 at repo.saltproject.io are not yet available
-        # Set up repository for Debian 10 for Debian 11 for now until support
-        # is available at repo.saltproject.io for Debian 11.
-        echowarn "Debian 11 distribution detected, but stable packages requested. Trying packages from Debian 10. You may experience problems."
-        DEBIAN_RELEASE="10"
-        DEBIAN_CODENAME="buster"
-    else
-        DEBIAN_RELEASE="$DISTRO_MAJOR_VERSION"
-        DEBIAN_CODENAME="$DISTRO_CODENAME"
-    fi
-
-    __PY_VERSION_REPO="apt"
-    if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
-        __PY_VERSION_REPO="py3"
-    fi
-
-    # Install downloader backend for GPG keys fetching
-    __PACKAGES='wget'
-
-    # Required as it is not installed by default on Debian 9+
-    if [ "$DISTRO_MAJOR_VERSION" -ge 9 ]; then
-        __PACKAGES="${__PACKAGES} gnupg2"
-    fi
-
-    # Make sure https transport is available
-    if [ "$HTTP_VAL" = "https" ] ; then
-        __PACKAGES="${__PACKAGES} apt-transport-https ca-certificates"
-    fi
-
-    # shellcheck disable=SC2086,SC2090
-    __apt_get_install_noinput ${__PACKAGES} || return 1
-
-    # amd64 is just a part of repository URI, 32-bit pkgs are hosted under the same location
-    SALTSTACK_DEBIAN_URL="${HTTP_VAL}://${_REPO_URL}/${__PY_VERSION_REPO}/debian/${DEBIAN_RELEASE}/${__REPO_ARCH}/${STABLE_REV}"
-    echo "$__REPO_ARCH_DEB $SALTSTACK_DEBIAN_URL $DEBIAN_CODENAME main" > "/etc/apt/sources.list.d/salt.list"
-
-    __apt_key_fetch "$SALTSTACK_DEBIAN_URL/salt-archive-keyring.gpg" || return 1
-
-    __wait_for_apt apt-get update || return 1
-}
-
-install_debian_deps() {
-    if [ $_START_DAEMONS -eq $BS_FALSE ]; then
-        echowarn "Not starting daemons on Debian based distributions is not working mostly because starting them is the default behaviour."
-    fi
-
-    # No user interaction, libc6 restart services for example
-    export DEBIAN_FRONTEND=noninteractive
-
-    __wait_for_apt apt-get update || return 1
-
-    if [ "${_UPGRADE_SYS}" -eq $BS_TRUE ]; then
-        # Try to update GPG keys first if allowed
-        if [ "${_INSECURE_DL}" -eq $BS_TRUE ]; then
-            if [ "$DISTRO_MAJOR_VERSION" -ge 10 ]; then
-                __apt_get_install_noinput --allow-unauthenticated debian-archive-keyring && apt-get update || return 1
-            else
-                __apt_get_install_noinput --allow-unauthenticated debian-archive-keyring &&
-                    apt-key update && apt-get update || return 1
-            fi
-        fi
-
-        __apt_get_upgrade_noinput || return 1
-    fi
-
-    if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
-        PY_PKG_VER=3
-    else
-        PY_PKG_VER=""
-    fi
-
-    # Additionally install procps and pciutils which allows for Docker bootstraps. See 366#issuecomment-39666813
-    __PACKAGES='procps pciutils'
-
-    # YAML module is used for generating custom master/minion configs
-    __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-yaml"
-
-    # shellcheck disable=SC2086
-    __apt_get_install_noinput ${__PACKAGES} || return 1
-
-    if [ "$_DISABLE_REPOS" -eq "$BS_FALSE" ] || [ "$_CUSTOM_REPO_URL" != "null" ]; then
-        __check_dpkg_architecture || return 1
-        __install_saltstack_debian_repository || return 1
-    fi
-
-    if [ "${_EXTRA_PACKAGES}" != "" ]; then
-        echoinfo "Installing the following extra packages as requested: ${_EXTRA_PACKAGES}"
-        # shellcheck disable=SC2086
-        __apt_get_install_noinput ${_EXTRA_PACKAGES} || return 1
-    fi
-
-    return 0
-}
-
-install_debian_git_pre() {
-    if ! __check_command_exists git; then
-        __apt_get_install_noinput git || return 1
-    fi
-
-    if [ "$_INSECURE_DL" -eq $BS_FALSE ] && [ "${_SALT_REPO_URL%%://*}" = "https" ]; then
-        __apt_get_install_noinput ca-certificates
-    fi
-
-    __git_clone_and_checkout || return 1
-
-    # Let's trigger config_salt()
-    if [ "$_TEMP_CONFIG_DIR" = "null" ]; then
-        _TEMP_CONFIG_DIR="${_SALT_GIT_CHECKOUT_DIR}/conf/"
-        CONFIG_SALT_FUNC="config_salt"
-    fi
-}
-
-install_debian_git_deps() {
-    install_debian_deps || return 1
-    install_debian_git_pre || return 1
-
-    if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
-        PY_PKG_VER=3
-    else
-        PY_PKG_VER=""
-    fi
-
-    if [ "${_POST_NEON_INSTALL}" -eq $BS_FALSE ]; then
-        __PACKAGES="libzmq3 libzmq3-dev lsb-release python-apt python-backports.ssl-match-hostname"
-        __PACKAGES="${__PACKAGES} python-crypto python-jinja2 python-msgpack python-m2crypto"
-        __PACKAGES="${__PACKAGES} python-requests python-tornado python-yaml python-zmq"
-
-        if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ]; then
-            # Install python-libcloud if asked to
-            __PACKAGES="${__PACKAGES} python-libcloud"
-        fi
-
-        # shellcheck disable=SC2086
-        __apt_get_install_noinput ${__PACKAGES} || return 1
-    else
-        __PACKAGES="python${PY_PKG_VER}-dev python${PY_PKG_VER}-pip python${PY_PKG_VER}-setuptools gcc"
-        echodebug "install_debian_git_deps() Installing ${__PACKAGES}"
-        # shellcheck disable=SC2086
-        __apt_get_install_noinput ${__PACKAGES} || return 1
-    fi
-
-    return 0
-}
-
-install_debian_7_git_deps() {
-    install_debian_deps || return 1
-    install_debian_git_deps || return 1
-
-    return 0
-}
-
-install_debian_8_git_deps() {
-
-    if [ "${_POST_NEON_INSTALL}" -eq $BS_TRUE ]; then
-        echodebug "CALLING install_debian_git_deps"
-        install_debian_git_deps || return 1
-        return 0
-    fi
-
-    install_debian_deps || return 1
-
-    if ! __check_command_exists git; then
-        __apt_get_install_noinput git || return 1
-    fi
-
-    if [ "$_INSECURE_DL" -eq $BS_FALSE ] && [ "${_SALT_REPO_URL%%://*}" = "https" ]; then
-        __apt_get_install_noinput ca-certificates
-    fi
-
-    __git_clone_and_checkout || return 1
-
-    __PACKAGES="libzmq3 libzmq3-dev lsb-release python-apt python-crypto python-jinja2"
-    __PACKAGES="${__PACKAGES} python-m2crypto python-msgpack python-requests python-systemd"
-    __PACKAGES="${__PACKAGES} python-yaml python-zmq python-concurrent.futures"
-
-    if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ]; then
-        # Install python-libcloud if asked to
-        __PACKAGES="${__PACKAGES} python-libcloud"
-    fi
-
-    __PIP_PACKAGES=''
-    if (__check_pip_allowed >/dev/null 2>&1); then
-        __PIP_PACKAGES='tornado<5.0'
-        # Install development environment for building tornado Python module
-        __PACKAGES="${__PACKAGES} build-essential python-dev"
-
-        if ! __check_command_exists pip; then
-            __PACKAGES="${__PACKAGES} python-pip"
-        fi
-    # Attempt to configure backports repo on non-x86_64 system
-    elif [ $_DISABLE_REPOS -eq $BS_FALSE ] && [ "$DPKG_ARCHITECTURE" != "amd64" ]; then
-        # Check if Debian Backports repo already configured
-        if ! apt-cache policy | grep -q 'Debian Backports'; then
-            echo 'deb http://httpredir.debian.org/debian jessie-backports main' > \
-                /etc/apt/sources.list.d/backports.list
-        fi
-
-        __wait_for_apt apt-get update || return 1
-
-        # python-tornado package should be installed from backports repo
-        __PACKAGES="${__PACKAGES} python-backports.ssl-match-hostname python-tornado/jessie-backports"
-    else
-        __PACKAGES="${__PACKAGES} python-backports.ssl-match-hostname python-tornado"
-    fi
-
-    # shellcheck disable=SC2086
-    __apt_get_install_noinput ${__PACKAGES} || return 1
-
-    if [ "${__PIP_PACKAGES}" != "" ]; then
-        # shellcheck disable=SC2086,SC2090
-        pip install -U ${__PIP_PACKAGES} || return 1
-    fi
-
-    # Let's trigger config_salt()
-    if [ "$_TEMP_CONFIG_DIR" = "null" ]; then
-        _TEMP_CONFIG_DIR="${_SALT_GIT_CHECKOUT_DIR}/conf/"
-        CONFIG_SALT_FUNC="config_salt"
-    fi
-
-    return 0
-}
-
-install_debian_9_git_deps() {
-
-    if [ "${_POST_NEON_INSTALL}" -eq $BS_TRUE ]; then
-        install_debian_git_deps || return 1
-        return 0
-    fi
-
-    install_debian_deps || return 1
-    install_debian_git_pre || return 1
-
-    __PACKAGES="libzmq5 lsb-release"
-
-    if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
-        PY_PKG_VER=3
-    else
-        PY_PKG_VER=""
-
-        # These packages are PY2-ONLY
-        __PACKAGES="${__PACKAGES} python-backports-abc python-m2crypto python-concurrent.futures"
-    fi
-
-    __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-apt python${PY_PKG_VER}-crypto python${PY_PKG_VER}-jinja2"
-    __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-msgpack python${PY_PKG_VER}-requests python${PY_PKG_VER}-systemd"
-    __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-tornado python${PY_PKG_VER}-yaml python${PY_PKG_VER}-zmq"
-
-    if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ]; then
-        # Install python-libcloud if asked to
-        __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-libcloud"
-    fi
-
-    # shellcheck disable=SC2086
-    __apt_get_install_noinput ${__PACKAGES} || return 1
-
-    return 0
-}
-
-install_debian_10_git_deps() {
-
-    if [ "${_POST_NEON_INSTALL}" -eq $BS_TRUE ]; then
-        install_debian_git_deps || return 1
-        return 0
-    fi
-
-    install_debian_deps || return 1
-    install_debian_git_pre || return 1
-
-    if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
-        _py=${_PY_EXE}
-        PY_PKG_VER=3
-        __PACKAGES="python${PY_PKG_VER}-distutils"
-    else
-        _py="python"
-        PY_PKG_VER=""
-        __PACKAGES=""
-    fi
-
-    __install_tornado_pip ${_py}|| return 1
-    __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-msgpack python${PY_PKG_VER}-jinja2"
-    __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-tornado python${PY_PKG_VER}-yaml python${PY_PKG_VER}-zmq"
-
-    # shellcheck disable=SC2086
-    __apt_get_install_noinput ${__PACKAGES} || return 1
-
-    return 0
-}
-
-install_debian_stable() {
-    __PACKAGES=""
-
-    if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ];then
-        __PACKAGES="${__PACKAGES} salt-cloud"
-    fi
-    if [ "$_INSTALL_MASTER" -eq $BS_TRUE ]; then
-        __PACKAGES="${__PACKAGES} salt-master"
-    fi
-    if [ "$_INSTALL_MINION" -eq $BS_TRUE ]; then
-        __PACKAGES="${__PACKAGES} salt-minion"
-    fi
-    if [ "$_INSTALL_SYNDIC" -eq $BS_TRUE ]; then
-        __PACKAGES="${__PACKAGES} salt-syndic"
-    fi
-
-    # shellcheck disable=SC2086
-    __apt_get_install_noinput ${__PACKAGES} || return 1
-
-    return 0
-}
-
-install_debian_7_stable() {
-    install_debian_stable || return 1
-    return 0
-}
-
-install_debian_8_stable() {
-    install_debian_stable || return 1
-    return 0
-}
-
-install_debian_9_stable() {
-    install_debian_stable || return 1
-    return 0
-}
-
-install_debian_git() {
-    if [ -n "$_PY_EXE" ]; then
-        _PYEXE=${_PY_EXE}
-    else
-        _PYEXE=python
-    fi
-
-    if [ "${_POST_NEON_INSTALL}" -eq $BS_TRUE ]; then
-        # We can use --prefix on debian based ditributions
-        if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
-            _POST_NEON_PIP_INSTALL_ARGS="--target=/usr/lib/python3/dist-packages --install-option=--install-scripts=/usr/bin"
-        else
-            _POST_NEON_PIP_INSTALL_ARGS="--target=/usr/lib/python2.7/dist-packages --install-option=--install-scripts=/usr/bin"
-        fi
-        _POST_NEON_PIP_INSTALL_ARGS=""
-        __install_salt_from_repo_post_neon "${_PY_EXE}" || return 1
-        cd "${_SALT_GIT_CHECKOUT_DIR}" || return 1
-        sed -i 's:/usr/bin:/usr/local/bin:g' pkg/*.service
-        return 0
-    fi
-
-    if [ -f "${_SALT_GIT_CHECKOUT_DIR}/salt/syspaths.py" ]; then
-        # shellcheck disable=SC2086
-        "${_PYEXE}" setup.py --salt-config-dir="$_SALT_ETC_DIR" --salt-cache-dir="${_SALT_CACHE_DIR}" ${SETUP_PY_INSTALL_ARGS} install --install-layout=deb || return 1
-    else
-        # shellcheck disable=SC2086
-        "${_PYEXE}" setup.py ${SETUP_PY_INSTALL_ARGS} install --install-layout=deb || return 1
-    fi
-}
-
-install_debian_7_git() {
-    install_debian_git || return 1
-    return 0
-}
-
-install_debian_8_git() {
-    install_debian_git || return 1
-    return 0
-}
-
-install_debian_9_git() {
-    install_debian_git || return 1
-    return 0
-}
-
-install_debian_git_post() {
-    for fname in api master minion syndic; do
-        # Skip if not meant to be installed
-        [ "$fname" = "api" ] && \
-            ([ "$_INSTALL_MASTER" -eq $BS_FALSE ] || ! __check_command_exists "salt-${fname}") && continue
-        [ "$fname" = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
-        [ "$fname" = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
-        [ "$fname" = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
-
-        # Configure SystemD for Debian 8 "Jessie" and later
-        if [ -f /bin/systemctl ]; then
-            if [ ! -f /lib/systemd/system/salt-${fname}.service ] || \
-                { [ -f /lib/systemd/system/salt-${fname}.service ] && [ $_FORCE_OVERWRITE -eq $BS_TRUE ]; }; then
-                if [ -f "${_SALT_GIT_CHECKOUT_DIR}/pkg/salt-${fname}.service" ]; then
-                    __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/salt-${fname}.service" /lib/systemd/system
-                    __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/salt-${fname}.environment" "/etc/default/salt-${fname}"
-                else
-                    # workaround before adding Debian-specific unit files to the Salt main repo
-                    __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/salt-${fname}.service" /lib/systemd/system
-                    sed -i -e '/^Type/ s/notify/simple/' /lib/systemd/system/salt-${fname}.service
-                fi
-            fi
-
-            # Skip salt-api since the service should be opt-in and not necessarily started on boot
-            [ "$fname" = "api" ] && continue
-
-            /bin/systemctl enable "salt-${fname}.service"
-            SYSTEMD_RELOAD=$BS_TRUE
-
-        # Install initscripts for Debian 7 "Wheezy"
-        elif [ ! -f "/etc/init.d/salt-$fname" ] || \
-            { [ -f "/etc/init.d/salt-$fname" ] && [ "$_FORCE_OVERWRITE" -eq $BS_TRUE ]; }; then
-            __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/deb/salt-${fname}.init" "/etc/init.d/salt-${fname}"
-            __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/deb/salt-${fname}.environment" "/etc/default/salt-${fname}"
-
-            if [ ! -f "/etc/init.d/salt-${fname}" ]; then
-                echowarn "The init script for salt-${fname} was not found, skipping it..."
-                continue
-            fi
-
-            chmod +x "/etc/init.d/salt-${fname}"
-
-            # Skip salt-api since the service should be opt-in and not necessarily started on boot
-            [ "$fname" = "api" ] && continue
-
-            update-rc.d "salt-${fname}" defaults
-        fi
-    done
-}
-
-install_debian_restart_daemons() {
-    [ "$_START_DAEMONS" -eq $BS_FALSE ] && return 0
-
-    for fname in api master minion syndic; do
-        # Skip salt-api since the service should be opt-in and not necessarily started on boot
-        [ $fname = "api" ] && continue
-
-        # Skip if not meant to be installed
-        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
-        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
-        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
-
-        if [ -f /bin/systemctl ]; then
-            # Debian 8 uses systemd
-            /bin/systemctl stop salt-$fname > /dev/null 2>&1
-            /bin/systemctl start salt-$fname.service && continue
-            if [ "$_ECHO_DEBUG" -eq $BS_TRUE ]; then
-                systemctl status salt-$fname.service
-                journalctl -xe
-            fi
-        elif [ -f /etc/init.d/salt-$fname ]; then
-            # Still in SysV init
-            /etc/init.d/salt-$fname stop > /dev/null 2>&1
-            /etc/init.d/salt-$fname start
-        fi
-    done
-}
-
-install_debian_check_services() {
-    for fname in api master minion syndic; do
-        # Skip salt-api since the service should be opt-in and not necessarily started on boot
-        [ $fname = "api" ] && continue
-
-        # Skip if not meant to be installed
-        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
-        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
-        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
-
-        if [ -f /bin/systemctl ]; then
-            __check_services_systemd salt-$fname || return 1
-        elif [ -f /etc/init.d/salt-$fname ]; then
-            __check_services_debian salt-$fname || return 1
-        fi
-    done
-    return 0
-}
-#
-#   Ended Debian Install Functions
-#
-#######################################################################################################################
-
-#######################################################################################################################
-#
-#   Fedora Install Functions
-#
-
-install_fedora_deps() {
-    if [ "$_UPGRADE_SYS" -eq $BS_TRUE ]; then
-        dnf -y update || return 1
-    fi
-
-    __PACKAGES="${__PACKAGES:=}"
-    if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -lt 3 ]; then
-        echoerror "There are no Python 2 stable packages for Fedora, only Py3 packages"
-        return 1
-    fi
-
-    # Salt on Fedora is Py3
-    PY_PKG_VER=3
-
-    __PACKAGES="${__PACKAGES} dnf-utils libyaml procps-ng python${PY_PKG_VER}-crypto python${PY_PKG_VER}-jinja2"
-    __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-msgpack python${PY_PKG_VER}-requests python${PY_PKG_VER}-zmq"
-    __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-pip python${PY_PKG_VER}-m2crypto python${PY_PKG_VER}-pyyaml"
-    __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-systemd"
-    if [ "${_EXTRA_PACKAGES}" != "" ]; then
-        echoinfo "Installing the following extra packages as requested: ${_EXTRA_PACKAGES}"
-    fi
-
-    # shellcheck disable=SC2086
-    __dnf_install_noinput ${__PACKAGES} ${_EXTRA_PACKAGES} || return 1
-
-    return 0
-}
-
-install_fedora_stable() {
-    if [ "$STABLE_REV" = "latest" ]; then
-        __SALT_VERSION=""
-    else
-        __SALT_VERSION="$(dnf list --showduplicates salt | grep "$STABLE_REV" | head -n 1 | awk '{print $2}')"
-        if [ "x${__SALT_VERSION}" = "x" ]; then
-            echoerror "Could not find a stable install for Salt ${STABLE_REV}"
-            exit 1
-        fi
-        echoinfo "Installing Stable Package Version ${__SALT_VERSION}"
-        __SALT_VERSION="-${__SALT_VERSION}"
-    fi
-    __PACKAGES=""
-
-    if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ];then
-        __PACKAGES="${__PACKAGES} salt-cloud${__SALT_VERSION}"
-    fi
-    if [ "$_INSTALL_MASTER" -eq $BS_TRUE ]; then
-        __PACKAGES="${__PACKAGES} salt-master${__SALT_VERSION}"
-    fi
-    if [ "$_INSTALL_MINION" -eq $BS_TRUE ]; then
-        __PACKAGES="${__PACKAGES} salt-minion${__SALT_VERSION}"
-    fi
-    if [ "$_INSTALL_SYNDIC" -eq $BS_TRUE ]; then
-        __PACKAGES="${__PACKAGES} salt-syndic${__SALT_VERSION}"
-    fi
-
-    # shellcheck disable=SC2086
-    __dnf_install_noinput ${__PACKAGES} || return 1
-
-    __python="python3"
-    if ! __check_command_exists python3; then
-        echoerror "Could not find a python3 binary?!"
-        return 1
-    fi
-
-    if [ "${_POST_NEON_INSTALL}" -eq $BS_FALSE ]; then
-        __check_pip_allowed "You need to allow pip based installations (-P) for Tornado <5.0 in order to install Salt"
-        __installed_tornado_rpm=$(rpm -qa | grep python${PY_PKG_VER}-tornado)
-        if [ -n "${__installed_tornado_rpm}" ]; then
-            echodebug "Removing system package ${__installed_tornado_rpm}"
-            rpm -e --nodeps "${__installed_tornado_rpm}" || return 1
-        fi
-        __get_site_packages_dir_code=$(cat << EOM
-import site
-print([d for d in site.getsitepackages() if d.startswith('/usr/lib/python')][0])
-EOM
-)
-        __target_path=$(${__python} -c "${__get_site_packages_dir_code}")
-        echodebug "Running '${__python}' -m pip install --target ${__target_path} 'tornado<5.0'"
-        "${__python}" -m pip install --target "${__target_path}" "tornado<5" || return 1
-    fi
-
-    return 0
-}
-
-install_fedora_stable_post() {
-    for fname in api master minion syndic; do
-        # Skip salt-api since the service should be opt-in and not necessarily started on boot
-        [ $fname = "api" ] && continue
-
-        # Skip if not meant to be installed
-        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
-        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
-        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
-
-        systemctl is-enabled salt-$fname.service || (systemctl preset salt-$fname.service && systemctl enable salt-$fname.service)
-        sleep 1
-        systemctl daemon-reload
-    done
-}
-
-install_fedora_git_deps() {
-    if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
-        # Packages are named python3-<whatever>
-        PY_PKG_VER=3
-    else
-        PY_PKG_VER=2
-    fi
-
-    __PACKAGES=""
-    if ! __check_command_exists ps; then
-        __PACKAGES="${__PACKAGES} procps-ng"
-    fi
-    if ! __check_command_exists git; then
-        __PACKAGES="${__PACKAGES} git"
-    fi
-
-    if [ -n "${__PACKAGES}" ]; then
-        # shellcheck disable=SC2086
-        __dnf_install_noinput ${__PACKAGES} || return 1
-        __PACKAGES=""
-    fi
-
-    __git_clone_and_checkout || return 1
-
-    if [ "${_POST_NEON_INSTALL}" -eq $BS_FALSE ]; then
-
-        if [ "$_INSECURE_DL" -eq $BS_FALSE ] && [ "${_SALT_REPO_URL%%://*}" = "https" ]; then
-            __PACKAGES="${__PACKAGES} ca-certificates"
-        fi
-        if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ]; then
-            __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-libcloud python${PY_PKG_VER}-netaddr"
-        fi
-
-        install_fedora_deps || return 1
-
-        if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
-            if __check_command_exists python3; then
-                __python="python3"
-            fi
-        elif [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 2 ]; then
-            if __check_command_exists python2; then
-                __python="python2"
-            fi
-        else
-            if ! __check_command_exists python; then
-                echoerror "Unable to find a python binary?!"
-                return 1
-            fi
-            # Let's hope it's the right one
-            __python="python"
-        fi
-
-        grep tornado "${_SALT_GIT_CHECKOUT_DIR}/requirements/base.txt" | while IFS='
-    '         read -r dep; do
-                echodebug "Running '${__python}' -m pip install '${dep}'"
-                "${__python}" -m pip install "${dep}" || return 1
-            done
-    else
-        __PACKAGES="python${PY_PKG_VER}-devel python${PY_PKG_VER}-pip python${PY_PKG_VER}-setuptools gcc"
-        # shellcheck disable=SC2086
-        __dnf_install_noinput ${__PACKAGES} || return 1
-    fi
-
-    # Let's trigger config_salt()
-    if [ "$_TEMP_CONFIG_DIR" = "null" ]; then
-        _TEMP_CONFIG_DIR="${_SALT_GIT_CHECKOUT_DIR}/conf/"
-        CONFIG_SALT_FUNC="config_salt"
-    fi
-
-    return 0
-}
-
-install_fedora_git() {
-    if [ "${_PY_EXE}" != "" ]; then
-        _PYEXE=${_PY_EXE}
-        echoinfo "Using the following python version: ${_PY_EXE} to install salt"
-    else
-        _PYEXE='python2'
-    fi
-
-    if [ "${_POST_NEON_INSTALL}" -eq $BS_TRUE ]; then
-         __install_salt_from_repo_post_neon "${_PY_EXE}" || return 1
-        return 0
-    fi
-
-    if [ -f "${_SALT_GIT_CHECKOUT_DIR}/salt/syspaths.py" ]; then
-        ${_PYEXE} setup.py --salt-config-dir="$_SALT_ETC_DIR" --salt-cache-dir="${_SALT_CACHE_DIR}" ${SETUP_PY_INSTALL_ARGS} install --prefix=/usr || return 1
-    else
-        ${_PYEXE} setup.py ${SETUP_PY_INSTALL_ARGS} install --prefix=/usr || return 1
-    fi
-    return 0
-}
-
-install_fedora_git_post() {
-    for fname in api master minion syndic; do
-        # Skip if not meant to be installed
-        [ $fname = "api" ] && \
-            ([ "$_INSTALL_MASTER" -eq $BS_FALSE ] || ! __check_command_exists "salt-${fname}") && continue
-        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
-        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
-        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
-
-        __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/rpm/salt-${fname}.service" "/lib/systemd/system/salt-${fname}.service"
-
-        # Skip salt-api since the service should be opt-in and not necessarily started on boot
-        [ $fname = "api" ] && continue
-
-        systemctl is-enabled salt-$fname.service || (systemctl preset salt-$fname.service && systemctl enable salt-$fname.service)
-        sleep 1
-        systemctl daemon-reload
-    done
-}
-
-install_fedora_restart_daemons() {
-    [ $_START_DAEMONS -eq $BS_FALSE ] && return
-
-    for fname in api master minion syndic; do
-        # Skip salt-api since the service should be opt-in and not necessarily started on boot
-        [ $fname = "api" ] && continue
-
-        # Skip if not meant to be installed
-        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
-        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
-        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
-
-        systemctl stop salt-$fname > /dev/null 2>&1
-        systemctl start salt-$fname.service && continue
-        echodebug "Failed to start salt-$fname using systemd"
-        if [ "$_ECHO_DEBUG" -eq $BS_TRUE ]; then
-            systemctl status salt-$fname.service
-            journalctl -xe
-        fi
-    done
-}
-
-install_fedora_check_services() {
-    for fname in api master minion syndic; do
-        # Skip salt-api since the service should be opt-in and not necessarily started on boot
-        [ $fname = "api" ] && continue
-
-        # Skip if not meant to be installed
-        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
-        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
-        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
-
-        __check_services_systemd salt-$fname || return 1
-    done
-
-    return 0
-}
-#
-#   Ended Fedora Install Functions
-#
-#######################################################################################################################
-
-#######################################################################################################################
-#
-#   CentOS Install Functions
-#
-__install_epel_repository() {
-    if [ ${_EPEL_REPOS_INSTALLED} -eq $BS_TRUE ]; then
-        return 0
-    fi
-
-    # Check if epel repo is already enabled and flag it accordingly
-    if yum repolist | grep -q "^[!]\\?${_EPEL_REPO}/"; then
-        _EPEL_REPOS_INSTALLED=$BS_TRUE
-        return 0
-    fi
-
-    # Download latest 'epel-release' package for the distro version directly
-    epel_repo_url="${HTTP_VAL}://dl.fedoraproject.org/pub/epel/epel-release-latest-${DISTRO_MAJOR_VERSION}.noarch.rpm"
-    rpm -Uvh --force "$epel_repo_url" || return 1
-
-    _EPEL_REPOS_INSTALLED=$BS_TRUE
-
-    return 0
-}
-
-__install_saltstack_rhel_repository() {
-    if [ "$ITYPE" = "stable" ]; then
-        repo_rev="$STABLE_REV"
-    else
-        repo_rev="latest"
-    fi
-
-    __PY_VERSION_REPO="yum"
-    if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
-        __PY_VERSION_REPO="py3"
-    fi
-
-    # Avoid using '$releasever' variable for yum.
-    # Instead, this should work correctly on all RHEL variants.
-    base_url="${HTTP_VAL}://${_REPO_URL}/${__PY_VERSION_REPO}/redhat/${DISTRO_MAJOR_VERSION}/\$basearch/${repo_rev}/"
-    gpg_key="SALTSTACK-GPG-KEY.pub"
-    repo_file="/etc/yum.repos.d/salt.repo"
-
-    if [ ! -s "$repo_file" ] || [ "$_FORCE_OVERWRITE" -eq $BS_TRUE ]; then
-        cat <<_eof > "$repo_file"
-[saltstack]
-name=SaltStack ${repo_rev} Release Channel for RHEL/CentOS \$releasever
-baseurl=${base_url}
-skip_if_unavailable=True
-gpgcheck=1
-gpgkey=${base_url}${gpg_key}
-enabled=1
-enabled_metadata=1
-_eof
-
-        fetch_url="${HTTP_VAL}://${_REPO_URL}/${__PY_VERSION_REPO}/redhat/${DISTRO_MAJOR_VERSION}/${CPU_ARCH_L}/${repo_rev}/"
-        __rpm_import_gpg "${fetch_url}${gpg_key}" || return 1
-        yum clean metadata || return 1
-    elif [ "$repo_rev" != "latest" ]; then
-        echowarn "salt.repo already exists, ignoring salt version argument."
-        echowarn "Use -F (forced overwrite) to install $repo_rev."
-    fi
-
-    return 0
-}
-
-install_centos_stable_deps() {
-    if [ "$_UPGRADE_SYS" -eq $BS_TRUE ]; then
-        yum -y update || return 1
-    fi
-
-    if [ "$_DISABLE_REPOS" -eq "$BS_TRUE" ] && [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
-        echowarn "Detected -r or -R option while installing Salt packages for Python 3."
-        echowarn "Python 3 packages for older Salt releases requires the EPEL repository to be installed."
-        echowarn "Installing the EPEL repository automatically is disabled when using the -r or -R options."
-    fi
-
-    if [ "$_DISABLE_REPOS" -eq "$BS_FALSE" ]; then
-        __install_epel_repository || return 1
-        __install_saltstack_rhel_repository || return 1
-    fi
-
-    # If -R was passed, we need to configure custom repo url with rsync-ed packages
-    # Which is still handled in __install_saltstack_rhel_repository. This call has
-    # its own check in case -r was passed without -R.
-    if [ "$_CUSTOM_REPO_URL" != "null" ]; then
-        __install_saltstack_rhel_repository || return 1
-    fi
-
-    if [ "$DISTRO_MAJOR_VERSION" -ge 8 ]; then
-        __PACKAGES="dnf-utils chkconfig"
-    else
-        __PACKAGES="yum-utils chkconfig"
-    fi
-
-    if [ "${_POST_NEON_INSTALL}" -eq $BS_FALSE ]; then
-        if [ "$DISTRO_MAJOR_VERSION" -ge 8 ]; then
-            # YAML module is used for generating custom master/minion configs
-            if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
-                __PACKAGES="${__PACKAGES} python3-pyyaml"
-            else
-                __PACKAGES="${__PACKAGES} python2-pyyaml"
-            fi
-        elif [ "$DISTRO_MAJOR_VERSION" -eq 7 ]; then
-            # YAML module is used for generating custom master/minion configs
-            if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
-                __PACKAGES="${__PACKAGES} python36-PyYAML"
-            else
-                __PACKAGES="${__PACKAGES} PyYAML"
-            fi
-        else
-            # YAML module is used for generating custom master/minion configs
-            if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
-                __PACKAGES="${__PACKAGES} python34-PyYAML"
-            else
-                __PACKAGES="${__PACKAGES} PyYAML"
-            fi
-        fi
-    fi
-
-    # shellcheck disable=SC2086
-    __yum_install_noinput ${__PACKAGES} || return 1
-
-    if [ "${_EXTRA_PACKAGES}" != "" ]; then
-        echoinfo "Installing the following extra packages as requested: ${_EXTRA_PACKAGES}"
-        # shellcheck disable=SC2086
-        __yum_install_noinput ${_EXTRA_PACKAGES} || return 1
-    fi
-
-
-    return 0
-}
-
-install_centos_stable() {
-    __PACKAGES=""
-
-    local cloud='salt-cloud'
-    local master='salt-master'
-    local minion='salt-minion'
-    local syndic='salt-syndic'
-
-    if echo "$STABLE_REV" | grep -q "archive";then # point release being applied
-        local ver=$(echo "$STABLE_REV"|awk -F/ '{print $2}') # strip archive/
-    elif echo "$STABLE_REV" | egrep -vq "archive|latest";then # latest or major version(3003, 3004, etc) being applie
-        local ver=$STABLE_REV
-    fi
-
-    if [ ! -z $ver ]; then
-        cloud+="-$ver"
-        master+="-$ver"
-        minion+="-$ver"
-        syndic+="-$ver"
-    fi
-
-    if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ];then
-        __PACKAGES="${__PACKAGES} $cloud"
-    fi
-    if [ "$_INSTALL_MASTER" -eq $BS_TRUE ];then
-        __PACKAGES="${__PACKAGES} $master"
-    fi
-    if [ "$_INSTALL_MINION" -eq $BS_TRUE ]; then
-        __PACKAGES="${__PACKAGES} $minion"
-    fi
-    if [ "$_INSTALL_SYNDIC" -eq $BS_TRUE ];then
-        __PACKAGES="${__PACKAGES} $syndic"
-    fi
-
-    # shellcheck disable=SC2086
-    __yum_install_noinput ${__PACKAGES} || return 1
-
-    return 0
-}
-
-install_centos_stable_post() {
-    SYSTEMD_RELOAD=$BS_FALSE
-
-    for fname in api master minion syndic; do
-        # Skip salt-api since the service should be opt-in and not necessarily started on boot
-        [ $fname = "api" ] && continue
-
-        # Skip if not meant to be installed
-        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
-        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
-        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
-
-        if [ -f /bin/systemctl ]; then
-            /bin/systemctl is-enabled salt-${fname}.service > /dev/null 2>&1 || (
-                /bin/systemctl preset salt-${fname}.service > /dev/null 2>&1 &&
-                /bin/systemctl enable salt-${fname}.service > /dev/null 2>&1
-            )
-
-            SYSTEMD_RELOAD=$BS_TRUE
-        elif [ -f "/etc/init.d/salt-${fname}" ]; then
-            /sbin/chkconfig salt-${fname} on
-        fi
-    done
-
-    if [ "$SYSTEMD_RELOAD" -eq $BS_TRUE ]; then
-        /bin/systemctl daemon-reload
-    fi
-
-    return 0
-}
-
-install_centos_git_deps() {
-    install_centos_stable_deps || return 1
-
-    if [ "$_INSECURE_DL" -eq $BS_FALSE ] && [ "${_SALT_REPO_URL%%://*}" = "https" ]; then
-        __yum_install_noinput ca-certificates || return 1
-    fi
-
-    if ! __check_command_exists git; then
-        __yum_install_noinput git || return 1
-    fi
-
-    __git_clone_and_checkout || return 1
-
-    __PACKAGES=""
-
-    if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
-        if [ "$DISTRO_MAJOR_VERSION" -ge 8 ]; then
-            # Packages are named python3-<whatever>
-            PY_PKG_VER=3
-            __PACKAGES="${__PACKAGES} python3"
-        else
-            # Packages are named python36-<whatever>
-            PY_PKG_VER=36
-            __PACKAGES="${__PACKAGES} python36"
-        fi
-    else
-        PY_PKG_VER=""
-        if [ "$DISTRO_MAJOR_VERSION" -ge 8 ]; then
-            __PACKAGES="${__PACKAGES} python2"
-        elif [ "$DISTRO_MAJOR_VERSION" -eq 6 ]; then
-            PY_PKG_VER=27
-            __PACKAGES="${__PACKAGES} python27"
-        else
-            __PACKAGES="${__PACKAGES} python"
-        fi
-    fi
-
-    if [ "${_POST_NEON_INSTALL}" -eq $BS_FALSE ]; then
-        _install_m2crypto_req=false
-        if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
-            _py=${_PY_EXE}
-            if [ "$DISTRO_MAJOR_VERSION" -gt 6 ]; then
-                _install_m2crypto_req=true
-            fi
-        else
-            if [ "$DISTRO_MAJOR_VERSION" -eq 6 ]; then
-                _install_m2crypto_req=true
-            fi
-            _py="python"
-
-            # Only Py2 needs python-futures
-            __PACKAGES="${__PACKAGES} python-futures"
-
-            # There is no systemd-python3 package as of this writing
-            if [ "$DISTRO_MAJOR_VERSION" -ge 7 ]; then
-                __PACKAGES="${__PACKAGES} systemd-python"
-            fi
-        fi
-
-        if [ "$DISTRO_MAJOR_VERSION" -ge 8 ]; then
-            __install_tornado_pip ${_py} || return 1
-            __PACKAGES="${__PACKAGES} python3-m2crypto"
-        else
-            __PACKAGES="${__PACKAGES} m2crypto python${PY_PKG_VER}-crypto"
-        fi
-
-        __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-jinja2"
-        __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-msgpack python${PY_PKG_VER}-requests"
-        __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-tornado python${PY_PKG_VER}-zmq"
-
-        if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ]; then
-            __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-libcloud"
-        fi
-
-        if [ "${_INSTALL_PY}" -eq "${BS_TRUE}" ]; then
-            # Install Python if "-y" was passed in.
-            __install_python || return 1
-        fi
-
-        if [ "${_PY_EXE}" != "" ] && [ "$_PIP_ALLOWED" -eq "$BS_TRUE" ]; then
-            # If "-x" is defined, install dependencies with pip based on the Python version given.
-            _PIP_PACKAGES="m2crypto!=0.33.0 jinja2 msgpack-python pycrypto PyYAML tornado<5.0 zmq futures>=2.0"
-
-            # install swig and openssl on cent6
-            if $_install_m2crypto_req; then
-                __yum_install_noinput openssl-devel swig || return 1
-            fi
-
-            if [ -f "${_SALT_GIT_CHECKOUT_DIR}/requirements/base.txt" ]; then
-                # Filter out any commented lines from the requirements file
-                _REQ_LINES="$(grep '^[^#]' "${_SALT_GIT_CHECKOUT_DIR}/requirements/base.txt")"
-                for SINGLE_PACKAGE in ${_PIP_PACKAGES}; do
-                    __REQUIRED_VERSION="$(grep "${SINGLE_PACKAGE}" "${_REQ_LINES}")"
-                    if [ "${__REQUIRED_VERSION}" != "" ]; then
-                        _PIP_PACKAGES=$(echo "$_PIP_PACKAGES" | sed "s/${SINGLE_PACKAGE}/${__REQUIRED_VERSION}/")
-                    fi
-                done
-            fi
-
-            if [ "$_INSTALL_CLOUD" -eq "${BS_TRUE}" ]; then
-                _PIP_PACKAGES="${_PIP_PACKAGES} apache-libcloud"
-            fi
-
-            __install_pip_pkgs "${_PIP_PACKAGES}" "${_PY_EXE}" || return 1
-        else
-            # shellcheck disable=SC2086
-            __yum_install_noinput ${__PACKAGES} || return 1
-        fi
-    else
-        if [ "${_INSTALL_PY}" -eq "${BS_TRUE}" ] && [ "$DISTRO_MAJOR_VERSION" -lt 8 ]; then
-            # Install Python if "-y" was passed in.
-            __install_python || return 1
-        fi
-        __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-devel python${PY_PKG_VER}-pip python${PY_PKG_VER}-setuptools gcc"
-        # shellcheck disable=SC2086
-        __yum_install_noinput ${__PACKAGES} || return 1
-    fi
-
-    # Let's trigger config_salt()
-    if [ "$_TEMP_CONFIG_DIR" = "null" ]; then
-        _TEMP_CONFIG_DIR="${_SALT_GIT_CHECKOUT_DIR}/conf/"
-        CONFIG_SALT_FUNC="config_salt"
-    fi
-
-    return 0
-}
-
-install_centos_git() {
-    if [ "${_PY_EXE}" != "" ]; then
-        _PYEXE=${_PY_EXE}
-        echoinfo "Using the following python version: ${_PY_EXE} to install salt"
-    else
-        _PYEXE='python2'
-    fi
-
-    echodebug "_PY_EXE: $_PY_EXE"
-    if [ "${_POST_NEON_INSTALL}" -eq $BS_TRUE ]; then
-         __install_salt_from_repo_post_neon "${_PY_EXE}" || return 1
-        return 0
-    fi
-
-    if [ -f "${_SALT_GIT_CHECKOUT_DIR}/salt/syspaths.py" ]; then
-        $_PYEXE setup.py --salt-config-dir="$_SALT_ETC_DIR" --salt-cache-dir="${_SALT_CACHE_DIR}" ${SETUP_PY_INSTALL_ARGS} install --prefix=/usr || return 1
-    else
-        $_PYEXE setup.py ${SETUP_PY_INSTALL_ARGS} install --prefix=/usr || return 1
-    fi
-
-    return 0
-}
-
-install_centos_git_post() {
-    SYSTEMD_RELOAD=$BS_FALSE
-
-    for fname in api master minion syndic; do
-        # Skip if not meant to be installed
-        [ $fname = "api" ] && \
-            ([ "$_INSTALL_MASTER" -eq $BS_FALSE ] || ! __check_command_exists "salt-${fname}") && continue
-        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
-        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
-        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
-
-        if [ -f /bin/systemctl ]; then
-            if [ ! -f "/usr/lib/systemd/system/salt-${fname}.service" ] || \
-                { [ -f "/usr/lib/systemd/system/salt-${fname}.service" ] && [ "$_FORCE_OVERWRITE" -eq $BS_TRUE ]; }; then
-                __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/rpm/salt-${fname}.service" /usr/lib/systemd/system
-            fi
-
-            SYSTEMD_RELOAD=$BS_TRUE
-        elif [ ! -f "/etc/init.d/salt-$fname" ] || \
-            { [ -f "/etc/init.d/salt-$fname" ] && [ "$_FORCE_OVERWRITE" -eq $BS_TRUE ]; }; then
-            __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/rpm/salt-${fname}" /etc/init.d
-            chmod +x /etc/init.d/salt-${fname}
-        fi
-    done
-
-    if [ "$SYSTEMD_RELOAD" -eq $BS_TRUE ]; then
-        /bin/systemctl daemon-reload
-    fi
-
-    install_centos_stable_post || return 1
-
-    return 0
-}
-
-install_centos_restart_daemons() {
-    [ $_START_DAEMONS -eq $BS_FALSE ] && return
-
-    for fname in api master minion syndic; do
-        # Skip salt-api since the service should be opt-in and not necessarily started on boot
-        [ $fname = "api" ] && continue
-
-        # Skip if not meant to be installed
-        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
-        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
-        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
-
-        if [ -f /sbin/initctl ] && [ -f /etc/init/salt-${fname}.conf ]; then
-            # We have upstart support and upstart knows about our service
-            if ! /sbin/initctl status salt-$fname > /dev/null 2>&1; then
-                # Everything is in place and upstart gave us an error code? Fail!
-                return 1
-            fi
-
-            # upstart knows about this service.
-            # Let's try to stop it, and then start it
-            /sbin/initctl stop salt-$fname > /dev/null 2>&1
-            # Restart service
-            if ! /sbin/initctl start salt-$fname > /dev/null 2>&1; then
-                # Failed the restart?!
-                return 1
-            fi
-        elif [ -f /etc/init.d/salt-$fname ]; then
-            # Disable stdin to fix shell session hang on killing tee pipe
-            service salt-$fname stop < /dev/null > /dev/null 2>&1
-            service salt-$fname start < /dev/null
-        elif [ -f /usr/bin/systemctl ]; then
-            # CentOS 7 uses systemd
-            /usr/bin/systemctl stop salt-$fname > /dev/null 2>&1
-            /usr/bin/systemctl start salt-$fname.service && continue
-            echodebug "Failed to start salt-$fname using systemd"
-            if [ "$_ECHO_DEBUG" -eq $BS_TRUE ]; then
-                systemctl status salt-$fname.service
-                journalctl -xe
-            fi
-        fi
-    done
-}
-
-install_centos_testing_deps() {
-    install_centos_stable_deps || return 1
-    return 0
-}
-
-install_centos_testing() {
-    install_centos_stable || return 1
-    return 0
-}
-
-install_centos_testing_post() {
-    install_centos_stable_post || return 1
-    return 0
-}
-
-install_centos_check_services() {
-    for fname in api master minion syndic; do
-        # Skip salt-api since the service should be opt-in and not necessarily started on boot
-        [ $fname = "api" ] && continue
-
-        # Skip if not meant to be installed
-        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
-        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
-        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
-
-        if [ -f /sbin/initctl ] && [ -f /etc/init/salt-${fname}.conf ]; then
-            __check_services_upstart salt-$fname || return 1
-        elif [ -f /etc/init.d/salt-$fname ]; then
-            __check_services_sysvinit salt-$fname || return 1
-        elif [ -f /usr/bin/systemctl ]; then
-            __check_services_systemd salt-$fname || return 1
-        fi
-    done
-
-    return 0
-}
-#
-#   Ended CentOS Install Functions
-#
-#######################################################################################################################
-
-#######################################################################################################################
-#
-#   RedHat Install Functions
-#
-install_red_hat_linux_stable_deps() {
-    install_centos_stable_deps || return 1
-    return 0
-}
-
-install_red_hat_linux_git_deps() {
-    install_centos_git_deps || return 1
-    return 0
-}
-
-install_red_hat_enterprise_stable_deps() {
-    install_red_hat_linux_stable_deps || return 1
-    return 0
-}
-
-install_red_hat_enterprise_git_deps() {
-    install_red_hat_linux_git_deps || return 1
-    return 0
-}
-
-install_red_hat_enterprise_linux_stable_deps() {
-    install_red_hat_linux_stable_deps || return 1
-    return 0
-}
-
-install_red_hat_enterprise_linux_git_deps() {
-    install_red_hat_linux_git_deps || return 1
-    return 0
-}
-
-install_red_hat_enterprise_server_stable_deps() {
-    install_red_hat_linux_stable_deps || return 1
-    return 0
-}
-
-install_red_hat_enterprise_server_git_deps() {
-    install_red_hat_linux_git_deps || return 1
-    return 0
-}
-
-install_red_hat_enterprise_workstation_stable_deps() {
-    install_red_hat_linux_stable_deps || return 1
-    return 0
-}
-
-install_red_hat_enterprise_workstation_git_deps() {
-    install_red_hat_linux_git_deps || return 1
-    return 0
-}
-
-install_red_hat_linux_stable() {
-    install_centos_stable || return 1
-    return 0
-}
-
-install_red_hat_linux_git() {
-    install_centos_git || return 1
-    return 0
-}
-
-install_red_hat_enterprise_stable() {
-    install_red_hat_linux_stable || return 1
-    return 0
-}
-
-install_red_hat_enterprise_git() {
-    install_red_hat_linux_git || return 1
-    return 0
-}
-
-install_red_hat_enterprise_linux_stable() {
-    install_red_hat_linux_stable || return 1
-    return 0
-}
-
-install_red_hat_enterprise_linux_git() {
-    install_red_hat_linux_git || return 1
-    return 0
-}
-
-install_red_hat_enterprise_server_stable() {
-    install_red_hat_linux_stable || return 1
-    return 0
-}
-
-install_red_hat_enterprise_server_git() {
-    install_red_hat_linux_git || return 1
-    return 0
-}
-
-install_red_hat_enterprise_workstation_stable() {
-    install_red_hat_linux_stable || return 1
-    return 0
-}
-
-install_red_hat_enterprise_workstation_git() {
-    install_red_hat_linux_git || return 1
-    return 0
-}
-
-install_red_hat_linux_stable_post() {
-    install_centos_stable_post || return 1
-    return 0
-}
-
-install_red_hat_linux_restart_daemons() {
-    install_centos_restart_daemons || return 1
-    return 0
-}
-
-install_red_hat_linux_git_post() {
-    install_centos_git_post || return 1
-    return 0
-}
-
-install_red_hat_enterprise_stable_post() {
-    install_red_hat_linux_stable_post || return 1
-    return 0
-}
-
-install_red_hat_enterprise_restart_daemons() {
-    install_red_hat_linux_restart_daemons || return 1
-    return 0
-}
-
-install_red_hat_enterprise_git_post() {
-    install_red_hat_linux_git_post || return 1
-    return 0
-}
-
-install_red_hat_enterprise_linux_stable_post() {
-    install_red_hat_linux_stable_post || return 1
-    return 0
-}
-
-install_red_hat_enterprise_linux_restart_daemons() {
-    install_red_hat_linux_restart_daemons || return 1
-    return 0
-}
-
-install_red_hat_enterprise_linux_git_post() {
-    install_red_hat_linux_git_post || return 1
-    return 0
-}
-
-install_red_hat_enterprise_server_stable_post() {
-    install_red_hat_linux_stable_post || return 1
-    return 0
-}
-
-install_red_hat_enterprise_server_restart_daemons() {
-    install_red_hat_linux_restart_daemons || return 1
-    return 0
-}
-
-install_red_hat_enterprise_server_git_post() {
-    install_red_hat_linux_git_post || return 1
-    return 0
-}
-
-install_red_hat_enterprise_workstation_stable_post() {
-    install_red_hat_linux_stable_post || return 1
-    return 0
-}
-
-install_red_hat_enterprise_workstation_restart_daemons() {
-    install_red_hat_linux_restart_daemons || return 1
-    return 0
-}
-
-install_red_hat_enterprise_workstation_git_post() {
-    install_red_hat_linux_git_post || return 1
-    return 0
-}
-
-install_red_hat_linux_testing_deps() {
-    install_centos_testing_deps || return 1
-    return 0
-}
-
-install_red_hat_linux_testing() {
-    install_centos_testing || return 1
-    return 0
-}
-
-install_red_hat_linux_testing_post() {
-    install_centos_testing_post || return 1
-    return 0
-}
-
-install_red_hat_enterprise_testing_deps() {
-    install_centos_testing_deps || return 1
-    return 0
-}
-
-install_red_hat_enterprise_testing() {
-    install_centos_testing || return 1
-    return 0
-}
-
-install_red_hat_enterprise_testing_post() {
-    install_centos_testing_post || return 1
-    return 0
-}
-
-install_red_hat_enterprise_server_testing_deps() {
-    install_centos_testing_deps || return 1
-    return 0
-}
-
-install_red_hat_enterprise_server_testing() {
-    install_centos_testing || return 1
-    return 0
-}
-
-install_red_hat_enterprise_server_testing_post() {
-    install_centos_testing_post || return 1
-    return 0
-}
-
-install_red_hat_enterprise_workstation_testing_deps() {
-    install_centos_testing_deps || return 1
-    return 0
-}
-
-install_red_hat_enterprise_workstation_testing() {
-    install_centos_testing || return 1
-    return 0
-}
-
-install_red_hat_enterprise_workstation_testing_post() {
-    install_centos_testing_post || return 1
-    return 0
-}
-#
-#   Ended RedHat Install Functions
-#
-#######################################################################################################################
-
-#######################################################################################################################
-#
-#   Oracle Linux Install Functions
-#
-install_oracle_linux_stable_deps() {
-    install_centos_stable_deps || return 1
-    return 0
-}
-
-install_oracle_linux_git_deps() {
-    install_centos_git_deps || return 1
-    return 0
-}
-
-install_oracle_linux_testing_deps() {
-    install_centos_testing_deps || return 1
-    return 0
-}
-
-install_oracle_linux_stable() {
-    install_centos_stable || return 1
-    return 0
-}
-
-install_oracle_linux_git() {
-    install_centos_git || return 1
-    return 0
-}
-
-install_oracle_linux_testing() {
-    install_centos_testing || return 1
-    return 0
-}
-
-install_oracle_linux_stable_post() {
-    install_centos_stable_post || return 1
-    return 0
-}
-
-install_oracle_linux_git_post() {
-    install_centos_git_post || return 1
-    return 0
-}
-
-install_oracle_linux_testing_post() {
-    install_centos_testing_post || return 1
-    return 0
-}
-
-install_oracle_linux_restart_daemons() {
-    install_centos_restart_daemons || return 1
-    return 0
-}
-
-install_oracle_linux_check_services() {
-    install_centos_check_services || return 1
-    return 0
-}
-#
-#   Ended Oracle Linux Install Functions
-#
-#######################################################################################################################
-
-#######################################################################################################################
-#
-#   Scientific Linux Install Functions
-#
-install_scientific_linux_stable_deps() {
-    install_centos_stable_deps || return 1
-    return 0
-}
-
-install_scientific_linux_git_deps() {
-    install_centos_git_deps || return 1
-    return 0
-}
-
-install_scientific_linux_testing_deps() {
-    install_centos_testing_deps || return 1
-    return 0
-}
-
-install_scientific_linux_stable() {
-    install_centos_stable || return 1
-    return 0
-}
-
-install_scientific_linux_git() {
-    install_centos_git || return 1
-    return 0
-}
-
-install_scientific_linux_testing() {
-    install_centos_testing || return 1
-    return 0
-}
-
-install_scientific_linux_stable_post() {
-    install_centos_stable_post || return 1
-    return 0
-}
-
-install_scientific_linux_git_post() {
-    install_centos_git_post || return 1
-    return 0
-}
-
-install_scientific_linux_testing_post() {
-    install_centos_testing_post || return 1
-    return 0
-}
-
-install_scientific_linux_restart_daemons() {
-    install_centos_restart_daemons || return 1
-    return 0
-}
-
-install_scientific_linux_check_services() {
-    install_centos_check_services || return 1
-    return 0
-}
-#
-#   Ended Scientific Linux Install Functions
-#
-#######################################################################################################################
-
-#######################################################################################################################
-#
-#   CloudLinux Install Functions
-#
-install_cloud_linux_stable_deps() {
-    install_centos_stable_deps || return 1
-    return 0
-}
-
-install_cloud_linux_git_deps() {
-    install_centos_git_deps || return 1
-    return 0
-}
-
-install_cloud_linux_testing_deps() {
-    install_centos_testing_deps || return 1
-    return 0
-}
-
-install_cloud_linux_stable() {
-    install_centos_stable || return 1
-    return 0
-}
-
-install_cloud_linux_git() {
-    install_centos_git || return 1
-    return 0
-}
-
-install_cloud_linux_testing() {
-    install_centos_testing || return 1
-    return 0
-}
-
-install_cloud_linux_stable_post() {
-    install_centos_stable_post || return 1
-    return 0
-}
-
-install_cloud_linux_git_post() {
-    install_centos_git_post || return 1
-    return 0
-}
-
-install_cloud_linux_testing_post() {
-    install_centos_testing_post || return 1
-    return 0
-}
-
-install_cloud_linux_restart_daemons() {
-    install_centos_restart_daemons || return 1
-    return 0
-}
-
-install_cloud_linux_check_services() {
-    install_centos_check_services || return 1
-    return 0
-}
-#
-#   End of CloudLinux Install Functions
-#
-#######################################################################################################################
-
-#######################################################################################################################
-#
-#   Alpine Linux Install Functions
-#
-install_alpine_linux_stable_deps() {
-    if ! grep -q '^[^#].\+alpine/.\+/community' /etc/apk/repositories; then
-        # Add community repository entry based on the "main" repo URL
-        __REPO=$(grep '^[^#].\+alpine/.\+/main\>' /etc/apk/repositories)
-        echo "${__REPO}" | sed -e 's/main/community/' >> /etc/apk/repositories
-    fi
-
-    apk update
-
-    # Get latest root CA certs
-    apk -U add ca-certificates
-
-    if ! __check_command_exists openssl; then
-        # Install OpenSSL to be able to pull from https:// URLs
-        apk -U add openssl
-    fi
-}
-
-install_alpine_linux_git_deps() {
-    install_alpine_linux_stable_deps || return 1
-
-    if ! __check_command_exists git; then
-        apk -U add git  || return 1
-    fi
-
-    __git_clone_and_checkout || return 1
-
-    if [ "${_POST_NEON_INSTALL}" -eq $BS_FALSE ]; then
-        apk -U add python2 py-virtualenv py2-crypto py2-m2crypto py2-setuptools \
-            py2-jinja2 py2-yaml py2-markupsafe py2-msgpack py2-psutil \
-            py2-zmq zeromq py2-requests || return 1
-
-        if [ -f "${_SALT_GIT_CHECKOUT_DIR}/requirements/base.txt" ]; then
-            # We're on the master branch, install whichever tornado is on the requirements file
-            __REQUIRED_TORNADO="$(grep tornado "${_SALT_GIT_CHECKOUT_DIR}/requirements/base.txt")"
-            if [ "${__REQUIRED_TORNADO}" != "" ]; then
-                apk -U add py2-tornado || return 1
-            fi
-        fi
-    else
-        apk -U add python2 py2-pip py2-setuptools || return 1
-        _PY_EXE=python2
-        return 0
-    fi
-
-    # Let's trigger config_salt()
-    if [ "$_TEMP_CONFIG_DIR" = "null" ]; then
-        _TEMP_CONFIG_DIR="${_SALT_GIT_CHECKOUT_DIR}/conf/"
-        CONFIG_SALT_FUNC="config_salt"
-    fi
-}
-
-install_alpine_linux_stable() {
-    __PACKAGES="salt"
-
-    if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ];then
-        __PACKAGES="${__PACKAGES} salt-cloud"
-    fi
-    if [ "$_INSTALL_MASTER" -eq $BS_TRUE ]; then
-        __PACKAGES="${__PACKAGES} salt-master"
-    fi
-    if [ "$_INSTALL_MINION" -eq $BS_TRUE ]; then
-        __PACKAGES="${__PACKAGES} salt-minion"
-    fi
-    if [ "$_INSTALL_SYNDIC" -eq $BS_TRUE ]; then
-        __PACKAGES="${__PACKAGES} salt-syndic"
-    fi
-
-    # shellcheck disable=SC2086
-    apk -U add ${__PACKAGES} || return 1
-    return 0
-}
-
-install_alpine_linux_git() {
-
-    if [ "${_POST_NEON_INSTALL}" -eq $BS_TRUE ]; then
-         __install_salt_from_repo_post_neon "${_PY_EXE}" || return 1
-        return 0
-    fi
-
-    if [ -f "${_SALT_GIT_CHECKOUT_DIR}/salt/syspaths.py" ]; then
-        python2 setup.py --salt-config-dir="$_SALT_ETC_DIR" --salt-cache-dir="${_SALT_CACHE_DIR}" ${SETUP_PY_INSTALL_ARGS} install || return 1
-    else
-        python2 setup.py ${SETUP_PY_INSTALL_ARGS} install || return 1
-    fi
-}
-
-install_alpine_linux_post() {
-    for fname in api master minion syndic; do
-        # Skip if not meant to be installed
-        [ $fname = "api" ] && \
-            ([ "$_INSTALL_MASTER" -eq $BS_FALSE ] || ! __check_command_exists "salt-${fname}") && continue
-        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
-        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
-        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
-
-        if [ -f /sbin/rc-update ]; then
-            script_url="${_SALTSTACK_REPO_URL%.git}/raw/master/pkg/alpine/salt-$fname"
-            [ -f "/etc/init.d/salt-$fname" ] || __fetch_url "/etc/init.d/salt-$fname" "$script_url"
-
-            # shellcheck disable=SC2181
-            if [ $? -eq 0 ]; then
-                chmod +x "/etc/init.d/salt-$fname"
-            else
-                echoerror "Failed to get OpenRC init script for $OS_NAME from $script_url."
-                return 1
-            fi
-
-            # Skip salt-api since the service should be opt-in and not necessarily started on boot
-            [ $fname = "api" ] && continue
-
-            /sbin/rc-update add "salt-$fname" > /dev/null 2>&1 || return 1
-        fi
-    done
-}
-
-install_alpine_linux_restart_daemons() {
-    [ "${_START_DAEMONS}" -eq $BS_FALSE ] && return
-
-    for fname in api master minion syndic; do
-        # Skip salt-api since the service should be opt-in and not necessarily started on boot
-        [ $fname = "api" ] && continue
-
-        # Skip if not meant to be installed
-        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
-        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
-        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
-
-        # Disable stdin to fix shell session hang on killing tee pipe
-        /sbin/rc-service salt-$fname stop < /dev/null > /dev/null 2>&1
-        /sbin/rc-service salt-$fname start < /dev/null || return 1
-    done
-}
-
-install_alpine_linux_check_services() {
-    for fname in api master minion syndic; do
-        # Skip salt-api since the service should be opt-in and not necessarily started on boot
-        [ $fname = "api" ] && continue
-
-        # Skip if not meant to be installed
-        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
-        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
-        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
-
-        __check_services_openrc salt-$fname || return 1
-    done
-
-    return 0
-}
-
-daemons_running_alpine_linux() {
-    [ "${_START_DAEMONS}" -eq $BS_FALSE ] && return
-
-    FAILED_DAEMONS=0
-    for fname in api master minion syndic; do
-        # Skip salt-api since the service should be opt-in and not necessarily started on boot
-        [ $fname = "api" ] && continue
-
-        # Skip if not meant to be installed
-        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
-        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
-        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
-
-        # shellcheck disable=SC2009
-        if [ "$(ps wwwaux | grep -v grep | grep salt-$fname)" = "" ]; then
-            echoerror "salt-$fname was not found running"
-            FAILED_DAEMONS=$((FAILED_DAEMONS + 1))
-        fi
-    done
-
-    return $FAILED_DAEMONS
-}
-
-#
-#   Ended Alpine Linux Install Functions
-#
-#######################################################################################################################
-
-
-#######################################################################################################################
-#
-#   Amazon Linux AMI Install Functions
-#
-
-install_amazon_linux_ami_deps() {
-    # Shim to figure out if we're using old (rhel) or new (aws) rpms.
-    _USEAWS=$BS_FALSE
-    pkg_append="python"
-
-    if [ "$ITYPE" = "stable" ]; then
-        repo_rev="$STABLE_REV"
-    else
-        repo_rev="latest"
-    fi
-
-    if echo $repo_rev | grep -E -q '^archive'; then
-        year=$(echo "$repo_rev" | cut -d '/' -f 2 | cut -c1-4)
-    else
-        year=$(echo "$repo_rev" | cut -c1-4)
-    fi
-
-    if echo "$repo_rev" | grep -E -q '^(latest|2016\.11)$' || \
-            [ "$year" -gt 2016 ]; then
-       _USEAWS=$BS_TRUE
-       pkg_append="python27"
-    fi
-
-    # We need to install yum-utils before doing anything else when installing on
-    # Amazon Linux ECS-optimized images. See issue #974.
-    __yum_install_noinput yum-utils
-
-    # Do upgrade early
-    if [ "$_UPGRADE_SYS" -eq $BS_TRUE ]; then
-        yum -y update || return 1
-    fi
-
-    if [ $_DISABLE_REPOS -eq $BS_FALSE ] || [ "$_CUSTOM_REPO_URL" != "null" ]; then
-        __REPO_FILENAME="salt.repo"
-
-        # Set a few vars to make life easier.
-        if [ $_USEAWS -eq $BS_TRUE ]; then
-           base_url="$HTTP_VAL://${_REPO_URL}/yum/amazon/latest/\$basearch/$repo_rev/"
-           gpg_key="${base_url}SALTSTACK-GPG-KEY.pub"
-           repo_name="SaltStack repo for Amazon Linux"
-        else
-           base_url="$HTTP_VAL://${_REPO_URL}/yum/redhat/6/\$basearch/$repo_rev/"
-           gpg_key="${base_url}SALTSTACK-GPG-KEY.pub"
-           repo_name="SaltStack repo for RHEL/CentOS 6"
-        fi
-
-        # This should prob be refactored to use __install_saltstack_rhel_repository()
-        # With args passed in to do the right thing.  Reformatted to be more like the
-        # amazon linux yum file.
-        if [ ! -s "/etc/yum.repos.d/${__REPO_FILENAME}" ]; then
-          cat <<_eof > "/etc/yum.repos.d/${__REPO_FILENAME}"
-[saltstack-repo]
-name=$repo_name
-failovermethod=priority
-priority=10
-gpgcheck=1
-gpgkey=$gpg_key
-baseurl=$base_url
-_eof
-        fi
-
-    fi
-
-    if [ "${_POST_NEON_INSTALL}" -eq $BS_FALSE ]; then
-        # Package python-ordereddict-1.1-2.el6.noarch is obsoleted by python26-2.6.9-2.88.amzn1.x86_64
-        # which is already installed
-        __PACKAGES="m2crypto ${pkg_append}-crypto ${pkg_append}-jinja2 ${pkg_append}-PyYAML"
-        __PACKAGES="${__PACKAGES} ${pkg_append}-msgpack ${pkg_append}-requests ${pkg_append}-zmq"
-        __PACKAGES="${__PACKAGES} ${pkg_append}-futures"
-        # shellcheck disable=SC2086
-        __yum_install_noinput ${__PACKAGES} || return 1
-    fi
-
-    if [ "${_EXTRA_PACKAGES}" != "" ]; then
-        echoinfo "Installing the following extra packages as requested: ${_EXTRA_PACKAGES}"
-        # shellcheck disable=SC2086
-        __yum_install_noinput ${_EXTRA_PACKAGES} || return 1
-    fi
-}
-
-install_amazon_linux_ami_git_deps() {
-    if [ "$_INSECURE_DL" -eq $BS_FALSE ] && [ "${_SALT_REPO_URL%%://*}" = "https" ]; then
-        yum -y install ca-certificates || return 1
-    fi
-
-    PIP_EXE='pip'
-    if __check_command_exists python2.7; then
-        if ! __check_command_exists pip2.7; then
-            if ! __check_command_exists easy_install-2.7; then
-                __yum_install_noinput python27-setuptools
-            fi
-            /usr/bin/easy_install-2.7 pip || return 1
-        fi
-        PIP_EXE='/usr/local/bin/pip2.7'
-        _PY_EXE='python2.7'
-    fi
-
-    install_amazon_linux_ami_deps || return 1
-
-    if ! __check_command_exists git; then
-        __yum_install_noinput git || return 1
-    fi
-
-    __git_clone_and_checkout || return 1
-
-    if [ "${_POST_NEON_INSTALL}" -eq $BS_FALSE ]; then
-        __PACKAGES=""
-        __PIP_PACKAGES=""
-
-        if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ]; then
-            __check_pip_allowed "You need to allow pip based installations (-P) in order to install apache-libcloud"
-            __PACKAGES="${__PACKAGES} python27-pip"
-            __PIP_PACKAGES="${__PIP_PACKAGES} apache-libcloud>=$_LIBCLOUD_MIN_VERSION"
-        fi
-
-        if [ -f "${_SALT_GIT_CHECKOUT_DIR}/requirements/base.txt" ]; then
-            # We're on the master branch, install whichever tornado is on the requirements file
-            __REQUIRED_TORNADO="$(grep tornado "${_SALT_GIT_CHECKOUT_DIR}/requirements/base.txt")"
-            if [ "${__REQUIRED_TORNADO}" != "" ]; then
-                __PACKAGES="${__PACKAGES} ${pkg_append}-tornado"
-            fi
-        fi
-
-        if [ "${__PACKAGES}" != "" ]; then
-            # shellcheck disable=SC2086
-            __yum_install_noinput ${__PACKAGES} || return 1
-        fi
-
-        if [ "${__PIP_PACKAGES}" != "" ]; then
-            # shellcheck disable=SC2086
-            ${PIP_EXE} install ${__PIP_PACKAGES} || return 1
-        fi
-    else
-        __PACKAGES="python27-pip python27-setuptools python27-devel gcc"
-            # shellcheck disable=SC2086
-        __yum_install_noinput ${__PACKAGES} || return 1
-    fi
-
-    # Let's trigger config_salt()
-    if [ "$_TEMP_CONFIG_DIR" = "null" ]; then
-        _TEMP_CONFIG_DIR="${_SALT_GIT_CHECKOUT_DIR}/conf/"
-        CONFIG_SALT_FUNC="config_salt"
-    fi
-
-    return 0
-}
-
-install_amazon_linux_ami_2_git_deps() {
-    if [ "$_INSECURE_DL" -eq $BS_FALSE ] && [ "${_SALT_REPO_URL%%://*}" = "https" ]; then
-        yum -y install ca-certificates || return 1
-    fi
-
-    install_amazon_linux_ami_2_deps || return 1
-
-    if [ "$_PY_MAJOR_VERSION" -eq 2 ]; then
-        PY_PKG_VER=2
-        PIP_EXE='/bin/pip'
-    else
-        PY_PKG_VER=3
-        PIP_EXE='/bin/pip3'
-    fi
-    __PACKAGES="python${PY_PKG_VER}-pip"
-
-    if ! __check_command_exists "${PIP_EXE}"; then
-        # shellcheck disable=SC2086
-        __yum_install_noinput ${__PACKAGES} || return 1
-    fi
-
-    if ! __check_command_exists git; then
-        __yum_install_noinput git || return 1
-    fi
-
-    __git_clone_and_checkout || return 1
-
-    if [ "${_POST_NEON_INSTALL}" -eq $BS_FALSE ]; then
-
-        __PACKAGES=""
-        __PIP_PACKAGES=""
-
-        if [ "$_INSTALL_CLOUD" -eq "$BS_TRUE" ]; then
-            __check_pip_allowed "You need to allow pip based installations (-P) in order to install apache-libcloud"
-            if [ "$PARSED_VERSION" -eq "2" ]; then
-                if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq "3" ]; then
-                    __PACKAGES="${__PACKAGES} python3-pip"
-                    __PIP_PACKAGES="${__PIP_PACKAGES} tornado<$_TORNADO_MAX_PY3_VERSION"
-                else
-                    __PACKAGES="${__PACKAGES} python2-pip"
-                fi
-            else
-                __PACKAGES="${__PACKAGES} python27-pip"
-            fi
-            __PIP_PACKAGES="${__PIP_PACKAGES} apache-libcloud>=$_LIBCLOUD_MIN_VERSION"
-        fi
-
-        if [ -f "${_SALT_GIT_CHECKOUT_DIR}/requirements/base.txt" ]; then
-            # We're on the master branch, install whichever tornado is on the requirements file
-            __REQUIRED_TORNADO="$(grep tornado "${_SALT_GIT_CHECKOUT_DIR}/requirements/base.txt")"
-            if [ "${__REQUIRED_TORNADO}" != "" ]; then
-                if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq "3" ]; then
-                    __PIP_PACKAGES="${__PIP_PACKAGES} tornado<$_TORNADO_MAX_PY3_VERSION"
-                else
-                    __PACKAGES="${__PACKAGES} ${pkg_append}${PY_PKG_VER}-tornado"
-                fi
-            fi
-        fi
-
-        if [ "${__PIP_PACKAGES}" != "" ]; then
-            __check_pip_allowed "You need to allow pip based installations (-P) in order to install ${__PIP_PACKAGES}"
-            __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-pip"
-        fi
-
-        if [ "${__PACKAGES}" != "" ]; then
-            # shellcheck disable=SC2086
-            __yum_install_noinput ${__PACKAGES} || return 1
-        fi
-
-        if [ "${__PIP_PACKAGES}" != "" ]; then
-            # shellcheck disable=SC2086
-            ${PIP_EXE} install ${__PIP_PACKAGES} || return 1
-        fi
-    else
-        __PACKAGES="python${PY_PKG_VER}-pip python${PY_PKG_VER}-setuptools python${PY_PKG_VER}-devel gcc"
-        # shellcheck disable=SC2086
-        __yum_install_noinput ${__PACKAGES} || return 1
-    fi
-
-    # Let's trigger config_salt()
-    if [ "$_TEMP_CONFIG_DIR" = "null" ]; then
-        _TEMP_CONFIG_DIR="${_SALT_GIT_CHECKOUT_DIR}/conf/"
-        CONFIG_SALT_FUNC="config_salt"
-    fi
-
-    return 0
-}
-
-install_amazon_linux_ami_2_deps() {
-    # Shim to figure out if we're using old (rhel) or new (aws) rpms.
-    _USEAWS=$BS_FALSE
-    pkg_append="python"
-
-    if [ "$ITYPE" = "stable" ]; then
-        repo_rev="$STABLE_REV"
-    else
-        repo_rev="latest"
-    fi
-
-    if echo $repo_rev | grep -E -q '^archive'; then
-        year=$(echo "$repo_rev" | cut -d '/' -f 2 | cut -c1-4)
-    else
-        year=$(echo "$repo_rev" | cut -c1-4)
-    fi
-
-    if echo "$repo_rev" | grep -E -q '^(latest|2016\.11)$' || \
-            [ "$year" -gt 2016 ]; then
-       _USEAWS=$BS_TRUE
-       pkg_append="python"
-    fi
-
-    # We need to install yum-utils before doing anything else when installing on
-    # Amazon Linux ECS-optimized images. See issue #974.
-    __yum_install_noinput yum-utils
-
-    # Do upgrade early
-    if [ "$_UPGRADE_SYS" -eq $BS_TRUE ]; then
-        yum -y update || return 1
-    fi
-
-    if [ $_DISABLE_REPOS -eq $BS_FALSE ] || [ "$_CUSTOM_REPO_URL" != "null" ]; then
-        __REPO_FILENAME="salt.repo"
-        __PY_VERSION_REPO="yum"
-        PY_PKG_VER=""
-        repo_label="saltstack-repo"
-        repo_name="SaltStack repo for Amazon Linux 2"
-        if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
-            __REPO_FILENAME="salt.repo"
-            __PY_VERSION_REPO="py3"
-            PY_PKG_VER=3
-            repo_label="saltstack-py3-repo"
-            repo_name="SaltStack Python 3 repo for Amazon Linux 2"
-        fi
-
-        base_url="$HTTP_VAL://${_REPO_URL}/${__PY_VERSION_REPO}/amazon/2/\$basearch/$repo_rev/"
-        gpg_key="${base_url}SALTSTACK-GPG-KEY.pub,${base_url}base/RPM-GPG-KEY-CentOS-7"
-        if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
-            gpg_key="${base_url}SALTSTACK-GPG-KEY.pub"
-        fi
-
-        # This should prob be refactored to use __install_saltstack_rhel_repository()
-        # With args passed in to do the right thing.  Reformatted to be more like the
-        # amazon linux yum file.
-        if [ ! -s "/etc/yum.repos.d/${__REPO_FILENAME}" ]; then
-          cat <<_eof > "/etc/yum.repos.d/${__REPO_FILENAME}"
-[$repo_label]
-name=$repo_name
-failovermethod=priority
-priority=10
-gpgcheck=1
-gpgkey=$gpg_key
-baseurl=$base_url
-_eof
-        fi
-
-    fi
-
-    if [ "${_POST_NEON_INSTALL}" -eq $BS_FALSE ]; then
-        # Package python-ordereddict-1.1-2.el6.noarch is obsoleted by python26-2.6.9-2.88.amzn1.x86_64
-        # which is already installed
-        if [ -n "${PY_PKG_VER}" ] && [ "${PY_PKG_VER}" -eq 3 ]; then
-            __PACKAGES="${pkg_append}${PY_PKG_VER}-m2crypto ${pkg_append}${PY_PKG_VER}-pyyaml"
-        else
-            __PACKAGES="m2crypto PyYAML ${pkg_append}-futures"
-        fi
-
-        __PACKAGES="${__PACKAGES} ${pkg_append}${PY_PKG_VER}-crypto ${pkg_append}${PY_PKG_VER}-jinja2 procps-ng"
-        __PACKAGES="${__PACKAGES} ${pkg_append}${PY_PKG_VER}-msgpack ${pkg_append}${PY_PKG_VER}-requests ${pkg_append}${PY_PKG_VER}-zmq"
-
-        # shellcheck disable=SC2086
-        __yum_install_noinput ${__PACKAGES} || return 1
-    fi
-
-    if [ "${_EXTRA_PACKAGES}" != "" ]; then
-        echoinfo "Installing the following extra packages as requested: ${_EXTRA_PACKAGES}"
-        # shellcheck disable=SC2086
-        __yum_install_noinput ${_EXTRA_PACKAGES} || return 1
-    fi
-}
-
-install_amazon_linux_ami_stable() {
-    install_centos_stable || return 1
-    return 0
-}
-
-install_amazon_linux_ami_stable_post() {
-    install_centos_stable_post || return 1
-    return 0
-}
-
-install_amazon_linux_ami_restart_daemons() {
-    install_centos_restart_daemons || return 1
-    return 0
-}
-
-install_amazon_linux_ami_git() {
-    install_centos_git || return 1
-    return 0
-}
-
-install_amazon_linux_ami_git_post() {
-    install_centos_git_post || return 1
-    return 0
-}
-
-install_amazon_linux_ami_testing() {
-    install_centos_testing || return 1
-    return 0
-}
-
-install_amazon_linux_ami_testing_post() {
-    install_centos_testing_post || return 1
-    return 0
-}
-
-install_amazon_linux_ami_2_stable() {
-    install_centos_stable || return 1
-    return 0
-}
-
-install_amazon_linux_ami_2_stable_post() {
-    install_centos_stable_post || return 1
-    return 0
-}
-
-install_amazon_linux_ami_2_restart_daemons() {
-    install_centos_restart_daemons || return 1
-    return 0
-}
-
-install_amazon_linux_ami_2_git() {
-    install_centos_git || return 1
-    return 0
-}
-
-install_amazon_linux_ami_2_git_post() {
-    install_centos_git_post || return 1
-    return 0
-}
-
-install_amazon_linux_ami_2_testing() {
-    install_centos_testing || return 1
-    return 0
-}
-
-install_amazon_linux_ami_2_testing_post() {
-    install_centos_testing_post || return 1
-    return 0
-}
-
-install_amazon_linux_ami_2_check_services() {
-    install_centos_check_services || return 1
-    return 0
-}
-
-#
-#   Ended Amazon Linux AMI Install Functions
-#
-#######################################################################################################################
-
-#######################################################################################################################
-#
-#   Arch Install Functions
-#
-install_arch_linux_stable_deps() {
-    if [ ! -f /etc/pacman.d/gnupg ]; then
-        pacman-key --init && pacman-key --populate archlinux || return 1
-    fi
-
-    # Pacman does not resolve dependencies on outdated versions
-    # They always need to be updated
-    pacman -Syy --noconfirm
-
-    pacman -S --noconfirm --needed archlinux-keyring || return 1
-
-    pacman -Su --noconfirm --needed pacman || return 1
-
-    if __check_command_exists pacman-db-upgrade; then
-        pacman-db-upgrade || return 1
-    fi
-
-    if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 2 ]; then
-        PY_PKG_VER=2
-    else
-        PY_PKG_VER=""
-    fi
-
-    # YAML module is used for generating custom master/minion configs
-    # shellcheck disable=SC2086
-    pacman -Su --noconfirm --needed python${PY_PKG_VER}-yaml
-
-    if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ]; then
-        # shellcheck disable=SC2086
-        pacman -Su --noconfirm --needed python${PY_PKG_VER}-apache-libcloud || return 1
-    fi
-
-    if [ "${_EXTRA_PACKAGES}" != "" ]; then
-        echoinfo "Installing the following extra packages as requested: ${_EXTRA_PACKAGES}"
-        # shellcheck disable=SC2086
-        pacman -Su --noconfirm --needed ${_EXTRA_PACKAGES} || return 1
-    fi
-}
-
-install_arch_linux_git_deps() {
-    install_arch_linux_stable_deps
-
-    # Don't fail if un-installing python2-distribute threw an error
-    if ! __check_command_exists git; then
-        pacman -Sy --noconfirm --needed git  || return 1
-    fi
-
-    __git_clone_and_checkout || return 1
-
-    if [ "${_POST_NEON_INSTALL}" -eq $BS_FALSE ]; then
-        pacman -R --noconfirm python2-distribute
-        pacman -Su --noconfirm --needed python2-crypto python2-setuptools python2-jinja \
-            python2-m2crypto python2-markupsafe python2-msgpack python2-psutil \
-            python2-pyzmq zeromq python2-requests python2-systemd || return 1
-
-        if [ -f "${_SALT_GIT_CHECKOUT_DIR}/requirements/base.txt" ]; then
-            # We're on the master branch, install whichever tornado is on the requirements file
-            __REQUIRED_TORNADO="$(grep tornado "${_SALT_GIT_CHECKOUT_DIR}/requirements/base.txt")"
-            if [ "${__REQUIRED_TORNADO}" != "" ]; then
-                pacman -Su --noconfirm --needed python2-tornado
-            fi
-        fi
-    else
-        if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 2 ]; then
-            PY_PKG_VER=2
-        else
-            PY_PKG_VER=""
-        fi
-        __PACKAGES="python${PY_PKG_VER}-pip python${PY_PKG_VER}-setuptools gcc"
-        # shellcheck disable=SC2086
-        pacman -Su --noconfirm --needed ${__PACKAGES}
-    fi
-
-    # Let's trigger config_salt()
-    if [ "$_TEMP_CONFIG_DIR" = "null" ]; then
-        _TEMP_CONFIG_DIR="${_SALT_GIT_CHECKOUT_DIR}/conf/"
-        CONFIG_SALT_FUNC="config_salt"
-    fi
-
-    return 0
-}
-
-install_arch_linux_stable() {
-    # Pacman does not resolve dependencies on outdated versions
-    # They always need to be updated
-    pacman -Syy --noconfirm
-
-    pacman -Su --noconfirm --needed pacman || return 1
-    # See https://mailman.archlinux.org/pipermail/arch-dev-public/2013-June/025043.html
-    # to know why we're ignoring below.
-    pacman -Syu --noconfirm --ignore filesystem,bash || return 1
-    pacman -S --noconfirm --needed bash || return 1
-    pacman -Su --noconfirm || return 1
-    # We can now resume regular salt update
-    pacman -Syu --noconfirm salt || return 1
-    return 0
-}
-
-install_arch_linux_git() {
-
-    if [ "${_POST_NEON_INSTALL}" -eq $BS_TRUE ]; then
-         __install_salt_from_repo_post_neon "${_PY_EXE}" || return 1
-        return 0
-    fi
-
-    if [ -f "${_SALT_GIT_CHECKOUT_DIR}/salt/syspaths.py" ]; then
-        python2 setup.py --salt-config-dir="$_SALT_ETC_DIR" --salt-cache-dir="${_SALT_CACHE_DIR}" ${SETUP_PY_INSTALL_ARGS} install || return 1
-    else
-        python2 setup.py ${SETUP_PY_INSTALL_ARGS} install || return 1
-    fi
-    return 0
-}
-
-install_arch_linux_post() {
-    for fname in api master minion syndic; do
-        # Skip if not meant to be installed
-        [ $fname = "api" ] && \
-            ([ "$_INSTALL_MASTER" -eq $BS_FALSE ] || ! __check_command_exists "salt-${fname}") && continue
-        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
-        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
-        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
-
-        # Since Arch's pacman renames configuration files
-        if [ "$_TEMP_CONFIG_DIR" != "null" ] && [ -f "$_SALT_ETC_DIR/$fname.pacorig" ]; then
-            # Since a configuration directory was provided, it also means that any
-            # configuration file copied was renamed by Arch, see:
-            #   https://wiki.archlinux.org/index.php/Pacnew_and_Pacsave_Files#.pacorig
-            __copyfile "$_SALT_ETC_DIR/$fname.pacorig" "$_SALT_ETC_DIR/$fname" $BS_TRUE
-        fi
-
-        # Skip salt-api since the service should be opt-in and not necessarily started on boot
-        [ $fname = "api" ] && continue
-
-        if [ -f /usr/bin/systemctl ]; then
-            # Using systemd
-            /usr/bin/systemctl is-enabled salt-$fname.service > /dev/null 2>&1 || (
-                /usr/bin/systemctl preset salt-$fname.service > /dev/null 2>&1 &&
-                /usr/bin/systemctl enable salt-$fname.service > /dev/null 2>&1
-            )
-            sleep 1
-            /usr/bin/systemctl daemon-reload
-            continue
-        fi
-
-        # XXX: How do we enable old Arch init.d scripts?
-    done
-}
-
-install_arch_linux_git_post() {
-    for fname in api master minion syndic; do
-        # Skip if not meant to be installed
-        [ $fname = "api" ] && \
-            ([ "$_INSTALL_MASTER" -eq $BS_FALSE ] || ! __check_command_exists "salt-${fname}") && continue
-        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
-        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
-        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
-
-        if [ -f /usr/bin/systemctl ]; then
-            __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/rpm/salt-${fname}.service" "/lib/systemd/system/salt-${fname}.service"
-
-            # Skip salt-api since the service should be opt-in and not necessarily started on boot
-            [ $fname = "api" ] && continue
-
-            /usr/bin/systemctl is-enabled salt-${fname}.service > /dev/null 2>&1 || (
-                /usr/bin/systemctl preset salt-${fname}.service > /dev/null 2>&1 &&
-                /usr/bin/systemctl enable salt-${fname}.service > /dev/null 2>&1
-            )
-            sleep 1
-            /usr/bin/systemctl daemon-reload
-            continue
-        fi
-
-        # SysV init!?
-        __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/rpm/salt-$fname" "/etc/rc.d/init.d/salt-$fname"
-        chmod +x /etc/rc.d/init.d/salt-$fname
-    done
-}
-
-install_arch_linux_restart_daemons() {
-    [ $_START_DAEMONS -eq $BS_FALSE ] && return
-
-    for fname in api master minion syndic; do
-        # Skip salt-api since the service should be opt-in and not necessarily started on boot
-        [ $fname = "api" ] && continue
-
-        # Skip if not meant to be installed
-        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
-        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
-        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
-
-        if [ -f /usr/bin/systemctl ]; then
-            /usr/bin/systemctl stop salt-$fname.service > /dev/null 2>&1
-            /usr/bin/systemctl start salt-$fname.service && continue
-            echodebug "Failed to start salt-$fname using systemd"
-            if [ "$_ECHO_DEBUG" -eq $BS_TRUE ]; then
-                systemctl status salt-$fname.service
-                journalctl -xe
-            fi
-        fi
-
-        /etc/rc.d/salt-$fname stop > /dev/null 2>&1
-        /etc/rc.d/salt-$fname start
-    done
-}
-
-install_arch_check_services() {
-    if [ ! -f /usr/bin/systemctl ]; then
-        # Not running systemd!? Don't check!
-        return 0
-    fi
-
-    for fname in api master minion syndic; do
-        # Skip salt-api since the service should be opt-in and not necessarily started on boot
-        [ $fname = "api" ] && continue
-
-        # Skip if not meant to be installed
-        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
-        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
-        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
-
-        __check_services_systemd salt-$fname || return 1
-    done
-
-    return 0
-}
-#
-#   Ended Arch Install Functions
-#
-#######################################################################################################################
-
-#######################################################################################################################
-#
-#   FreeBSD Install Functions
-#
-
-# Using a separate conf step to head for idempotent install...
-__configure_freebsd_pkg_details() {
-    _SALT_ETC_DIR="/usr/local/etc/salt"
-    _PKI_DIR=${_SALT_ETC_DIR}/pki
-    _POST_NEON_PIP_INSTALL_ARGS="--prefix=/usr/local"
-}
-
-install_freebsd_deps() {
-    __configure_freebsd_pkg_details
-    pkg install -y pkg
-}
-
-install_freebsd_git_deps() {
-    install_freebsd_deps || return 1
-
-    if ! __check_command_exists git; then
-        /usr/local/sbin/pkg install -y git || return 1
-    fi
-    __git_clone_and_checkout || return 1
-
-    if [ "${_POST_NEON_INSTALL}" -eq $BS_FALSE ]; then
-
-        SALT_DEPENDENCIES=$(/usr/local/sbin/pkg rquery %dn py38-salt)
-        # shellcheck disable=SC2086
-        /usr/local/sbin/pkg install -y ${SALT_DEPENDENCIES} python || return 1
-
-        /usr/local/sbin/pkg install -y py38-requests || return 1
-        /usr/local/sbin/pkg install -y py38-tornado4 || return 1
-
-    else
-        /usr/local/sbin/pkg install -y python py38-pip py38-setuptools libzmq4 libunwind || return 1
-    fi
-
-    echodebug "Adapting paths to FreeBSD"
-    # The list of files was taken from Salt's BSD port Makefile
-    for file in doc/man/salt-key.1 doc/man/salt-cp.1 doc/man/salt-minion.1 \
-                doc/man/salt-syndic.1 doc/man/salt-master.1 doc/man/salt-run.1 \
-                doc/man/salt.7 doc/man/salt.1 doc/man/salt-call.1; do
-        [ ! -f $file ] && continue
-        echodebug "Patching ${file}"
-        sed -in -e "s|/etc/salt|${_SALT_ETC_DIR}|" \
-                -e "s|/srv/salt|${_SALT_ETC_DIR}/states|" \
-                -e "s|/srv/pillar|${_SALT_ETC_DIR}/pillar|" ${file}
-    done
-    if [ ! -f salt/syspaths.py ]; then
-        # We still can't provide the system paths, salt 0.16.x
-        # Let's patch salt's source and adapt paths to what's expected on FreeBSD
-        echodebug "Replacing occurrences of '/etc/salt' with ${_SALT_ETC_DIR}"
-        # The list of files was taken from Salt's BSD port Makefile
-        for file in conf/minion conf/master salt/config.py salt/client.py \
-                    salt/modules/mysql.py salt/utils/parsers.py salt/modules/tls.py \
-                    salt/modules/postgres.py salt/utils/migrations.py; do
-            [ ! -f $file ] && continue
-            echodebug "Patching ${file}"
-            sed -in -e "s|/etc/salt|${_SALT_ETC_DIR}|" \
-                    -e "s|/srv/salt|${_SALT_ETC_DIR}/states|" \
-                    -e "s|/srv/pillar|${_SALT_ETC_DIR}/pillar|" ${file}
-        done
-    fi
-    echodebug "Finished patching"
-
-    # Let's trigger config_salt()
-    if [ "$_TEMP_CONFIG_DIR" = "null" ]; then
-        _TEMP_CONFIG_DIR="${_SALT_GIT_CHECKOUT_DIR}/conf/"
-        CONFIG_SALT_FUNC="config_salt"
-
-    fi
-
-    return 0
-}
-
-install_freebsd_stable() {
-#
-# installing latest version of salt from FreeBSD CURRENT ports repo
-#
-    # shellcheck disable=SC2086
-    /usr/local/sbin/pkg install -y py38-salt || return 1
-
-    return 0
-}
-
-install_freebsd_git() {
-
-    # /usr/local/bin/python3 in FreeBSD is a symlink to /usr/local/bin/python3.7
-    __PYTHON_PATH=$(readlink -f "$(command -v python3)")
-    __ESCAPED_PYTHON_PATH=$(echo "${__PYTHON_PATH}" | sed 's/\//\\\//g')
-
-    if [ "${_POST_NEON_INSTALL}" -eq $BS_TRUE ]; then
-         __install_salt_from_repo_post_neon "${__PYTHON_PATH}" || return 1
-    for script in salt_api salt_master salt_minion salt_proxy salt_syndic; do
-        __fetch_url "/usr/local/etc/rc.d/${script}" "https://raw.githubusercontent.com/freebsd/freebsd-ports/master/sysutils/py-salt/files/${script}.in" || return 1
-        sed -i '' 's/%%PREFIX%%/\/usr\/local/g' /usr/local/etc/rc.d/${script}
-        sed -i '' "s/%%PYTHON_CMD%%/${__ESCAPED_PYTHON_PATH}/g" /usr/local/etc/rc.d/${script}
-        chmod +x /usr/local/etc/rc.d/${script} || return 1
-    done
-
-        return 0
-    fi
-
-    # Install from git
-    if [ ! -f salt/syspaths.py ]; then
-        # We still can't provide the system paths, salt 0.16.x
-        ${__PYTHON_PATH} setup.py ${SETUP_PY_INSTALL_ARGS} install || return 1
-    else
-        ${__PYTHON_PATH} setup.py \
-            --salt-root-dir=/ \
-            --salt-config-dir="${_SALT_ETC_DIR}" \
-            --salt-cache-dir="${_SALT_CACHE_DIR}" \
-            --salt-sock-dir=/var/run/salt \
-            --salt-srv-root-dir="${_SALT_ETC_DIR}" \
-            --salt-base-file-roots-dir="${_SALT_ETC_DIR}/states" \
-            --salt-base-pillar-roots-dir="${_SALT_ETC_DIR}/pillar" \
-            --salt-base-master-roots-dir="${_SALT_ETC_DIR}/salt-master" \
-            --salt-logs-dir=/var/log/salt \
-            --salt-pidfile-dir=/var/run \
-            ${SETUP_PY_INSTALL_ARGS} install \
-            || return 1
-    fi
-
-    for script in salt_api salt_master salt_minion salt_proxy salt_syndic; do
-        __fetch_url "/usr/local/etc/rc.d/${script}" "https://raw.githubusercontent.com/freebsd/freebsd-ports/master/sysutils/py-salt/files/${script}.in" || return 1
-        sed -i '' 's/%%PREFIX%%/\/usr\/local/g' /usr/local/etc/rc.d/${script}
-        sed -i '' "s/%%PYTHON_CMD%%/${__ESCAPED_PYTHON_PATH}/g" /usr/local/etc/rc.d/${script}
-        chmod +x /usr/local/etc/rc.d/${script} || return 1
-    done
-
-    # And we're good to go
-    return 0
-}
-
-install_freebsd_stable_post() {
-    for fname in api master minion syndic; do
-        # Skip salt-api since the service should be opt-in and not necessarily started on boot
-        [ $fname = "api" ] && continue
-
-        # Skip if not meant to be installed
-        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
-        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
-        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
-
-        enable_string="salt_${fname}_enable=YES"
-        grep "$enable_string" /etc/rc.conf >/dev/null 2>&1
-        [ $? -eq 1 ] && sysrc $enable_string
-
-    done
-}
-
-install_freebsd_git_post() {
-    install_freebsd_stable_post || return 1
-    return 0
-}
-
-install_freebsd_restart_daemons() {
-    [ $_START_DAEMONS -eq $BS_FALSE ] && return
-
-    for fname in api master minion syndic; do
-        # Skip salt-api since the service should be opt-in and not necessarily started on boot
-        [ $fname = "api" ] && continue
-
-        # Skip if not meant to be installed
-        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
-        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
-        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
-
-        service salt_$fname stop > /dev/null 2>&1
-        service salt_$fname start
-    done
-}
-#
-#   Ended FreeBSD Install Functions
-#
-#######################################################################################################################
-
-#######################################################################################################################
-#
-#   OpenBSD Install Functions
-#
-
-install_openbsd_deps() {
-    if [ $_DISABLE_REPOS -eq $BS_FALSE ]; then
-        OPENBSD_REPO='https://cdn.openbsd.org/pub/OpenBSD'
-        echoinfo "setting package repository to $OPENBSD_REPO"
-        echo "${OPENBSD_REPO}" >/etc/installurl || return 1
-    fi
-
-    if [ "${_EXTRA_PACKAGES}" != "" ]; then
-        echoinfo "Installing the following extra packages as requested: ${_EXTRA_PACKAGES}"
-        # shellcheck disable=SC2086
-        pkg_add -I -v ${_EXTRA_PACKAGES} || return 1
-    fi
-    return 0
-}
-
-install_openbsd_git_deps() {
-    install_openbsd_deps || return 1
-
-    if ! __check_command_exists git; then
-        pkg_add -I -v git || return 1
-    fi
-    __git_clone_and_checkout || return 1
-
-    if [ "${_POST_NEON_INSTALL}" -eq $BS_TRUE ]; then
-        pkg_add -I -v py-pip py-setuptools
-    fi
-
-    #
-    # Let's trigger config_salt()
-    #
-    if [ "$_TEMP_CONFIG_DIR" = "null" ]; then
-        _TEMP_CONFIG_DIR="${_SALT_GIT_CHECKOUT_DIR}/conf/"
-        CONFIG_SALT_FUNC="config_salt"
-    fi
-
-    return 0
-}
-
-install_openbsd_git() {
-    #
-    # Install from git
-    #
-    if [ "${_POST_NEON_INSTALL}" -eq $BS_TRUE ]; then
-         __install_salt_from_repo_post_neon "${_PY_EXE}" || return 1
-        return 0
-    fi
-
-    if [ ! -f salt/syspaths.py ]; then
-        # We still can't provide the system paths, salt 0.16.x
-        /usr/local/bin/python2.7 setup.py ${SETUP_PY_INSTALL_ARGS} install || return 1
-    fi
-    return 0
-}
-
-install_openbsd_stable() {
-    pkg_add -r -I -v salt || return 1
-    return 0
-}
-
-install_openbsd_post() {
-    for fname in api master minion syndic; do
-        [ $fname = "api" ] && continue
-        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
-        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
-        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
-
-        rcctl enable salt_$fname
-    done
-
-    return 0
-}
-
-install_openbsd_check_services() {
-    for fname in api master minion syndic; do
-        # Skip salt-api since the service should be opt-in and not necessarily started on boot
-        [ $fname = "api" ] && continue
-
-        # Skip if not meant to be installed
-        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
-        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
-        [ $fname = "syndic" ] && continue
-
-        if [ -f /etc/rc.d/salt_${fname} ]; then
-            __check_services_openbsd salt_${fname} || return 1
-        fi
-    done
-
-    return 0
-}
-
-install_openbsd_restart_daemons() {
-    [ $_START_DAEMONS -eq $BS_FALSE ] && return
-
-    for fname in api master minion syndic; do
-        # Skip salt-api since the service should be opt-in and not necessarily started on boot
-        [ $fname = "api" ] && continue
-
-        # Skip if not meant to be installed
-        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
-        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
-        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
-
-        rcctl restart salt_${fname}
-    done
-
-    return 0
-}
-
-#
-#   Ended OpenBSD Install Functions
-#
-#######################################################################################################################
-
-#######################################################################################################################
-#
-#   SmartOS Install Functions
-#
-install_smartos_deps() {
-    smartos_deps="$(pkgin show-deps salt | grep '^\s' | grep -v '\snot' | xargs) py27-m2crypto"
-    pkgin -y install "${smartos_deps}" || return 1
-
-    # Set _SALT_ETC_DIR to SmartOS default if they didn't specify
-    _SALT_ETC_DIR=${BS_SALT_ETC_DIR:-/opt/local/etc/salt}
-    # We also need to redefine the PKI directory
-    _PKI_DIR=${_SALT_ETC_DIR}/pki
-
-    # Let's trigger config_salt()
-    if [ "$_TEMP_CONFIG_DIR" = "null" ]; then
-        # Let's set the configuration directory to /tmp
-        _TEMP_CONFIG_DIR="/tmp"
-        CONFIG_SALT_FUNC="config_salt"
-
-        # Let's download, since they were not provided, the default configuration files
-        if [ ! -f "$_SALT_ETC_DIR/minion" ] && [ ! -f "$_TEMP_CONFIG_DIR/minion" ]; then
-            # shellcheck disable=SC2086
-            curl $_CURL_ARGS -s -o "$_TEMP_CONFIG_DIR/minion" -L \
-                https://raw.githubusercontent.com/saltstack/salt/master/conf/minion || return 1
-        fi
-        if [ ! -f "$_SALT_ETC_DIR/master" ] && [ ! -f $_TEMP_CONFIG_DIR/master ]; then
-            # shellcheck disable=SC2086
-            curl $_CURL_ARGS -s -o "$_TEMP_CONFIG_DIR/master" -L \
-                https://raw.githubusercontent.com/saltstack/salt/master/conf/master || return 1
-        fi
-    fi
-
-    if [ "$_INSTALL_CLOUD" -eq $BS_TRUE  ]; then
-        pkgin -y install py27-apache-libcloud || return 1
-    fi
-
-    if [ "${_EXTRA_PACKAGES}" != "" ]; then
-        echoinfo "Installing the following extra packages as requested: ${_EXTRA_PACKAGES}"
-        # shellcheck disable=SC2086
-        pkgin -y install ${_EXTRA_PACKAGES} || return 1
-    fi
-
-    return 0
-}
-
-install_smartos_git_deps() {
-    install_smartos_deps || return 1
-
-    if ! __check_command_exists git; then
-        pkgin -y install git || return 1
-    fi
-
-    __git_clone_and_checkout || return 1
-
-    if [ "${_POST_NEON_INSTALL}" -eq $BS_FALSE ]; then
-
-        if [ -f "${_SALT_GIT_CHECKOUT_DIR}/requirements/base.txt" ]; then
-            # Install whichever tornado is in the requirements file
-            __REQUIRED_TORNADO="$(grep tornado "${_SALT_GIT_CHECKOUT_DIR}/requirements/base.txt")"
-            __check_pip_allowed "You need to allow pip based installations (-P) in order to install the python package '${__REQUIRED_TORNADO}'"
-
-            # Install whichever futures is in the requirements file
-            __REQUIRED_FUTURES="$(grep futures "${_SALT_GIT_CHECKOUT_DIR}/requirements/base.txt")"
-            __check_pip_allowed "You need to allow pip based installations (-P) in order to install the python package '${__REQUIRED_FUTURES}'"
-
-            if [ "${__REQUIRED_TORNADO}" != "" ]; then
-                if ! __check_command_exists pip; then
-                    pkgin -y install py27-pip
-                fi
-                pip install -U "${__REQUIRED_TORNADO}"
-            fi
-
-            if [ "${__REQUIRED_FUTURES}" != "" ]; then
-                if ! __check_command_exists pip; then
-                    pkgin -y install py27-pip
-                fi
-                pip install -U "${__REQUIRED_FUTURES}"
-            fi
-        fi
-    else
-        if ! __check_command_exists pip; then
-            pkgin -y install py27-pip
-        fi
-        pkgin -y install py27-setuptools
-    fi
-
-    # Let's trigger config_salt()
-    if [ "$_TEMP_CONFIG_DIR" = "null" ]; then
-        _TEMP_CONFIG_DIR="${_SALT_GIT_CHECKOUT_DIR}/conf/"
-        CONFIG_SALT_FUNC="config_salt"
-    fi
-
-    return 0
-}
-
-install_smartos_stable() {
-    pkgin -y install salt || return 1
-    return 0
-}
-
-install_smartos_git() {
-
-    if [ "${_POST_NEON_INSTALL}" -eq $BS_TRUE ]; then
-         __install_salt_from_repo_post_neon "${_PY_EXE}" || return 1
-        return 0
-    fi
-
-    # Use setuptools in order to also install dependencies
-    # lets force our config path on the setup for now, since salt/syspaths.py only  got fixed in 2015.5.0
-    USE_SETUPTOOLS=1 /opt/local/bin/python setup.py --salt-config-dir="$_SALT_ETC_DIR" --salt-cache-dir="${_SALT_CACHE_DIR}" ${SETUP_PY_INSTALL_ARGS} install || return 1
-    return 0
-}
-
-install_smartos_post() {
-    smf_dir="/opt/custom/smf"
-
-    # Install manifest files if needed.
-    for fname in api master minion syndic; do
-        # Skip if not meant to be installed
-        [ $fname = "api" ] && \
-            ([ "$_INSTALL_MASTER" -eq $BS_FALSE ] || ! __check_command_exists "salt-${fname}") && continue
-        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
-        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
-        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
-
-        svcs network/salt-$fname > /dev/null 2>&1
-        if [ $? -eq 1 ]; then
-            if [ ! -f "$_TEMP_CONFIG_DIR/salt-$fname.xml" ]; then
-                # shellcheck disable=SC2086
-                curl $_CURL_ARGS -s -o "$_TEMP_CONFIG_DIR/salt-$fname.xml" -L \
-                    "https://raw.githubusercontent.com/saltstack/salt/master/pkg/smartos/salt-$fname.xml"
-            fi
-            svccfg import "$_TEMP_CONFIG_DIR/salt-$fname.xml"
-            if [ "${VIRTUAL_TYPE}" = "global" ]; then
-                if [ ! -d "$smf_dir" ]; then
-                    mkdir -p "$smf_dir" || return 1
-                fi
-                if [ ! -f "$smf_dir/salt-$fname.xml" ]; then
-                    __copyfile "$_TEMP_CONFIG_DIR/salt-$fname.xml" "$smf_dir/" || return 1
-                fi
-            fi
-        fi
-    done
-
-    return 0
-}
-
-install_smartos_git_post() {
-    smf_dir="/opt/custom/smf"
-
-    # Install manifest files if needed.
-    for fname in api master minion syndic; do
-        # Skip if not meant to be installed
-        [ $fname = "api" ] && \
-            ([ "$_INSTALL_MASTER" -eq $BS_FALSE ] || ! __check_command_exists "salt-${fname}") && continue
-        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
-        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
-        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
-
-        svcs "network/salt-$fname" > /dev/null 2>&1
-        if [ $? -eq 1 ]; then
-            svccfg import "${_SALT_GIT_CHECKOUT_DIR}/pkg/smartos/salt-$fname.xml"
-            if [ "${VIRTUAL_TYPE}" = "global" ]; then
-                if [ ! -d $smf_dir ]; then
-                    mkdir -p "$smf_dir"
-                fi
-                if [ ! -f "$smf_dir/salt-$fname.xml" ]; then
-                    __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/smartos/salt-$fname.xml" "$smf_dir/"
-                fi
-            fi
-        fi
-    done
-
-    return 0
-}
-
-install_smartos_restart_daemons() {
-    [ $_START_DAEMONS -eq $BS_FALSE ] && return
-
-    for fname in api master minion syndic; do
-        # Skip salt-api since the service should be opt-in and not necessarily started on boot
-        [ $fname = "api" ] && continue
-
-        # Skip if not meant to be installed
-        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
-        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
-        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
-
-        # Stop if running && Start service
-        svcadm disable salt-$fname > /dev/null 2>&1
-        svcadm enable salt-$fname
-    done
-
-    return 0
-}
-#
-#   Ended SmartOS Install Functions
-#
-#######################################################################################################################
-
-#######################################################################################################################
-#
-#    openSUSE Install Functions.
-#
-__ZYPPER_REQUIRES_REPLACE_FILES=-1
-
-__set_suse_pkg_repo() {
-
-    # Set distro repo variable
-    if [ "${DISTRO_MAJOR_VERSION}" -gt 2015 ]; then
-        DISTRO_REPO="openSUSE_Tumbleweed"
-    elif [ "${DISTRO_MAJOR_VERSION}" -ge 42 ] || [ "${DISTRO_MAJOR_VERSION}" -eq 15 ]; then
-        DISTRO_REPO="openSUSE_Leap_${DISTRO_MAJOR_VERSION}.${DISTRO_MINOR_VERSION}"
-    else
-        DISTRO_REPO="SLE_${DISTRO_MAJOR_VERSION}_SP${SUSE_PATCHLEVEL}"
-    fi
-
-    if [ "$_DOWNSTREAM_PKG_REPO" -eq $BS_TRUE ]; then
-        suse_pkg_url_base="https://download.opensuse.org/repositories/systemsmanagement:/saltstack"
-        suse_pkg_url_path="${DISTRO_REPO}/systemsmanagement:saltstack.repo"
-    else
-        suse_pkg_url_base="${HTTP_VAL}://repo.saltproject.io/opensuse"
-        suse_pkg_url_path="${DISTRO_REPO}/systemsmanagement:saltstack:products.repo"
-    fi
-    SUSE_PKG_URL="$suse_pkg_url_base/$suse_pkg_url_path"
-}
-
-__check_and_refresh_suse_pkg_repo() {
-    # Check to see if systemsmanagement_saltstack exists
-    __zypper repos | grep -q systemsmanagement_saltstack
-
-    if [ $? -eq 1 ]; then
-        # zypper does not yet know anything about systemsmanagement_saltstack
-        __zypper addrepo --refresh "${SUSE_PKG_URL}" || return 1
-    fi
-}
-
-__version_lte() {
-    if ! __check_command_exists python; then
-        zypper --non-interactive install --replacefiles --auto-agree-with-licenses python || \
-             zypper --non-interactive install --auto-agree-with-licenses python || return 1
-    fi
-
-    if [ "$(python -c 'import sys; V1=tuple([int(i) for i in sys.argv[1].split(".")]); V2=tuple([int(i) for i in sys.argv[2].split(".")]); print V1<=V2' "$1" "$2")" = "True" ]; then
-        __ZYPPER_REQUIRES_REPLACE_FILES=${BS_TRUE}
-    else
-        __ZYPPER_REQUIRES_REPLACE_FILES=${BS_FALSE}
-    fi
-}
-
-__zypper() {
-    # Check if any zypper process is running before calling zypper again.
-    # This is useful when a zypper call is part of a boot process and will
-    # wait until the zypper process is finished, such as on AWS AMIs.
-    while pgrep -l zypper; do
-        sleep 1
-    done
-
-    zypper --non-interactive "${@}"
-    # Return codes between 100 and 104 are only informations, not errors
-    # https://en.opensuse.org/SDB:Zypper_manual#EXIT_CODES
-    if [ "$?" -gt "99" ] && [ "$?" -le "104" ]; then
-        return 0
-    fi
-    return $?
-}
-
-__zypper_install() {
-    if [ "${__ZYPPER_REQUIRES_REPLACE_FILES}" = "-1" ]; then
-        __version_lte "1.10.4" "$(zypper --version | awk '{ print $2 }')"
-    fi
-    if [ "${__ZYPPER_REQUIRES_REPLACE_FILES}" = "${BS_TRUE}" ]; then
-        # In case of file conflicts replace old files.
-        # Option present in zypper 1.10.4 and newer:
-        # https://github.com/openSUSE/zypper/blob/95655728d26d6d5aef7796b675f4cc69bc0c05c0/package/zypper.changes#L253
-        __zypper install --auto-agree-with-licenses --replacefiles "${@}"; return $?
-    else
-        __zypper install --auto-agree-with-licenses "${@}"; return $?
-    fi
-}
-
-__opensuse_prep_install() {
-    # DRY function for common installation preparatory steps for SUSE
-    if [ $_DISABLE_REPOS -eq $BS_FALSE ]; then
-        # Is the repository already known
-        __set_suse_pkg_repo
-        # Check zypper repos and refresh if necessary
-        __check_and_refresh_suse_pkg_repo
-    fi
-
-    __zypper --gpg-auto-import-keys refresh
-
-    # shellcheck disable=SC2181
-    if [ $? -ne 0 ] && [ $? -ne 4 ]; then
-        # If the exit code is not 0, and it's not 4 (failed to update a
-        # repository) return a failure. Otherwise continue.
-        return 1
-    fi
-
-    if [ "$_UPGRADE_SYS" -eq $BS_TRUE ]; then
-        __zypper --gpg-auto-import-keys update || return 1
-    fi
-}
-
-install_opensuse_stable_deps() {
-    __opensuse_prep_install || return 1
-
-    if [ "$DISTRO_MAJOR_VERSION" -eq 12 ] && [ "$DISTRO_MINOR_VERSION" -eq 3 ]; then
-        # Because patterns-openSUSE-minimal_base-conflicts conflicts with python, lets remove the first one
-        __zypper remove patterns-openSUSE-minimal_base-conflicts
-    fi
-
-    # YAML module is used for generating custom master/minion configs
-    # requests is still used by many salt modules
-    # Salt needs python-zypp installed in order to use the zypper module
-    __PACKAGES="python-PyYAML python-requests python-zypp"
-
-    # shellcheck disable=SC2086
-    __zypper_install ${__PACKAGES} || return 1
-
-    if [ "${_EXTRA_PACKAGES}" != "" ]; then
-        echoinfo "Installing the following extra packages as requested: ${_EXTRA_PACKAGES}"
-        # shellcheck disable=SC2086
-        __zypper_install ${_EXTRA_PACKAGES} || return 1
-    fi
-
-    return 0
-}
-
-install_opensuse_git_deps() {
-    if [ "$_INSECURE_DL" -eq $BS_FALSE ] && [ "${_SALT_REPO_URL%%://*}" = "https" ] && ! __check_command_exists update-ca-certificates; then
-        __zypper_install ca-certificates || return 1
-    fi
-
-    install_opensuse_stable_deps || return 1
-
-    if ! __check_command_exists git; then
-        __zypper_install git  || return 1
-    fi
-
-    __git_clone_and_checkout || return 1
-
-    if [ "${_POST_NEON_INSTALL}" -eq $BS_FALSE ]; then
-        __zypper_install patch || return 1
-
-        __PACKAGES="libzmq5 python-Jinja2 python-m2crypto python-msgpack-python python-pycrypto python-pyzmq python-xml python-futures"
-
-        if [ -f "${_SALT_GIT_CHECKOUT_DIR}/requirements/base.txt" ]; then
-            # We're on the master branch, install whichever tornado is on the requirements file
-            __REQUIRED_TORNADO="$(grep tornado "${_SALT_GIT_CHECKOUT_DIR}/requirements/base.txt")"
-            if [ "${__REQUIRED_TORNADO}" != "" ]; then
-                __PACKAGES="${__PACKAGES} python-tornado"
-            fi
-        fi
-
-        if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ]; then
-            __PACKAGES="${__PACKAGES} python-apache-libcloud"
-        fi
-    # Check for Tumbleweed
-    elif [ "${DISTRO_MAJOR_VERSION}" -ge 20210101 ]; then
-        __PACKAGES="python3-pip"
-    else
-        __PACKAGES="python-pip python-setuptools gcc"
-    fi
-
-    # shellcheck disable=SC2086
-    __zypper_install ${__PACKAGES} || return 1
-
-    # Let's trigger config_salt()
-    if [ "$_TEMP_CONFIG_DIR" = "null" ]; then
-        _TEMP_CONFIG_DIR="${_SALT_GIT_CHECKOUT_DIR}/conf/"
-        CONFIG_SALT_FUNC="config_salt"
-    fi
-
-    return 0
-}
-
-install_opensuse_stable() {
-    __PACKAGES=""
-
-    if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ];then
-        __PACKAGES="${__PACKAGES} salt-cloud"
-    fi
-    if [ "$_INSTALL_MASTER" -eq $BS_TRUE ]; then
-        __PACKAGES="${__PACKAGES} salt-master"
-    fi
-    if [ "$_INSTALL_MINION" -eq $BS_TRUE ]; then
-        __PACKAGES="${__PACKAGES} salt-minion"
-    fi
-    if [ "$_INSTALL_SYNDIC" -eq $BS_TRUE ]; then
-        __PACKAGES="${__PACKAGES} salt-syndic"
-    fi
-
-    # shellcheck disable=SC2086
-    __zypper_install $__PACKAGES || return 1
-
-    return 0
-}
-
-install_opensuse_git() {
-    if [ "${_POST_NEON_INSTALL}" -eq $BS_TRUE ]; then
-         __install_salt_from_repo_post_neon "${_PY_EXE}" || return 1
-        return 0
-    fi
-
-    python setup.py ${SETUP_PY_INSTALL_ARGS} install --prefix=/usr || return 1
-    return 0
-}
-
-install_opensuse_stable_post() {
-    for fname in api master minion syndic; do
-        # Skip salt-api since the service should be opt-in and not necessarily started on boot
-        [ $fname = "api" ] && continue
-
-        # Skip if not meant to be installed
-        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
-        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
-        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
-
-        if [ -f /bin/systemctl ] || [ -f /usr/bin/systemctl ]; then
-            systemctl is-enabled salt-$fname.service || (systemctl preset salt-$fname.service && systemctl enable salt-$fname.service)
-            sleep 1
-            systemctl daemon-reload
-            continue
-        fi
-
-        /sbin/chkconfig --add salt-$fname
-        /sbin/chkconfig salt-$fname on
-    done
-
-    return 0
-}
-
-install_opensuse_git_post() {
-    for fname in api master minion syndic; do
-        # Skip if not meant to be installed
-        [ $fname = "api" ] && \
-            ([ "$_INSTALL_MASTER" -eq $BS_FALSE ] || ! __check_command_exists "salt-${fname}") && continue
-        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
-        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
-        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
-
-        if command -v systemctl; then
-            use_usr_lib=$BS_FALSE
-
-            if [ "${DISTRO_MAJOR_VERSION}" -ge 15 ]; then
-                use_usr_lib=$BS_TRUE
-            fi
-
-            if [ "${DISTRO_MAJOR_VERSION}" -eq 12 ] && [ -d "/usr/lib/systemd/" ]; then
-                use_usr_lib=$BS_TRUE
-            fi
-
-            if [ "${use_usr_lib}" -eq $BS_TRUE ]; then
-                __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/salt-${fname}.service" "/usr/lib/systemd/system/salt-${fname}.service"
-            else
-                __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/salt-${fname}.service" "/lib/systemd/system/salt-${fname}.service"
-            fi
-
-            continue
-        fi
-
-        __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/rpm/salt-$fname" "/etc/init.d/salt-$fname"
-        chmod +x /etc/init.d/salt-$fname
-    done
-
-    install_opensuse_stable_post || return 1
-
-    return 0
-}
-
-install_opensuse_restart_daemons() {
-    [ $_START_DAEMONS -eq $BS_FALSE ] && return
-
-    for fname in api master minion syndic; do
-        # Skip salt-api since the service should be opt-in and not necessarily started on boot
-        [ $fname = "api" ] && continue
-
-        # Skip if not meant to be installed
-        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
-        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
-        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
-
-        if [ -f /bin/systemctl ]; then
-            systemctl stop salt-$fname > /dev/null 2>&1
-            systemctl start salt-$fname.service && continue
-            echodebug "Failed to start salt-$fname using systemd"
-            if [ "$_ECHO_DEBUG" -eq $BS_TRUE ]; then
-                systemctl status salt-$fname.service
-                journalctl -xe
-            fi
-        fi
-
-        service salt-$fname stop > /dev/null 2>&1
-        service salt-$fname start
-    done
-}
-
-install_opensuse_check_services() {
-    if [ ! -f /bin/systemctl ]; then
-        # Not running systemd!? Don't check!
-        return 0
-    fi
-
-    for fname in api master minion syndic; do
-        # Skip salt-api since the service should be opt-in and not necessarily started on boot
-        [ $fname = "api" ] && continue
-
-        # Skip if not meant to be installed
-        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
-        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
-        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
-
-        __check_services_systemd salt-$fname > /dev/null 2>&1 || __check_services_systemd salt-$fname.service > /dev/null 2>&1 || return 1
-    done
-
-    return 0
-}
-#
-#   End of openSUSE Install Functions.
-#
-#######################################################################################################################
-
-#######################################################################################################################
-#
-#   openSUSE Leap 15
-#
-
-install_opensuse_15_stable_deps() {
-    __opensuse_prep_install || return 1
-
-    # SUSE only packages Salt for Python 3 on Leap 15
-    # Py3 is the default bootstrap install for Leap 15
-    # However, git installs might specify "-x python2"
-    if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 2 ]; then
-        PY_PKG_VER=2
-    else
-        PY_PKG_VER=3
-    fi
-
-    # YAML module is used for generating custom master/minion configs
-    # requests is still used by many salt modules
-    __PACKAGES="python${PY_PKG_VER}-PyYAML python${PY_PKG_VER}-requests"
-
-    # shellcheck disable=SC2086
-    __zypper_install ${__PACKAGES} || return 1
-
-    if [ "${_EXTRA_PACKAGES}" != "" ]; then
-        echoinfo "Installing the following extra packages as requested: ${_EXTRA_PACKAGES}"
-        # shellcheck disable=SC2086
-        __zypper_install ${_EXTRA_PACKAGES} || return 1
-    fi
-
-    return 0
-}
-
-install_opensuse_15_git_deps() {
-    install_opensuse_15_stable_deps || return 1
-
-    if ! __check_command_exists git; then
-        __zypper_install git  || return 1
-    fi
-
-    __git_clone_and_checkout || return 1
-
-    if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 2 ]; then
-        PY_PKG_VER=2
-    else
-        PY_PKG_VER=3
-    fi
-
-    __PACKAGES="python${PY_PKG_VER}-xml"
-
-    if [ "${_POST_NEON_INSTALL}" -eq $BS_FALSE ]; then
-
-        # Py3 is the default bootstrap install for Leap 15
-        # However, git installs might specify "-x python2"
-        if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 2 ]; then
-            # This is required by some of the python2 packages below
-            __PACKAGES="${__PACKAGES} libpython2_7-1_0 python2-futures python-ipaddress"
-        fi
-
-        __PACKAGES="${__PACKAGES} libzmq5 python${PY_PKG_VER}-Jinja2 python${PY_PKG_VER}-msgpack"
-        __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-pycrypto python${PY_PKG_VER}-pyzmq"
-
-        if [ -f "${_SALT_GIT_CHECKOUT_DIR}/requirements/base.txt" ]; then
-            # We're on the master branch, install whichever tornado is on the requirements file
-            __REQUIRED_TORNADO="$(grep tornado "${_SALT_GIT_CHECKOUT_DIR}/requirements/base.txt")"
-            if [ "${__REQUIRED_TORNADO}" != "" ]; then
-                __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-tornado"
-            fi
-        fi
-
-        if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ]; then
-            __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-apache-libcloud"
-        fi
-    else
-        __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-devel python${PY_PKG_VER}-pip python${PY_PKG_VER}-setuptools gcc"
-    fi
-
-    # shellcheck disable=SC2086
-    __zypper_install ${__PACKAGES} || return 1
-
-    # Let's trigger config_salt()
-    if [ "$_TEMP_CONFIG_DIR" = "null" ]; then
-        _TEMP_CONFIG_DIR="${_SALT_GIT_CHECKOUT_DIR}/conf/"
-        CONFIG_SALT_FUNC="config_salt"
-    fi
-
-    return 0
-}
-
-install_opensuse_15_git() {
-
-    # Py3 is the default bootstrap install for Leap 15
-    if [ -n "$_PY_EXE" ]; then
-        _PYEXE=${_PY_EXE}
-    else
-        _PYEXE=python3
-    fi
-
-    if [ "${_POST_NEON_INSTALL}" -eq $BS_TRUE ]; then
-         __install_salt_from_repo_post_neon "${_PY_EXE}" || return 1
-        return 0
-    fi
-
-    ${_PYEXE} setup.py ${SETUP_PY_INSTALL_ARGS} install --prefix=/usr || return 1
-    return 0
-}
-
-#
-#   End of openSUSE Leap 15
-#
-#######################################################################################################################
-
-#######################################################################################################################
-#
-#   SUSE Enterprise 15
-#
-
-install_suse_15_stable_deps() {
-    __opensuse_prep_install || return 1
-    install_opensuse_15_stable_deps || return 1
-
-    return 0
-}
-
-install_suse_15_git_deps() {
-    install_suse_15_stable_deps || return 1
-
-    if ! __check_command_exists git; then
-        __zypper_install git-core  || return 1
-    fi
-
-    install_opensuse_15_git_deps || return 1
-
-    return 0
-}
-
-install_suse_15_stable() {
-    install_opensuse_stable || return 1
-    return 0
-}
-
-install_suse_15_git() {
-    install_opensuse_15_git || return 1
-    return 0
-}
-
-install_suse_15_stable_post() {
-    install_opensuse_stable_post || return 1
-    return 0
-}
-
-install_suse_15_git_post() {
-    install_opensuse_git_post || return 1
-    return 0
-}
-
-install_suse_15_restart_daemons() {
-    install_opensuse_restart_daemons || return 1
-    return 0
-}
-
-#
-#   End of SUSE Enterprise 15
-#
-#######################################################################################################################
-
-#######################################################################################################################
-#
-#   SUSE Enterprise 12
-#
-
-install_suse_12_stable_deps() {
-    __opensuse_prep_install || return 1
-
-    # YAML module is used for generating custom master/minion configs
-    # requests is still used by many salt modules
-    # Salt needs python-zypp installed in order to use the zypper module
-    __PACKAGES="python-PyYAML python-requests python-zypp"
-
-    if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ]; then
-        __PACKAGES="${__PACKAGES} python-apache-libcloud"
-    fi
-
-    # shellcheck disable=SC2086,SC2090
-    __zypper_install ${__PACKAGES} || return 1
-
-    # SLES 11 SP3 ships with both python-M2Crypto-0.22.* and python-m2crypto-0.21 and we will be asked which
-    # we want to install, even with --non-interactive.
-    # Let's try to install the higher version first and then the lower one in case of failure
-    __zypper_install 'python-M2Crypto>=0.22' || __zypper_install 'python-M2Crypto>=0.21' || return 1
-
-    if [ "${_EXTRA_PACKAGES}" != "" ]; then
-        echoinfo "Installing the following extra packages as requested: ${_EXTRA_PACKAGES}"
-        # shellcheck disable=SC2086
-        __zypper_install ${_EXTRA_PACKAGES} || return 1
-    fi
-
-    return 0
-}
-
-install_suse_12_git_deps() {
-    install_suse_12_stable_deps || return 1
-
-    if ! __check_command_exists git; then
-        __zypper_install git-core  || return 1
-    fi
-
-    __git_clone_and_checkout || return 1
-
-    __PACKAGES=""
-    # shellcheck disable=SC2089
-    __PACKAGES="${__PACKAGES} libzmq4 python-Jinja2 python-msgpack-python python-pycrypto"
-    __PACKAGES="${__PACKAGES} python-pyzmq python-xml"
-
-    if [ -f "${_SALT_GIT_CHECKOUT_DIR}/requirements/base.txt" ]; then
-        # We're on the master branch, install whichever tornado is on the requirements file
-        __REQUIRED_TORNADO="$(grep tornado "${_SALT_GIT_CHECKOUT_DIR}/requirements/base.txt")"
-        if [ "${__REQUIRED_TORNADO}" != "" ]; then
-            __PACKAGES="${__PACKAGES} python-tornado"
-        fi
-    fi
-
-    if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ]; then
-        __PACKAGES="${__PACKAGES} python-apache-libcloud"
-    fi
-
-    # shellcheck disable=SC2086
-    __zypper_install ${__PACKAGES} || return 1
-
-    # Let's trigger config_salt()
-    if [ "$_TEMP_CONFIG_DIR" = "null" ]; then
-        _TEMP_CONFIG_DIR="${_SALT_GIT_CHECKOUT_DIR}/conf/"
-        CONFIG_SALT_FUNC="config_salt"
-    fi
-
-    return 0
-}
-
-install_suse_12_stable() {
-    install_opensuse_stable || return 1
-    return 0
-}
-
-install_suse_12_git() {
-    install_opensuse_git || return 1
-    return 0
-}
-
-install_suse_12_stable_post() {
-    install_opensuse_stable_post || return 1
-    return 0
-}
-
-install_suse_12_git_post() {
-    install_opensuse_git_post || return 1
-    return 0
-}
-
-install_suse_12_restart_daemons() {
-    install_opensuse_restart_daemons || return 1
-    return 0
-}
-
-#
-#   End of SUSE Enterprise 12
-#
-#######################################################################################################################
-
-#######################################################################################################################
-#
-#   SUSE Enterprise 11
-#
-
-install_suse_11_stable_deps() {
-    __opensuse_prep_install || return 1
-
-    # YAML module is used for generating custom master/minion configs
-    __PACKAGES="python-PyYAML"
-
-    # shellcheck disable=SC2086,SC2090
-    __zypper_install ${__PACKAGES} || return 1
-
-    # SLES 11 SP3 ships with both python-M2Crypto-0.22.* and python-m2crypto-0.21 and we will be asked which
-    # we want to install, even with --non-interactive.
-    # Let's try to install the higher version first and then the lower one in case of failure
-    __zypper_install 'python-M2Crypto>=0.22' || __zypper_install 'python-M2Crypto>=0.21' || return 1
-
-    if [ "${_EXTRA_PACKAGES}" != "" ]; then
-        echoinfo "Installing the following extra packages as requested: ${_EXTRA_PACKAGES}"
-        # shellcheck disable=SC2086
-        __zypper_install ${_EXTRA_PACKAGES} || return 1
-    fi
-
-    return 0
-}
-
-install_suse_11_git_deps() {
-    install_suse_11_stable_deps || return 1
-
-    if ! __check_command_exists git; then
-        __zypper_install git  || return 1
-    fi
-
-    __git_clone_and_checkout || return 1
-
-    __PACKAGES=""
-    # shellcheck disable=SC2089
-    __PACKAGES="${__PACKAGES} libzmq4 python-Jinja2 python-msgpack-python python-pycrypto"
-    __PACKAGES="${__PACKAGES} python-pyzmq python-xml python-zypp"
-
-    if [ -f "${_SALT_GIT_CHECKOUT_DIR}/requirements/base.txt" ]; then
-        # We're on the master branch, install whichever tornado is on the requirements file
-        __REQUIRED_TORNADO="$(grep tornado "${_SALT_GIT_CHECKOUT_DIR}/requirements/base.txt")"
-        if [ "${__REQUIRED_TORNADO}" != "" ]; then
-            __PACKAGES="${__PACKAGES} python-tornado"
-        fi
-    fi
-
-    if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ]; then
-        __PACKAGES="${__PACKAGES} python-apache-libcloud"
-    fi
-
-    # shellcheck disable=SC2086
-    __zypper_install ${__PACKAGES} || return 1
-
-    # Let's trigger config_salt()
-    if [ "$_TEMP_CONFIG_DIR" = "null" ]; then
-        _TEMP_CONFIG_DIR="${_SALT_GIT_CHECKOUT_DIR}/conf/"
-        CONFIG_SALT_FUNC="config_salt"
-    fi
-
-    return 0
-}
-
-install_suse_11_stable() {
-    install_opensuse_stable || return 1
-    return 0
-}
-
-install_suse_11_git() {
-    install_opensuse_git || return 1
-    return 0
-}
-
-install_suse_11_stable_post() {
-    install_opensuse_stable_post || return 1
-    return 0
-}
-
-install_suse_11_git_post() {
-    install_opensuse_git_post || return 1
-    return 0
-}
-
-install_suse_11_restart_daemons() {
-    install_opensuse_restart_daemons || return 1
-    return 0
-}
-
-
-#
-#   End of SUSE Enterprise 11
-#
-#######################################################################################################################
-
-#######################################################################################################################
-#
-# SUSE Enterprise General Functions
-#
-
-# Used for both SLE 11 and 12
-install_suse_check_services() {
-    if [ ! -f /bin/systemctl ]; then
-        # Not running systemd!? Don't check!
-        return 0
-    fi
-
-    for fname in api master minion syndic; do
-        # Skip salt-api since the service should be opt-in and not necessarily started on boot
-        [ $fname = "api" ] && continue
-
-        # Skip if not meant to be installed
-        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
-        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
-        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
-
-        __check_services_systemd salt-$fname || return 1
-    done
-
-    return 0
-}
-
-#
-#   End of SUSE Enterprise General Functions
-#
-#######################################################################################################################
-
-#######################################################################################################################
-#
-#    Gentoo Install Functions.
-#
-__autounmask() {
-    # Unmask package(s) and accept changes
-    #
-    # Usually it's a good thing to have config files protected by portage, but
-    # in this case this would require to interrupt the bootstrapping script at
-    # this point, manually merge the changes using etc-update/dispatch-conf/
-    # cfg-update and then restart the bootstrapping script, so instead we allow
-    # at this point to modify certain config files directly
-    export CONFIG_PROTECT_MASK="${CONFIG_PROTECT_MASK:-}
-        /etc/portage/package.accept_keywords
-        /etc/portage/package.keywords
-        /etc/portage/package.license
-        /etc/portage/package.unmask
-        /etc/portage/package.use"
-    emerge --autounmask --autounmask-continue --autounmask-only --autounmask-write "${@}"; return $?
-}
-
-__emerge() {
-    EMERGE_FLAGS='-q'
-    if [ "$_ECHO_DEBUG" -eq $BS_TRUE ]; then
-        EMERGE_FLAGS='-v'
-    fi
-
-    # Do not re-emerge packages that are already installed
-    EMERGE_FLAGS="${EMERGE_FLAGS} --noreplace"
-
-    if [ "$_GENTOO_USE_BINHOST" -eq $BS_TRUE ]; then
-        EMERGE_FLAGS="${EMERGE_FLAGS} --getbinpkg"
-    fi
-
-    # shellcheck disable=SC2086
-    emerge ${EMERGE_FLAGS} "${@}"; return $?
-}
-
-__gentoo_pre_dep() {
-    if [ "$_ECHO_DEBUG" -eq $BS_TRUE ]; then
-        if __check_command_exists eix; then
-            eix-sync
-        else
-            emerge --sync
-        fi
-    else
-        if __check_command_exists eix; then
-            eix-sync -q
-        else
-            emerge --sync --quiet
-        fi
-    fi
-    if [ ! -d /etc/portage ]; then
-        mkdir /etc/portage
-    fi
-
-    # Enable Python 3.6 target for pre Neon Salt release
-    if echo "${STABLE_REV}" | grep -q "2019" || [ "${ITYPE}" = "git" ] && [ "${_POST_NEON_INSTALL}" -eq $BS_FALSE ]; then
-        EXTRA_PYTHON_TARGET=python3_6
-    fi
-
-    # Enable Python 3.7 target for Salt Neon using GIT
-    if [ "${ITYPE}" = "git" ] && [ "${GIT_REV}" = "v3000" ]; then
-        EXTRA_PYTHON_TARGET=python3_7
-    fi
-
-    if [ -n "${EXTRA_PYTHON_TARGET:-}" ]; then
-        if ! emerge --info | sed 's/.*\(PYTHON_TARGETS="[^"]*"\).*/\1/' | grep -q "${EXTRA_PYTHON_TARGET}" ; then
-            echo "PYTHON_TARGETS=\"\${PYTHON_TARGETS} ${EXTRA_PYTHON_TARGET}\"" >> /etc/portage/make.conf
-            emerge --deep --with-bdeps=y --newuse --quiet @world
-        fi
-    fi
-}
-
-__gentoo_post_dep() {
-    if [ "${_EXTRA_PACKAGES}" != "" ]; then
-        echoinfo "Installing the following extra packages as requested: ${_EXTRA_PACKAGES}"
-        # shellcheck disable=SC2086
-        __autounmask ${_EXTRA_PACKAGES} || return 1
-        # shellcheck disable=SC2086
-        __emerge ${_EXTRA_PACKAGES} || return 1
-    fi
-
-    return 0
-}
-
-install_gentoo_deps() {
-    __gentoo_pre_dep || return 1
-
-    # Make sure that the 'libcloud' use flag is set when Salt Cloud support is requested
-    if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ]; then
-        SALT_USE_FILE='/etc/portage/package.use'
-        if [ -d '/etc/portage/package.use' ]; then
-            SALT_USE_FILE='/etc/portage/package.use/salt'
-        fi
-
-        SALT_USE_FLAGS="$(grep -E '^[<>=~]*app-admin/salt.*' ${SALT_USE_FILE} 2>/dev/null)"
-        SALT_USE_FLAG_LIBCLOUD="$(echo "${SALT_USE_FLAGS}" | grep ' libcloud' 2>/dev/null)"
-
-        # Set the libcloud use flag, if it is not set yet
-        if [ -z "${SALT_USE_FLAGS}" ]; then
-            echo "app-admin/salt libcloud" >> ${SALT_USE_FILE}
-        elif [ -z "${SALT_USE_FLAG_LIBCLOUD}" ]; then
-            sed 's#^\([<>=~]*app-admin/salt[^ ]*\)\(.*\)#\1 libcloud\2#g' -i ${SALT_USE_FILE}
-        fi
-    fi
-
-    __gentoo_post_dep || return 1
-}
-
-install_gentoo_git_deps() {
-    __gentoo_pre_dep || return 1
-
-    # Install pip if it does not exist
-    if ! __check_command_exists pip ; then
-        GENTOO_GIT_PACKAGES="${GENTOO_GIT_PACKAGES:-} dev-python/pip"
-    fi
-
-    # Install GIT if it does not exist
-    if ! __check_command_exists git ; then
-        GENTOO_GIT_PACKAGES="${GENTOO_GIT_PACKAGES:-} dev-vcs/git"
-    fi
-
-    # Salt <3000 does not automatically install dependencies. It has to be done manually.
-    if [ "${_POST_NEON_INSTALL}" -eq $BS_FALSE ]; then
-        GENTOO_GIT_PACKAGES="${GENTOO_GIT_PACKAGES:-}
-            sys-apps/pciutils
-            dev-python/pyyaml
-            dev-python/pyzmq
-            dev-python/libnacl
-            dev-python/pycryptodome
-            dev-python/py
-            dev-python/requests
-            <dev-python/msgpack-1.0
-            dev-python/jinja
-            dev-python/pyasn1
-            dev-python/markupsafe
-            dev-python/cython
-            dev-python/six
-            dev-python/idna
-            dev-python/pycurl
-            <www-servers/tornado-5.0"
-    fi
-
-    # Install libcloud when Salt Cloud support was requested
-    if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ]; then
-        GENTOO_GIT_PACKAGES="${GENTOO_GIT_PACKAGES:-} dev-python/libcloud"
-    fi
-
-    if [ -n "${GENTOO_GIT_PACKAGES:-}" ]; then
-        # shellcheck disable=SC2086
-        __autounmask ${GENTOO_GIT_PACKAGES} || return 1
-        # shellcheck disable=SC2086
-        __emerge ${GENTOO_GIT_PACKAGES} || return 1
-    fi
-
-    __git_clone_and_checkout || return 1
-    __gentoo_post_dep || return 1
-}
-
-install_gentoo_stable() {
-    GENTOO_SALT_PACKAGE="app-admin/salt"
-
-    STABLE_REV_WITHOUT_PREFIX=$(echo "${STABLE_REV}" | sed 's#archive/##')
-    if [ "${STABLE_REV_WITHOUT_PREFIX}" != "latest" ]; then
-        GENTOO_SALT_PACKAGE="=app-admin/salt-${STABLE_REV_WITHOUT_PREFIX}*"
-    fi
-
-    # shellcheck disable=SC2086
-    __autounmask ${GENTOO_SALT_PACKAGE} || return 1
-    # shellcheck disable=SC2086
-    __emerge ${GENTOO_SALT_PACKAGE} || return 1
-}
-
-install_gentoo_git() {
-    _PYEXE=${_PY_EXE}
-
-    if [ "$_PY_EXE" = "python3" ] || [ -z "$_PY_EXE" ]; then
-        if [ "${GIT_REV}" = "v3000" ]; then
-            # Salt Neon does not support Python 3.8 and greater
-            _PYEXE=python3.7
-        elif [ "${_POST_NEON_INSTALL}" -eq $BS_FALSE ]; then
-            # Tornado 4.3 ebuild supports only Python 3.6, use Python 3.6 as the default Python 3 interpreter
-            _PYEXE=python3.6
-        else
-            _PYEXE=$(emerge --info | grep -oE 'PYTHON_SINGLE_TARGET="[^"]*"' | sed -e 's/"//g' -e 's/_/./g' | cut -d= -f2)
-        fi
-    fi
-
-    if [ "${_POST_NEON_INSTALL}" -eq $BS_TRUE ]; then
-        __install_salt_from_repo_post_neon "${_PYEXE}" || return 1
-        return 0
-    fi
-
-    if [ -f "${_SALT_GIT_CHECKOUT_DIR}/salt/syspaths.py" ]; then
-        "${_PYEXE}" setup.py --salt-config-dir="$_SALT_ETC_DIR" --salt-cache-dir="${_SALT_CACHE_DIR}" ${SETUP_PY_INSTALL_ARGS} install || return 1
-    else
-        "${_PYEXE}" setup.py ${SETUP_PY_INSTALL_ARGS} install || return 1
-    fi
-
-    return 0
-}
-
-install_gentoo_post() {
-    for fname in api master minion syndic; do
-        # Skip salt-api since the service should be opt-in and not necessarily started on boot
-        [ $fname = "api" ] && continue
-
-        # Skip if not meant to be installed
-        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
-        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
-        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
-
-        if __check_command_exists systemctl ; then
-            systemctl is-enabled salt-$fname.service > /dev/null 2>&1 || (
-                systemctl preset salt-$fname.service > /dev/null 2>&1 &&
-                systemctl enable salt-$fname.service > /dev/null 2>&1
-            )
-        else
-            # Salt minion cannot start in a docker container because the "net" service is not available
-            if [ $fname = "minion" ] && [ -f /.dockerenv ]; then
-                sed '/need net/d' -i /etc/init.d/salt-$fname
-            fi
-
-            rc-update add "salt-$fname" > /dev/null 2>&1 || return 1
-        fi
-    done
-}
-
-install_gentoo_git_post() {
-    for fname in api master minion syndic; do
-        # Skip if not meant to be installed
-        [ $fname = "api" ] && \
-            ([ "$_INSTALL_MASTER" -eq $BS_FALSE ] || ! __check_command_exists "salt-${fname}") && continue
-        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
-        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
-        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
-
-        if __check_command_exists systemctl ; then
-            __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/salt-${fname}.service" "/lib/systemd/system/salt-${fname}.service"
-
-            # Skip salt-api since the service should be opt-in and not necessarily started on boot
-            [ $fname = "api" ] && continue
-
-            systemctl is-enabled salt-$fname.service > /dev/null 2>&1 || (
-                systemctl preset salt-$fname.service > /dev/null 2>&1 &&
-                systemctl enable salt-$fname.service > /dev/null 2>&1
-            )
-        else
-            cat <<_eof > "/etc/init.d/salt-${fname}"
-#!/sbin/openrc-run
-# Copyright 1999-2015 Gentoo Foundation
-# Distributed under the terms of the GNU General Public License v2
-
-command="/usr/bin/salt-${fname}"
-command_args="\${SALT_OPTS}"
-command_background="1"
-pidfile="/var/run/salt-${fname}.pid"
-name="SALT ${fname} daemon"
-retry="20"
-
-depend() {
-        use net logger
-}
-_eof
-            chmod +x /etc/init.d/salt-$fname
-
-            cat <<_eof > "/etc/conf.d/salt-${fname}"
-# /etc/conf.d/salt-${fname}: config file for /etc/init.d/salt-master
-
-# see man pages for salt-${fname} or run 'salt-${fname} --help'
-# for valid cmdline options
-SALT_OPTS="--log-level=warning"
-_eof
-
-            # Skip salt-api since the service should be opt-in and not necessarily started on boot
-            [ $fname = "api" ] && continue
-
-            rc-update add "salt-$fname" > /dev/null 2>&1 || return 1
-        fi
-    done
-
-    return 0
-}
-
-install_gentoo_restart_daemons() {
-    [ $_START_DAEMONS -eq $BS_FALSE ] && return
-
-    # Ensure upstart configs / systemd units are loaded
-    if __check_command_exists systemctl ; then
-        systemctl daemon-reload
-    fi
-
-    for fname in api master minion syndic; do
-        # Skip salt-api since the service should be opt-in and not necessarily started on boot
-        [ $fname = "api" ] && continue
-
-        # Skip if not meant to be installed
-        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
-        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
-        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
-
-        if __check_command_exists systemctl ; then
-            systemctl stop salt-$fname > /dev/null 2>&1
-            systemctl start salt-$fname.service && continue
-            echodebug "Failed to start salt-$fname using systemd"
-            if [ "$_ECHO_DEBUG" -eq $BS_TRUE ]; then
-                systemctl status salt-$fname.service
-                journalctl -xe
-            fi
-        else
-            # Disable stdin to fix shell session hang on killing tee pipe
-            rc-service salt-$fname stop < /dev/null > /dev/null 2>&1
-            rc-service salt-$fname start < /dev/null || return 1
-        fi
-    done
-
-    return 0
-}
-
-install_gentoo_check_services() {
-    for fname in api master minion syndic; do
-        # Skip salt-api since the service should be opt-in and not necessarily started on boot
-        [ $fname = "api" ] && continue
-
-        # Skip if not meant to be installed
-        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
-        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
-        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
-
-        if __check_command_exists systemctl ; then
-            __check_services_systemd salt-$fname || return 1
-        else
-            __check_services_openrc salt-$fname || return 1
-        fi
-    done
-
-    return 0
-}
-#
-#   End of Gentoo Install Functions.
-#
-#######################################################################################################################
-
-#######################################################################################################################
-#
-#   VoidLinux Install Functions
-#
-install_voidlinux_stable_deps() {
-    if [ "$_UPGRADE_SYS" -eq $BS_TRUE ]; then
-        xbps-install -Suy || return 1
-    fi
-
-    if [ "${_EXTRA_PACKAGES}" != "" ]; then
-        echoinfo "Installing the following extra packages as requested: ${_EXTRA_PACKAGES}"
-        xbps-install -Suy "${_EXTRA_PACKAGES}" || return 1
-    fi
-
-    return 0
-}
-
-install_voidlinux_stable() {
-    xbps-install -Suy salt || return 1
-    return 0
-}
-
-install_voidlinux_stable_post() {
-    for fname in master minion syndic; do
-        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
-        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
-        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
-
-        ln -s /etc/sv/salt-$fname /var/service/.
-    done
-}
-
-install_voidlinux_restart_daemons() {
-    [ $_START_DAEMONS -eq $BS_FALSE ] && return
-
-    for fname in master minion syndic; do
-        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
-        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
-        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
-
-        sv restart salt-$fname
-    done
-}
-
-install_voidlinux_check_services() {
-    for fname in master minion syndic; do
-        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
-        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
-        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
-
-        [ -e /var/service/salt-$fname ] || return 1
-    done
-
-    return 0
-}
-
-daemons_running_voidlinux() {
-    [ "$_START_DAEMONS" -eq $BS_FALSE ] && return 0
-
-    FAILED_DAEMONS=0
-    for fname in master minion syndic; do
-        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
-        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
-        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
-
-        if [ "$(sv status salt-$fname | grep run)" = "" ]; then
-            echoerror "salt-$fname was not found running"
-            FAILED_DAEMONS=$((FAILED_DAEMONS + 1))
-        fi
-    done
-
-    return $FAILED_DAEMONS
-}
-#
-#   Ended VoidLinux Install Functions
-#
-#######################################################################################################################
-
-#######################################################################################################################
-#
-#   OS X / Darwin Install Functions
-#
-
-__macosx_get_packagesite() {
-    DARWIN_ARCH="x86_64"
-
-    __PY_VERSION_REPO="py2"
-    if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
-        __PY_VERSION_REPO="py3"
-    fi
-
-    PKG="salt-${STABLE_REV}-${__PY_VERSION_REPO}-${DARWIN_ARCH}.pkg"
-    SALTPKGCONFURL="https://repo.saltproject.io/osx/${PKG}"
-}
-
-# Using a separate conf step to head for idempotent install...
-__configure_macosx_pkg_details() {
-    __macosx_get_packagesite || return 1
-    return 0
-}
-
-install_macosx_stable_deps() {
-    __configure_macosx_pkg_details || return 1
-    return 0
-}
-
-install_macosx_git_deps() {
-    install_macosx_stable_deps || return 1
-
-    if ! echo "$PATH" | grep -q /usr/local/bin; then
-        echowarn "/usr/local/bin was not found in \$PATH. Adding it for the duration of the script execution."
-        export PATH=/usr/local/bin:$PATH
-    fi
-
-    __fetch_url "/tmp/get-pip.py" "https://bootstrap.pypa.io/get-pip.py" || return 1
-
-    if [ -n "$_PY_EXE" ]; then
-        _PYEXE=${_PY_EXE}
-    else
-        _PYEXE=python2.7
-    fi
-
-    # Install PIP
-    $_PYEXE /tmp/get-pip.py || return 1
-
-    __git_clone_and_checkout || return 1
-
-    if [ "${_POST_NEON_INSTALL}" -eq $BS_TRUE ]; then
-        return 0
-    fi
-
-    __PIP_REQUIREMENTS="dev_python27.txt"
-    if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
-        __PIP_REQUIREMENTS="dev_python34.txt"
-    fi
-
-    requirements_file="${_SALT_GIT_CHECKOUT_DIR}/requirements/${__PIP_REQUIREMENTS}"
-    pip install -U -r "${requirements_file}" --install-option="--prefix=/opt/salt" || return 1
-
-    return 0
-}
-
-install_macosx_stable() {
-    install_macosx_stable_deps || return 1
-
-    __fetch_url "/tmp/${PKG}" "${SALTPKGCONFURL}" || return 1
-
-    /usr/sbin/installer -pkg "/tmp/${PKG}" -target / || return 1
-
-    return 0
-}
-
-install_macosx_git() {
-
-    if [ -n "$_PY_EXE" ]; then
-        _PYEXE=${_PY_EXE}
-    else
-        _PYEXE=python2.7
-    fi
-
-    if [ "${_POST_NEON_INSTALL}" -eq $BS_TRUE ]; then
-         __install_salt_from_repo_post_neon "${_PY_EXE}" || return 1
-        return 0
-    fi
-
-    if [ -f "${_SALT_GIT_CHECKOUT_DIR}/salt/syspaths.py" ]; then
-        $_PYEXE setup.py --salt-config-dir="$_SALT_ETC_DIR" --salt-cache-dir="${_SALT_CACHE_DIR}" ${SETUP_PY_INSTALL_ARGS} install --prefix=/opt/salt || return 1
-    else
-        $_PYEXE setup.py ${SETUP_PY_INSTALL_ARGS} install --prefix=/opt/salt || return 1
-    fi
-
-    return 0
-}
-
-install_macosx_stable_post() {
-    if [ ! -f /etc/paths.d/salt ]; then
-        print "%s\n" "/opt/salt/bin" "/usr/local/sbin" > /etc/paths.d/salt
-    fi
-
-     # Don'f fail because of unknown variable on the next step
-    set +o nounset
-    # shellcheck disable=SC1091
-    . /etc/profile
-    # Revert nounset to it's previous state
-    set -o nounset
-
-    return 0
-}
-
-install_macosx_git_post() {
-    install_macosx_stable_post || return 1
-    return 0
-}
-
-install_macosx_restart_daemons() {
-    [ $_START_DAEMONS -eq $BS_FALSE ] && return
-
-    /bin/launchctl unload -w /Library/LaunchDaemons/com.saltstack.salt.minion.plist || return 1
-    /bin/launchctl load -w /Library/LaunchDaemons/com.saltstack.salt.minion.plist || return 1
-
-   return 0
-}
-#
-#   Ended OS X / Darwin Install Functions
-#
-#######################################################################################################################
-
-#######################################################################################################################
-#
-#   Default minion configuration function. Matches ANY distribution as long as
-#   the -c options is passed.
-#
-config_salt() {
-    # If the configuration directory is not passed, return
-    [ "$_TEMP_CONFIG_DIR" = "null" ] && return
-
-    if [ "$_CONFIG_ONLY" -eq $BS_TRUE ]; then
-        echowarn "Passing -C (config only) option implies -F (forced overwrite)."
-
-        if [ "$_FORCE_OVERWRITE" -ne $BS_TRUE ]; then
-            echowarn "Overwriting configs in 11 seconds!"
-            sleep 11
-            _FORCE_OVERWRITE=$BS_TRUE
-        fi
-    fi
-
-    # Let's create the necessary directories
-    [ -d "$_SALT_ETC_DIR" ] || mkdir "$_SALT_ETC_DIR" || return 1
-    [ -d "$_PKI_DIR" ] || (mkdir -p "$_PKI_DIR" && chmod 700 "$_PKI_DIR") || return 1
-
-    # If -C or -F was passed, we don't need a .bak file for the config we're updating
-    # This is used in the custom master/minion config file checks below
-    CREATE_BAK=$BS_TRUE
-    if [ "$_FORCE_OVERWRITE" -eq $BS_TRUE ]; then
-        CREATE_BAK=$BS_FALSE
-    fi
-
-    CONFIGURED_ANYTHING=$BS_FALSE
-
-    # Copy the grains file if found
-    if [ -f "$_TEMP_CONFIG_DIR/grains" ]; then
-        echodebug "Moving provided grains file from $_TEMP_CONFIG_DIR/grains to $_SALT_ETC_DIR/grains"
-        __movefile "$_TEMP_CONFIG_DIR/grains" "$_SALT_ETC_DIR/grains" || return 1
-        CONFIGURED_ANYTHING=$BS_TRUE
-    fi
-
-    if [ "$_INSTALL_MINION" -eq $BS_TRUE ] || \
-        [ "$_CONFIG_ONLY" -eq $BS_TRUE ] || [ "$_CUSTOM_MINION_CONFIG" != "null" ]; then
-        # Create the PKI directory
-        [ -d "$_PKI_DIR/minion" ] || (mkdir -p "$_PKI_DIR/minion" && chmod 700 "$_PKI_DIR/minion") || return 1
-
-        # Check to see if a custom minion config json dict was provided
-        if [ "$_CUSTOM_MINION_CONFIG" != "null" ]; then
-
-            # Check if a minion config file already exists and move to .bak if needed
-            if [ -f "$_SALT_ETC_DIR/minion" ] && [ "$CREATE_BAK" -eq "$BS_TRUE" ]; then
-                __movefile "$_SALT_ETC_DIR/minion" "$_SALT_ETC_DIR/minion.bak" $BS_TRUE || return 1
-                CONFIGURED_ANYTHING=$BS_TRUE
-            fi
-
-            # Overwrite/create the config file with the yaml string
-            __overwriteconfig "$_SALT_ETC_DIR/minion" "$_CUSTOM_MINION_CONFIG" || return 1
-            CONFIGURED_ANYTHING=$BS_TRUE
-
-        # Copy the minions configuration if found
-        # Explicitly check for custom master config to avoid moving the minion config
-        elif [ -f "$_TEMP_CONFIG_DIR/minion" ] && [ "$_CUSTOM_MASTER_CONFIG" = "null" ]; then
-            __movefile "$_TEMP_CONFIG_DIR/minion" "$_SALT_ETC_DIR" "$_FORCE_OVERWRITE" || return 1
-            CONFIGURED_ANYTHING=$BS_TRUE
-        fi
-
-        # Copy the minion's keys if found
-        if [ -f "$_TEMP_CONFIG_DIR/minion.pem" ]; then
-            __movefile "$_TEMP_CONFIG_DIR/minion.pem" "$_PKI_DIR/minion/" "$_FORCE_OVERWRITE" || return 1
-            chmod 400 "$_PKI_DIR/minion/minion.pem" || return 1
-            CONFIGURED_ANYTHING=$BS_TRUE
-        fi
-        if [ -f "$_TEMP_CONFIG_DIR/minion.pub" ]; then
-            __movefile "$_TEMP_CONFIG_DIR/minion.pub" "$_PKI_DIR/minion/" "$_FORCE_OVERWRITE" || return 1
-            chmod 664 "$_PKI_DIR/minion/minion.pub" || return 1
-            CONFIGURED_ANYTHING=$BS_TRUE
-        fi
-        # For multi-master-pki, copy the master_sign public key if found
-        if [ -f "$_TEMP_CONFIG_DIR/master_sign.pub" ]; then
-            __movefile "$_TEMP_CONFIG_DIR/master_sign.pub" "$_PKI_DIR/minion/" || return 1
-            chmod 664 "$_PKI_DIR/minion/master_sign.pub" || return 1
-            CONFIGURED_ANYTHING=$BS_TRUE
-        fi
-    fi
-
-    # only (re)place master or syndic configs if -M (install master) or -S
-    # (install syndic) specified
-    OVERWRITE_MASTER_CONFIGS=$BS_FALSE
-    if [ "$_INSTALL_MASTER" -eq $BS_TRUE ] && [ "$_CONFIG_ONLY" -eq $BS_TRUE ]; then
-        OVERWRITE_MASTER_CONFIGS=$BS_TRUE
-    fi
-    if [ "$_INSTALL_SYNDIC" -eq $BS_TRUE ] && [ "$_CONFIG_ONLY" -eq $BS_TRUE ]; then
-        OVERWRITE_MASTER_CONFIGS=$BS_TRUE
-    fi
-
-    if [ "$_INSTALL_MASTER" -eq $BS_TRUE ] || [ "$_INSTALL_SYNDIC" -eq $BS_TRUE ] || [ "$OVERWRITE_MASTER_CONFIGS" -eq $BS_TRUE ] || [ "$_CUSTOM_MASTER_CONFIG" != "null" ]; then
-        # Create the PKI directory
-        [ -d "$_PKI_DIR/master" ] || (mkdir -p "$_PKI_DIR/master" && chmod 700 "$_PKI_DIR/master") || return 1
-
-        # Check to see if a custom master config json dict was provided
-        if [ "$_CUSTOM_MASTER_CONFIG" != "null" ]; then
-
-            # Check if a master config file already exists and move to .bak if needed
-            if [ -f "$_SALT_ETC_DIR/master" ] && [ "$CREATE_BAK" -eq "$BS_TRUE" ]; then
-                __movefile "$_SALT_ETC_DIR/master" "$_SALT_ETC_DIR/master.bak" $BS_TRUE || return 1
-                CONFIGURED_ANYTHING=$BS_TRUE
-            fi
-
-            # Overwrite/create the config file with the yaml string
-            __overwriteconfig "$_SALT_ETC_DIR/master" "$_CUSTOM_MASTER_CONFIG" || return 1
-            CONFIGURED_ANYTHING=$BS_TRUE
-
-        # Copy the masters configuration if found
-        elif [ -f "$_TEMP_CONFIG_DIR/master" ]; then
-            __movefile "$_TEMP_CONFIG_DIR/master" "$_SALT_ETC_DIR" || return 1
-            CONFIGURED_ANYTHING=$BS_TRUE
-        fi
-
-        # Copy the master's keys if found
-        if [ -f "$_TEMP_CONFIG_DIR/master.pem" ]; then
-            __movefile "$_TEMP_CONFIG_DIR/master.pem" "$_PKI_DIR/master/" || return 1
-            chmod 400 "$_PKI_DIR/master/master.pem" || return 1
-            CONFIGURED_ANYTHING=$BS_TRUE
-        fi
-        if [ -f "$_TEMP_CONFIG_DIR/master.pub" ]; then
-            __movefile "$_TEMP_CONFIG_DIR/master.pub" "$_PKI_DIR/master/" || return 1
-            chmod 664 "$_PKI_DIR/master/master.pub" || return 1
-            CONFIGURED_ANYTHING=$BS_TRUE
-        fi
-    fi
-
-    if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ]; then
-        # Recursively copy salt-cloud configs with overwriting if necessary
-        for file in "$_TEMP_CONFIG_DIR"/cloud*; do
-            if [ -f "$file" ]; then
-                __copyfile "$file" "$_SALT_ETC_DIR" || return 1
-            elif [ -d "$file" ]; then
-                subdir="$(basename "$file")"
-                mkdir -p "$_SALT_ETC_DIR/$subdir"
-                for file_d in "$_TEMP_CONFIG_DIR/$subdir"/*; do
-                    if [ -f "$file_d" ]; then
-                        __copyfile "$file_d" "$_SALT_ETC_DIR/$subdir" || return 1
-                    fi
-                done
-            fi
-        done
-    fi
-
-    if [ "$_CONFIG_ONLY" -eq $BS_TRUE ] && [ $CONFIGURED_ANYTHING -eq $BS_FALSE ]; then
-        echowarn "No configuration or keys were copied over. No configuration was done!"
-        exit 0
-    fi
-
-    return 0
-}
-#
-#  Ended Default Configuration function
-#
-#######################################################################################################################
-
-#######################################################################################################################
-#
-#   Default salt master minion keys pre-seed function. Matches ANY distribution
-#   as long as the -k option is passed.
-#
-preseed_master() {
-    # Create the PKI directory
-
-    if [ "$(find "$_TEMP_KEYS_DIR" -maxdepth 1 -type f | wc -l)" -lt 1 ]; then
-        echoerror "No minion keys were uploaded. Unable to pre-seed master"
-        return 1
-    fi
-
-    SEED_DEST="$_PKI_DIR/master/minions"
-    [ -d "$SEED_DEST" ] || (mkdir -p "$SEED_DEST" && chmod 700 "$SEED_DEST") || return 1
-
-    for keyfile in "$_TEMP_KEYS_DIR"/*; do
-        keyfile=$(basename "${keyfile}")
-        src_keyfile="${_TEMP_KEYS_DIR}/${keyfile}"
-        dst_keyfile="${SEED_DEST}/${keyfile}"
-
-        # If it's not a file, skip to the next
-        [ ! -f "$src_keyfile" ] && continue
-
-        __movefile "$src_keyfile" "$dst_keyfile" || return 1
-        chmod 664 "$dst_keyfile" || return 1
-    done
-
-    return 0
-}
-#
-#  Ended Default Salt Master Pre-Seed minion keys function
-#
-#######################################################################################################################
-
-#######################################################################################################################
-#
-#   This function checks if all of the installed daemons are running or not.
-#
-daemons_running() {
-    [ "$_START_DAEMONS" -eq $BS_FALSE ] && return 0
-
-    FAILED_DAEMONS=0
-    for fname in api master minion syndic; do
-        # Skip salt-api since the service should be opt-in and not necessarily started on boot
-        [ $fname = "api" ] && continue
-
-        # Skip if not meant to be installed
-        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
-        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
-        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
-
-        # shellcheck disable=SC2009
-        if [ "${DISTRO_NAME}" = "SmartOS" ]; then
-            if [ "$(svcs -Ho STA salt-$fname)" != "ON" ]; then
-                echoerror "salt-$fname was not found running"
-                FAILED_DAEMONS=$((FAILED_DAEMONS + 1))
-            fi
-        elif [ "$(ps wwwaux | grep -v grep | grep salt-$fname)" = "" ]; then
-            echoerror "salt-$fname was not found running"
-            FAILED_DAEMONS=$((FAILED_DAEMONS + 1))
-        fi
-    done
-
-    return $FAILED_DAEMONS
-}
-#
-#  Ended daemons running check function
-#
-#######################################################################################################################
-
-#======================================================================================================================
-# LET'S PROCEED WITH OUR INSTALLATION
-#======================================================================================================================
-
-# Let's get the dependencies install function
-DEP_FUNC_NAMES=""
-if [ ${_NO_DEPS} -eq $BS_FALSE ]; then
-    DEP_FUNC_NAMES="install_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}_${ITYPE}_deps"
-    DEP_FUNC_NAMES="$DEP_FUNC_NAMES install_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}${PREFIXED_DISTRO_MINOR_VERSION}_${ITYPE}_deps"
-    DEP_FUNC_NAMES="$DEP_FUNC_NAMES install_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}_deps"
-    DEP_FUNC_NAMES="$DEP_FUNC_NAMES install_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}${PREFIXED_DISTRO_MINOR_VERSION}_deps"
-    DEP_FUNC_NAMES="$DEP_FUNC_NAMES install_${DISTRO_NAME_L}_${ITYPE}_deps"
-    DEP_FUNC_NAMES="$DEP_FUNC_NAMES install_${DISTRO_NAME_L}_deps"
-fi
-
-DEPS_INSTALL_FUNC="null"
-for FUNC_NAME in $(__strip_duplicates "$DEP_FUNC_NAMES"); do
-    if __function_defined "$FUNC_NAME"; then
-        DEPS_INSTALL_FUNC="$FUNC_NAME"
-        break
-    fi
-done
-echodebug "DEPS_INSTALL_FUNC=${DEPS_INSTALL_FUNC}"
-
-# Let's get the Salt config function
-CONFIG_FUNC_NAMES="config_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}_${ITYPE}_salt"
-CONFIG_FUNC_NAMES="$CONFIG_FUNC_NAMES config_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}${PREFIXED_DISTRO_MINOR_VERSION}_${ITYPE}_salt"
-CONFIG_FUNC_NAMES="$CONFIG_FUNC_NAMES config_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}_salt"
-CONFIG_FUNC_NAMES="$CONFIG_FUNC_NAMES config_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}${PREFIXED_DISTRO_MINOR_VERSION}_salt"
-CONFIG_FUNC_NAMES="$CONFIG_FUNC_NAMES config_${DISTRO_NAME_L}_${ITYPE}_salt"
-CONFIG_FUNC_NAMES="$CONFIG_FUNC_NAMES config_${DISTRO_NAME_L}_salt"
-CONFIG_FUNC_NAMES="$CONFIG_FUNC_NAMES config_salt"
-
-CONFIG_SALT_FUNC="null"
-for FUNC_NAME in $(__strip_duplicates "$CONFIG_FUNC_NAMES"); do
-    if __function_defined "$FUNC_NAME"; then
-        CONFIG_SALT_FUNC="$FUNC_NAME"
-        break
-    fi
-done
-echodebug "CONFIG_SALT_FUNC=${CONFIG_SALT_FUNC}"
-
-# Let's get the pre-seed master function
-PRESEED_FUNC_NAMES="preseed_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}_${ITYPE}_master"
-PRESEED_FUNC_NAMES="$PRESEED_FUNC_NAMES preseed_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}${PREFIXED_DISTRO_MINOR_VERSION}_${ITYPE}_master"
-PRESEED_FUNC_NAMES="$PRESEED_FUNC_NAMES preseed_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}_master"
-PRESEED_FUNC_NAMES="$PRESEED_FUNC_NAMES preseed_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}${PREFIXED_DISTRO_MINOR_VERSION}_master"
-PRESEED_FUNC_NAMES="$PRESEED_FUNC_NAMES preseed_${DISTRO_NAME_L}_${ITYPE}_master"
-PRESEED_FUNC_NAMES="$PRESEED_FUNC_NAMES preseed_${DISTRO_NAME_L}_master"
-PRESEED_FUNC_NAMES="$PRESEED_FUNC_NAMES preseed_master"
-
-PRESEED_MASTER_FUNC="null"
-for FUNC_NAME in $(__strip_duplicates "$PRESEED_FUNC_NAMES"); do
-    if __function_defined "$FUNC_NAME"; then
-        PRESEED_MASTER_FUNC="$FUNC_NAME"
-        break
-    fi
-done
-echodebug "PRESEED_MASTER_FUNC=${PRESEED_MASTER_FUNC}"
-
-# Let's get the install function
-INSTALL_FUNC_NAMES="install_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}_${ITYPE}"
-INSTALL_FUNC_NAMES="$INSTALL_FUNC_NAMES install_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}${PREFIXED_DISTRO_MINOR_VERSION}_${ITYPE}"
-INSTALL_FUNC_NAMES="$INSTALL_FUNC_NAMES install_${DISTRO_NAME_L}_${ITYPE}"
-
-INSTALL_FUNC="null"
-for FUNC_NAME in $(__strip_duplicates "$INSTALL_FUNC_NAMES"); do
-    if __function_defined "$FUNC_NAME"; then
-        INSTALL_FUNC="$FUNC_NAME"
-        break
-    fi
-done
-echodebug "INSTALL_FUNC=${INSTALL_FUNC}"
-
-# Let's get the post install function
-POST_FUNC_NAMES="install_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}_${ITYPE}_post"
-POST_FUNC_NAMES="$POST_FUNC_NAMES install_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}${PREFIXED_DISTRO_MINOR_VERSION}_${ITYPE}_post"
-POST_FUNC_NAMES="$POST_FUNC_NAMES install_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}_post"
-POST_FUNC_NAMES="$POST_FUNC_NAMES install_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}${PREFIXED_DISTRO_MINOR_VERSION}_post"
-POST_FUNC_NAMES="$POST_FUNC_NAMES install_${DISTRO_NAME_L}_${ITYPE}_post"
-POST_FUNC_NAMES="$POST_FUNC_NAMES install_${DISTRO_NAME_L}_post"
-
-POST_INSTALL_FUNC="null"
-for FUNC_NAME in $(__strip_duplicates "$POST_FUNC_NAMES"); do
-    if __function_defined "$FUNC_NAME"; then
-        POST_INSTALL_FUNC="$FUNC_NAME"
-        break
-    fi
-done
-echodebug "POST_INSTALL_FUNC=${POST_INSTALL_FUNC}"
-
-# Let's get the start daemons install function
-STARTDAEMONS_FUNC_NAMES="install_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}_${ITYPE}_restart_daemons"
-STARTDAEMONS_FUNC_NAMES="$STARTDAEMONS_FUNC_NAMES install_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}${PREFIXED_DISTRO_MINOR_VERSION}_${ITYPE}_restart_daemons"
-STARTDAEMONS_FUNC_NAMES="$STARTDAEMONS_FUNC_NAMES install_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}_restart_daemons"
-STARTDAEMONS_FUNC_NAMES="$STARTDAEMONS_FUNC_NAMES install_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}${PREFIXED_DISTRO_MINOR_VERSION}_restart_daemons"
-STARTDAEMONS_FUNC_NAMES="$STARTDAEMONS_FUNC_NAMES install_${DISTRO_NAME_L}_${ITYPE}_restart_daemons"
-STARTDAEMONS_FUNC_NAMES="$STARTDAEMONS_FUNC_NAMES install_${DISTRO_NAME_L}_restart_daemons"
-
-STARTDAEMONS_INSTALL_FUNC="null"
-for FUNC_NAME in $(__strip_duplicates "$STARTDAEMONS_FUNC_NAMES"); do
-    if __function_defined "$FUNC_NAME"; then
-        STARTDAEMONS_INSTALL_FUNC="$FUNC_NAME"
-        break
-    fi
-done
-echodebug "STARTDAEMONS_INSTALL_FUNC=${STARTDAEMONS_INSTALL_FUNC}"
-
-# Let's get the daemons running check function.
-DAEMONS_RUNNING_FUNC_NAMES="daemons_running_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}_${ITYPE}"
-DAEMONS_RUNNING_FUNC_NAMES="$DAEMONS_RUNNING_FUNC_NAMES daemons_running_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}${PREFIXED_DISTRO_MINOR_VERSION}_${ITYPE}"
-DAEMONS_RUNNING_FUNC_NAMES="$DAEMONS_RUNNING_FUNC_NAMES daemons_running_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}"
-DAEMONS_RUNNING_FUNC_NAMES="$DAEMONS_RUNNING_FUNC_NAMES daemons_running_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}${PREFIXED_DISTRO_MINOR_VERSION}"
-DAEMONS_RUNNING_FUNC_NAMES="$DAEMONS_RUNNING_FUNC_NAMES daemons_running_${DISTRO_NAME_L}_${ITYPE}"
-DAEMONS_RUNNING_FUNC_NAMES="$DAEMONS_RUNNING_FUNC_NAMES daemons_running_${DISTRO_NAME_L}"
-DAEMONS_RUNNING_FUNC_NAMES="$DAEMONS_RUNNING_FUNC_NAMES daemons_running"
-
-DAEMONS_RUNNING_FUNC="null"
-for FUNC_NAME in $(__strip_duplicates "$DAEMONS_RUNNING_FUNC_NAMES"); do
-    if __function_defined "$FUNC_NAME"; then
-        DAEMONS_RUNNING_FUNC="$FUNC_NAME"
-        break
-    fi
-done
-echodebug "DAEMONS_RUNNING_FUNC=${DAEMONS_RUNNING_FUNC}"
-
-# Let's get the check services function
-if [ ${_DISABLE_SALT_CHECKS} -eq $BS_FALSE ]; then
-    CHECK_SERVICES_FUNC_NAMES="install_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}_${ITYPE}_check_services"
-    CHECK_SERVICES_FUNC_NAMES="$CHECK_SERVICES_FUNC_NAMES install_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}${PREFIXED_DISTRO_MINOR_VERSION}_${ITYPE}_check_services"
-    CHECK_SERVICES_FUNC_NAMES="$CHECK_SERVICES_FUNC_NAMES install_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}_check_services"
-    CHECK_SERVICES_FUNC_NAMES="$CHECK_SERVICES_FUNC_NAMES install_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}${PREFIXED_DISTRO_MINOR_VERSION}_check_services"
-    CHECK_SERVICES_FUNC_NAMES="$CHECK_SERVICES_FUNC_NAMES install_${DISTRO_NAME_L}_${ITYPE}_check_services"
-    CHECK_SERVICES_FUNC_NAMES="$CHECK_SERVICES_FUNC_NAMES install_${DISTRO_NAME_L}_check_services"
-else
-    CHECK_SERVICES_FUNC_NAMES=""
-fi
-
-CHECK_SERVICES_FUNC="null"
-for FUNC_NAME in $(__strip_duplicates "$CHECK_SERVICES_FUNC_NAMES"); do
-    if __function_defined "$FUNC_NAME"; then
-        CHECK_SERVICES_FUNC="$FUNC_NAME"
-        break
-    fi
-done
-echodebug "CHECK_SERVICES_FUNC=${CHECK_SERVICES_FUNC}"
-
-if [ ${_NO_DEPS} -eq $BS_FALSE ] && [ "$DEPS_INSTALL_FUNC" = "null" ]; then
-    echoerror "No dependencies installation function found. Exiting..."
-    exit 1
-fi
-
-if [ "$INSTALL_FUNC" = "null" ]; then
-    echoerror "No installation function found. Exiting..."
-    exit 1
-fi
-
-
-# Install dependencies
-if [ ${_NO_DEPS} -eq $BS_FALSE ] && [ $_CONFIG_ONLY -eq $BS_FALSE ]; then
-    # Only execute function is not in config mode only
-    echoinfo "Running ${DEPS_INSTALL_FUNC}()"
-    if ! ${DEPS_INSTALL_FUNC}; then
-        echoerror "Failed to run ${DEPS_INSTALL_FUNC}()!!!"
-        exit 1
-    fi
-fi
-
-
-if [ "${ITYPE}" = "git" ] && [ ${_NO_DEPS} -eq ${BS_TRUE} ]; then
-    if ! __git_clone_and_checkout; then
-        echo "Failed to clone and checkout git repository."
-        exit 1
-    fi
-fi
-
-
-# Triggering config_salt() if overwriting master or minion configs
-if [ "$_CUSTOM_MASTER_CONFIG" != "null" ] || [ "$_CUSTOM_MINION_CONFIG" != "null" ]; then
-    if [ "$_TEMP_CONFIG_DIR" = "null" ]; then
-        _TEMP_CONFIG_DIR="$_SALT_ETC_DIR"
-    fi
-
-    if [ ${_NO_DEPS} -eq $BS_FALSE ] && [ $_CONFIG_ONLY -eq $BS_TRUE ]; then
-        # Execute function to satisfy dependencies for configuration step
-        echoinfo "Running ${DEPS_INSTALL_FUNC}()"
-        if ! ${DEPS_INSTALL_FUNC}; then
-            echoerror "Failed to run ${DEPS_INSTALL_FUNC}()!!!"
-            exit 1
-        fi
-    fi
-fi
-
-# Configure Salt
-if [ "$CONFIG_SALT_FUNC" != "null" ] && [ "$_TEMP_CONFIG_DIR" != "null" ]; then
-    echoinfo "Running ${CONFIG_SALT_FUNC}()"
-    if ! ${CONFIG_SALT_FUNC}; then
-        echoerror "Failed to run ${CONFIG_SALT_FUNC}()!!!"
-        exit 1
-    fi
-fi
-
-# Drop the master address if passed
-if [ "$_SALT_MASTER_ADDRESS" != "null" ]; then
-    [ ! -d "$_SALT_ETC_DIR/minion.d" ] && mkdir -p "$_SALT_ETC_DIR/minion.d"
-    cat <<_eof > "$_SALT_ETC_DIR/minion.d/99-master-address.conf"
-master: $_SALT_MASTER_ADDRESS
-_eof
-fi
-
-# Drop the minion id if passed
-if [ "$_SALT_MINION_ID" != "null" ]; then
-    [ ! -d "$_SALT_ETC_DIR" ] && mkdir -p "$_SALT_ETC_DIR"
-    echo "$_SALT_MINION_ID" > "$_SALT_ETC_DIR/minion_id"
-fi
-
-# Pre-seed master keys
-if [ "$PRESEED_MASTER_FUNC" != "null" ] && [ "$_TEMP_KEYS_DIR" != "null" ]; then
-    echoinfo "Running ${PRESEED_MASTER_FUNC}()"
-    if ! ${PRESEED_MASTER_FUNC}; then
-        echoerror "Failed to run ${PRESEED_MASTER_FUNC}()!!!"
-        exit 1
-    fi
-fi
-
-# Install Salt
-if [ "$_CONFIG_ONLY" -eq $BS_FALSE ]; then
-    # Only execute function is not in config mode only
-    echoinfo "Running ${INSTALL_FUNC}()"
-    if ! ${INSTALL_FUNC}; then
-        echoerror "Failed to run ${INSTALL_FUNC}()!!!"
-        exit 1
-    fi
-fi
-
-# Run any post install function. Only execute function if not in config mode only
-if [ "$POST_INSTALL_FUNC" != "null" ] && [ "$_CONFIG_ONLY" -eq $BS_FALSE ]; then
-    echoinfo "Running ${POST_INSTALL_FUNC}()"
-    if ! ${POST_INSTALL_FUNC}; then
-        echoerror "Failed to run ${POST_INSTALL_FUNC}()!!!"
-        exit 1
-    fi
-fi
-
-# Run any check services function, Only execute function if not in config mode only
-if [ "$CHECK_SERVICES_FUNC" != "null" ] && [ "$_CONFIG_ONLY" -eq $BS_FALSE ]; then
-    echoinfo "Running ${CHECK_SERVICES_FUNC}()"
-    if ! ${CHECK_SERVICES_FUNC}; then
-        echoerror "Failed to run ${CHECK_SERVICES_FUNC}()!!!"
-        exit 1
-    fi
-fi
-
-# Run any start daemons function
-if [ "$STARTDAEMONS_INSTALL_FUNC" != "null" ] && [ ${_START_DAEMONS} -eq $BS_TRUE ]; then
-    echoinfo "Running ${STARTDAEMONS_INSTALL_FUNC}()"
-    echodebug "Waiting ${_SLEEP} seconds for processes to settle before checking for them"
-    sleep ${_SLEEP}
-    if ! ${STARTDAEMONS_INSTALL_FUNC}; then
-        echoerror "Failed to run ${STARTDAEMONS_INSTALL_FUNC}()!!!"
-        exit 1
-    fi
-fi
-
-# Check if the installed daemons are running or not
-if [ "$DAEMONS_RUNNING_FUNC" != "null" ] && [ ${_START_DAEMONS} -eq $BS_TRUE ]; then
-    echoinfo "Running ${DAEMONS_RUNNING_FUNC}()"
-    echodebug "Waiting ${_SLEEP} seconds for processes to settle before checking for them"
-    sleep ${_SLEEP}  # Sleep a little bit to let daemons start
-    if ! ${DAEMONS_RUNNING_FUNC}; then
-        echoerror "Failed to run ${DAEMONS_RUNNING_FUNC}()!!!"
-
-        for fname in api master minion syndic; do
-            # Skip salt-api since the service should be opt-in and not necessarily started on boot
-            [ $fname = "api" ] && continue
-
-            # Skip if not meant to be installed
-            [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
-            [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
-            [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
-
-            if [ "$_ECHO_DEBUG" -eq $BS_FALSE ]; then
-                echoerror "salt-$fname was not found running. Pass '-D' to ${__ScriptName} when bootstrapping for additional debugging information..."
-                continue
-            fi
-
-            [ ! -f "$_SALT_ETC_DIR/$fname" ] && [ $fname != "syndic" ] && echodebug "$_SALT_ETC_DIR/$fname does not exist"
-
-            echodebug "Running salt-$fname by hand outputs: $(nohup salt-$fname -l debug)"
-
-            [ ! -f /var/log/salt/$fname ] && echodebug "/var/log/salt/$fname does not exist. Can't cat its contents!" && continue
-
-            echodebug "DAEMON LOGS for $fname:"
-            echodebug "$(cat /var/log/salt/$fname)"
-            echo
-        done
-
-        echodebug "Running Processes:"
-        echodebug "$(ps auxwww)"
-
-        exit 1
-    fi
-fi
-
-# Done!
-if [ "$_CONFIG_ONLY" -eq $BS_FALSE ]; then
-    echoinfo "Salt installed!"
-else
-    echoinfo "Salt configured!"
-fi
-
-exit 0
-
-# vim: set sts=4 ts=4 et
diff --git a/salt/salt/scripts/bs_dev b/salt/salt/scripts/bs_dev
deleted file mode 100644
index e69de29bb..000000000
diff --git a/salt/salt/scripts/bs_stable b/salt/salt/scripts/bs_stable
deleted file mode 100644
index e69de29bb..000000000

From 2d688331df675eee946c659a24f2e95c7959a59c Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Thu, 12 Oct 2023 15:32:04 -0400
Subject: [PATCH 190/417] handle version install for stable and onedir install
 type

---
 salt/salt/scripts/bootstrap-salt.sh | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/salt/salt/scripts/bootstrap-salt.sh b/salt/salt/scripts/bootstrap-salt.sh
index 464243c84..d422a5295 100644
--- a/salt/salt/scripts/bootstrap-salt.sh
+++ b/salt/salt/scripts/bootstrap-salt.sh
@@ -5130,7 +5130,11 @@ install_centos_onedir() {
     local master='salt-master'
     local minion='salt-minion'
     local syndic='salt-syndic'
-    local ver="$_ONEDIR_REV"
+    if [ "$ITYPE" = "stable" ]; then
+        local ver="$_ONEDIR_REV"
+    elif [ "$ITYPE" = "onedir" ]; then
+        local ver="${ONEDIR_REV##*/}"
+    fi
 
     if [ ! -z $ver ]; then
         cloud+="-$ver"

From 49a651fd72deb8e15affdd9a2ca6fc866641283a Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Thu, 12 Oct 2023 15:43:22 -0400
Subject: [PATCH 191/417] adjust var name

---
 setup/so-setup | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/setup/so-setup b/setup/so-setup
index 17c62af81..60296d2f3 100755
--- a/setup/so-setup
+++ b/setup/so-setup
@@ -91,7 +91,7 @@ fi
 # if packages are updated and the box isn't rebooted
 if [[ $is_debian ]]; then
 	update_packages
-	if [[ -f "/var/run/reboot-required" ]] && [ -z "$TESTING" ]; then
+	if [[ -f "/var/run/reboot-required" ]] && [ -z "$test_profile" ]; then
 		whiptail_debian_reboot_required
 		reboot
 	fi

From b6af59d9b09c8ea405275cdebedd9ec000ca042c Mon Sep 17 00:00:00 2001
From: Mike Reeves <mike.reeves@securityonionsolutions.com>
Date: Thu, 12 Oct 2023 15:47:53 -0400
Subject: [PATCH 192/417] 2.4.20 hotfix

---
 DOWNLOAD_AND_VERIFY_ISO.md                 |  22 ++++++++++-----------
 sigs/securityonion-2.4.20-20231012.iso.sig | Bin 0 -> 566 bytes
 2 files changed, 11 insertions(+), 11 deletions(-)
 create mode 100644 sigs/securityonion-2.4.20-20231012.iso.sig

diff --git a/DOWNLOAD_AND_VERIFY_ISO.md b/DOWNLOAD_AND_VERIFY_ISO.md
index dabfd285c..539dd9e8e 100644
--- a/DOWNLOAD_AND_VERIFY_ISO.md
+++ b/DOWNLOAD_AND_VERIFY_ISO.md
@@ -1,18 +1,18 @@
-### 2.4.20-20231006 ISO image released on 2023/10/06
+### 2.4.20-20231012 ISO image released on 2023/10/12
 
 
 
 ### Download and Verify
 
-2.4.20-20231006 ISO image:  
-https://download.securityonion.net/file/securityonion/securityonion-2.4.20-20231006.iso
+2.4.20-20231012 ISO image:  
+https://download.securityonion.net/file/securityonion/securityonion-2.4.20-20231012.iso
  
-MD5: 269F00308C53976BF0EAE788D1DB29DB  
-SHA1: 3F7C2324AE1271112F3B752BA4724AF36688FC27  
-SHA256: 542B8B3F4F75AD24DC78007F8FE0857E00DC4CC9F4870154DCB8D5D0C4144B65  
+MD5: 7D6ACA843068BA9432B3FF63BFD1EF0F  
+SHA1: BEF2B906066A1B04921DF0B80E7FDD4BC8ECED5C  
+SHA256: 5D511D50F11666C69AE12435A47B9A2D30CB3CC88F8D38DC58A5BC0ECADF1BF5  
 
 Signature for ISO image:  
-https://github.com/Security-Onion-Solutions/securityonion/raw/2.4/main/sigs/securityonion-2.4.20-20231006.iso.sig
+https://github.com/Security-Onion-Solutions/securityonion/raw/2.4/main/sigs/securityonion-2.4.20-20231012.iso.sig
 
 Signing key:  
 https://raw.githubusercontent.com/Security-Onion-Solutions/securityonion/2.4/main/KEYS  
@@ -26,22 +26,22 @@ wget https://raw.githubusercontent.com/Security-Onion-Solutions/securityonion/2.
 
 Download the signature file for the ISO:  
 ```
-wget https://github.com/Security-Onion-Solutions/securityonion/raw/2.4/main/sigs/securityonion-2.4.20-20231006.iso.sig
+wget https://github.com/Security-Onion-Solutions/securityonion/raw/2.4/main/sigs/securityonion-2.4.20-20231012.iso.sig
 ```
 
 Download the ISO image:  
 ```
-wget https://download.securityonion.net/file/securityonion/securityonion-2.4.20-20231006.iso
+wget https://download.securityonion.net/file/securityonion/securityonion-2.4.20-20231012.iso
 ```
 
 Verify the downloaded ISO image using the signature file:  
 ```
-gpg --verify securityonion-2.4.20-20231006.iso.sig securityonion-2.4.20-20231006.iso
+gpg --verify securityonion-2.4.20-20231012.iso.sig securityonion-2.4.20-20231012.iso
 ```
 
 The output should show "Good signature" and the Primary key fingerprint should match what's shown below:
 ```
-gpg: Signature made Tue 03 Oct 2023 11:40:51 AM EDT using RSA key ID FE507013
+gpg: Signature made Thu 12 Oct 2023 01:28:32 PM EDT using RSA key ID FE507013
 gpg: Good signature from "Security Onion Solutions, LLC <info@securityonionsolutions.com>"
 gpg: WARNING: This key is not certified with a trusted signature!
 gpg:          There is no indication that the signature belongs to the owner.
diff --git a/sigs/securityonion-2.4.20-20231012.iso.sig b/sigs/securityonion-2.4.20-20231012.iso.sig
new file mode 100644
index 0000000000000000000000000000000000000000..0704f7d1c253915a81383222f6238a3d5d62bdc7
GIT binary patch
literal 566
zcmV-60?GY}0y6{v0SEvc79j-41gSkXz6^6dp_W8^5Ma0dP;e6k0%a&HzyJyf5PT3|
zxBgIY6GqGr|4VA;xMiecEI{gjUYL2W<40M5tH3?g_4Y`oAyjO0cF^+WeS(7J&}s@-
zOx2!={+X!hztM{3;w{PuK!3{CmAU`PQ&$_PYvXIryf9AkQx<`1Y-n?Q4}$ReYDY3-
zkL(mYW^n4{y1r-VgH^6u3?|#b4##(wrBYf2cnH-$P@^;F?}mn^Shy*wY1|{RxVK>Y
zkDh@Zu0{#DHO9VL@<ZKm0>2m3obxlgVjXDj#1DCsA3)icR&Ga?8SBYq)3A$0cy(Dt
zXwe(*W;p4(pZ6@(4I~+#m-LG}X3CVX>(h6_RFs@|0})09rzd0EGN)L=x8R@##@1yl
zTVF>NT-rxZS))jQ$y*ZN_uG}Wzt-83>^~YInB}AP#c_kMtOq^Mq9Fz_pnaBK5n3=-
ze5mCQDqMFZ9Cq2l_+r2>`LTS*y7qBP8muMVWw<I?m&bmiVc_g5ZP?GI{p2m5VAM4z
zKn8pz1@YIm`2kojW>Bg4Dkfo?^4ljQ#&zf*JT^%6ZGk$fS=MJ$EP$=Oler)b>|nKO
z;BgH?2IF-C&M23kWqbMLwfY-*_FiIR`KjmETbDAfJ!Ut}G&{9jy!%A#P6!6+BY-Uc
zNhi2Du?+1A*_2tG5E20s%kvm{T=H}fPuvT@XbP{zF+!aqy+vby-3$^HTHk}9KXsA{
EFqyLvWB>pF

literal 0
HcmV?d00001


From 5250292e95361427f04b1df2a60505bb47874cc5 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Thu, 12 Oct 2023 15:54:22 -0400
Subject: [PATCH 193/417] only allow stable install type. require -r to be used

---
 salt/salt/scripts/bootstrap-salt.sh | 21 ++++++++++++++++-----
 1 file changed, 16 insertions(+), 5 deletions(-)

diff --git a/salt/salt/scripts/bootstrap-salt.sh b/salt/salt/scripts/bootstrap-salt.sh
index d422a5295..f56d6b17b 100644
--- a/salt/salt/scripts/bootstrap-salt.sh
+++ b/salt/salt/scripts/bootstrap-salt.sh
@@ -611,6 +611,19 @@ if [ "$(echo "$ITYPE" | grep -E '(stable|testing|git|onedir|onedir_rc|old-stable
     exit 1
 fi
 
+# Due to our modifications to install_centos_onedir it is easiest to just lock down to only allowing stable install
+if [ "$(echo "$ITYPE" | grep stable)" = "" ]; then
+    echoerror "This script has been modified to only support stable installation type..."
+    exit 1
+fi
+
+# We want to require this script to only run with -r. We dont want to accidentally try to install from another repo
+# and we dont want to put salt.repo in /etc/yum.repos.d/
+if [ "$_DISABLE_REPOS" -eq $BS_FALSE ];then
+    echoerror "This script has been modified to required the usage of the -r flag which disables this script from using its own repos..."
+    exit 1
+fi
+
 # If doing a git install, check what branch/tag/sha will be checked out
 if [ "$ITYPE" = "git" ]; then
     if [ "$#" -eq 0 ];then
@@ -5123,6 +5136,8 @@ install_centos_onedir_deps() {
     return 0
 }
 
+# This function has been modified to allow for specific versions to be installed
+# when not using the salt repo
 install_centos_onedir() {
     __PACKAGES=""
 
@@ -5130,11 +5145,7 @@ install_centos_onedir() {
     local master='salt-master'
     local minion='salt-minion'
     local syndic='salt-syndic'
-    if [ "$ITYPE" = "stable" ]; then
-        local ver="$_ONEDIR_REV"
-    elif [ "$ITYPE" = "onedir" ]; then
-        local ver="${ONEDIR_REV##*/}"
-    fi
+    local ver="$_ONEDIR_REV"
 
     if [ ! -z $ver ]; then
         cloud+="-$ver"

From d2002a51587d06439eb37e68adafe0937d0a4943 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Thu, 12 Oct 2023 15:58:33 -0400
Subject: [PATCH 194/417] add additional comments

---
 salt/salt/scripts/bootstrap-salt.sh | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/salt/salt/scripts/bootstrap-salt.sh b/salt/salt/scripts/bootstrap-salt.sh
index f56d6b17b..156489f4e 100644
--- a/salt/salt/scripts/bootstrap-salt.sh
+++ b/salt/salt/scripts/bootstrap-salt.sh
@@ -613,7 +613,7 @@ fi
 
 # Due to our modifications to install_centos_onedir it is easiest to just lock down to only allowing stable install
 if [ "$(echo "$ITYPE" | grep stable)" = "" ]; then
-    echoerror "This script has been modified to only support stable installation type..."
+    echoerror "This script has been modified to only support stable installation type. Installation type \"$ITYPE\" is not allowed..."
     exit 1
 fi
 

From 6c5f8e4e2d2a3ada0ee87f13b3304ab42fae8c7f Mon Sep 17 00:00:00 2001
From: Mike Reeves <mike.reeves@securityonionsolutions.com>
Date: Thu, 12 Oct 2023 16:19:59 -0400
Subject: [PATCH 195/417] Update HOTFIX

---
 HOTFIX | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/HOTFIX b/HOTFIX
index afd2e4c40..d3f5a12fa 100644
--- a/HOTFIX
+++ b/HOTFIX
@@ -1 +1 @@
-20231012
+

From 1641aa111b2f2f4b86e75bb28aec5c5332a23051 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Fri, 13 Oct 2023 13:46:31 -0400
Subject: [PATCH 196/417] add checkmine back

---
 salt/salt/engines/checkmine.py | 28 ++++++++++++++++++++++++++++
 salt/salt/files/engines.conf   |  6 ++++++
 salt/salt/master.sls           |  7 +++++--
 3 files changed, 39 insertions(+), 2 deletions(-)
 create mode 100644 salt/salt/engines/checkmine.py
 create mode 100644 salt/salt/files/engines.conf

diff --git a/salt/salt/engines/checkmine.py b/salt/salt/engines/checkmine.py
new file mode 100644
index 000000000..851d9a555
--- /dev/null
+++ b/salt/salt/engines/checkmine.py
@@ -0,0 +1,28 @@
+# -*- coding: utf-8 -*-
+
+import logging
+from time import sleep
+from os import remove
+
+log = logging.getLogger(__name__)
+
+def start(interval=30):
+  log.info("checkmine engine started")
+  minionid = __grains__['id']
+  while True:
+    try:
+      ca_crt = __salt__['saltutil.runner']('mine.get', tgt=minionid, fun='x509.get_pem_entries')[minionid]['/etc/pki/ca.crt']
+      log.info('Successfully queried Salt mine for the CA.')
+    except:
+      log.error('Could not pull CA from the Salt mine.')
+      log.info('Removing /var/cache/salt/master/minions/%s/mine.p to force Salt mine to be repopulated.' % minionid)
+      try:
+        remove('/var/cache/salt/master/minions/%s/mine.p' % minionid)
+        log.info('Removed /var/cache/salt/master/minions/%s/mine.p' % minionid)
+      except FileNotFoundError:
+        log.error('/var/cache/salt/master/minions/%s/mine.p does not exist' % minionid)
+
+      __salt__['mine.send'](name='x509.get_pem_entries', glob_path='/etc/pki/ca.crt')
+      log.warning('Salt mine repopulated with /etc/pki/ca.crt')
+
+    sleep(interval)
diff --git a/salt/salt/files/engines.conf b/salt/salt/files/engines.conf
new file mode 100644
index 000000000..878aa9c49
--- /dev/null
+++ b/salt/salt/files/engines.conf
@@ -0,0 +1,6 @@
+engines_dirs:
+  - /etc/salt/engines
+
+engines:
+  - checkmine:
+      interval: 30
diff --git a/salt/salt/master.sls b/salt/salt/master.sls
index b10a4df0f..1e0e6e303 100644
--- a/salt/salt/master.sls
+++ b/salt/salt/master.sls
@@ -18,14 +18,17 @@ salt_master_service:
     - enable: True
 
 checkmine_engine:
-  file.absent:
+  file.managed:
     - name: /etc/salt/engines/checkmine.py
+    - source: salt://salt/engines/checkmine.py
+    - makedirs: True
     - watch_in:
         - service: salt_minion_service
 
 engines_config:
-  file.absent:
+  file.managed:
     - name: /etc/salt/minion.d/engines.conf
+    - source: salt://salt/files/engines.conf
     - watch_in:
         - service: salt_minion_service
 

From 57684efddfe99b92b5297fd6435d8eed0e47cfa8 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Fri, 13 Oct 2023 16:23:16 -0400
Subject: [PATCH 197/417] checkmine looks for 1 byte file and verify mine ip is
 correct

---
 salt/salt/engines/checkmine.py | 58 +++++++++++++++++++++++-----------
 1 file changed, 39 insertions(+), 19 deletions(-)

diff --git a/salt/salt/engines/checkmine.py b/salt/salt/engines/checkmine.py
index 851d9a555..54f66a5ed 100644
--- a/salt/salt/engines/checkmine.py
+++ b/salt/salt/engines/checkmine.py
@@ -2,27 +2,47 @@
 
 import logging
 from time import sleep
-from os import remove
+import os
+import salt.client
 
 log = logging.getLogger(__name__)
+local = salt.client.LocalClient()
 
-def start(interval=30):
-  log.info("checkmine engine started")
-  minionid = __grains__['id']
-  while True:
-    try:
-      ca_crt = __salt__['saltutil.runner']('mine.get', tgt=minionid, fun='x509.get_pem_entries')[minionid]['/etc/pki/ca.crt']
-      log.info('Successfully queried Salt mine for the CA.')
-    except:
-      log.error('Could not pull CA from the Salt mine.')
-      log.info('Removing /var/cache/salt/master/minions/%s/mine.p to force Salt mine to be repopulated.' % minionid)
-      try:
-        remove('/var/cache/salt/master/minions/%s/mine.p' % minionid)
-        log.info('Removed /var/cache/salt/master/minions/%s/mine.p' % minionid)
-      except FileNotFoundError:
-        log.error('/var/cache/salt/master/minions/%s/mine.p does not exist' % minionid)
+def start(interval=10):
+    def mine_flush(minion):
+        log.warning('checkmine engine: flushing mine cache for %s' % minion)
+        local.cmd(minion, 'mine.flush')
 
-      __salt__['mine.send'](name='x509.get_pem_entries', glob_path='/etc/pki/ca.crt')
-      log.warning('Salt mine repopulated with /etc/pki/ca.crt')
+    def mine_update(minion):
+        log.warning('checkmine engine: updating mine cache for %s' % minion)
+        local.cmd(minion, 'mine.update')
 
-    sleep(interval)
+    log.info("checkmine engine: started")
+    cachedir = __opts__['cachedir']
+    while True:
+        log.debug('checkmine engine: checking which minions are alive')
+        manage_alived = __salt__['saltutil.runner']('manage.alived', show_ip=True)
+        log.debug('checkmine engine: alive minions: %s' % ' , '.join(manage_alived))
+
+        for minion in manage_alived:
+            mine_path = os.path.join(cachedir, 'minions', minion, 'mine.p')
+            mine_size = os.path.getsize(mine_path)
+            log.debug('checkmine engine: minion: %s mine_size: %i' % (minion, mine_size))
+            # For some reason the mine file can be corrupt and only be 1 byte in size
+            if mine_size == 1:
+                log.error('checkmine engine: found %s to be 1 byte' % mine_path)
+                mine_flush(minion)
+                mine_update(minion)
+            # Update the mine if the ip in the mine doesn't match returned from manage.alived
+            else:
+                network_ip_addrs = __salt__['saltutil.runner']('mine.get', tgt=minion, fun='network.ip_addrs')
+                mine_ip = network_ip_addrs[minion][0]
+                log.debug('checkmine engine: minion: %s mine_ip: %s' % (minion, mine_ip))
+                manage_alived_ip = manage_alived[minion]
+                log.debug('checkmine engine: minion: %s managed_alived_ip: %s' % (minion, manage_alived_ip))
+                if mine_ip != manage_alived_ip:
+                    log.error('checkmine engine: found minion %s has manage_alived_ip %s but a mine_ip of %s' % (minion, manage_alived_ip, mine_ip))
+                    mine_flush(minion)
+                    mine_update(minion)
+
+        sleep(interval)

From e23b3a62f30f2467389ba68578a7056943387f0c Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Fri, 13 Oct 2023 16:24:11 -0400
Subject: [PATCH 198/417] default interval of 60s

---
 salt/salt/engines/checkmine.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/salt/salt/engines/checkmine.py b/salt/salt/engines/checkmine.py
index 54f66a5ed..09e624ba3 100644
--- a/salt/salt/engines/checkmine.py
+++ b/salt/salt/engines/checkmine.py
@@ -8,7 +8,7 @@ import salt.client
 log = logging.getLogger(__name__)
 local = salt.client.LocalClient()
 
-def start(interval=10):
+def start(interval=60):
     def mine_flush(minion):
         log.warning('checkmine engine: flushing mine cache for %s' % minion)
         local.cmd(minion, 'mine.flush')

From 2773da5a125623cb10a4983394d5862bf8419427 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Mon, 16 Oct 2023 10:34:45 -0400
Subject: [PATCH 199/417] run the checkmine engine under master instead of
 minion

---
 salt/salt/engines/{ => master}/checkmine.py |  0
 salt/salt/files/engines.conf                |  2 +-
 salt/salt/master.sls                        | 19 +++++++++++++++----
 3 files changed, 16 insertions(+), 5 deletions(-)
 rename salt/salt/engines/{ => master}/checkmine.py (100%)

diff --git a/salt/salt/engines/checkmine.py b/salt/salt/engines/master/checkmine.py
similarity index 100%
rename from salt/salt/engines/checkmine.py
rename to salt/salt/engines/master/checkmine.py
diff --git a/salt/salt/files/engines.conf b/salt/salt/files/engines.conf
index 878aa9c49..7c43e99e1 100644
--- a/salt/salt/files/engines.conf
+++ b/salt/salt/files/engines.conf
@@ -3,4 +3,4 @@ engines_dirs:
 
 engines:
   - checkmine:
-      interval: 30
+      interval: 60
diff --git a/salt/salt/master.sls b/salt/salt/master.sls
index 1e0e6e303..182498678 100644
--- a/salt/salt/master.sls
+++ b/salt/salt/master.sls
@@ -20,17 +20,28 @@ salt_master_service:
 checkmine_engine:
   file.managed:
     - name: /etc/salt/engines/checkmine.py
-    - source: salt://salt/engines/checkmine.py
+    - source: salt://salt/engines/master/checkmine.py
     - makedirs: True
     - watch_in:
-        - service: salt_minion_service
+        - service: salt_master_service
 
-engines_config:
-  file.managed:
+# prior to 2.4.30 this engine ran on the manager with salt-minion
+# this has changed to running with the salt-master in 2.4.30
+remove_engines_config:
+  file.absent:
     - name: /etc/salt/minion.d/engines.conf
     - source: salt://salt/files/engines.conf
     - watch_in:
         - service: salt_minion_service
+    - order: last
+
+engines_config:
+  file.managed:
+    - name: /etc/salt/master.d/engines.conf
+    - source: salt://salt/files/engines.conf
+    - watch_in:
+        - service: salt_master_service
+    - order: last
 
 {% else %}
 

From 1a7761c531968ca62edea907b6c615dd39db5d7d Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Mon, 16 Oct 2023 11:00:31 -0400
Subject: [PATCH 200/417] display container dl status during soup

---
 salt/common/tools/sbin/so-image-common | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/salt/common/tools/sbin/so-image-common b/salt/common/tools/sbin/so-image-common
index 11d2d6366..82487d69b 100755
--- a/salt/common/tools/sbin/so-image-common
+++ b/salt/common/tools/sbin/so-image-common
@@ -137,7 +137,7 @@ update_docker_containers() {
   for i in "${TRUSTED_CONTAINERS[@]}"
   do
     if [ -z "$PROGRESS_CALLBACK" ]; then
-      echo "Downloading $i" >> "$LOG_FILE" 2>&1 
+      echo "Downloading $i" 2>&1 | tee "$LOG_FILE"
     else
       $PROGRESS_CALLBACK $i
     fi

From 07902d17cc4fea82cb24af20b16810a18fc6fdb8 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Mon, 16 Oct 2023 11:20:19 -0400
Subject: [PATCH 201/417] display container dl status during soup

---
 salt/common/tools/sbin/so-image-common | 2 +-
 salt/manager/tools/sbin/soup           | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/salt/common/tools/sbin/so-image-common b/salt/common/tools/sbin/so-image-common
index 82487d69b..7e510e3ad 100755
--- a/salt/common/tools/sbin/so-image-common
+++ b/salt/common/tools/sbin/so-image-common
@@ -137,7 +137,7 @@ update_docker_containers() {
   for i in "${TRUSTED_CONTAINERS[@]}"
   do
     if [ -z "$PROGRESS_CALLBACK" ]; then
-      echo "Downloading $i" 2>&1 | tee "$LOG_FILE"
+      echo "Downloading $i" >> "$LOG_FILE" 2>&1
     else
       $PROGRESS_CALLBACK $i
     fi
diff --git a/salt/manager/tools/sbin/soup b/salt/manager/tools/sbin/soup
index 998d27539..0e11276ea 100755
--- a/salt/manager/tools/sbin/soup
+++ b/salt/manager/tools/sbin/soup
@@ -829,7 +829,7 @@ main() {
     else
       update_registry
       set +e
-      update_docker_containers "soup" "" "" "$SOUP_LOG"
+      update_docker_containers 'soup' '' '' '/dev/stdout' 2>&1 | tee -a "$SOUP_LOG"
       set -e
     fi
 

From 84c39b5de7b40b59577d7f7e41de78ff0e51e294 Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Mon, 16 Oct 2023 13:01:13 -0400
Subject: [PATCH 202/417] only add heavynodes to remoteHostUrls

---
 salt/soc/defaults.map.jinja | 10 ++++++----
 1 file changed, 6 insertions(+), 4 deletions(-)

diff --git a/salt/soc/defaults.map.jinja b/salt/soc/defaults.map.jinja
index 2587051c5..83cb5637c 100644
--- a/salt/soc/defaults.map.jinja
+++ b/salt/soc/defaults.map.jinja
@@ -13,11 +13,13 @@
 {%   do SOCDEFAULTS.soc.config.server.modules[module].update({'hostUrl': application_url}) %}
 {% endfor %}
 
-{# add nodes from the logstash:nodes pillar to soc.server.modules.elastic.remoteHostUrls #}
+{# add all grid heavy nodes to soc.server.modules.elastic.remoteHostUrls #}
 {% for node_type, minions in salt['pillar.get']('logstash:nodes', {}).items() %}
-{%   for m in minions.keys() %}
-{%     do SOCDEFAULTS.soc.config.server.modules.elastic.remoteHostUrls.append('https://' ~ m ~ ':9200') %}
-{%   endfor %}
+{%   if node_type in ['heavynode'] %}
+{%     for m in minions.keys() %}
+{%       do SOCDEFAULTS.soc.config.server.modules.elastic.remoteHostUrls.append('https://' ~ m ~ ':9200') %}
+{%     endfor %}
+{%   endif %}
 {% endfor %}
 
 {% do SOCDEFAULTS.soc.config.server.modules.elastic.update({'username': GLOBALS.elasticsearch.auth.users.so_elastic_user.user, 'password': GLOBALS.elasticsearch.auth.users.so_elastic_user.pass}) %}

From a637b0e61b53976a15035f225197e01f12de50d4 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Mon, 16 Oct 2023 14:58:58 -0400
Subject: [PATCH 203/417] apply salt.master and minion state early in setup to
 prevent the services from restarting later in setup

---
 setup/so-setup | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/setup/so-setup b/setup/so-setup
index 60296d2f3..dc209b756 100755
--- a/setup/so-setup
+++ b/setup/so-setup
@@ -714,6 +714,7 @@ if ! [[ -f $install_opt_file ]]; then
 
 		logCmd "salt-call state.apply common.packages"
 		logCmd "salt-call state.apply common"
+		logCmd "salt-call state.apply salt.master"
 		logCmd "salt-call state.apply docker"
 		firewall_generate_templates
 		set_initial_firewall_policy
@@ -768,8 +769,6 @@ if ! [[ -f $install_opt_file ]]; then
 		checkin_at_boot
 		set_initial_firewall_access
 		logCmd "salt-call schedule.enable -linfo --local"
-		systemctl restart salt-master
-		systemctl restart salt-minion
 		verify_setup
 	else
 		touch /root/accept_changes

From c0030bc513001530c57ee880708ccf1a8805f8ea Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Mon, 16 Oct 2023 15:00:07 -0400
Subject: [PATCH 204/417] dont need to restart minion service when just adding
 sleep delay on service start

---
 salt/salt/minion.sls | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/salt/salt/minion.sls b/salt/salt/minion.sls
index 865bd367f..e0c422e7f 100644
--- a/salt/salt/minion.sls
+++ b/salt/salt/minion.sls
@@ -67,6 +67,9 @@ set_log_levels:
       - "log_level: info"
       - "log_level_logfile: info"
 
+# prior to 2.4.30 this managed file would restart the salt-minion service when updated
+# since this file is currently only adding a sleep timer on service start
+# it is not required to restart the service
 salt_minion_service_unit_file:
   file.managed:
     - name: {{ SYSTEMD_UNIT_FILE }}
@@ -89,6 +92,5 @@ salt_minion_service:
       - file: mine_functions
 {% if INSTALLEDSALTVERSION|string == SALTVERSION|string %}
       - file: set_log_levels
-      - file: salt_minion_service_unit_file
 {% endif %}
     - order: last

From 9f3a9dfab09b1b11b7cbbab152d952babc4e2c16 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Mon, 16 Oct 2023 15:00:53 -0400
Subject: [PATCH 205/417] reorder salt.master state

---
 salt/salt/master.sls | 32 +++++++++++++++-----------------
 1 file changed, 15 insertions(+), 17 deletions(-)

diff --git a/salt/salt/master.sls b/salt/salt/master.sls
index 182498678..0a65f3e01 100644
--- a/salt/salt/master.sls
+++ b/salt/salt/master.sls
@@ -12,19 +12,6 @@ hold_salt_master_package:
       - name: salt-master
 {% endif %}
 
-salt_master_service:
-  service.running:
-    - name: salt-master
-    - enable: True
-
-checkmine_engine:
-  file.managed:
-    - name: /etc/salt/engines/checkmine.py
-    - source: salt://salt/engines/master/checkmine.py
-    - makedirs: True
-    - watch_in:
-        - service: salt_master_service
-
 # prior to 2.4.30 this engine ran on the manager with salt-minion
 # this has changed to running with the salt-master in 2.4.30
 remove_engines_config:
@@ -32,15 +19,26 @@ remove_engines_config:
     - name: /etc/salt/minion.d/engines.conf
     - source: salt://salt/files/engines.conf
     - watch_in:
-        - service: salt_minion_service
-    - order: last
+      - service: salt_minion_service
+
+checkmine_engine:
+  file.managed:
+    - name: /etc/salt/engines/checkmine.py
+    - source: salt://salt/engines/master/checkmine.py
+    - makedirs: True
 
 engines_config:
   file.managed:
     - name: /etc/salt/master.d/engines.conf
     - source: salt://salt/files/engines.conf
-    - watch_in:
-        - service: salt_master_service
+
+salt_master_service:
+  service.running:
+    - name: salt-master
+    - enable: True
+    - watch:
+      - file: checkmine_engine
+      - file: engines_config
     - order: last
 
 {% else %}

From e5c936e8cf088fe46597333e6aaa921a99c6ccc9 Mon Sep 17 00:00:00 2001
From: reyesj2 <94730068+reyesj2@users.noreply.github.com>
Date: Mon, 16 Oct 2023 15:18:26 -0400
Subject: [PATCH 206/417] Replace external zeek-community-id with builtin
 community-id. Disable plugin-tds + plugin-profinet. Not updated for Zeek 6.x

Signed-off-by: reyesj2 <94730068+reyesj2@users.noreply.github.com>
---
 salt/zeek/defaults.yaml | 11 ++++++-----
 1 file changed, 6 insertions(+), 5 deletions(-)

diff --git a/salt/zeek/defaults.yaml b/salt/zeek/defaults.yaml
index 4435670a2..ad34e1a93 100644
--- a/salt/zeek/defaults.yaml
+++ b/salt/zeek/defaults.yaml
@@ -49,12 +49,13 @@ zeek:
         - frameworks/files/hash-all-files
         - frameworks/files/detect-MHR
         - policy/frameworks/notice/extend-email/hostnames
+        - policy/frameworks/notice/community-id
+        - policy/protocols/conn/community-id-logging
         - ja3
         - hassh
         - intel
         - cve-2020-0601
         - securityonion/bpfconf
-        - securityonion/communityid
         - securityonion/file-extraction
         - oui-logging
         - icsnpp-modbus
@@ -65,8 +66,8 @@ zeek:
         - icsnpp-opcua-binary
         - icsnpp-bsap
         - icsnpp-s7comm
-        - zeek-plugin-tds
-        - zeek-plugin-profinet
+        # - zeek-plugin-tds
+        # - zeek-plugin-profinet
         - zeek-spicy-wireguard
         - zeek-spicy-stun
       load-sigs:
@@ -75,7 +76,7 @@ zeek:
         - LogAscii::use_json = T;
         - CaptureLoss::watch_interval = 5 mins;
     networks:
-      HOME_NET: 
+      HOME_NET:
         - 192.168.0.0/16
         - 10.0.0.0/8
         - 172.16.0.0/12
@@ -120,4 +121,4 @@ zeek:
       - stats
       - stderr
       - stdout
- 
+

From ed693a7ae67e63e547e45a141fc570030749e7a5 Mon Sep 17 00:00:00 2001
From: reyesj2 <94730068+reyesj2@users.noreply.github.com>
Date: Mon, 16 Oct 2023 15:48:51 -0400
Subject: [PATCH 207/417] Remove commented lines in defaults.yaml to avoid UI
 issues.

Signed-off-by: reyesj2 <94730068+reyesj2@users.noreply.github.com>
---
 salt/zeek/defaults.yaml | 2 --
 1 file changed, 2 deletions(-)

diff --git a/salt/zeek/defaults.yaml b/salt/zeek/defaults.yaml
index ad34e1a93..ce22c1aef 100644
--- a/salt/zeek/defaults.yaml
+++ b/salt/zeek/defaults.yaml
@@ -66,8 +66,6 @@ zeek:
         - icsnpp-opcua-binary
         - icsnpp-bsap
         - icsnpp-s7comm
-        # - zeek-plugin-tds
-        # - zeek-plugin-profinet
         - zeek-spicy-wireguard
         - zeek-spicy-stun
       load-sigs:

From 53fcafea50fb4f7f07928d0252d465560cd86dad Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Mon, 16 Oct 2023 16:31:43 -0400
Subject: [PATCH 208/417] redo how we check if salt-master is ready and
 accessible

---
 salt/common/tools/sbin/so-common | 22 +++++++++++++++++-----
 salt/manager/tools/sbin/soup     | 12 +++---------
 setup/so-functions               |  5 -----
 setup/so-setup                   |  5 +++++
 4 files changed, 25 insertions(+), 19 deletions(-)

diff --git a/salt/common/tools/sbin/so-common b/salt/common/tools/sbin/so-common
index f754b34ef..c19d51a42 100755
--- a/salt/common/tools/sbin/so-common
+++ b/salt/common/tools/sbin/so-common
@@ -133,11 +133,23 @@ check_elastic_license() {
 }
 
 check_salt_master_status() {
-	local timeout=$1
-	echo "Checking if we can talk to the salt master"
-	salt-call state.show_top concurrent=true
-
-	return
+	local count=0
+    local attempts="${1:- 10}"
+	current_time="$(date '+%b %d %H:%M:%S')"
+	echo "Checking if we can access the salt master and that it is ready at: ${current_time}"
+    while ! salt-call state.show_top -l error concurrent=true 1> /dev/null; do
+        current_time="$(date '+%b %d %H:%M:%S')"
+        echo "Can't access salt master or it is not ready at: ${current_time}"
+        ((count+=1))
+        if [[ $count -eq $attempts ]]; then
+			# 10 attempts takes about 5.5 minutes
+            echo "Gave up trying to access salt-master"
+            return 1
+        fi
+    done
+	current_time="$(date '+%b %d %H:%M:%S')"
+	echo "Successfully accessed and salt master ready at: ${current_time}"
+    return 0
 }
 
 check_salt_minion_status() {
diff --git a/salt/manager/tools/sbin/soup b/salt/manager/tools/sbin/soup
index 0e11276ea..84501bad5 100755
--- a/salt/manager/tools/sbin/soup
+++ b/salt/manager/tools/sbin/soup
@@ -736,14 +736,8 @@ main() {
   echo ""
 
   set_os
-  if ! check_salt_master_status; then
-  	echo "Could not talk to salt master"
-    echo "Please run 'systemctl status salt-master' to ensure the salt-master service is running and check the log at /opt/so/log/salt/master."
-    echo "SOUP will now attempt to start the salt-master service and exit."
-    exit 1
-  fi
 
-  echo "This node can communicate with the salt-master."
+  check_salt_master_status 1 || fail  "Could not talk to salt master: Please run 'systemctl status salt-master' to ensure the salt-master service is running and check the log at /opt/so/log/salt/master."
 
   echo "Checking to see if this is a manager."
   echo ""
@@ -881,7 +875,7 @@ main() {
     # Testing that salt-master is up by checking that is it connected to itself
     set +e
     echo "Waiting on the Salt Master service to be ready."
-    salt-call state.show_top -l error queue=True || fail "salt-master could not be reached. Check $SOUP_LOG for details."
+    check_salt_master_status || fail  "Can't access salt master or it is not ready. Check $SOUP_LOG for details."
     set -e
 
     # update the salt-minion configs here and start the minion
@@ -917,7 +911,7 @@ main() {
 
     set +e
     echo "Waiting on the Salt Master service to be ready."
-    salt-call state.show_top -l error queue=True || fail "salt-master could not be reached. Check $SOUP_LOG for details."
+    check_salt_master_status || fail  "Can't access salt master or it is not ready. Check $SOUP_LOG for details."
     set -e
     
     echo "Running a highstate to complete the Security Onion upgrade on this manager. This could take several minutes."
diff --git a/setup/so-functions b/setup/so-functions
index 42a4b4ac6..68fd01550 100755
--- a/setup/so-functions
+++ b/setup/so-functions
@@ -2111,11 +2111,6 @@ saltify() {
 
 }
 
-# Run a salt command to generate the minion key
-salt_firstcheckin() {
-	salt-call state.show_top >> /dev/null 2>&1 # send output to /dev/null because we don't actually care about the ouput
-}
-
 salt_install_module_deps() {
     logCmd "salt-pip install docker --no-index --only-binary=:all: --find-links files/salt_module_deps/docker/"
     logCmd "salt-pip install pymysql --no-index --only-binary=:all: --find-links files/salt_module_deps/pymysql/"
diff --git a/setup/so-setup b/setup/so-setup
index dc209b756..4db24aa1a 100755
--- a/setup/so-setup
+++ b/setup/so-setup
@@ -715,6 +715,11 @@ if ! [[ -f $install_opt_file ]]; then
 		logCmd "salt-call state.apply common.packages"
 		logCmd "salt-call state.apply common"
 		logCmd "salt-call state.apply salt.master"
+
+		# wait here until we get a response from the salt-master since it may have just restarted
+		# exit setup after 5-6 minutes of trying
+		check_salt_master_status || fail  "Can't access salt master or it is not ready"
+
 		logCmd "salt-call state.apply docker"
 		firewall_generate_templates
 		set_initial_firewall_policy

From 01cb0fccb62fb1cfebdb4be88d9b2201a7cd8559 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Tue, 17 Oct 2023 10:01:11 -0400
Subject: [PATCH 209/417] mark suricata 7 log line as fp fo so-log-check

---
 salt/common/tools/sbin/so-log-check | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/salt/common/tools/sbin/so-log-check b/salt/common/tools/sbin/so-log-check
index c2d16fd86..395f60c7d 100755
--- a/salt/common/tools/sbin/so-log-check
+++ b/salt/common/tools/sbin/so-log-check
@@ -136,6 +136,7 @@ if [[ $EXCLUDE_FALSE_POSITIVE_ERRORS == 'Y' ]]; then
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|invalid query input"          # false positive (Invalid user input in hunt query)
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|example"                      # false positive (example test data)
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|status 200"                   # false positive (request successful, contained error string in content)
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|app_layer.error"              # false positive (suricata 7) in stats.log e.g. app_layer.error.imap.parser | Total | 0
 fi
 
 if [[ $EXCLUDE_KNOWN_ERRORS == 'Y' ]]; then
@@ -230,4 +231,4 @@ else
     echo -e "\nResult: One or more errors found"
 fi
 
-exit $RESULT
\ No newline at end of file
+exit $RESULT

From 7c2cdb78e92d58ab0ef5363a2098915394674d11 Mon Sep 17 00:00:00 2001
From: weslambert <wlambertts@gmail.com>
Date: Tue, 17 Oct 2023 10:31:53 -0400
Subject: [PATCH 210/417] Update VERSION

---
 VERSION | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/VERSION b/VERSION
index 8ea99f559..7d52aac7f 100644
--- a/VERSION
+++ b/VERSION
@@ -1 +1 @@
-2.4.30
+2.4.0-foxtrot

From 1db88bdbb59357988c4e335b5a908785b93a101c Mon Sep 17 00:00:00 2001
From: weslambert <wlambertts@gmail.com>
Date: Tue, 17 Oct 2023 10:33:39 -0400
Subject: [PATCH 211/417] Update so-common

---
 salt/common/tools/sbin/so-common | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/salt/common/tools/sbin/so-common b/salt/common/tools/sbin/so-common
index c19d51a42..a2f11555a 100755
--- a/salt/common/tools/sbin/so-common
+++ b/salt/common/tools/sbin/so-common
@@ -8,7 +8,7 @@
 # Elastic agent is not managed by salt. Because of this we must store this base information in a 
 # script that accompanies the soup system. Since so-common is one of those special soup files, 
 # and since this same logic is required during installation, it's included in this file.
-ELASTIC_AGENT_TARBALL_VERSION="8.8.2"
+ELASTIC_AGENT_TARBALL_VERSION="8.10.3"
 ELASTIC_AGENT_URL="https://repo.securityonion.net/file/so-repo/prod/2.4/elasticagent/elastic-agent_SO-$ELASTIC_AGENT_TARBALL_VERSION.tar.gz"
 ELASTIC_AGENT_MD5_URL="https://repo.securityonion.net/file/so-repo/prod/2.4/elasticagent/elastic-agent_SO-$ELASTIC_AGENT_TARBALL_VERSION.md5"
 ELASTIC_AGENT_FILE="/nsm/elastic-fleet/artifacts/elastic-agent_SO-$ELASTIC_AGENT_TARBALL_VERSION.tar.gz"

From 24329e3731564bacdeeb7806318c6d752602311e Mon Sep 17 00:00:00 2001
From: weslambert <wlambertts@gmail.com>
Date: Tue, 17 Oct 2023 10:34:38 -0400
Subject: [PATCH 212/417] Update config_saved_objects.ndjson

---
 salt/kibana/files/config_saved_objects.ndjson | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/salt/kibana/files/config_saved_objects.ndjson b/salt/kibana/files/config_saved_objects.ndjson
index a2dedd324..c3742af6d 100644
--- a/salt/kibana/files/config_saved_objects.ndjson
+++ b/salt/kibana/files/config_saved_objects.ndjson
@@ -1 +1 @@
-{"attributes": {"buildNum": 39457,"defaultIndex": "logs-*","defaultRoute": "/app/dashboards#/view/a8411b30-6d03-11ea-b301-3d6c35840645","discover:sampleSize": 100,"theme:darkMode": true,"timepicker:timeDefaults": "{\n  \"from\": \"now-24h\",\n  \"to\": \"now\"\n}"},"coreMigrationVersion": "8.8.2","id": "8.8.2","references": [],"type": "config","updated_at": "2021-10-10T10:10:10.105Z","version": "WzI5NzUsMl0="}
+{"attributes": {"buildNum": 39457,"defaultIndex": "logs-*","defaultRoute": "/app/dashboards#/view/a8411b30-6d03-11ea-b301-3d6c35840645","discover:sampleSize": 100,"theme:darkMode": true,"timepicker:timeDefaults": "{\n  \"from\": \"now-24h\",\n  \"to\": \"now\"\n}"},"coreMigrationVersion": "8.10.3","id": "8.10.3","references": [],"type": "config","updated_at": "2021-10-10T10:10:10.105Z","version": "WzI5NzUsMl0="}

From 8db6fef92dd6e998bafcacfdaad83b2948ce63a7 Mon Sep 17 00:00:00 2001
From: weslambert <wlambertts@gmail.com>
Date: Tue, 17 Oct 2023 10:35:36 -0400
Subject: [PATCH 213/417] Elastic 8.10.3

---
 salt/kibana/tools/sbin_jinja/so-kibana-config-load | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/salt/kibana/tools/sbin_jinja/so-kibana-config-load b/salt/kibana/tools/sbin_jinja/so-kibana-config-load
index 159a69e68..88195f32b 100644
--- a/salt/kibana/tools/sbin_jinja/so-kibana-config-load
+++ b/salt/kibana/tools/sbin_jinja/so-kibana-config-load
@@ -63,7 +63,7 @@ update() {
 
     IFS=$'\r\n' GLOBIGNORE='*' command eval  'LINES=($(cat $1))'
     for i in "${LINES[@]}"; do
-      RESPONSE=$(curl -K /opt/so/conf/elasticsearch/curl.config -X PUT "localhost:5601/api/saved_objects/config/8.8.2" -H 'kbn-xsrf: true' -H 'Content-Type: application/json' -d " $i ")
+      RESPONSE=$(curl -K /opt/so/conf/elasticsearch/curl.config -X PUT "localhost:5601/api/saved_objects/config/8.10.3" -H 'kbn-xsrf: true' -H 'Content-Type: application/json' -d " $i ")
       echo $RESPONSE; if [[ "$RESPONSE" != *"\"success\":true"* ]] && [[ "$RESPONSE" != *"updated_at"* ]] ; then RETURN_CODE=1;fi
     done
  

From adcb7840bd03b36553a6b8c1a28bf1912b731eeb Mon Sep 17 00:00:00 2001
From: weslambert <wlambertts@gmail.com>
Date: Tue, 17 Oct 2023 10:38:20 -0400
Subject: [PATCH 214/417] Elastic 8.10.3

---
 .../integrations/elastic-defend/elastic-defend-endpoints.json   | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/salt/elasticfleet/files/integrations/elastic-defend/elastic-defend-endpoints.json b/salt/elasticfleet/files/integrations/elastic-defend/elastic-defend-endpoints.json
index 8ab4f748e..de35f803b 100644
--- a/salt/elasticfleet/files/integrations/elastic-defend/elastic-defend-endpoints.json
+++ b/salt/elasticfleet/files/integrations/elastic-defend/elastic-defend-endpoints.json
@@ -5,7 +5,7 @@
 	"package": {
 		"name": "endpoint",
 		"title": "Elastic Defend",
-		"version": "8.8.0"
+		"version": "8.10.2"
 	},
 	"enabled": true,
 	"policy_id": "endpoints-initial",

From 99054a2687c5b20795d48f26d5a823db92aa03ba Mon Sep 17 00:00:00 2001
From: weslambert <wlambertts@gmail.com>
Date: Tue, 17 Oct 2023 10:47:26 -0400
Subject: [PATCH 215/417] Elastic 8.10.4

---
 salt/common/tools/sbin/so-common | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/salt/common/tools/sbin/so-common b/salt/common/tools/sbin/so-common
index a2f11555a..530cdeb60 100755
--- a/salt/common/tools/sbin/so-common
+++ b/salt/common/tools/sbin/so-common
@@ -8,7 +8,7 @@
 # Elastic agent is not managed by salt. Because of this we must store this base information in a 
 # script that accompanies the soup system. Since so-common is one of those special soup files, 
 # and since this same logic is required during installation, it's included in this file.
-ELASTIC_AGENT_TARBALL_VERSION="8.10.3"
+ELASTIC_AGENT_TARBALL_VERSION="8.10.4"
 ELASTIC_AGENT_URL="https://repo.securityonion.net/file/so-repo/prod/2.4/elasticagent/elastic-agent_SO-$ELASTIC_AGENT_TARBALL_VERSION.tar.gz"
 ELASTIC_AGENT_MD5_URL="https://repo.securityonion.net/file/so-repo/prod/2.4/elasticagent/elastic-agent_SO-$ELASTIC_AGENT_TARBALL_VERSION.md5"
 ELASTIC_AGENT_FILE="/nsm/elastic-fleet/artifacts/elastic-agent_SO-$ELASTIC_AGENT_TARBALL_VERSION.tar.gz"

From 8cab242ad079237d50e7aeb9165df794dc432b4d Mon Sep 17 00:00:00 2001
From: weslambert <wlambertts@gmail.com>
Date: Tue, 17 Oct 2023 10:48:31 -0400
Subject: [PATCH 216/417] Elastic 8.10.4

---
 salt/kibana/files/config_saved_objects.ndjson | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/salt/kibana/files/config_saved_objects.ndjson b/salt/kibana/files/config_saved_objects.ndjson
index c3742af6d..bc503debb 100644
--- a/salt/kibana/files/config_saved_objects.ndjson
+++ b/salt/kibana/files/config_saved_objects.ndjson
@@ -1 +1 @@
-{"attributes": {"buildNum": 39457,"defaultIndex": "logs-*","defaultRoute": "/app/dashboards#/view/a8411b30-6d03-11ea-b301-3d6c35840645","discover:sampleSize": 100,"theme:darkMode": true,"timepicker:timeDefaults": "{\n  \"from\": \"now-24h\",\n  \"to\": \"now\"\n}"},"coreMigrationVersion": "8.10.3","id": "8.10.3","references": [],"type": "config","updated_at": "2021-10-10T10:10:10.105Z","version": "WzI5NzUsMl0="}
+{"attributes": {"buildNum": 39457,"defaultIndex": "logs-*","defaultRoute": "/app/dashboards#/view/a8411b30-6d03-11ea-b301-3d6c35840645","discover:sampleSize": 100,"theme:darkMode": true,"timepicker:timeDefaults": "{\n  \"from\": \"now-24h\",\n  \"to\": \"now\"\n}"},"coreMigrationVersion": "8.10.4","id": "8.10.4","references": [],"type": "config","updated_at": "2021-10-10T10:10:10.105Z","version": "WzI5NzUsMl0="}

From be2a8295247fea2bdb56af616303fbecf36b9651 Mon Sep 17 00:00:00 2001
From: weslambert <wlambertts@gmail.com>
Date: Tue, 17 Oct 2023 10:49:03 -0400
Subject: [PATCH 217/417] Elastic 8.10.4

---
 salt/kibana/tools/sbin_jinja/so-kibana-config-load | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/salt/kibana/tools/sbin_jinja/so-kibana-config-load b/salt/kibana/tools/sbin_jinja/so-kibana-config-load
index 88195f32b..b9df9c6d4 100644
--- a/salt/kibana/tools/sbin_jinja/so-kibana-config-load
+++ b/salt/kibana/tools/sbin_jinja/so-kibana-config-load
@@ -63,7 +63,7 @@ update() {
 
     IFS=$'\r\n' GLOBIGNORE='*' command eval  'LINES=($(cat $1))'
     for i in "${LINES[@]}"; do
-      RESPONSE=$(curl -K /opt/so/conf/elasticsearch/curl.config -X PUT "localhost:5601/api/saved_objects/config/8.10.3" -H 'kbn-xsrf: true' -H 'Content-Type: application/json' -d " $i ")
+      RESPONSE=$(curl -K /opt/so/conf/elasticsearch/curl.config -X PUT "localhost:5601/api/saved_objects/config/8.10.4" -H 'kbn-xsrf: true' -H 'Content-Type: application/json' -d " $i ")
       echo $RESPONSE; if [[ "$RESPONSE" != *"\"success\":true"* ]] && [[ "$RESPONSE" != *"updated_at"* ]] ; then RETURN_CODE=1;fi
     done
  

From 06e731c762b7ec877729cadec5c3bc7aa855b5d9 Mon Sep 17 00:00:00 2001
From: weslambert <wlambertts@gmail.com>
Date: Tue, 17 Oct 2023 13:33:12 -0400
Subject: [PATCH 218/417] Update VERSION

---
 VERSION | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/VERSION b/VERSION
index 7d52aac7f..8ea99f559 100644
--- a/VERSION
+++ b/VERSION
@@ -1 +1 @@
-2.4.0-foxtrot
+2.4.30

From 496b97d706365da98f38ad4965a5bcb69be2db48 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Tue, 17 Oct 2023 15:42:42 -0400
Subject: [PATCH 219/417] handle the mine file not being present before
 checking the size

---
 salt/salt/engines/master/checkmine.py | 12 ++++++++++--
 1 file changed, 10 insertions(+), 2 deletions(-)

diff --git a/salt/salt/engines/master/checkmine.py b/salt/salt/engines/master/checkmine.py
index 09e624ba3..0cfb4032d 100644
--- a/salt/salt/engines/master/checkmine.py
+++ b/salt/salt/engines/master/checkmine.py
@@ -26,8 +26,16 @@ def start(interval=60):
 
         for minion in manage_alived:
             mine_path = os.path.join(cachedir, 'minions', minion, 'mine.p')
-            mine_size = os.path.getsize(mine_path)
-            log.debug('checkmine engine: minion: %s mine_size: %i' % (minion, mine_size))
+            # it is possible that a minion is alive, but there isn't a mine.p file
+            try:
+                mine_size = os.path.getsize(mine_path)
+                log.debug('checkmine engine: minion: %s mine_size: %i' % (minion, mine_size))
+            except FileNotFoundError:
+                log.warning('checkmine engine: minion: %s %s does not exist' % (minion, mine_path))
+                mine_flush(minion)
+                mine_update(minion)
+                continue
+
             # For some reason the mine file can be corrupt and only be 1 byte in size
             if mine_size == 1:
                 log.error('checkmine engine: found %s to be 1 byte' % mine_path)

From d9862aefcfa84f10dedf2b1e95eaf685b5f6f517 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Tue, 17 Oct 2023 17:09:52 -0400
Subject: [PATCH 220/417] handle mine.p not being present. only check if
 mine_ip exists, dont compare to alived ip

---
 salt/salt/engines/master/checkmine.py | 35 +++++++++++++++------------
 1 file changed, 19 insertions(+), 16 deletions(-)

diff --git a/salt/salt/engines/master/checkmine.py b/salt/salt/engines/master/checkmine.py
index 0cfb4032d..c62c1f058 100644
--- a/salt/salt/engines/master/checkmine.py
+++ b/salt/salt/engines/master/checkmine.py
@@ -9,6 +9,10 @@ log = logging.getLogger(__name__)
 local = salt.client.LocalClient()
 
 def start(interval=60):
+    def mine_delete(minion, func):
+      log.warning('checkmine engine: deleting mine function %s for %s' % (func, minion))
+      local.cmd(minion, 'mine.delete', [func])
+
     def mine_flush(minion):
         log.warning('checkmine engine: flushing mine cache for %s' % minion)
         local.cmd(minion, 'mine.flush')
@@ -21,36 +25,35 @@ def start(interval=60):
     cachedir = __opts__['cachedir']
     while True:
         log.debug('checkmine engine: checking which minions are alive')
-        manage_alived = __salt__['saltutil.runner']('manage.alived', show_ip=True)
+        manage_alived = __salt__['saltutil.runner']('manage.alived', show_ip=False)
         log.debug('checkmine engine: alive minions: %s' % ' , '.join(manage_alived))
 
         for minion in manage_alived:
             mine_path = os.path.join(cachedir, 'minions', minion, 'mine.p')
-            # it is possible that a minion is alive, but there isn't a mine.p file
+            # it is possible that a minion is alive, but hasn't created a mine file yet
             try:
                 mine_size = os.path.getsize(mine_path)
                 log.debug('checkmine engine: minion: %s mine_size: %i' % (minion, mine_size))
+                # For some reason the mine file can be corrupt and only be 1 byte in size
+                if mine_size == 1:
+                    log.error('checkmine engine: found %s to be 1 byte' % mine_path)
+                    mine_flush(minion)
+                    mine_update(minion)
+                    continue
             except FileNotFoundError:
                 log.warning('checkmine engine: minion: %s %s does not exist' % (minion, mine_path))
                 mine_flush(minion)
                 mine_update(minion)
                 continue
 
-            # For some reason the mine file can be corrupt and only be 1 byte in size
-            if mine_size == 1:
-                log.error('checkmine engine: found %s to be 1 byte' % mine_path)
-                mine_flush(minion)
-                mine_update(minion)
             # Update the mine if the ip in the mine doesn't match returned from manage.alived
-            else:
-                network_ip_addrs = __salt__['saltutil.runner']('mine.get', tgt=minion, fun='network.ip_addrs')
+            network_ip_addrs = __salt__['saltutil.runner']('mine.get', tgt=minion, fun='network.ip_addrs')
+            try:
                 mine_ip = network_ip_addrs[minion][0]
-                log.debug('checkmine engine: minion: %s mine_ip: %s' % (minion, mine_ip))
-                manage_alived_ip = manage_alived[minion]
-                log.debug('checkmine engine: minion: %s managed_alived_ip: %s' % (minion, manage_alived_ip))
-                if mine_ip != manage_alived_ip:
-                    log.error('checkmine engine: found minion %s has manage_alived_ip %s but a mine_ip of %s' % (minion, manage_alived_ip, mine_ip))
-                    mine_flush(minion)
-                    mine_update(minion)
+                log.debug('checkmine engine: found minion %s has mine_ip: %s' % (minion, mine_ip))
+            except IndexError:
+                log.error('checkmine engine: found minion %s does\'t have a mine_ip' % (minion))
+                mine_delete(minion, 'network.ip_addrs')
+                mine_update(minion)
 
         sleep(interval)

From 928fb23e963c425098a4105ef91c965a9a6f814e Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Tue, 17 Oct 2023 17:28:28 -0400
Subject: [PATCH 221/417] only add node to pillar if returned ip from mine

---
 pillar/logstash/nodes.sls  | 22 +++++++++++++---------
 pillar/node_data/ips.sls   | 24 ++++++++++++++----------
 pillar/nodegroups/init.sls |  0
 3 files changed, 27 insertions(+), 19 deletions(-)
 create mode 100644 pillar/nodegroups/init.sls

diff --git a/pillar/logstash/nodes.sls b/pillar/logstash/nodes.sls
index 8d3bdab65..228122b03 100644
--- a/pillar/logstash/nodes.sls
+++ b/pillar/logstash/nodes.sls
@@ -7,19 +7,23 @@
     tgt_type='compound') | dictsort()
 %}
 
-{%   set hostname = cached_grains[minionid]['host'] %}
-{%   set node_type = minionid.split('_')[1] %}
-{%   if node_type not in node_types.keys() %}
-{%     do node_types.update({node_type: {hostname: ip[0]}}) %}
-{%   else %}
-{%     if hostname not in node_types[node_type] %}
-{%       do node_types[node_type].update({hostname: ip[0]}) %}
+# only add a node to the pillar if it returned an ip from the mine
+{%   if ip[0] | length > 0%}
+{%     set hostname = cached_grains[minionid]['host'] %}
+{%     set node_type = minionid.split('_')[1] %}
+{%     if node_type not in node_types.keys() %}
+{%       do node_types.update({node_type: {hostname: ip[0]}}) %}
 {%     else %}
-{%       do node_types[node_type][hostname].update(ip[0]) %}
+{%       if hostname not in node_types[node_type] %}
+{%         do node_types[node_type].update({hostname: ip[0]}) %}
+{%       else %}
+{%         do node_types[node_type][hostname].update(ip[0]) %}
+{%       endif %}
 {%     endif %}
-{%   endif %}
+{%   fi %}
 {% endfor %}
 
+
 logstash:
   nodes:
 {% for node_type, values in node_types.items() %}
diff --git a/pillar/node_data/ips.sls b/pillar/node_data/ips.sls
index 59c598879..5801d36f1 100644
--- a/pillar/node_data/ips.sls
+++ b/pillar/node_data/ips.sls
@@ -4,18 +4,22 @@
 {%   set hostname = minionid.split('_')[0] %}
 {%   set node_type = minionid.split('_')[1] %}
 {%   set is_alive = False %}
-{%   if minionid in manage_alived.keys() %}
-{%     if ip[0] == manage_alived[minionid] %}
-{%       set is_alive = True %}
+
+# only add a node to the pillar if it returned an ip from the mine
+{%   if ip | length > 0%}
+{%     if minionid in manage_alived.keys() %}
+{%       if ip[0] == manage_alived[minionid] %}
+{%         set is_alive = True %}
+{%       endif %}
 {%     endif %}
-{%   endif %}
-{%   if node_type not in node_types.keys() %}
-{%     do node_types.update({node_type: {hostname: {'ip':ip[0], 'alive':is_alive }}}) %}
-{%   else %}
-{%     if hostname not in node_types[node_type] %}
-{%       do node_types[node_type].update({hostname: {'ip':ip[0], 'alive':is_alive}}) %}
+{%     if node_type not in node_types.keys() %}
+{%       do node_types.update({node_type: {hostname: {'ip':ip[0], 'alive':is_alive }}}) %}
 {%     else %}
-{%       do node_types[node_type][hostname].update({'ip':ip[0], 'alive':is_alive}) %}
+{%       if hostname not in node_types[node_type] %}
+{%         do node_types[node_type].update({hostname: {'ip':ip[0], 'alive':is_alive}}) %}
+{%       else %}
+{%         do node_types[node_type][hostname].update({'ip':ip[0], 'alive':is_alive}) %}
+{%       endif %}
 {%     endif %}
 {%   endif %}
 {% endfor %}
diff --git a/pillar/nodegroups/init.sls b/pillar/nodegroups/init.sls
new file mode 100644
index 000000000..e69de29bb

From fb9a0ab8b627e51dc1c6898bd7b3f4f05ca2b3aa Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Tue, 17 Oct 2023 17:33:53 -0400
Subject: [PATCH 222/417] endif not fi in jinja

---
 pillar/logstash/nodes.sls | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/pillar/logstash/nodes.sls b/pillar/logstash/nodes.sls
index 228122b03..a77978821 100644
--- a/pillar/logstash/nodes.sls
+++ b/pillar/logstash/nodes.sls
@@ -8,7 +8,7 @@
 %}
 
 # only add a node to the pillar if it returned an ip from the mine
-{%   if ip[0] | length > 0%}
+{%   if ip | length > 0%}
 {%     set hostname = cached_grains[minionid]['host'] %}
 {%     set node_type = minionid.split('_')[1] %}
 {%     if node_type not in node_types.keys() %}
@@ -20,7 +20,7 @@
 {%         do node_types[node_type][hostname].update(ip[0]) %}
 {%       endif %}
 {%     endif %}
-{%   fi %}
+{%   endif %}
 {% endfor %}
 
 

From 34717fb65e75281a17b1809df257d88a2f3e2bf5 Mon Sep 17 00:00:00 2001
From: weslambert <wlambertts@gmail.com>
Date: Wed, 18 Oct 2023 13:44:09 -0400
Subject: [PATCH 223/417] Add note regarding DNS resolver

---
 .../files/analyzers/malwarehashregistry/README.md      | 10 ++++++++++
 1 file changed, 10 insertions(+)
 create mode 100644 salt/sensoroni/files/analyzers/malwarehashregistry/README.md

diff --git a/salt/sensoroni/files/analyzers/malwarehashregistry/README.md b/salt/sensoroni/files/analyzers/malwarehashregistry/README.md
new file mode 100644
index 000000000..8c50a3124
--- /dev/null
+++ b/salt/sensoroni/files/analyzers/malwarehashregistry/README.md
@@ -0,0 +1,10 @@
+# Malware Hash Registry
+
+## Description
+Search Team Cymru's Malware Hash Registry for a file hash.
+
+## Configuration Requirements
+
+None.
+
+**NOTE:** If you try to run the Malware Hash Registry analyzer but it results in a "Name or service not known" error, then it may be a DNS issue. Folks using 8.8.4.4 or 8.8.8.8 as their DNS resolver have reported this issue. A potential workaround is to switch to another DNS resolver like 1.1.1.1.

From 138aa9c5542e3fb3a5a85c1a1edc66d6d13ae8ff Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Wed, 18 Oct 2023 13:54:14 -0400
Subject: [PATCH 224/417] update the mine with the ca when it is created or
 changed

---
 salt/ca/init.sls | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/salt/ca/init.sls b/salt/ca/init.sls
index 0eaf86b3c..2f15872ea 100644
--- a/salt/ca/init.sls
+++ b/salt/ca/init.sls
@@ -50,6 +50,12 @@ pki_public_ca_crt:
         attempts: 5
         interval: 30
 
+mine_update_ca_crt:
+  - module.run:
+    - mine.update: []
+    - onchanges:
+      - file: pki_public_ca_crt
+
 cakeyperms:
   file.managed:
     - replace: False

From 8e68f9631618c58f9f95d507ebfcc888b143532f Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Wed, 18 Oct 2023 13:59:15 -0400
Subject: [PATCH 225/417] check that the manager has a ca in the mine and that
 it is valid

---
 salt/salt/engines/master/checkmine.py | 19 +++++++++++++++++++
 1 file changed, 19 insertions(+)

diff --git a/salt/salt/engines/master/checkmine.py b/salt/salt/engines/master/checkmine.py
index c62c1f058..e72d2fbe6 100644
--- a/salt/salt/engines/master/checkmine.py
+++ b/salt/salt/engines/master/checkmine.py
@@ -46,6 +46,25 @@ def start(interval=60):
                 mine_update(minion)
                 continue
 
+            # if a manager check that the ca in in the mine and it is correct
+            if minion.split('_')[-1] in ['manager', 'managersearch', 'eval', 'standalone', 'import']:
+                x509 = __salt__['saltutil.runner']('mine.get', tgt=minion, fun='x509.get_pem_entries')
+                try:
+                    ca_crt = x509[minion]['/etc/pki/ca.crt']
+                    log.debug('checkmine engine: found minion %s has ca_crt: %s' % (minion, ca_crt))
+                    # since the cert is defined, make sure it is valid
+                    if not __salt__['x509.verify_private_key'](private_key='/etc/pki/ca.key', public_key='/etc/pki/ca.crt'):
+                        log.error('checkmine engine: found minion %s does\'t have a valid ca_crt in the mine' % (minion))
+                        log.error('checkmine engine: %s: ca_crt: %s' % (minion, ca_crt))
+                        mine_delete(minion, 'x509.get_pem_entries')
+                        mine_update(minion)
+                    else:
+                        log.debug('checkmine engine: found minion %s has a valid ca_crt in the mine' % (minion))
+                except IndexError:
+                    log.error('checkmine engine: found minion %s does\'t have a ca_crt in the mine' % (minion))
+                    mine_delete(minion, 'x509.get_pem_entries')
+                    mine_update(minion)
+
             # Update the mine if the ip in the mine doesn't match returned from manage.alived
             network_ip_addrs = __salt__['saltutil.runner']('mine.get', tgt=minion, fun='network.ip_addrs')
             try:

From c3cde61202507f177f30212fa75d8b258e6da671 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Wed, 18 Oct 2023 15:01:26 -0400
Subject: [PATCH 226/417] docker service watches and requires the intca

---
 salt/docker/init.sls | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/salt/docker/init.sls b/salt/docker/init.sls
index 45ba4a1ac..769c58af8 100644
--- a/salt/docker/init.sls
+++ b/salt/docker/init.sls
@@ -6,6 +6,9 @@
 {% from 'docker/docker.map.jinja' import DOCKER %}
 {% from 'vars/globals.map.jinja' import GLOBALS %}
 
+# include ssl since docker service requires the intca
+include:
+  - ssl
 
 dockergroup:
   group.present:
@@ -86,6 +89,11 @@ docker_running:
     - enable: True
     - watch:
       - file: docker_daemon
+      - x509: trusttheca
+    - require:
+      - file: docker_daemon
+      - x509: trusttheca
+
 
 # Reserve OS ports for Docker proxy in case boot settings are not already applied/present
 # 57314 = Strelka, 47760-47860 = Zeek

From 1999db0bb3d593df97a1267e398813d4fabcd084 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Wed, 18 Oct 2023 15:02:22 -0400
Subject: [PATCH 227/417] apply ca state early in setup

---
 setup/so-setup | 9 ++++++++-
 1 file changed, 8 insertions(+), 1 deletion(-)

diff --git a/setup/so-setup b/setup/so-setup
index 4db24aa1a..052111591 100755
--- a/setup/so-setup
+++ b/setup/so-setup
@@ -714,12 +714,19 @@ if ! [[ -f $install_opt_file ]]; then
 
 		logCmd "salt-call state.apply common.packages"
 		logCmd "salt-call state.apply common"
+		# apply the ca state to create the ca and put it in the mine early in the install
+		# this is done before the salt.master state puts the checkmine engine in place and starts
+		# checking for a valid ca in the mine for the manager
+		# the minion ip will already be in the mine from configure_minion function in so-functions
+		logCmd "salt-call state.apply ca"
+		# this will apply the salt.minion state first since salt.master includes salt.minion
 		logCmd "salt-call state.apply salt.master"
-
 		# wait here until we get a response from the salt-master since it may have just restarted
 		# exit setup after 5-6 minutes of trying
 		check_salt_master_status || fail  "Can't access salt master or it is not ready"
 
+		# this will also call the ssl state since docker requires the intca
+		# the salt-minion service will need to be up on the manager to sign requests
 		logCmd "salt-call state.apply docker"
 		firewall_generate_templates
 		set_initial_firewall_policy

From 2206cdb0fad836de3ab5a0c9197416e1ed9eb537 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Wed, 18 Oct 2023 15:04:39 -0400
Subject: [PATCH 228/417] change soup comment

---
 pillar/nodegroups/init.sls   | 0
 salt/manager/tools/sbin/soup | 2 +-
 2 files changed, 1 insertion(+), 1 deletion(-)
 delete mode 100644 pillar/nodegroups/init.sls

diff --git a/pillar/nodegroups/init.sls b/pillar/nodegroups/init.sls
deleted file mode 100644
index e69de29bb..000000000
diff --git a/salt/manager/tools/sbin/soup b/salt/manager/tools/sbin/soup
index 84501bad5..fc07765b8 100755
--- a/salt/manager/tools/sbin/soup
+++ b/salt/manager/tools/sbin/soup
@@ -578,7 +578,7 @@ update_centos_repo() {
 }
 
 update_salt_mine() {
-    echo "Populating the mine with network.ip_addrs pillar.host.mainint for each host."
+    echo "Populating the mine with mine_functions for each host."
     set +e
     salt \* mine.update -b 50
     set -e

From 1c1b23c328af4d2788992c1cfc87451d97e6648b Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Wed, 18 Oct 2023 15:07:18 -0400
Subject: [PATCH 229/417] fix mine update for ca

---
 salt/ca/init.sls | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/salt/ca/init.sls b/salt/ca/init.sls
index 2f15872ea..477b51a5d 100644
--- a/salt/ca/init.sls
+++ b/salt/ca/init.sls
@@ -51,7 +51,7 @@ pki_public_ca_crt:
         interval: 30
 
 mine_update_ca_crt:
-  - module.run:
+  module.run:
     - mine.update: []
     - onchanges:
       - file: pki_public_ca_crt

From e58c1e189c63bd6aab9d6b7a32b06ee6cc3a075b Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Wed, 18 Oct 2023 15:10:17 -0400
Subject: [PATCH 230/417] use x509 instead of file for onchanges

---
 salt/ca/init.sls | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/salt/ca/init.sls b/salt/ca/init.sls
index 477b51a5d..895e8235a 100644
--- a/salt/ca/init.sls
+++ b/salt/ca/init.sls
@@ -54,7 +54,7 @@ mine_update_ca_crt:
   module.run:
     - mine.update: []
     - onchanges:
-      - file: pki_public_ca_crt
+      - x509: pki_public_ca_crt
 
 cakeyperms:
   file.managed:

From dd28dc6ddd26a2ee913cf668dca4f8c9e0754007 Mon Sep 17 00:00:00 2001
From: reyesj2 <94730068+reyesj2@users.noreply.github.com>
Date: Wed, 18 Oct 2023 15:30:32 -0400
Subject: [PATCH 231/417] Add back plugin-tds/ plugin-profinet. Using patched
 versions for Zeek 6

Signed-off-by: reyesj2 <94730068+reyesj2@users.noreply.github.com>
---
 salt/zeek/defaults.yaml | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/salt/zeek/defaults.yaml b/salt/zeek/defaults.yaml
index ce22c1aef..2621c2738 100644
--- a/salt/zeek/defaults.yaml
+++ b/salt/zeek/defaults.yaml
@@ -66,6 +66,8 @@ zeek:
         - icsnpp-opcua-binary
         - icsnpp-bsap
         - icsnpp-s7comm
+        - zeek-plugin-tds
+        - zeek-plugin-profinet
         - zeek-spicy-wireguard
         - zeek-spicy-stun
       load-sigs:

From ac28e1b967f35c1f3f21424b14036367b627f48c Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Wed, 18 Oct 2023 15:53:12 -0400
Subject: [PATCH 232/417] verify crt and key differently in checkmine

---
 salt/salt/engines/master/checkmine.py | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/salt/salt/engines/master/checkmine.py b/salt/salt/engines/master/checkmine.py
index e72d2fbe6..1440fb72f 100644
--- a/salt/salt/engines/master/checkmine.py
+++ b/salt/salt/engines/master/checkmine.py
@@ -53,17 +53,20 @@ def start(interval=60):
                     ca_crt = x509[minion]['/etc/pki/ca.crt']
                     log.debug('checkmine engine: found minion %s has ca_crt: %s' % (minion, ca_crt))
                     # since the cert is defined, make sure it is valid
-                    if not __salt__['x509.verify_private_key'](private_key='/etc/pki/ca.key', public_key='/etc/pki/ca.crt'):
+                    import salt.modules.x509_v2 as x509_v2
+                    if not x509_v2.verify_private_key('/etc/pki/ca.key', '/etc/pki/ca.crt'):
                         log.error('checkmine engine: found minion %s does\'t have a valid ca_crt in the mine' % (minion))
                         log.error('checkmine engine: %s: ca_crt: %s' % (minion, ca_crt))
                         mine_delete(minion, 'x509.get_pem_entries')
                         mine_update(minion)
+                        continue
                     else:
                         log.debug('checkmine engine: found minion %s has a valid ca_crt in the mine' % (minion))
                 except IndexError:
                     log.error('checkmine engine: found minion %s does\'t have a ca_crt in the mine' % (minion))
                     mine_delete(minion, 'x509.get_pem_entries')
                     mine_update(minion)
+                    continue
 
             # Update the mine if the ip in the mine doesn't match returned from manage.alived
             network_ip_addrs = __salt__['saltutil.runner']('mine.get', tgt=minion, fun='network.ip_addrs')

From 767a54c91b2cc698bc03c54c269b1eda3c15640f Mon Sep 17 00:00:00 2001
From: Wes <wlambertts@gmail.com>
Date: Wed, 18 Oct 2023 20:07:26 +0000
Subject: [PATCH 233/417] Add pkgs

---
 salt/elasticfleet/defaults.yaml | 15 ++++++++++++++-
 1 file changed, 14 insertions(+), 1 deletion(-)

diff --git a/salt/elasticfleet/defaults.yaml b/salt/elasticfleet/defaults.yaml
index a4862623d..b5d1ee166 100644
--- a/salt/elasticfleet/defaults.yaml
+++ b/salt/elasticfleet/defaults.yaml
@@ -30,18 +30,25 @@ elasticfleet:
   packages:
     - apache
     - auditd
+    - auth0
     - aws
     - azure
     - barracuda
+    - carbonblack_cloud
+    - carbonblack_edr
     - cisco_asa
+    - cisco_duo
+    - cisco_meraki
+    - cisco_umbrella
     - cloudflare
     - crowdstrike
     - darktrace
     - elasticsearch
     - endpoint
     - f5_bigip
-    - fleet_server
     - fim
+    - fireeye
+    - fleet_server
     - fortinet
     - fortinet_fortigate
     - gcp
@@ -57,18 +64,24 @@ elasticfleet:
     - m365_defender
     - microsoft_defender_endpoint
     - microsoft_dhcp
+    - mimecast
     - netflow
     - o365
     - okta
     - osquery_manager
     - panw
     - pfsense
+    - pulse_connect_secure
     - redis
     - sentinel_one
+    - snyk
     - sonicwall_firewall
+    - sophos
+    - sophos_central
     - symantec_endpoint
     - system
     - tcp
+    - tenable_sc
     - ti_abusech
     - ti_misp
     - ti_otx

From a52ee063e597b010df8996fd02423598570fd9a6 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Wed, 18 Oct 2023 16:35:33 -0400
Subject: [PATCH 234/417] use generate_ca and generate_ssl functions and move
 them up

---
 setup/so-setup | 5 ++---
 1 file changed, 2 insertions(+), 3 deletions(-)

diff --git a/setup/so-setup b/setup/so-setup
index 052111591..73ef29f4b 100755
--- a/setup/so-setup
+++ b/setup/so-setup
@@ -718,7 +718,7 @@ if ! [[ -f $install_opt_file ]]; then
 		# this is done before the salt.master state puts the checkmine engine in place and starts
 		# checking for a valid ca in the mine for the manager
 		# the minion ip will already be in the mine from configure_minion function in so-functions
-		logCmd "salt-call state.apply ca"
+		generate_ca
 		# this will apply the salt.minion state first since salt.master includes salt.minion
 		logCmd "salt-call state.apply salt.master"
 		# wait here until we get a response from the salt-master since it may have just restarted
@@ -727,6 +727,7 @@ if ! [[ -f $install_opt_file ]]; then
 
 		# this will also call the ssl state since docker requires the intca
 		# the salt-minion service will need to be up on the manager to sign requests
+		generate_ssl
 		logCmd "salt-call state.apply docker"
 		firewall_generate_templates
 		set_initial_firewall_policy
@@ -734,8 +735,6 @@ if ! [[ -f $install_opt_file ]]; then
 		title "Downloading Elastic Agent Artifacts"
 		download_elastic_agent_artifacts
 
-		generate_ca
-		generate_ssl
 		logCmd "salt-call state.apply -l info firewall"
 
 		# create these so the registry state can add so-registry to /opt/so/conf/so-status/so-status.conf

From 28b7a24cc1b1aeedc404a61fc4fe66b50613c49c Mon Sep 17 00:00:00 2001
From: Wes <wlambertts@gmail.com>
Date: Wed, 18 Oct 2023 20:36:04 +0000
Subject: [PATCH 235/417] Add templates for integrations

---
 salt/elasticsearch/defaults.yaml | 522 +++++++++++++++++++++++++++++++
 1 file changed, 522 insertions(+)

diff --git a/salt/elasticsearch/defaults.yaml b/salt/elasticsearch/defaults.yaml
index 91e5191f6..1296ef549 100644
--- a/salt/elasticsearch/defaults.yaml
+++ b/salt/elasticsearch/defaults.yaml
@@ -4398,3 +4398,525 @@ elasticsearch:
             min_age: 365d
             actions:
               delete: {}
+    so-logs-auth0_x_logs:
+      index_sorting: False
+      index_template:
+        index_patterns:
+          - "logs-auth0.logs-*"
+        template:
+          settings:
+            index:
+              number_of_replicas: 0
+        composed_of:
+          - "logs-auth0.logs@package"
+          - "logs-auth0.logs@custom"
+          - "so-fleet_globals-1"
+          - "so-fleet_agent_id_verification-1"
+        priority: 501
+        data_stream:
+          hidden: false
+          allow_custom_routing: false
+    so-logs-carbonblack_edr_x_log:
+      index_sorting: False
+      index_template:
+        index_patterns:
+          - "logs-carbonblack_edr.log-*"
+        template:
+          settings:
+            index:
+              number_of_replicas: 0
+        composed_of:
+          - "logs-carbonblack_edr.log@package"
+          - "logs-carbonblack_edr.log@custom"
+          - "so-fleet_globals-1"
+          - "so-fleet_agent_id_verification-1"
+        priority: 501
+        data_stream:
+          hidden: false
+          allow_custom_routing: false
+    so-logs-cisco_duo_x_admin:
+      index_sorting: False
+      index_template:
+        index_patterns:
+          - "logs-cisco_duo.admin-*"
+        template:
+          settings:
+            index:
+              number_of_replicas: 0
+        composed_of:
+          - "logs-cisco_duo.admin@package"
+          - "logs-cisco_duo.admin@custom"
+          - "so-fleet_globals-1"
+          - "so-fleet_agent_id_verification-1"
+        priority: 501
+        data_stream:
+          hidden: false
+          allow_custom_routing: false
+    so-logs-cisco_duo_x_auth:
+      index_sorting: False
+      index_template:
+        index_patterns:
+          - "logs-cisco_duo.auth-*"
+        template:
+          settings:
+            index:
+              number_of_replicas: 0
+        composed_of:
+          - "logs-cisco_duo.auth@package"
+          - "logs-cisco_duo.auth@custom"
+          - "so-fleet_globals-1"
+          - "so-fleet_agent_id_verification-1"
+        priority: 501
+        data_stream:
+          hidden: false
+          allow_custom_routing: false
+    so-logs-cisco_duo_x_offline_enrollment:
+      index_sorting: False
+      index_template:
+        index_patterns:
+          - "logs-cisco_duo.offline_enrollment-*"
+        template:
+          settings:
+            index:
+              number_of_replicas: 0
+        composed_of:
+          - "logs-cisco_duo.offline_enrollment@package"
+          - "logs-cisco_duo.offline_enrollment@custom"
+          - "so-fleet_globals-1"
+          - "so-fleet_agent_id_verification-1"
+        priority: 501
+        data_stream:
+          hidden: false
+          allow_custom_routing: false
+    so-logs-cisco_duo_x_summary:
+      index_sorting: False
+      index_template:
+        index_patterns:
+          - "logs-cisco_duo.summary-*"
+        template:
+          settings:
+            index:
+              number_of_replicas: 0
+        composed_of:
+          - "logs-cisco_duo.summary@package"
+          - "logs-cisco_duo.summary@custom"
+          - "so-fleet_globals-1"
+          - "so-fleet_agent_id_verification-1"
+        priority: 501
+        data_stream:
+          hidden: false
+          allow_custom_routing: false
+    so-logs-cisco_duo_x_telephony:
+      index_sorting: False
+      index_template:
+        index_patterns:
+          - "logs-cisco_duo.telephony-*"
+        template:
+          settings:
+            index:
+              number_of_replicas: 0
+        composed_of:
+          - "logs-cisco_duo.telephony@package"
+          - "logs-cisco_duo.telephony@custom"
+          - "so-fleet_globals-1"
+          - "so-fleet_agent_id_verification-1"
+        priority: 501
+        data_stream:
+          hidden: false
+          allow_custom_routing: false
+    so-logs-cisco_meraki_x_events:
+      index_sorting: False
+      index_template:
+        index_patterns:
+          - "logs-cisco_meraki.events-*"
+        template:
+          settings:
+            index:
+              number_of_replicas: 0
+        composed_of:
+          - "logs-cisco_meraki.events@package"
+          - "logs-cisco_meraki.events@custom"
+          - "so-fleet_globals-1"
+          - "so-fleet_agent_id_verification-1"
+        priority: 501
+        data_stream:
+          hidden: false
+          allow_custom_routing: false
+    so-logs-cisco_meraki_x_log:
+      index_sorting: False
+      index_template:
+        index_patterns:
+          - "logs-cisco_meraki.log-*"
+        template:
+          settings:
+            index:
+              number_of_replicas: 0
+        composed_of:
+          - "logs-cisco_meraki.log@package"
+          - "logs-cisco_meraki.log@custom"
+          - "so-fleet_globals-1"
+          - "so-fleet_agent_id_verification-1"
+        priority: 501
+        data_stream:
+          hidden: false
+          allow_custom_routing: false
+    so-logs-cisco_umbrella_x_log:
+      index_sorting: False
+      index_template:
+        index_patterns:
+          - "logs-cisco_umbrella.log-*"
+        template:
+          settings:
+            index:
+              number_of_replicas: 0
+        composed_of:
+          - "logs-cisco_umbrella.log@package"
+          - "logs-cisco_umbrella.log@custom"
+          - "so-fleet_globals-1"
+          - "so-fleet_agent_id_verification-1"
+        priority: 501
+        data_stream:
+          hidden: false
+          allow_custom_routing: false
+    so-logs-fireeye_x_nx:
+      index_sorting: False
+      index_template:
+        index_patterns:
+          - "logs-fireeye.nx-*"
+        template:
+          settings:
+            index:
+              number_of_replicas: 0
+        composed_of:
+          - "logs-fireeye.nx@package"
+          - "logs-fireeye.nx@custom"
+          - "so-fleet_globals-1"
+          - "so-fleet_agent_id_verification-1"
+        priority: 501
+        data_stream:
+          hidden: false
+          allow_custom_routing: false
+    so-logs-mimecast_x_audit_events:
+      index_sorting: False
+      index_template:
+        index_patterns:
+          - "logs-mimecast.audit_events-*"
+        template:
+          settings:
+            index:
+              number_of_replicas: 0
+        composed_of:
+          - "logs-mimecast.audit_events@package"
+          - "logs-mimecast.audit_events@custom"
+          - "so-fleet_globals-1"
+          - "so-fleet_agent_id_verification-1"
+        priority: 501
+        data_stream:
+          hidden: false
+          allow_custom_routing: false
+    so-logs-mimecast_x_dlp_logs:
+      index_sorting: False
+      index_template:
+        index_patterns:
+          - "logs-mimecast.dlp_logs-*"
+        template:
+          settings:
+            index:
+              number_of_replicas: 0
+        composed_of:
+          - "logs-mimecast.dlp_logs@package"
+          - "logs-mimecast.dlp_logs@custom"
+          - "so-fleet_globals-1"
+          - "so-fleet_agent_id_verification-1"
+        priority: 501
+        data_stream:
+          hidden: false
+          allow_custom_routing: false
+    so-logs-mimecast_x_siem_logs:
+      index_sorting: False
+      index_template:
+        index_patterns:
+          - "logs-mimecast.siem_logs-*"
+        template:
+          settings:
+            index:
+              number_of_replicas: 0
+        composed_of:
+          - "logs-mimecast.siem_logs@package"
+          - "logs-mimecast.siem_logs@custom"
+          - "so-fleet_globals-1"
+          - "so-fleet_agent_id_verification-1"
+        priority: 501
+        data_stream:
+          hidden: false
+          allow_custom_routing: false
+    so-logs-mimecast_x_threat_intel_malware_customer:
+      index_sorting: False
+      index_template:
+        index_patterns:
+          - "logs-mimecast.threat_intel_malware_customer-*"
+        template:
+          settings:
+            index:
+              number_of_replicas: 0
+        composed_of:
+          - "logs-mimecast.threat_intel_malware_customer@package"
+          - "logs-mimecast.threat_intel_malware_customer@custom"
+          - "so-fleet_globals-1"
+          - "so-fleet_agent_id_verification-1"
+        priority: 501
+        data_stream:
+          hidden: false
+          allow_custom_routing: false
+    so-logs-mimecast_x_threat_intel_malware_grid:
+      index_sorting: False
+      index_template:
+        index_patterns:
+          - "logs-mimecast.threat_intel_malware_grid-*"
+        template:
+          settings:
+            index:
+              number_of_replicas: 0
+        composed_of:
+          - "logs-mimecast.threat_intel_malware_grid@package"
+          - "logs-mimecast.threat_intel_malware_grid@custom"
+          - "so-fleet_globals-1"
+          - "so-fleet_agent_id_verification-1"
+        priority: 501
+        data_stream:
+          hidden: false
+          allow_custom_routing: false
+    so-logs-mimecast_x_ttp_ap_logs:
+      index_sorting: False
+      index_template:
+        index_patterns:
+          - "logs-mimecast.ttp_ap_logs-*"
+        template:
+          settings:
+            index:
+              number_of_replicas: 0
+        composed_of:
+          - "logs-mimecast.ttp_ap_logs@package"
+          - "logs-mimecast.ttp_ap_logs@custom"
+          - "so-fleet_globals-1"
+          - "so-fleet_agent_id_verification-1"
+        priority: 501
+        data_stream:
+          hidden: false
+          allow_custom_routing: false
+    so-logs-mimecast_x_ttp_ip_logs:
+      index_sorting: False
+      index_template:
+        index_patterns:
+          - "logs-mimecast.ttp_ip_logs-*"
+        template:
+          settings:
+            index:
+              number_of_replicas: 0
+        composed_of:
+          - "logs-mimecast.ttp_ip_logs@package"
+          - "logs-mimecast.ttp_ip_logs@custom"
+          - "so-fleet_globals-1"
+          - "so-fleet_agent_id_verification-1"
+        priority: 501
+        data_stream:
+          hidden: false
+          allow_custom_routing: false
+    so-logs-mimecast_x_ttp_url_logs:
+      index_sorting: False
+      index_template:
+        index_patterns:
+          - "logs-mimecast.ttp_url_logs-*"
+        template:
+          settings:
+            index:
+              number_of_replicas: 0
+        composed_of:
+          - "logs-mimecast.ttp_url_logs@package"
+          - "logs-mimecast.ttp_url_logs@custom"
+          - "so-fleet_globals-1"
+          - "so-fleet_agent_id_verification-1"
+        priority: 501
+        data_stream:
+          hidden: false
+          allow_custom_routing: false
+    so-logs-pulse_connect_secure_x_log:
+      index_sorting: False
+      index_template:
+        index_patterns:
+          - "logs-pulse_connect_secure.log-*"
+        template:
+          settings:
+            index:
+              number_of_replicas: 0
+        composed_of:
+          - "logs-pulse_connect_secure.log@package"
+          - "logs-pulse_connect_secure.log@custom"
+          - "so-fleet_globals-1"
+          - "so-fleet_agent_id_verification-1"
+        priority: 501
+        data_stream:
+          hidden: false
+          allow_custom_routing: false
+    so-logs-snyk_x_audit:
+      index_sorting: False
+      index_template:
+        index_patterns:
+          - "logs-snyk.audit-*"
+        template:
+          settings:
+            index:
+              number_of_replicas: 0
+        composed_of:
+          - "logs-snyk.audit@package"
+          - "logs-snyk.audit@custom"
+          - "so-fleet_globals-1"
+          - "so-fleet_agent_id_verification-1"
+        priority: 501
+        data_stream:
+          hidden: false
+          allow_custom_routing: false
+    so-logs-snyk_x_vulnerabilities:
+      index_sorting: False
+      index_template:
+        index_patterns:
+          - "logs-snyk.vulnerabilities-*"
+        template:
+          settings:
+            index:
+              number_of_replicas: 0
+        composed_of:
+          - "logs-snyk.vulnerabilities@package"
+          - "logs-snyk.vulnerabilities@custom"
+          - "so-fleet_globals-1"
+          - "so-fleet_agent_id_verification-1"
+        priority: 501
+        data_stream:
+          hidden: false
+          allow_custom_routing: false
+    so-logs-sophos_x_utm:
+      index_sorting: False
+      index_template:
+        index_patterns:
+          - "logs-sophos.utm-*"
+        template:
+          settings:
+            index:
+              number_of_replicas: 0
+        composed_of:
+          - "logs-sophos.utm@package"
+          - "logs-sophos.utm@custom"
+          - "so-fleet_globals-1"
+          - "so-fleet_agent_id_verification-1"
+        priority: 501
+        data_stream:
+          hidden: false
+          allow_custom_routing: false
+    so-logs-sophos_x_xg:
+      index_sorting: False
+      index_template:
+        index_patterns:
+          - "logs-sophos.xg-*"
+        template:
+          settings:
+            index:
+              number_of_replicas: 0
+        composed_of:
+          - "logs-sophos.xg@package"
+          - "logs-sophos.xg@custom"
+          - "so-fleet_globals-1"
+          - "so-fleet_agent_id_verification-1"
+        priority: 501
+        data_stream:
+          hidden: false
+          allow_custom_routing: false
+    so-logs-sophos_central_x_alert:
+      index_sorting: False
+      index_template:
+        index_patterns:
+          - "logs-sophos_central.alert-*"
+        template:
+          settings:
+            index:
+              number_of_replicas: 0
+        composed_of:
+          - "logs-sophos_central.alert@package"
+          - "logs-sophos_central.alert@custom"
+          - "so-fleet_globals-1"
+          - "so-fleet_agent_id_verification-1"
+        priority: 501
+        data_stream:
+          hidden: false
+          allow_custom_routing: false
+    so-logs-sophos_central_x_event:
+      index_sorting: False
+      index_template:
+        index_patterns:
+          - "logs-sophos_central.event-*"
+        template:
+          settings:
+            index:
+              number_of_replicas: 0
+        composed_of:
+          - "logs-sophos_central.event@package"
+          - "logs-sophos_central.event@custom"
+          - "so-fleet_globals-1"
+          - "so-fleet_agent_id_verification-1"
+        priority: 501
+        data_stream:
+          hidden: false
+          allow_custom_routing: false
+    so-logs-tenable_sc_x_asset:
+      index_sorting: False
+      index_template:
+        index_patterns:
+          - "logs-tenable_sc.asset-*"
+        template:
+          settings:
+            index:
+              number_of_replicas: 0
+        composed_of:
+          - "logs-tenable_sc.asset@package"
+          - "logs-tenable_sc.asset@custom"
+          - "so-fleet_globals-1"
+          - "so-fleet_agent_id_verification-1"
+        priority: 501
+        data_stream:
+          hidden: false
+          allow_custom_routing: false
+    so-logs-tenable_sc_x_plugin:
+      index_sorting: False
+      index_template:
+        index_patterns:
+          - "logs-tenable_sc.plugin-*"
+        template:
+          settings:
+            index:
+              number_of_replicas: 0
+        composed_of:
+          - "logs-tenable_sc.plugin@package"
+          - "logs-tenable_sc.plugin@custom"
+          - "so-fleet_globals-1"
+          - "so-fleet_agent_id_verification-1"
+        priority: 501
+        data_stream:
+          hidden: false
+          allow_custom_routing: false
+    so-logs-tenable_sc_x_vulnerability:
+      index_sorting: False
+      index_template:
+        index_patterns:
+          - "logs-tenable_sc.vulnerability-*"
+        template:
+          settings:
+            index:
+              number_of_replicas: 0
+        composed_of:
+          - "logs-tenable_sc.vulnerability@package"
+          - "logs-tenable_sc.vulnerability@custom"
+          - "so-fleet_globals-1"
+          - "so-fleet_agent_id_verification-1"
+        priority: 501
+        data_stream:
+          hidden: false
+          allow_custom_routing: false

From c135f886a906cfd192b9625e9cba8ea2262fb644 Mon Sep 17 00:00:00 2001
From: Wes <wlambertts@gmail.com>
Date: Wed, 18 Oct 2023 20:41:34 +0000
Subject: [PATCH 236/417] Remove Carbon Black Cloud integration

---
 salt/elasticfleet/defaults.yaml | 1 -
 1 file changed, 1 deletion(-)

diff --git a/salt/elasticfleet/defaults.yaml b/salt/elasticfleet/defaults.yaml
index b5d1ee166..a17957e7c 100644
--- a/salt/elasticfleet/defaults.yaml
+++ b/salt/elasticfleet/defaults.yaml
@@ -34,7 +34,6 @@ elasticfleet:
     - aws
     - azure
     - barracuda
-    - carbonblack_cloud
     - carbonblack_edr
     - cisco_asa
     - cisco_duo

From 9eb682bc40fca2463275e43e2db37a7a52978216 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Wed, 18 Oct 2023 18:37:35 -0400
Subject: [PATCH 237/417] generate_ca after salt-master and salt-minion states
 run

---
 salt/common/tools/sbin/so-common |  2 +-
 setup/so-functions               | 10 ++++++++++
 setup/so-setup                   |  9 +++------
 3 files changed, 14 insertions(+), 7 deletions(-)

diff --git a/salt/common/tools/sbin/so-common b/salt/common/tools/sbin/so-common
index c19d51a42..be001f0d7 100755
--- a/salt/common/tools/sbin/so-common
+++ b/salt/common/tools/sbin/so-common
@@ -153,7 +153,7 @@ check_salt_master_status() {
 }
 
 check_salt_minion_status() {
-	local timeout=$1
+	local timeout="${1:-5}"
 	echo "Checking if the salt minion will respond to jobs" >> "$setup_log" 2>&1
 	salt "$MINION_ID" test.ping -t $timeout > /dev/null 2>&1
 	local status=$?
diff --git a/setup/so-functions b/setup/so-functions
index 68fd01550..7ead07ca7 100755
--- a/setup/so-functions
+++ b/setup/so-functions
@@ -2495,6 +2495,16 @@ wait_for_file() {
 
 wait_for_salt_minion() {
 	retry 60 5 "journalctl -u salt-minion.service | grep 'Minion is ready to receive requests'" >> "$setup_log" 2>&1 || fail_setup
+	local attempt=0
+	# each attempts would take about 15 seconds
+	local maxAttempts=20
+	until check_salt_minion_status; do
+		attempt=$((attempt+1))
+		if [[ $attempt -gt $maxAttempts ]]; then
+			fail_setup
+		fi
+		sleep 10
+	done
 }
 
 verify_setup() {
diff --git a/setup/so-setup b/setup/so-setup
index 73ef29f4b..543ac0156 100755
--- a/setup/so-setup
+++ b/setup/so-setup
@@ -714,17 +714,14 @@ if ! [[ -f $install_opt_file ]]; then
 
 		logCmd "salt-call state.apply common.packages"
 		logCmd "salt-call state.apply common"
-		# apply the ca state to create the ca and put it in the mine early in the install
-		# this is done before the salt.master state puts the checkmine engine in place and starts
-		# checking for a valid ca in the mine for the manager
-		# the minion ip will already be in the mine from configure_minion function in so-functions
-		generate_ca
 		# this will apply the salt.minion state first since salt.master includes salt.minion
 		logCmd "salt-call state.apply salt.master"
 		# wait here until we get a response from the salt-master since it may have just restarted
 		# exit setup after 5-6 minutes of trying
 		check_salt_master_status || fail  "Can't access salt master or it is not ready"
-
+		# apply the ca state to create the ca and put it in the mine early in the install
+		# the minion ip will already be in the mine from configure_minion function in so-functions
+		generate_ca
 		# this will also call the ssl state since docker requires the intca
 		# the salt-minion service will need to be up on the manager to sign requests
 		generate_ssl

From ff18b1f074c8448b9503e04acf7b6df41240fde5 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Wed, 18 Oct 2023 18:45:14 -0400
Subject: [PATCH 238/417] remove redirect

---
 salt/common/tools/sbin/so-common | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/salt/common/tools/sbin/so-common b/salt/common/tools/sbin/so-common
index be001f0d7..1a5e5df6c 100755
--- a/salt/common/tools/sbin/so-common
+++ b/salt/common/tools/sbin/so-common
@@ -154,13 +154,13 @@ check_salt_master_status() {
 
 check_salt_minion_status() {
 	local timeout="${1:-5}"
-	echo "Checking if the salt minion will respond to jobs" >> "$setup_log" 2>&1
+	echo "Checking if the salt minion will respond to jobs"
 	salt "$MINION_ID" test.ping -t $timeout > /dev/null 2>&1
 	local status=$?
 	if [ $status -gt 0 ]; then
-		echo "  Minion did not respond" >> "$setup_log" 2>&1
+		echo "  Minion did not respond"
 	else
-		echo "  Received job response from salt minion" >> "$setup_log" 2>&1
+		echo "  Received job response from salt minion"
 	fi
 
 	return $status

From f30a652e19ea9c363f5bf4bba682153c2f56fc5b Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Wed, 18 Oct 2023 19:31:45 -0400
Subject: [PATCH 239/417] add back redirects

---
 salt/common/tools/sbin/so-common | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/salt/common/tools/sbin/so-common b/salt/common/tools/sbin/so-common
index 1a5e5df6c..dce86362f 100755
--- a/salt/common/tools/sbin/so-common
+++ b/salt/common/tools/sbin/so-common
@@ -154,13 +154,13 @@ check_salt_master_status() {
 
 check_salt_minion_status() {
 	local timeout="${1:-5}"
-	echo "Checking if the salt minion will respond to jobs"
+	echo "Checking if the salt minion will respond to jobs"  >> "$setup_log" 2>&1
 	salt "$MINION_ID" test.ping -t $timeout > /dev/null 2>&1
 	local status=$?
 	if [ $status -gt 0 ]; then
-		echo "  Minion did not respond"
+		echo "  Minion did not respond" >> "$setup_log" 2>&1
 	else
-		echo "  Received job response from salt minion"
+		echo "  Received job response from salt minion" >> "$setup_log" 2>&1
 	fi
 
 	return $status

From b2bb92d41368f93db9122ffcab5ae761e33f6669 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Wed, 18 Oct 2023 19:38:19 -0400
Subject: [PATCH 240/417] remove extra space

---
 salt/common/tools/sbin/so-common | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/salt/common/tools/sbin/so-common b/salt/common/tools/sbin/so-common
index dce86362f..be001f0d7 100755
--- a/salt/common/tools/sbin/so-common
+++ b/salt/common/tools/sbin/so-common
@@ -154,7 +154,7 @@ check_salt_master_status() {
 
 check_salt_minion_status() {
 	local timeout="${1:-5}"
-	echo "Checking if the salt minion will respond to jobs"  >> "$setup_log" 2>&1
+	echo "Checking if the salt minion will respond to jobs" >> "$setup_log" 2>&1
 	salt "$MINION_ID" test.ping -t $timeout > /dev/null 2>&1
 	local status=$?
 	if [ $status -gt 0 ]; then

From c5610edd835ff7787acf778c765c60cf3789aa91 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Thu, 19 Oct 2023 11:12:20 -0400
Subject: [PATCH 241/417] handle salt for r9 and c9

---
 salt/manager/tools/sbin/soup        | 16 ++++++++++++----
 salt/salt/scripts/bootstrap-salt.sh |  7 -------
 setup/so-functions                  |  3 ++-
 3 files changed, 14 insertions(+), 12 deletions(-)

diff --git a/salt/manager/tools/sbin/soup b/salt/manager/tools/sbin/soup
index 5768500c2..28ac29497 100755
--- a/salt/manager/tools/sbin/soup
+++ b/salt/manager/tools/sbin/soup
@@ -620,6 +620,7 @@ upgrade_check_salt() {
   if [ "$INSTALLEDSALTVERSION" == "$NEWSALTVERSION" ]; then
     echo "You are already running the correct version of Salt for Security Onion."
   else
+    echo "Salt needs to be upgraded to $NEWSALTVERSION."
     UPGRADESALT=1
   fi
 }   
@@ -629,16 +630,23 @@ upgrade_salt() {
   echo "Performing upgrade of Salt from $INSTALLEDSALTVERSION to $NEWSALTVERSION."
   echo ""
   # If Oracle Linux
-  if [[ $OS == 'oel' ]]; then
+  if [[ $OS == 'oel' || $OS == 'centos' || $OS == 'rocky' ||]]; then
     echo "Removing yum versionlock for Salt."
     echo ""
     yum versionlock delete "salt-*"
     echo "Updating Salt packages."
     echo ""
     set +e
-    run_check_net_err \
-    "sh $UPDATE_DIR/salt/salt/scripts/bootstrap-salt.sh -X -r -F -M -x python3 stable \"$NEWSALTVERSION\"" \
-    "Could not update salt, please check $SOUP_LOG for details."
+    if [[ $OS == 'oel' ]]; then
+      run_check_net_err \
+      "sh $UPDATE_DIR/salt/salt/scripts/bootstrap-salt.sh -X -r -F -M -x python3 stable \"$NEWSALTVERSION\"" \
+      "Could not update salt, please check $SOUP_LOG for details."
+    # if rocky or centos we want to run without -r to allow the bootstrap script to manage repos
+    else
+      run_check_net_err \
+      "sh $UPDATE_DIR/salt/salt/scripts/bootstrap-salt.sh -X -F -M -x python3 stable \"$NEWSALTVERSION\"" \
+      "Could not update salt, please check $SOUP_LOG for details."
+    fi
     set -e
     echo "Applying yum versionlock for Salt."
     echo ""
diff --git a/salt/salt/scripts/bootstrap-salt.sh b/salt/salt/scripts/bootstrap-salt.sh
index 156489f4e..a016524e6 100644
--- a/salt/salt/scripts/bootstrap-salt.sh
+++ b/salt/salt/scripts/bootstrap-salt.sh
@@ -617,13 +617,6 @@ if [ "$(echo "$ITYPE" | grep stable)" = "" ]; then
     exit 1
 fi
 
-# We want to require this script to only run with -r. We dont want to accidentally try to install from another repo
-# and we dont want to put salt.repo in /etc/yum.repos.d/
-if [ "$_DISABLE_REPOS" -eq $BS_FALSE ];then
-    echoerror "This script has been modified to required the usage of the -r flag which disables this script from using its own repos..."
-    exit 1
-fi
-
 # If doing a git install, check what branch/tag/sha will be checked out
 if [ "$ITYPE" = "git" ]; then
     if [ "$#" -eq 0 ];then
diff --git a/setup/so-functions b/setup/so-functions
index 7ead07ca7..65f21fa20 100755
--- a/setup/so-functions
+++ b/setup/so-functions
@@ -1972,6 +1972,7 @@ securityonion_repo() {
 }
 
 repo_sync_local() {
+	SALTVERSION=$(egrep 'version: [0-9]{4}' ../salt/salt/master.defaults.yaml | sed 's/^.*version: //')
 	info "Repo Sync"
 	if [[ $is_supported ]]; then
 		# Sync the repo from the the SO repo locally.
@@ -2021,7 +2022,7 @@ repo_sync_local() {
 			curl -fsSL https://repo.securityonion.net/file/so-repo/prod/2.4/so/so.repo | tee /etc/yum.repos.d/so.repo
 			rpm --import https://repo.saltproject.io/salt/py3/redhat/9/x86_64/SALT-PROJECT-GPG-PUBKEY-2023.pub
 			dnf config-manager --add-repo https://download.docker.com/linux/centos/docker-ce.repo
-			curl -fsSL https://repo.saltproject.io/salt/py3/redhat/9/x86_64/minor/3006.1.repo | tee /etc/yum.repos.d/salt.repo
+			curl -fsSL "https://repo.saltproject.io/salt/py3/redhat/9/x86_64/minor/$SALTVERSION.repo" | tee /etc/yum.repos.d/salt.repo
 			dnf repolist
 			curl --retry 5 --retry-delay 60 -A "netinstall/$SOVERSION/$OS/$(uname -r)/1" https://sigs.securityonion.net/checkup --output /tmp/install
 		else

From 13a5c8baa7a08ecbed21a5d3562c8e0fad540872 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Thu, 19 Oct 2023 11:19:51 -0400
Subject: [PATCH 242/417] remove extra ||

---
 salt/manager/tools/sbin/soup | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/salt/manager/tools/sbin/soup b/salt/manager/tools/sbin/soup
index 28ac29497..5c7033a2f 100755
--- a/salt/manager/tools/sbin/soup
+++ b/salt/manager/tools/sbin/soup
@@ -630,7 +630,7 @@ upgrade_salt() {
   echo "Performing upgrade of Salt from $INSTALLEDSALTVERSION to $NEWSALTVERSION."
   echo ""
   # If Oracle Linux
-  if [[ $OS == 'oel' || $OS == 'centos' || $OS == 'rocky' ||]]; then
+  if [[ $OS == 'oel' || $OS == 'centos' || $OS == 'rocky' ]]; then
     echo "Removing yum versionlock for Salt."
     echo ""
     yum versionlock delete "salt-*"

From e3830fa286f9a0b791c1e9ea7789fbc1ba424e1c Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Thu, 19 Oct 2023 13:43:03 -0400
Subject: [PATCH 243/417] all more os to set_os in so-common

---
 salt/common/tools/sbin/so-common | 44 +++++++++++++++++++++++++++-----
 1 file changed, 38 insertions(+), 6 deletions(-)

diff --git a/salt/common/tools/sbin/so-common b/salt/common/tools/sbin/so-common
index fc14e9d0a..a7aace61a 100755
--- a/salt/common/tools/sbin/so-common
+++ b/salt/common/tools/sbin/so-common
@@ -452,19 +452,51 @@ set_os() {
 			OS=rocky
 			OSVER=9
 			is_rocky=true
+			is_rpm=true
 		elif grep -q "CentOS Stream release 9" /etc/redhat-release; then
 			OS=centos
 			OSVER=9
 			is_centos=true
-		elif grep -q "Oracle Linux Server release 9" /etc/system-release; then
-			OS=oel
+			is_rpm=true
+		elif grep -q "AlmaLinux release 9" /etc/redhat-release; then
+			OS=alma
 			OSVER=9
-			is_oracle=true
+			is_alma=true
+			is_rpm=true
+		elif grep -q "Red Hat Enterprise Linux release 9" /etc/redhat-release; then
+			if [ -f /etc/oracle-release ]; then
+				OS=oracle
+				OSVER=9
+				is_oracle=true
+				is_rpm=true
+			else
+				OS=rhel
+				OSVER=9
+				is_rhel=true
+				is_rpm=true
+			fi
 		fi
 		cron_service_name="crond"
-	else
-		OS=ubuntu
-		is_ubuntu=true
+	elif [ -f /etc/os-release ]; then
+		if grep -q "UBUNTU_CODENAME=focal" /etc/os-release; then
+			OSVER=focal
+			UBVER=20.04
+			OS=ubuntu
+			is_ubuntu=true
+			is_deb=true
+		elif grep -q "UBUNTU_CODENAME=jammy" /etc/os-release; then
+			OSVER=jammy
+			UBVER=22.04
+			OS=ubuntu
+			is_ubuntu=true
+			is_deb=true
+		elif grep -q "VERSION_CODENAME=bookworm" /etc/os-release; then
+			OSVER=bookworm
+			DEBVER=12
+			is_debian=true
+			OS=debian
+			is_deb=true
+		fi
 		cron_service_name="cron"
 	fi
 }

From 84f8e1cc926f8ac495d312c7b0c3577ba378fba5 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Thu, 19 Oct 2023 13:46:07 -0400
Subject: [PATCH 244/417] debian family upgrade salt without -r flag

---
 salt/salt/map.jinja | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/salt/salt/map.jinja b/salt/salt/map.jinja
index 1120685fb..131ff46ca 100644
--- a/salt/salt/map.jinja
+++ b/salt/salt/map.jinja
@@ -23,7 +23,7 @@
   {% if grains.os|lower in ['Rocky', 'redhat', 'CentOS Stream'] %}
       {% set UPGRADECOMMAND = 'yum clean all ; /usr/sbin/bootstrap-salt.sh -s 120 -r -F -x python3 stable ' ~ SALTVERSION %}
   {% elif grains.os_family|lower == 'debian' %}
-    {% set UPGRADECOMMAND = '/usr/sbin/bootstrap-salt.sh -s 120 -r -F -x python3 stable ' ~ SALTVERSION %}
+    {% set UPGRADECOMMAND = '/usr/sbin/bootstrap-salt.sh -s 120 -F -x python3 stable ' ~ SALTVERSION %}
   {% endif %}
 {% else %}
   {% set UPGRADECOMMAND = 'echo Already running Salt Minion version ' ~ SALTVERSION %}

From 90bde94371713196d473062f01b2c9a8089608d9 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Thu, 19 Oct 2023 13:46:48 -0400
Subject: [PATCH 245/417] handle debian family salt upgrade for soup

---
 salt/manager/tools/sbin/soup | 31 +++++++++++++++++++++++++------
 1 file changed, 25 insertions(+), 6 deletions(-)

diff --git a/salt/manager/tools/sbin/soup b/salt/manager/tools/sbin/soup
index 5c7033a2f..0ec3b92f9 100755
--- a/salt/manager/tools/sbin/soup
+++ b/salt/manager/tools/sbin/soup
@@ -629,19 +629,20 @@ upgrade_salt() {
   SALTUPGRADED=True
   echo "Performing upgrade of Salt from $INSTALLEDSALTVERSION to $NEWSALTVERSION."
   echo ""
-  # If Oracle Linux
-  if [[ $OS == 'oel' || $OS == 'centos' || $OS == 'rocky' ]]; then
+  # If rhel family
+  if [[ $is_rpm ]]; then
     echo "Removing yum versionlock for Salt."
     echo ""
     yum versionlock delete "salt-*"
     echo "Updating Salt packages."
     echo ""
     set +e
-    if [[ $OS == 'oel' ]]; then
+    # if oracle run with -r to ignore repos set by bootstrap
+    if [[ $OS == 'oracle' ]]; then
       run_check_net_err \
       "sh $UPDATE_DIR/salt/salt/scripts/bootstrap-salt.sh -X -r -F -M -x python3 stable \"$NEWSALTVERSION\"" \
       "Could not update salt, please check $SOUP_LOG for details."
-    # if rocky or centos we want to run without -r to allow the bootstrap script to manage repos
+    # if another rhel family variant we want to run without -r to allow the bootstrap script to manage repos
     else
       run_check_net_err \
       "sh $UPDATE_DIR/salt/salt/scripts/bootstrap-salt.sh -X -F -M -x python3 stable \"$NEWSALTVERSION\"" \
@@ -652,6 +653,24 @@ upgrade_salt() {
     echo ""
     yum versionlock add "salt-*"
   # Else do Ubuntu things
+  elif [[ $is_deb ]]; then
+    echo "Removing apt hold for Salt."
+    echo ""
+    apt-mark unhold "salt-common"
+    apt-mark unhold "salt-master"
+    apt-mark unhold "salt-minion"
+    echo "Updating Salt packages."
+    echo ""
+    set +e
+    run_check_net_err \
+    "sh $UPDATE_DIR/salt/salt/scripts/bootstrap-salt.sh -X -F -M -x python3 stable \"$NEWSALTVERSION\"" \
+    "Could not update salt, please check $SOUP_LOG for details."
+    set -e
+    echo "Applying apt hold for Salt."
+    echo ""
+    apt-mark hold "salt-common"
+    apt-mark hold "salt-master"
+    apt-mark hold "salt-minion"
   fi
 
   echo "Checking if Salt was upgraded."
@@ -663,7 +682,7 @@ upgrade_salt() {
     echo "Once the issue is resolved, run soup again."
     echo "Exiting."
     echo ""
-    exit 0
+    exit 1
   else
     echo "Salt upgrade success."
     echo ""
@@ -793,7 +812,7 @@ main() {
   if [[ $is_airgap -eq 0 ]]; then
     yum clean all
     check_os_updates
-  elif [[ $OS == 'oel' ]]; then
+  elif [[ $OS == 'oracle' ]]; then
     # sync remote repo down to local if not airgap
     repo_sync
     check_os_updates

From 66ee074795d23617f105e2863b60a87c355c767a Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Thu, 19 Oct 2023 15:57:24 -0400
Subject: [PATCH 246/417] add wait_for_salt_minion to so-common

---
 salt/common/tools/sbin/so-common | 31 ++++++++++++++++++++++++++-----
 1 file changed, 26 insertions(+), 5 deletions(-)

diff --git a/salt/common/tools/sbin/so-common b/salt/common/tools/sbin/so-common
index a7aace61a..a2ac96ece 100755
--- a/salt/common/tools/sbin/so-common
+++ b/salt/common/tools/sbin/so-common
@@ -152,15 +152,18 @@ check_salt_master_status() {
     return 0
 }
 
+# this is only intended to be used to check the status of the minion
 check_salt_minion_status() {
-	local timeout="${1:-5}"
-	echo "Checking if the salt minion will respond to jobs" >> "$setup_log" 2>&1
-	salt "$MINION_ID" test.ping -t $timeout > /dev/null 2>&1
+	local minion="$1"
+	local timeout="${2:-5}"
+	local logfile="${3:-'/dev/stdout'}"
+	echo "Checking if the salt minion will respond to jobs" >> "$logfile" 2>&1
+	salt "$minion" test.ping -t $timeout > /dev/null 2>&1
 	local status=$?
 	if [ $status -gt 0 ]; then
-		echo "  Minion did not respond" >> "$setup_log" 2>&1
+		echo "  Minion did not respond" >> "$logfile" 2>&1
 	else
-		echo "  Received job response from salt minion" >> "$setup_log" 2>&1
+		echo "  Received job response from salt minion" >> "$logfile" 2>&1
 	fi
 
 	return $status
@@ -440,6 +443,24 @@ run_check_net_err() {
 	fi
 }
 
+wait_for_salt_minion() {
+	local minion="$1"
+	local timeout="${2:-5}"
+	local logfile="${3:-'/dev/stdout'}"
+	retry 60 5 "journalctl -u salt-minion.service | grep 'Minion is ready to receive requests'" >> "$logfile" 2>&1 || fail
+	local attempt=0
+	# each attempts would take about 15 seconds
+	local maxAttempts=20
+	until check_salt_minion_status "$minion" "$timeout" "$logfile"; do
+		attempt=$((attempt+1))
+		if [[ $attempt -gt $maxAttempts ]]; then
+			return 1
+		fi
+		sleep 10
+	done
+	return 0
+}
+
 salt_minion_count() {
 	local MINIONDIR="/opt/so/saltstack/local/pillar/minions"
 	MINIONCOUNT=$(ls -la $MINIONDIR/*.sls | grep -v adv_ | wc -l)

From 37e803917e7b764eda604dff6ef62bb96bd72bdf Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Thu, 19 Oct 2023 15:58:10 -0400
Subject: [PATCH 247/417] have soup wait_for_salt_minion() before running any
 highstate

---
 salt/manager/tools/sbin/soup | 9 ++++++---
 1 file changed, 6 insertions(+), 3 deletions(-)

diff --git a/salt/manager/tools/sbin/soup b/salt/manager/tools/sbin/soup
index 0ec3b92f9..9e7948d9e 100755
--- a/salt/manager/tools/sbin/soup
+++ b/salt/manager/tools/sbin/soup
@@ -829,7 +829,8 @@ main() {
     echo "Hotfix applied"
     update_version
     enable_highstate
-    salt-call state.highstate -l info queue=True
+    wait_for_salt_minion "$MINIONID" "5" "$SOUP_LOG" || fail "Salt minion was not running or ready."
+    highstate
   else
     echo ""
     echo "Performing upgrade from Security Onion $INSTALLEDVERSION to Security Onion $NEWVERSION."
@@ -927,7 +928,8 @@ main() {
     echo ""
     echo "Running a highstate. This could take several minutes."
     set +e
-    salt-call state.highstate -l info queue=True
+    wait_for_salt_minion "$MINIONID" "5" "$SOUP_LOG" || fail "Salt minion was not running or ready."
+    highstate
     set -e
 
     stop_salt_master
@@ -942,7 +944,8 @@ main() {
     set -e
     
     echo "Running a highstate to complete the Security Onion upgrade on this manager. This could take several minutes."
-    salt-call state.highstate -l info queue=True
+    wait_for_salt_minion "$MINIONID" "5" "$SOUP_LOG" || fail "Salt minion was not running or ready."
+    highstate
     postupgrade_changes
     [[ $is_airgap -eq 0 ]] && unmount_update
 

From dfcbbfd157ce996af14518f09b581514fbd478b6 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Thu, 19 Oct 2023 15:58:50 -0400
Subject: [PATCH 248/417] update call to wait_for_salt_minion with new options
 in so-functions

---
 setup/so-functions | 16 +---------------
 1 file changed, 1 insertion(+), 15 deletions(-)

diff --git a/setup/so-functions b/setup/so-functions
index 65f21fa20..546904d03 100755
--- a/setup/so-functions
+++ b/setup/so-functions
@@ -1258,7 +1258,7 @@ generate_ssl() {
 	# if the install type is a manager then we need to wait for the minion to be ready before trying
 	# to run the ssl state since we need the minion to sign the certs
 	if [[ "$install_type" =~ ^(EVAL|MANAGER|MANAGERSEARCH|STANDALONE|IMPORT|HELIXSENSOR)$ ]]; then
-		wait_for_salt_minion
+		wait_for_salt_minion "$MINION_ID" "5" "$setup_log" || fail_setup
 	fi
 	info "Applying SSL state"
 	logCmd "salt-call state.apply ssl -l info"
@@ -2494,20 +2494,6 @@ wait_for_file() {
 	return 1
 }
 
-wait_for_salt_minion() {
-	retry 60 5 "journalctl -u salt-minion.service | grep 'Minion is ready to receive requests'" >> "$setup_log" 2>&1 || fail_setup
-	local attempt=0
-	# each attempts would take about 15 seconds
-	local maxAttempts=20
-	until check_salt_minion_status; do
-		attempt=$((attempt+1))
-		if [[ $attempt -gt $maxAttempts ]]; then
-			fail_setup
-		fi
-		sleep 10
-	done
-}
-
 verify_setup() {
 	info "Verifying setup"
 	set -o pipefail

From dbfccdfff814c2cfc9d98ed0ab7efaba918c7bb4 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Thu, 19 Oct 2023 16:53:03 -0400
Subject: [PATCH 249/417] fix logging when using wait_for_minion

---
 salt/manager/tools/sbin/soup | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/salt/manager/tools/sbin/soup b/salt/manager/tools/sbin/soup
index 9e7948d9e..48c3e543d 100755
--- a/salt/manager/tools/sbin/soup
+++ b/salt/manager/tools/sbin/soup
@@ -829,7 +829,7 @@ main() {
     echo "Hotfix applied"
     update_version
     enable_highstate
-    wait_for_salt_minion "$MINIONID" "5" "$SOUP_LOG" || fail "Salt minion was not running or ready."
+    wait_for_salt_minion "$MINIONID" "5" '/dev/stdout' 2>&1 | tee -a "$SOUP_LOG" || fail "Salt minion was not running or ready."
     highstate
   else
     echo ""
@@ -928,7 +928,7 @@ main() {
     echo ""
     echo "Running a highstate. This could take several minutes."
     set +e
-    wait_for_salt_minion "$MINIONID" "5" "$SOUP_LOG" || fail "Salt minion was not running or ready."
+    wait_for_salt_minion "$MINIONID" "5" '/dev/stdout' 2>&1 | tee -a "$SOUP_LOG" || fail "Salt minion was not running or ready."
     highstate
     set -e
 
@@ -944,7 +944,7 @@ main() {
     set -e
     
     echo "Running a highstate to complete the Security Onion upgrade on this manager. This could take several minutes."
-    wait_for_salt_minion "$MINIONID" "5" "$SOUP_LOG" || fail "Salt minion was not running or ready."
+    wait_for_salt_minion "$MINIONID" "5" '/dev/stdout' 2>&1 | tee -a "$SOUP_LOG" || fail "Salt minion was not running or ready."
     highstate
     postupgrade_changes
     [[ $is_airgap -eq 0 ]] && unmount_update

From 2e16250c93d000c20e451ed0e0b539e6c8f84bfa Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Fri, 20 Oct 2023 10:00:39 -0400
Subject: [PATCH 250/417] handle a minion not being in the mine data return

---
 salt/salt/engines/master/checkmine.py | 9 ++++++++-
 1 file changed, 8 insertions(+), 1 deletion(-)

diff --git a/salt/salt/engines/master/checkmine.py b/salt/salt/engines/master/checkmine.py
index 1440fb72f..afeb92536 100644
--- a/salt/salt/engines/master/checkmine.py
+++ b/salt/salt/engines/master/checkmine.py
@@ -67,6 +67,10 @@ def start(interval=60):
                     mine_delete(minion, 'x509.get_pem_entries')
                     mine_update(minion)
                     continue
+                except KeyError:
+                    log.error('checkmine engine: found minion %s is not in the mine' % (minion))
+                    mine_flush(minion)
+                    mine_update(minion)
 
             # Update the mine if the ip in the mine doesn't match returned from manage.alived
             network_ip_addrs = __salt__['saltutil.runner']('mine.get', tgt=minion, fun='network.ip_addrs')
@@ -77,5 +81,8 @@ def start(interval=60):
                 log.error('checkmine engine: found minion %s does\'t have a mine_ip' % (minion))
                 mine_delete(minion, 'network.ip_addrs')
                 mine_update(minion)
-
+            except KeyError:
+                log.error('checkmine engine: found minion %s is not in the mine' % (minion))
+                mine_flush(minion)
+                mine_update(minion)
         sleep(interval)

From ef2b89f5bf37c304ab431aa0fbeb21b3f8a3ecd7 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Fri, 20 Oct 2023 13:40:40 -0400
Subject: [PATCH 251/417] fix attempts logic

---
 setup/so-functions | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/setup/so-functions b/setup/so-functions
index 7ead07ca7..1c9b0f43d 100755
--- a/setup/so-functions
+++ b/setup/so-functions
@@ -2500,7 +2500,7 @@ wait_for_salt_minion() {
 	local maxAttempts=20
 	until check_salt_minion_status; do
 		attempt=$((attempt+1))
-		if [[ $attempt -gt $maxAttempts ]]; then
+		if [[ $attempt -eq $maxAttempts ]]; then
 			fail_setup
 		fi
 		sleep 10

From 99662c999fc5b437dc9eba8061a4c874e1692866 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Fri, 20 Oct 2023 13:41:24 -0400
Subject: [PATCH 252/417] log operation and minion target

---
 salt/soc/files/bin/salt-relay.sh | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/salt/soc/files/bin/salt-relay.sh b/salt/soc/files/bin/salt-relay.sh
index ac56ec6e3..fea81728d 100755
--- a/salt/soc/files/bin/salt-relay.sh
+++ b/salt/soc/files/bin/salt-relay.sh
@@ -67,10 +67,10 @@ function manage_minion() {
   response=$(so-minion "-o=$op" "-m=$minion_id")
   exit_code=$?
   if [[ exit_code -eq 0 ]]; then
-    log "Successful command execution"
+    log "Successful '$op' command execution on $minion_id"
     respond "$id" "true"
   else
-    log "Unsuccessful command execution: $response ($exit_code)"
+    log "Unsuccessful '$op' command execution on $minion_id: $response ($exit_code)"
     respond "$id" "false"
   fi
 }

From 6d77b1e4c389a90ae475e2e523e302572fdf244b Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Fri, 20 Oct 2023 13:41:53 -0400
Subject: [PATCH 253/417] continue loop if minion not in mine

---
 salt/salt/engines/master/checkmine.py | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/salt/salt/engines/master/checkmine.py b/salt/salt/engines/master/checkmine.py
index afeb92536..f33392575 100644
--- a/salt/salt/engines/master/checkmine.py
+++ b/salt/salt/engines/master/checkmine.py
@@ -71,6 +71,7 @@ def start(interval=60):
                     log.error('checkmine engine: found minion %s is not in the mine' % (minion))
                     mine_flush(minion)
                     mine_update(minion)
+                    continue
 
             # Update the mine if the ip in the mine doesn't match returned from manage.alived
             network_ip_addrs = __salt__['saltutil.runner']('mine.get', tgt=minion, fun='network.ip_addrs')
@@ -85,4 +86,5 @@ def start(interval=60):
                 log.error('checkmine engine: found minion %s is not in the mine' % (minion))
                 mine_flush(minion)
                 mine_update(minion)
+
         sleep(interval)

From c588bf4395aa3d6734c2787695a9b786ceb69d30 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Fri, 20 Oct 2023 13:43:12 -0400
Subject: [PATCH 254/417] update mine and highstate minion when added

---
 salt/manager/tools/sbin/so-minion | 35 ++++++++++++++++++++++++-------
 1 file changed, 27 insertions(+), 8 deletions(-)

diff --git a/salt/manager/tools/sbin/so-minion b/salt/manager/tools/sbin/so-minion
index 64084dbd0..325bedf4a 100755
--- a/salt/manager/tools/sbin/so-minion
+++ b/salt/manager/tools/sbin/so-minion
@@ -407,11 +407,9 @@ function update_logstash_outputs() {
 }
 
 function updateMine() {
-	salt "$MINION_ID" mine.send network.ip_addrs interface="$MNIC"
-}
-function apply_ES_state() {
-	salt-call state.apply elasticsearch concurrent=True
+	retry 10 2 "salt '$MINION_ID' mine.update" True
 }
+
 function createEVAL() {
 	is_pcaplimit=true
 	add_elasticsearch_to_minion
@@ -547,8 +545,6 @@ function createSEARCHNODE() {
 	add_elasticsearch_to_minion
 	add_logstash_to_minion
 	add_telegraf_to_minion
-	updateMine
-	apply_ES_state
 }
 
 function createRECEIVER() {
@@ -563,6 +559,19 @@ function createDESKTOP() {
 }
 
 function testConnection() {
+	# the minion should be trying to auth every 10 seconds so 15 seconds should be more than enough time to see this in the log
+	# this retry was put in because it is possible that a minion is attempted to be pinged before it has authenticated and connected to the Salt master
+	# causing the first ping to fail and typically wouldn't be successful until the second ping
+	# this check may pass without the minion being authenticated if it was previously connected and the line exists in the log
+	retry 15 1 "grep 'Authentication accepted from $MINION_ID' /opt/so/log/salt/master"
+	local retauth=$?
+	if [[ $retauth != 0 ]]; then
+		echo "The Minion did not authenticate with the Salt master in the allotted time"
+		echo "Deleting the key"
+		deleteminion
+		exit 1
+	fi
+
 	retry 15 3 "salt '$MINION_ID' test.ping" True
 	local ret=$?
 	if [[ $ret != 0 ]]; then
@@ -582,9 +591,9 @@ if [[ "$OPERATION" = 'delete' ]]; then
 	deleteminion
 fi
 
-if [[ "$OPERATION" = 'add' || "$OPERATION" = 'setup' ]]; then
+if [[ "$OPERATION" == 'add' || "$OPERATION" == 'setup' ]]; then
 	# Skip this if its setup
-	if [ $OPERATION != 'setup' ]; then
+	if [[ $OPERATION == 'add' ]]; then
 		# Accept the salt key
 		acceptminion
 		# Test to see if the minion was accepted
@@ -605,8 +614,18 @@ if [[ "$OPERATION" = 'add' || "$OPERATION" = 'setup' ]]; then
 	else
 		add_sensoroni_to_minion
 	fi
+
 	create$NODETYPE
 	echo "Minion file created for $MINION_ID"	
+
+	if [[ "$OPERATION" == 'add' ]]; then
+		# tell the minion to populate the mine with data from mine_functions which is populated during setup
+		# this only needs to happen on non managers since they handle this during setup
+		# and they need to wait for ca creation to update the mine
+		updateMine
+		# run this async so the cli doesn't wait for a return
+		salt "$MINION_ID" state.highstate --async
+	fi
 fi
 
 if [[ "$OPERATION" = 'test' ]]; then

From c4093394464bded7ad6ce2b76720a97e823179d3 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Fri, 20 Oct 2023 13:46:24 -0400
Subject: [PATCH 255/417] change post setup highstate cron to 5 minutes since
 accepting minion runs a highstate

---
 salt/setup/highstate_cron.sls | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/salt/setup/highstate_cron.sls b/salt/setup/highstate_cron.sls
index 862968d97..f8f76e737 100644
--- a/salt/setup/highstate_cron.sls
+++ b/salt/setup/highstate_cron.sls
@@ -3,5 +3,5 @@ post_setup_cron:
     - name: 'PATH=$PATH:/usr/sbin salt-call state.highstate'
     - identifier: post_setup_cron
     - user: root
-    - minute: '*/1'
+    - minute: '*/5'
     - identifier: post_setup_cron

From 7e3aa11a7341c6324b13dbf8367fe21ae80c8870 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Fri, 20 Oct 2023 16:27:20 -0400
Subject: [PATCH 256/417] check mine is populated with ip before telling node
 to highstate

---
 salt/manager/tools/sbin/so-minion | 9 ++++++++-
 1 file changed, 8 insertions(+), 1 deletion(-)

diff --git a/salt/manager/tools/sbin/so-minion b/salt/manager/tools/sbin/so-minion
index 325bedf4a..f92c0ff55 100755
--- a/salt/manager/tools/sbin/so-minion
+++ b/salt/manager/tools/sbin/so-minion
@@ -406,8 +406,14 @@ function update_logstash_outputs() {
     curl -K /opt/so/conf/elasticsearch/curl.config -L -X PUT "localhost:5601/api/fleet/outputs/so-manager_logstash" -H 'kbn-xsrf: true' -H 'Content-Type: application/json' -d "$JSON_STRING"
 }
 
+function checkMine() {
+	func = $1
+	retry 20 1 "salt-run '$MINION_ID' mine.get '$func'" "$MINION_ID"
+
+}
+
 function updateMine() {
-	retry 10 2 "salt '$MINION_ID' mine.update" True
+	retry 20 1 "salt '$MINION_ID' mine.update" True
 }
 
 function createEVAL() {
@@ -623,6 +629,7 @@ if [[ "$OPERATION" == 'add' || "$OPERATION" == 'setup' ]]; then
 		# this only needs to happen on non managers since they handle this during setup
 		# and they need to wait for ca creation to update the mine
 		updateMine
+		checkMine "network.ip_addrs"
 		# run this async so the cli doesn't wait for a return
 		salt "$MINION_ID" state.highstate --async
 	fi

From dc3ca99c12e56c756cbee4998b962dd4410c8004 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Fri, 20 Oct 2023 17:16:33 -0400
Subject: [PATCH 257/417] ask the minion if it can see itself in the mine

---
 salt/manager/tools/sbin/so-minion | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/salt/manager/tools/sbin/so-minion b/salt/manager/tools/sbin/so-minion
index f92c0ff55..eca96da5c 100755
--- a/salt/manager/tools/sbin/so-minion
+++ b/salt/manager/tools/sbin/so-minion
@@ -407,8 +407,9 @@ function update_logstash_outputs() {
 }
 
 function checkMine() {
-	func = $1
-	retry 20 1 "salt-run '$MINION_ID' mine.get '$func'" "$MINION_ID"
+	local func=$1
+	# make sure the minion sees itself in the mine since it needs to see itself for states as opposed to using salt-run
+	retry 20 1 "salt '$MINION_ID' mine.get '\*' '$func'" "$MINION_ID"
 
 }
 

From 030a667d260ae59e849b8c59814c9f371580e458 Mon Sep 17 00:00:00 2001
From: reyesj2 <94730068+reyesj2@users.noreply.github.com>
Date: Mon, 23 Oct 2023 11:47:14 -0400
Subject: [PATCH 258/417] Add -watch to soctopus saltstate for file
 SOCtopus.conf. Makes container restart @ highstate if file is updated.

Signed-off-by: reyesj2 <94730068+reyesj2@users.noreply.github.com>
---
 salt/soctopus/enabled.sls | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/salt/soctopus/enabled.sls b/salt/soctopus/enabled.sls
index 0474998cb..567562fbb 100644
--- a/salt/soctopus/enabled.sls
+++ b/salt/soctopus/enabled.sls
@@ -52,6 +52,8 @@ so-soctopus:
       - {{ XTRAENV }}
       {% endfor %}
     {% endif %}
+    - watch:
+      - file: /opt/so/conf/soctopus/SOCtopus.conf
     - require:
       - file: soctopusconf
       - file: navigatordefaultlayer

From 660020cc760f2a80b6175922718e35be134d5084 Mon Sep 17 00:00:00 2001
From: weslambert <wlambertts@gmail.com>
Date: Mon, 23 Oct 2023 15:45:41 -0400
Subject: [PATCH 259/417] Parse pkt_src for Suricata logs

---
 salt/elasticsearch/files/ingest/suricata.common | 1 +
 1 file changed, 1 insertion(+)

diff --git a/salt/elasticsearch/files/ingest/suricata.common b/salt/elasticsearch/files/ingest/suricata.common
index e12fea0be..6b6a03a60 100644
--- a/salt/elasticsearch/files/ingest/suricata.common
+++ b/salt/elasticsearch/files/ingest/suricata.common
@@ -2,6 +2,7 @@
   "description" : "suricata.common",
   "processors" : [
     { "json":   { "field": "message",                   "target_field": "message2",             "ignore_failure": true  } },
+    { "rename": { "field": "message2.pkt_src",          "target_field": "network.packet_source","ignore_failure": true  } },
     { "rename": { "field": "message2.proto",            "target_field": "network.transport",    "ignore_failure": true  } },
     { "rename": { "field": "message2.flow_id",          "target_field": "log.id.uid",           "ignore_failure": true  } },
     { "rename": { "field": "message2.src_ip",           "target_field": "source.ip",            "ignore_failure": true  } },

From 4a3fc06a4d8119f1b241e3e8ce61f3794559c71f Mon Sep 17 00:00:00 2001
From: Mike Reeves <mike.reeves@securityonionsolutions.com>
Date: Tue, 24 Oct 2023 09:18:10 -0400
Subject: [PATCH 260/417] Enable http2 for Suricata

---
 salt/suricata/defaults.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/salt/suricata/defaults.yaml b/salt/suricata/defaults.yaml
index 050efa8f8..e9e39d40a 100644
--- a/salt/suricata/defaults.yaml
+++ b/salt/suricata/defaults.yaml
@@ -280,7 +280,7 @@ suricata:
         mqtt:
           enabled: 'no'
         http2:
-          enabled: 'no'
+          enabled: 'yes'
     asn1-max-frames: 256
     run-as:
       user: suricata

From 6d3465626eaa75f2fb341b7f03b4c4c1aa280dde Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Tue, 24 Oct 2023 12:52:25 -0400
Subject: [PATCH 261/417] if deb fam, stop salt-master and salt-minion after
 salt upgrade

---
 salt/common/tools/sbin/so-common |  2 +-
 salt/manager/tools/sbin/soup     | 10 ++++++++++
 2 files changed, 11 insertions(+), 1 deletion(-)

diff --git a/salt/common/tools/sbin/so-common b/salt/common/tools/sbin/so-common
index a2ac96ece..87f40c9d4 100755
--- a/salt/common/tools/sbin/so-common
+++ b/salt/common/tools/sbin/so-common
@@ -453,7 +453,7 @@ wait_for_salt_minion() {
 	local maxAttempts=20
 	until check_salt_minion_status "$minion" "$timeout" "$logfile"; do
 		attempt=$((attempt+1))
-		if [[ $attempt -gt $maxAttempts ]]; then
+		if [[ $attempt -eq $maxAttempts ]]; then
 			return 1
 		fi
 		sleep 10
diff --git a/salt/manager/tools/sbin/soup b/salt/manager/tools/sbin/soup
index 48c3e543d..e3c3b15a7 100755
--- a/salt/manager/tools/sbin/soup
+++ b/salt/manager/tools/sbin/soup
@@ -866,6 +866,16 @@ main() {
       echo "Upgrading Salt"
       # Update the repo files so it can actually upgrade
       upgrade_salt
+
+      # for Debian based distro, we need to stop salt again after upgrade output below is from bootstrap-salt
+      # *  WARN: Not starting daemons on Debian based distributions
+      #    is not working mostly because starting them is the default behaviour.
+      if [[ $is_deb ]]; then
+        systemctl status salt-master
+        systemctl status salt-minion
+        stop_salt_master
+        stop_salt_minion
+      fi
     fi
 
     preupgrade_changes

From 180ba3a9583da95f4ba69ff5eec6991c68554ee8 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Tue, 24 Oct 2023 13:24:52 -0400
Subject: [PATCH 262/417] if deb fam, stop salt-master and salt-minion after
 salt upgrade

---
 salt/manager/tools/sbin/soup | 4 +---
 1 file changed, 1 insertion(+), 3 deletions(-)

diff --git a/salt/manager/tools/sbin/soup b/salt/manager/tools/sbin/soup
index e3c3b15a7..58011c379 100755
--- a/salt/manager/tools/sbin/soup
+++ b/salt/manager/tools/sbin/soup
@@ -871,10 +871,8 @@ main() {
       # *  WARN: Not starting daemons on Debian based distributions
       #    is not working mostly because starting them is the default behaviour.
       if [[ $is_deb ]]; then
-        systemctl status salt-master
-        systemctl status salt-minion
-        stop_salt_master
         stop_salt_minion
+        stop_salt_master
       fi
     fi
 

From 310a6b4f27a02e8a748966ac345cccc2498da3d9 Mon Sep 17 00:00:00 2001
From: defensivedepth <josh@defensivedepth.com>
Date: Tue, 24 Oct 2023 14:21:01 -0400
Subject: [PATCH 263/417] Add kibana curl config

---
 salt/common/init.sls                   | 1 +
 salt/kibana/files/curl.config.template | 1 +
 salt/manager/init.sls                  | 1 +
 salt/manager/kibana.sls                | 7 +++++++
 4 files changed, 10 insertions(+)
 create mode 100644 salt/kibana/files/curl.config.template
 create mode 100644 salt/manager/kibana.sls

diff --git a/salt/common/init.sls b/salt/common/init.sls
index f50f0c61b..8c0089fc0 100644
--- a/salt/common/init.sls
+++ b/salt/common/init.sls
@@ -8,6 +8,7 @@ include:
   - common.packages
 {% if GLOBALS.role in GLOBALS.manager_roles %}
   - manager.elasticsearch # needed for elastic_curl_config state
+  - manager.kibana
 {% endif %}
 
 net.core.wmem_default:
diff --git a/salt/kibana/files/curl.config.template b/salt/kibana/files/curl.config.template
new file mode 100644
index 000000000..7ac434017
--- /dev/null
+++ b/salt/kibana/files/curl.config.template
@@ -0,0 +1 @@
+user = "{{ salt['pillar.get']('elasticsearch:auth:users:so_kibana_user:user', 'NO_USER_SET') }}:{{ salt['pillar.get']('elasticsearch:auth:users:so_kibana_user:pass', 'NO_PW_SET') }}"
diff --git a/salt/manager/init.sls b/salt/manager/init.sls
index e808325ef..cbe3455fe 100644
--- a/salt/manager/init.sls
+++ b/salt/manager/init.sls
@@ -16,6 +16,7 @@ include:
   - kibana.secrets
   - manager.sync_es_users
   - manager.elasticsearch
+  - manager.kibana
 
 repo_log_dir:
   file.directory:
diff --git a/salt/manager/kibana.sls b/salt/manager/kibana.sls
new file mode 100644
index 000000000..eb2b968d6
--- /dev/null
+++ b/salt/manager/kibana.sls
@@ -0,0 +1,7 @@
+elastic_curl_config_distributed:
+  file.managed:
+    - name: /opt/so/conf/kibana/curl.config
+    - source: salt://kibana/files/curl.config.template
+    - template: jinja
+    - mode: 600
+    - show_changes: False

From 1d6e32fbab8724f013044a50c427db5489253c8e Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Tue, 24 Oct 2023 15:08:50 -0400
Subject: [PATCH 264/417] dont exit if salt isnt running

---
 salt/manager/tools/sbin/soup | 4 +---
 1 file changed, 1 insertion(+), 3 deletions(-)

diff --git a/salt/manager/tools/sbin/soup b/salt/manager/tools/sbin/soup
index 58011c379..fcf8dd187 100755
--- a/salt/manager/tools/sbin/soup
+++ b/salt/manager/tools/sbin/soup
@@ -460,7 +460,6 @@ stop_salt_master() {
     echo ""
     echo "Killing any queued Salt jobs on the manager."
     pkill -9 -ef "/usr/bin/python3 /bin/salt" >> $SOUP_LOG 2>&1
-    set -e
 
     echo ""
     echo "Storing salt-master pid."
@@ -468,6 +467,7 @@ stop_salt_master() {
     echo "Found salt-master PID $MASTERPID"
     systemctl_func "stop" "salt-master"
     timeout 30 tail --pid=$MASTERPID -f /dev/null || echo "salt-master still running at $(date +"%T.%6N") after waiting 30s. We cannot kill due to systemd restart option."
+    set -e
 }
 
 stop_salt_minion() {
@@ -480,14 +480,12 @@ stop_salt_minion() {
     echo ""
     echo "Killing Salt jobs on this node."
     salt-call saltutil.kill_all_jobs --local
-    set -e
 
     echo "Storing salt-minion pid."
     MINIONPID=$(pgrep -f '/opt/saltstack/salt/bin/python3.10 /usr/bin/salt-minion' | head -1)
     echo "Found salt-minion PID $MINIONPID"
     systemctl_func "stop" "salt-minion"
 
-    set +e
     timeout 30 tail --pid=$MINIONPID -f /dev/null || echo "Killing salt-minion at $(date +"%T.%6N") after waiting 30s" && pkill -9 -ef /usr/bin/salt-minion
     set -e
 }

From 3e343bff84ec0cc60682e08135dee528e990e5f8 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Tue, 24 Oct 2023 16:40:51 -0400
Subject: [PATCH 265/417] fix line to log properly

---
 salt/manager/tools/sbin/soup | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/salt/manager/tools/sbin/soup b/salt/manager/tools/sbin/soup
index fcf8dd187..dee39ac59 100755
--- a/salt/manager/tools/sbin/soup
+++ b/salt/manager/tools/sbin/soup
@@ -827,7 +827,7 @@ main() {
     echo "Hotfix applied"
     update_version
     enable_highstate
-    wait_for_salt_minion "$MINIONID" "5" '/dev/stdout' 2>&1 | tee -a "$SOUP_LOG" || fail "Salt minion was not running or ready."
+    (wait_for_salt_minion "$MINIONID" "5" '/dev/stdout' || fail "Salt minion was not running or ready.") 2>&1 | tee -a "$SOUP_LOG"
     highstate
   else
     echo ""
@@ -934,7 +934,7 @@ main() {
     echo ""
     echo "Running a highstate. This could take several minutes."
     set +e
-    wait_for_salt_minion "$MINIONID" "5" '/dev/stdout' 2>&1 | tee -a "$SOUP_LOG" || fail "Salt minion was not running or ready."
+    (wait_for_salt_minion "$MINIONID" "5" '/dev/stdout' || fail "Salt minion was not running or ready.") 2>&1 | tee -a "$SOUP_LOG"
     highstate
     set -e
 
@@ -950,7 +950,7 @@ main() {
     set -e
     
     echo "Running a highstate to complete the Security Onion upgrade on this manager. This could take several minutes."
-    wait_for_salt_minion "$MINIONID" "5" '/dev/stdout' 2>&1 | tee -a "$SOUP_LOG" || fail "Salt minion was not running or ready."
+    (wait_for_salt_minion "$MINIONID" "5" '/dev/stdout' || fail "Salt minion was not running or ready.") 2>&1 | tee -a "$SOUP_LOG"
     highstate
     postupgrade_changes
     [[ $is_airgap -eq 0 ]] && unmount_update

From dfe707ab644aabdf65c59497ac6077f9cab7c1d5 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Tue, 24 Oct 2023 17:26:39 -0400
Subject: [PATCH 266/417] fix issue/11610

---
 salt/pcap/config.sls     | 2 +-
 salt/suricata/config.sls | 2 +-
 salt/zeek/config.sls     | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/salt/pcap/config.sls b/salt/pcap/config.sls
index 26236e2ff..9ea5cee65 100644
--- a/salt/pcap/config.sls
+++ b/salt/pcap/config.sls
@@ -41,7 +41,7 @@ pcap_sbin:
     - file_mode: 755
 
 {% if PCAPBPF %}
-   {% set BPF_CALC = salt['cmd.script']('/usr/sbin/so-bpf-compile', GLOBALS.sensor.interface + ' ' + PCAPBPF|join(" "),cwd='/root') %}
+   {% set BPF_CALC = salt['cmd.script']('salt://common/tools/sbin/so-bpf-compile', GLOBALS.sensor.interface + ' ' + PCAPBPF|join(" "),cwd='/root') %}
    {% if BPF_CALC['stderr'] == "" %}
       {% set BPF_COMPILED =  ",\\\"--filter=" + BPF_CALC['stdout'] + "\\\""  %}
    {% else  %}
diff --git a/salt/suricata/config.sls b/salt/suricata/config.sls
index 9da40660e..8d5279349 100644
--- a/salt/suricata/config.sls
+++ b/salt/suricata/config.sls
@@ -129,7 +129,7 @@ surithresholding:
 
 # BPF compilation and configuration
 {% if SURICATABPF %}
-   {% set BPF_CALC = salt['cmd.script']('/usr/sbin/so-bpf-compile', GLOBALS.sensor.interface + ' ' + SURICATABPF|join(" "),cwd='/root') %}
+   {% set BPF_CALC = salt['cmd.script']('salt://common/tools/sbin/so-bpf-compile', GLOBALS.sensor.interface + ' ' + SURICATABPF|join(" "),cwd='/root') %}
    {% if BPF_CALC['stderr'] == "" %}
       {% set BPF_STATUS = 1  %}
    {% else  %}
diff --git a/salt/zeek/config.sls b/salt/zeek/config.sls
index 703da8d85..7fdbd8560 100644
--- a/salt/zeek/config.sls
+++ b/salt/zeek/config.sls
@@ -152,7 +152,7 @@ plcronscript:
 
 # BPF compilation and configuration
 {% if ZEEKBPF %}
-   {% set BPF_CALC = salt['cmd.script']('/usr/sbin/so-bpf-compile', GLOBALS.sensor.interface + ' ' + ZEEKBPF|join(" "),cwd='/root') %}
+   {% set BPF_CALC = salt['cmd.script']('salt://common/tools/sbin/so-bpf-compile', GLOBALS.sensor.interface + ' ' + ZEEKBPF|join(" "),cwd='/root') %}
    {% if BPF_CALC['stderr'] == "" %}
        {% set BPF_STATUS = 1  %}
   {% else  %}

From 3ad480453a192c9fada8bf3aae3d6dd254029093 Mon Sep 17 00:00:00 2001
From: defensivedepth <josh@defensivedepth.com>
Date: Wed, 25 Oct 2023 07:20:07 -0400
Subject: [PATCH 267/417] Rename to remove dupe

---
 salt/manager/kibana.sls | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/salt/manager/kibana.sls b/salt/manager/kibana.sls
index eb2b968d6..f9aad3f05 100644
--- a/salt/manager/kibana.sls
+++ b/salt/manager/kibana.sls
@@ -1,4 +1,4 @@
-elastic_curl_config_distributed:
+kibana_curl_config_distributed:
   file.managed:
     - name: /opt/so/conf/kibana/curl.config
     - source: salt://kibana/files/curl.config.template

From a66006c8a639491ecd13aca6f0357c7cd69d5978 Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Wed, 25 Oct 2023 09:04:23 -0400
Subject: [PATCH 268/417] minor updates

---
 salt/kratos/map.jinja       | 2 +-
 salt/kratos/soc_kratos.yaml | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/salt/kratos/map.jinja b/salt/kratos/map.jinja
index 6d1e2917c..a2477098d 100644
--- a/salt/kratos/map.jinja
+++ b/salt/kratos/map.jinja
@@ -21,6 +21,6 @@
 
 {% set KRATOSMERGED = salt['pillar.get']('kratos', default=KRATOSDEFAULTS.kratos, merge=true) %}
 
-{% if KRATOSMERGED.oidc.enabled and 'oidc' in salt['pillar.get']('licensed_features') %}
+{% if KRATOSMERGED.oidc.enabled and 'oidc' in salt['pillar.get']('features') %}
 {%   do KRATOSMERGED.config.selfservice.methods.update({'oidc': {'enabled': true, 'config': {'providers': [KRATOSMERGED.oidc.config]}}}) %}
 {% endif %}
\ No newline at end of file
diff --git a/salt/kratos/soc_kratos.yaml b/salt/kratos/soc_kratos.yaml
index 0ac2fcd44..6285bf1ad 100644
--- a/salt/kratos/soc_kratos.yaml
+++ b/salt/kratos/soc_kratos.yaml
@@ -103,10 +103,10 @@ kratos:
       methods:
         password:
           enabled: 
-            description: Set to True to enable traditional password authentication to SOC. Typically set to true, except when exclusively using OIDC authentication. 
+            description: Set to True to enable traditional password authentication to SOC. Typically set to true, except when exclusively using OIDC authentication. Some external tool interfaces may not be accessible if local password authentication is disabled.
             global: True
             advanced: True
-            helpLink: kratos.html
+            helpLink: oidc.html
           config:
             haveibeenpwned_enabled:
               description: Set to True to check if a newly chosen password has ever been found in a published list of previously-compromised passwords. Requires outbound Internet connectivity when enabled.

From a3e6b1ee1d495f8dae23175bf762378873d91507 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Wed, 25 Oct 2023 09:26:36 -0400
Subject: [PATCH 269/417] change generate_ssl wait_for_salt_minion

---
 setup/so-functions | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/setup/so-functions b/setup/so-functions
index b64daaa92..fd5bc790f 100755
--- a/setup/so-functions
+++ b/setup/so-functions
@@ -1258,7 +1258,7 @@ generate_ssl() {
 	# if the install type is a manager then we need to wait for the minion to be ready before trying
 	# to run the ssl state since we need the minion to sign the certs
 	if [[ "$install_type" =~ ^(EVAL|MANAGER|MANAGERSEARCH|STANDALONE|IMPORT|HELIXSENSOR)$ ]]; then
-		wait_for_salt_minion "$MINION_ID" "5" "$setup_log" || fail_setup
+		(wait_for_salt_minion "$MINION_ID" "5" '/dev/stdout' || fail_setup) 2>&1 | tee -a "$setup_log"
 	fi
 	info "Applying SSL state"
 	logCmd "salt-call state.apply ssl -l info"

From c41e19ad0b301f1deae35365e62544e987045fdd Mon Sep 17 00:00:00 2001
From: Josh Patterson <josh.patterson@securityonionsolutions.com>
Date: Wed, 25 Oct 2023 11:01:13 -0400
Subject: [PATCH 270/417] Revert "Upgrade/salt3006.3"

---
 salt/common/tools/sbin/so-common    |   75 +-
 salt/manager/tools/sbin/soup        |   62 +-
 salt/salt/map.jinja                 |    2 +-
 salt/salt/master.defaults.yaml      |    2 +-
 salt/salt/minion.defaults.yaml      |    2 +-
 salt/salt/scripts/bootstrap-salt.sh | 2102 +++------------------------
 setup/so-functions                  |    5 +-
 7 files changed, 251 insertions(+), 1999 deletions(-)

diff --git a/salt/common/tools/sbin/so-common b/salt/common/tools/sbin/so-common
index 87f40c9d4..fc14e9d0a 100755
--- a/salt/common/tools/sbin/so-common
+++ b/salt/common/tools/sbin/so-common
@@ -152,18 +152,15 @@ check_salt_master_status() {
     return 0
 }
 
-# this is only intended to be used to check the status of the minion
 check_salt_minion_status() {
-	local minion="$1"
-	local timeout="${2:-5}"
-	local logfile="${3:-'/dev/stdout'}"
-	echo "Checking if the salt minion will respond to jobs" >> "$logfile" 2>&1
-	salt "$minion" test.ping -t $timeout > /dev/null 2>&1
+	local timeout="${1:-5}"
+	echo "Checking if the salt minion will respond to jobs" >> "$setup_log" 2>&1
+	salt "$MINION_ID" test.ping -t $timeout > /dev/null 2>&1
 	local status=$?
 	if [ $status -gt 0 ]; then
-		echo "  Minion did not respond" >> "$logfile" 2>&1
+		echo "  Minion did not respond" >> "$setup_log" 2>&1
 	else
-		echo "  Received job response from salt minion" >> "$logfile" 2>&1
+		echo "  Received job response from salt minion" >> "$setup_log" 2>&1
 	fi
 
 	return $status
@@ -443,24 +440,6 @@ run_check_net_err() {
 	fi
 }
 
-wait_for_salt_minion() {
-	local minion="$1"
-	local timeout="${2:-5}"
-	local logfile="${3:-'/dev/stdout'}"
-	retry 60 5 "journalctl -u salt-minion.service | grep 'Minion is ready to receive requests'" >> "$logfile" 2>&1 || fail
-	local attempt=0
-	# each attempts would take about 15 seconds
-	local maxAttempts=20
-	until check_salt_minion_status "$minion" "$timeout" "$logfile"; do
-		attempt=$((attempt+1))
-		if [[ $attempt -eq $maxAttempts ]]; then
-			return 1
-		fi
-		sleep 10
-	done
-	return 0
-}
-
 salt_minion_count() {
 	local MINIONDIR="/opt/so/saltstack/local/pillar/minions"
 	MINIONCOUNT=$(ls -la $MINIONDIR/*.sls | grep -v adv_ | wc -l)
@@ -473,51 +452,19 @@ set_os() {
 			OS=rocky
 			OSVER=9
 			is_rocky=true
-			is_rpm=true
 		elif grep -q "CentOS Stream release 9" /etc/redhat-release; then
 			OS=centos
 			OSVER=9
 			is_centos=true
-			is_rpm=true
-		elif grep -q "AlmaLinux release 9" /etc/redhat-release; then
-			OS=alma
+		elif grep -q "Oracle Linux Server release 9" /etc/system-release; then
+			OS=oel
 			OSVER=9
-			is_alma=true
-			is_rpm=true
-		elif grep -q "Red Hat Enterprise Linux release 9" /etc/redhat-release; then
-			if [ -f /etc/oracle-release ]; then
-				OS=oracle
-				OSVER=9
-				is_oracle=true
-				is_rpm=true
-			else
-				OS=rhel
-				OSVER=9
-				is_rhel=true
-				is_rpm=true
-			fi
+			is_oracle=true
 		fi
 		cron_service_name="crond"
-	elif [ -f /etc/os-release ]; then
-		if grep -q "UBUNTU_CODENAME=focal" /etc/os-release; then
-			OSVER=focal
-			UBVER=20.04
-			OS=ubuntu
-			is_ubuntu=true
-			is_deb=true
-		elif grep -q "UBUNTU_CODENAME=jammy" /etc/os-release; then
-			OSVER=jammy
-			UBVER=22.04
-			OS=ubuntu
-			is_ubuntu=true
-			is_deb=true
-		elif grep -q "VERSION_CODENAME=bookworm" /etc/os-release; then
-			OSVER=bookworm
-			DEBVER=12
-			is_debian=true
-			OS=debian
-			is_deb=true
-		fi
+	else
+		OS=ubuntu
+		is_ubuntu=true
 		cron_service_name="cron"
 	fi
 }
diff --git a/salt/manager/tools/sbin/soup b/salt/manager/tools/sbin/soup
index dee39ac59..fc07765b8 100755
--- a/salt/manager/tools/sbin/soup
+++ b/salt/manager/tools/sbin/soup
@@ -460,6 +460,7 @@ stop_salt_master() {
     echo ""
     echo "Killing any queued Salt jobs on the manager."
     pkill -9 -ef "/usr/bin/python3 /bin/salt" >> $SOUP_LOG 2>&1
+    set -e
 
     echo ""
     echo "Storing salt-master pid."
@@ -467,7 +468,6 @@ stop_salt_master() {
     echo "Found salt-master PID $MASTERPID"
     systemctl_func "stop" "salt-master"
     timeout 30 tail --pid=$MASTERPID -f /dev/null || echo "salt-master still running at $(date +"%T.%6N") after waiting 30s. We cannot kill due to systemd restart option."
-    set -e
 }
 
 stop_salt_minion() {
@@ -480,12 +480,14 @@ stop_salt_minion() {
     echo ""
     echo "Killing Salt jobs on this node."
     salt-call saltutil.kill_all_jobs --local
+    set -e
 
     echo "Storing salt-minion pid."
     MINIONPID=$(pgrep -f '/opt/saltstack/salt/bin/python3.10 /usr/bin/salt-minion' | head -1)
     echo "Found salt-minion PID $MINIONPID"
     systemctl_func "stop" "salt-minion"
 
+    set +e
     timeout 30 tail --pid=$MINIONPID -f /dev/null || echo "Killing salt-minion at $(date +"%T.%6N") after waiting 30s" && pkill -9 -ef /usr/bin/salt-minion
     set -e
 }
@@ -618,7 +620,6 @@ upgrade_check_salt() {
   if [ "$INSTALLEDSALTVERSION" == "$NEWSALTVERSION" ]; then
     echo "You are already running the correct version of Salt for Security Onion."
   else
-    echo "Salt needs to be upgraded to $NEWSALTVERSION."
     UPGRADESALT=1
   fi
 }   
@@ -627,48 +628,22 @@ upgrade_salt() {
   SALTUPGRADED=True
   echo "Performing upgrade of Salt from $INSTALLEDSALTVERSION to $NEWSALTVERSION."
   echo ""
-  # If rhel family
-  if [[ $is_rpm ]]; then
+  # If CentOS
+  if [[ $OS == 'centos' ]]; then
     echo "Removing yum versionlock for Salt."
     echo ""
     yum versionlock delete "salt-*"
     echo "Updating Salt packages."
     echo ""
     set +e
-    # if oracle run with -r to ignore repos set by bootstrap
-    if [[ $OS == 'oracle' ]]; then
-      run_check_net_err \
-      "sh $UPDATE_DIR/salt/salt/scripts/bootstrap-salt.sh -X -r -F -M -x python3 stable \"$NEWSALTVERSION\"" \
-      "Could not update salt, please check $SOUP_LOG for details."
-    # if another rhel family variant we want to run without -r to allow the bootstrap script to manage repos
-    else
-      run_check_net_err \
-      "sh $UPDATE_DIR/salt/salt/scripts/bootstrap-salt.sh -X -F -M -x python3 stable \"$NEWSALTVERSION\"" \
-      "Could not update salt, please check $SOUP_LOG for details."
-    fi
+    run_check_net_err \
+    "sh $UPDATE_DIR/salt/salt/scripts/bootstrap-salt.sh -X -r -F -M -x python3 stable \"$NEWSALTVERSION\"" \
+    "Could not update salt, please check $SOUP_LOG for details."
     set -e
     echo "Applying yum versionlock for Salt."
     echo ""
     yum versionlock add "salt-*"
   # Else do Ubuntu things
-  elif [[ $is_deb ]]; then
-    echo "Removing apt hold for Salt."
-    echo ""
-    apt-mark unhold "salt-common"
-    apt-mark unhold "salt-master"
-    apt-mark unhold "salt-minion"
-    echo "Updating Salt packages."
-    echo ""
-    set +e
-    run_check_net_err \
-    "sh $UPDATE_DIR/salt/salt/scripts/bootstrap-salt.sh -X -F -M -x python3 stable \"$NEWSALTVERSION\"" \
-    "Could not update salt, please check $SOUP_LOG for details."
-    set -e
-    echo "Applying apt hold for Salt."
-    echo ""
-    apt-mark hold "salt-common"
-    apt-mark hold "salt-master"
-    apt-mark hold "salt-minion"
   fi
 
   echo "Checking if Salt was upgraded."
@@ -680,7 +655,7 @@ upgrade_salt() {
     echo "Once the issue is resolved, run soup again."
     echo "Exiting."
     echo ""
-    exit 1
+    exit 0
   else
     echo "Salt upgrade success."
     echo ""
@@ -810,7 +785,7 @@ main() {
   if [[ $is_airgap -eq 0 ]]; then
     yum clean all
     check_os_updates
-  elif [[ $OS == 'oracle' ]]; then
+  elif [[ $OS == 'oel' ]]; then
     # sync remote repo down to local if not airgap
     repo_sync
     check_os_updates
@@ -827,8 +802,7 @@ main() {
     echo "Hotfix applied"
     update_version
     enable_highstate
-    (wait_for_salt_minion "$MINIONID" "5" '/dev/stdout' || fail "Salt minion was not running or ready.") 2>&1 | tee -a "$SOUP_LOG"
-    highstate
+    salt-call state.highstate -l info queue=True
   else
     echo ""
     echo "Performing upgrade from Security Onion $INSTALLEDVERSION to Security Onion $NEWVERSION."
@@ -864,14 +838,6 @@ main() {
       echo "Upgrading Salt"
       # Update the repo files so it can actually upgrade
       upgrade_salt
-
-      # for Debian based distro, we need to stop salt again after upgrade output below is from bootstrap-salt
-      # *  WARN: Not starting daemons on Debian based distributions
-      #    is not working mostly because starting them is the default behaviour.
-      if [[ $is_deb ]]; then
-        stop_salt_minion
-        stop_salt_master
-      fi
     fi
 
     preupgrade_changes
@@ -934,8 +900,7 @@ main() {
     echo ""
     echo "Running a highstate. This could take several minutes."
     set +e
-    (wait_for_salt_minion "$MINIONID" "5" '/dev/stdout' || fail "Salt minion was not running or ready.") 2>&1 | tee -a "$SOUP_LOG"
-    highstate
+    salt-call state.highstate -l info queue=True
     set -e
 
     stop_salt_master
@@ -950,8 +915,7 @@ main() {
     set -e
     
     echo "Running a highstate to complete the Security Onion upgrade on this manager. This could take several minutes."
-    (wait_for_salt_minion "$MINIONID" "5" '/dev/stdout' || fail "Salt minion was not running or ready.") 2>&1 | tee -a "$SOUP_LOG"
-    highstate
+    salt-call state.highstate -l info queue=True
     postupgrade_changes
     [[ $is_airgap -eq 0 ]] && unmount_update
 
diff --git a/salt/salt/map.jinja b/salt/salt/map.jinja
index 131ff46ca..1120685fb 100644
--- a/salt/salt/map.jinja
+++ b/salt/salt/map.jinja
@@ -23,7 +23,7 @@
   {% if grains.os|lower in ['Rocky', 'redhat', 'CentOS Stream'] %}
       {% set UPGRADECOMMAND = 'yum clean all ; /usr/sbin/bootstrap-salt.sh -s 120 -r -F -x python3 stable ' ~ SALTVERSION %}
   {% elif grains.os_family|lower == 'debian' %}
-    {% set UPGRADECOMMAND = '/usr/sbin/bootstrap-salt.sh -s 120 -F -x python3 stable ' ~ SALTVERSION %}
+    {% set UPGRADECOMMAND = '/usr/sbin/bootstrap-salt.sh -s 120 -r -F -x python3 stable ' ~ SALTVERSION %}
   {% endif %}
 {% else %}
   {% set UPGRADECOMMAND = 'echo Already running Salt Minion version ' ~ SALTVERSION %}
diff --git a/salt/salt/master.defaults.yaml b/salt/salt/master.defaults.yaml
index 40b6f5268..126039802 100644
--- a/salt/salt/master.defaults.yaml
+++ b/salt/salt/master.defaults.yaml
@@ -2,4 +2,4 @@
 # When updating the salt version, also update the version in securityonion-builds/images/iso-task/Dockerfile and saltify function in so-functions
 salt:
   master:
-    version: 3006.3
+    version: 3006.1
diff --git a/salt/salt/minion.defaults.yaml b/salt/salt/minion.defaults.yaml
index 71fd18f96..7e1540d17 100644
--- a/salt/salt/minion.defaults.yaml
+++ b/salt/salt/minion.defaults.yaml
@@ -2,6 +2,6 @@
 # When updating the salt version, also update the version in securityonion-builds/images/iso-task/Dockerfile and saltify function in so-functions
 salt:
   minion:
-    version: 3006.3
+    version: 3006.1
     check_threshold: 3600 # in seconds, threshold used for so-salt-minion-check. any value less than 600 seconds may cause a lot of salt-minion restarts since the job to touch the file occurs every 5-8 minutes by default
     service_start_delay: 30 # in seconds.
diff --git a/salt/salt/scripts/bootstrap-salt.sh b/salt/salt/scripts/bootstrap-salt.sh
index a016524e6..47d25949c 100644
--- a/salt/salt/scripts/bootstrap-salt.sh
+++ b/salt/salt/scripts/bootstrap-salt.sh
@@ -14,7 +14,7 @@
 #
 #          BUGS: https://github.com/saltstack/salt-bootstrap/issues
 #
-#     COPYRIGHT: (c) 2012-2022 by the SaltStack Team, see AUTHORS.rst for more
+#     COPYRIGHT: (c) 2012-2021 by the SaltStack Team, see AUTHORS.rst for more
 #                details.
 #
 #       LICENSE: Apache 2.0
@@ -23,7 +23,7 @@
 #======================================================================================================================
 set -o nounset                              # Treat unset variables as an error
 
-__ScriptVersion="2023.08.03"
+__ScriptVersion="2021.09.17"
 __ScriptName="bootstrap-salt.sh"
 
 __ScriptFullName="$0"
@@ -224,6 +224,7 @@ _KEEP_TEMP_FILES=${BS_KEEP_TEMP_FILES:-$BS_FALSE}
 _TEMP_CONFIG_DIR="null"
 _SALTSTACK_REPO_URL="https://github.com/saltstack/salt.git"
 _SALT_REPO_URL=${_SALTSTACK_REPO_URL}
+_DOWNSTREAM_PKG_REPO=$BS_FALSE
 _TEMP_KEYS_DIR="null"
 _SLEEP="${__DEFAULT_SLEEP}"
 _INSTALL_MASTER=$BS_FALSE
@@ -267,8 +268,6 @@ _CUSTOM_MASTER_CONFIG="null"
 _CUSTOM_MINION_CONFIG="null"
 _QUIET_GIT_INSTALLATION=$BS_FALSE
 _REPO_URL="repo.saltproject.io"
-_ONEDIR_DIR="salt"
-_ONEDIR_NIGHTLY_DIR="salt-dev/${_ONEDIR_DIR}"
 _PY_EXE="python3"
 _INSTALL_PY="$BS_FALSE"
 _TORNADO_MAX_PY3_VERSION="5.0"
@@ -276,9 +275,6 @@ _POST_NEON_INSTALL=$BS_FALSE
 _MINIMUM_PIP_VERSION="9.0.1"
 _MINIMUM_SETUPTOOLS_VERSION="9.1"
 _POST_NEON_PIP_INSTALL_ARGS="--prefix=/usr"
-_PIP_DOWNLOAD_ARGS=""
-_QUICK_START="$BS_FALSE"
-_AUTO_ACCEPT_MINION_KEYS="$BS_FALSE"
 
 # Defaults for install arguments
 ITYPE="stable"
@@ -294,130 +290,110 @@ __usage() {
   Usage :  ${__ScriptName} [options] <install-type> [install-type-args]
 
   Installation types:
-    - stable               Install latest stable release. This is the default
-                           install type
-    - stable [branch]      Install latest version on a branch. Only supported
-                           for packages available at repo.saltproject.io
-    - stable [version]     Install a specific version. Only supported for
-                           packages available at repo.saltproject.io
-                           To pin a 3xxx minor version, specify it as 3xxx.0
-    - testing              RHEL-family specific: configure EPEL testing repo
-    - git                  Install from the head of the master branch
-    - git [ref]            Install from any git ref (such as a branch, tag, or
-                           commit)
-    - onedir               Install latest onedir release.
-    - onedir [version]     Install a specific version. Only supported for
-                           onedir packages available at repo.saltproject.io
-
-    - onedir_rc            Install latest onedir RC release.
-    - onedir_rc [version]  Install a specific version. Only supported for
-                           onedir RC packages available at repo.saltproject.io
-    - old-stable           Install latest old stable release.
-    - old-stable [branch]  Install latest version on a branch. Only supported
-                           for packages available at repo.saltproject.io
-    - old-stable [version] Install a specific version. Only supported for
-                           packages available at repo.saltproject.io
-                           To pin a 3xxx minor version, specify it as 3xxx.0
+    - stable              Install latest stable release. This is the default
+                          install type
+    - stable [branch]     Install latest version on a branch. Only supported
+                          for packages available at repo.saltproject.io
+    - stable [version]    Install a specific version. Only supported for
+                          packages available at repo.saltproject.io
+                          To pin a 3xxx minor version, specify it as 3xxx.0
+    - testing             RHEL-family specific: configure EPEL testing repo
+    - git                 Install from the head of the master branch
+    - git [ref]           Install from any git ref (such as a branch, tag, or
+                          commit)
 
   Examples:
     - ${__ScriptName}
     - ${__ScriptName} stable
-    - ${__ScriptName} stable 3006
-    - ${__ScriptName} stable 3006.1
+    - ${__ScriptName} stable 2017.7
+    - ${__ScriptName} stable 2017.7.2
     - ${__ScriptName} testing
     - ${__ScriptName} git
     - ${__ScriptName} git 2017.7
     - ${__ScriptName} git v2017.7.2
     - ${__ScriptName} git 06f249901a2e2f1ed310d58ea3921a129f214358
-    - ${__ScriptName} onedir
-    - ${__ScriptName} onedir 3006
-    - ${__ScriptName} onedir_rc
-    - ${__ScriptName} onedir_rc 3006
-    - ${__ScriptName} old-stable
-    - ${__ScriptName} old-stable 3005
-    - ${__ScriptName} old-stable 3005.1
-
 
   Options:
-    -a  Pip install all Python pkg dependencies for Salt. Requires -V to install
-        all pip pkgs into the virtualenv.
-        (Only available for Ubuntu based distributions)
-    -A  Pass the salt-master DNS name or IP. This will be stored under
-        \${BS_SALT_ETC_DIR}/minion.d/99-master-address.conf
-    -b  Assume that dependencies are already installed and software sources are
-        set up. If git is selected, git tree is still checked out as dependency
-        step.
+    -h  Display this message
+    -v  Display script version
+    -n  No colours
+    -D  Show debug output
     -c  Temporary configuration directory
-    -C  Only run the configuration function. Implies -F (forced overwrite).
-        To overwrite Master or Syndic configs, -M or -S, respectively, must
-        also be specified. Salt installation will be ommitted, but some of the
-        dependencies could be installed to write configuration with -j or -J.
+    -g  Salt Git repository URL. Default: ${_SALTSTACK_REPO_URL}
+    -w  Install packages from downstream package repository rather than
+        upstream, saltstack package repository. This is currently only
+        implemented for SUSE.
+    -k  Temporary directory holding the minion keys which will pre-seed
+        the master.
+    -s  Sleep time used when waiting for daemons to start, restart and when
+        checking for the services running. Default: ${__DEFAULT_SLEEP}
+    -L  Also install salt-cloud and required python-libcloud package
+    -M  Also install salt-master
+    -S  Also install salt-syndic
+    -N  Do not install salt-minion
+    -X  Do not start daemons after installation
     -d  Disables checking if Salt services are enabled to start on system boot.
         You can also do this by touching /tmp/disable_salt_checks on the target
         host. Default: \${BS_FALSE}
-    -D  Show debug output
-    -f  Force shallow cloning for git installations.
-        This may result in an "n/a" in the version number.
-    -F  Allow copied files to overwrite existing (config, init.d, etc)
-    -g  Salt Git repository URL. Default: ${_SALTSTACK_REPO_URL}
-    -h  Display this message
-    -H  Use the specified HTTP proxy for all download URLs (including https://).
-        For example: http://myproxy.example.com:3128
-    -i  Pass the salt-minion id. This will be stored under
-        \${BS_SALT_ETC_DIR}/minion_id
-    -I  If set, allow insecure connections while downloading any files. For
-        example, pass '--no-check-certificate' to 'wget' or '--insecure' to
-        'curl'. On Debian and Ubuntu, using this option with -U allows obtaining
-        GnuPG archive keys insecurely if distro has changed release signatures.
-    -j  Replace the Minion config file with data passed in as a JSON string. If
-        a Minion config file is found, a reasonable effort will be made to save
-        the file with a ".bak" extension. If used in conjunction with -C or -F,
-        no ".bak" file will be created as either of those options will force
-        a complete overwrite of the file.
-    -J  Replace the Master config file with data passed in as a JSON string. If
-        a Master config file is found, a reasonable effort will be made to save
-        the file with a ".bak" extension. If used in conjunction with -C or -F,
-        no ".bak" file will be created as either of those options will force
-        a complete overwrite of the file.
-    -k  Temporary directory holding the minion keys which will pre-seed
-        the master.
-    -K  If set, keep the temporary files in the temporary directories specified
-        with -c and -k
-    -l  Disable ssl checks. When passed, switches "https" calls to "http" where
-        possible.
-    -L  Also install salt-cloud and required python-libcloud package
-    -M  Also install salt-master
-    -n  No colours
-    -N  Do not install salt-minion
-    -p  Extra-package to install while installing Salt dependencies. One package
-        per -p flag. You are responsible for providing the proper package name.
     -P  Allow pip based installations. On some distributions the required salt
         packages or its dependencies are not available as a package for that
         distribution. Using this flag allows the script to use pip as a last
         resort method. NOTE: This only works for functions which actually
         implement pip based installations.
-    -q  Quiet salt installation from git (setup.py install -q)
-    -Q  Quickstart, install the Salt master and the Salt minion.
-        And automatically accept the minion key.
+    -U  If set, fully upgrade the system prior to bootstrapping Salt
+    -I  If set, allow insecure connections while downloading any files. For
+        example, pass '--no-check-certificate' to 'wget' or '--insecure' to
+        'curl'. On Debian and Ubuntu, using this option with -U allows obtaining
+        GnuPG archive keys insecurely if distro has changed release signatures.
+    -F  Allow copied files to overwrite existing (config, init.d, etc)
+    -K  If set, keep the temporary files in the temporary directories specified
+        with -c and -k
+    -C  Only run the configuration function. Implies -F (forced overwrite).
+        To overwrite Master or Syndic configs, -M or -S, respectively, must
+        also be specified. Salt installation will be ommitted, but some of the
+        dependencies could be installed to write configuration with -j or -J.
+    -A  Pass the salt-master DNS name or IP. This will be stored under
+        \${BS_SALT_ETC_DIR}/minion.d/99-master-address.conf
+    -i  Pass the salt-minion id. This will be stored under
+        \${BS_SALT_ETC_DIR}/minion_id
+    -p  Extra-package to install while installing Salt dependencies. One package
+        per -p flag. You are responsible for providing the proper package name.
+    -H  Use the specified HTTP proxy for all download URLs (including https://).
+        For example: http://myproxy.example.com:3128
+    -b  Assume that dependencies are already installed and software sources are
+        set up. If git is selected, git tree is still checked out as dependency
+        step.
+    -f  Force shallow cloning for git installations.
+        This may result in an "n/a" in the version number.
+    -l  Disable ssl checks. When passed, switches "https" calls to "http" where
+        possible.
+    -V  Install Salt into virtualenv
+        (only available for Ubuntu based distributions)
+    -a  Pip install all Python pkg dependencies for Salt. Requires -V to install
+        all pip pkgs into the virtualenv.
+        (Only available for Ubuntu based distributions)
+    -r  Disable all repository configuration performed by this script. This
+        option assumes all necessary repository configuration is already present
+        on the system.
     -R  Specify a custom repository URL. Assumes the custom repository URL
         points to a repository that mirrors Salt packages located at
         repo.saltproject.io. The option passed with -R replaces the
         "repo.saltproject.io". If -R is passed, -r is also set. Currently only
-        works on CentOS/RHEL and Debian based distributions and macOS.
-    -s  Sleep time used when waiting for daemons to start, restart and when
-        checking for the services running. Default: ${__DEFAULT_SLEEP}
-    -S  Also install salt-syndic
-    -r  Disable all repository configuration performed by this script. This
-        option assumes all necessary repository configuration is already present
-        on the system.
-    -U  If set, fully upgrade the system prior to bootstrapping Salt
-    -v  Display script version
-    -V  Install Salt into virtualenv
-        (only available for Ubuntu based distributions)
+        works on CentOS/RHEL and Debian based distributions.
+    -J  Replace the Master config file with data passed in as a JSON string. If
+        a Master config file is found, a reasonable effort will be made to save
+        the file with a ".bak" extension. If used in conjunction with -C or -F,
+        no ".bak" file will be created as either of those options will force
+        a complete overwrite of the file.
+    -j  Replace the Minion config file with data passed in as a JSON string. If
+        a Minion config file is found, a reasonable effort will be made to save
+        the file with a ".bak" extension. If used in conjunction with -C or -F,
+        no ".bak" file will be created as either of those options will force
+        a complete overwrite of the file.
+    -q  Quiet salt installation from git (setup.py install -q)
     -x  Changes the Python version used to install Salt.
         For CentOS 6 git installations python2.7 is supported.
-        Fedora git installation, CentOS 7, Ubuntu 18.04 support python3.
-    -X  Do not start daemons after installation
+        Fedora git installation, CentOS 7, Debian 9, Ubuntu 16.04 and 18.04 support python3.
     -y  Installs a different python version on host. Currently this has only been
         tested with CentOS 6 and is considered experimental. This will install the
         ius repo on the box if disable repo is false. This must be used in conjunction
@@ -430,7 +406,7 @@ EOT
 }   # ----------  end of function __usage  ----------
 
 
-while getopts ':hvnDc:g:Gyx:k:s:MSNXCPFUKIA:i:Lp:dH:bflV:J:j:rR:aqQ' opt
+while getopts ':hvnDc:g:Gyx:wk:s:MSNXCPFUKIA:i:Lp:dH:bflV:J:j:rR:aq' opt
 do
   case "${opt}" in
 
@@ -446,6 +422,7 @@ do
          echowarn "No need to provide this option anymore, now it is a default behavior."
          ;;
 
+    w )  _DOWNSTREAM_PKG_REPO=$BS_TRUE                  ;;
     k )  _TEMP_KEYS_DIR="$OPTARG"                       ;;
     s )  _SLEEP=$OPTARG                                 ;;
     M )  _INSTALL_MASTER=$BS_TRUE                       ;;
@@ -474,7 +451,6 @@ do
     J )  _CUSTOM_MASTER_CONFIG=$OPTARG                  ;;
     j )  _CUSTOM_MINION_CONFIG=$OPTARG                  ;;
     q )  _QUIET_GIT_INSTALLATION=$BS_TRUE               ;;
-    Q )  _QUICK_START=$BS_TRUE                          ;;
     x )  _PY_EXE="$OPTARG"                              ;;
     y )  _INSTALL_PY="$BS_TRUE"                         ;;
 
@@ -596,7 +572,7 @@ fi
 echoinfo "Running version: ${__ScriptVersion}"
 echoinfo "Executed by: ${CALLER}"
 echoinfo "Command line: '${__ScriptFullName} ${__ScriptArgs}'"
-echowarn "Running the unstable version of ${__ScriptName}"
+#echowarn "Running the unstable version of ${__ScriptName}"
 
 # Define installation type
 if [ "$#" -gt 0 ];then
@@ -606,17 +582,11 @@ if [ "$#" -gt 0 ];then
 fi
 
 # Check installation type
-if [ "$(echo "$ITYPE" | grep -E '(stable|testing|git|onedir|onedir_rc|old-stable)')" = "" ]; then
+if [ "$(echo "$ITYPE" | grep -E '(stable|testing|git)')" = "" ]; then
     echoerror "Installation type \"$ITYPE\" is not known..."
     exit 1
 fi
 
-# Due to our modifications to install_centos_onedir it is easiest to just lock down to only allowing stable install
-if [ "$(echo "$ITYPE" | grep stable)" = "" ]; then
-    echoerror "This script has been modified to only support stable installation type. Installation type \"$ITYPE\" is not allowed..."
-    exit 1
-fi
-
 # If doing a git install, check what branch/tag/sha will be checked out
 if [ "$ITYPE" = "git" ]; then
     if [ "$#" -eq 0 ];then
@@ -632,123 +602,23 @@ if [ "$ITYPE" = "git" ]; then
 # If doing stable install, check if version specified
 elif [ "$ITYPE" = "stable" ]; then
     if [ "$#" -eq 0 ];then
-        ONEDIR_REV="latest"
-        _ONEDIR_REV="latest"
-        ITYPE="onedir"
+        STABLE_REV="latest"
     else
-        if [ "$(echo "$1" | grep -E '^(nightly|latest|3005|3006)$')" != "" ]; then
-            ONEDIR_REV="$1"
-            _ONEDIR_REV="$1"
-            ITYPE="onedir"
-            shift
-        elif [ "$(echo "$1" | grep -E '^([3-9][0-5]{2}[5-9](\.[0-9]*)?)')" != "" ]; then
-            ONEDIR_REV="minor/$1"
-            _ONEDIR_REV="$1"
-            ITYPE="onedir"
-            shift
-        else
-            echo "Unknown stable version: $1 (valid: 3005, 3006, latest)"
-            exit 1
-        fi
-    fi
-
-# If doing old-stable install, check if version specified
-elif [ "$ITYPE" = "old-stable" ]; then
-    if [ "$#" -eq 0 ];then
-        ITYPE="stable"
-    else
-        if [ "$(echo "$1" | grep -E '^(3003|3004|3005)$')" != "" ]; then
+        if [ "$(echo "$1" | grep -E '^(latest|1\.6|1\.7|2014\.1|2014\.7|2015\.5|2015\.8|2016\.3|2016\.11|2017\.7|2018\.3|2019\.2|3000|3001|3002|3003|3004)$')" != "" ]; then
             STABLE_REV="$1"
-            ITYPE="stable"
             shift
-        elif [ "$(echo "$1" | grep -E '^([3-9][0-5]{3}(\.[0-9]*)?)$')" != "" ]; then
+        elif [ "$(echo "$1" | grep -E '^(2[0-9]*\.[0-9]*\.[0-9]*|[3-9][0-9]{3}(\.[0-9]*)?)$')" != "" ]; then
             # Handle the 3xxx.0 version as 3xxx archive (pin to minor) and strip the fake ".0" suffix
-            ITYPE="stable"
             STABLE_REV=$(echo "$1" | sed -E 's/^([3-9][0-9]{3})\.0$/\1/')
             if [ "$(uname)" != "Darwin" ]; then
                 STABLE_REV="archive/$STABLE_REV"
             fi
             shift
         else
-            echo "Unknown old stable version: $1 (valid: 3003, 3004, 3005)"
+            echo "Unknown stable version: $1 (valid: 1.6, 1.7, 2014.1, 2014.7, 2015.5, 2015.8, 2016.3, 2016.11, 2017.7, 2018.3, 2019.2, 3000, 3001, 3002, 3003, 3004, latest, \$MAJOR.\$MINOR.\$PATCH until 2019.2, \$MAJOR or \$MAJOR.\$PATCH starting from 3000)"
             exit 1
         fi
     fi
-
-elif [ "$ITYPE" = "onedir" ]; then
-    if [ "$#" -eq 0 ];then
-        ONEDIR_REV="latest"
-    else
-        if [ "$(echo "$1" | grep -E '^(nightly|latest|3005|3006)$')" != "" ]; then
-            ONEDIR_REV="$1"
-            shift
-        elif [ "$(echo "$1" | grep -E '^(3005(\.[0-9]*)?)')" != "" ]; then
-            # Handle the 3005.0 version as 3005 archive (pin to minor) and strip the fake ".0" suffix
-            ONEDIR_REV=$(echo "$1" | sed -E 's/^(3005)\.0$/\1/')
-            ONEDIR_REV="minor/$ONEDIR_REV"
-            shift
-        elif [ "$(echo "$1" | grep -E '^([3-9][0-9]{3}(\.[0-9]*)?)')" != "" ]; then
-            ONEDIR_REV="minor/$1"
-            shift
-        else
-            echo "Unknown onedir version: $1 (valid: 3005, 3006, latest, nightly.)"
-            exit 1
-        fi
-    fi
-
-elif [ "$ITYPE" = "onedir_rc" ]; then
-    # Change the _ONEDIR_DIR to be the location for the RC packages
-    _ONEDIR_DIR="salt_rc/salt"
-
-    # Change ITYPE to onedir so we use the regular onedir functions
-    ITYPE="onedir"
-
-    if [ "$#" -eq 0 ];then
-        ONEDIR_REV="latest"
-    else
-        if [ "$(echo "$1" | grep -E '^(latest)$')" != "" ]; then
-            ONEDIR_REV="$1"
-            shift
-        elif [ "$(echo "$1" | grep -E '^([3-9][0-9]{3}?rc[0-9]-[0-9]$)')" != "" ]; then
-            # Handle the 3xxx.0 version as 3xxx archive (pin to minor) and strip the fake ".0" suffix
-            #ONEDIR_REV=$(echo "$1" | sed -E 's/^([3-9][0-9]{3})\.0$/\1/')
-            ONEDIR_REV="minor/$1"
-            shift
-        elif [ "$(echo "$1" | grep -E '^([3-9][0-9]{3}\.[0-9]?rc[0-9]$)')" != "" ]; then
-            # Handle the 3xxx.0 version as 3xxx archive (pin to minor) and strip the fake ".0" suffix
-            #ONEDIR_REV=$(echo "$1" | sed -E 's/^([3-9][0-9]{3})\.0$/\1/')
-            ONEDIR_REV="minor/$1"
-            shift
-        else
-            echo "Unknown onedir_rc version: $1 (valid: 3005-1, latest.)"
-            exit 1
-        fi
-    fi
-fi
-
-# Doing a quick start, so install master
-# set master address to 127.0.0.1
-if [ "$_QUICK_START" -eq "$BS_TRUE" ]; then
-  # make install type is stable
-  ITYPE="stable"
-
-  # make sure the revision is latest
-  STABLE_REV="latest"
-  ONEDIR_REV="latest"
-
-  # make sure we're installing the master
-  _INSTALL_MASTER=$BS_TRUE
-
-  # override incase install minion
-  # is set to false
-  _INSTALL_MINION=$BS_TRUE
-
-  # Set master address to loopback IP
-  _SALT_MASTER_ADDRESS="127.0.0.1"
-
-  # Auto accept the minion key
-  # when the install is done.
-  _AUTO_ACCEPT_MINION_KEYS=$BS_TRUE
 fi
 
 # Check for any unparsed arguments. Should be an error.
@@ -954,18 +824,6 @@ __fetch_verify() {
     return 1
 }
 
-#---  FUNCTION  -------------------------------------------------------------------------------------------------------
-#         NAME:  __check_url_exists
-#  DESCRIPTION:  Checks if a URL exists
-#----------------------------------------------------------------------------------------------------------------------
-__check_url_exists() {
-  _URL="$1"
-  if curl --output /dev/null --silent --fail "${_URL}"; then
-    return 0
-  else
-    return 1
-  fi
-}
 #---  FUNCTION  -------------------------------------------------------------------------------------------------------
 #          NAME:  __gather_hardware_info
 #   DESCRIPTION:  Discover hardware information
@@ -1087,7 +945,7 @@ __strip_duplicates() {
 __sort_release_files() {
     KNOWN_RELEASE_FILES=$(echo "(arch|alpine|centos|debian|ubuntu|fedora|redhat|suse|\
         mandrake|mandriva|gentoo|slackware|turbolinux|unitedlinux|void|lsb|system|\
-        oracle|os|almalinux|rocky)(-|_)(release|version)" | sed -E 's:[[:space:]]::g')
+        oracle|os)(-|_)(release|version)" | sed -E 's:[[:space:]]::g')
     primary_release_files=""
     secondary_release_files=""
     # Sort know VS un-known files first
@@ -1101,7 +959,7 @@ __sort_release_files() {
     done
 
     # Now let's sort by know files importance, max important goes last in the max_prio list
-    max_prio="redhat-release centos-release oracle-release fedora-release almalinux-release rocky-release"
+    max_prio="redhat-release centos-release oracle-release fedora-release"
     for entry in $max_prio; do
         if [ "$(echo "${primary_release_files}" | grep "$entry")" != "" ]; then
             primary_release_files=$(echo "${primary_release_files}" | sed -e "s:\\(.*\\)\\($entry\\)\\(.*\\):\\2 \\1 \\3:g")
@@ -1170,8 +1028,6 @@ __gather_linux_system_info() {
         elif [ "${DISTRO_NAME}" = "Arch" ]; then
             DISTRO_NAME="Arch Linux"
             return
-        elif [ "${DISTRO_NAME}" = "Rocky" ]; then
-            DISTRO_NAME="Rocky Linux"
         fi
         rv=$(lsb_release -sr)
         [ "${rv}" != "" ] && DISTRO_VERSION=$(__parse_version_string "$rv")
@@ -1230,8 +1086,6 @@ __gather_linux_system_info() {
             unitedlinux        ) n="UnitedLinux"    ;;
             void               ) n="VoidLinux"      ;;
             oracle             ) n="Oracle Linux"   ;;
-            almalinux          ) n="AlmaLinux"      ;;
-            rocky              ) n="Rocky Linux"    ;;
             system             )
                 while read -r line; do
                     [ "${n}x" != "systemx" ] && break
@@ -1454,7 +1308,7 @@ __gather_system_info() {
 #----------------------------------------------------------------------------------------------------------------------
 # shellcheck disable=SC2034
 __ubuntu_derivatives_translation() {
-    UBUNTU_DERIVATIVES="(trisquel|linuxmint|linaro|elementary_os|neon|pop)"
+    UBUNTU_DERIVATIVES="(trisquel|linuxmint|linaro|elementary_os|neon)"
     # Mappings
     trisquel_6_ubuntu_base="12.04"
     linuxmint_13_ubuntu_base="12.04"
@@ -1467,8 +1321,6 @@ __ubuntu_derivatives_translation() {
     neon_16_ubuntu_base="16.04"
     neon_18_ubuntu_base="18.04"
     neon_20_ubuntu_base="20.04"
-    neon_22_ubuntu_base="22.04"
-    pop_22_ubuntu_base="22.04"
 
     # Translate Ubuntu derivatives to their base Ubuntu version
     match=$(echo "$DISTRO_NAME_L" | grep -E ${UBUNTU_DERIVATIVES})
@@ -1528,13 +1380,9 @@ __check_dpkg_architecture() {
             if [ "$_CUSTOM_REPO_URL" != "null" ]; then
                 warn_msg="Support for arm64 is experimental, make sure the custom repository used has the expected structure and contents."
             else
-                # Saltstack official repository has arm64 metadata beginning with Debian 11,
-                # use amd64 repositories on arm64 for anything older, since all pkgs are arch-independent
-                if [ "$DISTRO_NAME_L" = "debian" ] && [ "$DISTRO_MAJOR_VERSION" -lt 11 ]; then
-                  __REPO_ARCH="amd64"
-                else
-                  __REPO_ARCH="arm64"
-                fi
+                # Saltstack official repository does not yet have arm64 metadata,
+                # use amd64 repositories on arm64, since all pkgs are arch-independent
+                __REPO_ARCH="amd64"
                 __REPO_ARCH_DEB="deb [signed-by=/usr/share/keyrings/salt-archive-keyring.gpg arch=$__REPO_ARCH]"
                 warn_msg="Support for arm64 packages is experimental and might rely on architecture-independent packages from the amd64 repository."
             fi
@@ -1614,9 +1462,6 @@ __ubuntu_codename_translation() {
         "21")
             DISTRO_CODENAME="hirsute"
             ;;
-        "22")
-            DISTRO_CODENAME="jammy"
-            ;;
         *)
             DISTRO_CODENAME="trusty"
             ;;
@@ -1643,12 +1488,10 @@ __debian_derivatives_translation() {
     devuan_1_debian_base="8.0"
     devuan_2_debian_base="9.0"
     kali_1_debian_base="7.0"
-    kali_2021_debian_base="10.0"
     linuxmint_1_debian_base="8.0"
     raspbian_8_debian_base="8.0"
     raspbian_9_debian_base="9.0"
     raspbian_10_debian_base="10.0"
-    raspbian_11_debian_base="11.0"
     bunsenlabs_9_debian_base="9.0"
     turnkey_9_debian_base="9.0"
 
@@ -1716,14 +1559,6 @@ __debian_codename_translation() {
         "11")
             DISTRO_CODENAME="bullseye"
             ;;
-        "12")
-            DISTRO_CODENAME="bookworm"
-            # FIXME - TEMPORARY
-            # use bullseye packages until bookworm packages are available
-            DISTRO_CODENAME="bullseye"
-            DISTRO_MAJOR_VERSION=11
-            rv=11
-            ;;
         *)
             DISTRO_CODENAME="stretch"
             ;;
@@ -1755,13 +1590,11 @@ __check_end_of_life_versions() {
             #  = 17.04, 17.10
             #  = 18.10
             #  = 19.04, 19.10
-            #  = 20.10
             if [ "$DISTRO_MAJOR_VERSION" -lt 16 ] || \
                 [ "$DISTRO_MAJOR_VERSION" -eq 17 ] || \
                 [ "$DISTRO_MAJOR_VERSION" -eq 19 ] || \
                 { [ "$DISTRO_MAJOR_VERSION" -eq 16 ] && [ "$DISTRO_MINOR_VERSION" -eq 10 ]; } || \
-                { [ "$DISTRO_MAJOR_VERSION" -eq 18 ] && [ "$DISTRO_MINOR_VERSION" -eq 10 ]; } || \
-                { [ "$DISTRO_MAJOR_VERSION" -eq 20 ] && [ "$DISTRO_MINOR_VERSION" -eq 10 ]; }; then
+                { [ "$DISTRO_MAJOR_VERSION" -eq 18 ] && [ "$DISTRO_MINOR_VERSION" -eq 10 ]; }; then
                 echoerror "End of life distributions are not supported."
                 echoerror "Please consider upgrading to the next stable. See:"
                 echoerror "    https://wiki.ubuntu.com/Releases"
@@ -1979,14 +1812,14 @@ elif [ "${DISTRO_NAME_L}" = "debian" ]; then
   __debian_codename_translation
 fi
 
-if [ "$(echo "${DISTRO_NAME_L}" | grep -E '(debian|ubuntu|centos|gentoo|red_hat|oracle|scientific|amazon|fedora|macosx|almalinux|rocky)')" = "" ] && [ "$ITYPE" = "stable" ] && [ "$STABLE_REV" != "latest" ]; then
+if [ "$(echo "${DISTRO_NAME_L}" | grep -E '(debian|ubuntu|centos|gentoo|red_hat|oracle|scientific|amazon|fedora|macosx)')" = "" ] && [ "$ITYPE" = "stable" ] && [ "$STABLE_REV" != "latest" ]; then
     echoerror "${DISTRO_NAME} does not have major version pegged packages support"
     exit 1
 fi
 
 # Only RedHat based distros have testing support
 if [ "${ITYPE}" = "testing" ]; then
-    if [ "$(echo "${DISTRO_NAME_L}" | grep -E '(centos|red_hat|amazon|oracle|almalinux|rocky)')" = "" ]; then
+    if [ "$(echo "${DISTRO_NAME_L}" | grep -E '(centos|red_hat|amazon|oracle)')" = "" ]; then
         echoerror "${DISTRO_NAME} does not have testing packages support"
         exit 1
     fi
@@ -2017,6 +1850,10 @@ if [ "$ITYPE" = "git" ]; then
                 if [ "$__NEW_VS_TAG_REGEX_MATCH" = "MATCH" ]; then
                     _POST_NEON_INSTALL=$BS_TRUE
                     __TAG_REGEX_MATCH="${__NEW_VS_TAG_REGEX_MATCH}"
+                    if [ "$(echo "${GIT_REV}" | cut -c -1)" != "v" ]; then
+                        # We do this to properly clone tags
+                        GIT_REV="v${GIT_REV}"
+                    fi
                     echodebug "Post Neon Tag Regex Match On: ${GIT_REV}"
                 else
                     __TAG_REGEX_MATCH=$(echo "${GIT_REV}" | sed -E 's/^(v?[0-9]{1,4}\.[0-9]{1,2})(\.[0-9]{1,2})?.*$/MATCH/')
@@ -2028,6 +1865,10 @@ if [ "$ITYPE" = "git" ]; then
                 if [ "$__NEW_VS_TAG_REGEX_MATCH" = "MATCH" ]; then
                     _POST_NEON_INSTALL=$BS_TRUE
                     __TAG_REGEX_MATCH="${__NEW_VS_TAG_REGEX_MATCH}"
+                    if [ "$(echo "${GIT_REV}" | cut -c -1)" != "v" ]; then
+                        # We do this to properly clone tags
+                        GIT_REV="v${GIT_REV}"
+                    fi
                     echodebug "Post Neon Tag Regex Match On: ${GIT_REV}"
                 else
                     __TAG_REGEX_MATCH=$(echo "${GIT_REV}" | sed 's/^.*\(v\?[[:digit:]]\{1,4\}\.[[:digit:]]\{1,2\}\)\(\.[[:digit:]]\{1,2\}\)\?.*$/MATCH/')
@@ -2190,13 +2031,20 @@ __rpm_import_gpg() {
 #----------------------------------------------------------------------------------------------------------------------
 __yum_install_noinput() {
 
+    ENABLE_EPEL_CMD=""
+    # Skip Amazon Linux for the first round, since EPEL is no longer required.
+    # See issue #724
+    if [ $_DISABLE_REPOS -eq $BS_FALSE ] && [ "$DISTRO_NAME_L" != "amazon_linux_ami" ]; then
+        ENABLE_EPEL_CMD="--enablerepo=${_EPEL_REPO}"
+    fi
+
     if [ "$DISTRO_NAME_L" = "oracle_linux" ]; then
         # We need to install one package at a time because --enablerepo=X disables ALL OTHER REPOS!!!!
         for package in "${@}"; do
-            yum -y install "${package}" || yum -y install "${package}" || return $?
+            yum -y install "${package}" || yum -y install "${package}" ${ENABLE_EPEL_CMD} || return $?
         done
     else
-        yum -y install "${@}" || return $?
+        yum -y install "${@}" ${ENABLE_EPEL_CMD} || return $?
     fi
 }   # ----------  end of function __yum_install_noinput  ----------
 
@@ -2209,15 +2057,6 @@ __dnf_install_noinput() {
     dnf -y install "${@}" || return $?
 }   # ----------  end of function __dnf_install_noinput  ----------
 
-#---  FUNCTION  -------------------------------------------------------------------------------------------------------
-#          NAME:  __tdnf_install_noinput
-#   DESCRIPTION:  (DRY) tdnf install with noinput options
-#----------------------------------------------------------------------------------------------------------------------
-__tdnf_install_noinput() {
-
-    tdnf -y install "${@}" || return $?
-}   # ----------  end of function __tdnf_install_noinput  ----------
-
 #---  FUNCTION  -------------------------------------------------------------------------------------------------------
 #          NAME:  __git_clone_and_checkout
 #   DESCRIPTION:  (DRY) Helper function to clone and checkout salt to a
@@ -2743,7 +2582,7 @@ __activate_virtualenv() {
 #          NAME:  __install_pip_pkgs
 #   DESCRIPTION:  Return 0 or 1 if successfully able to install pip packages. Can provide a different python version to
 #                 install pip packages with. If $py_ver is not specified it will use the default python version.
-#    PARAMETERS:  pkgs, py_ver, upgrade
+#    PARAMETERS:  pkgs, py_ver
 #----------------------------------------------------------------------------------------------------------------------
 
 __install_pip_pkgs() {
@@ -2912,15 +2751,15 @@ EOM
     fi
 
     echodebug "Running '${_pip_cmd} install wheel ${_setuptools_dep}'"
-    ${_pip_cmd} install --upgrade ${_POST_NEON_PIP_INSTALL_ARGS} wheel "${_setuptools_dep}"
+    ${_pip_cmd} install ${_POST_NEON_PIP_INSTALL_ARGS} wheel "${_setuptools_dep}"
 
     echoinfo "Installing salt using ${_py_exe}"
     cd "${_SALT_GIT_CHECKOUT_DIR}" || return 1
 
     mkdir /tmp/git/deps
     echoinfo "Downloading Salt Dependencies from PyPi"
-    echodebug "Running '${_pip_cmd} download -d /tmp/git/deps ${_PIP_DOWNLOAD_ARGS} .'"
-    ${_pip_cmd} download -d /tmp/git/deps ${_PIP_DOWNLOAD_ARGS} . || (echo "Failed to download salt dependencies" && return 1)
+    echodebug "Running '${_pip_cmd} download -d /tmp/git/deps .'"
+    ${_pip_cmd} download -d /tmp/git/deps . || (echo "Failed to download salt dependencies" && return 1)
 
     echoinfo "Installing Downloaded Salt Dependencies"
     echodebug "Running '${_pip_cmd} install --ignore-installed ${_POST_NEON_PIP_INSTALL_ARGS} /tmp/git/deps/*'"
@@ -3079,8 +2918,7 @@ __enable_universe_repository() {
 __install_saltstack_ubuntu_repository() {
     # Workaround for latest non-LTS Ubuntu
     if { [ "$DISTRO_MAJOR_VERSION" -eq 20 ] && [ "$DISTRO_MINOR_VERSION" -eq 10 ]; } || \
-        # remove 22 version when salt packages for 22.04 are available
-        [ "$DISTRO_MAJOR_VERSION" -eq 21 ] ||  [ "$DISTRO_MAJOR_VERSION" -eq 22 ]; then
+        { [ "$DISTRO_MAJOR_VERSION" -eq 21 ] && [ "$DISTRO_MINOR_VERSION" -eq 04 ]; }; then
         echowarn "Non-LTS Ubuntu detected, but stable packages requested. Trying packages for previous LTS release. You may experience problems."
         UBUNTU_VERSION=20.04
         UBUNTU_CODENAME="focal"
@@ -3119,58 +2957,6 @@ __install_saltstack_ubuntu_repository() {
     __wait_for_apt apt-get update || return 1
 }
 
-__install_saltstack_ubuntu_onedir_repository() {
-    # Workaround for latest non-LTS Ubuntu
-    if { [ "$DISTRO_MAJOR_VERSION" -eq 20 ] && [ "$DISTRO_MINOR_VERSION" -eq 10 ]; } || \
-        [ "$DISTRO_MAJOR_VERSION" -eq 21 ]; then
-        echowarn "Non-LTS Ubuntu detected, but stable packages requested. Trying packages for previous LTS release. You may experience problems."
-        UBUNTU_VERSION=20.04
-        UBUNTU_CODENAME="focal"
-    else
-        UBUNTU_VERSION=${DISTRO_VERSION}
-        UBUNTU_CODENAME=${DISTRO_CODENAME}
-    fi
-
-    # Install downloader backend for GPG keys fetching
-    __PACKAGES='wget'
-
-    # Required as it is not installed by default on Ubuntu 18+
-    if [ "$DISTRO_MAJOR_VERSION" -ge 18 ]; then
-        __PACKAGES="${__PACKAGES} gnupg"
-    fi
-
-    # Make sure https transport is available
-    if [ "$HTTP_VAL" = "https" ] ; then
-        __PACKAGES="${__PACKAGES} apt-transport-https ca-certificates"
-    fi
-
-    # shellcheck disable=SC2086,SC2090
-    __apt_get_install_noinput ${__PACKAGES} || return 1
-
-    __PY_VERSION_REPO="apt"
-    if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
-        __PY_VERSION_REPO="py3"
-    fi
-
-    # SaltStack's stable Ubuntu repository:
-    SALTSTACK_UBUNTU_URL="${HTTP_VAL}://${_REPO_URL}/${_ONEDIR_DIR}/${__PY_VERSION_REPO}/ubuntu/${UBUNTU_VERSION}/${__REPO_ARCH}/${ONEDIR_REV}/"
-    if [ "${ONEDIR_REV}" = "nightly" ] ; then
-        SALTSTACK_UBUNTU_URL="${HTTP_VAL}://${_REPO_URL}/${_ONEDIR_NIGHTLY_DIR}/${__PY_VERSION_REPO}/ubuntu/${UBUNTU_VERSION}/${__REPO_ARCH}/"
-    fi
-    echo "$__REPO_ARCH_DEB $SALTSTACK_UBUNTU_URL $UBUNTU_CODENAME main" > /etc/apt/sources.list.d/salt.list
-
-    if [ "$(echo "${ONEDIR_REV}" | grep -E '(3004|3005)')" != "" ]; then
-      __apt_key_fetch "${SALTSTACK_UBUNTU_URL}salt-archive-keyring.gpg" || return 1
-    elif [ "$(echo "${ONEDIR_REV}" | grep -E '(latest|nightly)')" != "" ]; then
-      __apt_key_fetch "${SALTSTACK_UBUNTU_URL}salt-archive-keyring.gpg" || \
-      __apt_key_fetch "${SALTSTACK_UBUNTU_URL}SALT-PROJECT-GPG-PUBKEY-2023.gpg" || return 1
-    else
-      __apt_key_fetch "${SALTSTACK_UBUNTU_URL}SALT-PROJECT-GPG-PUBKEY-2023.gpg" || return 1
-    fi
-
-    __wait_for_apt apt-get update || return 1
-}
-
 install_ubuntu_deps() {
     if [ $_DISABLE_REPOS -eq $BS_FALSE ]; then
         # Install add-apt-repository
@@ -3246,7 +3032,7 @@ install_ubuntu_stable_deps() {
 
     if [ "${_UPGRADE_SYS}" -eq $BS_TRUE ]; then
         if [ "${_INSECURE_DL}" -eq $BS_TRUE ]; then
-            if [ "$DISTRO_MAJOR_VERSION" -ge 20 ] || [ "$DISTRO_MAJOR_VERSION" -ge 21 ] || [ "$DISTRO_MAJOR_VERSION" -ge 22 ]; then
+            if [ "$DISTRO_MAJOR_VERSION" -ge 20 ] || [ "$DISTRO_MAJOR_VERSION" -ge 21 ]; then
                 __apt_get_install_noinput --allow-unauthenticated debian-archive-keyring && apt-get update || return 1
             else
                 __apt_get_install_noinput --allow-unauthenticated debian-archive-keyring &&
@@ -3327,9 +3113,6 @@ install_ubuntu_git_deps() {
         fi
     else
         __PACKAGES="python${PY_PKG_VER}-dev python${PY_PKG_VER}-pip python${PY_PKG_VER}-setuptools gcc"
-        if [ "$DISTRO_MAJOR_VERSION" -ge 22 ]; then
-            __PACKAGES="${__PACKAGES} g++"
-        fi
         # shellcheck disable=SC2086
         __apt_get_install_noinput ${__PACKAGES} || return 1
     fi
@@ -3343,44 +3126,6 @@ install_ubuntu_git_deps() {
     return 0
 }
 
-install_ubuntu_onedir_deps() {
-    if [ "${_SLEEP}" -eq "${__DEFAULT_SLEEP}" ] && [ "$DISTRO_MAJOR_VERSION" -lt 16 ]; then
-        # The user did not pass a custom sleep value as an argument, let's increase the default value
-        echodebug "On Ubuntu systems we increase the default sleep value to 10."
-        echodebug "See https://github.com/saltstack/salt/issues/12248 for more info."
-        _SLEEP=10
-    fi
-
-    if [ $_START_DAEMONS -eq $BS_FALSE ]; then
-        echowarn "Not starting daemons on Debian based distributions is not working mostly because starting them is the default behaviour."
-    fi
-
-    # No user interaction, libc6 restart services for example
-    export DEBIAN_FRONTEND=noninteractive
-
-    __wait_for_apt apt-get update || return 1
-
-    if [ "${_UPGRADE_SYS}" -eq $BS_TRUE ]; then
-        if [ "${_INSECURE_DL}" -eq $BS_TRUE ]; then
-            if [ "$DISTRO_MAJOR_VERSION" -ge 20 ] || [ "$DISTRO_MAJOR_VERSION" -ge 21 ]; then
-                __apt_get_install_noinput --allow-unauthenticated debian-archive-keyring && apt-get update || return 1
-            else
-                __apt_get_install_noinput --allow-unauthenticated debian-archive-keyring &&
-                    apt-key update && apt-get update || return 1
-            fi
-        fi
-
-        __apt_get_upgrade_noinput || return 1
-    fi
-
-    if [ "$_DISABLE_REPOS" -eq "$BS_FALSE" ] || [ "$_CUSTOM_REPO_URL" != "null" ]; then
-        __check_dpkg_architecture || return 1
-        __install_saltstack_ubuntu_onedir_repository || return 1
-    fi
-
-    install_ubuntu_deps || return 1
-}
-
 install_ubuntu_stable() {
     __PACKAGES=""
 
@@ -3425,15 +3170,7 @@ install_ubuntu_git() {
         _POST_NEON_PIP_INSTALL_ARGS=""
         __install_salt_from_repo_post_neon "${_PY_EXE}" || return 1
         cd "${_SALT_GIT_CHECKOUT_DIR}" || return 1
-
-        # Account for new path for services files in later releases
-        if [ -d "pkg/common" ]; then
-          _SERVICE_DIR="pkg/common"
-        else
-          _SERVICE_DIR="pkg"
-        fi
-
-        sed -i 's:/usr/bin:/usr/local/bin:g' ${_SERVICE_DIR}/*.service
+        sed -i 's:/usr/bin:/usr/local/bin:g' pkg/*.service
         return 0
     fi
 
@@ -3448,28 +3185,6 @@ install_ubuntu_git() {
     return 0
 }
 
-install_ubuntu_onedir() {
-    __PACKAGES=""
-
-    if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ];then
-        __PACKAGES="${__PACKAGES} salt-cloud"
-    fi
-    if [ "$_INSTALL_MASTER" -eq $BS_TRUE ]; then
-        __PACKAGES="${__PACKAGES} salt-master"
-    fi
-    if [ "$_INSTALL_MINION" -eq $BS_TRUE ]; then
-        __PACKAGES="${__PACKAGES} salt-minion"
-    fi
-    if [ "$_INSTALL_SYNDIC" -eq $BS_TRUE ]; then
-        __PACKAGES="${__PACKAGES} salt-syndic"
-    fi
-
-    # shellcheck disable=SC2086
-    __apt_get_install_noinput ${__PACKAGES} || return 1
-
-    return 0
-}
-
 install_ubuntu_stable_post() {
     for fname in api master minion syndic; do
         # Skip salt-api since the service should be opt-in and not necessarily started on boot
@@ -3505,15 +3220,8 @@ install_ubuntu_git_post() {
         [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
         [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
 
-        # Account for new path for services files in later releases
-        if [ -f "${_SALT_GIT_CHECKOUT_DIR}/pkg/common/salt-${fname}.service" ]; then
-          _SERVICE_DIR="${_SALT_GIT_CHECKOUT_DIR}/pkg/common"
-        else
-          _SERVICE_DIR="${_SALT_GIT_CHECKOUT_DIR}/pkg"
-        fi
-
         if [ -f /bin/systemctl ] && [ "$DISTRO_MAJOR_VERSION" -ge 16 ]; then
-            __copyfile "${_SERVICE_DIR}/salt-${fname}.service" "/lib/systemd/system/salt-${fname}.service"
+            __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/salt-${fname}.service" "/lib/systemd/system/salt-${fname}.service"
 
             # Skip salt-api since the service should be opt-in and not necessarily started on boot
             [ $fname = "api" ] && continue
@@ -3528,8 +3236,8 @@ install_ubuntu_git_post() {
             if [ ! -f $_upstart_conf ]; then
                 # upstart does not know about our service, let's copy the proper file
                 echowarn "Upstart does not appear to know about salt-$fname"
-                echodebug "Copying ${_SERVICE_DIR}/salt-$fname.upstart to $_upstart_conf"
-                __copyfile "${_SERVICE_DIR}/salt-${fname}.upstart" "$_upstart_conf"
+                echodebug "Copying ${_SALT_GIT_CHECKOUT_DIR}/pkg/salt-$fname.upstart to $_upstart_conf"
+                __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/salt-${fname}.upstart" "$_upstart_conf"
                 # Set service to know about virtualenv
                 if [ "${_VIRTUALENV_DIR}" != "null" ]; then
                     echo "SALT_USE_VIRTUALENV=${_VIRTUALENV_DIR}" > /etc/default/salt-${fname}
@@ -3641,8 +3349,17 @@ install_ubuntu_check_services() {
 #   Debian Install Functions
 #
 __install_saltstack_debian_repository() {
-    DEBIAN_RELEASE="$DISTRO_MAJOR_VERSION"
-    DEBIAN_CODENAME="$DISTRO_CODENAME"
+    if [ "$DISTRO_MAJOR_VERSION" -eq 11 ]; then
+        # Packages for Debian 11 at repo.saltproject.io are not yet available
+        # Set up repository for Debian 10 for Debian 11 for now until support
+        # is available at repo.saltproject.io for Debian 11.
+        echowarn "Debian 11 distribution detected, but stable packages requested. Trying packages from Debian 10. You may experience problems."
+        DEBIAN_RELEASE="10"
+        DEBIAN_CODENAME="buster"
+    else
+        DEBIAN_RELEASE="$DISTRO_MAJOR_VERSION"
+        DEBIAN_CODENAME="$DISTRO_CODENAME"
+    fi
 
     __PY_VERSION_REPO="apt"
     if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
@@ -3674,50 +3391,6 @@ __install_saltstack_debian_repository() {
     __wait_for_apt apt-get update || return 1
 }
 
-__install_saltstack_debian_onedir_repository() {
-    DEBIAN_RELEASE="$DISTRO_MAJOR_VERSION"
-    DEBIAN_CODENAME="$DISTRO_CODENAME"
-
-    __PY_VERSION_REPO="apt"
-    if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
-        __PY_VERSION_REPO="py3"
-    fi
-
-    # Install downloader backend for GPG keys fetching
-    __PACKAGES='wget'
-
-    # Required as it is not installed by default on Debian 9+
-    if [ "$DISTRO_MAJOR_VERSION" -ge 9 ]; then
-        __PACKAGES="${__PACKAGES} gnupg2"
-    fi
-
-    # Make sure https transport is available
-    if [ "$HTTP_VAL" = "https" ] ; then
-        __PACKAGES="${__PACKAGES} apt-transport-https ca-certificates"
-    fi
-
-    # shellcheck disable=SC2086,SC2090
-    __apt_get_install_noinput ${__PACKAGES} || return 1
-
-    # amd64 is just a part of repository URI, 32-bit pkgs are hosted under the same location
-    SALTSTACK_DEBIAN_URL="${HTTP_VAL}://${_REPO_URL}/${_ONEDIR_DIR}/${__PY_VERSION_REPO}/debian/${DEBIAN_RELEASE}/${__REPO_ARCH}/${ONEDIR_REV}/"
-    if [ "${ONEDIR_REV}" = "nightly" ] ; then
-        SALTSTACK_DEBIAN_URL="${HTTP_VAL}://${_REPO_URL}/${_ONEDIR_NIGHTLY_DIR}/${__PY_VERSION_REPO}/debian/${DEBIAN_RELEASE}/${__REPO_ARCH}/"
-    fi
-    echo "$__REPO_ARCH_DEB $SALTSTACK_DEBIAN_URL $DEBIAN_CODENAME main" > "/etc/apt/sources.list.d/salt.list"
-
-    if [ "$(echo "${ONEDIR_REV}" | grep -E '(3004|3005)')" != "" ]; then
-      __apt_key_fetch "${SALTSTACK_DEBIAN_URL}salt-archive-keyring.gpg" || return 1
-    elif [ "$(echo "${ONEDIR_REV}" | grep -E '(latest|nightly)')" != "" ]; then
-      __apt_key_fetch "${SALTSTACK_DEBIAN_URL}salt-archive-keyring.gpg" || \
-      __apt_key_fetch "${SALTSTACK_DEBIAN_URL}SALT-PROJECT-GPG-PUBKEY-2023.gpg" || return 1
-    else
-      __apt_key_fetch "${SALTSTACK_DEBIAN_URL}SALT-PROJECT-GPG-PUBKEY-2023.gpg" || return 1
-    fi
-
-    __wait_for_apt apt-get update || return 1
-}
-
 install_debian_deps() {
     if [ $_START_DAEMONS -eq $BS_FALSE ]; then
         echowarn "Not starting daemons on Debian based distributions is not working mostly because starting them is the default behaviour."
@@ -3771,59 +3444,6 @@ install_debian_deps() {
     return 0
 }
 
-install_debian_onedir_deps() {
-    if [ $_START_DAEMONS -eq $BS_FALSE ]; then
-        echowarn "Not starting daemons on Debian based distributions is not working mostly because starting them is the default behaviour."
-    fi
-
-    # No user interaction, libc6 restart services for example
-    export DEBIAN_FRONTEND=noninteractive
-
-    __wait_for_apt apt-get update || return 1
-
-    if [ "${_UPGRADE_SYS}" -eq $BS_TRUE ]; then
-        # Try to update GPG keys first if allowed
-        if [ "${_INSECURE_DL}" -eq $BS_TRUE ]; then
-            if [ "$DISTRO_MAJOR_VERSION" -ge 10 ]; then
-                __apt_get_install_noinput --allow-unauthenticated debian-archive-keyring && apt-get update || return 1
-            else
-                __apt_get_install_noinput --allow-unauthenticated debian-archive-keyring &&
-                    apt-key update && apt-get update || return 1
-            fi
-        fi
-
-        __apt_get_upgrade_noinput || return 1
-    fi
-
-    if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
-        PY_PKG_VER=3
-    else
-        PY_PKG_VER=""
-    fi
-
-    # Additionally install procps and pciutils which allows for Docker bootstraps. See 366#issuecomment-39666813
-    __PACKAGES='procps pciutils'
-
-    # YAML module is used for generating custom master/minion configs
-    __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-yaml"
-
-    # shellcheck disable=SC2086
-    __apt_get_install_noinput ${__PACKAGES} || return 1
-
-    if [ "$_DISABLE_REPOS" -eq "$BS_FALSE" ] || [ "$_CUSTOM_REPO_URL" != "null" ]; then
-        __check_dpkg_architecture || return 1
-        __install_saltstack_debian_onedir_repository || return 1
-    fi
-
-    if [ "${_EXTRA_PACKAGES}" != "" ]; then
-        echoinfo "Installing the following extra packages as requested: ${_EXTRA_PACKAGES}"
-        # shellcheck disable=SC2086
-        __apt_get_install_noinput ${_EXTRA_PACKAGES} || return 1
-    fi
-
-    return 0
-}
-
 install_debian_git_pre() {
     if ! __check_command_exists git; then
         __apt_get_install_noinput git || return 1
@@ -4072,15 +3692,7 @@ install_debian_git() {
         _POST_NEON_PIP_INSTALL_ARGS=""
         __install_salt_from_repo_post_neon "${_PY_EXE}" || return 1
         cd "${_SALT_GIT_CHECKOUT_DIR}" || return 1
-
-        # Account for new path for services files in later releases
-        if [ -d "pkg/common" ]; then
-          _SERVICE_DIR="pkg/common"
-        else
-          _SERVICE_DIR="pkg"
-        fi
-
-        sed -i 's:/usr/bin:/usr/local/bin:g' ${_SERVICE_DIR}/*.service
+        sed -i 's:/usr/bin:/usr/local/bin:g' pkg/*.service
         return 0
     fi
 
@@ -4108,28 +3720,6 @@ install_debian_9_git() {
     return 0
 }
 
-install_debian_onedir() {
-    __PACKAGES=""
-
-    if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ];then
-        __PACKAGES="${__PACKAGES} salt-cloud"
-    fi
-    if [ "$_INSTALL_MASTER" -eq $BS_TRUE ]; then
-        __PACKAGES="${__PACKAGES} salt-master"
-    fi
-    if [ "$_INSTALL_MINION" -eq $BS_TRUE ]; then
-        __PACKAGES="${__PACKAGES} salt-minion"
-    fi
-    if [ "$_INSTALL_SYNDIC" -eq $BS_TRUE ]; then
-        __PACKAGES="${__PACKAGES} salt-syndic"
-    fi
-
-    # shellcheck disable=SC2086
-    __apt_get_install_noinput ${__PACKAGES} || return 1
-
-    return 0
-}
-
 install_debian_git_post() {
     for fname in api master minion syndic; do
         # Skip if not meant to be installed
@@ -4139,23 +3729,16 @@ install_debian_git_post() {
         [ "$fname" = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
         [ "$fname" = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
 
-        # Account for new path for services files in later releases
-        if [ -f "${_SALT_GIT_CHECKOUT_DIR}/pkg/common/salt-${fname}.service" ]; then
-          _SERVICE_DIR="${_SALT_GIT_CHECKOUT_DIR}/pkg/common"
-        else
-          _SERVICE_DIR="${_SALT_GIT_CHECKOUT_DIR}/pkg"
-        fi
-
         # Configure SystemD for Debian 8 "Jessie" and later
         if [ -f /bin/systemctl ]; then
             if [ ! -f /lib/systemd/system/salt-${fname}.service ] || \
                 { [ -f /lib/systemd/system/salt-${fname}.service ] && [ $_FORCE_OVERWRITE -eq $BS_TRUE ]; }; then
-                if [ -f "${_SERVICE_DIR}/salt-${fname}.service" ]; then
-                    __copyfile "${_SERVICE_DIR}/salt-${fname}.service" /lib/systemd/system
-                    __copyfile "${_SERVICE_DIR}/salt-${fname}.environment" "/etc/default/salt-${fname}"
+                if [ -f "${_SALT_GIT_CHECKOUT_DIR}/pkg/salt-${fname}.service" ]; then
+                    __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/salt-${fname}.service" /lib/systemd/system
+                    __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/salt-${fname}.environment" "/etc/default/salt-${fname}"
                 else
                     # workaround before adding Debian-specific unit files to the Salt main repo
-                    __copyfile "${_SERVICE_DIR}/salt-${fname}.service" /lib/systemd/system
+                    __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/salt-${fname}.service" /lib/systemd/system
                     sed -i -e '/^Type/ s/notify/simple/' /lib/systemd/system/salt-${fname}.service
                 fi
             fi
@@ -4187,13 +3770,6 @@ install_debian_git_post() {
     done
 }
 
-install_debian_2021_post() {
-    # Kali 2021 (debian derivative) disables all network services by default
-    # Using archlinux post function to enable salt systemd services
-    install_arch_linux_post || return 1
-    return 0
-}
-
 install_debian_restart_daemons() {
     [ "$_START_DAEMONS" -eq $BS_FALSE ] && return 0
 
@@ -4250,41 +3826,6 @@ install_debian_check_services() {
 #   Fedora Install Functions
 #
 
-__install_saltstack_fedora_onedir_repository() {
-    if [ "$ITYPE" = "stable" ]; then
-        REPO_REV="$ONEDIR_REV"
-    else
-        REPO_REV="latest"
-    fi
-
-    __PY_VERSION_REPO="yum"
-    if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
-        __PY_VERSION_REPO="py3"
-    fi
-
-    GPG_KEY="SALT-PROJECT-GPG-PUBKEY-2023.pub"
-
-    REPO_FILE="/etc/yum.repos.d/salt.repo"
-
-    if [ ! -s "$REPO_FILE" ] || [ "$_FORCE_OVERWRITE" -eq $BS_TRUE ]; then
-        FETCH_URL="${HTTP_VAL}://${_REPO_URL}/${_ONEDIR_DIR}/${__PY_VERSION_REPO}/fedora/${DISTRO_MAJOR_VERSION}/${CPU_ARCH_L}/${ONEDIR_REV}"
-        if [ "${ONEDIR_REV}" = "nightly" ] ; then
-            FETCH_URL="${HTTP_VAL}://${_REPO_URL}/${_ONEDIR_NIGHTLY_DIR}/${__PY_VERSION_REPO}/fedora/${DISTRO_MAJOR_VERSION}/${CPU_ARCH_L}/"
-        fi
-
-        __fetch_url "${REPO_FILE}" "${FETCH_URL}.repo"
-
-        __rpm_import_gpg "${FETCH_URL}/${GPG_KEY}" || return 1
-
-        yum clean metadata || return 1
-    elif [ "$REPO_REV" != "latest" ]; then
-        echowarn "salt.repo already exists, ignoring salt version argument."
-        echowarn "Use -F (forced overwrite) to install $REPO_REV."
-    fi
-
-    return 0
-}
-
 install_fedora_deps() {
     if [ "$_UPGRADE_SYS" -eq $BS_TRUE ]; then
         dnf -y update || return 1
@@ -4444,9 +3985,6 @@ install_fedora_git_deps() {
             done
     else
         __PACKAGES="python${PY_PKG_VER}-devel python${PY_PKG_VER}-pip python${PY_PKG_VER}-setuptools gcc"
-        if [ "${DISTRO_VERSION}" -ge 35 ]; then
-            __PACKAGES="${__PACKAGES} gcc-c++"
-        fi
         # shellcheck disable=SC2086
         __dnf_install_noinput ${__PACKAGES} || return 1
     fi
@@ -4490,18 +4028,7 @@ install_fedora_git_post() {
         [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
         [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
 
-        # Account for new path for services files in later releases
-        if [ -f "${_SALT_GIT_CHECKOUT_DIR}/pkg/common/salt-${fname}.service" ]; then
-          _SERVICE_DIR="${_SALT_GIT_CHECKOUT_DIR}/pkg/common"
-        else
-          _SERVICE_DIR="${_SALT_GIT_CHECKOUT_DIR}/pkg/rpm"
-        fi
-        __copyfile "${_SERVICE_DIR}/salt-${fname}.service" "/lib/systemd/system/salt-${fname}.service"
-
-        # Salt executables are located under `/usr/local/bin/` on Fedora 36+
-        #if [ "${DISTRO_VERSION}" -ge 36 ]; then
-        #  sed -i -e 's:/usr/bin/:/usr/local/bin/:g' /lib/systemd/system/salt-*.service
-        #fi
+        __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/rpm/salt-${fname}.service" "/lib/systemd/system/salt-${fname}.service"
 
         # Skip salt-api since the service should be opt-in and not necessarily started on boot
         [ $fname = "api" ] && continue
@@ -4549,83 +4076,6 @@ install_fedora_check_services() {
 
     return 0
 }
-
-install_fedora_onedir_deps() {
-
-    if [ "$_UPGRADE_SYS" -eq $BS_TRUE ]; then
-        yum -y update || return 1
-    fi
-
-    if [ "$_DISABLE_REPOS" -eq "$BS_TRUE" ] && [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
-        echowarn "Detected -r or -R option while installing Salt packages for Python 3."
-        echowarn "Python 3 packages for older Salt releases requires the EPEL repository to be installed."
-        echowarn "Installing the EPEL repository automatically is disabled when using the -r or -R options."
-    fi
-
-    if [ "$_DISABLE_REPOS" -eq "$BS_FALSE" ]; then
-        __install_saltstack_fedora_onedir_repository || return 1
-    fi
-
-    # If -R was passed, we need to configure custom repo url with rsync-ed packages
-    # Which is still handled in __install_saltstack_rhel_repository. This call has
-    # its own check in case -r was passed without -R.
-    if [ "$_CUSTOM_REPO_URL" != "null" ]; then
-        __install_saltstack_fedora_onedir_repository || return 1
-    fi
-
-    if [ "$DISTRO_MAJOR_VERSION" -ge 8 ]; then
-        __PACKAGES="dnf-utils chkconfig"
-    else
-        __PACKAGES="yum-utils chkconfig"
-    fi
-
-    __PACKAGES="${__PACKAGES} procps"
-
-    # shellcheck disable=SC2086
-    __yum_install_noinput ${__PACKAGES} || return 1
-
-    if [ "${_EXTRA_PACKAGES}" != "" ]; then
-        echoinfo "Installing the following extra packages as requested: ${_EXTRA_PACKAGES}"
-        # shellcheck disable=SC2086
-        __yum_install_noinput ${_EXTRA_PACKAGES} || return 1
-    fi
-
-    return 0
-
-}
-
-
-install_fedora_onedir() {
-    STABLE_REV=$ONEDIR_REV
-    #install_fedora_stable || return 1
-
-    __PACKAGES=""
-
-    if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ];then
-        __PACKAGES="${__PACKAGES} salt-cloud"
-    fi
-    if [ "$_INSTALL_MASTER" -eq $BS_TRUE ];then
-        __PACKAGES="${__PACKAGES} salt-master"
-    fi
-    if [ "$_INSTALL_MINION" -eq $BS_TRUE ]; then
-        __PACKAGES="${__PACKAGES} salt-minion"
-    fi
-    if [ "$_INSTALL_SYNDIC" -eq $BS_TRUE ];then
-        __PACKAGES="${__PACKAGES} salt-syndic"
-    fi
-
-    # shellcheck disable=SC2086
-    __yum_install_noinput ${__PACKAGES} || return 1
-
-    return 0
-}
-
-install_fedora_onedir_post() {
-    STABLE_REV=$ONEDIR_REV
-    install_fedora_stable_post || return 1
-
-    return 0
-}
 #
 #   Ended Fedora Install Functions
 #
@@ -4635,13 +4085,27 @@ install_fedora_onedir_post() {
 #
 #   CentOS Install Functions
 #
-__install_saltstack_rhel_repository() {
-  if [ "${DISTRO_MAJOR_VERSION}" -ge 9 ]; then
-    echoerror "Old stable repository unavailable on RH variants greater than or equal to 9"
-    echoerror "Use the stable install type."
-    exit 1
-  fi
+__install_epel_repository() {
+    if [ ${_EPEL_REPOS_INSTALLED} -eq $BS_TRUE ]; then
+        return 0
+    fi
 
+    # Check if epel repo is already enabled and flag it accordingly
+    if yum repolist | grep -q "^[!]\\?${_EPEL_REPO}/"; then
+        _EPEL_REPOS_INSTALLED=$BS_TRUE
+        return 0
+    fi
+
+    # Download latest 'epel-release' package for the distro version directly
+    epel_repo_url="${HTTP_VAL}://dl.fedoraproject.org/pub/epel/epel-release-latest-${DISTRO_MAJOR_VERSION}.noarch.rpm"
+    rpm -Uvh --force "$epel_repo_url" || return 1
+
+    _EPEL_REPOS_INSTALLED=$BS_TRUE
+
+    return 0
+}
+
+__install_saltstack_rhel_repository() {
     if [ "$ITYPE" = "stable" ]; then
         repo_rev="$STABLE_REV"
     else
@@ -4656,19 +4120,7 @@ __install_saltstack_rhel_repository() {
     # Avoid using '$releasever' variable for yum.
     # Instead, this should work correctly on all RHEL variants.
     base_url="${HTTP_VAL}://${_REPO_URL}/${__PY_VERSION_REPO}/redhat/${DISTRO_MAJOR_VERSION}/\$basearch/${repo_rev}/"
-    if [ "${DISTRO_MAJOR_VERSION}" -eq 7 ]; then
-        gpg_key="SALTSTACK-GPG-KEY.pub base/RPM-GPG-KEY-CentOS-7"
-    elif [ "${DISTRO_MAJOR_VERSION}" -ge 9 ]; then
-        gpg_key="SALTSTACK-GPG-KEY2.pub"
-    else
-        gpg_key="SALTSTACK-GPG-KEY.pub"
-    fi
-
-    gpg_key_urls=""
-    for key in $gpg_key; do
-        gpg_key_urls=$(printf "${base_url}${key},%s" "$gpg_key_urls")
-    done
-
+    gpg_key="SALTSTACK-GPG-KEY.pub"
     repo_file="/etc/yum.repos.d/salt.repo"
 
     if [ ! -s "$repo_file" ] || [ "$_FORCE_OVERWRITE" -eq $BS_TRUE ]; then
@@ -4678,80 +4130,13 @@ name=SaltStack ${repo_rev} Release Channel for RHEL/CentOS \$releasever
 baseurl=${base_url}
 skip_if_unavailable=True
 gpgcheck=1
-gpgkey=${gpg_key_urls}
+gpgkey=${base_url}${gpg_key}
 enabled=1
 enabled_metadata=1
 _eof
 
         fetch_url="${HTTP_VAL}://${_REPO_URL}/${__PY_VERSION_REPO}/redhat/${DISTRO_MAJOR_VERSION}/${CPU_ARCH_L}/${repo_rev}/"
-        for key in $gpg_key; do
-            __rpm_import_gpg "${fetch_url}${key}" || return 1
-        done
-
-        yum clean metadata || return 1
-    elif [ "$repo_rev" != "latest" ]; then
-        echowarn "salt.repo already exists, ignoring salt version argument."
-        echowarn "Use -F (forced overwrite) to install $repo_rev."
-    fi
-
-    return 0
-}
-
-__install_saltstack_rhel_onedir_repository() {
-    if [ "$ITYPE" = "stable" ]; then
-        repo_rev="$ONEDIR_REV"
-    else
-        repo_rev="latest"
-    fi
-
-    __PY_VERSION_REPO="yum"
-    if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
-        __PY_VERSION_REPO="py3"
-    fi
-
-    # Avoid using '$releasever' variable for yum.
-    # Instead, this should work correctly on all RHEL variants.
-    base_url="${HTTP_VAL}://${_REPO_URL}/${_ONEDIR_DIR}/${__PY_VERSION_REPO}/redhat/${DISTRO_MAJOR_VERSION}/\$basearch/${ONEDIR_REV}/"
-    if [ "${ONEDIR_REV}" = "nightly" ] ; then
-        base_url="${HTTP_VAL}://${_REPO_URL}/${_ONEDIR_NIGHTLY_DIR}/${__PY_VERSION_REPO}/redhat/${DISTRO_MAJOR_VERSION}/\$basearch/"
-    fi
-    if [ "$(echo "${ONEDIR_REV}" | grep -E '(3004|3005)')" != "" ] || [ "${ONEDIR_REV}" = "nightly" ]; then
-      if [ "${DISTRO_MAJOR_VERSION}" -eq 9 ]; then
-          gpg_key="SALTSTACK-GPG-KEY2.pub"
-      else
-          gpg_key="SALTSTACK-GPG-KEY.pub"
-      fi
-    else
-        gpg_key="SALT-PROJECT-GPG-PUBKEY-2023.pub"
-    fi
-
-    gpg_key_urls=""
-    for key in $gpg_key; do
-        gpg_key_urls=$(printf "${base_url}${key},%s" "$gpg_key_urls")
-    done
-
-    repo_file="/etc/yum.repos.d/salt.repo"
-
-    if [ ! -s "$repo_file" ] || [ "$_FORCE_OVERWRITE" -eq $BS_TRUE ]; then
-        cat <<_eof > "$repo_file"
-[saltstack]
-name=SaltStack ${repo_rev} Release Channel for RHEL/CentOS \$releasever
-baseurl=${base_url}
-skip_if_unavailable=True
-gpgcheck=1
-gpgkey=${gpg_key_urls}
-enabled=1
-enabled_metadata=1
-_eof
-
-        fetch_url="${HTTP_VAL}://${_REPO_URL}/${_ONEDIR_DIR}/${__PY_VERSION_REPO}/redhat/${DISTRO_MAJOR_VERSION}/${CPU_ARCH_L}/${ONEDIR_REV}/"
-        if [ "${ONEDIR_REV}" = "nightly" ] ; then
-            fetch_url="${HTTP_VAL}://${_REPO_URL}/${_ONEDIR_NIGHTLY_DIR}/${__PY_VERSION_REPO}/redhat/${DISTRO_MAJOR_VERSION}/${CPU_ARCH_L}/"
-        fi
-        for key in $gpg_key; do
-            __rpm_import_gpg "${fetch_url}${key}" || return 1
-        done
-
+        __rpm_import_gpg "${fetch_url}${gpg_key}" || return 1
         yum clean metadata || return 1
     elif [ "$repo_rev" != "latest" ]; then
         echowarn "salt.repo already exists, ignoring salt version argument."
@@ -4773,6 +4158,7 @@ install_centos_stable_deps() {
     fi
 
     if [ "$_DISABLE_REPOS" -eq "$BS_FALSE" ]; then
+        __install_epel_repository || return 1
         __install_saltstack_rhel_repository || return 1
     fi
 
@@ -4793,29 +4179,27 @@ install_centos_stable_deps() {
         if [ "$DISTRO_MAJOR_VERSION" -ge 8 ]; then
             # YAML module is used for generating custom master/minion configs
             if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
-                __PACKAGES="${__PACKAGES} python3-pyyaml python3-setuptools"
+                __PACKAGES="${__PACKAGES} python3-pyyaml"
             else
                 __PACKAGES="${__PACKAGES} python2-pyyaml"
             fi
         elif [ "$DISTRO_MAJOR_VERSION" -eq 7 ]; then
             # YAML module is used for generating custom master/minion configs
             if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
-                __PACKAGES="${__PACKAGES} python36-PyYAML python36-setuptools"
+                __PACKAGES="${__PACKAGES} python36-PyYAML"
             else
                 __PACKAGES="${__PACKAGES} PyYAML"
             fi
         else
             # YAML module is used for generating custom master/minion configs
             if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
-                __PACKAGES="${__PACKAGES} python34-PyYAML python34-setuptools"
+                __PACKAGES="${__PACKAGES} python34-PyYAML"
             else
                 __PACKAGES="${__PACKAGES} PyYAML"
             fi
         fi
     fi
 
-    __PACKAGES="${__PACKAGES} procps"
-
     # shellcheck disable=SC2086
     __yum_install_noinput ${__PACKAGES} || return 1
 
@@ -4832,29 +4216,40 @@ install_centos_stable_deps() {
 install_centos_stable() {
     __PACKAGES=""
 
+    local cloud='salt-cloud'
+    local master='salt-master'
+    local minion='salt-minion'
+    local syndic='salt-syndic'
+
+    if echo "$STABLE_REV" | grep -q "archive";then # point release being applied
+        local ver=$(echo "$STABLE_REV"|awk -F/ '{print $2}') # strip archive/
+    elif echo "$STABLE_REV" | egrep -vq "archive|latest";then # latest or major version(3003, 3004, etc) being applie
+        local ver=$STABLE_REV
+    fi
+
+    if [ ! -z $ver ]; then
+        cloud+="-$ver"
+        master+="-$ver"
+        minion+="-$ver"
+        syndic+="-$ver"
+    fi
+
     if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ];then
-        __PACKAGES="${__PACKAGES} salt-cloud"
+        __PACKAGES="${__PACKAGES} $cloud"
     fi
     if [ "$_INSTALL_MASTER" -eq $BS_TRUE ];then
-        __PACKAGES="${__PACKAGES} salt-master"
+        __PACKAGES="${__PACKAGES} $master"
     fi
     if [ "$_INSTALL_MINION" -eq $BS_TRUE ]; then
-        __PACKAGES="${__PACKAGES} salt-minion"
+        __PACKAGES="${__PACKAGES} $minion"
     fi
     if [ "$_INSTALL_SYNDIC" -eq $BS_TRUE ];then
-        __PACKAGES="${__PACKAGES} salt-syndic"
+        __PACKAGES="${__PACKAGES} $syndic"
     fi
 
     # shellcheck disable=SC2086
     __yum_install_noinput ${__PACKAGES} || return 1
 
-    # Workaround for 3.11 broken on CentOS Stream 8.x
-    # Re-install Python 3.6
-    _py_version=$(${_PY_EXE} -c "import sys; print('{0}.{1}'.format(*sys.version_info))")
-    if [ "$DISTRO_MAJOR_VERSION" -eq 8 ] && [ "${_py_version}" = "3.11" ]; then
-      __yum_install_noinput python3
-    fi
-
     return 0
 }
 
@@ -4890,14 +4285,7 @@ install_centos_stable_post() {
 }
 
 install_centos_git_deps() {
-    # First try stable deps then fall back to onedir deps if that one fails
-    # if we're installing on a Red Hat based host that doesn't have the classic
-    # package repos available.
-    # Set ONEDIR_REV to STABLE_REV in case we
-    # end up calling install_centos_onedir_deps
-    ONEDIR_REV=${STABLE_REV}
-    install_centos_onedir_deps || \
-    return 1
+    install_centos_stable_deps || return 1
 
     if [ "$_INSECURE_DL" -eq $BS_FALSE ] && [ "${_SALT_REPO_URL%%://*}" = "https" ]; then
         __yum_install_noinput ca-certificates || return 1
@@ -5057,16 +4445,10 @@ install_centos_git_post() {
         [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
         [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
 
-        # Account for new path for services files in later releases
-        if [ -f "${_SALT_GIT_CHECKOUT_DIR}/pkg/common/salt-${fname}.service" ]; then
-          _SERVICE_FILE="${_SALT_GIT_CHECKOUT_DIR}/pkg/common/salt-${fname}.service"
-        else
-          _SERVICE_FILE="${_SALT_GIT_CHECKOUT_DIR}/pkg/rpm/salt-${fname}.service"
-        fi
         if [ -f /bin/systemctl ]; then
             if [ ! -f "/usr/lib/systemd/system/salt-${fname}.service" ] || \
                 { [ -f "/usr/lib/systemd/system/salt-${fname}.service" ] && [ "$_FORCE_OVERWRITE" -eq $BS_TRUE ]; }; then
-                __copyfile "${_SERVICE_FILE}" /usr/lib/systemd/system
+                __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/rpm/salt-${fname}.service" /usr/lib/systemd/system
             fi
 
             SYSTEMD_RELOAD=$BS_TRUE
@@ -5086,117 +4468,6 @@ install_centos_git_post() {
     return 0
 }
 
-install_centos_onedir_deps() {
-    if [ "$_UPGRADE_SYS" -eq $BS_TRUE ]; then
-        yum -y update || return 1
-    fi
-
-    if [ "$_DISABLE_REPOS" -eq "$BS_TRUE" ] && [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
-        echowarn "Detected -r or -R option while installing Salt packages for Python 3."
-        echowarn "Python 3 packages for older Salt releases requires the EPEL repository to be installed."
-        echowarn "Installing the EPEL repository automatically is disabled when using the -r or -R options."
-    fi
-
-    if [ "$_DISABLE_REPOS" -eq "$BS_FALSE" ]; then
-        __install_saltstack_rhel_onedir_repository || return 1
-    fi
-
-    # If -R was passed, we need to configure custom repo url with rsync-ed packages
-    # Which is still handled in __install_saltstack_rhel_repository. This call has
-    # its own check in case -r was passed without -R.
-    if [ "$_CUSTOM_REPO_URL" != "null" ]; then
-        __install_saltstack_rhel_onedir_repository || return 1
-    fi
-
-    if [ "$DISTRO_MAJOR_VERSION" -ge 8 ]; then
-        __PACKAGES="dnf-utils chkconfig"
-    else
-        __PACKAGES="yum-utils chkconfig"
-    fi
-
-    __PACKAGES="${__PACKAGES} procps"
-
-    # shellcheck disable=SC2086
-    __yum_install_noinput ${__PACKAGES} || return 1
-
-    if [ "${_EXTRA_PACKAGES}" != "" ]; then
-        echoinfo "Installing the following extra packages as requested: ${_EXTRA_PACKAGES}"
-        # shellcheck disable=SC2086
-        __yum_install_noinput ${_EXTRA_PACKAGES} || return 1
-    fi
-
-
-    return 0
-}
-
-# This function has been modified to allow for specific versions to be installed
-# when not using the salt repo
-install_centos_onedir() {
-    __PACKAGES=""
-
-    local cloud='salt-cloud'
-    local master='salt-master'
-    local minion='salt-minion'
-    local syndic='salt-syndic'
-    local ver="$_ONEDIR_REV"
-
-    if [ ! -z $ver ]; then
-        cloud+="-$ver"
-        master+="-$ver"
-        minion+="-$ver"
-        syndic+="-$ver"
-    fi
-
-    if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ];then
-        __PACKAGES="${__PACKAGES} $cloud"
-    fi
-    if [ "$_INSTALL_MASTER" -eq $BS_TRUE ];then
-        __PACKAGES="${__PACKAGES} $master"
-    fi
-    if [ "$_INSTALL_MINION" -eq $BS_TRUE ]; then
-        __PACKAGES="${__PACKAGES} $minion"
-    fi
-    if [ "$_INSTALL_SYNDIC" -eq $BS_TRUE ];then
-        __PACKAGES="${__PACKAGES} $syndic"
-    fi
-
-    # shellcheck disable=SC2086
-    __yum_install_noinput ${__PACKAGES} || return 1
-
-    return 0
-}
-
-install_centos_onedir_post() {
-    SYSTEMD_RELOAD=$BS_FALSE
-
-    for fname in api master minion syndic; do
-        # Skip salt-api since the service should be opt-in and not necessarily started on boot
-        [ $fname = "api" ] && continue
-
-        # Skip if not meant to be installed
-        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
-        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
-        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
-
-        if [ -f /bin/systemctl ]; then
-            /bin/systemctl is-enabled salt-${fname}.service > /dev/null 2>&1 || (
-                /bin/systemctl preset salt-${fname}.service > /dev/null 2>&1 &&
-                /bin/systemctl enable salt-${fname}.service > /dev/null 2>&1
-            )
-
-            SYSTEMD_RELOAD=$BS_TRUE
-        elif [ -f "/etc/init.d/salt-${fname}" ]; then
-            /sbin/chkconfig salt-${fname} on
-        fi
-    done
-
-    if [ "$SYSTEMD_RELOAD" -eq $BS_TRUE ]; then
-        /bin/systemctl daemon-reload
-    fi
-
-    return 0
-}
-
 install_centos_restart_daemons() {
     [ $_START_DAEMONS -eq $BS_FALSE ] && return
 
@@ -5296,11 +4567,6 @@ install_red_hat_linux_git_deps() {
     return 0
 }
 
-install_red_hat_linux_onedir_deps() {
-    install_centos_onedir_deps || return 1
-    return 0
-}
-
 install_red_hat_enterprise_stable_deps() {
     install_red_hat_linux_stable_deps || return 1
     return 0
@@ -5311,11 +4577,6 @@ install_red_hat_enterprise_git_deps() {
     return 0
 }
 
-install_red_hat_enterprise_onedir_deps() {
-    install_red_hat_linux_onedir_deps || return 1
-    return 0
-}
-
 install_red_hat_enterprise_linux_stable_deps() {
     install_red_hat_linux_stable_deps || return 1
     return 0
@@ -5326,11 +4587,6 @@ install_red_hat_enterprise_linux_git_deps() {
     return 0
 }
 
-install_red_hat_enterprise_linux_onedir_deps() {
-    install_red_hat_linux_onedir_deps || return 1
-    return 0
-}
-
 install_red_hat_enterprise_server_stable_deps() {
     install_red_hat_linux_stable_deps || return 1
     return 0
@@ -5341,11 +4597,6 @@ install_red_hat_enterprise_server_git_deps() {
     return 0
 }
 
-install_red_hat_enterprise_server_onedir_deps() {
-    install_red_hat_linux_onedir_deps || return 1
-    return 0
-}
-
 install_red_hat_enterprise_workstation_stable_deps() {
     install_red_hat_linux_stable_deps || return 1
     return 0
@@ -5356,11 +4607,6 @@ install_red_hat_enterprise_workstation_git_deps() {
     return 0
 }
 
-install_red_hat_enterprise_workstation_onedir_deps() {
-    install_red_hat_linux_timat_deps || return 1
-    return 0
-}
-
 install_red_hat_linux_stable() {
     install_centos_stable || return 1
     return 0
@@ -5371,11 +4617,6 @@ install_red_hat_linux_git() {
     return 0
 }
 
-install_red_hat_linux_onedir() {
-    install_centos_onedir || return 1
-    return 0
-}
-
 install_red_hat_enterprise_stable() {
     install_red_hat_linux_stable || return 1
     return 0
@@ -5386,11 +4627,6 @@ install_red_hat_enterprise_git() {
     return 0
 }
 
-install_red_hat_enterprise_onedir() {
-    install_red_hat_linux_onedir || return 1
-    return 0
-}
-
 install_red_hat_enterprise_linux_stable() {
     install_red_hat_linux_stable || return 1
     return 0
@@ -5401,11 +4637,6 @@ install_red_hat_enterprise_linux_git() {
     return 0
 }
 
-install_red_hat_enterprise_linux_onedir() {
-    install_red_hat_linux_onedir || return 1
-    return 0
-}
-
 install_red_hat_enterprise_server_stable() {
     install_red_hat_linux_stable || return 1
     return 0
@@ -5416,11 +4647,6 @@ install_red_hat_enterprise_server_git() {
     return 0
 }
 
-install_red_hat_enterprise_server_onedir() {
-    install_red_hat_linux_onedir || return 1
-    return 0
-}
-
 install_red_hat_enterprise_workstation_stable() {
     install_red_hat_linux_stable || return 1
     return 0
@@ -5431,11 +4657,6 @@ install_red_hat_enterprise_workstation_git() {
     return 0
 }
 
-install_red_hat_enterprise_workstation_onedir() {
-    install_red_hat_linux_onedir || return 1
-    return 0
-}
-
 install_red_hat_linux_stable_post() {
     install_centos_stable_post || return 1
     return 0
@@ -5580,15 +4801,6 @@ install_red_hat_enterprise_workstation_testing_post() {
 #   Oracle Linux Install Functions
 #
 install_oracle_linux_stable_deps() {
-    # Install Oracle's EPEL.
-    if [ ${_EPEL_REPOS_INSTALLED} -eq $BS_FALSE ]; then
-        _EPEL_REPO=oracle-epel-release-el${DISTRO_MAJOR_VERSION}
-        if ! rpm -q "${_EPEL_REPO}" > /dev/null; then
-            __yum_install_noinput "${_EPEL_REPO}"
-        fi
-        _EPEL_REPOS_INSTALLED=$BS_TRUE
-    fi
-
     install_centos_stable_deps || return 1
     return 0
 }
@@ -5598,11 +4810,6 @@ install_oracle_linux_git_deps() {
     return 0
 }
 
-install_oracle_linux_onedir_deps() {
-    install_centos_onedir_deps || return 1
-    return 0
-}
-
 install_oracle_linux_testing_deps() {
     install_centos_testing_deps || return 1
     return 0
@@ -5618,11 +4825,6 @@ install_oracle_linux_git() {
     return 0
 }
 
-install_oracle_linux_onedir() {
-    install_centos_onedir || return 1
-    return 0
-}
-
 install_oracle_linux_testing() {
     install_centos_testing || return 1
     return 0
@@ -5638,11 +4840,6 @@ install_oracle_linux_git_post() {
     return 0
 }
 
-install_oracle_linux_onedir_post() {
-    install_centos_onedir_post || return 1
-    return 0
-}
-
 install_oracle_linux_testing_post() {
     install_centos_testing_post || return 1
     return 0
@@ -5662,162 +4859,6 @@ install_oracle_linux_check_services() {
 #
 #######################################################################################################################
 
-#######################################################################################################################
-#
-#   AlmaLinux Install Functions
-#
-install_almalinux_stable_deps() {
-    install_centos_stable_deps || return 1
-    return 0
-}
-
-install_almalinux_git_deps() {
-    install_centos_git_deps || return 1
-    return 0
-}
-
-install_almalinux_onedir_deps() {
-    install_centos_onedir_deps || return 1
-    return 0
-}
-
-install_almalinux_testing_deps() {
-    install_centos_testing_deps || return 1
-    return 0
-}
-
-install_almalinux_stable() {
-    install_centos_stable || return 1
-    return 0
-}
-
-install_almalinux_git() {
-    install_centos_git || return 1
-    return 0
-}
-
-install_almalinux_onedir() {
-    install_centos_onedir || return 1
-    return 0
-}
-
-install_almalinux_testing() {
-    install_centos_testing || return 1
-    return 0
-}
-
-install_almalinux_stable_post() {
-    install_centos_stable_post || return 1
-    return 0
-}
-
-install_almalinux_git_post() {
-    install_centos_git_post || return 1
-    return 0
-}
-
-install_almalinux_onedir_post() {
-    install_centos_onedir_post || return 1
-    return 0
-}
-
-install_almalinux_testing_post() {
-    install_centos_testing_post || return 1
-    return 0
-}
-
-install_almalinux_restart_daemons() {
-    install_centos_restart_daemons || return 1
-    return 0
-}
-
-install_almalinux_check_services() {
-    install_centos_check_services || return 1
-    return 0
-}
-#
-#   Ended AlmaLinux Install Functions
-#
-#######################################################################################################################
-
-#######################################################################################################################
-#
-#   Rocky Linux Install Functions
-#
-install_rocky_linux_stable_deps() {
-    install_centos_stable_deps || return 1
-    return 0
-}
-
-install_rocky_linux_git_deps() {
-    install_centos_git_deps || return 1
-    return 0
-}
-
-install_rocky_linux_onedir_deps() {
-    install_centos_onedir_deps || return 1
-    return 0
-}
-
-install_rocky_linux_testing_deps() {
-    install_centos_testing_deps || return 1
-    return 0
-}
-
-install_rocky_linux_stable() {
-    install_centos_stable || return 1
-    return 0
-}
-
-install_rocky_linux_onedir() {
-    install_centos_onedir || return 1
-    return 0
-}
-
-install_rocky_linux_git() {
-    install_centos_git || return 1
-    return 0
-}
-
-install_rocky_linux_testing() {
-    install_centos_testing || return 1
-    return 0
-}
-
-install_rocky_linux_stable_post() {
-    install_centos_stable_post || return 1
-    return 0
-}
-
-install_rocky_linux_git_post() {
-    install_centos_git_post || return 1
-    return 0
-}
-
-install_rocky_linux_onedir_post() {
-    install_centos_onedir_post || return 1
-    return 0
-}
-
-install_rocky_linux_testing_post() {
-    install_centos_testing_post || return 1
-    return 0
-}
-
-install_rocky_linux_restart_daemons() {
-    install_centos_restart_daemons || return 1
-    return 0
-}
-
-install_rocky_linux_check_services() {
-    install_centos_check_services || return 1
-    return 0
-}
-#
-#   Ended Rocky Linux Install Functions
-#
-#######################################################################################################################
-
 #######################################################################################################################
 #
 #   Scientific Linux Install Functions
@@ -5832,11 +4873,6 @@ install_scientific_linux_git_deps() {
     return 0
 }
 
-install_scientific_linux_onedir_deps() {
-    install_centos_onedir_deps || return 1
-    return 0
-}
-
 install_scientific_linux_testing_deps() {
     install_centos_testing_deps || return 1
     return 0
@@ -5852,11 +4888,6 @@ install_scientific_linux_git() {
     return 0
 }
 
-install_scientific_linux_onedir() {
-    install_centos_onedir || return 1
-    return 0
-}
-
 install_scientific_linux_testing() {
     install_centos_testing || return 1
     return 0
@@ -5872,11 +4903,6 @@ install_scientific_linux_git_post() {
     return 0
 }
 
-install_scientific_linux_onedir_post() {
-    install_centos_onedir_post || return 1
-    return 0
-}
-
 install_scientific_linux_testing_post() {
     install_centos_testing_post || return 1
     return 0
@@ -5910,11 +4936,6 @@ install_cloud_linux_git_deps() {
     return 0
 }
 
-install_cloud_linux_onedir_deps() {
-    install_centos_onedir_deps || return 1
-    return 0
-}
-
 install_cloud_linux_testing_deps() {
     install_centos_testing_deps || return 1
     return 0
@@ -6008,8 +5029,8 @@ install_alpine_linux_git_deps() {
             fi
         fi
     else
-        apk -U add python3 python3-dev py3-pip py3-setuptools g++ linux-headers zeromq-dev openrc || return 1
-        _PY_EXE=python3
+        apk -U add python2 py2-pip py2-setuptools || return 1
+        _PY_EXE=python2
         return 0
     fi
 
@@ -6479,100 +5500,6 @@ _eof
     fi
 }
 
-install_amazon_linux_ami_2_onedir_deps() {
-    # Shim to figure out if we're using old (rhel) or new (aws) rpms.
-    _USEAWS=$BS_FALSE
-    pkg_append="python"
-
-    if [ "$ITYPE" = "onedir" ]; then
-        repo_rev="$ONEDIR_REV"
-    else
-        repo_rev="latest"
-    fi
-
-    if echo $repo_rev | grep -E -q '^archive'; then
-        year=$(echo "$repo_rev" | cut -d '/' -f 2 | cut -c1-4)
-    else
-        year=$(echo "$repo_rev" | cut -c1-4)
-    fi
-
-    # We need to install yum-utils before doing anything else when installing on
-    # Amazon Linux ECS-optimized images. See issue #974.
-    __yum_install_noinput yum-utils
-
-    # Do upgrade early
-    if [ "$_UPGRADE_SYS" -eq $BS_TRUE ]; then
-        yum -y update || return 1
-    fi
-
-    if [ $_DISABLE_REPOS -eq $BS_FALSE ] || [ "$_CUSTOM_REPO_URL" != "null" ]; then
-        __REPO_FILENAME="salt.repo"
-        __PY_VERSION_REPO="yum"
-        PY_PKG_VER=""
-        repo_label="saltstack-repo"
-        repo_name="SaltStack repo for Amazon Linux 2"
-        if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
-            __REPO_FILENAME="salt.repo"
-            __PY_VERSION_REPO="py3"
-            PY_PKG_VER=3
-            repo_label="saltstack-py3-repo"
-            repo_name="SaltStack Python 3 repo for Amazon Linux 2"
-        fi
-
-        base_url="$HTTP_VAL://${_REPO_URL}/${_ONEDIR_DIR}/${__PY_VERSION_REPO}/amazon/2/\$basearch/$repo_rev/"
-        if [ "${ONEDIR_REV}" = "nightly" ] ; then
-            base_url="$HTTP_VAL://${_REPO_URL}/${_ONEDIR_NIGHTLY_DIR}/${__PY_VERSION_REPO}/amazon/2/\$basearch/"
-        fi
-
-        if [ "$(echo "${ONEDIR_REV}" | grep -E '(3004|3005)')" != "" ] || [ "${ONEDIR_REV}" = "nightly" ]; then
-          gpg_key="${base_url}SALTSTACK-GPG-KEY.pub,${base_url}base/RPM-GPG-KEY-CentOS-7"
-          if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
-            gpg_key="${base_url}SALTSTACK-GPG-KEY.pub"
-          fi
-        else
-          gpg_key="${base_url}SALT-PROJECT-GPG-PUBKEY-2023.pub"
-        fi
-
-        # This should prob be refactored to use __install_saltstack_rhel_repository()
-        # With args passed in to do the right thing.  Reformatted to be more like the
-        # amazon linux yum file.
-        if [ ! -s "/etc/yum.repos.d/${__REPO_FILENAME}" ]; then
-          cat <<_eof > "/etc/yum.repos.d/${__REPO_FILENAME}"
-[$repo_label]
-name=$repo_name
-failovermethod=priority
-priority=10
-gpgcheck=1
-gpgkey=$gpg_key
-baseurl=$base_url
-_eof
-        fi
-
-    fi
-
-    if [ "${_POST_NEON_INSTALL}" -eq $BS_FALSE ]; then
-        # Package python-ordereddict-1.1-2.el6.noarch is obsoleted by python26-2.6.9-2.88.amzn1.x86_64
-        # which is already installed
-        if [ -n "${PY_PKG_VER}" ] && [ "${PY_PKG_VER}" -eq 3 ]; then
-            __PACKAGES="${pkg_append}${PY_PKG_VER}-m2crypto ${pkg_append}${PY_PKG_VER}-pyyaml"
-        else
-            __PACKAGES="m2crypto PyYAML ${pkg_append}-futures"
-        fi
-
-        __PACKAGES="${__PACKAGES} ${pkg_append}${PY_PKG_VER}-crypto ${pkg_append}${PY_PKG_VER}-jinja2 procps-ng"
-        __PACKAGES="${__PACKAGES} ${pkg_append}${PY_PKG_VER}-msgpack ${pkg_append}${PY_PKG_VER}-requests ${pkg_append}${PY_PKG_VER}-zmq"
-
-        # shellcheck disable=SC2086
-        __yum_install_noinput ${__PACKAGES} || return 1
-    fi
-
-    if [ "${_EXTRA_PACKAGES}" != "" ]; then
-        echoinfo "Installing the following extra packages as requested: ${_EXTRA_PACKAGES}"
-        # shellcheck disable=SC2086
-        __yum_install_noinput ${_EXTRA_PACKAGES} || return 1
-    fi
-}
-
 install_amazon_linux_ami_stable() {
     install_centos_stable || return 1
     return 0
@@ -6648,16 +5575,6 @@ install_amazon_linux_ami_2_check_services() {
     return 0
 }
 
-install_amazon_linux_ami_2_onedir() {
-    install_centos_stable || return 1
-    return 0
-}
-
-install_amazon_linux_ami_2_onedir_post() {
-    install_centos_stable_post || return 1
-    return 0
-}
-
 #
 #   Ended Amazon Linux AMI Install Functions
 #
@@ -6749,10 +5666,6 @@ install_arch_linux_git_deps() {
     return 0
 }
 
-install_arch_linux_onedir_deps() {
-    install_arch_linux_stable_deps || return 1
-}
-
 install_arch_linux_stable() {
     # Pacman does not resolve dependencies on outdated versions
     # They always need to be updated
@@ -6771,8 +5684,6 @@ install_arch_linux_stable() {
 
 install_arch_linux_git() {
 
-    _POST_NEON_PIP_INSTALL_ARGS="${_POST_NEON_PIP_INSTALL_ARGS} --use-pep517"
-    _PIP_DOWNLOAD_ARGS="${_PIP_DOWNLOAD_ARGS} --use-pep517"
     if [ "${_POST_NEON_INSTALL}" -eq $BS_TRUE ]; then
          __install_salt_from_repo_post_neon "${_PY_EXE}" || return 1
         return 0
@@ -6830,15 +5741,8 @@ install_arch_linux_git_post() {
         [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
         [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
 
-        # Account for new path for services files in later releases
-        if [ -f "${_SALT_GIT_CHECKOUT_DIR}/pkg/common/salt-${fname}.service" ]; then
-          _SERVICE_DIR="${_SALT_GIT_CHECKOUT_DIR}/pkg/common"
-        else
-          _SERVICE_DIR="${_SALT_GIT_CHECKOUT_DIR}/pkg/rpm"
-        fi
-
         if [ -f /usr/bin/systemctl ]; then
-            __copyfile "${_SERVICE_DIR}/salt-${fname}.service" "/lib/systemd/system/salt-${fname}.service"
+            __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/rpm/salt-${fname}.service" "/lib/systemd/system/salt-${fname}.service"
 
             # Skip salt-api since the service should be opt-in and not necessarily started on boot
             [ $fname = "api" ] && continue
@@ -6905,344 +5809,11 @@ install_arch_check_services() {
 
     return 0
 }
-
-install_arch_linux_onedir() {
-  install_arch_linux_stable || return 1
-
-  return 0
-}
-
-install_arch_linux_onedir_post() {
-  install_arch_linux_post || return 1
-
-  return 0
-}
 #
 #   Ended Arch Install Functions
 #
 #######################################################################################################################
 
-#######################################################################################################################
-#
-#   Photon OS Install Functions
-#
-
-__install_saltstack_photon_onedir_repository() {
-    if [ "$ITYPE" = "stable" ]; then
-        REPO_REV="$ONEDIR_REV"
-    else
-        REPO_REV="latest"
-    fi
-
-    __PY_VERSION_REPO="yum"
-    if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
-        __PY_VERSION_REPO="py3"
-    fi
-
-    REPO_FILE="/etc/yum.repos.d/salt.repo"
-
-    if [ ! -s "$REPO_FILE" ] || [ "$_FORCE_OVERWRITE" -eq $BS_TRUE ]; then
-        FETCH_URL="${HTTP_VAL}://${_REPO_URL}/${_ONEDIR_DIR}/${__PY_VERSION_REPO}/photon/${DISTRO_MAJOR_VERSION}/${CPU_ARCH_L}/${ONEDIR_REV}"
-        if [ "${ONEDIR_REV}" = "nightly" ] ; then
-            FETCH_URL="${HTTP_VAL}://${_REPO_URL}/${_ONEDIR_NIGHTLY_DIR}/${__PY_VERSION_REPO}/photon/${DISTRO_MAJOR_VERSION}/${CPU_ARCH_L}/"
-        fi
-
-        __fetch_url "${REPO_FILE}" "${FETCH_URL}.repo"
-
-        GPG_KEY="SALT-PROJECT-GPG-PUBKEY-2023.pub"
-
-        __rpm_import_gpg "${FETCH_URL}/${GPG_KEY}" || return 1
-
-        tdnf makecache || return 1
-    elif [ "$REPO_REV" != "latest" ]; then
-        echowarn "salt.repo already exists, ignoring salt version argument."
-        echowarn "Use -F (forced overwrite) to install $REPO_REV."
-    fi
-
-    return 0
-}
-
-install_photon_deps() {
-    if [ "$_UPGRADE_SYS" -eq $BS_TRUE ]; then
-        tdnf -y update || return 1
-    fi
-
-    __PACKAGES="${__PACKAGES:=}"
-    if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -lt 3 ]; then
-        echoerror "There are no Python 2 stable packages for Fedora, only Py3 packages"
-        return 1
-    fi
-
-    PY_PKG_VER=3
-
-    __PACKAGES="${__PACKAGES} libyaml procps-ng python${PY_PKG_VER}-crypto python${PY_PKG_VER}-jinja2"
-    __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-msgpack python${PY_PKG_VER}-requests python${PY_PKG_VER}-zmq"
-    __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-pip python${PY_PKG_VER}-m2crypto python${PY_PKG_VER}-pyyaml"
-    __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-systemd"
-    if [ "${_EXTRA_PACKAGES}" != "" ]; then
-        echoinfo "Installing the following extra packages as requested: ${_EXTRA_PACKAGES}"
-    fi
-
-    # shellcheck disable=SC2086
-    __tdnf_install_noinput ${__PACKAGES} ${_EXTRA_PACKAGES} || return 1
-
-    return 0
-}
-
-install_photon_stable_post() {
-    for fname in api master minion syndic; do
-        # Skip salt-api since the service should be opt-in and not necessarily started on boot
-        [ $fname = "api" ] && continue
-
-        # Skip if not meant to be installed
-        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
-        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
-        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
-
-        systemctl is-enabled salt-$fname.service || (systemctl preset salt-$fname.service && systemctl enable salt-$fname.service)
-        sleep 1
-        systemctl daemon-reload
-    done
-}
-
-install_photon_git_deps() {
-    if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
-        # Packages are named python3-<whatever>
-        PY_PKG_VER=3
-    else
-        PY_PKG_VER=2
-    fi
-
-    __PACKAGES=""
-    if ! __check_command_exists ps; then
-        __PACKAGES="${__PACKAGES} procps-ng"
-    fi
-    if ! __check_command_exists git; then
-        __PACKAGES="${__PACKAGES} git"
-    fi
-
-    if [ -n "${__PACKAGES}" ]; then
-        # shellcheck disable=SC2086
-        __tdnf_install_noinput ${__PACKAGES} || return 1
-        __PACKAGES=""
-    fi
-
-    __git_clone_and_checkout || return 1
-
-    if [ "${_POST_NEON_INSTALL}" -eq $BS_FALSE ]; then
-
-        if [ "$_INSECURE_DL" -eq $BS_FALSE ] && [ "${_SALT_REPO_URL%%://*}" = "https" ]; then
-            __PACKAGES="${__PACKAGES} ca-certificates"
-        fi
-        if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ]; then
-            __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-libcloud python${PY_PKG_VER}-netaddr"
-        fi
-
-        install_photon_deps || return 1
-
-        if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
-            if __check_command_exists python3; then
-                __python="python3"
-            fi
-        elif [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 2 ]; then
-            if __check_command_exists python2; then
-                __python="python2"
-            fi
-        else
-            if ! __check_command_exists python; then
-                echoerror "Unable to find a python binary?!"
-                return 1
-            fi
-            # Let's hope it's the right one
-            __python="python"
-        fi
-
-        grep tornado "${_SALT_GIT_CHECKOUT_DIR}/requirements/base.txt" | while IFS='
-    '         read -r dep; do
-                echodebug "Running '${__python}' -m pip install '${dep}'"
-                "${__python}" -m pip install "${dep}" || return 1
-            done
-    else
-        __PACKAGES="python${PY_PKG_VER}-devel python${PY_PKG_VER}-pip python${PY_PKG_VER}-setuptools gcc glibc-devel linux-devel.x86_64"
-        # shellcheck disable=SC2086
-        __tdnf_install_noinput ${__PACKAGES} || return 1
-    fi
-
-    if [ "${DISTRO_MAJOR_VERSION}" -gt 3 ]; then
-      # Need newer version of setuptools on Photon
-      _setuptools_dep="setuptools>=${_MINIMUM_SETUPTOOLS_VERSION}"
-      echodebug "Running '${_PY_EXE} -m pip --upgrade install ${_setuptools_dep}'"
-      ${_PY_EXE} -m pip install --upgrade "${_setuptools_dep}"
-    fi
-
-    # Let's trigger config_salt()
-    if [ "$_TEMP_CONFIG_DIR" = "null" ]; then
-        _TEMP_CONFIG_DIR="${_SALT_GIT_CHECKOUT_DIR}/conf/"
-        CONFIG_SALT_FUNC="config_salt"
-    fi
-
-    return 0
-}
-
-install_photon_git() {
-    if [ "${_PY_EXE}" != "" ]; then
-        _PYEXE=${_PY_EXE}
-        echoinfo "Using the following python version: ${_PY_EXE} to install salt"
-    else
-        _PYEXE='python2'
-    fi
-
-    if [ -f "${_SALT_GIT_CHECKOUT_DIR}/salt/syspaths.py" ]; then
-        ${_PYEXE} setup.py --salt-config-dir="$_SALT_ETC_DIR" --salt-cache-dir="${_SALT_CACHE_DIR}" ${SETUP_PY_INSTALL_ARGS} install --prefix=/usr || return 1
-    else
-        ${_PYEXE} setup.py ${SETUP_PY_INSTALL_ARGS} install --prefix=/usr || return 1
-    fi
-    return 0
-}
-
-install_photon_git_post() {
-    for fname in api master minion syndic; do
-        # Skip if not meant to be installed
-        [ $fname = "api" ] && \
-            ([ "$_INSTALL_MASTER" -eq $BS_FALSE ] || ! __check_command_exists "salt-${fname}") && continue
-        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
-        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
-        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
-
-        # Account for new path for services files in later releases
-        if [ -f "${_SALT_GIT_CHECKOUT_DIR}/pkg/common/salt-${fname}.service" ]; then
-          _SERVICE_DIR="${_SALT_GIT_CHECKOUT_DIR}/pkg/common"
-        else
-          _SERVICE_DIR="${_SALT_GIT_CHECKOUT_DIR}/pkg/rpm"
-        fi
-        __copyfile "${_SERVICE_DIR}/salt-${fname}.service" "/lib/systemd/system/salt-${fname}.service"
-
-        # Salt executables are located under `/usr/local/bin/` on Fedora 36+
-        #if [ "${DISTRO_VERSION}" -ge 36 ]; then
-        #  sed -i -e 's:/usr/bin/:/usr/local/bin/:g' /lib/systemd/system/salt-*.service
-        #fi
-
-        # Skip salt-api since the service should be opt-in and not necessarily started on boot
-        [ $fname = "api" ] && continue
-
-        systemctl is-enabled salt-$fname.service || (systemctl preset salt-$fname.service && systemctl enable salt-$fname.service)
-        sleep 1
-        systemctl daemon-reload
-    done
-}
-
-install_photon_restart_daemons() {
-    [ $_START_DAEMONS -eq $BS_FALSE ] && return
-
-    for fname in api master minion syndic; do
-        # Skip salt-api since the service should be opt-in and not necessarily started on boot
-        [ $fname = "api" ] && continue
-
-        # Skip if not meant to be installed
-        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
-        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
-        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
-
-        systemctl stop salt-$fname > /dev/null 2>&1
-        systemctl start salt-$fname.service && continue
-        echodebug "Failed to start salt-$fname using systemd"
-        if [ "$_ECHO_DEBUG" -eq $BS_TRUE ]; then
-            systemctl status salt-$fname.service
-            journalctl -xe
-        fi
-    done
-}
-
-install_photon_check_services() {
-    for fname in api master minion syndic; do
-        # Skip salt-api since the service should be opt-in and not necessarily started on boot
-        [ $fname = "api" ] && continue
-
-        # Skip if not meant to be installed
-        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
-        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
-        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
-
-        __check_services_systemd salt-$fname || return 1
-    done
-
-    return 0
-}
-
-install_photon_onedir_deps() {
-
-    if [ "$_UPGRADE_SYS" -eq $BS_TRUE ]; then
-        tdnf -y update || return 1
-    fi
-
-    if [ "$_DISABLE_REPOS" -eq "$BS_TRUE" ] && [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
-        echowarn "Detected -r or -R option while installing Salt packages for Python 3."
-        echowarn "Python 3 packages for older Salt releases requires the EPEL repository to be installed."
-        echowarn "Installing the EPEL repository automatically is disabled when using the -r or -R options."
-    fi
-
-    if [ "$_DISABLE_REPOS" -eq "$BS_FALSE" ]; then
-        __install_saltstack_photon_onedir_repository || return 1
-    fi
-
-    # If -R was passed, we need to configure custom repo url with rsync-ed packages
-    # Which is still handled in __install_saltstack_rhel_repository. This call has
-    # its own check in case -r was passed without -R.
-    if [ "$_CUSTOM_REPO_URL" != "null" ]; then
-        __install_saltstack_photon_onedir_repository || return 1
-    fi
-
-    __PACKAGES="procps-ng"
-
-    # shellcheck disable=SC2086
-    __tdnf_install_noinput ${__PACKAGES} || return 1
-
-    if [ "${_EXTRA_PACKAGES}" != "" ]; then
-        echoinfo "Installing the following extra packages as requested: ${_EXTRA_PACKAGES}"
-        # shellcheck disable=SC2086
-        __tdnf_install_noinput ${_EXTRA_PACKAGES} || return 1
-    fi
-
-    return 0
-
-}
-
-
-install_photon_onedir() {
-    STABLE_REV=$ONEDIR_REV
-
-    __PACKAGES=""
-
-    if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ];then
-        __PACKAGES="${__PACKAGES} salt-cloud"
-    fi
-    if [ "$_INSTALL_MASTER" -eq $BS_TRUE ];then
-        __PACKAGES="${__PACKAGES} salt-master"
-    fi
-    if [ "$_INSTALL_MINION" -eq $BS_TRUE ]; then
-        __PACKAGES="${__PACKAGES} salt-minion"
-    fi
-    if [ "$_INSTALL_SYNDIC" -eq $BS_TRUE ];then
-        __PACKAGES="${__PACKAGES} salt-syndic"
-    fi
-
-    # shellcheck disable=SC2086
-    __tdnf_install_noinput ${__PACKAGES} || return 1
-
-    return 0
-}
-
-install_photon_onedir_post() {
-    STABLE_REV=$ONEDIR_REV
-    install_photon_stable_post || return 1
-
-    return 0
-}
-#
-#   Ended Fedora Install Functions
-#
-#######################################################################################################################
-
 #######################################################################################################################
 #
 #   FreeBSD Install Functions
@@ -7270,15 +5841,15 @@ install_freebsd_git_deps() {
 
     if [ "${_POST_NEON_INSTALL}" -eq $BS_FALSE ]; then
 
-        SALT_DEPENDENCIES=$(/usr/local/sbin/pkg rquery %dn py39-salt)
+        SALT_DEPENDENCIES=$(/usr/local/sbin/pkg rquery %dn py38-salt)
         # shellcheck disable=SC2086
         /usr/local/sbin/pkg install -y ${SALT_DEPENDENCIES} python || return 1
 
-        /usr/local/sbin/pkg install -y py39-requests || return 1
-        /usr/local/sbin/pkg install -y py39-tornado4 || return 1
+        /usr/local/sbin/pkg install -y py38-requests || return 1
+        /usr/local/sbin/pkg install -y py38-tornado4 || return 1
 
     else
-        /usr/local/sbin/pkg install -y python py39-pip py39-setuptools libzmq4 libunwind || return 1
+        /usr/local/sbin/pkg install -y python py38-pip py38-setuptools libzmq4 libunwind || return 1
     fi
 
     echodebug "Adapting paths to FreeBSD"
@@ -7324,7 +5895,7 @@ install_freebsd_stable() {
 # installing latest version of salt from FreeBSD CURRENT ports repo
 #
     # shellcheck disable=SC2086
-    /usr/local/sbin/pkg install -y py39-salt || return 1
+    /usr/local/sbin/pkg install -y py38-salt || return 1
 
     return 0
 }
@@ -7416,15 +5987,6 @@ install_freebsd_restart_daemons() {
         service salt_$fname start
     done
 }
-
-install_freebsd_onedir() {
-#
-# call install_freebsd_stable
-#
-    install_freebsd_stable || return 1
-
-    return 0
-}
 #
 #   Ended FreeBSD Install Functions
 #
@@ -7459,7 +6021,7 @@ install_openbsd_git_deps() {
     __git_clone_and_checkout || return 1
 
     if [ "${_POST_NEON_INSTALL}" -eq $BS_TRUE ]; then
-        pkg_add -I -v py3-pip py3-setuptools
+        pkg_add -I -v py-pip py-setuptools
     fi
 
     #
@@ -7543,14 +6105,6 @@ install_openbsd_restart_daemons() {
     return 0
 }
 
-install_openbsd_onedir() {
-#
-# Call install_openbsd_stable
-#
-    install_openbsd_stable || return 1
-
-    return 0
-}
 #
 #   Ended OpenBSD Install Functions
 #
@@ -7751,14 +6305,6 @@ install_smartos_restart_daemons() {
 
     return 0
 }
-install_smartos_onedir() {
-#
-# call install_smartos_stable
-#
-    install_smartos_stable || return 1
-
-    return 0
-}
 #
 #   Ended SmartOS Install Functions
 #
@@ -7775,16 +6321,19 @@ __set_suse_pkg_repo() {
     # Set distro repo variable
     if [ "${DISTRO_MAJOR_VERSION}" -gt 2015 ]; then
         DISTRO_REPO="openSUSE_Tumbleweed"
-    elif [ "${DISTRO_MAJOR_VERSION}" -eq 15 ] && [ "${DISTRO_MINOR_VERSION}" -ge 4 ]; then
-        DISTRO_REPO="${DISTRO_MAJOR_VERSION}.${DISTRO_MINOR_VERSION}"
     elif [ "${DISTRO_MAJOR_VERSION}" -ge 42 ] || [ "${DISTRO_MAJOR_VERSION}" -eq 15 ]; then
         DISTRO_REPO="openSUSE_Leap_${DISTRO_MAJOR_VERSION}.${DISTRO_MINOR_VERSION}"
     else
         DISTRO_REPO="SLE_${DISTRO_MAJOR_VERSION}_SP${SUSE_PATCHLEVEL}"
     fi
 
-    suse_pkg_url_base="https://download.opensuse.org/repositories/systemsmanagement:/saltstack"
-    suse_pkg_url_path="${DISTRO_REPO}/systemsmanagement:saltstack.repo"
+    if [ "$_DOWNSTREAM_PKG_REPO" -eq $BS_TRUE ]; then
+        suse_pkg_url_base="https://download.opensuse.org/repositories/systemsmanagement:/saltstack"
+        suse_pkg_url_path="${DISTRO_REPO}/systemsmanagement:saltstack.repo"
+    else
+        suse_pkg_url_base="${HTTP_VAL}://repo.saltproject.io/opensuse"
+        suse_pkg_url_path="${DISTRO_REPO}/systemsmanagement:saltstack:products.repo"
+    fi
     SUSE_PKG_URL="$suse_pkg_url_base/$suse_pkg_url_path"
 }
 
@@ -7804,7 +6353,7 @@ __version_lte() {
              zypper --non-interactive install --auto-agree-with-licenses python || return 1
     fi
 
-    if [ "$(${_PY_EXE} -c 'import sys; V1=tuple([int(i) for i in sys.argv[1].split(".")]); V2=tuple([int(i) for i in sys.argv[2].split(".")]); print(V1<=V2)' "$1" "$2")" = "True" ]; then
+    if [ "$(python -c 'import sys; V1=tuple([int(i) for i in sys.argv[1].split(".")]); V2=tuple([int(i) for i in sys.argv[2].split(".")]); print V1<=V2' "$1" "$2")" = "True" ]; then
         __ZYPPER_REQUIRES_REPLACE_FILES=${BS_TRUE}
     else
         __ZYPPER_REQUIRES_REPLACE_FILES=${BS_FALSE}
@@ -7921,7 +6470,7 @@ install_opensuse_git_deps() {
         fi
     # Check for Tumbleweed
     elif [ "${DISTRO_MAJOR_VERSION}" -ge 20210101 ]; then
-        __PACKAGES="python3-pip gcc-c++ python3-pyzmq-devel"
+        __PACKAGES="python3-pip"
     else
         __PACKAGES="python-pip python-setuptools gcc"
     fi
@@ -7938,10 +6487,6 @@ install_opensuse_git_deps() {
     return 0
 }
 
-install_opensuse_onedir_deps() {
-    install_opensuse_stable_deps || return 1
-}
-
 install_opensuse_stable() {
     __PACKAGES=""
 
@@ -7974,10 +6519,6 @@ install_opensuse_git() {
     return 0
 }
 
-install_opensuse_onedir() {
-  install_opensuse_stable || return 1
-}
-
 install_opensuse_stable_post() {
     for fname in api master minion syndic; do
         # Skip salt-api since the service should be opt-in and not necessarily started on boot
@@ -8022,17 +6563,10 @@ install_opensuse_git_post() {
                 use_usr_lib=$BS_TRUE
             fi
 
-            # Account for new path for services files in later releases
-            if [ -f "${_SALT_GIT_CHECKOUT_DIR}/pkg/common/salt-${fname}.service" ]; then
-              _SERVICE_DIR="${_SALT_GIT_CHECKOUT_DIR}/pkg/common"
-            else
-              _SERVICE_DIR="${_SALT_GIT_CHECKOUT_DIR}/pkg/"
-            fi
-
             if [ "${use_usr_lib}" -eq $BS_TRUE ]; then
-                __copyfile "${_SERVICE_DIR}/salt-${fname}.service" "/usr/lib/systemd/system/salt-${fname}.service"
+                __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/salt-${fname}.service" "/usr/lib/systemd/system/salt-${fname}.service"
             else
-                __copyfile "${_SERVICE_DIR}/salt-${fname}.service" "/lib/systemd/system/salt-${fname}.service"
+                __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/salt-${fname}.service" "/lib/systemd/system/salt-${fname}.service"
             fi
 
             continue
@@ -8047,10 +6581,6 @@ install_opensuse_git_post() {
     return 0
 }
 
-install_opensuse_onedir_post() {
-  install_opensuse_stable_post || return 1
-}
-
 install_opensuse_restart_daemons() {
     [ $_START_DAEMONS -eq $BS_FALSE ] && return
 
@@ -8210,11 +6740,6 @@ install_opensuse_15_git() {
     return 0
 }
 
-install_opensuse_15_onedir_deps() {
-    __opensuse_prep_install || return 1
-    return 0
-}
-
 #
 #   End of openSUSE Leap 15
 #
@@ -8244,13 +6769,6 @@ install_suse_15_git_deps() {
     return 0
 }
 
-install_suse_15_onedir_deps() {
-    __opensuse_prep_install || return 1
-    install_opensuse_15_onedir_deps || return 1
-
-    return 0
-}
-
 install_suse_15_stable() {
     install_opensuse_stable || return 1
     return 0
@@ -8261,11 +6779,6 @@ install_suse_15_git() {
     return 0
 }
 
-install_suse_15_onedir() {
-    install_opensuse_stable || return 1
-    return 0
-}
-
 install_suse_15_stable_post() {
     install_opensuse_stable_post || return 1
     return 0
@@ -8276,11 +6789,6 @@ install_suse_15_git_post() {
     return 0
 }
 
-install_suse_15_onedir_post() {
-    install_opensuse_stable_post || return 1
-    return 0
-}
-
 install_suse_15_restart_daemons() {
     install_opensuse_restart_daemons || return 1
     return 0
@@ -8363,11 +6871,6 @@ install_suse_12_git_deps() {
     return 0
 }
 
-install_suse_12_onedir_deps() {
-    install_suse_12_stable_deps || return 1
-    return 0
-}
-
 install_suse_12_stable() {
     install_opensuse_stable || return 1
     return 0
@@ -8378,11 +6881,6 @@ install_suse_12_git() {
     return 0
 }
 
-install_suse_12_onedir() {
-    install_opensuse_stable || return 1
-    return 0
-}
-
 install_suse_12_stable_post() {
     install_opensuse_stable_post || return 1
     return 0
@@ -8393,11 +6891,6 @@ install_suse_12_git_post() {
     return 0
 }
 
-install_suse_12_onedir_post() {
-    install_opensuse_stable_post || return 1
-    return 0
-}
-
 install_suse_12_restart_daemons() {
     install_opensuse_restart_daemons || return 1
     return 0
@@ -8474,11 +6967,6 @@ install_suse_11_git_deps() {
     return 0
 }
 
-install_suse_11_onedir_deps() {
-    install_suse_11_stable_deps || return 1
-    return 0
-}
-
 install_suse_11_stable() {
     install_opensuse_stable || return 1
     return 0
@@ -8489,11 +6977,6 @@ install_suse_11_git() {
     return 0
 }
 
-install_suse_11_onedir() {
-    install_opensuse_stable || return 1
-    return 0
-}
-
 install_suse_11_stable_post() {
     install_opensuse_stable_post || return 1
     return 0
@@ -8504,11 +6987,6 @@ install_suse_11_git_post() {
     return 0
 }
 
-install_suse_11_onedir_post() {
-    install_opensuse_stable_post || return 1
-    return 0
-}
-
 install_suse_11_restart_daemons() {
     install_opensuse_restart_daemons || return 1
     return 0
@@ -8608,6 +7086,11 @@ __gentoo_pre_dep() {
         mkdir /etc/portage
     fi
 
+    # Enable Python 3.6 target for pre Neon Salt release
+    if echo "${STABLE_REV}" | grep -q "2019" || [ "${ITYPE}" = "git" ] && [ "${_POST_NEON_INSTALL}" -eq $BS_FALSE ]; then
+        EXTRA_PYTHON_TARGET=python3_6
+    fi
+
     # Enable Python 3.7 target for Salt Neon using GIT
     if [ "${ITYPE}" = "git" ] && [ "${GIT_REV}" = "v3000" ]; then
         EXTRA_PYTHON_TARGET=python3_7
@@ -8703,9 +7186,6 @@ install_gentoo_git_deps() {
         __emerge ${GENTOO_GIT_PACKAGES} || return 1
     fi
 
-    echoinfo "Running emerge -v1 setuptools"
-    __emerge -v1 setuptools || return 1
-
     __git_clone_and_checkout || return 1
     __gentoo_post_dep || return 1
 }
@@ -8753,11 +7233,6 @@ install_gentoo_git() {
     return 0
 }
 
-install_gentoo_onedir() {
-  STABLE_REV=${ONEDIR_REV}
-  install_gentoo_stable || return 1
-}
-
 install_gentoo_post() {
     for fname in api master minion syndic; do
         # Skip salt-api since the service should be opt-in and not necessarily started on boot
@@ -8793,15 +7268,8 @@ install_gentoo_git_post() {
         [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
         [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
 
-        # Account for new path for services files in later releases
-        if [ -f "${_SALT_GIT_CHECKOUT_DIR}/pkg/common/salt-${fname}.service" ]; then
-          _SERVICE_DIR="${_SALT_GIT_CHECKOUT_DIR}/pkg/common"
-        else
-          _SERVICE_DIR="${_SALT_GIT_CHECKOUT_DIR}/pkg"
-        fi
-
         if __check_command_exists systemctl ; then
-            __copyfile "${_SERVICE_DIR}/salt-${fname}.service" "/lib/systemd/system/salt-${fname}.service"
+            __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/salt-${fname}.service" "/lib/systemd/system/salt-${fname}.service"
 
             # Skip salt-api since the service should be opt-in and not necessarily started on boot
             [ $fname = "api" ] && continue
@@ -8847,10 +7315,6 @@ _eof
     return 0
 }
 
-install_gentoo_onedir_post() {
-  install_gentoo_post || return 1
-}
-
 install_gentoo_restart_daemons() {
     [ $_START_DAEMONS -eq $BS_FALSE ] && return
 
@@ -9002,46 +7466,7 @@ __macosx_get_packagesite() {
     fi
 
     PKG="salt-${STABLE_REV}-${__PY_VERSION_REPO}-${DARWIN_ARCH}.pkg"
-    SALTPKGCONFURL="https://${_REPO_URL}/osx/${PKG}"
-}
-
-__parse_repo_json_python() {
-
-  # Using latest, grab the right
-  # version from the repo.json
-  _JSON_VERSION=$(python - <<-EOF
-import json, urllib.request
-url = "https://repo.saltproject.io/salt/py3/macos/repo.json"
-response = urllib.request.urlopen(url)
-data = json.loads(response.read())
-version = data["${_ONEDIR_REV}"][list(data["${_ONEDIR_REV}"])[0]]['version']
-print(version)
-EOF
-)
-echo "${_JSON_VERSION}"
-}
-
-__macosx_get_packagesite_onedir() {
-    DARWIN_ARCH="x86_64"
-
-    __PY_VERSION_REPO="py2"
-    if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
-        __PY_VERSION_REPO="py3"
-    fi
-
-    if [ "$(echo "$_ONEDIR_REV" | grep -E '^(latest)$')" != "" ]; then
-      _PKG_VERSION=$(__parse_repo_json_python)
-    elif [ "$(echo "$_ONEDIR_REV" | grep -E '^([3-9][0-9]{3}(\.[0-9]*))')" != "" ]; then
-      _PKG_VERSION=$_ONEDIR_REV
-    else
-      _PKG_VERSION=$(__parse_repo_json_python)
-    fi
-    if [ "$(echo "$_ONEDIR_REV" | grep -E '^(3005)')" != "" ]; then
-      PKG="salt-${_PKG_VERSION}-macos-${DARWIN_ARCH}.pkg"
-    else
-      PKG="salt-${_PKG_VERSION}-${__PY_VERSION_REPO}-${DARWIN_ARCH}.pkg"
-    fi
-    SALTPKGCONFURL="https://${_REPO_URL}/${_ONEDIR_DIR}/${__PY_VERSION_REPO}/macos/${ONEDIR_REV}/${PKG}"
+    SALTPKGCONFURL="https://repo.saltproject.io/osx/${PKG}"
 }
 
 # Using a separate conf step to head for idempotent install...
@@ -9050,21 +7475,11 @@ __configure_macosx_pkg_details() {
     return 0
 }
 
-__configure_macosx_pkg_details_onedir() {
-    __macosx_get_packagesite_onedir || return 1
-    return 0
-}
-
 install_macosx_stable_deps() {
     __configure_macosx_pkg_details || return 1
     return 0
 }
 
-install_macosx_onedir_deps() {
-    __configure_macosx_pkg_details_onedir || return 1
-    return 0
-}
-
 install_macosx_git_deps() {
     install_macosx_stable_deps || return 1
 
@@ -9111,16 +7526,6 @@ install_macosx_stable() {
     return 0
 }
 
-install_macosx_onedir() {
-    install_macosx_onedir_deps || return 1
-
-    __fetch_url "/tmp/${PKG}" "${SALTPKGCONFURL}" || return 1
-
-    /usr/sbin/installer -pkg "/tmp/${PKG}" -target / || return 1
-
-    return 0
-}
-
 install_macosx_git() {
 
     if [ -n "$_PY_EXE" ]; then
@@ -9158,11 +7563,6 @@ install_macosx_stable_post() {
     return 0
 }
 
-install_macosx_onedir_post() {
-    install_macosx_stable_post || return 1
-    return 0
-}
-
 install_macosx_git_post() {
     install_macosx_stable_post || return 1
     return 0
@@ -9171,15 +7571,8 @@ install_macosx_git_post() {
 install_macosx_restart_daemons() {
     [ $_START_DAEMONS -eq $BS_FALSE ] && return
 
-    if [ "$_INSTALL_MINION" -eq $BS_TRUE ]; then
-      /bin/launchctl unload -w /Library/LaunchDaemons/com.saltstack.salt.minion.plist || return 1
-      /bin/launchctl load -w /Library/LaunchDaemons/com.saltstack.salt.minion.plist || return 1
-    fi
-
-    if [ "$_INSTALL_MASTER" -eq $BS_TRUE ]; then
-      /bin/launchctl unload -w /Library/LaunchDaemons/com.saltstack.salt.master.plist || return 1
-      /bin/launchctl load -w /Library/LaunchDaemons/com.saltstack.salt.master.plist || return 1
-    fi
+    /bin/launchctl unload -w /Library/LaunchDaemons/com.saltstack.salt.minion.plist || return 1
+    /bin/launchctl load -w /Library/LaunchDaemons/com.saltstack.salt.minion.plist || return 1
 
    return 0
 }
@@ -9381,43 +7774,6 @@ preseed_master() {
 #
 #######################################################################################################################
 
-#######################################################################################################################
-#
-#   This function checks if all of the installed daemons are running or not.
-#
-daemons_running_onedir() {
-    [ "$_START_DAEMONS" -eq $BS_FALSE ] && return 0
-
-    FAILED_DAEMONS=0
-    for fname in api master minion syndic; do
-        # Skip salt-api since the service should be opt-in and not necessarily started on boot
-        [ $fname = "api" ] && continue
-
-        # Skip if not meant to be installed
-        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
-        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
-        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
-
-        if [ -f "/opt/saltstack/salt/run/run" ]; then
-            salt_path="/opt/saltstack/salt/run/run ${fname}"
-        else
-            salt_path="salt-${fname}"
-        fi
-        process_running=$(pgrep -f "${salt_path}")
-        if [ "${process_running}" = "" ]; then
-            echoerror "${salt_path} was not found running"
-            FAILED_DAEMONS=$((FAILED_DAEMONS + 1))
-        fi
-    done
-
-    return $FAILED_DAEMONS
-}
-
-#
-#  Ended daemons running check function
-#
-#######################################################################################################################
-
 #######################################################################################################################
 #
 #   This function checks if all of the installed daemons are running or not.
@@ -9518,7 +7874,6 @@ echodebug "PRESEED_MASTER_FUNC=${PRESEED_MASTER_FUNC}"
 INSTALL_FUNC_NAMES="install_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}_${ITYPE}"
 INSTALL_FUNC_NAMES="$INSTALL_FUNC_NAMES install_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}${PREFIXED_DISTRO_MINOR_VERSION}_${ITYPE}"
 INSTALL_FUNC_NAMES="$INSTALL_FUNC_NAMES install_${DISTRO_NAME_L}_${ITYPE}"
-echodebug "INSTALL_FUNC_NAMES=${INSTALL_FUNC_NAMES}"
 
 INSTALL_FUNC="null"
 for FUNC_NAME in $(__strip_duplicates "$INSTALL_FUNC_NAMES"); do
@@ -9570,7 +7925,6 @@ DAEMONS_RUNNING_FUNC_NAMES="$DAEMONS_RUNNING_FUNC_NAMES daemons_running_${DISTRO
 DAEMONS_RUNNING_FUNC_NAMES="$DAEMONS_RUNNING_FUNC_NAMES daemons_running_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}${PREFIXED_DISTRO_MINOR_VERSION}"
 DAEMONS_RUNNING_FUNC_NAMES="$DAEMONS_RUNNING_FUNC_NAMES daemons_running_${DISTRO_NAME_L}_${ITYPE}"
 DAEMONS_RUNNING_FUNC_NAMES="$DAEMONS_RUNNING_FUNC_NAMES daemons_running_${DISTRO_NAME_L}"
-DAEMONS_RUNNING_FUNC_NAMES="$DAEMONS_RUNNING_FUNC_NAMES daemons_running_${ITYPE}"
 DAEMONS_RUNNING_FUNC_NAMES="$DAEMONS_RUNNING_FUNC_NAMES daemons_running"
 
 DAEMONS_RUNNING_FUNC="null"
@@ -9760,11 +8114,6 @@ if [ "$DAEMONS_RUNNING_FUNC" != "null" ] && [ ${_START_DAEMONS} -eq $BS_TRUE ];
     fi
 fi
 
-if [ "$_AUTO_ACCEPT_MINION_KEYS" -eq "$BS_TRUE" ]; then
-  echoinfo "Accepting the Salt Minion Keys"
-  salt-key -yA
-fi
-
 # Done!
 if [ "$_CONFIG_ONLY" -eq $BS_FALSE ]; then
     echoinfo "Salt installed!"
@@ -9772,13 +8121,6 @@ else
     echoinfo "Salt configured!"
 fi
 
-if [ "$_QUICK_START" -eq "$BS_TRUE" ]; then
-  echoinfo "Congratulations!"
-  echoinfo "A couple of commands to try:"
-  echoinfo "  salt \* test.ping"
-  echoinfo "  salt \* test.version"
-fi
-
 exit 0
 
 # vim: set sts=4 ts=4 et
diff --git a/setup/so-functions b/setup/so-functions
index b64daaa92..1c9b0f43d 100755
--- a/setup/so-functions
+++ b/setup/so-functions
@@ -1258,7 +1258,7 @@ generate_ssl() {
 	# if the install type is a manager then we need to wait for the minion to be ready before trying
 	# to run the ssl state since we need the minion to sign the certs
 	if [[ "$install_type" =~ ^(EVAL|MANAGER|MANAGERSEARCH|STANDALONE|IMPORT|HELIXSENSOR)$ ]]; then
-		wait_for_salt_minion "$MINION_ID" "5" "$setup_log" || fail_setup
+		wait_for_salt_minion
 	fi
 	info "Applying SSL state"
 	logCmd "salt-call state.apply ssl -l info"
@@ -1972,7 +1972,6 @@ securityonion_repo() {
 }
 
 repo_sync_local() {
-	SALTVERSION=$(egrep 'version: [0-9]{4}' ../salt/salt/master.defaults.yaml | sed 's/^.*version: //')
 	info "Repo Sync"
 	if [[ $is_supported ]]; then
 		# Sync the repo from the the SO repo locally.
@@ -2022,7 +2021,7 @@ repo_sync_local() {
 			curl -fsSL https://repo.securityonion.net/file/so-repo/prod/2.4/so/so.repo | tee /etc/yum.repos.d/so.repo
 			rpm --import https://repo.saltproject.io/salt/py3/redhat/9/x86_64/SALT-PROJECT-GPG-PUBKEY-2023.pub
 			dnf config-manager --add-repo https://download.docker.com/linux/centos/docker-ce.repo
-			curl -fsSL "https://repo.saltproject.io/salt/py3/redhat/9/x86_64/minor/$SALTVERSION.repo" | tee /etc/yum.repos.d/salt.repo
+			curl -fsSL https://repo.saltproject.io/salt/py3/redhat/9/x86_64/minor/3006.1.repo | tee /etc/yum.repos.d/salt.repo
 			dnf repolist
 			curl --retry 5 --retry-delay 60 -A "netinstall/$SOVERSION/$OS/$(uname -r)/1" https://sigs.securityonion.net/checkup --output /tmp/install
 		else

From a887551dad8a9fed9a2b3f4d3b5e506d926a5e68 Mon Sep 17 00:00:00 2001
From: Mike Reeves <mike.reeves@securityonionsolutions.com>
Date: Wed, 25 Oct 2023 15:22:47 -0400
Subject: [PATCH 271/417] Annotation changes for warm node

---
 salt/elasticsearch/soc_elasticsearch.yaml | 262 ++++++++++++++++------
 1 file changed, 197 insertions(+), 65 deletions(-)

diff --git a/salt/elasticsearch/soc_elasticsearch.yaml b/salt/elasticsearch/soc_elasticsearch.yaml
index e4de29e00..f04ba08e0 100644
--- a/salt/elasticsearch/soc_elasticsearch.yaml
+++ b/salt/elasticsearch/soc_elasticsearch.yaml
@@ -33,7 +33,6 @@ elasticsearch:
               flood_stage: 
                 description: The max percentage of used disk space that will cause the node to take protective actions, such as blocking incoming events.
                 helpLink: elasticsearch.html
-
     script:
       max_compilations_rate: 
         description: Max rate of script compilations permitted in the Elasticsearch cluster. Larger values will consume more resources.
@@ -48,6 +47,11 @@ elasticsearch:
             helpLink: elasticsearch.html
   index_settings:
     global_overrides:
+      index_sorting:
+        description: Sorts the index by event time, at the cost of additional processing resource consumption.
+        global: True
+        advanced: True
+        helpLink: elasticsearch.html
       index_template:
         template:
           settings:
@@ -57,32 +61,6 @@ elasticsearch:
                 forcedType: int
                 global: True
                 helpLink: elasticsearch.html
-    so-logs: &indexSettings
-      index_sorting: 
-        description: Sorts the index by event time, at the cost of additional processing resource consumption.
-        global: True
-        helpLink: elasticsearch.html
-      index_template:
-        index_patterns:
-          description: Patterns for matching multiple indices or tables.
-          forceType: "[]string"
-          multiline: True
-          global: True
-          helpLink: elasticsearch.html
-        template:
-          settings:
-            index:
-              number_of_replicas: 
-                description: Number of replicas required for this index. Multiple replicas protects against data loss, but also increases storage costs.
-                forcedType: int
-                global: True
-                helpLink: elasticsearch.html
-              mapping:
-                total_fields:
-                  limit:
-                    description: Max number of fields that can exist on a single index. Larger values will consume more resources.
-                    global: True
-                    helpLink: elasticsearch.html
               refresh_interval: 
                 description: Seconds between index refreshes. Shorter intervals can cause query performance to suffer since this is a synchronous and resource-intensive operation.
                 global: True
@@ -100,44 +78,7 @@ elasticsearch:
                   description: The order to sort by. Must set index_sorting to True.
                   global: True
                   helpLink: elasticsearch.html
-          mappings:
-            _meta:
-              package:
-                name:
-                  description: Meta settings for the mapping.
-                  global: True
-                  helpLink: elasticsearch.html
-              managed_by:
-                  description: Meta settings for the mapping.
-                  global: True
-                  helpLink: elasticsearch.html
-              managed:
-                  description: Meta settings for the mapping.
-                  forcedType: bool
-                  global: True
-                  helpLink: elasticsearch.html
-        composed_of:
-          description: The index template is composed of these component templates.
-          forcedType: "[]string"
-          global: True
-          helpLink: elasticsearch.html
-        priority:
-          description: The priority of the index template.
-          forcedType: int
-          global: True
-          helpLink: elasticsearch.html
-        data_stream:
-          hidden:
-            description: Hide the data stream.
-            forcedType: bool
-            global: True
-            helpLink: elasticsearch.html
-          allow_custom_routing:
-            description: Allow custom routing for the data stream.
-            forcedType: bool
-            global: True
-            helpLink: elasticsearch.html
-      policy:
+            policy:
         phases:
           hot:
             min_age:
@@ -160,6 +101,27 @@ elasticsearch:
                   description: Maximum primary shard size. Once an index reaches this limit, it will be rolled over into a new index.
                   global: True
                   helpLink: elasticsearch.html
+          warm:
+            min_age:
+              description: Minimum age of index. This determines when the index should be moved to the warm tier.
+              global: True
+              helpLink: elasticsearch.html
+            actions:
+              set_priority:
+                priority:
+                  description: Priority of index. This is used for recovery after a node restart. Indices with higher priorities are recovered before indices with lower priorities.
+                  forcedType: int
+                  global: True
+                  helpLink: elasticsearch.html
+              rollover:
+                max_age:
+                  description: Maximum age of index.  Once an index reaches this limit, it will be rolled over into a new index.
+                  global: True
+                  helpLink: elasticsearch.html
+                max_primary_shard_size:
+                  description: Maximum primary shard size. Once an index reaches this limit, it will be rolled over into a new index.
+                  global: True
+                  helpLink: elasticsearch.html
           cold:
             min_age:
               description: Minimum age of index.  This determines when the index should be moved to the cold tier.  While still searchable, this tier is typically optimized for lower storage costs rather than search speed.
@@ -177,20 +139,190 @@ elasticsearch:
               description: Minimum age of index. This determines when the index should be deleted.
               global: True
               helpLink: elasticsearch.html
+    so-logs: &indexSettings
+      index_sorting: 
+        description: Sorts the index by event time, at the cost of additional processing resource consumption.
+        global: True
+        advanced: True
+        helpLink: elasticsearch.html
+      index_template:
+        index_patterns:
+          description: Patterns for matching multiple indices or tables.
+          forceType: "[]string"
+          multiline: True
+          global: True
+          advanced: True
+          helpLink: elasticsearch.html
+        template:
+          settings:
+            index:
+              number_of_replicas: 
+                description: Number of replicas required for this index. Multiple replicas protects against data loss, but also increases storage costs.
+                forcedType: int
+                global: True
+                advanced: True
+                helpLink: elasticsearch.html
+              mapping:
+                total_fields:
+                  limit:
+                    description: Max number of fields that can exist on a single index. Larger values will consume more resources.
+                    global: True
+                    advanced: True
+                    helpLink: elasticsearch.html
+              refresh_interval: 
+                description: Seconds between index refreshes. Shorter intervals can cause query performance to suffer since this is a synchronous and resource-intensive operation.
+                global: True
+                advanced: True
+                helpLink: elasticsearch.html
+              number_of_shards: 
+                description: Number of shards required for this index. Using multiple shards increases fault tolerance, but also increases storage and network costs.
+                global: True
+                advanced: True
+                helpLink: elasticsearch.html
+              sort:
+                field:
+                  description: The field to sort by. Must set index_sorting to True.
+                  global: True
+                  advanced: True
+                  helpLink: elasticsearch.html
+                order:
+                  description: The order to sort by. Must set index_sorting to True.
+                  global: True
+                  advanced: True
+                  helpLink: elasticsearch.html
+          mappings:
+            _meta:
+              package:
+                name:
+                  description: Meta settings for the mapping.
+                  global: True
+                  advanced: True
+                  helpLink: elasticsearch.html
+              managed_by:
+                  description: Meta settings for the mapping.
+                  global: True
+                  advanced: True
+                  helpLink: elasticsearch.html
+              managed:
+                  description: Meta settings for the mapping.
+                  forcedType: bool
+                  global: True
+                  advanced: True
+                  helpLink: elasticsearch.html
+        composed_of:
+          description: The index template is composed of these component templates.
+          forcedType: "[]string"
+          global: True
+          advanced: True
+          helpLink: elasticsearch.html
+        priority:
+          description: The priority of the index template.
+          forcedType: int
+          global: True
+          advanced: True
+          helpLink: elasticsearch.html
+        data_stream:
+          hidden:
+            description: Hide the data stream.
+            forcedType: bool
+            global: True
+            advanced: True
+            helpLink: elasticsearch.html
+          allow_custom_routing:
+            description: Allow custom routing for the data stream.
+            forcedType: bool
+            global: True
+            advanced: True
+            helpLink: elasticsearch.html
+      policy:
+        phases:
+          hot:
+            min_age:
+              description: Minimum age of index. This determines when the index should be moved to the hot tier.
+              global: True
+              advanced: True
+              helpLink: elasticsearch.html
+            actions:
+              set_priority:
+                priority:
+                  description: Priority of index. This is used for recovery after a node restart. Indices with higher priorities are recovered before indices with lower priorities.
+                  forcedType: int
+                  global: True
+                  advanced: True
+                  helpLink: elasticsearch.html
+              rollover:
+                max_age:
+                  description: Maximum age of index.  Once an index reaches this limit, it will be rolled over into a new index.
+                  global: True
+                  advanced: True
+                  helpLink: elasticsearch.html
+                max_primary_shard_size:
+                  description: Maximum primary shard size. Once an index reaches this limit, it will be rolled over into a new index.
+                  global: True
+                  advanced: True
+                  helpLink: elasticsearch.html
+          warm:
+            min_age:
+              description: Minimum age of index. This determines when the index should be moved to the hot tier.
+              global: True
+              advanced: True
+              helpLink: elasticsearch.html
+            actions:
+              set_priority:
+                priority:
+                  description: Priority of index. This is used for recovery after a node restart. Indices with higher priorities are recovered before indices with lower priorities.
+                  forcedType: int
+                  global: True
+                  advanced: True
+                  helpLink: elasticsearch.html
+              rollover:
+                max_age:
+                  description: Maximum age of index.  Once an index reaches this limit, it will be rolled over into a new index.
+                  global: True
+                  advanced: True
+                  helpLink: elasticsearch.html
+                max_primary_shard_size:
+                  description: Maximum primary shard size. Once an index reaches this limit, it will be rolled over into a new index.
+                  global: True
+                  advanced: True
+                  helpLink: elasticsearch.html
+          cold:
+            min_age:
+              description: Minimum age of index.  This determines when the index should be moved to the cold tier.  While still searchable, this tier is typically optimized for lower storage costs rather than search speed.
+              global: True
+              advanced: True
+              helpLink: elasticsearch.html
+            actions:
+              set_priority:
+                priority:
+                  description: Used for index recovery after a node restart. Indices with higher priorities are recovered before indices with lower priorities.
+                  forcedType: int
+                  global: True
+                  advanced: True
+                  helpLink: elasticsearch.html
+          delete:
+            min_age:
+              description: Minimum age of index. This determines when the index should be deleted.
+              global: True
+              advanced: True
+              helpLink: elasticsearch.html
         _meta:
           package:
             name:
               description: Meta settings for the mapping.
               global: True
+              advanced: True
               helpLink: elasticsearch.html
           managed_by:
             description: Meta settings for the mapping.
             global: True
+            advanced: True
             helpLink: elasticsearch.html
           managed:
             description: Meta settings for the mapping.
             forcedType: bool
             global: True
+            advanced: True
             helpLink: elasticsearch.html
     so-logs-system_x_auth: *indexSettings
     so-logs-system_x_syslog: *indexSettings

From 6fb0c5dbfe5800c59a078a7aed80b0be1a8ed1c8 Mon Sep 17 00:00:00 2001
From: Mike Reeves <mike.reeves@securityonionsolutions.com>
Date: Wed, 25 Oct 2023 15:37:36 -0400
Subject: [PATCH 272/417] Annotation changes for warm node

---
 salt/elasticsearch/soc_elasticsearch.yaml | 15 +++++++++++++++
 1 file changed, 15 insertions(+)

diff --git a/salt/elasticsearch/soc_elasticsearch.yaml b/salt/elasticsearch/soc_elasticsearch.yaml
index f04ba08e0..764de3c44 100644
--- a/salt/elasticsearch/soc_elasticsearch.yaml
+++ b/salt/elasticsearch/soc_elasticsearch.yaml
@@ -477,3 +477,18 @@ elasticsearch:
     so-strelka: *indexSettings
     so-syslog: *indexSettings
     so-zeek: *indexSettings
+  so_roles:
+    so-maanger: &soroleSettings
+      node:
+        roles:
+          description: List of Elasticsearch roles that the node should have. Blank assumes all roles
+          forcedType: "[]string"
+          global: False
+          advanced: True
+          helpLink: elasticsearch.html
+    so-managersearch: *soroleSettings
+    so-standalone: *soroleSettings
+    so-searchnode: *soroleSettings
+    so-heavynode: *soroleSettings
+    so-eval: *soroleSettings
+    so-import: *soroleSettings
\ No newline at end of file

From 1ae8896a05b6b07c4bdaf664f72ecc56544c4c4f Mon Sep 17 00:00:00 2001
From: Josh Patterson <josh.patterson@securityonionsolutions.com>
Date: Wed, 25 Oct 2023 15:47:40 -0400
Subject: [PATCH 273/417] Update config.map.jinja

---
 salt/elasticsearch/config.map.jinja | 10 ++--------
 1 file changed, 2 insertions(+), 8 deletions(-)

diff --git a/salt/elasticsearch/config.map.jinja b/salt/elasticsearch/config.map.jinja
index 37447cabb..c98d96cc0 100644
--- a/salt/elasticsearch/config.map.jinja
+++ b/salt/elasticsearch/config.map.jinja
@@ -20,20 +20,12 @@
       {% for NODE in ES_LOGSTASH_NODES %}
         {% do ELASTICSEARCHDEFAULTS.elasticsearch.config.discovery.seed_hosts.append(NODE.keys()|first) %}
       {% endfor %}
-      {% if grains.id.split('_') | last == 'manager' %}
-        {% do ELASTICSEARCHDEFAULTS.elasticsearch.config.node.update({'roles': ['master','data','remote_cluster_client','transform']}) %}
-      {% else %}
-        {% do ELASTICSEARCHDEFAULTS.elasticsearch.config.node.update({'roles': ['master', 'data_hot', 'remote_cluster_client']}) %}
-      {% endif %}
     {% endif %}
 {% elif grains.id.split('_') | last == 'searchnode' %}
-  {% do ELASTICSEARCHDEFAULTS.elasticsearch.config.node.update({'roles': ['data_hot', 'ingest']}) %}
   {% if HIGHLANDER %}
         {% do ELASTICSEARCHDEFAULTS.elasticsearch.config.node.roles.extend(['ml', 'master', 'transform']) %}
   {% endif %}
   {% do ELASTICSEARCHDEFAULTS.elasticsearch.config.update({'discovery': {'seed_hosts': [GLOBALS.manager]}}) %}
-{% elif grains.id.split('_') | last == 'heavynode' %}
-  {% do ELASTICSEARCHDEFAULTS.elasticsearch.config.node.update({'roles': ['master', 'data', 'remote_cluster_client', 'ingest']}) %}
 {% endif %}
 {% if HIGHLANDER %}
       {% do ELASTICSEARCHDEFAULTS.elasticsearch.config.xpack.ml.update({'enabled': true}) %}
@@ -53,3 +45,5 @@
     {% endif %}
   {% endfor %}
 {% endif %}
+
+{% do ELASTICSEARCHMERGED.elasticsearch.config.node.update({'roles': ELASTICSEARCHMERGED.so_roles[GLOBALS.role].node.roles}) %}

From af4b34801f958b9110e4de3837b01e3d8d341018 Mon Sep 17 00:00:00 2001
From: Josh Patterson <josh.patterson@securityonionsolutions.com>
Date: Wed, 25 Oct 2023 15:48:27 -0400
Subject: [PATCH 274/417] Update defaults.yaml

---
 salt/elasticsearch/defaults.yaml | 38 ++++++++++++++++++++++++++++++++
 1 file changed, 38 insertions(+)

diff --git a/salt/elasticsearch/defaults.yaml b/salt/elasticsearch/defaults.yaml
index 1296ef549..5449df506 100644
--- a/salt/elasticsearch/defaults.yaml
+++ b/salt/elasticsearch/defaults.yaml
@@ -4920,3 +4920,41 @@ elasticsearch:
         data_stream:
           hidden: false
           allow_custom_routing: false
+  so_roles:
+    so-manager:
+      node:
+        roles:
+          - master
+          - data
+          - remote_cluster_client
+          - transform
+    so-managersearch:
+      node:
+        roles:
+          - master
+          - data_hot
+          - remote_cluster_client
+    so-standalone:
+      node:
+        roles:
+          - master
+          - data_hot
+          - remote_cluster_client
+    so-searchnode:
+      node:
+        roles:
+          - data_hot
+          - ingest
+    so-heavynode:
+      node:
+        roles:
+          - master
+          - data
+          - remote_cluster_client
+          - ingest
+    so-eval:
+      node:
+        roles: []
+    so-import:
+      node:
+        roles: []

From dc53b49f15ed56cfa504193b1f22ee8adc1993c1 Mon Sep 17 00:00:00 2001
From: Mike Reeves <mike.reeves@securityonionsolutions.com>
Date: Wed, 25 Oct 2023 15:53:39 -0400
Subject: [PATCH 275/417] Update soup

---
 salt/manager/tools/sbin/soup | 15 ++++++++++++++-
 1 file changed, 14 insertions(+), 1 deletion(-)

diff --git a/salt/manager/tools/sbin/soup b/salt/manager/tools/sbin/soup
index fc07765b8..0666e25ae 100755
--- a/salt/manager/tools/sbin/soup
+++ b/salt/manager/tools/sbin/soup
@@ -403,6 +403,7 @@ preupgrade_changes() {
     [[ "$INSTALLEDVERSION" == 2.4.4 ]] && up_to_2.4.5
     [[ "$INSTALLEDVERSION" == 2.4.5 ]] && up_to_2.4.10
     [[ "$INSTALLEDVERSION" == 2.4.10 ]] && up_to_2.4.20
+    [[ "$INSTALLEDVERSION" == 2.4.20 ]] && up_to_2.4.30
     true
 }
 
@@ -414,7 +415,8 @@ postupgrade_changes() {
     [[ "$POSTVERSION" == 2.4.3 ]] && post_to_2.4.4
     [[ "$POSTVERSION" == 2.4.4 ]] && post_to_2.4.5 
     [[ "$POSTVERSION" == 2.4.5 ]] && post_to_2.4.10 
-    [[ "$POSTVERSION" == 2.4.10 ]] && post_to_2.4.20 
+    [[ "$POSTVERSION" == 2.4.10 ]] && post_to_2.4.20
+    [[ "$POSTVERSION" == 2.4.20 ]] && post_to_2.4.30 
     true
 }
 
@@ -446,6 +448,11 @@ post_to_2.4.20() {
   POSTVERSION=2.4.20
 }
 
+post_to_2.4.30() {
+  echo "Nothing to apply"
+  POSTVERSION=2.4.30
+}
+
 repo_sync() {
   echo "Sync the local repo."
   su socore -c '/usr/sbin/so-repo-sync' || fail "Unable to complete so-repo-sync."
@@ -523,6 +530,12 @@ up_to_2.4.20() {
   INSTALLEDVERSION=2.4.20
 }
 
+up_to_2.4.30() {
+  echo "Nothing to do for 2.4.30"
+  
+  INSTALLEDVERSION=2.4.30
+}
+
 determine_elastic_agent_upgrade() {
   if [[ $is_airgap -eq 0 ]]; then
     update_elastic_agent_airgap

From 19fdc9319b900e315427af8364fca73d15289ac1 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Wed, 25 Oct 2023 15:58:26 -0400
Subject: [PATCH 276/417] fix role update

---
 salt/elasticsearch/config.map.jinja | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/salt/elasticsearch/config.map.jinja b/salt/elasticsearch/config.map.jinja
index c98d96cc0..cd0cd8974 100644
--- a/salt/elasticsearch/config.map.jinja
+++ b/salt/elasticsearch/config.map.jinja
@@ -46,4 +46,4 @@
   {% endfor %}
 {% endif %}
 
-{% do ELASTICSEARCHMERGED.elasticsearch.config.node.update({'roles': ELASTICSEARCHMERGED.so_roles[GLOBALS.role].node.roles}) %}
+{% do ELASTICSEARCHMERGED.config.node.update({'roles': ELASTICSEARCHMERGED.so_roles[GLOBALS.role].node.roles}) %}

From d1170cb69f1f197b638151ffef9561d50b3122f9 Mon Sep 17 00:00:00 2001
From: Mike Reeves <mike.reeves@securityonionsolutions.com>
Date: Wed, 25 Oct 2023 16:05:20 -0400
Subject: [PATCH 277/417] Update soc_elasticsearch.yaml

---
 salt/elasticsearch/soc_elasticsearch.yaml | 23 +----------------------
 1 file changed, 1 insertion(+), 22 deletions(-)

diff --git a/salt/elasticsearch/soc_elasticsearch.yaml b/salt/elasticsearch/soc_elasticsearch.yaml
index 764de3c44..fde8d234f 100644
--- a/salt/elasticsearch/soc_elasticsearch.yaml
+++ b/salt/elasticsearch/soc_elasticsearch.yaml
@@ -101,27 +101,6 @@ elasticsearch:
                   description: Maximum primary shard size. Once an index reaches this limit, it will be rolled over into a new index.
                   global: True
                   helpLink: elasticsearch.html
-          warm:
-            min_age:
-              description: Minimum age of index. This determines when the index should be moved to the warm tier.
-              global: True
-              helpLink: elasticsearch.html
-            actions:
-              set_priority:
-                priority:
-                  description: Priority of index. This is used for recovery after a node restart. Indices with higher priorities are recovered before indices with lower priorities.
-                  forcedType: int
-                  global: True
-                  helpLink: elasticsearch.html
-              rollover:
-                max_age:
-                  description: Maximum age of index.  Once an index reaches this limit, it will be rolled over into a new index.
-                  global: True
-                  helpLink: elasticsearch.html
-                max_primary_shard_size:
-                  description: Maximum primary shard size. Once an index reaches this limit, it will be rolled over into a new index.
-                  global: True
-                  helpLink: elasticsearch.html
           cold:
             min_age:
               description: Minimum age of index.  This determines when the index should be moved to the cold tier.  While still searchable, this tier is typically optimized for lower storage costs rather than search speed.
@@ -491,4 +470,4 @@ elasticsearch:
     so-searchnode: *soroleSettings
     so-heavynode: *soroleSettings
     so-eval: *soroleSettings
-    so-import: *soroleSettings
\ No newline at end of file
+    so-import: *soroleSettings

From 5f168a33edaa8a4c0801340d8f8eaf23d68279ff Mon Sep 17 00:00:00 2001
From: Josh Patterson <josh.patterson@securityonionsolutions.com>
Date: Wed, 25 Oct 2023 16:16:01 -0400
Subject: [PATCH 278/417] Update defaults.yaml

---
 salt/elasticsearch/defaults.yaml | 67 ++++++++++++++++++--------------
 1 file changed, 37 insertions(+), 30 deletions(-)

diff --git a/salt/elasticsearch/defaults.yaml b/salt/elasticsearch/defaults.yaml
index 5449df506..807ca9ea9 100644
--- a/salt/elasticsearch/defaults.yaml
+++ b/salt/elasticsearch/defaults.yaml
@@ -4922,39 +4922,46 @@ elasticsearch:
           allow_custom_routing: false
   so_roles:
     so-manager:
-      node:
-        roles:
-          - master
-          - data
-          - remote_cluster_client
-          - transform
+      config:
+        node:
+          roles:
+            - master
+            - data
+            - remote_cluster_client
+            - transform
     so-managersearch:
-      node:
-        roles:
-          - master
-          - data_hot
-          - remote_cluster_client
+      config:
+        node:
+          roles:
+            - master
+            - data_hot
+            - remote_cluster_client
     so-standalone:
-      node:
-        roles:
-          - master
-          - data_hot
-          - remote_cluster_client
+      config:
+        node:
+          roles:
+            - master
+            - data_hot
+            - remote_cluster_client
     so-searchnode:
-      node:
-        roles:
-          - data_hot
-          - ingest
+      config:
+        node:
+          roles:
+            - data_hot
+            - ingest
     so-heavynode:
-      node:
-        roles:
-          - master
-          - data
-          - remote_cluster_client
-          - ingest
+      config:
+        node:
+          roles:
+            - master
+            - data
+            - remote_cluster_client
+            - ingest
     so-eval:
-      node:
-        roles: []
+      config:
+        node:
+          roles: []
     so-import:
-      node:
-        roles: []
+      config:
+        node:
+          roles: []

From 807b40019fc098ea8c0c8d70355e1086dd3dbebc Mon Sep 17 00:00:00 2001
From: Josh Patterson <josh.patterson@securityonionsolutions.com>
Date: Wed, 25 Oct 2023 16:16:48 -0400
Subject: [PATCH 279/417] Update soc_elasticsearch.yaml

---
 salt/elasticsearch/soc_elasticsearch.yaml | 15 ++++++++-------
 1 file changed, 8 insertions(+), 7 deletions(-)

diff --git a/salt/elasticsearch/soc_elasticsearch.yaml b/salt/elasticsearch/soc_elasticsearch.yaml
index fde8d234f..d456dcbfc 100644
--- a/salt/elasticsearch/soc_elasticsearch.yaml
+++ b/salt/elasticsearch/soc_elasticsearch.yaml
@@ -458,13 +458,14 @@ elasticsearch:
     so-zeek: *indexSettings
   so_roles:
     so-maanger: &soroleSettings
-      node:
-        roles:
-          description: List of Elasticsearch roles that the node should have. Blank assumes all roles
-          forcedType: "[]string"
-          global: False
-          advanced: True
-          helpLink: elasticsearch.html
+      config:
+        node:
+          roles:
+            description: List of Elasticsearch roles that the node should have. Blank assumes all roles
+            forcedType: "[]string"
+            global: False
+            advanced: True
+            helpLink: elasticsearch.html
     so-managersearch: *soroleSettings
     so-standalone: *soroleSettings
     so-searchnode: *soroleSettings

From 39abe19cfd9f6ad0553ade33614ae2cee2829a8d Mon Sep 17 00:00:00 2001
From: Josh Patterson <josh.patterson@securityonionsolutions.com>
Date: Wed, 25 Oct 2023 16:17:06 -0400
Subject: [PATCH 280/417] Update config.map.jinja

---
 salt/elasticsearch/config.map.jinja | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/salt/elasticsearch/config.map.jinja b/salt/elasticsearch/config.map.jinja
index cd0cd8974..4e57199af 100644
--- a/salt/elasticsearch/config.map.jinja
+++ b/salt/elasticsearch/config.map.jinja
@@ -46,4 +46,4 @@
   {% endfor %}
 {% endif %}
 
-{% do ELASTICSEARCHMERGED.config.node.update({'roles': ELASTICSEARCHMERGED.so_roles[GLOBALS.role].node.roles}) %}
+{% do ELASTICSEARCHMERGED.config.node.update({'roles': ELASTICSEARCHMERGED.so_roles[GLOBALS.role].config.node.roles}) %}

From 88fb7d06e673854a2c8bf22a6c2942493cec77a1 Mon Sep 17 00:00:00 2001
From: Mike Reeves <mike.reeves@securityonionsolutions.com>
Date: Wed, 25 Oct 2023 16:20:28 -0400
Subject: [PATCH 281/417] Annotation changes for warm node

---
 salt/elasticsearch/soc_elasticsearch.yaml | 5 -----
 1 file changed, 5 deletions(-)

diff --git a/salt/elasticsearch/soc_elasticsearch.yaml b/salt/elasticsearch/soc_elasticsearch.yaml
index d456dcbfc..368f15196 100644
--- a/salt/elasticsearch/soc_elasticsearch.yaml
+++ b/salt/elasticsearch/soc_elasticsearch.yaml
@@ -47,11 +47,6 @@ elasticsearch:
             helpLink: elasticsearch.html
   index_settings:
     global_overrides:
-      index_sorting:
-        description: Sorts the index by event time, at the cost of additional processing resource consumption.
-        global: True
-        advanced: True
-        helpLink: elasticsearch.html
       index_template:
         template:
           settings:

From 6d6292714f5053b76b5aff8e6bbea37341772d1e Mon Sep 17 00:00:00 2001
From: Mike Reeves <mike.reeves@securityonionsolutions.com>
Date: Wed, 25 Oct 2023 16:21:47 -0400
Subject: [PATCH 282/417] Annotation changes for warm node

---
 salt/elasticsearch/soc_elasticsearch.yaml | 1 -
 1 file changed, 1 deletion(-)

diff --git a/salt/elasticsearch/soc_elasticsearch.yaml b/salt/elasticsearch/soc_elasticsearch.yaml
index 368f15196..46306203a 100644
--- a/salt/elasticsearch/soc_elasticsearch.yaml
+++ b/salt/elasticsearch/soc_elasticsearch.yaml
@@ -73,7 +73,6 @@ elasticsearch:
                   description: The order to sort by. Must set index_sorting to True.
                   global: True
                   helpLink: elasticsearch.html
-            policy:
         phases:
           hot:
             min_age:

From 01810a782cde1f49fcd86c153c81e99b5df14ce3 Mon Sep 17 00:00:00 2001
From: Mike Reeves <mike.reeves@securityonionsolutions.com>
Date: Wed, 25 Oct 2023 16:46:30 -0400
Subject: [PATCH 283/417] Annotation changes for warm node

---
 salt/elasticsearch/soc_elasticsearch.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/salt/elasticsearch/soc_elasticsearch.yaml b/salt/elasticsearch/soc_elasticsearch.yaml
index 46306203a..e3d257f11 100644
--- a/salt/elasticsearch/soc_elasticsearch.yaml
+++ b/salt/elasticsearch/soc_elasticsearch.yaml
@@ -451,7 +451,7 @@ elasticsearch:
     so-syslog: *indexSettings
     so-zeek: *indexSettings
   so_roles:
-    so-maanger: &soroleSettings
+    so-manger: &soroleSettings
       config:
         node:
           roles:

From 891ea997e75fdbecc4a043ba2f3a41be51439cdc Mon Sep 17 00:00:00 2001
From: Wes <wlambertts@gmail.com>
Date: Thu, 26 Oct 2023 12:25:37 +0000
Subject: [PATCH 284/417] Add lifecycle policies and warm settings

---
 salt/elasticsearch/defaults.yaml | 13704 +++++++++++++++++++----------
 1 file changed, 8973 insertions(+), 4731 deletions(-)

diff --git a/salt/elasticsearch/defaults.yaml b/salt/elasticsearch/defaults.yaml
index 807ca9ea9..9aef09876 100644
--- a/salt/elasticsearch/defaults.yaml
+++ b/salt/elasticsearch/defaults.yaml
@@ -1,55 +1,16 @@
 elasticsearch:
-  enabled: False
-  retention:
-    retention_pct: 50
   config:
-    node: {}
+    action:
+      destructive_requires_name: true
     cluster:
       routing:
         allocation:
           disk:
             threshold_enabled: true
             watermark:
-              low: 80%
-              high: 85%
               flood_stage: 90%
-    network:
-      host: 0.0.0.0
-    path:
-      logs: /var/log/elasticsearch
-    action:
-      destructive_requires_name: true
-    transport:
-      bind_host: 0.0.0.0
-      publish_port: 9300
-    xpack:
-      ml:
-        enabled: false
-      security:
-        enabled: true
-        authc:
-          anonymous:
-            authz_exception: true
-            roles: []
-            username: _anonymous
-        transport:
-          ssl:
-            enabled: true
-            verification_mode: none
-            key: /usr/share/elasticsearch/config/elasticsearch.key
-            certificate: /usr/share/elasticsearch/config/elasticsearch.crt
-            certificate_authorities:
-              - /usr/share/elasticsearch/config/ca.crt
-        http:
-          ssl:
-            enabled: true
-            client_authentication: none
-            key: /usr/share/elasticsearch/config/elasticsearch.key
-            certificate: /usr/share/elasticsearch/config/elasticsearch.crt
-            certificate_authorities: 
-              - /usr/share/elasticsearch/config/ca.crt
-    script:
-      max_compilations_rate: 20000/1m
+              high: 85%
+              low: 80%
     indices:
       id_field_data:
         enabled: false
@@ -57,3833 +18,8553 @@ elasticsearch:
       org:
         elasticsearch:
           deprecation: ERROR
+    network:
+      host: 0.0.0.0
+    node: {}
+    path:
+      logs: /var/log/elasticsearch
+    script:
+      max_compilations_rate: 20000/1m
+    transport:
+      bind_host: 0.0.0.0
+      publish_port: 9300
+    xpack:
+      ml:
+        enabled: false
+      security:
+        authc:
+          anonymous:
+            authz_exception: true
+            roles: []
+            username: _anonymous
+        enabled: true
+        http:
+          ssl:
+            certificate: /usr/share/elasticsearch/config/elasticsearch.crt
+            certificate_authorities:
+            - /usr/share/elasticsearch/config/ca.crt
+            client_authentication: none
+            enabled: true
+            key: /usr/share/elasticsearch/config/elasticsearch.key
+        transport:
+          ssl:
+            certificate: /usr/share/elasticsearch/config/elasticsearch.crt
+            certificate_authorities:
+            - /usr/share/elasticsearch/config/ca.crt
+            enabled: true
+            key: /usr/share/elasticsearch/config/elasticsearch.key
+            verification_mode: none
+  enabled: false
   index_settings:
     global_overrides:
       index_template:
         template:
           settings:
             index:
+              lifecycle:
+                name: global_overrides-logs
               number_of_replicas: default_placeholder
-    so-logs:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-*-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-              mapping:
-                total_fields:
-                  limit: 5001
-              sort:
-                field: "@timestamp"
-                order: desc
-          mappings:
-            _meta:
-              package:
-                name: elastic_agent
-              managed_by: security_onion
-              managed: true
-        composed_of:
-          - "so-data-streams-mappings"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-          - "so-logs-mappings"
-          - "so-logs-settings"
-        priority: 225
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
       policy:
         phases:
-          hot:
-            min_age: 0ms
-            actions:
-              set_priority:
-                priority: 100
-              rollover:
-                max_age: 30d
-                max_primary_shard_size: 50gb
           cold:
-            min_age: 30d
             actions:
               set_priority:
                 priority: 0
+            min_age: 30d
           delete:
-            min_age: 365d
             actions:
               delete: {}
-        _meta:
-          package:
-            name: elastic_agent
-          managed_by: security_onion
-          managed: true  
-    so-logs-system_x_auth:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-system.auth*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "event-mappings"
-          - "logs-system.auth@package"
-          - "logs-system.auth@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-system_x_syslog:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-system.syslog*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "event-mappings"
-          - "logs-system.syslog@package"
-          - "logs-system.syslog@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-system_x_system:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-system.system*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "event-mappings"
-          - "logs-system.system@package"
-          - "logs-system.system@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-system_x_application:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-system.application*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "event-mappings"
-          - "logs-system.application@package"
-          - "logs-system.application@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-system_x_security:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-system.security*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "event-mappings"
-          - "logs-system.security@package"
-          - "logs-system.security@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-windows_x_forwarded:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-windows.forwarded*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-windows.forwarded@package"
-          - "logs-windows.forwarded@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-windows_x_powershell:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-windows.powershell-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-windows.powershell@package"
-          - "logs-windows.powershell@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-windows_x_powershell_operational:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-windows.powershell_operational-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-windows.powershell_operational@package"
-          - "logs-windows.powershell_operational@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-windows_x_sysmon_operational:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-windows.sysmon_operational-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-windows.sysmon_operational@package"
-          - "logs-windows.sysmon_operational@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-apache_x_access:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-apache.access-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-apache.access@package"
-          - "logs-apache.access@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-apache_x_error:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-apache.error-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-apache.error@package"
-          - "logs-apache.error@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-auditd_x_log:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-auditd.log-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-auditd.log@package"
-          - "logs-auditd.log@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-aws_x_cloudtrail:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-aws.cloudtrail-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-aws.cloudtrail@package"
-          - "logs-aws.cloudtrail@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-aws_x_cloudwatch_logs:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-aws.cloudwatch_logs-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-aws.cloudwatch_logs@package"
-          - "logs-aws.cloudwatch_logs@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-aws_x_ec2_logs:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-aws.ec2_logs-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-aws.ec2_logs@package"
-          - "logs-aws.ec2_logs@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-aws_x_elb_logs:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-aws.elb_logs-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-aws.elb_logs@package"
-          - "logs-aws.elb_logs@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-aws_x_firewall_logs:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-aws.firewall_logs-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-aws.firewall_logs@package"
-          - "logs-aws.firewall_logs@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-aws_x_route53_public_logs:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-aws.route53_public_logs-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-aws.route53_public_logs@package"
-          - "logs-aws.route53_public_logs@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-aws_x_route53_resolver_logs:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-aws.route53_resolver_logs-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-aws.route53_resolver_logs@package"
-          - "logs-aws.route53_resolver_logs@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-aws_x_s3access:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-aws.s3access-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-aws.s3access@package"
-          - "logs-aws.s3access@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-aws_x_vpcflow:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-aws.vpcflow-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-aws.vpcflow@package"
-          - "logs-aws.vpcflow@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-aws_x_waf:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-aws.waf-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-aws.waf@package"
-          - "logs-aws.waf@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-azure_x_activitylogs:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-azure.activitylogs-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-azure.activitylogs@package"
-          - "logs-azure.activitylogs@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-azure_x_application_gateway:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-azure.application_gateway-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-azure.application_gateway@package"
-          - "logs-azure.application_gateway@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-azure_x_auditlogs:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-azure.auditlogs-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-azure.auditlogs@package"
-          - "logs-azure.auditlogs@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-azure_x_eventhub:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-azure.eventhub-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-azure.eventhub@package"
-          - "logs-azure.eventhub@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-azure_x_firewall_logs:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-azure.firewall_logs-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-azure.firewall_logs@package"
-          - "logs-azure.firewall_logs@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-azure_x_identity_protection:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-azure.identity_protection-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-azure.identity_protection@package"
-          - "logs-azure.identity_protection@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-azure_x_platformlogs:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-azure.platformlogs-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-azure.platformlogs@package"
-          - "logs-azure.platformlogs@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-azure_x_provisioning:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-azure.provisioning-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-azure.provisioning@package"
-          - "logs-azure.provisioning@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-azure_x_signinlogs:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-azure.signinlogs-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-azure.signinlogs@package"
-          - "logs-azure.signinlogs@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-azure_x_springcloudlogs:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-azure.springcloudlogs-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-azure.springcloudlogs@package"
-          - "logs-azure.springcloudlogs@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-barracuda_x_waf:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-barracuda.waf-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-barracuda.waf@package"
-          - "logs-barracuda.waf@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-cisco_asa_x_log:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-cisco_asa.log-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-cisco_asa.log@package"
-          - "logs-cisco_asa.log@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-cloudflare_x_audit:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-cloudflare.audit-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-cloudflare.audit@package"
-          - "logs-cloudflare.audit@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-cloudflare_x_logpull:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-cloudflare.logpull-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-cloudflare.logpull@package"
-          - "logs-cloudflare.logpull@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-crowdstrike_x_falcon:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-crowdstrike.falcon-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-crowdstrike.falcon@package"
-          - "logs-crowdstrike.falcon@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-crowdstrike_x_fdr:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-crowdstrike.fdr-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-crowdstrike.fdr@package"
-          - "logs-crowdstrike.fdr@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-darktrace_x_ai_analyst_alert:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-darktrace.ai_analyst_alert-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-darktrace.ai_analyst_alert@package"
-          - "logs-darktrace.ai_analyst_alert@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-darktrace_x_model_breach_alert:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-darktrace.model_breach_alert-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-darktrace.model_breach_alert@package"
-          - "logs-darktrace.model_breach_alert@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-darktrace_x_system_status_alert:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-darktrace.system_status_alert-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-darktrace.system_status_alert@package"
-          - "logs-darktrace.system_status_alert@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-f5_bigip_x_log:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-f5_bigip.log-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-f5_bigip.log@package"
-          - "logs-f5_bigip.log@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-fim_x_event:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-fim.event-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-fim.event@package"
-          - "logs-fim.event@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-fortinet_x_clientendpoint:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-fortinet.clientendpoint-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-fortinet.clientendpoint@package"
-          - "logs-fortinet.clientendpoint@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-fortinet_x_firewall:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-fortinet.firewall-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-fortinet.firewall@package"
-          - "logs-fortinet.firewall@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-fortinet_x_fortimail:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-fortinet.fortimail-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-fortinet.fortimail@package"
-          - "logs-fortinet.fortimail@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-fortinet_x_fortimanager:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-fortinet.fortimanager-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-fortinet.fortimanager@package"
-          - "logs-fortinet.fortimanager@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-fortinet_fortigate_x_log:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-fortinet_fortigate.log-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-fortinet_fortigate.log@package"
-          - "logs-fortinet_fortigate.log@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-gcp_x_audit:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-gcp.audit-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-gcp.audit@package"
-          - "logs-gcp.audit@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-gcp_x_dns:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-gcp.dns-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-gcp.dns@package"
-          - "logs-gcp.dns@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-gcp_x_firewall:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-gcp.firewall-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-gcp.firewall@package"
-          - "logs-gcp.firewall@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-gcp_x_loadbalancing_logs:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-gcp.loadbalancing_logs-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-gcp.loadbalancing_logs@package"
-          - "logs-gcp.loadbalancing_logs@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-gcp_x_vpcflow:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-gcp.vpcflow-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-gcp.vpcflow@package"
-          - "logs-gcp.vpcflow@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-github_x_audit:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-github.audit-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-github.audit@package"
-          - "logs-github.audit@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-github_x_code_scanning:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-github.code_scanning-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-github.code_scanning@package"
-          - "logs-github.code_scanning@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-github_x_dependabot:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-github.dependabot-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-github.dependabot@package"
-          - "logs-github.dependabot@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-github_x_issues:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-github.issues-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-github.issues@package"
-          - "logs-github.issues@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-github_x_secret_scanning:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-github.secret_scanning-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-github.secret_scanning@package"
-          - "logs-github.secret_scanning@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-google_workspace_x_access_transparency:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-google_workspace.access_transparency-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-google_workspace.access_transparency@package"
-          - "logs-google_workspace.access_transparency@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-google_workspace_x_admin:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-google_workspace.admin-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-google_workspace.admin@package"
-          - "logs-google_workspace.admin@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-google_workspace_x_alert:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-google_workspace.alert-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-google_workspace.alert@package"
-          - "logs-google_workspace.alert@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-google_workspace_x_context_aware_access:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-google_workspace.context_aware_access-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-google_workspace.context_aware_access@package"
-          - "logs-google_workspace.context_aware_access@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-google_workspace_x_device:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-google_workspace.device-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-google_workspace.device@package"
-          - "logs-google_workspace.device@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-google_workspace_x_drive:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-google_workspace.drive-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-google_workspace.drive@package"
-          - "logs-google_workspace.drive@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-google_workspace_x_gcp:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-google_workspace.gcp-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-google_workspace.gcp@package"
-          - "logs-google_workspace.gcp@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-google_workspace_x_group_enterprise:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-google_workspace.group_enterprise-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-google_workspace.group_enterprise@package"
-          - "logs-google_workspace.group_enterprise@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-google_workspace_x_groups:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-google_workspace.groups-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-google_workspace.groups@package"
-          - "logs-google_workspace.groups@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-google_workspace_x_login:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-google_workspace.login-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-google_workspace.login@package"
-          - "logs-google_workspace.login@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-google_workspace_x_rules:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-google_workspace.rules-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-google_workspace.rules@package"
-          - "logs-google_workspace.rules@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-google_workspace_x_saml:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-google_workspace.saml-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-google_workspace.saml@package"
-          - "logs-google_workspace.saml@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-google_workspace_x_token:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-google_workspace.token-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-google_workspace.token@package"
-          - "logs-google_workspace.token@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-google_workspace_x_user_accounts:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-google_workspace.user_accounts-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-google_workspace.user_accounts@package"
-          - "logs-google_workspace.user_accounts@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-http_endpoint_x_generic:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-http_endpoint.generic-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-http_endpoint.generic@package"
-          - "logs-http_endpoint.generic@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-httpjson_x_generic:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-httpjson.generic-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-httpjson.generic@package"
-          - "logs-httpjson.generic@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-juniper_x_junos:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-juniper.junos-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-juniper.junos@package"
-          - "logs-juniper.junos@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-juniper_x_netscreen:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-juniper.netscreen-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-juniper.netscreen@package"
-          - "logs-juniper.netscreen@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-juniper_x_srx:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-juniper.srx-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-juniper.srx@package"
-          - "logs-juniper.srx@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-juniper_srx_x_log:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-juniper_srx.log-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-juniper_srx.log@package"
-          - "logs-juniper_srx.log@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-kafka_log_x_generic:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-kafka_log.generic-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-kafka_log.generic@package"
-          - "logs-kafka_log.generic@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-lastpass_x_detailed_shared_folder:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-lastpass.detailed_shared_folder-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-lastpass.detailed_shared_folder@package"
-          - "logs-lastpass.detailed_shared_folder@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-lastpass_x_event_report:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-lastpass.event_report-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-lastpass.event_report@package"
-          - "logs-lastpass.event_report@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-lastpass_x_user:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-lastpass.user-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-lastpass.user@package"
-          - "logs-lastpass.user@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-m365_defender_x_event:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-m365_defender.event-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-m365_defender.event@package"
-          - "logs-m365_defender.event@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-m365_defender_x_incident:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-m365_defender.incident-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-m365_defender.incident@package"
-          - "logs-m365_defender.incident@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-m365_defender_x_log:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-m365_defender.log-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-m365_defender.log@package"
-          - "logs-m365_defender.log@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-microsoft_defender_endpoint_x_log:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-microsoft_defender_endpoint.log-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-microsoft_defender_endpoint.log@package"
-          - "logs-microsoft_defender_endpoint.log@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-microsoft_dhcp_x_log:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-microsoft_dhcp.log-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-microsoft_dhcp.log@package"
-          - "logs-microsoft_dhcp.log@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-netflow_x_log:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-netflow.log-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-netflow.log@package"
-          - "logs-netflow.log@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-o365_x_audit:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-o365.audit-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-o365.audit@package"
-          - "logs-o365.audit@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-okta_x_system:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-okta.system-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-okta.system@package"
-          - "logs-okta.system@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-panw_x_panos:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-panw.panos-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-panw.panos@package"
-          - "logs-panw.panos@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-pfsense_x_log:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-pfsense.log-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-pfsense.log@package"
-          - "logs-pfsense.log@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-sentinel_one_x_activity:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-sentinel_one.activity-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-sentinel_one.activity@package"
-          - "logs-sentinel_one.activity@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-sentinel_one_x_agent:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-sentinel_one.agent-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-sentinel_one.agent@package"
-          - "logs-sentinel_one.agent@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-sentinel_one_x_alert:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-sentinel_one.alert-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-sentinel_one.alert@package"
-          - "logs-sentinel_one.alert@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-sentinel_one_x_group:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-sentinel_one.group-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-sentinel_one.group@package"
-          - "logs-sentinel_one.group@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-sentinel_one_x_threat:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-sentinel_one.threat-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-sentinel_one.threat@package"
-          - "logs-sentinel_one.threat@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-sonicwall_firewall_x_log:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-sonicwall_firewall.log-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-sonicwall_firewall.log@package"
-          - "logs-sonicwall_firewall.log@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-symantec_endpoint_x_log:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-symantec_endpoint.log-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-symantec_endpoint.log@package"
-          - "logs-symantec_endpoint.log@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-ti_abusech_x_malware:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-ti_abusech.malware-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-ti_abusech.malware@package"
-          - "logs-ti_abusech.malware@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-ti_abusech_x_malwarebazaar:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-ti_abusech.malwarebazaar-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-ti_abusech.malwarebazaar@package"
-          - "logs-ti_abusech.malwarebazaar@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-ti_abusech_x_threatfox:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-ti_abusech.threatfox-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-ti_abusech.threatfox@package"
-          - "logs-ti_abusech.threatfox@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-ti_abusech_x_url:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-ti_abusech.url-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-ti_abusech.url@package"
-          - "logs-ti_abusech.url@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-ti_misp_x_threat:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-ti_misp.threat-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-ti_misp.threat@package"
-          - "logs-ti_misp.threat@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-ti_misp_x_threat_attributes:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-ti_misp.threat_attributes-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-ti_misp.threat_attributes@package"
-          - "logs-ti_misp.threat_attributes@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-ti_otx_x_threat:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-ti_otx.threat-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-ti_otx.threat@package"
-          - "logs-ti_otx.threat@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-ti_recordedfuture_x_latest_ioc-template:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-ti_recordedfuture.latest_ioc-template-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-ti_recordedfuture.latest_ioc-template@package"
-          - "logs-ti_recordedfuture.latest_ioc-template@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-ti_recordedfuture_x_threat:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-ti_recordedfuture.threat-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-ti_recordedfuture.threat@package"
-          - "logs-ti_recordedfuture.threat@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-zscaler_zia_x_alerts:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-zscaler_zia.alerts-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-zscaler_zia.alerts@package"
-          - "logs-zscaler_zia.alerts@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-zscaler_zia_x_dns:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-zscaler_zia.dns-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-zscaler_zia.dns@package"
-          - "logs-zscaler_zia.dns@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-zscaler_zia_x_firewall:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-zscaler_zia.firewall-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-zscaler_zia.firewall@package"
-          - "logs-zscaler_zia.firewall@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-zscaler_zia_x_tunnel:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-zscaler_zia.tunnel-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-zscaler_zia.tunnel@package"
-          - "logs-zscaler_zia.tunnel@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-zscaler_zia_x_web:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-zscaler_zia.web-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-zscaler_zia.web@package"
-          - "logs-zscaler_zia.web@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-zscaler_zpa_x_app_connector_status:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-zscaler_zpa.app_connector_status-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-zscaler_zpa.app_connector_status@package"
-          - "logs-zscaler_zpa.app_connector_status@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-zscaler_zpa_x_audit:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-zscaler_zpa.audit-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-zscaler_zpa.audit@package"
-          - "logs-zscaler_zpa.audit@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-zscaler_zpa_x_browser_access:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-zscaler_zpa.browser_access-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-zscaler_zpa.browser_access@package"
-          - "logs-zscaler_zpa.browser_access@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-zscaler_zpa_x_user_activity:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-zscaler_zpa.user_activity-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-zscaler_zpa.user_activity@package"
-          - "logs-zscaler_zpa.user_activity@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-zscaler_zpa_x_user_status:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-zscaler_zpa.user_status-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-zscaler_zpa.user_status@package"
-          - "logs-zscaler_zpa.user_status@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-1password_x_item_usages:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-1password.item_usages-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-1password.item_usages@package"
-          - "logs-1password.item_usages@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-1password_x_signin_attempts:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-1password.signin_attempts-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-1password.signin_attempts@package"
-          - "logs-1password.signin_attempts@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-osquery-manager-actions:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - ".logs-osquery_manager.actions*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-osquery_manager.actions"
-        priority: 501
-        _meta:
-          package:
-            name: elastic_agent
-          managed_by: security_onion
-          managed: true
-    so-logs-osquery-manager-action_x_responses:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - ".logs-osquery_manager.action.responses*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-osquery_manager.action.responses"
-        priority: 501
-        _meta:
-          package:
-            name: elastic_agent
-          managed_by: security_onion
-          managed: true
-    so-logs-elastic_agent_x_apm_server:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-elastic_agent.apm_server-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-              mapping:
-                total_fields:
-                  limit: 5000
-              sort:
-                field: "@timestamp"
-                order: desc
-          mappings:
-            _meta:
-              package:
-                name: elastic_agent
-              managed_by: security_onion
-              managed: true
-        composed_of:
-          - "logs-elastic_agent.apm_server@package"
-          - "logs-elastic_agent.apm_server@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-      policy:
-        phases:
+            min_age: 365d
           hot:
-            min_age: 0ms
             actions:
-              set_priority:
-                priority: 100
               rollover:
                 max_age: 30d
                 max_primary_shard_size: 50gb
-          cold:
-            min_age: 30d
-            actions:
-              set_priority:
-                priority: 0
-          delete:
-            min_age: 365d
-            actions:
-              delete: {}
-        _meta:
-          package:
-            name: elastic_agent
-          managed_by: security_onion
-          managed: true
-    so-logs-elastic_agent_x_auditbeat:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-elastic_agent.auditbeat-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-              mapping:
-                total_fields:
-                  limit: 5000
-              sort:
-                field: "@timestamp"
-                order: desc
-          mappings:
-            _meta:
-              package:
-                name: elastic_agent
-              managed_by: security_onion
-              managed: true
-        composed_of:
-          - "logs-elastic_agent.auditbeat@package"
-          - "logs-elastic_agent.auditbeat@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-      policy:
-        phases:
-          hot:
-            min_age: 0ms
-            actions:
               set_priority:
                 priority: 100
-              rollover:
-                max_age: 30d
-                max_primary_shard_size: 50gb
-          cold:
-            min_age: 30d
-            actions:
-              set_priority:
-                priority: 0
-          delete:
-            min_age: 365d
-            actions:
-              delete: {}
-        _meta:
-          package:
-            name: elastic_agent
-          managed_by: security_onion
-          managed: true
-    so-logs-elastic_agent_x_cloudbeat:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-elastic_agent.cloudbeat-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-              mapping:
-                total_fields:
-                  limit: 5000
-              sort:
-                field: "@timestamp"
-                order: desc
-          mappings:
-            _meta:
-              package:
-                name: elastic_agent
-              managed_by: security_onion
-              managed: true
-        composed_of:
-          - "logs-elastic_agent.cloudbeat@package"
-          - "logs-elastic_agent.cloudbeat@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-      policy:
-        phases:
-          hot:
             min_age: 0ms
+          warm:
             actions:
               set_priority:
-                priority: 100
-              rollover:
-                max_age: 30d
-                max_primary_shard_size: 50gb
-          cold:
+                priority: 50
             min_age: 30d
-            actions:
-              set_priority:
-                priority: 0
-          delete:
-            min_age: 365d
-            actions:
-              delete: {}
-        _meta:
-          package:
-            name: elastic_agent
-          managed_by: security_onion
-          managed: true
-    so-logs-elastic_agent_x_endpoint_security:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-elastic_agent.endpoint_security-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-              mapping:
-                total_fields:
-                  limit: 5000
-              sort:
-                field: "@timestamp"
-                order: desc
-        composed_of:
-          - "event-mappings"
-          - "logs-elastic_agent.endpoint_security@package"
-          - "logs-elastic_agent.endpoint_security@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-      policy:
-        phases:
-          hot:
-            min_age: 0ms
-            actions:
-              set_priority:
-                priority: 100
-              rollover:
-                max_age: 30d
-                max_primary_shard_size: 50gb
-          cold:
-            min_age: 30d
-            actions:
-              set_priority:
-                priority: 0
-          delete:
-            min_age: 365d
-            actions:
-              delete: {}
-        _meta:
-          package:
-            name: elastic_agent
-          managed_by: security_onion
-          managed: true
-    so-logs-endpoint_x_alerts:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-endpoint.alerts-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-              mapping:
-                total_fields:
-                  limit: 5000
-              sort:
-                field: "@timestamp"
-                order: desc
-        composed_of:
-          - "event-mappings"
-          - "logs-endpoint.alerts@custom"
-          - "logs-endpoint.alerts@package"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-      policy:
-        phases:
-          hot:
-            min_age: 0ms
-            actions:
-              set_priority:
-                priority: 100
-              rollover:
-                max_age: 30d
-                max_primary_shard_size: 50gb
-          cold:
-            min_age: 30d
-            actions:
-              set_priority:
-                priority: 0
-          delete:
-            min_age: 365d
-            actions:
-              delete: {}
-        _meta:
-          package:
-            name: elastic_agent
-          managed_by: security_onion
-          managed: true
-    so-logs-endpoint_x_events_x_api:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-endpoint.events.api-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-              mapping:
-                total_fields:
-                  limit: 5000
-              sort:
-                field: "@timestamp"
-                order: desc
-        composed_of:
-          - "event-mappings"
-          - "logs-endpoint.events.api@custom"
-          - "logs-endpoint.events.api@package"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-      policy:
-        phases:
-          hot:
-            min_age: 0ms
-            actions:
-              set_priority:
-                priority: 100
-              rollover:
-                max_age: 30d
-                max_primary_shard_size: 50gb
-          cold:
-            min_age: 30d
-            actions:
-              set_priority:
-                priority: 0
-          delete:
-            min_age: 365d
-            actions:
-              delete: {}
-        _meta:
-          package:
-            name: elastic_agent
-          managed_by: security_onion
-          managed: true
-    so-logs-endpoint_x_events_x_file:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-endpoint.events.file-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-              mapping:
-                total_fields:
-                  limit: 5000
-              sort:
-                field: "@timestamp"
-                order: desc
-        composed_of:
-          - "event-mappings"
-          - "logs-endpoint.events.file@custom"
-          - "logs-endpoint.events.file@package"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-      policy:
-        phases:
-          hot:
-            min_age: 0ms
-            actions:
-              set_priority:
-                priority: 100
-              rollover:
-                max_age: 30d
-                max_primary_shard_size: 50gb
-          cold:
-            min_age: 30d
-            actions:
-              set_priority:
-                priority: 0
-          delete:
-            min_age: 365d
-            actions:
-              delete: {}
-        _meta:
-          package:
-            name: elastic_agent
-          managed_by: security_onion
-          managed: true
-    so-logs-endpoint_x_events_x_library:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-endpoint.events.library-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-              mapping:
-                total_fields:
-                  limit: 5000
-              sort:
-                field: "@timestamp"
-                order: desc
-        composed_of:
-          - "event-mappings"
-          - "logs-endpoint.events.library@custom"
-          - "logs-endpoint.events.library@package"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-      policy:
-        phases:
-          hot:
-            min_age: 0ms
-            actions:
-              set_priority:
-                priority: 100
-              rollover:
-                max_age: 30d
-                max_primary_shard_size: 50gb
-          cold:
-            min_age: 30d
-            actions:
-              set_priority:
-                priority: 0
-          delete:
-            min_age: 365d
-            actions:
-              delete: {}
-        _meta:
-          package:
-            name: elastic_agent
-          managed_by: security_onion
-          managed: true
-    so-logs-endpoint_x_events_x_network:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-endpoint.events.network-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-              mapping:
-                total_fields:
-                  limit: 5000
-              sort:
-                field: "@timestamp"
-                order: desc
-        composed_of:
-          - "event-mappings"
-          - "logs-endpoint.events.network@custom"
-          - "logs-endpoint.events.network@package"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-      policy:
-        phases:
-          hot:
-            min_age: 0ms
-            actions:
-              set_priority:
-                priority: 100
-              rollover:
-                max_age: 30d
-                max_primary_shard_size: 50gb
-          cold:
-            min_age: 30d
-            actions:
-              set_priority:
-                priority: 0
-          delete:
-            min_age: 365d
-            actions:
-              delete: {}
-        _meta:
-          package:
-            name: elastic_agent
-          managed_by: security_onion
-          managed: true
-    so-logs-endpoint_x_events_x_process:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-endpoint.events.process-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-              mapping:
-                total_fields:
-                  limit: 5000
-              sort:
-                field: "@timestamp"
-                order: desc
-        composed_of:
-          - "event-mappings"
-          - "logs-endpoint.events.process@custom"
-          - "logs-endpoint.events.process@package"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-      policy:
-        phases:
-          hot:
-            min_age: 0ms
-            actions:
-              set_priority:
-                priority: 100
-              rollover:
-                max_age: 30d
-                max_primary_shard_size: 50gb
-          cold:
-            min_age: 30d
-            actions:
-              set_priority:
-                priority: 0
-          delete:
-            min_age: 365d
-            actions:
-              delete: {}
-        _meta:
-          package:
-            name: elastic_agent
-          managed_by: security_onion
-          managed: true
-    so-logs-endpoint_x_events_x_registry:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-endpoint.events.registry-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-              mapping:
-                total_fields:
-                  limit: 5000
-              sort:
-                field: "@timestamp"
-                order: desc
-        composed_of:
-          - "event-mappings"
-          - "logs-endpoint.events.registry@custom"
-          - "logs-endpoint.events.registry@package"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-      policy:
-        phases:
-          hot:
-            min_age: 0ms
-            actions:
-              set_priority:
-                priority: 100
-              rollover:
-                max_age: 30d
-                max_primary_shard_size: 50gb
-          cold:
-            min_age: 30d
-            actions:
-              set_priority:
-                priority: 0
-          delete:
-            min_age: 365d
-            actions:
-              delete: {}
-        _meta:
-          package:
-            name: elastic_agent
-          managed_by: security_onion
-          managed: true
-    so-logs-endpoint_x_events_x_security:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-endpoint.events.security-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-              mapping:
-                total_fields:
-                  limit: 5000
-              sort:
-                field: "@timestamp"
-                order: desc
-        composed_of:
-          - "event-mappings"
-          - "logs-endpoint.events.security@custom"
-          - "logs-endpoint.events.security@package"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-      policy:
-        phases:
-          hot:
-            min_age: 0ms
-            actions:
-              set_priority:
-                priority: 100
-              rollover:
-                max_age: 30d
-                max_primary_shard_size: 50gb
-          cold:
-            min_age: 30d
-            actions:
-              set_priority:
-                priority: 0
-          delete:
-            min_age: 365d
-            actions:
-              delete: {}
-        _meta:
-          package:
-            name: elastic_agent
-          managed_by: security_onion
-          managed: true
-    so-logs-elastic_agent_x_filebeat:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-elastic_agent.filebeat-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-              mapping:
-                total_fields:
-                  limit: 5000
-              sort:
-                field: "@timestamp"
-                order: desc
-        composed_of:
-          - "event-mappings"
-          - "logs-elastic_agent.filebeat@package"
-          - "logs-elastic_agent.filebeat@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-      policy:
-        phases:
-          hot:
-            min_age: 0ms
-            actions:
-              set_priority:
-                priority: 100
-              rollover:
-                max_age: 30d
-                max_primary_shard_size: 50gb
-          cold:
-            min_age: 30d
-            actions:
-              set_priority:
-                priority: 0
-          delete:
-            min_age: 365d
-            actions:
-              delete: {}
-        _meta:
-          package:
-            name: elastic_agent
-          managed_by: security_onion
-          managed: true
-    so-logs-elastic_agent_x_fleet_server:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-elastic_agent.fleet_server-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-              sort:
-                field: "@timestamp"
-                order: desc
-        composed_of:
-          - "event-mappings"
-          - "logs-elastic_agent.fleet_server@package"
-          - "logs-elastic_agent.fleet_server@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-      policy:
-        phases:
-          hot:
-            min_age: 0ms
-            actions:
-              set_priority:
-                priority: 100
-              rollover:
-                max_age: 30d
-                max_primary_shard_size: 50gb
-          cold:
-            min_age: 30d
-            actions:
-              set_priority:
-                priority: 0
-          delete:
-            min_age: 365d
-            actions:
-              delete: {}
-        _meta:
-          package:
-            name: elastic_agent
-          managed_by: security_onion
-          managed: true
-    so-logs-elastic_agent_x_heartbeat:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-elastic_agent.heartbeat-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-              mapping:
-                total_fields:
-                  limit: 5000
-              sort:
-                field: "@timestamp"
-                order: desc
-          mappings:
-            _meta:
-              package:
-                name: elastic_agent
-              managed_by: security_onion
-              managed: true
-        composed_of:
-          - "logs-elastic_agent.heartbeat@package"
-          - "logs-elastic_agent.heartbeat@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-      policy:
-        phases:
-          hot:
-            min_age: 0ms
-            actions:
-              set_priority:
-                priority: 100
-              rollover:
-                max_age: 30d
-                max_primary_shard_size: 50gb
-          cold:
-            min_age: 30d
-            actions:
-              set_priority:
-                priority: 0
-          delete:
-            min_age: 365d
-            actions:
-              delete: {}
-        _meta:
-          package:
-            name: elastic_agent
-          managed_by: security_onion
-          managed: true
-    so-logs-elastic_agent:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-elastic_agent-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-              mapping:
-                total_fields:
-                  limit: 5000
-              sort:
-                field: "@timestamp"
-                order: desc
-          mappings:
-            _meta:
-              package:
-                name: elastic_agent
-              managed_by: security_onion
-              managed: true
-        composed_of:
-          - "event-mappings"
-          - "logs-elastic_agent@package"
-          - "logs-elastic_agent@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-      policy:
-        phases:
-          hot:
-            min_age: 0ms
-            actions:
-              set_priority:
-                priority: 100
-              rollover:
-                max_age: 30d
-                max_primary_shard_size: 50gb
-          cold:
-            min_age: 30d
-            actions:
-              set_priority:
-                priority: 0
-          delete:
-            min_age: 365d
-            actions:
-              delete: {}
-        _meta:
-          package:
-            name: elastic_agent
-          managed_by: security_onion
-          managed: true
-    so-logs-elastic_agent_x_metricbeat:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-elastic_agent.metricbeat-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-              mapping:
-                total_fields:
-                  limit: 5000
-              sort:
-                field: "@timestamp"
-                order: desc
-        composed_of:
-          - "event-mappings"
-          - "logs-elastic_agent.metricbeat@package"
-          - "logs-elastic_agent.metricbeat@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-      policy:
-        phases:
-          hot:
-            min_age: 0ms
-            actions:
-              set_priority:
-                priority: 100
-              rollover:
-                max_age: 30d
-                max_primary_shard_size: 50gb
-          cold:
-            min_age: 30d
-            actions:
-              set_priority:
-                priority: 0
-          delete:
-            min_age: 365d
-            actions:
-              delete: {}
-        _meta:
-          package:
-            name: elastic_agent
-          managed_by: security_onion
-          managed: true
-    so-logs-elastic_agent_x_osquerybeat:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-elastic_agent.osquerybeat-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-              mapping:
-                total_fields:
-                  limit: 5000
-              sort:
-                field: "@timestamp"
-                order: desc
-        composed_of:
-          - "event-mappings"
-          - "logs-elastic_agent.osquerybeat@package"
-          - "logs-elastic_agent.osquerybeat@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-      policy:
-        phases:
-          hot:
-            min_age: 0ms
-            actions:
-              set_priority:
-                priority: 100
-              rollover:
-                max_age: 30d
-                max_primary_shard_size: 50gb
-          cold:
-            min_age: 30d
-            actions:
-              set_priority:
-                priority: 0
-          delete:
-            min_age: 365d
-            actions:
-              delete: {}
-        _meta:
-          package:
-            name: elastic_agent
-          managed_by: security_onion
-          managed: true
-    so-logs-elastic_agent_x_packetbeat:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-elastic_agent.packetbeat-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-              mapping:
-                total_fields:
-                  limit: 5000
-              sort:
-                field: "@timestamp"
-                order: desc
-          mappings:
-            _meta:
-              package:
-                name: elastic_agent
-              managed_by: security_onion
-              managed: true
-        composed_of:
-          - "logs-elastic_agent.packetbeat@package"
-          - "logs-elastic_agent.packetbeat@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-      policy:
-        phases:
-          hot:
-            min_age: 0ms
-            actions:
-              set_priority:
-                priority: 100
-              rollover:
-                max_age: 30d
-                max_primary_shard_size: 50gb
-          cold:
-            min_age: 30d
-            actions:
-              set_priority:
-                priority: 0
-          delete:
-            min_age: 365d
-            actions:
-              delete: {}
-        _meta:
-          package:
-            name: elastic_agent
-          managed_by: security_onion
-          managed: true
     so-case:
-      index_sorting: False
+      index_sorting: false
       index_template:
+        composed_of:
+        - case-mappings
+        - case-settings
         index_patterns:
-          - so-case*
-        template:
-          mappings:
-            dynamic_templates:
-              - strings_as_keyword:
-                  mapping:
-                    ignore_above: 1024
-                    type: keyword
-                  match_mapping_type: string
-            date_detection: false
-          settings:
-            index:
-              mapping:
-                total_fields:
-                  limit: 1500
-              sort:
-                field: "@timestamp"
-                order: desc
-              refresh_interval: 30s
-              number_of_shards: 1
-              number_of_replicas: 0
-        composed_of: 
-          - case-mappings
-          - case-settings
+        - so-case*
         priority: 500
-    so-common:
-      warm: 7
-      close: 30
-      delete: 365
-      index_sorting: False
-      index_template:
-        data_stream: {}
-        index_patterns:
-          - logs-*-so*
         template:
           mappings:
-            dynamic_templates:
-              - strings_as_keyword:
-                  mapping:
-                    ignore_above: 1024
-                    type: keyword
-                  match_mapping_type: string
             date_detection: false
-          settings:
-            index:
-              mapping:
-                total_fields:
-                  limit: 5000
-              sort:
-                field: "@timestamp"
-                order: desc
-              refresh_interval: 30s
-              number_of_shards: 1
-              number_of_replicas: 0
-        composed_of: 
-          - agent-mappings
-          - dtc-agent-mappings
-          - base-mappings
-          - dtc-base-mappings
-          - client-mappings
-          - dtc-client-mappings
-          - cloud-mappings
-          - container-mappings
-          - data_stream-mappings
-          - destination-mappings
-          - dtc-destination-mappings
-          - pb-override-destination-mappings
-          - dll-mappings
-          - dns-mappings
-          - dtc-dns-mappings
-          - ecs-mappings
-          - dtc-ecs-mappings
-          - error-mappings
-          - event-mappings
-          - dtc-event-mappings
-          - file-mappings
-          - dtc-file-mappings
-          - group-mappings
-          - host-mappings
-          - dtc-host-mappings
-          - http-mappings
-          - dtc-http-mappings
-          - log-mappings
-          - network-mappings
-          - dtc-network-mappings
-          - observer-mappings
-          - dtc-observer-mappings
-          - orchestrator-mappings
-          - organization-mappings
-          - package-mappings
-          - process-mappings
-          - dtc-process-mappings
-          - registry-mappings
-          - related-mappings
-          - rule-mappings
-          - dtc-rule-mappings
-          - server-mappings
-          - service-mappings
-          - dtc-service-mappings
-          - source-mappings
-          - dtc-source-mappings
-          - pb-override-source-mappings
-          - syslog-mappings
-          - dtc-syslog-mappings
-          - threat-mappings
-          - tls-mappings
-          - tracing-mappings
-          - url-mappings
-          - user_agent-mappings
-          - dtc-user_agent-mappings
-          - vulnerability-mappings
-          - common-settings
-          - common-dynamic-mappings
-          - winlog-mappings
-        priority: 1
-    so-endgame:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - endgame*
-        template:
-          mappings:
             dynamic_templates:
-              - strings_as_keyword:
-                  mapping:
-                    ignore_above: 1024
-                    type: keyword
-                  match_mapping_type: string
-            date_detection: false
-          settings:
-            index:
-              mapping:
-                total_fields:
-                  limit: 5000
-              sort:
-                field: "@timestamp"
-                order: desc
-              refresh_interval: 30s
-              number_of_shards: 1
-              number_of_replicas: 0
-        composed_of: 
-          - agent-mappings
-          - dtc-agent-mappings
-          - base-mappings
-          - dtc-base-mappings
-          - client-mappings
-          - dtc-client-mappings
-          - cloud-mappings
-          - container-mappings
-          - data_stream-mappings
-          - destination-mappings
-          - dtc-destination-mappings
-          - pb-override-destination-mappings
-          - dll-mappings
-          - dns-mappings
-          - dtc-dns-mappings
-          - ecs-mappings
-          - dtc-ecs-mappings
-          - endgame-mappings
-          - error-mappings
-          - event-mappings
-          - dtc-event-mappings
-          - file-mappings
-          - dtc-file-mappings
-          - group-mappings
-          - host-mappings
-          - dtc-host-mappings
-          - http-mappings
-          - dtc-http-mappings
-          - log-mappings
-          - network-mappings
-          - dtc-network-mappings
-          - observer-mappings
-          - dtc-observer-mappings
-          - orchestrator-mappings
-          - organization-mappings
-          - package-mappings
-          - process-mappings
-          - dtc-process-mappings
-          - registry-mappings
-          - related-mappings
-          - rule-mappings
-          - dtc-rule-mappings
-          - server-mappings
-          - service-mappings
-          - dtc-service-mappings
-          - source-mappings
-          - dtc-source-mappings
-          - pb-override-source-mappings
-          - threat-mappings
-          - tls-mappings
-          - tracing-mappings
-          - url-mappings
-          - user_agent-mappings
-          - dtc-user_agent-mappings
-          - vulnerability-mappings
-          - common-settings
-          - common-dynamic-mappings
-          - winlog-mappings
-        priority: 500
-    so-idh:
-      warm: 7
-      close: 30
-      delete: 365
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - so-idh-*
-        template:
-          mappings:
-            dynamic_templates:
-              - strings_as_keyword:
-                  mapping:
-                    ignore_above: 1024
-                    type: keyword
-                  match_mapping_type: string
-            date_detection: false
-          settings:
-            index:
-              mapping:
-                total_fields:
-                  limit: 5000
-              sort:
-                field: "@timestamp"
-                order: desc
-              refresh_interval: 30s
-              number_of_shards: 1
-              number_of_replicas: 0
-        composed_of: 
-          - agent-mappings
-          - dtc-agent-mappings
-          - base-mappings
-          - dtc-base-mappings
-          - client-mappings
-          - dtc-client-mappings
-          - container-mappings
-          - destination-mappings
-          - dtc-destination-mappings
-          - pb-override-destination-mappings
-          - dll-mappings
-          - dns-mappings
-          - dtc-dns-mappings
-          - ecs-mappings
-          - dtc-ecs-mappings
-          - error-mappings
-          - event-mappings
-          - dtc-event-mappings
-          - file-mappings
-          - dtc-file-mappings
-          - group-mappings
-          - host-mappings
-          - dtc-host-mappings
-          - http-mappings
-          - dtc-http-mappings
-          - log-mappings
-          - network-mappings
-          - dtc-network-mappings
-          - observer-mappings
-          - dtc-observer-mappings
-          - organization-mappings
-          - package-mappings
-          - process-mappings
-          - dtc-process-mappings
-          - related-mappings
-          - rule-mappings
-          - dtc-rule-mappings
-          - server-mappings
-          - service-mappings
-          - dtc-service-mappings
-          - source-mappings
-          - dtc-source-mappings
-          - pb-override-source-mappings
-          - threat-mappings
-          - tls-mappings
-          - url-mappings
-          - user_agent-mappings
-          - dtc-user_agent-mappings
-          - common-settings
-          - common-dynamic-mappings
-        priority: 500
-    so-suricata:
-      index_sorting: False
-      index_template:
-        data_stream: {}
-        index_patterns:
-          - logs-suricata-so*
-        template:
-          mappings:
-            dynamic_templates:
-              - strings_as_keyword:
-                  mapping:
-                    ignore_above: 1024
-                    type: keyword
-                  match_mapping_type: string
-            date_detection: false
+            - strings_as_keyword:
+                mapping:
+                  ignore_above: 1024
+                  type: keyword
+                match_mapping_type: string
           settings:
             index:
               lifecycle:
-                name: so-suricata-logs
+                name: so-case-logs
               mapping:
                 total_fields:
-                  limit: 5000
-              sort:
-                field: "@timestamp"
-                order: desc
-              refresh_interval: 30s
-              number_of_shards: 1
+                  limit: 1500
               number_of_replicas: 0
-        composed_of: 
-          - agent-mappings
-          - dtc-agent-mappings
-          - base-mappings
-          - dtc-base-mappings
-          - client-mappings
-          - dtc-client-mappings
-          - cloud-mappings
-          - container-mappings
-          - data_stream-mappings
-          - destination-mappings
-          - dtc-destination-mappings
-          - pb-override-destination-mappings
-          - dll-mappings
-          - dns-mappings
-          - dtc-dns-mappings
-          - ecs-mappings
-          - dtc-ecs-mappings
-          - error-mappings
-          - event-mappings
-          - dtc-event-mappings
-          - file-mappings
-          - dtc-file-mappings
-          - group-mappings
-          - host-mappings
-          - dtc-host-mappings
-          - http-mappings
-          - dtc-http-mappings
-          - log-mappings
-          - network-mappings
-          - dtc-network-mappings
-          - observer-mappings
-          - dtc-observer-mappings
-          - orchestrator-mappings
-          - organization-mappings
-          - package-mappings
-          - process-mappings
-          - dtc-process-mappings
-          - registry-mappings
-          - related-mappings
-          - rule-mappings
-          - dtc-rule-mappings
-          - server-mappings
-          - service-mappings
-          - dtc-service-mappings
-          - source-mappings
-          - dtc-source-mappings
-          - pb-override-source-mappings
-          - suricata-mappings
-          - threat-mappings
-          - tls-mappings
-          - tracing-mappings
-          - url-mappings
-          - user_agent-mappings
-          - dtc-user_agent-mappings
-          - vulnerability-mappings
-          - common-settings
-          - common-dynamic-mappings
-        priority: 500
+              number_of_shards: 1
+              refresh_interval: 30s
+              sort:
+                field: '@timestamp'
+                order: desc
       policy:
         phases:
-          hot:
-            min_age: 0ms
-            actions:
-              set_priority:
-                priority: 100
-              rollover:
-                max_age: 30d
-                max_primary_shard_size: 50gb
           cold:
-            min_age: 30d
             actions:
               set_priority:
                 priority: 0
+            min_age: 30d
           delete:
-            min_age: 365d
             actions:
               delete: {}
-    so-import:
-      index_sorting: False
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-common:
+      close: 30
+      delete: 365
+      index_sorting: false
       index_template:
+        composed_of:
+        - agent-mappings
+        - dtc-agent-mappings
+        - base-mappings
+        - dtc-base-mappings
+        - client-mappings
+        - dtc-client-mappings
+        - cloud-mappings
+        - container-mappings
+        - data_stream-mappings
+        - destination-mappings
+        - dtc-destination-mappings
+        - pb-override-destination-mappings
+        - dll-mappings
+        - dns-mappings
+        - dtc-dns-mappings
+        - ecs-mappings
+        - dtc-ecs-mappings
+        - error-mappings
+        - event-mappings
+        - dtc-event-mappings
+        - file-mappings
+        - dtc-file-mappings
+        - group-mappings
+        - host-mappings
+        - dtc-host-mappings
+        - http-mappings
+        - dtc-http-mappings
+        - log-mappings
+        - network-mappings
+        - dtc-network-mappings
+        - observer-mappings
+        - dtc-observer-mappings
+        - orchestrator-mappings
+        - organization-mappings
+        - package-mappings
+        - process-mappings
+        - dtc-process-mappings
+        - registry-mappings
+        - related-mappings
+        - rule-mappings
+        - dtc-rule-mappings
+        - server-mappings
+        - service-mappings
+        - dtc-service-mappings
+        - source-mappings
+        - dtc-source-mappings
+        - pb-override-source-mappings
+        - syslog-mappings
+        - dtc-syslog-mappings
+        - threat-mappings
+        - tls-mappings
+        - tracing-mappings
+        - url-mappings
+        - user_agent-mappings
+        - dtc-user_agent-mappings
+        - vulnerability-mappings
+        - common-settings
+        - common-dynamic-mappings
+        - winlog-mappings
         data_stream: {}
         index_patterns:
-          - logs-import-so*
+        - logs-*-so*
+        priority: 1
         template:
           mappings:
-            dynamic_templates:
-              - strings_as_keyword:
-                  mapping:
-                    ignore_above: 1024
-                    type: keyword
-                  match_mapping_type: string
             date_detection: false
+            dynamic_templates:
+            - strings_as_keyword:
+                mapping:
+                  ignore_above: 1024
+                  type: keyword
+                match_mapping_type: string
           settings:
             index:
+              lifecycle:
+                name: so-common-logs
+              mapping:
+                total_fields:
+                  limit: 5000
+              number_of_replicas: 0
+              number_of_shards: 1
+              refresh_interval: 30s
+              sort:
+                field: '@timestamp'
+                order: desc
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+      warm: 7
+    so-endgame:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - agent-mappings
+        - dtc-agent-mappings
+        - base-mappings
+        - dtc-base-mappings
+        - client-mappings
+        - dtc-client-mappings
+        - cloud-mappings
+        - container-mappings
+        - data_stream-mappings
+        - destination-mappings
+        - dtc-destination-mappings
+        - pb-override-destination-mappings
+        - dll-mappings
+        - dns-mappings
+        - dtc-dns-mappings
+        - ecs-mappings
+        - dtc-ecs-mappings
+        - endgame-mappings
+        - error-mappings
+        - event-mappings
+        - dtc-event-mappings
+        - file-mappings
+        - dtc-file-mappings
+        - group-mappings
+        - host-mappings
+        - dtc-host-mappings
+        - http-mappings
+        - dtc-http-mappings
+        - log-mappings
+        - network-mappings
+        - dtc-network-mappings
+        - observer-mappings
+        - dtc-observer-mappings
+        - orchestrator-mappings
+        - organization-mappings
+        - package-mappings
+        - process-mappings
+        - dtc-process-mappings
+        - registry-mappings
+        - related-mappings
+        - rule-mappings
+        - dtc-rule-mappings
+        - server-mappings
+        - service-mappings
+        - dtc-service-mappings
+        - source-mappings
+        - dtc-source-mappings
+        - pb-override-source-mappings
+        - threat-mappings
+        - tls-mappings
+        - tracing-mappings
+        - url-mappings
+        - user_agent-mappings
+        - dtc-user_agent-mappings
+        - vulnerability-mappings
+        - common-settings
+        - common-dynamic-mappings
+        - winlog-mappings
+        index_patterns:
+        - endgame*
+        priority: 500
+        template:
+          mappings:
+            date_detection: false
+            dynamic_templates:
+            - strings_as_keyword:
+                mapping:
+                  ignore_above: 1024
+                  type: keyword
+                match_mapping_type: string
+          settings:
+            index:
+              lifecycle:
+                name: so-endgame-logs
+              mapping:
+                total_fields:
+                  limit: 5000
+              number_of_replicas: 0
+              number_of_shards: 1
+              refresh_interval: 30s
+              sort:
+                field: '@timestamp'
+                order: desc
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-idh:
+      close: 30
+      delete: 365
+      index_sorting: false
+      index_template:
+        composed_of:
+        - agent-mappings
+        - dtc-agent-mappings
+        - base-mappings
+        - dtc-base-mappings
+        - client-mappings
+        - dtc-client-mappings
+        - container-mappings
+        - destination-mappings
+        - dtc-destination-mappings
+        - pb-override-destination-mappings
+        - dll-mappings
+        - dns-mappings
+        - dtc-dns-mappings
+        - ecs-mappings
+        - dtc-ecs-mappings
+        - error-mappings
+        - event-mappings
+        - dtc-event-mappings
+        - file-mappings
+        - dtc-file-mappings
+        - group-mappings
+        - host-mappings
+        - dtc-host-mappings
+        - http-mappings
+        - dtc-http-mappings
+        - log-mappings
+        - network-mappings
+        - dtc-network-mappings
+        - observer-mappings
+        - dtc-observer-mappings
+        - organization-mappings
+        - package-mappings
+        - process-mappings
+        - dtc-process-mappings
+        - related-mappings
+        - rule-mappings
+        - dtc-rule-mappings
+        - server-mappings
+        - service-mappings
+        - dtc-service-mappings
+        - source-mappings
+        - dtc-source-mappings
+        - pb-override-source-mappings
+        - threat-mappings
+        - tls-mappings
+        - url-mappings
+        - user_agent-mappings
+        - dtc-user_agent-mappings
+        - common-settings
+        - common-dynamic-mappings
+        index_patterns:
+        - so-idh-*
+        priority: 500
+        template:
+          mappings:
+            date_detection: false
+            dynamic_templates:
+            - strings_as_keyword:
+                mapping:
+                  ignore_above: 1024
+                  type: keyword
+                match_mapping_type: string
+          settings:
+            index:
+              lifecycle:
+                name: so-idh-logs
+              mapping:
+                total_fields:
+                  limit: 5000
+              number_of_replicas: 0
+              number_of_shards: 1
+              refresh_interval: 30s
+              sort:
+                field: '@timestamp'
+                order: desc
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+      warm: 7
+    so-import:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - agent-mappings
+        - dtc-agent-mappings
+        - base-mappings
+        - dtc-base-mappings
+        - client-mappings
+        - dtc-client-mappings
+        - cloud-mappings
+        - container-mappings
+        - data_stream-mappings
+        - destination-mappings
+        - dtc-destination-mappings
+        - pb-override-destination-mappings
+        - dll-mappings
+        - dns-mappings
+        - dtc-dns-mappings
+        - ecs-mappings
+        - dtc-ecs-mappings
+        - error-mappings
+        - event-mappings
+        - dtc-event-mappings
+        - file-mappings
+        - dtc-file-mappings
+        - group-mappings
+        - host-mappings
+        - dtc-host-mappings
+        - http-mappings
+        - dtc-http-mappings
+        - log-mappings
+        - network-mappings
+        - dtc-network-mappings
+        - observer-mappings
+        - dtc-observer-mappings
+        - orchestrator-mappings
+        - organization-mappings
+        - package-mappings
+        - process-mappings
+        - dtc-process-mappings
+        - registry-mappings
+        - related-mappings
+        - rule-mappings
+        - dtc-rule-mappings
+        - server-mappings
+        - service-mappings
+        - dtc-service-mappings
+        - source-mappings
+        - dtc-source-mappings
+        - pb-override-source-mappings
+        - threat-mappings
+        - tls-mappings
+        - tracing-mappings
+        - url-mappings
+        - user_agent-mappings
+        - dtc-user_agent-mappings
+        - vulnerability-mappings
+        - common-settings
+        - common-dynamic-mappings
+        - winlog-mappings
+        data_stream: {}
+        index_patterns:
+        - logs-import-so*
+        priority: 500
+        template:
+          mappings:
+            date_detection: false
+            dynamic_templates:
+            - strings_as_keyword:
+                mapping:
+                  ignore_above: 1024
+                  type: keyword
+                match_mapping_type: string
+          settings:
+            index:
+              final_pipeline: .fleet_final_pipeline-1
               lifecycle:
                 name: so-import-logs
               mapping:
                 total_fields:
                   limit: 5000
-              sort:
-                field: "@timestamp"
-                order: desc
-              refresh_interval: 30s
-              number_of_shards: 1
               number_of_replicas: 0
-              final_pipeline: ".fleet_final_pipeline-1"
-        composed_of: 
-          - agent-mappings
-          - dtc-agent-mappings
-          - base-mappings
-          - dtc-base-mappings
-          - client-mappings
-          - dtc-client-mappings
-          - cloud-mappings
-          - container-mappings
-          - data_stream-mappings
-          - destination-mappings
-          - dtc-destination-mappings
-          - pb-override-destination-mappings
-          - dll-mappings
-          - dns-mappings
-          - dtc-dns-mappings
-          - ecs-mappings
-          - dtc-ecs-mappings
-          - error-mappings
-          - event-mappings
-          - dtc-event-mappings
-          - file-mappings
-          - dtc-file-mappings
-          - group-mappings
-          - host-mappings
-          - dtc-host-mappings
-          - http-mappings
-          - dtc-http-mappings
-          - log-mappings
-          - network-mappings
-          - dtc-network-mappings
-          - observer-mappings
-          - dtc-observer-mappings
-          - orchestrator-mappings
-          - organization-mappings
-          - package-mappings
-          - process-mappings
-          - dtc-process-mappings
-          - registry-mappings
-          - related-mappings
-          - rule-mappings
-          - dtc-rule-mappings
-          - server-mappings
-          - service-mappings
-          - dtc-service-mappings
-          - source-mappings
-          - dtc-source-mappings
-          - pb-override-source-mappings
-          - threat-mappings
-          - tls-mappings
-          - tracing-mappings
-          - url-mappings
-          - user_agent-mappings
-          - dtc-user_agent-mappings
-          - vulnerability-mappings
-          - common-settings
-          - common-dynamic-mappings
-          - winlog-mappings
-        priority: 500
+              number_of_shards: 1
+              refresh_interval: 30s
+              sort:
+                field: '@timestamp'
+                order: desc
       policy:
         phases:
-          hot:
-            min_age: 0ms
-            actions:
-              set_priority:
-                priority: 100
-              rollover:
-                max_age: 30d
-                max_primary_shard_size: 50gb
           cold:
-            min_age: 30d
             actions:
               set_priority:
                 priority: 0
+            min_age: 30d
           delete:
-            min_age: 365d
             actions:
               delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
     so-kratos:
-      warm: 7
       close: 30
       delete: 365
-      index_sorting: False
+      index_sorting: false
       index_template:
+        composed_of:
+        - agent-mappings
+        - dtc-agent-mappings
+        - base-mappings
+        - dtc-base-mappings
+        - client-mappings
+        - dtc-client-mappings
+        - container-mappings
+        - destination-mappings
+        - dtc-destination-mappings
+        - pb-override-destination-mappings
+        - dll-mappings
+        - dns-mappings
+        - dtc-dns-mappings
+        - ecs-mappings
+        - dtc-ecs-mappings
+        - error-mappings
+        - event-mappings
+        - dtc-event-mappings
+        - file-mappings
+        - dtc-file-mappings
+        - group-mappings
+        - host-mappings
+        - dtc-host-mappings
+        - http-mappings
+        - dtc-http-mappings
+        - log-mappings
+        - network-mappings
+        - dtc-network-mappings
+        - observer-mappings
+        - dtc-observer-mappings
+        - organization-mappings
+        - package-mappings
+        - process-mappings
+        - dtc-process-mappings
+        - related-mappings
+        - rule-mappings
+        - dtc-rule-mappings
+        - server-mappings
+        - service-mappings
+        - dtc-service-mappings
+        - source-mappings
+        - dtc-source-mappings
+        - pb-override-source-mappings
+        - threat-mappings
+        - tls-mappings
+        - url-mappings
+        - user_agent-mappings
+        - dtc-user_agent-mappings
+        - common-settings
+        - common-dynamic-mappings
         data_stream:
-          hidden: false
           allow_custom_routing: false
+          hidden: false
         index_patterns:
-          - logs-kratos-so*
+        - logs-kratos-so*
+        priority: 500
         template:
           mappings:
-            dynamic_templates:
-              - strings_as_keyword:
-                  mapping:
-                    ignore_above: 1024
-                    type: keyword
-                  match_mapping_type: string
             date_detection: false
+            dynamic_templates:
+            - strings_as_keyword:
+                mapping:
+                  ignore_above: 1024
+                  type: keyword
+                match_mapping_type: string
           settings:
             index:
+              lifecycle:
+                name: so-kratos-logs
               mapping:
                 total_fields:
                   limit: 5000
-              sort:
-                field: "@timestamp"
-                order: desc
-              refresh_interval: 30s
-              number_of_shards: 1
               number_of_replicas: 0
-        composed_of: 
-          - agent-mappings
-          - dtc-agent-mappings
-          - base-mappings
-          - dtc-base-mappings
-          - client-mappings
-          - dtc-client-mappings
-          - container-mappings
-          - destination-mappings
-          - dtc-destination-mappings
-          - pb-override-destination-mappings
-          - dll-mappings
-          - dns-mappings
-          - dtc-dns-mappings
-          - ecs-mappings
-          - dtc-ecs-mappings
-          - error-mappings
-          - event-mappings
-          - dtc-event-mappings
-          - file-mappings
-          - dtc-file-mappings
-          - group-mappings
-          - host-mappings
-          - dtc-host-mappings
-          - http-mappings
-          - dtc-http-mappings
-          - log-mappings
-          - network-mappings
-          - dtc-network-mappings
-          - observer-mappings
-          - dtc-observer-mappings
-          - organization-mappings
-          - package-mappings
-          - process-mappings
-          - dtc-process-mappings
-          - related-mappings
-          - rule-mappings
-          - dtc-rule-mappings
-          - server-mappings
-          - service-mappings
-          - dtc-service-mappings
-          - source-mappings
-          - dtc-source-mappings
-          - pb-override-source-mappings
-          - threat-mappings
-          - tls-mappings
-          - url-mappings
-          - user_agent-mappings
-          - dtc-user_agent-mappings
-          - common-settings
-          - common-dynamic-mappings
-        priority: 500
+              number_of_shards: 1
+              refresh_interval: 30s
+              sort:
+                field: '@timestamp'
+                order: desc
       policy:
         phases:
-          hot:
-            min_age: 0ms
-            actions:
-              set_priority:
-                priority: 100
-              rollover:
-                max_age: 30d
-                max_primary_shard_size: 50gb
           cold:
-            min_age: 30d
             actions:
               set_priority:
                 priority: 0
+            min_age: 30d
           delete:
-            min_age: 365d
             actions:
               delete: {}
-    so-logstash:
-      index_sorting: False
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+      warm: 7
+    so-logs:
+      index_sorting: false
       index_template:
+        composed_of:
+        - so-data-streams-mappings
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        - so-logs-mappings
+        - so-logs-settings
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
         index_patterns:
-          - logs-logstash-default*
+        - logs-*-*
+        priority: 225
+        template:
+          mappings:
+            _meta:
+              managed: true
+              managed_by: security_onion
+              package:
+                name: elastic_agent
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-logs
+              mapping:
+                total_fields:
+                  limit: 5001
+              number_of_replicas: 0
+              sort:
+                field: '@timestamp'
+                order: desc
+      policy:
+        _meta:
+          managed: true
+          managed_by: security_onion
+          package:
+            name: elastic_agent
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-1password_x_item_usages:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-1password.item_usages@package
+        - logs-1password.item_usages@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-1password.item_usages-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-1password.item_usages-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-1password_x_signin_attempts:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-1password.signin_attempts@package
+        - logs-1password.signin_attempts@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-1password.signin_attempts-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-1password.signin_attempts-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-apache_x_access:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-apache.access@package
+        - logs-apache.access@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-apache.access-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-apache.access-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-apache_x_error:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-apache.error@package
+        - logs-apache.error@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-apache.error-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-apache.error-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-auditd_x_log:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-auditd.log@package
+        - logs-auditd.log@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-auditd.log-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-auditd.log-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-auth0_x_logs:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-auth0.logs@package
+        - logs-auth0.logs@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-auth0.logs-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-auth0.logs-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-aws_x_cloudtrail:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-aws.cloudtrail@package
+        - logs-aws.cloudtrail@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-aws.cloudtrail-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-aws.cloudtrail-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-aws_x_cloudwatch_logs:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-aws.cloudwatch_logs@package
+        - logs-aws.cloudwatch_logs@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-aws.cloudwatch_logs-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-aws.cloudwatch_logs-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-aws_x_ec2_logs:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-aws.ec2_logs@package
+        - logs-aws.ec2_logs@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-aws.ec2_logs-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-aws.ec2_logs-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-aws_x_elb_logs:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-aws.elb_logs@package
+        - logs-aws.elb_logs@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-aws.elb_logs-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-aws.elb_logs-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-aws_x_firewall_logs:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-aws.firewall_logs@package
+        - logs-aws.firewall_logs@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-aws.firewall_logs-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-aws.firewall_logs-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-aws_x_route53_public_logs:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-aws.route53_public_logs@package
+        - logs-aws.route53_public_logs@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-aws.route53_public_logs-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-aws.route53_public_logs-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-aws_x_route53_resolver_logs:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-aws.route53_resolver_logs@package
+        - logs-aws.route53_resolver_logs@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-aws.route53_resolver_logs-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-aws.route53_resolver_logs-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-aws_x_s3access:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-aws.s3access@package
+        - logs-aws.s3access@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-aws.s3access-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-aws.s3access-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-aws_x_vpcflow:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-aws.vpcflow@package
+        - logs-aws.vpcflow@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-aws.vpcflow-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-aws.vpcflow-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-aws_x_waf:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-aws.waf@package
+        - logs-aws.waf@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-aws.waf-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-aws.waf-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-azure_x_activitylogs:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-azure.activitylogs@package
+        - logs-azure.activitylogs@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-azure.activitylogs-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-azure.activitylogs-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-azure_x_application_gateway:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-azure.application_gateway@package
+        - logs-azure.application_gateway@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-azure.application_gateway-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-azure.application_gateway-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-azure_x_auditlogs:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-azure.auditlogs@package
+        - logs-azure.auditlogs@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-azure.auditlogs-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-azure.auditlogs-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-azure_x_eventhub:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-azure.eventhub@package
+        - logs-azure.eventhub@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-azure.eventhub-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-azure.eventhub-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-azure_x_firewall_logs:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-azure.firewall_logs@package
+        - logs-azure.firewall_logs@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-azure.firewall_logs-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-azure.firewall_logs-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-azure_x_identity_protection:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-azure.identity_protection@package
+        - logs-azure.identity_protection@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-azure.identity_protection-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-azure.identity_protection-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-azure_x_platformlogs:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-azure.platformlogs@package
+        - logs-azure.platformlogs@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-azure.platformlogs-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-azure.platformlogs-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-azure_x_provisioning:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-azure.provisioning@package
+        - logs-azure.provisioning@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-azure.provisioning-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-azure.provisioning-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-azure_x_signinlogs:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-azure.signinlogs@package
+        - logs-azure.signinlogs@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-azure.signinlogs-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-azure.signinlogs-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-azure_x_springcloudlogs:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-azure.springcloudlogs@package
+        - logs-azure.springcloudlogs@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-azure.springcloudlogs-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-azure.springcloudlogs-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-barracuda_x_waf:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-barracuda.waf@package
+        - logs-barracuda.waf@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-barracuda.waf-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-barracuda.waf-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-carbonblack_edr_x_log:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-carbonblack_edr.log@package
+        - logs-carbonblack_edr.log@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-carbonblack_edr.log-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-carbonblack_edr.log-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-cisco_asa_x_log:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-cisco_asa.log@package
+        - logs-cisco_asa.log@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-cisco_asa.log-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-cisco_asa.log-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-cisco_duo_x_admin:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-cisco_duo.admin@package
+        - logs-cisco_duo.admin@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-cisco_duo.admin-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-cisco_duo.admin-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-cisco_duo_x_auth:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-cisco_duo.auth@package
+        - logs-cisco_duo.auth@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-cisco_duo.auth-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-cisco_duo.auth-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-cisco_duo_x_offline_enrollment:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-cisco_duo.offline_enrollment@package
+        - logs-cisco_duo.offline_enrollment@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-cisco_duo.offline_enrollment-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-cisco_duo.offline_enrollment-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-cisco_duo_x_summary:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-cisco_duo.summary@package
+        - logs-cisco_duo.summary@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-cisco_duo.summary-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-cisco_duo.summary-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-cisco_duo_x_telephony:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-cisco_duo.telephony@package
+        - logs-cisco_duo.telephony@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-cisco_duo.telephony-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-cisco_duo.telephony-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-cisco_meraki_x_events:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-cisco_meraki.events@package
+        - logs-cisco_meraki.events@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-cisco_meraki.events-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-cisco_meraki.events-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-cisco_meraki_x_log:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-cisco_meraki.log@package
+        - logs-cisco_meraki.log@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-cisco_meraki.log-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-cisco_meraki.log-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-cisco_umbrella_x_log:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-cisco_umbrella.log@package
+        - logs-cisco_umbrella.log@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-cisco_umbrella.log-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-cisco_umbrella.log-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-cloudflare_x_audit:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-cloudflare.audit@package
+        - logs-cloudflare.audit@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-cloudflare.audit-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-cloudflare.audit-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-cloudflare_x_logpull:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-cloudflare.logpull@package
+        - logs-cloudflare.logpull@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-cloudflare.logpull-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-cloudflare.logpull-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-crowdstrike_x_falcon:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-crowdstrike.falcon@package
+        - logs-crowdstrike.falcon@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-crowdstrike.falcon-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-crowdstrike.falcon-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-crowdstrike_x_fdr:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-crowdstrike.fdr@package
+        - logs-crowdstrike.fdr@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-crowdstrike.fdr-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-crowdstrike.fdr-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-darktrace_x_ai_analyst_alert:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-darktrace.ai_analyst_alert@package
+        - logs-darktrace.ai_analyst_alert@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-darktrace.ai_analyst_alert-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-darktrace.ai_analyst_alert-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-darktrace_x_model_breach_alert:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-darktrace.model_breach_alert@package
+        - logs-darktrace.model_breach_alert@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-darktrace.model_breach_alert-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-darktrace.model_breach_alert-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-darktrace_x_system_status_alert:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-darktrace.system_status_alert@package
+        - logs-darktrace.system_status_alert@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-darktrace.system_status_alert-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-darktrace.system_status_alert-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-elastic_agent:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - event-mappings
+        - logs-elastic_agent@package
+        - logs-elastic_agent@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-elastic_agent-*
+        priority: 501
+        template:
+          mappings:
+            _meta:
+              managed: true
+              managed_by: security_onion
+              package:
+                name: elastic_agent
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-elastic_agent-logs
+              mapping:
+                total_fields:
+                  limit: 5000
+              number_of_replicas: 0
+              sort:
+                field: '@timestamp'
+                order: desc
+      policy:
+        _meta:
+          managed: true
+          managed_by: security_onion
+          package:
+            name: elastic_agent
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-elastic_agent_x_apm_server:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-elastic_agent.apm_server@package
+        - logs-elastic_agent.apm_server@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-elastic_agent.apm_server-*
+        priority: 501
+        template:
+          mappings:
+            _meta:
+              managed: true
+              managed_by: security_onion
+              package:
+                name: elastic_agent
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-elastic_agent.apm_server-logs
+              mapping:
+                total_fields:
+                  limit: 5000
+              number_of_replicas: 0
+              sort:
+                field: '@timestamp'
+                order: desc
+      policy:
+        _meta:
+          managed: true
+          managed_by: security_onion
+          package:
+            name: elastic_agent
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-elastic_agent_x_auditbeat:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-elastic_agent.auditbeat@package
+        - logs-elastic_agent.auditbeat@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-elastic_agent.auditbeat-*
+        priority: 501
+        template:
+          mappings:
+            _meta:
+              managed: true
+              managed_by: security_onion
+              package:
+                name: elastic_agent
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-elastic_agent.auditbeat-logs
+              mapping:
+                total_fields:
+                  limit: 5000
+              number_of_replicas: 0
+              sort:
+                field: '@timestamp'
+                order: desc
+      policy:
+        _meta:
+          managed: true
+          managed_by: security_onion
+          package:
+            name: elastic_agent
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-elastic_agent_x_cloudbeat:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-elastic_agent.cloudbeat@package
+        - logs-elastic_agent.cloudbeat@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        index_patterns:
+        - logs-elastic_agent.cloudbeat-*
+        priority: 501
+        template:
+          mappings:
+            _meta:
+              managed: true
+              managed_by: security_onion
+              package:
+                name: elastic_agent
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-elastic_agent.cloudbeat-logs
+              mapping:
+                total_fields:
+                  limit: 5000
+              number_of_replicas: 0
+              sort:
+                field: '@timestamp'
+                order: desc
+      policy:
+        _meta:
+          managed: true
+          managed_by: security_onion
+          package:
+            name: elastic_agent
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-elastic_agent_x_endpoint_security:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - event-mappings
+        - logs-elastic_agent.endpoint_security@package
+        - logs-elastic_agent.endpoint_security@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-elastic_agent.endpoint_security-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-elastic_agent.endpoint_security-logs
+              mapping:
+                total_fields:
+                  limit: 5000
+              number_of_replicas: 0
+              sort:
+                field: '@timestamp'
+                order: desc
+      policy:
+        _meta:
+          managed: true
+          managed_by: security_onion
+          package:
+            name: elastic_agent
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-elastic_agent_x_filebeat:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - event-mappings
+        - logs-elastic_agent.filebeat@package
+        - logs-elastic_agent.filebeat@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-elastic_agent.filebeat-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-elastic_agent.filebeat-logs
+              mapping:
+                total_fields:
+                  limit: 5000
+              number_of_replicas: 0
+              sort:
+                field: '@timestamp'
+                order: desc
+      policy:
+        _meta:
+          managed: true
+          managed_by: security_onion
+          package:
+            name: elastic_agent
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-elastic_agent_x_fleet_server:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - event-mappings
+        - logs-elastic_agent.fleet_server@package
+        - logs-elastic_agent.fleet_server@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-elastic_agent.fleet_server-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-elastic_agent.fleet_server-logs
+              number_of_replicas: 0
+              sort:
+                field: '@timestamp'
+                order: desc
+      policy:
+        _meta:
+          managed: true
+          managed_by: security_onion
+          package:
+            name: elastic_agent
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-elastic_agent_x_heartbeat:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-elastic_agent.heartbeat@package
+        - logs-elastic_agent.heartbeat@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        index_patterns:
+        - logs-elastic_agent.heartbeat-*
+        priority: 501
+        template:
+          mappings:
+            _meta:
+              managed: true
+              managed_by: security_onion
+              package:
+                name: elastic_agent
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-elastic_agent.heartbeat-logs
+              mapping:
+                total_fields:
+                  limit: 5000
+              number_of_replicas: 0
+              sort:
+                field: '@timestamp'
+                order: desc
+      policy:
+        _meta:
+          managed: true
+          managed_by: security_onion
+          package:
+            name: elastic_agent
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-elastic_agent_x_metricbeat:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - event-mappings
+        - logs-elastic_agent.metricbeat@package
+        - logs-elastic_agent.metricbeat@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-elastic_agent.metricbeat-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-elastic_agent.metricbeat-logs
+              mapping:
+                total_fields:
+                  limit: 5000
+              number_of_replicas: 0
+              sort:
+                field: '@timestamp'
+                order: desc
+      policy:
+        _meta:
+          managed: true
+          managed_by: security_onion
+          package:
+            name: elastic_agent
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-elastic_agent_x_osquerybeat:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - event-mappings
+        - logs-elastic_agent.osquerybeat@package
+        - logs-elastic_agent.osquerybeat@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-elastic_agent.osquerybeat-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-elastic_agent.osquerybeat-logs
+              mapping:
+                total_fields:
+                  limit: 5000
+              number_of_replicas: 0
+              sort:
+                field: '@timestamp'
+                order: desc
+      policy:
+        _meta:
+          managed: true
+          managed_by: security_onion
+          package:
+            name: elastic_agent
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-elastic_agent_x_packetbeat:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-elastic_agent.packetbeat@package
+        - logs-elastic_agent.packetbeat@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-elastic_agent.packetbeat-*
+        priority: 501
+        template:
+          mappings:
+            _meta:
+              managed: true
+              managed_by: security_onion
+              package:
+                name: elastic_agent
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-elastic_agent.packetbeat-logs
+              mapping:
+                total_fields:
+                  limit: 5000
+              number_of_replicas: 0
+              sort:
+                field: '@timestamp'
+                order: desc
+      policy:
+        _meta:
+          managed: true
+          managed_by: security_onion
+          package:
+            name: elastic_agent
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-endpoint_x_alerts:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - event-mappings
+        - logs-endpoint.alerts@custom
+        - logs-endpoint.alerts@package
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-endpoint.alerts-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-endpoint.alerts-logs
+              mapping:
+                total_fields:
+                  limit: 5000
+              number_of_replicas: 0
+              sort:
+                field: '@timestamp'
+                order: desc
+      policy:
+        _meta:
+          managed: true
+          managed_by: security_onion
+          package:
+            name: elastic_agent
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-endpoint_x_events_x_api:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - event-mappings
+        - logs-endpoint.events.api@custom
+        - logs-endpoint.events.api@package
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-endpoint.events.api-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-endpoint.events.api-logs
+              mapping:
+                total_fields:
+                  limit: 5000
+              number_of_replicas: 0
+              sort:
+                field: '@timestamp'
+                order: desc
+      policy:
+        _meta:
+          managed: true
+          managed_by: security_onion
+          package:
+            name: elastic_agent
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-endpoint_x_events_x_file:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - event-mappings
+        - logs-endpoint.events.file@custom
+        - logs-endpoint.events.file@package
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-endpoint.events.file-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-endpoint.events.file-logs
+              mapping:
+                total_fields:
+                  limit: 5000
+              number_of_replicas: 0
+              sort:
+                field: '@timestamp'
+                order: desc
+      policy:
+        _meta:
+          managed: true
+          managed_by: security_onion
+          package:
+            name: elastic_agent
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-endpoint_x_events_x_library:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - event-mappings
+        - logs-endpoint.events.library@custom
+        - logs-endpoint.events.library@package
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-endpoint.events.library-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-endpoint.events.library-logs
+              mapping:
+                total_fields:
+                  limit: 5000
+              number_of_replicas: 0
+              sort:
+                field: '@timestamp'
+                order: desc
+      policy:
+        _meta:
+          managed: true
+          managed_by: security_onion
+          package:
+            name: elastic_agent
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-endpoint_x_events_x_network:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - event-mappings
+        - logs-endpoint.events.network@custom
+        - logs-endpoint.events.network@package
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-endpoint.events.network-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-endpoint.events.network-logs
+              mapping:
+                total_fields:
+                  limit: 5000
+              number_of_replicas: 0
+              sort:
+                field: '@timestamp'
+                order: desc
+      policy:
+        _meta:
+          managed: true
+          managed_by: security_onion
+          package:
+            name: elastic_agent
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-endpoint_x_events_x_process:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - event-mappings
+        - logs-endpoint.events.process@custom
+        - logs-endpoint.events.process@package
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-endpoint.events.process-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-endpoint.events.process-logs
+              mapping:
+                total_fields:
+                  limit: 5000
+              number_of_replicas: 0
+              sort:
+                field: '@timestamp'
+                order: desc
+      policy:
+        _meta:
+          managed: true
+          managed_by: security_onion
+          package:
+            name: elastic_agent
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-endpoint_x_events_x_registry:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - event-mappings
+        - logs-endpoint.events.registry@custom
+        - logs-endpoint.events.registry@package
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-endpoint.events.registry-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-endpoint.events.registry-logs
+              mapping:
+                total_fields:
+                  limit: 5000
+              number_of_replicas: 0
+              sort:
+                field: '@timestamp'
+                order: desc
+      policy:
+        _meta:
+          managed: true
+          managed_by: security_onion
+          package:
+            name: elastic_agent
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-endpoint_x_events_x_security:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - event-mappings
+        - logs-endpoint.events.security@custom
+        - logs-endpoint.events.security@package
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-endpoint.events.security-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-endpoint.events.security-logs
+              mapping:
+                total_fields:
+                  limit: 5000
+              number_of_replicas: 0
+              sort:
+                field: '@timestamp'
+                order: desc
+      policy:
+        _meta:
+          managed: true
+          managed_by: security_onion
+          package:
+            name: elastic_agent
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-f5_bigip_x_log:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-f5_bigip.log@package
+        - logs-f5_bigip.log@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-f5_bigip.log-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-f5_bigip.log-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-fim_x_event:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-fim.event@package
+        - logs-fim.event@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-fim.event-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-fim.event-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-fireeye_x_nx:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-fireeye.nx@package
+        - logs-fireeye.nx@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-fireeye.nx-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-fireeye.nx-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-fortinet_fortigate_x_log:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-fortinet_fortigate.log@package
+        - logs-fortinet_fortigate.log@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-fortinet_fortigate.log-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-fortinet_fortigate.log-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-fortinet_x_clientendpoint:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-fortinet.clientendpoint@package
+        - logs-fortinet.clientendpoint@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-fortinet.clientendpoint-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-fortinet.clientendpoint-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-fortinet_x_firewall:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-fortinet.firewall@package
+        - logs-fortinet.firewall@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-fortinet.firewall-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-fortinet.firewall-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-fortinet_x_fortimail:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-fortinet.fortimail@package
+        - logs-fortinet.fortimail@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-fortinet.fortimail-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-fortinet.fortimail-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-fortinet_x_fortimanager:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-fortinet.fortimanager@package
+        - logs-fortinet.fortimanager@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-fortinet.fortimanager-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-fortinet.fortimanager-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-gcp_x_audit:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-gcp.audit@package
+        - logs-gcp.audit@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-gcp.audit-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-gcp.audit-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-gcp_x_dns:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-gcp.dns@package
+        - logs-gcp.dns@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-gcp.dns-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-gcp.dns-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-gcp_x_firewall:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-gcp.firewall@package
+        - logs-gcp.firewall@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-gcp.firewall-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-gcp.firewall-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-gcp_x_loadbalancing_logs:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-gcp.loadbalancing_logs@package
+        - logs-gcp.loadbalancing_logs@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-gcp.loadbalancing_logs-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-gcp.loadbalancing_logs-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-gcp_x_vpcflow:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-gcp.vpcflow@package
+        - logs-gcp.vpcflow@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-gcp.vpcflow-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-gcp.vpcflow-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-github_x_audit:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-github.audit@package
+        - logs-github.audit@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-github.audit-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-github.audit-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-github_x_code_scanning:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-github.code_scanning@package
+        - logs-github.code_scanning@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-github.code_scanning-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-github.code_scanning-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-github_x_dependabot:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-github.dependabot@package
+        - logs-github.dependabot@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-github.dependabot-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-github.dependabot-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-github_x_issues:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-github.issues@package
+        - logs-github.issues@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-github.issues-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-github.issues-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-github_x_secret_scanning:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-github.secret_scanning@package
+        - logs-github.secret_scanning@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-github.secret_scanning-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-github.secret_scanning-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-google_workspace_x_access_transparency:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-google_workspace.access_transparency@package
+        - logs-google_workspace.access_transparency@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-google_workspace.access_transparency-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-google_workspace.access_transparency-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-google_workspace_x_admin:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-google_workspace.admin@package
+        - logs-google_workspace.admin@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-google_workspace.admin-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-google_workspace.admin-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-google_workspace_x_alert:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-google_workspace.alert@package
+        - logs-google_workspace.alert@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-google_workspace.alert-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-google_workspace.alert-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-google_workspace_x_context_aware_access:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-google_workspace.context_aware_access@package
+        - logs-google_workspace.context_aware_access@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-google_workspace.context_aware_access-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-google_workspace.context_aware_access-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-google_workspace_x_device:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-google_workspace.device@package
+        - logs-google_workspace.device@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-google_workspace.device-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-google_workspace.device-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-google_workspace_x_drive:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-google_workspace.drive@package
+        - logs-google_workspace.drive@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-google_workspace.drive-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-google_workspace.drive-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-google_workspace_x_gcp:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-google_workspace.gcp@package
+        - logs-google_workspace.gcp@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-google_workspace.gcp-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-google_workspace.gcp-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-google_workspace_x_group_enterprise:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-google_workspace.group_enterprise@package
+        - logs-google_workspace.group_enterprise@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-google_workspace.group_enterprise-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-google_workspace.group_enterprise-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-google_workspace_x_groups:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-google_workspace.groups@package
+        - logs-google_workspace.groups@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-google_workspace.groups-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-google_workspace.groups-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-google_workspace_x_login:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-google_workspace.login@package
+        - logs-google_workspace.login@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-google_workspace.login-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-google_workspace.login-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-google_workspace_x_rules:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-google_workspace.rules@package
+        - logs-google_workspace.rules@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-google_workspace.rules-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-google_workspace.rules-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-google_workspace_x_saml:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-google_workspace.saml@package
+        - logs-google_workspace.saml@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-google_workspace.saml-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-google_workspace.saml-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-google_workspace_x_token:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-google_workspace.token@package
+        - logs-google_workspace.token@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-google_workspace.token-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-google_workspace.token-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-google_workspace_x_user_accounts:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-google_workspace.user_accounts@package
+        - logs-google_workspace.user_accounts@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-google_workspace.user_accounts-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-google_workspace.user_accounts-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-http_endpoint_x_generic:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-http_endpoint.generic@package
+        - logs-http_endpoint.generic@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-http_endpoint.generic-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-http_endpoint.generic-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-httpjson_x_generic:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-httpjson.generic@package
+        - logs-httpjson.generic@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-httpjson.generic-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-httpjson.generic-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-juniper_srx_x_log:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-juniper_srx.log@package
+        - logs-juniper_srx.log@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-juniper_srx.log-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-juniper_srx.log-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-juniper_x_junos:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-juniper.junos@package
+        - logs-juniper.junos@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-juniper.junos-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-juniper.junos-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-juniper_x_netscreen:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-juniper.netscreen@package
+        - logs-juniper.netscreen@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-juniper.netscreen-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-juniper.netscreen-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-juniper_x_srx:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-juniper.srx@package
+        - logs-juniper.srx@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-juniper.srx-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-juniper.srx-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-kafka_log_x_generic:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-kafka_log.generic@package
+        - logs-kafka_log.generic@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-kafka_log.generic-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-kafka_log.generic-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-lastpass_x_detailed_shared_folder:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-lastpass.detailed_shared_folder@package
+        - logs-lastpass.detailed_shared_folder@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-lastpass.detailed_shared_folder-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-lastpass.detailed_shared_folder-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-lastpass_x_event_report:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-lastpass.event_report@package
+        - logs-lastpass.event_report@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-lastpass.event_report-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-lastpass.event_report-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-lastpass_x_user:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-lastpass.user@package
+        - logs-lastpass.user@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-lastpass.user-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-lastpass.user-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-m365_defender_x_event:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-m365_defender.event@package
+        - logs-m365_defender.event@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-m365_defender.event-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-m365_defender.event-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-m365_defender_x_incident:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-m365_defender.incident@package
+        - logs-m365_defender.incident@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-m365_defender.incident-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-m365_defender.incident-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-m365_defender_x_log:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-m365_defender.log@package
+        - logs-m365_defender.log@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-m365_defender.log-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-m365_defender.log-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-microsoft_defender_endpoint_x_log:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-microsoft_defender_endpoint.log@package
+        - logs-microsoft_defender_endpoint.log@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-microsoft_defender_endpoint.log-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-microsoft_defender_endpoint.log-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-microsoft_dhcp_x_log:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-microsoft_dhcp.log@package
+        - logs-microsoft_dhcp.log@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-microsoft_dhcp.log-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-microsoft_dhcp.log-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-mimecast_x_audit_events:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-mimecast.audit_events@package
+        - logs-mimecast.audit_events@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-mimecast.audit_events-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-mimecast.audit_events-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-mimecast_x_dlp_logs:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-mimecast.dlp_logs@package
+        - logs-mimecast.dlp_logs@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-mimecast.dlp_logs-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-mimecast.dlp_logs-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-mimecast_x_siem_logs:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-mimecast.siem_logs@package
+        - logs-mimecast.siem_logs@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-mimecast.siem_logs-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-mimecast.siem_logs-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-mimecast_x_threat_intel_malware_customer:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-mimecast.threat_intel_malware_customer@package
+        - logs-mimecast.threat_intel_malware_customer@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-mimecast.threat_intel_malware_customer-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-mimecast.threat_intel_malware_customer-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-mimecast_x_threat_intel_malware_grid:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-mimecast.threat_intel_malware_grid@package
+        - logs-mimecast.threat_intel_malware_grid@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-mimecast.threat_intel_malware_grid-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-mimecast.threat_intel_malware_grid-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-mimecast_x_ttp_ap_logs:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-mimecast.ttp_ap_logs@package
+        - logs-mimecast.ttp_ap_logs@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-mimecast.ttp_ap_logs-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-mimecast.ttp_ap_logs-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-mimecast_x_ttp_ip_logs:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-mimecast.ttp_ip_logs@package
+        - logs-mimecast.ttp_ip_logs@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-mimecast.ttp_ip_logs-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-mimecast.ttp_ip_logs-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-mimecast_x_ttp_url_logs:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-mimecast.ttp_url_logs@package
+        - logs-mimecast.ttp_url_logs@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-mimecast.ttp_url_logs-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-mimecast.ttp_url_logs-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-netflow_x_log:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-netflow.log@package
+        - logs-netflow.log@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-netflow.log-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-netflow.log-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-o365_x_audit:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-o365.audit@package
+        - logs-o365.audit@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-o365.audit-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-o365.audit-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-okta_x_system:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-okta.system@package
+        - logs-okta.system@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-okta.system-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-okta.system-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-osquery-manager-action_x_responses:
+      index_sorting: false
+      index_template:
+        _meta:
+          managed: true
+          managed_by: security_onion
+          package:
+            name: elastic_agent
+        composed_of:
+        - logs-osquery_manager.action.responses
+        index_patterns:
+        - .logs-osquery_manager.action.responses*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-osquery-manager-action.responses-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-osquery-manager-actions:
+      index_sorting: false
+      index_template:
+        _meta:
+          managed: true
+          managed_by: security_onion
+          package:
+            name: elastic_agent
+        composed_of:
+        - logs-osquery_manager.actions
+        index_patterns:
+        - .logs-osquery_manager.actions*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-osquery-manager-actions-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-panw_x_panos:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-panw.panos@package
+        - logs-panw.panos@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-panw.panos-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-panw.panos-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-pfsense_x_log:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-pfsense.log@package
+        - logs-pfsense.log@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-pfsense.log-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-pfsense.log-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-pulse_connect_secure_x_log:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-pulse_connect_secure.log@package
+        - logs-pulse_connect_secure.log@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-pulse_connect_secure.log-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-pulse_connect_secure.log-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-sentinel_one_x_activity:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-sentinel_one.activity@package
+        - logs-sentinel_one.activity@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-sentinel_one.activity-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-sentinel_one.activity-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-sentinel_one_x_agent:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-sentinel_one.agent@package
+        - logs-sentinel_one.agent@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-sentinel_one.agent-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-sentinel_one.agent-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-sentinel_one_x_alert:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-sentinel_one.alert@package
+        - logs-sentinel_one.alert@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-sentinel_one.alert-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-sentinel_one.alert-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-sentinel_one_x_group:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-sentinel_one.group@package
+        - logs-sentinel_one.group@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-sentinel_one.group-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-sentinel_one.group-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-sentinel_one_x_threat:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-sentinel_one.threat@package
+        - logs-sentinel_one.threat@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-sentinel_one.threat-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-sentinel_one.threat-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-snyk_x_audit:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-snyk.audit@package
+        - logs-snyk.audit@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-snyk.audit-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-snyk.audit-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-snyk_x_vulnerabilities:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-snyk.vulnerabilities@package
+        - logs-snyk.vulnerabilities@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-snyk.vulnerabilities-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-snyk.vulnerabilities-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-sonicwall_firewall_x_log:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-sonicwall_firewall.log@package
+        - logs-sonicwall_firewall.log@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-sonicwall_firewall.log-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-sonicwall_firewall.log-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-sophos_central_x_alert:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-sophos_central.alert@package
+        - logs-sophos_central.alert@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-sophos_central.alert-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-sophos_central.alert-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-sophos_central_x_event:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-sophos_central.event@package
+        - logs-sophos_central.event@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-sophos_central.event-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-sophos_central.event-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-sophos_x_utm:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-sophos.utm@package
+        - logs-sophos.utm@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-sophos.utm-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-sophos.utm-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-sophos_x_xg:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-sophos.xg@package
+        - logs-sophos.xg@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-sophos.xg-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-sophos.xg-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-symantec_endpoint_x_log:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-symantec_endpoint.log@package
+        - logs-symantec_endpoint.log@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-symantec_endpoint.log-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-symantec_endpoint.log-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-system_x_application:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - event-mappings
+        - logs-system.application@package
+        - logs-system.application@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-system.application*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-system.application-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-system_x_auth:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - event-mappings
+        - logs-system.auth@package
+        - logs-system.auth@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-system.auth*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-system.auth-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-system_x_security:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - event-mappings
+        - logs-system.security@package
+        - logs-system.security@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-system.security*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-system.security-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-system_x_syslog:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - event-mappings
+        - logs-system.syslog@package
+        - logs-system.syslog@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-system.syslog*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-system.syslog-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-system_x_system:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - event-mappings
+        - logs-system.system@package
+        - logs-system.system@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-system.system*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-system.system-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-tenable_sc_x_asset:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-tenable_sc.asset@package
+        - logs-tenable_sc.asset@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-tenable_sc.asset-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-tenable_sc.asset-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-tenable_sc_x_plugin:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-tenable_sc.plugin@package
+        - logs-tenable_sc.plugin@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-tenable_sc.plugin-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-tenable_sc.plugin-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-tenable_sc_x_vulnerability:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-tenable_sc.vulnerability@package
+        - logs-tenable_sc.vulnerability@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-tenable_sc.vulnerability-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-tenable_sc.vulnerability-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-ti_abusech_x_malware:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-ti_abusech.malware@package
+        - logs-ti_abusech.malware@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-ti_abusech.malware-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-ti_abusech.malware-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-ti_abusech_x_malwarebazaar:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-ti_abusech.malwarebazaar@package
+        - logs-ti_abusech.malwarebazaar@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-ti_abusech.malwarebazaar-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-ti_abusech.malwarebazaar-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-ti_abusech_x_threatfox:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-ti_abusech.threatfox@package
+        - logs-ti_abusech.threatfox@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-ti_abusech.threatfox-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-ti_abusech.threatfox-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-ti_abusech_x_url:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-ti_abusech.url@package
+        - logs-ti_abusech.url@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-ti_abusech.url-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-ti_abusech.url-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-ti_misp_x_threat:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-ti_misp.threat@package
+        - logs-ti_misp.threat@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-ti_misp.threat-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-ti_misp.threat-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-ti_misp_x_threat_attributes:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-ti_misp.threat_attributes@package
+        - logs-ti_misp.threat_attributes@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-ti_misp.threat_attributes-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-ti_misp.threat_attributes-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-ti_otx_x_threat:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-ti_otx.threat@package
+        - logs-ti_otx.threat@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-ti_otx.threat-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-ti_otx.threat-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-ti_recordedfuture_x_latest_ioc-template:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-ti_recordedfuture.latest_ioc-template@package
+        - logs-ti_recordedfuture.latest_ioc-template@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-ti_recordedfuture.latest_ioc-template-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-ti_recordedfuture.latest_ioc-template-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-ti_recordedfuture_x_threat:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-ti_recordedfuture.threat@package
+        - logs-ti_recordedfuture.threat@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-ti_recordedfuture.threat-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-ti_recordedfuture.threat-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-windows_x_forwarded:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-windows.forwarded@package
+        - logs-windows.forwarded@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-windows.forwarded*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-windows.forwarded-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-windows_x_powershell:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-windows.powershell@package
+        - logs-windows.powershell@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-windows.powershell-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-windows.powershell-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-windows_x_powershell_operational:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-windows.powershell_operational@package
+        - logs-windows.powershell_operational@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-windows.powershell_operational-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-windows.powershell_operational-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-windows_x_sysmon_operational:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-windows.sysmon_operational@package
+        - logs-windows.sysmon_operational@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-windows.sysmon_operational-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-windows.sysmon_operational-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-zscaler_zia_x_alerts:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-zscaler_zia.alerts@package
+        - logs-zscaler_zia.alerts@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-zscaler_zia.alerts-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-zscaler_zia.alerts-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-zscaler_zia_x_dns:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-zscaler_zia.dns@package
+        - logs-zscaler_zia.dns@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-zscaler_zia.dns-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-zscaler_zia.dns-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-zscaler_zia_x_firewall:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-zscaler_zia.firewall@package
+        - logs-zscaler_zia.firewall@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-zscaler_zia.firewall-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-zscaler_zia.firewall-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-zscaler_zia_x_tunnel:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-zscaler_zia.tunnel@package
+        - logs-zscaler_zia.tunnel@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-zscaler_zia.tunnel-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-zscaler_zia.tunnel-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-zscaler_zia_x_web:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-zscaler_zia.web@package
+        - logs-zscaler_zia.web@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-zscaler_zia.web-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-zscaler_zia.web-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-zscaler_zpa_x_app_connector_status:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-zscaler_zpa.app_connector_status@package
+        - logs-zscaler_zpa.app_connector_status@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-zscaler_zpa.app_connector_status-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-zscaler_zpa.app_connector_status-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-zscaler_zpa_x_audit:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-zscaler_zpa.audit@package
+        - logs-zscaler_zpa.audit@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-zscaler_zpa.audit-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-zscaler_zpa.audit-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-zscaler_zpa_x_browser_access:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-zscaler_zpa.browser_access@package
+        - logs-zscaler_zpa.browser_access@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-zscaler_zpa.browser_access-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-zscaler_zpa.browser_access-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-zscaler_zpa_x_user_activity:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-zscaler_zpa.user_activity@package
+        - logs-zscaler_zpa.user_activity@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-zscaler_zpa.user_activity-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-zscaler_zpa.user_activity-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logs-zscaler_zpa_x_user_status:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - logs-zscaler_zpa.user_status@package
+        - logs-zscaler_zpa.user_status@custom
+        - so-fleet_globals-1
+        - so-fleet_agent_id_verification-1
+        data_stream:
+          allow_custom_routing: false
+          hidden: false
+        index_patterns:
+        - logs-zscaler_zpa.user_status-*
+        priority: 501
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-zscaler_zpa.user_status-logs
+              number_of_replicas: 0
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-logstash:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - agent-mappings
+        - dtc-agent-mappings
+        - base-mappings
+        - dtc-base-mappings
+        - client-mappings
+        - dtc-client-mappings
+        - cloud-mappings
+        - container-mappings
+        - data_stream-mappings
+        - destination-mappings
+        - dtc-destination-mappings
+        - pb-override-destination-mappings
+        - dll-mappings
+        - dns-mappings
+        - dtc-dns-mappings
+        - ecs-mappings
+        - dtc-ecs-mappings
+        - error-mappings
+        - event-mappings
+        - dtc-event-mappings
+        - file-mappings
+        - dtc-file-mappings
+        - group-mappings
+        - host-mappings
+        - dtc-host-mappings
+        - http-mappings
+        - dtc-http-mappings
+        - log-mappings
+        - logstash-mappings
+        - network-mappings
+        - dtc-network-mappings
+        - observer-mappings
+        - dtc-observer-mappings
+        - orchestrator-mappings
+        - organization-mappings
+        - package-mappings
+        - process-mappings
+        - dtc-process-mappings
+        - registry-mappings
+        - related-mappings
+        - rule-mappings
+        - dtc-rule-mappings
+        - server-mappings
+        - service-mappings
+        - dtc-service-mappings
+        - source-mappings
+        - dtc-source-mappings
+        - pb-override-source-mappings
+        - threat-mappings
+        - tls-mappings
+        - tracing-mappings
+        - url-mappings
+        - user_agent-mappings
+        - dtc-user_agent-mappings
+        - vulnerability-mappings
+        - common-settings
+        - common-dynamic-mappings
+        index_patterns:
+        - logs-logstash-default*
+        priority: 500
         template:
           mappings:
-            dynamic_templates:
-              - strings_as_keyword:
-                  mapping:
-                    ignore_above: 1024
-                    type: keyword
-                  match_mapping_type: string
             date_detection: false
+            dynamic_templates:
+            - strings_as_keyword:
+                mapping:
+                  ignore_above: 1024
+                  type: keyword
+                match_mapping_type: string
           settings:
             index:
               lifecycle:
@@ -3891,104 +8572,109 @@ elasticsearch:
               mapping:
                 total_fields:
                   limit: 5000
-              sort:
-                field: "@timestamp"
-                order: desc
-              refresh_interval: 30s
-              number_of_shards: 1
               number_of_replicas: 0
-        composed_of: 
-          - agent-mappings
-          - dtc-agent-mappings
-          - base-mappings
-          - dtc-base-mappings
-          - client-mappings
-          - dtc-client-mappings
-          - cloud-mappings
-          - container-mappings
-          - data_stream-mappings
-          - destination-mappings
-          - dtc-destination-mappings
-          - pb-override-destination-mappings
-          - dll-mappings
-          - dns-mappings
-          - dtc-dns-mappings
-          - ecs-mappings
-          - dtc-ecs-mappings
-          - error-mappings
-          - event-mappings
-          - dtc-event-mappings
-          - file-mappings
-          - dtc-file-mappings
-          - group-mappings
-          - host-mappings
-          - dtc-host-mappings
-          - http-mappings
-          - dtc-http-mappings
-          - log-mappings
-          - logstash-mappings
-          - network-mappings
-          - dtc-network-mappings
-          - observer-mappings
-          - dtc-observer-mappings
-          - orchestrator-mappings
-          - organization-mappings
-          - package-mappings
-          - process-mappings
-          - dtc-process-mappings
-          - registry-mappings
-          - related-mappings
-          - rule-mappings
-          - dtc-rule-mappings
-          - server-mappings
-          - service-mappings
-          - dtc-service-mappings
-          - source-mappings
-          - dtc-source-mappings
-          - pb-override-source-mappings
-          - threat-mappings
-          - tls-mappings
-          - tracing-mappings
-          - url-mappings
-          - user_agent-mappings
-          - dtc-user_agent-mappings
-          - vulnerability-mappings
-          - common-settings
-          - common-dynamic-mappings
-        priority: 500
+              number_of_shards: 1
+              refresh_interval: 30s
+              sort:
+                field: '@timestamp'
+                order: desc
       policy:
         phases:
-          hot:
-            min_age: 0ms
-            actions:
-              set_priority:
-                priority: 100
-              rollover:
-                max_age: 30d
-                max_primary_shard_size: 50gb
           cold:
-            min_age: 30d
             actions:
               set_priority:
                 priority: 0
+            min_age: 30d
           delete:
-            min_age: 365d
             actions:
               delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
     so-redis:
-      index_sorting: False
+      index_sorting: false
       index_template:
+        composed_of:
+        - agent-mappings
+        - dtc-agent-mappings
+        - base-mappings
+        - dtc-base-mappings
+        - client-mappings
+        - dtc-client-mappings
+        - cloud-mappings
+        - container-mappings
+        - data_stream-mappings
+        - destination-mappings
+        - dtc-destination-mappings
+        - pb-override-destination-mappings
+        - dll-mappings
+        - dns-mappings
+        - dtc-dns-mappings
+        - ecs-mappings
+        - dtc-ecs-mappings
+        - error-mappings
+        - event-mappings
+        - dtc-event-mappings
+        - file-mappings
+        - dtc-file-mappings
+        - group-mappings
+        - host-mappings
+        - dtc-host-mappings
+        - http-mappings
+        - dtc-http-mappings
+        - log-mappings
+        - network-mappings
+        - dtc-network-mappings
+        - observer-mappings
+        - dtc-observer-mappings
+        - orchestrator-mappings
+        - organization-mappings
+        - package-mappings
+        - process-mappings
+        - dtc-process-mappings
+        - redis-mappings
+        - registry-mappings
+        - related-mappings
+        - rule-mappings
+        - dtc-rule-mappings
+        - server-mappings
+        - service-mappings
+        - dtc-service-mappings
+        - source-mappings
+        - dtc-source-mappings
+        - pb-override-source-mappings
+        - threat-mappings
+        - tls-mappings
+        - tracing-mappings
+        - url-mappings
+        - user_agent-mappings
+        - dtc-user_agent-mappings
+        - vulnerability-mappings
+        - common-settings
+        - common-dynamic-mappings
         index_patterns:
-          - logs-redis-default*
+        - logs-redis-default*
+        priority: 500
         template:
           mappings:
-            dynamic_templates:
-              - strings_as_keyword:
-                  mapping:
-                    ignore_above: 1024
-                    type: keyword
-                  match_mapping_type: string
             date_detection: false
+            dynamic_templates:
+            - strings_as_keyword:
+                mapping:
+                  ignore_above: 1024
+                  type: keyword
+                match_mapping_type: string
           settings:
             index:
               lifecycle:
@@ -3996,315 +8682,447 @@ elasticsearch:
               mapping:
                 total_fields:
                   limit: 5000
-              sort:
-                field: "@timestamp"
-                order: desc
-              refresh_interval: 30s
-              number_of_shards: 1
               number_of_replicas: 0
-        composed_of: 
-          - agent-mappings
-          - dtc-agent-mappings
-          - base-mappings
-          - dtc-base-mappings
-          - client-mappings
-          - dtc-client-mappings
-          - cloud-mappings
-          - container-mappings
-          - data_stream-mappings
-          - destination-mappings
-          - dtc-destination-mappings
-          - pb-override-destination-mappings
-          - dll-mappings
-          - dns-mappings
-          - dtc-dns-mappings
-          - ecs-mappings
-          - dtc-ecs-mappings
-          - error-mappings
-          - event-mappings
-          - dtc-event-mappings
-          - file-mappings
-          - dtc-file-mappings
-          - group-mappings
-          - host-mappings
-          - dtc-host-mappings
-          - http-mappings
-          - dtc-http-mappings
-          - log-mappings
-          - network-mappings
-          - dtc-network-mappings
-          - observer-mappings
-          - dtc-observer-mappings
-          - orchestrator-mappings
-          - organization-mappings
-          - package-mappings
-          - process-mappings
-          - dtc-process-mappings
-          - redis-mappings
-          - registry-mappings
-          - related-mappings
-          - rule-mappings
-          - dtc-rule-mappings
-          - server-mappings
-          - service-mappings
-          - dtc-service-mappings
-          - source-mappings
-          - dtc-source-mappings
-          - pb-override-source-mappings
-          - threat-mappings
-          - tls-mappings
-          - tracing-mappings
-          - url-mappings
-          - user_agent-mappings
-          - dtc-user_agent-mappings
-          - vulnerability-mappings
-          - common-settings
-          - common-dynamic-mappings
-        priority: 500
+              number_of_shards: 1
+              refresh_interval: 30s
+              sort:
+                field: '@timestamp'
+                order: desc
       policy:
         phases:
-          hot:
-            min_age: 0ms
-            actions:
-              set_priority:
-                priority: 100
-              rollover:
-                max_age: 30d
-                max_primary_shard_size: 50gb
           cold:
-            min_age: 30d
             actions:
               set_priority:
                 priority: 0
+            min_age: 30d
           delete:
-            min_age: 365d
             actions:
               delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
     so-strelka:
-      index_sorting: False
+      index_sorting: false
       index_template:
+        composed_of:
+        - agent-mappings
+        - dtc-agent-mappings
+        - base-mappings
+        - dtc-base-mappings
+        - client-mappings
+        - dtc-client-mappings
+        - cloud-mappings
+        - container-mappings
+        - data_stream-mappings
+        - destination-mappings
+        - dtc-destination-mappings
+        - pb-override-destination-mappings
+        - dll-mappings
+        - dns-mappings
+        - dtc-dns-mappings
+        - ecs-mappings
+        - dtc-ecs-mappings
+        - error-mappings
+        - event-mappings
+        - dtc-event-mappings
+        - file-mappings
+        - dtc-file-mappings
+        - so-file-mappings
+        - group-mappings
+        - host-mappings
+        - dtc-host-mappings
+        - http-mappings
+        - dtc-http-mappings
+        - log-mappings
+        - network-mappings
+        - dtc-network-mappings
+        - observer-mappings
+        - dtc-observer-mappings
+        - orchestrator-mappings
+        - organization-mappings
+        - package-mappings
+        - process-mappings
+        - dtc-process-mappings
+        - registry-mappings
+        - related-mappings
+        - rule-mappings
+        - dtc-rule-mappings
+        - server-mappings
+        - service-mappings
+        - dtc-service-mappings
+        - so-scan-mappings
+        - source-mappings
+        - dtc-source-mappings
+        - pb-override-source-mappings
+        - threat-mappings
+        - tls-mappings
+        - tracing-mappings
+        - url-mappings
+        - user_agent-mappings
+        - dtc-user_agent-mappings
+        - vulnerability-mappings
+        - common-settings
+        - common-dynamic-mappings
         data_stream: {}
         index_patterns:
-          - logs-strelka-so*
+        - logs-strelka-so*
+        priority: 500
         template:
           mappings:
-            dynamic_templates:
-              - strings_as_keyword:
-                  mapping:
-                    ignore_above: 1024
-                    type: keyword
-                  match_mapping_type: string
             date_detection: false
+            dynamic_templates:
+            - strings_as_keyword:
+                mapping:
+                  ignore_above: 1024
+                  type: keyword
+                match_mapping_type: string
           settings:
             index:
+              lifecycle:
+                name: so-strelka-logs
               mapping:
                 total_fields:
                   limit: 5000
-              sort:
-                field: "@timestamp"
-                order: desc
-              refresh_interval: 30s
-              number_of_shards: 1
               number_of_replicas: 0
-        composed_of: 
-          - agent-mappings
-          - dtc-agent-mappings
-          - base-mappings
-          - dtc-base-mappings
-          - client-mappings
-          - dtc-client-mappings
-          - cloud-mappings
-          - container-mappings
-          - data_stream-mappings
-          - destination-mappings
-          - dtc-destination-mappings
-          - pb-override-destination-mappings
-          - dll-mappings
-          - dns-mappings
-          - dtc-dns-mappings
-          - ecs-mappings
-          - dtc-ecs-mappings
-          - error-mappings
-          - event-mappings
-          - dtc-event-mappings
-          - file-mappings
-          - dtc-file-mappings
-          - so-file-mappings
-          - group-mappings
-          - host-mappings
-          - dtc-host-mappings
-          - http-mappings
-          - dtc-http-mappings
-          - log-mappings
-          - network-mappings
-          - dtc-network-mappings
-          - observer-mappings
-          - dtc-observer-mappings
-          - orchestrator-mappings
-          - organization-mappings
-          - package-mappings
-          - process-mappings
-          - dtc-process-mappings
-          - registry-mappings
-          - related-mappings
-          - rule-mappings
-          - dtc-rule-mappings
-          - server-mappings
-          - service-mappings
-          - dtc-service-mappings
-          - so-scan-mappings
-          - source-mappings
-          - dtc-source-mappings
-          - pb-override-source-mappings
-          - threat-mappings
-          - tls-mappings
-          - tracing-mappings
-          - url-mappings
-          - user_agent-mappings
-          - dtc-user_agent-mappings
-          - vulnerability-mappings
-          - common-settings
-          - common-dynamic-mappings
-        priority: 500
+              number_of_shards: 1
+              refresh_interval: 30s
+              sort:
+                field: '@timestamp'
+                order: desc
       policy:
         phases:
-          hot:
-            min_age: 0ms
-            actions:
-              set_priority:
-                priority: 100
-              rollover:
-                max_age: 30d
-                max_primary_shard_size: 50gb
           cold:
-            min_age: 30d
             actions:
               set_priority:
                 priority: 0
+            min_age: 30d
           delete:
-            min_age: 365d
             actions:
               delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-suricata:
+      index_sorting: false
+      index_template:
+        composed_of:
+        - agent-mappings
+        - dtc-agent-mappings
+        - base-mappings
+        - dtc-base-mappings
+        - client-mappings
+        - dtc-client-mappings
+        - cloud-mappings
+        - container-mappings
+        - data_stream-mappings
+        - destination-mappings
+        - dtc-destination-mappings
+        - pb-override-destination-mappings
+        - dll-mappings
+        - dns-mappings
+        - dtc-dns-mappings
+        - ecs-mappings
+        - dtc-ecs-mappings
+        - error-mappings
+        - event-mappings
+        - dtc-event-mappings
+        - file-mappings
+        - dtc-file-mappings
+        - group-mappings
+        - host-mappings
+        - dtc-host-mappings
+        - http-mappings
+        - dtc-http-mappings
+        - log-mappings
+        - network-mappings
+        - dtc-network-mappings
+        - observer-mappings
+        - dtc-observer-mappings
+        - orchestrator-mappings
+        - organization-mappings
+        - package-mappings
+        - process-mappings
+        - dtc-process-mappings
+        - registry-mappings
+        - related-mappings
+        - rule-mappings
+        - dtc-rule-mappings
+        - server-mappings
+        - service-mappings
+        - dtc-service-mappings
+        - source-mappings
+        - dtc-source-mappings
+        - pb-override-source-mappings
+        - suricata-mappings
+        - threat-mappings
+        - tls-mappings
+        - tracing-mappings
+        - url-mappings
+        - user_agent-mappings
+        - dtc-user_agent-mappings
+        - vulnerability-mappings
+        - common-settings
+        - common-dynamic-mappings
+        data_stream: {}
+        index_patterns:
+        - logs-suricata-so*
+        priority: 500
+        template:
+          mappings:
+            date_detection: false
+            dynamic_templates:
+            - strings_as_keyword:
+                mapping:
+                  ignore_above: 1024
+                  type: keyword
+                match_mapping_type: string
+          settings:
+            index:
+              lifecycle:
+                name: so-suricata-logs
+              mapping:
+                total_fields:
+                  limit: 5000
+              number_of_replicas: 0
+              number_of_shards: 1
+              refresh_interval: 30s
+              sort:
+                field: '@timestamp'
+                order: desc
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
     so-syslog:
-      index_sorting: False
+      index_sorting: false
       index_template:
+        composed_of:
+        - agent-mappings
+        - dtc-agent-mappings
+        - base-mappings
+        - dtc-base-mappings
+        - client-mappings
+        - dtc-client-mappings
+        - cloud-mappings
+        - container-mappings
+        - data_stream-mappings
+        - destination-mappings
+        - dtc-destination-mappings
+        - pb-override-destination-mappings
+        - dll-mappings
+        - dns-mappings
+        - dtc-dns-mappings
+        - ecs-mappings
+        - dtc-ecs-mappings
+        - error-mappings
+        - event-mappings
+        - dtc-event-mappings
+        - file-mappings
+        - dtc-file-mappings
+        - group-mappings
+        - host-mappings
+        - dtc-host-mappings
+        - http-mappings
+        - dtc-http-mappings
+        - log-mappings
+        - network-mappings
+        - dtc-network-mappings
+        - observer-mappings
+        - dtc-observer-mappings
+        - orchestrator-mappings
+        - organization-mappings
+        - package-mappings
+        - process-mappings
+        - dtc-process-mappings
+        - registry-mappings
+        - related-mappings
+        - rule-mappings
+        - dtc-rule-mappings
+        - server-mappings
+        - service-mappings
+        - dtc-service-mappings
+        - source-mappings
+        - dtc-source-mappings
+        - pb-override-source-mappings
+        - syslog-mappings
+        - dtc-syslog-mappings
+        - threat-mappings
+        - tls-mappings
+        - tracing-mappings
+        - url-mappings
+        - user_agent-mappings
+        - dtc-user_agent-mappings
+        - vulnerability-mappings
+        - common-settings
+        - common-dynamic-mappings
         data_stream: {}
         index_patterns:
-          - logs-syslog-so*
+        - logs-syslog-so*
+        priority: 500
         template:
           mappings:
-            dynamic_templates:
-              - strings_as_keyword:
-                  mapping:
-                    ignore_above: 1024
-                    type: keyword
-                  match_mapping_type: string
             date_detection: false
+            dynamic_templates:
+            - strings_as_keyword:
+                mapping:
+                  ignore_above: 1024
+                  type: keyword
+                match_mapping_type: string
           settings:
             index:
+              lifecycle:
+                name: so-syslog-logs
               mapping:
                 total_fields:
                   limit: 5000
-              sort:
-                field: "@timestamp"
-                order: desc
-              refresh_interval: 30s
-              number_of_shards: 1
               number_of_replicas: 0
-        composed_of: 
-          - agent-mappings
-          - dtc-agent-mappings
-          - base-mappings
-          - dtc-base-mappings
-          - client-mappings
-          - dtc-client-mappings
-          - cloud-mappings
-          - container-mappings
-          - data_stream-mappings
-          - destination-mappings
-          - dtc-destination-mappings
-          - pb-override-destination-mappings
-          - dll-mappings
-          - dns-mappings
-          - dtc-dns-mappings
-          - ecs-mappings
-          - dtc-ecs-mappings
-          - error-mappings
-          - event-mappings
-          - dtc-event-mappings
-          - file-mappings
-          - dtc-file-mappings
-          - group-mappings
-          - host-mappings
-          - dtc-host-mappings
-          - http-mappings
-          - dtc-http-mappings
-          - log-mappings
-          - network-mappings
-          - dtc-network-mappings
-          - observer-mappings
-          - dtc-observer-mappings
-          - orchestrator-mappings
-          - organization-mappings
-          - package-mappings
-          - process-mappings
-          - dtc-process-mappings
-          - registry-mappings
-          - related-mappings
-          - rule-mappings
-          - dtc-rule-mappings
-          - server-mappings
-          - service-mappings
-          - dtc-service-mappings
-          - source-mappings
-          - dtc-source-mappings
-          - pb-override-source-mappings
-          - syslog-mappings
-          - dtc-syslog-mappings
-          - threat-mappings
-          - tls-mappings
-          - tracing-mappings
-          - url-mappings
-          - user_agent-mappings
-          - dtc-user_agent-mappings
-          - vulnerability-mappings
-          - common-settings
-          - common-dynamic-mappings
-        priority: 500
+              number_of_shards: 1
+              refresh_interval: 30s
+              sort:
+                field: '@timestamp'
+                order: desc
       policy:
         phases:
-          hot:
-            min_age: 0ms
-            actions:
-              set_priority:
-                priority: 100
-              rollover:
-                max_age: 30d
-                max_primary_shard_size: 50gb
           cold:
-            min_age: 30d
             actions:
               set_priority:
                 priority: 0
+            min_age: 30d
           delete:
-            min_age: 365d
             actions:
               delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
     so-zeek:
-      index_sorting: False
+      index_sorting: false
       index_template:
+        composed_of:
+        - agent-mappings
+        - dtc-agent-mappings
+        - base-mappings
+        - dtc-base-mappings
+        - client-mappings
+        - dtc-client-mappings
+        - cloud-mappings
+        - container-mappings
+        - data_stream-mappings
+        - destination-mappings
+        - dtc-destination-mappings
+        - pb-override-destination-mappings
+        - dll-mappings
+        - dns-mappings
+        - dtc-dns-mappings
+        - ecs-mappings
+        - dtc-ecs-mappings
+        - error-mappings
+        - event-mappings
+        - dtc-event-mappings
+        - file-mappings
+        - dtc-file-mappings
+        - group-mappings
+        - host-mappings
+        - dtc-host-mappings
+        - http-mappings
+        - dtc-http-mappings
+        - log-mappings
+        - network-mappings
+        - dtc-network-mappings
+        - observer-mappings
+        - dtc-observer-mappings
+        - orchestrator-mappings
+        - organization-mappings
+        - package-mappings
+        - process-mappings
+        - dtc-process-mappings
+        - registry-mappings
+        - related-mappings
+        - rule-mappings
+        - dtc-rule-mappings
+        - server-mappings
+        - service-mappings
+        - dtc-service-mappings
+        - source-mappings
+        - dtc-source-mappings
+        - pb-override-source-mappings
+        - syslog-mappings
+        - dtc-syslog-mappings
+        - threat-mappings
+        - tls-mappings
+        - tracing-mappings
+        - url-mappings
+        - user_agent-mappings
+        - dtc-user_agent-mappings
+        - vulnerability-mappings
+        - zeek-mappings
+        - common-settings
+        - common-dynamic-mappings
         data_stream: {}
         index_patterns:
-          - logs-zeek-so*
+        - logs-zeek-so*
+        priority: 500
         template:
           mappings:
-            dynamic_templates:
-              - strings_as_keyword:
-                  mapping:
-                    ignore_above: 1024
-                    type: keyword
-                  match_mapping_type: string
             date_detection: false
+            dynamic_templates:
+            - strings_as_keyword:
+                mapping:
+                  ignore_above: 1024
+                  type: keyword
+                match_mapping_type: string
           settings:
             index:
               lifecycle:
@@ -4312,656 +9130,80 @@ elasticsearch:
               mapping:
                 total_fields:
                   limit: 5000
-              sort:
-                field: "@timestamp"
-                order: desc
-              refresh_interval: 30s
-              number_of_shards: 2
               number_of_replicas: 0
-        composed_of: 
-          - agent-mappings
-          - dtc-agent-mappings
-          - base-mappings
-          - dtc-base-mappings
-          - client-mappings
-          - dtc-client-mappings
-          - cloud-mappings
-          - container-mappings
-          - data_stream-mappings
-          - destination-mappings
-          - dtc-destination-mappings
-          - pb-override-destination-mappings
-          - dll-mappings
-          - dns-mappings
-          - dtc-dns-mappings
-          - ecs-mappings
-          - dtc-ecs-mappings
-          - error-mappings
-          - event-mappings
-          - dtc-event-mappings
-          - file-mappings
-          - dtc-file-mappings
-          - group-mappings
-          - host-mappings
-          - dtc-host-mappings
-          - http-mappings
-          - dtc-http-mappings
-          - log-mappings
-          - network-mappings
-          - dtc-network-mappings
-          - observer-mappings
-          - dtc-observer-mappings
-          - orchestrator-mappings
-          - organization-mappings
-          - package-mappings
-          - process-mappings
-          - dtc-process-mappings
-          - registry-mappings
-          - related-mappings
-          - rule-mappings
-          - dtc-rule-mappings
-          - server-mappings
-          - service-mappings
-          - dtc-service-mappings
-          - source-mappings
-          - dtc-source-mappings
-          - pb-override-source-mappings
-          - syslog-mappings
-          - dtc-syslog-mappings
-          - threat-mappings
-          - tls-mappings
-          - tracing-mappings
-          - url-mappings
-          - user_agent-mappings
-          - dtc-user_agent-mappings
-          - vulnerability-mappings
-          - zeek-mappings
-          - common-settings
-          - common-dynamic-mappings
-        priority: 500
+              number_of_shards: 2
+              refresh_interval: 30s
+              sort:
+                field: '@timestamp'
+                order: desc
       policy:
         phases:
-          hot:
-            min_age: 0ms
-            actions:
-              set_priority:
-                priority: 100
-              rollover:
-                max_age: 30d
-                max_primary_shard_size: 50gb
           cold:
-            min_age: 30d
             actions:
               set_priority:
                 priority: 0
+            min_age: 30d
           delete:
-            min_age: 365d
             actions:
               delete: {}
-    so-logs-auth0_x_logs:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-auth0.logs-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-auth0.logs@package"
-          - "logs-auth0.logs@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-carbonblack_edr_x_log:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-carbonblack_edr.log-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-carbonblack_edr.log@package"
-          - "logs-carbonblack_edr.log@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-cisco_duo_x_admin:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-cisco_duo.admin-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-cisco_duo.admin@package"
-          - "logs-cisco_duo.admin@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-cisco_duo_x_auth:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-cisco_duo.auth-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-cisco_duo.auth@package"
-          - "logs-cisco_duo.auth@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-cisco_duo_x_offline_enrollment:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-cisco_duo.offline_enrollment-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-cisco_duo.offline_enrollment@package"
-          - "logs-cisco_duo.offline_enrollment@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-cisco_duo_x_summary:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-cisco_duo.summary-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-cisco_duo.summary@package"
-          - "logs-cisco_duo.summary@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-cisco_duo_x_telephony:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-cisco_duo.telephony-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-cisco_duo.telephony@package"
-          - "logs-cisco_duo.telephony@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-cisco_meraki_x_events:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-cisco_meraki.events-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-cisco_meraki.events@package"
-          - "logs-cisco_meraki.events@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-cisco_meraki_x_log:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-cisco_meraki.log-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-cisco_meraki.log@package"
-          - "logs-cisco_meraki.log@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-cisco_umbrella_x_log:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-cisco_umbrella.log-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-cisco_umbrella.log@package"
-          - "logs-cisco_umbrella.log@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-fireeye_x_nx:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-fireeye.nx-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-fireeye.nx@package"
-          - "logs-fireeye.nx@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-mimecast_x_audit_events:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-mimecast.audit_events-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-mimecast.audit_events@package"
-          - "logs-mimecast.audit_events@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-mimecast_x_dlp_logs:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-mimecast.dlp_logs-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-mimecast.dlp_logs@package"
-          - "logs-mimecast.dlp_logs@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-mimecast_x_siem_logs:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-mimecast.siem_logs-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-mimecast.siem_logs@package"
-          - "logs-mimecast.siem_logs@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-mimecast_x_threat_intel_malware_customer:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-mimecast.threat_intel_malware_customer-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-mimecast.threat_intel_malware_customer@package"
-          - "logs-mimecast.threat_intel_malware_customer@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-mimecast_x_threat_intel_malware_grid:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-mimecast.threat_intel_malware_grid-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-mimecast.threat_intel_malware_grid@package"
-          - "logs-mimecast.threat_intel_malware_grid@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-mimecast_x_ttp_ap_logs:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-mimecast.ttp_ap_logs-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-mimecast.ttp_ap_logs@package"
-          - "logs-mimecast.ttp_ap_logs@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-mimecast_x_ttp_ip_logs:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-mimecast.ttp_ip_logs-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-mimecast.ttp_ip_logs@package"
-          - "logs-mimecast.ttp_ip_logs@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-mimecast_x_ttp_url_logs:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-mimecast.ttp_url_logs-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-mimecast.ttp_url_logs@package"
-          - "logs-mimecast.ttp_url_logs@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-pulse_connect_secure_x_log:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-pulse_connect_secure.log-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-pulse_connect_secure.log@package"
-          - "logs-pulse_connect_secure.log@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-snyk_x_audit:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-snyk.audit-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-snyk.audit@package"
-          - "logs-snyk.audit@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-snyk_x_vulnerabilities:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-snyk.vulnerabilities-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-snyk.vulnerabilities@package"
-          - "logs-snyk.vulnerabilities@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-sophos_x_utm:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-sophos.utm-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-sophos.utm@package"
-          - "logs-sophos.utm@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-sophos_x_xg:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-sophos.xg-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-sophos.xg@package"
-          - "logs-sophos.xg@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-sophos_central_x_alert:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-sophos_central.alert-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-sophos_central.alert@package"
-          - "logs-sophos_central.alert@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-sophos_central_x_event:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-sophos_central.event-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-sophos_central.event@package"
-          - "logs-sophos_central.event@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-tenable_sc_x_asset:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-tenable_sc.asset-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-tenable_sc.asset@package"
-          - "logs-tenable_sc.asset@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-tenable_sc_x_plugin:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-tenable_sc.plugin-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-tenable_sc.plugin@package"
-          - "logs-tenable_sc.plugin@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
-    so-logs-tenable_sc_x_vulnerability:
-      index_sorting: False
-      index_template:
-        index_patterns:
-          - "logs-tenable_sc.vulnerability-*"
-        template:
-          settings:
-            index:
-              number_of_replicas: 0
-        composed_of:
-          - "logs-tenable_sc.vulnerability@package"
-          - "logs-tenable_sc.vulnerability@custom"
-          - "so-fleet_globals-1"
-          - "so-fleet_agent_id_verification-1"
-        priority: 501
-        data_stream:
-          hidden: false
-          allow_custom_routing: false
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+  retention:
+    retention_pct: 50
   so_roles:
-    so-manager:
-      config:
-        node:
-          roles:
-            - master
-            - data
-            - remote_cluster_client
-            - transform
-    so-managersearch:
-      config:
-        node:
-          roles:
-            - master
-            - data_hot
-            - remote_cluster_client
-    so-standalone:
-      config:
-        node:
-          roles:
-            - master
-            - data_hot
-            - remote_cluster_client
-    so-searchnode:
-      config:
-        node:
-          roles:
-            - data_hot
-            - ingest
-    so-heavynode:
-      config:
-        node:
-          roles:
-            - master
-            - data
-            - remote_cluster_client
-            - ingest
     so-eval:
       config:
         node:
           roles: []
+    so-heavynode:
+      config:
+        node:
+          roles:
+          - master
+          - data
+          - remote_cluster_client
+          - ingest
     so-import:
       config:
         node:
           roles: []
+    so-manager:
+      config:
+        node:
+          roles:
+          - master
+          - data
+          - remote_cluster_client
+          - transform
+    so-managersearch:
+      config:
+        node:
+          roles:
+          - master
+          - data_hot
+          - remote_cluster_client
+    so-searchnode:
+      config:
+        node:
+          roles:
+          - data_hot
+          - ingest
+    so-standalone:
+      config:
+        node:
+          roles:
+          - master
+          - data_hot
+          - remote_cluster_client

From 4942f83d4f001328679b77849fce19b7adc2da7d Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Thu, 26 Oct 2023 11:45:39 -0400
Subject: [PATCH 285/417] adjust version to match target branch

---
 VERSION | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/VERSION b/VERSION
index 247af78a9..8ea99f559 100644
--- a/VERSION
+++ b/VERSION
@@ -1 +1 @@
-2.4.0-kilo
\ No newline at end of file
+2.4.30

From 2e0100fd35da3c97ad3dfd292d224cd8d0814d22 Mon Sep 17 00:00:00 2001
From: Mike Reeves <mike.reeves@securityonionsolutions.com>
Date: Thu, 26 Oct 2023 12:37:55 -0400
Subject: [PATCH 286/417] Update defaults.yaml

---
 salt/elasticsearch/defaults.yaml | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/salt/elasticsearch/defaults.yaml b/salt/elasticsearch/defaults.yaml
index 9aef09876..721db8d99 100644
--- a/salt/elasticsearch/defaults.yaml
+++ b/salt/elasticsearch/defaults.yaml
@@ -9193,6 +9193,8 @@ elasticsearch:
           roles:
           - master
           - data_hot
+          - ingest
+          - transform
           - remote_cluster_client
     so-searchnode:
       config:
@@ -9200,10 +9202,13 @@ elasticsearch:
           roles:
           - data_hot
           - ingest
+          - transform
     so-standalone:
       config:
         node:
           roles:
           - master
           - data_hot
+          - ingest
+          - transform
           - remote_cluster_client

From 6891a95254b62c1a5093e6b0d465d91975d6bba0 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Thu, 26 Oct 2023 13:02:39 -0400
Subject: [PATCH 287/417] remove wait_for_salt_minion from so-functions

---
 setup/so-functions | 14 --------------
 1 file changed, 14 deletions(-)

diff --git a/setup/so-functions b/setup/so-functions
index fd5bc790f..42402ad86 100755
--- a/setup/so-functions
+++ b/setup/so-functions
@@ -2494,20 +2494,6 @@ wait_for_file() {
 	return 1
 }
 
-wait_for_salt_minion() {
-	retry 60 5 "journalctl -u salt-minion.service | grep 'Minion is ready to receive requests'" >> "$setup_log" 2>&1 || fail_setup
-	local attempt=0
-	# each attempts would take about 15 seconds
-	local maxAttempts=20
-	until check_salt_minion_status; do
-		attempt=$((attempt+1))
-		if [[ $attempt -eq $maxAttempts ]]; then
-			fail_setup
-		fi
-		sleep 10
-	done
-}
-
 verify_setup() {
 	info "Verifying setup"
 	set -o pipefail

From 47373adad253e6960b16bc1537ed22b028c259c3 Mon Sep 17 00:00:00 2001
From: reyesj2 <94730068+reyesj2@users.noreply.github.com>
Date: Thu, 26 Oct 2023 13:15:40 -0400
Subject: [PATCH 288/417] Specify config.yaml in config_path. Otherwise when no
 influxd.bolt exists influxdb will fail to read the config file and won't
 create a new db.

Signed-off-by: reyesj2 <94730068+reyesj2@users.noreply.github.com>
---
 salt/influxdb/enabled.sls | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/salt/influxdb/enabled.sls b/salt/influxdb/enabled.sls
index c0733c12c..293a917cb 100644
--- a/salt/influxdb/enabled.sls
+++ b/salt/influxdb/enabled.sls
@@ -22,7 +22,7 @@ so-influxdb:
       - sobridge:
         - ipv4_address: {{ DOCKER.containers['so-influxdb'].ip }}
     - environment:
-      - INFLUXD_CONFIG_PATH=/conf
+      - INFLUXD_CONFIG_PATH=/conf/config.yaml
       - INFLUXDB_HTTP_LOG_ENABLED=false
       - DOCKER_INFLUXDB_INIT_MODE=setup
       - DOCKER_INFLUXDB_INIT_USERNAME=so

From 7e8f3b753f27df1b0bad2925fe7509d9aeb09ee0 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Thu, 26 Oct 2023 13:19:04 -0400
Subject: [PATCH 289/417] add minion name to log, update comment

---
 salt/common/tools/sbin/so-common | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/salt/common/tools/sbin/so-common b/salt/common/tools/sbin/so-common
index 87f40c9d4..bfa61f1b7 100755
--- a/salt/common/tools/sbin/so-common
+++ b/salt/common/tools/sbin/so-common
@@ -152,12 +152,12 @@ check_salt_master_status() {
     return 0
 }
 
-# this is only intended to be used to check the status of the minion
+# this is only intended to be used to check the status of the minion from a salt master
 check_salt_minion_status() {
 	local minion="$1"
 	local timeout="${2:-5}"
 	local logfile="${3:-'/dev/stdout'}"
-	echo "Checking if the salt minion will respond to jobs" >> "$logfile" 2>&1
+	echo "Checking if the salt minion: $minion will respond to jobs" >> "$logfile" 2>&1
 	salt "$minion" test.ping -t $timeout > /dev/null 2>&1
 	local status=$?
 	if [ $status -gt 0 ]; then

From cb9d72ebd7edc382b678187e94d1a630101d0a5b Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Thu, 26 Oct 2023 14:19:59 -0400
Subject: [PATCH 290/417] switch back to kilo version

---
 VERSION | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/VERSION b/VERSION
index 8ea99f559..7f2e97617 100644
--- a/VERSION
+++ b/VERSION
@@ -1 +1 @@
-2.4.30
+2.4.0-kilo

From b37e38e3c3f842de8345858948e2c5d6cc7cd2b2 Mon Sep 17 00:00:00 2001
From: Mike Reeves <mike.reeves@securityonionsolutions.com>
Date: Thu, 26 Oct 2023 16:03:58 -0400
Subject: [PATCH 291/417] Update defaults.yaml

---
 salt/elasticsearch/defaults.yaml | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/salt/elasticsearch/defaults.yaml b/salt/elasticsearch/defaults.yaml
index 721db8d99..44cb0ea7d 100644
--- a/salt/elasticsearch/defaults.yaml
+++ b/salt/elasticsearch/defaults.yaml
@@ -9173,6 +9173,7 @@ elasticsearch:
           roles:
           - master
           - data
+          - data_hot
           - remote_cluster_client
           - ingest
     so-import:
@@ -9192,6 +9193,7 @@ elasticsearch:
         node:
           roles:
           - master
+          - data
           - data_hot
           - ingest
           - transform
@@ -9200,6 +9202,7 @@ elasticsearch:
       config:
         node:
           roles:
+          - data
           - data_hot
           - ingest
           - transform
@@ -9208,6 +9211,7 @@ elasticsearch:
         node:
           roles:
           - master
+          - data
           - data_hot
           - ingest
           - transform

From cc3ee431923c89cd41f31a46318a2ff8527ca7a8 Mon Sep 17 00:00:00 2001
From: defensivedepth <josh@defensivedepth.com>
Date: Fri, 27 Oct 2023 07:49:34 -0400
Subject: [PATCH 292/417] Make dirs as needed

---
 salt/manager/kibana.sls | 1 +
 1 file changed, 1 insertion(+)

diff --git a/salt/manager/kibana.sls b/salt/manager/kibana.sls
index f9aad3f05..17ac826c2 100644
--- a/salt/manager/kibana.sls
+++ b/salt/manager/kibana.sls
@@ -5,3 +5,4 @@ kibana_curl_config_distributed:
     - template: jinja
     - mode: 600
     - show_changes: False
+    - makedirs: True
\ No newline at end of file

From 9fc3a730356b333bce63b33237ceb4fdf09c0256 Mon Sep 17 00:00:00 2001
From: Mike Reeves <mike.reeves@securityonionsolutions.com>
Date: Fri, 27 Oct 2023 08:58:08 -0400
Subject: [PATCH 293/417] Annotation changes for warm node

---
 salt/elasticsearch/soc_elasticsearch.yaml | 18 ++++++++++++++----
 1 file changed, 14 insertions(+), 4 deletions(-)

diff --git a/salt/elasticsearch/soc_elasticsearch.yaml b/salt/elasticsearch/soc_elasticsearch.yaml
index e3d257f11..189471226 100644
--- a/salt/elasticsearch/soc_elasticsearch.yaml
+++ b/salt/elasticsearch/soc_elasticsearch.yaml
@@ -75,8 +75,8 @@ elasticsearch:
                   helpLink: elasticsearch.html
         phases:
           hot:
-            min_age:
-              description: Minimum age of index. This determines when the index should be moved to the hot tier.
+            max_age:
+              description: Maximum age of index. ex. 7d - This determines when the index should be moved out of the hot tier.
               global: True
               helpLink: elasticsearch.html
             actions:
@@ -97,19 +97,29 @@ elasticsearch:
                   helpLink: elasticsearch.html
           cold:
             min_age:
-              description: Minimum age of index.  This determines when the index should be moved to the cold tier.  While still searchable, this tier is typically optimized for lower storage costs rather than search speed.
+              description: Minimum age of index. ex. 30d - This determines when the index should be moved to the cold tier.  While still searchable, this tier is typically optimized for lower storage costs rather than search speed.
               global: True
               helpLink: elasticsearch.html
             actions:
               set_priority:
                 priority:
                   description: Used for index recovery after a node restart. Indices with higher priorities are recovered before indices with lower priorities.
+                  global: True
+                  helpLink: elasticsearch.html
+          warm:
+            min_age: 
+              description: Minimum age of index. ex. 30d - This determines when the index should be moved to the cold tier.  While still searchable, this tier is typically optimized for lower storage costs rather than search speed.
+              regex: ^[0-9]d$
+            actions:
+              set_priority:
+                priority:
+                  description: Priority of index. This is used for recovery after a node restart. Indices with higher priorities are recovered before indices with lower priorities.
                   forcedType: int
                   global: True
                   helpLink: elasticsearch.html
           delete:
             min_age:
-              description: Minimum age of index. This determines when the index should be deleted.
+              description: Minimum age of index. ex. 90d - This determines when the index should be deleted.
               global: True
               helpLink: elasticsearch.html
     so-logs: &indexSettings

From ce1858fe05eedb0ab614e82809cf2e0eccf6532b Mon Sep 17 00:00:00 2001
From: Mike Reeves <mike.reeves@securityonionsolutions.com>
Date: Fri, 27 Oct 2023 09:02:39 -0400
Subject: [PATCH 294/417] Annotation changes for warm node

---
 salt/elasticsearch/soc_elasticsearch.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/salt/elasticsearch/soc_elasticsearch.yaml b/salt/elasticsearch/soc_elasticsearch.yaml
index 189471226..8bee839c1 100644
--- a/salt/elasticsearch/soc_elasticsearch.yaml
+++ b/salt/elasticsearch/soc_elasticsearch.yaml
@@ -109,7 +109,7 @@ elasticsearch:
           warm:
             min_age: 
               description: Minimum age of index. ex. 30d - This determines when the index should be moved to the cold tier.  While still searchable, this tier is typically optimized for lower storage costs rather than search speed.
-              regex: ^[0-9]d$
+              regex: ^\[0-9\]{1-5}d$
             actions:
               set_priority:
                 priority:

From 87494f64c78cec81d5633f30b59421f511554100 Mon Sep 17 00:00:00 2001
From: Mike Reeves <mike.reeves@securityonionsolutions.com>
Date: Fri, 27 Oct 2023 09:06:12 -0400
Subject: [PATCH 295/417] Annotation changes for warm node

---
 salt/elasticsearch/soc_elasticsearch.yaml | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/salt/elasticsearch/soc_elasticsearch.yaml b/salt/elasticsearch/soc_elasticsearch.yaml
index 8bee839c1..5b4d63f40 100644
--- a/salt/elasticsearch/soc_elasticsearch.yaml
+++ b/salt/elasticsearch/soc_elasticsearch.yaml
@@ -109,7 +109,8 @@ elasticsearch:
           warm:
             min_age: 
               description: Minimum age of index. ex. 30d - This determines when the index should be moved to the cold tier.  While still searchable, this tier is typically optimized for lower storage costs rather than search speed.
-              regex: ^\[0-9\]{1-5}d$
+              regex: ^\[0-9\]{1,5}d$
+              global: True
             actions:
               set_priority:
                 priority:

From 25f1a0251f423b801fe084d83f8085c7fe787b12 Mon Sep 17 00:00:00 2001
From: Mike Reeves <mike.reeves@securityonionsolutions.com>
Date: Fri, 27 Oct 2023 09:08:07 -0400
Subject: [PATCH 296/417] Annotation changes for warm node

---
 salt/elasticsearch/soc_elasticsearch.yaml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/salt/elasticsearch/soc_elasticsearch.yaml b/salt/elasticsearch/soc_elasticsearch.yaml
index 5b4d63f40..a5170b776 100644
--- a/salt/elasticsearch/soc_elasticsearch.yaml
+++ b/salt/elasticsearch/soc_elasticsearch.yaml
@@ -110,6 +110,7 @@ elasticsearch:
             min_age: 
               description: Minimum age of index. ex. 30d - This determines when the index should be moved to the cold tier.  While still searchable, this tier is typically optimized for lower storage costs rather than search speed.
               regex: ^\[0-9\]{1,5}d$
+              forcedType: string
               global: True
             actions:
               set_priority:

From 4bbcc5002ad46d9cfe63071f9f5fcec756e4e9e3 Mon Sep 17 00:00:00 2001
From: Josh Patterson <josh.patterson@securityonionsolutions.com>
Date: Wed, 25 Oct 2023 11:01:13 -0400
Subject: [PATCH 297/417] Revert "Revert "Upgrade/salt3006.3""

This reverts commit c41e19ad0b301f1deae35365e62544e987045fdd.
---
 salt/common/tools/sbin/so-common    |   75 +-
 salt/manager/tools/sbin/soup        |   62 +-
 salt/salt/map.jinja                 |    2 +-
 salt/salt/master.defaults.yaml      |    2 +-
 salt/salt/minion.defaults.yaml      |    2 +-
 salt/salt/scripts/bootstrap-salt.sh | 2106 ++++++++++++++++++++++++---
 setup/so-functions                  |    5 +-
 7 files changed, 2001 insertions(+), 253 deletions(-)

diff --git a/salt/common/tools/sbin/so-common b/salt/common/tools/sbin/so-common
index fc14e9d0a..87f40c9d4 100755
--- a/salt/common/tools/sbin/so-common
+++ b/salt/common/tools/sbin/so-common
@@ -152,15 +152,18 @@ check_salt_master_status() {
     return 0
 }
 
+# this is only intended to be used to check the status of the minion
 check_salt_minion_status() {
-	local timeout="${1:-5}"
-	echo "Checking if the salt minion will respond to jobs" >> "$setup_log" 2>&1
-	salt "$MINION_ID" test.ping -t $timeout > /dev/null 2>&1
+	local minion="$1"
+	local timeout="${2:-5}"
+	local logfile="${3:-'/dev/stdout'}"
+	echo "Checking if the salt minion will respond to jobs" >> "$logfile" 2>&1
+	salt "$minion" test.ping -t $timeout > /dev/null 2>&1
 	local status=$?
 	if [ $status -gt 0 ]; then
-		echo "  Minion did not respond" >> "$setup_log" 2>&1
+		echo "  Minion did not respond" >> "$logfile" 2>&1
 	else
-		echo "  Received job response from salt minion" >> "$setup_log" 2>&1
+		echo "  Received job response from salt minion" >> "$logfile" 2>&1
 	fi
 
 	return $status
@@ -440,6 +443,24 @@ run_check_net_err() {
 	fi
 }
 
+wait_for_salt_minion() {
+	local minion="$1"
+	local timeout="${2:-5}"
+	local logfile="${3:-'/dev/stdout'}"
+	retry 60 5 "journalctl -u salt-minion.service | grep 'Minion is ready to receive requests'" >> "$logfile" 2>&1 || fail
+	local attempt=0
+	# each attempts would take about 15 seconds
+	local maxAttempts=20
+	until check_salt_minion_status "$minion" "$timeout" "$logfile"; do
+		attempt=$((attempt+1))
+		if [[ $attempt -eq $maxAttempts ]]; then
+			return 1
+		fi
+		sleep 10
+	done
+	return 0
+}
+
 salt_minion_count() {
 	local MINIONDIR="/opt/so/saltstack/local/pillar/minions"
 	MINIONCOUNT=$(ls -la $MINIONDIR/*.sls | grep -v adv_ | wc -l)
@@ -452,19 +473,51 @@ set_os() {
 			OS=rocky
 			OSVER=9
 			is_rocky=true
+			is_rpm=true
 		elif grep -q "CentOS Stream release 9" /etc/redhat-release; then
 			OS=centos
 			OSVER=9
 			is_centos=true
-		elif grep -q "Oracle Linux Server release 9" /etc/system-release; then
-			OS=oel
+			is_rpm=true
+		elif grep -q "AlmaLinux release 9" /etc/redhat-release; then
+			OS=alma
 			OSVER=9
-			is_oracle=true
+			is_alma=true
+			is_rpm=true
+		elif grep -q "Red Hat Enterprise Linux release 9" /etc/redhat-release; then
+			if [ -f /etc/oracle-release ]; then
+				OS=oracle
+				OSVER=9
+				is_oracle=true
+				is_rpm=true
+			else
+				OS=rhel
+				OSVER=9
+				is_rhel=true
+				is_rpm=true
+			fi
 		fi
 		cron_service_name="crond"
-	else
-		OS=ubuntu
-		is_ubuntu=true
+	elif [ -f /etc/os-release ]; then
+		if grep -q "UBUNTU_CODENAME=focal" /etc/os-release; then
+			OSVER=focal
+			UBVER=20.04
+			OS=ubuntu
+			is_ubuntu=true
+			is_deb=true
+		elif grep -q "UBUNTU_CODENAME=jammy" /etc/os-release; then
+			OSVER=jammy
+			UBVER=22.04
+			OS=ubuntu
+			is_ubuntu=true
+			is_deb=true
+		elif grep -q "VERSION_CODENAME=bookworm" /etc/os-release; then
+			OSVER=bookworm
+			DEBVER=12
+			is_debian=true
+			OS=debian
+			is_deb=true
+		fi
 		cron_service_name="cron"
 	fi
 }
diff --git a/salt/manager/tools/sbin/soup b/salt/manager/tools/sbin/soup
index 0666e25ae..f30c3f15d 100755
--- a/salt/manager/tools/sbin/soup
+++ b/salt/manager/tools/sbin/soup
@@ -467,7 +467,6 @@ stop_salt_master() {
     echo ""
     echo "Killing any queued Salt jobs on the manager."
     pkill -9 -ef "/usr/bin/python3 /bin/salt" >> $SOUP_LOG 2>&1
-    set -e
 
     echo ""
     echo "Storing salt-master pid."
@@ -475,6 +474,7 @@ stop_salt_master() {
     echo "Found salt-master PID $MASTERPID"
     systemctl_func "stop" "salt-master"
     timeout 30 tail --pid=$MASTERPID -f /dev/null || echo "salt-master still running at $(date +"%T.%6N") after waiting 30s. We cannot kill due to systemd restart option."
+    set -e
 }
 
 stop_salt_minion() {
@@ -487,14 +487,12 @@ stop_salt_minion() {
     echo ""
     echo "Killing Salt jobs on this node."
     salt-call saltutil.kill_all_jobs --local
-    set -e
 
     echo "Storing salt-minion pid."
     MINIONPID=$(pgrep -f '/opt/saltstack/salt/bin/python3.10 /usr/bin/salt-minion' | head -1)
     echo "Found salt-minion PID $MINIONPID"
     systemctl_func "stop" "salt-minion"
 
-    set +e
     timeout 30 tail --pid=$MINIONPID -f /dev/null || echo "Killing salt-minion at $(date +"%T.%6N") after waiting 30s" && pkill -9 -ef /usr/bin/salt-minion
     set -e
 }
@@ -633,6 +631,7 @@ upgrade_check_salt() {
   if [ "$INSTALLEDSALTVERSION" == "$NEWSALTVERSION" ]; then
     echo "You are already running the correct version of Salt for Security Onion."
   else
+    echo "Salt needs to be upgraded to $NEWSALTVERSION."
     UPGRADESALT=1
   fi
 }   
@@ -641,22 +640,48 @@ upgrade_salt() {
   SALTUPGRADED=True
   echo "Performing upgrade of Salt from $INSTALLEDSALTVERSION to $NEWSALTVERSION."
   echo ""
-  # If CentOS
-  if [[ $OS == 'centos' ]]; then
+  # If rhel family
+  if [[ $is_rpm ]]; then
     echo "Removing yum versionlock for Salt."
     echo ""
     yum versionlock delete "salt-*"
     echo "Updating Salt packages."
     echo ""
     set +e
-    run_check_net_err \
-    "sh $UPDATE_DIR/salt/salt/scripts/bootstrap-salt.sh -X -r -F -M -x python3 stable \"$NEWSALTVERSION\"" \
-    "Could not update salt, please check $SOUP_LOG for details."
+    # if oracle run with -r to ignore repos set by bootstrap
+    if [[ $OS == 'oracle' ]]; then
+      run_check_net_err \
+      "sh $UPDATE_DIR/salt/salt/scripts/bootstrap-salt.sh -X -r -F -M -x python3 stable \"$NEWSALTVERSION\"" \
+      "Could not update salt, please check $SOUP_LOG for details."
+    # if another rhel family variant we want to run without -r to allow the bootstrap script to manage repos
+    else
+      run_check_net_err \
+      "sh $UPDATE_DIR/salt/salt/scripts/bootstrap-salt.sh -X -F -M -x python3 stable \"$NEWSALTVERSION\"" \
+      "Could not update salt, please check $SOUP_LOG for details."
+    fi
     set -e
     echo "Applying yum versionlock for Salt."
     echo ""
     yum versionlock add "salt-*"
   # Else do Ubuntu things
+  elif [[ $is_deb ]]; then
+    echo "Removing apt hold for Salt."
+    echo ""
+    apt-mark unhold "salt-common"
+    apt-mark unhold "salt-master"
+    apt-mark unhold "salt-minion"
+    echo "Updating Salt packages."
+    echo ""
+    set +e
+    run_check_net_err \
+    "sh $UPDATE_DIR/salt/salt/scripts/bootstrap-salt.sh -X -F -M -x python3 stable \"$NEWSALTVERSION\"" \
+    "Could not update salt, please check $SOUP_LOG for details."
+    set -e
+    echo "Applying apt hold for Salt."
+    echo ""
+    apt-mark hold "salt-common"
+    apt-mark hold "salt-master"
+    apt-mark hold "salt-minion"
   fi
 
   echo "Checking if Salt was upgraded."
@@ -668,7 +693,7 @@ upgrade_salt() {
     echo "Once the issue is resolved, run soup again."
     echo "Exiting."
     echo ""
-    exit 0
+    exit 1
   else
     echo "Salt upgrade success."
     echo ""
@@ -798,7 +823,7 @@ main() {
   if [[ $is_airgap -eq 0 ]]; then
     yum clean all
     check_os_updates
-  elif [[ $OS == 'oel' ]]; then
+  elif [[ $OS == 'oracle' ]]; then
     # sync remote repo down to local if not airgap
     repo_sync
     check_os_updates
@@ -815,7 +840,8 @@ main() {
     echo "Hotfix applied"
     update_version
     enable_highstate
-    salt-call state.highstate -l info queue=True
+    (wait_for_salt_minion "$MINIONID" "5" '/dev/stdout' || fail "Salt minion was not running or ready.") 2>&1 | tee -a "$SOUP_LOG"
+    highstate
   else
     echo ""
     echo "Performing upgrade from Security Onion $INSTALLEDVERSION to Security Onion $NEWVERSION."
@@ -851,6 +877,14 @@ main() {
       echo "Upgrading Salt"
       # Update the repo files so it can actually upgrade
       upgrade_salt
+
+      # for Debian based distro, we need to stop salt again after upgrade output below is from bootstrap-salt
+      # *  WARN: Not starting daemons on Debian based distributions
+      #    is not working mostly because starting them is the default behaviour.
+      if [[ $is_deb ]]; then
+        stop_salt_minion
+        stop_salt_master
+      fi
     fi
 
     preupgrade_changes
@@ -913,7 +947,8 @@ main() {
     echo ""
     echo "Running a highstate. This could take several minutes."
     set +e
-    salt-call state.highstate -l info queue=True
+    (wait_for_salt_minion "$MINIONID" "5" '/dev/stdout' || fail "Salt minion was not running or ready.") 2>&1 | tee -a "$SOUP_LOG"
+    highstate
     set -e
 
     stop_salt_master
@@ -928,7 +963,8 @@ main() {
     set -e
     
     echo "Running a highstate to complete the Security Onion upgrade on this manager. This could take several minutes."
-    salt-call state.highstate -l info queue=True
+    (wait_for_salt_minion "$MINIONID" "5" '/dev/stdout' || fail "Salt minion was not running or ready.") 2>&1 | tee -a "$SOUP_LOG"
+    highstate
     postupgrade_changes
     [[ $is_airgap -eq 0 ]] && unmount_update
 
diff --git a/salt/salt/map.jinja b/salt/salt/map.jinja
index 1120685fb..131ff46ca 100644
--- a/salt/salt/map.jinja
+++ b/salt/salt/map.jinja
@@ -23,7 +23,7 @@
   {% if grains.os|lower in ['Rocky', 'redhat', 'CentOS Stream'] %}
       {% set UPGRADECOMMAND = 'yum clean all ; /usr/sbin/bootstrap-salt.sh -s 120 -r -F -x python3 stable ' ~ SALTVERSION %}
   {% elif grains.os_family|lower == 'debian' %}
-    {% set UPGRADECOMMAND = '/usr/sbin/bootstrap-salt.sh -s 120 -r -F -x python3 stable ' ~ SALTVERSION %}
+    {% set UPGRADECOMMAND = '/usr/sbin/bootstrap-salt.sh -s 120 -F -x python3 stable ' ~ SALTVERSION %}
   {% endif %}
 {% else %}
   {% set UPGRADECOMMAND = 'echo Already running Salt Minion version ' ~ SALTVERSION %}
diff --git a/salt/salt/master.defaults.yaml b/salt/salt/master.defaults.yaml
index 126039802..40b6f5268 100644
--- a/salt/salt/master.defaults.yaml
+++ b/salt/salt/master.defaults.yaml
@@ -2,4 +2,4 @@
 # When updating the salt version, also update the version in securityonion-builds/images/iso-task/Dockerfile and saltify function in so-functions
 salt:
   master:
-    version: 3006.1
+    version: 3006.3
diff --git a/salt/salt/minion.defaults.yaml b/salt/salt/minion.defaults.yaml
index 7e1540d17..71fd18f96 100644
--- a/salt/salt/minion.defaults.yaml
+++ b/salt/salt/minion.defaults.yaml
@@ -2,6 +2,6 @@
 # When updating the salt version, also update the version in securityonion-builds/images/iso-task/Dockerfile and saltify function in so-functions
 salt:
   minion:
-    version: 3006.1
+    version: 3006.3
     check_threshold: 3600 # in seconds, threshold used for so-salt-minion-check. any value less than 600 seconds may cause a lot of salt-minion restarts since the job to touch the file occurs every 5-8 minutes by default
     service_start_delay: 30 # in seconds.
diff --git a/salt/salt/scripts/bootstrap-salt.sh b/salt/salt/scripts/bootstrap-salt.sh
index 47d25949c..a016524e6 100644
--- a/salt/salt/scripts/bootstrap-salt.sh
+++ b/salt/salt/scripts/bootstrap-salt.sh
@@ -14,7 +14,7 @@
 #
 #          BUGS: https://github.com/saltstack/salt-bootstrap/issues
 #
-#     COPYRIGHT: (c) 2012-2021 by the SaltStack Team, see AUTHORS.rst for more
+#     COPYRIGHT: (c) 2012-2022 by the SaltStack Team, see AUTHORS.rst for more
 #                details.
 #
 #       LICENSE: Apache 2.0
@@ -23,7 +23,7 @@
 #======================================================================================================================
 set -o nounset                              # Treat unset variables as an error
 
-__ScriptVersion="2021.09.17"
+__ScriptVersion="2023.08.03"
 __ScriptName="bootstrap-salt.sh"
 
 __ScriptFullName="$0"
@@ -224,7 +224,6 @@ _KEEP_TEMP_FILES=${BS_KEEP_TEMP_FILES:-$BS_FALSE}
 _TEMP_CONFIG_DIR="null"
 _SALTSTACK_REPO_URL="https://github.com/saltstack/salt.git"
 _SALT_REPO_URL=${_SALTSTACK_REPO_URL}
-_DOWNSTREAM_PKG_REPO=$BS_FALSE
 _TEMP_KEYS_DIR="null"
 _SLEEP="${__DEFAULT_SLEEP}"
 _INSTALL_MASTER=$BS_FALSE
@@ -268,6 +267,8 @@ _CUSTOM_MASTER_CONFIG="null"
 _CUSTOM_MINION_CONFIG="null"
 _QUIET_GIT_INSTALLATION=$BS_FALSE
 _REPO_URL="repo.saltproject.io"
+_ONEDIR_DIR="salt"
+_ONEDIR_NIGHTLY_DIR="salt-dev/${_ONEDIR_DIR}"
 _PY_EXE="python3"
 _INSTALL_PY="$BS_FALSE"
 _TORNADO_MAX_PY3_VERSION="5.0"
@@ -275,6 +276,9 @@ _POST_NEON_INSTALL=$BS_FALSE
 _MINIMUM_PIP_VERSION="9.0.1"
 _MINIMUM_SETUPTOOLS_VERSION="9.1"
 _POST_NEON_PIP_INSTALL_ARGS="--prefix=/usr"
+_PIP_DOWNLOAD_ARGS=""
+_QUICK_START="$BS_FALSE"
+_AUTO_ACCEPT_MINION_KEYS="$BS_FALSE"
 
 # Defaults for install arguments
 ITYPE="stable"
@@ -290,110 +294,130 @@ __usage() {
   Usage :  ${__ScriptName} [options] <install-type> [install-type-args]
 
   Installation types:
-    - stable              Install latest stable release. This is the default
-                          install type
-    - stable [branch]     Install latest version on a branch. Only supported
-                          for packages available at repo.saltproject.io
-    - stable [version]    Install a specific version. Only supported for
-                          packages available at repo.saltproject.io
-                          To pin a 3xxx minor version, specify it as 3xxx.0
-    - testing             RHEL-family specific: configure EPEL testing repo
-    - git                 Install from the head of the master branch
-    - git [ref]           Install from any git ref (such as a branch, tag, or
-                          commit)
+    - stable               Install latest stable release. This is the default
+                           install type
+    - stable [branch]      Install latest version on a branch. Only supported
+                           for packages available at repo.saltproject.io
+    - stable [version]     Install a specific version. Only supported for
+                           packages available at repo.saltproject.io
+                           To pin a 3xxx minor version, specify it as 3xxx.0
+    - testing              RHEL-family specific: configure EPEL testing repo
+    - git                  Install from the head of the master branch
+    - git [ref]            Install from any git ref (such as a branch, tag, or
+                           commit)
+    - onedir               Install latest onedir release.
+    - onedir [version]     Install a specific version. Only supported for
+                           onedir packages available at repo.saltproject.io
+
+    - onedir_rc            Install latest onedir RC release.
+    - onedir_rc [version]  Install a specific version. Only supported for
+                           onedir RC packages available at repo.saltproject.io
+    - old-stable           Install latest old stable release.
+    - old-stable [branch]  Install latest version on a branch. Only supported
+                           for packages available at repo.saltproject.io
+    - old-stable [version] Install a specific version. Only supported for
+                           packages available at repo.saltproject.io
+                           To pin a 3xxx minor version, specify it as 3xxx.0
 
   Examples:
     - ${__ScriptName}
     - ${__ScriptName} stable
-    - ${__ScriptName} stable 2017.7
-    - ${__ScriptName} stable 2017.7.2
+    - ${__ScriptName} stable 3006
+    - ${__ScriptName} stable 3006.1
     - ${__ScriptName} testing
     - ${__ScriptName} git
     - ${__ScriptName} git 2017.7
     - ${__ScriptName} git v2017.7.2
     - ${__ScriptName} git 06f249901a2e2f1ed310d58ea3921a129f214358
+    - ${__ScriptName} onedir
+    - ${__ScriptName} onedir 3006
+    - ${__ScriptName} onedir_rc
+    - ${__ScriptName} onedir_rc 3006
+    - ${__ScriptName} old-stable
+    - ${__ScriptName} old-stable 3005
+    - ${__ScriptName} old-stable 3005.1
+
 
   Options:
-    -h  Display this message
-    -v  Display script version
-    -n  No colours
-    -D  Show debug output
+    -a  Pip install all Python pkg dependencies for Salt. Requires -V to install
+        all pip pkgs into the virtualenv.
+        (Only available for Ubuntu based distributions)
+    -A  Pass the salt-master DNS name or IP. This will be stored under
+        \${BS_SALT_ETC_DIR}/minion.d/99-master-address.conf
+    -b  Assume that dependencies are already installed and software sources are
+        set up. If git is selected, git tree is still checked out as dependency
+        step.
     -c  Temporary configuration directory
-    -g  Salt Git repository URL. Default: ${_SALTSTACK_REPO_URL}
-    -w  Install packages from downstream package repository rather than
-        upstream, saltstack package repository. This is currently only
-        implemented for SUSE.
-    -k  Temporary directory holding the minion keys which will pre-seed
-        the master.
-    -s  Sleep time used when waiting for daemons to start, restart and when
-        checking for the services running. Default: ${__DEFAULT_SLEEP}
-    -L  Also install salt-cloud and required python-libcloud package
-    -M  Also install salt-master
-    -S  Also install salt-syndic
-    -N  Do not install salt-minion
-    -X  Do not start daemons after installation
-    -d  Disables checking if Salt services are enabled to start on system boot.
-        You can also do this by touching /tmp/disable_salt_checks on the target
-        host. Default: \${BS_FALSE}
-    -P  Allow pip based installations. On some distributions the required salt
-        packages or its dependencies are not available as a package for that
-        distribution. Using this flag allows the script to use pip as a last
-        resort method. NOTE: This only works for functions which actually
-        implement pip based installations.
-    -U  If set, fully upgrade the system prior to bootstrapping Salt
-    -I  If set, allow insecure connections while downloading any files. For
-        example, pass '--no-check-certificate' to 'wget' or '--insecure' to
-        'curl'. On Debian and Ubuntu, using this option with -U allows obtaining
-        GnuPG archive keys insecurely if distro has changed release signatures.
-    -F  Allow copied files to overwrite existing (config, init.d, etc)
-    -K  If set, keep the temporary files in the temporary directories specified
-        with -c and -k
     -C  Only run the configuration function. Implies -F (forced overwrite).
         To overwrite Master or Syndic configs, -M or -S, respectively, must
         also be specified. Salt installation will be ommitted, but some of the
         dependencies could be installed to write configuration with -j or -J.
-    -A  Pass the salt-master DNS name or IP. This will be stored under
-        \${BS_SALT_ETC_DIR}/minion.d/99-master-address.conf
-    -i  Pass the salt-minion id. This will be stored under
-        \${BS_SALT_ETC_DIR}/minion_id
-    -p  Extra-package to install while installing Salt dependencies. One package
-        per -p flag. You are responsible for providing the proper package name.
-    -H  Use the specified HTTP proxy for all download URLs (including https://).
-        For example: http://myproxy.example.com:3128
-    -b  Assume that dependencies are already installed and software sources are
-        set up. If git is selected, git tree is still checked out as dependency
-        step.
+    -d  Disables checking if Salt services are enabled to start on system boot.
+        You can also do this by touching /tmp/disable_salt_checks on the target
+        host. Default: \${BS_FALSE}
+    -D  Show debug output
     -f  Force shallow cloning for git installations.
         This may result in an "n/a" in the version number.
-    -l  Disable ssl checks. When passed, switches "https" calls to "http" where
-        possible.
-    -V  Install Salt into virtualenv
-        (only available for Ubuntu based distributions)
-    -a  Pip install all Python pkg dependencies for Salt. Requires -V to install
-        all pip pkgs into the virtualenv.
-        (Only available for Ubuntu based distributions)
-    -r  Disable all repository configuration performed by this script. This
-        option assumes all necessary repository configuration is already present
-        on the system.
-    -R  Specify a custom repository URL. Assumes the custom repository URL
-        points to a repository that mirrors Salt packages located at
-        repo.saltproject.io. The option passed with -R replaces the
-        "repo.saltproject.io". If -R is passed, -r is also set. Currently only
-        works on CentOS/RHEL and Debian based distributions.
-    -J  Replace the Master config file with data passed in as a JSON string. If
-        a Master config file is found, a reasonable effort will be made to save
-        the file with a ".bak" extension. If used in conjunction with -C or -F,
-        no ".bak" file will be created as either of those options will force
-        a complete overwrite of the file.
+    -F  Allow copied files to overwrite existing (config, init.d, etc)
+    -g  Salt Git repository URL. Default: ${_SALTSTACK_REPO_URL}
+    -h  Display this message
+    -H  Use the specified HTTP proxy for all download URLs (including https://).
+        For example: http://myproxy.example.com:3128
+    -i  Pass the salt-minion id. This will be stored under
+        \${BS_SALT_ETC_DIR}/minion_id
+    -I  If set, allow insecure connections while downloading any files. For
+        example, pass '--no-check-certificate' to 'wget' or '--insecure' to
+        'curl'. On Debian and Ubuntu, using this option with -U allows obtaining
+        GnuPG archive keys insecurely if distro has changed release signatures.
     -j  Replace the Minion config file with data passed in as a JSON string. If
         a Minion config file is found, a reasonable effort will be made to save
         the file with a ".bak" extension. If used in conjunction with -C or -F,
         no ".bak" file will be created as either of those options will force
         a complete overwrite of the file.
+    -J  Replace the Master config file with data passed in as a JSON string. If
+        a Master config file is found, a reasonable effort will be made to save
+        the file with a ".bak" extension. If used in conjunction with -C or -F,
+        no ".bak" file will be created as either of those options will force
+        a complete overwrite of the file.
+    -k  Temporary directory holding the minion keys which will pre-seed
+        the master.
+    -K  If set, keep the temporary files in the temporary directories specified
+        with -c and -k
+    -l  Disable ssl checks. When passed, switches "https" calls to "http" where
+        possible.
+    -L  Also install salt-cloud and required python-libcloud package
+    -M  Also install salt-master
+    -n  No colours
+    -N  Do not install salt-minion
+    -p  Extra-package to install while installing Salt dependencies. One package
+        per -p flag. You are responsible for providing the proper package name.
+    -P  Allow pip based installations. On some distributions the required salt
+        packages or its dependencies are not available as a package for that
+        distribution. Using this flag allows the script to use pip as a last
+        resort method. NOTE: This only works for functions which actually
+        implement pip based installations.
     -q  Quiet salt installation from git (setup.py install -q)
+    -Q  Quickstart, install the Salt master and the Salt minion.
+        And automatically accept the minion key.
+    -R  Specify a custom repository URL. Assumes the custom repository URL
+        points to a repository that mirrors Salt packages located at
+        repo.saltproject.io. The option passed with -R replaces the
+        "repo.saltproject.io". If -R is passed, -r is also set. Currently only
+        works on CentOS/RHEL and Debian based distributions and macOS.
+    -s  Sleep time used when waiting for daemons to start, restart and when
+        checking for the services running. Default: ${__DEFAULT_SLEEP}
+    -S  Also install salt-syndic
+    -r  Disable all repository configuration performed by this script. This
+        option assumes all necessary repository configuration is already present
+        on the system.
+    -U  If set, fully upgrade the system prior to bootstrapping Salt
+    -v  Display script version
+    -V  Install Salt into virtualenv
+        (only available for Ubuntu based distributions)
     -x  Changes the Python version used to install Salt.
         For CentOS 6 git installations python2.7 is supported.
-        Fedora git installation, CentOS 7, Debian 9, Ubuntu 16.04 and 18.04 support python3.
+        Fedora git installation, CentOS 7, Ubuntu 18.04 support python3.
+    -X  Do not start daemons after installation
     -y  Installs a different python version on host. Currently this has only been
         tested with CentOS 6 and is considered experimental. This will install the
         ius repo on the box if disable repo is false. This must be used in conjunction
@@ -406,7 +430,7 @@ EOT
 }   # ----------  end of function __usage  ----------
 
 
-while getopts ':hvnDc:g:Gyx:wk:s:MSNXCPFUKIA:i:Lp:dH:bflV:J:j:rR:aq' opt
+while getopts ':hvnDc:g:Gyx:k:s:MSNXCPFUKIA:i:Lp:dH:bflV:J:j:rR:aqQ' opt
 do
   case "${opt}" in
 
@@ -422,7 +446,6 @@ do
          echowarn "No need to provide this option anymore, now it is a default behavior."
          ;;
 
-    w )  _DOWNSTREAM_PKG_REPO=$BS_TRUE                  ;;
     k )  _TEMP_KEYS_DIR="$OPTARG"                       ;;
     s )  _SLEEP=$OPTARG                                 ;;
     M )  _INSTALL_MASTER=$BS_TRUE                       ;;
@@ -451,6 +474,7 @@ do
     J )  _CUSTOM_MASTER_CONFIG=$OPTARG                  ;;
     j )  _CUSTOM_MINION_CONFIG=$OPTARG                  ;;
     q )  _QUIET_GIT_INSTALLATION=$BS_TRUE               ;;
+    Q )  _QUICK_START=$BS_TRUE                          ;;
     x )  _PY_EXE="$OPTARG"                              ;;
     y )  _INSTALL_PY="$BS_TRUE"                         ;;
 
@@ -572,7 +596,7 @@ fi
 echoinfo "Running version: ${__ScriptVersion}"
 echoinfo "Executed by: ${CALLER}"
 echoinfo "Command line: '${__ScriptFullName} ${__ScriptArgs}'"
-#echowarn "Running the unstable version of ${__ScriptName}"
+echowarn "Running the unstable version of ${__ScriptName}"
 
 # Define installation type
 if [ "$#" -gt 0 ];then
@@ -582,11 +606,17 @@ if [ "$#" -gt 0 ];then
 fi
 
 # Check installation type
-if [ "$(echo "$ITYPE" | grep -E '(stable|testing|git)')" = "" ]; then
+if [ "$(echo "$ITYPE" | grep -E '(stable|testing|git|onedir|onedir_rc|old-stable)')" = "" ]; then
     echoerror "Installation type \"$ITYPE\" is not known..."
     exit 1
 fi
 
+# Due to our modifications to install_centos_onedir it is easiest to just lock down to only allowing stable install
+if [ "$(echo "$ITYPE" | grep stable)" = "" ]; then
+    echoerror "This script has been modified to only support stable installation type. Installation type \"$ITYPE\" is not allowed..."
+    exit 1
+fi
+
 # If doing a git install, check what branch/tag/sha will be checked out
 if [ "$ITYPE" = "git" ]; then
     if [ "$#" -eq 0 ];then
@@ -602,23 +632,123 @@ if [ "$ITYPE" = "git" ]; then
 # If doing stable install, check if version specified
 elif [ "$ITYPE" = "stable" ]; then
     if [ "$#" -eq 0 ];then
-        STABLE_REV="latest"
+        ONEDIR_REV="latest"
+        _ONEDIR_REV="latest"
+        ITYPE="onedir"
     else
-        if [ "$(echo "$1" | grep -E '^(latest|1\.6|1\.7|2014\.1|2014\.7|2015\.5|2015\.8|2016\.3|2016\.11|2017\.7|2018\.3|2019\.2|3000|3001|3002|3003|3004)$')" != "" ]; then
-            STABLE_REV="$1"
+        if [ "$(echo "$1" | grep -E '^(nightly|latest|3005|3006)$')" != "" ]; then
+            ONEDIR_REV="$1"
+            _ONEDIR_REV="$1"
+            ITYPE="onedir"
             shift
-        elif [ "$(echo "$1" | grep -E '^(2[0-9]*\.[0-9]*\.[0-9]*|[3-9][0-9]{3}(\.[0-9]*)?)$')" != "" ]; then
+        elif [ "$(echo "$1" | grep -E '^([3-9][0-5]{2}[5-9](\.[0-9]*)?)')" != "" ]; then
+            ONEDIR_REV="minor/$1"
+            _ONEDIR_REV="$1"
+            ITYPE="onedir"
+            shift
+        else
+            echo "Unknown stable version: $1 (valid: 3005, 3006, latest)"
+            exit 1
+        fi
+    fi
+
+# If doing old-stable install, check if version specified
+elif [ "$ITYPE" = "old-stable" ]; then
+    if [ "$#" -eq 0 ];then
+        ITYPE="stable"
+    else
+        if [ "$(echo "$1" | grep -E '^(3003|3004|3005)$')" != "" ]; then
+            STABLE_REV="$1"
+            ITYPE="stable"
+            shift
+        elif [ "$(echo "$1" | grep -E '^([3-9][0-5]{3}(\.[0-9]*)?)$')" != "" ]; then
             # Handle the 3xxx.0 version as 3xxx archive (pin to minor) and strip the fake ".0" suffix
+            ITYPE="stable"
             STABLE_REV=$(echo "$1" | sed -E 's/^([3-9][0-9]{3})\.0$/\1/')
             if [ "$(uname)" != "Darwin" ]; then
                 STABLE_REV="archive/$STABLE_REV"
             fi
             shift
         else
-            echo "Unknown stable version: $1 (valid: 1.6, 1.7, 2014.1, 2014.7, 2015.5, 2015.8, 2016.3, 2016.11, 2017.7, 2018.3, 2019.2, 3000, 3001, 3002, 3003, 3004, latest, \$MAJOR.\$MINOR.\$PATCH until 2019.2, \$MAJOR or \$MAJOR.\$PATCH starting from 3000)"
+            echo "Unknown old stable version: $1 (valid: 3003, 3004, 3005)"
             exit 1
         fi
     fi
+
+elif [ "$ITYPE" = "onedir" ]; then
+    if [ "$#" -eq 0 ];then
+        ONEDIR_REV="latest"
+    else
+        if [ "$(echo "$1" | grep -E '^(nightly|latest|3005|3006)$')" != "" ]; then
+            ONEDIR_REV="$1"
+            shift
+        elif [ "$(echo "$1" | grep -E '^(3005(\.[0-9]*)?)')" != "" ]; then
+            # Handle the 3005.0 version as 3005 archive (pin to minor) and strip the fake ".0" suffix
+            ONEDIR_REV=$(echo "$1" | sed -E 's/^(3005)\.0$/\1/')
+            ONEDIR_REV="minor/$ONEDIR_REV"
+            shift
+        elif [ "$(echo "$1" | grep -E '^([3-9][0-9]{3}(\.[0-9]*)?)')" != "" ]; then
+            ONEDIR_REV="minor/$1"
+            shift
+        else
+            echo "Unknown onedir version: $1 (valid: 3005, 3006, latest, nightly.)"
+            exit 1
+        fi
+    fi
+
+elif [ "$ITYPE" = "onedir_rc" ]; then
+    # Change the _ONEDIR_DIR to be the location for the RC packages
+    _ONEDIR_DIR="salt_rc/salt"
+
+    # Change ITYPE to onedir so we use the regular onedir functions
+    ITYPE="onedir"
+
+    if [ "$#" -eq 0 ];then
+        ONEDIR_REV="latest"
+    else
+        if [ "$(echo "$1" | grep -E '^(latest)$')" != "" ]; then
+            ONEDIR_REV="$1"
+            shift
+        elif [ "$(echo "$1" | grep -E '^([3-9][0-9]{3}?rc[0-9]-[0-9]$)')" != "" ]; then
+            # Handle the 3xxx.0 version as 3xxx archive (pin to minor) and strip the fake ".0" suffix
+            #ONEDIR_REV=$(echo "$1" | sed -E 's/^([3-9][0-9]{3})\.0$/\1/')
+            ONEDIR_REV="minor/$1"
+            shift
+        elif [ "$(echo "$1" | grep -E '^([3-9][0-9]{3}\.[0-9]?rc[0-9]$)')" != "" ]; then
+            # Handle the 3xxx.0 version as 3xxx archive (pin to minor) and strip the fake ".0" suffix
+            #ONEDIR_REV=$(echo "$1" | sed -E 's/^([3-9][0-9]{3})\.0$/\1/')
+            ONEDIR_REV="minor/$1"
+            shift
+        else
+            echo "Unknown onedir_rc version: $1 (valid: 3005-1, latest.)"
+            exit 1
+        fi
+    fi
+fi
+
+# Doing a quick start, so install master
+# set master address to 127.0.0.1
+if [ "$_QUICK_START" -eq "$BS_TRUE" ]; then
+  # make install type is stable
+  ITYPE="stable"
+
+  # make sure the revision is latest
+  STABLE_REV="latest"
+  ONEDIR_REV="latest"
+
+  # make sure we're installing the master
+  _INSTALL_MASTER=$BS_TRUE
+
+  # override incase install minion
+  # is set to false
+  _INSTALL_MINION=$BS_TRUE
+
+  # Set master address to loopback IP
+  _SALT_MASTER_ADDRESS="127.0.0.1"
+
+  # Auto accept the minion key
+  # when the install is done.
+  _AUTO_ACCEPT_MINION_KEYS=$BS_TRUE
 fi
 
 # Check for any unparsed arguments. Should be an error.
@@ -824,6 +954,18 @@ __fetch_verify() {
     return 1
 }
 
+#---  FUNCTION  -------------------------------------------------------------------------------------------------------
+#         NAME:  __check_url_exists
+#  DESCRIPTION:  Checks if a URL exists
+#----------------------------------------------------------------------------------------------------------------------
+__check_url_exists() {
+  _URL="$1"
+  if curl --output /dev/null --silent --fail "${_URL}"; then
+    return 0
+  else
+    return 1
+  fi
+}
 #---  FUNCTION  -------------------------------------------------------------------------------------------------------
 #          NAME:  __gather_hardware_info
 #   DESCRIPTION:  Discover hardware information
@@ -945,7 +1087,7 @@ __strip_duplicates() {
 __sort_release_files() {
     KNOWN_RELEASE_FILES=$(echo "(arch|alpine|centos|debian|ubuntu|fedora|redhat|suse|\
         mandrake|mandriva|gentoo|slackware|turbolinux|unitedlinux|void|lsb|system|\
-        oracle|os)(-|_)(release|version)" | sed -E 's:[[:space:]]::g')
+        oracle|os|almalinux|rocky)(-|_)(release|version)" | sed -E 's:[[:space:]]::g')
     primary_release_files=""
     secondary_release_files=""
     # Sort know VS un-known files first
@@ -959,7 +1101,7 @@ __sort_release_files() {
     done
 
     # Now let's sort by know files importance, max important goes last in the max_prio list
-    max_prio="redhat-release centos-release oracle-release fedora-release"
+    max_prio="redhat-release centos-release oracle-release fedora-release almalinux-release rocky-release"
     for entry in $max_prio; do
         if [ "$(echo "${primary_release_files}" | grep "$entry")" != "" ]; then
             primary_release_files=$(echo "${primary_release_files}" | sed -e "s:\\(.*\\)\\($entry\\)\\(.*\\):\\2 \\1 \\3:g")
@@ -1028,6 +1170,8 @@ __gather_linux_system_info() {
         elif [ "${DISTRO_NAME}" = "Arch" ]; then
             DISTRO_NAME="Arch Linux"
             return
+        elif [ "${DISTRO_NAME}" = "Rocky" ]; then
+            DISTRO_NAME="Rocky Linux"
         fi
         rv=$(lsb_release -sr)
         [ "${rv}" != "" ] && DISTRO_VERSION=$(__parse_version_string "$rv")
@@ -1086,6 +1230,8 @@ __gather_linux_system_info() {
             unitedlinux        ) n="UnitedLinux"    ;;
             void               ) n="VoidLinux"      ;;
             oracle             ) n="Oracle Linux"   ;;
+            almalinux          ) n="AlmaLinux"      ;;
+            rocky              ) n="Rocky Linux"    ;;
             system             )
                 while read -r line; do
                     [ "${n}x" != "systemx" ] && break
@@ -1308,7 +1454,7 @@ __gather_system_info() {
 #----------------------------------------------------------------------------------------------------------------------
 # shellcheck disable=SC2034
 __ubuntu_derivatives_translation() {
-    UBUNTU_DERIVATIVES="(trisquel|linuxmint|linaro|elementary_os|neon)"
+    UBUNTU_DERIVATIVES="(trisquel|linuxmint|linaro|elementary_os|neon|pop)"
     # Mappings
     trisquel_6_ubuntu_base="12.04"
     linuxmint_13_ubuntu_base="12.04"
@@ -1321,6 +1467,8 @@ __ubuntu_derivatives_translation() {
     neon_16_ubuntu_base="16.04"
     neon_18_ubuntu_base="18.04"
     neon_20_ubuntu_base="20.04"
+    neon_22_ubuntu_base="22.04"
+    pop_22_ubuntu_base="22.04"
 
     # Translate Ubuntu derivatives to their base Ubuntu version
     match=$(echo "$DISTRO_NAME_L" | grep -E ${UBUNTU_DERIVATIVES})
@@ -1380,9 +1528,13 @@ __check_dpkg_architecture() {
             if [ "$_CUSTOM_REPO_URL" != "null" ]; then
                 warn_msg="Support for arm64 is experimental, make sure the custom repository used has the expected structure and contents."
             else
-                # Saltstack official repository does not yet have arm64 metadata,
-                # use amd64 repositories on arm64, since all pkgs are arch-independent
-                __REPO_ARCH="amd64"
+                # Saltstack official repository has arm64 metadata beginning with Debian 11,
+                # use amd64 repositories on arm64 for anything older, since all pkgs are arch-independent
+                if [ "$DISTRO_NAME_L" = "debian" ] && [ "$DISTRO_MAJOR_VERSION" -lt 11 ]; then
+                  __REPO_ARCH="amd64"
+                else
+                  __REPO_ARCH="arm64"
+                fi
                 __REPO_ARCH_DEB="deb [signed-by=/usr/share/keyrings/salt-archive-keyring.gpg arch=$__REPO_ARCH]"
                 warn_msg="Support for arm64 packages is experimental and might rely on architecture-independent packages from the amd64 repository."
             fi
@@ -1462,6 +1614,9 @@ __ubuntu_codename_translation() {
         "21")
             DISTRO_CODENAME="hirsute"
             ;;
+        "22")
+            DISTRO_CODENAME="jammy"
+            ;;
         *)
             DISTRO_CODENAME="trusty"
             ;;
@@ -1488,10 +1643,12 @@ __debian_derivatives_translation() {
     devuan_1_debian_base="8.0"
     devuan_2_debian_base="9.0"
     kali_1_debian_base="7.0"
+    kali_2021_debian_base="10.0"
     linuxmint_1_debian_base="8.0"
     raspbian_8_debian_base="8.0"
     raspbian_9_debian_base="9.0"
     raspbian_10_debian_base="10.0"
+    raspbian_11_debian_base="11.0"
     bunsenlabs_9_debian_base="9.0"
     turnkey_9_debian_base="9.0"
 
@@ -1559,6 +1716,14 @@ __debian_codename_translation() {
         "11")
             DISTRO_CODENAME="bullseye"
             ;;
+        "12")
+            DISTRO_CODENAME="bookworm"
+            # FIXME - TEMPORARY
+            # use bullseye packages until bookworm packages are available
+            DISTRO_CODENAME="bullseye"
+            DISTRO_MAJOR_VERSION=11
+            rv=11
+            ;;
         *)
             DISTRO_CODENAME="stretch"
             ;;
@@ -1590,11 +1755,13 @@ __check_end_of_life_versions() {
             #  = 17.04, 17.10
             #  = 18.10
             #  = 19.04, 19.10
+            #  = 20.10
             if [ "$DISTRO_MAJOR_VERSION" -lt 16 ] || \
                 [ "$DISTRO_MAJOR_VERSION" -eq 17 ] || \
                 [ "$DISTRO_MAJOR_VERSION" -eq 19 ] || \
                 { [ "$DISTRO_MAJOR_VERSION" -eq 16 ] && [ "$DISTRO_MINOR_VERSION" -eq 10 ]; } || \
-                { [ "$DISTRO_MAJOR_VERSION" -eq 18 ] && [ "$DISTRO_MINOR_VERSION" -eq 10 ]; }; then
+                { [ "$DISTRO_MAJOR_VERSION" -eq 18 ] && [ "$DISTRO_MINOR_VERSION" -eq 10 ]; } || \
+                { [ "$DISTRO_MAJOR_VERSION" -eq 20 ] && [ "$DISTRO_MINOR_VERSION" -eq 10 ]; }; then
                 echoerror "End of life distributions are not supported."
                 echoerror "Please consider upgrading to the next stable. See:"
                 echoerror "    https://wiki.ubuntu.com/Releases"
@@ -1812,14 +1979,14 @@ elif [ "${DISTRO_NAME_L}" = "debian" ]; then
   __debian_codename_translation
 fi
 
-if [ "$(echo "${DISTRO_NAME_L}" | grep -E '(debian|ubuntu|centos|gentoo|red_hat|oracle|scientific|amazon|fedora|macosx)')" = "" ] && [ "$ITYPE" = "stable" ] && [ "$STABLE_REV" != "latest" ]; then
+if [ "$(echo "${DISTRO_NAME_L}" | grep -E '(debian|ubuntu|centos|gentoo|red_hat|oracle|scientific|amazon|fedora|macosx|almalinux|rocky)')" = "" ] && [ "$ITYPE" = "stable" ] && [ "$STABLE_REV" != "latest" ]; then
     echoerror "${DISTRO_NAME} does not have major version pegged packages support"
     exit 1
 fi
 
 # Only RedHat based distros have testing support
 if [ "${ITYPE}" = "testing" ]; then
-    if [ "$(echo "${DISTRO_NAME_L}" | grep -E '(centos|red_hat|amazon|oracle)')" = "" ]; then
+    if [ "$(echo "${DISTRO_NAME_L}" | grep -E '(centos|red_hat|amazon|oracle|almalinux|rocky)')" = "" ]; then
         echoerror "${DISTRO_NAME} does not have testing packages support"
         exit 1
     fi
@@ -1850,10 +2017,6 @@ if [ "$ITYPE" = "git" ]; then
                 if [ "$__NEW_VS_TAG_REGEX_MATCH" = "MATCH" ]; then
                     _POST_NEON_INSTALL=$BS_TRUE
                     __TAG_REGEX_MATCH="${__NEW_VS_TAG_REGEX_MATCH}"
-                    if [ "$(echo "${GIT_REV}" | cut -c -1)" != "v" ]; then
-                        # We do this to properly clone tags
-                        GIT_REV="v${GIT_REV}"
-                    fi
                     echodebug "Post Neon Tag Regex Match On: ${GIT_REV}"
                 else
                     __TAG_REGEX_MATCH=$(echo "${GIT_REV}" | sed -E 's/^(v?[0-9]{1,4}\.[0-9]{1,2})(\.[0-9]{1,2})?.*$/MATCH/')
@@ -1865,10 +2028,6 @@ if [ "$ITYPE" = "git" ]; then
                 if [ "$__NEW_VS_TAG_REGEX_MATCH" = "MATCH" ]; then
                     _POST_NEON_INSTALL=$BS_TRUE
                     __TAG_REGEX_MATCH="${__NEW_VS_TAG_REGEX_MATCH}"
-                    if [ "$(echo "${GIT_REV}" | cut -c -1)" != "v" ]; then
-                        # We do this to properly clone tags
-                        GIT_REV="v${GIT_REV}"
-                    fi
                     echodebug "Post Neon Tag Regex Match On: ${GIT_REV}"
                 else
                     __TAG_REGEX_MATCH=$(echo "${GIT_REV}" | sed 's/^.*\(v\?[[:digit:]]\{1,4\}\.[[:digit:]]\{1,2\}\)\(\.[[:digit:]]\{1,2\}\)\?.*$/MATCH/')
@@ -2031,20 +2190,13 @@ __rpm_import_gpg() {
 #----------------------------------------------------------------------------------------------------------------------
 __yum_install_noinput() {
 
-    ENABLE_EPEL_CMD=""
-    # Skip Amazon Linux for the first round, since EPEL is no longer required.
-    # See issue #724
-    if [ $_DISABLE_REPOS -eq $BS_FALSE ] && [ "$DISTRO_NAME_L" != "amazon_linux_ami" ]; then
-        ENABLE_EPEL_CMD="--enablerepo=${_EPEL_REPO}"
-    fi
-
     if [ "$DISTRO_NAME_L" = "oracle_linux" ]; then
         # We need to install one package at a time because --enablerepo=X disables ALL OTHER REPOS!!!!
         for package in "${@}"; do
-            yum -y install "${package}" || yum -y install "${package}" ${ENABLE_EPEL_CMD} || return $?
+            yum -y install "${package}" || yum -y install "${package}" || return $?
         done
     else
-        yum -y install "${@}" ${ENABLE_EPEL_CMD} || return $?
+        yum -y install "${@}" || return $?
     fi
 }   # ----------  end of function __yum_install_noinput  ----------
 
@@ -2057,6 +2209,15 @@ __dnf_install_noinput() {
     dnf -y install "${@}" || return $?
 }   # ----------  end of function __dnf_install_noinput  ----------
 
+#---  FUNCTION  -------------------------------------------------------------------------------------------------------
+#          NAME:  __tdnf_install_noinput
+#   DESCRIPTION:  (DRY) tdnf install with noinput options
+#----------------------------------------------------------------------------------------------------------------------
+__tdnf_install_noinput() {
+
+    tdnf -y install "${@}" || return $?
+}   # ----------  end of function __tdnf_install_noinput  ----------
+
 #---  FUNCTION  -------------------------------------------------------------------------------------------------------
 #          NAME:  __git_clone_and_checkout
 #   DESCRIPTION:  (DRY) Helper function to clone and checkout salt to a
@@ -2582,7 +2743,7 @@ __activate_virtualenv() {
 #          NAME:  __install_pip_pkgs
 #   DESCRIPTION:  Return 0 or 1 if successfully able to install pip packages. Can provide a different python version to
 #                 install pip packages with. If $py_ver is not specified it will use the default python version.
-#    PARAMETERS:  pkgs, py_ver
+#    PARAMETERS:  pkgs, py_ver, upgrade
 #----------------------------------------------------------------------------------------------------------------------
 
 __install_pip_pkgs() {
@@ -2751,15 +2912,15 @@ EOM
     fi
 
     echodebug "Running '${_pip_cmd} install wheel ${_setuptools_dep}'"
-    ${_pip_cmd} install ${_POST_NEON_PIP_INSTALL_ARGS} wheel "${_setuptools_dep}"
+    ${_pip_cmd} install --upgrade ${_POST_NEON_PIP_INSTALL_ARGS} wheel "${_setuptools_dep}"
 
     echoinfo "Installing salt using ${_py_exe}"
     cd "${_SALT_GIT_CHECKOUT_DIR}" || return 1
 
     mkdir /tmp/git/deps
     echoinfo "Downloading Salt Dependencies from PyPi"
-    echodebug "Running '${_pip_cmd} download -d /tmp/git/deps .'"
-    ${_pip_cmd} download -d /tmp/git/deps . || (echo "Failed to download salt dependencies" && return 1)
+    echodebug "Running '${_pip_cmd} download -d /tmp/git/deps ${_PIP_DOWNLOAD_ARGS} .'"
+    ${_pip_cmd} download -d /tmp/git/deps ${_PIP_DOWNLOAD_ARGS} . || (echo "Failed to download salt dependencies" && return 1)
 
     echoinfo "Installing Downloaded Salt Dependencies"
     echodebug "Running '${_pip_cmd} install --ignore-installed ${_POST_NEON_PIP_INSTALL_ARGS} /tmp/git/deps/*'"
@@ -2918,7 +3079,8 @@ __enable_universe_repository() {
 __install_saltstack_ubuntu_repository() {
     # Workaround for latest non-LTS Ubuntu
     if { [ "$DISTRO_MAJOR_VERSION" -eq 20 ] && [ "$DISTRO_MINOR_VERSION" -eq 10 ]; } || \
-        { [ "$DISTRO_MAJOR_VERSION" -eq 21 ] && [ "$DISTRO_MINOR_VERSION" -eq 04 ]; }; then
+        # remove 22 version when salt packages for 22.04 are available
+        [ "$DISTRO_MAJOR_VERSION" -eq 21 ] ||  [ "$DISTRO_MAJOR_VERSION" -eq 22 ]; then
         echowarn "Non-LTS Ubuntu detected, but stable packages requested. Trying packages for previous LTS release. You may experience problems."
         UBUNTU_VERSION=20.04
         UBUNTU_CODENAME="focal"
@@ -2957,6 +3119,58 @@ __install_saltstack_ubuntu_repository() {
     __wait_for_apt apt-get update || return 1
 }
 
+__install_saltstack_ubuntu_onedir_repository() {
+    # Workaround for latest non-LTS Ubuntu
+    if { [ "$DISTRO_MAJOR_VERSION" -eq 20 ] && [ "$DISTRO_MINOR_VERSION" -eq 10 ]; } || \
+        [ "$DISTRO_MAJOR_VERSION" -eq 21 ]; then
+        echowarn "Non-LTS Ubuntu detected, but stable packages requested. Trying packages for previous LTS release. You may experience problems."
+        UBUNTU_VERSION=20.04
+        UBUNTU_CODENAME="focal"
+    else
+        UBUNTU_VERSION=${DISTRO_VERSION}
+        UBUNTU_CODENAME=${DISTRO_CODENAME}
+    fi
+
+    # Install downloader backend for GPG keys fetching
+    __PACKAGES='wget'
+
+    # Required as it is not installed by default on Ubuntu 18+
+    if [ "$DISTRO_MAJOR_VERSION" -ge 18 ]; then
+        __PACKAGES="${__PACKAGES} gnupg"
+    fi
+
+    # Make sure https transport is available
+    if [ "$HTTP_VAL" = "https" ] ; then
+        __PACKAGES="${__PACKAGES} apt-transport-https ca-certificates"
+    fi
+
+    # shellcheck disable=SC2086,SC2090
+    __apt_get_install_noinput ${__PACKAGES} || return 1
+
+    __PY_VERSION_REPO="apt"
+    if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
+        __PY_VERSION_REPO="py3"
+    fi
+
+    # SaltStack's stable Ubuntu repository:
+    SALTSTACK_UBUNTU_URL="${HTTP_VAL}://${_REPO_URL}/${_ONEDIR_DIR}/${__PY_VERSION_REPO}/ubuntu/${UBUNTU_VERSION}/${__REPO_ARCH}/${ONEDIR_REV}/"
+    if [ "${ONEDIR_REV}" = "nightly" ] ; then
+        SALTSTACK_UBUNTU_URL="${HTTP_VAL}://${_REPO_URL}/${_ONEDIR_NIGHTLY_DIR}/${__PY_VERSION_REPO}/ubuntu/${UBUNTU_VERSION}/${__REPO_ARCH}/"
+    fi
+    echo "$__REPO_ARCH_DEB $SALTSTACK_UBUNTU_URL $UBUNTU_CODENAME main" > /etc/apt/sources.list.d/salt.list
+
+    if [ "$(echo "${ONEDIR_REV}" | grep -E '(3004|3005)')" != "" ]; then
+      __apt_key_fetch "${SALTSTACK_UBUNTU_URL}salt-archive-keyring.gpg" || return 1
+    elif [ "$(echo "${ONEDIR_REV}" | grep -E '(latest|nightly)')" != "" ]; then
+      __apt_key_fetch "${SALTSTACK_UBUNTU_URL}salt-archive-keyring.gpg" || \
+      __apt_key_fetch "${SALTSTACK_UBUNTU_URL}SALT-PROJECT-GPG-PUBKEY-2023.gpg" || return 1
+    else
+      __apt_key_fetch "${SALTSTACK_UBUNTU_URL}SALT-PROJECT-GPG-PUBKEY-2023.gpg" || return 1
+    fi
+
+    __wait_for_apt apt-get update || return 1
+}
+
 install_ubuntu_deps() {
     if [ $_DISABLE_REPOS -eq $BS_FALSE ]; then
         # Install add-apt-repository
@@ -3032,7 +3246,7 @@ install_ubuntu_stable_deps() {
 
     if [ "${_UPGRADE_SYS}" -eq $BS_TRUE ]; then
         if [ "${_INSECURE_DL}" -eq $BS_TRUE ]; then
-            if [ "$DISTRO_MAJOR_VERSION" -ge 20 ] || [ "$DISTRO_MAJOR_VERSION" -ge 21 ]; then
+            if [ "$DISTRO_MAJOR_VERSION" -ge 20 ] || [ "$DISTRO_MAJOR_VERSION" -ge 21 ] || [ "$DISTRO_MAJOR_VERSION" -ge 22 ]; then
                 __apt_get_install_noinput --allow-unauthenticated debian-archive-keyring && apt-get update || return 1
             else
                 __apt_get_install_noinput --allow-unauthenticated debian-archive-keyring &&
@@ -3113,6 +3327,9 @@ install_ubuntu_git_deps() {
         fi
     else
         __PACKAGES="python${PY_PKG_VER}-dev python${PY_PKG_VER}-pip python${PY_PKG_VER}-setuptools gcc"
+        if [ "$DISTRO_MAJOR_VERSION" -ge 22 ]; then
+            __PACKAGES="${__PACKAGES} g++"
+        fi
         # shellcheck disable=SC2086
         __apt_get_install_noinput ${__PACKAGES} || return 1
     fi
@@ -3126,6 +3343,44 @@ install_ubuntu_git_deps() {
     return 0
 }
 
+install_ubuntu_onedir_deps() {
+    if [ "${_SLEEP}" -eq "${__DEFAULT_SLEEP}" ] && [ "$DISTRO_MAJOR_VERSION" -lt 16 ]; then
+        # The user did not pass a custom sleep value as an argument, let's increase the default value
+        echodebug "On Ubuntu systems we increase the default sleep value to 10."
+        echodebug "See https://github.com/saltstack/salt/issues/12248 for more info."
+        _SLEEP=10
+    fi
+
+    if [ $_START_DAEMONS -eq $BS_FALSE ]; then
+        echowarn "Not starting daemons on Debian based distributions is not working mostly because starting them is the default behaviour."
+    fi
+
+    # No user interaction, libc6 restart services for example
+    export DEBIAN_FRONTEND=noninteractive
+
+    __wait_for_apt apt-get update || return 1
+
+    if [ "${_UPGRADE_SYS}" -eq $BS_TRUE ]; then
+        if [ "${_INSECURE_DL}" -eq $BS_TRUE ]; then
+            if [ "$DISTRO_MAJOR_VERSION" -ge 20 ] || [ "$DISTRO_MAJOR_VERSION" -ge 21 ]; then
+                __apt_get_install_noinput --allow-unauthenticated debian-archive-keyring && apt-get update || return 1
+            else
+                __apt_get_install_noinput --allow-unauthenticated debian-archive-keyring &&
+                    apt-key update && apt-get update || return 1
+            fi
+        fi
+
+        __apt_get_upgrade_noinput || return 1
+    fi
+
+    if [ "$_DISABLE_REPOS" -eq "$BS_FALSE" ] || [ "$_CUSTOM_REPO_URL" != "null" ]; then
+        __check_dpkg_architecture || return 1
+        __install_saltstack_ubuntu_onedir_repository || return 1
+    fi
+
+    install_ubuntu_deps || return 1
+}
+
 install_ubuntu_stable() {
     __PACKAGES=""
 
@@ -3170,7 +3425,15 @@ install_ubuntu_git() {
         _POST_NEON_PIP_INSTALL_ARGS=""
         __install_salt_from_repo_post_neon "${_PY_EXE}" || return 1
         cd "${_SALT_GIT_CHECKOUT_DIR}" || return 1
-        sed -i 's:/usr/bin:/usr/local/bin:g' pkg/*.service
+
+        # Account for new path for services files in later releases
+        if [ -d "pkg/common" ]; then
+          _SERVICE_DIR="pkg/common"
+        else
+          _SERVICE_DIR="pkg"
+        fi
+
+        sed -i 's:/usr/bin:/usr/local/bin:g' ${_SERVICE_DIR}/*.service
         return 0
     fi
 
@@ -3185,6 +3448,28 @@ install_ubuntu_git() {
     return 0
 }
 
+install_ubuntu_onedir() {
+    __PACKAGES=""
+
+    if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ];then
+        __PACKAGES="${__PACKAGES} salt-cloud"
+    fi
+    if [ "$_INSTALL_MASTER" -eq $BS_TRUE ]; then
+        __PACKAGES="${__PACKAGES} salt-master"
+    fi
+    if [ "$_INSTALL_MINION" -eq $BS_TRUE ]; then
+        __PACKAGES="${__PACKAGES} salt-minion"
+    fi
+    if [ "$_INSTALL_SYNDIC" -eq $BS_TRUE ]; then
+        __PACKAGES="${__PACKAGES} salt-syndic"
+    fi
+
+    # shellcheck disable=SC2086
+    __apt_get_install_noinput ${__PACKAGES} || return 1
+
+    return 0
+}
+
 install_ubuntu_stable_post() {
     for fname in api master minion syndic; do
         # Skip salt-api since the service should be opt-in and not necessarily started on boot
@@ -3220,8 +3505,15 @@ install_ubuntu_git_post() {
         [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
         [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
 
+        # Account for new path for services files in later releases
+        if [ -f "${_SALT_GIT_CHECKOUT_DIR}/pkg/common/salt-${fname}.service" ]; then
+          _SERVICE_DIR="${_SALT_GIT_CHECKOUT_DIR}/pkg/common"
+        else
+          _SERVICE_DIR="${_SALT_GIT_CHECKOUT_DIR}/pkg"
+        fi
+
         if [ -f /bin/systemctl ] && [ "$DISTRO_MAJOR_VERSION" -ge 16 ]; then
-            __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/salt-${fname}.service" "/lib/systemd/system/salt-${fname}.service"
+            __copyfile "${_SERVICE_DIR}/salt-${fname}.service" "/lib/systemd/system/salt-${fname}.service"
 
             # Skip salt-api since the service should be opt-in and not necessarily started on boot
             [ $fname = "api" ] && continue
@@ -3236,8 +3528,8 @@ install_ubuntu_git_post() {
             if [ ! -f $_upstart_conf ]; then
                 # upstart does not know about our service, let's copy the proper file
                 echowarn "Upstart does not appear to know about salt-$fname"
-                echodebug "Copying ${_SALT_GIT_CHECKOUT_DIR}/pkg/salt-$fname.upstart to $_upstart_conf"
-                __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/salt-${fname}.upstart" "$_upstart_conf"
+                echodebug "Copying ${_SERVICE_DIR}/salt-$fname.upstart to $_upstart_conf"
+                __copyfile "${_SERVICE_DIR}/salt-${fname}.upstart" "$_upstart_conf"
                 # Set service to know about virtualenv
                 if [ "${_VIRTUALENV_DIR}" != "null" ]; then
                     echo "SALT_USE_VIRTUALENV=${_VIRTUALENV_DIR}" > /etc/default/salt-${fname}
@@ -3349,17 +3641,8 @@ install_ubuntu_check_services() {
 #   Debian Install Functions
 #
 __install_saltstack_debian_repository() {
-    if [ "$DISTRO_MAJOR_VERSION" -eq 11 ]; then
-        # Packages for Debian 11 at repo.saltproject.io are not yet available
-        # Set up repository for Debian 10 for Debian 11 for now until support
-        # is available at repo.saltproject.io for Debian 11.
-        echowarn "Debian 11 distribution detected, but stable packages requested. Trying packages from Debian 10. You may experience problems."
-        DEBIAN_RELEASE="10"
-        DEBIAN_CODENAME="buster"
-    else
-        DEBIAN_RELEASE="$DISTRO_MAJOR_VERSION"
-        DEBIAN_CODENAME="$DISTRO_CODENAME"
-    fi
+    DEBIAN_RELEASE="$DISTRO_MAJOR_VERSION"
+    DEBIAN_CODENAME="$DISTRO_CODENAME"
 
     __PY_VERSION_REPO="apt"
     if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
@@ -3391,6 +3674,50 @@ __install_saltstack_debian_repository() {
     __wait_for_apt apt-get update || return 1
 }
 
+__install_saltstack_debian_onedir_repository() {
+    DEBIAN_RELEASE="$DISTRO_MAJOR_VERSION"
+    DEBIAN_CODENAME="$DISTRO_CODENAME"
+
+    __PY_VERSION_REPO="apt"
+    if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
+        __PY_VERSION_REPO="py3"
+    fi
+
+    # Install downloader backend for GPG keys fetching
+    __PACKAGES='wget'
+
+    # Required as it is not installed by default on Debian 9+
+    if [ "$DISTRO_MAJOR_VERSION" -ge 9 ]; then
+        __PACKAGES="${__PACKAGES} gnupg2"
+    fi
+
+    # Make sure https transport is available
+    if [ "$HTTP_VAL" = "https" ] ; then
+        __PACKAGES="${__PACKAGES} apt-transport-https ca-certificates"
+    fi
+
+    # shellcheck disable=SC2086,SC2090
+    __apt_get_install_noinput ${__PACKAGES} || return 1
+
+    # amd64 is just a part of repository URI, 32-bit pkgs are hosted under the same location
+    SALTSTACK_DEBIAN_URL="${HTTP_VAL}://${_REPO_URL}/${_ONEDIR_DIR}/${__PY_VERSION_REPO}/debian/${DEBIAN_RELEASE}/${__REPO_ARCH}/${ONEDIR_REV}/"
+    if [ "${ONEDIR_REV}" = "nightly" ] ; then
+        SALTSTACK_DEBIAN_URL="${HTTP_VAL}://${_REPO_URL}/${_ONEDIR_NIGHTLY_DIR}/${__PY_VERSION_REPO}/debian/${DEBIAN_RELEASE}/${__REPO_ARCH}/"
+    fi
+    echo "$__REPO_ARCH_DEB $SALTSTACK_DEBIAN_URL $DEBIAN_CODENAME main" > "/etc/apt/sources.list.d/salt.list"
+
+    if [ "$(echo "${ONEDIR_REV}" | grep -E '(3004|3005)')" != "" ]; then
+      __apt_key_fetch "${SALTSTACK_DEBIAN_URL}salt-archive-keyring.gpg" || return 1
+    elif [ "$(echo "${ONEDIR_REV}" | grep -E '(latest|nightly)')" != "" ]; then
+      __apt_key_fetch "${SALTSTACK_DEBIAN_URL}salt-archive-keyring.gpg" || \
+      __apt_key_fetch "${SALTSTACK_DEBIAN_URL}SALT-PROJECT-GPG-PUBKEY-2023.gpg" || return 1
+    else
+      __apt_key_fetch "${SALTSTACK_DEBIAN_URL}SALT-PROJECT-GPG-PUBKEY-2023.gpg" || return 1
+    fi
+
+    __wait_for_apt apt-get update || return 1
+}
+
 install_debian_deps() {
     if [ $_START_DAEMONS -eq $BS_FALSE ]; then
         echowarn "Not starting daemons on Debian based distributions is not working mostly because starting them is the default behaviour."
@@ -3444,6 +3771,59 @@ install_debian_deps() {
     return 0
 }
 
+install_debian_onedir_deps() {
+    if [ $_START_DAEMONS -eq $BS_FALSE ]; then
+        echowarn "Not starting daemons on Debian based distributions is not working mostly because starting them is the default behaviour."
+    fi
+
+    # No user interaction, libc6 restart services for example
+    export DEBIAN_FRONTEND=noninteractive
+
+    __wait_for_apt apt-get update || return 1
+
+    if [ "${_UPGRADE_SYS}" -eq $BS_TRUE ]; then
+        # Try to update GPG keys first if allowed
+        if [ "${_INSECURE_DL}" -eq $BS_TRUE ]; then
+            if [ "$DISTRO_MAJOR_VERSION" -ge 10 ]; then
+                __apt_get_install_noinput --allow-unauthenticated debian-archive-keyring && apt-get update || return 1
+            else
+                __apt_get_install_noinput --allow-unauthenticated debian-archive-keyring &&
+                    apt-key update && apt-get update || return 1
+            fi
+        fi
+
+        __apt_get_upgrade_noinput || return 1
+    fi
+
+    if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
+        PY_PKG_VER=3
+    else
+        PY_PKG_VER=""
+    fi
+
+    # Additionally install procps and pciutils which allows for Docker bootstraps. See 366#issuecomment-39666813
+    __PACKAGES='procps pciutils'
+
+    # YAML module is used for generating custom master/minion configs
+    __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-yaml"
+
+    # shellcheck disable=SC2086
+    __apt_get_install_noinput ${__PACKAGES} || return 1
+
+    if [ "$_DISABLE_REPOS" -eq "$BS_FALSE" ] || [ "$_CUSTOM_REPO_URL" != "null" ]; then
+        __check_dpkg_architecture || return 1
+        __install_saltstack_debian_onedir_repository || return 1
+    fi
+
+    if [ "${_EXTRA_PACKAGES}" != "" ]; then
+        echoinfo "Installing the following extra packages as requested: ${_EXTRA_PACKAGES}"
+        # shellcheck disable=SC2086
+        __apt_get_install_noinput ${_EXTRA_PACKAGES} || return 1
+    fi
+
+    return 0
+}
+
 install_debian_git_pre() {
     if ! __check_command_exists git; then
         __apt_get_install_noinput git || return 1
@@ -3692,7 +4072,15 @@ install_debian_git() {
         _POST_NEON_PIP_INSTALL_ARGS=""
         __install_salt_from_repo_post_neon "${_PY_EXE}" || return 1
         cd "${_SALT_GIT_CHECKOUT_DIR}" || return 1
-        sed -i 's:/usr/bin:/usr/local/bin:g' pkg/*.service
+
+        # Account for new path for services files in later releases
+        if [ -d "pkg/common" ]; then
+          _SERVICE_DIR="pkg/common"
+        else
+          _SERVICE_DIR="pkg"
+        fi
+
+        sed -i 's:/usr/bin:/usr/local/bin:g' ${_SERVICE_DIR}/*.service
         return 0
     fi
 
@@ -3720,6 +4108,28 @@ install_debian_9_git() {
     return 0
 }
 
+install_debian_onedir() {
+    __PACKAGES=""
+
+    if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ];then
+        __PACKAGES="${__PACKAGES} salt-cloud"
+    fi
+    if [ "$_INSTALL_MASTER" -eq $BS_TRUE ]; then
+        __PACKAGES="${__PACKAGES} salt-master"
+    fi
+    if [ "$_INSTALL_MINION" -eq $BS_TRUE ]; then
+        __PACKAGES="${__PACKAGES} salt-minion"
+    fi
+    if [ "$_INSTALL_SYNDIC" -eq $BS_TRUE ]; then
+        __PACKAGES="${__PACKAGES} salt-syndic"
+    fi
+
+    # shellcheck disable=SC2086
+    __apt_get_install_noinput ${__PACKAGES} || return 1
+
+    return 0
+}
+
 install_debian_git_post() {
     for fname in api master minion syndic; do
         # Skip if not meant to be installed
@@ -3729,16 +4139,23 @@ install_debian_git_post() {
         [ "$fname" = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
         [ "$fname" = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
 
+        # Account for new path for services files in later releases
+        if [ -f "${_SALT_GIT_CHECKOUT_DIR}/pkg/common/salt-${fname}.service" ]; then
+          _SERVICE_DIR="${_SALT_GIT_CHECKOUT_DIR}/pkg/common"
+        else
+          _SERVICE_DIR="${_SALT_GIT_CHECKOUT_DIR}/pkg"
+        fi
+
         # Configure SystemD for Debian 8 "Jessie" and later
         if [ -f /bin/systemctl ]; then
             if [ ! -f /lib/systemd/system/salt-${fname}.service ] || \
                 { [ -f /lib/systemd/system/salt-${fname}.service ] && [ $_FORCE_OVERWRITE -eq $BS_TRUE ]; }; then
-                if [ -f "${_SALT_GIT_CHECKOUT_DIR}/pkg/salt-${fname}.service" ]; then
-                    __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/salt-${fname}.service" /lib/systemd/system
-                    __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/salt-${fname}.environment" "/etc/default/salt-${fname}"
+                if [ -f "${_SERVICE_DIR}/salt-${fname}.service" ]; then
+                    __copyfile "${_SERVICE_DIR}/salt-${fname}.service" /lib/systemd/system
+                    __copyfile "${_SERVICE_DIR}/salt-${fname}.environment" "/etc/default/salt-${fname}"
                 else
                     # workaround before adding Debian-specific unit files to the Salt main repo
-                    __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/salt-${fname}.service" /lib/systemd/system
+                    __copyfile "${_SERVICE_DIR}/salt-${fname}.service" /lib/systemd/system
                     sed -i -e '/^Type/ s/notify/simple/' /lib/systemd/system/salt-${fname}.service
                 fi
             fi
@@ -3770,6 +4187,13 @@ install_debian_git_post() {
     done
 }
 
+install_debian_2021_post() {
+    # Kali 2021 (debian derivative) disables all network services by default
+    # Using archlinux post function to enable salt systemd services
+    install_arch_linux_post || return 1
+    return 0
+}
+
 install_debian_restart_daemons() {
     [ "$_START_DAEMONS" -eq $BS_FALSE ] && return 0
 
@@ -3826,6 +4250,41 @@ install_debian_check_services() {
 #   Fedora Install Functions
 #
 
+__install_saltstack_fedora_onedir_repository() {
+    if [ "$ITYPE" = "stable" ]; then
+        REPO_REV="$ONEDIR_REV"
+    else
+        REPO_REV="latest"
+    fi
+
+    __PY_VERSION_REPO="yum"
+    if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
+        __PY_VERSION_REPO="py3"
+    fi
+
+    GPG_KEY="SALT-PROJECT-GPG-PUBKEY-2023.pub"
+
+    REPO_FILE="/etc/yum.repos.d/salt.repo"
+
+    if [ ! -s "$REPO_FILE" ] || [ "$_FORCE_OVERWRITE" -eq $BS_TRUE ]; then
+        FETCH_URL="${HTTP_VAL}://${_REPO_URL}/${_ONEDIR_DIR}/${__PY_VERSION_REPO}/fedora/${DISTRO_MAJOR_VERSION}/${CPU_ARCH_L}/${ONEDIR_REV}"
+        if [ "${ONEDIR_REV}" = "nightly" ] ; then
+            FETCH_URL="${HTTP_VAL}://${_REPO_URL}/${_ONEDIR_NIGHTLY_DIR}/${__PY_VERSION_REPO}/fedora/${DISTRO_MAJOR_VERSION}/${CPU_ARCH_L}/"
+        fi
+
+        __fetch_url "${REPO_FILE}" "${FETCH_URL}.repo"
+
+        __rpm_import_gpg "${FETCH_URL}/${GPG_KEY}" || return 1
+
+        yum clean metadata || return 1
+    elif [ "$REPO_REV" != "latest" ]; then
+        echowarn "salt.repo already exists, ignoring salt version argument."
+        echowarn "Use -F (forced overwrite) to install $REPO_REV."
+    fi
+
+    return 0
+}
+
 install_fedora_deps() {
     if [ "$_UPGRADE_SYS" -eq $BS_TRUE ]; then
         dnf -y update || return 1
@@ -3985,6 +4444,9 @@ install_fedora_git_deps() {
             done
     else
         __PACKAGES="python${PY_PKG_VER}-devel python${PY_PKG_VER}-pip python${PY_PKG_VER}-setuptools gcc"
+        if [ "${DISTRO_VERSION}" -ge 35 ]; then
+            __PACKAGES="${__PACKAGES} gcc-c++"
+        fi
         # shellcheck disable=SC2086
         __dnf_install_noinput ${__PACKAGES} || return 1
     fi
@@ -4028,7 +4490,18 @@ install_fedora_git_post() {
         [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
         [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
 
-        __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/rpm/salt-${fname}.service" "/lib/systemd/system/salt-${fname}.service"
+        # Account for new path for services files in later releases
+        if [ -f "${_SALT_GIT_CHECKOUT_DIR}/pkg/common/salt-${fname}.service" ]; then
+          _SERVICE_DIR="${_SALT_GIT_CHECKOUT_DIR}/pkg/common"
+        else
+          _SERVICE_DIR="${_SALT_GIT_CHECKOUT_DIR}/pkg/rpm"
+        fi
+        __copyfile "${_SERVICE_DIR}/salt-${fname}.service" "/lib/systemd/system/salt-${fname}.service"
+
+        # Salt executables are located under `/usr/local/bin/` on Fedora 36+
+        #if [ "${DISTRO_VERSION}" -ge 36 ]; then
+        #  sed -i -e 's:/usr/bin/:/usr/local/bin/:g' /lib/systemd/system/salt-*.service
+        #fi
 
         # Skip salt-api since the service should be opt-in and not necessarily started on boot
         [ $fname = "api" ] && continue
@@ -4076,6 +4549,83 @@ install_fedora_check_services() {
 
     return 0
 }
+
+install_fedora_onedir_deps() {
+
+    if [ "$_UPGRADE_SYS" -eq $BS_TRUE ]; then
+        yum -y update || return 1
+    fi
+
+    if [ "$_DISABLE_REPOS" -eq "$BS_TRUE" ] && [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
+        echowarn "Detected -r or -R option while installing Salt packages for Python 3."
+        echowarn "Python 3 packages for older Salt releases requires the EPEL repository to be installed."
+        echowarn "Installing the EPEL repository automatically is disabled when using the -r or -R options."
+    fi
+
+    if [ "$_DISABLE_REPOS" -eq "$BS_FALSE" ]; then
+        __install_saltstack_fedora_onedir_repository || return 1
+    fi
+
+    # If -R was passed, we need to configure custom repo url with rsync-ed packages
+    # Which is still handled in __install_saltstack_rhel_repository. This call has
+    # its own check in case -r was passed without -R.
+    if [ "$_CUSTOM_REPO_URL" != "null" ]; then
+        __install_saltstack_fedora_onedir_repository || return 1
+    fi
+
+    if [ "$DISTRO_MAJOR_VERSION" -ge 8 ]; then
+        __PACKAGES="dnf-utils chkconfig"
+    else
+        __PACKAGES="yum-utils chkconfig"
+    fi
+
+    __PACKAGES="${__PACKAGES} procps"
+
+    # shellcheck disable=SC2086
+    __yum_install_noinput ${__PACKAGES} || return 1
+
+    if [ "${_EXTRA_PACKAGES}" != "" ]; then
+        echoinfo "Installing the following extra packages as requested: ${_EXTRA_PACKAGES}"
+        # shellcheck disable=SC2086
+        __yum_install_noinput ${_EXTRA_PACKAGES} || return 1
+    fi
+
+    return 0
+
+}
+
+
+install_fedora_onedir() {
+    STABLE_REV=$ONEDIR_REV
+    #install_fedora_stable || return 1
+
+    __PACKAGES=""
+
+    if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ];then
+        __PACKAGES="${__PACKAGES} salt-cloud"
+    fi
+    if [ "$_INSTALL_MASTER" -eq $BS_TRUE ];then
+        __PACKAGES="${__PACKAGES} salt-master"
+    fi
+    if [ "$_INSTALL_MINION" -eq $BS_TRUE ]; then
+        __PACKAGES="${__PACKAGES} salt-minion"
+    fi
+    if [ "$_INSTALL_SYNDIC" -eq $BS_TRUE ];then
+        __PACKAGES="${__PACKAGES} salt-syndic"
+    fi
+
+    # shellcheck disable=SC2086
+    __yum_install_noinput ${__PACKAGES} || return 1
+
+    return 0
+}
+
+install_fedora_onedir_post() {
+    STABLE_REV=$ONEDIR_REV
+    install_fedora_stable_post || return 1
+
+    return 0
+}
 #
 #   Ended Fedora Install Functions
 #
@@ -4085,27 +4635,13 @@ install_fedora_check_services() {
 #
 #   CentOS Install Functions
 #
-__install_epel_repository() {
-    if [ ${_EPEL_REPOS_INSTALLED} -eq $BS_TRUE ]; then
-        return 0
-    fi
-
-    # Check if epel repo is already enabled and flag it accordingly
-    if yum repolist | grep -q "^[!]\\?${_EPEL_REPO}/"; then
-        _EPEL_REPOS_INSTALLED=$BS_TRUE
-        return 0
-    fi
-
-    # Download latest 'epel-release' package for the distro version directly
-    epel_repo_url="${HTTP_VAL}://dl.fedoraproject.org/pub/epel/epel-release-latest-${DISTRO_MAJOR_VERSION}.noarch.rpm"
-    rpm -Uvh --force "$epel_repo_url" || return 1
-
-    _EPEL_REPOS_INSTALLED=$BS_TRUE
-
-    return 0
-}
-
 __install_saltstack_rhel_repository() {
+  if [ "${DISTRO_MAJOR_VERSION}" -ge 9 ]; then
+    echoerror "Old stable repository unavailable on RH variants greater than or equal to 9"
+    echoerror "Use the stable install type."
+    exit 1
+  fi
+
     if [ "$ITYPE" = "stable" ]; then
         repo_rev="$STABLE_REV"
     else
@@ -4120,7 +4656,19 @@ __install_saltstack_rhel_repository() {
     # Avoid using '$releasever' variable for yum.
     # Instead, this should work correctly on all RHEL variants.
     base_url="${HTTP_VAL}://${_REPO_URL}/${__PY_VERSION_REPO}/redhat/${DISTRO_MAJOR_VERSION}/\$basearch/${repo_rev}/"
-    gpg_key="SALTSTACK-GPG-KEY.pub"
+    if [ "${DISTRO_MAJOR_VERSION}" -eq 7 ]; then
+        gpg_key="SALTSTACK-GPG-KEY.pub base/RPM-GPG-KEY-CentOS-7"
+    elif [ "${DISTRO_MAJOR_VERSION}" -ge 9 ]; then
+        gpg_key="SALTSTACK-GPG-KEY2.pub"
+    else
+        gpg_key="SALTSTACK-GPG-KEY.pub"
+    fi
+
+    gpg_key_urls=""
+    for key in $gpg_key; do
+        gpg_key_urls=$(printf "${base_url}${key},%s" "$gpg_key_urls")
+    done
+
     repo_file="/etc/yum.repos.d/salt.repo"
 
     if [ ! -s "$repo_file" ] || [ "$_FORCE_OVERWRITE" -eq $BS_TRUE ]; then
@@ -4130,13 +4678,80 @@ name=SaltStack ${repo_rev} Release Channel for RHEL/CentOS \$releasever
 baseurl=${base_url}
 skip_if_unavailable=True
 gpgcheck=1
-gpgkey=${base_url}${gpg_key}
+gpgkey=${gpg_key_urls}
 enabled=1
 enabled_metadata=1
 _eof
 
         fetch_url="${HTTP_VAL}://${_REPO_URL}/${__PY_VERSION_REPO}/redhat/${DISTRO_MAJOR_VERSION}/${CPU_ARCH_L}/${repo_rev}/"
-        __rpm_import_gpg "${fetch_url}${gpg_key}" || return 1
+        for key in $gpg_key; do
+            __rpm_import_gpg "${fetch_url}${key}" || return 1
+        done
+
+        yum clean metadata || return 1
+    elif [ "$repo_rev" != "latest" ]; then
+        echowarn "salt.repo already exists, ignoring salt version argument."
+        echowarn "Use -F (forced overwrite) to install $repo_rev."
+    fi
+
+    return 0
+}
+
+__install_saltstack_rhel_onedir_repository() {
+    if [ "$ITYPE" = "stable" ]; then
+        repo_rev="$ONEDIR_REV"
+    else
+        repo_rev="latest"
+    fi
+
+    __PY_VERSION_REPO="yum"
+    if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
+        __PY_VERSION_REPO="py3"
+    fi
+
+    # Avoid using '$releasever' variable for yum.
+    # Instead, this should work correctly on all RHEL variants.
+    base_url="${HTTP_VAL}://${_REPO_URL}/${_ONEDIR_DIR}/${__PY_VERSION_REPO}/redhat/${DISTRO_MAJOR_VERSION}/\$basearch/${ONEDIR_REV}/"
+    if [ "${ONEDIR_REV}" = "nightly" ] ; then
+        base_url="${HTTP_VAL}://${_REPO_URL}/${_ONEDIR_NIGHTLY_DIR}/${__PY_VERSION_REPO}/redhat/${DISTRO_MAJOR_VERSION}/\$basearch/"
+    fi
+    if [ "$(echo "${ONEDIR_REV}" | grep -E '(3004|3005)')" != "" ] || [ "${ONEDIR_REV}" = "nightly" ]; then
+      if [ "${DISTRO_MAJOR_VERSION}" -eq 9 ]; then
+          gpg_key="SALTSTACK-GPG-KEY2.pub"
+      else
+          gpg_key="SALTSTACK-GPG-KEY.pub"
+      fi
+    else
+        gpg_key="SALT-PROJECT-GPG-PUBKEY-2023.pub"
+    fi
+
+    gpg_key_urls=""
+    for key in $gpg_key; do
+        gpg_key_urls=$(printf "${base_url}${key},%s" "$gpg_key_urls")
+    done
+
+    repo_file="/etc/yum.repos.d/salt.repo"
+
+    if [ ! -s "$repo_file" ] || [ "$_FORCE_OVERWRITE" -eq $BS_TRUE ]; then
+        cat <<_eof > "$repo_file"
+[saltstack]
+name=SaltStack ${repo_rev} Release Channel for RHEL/CentOS \$releasever
+baseurl=${base_url}
+skip_if_unavailable=True
+gpgcheck=1
+gpgkey=${gpg_key_urls}
+enabled=1
+enabled_metadata=1
+_eof
+
+        fetch_url="${HTTP_VAL}://${_REPO_URL}/${_ONEDIR_DIR}/${__PY_VERSION_REPO}/redhat/${DISTRO_MAJOR_VERSION}/${CPU_ARCH_L}/${ONEDIR_REV}/"
+        if [ "${ONEDIR_REV}" = "nightly" ] ; then
+            fetch_url="${HTTP_VAL}://${_REPO_URL}/${_ONEDIR_NIGHTLY_DIR}/${__PY_VERSION_REPO}/redhat/${DISTRO_MAJOR_VERSION}/${CPU_ARCH_L}/"
+        fi
+        for key in $gpg_key; do
+            __rpm_import_gpg "${fetch_url}${key}" || return 1
+        done
+
         yum clean metadata || return 1
     elif [ "$repo_rev" != "latest" ]; then
         echowarn "salt.repo already exists, ignoring salt version argument."
@@ -4158,7 +4773,6 @@ install_centos_stable_deps() {
     fi
 
     if [ "$_DISABLE_REPOS" -eq "$BS_FALSE" ]; then
-        __install_epel_repository || return 1
         __install_saltstack_rhel_repository || return 1
     fi
 
@@ -4179,27 +4793,29 @@ install_centos_stable_deps() {
         if [ "$DISTRO_MAJOR_VERSION" -ge 8 ]; then
             # YAML module is used for generating custom master/minion configs
             if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
-                __PACKAGES="${__PACKAGES} python3-pyyaml"
+                __PACKAGES="${__PACKAGES} python3-pyyaml python3-setuptools"
             else
                 __PACKAGES="${__PACKAGES} python2-pyyaml"
             fi
         elif [ "$DISTRO_MAJOR_VERSION" -eq 7 ]; then
             # YAML module is used for generating custom master/minion configs
             if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
-                __PACKAGES="${__PACKAGES} python36-PyYAML"
+                __PACKAGES="${__PACKAGES} python36-PyYAML python36-setuptools"
             else
                 __PACKAGES="${__PACKAGES} PyYAML"
             fi
         else
             # YAML module is used for generating custom master/minion configs
             if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
-                __PACKAGES="${__PACKAGES} python34-PyYAML"
+                __PACKAGES="${__PACKAGES} python34-PyYAML python34-setuptools"
             else
                 __PACKAGES="${__PACKAGES} PyYAML"
             fi
         fi
     fi
 
+    __PACKAGES="${__PACKAGES} procps"
+
     # shellcheck disable=SC2086
     __yum_install_noinput ${__PACKAGES} || return 1
 
@@ -4216,40 +4832,29 @@ install_centos_stable_deps() {
 install_centos_stable() {
     __PACKAGES=""
 
-    local cloud='salt-cloud'
-    local master='salt-master'
-    local minion='salt-minion'
-    local syndic='salt-syndic'
-
-    if echo "$STABLE_REV" | grep -q "archive";then # point release being applied
-        local ver=$(echo "$STABLE_REV"|awk -F/ '{print $2}') # strip archive/
-    elif echo "$STABLE_REV" | egrep -vq "archive|latest";then # latest or major version(3003, 3004, etc) being applie
-        local ver=$STABLE_REV
-    fi
-
-    if [ ! -z $ver ]; then
-        cloud+="-$ver"
-        master+="-$ver"
-        minion+="-$ver"
-        syndic+="-$ver"
-    fi
-
     if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ];then
-        __PACKAGES="${__PACKAGES} $cloud"
+        __PACKAGES="${__PACKAGES} salt-cloud"
     fi
     if [ "$_INSTALL_MASTER" -eq $BS_TRUE ];then
-        __PACKAGES="${__PACKAGES} $master"
+        __PACKAGES="${__PACKAGES} salt-master"
     fi
     if [ "$_INSTALL_MINION" -eq $BS_TRUE ]; then
-        __PACKAGES="${__PACKAGES} $minion"
+        __PACKAGES="${__PACKAGES} salt-minion"
     fi
     if [ "$_INSTALL_SYNDIC" -eq $BS_TRUE ];then
-        __PACKAGES="${__PACKAGES} $syndic"
+        __PACKAGES="${__PACKAGES} salt-syndic"
     fi
 
     # shellcheck disable=SC2086
     __yum_install_noinput ${__PACKAGES} || return 1
 
+    # Workaround for 3.11 broken on CentOS Stream 8.x
+    # Re-install Python 3.6
+    _py_version=$(${_PY_EXE} -c "import sys; print('{0}.{1}'.format(*sys.version_info))")
+    if [ "$DISTRO_MAJOR_VERSION" -eq 8 ] && [ "${_py_version}" = "3.11" ]; then
+      __yum_install_noinput python3
+    fi
+
     return 0
 }
 
@@ -4285,7 +4890,14 @@ install_centos_stable_post() {
 }
 
 install_centos_git_deps() {
-    install_centos_stable_deps || return 1
+    # First try stable deps then fall back to onedir deps if that one fails
+    # if we're installing on a Red Hat based host that doesn't have the classic
+    # package repos available.
+    # Set ONEDIR_REV to STABLE_REV in case we
+    # end up calling install_centos_onedir_deps
+    ONEDIR_REV=${STABLE_REV}
+    install_centos_onedir_deps || \
+    return 1
 
     if [ "$_INSECURE_DL" -eq $BS_FALSE ] && [ "${_SALT_REPO_URL%%://*}" = "https" ]; then
         __yum_install_noinput ca-certificates || return 1
@@ -4445,10 +5057,16 @@ install_centos_git_post() {
         [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
         [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
 
+        # Account for new path for services files in later releases
+        if [ -f "${_SALT_GIT_CHECKOUT_DIR}/pkg/common/salt-${fname}.service" ]; then
+          _SERVICE_FILE="${_SALT_GIT_CHECKOUT_DIR}/pkg/common/salt-${fname}.service"
+        else
+          _SERVICE_FILE="${_SALT_GIT_CHECKOUT_DIR}/pkg/rpm/salt-${fname}.service"
+        fi
         if [ -f /bin/systemctl ]; then
             if [ ! -f "/usr/lib/systemd/system/salt-${fname}.service" ] || \
                 { [ -f "/usr/lib/systemd/system/salt-${fname}.service" ] && [ "$_FORCE_OVERWRITE" -eq $BS_TRUE ]; }; then
-                __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/rpm/salt-${fname}.service" /usr/lib/systemd/system
+                __copyfile "${_SERVICE_FILE}" /usr/lib/systemd/system
             fi
 
             SYSTEMD_RELOAD=$BS_TRUE
@@ -4468,6 +5086,117 @@ install_centos_git_post() {
     return 0
 }
 
+install_centos_onedir_deps() {
+    if [ "$_UPGRADE_SYS" -eq $BS_TRUE ]; then
+        yum -y update || return 1
+    fi
+
+    if [ "$_DISABLE_REPOS" -eq "$BS_TRUE" ] && [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
+        echowarn "Detected -r or -R option while installing Salt packages for Python 3."
+        echowarn "Python 3 packages for older Salt releases requires the EPEL repository to be installed."
+        echowarn "Installing the EPEL repository automatically is disabled when using the -r or -R options."
+    fi
+
+    if [ "$_DISABLE_REPOS" -eq "$BS_FALSE" ]; then
+        __install_saltstack_rhel_onedir_repository || return 1
+    fi
+
+    # If -R was passed, we need to configure custom repo url with rsync-ed packages
+    # Which is still handled in __install_saltstack_rhel_repository. This call has
+    # its own check in case -r was passed without -R.
+    if [ "$_CUSTOM_REPO_URL" != "null" ]; then
+        __install_saltstack_rhel_onedir_repository || return 1
+    fi
+
+    if [ "$DISTRO_MAJOR_VERSION" -ge 8 ]; then
+        __PACKAGES="dnf-utils chkconfig"
+    else
+        __PACKAGES="yum-utils chkconfig"
+    fi
+
+    __PACKAGES="${__PACKAGES} procps"
+
+    # shellcheck disable=SC2086
+    __yum_install_noinput ${__PACKAGES} || return 1
+
+    if [ "${_EXTRA_PACKAGES}" != "" ]; then
+        echoinfo "Installing the following extra packages as requested: ${_EXTRA_PACKAGES}"
+        # shellcheck disable=SC2086
+        __yum_install_noinput ${_EXTRA_PACKAGES} || return 1
+    fi
+
+
+    return 0
+}
+
+# This function has been modified to allow for specific versions to be installed
+# when not using the salt repo
+install_centos_onedir() {
+    __PACKAGES=""
+
+    local cloud='salt-cloud'
+    local master='salt-master'
+    local minion='salt-minion'
+    local syndic='salt-syndic'
+    local ver="$_ONEDIR_REV"
+
+    if [ ! -z $ver ]; then
+        cloud+="-$ver"
+        master+="-$ver"
+        minion+="-$ver"
+        syndic+="-$ver"
+    fi
+
+    if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ];then
+        __PACKAGES="${__PACKAGES} $cloud"
+    fi
+    if [ "$_INSTALL_MASTER" -eq $BS_TRUE ];then
+        __PACKAGES="${__PACKAGES} $master"
+    fi
+    if [ "$_INSTALL_MINION" -eq $BS_TRUE ]; then
+        __PACKAGES="${__PACKAGES} $minion"
+    fi
+    if [ "$_INSTALL_SYNDIC" -eq $BS_TRUE ];then
+        __PACKAGES="${__PACKAGES} $syndic"
+    fi
+
+    # shellcheck disable=SC2086
+    __yum_install_noinput ${__PACKAGES} || return 1
+
+    return 0
+}
+
+install_centos_onedir_post() {
+    SYSTEMD_RELOAD=$BS_FALSE
+
+    for fname in api master minion syndic; do
+        # Skip salt-api since the service should be opt-in and not necessarily started on boot
+        [ $fname = "api" ] && continue
+
+        # Skip if not meant to be installed
+        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
+        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
+        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
+
+        if [ -f /bin/systemctl ]; then
+            /bin/systemctl is-enabled salt-${fname}.service > /dev/null 2>&1 || (
+                /bin/systemctl preset salt-${fname}.service > /dev/null 2>&1 &&
+                /bin/systemctl enable salt-${fname}.service > /dev/null 2>&1
+            )
+
+            SYSTEMD_RELOAD=$BS_TRUE
+        elif [ -f "/etc/init.d/salt-${fname}" ]; then
+            /sbin/chkconfig salt-${fname} on
+        fi
+    done
+
+    if [ "$SYSTEMD_RELOAD" -eq $BS_TRUE ]; then
+        /bin/systemctl daemon-reload
+    fi
+
+    return 0
+}
+
 install_centos_restart_daemons() {
     [ $_START_DAEMONS -eq $BS_FALSE ] && return
 
@@ -4567,6 +5296,11 @@ install_red_hat_linux_git_deps() {
     return 0
 }
 
+install_red_hat_linux_onedir_deps() {
+    install_centos_onedir_deps || return 1
+    return 0
+}
+
 install_red_hat_enterprise_stable_deps() {
     install_red_hat_linux_stable_deps || return 1
     return 0
@@ -4577,6 +5311,11 @@ install_red_hat_enterprise_git_deps() {
     return 0
 }
 
+install_red_hat_enterprise_onedir_deps() {
+    install_red_hat_linux_onedir_deps || return 1
+    return 0
+}
+
 install_red_hat_enterprise_linux_stable_deps() {
     install_red_hat_linux_stable_deps || return 1
     return 0
@@ -4587,6 +5326,11 @@ install_red_hat_enterprise_linux_git_deps() {
     return 0
 }
 
+install_red_hat_enterprise_linux_onedir_deps() {
+    install_red_hat_linux_onedir_deps || return 1
+    return 0
+}
+
 install_red_hat_enterprise_server_stable_deps() {
     install_red_hat_linux_stable_deps || return 1
     return 0
@@ -4597,6 +5341,11 @@ install_red_hat_enterprise_server_git_deps() {
     return 0
 }
 
+install_red_hat_enterprise_server_onedir_deps() {
+    install_red_hat_linux_onedir_deps || return 1
+    return 0
+}
+
 install_red_hat_enterprise_workstation_stable_deps() {
     install_red_hat_linux_stable_deps || return 1
     return 0
@@ -4607,6 +5356,11 @@ install_red_hat_enterprise_workstation_git_deps() {
     return 0
 }
 
+install_red_hat_enterprise_workstation_onedir_deps() {
+    install_red_hat_linux_timat_deps || return 1
+    return 0
+}
+
 install_red_hat_linux_stable() {
     install_centos_stable || return 1
     return 0
@@ -4617,6 +5371,11 @@ install_red_hat_linux_git() {
     return 0
 }
 
+install_red_hat_linux_onedir() {
+    install_centos_onedir || return 1
+    return 0
+}
+
 install_red_hat_enterprise_stable() {
     install_red_hat_linux_stable || return 1
     return 0
@@ -4627,6 +5386,11 @@ install_red_hat_enterprise_git() {
     return 0
 }
 
+install_red_hat_enterprise_onedir() {
+    install_red_hat_linux_onedir || return 1
+    return 0
+}
+
 install_red_hat_enterprise_linux_stable() {
     install_red_hat_linux_stable || return 1
     return 0
@@ -4637,6 +5401,11 @@ install_red_hat_enterprise_linux_git() {
     return 0
 }
 
+install_red_hat_enterprise_linux_onedir() {
+    install_red_hat_linux_onedir || return 1
+    return 0
+}
+
 install_red_hat_enterprise_server_stable() {
     install_red_hat_linux_stable || return 1
     return 0
@@ -4647,6 +5416,11 @@ install_red_hat_enterprise_server_git() {
     return 0
 }
 
+install_red_hat_enterprise_server_onedir() {
+    install_red_hat_linux_onedir || return 1
+    return 0
+}
+
 install_red_hat_enterprise_workstation_stable() {
     install_red_hat_linux_stable || return 1
     return 0
@@ -4657,6 +5431,11 @@ install_red_hat_enterprise_workstation_git() {
     return 0
 }
 
+install_red_hat_enterprise_workstation_onedir() {
+    install_red_hat_linux_onedir || return 1
+    return 0
+}
+
 install_red_hat_linux_stable_post() {
     install_centos_stable_post || return 1
     return 0
@@ -4801,6 +5580,15 @@ install_red_hat_enterprise_workstation_testing_post() {
 #   Oracle Linux Install Functions
 #
 install_oracle_linux_stable_deps() {
+    # Install Oracle's EPEL.
+    if [ ${_EPEL_REPOS_INSTALLED} -eq $BS_FALSE ]; then
+        _EPEL_REPO=oracle-epel-release-el${DISTRO_MAJOR_VERSION}
+        if ! rpm -q "${_EPEL_REPO}" > /dev/null; then
+            __yum_install_noinput "${_EPEL_REPO}"
+        fi
+        _EPEL_REPOS_INSTALLED=$BS_TRUE
+    fi
+
     install_centos_stable_deps || return 1
     return 0
 }
@@ -4810,6 +5598,11 @@ install_oracle_linux_git_deps() {
     return 0
 }
 
+install_oracle_linux_onedir_deps() {
+    install_centos_onedir_deps || return 1
+    return 0
+}
+
 install_oracle_linux_testing_deps() {
     install_centos_testing_deps || return 1
     return 0
@@ -4825,6 +5618,11 @@ install_oracle_linux_git() {
     return 0
 }
 
+install_oracle_linux_onedir() {
+    install_centos_onedir || return 1
+    return 0
+}
+
 install_oracle_linux_testing() {
     install_centos_testing || return 1
     return 0
@@ -4840,6 +5638,11 @@ install_oracle_linux_git_post() {
     return 0
 }
 
+install_oracle_linux_onedir_post() {
+    install_centos_onedir_post || return 1
+    return 0
+}
+
 install_oracle_linux_testing_post() {
     install_centos_testing_post || return 1
     return 0
@@ -4859,6 +5662,162 @@ install_oracle_linux_check_services() {
 #
 #######################################################################################################################
 
+#######################################################################################################################
+#
+#   AlmaLinux Install Functions
+#
+install_almalinux_stable_deps() {
+    install_centos_stable_deps || return 1
+    return 0
+}
+
+install_almalinux_git_deps() {
+    install_centos_git_deps || return 1
+    return 0
+}
+
+install_almalinux_onedir_deps() {
+    install_centos_onedir_deps || return 1
+    return 0
+}
+
+install_almalinux_testing_deps() {
+    install_centos_testing_deps || return 1
+    return 0
+}
+
+install_almalinux_stable() {
+    install_centos_stable || return 1
+    return 0
+}
+
+install_almalinux_git() {
+    install_centos_git || return 1
+    return 0
+}
+
+install_almalinux_onedir() {
+    install_centos_onedir || return 1
+    return 0
+}
+
+install_almalinux_testing() {
+    install_centos_testing || return 1
+    return 0
+}
+
+install_almalinux_stable_post() {
+    install_centos_stable_post || return 1
+    return 0
+}
+
+install_almalinux_git_post() {
+    install_centos_git_post || return 1
+    return 0
+}
+
+install_almalinux_onedir_post() {
+    install_centos_onedir_post || return 1
+    return 0
+}
+
+install_almalinux_testing_post() {
+    install_centos_testing_post || return 1
+    return 0
+}
+
+install_almalinux_restart_daemons() {
+    install_centos_restart_daemons || return 1
+    return 0
+}
+
+install_almalinux_check_services() {
+    install_centos_check_services || return 1
+    return 0
+}
+#
+#   Ended AlmaLinux Install Functions
+#
+#######################################################################################################################
+
+#######################################################################################################################
+#
+#   Rocky Linux Install Functions
+#
+install_rocky_linux_stable_deps() {
+    install_centos_stable_deps || return 1
+    return 0
+}
+
+install_rocky_linux_git_deps() {
+    install_centos_git_deps || return 1
+    return 0
+}
+
+install_rocky_linux_onedir_deps() {
+    install_centos_onedir_deps || return 1
+    return 0
+}
+
+install_rocky_linux_testing_deps() {
+    install_centos_testing_deps || return 1
+    return 0
+}
+
+install_rocky_linux_stable() {
+    install_centos_stable || return 1
+    return 0
+}
+
+install_rocky_linux_onedir() {
+    install_centos_onedir || return 1
+    return 0
+}
+
+install_rocky_linux_git() {
+    install_centos_git || return 1
+    return 0
+}
+
+install_rocky_linux_testing() {
+    install_centos_testing || return 1
+    return 0
+}
+
+install_rocky_linux_stable_post() {
+    install_centos_stable_post || return 1
+    return 0
+}
+
+install_rocky_linux_git_post() {
+    install_centos_git_post || return 1
+    return 0
+}
+
+install_rocky_linux_onedir_post() {
+    install_centos_onedir_post || return 1
+    return 0
+}
+
+install_rocky_linux_testing_post() {
+    install_centos_testing_post || return 1
+    return 0
+}
+
+install_rocky_linux_restart_daemons() {
+    install_centos_restart_daemons || return 1
+    return 0
+}
+
+install_rocky_linux_check_services() {
+    install_centos_check_services || return 1
+    return 0
+}
+#
+#   Ended Rocky Linux Install Functions
+#
+#######################################################################################################################
+
 #######################################################################################################################
 #
 #   Scientific Linux Install Functions
@@ -4873,6 +5832,11 @@ install_scientific_linux_git_deps() {
     return 0
 }
 
+install_scientific_linux_onedir_deps() {
+    install_centos_onedir_deps || return 1
+    return 0
+}
+
 install_scientific_linux_testing_deps() {
     install_centos_testing_deps || return 1
     return 0
@@ -4888,6 +5852,11 @@ install_scientific_linux_git() {
     return 0
 }
 
+install_scientific_linux_onedir() {
+    install_centos_onedir || return 1
+    return 0
+}
+
 install_scientific_linux_testing() {
     install_centos_testing || return 1
     return 0
@@ -4903,6 +5872,11 @@ install_scientific_linux_git_post() {
     return 0
 }
 
+install_scientific_linux_onedir_post() {
+    install_centos_onedir_post || return 1
+    return 0
+}
+
 install_scientific_linux_testing_post() {
     install_centos_testing_post || return 1
     return 0
@@ -4936,6 +5910,11 @@ install_cloud_linux_git_deps() {
     return 0
 }
 
+install_cloud_linux_onedir_deps() {
+    install_centos_onedir_deps || return 1
+    return 0
+}
+
 install_cloud_linux_testing_deps() {
     install_centos_testing_deps || return 1
     return 0
@@ -5029,8 +6008,8 @@ install_alpine_linux_git_deps() {
             fi
         fi
     else
-        apk -U add python2 py2-pip py2-setuptools || return 1
-        _PY_EXE=python2
+        apk -U add python3 python3-dev py3-pip py3-setuptools g++ linux-headers zeromq-dev openrc || return 1
+        _PY_EXE=python3
         return 0
     fi
 
@@ -5500,6 +6479,100 @@ _eof
     fi
 }
 
+install_amazon_linux_ami_2_onedir_deps() {
+    # Shim to figure out if we're using old (rhel) or new (aws) rpms.
+    _USEAWS=$BS_FALSE
+    pkg_append="python"
+
+    if [ "$ITYPE" = "onedir" ]; then
+        repo_rev="$ONEDIR_REV"
+    else
+        repo_rev="latest"
+    fi
+
+    if echo $repo_rev | grep -E -q '^archive'; then
+        year=$(echo "$repo_rev" | cut -d '/' -f 2 | cut -c1-4)
+    else
+        year=$(echo "$repo_rev" | cut -c1-4)
+    fi
+
+    # We need to install yum-utils before doing anything else when installing on
+    # Amazon Linux ECS-optimized images. See issue #974.
+    __yum_install_noinput yum-utils
+
+    # Do upgrade early
+    if [ "$_UPGRADE_SYS" -eq $BS_TRUE ]; then
+        yum -y update || return 1
+    fi
+
+    if [ $_DISABLE_REPOS -eq $BS_FALSE ] || [ "$_CUSTOM_REPO_URL" != "null" ]; then
+        __REPO_FILENAME="salt.repo"
+        __PY_VERSION_REPO="yum"
+        PY_PKG_VER=""
+        repo_label="saltstack-repo"
+        repo_name="SaltStack repo for Amazon Linux 2"
+        if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
+            __REPO_FILENAME="salt.repo"
+            __PY_VERSION_REPO="py3"
+            PY_PKG_VER=3
+            repo_label="saltstack-py3-repo"
+            repo_name="SaltStack Python 3 repo for Amazon Linux 2"
+        fi
+
+        base_url="$HTTP_VAL://${_REPO_URL}/${_ONEDIR_DIR}/${__PY_VERSION_REPO}/amazon/2/\$basearch/$repo_rev/"
+        if [ "${ONEDIR_REV}" = "nightly" ] ; then
+            base_url="$HTTP_VAL://${_REPO_URL}/${_ONEDIR_NIGHTLY_DIR}/${__PY_VERSION_REPO}/amazon/2/\$basearch/"
+        fi
+
+        if [ "$(echo "${ONEDIR_REV}" | grep -E '(3004|3005)')" != "" ] || [ "${ONEDIR_REV}" = "nightly" ]; then
+          gpg_key="${base_url}SALTSTACK-GPG-KEY.pub,${base_url}base/RPM-GPG-KEY-CentOS-7"
+          if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
+            gpg_key="${base_url}SALTSTACK-GPG-KEY.pub"
+          fi
+        else
+          gpg_key="${base_url}SALT-PROJECT-GPG-PUBKEY-2023.pub"
+        fi
+
+        # This should prob be refactored to use __install_saltstack_rhel_repository()
+        # With args passed in to do the right thing.  Reformatted to be more like the
+        # amazon linux yum file.
+        if [ ! -s "/etc/yum.repos.d/${__REPO_FILENAME}" ]; then
+          cat <<_eof > "/etc/yum.repos.d/${__REPO_FILENAME}"
+[$repo_label]
+name=$repo_name
+failovermethod=priority
+priority=10
+gpgcheck=1
+gpgkey=$gpg_key
+baseurl=$base_url
+_eof
+        fi
+
+    fi
+
+    if [ "${_POST_NEON_INSTALL}" -eq $BS_FALSE ]; then
+        # Package python-ordereddict-1.1-2.el6.noarch is obsoleted by python26-2.6.9-2.88.amzn1.x86_64
+        # which is already installed
+        if [ -n "${PY_PKG_VER}" ] && [ "${PY_PKG_VER}" -eq 3 ]; then
+            __PACKAGES="${pkg_append}${PY_PKG_VER}-m2crypto ${pkg_append}${PY_PKG_VER}-pyyaml"
+        else
+            __PACKAGES="m2crypto PyYAML ${pkg_append}-futures"
+        fi
+
+        __PACKAGES="${__PACKAGES} ${pkg_append}${PY_PKG_VER}-crypto ${pkg_append}${PY_PKG_VER}-jinja2 procps-ng"
+        __PACKAGES="${__PACKAGES} ${pkg_append}${PY_PKG_VER}-msgpack ${pkg_append}${PY_PKG_VER}-requests ${pkg_append}${PY_PKG_VER}-zmq"
+
+        # shellcheck disable=SC2086
+        __yum_install_noinput ${__PACKAGES} || return 1
+    fi
+
+    if [ "${_EXTRA_PACKAGES}" != "" ]; then
+        echoinfo "Installing the following extra packages as requested: ${_EXTRA_PACKAGES}"
+        # shellcheck disable=SC2086
+        __yum_install_noinput ${_EXTRA_PACKAGES} || return 1
+    fi
+}
+
 install_amazon_linux_ami_stable() {
     install_centos_stable || return 1
     return 0
@@ -5575,6 +6648,16 @@ install_amazon_linux_ami_2_check_services() {
     return 0
 }
 
+install_amazon_linux_ami_2_onedir() {
+    install_centos_stable || return 1
+    return 0
+}
+
+install_amazon_linux_ami_2_onedir_post() {
+    install_centos_stable_post || return 1
+    return 0
+}
+
 #
 #   Ended Amazon Linux AMI Install Functions
 #
@@ -5666,6 +6749,10 @@ install_arch_linux_git_deps() {
     return 0
 }
 
+install_arch_linux_onedir_deps() {
+    install_arch_linux_stable_deps || return 1
+}
+
 install_arch_linux_stable() {
     # Pacman does not resolve dependencies on outdated versions
     # They always need to be updated
@@ -5684,6 +6771,8 @@ install_arch_linux_stable() {
 
 install_arch_linux_git() {
 
+    _POST_NEON_PIP_INSTALL_ARGS="${_POST_NEON_PIP_INSTALL_ARGS} --use-pep517"
+    _PIP_DOWNLOAD_ARGS="${_PIP_DOWNLOAD_ARGS} --use-pep517"
     if [ "${_POST_NEON_INSTALL}" -eq $BS_TRUE ]; then
          __install_salt_from_repo_post_neon "${_PY_EXE}" || return 1
         return 0
@@ -5741,8 +6830,15 @@ install_arch_linux_git_post() {
         [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
         [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
 
+        # Account for new path for services files in later releases
+        if [ -f "${_SALT_GIT_CHECKOUT_DIR}/pkg/common/salt-${fname}.service" ]; then
+          _SERVICE_DIR="${_SALT_GIT_CHECKOUT_DIR}/pkg/common"
+        else
+          _SERVICE_DIR="${_SALT_GIT_CHECKOUT_DIR}/pkg/rpm"
+        fi
+
         if [ -f /usr/bin/systemctl ]; then
-            __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/rpm/salt-${fname}.service" "/lib/systemd/system/salt-${fname}.service"
+            __copyfile "${_SERVICE_DIR}/salt-${fname}.service" "/lib/systemd/system/salt-${fname}.service"
 
             # Skip salt-api since the service should be opt-in and not necessarily started on boot
             [ $fname = "api" ] && continue
@@ -5809,11 +6905,344 @@ install_arch_check_services() {
 
     return 0
 }
+
+install_arch_linux_onedir() {
+  install_arch_linux_stable || return 1
+
+  return 0
+}
+
+install_arch_linux_onedir_post() {
+  install_arch_linux_post || return 1
+
+  return 0
+}
 #
 #   Ended Arch Install Functions
 #
 #######################################################################################################################
 
+#######################################################################################################################
+#
+#   Photon OS Install Functions
+#
+
+__install_saltstack_photon_onedir_repository() {
+    if [ "$ITYPE" = "stable" ]; then
+        REPO_REV="$ONEDIR_REV"
+    else
+        REPO_REV="latest"
+    fi
+
+    __PY_VERSION_REPO="yum"
+    if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
+        __PY_VERSION_REPO="py3"
+    fi
+
+    REPO_FILE="/etc/yum.repos.d/salt.repo"
+
+    if [ ! -s "$REPO_FILE" ] || [ "$_FORCE_OVERWRITE" -eq $BS_TRUE ]; then
+        FETCH_URL="${HTTP_VAL}://${_REPO_URL}/${_ONEDIR_DIR}/${__PY_VERSION_REPO}/photon/${DISTRO_MAJOR_VERSION}/${CPU_ARCH_L}/${ONEDIR_REV}"
+        if [ "${ONEDIR_REV}" = "nightly" ] ; then
+            FETCH_URL="${HTTP_VAL}://${_REPO_URL}/${_ONEDIR_NIGHTLY_DIR}/${__PY_VERSION_REPO}/photon/${DISTRO_MAJOR_VERSION}/${CPU_ARCH_L}/"
+        fi
+
+        __fetch_url "${REPO_FILE}" "${FETCH_URL}.repo"
+
+        GPG_KEY="SALT-PROJECT-GPG-PUBKEY-2023.pub"
+
+        __rpm_import_gpg "${FETCH_URL}/${GPG_KEY}" || return 1
+
+        tdnf makecache || return 1
+    elif [ "$REPO_REV" != "latest" ]; then
+        echowarn "salt.repo already exists, ignoring salt version argument."
+        echowarn "Use -F (forced overwrite) to install $REPO_REV."
+    fi
+
+    return 0
+}
+
+install_photon_deps() {
+    if [ "$_UPGRADE_SYS" -eq $BS_TRUE ]; then
+        tdnf -y update || return 1
+    fi
+
+    __PACKAGES="${__PACKAGES:=}"
+    if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -lt 3 ]; then
+        echoerror "There are no Python 2 stable packages for Fedora, only Py3 packages"
+        return 1
+    fi
+
+    PY_PKG_VER=3
+
+    __PACKAGES="${__PACKAGES} libyaml procps-ng python${PY_PKG_VER}-crypto python${PY_PKG_VER}-jinja2"
+    __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-msgpack python${PY_PKG_VER}-requests python${PY_PKG_VER}-zmq"
+    __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-pip python${PY_PKG_VER}-m2crypto python${PY_PKG_VER}-pyyaml"
+    __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-systemd"
+    if [ "${_EXTRA_PACKAGES}" != "" ]; then
+        echoinfo "Installing the following extra packages as requested: ${_EXTRA_PACKAGES}"
+    fi
+
+    # shellcheck disable=SC2086
+    __tdnf_install_noinput ${__PACKAGES} ${_EXTRA_PACKAGES} || return 1
+
+    return 0
+}
+
+install_photon_stable_post() {
+    for fname in api master minion syndic; do
+        # Skip salt-api since the service should be opt-in and not necessarily started on boot
+        [ $fname = "api" ] && continue
+
+        # Skip if not meant to be installed
+        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
+        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
+        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
+
+        systemctl is-enabled salt-$fname.service || (systemctl preset salt-$fname.service && systemctl enable salt-$fname.service)
+        sleep 1
+        systemctl daemon-reload
+    done
+}
+
+install_photon_git_deps() {
+    if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
+        # Packages are named python3-<whatever>
+        PY_PKG_VER=3
+    else
+        PY_PKG_VER=2
+    fi
+
+    __PACKAGES=""
+    if ! __check_command_exists ps; then
+        __PACKAGES="${__PACKAGES} procps-ng"
+    fi
+    if ! __check_command_exists git; then
+        __PACKAGES="${__PACKAGES} git"
+    fi
+
+    if [ -n "${__PACKAGES}" ]; then
+        # shellcheck disable=SC2086
+        __tdnf_install_noinput ${__PACKAGES} || return 1
+        __PACKAGES=""
+    fi
+
+    __git_clone_and_checkout || return 1
+
+    if [ "${_POST_NEON_INSTALL}" -eq $BS_FALSE ]; then
+
+        if [ "$_INSECURE_DL" -eq $BS_FALSE ] && [ "${_SALT_REPO_URL%%://*}" = "https" ]; then
+            __PACKAGES="${__PACKAGES} ca-certificates"
+        fi
+        if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ]; then
+            __PACKAGES="${__PACKAGES} python${PY_PKG_VER}-libcloud python${PY_PKG_VER}-netaddr"
+        fi
+
+        install_photon_deps || return 1
+
+        if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
+            if __check_command_exists python3; then
+                __python="python3"
+            fi
+        elif [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 2 ]; then
+            if __check_command_exists python2; then
+                __python="python2"
+            fi
+        else
+            if ! __check_command_exists python; then
+                echoerror "Unable to find a python binary?!"
+                return 1
+            fi
+            # Let's hope it's the right one
+            __python="python"
+        fi
+
+        grep tornado "${_SALT_GIT_CHECKOUT_DIR}/requirements/base.txt" | while IFS='
+    '         read -r dep; do
+                echodebug "Running '${__python}' -m pip install '${dep}'"
+                "${__python}" -m pip install "${dep}" || return 1
+            done
+    else
+        __PACKAGES="python${PY_PKG_VER}-devel python${PY_PKG_VER}-pip python${PY_PKG_VER}-setuptools gcc glibc-devel linux-devel.x86_64"
+        # shellcheck disable=SC2086
+        __tdnf_install_noinput ${__PACKAGES} || return 1
+    fi
+
+    if [ "${DISTRO_MAJOR_VERSION}" -gt 3 ]; then
+      # Need newer version of setuptools on Photon
+      _setuptools_dep="setuptools>=${_MINIMUM_SETUPTOOLS_VERSION}"
+      echodebug "Running '${_PY_EXE} -m pip --upgrade install ${_setuptools_dep}'"
+      ${_PY_EXE} -m pip install --upgrade "${_setuptools_dep}"
+    fi
+
+    # Let's trigger config_salt()
+    if [ "$_TEMP_CONFIG_DIR" = "null" ]; then
+        _TEMP_CONFIG_DIR="${_SALT_GIT_CHECKOUT_DIR}/conf/"
+        CONFIG_SALT_FUNC="config_salt"
+    fi
+
+    return 0
+}
+
+install_photon_git() {
+    if [ "${_PY_EXE}" != "" ]; then
+        _PYEXE=${_PY_EXE}
+        echoinfo "Using the following python version: ${_PY_EXE} to install salt"
+    else
+        _PYEXE='python2'
+    fi
+
+    if [ -f "${_SALT_GIT_CHECKOUT_DIR}/salt/syspaths.py" ]; then
+        ${_PYEXE} setup.py --salt-config-dir="$_SALT_ETC_DIR" --salt-cache-dir="${_SALT_CACHE_DIR}" ${SETUP_PY_INSTALL_ARGS} install --prefix=/usr || return 1
+    else
+        ${_PYEXE} setup.py ${SETUP_PY_INSTALL_ARGS} install --prefix=/usr || return 1
+    fi
+    return 0
+}
+
+install_photon_git_post() {
+    for fname in api master minion syndic; do
+        # Skip if not meant to be installed
+        [ $fname = "api" ] && \
+            ([ "$_INSTALL_MASTER" -eq $BS_FALSE ] || ! __check_command_exists "salt-${fname}") && continue
+        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
+        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
+        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
+
+        # Account for new path for services files in later releases
+        if [ -f "${_SALT_GIT_CHECKOUT_DIR}/pkg/common/salt-${fname}.service" ]; then
+          _SERVICE_DIR="${_SALT_GIT_CHECKOUT_DIR}/pkg/common"
+        else
+          _SERVICE_DIR="${_SALT_GIT_CHECKOUT_DIR}/pkg/rpm"
+        fi
+        __copyfile "${_SERVICE_DIR}/salt-${fname}.service" "/lib/systemd/system/salt-${fname}.service"
+
+        # Salt executables are located under `/usr/local/bin/` on Fedora 36+
+        #if [ "${DISTRO_VERSION}" -ge 36 ]; then
+        #  sed -i -e 's:/usr/bin/:/usr/local/bin/:g' /lib/systemd/system/salt-*.service
+        #fi
+
+        # Skip salt-api since the service should be opt-in and not necessarily started on boot
+        [ $fname = "api" ] && continue
+
+        systemctl is-enabled salt-$fname.service || (systemctl preset salt-$fname.service && systemctl enable salt-$fname.service)
+        sleep 1
+        systemctl daemon-reload
+    done
+}
+
+install_photon_restart_daemons() {
+    [ $_START_DAEMONS -eq $BS_FALSE ] && return
+
+    for fname in api master minion syndic; do
+        # Skip salt-api since the service should be opt-in and not necessarily started on boot
+        [ $fname = "api" ] && continue
+
+        # Skip if not meant to be installed
+        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
+        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
+        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
+
+        systemctl stop salt-$fname > /dev/null 2>&1
+        systemctl start salt-$fname.service && continue
+        echodebug "Failed to start salt-$fname using systemd"
+        if [ "$_ECHO_DEBUG" -eq $BS_TRUE ]; then
+            systemctl status salt-$fname.service
+            journalctl -xe
+        fi
+    done
+}
+
+install_photon_check_services() {
+    for fname in api master minion syndic; do
+        # Skip salt-api since the service should be opt-in and not necessarily started on boot
+        [ $fname = "api" ] && continue
+
+        # Skip if not meant to be installed
+        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
+        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
+        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
+
+        __check_services_systemd salt-$fname || return 1
+    done
+
+    return 0
+}
+
+install_photon_onedir_deps() {
+
+    if [ "$_UPGRADE_SYS" -eq $BS_TRUE ]; then
+        tdnf -y update || return 1
+    fi
+
+    if [ "$_DISABLE_REPOS" -eq "$BS_TRUE" ] && [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
+        echowarn "Detected -r or -R option while installing Salt packages for Python 3."
+        echowarn "Python 3 packages for older Salt releases requires the EPEL repository to be installed."
+        echowarn "Installing the EPEL repository automatically is disabled when using the -r or -R options."
+    fi
+
+    if [ "$_DISABLE_REPOS" -eq "$BS_FALSE" ]; then
+        __install_saltstack_photon_onedir_repository || return 1
+    fi
+
+    # If -R was passed, we need to configure custom repo url with rsync-ed packages
+    # Which is still handled in __install_saltstack_rhel_repository. This call has
+    # its own check in case -r was passed without -R.
+    if [ "$_CUSTOM_REPO_URL" != "null" ]; then
+        __install_saltstack_photon_onedir_repository || return 1
+    fi
+
+    __PACKAGES="procps-ng"
+
+    # shellcheck disable=SC2086
+    __tdnf_install_noinput ${__PACKAGES} || return 1
+
+    if [ "${_EXTRA_PACKAGES}" != "" ]; then
+        echoinfo "Installing the following extra packages as requested: ${_EXTRA_PACKAGES}"
+        # shellcheck disable=SC2086
+        __tdnf_install_noinput ${_EXTRA_PACKAGES} || return 1
+    fi
+
+    return 0
+
+}
+
+
+install_photon_onedir() {
+    STABLE_REV=$ONEDIR_REV
+
+    __PACKAGES=""
+
+    if [ "$_INSTALL_CLOUD" -eq $BS_TRUE ];then
+        __PACKAGES="${__PACKAGES} salt-cloud"
+    fi
+    if [ "$_INSTALL_MASTER" -eq $BS_TRUE ];then
+        __PACKAGES="${__PACKAGES} salt-master"
+    fi
+    if [ "$_INSTALL_MINION" -eq $BS_TRUE ]; then
+        __PACKAGES="${__PACKAGES} salt-minion"
+    fi
+    if [ "$_INSTALL_SYNDIC" -eq $BS_TRUE ];then
+        __PACKAGES="${__PACKAGES} salt-syndic"
+    fi
+
+    # shellcheck disable=SC2086
+    __tdnf_install_noinput ${__PACKAGES} || return 1
+
+    return 0
+}
+
+install_photon_onedir_post() {
+    STABLE_REV=$ONEDIR_REV
+    install_photon_stable_post || return 1
+
+    return 0
+}
+#
+#   Ended Fedora Install Functions
+#
+#######################################################################################################################
+
 #######################################################################################################################
 #
 #   FreeBSD Install Functions
@@ -5841,15 +7270,15 @@ install_freebsd_git_deps() {
 
     if [ "${_POST_NEON_INSTALL}" -eq $BS_FALSE ]; then
 
-        SALT_DEPENDENCIES=$(/usr/local/sbin/pkg rquery %dn py38-salt)
+        SALT_DEPENDENCIES=$(/usr/local/sbin/pkg rquery %dn py39-salt)
         # shellcheck disable=SC2086
         /usr/local/sbin/pkg install -y ${SALT_DEPENDENCIES} python || return 1
 
-        /usr/local/sbin/pkg install -y py38-requests || return 1
-        /usr/local/sbin/pkg install -y py38-tornado4 || return 1
+        /usr/local/sbin/pkg install -y py39-requests || return 1
+        /usr/local/sbin/pkg install -y py39-tornado4 || return 1
 
     else
-        /usr/local/sbin/pkg install -y python py38-pip py38-setuptools libzmq4 libunwind || return 1
+        /usr/local/sbin/pkg install -y python py39-pip py39-setuptools libzmq4 libunwind || return 1
     fi
 
     echodebug "Adapting paths to FreeBSD"
@@ -5895,7 +7324,7 @@ install_freebsd_stable() {
 # installing latest version of salt from FreeBSD CURRENT ports repo
 #
     # shellcheck disable=SC2086
-    /usr/local/sbin/pkg install -y py38-salt || return 1
+    /usr/local/sbin/pkg install -y py39-salt || return 1
 
     return 0
 }
@@ -5987,6 +7416,15 @@ install_freebsd_restart_daemons() {
         service salt_$fname start
     done
 }
+
+install_freebsd_onedir() {
+#
+# call install_freebsd_stable
+#
+    install_freebsd_stable || return 1
+
+    return 0
+}
 #
 #   Ended FreeBSD Install Functions
 #
@@ -6021,7 +7459,7 @@ install_openbsd_git_deps() {
     __git_clone_and_checkout || return 1
 
     if [ "${_POST_NEON_INSTALL}" -eq $BS_TRUE ]; then
-        pkg_add -I -v py-pip py-setuptools
+        pkg_add -I -v py3-pip py3-setuptools
     fi
 
     #
@@ -6105,6 +7543,14 @@ install_openbsd_restart_daemons() {
     return 0
 }
 
+install_openbsd_onedir() {
+#
+# Call install_openbsd_stable
+#
+    install_openbsd_stable || return 1
+
+    return 0
+}
 #
 #   Ended OpenBSD Install Functions
 #
@@ -6305,6 +7751,14 @@ install_smartos_restart_daemons() {
 
     return 0
 }
+install_smartos_onedir() {
+#
+# call install_smartos_stable
+#
+    install_smartos_stable || return 1
+
+    return 0
+}
 #
 #   Ended SmartOS Install Functions
 #
@@ -6321,19 +7775,16 @@ __set_suse_pkg_repo() {
     # Set distro repo variable
     if [ "${DISTRO_MAJOR_VERSION}" -gt 2015 ]; then
         DISTRO_REPO="openSUSE_Tumbleweed"
+    elif [ "${DISTRO_MAJOR_VERSION}" -eq 15 ] && [ "${DISTRO_MINOR_VERSION}" -ge 4 ]; then
+        DISTRO_REPO="${DISTRO_MAJOR_VERSION}.${DISTRO_MINOR_VERSION}"
     elif [ "${DISTRO_MAJOR_VERSION}" -ge 42 ] || [ "${DISTRO_MAJOR_VERSION}" -eq 15 ]; then
         DISTRO_REPO="openSUSE_Leap_${DISTRO_MAJOR_VERSION}.${DISTRO_MINOR_VERSION}"
     else
         DISTRO_REPO="SLE_${DISTRO_MAJOR_VERSION}_SP${SUSE_PATCHLEVEL}"
     fi
 
-    if [ "$_DOWNSTREAM_PKG_REPO" -eq $BS_TRUE ]; then
-        suse_pkg_url_base="https://download.opensuse.org/repositories/systemsmanagement:/saltstack"
-        suse_pkg_url_path="${DISTRO_REPO}/systemsmanagement:saltstack.repo"
-    else
-        suse_pkg_url_base="${HTTP_VAL}://repo.saltproject.io/opensuse"
-        suse_pkg_url_path="${DISTRO_REPO}/systemsmanagement:saltstack:products.repo"
-    fi
+    suse_pkg_url_base="https://download.opensuse.org/repositories/systemsmanagement:/saltstack"
+    suse_pkg_url_path="${DISTRO_REPO}/systemsmanagement:saltstack.repo"
     SUSE_PKG_URL="$suse_pkg_url_base/$suse_pkg_url_path"
 }
 
@@ -6353,7 +7804,7 @@ __version_lte() {
              zypper --non-interactive install --auto-agree-with-licenses python || return 1
     fi
 
-    if [ "$(python -c 'import sys; V1=tuple([int(i) for i in sys.argv[1].split(".")]); V2=tuple([int(i) for i in sys.argv[2].split(".")]); print V1<=V2' "$1" "$2")" = "True" ]; then
+    if [ "$(${_PY_EXE} -c 'import sys; V1=tuple([int(i) for i in sys.argv[1].split(".")]); V2=tuple([int(i) for i in sys.argv[2].split(".")]); print(V1<=V2)' "$1" "$2")" = "True" ]; then
         __ZYPPER_REQUIRES_REPLACE_FILES=${BS_TRUE}
     else
         __ZYPPER_REQUIRES_REPLACE_FILES=${BS_FALSE}
@@ -6470,7 +7921,7 @@ install_opensuse_git_deps() {
         fi
     # Check for Tumbleweed
     elif [ "${DISTRO_MAJOR_VERSION}" -ge 20210101 ]; then
-        __PACKAGES="python3-pip"
+        __PACKAGES="python3-pip gcc-c++ python3-pyzmq-devel"
     else
         __PACKAGES="python-pip python-setuptools gcc"
     fi
@@ -6487,6 +7938,10 @@ install_opensuse_git_deps() {
     return 0
 }
 
+install_opensuse_onedir_deps() {
+    install_opensuse_stable_deps || return 1
+}
+
 install_opensuse_stable() {
     __PACKAGES=""
 
@@ -6519,6 +7974,10 @@ install_opensuse_git() {
     return 0
 }
 
+install_opensuse_onedir() {
+  install_opensuse_stable || return 1
+}
+
 install_opensuse_stable_post() {
     for fname in api master minion syndic; do
         # Skip salt-api since the service should be opt-in and not necessarily started on boot
@@ -6563,10 +8022,17 @@ install_opensuse_git_post() {
                 use_usr_lib=$BS_TRUE
             fi
 
-            if [ "${use_usr_lib}" -eq $BS_TRUE ]; then
-                __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/salt-${fname}.service" "/usr/lib/systemd/system/salt-${fname}.service"
+            # Account for new path for services files in later releases
+            if [ -f "${_SALT_GIT_CHECKOUT_DIR}/pkg/common/salt-${fname}.service" ]; then
+              _SERVICE_DIR="${_SALT_GIT_CHECKOUT_DIR}/pkg/common"
             else
-                __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/salt-${fname}.service" "/lib/systemd/system/salt-${fname}.service"
+              _SERVICE_DIR="${_SALT_GIT_CHECKOUT_DIR}/pkg/"
+            fi
+
+            if [ "${use_usr_lib}" -eq $BS_TRUE ]; then
+                __copyfile "${_SERVICE_DIR}/salt-${fname}.service" "/usr/lib/systemd/system/salt-${fname}.service"
+            else
+                __copyfile "${_SERVICE_DIR}/salt-${fname}.service" "/lib/systemd/system/salt-${fname}.service"
             fi
 
             continue
@@ -6581,6 +8047,10 @@ install_opensuse_git_post() {
     return 0
 }
 
+install_opensuse_onedir_post() {
+  install_opensuse_stable_post || return 1
+}
+
 install_opensuse_restart_daemons() {
     [ $_START_DAEMONS -eq $BS_FALSE ] && return
 
@@ -6740,6 +8210,11 @@ install_opensuse_15_git() {
     return 0
 }
 
+install_opensuse_15_onedir_deps() {
+    __opensuse_prep_install || return 1
+    return 0
+}
+
 #
 #   End of openSUSE Leap 15
 #
@@ -6769,6 +8244,13 @@ install_suse_15_git_deps() {
     return 0
 }
 
+install_suse_15_onedir_deps() {
+    __opensuse_prep_install || return 1
+    install_opensuse_15_onedir_deps || return 1
+
+    return 0
+}
+
 install_suse_15_stable() {
     install_opensuse_stable || return 1
     return 0
@@ -6779,6 +8261,11 @@ install_suse_15_git() {
     return 0
 }
 
+install_suse_15_onedir() {
+    install_opensuse_stable || return 1
+    return 0
+}
+
 install_suse_15_stable_post() {
     install_opensuse_stable_post || return 1
     return 0
@@ -6789,6 +8276,11 @@ install_suse_15_git_post() {
     return 0
 }
 
+install_suse_15_onedir_post() {
+    install_opensuse_stable_post || return 1
+    return 0
+}
+
 install_suse_15_restart_daemons() {
     install_opensuse_restart_daemons || return 1
     return 0
@@ -6871,6 +8363,11 @@ install_suse_12_git_deps() {
     return 0
 }
 
+install_suse_12_onedir_deps() {
+    install_suse_12_stable_deps || return 1
+    return 0
+}
+
 install_suse_12_stable() {
     install_opensuse_stable || return 1
     return 0
@@ -6881,6 +8378,11 @@ install_suse_12_git() {
     return 0
 }
 
+install_suse_12_onedir() {
+    install_opensuse_stable || return 1
+    return 0
+}
+
 install_suse_12_stable_post() {
     install_opensuse_stable_post || return 1
     return 0
@@ -6891,6 +8393,11 @@ install_suse_12_git_post() {
     return 0
 }
 
+install_suse_12_onedir_post() {
+    install_opensuse_stable_post || return 1
+    return 0
+}
+
 install_suse_12_restart_daemons() {
     install_opensuse_restart_daemons || return 1
     return 0
@@ -6967,6 +8474,11 @@ install_suse_11_git_deps() {
     return 0
 }
 
+install_suse_11_onedir_deps() {
+    install_suse_11_stable_deps || return 1
+    return 0
+}
+
 install_suse_11_stable() {
     install_opensuse_stable || return 1
     return 0
@@ -6977,6 +8489,11 @@ install_suse_11_git() {
     return 0
 }
 
+install_suse_11_onedir() {
+    install_opensuse_stable || return 1
+    return 0
+}
+
 install_suse_11_stable_post() {
     install_opensuse_stable_post || return 1
     return 0
@@ -6987,6 +8504,11 @@ install_suse_11_git_post() {
     return 0
 }
 
+install_suse_11_onedir_post() {
+    install_opensuse_stable_post || return 1
+    return 0
+}
+
 install_suse_11_restart_daemons() {
     install_opensuse_restart_daemons || return 1
     return 0
@@ -7086,11 +8608,6 @@ __gentoo_pre_dep() {
         mkdir /etc/portage
     fi
 
-    # Enable Python 3.6 target for pre Neon Salt release
-    if echo "${STABLE_REV}" | grep -q "2019" || [ "${ITYPE}" = "git" ] && [ "${_POST_NEON_INSTALL}" -eq $BS_FALSE ]; then
-        EXTRA_PYTHON_TARGET=python3_6
-    fi
-
     # Enable Python 3.7 target for Salt Neon using GIT
     if [ "${ITYPE}" = "git" ] && [ "${GIT_REV}" = "v3000" ]; then
         EXTRA_PYTHON_TARGET=python3_7
@@ -7186,6 +8703,9 @@ install_gentoo_git_deps() {
         __emerge ${GENTOO_GIT_PACKAGES} || return 1
     fi
 
+    echoinfo "Running emerge -v1 setuptools"
+    __emerge -v1 setuptools || return 1
+
     __git_clone_and_checkout || return 1
     __gentoo_post_dep || return 1
 }
@@ -7233,6 +8753,11 @@ install_gentoo_git() {
     return 0
 }
 
+install_gentoo_onedir() {
+  STABLE_REV=${ONEDIR_REV}
+  install_gentoo_stable || return 1
+}
+
 install_gentoo_post() {
     for fname in api master minion syndic; do
         # Skip salt-api since the service should be opt-in and not necessarily started on boot
@@ -7268,8 +8793,15 @@ install_gentoo_git_post() {
         [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
         [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
 
+        # Account for new path for services files in later releases
+        if [ -f "${_SALT_GIT_CHECKOUT_DIR}/pkg/common/salt-${fname}.service" ]; then
+          _SERVICE_DIR="${_SALT_GIT_CHECKOUT_DIR}/pkg/common"
+        else
+          _SERVICE_DIR="${_SALT_GIT_CHECKOUT_DIR}/pkg"
+        fi
+
         if __check_command_exists systemctl ; then
-            __copyfile "${_SALT_GIT_CHECKOUT_DIR}/pkg/salt-${fname}.service" "/lib/systemd/system/salt-${fname}.service"
+            __copyfile "${_SERVICE_DIR}/salt-${fname}.service" "/lib/systemd/system/salt-${fname}.service"
 
             # Skip salt-api since the service should be opt-in and not necessarily started on boot
             [ $fname = "api" ] && continue
@@ -7315,6 +8847,10 @@ _eof
     return 0
 }
 
+install_gentoo_onedir_post() {
+  install_gentoo_post || return 1
+}
+
 install_gentoo_restart_daemons() {
     [ $_START_DAEMONS -eq $BS_FALSE ] && return
 
@@ -7466,7 +9002,46 @@ __macosx_get_packagesite() {
     fi
 
     PKG="salt-${STABLE_REV}-${__PY_VERSION_REPO}-${DARWIN_ARCH}.pkg"
-    SALTPKGCONFURL="https://repo.saltproject.io/osx/${PKG}"
+    SALTPKGCONFURL="https://${_REPO_URL}/osx/${PKG}"
+}
+
+__parse_repo_json_python() {
+
+  # Using latest, grab the right
+  # version from the repo.json
+  _JSON_VERSION=$(python - <<-EOF
+import json, urllib.request
+url = "https://repo.saltproject.io/salt/py3/macos/repo.json"
+response = urllib.request.urlopen(url)
+data = json.loads(response.read())
+version = data["${_ONEDIR_REV}"][list(data["${_ONEDIR_REV}"])[0]]['version']
+print(version)
+EOF
+)
+echo "${_JSON_VERSION}"
+}
+
+__macosx_get_packagesite_onedir() {
+    DARWIN_ARCH="x86_64"
+
+    __PY_VERSION_REPO="py2"
+    if [ -n "$_PY_EXE" ] && [ "$_PY_MAJOR_VERSION" -eq 3 ]; then
+        __PY_VERSION_REPO="py3"
+    fi
+
+    if [ "$(echo "$_ONEDIR_REV" | grep -E '^(latest)$')" != "" ]; then
+      _PKG_VERSION=$(__parse_repo_json_python)
+    elif [ "$(echo "$_ONEDIR_REV" | grep -E '^([3-9][0-9]{3}(\.[0-9]*))')" != "" ]; then
+      _PKG_VERSION=$_ONEDIR_REV
+    else
+      _PKG_VERSION=$(__parse_repo_json_python)
+    fi
+    if [ "$(echo "$_ONEDIR_REV" | grep -E '^(3005)')" != "" ]; then
+      PKG="salt-${_PKG_VERSION}-macos-${DARWIN_ARCH}.pkg"
+    else
+      PKG="salt-${_PKG_VERSION}-${__PY_VERSION_REPO}-${DARWIN_ARCH}.pkg"
+    fi
+    SALTPKGCONFURL="https://${_REPO_URL}/${_ONEDIR_DIR}/${__PY_VERSION_REPO}/macos/${ONEDIR_REV}/${PKG}"
 }
 
 # Using a separate conf step to head for idempotent install...
@@ -7475,11 +9050,21 @@ __configure_macosx_pkg_details() {
     return 0
 }
 
+__configure_macosx_pkg_details_onedir() {
+    __macosx_get_packagesite_onedir || return 1
+    return 0
+}
+
 install_macosx_stable_deps() {
     __configure_macosx_pkg_details || return 1
     return 0
 }
 
+install_macosx_onedir_deps() {
+    __configure_macosx_pkg_details_onedir || return 1
+    return 0
+}
+
 install_macosx_git_deps() {
     install_macosx_stable_deps || return 1
 
@@ -7526,6 +9111,16 @@ install_macosx_stable() {
     return 0
 }
 
+install_macosx_onedir() {
+    install_macosx_onedir_deps || return 1
+
+    __fetch_url "/tmp/${PKG}" "${SALTPKGCONFURL}" || return 1
+
+    /usr/sbin/installer -pkg "/tmp/${PKG}" -target / || return 1
+
+    return 0
+}
+
 install_macosx_git() {
 
     if [ -n "$_PY_EXE" ]; then
@@ -7563,6 +9158,11 @@ install_macosx_stable_post() {
     return 0
 }
 
+install_macosx_onedir_post() {
+    install_macosx_stable_post || return 1
+    return 0
+}
+
 install_macosx_git_post() {
     install_macosx_stable_post || return 1
     return 0
@@ -7571,8 +9171,15 @@ install_macosx_git_post() {
 install_macosx_restart_daemons() {
     [ $_START_DAEMONS -eq $BS_FALSE ] && return
 
-    /bin/launchctl unload -w /Library/LaunchDaemons/com.saltstack.salt.minion.plist || return 1
-    /bin/launchctl load -w /Library/LaunchDaemons/com.saltstack.salt.minion.plist || return 1
+    if [ "$_INSTALL_MINION" -eq $BS_TRUE ]; then
+      /bin/launchctl unload -w /Library/LaunchDaemons/com.saltstack.salt.minion.plist || return 1
+      /bin/launchctl load -w /Library/LaunchDaemons/com.saltstack.salt.minion.plist || return 1
+    fi
+
+    if [ "$_INSTALL_MASTER" -eq $BS_TRUE ]; then
+      /bin/launchctl unload -w /Library/LaunchDaemons/com.saltstack.salt.master.plist || return 1
+      /bin/launchctl load -w /Library/LaunchDaemons/com.saltstack.salt.master.plist || return 1
+    fi
 
    return 0
 }
@@ -7774,6 +9381,43 @@ preseed_master() {
 #
 #######################################################################################################################
 
+#######################################################################################################################
+#
+#   This function checks if all of the installed daemons are running or not.
+#
+daemons_running_onedir() {
+    [ "$_START_DAEMONS" -eq $BS_FALSE ] && return 0
+
+    FAILED_DAEMONS=0
+    for fname in api master minion syndic; do
+        # Skip salt-api since the service should be opt-in and not necessarily started on boot
+        [ $fname = "api" ] && continue
+
+        # Skip if not meant to be installed
+        [ $fname = "minion" ] && [ "$_INSTALL_MINION" -eq $BS_FALSE ] && continue
+        [ $fname = "master" ] && [ "$_INSTALL_MASTER" -eq $BS_FALSE ] && continue
+        [ $fname = "syndic" ] && [ "$_INSTALL_SYNDIC" -eq $BS_FALSE ] && continue
+
+        if [ -f "/opt/saltstack/salt/run/run" ]; then
+            salt_path="/opt/saltstack/salt/run/run ${fname}"
+        else
+            salt_path="salt-${fname}"
+        fi
+        process_running=$(pgrep -f "${salt_path}")
+        if [ "${process_running}" = "" ]; then
+            echoerror "${salt_path} was not found running"
+            FAILED_DAEMONS=$((FAILED_DAEMONS + 1))
+        fi
+    done
+
+    return $FAILED_DAEMONS
+}
+
+#
+#  Ended daemons running check function
+#
+#######################################################################################################################
+
 #######################################################################################################################
 #
 #   This function checks if all of the installed daemons are running or not.
@@ -7874,6 +9518,7 @@ echodebug "PRESEED_MASTER_FUNC=${PRESEED_MASTER_FUNC}"
 INSTALL_FUNC_NAMES="install_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}_${ITYPE}"
 INSTALL_FUNC_NAMES="$INSTALL_FUNC_NAMES install_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}${PREFIXED_DISTRO_MINOR_VERSION}_${ITYPE}"
 INSTALL_FUNC_NAMES="$INSTALL_FUNC_NAMES install_${DISTRO_NAME_L}_${ITYPE}"
+echodebug "INSTALL_FUNC_NAMES=${INSTALL_FUNC_NAMES}"
 
 INSTALL_FUNC="null"
 for FUNC_NAME in $(__strip_duplicates "$INSTALL_FUNC_NAMES"); do
@@ -7925,6 +9570,7 @@ DAEMONS_RUNNING_FUNC_NAMES="$DAEMONS_RUNNING_FUNC_NAMES daemons_running_${DISTRO
 DAEMONS_RUNNING_FUNC_NAMES="$DAEMONS_RUNNING_FUNC_NAMES daemons_running_${DISTRO_NAME_L}${PREFIXED_DISTRO_MAJOR_VERSION}${PREFIXED_DISTRO_MINOR_VERSION}"
 DAEMONS_RUNNING_FUNC_NAMES="$DAEMONS_RUNNING_FUNC_NAMES daemons_running_${DISTRO_NAME_L}_${ITYPE}"
 DAEMONS_RUNNING_FUNC_NAMES="$DAEMONS_RUNNING_FUNC_NAMES daemons_running_${DISTRO_NAME_L}"
+DAEMONS_RUNNING_FUNC_NAMES="$DAEMONS_RUNNING_FUNC_NAMES daemons_running_${ITYPE}"
 DAEMONS_RUNNING_FUNC_NAMES="$DAEMONS_RUNNING_FUNC_NAMES daemons_running"
 
 DAEMONS_RUNNING_FUNC="null"
@@ -8114,6 +9760,11 @@ if [ "$DAEMONS_RUNNING_FUNC" != "null" ] && [ ${_START_DAEMONS} -eq $BS_TRUE ];
     fi
 fi
 
+if [ "$_AUTO_ACCEPT_MINION_KEYS" -eq "$BS_TRUE" ]; then
+  echoinfo "Accepting the Salt Minion Keys"
+  salt-key -yA
+fi
+
 # Done!
 if [ "$_CONFIG_ONLY" -eq $BS_FALSE ]; then
     echoinfo "Salt installed!"
@@ -8121,6 +9772,13 @@ else
     echoinfo "Salt configured!"
 fi
 
+if [ "$_QUICK_START" -eq "$BS_TRUE" ]; then
+  echoinfo "Congratulations!"
+  echoinfo "A couple of commands to try:"
+  echoinfo "  salt \* test.ping"
+  echoinfo "  salt \* test.version"
+fi
+
 exit 0
 
 # vim: set sts=4 ts=4 et
diff --git a/setup/so-functions b/setup/so-functions
index 1c9b0f43d..b64daaa92 100755
--- a/setup/so-functions
+++ b/setup/so-functions
@@ -1258,7 +1258,7 @@ generate_ssl() {
 	# if the install type is a manager then we need to wait for the minion to be ready before trying
 	# to run the ssl state since we need the minion to sign the certs
 	if [[ "$install_type" =~ ^(EVAL|MANAGER|MANAGERSEARCH|STANDALONE|IMPORT|HELIXSENSOR)$ ]]; then
-		wait_for_salt_minion
+		wait_for_salt_minion "$MINION_ID" "5" "$setup_log" || fail_setup
 	fi
 	info "Applying SSL state"
 	logCmd "salt-call state.apply ssl -l info"
@@ -1972,6 +1972,7 @@ securityonion_repo() {
 }
 
 repo_sync_local() {
+	SALTVERSION=$(egrep 'version: [0-9]{4}' ../salt/salt/master.defaults.yaml | sed 's/^.*version: //')
 	info "Repo Sync"
 	if [[ $is_supported ]]; then
 		# Sync the repo from the the SO repo locally.
@@ -2021,7 +2022,7 @@ repo_sync_local() {
 			curl -fsSL https://repo.securityonion.net/file/so-repo/prod/2.4/so/so.repo | tee /etc/yum.repos.d/so.repo
 			rpm --import https://repo.saltproject.io/salt/py3/redhat/9/x86_64/SALT-PROJECT-GPG-PUBKEY-2023.pub
 			dnf config-manager --add-repo https://download.docker.com/linux/centos/docker-ce.repo
-			curl -fsSL https://repo.saltproject.io/salt/py3/redhat/9/x86_64/minor/3006.1.repo | tee /etc/yum.repos.d/salt.repo
+			curl -fsSL "https://repo.saltproject.io/salt/py3/redhat/9/x86_64/minor/$SALTVERSION.repo" | tee /etc/yum.repos.d/salt.repo
 			dnf repolist
 			curl --retry 5 --retry-delay 60 -A "netinstall/$SOVERSION/$OS/$(uname -r)/1" https://sigs.securityonion.net/checkup --output /tmp/install
 		else

From d42b5ef901c0aef7ea8a9c2b175bca5a541e3232 Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Fri, 27 Oct 2023 11:18:56 -0400
Subject: [PATCH 298/417] remove unused url props to avoid kratos complaining
 about invalid urls when they're blank

---
 salt/kratos/map.jinja | 14 +++++++++++++-
 1 file changed, 13 insertions(+), 1 deletion(-)

diff --git a/salt/kratos/map.jinja b/salt/kratos/map.jinja
index a2477098d..a603d813a 100644
--- a/salt/kratos/map.jinja
+++ b/salt/kratos/map.jinja
@@ -23,4 +23,16 @@
 
 {% if KRATOSMERGED.oidc.enabled and 'oidc' in salt['pillar.get']('features') %}
 {%   do KRATOSMERGED.config.selfservice.methods.update({'oidc': {'enabled': true, 'config': {'providers': [KRATOSMERGED.oidc.config]}}}) %}
-{% endif %}
\ No newline at end of file
+{% endif %}
+
+{% if KRATOSMERGED.oidc.config.auth_url is defined and not KRATOSMERGED.oidc.config.auth_url.strip() | length %}
+{%   do KRATOSMERGED.oidc.config.pop('auth_url') %}
+{% endif %}
+
+{% if KRATOSMERGED.oidc.config.issuer_url is defined and not KRATOSMERGED.oidc.config.issuer_url.strip() | length %}
+{%   do KRATOSMERGED.oidc.config.pop('issuer_url') %}
+{% endif %}
+
+{% if KRATOSMERGED.oidc.config.token_url is defined and not KRATOSMERGED.oidc.config.token_url.strip() | length %}
+{%   do KRATOSMERGED.oidc.config.pop('token_url') %}
+{% endif %}

From 3a83c526608450c9b102a9340fb2a58f393d0727 Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Fri, 27 Oct 2023 11:20:05 -0400
Subject: [PATCH 299/417] minor updates

---
 VERSION | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/VERSION b/VERSION
index 7f2e97617..8ea99f559 100644
--- a/VERSION
+++ b/VERSION
@@ -1 +1 @@
-2.4.0-kilo
+2.4.30

From c955f9210a16f9ce2105620f9728a53a1d21942d Mon Sep 17 00:00:00 2001
From: weslambert <wlambertts@gmail.com>
Date: Fri, 27 Oct 2023 17:24:27 -0400
Subject: [PATCH 300/417] Remove policy for Cases indices

---
 salt/elasticsearch/defaults.yaml | 26 --------------------------
 1 file changed, 26 deletions(-)

diff --git a/salt/elasticsearch/defaults.yaml b/salt/elasticsearch/defaults.yaml
index 44cb0ea7d..2e19c50b7 100644
--- a/salt/elasticsearch/defaults.yaml
+++ b/salt/elasticsearch/defaults.yaml
@@ -108,8 +108,6 @@ elasticsearch:
                 match_mapping_type: string
           settings:
             index:
-              lifecycle:
-                name: so-case-logs
               mapping:
                 total_fields:
                   limit: 1500
@@ -119,30 +117,6 @@ elasticsearch:
               sort:
                 field: '@timestamp'
                 order: desc
-      policy:
-        phases:
-          cold:
-            actions:
-              set_priority:
-                priority: 0
-            min_age: 30d
-          delete:
-            actions:
-              delete: {}
-            min_age: 365d
-          hot:
-            actions:
-              rollover:
-                max_age: 30d
-                max_primary_shard_size: 50gb
-              set_priority:
-                priority: 100
-            min_age: 0ms
-          warm:
-            actions:
-              set_priority:
-                priority: 50
-            min_age: 30d
     so-common:
       close: 30
       delete: 365

From 76dd6f07abbe45b08823a615e1a277e5368f5bf8 Mon Sep 17 00:00:00 2001
From: weslambert <wlambertts@gmail.com>
Date: Fri, 27 Oct 2023 17:26:33 -0400
Subject: [PATCH 301/417] Remove policy for OSQuery manager indices

---
 salt/elasticsearch/defaults.yaml | 52 --------------------------------
 1 file changed, 52 deletions(-)

diff --git a/salt/elasticsearch/defaults.yaml b/salt/elasticsearch/defaults.yaml
index 2e19c50b7..2781d2144 100644
--- a/salt/elasticsearch/defaults.yaml
+++ b/salt/elasticsearch/defaults.yaml
@@ -6323,33 +6323,7 @@ elasticsearch:
         template:
           settings:
             index:
-              lifecycle:
-                name: so-logs-osquery-manager-action.responses-logs
               number_of_replicas: 0
-      policy:
-        phases:
-          cold:
-            actions:
-              set_priority:
-                priority: 0
-            min_age: 30d
-          delete:
-            actions:
-              delete: {}
-            min_age: 365d
-          hot:
-            actions:
-              rollover:
-                max_age: 30d
-                max_primary_shard_size: 50gb
-              set_priority:
-                priority: 100
-            min_age: 0ms
-          warm:
-            actions:
-              set_priority:
-                priority: 50
-            min_age: 30d
     so-logs-osquery-manager-actions:
       index_sorting: false
       index_template:
@@ -6366,33 +6340,7 @@ elasticsearch:
         template:
           settings:
             index:
-              lifecycle:
-                name: so-logs-osquery-manager-actions-logs
               number_of_replicas: 0
-      policy:
-        phases:
-          cold:
-            actions:
-              set_priority:
-                priority: 0
-            min_age: 30d
-          delete:
-            actions:
-              delete: {}
-            min_age: 365d
-          hot:
-            actions:
-              rollover:
-                max_age: 30d
-                max_primary_shard_size: 50gb
-              set_priority:
-                priority: 100
-            min_age: 0ms
-          warm:
-            actions:
-              set_priority:
-                priority: 50
-            min_age: 30d
     so-logs-panw_x_panos:
       index_sorting: false
       index_template:

From 07e51121ba5d2649a75ee12087ece09c7c7e2cb3 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Mon, 30 Oct 2023 16:11:36 -0400
Subject: [PATCH 302/417] ensure networkminer is latest version

---
 salt/desktop/packages.sls | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/salt/desktop/packages.sls b/salt/desktop/packages.sls
index 3817f2e80..841d34744 100644
--- a/salt/desktop/packages.sls
+++ b/salt/desktop/packages.sls
@@ -346,7 +346,6 @@ desktop_packages:
       - snappy
       - sound-theme-freedesktop
       - soundtouch
-      - securityonion-networkminer
       - speech-dispatcher
       - speech-dispatcher-espeak-ng
       - speex
@@ -433,6 +432,10 @@ desktop_packages:
       - xorg-x11-xinit-session
       - zip
 
+install_networkminer:
+  pkg.latest:
+    - name: securityonion-networkminer
+
 {% else %}
 
 desktop_packages_os_fail:

From ed6473a34b7da12fa6cc1ac13a77dfcc07c39dc9 Mon Sep 17 00:00:00 2001
From: weslambert <wlambertts@gmail.com>
Date: Mon, 30 Oct 2023 20:41:49 -0400
Subject: [PATCH 303/417] Add roles for eval mode

---
 salt/elasticsearch/defaults.yaml | 8 +++++++-
 1 file changed, 7 insertions(+), 1 deletion(-)

diff --git a/salt/elasticsearch/defaults.yaml b/salt/elasticsearch/defaults.yaml
index 2781d2144..dc8f97e44 100644
--- a/salt/elasticsearch/defaults.yaml
+++ b/salt/elasticsearch/defaults.yaml
@@ -9088,7 +9088,13 @@ elasticsearch:
     so-eval:
       config:
         node:
-          roles: []
+          roles:
+          - master
+          - data
+          - data_hot
+          - ingest
+          - transform
+          - remote_cluster_client
     so-heavynode:
       config:
         node:

From c354924b6853a88050f58bd9babddbbfa7ef2b7d Mon Sep 17 00:00:00 2001
From: weslambert <wlambertts@gmail.com>
Date: Tue, 31 Oct 2023 10:05:29 -0400
Subject: [PATCH 304/417] Add import roles

---
 salt/elasticsearch/defaults.yaml | 8 +++++++-
 1 file changed, 7 insertions(+), 1 deletion(-)

diff --git a/salt/elasticsearch/defaults.yaml b/salt/elasticsearch/defaults.yaml
index dc8f97e44..cd8ff9397 100644
--- a/salt/elasticsearch/defaults.yaml
+++ b/salt/elasticsearch/defaults.yaml
@@ -9107,7 +9107,13 @@ elasticsearch:
     so-import:
       config:
         node:
-          roles: []
+          roles:
+          - master
+          - data
+          - data_hot
+          - ingest
+          - transform
+          - remote_cluster_client
     so-manager:
       config:
         node:

From c420e198fb99dcc9a1faf14bb7d69380d517d180 Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Tue, 31 Oct 2023 11:18:39 -0400
Subject: [PATCH 305/417] ignore specific Suricata errors

---
 salt/common/tools/sbin/so-log-check | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/salt/common/tools/sbin/so-log-check b/salt/common/tools/sbin/so-log-check
index 395f60c7d..10f7e8c89 100755
--- a/salt/common/tools/sbin/so-log-check
+++ b/salt/common/tools/sbin/so-log-check
@@ -158,6 +158,8 @@ if [[ $EXCLUDE_KNOWN_ERRORS == 'Y' ]]; then
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|repodownload.conf"            # known issue with reposync on pre-2.4.20 
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|missing versions record"      # stenographer corrupt index
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|soc.field."                   # known ingest type collisions issue with earlier versions of SO
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|error parsing signature"      # Malformed Suricata rule, from upstream provider
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|sticky buffer has no matches" # Non-critical Suricata error
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|iteration"
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|communication packets"
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|use of closed"

From 0c98bd96c7f731c20ed0b5c356fb9f2d2ed32e30 Mon Sep 17 00:00:00 2001
From: Mike Reeves <mike.reeves@securityonionsolutions.com>
Date: Tue, 31 Oct 2023 12:52:00 -0400
Subject: [PATCH 306/417] Delete salt/idstools/tools/sbin/so-rule

UI does this now
---
 salt/idstools/tools/sbin/so-rule | 454 -------------------------------
 1 file changed, 454 deletions(-)
 delete mode 100755 salt/idstools/tools/sbin/so-rule

diff --git a/salt/idstools/tools/sbin/so-rule b/salt/idstools/tools/sbin/so-rule
deleted file mode 100755
index 19618c9f5..000000000
--- a/salt/idstools/tools/sbin/so-rule
+++ /dev/null
@@ -1,454 +0,0 @@
-#!/usr/bin/env python3
-
-# Copyright Security Onion Solutions LLC and/or licensed to Security Onion Solutions LLC under one
-# or more contributor license agreements. Licensed under the Elastic License 2.0 as shown at 
-# https://securityonion.net/license; you may not use this file except in compliance with the
-# Elastic License 2.0.
-
-
-
-""" 
-Local exit codes:
- - General error: 1
- - Invalid argument: 2
- - File error: 3
-"""
-
-import sys, os, subprocess, argparse, signal
-import copy
-import re
-import textwrap
-import yaml
-
-minion_pillar_dir = '/opt/so/saltstack/local/pillar/minions'
-salt_proc: subprocess.CompletedProcess = None
-
-
-def print_err(string: str):
-  print(string, file=sys.stderr)
-
-
-def check_apply(args: dict, prompt: bool = True):
-  if args.apply:
-    print('Configuration updated. Applying changes:')
-    return apply()
-  else:
-    if prompt:
-      message = 'Configuration updated. Would you like to apply your changes now? (y/N) '
-      answer = input(message)
-      while answer.lower() not in [ 'y', 'n', '' ]:
-        answer = input(message)
-      if answer.lower() in [ 'n', '' ]:
-        return 0
-      else:
-        print('Applying changes:')
-        return apply()
-    else:
-      return 0
-
-
-def apply():
-  salt_cmd = ['salt-call', 'state.apply', '-l', 'quiet', 'idstools.sync_files', 'queue=True']
-  update_cmd = ['so-rule-update']
-  print('Syncing config files...')
-  cmd = subprocess.run(salt_cmd, stdout=subprocess.DEVNULL)
-  if cmd.returncode == 0:
-    print('Updating rules...')
-    return subprocess.run(update_cmd).returncode
-  else:
-    return cmd.returncode
-
-
-def find_minion_pillar() -> str:
-  regex = '^.*_(manager|managersearch|standalone|import|eval)\.sls$'
-  
-  result = []
-  for root, _, files in os.walk(minion_pillar_dir):
-    for f_minion_id in files:
-      if re.search(regex, f_minion_id):
-        result.append(os.path.join(root, f_minion_id))
-  
-  if len(result) == 0:
-    print_err('Could not find manager-type pillar (eval, standalone, manager, managersearch, import). Are you running this script on the manager?')
-    sys.exit(3)
-  elif len(result) > 1:
-    res_arr = []
-    for r in result:
-      res_arr.append(f'\"{r}\"')
-    res_str = ', '.join(res_arr)
-    print_err('(This should not happen, the system is in an error state if you see this message.)\n')
-    print_err('More than one manager-type pillar exists, minion id\'s listed below:')
-    print_err(f'  {res_str}')
-    sys.exit(3)
-  else:
-    return result[0]
-
-
-def read_pillar(pillar: str):
-  try:
-    with open(pillar, 'r') as f:
-      loaded_yaml = yaml.safe_load(f.read())
-      if loaded_yaml is None:
-        print_err(f'Could not parse {pillar}')
-        sys.exit(3)
-      return loaded_yaml
-  except:
-    print_err(f'Could not open {pillar}')
-    sys.exit(3)
-
-
-def write_pillar(pillar: str, content: dict):
-  try:
-    sids = content['idstools']['sids']
-    if sids['disabled'] is not None:
-      if len(sids['disabled']) == 0: sids['disabled'] = None
-    if sids['enabled'] is not None:
-      if len(sids['enabled']) == 0: sids['enabled'] = None
-    if sids['modify'] is not None:
-      if len(sids['modify']) == 0: sids['modify'] = None
-
-    with open(pillar, 'w') as f:
-      return yaml.dump(content, f, default_flow_style=False)
-  except Exception as e:
-    print_err(f'Could not open {pillar}')
-    sys.exit(3)
-
-
-def check_sid_pattern(sid_pattern: str):
-  message = f'SID {sid_pattern} is not valid, did you forget the \"re:\" prefix for a regex pattern?'
-
-  if sid_pattern.startswith('re:'):
-    r_string = sid_pattern[3:]
-    if not valid_regex(r_string):
-      print_err('Invalid regex pattern.')
-      return False
-    else:
-      return True
-  else:
-    sid: int
-    try:
-      sid = int(sid_pattern)
-    except:
-      print_err(message)
-      return False
-
-    if sid >= 0:
-      return True
-    else:
-      print_err(message)
-      return False
-
-
-def valid_regex(pattern: str):
-  try:
-    re.compile(pattern)
-    return True
-  except re.error:
-    return False
-
-
-def sids_key_exists(pillar: dict, key: str):
-  return key in pillar.get('idstools', {}).get('sids', {})
-
-
-def rem_from_sids(pillar: dict, key: str, val: str, optional = False):
-  pillar_dict = copy.deepcopy(pillar)
-  arr = pillar_dict['idstools']['sids'][key]
-  if arr is None or val not in arr:
-    if not optional: print(f'{val} already does not exist in {key}')
-  else:
-    pillar_dict['idstools']['sids'][key].remove(val)
-  return pillar_dict
-
-
-def add_to_sids(pillar: dict, key: str, val: str, optional = False):
-  pillar_dict = copy.deepcopy(pillar)
-  if pillar_dict['idstools']['sids'][key] is None: 
-    pillar_dict['idstools']['sids'][key] = []
-  if val in pillar_dict['idstools']['sids'][key]:
-    if not optional: print(f'{val} already exists in {key}')
-  else:
-    pillar_dict['idstools']['sids'][key].append(val)
-  return pillar_dict
-
-
-def add_rem_disabled(args: dict):
-  global salt_proc
-
-  if not check_sid_pattern(args.sid_pattern):
-    return 2
-
-  pillar_dict = read_pillar(args.pillar)
-
-  if not sids_key_exists(pillar_dict, 'disabled'):
-    pillar_dict['idstools']['sids']['disabled'] = None
-  
-  if args.remove:
-    temp_pillar_dict = rem_from_sids(pillar_dict, 'disabled', args.sid_pattern)
-  else:
-    temp_pillar_dict = add_to_sids(pillar_dict, 'disabled', args.sid_pattern)
-
-  if temp_pillar_dict['idstools']['sids']['disabled'] == pillar_dict['idstools']['sids']['disabled']:
-    salt_proc = check_apply(args, prompt=False)
-    return salt_proc
-  else:
-    pillar_dict = temp_pillar_dict
-
-  if not args.remove:
-    if sids_key_exists(pillar_dict, 'enabled'):
-      pillar_dict = rem_from_sids(pillar_dict, 'enabled', args.sid_pattern, optional=True)
-
-    modify = pillar_dict.get('idstools', {}).get('sids', {}).get('modify')
-    if modify is not None:
-      rem_candidates = []
-      for action in modify:
-        if action.startswith(f'{args.sid_pattern} '):
-          rem_candidates.append(action)
-      if len(rem_candidates) > 0:
-        for item in rem_candidates:
-          print(f' - {item}')
-        answer = input(f'The above modify actions contain {args.sid_pattern}. Would you like to remove them? (Y/n) ')
-        while answer.lower() not in [ 'y', 'n', '' ]:
-          for item in rem_candidates:
-            print(f' - {item}')
-          answer = input(f'The above modify actions contain {args.sid_pattern}. Would you like to remove them? (Y/n) ')
-        if answer.lower() in [ 'y', '' ]:
-          for item in rem_candidates:
-            modify.remove(item)
-          pillar_dict['idstools']['sids']['modify'] = modify
-
-  write_pillar(pillar=args.pillar, content=pillar_dict)
-  
-  salt_proc = check_apply(args)
-  return salt_proc
-
-
-def list_disabled_rules(args: dict):
-  pillar_dict = read_pillar(args.pillar)
-
-  disabled = pillar_dict.get('idstools', {}).get('sids', {}).get('disabled')
-  if disabled is None:
-    print('No rules disabled.')
-    return 0
-  else:
-    print('Disabled rules:')
-    for rule in disabled:
-      print(f'  - {rule}')
-    return 0
-
-
-def add_rem_enabled(args: dict):
-  global salt_proc
-
-  if not check_sid_pattern(args.sid_pattern):
-    return 2
-
-  pillar_dict = read_pillar(args.pillar)
-
-  if not sids_key_exists(pillar_dict, 'enabled'):
-    pillar_dict['idstools']['sids']['enabled'] = None
-
-  if args.remove:
-    temp_pillar_dict = rem_from_sids(pillar_dict, 'enabled', args.sid_pattern)
-  else:
-    temp_pillar_dict = add_to_sids(pillar_dict, 'enabled', args.sid_pattern)
-  
-  if temp_pillar_dict['idstools']['sids']['enabled'] == pillar_dict['idstools']['sids']['enabled']:
-    salt_proc = check_apply(args, prompt=False)
-    return salt_proc
-  else:
-    pillar_dict = temp_pillar_dict
-
-  if not args.remove:
-    if sids_key_exists(pillar_dict, 'disabled'):
-      pillar_dict = rem_from_sids(pillar_dict, 'disabled', args.sid_pattern, optional=True)
-  
-  write_pillar(pillar=args.pillar, content=pillar_dict)
-
-  salt_proc = check_apply(args)
-  return salt_proc
-
-
-def list_enabled_rules(args: dict):
-  pillar_dict = read_pillar(args.pillar)
-
-  enabled = pillar_dict.get('idstools', {}).get('sids', {}).get('enabled')
-  if enabled is None:
-    print('No rules explicitly enabled.')
-    return 0
-  else:
-    print('Enabled rules:')
-    for rule in enabled:
-      print(f'  - {rule}')
-    return 0
-
-
-def add_rem_modify(args: dict):
-  global salt_proc
-
-  if not check_sid_pattern(args.sid_pattern):
-    return 2
-
-  if not valid_regex(args.search_term):
-    print_err('Search term is not a valid regex pattern.')
-
-  string_val = f'{args.sid_pattern} \"{args.search_term}\" \"{args.replace_term}\"'
-
-  pillar_dict = read_pillar(args.pillar)
-
-  if not sids_key_exists(pillar_dict, 'modify'):
-    pillar_dict['idstools']['sids']['modify'] = None
-
-  if args.remove:
-    temp_pillar_dict = rem_from_sids(pillar_dict, 'modify', string_val)
-  else:
-    temp_pillar_dict = add_to_sids(pillar_dict, 'modify', string_val)
-    
-  if temp_pillar_dict['idstools']['sids']['modify'] == pillar_dict['idstools']['sids']['modify']:
-    salt_proc = check_apply(args, prompt=False)
-    return salt_proc
-  else:
-    pillar_dict = temp_pillar_dict
-
-  # TODO: Determine if a rule should be removed from disabled if modified.
-  if not args.remove:
-    if sids_key_exists(pillar_dict, 'disabled'):
-      pillar_dict = rem_from_sids(pillar_dict, 'disabled', args.sid_pattern, optional=True) 
-
-  write_pillar(pillar=args.pillar, content=pillar_dict)
-  
-  salt_proc = check_apply(args)
-  return salt_proc
-  
-
-def list_modified_rules(args: dict):
-  pillar_dict = read_pillar(args.pillar)
-
-  modify = pillar_dict.get('idstools', {}).get('sids', {}).get('modify')
-  if modify is None:
-    print('No rules currently modified.')
-    return 0
-  else:
-    print('Modified rules + modifications:')
-    for rule in modify:
-      print(f'  - {rule}')
-    return 0
-
-
-def sigint_handler(*_):
-  print('Exiting gracefully on Ctrl-C')
-  if salt_proc is not None: salt_proc.send_signal(signal.SIGINT)
-  sys.exit(0)
-
-
-def main():
-  signal.signal(signal.SIGINT, sigint_handler)
-
-  if os.geteuid() != 0:
-    print_err('You must run this script as root')
-    sys.exit(1)
-
-  apply_help='After updating rule configuration, apply the idstools state.'
-
-  main_parser = argparse.ArgumentParser(formatter_class=argparse.RawDescriptionHelpFormatter)
-
-  subcommand_desc = textwrap.dedent(
-    """\
-      disabled            Manage and list disabled rules (add, remove, list)
-      enabled             Manage and list enabled rules (add, remove, list)
-      modify              Manage and list modified rules (add, remove, list)
-    """
-  )
-  subparsers = main_parser.add_subparsers(title='commands', description=subcommand_desc, metavar='', dest='command')
-
-
-  sid_or_regex_help = 'A valid SID (ex: "4321") or regular expression pattern (ex: "re:heartbleed|spectre")'
-
-  # Disabled actions
-  disabled = subparsers.add_parser('disabled')
-  disabled_sub = disabled.add_subparsers()
-
-  disabled_add = disabled_sub.add_parser('add')
-  disabled_add.set_defaults(func=add_rem_disabled)
-  disabled_add.add_argument('sid_pattern', metavar='SID|REGEX', help=sid_or_regex_help)
-  disabled_add.add_argument('--apply', action='store_const', const=True, required=False, help=apply_help)
-
-  disabled_rem = disabled_sub.add_parser('remove')
-  disabled_rem.set_defaults(func=add_rem_disabled, remove=True)
-  disabled_rem.add_argument('sid_pattern', metavar='SID|REGEX', help=sid_or_regex_help)
-  disabled_rem.add_argument('--apply', action='store_const', const=True, required=False, help=apply_help)
-
-  disabled_list = disabled_sub.add_parser('list')
-  disabled_list.set_defaults(func=list_disabled_rules)
-
-
-  # Enabled actions
-  enabled = subparsers.add_parser('enabled')
-  enabled_sub = enabled.add_subparsers()
-
-  enabled_add = enabled_sub.add_parser('add')
-  enabled_add.set_defaults(func=add_rem_enabled)
-  enabled_add.add_argument('sid_pattern', metavar='SID|REGEX', help=sid_or_regex_help)
-  enabled_add.add_argument('--apply', action='store_const', const=True, required=False, help=apply_help)
-
-  enabled_rem = enabled_sub.add_parser('remove')
-  enabled_rem.set_defaults(func=add_rem_enabled, remove=True)
-  enabled_rem.add_argument('sid_pattern', metavar='SID|REGEX', help=sid_or_regex_help)
-  enabled_rem.add_argument('--apply', action='store_const', const=True, required=False, help=apply_help)
-
-  enabled_list = enabled_sub.add_parser('list')
-  enabled_list.set_defaults(func=list_enabled_rules)
-  
-
-  search_term_help='A properly escaped regex search term (ex: "\\\$EXTERNAL_NET")'
-  replace_term_help='The text to replace the search term with'
-
-  # Modify actions
-  modify = subparsers.add_parser('modify')
-  modify_sub = modify.add_subparsers()
-
-  modify_add = modify_sub.add_parser('add')
-  modify_add.set_defaults(func=add_rem_modify)
-  modify_add.add_argument('sid_pattern', metavar='SID|REGEX', help=sid_or_regex_help)
-  modify_add.add_argument('search_term', metavar='SEARCH_TERM', help=search_term_help)
-  modify_add.add_argument('replace_term', metavar='REPLACE_TERM', help=replace_term_help)
-  modify_add.add_argument('--apply', action='store_const', const=True, required=False, help=apply_help)
-
-  modify_rem = modify_sub.add_parser('remove')
-  modify_rem.set_defaults(func=add_rem_modify, remove=True)
-  modify_rem.add_argument('sid_pattern', metavar='SID', help=sid_or_regex_help)
-  modify_rem.add_argument('search_term', metavar='SEARCH_TERM', help=search_term_help)
-  modify_rem.add_argument('replace_term', metavar='REPLACE_TERM', help=replace_term_help)
-  modify_rem.add_argument('--apply', action='store_const', const=True, required=False, help=apply_help)
-
-  modify_list = modify_sub.add_parser('list')
-  modify_list.set_defaults(func=list_modified_rules)
-
-
-  # Begin parse + run
-  args = main_parser.parse_args(sys.argv[1:])
-  
-  if not hasattr(args, 'remove'):
-    args.remove = False
-
-  args.pillar = find_minion_pillar()
-
-  if hasattr(args, 'func'):
-    exit_code = args.func(args)
-  else:
-    if args.command is None:
-      main_parser.print_help()
-    else:
-      if args.command == 'disabled':
-        disabled.print_help()
-      elif args.command == 'enabled':
-        enabled.print_help()
-      elif args.command == 'modify':
-        modify.print_help()
-    sys.exit(0)
-  
-  sys.exit(exit_code)
-
-
-if __name__ == '__main__':
-  main()

From cc3a69683c58d0e0618713a081dd5bcf66ae8fb7 Mon Sep 17 00:00:00 2001
From: Mike Reeves <mike.reeves@securityonionsolutions.com>
Date: Tue, 31 Oct 2023 12:55:47 -0400
Subject: [PATCH 307/417] Delete salt/manager/tools/sbin/so-allow-view

---
 salt/manager/tools/sbin/so-allow-view | 15 ---------------
 1 file changed, 15 deletions(-)
 delete mode 100755 salt/manager/tools/sbin/so-allow-view

diff --git a/salt/manager/tools/sbin/so-allow-view b/salt/manager/tools/sbin/so-allow-view
deleted file mode 100755
index 58b972ee2..000000000
--- a/salt/manager/tools/sbin/so-allow-view
+++ /dev/null
@@ -1,15 +0,0 @@
-#!/bin/bash
-
-# Copyright Security Onion Solutions LLC and/or licensed to Security Onion Solutions LLC under one
-# or more contributor license agreements. Licensed under the Elastic License 2.0 as shown at 
-# https://securityonion.net/license; you may not use this file except in compliance with the
-# Elastic License 2.0.
-
-
-
-. /usr/sbin/so-common
-
-echo ""
-echo "Hosts/Networks that have access to login to the Security Onion Console:"
-
-so-firewall includedhosts analyst

From 497294c363d721331e9f727d6d1eacbb20bdb202 Mon Sep 17 00:00:00 2001
From: Mike Reeves <mike.reeves@securityonionsolutions.com>
Date: Tue, 31 Oct 2023 12:57:10 -0400
Subject: [PATCH 308/417] Delete salt/common/tools/sbin/so-zeek-logs

---
 salt/common/tools/sbin/so-zeek-logs | 67 -----------------------------
 1 file changed, 67 deletions(-)
 delete mode 100755 salt/common/tools/sbin/so-zeek-logs

diff --git a/salt/common/tools/sbin/so-zeek-logs b/salt/common/tools/sbin/so-zeek-logs
deleted file mode 100755
index f6df7f8aa..000000000
--- a/salt/common/tools/sbin/so-zeek-logs
+++ /dev/null
@@ -1,67 +0,0 @@
-#!/bin/bash
-local_salt_dir=/opt/so/saltstack/local
-
-zeek_logs_enabled() {
-  echo "zeeklogs:" > $local_salt_dir/pillar/zeeklogs.sls
-  echo "  enabled:" >> $local_salt_dir/pillar/zeeklogs.sls
-  for BLOG in "${BLOGS[@]}"; do
-    echo "    - $BLOG" | tr -d '"' >> $local_salt_dir/pillar/zeeklogs.sls
-  done
-}
-
-whiptail_manager_adv_service_zeeklogs() {
-  BLOGS=$(whiptail --title "so-zeek-logs" --checklist "Please Select Logs to Send:" 24 78 12 \
-  "conn" "Connection Logging" ON \
-  "dce_rpc" "RPC Logs" ON \
-  "dhcp" "DHCP Logs" ON \
-  "dnp3" "DNP3 Logs" ON \
-  "dns" "DNS Logs" ON \
-  "dpd" "DPD Logs" ON \
-  "files" "Files Logs" ON \
-  "ftp" "FTP Logs" ON \
-  "http" "HTTP Logs" ON \
-  "intel" "Intel Hits Logs" ON \
-  "irc" "IRC Chat Logs" ON \
-  "kerberos" "Kerberos Logs" ON \
-  "modbus" "MODBUS Logs" ON \
-  "notice" "Zeek Notice Logs" ON \
-  "ntlm" "NTLM Logs" ON \
-  "pe" "PE Logs" ON \
-  "radius" "Radius Logs" ON \
-  "rfb" "RFB Logs" ON \
-  "rdp" "RDP Logs" ON \
-  "sip" "SIP Logs" ON \
-  "smb_files" "SMB Files Logs" ON \
-  "smb_mapping" "SMB Mapping Logs" ON \
-  "smtp" "SMTP Logs" ON \
-  "snmp" "SNMP Logs" ON \
-  "ssh" "SSH Logs" ON \
-  "ssl" "SSL Logs" ON \
-  "syslog" "Syslog Logs" ON \
-  "tunnel" "Tunnel Logs" ON \
-  "weird" "Zeek Weird Logs" ON \
-  "mysql" "MySQL Logs" ON \
-  "socks" "SOCKS Logs" ON \
-  "x509" "x.509 Logs" ON 3>&1 1>&2 2>&3 )
-  
-  local exitstatus=$?
-
-  IFS=' ' read -ra BLOGS <<< "$BLOGS"
-
-  return $exitstatus
-}
-
-whiptail_manager_adv_service_zeeklogs
-return_code=$?
-case $return_code in
-  1)
-    whiptail --title "so-zeek-logs" --msgbox "Cancelling. No changes have been made." 8 75
-    ;;
-  255)
-    whiptail --title "so-zeek-logs" --msgbox "Whiptail error occured, exiting." 8 75
-    ;;
-  *)
-    zeek_logs_enabled
-    ;;
-esac
-

From d07cfdd3fe9366a6c22f6725027a05ec1be7af82 Mon Sep 17 00:00:00 2001
From: Mike Reeves <mike.reeves@securityonionsolutions.com>
Date: Tue, 31 Oct 2023 13:10:55 -0400
Subject: [PATCH 309/417] Update so-functions

---
 setup/so-functions | 182 ---------------------------------------------
 1 file changed, 182 deletions(-)

diff --git a/setup/so-functions b/setup/so-functions
index 42402ad86..56c4b29c1 100755
--- a/setup/so-functions
+++ b/setup/so-functions
@@ -268,15 +268,6 @@ collect_dockernet() {
 	fi
 }
 
-collect_es_space_limit() {
-	whiptail_log_size_limit "$log_size_limit"
-
-	while ! valid_int "$log_size_limit"; do # Upper/lower bounds?
-		whiptail_invalid_input
-		whiptail_log_size_limit "$log_size_limit"
-	done
-}
-
 collect_gateway() {
 	whiptail_management_interface_gateway
 
@@ -286,28 +277,6 @@ collect_gateway() {
 	done
 }
 
-collect_homenet_mngr() {
-	whiptail_homenet_manager "10.0.0.0/8,192.168.0.0/16,172.16.0.0/12"
-	
-	while ! valid_cidr_list "$HNMANAGER"; do
-		whiptail_invalid_input
-		whiptail_homenet_manager "$HNMANAGER"
-	done
-}
-
-collect_homenet_snsr() {
-	if whiptail_homenet_sensor_inherit; then
-		export HNSENSOR=inherit
-	else
-		whiptail_homenet_sensor "10.0.0.0/8,192.168.0.0/16,172.16.0.0/12"
-		
-		while ! valid_cidr_list "$HNSENSOR"; do
-			whiptail_invalid_input
-			whiptail_homenet_sensor "$HNSENSOR"
-		done
-	fi
-}
-
 collect_hostname() {
 	collect_hostname_validate
 
@@ -346,26 +315,6 @@ collect_idh_preferences() {
 	if [[ "$idh_preferences" != "" ]]; then IDH_MGTRESTRICT='True'; fi
 }
 
-collect_idh_services() {
-	whiptail_idh_services
-
-	case "$IDH_SERVICES" in
-		'Linux Webserver (NAS Skin)')
-			IDH_SERVICES='"HTTP","FTP","SSH"'
-		;;
-		'MySQL Server')
-			IDH_SERVICES='"MYSQL","SSH"'
-		;;
-		'MSSQL Server')
-			IDH_SERVICES='"MSSQL","VNC'
-		;;
-		'Custom')
-			whiptail_idh_services_custom
-			IDH_SERVICES=$(echo "$IDH_SERVICES" | tr '[:blank:]' ',' )
-		;;
-	esac
-}
-
 collect_int_ip_mask() {
 	whiptail_management_interface_ip_mask
 
@@ -425,71 +374,6 @@ collect_net_method() {
 	fi
 }
 
-collect_ntp_servers() {
-	if whiptail_ntp_ask; then
-		[[ $is_airgap ]] && ntp_string=""
-		whiptail_ntp_servers "$ntp_string"
-
-		while ! valid_ntp_list "$ntp_string"; do
-			whiptail_invalid_input
-			whiptail_ntp_servers "$ntp_string"
-		done
-
-		IFS="," read -r -a ntp_servers <<< "$ntp_string" # Split string on commas into array
-	else
-		ntp_servers=()
-	fi
-}
-
-collect_oinkcode() {
-	whiptail_oinkcode
-
-	while ! valid_string "$OINKCODE" "" "128"; do
-		whiptail_invalid_input
-		whiptail_oinkcode "$OINKCODE"
-	done
-}
-
-collect_patch_schedule() {
-	whiptail_patch_schedule
-
-	case "$patch_schedule" in
-		'New Schedule')
-			whiptail_patch_schedule_select_days
-			whiptail_patch_schedule_select_hours
-			collect_patch_schedule_name_new
-			patch_schedule_os_new
-		;;
-		'Import Schedule')
-			collect_patch_schedule_name_import
-		;;
-		'Automatic')
-			PATCHSCHEDULENAME='auto'
-		;;
-		'Manual')
-			PATCHSCHEDULENAME='manual'
-		;;
-	esac
-}
-
-collect_patch_schedule_name_new() {
-	whiptail_patch_name_new_schedule
-
-	while ! valid_string "$PATCHSCHEDULENAME"; do
-		whiptail_invalid_string "schedule name"
-		whiptail_patch_name_new_schedule "$PATCHSCHEDULENAME"
-	done
-}
-
-collect_patch_schedule_name_import() {
-	whiptail_patch_schedule_import
-
-	while ! valid_string "$PATCHSCHEDULENAME"; do
-		whiptail_invalid_string "schedule name"
-		whiptail_patch_schedule_import "$PATCHSCHEDULENAME"
-	done
-}
-
 collect_proxy() {
 	[[ -n $TESTING ]] && return
 	local ask=${1:-true}
@@ -658,47 +542,6 @@ configure_minion() {
 	} >> "$setup_log" 2>&1
 }
 
-configure_ntp() {
-	local chrony_conf=/etc/chrony.conf
-
-	# Install chrony if it isn't already installed
-	if ! command -v chronyc &> /dev/null; then
-		logCmd "dnf -y install chrony"
-	fi
-
-	[[ -f $chrony_conf ]] && mv $chrony_conf "$chrony_conf.bak"
-
-	printf '%s\n' "# NTP server list" > $chrony_conf
-
-	# Build list of servers
-	for addr in "${ntp_servers[@]}"; do
-		echo "server $addr iburst" >> $chrony_conf
-	done
-
-	printf '\n%s\n' "# Config options" >> $chrony_conf
-
-	printf '%s\n' \
-		'driftfile /var/lib/chrony/drift' \
-		'makestep 1.0 3' \
-		'rtcsync' \
-		'logdir /var/log/chrony' >> $chrony_conf
-
-	if [[ $is_rpm ]]; then
-		systemctl enable chronyd
-		systemctl restart chronyd
-	else 
-		systemctl enable chrony
-		systemctl restart chrony
-	fi
-
-	# Tell the chrony daemon to sync time & update the system time
-	# Since these commands only make a call to chronyd, wait after each command to make sure the changes are made
-	printf "Syncing chrony time to server: "
-	chronyc -a 'burst 4/4' && sleep 30
-	printf "Forcing chrony to update the time: "
-	chronyc -a makestep && sleep 30
-}
-
 checkin_at_boot() {
 	local minion_config=/etc/salt/minion
 
@@ -1055,16 +898,6 @@ download_elastic_agent_artifacts() {
 	fi
 }
 
-installer_progress_loop() {
-	local i=0
-	local msg="${1:-Performing background actions...}"
-	while true; do
-		[[ $i -lt 98 ]] && ((i++))
-		set_progress_str "$i" "$msg" nolog
-		[[ $i -gt 0 ]] && sleep 5s
-	done
-}
-
 installer_prereq_packages() {	
 	if [[ $is_deb ]]; then
 		# Print message to stdout so the user knows setup is doing something
@@ -1648,21 +1481,6 @@ network_setup() {
 	logCmd "sed -i '/\$MNIC/${INTERFACE}/g' /etc/NetworkManager/dispatcher.d/pre-up.d/99-so-checksum-offload-disable"
 }
 
-ntp_pillar_entries() {
-
-	local pillar_file=$local_salt_dir/pillar/minions/$MINION_ID.sls
-
-	
-	if [[ ${#ntp_servers[@]} -gt 0 ]]; then
-		printf '%s\n'\
-			"ntp:"\
-			"  servers:" > "$pillar_file"
-			for addr in "${ntp_servers[@]}"; do
-				printf '%s\n' "    - '$addr'" >> "$pillar_file"
-			done
-	fi
-}
-
 parse_install_username() {
 	# parse out the install username so things copy correctly
 	INSTALLUSERNAME=${SUDO_USER:-${USER}}

From ae45d40eca779ebb06403b3ce5ffabc1572f32e9 Mon Sep 17 00:00:00 2001
From: Wes <wlambertts@gmail.com>
Date: Wed, 1 Nov 2023 13:34:30 +0000
Subject: [PATCH 310/417] Add Sublime Platform ingest pipeline

---
 salt/elasticsearch/files/ingest/sublime | 34 +++++++++++++++++++++++++
 1 file changed, 34 insertions(+)
 create mode 100644 salt/elasticsearch/files/ingest/sublime

diff --git a/salt/elasticsearch/files/ingest/sublime b/salt/elasticsearch/files/ingest/sublime
new file mode 100644
index 000000000..c26f93c01
--- /dev/null
+++ b/salt/elasticsearch/files/ingest/sublime
@@ -0,0 +1,34 @@
+{
+  "description" : " Email alerts from Sublime",
+  "processors" : [
+    { "set":         { "field": "event.module", "value": "sublime"  } },
+    { "set":         { "field": "event.dataset", "value": "alert"  } },
+    { "set":         { "field": "event.severity", "value": 3, "override": true }  },
+    { "set":         { "field": "rule.name", "value": "Sublime Platform: {{ flagged_rules.0.name }}", "override": true }  },
+    { "set":         { "field": "sublime.message_group_id", "value": "{{ _id }}", "override": true }  },
+    { "set":         { "field": "email.address", "value": "{{ messages.0.recipients.0.email }}", "override": true }  },
+    { "set":         { "field": "email.forwarded_recipents", "value": "{{ messages.0.forwarded_receipients }}", "override": true }  },
+    { "set":         { "field": "email.sender.address", "value": "{{ messages.0.sender.email }}", "override": true }  },
+    { "set":         { "field": "email.subject", "value": "{{ messages.0.subject }}", "override": true }  },
+    { "set":         { "field": "email.forwarded_at", "value": "{{ messages.0.forwarded_at }}", "override": true }  },
+    { "set":         { "field": "email.created_at", "value": "{{ messages.0.created_at }}", "override": true }  },
+    { "set":         { "field": "email.read_at", "value": "{{ messages.0.read_at }}", "override": true }  },
+    { "set":         { "field": "email.replied_at", "value": "{{ messages.0.replied_at }}", "override": true }  },
+    {
+        "grok": {
+          "field": "sublime.request_url",
+          "patterns": ["^https://api.%{DATA:sublime_host}/v0%{GREEDYDATA}$"],
+          "ignore_failure": true
+        }
+    },
+
+    { "rename":      { "field": "sublime_host", "target_field": "sublime.url", "ignore_missing": true } },
+    { "rename":      { "field": "data", "target_field": "sublime", "ignore_missing": true } },
+    { "rename":      { "field": "flagged_rules", "target_field": "sublime.flagged_rules", "ignore_missing": true } },
+    { "rename":      { "field": "organization_id", "target_field": "sublime.organization_id", "ignore_missing": true } },
+    { "rename":      { "field": "review_status", "target_field": "sublime.review_status", "ignore_missing": true } },
+    { "rename":      { "field": "state", "target_field": "sublime.state", "ignore_missing": true } },
+    { "rename":      { "field": "user_reports", "target_field": "sublime.user_reports", "ignore_missing": true } },
+    { "pipeline":    { "name": "common" } }
+  ]
+}

From 4dc64400c58b9de09f6ac811180a55208dcea7a6 Mon Sep 17 00:00:00 2001
From: Wes <wlambertts@gmail.com>
Date: Wed, 1 Nov 2023 13:36:32 +0000
Subject: [PATCH 311/417] Support document_id

---
 .../so/9805_output_elastic_agent.conf.jinja   | 23 +++++++++++++++----
 1 file changed, 19 insertions(+), 4 deletions(-)

diff --git a/salt/logstash/pipelines/config/so/9805_output_elastic_agent.conf.jinja b/salt/logstash/pipelines/config/so/9805_output_elastic_agent.conf.jinja
index 0a148155c..f7671e2b7 100644
--- a/salt/logstash/pipelines/config/so/9805_output_elastic_agent.conf.jinja
+++ b/salt/logstash/pipelines/config/so/9805_output_elastic_agent.conf.jinja
@@ -1,13 +1,16 @@
 output {
   if "elastic-agent" in [tags] {
-      if [metadata][pipeline] {
+    if [metadata][pipeline] {
+      if [metadata][_id] {
         elasticsearch {
           hosts => "{{ GLOBALS.manager }}"
           ecs_compatibility => v8
           data_stream => true
           user => "{{ ES_USER }}"
           password => "{{ ES_PASS }}"
+          document_id => "%{[metadata][_id]}"
           pipeline => "%{[metadata][pipeline]}"
+          silence_errors_in_log => ["version_conflict_engine_exception"]
           ssl => true
           ssl_certificate_verification => false
         }
@@ -19,10 +22,22 @@ output {
           data_stream => true
           user => "{{ ES_USER }}"
           password => "{{ ES_PASS }}"
+          pipeline => "%{[metadata][pipeline]}"
           ssl => true
-          ssl_certificate_verification => false    
+          ssl_certificate_verification => false
         }
-     }
+      }
+    }
+    else {
+      elasticsearch {
+        hosts => "{{ GLOBALS.manager }}"
+        ecs_compatibility => v8
+        data_stream => true
+        user => "{{ ES_USER }}"
+        password => "{{ ES_PASS }}"
+        ssl => true
+        ssl_certificate_verification => false
+      }
+    }
   }
 }
-

From 51247be6b97583e15dad1af1c93ff031ef0a51a9 Mon Sep 17 00:00:00 2001
From: Wes <wlambertts@gmail.com>
Date: Wed, 1 Nov 2023 13:37:52 +0000
Subject: [PATCH 312/417] Sublime Platform integration defaults

---
 salt/elasticfleet/defaults.yaml | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/salt/elasticfleet/defaults.yaml b/salt/elasticfleet/defaults.yaml
index a17957e7c..ba779f5a0 100644
--- a/salt/elasticfleet/defaults.yaml
+++ b/salt/elasticfleet/defaults.yaml
@@ -90,3 +90,10 @@ elasticfleet:
     - zscaler_zia
     - zscaler_zpa
     - 1password
+  optional_integrations:
+    sublime_platform:
+      enabled_nodes: []
+      api_key:
+      base_url: https://api.platform.sublimesecurity.com
+      poll_interval: 5m
+      limit: 100

From 23ee9c2bb02842b7cd745e7b667bc02ad4ea6328 Mon Sep 17 00:00:00 2001
From: Wes <wlambertts@gmail.com>
Date: Wed, 1 Nov 2023 13:41:40 +0000
Subject: [PATCH 313/417] Sublime Platform integration

---
 .../sublime_platform.json                     | 44 +++++++++++++++++++
 salt/elasticfleet/soc_elasticfleet.yaml       | 32 ++++++++++++++
 2 files changed, 76 insertions(+)
 create mode 100644 salt/elasticfleet/files/integrations-optional/sublime_platform.json

diff --git a/salt/elasticfleet/files/integrations-optional/sublime_platform.json b/salt/elasticfleet/files/integrations-optional/sublime_platform.json
new file mode 100644
index 000000000..8feedc879
--- /dev/null
+++ b/salt/elasticfleet/files/integrations-optional/sublime_platform.json
@@ -0,0 +1,44 @@
+{%- from 'elasticfleet/map.jinja' import ELASTICFLEETMERGED -%}
+{%- from 'sensoroni/map.jinja' import SENSORONIMERGED -%}
+{%- from 'vars/globals.map.jinja' import GLOBALS -%}
+{%- raw -%}
+{
+  "package": {
+    "name": "httpjson",
+    "version": ""
+  },
+  "name": "sublime-platform",
+  "namespace": "default",
+  "description": "",
+  "policy_id": "FleetServer_{%- endraw -%}{{ NAME }}{%- raw -%}",
+  "vars": {},
+  "inputs": {
+    "generic-httpjson": {
+      "enabled": true,
+      "streams": {
+        "httpjson.generic": {
+          "enabled": true,
+          "vars": {
+            "request_method": "GET",
+            "processors": "- drop_event:\n    when:\n        not:\n            contains: \n                message: \"flagged_rules\"\n- decode_json_fields:\n    fields: [\"message\"]\n    document_id: id\n    target: \"\"",
+            "enable_request_tracer": false,
+            "oauth_scopes": [],
+            "request_transforms": "- set:\n    target: header.Authorization\n    value: 'Bearer {% endraw -%}{{ ELASTICFLEETMERGED.optional_integrations.sublime_platform.api_key }}{%- raw -%}'\n- set:\n    target: header.accept\n    value: application/json\n- set:\n    target: url.params.last_message_created_at[gte]\n    value: '[[formatDate (now (parseDuration \"-{%- endraw -%}{{ ELASTICFLEETMERGED.optional_integrations.sublime_platform.poll_interval }}{%- raw -%}\")) \"2006-01-02T15:04:05Z\"]]'\n- set:\n    target: url.params.reviewed\n    value: false\n- set:\n    target: url.params.flagged\n    value: true\n- set:\n    target: url.params.limit\n    value: {% endraw %}{{ ELASTICFLEETMERGED.optional_integrations.sublime_platform.limit }}{%- raw -%}",
+            "response_transforms": "",
+            "request_redirect_headers_ban_list": [],
+            "request_encode_as": "application/x-www-form-urlencoded",
+            "request_url": "{%- endraw -%}{{ ELASTICFLEETMERGED.optional_integrations.sublime_platform.base_url }}{%- raw -%}/v0/message-groups",
+            "response_split": "target: body.message_groups\ntype: array\nkeep_parent: false\ntransforms:\n    - set:\n        target: body.sublime.request_url\n        value : '[[ .last_response.url.value ]]'",
+            "tags": [
+              "forwarded"
+            ],
+            "pipeline": "sublime",
+            "data_stream.dataset": "sublime",
+            "request_interval": "1m"
+          }
+        }
+      }
+    }
+  }
+}
+{%- endraw -%}
diff --git a/salt/elasticfleet/soc_elasticfleet.yaml b/salt/elasticfleet/soc_elasticfleet.yaml
index af660358a..8cb975086 100644
--- a/salt/elasticfleet/soc_elasticfleet.yaml
+++ b/salt/elasticfleet/soc_elasticfleet.yaml
@@ -40,3 +40,35 @@ elasticfleet:
         helpLink: elastic-fleet.html
         sensitive: True
         advanced: True
+  optional_integrations:
+    sublime_platform:
+      enabled_nodes:
+        description: Determines if the Sublime Platform integration is enabled.
+        global: True
+        helpLink: elastic-fleet.html
+        advanced: True
+        forcedType: "[]string"
+      api_key:
+        description: API key for Sublime Platform.
+        global: False
+        helpLink: elastic-fleet.html
+        advanced: True
+        forcedType: string
+      base_url:
+        description: Base URL for Sublime Platform.
+        global: False
+        helpLink: elastic-fleet.html
+        advanced: True
+        forcedType: string
+      poll_interval:
+        description: Poll interval for alerts from Sublime Platform.
+        global: False
+        helpLink: elastic-fleet.html
+        advanced: True
+        forcedType: string
+      limit:
+        description: The maximum number of message groups to return from Sublime Platform.
+        global: False
+        helpLink: elastic-fleet.html
+        advanced: True
+        forcedType: int

From 9701d0ac206382124b5e8ffe854267b30f48aa18 Mon Sep 17 00:00:00 2001
From: Wes <wlambertts@gmail.com>
Date: Wed, 1 Nov 2023 13:47:20 +0000
Subject: [PATCH 314/417] Optional integration Fleet configuration

---
 salt/elasticfleet/config.sls | 32 ++++++++++++++++++++++++++++++++
 1 file changed, 32 insertions(+)

diff --git a/salt/elasticfleet/config.sls b/salt/elasticfleet/config.sls
index d2e357c91..29eb6e972 100644
--- a/salt/elasticfleet/config.sls
+++ b/salt/elasticfleet/config.sls
@@ -6,6 +6,7 @@
 {% from 'allowed_states.map.jinja' import allowed_states %}
 {% from 'vars/globals.map.jinja' import GLOBALS %}
 {% if sls.split('.')[0] in allowed_states %}
+{% set node_data = salt['pillar.get']('node_data') %}
 
 # Add EA Group
 elasticfleetgroup:
@@ -92,6 +93,34 @@ eaintegration:
     - user: 947
     - group: 939
 
+{% for minion in node_data %}
+{% set role = node_data[minion]["role"] %}
+{% if role in [ "fleet","heavynode", "manager","managersearch","standalone" ] %}
+{% set optional_integrations = salt['pillar.get']('elasticfleet:optional_integrations', {}) %}
+{% set integration_keys = salt['pillar.get']('elasticfleet:optional_integrations', {}).keys() %}
+fleet_server_integrations_{{ minion }}:
+  file.directory:
+    - name: /opt/so/conf/elastic-fleet/integrations/FleetServer_{{ minion }}
+    - user: 947
+    - group: 939
+    - makedirs: True
+{% for integration in integration_keys %}
+{% set enabled_nodes = optional_integrations[integration]["enabled_nodes"] %}
+{% if minion in enabled_nodes %}
+optional_integrations_dynamic_{{ minion }}:
+  file.managed:
+    - name: /opt/so/conf/elastic-fleet/integrations/FleetServer_{{ minion }}/{{ integration }}.json
+    - source: salt://elasticfleet/files/integrations-optional/{{ integration }}.json
+    - user: 947
+    - group: 939
+    - template: jinja
+    - defaults:
+        NAME: {{ minion }}
+{% endif %}
+{% endfor %}
+{% endif %}
+{% endfor %}
+
 ea-integrations-load:
   file.absent:
     - name: /opt/so/state/eaintegrations.txt
@@ -99,6 +128,9 @@ ea-integrations-load:
       - file: eaintegration
       - file: eadynamicintegration
       - file: eapackageupgrade
+      {% for minion in node_data %}
+      - file: optional_integrations_dynamic_{{ minion }}
+      {% endfor %}
 {% endif %}
 {% else %}
 

From 44e45843bfc5c9af30f54ea01306e2ee5a2408d2 Mon Sep 17 00:00:00 2001
From: Wes <wlambertts@gmail.com>
Date: Wed, 1 Nov 2023 13:52:38 +0000
Subject: [PATCH 315/417] Change optional integration Fleet configuration

---
 salt/elasticfleet/config.sls | 19 +++++++++++--------
 1 file changed, 11 insertions(+), 8 deletions(-)

diff --git a/salt/elasticfleet/config.sls b/salt/elasticfleet/config.sls
index 29eb6e972..78fb1d412 100644
--- a/salt/elasticfleet/config.sls
+++ b/salt/elasticfleet/config.sls
@@ -93,6 +93,13 @@ eaintegration:
     - user: 947
     - group: 939
 
+eaoptionalintegrationsdir:
+  file.directory:
+    - name: /opt/so/conf/elastic-fleet/integrations-optional
+    - user: 947
+    - group: 939
+    - makedirs: True
+
 {% for minion in node_data %}
 {% set role = node_data[minion]["role"] %}
 {% if role in [ "fleet","heavynode", "manager","managersearch","standalone" ] %}
@@ -100,16 +107,16 @@ eaintegration:
 {% set integration_keys = salt['pillar.get']('elasticfleet:optional_integrations', {}).keys() %}
 fleet_server_integrations_{{ minion }}:
   file.directory:
-    - name: /opt/so/conf/elastic-fleet/integrations/FleetServer_{{ minion }}
+    - name: /opt/so/conf/elastic-fleet/integrations-optional/FleetServer_{{ minion }}
     - user: 947
     - group: 939
     - makedirs: True
 {% for integration in integration_keys %}
 {% set enabled_nodes = optional_integrations[integration]["enabled_nodes"] %}
 {% if minion in enabled_nodes %}
-optional_integrations_dynamic_{{ minion }}:
+optional_integrations_dynamic_{{ minion }}_{{ integration }}:
   file.managed:
-    - name: /opt/so/conf/elastic-fleet/integrations/FleetServer_{{ minion }}/{{ integration }}.json
+    - name: /opt/so/conf/elastic-fleet/integrations-optional/FleetServer_{{ minion }}/{{ integration }}.json
     - source: salt://elasticfleet/files/integrations-optional/{{ integration }}.json
     - user: 947
     - group: 939
@@ -120,17 +127,13 @@ optional_integrations_dynamic_{{ minion }}:
 {% endfor %}
 {% endif %}
 {% endfor %}
-
 ea-integrations-load:
   file.absent:
     - name: /opt/so/state/eaintegrations.txt
     - onchanges:
       - file: eaintegration
       - file: eadynamicintegration
-      - file: eapackageupgrade
-      {% for minion in node_data %}
-      - file: optional_integrations_dynamic_{{ minion }}
-      {% endfor %}
+      - file: /opt/so/conf/elastic-fleet/integrations-optional/*
 {% endif %}
 {% else %}
 

From a0926b7b872ea091475e71b6476c3732f99256cd Mon Sep 17 00:00:00 2001
From: Wes <wlambertts@gmail.com>
Date: Wed, 1 Nov 2023 13:59:24 +0000
Subject: [PATCH 316/417] Load optional integrations

---
 .../so-elastic-fleet-integration-policy-load  | 24 +++++++++++++++++--
 1 file changed, 22 insertions(+), 2 deletions(-)

diff --git a/salt/elasticfleet/tools/sbin/so-elastic-fleet-integration-policy-load b/salt/elasticfleet/tools/sbin/so-elastic-fleet-integration-policy-load
index 44e7ccf2b..518d29d26 100644
--- a/salt/elasticfleet/tools/sbin/so-elastic-fleet-integration-policy-load
+++ b/salt/elasticfleet/tools/sbin/so-elastic-fleet-integration-policy-load
@@ -64,8 +64,28 @@ if [ ! -f /opt/so/state/eaintegrations.txt ]; then
   if [[ "$RETURN_CODE" != "1" ]]; then
     touch /opt/so/state/eaintegrations.txt
   fi
+
+  # Fleet Server - Optional integrations
+  for INTEGRATION in /opt/so/conf/elastic-fleet/integrations-optional/FleetServer*/*.json
+  do
+    if ! [ "$INTEGRATION" == "/opt/so/conf/elastic-fleet/integrations-optional/FleetServer*/*.json" ]; then
+      FLEET_POLICY=`echo "$INTEGRATION"| cut -d'/' -f7`
+      printf "\n\nFleet Server Policy - Loading $INTEGRATION\n"
+      elastic_fleet_integration_check "$FLEET_POLICY" "$INTEGRATION"
+      if [ -n "$INTEGRATION_ID" ]; then
+        printf "\n\nIntegration $NAME exists - Updating integration\n"
+        elastic_fleet_integration_update "$INTEGRATION_ID" "@$INTEGRATION"
+      else
+        printf "\n\nIntegration does not exist - Creating integration\n"
+        if [ "$NAME" != "elasticsearch-logs" ]; then
+          elastic_fleet_integration_create "@$INTEGRATION"
+        fi
+      fi
+    fi
+  done
+  if [[ "$RETURN_CODE" != "1" ]]; then
+    touch /opt/so/state/eaintegrations.txt
+  fi
 else
   exit $RETURN_CODE
 fi
-
-

From bca1194a468362f36749cbaeafcbb2f15c98b5b4 Mon Sep 17 00:00:00 2001
From: Wes <wlambertts@gmail.com>
Date: Wed, 1 Nov 2023 14:01:55 +0000
Subject: [PATCH 317/417] Sublime SOC Action

---
 salt/soc/defaults.yaml | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/salt/soc/defaults.yaml b/salt/soc/defaults.yaml
index 6d8ed5bfd..ceca9ef31 100644
--- a/salt/soc/defaults.yaml
+++ b/salt/soc/defaults.yaml
@@ -59,6 +59,12 @@ soc:
         target: _blank
         links:
           - 'https://www.virustotal.com/gui/search/{value}'
+      - name: Sublime Platform Email Review
+        description: Review email in Sublime Platform
+        icon: fa-external-link-alt
+        target: _blank
+        links:
+          - 'https://{:sublime.url}/messages/{:sublime.message_group_id}' 
     eventFields:
       default:
         - soc_timestamp

From 338146feddf21e1cb0e7faea232d37d318bab2d7 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Wed, 1 Nov 2023 10:19:56 -0400
Subject: [PATCH 318/417] fix repo update during soup for airgap

---
 salt/manager/tools/sbin/soup | 8 ++------
 1 file changed, 2 insertions(+), 6 deletions(-)

diff --git a/salt/manager/tools/sbin/soup b/salt/manager/tools/sbin/soup
index f30c3f15d..263fab7d0 100755
--- a/salt/manager/tools/sbin/soup
+++ b/salt/manager/tools/sbin/soup
@@ -579,7 +579,7 @@ update_airgap_rules() {
   rsync -av $UPDATE_DIR/agrules/* /nsm/repo/rules/
 }
 
-update_centos_repo() {
+update_airgap_repo() {
   # Update the files in the repo
   echo "Syncing new updates to /nsm/repo"
   rsync -av $AGREPO/* /nsm/repo/
@@ -821,6 +821,7 @@ main() {
   set -e
 
   if [[ $is_airgap -eq 0 ]]; then
+    update_airgap_repo
     yum clean all
     check_os_updates
   elif [[ $OS == 'oracle' ]]; then
@@ -895,11 +896,6 @@ main() {
       update_airgap_rules
     fi
 
-    # Only update the repo if its airgap
-    if [[ $is_airgap -eq 0 && $UPGRADESALT -ne 1 ]]; then
-      update_centos_repo
-    fi
-
     # since we don't run the backup.config_backup state on import we wont snapshot previous version states and pillars
     if [[ ! "$MINIONID" =~ "_import" ]]; then
       echo ""

From 2b3e405b2d30361874f2a76f3ff4a4d8cc0b5b31 Mon Sep 17 00:00:00 2001
From: Mike Reeves <mike.reeves@securityonionsolutions.com>
Date: Wed, 1 Nov 2023 10:41:40 -0400
Subject: [PATCH 319/417] Delete pillar/thresholding/pillar.usage

---
 pillar/thresholding/pillar.usage | 20 --------------------
 1 file changed, 20 deletions(-)
 delete mode 100644 pillar/thresholding/pillar.usage

diff --git a/pillar/thresholding/pillar.usage b/pillar/thresholding/pillar.usage
deleted file mode 100644
index 1626433b1..000000000
--- a/pillar/thresholding/pillar.usage
+++ /dev/null
@@ -1,20 +0,0 @@
-thresholding:
-  sids:
-    <signature id>:
-      - threshold:
-          gen_id: <generator id>
-          type: <threshold | limit | both>
-          track: <by_src | by_dst>
-          count: <count>
-          seconds: <seconds>
-      - rate_filter:
-          gen_id: <generator id>
-          track: <by_src | by_dst | by_rule | by_both>
-          count: <count>
-          seconds: <seconds>
-          new_action: <alert | pass>
-          timeout: <seconds>
-      - suppress:
-          gen_id: <generator id>
-          track: <by_src | by_dst | by_either>
-          ip: <ip | subnet>

From f62e02a47704a3a62b7deca1fc93321349067bd4 Mon Sep 17 00:00:00 2001
From: Mike Reeves <mike.reeves@securityonionsolutions.com>
Date: Wed, 1 Nov 2023 10:42:29 -0400
Subject: [PATCH 320/417] Delete pillar/thresholding/pillar.example

---
 pillar/thresholding/pillar.example | 44 ------------------------------
 1 file changed, 44 deletions(-)
 delete mode 100644 pillar/thresholding/pillar.example

diff --git a/pillar/thresholding/pillar.example b/pillar/thresholding/pillar.example
deleted file mode 100644
index 705cb606c..000000000
--- a/pillar/thresholding/pillar.example
+++ /dev/null
@@ -1,44 +0,0 @@
-thresholding:
-  sids:
-    8675309:
-      - threshold:
-          gen_id: 1
-          type: threshold
-          track: by_src
-          count: 10
-          seconds: 10
-      - threshold:
-          gen_id: 1
-          type: limit
-          track: by_dst
-          count: 100
-          seconds: 30
-      - rate_filter:
-          gen_id: 1
-          track: by_rule
-          count: 50
-          seconds: 30
-          new_action: alert
-          timeout: 30
-      - suppress:
-          gen_id: 1
-          track: by_either
-          ip: 10.10.3.7
-    11223344:
-      - threshold:
-          gen_id: 1
-          type: limit
-          track: by_dst
-          count: 10
-          seconds: 10
-      - rate_filter:
-          gen_id: 1
-          track: by_src
-          count: 50
-          seconds: 20
-          new_action: pass
-          timeout: 60
-      - suppress:
-          gen_id: 1
-          track: by_src
-          ip: 10.10.3.0/24

From 655c88cd09874abe92106b3df38a8ae0225b4a55 Mon Sep 17 00:00:00 2001
From: Wes <wlambertts@gmail.com>
Date: Wed, 1 Nov 2023 16:47:51 +0000
Subject: [PATCH 321/417] Make sure enabled_nodes is populated

---
 salt/elasticfleet/config.sls | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/salt/elasticfleet/config.sls b/salt/elasticfleet/config.sls
index 78fb1d412..434b6db2d 100644
--- a/salt/elasticfleet/config.sls
+++ b/salt/elasticfleet/config.sls
@@ -112,6 +112,7 @@ fleet_server_integrations_{{ minion }}:
     - group: 939
     - makedirs: True
 {% for integration in integration_keys %}
+{% if 'enabled_nodes' in optional_integrations[integration]%}
 {% set enabled_nodes = optional_integrations[integration]["enabled_nodes"] %}
 {% if minion in enabled_nodes %}
 optional_integrations_dynamic_{{ minion }}_{{ integration }}:
@@ -124,6 +125,7 @@ optional_integrations_dynamic_{{ minion }}_{{ integration }}:
     - defaults:
         NAME: {{ minion }}
 {% endif %}
+{% endif %}
 {% endfor %}
 {% endif %}
 {% endfor %}

From c32935e2e63fbf6e01bd7417e8afdf9453163993 Mon Sep 17 00:00:00 2001
From: Wes <wlambertts@gmail.com>
Date: Wed, 1 Nov 2023 17:02:43 +0000
Subject: [PATCH 322/417] Remove optional integration from configuration if not
 enabled

---
 salt/elasticfleet/config.sls | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/salt/elasticfleet/config.sls b/salt/elasticfleet/config.sls
index 434b6db2d..02672d58f 100644
--- a/salt/elasticfleet/config.sls
+++ b/salt/elasticfleet/config.sls
@@ -124,6 +124,10 @@ optional_integrations_dynamic_{{ minion }}_{{ integration }}:
     - template: jinja
     - defaults:
         NAME: {{ minion }}
+{% else %}
+optional_integrations_dynamic_{{ minion }}_{{ integration }}_delete:
+  file.absent:
+    - name: /opt/so/conf/elastic-fleet/integrations-optional/FleetServer_{{ minion }}/{{ integration }}.json
 {% endif %}
 {% endif %}
 {% endfor %}

From b3b67acf07a9d7099db56a3308b5c70942d4f9c7 Mon Sep 17 00:00:00 2001
From: Mike Reeves <mike.reeves@securityonionsolutions.com>
Date: Wed, 1 Nov 2023 15:11:54 -0400
Subject: [PATCH 323/417] Add memory restrictions

---
 .../assigned_hostgroups.local.map.yaml        |  1 -
 setup/so-functions                            | 27 ++++++++++++++-----
 2 files changed, 20 insertions(+), 8 deletions(-)

diff --git a/files/firewall/assigned_hostgroups.local.map.yaml b/files/firewall/assigned_hostgroups.local.map.yaml
index 07f389af0..be34cb0be 100644
--- a/files/firewall/assigned_hostgroups.local.map.yaml
+++ b/files/firewall/assigned_hostgroups.local.map.yaml
@@ -12,7 +12,6 @@ role:
   eval:
   fleet:
   heavynode:
-  helixsensor:
   idh:
   import:
   manager:
diff --git a/setup/so-functions b/setup/so-functions
index 56c4b29c1..a6d8c585a 100755
--- a/setup/so-functions
+++ b/setup/so-functions
@@ -562,7 +562,7 @@ check_requirements() {
 		req_cores=4
 		req_nics=2
 	elif [[ $is_standalone ]]; then
-		req_mem=24
+		req_mem=16
 		req_cores=4
 		req_nics=2
 	elif [[ $is_manager ]]; then
@@ -586,7 +586,7 @@ check_requirements() {
 		req_cores=4
 		req_nics=1
 	elif [[ $is_heavynode ]]; then
-		req_mem=24
+		req_mem=16
 		req_cores=4
 		req_nics=2
 	elif [[ $is_idh ]]; then
@@ -651,6 +651,17 @@ check_requirements() {
 	
 	if [[ $total_mem_hr -lt $req_mem ]]; then
 		whiptail_requirements_error "memory" "${total_mem_hr} GB" "${req_mem} GB"
+		if [[ $is_standalone || $is_heavynode ]]; then
+			echo "This install type will fail with less than $req_mem GB of memory"
+			exit 0
+		fi
+	fi
+	if [[ $is_standalone || $is_heavynode ]]; then
+		if [[ $total_mem_hr -gt 15 && $total_mem_hr -lt 24 ]]; then
+			low_mem=true
+		else
+			low_mem=false
+		fi
 	fi
 }
 
@@ -956,9 +967,7 @@ docker_seed_registry() {
 
 	if ! [ -f /nsm/docker-registry/docker/registry.tar ]; then
 		if [ "$install_type" == 'IMPORT' ]; then
-			container_list 'so-import'
-		elif [ "$install_type" == 'HELIXSENSOR' ]; then
-			container_list 'so-helix'
+			container_list 'so-import'	
 		else
 			container_list
 		fi
@@ -1217,7 +1226,7 @@ ls_heapsize() {
 	fi
 
 	case "$install_type" in
-		'MANAGERSEARCH' | 'HEAVYNODE' | 'HELIXSENSOR' | 'STANDALONE')
+		'MANAGERSEARCH' | 'HEAVYNODE' | 'STANDALONE')
 			LS_HEAP_SIZE='1000m'
 			;;
 		'EVAL')
@@ -1699,7 +1708,11 @@ drop_install_options() {
 	echo "INTERFACE=$INTERFACE" >> /opt/so/install.txt
 	NODETYPE=${install_type^^}
 	echo "NODETYPE=$NODETYPE" >> /opt/so/install.txt
-	echo "CORECOUNT=$lb_procs" >> /opt/so/install.txt
+	if [[ $low_mem == "true" ]]; then
+		echo "CORECOUNT=1" >> /opt/so/install.txt
+	else
+		echo "CORECOUNT=$lb_procs" >> /opt/so/install.txt
+	fi
 	echo "LSHOSTNAME=$HOSTNAME" >> /opt/so/install.txt
 	echo "LSHEAP=$LS_HEAP_SIZE" >> /opt/so/install.txt
 	echo "CPUCORES=$num_cpu_cores" >> /opt/so/install.txt

From cc93976db99d82c9303386df1ebc1effc6bda2ee Mon Sep 17 00:00:00 2001
From: Mike Reeves <mike.reeves@securityonionsolutions.com>
Date: Wed, 1 Nov 2023 15:17:23 -0400
Subject: [PATCH 324/417] Add memory restrictions

---
 setup/so-functions | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/setup/so-functions b/setup/so-functions
index a6d8c585a..6ad0947d1 100755
--- a/setup/so-functions
+++ b/setup/so-functions
@@ -652,7 +652,7 @@ check_requirements() {
 	if [[ $total_mem_hr -lt $req_mem ]]; then
 		whiptail_requirements_error "memory" "${total_mem_hr} GB" "${req_mem} GB"
 		if [[ $is_standalone || $is_heavynode ]]; then
-			echo "This install type will fail with less than $req_mem GB of memory"
+			echo "This install type will fail with less than $req_mem GB of memory. Exiting setup."
 			exit 0
 		fi
 	fi

From e6a0838e4cd2ac0bc8c42e686363a68d7f10d6f0 Mon Sep 17 00:00:00 2001
From: Mike Reeves <mike.reeves@securityonionsolutions.com>
Date: Wed, 1 Nov 2023 15:26:24 -0400
Subject: [PATCH 325/417] Add memory restrictions

---
 setup/so-setup | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/setup/so-setup b/setup/so-setup
index 543ac0156..db5df492d 100755
--- a/setup/so-setup
+++ b/setup/so-setup
@@ -676,7 +676,11 @@ if ! [[ -f $install_opt_file ]]; then
 		export MAINIP=$MAINIP
 		export PATCHSCHEDULENAME=$PATCHSCHEDULENAME
 		export INTERFACE=$INTERFACE
-		export CORECOUNT=$lb_procs
+		if [[ $low_mem == "true" ]]; then
+			export CORECOUNT=1
+		else
+			export CORECOUNT=$lb_procs
+		fi
 		export LSHOSTNAME=$HOSTNAME
 		export LSHEAP=$LS_HEAP_SIZE
 		export CPUCORES=$num_cpu_cores

From f33079f1e35792a31396f5064aa02dcbf690c2b7 Mon Sep 17 00:00:00 2001
From: Wes <wlambertts@gmail.com>
Date: Wed, 1 Nov 2023 20:09:56 +0000
Subject: [PATCH 326/417] Make settings global

---
 salt/elasticfleet/soc_elasticfleet.yaml | 11 ++++++-----
 1 file changed, 6 insertions(+), 5 deletions(-)

diff --git a/salt/elasticfleet/soc_elasticfleet.yaml b/salt/elasticfleet/soc_elasticfleet.yaml
index 8cb975086..8685a96e5 100644
--- a/salt/elasticfleet/soc_elasticfleet.yaml
+++ b/salt/elasticfleet/soc_elasticfleet.yaml
@@ -43,32 +43,33 @@ elasticfleet:
   optional_integrations:
     sublime_platform:
       enabled_nodes:
-        description: Determines if the Sublime Platform integration is enabled.
+        description: Fleet nodes with the Sublime Platform integration enabled. Enter one per line.
         global: True
         helpLink: elastic-fleet.html
         advanced: True
         forcedType: "[]string"
       api_key:
         description: API key for Sublime Platform.
-        global: False
+        global: True
         helpLink: elastic-fleet.html
         advanced: True
         forcedType: string
+        sensitive: True
       base_url:
         description: Base URL for Sublime Platform.
-        global: False
+        global: True
         helpLink: elastic-fleet.html
         advanced: True
         forcedType: string
       poll_interval:
         description: Poll interval for alerts from Sublime Platform.
-        global: False
+        global: True
         helpLink: elastic-fleet.html
         advanced: True
         forcedType: string
       limit:
         description: The maximum number of message groups to return from Sublime Platform.
-        global: False
+        global: True
         helpLink: elastic-fleet.html
         advanced: True
         forcedType: int

From 344dd7d61fac0c4802eed7baafa6f6c69ebb1381 Mon Sep 17 00:00:00 2001
From: Josh Brower <josh@defensivedepth.com>
Date: Wed, 1 Nov 2023 16:50:20 -0400
Subject: [PATCH 327/417] Add Elastic Fleet reset script

---
 .../tools/sbin_jinja/so-elastic-fleet-reset   | 65 +++++++++++++++++++
 1 file changed, 65 insertions(+)
 create mode 100644 salt/manager/tools/sbin_jinja/so-elastic-fleet-reset

diff --git a/salt/manager/tools/sbin_jinja/so-elastic-fleet-reset b/salt/manager/tools/sbin_jinja/so-elastic-fleet-reset
new file mode 100644
index 000000000..197ea0912
--- /dev/null
+++ b/salt/manager/tools/sbin_jinja/so-elastic-fleet-reset
@@ -0,0 +1,65 @@
+#!/bin/bash
+#
+# Copyright Security Onion Solutions LLC and/or licensed to Security Onion Solutions LLC under one
+# or more contributor license agreements. Licensed under the Elastic License 2.0 as shown at 
+# https://securityonion.net/license; you may not use this file except in compliance with the
+# Elastic License 2.0.
+{% from 'vars/globals.map.jinja' import GLOBALS %}
+
+
+. /usr/sbin/so-common
+
+require_manager
+
+
+# Inform user we are about to remove Elastic Fleet data
+echo
+echo "This script will remove the current Elastic Fleet install & all of its data and rerun Elastic Fleet setup."
+echo
+echo "If you would like to proceed, please type "AGREE" and hit ENTER."
+echo
+# Read user input
+read INPUT
+if [ "$INPUT" != "AGREE" ] ; then exit 0; fi
+
+
+printf  "\nUninstalling all Elastic Agents on all Grid Nodes...\n\n"
+salt \* cmd.run "elastic-agent uninstall -f" queue=True
+
+printf  "\nStopping Fleet Container...\n"
+so-elastic-fleet-stop --force
+
+printf "\nDeleting Fleet Data from Pillars...\n"
+sed -i -z "s/elasticfleet:.*grid_enrollment_heavy.*'//" /opt/so/saltstack/local/pillar/minions/{{ GLOBALS.minion_id }}.sls
+sed -i "/fleet_grid_enrollment_token_general.*/d" /opt/so/saltstack/local/pillar/global/soc_global.sls
+sed -i "/fleet_grid_enrollment_token_heavy.*/d" /opt/so/saltstack/local/pillar/global/soc_global.sls
+
+printf "\n\nDeleting Elastic Fleet data...\n\n"
+
+ALIASES=".fleet-servers .fleet-policies-leader .fleet-agents .fleet-artifacts .fleet-enrollment-api-keys .kibana_ingest"
+for ALIAS in ${ALIASES}
+do
+    # Get all concrete indices from alias
+    INDXS=$(curl -K /opt/so/conf/kibana/curl.config -s -k -L -H "Content-Type: application/json" "https://localhost:9200/_resolve/index/${ALIAS}"  | jq -r '.aliases[].indices[]')
+
+    # Delete all resolved indices
+    for INDX in ${INDXS}
+    do
+            printf "\nDeleting $INDX \n"
+            curl -K /opt/so/conf/kibana/curl.config -s -k -L -H "Content-Type: application/json" "https://localhost:9200/${INDX}" -XDELETE
+    done
+done
+
+printf "\n\nRestarting Kibana..\n"
+so-kibana-restart --force
+
+wait_for_web_response "http://localhost:5601/app/kibana" "Elastic" 300 "curl -K /opt/so/conf/elasticsearch/curl.config"
+
+printf "\nStarting Elastic Fleet Setup...\n"
+so-elastic-fleet-setup
+
+
+printf  "\nRe-installing Elastic Agent on all Grid Nodes...\n\n"
+salt \* state.apply elasticfleet.install_agent_grid queue=True
+
+printf "\nElastic Fleet Reset complete....\n"
\ No newline at end of file

From c230cf4eb7c197b554bd43dfbb8af11dd8144300 Mon Sep 17 00:00:00 2001
From: Josh Brower <josh@defensivedepth.com>
Date: Wed, 1 Nov 2023 17:00:32 -0400
Subject: [PATCH 328/417] Formatting

---
 salt/manager/tools/sbin_jinja/so-elastic-fleet-reset | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/salt/manager/tools/sbin_jinja/so-elastic-fleet-reset b/salt/manager/tools/sbin_jinja/so-elastic-fleet-reset
index 197ea0912..35f867884 100644
--- a/salt/manager/tools/sbin_jinja/so-elastic-fleet-reset
+++ b/salt/manager/tools/sbin_jinja/so-elastic-fleet-reset
@@ -16,7 +16,7 @@ require_manager
 echo
 echo "This script will remove the current Elastic Fleet install & all of its data and rerun Elastic Fleet setup."
 echo
-echo "If you would like to proceed, please type "AGREE" and hit ENTER."
+echo "If you would like to proceed, please type AGREE and hit ENTER."
 echo
 # Read user input
 read INPUT
@@ -50,7 +50,7 @@ do
     done
 done
 
-printf "\n\nRestarting Kibana..\n"
+printf "\n\nRestarting Kibana...\n"
 so-kibana-restart --force
 
 wait_for_web_response "http://localhost:5601/app/kibana" "Elastic" 300 "curl -K /opt/so/conf/elasticsearch/curl.config"

From c8d89971198b7afec72d60a56febc855781b1880 Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Thu, 2 Nov 2023 09:21:57 -0400
Subject: [PATCH 329/417] adjust log filter to include all hosts

---
 setup/so-verify | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/setup/so-verify b/setup/so-verify
index e9a8a375c..98bda96be 100755
--- a/setup/so-verify
+++ b/setup/so-verify
@@ -25,7 +25,8 @@ log_has_errors() {
     # Ignore salt mast cached public key and minion failed to auth because this is a test 
     # to see if the salt key had already been accepted.
 
-    # Ignore failed to connect to ::1 since we have most curls wrapped in a retry.
+    # Ignore failed to connect to since we have most curls wrapped in a retry and there are 
+    # multiple mirrors available.
 
     # Ignore perl-Error- since that is the name of a Perl package SO installs.
 
@@ -39,7 +40,7 @@ log_has_errors() {
     grep -E "FAILED|Failed|failed|ERROR|Result: False|Error is not recoverable" "$setup_log" | \
         grep -vE "The Salt Master has cached the public key for this node" | \
         grep -vE "Minion failed to authenticate with the master" | \
-        grep -vE "Failed to connect to ::1" | \
+        grep -vE "Failed to connect to " | \
         grep -vE "Failed to set locale" | \
         grep -vE "perl-Error-" | \
         grep -vE "Failed:\s*?[0-9]+" | \

From 65735fc4d3ff484eb02b0e43912373823267bb4d Mon Sep 17 00:00:00 2001
From: weslambert <wlambertts@gmail.com>
Date: Thu, 2 Nov 2023 09:54:01 -0400
Subject: [PATCH 330/417] Add eval and import roles

---
 salt/elasticfleet/config.sls | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/salt/elasticfleet/config.sls b/salt/elasticfleet/config.sls
index 02672d58f..3ff74efcd 100644
--- a/salt/elasticfleet/config.sls
+++ b/salt/elasticfleet/config.sls
@@ -102,7 +102,7 @@ eaoptionalintegrationsdir:
 
 {% for minion in node_data %}
 {% set role = node_data[minion]["role"] %}
-{% if role in [ "fleet","heavynode", "manager","managersearch","standalone" ] %}
+{% if role in [ "eval","fleet","heavynode","import","manager","managersearch","standalone" ] %}
 {% set optional_integrations = salt['pillar.get']('elasticfleet:optional_integrations', {}) %}
 {% set integration_keys = salt['pillar.get']('elasticfleet:optional_integrations', {}).keys() %}
 fleet_server_integrations_{{ minion }}:

From 1d2518310dfdc59cc05a199f619fe6063f93623a Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Thu, 2 Nov 2023 09:59:45 -0400
Subject: [PATCH 331/417] more log bypass

---
 salt/common/tools/sbin/so-log-check | 1 +
 setup/so-verify                     | 3 +++
 2 files changed, 4 insertions(+)

diff --git a/salt/common/tools/sbin/so-log-check b/salt/common/tools/sbin/so-log-check
index 10f7e8c89..101001be0 100755
--- a/salt/common/tools/sbin/so-log-check
+++ b/salt/common/tools/sbin/so-log-check
@@ -160,6 +160,7 @@ if [[ $EXCLUDE_KNOWN_ERRORS == 'Y' ]]; then
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|soc.field."                   # known ingest type collisions issue with earlier versions of SO
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|error parsing signature"      # Malformed Suricata rule, from upstream provider
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|sticky buffer has no matches" # Non-critical Suricata error
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|Unable to determine destination index stats"  # Elastic transform temporary error
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|iteration"
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|communication packets"
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|use of closed"
diff --git a/setup/so-verify b/setup/so-verify
index 98bda96be..e4d90b937 100755
--- a/setup/so-verify
+++ b/setup/so-verify
@@ -36,6 +36,8 @@ log_has_errors() {
     # This is ignored for Ubuntu
     # Failed to restart snapd.mounts-pre.target: Operation refused, unit snapd.mounts-pre.target
     # may be requested by dependency only (it is configured to refuse manual start/stop).
+
+    # Exit code 100 failure is likely apt-get running in the background, we wait for it to unlock.
     
     grep -E "FAILED|Failed|failed|ERROR|Result: False|Error is not recoverable" "$setup_log" | \
         grep -vE "The Salt Master has cached the public key for this node" | \
@@ -55,6 +57,7 @@ log_has_errors() {
         grep -vE "Login Failed Details" | \
         grep -vE "response from daemon: unauthorized" | \
         grep -vE "Reading first line of patchfile" | \
+        grep -vE "Command failed with exit code 100; will retry" | \
         grep -vE "Running scope as unit" &> "$error_log"
     
     if [[ $? -eq 0 ]]; then

From 5388b92865bfc4c2903322ba5cadfcb54398932c Mon Sep 17 00:00:00 2001
From: Josh Brower <josh@defensivedepth.com>
Date: Thu, 2 Nov 2023 10:20:32 -0400
Subject: [PATCH 332/417] Refactor & cleanup

---
 salt/common/tools/sbin/so-common              |  4 ++
 .../tools/sbin_jinja/so-elastic-fleet-setup   | 11 +++++
 .../tools/sbin_jinja/so-elastic-fleet-reset   | 44 +++++++++++++------
 setup/so-setup                                |  6 ++-
 4 files changed, 49 insertions(+), 16 deletions(-)

diff --git a/salt/common/tools/sbin/so-common b/salt/common/tools/sbin/so-common
index bfa61f1b7..8089db28b 100755
--- a/salt/common/tools/sbin/so-common
+++ b/salt/common/tools/sbin/so-common
@@ -551,6 +551,10 @@ set_version() {
 	fi
 }
 
+status () {
+    printf "\n=========================================================================\n$(date) | $1\n=========================================================================\n"
+}
+
 systemctl_func() {
 	local action=$1
 	local echo_action=$1
diff --git a/salt/elasticfleet/tools/sbin_jinja/so-elastic-fleet-setup b/salt/elasticfleet/tools/sbin_jinja/so-elastic-fleet-setup
index 83a155ae6..d908d1df7 100755
--- a/salt/elasticfleet/tools/sbin_jinja/so-elastic-fleet-setup
+++ b/salt/elasticfleet/tools/sbin_jinja/so-elastic-fleet-setup
@@ -8,8 +8,19 @@
 
 INTCA=/etc/pki/tls/certs/intca.crt
 
+. /usr/sbin/so-common
 . /usr/sbin/so-elastic-fleet-common
 
+# Check to make sure that Kibana API is up & ready
+RETURN_CODE=0
+wait_for_web_response "http://localhost:5601/api/fleet/settings" "fleet" 300 "curl -K /opt/so/conf/elasticsearch/curl.config"
+RETURN_CODE=$?
+
+if [[ "$RETURN_CODE" != "0" ]]; then
+    printf "Kibana API not accessible, exiting Elastic Fleet setup..."
+    exit 1
+fi
+
 printf "\n### Create ES Token ###\n"
 ESTOKEN=$(curl -K /opt/so/conf/elasticsearch/curl.config -L -X POST "localhost:5601/api/fleet/service_tokens" -H 'kbn-xsrf: true' -H 'Content-Type: application/json' |  jq -r .value)
 
diff --git a/salt/manager/tools/sbin_jinja/so-elastic-fleet-reset b/salt/manager/tools/sbin_jinja/so-elastic-fleet-reset
index 35f867884..5a7be9e60 100644
--- a/salt/manager/tools/sbin_jinja/so-elastic-fleet-reset
+++ b/salt/manager/tools/sbin_jinja/so-elastic-fleet-reset
@@ -11,30 +11,39 @@
 
 require_manager
 
-
 # Inform user we are about to remove Elastic Fleet data
 echo
 echo "This script will remove the current Elastic Fleet install & all of its data and rerun Elastic Fleet setup."
 echo
-echo "If you would like to proceed, please type AGREE and hit ENTER."
+echo "If you would like to proceed, type AGREE and hit ENTER."
 echo
 # Read user input
 read INPUT
-if [ "$INPUT" != "AGREE" ] ; then exit 0; fi
+if [ "${INPUT^^}" != 'AGREE' ]; then exit 0; fi
 
 
-printf  "\nUninstalling all Elastic Agents on all Grid Nodes...\n\n"
+status "Uninstalling all Elastic Agents on all Grid Nodes..."
 salt \* cmd.run "elastic-agent uninstall -f" queue=True
 
-printf  "\nStopping Fleet Container...\n"
+status "Stopping Fleet Container..."
 so-elastic-fleet-stop --force
 
-printf "\nDeleting Fleet Data from Pillars...\n"
+status "Deleting Fleet Data from Pillars..."
 sed -i -z "s/elasticfleet:.*grid_enrollment_heavy.*'//" /opt/so/saltstack/local/pillar/minions/{{ GLOBALS.minion_id }}.sls
 sed -i "/fleet_grid_enrollment_token_general.*/d" /opt/so/saltstack/local/pillar/global/soc_global.sls
 sed -i "/fleet_grid_enrollment_token_heavy.*/d" /opt/so/saltstack/local/pillar/global/soc_global.sls
 
-printf "\n\nDeleting Elastic Fleet data...\n\n"
+status "Deleting Elastic Fleet data..."
+
+# Check to make sure that Elasticsearch is up & ready
+RETURN_CODE=0
+wait_for_web_response "https://localhost:9200/_cat/indices/.kibana*" "green open" 300 "curl -K /opt/so/conf/elasticsearch/curl.config"
+RETURN_CODE=$?
+
+if [[ "$RETURN_CODE" != "0" ]]; then
+    status "Elasticsearch not accessible, exiting script..."
+    exit 1
+fi
 
 ALIASES=".fleet-servers .fleet-policies-leader .fleet-agents .fleet-artifacts .fleet-enrollment-api-keys .kibana_ingest"
 for ALIAS in ${ALIASES}
@@ -45,21 +54,28 @@ do
     # Delete all resolved indices
     for INDX in ${INDXS}
     do
-            printf "\nDeleting $INDX \n"
+            status "Deleting $INDX"
             curl -K /opt/so/conf/kibana/curl.config -s -k -L -H "Content-Type: application/json" "https://localhost:9200/${INDX}" -XDELETE
     done
 done
 
-printf "\n\nRestarting Kibana...\n"
+status "Restarting Kibana..."
 so-kibana-restart --force
 
-wait_for_web_response "http://localhost:5601/app/kibana" "Elastic" 300 "curl -K /opt/so/conf/elasticsearch/curl.config"
+status "Checking to make sure that Kibana API is up & ready..."
+RETURN_CODE=0
+wait_for_web_response "http://localhost:5601/api/fleet/settings" "fleet" 300 "curl -K /opt/so/conf/elasticsearch/curl.config"
+RETURN_CODE=$?
 
-printf "\nStarting Elastic Fleet Setup...\n"
+if [[ "$RETURN_CODE" != "0" ]]; then
+    status "Kibana API not accessible, exiting script..."
+    exit 1
+fi
+
+status "Starting Elastic Fleet Setup..."
 so-elastic-fleet-setup
 
-
-printf  "\nRe-installing Elastic Agent on all Grid Nodes...\n\n"
+status "Re-installing Elastic Agent on all Grid Nodes..."
 salt \* state.apply elasticfleet.install_agent_grid queue=True
 
-printf "\nElastic Fleet Reset complete....\n"
\ No newline at end of file
+status "Elastic Fleet Reset complete...."
\ No newline at end of file
diff --git a/setup/so-setup b/setup/so-setup
index 543ac0156..2ea2809d5 100755
--- a/setup/so-setup
+++ b/setup/so-setup
@@ -768,8 +768,10 @@ if ! [[ -f $install_opt_file ]]; then
 		info "Restarting SOC to pick up initial user"
 		logCmd "so-soc-restart"
 		title "Setting up Elastic Fleet"
-		logCmd "salt-call state.apply elasticfleet.config"
-        	logCmd "so-elastic-fleet-setup"
+		logCmd "salt-call state.apply elasticfleet.config"	
+		if ! logCmd so-setup-elastic-fleet; then
+			fail_setup
+		fi
 		if [[ ! $is_import ]]; then
 			title "Setting up Playbook"
 			logCmd "so-playbook-reset"

From 6c4dc7cc090d63faf93eeb952a1dcbdaf81c9c38 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Thu, 2 Nov 2023 10:23:03 -0400
Subject: [PATCH 333/417] fix UPGRADECOMMAND used for distrib salt upgrade.
 remove unneeded vars

---
 salt/salt/map.jinja | 6 +-----
 1 file changed, 1 insertion(+), 5 deletions(-)

diff --git a/salt/salt/map.jinja b/salt/salt/map.jinja
index 131ff46ca..5f687ef3f 100644
--- a/salt/salt/map.jinja
+++ b/salt/salt/map.jinja
@@ -5,22 +5,18 @@
   {% set SPLITCHAR = '+' %}
   {% set SALTNOTHELD = salt['cmd.run']('apt-mark showhold | grep -q salt ; echo $?', python_shell=True) %}
   {% set SALTPACKAGES = ['salt-common', 'salt-master', 'salt-minion'] %}
-  {% set SALT_STATE_CODE_PATH = '/usr/lib/python3/dist-packages/salt/states' %}
-  {% set SALT_MODULE_CODE_PATH = '/usr/lib/python3/dist-packages/salt/modules' %}
   {% set SYSTEMD_UNIT_FILE = '/lib/systemd/system/salt-minion.service' %}
 {% else %}
   {% set SPLITCHAR = '-' %}
   {% set SALTNOTHELD = salt['cmd.run']('yum versionlock list | grep -q salt ; echo $?', python_shell=True) %}
   {% set SALTPACKAGES = ['salt', 'salt-master', 'salt-minion'] %}
-  {% set SALT_STATE_CODE_PATH = '/usr/lib/python3.6/site-packages/salt/states' %}
-  {% set SALT_MODULE_CODE_PATH = '/usr/lib/python3.6/site-packages/salt/modules' %}
   {% set SYSTEMD_UNIT_FILE = '/usr/lib/systemd/system/salt-minion.service' %}
 {% endif %}
 
 {% set INSTALLEDSALTVERSION = grains.saltversion %}
 
 {% if grains.saltversion|string != SALTVERSION|string %}
-  {% if grains.os|lower in ['Rocky', 'redhat', 'CentOS Stream'] %}
+  {% if grains.os_family|lower == 'redhat' %}
       {% set UPGRADECOMMAND = 'yum clean all ; /usr/sbin/bootstrap-salt.sh -s 120 -r -F -x python3 stable ' ~ SALTVERSION %}
   {% elif grains.os_family|lower == 'debian' %}
     {% set UPGRADECOMMAND = '/usr/sbin/bootstrap-salt.sh -s 120 -F -x python3 stable ' ~ SALTVERSION %}

From 2c0e287f8c320f3d0f1d800a0916e90d59a93ca7 Mon Sep 17 00:00:00 2001
From: Josh Brower <josh@defensivedepth.com>
Date: Thu, 2 Nov 2023 10:34:24 -0400
Subject: [PATCH 334/417] Fix name

---
 setup/so-setup | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/setup/so-setup b/setup/so-setup
index 2ea2809d5..26955b893 100755
--- a/setup/so-setup
+++ b/setup/so-setup
@@ -769,7 +769,7 @@ if ! [[ -f $install_opt_file ]]; then
 		logCmd "so-soc-restart"
 		title "Setting up Elastic Fleet"
 		logCmd "salt-call state.apply elasticfleet.config"	
-		if ! logCmd so-setup-elastic-fleet; then
+		if ! logCmd so-elastic-fleet-setup; then
 			fail_setup
 		fi
 		if [[ ! $is_import ]]; then

From e18e0fd69a982d317a656a3d8e15d2bcd0160c8e Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Thu, 2 Nov 2023 10:39:14 -0400
Subject: [PATCH 335/417] more log bypass

---
 salt/common/tools/sbin/so-log-check | 1 +
 1 file changed, 1 insertion(+)

diff --git a/salt/common/tools/sbin/so-log-check b/salt/common/tools/sbin/so-log-check
index 101001be0..0fd98a12e 100755
--- a/salt/common/tools/sbin/so-log-check
+++ b/salt/common/tools/sbin/so-log-check
@@ -161,6 +161,7 @@ if [[ $EXCLUDE_KNOWN_ERRORS == 'Y' ]]; then
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|error parsing signature"      # Malformed Suricata rule, from upstream provider
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|sticky buffer has no matches" # Non-critical Suricata error
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|Unable to determine destination index stats"  # Elastic transform temporary error
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|timeout retrieving docker"    # Telegraf unable to reach Docker engine, rare
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|iteration"
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|communication packets"
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|use of closed"

From 32701b594187484a1944d6d4fc4072e822d5b468 Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Thu, 2 Nov 2023 12:50:12 -0400
Subject: [PATCH 336/417] more log bypass

---
 salt/common/tools/sbin/so-log-check | 1 +
 1 file changed, 1 insertion(+)

diff --git a/salt/common/tools/sbin/so-log-check b/salt/common/tools/sbin/so-log-check
index 0fd98a12e..dc2b1d741 100755
--- a/salt/common/tools/sbin/so-log-check
+++ b/salt/common/tools/sbin/so-log-check
@@ -114,6 +114,7 @@ if [[ $EXCLUDE_STARTUP_ERRORS == 'Y' ]]; then
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|failed to poll"               # server not yet ready (sensoroni waiting on soc)
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|minions returned with non"    # server not yet ready (salt waiting on minions)
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|so_long_term"                 # server not yet ready (influxdb not yet setup)
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|search_phase_execution_exception" # server not yet ready (elastalert running searches before ES is ready)
 fi
 
 if [[ $EXCLUDE_FALSE_POSITIVE_ERRORS == 'Y' ]]; then

From 51e7861757e04ecb2a66bfb3790ebcebdbe5a11d Mon Sep 17 00:00:00 2001
From: weslambert <wlambertts@gmail.com>
Date: Thu, 2 Nov 2023 16:41:34 -0400
Subject: [PATCH 337/417] Don't source so-elastic-fleet-common if not there

---
 .../tools/sbin_jinja/so-elasticsearch-templates-load          | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/salt/elasticsearch/tools/sbin_jinja/so-elasticsearch-templates-load b/salt/elasticsearch/tools/sbin_jinja/so-elasticsearch-templates-load
index aac6279fc..857da5434 100755
--- a/salt/elasticsearch/tools/sbin_jinja/so-elasticsearch-templates-load
+++ b/salt/elasticsearch/tools/sbin_jinja/so-elasticsearch-templates-load
@@ -9,7 +9,9 @@
 
 . /usr/sbin/so-common
 {% if GLOBALS.role != 'so-heavynode' %}
-. /usr/sbin/so-elastic-fleet-common
+if [ -f /usr/sbin/so-elastic-fleet-common ]; then
+  . /usr/sbin/so-elastic-fleet-common
+fi
 {% endif %}
 
 default_conf_dir=/opt/so/conf

From 96fdfb382977de14430f18dcee522f441238b032 Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Thu, 2 Nov 2023 16:46:41 -0400
Subject: [PATCH 338/417] ignore connectivity problems to docker containers
 during startup

---
 salt/common/tools/sbin/so-log-check | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/salt/common/tools/sbin/so-log-check b/salt/common/tools/sbin/so-log-check
index dc2b1d741..170ef9506 100755
--- a/salt/common/tools/sbin/so-log-check
+++ b/salt/common/tools/sbin/so-log-check
@@ -115,6 +115,8 @@ if [[ $EXCLUDE_STARTUP_ERRORS == 'Y' ]]; then
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|minions returned with non"    # server not yet ready (salt waiting on minions)
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|so_long_term"                 # server not yet ready (influxdb not yet setup)
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|search_phase_execution_exception" # server not yet ready (elastalert running searches before ES is ready)
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|timeout retrieving docker"    # Telegraf unable to reach Docker engine, rare
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|timeout retrieving container" # Telegraf unable to reach Docker engine, rare
 fi
 
 if [[ $EXCLUDE_FALSE_POSITIVE_ERRORS == 'Y' ]]; then
@@ -162,7 +164,6 @@ if [[ $EXCLUDE_KNOWN_ERRORS == 'Y' ]]; then
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|error parsing signature"      # Malformed Suricata rule, from upstream provider
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|sticky buffer has no matches" # Non-critical Suricata error
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|Unable to determine destination index stats"  # Elastic transform temporary error
-    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|timeout retrieving docker"    # Telegraf unable to reach Docker engine, rare
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|iteration"
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|communication packets"
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|use of closed"

From 3875970dc52de40d2e112082798f4285776383fd Mon Sep 17 00:00:00 2001
From: Wes <wlambertts@gmail.com>
Date: Thu, 2 Nov 2023 21:09:37 +0000
Subject: [PATCH 339/417] Add checkpoint and vsphere packages

---
 salt/elasticfleet/defaults.yaml | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/salt/elasticfleet/defaults.yaml b/salt/elasticfleet/defaults.yaml
index ba779f5a0..61ae5999f 100644
--- a/salt/elasticfleet/defaults.yaml
+++ b/salt/elasticfleet/defaults.yaml
@@ -35,6 +35,7 @@ elasticfleet:
     - azure
     - barracuda
     - carbonblack_edr
+    - checkpoint
     - cisco_asa
     - cisco_duo
     - cisco_meraki
@@ -86,6 +87,7 @@ elasticfleet:
     - ti_otx
     - ti_recordedfuture
     - udp
+    - vsphere
     - windows
     - zscaler_zia
     - zscaler_zpa

From 5bfef3f527bb530793ded8120fc91bdb728b03e3 Mon Sep 17 00:00:00 2001
From: Wes <wlambertts@gmail.com>
Date: Thu, 2 Nov 2023 21:10:01 +0000
Subject: [PATCH 340/417] Add checkpoint and vsphere templates

---
 salt/elasticsearch/defaults.yaml | 220 +++++++++++++++++++++++++++++++
 1 file changed, 220 insertions(+)

diff --git a/salt/elasticsearch/defaults.yaml b/salt/elasticsearch/defaults.yaml
index cd8ff9397..02c2529a6 100644
--- a/salt/elasticsearch/defaults.yaml
+++ b/salt/elasticsearch/defaults.yaml
@@ -1965,6 +1965,50 @@ elasticsearch:
               set_priority:
                 priority: 50
             min_age: 30d
+    so-logs-checkpoint_x_firewall:
+      index_sorting: False
+      index_template:
+        index_patterns:
+          - "logs-checkpoint.firewall-*"
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-checkpoint.firewall-logs
+              number_of_replicas: 0
+        composed_of:
+          - "logs-checkpoint.firewall@package"
+          - "logs-checkpoint.firewall@custom"
+          - "so-fleet_globals-1"
+          - "so-fleet_agent_id_verification-1"
+        priority: 501
+        data_stream:
+          hidden: false
+          allow_custom_routing: false
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
     so-logs-cisco_asa_x_log:
       index_sorting: false
       index_template:
@@ -7798,6 +7842,50 @@ elasticsearch:
               set_priority:
                 priority: 50
             min_age: 30d
+    so-logs-vsphere_x_log:
+      index_sorting: False
+      index_template:
+        index_patterns:
+          - "logs-vsphere.log-*"
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-logs-vsphere.log-logs
+              number_of_replicas: 0
+        composed_of:
+          - "logs-vsphere.log@package"
+          - "logs-vsphere.log@custom"
+          - "so-fleet_globals-1"
+          - "so-fleet_agent_id_verification-1"
+        priority: 501
+        data_stream:
+          hidden: false
+          allow_custom_routing: false
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
     so-logs-windows_x_forwarded:
       index_sorting: false
       index_template:
@@ -8414,6 +8502,138 @@ elasticsearch:
               set_priority:
                 priority: 50
             min_age: 30d
+    so-metrics-vsphere_x_datastore:
+      index_sorting: False
+      index_template:
+        index_patterns:
+          - "metrics-vsphere.datastore-*"
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-metrics-vsphere.datastore-logs
+              number_of_replicas: 0
+        composed_of:
+          - "metrics-vsphere.datastore@package"
+          - "metrics-vsphere.datastore@custom"
+          - "so-fleet_globals-1"
+          - "so-fleet_agent_id_verification-1"
+        priority: 501
+        data_stream:
+          hidden: false
+          allow_custom_routing: false
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-metrics-vsphere_x_host:
+      index_sorting: False
+      index_template:
+        index_patterns:
+          - "metrics-vsphere.host-*"
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-metrics-vsphere.host-logs
+              number_of_replicas: 0
+        composed_of:
+          - "metrics-vsphere.host@package"
+          - "metrics-vsphere.host@custom"
+          - "so-fleet_globals-1"
+          - "so-fleet_agent_id_verification-1"
+        priority: 501
+        data_stream:
+          hidden: false
+          allow_custom_routing: false
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
+    so-metrics-vsphere_x_virtualmachine:
+      index_sorting: False
+      index_template:
+        index_patterns:
+          - "metrics-vsphere.virtualmachine-*"
+        template:
+          settings:
+            index:
+              lifecycle:
+                name: so-metrics-vsphere.virtualmachine-logs
+              number_of_replicas: 0
+        composed_of:
+          - "metrics-vsphere.virtualmachine@package"
+          - "metrics-vsphere.virtualmachine@custom"
+          - "so-fleet_globals-1"
+          - "so-fleet_agent_id_verification-1"
+        priority: 501
+        data_stream:
+          hidden: false
+          allow_custom_routing: false
+      policy:
+        phases:
+          cold:
+            actions:
+              set_priority:
+                priority: 0
+            min_age: 30d
+          delete:
+            actions:
+              delete: {}
+            min_age: 365d
+          hot:
+            actions:
+              rollover:
+                max_age: 30d
+                max_primary_shard_size: 50gb
+              set_priority:
+                priority: 100
+            min_age: 0ms
+          warm:
+            actions:
+              set_priority:
+                priority: 50
+            min_age: 30d
     so-logstash:
       index_sorting: false
       index_template:

From 8c7767b381462ae911abd7844e9261475c4b3bec Mon Sep 17 00:00:00 2001
From: Josh Brower <josh@defensivedepth.com>
Date: Fri, 3 Nov 2023 08:41:33 -0400
Subject: [PATCH 341/417] Dont overwrite metadata

---
 .../pipelines/config/so/0012_input_elastic_agent.conf.jinja    | 3 +++
 .../pipelines/config/so/0013_input_lumberjack_fleet.conf       | 3 ++-
 2 files changed, 5 insertions(+), 1 deletion(-)

diff --git a/salt/logstash/pipelines/config/so/0012_input_elastic_agent.conf.jinja b/salt/logstash/pipelines/config/so/0012_input_elastic_agent.conf.jinja
index 035436a96..6ba29f8e5 100644
--- a/salt/logstash/pipelines/config/so/0012_input_elastic_agent.conf.jinja
+++ b/salt/logstash/pipelines/config/so/0012_input_elastic_agent.conf.jinja
@@ -11,7 +11,10 @@ input {
   }
 }
 filter {
+if ![metadata] {
   mutate {
     rename => {"@metadata" => "metadata"}
   }
 }
+}
+
diff --git a/salt/logstash/pipelines/config/so/0013_input_lumberjack_fleet.conf b/salt/logstash/pipelines/config/so/0013_input_lumberjack_fleet.conf
index 0377a81c4..fd9a87a22 100644
--- a/salt/logstash/pipelines/config/so/0013_input_lumberjack_fleet.conf
+++ b/salt/logstash/pipelines/config/so/0013_input_lumberjack_fleet.conf
@@ -13,10 +13,11 @@ input {
 
 
 filter {
-  if "fleet-lumberjack-input" in [tags] {
+if ![metadata] {
   mutate {
     rename => {"@metadata" => "metadata"}
   }
 }
 }
 
+

From 1a3d4a2051bcd0f1379ccbb05145f6a4d519f7d2 Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Fri, 3 Nov 2023 09:14:26 -0400
Subject: [PATCH 342/417] ignore malformed open canary log lines

---
 salt/common/tools/sbin/so-log-check | 1 +
 1 file changed, 1 insertion(+)

diff --git a/salt/common/tools/sbin/so-log-check b/salt/common/tools/sbin/so-log-check
index 170ef9506..d3aff6c14 100755
--- a/salt/common/tools/sbin/so-log-check
+++ b/salt/common/tools/sbin/so-log-check
@@ -140,6 +140,7 @@ if [[ $EXCLUDE_FALSE_POSITIVE_ERRORS == 'Y' ]]; then
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|example"                      # false positive (example test data)
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|status 200"                   # false positive (request successful, contained error string in content)
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|app_layer.error"              # false positive (suricata 7) in stats.log e.g. app_layer.error.imap.parser | Total | 0
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|Canary running"               # false positive (Open Canary logging out blank IP addresses)
 fi
 
 if [[ $EXCLUDE_KNOWN_ERRORS == 'Y' ]]; then

From a8b0e41dbe70dfae77b2cfb116dc48df276cb819 Mon Sep 17 00:00:00 2001
From: Josh Brower <josh@defensivedepth.com>
Date: Fri, 3 Nov 2023 11:04:52 -0400
Subject: [PATCH 343/417] exit 0

---
 salt/elasticfleet/tools/sbin_jinja/so-elastic-fleet-setup | 1 +
 1 file changed, 1 insertion(+)

diff --git a/salt/elasticfleet/tools/sbin_jinja/so-elastic-fleet-setup b/salt/elasticfleet/tools/sbin_jinja/so-elastic-fleet-setup
index d908d1df7..9c06cb7c2 100755
--- a/salt/elasticfleet/tools/sbin_jinja/so-elastic-fleet-setup
+++ b/salt/elasticfleet/tools/sbin_jinja/so-elastic-fleet-setup
@@ -131,3 +131,4 @@ salt-call state.apply elasticfleet queue=True
 # Generate installers & install Elastic Agent on the node
 so-elastic-agent-gen-installers
 salt-call state.apply elasticfleet.install_agent_grid queue=True
+exit 0
\ No newline at end of file

From 3d8663db66e0f832fc022fb5e687107c72e14787 Mon Sep 17 00:00:00 2001
From: Mike Reeves <mike.reeves@securityonionsolutions.com>
Date: Fri, 3 Nov 2023 11:29:45 -0400
Subject: [PATCH 344/417] Update soc_elasticsearch.yaml

---
 salt/elasticsearch/soc_elasticsearch.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/salt/elasticsearch/soc_elasticsearch.yaml b/salt/elasticsearch/soc_elasticsearch.yaml
index a5170b776..ce795fe5a 100644
--- a/salt/elasticsearch/soc_elasticsearch.yaml
+++ b/salt/elasticsearch/soc_elasticsearch.yaml
@@ -463,7 +463,7 @@ elasticsearch:
     so-syslog: *indexSettings
     so-zeek: *indexSettings
   so_roles:
-    so-manger: &soroleSettings
+    so-manager: &soroleSettings
       config:
         node:
           roles:

From 9d2b84818f2b7bb4bd20b601d52aead6653e072b Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Fri, 3 Nov 2023 15:00:13 -0400
Subject: [PATCH 345/417] apply es and soc states to manager if new search or
 hn are added

---
 salt/manager/tools/sbin/so-minion | 9 ++++++++-
 1 file changed, 8 insertions(+), 1 deletion(-)

diff --git a/salt/manager/tools/sbin/so-minion b/salt/manager/tools/sbin/so-minion
index eca96da5c..1baf88cad 100755
--- a/salt/manager/tools/sbin/so-minion
+++ b/salt/manager/tools/sbin/so-minion
@@ -631,8 +631,15 @@ if [[ "$OPERATION" == 'add' || "$OPERATION" == 'setup' ]]; then
 		# and they need to wait for ca creation to update the mine
 		updateMine
 		checkMine "network.ip_addrs"
+		# apply the elasticsearch state to the manager if a new searchnode was added
+		if [[ "$NODETYPE" == "SEARCHNODE" || "$NODETYPE" == "HEAVYNODE" ]]; then
+			# calls so-common and set_minionid sets MINIONID to local minion id
+			set_minionid
+			salt $MINIONID state.apply elasticsearch queue=True --async
+			salt $MINIONID state.apply soc queue=True --async
+		fi
 		# run this async so the cli doesn't wait for a return
-		salt "$MINION_ID" state.highstate --async
+		salt "$MINION_ID" state.highstate --async queue=True
 	fi
 fi
 

From 0086c247296b226dde56c83271ac47664672bb89 Mon Sep 17 00:00:00 2001
From: Josh Brower <josh@defensivedepth.com>
Date: Fri, 3 Nov 2023 15:21:06 -0400
Subject: [PATCH 346/417] Upgrade Elastic Agent

---
 salt/manager/tools/sbin/soup | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/salt/manager/tools/sbin/soup b/salt/manager/tools/sbin/soup
index 263fab7d0..27c6cb98d 100755
--- a/salt/manager/tools/sbin/soup
+++ b/salt/manager/tools/sbin/soup
@@ -431,8 +431,7 @@ post_to_2.4.4() {
 }
 
 post_to_2.4.5() {
-  echo "Regenerating Elastic Agent Installers"
-  /sbin/so-elastic-agent-gen-installers
+  echo "Nothing to apply"
   POSTVERSION=2.4.5
 }
 
@@ -449,7 +448,8 @@ post_to_2.4.20() {
 }
 
 post_to_2.4.30() {
-  echo "Nothing to apply"
+  echo "Regenerating Elastic Agent Installers"
+  /sbin/so-elastic-agent-gen-installers
   POSTVERSION=2.4.30
 }
 
@@ -511,7 +511,7 @@ up_to_2.4.4() {
 }
 
 up_to_2.4.5() {
-  determine_elastic_agent_upgrade
+  echo "Nothing to do for 2.4.5"
 
   INSTALLEDVERSION=2.4.5
 }
@@ -529,7 +529,7 @@ up_to_2.4.20() {
 }
 
 up_to_2.4.30() {
-  echo "Nothing to do for 2.4.30"
+  determine_elastic_agent_upgrade
   
   INSTALLEDVERSION=2.4.30
 }

From 7a0b21647f40f8217da0941917c3681237a210c8 Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Sat, 4 Nov 2023 10:05:37 -0400
Subject: [PATCH 347/417] disregard false positives

---
 salt/common/tools/sbin/so-log-check | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/salt/common/tools/sbin/so-log-check b/salt/common/tools/sbin/so-log-check
index d3aff6c14..dc84ba5bd 100755
--- a/salt/common/tools/sbin/so-log-check
+++ b/salt/common/tools/sbin/so-log-check
@@ -117,6 +117,8 @@ if [[ $EXCLUDE_STARTUP_ERRORS == 'Y' ]]; then
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|search_phase_execution_exception" # server not yet ready (elastalert running searches before ES is ready)
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|timeout retrieving docker"    # Telegraf unable to reach Docker engine, rare
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|timeout retrieving container" # Telegraf unable to reach Docker engine, rare
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|error while communicating"    # Elasticsearch MS -> HN "sensor" temporarily unavailable
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|tls handshake error"          # Docker registry container when new node comes onlines
 fi
 
 if [[ $EXCLUDE_FALSE_POSITIVE_ERRORS == 'Y' ]]; then
@@ -140,7 +142,7 @@ if [[ $EXCLUDE_FALSE_POSITIVE_ERRORS == 'Y' ]]; then
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|example"                      # false positive (example test data)
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|status 200"                   # false positive (request successful, contained error string in content)
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|app_layer.error"              # false positive (suricata 7) in stats.log e.g. app_layer.error.imap.parser | Total | 0
-    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|Canary running"               # false positive (Open Canary logging out blank IP addresses)
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|is not an ip string literal"  # false positive (Open Canary logging out blank IP addresses)
 fi
 
 if [[ $EXCLUDE_KNOWN_ERRORS == 'Y' ]]; then

From f6cd35e1435c49d1bca5078409ca3e92a1bb404f Mon Sep 17 00:00:00 2001
From: Josh Brower <josh@defensivedepth.com>
Date: Mon, 6 Nov 2023 08:03:31 -0500
Subject: [PATCH 348/417] Set execute permissions

---
 salt/elasticfleet/config.sls | 1 +
 1 file changed, 1 insertion(+)

diff --git a/salt/elasticfleet/config.sls b/salt/elasticfleet/config.sls
index 3ff74efcd..5d5d3e826 100644
--- a/salt/elasticfleet/config.sls
+++ b/salt/elasticfleet/config.sls
@@ -68,6 +68,7 @@ eapackageupgrade:
     - source: salt://elasticfleet/tools/sbin_jinja/so-elastic-fleet-package-upgrade
     - user: 947
     - group: 939
+    - mode: 755
     - template: jinja
 
 {%   if GLOBALS.role != "so-fleet" %}

From 74eda68d8424472460de791d0ec5321ba4a31293 Mon Sep 17 00:00:00 2001
From: Wes <wlambertts@gmail.com>
Date: Mon, 6 Nov 2023 13:16:35 +0000
Subject: [PATCH 349/417] Exit if unable to communicate with Elasticsearch

---
 salt/elasticsearch/tools/sbin/so-elasticsearch-pipelines | 1 +
 1 file changed, 1 insertion(+)

diff --git a/salt/elasticsearch/tools/sbin/so-elasticsearch-pipelines b/salt/elasticsearch/tools/sbin/so-elasticsearch-pipelines
index 350ac97c5..f6f56eaf1 100755
--- a/salt/elasticsearch/tools/sbin/so-elasticsearch-pipelines
+++ b/salt/elasticsearch/tools/sbin/so-elasticsearch-pipelines
@@ -37,6 +37,7 @@ if [ ! -f /opt/so/state/espipelines.txt ]; then
 	echo
 	echo -e "Connection attempt timed out.  Unable to connect to ElasticSearch.  \nPlease try: \n  -checking log(s) in /var/log/elasticsearch/\n  -running 'sudo docker ps' \n  -running 'sudo so-elastic-restart'"
 	echo
+	exit 1
   fi
 
   cd ${ELASTICSEARCH_INGEST_PIPELINES}

From c30a0d5b5b0bc43df6a0a4df12c38a5c6c583383 Mon Sep 17 00:00:00 2001
From: Wes <wlambertts@gmail.com>
Date: Mon, 6 Nov 2023 14:29:01 +0000
Subject: [PATCH 350/417] Better error handling and state file management

---
 .../tools/sbin/so-elasticsearch-pipelines     | 45 +++++++++++--------
 1 file changed, 27 insertions(+), 18 deletions(-)

diff --git a/salt/elasticsearch/tools/sbin/so-elasticsearch-pipelines b/salt/elasticsearch/tools/sbin/so-elasticsearch-pipelines
index f6f56eaf1..ff826d2c9 100755
--- a/salt/elasticsearch/tools/sbin/so-elasticsearch-pipelines
+++ b/salt/elasticsearch/tools/sbin/so-elasticsearch-pipelines
@@ -6,7 +6,6 @@
 
 . /usr/sbin/so-common
 
-
 RETURN_CODE=0
 ELASTICSEARCH_HOST=$1
 ELASTICSEARCH_PORT=9200
@@ -15,41 +14,51 @@ ELASTICSEARCH_PORT=9200
 ELASTICSEARCH_INGEST_PIPELINES="/opt/so/conf/elasticsearch/ingest/"
 
 # Wait for ElasticSearch to initialize
-
 if [ ! -f /opt/so/state/espipelines.txt ]; then
+echo "State file /opt/so/state/espipelines.txt not found. Running so-elasticsearch-pipelines."
 
   echo -n "Waiting for ElasticSearch..."
   COUNT=0
   ELASTICSEARCH_CONNECTED="no"
   while [[ "$COUNT" -le 240 ]]; do
       curl -K /opt/so/conf/elasticsearch/curl.config -k --output /dev/null --silent --head --fail -L https://"$ELASTICSEARCH_HOST":"$ELASTICSEARCH_PORT"
-	  if [ $? -eq 0 ]; then
-	  	ELASTICSEARCH_CONNECTED="yes"
-		echo "connected!"
-		break
-	  else
-		((COUNT+=1))
-		sleep 1
-		echo -n "."
-	  fi
+          if [ $? -eq 0 ]; then
+                ELASTICSEARCH_CONNECTED="yes"
+                echo "connected!"
+                break
+          else
+                ((COUNT+=1))
+                sleep 1
+                echo -n "."
+          fi
     done
   if [ "$ELASTICSEARCH_CONNECTED" == "no" ]; then
-	echo
-	echo -e "Connection attempt timed out.  Unable to connect to ElasticSearch.  \nPlease try: \n  -checking log(s) in /var/log/elasticsearch/\n  -running 'sudo docker ps' \n  -running 'sudo so-elastic-restart'"
-	echo
+        echo
+        echo -e "Connection attempt timed out.  Unable to connect to ElasticSearch.  \nPlease try: \n  -checking log(s) in /var/log/elasticsearch/\n  -running 'sudo docker ps' \n  -running 'sudo so-elastic-restart'"
+        echo
 	exit 1
   fi
 
   cd ${ELASTICSEARCH_INGEST_PIPELINES}
-
   echo "Loading pipelines..."
-  for i in .[a-z]* *; do echo $i; RESPONSE=$(curl -K /opt/so/conf/elasticsearch/curl.config -k -XPUT -L https://${ELASTICSEARCH_HOST}:${ELASTICSEARCH_PORT}/_ingest/pipeline/$i -H 'Content-Type: application/json' -d@$i 2>/dev/null); echo $RESPONSE; if [[ "$RESPONSE" == *"error"* ]]; then RETURN_CODE=1; fi; done
+  for i in .[a-z]* *;
+    do echo $i;
+    RESPONSE=$(curl -K /opt/so/conf/elasticsearch/curl.config -k -XPUT -L https://${ELASTICSEARCH_HOST}:${ELASTICSEARCH_PORT}/_ingest/pipeline/$i -H 'Content-Type: application/json' -d@$i 2>/dev/null);
+    ERRORS=$(echo $RESPONSE | grep -E "Connection attempt timed out|error");
+    if ! [ -z "$ERRORS" ]; then
+      echo $ERRORS;
+      RETURN_CODE=1;
+    fi;
+  done
   echo
 
   cd - >/dev/null
+
   if [[ "$RETURN_CODE" != "1" ]]; then
     touch /opt/so/state/espipelines.txt
-  fi  
-else 
+  else
+    echo "Errors were detected. This script will run again during the next application of the state."
+  fi
+else
   exit $RETURN_CODE
 fi

From b99c7ce76ee769635baeb6fb815430b1cad2c706 Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Mon, 6 Nov 2023 11:22:35 -0500
Subject: [PATCH 351/417] improve verbosity of setup logs

---
 setup/so-setup  | 1 +
 setup/so-verify | 8 +++++++-
 2 files changed, 8 insertions(+), 1 deletion(-)

diff --git a/setup/so-setup b/setup/so-setup
index 691d52a2c..a4e67535b 100755
--- a/setup/so-setup
+++ b/setup/so-setup
@@ -774,6 +774,7 @@ if ! [[ -f $install_opt_file ]]; then
 		title "Setting up Elastic Fleet"
 		logCmd "salt-call state.apply elasticfleet.config"	
 		if ! logCmd so-elastic-fleet-setup; then
+			error "Failed to run so-elastic-fleet-setup"
 			fail_setup
 		fi
 		if [[ ! $is_import ]]; then
diff --git a/setup/so-verify b/setup/so-verify
index e4d90b937..3f00cc420 100755
--- a/setup/so-verify
+++ b/setup/so-verify
@@ -61,8 +61,11 @@ log_has_errors() {
         grep -vE "Running scope as unit" &> "$error_log"
     
     if [[ $? -eq 0 ]]; then
+        # This function succeeds (returns 0) if errors are detected
         return 0
     fi
+
+    # No errors found, return 1 (function failed to find errors)
     return 1
 }
 
@@ -121,7 +124,10 @@ main() {
         echo "WARNING: Failed setup a while ago"
         exit_code=1
     elif log_has_errors; then 
-        echo "WARNING: Errors detected during setup"
+        echo "WARNING: Errors detected during setup."
+        echo "--------- ERRORS ---------"
+        cat $error_log
+        echo "--------------------------"
         exit_code=1
         touch /root/failure
     elif using_iso && cron_error_in_mail_spool; then

From cce80eb2fbf56bdcb73f067ee2912c72bb09c78f Mon Sep 17 00:00:00 2001
From: weslambert <wlambertts@gmail.com>
Date: Tue, 7 Nov 2023 09:02:48 -0500
Subject: [PATCH 352/417] Change pipeline to 1.8.0

---
 .../component/elastic-agent/logs-elastic_agent@package.json     | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent@package.json b/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent@package.json
index 57dc73c66..d0f4fbee5 100644
--- a/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent@package.json
+++ b/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent@package.json
@@ -5,7 +5,7 @@
                 "name": "logs"
               },
               "codec": "best_compression",
-              "default_pipeline": "logs-elastic_agent-1.7.0",
+              "default_pipeline": "logs-elastic_agent-1.8.0",
               "mapping": {
                 "total_fields": {
                   "limit": "10000"

From 0b4a246ddbaef67effb5e33affdee35cd11deeac Mon Sep 17 00:00:00 2001
From: Wes <wlambertts@gmail.com>
Date: Tue, 7 Nov 2023 16:44:42 +0000
Subject: [PATCH 353/417] State file changes and retry logic

---
 salt/elasticsearch/enabled.sls                |  10 +-
 .../tools/sbin/so-elasticsearch-pipelines     |  30 +++-
 .../so-elasticsearch-templates-load           | 154 ++++++++++++++----
 3 files changed, 150 insertions(+), 44 deletions(-)

diff --git a/salt/elasticsearch/enabled.sls b/salt/elasticsearch/enabled.sls
index fa0f824b4..f7ab7749f 100644
--- a/salt/elasticsearch/enabled.sls
+++ b/salt/elasticsearch/enabled.sls
@@ -110,7 +110,7 @@ escomponenttemplates:
     - group: 939
     - clean: True
     - onchanges_in:
-      - cmd: so-elasticsearch-templates
+      - file: so-elasticsearch-templates-reload
       
 # Auto-generate templates from defaults file
 {%     for index, settings in ES_INDEX_SETTINGS.items() %}
@@ -123,7 +123,7 @@ es_index_template_{{index}}:
       TEMPLATE_CONFIG: {{ settings.index_template }}
     - template: jinja
     - onchanges_in:
-      - cmd: so-elasticsearch-templates
+      - file: so-elasticsearch-templates-reload
 {%       endif %}
 {%     endfor %}
 
@@ -142,7 +142,7 @@ es_template_{{TEMPLATE.split('.')[0] | replace("/","_") }}:
     - user: 930
     - group: 939
     - onchanges_in:
-      - cmd: so-elasticsearch-templates
+      - file: so-elasticsearch-templates-reload
 {%       endfor %}
 {%     endif %}
 
@@ -167,6 +167,10 @@ so-elasticsearch-ilm-policy-load:
     - onchanges:
       - file: so-elasticsearch-ilm-policy-load-script
 
+so-elasticsearch-templates-reload:
+  file.absent:
+    - name: /opt/so/state/estemplates.txt
+
 so-elasticsearch-templates:
   cmd.run:
     - name: /usr/sbin/so-elasticsearch-templates-load
diff --git a/salt/elasticsearch/tools/sbin/so-elasticsearch-pipelines b/salt/elasticsearch/tools/sbin/so-elasticsearch-pipelines
index ff826d2c9..2ddc5fa52 100755
--- a/salt/elasticsearch/tools/sbin/so-elasticsearch-pipelines
+++ b/salt/elasticsearch/tools/sbin/so-elasticsearch-pipelines
@@ -41,19 +41,31 @@ echo "State file /opt/so/state/espipelines.txt not found. Running so-elasticsear
 
   cd ${ELASTICSEARCH_INGEST_PIPELINES}
   echo "Loading pipelines..."
-  for i in .[a-z]* *;
-    do echo $i;
-    RESPONSE=$(curl -K /opt/so/conf/elasticsearch/curl.config -k -XPUT -L https://${ELASTICSEARCH_HOST}:${ELASTICSEARCH_PORT}/_ingest/pipeline/$i -H 'Content-Type: application/json' -d@$i 2>/dev/null);
-    ERRORS=$(echo $RESPONSE | grep -E "Connection attempt timed out|error");
-    if ! [ -z "$ERRORS" ]; then
-      echo $ERRORS;
-      RETURN_CODE=1;
-    fi;
+  for i in .[a-z]* *; 
+  do 
+    echo $i;
+    SUCCESSFUL="no"
+    while [[ "$TRYCOUNT" -le 4 ]]; do
+      RESPONSE=$(curl -K /opt/so/conf/elasticsearch/curl.config -k -XPUT -L https://${ELASTICSEARCH_HOST}:${ELASTICSEARCH_PORT}/_ingest/pipeline/$i -H 'Content-Type: application/json' -d@$i 2>/dev/null);
+      if [ "$RESPONSE" == '{"acknowledged":true}' ]; then
+        SUCCESSFUL="yes"
+	break
+      else
+        ((TRYCOUNT+=1))
+        sleep 5
+	echo -n "Attempt $TRYCOUNT/5 unsuccessful..."
+      fi
+    done
+    if ! [ "$SUCCESSFUL" == "yes" ];then
+      echo -n "Could not load pipeline."
+      echo -n "$RESPONSE"
+      exit 1
+    fi
   done
   echo
 
   cd - >/dev/null
-
+  
   if [[ "$RETURN_CODE" != "1" ]]; then
     touch /opt/so/state/espipelines.txt
   else
diff --git a/salt/elasticsearch/tools/sbin_jinja/so-elasticsearch-templates-load b/salt/elasticsearch/tools/sbin_jinja/so-elasticsearch-templates-load
index 857da5434..d1e5dc41a 100755
--- a/salt/elasticsearch/tools/sbin_jinja/so-elasticsearch-templates-load
+++ b/salt/elasticsearch/tools/sbin_jinja/so-elasticsearch-templates-load
@@ -7,25 +7,31 @@
 {%  from 'vars/globals.map.jinja' import GLOBALS %}
 {%- set SUPPORTED_PACKAGES = salt['pillar.get']('elasticfleet:packages', default=ELASTICFLEETDEFAULTS.elasticfleet.packages, merge=True) %}
 
-. /usr/sbin/so-common
-{% if GLOBALS.role != 'so-heavynode' %}
-if [ -f /usr/sbin/so-elastic-fleet-common ]; then
-  . /usr/sbin/so-elastic-fleet-common
-fi
-{% endif %}
+RETURN_CODE=0
 
-default_conf_dir=/opt/so/conf
+if [ ! -f /opt/so/state/estemplates.txt ]; then
+  echo "State file /opt/so/state/estemplates.txt not found. Running so-elasticsearch-templates-load."
 
-# Define a default directory to load pipelines from
-ELASTICSEARCH_TEMPLATES="$default_conf_dir/elasticsearch/templates/"
+  . /usr/sbin/so-common
 
-{% if GLOBALS.role == 'so-heavynode' %}
-file="/opt/so/conf/elasticsearch/templates/index/so-common-template.json"
-{% else %}
-file="/usr/sbin/so-elastic-fleet-common"
-{% endif %}
+  {% if GLOBALS.role != 'so-heavynode' %}
+  if [ -f /usr/sbin/so-elastic-fleet-common ]; then
+    . /usr/sbin/so-elastic-fleet-common
+  fi
+  {% endif %}
 
-if [ -f "$file" ]; then
+  default_conf_dir=/opt/so/conf
+
+  # Define a default directory to load pipelines from
+  ELASTICSEARCH_TEMPLATES="$default_conf_dir/elasticsearch/templates/"
+
+  {% if GLOBALS.role == 'so-heavynode' %}
+  file="/opt/so/conf/elasticsearch/templates/index/so-common-template.json"
+  {% else %}
+  file="/usr/sbin/so-elastic-fleet-common"
+  {% endif %}
+
+  if [ -f "$file" ]; then
 	# Wait for ElasticSearch to initialize
 	echo -n "Waiting for ElasticSearch..."
 	COUNT=0
@@ -59,12 +65,32 @@ if [ -f "$file" ]; then
         	exit 0
 	fi
         {% endif %}
-	set -e
 
 	cd ${ELASTICSEARCH_TEMPLATES}/component/ecs
 
 	echo "Loading ECS component templates..."
-	for i in *; do TEMPLATE=$(echo $i | cut -d '.' -f1); echo "$TEMPLATE-mappings"; so-elasticsearch-query _component_template/$TEMPLATE-mappings -d@$i -XPUT 2>/dev/null; echo; done
+	for i in *; do 
+	  TEMPLATE=$(echo $i | cut -d '.' -f1) 
+	  echo "$TEMPLATE-mappings" 
+          SUCCESSFUL="no"
+          while [[ "$TRYCOUNT" -le 4 ]]; do
+	    RESPONSE=$(so-elasticsearch-query _component_template/${TEMPLATE}-mappings -d@$i -XPUT 2>/dev/null); 
+            if [ "$RESPONSE" == '{"acknowledged":true}' ]; then
+              SUCCESSFUL="yes"
+              break
+            else
+              ((TRYCOUNT+=1))
+              sleep 5
+              echo -n "Attempt $TRYCOUNT/5 unsuccessful..."
+            fi
+          done
+            if ! [ "$SUCCESSFUL" == "yes" ];then
+              echo -n "Could not load template."
+              echo -n "$RESPONSE"
+              exit 1
+            fi
+        done
+	echo
 
 	cd ${ELASTICSEARCH_TEMPLATES}/component/elastic-agent
 
@@ -74,13 +100,54 @@ if [ -f "$file" ]; then
         {% else %}
         component_pattern="*"
         {% endif %}
-        for i in $component_pattern; do TEMPLATE=${i::-5}; echo "$TEMPLATE"; so-elasticsearch-query _component_template/$TEMPLATE -d@$i -XPUT 2>/dev/null; echo; done
-
+        for i in $component_pattern; do 
+	  TEMPLATE=${i::-5} 
+	  echo "$TEMPLATE"
+	  SUCCESSFUL="no"
+          while [[ "$TRYCOUNT" -le 4 ]]; do
+	    RESPONSE=$(so-elasticsearch-query _component_template/$TEMPLATE -d@$i -XPUT 2>/dev/null); 
+	    if [ "$RESPONSE" == '{"acknowledged":true}' ]; then
+              SUCCESSFUL="yes"
+              break
+            else
+              ((TRYCOUNT+=1))
+              sleep 5
+              echo -n "Attempt $TRYCOUNT/5 unsuccessful..."
+            fi
+          done
+            if ! [ "$SUCCESSFUL" == "yes" ];then
+              echo -n "Could not load template."
+              echo -n "$RESPONSE"
+              exit 1
+            fi
+        done
+	echo
+	    
 	# Load SO-specific component templates
 	cd ${ELASTICSEARCH_TEMPLATES}/component/so
 
 	echo "Loading Security Onion component templates..."
-	for i in *; do TEMPLATE=$(echo $i | cut -d '.' -f1); echo "$TEMPLATE"; so-elasticsearch-query _component_template/$TEMPLATE -d@$i -XPUT 2>/dev/null; echo; done
+	for i in *; do 
+	  TEMPLATE=$(echo $i | cut -d '.' -f1); 
+	  echo "$TEMPLATE"
+	  SUCCESSFUL="no"
+          while [[ "$TRYCOUNT" -le 4 ]]; do 
+	    RESPONSE=$(so-elasticsearch-query _component_template/$TEMPLATE -d@$i -XPUT 2>/dev/null);
+            if [ "$RESPONSE" == '{"acknowledged":true}' ]; then
+              SUCCESSFUL="yes"
+              break
+            else
+              ((TRYCOUNT+=1))
+              sleep 5
+              echo -n "Attempt $TRYCOUNT/5 unsuccessful..."
+            fi
+          done
+            if ! [ "$SUCCESSFUL" == "yes" ];then
+              echo -n "Could not load template."
+              echo -n "$RESPONSE"
+              exit 1
+            fi
+        done
 	echo
 
 	# Load SO index templates
@@ -94,18 +161,41 @@ if [ -f "$file" ]; then
         pattern="*"
         {% endif %}
         for i in $pattern; do
-            TEMPLATE=${i::-14};
-            echo "$TEMPLATE";
-            so-elasticsearch-query _index_template/$TEMPLATE -d@$i -XPUT 2>/dev/null;
-            echo;
+          TEMPLATE=${i::-14}
+          echo "$TEMPLATE"
+	  SUCCESSFUL="no"
+          while [[ "$TRYCOUNT" -le 4 ]]; do
+	    RESPONSE=$(so-elasticsearch-query _index_template/$TEMPLATE -d@$i -XPUT 2>/dev/null);
+            if [ "$RESPONSE" == '{"acknowledged":true}' ]; then
+              SUCCESSFUL="yes"
+              break
+            else
+              ((TRYCOUNT+=1))
+              sleep 5
+              echo -n "Attempt $TRYCOUNT/5 unsuccessful..."
+            fi
+          done
+            if ! [ "$SUCCESSFUL" == "yes" ];then
+              echo -n "Could not load template."
+              echo -n "$RESPONSE"
+              exit 1
+            fi
         done
-	echo
+  else
+    {% if GLOBALS.role == 'so-heavynode' %}
+    echo "Common template does not exist. Exiting..."
+    {% else %}
+    echo "Elastic Fleet not configured. Exiting..."
+    {% endif %}
+    RETURN_CODE=1
+    exit 0
+  fi
+  cd - >/dev/null
+  if [[ "$RETURN_CODE" != "1" ]]; then
+    touch /opt/so/state/estemplates.txt
+  else
+    echo "Errors were detected. This script will run again during the next application of the state."
+  fi
 else
-	{% if GLOBALS.role == 'so-heavynode' %}
-        echo "Common template does not exist. Exiting..."
-        {% else %}
-        echo "Elastic Fleet not configured. Exiting..."
-	{% endif %}
-        exit 0
+  exit $RETURN_CODE
 fi
-	cd - >/dev/null

From 1dcca0bfd37503f47130e30ff82bb94f08318c74 Mon Sep 17 00:00:00 2001
From: weslambert <wlambertts@gmail.com>
Date: Tue, 7 Nov 2023 12:17:51 -0500
Subject: [PATCH 354/417] Change pipeline to 1.13.1

---
 .../component/elastic-agent/logs-elastic_agent@package.json     | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent@package.json b/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent@package.json
index d0f4fbee5..2390705f3 100644
--- a/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent@package.json
+++ b/salt/elasticsearch/templates/component/elastic-agent/logs-elastic_agent@package.json
@@ -5,7 +5,7 @@
                 "name": "logs"
               },
               "codec": "best_compression",
-              "default_pipeline": "logs-elastic_agent-1.8.0",
+              "default_pipeline": "logs-elastic_agent-1.13.1",
               "mapping": {
                 "total_fields": {
                   "limit": "10000"

From 1676c84f9c6ef6b2332c7668dfbe8d1d8f58cac0 Mon Sep 17 00:00:00 2001
From: Wes <wlambertts@gmail.com>
Date: Tue, 7 Nov 2023 19:56:50 +0000
Subject: [PATCH 355/417] Use the retry function so-elasticsearch-query

---
 .../tools/sbin/so-elasticsearch-pipelines     |  42 +---
 .../so-elasticsearch-templates-load           | 198 +++++-------------
 2 files changed, 60 insertions(+), 180 deletions(-)

diff --git a/salt/elasticsearch/tools/sbin/so-elasticsearch-pipelines b/salt/elasticsearch/tools/sbin/so-elasticsearch-pipelines
index 2ddc5fa52..4afc9bd4d 100755
--- a/salt/elasticsearch/tools/sbin/so-elasticsearch-pipelines
+++ b/salt/elasticsearch/tools/sbin/so-elasticsearch-pipelines
@@ -15,52 +15,16 @@ ELASTICSEARCH_INGEST_PIPELINES="/opt/so/conf/elasticsearch/ingest/"
 
 # Wait for ElasticSearch to initialize
 if [ ! -f /opt/so/state/espipelines.txt ]; then
-echo "State file /opt/so/state/espipelines.txt not found. Running so-elasticsearch-pipelines."
-
+  echo "State file /opt/so/state/espipelines.txt not found. Running so-elasticsearch-pipelines."
   echo -n "Waiting for ElasticSearch..."
-  COUNT=0
-  ELASTICSEARCH_CONNECTED="no"
-  while [[ "$COUNT" -le 240 ]]; do
-      curl -K /opt/so/conf/elasticsearch/curl.config -k --output /dev/null --silent --head --fail -L https://"$ELASTICSEARCH_HOST":"$ELASTICSEARCH_PORT"
-          if [ $? -eq 0 ]; then
-                ELASTICSEARCH_CONNECTED="yes"
-                echo "connected!"
-                break
-          else
-                ((COUNT+=1))
-                sleep 1
-                echo -n "."
-          fi
-    done
-  if [ "$ELASTICSEARCH_CONNECTED" == "no" ]; then
-        echo
-        echo -e "Connection attempt timed out.  Unable to connect to ElasticSearch.  \nPlease try: \n  -checking log(s) in /var/log/elasticsearch/\n  -running 'sudo docker ps' \n  -running 'sudo so-elastic-restart'"
-        echo
-	exit 1
-  fi
+  retry 240 1 "so-elasticsearch-query / -k --output /dev/null --silent --head --fail" || fail "Connection attempt timed out.  Unable to connect to ElasticSearch.  \nPlease try: \n  -checking log(s) in /var/log/elasticsearch/\n  -running 'sudo docker ps' \n  -running 'sudo so-elastic-restart'"
 
   cd ${ELASTICSEARCH_INGEST_PIPELINES}
   echo "Loading pipelines..."
   for i in .[a-z]* *; 
   do 
     echo $i;
-    SUCCESSFUL="no"
-    while [[ "$TRYCOUNT" -le 4 ]]; do
-      RESPONSE=$(curl -K /opt/so/conf/elasticsearch/curl.config -k -XPUT -L https://${ELASTICSEARCH_HOST}:${ELASTICSEARCH_PORT}/_ingest/pipeline/$i -H 'Content-Type: application/json' -d@$i 2>/dev/null);
-      if [ "$RESPONSE" == '{"acknowledged":true}' ]; then
-        SUCCESSFUL="yes"
-	break
-      else
-        ((TRYCOUNT+=1))
-        sleep 5
-	echo -n "Attempt $TRYCOUNT/5 unsuccessful..."
-      fi
-    done
-    if ! [ "$SUCCESSFUL" == "yes" ];then
-      echo -n "Could not load pipeline."
-      echo -n "$RESPONSE"
-      exit 1
-    fi
+    retry 5 5 "so-elasticsearch-query _ingest/pipeline/$i -d@$i -XPUT | grep '{\"acknowledged\":true}'" || fail "Could not load pipeline: $i"
   done
   echo
 
diff --git a/salt/elasticsearch/tools/sbin_jinja/so-elasticsearch-templates-load b/salt/elasticsearch/tools/sbin_jinja/so-elasticsearch-templates-load
index d1e5dc41a..c0d4f9cba 100755
--- a/salt/elasticsearch/tools/sbin_jinja/so-elasticsearch-templates-load
+++ b/salt/elasticsearch/tools/sbin_jinja/so-elasticsearch-templates-load
@@ -32,155 +32,71 @@ if [ ! -f /opt/so/state/estemplates.txt ]; then
   {% endif %}
 
   if [ -f "$file" ]; then
-	# Wait for ElasticSearch to initialize
-	echo -n "Waiting for ElasticSearch..."
-	COUNT=0
-	ELASTICSEARCH_CONNECTED="no"
-	while [[ "$COUNT" -le 240 ]]; do
-      		so-elasticsearch-query / -k --output /dev/null --silent --head --fail
-		if [ $? -eq 0 ]; then
-			ELASTICSEARCH_CONNECTED="yes"
-			echo "connected!"
-			break
-		else
-			((COUNT+=1))
-			sleep 1
-			echo -n "."
-		fi
-	done
-	if [ "$ELASTICSEARCH_CONNECTED" == "no" ]; then
-		echo
-		echo -e "Connection attempt timed out.  Unable to connect to ElasticSearch.  \nPlease try: \n  -checking log(s) in /var/log/elasticsearch/\n  -running 'sudo docker ps' \n  -running 'sudo so-elastic-restart'"
-		echo
-		exit 1
-	fi
+    # Wait for ElasticSearch to initialize
+    echo -n "Waiting for ElasticSearch..."
+    retry 240 1 "so-elasticsearch-query / -k --output /dev/null --silent --head --fail" || fail "Connection attempt timed out.  Unable to connect to ElasticSearch.  \nPlease try: \n  -checking log(s) in /var/log/elasticsearch/\n  -running 'sudo docker ps' \n  -running 'sudo so-elastic-restart'"
+    {% if GLOBALS.role != 'so-heavynode' %}
+    SESSIONCOOKIE=$(curl -s -K /opt/so/conf/elasticsearch/curl.config -c - -X GET http://localhost:5601/ | grep sid | awk '{print $7}')
+    INSTALLED=$(elastic_fleet_package_is_installed {{ SUPPORTED_PACKAGES[0] }} )
+    if [ "$INSTALLED" != "installed" ]; then
+      echo
+      echo "Packages not yet installed."
+      echo
+      exit 0
+    fi
+    {% endif %}
 
-	{% if GLOBALS.role != 'so-heavynode' %}
-        SESSIONCOOKIE=$(curl -s -K /opt/so/conf/elasticsearch/curl.config -c - -X GET http://localhost:5601/ | grep sid | awk '{print $7}')
-	INSTALLED=$(elastic_fleet_package_is_installed {{ SUPPORTED_PACKAGES[0] }} )
-	if [ "$INSTALLED" != "installed" ]; then
-        	echo
-        	echo "Packages not yet installed."
-        	echo
-        	exit 0
-	fi
-        {% endif %}
+    cd ${ELASTICSEARCH_TEMPLATES}/component/ecs
 
-	cd ${ELASTICSEARCH_TEMPLATES}/component/ecs
+    echo "Loading ECS component templates..."
+    for i in *; do 
+      TEMPLATE=$(echo $i | cut -d '.' -f1) 
+      echo "$TEMPLATE-mappings" 
+      retry 5 5 "so-elasticsearch-query _component_template/${TEMPLATE}-mappings -d@$i -XPUT | grep '{\"acknowledged\":true}'" || fail "Could not load template: $TEMPLATE-mappings"
+    done
+    echo
 
-	echo "Loading ECS component templates..."
-	for i in *; do 
-	  TEMPLATE=$(echo $i | cut -d '.' -f1) 
-	  echo "$TEMPLATE-mappings" 
-          SUCCESSFUL="no"
-          while [[ "$TRYCOUNT" -le 4 ]]; do
-	    RESPONSE=$(so-elasticsearch-query _component_template/${TEMPLATE}-mappings -d@$i -XPUT 2>/dev/null); 
-            if [ "$RESPONSE" == '{"acknowledged":true}' ]; then
-              SUCCESSFUL="yes"
-              break
-            else
-              ((TRYCOUNT+=1))
-              sleep 5
-              echo -n "Attempt $TRYCOUNT/5 unsuccessful..."
-            fi
-          done
-            if ! [ "$SUCCESSFUL" == "yes" ];then
-              echo -n "Could not load template."
-              echo -n "$RESPONSE"
-              exit 1
-            fi
-        done
-	echo
+    cd ${ELASTICSEARCH_TEMPLATES}/component/elastic-agent
 
-	cd ${ELASTICSEARCH_TEMPLATES}/component/elastic-agent
-
-	echo "Loading Elastic Agent component templates..."
-	{% if GLOBALS.role == 'so-heavynode' %}
-        component_pattern="so-*"
-        {% else %}
-        component_pattern="*"
-        {% endif %}
-        for i in $component_pattern; do 
-	  TEMPLATE=${i::-5} 
-	  echo "$TEMPLATE"
-	  SUCCESSFUL="no"
-          while [[ "$TRYCOUNT" -le 4 ]]; do
-	    RESPONSE=$(so-elasticsearch-query _component_template/$TEMPLATE -d@$i -XPUT 2>/dev/null); 
-	    if [ "$RESPONSE" == '{"acknowledged":true}' ]; then
-              SUCCESSFUL="yes"
-              break
-            else
-              ((TRYCOUNT+=1))
-              sleep 5
-              echo -n "Attempt $TRYCOUNT/5 unsuccessful..."
-            fi
-          done
-            if ! [ "$SUCCESSFUL" == "yes" ];then
-              echo -n "Could not load template."
-              echo -n "$RESPONSE"
-              exit 1
-            fi
-        done
-	echo
+    echo "Loading Elastic Agent component templates..."
+    {% if GLOBALS.role == 'so-heavynode' %}
+    component_pattern="so-*"
+    {% else %}
+    component_pattern="*"
+    {% endif %}
+    for i in $component_pattern; do 
+      TEMPLATE=${i::-5} 
+      echo "$TEMPLATE"
+      retry 5 5 "so-elasticsearch-query _component_template/$TEMPLATE -d@$i -XPUT | grep '{\"acknowledged\":true}'" || fail "Could not load template: $TEMPLATE"
+    done
+    echo
 	    
-	# Load SO-specific component templates
-	cd ${ELASTICSEARCH_TEMPLATES}/component/so
+    # Load SO-specific component templates
+    cd ${ELASTICSEARCH_TEMPLATES}/component/so
 
-	echo "Loading Security Onion component templates..."
-	for i in *; do 
-	  TEMPLATE=$(echo $i | cut -d '.' -f1); 
-	  echo "$TEMPLATE"
-	  SUCCESSFUL="no"
-          while [[ "$TRYCOUNT" -le 4 ]]; do 
-	    RESPONSE=$(so-elasticsearch-query _component_template/$TEMPLATE -d@$i -XPUT 2>/dev/null);
-            if [ "$RESPONSE" == '{"acknowledged":true}' ]; then
-              SUCCESSFUL="yes"
-              break
-            else
-              ((TRYCOUNT+=1))
-              sleep 5
-              echo -n "Attempt $TRYCOUNT/5 unsuccessful..."
-            fi
-          done
-            if ! [ "$SUCCESSFUL" == "yes" ];then
-              echo -n "Could not load template."
-              echo -n "$RESPONSE"
-              exit 1
-            fi
-        done
-	echo
+    echo "Loading Security Onion component templates..."
+    for i in *; do 
+      TEMPLATE=$(echo $i | cut -d '.' -f1); 
+      echo "$TEMPLATE"
+      retry 5 5 "so-elasticsearch-query _component_template/$TEMPLATE -d@$i -XPUT | grep '{\"acknowledged\":true}'" || fail "Could not load template: $TEMPLATE"  
+    done
+    echo
 
-	# Load SO index templates
-	cd ${ELASTICSEARCH_TEMPLATES}/index
+    # Load SO index templates
+    cd ${ELASTICSEARCH_TEMPLATES}/index
 
-	echo "Loading Security Onion index templates..."
-	shopt -s extglob
-        {% if GLOBALS.role == 'so-heavynode' %}
-        pattern="!(*1password*|*aws*|*azure*|*cloudflare*|*elastic_agent*|*fim*|*github*|*google*|*osquery*|*system*|*windows*)"
-        {% else %}
-        pattern="*"
-        {% endif %}
-        for i in $pattern; do
-          TEMPLATE=${i::-14}
-          echo "$TEMPLATE"
-	  SUCCESSFUL="no"
-          while [[ "$TRYCOUNT" -le 4 ]]; do
-	    RESPONSE=$(so-elasticsearch-query _index_template/$TEMPLATE -d@$i -XPUT 2>/dev/null);
-            if [ "$RESPONSE" == '{"acknowledged":true}' ]; then
-              SUCCESSFUL="yes"
-              break
-            else
-              ((TRYCOUNT+=1))
-              sleep 5
-              echo -n "Attempt $TRYCOUNT/5 unsuccessful..."
-            fi
-          done
-            if ! [ "$SUCCESSFUL" == "yes" ];then
-              echo -n "Could not load template."
-              echo -n "$RESPONSE"
-              exit 1
-            fi
-        done
+    echo "Loading Security Onion index templates..."
+    shopt -s extglob
+    {% if GLOBALS.role == 'so-heavynode' %}
+    pattern="!(*1password*|*aws*|*azure*|*cloudflare*|*elastic_agent*|*fim*|*github*|*google*|*osquery*|*system*|*windows*)"
+    {% else %}
+    pattern="*"
+    {% endif %}
+    for i in $pattern; do
+      TEMPLATE=${i::-14}
+      echo "$TEMPLATE"
+      retry 5 5 "so-elasticsearch-query _index_template/$TEMPLATE -d@$i -XPUT | grep '{\"acknowledged\":true}'" || fail "Could not load template: $TEMPLATE"     
+      done
   else
     {% if GLOBALS.role == 'so-heavynode' %}
     echo "Common template does not exist. Exiting..."

From 7772657b4bc9342a2800560f4919fbff0e4d03d2 Mon Sep 17 00:00:00 2001
From: Wes <wlambertts@gmail.com>
Date: Tue, 7 Nov 2023 21:06:35 +0000
Subject: [PATCH 356/417] Remove RETURN_CODE

---
 .../tools/sbin/so-elasticsearch-pipelines              | 10 +---------
 1 file changed, 1 insertion(+), 9 deletions(-)

diff --git a/salt/elasticsearch/tools/sbin/so-elasticsearch-pipelines b/salt/elasticsearch/tools/sbin/so-elasticsearch-pipelines
index 4afc9bd4d..fa0e57fc4 100755
--- a/salt/elasticsearch/tools/sbin/so-elasticsearch-pipelines
+++ b/salt/elasticsearch/tools/sbin/so-elasticsearch-pipelines
@@ -6,7 +6,6 @@
 
 . /usr/sbin/so-common
 
-RETURN_CODE=0
 ELASTICSEARCH_HOST=$1
 ELASTICSEARCH_PORT=9200
 
@@ -30,11 +29,4 @@ if [ ! -f /opt/so/state/espipelines.txt ]; then
 
   cd - >/dev/null
   
-  if [[ "$RETURN_CODE" != "1" ]]; then
-    touch /opt/so/state/espipelines.txt
-  else
-    echo "Errors were detected. This script will run again during the next application of the state."
-  fi
-else
-  exit $RETURN_CODE
-fi
+  touch /opt/so/state/espipelines.txt

From 570624da7eb806bc01a1f7b4aec6cebeaa262be0 Mon Sep 17 00:00:00 2001
From: Wes <wlambertts@gmail.com>
Date: Tue, 7 Nov 2023 21:09:29 +0000
Subject: [PATCH 357/417] Remove RETURN_CODE

---
 .../sbin_jinja/so-elasticsearch-templates-load     | 14 +++-----------
 1 file changed, 3 insertions(+), 11 deletions(-)

diff --git a/salt/elasticsearch/tools/sbin_jinja/so-elasticsearch-templates-load b/salt/elasticsearch/tools/sbin_jinja/so-elasticsearch-templates-load
index c0d4f9cba..d870ada90 100755
--- a/salt/elasticsearch/tools/sbin_jinja/so-elasticsearch-templates-load
+++ b/salt/elasticsearch/tools/sbin_jinja/so-elasticsearch-templates-load
@@ -7,8 +7,6 @@
 {%  from 'vars/globals.map.jinja' import GLOBALS %}
 {%- set SUPPORTED_PACKAGES = salt['pillar.get']('elasticfleet:packages', default=ELASTICFLEETDEFAULTS.elasticfleet.packages, merge=True) %}
 
-RETURN_CODE=0
-
 if [ ! -f /opt/so/state/estemplates.txt ]; then
   echo "State file /opt/so/state/estemplates.txt not found. Running so-elasticsearch-templates-load."
 
@@ -103,15 +101,9 @@ if [ ! -f /opt/so/state/estemplates.txt ]; then
     {% else %}
     echo "Elastic Fleet not configured. Exiting..."
     {% endif %}
-    RETURN_CODE=1
     exit 0
   fi
+  
   cd - >/dev/null
-  if [[ "$RETURN_CODE" != "1" ]]; then
-    touch /opt/so/state/estemplates.txt
-  else
-    echo "Errors were detected. This script will run again during the next application of the state."
-  fi
-else
-  exit $RETURN_CODE
-fi
+  
+  touch /opt/so/state/estemplates.txt

From 69ec1987af24a2e36a24e649e667f7ad8dc0f3f6 Mon Sep 17 00:00:00 2001
From: weslambert <wlambertts@gmail.com>
Date: Tue, 7 Nov 2023 17:28:37 -0500
Subject: [PATCH 358/417] Fix if statement

---
 salt/elasticsearch/tools/sbin/so-elasticsearch-pipelines | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/salt/elasticsearch/tools/sbin/so-elasticsearch-pipelines b/salt/elasticsearch/tools/sbin/so-elasticsearch-pipelines
index fa0e57fc4..71c40c1ca 100755
--- a/salt/elasticsearch/tools/sbin/so-elasticsearch-pipelines
+++ b/salt/elasticsearch/tools/sbin/so-elasticsearch-pipelines
@@ -28,5 +28,5 @@ if [ ! -f /opt/so/state/espipelines.txt ]; then
   echo
 
   cd - >/dev/null
-  
   touch /opt/so/state/espipelines.txt
+fi

From 749e22e4b9502205bbbc9a43b3577ab186c76c3f Mon Sep 17 00:00:00 2001
From: weslambert <wlambertts@gmail.com>
Date: Tue, 7 Nov 2023 17:29:38 -0500
Subject: [PATCH 359/417] Fix if statement

---
 .../tools/sbin_jinja/so-elasticsearch-templates-load            | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/salt/elasticsearch/tools/sbin_jinja/so-elasticsearch-templates-load b/salt/elasticsearch/tools/sbin_jinja/so-elasticsearch-templates-load
index d870ada90..985630402 100755
--- a/salt/elasticsearch/tools/sbin_jinja/so-elasticsearch-templates-load
+++ b/salt/elasticsearch/tools/sbin_jinja/so-elasticsearch-templates-load
@@ -105,5 +105,5 @@ if [ ! -f /opt/so/state/estemplates.txt ]; then
   fi
   
   cd - >/dev/null
-  
   touch /opt/so/state/estemplates.txt
+fi

From de9f9549afa6ef300982690a9beadfd01a48ea4e Mon Sep 17 00:00:00 2001
From: Wes <wlambertts@gmail.com>
Date: Tue, 7 Nov 2023 23:55:03 +0000
Subject: [PATCH 360/417] Extend template loading to 24 attempts and a total of
 ~2 minutes

---
 .../tools/sbin_jinja/so-elasticsearch-templates-load      | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/salt/elasticsearch/tools/sbin_jinja/so-elasticsearch-templates-load b/salt/elasticsearch/tools/sbin_jinja/so-elasticsearch-templates-load
index 985630402..a25d49390 100755
--- a/salt/elasticsearch/tools/sbin_jinja/so-elasticsearch-templates-load
+++ b/salt/elasticsearch/tools/sbin_jinja/so-elasticsearch-templates-load
@@ -50,7 +50,7 @@ if [ ! -f /opt/so/state/estemplates.txt ]; then
     for i in *; do 
       TEMPLATE=$(echo $i | cut -d '.' -f1) 
       echo "$TEMPLATE-mappings" 
-      retry 5 5 "so-elasticsearch-query _component_template/${TEMPLATE}-mappings -d@$i -XPUT | grep '{\"acknowledged\":true}'" || fail "Could not load template: $TEMPLATE-mappings"
+      retry 24 5 "so-elasticsearch-query _component_template/${TEMPLATE}-mappings -d@$i -XPUT | grep '{\"acknowledged\":true}'" || fail "Could not load template: $TEMPLATE-mappings"
     done
     echo
 
@@ -65,7 +65,7 @@ if [ ! -f /opt/so/state/estemplates.txt ]; then
     for i in $component_pattern; do 
       TEMPLATE=${i::-5} 
       echo "$TEMPLATE"
-      retry 5 5 "so-elasticsearch-query _component_template/$TEMPLATE -d@$i -XPUT | grep '{\"acknowledged\":true}'" || fail "Could not load template: $TEMPLATE"
+      retry 24 5 "so-elasticsearch-query _component_template/$TEMPLATE -d@$i -XPUT | grep '{\"acknowledged\":true}'" || fail "Could not load template: $TEMPLATE"
     done
     echo
 	    
@@ -76,7 +76,7 @@ if [ ! -f /opt/so/state/estemplates.txt ]; then
     for i in *; do 
       TEMPLATE=$(echo $i | cut -d '.' -f1); 
       echo "$TEMPLATE"
-      retry 5 5 "so-elasticsearch-query _component_template/$TEMPLATE -d@$i -XPUT | grep '{\"acknowledged\":true}'" || fail "Could not load template: $TEMPLATE"  
+      retry 24 5 "so-elasticsearch-query _component_template/$TEMPLATE -d@$i -XPUT | grep '{\"acknowledged\":true}'" || fail "Could not load template: $TEMPLATE"  
     done
     echo
 
@@ -93,7 +93,7 @@ if [ ! -f /opt/so/state/estemplates.txt ]; then
     for i in $pattern; do
       TEMPLATE=${i::-14}
       echo "$TEMPLATE"
-      retry 5 5 "so-elasticsearch-query _index_template/$TEMPLATE -d@$i -XPUT | grep '{\"acknowledged\":true}'" || fail "Could not load template: $TEMPLATE"     
+      retry 24 5 "so-elasticsearch-query _index_template/$TEMPLATE -d@$i -XPUT | grep '{\"acknowledged\":true}'" || fail "Could not load template: $TEMPLATE"     
       done
   else
     {% if GLOBALS.role == 'so-heavynode' %}

From b46e86c39b0c1730c5051d86e39156915f7ba31f Mon Sep 17 00:00:00 2001
From: Wes <wlambertts@gmail.com>
Date: Wed, 8 Nov 2023 02:29:09 +0000
Subject: [PATCH 361/417] Extend index template loading to 60 attempts and a
 total of ~5 minutes

---
 .../tools/sbin_jinja/so-elasticsearch-templates-load            | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/salt/elasticsearch/tools/sbin_jinja/so-elasticsearch-templates-load b/salt/elasticsearch/tools/sbin_jinja/so-elasticsearch-templates-load
index a25d49390..c3c5ff69f 100755
--- a/salt/elasticsearch/tools/sbin_jinja/so-elasticsearch-templates-load
+++ b/salt/elasticsearch/tools/sbin_jinja/so-elasticsearch-templates-load
@@ -93,7 +93,7 @@ if [ ! -f /opt/so/state/estemplates.txt ]; then
     for i in $pattern; do
       TEMPLATE=${i::-14}
       echo "$TEMPLATE"
-      retry 24 5 "so-elasticsearch-query _index_template/$TEMPLATE -d@$i -XPUT | grep '{\"acknowledged\":true}'" || fail "Could not load template: $TEMPLATE"     
+      retry 60 5 "so-elasticsearch-query _index_template/$TEMPLATE -d@$i -XPUT | grep '{\"acknowledged\":true}'" || fail "Could not load template: $TEMPLATE"     
       done
   else
     {% if GLOBALS.role == 'so-heavynode' %}

From 653fda124f13303a0111c8c126ea2d7e8b6a42f9 Mon Sep 17 00:00:00 2001
From: Wes <wlambertts@gmail.com>
Date: Wed, 8 Nov 2023 13:02:17 +0000
Subject: [PATCH 362/417] Check expected with retry

---
 .../tools/sbin_jinja/so-elasticsearch-templates-load            | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/salt/elasticsearch/tools/sbin_jinja/so-elasticsearch-templates-load b/salt/elasticsearch/tools/sbin_jinja/so-elasticsearch-templates-load
index c3c5ff69f..268b6138d 100755
--- a/salt/elasticsearch/tools/sbin_jinja/so-elasticsearch-templates-load
+++ b/salt/elasticsearch/tools/sbin_jinja/so-elasticsearch-templates-load
@@ -93,7 +93,7 @@ if [ ! -f /opt/so/state/estemplates.txt ]; then
     for i in $pattern; do
       TEMPLATE=${i::-14}
       echo "$TEMPLATE"
-      retry 60 5 "so-elasticsearch-query _index_template/$TEMPLATE -d@$i -XPUT | grep '{\"acknowledged\":true}'" || fail "Could not load template: $TEMPLATE"     
+      retry 60 5 "so-elasticsearch-query _index_template/$TEMPLATE -d@$i -XPUT" "{\"acknowledged\":true}" || fail "Could not load template: $TEMPLATE"     
       done
   else
     {% if GLOBALS.role == 'so-heavynode' %}

From d256be3eb3ba768872c83670995e50f4a8191a8e Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Wed, 8 Nov 2023 10:32:11 -0500
Subject: [PATCH 363/417] allow template loads to partially succeed only on the
 initial attempt

---
 salt/common/tools/sbin/so-common              |  6 +-
 .../so-elasticsearch-templates-load           | 64 +++++++++++++++----
 2 files changed, 57 insertions(+), 13 deletions(-)

diff --git a/salt/common/tools/sbin/so-common b/salt/common/tools/sbin/so-common
index 8089db28b..e09d2c8ae 100755
--- a/salt/common/tools/sbin/so-common
+++ b/salt/common/tools/sbin/so-common
@@ -397,6 +397,10 @@ retry() {
 								echo "<Start of output>"
 								echo "$output"
 								echo "<End of output>"
+								if [[ $exitcode -eq 0 ]]; then
+									echo "Forcing exit code to 1"
+									exitcode=1
+								fi
                         fi
                 elif [ -n "$failedOutput" ]; then
                         if [[ "$output" =~ "$failedOutput" ]]; then
@@ -405,7 +409,7 @@ retry() {
 								echo "$output"
 								echo "<End of output>"
 								if [[ $exitcode -eq 0 ]]; then
-									echo "The exitcode was 0, but we are setting to 1 since we found $failedOutput in the output."
+									echo "Forcing exit code to 1"
 									exitcode=1
 								fi
                         else
diff --git a/salt/elasticsearch/tools/sbin_jinja/so-elasticsearch-templates-load b/salt/elasticsearch/tools/sbin_jinja/so-elasticsearch-templates-load
index 268b6138d..33caff435 100755
--- a/salt/elasticsearch/tools/sbin_jinja/so-elasticsearch-templates-load
+++ b/salt/elasticsearch/tools/sbin_jinja/so-elasticsearch-templates-load
@@ -7,8 +7,42 @@
 {%  from 'vars/globals.map.jinja' import GLOBALS %}
 {%- set SUPPORTED_PACKAGES = salt['pillar.get']('elasticfleet:packages', default=ELASTICFLEETDEFAULTS.elasticfleet.packages, merge=True) %}
 
-if [ ! -f /opt/so/state/estemplates.txt ]; then
-  echo "State file /opt/so/state/estemplates.txt not found. Running so-elasticsearch-templates-load."
+STATE_FILE_INITIAL=/opt/so/state/estemplates_initial_load_attempt.txt
+STATE_FILE_SUCCESS=/opt/so/state/estemplates.txt
+
+if [[ -f $STATE_FILE_INITIAL ]]; then
+  # The initial template load has already run. As this is a subsequent load, all dependencies should 
+  # already be satisified. Therefore, immediately exit/abort this script upon any template load failure
+  # since this is an unrecoverable failure.
+  should_exit_on_failure=1
+else
+  # This is the initial template load, and there likely are some components not yet setup in Elasticsearch.
+  # Therefore load as many templates as possible at this time and if an error occurs proceed to the next 
+  # template. But if at least one template fails to load do not mark the templates as having been loaded.
+  # This will allow the next load to resume the load of the templates that failed to load initially.
+  should_exit_on_failure=0
+  echo "This is the initial template load"
+fi
+
+load_failures=0
+
+load_template() {
+  uri=$1
+  file=$2
+
+  echo "Loading template file $i" 
+  if ! retry 3 5 "so-elasticsearch-query $uri -d@$file -XPUT" "{\"acknowledged\":true}"; then
+    if [[ $should_exit_on_failure -eq 1 ]]; then
+      fail "Could not load template file: $file"
+    else
+      load_failures=$((load_failures+1))
+      echo "Incremented load failure counter: $load_failures"
+    fi
+  fi
+}
+
+if [ ! -f $STATE_FILE_SUCCESS ]; then
+  echo "State file $STATE_FILE_SUCCESS not found. Running so-elasticsearch-templates-load."
 
   . /usr/sbin/so-common
 
@@ -44,13 +78,14 @@ if [ ! -f /opt/so/state/estemplates.txt ]; then
     fi
     {% endif %}
 
+    touch $STATE_FILE_INITIAL
+
     cd ${ELASTICSEARCH_TEMPLATES}/component/ecs
 
     echo "Loading ECS component templates..."
     for i in *; do 
       TEMPLATE=$(echo $i | cut -d '.' -f1) 
-      echo "$TEMPLATE-mappings" 
-      retry 24 5 "so-elasticsearch-query _component_template/${TEMPLATE}-mappings -d@$i -XPUT | grep '{\"acknowledged\":true}'" || fail "Could not load template: $TEMPLATE-mappings"
+      load_template "_component_template/${TEMPLATE}-mappings" "$i"
     done
     echo
 
@@ -64,8 +99,7 @@ if [ ! -f /opt/so/state/estemplates.txt ]; then
     {% endif %}
     for i in $component_pattern; do 
       TEMPLATE=${i::-5} 
-      echo "$TEMPLATE"
-      retry 24 5 "so-elasticsearch-query _component_template/$TEMPLATE -d@$i -XPUT | grep '{\"acknowledged\":true}'" || fail "Could not load template: $TEMPLATE"
+      load_template "_component_template/$TEMPLATE" "$i"
     done
     echo
 	    
@@ -75,8 +109,7 @@ if [ ! -f /opt/so/state/estemplates.txt ]; then
     echo "Loading Security Onion component templates..."
     for i in *; do 
       TEMPLATE=$(echo $i | cut -d '.' -f1); 
-      echo "$TEMPLATE"
-      retry 24 5 "so-elasticsearch-query _component_template/$TEMPLATE -d@$i -XPUT | grep '{\"acknowledged\":true}'" || fail "Could not load template: $TEMPLATE"  
+      load_template "_component_template/$TEMPLATE" "$i"
     done
     echo
 
@@ -92,9 +125,8 @@ if [ ! -f /opt/so/state/estemplates.txt ]; then
     {% endif %}
     for i in $pattern; do
       TEMPLATE=${i::-14}
-      echo "$TEMPLATE"
-      retry 60 5 "so-elasticsearch-query _index_template/$TEMPLATE -d@$i -XPUT" "{\"acknowledged\":true}" || fail "Could not load template: $TEMPLATE"     
-      done
+      load_template "_index_template/$TEMPLATE" "$i"
+    done
   else
     {% if GLOBALS.role == 'so-heavynode' %}
     echo "Common template does not exist. Exiting..."
@@ -105,5 +137,13 @@ if [ ! -f /opt/so/state/estemplates.txt ]; then
   fi
   
   cd - >/dev/null
-  touch /opt/so/state/estemplates.txt
+
+  if [[ $load_failures -eq 0 ]]; then
+    echo "All template loaded successfully"
+    touch $STATE_FILE_SUCCESS
+  else
+    echo "Encountered $load_failures templates that were unable to load, likely due to missing dependencies that will be available later; will retry on next highstate"
+  fi
+else
+  echo "Templates already loaded"
 fi

From f46aef16114b1f4c86662370d81e3393b8199917 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Wed, 8 Nov 2023 11:23:19 -0500
Subject: [PATCH 364/417] remove comments from BPFs

---
 salt/bpf/macros.jinja       | 10 ++++++++++
 salt/bpf/pcap.map.jinja     |  3 +++
 salt/bpf/suricata.map.jinja |  3 +++
 salt/bpf/zeek.map.jinja     |  3 +++
 4 files changed, 19 insertions(+)
 create mode 100644 salt/bpf/macros.jinja

diff --git a/salt/bpf/macros.jinja b/salt/bpf/macros.jinja
new file mode 100644
index 000000000..38cb8ed0d
--- /dev/null
+++ b/salt/bpf/macros.jinja
@@ -0,0 +1,10 @@
+{% macro remove_comments(bpfmerged, app) %}
+
+{# remove comments from the bpf #}
+{% for bpf in bpfmerged[app] %}
+{%   if bpf.strip().startswith('#') %}
+{%     do bpfmerged[app].pop(loop.index0) %}
+{%   endif %}
+{% endfor %}
+
+{% endmacro %}
diff --git a/salt/bpf/pcap.map.jinja b/salt/bpf/pcap.map.jinja
index a160f2f7a..c1d7562cc 100644
--- a/salt/bpf/pcap.map.jinja
+++ b/salt/bpf/pcap.map.jinja
@@ -1,4 +1,7 @@
 {% import_yaml 'bpf/defaults.yaml' as BPFDEFAULTS %}
 {% set BPFMERGED = salt['pillar.get']('bpf', BPFDEFAULTS.bpf, merge=True) %}
+{% import 'bpf/macros.jinja' as MACROS %}
+
+{{ MACROS.remove_comments(BPFMERGED, 'pcap') }}
 
 {% set PCAPBPF = BPFMERGED.pcap %}
diff --git a/salt/bpf/suricata.map.jinja b/salt/bpf/suricata.map.jinja
index bec763783..fe4adb663 100644
--- a/salt/bpf/suricata.map.jinja
+++ b/salt/bpf/suricata.map.jinja
@@ -1,4 +1,7 @@
 {% import_yaml 'bpf/defaults.yaml' as BPFDEFAULTS %}
 {% set BPFMERGED = salt['pillar.get']('bpf', BPFDEFAULTS.bpf, merge=True) %}
+{% import 'bpf/macros.jinja' as MACROS %}
+
+{{ MACROS.remove_comments(BPFMERGED, 'suricata') }}
 
 {% set SURICATABPF = BPFMERGED.suricata %}
diff --git a/salt/bpf/zeek.map.jinja b/salt/bpf/zeek.map.jinja
index 1bfb6799e..fdcc5e99f 100644
--- a/salt/bpf/zeek.map.jinja
+++ b/salt/bpf/zeek.map.jinja
@@ -1,4 +1,7 @@
 {% import_yaml 'bpf/defaults.yaml' as BPFDEFAULTS %}
 {% set BPFMERGED = salt['pillar.get']('bpf', BPFDEFAULTS.bpf, merge=True) %}
+{% import 'bpf/macros.jinja' as MACROS %}
+
+{{ MACROS.remove_comments(BPFMERGED, 'zeek') }}
 
 {% set ZEEKBPF = BPFMERGED.zeek %}

From 3701c1d847eb6b6e7f0b5cb22d4c7b9441641cf3 Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Wed, 8 Nov 2023 11:50:56 -0500
Subject: [PATCH 365/417] ignore retry logging

---
 setup/so-verify | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/setup/so-verify b/setup/so-verify
index e4d90b937..dc84b1e88 100755
--- a/setup/so-verify
+++ b/setup/so-verify
@@ -37,7 +37,7 @@ log_has_errors() {
     # Failed to restart snapd.mounts-pre.target: Operation refused, unit snapd.mounts-pre.target
     # may be requested by dependency only (it is configured to refuse manual start/stop).
 
-    # Exit code 100 failure is likely apt-get running in the background, we wait for it to unlock.
+    # Command failed with exit code is output during retry loops.
     
     grep -E "FAILED|Failed|failed|ERROR|Result: False|Error is not recoverable" "$setup_log" | \
         grep -vE "The Salt Master has cached the public key for this node" | \
@@ -57,7 +57,7 @@ log_has_errors() {
         grep -vE "Login Failed Details" | \
         grep -vE "response from daemon: unauthorized" | \
         grep -vE "Reading first line of patchfile" | \
-        grep -vE "Command failed with exit code 100; will retry" | \
+        grep -vE "Command failed with exit code" | \
         grep -vE "Running scope as unit" &> "$error_log"
     
     if [[ $? -eq 0 ]]; then

From 36098e631472760f55011f71856afc5b13f534ba Mon Sep 17 00:00:00 2001
From: weslambert <wlambertts@gmail.com>
Date: Wed, 8 Nov 2023 14:32:58 -0500
Subject: [PATCH 366/417] Remove template files

---
 salt/manager/tools/sbin/soup | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/salt/manager/tools/sbin/soup b/salt/manager/tools/sbin/soup
index 27c6cb98d..7c3c85256 100755
--- a/salt/manager/tools/sbin/soup
+++ b/salt/manager/tools/sbin/soup
@@ -530,7 +530,8 @@ up_to_2.4.20() {
 
 up_to_2.4.30() {
   determine_elastic_agent_upgrade
-  
+  rm -f /opt/so/state/estemplates*.txt
+
   INSTALLEDVERSION=2.4.30
 }
 

From 33a8ef1568bbbbe859a934ef81953d5d93915c2c Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Wed, 8 Nov 2023 18:24:23 -0500
Subject: [PATCH 367/417] add yaml helper script; refactor python testing

---
 pyci.sh                                       |  22 ++++
 .../files/analyzers/pytest.ini => pytest.ini  |   0
 salt/manager/tools/sbin/so-firewall           |  18 +---
 salt/manager/tools/sbin/so-yaml.py            |  97 ++++++++++++++++++
 salt/manager/tools/sbin/so-yaml_test.py       |  59 +++++++++++
 salt/sensoroni/files/analyzers/build.sh       |  19 +---
 ...linux_2_12_x86_64.manylinux2010_x86_64.whl | Bin 661819 -> 0 bytes
 .../dnspython-2.3.0-py3-none-any.whl          | Bin 283679 -> 0 bytes
 8 files changed, 183 insertions(+), 32 deletions(-)
 create mode 100755 pyci.sh
 rename salt/sensoroni/files/analyzers/pytest.ini => pytest.ini (100%)
 create mode 100755 salt/manager/tools/sbin/so-yaml.py
 create mode 100644 salt/manager/tools/sbin/so-yaml_test.py
 delete mode 100644 salt/sensoroni/files/analyzers/spamhaus/source-packages/PyYAML-6.0-cp39-cp39-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_12_x86_64.manylinux2010_x86_64.whl
 delete mode 100644 salt/sensoroni/files/analyzers/spamhaus/source-packages/dnspython-2.3.0-py3-none-any.whl

diff --git a/pyci.sh b/pyci.sh
new file mode 100755
index 000000000..b0e48cf98
--- /dev/null
+++ b/pyci.sh
@@ -0,0 +1,22 @@
+#!/bin/bash
+
+if [[ $# -ne 1 ]]; then
+    echo "Usage: $0 <python_script_dir>"
+    echo "Runs tests on all *_test.py files in the given directory."
+    exit 1
+fi
+
+HOME_DIR=$(dirname "$0")
+TARGET_DIR=${1:-.}
+
+PATH=$PATH:/usr/local/bin
+
+if ! which pytest &> /dev/null || ! which flake8 &> /dev/null ; then
+    echo "Missing dependencies. Consider running the following command:"
+    echo "  python -m pip install flake8 pytest pytest-cov"
+    exit 1
+fi
+
+pip install pytest pytest-cov
+flake8 "$TARGET_DIR" "--config=${HOME_DIR}/pytest.ini"
+python3 -m pytest "--cov-config=${HOME_DIR}/pytest.ini" "--cov=$TARGET_DIR" --doctest-modules --cov-report=term --cov-fail-under=100  "$TARGET_DIR" 
\ No newline at end of file
diff --git a/salt/sensoroni/files/analyzers/pytest.ini b/pytest.ini
similarity index 100%
rename from salt/sensoroni/files/analyzers/pytest.ini
rename to pytest.ini
diff --git a/salt/manager/tools/sbin/so-firewall b/salt/manager/tools/sbin/so-firewall
index 6c47a3719..742427518 100755
--- a/salt/manager/tools/sbin/so-firewall
+++ b/salt/manager/tools/sbin/so-firewall
@@ -1,19 +1,9 @@
 #!/usr/bin/env python3
 
-# Copyright 2014-2023 Security Onion Solutions, LLC
-#
-# This program is free software: you can redistribute it and/or modify
-# it under the terms of the GNU General Public License as published by
-# the Free Software Foundation, either version 3 of the License, or
-# (at your option) any later version.
-#
-# This program is distributed in the hope that it will be useful,
-# but WITHOUT ANY WARRANTY; without even the implied warranty of
-# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-# GNU General Public License for more details.
-#
-# You should have received a copy of the GNU General Public License
-# along with this program.  If not, see <http://www.gnu.org/licenses/>.
+# Copyright Security Onion Solutions LLC and/or licensed to Security Onion Solutions LLC under one
+# or more contributor license agreements. Licensed under the Elastic License 2.0 as shown at 
+# https://securityonion.net/license; you may not use this file except in compliance with the
+# Elastic License 2.0.
 
 import os
 import subprocess
diff --git a/salt/manager/tools/sbin/so-yaml.py b/salt/manager/tools/sbin/so-yaml.py
new file mode 100755
index 000000000..c8f102770
--- /dev/null
+++ b/salt/manager/tools/sbin/so-yaml.py
@@ -0,0 +1,97 @@
+#!/usr/bin/env python3
+
+# Copyright Security Onion Solutions LLC and/or licensed to Security Onion Solutions LLC under one
+# or more contributor license agreements. Licensed under the Elastic License 2.0 as shown at
+# https://securityonion.net/license; you may not use this file except in compliance with the
+# Elastic License 2.0.
+
+import os
+import sys
+import time
+import yaml
+
+lockFile = "/tmp/so-yaml.lock"
+
+
+def showUsage(args):
+    print('Usage: {} <COMMAND> <YAML_FILE> [ARGS...]'.format(sys.argv[0]))
+    print('  General commands:')
+    print('    remove         - Removes a yaml top-level key, if it exists. Requires KEY arg.')
+    print('    help           - Prints this usage information.')
+    print('')
+    print('  Where:')
+    print('   YAML_FILE       - Path to the file that will be modified. Ex: /opt/so/conf/service/conf.yaml')
+    print('   KEY             - Top level key only, does not support dot-notations for nested keys at this time. Ex: level1')
+    sys.exit(1)
+
+
+def loadYaml(filename):
+    file = open(filename, "r")
+    content = file.read()
+    return yaml.safe_load(content)
+
+
+def writeYaml(filename, content):
+    file = open(filename, "w")
+    return yaml.dump(content, file)
+
+
+def remove(args):
+    if len(args) != 2:
+        print('Missing filename or key arg', file=sys.stderr)
+        showUsage(None)
+        return
+
+    filename = args[0]
+    content = loadYaml(filename)
+
+    content.pop(args[1], None)
+
+    writeYaml(filename, content)
+    return 0
+
+
+def main():
+    args = sys.argv[1:]
+
+    if len(args) < 1:
+        showUsage(None)
+        return
+
+    commands = {
+        "help": showUsage,
+        "remove": remove,
+    }
+
+    code = 1
+
+    try:
+        lockAttempts = 0
+        maxAttempts = 30
+        while lockAttempts < maxAttempts:
+            lockAttempts = lockAttempts + 1
+            try:
+                f = open(lockFile, "x")
+                f.close()
+                break
+            except Exception:
+                if lockAttempts == 1:
+                    print("Waiting for lock file to be released from another process...")
+                time.sleep(2)
+
+        if lockAttempts == maxAttempts:
+            print("Lock file (" + lockFile + ") could not be created; proceeding without lock.")
+
+        cmd = commands.get(args[0], showUsage)
+        code = cmd(args[1:])
+    finally:
+        try:
+            os.remove(lockFile)
+        except Exception:
+            print("Lock file (" + lockFile + ") already removed")
+
+    sys.exit(code)
+
+
+if __name__ == "__main__":
+    main()
diff --git a/salt/manager/tools/sbin/so-yaml_test.py b/salt/manager/tools/sbin/so-yaml_test.py
new file mode 100644
index 000000000..3505e8d30
--- /dev/null
+++ b/salt/manager/tools/sbin/so-yaml_test.py
@@ -0,0 +1,59 @@
+from io import StringIO
+import sys
+from unittest.mock import patch, MagicMock
+import unittest
+import importlib
+soyaml = importlib.import_module("so-yaml")
+
+
+class TestRemove(unittest.TestCase):
+
+    def test_main_missing_input(self):
+        with patch('sys.exit', new=MagicMock()) as sysmock:
+            with patch('sys.stderr', new=StringIO()) as mock_stdout:
+                sys.argv = ["cmd"]
+                soyaml.main()
+                sysmock.assert_called_once_with(1)
+                self.assertIn(mock_stdout.getvalue(), "Usage:")
+
+    def test_main_help(self):
+        with patch('sys.exit', new=MagicMock()) as sysmock:
+            with patch('sys.stderr', new=StringIO()) as mock_stdout:
+                sys.argv = ["cmd", "help"]
+                soyaml.main()
+                sysmock.assert_called()
+                self.assertIn(mock_stdout.getvalue(), "Usage:")
+
+    def test_remove(self):
+        filename = "/tmp/so-yaml_test-remove.yaml"
+        file = open(filename, "w")
+        file.write("{key1: { child1: 123, child2: abc }, key2: false}")
+        file.close()
+
+        soyaml.remove([filename, "key1"])
+
+        file = open(filename, "r")
+        actual = file.read()
+        file.close()
+
+        expected = "key2: false\n"
+        self.assertEqual(actual, expected)
+
+    def test_remove_missing_args(self):
+        with patch('sys.exit', new=MagicMock()) as sysmock:
+            with patch('sys.stderr', new=StringIO()) as mock_stdout:
+                filename = "/tmp/so-yaml_test-remove.yaml"
+                file = open(filename, "w")
+                file.write("{key1: { child1: 123, child2: abc }, key2: false}")
+                file.close()
+
+                soyaml.remove([filename])
+
+                file = open(filename, "r")
+                actual = file.read()
+                file.close()
+
+                expected = "{key1: { child1: 123, child2: abc }, key2: false}"
+                self.assertEqual(actual, expected)
+                sysmock.assert_called_once_with(1)
+                self.assertIn(mock_stdout.getvalue(), "Missing filename or key arg\n")
diff --git a/salt/sensoroni/files/analyzers/build.sh b/salt/sensoroni/files/analyzers/build.sh
index 386cc92d5..65334cc0b 100755
--- a/salt/sensoroni/files/analyzers/build.sh
+++ b/salt/sensoroni/files/analyzers/build.sh
@@ -3,23 +3,6 @@
 COMMAND=$1
 SENSORONI_CONTAINER=${SENSORONI_CONTAINER:-so-sensoroni}
 
-function ci() {
-    HOME_DIR=$(dirname "$0")
-    TARGET_DIR=${1:-.}
-
-    PATH=$PATH:/usr/local/bin
-
-    if ! which pytest &> /dev/null || ! which flake8 &> /dev/null ; then
-        echo "Missing dependencies. Consider running the following command:"
-        echo "  python -m pip install flake8 pytest pytest-cov"
-        exit 1
-    fi
-
-    pip install pytest pytest-cov
-    flake8 "$TARGET_DIR" "--config=${HOME_DIR}/pytest.ini"
-    python3 -m pytest "--cov-config=${HOME_DIR}/pytest.ini" "--cov=$TARGET_DIR" --doctest-modules --cov-report=term --cov-fail-under=100  "$TARGET_DIR" 
-}
-
 function download() {
     ANALYZERS=$1
     if [[ $ANALYZERS = "all" ]]; then
@@ -36,5 +19,5 @@ function download() {
 if [[ "$COMMAND" == "download" ]]; then
   download "$2"
 else
-  ci
+  ../../../../pyci.sh $@
 fi
diff --git a/salt/sensoroni/files/analyzers/spamhaus/source-packages/PyYAML-6.0-cp39-cp39-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_12_x86_64.manylinux2010_x86_64.whl b/salt/sensoroni/files/analyzers/spamhaus/source-packages/PyYAML-6.0-cp39-cp39-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_12_x86_64.manylinux2010_x86_64.whl
deleted file mode 100644
index d2b6c37f9d432b8001f7034cd4a314a7a28cfc3e..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 661819
zcmaI71CS^|kS08~ZQHizjcwbuZQHhOTW@UJw*9}`y}P*Gi2Xadsym{ys<OK>zeH8b
zO96wR0Q|2bIa5aIKW_ea1@rGJ@1Y?mBTZ**Vdz9J|36Zq{$EO3HaZ46V+$u|S_@lK
zyZ@giVE>xvc^KGO|Nqc{{-gOXBoP0>V<lRYr}w`{>;DSYzw)0v{<o3U#6?7;p=ZTq
zrsrX$XsKqVW}6flmYDY(<))=*C27X#8x_SR$7$#y=)o%#<{0Lf*;bk7j-V!H>F1wm
zR$wV;C8x)w|ItWIQOX`eNl3RTiqkQ)E`cI<M0lidW_XmK-izLs-lL+K-kXwfEMp)k
z0<a9vg~t;S0}BJEW6=TppRe_wJaZ(|ctHN+75ZNx`k#1qwzJo>HgPqvrgL_8j;fQM
zn%)OO{%;)#Vm=g*0|Nl8fCB*F{!bmrh$svG5mXk;QQ3^$WJB;dRht5@KC%ufuJH$R
z=%KV6mW_5tCWvEUO)Wd2C27$;zT{4Bo}tnpaM1&i$aXSyH+63xC9%pdzK0YhF{6Gf
z=|;OP9)M!oK7IEjouQ_mG&9`9A{JH?)CHm!9tK!g@efrzc<q6Pkp?##*`3kfHyKh6
zOZKidW!`mJI9muYB|D)N3xV2EB&acv8r5)P|Dl@`UqIbjy!4+x=WecOP9Kg$+4!4$
zd0f-(Kwgzo9TkVK8kgjLq4c)*BbZ`3Bx-8N><vHf*9yA@RuPL)J2Mx$P_Ugck)c87
zT<s>x*osm1Hu6x$P=N&fihDC!v2tf?tlQ-&nSqRJQSE`mbF9(CXN*0EqJ-m~UiwQ_
zWECW2D-xv9yl?kQ(&gq86XFP17QKlF3axfH+e*f!Np`}HI%PwSra3C^C1iUFyHnuG
zrv|G<*Bv9Tat8#pXY8^m#dH{wGYV;IfxLlbmEOi$a4b~Gj48KA;))Z9bMM;~+;J+q
z%h-G|c3|KE<S|Q9O$6O~Z79U7&uJCIciLisG}FQ+h?N9LZIP8a#vzP0Wd55rH(gTj
ze*Io@e>@q5*ryx)c5OI(i%wjdrvssZRd?^r@p1A+Kkj$5?woZly~`y>RcF1;mt)*N
zo~-6U;3fz*_!jOty;#f0C*vITO1WAZzuMl+)4_zJMbEdFmb&&B8BiLi=66IE$E@=u
zk~wYHqTTJ$=0p6)ZU{wC$kjogovh;gvOdLIz$6fhm^C#{?Bzt*syM{|>VumtektN=
zXE=-=#ub#D?;b&gU>6^qHxf+>!!DR`w+LE*#|JQ3DB7R55&kY0V^nm|ksRl4_4xU(
z11LT%Wh-8I%`06owSGmcHPWdasgEnH{<(Uj_J#KlS$5LcSCJlcz$3P*i{b;YL~uHX
zZm8$qJY!_9Kx=|wp_mf%`J#i|3PK`WV<bf@x4<KHo>{N)95YgrHHCv6H+UPjuB-Ch
zm)wyD-J}bv*$eSC(B5W(`bG%bS<VB-K|T)V2`BpGCNIkk2DZd3Jg19*uP(ON=ToUn
zpBSGcrC;d(s;b9RiYxIz001%|0021ulZHu42#d%niRdV7+h#GK^u8+L99O2Ouf7x}
zxt{tjs*@sMmTAyIatt63AhN|g7<vWttj!Qww5bRQ@%_xap044}_H45Q+E!}0cl*7)
z9N+)k0~)vS3x9vA`A>nM`3Y_F6JG2?>RQ`vqCt7t=Xe=eTYLmP?{vadhmAg&dWHJv
zxehELUU?ezU*}s+_}URcz)jr1h%I_)+i%Km%(!|{6bSMDX`Ca7aqF_D@(S9+lDyS1
zkva<6P#GF<E`TX+YpS`oN5%q9I_PBVz!kAnYSrf!b-PuwZ!B;S_TPD%+l=HO0#Uh^
zPYQdzT*13i30N6J;z?{AFamnO92i)374u^r<$~K>`5+72KzeqC;CN!GmKM`WKdibO
zz^;bFtiFfQdSBfRC%hD+V$r51(&1pexx-J*+=2B8OElf8z<sn;{<5ePKn}ds-t0sc
zsnS-{l052TF1@eZ>SSj&?dWzm1=8$M&j;uD@mao1v6Fo2WnCSVUv>2-c8vf|wq5)1
zhqr6^EV>lqeM5PKdp-q<^e$c1hKvWLQTd@lPUsItchCJ(pX!-g$3h@<FKtJV2RO@i
zN7O_DbZ=DgM?s)AU7JRU(w?k|Lx+^fE0praq$5<Bu2@tt2N+VfqL?DwnoyZ%j5u#X
z`9fycRMBjha}w2F-Lb@^Te2hYSd#WpDBnA<Ib+HcN@ZBc_ybPG0qg)3UVh3WGZE#G
z+PUs8{_wkF(b1#!5RV*kz)*#NnRjMn6iR5M5*<1siT6O>NP7x#lp#o0d(gA?T=)}*
zZ$qkwDB}UoB2*k=sq%-B3oSGvpju<TkSUekpXiI>7;ln+9%*g$a?7_{5d@)A6+%7;
zLPQ>s+Q3xG1MaujZ@~X5$<1S_!%qLC82X>B!2X{kSy4n-PVtY+^0;G>I0D#S7x9No
z|FoiY7$<>i0EvLVKXkyl8wdn~9KU7QvXP9l9*6HyUWQ7^F7HeJz!CQY9{M2&y3NLS
z_us&LK_fgvkoUMk!VszUG0Yx}-V)pf-0-`0Srd{JX|DDfd{3N-bJ!=A;DV(%_HVhP
zrDwsMDT!~sn#Cl%4<v=`AeCtA4Dd6WeeGl>W`&pRhI(ww`|^XeVEj|C;6lFy_`s2e
z>JdJLq6D?l#1DWD@~nXl-E>(3#9?DOT>&?ACA$O<8L=vkAO;Y^-$6?#a-7*gCEA+G
zphJ~%=Vs?rWolU?=B}UE9?_f&3@J;*QaLV;iXSS}cddrf{v2t%K;LfA*ZK-SFu{2=
zC4}zR*V8<Nelo!M7_0PGFV5lZ9J?k;b*Kdw2O4IJT<7szki>o=3W0ijyF5j2s}JM1
zlQT`0_m;LdO}P#k!?7rjEWyhh@2Q=ZZo^%Rc2y;rU~Y&ahl|OIE(Tu*Yw}?B;|=A5
z45e<Xd^58Oz_CZ)Ok;TFMSW(0yMWRMM31MWKYiK87@fB;S<KixE)P3D2<b?CbGm(|
zW{(2)8KWXmP1npa%p%g-_{RtwKO;~3486%pOKG|3r`1U!7Flw9b<&39DLmuA)zemf
zcekWn!QySd#{i*kfuTo!9r5k!k^9PbNcP<Rnb*@CN>t3sc)h8P`@u#N_^~S~+;j*M
zjC&bXl%?mOR88JcHdKgdFk<{9#$p-1NMIO4qo6|-F<!9IOw69OOa%UZwp(Q^E-DML
zyZIYT$=6pjPlQIPm<TY|DI??Jf5qG)t;|={(4oyu&mix@MR~PQTx528*eK<>aXMg(
z2lcLoZ-%mHHQLckq6=;}l5Un%t8k<(X2ZcD=AM*3hS>1lnO#b^qe~b#Ud5-ai>G_l
zKe{EfJRCx$K=Vk@N-16%VlZMEX4$4CxP9Qo2m(}MG87>8R`}8CpmEx_xA!AdRwU<R
zmWgY<YaJuH1uy`9V{EQ2-brza24d6L@;m-kO&7_6X<JfwD8W*U#f`&*X|+-x8$@0R
z!UXbwqkn(+8j1VqlaiVAaJnK%D+hs&W49$y>|%4z>JI7_b_5nNU<TM{y5Bq(&5Nj`
zZ%RpM`yw}ywIQ<54`fm{qf|0;mVsNlQK!XImSZ4mbQBYz0a3ieu!|aO_6p?M_d`$f
zhm9VHhGrPBng$A66J`|~5heXip{l6y?!&<QlaDd-wG-f)9je9BlihKVu40jH?%INp
zi;hv8Ubqt4F@yAk)X4=jq`Cw)8#2mQ3xMQjX@gF_YnFC?(NOG_66Hh#w(f5hS%#za
zjgqTMx!dHrf1J2}0R)Suh9uxSTk98n+W=0Fn6fDnM*K1u-AL7JMsiqt8gD8Pa>ImR
zvV!#xh2)bCcE!t(>|vRQe&V&XTh?u5kR70w2_p`$D&nQJU)|Faw|yICqExZ*93j#8
zb<R{>gt>KNoFlF>KzychD*;lL=B#ixbT}<!j^l?j;rHLLszfN7`u?BQ_5A1bBmTpx
z|BMav^ek*Gob~kR>^)4BWvsRs5PCk<V8#c!M(*)|N<b7TB!B}*$^_2GsW%T(u%wt4
z+}*x!xrx1+v@D|&O6IfJ?f7c<b+RD7sKQxR7|KtCuMsq(O;77V9}vFU7r#Nw$8-^a
zEP^c+TW4zl<AUk1Zu>u6uNwS=*kVEn_jcYGCt8XkhQ%#i3$?2}Z|yt!F}i^><*fb$
ztT)v-T&aCokIcR#r7EEj|LTvw=0a-5A!d_fFgULvbTy4;g29N~`9R0u;~HQn=L20N
z5Log*{J=#ZX6}fAI3p1_^D(4Il;bwf5`$ckAG-DrU;=G1cLklmKW3ugq$y=!a=!`0
zqZr5^5_m?<rO!pH0@*U4QDQM_9E1V~Huypi#i$^Q!Ry?mvRcZl8VHEhj}dI3!BD)w
zHJE@C$q0-LRQPYNIn70^?(qlL5*1Wo0;+Z+SSyHEeP?rtpuk8COfZt+fv?!)WYB3e
z&^h)Zm4Y6rxG)q~?JPAasCWR%RmQdVPWtEl;gHo9Xaa%WooJsi8wZMm-5RojdY@iI
zE-U)R1d^JDqo3aY<gK=ae(MA?2EWTjNU{Kenh>vyoxZr3&SOb-G|woBpR8NS*y`3N
z+ce?gLHtUDOUny_iUp0bxP4NZFidGZ8sC*0`O&M8TIKNb-(ja(X4m1EnuVz7Ex}7F
z*gB1JsQ#_LNt_g=ZW}_{+aAJDilwvbOaFL{TTRQ-6mcC4!C@p3Zw_s5j#A>FJnGQ9
zp#yBq)6Ay9*X_0hB^~Uh+S_+%9_nVTYc<jJ4&)(veU$!LtybdFEVGOH?o-qqDmoqY
zugRYJ&Z=xMg@Cj#9bC*WP>^`0Vuz1FzIpDL9Vo2HNV`3uN!CzRanw}NR+Bn0L36HX
zoy{QR-+J0=;$;^czmRmGPKX1E`otkZ?>%={r5Q4zt!a6B?U0ZK4%%ckoKVZ1yqo_c
z+`Vb7xjXEbF7BoFQNOvBy34jjCm3QOyy)MsH0)GRiAK+S%k%l)yix<<35Wnd007i~
z5hUC{{rHc#*x1F!-o){ra$GC-*ak5m?07)gk)TchD^Do4;BvEUS57$Yi_0;xHOeeL
zom=&TVauQX84T+9<>tE~E=YEerCd*XeG0H}x30ue&P;gfpAc|b5KBy!R5b=i#R87h
zSCKOLo5O4+|Ci%uh8M~b6l+*0u|?_!cOxmAxn`VW?xf;2En#Sm@bat9NXPE1%H}pH
zcuh$_f<h!9bRh;z*YpoIX!QhF8$Vk#>z2F?9nK5Aq5#{PB;D-H{ZxA>2eX+F)D)(h
z1_cy%tkR5ndYx`;BF#mssnMhH{-y(p0ROdlSqKOM8`8-9$e`Rb<Cv>%>C_TLp*n?u
z;5<bLG}~2qPC4zx69{^bpAxM4o_DCQPg}I!-ANFNn{`}Jk)OLjrxzY}5t0QWPf<Ir
zWporHuABc1^y4Tphmi}Ab@>#vNBs8U{+8}x`M`{<S<EWK!buO>i<2!B|1CjC)01-q
z__`-ltY3f$RO?T8AoaKEhYsgA8MoIp%2%8(^|R{5Hqx_gpsU}1b-ebH#CH<^O%^P~
z|1(+Eb_T}(Iaw+Ll0yOrJ*U)o?&j2l_yq3q14)4tyy4>MWXPTE>$Ke1QolPgS?v~9
zEoTxA^y4#L+>a-W>m(ksnx~vI_bi<x``A*XT?&!&E=4X|yz;F52b)Xce{z$G9a}|D
z+P8(5p)Yx4yUJ0Fr+nQ7WnYRyU_apxMZ2w_>|P1R44*IW#1+kv1g)*T`&3g842noc
zwmUr|t7>&SP4z~ovig0}yc|<WAgYd_JZhsKJowO7R3h#DE8sw!t(2%g(_dyTlC2ks
zy64>>u2t{{-8|o;SKQhs&v~K`?W4nJy(WkBE_P+{!_4*E(fM<Yx~<mz2D)<ide67-
zd%r<veGgV4L(>?O`)4tQSc5$A8Fgn=80`d^NK*j`dWuu>HS$7O3FV9e!S1z%GDHr^
zF-wv1p{j)>S5KkX?^H!HHbv9Y8F4t_W+;{H#aH!kfq|x3hP2Muq&r&=hJ+9A4_?4*
zBzq<hu;;bk^GB5Sg?sH|V_0Gtiw;aAYEhc|pdTztn;)vGvvLYLe<42{19$#gibY)Y
zeQ5okDLVd_uz~$Qs%GNoX!pM~Ek#AaE{g%d_f&0*NTr{kx<a)kYP6X5$!7agnd?vB
zVm%Tvrr6}{ZjMbqT(O0RxV4|#>FmE#Hy7O{=QMt>=vO`*ogeJ?H7+dgRfr{!toiSR
z!TI>(ipzYfK>xxcKwqK_!7R1zI1jw0s-5B9NbHFGeIl+=IdyE3ixR#oPw28ilL1kv
zkCMaqpLS)&Gvd`?o&>n>4u7c7@DDe_4FJRsC%_(ZA<w<QOo+gLbtrD3DGSbX#(4Mf
zvhQp$C#}K((>KmgEyoG#;jCkpZ%0e4s!cX;6`C(=HY|rv;CRp;)Y)oVHAO<uE&P=+
zAqm|&jo007Yh?!GJKU=L-NMeR0^#Eb@|`G=)m_u2v@s9&&bDb-)@2s=^XIZ##JT$;
z3fhdL8=0`-jt%$G-r}_PerV$?h(w}4f1pb`MaU*%Gg7ttxtfW>vaKx!z1}PgrZ+GN
zy1E9Wn1xW2TWL6u7&7GGbH}1w+TtSarL?Dc+57QPI@tAs!K$Cc*d?sY>ieGGk_}8k
zt^CqhI7=CX(}0h^b+b$H7VtHGOcqgLw9*^{$tHhq4R#HRD4R8<{rRREU9;r`$o40u
zd_m*7O4fAqM!(8BBpe)K9)S<2AU(%@KJh$JYYVYv@C+$i_Z^UuUo?HgNpKB=mZ>)y
z=I5d{b(O4ymjmogoK<U@%8(4%3&f_U6{N#l+~6Zsw{1O`SO(IxZ|W^WqON25tw>Yl
z`V2-^hKV$|siiyBI$3?925V-pO8J1Oj2w&Ftwd&(Sdu;ZSZ*#4p?GpG!dKUtx$;A5
zZXbEs)Jwz6ism~RC|Y`2z%^2CR7r;xpd5BmGKGDjK`xZ}@E<f7jtiR)E^sfa?@nLw
zu>z#ifgTJooyKvF8Dek7*p8y41QxX3R42+ng(>@NAL=x_nqmh|Y%AsQwz*~>a`Vbw
zA8@foc)5}g7OwZG3v7z8xyK*i|B7JXpArHE|Ljbf(f@;B_6Ckl|AAn~I95)J?Jr(_
zA+5M%605M2zE{?5Nwfizb7;0&?L!PX`bZ_uHAZGO;D2epZ@r!xNiPl7A?JGjrC5hk
zV`n}|Ik~;gF3^fRu*S|$DLMpiMa|02$e_`q7=#sKW#vBQz$m0mk0zO>9C?KCS1JBr
z=GHdyd<4(KoGN9baC=>Oux+ge&3Yv4+Xob1-rYgy=;}m^nSrON6-7~_(55=D#6*tM
z<kX@89ANCzw`hGDPP~0l3M`k(m*XEgd$LO`V2aA=<#cmm=jkQfe=-OHi<9&CI56^c
zc;35q>&fVIsN~18sxLQ5WXcp8gY6k+pC;k_b_|ZAAg?jZc*n@<Mbp*D^%a_=(mAO9
z;Slp_U0{)c3cOb%sTskGKm{Lz3x`4(<Dhm9G1Z8sHCKo?54y%-QPgO^o<Q**8+_m>
z97YAP*shv)V&UR{U#*HVN+0A)$QmP!3vM2UabS<VZw_B5)|BXU@?he^)q$`yK|l%p
z2Z*|w%}Zhf%OdUCfi7y7%1xCn#TrjutQBA>avz6J%j1(lllOhQ(X(=+TfQGxbn4S1
z-0SIJpW-|PuGS2AV9QW@r$~sg7>bCT*gd}A2Vd{O2L`BaeZP)hwd;v-xS`8_++04)
zFM*6}Z9)kh1&w;~&sR^&ewJ4)hsFNs095OlfceqRdj{#|<T@hb{ycgb3sjZ^dWid;
z@89Zo^_{}+v{kr@@BJm0BVcd^tmw%eu+j)`;ym(c*METlUam$)j!`EZ67VGxo)ErE
zL}$H}oQaDj_Eh6+UP}Qy|E^rBUGT_n@db$I)E)tKpfh;^j9|U<22o)TOCr*&E6{3t
zXf@bFyGJ^aF|@_7h@JPI438^b6E5|5QU~9<{O$lnc}>r2q4(8w9at8_mJZ2vg7nxJ
zj1L^|;DkYNE&ETuRlJFAZhd9~Q;xCr8^xMJn+km?;zrN{?`B93a^y<SA$sn5$xH_8
z`oEPqq?TyhdYYN#mO!%%A5l9fTd3wYF?0<vE2hjTc#9|O?317yy^IXY`8T_==Y>iH
zHeI~Tu)sayNLamERl&fyh5zafGPtmG^@Y(9BbD=;DF_m!D8t~^8=9jDp^a4%Dzb+R
zhlR~g+c3&C%^I)?i=^*@o-v=?nNmtF0By%RS|XBJvB;o9OHR?w+}Vf0d2#u&c{+Kr
z0%B?d;s0(R0#>{#-Nt`I7JEIJ)<M|8t?m=ym9ER&UDEe`dHx08X3l5k5ksz*42MYa
zjXmTn%h5i%M1YtCNP;w>qw&fmQ^ytTm*X?Y$A6Gm1n4(#geE0P#~k?7^~ppx5XA59
zQ^gkm^)&00Bk%Y52x0OV6e9V8Y$`0YLOY&h8FOiTnF9?yi-e-^#;mTVXgoWN%%7)M
zWQk!!=`&st3_T?PKyc-|8`jhpTbD0n>KWMsp@gU80^G>kDMbvRCUzAHRTz$ZMk;ca
z<tKlW3OL&`;AG3p8V2qZU8xb65T-P}Ag)TTg8UYI%>3gPbD0R9E$g!ngI+}=sJ0G8
zJ=-t(Mq)qvat^>ZQ3MhXa{uHq48-S>FV|8tbIS{TsGYctWTfF7*`Mpg>q$X$fO3XR
z<!EcaF9&=5B_P5x;vRZZ1(R#apE@XK&`njNM>-EF?I4vcgR%nmI-oLS`6!ASwAQFG
zLS|EEph8)HLL72Ny1oc7=0juxf~!8B8LB<tRw(=wN`f(PCdKugIEAOgS_B-1vK9RH
z<UfEVly1DsY6B3KHAB#d7ZGrEDKNl3B!FJ~ltMKjuL2}oJ{L?R1}njCsd|`gZDN+5
zEa^XtGU6Q`WPBkB403qBNI|@QLhdcn3wB1CC*d)1V?kr2jZe<}(S7m=qmaIn$P8r?
zNMwESd$CZeFO@JTPbl-Ij^55BQ63?LqJ*L$ay20sU{B0hSgW}J&A%=GOpGry0e$&Q
zN=tbR{R*DyQK_rqT5ecWg-i-C$Hx-Gyx;F^Ew3hOhpP?TNAOF-8qbiX%s0<Mvp`e#
z_VCUY*&vAj&XeXkjyGToCS*uE)nBoI%d%9F%Hs#Ri?WmaA_$D19Lj7E?*ZGp9LO5Q
zYD_4P2w-=_6g*t+FG|(4kz|F=0r^*e<K|lxDjDgSTUj}NSm>u2=$&uEwT1!j+!|Yy
z`7`t5EHVnXOI=zaP&=~<fxWk&h`>XapxC=u{4@N^jQQc3Bg`>$&6MJP@yj14A|mGj
z%OCXE0Nj+?0JD0Wo}x-1A81sbJFRm@{SZf}ik;g@`aGTSXkyB>l(x~WshC!jf1WEc
zrS>XZ4eCHJ1Mc&4#%4n*Bvo-~>AGAQke`~0R@{3{5^aU_y%JlY$Ct5DPo{+B0;U4B
zGK$8YTurithzLxVChD0aFVrFZ`Fp!;hVCXf^}MkZ1*%L^n`a@CN<l#pigziaQ*hgh
zw{=ShQ6Bvgpn<tcd=Rw$8sb?Tzs}4W<BUbU3!N00Tg1Zgx>0~f3$crksKks~66_W%
zGYZrE4sG9WkwzejLZWHmOJm)VATCyvAGd&fH#`-Bs$qnQrZBF7K+Ju+cke7|pKsqX
z^j90OqG_NO+mRVwI?~JtB-X{n|6(*BR$2mB-kT?`m*p`vh8(w|GuJL>HD$D)%Fy8N
zDS_Rgx?NBa66o#vuGJopQP_!6%@Nf#hK6_mn*)bTnpKBEJ|{Ie!^mPh+&->u+F<;p
zdd>A8FeK#H#OzVbbRQe4v~yrH{_)FZ1pe7U({i;}WI<E&i+8L?j8BPtE}5e)Y`>V$
z4GDrz9OTjqi~LmTD)N9UrQ{?5>vT`7zdlIfC-Y=w0VI*%av&8^ZCt3u)vG7Q^0b0U
zOi`LQ`DTR9C^-UB%rzYf6Pw7%VEOZ3nui$au2Iu#Y2o0}%hhrwVEvlvH!Q9wVg@@s
zzI&KdAw+3@OM2%P;azA?QwlD(cw~!OnIjav*@}P$GxnRB83BGL_${2GH}fGjHW>71
zmS-GU63M=Gg);k6!eE8-E~q<e;g%v8=mG2&*MAS^vJzX_mRwLYppm}EosvXrU#Qk2
zM_tbns}%Od;b4t9t%wu&Ppdd*^M<h1cD9twRD^qySRKwQUg)aWBA89VS;B=w1En4u
zW>7M<yN?3=;t|Q+S7<TG)8u)ojv*Pb6(902{aiqox2#}u`E25%QkMSkKVRsGHN)~z
zS)iKfCz64`Bgqwcu#{X59drqfqoDh*GQt58TXK}UX`xIGjm4!|IpiMSpPtcqN>9kk
zS4s7Pw8!9Wx6If{7+L1jG9?SO0#Q!et6k!V!wt6E$k1tFIJUS%->bo^Mm3tOo`Q*u
z5-`k2%45xxDh48HyD|C2FBwVCIIQEuBw<y-Q)*3kyHqgGYD1^k$|s(#sWUVa&>mM>
zP^+1NaJQ;P(UD0pavn=<)P4%eVj>)9tTVw4d?Q9kaxu!M4Bo()<QQsD?-H{XVyM;b
z++<$rdoWEh=`pKkIW_t_7EmO|K#i4{IC3~~n;4y9-_#m;lPCheS&Np7#HHR37F*8d
zcPmVdmAGtID;w;Lrdpa|S0PZ|USSz98$1hK@=QDo>JQrT<u+J8an~#8o)0)E;B1*l
zcMqYVEqE>=(zh0+$Se=NE=z@ZIpCk(txl1(+KNc<c6|6OH8U&mqNb=(D(({q=^N2D
zgpC^i!Zv)j;UxTFAhBx~LX%7X6KEqY2sq48k=iJ5cut)Q+Z9soi&})S3bb_DV)mPQ
zkU+}@P1`DFyWtn|6$E$b0`Uz5pg{cS-RH!6@KCOfcU)~A;2HDvTnAVc#OCajr9acv
z&|<^}kU<JtOUy!QGa7^Gv#I5E?%2dm7c;Gp<W}V-g3Y{hQ6I)ZxhP(`J<Wtd)3dcf
z5x4E<26)ufWzDm%0*p)GJLLW+|0wBMJRw3z=NOyq@wmX0`zhM>grlt5mg`ji5{v!L
zKIqX0?`0Oqsim#~Tb%0iXK%b^-IV(BH%1Vk(bo;5cc>lvxjGltg`@Zw6NJP_1wS1p
z-ez*)KGb#Ewg&VAm|3?7tb2H{c{efAk=oSO<gZ(^OJ8k7s1SCL9ox<dl^qj}TuB?a
zS{^=<{^7J*6h5+jpv7|#5S=(Ipx$J+pLjF6di*nOfiB*`K2>mq?V^}B^rKotQB0+4
zsNLqo4$lj<__th$uk1Q->}R*GAA-TIX@oMpw{=5fs$VK=V3mh?tGQ*2bL$`61Y2=;
z%`*JV#`U}YlV2?k>+W~UA6}eQ>qEPPcCxd+C?f*Xq}|biJ&w7@<ZPH8SZLo;tT%40
z24=1G$m}k%F=GDGks610hK%vQ75tjQSSAcS(ZCB&;Y{U#P}#JCnS=qeToz5{vU-uH
zb@tZ<X7xMZLz?&$C<n4oPX!r&;c>QLW$i`vCgt?MIV9`v_RHmVHfL8Q5PdOWV#G%A
z1muSLBlt!}9TukL@j%06n6lxSJH<Vu#t)F+m7!Mcq>=$#ZV1w@9Ir#U;Ha&;w#C{b
zK-hVWdfSWDE(7r_U|(zBsa@FnS%3TGYPoiOoK{?=8{EE1hEAM|R%AVtS`G5n+s%&K
zF2z)K$j>TnJLNwPVXFm4=8_39?w-aGE1Rl*pUC1Dr8+8`MICJ%lNPvR7Au*d;=`h~
zCRbH*-X%8p=Pk8+r6g4<M4%ym_O5z^^x2VXUk+;f+^30ds7$At8e%|tbf&9{o@|hP
z`M;BQzOMx|qk2imhuVnRmg!B5<{v&&tjm2_e|$@93eR7uZH!uW>y{9A&)8{X9KYvt
z#6Te%y_JM?<7{*q?<J#t@{;adzu6tmJKlUwwY`&`Hb=(kIHTL831@5Q4<5ojVR22V
zcyIN^=(=V&w(Gkpste}HRv4>0we+N9nX<dNU$9jG;G1x(p`Q$nqqI=l%$VJy-uK~e
z-nks!YBBQ%4m3-A$%wEN7AczYEwZo)xD>rIl=%=T+>Dcx-k%r<3{$7kzp(#nFk6gE
zsG;<44K(uKZlV91J9RYq-|4s(^=sSBcBJpyvh+)$c$mphWalm$d35u642n5d^eD8b
z!kH9{jM$b0(x5^tvpiojaZMspDjUyND0@RIK6g_N9-IeA?~M}Dt0<Wi2k}VlMi%;j
z8YxP3qD3G-YiK~nF~Vv16c7~q*1W;A!a$h>a3t3&Y;X;jTme;-wsJj4WpqSLNH`dN
z4?ysNlI}4=Hg7KXzzILcwL6>4qH7&MiP4F~GyyVAxVwOe&3YQDggXePrRX`Hs+V_&
zky~T=K|K}9fPg&-Lbm<~*y6@uqS>1QDny5fAwzSC%w2(8GMsh<jOpAo(yo0{IFLSO
z1;>Dby*&@YmK<flrY}4wC?L2L4wMom`M*DV)<YsOHbW%D(jTm$q#bL-JBr6Krx+}R
z6s`3{%PB&U<3FRIgCq0CfT#zH9h@D4XS)kA4vn;p)$PReUUY6FrOJHi$wWG8iD_w2
zY4WLyz^82nqmS4fS$T2#fwv~4j>i<IVvy9d+JcQnEVJ6lt-N4<W5c5k4fN)z^MZ<y
z15S|X@ySrZ{a#-(HenXM`(n<80Lq`NqG99pJ<Fl7Il0bCj-EF$=!xYh6y%x<w~h#7
zG?NDyCwHuK=deT!yS3$HftLgN)RDZ>E)m6_!h|H=9^d;tiDH#l;J}Z$rBsx}!<-o9
z3!sx~>RK^$;K0$LP`C#i(@L0Q2IEaOAe@^<=4B+Jup8xc7>=_OL}K*%c#S!Ul%hhv
z+Je`>CC_eZCAlpgyscI8YM0%k`&8!A6f1gH01k!H-e^b8QI`l3B8@!z1yRg_&%9`L
zC9swcDlKq9O-yqcp}~lYd+c8&)_ddk)~*iS!A*`C@PMhYVT(b5EMdn8DWNir`_{}P
z6}u-eLga{u1Z~asaYWqc39E8u6GU!cqAjSik~gygDNQ8%;NvU9GtXCwS8`cvzxeZ7
zN>B8EE~*pi)qh8jEy%wAxRvQ8vH2hwvEf`8$hscL5<z9wZzwe$LfVR}2f)%-d_yb_
zhReN!flS)D8x69F*9<tK#hXp<WS#d5LV3zcJ|;%%mt44may9=&B&4d-&ocE+ENR<<
z*r!Y3ZV9Lf|4|J+mtmB@n^^w67$UJ!5ql14(g|j3&r@Y@cT$X$lAdW!>tZ2%om&_q
zvYSs-^%FqBk7QYGX0>WSbo{{Ki>Nedt8LXP!3VMNy}Tz`)6v#)35Z{ti;}Z$FjOmd
zYnutTjJoJ%^-B5f9f_wRr5dNzZEoW6K1chmGEh@V@$(jFAVN6wSW>BeEMy&3{zc<{
zzkg5P6e)M_#Ls0W-mp@uAPah90o@lKK3~zwQwq8Zm9osg2nX_v^BK4!rL9sEmMeAU
zrNe;x%JI);^5Dq!%&6#<p=VT4ddx`CqrB<K3T6$`yC!8&rK`;{#*Jv%!|hR-jv#kh
z23$`Kn{f2z`^ebO)CX~W6+@QYmf-RUFsf78Th2}vw!+Yh!OY(%9eBr$PRj+P9WHBq
zO^6>m<p<u7z1@bpoQ65uAmyey%(buW63#xe;|Y7LRYq13D}52$Kn^nL<>C7^(a@Qq
z%dP6859}2M^g4>4BLt-v$!Cw@%f7>3m<Uo;wA7BI<gT}D2xB@|7!F2AezbIGQ3v7u
zi3ys4C_N&3>a7Jb4soxO&CTIkF-7OmT0nZG8;2)%>cUnWkIVEY#?I<%Xhg!|eEbCN
zIqVAw2#j9Riz??~S(!+sv*40n?Uo=#YK>SZPME0B6^wBQq2Dj`qZ}!>umR6a5<Q&g
zGsq!pnIC#LS<_O)N4-$md78GvKbXx!JDojvRr4XedV(LVP29wYVX`Ihm8xoim@{<z
zu}-|t*E)|Ict0_-uf>mX+8$V^8@-MF{8BLDvvctZRhX5r@cp_r`ufDb<@5FYKKV}J
zDloLTg;$R-xO?uKJiG$+)jd4DesE{ZqKWI%rR?SI9mQYX)I*OlabeAxj~g+(cYVj~
z%bQ(_ntif~nss5QOcN{{P{a=Fgtc6#H)}L-0N-yuk|ybr*TdH!t&rZp7IbP>J2;P_
zs1!cCnO`~Y)wn&Z?_rn0p~JNDtIXB>0g;lr(Y8^KUf9x^16=3A_VOTM_@;VRI}RYH
zoZKj5GK6-b!PYc3B3s`{;cebJM!~0j$tLo|4z*hCck3)?w<8}B*Y5qsncv7>Yf|sN
zT7g@sE>+gkas@6eTV&3~qv|+wjvrOJ>%MLi&V$eW0={@a#{A=ATol`T&d-0z<X$DJ
zzzSMTQh;Bs^GYkOH!rSs-Ll%;W$;RV@zjhS@5Pt%)>`fWJ9N1`8<BgD=lU2#-O$nM
zVc%<Bec~JCn~^n&pYP;?znBpno2jFf%$9a^cAu-@wKOF;0vC(Y>y~Q0ECGA`u+f$I
zfo{lL?L=~e-|2KwWEL~tWAm7yxqZS#`kghKH>1nbWIjF9*zsEmofGdY7Dv`cCr=*3
zdul$JpX0uJJiW#~A9{CIVg_>Qd5ZsE%`YNlH$cEY)B95f0094g*HdgPoSpx3IgHoB
zZBsOH_nCTQg^GYyQrOasEq0|*tf8X2+svyw^^vKo5Dz#ZKAch99Ad7OZ2ae?<^tMB
z892X|1M@Hl&e_eyWn0Hb-zW+8)Ix(yD%HDFn#^P%5q=!V_t<P)rL$fCn8x7LBlQ^n
zzAwszCvR->J4Qw|d6Fcz>H8bl_3P&P?rwSJzH6xMc8w*k`UK!0!IRhf8>q5swR<3{
zkMDPX`R<u}-8exm=_03mcGqEV7G4jp*QBqW=zWYzLmKJL2~STKh$}qAbG!=f_cLt&
z@>Cf3s_3G`pE~Q|qYiGj`~BzHt<f{gErP!@&KZ$y10(K`20LyYkUN5;qYzKY4=!!e
z8#Bk&I-CBHb5rI{FLj3g(PaGR^ln*7w-yT2!Q{LsCPo4c9h8~S#X0Nd2Q26m$+A3h
zEQup3Ei8(oi)ukASuV+m4X-S!87GcgBr)ezeW2=DovDwe&eOVgVuD2qT_TQMUM^Z2
zH}5cRl13Jt_x*%slKl3Vx=;}CXfpAhU)3W+S|!V(m#az_sfI(IlgJxkUMGNjPUXu0
z-SMa(`nNUe$v<EH*GA0&9GrDqO&Qqesx#z1*3xiZn7wgFahfLb+;nA=Adt;67UkOR
z&Xqn?ER4U~o88y#ZToF{bASHT4;xRoE01;VOmO(+-fX0{JevNc?!copi=N)o>-%S?
zx4ekzyAu(G(-zLt8j1cv1nP>%JtwHY!I=>>A??>&y6jl`OD6m;)JDL|c<0}RdrSbI
zSv}|D`nz@G+kPquVCAU?6*iNmH{rpUWgbei_hx;5AMH|;2jnPpCD#me5zkbehP;_3
z6~<4CRYYOHbAdn>?tgo=Nt@9b=v-6lzktu&xI!2kny4r5I2n+a@B9fr(4;LK76V7-
zOtgU(?u|naz8GoE4oDd|`O!;2shu!(4Ko8gB%zcT+A(!yCYG5fy9Mt{^_yfPfN*HU
zlC-`XFgU&<(@G*P9+w>>M6)(&WhF@(-r!+wsT{;;ud;S4%nufUFgX))AQU1dS@h~*
zu#7u}W#T4H9tfw^LaHxgHF`-u&`Cjn#0WeJ*}>7;kbz==SK7i8=_ihoR^ORsC-46x
z3nmqDP~&73XRG+oo)=&V1V96F-}7}mTx6ur9GLI`YDh&f<)DZQl8~!I>r<u;Qf8HN
zeToXV7Igr1CJ{-wUK=9pppXRmWCx_8rrncxh^nfKs}d@?sF}))a*-W!QrOpWpBdy0
zz}uJ3`!4yI#_3`G_I|r2npM3I`sooun%t&V1tY;->7-)4eRBYN0Zl|YFEUOcVPphO
z?B59lH97+cFP8wo!RTjj|IqYFqaA{DW-3;5O{6`x)65%6Co#z~t93UUgsgnnO$duK
zSNa5h?bdpNxf)le7|NlSo+j#Pzk*#we7r(pKT$(M_9OZs@Hz~^qvE|z=MHOKiGMvW
z1-+ZoFO>!U^+V=Wy#b~YDH1VuwMGfd<Bt&K$qkZxbAs%X6W-R;ukxcwLetC7;gaL`
zV8h(HR7XW@J)36gh)yHGzc*w8?l?W6@3r^Wp3pSXkQyww6mTjeMid3|MihI9jeMYT
zn(n9-cpku3?`Nb*F9lVP4i*E|SuF0Bi7ZxL!NEa*_+;YMDu}!A_scSd)DNz4^%odN
zx;CEISu9yE&ksqOhjin&eWJ`>rc2kFn}{thwDKPpaLY<7ydeTKoOv{1LaX7@5fVyH
zVlL1-Nz3tFt(#Q1K>+P7+cMq_(wRElqdX*{B!~_aAOwqYie(y{Ns2>2^QKy!x~2(u
zji|rXmvyBMbPuvm2gxh|r?FfM(k4SNr?Cc>jD9cnvs_1p2r+2xmlHh1^CF}@W(>s^
z4r3J+Lp>(#4T{v25Dnx@rE|5J^NPvWgY4^OJMv>EM2B4eYY(2O02W73J)@=?rlMcC
zlg|KQS_~b99pp2XnNW23CVehgoMeK47ih*JdJWSxX!_|7TU`i1=%O|>vUDll1MSwd
z*qCL6w`l23Xb)~}wwEZD%wyowmoUO`YC<lBh8y&x12BNu1{+wFkwr)5ubv=|PL3J9
ze*zd*c_OW$h;k5P)vkO;O`CRKYekid`4$K(7IXj!<a!Ce0GFXtc7?EuYJo4Xt4iC<
zxQqbFO@(cXtRofVKE*p=`%ItLAHliM$RLf!*hg5MOUQ%znG6Dos+*9$T1)1AChZX3
z)GmO(%2=9?pj&Q<NEm-JoZx?h93|&;4H&u=!+g#ymnNW&+Bz|=mtHr?L5sw#@+>b9
z7(PO(5*J`)hAt3Vb5Ou8@7)@`@4_1j2xuVWz5h^&2EIOek$GXN#GQ{7Q4oG;V5IK7
zK4sBgfRjJ;6eive#@vtHu8EH}FRBJ569d+TuV2qGKb}_VESL;28Yvd=B27wABy{q`
zQ-*wfb0c&`Gpex*M625-8bcE3JJzUAbJ}T|&Yfy9EMPUSKv2ez27LNRc%Ghvpm{WW
z`-Pig78G%Ita8neaPWf>!r?ggj`XMVuz4-yoi8}|Cx7mJ5(d%T4{|gtF0OyKl@8+b
zPcs)Ownq^^qF*);&U~yjS)_O>A%nseV&9jb${HA9_(ANOh%m!j3@w!|_TT3zU!2zI
z<EI~gNSl?H?SKD{fa|BcH#t8N_EQ{_M8*qG>ytGZKln}|pKNru9~9!$<ESNtetul6
zDyZt4nUR}=Ccjw~&MmAjdCX;4SVda2>r>o%y$X1j&-LgjopC!y-)brfboO0(+Ee}X
zWx%h}C<tC?;?ee}KX*qcPI(#O>FLE!X=ypzp#;1qRcamJQ6*3E5#t(73qj0qbK=le
zFBS*IPw$x{pHM6olTjSj{K+5QoOn;1sH*xk0n_=hVir7|KCehg8g7f0pa`qeT}S<9
z>D6p$-B*bCx-fwb;hb7%hp3D!){ai$+Q$iltS4RwvN{4N)|(+`$V;*qmwi(C^S7@O
z<Y!84E54w14pKJrh$U{-8DRCpztlNlSo)$>7g2HFDJ8iL*iu)8L>v=4VIwRK%;?RA
zRK_+m0juszl>P2vG06!%QhgWBzoJN2N%ZO`f?TDV_1gIxJ7FfQvGiKB=@k1K4477V
z<FyKm^cV^-<EsFn^5QWbsZ(NBsXvZ9v!N?2metMWN8w1h{wv2BBOU2AjMyd3k;Qg2
z`gFpY+{WNA1CS`M#L*lm!^J+;YSi;oK?ZI>QO?p>7r>EdC@#05UJ`a$o}Bu+6Rl@Z
zf)M(Vk$?%FMEon#s(977sZ+cTc9EjcUBWPPt4zQa5u7F1G8LoTvNzSMDSJXPqQt@}
zB8gt7mjBl>yvI9MK1y1ZhqQ>COXj(2-#!YHj247f6GHRxV5Y>9w)vNWh+?{Wqi$W_
zBn8^m#MtjAI=VWOOut&s$S}t8dRcDNtgpc5``OK0Z(8N95<dqAeczN-xX5st?W2H$
ziqI##Nq=EL8I`pS^}$No?7LWGdLetP-0ayRF4d@Gh5!ifv<dxfc5HjAHPOfQ<|Il~
z*Net2KY`3+<9*Xd&v^wCc&?Ewq8;pnWP%-ak82+`i5P`q3y_s<z3ppCAPTZ73DS|W
z<kfo55aV`3#!<6M!BeY-9g&=f-0xEA+3YfWVzke8M{>!!p;NBqpV+}aD>lu<Emf^x
z-dgFpII+*KXk4GIX+?n>P++43=3lm$VhAy2mSMPN#x;5vWauinXPpA;_N)Y2wOXKQ
zwS{FtUE6@0xe+#PU~cgg*GIg0jG#PEw7u-vlK+K3zN#&Rk(;T*HAQ$T7xT>FAe^e{
z!o|<U2V$+KCF)QX!OoZc6ltSMN9Q)<)qvVS-LjG87^aJH=nrNmxT<s7M$ubE1Djj+
za{o$Cx!t$uAxALUVAJ}%wwZ?Y`h=`Rq;AbdS#m^?VD8zJSZ3O}s8L_0uC=(@^A|}F
z6B_d5{^u5sfb#Pg=ZHedE7eVRNbk0&P5!-J?r!zc57Ulalsw13Wz?%mVS|U={F*?t
z#b@Xt-458aVSHl41}sO_43kaFqKz=V>x~dPuul@f+fvha+s<WBJ-)OSlQ)_lE4>&q
z$gZvY`86}F4ZguL+~Gg~mBXvL^^Bz2<S_{98OxR+3^KE(Y~TWQfWdMJqS~=fkvB&!
zRzMB=x4+n@aaVXSe11y?`FRtlbE5^<k@oE0OXA(?<whh~{p~n@$~Lh@gte0MsX2c2
zul*Na-pyR*r^s~RdLf-Pip<FWw#WbyBoP2cx@XIK+Rp9NgK56oiR6r^CVT3rh7p#W
z9eWf!sb3l2pJL{~B`gLbV!y<B;nelXj$I+@<XPFL6oHt@ToUn>PlDxxxA=pV>0Ah)
znZ!!0-iS9y=)jw}T(L?!%qu(*XyOw(N>q@NQ+V6Ok@<_+&n@ZV4pm*maKT$Ovq5yH
z$hr6wt(J#y-fb*t0lc0yhF^J4KNuaN$-bGwt)*^DBIAqxoUk#?gl5_@+ycT-v(ok}
zW_^DbCnFAwMPLO}tG*%YuC<Z!gzhcJq%g&_fgyIgk9p7GS#UK2m~Bl6Z;*+cm#136
zC6rWznfCF-SY8DO<@w$!@nb-Pj-lX1MVS{ttbbBbbK;5&?@<I_b;Sq;E|K^cL_js!
z7&FYsW6>kzx54g|A(lhJufW1W$vgNil#Aw9Ze-n1#CSDuEOWA$&djmNK(cr?6qhIl
zDzJE(<0)@11woNCT4zEeVLZXC=%^i`l#-9`S!=m@-UY9p4JPhhy6tZO6@@+WWPu5+
z4t<frAm2%(I;=o6lXXpB8+HM9Y0jOL!e{e4usW1V{5VYIa<yB8&-46nhyFe~4-k86
z44@F{0vjy|IuSH$qEt;v`RXR_ww3K&H`Scqte~_hxJ}`8?F@4qpc2;=@-rPS6=G!b
zbe)x)41c;RWb?Fh>Y<X_d8LMP-(H!^E)BlD0mk`c@I81mGRxDi-p1!~B4M)n!pm_U
z+OMr3L7w7G56A2!X}F9&8P~(-c=ZNz2bbeFkb|q^`ikz_2NwxHZvRHQHN4;CAr9ud
zeP7NL<uJPV=3?1(0yO1dt!fYaMF7$Lqck5F$IhVw)R8{LQpbCr0In}#kN~b6QvcVe
zGPgeb_1c|0?sf%o(zsQ#+pTVV-<oev+Vvq9hzM#0kWjc#u;p1|D=Nq??`|rIoh$&b
zIl;c*qJkQK6)i@z<E@UL*Q@?Ftq!jBw}yS^yHBjBe36$k##><k5aBgNUdrOUqj(3|
zS|kq=kwndk!SSejnJ+d^9lPlbkiQLFH^)MI)O~$bdg~|NxlqNU_mShFK*ch`W+NZN
z#>VFP^(T~#UQbrAyQ>u$9=82iz~!yy^A(3D!CXvBxdNAC<VkrbOC$8DaKQ6noWz6(
zG}E+FTvKcnv36#p!K10t1Kr<2f0u{i7I$4tSArDGx56?Pa>T2TLkGHfTyk3dFUy0w
zEbjH{&w#vqMXk8;pyLIj*IQN4PcH~I2qz=$z<CQyf|VMG`$TPc;%6ImuLh(e@M&Xs
zl|IOWD3ZFnMIfM?WgN+fFZm0E^*pPz!Ze0RLZ|Rxi@2zo@m#6Uuwm66Vqy6bbHPgP
zXVNu3&pK5u5kOIn9c&FKSVs7(HBpLR9p|)~878%;f`A`?LiTX43<`P0g$LDruOVat
zxIDVmrW+!>$BwkF3GL0(h_`k2{pE+N&P_yQar|1Fm)oCd;7caE4q|b+rwZnq3x`Ep
z%eay>eq;eFef3522p|VN7h;^9vJEt|_&cu@;#4&Sst-z8>{oNB=EceYFJ3x)I~flb
zi!wbjZag(yCAAjcSv$Kp^b!Z}aG8g9jm|x{HLNvL37+GwjHB%)II2eFZF0-B)O-+)
z_6E9At;e>2(yyAu84Ud0XJKtKE%ip4;e}|0w{Lnwz!mzTELI#5a&-$GS_!Acp8VJF
zTkh)UK!`dr$ekuHSCegd?fp8-=-JxQpW}Y8r?duWZEu(Yxc16@K=fB&DCEF_0e?(4
z5UZ2B2jujHM;PtA7|HHL*QfLQJh7^tpB<y0$E?4K1l^)qyD>Ti)HMm*&breHF{%CS
za|r!FgTau4a(}YPcP7Q<)|Hc>h!&8G_fq88s~t&8&iW|;Q-r8K`SWcZK~A8)nE@E=
z2U||Y{AqF5OmB~#PWAdcpZ3zq(&@H8Cgp~mlcGRrCzO}jG7XIGt$$B?4qW1k&lciW
z#ZV6SaS`F`7UyY^V`D4X*BN)}typq~q48`4y&+?9YcN73Cg#ULKhupha*UsH3yim-
z=~4H6>0x$IU`lDPau_+xao#M$?O%CI)(wZ^I>~v9Pf&>=FE8PTW2w6V%hfd%Et(M!
zAI}zZQMKdve0Yn247Kx>WB}2Z-{x$)J@23A6Z)uyc)O=9*KWCMVq;@<S(-lpv0y(;
zrS2W)_`}GNK8g39fdTCy%;&mOmD_}?xgu&_LNeOc!$?!3_y59K*1AIu+8<qsD3T>9
z`p%ZA{Gkvd^%#esVr{4O-l}IRPQ;4cH**7Hk*42*0c`Q%gPn@ylMvU%QPhiyb-dq?
zvbr?CzyeY2*`W%^^4~~?lqkm>Y$L9h<Eqj`z^EZ#1-<<f{&q%>Zyy!&=;52!v%)9l
z#WCGutie!xOR-)KSt28_f0y&x&8sg*>#HQlW0ru}V_Szl(<ePquCK%(w3o*>bD-#*
zBN$xPAW%mHbzeap6}FUC6ApFbRvk`t!(Jt{EssozY4temqlgS+MH%Xf7S&Y>k{am$
zQr%>f#g}`?ro3zfGLdAnHpSi@b7&KU57z{FHl67^d^;3=+-=M$H))yd=+D6*h-<0O
zmWm=7*{C}^mgs+QiDfn}(y6ZB_s$ty6?Ie;9uVLAP81|@X`HB?%E-_tH101-XqNtH
zg&2iaKPNDS*&4ZJ+#b`{bDn{h2`EVgiC++}N%mPXYNn|qt>=F8t6AjgnCGGw1^w{C
zKyCJZVK}N`RSA0d$pfI)@LDjJ{1LwL2<$tD7(C~%d<_d_m4-O96RUVf?VWwjT7M+%
zEeM+t#PAPAOTl8)Jut$Fds`?V4#FJlPjLi~VGQQUdM?Gvc($u-S(e{*gG79>=?^b`
z4jAW#rNP*}K^iTM%|a^Tgu$>jBo0U6#ktHgAubMa_#JH+*oigR?>{zy&+C})L~p((
z%ZYAYS?%aa`1<yo$r6lqf1XkEW=Swg)=t818Cm-94SE_L%G;0F-e$Q_I7M+;p_Qy$
z(1vZz0fuF!9s8<WY8n>Tb`ET^qt7Gg*OhH|OsgF}Q(eA+@tjFzGor3-RQ~*bT%BWg
zU{SZMW81c!bZpzUZQHihv2EM7ZQDlY=3I^UoG<$qtg&|0tXa<@n`P$ISqo0EO8rN^
z{*|Yy8p5&ex(98m%B=ovq{hTYcG|TUCb;b9O6{>4&OH-S#*Y0IUOO5>5{`rRufU}L
zW)z7iAZ*s=LY&IM8K1-0hUK9a?4DjLL8d%K$j4a3=Ty$eVP+>-$AQe-&D}&aV!INl
z>*EC%l;ll7Kr0b%+z$H&!#<)C=E)5@0{&{r$&ClDw%;U(U$DGB^#iFg0Q)v;>x*Xo
z;G1K2rc$92P0y@J(nI)gcSg(`@*!t==%+2b8CTUBr_5fSsj+$ZwJvfR%yioeJ8T+T
zPb<q|1Am#pZ5SzcC2!>O=8g-4uCYaJ$tUHo5u^8CXaRse7+!w%DGwRgaI0RF7urkt
zOf)uuXo8<gayoIsWcN^@>!U68z5~w9-eB5ZSCSR~w`CIAykzSTlVegU2H@Y+LFpLo
z7kbxlZipjsR0^D(7XVy9B9(0j^tSd%PBg?G4IKP?3F#udy}4EFB7Bf>6J8fFk}2}6
zfDy4sCUWEE+VY;o4)y_`3?AqJ87cZhLe)ZZ)on@rY@8xVp{8V<`-JvXOasWGf~RuL
zB8y=orgR2;-bs|q6l>Ga{>Ob*qk1~Bw<ReZjDvNizQ)uAyb~M!%)(J+V+vw+s;Kcr
zez2|)o20idYD?T&{5{!bb&*8X_xl7F!&$+Cf*HKwW3(mpTqqkcJI*nipHMZzfTwBF
zuJ(r!-0r;7*L)u*@-E5at@Gm>uo_7Cscq-M!_zRk(8Jb2HhTD6cs*FXUanAEzZLxg
z1-=b6zt_SXg}d^fW|~OD(!F{rb|<JF1<+z8`!Xmr+5Xmwy&$DKZPY9-P<rM51v(6K
z`3RM}IxK=Oo7Cv&#01!@`&`tzRoDLf0yX9qDE3Qtg{K8-1mlREu|U1;xjDX9_n5i6
ze0)sb(0V+Je*9R`ny*P?75CP<wJ_<MR0vJxY`QvEIA&3w?B-V$4BXIHwfL~5P4;3I
zoCVF9vTovz9ORCeI=O>&<Iot(hu<j_B=%^SsR7s0hcQ#3MNJDnga^!xSN-Sv5l)X~
zXtdxG+>2%94?eAaYq|$O9e&G49CpAr;*jm;<F`+Ka>@H9CIobTHjkX1BY_+T3U{80
zli(!5k}G({?On@uM}#HAf#X#_tK@C-l~ndk^U0MR-e_}r(A&7E=VWA>OHm~v@`!xJ
z00V;`45%e$9<TF(QglFxM8qetz3O-xhS_-mO*F;WU1C=_{`x{K$^7?W;#kB#3;R%U
z9FL>Ed+bL`)Va5rE;lXou(;E!)d}h|-U8gr`>iIc#)283G2Iv0+Qq>ZH$5nNry#k*
zo=Adj4i<CX^>X!$OSwWD-E~-bhh@}VVBFV`9&05xeRXOb-+^ATd4*2e21*A@wSO>1
z=bbaY2H2T_j&ik#o_{yJHQv4|J>N`gJ0&aHw`wv24<AQm2b!Z3ar;)MR#{B%?Ktdy
zNEdx`|Gs3J8vVGG)}y7^j!rC>npi#ie0LGw)=?Ih8}X4hFxXXhRL&iw?NT+pA(7pk
zM!`P=?ha<G>R_zXyFR{LnU0aDw%#q9zM)d5dgxYI;jK34UNn%@X8VmY)JxGd!7hyE
zjg#-L>atXJkrgh+kG~h*7PmKU|6yy5QrSN7&Qj^+pbwi(v)`@s`i^1IYgyRR0$Jd!
zQWtVrk<X-e8u--O_=0gw`{MiWX_dfdY97OH`v(^4KbA$D?W{~}oqp>-)5?>UhYTp&
zpVT0vYhY~n@??LSni?@TG>WFkK=RkvYOu5<N!v+b9&Zc7a;uMv<^-F=QFfhXx=$|<
zi$D{QwjXip!tL+~RqjRnpT_i~7)qk4qKP4gSp^gk^X(;u=mh$hIxFT)G3L4k^F-np
zKv;}nEmFI)fL;n_)|JR5Av?-Z#HTf{_xxM53H~UZC^OEOS5(?iPUmS2wK1tDY4pfH
zBZRP8VbqEtO_8EgMRtadRU)M`{T&1ec@&e?Xo50xWJD&+$QPF)rvNu$zA!zPbNDJr
z)}7YraS21tqw0@OjWuOz*=T0#RKU1IB_`F+ayA(jus?aZzj&?Ql>DshbTj=nE4j1F
z3<4Sw0RzIk-5n&bud<?g>RB|yaP(TL5-?9ZwNI}=dXkQWlI5Zd%^RL(hEa#bt$zg1
zt{I_}vzbf{y>Qbi)DG3ny|`tg;hI@4=Q>e@Bsg|fwP3WFDRi@U7{zqHcJTuThf|;U
zGvSE+F&DJ~+=ha-mnt-?)LnrK&*`Fa=iC}xDmmHjJje=GF=@ZHnrRYZJMLR6#VJzi
zJg4xN5;>OV?yhl<o?Js6mZB8p(~Wst*ypky1^La7_8&TqcOE|NSzLP|@7nMs9o2pc
zH~ta_q>Sd7i9p2D4Gg2gkBsN2(sKm;0;v>!+nrb4ey#06&XF#7<dI(Ymx(0Q!7i}H
zpqR`RwBULh`s1^F-x(M8{v_2!d^X?VbBl@wAP;!||L6shGF-$^{sI}0kpTb@{$CPm
zWM^Y<_kVgd%W67ShoUGxueIr%AY9d!8*22Xkl0F4E>M|I`N0IH#g*#9SmlKZtoc`d
zx7qM9rbP*>vMqB^S?UYloToWnfBp_L(nhkAVLP_I$)~t11Lz44`R+RE-Vc9Ur`}hP
zP{+5DjJj#Z;~vMw|MO`7l+kb@lj{>+T=%xiX`li<-KU{6UqqmvbVRr{<RNxnHfL|r
zn_a3zVL}?^m=wXG$EIL9B%=4|ETCCe>k@GG^E=l`<ROWxuQES#7OintL9PdPbozAg
zYX7`Hd3iXbRY+G|p_z4d#})6^-hqH?>OxG8s`lO!Za(JrXIMf1Lw;KOcWNv^{wo>v
zpLk^vEo#hD#0luPa-Y{_pFmR<qH07rRSV5B%Tv0^1;c?JKSf{Hfd4|Uas}SNp2nIa
z_uXjG%YJ4?bCRv$R){X#gtg;~e4o~bQ@AxTp&%`Dgt(|R3P2(o6n=8E`?-+jA#8gM
zMpq0h`I>;J^RU)RQyFA^=|J_L^7K58q-8ka#}Qr1q#EWlk=lG_F{JPJ>_I2k2!E9E
zWf^C7Q`zgsu_%@zljSkWNGWY_#J_%)pyL&(2FgQ$PKMWH1LllRjND9NAM3h$xV3nN
z2XwuS3ZbxBE7!}n`2W^yYVGuDwe8fs)L1%z1<ElKJ!6tB2c_2{We*Iy^uTGxw~Rus
zl*QWCI7Xu7u_(E@j6+&3O%fJQmJOFp3Q|N%?RcQ4ETWIPj;4ZI@y2P2{^gjWRHM=O
z5={QZfzaUNIDO1BJa(~#3J3alR^-ZDT5>D(+tuQVOUBxB7@9B;^<<r5N-kSL4(^Vm
z5t83n5y_DU)Twj&7i-L62U4C`bW9Ns61z_$9M&mHCNzcJCz8=|4(Gyu+@B;3L=(fo
zta1<HeNO#;$4HnDdQ3<fcG9Y_;%UxY!OMx#|8}QFtsspj9B2`}NEzYURO2w3n_RlY
zyU*Ma0&GejyGcbS=h>cqc6lcqj24my?}~TVxhe7vMJ^x<D3Cxk39I4VdPjH(K@|X~
zzu^<(;!@#RAYx^A#~uAKE20;YU;V0OsJ!b|beylv<uqQ@V>cuPm^lO2tCz)enZG}P
zr9vHR6<1mt0e1coXPsp91)FIyv2?wVxh2EAO*^XadU@l!MaGuANt0r3oQ=ACs{T6d
za)s~rh*ohO0`J!#$9wC<Js2Vv5B4yGsfa6+tgXiWNHKK$ragc%?P>Pmcj!#YXFWFi
z{Z^3LTLGKWtkjKjGBeK0EnB;j^D#TIY`vGXeDU_}H|)uu0k#{=G>f-CY^QbSUnGet
zKVpu@t@1~z^VT^OpxS6AO9EplUm1fF%fg%!^PtbKBpUB@URi4-q0`EFZlHl7mek-O
ztDK>%1HSLpACBUTan}W{A;4#>_A1ik6qSQ_CiYD&t^a@gvPdbg+=70q#;6ScajpCZ
zI^kM#+wK<w=J%>6Pz3J+wYs*52Zo{k3W_4tYIt1-Cql@8gzJ<~8dsF)Ir#5&8<&qn
z@*zyI)S~{JFrmDY_;z#`H!hh>N~d~V+g!(jY&BC->&2MKp}M65t=J-?`znUQrnb2X
z%D@v%c^Epsvq7YLr%8)k!<D!xLFKQBbw8dT$Irq2(8aYHGFaN;c&m3c7OHo=N$Wxl
z6Dj>YW_iy_b9(q|`<nVomT|AxY|jSi53ri3G}%s76<Ly)oSdf&UOk)LPF>?}8=Z-V
ziMnozs@g@g#Nfn5Dym_j$V@fG$(7(8HiBV;u`B6XW7_O`1Dz9eAA?pv8>my7=A9LT
z5(L6Q>N1!^>tj+}7lM@QWf%|3fM%D*mvYL%);?t#4Raye+YnEm6tvc5;`jILIpJ`?
z->ftxBfzNVXdQ$}w3}S~t@U-xZ$Hq$=*HdL?lyhdocjiSY#me=x-mG<F`U)Yh#Iro
z0k^$Ru2Qpv9QW;-A|ze!oLXVu?1b)f58|LzRVWpZc4~v5<imEFc17As-I{n)B}_oY
zqxVp&H;3p;dIiV0TXRSqH$WfG)$tvH)$S#X)kjMizBo6$L37IHdbr?%iAxseD8vyS
z5|ZsuP?rZuD?pz#P@p14QP?vF^hnKcu7cyj0#M)?e<aM3S+0PDfGZ4EiWEVE7efbx
zFyw_10egRzLx+JCIR01hlr*hQAoGezK4DuqnZ!UX-ko>A(5xJ+h+T4$5T|zl%8|o{
zs+0-MsW<m%f*8Hv@}-!dEk|`;pK+kXxm%Vc(55{-sKgqn!L-1D1T4$24gP8XqqQYm
z-)3{<(ogWaMLCbrdo=2sTv+_!^WamS(fJK>hC`L|ma9bUznydl;T&GwiOPbA5Oj11
z5LnDwf+oD42YLY~bwBWI_peu8Og}t7xVgN5U?3l}WjCBYV?UA=o!)+Lb$s=^<5lo)
zbSn$8Iw4$-x^sA@BRz#WX9M4v!=S*dAS#qjHC^d6(DE;Qwk8H@H@sAR02P~6V7O&6
zU0I36W9FqRI}9QFe(*+)6s4r>PoVN3b=i}%Y5C5tT2&f%cowIp`TUrzP9S6M2?d~1
zN3d$m{-_wRL)}`2EgFnIpFk~xk7~v*@3X!x*XoalFtj8GuP@N>c3Bx<EAHs^E<ZpW
zPptv1@D2~u{T=PNWpoT_2s2~m;O?4gZTYj<BUcoZUD`^D?)<=T-I8?N5X)hRnvSGD
zj>BBpS==~m*aixLDAKKI$hT~gCrA}?lg-zxkqu{MpTs!y;rYBn-)jACN9}Kop|XTK
zX+d652=LXgS3;nm+)#H<_;`pcf`56ScCD)!at)G;KN9%%P0={^f4ns3nBpr+w59x9
z)mQ&9BAoDYR?2Xz_d^Ha1H&5S{-Q;mjPw=dbKGoBDk5IJrl6MIcY^zJxZ8VZr*h`7
zAWA=@$>?**T3XLWJNL%u@UtGn@hFEo4%?z3I=WQFldGX1>6&O0`fdQTAANT`Q0~f_
zrfY^*XztQK$GS3BjDO6Q>M>bJ)gP#341lXH*@~%tnyt4>?7Og22JVZ%mE5P0f-Jbn
zdMPLTj+kS?%68$W_9XUvgST-1+-c!_C0Jy>q<}lU3h3R&*Xe%Xp6%ri_y{aIF%$%y
z!hRxR9SlW?-w~)^<&Db{xGNYtUMB^(h5>m(2@U0I3uL6X2c^wep6OY@49SDHn2Gee
zj|-x|naVkgVGIB{r^K?ujJ3HKOxyGX%77C&lHNxT#7&Zx?GVDl;Lab7{OaevpmqU5
zGpCzI=p2%Kc|nIU8c|)Us<EPwcGLGrs~j!yPMAcTj|@Zj_tSx1iQAgwf8LusIrz{I
z9%{cPq`Ncb<$O|{`rOc$961(+IGKo=ZL5Z}V2#;ml?la+*h2gRBZ5ClKYgV(RBJ9K
z^UzE-UA%x~4iqBrvcRhoUef9imJ`nq41x=jx%Kh*D9#*Y*Z0t%0@|9WqaSM!2o39o
zH_O&*o@=PlVS*<RH@_!IL+q@D!iAsHk+PP+?E>phY?37l2@O_}jFdaNPLE9lf>{Q=
za6CQts2kN9o+-i*#}TgLNTJp&UT;wooYQpM>fb`~2KZDV9L(a)!ZCyEY?$?0tWs}S
z(w-|QGlXQRci$0DIrv6@<(!*iAg7b<=&rMIDH!i!g3mnDF?1=i0L(I(kPd@44iqb}
z&dCi~+3CE9sb#6BX9G%BM=ZGd8=>jvaCh<`u6B+M%_1vpdV)9u$h7tA(24#v?<t^F
zq}vAMsdkI6V$!4%s!@t8pPNstF(ni0LDKqj{}=x?DHNBhf{d%VRxa_WWaDZQKa33B
zwOjdf9&XeUI?iVv;wY1Va{61)BZoG?z4kz)Ojc$-rC4`Dn$i}^3+H%mSR*ZPK*4$i
z>9F9(bQARevvp=QdFT{xSfRcOSl=dAQ}@4E@F8GefR%wvr;q04c11o1&*?qfA@V-a
z$Jo4N*7qkik5}2B>`QPskp@U?1~2w&P796_W}=|Rr&gF<2w``Ww&R?dKKH6vmo-5O
ztF+;F(0sGgb?4mmi+nkQm5a~pk4XYj!}ebb(FO6<fu3pNi{i<{eM7E7%r^t&GXou1
zUL&L`Wu%w3Q$}lfg#zI{#&~PJM)=N2CZZ}UbEV^pP9u1L(CUQEn_q`TgRb)n^I7Fv
zkObDItIfx4nZe=33DAdCzp12`9X+>LMhKmc!M_@X3!KoFseQ*?&fVgc6Zb#d1!j7S
z`T&P2DnsE>i|1q%cd5Fq%+8Q`hoGSJ$y+TyvO$(G13r1dXPOed<x$Cn`Np#Iy{`TC
zJBR+IN!Y&o@SJDq_j7lPjW}4pQ;2q>x9!Ji<2Q?|wnZ`=6FzKa@+E~*3*gfq(EskS
z<94vK;D0@K%r9Z%{}(cT!Kb#)|K+iN*Q{-`7!Z0MQBn&~3G#jXCB4Eoa6HB7ytGA9
z(L-a9jgU93lUi>vGJ6F(HBy3s@eb{Ld+!mp<2MWIGmcY_0x^M2u|=wdZ)ON=3SwvD
zH=neG?<n&~k{!osiz5IPOo!A<XsgqG*Lf%)F#$DTHuFyLz<1%y8?eh|1+qbdoe#!3
zLp8x~i7%%#r{iKkgEYg?-N}m=hN`s_g{F-E6**@mtTiNQxvN0uI9(q7L53ZQ>#n}p
zC-wLpA;Yy7v^)DV`dCuYBs`u?S?8jrjT7#qZ;Or^3n2}e9f7>SBcD$#Qmhari~^SS
zvuYwSXIo2eY}itZSV*B3Q%I-+7Ox|yZXmwrLERa*-1a)1S31*{>Ox2Dg`_~h*ZZjn
z>i;;9zRIqb&XYTHpcZiv<F2PMO_B{I3w{@j^gy@q+Bip%zvcMe0QEP@YTx@l`4c(@
z!(@8M+!{05MPo54I1Bk22Jdl3aGWuqzo-INiaKlO9SBZ4WL5@FE`9(Tf!xt)`lFYw
ze-$F&y$Bs&S8LK<OH}q}+J*Xa2eGO@)D6-x<!WTM_K<TqKtas!dBmGm+j`f|MmDQ2
zvq(L=phEuLhMJjrK)`aF<TVRC|G`zg_Or<NF7A99KCFnDV+qyb3yQQ2mpNI*)5Y!@
zVd#jG>Wv`P4K&?Ne^hA8bD6!sA|H9a2|N(%{s#N+M`u)An=#~9>(UVaht_p8ak8^^
z{omWf)fzTVnc_(QYV;U)x?%Mvle0I|v{bx#w{yCVsl>*~WS5WY;0!RVsUXz(tvX{j
zcYC&B!!a@VHN;3KVVwECIeB=dhFY>2nrvK0Xs&Z*M|SUN;QS8DSxq)>JX!v}S#%kY
z$t|**^piy_X5p%`6|Nm>I5{cm6nir{2$4^!$29WWejk24qv~KbLI%kJk+2k(^;-+Z
z{WQ0w`?Ynn?EWzKX7o1Jp7I6NXx?m1=VZy4kDPBm9gmMsYNVECOx3*|4;sEN8v2L)
zP&Ibt^!j+Uf3@ct9g=94qwTczFEH2#ZOKw+|Iz>4{lN|#8o%9yKQABkG2IjZ>1xTj
zpR3IZz{km8Nt(vTWg{mzYE|VimYDe7Qz#-H@Qc@D<L-^?&ek7&?5Mc3O_#w;=MEX$
zz8^K7_#&8g6sYerQ}`u2jk?BwA_Ai<wsZqHw_wX2;MuEw-xGH7-j`yPiN!}(j<f)n
zf&zi*hYw{`lQaQ(@?Y+tWDET>6c|Z$7&0N96hlDw{^b#QZF@1NL70A47@Bg2iF0l;
ztZsi&25&NClk6vyUJ63M8j(O3eW5S`+{&$&5<JYv8xVr`fE_yW8ePJDV$p)<bHlQ7
zPh`&-Uwz~>zHdsMjBL&swc<p(6mZ@A1=`^}fDaZ1fSZ`{z^eb+AvCki+Uh>VbGpeQ
z03tu}k2s31fR6^LVh;V9GAihAXaa6O7H|f)6xP_gM?ujiK!>2}=RPX?6D}vx=A9Y*
z>xelM0?}?tDM2O=<Bt2(Z|%*sHTV<9j|+BJZgt3=7f89a<qU@WwjaihpWj%9;GK&I
zgPPO}4<U2uK=Kv{2`D@Z5bD=zgNd5+b~^68AelfrHre6Yks;lCIrdWzi7E2WiY;L{
z0WMsfCKt2O2o{Ylp~<KAGM>r?iT3h!Sp(L}G*vMryD}Ff7g&YXE}gZ6@+B-8(#u>e
zipSuu9yQI@uK?R{fhg5a!mvx@ha_-3Fv;NA1BpaZ&h~i$hzT7W$KWAq{Xtzh46<z+
zfIwnDMB?c<riPWP^UE|+c4QCh6o<nA9C1Yu_=#13n3qK~b^S!4o@#cSRjYHzOR&l1
zI_iPT$s4+44Pq)!&?m$KR|fWi^yXc`qgSXGC>I9_g8Z1lVTBYPeb64tO4!!cF}>D{
ziMp2>(U+>yxwN^J^KxVJ+5A_=B_*h(Mz_?$XWBI7FF-KuSd{d1MB_;V)KrHgKcan-
ze1?0<e`~imdQ3p2o~zr1v4vBc{rsfC?Hokqlo7PJT<YmCM*4yxxIu$o_yNdJ4+K~<
ztYcP{^(Iv1OsEN}(c2V3QNs!G8Gi{%XxkPrj!<HRvTUIPbNf-K(r7^fPC6y?!Pd@3
zG#6CI;L|(v=x3U@7(!vtoGxZBbykK`4-Tkke=#bStMt#+*P-f)7TGGr%sldBOve(_
zt1`P83MoxUR%|NNsw#o3S-F|173>DlmMlyCm~s?HwLyWaF<M@#s8Lisx})P1pYm77
z`7AcBa&vrb2)!j<!{2ks?ON)Sg<G*>L!QD8*Eh!I(8cokCd9L?7K;qy*h~h%i`#*a
z2g2RP?s4Qz#s`jzy`@P>7^_PqVx#P@PMV{o)W;VRG|88)Q3~YQLpFWN9AT7^UL0Md
zST@Cb4ZUeEm6V&h+tcf!jDzxyFSP|vO_2F2<Z60!>M>QzMfg4BM1|uj93YMLo0vX~
zKBL<Wy_sHma!b|&)x2~m%p9AUHWh{$e))g5>?DxLKXg0Ng1JnV8_TPtiJdHaJ(hMS
zh-yTb^n0RiFwZDBecH-`A&*mWvml93FC8nHU9oAO8|H2BjUPi=jFc%dC|(iQ)D|~L
zJsk8AF99xSg*WaGV%uDDbz=$QJg=|DcEw!v<ceW1u!^X+#Iuz0X%*7OU6H{$aUlDP
zXwTeXDDHeBjj+ou>_~~cY3Etwmag-PH_H@{>$Xg;P0d-@Dmf$;>wNbWdQFomrM7>V
zYiPPv5eH>!3tign!1XLMB*#tlwv}mzse8C`E;B@LUtZSwe9&kpAu`<h@dM|avX>h9
zpy3xgqC%t!?wF8Phrpi22_@T^Qm4qe8RkD16d>4GBanoP8}43K5}}WLt-`imp6PH?
z)qSV|UBn3DpGoc9%I$*kYky$UzYaA1u2oDZYi{raE8MCK!H(dW4?xCX$*mPc4?>o*
zT_=(2aH}WIWM5>Ke8?M<D?4BWlS*Ym9gjF4${_XakS;S{_kO%zMVJkXeQ9;k7qqDl
zyv8uOMd3s$JIL_e^3p)zuVx+;d}Zr(>y@=1l(_@%njn7q-h=(n(M9)~tF!QD`eDa7
zw*4$Mm&VOA^}f&_uwmiBau2%lMQ3}jxnI7SyTty;#rkRQ$8~cu+fH3T;ol8IMTGB-
zv8!#WJ67?g#T2!&E2P|3bdJo+rU3e5Bd-OH(bL`AdF1PgKodn}m8o-18gl4i2??<C
za&q{*uiEu~{tN5<Hs@u7t82MI3`x>rc>djAgH87YBH@Ec0@#u;$cEa-8SoM&I$g`f
z*Mk|149}*xz8pX0bR1md+BubUKB`p9i_8lw?p{!xO~SMpOaL12Rr`eHh$8*=ZtGB7
zWN5ymxpw2;jJq?7;G1nGf@j6y?2utf41d-}@r_MM<0&uLGXq*}XO_47R*1RuR#Cqq
z3tM26q^F?O0hU!sh4Z?Aj}W9xpZ}qBeXdAWHSu6!o`HRXJ9<x>biBw7ZTPCnJ~B(j
z(_56N!4EU|@((j>X3#D?r0_1#osHV2&Hg$Oz^OORBy$K2^G@S%%7)1N31j~TQE%OH
zX{pPV6a?Q*lK)9qW{#J%(8cq#08h`QXXcDrf@68)C^<AAdk8uZad4u@)a&@!8zy}J
zhX3!9MH@?K<L8$K2>n}r`u{vRqyGXp{ujAXbzFAv7i)S-?Om8xhVQ=w4Jr#kn2Icz
zDnX{dzm{?haD3?y{t8kLK^31N#PlcUI_7%|4Fh?EK@{3qhv4yw20lCxS->)$t5|_v
z9Jz87*C@erSf%4;h+^GfwWh#0!E*SZgaV6Fvx$s0^YCAcc_)%$;W1_clyO9=80|7v
z(Q}qsAT@2LB=ouW>sAJ2Uhq76cxosrBsC;dTc|^_2ErAiMj3_zlnC<QcVEv<rY8oB
z8Jo!M?*mvrSlEGd#|p+AN`09KX@K|@c7o5f=tm2_+tg*LZ6&r<k(<N4U|d*xPc5KR
z^nByyouCKAXnQ2!=$#fy42|mBfpAO|f0z{+0Zf%ox^$e85`ZuM%l(p!_Rf)nja^JV
zV~_JFEw%;5m=xVV>RC{5#jPyT-0LAm11LoasQZD7kqp=(9yS~G6Uf!i-vs0WCz@;=
zT*%~>YOxA%Z!1kN42S?*?ux!<KKmZS<|3cI5liie?mP(tFd_>5)s19s6Oj|zWp98h
zmJXC$;jgQ)o}NLI5FKd?iQh)2jNV(qJ3A))$H5NnoaMq&qG&@7vDTX98Pl|?BY(GG
zu2*C0{f5of@yEUG&ncyv9I7J@*;t1=Pm5<CslJZHx-McMYg@859I0mOHDpc19%dgc
zrzn4FTZOf3ZQ7s1+Mem%pP~NyNzvoBUQYUb+(G0w976hk`Ot4PWMN=!;rYMiZMUk9
z-68{u&uwjZdI=eVicpu#gb=6*w>9v5cb-LL)sd@un?(I~eZbqTHkYg+muyRlg@;Ab
z=ebi{9M7cFfO?LYhBJ#EaB1-TZr`bead$O)?faJ}>*k#&HZ6a*sB>p!dvp)&>}*pv
z%Z?zah?S2`kE#pg%BV(vI6{IN;f*6{X(L1~E+?#yoY_WOm;2B8<LZ~A%fDl5kM;r3
zDGLwphng(57bI4NoW;lq?l{mo87u*nCDLl!hNzA}Wv^!Vt!oV0IW_SClfyZ`;0oqk
z+W=@ywG){{?EIgM(B(o&+83aQ7A)75f3WNvE-96d21Ec}4cqrFXVx7ee2;c#1*!h7
z&xcqd(C&ZP7AFh%{B+P2QFpEI8urGFcha3IKDZsOK`TMaZlSt-b)Vs=c&MS}IvfPc
z<`_$7o|=HI%cEBlf!AwLU8#qM+A`nu=_Ht@=AWMv7yz?z(>Fu3vXQCu`A^hv{k2)P
zL3$*svVh>mgfQspx>n`Sy>Z<;1_;l1Dr{9IdrE?$8lnvk<xEvlrnSlDdyl*ZBMVKj
z)B2|9Sgp7mgAAd=YU~;>QN8rg63k2`<MzWk*6a{@GIvD*8W1HMOlnf-^$4SrIV$2w
z^0#Y-30Bf$&qQt$L}R2aL$cIm#Udky^LpN4d0GWsU>ejoM+l!u3sRIua9yQ9jJgyN
zR}FgJzp-|!-ra+64u7+kRbam|;(lpO^X`|jJk-P@stt$g{ZqVSM7pixmRV8UPox&h
zZ7O{SsWslZWC9cAyw1~SUCbwYSywLQ(+D)*J|4WGiYI{>efI};x$I>{G(Q9Z+u*fl
zvZx(bIGm##?1Q(o^h0@f{ta*25_h$Owjf2}qF}B{TxaqElSH9N1=i0`OX>MEDwjqF
zmy{y`#gD&Su9p4yZG~b1pS-68mZ6fUol)NDGoS{+aSY`kkRd~|@|T+4()n%h(zL$C
z3RNG{nUexcB#5!$SAV?~MYE}w0YI1zVl*c4OBSs(&zAl!dMAFg)I=EwUUIMCY8?KF
zF;L%FcFBOX!}6FVSk(Qndr0T`=RXsyic7P@`!}v7Wp~&M#0(k@*%G(@@C+n#qwYh^
zwtt~F46G{sYAddjSq@c84oBIV8ZO}bfOQXIiJiizwN)tjt2fNL*zX`(<_J3Gt&eyT
zyL4twuYydLfqw2cegvEC0c1!@b3U+O%8C2=AMnt1-%*;IUvDZm_8(<eCnEz}+y7g3
zwNl#>ui1U1#&P^}lf&E{?=xLTNJD7MYWA=ZJeAc=h%Vg<Xt%{`)d_qhePh>~STUj6
zZOz6kagy^4j^~<EA*oodoG9sXDSKy%WTK%BVkW|yEqB0F_5kmo3ij?GpFPs=kW=#R
zk(dp#e5|2uyA_D#RqNK8Tidg~>D#^f)%khA`1Sa9ez~39UCMV2*I<qo7Z|6&85j1p
ze>}5!+DZR%VfhTLa6jLe#>H3Dv;O_LxsA@%=|Xw`@%~b&Ca3qM--U{r%kA~vs1vu7
zvHVm})j>7Z38dro4X?ug{dh?C@5|zIeN*SH`}^wrB~yTB=o+2N&+EP8-Ouhb>?D_s
zYjd{ccvQhYRaAl%YT|-vxc2Vb1xF@Gf;V$mLj_DibWE-3?~ziGFyhn$5nPD_DyaoW
zsAnr2Tmdr=I|OTxTRshLEYS0*t-_JW+rO3SL!w;JLyRBT#B~i_<^IRAHw3w#`tL8y
zltdAddy~I*cH0?63L0QIJAGvwTWzR)PGH9u2l9L|zlhIaatt3Fa4|*(Mfru&Jt1$%
zEY%@}5MaFB0>{NSc6N60h9XXOjARE-Zlo#q_-QjS2S%vKH@(NA@KR#_Ip!V=P>V!B
zR&o!{TtH5<ImUHtZ-jw#U;vtXzvn<GRuo0Q3(zu&H_6^-xi#3gz}_eL0<$}buYA9u
zn*s7KlRb~YAb8fcl$4axJHm*Cqg_TuDawo3eJPy_*}EpFL?(c>N6hGI&X|gf$^vUi
zYjD3Dato|1QT#&!BC@GJ=3QAs>&$`|%zMV~7P2z3Nd+A+Gfo)b;Zfrj-0%L0KpfBW
zlc!64B(uCDA|gOX%%<^)SJt|qi)E4i6#bht0%Z6`euYg_LFSyaLFjh5`(oBm9RnW*
zuVq=eguhD~a~Z?S7QD0?9uZ%S?Ee_VSyw}!!M%l=8{dH9TQsu=!V8Epl%rKLK195;
zv|$#epYt1iH<VqQ;4nDjA}w^j;qJ7VT~^7MXCC4LC(Jw&`?WZXgtvPImLD+$03b`C
zbR+}Q*r!dkIB#W~4%W#1FVllI2JynjftF9#Nv5R$F#jPbvJJTHv$J!99pM$-kFvwE
zvIR8@^*MqF9#Tw`<73eL!drtdFKHhq`myXjH566XsH%j2=R1vxSct2l1n&)9P;`e>
z;bsyl!;AGs6=@VuyH0hRN&!ec){tYSvj>)ro&<BCy#)nWFdTX4EV}N!Ge&3WR|s8{
z5AWlY&2H{UYT(Kb@(uZoz2GV!z0%qQxMYt70Q=%V<dp?f0U8qF*qecnkv3qJmpDU}
zWzI{q*(o+v-zcaO&dGti@<SHFMw410t-`F-LV;ob2!#9n#QDtW#O%e=f{X2`hh)i;
z$|j)cEL`b{fI!Ynr)|xhEL>bvK6BaQQFjqO!c<M8JQ42|H(q1*()QH#%1P4qkg4Aq
z2{>Z_n}GU}>PB!6p<u0;p3zj_xY_wa;2C)04ASRrFr#^e+Nb?lWMb-!RkVp(3>f^~
zEe#TZsgun(2%v&B+xGj{u|;zqm~%`0PcTwR&&mi0;JCOXj5I6EMQdxfe}Iu$u^8P7
zq=l6ElZe8H%22&>j!go;nv0SB&~zRU4P|1_R6tKCcqJNO!bp!()E5)Ple}~0C;Hpl
zxTE+v%}EB$0H~4(dQrFr6LvNjVc?I~AVM&{FhZ2WQlUxQteR=7>I3*xGc7%xvf$)!
zLHW}-LMZLCM9B?9sFRXtIArxhNk{!nRoG<?A>on(fR$ScchVOTYka{2(ZI!{ruA#n
ztsMW2vhxD-Mv*l+0%tJ=jL(>DU>GAjrJXR;VX-2krWqwl-(}Yxk?JAA{RHX+O8{ts
zIqIcCSEm>Q)Nsa*U@$D<+T$iA#%3Tl#(64Qr4pp-D@s4NbE#|VJdM|Yot{FP0~KAw
z6-Dw1F8dZKd*XDAung&OFlK5~!hBG`Fd*dv{5xKxEvM_vz%L#brlgnVB14s;p;8q1
z=jxb2&OjK7gUqE4vtFS}5$q0xLIipw%q77)z_qc$g3HY(6VJRhO%q!RF3vTt&!KO#
zWP})1qFO-*f~yamt&7<+kAmL4+PkkbwA?iYvitBlhF^eWo7lAs=nYf=N0Bab0C+jv
z+5AeZVPmfL*i5s_=mJ?DfQ3&SDjK+25Gw1hU?0qBM~6PZ40aF4Q(TRn`nAfPGiroA
z0bPV;AU#7GRLP4zPlDy_yh6&~9-e(%{|UQd*<41x!282sbA7dATDKDbnZ9fm)NH^L
z5_Lpev-5(}(qWq?@C>8kOwI|4-f%D`qr<$orm;#NV$C1mhT;S&q9i4sun%C5A}BG=
z2QvByWYR-;qW=(J?*z#OjvK#I(-1^>!$=ePHmZKOUeY7Xtj44ezz2FQZjS0WN)^LU
z=3VqWGBKHASXH+n@CTe3rhj{5XWvDdtL>|7%3_5}Z3}d6G{lFOD=Jc538rm;WF%M$
z@46;ormh_<a3-0+ps((ZIj1jNicffz%s8jt*UOV25;px_=<<@<CQiFD8<wW;k!&;1
zDkV3NRq=kiy1h{*w)~$d!cA?6?|AX`BS3N`>XHYP@(}L`-J9F6t2#{5%27ufWyDpg
zhQjMz$-8kZ4Fw8<+GnNfXG82po2%;p#qK;Ze^TY|J<11B-|c0PU~qeUn1(%3p`?{8
zk1l1dB)DWGMOyg%HGY#so?nB>xxqVO2F%pMt*!%Vk`IE4oUt~DnScEufMbim#J`=q
z={G$jd`KqpK0L`&yevm#WVE%XY)vP?5+lHpz-ii@=|uRhLr$OcQqA9@l&qO6VrI7X
zj2H8>Q0o9$FShyn+!j(R>$h*egI7rd%f(D6A1&)ijcY)!fza;8L783@$oOjN8vl#=
z6dIngiooqfgzDNhD$~Cv7lX+QAlhdg86`ruB*(b5m9x-g3Y806RWzq6B!b8V5-Oc)
zpG^tHiVNV(e!O9hNV|@GMV;3QRS|N!yjHFNK@qkgl%`UklwpZv(HXoSsykh)@|fzp
zN(IQxZ3gi@%Co$GuK2p`I)EG7Rm^$cR<f$newUvHtx$q_+!tcJd>6}8l4gH^lILM4
z0v{U^vG_cRO|aSjraM+HIWg*$>A!j>3_qzjLvO$+48o1Ua=_&bzx6tE3DGlcEkdIo
z)6h+x1z!h8QBWFfL$?#T1-;2~WILn!m<V&tCah?AtHwTZPz_6d!`z?^aEH`ANUm=*
zNI{afL7UhxFdJ@77Z6%7RJHoracXDnRLfrawmI<55eOX8Q?Ifb;#kX7cqEskeT2fc
zBpD31+L&du9(<v&l4a!Io~FM*iNG8QTS*Q3C&*062R&F+U21!qU2KeCU}@%ULcg)i
z7}AN~(uluJAsHCjt71mQEZudV5cUjT;9=AlRjZBJ3`C?fJxS$K3?N<NgY<jVssN&B
z@(73|Rk?#EXnnr)QT^h{aD@Ksr@PWON)AraW-5cTE#hIYfH!&msl}@^at&mpkmY)M
z0io?a5}3hcH|B#8gqUb_7o=iqxCvi1DOU4h7Z%NVkO9x1{d>)1VaX#qaYlhUb5n$p
zGj)zLA`a);Fli;roIXQgy1>pA00~-&8svgSPF||Q&?mtjaYFC|fJ0y=3J2VSAC?*m
z#dM%t%AWt1Uhr^{nUeY^8iOuKD<NsD)!8d4L=@x`4gCPv$BKwrwZ0;}-d&u+70abQ
zp6SwSs&!im^wpxDD1bpBcoQjyj~dw!JlXtcJc{1`IzEcO7KC8MP=6&C2$r*ceX8=T
z&`EQ>(Nd1>{*PWl3xz*(E=4WBAapH=Erws60fjtk59vNQXO0>2uyr0q5rh36t;~(<
zhj_4A@BxG`q>EhPg{JXa++|so>@0fJu7kOE%t>w6aVEFmC{%zxM6rgrC(>x?oGwYr
z9zCVhGo|&b;<-{u)Qo{Yow#;~O@XF`P`Xyjf>(J{^JJ^gD0l6*B`<o0lPz<j+tSnv
zqL}sQ(48Daknim<)v|Ov+SMBx9#kk`piHI<7<g^CaRbKnHmp)95x!B?arMtheDegI
zz$JPx8zBffsy|kq>$zEsw&jA{I#DSIf?M&LsM+!M^3>N+{Hg4}gvh-FEAA21KJ~W(
z&XZ-U7|kI=W2JtEm{9vMkx3!c8#fGL*=3P4y0s&AcjnsQnmK<`9l({3#UqM-UX@3X
z>ft%=kN{~aILL|=6-M+j$O#T>=)y#F{+dk)-~C#3oT#9D8HsoK*b(Nk4I0r-TBF%v
z)CYaiab8girsXE|IiL*oMz{Q@tXg;exAiKx&N)gO3dwPa)WPJ0%}jXBGm@#7#LMWm
zVJal1<;52DRpu0Hn$4jgt4eF<^>8E(^i8^E1>{hRD`VWJt&@Mx3o!VY_Lg~bXk#w?
zm~jZiKP82ASJKX|p{{dc?CIOqlBQ39kSK^|jMk<$%+E6GVD!y`_IPY%V?}xs95Sdk
zCa3u9jCru)u7A6&215}0H{%<r758NCK&pvk>{Sl4mJDI5O)kw~NVwwkGyVT@(t0x{
zI@CxgQ1O74+8{^LOEH*RD6iB=+1MmIl!mG`2B~2L+Y~y@P>6+Gu`wU8vFj&^Jf)D&
zka0lG$N&}mGr9-@Pm3(*$bFTms=d~x05GerY4!Z0whF6f3%U0dyQv$Q`TJ<8+s!K^
zdIumU5b$%J;UqIU!YjoGhGfAWXf`3GTy>rfX84ukHk+@ak>yt?<YXsr#8B1nx=wDU
z#jqE$WuNz$5VT!~)hd6^<fmq*3|QQ8rD^C#e`9$IhW#+R@0<*7y`cO(E;rG=#wiPj
zUr4^>2=fXRgAIh1A*;#W*~NvWd!cr4qbi?P2owsR_Hc$+0iLrsh=8C6@BZtwSDtHa
z1?MPhFg9~_+;5BOu|s>^m#lCB_Mgc+`Q1wl$o#+<+~~84rY9YNGmG)E&8hWLaB=aF
z+2VZXc{2tk6;sr;!?peNHh@UaJ?3atS^|X2?Cd-*@mu%#^8w@d*hK82_t@-<L(irC
zGrH-8Yr6##bm|GrHENEk^uU3QxT>w)K-ucdh+qll)rUZiMdIdgXmw&D%LBV^e7PEI
ziElo>O+wd~?v)7Nv%X2GdP{7kW|p_i`IpI?y09<1^Ofs3Lr0+S8_kwdQY75FuY~6w
z%9h9#RC5Quj5~X*OtRQk8$XxDhD>5UrKHJKMoWZisFb<ZAAU^FCM>AKafWtollo}4
zjfD#Pw(Al*Z_kX>DYKA}R7mtf&Oc?Gk(^tR`23xakFgKo)LtML*EL3$MowpjYf5I$
zRfBw+HpS&!mkd2?k#TN*C7{MjfGFItFrt6u^b<j2lN7i3!$z_E2^Gs@b45fVN`nuf
zsw>QQtnCeRkr2p7vGs8ShZM_t$pi)*!M!CUh^FnKBay-$kAA;JGXMg{jCkO&{<tY0
zTwh2FA|Y`r-tQbFQDUblh5xDohc`~$k0nPzN|1YB0LO1MuJ=mmna2ILz6+8*N8R%^
zXbaSAmiHKQ&ImDerp}ld2Gh|j+R{fCvv$dP?%Gqyodwhi;+m6SQp+s$LwTzkm<D`q
za+X;TEk`Y`1)ED>7mfB0D`(}?6jhLr`6W{k-CX;sSpA<6A+qahvWleb^;f$cjmFcJ
z;>60H`cHE>^=W7wmfL#*gfbftSP_%wWJ{KV&Ksi^3ymE#2K;Hc3Bgk6oQb2WSJR)g
ztiMrGzzkCdUeLB@136?5*U<|06x}1^5Rjdq6x)qA(f}zY=w=Hi@9WS<)t!-N$_CnH
zsjbH#zKoavjxn9tI9vfZ(a8rluQY0ITxu`hv>j|lOLccGaG-1N-khr+Bw-+=X;lzF
z#wsImgLh(}>6C66Bg6n{3<0b#Of3eAbfEi7OUV=upRhK<F-*cl8|I4>mUuLjsS&63
zRQ{A_>Iie?Um5Eu^1VZ@dm+M#-~`vRpg>V1^P>L&kh|sQJ8WH?5{uF9A1H0V)#mrE
z;qu@%!v?3Fs$vxsMg$k7Xi+RMmY@S<Q!UH4DjWtahNgd-48q_JF*Y*!9c#?`Bbgs}
zywwT3#S4s9SM66m%KJ|C)PY47asx}!w_*On+6dKl=(AvChqqz(WPAV#&kE&S&4^GL
zDo@x5pt|rYR>h6+C(3Fkhqb}kKuHnn<J4y1#C;LUM0ki^6|`5y@$Q%U^`vkQk&lLK
zG&vedrtBjFi*|$;8W4>U<TLFYMNPg1H=&F}n^YqF7OG*iI1B1!V}$2nFdIkA6S9V>
zsgh(c1616GqiN+)0RwHfqzdHjv8Ou1t8g*|VLTD!as(@44-{GQaeaRlS=nJosL0HO
zx<BzJz8LTxiTN;&g6%HjQ6-gA40%VT<{{!dDrS`?hVnA|HRF`YW>DZ`;jA18unPt;
z0+3(?xkEd1LtGC~?c|gJ|DHd*3OTsr^n1)aE+q^mcLGxZ=!Je-_4_vKU73BN?|wV@
z`TAY|b9;LHoHNL{W^{M+$A@=cmu~_Rq;)z2xq*i19vobC$N9ys+Xh;NQPihh>U1-6
z4SWGt0rTDbGs-iWE3^&PGKhk$4?4x}^Nj6=1zcm{w0kJGie5G2D8@}?F<leUbsGYz
z<1pRI@hw4o)t-+&a(54AoNQE)EEtMa8AVTelb-w#pW--pM-g)o9C>{UdidiD^}P3U
z2iNlr=I0&7XL}f@cRwoh1^6)+4mW_^d~<Nwdk`md!gSOgq{2xeIjSBvx~umR5<5Rn
z^;b%30P&*~$K0N6TNo{861be`omA8U{gGMKBaX!s0t~2l<RS{W$JQ3&vWcAz%73=7
zssX1J;)4P$g84nX!6JIneCiLc)_XdPZqTjykNI)Ka&^pn=WDNb$K!NstDjFBd~(O<
zs!%CO$goqMgB|(RTwp$4@>merA!Oi7HgvG!+SrOHyK(7T2x3AdOe~3B=zxr?qQj6d
z85ODoc@Xg&IPcl}a8q#pD2<S{QoltC(WO2nb%!W9Ol&m+=!OE>f@&-sb;?wDG*{n{
z`wXaanS~E$6Nk>6wAnl+m^7Ke0OMp<XnK~$vGstrjD#xLVtR3Y%Pgt;%o4~Zf$|wU
z@^gKQ^C?Ju{D=(G#2<Yoo<K#kEhV|4)Q@(?`ba1Kc?AH?(_~q@Ll_#7nqelOWi*gI
zi5$7%De0%HMz48=a&N>u2I+%x;#$qUXcWwL>-NHvqBy#_i)VZG1L|S>qHXoLC3j*H
z@$A%WTSNv<_$S}G*6*|Y?5O_op|ll9P!DNP5DGWl)oVrNh~X5{8A<IgxM$+;Fir25
ze96*ivpjnM7Tu<-QO6ubso;1-2`+~@^-Y{*9T3rsV<qVxE|V~WH^>6$1t{2N+p`&Z
zRijDPyhveUvY8<dT2AqZT^I2y26QWC`?Ba9)^~Y~U@kZaSFM=7>+;r@D~JeL6l-vj
zwJ98?26Os2q3wcM!6E1kNhID#nvND5oT@ruE?vWXI9paE==GYOgu<I$mgpOIhscUz
zw{rkK#!OEoG56$X9MW+4K+vU8VN9@R<?NFDN%Pc(m7<SJ^H_$>YwU2PosjNpd`>TU
z5%S4ve~E9rlsk=qp*#6i5mgVel#?*0HpO+%Docn{s7?bj6m}k3-ksEF5?F5+FE!&|
zH3eeFAYTj9tdMLzLOh3E6Ve|fLj%n>cq`KM%<A{Ld!RG4`@LDpAxUfd+(!_4m6I~i
zS{SE@6R|qNTRD6FfwfMJ<&bq?UCb+mUu;%7ub@qejH3vqDGlhi!kI2kKs&U$Z8!`W
zov5<jWB#m>>3o5PY;=Wnn}Of01(c8+U3s<r=a?-<l7n^_7x_ckDQbaKrp=csPz+$Y
z!0$vPa}9l-Tb9GP47HUK`0A9HVu>rjhbc1H!F&$he7IvJv1Uj_9KRybTBGd4(-c(5
zuuhp|Vx55i3>)(3FLgY)pHv3AO(G;D1A`jQpQQbm!tD{aN`Hr{s*MGUYF$U|ZRk8r
zP$bma!deiXv_Le#v!$aRuy--9FV<=$6nohVD;64tt%W)gfhZt$1Rrb(^^+^dI3o#h
zH|ooVggRT+rHzY9<}KH}doZ&?r3W3CayR6A(RyC`M61HDN{xh6NtoS|3#)i;o@gev
z*4wLTSUpXigcAp4`8LX~xQ<vk@XNLs1u*3LJFY`xr$J^fv_a`d^)36-1<`vhoP<n}
zwS_T6@&35_4qNDL1<GQ_@k{4i;)-gzKUfxMw%fL!bZ@DB5|#XSIX)??4)fOu1Vsqz
z=5u_rz|xG&3k{)&WvGGm1%UINJIol-S;LgFxzcSYgLLymV$nh<P<eMz*1hW<A1HAM
z7ZNI7e-|?Lpy`tuiDIv=7S7NVcd<$nZTKsokr;)t>#r<c@i)VTSdII)kwUr{^nGNw
zK4vX&96tWEvWnjF<$FE-Agg*|=&0}uCne|uc9KOwsotg9RkKla+9skEPXGs5KkEuL
zPHIUz?~ZY?@wwWdh@S`XabM(IMOfr|oJF!cI3nkOAWpI|FB$ERgjqPk*BZ)~&Ch3$
ztT?a}qK4~{EL4OLK%MVj*XdoJOvp!h>LkxdHKR6u`M*JQ(O1PC9`^POuD2XxE5TC=
ztf22M_{)tx_{(iqMaZ4GEYfyv=3KXLn6*6iZf>4lL-Eq~Ojb@0&h}nku&LBG?ki3j
z+V~-qwI>G0$p*h#0>1A!PVfudlHN9FV*tgk4xO>5y-xfF?xxipS%@p#9NA|0M<E+5
z)Xmil-UwyIhZM5ss$PGB5{%T+W``mKBx5;^EVO8+SR|e$OJl~>CQq}Bw|%woiAH<0
z)IbwG{SqtVSrOHO6CCfasydhhNAGJO)qpm<F0;I=mV)%R#hoSz&6}}E#-*5_B8kMI
zXAyM80f?g-v&~foS%UDD$pQBA&Qb01Yy>PSR#k47iPd%7T)R6v3y%7%d)DC!^I)>2
z|H>yCyTEloO8=R?WuO*CHl!6Z5?$JI-Cm(6nPcxMW7yDoQWvAWNno7S2t9wI*il68
zXif)hCSa!0#AYg-%;51cc#QHB6A?NfNA)Ii^VVd;MC;~OjVWe=;C0>eMpvQz+Jf9M
zWvH>t5mCv~jTMh(C3JIUcXLh7ntE(^z{s)W+AFu3ICc>Ri9Xe7RRhhmq}!I9aKph8
zV~wSOu8;mC0pL|0J&;G1$P(NB$lNl6j%<tCD||$wxqVTvY&A7jvlX=*H1FrJUiU9{
z<rCGwO#KC*RsjM-!6)Zei9>+ry%7yC&^;nyeVF&27sLWX{5#_}%Qo9N>~vX_n3UZO
zLUQq7lhEvIo<EU=Zt|7i0vOuyrv>9Ga|jn+%u}`i&rD_tgb83L?jECD)9Ntn6Tq#S
z-RSeA_@kn4XyMBRW07koJ_HHM3^V#Om1Io-04G+^Ya6rV@QzKHM;lpDVoUqKxcbVd
zHlw9oiWG`F#l6KT#ofJFDeh9--GdYfF2%J#p}4z4aCdhr?ixaFdd_#(y5If#CMz?~
zGqQKy*?VTZhn2%j=9yz(1w2(lEMD2!Wb?_ruA=?W*mEH?rzfR6tOH`d9N-PEd;r)(
zUN4}RgQAcp!9&7y>bC~#N$S4GRzAP{3BL$;G@9yD9$Sm_6fbAOX2f%SL=8P<`K!A3
zeEi@CZfvyrifb9<aT7^2Xz+Lzw3^v_qO^U>RK(=xQ(MPPo;lgc$e0H%rWdh40gT?-
z5zihrxv~r)Vj#>(($xy4{n9u5lxHTp(JJ>cs0fknnA18a>5R3RT(9BAtUN8eU!khp
zedoMfNn#e-XnSsQUH2sQXL`NfmG86uM`N-~8#Mda4%IGBIERE~nr-jFeat87z8rRf
zg;108&uk>6`>2@n_L(-j=q;H<`O@b{sY7H@&Ox9NgxqE0Hyry16%^$Se3L8z7JE#)
zcEn{p@D#OR*Cu`7$^p*4(4yl;;#<=4GJ~&%u_0ZvQ1nCrK=GzHxe{XxZFos6TUCS}
zU9dcfthCRt7!LKV9i2A*CMeA_{xq?!hQcQp+*8@MZdcD`sb-=m{|-ZA^2mx7K}PN?
zHNRMY-5;ukd}SJxRxyFx$aqrb^q7N~PgSm|58a+Vw8t*3xJ}iZ5(G3EK7?i$JL8@Q
z<71}L%i4V-L4RwCF6xyWwGsZP*e}3&X8Nz_c|iR$OE&^)Gi$z`b}lamH27ZnJj~af
zWv~CMmTrh?WsFkyHK>|jEE$<C<M+ySbZCP)0f4!7Xlz$i#>3{#19&IoPQ-S^@#cXt
z^C9jLyn6t_1Q>B$P~JQ^Ljnv!@a8TqY<Jg<5+M518|R}<;Fq%ty6DZTRCb&0O-MqQ
z=$}nTTMQBP3+weABf~3pRO?(WoAY+RcH8(XiMiHExbgln(P}Nn{;~_Myvn;DbsgHe
zWMf@Y6%u0stM{H7hZxu{06>DBkO(_wgpJme9%t+ZCWW6swvYi20$CpZ%jY;G;_kkw
zDZYj9V@a(pX_uCT*bUx!^S?vg%TXrT?vl_iTyG-N4joU=n@`<YN%-#ir;{Q5%9Eb?
zhWSS5p{V?bwv?VxRp)KPN4{;t6zdk6f|!|7KiVYkvT8@nK32{k`#F`WKjYR`F&^Bv
zRo7!|hFcu-qzs<P3dVWnO3C73t5VRW`8@X*<7JlHw4T6!(7WRz40>;z_3M3N>Qo?;
z57DfQk(4@ia2<oj^h8Q%o|YtRv|KEgK8E1AwiecJ=w;3$3DODRdXCe=oI^}5M@B%J
zL_~LQBiQ=GO2?W^uAT;e3+MSaH0e11gW1U*TjpRbV>z9G97Y*i+?(5ot!pfaRsF_4
zaJkM;4-~%jsa{P+3k`k<KbQzZntR|bl(hI1*(r2>^4k<yA;vF3Bc&9X?XQ-i#=FWw
zGpxRY#|0JVZAd!LTu&d|9Xuaj1<4-H-pJpBW_malZr;1=9%Nf|gFoBw8j?mn@ZtH+
z9~GvphkZ@te#-et4}zOnlD_SxfEe3lyUy-~1u+%Z#!D!k5?CCPz2!~Kz4>tPN#tIr
z5kuZSsf9Yr-paGTte(L!Y~DX;{|QxQK9q=-mG^gPb)Gz)nPky>Zjhs4iBeE)PCC1q
zs9CWkzUx|4u}jZ(mo^s}FiBVM*D@Y@)HC*=r8pAW6EcDN(a^T+a{6>$$v%3$U5)vH
zl;GJMf9(D6<|xz9nU?#L#XCE!)#Q)?3Wy+^%lKs!B$<!km}A*|nVX@(&15T!P|LH@
zhIZ&NmJi!XmVRw|VEVR0ldRI=_uurSagms9TUpiG8@e#Nwwprql$&s_9c9B~UeaG4
zm~#(l9j%MmF^y=2Ugt<5-g3m!l8bld3_8Ky?=i#A3OG(Uc0pEAdA|2$QQ4^_N-{Z*
zM5H9{W0@k^sa%cxVPQQAEUc%^#q3`e>qxIEJa9%rmh)fK*u>tv{T{;YD%8G`ayY-A
z={ludEJx`pG%+3^tHZ_ORDAl`O<=L)w(whOcn_145K%EW*5zk)S`&V=L6@jl>H-wB
zI+<5dAhjm=fgRjCbjD#w6_F+b$PNy*e(T8Y?)Wf&dg@?Rx0iXUiNEM5saQ0;vw_h$
z8w1qB!c3q&+f}XNShL``OZSkPB#L3{DaNW;lB<;FywlJ0ICh@8<ZU2A{`-Z7#ocH^
zIUjY|KBu9pbuS<|N?)WvXc<2db(iU;oQz*=E?wrwXL5?IGg@@b&^DxF3s}*kH<vP#
z^deEg0BKq4a@~XM(|H4Fr>+3}$T^^a#rmX^n*UnMD^ZzM6#Q0%m6&e{uF_|2MdgE^
zkIr7IvWj1&q&lT;Wp-WxZ2}R+x#9iX0ADFatE~>h7gJ`mZ@%DX#$(Gv=Zs2;b>c3D
zKgH*_^hv`n`<{BF0EorS1|SA=pb7f03UT`6_wZWzzy*BzO}y`teL(T0flGc4d4v*W
zQh~qPYID%T{Z3z?GCufsE>QyqO{&TCSEHv5bCi}0FXWsq-9}!s+3#Zp${qU?Ms6Ou
zIMZlh!fi`k(yZKBhY#z+*HstnT{tC<39I|>yEgmSH&%KL>>tU|-X*9i(a%EtjhZ|4
zity09N>F!qtQ#n{vzh4m2S&Hw4<G^1d%fM;pUJyw<n=dhcoZ+eW=zsngKb~7cCX!7
z=4h@e^M18sw@h9SHgcyV_+#<afapv291&`0G5eu3JZxy=@V}ln)u~RH0y*3&kff&c
z)x};e7;gRZh@K7E5&uLSSkL3zh_D-zU6OxSJ^kPZ3Ux)Er?6_+@<ycR<L~8KtOAHG
zVYs{4T;m&`{QpOT1RT_SOktfLHXUIdApY;^J~KxLS2q`TGq?Xt7d{iVb^UKI{0|=b
zRNqk({Ix34m?JNEl27gD`;$xEOV49RsjxYIR=<5i0>{c32Mt&k#u`JTVo+$Yv)2Yn
zVfZ|A3$F`v#$4$n7D^}3okp@wy!Xo&{fz-FWy);as8}hDwa9;}Iue+B8Lwo3AKy$>
zdLPhybkZ7jU$?)!+*--Qa`4DI%DY<Xu-szDQWni?u$%tUSQ;5zwL(_ie{^RvP+Pxm
z-?`1{fkD&pto4|kYF#&SLtOT&VVRe6;k>DxUr>(#cG5jHX}HN65^D*)q1=2Wf(U2h
z4eAAI7?9bIPokLSIz*b!bMxkH<O0qp>^-D2k>OBic5PGWywjWHKU;g%q?liY00vqq
zClimKFR1E+j3np%8p<+X5GVt!b*I!^`V<X|6QlZP-VXC^dSt<O^IA_|#?H>O8g(d&
zEtZU)sNbh@+d6uW>!3m%nI01~%GSeDyT3eBk4N3MZdJL5XEe37{``!qOLjawNB^NY
zVDLf8d0;D3{C+s;BY>%NUU0$giAe=5rO`gy=t6hHuW|d#KAAfj{V3ybA4Anv$FTNi
z@=N7XoyPbZ@1mM_>p|Jy?DTH1x&>Cb+dJW6>bZ6G2jJzj7=?#DxL<xd2Q6Qd@QnZz
zroRNKK^TnCY8<^*fs1sD(ycyPdrFyeFJXW+<)W((_F7GNdgfmZGkDjUws<w(6)B6d
zI?eo)!D@$>Ar!Wy`6h!YH{;SzT+_QSUpbajZHYcSQ3RjO!8GKy1ji-F!ph0rX^fk9
z8dt#+wxk}y{~ViE6vJ=|?B$wP!1pKrK>9u=_~G)|efhLoVs*8ip70H~3NJdc08(gR
zXvBGjePT%_aSJu_*YJ`Vj1nrA@#XjwxSO{DO@;FXKl&%sJ@2Uq&3b=maMAXLJ^sP%
zcUqKv-z9l?&Vx*kxE?<4-`#@fyPS>LM*mVy&GPrqs<yBE58JXs-7;<S+uQ9+Ns0~A
zqisKjI7#;~9ArAKXcxIw@gIE1C{-vxj=Ysd{hOmlN)uc1OZXaArCYfL88rf(;0l{O
zdwGb-J=ay^#+Bhaq4k_o=;h6iEYj8F46JDRFL<;RIVc(h1`GDJL50RX#%rOiVssg?
zs0%2M=LI|+@)_$s*#Ng(IbjgoFZb<zqDD45fo%%3(0bBum>;+viilm_{=(v~8v^r3
zi>3y8*7+VD4tX+R{xHmJYwyT*+nT+ctH=NSi3QbA*C4g0)8FSxTE}gu_fI7?Uwd87
z<4O_<m3N$`K~;INLfGl!=PR0_BNGbQ<rTQ`cD3aJsph&aiR+&Wj;D`qfu@P7JUMhS
zmo_Mq+W9Y#*uGpWF-=nv`Nvhaw$QyTw^q`iAve;nr|!9%Sv2BX40sEdPg{gOf*$w=
zbd9GGVwD{`qGhTtgs*OHQ=yN{I5-IU#!URvf$C^d`$-;!-rZ|d<&-aoc<Jxo0#kJ&
z*0;M)MslxAKV73EA3NP@Z2Q_V(R|S6%Pq{Cr{HM0Ani0!1F0FL<={D_<M;Tel<O_k
zy-j7?6TV@I{>|I0h%t48WnF`2v0yV0_hm#v_vk?c>lYCa!ogLCQuSW5T4tya_i~Vn
zZx;pCQonffyIjvq!@5xyMEU;B9CM4W>KRkk!too8w`iAA*fj3+Op@nZR-@r%&z;{5
z!pkhP{M>h*H`lGApq%y&9M+hiDvCQ199y|@oXApwqmQd5`_p`XP9d7tf$*Z~*4#+R
zQIuabsw@Q7?~i3Zx4|j=%?fp$GL0JkCE?Ot*ko<U3zd4SbiFeAxVe_4Lg9)l5$Xgh
zelE_rMj<i|KsFgQ@O*!)V9&5{;_VHWS}}NMr1K{`A}6Hk%zBXDhW-3BDxL<?LFrAJ
zGIXmZcdK0|T~!yS(tpo-wssMiwSf!U?Gb5n9t7P2&)F>pn5dd}MK0^Li2H1%#g5<n
zDS$sj{Juj*{^jsNt~T}({UO~kG18;B8QIyrpXO0m)*htc&*|&!{p6yYUEnl8wlVNC
z(LLI$?$5Hlw{ZHiKVtpDLaW?rN@|c$k7`fYBJbM0n0LCfzK)TAZ)QFOEi4l?+oC9k
z`C7yKyOoQ$)v3k>p8;;!8w1lB(df-4)Y%GhL)#hbmSgmo_$O))Gwsk{dZ&TE7ceVB
zlrUvk`ZCwujTy$VNCd<fS3USq3z9Qj^DCq{W!#TlyM9_?|9*~Ejv7;8s4WOn1zxVd
zyDU%@Q9te%5(8W)HjJrEb<za~8M+K<{MEqsMISp3w)Ai}%V|xc{Psf*&1q5b{)p0O
zb4K!jd<CO>((Gg3<GUE1p$JRAa^13`gHFQBu`DIN$AMh`U6mWi4-`{Rj61{*=}uC*
zkFPJ09q;QDPY@7h-`M^=#iSK}`gMrhh#afaL4h+7qHb;ep1Y^Qj<;KcUU<Kfq1S|)
zYz`~yi=mcALVWMvz%K|gz8g}mSLBny0(x;H3c}cj-v?;(#`YzPXGy60X`9qFZ2Xjq
zZ8|jLqLsVukKcyAJ1Mg4;V7hq=bo#}Gjdj2-^PCHDH{Q7zc7AyPk~>ar*mVU5KJv2
z&t;}&e){czmtIV`=^#>0o-LKDg+0rf#aI7_Z{SHxPMZOXAtC#LVimJmt6Qr)w+At~
zHzjqv^9a6yp{#HyQui^xjXHJ!ztP0f=#jV^Wt`Z<js{BZj6s|fPd+i27g?4o&aHOW
zZsCxZpInN)8cdj$lL#JkY*k#di)zn?OF8;H)%G#k)PTTMxSXU#u`JnR35O^VU(TPG
zr8SuJL!hhFMGyA)4fFkRt(MZgMfAm02vhO|JNqIqaSI8Wswgg9fi_pCQrRjxamU-2
zY&+zNkVuhgUGh%<uWYWna5dq+eaGO?x+ZqbrgOypg(tt`a^@{YCO&_?-`&&UZ1W;%
zc@&es8z3)h=3<5&ls6d!l$u%HrTNk?18+7Tf(SlI5DNGZ`Q{np(DWsagEZ7|?CCvf
zvv>LexZ1nvPQ;EK;hv%|5)ZA8rWAu4o*de|vzp>>bny6M8=Rk&{ToBXFAx4F*PyO=
z+DSJ>v>o%PM*q`?$KpsFGuM_kXg}iC{O*3jYx-pJXcO_P{jO0PP-{Q&M`P5s`e+oL
z2p5O3H6_51Wge~?Sb0krQtYKsNh(@2gG5<0p(G7fp!d_(M32d=C?7>cDC19Cv_P}^
z$P=!H5BcN`Sts(%SukQ_V;3<J5Pjj^L+W)bt?l3zXg?1coq>Fs+q)xs)oZs;?P6Kl
zT-m?D9`ZC=(`@s3Kb^HSGHNi|MP{12MKWcZj?w!@3lN3lVNmRrLzg#MJiAD(ZTd>K
zy_(zkvS|cLMT88bMnxTtme}#JAa7+T8XILC*}h!d6@RkR{y+is?4q5~bn^N0yVMZr
zL^rkk3FFNBuQYxTh}XSgbw{KbhivNny#@754NnwGCXJcc&>Y!&8_uBa2{LRejyHSv
z={}LW*sLL)h8hQhkKcpW#t^Zz>$@&K(V&JGb=y=cBmBKqj`@&QEra}pE5mpMyW+M1
z^6qmelWI!w<sZY!`nNokZXAH`vYrWMJ2`dm8MW+7Wnwjv65y;9G=Dm^uQ80E#w;PW
zMHf{5*2Ibg&X_y=>z;Y4t=HM#>&&}I$>&yr-IQ~D;xyyQg*-`piWoa(o)TyBcw<~j
zr9`*=IFgt({nIL+Ht^svS(hS;s@g@Qt||>$%KU99wul_r#?nf{)9ZKBDGqUbyMuo-
zUzKg9Yh>0B#t9?!IX-2rn;Z!$IWtYBN~_10RbJA+@iQ_RsC;5t7nhn?{S)+8msqaz
z`5cV4md#S5Tf&?y+j?*KDsm_-b5?2V9oU<`<zV}cC*z7_b6>8>tVv&zo(D3x4_Quk
z)t~lMb-w5W%4+>6L+`j~mvQt!NZ1dpBHBg#MRfElDKra(Z}3es58z60D%ej)ijmgw
zX<$Y|MyU|ZC<1&^c&I%iffZ%jG}%)c2~PgH)ZwHMKKk)FD^c$Q-lf8Asd8%%2co=5
z%%xd(4P@ylQ;a^+i7(%xuew6^mQU&=cWIi8zN;(*;0AR`yaY58R4t0>XyzJOKmK~y
zDks2yLN0r44WGT_C%ca}F$jywM)1|U6dqeL#)whJ+I<HOP}QEqTS-0`Y8SfpC@Jf;
z>|LD{bF^S2{$!&MkkmllDAXf}napNjV}3G7G~Qpy(|J#7yF(DpAg+g3^@i@eGsCOR
zL-n(_K$Psy30zbp?gW*;4^w)iv_nYN5v>BhHRM0!X<Ul>Wv2?A)NJ{-=e3u5NXu+9
z?6Ovw5c~+IJ|N||4I?Rp(<ZwtUkJjsWfXRMHOx^@Bx-X{Cy~xOhMNQx#70ChIRyvM
zhzk)?s9^t6p+iA?zPg2blya$m63w9s$}RmWpui_lf(W2d>*(OksXTX~u^tN@RG0pX
z_wK75g-SxV3f((4XCZMokz{>6O7Y4Hm6US`$4rN4!kXIs=Lvl~t<AWv;YlS-c^>B(
z>3sg*%e_Zv5-O!07Ye-lrJMLeRkldE&c5fyo_lO=X#W0!g^Lo~PcaD;L%*k`$$xp4
zwMq008)|xLmZHc0tH|Y6c-pqw*AXevp-TXv+Iz&GTm=N8_~p>$%8b^9pv-@##x!iH
zR(}_XGBXVa&u(;NXpP>xT5LQ`XF92KtB4Qn7#Tgch|NPSQvZ=n5?*D|D=5bK=o0h3
z2YKQ*{X#Y$MgZd24&Pmznf>9-V9mXwM>#pyX#TP9ZyLL^R*I|mj)DS)$3ZFw;0odq
z#|<^=8Kw``^@ez~&Y}e02>!WJ@|nOMqamkE8=sx5R_<NLNO=5%=pW-v;1W%QXaXJ9
zDM^ZkcMtEXhYBcti2+BGMoSqt!Cip?<fPoRMjW0?heK4|gNuJ9s4kQCVuX^vxk0Ih
zRT!nAn}6;6Vos^eQafB{p|Ge6+(xJ@dLtb_V<lS;V%{~K2CSWNe#9~zEN>T*{+luD
zuAe>sWKw757GykHjk8+-{fI~SG+&V6gs)DYGg&qDg+?j`NI~66v(=nJ;KgBX$R5`C
z4PENdruUAGU2J4PB<bN@mcS%>ZP$?-DTf7@19DO3@7Ek1OPhO+51a3ANVEJ>uqRf*
z`J2hyXc&*b1q;3{&=|8M32lD^zgHW_@s%Me-EN;jMd>0yl(cpdNZM-FK?QsO@|Mr=
z_R!>Mtppi6JTjd`rh^IeOPFB)2c!JR0YAf!2`H2ZZ%Hlr>SGu)ed~-kpRNsBf8`}u
z=Oj<QRN|NK?p;XtD`+4mNB4tE)jczgt(OStDjYMI6OOvtM&}k2H+zI|sGn2=Wzb!*
zif_*A;G|I}e8;CubBD`O{oQxHBwhc0K^)XZvmj%Mih{dbDMog3MLqG4owo)I^J1IF
zO!&p>r{_;`8M=)dsBRe>6uQoFnH};uU7nE1erLcr!v2yavhtpEqqULY-n3A<bReCN
zf#maNf~r=wkVAdc)1{lze4F|7WRuuL<T?@YOGVoj#*(bq&Ud1k2%Wcel*|2e;$7f-
zJQn%>AZ;r_aosj9kG&t&VVlS)M4$hzD#8vCyIiz2q@7m|oK=bqWCr?+2*e<(Tzt_k
zwK_FXKe5c~!Z)*Mm#grdHnf(bQ&dCn#EDL9On4{FD<^}~EjCoA9Ox^tp?<HV;W)Ek
zXL6dPf*3i87}+xB$DjvE?{{Xw(!0{LY<brGex%g5-Gh!ka<+QdwX?OnVnq0PX1)yh
zWAXW?*O%o^G}+VP`&PWc1Tu;@HNzCB(V9zw9^XXpd>@XV5Kreq;cnH@kV2Ik^MXPy
zt}9($Y^{6L)_zK240veG>+D9~tN-3^vBxG16j4=`a+eHbQ2zdoh2i9F99N3Z`cB2;
z$+V9E-L0Nnajjp+0k^>i&+%2kiBSskzt8X^JX1Z1$BnH8riwn%7}wW#=`5cx$FbDh
z(eXsWwXFvV&6w`Y1-R<Z7WKTg4`mO&xn#6W-#RcK4NM&Ghxg#zv3HCqi1*uuR-b1`
zE#Zy_rssWoOVtRsHQA*c5=;_5hY!ac%G>Sk8i=9JC_}V<s@f7RNid9qTAUS?+=#TZ
zRkJbCy)b_6Btkb@%9S?Xl6m&aiP>-sT_TNc4&p}glVpt`7Ly)XnEQ_%pJCV}V(@vV
z=u|fU$Bu2<6V;X=Cq8<X^u3yfC`SDhR~q4h&xdfrI?1jy9hC=px%!?cJ_5qt2mC2T
zhyb{bnVNOEQba$2@yfqP-Kvqn#dsy#+bh~{aPHkAEt2QoyweDs2jcHjZ)kJSKO+1k
zTs!6ym(Cso?pZzYYs%GV3a5W)y>q6CT*<=bhXxEtZV*hW51=x6x=X)_d#I97%6dH@
zkD$fWLvRj17r6dA#z3Vc+2$4G%1-=4A{r5EOxZN#6NQE8spd|^Szp02#!RDYAp*Z<
z?l;+UdGc{@(N|-M0|$S32jSa?Oy1tDxv{H+d%Iy#G6a`8Qz3->K1t3%w4Q==IjfS_
z?r2pSA0g&Bj5KeXbJgAF<PAwhga9@R$7a4tHm~P5&;-W7F!UUUxnHDqS1!rLcB9M@
zXs3iGpq;>7G~xKpMX~0k!B^35hooIkRdW!^|9#=M0X?`p9CkH359$B8n(g3d{{6qb
zew9>yz^-QBFn?IaroyfD{gnBBIm+^3XF9Ejt*=NIwNbhby3y!|@4;L4;lm0-{g|&~
z*pY1rd9gxIBipCSTqCFAq)fOmhH6BKG~<kTZEAM)DYx8S!F|@EJg(%7Z{IqL0`r~f
za;(GY&EI0Rd><DTM8b2r@E$75Xf_%XmlQxCE=r1|=c%po`Z^guOY|v>upF@{?b8tm
zbN3a>r|#2hv=siv1)rQINGN<C$2fzrwZC*aT!|~3N>ok9;G52yS?%l*hITnLv_bVu
zlwNre75;)xRdxs`Cuodzxq^Rp$9<mM=4Il)6H5)pq24hK4;yAj$<I~bV}~;FbdE?a
zlYYk1Fon*Y`N~ANa#LG;unPTASU~G5fs2@ZL+SBT{piJ!5|UHb>!H@7eH(N0iO?#X
z*P-*@82K6YWDzH~8&MGsJOcFuyiXUuI6b)!4@8U`_|7NT@ALQWke>h;SKo;vjG~Kr
znh3}3w@ElJX4k}o*+?QD>aEk30R3eGX}|p8|F^|tD+Nrv(BR-4c>kZ5s4m}~U@d@P
z?W6v4$8ulKK5n%c=e4sdc$g+Wi?3B_r9LnS!zY}l`%S9tl%g7b<u50DA1%+?y`;Z(
zYpKwUbZW*crP}u428LrSolG*3o8E0Fi$eW9e)drz%SF3%zdpUIk2Q``%uI|K<`apO
zj|-G80fwI*mm~pJ8Lje~L`17a8#Q0HR5VZT-D#KAg|+8Nr|(0Eo>#*ZsiU&f>fAd-
zd3HP|_MF*Q_}kv}1l-t?u`AZ3NE<W|5uGG9vEJwu10c_5p11amRNMDr-y?*Ph=`<|
z_u4)?K5r97U&R6L)Y~K(qfp+c*@05_z10XlPtI!oT;<1f)=q4?){Z>6I8nGYTdnO}
z#B=mo?)`#RdMFAs^M!Qsqp)%XV6(VZ2Ugsy(w_wemV+r|PkvWZfyF)5svbX7IR+qt
z_1+%;nM1$C_npq;tyuFmBy5*XFve7x(W~m?J=jguvk<csk0DcYp;G|Pa0XkU8sB*)
z?6fWe<nibYzh#@2sYb$H7fUG{=PL=9npjw92Hs@lvGe4FqF?0vvFhnej5nx8vF5gt
z@;urqx<gB0yJyk{ynA_vfQTMSi~3T$EzR7Eec6n2A~{P)iNv`&Mk<~mQC)V?Z_$&(
z6}JqVAvfqpLXD*)4bSJA8uENw`Usvoi{8~F-n@|BzrcDOVcdIz`l@lGlXH<FFnQ*G
zDxa!V=HM7Ccd#<PksRoDBvxs6LGIkjD)rz%Ju+SJ!`EW;Y=kUq$;tg&h?7Z`tUfZ>
zbr$6{i4)J}57M9#WZzuo*4bH_m|*A4>7)f&T}0?hUq)*C6GcGbai#6|0<tFLz8gQ9
z<Efw=kM67xYf4R$7xMKxLF$WRC8CTc3p3`N%2AIE!QCt!SBGjD@uY5tcjxfN-P3FM
zPNlA}O&#7SQ~oZog`l-#8AHPUe4yEQ))fC`L%0=%!09(gLCNgUX&$T0r1u!jx&K;X
zoQ-HI+2_%?cA@yH46^aI0!IGG4UrFys5hLVmNm*ULrJgxQ|m%^n!?^+g-C(9SoykW
zs|pr&6Xl@!IzsFH19=%hhd^~8(gFYyx3VKs@BcLh=*b(xt4rOl+^_Rn%q!+V3RgwZ
zc_gObnd`T--nWW9t36C}hnC^!D;vqeb+;lrJQ-tIgi?Ak+}e71P64jL0ZjsIcegr>
zgi;eH(P;nA#h~|r=}tFc+8rC}<i5z745fOjRd-W;YtI$BFQWVN-7m3C`n~gOM>%=2
z^}s_t9}>8c{NykJ+7&m##|Ay0Fj9t0Ga=u<Pg^!M99cBPL&XhCiuV)}!ut=-LZvt3
zSgsLje_Ec4?(r}i4)FMAOYKMmX845Bh=@gr^<@xecizYgzQ;7a|21tK@#}s~JcTLJ
z4~T8fxI{bo8n=_6bt#*P;PdPA?{gh*^5(e{lX1esnkjDWwcd;_N`98Ao(615Eb!Mh
z)F1<+I=A~zfAC8~`P=vvU}Ia|-wie-;(uw$iV2i~_eVmFAz2VC5Mcg76~X>#bnN)R
z<MsOZct2m@C;h#^(FIEe>+r#7HGCdu&Jah0SGqrQcgrv%&q1K@T_N+9hq;PqZCS<4
z_}m!HoPAhKcLLY;St~<gO{r)YqR$q+Af|hz^UwPgkq@rQuf&_Uw>fIXMnAUS)yvT}
ztAEb7mu>EMO&8K9j%S}<miQKA`UlyE?IWB*mOxf~q|NHOCOfFAveN4IwK9+|?2onV
zC$qT9j$g%)!taZiS4Zwp+9DG2!>b5HmLqok^%5YH)^al5cSCcnx}fo4Cd1`6E8{Bn
z<_i$1E*2ufNv;aK*Eucv6ArOvHlCdfPe~@3zJzf~@US3T$=edo;0lhsIxNTtR)@Xb
zfJVLfyoo2mT@{*#(NNnn)f<)Wobo7gc4{pf^GuHWx3hHQaYP#e1BP7z73TibhA#`L
z2{nk}c#e;g1cipzs?LlG&By!XYn;z62UdZm1>es=hmU;WS9h%rJlJAFLOQlRO^*>s
zj3=xyeqOf`fg;8dSfwx0)%I8N9PRw37qp0qwPlFsw(+XiGBmgg6rQ~9=}$nJM0z?d
zyTBEmTZuwm1QQ$MMy=n%c}BzADX`+Oc{IRKNC-QzvY;oV_U`YSwzZpJ5_W4wrhSo9
zZgphl<~W=I+qG$zDm6>3VF#;@`f@qKQ~p0LS|73C0(Vq3A}yic5#dE;ym-6Z<koo3
ze_Naag-zXOA0yT$b`C)o(S|ax%UU&&w5C)adGGf)?vANxu*QzUD`N>#tfL?7zF!n-
zZdi|iwBy%h3^4Qp4)wpu{G#>`tIO3y|MXeUSh&59d<v`dEgSgz>6`IonvgHM3qeb~
zY+RU@(t05v!Da$V3W7^({;Z1i*FrHl?-bQ{;OKh$4E?z!jcklI-hv(MhLZ3$PR--8
zzez$}1h{Dm35Nj(ihVM&nV-l<T{<*Mr_Vh946e&^tKnEy3*&Q){mKU`+r7nH?pB}V
zuKIND&WF8qcLSTIh;vgqJO*HsP$3^)@c((W*o?G@sLFEnA@9vH;wKFz<v{g@K76Ti
zfnqrLbwoZEqmTdjp!K1+yTs>-i)!OS{gMGIZHwJ29Uv|wWUjsy?+|$il(!P&k>(+n
z<$U=pFPA4slxi555fM|5cX?EDia5k}I!42;^?O60?P5-{{Dl0muXtL5Jp^}8lgM+r
zQR2E#{<e*nik!VKKRQfB>}AP>ste^U@QwE+b~k5Cf(O|lr1#xAPGDM?)A?DesD!kZ
z|8INY6p`s8p|anf5>ag%fA9~~??{%sorpJCIh9`}{V?fycc9wqF2w7}`t{(+G84sw
zaG3K2fmov5w$Mv7?*bP;u+N2of(lr$kte6Dyhr4!eMGVKI=LO~h-uqxV$=mDMB7gR
zd~;`Y<|sP-^Ye2>C`f}fjGp_aY14IVhu`Z6>$jP+U-?9Ahta%E_NimWe8sX7R8&7q
zpG)1<6l)r$BHS?=j9lU1{kGiVVxnv9(%&fM()>jSBf^iP&*$55qoIwO%8XO>Vbh|P
z3wbztniP)OF?L#<8J44=5H5-LD1(GuKEJe8bZf&Co7127+{cSroUTUtydxx}&O>#I
z|NXgsg~6sK-aAFBELxSS?ptZgOklKUK5!KO9RD=VrnDAT`cl^d)=#bU<rrqN7WN^o
znQhKRAf8YP&rtlK%LXGD1(mA;^+x^S<;+J5d`_obgZ9?ECC4$Z_`=!4|7dyDDNUcZ
z=x^>PZvO1qeT#eJ6X^9$l{xNB=mpiyVhUbv?_AgJHU%=Bl94hf8&$wi*-vJL;_^2a
zn}(?6<eZ+qiqUvVl$O8ZPIQu@l04{`a2NLmC5>!(!&KuvMmt%7&4)6!a3u1{ZDe<0
z;K2$8UwK8H=nr#S>1<SHF&(*&W`Pg+1s{-A{b#bR?b$PYYMc(~iUet!BmwwD4uTrM
z9nldiSREBXU__E-?LK3g2dm0%)B(~!{(hE&+Z`}1cChTywQNziS>J{9P`X$=7x0B3
zP*+9Z%h7Fmt&nk0uKIn*$tp*bh+0sQ*@&=|AY5Kgoo;$w6nlklG%W^~pDdo0X-pmB
z$He6O%TI*e-!JZb?1l3qq{QNHSxMOP(b{x$*C3HHKn5{hMY#2<BUbXw+CJ9G)@784
za$53P#rw(<Q9@F=<5GBE$L*wqqOh-a>UK?VNQ-@fE(-T*T&%CMX|L1LPzU#02N7n4
zzc&=EWy&i+mH3v-X{xt>o!a%khG(2Me8$j&tlrv>XUde}flb<;vskU?QF%<taTn;-
zbM*$$Oq4v}$87yUzvlX4u^If>Q#S^LgTg$7OH3b(3Ts7~F2EhL>Ok7nSRVyPzZOy7
zg1BxlJ8dI8<Ulo0r_=}$%<6rNFSkFN#G_O^UmUIY4ertLe{a;!i?uqFzrTa4W~PE;
z{J*CijQ-R0%FM~z&C1b%m6M;<i;u^Mhl|zD+QHq6)zZP8&D9aqfu{dW;{hrfk{1#g
zLWDkwMnd4h@rQ+lMMiCsfy9uu4vyf5gjAXu%Pb=mak2bqq`^__y!tl_FGg84aaPGT
z6A$r|8ct<;8)9Alu8xHj%L$87Ar=3wP3VauyMSfKq=0YLWM_8AWIBJH-<RVh?1Je$
z$ccILG@Ry(Uu_b<BRMW?5+x5ENozIK$m)G?r%BirROEzm!NK;Es(_QBW%XO^IASNY
zHv79z*Rd4VR-T3^qU;H|sY8$kd%V<qd!?6C)z`(Lmi8F#`pvLw`;{(x*Q+(kh@n+v
zLDCibhMNy{Hv+lpBt1~+>ofcuqiPrHcO3PrHr&XEw;W;+V)We)O1yU7LtM|<>_o97
zy2L4N%dwS~ifo40!jIxiYzWDUe825JWtd{D`wqln#PHB(N=TBgV{mZ)`enlHTwuC`
zL2b=qpx$o!c^va>rNTYBEtQ(BUe9Z@T5TXQ9K8%(Ncd_q#P7rckbLUM4fg#B5gvG@
zI2>H4?kZm1bUnTBo-o{5O<ms9y?+n@`zAp;#-G|w9m&CEW&qOVP2|%H$@`{c$b4Pb
z*=bb}gdAnkXZYc$hJv{+CE%yw_l_2k<15BZ`?c2g3pO*z>5@?+*^9t%LpxL9$?a`?
znxMd@|EZkB$c_3Yf3sS;^WHWj&LN6ny|ZG!FV(?X<i_{zqLOrTtgTK_^zbkHSO4Rm
zA=K)fM!Z`KzO$s76%+xZ?Ch8fekRlIjW0tv;hm@aj$5_flol$Fx83<*qcQMN>1@=4
z|K?GZ^ElcpxNG5ZSDKbGeeIjuUTvh(rfB<ZQyQ_>12N}S$Uqp^;dUam#@()C*UO{`
zJBvt%pT@)=j$A00@A}L6g^2U<FW<U>Ju-*`bf&EHudWMNnEAo6lamorGx#<cy{rB(
z%T@^MaIPipq1kZ~(=rS^qtUZ6|2_Mzk^Xhn?l{e8p~Nh}z-sWNgz6PfQs4lgjTF5@
zV5_6m?G!Mz#L@KjYVvs6`5A(-f->`JWP)ul8?xsM!ls*WAio)-+Q-ACgW#<T#6owe
z?(WpFp|&AEq2b~qti`s2FC$d1I40ybdLe~%>~aDG;*VNkRQqI7i&fj?H}zEeU956X
zuokhdpXCIG#h(}HamW`(|5DxYG0S-iggi2fubkyj?W+@mpm$V9qNab-0N6jOP-m*j
zLO`>$a!*G1g%lqV<pC1$*G6P?n=e#%ZK85dn|O2+ja08%Z-F-(FbQ08PgR)tC&kL-
z#a%3NLSe=b`iM$*@qr}YklT}V@qyKw;J=|y3SW?4R;VB+O;krh_)?2E;xDpq8FQ7y
z2hQfGUQNW0_j{<WpzrB&{sCc-6W|P~PZAb?5kxAfs-`--NikkjmyEw+ji@vcAE~g7
z=K~{7H&90aCaJD6gF))#bQFO2`#PowXciUZyKKB4lz{G4LUPbg8ruLlq!6kd|NJZ>
z_tF;v+T@iJB*QT$(+t^bqn7hF#Qiae*_(?pLm`92IO!OC86ZBhNmA%1fHeGICOP=x
z7VmuB0V7=^-UUoAmjw)q9UMjy-{}&S%W4pRL4FG?=9BaFqLq7AU)qe1-9i7F<B2@%
z=@fte<Q9MB?GW$MNpkW#lX_sDF`n(^#1?L2ed@4c%H!43_7$t);bJknd7EuV*WhBe
z{X5PTcb4PdFGAzeN6-_Yoyqq=%MHob$s2cYkJHY)VuaE7tasYYmx-$Vm(WU3W@H5W
zp-{qL(%3G`fge^}@ts0su`kw6A5HUy>`)gcdu$;EXt#?lVCU=3=B3+?<j^!|7m#z)
zD>!V_Ho3EX)s%uAcjy<9@~Zd~c2v-WFs`^U@}=13_0&tH&pRyTo!h2lS%YTfVolnM
zmWxQvp`PB@NdixpPfoxKC*sE8U0dW$JvWGbzqR$|R#;yPUS+e}oBPn8@4RPKB_ru^
zP{<#x>LEp8r_cMj&O0lC{_LbCY;e~r@=;GHd$)Z<kAf;^aJFRssJMd0Z~{W>C6Fux
zAr^v6dJ9<ZgP0pgW!nvD%7CkUfFk7EsvC3)!`GEABd-qGjdjL6yjP{^k(ee)<OgWj
z;OsNY)tfZ{tBR<z1^CwYnh%Y956W&B=UVTPqhgHtKv_J0f!7YXxjkF!N&zprLa{4e
zQm=dtU;Bl!hq%wc>!Cu~?<>oA597>U{3jW6iFJLws{MVJMxW?UhR!D-<n2P_o{cKd
zc;Jb_Mu7gv?%n+L+q;M|Z{Oz3lgRDefjgmW%X$}Pn@yu*FMcg{y4UxIY!l=+z=u8Z
zs@USB0q`QrIhL6dyJYh(<udG7N7lIF&_P%J!^P`cvyqk5E^1n{jTa;&;{L{R8a<gX
zYT7EQNsFN&6H>`A_Z3id%d+(H&2^;xvh?hS*a;)mcwtssj{qL>lSjFMtV9+$DrV6O
z2a6)s;WQAYas$Eg;S##FqRe*!%S|Eh#3_Gcw6!8?9r5-;vt4Gt1+%H~m*K4FpQpX~
zr~EpN?MO&X<^%+L1Y;ox($d7nF$St!qN4-C)C3;J;y9jL$ke+(Ps?9kkX(%cx(;d{
z3u`5fEP5UTx54}^%dY1mIit1aA7fZYGIFyy7=1bDsu`F?5njWcz5uZ|tUNaA^UL`?
zt)I+S5B5k>%*Q7uhjMZ)&Gx%dnMGGq#^Y3m*&10HMjTRu8@yQ9(^>>5$AjmbrkC=O
zZW^jN&U(x9O@*yTU}A$R{4J8ixahhS=-RLqVidyfIg2b-scuh~eI5&L>gpnIsfzZ-
zhsisPMMhbD=Yo-*PP_k>_nP{4YJOt$9s|;wHGH2GEuPTc|B3`Oe1npVXy{#c*66`a
z5aDP_$UJgtDham9U#TIiPW)~k1Q89aU=-3hdFe%x=HXCE@uu1Zq8+%r!LN+fCc!Qx
z<d81}d1dUSjYJBFI=L{}o~?OibbM0flHfiTM^qkpj{sj}K3PLVaL77xU`SlDtP@rH
z9rbWSD7=Qojxx{b7<ZxXz!ufJo<9EaHn^Q1?ZCqFQWuZ(!fK%A%tmBs_P}y7m$R$7
zk7;n@bHz}lyZWa=i+!S#^^{yQ*0=0@mGr`)^NY9?V7?E(^Fnm{gLgZ!6=F$C&`=M)
zizVgij;%O^RTzx!C}AjUA4o4t^FN^xBHLut$WMv4#2jfy78Btgjx!JCpcTpVXR-9Z
z$WbK)pXRsouM8#O>~*txH|pE5eTuE#`}~!NrFqow&%CUHhX@t{R&7dBY7)_(ZpM3f
zy&Q@oI`GSKxu70Q`_#WCN7pqPed1?7YVL#im%>}(r$2XpspwZftFtE)Q=#nl@d-;*
z(kM%1M9i|ldxjJuN&Hg5K=08#GhMfW$o~kUe!oI;fr3|eDCs&Crq4oV7)OkUO31>d
zS{v!wvMFT}k(p{gYD}R2r9d-J$=F~R^Hd>px}Mb2WYwV_q$K!N=wn%6pnZ?QGSc(k
z5?=8NR4eR|s8lMQBtaV>YnwI$p<<8zxd6v%N}F+|Ci4oAak)BO#NLhu|7I?FCs@KG
zgB5uIPLqcdzP7=Z^j@!(PF~*qCnIGYi|gS`pu4g`j=DEr4xyWN6@FO`qNbLN%ywd8
z^b?oE0fFV%<OuUnckozu3<YA6q<Dnn3Ez>a*t%#;rR0)Z!y9uhcCi5Ju$sxny!dSW
zpTCVJKU<jZuOej2r;Z33=Xw6#uM_E32rbQONIxxqB3?#veQLn7;P>Vd$04^Obc<D7
zNi11LJA*wpu4b*SfoDiTF3rEk_^NEQ+h0!2UcHKX*68X@adL-5e%bHsYTt6Wv&^#7
zHql?6&Tb5=76Q(x1vOla2fACggY)SnINtVVw;9L!i{MMd!&_g>nbg<_OWX9>MOzq9
zPmx^q8Z)w(%h#V&xEShw956-wne$~e2IKU!e8+fxeB@&p!;*MKB{b<VQ2mmJTePe?
zUiyYIY1%IspPK9O2&s-}32li!rvJ+sMdfa&;_ZS6J?S%D=AT_V#!14zsqMTLhvslR
zd);#*@kuejJr=f+I;8xm!5tds^Wljp!6AK*{?RE9u85x0rMy>d?eY&R<Snk^hCy$)
zd_ckp)z@{FXonL<)hL8mI{oDe_Qd=;-cRC8{2$q&YnnaB!3G}tC&3%*0_}Dv;dfH~
zAwl1km!FoAzP4elP=i{0;Ci{s;aWFanyq?*G2_0EXOCvu$Rc~8oo-<}YFy)-TKJ5P
zhfvo^5>;prTI>@vFkAa>>!$@xHXiPoH;E=9L{WPrGmI3S*mB?#kMS%Q!8M+Z@O<2y
zsAPHau0ylu+oaTNH`W$fay7otm6YKb{TS5{w%p%82SA^aM&JEfQ6OWf&wW~I(znX)
zi$Oi3x%XM{!AO>ZyqICOD>Y!y8S?P{H78Ck2HFKFK7<-$K`3DD3)`I{E|mf(zk!94
zJvM8vQS5i=at6HHLELThjlyx6;*CsKUncbEVb3x_c#hi-$!s>0uKc|6?cW8US!tjG
zeih7K0$}mg?d+bPch(W^WR{Fa5s2AKpaoaUOCS`N*BOcn<aGgrgEIN5;&=D1zK!hn
zc{hMgy!hvaj$93yov{unfQuUn9tHXnZGYcpFkO+HZ!)DKJjAs(3s)VyPUEUL(m|zw
zTFy{&Anyeo^b1hS1*#AH$P*6;1u-`ReuHMco*QsIouC5C0MaL3#r7ZICb@QZ<}PY)
zd0)dJh!U>Kn$oK??&SXKm5acdsM1dQnyA5!bGx4cT@GyZ#jRQsf1Srw*?r~4b==!u
zW^fJ#^A2C#+`?dwL00$tS^#cY-yGINWp)x)hedUEuGWkayljP^4i$uA!9)t}k*Suy
zL1xW>WEiTaIeDQBu<st9w-9SB+j$jidU=z|tZGTF3sep$dwsi0@38d>#Em;VDpqV~
z&5kR>Rk@GvlH93S>ym(}B)ll6zyI3c^4u<zNw)!;HAP=}c~z{mGrqRzR5B;x4F)E7
z;XTA9J=O~ERmrs{fQ#i}TQqeBXRHVI1TV6OszfjHhpH4Wu7?M?_7pI$LVLzy>VGM9
z##0f!{>(^zPRV-ZwE=(?Rr(=G^cw?UEttJp0F|ecyCv~nNDoy%n@47=lAA-oi^E4w
zPzzwH6O<4r>(UW6`rD%)#wPpr(V)CgDtJ(_9r&=x1+;X5x&a4oUcb^@xt(9cdtv-j
zfaIYn!7G{PRZ)NYRSDN|A5x~VGrZQNv@i-OsEU8ad5BAR#A_G*peU3BX2y*>*j1?n
z?KT5`ftVj(iofn~taT~uFgfPByL7H?(q37dZ_-@J!PxYBw`fc9;ZFUWlJN?c0?-b^
zSQAy-iG#Tx49Q_%IxgS`SdeaG1j0;bI1I6+t8{_t0=qzv{~`00=D{(^tFAGirB)b_
z10IxX2Z9HYuC(Yj{#2;by^=k!|7@1kGeW%jA08h$|4G+9-+T`;N`?V*Ony{f6a8#R
z0)_d6-yqD8RXeZ4xV)DqYA_NT?lQ)n{MsaTR-P-r?o6*dvO6O`R3$ye`T1F;c)fdY
zOz=wLfvUt00PGD|uHK6T49M&2$--!q&V(uoC4q}apRT?B$0r>R_SIRP?bi)x2Zslf
zWPr?TUGh6u?ZWj6Lh0Zp`Sui}i~Op@0l+yW?G-}1Um`ulB!mE%S$}1;<Gj|Tx)ZbV
zV)S1Y8(y9@K3-X!UnF=@v*-S^BtT=QMJQl)K9TJojXd@*sm(#)k8iJ3Qu({O5*VG6
z|4~@Fj+OBE8-}5{4`NH-nR{ZN=!N#+n9^*CMhT_g7=vIe%4H2w(mJ07C})9Oy?s^b
zD%Xh=lDv>EE<$l1oM2&pXtmn~I%x(pWL5D%Q@vOp9Dg>4q{hMA@hl(@g!bg~$)%a=
z)fH+5T)euL|LH~WppxQ6e{qri`S7&`7K(Qo)K{qIMvPa&?T|TzwI0aH-lO;PILrZG
zS#cjOZ!s1X_6J}N>A1g7{1K*yMLUT1pU4Jq(-Cgm{#miq&e4j$B9OHH>EFX{ZrsV8
zBVGmlwzw6#D}fCWSbUeSTc+&p9myJfjDh|OaD)cfS9e>wXkdipGCQA%c>e+wyFe9y
zgHBK;;NtajY0}O9D+N&NpB&l-@I7wT-Xf8D{y!LUz^3av>;G}dj(;*&AN>!$0IT+W
z$YE{_i|_RYn0ZP)0D3#@|IzahZ5(%U@6{gH@!&NKXNGTb^rOtdny4~N?ML=2ne*Ha
zFsfeTV7lMayFB~7lq5Fa>*whz=YoCd3`ZfPu(Z4y#{@Hw9=+l3b!f|f{IVYO(fS4e
z)UuxRr+dY(s`_ufOm~H%0=1lANdChH`C6CqP9!Wm|C=nsiXEH9VNMP6v7;3T0C?yE
z^#T@K!!UBT09rx2-jI}`r+-P@?9nezcS6e-ll}^IgMx&<(h2$jme%g%%0NjifJ{*4
z;~j^9JPEYn5EdHyM;{f141IGLu9ytFT5#ibUqfLi{Qms(LjRYjfF4lUos}D<I1uI5
z-RghiTYvj(oa^hq@G1le-n_nNcSd+n`RP^iPg5n|N~S9=!&gjTlM4(C%or63%_A`9
zq?nv_gfa6{ud}21kFLy?u5FnTa+?PL-3AD<OV^pTm`d{>I-NCOk+#+cQKW;d3uSbM
z#lq|<kf)dB|HL@M71zIf9R_YvX#a5%(+-2t0;mV!c|#Tc<C~Z}xr|o|Ft@nkvwvm3
zLOtX6#fD`U!Dc`<2%}w?>%UySM8iTn<v0|aNk>sK4yCX3SEe%j57qkMEXh_7VE>gK
zSLG0f0@@2HgIN%kr2;x&@v*!2s#MGN@0ZQbH$R;0oQW>Z<P19O>_&qy)Svihow1ro
z=>vS<*k{s<49TqiRXcln9QS+q>6Mh)=#HxbPCjJ6N;9%5Q)u_$qO_DzY{i`Y7>-MS
z{!|0;Cg}<p)S<m9>U#9X?Xp3rk_8Ul{_@kKdlg^@XedJ^U*8q~y!YdN;FTBhrhOWe
zdqIS)F<$0;{*lZ&JN)`pG|pI138NyAVl$u;r1zWzLre)%7q{wmn#VtyYa^%7z6dlM
zJKHF+Gi>G!h8cKql?4o4dKGHfAOOlXUU|{I3ROMm1B<g|_qXC7S7Q9ylf7KXp0pI#
z`e6hZ`oDYfrOTOwkbZ}1Z(!0J4(w{tQ*5R-^*NtC+2wS~@4U?khz6-Q1F}Gz>~yf5
zfDs5nuq+zZBnith`|MXE42G|`l#{TuPcaN*^)-tJbLc8d<!pp@un!g|=kGzIMmxHq
zU+E2n<Kwgxd|wG4RFb?_ChIE_yy&3t7ImkSV67;St;*DbdGhm}mxyRWbNFiHDW&oz
z^h>JOS;GCH^-DOrSBtz*;)A-zj-D5PJ#1-@6HVA%y&+!{)rBo?u!X3t1yBppW8XSc
z-2vBMsqSzHy`lnnUH|0|SJ)!jWOXLBGv6+RfhXV){sCxta2X)*YuDrb$E*5b{VGt^
z&SI)QKSZs4Q~qU9VB>=B{BJ)v8`O3cpbN9z#-1aI6xl}4dy6TkG-`WUcLCCd!4?O6
z9JW_hH#@dhd-pD44#OogVh+ot3A`3!!0+x^L=nxcBY4V>mtTVPkaCzW-@&uvKUToA
z<9HQylfzHqdWClPSA}Vz`sH+&A?AF%v<cc|yd()CLT%UFl7_Fs^Q!3<hHpY^SKFFI
zZI|DAKxx<68b#coxdbCtqPFXARls|qwkvHhBT<k`wnqhRWR^gpaGKS&oZ*Q?t0>to
zmEl$Jz5aA3A-y(t69h$Fh$`WE5d{^at<k|W0#IG*2Zf`xt8T3$8q!>1A)RA;VFhWS
zyjTZmp{}u9G6hxPcr|qQKg`Xc_*Hb<B5kN|xx*7}^6ueyIR^2fzR(BpzH5)`&P1Z1
zza$KD#A{}{?1XnDcr=4|#C!CH=S5%et`Ag#zxa457nI9>X%!^Oc=<l)fe6MIGK!Gl
z76KBCFL8JkLYNeSpg|NNrL7R895$ybVTE+~F4e6T_)V%yiJ(E$cBw6*cWcy_T8M_!
zmr+QDjF*athV)KN-DOB3-?q5njXqxL1{pD33IrK_aEj|@C-N%jW=7heyYvd;MH3R=
zVukNg*edO=BJ?WjhGEL=UiH_qi<qb)sFvT_@lB>h`ad*%by$?o_qNg<l9B=f(%q$?
zAdR5(vV;goDlE++Al;21-2zKVE!`kpF5SI!#{$2{&-Z=*+3T8_Gv}PS&pk8e+UI#@
zpy@y~0cWWF{)=Wg6%b8F68D_8_<zx)!i3>?=K;~Yk7=90gyyyhVM62EoH2nWc|W6n
z*u6t@!}0#z2E?BENX0Lj)IG5cf!}1f9M)!wA#1W+gQiL0p58`_aX@<Y8bHoFt}PAY
zJ_tY#THR)ZasR9BgI^(T(}(2}%tf}Nel#)TqEj9;QC#n^HWp0T56fd{fJYH+g}Blh
z%M+Lkd`C}#xL)x9$X&7daiM8axu^c)5AV?rv=Q<vd$bXXD{g>9C|AE^92AkC6h;Qq
z5uTqH1_0a)TKSVJV?RB7X(Ir*5mNUuU?3*!N0*p@Zy+>Ba`zU%H(BuV5E>tedw3fa
zjxoiRyk8w2io>rCcb?5jp>!Bb2H+Ns!N76UjTTMm9@=Js(efJLT&vOYF&Yqt*M6<6
zM<4x`xSZZB4`61nIRyi--B$px-4_AYpsj8Am?oS@PyCYq1y$)^P`?6{LxKGCa8Zu|
z-@F3>+*))1+{#G++-xy{yEZ>+H_j7F&8c^^Z81WpHuVD@a%`s`h63Vd7^bIln|PoX
zhdHY4L9E$zxcf||o!X<wSGV33X1LpBZyKqlE6z@Ja~CM~_$#=^h#u1>d75C)T8RqK
zcAQh@_@LS8&w2=r$>ND}FErU$Gh)#?bi2oo-Q(HmcX+IgEfR~)#~t@%HPhPFQ>;b4
z_M)Ax_<l+=x`-pnJ=Roa)egnpdpj9@VQYH%`p&xbkt-iih&R1dyt9@gaAgDvDiyg}
za<i8K3smR1K4Q~b+0ftNZBan`60WNp&~8^TqI73Hf^mxm6v!)XbD_U`17seZ=gQ#i
z`4utlBik9i-#nn*a#mOXdXoKRsDUPoJtm;(w7rGoJa++qPk%DnRj-0i{?0o1n~%V*
z((Rz)C$Rs`nCxR$I-vAoTH&4CY;b!E`FZXg#dI>@!exMu#IBN;*tA|2^mm<~48eJB
zGwB}JyN68u2h(1_2Qa$SV?Y{hS`U!U#JK$oc-LtP4!9XJ!M$(-3U{X9@SCv~+C3!T
z)*Dmy9O&;u4B(_iB`?uw1famm-v=Ei;7uz7o*tV<1Mozn-6{e-&rO$r5w+c5OFac3
z;h3fb>PRY-06QbtUc$RdK*%_NJ}}ehSN{eiLkUQILa*)x1T?>u0scn&+rPO3LgfXV
zD}2jU!46bi2Be4Gj4cvgyatqsR<HxIV*WltyK({N#I7`em`DZtzfnE%!UGD*6@`Gi
zfC8Y!i*<SeK<6?*2K~PP)dAYV+cbcfEa6_10e;MwjsU&`0TKmNlUG;)s(S-`q=25}
z({6xpIkpt~d1enV9J2q0V*vDFG93XToJo8^2SkRiVhga==${^W1Mp7@8;~l9nmGkv
zV{aS&HxNuIVxW$CPYUn@?B_!TsFs_)2GlH={^N!tdLuvwAUv2wt%OL%J$b+nTT{OO
z@s0Gq;e-P{i398v?ySo(=AwYGFz&qp`Zu<lMBI$=qBUXw`q`&d0h873EwliE$o9N|
zf=-(WfEokwMKd7$&Xf=64<^3&I{6^=S8kdJFq3b(6buNUUEBczr|rCex0h&*09k<P
z^c5Hy&NMNAz(~``9t9vkX8Mm!(f<2@YXG>c|3wD`G~AiWh5U<7EnvEta4#4zP1|k~
zc%x}{7XS*q8G{n;O#xz5ZBT&Rch9Gz0X2+Rx9=uL_IAQf>x$zk5J!ho`T>#=Q}L^%
zdVgdt7<NC3qMoBl6BvJk){!ORzB4%SoZT~7J(cLg^cxv*<rKbRjmlr3g|a=r{uB>4
z?O%8%ErW4yDYg!E$TZY-%T1G=l2Yx32bg|tWQo^t3|nyHpX<1O(J^i|;N0T4UvO77
z{&G=E{B5$Qa?-o`DVF~Zu~pugMMj`y5A~MDfJ@1##ei_hsb2SW_gV4hox_BQsXv5f
zr;9;9clQgvXYxd`C>rIhqBy6nRezl-)jV*7(66>&jNb*NZ_sAdci8QbC;6?ayg${i
zv%rPCGm}=mx)v?;Y_v?;a2=pOPuhuD$($(E&}EcCUrB!bt3`A=RK;MVid$x_?o#Wg
z8NzSnavJL@=mkrvT@2I>r(eb!&N}(XV|vB_7rXgrg{E7?v@)9h<A$9!D!u8b{n@4m
zLt3tUTY2@jGH!FqF_RZ4TKz8Fht~y;!3zny(ghjO9lo_wRsJ8!uT)P(lV8zRO+FQ9
z2!ZM*RXVe)zWbt--b(<vGl((xs@K;2F_6xeDOt<O<GXRfw*kkn<r6NUN%^l0)@uI2
z^m^TEa&5=Lk_-jnJ}oAA;d90ee+-$rQo9p|-v1n`Gdupv1^dF*O>sPFRLZUR{v~>y
z+tQ<Jw!O=Yo1w$HdGjBSDIVoNJfiijA3RC>5q)!Ap5-OQwT+m$)<u*~yL3|&MqKq6
zW3@JQ;USD&D@pOZ2nM>|b*6Y&3|x0x=zuO2+1yK6Xp-J=iVe<^+VciXag|7CI;wRP
zhq6G$<S;UuXb!9HD9a+mZFrr{6z(+Whr*H}@f*4i8sO^H)X$O-IaEtpr)zJq_Ox=X
zx|IY0XUp|_i60ge2$mfZ`D^GLW|*z?fbP@EDHMr|{YDVVeynsyzBUZW;oi}0UPoy5
zWiDEvl@_Ld$!7E*y?YF?peL=0mI;h>flt*4i!OMFV?Vbt1YK7)P&$t!OuN`BsBpvL
z627*Um8^=*bx!^TXXn%XeuDwuuWQww+j%U4zMTRO&i+xXaW1;J&GYm;$*AY~Rq;{f
zd3BAUFmfc|VMsATZmweP#{ic?1&5o}mnw@^A7U9N?DgXhX^YPfdpN1@S*7soy#|<H
z42<eayJAayqOa^Uz9*Hi?|j~(llh&_Nlh?0e>_|7`g(v0Gxe3hlO%)YW=5%&pN!z}
zW;1pID+TYTdoPI!X0lvAv7~g*v|Y7)4=BxOKALqav2`vD6{HS_&P|$$lc#VkD;RaG
zyxOa{>EOudiF>suv**5xli4uX={i}f)1<a&M#&}V+G7#SkrTZ?`^c6zSd*wo?hdQ7
z_vjjRb?ED_zqcPMA0$MiBRx`U=J<z{2sA`g?1Nr;c4m+r#`9SK)2x*tt~upti(0}j
z;qR-b2?DslQ7BcV)cy;Lc2v=~9b`}q@oi+Dc<a0Jb(^+F7dyz&@`7%~>PnmINbxXM
z_en2<mr3KAD6(u)gG$o&l(RNmS92Tf()Pt}H&RQa`PAO-@O?^5g1+du2&V>%aD(Qg
z%ce{vDuJhC_we!711w60sczC%Lrb-p&S<xLR2y4p9XS&A?4D%mv-FhiHLcy?aZvjU
z9k`5S_Y9k;rR?_?!*U6?(9hi~V!!s6DyO-E<)fu7cyHI)+RTDYI+?sS)P+AfTFfMh
z-ZVQ_=N2C{RE{M{>YuZ_FBkfxSWKcSvxA6Nde9Qw|0uW0O{Fu=fzxsK5%eM;xj!&p
zBZC>jPrO_@=C|wxU5ay!Rn2~Ohu(AQcv3u@or-E+ITHiJ&6vP>+p3UY*2uue7cn=E
zlxqHra`^pN7&WI~J{JP_Os#8H^kvVm_P)sH<Z7wlgPKNuTvE0+GE?$>R8!jfyYdY~
z3H4>)#-4U=Qtj&4{_Ggp>=?KB4TIyjC3|_`SZqzyA^Fxfo|wHJ9rsn_Y^ceZDW;&H
z7lBkYZN5<fy)2!$w-DX^4mCpyNXk2g(e;h`_2Y24SPzba$8v3!?IK^9*R4OZ)(|cu
z;RLDO&0I>oF7z_`UluH?K!^2KA?<(Fhx}n1bQVXT@_I$3DyCGC1$nvmF0VUy&q4dv
zzBLAO`=L>T$~BBEdG(T&a4U<V2D>3A_cSbm6ewk(t@!+}U(u(FYr&~nzT#1mi?>0@
z`f&Osw5i;K0+wiNCAQAkbBkdYZQGqb`TagfXXQnN?ace<W2T2?H_<x^K&Ce8#>18T
zV`&A)OT<ButzAp_5QDrgPLn$=*CC)sqA65eh?{X)y@Dxu%_T=i<;6v8w8p6Lj<>4=
z1yXF6ja@jqLW$Udr1t&N2kvN=;L5$rD57qrtKLlhyJ+q-zN|C+^Rqe-)~o0};?7Yt
z6|NuSRZ2#py)nL32M_$$eD-GdVzI5ETMJ!R+{?)%dc>sV7GK4L8uT+t*M8rHZ6qB*
zo~1D*4Ee3U6iqf0?ex7>l(XkbcU^s!4-cm|xu}6&VM;ayGeRTjGuY{P^E>&DJ9%C8
zDTqe$J1-g5AwQ74Uwnd>&6$!pQU|ENUhf($SUzho&S@ZEN=9N(_-gUppK=|n%7ybX
z(ocd?`z<p!PedB%NQ@U*lJ$g>3D-}6J%GPqKDR+ygSR=*i7G}lbyHi7w?Uq>c>Qba
zW}G6gRLeLhC~n{f`aC9r0QUH@m4FZxMm6(E700v6K$^g{P&4a6bm)OkUs*hwbJ(#V
z^M=*qy$u8QmokASZ5$u^hCzh!Zl7h#a#gCaq783!tSTR+r+@H`YdfwiH*dSeJK{>+
z)ZH-sVbMDM-DP-81=k9BnzVY0(4<^bWMa7QRXleyht7C`TKkyM`Sp=xVo<+vVE=2=
zyT%+rVsj05k1vFo{oLo}Ytjm2mg3(8_u55;@(4QbI`zzg6wse`d^vXz=q$5qX&?68
z=6cJvhZ{#3^i+`>g_m1TE7s{~K@0hj)O@Nrct7JPaQned$Y6wl<r69OT_?6TCMh@3
zYm%VT++2AKu~#YwvCeYl{d|RAf*{+fMG9$(SdwRhsukqW8=Bx|fu)W|6e0w}e{P?$
zziBk!L~qZyqMfCsaMO>DZsS>PnqlJ4m~4NEBtl-Y+9^_sbd)mL5x3inbi~Bd*h<=%
zU`>#@b#<mIT)pq6zv!N@YaXS#Xb+_KzJ89b(0KtRwOwX+8ZmHun;}Lg<i7=XmM-+>
z^&sNKeLTWGa%^Wz#_TSbOtDozo!LQp%H;Y;=7$dHoL>3SSpJE~uIrNa4v*FNR56MZ
z9!3OG46g8=vCH@Kczyqx;dI2D!r)s?#&cJ$stRA9D9om9`a!5b23-M+*bmL5UPhO5
zJYuKkWh`auM?1dH7hC(UZ3G=G^oJx=8lalMnZuQeho->{(u%<}J6f`?>9JI?5#Ze)
z!HLQ3T)x>6<=+T51Q~j&6)!9;6P;9iY~Pu>np~{&+d29|qjr3}W7w9_p#`UlA%Qk{
znQ6LrA?apR&VidFC)>9I11zdj<%`Z7H9BDJ>(fcu6-;kkHGAoN*XRsG!r!}#@}E0j
z)EKJp_!YV`YL>lI+aF<xG1SMPRP9>SH2YHadM>!)v1@0c3xX+PXv-T>`JFkt2;53M
z@W>%7;><TFU;mn87)!T0^5)#ADP-E;bAW=nCyvi1+f^E2s&)0*E{R$Jw})T4{3$A`
zxbf?`HdOL4>UYi7(0a;z1l%FeulG6;o`e8Lq<rGup@|C6>59Gchxy#Hf<o1TZi*EU
z5Zs+#GtuzBRgpBD+b7^Ccxh%l4C)VqP~i!@f1vGDUxr7GOh9}X_;wA|qS(eEOOMBE
zqQ!Qf2n@Y<A#A*Rv@6-DIl8gHzVqih-nB&o4Ed?F=*5WaWKE*|<iOG-WZ^ZOJ2RGd
zKpLdyCJ@xa_!g0zSCW}kq9g?xiOmh2U77tf4w+Sjrv~BJ%#Mnb(uF_EDK8p$f&BFi
zuR&|HhMJ4>R|77D-jo(H+v)-uuz|VV=!_>O=OR<NdPZ+#f*LpR$1VHEAd!vQlT$CF
z0>N1@A8;J3-B|Bu%I3s2%>^H~e~6j7KMblK2Qw^+!5we`jhMZ8Qv>yfM^#6{&j_=9
zL1A!*jq@5wBSeiy1&M-iU|Kh1!x9On>wFFBCCas6-jTe++^PDNH^5ZTKo9DaRYHVR
zX5zq~$i}+7YA))&+=bIr<m9O3anZRnpTS34gU0LIk+z-2AU#HbppST$EhEZ^-3B;}
zP%i{N%+l*ZQ-bXb!uNd+8WNCCm7|vj`DWX8(R*Qn{x-+)qHlYCE`}kg@xsDp!r@pz
z@W*WBADBVIcX`NBI*?uqwE}Mszjwb?o^2-`2oXB)1|$}1F>6&6-jiECDWddNuPNmd
z<2ZzL$MCE&iwkL?tVj3$?VSu9cKTLtwYSI?!?+0w;yNoApTyiJtHPslv1feVr8Ogu
zjQD544ur7WcNt>ooxLlvT>*?BTb1<!Q$9U`2dQ^4hq!OEyh6l9KL^=pF|{;8Kw<!v
z`77K`S0C#mE&x^89QlDrm6S5%E?<w<C4G?X3cLdo<jh9~DP!)n9<SNd8Q-|`bEzR9
zAO9H+GrQ1yhXC$S0F_+6g{x%Ad*Z`40fid}uRtDlxdoFrcS!TensbYBh;0&VfURfr
zgeQo$CEA7c;|@Hd;r-;ftVFGFHmvMcSx*zj^-k^dl?$O4R`|2k&INy1O(QF4N{dO1
zdkj+65f=7!PZ4xk8JYU<Yqa%k@+HeS1Y7_^=027uV8cU<zlJ*uO+tJG0G$hB@4<Qa
zzylUU$f2@ce#)k#3*lTPF~p}*b+iTo@RyYHqedtU=~G%%^b1sEOE^~)-NJlU9<BvA
zVQU`*<I;^_%IFwcgC7ixLVnEc?8-;==asM{5+Nxr#dm?it@kvLy9gL*t1up%NLU4K
zm@RJ{4goCzBcBq@fz_FPsJyn!_U+Drk$SyFv`D#tRJ*Ci1%g)a<(NRWhocaVFF7!-
z{&&|HkVtEQ7z%k@25LeHE^lIC!#S`u!Z?`q==lLNNRMiKYWf@8wH>|{oc#SB!nFHm
zRvoUf1Vi5Jp)q0gz9MkjHyN)vbOj-Nl0)DQOiH~blZofJJD!b!E+0Z|Orl_BER{IS
zSfV)a4ogt~=qS-F1f*w<9`Si56i!qbISU$vknMa0Oa)+qlEVciz2B^1At0VfFxxf2
z`;GPK6M@~Y2dp6M78X$17QT&!0;0kWn2@$^cyO%41eXnY1?2N>I3}&>`#GXX2u)HT
zqUpt1Ia3jGUvb<rJs-(QW??P)Z6)d|#f6a4CB5nG<T<B=VjQeajt!&;Qze}+4uhFF
zxJ0J>Ru~mA56&xjLNjYA3POCf`}Qstz<fLP+<&wcD;I`Nm}k3U4~LcC0xwI8=setn
zxEMH2KtPKc2=?_N@9%IT@7M4ks4Dzdw=h^9QE@pc!fe%;WqabPtVb{WySN(;)2n=}
z*ln)_QkYTX@iN&43lt6XLCSs<BjJh>OhFxlOA2tx;Yo;PZx|f<5I4KxFlo6CXY*Bn
z&*lUQ%K<taFS1~k=l-xJPh~y)_kA*N;4n>K-H1cJOU85%ZhFUa#y2kF!oD->Spq}8
z62J=VsM%u!**Z)?WW2JAY)K>(<6+qVBjU=H^-@zd%Yn6yfBgJP^cBKq?m38U^n6tw
zggDfH_ikrS3sGj53%&RWj6ECHFZDKA41_rE^pGbA1dmEuQtiy90wnkvQe;af!FC`I
zig$~LZ4t-8Xat7t^N@Hzgv9Fb;D7BBUAh$%=5&gXG_T=!bvdv=qZN;fYWWA6x5$M3
zypqB!F6D^qU1vi*(Ky~i9yqMe6;2srVaBp+SQYNFe-q~Nv`biLRK!k_@>Q2cbQaP+
zI**H<X0{&_4*N3wD3?>ZXrN#8b7|Iq+#`q#SQD-|pM&)LT}~3PB{V+u67GoyFAaDD
z(gakZ?|Qbxy3otLgpYR%pN@&_nE*~Y*5SZi?PFaeva&(Xwhg}#^8fP0-}TI}pPaP%
ze*Xq&V*wcmxq#%};0hFFn%6JV=h=1<fDm^AIWV5}?HNC~t4ItCYOGh5vY89)6@q}9
z#l)DPVA%whsh0}0pe&>(8o<qk;38Y}xuV*_!27ApzhEQfWM?>x>rDhxTt~Abu=fFA
z&I$w6T!R|&9RhoXTO6;d(2iiJje{bhB6>_DC%6cCh8+iEv$l2{LO|@>v8boc9`DZf
zitbKm;@%<ACa0p2o?d{O9a(vTP;yuxBH0-zA^dW9g(MVpe9qV4CoRuGKg?6*_7p&^
zz;4mahy(Zh1E0;xmWeAz-jLFoCcvLUJZ2Pu@3}@>hm}B-#5<Dw9}wrZj!Z#n5oTA%
z`+3OyV!-X$9e5NSZCx%eXK?xC6gUPZDKK=9XZvUe{-rw0cKegE9>MmkOEPRg4Ni~;
zTxbnEqyl)ESQqH>6cbczPC%hf?Vt%mwvmJMh9AAt!;<)QUc}`nwKIDpu@go<(S!x+
z>@g*MJvjY*yUH%kg=5sOrBw$3p?57U+Ey<rVVo=S!2k{1X2Yf!<6zl3E+D@1C+0<W
z7@Z3>iT_NDoKr!{p7rjQ71=^$b|lZ9?);&c_!$T@I|Y^^JW)Kj!@`Rl&hJE%>Z6H%
z^jw@!mR%K7T9IOvZSYu;Z6|h~?a4<FB2y-iI`z`LUKeJ&{Sl;hiV3W%eF8x)_S1^+
zjt1W7luu9LK{B<3z+qOeMr)h`@=EY%W~V&hFbaT|34}!he?)iZ*?~oqVOMepX{($H
zvrVNA@as@Nih=dpz+oBtE<V=+3%$UURxnc5>nP0QGE_SybRoQb1Z+PulCP4hHO4o9
zk7A5qFeDGK8vTG2ag`7;fMt09&GHna=lv%Tf;Lv3;0rnLd8fs0Tp9$lHbMotmdm+)
zWTd4hj({Mc;~!oWTmz2Y(S|=Wzq|E^Z7n6c6pxOoZ0*2Xy0EA}oXGAPc8Ko6d%xdL
zQ9%qmq~=AG5fq#~F^Vg^>+p=sJS68n`!4)D9mV*Y^V>wvCE0t_0C(Q?7K0}+KQ3Uv
zj;+tP6NUjQ-`a+w{!K|lE^G?9a*fE9e+ZKY;fuw?*2o~B>Mm-Pi&39%#L5U*C>%C4
zmIF)cA3J8+g+uUn4ClHseM4<};$SQK7^F&zWG?$&n&XK$^xG3aHo=-#vMDoJb0On?
z&$@kb`3ht!8v9?4Df6BBm)nHr52R$qFQnv`j3Qfse@pwV>~qkq?8-<huynXhobtIu
ziZ^PEZh+W#{GoaG0(uCDkZb9S5y{CK2)*=!=j&}SkfQ**h4K^xLS<n+|7LCF)A*F;
zC<Q_T;k-^={S;Dm_su1JaUj$84UlBIj-8ehYw3aCCBOUo;W7QT{40d{p8mU`!yFj;
zVaI8CFfhkyfz#h(U`@DiSc5r1S)_3EERe>Mxq#fxC?Fy+EGB#)mP>m!P(TArTwth>
zcITQ3SU4)&FhO^Vi7r#}*s1(Vh;urC@PFO35XWxI*ND&AzUT5FnFiR@8U&Qqh%fM3
zr(RVw4%T!GhbiR(O9suh#~;N>h$q=j6?E_)nhuUxTVMcAizQMQ)+Uyn&p|}*rHv3%
z-{`siyoPtYLZ~LnKkSCW6(?h1gu4GP(?kFpQtd9>^^z2lt`s#ytA#Ly*{&#|uJy#2
zhB95pPyc1ZQj3%>21`jUPhTQ*4B#+}>B=1Q?M8xtrJyZv$-iZ@YLOij3`}nz(>&0i
z5fhDp5r)AAMl}%X>(t8dQd(t1stoEn`Tu8`@42@B`~r50_BO4|Vx%OHo&5zemzpCK
zk}2EwO%A|W7SM`6Y#$Uz&FMCJS0p(OvHl6Hn2R|u4<JL3-R-z0k$#vR`ZsE}{r`=c
zxS4g^@FXdZix3M790WtM(edYuF9I9YlK&RiAI9@(vc{HvM}@lZzdW-pee?7%9_I8)
z56brr!TI$)Kw=R{-auox+yfrf_|L}l4Bx42nBF3}OBqyW`~w<&QC*fT0}!Bjv3Gil
zX-B95p0jd>BIH$L9`bJ`oHvbHK~)BnjEIMQuY|*>Jj39N>`K@>vp2FkyZsQ>FdNwr
z*gM81`m3|y0~*T3v;CVwH<cGnF>V4i=4$q7hD&dY14D`z`m}X4#kRLJa-DrWXh)i(
zG8_FfZ_98;M3T!_z}gaxLx-0gZbRH@WIJRKWbSXxNlZbBwx0>(vAsVe1MJD?Ziy~)
zw9|Waek%R&x8Dk+(f+A4`8nkeT=Ag8BYw#>eN~K$&<u%~xc#x0TvVd3(n4KBIBVC?
zyO{jJDKlSRX~5vg5z~#=k1P!0fn4%oLAl-Q=9#poxX1Zg-aZ1dD9?L)XzNmyMC8?s
zY}>KzMQ-c}GZaGtDswNmULATk<>9!FX)N~@b%SEG@|z2hD>*%kl?svjM%QZ6ihYgV
zh3|6DdlDQv@-hnC>Wk+=aZC#_2}7~2QnB=wZ!HC)L{?>7WGSvaR|`GSd&>`(zIh8B
zJ3^pLCyJ|5v1^FiMy4fIlzMt53ja#4i%}^G{2&+76nG_=j$nBRbtn4jEz^eV(<I5v
zJ5`FwWQFp4^#--c^eI>|F&3Rl^s$7xDMpo(rF?7RI|h4VUQP7{lRThFv^XrIt$*o~
zoAh8`N09hpO0-0^U9uk`L*?>LHDjY$TW};=V5Vdz?^oTnQE%3Fx_X&=5l`!5mR<q3
z%ZJA<DL3(b^<HSV@52wx+<&^98_UNE#qc1g^<BRtTPitS>|<nZVUTFyT_L`DGP$V~
z`X4HKWWJ9iS~SdvPxL~lwo#z<Ly}BCI&j?)`HAGJ*lrW~wd+4r5CZdo-eSiLz^wu(
z{MABczcnO{!^?Y-|4{jwc%`v^B^m6{=gV|oFszyJ7#ei7)^`jc#*Xcr3kJS2Y+~?m
zTa^H6NXl6b-+0FjGrp3IxvBvwNH3p7v&w31Imh&p9Y)ZB*##b7*L3*`U<0Tqk^YCu
zD%v{UF)?Hj_gZ+h{8=yJ-IWG<rZS2t-8W1+_=<V`$}>#8?=*BN`;;m+nS?Q%4h&wA
zZ;80#Pp4u5{|8EQw|yTM017DpikvzM=d1T!w`CvrS&QCQb8M@!w+s-l9>$}Enjz%>
zxZ?GXE8xsZ>}!oxOi5p=Yv`&_%o<W8Lw->WrI?<~{NQ)h-FJLW>&7If(iA*g$Sn5;
z^&Z2?Tc($=@8S7<*)ZR02YA4&+*fZOC9!pxkk;bU_*Qhe%>Q6vz>e)D0T-Nlt|ya?
zyoxHnb*I1n(8a!kB3&1I(n=}OLbT4X&e4Uv>rHf`+@(`NcXTdG7PF*+N<Q#&#4?VQ
zj)U=mx21`$>x7E$kkU`C%~s2|=~`-SW>7N6!7hvbDD2g6m&K6z*Vl{Lr-tjG(C8@-
zij#w`;GKEDChW|IZD}eGIoXFD%4M6r@{Lo*barOO?k%|mw9_K$^?2ZYS0hsfOL^J&
z5nnjwrfONMS?lI$rh}iyJE0Rx@B0ZJ{)gjd<?H`dX%L=J{ntTOC)Arh^T7pw&`2fb
z@V~}uWww(~fEk*U;1_+-C)b*YHg6V&>r6m}2!DBq;$lGb0|@;T8~ub@_TG(fkZclM
zDMJSSE5grcEuSGTU1+-u2M2p&9V>&-5tpCW8@kH(Y3if&p0%a{o?*cdfqjgCA($WX
ztK^B*HHux@=}ukIWME5f#SdvmcVh2-PsUK6p~(CYG2+{Sju@(qZ;L*<)^uOKnf7mr
z{I9NEaUFDh#mG><IK_N8())1K1}Ve4=9j$>#)g53*89Ct#KgvhUt={_)>=87WK<Mn
zlcOIB+92$t*UYl_X=sRK>U9cllo%$Ag>7B)<amj^-sE@2qkAmI2X#NBywC~p^_3%D
z!~?^+`ah|jYnt`o|7x}p`+PS5o%{~T&kohrjEHqiy@y{jsH5H|w~3cNYfZSS1EH<i
zOP@Rku)&Qe8SB#tefWqMQG&HzcXZsUYAXFM8hym{E`*rCR^BwbmgI314h4=1>9SS@
zb-M+Q6G7jrBTlqE)C8&B%WuuHnC%Q0(+lN_M}%m5TM8s}3g76P*wNOw1O8SM;&`&O
z@%jwnEHh(FC%3+FqDR~7Vq~dcZd+`8+HQ|iG1n4hDvP#PuF0$)^+@U$S^H;<X$4i1
zrjSRCo6;DEOl`6f=&#Vx_984u=m1+sG#IiN(|5eDkEqc0+?q*J9L22ZheJ&H(e`YP
znq3DrOGr(rZi(8dF{bM-nCmegyZ$03S!ZfnJj3$$A~6;7#Pg$le36-mlcDg4zPE0&
z>e~KyR^t^OcN%icUt@LPx7|G*&o)g9N79g74kmp^viXcR4bL`Ki!D!D<AT|8<Pw$D
zjPxTO>ywsKp0x7U_%!hHM$2kU9_vM?I;@`7QLTUm6dr2zOyGQP4%#Y)6>(dukZtXV
zR-`x2;?-dBW6$t!k7K3eU6@xwzo3O$2Zww4pkvtW9i^6-ea`KN=^rq0xy46^7#~A5
zKK#t=pyk(Si71CTMTd1AmKdnkwHdu3xOjnjll#6999iByCun(;L=}!SQD|7&HGIsc
zT0>YnUxB%5z+exN@v9M84JUWr#l6aqXiDv?8;qs4cv##u#I!NI<9ddpmb|}agg+mD
zr@KYw<dR=(hlsO{=ekH@uu*pXc|MJ`3gwz}tUTwEnM`u}^93$4gWA@xM8=YUFNw3A
zZ#!hW$`fgf5>M`Q*%d8$gQa*EWA}VnT8u@zW2qf7i|RXn3fR52-bOpny*#1j4tl>u
zTH<V+v#JuRZXwlQ5kKroKHdLO%4V;tT|u7E4&idLff0R)m4y8Bw)Y3DR=oEI&Rk%W
z(A*xIQfTFT#u^eS?mV5*P7r+eH?f~dS)_I}ujWFz>2+i{^Rex9eg?l~m-WP|G}tlW
z5o^<>`U|sLw-zgMy-fXX%kXX~L#{=6Z!&yZCGi&xUt8~T1T>^dLMUuT!HRpvi!+Cn
z;=R<|`Il9x{01~V%Y69DjSfw`-b{UDTD)8eam;%hQH_zHeX((TwDE{A=g;dJ3VOEa
zf3Z;2N#;yJ754ZJcU<qg9Q{H__)v@QwDk(OJD{DuZ@Z(5k7y9%M;1ay_i1;0HfcWG
z`1$k3_pFmkzQl!{30ZvX^rFd~w%PihiJT>x+CFa-#b|4K#(g>ds-kDMqhUICtXSeq
zk@UJe?5%*R$;*dn1w566=;QWA-k(Yp`RU#>w`kr9^)6n&uV|ueCemA1RHapXRk#-X
z&p#pkMu?+>+H5^;ZkQ9so1y26i|K7BF<U>jzt-BId>(zf=$BDf^bXw{{@k=Gg~yqR
zZy^o*oNj_TFAomhRjA$#cVH!H6O4br^NiE$VNXss{0jQoeV8v-MYIjP2(coI{B}<{
zcb%^^`vg_WCr@mrReRs(xlFn1XH=w05%i)*6t6p!gLBx81Cc{gtJ=UTJ>Y74e>tP>
zQV21}bu%~M%wN=y?&T3Sml>CDut?HK7O(ftu@oh_<Pf4WMhVxu#83@bC@`w+DrIQ;
z_wJ%r){&*_%*XaJ`9~~z!vhvNGmmKEchw>zb$(8muj$M@JZV?c{aLHu?J6MkSXw~j
zFTehpiq22MGi}Z-7N_m?ftCUCI{bJD%e(nQ#kEglO)r!dG+4U52-A;B$M<bUf9`(S
zLzv*LNf*ywk{NeS4RiixcAk+IEvXbP{Z{a}(B97=dR&VVxw21jK^u6-X4d*<S}*WU
z*9?5iK{hRhdmHQB%EU?uHYxqo8dNt)!M<V7TjC!KJ`i@@w|O-EJwMI+m!HU_l0aT0
zNlDp+?P1DO!pgvnCKFHLt_H^vvGvK?nE3KJ`L8B!bfU8n<=HPp-j8Hq3f04Wu*&uY
zwH`dM_+W$|AN?A#1iRQLKYsgH=v&9t+*37|=D^NS{9v-~W{JO#)fdh`bGh<2C9Iit
zD6y2>@_gPYoibRkh+qeQ(tD}ap8mx4{XFu>yT_2@15KP=DddLsX*YDN#!gR}%3J2g
zp&ZD|V2fW4KGg(Gt~w_{GSC)zjnW20G#YqRgo_X3+?-AiA{F9zEefB5%)&Y5ETd05
zkOOE!VUFPZr`>C%d)|!6`{w&BfgsqODB0fAb0?`(!Qc4zzOokLOs{<&N2d;@=`TCv
z_kWR`Z_0_-*p=cVIn!b|%XSL7Wa}=h$4?vFC}bLXyPr_$1c|5v<Ca^65Dkj4Nm4!6
zbQxBi*rX8<?{*5l9w8QSzZE2Y`>T1i4fXbT?WzqXDQstg*}3_lpQ0?Ehew&g$amgW
z9j)E2@2oAx20EE*XK&_@eCtGy>!AI|?U+OR<&jEp(ob_9))skxBlTzXora&OxG`0d
zWlPhzxM(>3oSI?#M+6xjo7(P*D>7u2)0W`%VJb!v737UHsb#B+nd!XZu+yb<s51f`
zy1kDOLQMwUM{lKG+%_Kt(e?hIo<olkqMAK9`?~*`Hw~?fsl%8kb{UU@qvOJUT+~?t
z<xe^YwNv-4OHU@STQcv(eL7?7P2p>#N^j#qTXSWCpRoNs`KUvCjc^Cene&z;RddLE
zciNk?xW`yDWuL7~B-zN!bs_k!e9(ed6D=2?&d-BC{v+dhV?a6sX5pMyIUVDwILJa3
z^3%ljaF14Jv(iAnu{SvDp~3bnv_RR-^cPIr*UY(SZ&>`6ZWvF{Z(};WAcpFd5<LOg
ztE)sgyrx1@c7MAk4*ppR5q_>+Y^(C|p%t2+e2mjVqCH~yARYQ)*wgP@O71vCEf7|n
z`vvu!gyrItwx<^E9|;En%qpa*@dg48Dx~?7JN5U%gIGJB7&DWXtKon7SzH+?F<e@+
z^*d8#l?yVQu4!JaUNjBztndEPW6}8N!jRs|y>2#o;d5HmIlpZsZE?4Q-BKC3n}MB3
zg!4w>@`-jCNbATlf}`@79b9`pMM-%en?4}J@d+79?%J;(28rMGM(5-3-apgkZd!Pv
z%k@QEj5EA!*<(4J(ZGM_DC51WfFWM^V0!5{3cb&EO_G5or@9xft%K9&PNnI2aRVp+
zc8^aT5&jf-xvQl$Y*0Bt?k&TnRz@z?<ml*N$4e`CgwSM@d{BdI_I~OZdtFl9zM7-@
zfI}JH(DWQbF|tbE4n0WlN?MF1U)7@U>7GXz^4(zj7azUb(mW^K9AyE!-*`({;jd3`
z?pD+<1j53FC7%#p%(Z{>z%SdgX0|jrCdW85Cwob0^t^OMEbiCI?abqH1P<BRd&-7Q
z!7&+L!6^?KX^X#c_evEm95mhM&yp1U*{5XW1gB)$6Lvoh#An}<Zzc1OJ^I29Rt@x&
ze&kpX_;HHQ_C>Z=L;{H}zG~mcyzhH#GLKX0etPq0aq_1KPT84SV3I6;G&wYz`Vo}b
zp0bS^^9oU{6?8ZIX!_EqBh_ODi{N7Zi9rJG+q4>U=Wep}7i?!11DxI0&zAJ2pCDhE
zh*8+BC{Yj@{p`JBjOa#WB;}j(eAQ&3bsRYSxE6B=qyV_w!4|vqpXnwTjur+K^YHb(
z?To)MO6lA9eaWVZz>i-cCyV&FHl0!9;>=A*dPlKnE=<VzcNfh484Q*+MipK75D8t8
zJ9fVM!KHh-`qsLWQAVle?j3uINAPO-o+ntuoJ;k%npq7}x%p$)+&-yh)n>D*Q0q3J
zNMuUg8C*72Sfw%g-H5Bi6@S3g_tz;ojJL46r?|{LUBhywcZTidjUo<%5n<->?9Oly
zG{eXYm$llp;e!wMNbULf>~GP~a|psg>i3D3dBx1AVaOC6q!%I{Rv~OA)767Rt#@=@
zQL5hFj8=>H?KG#NYcWJ!bi6ON$5}hV)7hi3TJU%A88Hh1rDf%@`$wVO?XBzP&?)rX
z(2CNA6OSvW@lSY{a@?whS1q1NA{e5Z0o=$C3X<psI<O3(9Hgf=o$<rQ(_htk4>{|v
zvJAoMis37AeDTtTCd7IVoy%3fR;phw-e`y?;&PLisZmmf>~(13zdnp#-Zlv|pU0V*
zeMTc@<P@o|K6FoS;#=xq8klupju0(kIxI{7&Ko8sUPOB!+~v-Q>O4g7@?T{876y1C
zr=wh1tH3BXjpLzJ)vy!4tNWS<sG`z}A#l;D`qP8(OZ)rQ<8xjVx*;ijSDH=y@u%7E
zZCdSQHr-WwpD8%!4OJ|_ID5aBqcT&2YR)3{QzZr`4of+F*_Gv3If!Ch93!ya@}c4+
z(pc2<CA7s4t$n3NP5b2)f{Q8NOR3i^3U6P|4|4q?G*`sawXu!KNe;NyoH}#!8NqD=
z{fNbp-MJ=R?80&LyrwJQ{_EG?$zL$^DJ2#kO9S$~craQx(cl#yJ*V%kn<%lv75d?5
zXIZjqd3q47knR@P&r4`pH5&Tr@{{XX0N3jV*SV;rG_!aC^d;p<*SMN=VS9GaT>qpi
zUQPNF`=4K&fSXb|_VjRXr@X-n@462iDo{g~QtBOLgh{Qg;D8~X`xQ|9wI>`Pod3nn
zr`?@`hfbH=GZ*|JOP_8R<%SHGemOPIH8MY187;fbDmd@HcDZPXm}i#ogDaLU!fRR(
zv@xl*Fq{6v+V%T^A@F7yC$x4}fw)`dFHZ2xYSGVBsD%3XpNnLd_8R}gUtvD^!G?5&
zGPU;=h+T2Q@YYWID4_~A(}};%$(TncTkiEd%frz;A2}v?SiK#Yq={)PR!0J4zimtM
z><(O1Fdom_Q@O7MSN(Q-RRUt{Eg61%NKQ7ySYB~yiJ#6jxG~cH_T7_?i)AWnpF29M
zpdSNz%)&&ufuvH>gV4)Azcni2G+d$|7QW2ZzhFqxN<L=i&fd8A(c)L(9cCWXDf`9J
zkeWLa-hRR{LuFXI1eGxoa}6GODjd<iq*5!{yPPT*x4(?>B6a_TccKIq!~Rb~U_%#>
z7L9F<@{8_#=--hObX=k{k?-jimE{9omh~YYFpqMxqe>C^d-+M>Q+>l8=G9q~)ZW7I
z!}EBm4l`EiptA3Wk(KZz+p!=%Q8F#5&U7bQshM-?))(C=1IuD^^LR<ig0&hgX&`jZ
zm7$=HlYq_h$P2Y{De~m2-->d75ZgMYk@t~~XhylwTyoa8!aGlH*#}pi-13I7{n%``
z6BaD*`yREtOE$0>$8Rrr_JYvwFYgf(N0Q6Vj_Tk>FnmpF&0~ey4&5Wd4vHAjnLP>i
zxciWwp{ls|8~DD1m{6@Fs`xzGbZr0B6-l7S0(Cun&n7gq%MczZIE>$VODdipr*S<y
zH>kT`it(qMzvBtQk=J+TC4zaoWcD?KzrHYdTYfXlk}Y*im-fs6XTOuXtBmiByKlb6
z+XY?xG2;t@3&JvHeF&eQ7t8h0u7xOj0kW5eEs%#~Qj9U1*$9K-M>@Yc(+;7c%v~ar
zWd`dpg^|ahEaOFmTc+OZcv1xy?!kboyUyRLz=BBX7&plQ4lUEC#5x!8&u*!*1uD9A
z%6NO~i}1N*y`ZM~&T7qcnw2FcMlTX6c<y$p(w4^%v04u7;M@{UN5P#<3cXZoA95=Q
zU)XoCwbpipZ%lJuN;n_lS+vymZY)j4x-<oCRJXfPd6z4B*-XDNK5TF5F#g<30F7{m
z$o$0*C;8i_X$t(`xzq{&c3_s+ZnfhBUUdd5F_T4?@O`4_c<GclzkIhcxm-4i$m)Nn
zN=1`+LX;W4YU>eyu*%T6dhWmVTV(Z#x1k-A8m&qfn)4A_8f6+*@A$dJgt?GrOAurE
zhxy`4n_^hrbf`3%4{INM`RREw=O5NTZw1HsGhR|#6&0@5=q~j59A6svZ~O|zBZ#v0
zTkW+q%T^(L$w$ufTqNA;<wW7bU+pH%$}<&BVu9p+%j&{B1G{TXMD)9gEWTU6rB7G0
zZ|j~e_Re`Rm1ej(=bMWRZU1#JuF}<JU6>p)9c2jfS`zw$0M!zS3ZmUP<hVBQ2%m^h
znM6KVT~^KbH&A++lksj{VT!hQ2H`Yi=a;3h)Zp?Ycr>jV{`owjtfSZ6z*{@?5`Tkj
zQ9iewesj@o7Hdc8cx?#FY;)FpR0W%Aa&}GBP|@w{IH&Fhz0Orzj*@Mn!Z`7P_ei~o
zueIYOE++j}>7S=Q>oX=!a5nzbopB22^BR1q8iZ?g2i5hl>o=9auS=Aw<TY3vAg6Yd
zALQ~B#CKHh%sOpJ`+TI?w9IWevA-g{{yU1jN8C!6<spg}ys`9mqqqyx^MPU7#h-7K
zaSi`0o|HfK>jc`JfMHgv68;&n)9zvUB<1!br&%BaO-WBBeleHu-&=?8x?c73KPc0h
zCY(a2HhL6Q$zGS><J&QVy2<OhU#L-BbHDo%eOe7Vs$PZ+Uq2ft%~7`PQ8yHlB^bI=
z>m3rG+J2`}7xW@uYG$dD#6ER9&$P%_Kb@LD<Mo4BU6FtdA8Plv#~XVw_n1$-ng@Rd
z(4fAGz_Dl8oJ4NRWF(~)Q`@YgIm!4GJuk}mukz(A^Uc(L^coA`(@=RwJR<iW&sEEB
z{BT&M#v0naemtv|X~M5J*zQcro^;z#-r)U#>Q3;piNF?l<KAb47KF8RPjI^##V02-
za|$!_d6m{Yw|3tn-G$%Un>%!}Pjwe5<Xv}?|I%ai(4}*u^(RS+@G+)a4HJJ|_Ia(5
zaq0uu%abvP5g%VIpLy@@NKw@>^}~^F%ub*t(J?LCN%pYIp~a(x+j_R|G_lK0&9Omw
zP^MWBfpdsERcBEqS{=W(nUXe30hQX9MrkVAZd~*4G87*o2?xF18`@+S6FCr$e-cj9
zl%`9~m{sbc?%%jY6|AJQ+-|qV#$~3un8KCoT#w|pBeU2OX!YCGbNp{RpQ#Prd%4pW
z;I$GFu@bgwtFsbTe{Igov`)re;QQ(_@43$JUsv6_#evC9N!FvGW9=w+B|>H+9d#Tf
zm;cTltLjSH?4r^NbIAYTfu1kS@BD_Oevn-U5uk~s47z=BI4e$#qFQ3_HZvXdJv&#Q
z#ClZd_lf2eXpW0;vEqTxThjQQhn%<qaq5Z~QFCwwO7^7~!b=$1SaKFW{XwJt!o~vi
zC&S4WqgQV!@!=@07t2L9b>eh|+?&8VS9^9;nd2^>OqR%1`=w|2N(s+m+)wfstvNL{
z9qbtJ*|-&G4`Bz3S<%a-{3xN|9Xsc1lOt|F*{byYW9+V#D4|mR#lWRZPW#at+3>u8
z7os%h^A89;^TnHT$0=H;Dglm8W2h3X<Mn=d|J=H)_I`T1v<@fDZ{h_|$n9BnV>_jO
z>kUs-ZCmd_(~)i5RlgL9=qdDSIIa64jw|YP!;#=%^~R0Fd(o20XAx7cZIO8s?$`1a
z!^>T=>ofiF#wyNVcc=SiF0<Cdu=iUA_0N{H!%iz0n?~+7FCAsb|M=qyl{*^!Tw|zH
zJ$4jwP^bUW<GS@{w56YdkmF#TCtnV#=Q-HXL2UGU1T@~|+Ce44c~H^W>Ux7M<`VU=
z*uUI-Mpe7}t~#!RGPt3)?7Yl1+V(_dyJduA>oWSRnxl((!p9CoZljMOR&(&6wBz{g
z%<W+iS#)-G@-mT|sEq%*p!&N3*6>2Ox>2+%uT1J5EuO(sf^f%K&);4<W7G{uNw<Kd
zl{A$)iFJk1f)I9hZv&&~3r-oDnX#RP{-MjbBZ0)Z@6pABF>(btS2AJ8uXjU4p${F#
zy1AOTS4Hh|+$==&_1YzuW!WS3c6lT9O|~YFlONR!{5~oqGIEHx1eZR3KBGTzFwHc7
z`%Ij`4{RyDwM=q|Chnf!AYHIlU4Ev47A$<#b|!&MJkZ?36i{O#B;|A5kvI8Zh9<Ju
zyoZ-0+;7}6e|hQY&~RxZZUJvjvkb?D$KL80rY%i>L91@MUe+2lyLLHW93<j3NfK`C
z>|}G4repY-V9EP%U>)4=cC7gFWQIP&*N+N1z|PTYeDB?B<#q{0BXT7P06#zb*@X%l
z+*q-al4j|+CHPrc)QN(xP&LP?3~u0Z%i%}roocSeGwR&3%Wb~0`+47wai~f|8ZK8y
zx$3B`QkS;NMRD1OK69iJT5(tLbnH{OxdVEGQGIK-G!9K!c824R2g5VQdo;VCj1RRL
z`+4F<iDkR$VP6WX4ol03o60lTO;769Q?T>5x1<y|+Z(^{>uKnzD9Q4pnQ-l)>dK^=
zDAo+G%8Id3Pzu@pTA{%XR74#@^?L0PeUm_ln6ndKopr!gk9nYE()1&5f0oeAB;M7~
z%-dT++(MM*@|qVVZd&JS8SISGv)^DXPC~Qn!Z({Kr!t!v{l`bySKl=Bray0{S1>MG
z=+W68>2;9#E_sF78b2S2xQz@?-s^G|<#OZ6C^nZyaKLbcy4J#eadv<|;|XPvSXjxh
zDY2D&sO89uM5jd8viE#kA>NEQ78eRf`yxvw&YPgrh~nX1`+!)PGiMH8H#cK?LG8a<
zYS*Rt_I>J$@1Iy4-m@q^0garDOq@6xOuxD>ZR&aMt_=$7Poy&-vmjQ7M25p~E8R38
zqWY-dC$3|<N5PEbJ&jD}x5t00ZJ*or>WsBtEB)e<xJf{V;!ayPMqnOq*IePHT}w$-
zvL5Kt#qCgiAg(%HR;o%HxSX?a2ymzJFFCDWm2NjYCf>vNO282qI%KJ6bcr!yf9~hL
zd`Wx|c+1<8JKDl6R65)|%Xi6nm5+OMp`CZbY@70I6T>@eamEyKpk;K>&hA!gSsDT6
zjIc}|+%J6|5u9)mFo1<IJMf#n^tpn5`9XD}`cA}ATB8z~)9&J*lbU+Ao_cm#p5YyV
zzvBZIk+m(9TV2$;XR&^VCT7=1bHCWmYxAAPQ>g3wS;G1+aq;is>C}lI;*<!;*Ep~j
z=wE>Co@WPS;mlv9{jQyU+ufXy@7C#~#ho4zcAH^+K9m1m(MfM0Z@C-+Pbs`<Ti}P<
zcNAzJSSh?!uwn6yDorr45l#+Vu^$J%B2jRb3LdH87OlY{;@PJ&d5)bZb@q|y*RrWm
z7f~%9wo!M0t}6*mg)7MgI`%CWZ0tyc-PcmE=JQ`Qw2gdMi^T0)#kvPmZJ!$WK6>N(
zI%2^&DGDr(QYr}Xw1SHl*>vy7=UQz;JwNAzDlclCExtk{Axx)NrXqsA9A%3K-!hkn
z%!^UIHv{#D^EZuF4O+g8i}*xov&)-H_Z#$xjh-i^1A`>ZY=R11sp9G)v0UQowa(Vh
zgXP<^E7H+<YQz$8M6{Xz_NDJ-DTr^A5J!E)=K3B$vD&^(v>W%w=j@5DW-#Xzt!bk{
zdHFz_N&Xxa|6E!&LQkwBc;|w#)V;|Uv!vB`VXo!=9#W^}ds=yKjl!EuzqsAvlZVtF
zgkl)TBm|AcK31=$jzTzjKO(jgf7coMcs@C~&EAeYQ1Ba<_^#EL+ZL-EvqsP;@r97Y
z&AI%9Q1qJ;sKS1^cR}WvclGzP2rJP9ZtwWh@?zlz>X@I8lH+;A@#?1&&!5f*2n@~O
zqD5xS9`;5z%32fA`C_@vHPDM%JMh4b1|%HHvFG0}s820)RK8c~%m3hJlL+dG!6zbH
z_itPue+u$!?@k8MJ5cptFEOJ;>3b7*Uwyj$yVHBgKi8<X{a~s&x{shb)~s~C<)~=I
z{mnOUMt55I&^wph_U406bTy%A7_qYrCr3oTle)HwJRUhj5xe^Jgz-4PkO+cFWP<zC
zAH;XFf*BLTPbD+vL7^e|skcc58!b)jt4U~Kf)Ca6bp)n1KE4mKj24StZW5RC&Lhyn
zA-6s%t<}9YpK5>fZ^u&&V!Rjn#(QIZD8DNy;)LBc+rjF9;OvWzVFepqKMH*g^D=kb
zMdfC6cd18KbdT{vYQ0p9$Nt#z%HG(0NOWYnC>?znh5Dw3|B4k`09~$Q`CKh-`i0+b
zDR#e-Z%jDy<>^DbR`M2NN9PHPW=DsWZ;LfzKn(cnEkv<%7&|jMdwA7WGU!ia9*>mZ
zv)UNb#>`R1hL01SeUN?-A=4@iIcIm&4O%_L+rR!jPMet=YV~Mo_fZ<fgL6pZ?EdOZ
z%1o_!%4{`#rbXnI{&#a+2T9Uz)Tf6}(rr<UnRTg~jG0tBBb(<>X5#+he=#)VLl3xz
zHWP?gJ6n%VAqK2-r?)w~BhCfeUx+dl-JA<fy%4PVN?K`B@bpaqXu#7za@e=oTLSoL
zk^+9*d#}rrmDf;+fuk=_WOu}pV;Tz-9P)hqB3jriNh#(POUith+?nIX<*~{Aw63=u
zQmlgJ1}7n>GV!mRG}VuuMuto)<jAbx=0YtF-T8}$&AFZak%$R>AHq@QouU1{jkS|w
zP;*P3A?M3)eUl9`vydMa)98t_U|8sv=I~gyv9inY-siCM<YG3`veu@#=c(t(bvUtu
zPJabEuQiWsICB}jQ&YFGm;C<l>8S5!F?w5Zwl=*f@<pI!dZ2TSkyf;9?Jee|u)p(@
zE1#EK+;R??;PVl02Y;mLRnF+3OmgxZc-3gUoS<p;<lg6pz7^q8y1G0iwUJLAO`&%|
z-2VYrK&Zc+j`yF8MpcFBInJlZBe4VSF`HIz((J)tE6;dVgTysRvFT8_(o@7vUe$o$
zN0$Ks?vXIb`)5!K8Rp{y9->CGQYd)_U{20RpP}bKxy(9rKh-FD$@M$Nm8h+KXqxHv
z=$IxpI-7FL7}gbP!{@kS<q=p2XbB=>_6V?U)4(d0JY%uLL*xjtv=mLW6ixKPJrVNB
zqFmtr6|ibxb<>Wt&*5Kk<|O<x)%ASI%gEf4UE@;H<9slC@?T1eu~=~xq9qM%ROkxN
zqsCs*m;$W22B6r1b(a=i@*-F7N4t>rD-XjsbHup&!oXpk)GH%#sHtMz!F;LBMv+|#
zK;Iloevx56lSQc>LNw)|9k&)L70uD)k>%`NblxcxEnT7+pB|JFGoc+KJ5Ujw-jAjN
zG-;kA2v4~^JLwT@SH7S;_Y66UTjOx{1E?v!9We1q4Dun6nzg~yCEzrDV~kE1x5e!>
zeH8p7ZX1s4$8m)B26xdA!gvVE?J$I*g#eYGzoE}vCVz`*y};^#g}t+fJ-gv1SUGmg
zQf`Y|(XE&?*9!9(@OYH~XZ8pXtyMFNQF+LrGbfz#S*Lsg31sqECV(cI3`C6tUyPy`
zz?FB~6Dl%m7d@rf(~0-E`U1}e3IW!-E%UV9+bNtK1(Be(lG3+_=BrbrJ)v`?tCKye
z015{og2rNt38k6j%53FqatL6mA3!@Rjq&4#`X&eLa=Ilz?PjbGIUQ`Lk%(+45s504
zOlmakoflmQ=riXS_;e)vk$Ib%!%LFrL%{Wv1KC5uVb^$vH^e3YJIHpLd=@6@jh}Fm
zEc5QP2^vZPT#<?bjK%K9Rgez8AH|2r{wcIN08$M^6+d@0UGJVj?_D2=ZZl=<g?h`5
ze+9ZKnrX(Q2RGp2`OwrmmrD3aqvoH+Fc2n%i6Bv0G7yp{ovK5JYJK_@L|N>FacBJi
zDst|MR%CaDfqzV5cgQ77Z##MlWf+#r3z1ImDA0gMMZ;QYyf`>Od3YGxE;F#2_facQ
zLs&}I3$_lf$L!v&t?b?&vAFhOW;%jyu-c04bc|cqQ9c0N>0zKgAj3!Ewsr40EI_$1
zl19`DSK80~J6x<K9m`CA&|)*KMOeL=H5?g_!i*LmkKs;>W&{1j?JZi0>j%F&6Aon_
za$<s93DW%A#k69JW;>CC6Q6upyvoV}Dv;cmBA^W&hHSaXhOXPr;TT9u=mdZA-P<Jh
z?*I<&Dcp+O@rCFBNqzy-)~4XE_i6d`h_om6g2`M?gxvv}>SnbktWB0?7231PeA2A^
zWOt$K27A^;9|s9jrNv#N;eVZ?Q{}a(@``*VC|?cAIuMq1Fs$v`%;!={Rzyo24)sp5
zr<CMJ^X6lFb~n(n*4R_B4kX*9j%TICYqKtbGTJQ=vvh+bcTf1?l~TQ-DG6&cTidfP
z!N(Q2eirB3rG;CRqr+(~-^_;>MfGX@w%B?Hj=Ctbo;%+aiH9KLktX^)B%I2`T<qh(
zBq^+@6g+LnX%eG}mbah<480~sJxRX`!V5Aj*kmK@7sO!Z7f_wtY9UY4rloM5kK=jr
zz=?}?i|1^Z+-w+g)<GQMMb%fqasi+saZI2kQ+9p0vStX=b~ped533OCR!tyA!|=<c
zT=ZRYQ3n()+D`3wpS7z$R_Nua570lQ#S+X<sQLqaN)C{Ig6E$?)lbATP|MqmO#IvF
z?G>5k*(ObYjZiYh$`(Rgeo-WkE8+PyR^hP$P1uo8ka-fMxGq1sc+=Ma-Lw~+VXEta
zl9yPF#@iEixt_3lU#DGoVCJ=PdL7W$x+%BX6Cbv^Izu18?-SEkSY3(S_KM6i4)~D<
zoqQITFYr|+_~KOB$Oa3kHnOqP_Qd*UqHO`0n|S1A|FHl?a$`n)$twho<bH#`c0%v6
zraDaJ)1frIVG=AZ&<DJ4F~r+k_t?E%&_bQk$euXX>goUx*Vg5XtH26tnmo1uH-SrV
zE@wC~4&w1;o(959jPDdpga-2?=1J%O>X%Ouogg?NuCwY0v}8>BsA-vZ4hNDQ3@y2a
z!H=xl;YWhqJ9H>&PwqEqbRDfk-mefNDw$X#>kw#iv=bJ{5S>E(HGevMv3nnibUkX%
z4ylc0yTQUA_b>>)l~ywCc{Sx|<?hnT-G=3w0Pg^ZLJCYpwRLf(=ugsP&lG)4e@m6!
zPiYFQYoJiUb|O`iYPAA)3DXk$_(`8|S$}QTH+te!a6&b$2;Vk7mkMOo%@}clL90=^
z9FEK9On0y4i`#6x+E9}@YOEsHAH1*%5GuqNzE<~&^}+TdD1c-_CPnqJRSro+`L^)E
z_^udT3YhG@TZc2N-lyw(G68Y|BxI5<A!mVXD#|B)&mmu?1P3yTl;@w~n86G7td4+M
z=tv%Fb$H2fvS6wZFk?Z)byx@@Ze#}Of}K$p+y|<rZztecu@1#HiV;4rGa|s$5!$NY
zTWtp;i2PD{*O;6Zam7U&1bxR9_hl1F%&XRe;w3h^x@aDZ?07>`7k7Wd>f#w_x5$fF
zH0BR&s7PZ`24XM-BWPuTu6FSMAlGf!bDaqfQb<FcJXGk{#Lpx9uJm?p2%?*Q+gBX8
z&0b>*kHg!UUz*}|KQlBpEM#b&z)=?FBV#T4-mrJP$pf*+aWJD(#f&~BW;EZ`ADWqq
z%_MXP&uqc`2k_<7jH03J24#9Z`-GrZ^<nWkJKpsp%u4U0nxx6h7Z8vKS-E=%>tH9K
zo1$9@+Ri^Rv_HU17Hu1nV@B0*LRGds2n2A*_?}RDBr4_^^`_ec&-o7d#Z>_xrMvBO
zG<*qE4atG`#7F(!+e>%r@zkYHintoh6C>wY6LN;>$Qg+7<68xCZq?<~e#I{E<7&!N
z!l-!q2S7#I5gipfwaM5c@XA>Ha*(#_3l!-|#?MaZY5gsPpSylw{Ji-D`Sfxs)05;r
z!CW8RJAkON5Q)zh%C6rNt*eZXm+XOC41bA6SK71p(S}G$D-Ho(3hWub%3JISTU~nr
zfME<k&951Nx=#oxU6jZ8^rt`nc1rhXO=bRAsXtMVW&ri_L?qLUwZK&+_aH)KnJ;sy
z5;B-IWjC6|tR3Jz4LRBrJ!P7rzWNja|F#^uSxiwgjegfwX!IMvgbIkSrQ9=+G@4p!
zQH4gmi@$>@d*_foWd%hZWm1Mv*~c?mZGAJL<@N6vEtjDcwV$E42)9WjGtKTpiFe;e
z+GZCJPU|FhQ?kLzf!hIpjVEBIgiD?n@`CmPdLIiCr6OqjlT`H=c<s#uoL%z4ng#g>
z6(sk7K+@k{u;N1;)f95@GEqYscXgWOpfv3b4hBV%2u$hcJ81HMT&j>fq0~!5lm;t~
z!3?f3zL)L;Xnc~JQ&2mg3_bwey6%M^zMDV+ant#H(2M*PX}a~mNZ1O~`K$}bdb=h}
zBiZcEA*CA&e@H|cat~-U&vvOKP9shH+S?s9{AD*0*5`kr36S)`WQ0VrXWWoKC~t=j
zG#o}p2-_rc2R$xiuH+fc?jBx&O$KOuEZwAkBAoIWwZD($qB3rfpaVKFff2FmCd9wY
zlX0#AKAaB_lTo;aOi`Q@;+i-o+B=vUHUK-4splS4A!Iv7?zU*+U7F^^mQlo~S=A(=
zPs8{YWN1zu$vv1xQmE{BT=(g$kvym;>k)BBe<AzTdn!!hgGr+#0JVFC$)5%E5ahZA
z-CQpry5u$Ll`H0i6Qq)!f=Yf<hhNd{e{7G(r<PqY`3n*)ivTgM@o^>ab5ni5k!LJf
zw%Gq~aqHBr^i;pRK57YtcJDpPoc?qYMswx%#|cT{F!MVW1Z%W#w!UWZKlFq?9?*Mc
zUm^a`Lx<yiYPm;bTnT)AlO8N@);DQIn>EZpZ+Wa0eKkPL6(MZxWuASLf3&AV-pRfm
zp_#^#KQ1xp5geOXfAODUH=s?|P`ra^FjfS_+dfiWk##Wp#fu0t*s(Cbl((dyyHO+A
zvjLdO9byY~$^)$qRD+!I&}bsLtl&VyF~;>l6>2*l*jC14qza8jMFrh=DZU**BT6km
zAv)1Ib6}|z$tjFW#5&~zdMt<eWOQFzQ>HJlUV#$A`!fH`TwAnT89u-uzOMt&0eYlp
zo=IOtEQ$~q1>sT7rQ5>E2BiR))FjmwskAvw&8TC=`hsRu&<=cfdXT6e=fk6e!ku7T
z85I{qyV_903xYD8)M$!t3pUh*8Vb;cuN;1yI|%U!|KucV(Hi96b%~SMK4t#h4#uV)
zsKDG6b8D;)r;@)#F4fNsaL5~aqK7Z*WLxFC-sHQb{jH5*B5<W23l0d7i!e{kTmOqR
z8*A>!pHsaNZ@_b^ye>-(l%{=yn>RC7fI1SA&@U)ldMyIV09%+o3qHh^6y2z=$H{H7
zM+YWsnrxFdHz}3NRw%azmTfHyJY&x&v#&TF;(h-9@Pz$SewSAyY<m8WxOEBT(uXSo
z*QO+_kf!4f8T%aU12lky-XLS}+#9DimS_qfw5Q>vQsjy*Ra*Df{iKQV&=JT}4m^fD
z1&x$&%+d|)BN8U${jNJO9%%CZ=<ss+gHYbTgu1e~n1`elPP*?&a)%QqP40~mUf$#G
z?KCh&s?&)AxRLNQ)KS=p1Gwl$RX*%*xG*LKvjfy?aXdiYAFJfqPwy<P9^mA=)-cA`
z>fpyMuKK`z7Qk;XwP9q9X|cHOhM6jAsw{cT?BA^42djAF+dFIlG?Ph@0I<>n2!-j=
z;hoZ(6MntD1|nqwqyvT$+zz?ZPz<r$z_G?rL2O6EV^etKVA5WE1ZBiMF^G3Zy9<Cd
zrOM@{d)3uCKSfhxOFv_&y;ec{X(jjDfV5QkBItK9Utq4+DbVP$lWg!?N$!c|3)AS-
zXTq%|t*b47{d)N@)82^qu9&L^4AGbJa8ID^^zQhdviMP2`Q07zYVx*bDS-|=d;ohs
zgu7*EI2de7Lo)X<FJ0Tk7J&DoExICfwbxONi2od3%cWVT11CIY&)5YjVMt=X$Z+X(
zJo&`qo6<3ET~R%qUZyxwvYocTgw0dp<x5R|O_6t`tT=glO5l!^t(Q{*H#jnOU<2Ot
z$nb>ileeYH$BTBb{nH)BbYw_Q!glFHJXQf}q$V7brhkUKF=LejsNNBnpOOe<@5Xpt
zLVSZR$e-~nFZryAUuA5C6^VWPC5>`Mo{{R*icCq^@ci+tHGwH|@9;D^R*v5Vq(F;C
zU2|FR1)QH&eU14!2_NG2;xf5~-WIBv<jEkJEO|CwCV{LT*XpOp=M&<y94HQHMzg0R
zW7b?oDTvk(rSYQzqrIR!496Rv?m)R^>4}iQ*iz-BPWTgsm~dWtttpDTE~FnLvsHTa
zWIuekI{Aw5d&#?qKIoP#5oc?K&(HBQjwc$Q>r{wmpAw1BHTl{5TsR0(yn;!S_emG+
zv`%j6RM|x!xiJS4mGTv&>%5DH3(1>tlS{PnWiKC{J{RrDw|fCI6psgbv&%qX>^ZgU
zioiu{DT_e#ymA>6$~3&;{dyg-!(LV;8d;XNE}-Rs`|;HyR=Zq35q_!_I-JV`fTJpF
z9uxQs#gkzuJ2IKLiX{XGA;(|n3^dyt*c>xQb>Ah?Us}cy$BH8%-LgZXRTb%6fa+OM
zPHIbY1QjeD93JMP&<Rhwday<rO<V2N=jptnwm?e67CbLP<I49?Mjd~N7LpV}d9Vj+
z*#e4wRDMT3E3Z)V0rNR}AT}0rSn6TIOGA`@R%P46XgI+;Wl2x=nT*3nE4t|C_cSQ;
zRig6eZ4H&2o`#Zv{xaIwq1@0*;ARD3q@N~!NfO)Tp|LD{>m;M$7ON=+x<0h*r!Ztl
zr|j7gUw}-_twnl$(%0}?Szg8pg`U0w`UL6`bg24wkNA8k%YKI1MfoQEYT42-5g<<G
zgwH5+<$S=-vbX4dYN%M0E%ZL5+oAa4cabl&Y#FwgXU<=><M;2hIPOWS67~oy&7*jk
zAw#CjXZW5QM({`M`y@CZZ)lhZ%fW#Df)~oEQq5T3XxMuq<6<-!;qqa-yvNraHOh8&
zd7nLdvQ;U=k%BJPs;6#Q+B<?y*2C_Ns#OyibTC>yqqX29uGif0K(~3#$g>{tF!T)|
zOou;ldzGgFh@#D+|6DwrF|Q4jEBcN7+j!Q%X<wx9X(iz}3lI8yxzB}ATNWIcliE#6
z!ZF=as+&dQMHKudAT1R`;<*#C^#`G}n(5Q?kD={yU-$0NdY>%Hr3`W<vp&Dy*FBc<
z=5@b7E?)AHcj+$bTb@Vb*bje{c_o-sZ1!IT-oSo&%B#zL3+o+&dPQr@{@_aed$X{A
z^rkgNXIdR-rl5w=4Eg(I(~AHt`*TN6%?8=eP2I~)6)j;p$?FSU=S~kIxVO$FxH}-+
zMHl?w&Kr;AW&~;Y$M~Exd%RUYXew?m(8dIZe8edqLp^J68WKaH64OIljG0|Qu)9Wr
z+yyWsAn2@>fl3>IuV@3u&tnnRjB;hm!^Zlha7EUt3Br%5sbM*Jk2VB&j*?*zaWljH
zIsAz$R^kBiqV)o92hfR=>4bE?hmcM_+z(TJoa_GiG0@4VhD0Yrp#kOGd0_=i!!>oj
z8_E*HUe5aw`z=NczKnRtdjg-2!LvHfXR<G=$4_qqKf?unf*<)?{Gb7?;b%fR<LBG%
zRq)fh3V!~G1h{(e7%zTA_?iDP;it~|f5OiT`v5;Zx$ZKkn|D5v@be@zpltigjGrB8
zmGE<a9q6~OfuG|DM|u_faMF$U6{JPzHj=K?K|ec=1Nmq6Pi4Y^l>LHL$?od&$*Yy$
zy0hc(VNY@9Mvbf^b-yKmzUof^y<aea9)zHO(1t+&>TLl1CJpr2d_Ozj;WZ8Jm!Vwl
zV_b3FhlH;QZxg-_o)bCQc{8v~Up$g?56LUwi1w^PYY&6+l_OnnT30L01*A_QaDd~E
zs87BUz~}G-zPm^3S5gb^-V_NTD>1-TkLi84A%cWIf2fnhjQN|P-(^SC1*mh+0@CtM
z0!;$FWhZTcS4yLEm8+3nWbn>s5OLl=0C9iuoUi);5El|fh|9(%_MO#v=i`ER?(JH&
zRp#PesGWNr;b_23bipRxJuC9#p~TZz;vAMJ<%JiEB_?8t0AVLr#;;g8N*jUS4c-0$
zzmb*kd;h~G{PwO6zu`Qj-dDlz_wNJLk0aD$>InS43IkDAoT*%`I{Y@<3-}$x_<b5$
z%9HER&^u!jQ_fVu@1!nOTV?z<LpYv5INs$ZLa>R%GX{QZV2OcP;(0D{2wo^RpE2Q=
zLya%QD&xAaZcv+a1ATqwrtqNi-UCqg*D&-0?`&vl(`ijVSZC~i!uFz-n5(px%<YZD
z_P#Z>HxNOaa<%rX%63Qf?LElt-G=SGXlkzow%4*sdnxHo@0|<pwISp2Mr~?mW8bC`
zYa0o5cg=*lL3VO5Jxh64lv#+H=2y7(z@`Oy+rR9C9w1pC`&~psY@`%!2S9Q|SSfsE
z7PRxlDW9)zT)xO3L;6}^r`V51Z*kj@pkun}%F-uLZrMA~cG1^4N>NuP@KYe!p9&;j
zPVbrQ%NY$QVJU3Rw}kQSiWlQMm00cgO5Xsu?&w_I_%?Jkjc*8!@44N6<NNDf7+(;N
zZ}Xeb4(|B%AK%)})r_x0n*aEo5aX+98s94cG`<OM@c44<R~g?!+W2Z$KfarAeC<0`
zH@=fyOyg@25951hm*4p6zH7|iO*p<2Co7Ln=~T`5GMxV7YZA}nYu3dW-)FuU9N(N7
zJic!`UuAsb+lcYCyuaG<-3JXQPjswqe6`HuyU+&Dll;wZe68Ox=I?Q&^Bby+FTA?(
zWp(u*-`O@izOD{qe1#P>z9l(4zAc@q8DB4LGacq@Qsl_9P4cX!BTBxqO`uDLS{%cM
z(D|ECEcPE|O^OW2Yzny94xh+d%uc0MtS&_AK3v)$M|J^VEk2X>{+%}4>UbR<Iz88<
zc}gVrNs1H&2X>4*5?5SQ1N5unw1f+;HqL~MNNM^$sMO6n;;_|`wJMO^h%g0v**M!l
z2Voa0zo+_qP$zQ(Ko{>1-4q&Ds1t8Q>kbxb0~+j)B#BCukDwx5B_;5llgcq3^H?wy
z08csdb+>A&-WY217aQmE-yP^`=8y&E09~G~7z^><nRP`#qHZ_GJCtV7Nzo=#`~%^{
z12u77X>}Y~E#Yl%Eub@lvUGdWVMcbDgE*e&D_B77=>Ve`rTLHPjJ2Ig{q}5RPrnOG
ziES7T(0H>)0Cz3~jvT<_7F#Ik*z~D(PX2t4>?2HqOx6+*Gj{=bEx3&2Re#D`sFlU%
zP7g*eI!8w0feO|0S17Ql*b$-@KHcxr7N0ZOuamc>F$j%U*v?UBk$yKdhgwnsR4Df;
z`-hYc4sv&^zwvY41g!TG+C6LR-dZ+t^mJjrU?jtJY&OBw#SGW`b_|!A<3rw8Xx<Vn
zK~T#TE)uh}eVQ0Yjl{Vods^h<;~d{)m$UdmL=1I(1w&rF+G}!dw`PY<<{^f{5c47$
z8*<T!a=U?|mH(bv@z2-4+|%xDkx?Fl#^;CBX+n{!C0p&}Ne^bPP_QdSqdbH+#%#}P
z<6xD%iQOB($*3?LpQqq7aZ%deGY4OIgNwc+do`j5aNS&NH1CHyiB0{4Vl?A8?pw?G
z2mUdd`N#ZASLGiwFI^A+h`;Cmo`1ZZZ19f@7q5eV3{3XtAKjDxj(>z#<{zW|_{Zo<
z{G-Fg>iI{}gIDJt(#3zlKi+w;8vd~}>0j`V<kY|CA4AJ%oqA@{I(_a{(>lG7YT_T^
z5Bl?uvIk83<BMBiaqVXP{qq^bKL)<W{3HK}iGKul^yeRsV7={u)$xxlr36>;8wA%4
zX1MyNR^=a~nST_NUY&o0Yy4xhnSYGFD*tHkKo$P6iHEobcw^r2TMYiu19hw44*w(n
zh$&_MG5R0*$LOo`kMQdF$J0rb_($&~KmJh{K+au<R?qZXh=1gvx)gJm`A51l`!n<?
zP&gZN25>X~V&b3iqe@~#qQHK;e9qUs6|EOKxeC^f$$KWbKM~gC^H5WHE5&d>FQrN1
zJyVGI#!h)2Js|zdie0AsMwkyhM}+f&X12pr-yA(lBdeW2ai#na(BNK&@hwFDIKByu
zF90Y;>2Sy|K}4I6yeue_`z;HDi_?i-x5!Yw?jezo0gNRsUmYy$!Ms^m{yUU&o6Poi
z50R4^ZO@(%sB~&4eCStbS+0VHV(CMRcE)ZgjO(+@{jCR#I40-SbOb_83c&q(@;)L-
zxr5ayXGA;Y;jv0t3Y&U;No|d{XSEG*NyZJ9B7R>e&Ob;r@MJaH-6G#C(fHmrAoJ&<
zHJV?%S>Un;U@y8_kXpPi8<5(A)#5J!!OC9;2%lENm#_N=l>1?-*75VQFuaxR7gIdA
zxh*g=0Z3z64fvw`azAaiZt3^k6+>a;Wi_Eh=2Q%#&4Oa&7^7P1)07!-T$zHkw-52#
zucmKS!<?#8yZjr@j5jMFhy@X)ZlTBbT!KNAornPWyasRl=-8?etTsU$!CFlWdp=Fl
zWK8oYKNk}qc_vdN{TVBTLr2p?W+VwT2ksIkmjy+$obn+NU@!PnMAIE|q2&IGB^gp1
z#cSUSLc$?==FSP=h%4^93uXr(6tl~9aiMhMh@v}-1+}%3e=}uS-E^YuC}6_5V=WY$
zSr)((83^>QG~F+peT%ickJto}JCylN(cOAn#ivBVdv&5u!~;u}04j$OEL<H$e^CBB
z%nBxms-rdea9Y`o&%xq3yS^JpNjcw6$G+z!5FL3I05f-tg<u`yrFHlO6eLiUm-qQZ
z#@@|h<GmZ(tYym2N=!O<HYR|ARFeA`$=eop!`wI%PD`E=ny;RbY4TBT`^W`Q;wGA-
zvEd!#d<&xS^0TC%EC8#;ePlFFq}?v3QhdL`<S4rnF=xi->fn%1sgG*$(9=o)!q8bf
zdna3qejbvOcM29s?kEdhG>-9C<yKnTtJPIP?$LU~8)QMS{d9)x!38g|J(%CtU^&PK
zQ<gQtxkHsEQ78l1_hIg=Y5xz#{=##4f8%N8)OwCJ8|Q7nC=_cFWjDkj259)14kTW{
zjH@nwFKb8N>mb|lCP!u+0F^%gSH8IL__Q))8@F3tVYGWeMg0Y@OA1%NL-70{srNJ2
zSXU{3pRd1`E3|#D+UDd(fq5nsHnjyPkKNDA&}&)J6xU(0mAB0|w4vR8lL(H5SMv8M
zhZ7jDhoPPESP|Hkf1>(bTB3U9a%emlaZg$3KTXq;2qly;bCsd(2m;J32rzAZjr4Z5
zW|hHG`zQcIOktAyCnBq;kDAy}yIU7i*%=|Zi#a1}{#2l?t!;S!)x|(gA2*y5;|cb?
zk~=SmIcVcGg5KTdS<QGHV9fmmghih1e&JI+hxGc)UY2U6y;oYEWK^RjdML5F?=M6v
zFWhgiz;aFyNu`~p5l5pi;%>J}9)90q1HQl!btOJZY6|neV&H%7G}5_}2AtBDpqE%`
z)K~Dvp0FP%II!{(94MAx++I8e$?olMg;72K0*vaj*0c(H5RPyaB9b0y%buGkhg?j^
z8WW_Y7d?WjaV(&>$gb?Y&sblN7SsB&zrgEjV7%}iFAW1Ex>7M58)10`FuOEZAoYD%
zii&lQ;D3_mBTk%D>bJQXo}uTm)~0x}<_{W|pv!bm6C=-(Co%ednpOE_;&ZVtQ5^T<
z-(hXvt?f$!D)<Q6Ref51#y+Kc0<F^oeH}}l2Lpv5O4#qJi)ET~nfjI1vbJMXtmoOA
z2sm|-zMgaOkjcE03Bb29%<(5!O>vFsD5+mLL4Q5`QSPM-j@3&qCI~vmhSU=Ps?zsf
zR((7-a(?voBASC$lX(vQz%iAY^G=ht-U%(fxsh5d`bv{G-b^bQkn^t~lX)f*<tST-
zl(^V~1ZfFQ{KVgIx?1Aq5Xo~0i-T+$d=K=q^NP`rA9q@_MvVW8#=*v2VFueA>J`oN
zFKz#UOJ`Br#p)81y<y%M@5`L1eANm^J+wDXeQ_r5!wWa*U0%x=#E7?*J>i1n!F^<y
z?&kCkAL#UE47C?_p!_zePKVw+(2;3)3<%M=s|#jse$AqJKIuPk0PTAmrvUxnerSE>
zi5Sg)8DIK>#@XWU)3WBD@#*p_8Ebzf^y}96u$=NcWAW!SwD7e}Y)_SVcuUxT$~(qf
z1GL>@VARagHi|u_Z4|TNMls2aQadicC}Kzs?GuyS;gs3Wd&N#NU^|3}`y!6n<Wbz)
zcZBzW9mfxY*20UUXd`HQ-_}U(<rTc#i)dfjDK!T7l@%=?QfYp)J!6!ayF`uQyj00O
zi%76V=n3RfpeVdg&ppKQa<3*zq@>d)!sCiTQ@9V->+a`(Nd(_bJSv%OYq9D4o7T*u
zZsz@E<~WykxU~q+!$@px==uwV&Zh4}Pcimu;sykb2$cq_SRyTe`8lQ7<7thzH30QI
zN{ek0@PX6F2TmzAE>o{+nlbVQPAykn|CI^58wv9E;iwBCC!RzHW`!>Z%4|mcr;y}S
z@8T65sL+Z&H<4HL4XuPG7Prn^_!8?yCViZ?CAVm%piXv5a({>UCs|V>L9}1C%NHc~
zR(#<dU`3hbz*_}4X|fB(nzJTHf}Y&Z)=GN$1QqKaO`;9Nt-kT)EL}^|fi_ctoT6%F
zLBRQfS^lR>({2kF^0hTN9~@Z~zRYB00Z^Pn%f-)k-JSBw3q6GegxO1y=k{Q(Cbfj2
z-WY7Q=R3xgu%P}vh`|g>!<)RNm*+8<u~oqQ)elUU4(21l!qhm6Cksx?2<1K}-J^pl
zxfh3M9;IJIcfr`5ReE_9ch{;)cYFQ1YoT{nQ|s;>>h8@j?yi=(yIp#BPm1nBu)ApK
z<)hqPTWzi)d9DVCViugMNa^Lq7Alsk6>H1I9t~m}7fZFJoz?D7ECg7nH2ncK!oEa>
z!+ci3Aq!eal!$iRY?<93N|qV^ln`fGvCsqFq$G9;#t(v)D%JVTV)jukp_Y-a#jm~v
z%a)qU{%T>%ZzY;%ln5J2>c=ImKwJn9I#hc36pi;8yHJoU`;NrW-XqELJUL#+u}m99
z4;ezH>E6sO*btucK&Ktf-OOT*%)`~x2U(HBLNMzVQ1)Y(Fqb9w%OP4$?g;utViHeN
zF&l%-=esro8vg3CaZba2r7gZnW<4X-JFcO(gVnL(*lms)Yt-l~!tV(0t?G@2JY7~B
zm-;X3dh*(uAfHH;kAX^aehR5H7G#lIw)pg;fU2Ae0R84Sg?{hje(~ItJA{960luGZ
zyq{>2w~7}(&N1ahmnsvQ>bW%m%5Z%6Q2$<OJj*Ye$Fu0NKAuYDLjA^FcG;w_SW*rX
z|NC_USf{lJ3!@PWzzTiX_qhu5{+KwQqBhgcnsGIvtw*PoV@(Z}#eI>}z$H&uxz8tB
z91AU~3!o+13aiYo+Qd9_6QNoYMVIs@CSwy%8h&Hk1>unYP)?MwW%f1VD2KP3bgJ5Z
z2Xp(214aAy7$Clk?OX7WzoE@p2Hy(Eu^l4hOr6BSp}2|YU+K`?%w#2ZJhYVZ%QS4{
zjZ4P-vO{cf(<<<M-^2vZy&61q40vA0rZQ0l-QCQ9=gorz&za{Kp8h&K-#7DzryjvG
z0~-l4!-Ju2rEyhwV$ARy)8IK{;C~J_byUw&mJ5|FAVAe2<+}eQAD;{OdASAq$!k)j
zpQW*;e)ehoEHwI=hy6@8^3Y3_q1bNm6}_L{_?%RsKilznS%r2^&x`|vqC;aDMfXF8
zYMMberxh!fml@7w5!C6A*l9Q=vHO&=#_;_WZCu9{1)rZO*W&}b@j1pA_gZ{zX*@5%
z=S!D0cn<C-c;3hi)_VIztgjCdkT=TB>r3#VLWE}md{Mq^&T)l1E-^nS!r`2_WSpPY
zoOPa-;`=0cR`V_zdF+-Kx&Lir7#~fs)7_;e{DvdE5sbg(c;%lG8mk|xbO(8;*C@ev
z8HXxK?(KnWD0z-wL^9i==@+$0zgT_=168GbK2oW&;7)j~ug}lfeFRT?0na<wdy>YV
z#Qs+fg&BKbCHF|m3fzxUu8>~zX9IsbwB|_Y9G-cX7!R!973{}z;8sDUgeNryf!NCr
z(EFF;fuX<t8L<vrTZQWC5`<Upzl8GNjsB076EipZ-$?~5J*xJv<eU1hTgv^<vqAr%
zrCR^Zuz$(i{}<(c{fA!m@4uvS|3|t1?SEDszq$V)(SHo~f5904vpD|wrv7uw*)?z}
z1`0+a9~^j>FnzzcKwVk?q=|Dq%M*7HTYUWj);gT>%YLNTvMW{g6F!ROpy9**i;uP(
z8A-d{FtQg-VhEjrWuz2b36?y3QD3Lnzob#!tWNI`uym%-5tz|Z6Q|98fA}qQbJM6u
zdv?ztd)B28>6IML1a~|~`@?701J@e+!@Z-drGMHpilHB$<jH`3l!=Wo<hWYnoSvvq
zanX}<I@+*p{-VpWEN<GI*~6;GF@nJ2|L{hz_~$O-P>45}oaVQZ?nYrR$=!?Y+{OrV
zREPSgk?9d;XojRm7%OnAXy4;5x{|UT?&oP2ESy4;yHPN+ug`4;R8e$eSyD^d^|?m*
zCYHPo7;!@wZnv0V*cKwTT{`GM;KZald(qQXGmJc4uDxhOjsPXsJ(1rO;AgrL&4GtW
zIpkttMB*Kbx}VG9@b<&gp^|2f0D{VkW?MHjlsvVxP4hQAD*MSh(d7&vHN?vDVWInV
zBek2tgY<P1841BOwDuu%o7K`|=`a&V7m45k=*K*}eSw|kBC|rTSJKYW(0i*w&Cg#0
z2|2Ej&zD2~3iD1rFkB;z^YT0Hp-^n>vlNPb2wLgs%#PRtZKsIa^&&!^)tnCbKq$TQ
zUIlm_gZF#D)M1xOc2Y0we$g5{X;?ciU=*JhaP&5Njnz&sp5Xf8mBk$|0dapsQQ)M<
z>e2S1nUPh4Gn<2jicX68+qCO%5>DBG-*HablB01r2WOhm!z3*@6DD-;AA*e7j8AF2
zN}!LJ_X2b@dc%k^u!*U7GoBnqT@S|Q661S9N3Ofch)A@Q?Z#gB1Y?UONP(qigpx5m
zL^DtZR|$D?97K<A&b!@++qJE#Kl|a!4oj5QXD05A>U-Jbzk~Iwer=8yVE)hTxEcDg
z?gwg%&)Y8R@;erve-iRIF-hLdPF*1Nks(CtyJ&zPhxqwQb|U?Ghmo5Eoe0B`%D;XZ
zCVF=iQ#nOhF{k5L3Lnh!!W|+3VkAYo_N%jXf27j-4vw2-X?lWB$+-;~D9c5MyaR>|
zh{QDWDNn=iAXi;xh7S|Hbcz+H{&t8KJKwEzq!;caRc1G2-UBVThG1RE{UQ-lvFjeB
zlGmTXg@s4uI=wJ(b*ZjDkPtsj?$2GyL!udP{QD7PV>+^m18FPTtVUP@IW|uF5|T~v
zIT6ATg#s>7fDb78j2IZ!jqhtJ^pGeNO@)#~A@wnz|9nmW{HhOL(dTn0K6lmp#)V36
ze16^7=V!;~Mw)&G^N-J;8v0r+J})ZQ+q2^H&*D2Qf@NFM4YqTbZr_f$JX&Kfr(oKj
zMdr4(0IIzQ)$%-0UcJcjIy+)37R7B<d1VxuOtNF?d02XizE4j%d<W}kO)eY#E=$J^
zU6ug7chBfB+HsChk8Maf-Q%G3RQUvfae6p3+@*kaytA#KHY^wCH++9P8ws}oSG#*B
z3F_#lSWqKA4F7lVve2H`Eo}q?D2lQ;|H6)E55#j#JL+cH^%KWvtZy~UT;6R^FSiDB
z#Xm-oUECibTC&0~wcv8O-}#}%YOPD={w)dE2Y?kPmQlPG_W)fpJ0c4j&P9~u<uf)f
z4TCOvLKkYQOQ>s{R(jtGjCO~n|2E=%@GHwW@8)*YLwf1)!lj#Vt~QwT;Z9b{Il^W0
z_{~J`YAeGJkOr)pof^l{t_0y0$r111K;fI17_50UaF#aYX<m)hlBe-ScGmxN3qX4_
z_L;NnAog$A@3gmHc;fdfwHGo|*iv5gJKg{L4FmXVnE`)%lN~VuN<EUac*}?GGu;rR
z%ZX4Z;<^dSUfB+1mD{x#N(cWK%BWzDp<tei^2m=2ORAqe0&V<^ZG6IQq>?TmI((Ak
z2rCnBLLoc^BHoLopXJgGC>zbM%LZDPIK2Ho@bHRCb^I$u4fTu?&vMR}8n}&!^5MZu
z&QBwDm(Wf{%TfG9XRS^gsnP1q$nL+?_62MD^kYH(_C%K;UB<#wJNlXoQn<xS*kpnt
zdC(`HqpO+Ysl;%TnpuNGnI)r4YNp=ZbHV=I4I}A!nw)g>q7N2G7z${t5zJ=T!5=lt
zcr_kKP^yf!YUdNwK(ZfXrSobrYv6$k>{;ptuT<RkX2{3ktlt*>#`NMHj&2}Bt`_BK
z@2%X_z*4{Sv;4{z{lVu3O~EDj#5;!Cxt4A!Ob(}mxplu=_gk5QC=W0@-6rm)c4k}F
zjv)Q&?p;6|Uwlr>UVaAFN8Th{9Sg}SDL3&Y^&~EJ5>*q+IHVP+PP@PcN}ro>TQ`az
z*5O{<g5(j=kNfZr2@V(*1WH`}5rz_1zw-!<I?92*`V7b$j~(AzqBqhG8qrF}cg8jX
zp^dG>vCW7;t_|(@-~}|Y7#evzZw#{U-s%~EOKEe9upYktiwN`NW@e;MGtK^pFu(B^
zXB8OhKW~m$|E1<HILJ@t@Y2}Am}a61u4EJc6`<S1oPtGX!~;=fW;*m}7trpIE6B>8
z0ov^-j?nTjTDm=BIzlVO`wY{L`pOl&W9FHLDRf|xMmp+fer;8ss`_2+fonB8zQ@pD
zlF@DE7|VFHe!g1HIi}m$^#L7O@Q_3D_-4jJBsUQ$nmGHGex|kO51Q_cJ{8X)PztRq
z>%IU)XKf-x?-#Pp*#OA-4dqi&Vm*`?#3h!A5>2th_bJOzxT`bENXXWH+7Pm@0-I5e
z<^q8EG+z;ChiVdO2}`7*SYjoX_~5U~_AZkXsm&`k0!yr6PmB)-05S(CD~@tJra5ZN
zc#ntW^u`!1K{H&>H!D;o)B^~`IgWXwYZ8|kfk4z@Ya<-{?~scjNUCX)-<ca}tka$*
z`90}rjp{8xo_V8c(k*qB>~nK|S=Px3cJK05q}PJUqI9cg94r1EnVL)6qRD)3J)E%u
zdcTL?CsQSqsyE|D6cg|n#iDyC*ca?qn$p1hsZerfQ#6O}mjTw>IgBpKirBS*@#2s>
z<Dk~U;}B`YI;lx58@vv}NN$=uK3W_V<d7eYO_N8pN|EY3)Rye$!cf9fzyQEgvm05<
z*dC5qDo(kAqnkJ?f_8laRHsTfe#bF~SmNDF?Ko0rT_eG<Hvzk}JHBsIS96_6ZabIn
zjqe-Q_33+b=hW23{c?R19&74D9wLpZXXAl(!h!Bz9|NNq*$Pn6E|fNPi?NQ3PLrp^
zit)lYd+|75CtWqk+8^nm4v+K8nw*UTW=RP}aaSu!ePNcoUJHkasoFa!u=Bl@^8_O)
zU9|qvA&9RAMh?w~1gd_sQr)Q!Hj+HI1mSVRfnYFUHE))Uj{o^Gnp1s11GqWR79h+M
zKdbg)ZF7)nX>C#lKe2Fr&czs!pL4i2nq5g7-~~m6hD!)@SYQfTM;=_YPH#lsub6lq
z7?>t+%mSkZKC}tL4^f}ehu}a8132Y|Hl=1glpmOE1r%2R_LYPmn%jWRLTp&V;hlmC
zOfb}x8id#YyX^stH4^HA13(o73w%4m;O!RapzNbSk?t-Nb|&K4Gbzi^t)9Zyk|ieH
zg>AVTk;f?hxnFT;rILFFndJR!t(<t01|6JkmuuM+2Q7+PHYc9B<H>j8nHo+n#)ioc
z=ESM&hZWLAg|>CI3h88T0excmSjqhaLhae>3USK4t&R*J@y+ChaYDJQ{Gc@X`PJbm
z*_{GAW={#?K;4|Q3}2c&c(wH*IsJ-N>Ho2hPA|b`?Q)1sa^ENE4k$a)e^!&g%;tD2
z%QgwP)E#KYu7zLfdbVqna$*hQY@Kgv(Ikhh<Mo`iG!_PAkzP3#hLjV_WcTL~lMvE!
z|2xK&&=w2y5L)rY(&JDX-Gz=8{_*N<9pm<5PDxDx<#Rz4PjubDi+N@cqXZt&FVdVI
zx8WlmS(Jn%44h8hgXvNcYX^~4vl$u3A<U8i>WU0--NHP}8^p#ddDOtfp2|*eS54u~
zni|Ll`qvbe0)6M)e^kB$*?`v0f*C6kn5=jM1$+)QeGZk}8Pr$_0*b^om`^yI;D0Fj
zkQ`-c9fRTg97+Zk#_$Ci@!<$!?H<6|(gTQa4Wa6a3OY|N#ZN)^WK&X5LtY<5KVa&#
zvvtXKg(Mr)iz~$`+id8?O%_WDSQ!!;e!|z?l>@H}Vj_|j6vdS7{xQODTEZeU<~xOW
z6wHlh20^lm8dU~Ih_>iJAM<%^yA*o_CR0}!_P^<w{6Bu*H!D_re$hB@FdUzAjCfL6
zEyFM4#FRaNUO8L~`3N3&v+RmV-v$7cwOD?!?yoSgq<lk_@R4dhY1o;RkgJz_*}t6A
zD5r@m<*zzs4@`p!EmgS(sL|@Pm(B6xwg}H{mqfhT*AZ7yC2|NrayV!v2mC>IlBu7Y
z{cXm2#C3-CeMDhLmL96MHa31k3l=l3_LS~jjC>MiG$k*9DC{BjHkpS1N=<=V!hzcI
zvf(d)@i-}~LQdC8_o>OqYRh*uU_Cr?-^>pP$|E{-am7my2N`4W1GXLjYr5xw>sP_o
zZB>?!fv-A#`GxXnoU#(7L!`bgJ=4lCU<e|2NDc_E-&g9wOMT#?u%8Ixs>}94?Dv@8
zvc192KG)VZFMAm1fgtmw9jON1b(hTa>y2`(WSOZJ(tX<&xjZI7_!lG6RtgQ(YiW-^
zz4RqkXJWHRfw1hmg5M&fbD9+QSV&HnoJA?V4wgHnq@d&kc?kk?b^!{=d<)*DgFCxY
zC|pcDzZgCrr_T?QS`~l)N|K+hD5s29NYEu`4J0IiR3sR9hrSI*B|heE79tjz6Uv9u
z`f?HzA}!$0P&(=j1?5mH@@N#6bigpcC_4*CN+Q3Bw9g?y2{N+43NM4~bF?z}7@U&b
zEd*a-hDyddhdiRd%6F)dR+sv#6#xr&at1ZWg(!THG`I&IZbvkY0D8g%fJn}*kY>E0
zy!d}}%9~SsJ3(zyqHB?=YLo-Kh6--!o=L~pHGyAsNU)%wO0;CJh#~RC`;+7~PWhZt
zBb2XzyGWZ8=(r%K{FgE}0$ECEpekMT%a^stpo*zQx<7@V_f~pdU+H<N@myntpeJ>k
zng5+ua>6v8KA*ig<MU$#AtU8x$3Ol^uvm3qw~Y<=`OGVrsTxC8+8R(#8-66@^R1wL
zb%4f~H!IO$;szql!!fOrrHXlpVS7EWy${XpozPf|A743YT5edcKh~>VZW`w<p5b|+
zVusaT=KYmeXG{y7ziy)jbtY@-N$W(Nd&#{1wW1|UPxx~u1EeVk(vA|I4?J=dRLRXk
zo?oJ~&|)zh5~~UBWPXRJrL)l}RNGxE=;W7Hd^u1_d&j)6)=2KhErQO`S-={Z=SdRe
zrx_3LS~NU#!}DyF@^Hi6Xm9aj;Kg9anC9qc<vBvUsWUHXa+|bdvnFn6%#AIqG1E=O
z>8OzO!#i>&hO6Dq|DWLH=*#|i@hEt{r8cy<ZE5l*9Kn^Az}|y{(L-IvaA-^3#2YTw
zF!KhjLCg;@AxboO)7@HwlgdQCMbhUb6yqFrl3WAB;g8a3BiW<COfv7~7N`=oa0Eb7
z=bty7gZMPmS5|#MHT3%f(&V%1-9U+H-lsVZxg{74rZL7QF=j@MDDpi8Y}m7CCy_bK
zv!m9%ME;-uiK@B!t*fe<o>>=sj3Wo*D5j-}j+R~sLit~6$bW4;l~yLV{)m~^gvUqI
ztIW-q7hMPze*7=PuYEY2^LTt`w0Ws>f#&7V37VI~@JIP(y>2|YA~2~f^sKHQn3o0i
z5ZY4jR#OdLDbf3@L}<Y}U1U%hf-w$XT7tDftKXiZ!1ToP0LhN`7!q|1=OLQti}_Tr
zQ7^K@(ASJ5>kk`Nu7x-`d_k<&bY3;l%Eb_-?`UoABu~s0R(4yNh!gj}<g!!MDfYhv
ziHZP`1{}A63k4unpCy;^SynPgtn5u$hE86!*BR3neut@<57KL&lh3+D!=orb=%y^G
z2EmjPC0%{$<8hdm&-<-+L3$mk&e`_!*yCm;D?kLTHH(A0AK~Bq?sL_#kqbH-@sPXN
z((>mRF*#28C}6BXR}iE}g&=JbsI`HURgJ(PzM2RvRZ`B>K_&hxsYTV56hh-JQHP!3
zbyC^C$cImr_$qX!UqG&?Nmk_`ywu$epK#Jcw6Y%Gk`c`w!<E6BQ!OsYr+uNch8HP*
z-=P)gj1Qb)wbdy<8Eu!-fY2tlvdefE3?`0a8bn919y+uYzmxqEv+GdTbjh;WeRaj}
z90(g_2i)0W2`IP;$0YZMfm+hgJAsDBZ~&>jp@E$H=#)oWmAzMR==lzBN05_Hq^ro$
z!A*gZdor2%<V|>$^V_mer}idW?Fp8FM=(v{RZ^{!x*ib@vON}dkWr?o6OgA^1CeGz
zY?}YItr(DAf|XN5hsAbMxLR4seKHo_M=QStm|9pRxqDGQPdm+N*4##%w@xx>w;1(>
z#v;>DF?Yy}t1tYW7Yo^WVKp68q2+H=g358lQ&B-jIpArwY2K&k$m}%l_<?EOQ9~W#
zlH(M-`q=DWIb-qb<t(cnx+CZ;A?nUo7mGtGoCz7NGDGp84p$!-dDFA#Y*o_aV~Ae$
zy$ZvA2OOTiTtOI6N9ukBdjH2|Bu7gz5SWvXoB*C+&PVZDw$it8ZSfn@hG#muqZ2GM
z4&n68q{)bQ9`lOn@L)=z3FPS`Wu=dq;$iv*g^1~+T~Nl<J$*v+l6Q<I1H>Ue6RX^6
zt_@T7J=E5x4aTd@oH%x_FKq}cR6<}}s-wcBx0Whr%HdtAHvauebP$WMa+7_|`Bu1x
zL0JLC?b#6p4{70&p*OGznw>Ns_>VH<W6VGlcEPe?H|W{^c<wgq{7aeB6w`&#=_W7U
zEH<CCjbnYFpU0pdc@KqbI%D(qe9U<fZrs+ECLaLO#Li)9nf)&0{{cXY<~rn)OOd@T
zn}37pzEreJ$}Uy#mFcPMl*&7M1Ntpe(RC=VT8cTm%jgy9jXq^9lvf9^oLn{nKBzIe
zKS3FOv4R2xUQ5akF+|%=Z){q^QORw+A^@%#sAUK0`_Mup&%j{LybI?G*QSDs1$a*>
zaofa&XDi@Q+;X;<zIeok1(z}0_ohwkUX$EgiRNern=~D_ggFz3StU1GR&n`75{)Bq
z1ny(oNE=?nJ~lw|g*1@{llSTkWVim|08|%#h=ic1Z=3c#W=E_`(<Xihm;DyYzWX6=
z`Ybp6Q^%3WdAgP9fE<0!foRoWXwm48&-WOU#=GaSwKUQ5?ONP97pE}qV<?Q<o0Cnf
zv?1-`j%bZgQK9(^)h*bLMYOZa$U9E@SYdsP(~}RwALX_J07t^gQRu|N^S<->z7y4{
z<##7N&GmA*-qL+B%!LoFF!9hr$<q(i-MrHTL&OK5!Q@5|+LB(i2XlonA8-Y=z2EsS
zNfVJpds_r4+%P2z;%0C|G%cj#$g!?C9^Z5NBIyCA7HONp=XMDewJ{u6az${r;XW~b
zSPh^sEXA=dyB)@=PSnSDu?YFuoi81ap+rSIXw%eps`)5%&%K<K{Olrx^$_&iw2Kyk
zd<ptAaH+;r2)$A)sLQx+B;Ai`hNmf(SB-r9-leeKf-f2Q|M(oFJ)c(Enx3yJNYtM$
z;wnkwMKO&c<e64S!g<L(C4kmNZMwhHo4y*}?r@FLmPIj|XvgUsdSchZUKeTzu2ocC
z+ad0=3ZU>-PL*?bT|2quMi=oidCJ$?E(8o}`N(&b0+cNB3cA@5aOVfOyn|rY2B4Nx
zZj#%EDJqVH)tNWbjp^)fnJQj_F!kwsNu7x;<}ReYr0T3PWRJ&?`WI-s0Q}>@4!J@c
z19PE={l$|@hzzH+Rgz08IPJ4DWfM+L#x0`FN|3*CTFC4C-p-NLIwck4r`3bK6T&pr
z?b$Np6O37MuckEPmxt0uvO6DCV<-;1`5WPVlv7aP<$vQJ2j&fNa-V47UvtWRK+~Jp
zN~+^%OE&4F<l#yxdk_-}oB+~o=PSre#QS?aTf;a~x(TL}JZ!6#Jb(*oQW41=9nA4A
z$=!grrFU17E>!4Y-?J3>p4?lBy+AWZFZq6)$paY$wJ(VNXq@OBa3?m@kT9lHd~{L@
zHI`T@xhFL=V<KLOF`~qHXb#?k_cboANzo=0bd7a-moN(Y!ti^vCCzXPhrusC01VIe
z7b#et=NqzH5eRr+if<QQp|h^Eg5}U!Jd~HhF}*-($eJ8*gY-)CsDJ=U?W^Cdt0_!p
z@^^1m)<WAN6DUBx_Zch<5s4Bh{$TzC%g@V;GWnu&1BETbH$-bUNLO+58T4t=2?A-y
z=Q=#y9_Q$uV86)T_k09WNk<YMX&sRLrP}OD&9^BN9lghPY(E)W)pf=nD~0fu(Q`gF
zidoK^s*Bm#^_bmq`V5l=VAL1kLaQDwTtr{d@#NWy8<~U2($~`S=ZU7<V$=1gY3(bt
zJj-99o=t@*k764Z4l)WuN7Lx56Vq&~3p`E~aI``=>JuFLX8>earKl#~s|tv+zqkrn
zf&YE>N}`FxN#PvZz&!cJM7A;!!DoU9h%j<51)4~rI%?2t<=Q5F1NeORvlReKK(xPn
zK)0s1<NPL`t)S3=U2RiA{-xvmK1P4vyuvSjSEz(zJ9irKz_K&&+(vuer6~B^-q3@0
z<8ybT{91e-V8joX;B$YY{sMd+Zp0tw;PZ1vd(-e)*6Qy<c)QCk8;Y1@W%wC}yF1VZ
zPI<E0*gyX0!}0^6d~Yb<9bE@@WOm6)oTxbvYWDWxH!psJxk^@78T<G)WBuMxzdKfS
zQl}-SxoU5y+8t{-spt2NeWM!VWWL(Vj|f2Yl+#rruq-{RaWB|!Mt&=v{|K$C@0SZd
z{I<AtI-@Yri14lvh2&)dz2uhv6PZ+E8tQ&jM$G(ZovBR@xItffliX?E3sI)lb1w(}
zT^G25Lh019M=4Qc0N#W`nQrOj!jn_|+{`+4^|`sZ+%KL;Z48Ar2151T*hY73!;T)(
zWW^~O8VU^!^kM;Q4I8qfSV<NKy<H=oWyJH9>&0`4$^QL^mG9Tv%&6;G{5ci8pYS+c
zRjV96r@N3moiPS(ZGiDrVlC9D28mzCt+Y0ywIA0!${Cc;eN{Z>{ou#b0)noy`Fk#E
z`y+q<6cz2HZJ%<yHM=|T<(ueG92Dx4V3^A6vlV(i*_qblb(qJs-qUOOuohZ>@83*j
z#7p=^4uggwsiDWPp|rCVrmTX?@zhjrZt7wB6Um2o^6sFMw@_2}!IxC;WGnRG?b(nn
zb3fDoY4u9hrJ&4)c5nSC(OFgy0Kb#!?xy*H<`?a!<{#OPaoq`4$rFah)q0~6@CB}-
znC1a=&{Im54_4B-`UKSaPc&~wfk<+H_!Ep0FK#Z3K#ncMt;6trV$vt{@$#)$H@@@}
z4k5R&v)4J@7LCqT$`4ylT(Y4J-K(5@6-~DqRg*5i=T5<I)449+_f*XFjbtp)bdR;B
z>=u;4oQq}8SV4Y3JX!)1Iw%>-RT!R~5{S{`Fc{YJh1TqpAapv;Nt4s@AsA!N9RmW>
z<PrE7VuYgc(ZWIJIS%})d@_kW=E=POCSFUY`K^Jb)9tBeT8(~7psk?dzoE`QOLRNg
za`sP}zp-1j`3s1l`RlV)%wI)go<A{9pU=gq__8rh5jk9f0yJklp0`C`ldLpR-RAK`
z)kWqOsoZ^9m<iSHUZ@cjz-~D#YCBoU*m$zJe=3}~XtDwkOxPb$NI`xr4Gxj240z6r
z#q5?E76;VTu=vA`CM^0ZxJHJ>XXf*uEH&n8Rtz*;RG{z6{`?QZ<2ze4JRZND@JRXW
zh{w79cpUUGVyb&%LGK0{eem%I`uJ!ALSxumfkveFNJS~G;H=wf(b)eM)}{`fFsztY
znzN=2$eW-e4+OqI9tnM?JYt0zgHCzy3aip^qR-FbNd}-=3Ny;{Gi?amth{v`6o9WP
zc)znn{fO{z=p$q*nbBsR*E5_r*h6@mMaKQgLRCZvF!<{3c{dKWW4JwILWuIFYPKlB
zjye*j-91|4g!vO0VRzj_PEq80NIlT|;E!SgIH-%hQLiQaqbhv#jhl%1-T#r`qj(Wj
zDhI6Gp8|x+)S?O_^)ZXtaxEU5<s&_LMrhh$lKVbtuz#dIp+CShC;`v1bWzL;40cRx
z!0>Z)nta)Tn<!V?y@|^EMF!*lqJh7y@-1QsNJW`Ig*XDy#_F%le@=zk*(lapqD(F#
zvvAszNCa6cBh%#bPPy2T@VGTIhjv}yCX8qddAD`qIY6nPX0#G{9qR8iv|l%B^gA^U
zZC1;ojWHbBXxkdsPe5QtPl@Dt>_$p93i*(ejU3(yNYmLLAlW|N8iT?_)aVSP;1+y5
zKp#tDiKbhBsHXwJdgDbe6^WTe4Jew^fRg>GyHlKC5_+Xe$IX?rgrLD~OcZa=SSjuh
z#T}D);%a^nNe$o{1>xBp0?kQ5*&TwA_+etx<bL=VtaEhC1!`x@?hs;ng9b-wCZ{h&
zvbfP#%E;DQHqWz-@fVt$8*USPMlk5BXfSHxSxtX<csI>U!Fp|8{vrh+>htx2uN;i=
z<101ZM>H>OR4rfWM;{jv)x<A+-;b~4sDH;-23nb~yn4)V5beCH8ouI`_X)m269hP3
zS&1{Rv?{AyKEFi_*qYk}afHhDAlewXUwQB_@RjsS{`=P~DZ63<yw8LKN+ca67fF$c
zD*08Q<j@_A65I{jgm?Ns_FiR$<G{O!i`Fr^APY7NvU}dcuMKV_OnKg8Ox=pP3QTuT
zC_3HMvsH_+wN^o^T9t>6nyP4mEj{+y1e;k~;KVgjE0pKPnPi-&;YA7tliH+_S)K=I
zE4N9|)%1mH)@lDdXO@G3?=nJxWz&gW&qUy{qrsB<jtJr#2j7VaphLa-^90DWPc-S(
zb=ss^dD6zL6O*Rg=10dV@8AT?x~=l`#I3{qiS#j$HXXzte@CC45F1;ttB&c;xRB~+
zXItF>Eegn079BQK(Pn4!9qg0}vCH;qW=HUet4t9xOPr=un5OMx1dlKXe%_s$K5|!t
zrjHD*Wl}@_!&F^9spsqUd7Jg~x2v^3itv={21gAsbmLt#TQOX#;oDW@=A$&7NkMP>
z+aI-SLPHymnC*|oji{;JbEv7UbA-&)Tw5SAZM2~Pl?1Rpvg_AqgZGCWt}yK?e=&;M
zcoQmn`-8li+?;kEOm1b7UYQ??&dgR&@#}j{&P*Qn<Z$J|BgU}ONjO_Vwi7I?*Jwo8
zhfIp7uhs}6jJ(~C2!DAC>1;U=;m=5ecnT@a5AxE;Ir!~GrooIkf(9{&!2C4%h~TFf
zPN<d!>k^09rQCZE0p<Ny_r~~1uGMH~pv=+;E*%NZ1!AjXpkYsdoaz{4FxUdCk}--C
zO-%IGIaU)#Hl5xcxxr8Wtws=i@mD4OTjMQ4VbELE(vvp~@2@>%Ab#(iRBQWes<mNu
z6?!^B2fieIH`||{=3+yW51Hxd6gM@En|g6}6??V~kyFxBv#Z#%ZNmNR*|gbJ?AfN_
z!k#_2h3%nL8i{mZ66v!_kjR5kW_$L2+Nl&#K1<62-z-Sy#aT!mUqlHxjGH+)?JFNX
z?x2rbc}vk<vzd18Mn)8i#1l<MX)1;hF9B_&dPCSCg}G#l)>*AZTS&V9W|TOobOZUH
z`%vNtVFOz9$9IxbJrz@$k;1wIPs=x1viq3E8rp!wP--U|=IlyfX~~*B%TFeQmYz)(
zEj^n|S`hhLN9a4Z1VLuSY7)Q6S(f-|dqLtiJWD~xgg0ZD6{b<n(;baD>XVE)Pw{_L
zaL!Y{?t3N*X7>}i-TocheEv9f-D?A<IJW{ixaCbfWnOx-DhErXsFCHXO++;P3pAo>
ze=7;W)B>SA&$yM9=d5xV?f}Y>vJ}qLRT8G9KAdL1aHdX6V&hvX>aF!`O2nT$pR~73
zn^apPEK*O)=4odW%6Py`eG6O%Fi3{QXc}RdNh$A&h1~CxQzrg{nM{axQd&MLEwF~5
z+h_M9C#y#pnB-MSMe?hnoL{<CSI*fPGvE)+nWBLUs=4K^%Bs0ee!6CEWfs>V(4=Xj
zVh+WkQ9BQ@Rim7vVov9>n%QCpi@$Ooip7y6h3=j>jHC3LzekYf?#3FgjIFDw?&TO@
zELPt>MKsbLbWO@PKzjLAq|Bq9iND232QBgU_xyX?3_(-s#w*wCU(H+V=Y<UVCoiN%
z$DbZC@=X7>{cV2j`>xe_yH64A=N*d@^@P^x(-hB2J^j1&I9%&TnYTv-t21j=*O!)7
zZrD@?WY^ZU)@9l8O6O%PT1876=T(Uqig_ma1jr&}-h7Qoq*CuGq24j6;HAWQ_uh$D
zMg#@;IqRzedVS#SIb`H-{RYhP!D4a#47zc^yj7c=_Jbc6lsCTT>p+Na(e>u^+!3Ge
zE770h@%b~A2(`xRI#*J+oip-j>fn2l_OMpf)vBIPGTr=sa+!V}($t**->j3G9lL0{
z(Qb_s+IfZEh_|Qf+)iClW;%Z&8R}QXl6rHI-+nd?RlxVudrzCrNlY>I_dcCJ5z*4r
z)m*yEzQwK6g(g6kdw~Vj6b7cO-T|OT6Fyp8%&t@d4_j2`VTnzpoNYH7A8LuS_+@<P
zz)a%LY+m${YJ&@WeE4wu+T|32W5In<c#lMO42cH7<=5F&{Yswvb3O_RMk+0LaC9hA
z{puXGFbi5J`X$Bt@|+;Ne_8UpNoDf^DEK<6Kx?>CizCnB$?75&Whcs1wr#J__v7f%
z^nXF1FCCyWA>xXasoSfYKSQ(Zj+pKXh18{Ge5heJe27wUXi+b{CbqGCT#V;&;1|5I
z8jIbvT|+}59Y6s#TbFECyU~~$CGTfPAUWLZ92N+%kt>i732TyS8?6;V{~+)DaNAIX
zDQQoMBrko>G)aSZV*)t4^U-r!95ju3-punddz%K(z3^IjWg8`x9`KqcGe1!6bPPTY
z<BuyVf4q1eKBn=<`ISGuM$?MtSZBNHjjlY%6HfUPf?wapGFr(RVs?E;-@%76doBY*
zRRh)QZ7tr^TIS*^4u&mYALZ8h?+%9N4;gud{jN5ts9974;u}v^RxhVDBF~ECnO}@Y
zz{ALu;w^;VPOs{=i+UMErLvRXw=})~frxFFk_(^I&4m9#AnGsiarQBv?{6XO$NJh;
z$S%Dy+5I-yC)B!rX0m(x4!=#+j+?cu)XB#gw%ZVx*2l$c3J-X;tJY{*+Ah%z!Q=<P
z;K~5>9BihR!bai<@7-s$ZONO?^3wZiGxWIPET)_tHyp|xF@`(B)>cS4+?E9Z#pZnk
z#&quOe@_=`_#ZF<>DcaaoT4t9X)5MTtF#0jR?HjO1>rj7Hb4uP5aDbx@$RB}Hq&tJ
z@>jNxh*m_dyBM@kmu;N<4lgkWQt6t(b~EiMGx>6#iuRj}n;L3!G4cq{#T%P2dxakA
zRRz*6|0=exnSp6%hV$Cs`|=3^p8;C$+sUYt+`k{j=|Z43A7-GgYy_YR4)ftl(KKP8
zzI4QlF_$eC7ja46SLpG;*~`T<KmInZuJ+q=y`1CAhs^FtJOa52_t^bE;vNs|``-$K
zGu^5a2A;nziv2cK)X%&e9Eo)OBhmTapZ}i!weMDm|9JuoWczev7XYNW&-`~}Z~a5$
z`zi)$X>^sh<aUhQ<8CErh&#@0^bc$xaQF3+R`)bBX+>4%`3^%BeAIs*?cu$mD-D&v
zq2A7-1o2nvQ%1BhcRlL>$r=!3fEb<$KT9M{UUgmlXY8e|e4)!IHGSbC>iJvvqja4~
z776+oJWE3SZ4J#5I%P9q;ra*v)NlV=X*Z{9b<)mr<3+rqMMtp7e9RjiZ3<vq{{ZgX
zW7<bq6+QQ8cG|yd-M*9NW)E#<tUvQxnwvM_kFs!vF*k$5tM7cdnfYCR=j(S+=V?o+
z^OA+sc`5u+?lE<K>MDeh{@?K0ZHHKL#&&kUY5NeHZ+6YiYt5E!=Y6X`)0iGv7()&)
z;0y8HaA19Mv`C69&ZqTAVbzasyqO<g>-g01+<z0%|2Krw9`Hxm_qu`8xxv-<`MH_F
zUO!GRZTs)q+<kU4W4x!t%ozP9Xf;ky^M4KN#^2cdeQPyn8Fw9ImE+abVlPVJNkZec
zp9qc3z9uv_hd;_&(={}@0Q{Be;oq_9N;UDIfHW@=eU*K#%D4XsuphVnf6)~;cdAxb
z^z67GI9auRsmIM@yXug%p*+1)_*2@MMuX-(DU~OP`7*Q(|3R6=)Asef_dEhIELMqH
z;aeQM(z&<h6ZJDkmNf9o*DtN3dGG%`A(CT5Y>IcKnEtgVX!>vE>34of)1L-^lsT^%
ztEj)RimI@Xysxg0JT;X4w3*4tx1ax}B6)fH^4V{kQZ-zh{YDoNp+5gAWkgI4x64H^
zZxm`4#~Q@`&g1wIAfMi!AXm$2TU1vo`2-Hs=N56-r>Vu#NWT`1V=UC9gVf^NKM2OA
z+}GdC(bOiGYwVq5B@=8`eGT3)bL$(8*5kIB!L{x)RX$&@+RE#$Rym8uDgk85+<rXP
z2QL0SlkbR$CT*^=??ams+a_xG-XDk<q|b>MBH@qXeN`t0_vQdpd{?UT{?Dzb`W-4;
zQJ&m$ylD4UyJ$xvS08q*i}r`Drt_zOojJ|5ub-VA+d$Y0{~qvFvoB9e%@TT-j_*nz
z<9Cr|Oz`jS;<L%W-^b6b4w`6UQQc~3Vwhym#JXIhR=UYqt#{Dq=XKFf`^%;U)va!|
z3u<BQtC9ale^84}zk?Q&M2lDW4u$!s(KZq9{-iyRNd=_r)-Rt=G;<mLD34Av7|2&g
zswGcCX<q$10PmfHs-2@5>#6w+>~e7*YOv^Qr?-cdOzEDK_tOJL6%<HOVj9$Z8q{+z
zsO@pve#S6b$`Tq=(?ceVgx#oJ;Sg-P!QsBzxDo7yaHm`zw=HEkR{ojl-bU(%<-74Q
z=1mRy`f7#itMxxoUX^o{&>8v7uPl;Fmuc?F3BT)SMfhtiv;U2zWFT|pChY0|qlij>
zusRXt=}#xNudGB6h{mpFQn=c>y}VH;rphMB+W)53&D|)}I=~B<QEkwSs$@e&U&Vgv
zrz?IY9gjX*{dn4p?s^uYpXX|;<R`YL*VM%J@Ll?zmPlp$QjJE^cU=_;5qJJ4L-PF%
z)l(lfz3;!-LG3pP?tK+0wLbb^sS-u&D>)T(SI;N^(bY4fa?1$i_WzM{rp<c9##IBq
zdE=w6%kI<j|9-8;p=A9Zxmc$DTG_3Jt*ied-{2j@3RhO<3NgqP?Ek<Oj;;H94JZsb
zbSpD9o!<DvV`8oisWn#ree3Tah-sBt_gri1U#=qI(sN9V$ymi^+o5aT`mYg7ifXr2
ze-HYXXz2{71p2R|uMzY!D+%;>MprKvcVOd#{*_#uy;47xDN@<9xPlYq)Q^ra56RCP
z@*mC5LOe)q0_$5*crc2$x6rpxBftcKGn6(oDcm9N1{EB$a+Z=ZFzgQvhVlPRXN)T(
z?DZQ}J@!^2RdxSY*y~*&tlO&ogx{n8lRshd8iIMj$d~{>HdC!e-U$i#=4<VX=rxwx
zw_j8H-OUT++S*^X+TiKcE{Mt3W%`d?O&aQ;&qx7o`W`93&ESvHYqFsLkK9zPxX#;&
z@W)gOzd9@b|6CjSKE7IQ#51<ktf2{JbkPj!)dB>MucGs<E%J!UyzB+6-tfA486Jn{
zU2cf9YNu@abs2t3HO^Acro8wa=jy3D4zs=gDa@QRjg6a>ifZN2BiEv(_F8FTFD*i=
zV=q64=<Ee>M0aB_f63e+`ZeTie%^?`>$UPC-CZD#)YFpu-d@C-qZOl1>WN}X|KPNG
zH2o+d$EKe$auLRM!6?Kud$I}1Rn&Y7UnBAmd{!Hu77gI$5NbiW58jKz_@OfGpx{&g
zUMu8^4X|R<(^ZB>)KM?mG^JNt5kUo_*LnhM>R*8U)3*#Z_sn3!yzbhl&!OllAo?2U
z_^lNT^q_C?n1C}nHpPCXF5fabqp3Ib;qwA8+N4@e7{3dOpeYG9DBWmJ#-zS!Ro%FX
zs@S;-P-5vqPDHnwOjgPY)=XJ-*!F6)QJ?L9quI^RuSRXm{U52ij{K`eW2gN`75&um
zzw-z^bzO{M?s9UK<MffVS2DiAIS~rL(m*kR>aZPu=Q{3nUGk&l@~b-jmqq_4LA@jI
zs-Zf}llTuIrRVYlp88=pnK_qo-`6^>Xi+dL`=XGKgYa)sy$4?VZG2O|UUfC6K>KT9
zx5t<HeEvI-)Jf|r_wn&sy^!|mbb%<O?POQmtPpR+UVwb{+-9vI&dFAXZL8ARXfQv_
zn@`jiH&!D;&s>WLZHPlLZ_HGmT!XuIP3J}N*`8S^CwO1Mvof;Ee69>nerAeYK5Un-
zAm2*(0{3L>vu97XDjUB7&MdD|EXZMaQ=kWLy6A}K4`Dh<p$A)G)*ZEZa18IQF<*SK
zQp?wT8h3<xBZke25r@vtp<Mo`hi8d>7j(afu{EdBV9Z<}PN$%@Xop+C5|bul59m{J
ze~IrClQv)>&tfX1Uj=$Bh_3?e7<XhrwB(+K&}Aomd?6@6+3-1^tF#T@(OH(_F3@qf
zUhxpBF9Ps1vp*b|7=pW4@LeLF?I-g=LH#ky(~^jJf_Svy1NQ8Qlq*32xo?5o$ZOCE
zu@0SW^+9J3b;nX>T;w>t8CG?a&+lBEwt(=WCHi@LN-RFV4ehFzq1|_|-FvilCt|y$
z5BYrRTeKfr8UD4%n|_pV5X?Jo>LR4gpo#gHHPGs4P27u3{D4iQo6qOjuY3!*DO#_e
zBYpN=(o4UaNqXt`@JGoT>(j}g7oXSHQSTtQ6QOxm1vKCDA#rvjZ@WJ2i`4Esd6Dh~
zFH}}0z{+?J)tKyvKxiYc3s;|m)f+q{&?|Yqy~265bpbea-WAh1*L84rtG7iL1heWH
zdx?RjJ9#~ybB_M>Ct}3;dhN@D0{EP}cfP?KJD;AfEbi&W6XsyDwDYlX=M^6)K%`#(
ztG8mbvrs2GO_%k0R`KEKO2z_c_9p{g`Ivr-+}d`0f7)yUD!v8)rJVm7>C)9sr{c_x
zVi}wmB<_Yh2tSk!T&|udC$GplnEm2KoI;n&?nQs>ex+>(ZvS3tzqw64bD1@g&7WaH
zIo<Xbk$nl~4G%NTOJc;|4n(ZHpN5ya<DG4Xzor$hE~_BSy*7}jVDdRan=%VWH=R(_
zK0MCHH||cd!YCI6Wm;*ZDTw{m>LNNK`LH_l3W^l-m$%?cj_JH%Gf$G-G4vx)yP46_
zjHWrF)(nk%?4jGeqW;Pe+@pO>Kkjk(apWEzy7Q?;?b*aV9vrA~kE1n-drTjQ+@o!T
zANLp$;m19Kh(?n#&H{R-f6CnBhww_=BmN7)Jzfj1$~_j;(Yc4@J}hnpUwN-a;_m!l
zS_S20Fe7i^jC|KoEY(keN|hSUN?gQz53|$TVhrtC`jBq@lCL-t{*>JJ(w?>W*8vC4
zgmK~0oB3%8neeB;jXRZ~J2yZg!{4csq5~v(6pT1!>SX-+p1_6Ey9^t2B=(GyJiCbI
zJ6IjwG^;&fZL&0LjU6XxR(`U34W8$A(I<JngF@2cNzp0N;>>8dOg@{h1m&wiSqH+h
z4u-W|D|u!>f#i}xK<S6rNp{y(_N<lmtmDacDRsSF-ke;r2EL8Mn}xE|S~;>-+p~@(
zJEYW&c6pPucx~22K-DSSgM2Yaa!;-u5a5+ky`d=yYcub+(;mPdY9j==83hz+yR>kN
z^1x>}Un$a?tMvUicoXkUp>*9d?<0*$z};90`z3b(UNVv}9?`{EBXk|A$>`cs6Or@+
zBFPn@VeSKj*83=+>ubV)Vh=#qZbTg3j*SuItDy_ey8~3c5G^epS1r2U2-46spHT7;
zprjDd1t{69qw7U8Dvt?N>gZamp=*DHfiB5&9|>AS*(MXpiU?&j=W8fagGr)T7STq~
zh`HI?$~!>EMn=imV&&l_$flL|bU$2q!Q=pI@!A`-@>ciLR-QMUR$jgSxbnKy@LPE=
z)$m(+b69Sx#jptK&E=Jcr)m4GyruKS%6r06b>#)uHmy8ah+9W%O?D51Rp$Y%AU6kB
z-D}#ayBijwGSd#6&|}=wgmU|W>7EdLe%xP<kDiN?#JI<NAU;Q4*6+FM4$noe8FD@u
zzYi1V;d$?z(HB?iVaWsC6UCh&{71c=!|(aZ2KhMArh6u$PTrTx`v-l>xVgH9=01Wu
zZWAr`zI1}9Ju#{Q{rZ2TJqcV?)%xs?C=M>zxFcfX8k8u6C?w{fgQBTXnQ4^S(`Q;x
zmYNzf>NMg~R<<wpT5T^gP~1f=*WAf{yH~^w1yo@E-*WCY3|jx*@BNZH_uR95=iAPA
zzGa<ho!L=}Fvi}_)n#cEi~t1DmW;^&Pu67;nfoyX?Y@slO(b&)aoTx!A<U=YLZlbq
zGV247Ua~#tB{+a*k9<=wm4aY}US^W9bhyG^1ikoBKIPlcix1Ju^xEk~WiLyEbu8qp
zU?GBDUJkw$y}TAI=*735j=dx>tzcGWBYQdei9#!54gBRRf0e%gf0pNC&iRXG`$B(}
zzX*10b{qk6K&b6AsobScunM?w1g`#}Vkc4)`T@9RQSQ|T1vlQx;JN|eT9;(sr+{l@
z9l>6h9p3<Wog;XiAb4%%xMqe|TyX9DrE#!#cD$AOivq9Tg7y66C^85V-XHlP%ywfo
zHw4(XAEWJ~{pT6&d<bqEu}WmKvYa#3Ih*|Dc|HiA)7kX^b^sH{=o_TA2o%2{E&NbJ
z@jrqH#h=VjQ2d?@6~!fgf#OH~8O1v+)uH$Se}Ur8AQi>s)7Mq~uYFzUses0eKbiGd
z&MHg|=SwyfbIK(;CLNXDSgM_ozWfl+NE@Z&A8Ti%jWh^wAX}hvMk21^JV~mg+(n6l
zD|Arz@QzGT#UHBqHxef=B>lV5T++N6!#`5*r!@V$3DqDD*?39O8b0ht>~eA`aId|f
z0?LIL$2Ra|aX#1#7`EygXp_A1wE)kff)#q23O%JbPdG0S6YPZD%*SqKmh0m2q?;d!
z{vO5t=1_mgK8wFq<NC(E4}9)hg>Sb1Z3N=~X_kw~8Ftd~tm`fp|8B3Srf?IY341YS
z6c;;=eC^%$wM~z$Lz_NngtF<qN2r_rYLM9USwTFDyFXSoeIqE5LA)Pxujn>?2C3>d
z3#iP3t9?W0Og2?3c{LI*Q`}?NC$kCuOK0Qx=SdCz4X*R~=b|D%US#-RMn!S>eE_)r
zSSMRKPh6_-ex5K>sCd{DF7-UoF-d=(=yILU6OG>kVbSKg{`|9$&p-3Mo`3!f)SrLG
zaH+WY!`1W81@-*%vHtu6{r<Lq`n{6twcojheiv~4k{)Wm=Sq}*@56o{sq#EmO}y$I
z4x9ZM4zH?kXxm2*hp(<O9O}J`$w;+&NAPiqdHFH3BSsu@&b<Q-T4?!FwR2bcU3@MY
zc~zIMUH3j(ykB0fd!HMU2}{az;STpwG=vZ!6=^c;lbos4ql!P7-8jv85&4$shQ5DA
zL|>G4zN4Y?9DhRP|2?3f@^cTUsJzfmpz<6)p4d|#==j%6A(H2&_-m-_xUTMB>~GMM
z^y!CmPE66XE5|TWCrCwm^8s<D%*D1-xUHq;nbK?@M680(mB+e^bE~d?5cH9XeRQum
zUWu<d-kr*Lt+1`>7UTWmuZ=fJjJNEHemoC*LZ(046Q1h`d?T0b2|pD3`4kLea(o;R
zUE0)JwI}>|h3yIJmjIgl?~111wQo2S`O(?z0Q>IjI8wykgN34SUR;I@s!Dci^_sX~
znXCO@Lx5@gd0m$`snzA#LSGBVdRxxZq#HR(ffD2(LtfqVH%X^;&bmUJ<mNfRvzdrz
zpQb41KU96|!sO+fmzBC_7bT1MZWw$=ZRsoM;Wy|3zIq0}iYbzICBk>>#djK=+*!tS
zvhFR^PL({7sjh6R{H8wt(^RYcAKkP1y|aqHe+9pPPBAg`yDI)zcZpwT;_J@jNZ9_@
zbcU=6xW6M9fJNe<=?#W%gB#3-$>@uvH}UgG{QMLW(sDD58zeWm!U2jc-r&VgW1wx4
z6`*~k0BzEF0NS2ju=q`4E@v0>H$yQjdMp02SNt;R8uc<0dwB(W*`oB)34583z0ADC
zoabZl&E40q7xS+$uU~`YX_U<5IjcPP3g-BqVU;r}hM2%50f)TKb9ewYO@8sZXzaR%
zji+1XvDbL<evD4Jg8`lF<=V1sSG2!zveLl!*e=r^U?cSw50em3VnWRYpsu{m)BS;$
z_`akpafh<R{y-+u*9ox1_b>7i3&b~b4NI(my)Ebu<dior04w-$?FFk`c1^5!*EO$(
zAhTmFTD5g1pA#2qY50{#!+WT-SzyyaBzx-|W2;jegyCGSJ$W;YUY$S6uLAH@E4q6w
zR)Co_NF+f3wM(a|$R<5}uW67=y2ed4C5iH=8m(4sE_nVj=dw;eQf*l#sqO1{t1&JE
zPNLbNF>9<j8%(N2+y~`=EAR|1!WC_ezmPo|3rK*J91X&8oVBno6^<}B?3=+y)t<U)
zIxR4Z<hNYO=W~>l<*#D_9C5C^C`tHOr0|)G(gA#4jj1=eX4cHCr$p_UtWj7=OIOEc
zX4a^(+5Bp_)%Av`NR#!js7CX0q&4ALi`kwI>O#z#;*hZmtqECJhlY%bN*$UNZY;P`
z-_4BnVI~_#OL#6mMa6Qm&f<%Po#BVmR;MItU|8cfneCXHTGYU>Cd7VVBk@?gdaSYD
zMHzxQ)mcf9j<dQ}UxM$Y(LB=J3_N){H>SE)MqW~^h%HGNg>|)|dQm3*vXGnd?K*-W
z_FN9WD%a~e9|q}k9s7%<ItG$H=nC<lrkFzx((hf*O+|AEXgGDr^3hM^%oq+^(2u+O
z9z|7rvDyA03Dv+1?&-^^N>66CnJiR#>Qh@!pZSQMz7ee1?AQ{bW`T4bO(x%N>F6S?
z6rp;C&h_J>1P@_Rg6sz{_5CVnQJhNoJFrqrnbnmviAKmGIh<soho}7YaA+7P#<bJT
zT0*M>1JK|zn2bsr;!>QF&P<6LodJW$X>8{Z!2V`N4PY;>%k|nelA8E@T~T8xA+RHK
zpEVf%sK7t&M+_hFCgvaG+_w?+#Y|mukFg<v(nxU~2aMm4>+uzt3DL5+ji3wV`i}~`
zIb~`<&kBrR@fTGYcVks~i;vl{87)k%WH^n7{C5D_KvF@j7t<cuB29q$=G>lyPstXW
ztIK9<&RSobiHTKRUd+f;w0rdqVlxPw+kyE-)xjca(=BPP>~M7R;A)&?8m{s+6v^1`
zZwONVkV;OGvkoQrtp;Y`P7k$-iYfLPb=3D|{3^|PBh6W=G;l-!L<+VKKz4UJfT}w2
zouhVN$W=kV#l6)^ckJ+Ewh(NkSxxa1HDs^S2c%}ntn)gvB27}pf@-%5{*d<|OH=Eq
zOGyi`&O()%?<N|a0iB#y1kn%hd$P+OiRF%Sr-16alK!-2x(S~YJ$fY(U*dmf-~nWl
z^ynMaN)>PW4?zl^E+9BDH?VRd-Jj<%10XvBPq~k{Y5H<LOzUo?9y0u}1b^tucD#aj
zQW07Q0z`%_D&h^|wfAv4JcCp{al{V+DGf#K759qg(2mP=nC;^$Rb6y+C6Cw>2Y8^8
z?(+tA<JgWxiXD*>W^)pB+GeTl{Awzr$=PVBG_HK0O4Z|tzS5@Eps!bg^z`*a5Yv~<
z75j02)K@QMg#dc4x}RWARjQ|>K92SaDqUF|A^N8<COn{}<`nt@N&!GAe=-+E3#C)M
zqbpjg;tS2WX@P9p8{q0vAu{aj&dNi)$^IELBlgM#2K1FKpAq0e6#ORd)YbRHRX5HR
ztCpWK)Vp`?Cmg#vPvF>dYW-*@)_p-2P$EKUH@C2ejE(S<+|f{H4kIwBOqBFFHw~o{
zQF0@F{f>g8wEu@`|K*$N{a(TU==X!DG@RDu{~~8Goc{y!l=%;+G}HsxF9H^^QMY-V
zKsKCPHq`2O6iC$n5$xZg>t9NEja9&hP_1@eE9fx*H*5=wg5;IQ0|ZHCg;8PmAyuLz
zXv`KloUZ1OMu~x#r0-ljM-wi-c!#iqT%S&Mkl<`mxawtNJk2mSlUYet0}@bJwXX@x
zU}3>kn&(kco+`;N?zic9KD?8@Q0oy>{wEkteuD9wkOd1k4RlSYvJj@oyEte_=J8+3
zqVcD~KT;2G;~%NO@gE>=b^^zLl*j)P$N#y#aeP5kJE-`(MqF5xO`$BVjY9Ngb|l{5
z7<p<dz;#KWq)ExcNx>>vJwVS0NkP$mH>xy_;y@lw|LNX&`cLUQ=Cr<SnoDyYNptR3
zYy5PCrLjyGmP521$bC`l-sR`xjY)K0pl1@~o+*}M$I6vLyeuP=0B`~Pnlk$-9oSr7
z93vHXuLnR1MK25Z9<yeHO`?H+fYJbu=ffU!>*m9tiZajrHb7;+Vb_@%c5>EaZ`Ug{
zdk;v=1=*rf;@mu6zR9xY2JStKhu@IbeEb>OR&&42pk(>q*N%!8V|aO+gMK~)f3{G4
zG@q%Bicp6ZEE<5`H_0nc2H@!dTJa{xs|@@GS%NiwojKP=$?<olxhCwgpz14f?t>aZ
zae4~fZX|p>h4}b>1)s94a{=!^=X!SqD~Vo;@clPf;m&zjrQVpLf&%Srk4hqNt8=f|
zynVPogcRJIN~;&FRlkTSN_EPD)<uUUgg%<)@ohCe^#cIJ*<6!M^2=~CDi}jEMkvTF
zphxLoE~TfJpD5!vwxo7G!lZ>z&W&xj&rd)Yq00E(4_Wv}(0hR&^>z$<+XiDxF45cb
z#IF#*2EfaMsSwXan6R=ow{*uG=<OE)z2G^#Yf%C}kWt17r;Fb6w7j$teykVTTq_Wh
z$(a^&lrT3;1Bup>^ifrwX|n8Rx_E$%1`(R<-p_kZB$U+#<=0k{UmH+<O`8q!D-Xwh
z7XSK^1;{=pJ7lu@d_TERgk0}~JRyd70v$)NDeS1Ud9KphxtA(sQa$;RoLj>rHJi-=
z4D6mNAGxUl?lWztEH{v^pVHL;^JF=XUv}$Qj$l^VNvS!NNIh>I^5Y7SAw#N=j$%vq
z!aqzxYkId6Hr<J?8f?qvye?+5T%8RgU5UIJ4%EpjiEU-_Y0z_0i4HvpQrB`{YFfyU
zT-nO)Rx34brHg`VDuDpJ3hvbK3k6WY)4ExdQ6^`(vcm0F2%z984Q8hZqe==)S{GZ1
z$mD|H0eIDVjYQ}%r7!s>Bpzpp&3Q#z^|xw&&|o_`^A>upvb?1i(3>4+H4<=WvwGpG
z%Im*TvNP)IJ*GM@=}UCaI{yV(I}(Q`;x0`L#gj}Di#QRlIo3R3jk#e;q!s^@f&UqY
z|CwTLXpbb{IN+p?^>{IwQ&rDA=OCVFa>Ire`C-cKuZ;BrF{;3l>Pi|-wKU+54E!Sw
z{z#|fr>U-SR(ME4=X>}!juL&RxyD7Oxkh92aN>}uu5^nn_c>P2@EkfkM=ecYwpY;I
zbN*)H?HHPihu3?^-6yv4IaKst$9IJ}cy-21Syv96(@oz8#I#?p{<f$`XIT965-k<o
z=z~m3H|)WfPnXgh<V@9g5ERa@*|p{nP(>>%qD;AT+QGTxL6USmo`C0fnaubh%Mw&G
zep__HiN9{PTd0>E(nquT%z>BSh|cx!+!tSIwtw!+inUk-4E#T{qH1H_&zy<?^PE@c
z<~pqSpr5X+<3idGo3knn|6fU2+3-Jc_@8LR0Q@5y|6`J8S94Uz?c2*km3qCp_O&){
zTdmi3xqYpTFDd$Yt?lFuRk!U=UQ(sl!|A>8<qMi#@9|!KpvHG{&nkm_zkeJD``m#)
zFN`Tu{58s@B-r${_$ssgBHInL?V8<y4?o&&Mb@R=8gjtTn72L|k09ko)bRlCvzJPr
z!9N9VF8`XfIPWdctqSVJ0SBn6gC}MfKN*mrWin+nSbMCsweC)9`2lO@PLOr+JK;R#
z3LF^E_R!zi9(r{qNTbikE~N2_-`4DBHTn^qnC+9%Jo1ZDFHpDcxY>;C;VPDIic_)t
zkpO|^LjxGg^Kux=^Xf2`_Y2VTFDu4$$5)u`@xElE?J^k+DI3^8XLEJ^D-I8%<A8b#
z$xUKHB%CIn31BCQr{G`qk#LYR7T^>7y{H~{YjvfErY2xED#u{bqOsgP8iHzbDd|Y9
zdPOFimuE$Wr<j-b4|iT(Bm1Q|*W?_pvqnPa67(!Vojkd0O}N=U2#3lY9Bs`hv?k{q
zO9BCTo&6*tG3q+k1`IG~138vBx2Kv@t}2ctPu3HT65rR;J4$@+&+2PdTXrlVCkf|F
z&1sDtt!Mfx7f!GnH|*8!!knF|*L7AT+K*{pV!QQJ_vIvAB37I2hlqKVOA)W|zC0U*
z`;ryRec=BJbM~mc*&^fAT|U-B?d^YlVwd0Z<6Yh}i+h__SLtn!ufmM6$dW7n0I_d{
zlXef#-W((4Cx;qP;&8Q9wZHO{GY4Bqhi7T_oEUNz%a^EMY<-E2AYbDT($Bhv7H)V+
zZMYvBuE5C=jXA$&Lr@MHlw#J%V||gx6#D1~<T2cnI<oo$iAk|UV$RJ>VvD9%yQT9p
zG|DyGw}bkS_crcUN2K090jj+#*_DlCzYvH6wjG)kZxD2C98X8pdx~91zuA`JtyH+P
zd!#h#C8Y@UMv#T3@p!a3i=kMlIVHYU*9eRB-i&Icin$2L+eH?baiQY;<R}4c@0ne6
zR(cHn;b<YNdGO{H^$^2yL()q@6*LcC1MOz*q(3*~eFo;U@7~U5IB>NO>GRl~Ta~;1
z5di&+f(Lv0_&f~V-o4$=C(lVvt%)JfRO;W>?WRis>#Pl^t?1oYm#;y<T?5TZ#qckH
z0OXT=&K2)B-qgL%fYIciZYuBPZaR5^&lB|Z*eM2h-%CQhkbf&@{x7Y62{S-z=Sn!E
zevdzulylxgkjoCU;5&8bMA&}H1msPTk!E{iU%sWb#ZNS8Y-*f8Hy@3TwJ#%Udb5tk
zrY6>@!KRM-{2ey+n_!#Frp(KyFqd*x7?{-SK8ib6QXP)|LRYTb0nur>_gR5rfg4pY
zt7=;3maM9I9l@$%OgbO9p2VhF>)6zZsT!L~LOzw%m@nR7heqHIK6sPjIb-9;w<9(y
z?QGyCo?!_>%VHdEslWK3J$`T}{33OJ5&o)B@5!YW_`FVgu7}S-s$Zsba|-&!RBHAC
zRAHOq6{T|zpz5ieIxUukI|s0`4$BHKtFavFs%WxP;14Q{K8e*?P?{Beb~OAEjelgo
zA5r*6I%>9p6sg2CJX?tVq_3an;%+%r!R9#^h$zBlAXy<QsOq&UAEifNJ$bpvLYzQO
z3xS+YZlzoO_1l1ws#*z3BENdhyB-rmZ0W=%W=l7)19UYk_yIa7E)a0aMC5LMO@UM1
zVr+2=Tf9f~P&yrpf~$TtdGFx+UdY8>bQ|oIXC({lyrwqXi}$gJw2tS|->m2*;U6{*
zp5zFnVtwAH*xw)6Uq@qq7p2WF>H9l$L+Q_nSKKb8zo}T5c-{@sAJAvE37u`;B_m<4
zNMVvVBmL(ErJ7#Web#sh5!9Lx*d&^65>rga%#JAX!vsC9jXzJI4lIbw0_0$05e|aR
zDCjy5?^p_E;=CtU6F%#PazBqk2g~|o4b+DE@-A(t_epNvFxwZC+}zKH+P4HdGQoI!
zg_0wjdYtuvBjvr1V`h^6N2|NvLIMEMX=E0y4sH1Jza%ac8~+rE0b>8}zev!^YQ$Iw
zQh{2|;FcZ6YAv7Bw@g=C4(FEFGPRbe`j#1L%g)@gRM%%4eaq2mOJ8p3d{S$9ZHlht
zIJG4Q8pO8I_4&KL<s`M`H{9|UU7sK8TTW41=5Wi`buC{IEgPyt&y8Px7#jNNmOe<|
zaIUUl3^W{~YuJ8@z)~A&7J|iyDJ<wIG#x7y1jl^3>6lNKj?N~0G1>}`lej1r7Kf$^
zH1Nk1QKW`vNhfW5m@6Kl@L{2Nu*hFs0^C8Bvfwh}&RXQZd0*pmhj@7Yfu5J)a}Rv}
znD{fGUqAEmQ)b6&RKQ@r^wo2~2qvlbNk|slpxF&JvN^FqQKgWhuF32&f_{DSeN|e1
z<FnEv@#-;r)uBq<|7Jy6<<pw~9{P{`c2zyE<$a9vdmrcTOY_SGh*_O7GS}R|JGYSH
z(ev(hK2oDVk|xfjXl3jIj7*-T^Xqv3Di>=wKZ)n?3ec5&SEcU0r(D`8-aU-(8dstz
z6em|&!5oFAwxvSz4@teM^)FQ@exe{oaO2}>k7v$Q><v-A1O&WsqoUXLJE%e6pPli*
z1N)xcjnAQHr4^y*=-4IF*NL|Ul!*N-VusY_S#hbgkAFlr)D0j7=3G^3X=ksNS6?>P
zGZFKd;iI2V)^o6P%3QL>;(4*=JfijUc;K2gkGCd^dGx-f%%cU)!(FPI$7S5pg$k@T
zqb%5w#Z=+g%Wk4`I+3J0xt=9eIxJ7l!?FmUDGje&qK2cmVV-E%0UPeWg#GK{#b%vH
zmu3zbv*INn#f`ZXkB=XT<KB#MO9v)uXM<^EMxw)s&6Rj3j01<x@{Xw3xham}BAs}$
zAH@1f@HT6ZBxfO-ylBmD*B|h6S%9cKkM_i|D4+YnEYTG_vG*pv`ORpm-tevpWEY&_
zfNJvhfux_R;kvkB8=ZLQNMxLW*%5<Bri8?oI^s1?Bs@ruW$~fwt@`w_y*cTnOYvj!
zq{U4veop8c2#kqnm*8r%ndne4s|xYKyx`jg+J|U&0;#n=3Wve#T6maGV<rVM9ZOki
z>2~|xhKjev%wsAS!WX+R$gOZA=_Zyy_1puSIXRQuTwZ%fadU~H^I5AG9}@9H8ThQl
z4|SxOJVK4Sri`NaAx9LN{gy?p!RgyOP<%_`PHgCCPRD;Wh6s=7x)>s~KBFV$Z-A~l
z|I408`+{g)R_BFe_g+|-^un{~Cj$rVZ^?K3uyUnHzd3Nlic`pRrt0KXd+x`4ho9rF
zT(7Qn3m|ua*UZ;aoEK7@SNf4}K*U;7;MyR`^lCz<AjDjo!BIwoSMuWoub~+VyjIZ3
zp;df_fY&9H0bbYdM0n*8Vs~x%D8XxZ2R*#@bIjF89S~kG8Dp-#HO5>`^C5U;uYkFJ
zG=bqYG0+2E{U-}}-5*#JUMZm}yt2j+tZopjzC>7Ut5RU)I3&vH+zY!RZ&U4!7*{n_
zi>spN1bv+HMahI;JYTKGRaL+|i{DWEc$Xf~Vf99W%^kG<z+>(4;T+qB#?gM}2J;Dw
z9?&ieGm0rAMoEk5RG&#8te)GQ?A$~|l~`XTsv~vO5wR4sRT*{=4I5pThJBibEv>5?
z_D%h;P9Bzyx7x^c#mMglYa@qfBVWZO<$_9q<JvfJ)6aM$rt`An%uV&mV@u3#TkeF&
z^b{8ve9&MNiemhgXK8osSIAP?7gWp(qS}>3+6NG&tbrlVsHE?R#~2^F=Ia}Z@pL~1
zb8jZA^Qb$WEccCx7DEan5rg}NVv-VWu+^Pz!3Jn1bN#f(m-X(!$e6ii^9AYg2^>cA
z&O{*#Frb%WXslRy^iORj_RM-7mY^P_$S);J&{w*KQT`s5pj@Joz&j&Rbz6$R1Kt;s
zA&9Vx%1Lb$w`hIQe_L~(yDZ%2g3)~r;6{(IQ(Y_F3Qk8<GER^E4`65*#y1mR?#J0V
zIPXNRov0FXc93UT6jzP2I@g*V6+VjD-xV7ii2^zc4GV?nj}yPqoI6^ewq=m3mz0{b
zk<*WAo>-%NRcS(@8;UpI2yqum52=29IT%i5Zf%hk_fD#SL5?S>&P}jJv%N{6!PBfO
z4U9d8-P;cN5**YzQW#IG*CJ4O9xyv5<1BOghg+S#<b{N7rqlTcUM{1T_lH|^)`p@7
zn)8O$nOwo^H`~!Q52qAI`gDq@k*S}Y)#!i_XLbaNZ=$4e6WBhjHlpic^uvgCL?9;i
zpgY%;dcy5P>s(43um6<369o1h%1h_|G?47@Dq3El#Bs8}4uAggIN`5DeaN$_b@vWO
zxyd8r#0c_AJU=F{YS16K;a7Oow_l4Jkd}@YCx{Jo@ml|y$}^F_vNG|7@Q^S;m-4&x
zt&cQb`K~X0w?man#hXyCO9cpr0)#)s{e**uh2zhnZYp*6@}Gjv*1+QOt*M~i?7?|;
zDA%pSEiJ(&e#*T~xilA_eU;~G9X#gOaqHj#xFmn4-nY29N%2^%y!cmjxInVlfv}_D
z$SLC~A_{8;W2i^Db(h;3Utyj<52axIC39{LiNkCQrr%9N_o|kg$o1ISFErKF*F>2H
zboPaE9{0Ji%2^$R9F5z}SD<~X9c^&j$==5urHngVjEi@YsaUYLi8?OcH_A<5+=WQ}
z<6tOxVVP1t@5>DKUrJ~HCHO~r{w@(mR%CYcAm5&|>VC^>%MJHYiBI$Q1Ni%a_<axE
z_nXS_`?c!6(=kZ@ea8&+fAXO(H2)_h9%~7Cb&ThDEM0!*rW}{HVHm|@A=)jfE8?+$
zyP6#b%J?)m^+{Ol?`2vXjp%n$x%Ym5C-EDWrS%(c==b|_?zbKGyR=*v?>6Q^SjTxc
zySuGb;`DNVCU&X@agD!D>|cJ8?YK4G4;1gicz+c7u=@$lYIB7%i3Fl;nD%qY6Ufag
zL_M4%`G4U#U`2qC#aZ=1gveJ*6+AzSCLZ`n8Uvq^1L1*EL%dY8*07F%|I~<=dX<C~
zsdQznM7&f9{2?89y7qXfA84C+jkvsCZeHHlGUa?4`z7|V_~{zsb<oC}t&BGv+m5@%
zcohN0@&2gh@ivJ#xcu=5oFDavB>8|Yev8D|+aOp6yQZDDC?ZUbQ{vZXKYY!zvwYS4
z7;WMWxlktP%ajTG;a2D?b}bTyEAf*NF!i*nit*2EZ%53tFu%1G^GTNq6JH+YcQZRU
zKi@?%$E|o=Y*ZJWp6QAm!~G7xey^2k{Z0`5K7;*MUQzm8PyNck1d2b?`%m+FKJ{V#
zE08NfiMx^#U~u_q70=<g8vlgm#PpS~P`x)vcW2^A-Iz)qyT*P9Rb$}mq1W{H<y>1`
zIypu!nt<Y7Y0=I{{#3D_N~Q2Ve+4WdZwqgh9CI1qyP5(AmS<{Hn5j+SyT^4?7$K(c
z5>6rYn&>zG1>FCi0#v8811vZ5x8hJ+#ZVZSrQR>|eD4{<Hqmf}Dc{>1<~u=|FXq1)
zMEmh0a1QB71UqP}IKlcN0&w!>YA$AHKLb<FpMw+m*?@?HIUdX%s_2L7{CF!*;8w=K
z_j!Mi{39y_pPuBSS9A}bT;^yl$7r;cb9}lq1s_nN=6A(0zcGwibP;~Pii_WdUH<`(
z(yy69X8!`5A^$GzBl_Yq?5PUB*p6SkgB{$9ZN4>h{0jE;U!|wh*i$d96*U=&J(*Fg
z@5G+cG4mp;<r)aCaXzN}4$w^Mb_qbR8{0<WsPXvepZFMtk5{mJEFB>Glat;N#i0u&
zY`E0+apB8FXO-bZz<o_=cm_b<0aut$GuY9sfGPQXadm63r{4&MAWSb>x$pz_v|r!?
z_moW9?0qJbx!4onMr#Y=@-+^0yFLoQAHt_ePyO!jD1lX^+6k>hQ|eB_-sU&Q$skvd
zyHLs4z>n@ANxSGvwmyCN81(;1S&hgwAz3hd4bS~bNEmX%6$I(P2e~7w=x8){)b^Gg
zUGp(^^dVqk{&<`qvKQG!9%D!It8pjt@fVCJ%-@R*P_WAXEg?5R*#G<-1^?xY61)xD
zmp>Srt;JvZ;#bXacX#1q&l2UdnExGq^(+1u0YB#dpganU3cjv7xaq;%v`nu?E8e}1
z`B!mZ1b6-)YQKdQ`T#my<f|7vfBE7f>NJ`TEZ-ofI8C{gWg&0m;$q-hdjB|KAGA8J
zk$+sy`EfSaSn`U?AjXc)Zp-mbJf{+L>XsBgGSPzXt$aS~OAqO6Z79?}RQ-FU2S@YK
zxqlG(tSlMO&PO{#lENcJK0=u;R)w`=<GgT1D-Kre7&~n)pS1X6S#`O57zyKa3rsKj
zB>LjoTvI}^fKmV!_{C#q0EPuoU3EJ2VK|X1Hg}*>JPQa&=k2zUqV(08GgkU>4FztI
z-y4pmtQbcL=Craw0fr;)9RY^Q0u^}5PUw2M2`+bu@V!HmWkT0qny9WKjr@E#twUY*
zOegw5tEI0$TP-X3kUHAvYM0N>9Qdnr_MvLG0c!Pi@g7FF&GR+DZ3@6`QYgK7$yb!2
zM{ubC6mUB{z&qT~KA?kJ2B$n=oAEe5#fku2K%>8K7tJ+ioXEzQ;Q__({S07RWV9PR
zOK0)?xqiZE%U%9Kz*;(&UQR=k3A!6rxAlb)auy0$OA|*Uo#jt5emjl<I)%INc$q-r
zdnvw@7K~!JGCIT%>gUf?mzD0T!wOg*zKJOk-sa@;z<;)&KR1l?o{x;T0I^n{uIW?4
zE)_to&}pD^hFocchpzK{%$Po)od#mX<&)yQoUhZ52_c=Zy~AemhCBtnD)Ly-xjh$8
zansPhI0IPjR=t0sAT9ZS%6Yz!>tp<sq14AXsrUDn-o+mBt5tsk7e3Fg*7TQ)(v*y9
z#om9qnvdvDVygqySpOPd;@zM8F`obPv+AR#Zv$W6XV?ih8gFnBYXkVVblq>O#BUk8
z-<<H9^9Ti-g%p0}=aWyKHMxn0zwz^t{;ERLES$g6VKg~OH_viu=Yue*S<1QHEv>=l
z$Cc+o>3e+ct37{&&m}k2_6za(=1tWOFcY8u;%DhOd`QszGBWYGlkPqcfjsCz21W)$
zdWCi$C*6bX<1{$8qo!d`SP?POOmeBXKXmTJ=;vtU-r0}i)i~X%LzhzWa8g>)e6`>&
zLX!!R8FITDirq#EAC6td?&^oMe-ZUt*9bU*T=12~KFoxH^qyT{b3GZV@*DPi+GeIR
z_-D)L{&D~R{Ctv!*>XeLZ&w|tazk8SEACMJN1{6v`ct7hR67v=dH$%9ijC?Hy-4>|
z!g`nM;57pDaS7cTR|b(;vP3SbLi`!2;N?9x$p3)YV%W-5go`!98o$+S?@r+`Tg>)X
zeOOh}MRW(49d0sQOg3?3_e`_>Ec{b8i^9Ck_CuoKOs>yW_KNs@9rg7Chk%!v?T-^k
z2T>S!duzf7i`l-?2mR-Y8&EvbuuT?Do~p)y=eHtU4_5sA5C=?@O5TL!4owQ<b;V)E
zd3dy%&^gN75VmJZs1D=1)b-Jap9a-sF>cSJP)e+a{Cy=~UY86*t3jpS|7)LG#eL^+
z0ZQb4n7b{Hrj{Er>vKP!f>!l?lsc4&uK`&}i*5+(v^CcTn2|dSC^I)J(kfLP*7}+I
zG=U}Tz5Ch`=MvnK?$JExTd8uw?A3$N_XysbuDsM!{9AemYO0JVX~<Bd0+LpY;~8h7
z1pWZdP=q6ZQ`c1_NyU<^dSasIQDbrLCG0_OID)XFDP`f<A${-wfU|CejvwZ)!d#In
z+xv=89cd~y`LE`mH6EX1wdY6hIbN6d<f0@E<-?mQiCPB=*^-qGpgfqY$pRHzLMUXl
z5dtCAH5ibniuDi*mN<Bw;%AG865m)1ofQ8$b|K|IfS=$@uJCJ)4ky3Bf}uLSHB>Iu
z-!rL=-ZnNWsMg=NQ(|{+H+iT??9S~5R<r#`eLuwbzJcfa7~}h0<bO``gXw>KInlon
zse1U|0;#(C-vX&3RbN|I*u;MAG)+cjD}xla;_}K?76f>(74-8_*~(Rot;l+|@|Oo&
zDGt!s%AL$s_Ay&All_YM%6bD|d6)P~L$7>g+O7G@B;+e*$ESdh@|RTQF?I`uHzhuv
z(#}T;Iic5(9ut;@JB~9aurlOU==G%h7l|Okksx|kh{LR4IFAj{F`WC6;WT816S@=_
z&bvB>)Alo9IN@bFhGSJ3PKGq+ppM}rvH|s{Brh6MwYtwjZPK<o)z?SA#YRL)^5i~x
z6zf@o`&hkjpJ~K>0M2^uGs%Pd_;B2&a$RLs5bXR_h4Y-a%A6;1FtClinqLrwxT>TQ
zG}u5Yuien}h~hy^|9#N21IgyRfnKHG;l13OtOdA5D+ej$wY*aK?F;p{)#`7H)!#O&
zzs*#CTdMXqLH%u+`dfzj+b^UZs+^_IAOmMPL2vg{K@F*$co!<;MS1>Rgk{YU%MMUN
zpJAXxIgcY)as$nul3L;u0vLSrC_6P(m$}^q-_%1B0b0~u4~Jsy!ujLKx#?MpHU2W3
z#40F_3(IdC=5aY!!FgO#<JV`O?-#R0pmG$(vBlx3KUzKYhf3jRcwJGb*?(WbF>Y~q
z_K&8SlQAGQXRU8q{O@M_1(?PFSJqY@dKNS<{&?)d{A`VU+~g%Ri*v!O%Wf%;tkBtG
zMUI$tW_!O1U5=Qrmx9RMQtnWpTjs%=x@FF;q-6?zLhF34@*k`-?zC>5@s+n(=ct?d
zbp}_`I(7b8y7iUZ^t!%%H}&g#Cy>{-0*!h166dRj(E5_{c<o@1(rW{SN2z?WjAK_t
z)`P#q3z6|)IlRp;piUZLCo5Sy_F_K~#uKa6)j!moo{k)hCYYO#$1*8$NVRH9<hNJo
zbk+X%0KWUDBWMma_RD&Rnnke_R@MXJiuEH}x4w@L(0Pl$F*|-Bo<H5kC)<Qlyb-P>
zXM@#haGS9?PZzI-6~q+5UwIz`&ntK-ikxr+ymLdAzEAEq&%O&RcGV@$7VKzFtfvT$
zjv`CQDr}wo0orrF7y$ahV$F|n$pB2x!TD>j(ncNz!4wRHVTwPZ=MV7tQG5pZoR5{_
zqzwbeFpG|yX8Y&th7gA@zQz}>`jMPnz-)hy-zCxcT>q}n?D!m}R2UHXxgRGRDNA0t
zJPK#q(HB9oLvp8z%LlW4gVE-&(T|Q0Xm)7MW`{rhjEW!TpT-g~xgk04Vd|1I0HVR~
z0EphXsGeqv#A)^|7)Rbt`btbu-Y2-)1uzl$Lrq_z5*X4Tn{EM{fXrxdY$$QHvLxcc
zD^e5@C07eLzPb9EFhCXY#n0yYXeKG7gTm9C6Qk0cFGnYv8{QvBeijMXOK#$!*I|-@
zR#C<Q28h{B^>fOS-FvLg_0m^32i(~&{P~s_&O7XSDfJ@9suyDv$EqP{&~n9&h9Ai3
z;Sc&kH4=T_6ODHU`_TLT`XnmPP+pmr@dho+7p)n%nOqWNWdJHMROlrkv5;O~U^nRI
zemH!2RtutBtFwNjRGucl#(~aRVX3bBLtROsImdDn5gulHZ$EJf1FdB}mTZ87nLnS7
z0<2CeDs#WZwev~MEVMb#;N=QMB;tkjunnf<-2Sk(FbjqXE=hAv*kFNQ{E~AD{jE!|
zQCg-O+gZ@LY@l;wrA4Ybpxv_s`m5eYO??&6zU{+40$2C*<xAd|h#ip~@h)s8NlG^^
z6N8tA^sjcix<?Y1da_d7`2u?57iPyjgt2t>8wCyJyEHq61)sYq&le>VJ|}7Z2o?8Z
zD3A6m;dA|JzMd+=hleTb>uAhwO#SnaP0Q2!7iMM5)y01Seq*d#!6%5{t8Xf5iJimV
zVv3SiE`v9c1A2w2e}=g?mmBlBoR!AmkcYW$LKnoL+^i-T<&5$5R4i*{C6X~4I0IiL
zEUO=hmD$4CpAzMd^vNLuGqBI|F&u*D`Kq~=p5?nt=~6!!_epq&DT29uiV5aduEBL|
zy~+0)J-p2&u%kAY>K@+bvZ>I>n6fC~4HP#t*oZB}>wz&eP~xv~WGyjuqw9~l@Q-9~
z;8u(?j`uN2j_~9-&h8-$^Z3*%F0#(kCaCk@6UDZWo;TUv4==u=7sXKsY&q4rO>S{h
zmk+1&K+Z4m2q%B(0#lKGJxZ3L;#sM#L0r@QV;{VZ9ZNOcNm3y;XIWFxXqe_a6SEuO
zf@DnBp)$(+<dyXSP;!u)a(aq2C$DUUKN2{AA3u`<8}Jk(9)b~i;vS^oDOk}9ItOM2
zaOB?Q<Ge4?RS^iMwhQ>0C?2=*dbLtqh&TxX7bD&j1XOVEUVt4y=ad@9hWP=?QG~;x
z9#iD~p=1d-K*E+1<r!SVipWwST*I~pGJ9hmumkA#nGk!uG6Fb|OUaa%5Exg5KfFdB
zU4z2mhXv4ru*vKoFCBKxvpK7!ZLn_VMm)BZ2C-kZV*tL&eF9@1$P@9bH06H2PMJiG
zkRXVrTBKnqTzF{S{kU~&h**6Zio!!j8~SKPkNRPfhf`EhODSWi<Z@F=K{2aZ6kxE@
ze?sRduIUqIb@_4h1!dgvV}ENaXm}<};nf6_Wn)N&l8>h;y+y?x2om1<YHy)ulkwW5
zE<K(?$xF=hOMjyz{*r_wT5mvFLuWx+XF+EBczio+18$!;e_?jYi|u+(JG%PUiK_eR
za?(ERt5+m!*jkgiH6R2!-;AIg`nnI_&OAW%;rn7|EAB=va8%#f=}<-tDoJU-BNPXo
zf^u)#4ZsD*zEC8m3@(qJ+>`@O)q?R1@B3gOxG@}OJlzzth3Z{FA75Y}_Q&ZuBK9Uc
zpm^+n;xS6+Tekataaba+22ia)kVN6m^)rgfD_Fywz4R>7s=ne*nsl+XAfa2ZUt@sH
znPIVJriko(RyGTPI7Xi?Kj43BO}Y2`VrV2?r7W>IpIB>=F6>g$J|H6mNW9U4^)a*E
zU$J4C?c>Nb2-nQnlLMdWP8NnFjB1FV0*XiPFjPDOJ9I+D1O0)+5M-3+G1VEG>SUl}
zvQk?-Dv+NMRRwmSenK{PR1}y|EvTRGI*NWaweZ%Dr1mq2HaYO<Jv5)u9hLc%aX<Z)
zenzzP){jperJn|2f0F<ip?;07flvu889O&pPQ2ijj1zziohuNbHWJ{5Tgc42f*u|X
zWjhBV6@mE&e_`IGN{Hdoq6VBQCLH+%*%x*YrNL;6lYK-gzzL0&y?F)x5*dcp$cGev
zNQ?{mqBo|Q)#`XG!RG;LK0ax#?ir2FQ}B7mO*N0<ID9^=JnxV)@VQvKN3r7bIrSdJ
z#{Mt8g-JusxM|QQ3MC7+AELD9>@t#nZ?0J>$Vj0qLU#FcU3~0e^;X1jmu4qXi^sv?
z7uD1f-FBX$yoPJk?aaRx;DxE8L-TzDm3Rl8X0iokD?V~YvlD~|<e0lVtD#`D(Sp%t
z%>c$11&5Go5Pr@>7%q``IoFTPs*?F6US^dMSj>(d7yz1ZL-@6+HSgwMH`-&%rMbOS
znPLCKqOgA|$^n8d&ACZV(emgcr-1oLKlNhxM^i->-F-6|2I9~#5G~CYjpEP(5G^;=
z#VK&RXlcCKPaSx>5TW!FKq<c}K!Y`gP;2m4V6E0r^e)8Yx2wtjtxz)c!qnvoevw_w
zB$X!cxF&hlO@seu?4piD?XTPgno!qm8fZ3J$hwIVLW=!EBo+YD$eN0iUVxLniLMs+
z8{>5gdAuBTyoYWY;l(}@nd<v9Hw^DDGPU+i5S}@5oKb%+q*0}I@LrjRyuR9FzrrQ|
z1chFjS9+V@$$ORYeU0=qQn3|-DqMdw!EZvONu+FgB61ShjIkv0XsOK(O?nW!f5t-6
z!)$MK1J5s*ch_`7R0PIBC#r*9zAo@IA#qD7inq%al65VwB72+CjMy7_Vg{J))9LYH
z6Dr%`F-7bc^r!`Bp#%;dk|mxGyTdJ*mxUN9tQ)x}8AOYvUlRo^$nl{uUds$qexj{*
zbZ2@sKcFIEk&1!&V*|DG52jSC!*?+$w9<B!%1WD6sw+*hvYiZR;-z>VDap!KF(ix&
z`uiRm+0&tIl5p|IuTsQUR{Sc7T>9zL;#YNkfq<AT;~6pKWahWElTdy@piU^&q$66t
z4UlPw9v`G)IKt$+1Ni-BM79xz`~M>3vsg(QO=oytqu_s>vej~hk=`EaK)RT;HjnQT
zShe0`p_j`jFzcxFX`U97m_gegnA(NtG&n+$%CDeu;R?CjwjEo^??x#J2Nvk&zjwCN
zT<SCO6f-iS>3Xxhl_pOAx`g=lYfF?2X%<QW`g?19coOt8U!?#C$<uD6gwPo!nTjBj
zbc8-kml1*c-a!j^<TC4LF*tU#<_Kn^sdP=`1aSsOFq~U-R#OUWF{o;#&D0CIXpz7Y
zJ2BlWI^nN5lL`5SMw{*1+Ol*31<p$Df)*}LZq3{%{QoTMZ-|BuSJ*TRMRIOOqPCbD
zrhr!04+PLQQYDta#6hWRwi$UMM+W$`!$tNJ2V#;@{a~VPo2sS{sWEHoz%llVL;%BJ
z&R2VIl0H^6H=6BZ+TbUsg@iXDFR|Ay0^kz5{sjM+7b7k%$D~y8CFaFzl1vrZt>N7Q
zcn2CSs2JJzvR3{9Ah`JrJcsih9jDP_$F^rI8nr^3`jxhXMgE-#i+*mSV9_JAq`-IE
zuqPTbgdOdDI603iHiBZI+`NpC71}Zgm3;0*q<9HYY0(8lr5p6a06s?l8ijiQ<N9MX
zu6WuV8YZpKV^RTjVQ<!o7SZscib=y%jxrK40YlIf{!K^_jp{z8Cc^l6Z<ur@f>^(b
zNfv2+Plb0Q-q3PD{g3aYvz0NjAl_^T)FCud&?XUxkZ^`DGFinOLYq`Vn-d!qR2RY_
zs<V<VyG{!gUGl<IbSV_*f~(uuU965iUI$024vJoy*A!3PVXl%0pCt3*jcM`c2t%ao
z4)E)L;n%Fzlr$K(YfzlnF2t1?QFy`n#zx+Q4=j9ZhX?kaB?$I*k>aGE5coX(@M(J=
z;cS)=_{VuT4(2`uYSs&#X?N;HFc-V|i{guic=L2ewU4{0j}NeqguvYMh#UExeUvNZ
z*hlz#8yp0sUw_f8h);6&^$CLurIni*(JytzZ5#~@VFf}d$-KP8mOCtRw9R><A65vM
z7HLTzp29eg1>2N67&y-U<ecNal(SYk6;thg_#tFCm|4eutP9$Tr^5E_lj?Ry8-#RU
z4=t3jOE=^B1#bk>OAX%9tRppx6*>|qbZO4h`CUN9NG4E6NDiUC5UPqH()v(}93KQy
zq?qn5NvgE4X{uj-V4#PJ9j-{JTI81e@l~CC!Tt`RYUTs|$X~1ZT>g<>Q~r}tuW>|`
zyWKj;ijKfRfx1J&ZNzFKiq&-(!?5sQ^b(1^{9LNUt%#i<1BQqfd$2L>hT6UK@><-}
z12m|n&-mS15zrrCuAsnA(#7XU#e^nn<i;1pd21ur=Jq2@DN=VO<)RXQ@^l-flwCjS
z<$eDqgy$>UFsJ_cM@`-*6Hf?yh@xZ@&oxsx^=C-=u8>{L@DvW*HMkk_1d{jDTMH(Q
z@^Rdcdd>q(`ZJ3v@6Ss}h}%e`=x5OwexsHw^y%6~C-gfss72^EmXW+0HDq}s3!{u+
z&^8wO7AY}Sc<SSPqFCO074_qriaUH&%17K?L&^h#?i9`}1ZRz0I+;0eO&L#oI`&Ci
zZqpPF9AE(tkR1%a;zE&QgOJZ!3$M3JF>CZ{67bycwu<p)wOM7@2kU#4?@jLVknc$?
z6#3qYk|}ik@hr*rKj9xt1jLd(#dIvY75w@O{F>DSCHuQ~GsDYijRhLt*dX@7-aup5
zbI&5^H-xFIwvc{kYGI?J$(pkkt**_^vegwZr(OhY(_4%sQvdHYWb4?L7<4b}0<%k$
z2siDXQ~|kbOX|8)J<`;r>KKZ_#`%5LR<&o9grYxAKSv4eG?^;RZ>+KAPKz9!Y+n9H
zN^TOUNubO~eLAxtcK}WY{pjg%&+Icvn$?Z?a9*@dpg2OHDO!N~k(LtsMhjkn<2!8y
z5hS-lZh(v@c%Y%#8o!z96@;8YbZ---=Q5zar8>`{Nkhrn@Oe|bC4?VxFclkm%5kF5
zH0M6E1IxnVeH&fnr^XL5nH@(OqM=JN&!5+x-dP5@B1O10QjX@pf|WC^nN`xJZkmAm
zE0pYBp*H7r3Nk^9HePU3{QE}@IpUS;w?dD~lunrKFSz;U-b#fV_=E=?SoxkWd#+Hk
z(P$2Ejguw|lnhnEp0m0Dm|j1PVB##(uieGyE4*e#cN4w<Hg;IR6+G1uk#`!?b0~uT
z;jZk3ltlLXF0^MscPU;3;sR(#N8YxFIvNEjCS6k)u3TMAw{Co1f1tB+UY~y6cwXmP
zHTQHzp}Iy+mum7|mFez~b@8CHTG1`ji6)#>2L6#+Q}`bmsk29UNTNFbKoX5aNz|zX
z<r$3A3}Yg*Hd4>UpQ?6uE;^8YPK~o1(~NO<%QC$j_@faa_Rq~&4lG-yA$AUlh`=GO
zQ4YkeYm9PW5>Rt1qWq9A8;f(_&^y#~U$#Ye?i;<#<J?!$RFwm#P9R|fHP@Z{9&F+L
z+&3k-77-A75_v;cvKhx_p44gU(Kvx9wQz++ioHw6%)?n*k0SK<CJa7m;`Q7Y+T|AK
zzLPEg$+<7qc0vdSMJ6Pi&}0If|1`1CJWo4A4Q}oA`1e?dDjv#AUd6+;C=c-vq>6_T
zlwhUn>&Hnv{CwP-czE-;A|9r7Vev4qg+V;54A#WM)5mdJ7Bx}D!x!{JyJli$@JsbE
zyit5P9N97;R5C3qb_yep6!n#cgXdb3cxZLpLp*GuL_l4uj$zj;MHZu@omKHLwY4f9
zFv-y05)YGvc&Kh&Q#@Fu$D@eVyxU1H9@e&IJ~N8cg4pN7cm-p>)K<`dUlkow!~@=>
ziE=g<jv^IIYsd5*trHI#D^P?)-!NPT2?r|i3>*;c=2(RTL<MvcAEp#z&O$-)0+!Ug
zgHKT5RxDrgM}$)My?cc<r;t_+_=x@_bZ<JEX7fLy?h&E_!&Eb3$3*yMVz@q39xc|>
zgA9Q~QeERc;_rl5S!j4eX>)-LgCPTt;=SG#A#bKMRfN$Mn^U$@qcrD*ROfka;AjIv
z2U*?^Lowm~4L;VOc(KCiArzC8l&Ghb{4shS%6vEtFK7yj(ME`V_^XQ1M!4Ur$!|z|
z?<PNaZn36+_tWugoq=zSdXl&W+wO~OJE2&y6H@W6|Ia~W5cX4gPRZYJy(#BkXu$aw
z8esjK5=G8rHBcnM{8L`eKVAR9uvK_${P~O`PZDRrxKd>S%bmqS?s)WnJ>c*4uRrrl
zz%!3c8^<Zu7sBg9C(?cARXIA=W5fafU_~YAFw%+B#{6`N&2U|jVqNcf$kT-<)syHN
z?85f}-Ed^7mKQ;XQc6eS0P?DnHBPQK{~s`MAxz><b3pMI5!G&abeRY!M)v+@gkbNo
zFDNfq*i$}6j>;s%qDWw}?6k3WFKRqvB2=FbO*E2Vls`Ym;VQjxq<o5F-Y>=A!=J_M
zau<mYjn4n8V|gs%ac4<Pc+d^qf;P5Q78F{_3_yQ1KycQZC*;#-)$$!RRx3?uTXUgN
z@(L=9nhl&SE!>)$*lvO!U*bB6>0_98QaH+k>{+h9LUf}%fFFW$rbhM!_DAQP;nBdc
zqeu^mC1&;_a88iiIp<9<LzwZ<nBD0Q0$Uprv*kZN(qEC}B^nL5WmB$4mP9J5=f&gX
z@&DGL2p{Q{JNZ^6>kR%z4u9XFD(PB+2uU7<$<0wvC5{{KM+pYQrTK06o8QsNYByV=
zoEP1H%9E)Rs<eRM9UHEIcazMUI}CmiX&g1xB{!?dX!7bKgL&Z25R`7`#PJ#cA}o+2
zBPWr5L&h6QZYnu`)>$_>FVZ?Xf}8Cr%?;PD9Yd5u?kviBgEu)bvbf2?x#qP|=Gt6l
z-1`E4k)NSV2j$Yc`0)I79qu^Q4@%1n`005e6YP~`BeG3H%-nMPb`;d6O|2C4s34lk
z)>sZ)afL?H>bcg+^g3O-<@D;+I=#81{~s4?#!la8E$p@OUFY<B7_RQ2EAZg{2zC2t
z(}ZCH_DkD7>GvPiiZ?b=a>*1C(p*s_9B%Y!siV_C>zM67m=)9V7s1LV+Aiug@meco
z(XsS11rbEEB2Nq0(@F&;o8&dyxST1~3MagJ%lEy#=sk`6v*IWYEmFv3sx!Jvpw$rg
zMecd+mL#w(_-~WI-5=IQ0*)%WsXX0Jr@P=JKZk8qcfA${D&IW8vt8N}^Ndp-hr~NL
z`g2?mNyw*zFrU(CRRe&dz*>3SDHVoA!ka?Ckl1$Zxb`aI+UygYH?A8F8db)gt8MY2
z-mOXOu3GzTG8p<DdxYlyAnGhXE@#7Ls+)TB1kSv_1Dqqr(fjcV)siDUd5flIDIF~W
zp`V{}n~pXL@=a_3YaD*oz&ty)P%wu|YCF%fALJ@@bHRbO$m34l5-8EN0wo-QGUPCf
zjn<uS8~gYSc0F;yqMCN(@C&p+EI3o^0$;CvfpW>!TcY>!KO_DwdN2L9Ru13v4g-fT
zZJ==YAL}X1VbEnAb2!jU0ccN>$+2_l@iD5;cYN6F*%Upnb4Z58J}zEHh?gdOX%7c6
zvI2KN9z)F%Pu3%vi1a6#Xb=BLADvKXqD>mmL<)%+!ImFrrf|>`w<eX^cP|2W?~$WS
zpZ?IF?6_PLLF56)Yva&8cmEv@eefMG9NIC8)Th&WoD21WbLwRK;AFo=`cskqVbc0`
z2(t<9OmB-??-RFYRD}o+^S~Zg;5UJ|DeH)<<D|pA;><J4YTS9^oi<tuH218(8nT@r
zoIFicDHCM2-(yzLr_V{%)x#paeTTAhQMaZ$Tdg}6Fa!g14`P}ZPrefga8jXH8@m{L
zm~ifyx`1WpeqcWKMwJ1Lv{UMBm>3Sa4w-H;(MT4Wfp3T-?=>zjc?eCoSYC1=!ivjF
zK0lsHrra~1iyg*^+IXMtAm8ncW0lzdfxxxtUQn4EW_pjVdE=M=7<yO3w#VUwvf%hF
ze}73R*~8$p+^#7TZM1x!tRZ<!38T5DnGYdyoDfMdQuD(!_pUCDz1p%iHDEV5@?w#f
zoxSCbrq#Nmp}3=U4)EDwgCaX>Cu^@hZu0yhuY&qJy)5$h<dGsmg*|nM{Wz)#{IlU7
zsqGPk{Q$N4-D)zoSXU!lSNWk^a`8*s{x%oSeX~|2<=z`!*M1jFK%HN0^f2O(Vh6v)
z=7rR{$m59q1NM30o&Kl9q-xTY+LgL9YJaQf{`a7s*X0(gWh@1+8`{{w>rfH&O1`(@
z1vuWr$Xj12@v6r(`8)7ydXSK40dQ66oo|?*Y^V~_O0#U^wBK#SM)oM(+?QR!rfcQ#
z5_MA%K)4uR8Nt?IK*(75TUuBo<gS91U;62$MT^JD7a0s*4B`+^5T8U4FF0SDe8_c2
z{0;fwe%+gVs17yAhX_0{@^Rc($2&kO9J?;$SBm0f^KwJs?8<J(tFNmJEKYj7A+J78
z{)~=Hl=vkYy%s62pyTX0!G0BOl48iEcbh1;TA)TmSY2W3wxVH|ODUfTV}pCBw79Wo
z#zywAM&cR^HJ23)MYulRVAX3xX62M7>J6QvVPiHbU!`k^C-6RuS+s^AeRsi15>n8W
z<N#G~EJp)Cx^y@UyUxPkdA_gig}@{8teY;5lTB8}p>(Tj;W0!ym~Mu9H$pUBiTNzW
zD;2CgZFoiZ246QYymA&w&5tkwVu0-2%Z-Gt=Qt^I%+XCV8Wv=hkACgMeZ<DEG}M!4
zR(V&Wo1J0yJyH?DaxbnTD_0hA?0UFdbWo5fexjq&+L_B~#MIL=>d`mIh^%PRD&`Z-
z>pL4A$e(_JQt&HU3soCjYtEfQH`AL_U0FM*$}*YLX=a~GUioK#y*}YV_HFj+WaZ-x
zG+9Y1bWK?qTUReDKRknL+QVQZT^OMvw?F8Gj~1Nb<kZnNj$%PG*^mZIebKlvQDo5I
zOp^vS*|~v%O?Jftg^L_{E=u2pXj7KB<fJy`RGRV!hAFo`#9v$R>&d#Wr|7;8*S_wr
z``RK$9#VwC|AR*lC;j)&TA2K87&LY;044GJXK@M}Ym-Oe24-2aj}~cIZ|YA*bDJU=
z<l*HtcCti%bpI_?p?hl`<SeeVayuQKT2)8T;pz0pe0W+|4^LL>DTQckMHRo?EMAVm
zm-frhF<E5fItRUCbWgoR^T6n|-Mls#u^y)=zexF<V;5gXu9=8(L5h1{+xYIt-PuMH
zD)o6!B&J}`!>M(6L3!9&&%l2cuOQ#p##3pPrZXht)+n6g_Fa5;n!D(PC+t4BnwQ*e
zw`8qX?auElc!UM-6f)gjW%b42nzH)DB|LS+xaF<#E%*1qTK9K9B4W#Jh%zViYtbM7
zYRGF7V&2ieqfMoGe%cSm%i4L%**4YB7C-tB$9v%qFD{JJ>!~{)&7Dd8-$7psw};zY
za-i^GG<19)!n-wf9NVXykP72JrIYVyNOiHU4yn$)Z9uA40;#@2EFOk?`dJl&Qjr46
z)ketec|ucMrSl|X$wBN9w@r4G-V#`SJ%RNou4%yUxF+Quw)C<nwC0Mky2hF0NoWSl
zd?1uA9ym$pi=kGm<o0QO?OH;fO!p$?I+bX=$)FM~yTp@i4x%l8Bu*A%v!rZjmH&u9
zX%mXQg%qzG``0xB@!p#N;+b!2AWqhUc+L_7hyz9R!c>4xJ{E3}`&N2f91$a_#P_Yd
z8?Jh7rQwJ3@FQ?|U)}KLI=bOa#^LV}%Q&DBeo21wz+1Yx%71KOxHKFDb81s7uhHm4
zerF4t=1`lE`xLRskR_E=7NnRc+FrgTDm><i3MmNtK3lxd%@;v6=*Ik(H@X?+m2U3F
zj?ZkSdm_B#D3*@b<AcV33JKIF%2^uZz01-73pAM>SFY2`RpRCQ;$?SyX)lBG!-_xz
z#$UkqrD#}nen$cQU-9<%*J@RrAhTAq^jDw(9sMs*#QBAS2p`pZB@WIjX~Puzg{vOs
zalGhN621R-Y{YrL8@A?=KxJ!wB*_$bUqJ*p!AH|ABaGcKo#Wn<gQ`_!K^;JKs>b_C
zdDQRjzi(VARO~7l!ekg8ta<wMAwM2N9V>Q}y-<f$!PJ~>Zn}|PzMnC53u0;~q^==V
zo=|>1zyRe{SKLZn8@$HK2vF`HKPof8rcZzZn^dy-7fM~>7kNs>KQlGPq5{%)EA>G1
zFP-t{;5p<7G8UKse%nvz@Vf2{Y*+2B3>EmuBOb;v`SmLdhaL!rwg`vRO8(^zM7^Gr
zfsvBAr%Pk~#hFDucZFg9sY!$V=9;jNrWY@m1Zq*DOi@%ye)umUiBGOFNxZs*Nn!z(
zMt79Ju#|vP-m=3h&bI$M_JE)*H7?p?Z!eABLb&^Hbi2_9=F>WwSRj4l;p4oe5Bp)3
z)EnYf4$rPuKcyP+EBkoUP%cU_e!OWYDdkyZI+molUILIT0fH}qc7vQYHBf+1n)I4*
z#x^o2BX81sXyRzQP!{&ypsimt&~wfHo?P=c{HX2*fg*$-fG7EM-AG1+`T@#8y?BC~
z59)aGrg}^{H_@JY=Lo!1KO`7XNYNBZVK#k;9}}-IulCD}ApOzJ%;^I1dCX0sg<lw$
z0PXnOLxo{geyoTQ^bthac8IcXUguwWsYq<U{?Dkx2T3ZZ$P-`i)gF|u&ArRlzt(xs
zQ%sS(s~U&ChQF{Cf^E>sd8=08rOw5P-0h`9o^zoiVg93DCqg8FpAB4B1LcR_9_8mC
zZid$UblB}b{R}_dyVe`venG%lyaR4&jW6;W-F~nP+@*1A`I7NKb(LE_Qc|OzCb#eB
z1?(rh<`jC~{?p~i9Zs+DzBx&?ZcZ$c*0*ciIy^@dM+Au}F^W4?$|1(f&mJ()a4N7B
z>+NT`0f+0eMlV)92FcWSf}d=|(dsJ;Bb6}KxiQtbfoK2;tF!(S`S@xfE|DGBs;ZbB
zP=W-j^RV}DWL4r%SdUY?1T>QBEGCd>v_dqSiq-)gzh5*|h<|yE5Zp6yO6~ENCD-_u
zF)BZpU7HoUZ><~jBtk53|3CgN6Tf?Zov5FnI^`EF);r}RlN_+qt#^GiSc!2A*j(&y
z79NrfM;lF^jopVSB9kqY8{;yTZrSrPE1zc%)lhY_9u{hDT>g_NhdR!y_JR$DMOhTN
zLYG&k5g~4_V%W}Bq21|f4Xn~F>l7mB6P_IH0NsPFQh^jI<-cC7$q%1%|3LpUbUY3_
z9*p)s=jE8)6h$wsna(iz^I$ET`B<%+X~XV(_WtAV2H<x~)@c5&n6Js5JR;Ruret0G
z)0%TWLzi`NC@2=mt~nJ{*EY~>4-TMQEtx+>_+XO#oQfc`V>@L;UhTsvU(NRAR1YyA
zQflR{A|D>b^8DZWN|@=Nfmo&ietMPiVyvD?8Rjm~S9jd3!sJV+W&Lat<#gAZ)MP_T
z&P8}88`@h(U%T?bIwGRLnvnR&kCe})4h9Oteo#7={?ylmNU9PbQUsAp^S1~%EvZTJ
zN)d@L8#}R2;tW9tf22qRv)$^)=JilAc2aJ<Z-CWff-Q>7=Nv(yW=9(?zD{fV`lbpI
zGT^@(%vqrVY|bQ0YUT#a|CgMz!58BQ(lSqh%*OD6ekM#jGr&3WxJB<E*c)e*o7lgv
zAEix`CYJN?h^wCjb85ov<ROTe2}3KZFf$=GFx!^~E4orgO5sbc^dF#ZM|o;&0lHnU
zW3~?qz(4A8zT|!}Ww`D3?*i04879}*lOIF^C@K?YcTxROs`j<{d)$(D{J6R*?N}~l
zXdE9Z;zHDFZE1d-k_$BWy9-6>RsvfJq1qNWNHtJrzc4^q((_zL#B6`GE@xCsb6&MM
zOGUz~-M(r#MJp~PkpV2;klTtD?KtXz)<=B=THjx3Kx;=w@&zbcwHaFGhjm6*_Kkc$
ziiMd&K2G)X!TZ`$*sIe1Sfu%s^wWE&mItW$Yh2Sqf##f>a?a$=s>TgAJGRh`V1US1
znVVG~WKVZMt-&S~<0J8=Eg%xF*TS)KE=HYVYb@jQ9%fi|@1iLR_&-x$<RWTVjn48w
zf{r@Xd_ssT1O4Pim8dVbQGP?0zaG89Eckw3wVF@JgwI=*dg=rosXL&xQlM;RU6rDd
z^``<-I@eQ#I9U-E;p^Phl*aW@{7fZ&Lt?nQl~Wo%v^VJ!!_BFu<{s=rYbXWa+ng6+
zms6cbq;c1()cGTJIm}p#B8>8fBHy*bd$Iy@ekG!u?$?-d<j?tc%s22Y5`8_cU3>~3
z9GmEn^?;H$We1htecTjN!YNb6W6G4gK7KyZ>C!54)J?;$ofnbcAEx}EfIQBMDv``^
zi`kKkH5NLkzra$<Ldft`7!bLv3nJ20PQAMNFMtuupHaA<$hj%*Oq==}A~gmpd8bDC
z33lrk=Eu35Y*%6J{r%MX*htfa2zop(7l<c~x^Bet<Qt6VzayTfF`moKsyy;VNu~Ui
z+)|hC3E;jHe%J97$FiF^Z2wSV`)+r7k|_D+_<}MG0+l4MKIliu1}Aqx6D3tyxhTzr
ze&pdwKB}`gQ|8pt#L_B#QYxB6;tjq3zka+pWxP0Ty!|}hBRF2Tud%&VX>Zcn7jgSJ
z*!~i&bB82df%#2W^CJ;{?YScG>k<AvZ#m|lJc{9qxgoRqQHJ0HeVH{ZS%QYBGD<OO
zq<^~H1{T2bM$ZAH(%B*(3<;L?fb?X8Eko_#6wI(w7fdI)7n3%wsM6?Lkq|V=)#WN4
zQWt;0*;K|f`x^Y9r)FI+LnimN(A6DN_^wI86uviL4NYJT(*C!o2uxNTBGRnR#DF@X
zO$C^Ga)A$Vx5q2FdR^XS+|5d*{x<r5!!O0Zi~M0l<yBPRv0a7O@6-Bt_%(Q2{78kq
zzU6d_d`*vcJ2+p?1DC5rzMMZRJ@Y}?gb0_qDUCSu`8$=m{95JQq@LOjzFp`spHuSo
zauNSiwrU$v$wZ(MxlGOX1!P9~nIkV(sTB^pk-D;)(lghm-`6tJ<KL6~*uY|vE?%ml
z07a9CO$;^LW9lfmkB62jFNL*+?(^TKKIV+`V`{KEFEBQ_5`#~1KqBZsewYB+=FA5C
z>SwVz)1s`-;nC)X{o<tQv$R5tlmw93PZ()Jfp=gRuCS;Bs1T)F%#K6EAG@0I2lQ~b
zlPblde&wCVcL>t)_~t>(;|tS}2R%dVKX%y>wz^%NjPW)Mmn@SK#Jo}HYrvqN`+|}<
znnVKRe37*jPYwx*o9HE9qr^7*GD1m!Oc@uOL`r2>5%HTuQg}NiK(3M1@xOEdag@kJ
zx~!53S;VlsJyrU$Ij5k1*4(3@8fWgY0o;&Ym0Z&)J1xn%DUp}~xhbp)^SId7&`*Ax
z{y5b+jGz4}3G|XQXVw~vbYn)f#)CJQ?H5go3LO=wZpbdOcb#2@S+?`50p+BVFRPXA
zr<AjIclrgOwDILa&R=Db0tEd5GOv3oMLlN(g>${!zf8en03jvBjng>D^IHBoSKz_V
z(FZQ<%9DORY&Ob`-PhX>njR*l4((>k0XLzC-*6yI25jIbebs)6o_RdEv8XRyPY-NZ
zey>1XJHyxVG2jD|E0-`<{!^nvOh%r6xD!jO@oL@HhA?lb@(K&;J1f*U>W&yGi(7qI
zdiiC-I{7s<&k3-&gFXF7S4HL3=9(HVRTN_%*-yBJTO7NygL9^1^blnOb3GSrbq$P)
z*^TI7LRpfU`=E#&!U!|Kj}f5W4vE>4J~U?ce|)6(fx<C-2vHqS4d?LiB_TONu3`NZ
z=V917p&URDyoto;0cc0mI<9$`#-`v3W(R)vx{lu=Jboi2!B?ZMdGe)s=QX~B{<I2T
z$~s@AM!fn3seDNqNxw5)1_lXUL~72u3p!!4&TJnNq~k<^k^hUJ<e9F-SB^3t5|XZd
zBr+tM^Vx7<N?WYX`z%)He}Ewk0ERRm4yo1LQRUZ1rd2cDihS>tL=l~Qi9v(DP6!w{
z=_s+OMSm)6DwFCahD?DUC^CIp5GOiGb-idJsczz9Uz<-Od?+Re=s$>lnf@s<k{2l<
zXzb2U1tX!!*y#L699lj9VJ7utBO`f%%;gttl;s-N@J<PTqQGeqMctmF9+0Jswv07D
zgB(3`JwgV6W)oEx%ngUFv*h;mv${e;ijbjTrxd8~wBZZEM&Jm!&LaIZwVH>){O2N#
zf;}{d;U!YZlP)O}pLVZWjaV`Rs76}yk|=EJ=vK-Rib3aqleC40g{#(Lvv;AH+_03d
zT4Wi`o!1T8$K4v0-g^xlBDB+q{3v%yNb`*>kp0dZ+}V5BSp;Sj{Lx7sbky^z9XRTX
zC|cjWLK(nwI^zI4Y3`R}iqf3h*&r_$T~+JJrDI>e-=Oxn)P5JVFW!#La;f%5;I@Mi
zl%hPG^nyd=&&YYmU4dgzs?oMh<K*OVXi!g*UYu^shhJt)zud`RoJt+(H`rxvvjp?#
z%ky}P=CR#R?1O`EQ})|fG!>&d__ibjJFE<*3QLoHuNv}E0^qVFp>x-#qv#p}JhAPs
z)e+>?lwv9{>0@$Qj=2ZbO*l85BtgjAgBPK304HQlIHusRvYkFne6)yoeYc&|!(H%?
z)aeHi3twV(V3Bf`K`U@?+~{4FIXsjE`YeADzK$hEq5?GTC`(lKHqjUQmgc=ey%m3t
z^E^=dX6)JLeKX#B+OQdp=almyz^xh<bCjTgQ<Q%oFWMba{8`wJ;40dVb)6A`M03E>
z)qDI{t+O+lZGiX1M{J;E(wgq1)Y*@QQbklPGw?1yVe4=nj@g}07v?VjXI_<$kg1Eb
za{3|%;I2Bu#4pbzZ5S1^z>hy9;Jy~a*V12|<()-`-?Nw9?g6=3y~2qFoFjU71%^`K
z-xFw>M$;f&XKD~R^is9LUx?<pQpYK?J%loAl7`?{DPj$Qg>_P<RB}^*?i7RWj0U>r
zDRkiq39&MG)wmPBT8Xb>8IY~$msNfu`>msGg~&>8!{YQPyQQ_KtLPNPh$cr|=KPj!
z(y=~0Ef~RCnp&wcQn@yX%a>@R4m1+#-^Gi8oq$FL8=vaj$G<^?1O)iWOWq*2Z||)j
zm;RIia*j=0Y+y_$0l*(9$^2=UUGi$=mc(?J^5kJu!aK1mp>SA(ZM3Cka@+@ME&E2K
zyLGNb0p!R*o<<DUijyrYal6x8W7sq{`#PSIA5u(X{=UqnSNSlGr8*CSn!5^-jP5_>
z5#+&<_|twd*1a>-v5H^Ao8lcldd)<hSWc^Y3I}daer?y_aY`rB6?kFt=$j%`mQ|8E
zr*LzongnvwKD~L>NND@Cjj~=8wFHDxeoB7&s_@Pah*Tyo{dkf)g#~fcCoaZGXmdO@
z_XP{ZmyBh7>{uDi`5~P1WTNonY*fD}jTcQ;kw?R2;Gw)NIPBI7+8nowrQvUe`ps(n
zf-16y&pJPsmiThGGzn+OCofPgB1k)$5hXozvdVDswx{!(XsM6x4e2M<fy!wO@mqTZ
zQloPal{5>f_Z}P`Tn?_Q=HrV>P%63Dx&kk~3$G~QsjHQ3A8Ac~nBklhqBPD`^95=d
zX?W3_Y;K6z3h@}$Gk_G=@UCz+A9$P<-g|=7$~9-)d(lcr+Q|9SRb0Jhs-J2kHIW@;
zMx6A_2~9anAa!m=lJqeB$i>_*kcDN2RqA&_Qx_kKR2Kc+sVdc@YigvAx=vTC=|G4=
z&7reW60X;W);lg*S!bGalD5LpQLw;tu|9I-Nlfa(iMvCkvBwy?bZIjr5?4y6v7@-s
zjZz(2WC^tZZ7xzdQ1t<Jo}AMs%sgjrB$~hL0O`(%2R57;@QT%Ur~4T4r?Zj?Kqwbi
zi}Qt>u3mQY)qND=P(eZ?P{1epdb@<_2fB%7sH^rhrc}ApkE;U&Qy83mFjX81dHfzS
z4;_!;(68v2A}M<|rWu$PX(CU9=&a_Pn2jSQqSZ<eK~!a`B&(hfObuwf-Pk`WeQi97
zaklX_XfEMYsR6T{Ikw=Dn5&Pgopb#|kyu@+U|~`#SoqOvOtt{)4HLnBCN<cv6rnO}
z0}+>@kh8G+G(M?eP;MKg06fE5g>+0wK_tTZDX*}W7gQVVKp59H@Mx8YYdcv@=P3#o
zF-iA`-%WB+wZWdbU$Vd}c~7-g|Hts`mMV_G^Pif1T*BuQ%JY8d06t$<p39}p`0V4>
z^6w9e#ORJBbVVVjed)6!JQ;*v61tL*-#(S(RP9k`y?i&(`*&aJzoVesBuq0z@JJA!
zB;k!V!R1xGJr@ZF^T$a`X+M;#ViT)X-Qfh5vOKNX?+PX9Fs$!qC13U_{m#LLU1<m#
zHco6<l(J#Qox?vk<JupUTE6`#K|nS7R68iB#Ll1g_0|=ombVgbd#RF5k!HuFN|7S2
z1}NJd_6o{AVm>y$ANKg@!e8D#Dt=XyFUs^acmyE=|L5<*qlcTvr+&PULul>fpmlOt
zqYH&GGT$sXF8HP}A39E9&4cl6wEXNEz3~?4_Qhi_yo~GC?6P_w=;t4U-T&7+Ij_N_
z_pTR0LBg1TGxv%HaklIzqh%<e<@R_w@E0y-lR|RN3`?MS&e~SU%==s5o4Va~+??$_
zfp3e}AOpuP)U8K1J5Ro%voE^>A5unh^*7~I0Oy<51}`}L&Gv3>(9RGR2My>BdqNxf
z;MjJwN3=>_hvtI}i`fx>52a{}T8H)skZ0q2Bf65=lx&-Cy-xWzd!t50F(U;OGg8FH
zO_|<Ca|+I0i`gd8n7tQT9jj8j7tj{rVbt8#%|~HCp;9A(@S%#ba<V@QC$d4Xe92sI
zbK*rC*Qg<B?F-V{w#k&+7xS6ZoShRkp;aQ4a#g1}hi$S*J;rN6b)+J7AE1=QC~c$M
z<=O46eSAFN?*;gct{d|?1uoh~;5@NL0q6V}0{fOV5u6@uOD`P4&sXFTPkjyH^+GSa
z-{+tyKLO1$c>6BBJx$5XV=ugBfaZ=P258=Agr<L2kzy8`ZYa`26ZE_C6uzPZXim~W
zb3d|I4`^;6XwoJ4l2ojcCzU<z0lyViB*_$2MGI*u()~FSs@Ul)^FS3BtyAr^Pya!1
z`f9ZTr$4%rDQ?l~2)-?>o8Ut(9jTc!Ow11^9@6*$t>SIO%*+|}rD29QfGyTOpyeST
zr7eb6Fxjt?MVup-?4=Z<qI}b;g`6fa)Z8%10t!f9ZBqhtn-a7LH)VNO+LVVD@usvA
zkvBNe*u!E>k^d35C&{=yQAuhBVDVA-A^k_n67NVgY*bkDEifEzRiV07xHhGxA#N3!
z)Bx2-ZXk1<V$8=Uf5Sd@8&|F4uK=32Q?)H@&oat}N6l;$s&RBJJHsUHFVZg8{h~?5
z4wcr?kDT*0llk5p3RP{jVwJMP#fd}-AFdLV@Olzc!fM6$K2&OP&;wC(l2qpN5}?62
z3mG>O5*sbR1Lc%(v)$5HsWMr>2fCt|B4{vX0o7^a{OUh1P%}1bWwdZSS5cMXZ#I%E
zG*B6>8q_p9QRPh(OdKjrK2SxGiR`JS;9dRx`hr@nu-6O4b^&FT=_reKWRqdLp4epA
zu1&`60=6|{tOwaW)L&s+Y3-E!nwV@~$F;o4i^s0&<;C&Mv`c;~m0gmeX_w@Du}k3z
z27dK+F2Z&Dz25m%F};l?$r9UpzJXu0Idm(2wZDUoUp3k9fd)x^{{_Fg|4Ad@9C%xw
z=G;kIi>A31yxjya>D627K62kOLw%FLj|&NYpX4d<d*W__pEFOu?}K{`@Ox+;Lg>L-
z;P*AX&E}F2)$<JSJ9^+&@N03W4t{&~dcg0G-v0uAK~H$VFYJa___YfI_|3l!{QR#O
z;WuUz!Efkq3j8)R{>A?$;8)ng0KaA~giuxwq<16yQ2Q89Z-1duF|h?M1N=VRe=GPs
z)lLV$#d|!o55L}CwGR)f)@dJl!rk<^2jNyFtMU@9k-OL$DfQl^cmuCi@BadmH?ltQ
zs{)_hU0I*_RlsLyi~&B^od|&;G2ZcO;H&sHj5FYV@TvhmGxpsIK7I7?$@<d+zcLd4
z1%7=t#sj~8DffzBYnuXoy>lD<T6)EZU%nd{e#;g3IXW`@mJ9evcN^gM+gyauOFg{9
zuO2~nFIO)b<ut&r&)!?XFQ=^ze%*I_z;A1>e*wR-qdnl4UFH>j-ynUyb{qI*UN*vS
z?K*<rYriP)`>6xL@5NsP{Jt>4@5MO?q2YIXr_bN%?FOy}(R!`{e(pbS1;0c+{$1Va
zL7!C#|AId6e9QxWSdUqOpLQ@TxPtIod>i<+yJUplthEHc`+ip7H?lLquj9`Ger6;5
z;%6g-O7HfLe=d5vmy%n@9+_=`-|F4Bg5S$6b@2OnhX?-sFX3O{-<d}};CHRmEB;|(
zwY)cP1HY3OjPOfd!}8%L1%7Loe&c@<@XL=j@;^I5sJg3n{2S<?Iv$LFA2^KsZ`ZBh
zx30OK|84icza4S^0{=c6=>fmf*S+H35!6rS-H!j2c<{f~1iv4DP~bPM6T$E89|Zgw
zbvE+99E8xITHsfYpu4vz^FO<h|LwdL{LC%%{BN5F{0{f{7w{YVhzI=sSK$?Y(-8lb
z+>Za9_uzl4n0~)k;CC#F>Gyj9zZpjOz4!{13Fz#det)O8--I&%%Q5o5?YDy81I_gO
z?{^RSjqCX@==aWtJ>VC6$t(R1yaV9(!R`28u?PQKN$|V!tpdM^|3}-KfJad@kHfn;
z$Z~{TgusFv0Rx0PL86HvkR<^&kO;~l2q+37Dsq`9DtC5;ag8sYc;M|Tpd!ejNFanW
zAacu%5bha5NH`J_Lb6|1Rrk#7W`p7V{Xd^avNO|NU0q#OU0q#W-5Tk4>=#bI_u6~v
zzd1mm1?_$Fp9{YpqI=&?&GFQKyYEK7+Isq}{?m*9rab7ue}jGVpKjHr=f8`?yy(}u
z*eCxj0Q!CXZ~9O1(tnw>zE~#cH=`x3FP3ro{Sxk}|7HP&Mut~m|IJ4Gk8a`ka<-@b
z`|ED>OKzsue>=VS??lx9#r}K3+y2Y<$$y7{e&7C^{*!g|Lw`lvU3#bNXQ4>e%YPtQ
zV}BN8-O>ih+UjRc)~7prkoDV{K)5=cRj20$z0>n1eoZE}>^n<G)=)W|%W9}kvc`t0
zWDS*@?chZPTW;*;r4}LX3fU8mPa|QA>GYhJ=Tmhd_<3+@_n{SP1Go}78zo!_QMH5%
z;k2oe<5TZQP+FW<{Rc?joSl05zE1Rgdo9v;*N=j}783iFKXUrk@8m(>UNi6xzD||t
z3vBx#er=D3cA_rL@SyLGop+<}vn_N0O+d20^xd#sPhZBiyC3vo+sgF4sHg8%5BhHP
zq%Y&-lY_nJJD{8Js5!r?pt#pzTR0L*MupBFI{bGe*yW|F8@?G5Z2wYDu(U7_g4LT2
zBr&z~ttZFe*BwN#-==%W`NAD{lk;4?o_uGUm!9ku`G1(Fvj%y|d3m8vJy`?fe9^zi
zc_!n+1;~GWb2NYC%PqJ+vTF`8C8e>jf^f%n>is6&>k`|kKK{bHUF1Og))L-0P6SfW
zzyEfOOPD{9&EwAOv}UmX|E7pgr^9I$+$FjE1`J!^=WB5E{#q<X&%YyjvsW$V-t3JX
z$(y}V+<Iw|yKMDxXaCYg^>t1|UngDt2Ae^#aV_6~@B{YDkc<#gvQ94~liq+HETXmP
z<~LNgbRxgbO8#=Y>g-H}s|9?xr5ANDh)bm{^1EBST<06R>cs^l1>*ouL7H<M{gGke
zDbm<2LQ0Siws=a(7Apb&^|1=g-5oCE<zQEybl35iMZ`f&so|}U4rpxf{%H&%ESuI!
z+mna;uWC`aT3L2EmWRt9akEebRMjrMf=R*y9|wDxqWhZFc%5&_Q9E{*mMG3H`DYrC
za=S6WAn<)yr?`SwK|pbgoiRdU7>e;{|K(!*SsM~#*!i6c2UA_mewhY`SN(-#KRgY_
zF}j_m3IlbLE#cSMn3gi?<TQ1Z2UE(WP<idvaxG<Egijg2t*xbbrSCTBD+y`8)#ZPg
zelSlo>_7N&XnX9+1z>nEoIGIK;p+ijy7PJ$F*lv5E#{_g{B?t-Y7FHa%!nMgY<Vk#
z(x(D{{|dh!q2FtkqjdIoO>C`F)Mn?`Di0>ad6}ILV!gOvRzO~|0b+g$P)7iIp&Wk~
zzS@cn3c^zSE5tsy&|$qjcx{qzUYl`}$0=ZJ?Fs!p`~cW_p71X^aQkUqKWmIAt_CCs
zaQe*vpF5aSPwVdc?2xUAyxH-%pAUf0yD=WUo8Y^5jZf?2L*&uxg?IDJIc?sHO8OCV
zY+YuQmA^>Q(&99Pi=jl0t?!d{`At)w%4)zC<LfpX`Nn;5wYJGECm1@vWh<R1`HZ|T
zlZ|TwIE><I7LY~~sJwoMKCWUP^FCp6+ZE9Z^v42zjJcbYq^ewF;ap>OuFh2>H!Sk2
znWCp(<O2ARf7l$J_lM2p{KOBY6SLC^@1=do(n0q1_oV{17tp6!sl25^P^oWnV-7sx
zZj3SgIOSIfWqpA-(}Bs-WuE^Xl19)TXS>9(fpkYM&ymYyk8-|8d5dC~2!4Y3co9U}
zfYW*(-dTX#VYg(*I$_iNL01`YWGAdEcYD~5=OEQE#Iy>YVzlk~3WlRb1p4vuqsUjL
zz2kUaqj^RQif2=KT}|cV+52Sakn+Vz8ppgpR0OJ`)xcxqeb4?wj9MAp+yPhW{^X-R
z=k8-X`2vx+n@VB}ka#q5f_lmDK>2Kn*B-zUrrj1`NbP}KHF_y0SG`$=*#{~@D{}9t
ztyewUO8eBuS_&>l{8t<6i4$rZRjOz_>|Yu$P4?<&o6cIi4)W01(}IVNo+ci$DCHM<
z4>`A9XI!r}Vj<pC8xcGAyk!e<?W|-kuD#fiheo$QrBb-XDIJA(|1KzOI(1JJZs65P
zoG^S)d0TZncGr&S^klW^{9b=A6uz$TX-ucEMd`Yk|ANBAV<L{M+U?i#Za>s_`yW<k
z)8Xn-(SEgu;Jtoc?XS4wa|i}N`wRZ9|3~k=|K9C~miz2~t?F!wUOjTp?Z21gJ^sEo
zEoN6|Q+wjQw_ne@{ZQZSudj~N=IY^lAAh^|`1{_JeyuuAw~6=Oem(E@BYd|%raDgN
ztB3A={QG*3|81Z2Z(f~Emx=e@em(E@Lw&cuq&l0nSO2Ctxcf?BM+Eb9N&lk-^GYAD
zx!`15J{MT?)wv)zU!4m=<xRheri-r-GRuDzv%@zh$#wI^uiQFT&K$1_Js#0Dl5QT*
z;iw^w6dWyz^O-FiUQU+R_2!6UtggU*ejCrod`ByBH_e6X>eWV}a`_6;hdubZK+eNA
zof2PU>y{w}_cX`lcJ&(I0ls(TcUNbQ3qD8&X*HQ^tasa6Zuw-cHq~M7_YUae&E=!Z
z#UOrBa8F3>jr2mQvu~sxsm?aZo&EPT7=ygq-dyB!FkY&TwwZlzZ6As7YP*l`wr5pG
z(+1pI+atW&{`02Kwx6iZEI)tWJ&pJ2E?#Z-DDpYpi>hPc)Va5|$9T8B`KHgdS5!y4
zF4%idZC~o_J>I_CzOOo#O@n)D`z7zT|GeR|?fKQQYChR>Pi+@;@@o50-)#@6jz!&c
z&;NZv^He9#NzB;=5t8-HpA`()O#c^b-rapqQg@-F7bON?^C@*_suK`%-)?<AoWMDY
z=os}t+%>okGvz?=2n@pu-PP+0EP(E4_%I$&oGgFSgX1K^qj6&F-ooRE+NP%Jc1!->
zx`p2PrD7^SjIVP9J3xD*8CF|9hj3yMi>=2emC)l@+}}gzwN|m{+uS4Jm8+?ko!1>u
zZ;rFbPcIb{&vyszi7|(E@ZKNwy>GI$I;M8|u6tsI<L$lLPAc%p3PsiNCj{-{{TBS5
z!=+;^=X;b5FS8DlYjBBJ)ZHs$J=&A<Gn%O5pM6Qau$GPgVnO<)c)Mm?{m<|ubhrPY
z>nV!;kqalI^AVi%&e41D<{xcGL3KWL*9*T__kP)quor)du;q8@0xSz_;5_>+|7Wsr
zVoKZKV2$(VzjUo+-SqIOPWRnJ|Ls*FW)Ut?AGJaVu|0&?#tiIqHv1!&P0~6Yd$cOp
zJM?ny1^bU}9<?-ASym~K%IUjS`ZmPqFTyB}FzNvqy`aPBg~L^0l&+t1y<oQ`*y9QI
zd+$*G0`^A^*1=wLwkp^s^{ng#d)HQky=WoA4kXw$0QRpFHP};5RR#Mey@-0jp0w4o
z7Kl{=l>gqRSSdZX{-2gehPGa_%RkqBN_L2qq3~bdC_I#-tsDPGG+uAxg~o@9Pv!Ok
zps~a^8q2qHKczSM5}?vz-<1qoa440JaVT%UjYC<+{>T?6XhT_JZ&gD%NpFI94dwTn
z5%w~Iokg%W0_?Xn*p5dbF`~3jX@Yk|#Py}pg%Xy&#{S47b(l0gP!%Q%^+uo<CQS&F
zEgvE5u>|`$fNjvho_)M3*yHp@y%+4PO;w5hLZJJPzH80jgc!{sjHVJsuK-39U(zt@
zT&3u*)~`3cV0R?g`5z+e?eh_K4*MhDr-S|e-&Mg5)~_eMVDHPWES@bIv+^r^^Viqe
zh|4j;<we5fCBWsa7d2ekRLNgG^h+8qToMU(8o_Q(uv-A^_Bz;a@2(1VX#<_<?gd-k
zh_E+(fUtYbL)Z!IkG$sv4R+llRl#nlU;cW*eurQWA=nKGb|Zj2RR??Op{ig%u3z4I
z!H(EiRjoNN5zY2p>vk4m)PZ3nfB6XFplqbw-{tRvyz+N&$5x7Ksug!Inm2+dlP4{h
z(F${*z~1ypjH-i_A;%$Y7X~m<-jH;>4lQmR0F2=P!|{frxa035DL!{1DHgFm^7G?0
zQk<$%FbC@OA#q%1>dSu!<S+s`96&bEf$VUsDv);?=`=loJh1^mHU-RQ#SrEjN_3<c
z65@*#!>T03v?B;`!~zDeGY7as53s#YfaB^_1#t1-2=Ko57{Gs`3E-39ig!Ir8EYIW
zKs93xK#bKxEY?Fjv>zcZ02Eyu;^Esmh%<ac^sf?P!XaJlxea{QPOh@H^8n&A8t^H5
znDAL&stw|StiT3()A23eoNif<V1@&j)f~*n#X8F0sqc&On=DmPeiTihJHWOb!vSW2
ztHAXf^>jZ19Hs9mhE5q(kpD0iq+^=|ay{wq=Y;7j*M3;DnU$QIIx;r*O~y~mRgrP#
zZiKxP&|Uoyp&L+C)eQC>h}Td0)D6nsb-L!?sqeG-I#o9RG~TKe_a`(T#hbrP$&p@#
zcP;t5iV}R+9^M7>cYUbb$7m*p448w0J&^s8W5;TO{o{$sf{i?o^*c;c8yOl(?REb@
z`K?zr_2IX6+J!Brn=?-cWHc>Pu%6p*DlZ1z=ZhCV46ce7&-|quo8Wpr$L62ls>Wv5
zVVxL!Z1L6f2URv*gO(fLz#?E|HyW@_$X6%4qGnt$56$_v`0q>|F4KMD5?duMPwv!J
zo@@41*<7cp$}^}V5iZt|4<4kBe24k_PUw5_5%gm2zx1M6Cc^sJg&ezV7IN$_?2jxx
zqj9YNX2G#pa3p8lynlh3@;gRe^?3V#b0O7j;=_gH+>o#F=z*;69;$SnZ&liJoyxDA
z<x1=NWVwXeI%2yiivSTjhbEbGuqJ5Jm54oxL_Y`K-N)Y*-}33NsxMX3U)9)$zsfl<
zpVQqt<w;h~T}-8<Kh%8`mB;=Q?2E^?)vT)95o|8YS`NDP=PIJNbg`XJt)ax`m9YFu
zFGyZkez#Vq36=%>9F~`AdE!??#qaaOI0QGrl>Scy4Z&l&jeV5o16d8K!>x_iBCPpn
z<%TSM6J_8>_D6O;rOANouUoce?Xl|F?-!5xXTa+JqxY<CBTw&{bMqChrhx8Qg?DM2
zBrk6LTMYZxx)5FB&?KHrj1UeXnyz6wMu5=WFHM5bM^V{mc>&j~7ev+T7H4&~kT(71
ztE#m+yAf~stU97P4*mW<tB$J9zLUjg)hX54synpCSJmIDv+MI2RCPVchUbLY@qR5K
z2>v=bhz?TaAo74MOB<c_K1b(Zb#{6m@QLxa)!8GHSBvcpQ8lZ6b#^yatoGI9rRr=>
zr1`8GU!5J?M^<~y@dvW@S#^Tr6)#wuT2jjP`f9PPI_~owt9(`MSe-ra44+lst<Emm
z<36kYS)ILxMn0?Fe;0@1g_Sy;a;b(do$_jcPN%rnX>&{I9$&3Zx{KfNwUs_Sp5v;c
z4`NqpdvSaw&1zX4ZuQeOs`GD-uZ||!{;N-fXWXTaAN=aGxpsFMgwa$*PsOv9jrK==
zRX5o9A%dCj^3Y^7Hk1+ns9+9cB~-_*y0pS4uEmub->{+z(_qhC44C;^r2|>F?lRjw
z?TLpD{NM&vW8ZEC#tqSq)6@*H<22zyRcp+^#+6#Wuv`u2vB;e>#I9xdIiYJbs+`vM
zv?_-AXgSA8O*3`u9rdIKU^n<21xjybua)yR=wS^!WL%|(CGgO>m>xcdherAI@Gd;8
z<;CW}!_(L4Ar&49`IqP6;Zh+zJP8jY@PW>lkrP1f#om)A0Aw3`O;Ww|SE|?&Dz3Om
z4-MeqbB;z3JdEZo-*&NwhWsHP9u{*na^azC0X-aqhqYLYju@!siM-Y&GXEaM{7!^M
z;A*;^>N6L=O$XN=>@!W9@?5nRn@X_?R#v92QHzGEwx&E-D~)48Z8ZO@DziN6E?m8G
zS>>RB!0ITX*O%!RJ`Yw$K>O&b2tGVeSvp%R^C`#A+(k`Y`PpZcuGN`|SN!Z#D+b?1
z#m)FxZ~0!ji!K=C8~Cy6SQm|0UC&e4iuE_`73Gvueq<c(ahy--vZGSH_|27GWvs6B
z>a&dklsG@DWNl@yJWhxzC%094)iSFRteMLzy((L)g6BCOm0G`4YVk^CROkL)sl`d_
zc^Yn#diJL8N(~g9cvI@^tOV-Tx=NtVZ>;p{+L}tQX0qk0?FmSxZ5uqqE|m|mr(YTG
z>TAU$nJ=*hUyFpan9gXlFFH-Z<DPi+-&VGmmi0M-)qIcXB?0DnL0BO$H@+3+z)qhv
z&|r29N85VVFnPy3yut<#HBEr)0bMgj%d6&T7c1SOm*Xkr^{4Z+Tb1xWpYdk(9uv^t
zrINURL0!phGCMAsF<*D!2tdLkUpM=1gY?xl_#zDtwY!>q`9>=>TX(XQ6rL>E*p&VC
zY}SUko-G<z&VJxy%7}Y&ztMnM^5t)w<!*i<k=a?ho_bf;X`35v*OhH=m%CG(RK)C%
zz?+Sk;fJFOBye+2KrAY=r+RowOTOF&ilom7WmFr3RGSekzyFq&oclK-P&^T6+FSYr
z=bMDjb%tGag_z{QZ*gQj&etv!l$2M`_xg^(Bu}DWnkNB|n+B&orBguFz@FmZU;>b`
zxCf*MhdZhgLXnPAe@4SG5$1Xc(ekl|+8tF{01yL{Ucr6^uJ3_VSkr^3kTH;PMngO7
z1;0<XL4A&2W(;I>!MpD=Sv`5&+geWZx#;@~e1!l_=;4E$1-R&*5h{0nTRRwioQC1X
zv{r`n8CHM03ldyr09G-9hhK!-1Pw^WW}DaprX^kp&#+viYcjuygL9|Pu$Oeh80A{b
zj?8D@ityV;Y$D3uL(R1aiQ?fpGrS*0Zt*r9Kc?%<AlD-M4!O7!JWr?2fG*M*WRqNL
zp4VuXnRPdm+Q)1o*A8+boJd7xO_s)PGG+9JqowIV#$;*wCTm7-zw~YX@B&17On$O7
zVUraW7RgeoVwE2VsUU{nsfHbSX2HNqYKlRGE63>OnKD2W;~w1d{B&j!T)-DVzm~7H
zVpD(XH>SYIB$#-HcuWir`SzJiwcTSh$dAvZ#P|IJy%OKcC2#SZ_bs5fbXs0qzk>2Z
zJA#>p-H>L%%X3Zrj5Gl1W!l2N)GlKD$KNBt`Y&`5BRs-F>Jodz;m8Pn_mI&bU1hjE
z_&3Athj6$sk8$6&8q{I9-GL2EU2ynl!B$WBc?PA^GwbJ{kQtdS#N2qB;?T#i?kX#9
z>+`?9iX8mLc;J@FR<ko6udfV#W<0+JX+;oSgTz=l950}eXU^4MIL8Eb6!7nu84>h(
zfJ3i2+2^PHNf1bJhR#zJ=SWR)uEQJYUIz}}_y}<E&LAzLLZE^B<_@sWmRR_FJP?_D
zOl&K<br)C9ta;ozu_n{yeZcLJ^LPgLWWntt!|)7ssM$Hhi07|;)@$t0*P}^5SJx3!
zlg5<s|3LQcBhXe!W40pi^IO|Y;$pXLQ(NK1ZX?x;-BQGFe_Q(206LqUGUhzq^_Jwa
znfgn~xgK}=_M$s|U)g1(tOZ2s4`=BoA>iX5YVz#e$<ki9-*=lF;o#RAh+<|(*IMFC
z|0@Cff+yz}C3NqNZ8qbO1tlV$=$0G-FBYlyqROGVXSjLk&r-Uv(FE@=-r@JZdfsp4
z{1}sN?1ezb2y~yr!C6xAYA#nh9!O;@`SBETs-w~x#xG(_rn@b1@);=aGFEUN<D<iR
zilc*jUu?Du_K-NpG)|)1zJ^F_P!h;Bi?ghPUj+{&wF#0c=PPvQ6?iI!2WE-oWUS|X
zk$9h^mDY<DGpUf37L9)T`yzAXT=rF|bBEtI7Z@20dMc`Yw0;K3HY%@`dceOWFPRBy
zJJ9G|@KLxW#!;7)(St^Q58eS!eI)Y4pgNjKOa<Br2(j3JvAbqRKe%}n<7MN^)OguY
zpg-?eYu>R?pgQke2rIfkeshkNc6c$He>O~E+EMxEwtBAqv@FkH{hlrE>)gxpVQ7*E
z4Q!oJuI&twq+yN>CB@C}NjUAZ-a9i0v2b2xq`)rB&H41EGDUwMsB{{yFp$s9RgFTY
z6|&kVxbZ&Vn84v<U@|Vj9h7E?WB6p;qL#;G+~6V5MGvr-wzcYP9GM@vlYJYH-(Ex`
zAS&}AJ{iLlY}MT@`u<$~-J*0ixUb2$%!HFM*?==<m8-KP+NP%fO*Y>I*d@C<8B+>>
zk(=6-B8|<~CgT)odUmDBI7OO}ZKaE`Q)R3Caj^dKST-5IQ&U_V{7MNe!|P9HgF3E6
zyLarCY=Bn*x5RkKg>SOw6dL!)d?le2??=rcX*>9)khWLLJnq-1rmA@9<$qNbh331e
z3g@9Ryc&(<WWz!(NL`Kk`)x^-lnr-Oe!eAJp<laiYWH8m^Jo0o75CoDxZTv`8QgBV
zpZ$>=CgNRnDN-rS>dv1^)H~U@pl+C^Yh77;OLs4V5a|<osowC0zI+Q!&#?CEvG(P`
zA=qNxJNkPaxbX2Q<jkx}>zHk3CtcJ>Es7QQhK>5x6#acD8{T4{lsC&XKG-Xlyw2#+
zpYGL6aXn_mP|K4+uxa^>1rsO%lafZ-5(u;ZbYRjm7!v@i1G>FgsmaJB);Preojuq;
z$Lwr^=P}Atq&vy3xZJLgpeK7nS2JN7V}$6=3gv}j{r%;qHC~Y)eVyQ0h!ZcB>hGuK
z>Tjed+>#fz@}%QX<EK(J?v)MahAq71-ax18a6czg@JU@;>CMCq243h9MDLdJXORd0
zvoExH2sb=OpxzrBX5!<P8a5E)K;W7?3<imyvdNHMM~x7Pmy7D?HyXE53Li*=<a~(n
zit>wkUm(M8X{3f9;1x^z!W(Lt5kHtJQmwt=&QfL*h8FQ~1m(w4et)`tu1JRU@oS!Q
z1$&p5t-Eg&80sfILw%yZU)~kfnBk)ms{togcTTK{>U}4K@P=P_fkd$AT&+(=v@$5u
zwEXHSpvQT+o>(qwHIy58Q$Nppk9Xv2mB;&6%vKWhYD6op88$TcV76Pz?h3b?e;Ua@
z#Z!|uX!4&MZW1RUV}c4o)|9t#2L6A-1z(kTUEgxM9PZle%{a9OU&AE905m3?H;m&5
z+X&$WT^Pb08N%|%uY0Kq6uv_oQ!C<*y<&>_dS}#o=d!_G1-<KvmWy94cYAj@ndFXD
zR~G8;Pl<bBJnGMNBM?p|`y(Ij!EbxsnKqJ*{D#(g?BBkQV{*20E7F!o`>tNY^4xV)
zYjE9`bY{b3{<Q~nbTO-{+=sVu?o!?b*SIUeib=z!;{xU-3nUKXz9=x9K12t_47iaq
za_2f&q-;QqHI;7pTl_r3`GA=&p6kmvRvt1<uei3F9o;bTR8*(CBE908I!_2Tc6ef*
z--%)VBwkvSEI5YEp8+bzaAj9rj@e+MRk*4*@Fr5Yl5h&^n(}HPAhdHsqMrUI%J}7d
zBf*K!RX8rCU>df{$}7x5<SHK5Rixf&5eV|7gkI+p@y-oH^pNM2{Xgs2hehQc9dovI
zt8L!kH0=v*2AAOwe*YXYVejF{gnif_`LXUQ6Se^+Jg%=6NF)C;t0o@}#)5f=fSvv-
zf)D+zKtu-y8!&dltXmp8<r!3VVt{r0w7iJuU8-;DrQ1S?Ygu%!2jAuikP`8xSb6GH
z=<y7bo<ZrN`oHoqh%2dsP+|}Qlo1ulilFrl5}Wu+IkBE_bSMuL=&hx1^$Pq*vF7XL
zD|RKhP+<9xen@|zH6y=jJx~5?3SsHdZ@K_<CDYD-=xl4H0pa~#`&PK%w}8q5kzu%}
zF_r?fGp2%~iaOjL#Y)H$4m=3d(^u6&&(o9C%CPdV<CUnJG|#C1>Opp?%$|N_nw>7j
zhKs%|^290HrF8dUNK+=>jy-gW{$|K%`hxdkcb~$Y3&Q=es}^^OCe!)=mIe!7QJtgk
zj^~0qQ;TkdENuttz;w?WA^U(^^mIEgfF`nuw^R4A!o%Df?}H3Yk%oqI7ju&IDBK45
zDEXN&r)Nf7{Y;}l?lFmcViRkVPplwWDz>@*24}*#SJ0VYc3iF@lEN)Pk7=d}RfIdW
z{_LJD&CVN)p0j5e*$PTQ$|sl-UEf*!$f9yZb$=R=pS=JVqKs;F7$3R!@$-0&x-^CC
zg+-SuBw|=AenEGix|qVR(J-FEuedIy@Ux}gVR*zN9)X*}d3s1Go8OZ)DI8XEN?ou#
zM^P9~Q!r{=X&8nB>m42ty$qvsW}4JsInq&Z|5G^Lr-Ct?QCGvc(`iTzGSwn*)Ijx_
z<V~rxuS=sw-qi@RvwaPo>d&+Esww)?IL4c(hGU>bcZCgjmRuo$*tcxI6lw4#wwwtp
zYD;}ZKa(weD>#<WiL}X@<mzJ@ASIr$^3ldYewj8CI{!hFvPmBNGM~|5xLa6gfv_i8
zx`mqw+vJ;5U^9VyM`lMGi|`=)Rf|SHtp#|9>P{?o=Y@cr$O*4#uI?bDR^Y(4=wM80
zD}3!nyVTJ2K?BAN>9-lI+yIgzQ~GVcv^Gp^+d@g{x?QTl{lffq!NURI+a-I>Er0rw
z=8WHstMtGxpFxHx7$O)3a_NE|7}AO|UX8;1g>1Ol7_&hg+6Gg%))uaGQd&$~x!K31
z_;CyF7ew7@!$-U}SOOB>?1$G*vw2J2J5{w1lOfR~Ea9Wg&Rjq4K8G^9CJ~{nLg4?b
z4P&wsM%T_pH;0zsu8>x3Xo$ftZn9<c#pOCK=ErWbvS&Y@xzP@ObFi~o3l`|>Z%fY!
z01jZvXz(UXT55t%{iMWF<cDO}T4Dva*#TRAj1?aEo%WTia?(q@7r+WlP3pc9TEmPV
zj=<*9`AO>LlGW^JSV#Eg-%+(eFZ9cTc^Dfwl;H+<kY>(CQm}>RZTY|pl+g7J*rdov
zFG060Zv98d<8T&8u)vM10|&yucB_Tz8Fz8hGodhJLpM|%Go2~k3on<`T+E6p*f3Q7
zlOtV$a3buS?5I7{YY3DZgXa@G07;0gwBNqJ)E=|L{B9u>iP>k)ps*(<mc)kLHiNqj
zQomZLtC#$##dP+@sN(D#%uEWvd155zrsBw*nc@DpF9G@Uv~7Wg{vL;>yZC#Yp||@J
zhtwjG8xFe!Y_^e(GZ-1cW7!l5`vgou$ulh#ZvB0(6a73daGi*DDvFVI=c+~Br+V6J
z|A3y=`(8)m46}8bulrb;AX!{}Ez<V%iy3n&$kl7Yw471H9{|7R6DH*UNH^MJR<Osc
zAnc<NAF#}<V8>a}JfkvpQD!_Wdg8GR2GcGHO$%TR;`-9M#E*$L<3F4G0Lm5kRlun-
zD*#q|K>y1T218~Ge~30!^E-pK8vO!rnV7H4&SW<0D^HdRf9%p$>inT(igmsG`2<a`
zg$CllqM|^v3D(P&on2USwRu`pP$veZZiQ}r-L92St>%m@qdVVsjxTpBVP#}*FlqJl
zpKmG!>l)?>=`utc$FrUY6Bl>#0+p8J38UGCTf>QA!_X2$@{&93z02I;sLeR&4r4P;
zXl)M$yi`+Udkr=TzhBU8^84Kn*xoMH{5=J-30^tHK0$$8^1Sv8{xTV!Kh*XSj(R-1
z<sI<+fhdpOcyjT|zdTRMlN`IsPQ5?<mag1ep5<2P%bg}YJcbvsD&O4k^f$_OX#cZ2
zsy{Cpo{yJ_`*`K>=XHL2sQ_lmV)?rXn&~H(i+qat%o0`>lxzMBp$AlsQJEyOjz6im
zg^YiclV#ez%i3|Qy<cy0zU<BHH5p+*;cvR|DE;#~P_T{7Kxe}4WRhfo?QAFP^q|x5
z0Kb|xLUWzVL&xdj1j*Zuc2yA{c-tQaWWFR3W|izwz0o+bU4);WeN~#5srUk(KY>ux
z1))G?)0?clS88&kXs7hN+5?7tWPYAw+yYU5jVe^EeqPo%PkLsy;j|kX3Fmxo>;3zC
z<!R3``aNID$Bzv;S1+JckZ&g7_36JhZ)M;;O9Zu)cz3mw7&czhNb-lJ#7+_18RB?1
z$UwWMS4)5yV0Y;}-&m8!GJKAd@cWN(7>6;uu@lNU!c!;`p<b}>#4);oR@Ml;BrHnR
zU`65QD{C|`r;deX_e_&!WTJVggcs@WOU3-rm*gTgqUj|}C*EI5bJz%hAR?s1iFWNS
zrXP1eiGWDZx2R{qZelE`%;tHSo3`RSnk+#o@T0#N`B<_QTHaV#STdMur$pD4qv#e_
z<pthv16AG}=#<I#5x_QKgGi=J^B1`3B3x3>-}1l{u_KBDx`^b7JD&Y#@;`=+Pun8l
zzyEXyF8x32k4yj0*&lgmNAlmZxv?&Il-Cpq{U`8+CibiIPTdl1-npCV?%cF`s=Ljt
zs#LeLH(r8_M2wFhalv^+GGsRNC;z8gCuXREVD<?CKkymVZ=d3N)QaqTB>)~~T43WJ
zwu{I@aR$&;6Rh)*JJ+F)ej|D){<<md$%}htFr(DTJGdRF>{s(~>-8UC`36wQ>M>oO
zE>`umT=qQ9x5|}kLSDS;cYyj0J?ej@)rS(j^!8U6jK|DkE$$)ik3l%Te<tDh?qYxB
zSKC);mzg`~gQ+ZC^_=OkNr2vowXbw4R{j3Sr-ka!*DvOLO3Nu)ZM`~99~iOC>|B1G
zyd$Dhqa$?v!KP?iU;!NSX?RVazbUTtafWef8NYsANpkD?nc+<le2Dc43JFxYT@(F>
z#+vKt(-PWxO66y@KGg(I&aFa^`I3hP)gR4SQaO3cW4{`<0LG2cylwnabywgqEBD(V
zp&<XwkL0vDI+~YO<rIZCa%YmX7ezK)w=d($w1Xez=F{bBkk@Bu<z^0q_a~p$76zZv
z`(b_}a&P0)8d^!P7JJ7}7ujc(TRf}V4x$CyX0zjU1cUyTapp;oCq+7p*Ez7UIP|!P
zOX~$w%2QU5=czm<tzUSu)GxwZ@9}84cOk#{LG0Vcqiqc)R)!Hot1lD$&D^~YM)aZq
z=qLF^_(|IPfu983?@2CZ!CyAQT1qmi6TV|Ix?84$E-8~kK>0K2RnFZIb|nt|<6K4P
z?2XfE{DMjD@suup!K9QFdB_zosbE^<QN1~%z*gM21+)b;?iu2Di|Pb(*2R0M8CiAp
z8O63XL@8XegjiuWLm+ZzvTH(^Nwi2t+xqLOeS}b$B9a%3D#!bfJv0&(k3#PwfH<p4
z=IbbPx@Cj1^@i{;k^{i4loy~)PV5pfN`!ojtWcF~KS9CIxItWtl~U3xXxdx`(`Gv)
z4HGV9Qn8yRyUg}ndrSj^r2zf<h~8YN&;igpevLr918+LQn;qAnRbvX9$J+7gAB$Nm
zgh5V{_N#NxkD_7aeO61}_Ow8K57?$2!Rg*M#Yu89D<cUj<uU#JleQ<unG3S@F}u<Y
zd-@f7vTGuqX~cgpkx&Ghor@qCD!sgh+4+6|xGN_;8qWS18qNNBigDGeOiE^kqC?W$
zj@h5)cDM=9mraKAm$2sMoMHbkX{r-ub{KJ8-<L6a2@{iZz}^@s{D%=`BDI@&{>QAt
z@(Z9oq<}DcdiOAQS{qq;3Z1WJ=Nj-Y<pe+^h&!(?*Z=I9^vHDBpk!j_`WhOx%{dP(
zn;jo`v^qm=HJ!Kmka>PQw0Z*-(AK2%JMOgBavEzhDQ7FR1ce%8^)f-e0)N$S1;#FG
zGMt)RLQP(vCc|s!o9wDK8O@t~&^$jMblYrfavLMBJFS)MhfQu1P1egwfF?)!Q(Pp7
zrfUWxEf^Q9;b=O-)y0@Pgqa|WSS|?K3kyq@(wN41Io#YZAk18^w-rNNpjaOW0=7$|
zBJjFzc*Dxhh>py*r*F0E+yP?V_J6Y6o%j6$xokN5dr0LUIS-y!sn4#bo4Wd1?VHXu
zx7XZamzsttQ!DiI7kp%6i4q6>NOV1KRW@t!SnL@9ByBq1JgMeZWl05}hZ9|stV%7n
zuG}OlcY&4LrWA^D$eZ(uQE&dutbov!Mnk_b0YBP}``o!`|MiLIAtnjY=$v9dBKUnJ
z3E^~8i7SCEgf8Kn!G2pwTRi>*&Pc3*K=Zt_xGD=d^{WSTv_JY-d0mU#f~qieACd$U
z$0fUKs8xPpBu(vBRQ&$vV7qE$g>vm$p~R8;+m${ER11BlgVcf-3dcenwL-t>3f&$-
zg(9#J>?`s@MqP7<c%f)4^hE#_0@vz)MhB2IG3ica`lgE--<DJlRr_b(k!rs_42~zM
zaWt;LcJ%!X{`~-aU#0tAlfFO6zpsSvHOkfX&m}o`h#=pWeGyecoT1xhgziE#=OPF}
zbiHIjJ2m|Z7~UBcv;oI017BLy!XJzV+mPgp;FdqLA8XMd$O!KLGd3KVEeA0bKP)SW
z$=8$Y{kf$^!@AyBCN6{lkV}}&yB6e7$puS?TIj%95TK$SVhy|)z#7Q@2^tJ8{0Tub
z49>GgSPTDUBlUDvd)9(&Sl;JZHufX$L$a&mM<dN`NaoqIg+UM*KpQ9I2Y&#+#+%?C
zdFWcq(X^pRr{dW^k&+3)KpXV_ftFchAT5(R5tPSc=J^u>h^Y6EAZ^N%I4-_TiMPXs
zf{%nASciUQ^R>L-sOE@&3w9qF0(tLp{~%TWh*!VBhDw>w9&Ah@HMN0>q0<4p@Obt;
z?|rIIMHn7=XE{G`I(+W$Ne7od-$25r8U89AZr3F`4ECf$Ij&@Sb25A($nYAF;c@f)
z5B%x+u?A0a^^QT*4S5iCbLd7*dSF!eVKJk^+eb79;muM`g$3&UhXlaD0sJ$V0k~1B
z^AEY6W8~;96dEtSpOwga7xlR7IcuJx=|`0gWBfenFvySSK#`ce{Zu+!4<<Sc@}$G-
z{%Ce`I(#JPFbU|;&piJR47zj6b%ygf2ZHYBqA$`dH-cWI(E}sHSB$&m^ut;l=x9NP
z_ZCpaDZJvTL9F6feSB+grl)P1qNd`#p!*-w`iklGJjI@Y$wU-5?V1s|Vkt`PGxxD|
z(4q^tt029>?AfetFatiR$>8ETAmzbxmtgr{zhy!g$b>L<i6-SCW0ndjZ^^nk{Hd%6
z01~1Bd6ofTm1+=>2>`@j)e&v+ZAfz!$VsN9Y{Rp_w6Z;^>?u>h+>f|Kb!7D!w6%<L
zUi4GJ<Ss@qN0taM9|4#VS<M-k5z2fG%Awi_<>EI8Why{1s!%>7DDSCI1~4e2vaEp1
zNTnBpBJUo;ZKK1*xF&NFyffdEj(rryC$m^LKJw?HhU*sA7(_Le^BPT|#$+vCQGQ93
zm#KvZsQfHm{>tMJJ4v6y>C@|9(5L;6my3G=qKipw{PGwp-GNHqu7#!h^U~j8X_S_k
z#Uxy_q4X3g{TG#P#!IJRY2dA`#l(t(pz!ZlSZEfbmuA5;0+%%9@&*)$8D>fggVuWG
za|A$3nVo-e2`?MS;KHE`*7{p8b+IMF^9O~BNZY0~cI(=#FnG3k6_?m<_dYwngzFyz
zZ?hvVOJI?<^9n!310Z1u>3r%A?Ig^CwjaBLZP(&$=N$lj4#3hjD5Vu@+o_|pc2gf?
zm<#2RnuzVS0wO(ig~$dWOU}aEM7hS$$~o%c_uo=0&I3aF({hyOSS#|FL7Wespo`n?
zuZaWl+P5?y=K)A}DENpdIFbrpH(|j?dBIF5XoG_FM8PBEX52{yTl0eNL&5d5i=gRC
z+Y?FBEqw^boGbH@<`~5xFB_n_5!%((0ysXx_jF`1rj8oE!Oy=9;9K{?LvW;y8pAP?
zqMj`B!N)`)b=kj-%|3NhUxMA$X<@Hc7}3$zBzB&9gBQVS!qaU#VVM*mf;dv7v{135
zFO3RMl7>JGM+(JobgqTg$be6oB7P%<VmPJ-)29AayHtRi`r8SyCXd5TZn4?%sYy&v
zj-e(WksSNgNRAvH$>I7*3*>ku&NGl>l|>)Ou?EA40&Dcb2!MGHi6cgFm}4(+BD_#d
z+>&|}$&y|Uu~2kQ?`93*Sb@kP3g`H`28455#@u2l6i^j{S;}740;+h2{y{oJSW!Nm
zZdKzsb^#Da5eAw>H4oyu`~L)y>nc<(dz^egp+Lj!LAcXIUyK9!7qO*mf*gw?_8#Lj
zQei<5H>?Kj<R?j~+d*mDYxoY<n7*C1>ibKH7p*YH`iPAWEI6do7qTH;+@FT@Qau{d
zVlkv!$#2znAPgz1)bKvB8;^<FfEH<?utoP=GFyc;WRf9&{+NDsk%C7K1Ahp_ar!E-
zib#!_K@_PG3XvL3?XHj+P*SP^hnMWqV7>}jQ5)kkN|Q9Ra0o?$RM6SeN!<h=1P0^X
ztwX!Dq62F~>Z%v7;!v*%fKj@|O5q7*9#vM{n=L<M<4l3@k>ahQMg;O9JirW^M2TOu
zYLXv(jBCk6x@y(z{1qcO3KCI<yFIFH-<j}0V=)voiHnHYNG6TRMrUB}jL88Qdo!lk
z4vT0hb(_hS5wDBS*k)zVestd|<CSe7#DfB$%fZP3V(jDL>P`BXNO#KilM;)pNjUB+
zXxy1px-dK<&hZf&_vJ}6?$6hvpp2`@Fz$!BD4XN~k8)9NW9FmH<VTb0$-up_aXbB6
z8B&{yU<|rDv_ej>Q#eLuUGH#=c=^Zx?{JJ!!5FdJJJL<T7`4D(7|uq>z+*35A<z1^
zBGr%@W^xaV01slgh$8J=)8kOqBsF5=GDRm~xQ3W!AFJsRg)o;D#yflE*~wxmGdoV=
znNSRe8E@sBgZq=?MOeok`~C`hOriPRQYad;!<<nFyPN3QMYe6QNe$~DPwb8Wf!661
zHXl;Ye}aG~>9R++oi%X|Cr|W?Nwk+5E@p#hi|URBa@u9PT7vy!7gIq;i|U=0+f**W
z^h+y?I4%8F|4QGtm>rEQo{s4Vya*TyxZ=8Zr=6v6npg1DbheR6oAe4!DM`|x&=l#V
za5jewik5#kMw3-|vcCO8W^rQ9YNj<l(`HeAF_aoKJXyL<o;%G;ooyyBHT#<6YHrVX
z1z8N_D@l6D4xD<SE<uV%5c10@z-fGAE1VSm7PvmLhLQYOOw(IjHqSVdhjBk4>YAYy
zx$!Whf^V$39y9Uq;MB0mn4%CjZSB(ZuxXKQ@6>FVm5riHW?*2+JUsb)+2%gLkJ+(4
zvlattp!+rasRuz2nG{6kXZB(0WZZ(top#`BVxZ;zp5Zqe{b_>WQ9t`Uqkg7PTu(TU
z>v`u>jO%fI0_T6h#A9t+Fp3I;==q(wxSP%@Z$(+gU5cF$*<;j2_OQ=uc;HW{@4%lQ
zyaIoI5Sjrx!;1Uqiu;)z3(+pn!i*Mr#tFfls`fcs(XR3c72@$Aa&OPLn=jdNLHYTX
zdJfXvQk&`(3+?mD4<za5sfB^$QYYHO{y|s$4xmTo4=dlV2#@Q^R&paML|lSrTuti|
ziY*WAmyy~Lu7_b$14Cv}MN5N7x(c@_dxi!e|6nM9oRCA-Ksevx2&MT?H{6|Tiy`tJ
zysNbgJS>X_#;OiX4t~Mb;b6og+W9(H$eHq%mF8UMJJ^j|vLlgMzq3ko=a-Jili^(l
z5yx^w9u3cq+v@%#ScdY6B%Q0w@kxbxaQsRU8>P4k)!*ipL!thZ+k9U(UpE*J-hD9C
zd@L|3wP94YY3J$o$~zJm+%9VTkGvM1duZ`POW-+0iy!(#_YD1<56>gTbAdcf_Y8QC
zhvyOE`IbBkp67~q9z6FGAtxlzct$9Xc*X}6(Dw(_@9n+L|H>wS_rM)3{;3!22$k^j
z&^4gbAzk@VB$Y~>dK$4ZCgZ+XH-BG*BlVeT!x-j?wMZ}9vJA+|Z_t@tV2XG`_SIe-
zSrF=YWq6rBZVJlTlj)cw6i(_zmXaN2fOxEyw@~$8xoYsUCp6UBCUulQA^k7I-2#Ri
z5><-0L4@a1i2of}I{;Q#;X(fbdA^O&+jNW5KUH^f3KG<URBylC(!i&M%bFnbVvPAG
zqs(bj0=%0huQ*h$MFlwe1aS-P%VH7j^<gpHQy2sY%mcT{0-<+=vcfKUQtmE&RF-My
z35!w0*jxx8H?fH)Ga0t`Tq3TCk{7589C>bhxtp(Yz=j5ENU3u}i&J6vWTwzIV)$+b
zPO-sxT#zq2tEnW2^Q#bVb`@tg+*u5t#^<~f`alvGtH^xiIa-OkOIq@SeUT9FBfo7l
zsH4kP<|Xko$y+I*mKPB~_o&)>S&7K&D-{q4G9TqQ9|N2-O1$WUZNldmpipm*u#nNH
z8xP}l3m6*~&gkJ7>12Y;>rw&2CujiX47Ac#)1$)dmRBX}n8Ep<o9aFV(kpVOAQ6E9
zq5+MNj!F-YxJCJB51y!v#~VfBUPQmP<lkxw_n!o5@hGWvAROlWbrDbF)$iWWZ){}>
zlK|wuyazS<WDbB&LvLyEnw6%!rMId%<$Zmi(v<f?fX9?q=1&uwl}~Kp>clp|pC&^S
zpA4;HGIR#xiJ-mm<~T+bgW&%ZR~n_DObVbCKJ8y>EBtgyEn-TNSTE_+@LG&WI&n?E
zpUCJN6Tv8&cvQs8EcMuLlwAoFZ`8Yh&ue-kBktdgjIV%gi*@l}#U4|mrZ0Q?>p(!w
zt59=&5sfRnSO!Dc&)*A(@~QrOFr1I<g8b6HHS$Xb_DB9Lu!0*)%xJW-DdAT<=%nik
z!2gCdSVfnVZX6G+p&{Le3*T4}3ri84$0qlK{GCl_pE>6hK$JngXM2C&rM<0M+}Nj`
zSr5KH%)u!!ZqN9<e9CkN5wAOK8vu+FbyXji68=8W4T9#CExLGbUXQ9k9FsdA@>T5W
zq3%;Sds1Lh{LPj?$;h{is_Fx^W$O;?-W#(zpmakZs0pN6NVxKx7Uu`%9HRh+#d?xq
zdsm$H{*9Rcu+l*2HwH?OkmixNYRn_b#2ap1K8DGUz_dhmiF`0lw_)rYNWRuSH(EkV
zLUDI-lH!iz6zCaS&IVlIp()m&8#;YfAe*2a4Dw=PTo%I~O3KJ8y$TN<i|ET4cnCxu
zQnlAmReP<vPNg!T)V7-ts-s(oDO2%~Z<RD&T@{Tr(*9A*)7^1rQnvDI{#{{a{X5L(
ziq&MH;j%G?FVdC$g*@jcyuKVQUI$!**EpZI@5b%H%z^%VdR43#ECiCz3S~aVC9eqh
z>|+egDTeot^Y?CeKU0HPlR?ZJ1eAOM!-kld#lO^tF9W%?rmVzhA10|O;4HubZAAg4
z^EF@#w&s-`u>$J{@yu_r(g5`80yqzuBo*6+BuTq5BIpo57#VGcI1yLih-*xkV&={F
zgWM&sz2W-L0$BKsnFoia8GWTc+ikXwxgK-bZce@mCkmb5K1h<7R^MjB<Db$`P&8(D
zYCp_9&<&QFHDIZk+Ss1HH9FBF6`;z8Zh7{@<?g(H1pl9wC&Tk*HQ&{y!j|B0na|Hn
z+HvjL9ap}A|7G8(al4cbCGs3XuD`<ykdEXQ<*mp_4G5K2$B4};2b^nlr31<?7j#vL
zaO>kWH{vlGSJYHE-$nis)oK1QZrakJVmuOSc6{JRMs59vy-tj;L@<~qYhgi4rsE-0
zDp{o0_!}RRczO+RhQoaPC2nCI#?#qn`Hc(^k2>_Ynr$Z;*guE-a*K^(<KEHD$d8MS
z@e@b?Y#6Bc1VbQXJ0Re|H1V+^EfJgk6l^&kiwAM)_Ms}QRs0Z{or83O|D^rW2S}~L
za!-AKNnRVpRKSmX-5wj)xPXlJaDJXCHtu<BQNk7<W56%EdRdm3_+fR|8*qvf96r`1
zq5N!hMqIbqMmn=giA08U6V!#E6-=n;N5+u}<1d+z<9?WYC0d_U@h9k=v{N~v&NFgt
zKz3cZHt$>_65r@1^4qMbaC@FNIob_Uu~q2LyYSRwS>5!h$8g(A?5lnUl~(BHw<FY!
zOKqoD1?C%h-Kx}a>-4i*Hg(e+^6mV120h0CHa0ow;JX2~hvROh6zP)Ef$)-Fc?1J#
zm1oPjUF6;{#vk@kUX22R2LHomOX+f=bP*P{8F8(d%`X=mV>sG9;_Geer$KqfK(>wW
zj6l*hf~Md9AQR6uDxN!S>*ukec?Y??c6z2QoFnV>c1w^O&&`onj5w%I&xH7kuH+=2
zX7t+c+9r2-7!R>B>yy&GZ5WR|_>(mwAKaquA9r@s)@?jPNNMR7{Z;Ox>|ksi85X{d
zbOTWQQ||czxlyi`3p*xi|CN@!#P88+rq0y<z@o&T&TkE>2!GECr?!NAlWMIwx>_N2
zuRLnB5e)7^z=-nq?AGBiu3W^&y5(tIp&zhidMe5*UruXuTn9dyhZaxI8MJl!#Dlz;
z(gGKBtQBQ78^#UKA-%qgf@D0H$L%Vf3YUL)SdDpce$PH|!fuCxxeSE-9BWwj5)0<g
zV)4LbY<tUeYWoBr`*XQZN}pb(>!IV0$Na<hbHSf6=gN54^l<e7_w*_}ZPy@7uVxEs
z==Uc7pyT2%w#E&bpPIn_k=<%`9)pA0uDJJ`v?9$n2QSnJg59trsZo*?gs{$m?=z;H
zDHfVJ9w0D-RWQ%iMli7g%p-Mtfk_PDU=nDD>|_{%DQ_&mBm^Ls^Nl%}Rds!V*&WEi
zq*A9oA}~LwV8YA@CPRRE$LtHt#{x__`X2)yB`^b2Fum_XFb@eZAKm8*%q)KnrZb)6
z4<axnRsrVA1_<V~m4oRK><i5JS{w}J<qgb!0Kt5tf^j#5_s!;8d2Y5zjo{gz_ATq%
zC4U4n1%Su=V|G~ZF1*0k2~0l~%v!A0EK-0mS$%=&SC@mC(*VJAB``M{2{1LR*s0@<
zc&C1``s!3dJ>IGBu$92PRtRR13T6X=Nf%&tHTDJOPHh6?yst5U=^iFO*#+{pgV2a%
z`C!4GpyTXZ!@cUqPmG}jfG3jbgvkRt>vHZf{aPnXNddD>_<JMRcWf&JV#rCn8nkGI
zK17{##WduRXNY!f9Gj>Kc(TbYPhe`+CT(RM>CF`P{7&#SV<1x=jquRIKXp{WUDv#o
z0W(G0T?+s<ly`0;mkE|##(L~NAljLO{g0}{+X-OpNZVL5Ov2}PsqNWH&k(hh!OdHV
z2Eg=e+(m<b-UI$xg1`EHg8%(y9sHq9JmL2Z!LlXIS^-c;Zar!aPtfqjL?a0e^^G)Y
zC}v~G6_p$t*X$w~Rz2&%p?3pJ&FIrGC(1C?(p7m`B-564EA;uy-17X6?B#Od=V$sK
zo>N5}Zrpn<=sa5poo5Sy`%jC?-QwKz)LJ6Ns^FWfQL&JL6>`@uNR+Nayy{HI8&M|=
zHmc$p<HKM~_CrSvZ|&#FBI<;xrwuJ;=PbCkNwwY6bVu4hHh7#jUW}}y?Jq4icx)H1
zHF)k;t;OPM7E3s*YM-+e=72=0&|_(U^Pv~lKiQ!Y*FUSbm-eD5mMk?5le=_K&9SCo
zN`E)zFJ!B|24Qjo{L~;!Nfh}h3-JA&_WXT!x4Q2lvv*3Yc)lbb)jh*HWd}Sz;#S9R
zEj+imtv)Y-=TTzc#Y@7oQXhfAf};k?0G++KDuVo4HO2Y%xKEoRAFQm8e6WiBk!Riz
ze304@bPb$qsb8wM-@G_uHZ}$unabI6JfB8lHOg8^ExcD>uNI!Gk6N$yxt5Tnts(o9
z6q7?ogFehoiMeF{aI<N1S}+rVCg;Go@5bgc^KVB<IBu~Arl6f&0(A>;-tvgbEe{XT
zx7;ZNBx|}yLuTjL+9+?!&Vsx>QJVzmKb@G6Z-FiA_d|qW-mqZXjxCt>JL*a!Y)(%7
zNeg%F+SGtSaE4BpQWObU26JsQPc`u@Odxa0(4PBGhZYzt^H&=U&V?4(gv6Vu_mh^P
zet4*X;(22O=Q5O2gV~R7&H$knhUq*(NiJiuv@0?{Nit%!ISui=wLK#-Y&5gn(x<ax
zu#}2VkxpW4f}KvBO@Oo}sSw!^PN7~FHZ?Uq3oH5l%x+x*Q&x;@es@4?{Ax{hb(HPt
z+l-XEMB4yAgyCILISpxNK3q=uQ485P*NFOnCi)TfYcjpA&%1`1Uf=-^tFu)xoKMH_
zem~$#bOy%)B9b2#tx?ZYE7ZgLKw+KGx-Fwja!f8;<KUDXGAp+wCiZZqHzqH%B`KqK
zs9iE*ZWJiE1vEI6a5Pa%^a)LoZYE2Y?UK!8Pv2xA^5F?av*ReP4e(U`Y1};G2=nL;
z=OsLI0CWXwnlAiwF~ZCJ+w<FBMDf&)jMgs$hOS6^%yzT$Kj8)*x&gbq@+0kN*8+1J
zgp<lUgyS$W%$_9e7ygZ?B;p&ain$Twy-Rdy5!7Iu0YHRUlDy=Y3tS))z}AZGwCFSl
z#6xurq|xxw8ZgCE+v{?7hdQ%u(suLwNFWxe?8tiPQ=@<>XEEOd=pJTcjo78*I!K>&
z^n}DF_5fZ$p}+e<sd!p2N-q%~5O;?4OLk<_x#GvlRKM}DMySsY)J1)Eko}Q=xvI@;
z$17{E?l`ZV0PPi4s;!sot(ksx74iLA)GFm6m9)yc7QI$^)`I#Y?Gz&yBV%k_0{%i$
zF7d-}kHH(q=RA=9!FEEoq*;V+Y0Ipi$YLOq^F+M)!|n2(wy+ak?CI~n))4x?k^0}#
zEzWb2w*L8spa(Mr%@4q(KSiGVA5oj`BYm>z2Tj!&8o*+iwawJl9~)55Fo<{n9JLe!
z%`8qPWWjt&gj1bgZ|0{u(@WeCe{`vVa19kxdaNg?B{tT><UzXDu3&3fw6M#O?He@3
z_N8h8{h)6u%B!iD8i}TYF<vb(Y#3{0B<&bnFZHyCcC_WBmNt}v;Ti-}#;dXL@pj}1
zTh?iRo`nL>#^Zr`RjV{LYFq<0Mh$d9CPkhAhE9a5PV0m*gXnY`2J6&K^EQR9>;S~|
zb`WMG)$LcG_OeI*Y~@`e?>)UgjLrY7gmR}uwFf?d=UX>~eAEMrZtMn)^LGSQ;{4t{
zfb-34O{ugm*7FCOW0gtec=FWx?ISeuj7+vH2&aU)oJ`6I;jcQPp>A%a<}hPc)V2!T
zPd+V|w1oJI>mK-RT~GWg6?yXSgV)r&Hz0SN>Q|DxlXb~Qx(&0>EypEcZ<q*eCqTYd
zgRLJMxac@chF_X#QDo0Z3zdHjL&uQgQH!^F(Ry|Ay1I`W_j&`=C(qK!fidil{M6;j
z_R)^QyVyrB#X(yJp!4RNbROC*%b{>1)(zF(I||QBuL=4X8^HcoCbk5JzGic|ZOP@f
z=6AXzgA`X?e5@sHoZDlVLjSXlN|R1N2FGJ4BPpTmh2t2xm)HVxFHO$<%mjAjx6mR@
z&Bl5(C9sJtzOHI%<Q@ZHvEVVt=m)?a=D<SD&cQgdMy1u|a}IbfM}Mp3Hbj?o*?lUk
z4-wV_W*n@7qcB*FL&S+RS5%ZmgM%B#a(x{zylUcESUTd>1v_xaM*_BSq<D(WIy8=b
z<5lxftETM!TC2w~$Ltsdvms8Z-<l0#xnPo4Z{X!X0U=@X8VgPJEOJ@Y9DSo>ztO{G
zjdp3G*Lgev4+QP@TdPa_C+_KX^lBnvEz|0$TEZlE(xG7kbRTLW(0z!8Gd);`#i_5o
zy8brWTv46jOd#w1sa5<t%tP>vt=Abb*ZLWF#@3_^Ho60CPb7lX00Gg_WTv3w(FK{;
zYBwu)KRFz-8x97K_|H}$T$)hLE70^Y=$BPDJ@Qw)j^{c<F4sUg%VU4!;)_Dg(mH!d
z)M}KdK#-`(*XRJsC(XbWewEMHB$cn{t9C)-dXWEoEy>f*IzRYmsJF0?%U#qa;$3;^
zSDJj)r+D~}59{UYliI3$?LG`_oLfhgudu_ae1)JP8+ExhfqncdO};K!RQcLlN0o`$
z2rQtkDqlwqsq$qd`D&&gUBg#iqx%spstOO`qG}V=j@g1-#>}pq<d}2JG)Xj-q_swA
zNo{TyTa`bA^4&e)18B--{wRmossb}AMxCsqHXPpD{F_@&|56|3%o<N@pf@AW3EL-7
zmCY{#b&T9CROLJyQw{Tz8VEk#T8pyWJI|w)i<TopCmZy5qEw32ZRy!Yc}ioAc^ygv
zFQqP+uU0<gQ%X1Roej#QyZ)+(pWy}Bsz{Bx+Nk9LXZ*7%82R&&0OZfu0LcGyo@TEv
zba{Pl$&<g(U44OyIVz(j30m3;oxAA6dY<dRa5g`ummB$%x0&%v<NWjs72H#lzRh3R
zldr|g5r5}iR`(fd($L7)7HNFjhvtP-2lae=u9nKTA%6p_4cGW~!a<d9A4V-5)wL#p
z{cMrOw^Ouv;SY^(cN_#@ZM1oz#X*&CUnU`Vu9l8(?Tftl_9b%2Mju4Jt$DE8e0#N-
zj&FzEr{~*7#J6Eu!{IjbZ>Qy5pKE-J3cpW%jc+x70OZgDF9GZ6$^hLwFuj>4-+oqK
z%mPt&;almL#<sOI2xeyzW<hBXX3K)})^dfl94)V@2_pX}UB4K40)0sHwfrlfzrJRr
zmA_QGPeDT^WUdkUG~Ed6pELYYlM|^8!IKS~lP~M-70|0{I|ty-&8(OJj3}_KjE94-
zMcTS30@^basCH*4Jg>ei+J6Boq$?}2MfIMEMDuTjihNDQ+e@1-ME?=kmddwzU?0h~
zo0Dj5R5brrBiIt+?T|eR_<hRiDr1UNJwKfKKh=Q!f5ia(&#m15ZvWQ*LA?K=y`cYE
zTv90$2)PdL-_OVqurz7Xh%Zf)bJr=qn+fnOzm5sO$Ko-^klk+F<l4jj$c=MVBeISV
z=Zly4MWY&N-c10~ybKfFyvvoo<|E+_V|)kuD*xS-$hJnIqo0n342S%ymFlJ9k{4Dy
zN+i@<#OpnO#qDNem8-ml2lwNCHnGmO_?0iRahH%SC{IDpzPdzBw1g&_U!_yuc$CoG
zP>>>ldVd&?WQJ_4z}{!GKl1&j)!siWdfx>h7RZxAGzHr4KGl~nrKZS;RIaqVS*c6Q
zkx-L>P){i|0&j)D4OAGs61N!+gvG`k+yhF=&Ry|z?A?NXvzmLs`s`c}li$gi_Y0OW
zJKCd36(>V4q*L;~^BQ_*>xucQejSuXTh>&N;CKE@CuFmZCV(|{thP7H!<_WHjF_zr
zVl>WNPBhL#2a?{!vZ;Z3FEDJy{!)1`=b|m-2R$FlK+1cY5Udvq_+UO;Mi$bm43zR-
z9vz~70Upj?p*5Z(4zMpHD3vj-d#zHV+mM4U00$MYag(3qjeb>`Nx#;ldn**}!i)C5
z$em?!`6_Z|fn!f;bp>AM$UEwD4XLzYqpd}=4Y)zQS;D?6yGn2=&vijgEKK}_md8?_
zhbwuYwHeX+8_?<mXnoR{&}wiIin>)Z0B%KLQ%Gq*E6r~Cd5O+q-e7@n`#n_bPbwzA
ztuHYPN;uZC34SdmUR$iPuja7dg`)^}mMUK|4CI=PaUNHiQUWOJR{b*kZ?9$e-~x(O
z=ysoWJLf*LdgN~p<}rUF6f-+Whs6=N=Jm+EnGu5W@Prlavq+J)B})N3w{c%f5}VwW
zy_fkV0x;V~+$Und@`^}cv+8LQF-<#jIH{H<u#RhPEs9?`c8vt|0;{M@RgiG+fo^og
z&1G^bclu5zVrE<_*|KVbU_JOP7p#CDK++%7T`G+hqc7;WWzJ0s#&1$ji*`9^rt`3N
zSIC=xf<CYyrUN*A)FXoF&@>zod;_<~2Us!ED@D4PEQM{-2n2zMhgm1&KJ{SFwJyUm
zs~tlRH;`18DYXc8Ze7IFr^4&G7O$1(WV6V!`va$6iga6fuaKm6kj2YrYHe17vxe0o
zTP#UBsVpn3%wZ$Z+fxrXtowQ0fIe*z1A3sil9bFrInM<t2|7>1z1OT=oExtVcQb50
zfi2YkQHrkXhr8bmVqtrCh~QUJq;u#4w`E=N*R+kY^a^zGHt;xSZLE~8Auth3a1(5)
zS<rJ{Aze7QP<;cpOlU0d5U?riQ!EA@?V6BhRW~V=p_d@sUquP(^y>}{0%}Tm9;b&O
z;cg@$qzYF`&${{4|DXG`w035P5%udXfb^Dz`jXp~DEl6MJp*5toz-=0UtQ6S)p|x5
zUe{~n!81yXGJ#V*Nji?%;g~cf+(BvT=EtPz^jDfR4GHGb)DWcU!k1i{z6NP>uDpY2
z@Q?PoWQD>vFY74sgyNsav$E>n+OlG~)wC0=#?zOHVZIF380N*gD#JXZW0>hT5bZ@}
zi1rL4nCl(G@YoIxjNIfa@`rj{1{)sC-6(i%NS!db!IyAC60&cg>lCB&jzAO;4M+wK
z?KL1dB%;<hbo33Kqz(uc1F-6<8pvysqt(}`_`1wvJdso%XhV8J5d)sp95s6x&VRW&
zssX)1IlZEK!o4m^B_=t55HCXA`MF4<DYubCPZ}zb=++lLNOZoA7m09v=tZIx8i`IJ
ziEcrI&)%Wo>sbdJw@fw2|26A5eXfj&2$Q8hq2kAU?mbg!?gcx?a~WgHO5pu|#Ksyz
zLrBU)Ydel&`tylkj1<ayXeLFyP>TJ2)(v5w4Z`G_U(lAi(3@Rr(>6lAMa0wajV(t_
z)K0yg(5>bHo(n1^R#tTmQ5i3yvi=>bcU;}Ngb2tWQi2(N`dT-=!>+N}*|G$S{XxZK
zNnZkP(l$F<1~LNxPGu=ST+vDPtXf`@eXN#{Y&l4i>>mm#kA4Y_e+8$5agj;~tUS9G
z(V^z&<#;<W(IE|Q&kfV}A38d*Ctkt+P~~;UF3mbJpYkc{L--Ir3=5>27kNH<TbA3O
z4<T*_bY-2(8i1pEK;6$!*8hWj`QjG#<=t|&B8d51QxebfKJ@;qoZqngSq(rZo;Mi`
zTr<9m<bh!H0vJV~X`1fInq1StwG49Er(DyWkA<<Cbdzg3{P<K&h9i7Xo&Y0GTU+ji
zwdK3Ty6)Su+HoAd2Z=4ez~O+^ADJ&Vs7X2#%zh<@u3nPeCMG|*H#~*FmerpF`UyI-
z`a-1<Frg$~h7rg(Sy_Tc@#;%}{Am}E7QKs+7Cr88-nj6oCvUVh5nb~?(ep-Qq^+I9
zn+fO~x#NLORs+N(4{$M_gj=2Zi*>>Y%2;Y$W}{T8=guQ0TZ#~q)l8quPk*Y7>;p6^
z@=KqHk^L<YKtIV_e-nE1ZmBn|9_6180&?@uQ>Hb%Bjnp4N@*IQ+|RAi1wnA0xd^a)
z)Emn~9Lu=#-Yq=GTWAa;*XBGKjlF|lT@o@hyCvmArD7fs?@u6zdFMR1q`mN-0GAv&
z$GHSe*uombBVfTQ-<5b&>&UB}fNEc#gBCk`%WNThbDR?%qsIZ}UjinOZzo=e6%~CG
zhamDcXNIE-J(*!$5Di7{$9iU1hr{tK$KwjX`;)Tu(N2JLQtna%^MIIWGE6|pKO#4-
z0mrY4bOuwF4VUEO!CKmNj0WdMAS-p4Zj0m;T#c$32&VjS7BQcAOQ&gVpX>DK4v7D8
zu0`iWR8J}<x6qe(8%p2>eQV)BkJ9}T&eenlp$3g6sIE07@~j|bG!}8oGXu+MP|)9o
zlN*>b7Ay!jePPlxw%I{Spe*b6o?_OZ?!f#9{)4?o-Nft8ZAVozLwBX5)GbUt5kL@i
zw@SLYg()8%73=}r(SeW3X5fIiXON;~&d8q!z?kp}U6?v-N>{!>O?N`&pscM(?hfcD
zaf=T96{PRb$_v1F9RhTdAg->VS^qOM-0cJ46d4+*#d2H_O1QGSl5+x#=KaV9pdpp5
zNBE_HU^hQpQ=bl+apagl?o4*g&!w;>bRXlHP>4Zji#K%db}J8_;C%->MgGd)tM8|H
z-@my*OgEDiP~I={ToGlRL9?tTpw;OJ7f>(|<N^L9Okgu8(<}KiP!DNcx_%nRlqM&+
zKCg>2)b^YF6V1D94CNbs-mC>vu(IYfQT1>3S*cwDYm#%iI3WlTQmiNWQssuaRCxx~
z@>NjFYp#2BZw4+^8UTuq9)|IZ@Kz)tz|^s)eJYt^z^aAl8q5uHv>$a1Cy3`1{s|Pf
z+>C!h?Y)mo`A=`?gn0Tworrz~$%vh!*c3xYb3Z-jg}MPz2W6>za0m!<5%V=Lj$><X
zvja}};HsOg#F=(pyN+q+p~ou`XC)HnCJ^V7YaUv*6_=y_(8)(m=~dQMY`Q5lZN;Xy
z<GKuH8rh%EG>F7SJi`>vaM-4-IOf%XMF<5}QObe8y=R&}y!8=4M=*pcxt@FQ5|?3s
zKKqC33^nv?xq*j%VXPMhaV1In70YoxB%r+Iw+%ETsKI}~1m|$kzL&Hm(A+|O&x2J9
zS!rGgXJH(?0XUofsbs6<;xYw{Ddo&T4_b%unlA#a_nh<wJX)+50nO!TT6Fd1#Ycb)
zADr~b!}r6t*G{V4JFYEXzANxS+F`uCVbEUBlRioa8?z>KwHeAB@l=Ym3EsbqEfhct
zwt`B|gDm`71YhB1Oj}krZ;YP?jJKWe+0%IVw)BJ#tb~2^8sI(egf|(*d@aN0@h5<B
z|0H`&(^*X!YD$L_V$G&~XrdZ-xLh-x@QL?xfLk#8hSB&+ul?wy)v@K;kM$9Wu&tGH
z1hdgY?P$$_tj#6~yRibYv!$CLpVM!R90#T~P0r|ROpe(;wLAOA{8j;OZsp*&*UwA)
z(sOgWXQw^@KMK3&njM?icX%l2UTAjwV1QIturC^!y(Rr@3mc@VH6%(qk~0E=0HzG-
zY*VAnzx6dro6^r@&n}&v_P0Gf$1krD)ieJV#2&Sezi&EQBR#jLadUD^PTE;pdMT6m
zv23<Xzdh^KTI|u!>=?ox=iGKPBMRU6n;i-C#?8RJ^$PpV-UgT*ogf4BSRS8e`vaDL
z>1Ts*?oB^yw*7$);el?h4Ea53w!ul#UzC{=!k%85Y<Imf%^q_#wT-=9ksS`n_PK1A
zF3XATJB*euO-qtGhGBh(bKf#<!H7}#WQP=ukmhyEIQ&oD@6w&nWwUMH2)k=gIAoq~
zciZm&W+-c5YBK<Tq2i7k6P+8w?de-hyafhd-X*?3MacqRBeU5jzQ4!d@8;N3tP8f&
zf4rPf#_GYnPp&t|%Qe^o<C6~|dAw<a`L}Gf{vf++K&V|Rv`Yuo_`oGb#$Pc<S#ef!
z#1@bK*fRpVJYzI$5zje6_-_s1gB-s=B&<hyCz0E3?w!M6D-#$Uy}qa3Z+8}pLfh@q
zcI5~w#PP#BCD?cNsY2;OmA&iNR{E6Q;rsPBw)pyf@s9Y;_}1e)9HcG+Cir`ZHcUMs
z=DA&oJ)@gJ-gO7)xGgdp4oJi#fmz?7KHS$kJ;Wf_#gB55KcjO8|0G84Bv$|{;BU`J
zguEo|x72~U2873>5nk;NO_C~XL)hd-oXFTE$z{P?9v~d~a9U{IqqrXmanPqQKA;rF
zGPO&RYY1ztTbSJy3t1BE?XCmLG5cozEiYtfB|&184h#XKzsj$0E@KP*z<2CPcZQtx
znf08(fTUABX9kZL6`2hT&GRALL~^VLwqnhnwM(0m{E-+*c-n6Wqd<LoMuUNNiT#xP
zbwc9NUnI3%D&o|(K%22WQU@U6VvVVF1-UF(+3rd+*kcM|J2}?gj<M-xxp4*b4z5sO
zpV%vZe<ZZaAJ{!FTf}4gF=%Nkp+D%61LWPe3HgU0B;J3Bf&6z2ZA96#KlRk^)MLF-
zMlrn+nT_hjo4=qZW(Vwq6>l-F%LPU2T*jW_i*x+U&P@6hV0O;&hf~*)*_#yq;>`g!
z>_3^E+gah_&8*aaji9X9!sQ+IW21r10P?f9?$8~^=_?Gd(!y*$QhGKDY5ETM69@&_
z102ZNXkcIDPHLt3SPAdXkkUV)N?%i@Y<yUNm6*iJCB>o=&JqqgRSKm)RwGuzV4`#j
zpvM|D$XnD((O9WImBza1+3_3c=F#+c_AD<{%MQb`mk6El2pI|@NcLtllzu@iJsC^?
zLEmPpkf|j&Z!E{DWfx%C4Bk<KjI`twfYN5Q^b+=%ItEBby`w@a*dO9sRljWyGAI*t
z=e^+mjU2ymQr`*~F2`f+Q{D-PcS1eLz6HQ|IwIixL5$PLgyGBa2e9&&C7{eRF;ia-
z4x52~W@|rJ@SpM&Dhy-7UN6u}e4_oFFA678;b<ysF{&j(wVzh)r-}cR>rlO6R4-mD
zVb^{}i^8XGVd2SCc(hhxy!LaLD7=yiFQCHHv=XzmpOZylCly{og+I|se69UlAPNtI
z!Z|ov{L@<glZ{Rej;(<YA}4&LTbWJq(=<-$mjhs^l$Y<Q`C2mGG;a4dtUQfU>*y!)
z<3;X-@lL<YhI~MU@*w8+4qo^S=A!TTBnF{(V1L%F0>m~JRi2+<LSb`I7km1wVTQDE
zkVUQ+n?xOu&0TtJJo|r|-FVn8%^Gc&`VM1{lVPgZ!dkgD8e7>u99!AO{;UfFE*{QW
zVV@7s=f(7S3w&+^pC6&mtLXE5`ur|@ZVjLBM;t5R7e@Gv0Q??i_<fJ~0aAb?LyRNU
zoxnyC*a!goFo4~96I*RYpYNm3-QY7^05AWSK36=ApKlDq&!z0oI$$pOt(#(g7WgzK
zd<FtO9T^ggGEa;aNGv2UKNFar01PAnk$X}r)97;sef|bM_lM7+^m#aao=Bfl;d4Lu
zY-FDoi1tHV^Y$_FIJ48*OTX_k&;$-`mpz5GBdB&4s0}PHZ@GcMPtxal^f?+n4~Ng+
z-?&3@O=7+%@}v1;1<n^>>eGC&%TLS~@A*}lFZzi2qP3VW8mRL{*K1t4B}DW4C!_>B
z`+uOACKBQ|`psqqYpMl@nH_ad^Chq`PMB;DgzxOvXj1XHg{pEjfO5?>XtM|^;u`AY
zBCjs=oUK+Hv}uY@T7kSg&Q{pKEVa@;tTc;C=ZXfnT0RP82dQOc_L%wv`%z-h>Fz><
zPIt$n-acOebGC=RhHDY?&Q;deD>QxmW;9pU*RF$3dUKdPCn28nOoE;NjYd7R?>cEX
zdN-PX8_)j^!!kcpnH2_a&Hc6ZQ>b=%78TxS@SYxaXg{;HpXyA}m+Hy%`lwbSSNpk7
z6mD`IwP&IBsf7PT?J4sIAY-CI)1Udi^yjE@Z~eKP^yeexKK17V<)lAHppaY{j6%|S
z2osX$jGP~;(4P-7ePA)9y$JfC59lXMS2fGZR0CVSJi(Sm10tB7vhanNkk))u(NS}$
zrA+o`-CxjBNFhq=9{N0nKCg$*d*E|%0e)UipA+e`6F%>T&qoT>^@(18TJ-wU1HZl&
zReuu5Yl9GEdjJU*qwJs-o6+Y3^!X<Hv+gW>evUp@pk9qyrTcsaKKCi`r9Uk?{b^xD
zva0%%z)T=8{{=AD0gU@9=}-EcLZ6?3&o|+7E`1(OpF7j%N$~jweBN|br$5cEzSEfU
zYzxyHZ`DZkiXSJ<3H6MSd|M*0XHjKF9ih(;!)HIt@6A4Yt>+@MoyF#lvZcP$0j|U<
z4rDdIpqhu-pLKPiW&{8RU7j(t0*_dv-!_?hZI|Z3$U)66yyh6Hxd>`DfttnnDm_{K
zdU&}MYch$|b?~|epP;&JsqSc~+Xm{c%lF2&uE2NRd|vrgUitE4Sor~{+!ZR%$iGu*
zeUTa@{r(QG*o;^Fl`2C0bv>YBV!qe>62gYW6_hRqq?gott%E%y<b6PNOu$^bakKlZ
z?tJ4clN@vvHJwGSU{KhkWS35_8weWNInN;Gr4I~ZURrAKnwQeLG98*0!W3+pX#`&{
zGX0D8mxumMJ(G7y<PFs8-_)&nN7VR#hR<tWXgFSn_^$LE)Gz}`!%U|0`X2fP@pFuJ
z>(2Xm>Z{&v)IYxuA^smo_FGS|0Dy?@yh{2<^9sPJ)5(}~W+NzG`M{NXu;u?tg>fwv
zn;BXilRh;J$1|hvK)wi*BMQBNq~-Djf}D8ef3*Lv+>8C6cQ5vT-o4oWd7Az2qD9%i
zEd%T^Ic5h;#C-l4SZH^RFR{C(722f_)*`(Cs8k?_R|X!FleSy7<Pn?sTuSH`62OO`
zq|*|B_0p1o&C-T@h(KyBPlm4L$@l(D9LNK-MX)h0G*VYr;@{N89xR*p3FFrw;@9;l
zG>fr6>rMgH1}MJ#VRq@Z+2J;TrD(LR1#^V*xR4wlGzdBV)BvvAP1p-taW+cwWcI@^
z?QvUrt}!h!#}8dGIla)_;eO6u@kE_o+!pFJkpCUV|Bi;g(p1wHp$GDQ_s|0XJN5g#
zi~K%hm2A**>RWk-_3v#=f1%(Gc8hbO8E+W3`x$I2o+mXB$^E@VM^>H;jV2`MUo!nT
zl#$FBiv)Z#*=QKI?pr^(p{&#INUvg|R~C^gOC{G|D!JZ=Ze2ra#TRc!YQ4yQFn&nC
zXiV#w<LCFk5)1Ss&}qG=zPxBm{n3ZMgf>&(@uXAwRU*?!w`Pwao#KDvbc*(%Q~FgR
zQ!66V!vl#-$77I8gZl%SR{F^W7c21><^QVS`M=Vy*ck!gMwbAOY^dSlM+E#ZI|k!L
z3<vB|kzG2NB<*HzKnh{2xj+8MH#@)r!JDt;@#oRh$6&LOFpc##*rXs=?*N<BHy}AC
z4+GelEic?V^26u(+5mGRx5EViT&PKFgAATjIUJ6yhhqK+%I%zyNM}N=d2O`$Fk>LI
z)wWoYV*cUjCBl=X(I&HF3~G-Kh-zQRDc~Ao!d!U6dBVu97f{>SrS0;(i*7vm{FQ+c
zDmG%DFbno}c>@3BFi@@a=W*&a*`;mr3hYLHlC(ATWpGoDhr|{Ua8@eZ>>Pt<Lh#mW
zOzi+kLfz-l6&#P{6dUHpiODlNey+e_4Sf`c)0u>7<2D=Qbq8RYvtGF4)}5b*_%U~0
z3*k2%MmiMqDIOWPjQu(-pM}44YcF8MH0VKj5ASoOAy>IU{)zf7e+Na=x7uOzLd_5~
zZUMxFwA1<5Y{lD+$<i$@hd-)vxLK9MA1cYAUiqSQ)bf-f)V`1-Bt@EOvgOo(ji98Q
zJ}9W{Z#@5tGMXgyv9O{6?D_v=?@hp?sIrFP?#@C8U<Cn<d(@~w(MeRsM53li0@c{j
zDC;YtD2h1fh|&!xh|#W2DBBiBHb)(0+(yMwTqfWK2?!AvL_|bU38+wISfW5kLX!T@
za%<`CB*4u0{@?dJzt1D7uDVtC-gC}9+dcQ3QgMHj_&b)Lk4Sf`gEDX`QGRupjeAY9
z!xNtAghi(h0%Sz5O*uk2b#1G!AFsZ9y@aM81{0dDkx}PIG~N9p>BZOa;}!f^#>bcg
zPrH^M58%g(_;LCl;qiKWe9@0Bbbjl<Di0F>AD0K~hA^Z1^<o0r#6igDdM0Se+YNaT
zt?%7P%&7tR7H4F|oXSJCnd|(S?YNlz-ONq7@pEuZYqf$Mt?~UV)L4dkjS2OyOsGHU
zh}EWjs7;SVZF)#eLXyLBI0%Txc_ReG3kAdr3F5LkIYp=(!XHxiMw~wWO#Aw{q|A&6
ze@L|cJk*pgpu(WZ|K@G_c~SYoqwW0@80_Z|2kPHaL^S%r)j*?XVm#68S|Z^Te*8T@
z9)1x#J_8?5g2yOttlH;+UFjrmyqVo4<vglqv(}@2Dk%<^K-4~u`c*L&Pns*x_2gD!
zUx=>yT0+;w6h)4KF48t;ZC&7RPDFFyAKW5MkI!$6&C<3Sa>@5TWwHdV0@M2CY|;8}
zZQ)4CHQK|}i|-jcCG^7&f)ZBwW*37EI18<^l5u+|$ZwB!V=W7VNwkN(#_1W?rcL~w
zUXhg16f^b<ZT;`iJ_J}4G^}=d)arq260=Zt2%>5*iRxREsFueP)e-2Y!1cP<6g#Mv
zX-#o1(^9dZwPHbQ#YAgraaIVc64Vq6k}D>X^Q!lQ92=9S7Wae4qr7TKx>vn3LoLqc
z@S|tj=)4z#E{MrWa<=F@t@<`QwR)JkTU|q`PNL~9+v1&qvU<avHO098??)m$#1il6
zK}1P&2NES+SO}ElMoK#S2O_iw__2>4@5+Y9R7<|g52ioIJpu^K%x)?vPnaCQqi%Go
z>xwbd{~SSESA1`>f_Xm>ZDr)_Mh;N<0}<5g@P|n$r^<c9D&EK4t9|sHpo-PL^`t`V
z6netm?@T?Rh`#50lj`k!XY!M0qxi{Q6ZM~&s9*eVpk7udrWC1@(+N#Q>co?461v#<
z&QY+OG;^ETsNb=hn1HEY<uq`Cf%fh5LX*ElWBc@W_)Y@zmgz+-{|Z?C{Q+<~8F6~i
zcTw{1zo6fz{JX;M|8xER_(B$Y&F3@yUx8w8L4qc2iP!IsivGW~=zmKT{cmCV-_kz)
zf722De`C@A790J4^S@93UH@O9|3d{#|CcfS_XGNWh3NmA|2F-n{y$6q3$GCLe=gI1
zKGOeZK>wTL{e42uVEu2HaH1vz8k47<Er<Kezs%-D<vaxsq-Zsp(KNb0O<TU1rL-lT
zXPA(F*o5@s{|<?=DmRDv8)@`+6<?%l#W5ZGLgxNNjT7bMn*vVvMZ?MNH@zM0$7p&S
zVZj^w-TF0lHzrLUFecr1k+?qq&1LOFdNjRJdk-)2#-#gy)^#d!0`L6;?$K@>EM3ao
zkN$Ha*#6q3>^=vh{as9Wt4-e&wLcxLk0+A<^?_V%_}7Qoo4fey!|%<dahoc<H{d<m
zsyy5lo$nk2uHnHG#KxwU^=<5T$S+G?;#W8Qds}+GP1crPh<7><x3dQ(x$mMFKWHP3
zZxj1LGvdEVe$W)Y|2TVH+u0bjZ3}8!zA}CDOa9wF(btc{CwkEpL_aU(68&t0Kkq(_
zzMugcqv$8rUo}ejtJ2Vj=pE&+$TcpAq9jF)by@`@sPE_1Nx^Uex}HE)*53cZbUmd=
z%2kFl>u1xM_2d_pGwTl>II{{QWuxiL`jhp=Y)N@lII{{YXI3u$&K2G(uP9ZCKMTmq
zRd+h?8$|iB3QRxNM4KP$cDo;Iy6|KDX@e=$SA5C#$vIAz&sT3S<@5965yubg)%Jg3
z`LVPwOg|RZvh@|B^Q8d&Sh<!TE5pobmabj0f&5q}Q9JTujgRtA;rSkNc-`<N4j@u@
zhHd{U+Fw<mUHT;(br*ig{;F*5o%~g&erfuvqOolff_8}KsO{T8{;E+i{wnfWHnv70
zdJE-WM*r0xZT>47uYQ%uH>3SoA36+a@SVeu2DtkF9e<V=k7dkE_oySXI&x;o>PH^+
z7>{~Y8c<I%-H&!^sh9x^W^Q@624!GIK({(58~*l&zZWAAI`ee(i}Q3{5a;PSmgVq@
zOK8pRC-2K;xAn*1Av{7+v7XGcMf~_HetZKy#)D$o1b+M=Kd$7*qw(>X_}IgbZ|27f
z`EmDr40yuF=dQQ!$GV3B0}#4xk(1>YrdtNyITmPWQE0*<Ag7nSp|MM3b!eKl3*HX2
zx_o~Kv?ln@4YWFaXF*?^{z!eD$9;VRf8L#neJ%gI#mrB(Q(J-qGr#X&q&-77rl*4h
z62+_v)A(-!(cS~}d}4+?U}Bb}{0(k_yuTmlV0D@{j-K7$s9lE_c@wkzKf$Lmv@6$}
z{1|D>?<RgcocM9U(eh&oxkVKd81kF9)x90fcHf9%%ymz}O44UAW>@zofSh;{0b~Wb
zaBf3@{BvD9``H%+8)lv(k86-ak{nK)B3IWY$>H8kId5bd@Hgiol9IAiSPknfrwX^d
z2leM|?{_bx@85{upN-!yY47_z<xm$nZ*bbX{GFne_=z7c=1)xJPn?XOcp5*Ex-N=7
zgult7wvfD-Mta8vrw|2SF>7a6lUx0aTul>%Ih6ewa+fv8e1hx99O}!7?%>Ar>xgq{
zPpuO^rfJc2nz7B2Pfc%8O)(~}L%!=7w_3(pocv`>VA+?x?R(jcxi!YMYI&cSZmIcr
zJSK(e$nWv0zi5xH!=*7SGp%q<;vYcw#w2pk)z?^UD9tlqSY`^)1?Jx&bzZ$54@*)(
z?>jQHic}v8ptp$0;+{!(;8-fwPEqA*DwkGPhj6J=xw<jw_Nv9Nyz&a%O5-Y(>X39U
zf~yY6zzYyuL$dG!q|uOUypZ7{7cWZTq5v;O!G(+$W8tC{FF?&2GD`orjrG>$eQ-SC
zQ*O&~I`qe^eETSamVAQ#qt*IaETSByY??ki`MFcu^a-7RQ0~DeloYrx)9pWr8v5Uy
zO+?WJKKkxbB#Hx{5KnoO9~biD?dUMVv;y=!!QXAPGJ$C2J{x@ixm+ZOqt_=UaZLD>
zWoNyE{ff&zHtb<ZLAk)eaW}6us6kRbc3^atg*Ac4oq#<#Tv$+(m`R(DR38yfyW&5r
z7Zf2XC1o{X5mP6}BQeE5Vp=>B(+wnM7)Z=AkeF>CG1ow1fq_KXKw_zZL`3VTx^!62
zThK$WRh#z->!go-BG$tMaXLca)4=n5(3$ia3(wJbZCgu<!)uJwlNhJ(5Vrb1dI2Hr
zBJ>FDLZqDzV4f3?uZN=XH9+8N+*%V~%RXj&H41#CthMm<6XFX;roCBX;cG)@_zGZi
zKv_cPDEs*T3Y48<_%Q_DzFW(9+qkxKyzM(5@V25Oybb!uj<@3&Z`%lA{WtX^yiJD>
zyn6y3Pq_V~7E2$r%kMq#JJ=vS`Vw|Y;za$51WE`52?>>pL8$yDJ%mwA-tgE(L&Axt
z2XaCCnvZYpo;g$=cK{lJ1lo}#JAak)KE4NlQ3~?6G~L%n4i8C`RXIaF*E-8G2Xq9`
zwI^lB;c02w12r^_pS^0WoRENT)_n{U(b&z_gD3JQ)DDVpB8zH>sjTJ4d(Pv)Z4^WW
z`1nD7{0cw*oFDJP#{=>4&HOmTkC*V{;pp$V93L0fkiSPb?&xF<Qa2V2L>L`n7<ofo
z3>Zx%7<t0I!3x|YJ@l=B(UsxEj6iOJ6x0Yt(xX%~Z5+Imf2~}-Gs)|$k@MQ5heG&x
z?aT@CxG#)H9%mz-0UR!e06qgIrTfm1!y|xHOEc692!!fYiRQr`(~h>_iQ78bd20}+
zK!4qRUm9?olu`FDn0hGzwEw@zi*wnD2-jP1>hc<bOb$O@z>nWUz}<|G`|{&s`SDbK
z+#4U?fR9u8@je1*|55z-GJHH1AJ?s>#~b-^9zXs8{=9oVKK^vIU3&ogAXGuIRH22W
z738h=6_K1M3OR~_R4$N1a=JWVHUjsa-Y~N?`N1`qu3R3lv=;77?h%@l7;NyT*RVDd
zsLFzG_^bKIBE=_zT^A|<c=aC*W31`IT;yt4zf)mV4+a${=?2uo)RC~ZvD#%tEwva7
zte`^UOJD{SEPMuM^MN>9y@CoHcu3wHT<hx+D*Z0F!QZQ<fIJWObCWO+4aQQBl^;+@
zh6);uvEVqahR#RIVm#}x!4ZzdwAZn)I-Bfiq1kBq2G{!g$m1$XooHn3mIu&VZfV|X
zcW43n>1cE?+CBz}88(~9<6DlURXm|b)5(}USQ1)}p>ZXl7jaCU&}$m~d78(9oECFJ
zV$?IB?N#r2V1CN)e)cK<2VX-d0bJN)JmEV}btDlCY)w`t)O)4Zn`L!Wqc<Tx)2mLa
z#R0`yP_g=^v1-%hz>1exp%Lk(N--(HC>gHCO3E0HVM8Ys9T;wqD$~OEtS=~Q>pJy*
z4`}V4KqOUCHo^14aQ8|%K#n3O{Ka`W>4;}h*f(Uo910QJ3||B6d@f!}mAM5<WZDg~
zvz}C4>cszyI2F28yS9pTs8tSg2v+A)0#ub_6FmbZwMfmzebm@lkDudK8w)C3?m%s=
zyR5Ow_Za<7fZz4-yVmzmU}s}aLqS=j9_w)cUv}wtMC~sFIh_vVRFi<T=2a&ac-3)0
zXA?{D+ygx9N3>Q5w8qB>)Iy-O0Ml9_&{}};TS&u;w(W^dXu8_?6*Sl2U+`GKSL{zo
zdO4?)e!qi<b>&ze(W6FIpjC%-yoph(?!!naZ|K#`G6K-6nHc2h4LzU9{>cs_r?fFE
z?2%2MGs8^d=q5}lC<{JOQ$Pl#M-UIk7kNSzh^4aJ(<SA3hTWJP<X?S8fl?IQLeV^K
zv24LiDpBt$@Thmm9(6EINrpxx>TRX)GsVM87cMhAyma9*%fm|-F0-{&)j}bVqwr1e
zM8l`oat7&b5iW6@QTHjG)2``)Epj4t9|*pJL092>lH@$Bhg4pKUa9asPFxOff0EOq
zE@jel%yM}GG%6r^8VCG+9jEW)(={CKWki3am=3cvj`{LXe@c}!Ynh;0`o8Gs9;>5c
zXQg%AkwQ#mA-8meC-G`HU0oB{u{E&A4Zlv9(kuT)pOk;T6ug(J`?1_3bu4_hm}iBr
zo$#(DAMlFX?6CI%BUUZ{5_VJzy+E_I4*ppWKWkYB<zxH7%jn~sO;9|=!i$(3mOK0X
z8tIFTeSd*}q6mFyt1S<_eYkahwd9lizWzT(9FR$8i{BG;20iF=ZRb-kaxFX($Y5%k
zHsXC!+#V7u1o)V;K~neQfvZg>Jg;!_PXW&top|J`v8)*Y8fax~Wp_xL|JwllwME#+
z1{|Jym*LO=5A+cHlTUtONg>5;3&q1p%7@G!Wb{sJ%pxX&rX!ew!4L!&K&EgJJUt?Y
zp#O5{a4@26O#`945T@L7#A}ddU@SzBn#?gK(+}TkIZ#H~G^axf9)nR%A4ZeL0EU|~
zj%se&7u_e0sO9!*^m41VmfN-e*DbfIw%8HXRdUd1xJ|%IU(g)eM*ovI?H&~$VAobk
zL$8x+w%b24M4FjL{R%S$j9U+O*ZqZZXepfsAFvb;7P!@QlH#LHj1h^R2Z1Cb4}k80
zE!5<h7w}0l5Fn*iefd>$K4|AA?O#^CL;KNeQ-|h}M3qC2kc9OFFhPn!(zQr^4hL4G
zUYsd*ONOyPAX$(rHb;swWl2dR<!UaS&KNKke~AP1p|`j!Ux;-_jR)1Y-rIMN+!rjq
z#4@lVE9L6uL@=omW#?}|QqEE`KdZMVY7>Bud(T_U-{_rrWw_{{4r-XdhwIfenKFW@
zr70`|)Ka<wmOL0ov{wQ)luShw)Y2>_Z?!ZVFJJ<tR3io^QCff(pp}%$pzz@|O7&{t
zH<QB)3kdX#k?;ySce{KU6MGp^!CUw!6hLt4qm1`LoCjb)fZ_2ht01Ke0+oS<Nilwh
zN$82RRU9I`gt@EmTLiK&pL+S>9Ugxb@ndSCUv;>bUKTHf=p~vSxdT}qMeP@Y;`ZP!
z6u+U@5h|qDp>kGgXlbL2i?PPVB;#TlUnoS8#`PTA_2ahdMYiiDw(DiK>nd@r$^SBy
z!cs}Wghhr@IF?5UG(9RtGt_!nFHMpZe}eH6kI#H>TI_pU-WKoi;3ef!+pCMLSLe}u
zV&DFo^){aiZgE*}<AlO~ryK?&haB9L;b<OBI##g_m6Ny$J&K|Rm{X!BRLQD*5msUR
z5VgBWxS|Uz6%X%CLr#|K!985k0gI`;RkkOv9OXuWRQ@k4{}WhFyWUbTOa-yag;G$~
ze7>Z7DuIY>zCis#Qci=ZmNlIT_W<VVI?Pd)=2dmf4whY_{)~oNx;_vH#p0JB94?g<
z%t{Maqa~$R8eR31l&*X=Mp7Q=L08iOEqryqq)hCA6__JZFhn5_3@ka1!RYhI;Ya97
z4*OxQ-(n$yuqVYEcBg5ntN<yG(aL<En}ryvISrV2NPVBarj;T|z#PWPfhrKcK+RJ5
zr(Ns-0Ig`&bt$ZskCnqiC`}+-$RJ)GwbXD%PD!X7k>d?daKaq~Xo>n-Ee%q}I|y)i
zjj)D^1_O=o6}l^x*LE|z1xk=Avr&zflywXbR8;s1Y}<GFs)wX3;j5LBGTud3+a+ZN
zUMUTda&C86%%KG&o;FB9A8-Z2Mes%BY?afTMd7Oty33lJQh9{16M<e1@D+T!j<4X`
zU-K1wdlz0QVCJstMjus1qmG%`7G3WVIbC>i8k)>|-(VfAF~O$y&&Vuw*CdmfIs0wi
zqMp<~D<LkU{fQdAZ<>nj@D;&zv@1l@C5PcK=7IBL-X^2%!4Hwg+3hw<-t$m%BD|+P
z2kB)}S#GL-gdt$da$()vlFF(%?x6xH4MS4u(u0;dX(nUWI5K#q0H0|l8R8VQwQsgW
zbYH8edlSBslX8}XX>n~6)UEE(a)hvYhZy`L43H2l`){eHt+@sauBNpu<yXqvB9V@|
zAM&ORz9D8~W($OxmW2cSlIwYc;uw^aKX${j2+OIyl@vS!RqU(H=Vkt%q{>oPS@TQ2
zq_XCh{hLbEU0!nFtDhMUy21k~7=+i~-41XS><GCll}>+(A=}(l4qutVm7V5QONz^~
zAIq9E_{daQGpvd6bkT$TLuJiCwZjteV*4Ce2&j66%4s10ExJHK#se<y0klM=M}H-~
z4_I$bRn*a6Pj@3$p?`ObSF6@t4J%#y7W-V|7vp}h^A!ZXj1VoYNkF&1R~?t@RVT_d
zh3Tvv6lQSjg*r5ay)PKIg1#53I;a*FFv;{?UyM<Tg=xNS?wWG+<rya7B<+qjj+px0
zZyY7{r@;$sH8h)fU=V*&@KfRu1+GBVsC=hX@quk0gE0kMg9^By)2rIa9C{HkHsqw-
zw^Y9O5ZVw6gbk4o_~`){%m;+^hj;P;O;t(o7g)=VB;tSgY2#dCm2ZY!5_Lri2qs|&
zJ$B0eodt+OSZ#?jQ<Sw*a3>Y+;r)=nO0blOF9VmQcIfMS$4N|h0XzJ%kyFmfLkZ*j
z2zW84iCPbR`xRkG9@MUTm6_OG!f{io7ag+K6MTe4Q=l3q{s>7KsT^%(lpSp@UQ^V9
z#D{1dFF{B;7y}NJvx!G#aOn}%>mmQQ05ma{d33$TkqU1-PH)D1sHWTqXM<Z>>^B$M
z_K!Q2lxM%zLIy>diDIBcsT|8XMdKICm?3_@cQJnZCNqBTOg8cBrj&O2Nj#sj`<$s#
z@N9x@`!h3Vgx$Er%v|ly%w^2%gI4o=l%XJKH!WsFp3(^H%GYGr1!CT&{mZSCp;Wrp
zpg;WrVGj`h3%&{zKrV+l>cKZ$ft_FyN8p`G=oM}x1a^W^908;F1-KE|(U`LqL~lJ1
zuw1>(rO#=##doP+1h&<dHC1uhH~dv!)>O+2!tk~{b&ze;jx`WN^suZED8bfdBVj84
zcN*!b2MvC)+$EODMK3dSbp*{ulb=}gJCI<XUtin&+Ayos5v&qZ4HOho<uJ)Fej2|=
zQ+=3~FUwdB;;pj(WF6`)<~l^p3~1*H-zo5KKi~0gwaFdWwiOh$(Y{ppcZ?J)Y(V*+
z6iG)v6&>azw&YO<<&s2#3lb~^a3Pb-feYM+s!MlL$eUqIsDm;*th2&pme5(@GF!j7
z!I~!;5@gwiC#7L_%oAT?L?@usKOY*x5{4yld2`20Sgc+BhC|dE1WZ~p3YdY0fN@5>
zEE5GR>Ht@<9dv@$BW$X#X*S`{{OHuSNTeeS|6Ba13(VYDDyR$bF>I~v1%xF9GI+@$
z8N{;M`urwK-Wn_@g(_N`dSATVbL?x(xSpW$V4dl6qX2{YpAVoH&;^*ga6cv&HdQpz
zh4j4*^cYapYd_fw2|$l8`M!pKL2-+~DC<69|43(iN&n}eBU{?~loo@KzG~_i_68yS
z4O%Zx6rAUs=b0e?_$z?!x<<jLiOkfdC^EY*>eEbSWgXB?Z1<gz*%3C?cOHrYwECN#
zc;IlHT_4nZgb?hCBxWcrFFeP@aOJ@$DfaAsa{ZqF&iQyFm{(6oK3@v{0jm;M$_e4S
z4}z!y?d}(B*#tWFHo5@OzL_poa;D3&CJ^dB!bd>uQkKIL^$UIbUXX|I^$Vn6?OysY
zTy27@x)*Fxc#9a>zF*nhI#%EO8=0mnqd=qn>YIk01aIOY12VB>${hV&QGYa?)Yi*n
zfF5;3_7O6{_xg0k1oa8OQg=Xy8m`1~`|xLCnfe7-4p@n_vJ`BZmn7w5e1JC0u07D~
zeQp*U5BA2AeFTk-a32hXUtD@M+<4{9tM%96FYS+h9v70o)-WbjUuGuexb{-M26EYi
zSes^#j=|KpBzOr`S@~RB`Wyx&tuozn9fb62(zEu^`W;x7BYX$B&(k=@9=gs23p6Fh
z`{WJZnpSs`i0l2utL{KV9{VgK@)aiwplmj8FbD6d$(!ZCA?K7na(H6I6Q1hC6wfZ;
zb+Ypgz=&z=%`-*-9i*V;JARI(PGXAetpOcm-U(9q0q7(wuP<xrDwXSKJKQKK|3mk_
zENgN}<t21oP3{agU9X{QvNJA|l=JcLd6I&81M$PHWlfoqay;HWOH!V}zo$zIZpG!#
z<YWP1`J1w)1gU%<T!#QF!3N(6`Tdya^G8d{7W_MA4(~H!^^IU{GK<RsLqpD;ayNTJ
zlBV>ElGWM44RW~8-94SO?QGC&ib1pK2F<1knjPKq2nBatKitg8HkH{wFJji{x1D2x
z=Z619dQR+FkBW-}z;*?4_-dGlH#1i%$9gfiSL{tRCQ1Ag{f#kft|ME93Q#X#+YIb%
zbV^BWHkS3<(>&JZR<^UU>9iZ5Cpby$Cs}}%$}b^<kv>P&znXyv8l0xQEXzI1e+n#C
zr@ARTWPSL)73Owy(v%rMMN_6?ad|||mYx(5@RMX>s2Enr5uv3j8Z9*FPLwL#YMO&q
zwOg$UPg-9TmRGm~wOic*&FwC0Oq!BPKEDb)AOcc0NvgmNi|~-O)!Pzb5hR66*G`eb
z)1C=vBkA#=di6Kw7vv+w45Yw_XGt!B9L^dpwD^KqFv3bAoDg{*1>EHDAk;u<=wUZr
zvXwkABD59(%Oa33#fbZCT<Ok6IXu%PjAf6yoL|2e?kwlm?`wn0m&AKC5PF&7sNv<n
zngp<w;s0L}gfrCq7LSo>gba1VLO)3FegtzBZ6#$HQVC+cA{B`!K@ibDpJF09fG1SY
z91Gv~48V`!SqUw}Ltcj8*8aQtQJ}UeAEe8pE_7+_b?Wa$`7?{v>Vl;%P{C{6WX0g&
zRl1h|_v+nb%bZ2&3u+s4B7jE>+^LbPce-@kU7ZvA{`+n5@4wX6?)w;g6K!8Mw#C?&
zm_8uRzTD7ew=X}Uf(BsEI{60`H5eg&P*DTqqZBS1PFi;iErzeVn~MQN(-EzOjqs+v
z*Ro^0>UQ=?YQH?ma^j&VXAo{EzYTYg8MA%3-NCGx?ZaITb31wQA!GS>#B#(_LGGPc
zw*Q?*`U!{3c?xevxsfl~y@HBXOtF4b*@f}O@92rp@salKUjg?i*HAd=(jJ79!fqB$
zB1eXk3Gk*q8pdilvAa@*Edw=IKf$ZzEx4<1Z=#G8OAp$3@(q7w+}(i<u5C0n$V0SI
z#VPLf51JzFo*&t7Y?4n9QHyfk8Yzrtj=Z4?-j=)r%%1RU+^O`2S7gwirL@HyejRrz
zb<DYFi-$?`giA}so~uW7h&dOea3q9UK-kNIi*!EJr50oe&95L!=z;~=LOU!V*nz%S
zK(HGH7XUj>-yW7*<Z%TpvKqpl-n?3s_JpNJD~La>H}~H6dh-He(;OK-?Zk&z6i}QU
zo-Cn*^y)C)X)i_WW(!@5g3fW%DR>&CI$7&go4sm-7rp%$d+8)z=IiU_JzB2Hy<hmD
zj4A;WY?7NJ2<r5x^W0{ofl=C`ujo)tcNX}o1l@5O`T>;AP@K06mjZg{QiLacqy|gX
zSn44B700#;(#78l{2L0O;~Iml9$<ds4Lym_@P_6hGy+vl02D2#z+!SDtMo!mz;Jof
zq)Nh9I!nR>q3v6=ou(2*y`14#s!T;ex10pRdLslv1Z(D05eDoV_Efi&4i;c_D-03w
za@2z_v%t$y4?nS}Ed8A~^KHinF^*aNe2K-^F=-Rru=sig)@<3<m{V2ORF73ls%u?(
zciMjv`G~9ZON2i-Ja;T_@lW6_eoDr@V<C~w27z7u+{48L%%_F!>u$sYptqU3($}@x
z*SDRX)^Ff*A()k&aSxy93CP7hvjUpHFQC8Hkm!KadR`xPIw%1K%Tz$3L&U3wM>qxY
z0X2+#jL?;4Rk1n%h!+IVDfTUE$|tbzHEbPO<mvwXv2QF_bKSYsLvMgu@FS=NhpM=C
z58eW;;78C34gn2d$}WrsUW?JdhHOu=@_u!K%^F63F9Vw=MND}mka~A~ya$$n0hayX
zE(E6L`+|5yy8PgWk2|9GMn&9Wxq&a!?96b8i<ltZ$LHFEc$>`#2zbs!(Ox8P=xGi}
zXNyM&Vmv5h#;BulOr_C<3R~!;6MRCC6=sOd%_>!1Xxs1kn2rpxI-;}@@PJQXVyy5u
zFrFr+09HV$zts&zK8vdB5+Q$L<Jl^0v3b$PjwkS%h>!iw8ofJE<K!4wwI;B0D+S7?
zho`Qf7+ER*Mqf9Kkwxp4_IcvtV?l7sD7d$33m#*+{IvCTp;HYL`7LaLdYISF7N~~@
zU4&*;+(DpTWt2W-53i%H^cO6-Y^n+u{e^W2$&7DKWB(w<ShKzP%sjL=^_N=h`)5bp
zeQYCrX4`-Cy*d@(ZO&uj90n~WR59ke&5Fxa4^qi5lXbrpyXEt2ds{wXGY;2M#rE)4
zW=UuPl1>Rn_K2t+K1G?I;X6AlA1rHfPB}Hdhwnt(P{V_cxS@s)5v6MU94UCBpxpwY
zmbe40y?{orUV^gHNlHk;u>vwF$PTA@4Y#NIHir#j<doQxF3Oz1E`N-ZBE^a$j6&t4
zbqy#-uH*9|%Y@a#ER&dBn!)RcXO<c~bCkg|#~M6yg26K<89Z|u^UQf-P{=k#Jfp!m
zbw3&p;YYD^Pnf#(ge%kO&vIgU8^wxvo0mSZy^(;zaA|c}vr{Vn7NDJfsidHBgl?RV
zDIO*=Mp7^~6rDiJ@b6eIg#gMkrken@`*`?+5Vd)4GGwVZUi(fnwC{AGeIM&O(%qJy
zT1*uk5JzX6i|4msltPL=12k{MU@wG1UYoIhg30mFv7P^tq(p$Y@?VyMgVEm9e{D7P
zRf9kqSQ2ileZP^;XP7~(5ALGsI+Qyj{1k75QfO$nh?UbUV5<}{mg`}q-IG_5PKu)B
z<T&eYw!@(wKK$je4u72?&VBXtgqBkLXWpa~N%@i(Gav2x!Ch04ZP))m;^3fc5~r;B
ze18wAQg)*IFL>ce7|%huLV^+hrDe^RVwlMl{%myjgon^_$t-Km@SRrH42y=MLH=+O
zMT1C6!b!9-AKY{TPWzOZAPr%(EMh2%TSR_))Tuz<H|9c{hp>%05{!qza#W1>jez@+
z86G;fMfpyx(<k-GG)9C81}prToK+Phk0^r2MMqU=!^oc|f|koJ-76{AB#I^<I?VGc
zb;qGR0DUL8!J~4#zCs)r!y+<#XSzd62^bB2$sL-FQaQL*3O?tc02(Ry1bt}*`{XJ}
zOmP&15l0>#8S$tKt%!(w=h~bOzVayUhK|Ho?iM|?;H^>Tm8|nGA(jv4a3QhdjQ#ZH
zGeOmHi8vmt??Q1rm(j&a^rz2B5V-3qDDJN{5i_XC9jb5;#Vy6T;N8C@na6+<r1H;_
zOfYgdpRzs4Y%T-HPAY4LwcnJCeVi{TBZyEgkd%EV;>Bp_|5>^<T~gN3E#Me+C*Z~X
zlCp*_fSas4UcCSLad>fsq)a{qFD`}m6Hdmfb0tNi51lP3pV7tXl5*2&crim#{zw;>
z!xuC0;v7j?Oc!SWe}CsV+`q$#Z>evI=r^7~`T=i=?2eAp`N0;aBgie#2+VJS%XWY!
zwXCU!Z**Bxs&6c9=RD^U+c__z2Q0MEh#0&UJ#4`$Se}M?1}vu4bPhx`x5_LRx9>%F
z`q{0-p#YWFI4ydEzt*02O@+Bps#e%seXN}QKt9Hgfgnlp;^DV<&%{MAO2j8MZ}&|`
zJpM-K6K31V+M;MP(8osB({71bLysD32u3>-$Bl&Nr;C;Tg}4die|nDoR+|;qHd}<R
zNlHbV*#5!F4EnuoHvPa_I<sv{$M?`-md!m88)$b_Fle76pBc5#ub~<cnoAC>G!A~b
z?7$Q-7C<!scpi(4_oUzpwE6B@AqAhruL_viP~x;u0@xq`5=vf3h(gJjL&gr-T^8br
z&MF>nHFvoq+8JUFTbnKNn9ACcW%>4u^=LZU^Jvz!8k@t{qhI%hRznPyps=gF#}&S6
z6mIuaT!xR!i8AOIuV+97TE{@c=)l1$CV)EO;SjdtR+!gOdpa<;!9wBkG2}sLb}h*d
zbGg7}qX4UjYG(;QFLN{fRWfVEUu@>)f?K$~Yy8zjbNsx@vG9fz9#Fx@5kBR~fUH``
zy4XA+#M6vGF4oAz{xK<K^D;l;>vX*4&QLWo#)aD1JTW#@(B_GOu#U#I7wc$^d@bu+
z588;gZ;(0tp+@5L{Tiv{xwgHI*mm&7X1d*{5jDDnV@ZcwO2`VYAm>G2CY<2uPV;yi
zwEy`atwXWvAJJAR;^;=BxkQ-52TyG#QA`WN*UMZN)>08d1K<84k-wI-l4Z(;G-iV|
z;;<{QE|Bc7FzaduqtUps5Np6W8o^TVVoKXGn|0iUtm7_a9d`xkxb<R1q1Ru({TPx1
zg3$GIV^<bd@QYemc`fa%tjrcuhT@k~5*Qo}RSb?Z0q7;6fAG{_7l5G68gcH-28oi;
z>!jR*>WEB;AQ3LcOZMILB<&8PB0ugz{u|*punv3(UfAKekJ3QQVTzu~hATmYaCLBa
z!qm&~%$hemIn5%N@DSWoo^ldKritC=DaVvG--r>)V2$^o9ksVb#Kl#%5YMoaC&T%H
zI*QMjZH0JtbcB`yOU=cz>p>>|>+on^AM^HC;`SAhh#BLnmBK<R&S^kLi{MU%4~DYJ
z<pf2+0_~h2CSN+Jofahf`w5EIF!o)#B-`WizIRx0d7emTp(obV+K-@HXl<R$K1{IP
zf7(=kMx5fy^{Nf%ADP17QiesTf4aBr$R?y?$!)o2O(eps>ztj;y0*0t>$+|q+y<gR
zBzOlfaY)KHP7#%k6v1|gRQ?Z#P-vfah`{uIPF7;3p%OzzZa7K%)nOeuy{({x&Y<6A
z967!HfWv;|6cE|TsneaUQ6s;T%WVYH57EdM{l>vG{)eLj@uyJ+n#-0ogEp2#eKhQQ
zQBr0juPeKJnEwQK*-WR~e=PiQ4fc0~KMA<}Ncbe3+v(`f`IQMXnnI842<^qKhN^){
zQ}yejY^+wN85xchK2WK*D}(Pw**Jkccp#Kj8w?enwar002w(yTuH%2JpwfvT`_oKu
zX2NM%U<+X)h4r0H^QnEngh#Yl1H`Gy1`9JdoTLO?)~FX8^{6j!b~Ng@@8?k;u#Z~(
z{7p+B97CH7Z(0JOwT(9!Hqa)+O1XNwi&EAS5x+)Dg*@iBWR^k?m=kRjrfVAORWmca
zoVV$Y%rx!N_bEllbwV<f<$?8dD*1Smrta+wWYxbNAsxh%kAC7I8_!%egP9|qe5~7G
zW>nC(G}DYN5a40ZC=e`Z2Lw+UAh<~|l`I6oB+=U)=&j;B76g<iP(&CMK8r|KyX*`I
zv98?Y5`1D51L>Dem(Q+Wj}%D2>1FM*2dpz7S~mWOhusfNHrUOWPFn@ldQIyQ^2S@5
z(OcDpw-Mk|>ZT<w)7N}fBi%?az0JMh2FR0~DwHT<C(F@j*&hb2FJr<NGO@BJiq<AR
zm_dnBVXTIFK&2O`;&~BLB*n;~0~2H7v{&C@&E=!k7)1{Ee@g@qLrdA$x{x+$d3kaK
z$@8S631u61ioJkrR@Yw5WbUg7we4-83bPsvx8HZP%jry7NQ<L|V2SH!Il%l5Il!Cu
zA}0NR)7uUr0e5A48SFmC(e*LS8})tPX)xHj*G+=C@?K^%kD#e_y4@d;Bc9yTYHH+l
zt8DAf_Yd3J^F0x>?&?%p6h`iVNjYmh>Sh|K(Sd>UX=YqxnS=e6Y1#{$810zt!Gd_E
z-S6SbhtCI`7}>|Nc`CZtK{Vgx<g+Si!nHn#T<elDlEvGQJ)NyjA3W7Zx5O}->tY#=
zryWMqzs&}`{Zkou?gjwsrq-Bch0}^!RzJ7IFRL$F1mk*zd>Cg+$~g(buU6+0YRGn%
zP(vK%`M5u@BCCAK)4g8rY`QPh9jWY|cEB*wm$gL&VZSVLG00*y(i)9kl4O;yr2Rrf
z^Ah^zDvE%mU0$(d6KzZONY|-Xm<V3=DPnK>^({6m{CNsv;dP96S!sG58m#>v%FfKr
zx6f%_lU(5uqi~C%VnwtwE?_NwAhtYb^y2TqdLm%Qmq7@*ko7|U)uf+!tPfAUEY^+2
z%h&GuG1w-t2x5}X^<w>^-hU3P%oxu>aLwMsSep-t<=idJG-dU_P+T{jkeEQ;sH($w
zqHLz3OGgivy6#Pjsz>q-i>e1j;#bLq5t~nGosY+K62@l#v(3;B)2;n&{c{rEshrb+
z;5?Ns0K{bu_9O?jHUo#~G1Uk2E546#!(bIP-M~%J|BM+QaDBW*xl@mVkGiAzXm8}B
zkMn>jInP!*^V~mKtpDFE=DE(!Jm0i4&lh5u=RBUy^|UP{e3WBbg^v=!s$XmB(wE@R
zo6Vmoc#daiE62Id@ux|Za#En0{AuO05^*xP@shzu%ft5`gaN>lyU1(YgO8q*ANik#
zANf)j9}DmricbCxjJsr}o4rF|C2xno$_q~6-+$F9oajC2(WR2oXNO>9-RWY6q$JR%
zR#MFO!JqNwS(37cF2({^{F$wurAt^E+_D2z71Ki@t3Tk=6F%UlgLXvXR>hKC01RZV
z*s%U}Zg|QL^nyHtC@*0K#o9`{t`H}+q7{IVOrG#P&JvZKN9t1H2|?xN2L~%R>Q-ie
zOeJ>qCOKk#NXWF-3+A?2Ff(R$>`TJ?^@8akvy+0gbugcQ>=tJ^R{sRQwzL^1d%j?X
zm4KUwdw=3hL_F%NZ~sZ04LS`zfuXYc`k$Cw=19RO@%ME8T?W5H^cC49Xr^L1J|7Lw
z)vs+KPCX-Z!{+FX#7nSU=FmQD<?|@UN8fI>`>BFUVRFTxr3mlhV1xgT=si3+d`gd<
z)>dB4U^)iDTY9{Yr(a~uFnAq&x$gPpJ;XXZc?%oNJ$@vE`7ZdgyqkFDfM<2vh3I>S
zD@3gnmNqIUM)#<mc#N!$sGZa-WkTBcBNNubfAa4SfBYQ?E75s4!a4@|B*rN$?=EJx
z>1)7Q5=*uVfMK+V<2#6d^cx~7fP#EkV*O7!4L6Zaq;;=5#JaC`(7GpvvOHOQdEm;H
z2t`}tu_Gz?`XS@Q5pG8qpUpHrdlG*3IQXpZO#0;Q&<H;{4b8nI@yWf_@X1kaeBuUp
z-XX-w@>KD(8&2iYwixoOYl|U2j0cD%zcu_#AirWBoWTbx`s1P2tccO&*;f27rS@Om
zOLYF)x6lsH9xp#u+<6M`EGFs|Sv;lSBMy_RwhPfnih$_XDGbp{+Cq7q5|fr}_J(iW
zjGrm!ii_YGUIbgDAhwQM2zUI{`9e5%oAv48{OJu+@Mri`&IagY-b%N+5PJ}0>cuky
zf-Xx!l*W~WU<rG9OTt5eC}{|WpM~ueYqQ0o#%SIqXtSro&gLEwI^ElX&CL^R?h#^h
zUg2n$f=$4o^(rkADdvP+m_0uD#$mub!zsXgs*}NdbrXKz9}Li+{QcvAxp#Z#!2EtI
zNfcraDM!v8UV4k!!N0aLdzkhz|9)X>EPKeQa`OZQi-_R|Fzb0$CVH4TxK-jFf=4WK
zT8tueSP6s<di~xegDL-^F`6l#h6m|CX^XLaj)}E>T3g%kGqoE0_uGTGWf!|%Z;2Hb
zL)#G-=nOCBWmSv|Vzzx3>ewpa5*IczL|=S~Av*L2(>w(7eVrlu54JpLd&90R*lVMZ
zCl76mIS#ftI2`fS%tZ*#@`^-Ly9Yj(FDX?H4vfmio%{CRBKHvnsNQ0@kE&kbQGSe~
zKIF?RaF<<vy8k5fy@L9Piu}5XEfIIwjO57al5#$s#NuOvcz8G~X9I-^c-3FoQnt<w
zrbL|^)TU7Y1)cB$RTOpo<U4t*K-OCBpe=%_-$f#HvO(K&yBWM$ASnwI@F1?kbfm1{
zJt5YLh1d!gSo=SNjr|`vJSbvrE?ZkcJ!o&a+5?sZmev3r+9jM#CHx7G%3ZKxZ71Km
zU1Huq!!Y%=roGcXxCLPdfYXvhnBTD`#(Q}=uwAx<FZ#w|PXr0pu-y{A<J+Tf%oXT=
z1q#=m0rb)N5G^>t4pp}cp?W%<QCNfZ?9e<e%XRoA5nN})E8ByJj(0{oH+;8=Siu|f
zd-z79LxYYgZuecTRQawf=D?2P;09k}em~y;n8DD^oz3sb??vD+8u9-1rU5^7b(C98
zKAc~zx4;SSeX?UsX3yI5hq2fdvF8)LjXF>8{G@Ft=zleA^z+CDbm%wOchjC8&z|9p
zsFO}^GXoLgBSt21CLGg%0}`7iQ&t#uI;!=|r0iaqnXNHinLAtKnbiNZMzJ>EVjElY
zJss1!F6>snSYkUaR*U<yaLaaD?6Y=UKkwkiR7AhH#bzr%dn;R%Gtg0Y<Dp0-npvzB
z?BX!I!n=xj(jW0F_qUp^U)*I|#Ju9l%{GW%@+q+0_x2-Wu3&-#@DBl_mP43kybF(?
z+HXjd?|+S!D4*dG{$mdsvSB&?OgQ*&3Du#m^1#P#Hgzu%_GJXroOCd5ub=%O0~Xp8
z656B=6>CV2>-oA~7WNlhH=4WtqK#&2Q*UcSM5|m%K^p#A;GCR}eKu#ntjBZHeGgjM
zG*@((P4mP*A+H`@i<yU(Fx26T(8qeuc@-36iC=&>JqZ>3@f2*zu^@7anXpKe)9{*O
zLF9D2<~1s3;59EzISa3A`8pe~8QO9#UNf}i0=(u}5E)n$K%Wo=i;Hq_GMYq8af-)?
zDNfUt2zmFxrbwiw7&|mjWD~;%wx%CAjK69FuXSbZ_msGn{Z(xufvXvh7*!ksv)9YP
z21&t6egzF{oU(dQWdFLwX=MNUlhdeFHq9ARw^9o3c3@di7gsh5Y<F_~)ljI#!Kyy)
zpoV&(N{zYBLV;{HU}>9O4srTZK7B%$p)^@NP7alVLNFqQN*$;p086C+x)JGAnL`}`
z*umpjBLFj{*)k<QD9wexfRR#=5+eW`1+t96$bkTogEMfstA;wp|9m5iqbO;kMO{+8
zBx0}M#znD;xGI*UVCm_)Z({1Tnsw5<MmQ0Oqb7h;#!uHh&2?_KQU-r*@pw*g0@qRy
zo9kuv`gUuQ0RS_dZ(glG+Q#+d%o<xoSUK$>5hog5mvai&&^&E3g0FvM1OB;eTqPJI
zzX1EwE*VEPD;)f|mLDrM@L0#k>El`=w)2Xdk71L0xJPZJLhA>(0BY!&mq-!&2SUu7
z_oKgi-A!|_rXXDVM#`a!@Cc>%7TR^u=p6Pl4u=Sb5BGTTYb4`ha#DNLk`#|RoWkEh
z#tx_OcM!D0v$+7Iy}llN^QD_8Ttik@X@9#3^@J^0DtHX0L>uJ^&0j`5YCh7e?`}Cf
zFwLU|m(fB$k#Vd3DJAy1R(?i!5MPUd@P(r#m9Oz;u5nX;GnD{Li7FG|2~*FW@V{sr
z;SUf<n*S!+MtnyMPrubVUj({DkIh^TppBxo&De88<c#HG2jQfjzQ!Av|6Lu%Okxt;
z{etdd8vB@Jva^h96*q<A)O9O`<ncG!wJp`fuat_Cl6bzs9V$1L<`ZP?F30sqH65q|
zboh?Uf}Aa8`c$}}vl6-bo5(EyexA_ajFQl8DLHFPLU*MR_K@oh&hn}|sER$YzQNhd
z`7lHg``Yg?_A>|2S;X_qvr)rv(>=qhPQdd6#O4B2z{8od!Cg~stY+v3>-m6D6{sq8
zs|#9)*r>gB;W*}pDDv&|K?u4-UBacU0o=8~au$Kc1Sxnadi2qcfW_Y2fd^86ncabx
zp~2k)nv()NuXh?{JwF^{RePGxty0tkY^xR~>as20gs4r4bt-XI+7n~BKILO$+2$x<
z08o9(nPWvh&c_`c<l{suXw=QD)nT|r&X&42iGBk!GRG30#`=mWE)I*V_>EJC!&7W1
zi9trwAw~vOW(cfKlLPlV9RB6_#dL=+MI47o$KM&87ei9$(2W?ks7t{Wr}9L>DJQ?q
z221eV2-W_@4J_@68|i3Ay50xRYZ&K&w&)tEr&og&F)|Cd){|eN>>G@^I+%q_0Tyyq
z29>+SLnH4PiOZ3-=HhbwbquY+R2rB5uU7L=31yzJeLCYXpT0rt(3xlQNM!T1w&ey6
zDu`ZU=IYZEVOCn@VH$01GtWcCpBK+93ay}26Y+6v#@Rwj0eL&c<}D_{iPc=uhlN>b
zF~>`&*g*vDlFBDLk-$M#{f`UFilf?#<Tp-W{X)WIpbY;E2%w0Ul%1SXI?>(mp_A&p
z&c(+y#LKD5WKCce+(;ta&QCNng{Kk?P2sM@!&JELjwO6p&faBJ0}hn{&7yQD2HbFg
zG!IOfgBbBJIbGlpRu82o;M~u^K!xq%MWHe*bCkz`oEsrWLb=pDM{fYkHvoVXXiWBd
z4MhQnztqwcSfVq3<#zyT-`_yu?j6b+liN-`AA&U2rN^?18FHAI`BrbppWzMN3B)%f
z#T&XmTl=|*%<g5O#l&_2d(Sze26quG!X(}tGQkq=|Jr&|sIzMl5@}qMfgN87t8Qo(
zr&YzU$4jplVUJA0c{RQZ={)7MdhN99TLfW;rZs9ktzXzWpkb9#I`riKLfbzY43*=o
zeMJCkcWo=JFj#cmrQkzo5FN1S7)XVw;&|dxJ4OBTeWo7ywW&wG7pq4eNu}seafVye
zIrLEd<4|#yha3X{526IP$n}t13l$S>jDicM4@1=yh|bwyq1lojvPzBAxh<?GnCK<y
zvh)OP^YzSsOVFyWF!GW{FQG!GZ3%@+a=kDn;Ky<&%PD~Xw$ot%Y^}op7#`7&0+|0U
z0F(cE0FM7!;?Kr%DZy;#B`Qek5_LwVT*6C2ga~DnsFdl!mpRsL1tQ|HN6s68Oc~Dy
z0=Vm5F3#B?7U;;fx&;<~>Vna#=tXU2v0ttWs~?Z&lGY?<f^sw?)A{CYR4KU_v<FkK
zy|GO{GZND%#VR8#zMM)ynRBNRB;O+FhTofnqP@!~;`Db4pzCwnV&8q>P|WAAI~1W<
zVRH;q+w{^y9d+>HNb2Btql3N8W;%d{E#@T(&bWF3fn5`reZz|Bhguu5>OZ=ob&y_k
z)Tm3K@mOHMlp1y<2&b#F1C6~<Nk}I_rBa>8VVLM_d;)To-jZ@BIX!)u;$S|Ndo-m3
zo%rQ?7QiBr!va;{6Drn#k$k}oK8e?Bpz#<OMi;#3BPp+uj7XJ~zoy_tcj&Pzz0nT^
zN?tPF>>?>$Qt={1QZB}H-+}y0hrgFl3&Q;``wZ#+JZQ^~(`SbX4QZvMxVn<t6jV6`
zC#RXFlGvDQBvjDiQ6I$zZnYd2f)u={o3RLv?`AB5L#eTKvZY|(E@ZbtyEL524p7-5
zA`4l1O+qpOWhj<gCIG1uvuX<aF{ldZ^lDm7VK$o#oQoRMRLe%1>Qa%sx^NU9n^p_Q
ziUYw|UJNV56>?d(I*+BF!BP-F&)IFB|K?h9e;>hS#b5DnC_hu1Ll=bQ&$Yma=z^NU
z9zuO@!YJl9@8VYN7Qt@=52QOwLO14?ghm#4LQ_F`UY#tEA}Ob(AP^EWrAkLYJKdkc
z*9A_XiC`7h%*)vwg$v+RjD`hxk9d-ai^LQI7g`qs7g#0W=sCEF6t6lOwELl>K!A-k
zQ4xoOC_sb0h7Vw63{EQoM5+_}VSaH?xYI%Mb!H=23|?3U!cMS*+Tie*e{XO~N%-ng
zQkOBUPH1qhIR87C9no+h8y(rYflEVQC{Z6x7lu`~ws-`aAwRa_W|qYQzN9_TF1V_L
z*U&+-!7$0Ytj<YSCnK=bP}*ffX&?0;534r~%a>*w5^WgftkpgC^V01P>p$!J@!<@T
z8)CTPRg{A4ie8dZA{KFqjk%FL7iaWk^NfBeslFS5_{#1_{_{uz)pUG`jM&!@uO)fA
z{Kx6N6NH@__%IFbNJ;|b?#>6|+M`trC9Up950zcJ{Tg1M9(A=g2CuOjuTzu5)11_~
zR&%vrZPg&?={s1f5v|-B?IiftkZ^vMH`FgvWCDPZWBmf>P+sn%IB&kXcTFPJD(s%A
zRa}b>kG<Lh*J6vr%$(iGtjlsyMijtm#bpb8_!^ALE2Lb#jw4>al}X0(eIm(NzB7~J
z9C^Pugd>kK6`><<J!3zkCLu|1OeVv^0;a-3nF*n=l<A-liBd)`Db{L=ek&%nCXN);
zF!ih<D$cLLk#VA1%vb`Z88W1iS@>lz$8t%;dDI&U@Oc^<XTny)ZLTS$Y^mKK%i&W#
zT<xGF0=TnfJ6&-@ivCbDDJEvv_dU&|*-#jR#jNx$5kr3=<;4j<0jR)LVY*WbN<vs!
zbt_OZLNnD+*rXt8TMX8hOsnUSBd~gY5=zx=CSR;cphy}dXyA!JE|Y;;t~?UHs7_3;
zDLh%oFBV1mdrdscCOXJx@L+vgW7MQSYP9O&CB3tn(sCH!<-88*ad{n5L|%ty7~&}+
zf7qZ5Bj0S6NF)XpbaIpVee~zya$zz!mAM`eH0dPzZ3oRdfNZLN+Gvu@08GfX+szG2
znmWPDF&17fF!559VBjSy;qZ9bBJgtKe+@6LD7>6W$>X|b8vc&mNU-`32RoTnFKbqB
zx{O)PbD7?F*I{L_N!He!FddtYIS2@>fCqiw!C2+_43l<9r3dm!hC6E#fLNxZF1@F-
zQKy)rR=#VozqPKVlefBAbJa|X@nh3s+<rKVv3rc)-agyEvvmFMiuH|Gu?$0cwac*g
zMUudj4h5Dzq$w8QlaN)Jwh5Xh!<y}&%WpQ{*u!t^+izN3dzf*3z2AJJpz<~yb5cil
zax+;#yDbaot~RRVVRiFiOYA#qTJW8ptaol}(_e~fHHGZEDytPx%&1oTmkZjl0MBT%
zw@8gM;kr|Li!LZf^^5kIeg-hK-0DW&r66}%3W~<RIk3d`Gl(^e1ylS^+__+HN+__1
zE%V38GJlxsmjN>7;(bqOI4oSyafV|uvlRH7&Bw&a8GuGG`wZIi7zkH^8Zg{L%e|yX
zoJxwk*nn6i>VGff!ENwu^76M!K>yn04uM70O;U2{;ZMG+1C3zso$WH~z{L0!ygd3u
z+F#lOBw#obBvxrfr#Tz+n}5aqq(Gx2DGxYIFnB_8hBw^jzzV!GsS!S<d8w55w0cjd
zAln2AZm~@UcHcj=9FwN;QG=nmzyV>oOqXL_Ph_m4ex<#4B^xW4lnU9){lY&Yz~}+6
zwdZ5=T0p#)zo0B_!(*lfs3hedL=X-FP!bue-K5}m<f~;Ese6SYBnKAbEYb@aRyzfN
zh`Fc%)`<?9Eaoed#k}=zIHdq$88yYk@?^Cbcu4^Oqqu+pSq%D70Wg_j(2oiLXvLr(
z;l^a~zvqo2#Il_-#<m}TQ)KrMZPcrK1sA=_oZ_wK6g`KZVgpZcYU~ud9?cYMibe8>
zVshBl6jM2<nqnami^uBCZI=Eq_i^^WEMou59Q41OJ&3H6V+GObUbF6qaJ~G^$R``k
zGX|L7jdn?$VBTL-jJ@2CEC&;9&*{MbQ%wCoX83;|MoDJ9`CJ^cdV#1tdg~TFgL8mU
zwUR$XIEPZShYN-Autrk$I7o$GLxe9d_lv{8T)o4<T$>|KVSkbpcK=Lt0^Tk1(&82j
znhwJEQBx=oQOH?5P*DN>T<nrw378uSSi2Hvjcjq#QBqTwMHpjeiQyw58eAp(!RRA=
z7}j;vqL36!(^vN+?uSS3ljBjBx-aoQ@39)&s;evskV5%Aqw&^e;w>87^_Jh+zH?H5
zq5$(fu?G(2@ySlhtsWx?esx6&0+|JYEChl49|?kg5dr&8nnRMH0M{<dfzVPKS%dEz
zIm9s!AQ8R|xyT=f(Gr2iu99-OZMdO(GSFQwhh^f_-cUik92y8?3-RM2S#r2fk9V-&
z>A<irJNF%fVatMHdkOE;fniUE8D7Z@dmP7$;b2n+Sy5uZu{YZDXG2%Ha$sdC$s0P4
zHn5%(qlE@G#)HJZX)@Q+mUul$N<DLHo;Uo)<3}N$@?58IN<Qq2mwE@CrquJQJ8V*~
zE7KAIm;$l&iNDzW@m_VO-Op$U2K34U0I`K36CN@d=6I7~4spi292Ywbm*Za?<Z|@S
z08r501O@%@-o!v-Z(^XaH!;xIn;2;9O$?NCHng`paad`<7RB@ErkR7b-V9s(ip}O5
zi~FlKqYsZk&1s+CRu&MyyVl^hKeyQHA7!wB=}KaH2T=l_L^UdO6lIF7<YVxhKsUSp
zNbu`}EwLKx^KG#j?5wDL15{$~XzR#9pTq<HyTPEh8uiZp1AgF4`2G073j>duAEep%
z!Jwn%2NzYE{9sV!(ei^v_wUUQ7Pvd(2jS9s49zHC<P_6i*bYlbblF*g$fGN`LXSAE
zFnouZXZ|Sp!owzC__N6uu5E`eyk+u*zdFQLL>a@2cth&{DsOn)%(sgCVOsnAVN?u%
zxV&TjupmF0KYZ05f9P>|{;&s6cOPnr=MOvM_`_3i{Glw4KitwGfB1PoG=JD&@`pJ4
zG0U(YEhd2{<2$e(um2sb$Fj?9)?=1wJ(9j<@`-rsv4^B!&1tkAuOYUPMP*`*^%}iw
zhMD%GSS!czTFGLAQdo~`!G1jBN7H_+aKze=-QGM>`*GEhBeEY;g#Czcn06WSpL>M~
zInAEm_{i<Z9R7^*&lo%MZ#Fx!l{jn<=5<GHN3Jk=!{1EaFx~lY+mXm4fMouCOY%tU
z$gC(ka?Vk}bK3xh=a|-Lrj1DmLurBLo|1xf2?E<&19-ss&333S(HTR1ST>l#>P`H%
z%YTl`jkX8xi?s(oY2O~4+<`rKO?&p>g=nu~kTJ8fKD0RZ(7NcI$w9}M6`xRo%<S~v
z@K||^QAf2sHgv-!46+dsle+YoEgdnfY|%Q))_NUBa7Wb_u@_I9K!My3bw^w@c+`WE
zGQYbO%gq*LmBS#@bq<3}F)w?JMfsqEEy`Qaq8#ZCJxxK}Tm1dpp=4l7XSqY<stq(A
z?>iyTc-+(zK+ib;HRyO;;zP1?Wn??T;XNml*#vcSyYY)?H$ES0H~Jo{+iB$IkG31{
zHta?tPWm=Vh+x}qkMdJzMB29(@sO%Jw18MBaQp6bQncKpU@so7%k2s9Nw7ANDWtSr
zN3hsO#;y6!av5c*lr7!*B04x=O^Bs1HNlL1@C+#DrO?=omx9=|tD%EJX#b+n_;3Q%
z$!xPgsL%Z#iGr0c;l(a6lrK~v8asDhLpO%{RjM5?Mm^6N4Too8Od+<yE&^@e(8JE@
zD)g{ZyT;EWId&e%#q9AAtbj31m*yf=Y4{kX5-P2yV_k4@*x~aiDS~#CSSMdOqKE%u
zDh}TmwPcJsxt&p;of<Q0JPD5UONt~9*^lBU^dh@$e}eBMM|XD|^1bZvh_*m;qEyj~
z^X2n;9?}xJ)(UD_K+?j9KP=4v#1aVF<tm@-jzrW|bfU=}dd-Lqd^ah&?<epORBo~y
znvmfQjm`3gCS-$dlFS*pC}&v~p6|=3Day>p$<&==^l!u>qrg@dpdipvF6M}2$HkZ?
zrJUpI%W(_czuw(Y;}m-|;$W3vDtC1;n949SEF|~vVIjQFX4_^X1=3y91vLa>9v=0s
zTr2a=;8GEsHh7dMYBYE({LOc(gH!Z*7=UF(u1`;l29lpjKhfB6aghS~uEC$;7T7%-
zLE+p`_hT_b9gk2eZ*zffVV6nDnefHHrA|<|k_=01NETUN;XbaH%xzSUIwHlRPRa17
zS8+sfU2|tW=kDg7J8qG@(->Phj}2ybenRwYE1FF)e6NdBS{@2Cb(55du6X*Nog72|
zc<!8|=0eL2HF$JP4`($qn^f*epv8%R#dH4pIkc-=$r`GptfCGp`91i(y9pj!bR<R5
z(O@$^p`RI_FfcYg;Rv=i<<M1tjS*QafI@?^fu`8#x;ocNUw<_oRv(2#q>pUs3@01+
z;o^VV+)$eDjHZMWnvfEJQBI)T1O#22BTTHbz_u67VCm&%*ub-ivDT!0x@c44_NEn$
z3AUw}G1H%z@j#q0yP&4RjIS0m#^d={^Neq8>}<v>_ZT$xD9?JWq)d(x5V(s?6p+(w
zE-mDo`dOG?bA$c{Y0;CozLXr23%JTxXqvgT8fbRO>cyGHkqwL4OO>Gc&cJX3dyp2h
zO3_nK(#SBB?nRB5<h+9s%Ii8fhYg0&7?AsbxOt(tnUDE>{=_%O&(Tg2x2s$Dylkmx
zo<R5KNWmZRK>np>`?_pye;(JB&@)8)FSA8^9Vmec!gKrgMEl8yxP5&Cw|~xP-yfrR
zzHKntheZ3iVmwu%{bZy444l*}4R~<>C=`>6`LoL14bh6pO%1G=911i8Yq+GvBwmv>
zY<0!323q2`92A&EI|2AFktbjoC~#6eRTo2Z&^9caJdYFNzRYZWZZuPHGE-R2OyOiR
z-r-_1-XYy}*k#gnJl-IMu#+|7>|~9E2Bzd}aMQ8&sEERL;|Ze=9O=miM4d)kw2&d{
z*&iaC{*Y1@_CNegbo^=DW_=|F=-@5TY;ivNla1*708=si04l)`#Xeuv9QFK_=GZU3
z8ogriWJ19^93i`N-wQlW?J6Em{(kFY=w}&nDAqgUJ!JI1hx^Z=Sn3}4KZ~F4-<AGc
z)^j%KQkZjEd*NI<k$3|?{^jrVc;fx=_@DT=93FeZ3y=Uk;YuRM@N%+=PCgguSY746
z!iW%hW?%H+HnzqN4$}ul4eq^GlgueJsr|0r=*wOC<{NDfv~<)qNNs)Njh0IebkuS*
zx6C(MuHWBL%N)@^CyO%LZ{BB~V*<=PizmsUjsDl)gxwihSOt&JVVuk*9j4q8Xzb!U
z2UTBq?w=xuX5$%WFqHa!AwSrJXSJl+=<nLMiuOt3p3dA6xNky=zg7-$*~)~9T>di_
z{?r|7#E&QWPl6Wo=rU9-r3F<|WtHKt%Bd3m?S(kgoT}gk|Lk@@2!AHUf5QPoNCia(
z0I_dXl>Ix*qqcx)OAb8sOYQx0u&TD^Q8hVlwf}tm??R6cU$effx$BgivL;Mr-h`=_
z@NH7>OPn8h^QwHq+)`zVTV3l8Y}@J%=x)q?KD9<!%Z={+M*Z0RhAXhWwye3z_bL8J
z2yCw}Yp(UJ2yAOC&RJX5RPUDNReP$px%i9z*T&Crt50PX;C%YRm|o39rZIYqM^!R$
z%ItQzew7?f8vhI~fj;3yXkw4XdZy?lMlv2l=QVPwxZNX*sNDyhwu|!*G?@N@bQG#7
z05I*bvs)r1;ml-;PAbXU0eTwo#K$S6Q0OH*z+TdKzc;VWmuEX~7@CgBLbPG<wl}X<
zR##6xR#sP1oz94MOePWcrF<&5&i{odvbAIsiJ?V=;J}CJadFnxdEC$djPXqIIQMw^
z?vmB_u;i$=<17q_eQOj+3o1Ukj0MDVv0sFb0blv!(<rDYUJsA>!}F*!yHWJx4QC!l
z)FY~}s)vGAeqhgoWsrJFa^A=SsXRzl9OhjgDz9;51Om8i<n-qK?7vLM`f=9xq{?E4
zQZ)^9oI+U+tafq<+bd<MvLrGqMZD<2fa7Orw%7`bco!B-{Sa-gUFVR`ciHGMgvmMT
zN~SnTc??(lN+vn3>qS-T{EJ0biN*k>%Hb`TF1}E<-D!=x(-wCpGAqqCz~GIvA3zlo
z@xPitrnn;5)0WlvIihpd;XX`(w8USieZtWXO~-tq+NWo;9>Z}yg|dDtImF`X?V4CM
zg2LANj$s7j+w(D3PTtRwaw}QlMU1zw{0uC4iKI8xNjq68?@rg>mNoa0%26rFzl=+J
z<!4F?#$)8qloU;1rj@E8AwA@5z&eRfV=v)5`Z(R{8eJtu1XMK8iE$TeTxZE4Sda{F
zxJxu3l@BLvi`x{bjn!IWpfUA?wSjF-;UecHSX-c-m%34){0<3UbeFY3dwd<<85s8F
zTrw-wq}ScPKNm@reg}R9sk2zBY%@PoF_ur|Y7@?47^4##Tk3<YbANJZvdo1at}K{x
zEl~RS!%}*15r)UKLr3;Q`35Jz{<Tc*{}iXOp6-3ZSO>m8TWesBxd#67-&_NFfo*^6
zi0QlAe@x$NiKH#IGv)YrmZJ{>)kUj0lbA%$xMT$Q)w;C^!{@1q?|Z^uZ7U;oHsAb+
zZZ5z?JO)(HFrdm;T<_uv^p8-vZp?PWPOyG>MJ2t@pm+n!7x6VNxngxS?xcNcE;>+i
zF}&%#j20~G=neal9IynbJS!T^7+>ejJK)dPF=66(i+>JxC>y4YGANW&uM4V5HK}Tk
zv7b;Vz%^9x&sWc2{uu`v<J{_cQU86h_(ApG(GSkE_CNKzu+u$Ku$1DNLPY&V>T`k>
zQQQ`2aCE!<WE5pbMTg(C{ik%e(7wN)Q-zMN`BhYG!uYO$c)J9e)yA}T=IOkMCksZ6
zUVGrPMkq!)=LHGfk(n)0kz<NsOh5iH{smocrGwLuzvAFD<o6Ia@@D4N&<+&=B~Rzd
zpmIQWiu~@CFrbg+uqT2gUaJbq+RA)&@HwjgC+B@7DZfR@YdP?XQ>si=KMK@V<(K*D
z%bHR-e*q=)UE>hRd{J*JYuZl8k(98*^52r~vC4!OC*K-o?mI}80c=;CQ$?P9+74e+
z1jr6lWzR~?)ZTC5{HkZ*#>SiD=O6^I+DiUPu#3D4u(y{90RF2e@tAB>xx_p)`7ir(
zDR`d~i%+6#$JbIF6Nxe%-(cmP2=~8iJ~Cf~oy$I=ty(URVSW`&1{Ch-`M{Tz=#=H?
z3D?gcdWP@52;Z$+BH)4Z_dlmU*2a0r7+}Fo_yQ{LbB5>aHbgRKU<=L8WRBpWM2;+{
zk(BaQOW{XjbR?;KqXW|hVa8BQz@hx?5J&8vb8y-Y1+zE?Xfx7TLnO&moVWUcGwQCz
z@tPDHqQ`+MXWnX+E@xgC#ZNXOY_30*Smq=m;g#d(_$w_f;^v4U*PNzYa~g7uW<F+>
zeSNKQ^oahMs$Xm5g~7h+Phr>3$&`3Q1Vq}`zx5sc1hGHfX}%uT<o`i=-YH*?$IRDr
zg~-?Q)XBDdJroxn?s42)PSu0@Gp6c^NuFb#<4HTw%*&H>qM4UxIOgRk^@QeA&94FT
zQA_gOF7onlR;-Tm^2|Asd^{6Q;)AnePij9O4<$7V|BLz$e}F*Hem=p>$Ah=^I}NxG
zl|xHqR{P~(gRd0qXEZOgpY~Bg22j%2>VRip6HsmW91^f|4~Rtr>t(dHUU=-*Z#h6k
z+#J3guu?YtMXWoLrCL=Z)fDdz<6mXz8(hDhyXCI3s4L%Q_`<@!M6KMJjrKthJ&>8V
zLY!hgBq`|W3RRE^8t#AHU&LlsunKI+tKb({koELI?Lr>SF|62I<DrZc9(9*D;kjIr
z**^o*`O0C_o1^WW4$O%T?46bq2{8`~J#X3nZ|_9eJ99>lF`NWOe6w5KKV1C^=(eJk
zaV!t0z+7>@>p=rgl+_U44ux>3s44t6xOUoU!QJ#BfA@qCG8B~_SaF9a=YR4ghe%qf
z0f*B*ZL(VyQU<*6QtCCl0*`}gj~-{nVc>23zDRT&M%~j^KARRRA40Oa5L48tv%8Zn
zM2Rem)Y-j}9i!U{D~(9yZxBoG;=34KSHUyMQgdi0ajK|bFA8dM#2t|r{8HOTLe00;
ztM1f}=j$)sp|>+J<RsVt?{~+P3*O8bn3gUXegvkU405EU8}4uz)zuVE2iSMLd>MJd
zx&|)oA}MRTA%9ddF*9a2gFbX$gyW-<{L{55EK!vkD9+&hOq^LT;_K@nr!NQ?PabGL
zQu#>stvfMG4T>apK*?l+G?GplCwb@5Pq)gw;+$i-q<MZ5y{v{)h<rl&*KMZ#hWkb<
zkl{H(gR<GgbBBBYg(@yPTU7l<0)VHun)Z9nrpJ$DP9q|cl;e;r&>{$K@SR^2y0Ra%
z@@Il1_MHaY<&Pmu%cEqLI*sC~Z)eI*_P^oCA0a2uPHmJ(HB^9sSnzvVGyl%U5Wfu~
zb>>d3r$`Ehhc(=R_v!T{sUnrawdT=Jm~EHY7;(~jj_h0?sm1&VJGCtFz1mi8naB!8
zupkv@Q-qV1f)}M4DDRtk7?gLFltW!Dl=m=E{-9L{g|v~Yy9#aOF^rawTLPHF^9u?a
zcq$V;?X-3H9^K$!72~*G!5hJ~?@+>*;%chi7b`!c;BZu=12eOjflI++3U*A|_ec!3
zbE<T`g#r6aAJ)OYrfnS{J$*KLzMsmR!16#2*##23;t9Q)N$ywm`pg3DwBHzznBzot
zevdaxX`=vR31s_j!A|YW{oHn<(HHW0PabBNEC29J1UwLc0Vw}D0#GB)5o%lhIq1Sr
zGD&fh^Xd@ThW3WnhHiz|hQ`H5frW~RI=SAryKzpAYHDCYJgTX2YHv|fV|H)0x=y1T
z8CcH*YfZ-vxU@H?WB#zW`D~TbT&PmzP~gwzS~Z48%d1Mx`(9H1-VG&VFRZ&VubL}b
z7IoG9m;pZc#7Xh}J$Wp)Pe8M0z_C<qY1T)F={nu$x;-c{dEQOjM<MP5$X@h79I~Gx
zWFyj%ATVrOJFlMc_*^sMypE=`>SX*tVZ@{EDbAroqZsO~mpj;Eo9|#tt?U@K)HZhI
zjATItZ=3_G=a~2@KLq#OQe`sEwW}nadje~$xx&*C9l@E0;mzA8DLqf-51|eDQWvrv
z5#|`bPJ_6)D`vB&&r89<J#k5ygE*$UcozWwMt27Mp6J0~wKp#f=Bmi7l*2;aO^3Vm
zn<G){OsnX0oh{wNF#ki-;n&%F0zU~&@$2kQvFq%mGsQZ)`7E){<g<=`ozbBE_vxRc
zAijOm5Z5>LL|o(gi5$z^HPAC2$=CHHx<;@r>vgnCX#>&Th!n9j{0gSk0O>ixke=CT
z>?!zCV$2=v^B*i3nq=K0C}?^+g(Tp`!B})l^J?%RsfTj7UxGgm3>|+ryq8ECew=il
zae4>R9Y_~*PvzA~L9}r7>$;f!1YA#ZXgvx4fpTsNuc~VjMI8rsN<5%@r<j1gH03A(
zZHxwh{Y5eZ8<x_@1YSxjxwaMcyfXpWqF74brbaELq-2wYr6)5!vJW$o&KDBrdAK#2
zhy6|IfQJD?>W3(!!rAH?K2~xgm)KUm1_R3L+?TVqL_O%q`$1AZNn(cPUVaID=7Vep
zM?&W6Sx#Zs;5^QAGGD8p*vHGtn)^!Sm}NeHH%Js@ZF?kT3Ovi-D+M1*Bu+BYS=RiX
zr2P3*6fY}4BRCb8+xwiFRSGV1u}#Akj=P)P!ubUjh+0j^s0wUr#NrT2o3Ut0oHf9T
z0M=fF^>`Y-;7n^A*IQ@}v;zHn2J1qqI1z)g0<ECD%#iT+rCsPZ=&w)Xs;pQb33@ss
z!9bHmx{FU_(!~TIM7-ISYMQrIQXb~%b_tilRBn(eK5Jt|7w3sgx5mjNAfcBEKsh;q
zNc%LP=Lrc6)!bC3YZpKv{|qU(7(Q7fRcdY)UP){}6^Gszijv4DTnwDEjBf1qCoQA&
ze*oV}#G<;P7Ug0s3VqCzFt}x67Ebck238^!oWcoJ2iFIx67)X;UEtof6g+>wnRkSh
zyd+bKKDCb;rAom=2XO11pLa2z&)8>=KQ0Cn0}H9pFp5EwE~+-i2iHW;Sfc65VkP1m
zgp`f%x$_vfGcPWi?#%FAfQ){_E+*a+_o45t7j=d@NzL(q8s{oE>B)Mrscu=w%TE@&
zm9XsEUHtrNDpoa`j_y6KJydA8_ZA#7)Wwsb2~u|+qPOe;Cy@5kZk*r9&WO(yIt%J9
zLUh(d$?=i)?sL}a%UT6Txf3lv4Cti1_%}LPe%V1HJ&MQFy?F<~Ucie1zD(dw{jp`)
zOeb8PE3ArV#bW>ER~V~Qd7KHb$O$ki=NiFKKB5dW4)=qtn1NhU*7v~0FeZ@}#~G4>
z(J*jzy`-$^Mpq|E%9Gv2yx^?}v40s1ku|8H@q&Ex#Ha;1jp)*xaJYN01>L(BkR3e@
zR%v5b52j;O_qwI4+uY8^qFGk!fSxGL>YXNfELJu5mzq0JE5Vxp?-`i|Q{RK>LPr@z
zq_Dl)m6iP8>IK&D)HlJj?lC}$iupP8ibI0FV`=4BK`W^2w6AqB*#3g+2LKM#a(V*+
zc#1206;~-pYcS~L?+t8toXukj)?qB%|I|n24~rIDu9O&+<@FSyvYgySs4T87HkHLL
zE|9+Uk5Fd{_g7|`jxij-tv@p{e7~2Mtl`wL%RLkqwT>to8-JpuiV{elR?n09pA-f#
z7JKArmVs`Z4-`@YPz6~T+=b@;T2WtC0)h(6$n1xy@_MvK&wIKfJ<rGl^ZQ4<955p@
zS5h{2XENTR@yO5I%S#R@e9Vc&Y>zi7`V}-GoHb;z>vuHU`424UpcLGQF^hS^3jAvq
zM#gt=bB_MW9-@DIFp0YgzK*Tm;`^3#+L>yXP7n7G{x>PO^q{GEu1d6v^_E#_26>tH
zTHCqT*3Lb2c-?T&+K~jsudBWPhphgqf3N;09Atn^NM?X-$Euo7?q+@wXzj*%E~SdL
zuJP;W+}<$)^UvlA(m%#ny$4&fGLYXqh)#$HTl><FBL1<6l!GS@#k2BB$Hsj2M(eYa
z8{;j2`%+_;(~I52avG8<mQ!|W2g?arfS$dNVQ@<l6a7=WP&A-oss7yCuDqm1DKB|x
zCVJ*K{Z8n~Z{ij4j8wi%NOM-Jl*f>O=O3i~Xy8$>0Pg=)@H-vzTH}NQ#1X(=`M8eQ
zS288U!6)}7GP?i#E3S{lb?mpbaBu~!;&}|yW`Jor(qc2fbQ1b|niH5-qZC;KzWTTO
z<B|G7_b9vI91Epi*V|XX=%^Ja9b<x6H&{KOEYU7!N5sJxZ^i)`Z^l7cFn;|J!S-%W
zU<!ER7ls#-Ku#|^34Gq&KE7Iu1XeWtj^n#okO5%XcMz)qt#%7>`}1k;@U%8M0p>L0
zfuu@r7iW?B3oH_6_4eezwkzbk#-eb)p8lVT)hhjIz>iuT*j7vBg{I+*;8#6W7CNK5
zIitjAh})b3EwfU@IBhpu+q>D;-p$CY6#XB9)q`w(mSyWyvxqXvUH$8Q77-a#(<Amq
zs{VC54553E7>1D6LokHzx(kM|vU_Lp^@ZI`4nv*1N`~*o`g9r!UDF=%rLvotIsuJ9
zDM4n_1f5(!7tl%X)Q(ojoqM>0-yGZlW|PxTZ)YmEOEFU!D2b_@DT%3|BdO!5^bnLi
zi+fV4b`o#Xm+d7*I4CK%2%URZ9k;w{8~<KFEqh^&`gzq@!*^a)*J?0UbbV!AJE+l1
z4jQbgq6eM|Efq}Y7}4_}{+|AL9joB}ho#ENrapzcDEc>bVo<?n06@BfX~eZc3eE(Q
z)hh+_dOvcAptb-T?cKpQ7uK?1N6_lu!c8;kC99h)>gCQfBkDy8UQqWtaqX{uv9q*G
zde~XUE{mo0{k{5M|4Tdr-q|fis#+Gbe#)=$?dxLOpJBD%U2j-X2T4>~XxxdlljYs<
zpL;0wb3W^HPuIt{KP5G${moYUKey9<V{H3dt@fAKTX1$A3H*lcvExsU5=q}%3^H%m
z?}WeFy7&ox9Xr8$tO<_U8{fVmC8qsVR{Qh!9wk7Q?TYW<rq~X~TOEA5C%*k#vF)c=
z?VoC={oi8S-(<DFqn-8@vF%H(_WA9!-`gdoz1M2r-D+<dxIJQTr0OppVBT}yA!bNZ
z4)FP<7Z1dD_i0zd=&WhqMZlKLW4lqxbRzNC8VfYoDRgSGokDwA6xyu+P89lg{U|AD
z@*bhKB(T~d=|u<Ifw4YfKet<w2#vbvr(u1*wfg^I@7?30D6&7$o|z;}9!$?bz^JH$
z@(9W!k%!@FLS7RL808@fnuKIRA|Z*%1cIVO^N<+OxW3q3b{BWm#a&c>tBVK#V?dn0
zs6i1>@VBhG$SS)cvY03;;sYd;>H9rZ)jd6vo($~Id;hxgN#}G`ojP^u)TvXas;jG4
z>Ux^xzvcP6PQO3n=ebwE%X9o^C^zy8t|gH_F)eAFdW88qeL7$LO5cbZ0_J`*qWyEv
zuQa~*1bCJ=8F`jB8F`jB8P$-quk#l6-mR<X9eGPcEUj9uVhi$~yJ)$Rb|XwV+Qv5r
zPKlNqQ;xC8e`6A0BMq&`dMf(h*r2Jy*%&c(*cBtD4u1;i7#;o$^O45(x;WMwOz*IV
zN~*8wncT9QJuns@+w^<_2_?S`89lml=ci_1kE4BoD`QPf9y@;;#^*!#f+|~_G`&O5
z<vaTdGz?(V*#5!XSo7LD=7Xkb+4}mQHp-3HBS-yD&&o}gl3$Yc8E?V#(_MT%b?3j;
zWs$`14Ek&5u~R%lztg<QXK46;JjJ}o&_;!$z4e0uTIUPG-faJoll|^rD%t8E*pokx
zos!plC_Xj+FSbmyeo??O(X{uuqx4U5YX9e7=iMg`p73X}{2yijPk$Cr^toiI{w$#A
z|9U$0o1<)TLQ!aCV?&g-q`B7`u%ubLHA26n*_p`QQ|N#D5&ncGaFOdzM|ktZ9pv(#
zb2xAnyCaINVt2lN<Y%xdmv{QRUN7^b3&h&S>hJjwMViSXdphtZPMxPs|N4{j%&_D$
zom+k&Qs<Vx63N{1fDhWnc5v3;{f=vU<j1PEH;F~77e&gKAE_yCiyrbzk@9yf<)m1q
zT_sXp)>2LjYHpG88!cs-m<L`bQW~_Bu_8~hNGa1&azx4nBISB5CI9q!itC@Ba#H(G
zaZ(W)seYoGe-SBP{8LSt{2!jOPNW>rQWT*H_lT4&T1xTvV*N{`tk+VyzWaGP-0wwG
znnekdv=VlRS!c($JjJP{$UmH?xIX&VIrWGGCykVUo0umTa6X#uM_7xzPDGA8%>BE&
z4)OT0--_|z_CtI~r}d%(5&HF_ha&W&`ehOR)s-JL(f<6S`X7JLb+mnET}OM#+_R&-
z{~uN6+m8JlmPs`WolpE6?vv%PwmdYQEe~y=kA83cR9hQpqwq%2S2ldZ_2|$+m5KTP
z@eA7We~@X?F+Uyixn=48>}RO|YU=fTeA;gg7@y{DwFZn&tB-LRtpA$J;DdjtGPwQU
zKLaDr{fm>I%E>o1qhUI$PzLkqI~QV5Ws8!XHy+ir&ofnMp6AM7tvhwbs2|dp$?3g!
zMx{qz>fmuBK2zf^`|O-L`)>{z6>`5Wmb<OX(sT&Am5~+yIj8B^7-5eu|B6fgmJdV$
zUvBK_9GV644<|VCC>6Q$t?z#xRoy5S${rCV?0a7=;nLIRt;7q|#i7or-=34qAO6VS
z{Ap_Qj}C7BB%!R|e93tnuJL$Lx7yrs$JFLFAJaWg4f^mw6PsyFv&xP9Jh}0n!hjbB
zX71(g*nL22O<zg-{aYJ|(nS6SOdKK2-_N#77t-l^w01hVVI6zSa*{tR72g`jOnw`L
z)q_?EagW4ys<Br(lHcnzy~oZE9sgAUW5IutR>z(_>{WyQ>Sqyj?|+N^zr=>)?~IL)
zS{rBsNW<Nd6_RavgaUHYwKNxE31aWLOB~VI@(6|a4t5k?T@YA*R<fsAt(ul;1It7^
zJNT}SBK7>qwU4mRGOvA+<8P<USsjmmP7URW6J$D%`?QY$vQOLcz4;9<M6d_?t5*68
zdV+CxKXE5FE@WRc9Dg7`fX8Qd^EUdoc$4n!clab_G`*kDxi|2A=iv5V&)Oez*LX8;
z|3KO^1#Nn{qILF4%0c@l^g19vq#p3N`Bm{KnoBuA7g|kR7t#V1K%BpA)lLs((q!j{
zp8A`3U+lBng7x9$x6VZ$On(c~hZvncj5$YrD7`H}9#h{sUwxqW<=*CUq3^`AP9!(J
z%Qj<=kGoC3J&kY=@8Y<F`5BHn8G0@x`DL=h%enCAfSAtL_!+haN;mjFOzENpnJ?Rg
z#_bK6<C|kF$A_w#UgtY^-8{f+H15^_dG!_5xl!omC~i-heors>O~pUGKB6dI-}_m8
z#|799RWr2OTlKc%t#{S;;?_RFEA}$4*z2rf19`>zsiJr~==@;q?K%41!Vjp1`Bo~6
zm&w{j<*{S(n@j_43Tm92dN*`&dS(;e_3zi`<p+LWKHxn*!-mTGjMe82wLbTSu<x~1
zr1o-Sv(T>RS$Fm<rhD@?-ZbKz)qvjmwPe^^)o;WY^wy01T;J*Q&>i>hWBs$ipnvw(
z+d}s#-CKUzdn@Drc1utjQLWbRWHr1$sCniF_Z|A6MQ4)koB~5R|NGNGyWQcp+m|b$
zdeO6=2K1sY8%sji-}BRVn_h+f@lLP$KJ3$T)pz}Qu;NY7l-8(*GZxQy_NeqJMm4f&
z0Ue3T4@k+js_#*y7`%7BHZuPv+7$Ic&##WNW31Q-R%;_C-o&@i+Hs#G?h{<CSyp-*
zw7Mb1)S4IJS%kzd=d)uG`RgiK^a5y#(R=z0ud^4G<;F)Oet_BgN4ak_TVdx`krvVU
zZ`?YkYVVyjd|_%hYg+!etMyj9Yx1oLa^nh<zCY%+UPWJ4eC(4hSi-xkIW2oST5x~e
zTF+D|myQ*<i|s7DTN>;s2Dg#71aRB=51-af;~$$J@HXeE*F^vGF$UFl)QR^#Z*nV1
zOS0_MXx)CTdz8VRi%?SEK)G}-;qUR!T$^cfHGFN#nRv2#_?Ii%#5qQz{O1^%OuBQ7
zfL6oKF=~0I;pis~U!>Kay>R(H?F^%T>CZ4apg+UtO`|i6sL;QN{z+Bi-;EmUYMpIO
zew!+G53g9`YjnUw!<$^<P3wH(n|+>Du9nZfw6SrMQX3{qo^nBeF+?;bF&ef1?p(pY
zzY}?UUZ5lj_1}*`x^z=udRjMo5$et$0ba@Wm>$b$UFwvZl1*%%yQ?+R%4)*)kG4Ke
zjYK{W9p#UBU9<7s-)Q9*=LPOKKiv^6+@iPXttb%mr#93@nB>L<JY(ZLj{eaOj{Ykz
zKgjQFI}bm=vU4r1t>{cMvG*BsTd!dAp~GDYJ3Idk%5u}oJj+c)qP56M81Dl^SaaYU
zCp765@gAKhsZEsR^y*rtk-x?{zH@GHy^=YjP4u3A=LvT7=d6`mNf=FUXULfy+%;*v
zJHa*aZoAy{YM`ELRry0^(^sBlqKmR8Tz(|pTYtgMh8sV(2L~@~=L}bN@e2Iybso;|
z;*##1&z+K?b2<Jhj^9LITk4!7GW|+qx{{X?)uWUgQA#wcV%AF4m7}y<dFH06B!iB#
zhTrpc!OrjHc77|<ln3op{r<UYQ%h&IG_xf7PRML4|4ztkJO2d0>;ypA#Mw?jCm?+y
zAQ6y05s(C!0+<4r3Yf|cKxxTCVf3xZygb19fOIfQK~C#$+gT}j1vwKB$&D|W=uP)#
zHgK@78Ln;KAnp@!-zM&ppkJ+H8+?7_#sReS<%{M=J~#L*{1fC2zNj4CiH&=jQ~b9s
z|81WCcE10%z<*onzpc{x(<xH$<{hlOKAvbQozA11=4!36((Cm$dL(nY<Ep=~0lyN_
zc8b0<t+irh(^s|88LbNvGMhfG?MqlgUu0N0ZD|d!v7tbSWcfAd)f>5;h(yb4Z-zEZ
zj*uHKl37CE*#VY9y#I`m$YnJCjjztrJu^Dp5yN_!=YXr_-xTcP`^gdWn%XRD(@Qbz
z=d?6asN<r4cPS!eW-HT<+=*|>P3&A06dB^Y7k2JWZcDrC^|xl7*hPP?5r<qm&sbdY
z3wvA>-;mc_4+1UUx>^n;zsKG=`*H}$^WIN0$^10@WNP?Gp?4tIc`Oa>r8yJZJrA{7
z8#+x5KSeM9Pfm-H^Zw^)r}sQShg7xv<k^jp^UMEjV`uw(*{s=He(Fz+e|+^t%1!q(
zLr`PYy414Gyi0ANj#w7>eHh-l{kZUE3dFUX0&C$5$j;DP*i3j0cO^nu{>rjmhu)Iz
zbgdm{%4vC!zuChS$~Ey@Ou6Fdg`*4WyGF^44N(|LyGF~6AA$YGkL8x9X`j;}vFN*v
zHXVJ!B--%#$<%t~h^Jr6M`GvGqi@hjvpbKP<t_0J+S=9ld|!Hb2Yut|9{J?Pdnv9*
z-p<?miuZ=7lB;<on<kSH`9rrjPj<W5fBFkHT#X+zE6Cd=r02KroEy4Hj@|5WG*`3l
zX)p2<>M=|r@)L@@50MR%t#Tvn!lT$<iirT7P}}xpR$A+W^nQKvdvvr)T5IzV9%u*m
z$v+bQv%+Bh<Q0Toispp!1fe4|e((~Xqeo_T_Fna}l}$g^+Ch*%_-khCM|MI=5cxK;
zFB^=%dS<W%-t$*B<X_R*%rWdU1A5rTzw-RI`^$a$Ta>%bs}qRj8`_8H4HU@NwBhXz
zJ=$T~gq0tJwud5T@Uw2oQ07c-=JTZY`Oe%3KIJ24o$zy79^at0(jJMPgLVvs%sQ?5
zf*NR7-j7{@1yxWae0QbQq8kPIK1{X;CUVKF09%yY-sxfER%C2mpgXgGy`z(6nlifO
z4TuJ_<z)8m!F?Ef(#WbxYiBpPTK2LxV?U+|N6Sa6=M0(J@=;57!_hAI>?u?>U>xJ&
zi@~@}5K-)NfWV&C@)1Ju4B_Y}u8BJlvI?9*1i8Kf^V-!5hfI+h6C#D)!_mA}Zv3r<
z-HpV!Vxc1)-UF5TvkTyFMN*%-Rc@q1y@4?aJ;_4fH^BWBaw8psowoKy_AXhoi4(yz
z_q3Vap}v`s41vFccZ5fO1$z_4?!NXo@&B9Jq4JhI{sP_!t9Su#WFK+<K<ne|-L&^=
z`;sWA7AoH{@OazP=!Nk|-^j3{uyve1Ou-I|_TANqJ9*vV2|*^AjqlOhH&z}eul_5Y
z$8T!Sow!?vWhWFn#w;~11Hvc56d$LR155LunLQP6Y8Dmd?mB;$7<gP}M<J(3)=^M8
z@l5SZ&(bT*>V(;Jz%_BVr%2vn2Sy8$+!16X=bJLt7M)J3_nPG9*%mUDsM`#7(^qax
zV>hVx^<?<!Oep7gtT=o>Gx=EklmvSDbr&ehO&42)+*+X!u@C^R_*M^U+435#I77?n
z?Kj5#9(G`@xNY>`s>eG=@AeE7_>v!=ei^OhL*mJej1}lSvUo@W9a1vbIFl%Zeqb&I
zjKz6IhDFsCKzl|)Focv?T?%~)py4!ge^rdmn$x0xjza%zDxi1kR+uq8n}<8rjx7h+
zXG`l>4w-_Ul8!c`TVPmJt4?2)$UG}&enIa&qG4O|X&9K^t)DOQ?vTaxguQ=#qo%F#
zCZSJFNoHy~*f61b>`-J?-zRakYP#3UCP=Jk9+mk;=Lzxs8m?P<Jrt_mLgQCP%li$V
z9jWhvk^aFXIy!%<I|T}o+42Em(i)DPfy$kf8?UAg-SUsL9b&)R$+Y_JBN+BuK2UK;
zzcS@5$8vTaGiS+LhM+rp(Jg*W+o$TisM^D^1|-n`O>Akxh)n0NOe*KC3x^Ei{bS-z
zIO(P|rrL7GM_PAn0S2(*5l82qWXu_ofT(zgum!iBzw>JAN}{3Kc|&!+s=impO)v_`
zK<AU2zB<cWdZcHWyakrBzH5P}yuRyJ&tk+*H7~omzUxZQ0^CnCFB?|hHO+H9p<T<U
z*LS7L8E55;FTNaD(#DSyICxel5qlYr2v3rm{=z4?@PuMiU26O?M)XfVb|;<W;6Kl;
zj^3a7iO!tw#J@I#o8-nz*|)&orsw&;;pf!z5fG{Ma^p(Y#P35TM58yw`qWb(Te`Tu
zXbREP4`~oWftk1AhtX;qzDsvI*z38MNop&@%Kw#Pz!LpAnrct)o<*~E-OgM47+Tv)
zJ{!t7Q{M%@>rHvf$F7~9nPHpI*)~}@c7zUFZfr(uP>!{Oe#0cP#Hzh-pV@LC4Q^su
z{TURyS&IOTGe`J&H#`FRb>^hpG=`>xY%5e}UlJ>qUsEZIX0+eu>o!bsO&3Hn^J`u^
zo8IPFeqCnE-@g2ipHD*VaQ_|jeq`ZKy7uAcZH}eygRoLYoF%g|-;DOiSerf{T)>7`
z{=`18-np2j;QXQBD)!1v^AU+&O%u})@mk~K6q(k-j;|FCk3Ve#PopVQXZm-%thKZG
z<^p=w-1)y}m?ax6H?3js4<>Q_;G0)Ft^Q)qzr6S9%<?Tan35IP#-!79D$cyRObpR+
zm^)+clKDnjOI95`Olqly4s*kqKFi1qQ;@y!!+lS5#?>)oVp?CLl(q5KPCT%R@F+2l
znzZ%7HLTaZT}#nx)a(uS)X_oy#HYen6%+iX-+v}Svv%Iho@VuQ0?+iE)-3VJd|s;D
z{F-)<(>&L1=^K$Kg4+XwuZso}OC(Hd_I}ICuk#lgGzu9Hqip2)iQYh{qun1D(5o|-
z(3ct3KD3pI{Ry@jvG!%I5U-Phcf7J+><44I!e*qMQ@;`GAJ22wo8D^3Xic}WFUvHV
znQ+-+nZiVvXi~q>aJpmCyPVuMwwI`xpZeF_;jbX;@r|FHWV;9S9~&anj$iNVVo#DD
z+1C}6z4k!opH4CjF=Kf1T!fL$Gk{qgK2?kH^hs9Ww$+YIRyu$BUYv)>kH!Z@a?d(`
z^S@n6D;<G#DZN>zP6+>pw%dKgG*~QuIw+0yB0Wk+>Cr>^`Y9$l=ETgWdwc^E?VC+&
zIVARNb0cA#6+YB2O!}<1pHEggPzU^(8Gmf8_L7#5Hd{jS%Dgla^U^whWZws1x(}UR
z)v2&$#yRw14)#%wl|zy`KHSS5Ckz$6vorcT-ujjMcvF7Mw)|(gI!APC9~<aA%yz9G
z68k_!4F&}AvNocL4Nz0a_)Vgn#b?`D2G3wrAW~GIXC^bx^ei7m<;G+%)cCP*IM}x1
zulUN};I!bm<XwN{8aw&x9?R}+f9A94dE`c2%-?T5uNu$;&GW0lMzsc&r>F+<YWk>r
z{R-1jPYfR(=u3kzr}ecbxdDx$=hh#w5<=1z3^l2=`wQAdf_CjwjN(R4ahbwOI4U>2
zqHP{o;#1>p*WxZz`1ob6_uNkZ<)#?)AvWY<Sk;;$5|Qu(xy#gYg0!pUz3tq79>usx
z%6*W>zGy)dq)L9^n{;Z%(KE>(vvra;X|V2m;X6NlO;AsN$LQA$WHXPZW?Ir%>VJ+$
zPG7@+P)>I{|0?S_x&=r1A-utEfoGtxOMo2p{19F$iDiLn>th67jPyGdM`_Wm2L(0)
z@9{A+jDkP*iF$syaXZ(G1g-71oMP3LTOK(@#Q*Ec9rK-U<=As6f92|WR?Z!|ax=8b
zE%8^5*QxU}j9v6X#IkSrSuYg?;mwtN!_~BjPD_BBc0;$igJ}$Tt}TD-OgYV{BCS)U
z+W9vh_nb$GS;~KCo#*RQOn-q`c~;fmFT8r6xN{%-0E+rt-|lK<gPp7OMK<)Q>lm(y
zr#&nAA(vzs9^_H3)<<X*tci9_JSgAy3Pq0axmvdKQ8Ral)ivUjtM#q|SIa?H3qwT?
zHo%TJrOciWQ_4O@XLXqxSYlIq?KOK?A#5ya*k#{rS|HBN<wdzBv-}==!*-_Tt`?uC
zl|LujWfy12s`&hYP2YQ_(bHa%-=6dYg&oy@oz>Mc+fG>)XzSG@PIXxK(8Eo^C$E3&
zc9KTtP=$RxRR6sM@nC~Lz;0MIAF8p!N=L@lGq!#}<>FnfFEe5jnI9oHenZ~Q#6Q#E
zE;k%SpmjSP2TI?F>oBp>R`asgaZzpHVwUfl#WEh08y}An4})BjIhp41efXiuA4gD@
zR?amS=fs_IQzVc(UysoIcKJT~=p4O4bAK6q!kE_7nzJL=w721`nJwwakL|>4uzfn*
zg=qYXFzq~IHNDaDVatJgKbO3cbgv>Ers_Nz#qJN${YY@Q_Qum`>=hY$W#@@E8qV}h
zl^@$Z_!O<sEHu+x=pC1dH;d`-4QE!lS{S=>b2}2JDzxHs|1q<_=IjXjR=RE3xwA8>
zp)+-Lj7V!Za&1F<y$)lw+10?dNSJyGp)ngmXno`WYv#SKmfgf((<yc~w}TdfUN?&e
zwWsKC)GcBeX>FU7s3`ZIWsEhCj3OQtJ9r!%Mdw<b4ytA607ZXZOM}<EDw!O#--|O%
zY2AqTpxo9!w=?hu;&A4O6VR2vA%p3jTWFitWXxvxHzL33_{UD}S@dBiSB-y1pZ1DK
zdn|$%=NSZyKTp=4fqc{Pgus{;NyqXY5dEt2QCdldHZ?p;HzQ8vw0zJJw~KVYf$3ih
z+bfc5I)XcrZRZ32^Ez8!WH#VOx$y&&eyfT}?9bRuI>j4;^~0^ACtJ18aI5=!d=|NR
z8R`NJn`1KLzbD$f^QhHys^#Fl$C;Y>n3^>mLj8s+sMEbi>3`ZQWQcbjiCNodrwZ|P
z#<h7z8qVIftaK_ro#;6ewI6+$<KDCRA5#0RLLJbePKxQijAEAZ7>Tv9A|qx2`y#V2
z98*_7lr8BA+;$|lyISsIW}}nsC(Jdq9%4dzTWE1lrCn|AEY-drkM4zu=RE(p@*I6C
zy+0J7=<@ya#gm<#aSfeLP2GERg-@?-*jeBCm4AIj+o}J7MYmIbp4hg}-WK>LnJw<b
zF%jlY+$}eZqprbDHl`;@<z}jB=kK~Sx;s1jHFVlTF%l;jnXT2U^$|wvJ<nF?h7jb9
z6MI--5@os_MSa@M=N}NH5UG$SdnTaUFGc%nf8u`WMfCijz4MuX{S8`aNm^+w^yHYA
zq(APQo%gMcWsPxshoQ*5uoqs(>%On8iMWWSD+iO?8;<sAIDRIz-gi>YcthT@!qjrM
z;b?pPS$Gh?l+<Gq2kE}oF~!m1Yv5m6kelviDjn7E`L(WwH%z88xf9>0J)FkQgrKjl
z!dNbgNn<BNlpx4#C5y1gjdNLqA|fK>#*8j~g^E%_SEyKhzEjfXvIw=0TzZWrzq=s6
zbStSo8!fFm`H7cs*{hVDe_`KA+0LJ%Z)YZhz6zSt@RpgI9SiI6j3sk!3$uQmwx9HD
zuD>QUo3vO+@|HWF^69CX4XAECqo?})1Or_F#U(lsZSyJYx5_o~fZUwRo+3^C=LD)s
zx;=m;ZUZ_;cQGa`ev2xYu&7LoJ)^fH6DJtkk>h9etX|iH)rNMnV0Q;$Hux}7-{2)t
zh=W`BSbOBM&b92(Xx}pv*dX!C@r>ZHOQChNU%8`d8*F=%GMk-i--ivb*V|omF7?OM
z`?Kq)8~hJ5=Qp`rt;<tf6HmEXZpw4DEO*I`51Yi3w_<ifUs9^Vh_{FKJHbtOJ5}DI
zd^sw|bTYRk-PN*pXNPtA>Im42^s3cyDFiS&pdz!Y*e8%C*W`IJ<SkKr)vpm#wY@9e
z)Lzb=?LS23IMuM_jm#uWS}{F3lSUtz`DM$_w9OF>pZ5839H_y0goctUX(zMr7#HLK
zCP;qv>s{6bAkM|r@abi)wOJ-GO8P5rN!s~o6di8UaQs@+xAfJy6ZihatTCz~H;<*E
zqm!DKs?@KcBT=nY%R4*2h*=$<0%r!HonKfRz8Ern^&G32RXI1sEb1IVb?)rLtV?<d
zsOAx6+|LKB!X-{3XAH6>l}}~%wHW3!uS!t<&K^bw<rjGbK%<Xktv!AqZ}gl?(CEXc
z(eK*YMLH4BlTVLh$+46?l#&<n<R4i4_(MGTvq4B6LdjE++{RtoT~_+OU4DL9g(pAX
zS?%`JR#&)-ofVZ8qY&jx^sK0IJBN<GIw`4U#Av5;PN~~jxTvhW%(KGjsTBCm!U|_u
zMUAJhqR8#6EO8b(YdqCuMIL8O?V_Uc!kQY2Bx+?f&SG~}wY#X$<1QYFY{kx{g)5wk
z+#s~Hav91k12JbwEvUMk%iPs9WtA0_Id6rhw6bC}_#8TVTum^e6c@;;Bz`#+9(Oeg
z#D8Z|X<@};HyH4^i%`6Cl+#lRhL%<q*Ot4TMW{n%MLA=pyt1&E@q!vwR=DX#qf$jz
zb!Cyere?Gx6&043msKow4!zM?Q(9SDUhFI_T;}$37bKYJg*EQXx*~U#2lW~W-aW`k
zd{!5h)wm})-D;YXi*0FbjfWU243K016<$y0^3pO^3C>QT5SX)a(e0?LB+Z(en+vXL
zYRf&&<z+~!^*G(t)s@vG@Vph*Gqn74WaspT)+CN_E(Uu`k)x~%q?Z+z*Sc$*CCIYG
zy<&M~H7ZxVxOS-<%{qMO+~Fc06F>3_9Dfx^BPtfxNI~==pxO#|T@`PVkd)Cn!#&QT
z$_nU&$64WCT<9rVCYT~UtSP(GosW9Xttebn&SJ_c$~<L-<%oAyl@%>vVj<>-G8WW~
zmCkaM#WJYGSzeFeb2zWia3M%iU}`k9Mom$5S(S%M6Z}zpNg1&$vM}{w3Q+8>8$}#4
zm2xk3S4%4jmzIytXaCdl3ae|})uZ#P2<Af=o_zN*H)lbIH?y#M$>^fW^4g^pqx16@
zyU|?(($h1SmU%oxD8I(-fzEl{`9(|%fM|?Y?Jlk@(qT!4d>N24#_LJW2(PHrU9?24
zVaRk(<q~&=aXCemORFj&sp85arX*C(Ox}ryGt}Yegf-5>@@jWsG4*FR+5lOqp<$z)
zH@Zius!>zOx|-IeRRV|F6J?-7dCHdh&CpQR`GmPZD<`v7F0OR*{7VZxMWxQ_+KQk|
zQm`B}`Mdc|KI@2F-$)~u7FMiKyBjp9wxX)AXo)jX>m)<(EY|GX@L8}=b71(wXeb0y
z=<!r1j+o>mShlFv<91dQg3-YKsnXT)o1b5`qAnj?P%m=llNvIW$Y(mC_Gh)<dkU9;
z?V+PnYKTuK8mf$hTv)F4X$TI+ni3bI3s;Odhw^&%14E?@p}(rW)WA9xR_9k#7P}4T
z87OZEdQ5epp!uqC#jnDRhFMyPLCb?thE<)lAgip_h#~X<qeE$>U@UaG)Z=T=M39Le
z(~uspx#jaCmRF+kU<nC}nD#<*tKB8;YBxrvVzhq=@s9DOY;lF!r^3lI48Ob!2gxa<
z-3#aiVcOAsM=i0fXP`IyrG-^hkXuN8HMwy<iDPb^^7EM^Pz`P1H;5^LRY171x@>V-
z1;W&<g^MW))!><`3O%I=qX%+Z0fq~!i%RpU4X7{FNUY=0(5Cj*Vs}Xy+y#jS9yVgI
zQG!ydQQ0!+CgXSv=eP*NCwfrLq@gebx_I;(eZ@#&gc%AEoi94Qku=CSg;K-dE);0G
zL#0+1F6V6>DiIyDBD97WrUYkUof%`jTN@&S6WM62r3$a4vbMU&E$K%lgTkuZ?p{)f
z9#7N{V4=u_OeHcs5>=DusTM331+V~TuBz6P55rSj4kaC0JbGv`R76@-TL$M1`X-E;
z7@MG?Y6{5FVCeJ{liYQMMV|5%l93q}UJf5j`S3Axw&baWe<)>Y!_(;G2{j{`bH_&o
zL-i^uuMBEZHKno&l`r%-%iV=F9=cgtS>rM8u=&J%2=7KSg2ui|&zwTYJrl|*^wKpb
zODZm_Axk6m97V$UVw@i-*tQ3;B{8LyNUtUC0itb7V7;ZPN;Ws)1S-m^s@$6C4*2cO
z@+uo~ZNSxzYcsBRmsgpBYe%+Mi2&RWSkU5C_BMHyZ*Z-~ebQ>L@>H8wc@&oi*A84C
z;ClNPUS&J3Jlr1v?8N2W;8jlGI*e;St{u2G{no1-dmZt+kq#KK)2kG}<yF?a4Vrtw
z!w#?V(rdtZ$E(cQg>wJqRX)VE57%e7UdQ$8cfCse$ZjQXShrG-YcsARxU9pwl_Xqw
zxT<ii#??NgTiF0;P3%?<0M_G5#eE*G{a1A>FX1Z2{RzN@xc-gn<K%8-)tGK&8Lp+c
zig7K#btA4ETvKr+;~I)<C-7efekZQ}S0fGAVq6d7+K%f#xcZIlRwm<GxW8Ljk89BX
zb}Jcw>sGu6z{7jpO8Lj#O56wCO71_pl}#UlmqXpk$d7P;7-<K)l{v={_b<eKg76W<
ze+vB1x|KEm0R+A0I=hwmxN>o&;%fc8TX_=j(d&Im?kt~T$JGayZ>CTA0oMs!4M@vC
zTp6whalMG^5H3|eYTV@|qnVj4=2pxp`Z_#AF)>2druj_Z%#uy1)cKX6=J8)iWi96V
z#jq4*H1~IMmuE62Ox18dD~pP1tC=ejD!=CZVkXS`iBt9dX#(phW&W$XaA~Ogg~Gpe
zf?ba3WZgPoi0$Q<Q$gMYhHvton1QdUUCIVw=dv1SQr*~+!g1plO>j<iCi0#+(#bpO
zNIv}=>7>p(lG)6WPSI;eXl}fer%q8Z!vKG^knB?T(nT1i;mKoKf%yz;A~9vqymrV1
z5-o$lX4P=lkc?=8?@TSMg(JhQcjBDtTK5QjeKhOHoD6lUM5dR^!Be={Sp^5NtWLiM
z;h!Q<I=6_%>6l+Qd7BqPi%L<9ezvA-4?YnG4{8e=@kfg2=Z)oO`eR%+{ieg&S~6QW
zinBe1)t)(gLMeW{*pS(!tn$j`y=3R~XL85VD4o|G7kBI+;j+RSDUg0I*_nJpa~CWh
zHkbzJuammP<wI*O=ZfbXTC6H0ZiDKVSy3EZyq-U!WU01dNk!#y^gK#&(#o4;n9glU
z&vXMPG~ic6Tw^TG_f!`axfijyll~XbHkr$GGZy~K5ZY!a+~9PB{55V^z2eY@$#9aY
z`{~=(fV@;u=~TONz`RHO6}xMS+!e*}Cu%CoA*kT=+02H8s$D?3QSp+l?G4j!q*dA)
zH(9AnBmPwR87fC$x*`2^OoN!2t2Cw`YJTreC;2n0={6z&`SNL{5N}xpdVE>2(8r-Q
zLFiIpkho`S{fkrg_XS=Z*8ejrJk=}aXwJHB7A8%pttcykCnvh@G_@SnUen@9wMT6y
zzZA8wkQ((vT`^Jy2C5=j`V`?bbumW>L0dn90nt}7)cQtYISR-Z%(8Z2b7rkkL_M`e
z4wx@#?Vt{by81zyl&<R8EHU?<O>Tuwr-TQsg{%E~$N1CFVd+=o*Bcg|vS@`zFXY*5
zjmNK&JnUD&8{IUI_iIeB262DfAD-!6T3Nk97v_4PR!2%><B-2R-9(E0STpA@)y#w6
zZtL}U8C#{JM&V(;P*3U13@(CBi2NngTs58*<-#D%qj5~v16f$tA$a{YcBM2LhjjQX
ztm~n*o{~|?6Go}z)$k%Utm%=vj_DBR*S`{o=B<P>6^iOhH>b_a)%Q<Ys?>*d{XE|<
z5C3?9sV37WNyA?pfUoMCnogZ~sm>Tf_bQ8Zql;J*(#*x2!o>mh>pJ&}fUq{j6F*fK
zYq%au!eD6gFk#dsbz)arRZOB`!(@%*_fa)D=1bK~B_%$RNZe{6ojgT0Jul{~N_^5y
zF~viZ#uiJ=lGOxF2f14$Ew3&^q07sPJ*C{!VeObAamA^kg=&fBnKjbVvI^iYExeuC
zNSb7Fdzqilo;HcuD)H-qZ;2qYE5tHe#6tYi!ZI=^Y;HP*R>!9C`W2TI5k4t^#D+)Y
zr1%Q=azyuykz%C2(wwwxX_~ZBx?CDAN!LnAqpu!4UMj3A8(pLdVlaoJrcs&NB%Jx~
z5|!ph(3)CpgTdlv)HEg!Ei+#((Ism+!6Nt;7IxG$o*_7vyTwATnpc}dXp{JIO!eZC
zS0^Q1JqgWi6zjgjAa-eCmDJ0x{yCrWi~r)XKhLjvabNJJPkG=CpRx|H1F-H59wyjZ
z`NXXDz$G6>kask`uv%4E)?)xam;Bm7E?Q@4ulU7UVIk91Vj<I+B{Zf_qfB*WrN_TS
z+%sLjdK{cy>@IhE0$jwvbpNx+fOP&Kp=ah$@>Atavg3Js5<Zvwd{8<s3M{|YUgyt1
zVE*t7aD4v2#t4t4vq{ytF%sAw|0Vxg{___guMac-|4s7+<Ug0v89sjiW2j$T|HSi0
zdYGs4F$~lFE~0TdA8bPB7vosS^dQHfM|#je-XmQY^^o+%8aW#>dP!I3q5<g!5)4Q;
zXatrn9&8z~-y@w5Xi~`hd<|OVK2*AYCaq65QUHCrp8dpt!LEkunseANXHYzJc!YE1
zN~baY)Tu`JRIX|QoYS01L{{xmqoy%`WHirzl~co;GPMVer?N^i%(p<zH7fbm(QG#m
z7$FBFe|F{#b2De9XXekkJ|mO(pb;k=4-6+n`NEWjBcY;&pdy8+hsf5W8Z*=K@^WTn
zYqgN1CGHjBcp#LJ<@0s0Fcdga2pW9j5%Y)n&Z8Rg+1*quoKxBn#W%)O6l+U-&f$}W
z_smEBVR4xu`d}5EG*-iQYWmfa*dm&@I>ngZBekj=POF-#F4Y-u7f@UX=7^EGH|F#x
zq{68><2@7DVqkC)chpuAy-+;+E2}chSJ<?8wzeF|B(014t2J%7I&Fb_Eq*<U8A^(#
zD@^=&neIA_Kug`_E1cz(w00}@xKz~AN;ShXmQhbcqt@4#D%Oq>y@>YhRTmb~QrYrS
zH|<j3TdFENeEUvKRbf$&6=dW5p3*{(b6HtsIp$<FdLlg<V<=`OdVT`xh30m;!F!dP
zRtP=x$W2}A2GOF*YRX2>FUjIN=g!F*mC_5Ir@FALJQ&efj)mn_rG<;!p0Xl(jsa=9
zt8uH<PYR&#mk{phsSC2eJ{FeKW1J+>uEynHmdqZlAO~AL_B#hX+AUCPdv+$>V;aGP
zPM>smZdz?E(VpT2>Npp+zM{r_m%8hU-9=?fQAeR_oQ}HsH&-mm`87hNthzR#ELKo2
z>&ZWDL-jWg7|^#$D1M8}7MC$84<9`|FhkFN8K{uP^pFdRP5nXYwSE0~!A&geraJnf
z;i}8fRSMDVhzwgU<hyj)-r1tc3J;8eq>YEL`saY{#~0h&!sZB)2R(Hp<3^h$ogUqS
z4R4pA9xonc^5Kjvj`mox4)CXFPe}kh|8vV=yU-&&$b72$r+a$HF#?{3g=(iMTJK@J
zPYZ=t!IYY0rBVzrkd7SAwC&d6f%e~T_jvmkRhE}i1u83g=WqC^;X(bn_j2zZ9;Uv$
z`;QW}9X!}zp(F&$Y<eD?M60F7DJ(MhA)WuBrZFXLiNTl!b%nyXZsZRcQdP56i9J+I
zKEI!*DD}90i|d6siZXJpqMV$qC>wC^1U!rQgqsv)(|q9F3_M)F$2ACXlW<ML^(3x;
z;(8D`A0zF~8x`e-d5RLO?|gR^b4r}L=c3~2zk6wwX9as687l26DP;c`JVlx&T`3Kd
zE|*qH3#416k<wk#-O{yEK#vISG{Fy-dvKypq=ADy@Fp)Y__1|B&e5YsOROj<d2}+a
zt0m%A8Z~N^e|y2~IX7me%^Wp*PTGxg{IMC=r_Y_4Icv_S%vl*+f5r3XP$KCmP3oQG
zbh0r*jNJNBqK3VEU_kdAGm2k@yNo?;CqY!u?tZa;4pl2$%<XIqDpgie#{DFJ#naPr
z({3E;RA)+D1S6ed%Ap29GA%bJZMIroaBFZItF=du^mDCEPth|5sC>~xyeV`h5CaBv
zsuD8$0XW}RC`!h1MTz$)%Aq<%d8k%VhF2>}!wZU1fombIi*QB!Sy3VZzk6O${*7xt
zuHWLCgUk1vq8!EbF0SpkrU3U|z`p>WZzSRC=6o?9omlZnK1KRw`|H}HM?*g^q-P>}
z2+iDChU5vlG@akU>{2btUd*=DpnOT&*uq|KfTOOJV(5~xUr=cx(Qonm6e<>@ZP`0M
z95Ha+wI|np=Jd<NqzBcN0SzDI0|X4u0rrYNQ^^;PJlNVkNu1rNPtya|XG+RzYf2@_
zbg^af>L^K~*ZTIa>QbJ<{m7Osr8ruW?gm@~cm$Bn`MmjoF6AWPmeww1q)n3Y)^;g%
zfETxQDH{h$(iI1~lt-PCGzKu^N=Z8UewT9iDoMKPV3*Q9Qj+$3-lfEilBD%!ud*NI
zYyvz27-#V+Ucf<s_C6>da0uWOz!bn8fO9Au;Z>>t%K;k!*8r{qjEnRtI{^0s(x)NT
z^g({W+-R@j0vr_MRmuTZ#(I^fD88>(`5thS&8v*0^GjvG7=!_f>0ng5S6L5u0+7Cs
zyr!R5amJ$D{$8aNFfQJ!Yz7<zxC?O2K;(}Dyuhoh0o;Ef@&O(O>;T+!5$XrH@?zAl
zFX#?JeE=6;;#KMar(Eh)_5zk)=2fha=Nc#I0*<`gt3=2sZy3r2^bYqbTLD*&M!oDP
zXAJ5OI4H@hyaX7RjPd~20NNeMf3;Vc0+>72tE>hr9|yiDemvyV4|o&2iU;t-HOL1z
zB?aa6M?9bt@G#&Mz#S7IKfv{qAQ!-ulhJ;F3#Xu71h4ff^W(uE;7Y*tso;lTI`|j>
zx*1+&9N=NVa=<v+Zwa_Q8|6T6rd)@3z!QL;3y_}YRgM8}x&i44;CD9K9dO}oUgZ#A
z?o!C(LX-!%8gSu#hzE>YgLc0N^bUd!;Qo&wN5J)8d6oE!f&aBv$s^c}dJwdCD_+33
zq1{UEAjlE00C3@iZl#^V)4G+oOF-xTZe<PN;oo*EX8=c@?N(fuB5e05j}jc}Q|Qgp
z^;i3pb(f(YIX<NWusqMFj6;7I)aX+-0ZwW1DeZvk0nY$>0Y?r-e6vrP16U4N1-KHh
z5pX@=I=~%(n*hCl?SO;s_bDGxKEMu22XtPJ@M@n@4!8;MDZrI2KIIVL`n9mSS0MdC
zpE3w=KVS-A?n5XSa1&q^;Nf4OJiwKY_>`9b;~w=X2LRUqo&Y=nXdQy`9|Il0g@8$b
z>j5(W4+G8zjC&k>Q2G--rH#VB@+mt2r~Ddx1D3A`J)*M#<qriPPXZtC@bAGlg`f5*
zCjkfj(Wj&iLwF<T0uK6<PuWP}KSK_Hhc|%^#lPTF5-_fge9@=W18#cBr)&m{`>Rjc
z1(*wX2yo@gK83zUG4d6kQVe)v8_ENW+X21+*SzXe;zj`fHOLciKj1jP9j~LE0oUwA
zy8)K(MZI9(a`&Npz)k=5DN|tQ)_m?$)&LIb^eJ}OyYer6iVJYcS3bo9IPyEx1NLv^
zrHb+t;1nmuQ?iGH6{TP_${DICn*mo|1wVES_)CEw3%Gu&q8tPCPJ=I-1b)+j4>&R#
zbdspwD2g>1>F{Sy0G_x7{_NGjTZl0paOACuvIEe2o1&ZnEMJ8DV?noAQFak5Q4}xW
ziN%UCZXEE-6lE`<7w~()!%Gw;WjyLvt|%VB6TeiH!vuc~|6v07{jH+p0>=Fg`~vO=
z+zMF!B<KQq0h6wQy#A;tj{<sMLp<Qfc9fR_`g;{+Jz%^T*GzZbD4FW)ri<hHSldjJ
zL~rNPiNekmT}lCcHOgksvL(!rW0za&rE4#meC607ms37EnV5W=y<He*1T8wXcs{OO
zh%2Co44ZRhjLqtb<@hw#TfJRMw7{o0IuIlxD2~3BCF$ab?q(K+F_6=>n{NQ&>tb2j
zeq04!EzN0OfV8w&MvD%t+l9159eppZBZ#|1#5pM*bw7c)l@yU?vp1OUVMG?=e-8Lh
zMKqmd;p*;EUM8IBHv5C-Ok2WQ%XFJ_O+<z*u{kosmedfHZA&#*$Jmn6Y>8<$=X6^F
zFsIwBS+T4fI!SOBXtbNua<XknmP<@AHhY@QIwO{F)+4Pz3C0;AaIzQ<rFkW<@~+0O
zxeTn%iZ#!%(TPe>CFvM&Hk!Q3ErL$7Im4FFU?B;0#@G_lMUgq$eR`~vOYLulj{<*T
zkBQfFtvSb*u!izAQ#~6Zvuy?D6EU{Lbel6xt>5%mGuk>aOBY3QBR=TVkGzQU<Ad@&
zg?x4JGoFxo<XfcSrUm9B{XL9)?eMQ|2+W7pFuQCCX$+O{A}n-3XO~i>;pGq>YGt0S
z;?d#UBY`)hzDrpV*zTFs?%CAtY1HoK1xz4XgG&<SEk)i!<h@ms<#bJ!X(UVJwd9y=
zi5WV<iS~O6c@t3oxuV=PRF7uL+YnKMN@p|V8L?@MS%1F6$d`(Ij~V1M-=$@ouFpvM
z;v=9h=b6t1)Li7VM|qXsi8?++@_CT@#oCDJw!}45$L6RsTS`Np40Mj$Vr(fHtba_`
zi7O+P*^_mkRSci<U&O;=;vt=QNMk(AjCs?Rkg*&1`vdBo@#gOR1%%OTS!3pQ=?Lg}
zLFW;zE@^%`(__?}*|D>=dl2NBg!{}`VJi|NC25Y;tJyf37ED209^y*PA?lk!_06FA
zx@`3(%iZX?DQP`woE2-XMM74O1eh*qA+<lsnGb(jk<@agQ#qM|<uJLD(Q(;aGi-U;
zw)yF{f;3y{bX!%9Ej8Cr*sfTTQ3U1zXFz`n)nf+fe;VmO8Jjp$jM@WSvF0@hWU)YI
zta-l8`sQvIG~Pm|qLYkrLFZ(gUq%#HfVdNg+pCN7AZ{b(1G_{V*;JYj6=QBtuGt2a
z2i8g%f`wv@o#|wf#eH_HM0TC#H*J_tEDh}M**2$JBQYbE>%|%1egNF}G`-02>-c<4
z7qVh=wfnT#1)L1i7ixdvo#sZEvy9ekG)R=HRy-?4*rpl$W@c=5jHrniZ|aeMp~I_O
zO8Lzz1OaoVnvwd|Q^2|J?k<H+%$62u?Qhht(rl@gLX%NbOT3Ss1g!)2bSe9K)mhO;
z^DNJrL(rnSPr*$)c>kro?&dVkdQR*rwW_zNF}lhZAj?YRcVd3`o~38sM4{%#V{Fb0
zRr=S((!l1_`g(e7i9VPWTYzA?zYmi>QvXL8>oHgSQnS06fp$0BmS=uBCeZF?QmY5V
zq!T?lm^cZ}$dm-HvMQ>l{4zE9rE~dJSuDm~en#vp!+2M$Wx2^#HwV@t&9>S!-PVR{
z9qu>a+K6j2uC2J*O*ytIs$Y9F`L<qVM&P)TrqvIvXl{;SK1iCscz4jK&FV)!lpS;L
zk(d+bP``i#=EX3VMWW|)G+!@3+E;<LG=sNSn~9p<-(Z=sG`1EX&mhdLJ(_>An0bN)
z>_5Z|gHL^THSj#ZTd(2W9wQn87-pAnADIrn1l$hbUZ9OLtUqLFZQ$<@S&*3dW<%ST
z&ia-FqB{nkBdxa3w5Sfbpw)Ic=GmJ4NfUm`Y`tqD(SC<Iz#&(7m4ycF=Hl(P!DPNZ
zNDZ@lDCTvsML{u;R!&e98j#97LH_rUUdyciIm;w{D!^di9pcxg8)JCqq_mYtOB!mN
zwhn2<25BRy{gJkAsNQzF{9}5#Hg;!_z7YN~`fALubH|VGi}B$+@H2qFarn96)4a$7
z{P~Gq<&3bw4^lhm=MQP>`~l-fQbyqX0VD5@p0R1_cya)=y;pjbhl!V)`J6!=kFtdy
z{ylK&u7aPY@yq->7x7yi<L|#k+Wquc;+xhVk6iWt4&SRmyK!{yd~c#pa*jDazUh4V
zW5`#Ed?QUg+h+#GnL7PIl1;;veq1Tkk1I5lVLn-kjCN1*DvbtxDTDW=RC9fh-OY@h
z7Zf8pPI^FpBfGQ?^gYR5<xxw3T{0T;XTrjN0kf2DV3ye2;}~e|9p_b^lT=<^f%7;R
zw3?pXS0bOy35RXTiY~>P+Oy5mv^Jk%+hDfb9A(>Ro@Lt%jIHJ@TRX13uz&|}9l~`4
zR|l?>z}a91(s>}~0r`e=M7C6?^q6$RM<e@(x>P|92@$>3g&OYHJvB8e_Ijg8%QYsW
zXeRfC4#+PB^VZN~bJD^d3c>xBb;#Q|(W~4YDlc`jiXLY8)}X038#8IH(gAueP4X(2
z$A;A>2*6TlF&yVGRq+^VnoISM^7_H9XL^;RHnp6rP~~L9Kf1$g=m(|6UT3SDhtVkC
zR+j~|YmMC~xJxNkTis0@G0j#ri{~n^)qyx$zd8bb4$t-~zvttK9WyQTuo~`LP+WiL
z#vF`^@nPkX4PV0YyT}j@fbdQ7Xsy1~t2`Nf4)pRYUQ-A;6K}Ncf8-9YGGs;ot;|4L
z8JyNhlO;C7P)Zr9FMI;@+P8a^hay7iBYckh9+tq|9TYX4uMbTjnYDYBJ^ju>ry#pa
zj4R7@hx*GJ(5rvXtK8H}f0<*@Ur6qIk@u<hy~?+?5VF$GYpN^{8ncoXOSV0J0LJH|
zUd5-?E95%H4BHWtrO0aQFuBkIHv?uNrZ|LBi+1pU{+aJFPd*o&tM6yoW)3YknosWn
zy{*=6B~s!)s>30~y@a^2j^4@;y0gJ#nQsZvuPq;#G4r?y?UxUj1zaZYl!21;=!M<N
zwm#=l2b1~X5b~yV)<)2>4(?Vq=Jb?zW?<XRu(g>jubV>gdctN~hk;;&xqw07e(k^=
zYG_W!5Q6y=T!yW<+A-a4BR7U#6^OV1^|>ALyC9(aOvAdgnJg!b+an{^f?3Tv69z+5
z24s~kW@{O2w$^51ZC`~l4%c@pc?&|+RbN)S$#Sc)A<kCqO*_&1xLesYFl;+h?_O+3
z?K<9{<KTFwp6XUkpQA1OE-Ex{v`)Ve^iD?klo#WA8w)a29kKXATKP?8%!Y4*4D$iA
zfLj7M58(npmN(m?!$?ESED=^Qa&+M=T{vH)i@s^6XPo_f%B%~{q3@%8=0}HG#pLZ%
zK=elVlzXD29(E}+SO!(J#9`disZVbLt)wKMvUzN8<ALxAH#jU2#_f|CYZ>3yw$U-&
zw%LI`?LdEVu;)N=7fI6nFZiG1NW#9*^WD-SpK_7-b_@C9DTwnF`}o?r-xp6)*QC`&
z8tzEXVrxdUhEPS%hLP`P$``Okce}Q@m>xSvoi4L={HKs-FY-(b%yYfXna`+a0FOQY
z0p1bdT_Nxq%!RC6_WTEF-y_YctCtsXClS|Q7iXtu)QF4M#SKB6)$LP~b#W<(8;7`l
zy0~1#rMms}NKOTa%SBv`q>gDl)}NBhHwTVs%>PHeN0F~y<kLTEU~{c(_N-xcOz?b4
z@A+oitnB#@Xzc~9BCW0b>o#*^R1s#!F4sLjptc%B4pfOxc{8w$Sw0khi+-L&gB!I~
z-XMCm=~Eo!V`NYpSl&0WXJ?ijrWoEasIBUN_vr0D{)_>5HT+Q>OM4V)2}^v+10t<d
zm$n&cYml}|q}{4Z+mE!9NLwh<ZjSNu)q%8e<vwMwMdK^q#JoVubdy-)V(VX*z^|$F
zDZdmnmh0$`L|S{LF<&mEjjJ-|s~BnPkTy@G%@%2-GxfB`0cmU>{Cu08;vPlZ8N^MZ
zxJ5i}BjSeK;Zr71+-*E=2jcP&N9I6Uz~c@eZYAPqT|$~;vpcE%seHuIC+vCM&37|5
zID<C`tzB6!g&$GvQ=T+Sf$Q&1OQu;{Xitl!elZTXu3DdRCDF6=H`(m`IdU%I3zk8~
zEIx+C)7+yN@pa36%5#BpStGkeD^QjsbBNh2tssPWPD17HM>*|x2J*%9AMuCo@+ob>
z&la3jx^+2nQA9N}W0~z9bQ$`=-9DwvEQKFi^UUrLqZb=jN<nMRDxdPMDWE?G%{|T8
z`u?23R!u$)>f$ce23tYzgZe;OQ#l7{FU-9^UpY=FP<caOIixQsh;MB4DNQ|}<vyZ&
zM#FH6f!opKQ^xnyt$&(yx<$Iu23+s`J|!yR9CW3vH(mKLq^?lkpuIp(wZblIYeN3<
z%aUM<(c3ll{BJPEk2OApZ8*J)_q8dAOI_>llWhJ+dx{WuWhkA=2$&PG^<<+d8$DlH
z4_bK-`IHwzJu_w!m}&}|61mi8Q-_hiz0Ie*+-v?!!~7(pL6@U`zwjxS7|4j$0klOn
zG1lb*Kj{&l;?eN^&vR&)`=x%sV5M-`HX>i$qdw&&F>X@aI>ZfmOpJdLpVMqYTpQv#
zq@KEw8LS(w8biru$C~Sn^r8SH<KQ?rANMK$8~7|B#N6HduAzcK^VS-wBwyE~Jzr~#
zePeJXUHIo4O>En?olI=o#!So`+niux+s?$sjcwf6wv)|&YpeF-Zhz`N-F?o3->L3;
zm~&0*zx>{Zn}46#sqPYP!uZ@6O_=wvI&Ux*onbIJYkh#mh&?-|v5a?Fhm(-_oWWri
z^1RLc-9Re1d6Q#vjY&Ib{7*8GHGRqaVf6Nhyj!>4cP|9)=j8WKlQ)jcEkbrfV5?&B
z6Wa0L?qfA1-D1Z(&XOI(;b{3)x~_=)I_P!ZHC=mV-;~L}4xBlqbuWUkdrdu4Pe3M0
zAi)gsoTqSEgTC3)1H>#qlU!-AQixKnG2vuGQgd>F!CbS-qFm-K@x`UleXa4SU1`+{
zZpsSRVeWv!mltf~(LMLp(|qMK$&TN644#sc>x-C5Mq=8X_KZ-q)l)Uju5rjYbwK+i
zLX+IOtF>B=*V{zt#p=iWZ*IL$PZMih=$|%UdO`;ae@$Nc-`8yY7{t{YJ{$&ia<d1s
zM4Di|srracoL`b~f0L)ec@&rWjDf2u`A#4_qN}bFOqa=J*23pM;)aD$vAgHzXUmw`
zgf~4oZvfI7f9=sUBC;bKIQE*it+dALm(~zdi>{I>z9m17xEzyfq*%pvz<dWmBC0mD
z)f?{#kLesg(6&4w+R$qobuOh{-D{8A4MTmme(Hj@QdV?oD(FOM#j4m^AO2AlkiZ&!
zAp#R28ViEO`PtYuQ>MgB5cnc%B+;_PDD^COsP(Y^d(JI$MKw_N%@BDNgOaP@s8vqy
zatTT(uVKS{PHMuO11WG=?E~Xr*QLnG=D*l8Ga1R?nebC+x-q$Yi)1Umg77C}CUJH5
z-aFHA?>@Eys5^2Jy?8bxqaqro{3W}Ge?GyH&s;N}$$z9Lv+bHz5^P`-`UTtzL(=o5
zH}NV^?s`Ni{xGZgU=A;fOYl<p;Qr3#8zdCl_-|5c?D0zYm3%qwOor6H_d`BYFnqJJ
z#RvHUX~vp(r*yXR{B}Yi>|>{Wr5%OJu_mGDSGFHP*1#M+<^f~ulf3ZNw+|X_-fXgG
zt{U>@(;&1HREbecw%{@;zv-o2VUg`btr*=*fzJ$H8rdZguB<qSBhfZyoSWpYz#IHV
zP~K#*=qR!JUX*{~Hl+HM!v?pfkXS$?_*8W<|N0c8eW$2E!LBWYd|Tb2tKu9Cw52Xb
z&9|&CcA8}9)hcnaM8CBos-#Jpw##A#nI>cY&XN(nateEoUzn|P*~18ZG>rZLrn8!!
z;eX!Q%>!0f_V%1#^F}=+UPg@l>SS9!(B|c{L1|aUPpkS**0rCnuu%;<aCJ5lEd_Sa
z84?{j9n;FdI`k2n9!V8@JU2zZoR?t~bgw%VF%gT(yF6aAnXPEdgYe!q*5)e+z7C_J
zO(WnFZ>>l-guTQs_NS5MF~BDHQ&_LhzQd(x_n@kTr!?GDi@exmY?qpzT5-b^i4ys3
zXVpPE^KI4Ktv)foRBh0NJ>_f%ibd3|^>q7Y)eX=0f8)4Er<#jSBX1AUJAK#3#!K;M
zC#t7AsZvhh)tVV&$?2mqqZYyG3FnEFKHGhzs!C2rUJF~3m2OJBs9<d#>dee<$B*m0
zEcVGL=Qewzp80o_jWO3b{cGtTB+-2F|Fn{y*F$`$ufi|&AcoC8asnvEQRI}6i-!rC
zfFVR+kV<c>uCZ7C?RcNQnFTSFg8OHo!gZ8#cRzkS>)NGg550T(+W~ne&{<9r^AVz?
zkmqDGF;EQ2`%l@Ut9QlIyU7Tq2?S)?l|!<FKtp6zLddPsz2XT%G&CR3xvDbPMKs#J
zOYL4H;VNXE%l#%XFb?SN<w3G2%6WmLhB-Qr(=fw}N65aAoj-dY+X8Q_!k}*3036}3
z0L$YeHJ-0<$ZoR!3Ie65YuBl``y?3uJhJz%p4@{}vU~bxfd27CJh)`!QyerLk9;pI
zxFsx)QZE`<D(niw_8zzp`8F090Nz8ncMtrN#yHs{-YYL)05XfjIK}I-Hh>bmf|`>P
z{<$?^8m3jEcN3fl<GM9K7!F5+Yz*5mEdU*I0?je!`!Oc;I-Oo1l#gUDBlsoObzT4v
z>RqLm#z_?P6D%B-N2Hel><CtyY?}=%6Us-w*9vljY}+0T8O}q$ml!Gr%?bwz<NrNf
z8JkM?{~<2m4w3=YF+E@sT!?9#9o!z(u_XW+N`Ptmo7YXI|3BJ(9Q<F}%8yLoTjhH#
z!HBW1alu+(TJ?H^!HKZ1rN9aYUy>l82&lFp!5Sg6sEs27#vyI7uARVgQ5~ZLI-mq-
zww=KIF<4}?g87wuO~C1PsY9PBr}iGJfA$K1soC$=srQn*#9kPSMm%rd3;fN|1rZ==
zMSG-1v_xGSq6(21m-h;@QP*`=2YrHptp`7^`miHYcTRpp5h4AFL{7tp%Hc!+{Rrgt
zX9h;Y2ev3~6Ru6(?4x+tfiqhm0~<qo^%$>jAqBl*I=wKj5aR$MFr9pX0B35T9892A
z@$C~5Fd8XPi|)DtGKUk=FtAq+L2c^=y!L`I?g%C@mHPTIETK{EfEl4nUBl1hS`{+K
z7aMp+49+a`_b#(*j}oraO_a%3Y?~Jfw8ZkDfZ`!ju<?xI;jS?yYV;$lx3S^@^ZrLj
zZ_<ME!0}f43juR;_TJ=GAh1s+FcnAgi%;Fl<Q0e-cmy}^j||&MH{1Oox=o1U@pQiD
zkwAL=2-lg+a`3P60Wr8mW1BLhZ=K<q3x@ZJhedb9v#_@@EWbr$n=<r-_zV)1F4#41
zqjvN7Xb;eW?~G%)KZOFFvV4>&Zm$k36v}QdhUR~>i4<~j1Xc0ge|+K-*up9=JdN&g
z*1szJEfFo8x6&nY1jDFaZ_#64ah43_Dhdsyf%`4-=FP!pe01>X@>3BUUl|mS@c!*p
zC{Ps2hgNmC#$qtbyA1dhtH|^QM0_xN|FkCs0!Susnd+K>^qLP6q(*vNJ`OGg2_l9x
zymk)66Qa1zK^WKyWbvTu>H@z4m>f5U_o<!OVS4nyiaEI82>b;}20op!+;fF|4_Bjm
zB-VBG88$>Mm;9@}9$-QWEPWk?HF+=b3VdoicJLM5UWDz0Abl5Z-k=LSLNKds@)S*T
zhKDrNNPC^a_6QeU&>EUQ#58#=mfNPhI3r}%*tSD511`SI3J)xB%WUfmtO~n<&@Fvj
zD&9lur(r9yo*oQq4E`G7^cZBPW_xx3yi{=n7ISh?@7lj*stDIfFCkbUy6pzj`PAR^
zt-0k-J|I474AnMiAb<wJf9;(k#y@Y$N-G?<bREiYRA|r3`cY~70+GGj4$I@g<g`O&
zTO%|Ly37L~@*6Q;?TXvYp(j#yzXd^;27Z-Lpl+0l%3H14TkMj}Q*}X)QoxG_Y-f@v
zQ|e>y-cN&N56Y|$bPuuq<2#=~>I<&Rqm1v%P?JOA)7P;jme)kO>%;JRd|L3UIhF@$
zG!Iyl>jk&6Rg=>l43Er#m3heKo{O{1npF)!L=z<qUOf##k8uxzg?F03WoCKb=?J$9
ztAXQjnLuppsZZF>t?)*F@LH0XF5#k@$}UXHPx|Y_tCP)|3rr9Er$^BA;zP%aLwNdE
z#eIL(vYqBKG2o#asX=ACdVSqnkPD_$$K>8MyZ6m4?a><D!_MS<=C_-Hi_+DF3iGwT
z!_y`8Qu!^s8L)EU5vGv2xFTzy`U|$R2<40}<BR$_%XDMxR3tuFAh3lm#=r$upyQgK
z8CDXVMPu=eJ7&2}y%Qs_MQ5gi1=29FLd#^hMf@*Fuj{N_?HlNsUvQm=EU#8t50ph;
z{ec?W5~1~CiM=*3^-OuI!u4^v)cf2tI10T<;0`WnkH_De*5tT+8rix3eoG9TnR9~2
z<L7oY9Qjcfc&!=W>Mq?qPz%#?W2<5}^tx8PbMl+gZ95DPH<QzPk?rD;EC;7LCWIWW
zFHDa}ljCZn;L;cW)4O~WuZrDoY&Krq*Gy}GPZOC6>J^s?<vNFc%k=7v<=`8gM&W(q
z=pIS^FW*w;$ogg)PIO8wh}`QdoBs9Bg&+ge*Cdvom+m#(*mtH(<uh4iyP=CtJahC@
zj_@<LS@<<XFjfGPYYs9%c#oM}+0S#!<@o(|qrpM?>uSI9BkqT6#mC(jew)k3Ce_-`
zPi|yro7u(MYaFXiZ6J*7SK~|vL~T04oiM|kS_^JzF51bXbtCBqTA$Gy<?zdy_-lg5
z@O$W6=-f1C&}A6Ohwa;~0Q_^CpU7+53qR6bw_wY8xy~2&hpQws9NEK{*+*0E&d&Cu
zzv{6S2x|EC=A0|vKXUk_n#^~=aqr%l(-%ew+0So=W=sjsI?F#{gc*@laT?_WN(-kH
zSz|tX_#idncKrv=Q7-A+1?ikW^}e2C!YYfwh5tk91L%uO|Ml*%2ODy8A@8}fcB(PJ
z<$bjlfqm{rJaWO8osgUTef$K>x&H<4(K2zoIP|~w!@Z-wA3dLh{51E}^8Wq?O<L=D
zpo8a>wHlLa5UK|?^CjWc75Fr6SkJf4PptmwNvVHeU!YceVI<#!{BP}_uU@AYP2U;P
z>}`p=x9DCSg!gXELVbB=ws-{j1$`6QS-qDwP^X*<fwA4go^GnQi!x?OKt6N_S8RTR
zP$DAX)6;tL`w`kgV4Nb=e&kQZNAkvJmB7|L$<mna3`ZcUouJ8JyeyHh=o&?N4s~ig
z-Nmc7r)}a&H6VEV)eu!vxW!98WO3T99CThS+V)Sw`I#Oy#|1k4Z7{FYtK+<x=shf2
z>&d(7HDXJ8*x}?9rmwa!xkc_q-0a;s?CM#3$iX{t&q0519vF3Nh%xE?Zh_<i>2LPW
zsnt*(@N}_vZF}7y`=38?d<@1xvE;S;7HW`iod2^XrcuW5O-Ho%fd3~l-Y0QL>XI4m
z&-kxvF3hhHsyN|)Kr{1C`Y`i0nkqTuwv$Sd7P+~;zbx2Bc$x4=ru?tN`S2xsehAq%
z$@Uj_Ah!RK9#T`uqZCc$xS!H}34e;`A}6qgDH=<2OMJXK%SIA>1W;&*i>GLK6tRwL
ze~z$M2DlNU`XekxX?v4)_#0zg5_hIu(pOKF*`RtwhBE!L-^1|tZ?k4O!kn2N*@r(N
z*o+x>^rw;K(n&3xiktj)vf7`DNyx-i@T1}xM^Q1>@x@`1ar_BCkK3bRJ_RR|b$mw?
zB%uoo&x(U5T`q(7q?x^O^bcX$&8Gl9LBSYIh|$JfER%CYgsT$r14&(Jk=qE$)n6?H
zl8>GZutXJ!GOlpI+oTNa@mk^Kv3Ux9kaG-Td?ASz$LVrNEU*}c(@FUXifY~d0g`S8
z&q%9nL8Df<An3*^Czca;ovB>$K&nVlW}2_1`{wQurzJ=k*fkLSH~9kyp9YXpU>TJ{
z(Y=Tup<B+_Hv(&%ydh%~Z<C*$mUhiLhFB&^9uUJPSf{c3fo$h`UNqw-(6m~gD%w_p
zqZ(Zu=bE_9FlE&dTxF`BGwMZfaFH0MQn?wwj#?yzRest>|K~lC@nZUp<h{&J6D`<h
z2SeQ6iY#H@9Bmni3bpdRUmbD{_ZR>D4k`ODsAeH@A8|_gdUd$y50%&p=E)DTA4v22
z6f`~yj3sh3L*^NsJC=~x)_of3Fih&f*m{7(;rO3cPP+Ng3DIv3;^IBvO@90H*xdtv
zUN?6|k8wHgQE0?JRS;uEYfoLA2ySfI5b+^I5nB&s%ufG%P0#{a%@kumZ6t(vr}tg}
zGUl>=uVHfj>E-;F>XG5i5sKz%y-Po15<Q+=7o%a|T6;Cqm8DRof3HUs<t)TT@YJF3
zbOU;0+NGMuUN`-beh`S-*&yz4D-hMG9($hZhbq}N`nzvA__uA`n5hVnXyd|+P6X+r
zB&st~Q7t|t^&bnzlwO7*1Hp*<`Bj*d-C={DhkY;bui)xqLkj{^VgNbStp<2te!Cfw
z$gH9#8(GEPiI5=KZd_)>MTF4?c=^YF>^5()G{<oxFzxk-tm#wW&95e|$r`~zS;4I$
z7RQDqBDMee`H&j6r0KYCWa>;i=FC@-H%9%%H*L-2v9m2S6vh?F88fZ3!-U9tLiKO=
ztu00NCCyVx>wZFt3!uPohH%CVI=d7pvnG8ve1OQ$yrI%lq?j)Wr(0bRspI2ChgyNo
zAb7gjmJ9Kz4|``JHOePN=YAx`yVW{2dbH$R^!z9;TeugwB0o#xzIK?k^PRO*h|6B`
zRuSXHAC2QCi=Xu%$rT;o0lEIcq8{;8VFogNyMN|=X&h;x&<<)@3HTq^p7K*EM)zjq
z<63Zaqu!w#%CC6%5)$cB`(=3_d4J5xR5%Mnxt|kXGlqo=coN<(-}L<Bl}={{GXC7|
z3M@@fCGkh*bnMKXiTznFKw!Ce(+7ox@K56w6(KNA>>v1kdD6+g08p3^7YF(Dz%3Z%
zIYLE`aXs%>T>RVW$%xMjV=Hmoz{jx!(CzjwJIXVK5Z(gU$SNWX!G%(6y~^WeR4=RM
z#iTQV52Tb-kGD!_wet`QWcRsVsPo#v`YY*m?4A%`pROOC*9p&1h40VqM!Y~`f@$)D
zKR#BN;KGmVlF+Clly%N=xlEm4q3$F8dO^Lb@D38&MLu}3$H(p0%rIG_x^O+foi0cE
zHq4SL>{`(>y~}Xb>XNFx>jZ*szmAh$8nvYXMi|-;P$BuYe56^}%veVxcOtFR-Cvjt
z`G5Z8oU_T#s!TzaNdkYS2DmA^<JR~XO1h0mIERv3&%hzc<^LU()yqfLszOL)Xd4)m
zh`(wUk&g|gjj&VZ6nNe5^u3e}0?NUv1+<N2eemsb$upqk6e0;(yy9?(s@N!*CL~#w
z2JefJY#AhHEKj8fJ3z_Dz3&qyN9C0Yksvfk!jfk!>tC5NvS&m;ZBi{Btz>kJB;eCi
zzq^avDr|4*gL2WTj(-=ePmQxsq^0UgHv&5Y{FBfoIA?+Cg52J=%q)UEaNu0aY<%vc
ztA7J#*yQ+qIrn7{SPq2|?sZ3hX7qh&qb~;4^xY%Zi<=^B^1GPmPbwi2peoFoaqJ^t
zrXM+8c0*b#Ay1fD-*Gfm{KpZ<58pNV9@Ck)0|Gjh6Myx`i$E8qfAL(mAnehGi9C3W
z#-qYQ7=w87vQ5sH#@@8)qeiD+Sej<vsn?GXF6gVvgjl^eL~ha0R;cv8aQeGgB!>v`
z&6J_e@V14Rjm90>IXCo7!DkEh0w06)`)9^Do4h%jtkQ&ac!{ku51J7!P!TV95o2c$
zT774VCz#iaOj>LAz8Fh<KNqyv|GXxCh^4$Tr>x-?);A(f<-F8F_!*ZQuvW~B#9ceD
zO!V?zapl?J{#3Z^L_QpSZ^*)t(~$&LRJDOOz}#A)`~uM>{g<t<=kzu9-yG{vZrO?*
z#29YuZ^=E{h>vb<#!_g*D$ln7Xx!n#dOEXd;E#x$SfQy$itWqoWQ9tnFS?#wKCGu&
zL=r?-!_b|jcfKQYLbS<?_wFp7Ro-nW%{VRka9g19soCp4d~k9bKeOHgr;tpX(p|+x
z$MmoVIa}~GE9|a5$!foG6f2>Uut&2dwlAp=Dk~EPE~zwV)h$sL)T!Xrk{|Q(q5CMM
zE6m{vj*JzI2?Xe7I+^Ws*qcneR8DdybO0^sxY16nar|Gs8U5g}w_I%3^DAZN$y?!i
zN3AJPVIw`F{(z!kHlTsu->@_eXv`#vt5D*Dv?*}fTPt&!c^wjsPe{LZ@?fWJvSNz$
zbwx|w`8h~f9`td?T*lHz$`kVkjfaA~S~_v}mYBEPNMBm$cjxeN!%63b2g*fT*xr;Z
zmzkzGTnHjFnx4zbD4)!*;mbtM*p8J96a}MhR$jWoFOq@7HWPkAqBqK98ogPzI9;r|
zu{I7gMl-OE_a9WuaR&^4NP481eiFj-957o4X!i|oh`;FJ=mN8EW#}U-FeVRLqoGvy
zwG*dgv84Y-OOZHo6RUm4$k1*KsNU{FN379FdUbaOhV^)1(foPqUv}OY2QR)QSD*4_
zP^R=p?3tPE1$VpEnsJaKFVtlAM}h)y)Klp&YV|_6ax^A$y`U6VS$Zywj;iNkVXcrL
z50C761VC|($+*EZHS}6~va})EXe+dgIf&N8H8T_&bmO6u0)rXqwEThyqQbSe13II^
zdbzN8D0*D5!I2w#QPUN(oCW&932)aa&ZKm<iwNZC9&zBaM(F}Podu@WfytbyKCy09
zNRD7p(%L<{jOJr}p`Mw0%bk((iFX#aU`u*yDicKlK!-x=0YKv3$ggLEEu*@nZVYt-
zd~uuUyto_lo>Xm{ub-c5S2`pj_MxdK&k*PZYD7@g?gE_KW=m@jEJ3_Emb5a?)#!m%
z=jLxa*Qi$bxF_l_{9|_vg@=h*g`@D#Ne58rVJ5(mW4>J*NKdV4*lw&pfQQcQGw2mw
zApFO#=f1ReS3!j-##Q%}7v@?2;)%PRVtzw&(S&^hv}ZYe(OX{?nD@U>e?0$tvD9OT
zO<uiR!TTT{^TBk>)7k~9I3zaCz7edW$-X9DZFdF{6keocyPtCTTYQy|>)U2eT%N7?
zlO;X^M%GrZ;OJjmZl7k3{KQ@p)@eo?jZI$>-DXslHD5eY&bcT04s&mJ^w~lY7{Of4
z&9l#f%UEOEVV{1@%M5;)UF^e-(Wa3<#hcZX?dzUDN`Jf!`}#uZwBW(5>`svx12DC)
zWIil*%A|S&FCC69!oZ^l2AN*oT;ApuoNpaQb-LG!*4AeCNw*4rgrg=I@miPgz94g}
zezEb!@zGc$3i`<wp?lE)%;GSFo4?d1F2+0w0)H_WhkESIla)dMn<-?XazR&qqE3u5
zDZBHlf-Gpejbw5WV-Pc$&*$*RhRRN?bnd@!CO=Xh(38m1Zzm$&|E3)AC6r=)?Yc<h
z6ofn{A1k5s<o%P5%3a9aOi^b@+O56VE50(%%!j|h^(_N$`wFrjI=Uy7bU`khADTWF
z8@dVVQGxIN>73H1J2>5-y!!F47jDqVpO(_B^E8J<2BHdyHF#3u4KYGfj6V+uVY;9U
zUxEc;x;R7ooDH$NF!Lq00tk@OaJ|~<U<9BiPL?Fu_Rm33Q2eCn`wvVk0qR5|gkw%w
z77{~T_Sirqii4Ie>VFPG6e##8zp@pTdTix-pQu;itBI`DOrM^kmm^Pm_o;MtD-i$F
zL^`|6c&GeQHqPV%WQ7oG7;RD&*DP>>c_9$pEd4bzELB`s?QNusVwm->gjFWav^swV
zI0Y4phBvuNr2J$_AT4WTdA#+pob2w62X$<e%&0AfHi{EPFU>AoSv&>x;0F=&U{1-B
z+~~Gw?!3A{ab!We6_>j=HAR_rN4?Y}tr*4(cii<R<&WK*eHVPa1Z^|8#G`@|yK@&y
zmGo`5g%-8SUHg7x-7r_T4UVF9w_?{=f3o7e3K~b*?BT!O)(bM#2V(}m0Ik_YzAJBX
zBkxyA{pbA$BP?MWb1NC{`g2npW-IXvg!6_;P3gZ8*5!O@E|LrI@dx-4!ezbnW;xi8
zb27Qcye$g&s+$b#c|#)#s+u<GR-UuK!<z(83F2o-vK|cwyLjlg7+s@&T><las2;|a
z>xJ%VaGlqn74t5HNG_@X)X7F*2f4%XgDz%5$jSax$w#kj_EfuBFe>dY!}%r5;)<ja
zujXODjCkeBXT<3*q@H+X^$oZlB*`y2kuQyBaPjQtm<9udN5s1LFG^b-65>Q(k6Pg)
z$yBw|0=|}`zmm{cVv2mP6ckL=g(2PH)N_->l-?+JyTx}v*bn5V1$W#9Vauv4*gK+0
z#Rr)=JL+t87=m=y9t=wwd?t@5&n5y(;<_e#Rj@Lq7Vtr-P<hk?ix>j)2!;|%1Q7@m
z<P}f3>?{vB78eSt)wx2txQj&XBPV7BWJx<}dwlaT{4)`D*uJl!6pN)_oV)fVfn+Qc
z7b^L}m%67AfwgKV<fv{3^5@spW!nZb8H~0pN6=`<e&QyoUfy5Ju8X>X2^m#dNPC}T
zPk&HHhgVX`qGMXO1$0J*Ve|NCPFdkfGASC&%@|smEr09!L)yy68YrrFUK+sMpr`#_
zUt!5Oc_pHR|214nfK4$t*>*QvO(?1k2Z%9-uYDRfUkqR*(}4H^AwKxrje)oVcl4$A
zyb;8XhKkQ0k4A6*U#KG^XVm&H8td}ugH^PGMAt8eg9k-v70%{{<%J3r1~ye6!4d9%
zzZp{LM^*+IyvU(qs#UXfC{VcbJ4~7$>t9ocQ5U1jk!h-I3`W%P+nuYu*&h%lE%cC0
zf77_VECr{J9ZM|ymFF~&Tu?4~owr`|!cogj=xQdaDKi!)eb8~Z<`wq&X&D3XFmwBz
zE_47vMBX>Sa{$3)f}<3r!{qZ51F<cgc9aI~-asmjt1;3V?D;<iZb+jN9#Zz>7?QwN
z1IW5qp_8OM)AZMD`G(ls^0<-tCARpWS*|tR#{?sr$_ul5mV$z`_RJcSj&9rgqgS+I
z{BfCJE&feyy>j~I`Pjb_sq{=?`1_C&WllHFmv6JiveXo&(D59Vb`^%N($(CA3Gj&V
z^DjWkvDG7{hOpNC!J7j8Hl~(q|MBv2Dzci^e_-MYPKBe5mTjvW?G}{Y{xTZN6!a1X
zNlxb2I<b3yP|q@5DN)OvoX9#2r0c~sGf0BE{ZI58z=KBaKlDNcaRw9Bm^MiNA}Z>}
zeJEwG(-H!N%yCxRe_iDplXb)vc;!x0Ag=1vqt9a`p4*m+-^$C8t-VndgN>5?J~+?9
z;U#3ui%!bMXZ(YMSpY_3OWsD(WC3vGDt5h+4#LUYB!5)2{tU3>Ulm*=bD<2qUhNX^
zm71mBZ-CF{&YxH}*W+BxUx{0o=(gK`Z-l0lmqWi0o&P-V6B3U}@8)-jXjMgN>t=F^
z#6cs+cH9#|h?Tg*e61-tCiT|-Z|ui2mKtD$h$#9YJ-<78p>CDD;P=q^g#_MSgA`YP
zqC9OjOaLSpg?I8DsVpFOQ)u=~R%>!zNXDRS7DKQ_2}|usdy9HO;6lykR@6X|sMFUh
zw^P|aQ@rSPA(Sk9Mo8g%?Gz5g-^3{5+(y(<nd_zS1vA_cRF)U)kgUB=@~o%|`+Ox1
zU=exxL-!^_ZN6%4VJCWGl55@R`h6HbX1m*1B6P{qM30ucs~cfTI<h(eZwy?agX58S
z;|s_b;VnH;lkD832>{w$H^nBtGr;KT!C+ZqO}^&DO?l&IIFp%T6`#$2BRBB>rAs<0
za%d7{Z_4Oxkl^V$H}QkkiMg}W)^Z|`3RTxf@I}UHWhWF&Dk8EZ?CF4h*hf3?9`e;!
zCOCwxnWZ{k3P<+1Nh%JkOqUY3<b<nl(A0^ZuD2ytiOLQ|$ooS&+?*;_S=hBx&kj)!
zw`iTtOd+)f2b6GReNPln>z*<}(l;7^s3+vG#Cu!9hx0oznhn*&6`5=6b!$B%E2iWy
z#Y-Gqh)`{j_Gl``%v`jkgI$O+2To0G84D)zVTXX8wn&B63sYt;(j=MFHk3;qvc83N
z7qT`MNYviw3ACw=zP{zuhs~&iwnp3;>W9tfg7s6_(*4x75>s$nNf><l2T@sW-3rRe
zf9n3hVv*Vx*CZ?t^yGh^et*vnNBz2{pU9lOhR6d}9UzHG$EWX#8L8V;r04&(iH6u%
z@3rD8(59O07?Vy4@pH@iB|DF$E*LL%MQ?eLl+{S2@^E536`3^1`G^__H+l4^h*JzQ
zpM^_K=}3zgoLXWoBpW2EcTmkl%uwnypA|@o7e(Y(%{;MACUijl4-QBX=?vyHI=aOb
zTjeAvEK$vT;YY38IZy{Ry75kr4Km7wo;Y5Lm>35~m!Iv){b!1+NvPi9{#>~KqK?qr
zl3EyVH;08{_eD-YPay0FQ=YzjqH9ZKx{$z7GsAOQo@sNBU2^w9Ui(EH`?T5l`#TiJ
zluHGSFbc63aF^yaXomB$0l#}Yy6D=H=H)`BVrYM1z=7S)K$=f$5OgMIImN=zn3ojF
zTXH45p9I(bY-L(XWAqyg)d0%mWe(;$*J9X(#rKJ^SWewhr+;2VKitJN1qy0xrDu}5
zAe?6zt2@P<3#topc8<F^E&?=m8@x~g^#Pf103UG7{9UVrsv#kWes_v{;Gkb>3+@Np
z_Xdge(iV|+3+~1U!$wd|h2OfT$0=wRVMSzu5?jQ4O|$HR8c^rvksomAJ1)vNY^4!S
zh{cGJtFb|P>kh-KH10%M-}R1Sk`<{BXk6EVDNx@(zZ2xoj9_z`zX))E<n0NH6g~fQ
zW#b$Tg(-So=YZ&T7UUUQ7vtamM5Mq6cNp#GI@SVh>Q*p;yQPWu7al8;&C0i>02Ld4
z*Jdm3M4SP05Xy+};WNmBjOlGJOa@c3Pd0%|o?N>=tj0{WpL;=|QI=|wWn#M}Sq0_l
ztrGV&eKjl9K6r8!c{ee#SPwVnzDB%Cd4}v?7KIP}Y}|!-S6D5=#R`)KgTkAT1phx9
z%1ys3o9oD<|DudVV8((0f1a2}oXD~*`|9RGM2dAdgOa4PS}%(JNx^fCs$o<;9+#xf
zkD@+|SpBBR)<#A$--~;o_zkJ{aa;<NF3IVMD^syuxf^X6(u?f*a|dsUKITz7JrDlC
z{ku<LwgQSf)J|Vp?g+1ze2kZ4cknD?PN811GmhpeKN?S1JU(szzg;($?vM#VL+Cx`
zq|%7xvYx!*h+4~2Bs?N-XF!a1mX~C$yZnco+Pa}vNKIk+&sy6O!(&N8Qd&kSq)4gJ
z#)l==TeE$E*SfoivpB1i?t{KNtT`QyfW4zT^9u<rmIplEv;q`0fNGU8hql^+wuBbj
z10|=;EK14R42nKSGHs`V7DraO7)B^&tnn!WDLvlk0>`bnL}A+PoKKZChZ>f|sDxP>
zT~Uo1M@qTXFBn=ppgP5riGZ3Xha|RwF<p|EjtZ+<A?+?LoyjTEt&&8sJZC{(L0L?>
zCQpxZiDuFjZH4jJY)%<n$-g;kHTB5_?tPEw-)a5XBLy<@3KRe%S46clYdCFJMzwW4
zbk6j0fFqJxnpbkW!mN4;*32S9#_+;``GG{U{7}LJh5>M)nd2HmVOd*w3!$W@a8-F$
zzJzLqpv@Xf&1Lqsv00%P&fdHN&eP?-O>IHP6<uwSReaLolm-e>;x5hE5|uNzyxBZT
z0zOR_xw6u1EV$92OfTn0Wr2kJ!L}{-nI@UPMpH<6$1g0crexZrg5Uy;H7Z9!P4)+#
zDHB1pW{y{^&5CNw2Rq~6@QAJw_|4gUy4<V}=(k+#i?Kh(3)a){K<Q<Sudf<t&40@+
z7Sy8uu{OsJFBV+LZ*umtyq=D(0z#^4FNb=_l%|WBiEVH`J}X~cL$58J{8Z<@q~GJy
z*~~qJ(fyF*>{vO<xDdb4;ctH}$<f@=WUGA@MozAcuwj?WZ+w`~e#AqiaAGI*PkC6I
z{0!6BkYqeTwkAux_oYIdh6wVLhhrp1I@5y4;7qULaLeBUMbk#f<Ic>rOQqTsj~ObU
z&IK%$zpWdK|JsU+kjK@;=bc~wk1%Cvmu+Mn*?McYZVr~y$?(=&OWcv4fsR}@oGaCu
zpgYL-7yS*1gI<?MiVN6~w;DGN4nAbAxU!r}rnEruo?rfrm9f|Sp(sVok!%4QhMQ-V
z4WnnKF@*xEs8|x}z#~Y$5r>|G%pFYT`N#ZEBD~_mf9xl!;lpLnWkJXZ`qou02$2t$
zB2ye(u5RarG>!hy7V;5dx}aQ`zcAoRK_SQ7JXu9z#Z!yP-31S>hB*idF>ODyelq5;
zz_-$7a6&YD=#$mqOjqOe^+<DYtiF&%Ssa|1HnUcjcR}c(E<=Tpd%-|n*NJRrpNZEq
znWN?7XQwKk=RmcuY^32US8a)6ba<0Q39kJZI-KjA#Klp9$f0Km(a++qb0r}{AQS|1
zX!^lFcTd?g73nq);-|%vg|&<DEg-xMNHBx7`%S@x@KBx4!qFswl2S{Fh?{>A6u}uZ
ze$3r8&=xVKf1}wx>;jm`?R9}={tK-*APRo;2Cj69*gIc|<{|px!O!l29?O>x%x3;M
zlrp6|l*D>5!UzTGeL95jb<QggCaPiy8h65s;}J~ul>lKFY->+=VDJQMMD+Ie(KtHQ
z(<q}!tWswisBFvDGF{svaHS*M4?+VW48~RR-WURWn21TN5TQnd$!4u{<;4my?}3d8
z>`q6FbtzR__&?RraB*bFMb)=43{E8j&uH#rkUXpn(a?EB_cEDL$nIhh&D9t`dlj_v
z;pD%oG{*Ew{@xAgg(kd)1AK}>(qsJMvw=~8)}k4`|5t<?@|7VtsK`2RBA09u3SQDe
z%~r>TKE|R(d=O(<0*INi&Sy6jOD_Qkv4xPfXyE#7V8L6+jIr?*g*Yo*6}J0GVGT@%
zE9az>Fm-)BI~TO4DLC1gsr&-WzX`!b#%UP89t=ztSUn^s!=t>W88!-v(U@))us@i=
zkgJN`lytNU?!K+l6xQP|MyO+BsD$ADHkHihg<CqODk#PcrAiZQtXhMy$W-CE2wH1S
zo?ndVFUQLIDcChZlcgMpzxJA`@}I03pFvE1zBT)!$bWcJ_N*8-RMC@?AGvBc=<WS6
z|7ni<-?0?@NcVFM&+{h?Rmi8OT$~)q-GpWub_Kt>F2Wz^0>#`UmH(Iv>n*9#p?Y;l
zK91n6D+h{8$>%_1>au`yHQUqJ{<alfSx6CIS-2tfNaycK)BkB5c;eIERTr^X(qe<8
zH>hieTAx2@>B`EcTO&rzsTa(`r>R)YBDziirS(7&34jS($^=!TU@<oJ*&_B|*9NiL
za{HF`-YR9vFDQDxu-FBhQTzu;1BublHC(AK<4M*{-*-nMI5}O;r=;S0{judtWk)KD
ziQ8=uEMV&3XbDb?`g{1;%F%-1za=3~n8*qB!CCf1E7Sa^<T-|8NPgwYWWGaL%e~3a
z0@%t1_CZ-rrdh#b!WEt=6A-m5f5lq8``|^VxTtocDTrA*X}K2~h1!;nS<+z#&9##`
zS%&aCEvQ;AV#PvIBf!I-9@TrY%z)Q+<0(_cTKiZ3bcTxcM9@b^ghx7qAU6Aiop`66
z<PKzP!QQ^fZ_((9l{3CNSZ2<o58kzqElzSrqOp)IElGNXXE7N>&f7cdHO$wQ{}F!-
z=2{3cpXnvJCJ8Yy1`LJfKnNix%g(#cP3J8=1-{qRPL`7D3rO*LDDJ;Y39RCzWqQP}
zojN>#xw!*xVx9u$-Z~PmyKEMc)nJ;UwPfJ@1;&Uo<rItzBFk-UZGZznyl^Pmo_^TT
zZv&M-=J&CO-9hYvG!k!~oSN5SzU2LTY585Kp$m^*0)@c_G64vYQ0J69e6z=Qx9+V)
ziST?&Rn&;LK*@E#`ysZF7iO`gJ1Ke5>99$c{64to8tK2OY_BzJq^nw*SHVdpF=0NR
zvW-8S`i?M}aw3R5yans-yLg|D9MJi{pVd?=!sHS~5eLi>u?Y=1a{YM_1M_<byNw1o
z-_KB}(oJJv!lrmO==tkCeGen(sOp2ljXi{U3k;!Wae2eo>9F0<sdDE(vWE8oRD#&U
z7|gVxv?{8-_u|kyG2n_%fOhM!#>h!rC`t=l34r8406wo7aDL@dSf<aJW)v6f&loGG
zJ6E8YY(iXlIs2|QwMT$As%Mkq*aP(!7G8{4HN{_Qg|gUr`_qdo+tYZ}(0toc^qJeE
zYH@By$*n&?dc@4zg;!Cvs?0H|_1?mH(ROQA&+Unsqp6kY007MEB(|c3E7%ykFC%Sg
z4`D28{#6#6>a7E06ftF#Hn~5#_%wg^y3F`BVtM<3f$OksULCbERZ#J`W!`{YW&jeP
zjByx&#0g3tEC%<gWhm{&wJk#I&}2fo4a;npa}PDVs{iae6t6~-!1)))?w>$Gl<@cL
zc%J<@)(Ekv8*7ie&i|Z7EDBM>?{h+U_Ax@oBLhSCL5bji`$2ZP7oA_$YN>Yuq%>Z>
zIC!K$%r`?T_XI+HHipM&<N72yjv&5^DJG$d##S~1{i)6DP$!L!&R+&AqEu}eCW-kB
z`?@kZpH9Iv4pBv>-#sPUH$t^nPL)M*)eKaO5^I8j9R-)$eA2k`g(uwGux%z?^kwFJ
z;U`@vEncvD7mnoUmi(b6T}0gyWdoxQn4aWxhh(+j&PB?#8EK16tBaDO^e8CR1&*D)
zI~t-OYRpk&hsYBf-l@QgzPI>;Q83bVYY_{GjIA%=&>8!egp>g*F;8=WS)yv!HKhz}
zxZBu4w+gn`IA$xW{@X8^a?vYkI0I}=1qoq58}ey^Q7ao#ShOD{t;RjRO#bl?PX*@I
zjU%_&TmzY-0SRVVS<DXw)qayEbcrw5wsrTtf>eF?@SFG|b(H}|8mE+5dq5=9z6<ov
zGEu+pxo;9heOcC7N4ar_b=ViiG5M?b|MqOg&dmIcX-nGiN6EQ^OHG5&`$RU2fNT5q
z*M2!M7yOWeSGvJA7UCEz78PRv4-Xr4-h3A}A>$Q2#C-i~PcK8$qN~6^yNZcu*`QoX
zllw>=u@{>+Ks`p{B&09Zz|B9iKy>?TeMoMZ!33)`+Q|(~bBG*lnC>B3;M0PP`3Q)C
z=59qpMb5eHI6`mMk<CdEbgCS5UJ~{qAw$*~ApXR6ynLf@qjkBLgd|I3o0xdWjPU8l
z44g7fPiK9B=_*>1XTQV3Id4?uS)SO4@blQf+&QBIJ+}VlPpBQ)$hWj~xK+(hN+kGY
z$+aHv-w-C)JduqhRRLnRn*_r#o#FOR4Aj@YMI86${t0;lh5f6Vh|>05%vgC=ytK;*
zqsR>_%iY-#<sg3WN0*fe{qB$vbHE(V?^AXvB9^gWXdq6KKN1q%=0z37?0aS{^iRNj
z)uq6HRac+F5CN?3=Jk&=)SIk+84XZNDScwxy5Puyh1df3K(Xz7Z+&EBUndL!S3h=-
zV`62Vx}NVF{`A}VxtGYuACHb6$Bc|S`A_n};h%OW0{7JHJNZVJ2*_Pv4(zxuEq%)$
zr|#hTv(Wn=_@SS!z&KKZ&!@2&osHixXx-1mEqFmf^uxxN3Ee9rUt9rPcRcJ&=$nl5
zdz)~G{oQL`;Qf6s^@HeRw`DXmiF`6;UDT*zdDq?50+&ZjW>=Yekrk~mT@F(5kKG0W
z_Kg8==G^g{Z|+YkT@Hc3OJ8rVeo#w1(4a^I!}A=}lKVXb?QsqQ<b`)JBVrIe#p+5l
zm%_pnn<f?|TeWJcUL&+NslU0#zm+lZ%_sSA=->a4p#=)+sg5~KCtwh8?>hCfZ0&vO
z(O2B95I&K`Z#psGgb+T##dnw?Gc}EwJq6ncxC?tUQlCRVd2cKVu7DG%+g*OagH8gd
zH4VS(iFpj7GcI2p3lKlGUY+$N-H7R1gAR^&^`)zj1O~9bD}($!GAC+wwmdEaZZ=Q@
z=YZOw5yeKPnEb3^xylc(we1MLimI@mTJ0npsp?VwP(#G|%aoYc{@~fA6qw1g=XyD=
z;`@v-tSjE10k~23gN8aIpZrs1Pg}4=2R+1Hp=Ej0h(YzAi$nz(-XTW{Hyx<p?ziH3
z^pF-t#|M!Cv4A8H=YC`WYy4l(gKYeDP2-2v4#MzgH|H|3%m+CKs8GP2QeUgSDCOD7
zj8UDg9P`sy>)BU{AmwrCIdnSnJTjoV_6|Okdol@*e&fg?n%*;s+EfJ0r{lUxP7swE
zZhJlStz!rsZ0}XKeN|8Jygn3Si$W$f-IIQ}l5q?^Eghdl+%CzSoZSU?xQs9{hLasY
z@_UnZ6p~%7>hU7MJSv@b>FqMvymw+kBKrKV`OL&S7|UgXIXwFv$4mW8S7K4ZE{4Ex
zVGc|hS1iU>euvOiWWX#E3;UHA#3v9P%%zHzy;etlpSpp;^KDL^O!)7<B>SBq!)eYP
zMI6JRTyZ*lbi}*t;icx(mtMT%=iBys?FrHmvO{{$fAF-}0*Yz2;qoqF18;mM$J#c^
zYynnqF>&mF?5Pn-_tcBLFPtNZ6shGF{_frY{4qnv59Ot{BUmOsDxnr()z$ouv_&2u
z7AHoGxQ+gZRhCo1cUWhxD&8QZEvNI>P%@>PJmkqVujZ_#PfUflA~gn2Ocfk&PFT3Z
zHD=Dvn7JFfGc+FU(T2oL{KMcM%al7;OeAcM!~;&aL@fgf1$-lpt0G#g2iZD!(4E#)
zZb-@6`Otqh_4fe1&r+icCBbb0R{fiU^sf&8T>-+fG>HsddhbXMNlJYrC*$AX4~<Jb
zFc>xEaVF@q6P&Z5e^?<UsLvpKvxm#lskth;q<!1>J9~KbRX1Z;lQef+3=bho58AVA
z7!L8`=gQM4r;w2K<M1kHeTo%@bKc}fv$EyY)77f--c2k&BU-S>iq}-74rwwlGSMk@
z_C|ct7^bWKm{*g#c+e*NP0YGLasQ<$(=e6b=?;~!n5e%qBA_@Mud|0i45NKC(wW4t
znME-g8#htXD&iVT(ZUl`aK!*Aah8R}@<yGs%(Bey+k>^^x;BSm1)`%J|B|vP;NtPE
z_jPjC*w>nfWn&)lw}({8%<6Xcoz1#Kt+q|^O#l2<w9+|w0{<Z40*Y-r#44?=U=}bk
zyB#~!l)-$x(Q$CeEc)>*9GGqg@H%=N3gJ^|dP+;UyB@Cc?3!<Hj>!B9^O_VMU%e3&
z&_BMC5gO0Bh{4y2IK;m2Ewn8{w>-4hzu|4bRaEhiNl5feqEO0AcT(opg3D!Px0**-
z%%c8w1{|v31y8;tzUz9yx&%@%|Iwmowaiw32zRAD6qPY#V~5x;nv_W7AV{C2kJM)v
z*LCGQ+)dYY$(`?~eV*PK`tZ)~4u9P}2i1_B3Y9*^cDLejCkk_30la!Jwal2>I9+<?
z&(5d^z&YZ4#x4YkGj@rcW~Jt;lw65wibibcEMtBx8SzzSPoc5OWc*!7Z4~8`6aKE*
z3!iPI@okNe^5s3wUgt)zWK-M=g$;Rgx5CEBUH(OrOZu<@Z}LvQBgG8-s@9#w&!T3f
ziHSdXcQ`vxTUzIXS1_mlEgTLXppH;`lh;UJ6R`XOeI<<@5r*0E?ucr51T}OCDwF$8
zmKNUVEV$e(PH3M_<x7sR=4E-kO+iB~4B9hhQ-E%N&PshkFI|NEg77FHkafSGH#&(}
zk5~0Pow5kmZk)OBO=|e~QlOA@Xz^&6ye4)KQ77h>0_n7hdAF^565E@^OO04!wN;yU
z7JMQNNm?4kZRM6e1J8jsZ@gK0{s1)?(;XsA9gAyetyVq14P<Jcl=XaU2D`ufunzrR
z*;W|*6$WVaT5|5{RJ;~0u@p=;5Ir5B>h2XsGs;D$%5?=iG1)?Ln5`Yny<ys#W76l&
z$qAvp^Lt%=XiH+tM<|{e#tEUKm1-7_&kdt^Lf+gRg!moAy6Q_0bC2v!t@uBaIC)#>
zBa!({Zm13G8#g1@e4af-^mx?G*&5gX_%&<KBD#WCJH6vLQRZ6MGr9ZfyGsK`H%8Ad
z+z9~4Gr8fTs|W;*v@xuJw!JGX9*-XCv+qQp&8nal{syYq2(wF*#~&S*dvL|8Cj0sU
zmLcwkg#UZ#v-1WW27Hr!NE$oBJ~dcC`(9&6)n~;Q{KDFy0fK$K!4QY$4x6)V-YzrG
zbl2tcFHtCm70VCKgcSh$n`B3nly<1a{stJPR{suYFV0_lWNFPp*it7x;f~MzNsY(m
z(go<xVD2f5Y(sAv;oZgu`q%gBjH=IIbGV6JW#6@9qm#icRab-aqjcQ%6RWEkulnY{
z#uxPErIXcb`l`$xYrEzg(erTa_KpwpOX4!cVViy1(xwNx_9rla02@tN<9PRYgFX2X
zk9mhmfSu5JoWIt{?J(n#)iHHEOXgEg-7DF)SMq9Sb_geK_613!=M#)gABw5)ur0{E
zPd1F*KWnv9D~L0KjOq^7@~(8ex<}=J)bcL1pc(`p@j=n}GBC4b9>S=^n%T2%`w=4P
zo3Z+yZh02$V=6qLl?^ay=nmTv7`FvcjLJ$eToW{UGLxR!c?=z;PwK5{m&4Q|v1bBA
zQL#<lN!(D$VzWeo^T5Mg1_|R4oHeToAi>sEH2X6DYGdE@_QBhdLN{^rkC-t`>S<`(
zp~!TO*n*t;+l6CSm{~Kqh3Y<sDEX(PJ#ry#B<SuS<?gIbt0|uAQ`0AnG+ID`l^&t1
z?+MP82qF`e=a~1PLIaWyyl*40WE%{f5}V#t0ILg6y^+;F(6KRz;t`_dnJ*$&EcGL;
z<=M2amJ<16=0;GbUWFUBg2ZG?+GM7-?x*G8Cvu~wg8)6$Ea;czU5bh(<DsF$H$R#U
znlrU8NR6K4ls1H-+ko`RH*8pX9oOQ9L`li1dwSM4(QBXKZyxbZw1@mMMl!DI;Xty$
zwV3By-|ocDyRb#<b7XB;2UlYa@}JLt41QdlSrPt}|3q!{<QF_c_+S^dbdM!;YaxYm
zOHN4Qg|w2sNqC9mC&G2@J8!^bz_;6v39((0O%yzft3_$(qz`lB4@**N<NK8Ea$8n6
z^&htVT<Uxv>-C+Yp3;NWYmN|@V$B2~{d?@=_3yI<t<2q$5qu@CcKYWp*2JtBv1Yc=
zH>tu!esDG_S#xC_b59&j`c%~rnfi~X20Uq_GCB_^FOsoJDq<E_OF2#UxB$t6nXoH)
zV2*ADZ4NIusw{ZYiPI)K6t%5bn?Dm)-&H*6!F@kEyV)i{TJq=c6NlAW)se<ugSH^t
z#fqQYAL*-|s1*;q=dak7cip8+gx5FN>67cJy0Fy|AM}l$*s3-hrU6^uN{G~jwNBbv
zm7TKYlITAq{su;)4#e!*mj%~Vh{c5@{O71GNPFls>S+FRZZmjwi)^Lmdy$$2KJb=j
z?ncjL6?*LWg^vMSknIE?GVuemksK%(_=+Z$vZFHB*&P1B6a%_1YuqO+t<IbUAz9uH
zPb^_*=OwLnUgg!5YlYEg-s1BrAp+f`i~ydy2_ocll@UPs*-1K&Gk6;ifvL9u9Ou;^
zyN7{yvY^$@{KiFu?m1JgD{ouIkfzktPKAmCed%*)%e$JgrSUXPsc#UQpi{f7!?>~4
zOHMh<>Xou|a^4P-2mip-tY=DGnXM{VsM+<^++lY%42)vFrcsZf{`AccdOH6nIWXb#
zEyk#7{g9CQiNkD@>MK;J=k!T@7TxDR4Y<H-4}TV$?=lv9IvFkH4WPbYKUg0N4{qu}
zuT5#eqw#Y5NHBr{r2=XqTnwnXs7aMU#a%d0F?;x}AkHK=cGeEaXa(AdL%XJGt(^}%
zc784TzA+QJMo)IbN;SCp`Ls#zC0z}e4e*IW#^2Q#;>;)CB%oF!Y5R@Mw5I!V)|jE&
zqk^_pz0l{gNOA=nuq}2pL>g)3?rJ0oKCU5)tb2IKkFIGZkXTl@@4op}4AVf6r*wC*
zyp!D41jDO<YV_PPuA~%QP5GvQrrH{zq52z6r#j1||NWk{1tAQdhM16jYvn1L6D=u*
z%O|drvy~@(U8*ukhQ)a)PSQafV`~XL9)S<H<9wVU(|%t7R;N88Y;_9#tKrW<^=(yP
z>!D6n5J0_wz{7_(bG5TRerCfbW-iNme^71Bi}-OC^gnOgX(lv>t?*9NG*_0HV#-KP
zS(mjoLyR7J?N)}ID{HdyNuMK49A1o7%g5jorW4vM`=oJF<MTr2y}*V9WeePdhn_<<
z-~IW^teNqxnJPHUsd`z7sDwLsbp!+XhHSx`k-UF(<A-&&6$$g^43gvs{00IyyrL=G
zG0oRC9jkv=o82+zbtEzp)R@#s>dp=$bD7LNuPALyxlNDQ`Il>USv65voF7GpB=OWH
zE_0rNA+}Wpk7_B^EY6^i^S9;1bBmm3rBDV35hnA(TGa-#n5-UB?<V3=ERS#ScF!_p
zPB$>dWN~Sco|mq6uMVK+GMgiI*iw#L;_()eWQJ%I=HxuflKwBI-ZCI=?+F{l3Jb*+
zm!b>BU5c0D?ykk%-EGkV#ogT<ik7laic4`X?oy;cDR9H@-v4{wFPTlwIdevynMtxq
z&ge>@p0<hT>392eGWCkZAB=xV`1K36`v1`AA4G4^nfpj{Rx{=JJAKx><NtR2;XPHs
zasNrcm=er&Vs~tP{A9m^DNAx}9d^P7-uh$lN5InQ!@$z#C8lc}4T8o8uCDkc!^S3#
z;HBnFVMFG6jxH@WClhpvp%W6zbQoJihT+JGr^f*Kz)9oS6Y;TPSf+5wQV&pll9muN
zazlU2N3wS%EC~+?gDt&gWWJFPo)}n8h6)l-oG4iOvA?J2J1G#6U!5ZvKEbnm4r?^U
zYc|U?41O>u&UD~-;AM7=GimEP@#DaZv-m?{OXqwn>%CT;5fHM(!ZAbk<D@=Q_{`SS
zc>JV!><LBv_wO;0{*!X{48@N?o!E%~-JG#Rmq8YOsEFE(1yp~EM)}NusHMrijTD;)
z%RdZ!!LAM)V`mW+Hbretmdf7+B*Fn26uPcbd78a6<MOFYZslDwn{-h9{GV}qH-bjH
zmH;k4-m<M^fIehXHr7x789(u3Z!oF``b)E4C;<IV;J2fMC4q4pqU`TA0s7grPEZk`
z@|HMVS^%Z^mUAQk%scUeJE#+w5BR6~6dl+n4;f`w2ikAVOg(#m<G102-5-E`T$fv`
zv^FP)tPI<6fWM%Axk;#7G0@?CSm_-<@DxY@`R$tHPhe&R=B2SYfQnmJ`2fcs`4Yw!
zfL$4=@M}QeE(-SrKyA-Jfkr}GKz$h*wwFOq2}U)5^xk=^21NjUmBG*Y!b7P&u}uM(
z{W;Xnpbj|x{C!Th5TJn)mQ1aH_GYUx2BpCMHoK%jEkMH<IJp<B0rsqQ6MBF)Ph_{R
z9be4hNF?j{Vy5B@_L>=hVoO!tya>lyRG|+r^20)C#902?n)^{<r2^pd!F@sTr5R^%
zYaF1$SnBC3FIIm`5d6jZK}+ynFP&Y^;YGqo4*0b)V8re8_0;N%h|P`Mz2bn#`w*>e
zLx4KzDV^j3JbDP57YzYwDEB<J_QIR{EcyIJBt)XA^C^HHV@IvNczm>h+$FuuDUOu4
zT^ks$h(7IQ2N;SkR`B*kGko}Ww=cM%L^lGKqqX!ziLLu@A9K~R!x-rQ<J;!xi@k$3
zD=1#ry1Fl*02&ISI_^=uSOn|jAsBF5KH|4X;BXgy#Iy7Zj&xV?12ll)cGC?n-ATJJ
zGC#jeb4mnHvGAw1)MP^$nEj82P>Hk5%9rKJITEb%s}g{bG4Qc$<(HllvIBv70EgQT
z!(1<VhN~Xw0uz44td5y{X}66{p9B=~<jUAH0gj7&_PGHAG!Slb;SFF(`!CsxY%dBj
zzy{2K@ecFg2T6wwJyb1b;}?WD1wXU{(*?!Y%%K9q1__nN(_a)|fu(5!3JBu<9<Bz4
z1>mjk^SrP}3362fq<I7n1irYz>m#=Ji(6iE6bro|=D5-KrVQX$FG}Yl{~~oi<XQTq
zUty)vi@8Ax3L7uL*$3-&7r*$IiqTtp<%=WZ>JWeNsUMBJ+2)<_i}>ixowqM?RD~{5
zyjX~_y#Wi@e{gO8@fnb71vYzO=CF~4v6lbRN_RkG1+@B+n2syI^b&^t%Lk0(NsyQL
z*8rG4pWv4M#T}G;g2pfX=MtV?v<Pd5zexq8eMWqEda-f+kCOvZVD_iiS~s=8ajfs&
z_qhP=4OcnydpVA6H~0R<m|V>0PcMM3FDlRdFA9a$Q%U*&y=WR{GIB>xP@Fvw#wN`F
zjDm1yGRe&U=u!@U1a6j$Zk}ed3#Kipt6C&15j5|It)(m>H$Qw!$mV#!YUQf)pexDd
zdO&D44sm~N88m+Ko@y;=$tsg9y0H+yd6Hca`Sz1O*8^Vj0?f{m^8u;Z38f3;CHcWO
ztZ+VHHy3{#I?V_OUJ_TaAZWhj@MBzDdZ_`*g<ZnUU+6tG$lUj3JZDu_orW|e7@{y^
zyy3K~i>dP@au#I4^`S$_P!Et%tCs}A*N-wDSKH$CCa=7BnvXLA_VEYEh1445@w@P4
z_RSxi<63DV1_tAm?soNDsAivHYA-Sm+mdgZY3AjG_*FOsSUj4n)mu-CJYIM1luSo^
z%Y7Pif{Vn`5%&J*Zk6s`RqG6`J$sdW6DNB7fmx83B$-{2ez!-nc93r}mP79FjJodi
zG2*US=dWpzs?oY@Zl*YP<`Xz;a^hrX1^Qi#@LE2oTYaNi@#k9iRlLWsWFGX_Z=M=a
z;~B(anfkOzu5`yf=wKtfBVTEc!`?P5thFBK>}#~SW2eqdF#Q56o@{Qv7U$0U=(*}<
z@7v0}rWRx2k5aG3RaxnMH+he3@%BWAS*K@Ug@ah~;whE+LIBk~HB7ZZ#(Yv*bTO;x
zccV0&h}-9r`D9i?U>zq5r6h{V97QtoB=3VJT@9+g2J0n!cu_EY2Fra}*{*>j)2tg~
z*YCv5Q}n%aNEST{V!!R#p<5{o5%<!H2qIsIXvz7Wnx*`GIW2s5(fj{ZOU;_L_z{^s
zTk*Jv{phU!PD~p2HL-UO^U5JcFll3r5*kC<pN;UAEe?0AQ6=WHd2M;WU&)Y#y_z0+
z?w0YDLEJkG;|o4T)5^Exh%{U3)Q)8XBmy|31TK#<9iP=FJ~ZCszN@bvy-S=soR!@B
zr?yQVgT_kNs9ZUKLeE1Gj_#pEkiYVUXL?kYo4m+zPf7QHQ^7683_13XWT^)$$GP-B
zi+FCqj6L?I%g7zZdf-*ZYKgwYoih!BVg8^(ggxhfQ*#2rw4q+MYTx_wl)8n(s&AAO
zy-biBGsJuKA#EsJoP*S28G17^Ls=h&CXgUlvi{Rq%<r~AroE;FSvsFk-h>NQL=Uj~
zsm{0|B_b5*&I(=kM)PnasAt!YS7^2ctq!#lcuswuKK&4vI#V7thjoW@k;+3YC0p&%
zC+MM~nXj2`cm5!)ujpjkE2ml_u84)lA+6a)sJy>`j=M8-ExV&<H=yk=i2K!E;AeR#
zKGwVxwNojiEFKo>E^sqyyQO+&vnBi?(hEyhQoc^Pe3`vmTk*Q@xZyW?w8@w7{DUZA
zQ>N`%h9{3P4{jXKrI3@3T=k`0A-PovX;X0*lk~fo`&`#@DU*9L9%?0z7Am=%I_76Z
zM%N^}i_QyMvbm{-sER_w-5pSvEtI!MVOMt$en38)C-8@c>1Rmvv^(EO)VELZ-uo*Y
zNm1%4-;8WI5}f>TT}WzM4x^KNn{55#{i4WZl@`S#%}~ISDfI5uMRn3qT=^CJ?k)a#
zQ6J<aYyS!>TI~xc5J$>vQIgeZN8d%`>>skDsh*<IcBSfn*G(q*9J8%zV%mQ)SkZDZ
z_N>X?R;K#TDP{96{)yISNK{zrj%|BP5yZ2YrP|uE$IBBI&U5QTd->zFX$DOlu93R;
zk2ao5mz`K8ZJ7i$tOWDakZBBM?EX)Jc6Fkh79-a-5r<V^V=DVJu{MXfsM_CZWz?C>
zBEt%pT`9AVnzg<)W@Q?;+8%GKAF2f?WFgx=3R+6qOba4mG`JU`#Eq=|1voq;@A5XP
z;|)<wk2OBD;0;JHUk7NMW?R7xw^XJ^+`F}UhcVl-X`u(zDd7(=cH>{kxB53u4bcxW
z3$*Fw9>R2g3Vzq}!e5uwNT*L7Il`&Vo}8KEN#n0ns=3Rp;a%zcWp7l+8{{>NA)ozT
zG}k!Z+M!yVqlo7=7&5`oC4isr<3!MEXPZGCt-vx}C_v^YCrckggKQgpc0<!?7d@=E
zb?J+fZWo>1I-ofhm<=rw{j~afF3_H$#ufk7tH$QL*^$}GfGSNbjq)d45gy4z=oNBW
zMUB^G>farG+i2Oj!%wgVJV~6#)`4r^a$dvyWf~S2bz!o1He}VU14+IDY1U*|*3qpu
z?lp4)>r*({$A^nG9{);cJvAR31n^3;@8WHr%awAg>FFy9-YRtz+Bcc38?(Is?iOZp
zR<D%SqqulyHWv-6IS-C|ueHW(zx`Po<vUa343o_pAF-Iij43Y-&$yIKbz6+9a9fTc
z6{jIsGwOy`<=O2O^I71A*6v0@*Ty}geh{Cr#W7Z|#!^?l#d%;_&x4Q0?E@L2S9KM4
z<8%4dXa1&#)~XRKuU=2hw)OS8k@*$3D*LtbD@HC&_g>{H;7Zlee1*9tsg2*M?F?Jf
zb5tEq_T(qdWA({`x+;x}ggkmJ9fyXze;sXI6`f0Jn)AjG&P>(Gnv&}B+cNE?uH2%6
zkN0mxT6K?R2W?Z`{%fJ(kd|N7INx#lN!Keb&s@=z-Bl#B#m~}Mv|d>|Rqm-JUsGRh
z)-%7E(T}robhudN(K3bOH9zB0K0mE2e*(1i&Z`#Fl2<o*2}&Nm716Lb_lyY*#oBZJ
zBB+M{MaHA6So4qLt!--UN{^n!v1h&JQs>%m)!(%<1<f()wbOOr^%dY7r?r<O?zmTs
z`|q#J+34#}z-O=KQeA}I*(&PnXT)zq?U)>T3Q%uDxsP5s>^D`8)uxm+-MtOSWIBx~
zpif$?rX|o`&ejHOU?5*pN!KVP?_W&I3!M6u&=&1A4Lqj)F)E-Bh$gRTxkZrt(6{X4
zZ~M7QooSwtqW<MbqC{?*chUOr`$FX>OqSp7rE7lyIQ?iDX!I@jRLEaW*V{4|CZlV`
zv?G`AR#*NZs3)z@@>^DzEZ>?etYu)~#@)ZxLtzf*z2>rCNRd0P@&7kZ`BgjNKSPH1
zgHk=e^5y*4q8e^PL4IrvCq3U*3J7U5h9^N$MhQbbAC;tIU!5`)D;6il<`E1G8)xb8
z7=7S67wkj}VIJ$2-h4Q8r>T!2RPYyDT2!KINr>OkZHFYPFCmQ4p-v*Y(|lGW9P`J^
z7uEbz265e@G2PROS-AZpK{6;OKuu_}Rv=z_Xa0Ac{-?b34qdz1Tq7sEv7v(;U5>(!
zZ<kGIS>#$-N+=le4)~5)?o=&jYKJSIYH4v9>_}1T?Vy@(M_hOyN_aQ6Y-DwBs9hPR
z^DwQjsOvOrtuf(vq?wA!#K(D3cp}WDrZzJ~2YlsfUU8&EX*0Ow#1o~sj8iKi?NzzA
zr(tvC;q-s_D80dz;w_AfKY)39%&AoUS0UH;Gye~!)p#5n)O+-8wESQEY}40cQG3*_
z!Hc~=*V^NQB@z$Zak7v4EtdoOU0JvBhWP_IdrZSkd$B02>7qnZKkuTj*?hx6%3S-^
zS3^NurIhAD)TlE{p>mkl=aC07%%28-640HfRcA0rI=&rLTWj31_f+*m*SuFM#?HE8
z-2U44PCUQ7CXXgnGIASC-H^%kCni25<Cw<)VXLOB|ArjAp|XXDZH&{%Kf$gwz4<ph
z>W_Kx_|`OfHTpKKoRDPXmwm*=vSj5Lb-TOSbnSK&)&X7^4KI5iJMzcZE4I{@YNi5F
zE)pjt1DM!h(ca-WY||#@(%ZG(V!E;<LS2t)y9C^po=zhIlDhonlXW5z5~jT@0y(Fc
z37dbH?n0wpEogHGkWz}Jv}TwSOl=;>4m78DC&d#*bqwO{dldy1_H)U5taR<R_VZL;
zU)f-W&&T1fS4i5nR&jN#zY!3+cQMgt7c#E4<daG9OJNMus8j2hr_lM;XCJ4;FA%}v
z@{aqw(wSng)i1OuEn)s%cF{8<>I=i~w^1w6Q9m#>7pHv4!2R?b8SzB)&OM?za}q4&
z{T?w<+bMhqTM+7`1_zB8&Y}3uBlQYj^XQcx9pW98q&^J4Y1Gcah7TkT_EPOJm+8}+
zK8*98TWTIonlwMLmHR$3x}-N9nQ82>SD%&dn8vDg9R<-pD_4kUDtkaG$g5%oNRJDA
z-J|s@P9w-vNtjxTQxuw97VA6(c9l!}1Ln)pv@s4Rn~e-x-bJ7L0MATK3;AbGjJQDs
z^J{g;5%U9hyEF%bI#L)(Kj?l|p?x@TzSa+U^d4&dxj95<ibLD*Iu!CLDj;Q1Q5qeu
zT`oE~LCQfY(hdzwO5cb#kb}P%8P+m2ZGMktk^KH}R6ELwR$sI8+^ER@k{dM-_T>*N
zH{W!J{S-MxSF8Y@qv7FG&TG0UcHGSP(bIZkZ+PQ1n9do-qS%_f{^41phN0ofW;36m
z4`-U&@vIK(aQco&(psbwG6~q@$Um^;NQ#Ar$Y}und#}X5)}(WfuP#yAcG5}x_;y{=
zJa&8qQvTH=k}R&ok>>ndgz|mYPDD=_KYAN2>%ibx4DA3$gVwH3arFj*Jbi!h7o!p}
z{xN6$YLYuY+;!K(Qkh?I7ocm5zIUX)<U%h-B;&w#6PC=Wm2fEP_juEk;*B_<FY)V`
zh*)u!a(V7YAT!|?Y>}EMU(-wy39N*%r?<A)k7+o@ysBZ=pC~(o1x!_>(2I5@;$ByM
zxTc|vN1CG)C}hC+uBaN~RY9b-n8lY0%Q0qL-6(cMFY*4g=aDk<l!=|*)(^!DLjw1L
zAE?RB_^Uo{OPbmUyM~y&(%0$J@?p_1e1G4;szm&TA-6JWur08tuEnw>46}Hbt|TxR
zhe5k{vS{5cWjb5Jmq-1r7cJ9IhO~E+S~AJi)JtdrLbxZGE6%+|4J`x>()<v~nzLb*
zMhPoZ>3;=LqtVW_2@#yeq*TOsOP#Ky{RH6w@`Hh~qd{6UnV=a3B9%}O@^h7StTpQg
zq!8e7Z~|jCoW6}xw8oD~z$;qv_*=z1s?>`QU1CUns;sN?57Lf^xUH|3pHiXdN6Q*n
zQds`hL;j`I%iQ1%+NgTLZnbGGYXXWu@6s(-dily+-mtw8{7XOC<b+soU&CEeza9RT
zJm$E|u*KAai)7QCkwkNaM^xIRro<>5|F$%JK!kEjWZiXU45nCq#kH;va?{U!#@Q?f
zygY`l<zg&N)OE7htsCmoD6Mo+SW2tv91_8Va_5yqbSYbYW_u#90!K>Fuu((5efbe3
zlg=|Hwvac;gI+vE^#SSo71Lj8`ZR5m!0+sZ*EEh^%qrvAp<O~AF?T)Llmimfw#IHB
zkX|+7axF;Wn<kg<MXA@6Zdtm96J{TH=Mvsox=t3DS9jgTD30^{M}zeKxynsDGR!yD
zYeo?&C93VuvMDm187YRn`GZSM)o46{%z2XPPV@e~7`xz>nF+_DdUX7?%`RTzNb|S!
zjvqW$W|^8MF(#V@YNza&#VmF8&d(ik7_YNsy&+_0>8Y^+7kK@!YQ}yG1JTVT{Ije%
zTOIE#G?68P8`ZQ=Q<YfldgKHXNhd!lPQspxIU%NDTWKm3`aOE?;y#n{xm}yU(m7R*
z-iXMks@-d%LPZ;TJV!&vB?ifvovP<FZgNJdbkOA}CW*nl5{Tg#GFNG#p>(XOyTsW5
zSG0q9^|~yft1$4=pNn62t+`TRr8qHJBG{Y0EZ4kq2x0)og@sjQF1uGg;GZ2YLop_(
z&$+MatfeTuvsRkHAosSdfxaAa2~3<0$t1Iml`Stmg{%3YP{D3h@vZC>;%%{Ch31xE
z>h03Qw=i3&ImS@${6(j_F1L$J%+BL<j}i5Yk_&Ob>GGD{o_jmLm0Zs>F3&Ni6ib3q
zjkD9Q<p|Z`K7$p4xCHe`lKHkQbM2xw@f$n02~HvZqRs@R9#{+$<LdOg>MDx2JXkJs
zldcLC>h;_;f60=B<Eo5poQtkJaF00!Zm1RvfEA)Ac%CKoo<@0k3+)1nKM)(bvA?!k
z)3}Pnu+1y9o40U35?V0O+~jpq<+-J0Nw=!ZdOyb#v|JEdcTbY^{SW5Z6^1PVu$ph#
zk>WemdOLr4zK9k3Z7&snHSFIFTfizC;fhaW+5VY|PjuP;;&^?Y-G|?|=Kal&+tB(w
zU3%UlIXMZ5U=r!>2lr7#RPSY0-Bm}O>lQ|_5Z#~Wkk{R(J7eU9#eDWL8hFi1#BdB_
z7irc^?^4o|#@M@`F*3YH*Y~K5Y0r+jY<N2f+($oa)3_ZMv!=m#i**IT92~nCZgy$;
z1lu=BO1&D@RB|=(mVm$BF~NnZNb{xMxVJ9+Ok^gPlC3*H+_N$5PWn#HQ7YyiXfMNS
zIAHHB(QP{0E+$mj6iKAttl3LZ6qzm%i_OBAQ$5clJ`ji>WW^+&Q?-*L;Gy0Rrq18#
z`nmb_@c9kZUj<a-I>Ci25XZ;`I}!(5y@}WlThQ)+iiu|l>mLfCD<aiGM>^UKTO!?=
zk$QM0nlsUSGWyFO(S623_GYrmIh@I%B||aZF6!;lq_Nm<iyDN~z&GTkn9|{-9Fd6}
z_=q=&(U%{{-AGVrm>CFa>{TPJ|3Gm4q6G$G_NSv=XS!pBy^$*8KN)qWmL9*2F=5)=
zas3eGr;2KrhGrTJa(w!J<?*^Sk6v|+TGGBB*Yy)VI64kDjed*8T3=wAz*K}|nwyi=
zv?7aN^_Auww=2x(_vTP^u0&7v18Pxzdum>yQOuBCQKzABW=XLGh}X18Cp{KtGA}kI
zmHQK{E_g2^n)9asw+i;Sh4t(<pHT({AIG?RokZ@IT`VHqAN;v%nf|a)$)RpPL^Jv<
z9U6|D{$gB;bSCs;-k+Me)9^W?1p;<b(k1oSznrS^ia4orqSDcO=?RO2X0dW#B_dGY
zU`rZUrbk;IjsG&@owgSVYmwSCYuek`-3ke<kQ17HR_^F7CHhpJ^u$8AG9gVXOHC|s
z6;02F$!4H~n|v<TcT0_w2p_sEk)i8cwA?8%efn0e2k|$u$GpT>w&ZxPNymMz0I-z+
z2Ksbka~buLyoj(#hTv$aW~*TI1G~rW&jT~auKiv;eNRe{?`!_B^-M7tp++t7HD@8R
z;rQWDe&n(CH!)7%ViU$}*%z?$I@~3m)KMOic`y$?60IFZ;aN2`2%(NSMg0boRsOgT
zJxg<KwyP6UDGt1~hc%B(HJ1pHXS_Lny|%5n=Lb0<^9?9Gnwl=f%T9IJ3$1qVlkz)b
zkM;16A3RF~O^%w8)#GNL^ks-eZiB$}YFj?oDADbmxZ%OM4VO}vby!hu6slgpnQK<m
zv)UFRb}!B}+a&wnsZG~a8zPUCZ-fNNf2tT!9C?qZPVZlv!82H;MPvz2#_W`mDvfLQ
z?sdA}?v302`G<2DB=q_9Tw|0Hi^W9k?wK~Q_CnLfv4A)~TJ3DO-1P9fv@W)$k5{bj
zHeI3(p<|vs1O_O5in|<yj^bTv^YA#!(vfDU;JXP$X0mu)iLufF1>kIA&_mEg<n0kU
zS=~dFwRCgMyt{-@K?(&eo$wW}c-?c3aDi0Es+9&W#^-D&uBRVy`y_d0a$9&(OA>Pp
zrf>mTU<%yd`OnP_4>>sZfr-9KQ@?&|)|T|V8U6xd{k8foy{q|41q1HaStF^)m6)pD
zBu_*_ky13jI7)@HHrHDogF7Y0cCv6biKlbZ((-!KC)tM81xA=2GtI|CQ_l8)Pfsc)
zQY`D|xqWrNnpuQW#_7+A$ww?xMt{@{uyYl68(>**jn1ifl6%>grzD#_dc78DS(QzY
zG#%}Uwahrd)XeM8>`6sh&xh!2q0ZJc9nMio$-Q^OQ))Kuc+(@N=z~T^wmgZ{mK+^@
z`8e`@M#1G?M}jAILQJ{$^6BGKBoW(A^X&nf;mA0*Bir#rpk=W6lT@rz7t@T9^--%+
zw-a~6>f@l6#quXsuGppYMjN)dP-LTyHyY$uN4yrx&q-53Z0cpgMR57y+GUTxeNx76
zO`cht4%%4#cjcm)f7q#!XTUCz#Js0eD^EXKuqy1E(vRC*&_TyJePsbdEt!7^%f?%9
z$xLPfFP@oCCOrNHDLm*VE0U7pW`~Wg&3jtpR--<-3ana<J+~^|Dl~unkOY~$du?n#
zWU+nFm>UPt#-x^#id#I5f8{ub0M9^KOQ#|thJ?5P%bD2?PZj^z`G&8ElVf;-{`Q?*
z_)qul;cacHJ%10u?4Di&2|C@yfaoZZe>)xqK20-N$8WHX|9w#)7`v%>4X&)6Srm_;
z*Lc)VL&@~2<cYuj=CI7CsunD=FvH$Z=xmM+&Z7GLhn_puUx3;QqQpD;y}#uhju|r9
zAreeAFLcG-7{{kZML1Jrz2DQDDypD)b>r4kC|XXpb@uz{!!KTh-S)3^O4qyY-~;E!
zbdW#my`Dgmp}I}1oh{M%dBK}^;Ll($wt=mv_Qohy;Jh}7Sy%n%7V^YV!FO!aX};a$
zoZ&A_Zg-JrMq-=W^Uv$fQHw<xEHY*jr^t35=T0g!1|~k%OReM%J{2SS<Xvv>H0L6k
z1a5d@%Yd(=fsN2k0#T;Jqm-lgWFsMAQFOzqYrv1ZsB&bYK{9vqdMeX*y!q=kL~#o^
zi9Hrr!C+t5?y}rKA(OR;sPs?t@Uxkfo9p4LO6^Mlu<4|v(;Y!R$CKe#QK32Zrt+jt
zgP#Ezwr=B;TL_1biJ0d%+{8yDedEIn<NW&bJ9>=Ui=w8{I~m)D&NY-<oN_xeChpnF
zM`$Vj#y7`$qGM_!tmGArakujx*N&8Sfm#GCt7L6I4TMxK^e{^=#Z$kz-w0X|^2}8T
zqq%2l4FO!$2^5w}MK`3;ZsGYvN!R2my)_Yg>NrjFs52LcPc&-%Y!P*@0$%;mPI{CK
zjq8aVp_r27vuI2tXMH`GPn~%8`5=E=@^3l`Y`s82NK%4L?z#ZdXwo;hv1PD^*Cbr)
z3S+4KXRceEZIUo9i=JQ47`co`?WtypGRw=nWvkr5rZ$n7;7huN5%(Auadgh+ro1t3
z_-Ti2dh;oUEs7<|*=>6L)A8iT!$~)pT?|9!Ro?+jNwbb$OKTC=_iN;;A{)34;gMLA
z_7*GO*{{QS#l6mdN3?=4N^AOt_&(il>06A1ZzGs|{jH^2c+r}i(2X;}x*07Z=A5E4
zY8)mzA2foDx&`ju@z=u{pANa8`O{@#iaCdVm2x|hw0lx^Pm=l&&2p<g;ehP)WT6We
z-=aHW-v6(RnKFNmm-FoFhvi6Uv^+*e<mg|Hv3?84D}|7gs8EIkvQ&v#h_}y?j&4oe
z-7aUIyGOrbu;1*EiKq7RIm0n?i*cAaMV|X9le+pnKd6KtrBavM5`wxiCFP+;xrqUd
zd_6kwl@gU=^Fy(u#bsb5QD2%2hmW*HB{bESki1|?!?G+5VW^EW2BF+!$wDpDcbg%t
zj2hKv;dPq7zQllh@<`nvMl5u657o3O<7-UeT~-rbN;J-~_(EDVhZg4dWZK}0NO<2E
zXv9LU+HVD+Uw_*_bbI~&cE)r}UN@^vfTn%KM9Q|@%O{VmKG309q7}=MeEW4`vy!a0
zs+rd4K29C_x_;z4)0Vt~1up(Hq1~_Hs=_)+PJEs+4I)dq%yx_9&@Rb1i{nxS+C+`a
zG<c~jW=5-$QVUD2rRChxo6R!a{iea61Ix6g#C!W{J|m4ALuW1qk80P>lSVP*&SLM=
z{|unE5=(@UkPR2H1hSH$^N~h3hQ?2*kA7o{IIF{>*_}#c*87#NHXSM$-Iy7F&Dh_q
z!<hHibw=_YctGRk#;#Jwu=1@XaE-9f?)O})k#oI0z$c1gbaLOLk>kWIa>55SJ9;m-
zn}o#?6H#$!UMheuUjFv?aK~tOrJp8!Pv*`$Q$k(v`x;B|HbSS2d8Xf((e6$jZ6V#E
z^ZPRMliy)<`W)X`7R4lg5u7adMCkntU&yXbbD4`<6rknPl_uPJ!tQuva-nn4wP~@T
zhADp|&zIoEQVvK<9XW8e<o{`UnWVC!ZjPS*?yvKVrB9^;%gKsbvk$q=rz72n2`$F%
z4_5@g(EAm;b4xFYVV0^}I2-ySMm6sx>OwBl&8cv}gr_q<@fvB;f-{$_N>7Z6Tu@rI
zD_xBu&-T`5t6Qx26wWk#OVORIsD!EB&=Sgxsn&w0Zdq>#qbqg1x_zGQqOV0f_AR<@
zo@KM`b|1}MekRGe!l4-lJ%z`cPkZ*JU5C&*6b$+C10KK#Vj+gNJT}=uIXH-I``226
z(_J1NXia34=#~5{pB5p>?XmFHe3v>B1TMlXppb{1@}Mn=9Gf5h%Ngr1!eeAI82ty0
zQ{~69(2fM6t8aL<o|O_~Vfk+daotyG>NLvLt}b5r*iL&hUCs*AJmGeKEa0w<S31+i
zc|=`F^HXnN4+v4rRTsIj8%*!)I)Qwwm1XurYTX9m4@)qhMgkXRKNiZg-QzZC1l^&1
ztuzOEe5n(yG%1~4&MeIp12+cpX0%|X(swl$D8r7g7l3Q6D*S~cog>fHYFmCW+Pr<e
zEC$riO0Bj!quMkN;T4iKm+4JP;{F@F)w9BzMy(^~q_S=A)PzelD|c3<Y#=KmPxvVt
z>6nuusZM@%Cwkvw@UV)rmP*g|b#F`=n}RhL7(0lz8w_unQ=WHZR+(EW=e_DBFq$=#
zx?SLTTG%|^^(fC>2&VoEx67#BNs9Z}QX7F8_0Sl(o`%dbHpSy#l5Is#?sTAclsC#_
zAWvH@T}dJ`Gp=q`Z^E{FUf4f#S^jL3N6~^$7JTGbdgi5jL#MHWsP)*~mecGx7bmU$
zOMs+W{<-?EQ>_4jiDY19*Y=~_4TzD`yhZKwE?Sdta8YA>yO^o4(@l5|?8Icn6`6CL
z@euwl5;A31ID2SQR0`FiOgIfe$sNOz`>C)Wd3%NXh9U(ohK>&^__x5^doeXgMXk>8
z9)*?*dWCDWBYr4Z1iige@x?l{d!J$ik-LL_mQUKmjU`8ERJtaq8eg8A`>OSm$>7wE
zwqFtnQWa2ZP7P88_7)&4H$8RN7XM=5|8?NZAlbyv2;?&j<2xG5P*@%kHpG0bmH4jW
zb+WH7ydpR7QwM?kp2oCbhye{vj55J7C|yW5X6S-aZct~{rM*!ij>`Bvo$4r#_TJz4
z*B}n@Yi&yY(Be6MIr%{yq^Z`}x0~<`y86^-OhXU)3#k<k`so)YRnZ27dBjqNxbmGY
zz~(Pnt?-|1)^VK{cJkQNT8{ZZlOH2gl5H1@NoZ>@GkHgBzk-|ga)w>>(3ta<m=Cl8
zFh=CmSoD>_f+REt(lEI?td+r!T@L7N0I?yJ8XQe#&q}MfnbpE_bqJ>oQ_c2wXl*Ew
zz{B@y^>sVWJyz79<5|vH5E^o_@k(+?qBLqh)8Lfh7L>H`p>6ypXKN(e-5oiH{>q3+
zOJIbe$n^cMPr`JccKxZ~^G$tw__TKTTu2WvQn_%w8kO)LB;=p8qzAIUi}mK1b!#&3
z5xMHQ=%pooAyX!NhdIfyo@TK_h_=q~r#P?Tsbb$ycBq2BYe2yv)GzKZ1^X)TV|3Q%
z7J80s<0tGbUm=x0RveMiy@lhoN$&JEZ@D1yB%@u1=DopdX7BbgC-K$cyqG5HaYcpL
zLg@aXP-ycphmZ<?mEP}sofKp@+#`3%BgEz9)ws%e!KiR^rpodg*LOuka%{kg@=SBz
zkIDWzQ1V|~J^5++a%^mAse}WoRxZN3JPX1#gH@_GL2G5f7A<{0*t7|%9aVjT3EyfH
z5QZ;oYZH8)lE0{q*~Rhis=Fh<NpvCJ`gvt0UyD`s!6H&u>FRDLg-1+gbxlxK``;@8
z>Ux;=AEP&PXQLEFj!RbPMwIYZw8L-2i)RsM;i<p3`TqD3z4G@9D{m~1yF`rQwNfmu
zaq(Ra5k&~YpH)9yxjhz+*gx(ijuHmiYA5!B$O}(dru(^Ga^BNjHf4>!O&Ax5b4!2E
z74c}PWxjIvUe`$X;o|=rMbJ#+LI|Fr;DwEn8d)Wm-xEhxr%XZq++bw~gL~p(v#g&l
zioLh%JgcOCN32kMhwuh_=NdD$W$f;-BnSuz%xOLr1^<r9+WjXx^{j)?@s*LZZLdxR
z$)F4FyJk#zY6rELcLsLeG>DE1)_jAlWC^u80g=veh$-FAvZ1Z^fwEQd<&4oft_4V8
zp`FN}$z^aJDx_N!v@bLQ+UJ6)-(XKzLFrCFlQz(tzcFC7kRoY(7`51fH08g!cy<#L
zL}>X5NEr%7wpj=B4S^OoVEs4Pb!O1W6HvbH5QzV#`>$jO8}TNMm^KS`o`JRaU4S?=
z@)U#>4&M5t190_XhauizulIp&m%xq&10a5nY+wXF3O+0wb&Vv%`J9>*X7-7MQs|>}
zJ6mi+Ja(GMAP9>SwswO}ZVuHy0nxEpLUXdp0#yr6&CoWBp=Tx`&g-V6FtSgil&cQX
z?X<BMa8&L>6Ch(#=<yMie>AwR0m7^Y1M$xpKNfwni@iWE^pmE1(>f60yqAOwT37<t
zfgnQip!1)gNp@JL@5^?{6B<$)o1m@;SWO|ofa+g%Mi44=N!|g3!r~CzFcI(UNo2w-
ziTs%N5xT(%TlNL@T0nU`p@ckQN{<tuO3@QsG?QkF2(SS%|1Bpej9`?6vZfVMg9>4$
zfg0OE(}_%Mgn{j*jv#Cy4RB9SVW8?Su+(CHM!+lB=MxYckA#k`G#_tlLmGCSzyQc>
zkO?Y&OhwZs!S^lxqHY(E?Y6=gkH|-cDn~)34h*8ucNF*b^+AM+pMp@J;Ip?-U1d%f
zC4{*ql6?r&wFI6p>;v()iUKBZiggw)?2@E3=z>K!KgS@0UY~-x!ohjeP~dMwGGY@)
z;g@Y0+2&9xFpU{t0(&1dD*v1*GCUBI_A)lB?h>3y9hr$GQ6a}FyKTNHR5F%b2g?Ku
zQD}sW>3s+BrxpY5c~D2&M1h_Ohcx_PB!&I1CZR-M2A4s>dpNN6a^g*EDI$F=U~9bu
z?$qKEQ<4PKxk~_(m^(j%pwZP1pewC+qC|Gm*5TkZ99S5M2?m7wh^oc}8id|V^-l$|
zGfNknfHoGSM`hn(@HNcbJFo#_-%<uI)*qk1B<3#zl78P0+GmHo?mu}U^#BIzOrSZw
zVvj|l7sTPtl!c^}*k9WRBQ6ZYp$4U~Sp6U@T-bYV7*Fhly)e{{Xp>kF#$!iJRqm+T
zOYfWlR)V;zBf(Y{ma#>e+u&i%o=__ohz%R&Fv$tajlIwih6)mIq6)%dvVk#Gb8KiD
zLe<!gH11!}pbH!J;_bipkU`2z;5-lnJ)S)_bf0JwUdp?j9EKQskw9kB#{$^82e7qw
zo;oO>#$6c%4RdOw%JG*+{Qu&|l;h4U?t&g7q=L1nD%Cy-gd-VbN23V{pMcm4GqKx3
z(M8u>43lXfuCW%uXRjeO5U9r_7i=ch*-ID-n4CZmb`AhE*9xlf@z)hvA#VMw3Ec00
z4$?$A8*rPBf-n{nC<@4=xj*(oUaGy090mk3njp;V7*Hs_8gNe@*b=8x3t@BR*a5`G
zE71<bfh5tUu9&w1<X;$geop)j1(E~A;I@|3P^IA!;VVax8f?tB?o=TcA^Hv=<E~bC
zn1CQ`$pqR6!6-fgL1J^h{WcMX4ru)@B-<Rr08G#fm|%xo6;zJfsTbmWh)fFW;^h|A
zv6I%pmC}ha9FOOO!9kd7BiX-!ek_AAmw}waBLRR~KlXxG?29aAPQ!GB^VuLWNd6S`
zBLX~+1AE|x{fTw97KWY@Z^8+}2(pQ&%Jl$kGJG_s{3E7>X|X-m&Bgg#)&H;92{ZZ#
z4UcVTAcu)bEsn=uBmw#a5mVvI_<o@JmogPVjV<NWMm4s)3TIMCX7Ys{rVhQ3j&tUN
zjMYZIY+E2gJ(*zFBg30d2$4jEkq93MLqALsdP3_~NGQizA!FzeZYkoyPP5pCP%!c_
zRn12zgD3RC$qWFf44_TB8JdZp*n$+L{~umb7#1n@{|TLVHcl8RkqLm%ckE)L@y^2p
zfM~mbsaZM1R%1KVC|6s)M_l|$Lk5|hf@;}eYGU4c5Q9EYoG(b59riwA89RPs1jMgd
z6sY=f{}bBg4b(A0l+U6XV>7E31DnJXY5?967xV6yk98)6bhFRK1LWUwJi8MqfHiGE
zop3e==n80!Af(|O5G}?51KTx~Qv@9{z#7i*gLpGg%Dasm_85B+OJ-7h3OG~*7?aN-
z<}bUa8^RvYg<;b7=l`lZ`9DGVX3%mVPsfAv8X!XDfYF$wWL~Ac(FRR|J13D~#-|`$
zPi|4~k@yP<A`|Bpli2rtAm#t+PM+z1b!Q1kZ2#3AEjm0gHpL@q_QtE6Rg?d#^kC9L
zpRJ+!951COaPYs<)13><#0$tqM`YqBMpssy*Yjlso4l(B9)<{b0tPw;ZJwnQZ%RtF
zcag(B#X5f?+uX?o^qBzwYH-yg#uqw;feYF{ZJ}CiY=(!ec|!GJAS`T{NIkolGRKd|
z8*Ci??~$HR$u0nIe*wH%U&n~?Wlyb9V#hCAi1WE=BSMc)K-y4n9xZgA8-^#Pqm5;P
z_7Xoti{n7GdO>wq?1iV;7emUibq8@iYcE8ohbOeTA7u7}Xs}6}*hF7SM<45DYbNcj
z3S`7{AS0p&Xi^Eu9bmo&QZFx*<<I{K9vKjqu^IGLY(on<3_*%-KK`Or7|_S*CGTc}
z10@f>VuRi{LAqzLO)AMYb>bTADm%&AbRJo0TN1;)@xN9rV(7$a;hMGjmYBvTamKBg
zl|=c^LNDD8E|@j$FB8$6s`b!*%{hEXS9%=Ycz5S*Fwjhg0o?eJG74lNhy67(GJ2ob
z&RxF?lIxxlwWmoPCuN{H+LQJ#Z;vGGik+at2<vTO|7ntoO_%F8RjT)~-5buy{%$?T
z#wgsYajoVa<EBZ*@$Ru2bBA+bu}Y_~D&h0xZZyf)Ai0H)p0Hd0ON>cN%{>U?cHmH%
z=zHc0wC8^scX5OU&&PH9Wd!H)kAf5TyRshRSZeB@4aOsy6i@{`Y-tH^j7}B&4Do#v
zET17xn__+*R7$7YVyfDLk*<Xd++exYZ{hKWVmSg6;YIbHth-{vc(~*rhy>@sW+a3u
zLna>LbFn=FTYullIP}N9jiwPMplIFCIqn$J)|PB3r;bM&c_ZC8q$40ClKMb)Hf71Q
zr7T4A6j4ateeJGpe~x1siI<3OT12gfV<Iu8sX?w9@JwN|L1rZRJ6zcBcHIC6gvxWh
zE{@tGen1;SQvxqb>5iAM{z}Y=y3h**iYdU6%qpUkRMEix5Ce)LlZ>edrrhxJ+#geN
z96Eo<+ke<z_1hccKTi?%v$XW`T;Tj%p3YG_J20$fpzqDe!y%C;<hLSR^l)a$)lyK^
zjd6nGb<mzFdzr_th&4c|Du8w$cvA{|)gW-@W?;p43zr4{;3vB<@M8J<Sn_Sw^c}Lm
zwDkt4gpF@l)-7S>6bb&QTg35ksRI@>>v@#E_14>XK1tjkd|QM(zduTM%i=1#4M=nU
zmXrQh{5Eg~yq|Rt^_hQ5Me$!8<g6<CoPR4ZYw=m0)~GIely55_tGy8Nq>Fo-vL(QX
zro$F^k-t-+Fs)frzGVHJ_ocI}X%+tS&jCTQ-}H+91K{&SQ(v1!76wlv5-t56?wY!b
zz<R3o$>l0+?W_~ZS%KqED%#Qqf=eH)*))$|PkLhXA!yFu@YuzC3yD~Sq=rc_c3ADw
zoR8Q4%1d!}l6+FgX;l|J`;y3qwZ}~>B2mQocEsXCsWR2(qs*2>F>Cs1Cm%%tcs<CR
zx99n6Q<uMpe`%f2A!1!xW2f4F{#6;@FAV<d_Y#nQwj=gg%Ra^Be6%+Ya%m;*J&(Z8
z@gd~ho|@E_%;x)JZk;y=wBZUKa({E=)jIR0DwSk)O`wl(lh~EN)K-!1ow$`akMolK
zR(=$HmJSojsdhqb4aTIW+!L`Z@RZ&Agx*3xS&e$IofF(W13YaM+HFGnc35aaG!pI-
z9^S=~w;-Iee^ZM~rJjcC+y_-czKIm6MS!kg4K1qUGf{<dQs$88)A8Xw4P3wuB6oa9
zU1b@^tsvr!JSP`X#aq!T+^KW^xe8;Fg{Thj<pxor`O}DKBV05U<;3{9G{A!gom*hI
z=BgDb3ogM0sbvsFhR4B}<Xv2c89F!baL$-0DO^*0aQr=7B?(XN1dnMQ<lH<n(VX0@
z00PIaAexii^BE7@4MJ?~nMCaU0pSrnfdbXK1S`RIdFybMdvBg=YL$j7B;@jAG;u?S
zmMb93H}pENn}zr5u}c~^T*NtKkT9^U+3HC^NpQyTfM|8nm@yGOJf#cL?C^^$Q|OK)
zZe~Q*ib=W;MMzob3DHR0Z_7y@%WMZ$5s`g)hI0l)iQ$%HM6p~E7}?ct5_d)}-{veN
zj}@c4zoC>yjdE+|sohlom?WaNa1D>S$s(*F4Y48N9U_+4x@*iub#S4#ydRFWqVy$s
zhrPp}j63B7m?aYZIxwjtG2{ro1QT9(tkQ<6x!q<ASaeR5f+q7lmkL%e4G#9cW%YEY
zt^ox2;NDcZtmUEwDmOkQ8_v|9oZxsy%Du1V1(V5R(dgG`qP)0M=^~<4HeWPnGW^Cw
z%ag|-=<Ya_6u48{Ikw!synuJO@0|=}Io*OFA&&4n?+~{BUyJzVhSbq!x}c{7C1dwd
zP9DE7p|f<G$q@V@x<Q*sN>o85dW1XGkz<R;5otGI;I&S1EuD0ai%5%DLI=R-kBFM+
zn4(odm#k$i6OOfjXc>6Qoq}?%MbQn=r>9Re=xru0(Sc^LJ#E1|*DBTf4nQ54w^^bL
z?|ah%b+~(IFyA{r3I@tOU-pDddt`s6kTbX)EQF&?#F8xDKvn=Ky68Kyyk^7|DiPSP
zIIYc;lz9GX17<bohA;#*b>xL)!IgmjlO(JBuZ(Le(6Q+rf_Q^0g9bnM2VPC_Q`Qef
zGuF%yv83@VZQ3d3;4#XAogCZi)GDys0&#^{6MtTa5z3GqlDjZnK@dK++fz4Pm1~nv
zM#xvVAuFVTj-@Ou9}z$hUvv$grR(0eAx}s{h6q*rfP-7yL;%x1qR&z;oeYXf^1fE}
z<`Pa$#huaye0)w+;nLI*ACiSw!T=wTu0E4jRmPDX>1DyA$Q$&r;OjNPE5Hr*JXsyV
zfMo>`JrsED4AMp2;5oB{f4U(oR|aPYeiH=`@9`n~B2o&14uW4`AN~q}ec;Ce*5N%W
z<iD=X0g^LU;z~SndP6*>j_l{1N166}f0Ym(F%lkLWPgx>=lB8*QA-*pLT3Cb8C66%
ziSyzg!`B@)V`Sz9>%)6`$Y>}suMq??)Z>o64)B<==6tckP~`2kDu9POl>T1`PI63L
zm^c5$Ky87eyaFBYzcA@wbD7D|pAdy4k2j*Xyry)*nYzreP4NQ*MxpMWw6krxr$Wp{
z9Mb(C-0Z%K&Lk_I11m~Xi9S&kXuZI#hY(;wIwH!IJZ_E5coTz7Yg8DZ#y@x9rwQ3R
zV^{HQ>WBzghAY8`UmHfHza6dmOrxFRmBk{@>%>0wF&Lc&NHy~<5o`cx?M6kJlE$Yf
zXr`!xnQ02z0QOSn)g&BVNg-`C*=9rsWWnY*Q^PsIU$sTY)+`DfhWAj=-Qg+sQ4buI
z6kqF&DVo(GoqPDPEL}gSA_yZ7LH=`)URws>AY{azY<npVm8Dv-6l5PxR|H>Uc#d0C
z#8Y`*Z7vnR;1=2fW&dD}nLsT?vojGyG8x`pvjQqOpZMUjeT`zOLjd@1FO1qgCy(2{
zmo0D)?*2d7Et~it+1!mA@f3c@5n=fRK)xq^Zua1+6}mg)lF*Q7I=pLQu*hholtY?x
zT*jw8MQ6ff#mPyW0|wDNY#>XVLtYK6N+ADzyL2)lir<E+in)_{0B~uuMFn76i+=6U
z)DaUR0AGR#?=W5|^*!A+E~6UOweR>gdx7}iRWLg3|FSg^a%ZZ&)}tf>3*rzCLd<U<
zd`Q2h0HS<CcNbiG^Ih}-z9~J}Xsl8ysEUMx&U<BT+x#j3`7Z(G#(#noTfBHDH6-tC
z_L(tl!Y3mQv`dW}fXi`1Z1$kR8$@CTOG4x-^n@5Byma+ArAojzi6NI|8BE0VIFz}l
z2c}A*K|pFlU%yLd``$e$3W4X$0WyUCj2zp38HaXm2wF*orlVXzDx9v8=v+XsMx2o@
zP&HVSLq<w6AjAg&!EY!F#&Uv{fQ-V*p>mIRC5+su#I{INAkWWpN-@X1x7yuUZyICs
z^fpAOe!45yx_C9_jV-s&D*&=S=o)n2W6cX};VQ*MuK)*20uJUyoKxn|W>>)z?Zlp1
zc>!#>w)0Fz7fcjGeXJUt8=0~gbReh16Jt0G$dUSmpiPm3>6tZT9?l&9e+hEjssNK=
z4}|;|n-T@p`s+&=+c5$0*E1@bt2Ty+el0Be6;j~kR;7Bt2o$e4Z)H=ln8Qxm5LbtC
zZ8tce#@r?%nATw--pFu3h$@gp#ZW6gzi?^M1d@S~X+a5|8$Y54q6{~DPl|fn*c^bh
zP#>=CUwBvg$Rt<^jsMF83mG91B^jwt38L3u(^`>c7l9JU;=%)<<O!Xd`TLs*Q407S
zZ1|hWN~w(s5{}!~h>CI?w_H=oaQ7j>fy1an2E{;*1-^Q^n}Rpf&JyC<iy4p*`BDPs
zNq`bKPGqeYvy>SEgHuZm&bo)=zm3<3%MctBWh>1XC88&%Y(#SBqbqO%Dta&H)E3?q
z8lob?5E8;)p7JuE1=pDjrXf;+^pXtxbD07~xFt~__dKpo>j5UICbl+<xko@GLmUDl
z=;h*0IRcQEMsMN&zWPJ77h%T=;qMU2P)BcB*5K+n`n6mP!<k$`w;*(=Iqa-{SED%a
zxLs;2?iWUOCW9p%a@FgE<^P%FOGJogd4@c3g`g-7$T|)y!7a#v3^0fpdJEn6e-R;N
zaORxwWI*sKF1W>I91jT!e+C3RlPzF@8>akU+$5sA3w?hxC`t$CniDMb7f^g*9>_=f
zlcIELV?F5Cf})N%Q-5=8H9jH&IOFV=yf%orPYJm^#iO>STQgosP=6_b0vuD}c+K1S
zI2G`sM_?5?3d;SbW#s?PPY%>#I-ns*a6iL>2X{1zHvqHxeG`3OnvqUSk3p%9dhkI>
z^c8QFNRol>ddXkA7~Q9@NXy6x+8_Ws8^$X`Km|++36$rE<eVyp<Chgp6cL^1fdC11
zf_*9s&kYN44S9$KLE!&CJ8_D+r$EH_7mxbqH1*h;lSR-J4FvG3^|uc+-%l>mk!;Zu
zB3?{*PUf&h!to_H1i?4+5PkMF<uFnUP)Cb_`o~60-;nMT9b$=KE&v~Jh`6(AtPZ3`
z4#ZbCoTHB{A#I2|nh3r*>Tyz5Kw6VeewK<h+QUZv`-ZaoMeG;IpLrlNu8sPqhn&Ih
zV8ZvDz3>?QRmR~JA2RZXGoM{$C|eBAH~BvoM~wrh@4R|i%IX>W^DI+f31=hrzv4AR
zT;a*)#({VPFXM!e^&guRAlaW`AXlx7b`OcV9r#rvT}vtP6lp&$17WQ2M7r5C)`Uef
zr4-z)^gk}bL=}o`S3bx^PG15)hzk1$=RDZy1E)FTrUjloV{7QwgrZM01-d}#Y6nDT
zMwGnaq~KC%`~sy%xXc+x9r6wj$#}ilGb-$tc}gx<kOpU?BzkW=jA`EEP?v>3@<BgO
zefkY&*_ZK~NRy2(JCUI}lf~^3_QOtj*;s2G8an+}c$Vq&_YS(UE)jCaVg2_qX=$jV
z@7h};yY7cL2ruiDZF<FSt*UL#E#KS1R^-nl%e2oT-xrNiUC)j=cAzfl>z(zL-tN)q
zEzQR-?x`vGS<|hU2Dxo~=|0aivOQ8v5@<Q}RL2z9E>U7TIBE8%8Bb*@@u%N0Zay{c
z=2?EIOM4`=dM<AYN?b}#FuX8cDiaNaPu>vka7y=F^3fm8wR<PnC0QJ#`Tg(j2wr#j
z7TPwi0M@iipWwW^dS-q|=)1We!}aZG=PM-Na4>%9WBd|EmhnUWrjGHe2AN&a5mLP1
zv-WS{uxWw2<GAsc_(>1@cpt-`#XeaDx9ejePv<h5%L$T+I&PHm`UrKq&f@p7{j#$=
z@;o^mGh{hrB=KGm#X%DNm8HXMc6>cne0;auId)lr-*8cW2+ky?`)&Q=&N=+W?X&gk
zWahfdhHruU{)$9tiW$W!BBI$lt+-dKf2n+UW7;`z-dSYM8F}3E+R2*l6VE*aV}HsX
zh3+{BQ)!exKCt!qP0oj`?wcUYi7I|fC1ngc^Sa{qa{V@y!-Up+{rduZ`rJ7ySx<f>
zN<%`@fm;2C?2~;Rm76(J*M`buKuh<cI!gJqKT7$8I*QedzjSYNgqv9M?VR(|wDVgV
zzHLJ5r}|C%pF4uwIWw={<UmN2X2r&zd2)Vd{mYBES{6g0gF^&uYXr((1<5;ZOW0h#
zRa4@dF>-b8wBb|cdEDp88Ts_)9vy?uB{8g7tG}b*u(x<qXl^Ipmao;w)7jCQughru
zpE1xdd_{^G@6{NlKJM(i$2$LS!`a!><}#0Df(OGYC1OU<@G1zys_yMZ(dLP~m-G6J
zGYRW7Fz~Q;*vXdfQ#v0XYkC-Ni^f$@df1Fg@`4LLUs##|UoKBhKF{M<z_y&yBC`Jv
zQP&h6S<`MO#>5jF6WcZ?nb@}N>DWfcwr$(CJ+ZBcPk;Z-x#-&cl)88ARaNg>yK1cg
z%eKir&GKFR`3H9kE<x)%(EW@$!5r6zG+4DAec?`%$PyaxaJ8^!Iu!@9dIcYS6$ds*
zC%7*-fVN6IWUn~zR4#&k6Q_D?#fmFKjfd;nf~!c~64XR4vj?1PnYR`AnUc8Eg6Td!
zErH4&O=LAkZVvfsyj)dVNYj?GJtZOcu@po_yDED7f9Yl&^t20JdP1DF5_(ENZQ?L(
z#kH_(1*)vGcubcN=D1%ArX&?4yslI7(lgSRRy@XQ&DF8Y&E?IWsddi&wc>!r{-T6v
ze&qpU9vZU0l?$p%Stdb$*}=o!!QtvZP<?z8gc<3Wi%Yq8cEGiBaY+Bi&Gp9iVFzkd
z+0V|9AB|&uX?eSJ+l8Q_4e|+~NAq5}>s7vsFz)dGcvA=oOxQX9+qijgqJGcA703p#
zt_f_gY6x6V9)MfhJBgil(6YLN!kxaMN1Db&G|x(02>6>=b!}fPU@Uy&4}H@G@z-5=
zTphgkO+h(7_Su2@-Rs&{ImjYYCRyn>|MPfGc`l`5hvp7JHYMW81}~wHX7wwBHuEFL
z#;pEn2W!o9r9l@5*CCYl>$bz&j)wi@q-_{5M~SXTtuVni1qC4V_=b!v)!$txe64l`
z1z#)h(OyvUap?rR9Cs59om|TX$Dii1Mc7{xNSF6$xR#8<Hg(|6*R!+0<U3_tx}KW<
zTlnPa;xuQ^KCCm*0SlIGP)s8V>IE?=Li;pswvOc%2`xK|@n7S6AH$<p^&`_os8U~1
zYwSVKt=i1rBB~h=>?d3F2HJ!(k%^}rO>r^hq3zRCZrO-NoiAMJW1;MxA|%F@Q*P$-
z_1=(O9V1*EqKi{YLW9v7w}BhO;!ciU55l2KBbmpgtCnCYs5=L_Wow9IQw*d6%2(*s
z>i7IDL_x2q$V;N4c`SwWpGhZy%f&&3MIZCuj`>Qd5APip<<E1I?}z?n?7l7SFMOJL
zC!NS4iw;{11Dpg0xU@L0fJ=X(%r;Lohd*5Q2kC~h57Qkv2Iks#@6!#jyNEj#;W8;m
zrbsktcj7(*-^W>bspNj#slTylZY;cFE5qQYaO9#)ysSJmb`vwf1hApmJvRgeo=mOi
zi#j9+iSlaqm;I!Bh(Qs)o_$vMEz=4dCjb{FQt*3xeQ<r!eEI>ova@S{UU_ZV<=y#d
zM`CrEj5S9??QU8vAj9$epbwO6zd|@E@#k~()=8<h2IL?(XIe@UR{S_Ea5)iwAA+@q
z61X&LAHo9EyVhfz@kkMz8@tc37<yk+FIv8G4F6v1k<iTCYC{?h%-CW*5b)^T;nV3u
zDr-aZsOZbg?)!<!h@0_7%H3pcNb7SeGjYzt$asxh%9Ye@BzTU<Xgd_E=eD&-fYaqU
z&bi}Gz(mj!PNNyW?MXB=rqrmz8Ndx7{M%Ngo^jlwuaUjsQ3L>cOF9BYq+vBWU#O?L
z5AR-h_~~iq$RyQ<>h&<FupoP19Sb8fIADAC9+eQ*8=t&5;+;Md7E?84Y`=V#c1+q7
zv-A{9PMoOkBbh%br1`pYil4~uqR;)fR2qLbbRR0*DBs{XVio(?Ej02Tc(wgE#Gx?8
z{P6lt5WYOIRWMr-Elf_bo`(JE!Ap{UiAsuK()E_RM0DYf({}S_W)wG3Dh75=pQ}c7
zQHnkd?AH!A`yj@Fmj^#sC4A|QU{FGCdS2-#>S}%I;eUW0*@zh!uMed;Ve-XwK$D?>
zG^O@zRjL&rym8Ba;Yis+XpMdvuOBI`UwEt^A@N<*^Y~%&RG&h9G631dTerGaX<7pk
z2b0>}5^IpCrQ`jPYVWXiuCitd-dJx>`b9~@E8w|yO?_hVYV@)_=%gFikoe)RBt;hN
z9e#AK;}-1g5bRxlK~{e8yX!)4^tvr}n=YyA!XD$nH9!EU@vu;7s;>^;_W&34j5ZbV
zVzO4@-<CP?shC8Ntxfwzch{3!e{RmGU3(sZ3hB*Mr}E~d<3>ocp#qOncq5!|nUoQ#
z*WRh0oN>;P;wiz{!hffIUDBdsMy;Ocks>mO20+8<$rpM>8;civ>(JZ}i$1{-%9$nQ
zh;ie_#37C<3Re@O3Ro~p^Ii{2Jh2i=1!7xdzAQ12eQ>%mB-7gDME<b(t64f8`F6Qr
zmv8%p7rz6lUal=jL*-jv!+}w%oIFB(kMk10x_?TgOIVg10hgbEA`5?AViw^=5ANl|
z<^h9|+%Gc<54WR{JP!;jU1WoNi5fAV3_EB4G*`bEkw5AwH|nru4{4j4;n^Tz6k2%A
zGzE|E=sJ1}&a@1I+A%gZ?Po%Vd@emaLeKmr(^HyGZ28yq8jn*o3U_b$lX4F~F@TTW
z2#GK{J091DZLny1b{nD|hvHzKy;}2IuW}0Ik6F2W{Wa-}x6^J5ksGtc6|;@{m8^_&
z9y{_hz41E<NQ=@<U$qlzb@&$ack11elo$5x5K!CxN>u>}TszQwFhi^etLk9M%(fVw
z3zKiy*E=N*Otc1UiSy`x!SQOz&^Njn!OUrT*%s95MnDqV-+>=z=1`MC^C|ESd5C{d
zBHnNuD!@DK)@h#h`9^yr{V*E9q4!&KNT9vOpb>b(oDXs#-=)ApI&3k%-vADf`J`&1
zr{TH4dkQfAlHxhgqO)S(l!H$?Y|vo-RXxzB5R%6f`ie!Ns~$~Ipo;m59t+=grkZv|
zvJw|S$tUho_{aM*zt05<<Br|&%YV~x6zAUmP{zHe6D9NPS;Xp4^Ivsk300+uPl4&y
zxabP2GKJNQ+mUIW{p?_wZ~jMI>VV(|ZnRHaldgRtyzmXSD2?rjHDgUK(z!sce0D-9
z77mn8SObEJFKjqPyaiwUfMBEO<Tu_yufPLxG!hiV#u48YlBgb{@ozfsSOPf63oY0q
zKa+VBQz2@b=I{1-sO5fzP-3>#B!16Hi5|tvpJ8FfvY+!qtelCCoDJ>j+mWx`w{Lt$
zT8;56zx;?;^S}2AcvPKeF10TZ<qLnI?Xwz0gcaa5;e5OfvTE6YcYLiykwl(wi#~|O
zj6h|x^#m%IC`%;^+Xg6&5(kIE9TlK(my&z`6x)-WM=X)zM__n$pHw6E9g}>B==5yI
z(=x45pAEpA_@YRp)B7p2mXRoeP0c6AG=dRlnge}A&EQ!<!^<v3yYU4pCV8R?;&c)y
z&s~6f?FpK%s89Z=Q{ws!FaKlGQ^yU@pqY<!LZE28yC8)h>g7k-#oF3LcUkTP<ieaB
zoo=p0a=kruu!WKXc{(F{lIb<XksZTZHVrSm2JIWeoxS3kaYG8h=oJ|Y+<KOVi{o;A
zU{b%U(#_9w&bEu$0*wItBvY*R5mT7sg>gc^cL7Puz0|G?CMW`=9|IX0H12hD390SU
zhLF?;@d>H2z1ky(97=~~Cx?0>p8y(80hzY^#WvJNhIq=jTQz1+G-vWWZh52XpDstg
zCX<3RvO#C_aw(YAFBc>V69?1BxzbTAZVt#_lX<YjE#GwbtRO=11LcVt<U5R;KU98>
z5ENiN<{ODh-~2oR(WNG&&Y;!H841XYvV?O_-%|`xk72=OqYfPw{^dn~xMb$0rt-kY
z;E|Ku{e)8X%0~&XY;)o1yGPbc!;+nYmaY=&!(!ua*{iNUoDy1i{GkFZ>P|fBsdf}Z
z=AzGNcOy1DfT`#v#VIM6t6H@LtbqS4XM9hCl;20ICy4~>xoNc-g<~2iBhj;Co3c}q
z=JRyBZ&|D}=iIfp=tJWJ`Xm`37W#r;JUO0f`uEUY->=d<HNV9Mm%cJbPqw(sz)$)q
z8T^9gGlxJ5FzSgVH;{$;Gi+R;;g=ED<Nu9c6D&9fr3?Kp0PhBmO3$E|3JUwkykeCR
zl8Z#F`^Q6b@lM0HViC&}@b`7-r~souxX+6c@ZZl3su%P^qdBsEf@V;B7n0`a5PG#>
zu_Cu95DZFw?(a6B-VS$1g!cEP($BP0WRR*ilEYviL1dAi8qA%l*P^D%NYFj#-H`Hh
zt5)+{)!LK?U^95{-_Ad-zBf5)?v6FM`xUwIwW()=ZU|6cuQTKP%;}93sPj6tr7l^U
zDk;ibn}Vq)R3}K&*9CZ0t;yo0jk0u<v0){xCmGDx^&buz^t?-|0Cd)~w=SeDWE(P|
zOGT&TFV?22A<t=t9zIu>a#kBMbm4wTp$pkFd@RQBr@37Kz{c`&)*CWfF2noaf2MfR
zklmv(C>73K94UyD*%mcS+UX_2BaM6wd%}rN(;W8SD!qGJ?yODeaR3`Kl!|&s#+pON
zCWqxV?30<r79Eu81l%nLC1rEPSi~*J7-o)0?Mx5ROiR~q;lQfhNj~wXc%a5*l%6Gl
zo04ZpR5SNdi*IQkWa*XTFp%xVLOT2CH2+Hnm)Zm7r&OwG1dEYbntJc2kaR}u+Z3qz
zS?Vh3Lk<L&v=+{4&yX-`H8)48RG&3I8EJMj&B57bElW`T99w?HaHXY9;riW=-PlYu
zc%2LUUC#MyD~Y%*Xc3^0y-?~7wY1J_@|feBdk#JLA}FdXP@palzho<gOQuSsvdfI7
z`mn5~P-Pm^5dCd!U6Bd@HqGi%<Tb{)(B_f=0d~2L-q69iBe6wtLaL+5+Mq2UB1ed{
zVoIM3fSG8{i#rIbVYU+Njn(+>9roQjMi?_OrSK{N$QP^fHAC%Uq2|-PWZBpWF$e?f
zk<=U#zWY|@N$gJale8NpA93^p9Id0bQ!ac=s#Wg$Z7SM*#5&{p?{BIa{$k{7_3(Ic
zu*q=uhlX++_u+p%N(b1#a=|Uyty$~010G`*9!`<U79xkK<q0h1TKX$x+TL~)Tlyyb
ztUuY>53Njf$9p>Uw=VMJzLJY63Aj_GQeWgsh{_DyJw_nU;XmmUKh7;X7I-Nha^-5=
zB*LU~`LZJ0Fal(Pl$Ut(7L<v7kX}B70Kd+B2;-6C*5%dov0N+PZ7L94UTaWbe5fl|
zbl25<MbW}lJb@dKgA_~^RH#uw0JSj6M5=HxaI`sMclMtweHY(UEy4!5t{xnIDm}^_
z^BnxZQ3?J1l?%WyDe34InaM7)pH7_R^$xKw@%0osfB4<8Fp#r!8htuZVryDbB9kg3
zSHf9o;_k5##8Eg0f5`bYe)Z4{$6vNkLdp%7c<kOtrtA8OQ|`g*@~RvrDD)|ypcmhM
zk3RC^iG(TkgN;^j!|ErGH_4zkFvlsTN=-E0e^CqQiHGJJ@Dh!7O)PAW83opcOi~9i
zsV40e67**M@Er|<f#jCi{S}c1-=n0YLJqk?er4}HFk2-tEBjlJo&Lf|e7(!7=8l|i
zq5G>#$AY#%#R8=Oa*@N@X&(zFhHHT3(6}2DVhjHkQt@tcELrMs?pJ^+lPtL*t&59q
zSV~^HOn33KzsMOO+?c1-CDb8xh?p?OZ%ge&)bN;Uu-lx`9vQWtuAKgbt58wFx$p!)
zs(hG*0Gd>mk+p|v^S7!?rl_`DEzhv4w#8)H)ZcBLr#B^5mpiI9SQS|Y-s>LFbR)Wd
zC%(B}%ys`2pZw0S?i|n#mo#R=9M8%)4%bWFbjKq~Tk{GRtY4LBs`*EaI_&+QEzkg0
z^`O4?A2}T(!`RC@R1@F#i5mKulO<Q?l#__;%9dujcU|EUG?#)P(!+8S>bGVkDazns
zxFd81Pi7`8r?qF*wa~|ULE%qFnhu|*`j0leA%XzAbOjgVBs!USKIy#QVDB6<wJC*1
zrX<-;Z7-h(P6gjB4mm>Q_9tATnLu;gpX!1trs(P&@IQxt4A=9@yO`+B^(XRzE!%>S
zI+^HGP^P{w+)ej426z*TORKgo=%IX9)&nLV@S>iB#KoH3(Hs3s@<a+4H)0e<n;CBq
zJ8$t`3Bk-(SIX~fI)nJ}c7ifpcSe)t4xwsBA3!GE9^T7wPu`=*GRBlERj{gYZ#;*A
zKP`4sjZ`lNJQG(+l@XYmuulnXquwYyHd4_kd~G5k7ghu-&J7|I7bz%N5G(2(8TRI$
z&TrX+<P$T;YVx)RHU4jxqHHzRXYh-l`hiE@RZHqvApA?Z#(6N|=&$$W_-#Wax$|Jj
zrNwoFSw#j?E*06t;2i4Mj3y&0;vbr72yf*Js(3iBEWY*Z0a>%^4eeb<4wQ|B7z6l=
zMrSQg5q(*+3+XW=FBAX!Zs0xGb*u_`QqipZ$EM^T%2=TKB}QNlfvAtzT}Or2{O8~Y
zzF8A#-bwH*9c>6vBDk}3JZD~QN4pj?e#)NGlD9enz*`Mr;pE3E+^y5l>?|RFdy|^+
zWrCDw5JHs|HNSjxsvDv?9@W9&S+WBdPWC6E03^JINP76K+Qz3SIpN1(&ij?&cUA?T
zz?_$a9sYd?tAb22jc->_PzYp(N}aA8ZbN4^tW*Yka0&bO^T*REB21w{3%^p0tV8x%
zv0x4fV@=cMCNQCG$fLL2%3K{+5fys1fBtR?u1hTr4FGpb&?M6ScdR@4_v&tC<ZWFe
z0TuFeJ>%o?*5`J)>XkZ7DDd;3Cic07UB4r??n+>%{flzDa@m%J{&R1tO7=paNl@}r
zzf-fYj2`y)fWxPgY^GmT`RrrBKX8@UXkSCMTdXZPVLQ`<b<vrkKfdE#VVTapV+*Xp
zq{eqboS%6{S=ldN!+&2myU6m2^5o>702?{&QZk~B%yexi*Eu@MS0<p7f-%0|xmRg0
zh8&@yBB|05mW2TrII#CkQz8!*qnM@^6)UCxa#xvz7R+fGgwAC=8m|%1RKNN(rI7~+
zR(@QQFhfnQ`dU1~eS4ObswQ!TQ@JJj=`jHgJ@$pvgaG1qh{8p72qPMecvfCIIWDmG
zS|6$Y!+9bhNUTU${zrqASFk3mID+U(dAR&o%p$4?X1)~4v$yj@NbQv&RU6r)$XZa0
zmT-O#YgoK&zSukxMfPVYiY4SLAct?Nl=H;DJ84#~#C$S>_?9fy+C<LkDjmq?134?{
zB&zwF)lQb8@8V*g`Ui#kVWt0cgye%s!AxAqaU@?>kzqwz=WQgzt!6AC0C&98;u9ex
zseT-99a!NVI*x~BKYe`HEuvXMG*=>?!F9M6Dj=(smXEOYCk>4#QBRWaHP?4H_-kBr
z2j=&DPd%0@(&L^Tll`YmXm<<W!$awUu@X+Cq5t<A8j!1$;2oh}6WyOYm&LK_0@Zdj
z7tPLOEYy5I8TZOK@uk^RbYB@dzCJP!z@$3X{990yc}#Xf=uw$z9>gQG+r@tT0);Ec
zmprY!8;)X{J!)1G@XLoZqYHKNjIy!yyoz@Q{g98$V`G}NF2*IBceeXQj7NUr>n}rY
zXQ3JQ3`-&ACnfTclWI%UcJqDVVjRr9{K@8LETNg*EyA(pgJ7n4eC+*VbL@NIFFAd{
zpev2Nme=gvE8B*cP30H5IUE(^Ve5BMC-gFJVt2q#C8}w^O+%?osC%+f7w4bSEje_Q
zcrr=WEFj}+5bRUY_0VMBbpYju@Un?<f@K(Du1Gh<vdKQAQ%uIs(z#aTOgap2aBO${
zh)(2}>)Z&%QEt*Ifs`-pU+1x7Pu(w9#4{x<=A|6_rCdnGD~DruLZ3OL3jn4p=mu)y
zISbT9F5VP;hE0gPdW^Nk0zJ3u$K=j_{!HnDWxsfc^RcTBbS+BZV2xw@7yZQcb}Cm#
z#j|zz#iB}M*Q!wVC5hDm`w9%>KzQ#hQiR|(dxIhX7Stwqn>`uo8MBxvQ1b;!tieIx
z#=X=m7#b6?1Y!qLGcb1nCNafn^O6_<68QvXJiTne+{2JtjF`9!ii!oo_mJIQEju^s
z<5k(Lp-^E~+fS6NvHL`?wECDHBo41{Zq_%+Pq^_|8=k+nVoo1Rx)8l%;+zN;b@K^6
z<>7h?Woz$h&LDf7%sVT>pO)4tRJYo390Vpxq$2N437$=0VA<OBAk=f*ZmS%_J0q{f
zs|(w9hFBc3V*^~3CA#HCWA~;`pwV8SED#|ze*{m1=(?;dO5(n_M~&G$hQ<2MV!@+T
zwk)qrv^v{L{V!sB3<0r~j2vTjw$WfoNsbgaGks$_QZZnzPKLqI^`!fBOv=>4eK+Si
zjRP~afrc2qqKO6Gn~(<4VEb{naP`CA7<%O$-{p<J$y!x0|K)m!oiDb=h46v6ryV7P
zu#)<Cz4O%*<%T}^&LoC1iVI=ITE3^D9}R|>tIg;aw2bXgjDzfJ{%U0`1kdIHIVzw5
zVJ7Zp^8{ehhaNS<8nq1*QqW^@8}_qb!X|!QGww~4a6-WTcDYS#jqnF+QXAC4m$8Ag
z$aKQX%w09ZeziVN*s~>Ze8quz3q%KNUzN;%m%p$f7~Z15TrZ9mPJ6u%QOQa>0k^^j
zEo#90sXjbm0QCqiL_fqXHmFJqAXcbg4L-y;lrSUJ2KH<#syn<h=;nlMjJcr`VL1j1
zh(Qz)6Xs#u|AR3$Fg&y6u8f(uRS**<`Vjku{^0n2jM*TyF`f9Ug)`Y$DC3<=RyeyZ
z+6fzi<uJ`t=`+WUZp5#T2`@Eg<lA(2X)IVIu#2fjRS<r7u2dgzpbZ8<KCnMd0ej&{
z-MO3a!{3aUNs9V(6Z)(VM;Oh6nk81y8?OVugDf0I2Z8|vQ{CZ5{dDqkN#FzCBiP*c
z%3JK5DXXh(js6WT_q&>`*|RJ5ZLsQo-=2ZrWcl`JH#AKHy$Z%{uY6jWpcoxaJX5PS
z13S8<ZHhb!pmHpRk}RqPdrGxzGlB+k1i(9f%F{a$GHQ;1KKGjYMK;3-7-dRjvoE(t
z0J~v0bdSVz)GfA9u6CuNITsc^d?J^kwkQ%a5>Y;Cs(lMSG{s;OApqj!kqApJALKnH
z6(g92W23R5Xd?sN{)x0I?~$67ql*YDj-<MXFTfB-5;*`+!!$DYsN`GmUh>a;Xbw-I
zO;2NZ4go`w)$2hO|1l(&QbYw`)^-{*4Wf}t>j&<VhzSuNvYA1c%~ORzbI_>S*S8}p
zSVSU-2QHpU?$D@nhzl-{&bFum#0X*<%s59Ej#SJ4hQXmZ87Xf~vEez*a=Si=ORiTB
zXTWbfEOs$(;PFAj-bvyS_sHCFhIw>>t1S`f$X5BD1zS?fPk|GU)~JF6#bt;89>bo6
zzmY>!K1)n8wOyFs9=@cEftmuTHvU%i9+mS(6IXk6a8v<?bbewyOAIEhX&C8$pi#rO
zjn2GLqKVlSUP^CHbadf52$UY<@(|bhp!>RR1Uf$Ov2}w3d`78boD4e2zC^Xgxn5z-
zkfj~*4{hdtM-~*x;N_cGVn_}^lVAr=aIJ&gaTJ;2XCawMTV}78bER{P#uSJTnBsqY
z<9QPTfjgoA%oK%sVw7tg=l2E+OH4P^k?QzX^~hX-7Jk<pi#EQuWb%i*3}p;%)mP5m
z2|I>l4RZayg-EN*a&LXesBSVv^GrkmmUBb_SwA-o6!P+(1p#reKL{L|H<|lX=c|s1
z>|c`jT@|FNTo~<a+jMKv90f4&(IsXG)6_8@xX#g%z}vHbx$w3o2%2C6L#Cj=hBN7I
zYAR%@GmYXpG3Hl~GI`;|rjG*xg=yh*Qi5aR_ZwyWFJ*lGP3hq|nnOgzvd*Xi-9EA8
zW3F`VGb|v8`DlWR2b!i}e1Z#iur$Kh8$)tM$XykHA$eV@ktCoISrD4%Slf9KIATDU
zm@;Lj0(QR!U%$5B8&xVaFk-+TBcSN`aAUw51Kk|w`0%sw6tfLOQj`Xll!%J4Ow-W?
zR_TLgoJ*?~YUOeolxy3TKK7LQB=Z}<>7}x*k_&g0^qA{)lrm=7*{f8_xY`Z-l1!7x
z{>g@H;$Edc9O^Ek>IHbow^Wowtu%I)^e<Q7(qyD5Kzu=Z9+2#>sq*V-FV>)1HNI=L
zmSq_^w-eHUdj`L7o<`<)7rZl~qMCaqfny#pE&OF;dde5u%U3!%tt@%Q8TWN-TXdgT
zW)!BRT6oW<Ful+#sn0FXd(vE%pIPGh9pf&0A=8|S4O%_UyOv;bnWlbC(63EToTEcW
zRWz|wTJe^93jp2tw*dH(dC3P-<UGcKxWp=#KIVo$f?%O!p8$xI_gz=~ItD0m&paO6
z9G9)h5l-ID;^;<$_cvskUwk=achlGN$a{|fv}lg0MW3hiBRSO_0rmxzoWedE^<46=
zP7dQV>6J*sFkP!)YW5`O9CSX#8%7VLS73P|VTeVJ_*PdCK$R-HusdSwD8gbdAonLH
z$K#{@nqJIYLatzWJAQ#L_&r1^uqK>c;<(CxOb8Jz6>10Fs5}B_UYf1__UbE|>v|Fm
zn6>)mq$**AmWpa3E#KXs$l#b2m3>Wc5#jd_^Ujw%5L0TgG~8^lune8OlD7*ByzDWz
zzoO`+?CG7j^oEzQMyShb=b*{Mhjm385?PqJ=J|1EMfmBR|L;54-FN%ljr+1Qcug)%
z+Y@aY4VbmHC2O2~X?g&5HU#Up#FWJdr5VrSH$CVdo{J6#Es|#4);piYKC2~2cd#^P
zVqV=jrBr8;SwcQl$rq73y<U>yap_A~WriUqa5V2}L9MfWr;)arul+Qqo~lX|Ne{og
zx=&*23xD@^qEg7b5=_b)x?DN@lC?HAf~R>G5@|fMxZ&P)=d=Fh5**GbaD?h!S{QnJ
z#7l69Q4HmmrmU@JXw*fF%CFMV?}G3WDxAF}+mI9RWH_}E<joW4_LUj&ym>{1eC}K8
zCAK^_lPaz)%q@ls6UJ)dMIo@WlVvJor33?^L4cE}56)T=1EMwV)2SpYQ0{8i__bIh
zLoaHo-~&^}c{ZLq33Z?f>X{09>%X8)6=zVsmXd_q(9kf>92FQSA4LzprsP<tBt?px
z`Ee3y%RH@<K*P2IA>7vPqlyBO+Ct5_Xj5({F7Cwnm;e{d(Qp2>i@&d2YLBK39Ra5r
zIn$t*GYSki(=ix)lStz$JQKO^@Qs{{DZ(#=sXJqti<P;XW&R{u>_FkR?)GhL0Z=AM
z-U;JZ9+zf+zF=*0{^AEjefj7cb12jE`|fO`UClrzhz;9OnUV7C4!J{byz5g!lCB5I
zMAs_+hxxj*5X*nx(^HmhEyA>j<wwjnIU2OtG`Y2Kry6R8J=MfUF%bg~olQP^M`T9o
zZjCH;giPXZ-EXrSY~FDZ^hx$<=o{QaO*_?au`pJ~{z-IFQYqp3!VK7twT8tqPt8@m
zb$VU5HSXyhSHIGBJ2XgbbN+Q#)U#|>BVm-v+GleTKZ`w<$9V5LX99>U_%ztY-I0?S
zdV1-zuuS{Ni=aMs57$p+=6cX6RXZ?rPplD5T$EG<x1x?!;J;aK_SdvEtKGfn$b>1$
zoaQf=b9wRxDz;RRz{|lli`_0KS7CK%hm)x7S!E`riq|01S=gFuU_8?t9@wphU_v`C
z$M|h7Uxl)>7}`2$(EeB+4taEZGJanU2|;8TSs$%cq^Lwh$S~<&Zw2;oH{KgGK-Rk9
z+k`LZ!QV({J}LQCIj+lqX$@x#RYpTz?oZu8%}s7DANfZ*f&wS;$|>-jLCp*(V6*dA
z<V49K?yVlLx)@(^NnQK6o=lRt$vO5Z>3MYM3?Av=*+{h`L1hYs!3Ty28%Hmi*2a-#
z+&v<kubu&%WWo&$*Bq*X-_pIJTgThpjYI%=B^e4qN@R=>GXAKBf}iV8BbzBk;#Fyp
z3g`AU-C7hM0YVe|k+3FSOTIl3L0}gF+4OQ|bQ5UCwmz>N+DOgUI{(@J57S)0!kV*g
zy{EBU7u%e}h7yX>@_A*Ci?uMC9u|R+VQ@P;WHc#M?`oEeA?S5*XR_3y=LhLZDrA`F
zFw_gO@QrpnGd+`YB?^6eo`C+dn4FW2&w6+LH*a1r^cyO~{=`<&4B{veoGhVF8Fx6x
zT3Y$~v^SYgy#0Nrny6uJUqUOq+@6?aaLPC?_#-mu&Kk;Xkv(-LL1iOWG+_%{;!+@E
z{TsAX23ZMp6}lZ6^S9qbz))4p-zf<>Dz0`T|1w+`H-a3T)Rn`p9-96UejepqmxaeK
zagdEe->d8Vc(IR)n&79AXtu?I_i3oI*#OzoO-Z)O;VmxgRvSGAgi0G;aaGN#LxxqG
za?SM6zp+5IfBJ45eKZClvRQHzi!xh{A5E>y#o5mt<SBLILiLo4k+HvM$_gkY>?|Hg
z1O;B76(3|f-sN_o?z;sv?^jq50;sy4!uOoqORBJ~ucEPx<gK$KgBJpQ8uq1aLytT7
z!Z<f(9j({r-v2;e(uD>k<GBi7#Y^dc-*c0flL)h32;|Nq#!(Rn2<sX0&8Aagffk_V
zymG%1?3^BzV52`P0(H6`hHR)YR7O_@wYunpraR?+mfq?LBAk(-x)~{km;YeK3-!V(
z-4h&bBda1D{lY9<Lf2|yVuZW=?c8Mav6bHu1rG5qXOTnHmP#eNWl<@Qqo#|G?(U0R
zDFeFcQUS1}WR2AHJI!0;^O~Xwz0?~iNx5*@f?^R`h7x4ZZ=r_$@+Ey^7`0DLoG#Ga
z&hL}ME?huu1usH#2<#_*u91p@WTg_(E9@k+)CPz{zYeyt)t<y~0pjkUU8*H#r?TVj
zNKNgiJjo8l$6=W+NkJD~1HFRH^!d6IQe&-54!U#qb+Up?ur=17<L0-8JC>CCv<pLO
zy}1(CjW1>f3ixkYs3wP}BF~JHzw{@BtZcDPt$qF5w!~kxU=}M?S8Te6Pd+2|eear%
z_ljz40}tz~=U1{tlVJS+TeRzLhUAVcNUSl<w+e@wUqKS-=9GS2$FX$P{k#rK>BbDg
z&gM<e3Tq%5{bJlN`XLS)#o2gK&A%qjZs)@#L`?s%dD_+T2^GBv3VU49lvakB>7P?I
zbhs~hUDBHP;>b=^R>#zo*?vo&2%nojBow;7wm5adK#h+GtlS4E65i;L+BSOg?R$>y
zw-NG87@xq;S^)T<<ep%d@BSc(=lgO3_-6cHDl>fetQDZHdRf%n2dc%$GNm4kOvxqu
z0VHa#-YQr~26M(XJv$jxAD{FmHnBxAw8n)yUy+M~b@SI5{T1gUzj}5c%`i%Dq{2C=
z<^XGJ#TLgpATd+*8G++|&bjrr8~2AVE-Z_fo_KF%6Q!magoiKIxRu`0VPha=fy`4=
zxOpA=JeWb=hf)MpOcMx$hhJMoU!naO<HPsUR7`k6!CtZ#S)gSKLiqsbgRhk`tg+{7
zp(oGIhmXzrBJsnoimjsSl^{Vi8H1hU3#OMZfcxp2Xzra3_?v(^XY$u`hs=(A==cQO
z#arf<_$SsiiMKDK%C@Y*j(oz}>0J8tj_4Bs&|J?&Z70X*Ir~wL?aCu%kLAU0SHbpz
z1X&d}Mw0|+o-&h1TFG~itzE!H2NT=0wcs@6fX)7^aOpwgH2r&AdJdKDy)KhIx%3KM
zfB-Bs#;1l+n+FeGemwh1<z|BJ@(4TfNj2cgx3w6!5!F`LHW*gtmT<XoT{@%zd=6XQ
zbSdG;{xzrBVc1yd*Am_Az-pQEa_`hBj+@|4#?Nr`<b1Md@J(L~Ze&y!kJJ%I*E_1c
z0~hUBaq%q|oV+RzJmjkR?;R!Ho-~>VEp&LRUPvi~)3eCl!nOkp&=VG|L>aLT<{;Z|
z@U}Yy`<v5D@t}}s6m(k(sUk+gM@MO-=MS`n5L{9yl?OyzZ=}B?ZviCTcp-x$QWrRO
zVdTWm>QcY)EyMmOSVr7q_zcb9v>nyDy{}jg93R7SmEY=R9?LAQwNEQMG?H9JvzS;&
zSq`Am2cjbn0q!VdeDPSI_m{BS$2J8#B{LqA;hEKvoI;|IM-Ja2qxON1xCoqqIt0Lf
z$dg&jE~qx7{H<_f>2=uH!pnyeA&%ipS_}lISWbMJdUo${Je<Sh6VXY-IQfwOISwg!
zoWxDwDu3dFRx>IAMUOhqx6>>t8dwA$#bZCao@Sg$=FRiB^<+nk8@Dd3*J}g+TO^C)
zl5av^t0NyKON`l%F-_t#f@D9_$TU}oxL93;3z32b_}rdqxGI`euuU_vjQ;zRX-<n*
z6TB<U(!DC+iGJfwVsjNgEROz6sQw(;>Xr1j8bnCR`yI#%@;0@uoJJpW!ZcZ&wwi!{
zA_nb=-C2M7WSE3~C!P@~)3;B4%9pQr-Jvew5nU3*J3d{BbT9bLF*rANphD2Vo3ymy
z>%flwOsW1=!8LQHSKsoz%OZ?2p{(UpORl?_uOH3>#L%Xr1mY#Ap0@_FL(v)lX$8>|
z`Ve5!rdHtQYU$r}d2n2>wH?UhK)Z|Tvqg^KaKy<JZE57{%3M61Sop=ikBJpZ1a9uf
zalswIlADpBvP_}82yNS;y~E}!q-@`TFF*e7UfPy7Lq4n059()rz$0~@o)s^}h|^-)
z!aDu&JJ|Vay+gcujbW&LC~kXQoZa&mrtu=C&k}hrS-@2pdFO&@KJ@E}kG=U&i(U+P
zMoXAE$$E<9NaG=yTgdCJR;IaEc_-gGk!~E1tR7)>m_Zi{qg9F|C$TTV=mHt(8~UJI
z>Ft@6_`rNC;W2<ym1mJzgOK7pQUIxlA(r8=mui0W-y7GAF2^TwNbKmp6!Sj?rk%>%
zY7{tM*dYH&5|>kYfQ>ntVe%EbV&%LXNLQWU82ZQAn`n*MlF5ri_G;3UUvNlwAG#u|
zZJ`bc48SEBi{oZFE>Soq+D@=P<=0)`s91~7rJIbok^Pv8x3pc-C^_pbRD@`q)1`cw
z%ilpT;^V(>!WZ^k`jR%#Z4D=cidz)=@+VU`s|92hP2dxJVe({dlQ|_n+e&Ulw4p-z
z4)U=Q$<OYf`D0>QI<NT{WJqWI+5^i>cXfRnOmOqPO^7uKX>mvMq@UYw5O|M4!r(aU
zRG~)7W%-AFbfHw<#V*?oR!G7xE^!NIWsJbD)8Fk7j|j-|Fh|)mtXaSLZ;#4-?s^Z>
z#2rO39cR*te=i^ne;@TFJXrfg5NzmTQ}=XhbkM+U+naL!C`_>nJyffgI|nX#;NrE|
z%?!m5@7LdE`+d&;gGQ(ccz?1M-(Zazed6mj1*&%aX|VHM%NjDn%OABtnu^_UKA!>R
z^LE=GeZxuL5Gs4I!AVyS1XwmBOcn9e#ugW^<+a^{l4K^C#p<|O*jgYKtdK4NQVDqg
zc%_8n(b;#J)F@E=7u*rY=tgPak96PD9D2|)T0P87M)9F6X-_JWmc?gh0wyToK~Ur#
zfu5}dVRo+zGaXsNBJTx@es`)O_-F_s^Yj`aXO{0(GcQdvfqK4-XkdTp9ir%bDJ$~y
zSm)H^v;LD1l~32Xi(qsI{?6v&0pYq?`Y(QvnFemv-W0P=zo^FN82RMoBze@Vj0NWm
zitW){%+2(S!xio`Q{9xGPl+&B*cUM~dVApUSgL|RfNo^lI9(h1v9C++!^q|A4oj?Y
zfRdsPl?=nki=aV4kAXu<6mBaj{B$mo9dfGHJt8WPelxWSqD7*7i+Cjmf9N~dy=BPa
zBTk*xpNa98Ns#`7GK{8V;x_fRYQ*Wi;Sahx_Q1#Nq`N8w`IQ4cHgQ+sA28flD1Q+0
zw9Qwbe?3pn+GWL+3}PdCU1e@1&V^o$rv)~Z=pM*4oc22y0~i(pCrn|^OGZ>)JH;qV
z{$2&<DBiT1V`k>36$uVZBK$#-bVKyMc(QV%bf%mBMDn-8T3<_h+##Z~M}2ZN`}{Ox
z(QkfoySPYHylt~F9mJ0I?sd0<rd~swO&w4(K6_hjigxhueRY1#oNc4j;v4Q0xIwtU
z$GxzuUNfzk`7~dW+|~f(QZP*h-)b}yPxC!?cGlJ7Om|y$ch)(9Pu{-V4M#}NMki?-
z_+&8JSE6h9g|qx;bh{cCVK`|q06EqE^Yjl4lfHKFXtPV*xSwE+O61j5q^Se0umddC
z*3TlOU21BmN_0u{RZX!8!<zJw;!tVS#hXkdt2na<tauL$qly;&^bj4tMFa5AS*X_0
zh8bw+#oB_g*@a1TwY2(49#Z$sVAcG=;TI-Gwj-PLe6`NVEB^?Cjhy(Lyw!a^NW1`0
zev=!Dwz~tEmfOj2T45)!(X?8q1;d)IbbVlVeSjbT-bu6@wkKQy7lE-eM9u6qj2wd)
z|3ynSo0+tel>1+d9LKKqd&?ly*~0C}@mpogXjz59$-KCo)oGl&S=E_hSEbxuF77uU
z>A||u?Wgo}MzB^?Q6W(fPj}LFEcmo{iD$mJx@x1OE^CJ64g5QO%73Cid73~(MS`Cc
zt2W0L+|nbRZYS>o=Z;L7_^aE)17kl=jzRn9%kRB{SiS&vCiPW|OzQEBFMvrsgM4VO
zQ#ND_weS;Obn)Amd1oT3vkq7RR|G|%s)C*f^b-OtYog>bi%OqN-4T39H*(c^p{4AQ
zFWh0-A2w>tu<x(7shJVJooLnzNlr8jYB+nh((PhfnsP%KLi67a)O(5rFj}CWAXRtI
zgS057FYW^HS1J2U7HQUE;mU~$$Qu1W;O`g%`1;tL)0>d0swpTBh!6KCp%_QQ&3BhV
zMtjmLy<_@SII@YOKZXohs!`0d4fgGrqJA3h8uLYOaH!(K^ko@tvP|2s>onW4BCJ#;
z+ZuPh8;KPzH@}Vcz}<Z+ZBY}uw6bz~j+Gdgw-0hN#Qh=<9Z9Qk7-OvLBejjD1C*WN
z&56^#$Q<NoiM|26q-#_B*><+I0%Ntg=%VKxsSzc{U)<W7xQ3R;U!K63EUgc{-dI(u
zSamO6p3cb*yx!nIGVw|Gmq+Iaa}ET$W9OvD8~4EU2D#~$9q0z<tW5jJM-3ga-H+}N
z)}1Q>(haY-m`Or*((^*mfBdC+Q!N`yi$@z}>|Y~Zo-(rL-5)Qow#h~eYmDY2+aK&%
z)K9Tw2n_R{iV1>q2eDQ>4L2fWOOzITOV*}Y!EcGiL@w2~ey~^YO%#qt%W-$PlDP>y
zRVlRhee5r@%qe;c=B5JR?TmhWtlo08Z>+rfqY6Sq3;Z1MJ9B6y-BI&R?W|M(Obgwd
ze`Opv1{L+yT~Gm9r@N1Tv(l-u8YEJlpLci0-8ozii?MIA43>IH%ZgGg-Qc(oOw!pS
z(k`WD69cH#u9{wvq@b>28^n|?|24R)bfI@Ft#LL{fka4~G$<<bsQA@3o*IAt7qI;o
z@Gqn1=`UFD=_Y&XcHdlN#arRqvtSl9s3x4&EmOKI?+VdDtkqPe5x#XcX<I@JZ$5Ui
zTZHK1#D!9TMZv}9u2fIOAi8wH-a2R?fVUlyIl@h*;8}=&PjaI@73q4zcz0X12rDLb
zr$9UI^^yoj23j<ap*#v*$;bTx?Zr_z{VtXI!MxF`9v~SypmMUlnyc%g>jPI0Z#L`g
z@zaci8Ra(($o#9rn`9U#$9smBvLkz>9qob$$IL*SgFTqip66~lkGbV<8jv2f`D6Z$
z?X6^exy{-iq#qnVO?{O``a?Y~^~2@^gS?3fsL66nWq^o=`0uYFPUsF|-O;u20dXD5
zQcg#j+jYt$VMUjXlr`<M24yW};=}E3<n=!W`?HtnLh&-^?|CQ_NL{vcye>8ukq5KQ
z$Rno$nYnKc`Bwv5u0&UPZ#NEiyTTy8VX8<TI_r+c#Jk;&{k2fuVTpuk%9FrYA(D<a
zjef^v>*!{Kq>f<k)*o+7S>K{gF%1`s;%;^sQ0)DlBIsT0q37NBN8&e-`t7gO5pL0)
zp0R(bk;Nf7$(OuWh5Qi;Pl?0!A2d)n1&zfU+4N&}8FGgY(TKQQdhM6uRM}fJTg~en
zqAIHtTW)-*a~mhp-VmqF9dRDc87|r@6{+7qlpLbY8yWlcZI{L)w)auK#dz&9mUbCR
z<Bl6<Gs{HU(#{(XN?%wl^phhpnR(5~VeI-ij9VP=vSELcp3qV}LN@A2+AiPr30iCw
z#z$<2?DSiz5~gfLl}|nrU&s#J)5hEAPRB?Xo{Bi1>KPAXPb6dBpWH+zB@RW5Xtesr
z4mg;JaEw+-;NzF*c3IAyy^axYK^(q2S7vZKKX(@@LM))hn+i!}jmZKe=fAZdOfLFq
zcm#rInI_iGKWxI(efv9mxVsE1f%NYm$t16V;7XPa9){Z3?<pk9JE672S+pdmeI1H{
z#<2*FUnD_0a{#qL%x?R3F}_hfK8&W|oj<yJWD30)9^AUjcnt+TGC}^}!|M5I9rV9p
z9m36W{nXEArAbK-6iZQlICY5WEA;AVwI@YU;YJ7>c@U<Yz`&QvlS!0?k&gYdk6$5=
z@CR?6UDM;~=h--d>=^7KhW*Ng)5OtkEv=Pt0fXw4uNbRuuJu$*4FrE$Xw#p@bYs{>
z)5i+E`KIeaZ~xsq*)@E_l$cH;rGjR)-<PIiP)tFHy4*|LQg48KS~axxJAbm`80K{8
zKAO6fXlrWsz2X|?mCXg(7n{=<xfw=>r~tBi_zz;waLuV@1e<*{k}4gia2zXZLRp9K
zpTMrcO1tmK6di*>CMh~b%eBD;O1gUk+YB!u&FLIRxyL%BRw$P9A;((H4jU>dTx>(+
zJByfR-;Iyk2GiRZUW%L7n``abWiE6s;_a;}jK3SJwGT#MpnU#PY_bb_^l7cf+eN@5
zevb`$Bn==OpvJX#3@^zbc_?`<S!oHrws8$d0Cu6<8K{50a-^g})~EC%l2u|0IEKog
ze_NB;m1sVy*JV(IP??H2RW+V^aCi%%<w(FpfHI!43Ozl+xIDW=wLDhgm6o*gR==Kc
zE&OYJSB<IL)!`{6tmpBkN?-kYX<LaYP{4w-rh?O6klI4h{f5ZpzEkxVyg;#Z)k(6a
zvoCe2{9(;y@|&Ctb#3y2tI<@4s*SLLhOOvtk2tI?Mlp@Zs~NYB!C%0p$};sOwMY2>
zCg}2)u5&a7;IWUZdUC1R7B~W5pr-8uy53o+gqG*rK;8}lIu(=thiZ}*>->6#037%J
zc2ZHdb|3i&9jJK4qI+Bp+}-!ey+oRof4oKEd9Av1WrU~tRuMX3JN_@Sz^-9+nuz`Q
zXxz9bWsa%mR<V8lp9qse$iE>Js_VlKl;U14=(o*_JtRWb)f)YF+r0l0l%`~jpH1Pr
z`f3?X!X8qvw1|J=(UW!oipLL!HPHESP3So>rK5EsjPaT_HNI~x5erV&b&M{QWoNl0
z^Sk_G?h_Pd&m;i1bSgAw=+d7@pL3%1jAUs}jfw4fAs)xn-tunCk5(6R6dd(s(O^?`
zdnQpiggE23Z!30lo8b)NVp7!`JdCdlhS~q#gH?2upsO-*@`@c>>`0F#=5eXD9X@Xj
zSEoCn|DY9-Uhj#1ocv{?;GSN2h+MjhSdq-=>SVR%nO;erVzP9Hr8<F`^{7=`kZe1@
zdYB@PSzjFJsoVb@o-b;Xc474pM3rB>i8N~2q~7j@udV=ODAO2mCcj${_UTwRaejfd
zi`>iCsOMvG?`B(TCo=T0W$frwQp8WOsT4{xQ83SuS==;l^Wx$!1`Z2!3e<m-C80~1
z*%GLjxaSNy6(Ne6FK(Eth>2@zu3pT>^C0jTev<mqwwzxJ&7bXiGYJi9HaABuKE_<_
z(-;551n#VAbctS!OcwqE!iI*|k<ItKyKp0RASKY6xHU(bnOz=PQ&+)LGYEg;@sfSO
zFp0!{FeqXljI?0}P}-MNQYJ4WyW?W#&m*{PUavXUm^=P=VLXe$LmiHp&`Er!4BRQ1
z5Z%Ckv~178=VV=W+$3c!+}B$nc+Pj)oQ2$SJgw4*HLu<OwBxn&^(zhlSB{f;{<0nE
zvgN&!IH=rWj9n;Z638x;p;2?!75n5qt2QHO;J%UuwbF9^fttycy!p*=3j{;l^Eck=
z|25M)2|){TqB4?3jCOGs3E`9p(fh;*44zvPy=<HuGS1hJQ$eTVhd$R@eOIC8Dou65
z4~v=ZyT1F;FSG-7M)nNk<`fD5XwRn)_Gu2cvWG(VvkoceXaha@MDD3xyugw?&we#}
zHIDQ3xbMDV;a4m|5`3y2@h<ho(lcM-vOAMl_uA%biQIV=i&9598AaRe-HwC%t$Zr^
zL@MHY8VI;e&u9u?<ilm34TQh1_P(Cz)_m=Ijov)#zvA~*zFcQtuPG09h!2{)>;FNg
zAw=ze8rwCzb51gR#<n>XZM%n~5zoxGnm-nmVBl3O#Orh=kc3Q{nP069#q<kV-gj3z
z7`U@<`Ga6pBrExePIEaSAW+1gDx!Z0S173zLwn$@TS-0jR=YYfiVC0R@@q)s^ZScC
z9H58suCol&33~X1#F;CM@04cbgjF*DcF+xly9_4I$;m8L-*M?s5N9!)OuhjZMwj$~
z7%C2`Dw8;#MG`uW)dQ3*VDv*xQ=&)0p|wqC!by>3kziU$ChSt{YQ-8*A`r@RbT#42
z(%Rc}5rQkB-832IVr4m<)Wlc0;?z@Kq@Soa!CHDa<Gj?!HV*Il1B~a1SXKtlcs0GE
zxJWVC{X%%UI`9tL%__IJC>l{_h$rL<S!Yl1<X@Ft2K{0%=ikyH9qnY5*zqp&Y8zcT
z;&!jzJh?Ke7#R*Lv9&w~i1Bm5T9GZ-C|B~MGE2)uRtchO;6AoDwgkpegJNW9<?U?-
z(&lV!vxUW<#IJb3-FtU{NYAH`+h{DopC~!oimaU`0hjP{;vUiPwY_~Z%RSUn$St1n
zuR%V5TuI-7ILljY#x?e3a-fvm5Jt+EL<W`b*9)4VVC6HKh@<!HEy7v+J$7^}o2vlP
z1N)P34|JHlK%#9W&J-oXX?%pL%A6>JBJ2V6^4l5-NfosOF)_?!31wV~gf<cAU5YsR
zC_cYP7>%rr49T?6ic}<nLo{wZf@WkcE73uE;2<26q_EF%P6Oh)ONnG-U}4+ijdSa7
zjhY<T&V@k~GE9exBMI%@QLYO#`ESPF07En5B^nPHB9+R54Rjtv<cZ`N>&Yy=;xadv
z5mMg+!*prWwD<_2c1MjrBryKkb1W*RW^mvr8^Q)1gpk?lc@b^Q_~ix;rv7}g+hTRR
zr{}HP$J)HY#492=kSveHwYpILGg{_p*KDkV!m1PR%%JinW#ofy^y=qLUbBg!7|yXE
zBu#2iSpzWH`HYw9U80mHT3VBFJm}Rcv?vD8nhM<|7`?+qRd2CrRrn!K^mBU=4nn#I
zM_N>(4x1hYox-(<#*DGnqGk+0Q_}hBl*p$Fa7Wi0&AO#pmNkZF($(Nsc<N>u<Jht{
z)cuU$o<fld`Up85x$%X9>Je<n8JSvXd!X{?pbWk%%^+9anVMKkUIa&6rrw|gyK#L;
zxlY{Xtjh_GA@k=H=9t3Lk6;S?-8lYu(WPCtbXG=5AD+<~8>MCi479O{a9&7V%3<F{
zQXGqJzp)aNrvk#=N(EJp_>>=$?D1a`Ti9RjIDOZpGOfZsnbx7@Tg==cH2wh5rIeT4
znHFRZL?IP^nvGS~IC-o8rq@#8(QBByi@D+ok5Zb2Ig|~(BL(){42*J)0iyv$oN~fp
z$5LG3>rkA<s@{MU)6!RH9;}#g1=W*OnFENIkH=2Ja-XOL5!LKJ{3=BYk&u?|;|#9?
z$2WG#1(aZ<;OGjh=>4c$@Cz7Sx%;IEqfX1T^lR6tZ!zS`9fwFdbXl$#4=H{&WJUR{
zIT|cg+E>dq4-g2|32}!|(&CAEEf-U#$)5d2*+D)RXhQ<UO{G2@X`(4`%z_c3;%u7H
zS87khnz9mV;B<Qe#io9Xj&72dhmkLUBT;6CB<6WIV-?UDt0ffqkV~<8BH)>E&xfwL
zGJ2Oi=MB>Z#{xsn)x$>?z)kQf@R9=f@%j8mz#A#FAS!sviL!8Fxyv0qkb2Z!QeU5l
z^T(gh86D;qd%E*vPgb(c&_@Dbi9$f^K0)zV)dyzDr`4+@hQ=EGGZY6h?<v}nu+Iqe
zo7*+ORJ9nRQq8?W$t(O~yRQ}-_O2EBV6|&It$t0?tV8^RJVd#y_G6PoMo#WAaytGo
zDVzPL%rcS3GCu#rwSC%>JDZnpY^8gfsmq^vg=Zz1mnglRDcoYLf~)WH{|C%KGr!7V
znlIf32+}1LE3$op{NpF(S^rl{UNL31(juGriAy}Cez@H!OXu5{Xhq<4D6dn6Z?p?<
z38TiJ$ikmW;1EH&q+%8R67uJLA`5rRi`~UVaBHpbkCA@_<hkKfxV@t`@Gzzd6PEGt
z=8d&35W7BgiN`Psyo20)%eZO*u~yY$kQ?zS7h9R#mUKzQDmDZ8YeAmRt7R?L*$eiV
z=M{<*63fUH>)(Evi~)Cn^6RHO$|)7aaRm(jSo=D0>?zFPPm$1Ex(>7aavU%-E7LSL
zBIpJ|zk{r;&{_|2ZCghlfrB0>FR8f?K@yHs6Hwv)65^|6_O6y`^pP!j;rrA&t3fq!
zl(v@RQ-Qe;<iD{yBDnu@l$r#!6@Xj<a&<-GG?>pR(TcX5gSihX<ZJI9gxorxyF^Wp
zXSbAoIor+Ekyiuwc7iFcQ(NoCnjbIcEmE)?{JA`6^~<YBT1E4f_mRJkO8B<&GaS__
zp{2C+6Vb3V>cyI6SI83ng5_N<p>26}y67d;`T{FlklzEX1PR@>JP-1j1YJMYoW;;X
zU^3tf37shQ3fM0)Waxv)-wX1r&RThMJbiH3E@EhT?w{bQD562E`4bnB`?O1VPs<|4
zmFM9*ysB122jsT_dA9rXkF!Z_fhu7HmC!KO?7UKzFdLTBxP;}Zgbclei^xAqCG5{y
z0$+r%%Gj>TI74MLiZ$QhGOC_&iHc`r8E>jGL^Z99e#q|)@|^T(h2uy2q-7rKvt~x)
zSTpY`S;7WbuHh06O1)r_s+Vv9`Cm~96MRZ=p13+up66!iR6>(ja|D-=?@I)pFJ%dz
zNxh=tuwFt0@;iV$^L$E}qDr_RElY_zR6^5O^Bk8j7nakxgzuzYIZ-B5E8#No&ru13
zeUC(%eI#i6Xz>ahTcYXnW<inpTCA4aM?=rLL}ie*eRK$zKA^m$W^Et6fz)MC;V=nN
zYc+4-!z8ALEz{mBI9QdGP9;@{%(tCOYWI~(wE9YxG!4vTP~LPd>3yX3fC^8M5NlSe
z-3@*N>Srm*`T$i$j$+|-$FF0g_si8X6bGNfnS0J96^HO`CNY8(BO<+zSaAWAW}M@B
z+p>yk1w@L`k>0R1a$<1{O1~27o7ym8TWye5{^AT-b&K>2W2?&NU7|e5Q}P*ui)FmM
zBF7Ti$ZEt!dR}4UJ}^uH`Q^%1B;Ppmv)-U-^p5o0V5<$VSVcuHs^;Sk*38{9=WBX?
z;yRg&C{Nk7()<sY{zB$8LUS}9qs*geB)t>uNoDhvUt==xHI-iDndamn2Y3(_X=HB1
z=KFN5^pKZfy5MW+At%8c1LY+(%R}53T;e}S3V$IX-e2o@NS-!XJcQ1y%4!TQQwxfD
zV?7nu$ulb!P*E4;nN?X$4Mx<`&a6eqpMQbw9cQ^QYV|=AX%Z+h2|8b_r|&x12Pa^1
z6y*7!N%r7t8Mm#h1_m<DAM07o#>PdLctT}<+eAO;)|XnUu)ha~!Ky~A`6sugDXbb^
zl&#rNg%3}7n0^fg`6EGoGpc4A(O#1#xy1;At{H1~T`!?`!DJ^xzfpy~HA9E~75P6B
z^tSBKd!<Q1afYC4#hULhbj3?9QTmdEJ}mW$2vJ*uo`C#OAWuqFABRe}qZ`>KRpaBF
zN;?i-j_}@DFZ=TpY>$)ut*obmJ=mHhFe%DZx7EYzz&bECW+82ntc9$am*H$6f7(BN
ziEo@ME|1*FU^MSr@Z$|~FLi})T%sJv+DqLTOh-^5UlVIz^>E}21J$E_)kb$~NA*gi
zmx8<xqy_C?+p)oS|JoD<L>-}aqgfwav-Z~YX{X|FUAi9IH_wL~<=(opfd7JONPFvo
zuh8x%m%X>HH<+X=6qM<EQna^j9a1Ym*50~5!2AO8D=G`OHf>jz3G2O&Guk<|PTiPo
z*WF5)joQxIsO{R8t)P8$-b3>0C~dXdywTZeN12{$asm6yeRXs+-)hT8DV09+6xO%Q
z6h4~mzC~~X<thA%qla^z^y>Bvb~S+b67o-gTy03_s!MFSN{3QUR7IloHJ4}r%1g%X
z6iCh>bqwTw4vEz3F3}C-9*0EGcP?Ro+%u6l2qu#f=}2_CfdLWZ-hjlLV75_Who0Dj
zM1k)y&j7g(Bhd#;Z%TZIL^_yRl(>jQnIBxD2&lr3NQBCc_MU0$9FV)4d=H4Xg4DZ?
zDSF9_ES+r_-RP$~{q&#>j*Z$mN8Q^@Uaj%pDny)S80SZavV0L(yO*rSIqHcX;%I7)
z%4OJE6tB8U{6{l5<fT^U3FI9*NTIRjtqd7FW}u~0e~`grKy{u#mZ`7Lw2{9b<oV2J
z%aOgdvnJZrc>>8?CZE*RW6jjfvb6g^x%Y$IQ!}<YPbSCu*r<|={^$}RAitGb$#Oc<
zs+L+AHbA5HNBYm-ET<zaVAAYIo{sdZ#V#5~iiaZoPi~fBZ2*+|fIK_eJu56)=96l1
z=cSVQN0DC77HPf-rt8RjQk$$Dqux&PrYbv~jE_co+p_UDFg#Dj*V_1$ZB70C&kq-3
zUoBo$G4~s{`dDOvHwfw%s8#vNB`Sdm`D(fUL~ayvB0wIN{xSRiaP}TxRUOa&@LtY6
z_X;XvfvAa!v3G1B2#C@I8}<?l_L8V1YAi8|8l#E5L`~JinrM`$F&axyV=uwjuw%!L
zvG?~g=ggjS?ghTT|MT)Z!`+>onVs#k^|-%6^3+f>mDJqT)OkayIS-t(iTieB_QKZ+
z;**-PAQsUvgo4dH3oYh?I1I*v*JME~tSMtjBf_H1JR2|OSRR4sKEScnx+be}{ajPp
zg`ys~iZ^pklw38gV|EEpKZ(sH|IZpx1`zW*&77MhbAK@QzD}m7b;nA}_G>j|wo6wb
zJ}zi0(X4Q}C7kVx!MzaR>rSO*`#FT1A>|~Nv)!25k$z<)he#y-N;Y%8w}kcc%mgpM
zaWvklpSHamBy(K4s!2>j3(v_*jIWGS6bV7bxJ+B8?OS+mlTk!Md;^N2e5`w}cM6iZ
zo<v+7TR2}xu1~=+l9X!_l}oNqGooBX%<r{uhAd^~O<-I{%v;=BoLTGV2g&T0u3a*D
zom&+CX(?yF;|6+cfUi51mi<)_QVF0+Z1!4z#85Mh)a=s2c|oe#9-OU-yI+iJ8ns$a
zO4h9>nFVd*-Dpv`#xhoH4j88ayeULeCIh~+B(6uj+>{w;$O|BOH(NMASjNhfz3CzR
z0qVfG9F(C7Q7qW#qlh^%!T+me+ypy=vC~c21gi$inlqCK`zAR5m9b0!(O8P*PK#V(
z8D%i167#@>hA(6+o58q=V(}a|T!`6BSkQ2NFIi_L_)b_3rnw-?0K<8JuRE3fM}+3R
z<slS+eKkD8;TTMw&G1}+<0L@+hUxiPr92;tJpN_#_?MS?y3@!O`k<F>Zh~j(a#{6n
zqw3$L0(R@xjJH1GL!<>npDMB~PjEh#%%6gBB*3w^r+d>343l{zT@58BqNQh<6)sJ)
zN0==042mMQrDu;79K|0HzmD{~9`B-`bz~YDCX?qA2KKm?&V`cwK3MM%`y{veYqZf-
zM%)p^+@z)RykxF+$3s*As6}Gk;x^mphA`PirR$1JXVaF2V}9nQFbZNu0DRr4v}Umo
zA>UI(5}UnQWEpBEk($j~Iw$-r=Op0VL)?Eg&Y{ARl5N6`eu$V)wJdy8D(1WkYZBm1
zA(}F6;7b6g<HB=OW~w1CjpUtf>Gb)9m01AJxx}5nSq{oj&8XKvmX-*o!fxds{0q09
zG%y~%E8A#GW7{i$2%EQZek@~o0-^^L%j!0{#InL*P9)|wtr{+rvDCQdA*$W;V2e$j
zl~)W`2LIYBw^j<RWQ(m07+T$9i|y+OX&-*=#$#A)BSAa-9vwi5$Y!y%ZDRBvbO2>o
zLZkXCS+^g+^4&d|0|nd4rniXpJU6#;ez=lzU>AtCll*#ptwWZ!zaTflL>h5*Zq?`;
zDgG5WUKrwAb}~9a+N|BwBJU|FzI+zCT7Y`l{ZLr4(d?FWmh2hC{&UN`MOQKVNU#ne
z_6t38W%ukV+5O|eKB`&X_LBV|Sa%b9<sP}RPd3;SiTz|V&v}x))O`<844`hvF?MG<
z?<2fI#on;WX6$me(FvTlIXvIzc5#fuhZL1B`aI-NZGPI8*B0Lf>9bYlF3D@gYj5+^
z=H<0K6KF=uo;?Y6QTtbyIV-JcIZN?k4&BRc{i|gnr1yAExz$1UvZnva6R`9R#@#Fx
z^PjnP{WU_j%eEDH&7(4uUB;s6BP)@WO_iK-@q_Mz9n^`m#SKSWUV;k-w{s19XaVm2
zuf__l^PmOqx!PDwa~7>`;!CeKS9}*&H}lDvS>4R17$%~N)a`4S`t@3EDKG7blkYe*
z7J5xtZ8JJ(nWg$xw6jovslj54W<4$V%@)n>1XxP2T1`s{POoXI^Juk8^`UXWd7!4L
z&^v2#RcKf(GvYdH%q-kw!8f(wk1@VYTjYWT|4wZk-xkp=l+h(?%O9FrtsE428GlT@
zwQJZNomvg4SzI`SYMT}PuQis6t~Ufncx|()`}Ji{#u_v8Cf7DA%X1m`BCz`1=i46M
zDJFHHx+Zmb3w~i;GsWR4X3Dl$@a-)0c>+!RAd}uPC(u%v4hNb=HYdfbObvp}(p#63
zz4S&0nWc9+CD+ocRL|7mKa0*kGQJns>;A^<3z%Im6&BY@9WC;_DUM>v_bJ(H0oCCv
zV-wE5>Y1g|UW!Oz5wy7B*j>-k1>Le}GWs_|6Ti)D^ey?#(uwG&d9*U3H}^poa90|e
z)W2-~&FB`Kec13D0zHnKf}KM`O#L3Y>ZcXMD9fop=kofdcE#74LjJbkYppfQ)+f}&
z$D8zyZ$m9*n-OZ3?clX$*|rNa%XZpY_m1M*FtcRWug$e&8;6@39JFYh%J}hMFR<?a
zSIM3aH*>D06tU4-vRA_`dFR!@QvcVPC0m6}ijUV>OICl40R`vRl*4~mmqW>?=p|3t
z)v~GCqiitcI|o_thb{Pb6U_1B+B!LOiGUq#WDP>KdShXz$o9)DFub+i#Mf<W=0nhW
zmweC)JG8AO7n-*>W9_`&h}CK9VB&|aw={4IeyRn(vZI-*B^G7&TJT#;yrW(x%cv+#
zCF;5^OO3TY@@Xe?SoEvRCXxMjvqr~tHd#ylZs{W((>hyXSY{!M{@ohGfi7kYj;t;g
z9%(`m&qx=Z!Cft6lPzS6tYm&Ycx`;WMc;AVOzOi{eVr$|nK^ascQXecSn#h+yu&Ba
zVlhOpAxY<*%4{%;aZ3*qU*Cdv^fZOG-e6Y#M~v^g!BpA5m#Ol&4c1|(880h;Wm2ns
z2bk0v<qEP2wI{l^Y%rees?v!*yE8gYzsfF->bK$VUo@UY_;J6y%04<Sk*>05!sPq_
zpkHMl9XEm`Hh<zFZa<dSuRo2`t_yd4;UVh0koTv@=*X~F9>NLm3Zc8YV|C<rZ#+ce
z8+pq-Sw{wWDB^`p;rr9$;<QV^OYDl62hi_NPtcJcsfq{(==Y~T(~<M?D54iYzdt=u
zm-!&CA_fBV`_rH6$f*StQ3RmhpPm$_U2E>`r-({^3g4fe9H-r2E>cVp8ATPoKmCOs
zQN-Jdr~}aNPk*V)d<?`6LTdM?r|8Ill8W#E==Z0m>d0#TickRh{po3XL{~~HA|0S#
zm7cCgH0oVN^aJQurDw!xSEXB&QA8L(zbZXbr>t345pM(Z=P#bcE5)@}!>+(FitZ|3
zidQT5LRs3@#^)`S!S9HrgaYwLeBKAgtq+UYnkcJJ^21{Omtl-=k|(+!#__rHnJy=~
zf!0rSPqv=uUVc<Q^dnvC_?H;kY~q<)$#RN#2OykZp4NluM0fHgZOUQBq@C!VY@F!c
z!nFE{?nQSH&7bm+ZJBuOkZml4HUwygY<FCcFKA?e)>baQ@V!lZ$aXGhW&*TBwuj-^
z4{$u>Jkk%@{&K;5vci$h9{rGQ#BEf(KjneCs`1)^I`8s|umiNSe%sS^dZ!>-BGD$^
zUm$z}(a@xCH`C-5Nw+PN?b8T925=lpH($6==U#Am?gAt1SZ!k{|4fut=w?}3t>d}0
zl3hv*XuY&XSWD}^EE~i1N@Bp^v6)M&LIp*Xt3ajYb;c~M>YKT=lC7mR!YHlKGuG0|
zKngc*mZddbFRkVf8ef4+YxNmfT0T@-pT!scelwTWWYBz8flF%#9NPenO&6`DHS>(6
zv<{rHmR9ODA>P?4k3>(6*N#NnD=OkC#OOz&r^RbWd1nLpIY7&ujN``pZ|u4vG2h1L
z_20s|Qyk5+2sKfS$sjRYnG*9|eBQQ_sV^9M5|cLjH%LUnb^Ko(pLg~ap8fv_qVEB!
zGu@^9^*6TZ=x)q8`Epq@G0%)IePRnA-8}`ylf<0BG`XFOUUpu}NF^CF;`Ni!ufhA0
z_*b5H<Ii?7ItzT~x5<;yOZDswtgMK40a_ws&&qdmk~2ZFB0lf%t(?fhRTNPGpgJyO
zPo#E0`si8t8k}?qPLeGpK5wcN)C5A}NYJ&j*&hefa;s&A@%$WV@q2v5O4~TMlE65K
zn8#=2l3T_k^ljyjb2`d+RdckcS*fB;_!Z_dEoDTMMG>uw&)a7kYdIg0%%O;mW@OjW
zS(Q~M6JpFZ!{Q70i1F}zwaqkF=a}eK7W8@(z0*WHwlG>dJRQ!_>xZZPZ@@hHOZI7-
z^gitf)I3y$`!qRXcnP8<68+3&RRvmepZ1h#yhXwd>nq0yZwPQ)I%OuAVoe6sek0b+
zdaPqX`AJod)#C)e=q8AkNVHftA^dk4tCMNo7Ae+PA0Yf5#k$osR)x;_I*-c!Cgl?3
zeiP?YCza3kR;vc10HB@i?F&b5^3d7d*>Fq+coUCyp7#QLX8@`{%aiAM_0zUA+v#e=
zltD3N#ufY_mCtk)tF8!NfOe*<EgUTX-bALI=~@Ec4*<U*EMi8gxzOdy!{IXX;FTO~
z9U>8<g6&D1dM1@C-2;fZ2T(_x%%N!z^DBcnjhNfTt3|iVy@MLa5P-VzSPsloN_|ht
z1}d(A*`tXvdpj>S4+dk;8eCF^SwI1ie8o~yFA@G9z**B0!RYO#nVad>{h4QVB?lTB
z#jG@eMJ8hoP{jKHZJB#FYv^ORGETa^Ew}=-%K+-B9P-FDHiz)PirDN;lpZp+Bj7v`
z!08M;CfiElRZ9$|YQkazsA(r$W6)0RYD@SLMh;0=2mZCGO_Z}Tw)T+HwkD@7nkfn!
zF3DrWJQ}p4DCX8~MX1+PI%6++iiw$&wxw|eV|MZx`=7zN5TKp0f2WoriUPceOgm%W
z8NPM^zfV|1&`z6d1dgkmnfe)ft*T8jaxs-+S`nvC*vVDxH;DNapk|!NUgBDFI&jP|
z>xj8~eBnDgxjEee<MmqHoT}7TL}`FGk?EgAhwmGJUj~afzte0^!_T`kCmPHfA2*(Q
zg9%~l74Pr&HxJ-S9Yxsc$N{{&F@Pr$;rsE<)_-$)DubvzKz)_d0It2XV=&Jo<`3f|
zM$1@wfH6^vg=$8Z6NW)TJ>iRZ<>cR78|Hv$VjZq~Nld4Tq??u+P^~T+F~AY-(i>``
zN1c$>brD!>FXNS3yI6F8u=K3UqQ{<)-Ft>r^dAUcN22>@7yZQvSvP%dLG-J5WttTI
z04#T;=;=m3pK!|}x?vzDJ^;r%E~2%jvVd9MF<g6P7QK#FoVz)ikzgMl$W7%(rtmjh
zlE;Yh2he^ONWI;O>_w*Ug^QE2D5NW|#B7NxJbpLth3|rt?EqhQDs3-Z4N}A_glc=?
zAHvfgpzVd9g5wClk%#GNFP!UI4Jkq-Q+}q#Ise+tbuFx(B7*Bt?{YeO+tKW(HnPhz
zT(aY~?TB;c*~5Z{LC6pi)HkQWf*N6!bYt`+Ej;22f3$}i;dfwMP>&noSvdZ!M+4?9
zZiKCa710FX7r`QW?lBwTE|*5AS=9a0<;Wsk^4F%u`!C<aO=Sy2t__wAQj+8mS)^XR
zc;`!*wwfV|r~+{AJ!huv`X0m3Qh&(F2qjIn$aoExoaNaH#YfcK%bJXa@KGVM(bhRF
zb9@m^1fRz%bM|t*TnwUxAzb|>ohnkSlfiQcKLt>`pU$Z+l3LeJOSPoymc$f~Z@5>g
z<y&77h3m@<I(<f}6+yGD^mym%y_`XzAgTv&Jh5bi-c`+$Mz=^Ju95K#E9_(OL&5Qp
zA>M9GDE#lzA&GcrmwoaKK8WU%_-E%W;+;*{`k=kXVf&2H!|8S0G>50{GfK&?EVs?&
z`>ZSDw5Ha8L$<qwkgPIXo9ROmr#KE;acg?gjQfcZxBTjWTo<7|%1Zlrk8-m6l)$nz
z={K9JMdW_BRr`SMobC2mE5<sy?w5;un94ify<jHv<NanryE1;JyRh(~93n^YDt+i%
zwDV&0w@<|*Jv5&uZ!LdkJDDjL`R2v+p+&x#p^CVMvd|a#=EaO5#;uWxm;%sWp`0Hh
zU!fe7C*K!9EQon$Y-K|19pv?X91vf}l=!*^npzB6dNkOATa!5*Q<P#;W~C1H>P?UF
zeH&A(E2xGv#zX+%^(lQ2>N_2|GF}mr0A6?LTi@TuXbWbIn_}Pucx|L_Z~mYo?adXj
zq#2Np==<gib>us(6tS(P!Y@TG(vcV1Dq?3_xvco3jx5w36|}uvR$QzjM|XhY?d7uK
z5*<0M8~Wz1a#?Yyj;zxgQ~lm@S#ep6wg~roA4QDoBbODI>&S2WD`IeexvaP%Mq6tf
z_de|V_vNzU&oSB(;G}_y7&cHYEB>Ohw;zN)a*$jXT&W{%gE7+>B-aI3#c1n-o0HI*
zlH|JJuR7(Vk1%9^B-aId#qk&I2gE7)vz`kv;E-G`+8)EJMF}oX)B&xp7Bx<=tQMs|
zmOYeoo#kI*2sp$Yf!9#ffuY)Jk<e=%trm4Y#H&RK)+g$ueBlUXT79)hIBg>Ku)NN?
zCq}!@S`$L60rCeRG~<w*GwzSk=8W$nr0-DfOnb647;c~?60Pf5itrx+>J-)GD23%y
zhaH7Hh#_5FC1!7or|)4-<V8q1Ly6R`vl=9ZODbU77o%Titv*Z<l>zkr!fPS!9F|3J
zT^2!vOA%a`MNrRL1bLoH8%etI@h>r~liKw`M7=07=l(Y~qX;e><|2r&7C}9u2<$d%
z5hNnx_WvV`;ErAd(;)N<K>nEs?fH)^f-JoV_8?^EFfM}4MiCG#k?2==K1RC&jk+M$
zBKXb7P3hVoF?VA;7yQGC41=Vgk7W@UB!){WV7tdf@Fj>p|5z)66uV8tq{-FDeX-h#
z;NJ*K{g_uH178_)cF@`m#1^cQ#;cL9LG%1$UX83bToH8uj&Jhl(dny^MVVb&jcm;x
zUX4^>Kcva5`!`m5808~~7&M$$JPN<m>79aTi9~-14B;z=bM_Wxn!F-Qu^j5ZhVV<I
z&g@sN>nsUKMXe(;*7JI-{v#Ce&Ipe6gO}1|B3dHRAN@dhyAd4ghfI@CB-<^q&PDi4
zfa7<!Sd&$o_|k~=VXRh7{srZJDe=f_nO34D5=~;Qk&37eP^;NptBE#G&L82hiA#pu
z=*F7dB+&O8$#Ub~NV!ByB%0hbgdZfi=iKD#vtT-2*yNEc`Lt)Wu@GCJ%D;TP&}$UZ
z2=Jy5?Ra4nd=Z2l&Rlf7kS)IzkBlXe=QJsdQ>OjPmfx3P`D_%cD(M^|@ws&y0O7{~
z>gGo|Ek=;4XAD(mYB9tXI3ZQ7@QEVId_r^d=d5aX___cbw#QagwI)|ocI1Yugv5Lt
ztL8n*P3{k{|M-ct@oGJm=}V>9N5ra)kFt&T-Dpe!0P2c2uDWXnRp~I8@<hfM@B;r2
z#SCi-Lr?oiM>-h)1!y1XsQD=-@c`{39p#=#t1^R_I`k;g{1{&>I|rIm0PSK~sWC8V
z#?V6A3;9tz_&xz>AL&>D$0G93m9l(e;Q%-zSUBAUqNOmK>qk0Ta`0Qn+{`dXM-I{M
zd-=XL8@@W+saLWb?_<%6G^3ryIQ0?<dap;3XOy7B2>Jjz^#gcphi5e$OUSbxp32EE
zi~!!mV?P5-FZdDx_Dpzwfa4qTJc1`3j$`EUSPbiD9GC!pKXJ5|wY0P$BTfHWM|c|d
zV)8Rk+LbwHG>;7Qm{5u1mSY$urz6zEa>A^i#iPz;4}CerSjeFU(&LGo$tF_j567sh
zk8=ZQ2Q?GMaRZrT3?->AEe&Kb!hZy)UkTT?Y<^(p<0rC;W>E}BV$@s5xr*)w=WgQ8
z^DKMw(&ozZjVdZ#D<tM<jOu@a1$m4|gBUNTdw)NXjoJSd2tSBZ#-HFcRRK}C@tme%
zFXVzt;w$SxTZ9iAPph=AU9~cA^~)H%#7v4|V4QMA#_&5h*T@(?dm-0d(yTEk6BO}=
zVwmg}!<cL_cw?+X41?m7Rwp@zFmMM?;H8xLFXZxzbp7(eZ7Jnr&<+KtGQ{-_0qO~A
zOAAIMQEU%lK5Tc2dxC}F{CWcS1W)0}oWMOn+o#6-@{QgTbV%o(V994_-Jfw!a1D<0
z0B<7GdV;8lifA;EdxF7m^qt5(!BIF40Gvrr&7Od^-Q0SDaU5Ja-MuIH;;E%4IA<{d
z)YSj0C)mXVsz`dH_XNr*?g?stu810+b5Ae~j`u(3p5Q(lcL3hRqxA$;CMlxAB<=}%
z!_j>b_XG>!_;wQa1gGFQ4)D9h(cVdS?+GsD*b|hq^aK@7<=hh-v{`zBrxuS|Hn*N&
z_EXstETYsuj8Qk9;u=?CGWzn#T&FJ>Jpt7hqm~Uoct3!8C)b`}*;CmQ1c1}_Bu0I7
ziW~4Oa84ucqPg`1JB=zTT_+^wS&SNfng#8HkUb<whPsS;l+F`|7Kx-q?>J@YX-?-$
zFy5ZbEo+)h)&}WX!@owF*L<Ofp8*aT!b`5=M-2YY4C9resTNzX={ZDG2|?mZMLY$Y
zM<hJ`;7J5{1j3UB$6oT3w0a7|6FLRC1}HZbo*0%rfPW*-*o1u=0(OI92OzxfGjmyj
z&!Wy8<Upwp0#%aDCe{$k5O_SMqT2-28$+>hf0V$#_OU=#L}+<{X5%+}EsH_AVkG8L
z_xzfL(hRgsNGhUB0RJLHSMn^PYYWdu2uPyn65;90*_On=_U=F~K<GRfT`!xQQb<>S
zi8;;DZ3XRSJvyJ|;LlLFlnj?Y+nKi1?*4_-KvMV|C43kDT>@hUz~fJN@=QZf0({*W
zi`_)1r-~MQlS53GA^cGHe6^{B%Ydu~q*MWT6oscR9KA`bJBz(KLZ>6-%W1qnuS#Je
z4Vh+J*<F3>99Qh!p!pl17S6$HR$sH|h7;_<WxWky*EuX<g1qN6NISKn?*ctD3}g?)
z7!a#|A!EFQ*ltjaBW$iQj+S-&2U*KR05ONe7Tle|b-c=S*uK-bj?aN(%5<*dFW`7E
zo$Gkd8H#vs2G{X_;Mh5X>-bideT9EZpXWN>ai${L0>Ur4*KzvPSvjh48QjMSPWk!s
zT>HKP-yDGFFmwcx%5=$JTY7i@FV53c6J(n~zX{+m8J>%9Tmb0x_qJO+TK#p-LYB?q
z`uj*qG+fU;-0E*t&{m$M)!%Z|I#XC!8vlNKfm>=z5Ve@a%1bKKC4X%h-Alz>VC9E{
ze%LHl{(CsSrI@s~zQrvbt*!4w@OG*Eb}7+t?UoqX)-yqSZI;>i5{(KhU5j#WeEDZ9
zBJXT&e6``I3Gj7iG#lSQyKH;|-G!s^rDSm9>jWw7W^?144aZCp>&~JzzD)@EeKt3~
z$%gKWJoLslH$z_f1I;~vIxnZjH_o1W;~QXiX?#>gx#iiO%a)f$(S^mT%0-T@=p029
znL~E5l0(ZQW}g>wbP=>X5f-NeOXgN!Yz}a=wHTK=SFphqKwM4Zl);i~DmW$+*Ktdf
z`i4VSX;6wp;_4CSH}j&rY^lv$Q(nk<zI6T0zqVDeRd!wEnd{#WzhjQVQuDr)eaB3a
zx-mBVt|YtxqU#zV?TA-;DV6r8HIcKig}Yti9dVzzuu10fj(9vAF>}exwDYTTpTn07
z@N35+;x5_b4u$#?=ML?Nn@_)KcSm2z^!m_p$lS*2cbDYL0+4nRpw@QgP%va&{P#*G
zD}tE&#3^2v*}8b^D@7Fiimi)B2Ay>IymqtOdxEz6S5yn!W(oS@!<9(8xXvN@MGD3C
zI@b3L#b&2(e1h|HfX5Tioq^-zSF{5NGJ638zcmla0PMx#=>tb1Kr0yM8)Je`GOyY_
zCtc=(SqGZm=25|X0H5C*nFJqN-nnk~+)9L_Xqg&BCjcH3;dukc3*u52I=BsfE)$~P
zQ_#jEEkWJh$OI*k%odG(S6$%*h0Rw)(0oqNR5&KjC#&1R3EB(aj`^IRw-z9E3phbz
zjRY-n=n3j@g%i{ZG(8r`1Wh**l*S2~euWeC1&Ags-~^?>v5L6V8~-yw6!~Fe07#`J
z*wokt$7SR<AtG~uT*(PFI@>HFEYaBW^%bsl1-@29{;wtBT!YX*4+sY}_N;%E3G0BU
z7C`Ob)^B_&>vk#C=%0!C^H}Ey$^0G|+Y|F!ZgrblhO-_obJ6GGXI#}L9rP5ATsNbA
zx$ReZns(m!>~)*$R|d=Riq&dl*{Q2?_9mPo7*AVo_bqri@29i%p4UvgoFG%o^{-`%
zxuv#w=n}J>H;|;(7D=D59Wi965bs;?k1Y5J7JPH=xVIt&i?7K|Lc_*(4&ZRQi?Z{Y
zyw)?wAwMWP<heO1_4|fBx35_ya`su1A;@nthvm7REzEg@!ww=6|Lf+Rl=GIzBd%wU
z{F)_l$1C>C`wX7)FHBFs1MV^HvsMgpBwsfZzl(bux(l=5x_M(G?2U;}xo%$h8q2dm
z`qt~=>o&8MXxg5%gx+=!b(G;+tX(;g?So3MV5X5^$0t^zxfY^83sEy3g|!PWc~uLC
zY!JlJFVnmf62th>ndYUCZWh|PnMR&C_Ay?|)4~qZ;}^%C9i|kuhr^U2hmP`_DhqKv
zldp=56;&oqMkSuYyU0Ggd+clOBKNo<caf*WG}gW<j+Q&?Yq^U&B_>f@<p<(0K>vc~
zRDA<gv@zuTsBdR0573ykkMp(>qU4VQ5pp@2zZ3fLP5GVB%h5gb?}XBh^p$9BM>?;z
z+j})Szxfs1Ytfc3h-R`!+tt0n9&I=GCVRA9+*{H5w?(zx+uQ8Xwq5T;TfRDaH`?;m
z(R<OBuZ|9l;qBE?F-n>CH|4&bBKP$IT=w-8xvy7I?z_F4SKDFp)OXn4Evjv4<kNT5
z@K@zO+9*%wJc;;Iuj>D7v&rJv|3DT;dUO=gl=}vzEkOUEX?nEwQQqd?V%GAl+zvmb
z=YZFD7*zoIs7R$~w4vP~IUAkdV;ImA5Z?bg8oq(8GyVqc>1T|w&wyju_lo!qVE+!D
zl0PV-D8T+RJfFicfIJ)EIk8X?D**PL@cj9sB9;K`Y4EK62_As`96V(fE20FzeiNP_
z;P{d}PvDuoL=j^Eb~|$ShouMslqv{M+2Z(jbBnIHW)FVzr?hOPYbpQQK8o=>bjx_D
zgAAsn264(>5PTA&)W6LJ)6`{%a~T^<G6sj?dbP#PV5+oS5fzrxF~2Q27);g5K+lMM
zFi!8-_;LY9?P<8KNIg+SKE2K3baRMox}1hz+LiU&D$UWE`*gyokmuo(BE)bIeYl+V
zdk|tT0n85gQUTg=Ey?L2(ui|@*P^BG$TO3mxw@Q>Yt>t!h&n51hie}n*ZK&)K>)uR
zETYgIo3Y?IkgK77T+4@atiM&}sdTmDU)#K{g*07PLEJ9@Uw4XPq_--4#_{{<8_kjR
zV?F)qc+O_p*w%;wtee_K<I<Oyotvd`CHCWgftX=`+~XzY<Iv-u6}-e;^=Czt{F#@S
zD{Yopma<=8V%~h0mzZ~fX8X^)#H{|Jh*v*T1KH0@%zc6B{tGWLZ-gV|7hYn1XC)?A
z0A~~nrzPeAce5=qx8>l^?z%5Aci|9yvuTStpsG{2EOK39p1Dm<mBaykiMjVZUSb{%
zokpzWCFVcjSih2&n4PPT9jj=w=>RV=H-s;26)!P=0>|)Gyu|!F9KWsNCFXl@+yeOh
z%F(vCr`Ma|f>)UL$Ue+vg?TTRKCLiMzGuDiD;XVUnM7M)wr?{%YDM;BTVU?9S$1xT
zly;vOwOAIn^xD5FqS~*#z`Ss)q)R<uY2C>P9|KT--Rj!9%?0LBn`OPvq8JLtsO_@Y
zx?K*=#l)St*_GRvQcp1|sQ*Fy_l;5KNal-RJV(swZp_Bf`;uE^xh4?v$1%zynYI$E
zF$}Ecw3XW;BUyCNlD78|-WQ-Iy7gSziHvGAqNRa;|9yIA7M`V`{c$zlk@`@!ZNv4k
z#CXMcM%|akWk7#swY(!`kQlB{Bqnc+=Say^eT^b214LkNL@N%VRQkZt52#*iI8C1z
z<wfB%Y-(xx3E@8g)P~z~NRx2(<-Ya|Y_d!DO)G22pQZ&X{$rc4C?6AaeDbH++?=w=
z$doE4Ng?95&F0*o+kf1$KQ(71ikDvu>apTA-|jX?@Z4f@ew`y{EuHflch063&Z9YU
z7R)8il@`wY4|3vEa_02g#GIucm}x(>#mtjn3;w1hmLWOD60gVdox6VXxqQh;pY_1n
z8PZAJp4&{h*=2_5GQV|`iNBI`qSH1$itWt)kEESBJ}S|)GbcppcIH3v@O&0kIIFTW
zIwwY1jLy%aEJo+#DBWh%jLt9EqZyrFvPUyIr!bFZbWUZDc2sa$l;ykk)1xdF=!__f
z1v)dzVu5atR*JX!gjT$wRQ(3<eK?#*uk8pNnsK@(S}F7Jp)^iMMzeA1?_!(+tsAFB
z<@i~~4|$^-sAHq82I}}|Hc-pNKax@xN~u0BQWr|8dE89ir7jXzL>ne=Tw#O`=i*7@
zLY{xbFnNP~JlNzN9@U6ws;4L-eT_7Ehe!1z<o<Pv_-UOqc}M6OJNkD;3<cyPvssG9
zq?3A&PonaBoCCV%2J}|H)0hWrotqEzuOr!?z_EOjB9?9<Qxti5437QeDF{#VKNS%J
zu$P2qJshjaQw5%qn-%ezJoVsNvjqYG_GseS3VQ=!Zw1e!zZ6j$VDARc?H!8P4X}Rz
z&zFBgXMlYqJTrGGVidssIXr*vh5-#IH3y!u^r`nDf9pvqyA+-e_ONF)Jpb%w&mZuF
z9O8kJ$~QF)^Mj{sn3nuY4^a)*yZlQ9>Gy;?=T&=P!|joV>7f16F!ed26PA0*hUsw-
z{R8l(5X~_4--}f5Wy4f*dWeK0x?%d~6E;laKohx_4bypW%m#Q9nP!-#!FLegH;F~8
zd}11=h0?MargQeo0b06N?{_myz4j?055U)*LN`pM?|&Mm9(&ykQy;5gn#a{Jjh0y}
zk}35oqemt@XT!8M^r*Iv4b$mxjNZqFY2UwOmPP!l8>VfZv0>V5zarxHvtc?7j)?$o
zBGU}hd+^=Z&xUEl0Y%h1z=r7(IKBfo$Nyy-rpmKyhUpv*F7eFWF#Yx~i(y)Kuf;HZ
z=g9wIn0}om4Van#>W1m-XKa|-52A`4WW%%(9H9r<Fr5L%l!G+k`IimTeemr%$cCwM
zND*%ivSAtqPw*i&OoziU1mO24N1OS~%`p8`_B1YrX~Y53FfIK&N5k~HgBHVduf?Ng
z9n8frUGkS<a8lY=MXPI{v+=eWO8$O`4V@?ZC7u6Ki}9A{up%4)RXvcKVY=}zS??3T
zX<HMm-h0lrWespvA?}o&xfrI0%nC}(zeTH6UodljF!m<qMQ+T7Vfw^~Ifa<_Ml0XE
z;IwT5<HEx{y_TJk!*De_<TkxN{0|yCK$Rh``w`3Lzz|6_%-du5za*;AsMm<?2!hl!
zMcfCs$1Zs8z;h1Zu?e0PM-;ID;7vUC^T2fZR}pOi_FM3rgyRsP)Khp$*<gftZi6<J
zQ>DVvRZm8Kqla&UmxwkEWIrEOL{C8BGun0)aY{N5!_`1?-t6H!QgZ%sLJ@sVNX}|r
zh&bUm?5bC^;Q&w9Q;KK<u)hP(NjMIXrxHB<Pb;Duz#a%s1{~>ta*^<i<cNOY-@Ay+
z-WUN<XV9zw_O|e>gkv#4l<Ntf|8`Cu|GrBK^g=+svlv$aj#?aYlPqRu8kf!!_(EQp
z>yCL2n|N6}^HHH??UqeH4e7I;?@?SUu-Xt^<1820U^w1C%LTR^j-_X5fdcf!sKAO*
zL74><I0XMF&_0xweL=b(U>^rhfpeI(0JO8S`S!@lDNZ2fT0ILDd(CHOyMm?zz?(v}
zv$HGVTMkfznM=MRI>cyZ5qpeYndH^(>Dlfzx0HL}yhYsQ-5M!ztAZJ0Ket=@6z%;h
z?P&#BzuRv&7Jn#$U!n@-vw7(CyZ(8U@p;a!;0ubVaDlT+%|JJJfqKakoLySI?gVt3
z3~RkssCM?{DDsG;lX{KJ`-W@eHBhh3aH)}tKy&d8*T^@Q6!GX1*T@l<6*1^C*GR7`
zbSIo^<TyA+Uf~+Kf}=aczsYa7MqUNQxhq^Fn_g8!)Kys{Tkp_m-{;@;Z@5PO3X+uo
zNADfh8mazc*1Usnj5T&O_#f9AIYidT{C^u$@pMa#JO<HeS2>Hluc24I##vk!j+)nK
z?>GH_)JO`{YUE&$zJHBtWC|R=T;m#9>2IT>PS<PXO4KH;M!o^fGm3*kv>Ms;x*{3_
z)OLU8RwKLoEo<b=biGDql02%BGr>8PxSJo&p+=VY+qFiHHFndC8d)tBMq~!We(u2^
zkX*1s+Ktln9skm_qB&JnvK#jz*4@{Q1x>?l3^=6|c7Z(27P}9kTi3}5KgD)qXr>}U
zGUbA%VK*k7((T6oC<?M0dxNH1Cfki`;aHtXo3*FdZoCa&W+p9YvWUxIlva$I-EORJ
z*p1TF&fRV-e?t*vZ_t9K8wD?D{=e9b<M+AQjs8}<v8b!v_?OIDv4~PXG5SL~K%&`=
zEucr-4YnIsz_H*4+l?1@7^e1V-EN$!c<6Rxo13U~H`#8S3&+%(RM}3m-S`;3teb2%
z#@<pygIjDju7qPT!1;2AX*bqaJlyTZ{A?q%)q^Z{qwh|O-8j)|H`@L$yKzUFESW{8
zb-OW;a)Io|ytkp#ZMGZZ;E24<cH=xaX5Xd}|1{f;Y49Dq&32>L9dsdg*lvu1BjOI*
zjbq>#1@ODf(b7>m7rSvrj&@_B#cu3q_sGd^tZKCzJ6P?;<lOAWk~^h6m_}*;JX*a;
zX(!ui2bA1$hwa9D`-~~>8H+tt;I1O_-=*z}eYx3<wRXzfO*})38PRG5mAj8XaMmL3
zwA}2**qyS1&Lrk3(P}TroCL-Xh&eSUyOFx!Nq@^;A(fc-MHPDN<dN=AFfO~x-SAKM
zP?Yz$8*ZPah-Lt9;xR|MbfD6*vW;}}|CS@&%(MDP_lWePk#4|!^sM(?M!Hnc9B_E(
zBi(`j6tVL^9_ea4z+n4;N4n*3EPTKto##U|yN5i|rE_$z_;&yaqmix?C|W(_k#0L2
zn;y!MZtN~z_u$_jh=)eHcONOjAK;j^%R16Ev5aUN9I~DXb*$S+XV_jT2c+#4aLzK)
z#X)rRBhKOpaEyDzS^Nte%N|jeeC~gYbQGwKbXP!{@rXyda*t64k9nj!c)+My=k$^8
zD<_Y1LqRhL;7uXgNVgrntpN4ef!szqaZvVbi_YmI-M>z*ZR!(6*Z}JEoJP9T1Fj?8
zr`bn3tw#Q_OV-FNir}B9LX*9?MmB@+`cF8!N<URZ!Ka*E$KW{ll-?gXXRVRp&oJ+P
zmaRta*(Gaa%6Yv;PRheIay6)bc;-?gGeFbDlWS!6=Zfg~oNMGxIJQ3L8d>^<BHn(%
zHF6Lf172{Abh6=Hm49F6;TpLL6iZ%kjV%095qV$A8o7>X<w{b3C)dcKAo&R3*s<GM
zBde#GHLtO!hhcm5NXw;0UghrJTSQ#2)W~lkdj3n!;*)S3eaTr|@D;kTSG2@&;eXUf
z3e;+36OhKf;u<*>j?Z6ljkN8PH8SafULz}bag96!n&T7)g=jUh;%f}|0JZwQ+-hXq
zeX>TTT+nM|FE6f<AAqwTac})6hZ^~4Z%($C>ui9`t!;Z`zb-Nm!C%pSKO+Lm-gewx
zX^#aE!OmzUZ(bfCmLc|^Uh@Evuvhlf5gC>NA_L)PNy`;`vui1;(Nb~}=rbVG{tTYt
zZ!j{x;a#Ea`=m_i+AT53(Vm_1vMtyS^a*d|u8=`uxDH6nxM<HAl4&s*77|mS;}Ogs
z=wNrkaSo_cZ#Yc{j6sjWX{}mI(_26k2B^1l=nIf2TFFiW!|(Z!D7psP62#2_ntuDF
z)n~X4OU$xp&l>qyziEOltjXi428rQ1DlyBWJ$p%}(_lD3Oo1KfP}@bQ-jOyXY<A%T
z&=PgjSOKDNS}xZT)g0mR0QJ`#6XldEIJ75oD4&P1CnFbUXz#?CpAEM8*8P*U(c1pW
zZ1+7GIkuC;Qu$4Z19zGdJLV{HsxEP+yTmD6nH`ht;zO1=oOXX0Pup=bWK2bM(@8iM
z?lFx;XO+EX<R@~Bd|@uh`N+cQ?VX)dI~11vkq_s}eI{Sy9QYKkk+~%II&;#dRv&Mx
zK}=<FZ@(G(S+>v_2h3Qv<rr(I9_tkM4LeU>oB7w<EV2@Z%%Z$$!OL|xiluCUoMLIC
z$1=@5ZBHzmU327I5~Xn_yK~k!Y;t~?ozsQ3>OUs!-#NzeOD?f|WZ`_BBj-MybG#d;
z+BVJP%+B>s&RqB_ISJDM+goz8@wSf#Z#KTAZ#EYBsjB7~p>HYD&STLi%L%t)*3HJ^
z*3HIutecG`tecG`t-FY&th<Q*)?LKX)?LINQGAZAPn066_!BB0EA3xIPkMe|?z_IT
zeNk9$!R6Dp;AW!_`V8=vmYjT1owNs2JTUJ7=v#34b*+X0F%XcCw(+EB&{YSCPgH)7
z_CTLS_%VP-JUlHFyJ!gTCXzb6fKg^;jj?|S#}lCM0PJJn8Em(U{s8+Fc=o`tnLG>N
zX{KU81lX6tvlx!~<XH<(O^01n0@(k8=UX`Dkmn#gd7XBl0Lq?%XFRJ}_7XhT*rWCE
zUD)F=T>bdhmKfz1UdUxomO+Y0q15(`QdSk>L3s$G8VJx<#IG4brRy308Uu7HXtx1W
z8RD`c?pKeohYHD7&8IB&Z>b1p<059?daIDNZ>6IS2}LY@>--{?-k>nInUb4wYMFkU
zn6_SFvp3mS#O!4fOuTxnh+B&?Wuiqj)mzl4>@BLwhCZN)3eg`kPpYF`0TTZG6j?cM
zMa#+=71E2^*wQ?9aoH&=XH>{&?RoS<b}_;SNUhC9g)G_;Dnxu`jK-BvW3^rX=n!q!
zzd#M-QFXh}A3%x;;Rld54%Qz)iVe{oK>9DhF2)1&2ap<vxIKUr7oxp&bfd0aOabT*
zAjRv*N5L?f0A8(20of!(YnGiuG0g{fg^dTYsgCq(U>BL;Kqh_wWHTLEyCI4m;8lcL
zb@LFPb<po-q+L`5cwM9(p@oiY+!QuR6Fa}ao}eRpw6u!|fY;ePK(^FnK5JzcCjnl|
z=vDVtA#Xjeg7K)0T?_(vZI}dP>yTnqkg{=Y?P4&%t1cz8O-Rws_)ThO7l{C`im^bp
z4bfWulJ;ok0R5e(b~<u*XS=8c(BFA#uOoeX+Qsl5c7ErngN{7k-!1|HUO!Q{)=@_`
z{m?G@BoR9uDd?mlPmHpQA^@*VV`*VXM_xu<9t`j*J`TvvI&vONj?R;057k9a`=u}J
z;w(UaCaRlG88^i)s(oqaXQC2yO8b1fs6Nlm&qQ_Cku!d@i+hXg{7h62ojrObjL)C#
z{7h6&opML2T})54^D|MsLbPY1itMzDgFEc}OjPd>?U|^&yY1rCE;~OH)kl~4>t4Gk
z1JGZe@2ku7I*e`;puZi}Pe)D#q8}l(L7;z#HV6cyp%Vt^Z$}N_6#Wb1|A?Ijg?o`o
z<y8aVSQ?`KTu*Ocl|Q7n<*$UO6@wYksR0maA!@xQIzm5$avHo_3c&HSfqK6clMeC$
z;*$t<e=H*|7Nx-}LjA83BMMajqEUp}Igt@#N#(u~YUy5#&_=08k&0)Cj>w;S#3mXP
z_26SD$svk<3?<3s33Q<KV<`QsPoQ7m-owjq-QZthP>ZsG{^e1-n0%BbwL9wT!L&|W
zv#5u@GMQw30==K{1o{UNI<5YqQoz49an;Z=v_5N@=%OXix|SWRT9&WNIvK72i2=h(
zspT4I_^YPn><ClKlTyn>tCk&1EgM?3Tm&tr6q8zZky<9WXxT+-+1RS(KtoIE8ZI$l
zXjzQ4JO&N_)wKLG*wpgVVytC?Rm;YPmQ|yyTBe?}31@K+e!!`2sP>%v3kZDz&>nDV
z-ax0PB^#Tt1%(#AO$yKhPIZsbJHB@P0jI%mynl>dD(I^-=npv6Wp?deMIZL)4>&D4
zYZIR$ZvFA0@KEj8($5gF6req&q=f7APC>Lpq7Ctv5q{wqPv`P5O<s|9*7B4=iQ{%r
z4B)ueLJyZuDJ3Em&y84{>9Mv4W$WV{>ll`pPY^AUXtB;h__X63>jb9p5i`$OVm*NH
zJpgriOEXrvpi4L6uGvJZw`Jr#L-T5-e*!coSn%Z5GRZ_sB>Eu%g!cxhgSxs3*4CNx
z(=DN247uxdxywPnP|E$Ojg+h1C|b{QohOmY0QG>IT<zv-exIW@k?@YJ#P5f3C5~{Z
z#6a^CYt~A<-l)XVwM}Bc;P(z!;s%I3>?Bp<OHpPeZuAaU;s|Rcu4h!@rqR|)oD3}=
z8(OZHS_Zgixn62n(W>POLrdvW0~rH`EmF%~(6EQ5Wqe~(%S@?dfK|(ihL+zowrZJh
z)h3#kkY#i^OnW(O3WQEN$z{|mL6#BG5{dp%M}%*uGCI=HwTv_iHGdXTpH)JpK02IJ
z@9&a&p!r0iHT8{TS`AlIi2=i(B{=o35cvyAy<=*mnIiROyqOjHPMb9wWJKC`BW$8^
zNtyDo;aZa`n{F5W>74S{My)4WBGFRb72%!IY5S&YPAM0#3x6`?X6bUj1N~enw?SK@
zHPP*@ES76OWfw0=?vrjVa_zG+wOgP013>-2kld_+R#pSR)$0^X9%M)+S|ZUu;EeEf
z0LR5{)@~<%;xU`}x|A%WwGmuMJ}!j>G#~J^7Sb0+AxYO9i2*~mQd~&()98p#YhzY3
zvs|W>;wtK6Et@<>6{UAT%_^FRq}(qhlYKiv%g`ziTH!P&`;L)pq9qdjOYsQr4p2)Z
z=2TFrpl#wW<#uVP$z2TkZ>8LR?TrdRazUcW&3gvj6F|MzJ?DZ-L%!bkm-*`7i1Ssr
z<SWp6zCLYk$=5U^U#07`#DL)sf6mu|i2nUETD~?n^YyYn=c};htCTMsS6uQn;D$}a
zm6qx6)JRMJTnL?chSOiNgHfG8OC<VnErjo<^v~{*Q@%#rw28%r+ylDYd}mP^&a&J_
z?-||xO`Ard$sLOD4*+Ut&z$o$;y5&ZSLW;VNY2-+=GJ@#TF=)^Yreh}q>C(MxJvUc
zF%)>0^YsLxKX#V#wL%LsU+cfi`6^@5@-@@Q*CQ>g`I-VP?-^RIky>WBXt_penQqmx
ztJKMG^^+Jd{4TY80S%vNT9!*NwY(^`%&=;iZfIGzrA15an8jChq!pD28{0NCq(H|q
ze9YqAb0~g*cFZCXjt&5CBGZmp?0|0zz;7jsh%e(IM`*|QY(!f=T_MeG6eBE9+k_Bh
zUK!poDR|y4@&nY2AlKSteAQc8!w!)|%nj-*M<sI;Fvb$|<ltPGha1cp#GF`P@hJe<
zKqtS;%oD*lj+i^t&xLuL!JI&E1`Y~Snn~urz_^*1`{l+g$83j4CFVcElrJUoGcZ0P
z<^{Q_-PB+XplAFVhbwy|bL|UuQ3IgvjmU+0j={W$n17E@?B$qwAQ<}-bI~YQ<{^^#
zw888{j{%lxq%@Sw%fYyqnCnI7!Ymt=LnIUPtVm^yWWET-bHqHNaV~22Gnli8d2OV!
zSu($!fhL?m%#k@TlYK0wi;AGP`)rRRl}hD#@vS`=TW0X$+d`v>Nmn}m8us!}8ML)T
z@4C6wNd5Q(wVa1RvgOd{7;N)H3eG9dEoUD%cV%$P@w{jkZ{YDJGOgt#12Y2P=gAZ9
z&&r!EC%SpImQ$O_JVXk`^i7DGR-QBEGQ?cCNEhRxbI24@vu8b-DfGP!+oF(yAr)B7
z5|=O)xx{LAful9RJ433O2H!z|--j%sN(EER(yg+o`L&^@&q>6zI7A&@fz|ZB49nv(
z9g}XBi<&zP<_Kcm5mNA?RC5p*2V7<~SHrOc;7w$jnx(H`QU&lk!Xo~)sJSt_n$L`w
zk|?HKA!^Brtmb<V)BXze2F-I(Q?7`3h(*MFC#2xyimc{WV4QV@)w~MF8G!d9sb;6E
zcF_jl7sw(;Ry5Td-6ETsje=!MNTZmtLeyPS&0ip989+_RsTomA@aLA02UVLM!;4fZ
zRN|I!1&kS2c@!=eB4?BV>6Y1I$!m5|9H4Fp$sU0oLlq7wC=w}#r;*Bd8AAtfwz<YJ
z1TdYim}!k+Ho~W0BXiUe1B(t}RB@3?qMt=7=cMR^VA(50H(<JwBFie;aUEp<aJ<Ye
zI*w6ggg?D)_&ic+P?<$XfF<-gi*C+z6-2@*i|A1Z{}`YaaqIBS&j)p6&Z;7rVt5g$
zd?RC6f1O^h;263xU4Tfj#&8$mH%a-5^|LA8k6G%93=;h^Qh6ywSIo4FvY9M;Akzg4
zpVJo6JrLeClX`A9<wqOJk6_Ml5dluyt4O756^`LMa4wKBe9Cl<M3Oaz6A1s8Vrc9Z
zgMMs++E3n4*=a7K7>3p_xVH+oAD<hLeuLXj0vs_nsQsMg_Ol1RzW{#zEMij?v;C}h
zZ9jD2qbifBB7<W3xPHN+Rr$b2<(qa<{w8&GB%BU>^now&CJn}obS`<|!+f}@Td2{y
zoq@dJ_0_gjxjpUy=T748m($2Z$)0E=n_g42?W$k!ud1AE+bzsvZ*sC5!V`3hdbcy2
z?2YiH+@iN!SVT%yGue+@W=r-mBiYFm)1LYT3smD|zkM46D8QRSv}Cu3ujOr;z=!6R
z>@yq!ElA$p`fAf^oa~L@Tu<B?Id$s9>>nocEQ6Sj*LQv)ng0XhU1I*GWe&__2u}=?
zDe<8-wzoq4*H&ZWxAGlS`8)FAv3X%~IFBI0lA+E_8B0qLH3K-Rw6QcNP5g6%D~Y(u
zhDH>u&f>oS$0SWWJrPzTT;>3Mk<b<&>N|l5>4~rnAX){`o(QXP7yT)~o5-{$!dAfd
z6Tq(%ix^tnL!Zpd9BjOqQ=3O9%g3`m3YSB60L9oe)N@mHPS7iedj@b!wXPm&TuBXN
zX8WH9mlEcDEV+X2!H58;-FxR?v{AMBqk&9h5;6OS6^yCD)n*772i_z5<vdrLRQR@#
zxZ4d}tIfwo5^NDhwIO+>!_)~iSQ&d3GzO?G+)Cc~^w60I*;+D)d3;#GJ2kkqgo808
zi(AVWIEH3XJ3h~?<q>>$0Df64;(QIWwT#Q&T3$xTI_7@?F?|+RFf4$R-Qhk)F@QIP
zXvv-p-*kXltzmAhC8(iHb^^(p7^aR2;AEcw=fA|Alv`^#(NGq9vc_EB`G;io`44>~
zKz*E(VWORoY$Taeh<Q?d=N-u$55^dPBTu$E6V*uSn?YP()pu5|$y}d-BblPKCFBz2
z`$m*L8Ds$0cP2{aZD9P9qWm(!8YPV}dkwA#;>v=BUz5j}r{H+_ACEDT4)d-I%NSGZ
zfn8JwIBb^53yVI+EO|vTiM}7Hl&Hm`zXVIa2Q2y`(-jblE?URlhZuVSYD{GIR-)I;
z)={!%rd^~}i?D)|YH`i1_y|MrBd(eK;OGkQCNiyNUV!f;z^@;R7*WftnX#?2nSX;~
zjNXsl6<ppx{ks-tZq#GD2!Bk&Y^z+RV7p>uu|^Q{h6YYsZDyVY#%aVnvRy9BcVlD$
zB@y$+2F`HFd;pAlh`DdOT<S#ASQ+yoV&2`rIaD&MPeA*GzO>xIy&4XUl~JY<*WL!s
z-y~N9aMTB=+dE{}*OS`txHuW5bp6S{wqF|-ELMlx^GFC82Jm&K(%SZK2w6kXNNn~K
zp9hS1#APVCx}n;x4l8*MoTrF8qjfI*>uZBKfS8XrEVxW6R_v)=6n;vFUoJ~)1il^s
zwQ78B%7n%n{WZxu(NMiCmHFi<J%$bLx7y}X!WEkslNe$?9HRQyW#%hj%pm4|t+JP}
zmfgWkWz5p`5&zoWjx0F2E~l#GGfW`>zV1|73fm#14M3IH>?xdJ#FIu!z7whLl1h#T
z=NRJtEvFQck{b+WaRtngkp+DNS+Q+k-1v-!=_{Pwd7s;b6QEvkQ^xGq9~$x^NM2N=
z+A5HhX#vhA#2wK-m&sV8W^$61M9lw1Dyf0oEiDA&#OJ&$QIMCCJq=e={x!O&^)KvV
zEkLc?J$uT9=XS)lJVAC*(j|XwM<NTB4noYwKz0gJP69kG!t)xAmjGXP7W-X<mVb$!
z?WNH(-Iie@nKpxtN2*<eWL|)(2|z8_C6}saZz-*=6k<LZseUV&zX0PzVt&~<hm556
zJLhog$}a+FGiG4uTOZW((BJRe1;)Ps+WVbFULi+cQH#39?{_A^7Z1?h?_3DS*8t57
zT-RE*g+!8h)$Uoe9-D!;L38sJ^-=VG=Z@A=^O;0=-R{|(2<iRKg0JnO06=@cvmP9E
z076aY;|z<eC%rY>Pv%CKHd1C5$yCCfKiA{j7zz<d0M)-+F1fL;jm(WC+Bn@7`qqeG
z&W+Vz{N*+0MkX9rUX%THopYn?8%*)vaBd8NW8fRkjiYUhp5eNl8|8yJH&Q{f?TyTh
z%ZBD@*Y(`!9L%|K6-1ZcaBk$o0G0<J)DAi22G2by>V@r${H2YSs-X>klu^e(Kokkl
zGHqphBh!d*VYuh{V9vDnLDV0h?#-z!67%Q|k~xvKGp2^-eLIAiXM=G%F%NTVTgLa3
z7j`r%FEO7B&D%jT9|YrGV*W6P{Sb|LY$wSqXv4#&f#+9}*<n+K2SDB4BNw$Ny=P2T
zh<RWG=K;yw2#lcsM+wW0iO$uev!O3><!k7fr#^Gd0LK)H@>P#qTIyE@a~3gQuJ0Kw
znfHKk7csBRsihM0;x3Xo;1-xaZRj~(GT#N`O=3>(nM=&&x*CZk=24A2|B}oVJycN^
zpgzcrIi;JCW@5h8$n&LS?g7TG#Qb><vmoc^yqr4=_0u<0v(1#@us)q-dA+brTf3+h
zYFu)0PPO2pE%@6Od>0FTh+NQ{glcF;z}F<5a`BqZO0EdyGnhWcJyMr5&M$dVP9|w;
zs9{GseRxhw&)=q7qK;xby{~&u$J6_|-NH;U&M;F<nQ#+dI*g~RlhJJj<dxIJS;>PP
zAz{WHH0O^EOqNy_QGq<cqUUU9gjo}9pY@a;j%}$w;%lFkMZOMRV?-YRvH_LyyeTf6
zt$0F2&(LmgVfGqgA)Ccy^w!ruVV06x)6i7vx<#oyjIZC>E<D3M%<jk*K(}y^Gg(YQ
zuk)4(=N!nQr*TU(GG*2eH)YmqWXkN~BC{sTe6NuybGVDlB9Ug%uL{pr^lemR)m-;;
z?hEB{DU|7faM$YOFPwd&O+7DL^xS5_zp&taVoZGD1}46X1z*L2pKrlOTJY;*%zWtG
zz;YSZ$lJ3qW<Gq{z^tVCVoix(StJI=ni4lP@Gy3Rt$Eus)|7dqfmtnQTV&p_$Xpw1
zwozMzN&krPZBdmXBRH;%LDu@JReh9&$7p}lR~7Aoil(EAqMQpma!+G3#`hx37)!>P
z_#qa2k_A7-g1=+IFSg(Zv*F*19=40fsX-YEQuXVQZ?x7@s-vZpu?eSWVv2ok5&L!%
zGeZhBGz(>{g}!n_lm3JS-^hZm*wn;#vf!6m@E=+5<=HkKkL3K;@P8&}NcQA7q-jl0
zFFP;s^2QK&PMWfWvmslo^nCQahUT&LU5ux%1v?w*cfCoe493$%{8Egk+98csI_4hK
z$jqcGt<218(a5Y#j@Bl=uLVE4wW-fo#?#fG|19|VjSM{<k!);fZ%Rv>k(AhCQDR;j
zllfR9b8X>y8%q{dZ)+00Xk@k}h_!?ij+B>@g!7^WUnSDi={}ol+Wmp{?M<RqkruIz
zS?w*VOUsQ^A0BC{UZ{h~KEo16yABp+X}J;edJECWjus+mp%Kw33(=X5rnZj0oh%&E
zEF+G*QKn8;JDFuyCdw>3=X)l;z6D?NJu?k$qpVpl_&rN>(vYL*Mw#pm@6Ki^If6P{
zIHVCr9IGrGpIC{$vJf3HQ{kA>#X=;FG9r3xkyNm&g-9A-MD%vFNi?*ZMZpE#EF99}
zB93MzhqFbZnNz(j_zx}kPc1R*NVLRoInh#J>$_X(+5`6Z!i?GyZ8q9UY{=3R|0kj?
z!>d}Pm!-33bFa!SI`h6MSik<1RfDf)*D<a?ZEhxSm~0B}M>kBCz;avw@LEPUBmNB5
z&-^Q@r~%L~7i`v%_3f&t0?;oPY}JwZRaIOkq;|Prn~q%TP{mAue!1W;9a%IF5Cq!s
z{?uUo9sv+*38@|L-yW<T@Bh+M6{7(9@%|k;<p3{LbOPvCz3PT2`Z@m^Axi#?4nj<f
zm8X)P1@mK$X)dRdfYwhX?X{jtQftcV&eG+@zr@famS<{Z^Qz)qfN*-%HeWj#9?Pea
z(yXVF_8O;>Iy0?)b}FNj5Iq`u@OO#d1Zz)7Hi6JsKz^V1V7J7|lVu(u+R3ts2pI>^
zR(HqOmKV;5mPqu&ItbqkP_NX^;X0L;$dR?>U0&(>)WC#z1~isOuOQ_SB~ts2kx3$5
zQURMSME@>v<9wLE0x(7CwG2Z_fP8Dfrvsho3n|bw4x(ov=rd4_0eE}{&j~ov$TJ+C
zGWk_e3gAsV_V0n|246>j{TFyv!?6P3Y{0_lnU+h9*_Je(X$fe_!AP||&SITu7f{KR
za&%-0dalJ;t(NXN4^N$(>C4qNFOsQI?8)&(7b=_q0W!A|DD7oJlyBpBdiDb9KLMyo
zwX)xH))vy{1jx&E$;2EOqIkyhLRzr5Dry3>g|y6?@^YPYy^z&cE~I?}+64erhPZ5o
zYqepGQB2acPAY#gSPhTo+OQo`wtCaz1epsJWUCPV9r0fc>Hbd>ez)fhh@JqncYFF2
zP(^2e_HIuLqj9AWQ->Z!qMGo#JtskP9H711^9GI=0B<7G-t7tUQAJ&V_HIui9G%ER
z@Amu($Ik#~|C(lnco6SiA^bk(;QURjrAr%=V``ce!LhWarIb@^=3dIqWG+2=-KKLB
z(|B59!4I|I_cNXzz?s^_G|u*ORiamQ));u=n$=i;RY!fwB=l5J_F%ovOsFY)gAB@B
zM~GUpDc6}B$eznS+-v+`^coSJEcGO?pepJB)KzZ1hIS1>`*!4vn(`e6=~^T!foF(1
zs;N9%1SuU!(hqJm?o(O4BRD6VA_*$kYKAChrK+ESaZEv0Rc60aq*zt`7vYB~f}(Ei
zN9*96vgOe*{jjMy9Lq*Ulh5kSxPBzBx7^b#8=~FQ+@iS7KpjVz^Dg3X%9ciA24xom
z{>^Uu&Th3#mT$7NxZKU2U)#JhuV<P*?&}x#g(z8!`ue3jp4)CTlXtL}27jnO_)G)z
zGJS*<{i=Aw_YG5*X)cMs363U25$%!TZ-U=9uVsJBoMFA`^4jp={5D&J!8SZt`*?{6
zoBbhtgD9|z5jZGV`(}qInU~%?{vb%d(`uX7LK1us)J3}`p1-u_8K!9vJwo%$&^(np
zX`WS@XWSIcvs?4557ayt$dlk7r+I{ys08hL>jyz4b>F$NnlD86-EnHZ&bn_@kmeh$
z`wGNpzWFvY@dJbO`{kNFGdRd{Cp{_1awq-6Aj<>T9|c)1s1FIUTu>hxWVxU|EXZ;}
z{k>qN_%k$I+i&&wQR{BOifEFrIb7cd>KP|4aiw`^m}(FEOH=LpzzFS=HicA?2k_P~
zFAdp&kduHIOvvkBYREx^{Hd@irUJaQ%>N-!(|J)5Rm=u>X@#&*M>g?QMHs+KD~v@t
z@-YyZgwzV<M;-a2pDN}6ytKmkNk=w)OBLY&FRhRk>&PcS+#sY@R!el`PeoNR7vQB8
z*-{<Zte7eq0KBx4Tc#tQ0&$a&S^+NCk&BC~;wylcR*oxlWb?OG5%IP(DSr;s^867H
zx89Z}<u8F+sSJNd6$9UqCgn<<(pduI4v>0nSfwK?H=-8TE=ZyC`}9}&#V8uQf|MU6
zVs8;3ItM97xy<q>-4)_!8yKMZS|TJR@GUAjPbH!p8=yn!*6?qE1?&Snw2#nur+~rh
z1m*alz(RC&b`eyW4e)xN4CLX!q6>ixE2)Yg0-r2BqMH2srX|eC-jrqc1AVnyO`!S$
zpq62Z1(snyD1?#k@o#u5$^JxVPXX&{VsDlcdoM;#<lj#X_E$Rlaj+gG_Tf3PPiN#B
z{@r4*D?u9jbFe-o_8)U%-^j>Q{QJUS_te=-l~P3sfO;S&_DhUZ?(4rHttEQ_ojnSy
zjfnkGPVD)Zts4K1G}wK0_Woe)OYEiY=fEDw$WHvb(O`dDXP*w%sl*<a6MHvCPT=1s
z2776peH~bTBleGSVxP>&6#fltBiSqH?CD@VLG0h=!0z<m`aTLX&*p8+rIWHZP2xTl
zJbfZa(vPv=?O7&%o{3kzAL#g1EoG$o4a9QBWQy7fEs>D{)WK7!xWzQOX&{pAuYeHu
zK;I=O|L%UYQ-~qx6;kyA;PDuAW&JUG19)V@(*%w<@|=d}BRG=Ca}b`d;h0aJZSbVR
zv5h>x!E+sstK?Y%k9TR<D*%uA@YIE)HhI2;r!yR#$nz;Y6W|y}o+NnI!?6P3O^VtJ
zLBWuBRS^iVmx5<L97D)c6`s0fRZ$6G4~FM2IQ}3{3_Q{0FjoTDTf>uHUKM)*_C$ET
zsi2B40rr9L^r)zcR)A8Y;3+!+{~VcmMwOZhkG3nBc}Y$=GAQf54N_{fGamdPW9)%J
z;FCo|NRZOI9b0@wE2*Lgz!7rGG{}T96DExBWjRfVAg<qn3RLd^uGI)?2ae`|!i(YY
zreOOfdZ7@gKLOevzhpOEhQNhAJk|ER$6vQH=mFXuzgiWu4S=sZi?+vK4Ix#kYE#rA
zzY0<QvN0ne{g(9b{FH>&LQqFgwFMNe08c(z&y~b^L@E&v=;osxh?)bU8AM12qP!_c
zI|y|MsC@uOm%BQfe&|Wh&BjK;vPjg=Jv`U7=iKzHhV}<=BwBORlXBDNuGCh#%JZ-7
z`yRzhA!oJB)Ur1cA{qdE-ARj4F00aKPHlcS+L9xT1J~=vw5Wb`HVV@JJ`G4gN{bFI
z^`qZqSw9kp;7E`%v4gyO1U1G{iki994?4dx#SoiJTvvh${6k{t{E9bW^mh}%yP0w&
zm8tpMihb6KG1?IW+6_6yVP5FnASrLXf^nT8>2m~m6UIIZuFBO_Q4(PP0iM6%*hrq0
z@N}r5il%^48{sLt9sm5U=>oNic>c1SBTJY3wN>crIlUuS#Qz{6qXt*R4FRfH5Abzo
z(JJD3gq#haidb#oAiGHXPly$rJVddz!-ObTaxi8;S9w~>zk3jg{cnV-HBrF<qTCBG
zKILGk?p-3w1H+{<NGfV%=^zW>;0XTpMO^l4!)Q*fie?(w?;w-G{rESO$SOnHFpvx(
zvU+u)TQXOWjr?mr29j?OyZ}(HH7Mq}QOqVmmq7IwD7FF|OYfR9ZJ|zP-{gtb<%uDd
za!?FcRsOa4^etZIJuYNl_t0Wg;Kit*i%|h*FIZJl8g0O5t<eSoeUs=kDw5WFxDeN&
z@MVDgBY4WxLNx&>6$S}0^MP#0X&|=k>|5*+X%vDWZ^GE4;pzhFjsSZCJm14HpFCaQ
zvDH?^GkE;gvYch_nd77<oBr>E@PL8WG+k~?PES9yELc2y=$4|D8(o*BE<BL!E#LwE
z@9yhat24LKM5xjgpx%GrI<2OnP}3PnC1RA1-txY<D%S-PNoJ*b1$TCnEsro-%bNko
z6KZqIt5gRTS{-hATjBVvj<w~DykTj1)2_;vCtdQFT3((m-16GjRYi1NZh3D9s-hUc
z*PTUcd65Wd7-+OSpNB%c+f}waY6OWKztp2)7j6Utz}1g9wFbJ8gH!ppUl(qmGe9ye
zP&Uvs4$k7=8C|%6t_R85K-oZL@MHen(1jc5DUh5Dlr1lf+ew~#mX`Mh!LI_j<y~{5
z$k&xyUfCd6JpjiemzJ0A*7CHAe_G3v=~oQbj2mXl`@XAedG4XPwmeCwO3GYYUg`sG
zc}<~k;~;K%li~O*h+CdN*L8<TeyF#+!QEubBaGJac7S?Y5Vt&!da8IC#4WE6JY4~P
z;Vj3$o4G+b%hK|qyXDgIezUf`wEwH+^_BB@k?~M(d8@i{%i9Gtb^_Fq4|8aFi4SvZ
zc{F;CkR74$d4&I=^$O%ql%pqMw9)e}BxjQJWpad&qi3o<deVEf$F9j%7D1AF)+_X9
z4-frW;EutnXadmQtbGH=BS2w#v(}qvwNH(V3{l000Jk@5wda6u8A_&-=o>wJ=RryB
zIp7yyxdE_zR^;wAY2rwi{H2G4(<JBN`l{GcU$s6YoCWFMcIStLzYc{>2GAZ7E)oU<
z9iTlVJQa@5$U_ea--RO+pgkm9`MMra0{=#L=ZAzFhGWVN&>j-r3rA|W$`1*rGwmJz
z9od~960X!h6%_!E>l~szB<%R=Kc2XKPPZB@9$B*5>%qy~bUj7HV`07?oB(-E8*oW{
z3CH9HMoB#WU#|u~=2wG%1O2Z6?bYCiaNGuHHR<bnvZ*IgjJ0|e>ehqL5qFBf>;d3S
zAzF>v0^de}y6;}j_88UoBlir;nk3fl>G@R;uJ58D+9CKIeg3o9gX%2i;0J@{As>AM
zM!pzK%KBu=8YQ0K|G|0%>^)_*Cyb_KC?W|2sNtDzN~Y;blBBMNqyUn1zg~gnhNJ)~
zX(6P1O_HX%OG+POe4+j)LsBA1${(x@?&)G5ug#P>Jd+4~f|aE`Wqve5el(<x`L@;K
zC$aw+Vx=oxVu}YV|GGwzZbXqvQIrT)^7P^;LJ&nDz;V?Yg~sK$A)9^{aa9Rc!X?*G
za3m3zddHoshQa0k6kH*}%23I*8XUh6m#+(#R<UnMt_0#ru2(3$FLyIp;JDI=D|d3F
zDn>-g%1yLdH**!J3z6Bn8Li{^@|Lthr0XmGr7p*_H+LM-QK|@wa_Mp;ormEvIML-q
zO3qc_S`y{b<)lKf;(fTw@r_nR-e~S}X2LN!n!B7lG3YL0xXT#;N3R&}a*l9BPxyCZ
zZ|-uof?{0^cR5k9stAphUCvl8!MXf<yEk_^OF^<2;Fx~f(&aeoJTQA1dmnSPCBcH1
zCy4a!$M>GhN}p$z?&lz6?~UaWax{i=jb#ZDU9Q~^1!~<-HPBaT%-zo*IQli_?x(uZ
z{X{&|yPvatxck`(nm+*E6r#09uQ;R;pmucaek@;n=x%gA$<Or8r&wREoz1}+Pu!C%
zosZ;J%l|+0LC!P06jFAQU9{_Kp7D~C+1kL5Gw_-<u&4^xD1NgvnGMoLApP1D;W&NO
zv?-i&cy9@!ZI*cC>P;f>XRPti7dRep;JnY!wBNa5@yxwpk)6qFc7q|KR6kc4&OBTl
z#~?7&J@A*?X6zkZ0&59pDhJXLl#lvZj;5WlaLsVxs*O&GI|@1xqbh8V8gHp?&++AC
zG~U^3gpiB!cEj}z|JvFIDS!7zsUHW~=P2>d03LhcSp&zf<k<|*aX5~WXEi)8;CM!!
zAK@t-k4Xu@*Ija*OKWHYpw2z|X{AcE@ll+_-;LcsbBz+(zpbQjQj|^X_*eu~t!NW|
zg>AMDd280UcsstW{Be${AN=V?O;vT%&0O=TrQ-F4+a{za-=!$+rF)1<jRf5sEU)dW
zNxzq9;$IxBjqB>WPg&LUqeO$`6O!NAN(}W7Z#`?N5!GD=TwCN#Gr(Jaf2ko`O)G^i
z5s3AKY}P<S_OA)b_nTmH26(H2r-mH+RUPy)&0tD4RfX41diXG|ZsmJXh_5+%M}YpS
zYkXb(NKp$_Tx>26A2q3~ZOa@<P{qCkdHATAPC2NhDyjqYO}pkgrGDtBh3<LNS`~Ky
z`irIsI$N8zs;Jyn<rhs`>d1)puo~N|{Gw?q9huk>(~*vHgQ>MHb8shBbnhfLnA+6U
zHkeAhr-}ma$qlBqI^{_q_5t*5z=?s1{sQRKK&5MSJ)`sc9JYxMKai(_#?;kL1%29C
z6~h7fBM|EKfjkv7uC8_}=paJ&cIHj<1vM1eAV5nb`qhgrsMP>RtD5GW05&pa){s{T
zq-(CkjIHb0-~&DY5(W0qF7h~#L1MUM%(mpZ`f;EYApVIMME;aCo7iXQy{NACoZAzG
zJ?O%EuV=lSf@q0E)4OI@Ra6703u>Es+l)JFq=~GnKEnSXy?Rtv`A@3+1vvY5Rr%b3
z%wts~5aF~yrOiM-cW|kjD$aLfRU};=k$BMhSV*EOiUQO{)m>H5@A6R$y<{nhnH0nH
zKxKoBVGuY6BytS>nXaHnwZ^al;Y%onnbmVk?276#o9IKFww{6N$$>6L;GflH`THLN
zL7zZ1{~#XvE<yD9L^9{BbwCq)y}B&T1mda^s0I$=Jbb4+lHFZiN_uG!CKF-ZKy`=|
z-ws5r0BVN-SM9ZLDbWIYb*>>oq!9DRbqnqr#J7rPf^jN9yH&g&j@{kq{Ldl2Rc!A8
z1ptn7tUBKyo<0!$Pz_nE86<T?-GYw6koqHn!od;>P`fZq*NK+fN>pNdjB1=j&1GU;
zb--XQvHoD}-h)eQ&;Q5RcYtS6JP+@i%iSeFNJ0q&NF#+b(nFIHMFgaU-ZAtJp?3(1
ziXs}2rnFE61PLG=BuGaoDpf2IL=XgnbftVVcQbqUz6t-|m*<(hTc&K8+1uUO+mmK>
z`lPMLPD1`s6!3PUQ=Q#s<xH`bLPT3k_?!Y6@1&}q4W%{<=n1n~05u@7h&Dswt3+H{
zq#^Npsp`*6+#U#9186l0^`}<?t8gY#{gkR|nbe=NfMRA(?$7dssE8ay{54groyjjj
z1JV&>KiG*qp8gt?z^!%~siviNK0J(0e--bg3P&$G{q+F^CibG!U$cnFO=O^jcj!^3
z@i035^-6D5)a^~DzuttvM1YcrW}N;y1+f#o>Ganl2>jEVPJcD)ql%XS^xec9Pk-IX
zEOZ?3C(4E;>J+WiFxzV@W>0Cq6M}IFY<aSE4p%)!ks=R)Jxnq)@$lBrVRRUG!4#Y{
zDzkP>p|7I(6AR<3Xf13JeF{bJP}m9^y->T;lb6nX73ON{Z-W%6{Me}PR#U1DC;j~q
z+T~myIw}~E#68BLM)WInxpZGu_yTD4lI)KN<0xmJB(_{1ygl!5YU!vEbd<9;kW}kS
zM>#)$!1TU!l=CPAzV3@hIq@nzJjz+FABgBjM>+dIAOk>uC&}u&4Z{od-6veoiQ?37
z`}w#@d^B@elGS<oztp67l=FGf_!U!Z{mU&_RR0?1-uB9-<IrhNIhLvqA3^4_397OY
zKs{}1K3-VpJZ{c}`ET|JYyN9|Hc{V2MvkYxc8qXRBSSyw^q0OS(K>v8dW3a|-<L$<
zT+m}AwP2#0dC~&LXa=X#W?UgWE5}6*JXQyfBc##^v$-Sr{8q)(i8w_o^I@zJS#F)1
zs+4N`mPcT!{fix`_Ahp%+P~P5YC8~BJyj7g$@q;BACj9BXwGhj2hnVPk>mDgKK|sB
z+7fYog4R9*P|hfkPilWme62qWB>=A&CG#~4BTC@xm3cz#@gPx|R4=y#NX`Z9H2`jP
zAW~s~DoPDN$2_1kcpXxNdwcjl9nvNOxc7oc*?}+>18^S(kx393g^|e+xdnl%06{Y#
zVpz`RK;H7mK%r5o-aSW?<+L57iWY;&az2B=vO#1y_aIO(2#3JxbO<_OFicSgljTf-
zz&HT?Br!+Jxi+fss7Kk*@t&iLJk<O<VHlQEhuRt~r)JUkZG&uk-kCuzd)}^xpdSSC
z?o|%fJvLRz8O`qzL-CISsF6X=%W&fzRVGBe+#yRMRKFmXHBaOgOUI3`8#z)86)(R_
zmP7>JoeBt-Q%IpZj$wtqoH8C2+SK7IDK;Ixnqt%8KT>Qud@aSM!`D-6I{XaAk(hG$
zm4NdkDvL_nDp>09s&TBt=TllBPO%}-<pAZ3qnPJYj8l;#Az{!E*5L~&q{C<c%oFS%
zoAgqOmzx7B^b26011O294N8tdwXF#Mn+{b)8i0EwL@q+$JB*}4<mF6N)C6#U1tOau
zuofVw#TZiC*+Hzf2{mwMG{w8ZI8s~xVX7!SjMR1@1bPo6wcP=MF9Av-jiI*pAa;8g
zscrq?s;C2?e-UJ<?UJ#D)OJshRNK6<MXKS!Ae-6-1Y2rbP&9sOuuW~#ga3!xp5rk`
zWMbX#r6}#kk=kZM@jn1iJ%Wo+TP8%c9XifZ+Xt>{n_ft5lM1PA%>Ge;&_9K~4O8A^
zk>D?N>H7(+OZ`)Nq9UJxf*l4ZW_)dFfT=bUN2p@>2wpr7G&S}gNVq+M7te#u#DtMB
z#Ej%OcZQgWiy>kDNPcr?sL8Vc68;#;tKdu%bHFH7^ccmf;9;hnoPmUINAW6nxQY4d
zXqc4)L>qQ<C`Bnol`>bu$5NC(skX)xM@EDXe!%5;ic)R@O>x!%m(`<bio<xC3_YY@
zImNjGxW56Yoa3~F(^pXHr|^)jHi7yNza*rLc%%qzU3p83{Ps|!{RG+1`nTn6{clU>
z@?ih3ok04Yz1ep3d`XJ2YtzML*G3KUchMY+%4v5e#z?!7NDogx^Ra%rs@%QVzJQhG
zM&e*pmX%{*rUy{Y_|nde#J7=f$7C3E0E&G91Bl~hVwDGx4zcbnRb&B}pY-`F(dfg>
zw^h*(!2Bl9twcjFs=cF%%b3^(kDcE(6aRe=7Pas3md@X1;-#6Ym;_L)WjG`jn2FnF
zsbVrfv1S8t$T1U}f|9rc6#J+IB>rP2_L{GX%JW&N@0y8@PgQaE6ISZ`W@7n;s#x?X
zEA<02@wFUyye?&>erP5RU8#zFD|lz<k(qeqb5*qeoOgyEn|1HGNfj?`;+>&?&BUlJ
zst5ouzjgDUNnY+t&^JspzIF42nr@paUIj3}b@SB39J@mmu>i&H8qX3FbJT8C4BO3i
z_S{T73<>LZvz>_~!_NNQ0}FsXY-f%n1GB?dFctcWcbl4|&<Aj4CMmy`qj{w90i3%@
z$^n1HW`S)|lukjklaapLA-<c;@6s(xqIc<Xo!+H`Wb<9RHTHMu8kOfoD2JNTFA~h3
zObgPn`&2P{AHGZXew3Mw@6sKZOz+a=+TW#HBj2TK8g1gz{qB1l;<G8dYql=Q*fm=U
zOcw%pWk7D)6yAN>kYwzdU4opm`)GNeU7nZsh>Ix3coChaim*I%se~8WHG7xqB11Dc
z<?|%ZQB$aP<A8ib9`Bk-6d7X4j`d0AuGwKg{yNXtH9LLWA<kt%+lRCVge^(F>$l-|
zxU#1h<DwGDOZS9t@aF3zJv@uXMYsK`c#=nT^N8dvBm98391B|mPBQ?tY^=-H#dXVz
zTZ(8)ifojzJxTACMUTRjK)VF#b7EZR4Y#PVbc&7SX5~<G`gQC`(l;`zyTIlSvf^CH
z>L{{O3#wSFY`L8Cm?b8O${v}OaAkvUDS2fdb%@7Pxw-bbG?z~ZH&+4RIrb&#ZKhIl
z1%9oH@?TSPl?~zM3O;6QuAz|MA3$yUe>7K62sc+c&^q=f=^sy}I_3fGE~Jllr8k<(
zAg>w1&6S1ZUnl9`GkNI)pvM4eWmj^uiJk^KZ5O<#iL&-OM6Ea7M0vv!e3K2cHLC4a
zfo10b4rY}$_KlA^X}(uJ6l{WI5N=~IS{B|1)E2W$1|NhtG4T1yAwu4gA4^H5F9zf|
zjVF+7jwcK3<4KbWyn)1_boxbtYj2Xp^?+u|IDq3xrz+NXQu-|#Pjc+z$pSf^tdF#h
zC-^z-XK(R%(lpuEc&P%IzK#7*0J-zu;_;+Kvay?e0dme9ASD_u6(4aC#puOS2Vru2
z5T}pMy-0_yu#)}RKxAkzr!-5}zkQ1;nGReU9pqs}qR0>zz|kB;Bf(}sUVqRSR<fag
zlBcnqv`zNL$pPAlnjhwDXp?w{0yJm8L-cr?iMm=u3aZ@tKrTQ&;5oV_``!crrB6bZ
z+kW`>93=k-;Pxd%Y93NWDnLoZb-x5DBOo>u!2LQzHb7u4M(#u88U(Ij#BGHTA&21^
z3*dK=#GRSu#wD!VgPK%sbil+Png>n)b{O{thdfEE9d9J7#t_gE*tS1RGs%Zx{NQ@%
zf-i@I$$&c%K=llF?n&c)N#PZo=McZW%_?%hw3AIhunfTX$W?SDInDqsq8J4kcmx(y
zM@Wt038%P7&$Eq1dmw)sfSMcPB%H@0=q*6+_700bWs3Jb3Tv;UB)+{AkGP0pzJLk&
zSw~5H7b!m1F8(XX-vyu+IEy#k6y~NpPeJ`f@J?V~Jjr{`JG3eP07&lvXa@)fH|2#V
zQl0YS-AoSsLcfl(N#5s}L%=arR0Pm2**O?;@A~l=k&beMlDtd2OH{7{#Vbhl$cYN=
zr+Yc3%0{Y~BqjA-GPH$2(f622h!Y7>6M2YOJxS?S7!lXcQ_Hc+iCutLC&|0hbXq@u
z`Hd>peM9T#q;FLb`7N!VKZn4wZ*lW!7j2k^oq*}v30gldg}__@eO@_h!}OPT3$35m
za&0CGF}=tQ&~4?c4O6Xau(cbi9}2N{PwNy(tVTxs9~-9jMsmoIOi4*nKAK*r!BE%s
zmE*3@!v?FDq<lM_o_%FbLX(`ty`td4qo(0ldRmURr^Rl(Dlf^m+I!?!>JEfmPm*J4
zF$Cr#H$*cWOSd8R2Y{b9&BLm^XWi6shz3z|Hf<bi&0tlLjgnR*`5p#>(q9jzy0?{c
zUJhmO1g}s3h_~KjUtI}gmKMxvcN&@X?jPcYj9Q$6nHfL{WXL%1A7`e0`j<2rkh~Co
zZfg$3a>|J${jQW}C}m@R=9P`S&Loxo`+ZW%2_SF8DN@QS5V&-Tl(NZbRn!A0i8O{%
zo`u+n)1;I&zf(o>cliFjzonET-Y=w-6aA%9&VApmSCd&O-}ASWQhyp{>EWTG@i)X+
zdaM2x^J1km^lP?1cU&;eZ_Xv@u`@`&-htx3382=fQg|#k=CO;2xR?y(aw}g*Qb#eP
zuYk!OWc0beGo#VmUA)e+LYJ7)lO$!`3^EO`?_u5e9S=J9xamYX7TqUV{bq*jS421`
zCr0ToyK?kTR_`&V{2x?t`UmEuS7dF;Ld2oTYQP7Cm~%!IbIvg0L!MZPJVYFntiHyG
zwa&sy^(-U$Nsa}GI6PS$%7|A0=^`Q;HBXj^9IDMJqmtE?Ow{L`D!QEGQS@a=6ub{z
zyUD&eGf82u0n)GMNMT!_S4G3~q_96j;4DB%q%jos<qN8)d4Uvm6$F+7=-n$?3L7@F
zkiw3nY|w(&X1dAg5O3Il0#2=HQ`lP(mcouM8h>lFO<{kH{vQhaenmMTV%^6lt3S^q
zJ^KfWe;YuZ9#&Y-%u6jRvceW1@x)}M!iPj0dl8;E7xDUp(88msIeu4SCFRgm`gL4N
zR$F{XT{Q@p^tj0V`!=J<(EFV7OR_qRiLL;_B_uL0x|KxvI0^YJxm5R$=xW!7Kf<sB
zU|j9G76Pk&#2I5AUF~`eV!r|ySGzX8q>B0ghDPRA;z2HWzj?K*<0BG24{+vO!V=@v
zu6w0$4#|{j?w<8OqHA7v1Hn!J<C@pY5cmZ-sJYbNIr8wf;jFVQ1`o?-Ovi#;PFClC
zM12tW6Fk-dv>f~5$e6(VTZv~FX<q}?{bcVGAJGJ+9Z<AEDlNcu+7lYUBS0onJx}&l
zvWaREP)tCo$U;<g16aj!k;*g0yCzdD2Z|h|dfkZ%8+fjim5)?qQ<NUr)WD~J;>b@t
zHsl5Hv(V=Nej6c0nZbxjKdU0)XVx7?RAh*M9f2uIULhi*dGiBg^CI`C6y-rSUqJ#$
z?Ey6Js`lnxxBw=f0X$R4LaOK#eex`zItp0}fnwIrcq|YiC4W&xv0w05AViu%;8lQ<
zNaKDMQZ_?uJ%C>sT8Z?T<tCTowAxmGBI)@~OLe-MJdhhP56cmgqU@f<x8(i`Vgb~M
zs?G+Ak0YaD>j!ds6(Dil6y^6>)JAoIu=cNf;;CgIw^8sxKx~_$G@4C&9s>cX=dU!;
z?-9g{fsBK;iT)3ee*#O=sItpCgU-;S3=t$J6)2-win5VqMC8NMHlG$%V`;c4DMPuT
zE{m$+fSU=ReQFz;NQ_&MoGYQ2<|#_Ck4elYKr%O<s-g$6{fI;MszClJWPPG?A=bV@
zyv#{Bgp2hQWe~IW`b`y{zY%Lc!t)jxcGe9czdnF^%ej^4JTgiMA<8l$8zrQtC`VYr
zRG^&15+Vq%yvVal*bVvH0W^=o?UFzw0ipm|w@gu@<`C=qKyrs!rxIR>2tI6M9e-IB
zF#zh0%7vB9lrT|ta5_*r+NCHnS;9b|?0uOeyd#w;%P!$7$lrkyI=Cv)1xtw*N*TE*
zqkW2Uhh_L)QAP19Bx9A7k#CpL3-Y@GsQp}J<XbX!Nf|yz@cdDV(t0k**b20pSjIjn
zBkhPy#@~>C6J?BbX({WoQpbt1gvdk*9aEI;EFtE1RfPXe63!5wkI1o0m<;)2f5*qV
zYb}miwfIxk;xx+Wl%n|0BN?ZF_8XRQTh>AxwaM_j3j7fkxYWY>ve#o-iv-*#?VO@a
zU<vhsvffpa@J!Ys!!BVG<c~uMYg{B)hZy^Xu#M*8K4)06x@ex9&|(q#^2i|4aWAoH
zit>z$upL-$;UX}eDl(4Sif|Y5Z($LRgchOHdH}5!J>GH`W#=2?wxgQR&eB57IGFW!
zc?+l3eCvSzR+@_&cR`h-Su$QX-HjN*Ja2IY8>2lHEJkn5x32x#OEa{JFn?Gv-@GOa
z52Up;dt1Lq`7MC=-ud)!$(o`GzblmU-F&%H_4B7$!>#!?|F_A>uL<ROFL2G{<42j5
ztTINJSdJv&_cJBeT41>{2LxECEf;Xx>BlJ<FUlNfB-30-=Vukx<Lw2udZ_GTlD^IS
z?Y5hsuTOTp3EDieeq;e1Syx4q|55>YOuXsz%)jSmV4e4*sly`2@0;1_IVOGxIz7Mt
z1D=k5u+wu){5wcE|CTEJ0g7#E1&L$h4d0n^R~3K%!=BJ_@rEbV>z*pE++|PbcoTE)
zeN}9|&z{f;@rFBZ+yhm_KVVPjL^E;eV^wr~%%0FmX5yhIF#bPbPv~Sb@ziseiaclk
z<`gsWH8)Mv05JWVQ_aN2iY9)=M8m)NrkR+lYhn<9>EC?IOng*K6TJXT|K>C^F~JvX
z&_^Tx=G$hCYWRWH_-W+de8)`ux|}Aq0hs>HcTMtT<ux%5!1QlUH!*ux&_q1|)4%zi
ziCL|ZCazc1$iMl%iP<Jd6X^h^e{+VJxB(JoV4~sQ{2<=&Z>EN5qAY;v-<)Y;{#scR
zdjU-U=E+3zZ~7-FWgnQjVEQ+wBq;umD8cY=o=;TX{Lf7AN?Ys@n-;P^qG|&9H?y7m
z5s+;9Bc|K^5#vdUhYU@oUnCf_kfvlU!!*$X0IbB_R890ptXN3?h-|w*V!HH4OjJ!=
z`pz<x^4&%3kEoVl_&3J_(~$sP`H&mDh<AHyCK&$BFCpg(0P`w6Di}<g0T)q>fl>+A
z#8bf0mN@Ja3!`>BxGplZhf}I2c(z?cwQB_|ngW=P2#F#?EZI>b!Srt~1>}WDAgTu|
zv>>M6GmF^2P%l9`@6-X5%T9^O<l34dU0XQO@+$buA+9fG28|P(y?@7_n#E8=+8Stp
zCJB1u#q>nE2!%NtP7QU6@N|*6#`Z)h9ia(t0PTC-X$FQQ7m1{#$U)Z467(sHX)50g
zNE##AQ`JUhY$;tKsxmTkpMD+96ZHMe;ccLP3psGE`L66nim|)z1#RN9)FCP@VQ<~y
z1j}33`4KBb8sK1-;jKg00kmURNwdjDllYWrasdakOb=f}d(nUaFjSVZMSYh*9=<Fm
zi-Kg+qQ=@S>T@cUn+$EFUnDrTgmi8lG{~9=w5S_ymPOrPLKc-}x2UnwqRP12Eh=rT
zLtI?S7Ih)P@bH}lrY8WrG9h>PQnsi|35JKSdKFD1Rv|_CP2r^#;v$N<mk9Y;09uwu
zA&a`G@P-42e&&>m3HoPCsdg8E{8SaTD2XCNEZOm6g6Y~zkJLn?NaL&VK2R2q95#aA
z5-iu=6X9w_fS$A3A^esx`kx8TPQA`g%(jPTE8sb9B>1k*u{-s0LFRe@!>M-z0)GIM
zL|ntE7Z#<7U;x9Z*9`)lFoI6K1rV5n5p?Q(4}p^ab-$z*b8_8zIk=fQ6iL61n+c}N
zs#vrpJOGSUrk{iN9Q<7HttAiORt3-^od!K~ON3_;<%Q2e{MKK*chhCGCDI0HS|Od=
zeG|v>Ta}~~Rfa0iuVY!f_lL}30#J`b4i)Si47rh#LpsX+Jl^{tQ!NLI9HdHdqC(|Z
zd!Owk3#qopE4P-B7TpJmBheZm?jS^X+9TqDc*SpdAw=A9-Fu&HyZ{l8#e0`pK|8MB
z#R4LLvE$mJswNr$7(1>9A@CJINu)7$T+7CR5dj!Gt`i_I3_$;$nB$J?yyb;<T(5F%
zCW;-)i`??RMHq(P>ME(H;kSDF%#7gn>-{2$)l?cQUg)>tMsmoIOv#H^8m=hRV8$6|
z*>Smx@JosD%Cr?Ub{9aMZvd#dPpkn_ZseffD&+xNSOF5pB>3K5L4K<`@tUX!VEC=Z
zL108YHt-_yTOEhk*8qO65sP0}SbnRvG}77pRy;FNMHWr~;uC!5t+e~Crpvhuhd$;9
zcc1<dFRkR|nGZ5M`h*{*9LlF(>BEXi&_on~F@`agdtrQ6f7Zx{+y@+*!YLgS^aCrM
z{8<Yhayf#R;G2I5r4Ov)v-KdmMFJ`71_&%mAZ4wSsEO(TC6UHZ)(;@|P9iDm&k#5Z
zpznETDQo>zg_QNoL#eENSJ~cYHnufLU4MFLsjD7MQvlS^PhLb(fyO|?MbO&g#R_Za
z-i?P+_ptsw67<KbNcZX_f%*VwN8Ma!9`}f<m<)OFL$+6f`pRnJFbb$g0H|({3Tv;?
zSN?Ji!J$NEG(ABXvzqMXD`2u9iASQ><s&{H%e*K-U9j58nN{yGBjn-C<bHy>pE<Qj
z(Zs7M%&GljR+R!oe3YQxV8k-1Q1etq>?;w2a{%!_n74dJi2DF(3nCg78Y2-o^d_e~
zOHdmzQQK;oXi|-d=13wAE#?$QqB@C*E&##FYCOy?mqh7UB=<z$Noz=RJ66|3%j%@L
z2OzMsI%#fN4OjpIltdasbC*MGQ4P}EI}o@DpdWc`Y3|d{3Tf`|+`v;r$Qma-ye{?d
zug5mcebdd-+}1CmsG!+2w~_WgH22@fthr(t)L%<fx2z$(t6NhOwE(mQ!oGQLd{psY
z*4zZ7@<>z)m})Fgj08|SJTF39r;ZU~*uN~2LzC&((Js+<!dhT72hehX$rk`+U9sGk
zLGG`Ra~8n;3yAcnrHKvz?z<t94}o(4>IA}1nPwEA_^kZNbKE_G!#si`xb_>ErO3c~
zbV^irt)+T&dPx&)0MrZ5oa#ZICBtjBT{c5Dl6OulHFq6(&DH|xDgeW4b_D{z0+d8F
z!)q2)TNC~OhSzKe1o{COHgfS_X?4p?uUYkVq`A8RXJ>7Vyk>uJqsfp=x#sRUZXJ2e
z@`2zN0K;ph*8wSY@R;H^H05&gn$cb}w#?tMWeTtuT@uyr*HO#V2L|;3)a%a*_pq_X
zoAsRQ5WF0ZG$krkKc_X`+dw$34o%$|PZfE~?Q6WcU^@WXE}IGw>zMzTb;1f@{avCm
zomqbZBy;N$>xBP!o|Un}?tOs#Q^>l<vqG$E5lL~8jjX><RBkY9uX>vBtVgWt5uUfm
zv$Jjp`Sk(R_lsy2Q$pkac&S-{5`IWj8mwpU15i$43C;iGxo_}FyY~U|w*zP!3KzZu
zkpzhJm3X2gQORM}_krXNv+hcGAtKApIzCMkF=_aeD$JU9XcUo)tS=-gZX4L`03^NB
zi1oYw@ru2`&Uy#re+i&^xU`G4(LI|eONiiAAmL)7(u*bh1C+N}!hFK>5$UUJ5@KK0
zL?nP(-bI4t_gPMqWknWB_%TsA$`bkkWsjFh!g|8<7rAx`yCHuoN{DnF3~a8G{j#0%
zQO2c2CHf1JQQ{R?8NEU>4$F4(S#6W?8sxtMpw@7yh2_@xPPS7Tt^<EcR6bw{SwK0F
zC7hG(lxdf+3-Y(2ghnnBEQdfeZ+(a~+*!y?P&a(x<Pg{;P5U(Nv7Am+%50<}JOb7Q
zuh8=E`{!(b94aGRmVX`VYoa}X_SnhHjdfh6Cf(>1nnJ&hv5DU8Hqwf0GLTP1785m_
zbKKxCU1N^~hvqYfHxs=VFo#t@y#hJRv2!q1g6lPQ@Z{je!Uu`oCz<M7pg4|Ho1Cby
z1#fHY*Um?(1&PYTjWm8g1d6}w^JJ*9&b}9)b%3}sQ3=i^#15}&qTQ=JuVF-o49S#b
ziAvi-MCRwZbzZKgBlq=*%8XnZzo!7w1OP4HzB6Jt<-6!y_$;K_kf;~iL{9m=K(Q6T
zaLR`?&_n=$;go*^0__1xB8}mc-w(0f0DeP=-+#H*i~cQ5U!b;-+ynX62Hu-G_j(?R
z{~}RI+eC%-c@1<MK+`<!g~s+-sB=FRAl3dvrT->slSV-C+H1H!)sa?*=q}0HBwbD3
zH1Re(M0FloIIA|vODHujnkgHurZE&jSJSag($(a6Y%$WpA6ty{IC_$ze@WR)9+`a8
z=Yy||zfSq+mkHQx_b;`foW#wRe`yh=wcc#=A#uCn%*4-wjK8l%rSlMu9-c*;X(F0y
z_wwWy^7824X_kj+%Vz0eiqS0((+OLBgvuR(HIcOtG1H+0j{I2DIV4({@6mPXBVV8N
z{)U}H`LTo0Idm6#Y#@N?9LkTKX53NJR1>3`YUBs{E!OY@<+Reocz|NR;1?S%n~8nf
zXd)HB^zK}VHQXL^+G(O2K(RV+LgMeShTmdm2Tg1OD3&n@60e$xwL5Ae1;BJ8{b7>-
z2MOCTv3(rQugt`IUEs+EV0w(Mn~7`Q(8L@7(_{3fnfP7?m|O;XjBc8Vv%71ea(DI^
z{beTh?4yY*z1d@Q%S=2pP!k;ovd8GQnb;^(6ZeL)$LMdf@L!G4#HS<JV^m-!wi~61
z^ik|Fx?_^xf`px;*kkmMnV2>fY<etvjP9D`SH=V8cy<omGZR-$)Wmxe**SDS)^HB}
zH3^3MN$ebYU}81}B}kaU&Y@26O0@2d600iJ+R)pk<Iy?PBTnhj&i?vo&v+%Uy_w(@
z{EiSOxAIoD7DvvZOsB1ENH({!``Nd$SCJGC8CpxfNHAwB4HZ+fG%+O$hl<%f&1~Gt
z&f7{`*_rmO?0#}9yHYOz4?*z06PI3Afl{vA##`C`afWkf9WY%9;8g&*b+++VcBMGO
zIrJ~&+{>cpc4}LGryOw+#Tfe<PlcH!fOaFpc8{Z3yQ*#Z6=@D7a!Q3b&*9sscAo<I
z?5Vt!Em35MB|9p{na-i7fc$W(v6Y>kEySg5yf<Ar&T<HS)5D~qt!!R}nl6u=8K4l`
znJhNW*$p(YgM63x1IUhx)6=)pJfg{)nrQeYHOW-M(?!|`wz<RGkUtebTiM&*B*s%@
z29cB$naDaJPM^7*o+A5zWH*2s-rM=LW1ImQdopv0xQq;~r(Z{6oPLTKJp?BAQ9kFI
z-k=PM$-81~4HEi%JNt67Ohpx5J~M?#-oeRp;w%?Wl`gCbh=W<=77Be$;;$h#p&ez?
z9!jcyp_@s6oqpFyl+z|knsHI73l?UYuB7~K_ICA3gF-al$@ceq9J!J*oa_&hP5bL$
zx4(g1_-$|w4W(ZsD6^9^w9;EJM7)Le_iuO0{?c}m{bktguY<I|*dBKKEBHu=uw86_
zH{%RfQUhRG55OxJ^my-1w!hnPhAU|{<b3!RDO;x=+~|mlDCQLzkbe|Fo7uaN{k81D
zro^Fkobp$k{twr#*fiWnV*8UQGQ^S{x8h7!(jY+YGtIESY^YV|U2I7A;w)EE{R|iT
zdnBh7Fc<+@iQP>0#3J)V`)iZIRprnq`gJ^uQ~%z@hkT$2Tc^>SzH0`Lq+MNTq+R|5
zxIY4@qcWTg%vg%4ox8i(hpoWIoSUZy<wfqB#-Qf?%5Iu-JKomBb6~AiCLC+7A4e&w
z4Ar4uN3p8j)0jgfaEJiVYS}p$a$8Y~n<zlJWvY7bVyYHE(G02DJ5d=YoF!GlTR;_D
zRk^a8I($7)41b&F`rou-8^}P!*s4m2J%tc)JMwfZ?v@-xOseYbv6r?ZVI3nLyi41W
zlOZy4I&DYZhrlg>l1O80M|OTs6D{AP?Z|Tw_!dCF+RD1^<AXhgwj&>LZ6=B@_ShXa
zQ`qaHwzh8j&<?e?E@99&bhNJixLG8z`bD=F-}d2YZzP8d$&{$7N}auh8Vq%^WNYsF
zv}u5tQdJqhm&WKO?`xvL`?%a~SHxhCy<VP(y=15g{W|JZ_1?3WG+-VunFFAOwRY9K
z1Sy_F^_WBBs@~6-!(O1?jT~wh;?PKP;81(!(7LL3+E>Kkcc8wE9NM&Y)xt@w`G%M*
zY=SqcD*eBrwyHlv6P`0z3)i=1`^`nffmM~+jJSWMCT7lLE!@#s&O;D!SXJ*2_mLJ}
z{74h0J|Zn_pADvwO<MRZ1P*7TYit^6VZba+l$}LdI28ip0Q3{BEiEjyuaFkzx0YI%
zvad+r<8_-B>Rmfqir1@X{I@e~cg{TQ{Xevj8%dEN{&n=LsvOu?sKHPR@5oNfeH#!*
zR8>SCY2j~B=bvZcK5|EAEtI~;&O99z`AF;@=Q|*ee2*1p!zySt`5xOtpyh0I?7vN4
zHd+m_900#z#G-Sa<$D}V(^#ADkte>Y$iVrf2RtD6v+oh}x5%k7hxT*XdiM{xj-^7}
zdm!?k+2m4WOwYnJmP^sV%<Rl9%b^LKC1wO+8s%gT?jjq@SuD<Xms2^vZNrm74xP7^
zGkZUkv%<%kDE~2)^IKWBLNqSr6g)kVA)hXV%ZZr($a!=Eexkc}oPK3L>Bp-ex9-QR
zAK~q|LK%qIAWjedn)G89Ak73&v${F!hw&DWv6bD9TbM&>^y_FCr}kh*$AHNZ0IjZV
zxHEOShZN7D!OUS`oHGAwDzncVP5fn)8D|K2?fBuAjb-i<uRQyjW(70mYU1s=G%M)a
ziKp8f%IV}XD>x6hX92YLIyueOQOsc}<}`}w8n0v=ATiH?<lnh8H~Xd?KSITH8|xbL
zV6_gQ_UKr+`AiAth_bjy07^%<c;#!BFdQg{%p(bx2+vz&*d?ro{52@yeHRH+q=c*O
zc+rrJ65fbc0uGXdKY;QwOSsXFXE%9v3BmI<Q3*h++Obgc+#`|zQGl#7;+3(?x)YGJ
zn@_AC6JCf2e$U2w4&-Me>qdoH^Ws_&>F=S-IbQjRS$_{C$C-6Rd$zW0JL_5tpydJ7
zqaB>u#p$Sjnv{`;GJ3}=bq}!;0qwgBNJaxGqrfiX5ajPi85f*o*n9`+L|H-v<L%dd
z;*}hh@Ej=rV+m~u&qt)cZ<A2-6HTOkg3c@#3D&NA22qw3Sty}zyrLW?38R2==qDth
zKjHa{T)TwBke`PV9yv=e@A)@HOqR`*k0ScTD}7l+xlc9W`zeW-E}O|`hE2o($nW(j
zx>!28bj5Y6D;7%`Y548f{_)B&ma!XXx3i4pQbwj-#(l`YgEGn&@f;%`6x+SX!G(9{
zcqQftNr+#liI{~Xf$`vJX<yS1g#6wB>h?}WNx*@uQWu`;<fDX-<J2}sXz<zvlwU67
zsg8SBE=m?IpFQH$NsQ>f2qqzm7_od;9>Q}Gv3R_?ni2m7q+casRf(97h$Z9IQ;fKA
zu_l%+X2jYOG5ACH?;Ec^V#H2MG|_ws@9Vdgh#cy|DP`i-sz-^a00{nA!c(*Ek|-Uy
zmy7pJJVsNqVM{g9e<@APeultzOKEC0B1aQ_bMU;vhcq=)mTBT?4o%J4K%^;vKBKEO
zHQR8s(9~=VH|iwu!%;We0<Mj*)l1W@+^)9i*=OCY>6w1)g*5N>vQ5$QdcAmxW;{&~
zbY=Y!AK^Y*yxR8|Jp{jmYUBcFgWs@?cLvo7qADg5kg8(5vY4rE1H}!bDzNW*7`<7t
z8(U2VQZ<WL4j-eAiCC_Qu;sX8F`U*ZxKsY~F}YJdptY5J&q^*!^NuYrgD-vD&D_%X
zhA$k{uePzMqL1@CAlkb$*DyR4JK9<}Esk5C%PLJz0o<D(dfd&n2i3;#WVEGx!;`_|
zKRN|A9jD&DE<c&jMx9kq$SI)h>S8O#jV@L(&K<XI!F@<gjV_M|$H_%dV7-sYjY^IJ
z?XIJ3=p#jlCN1lO<U>)WtKjrN(`j+`P4Y=Da)jMrSHYpE-smd03GLq)pxlSiM&cwS
z{BEr#1_P8c-Xl2_HQ)GPz!#dx-=K+NhEw5il(FA^ev2j+0~8DE0*ObW4FAF8ZJH>x
zjkooWnwZyiY2ve8ysdxCOdP#e6aDt`w*EI!#(sCbuQcKP6>sZ*YbFlP(?m!fZ|k2h
z$yXoJ#O;H;t$)(Q{P$Z;?D>|r^-r0YZNAgQ^3%Mnf7(nudqERH7kFF$J2SCcz9!E7
z%G>(in~C{XHL>z4@8JJn3Yu_T6ZNn24*r=aV+a4)4Oqn8;2r$4Cg$N=n)vV*@8BPa
zrH>_?idCXUnq6aV>3<WggbbntV@tnNjM9t~vMNJ@5~DmCLJ8f#avU$kDEY(81TO&(
zmdz)4kFim-ZtgLrJMA$-vbo3D$iByTaXcT%;Ly+Xiv(j&kj45HXrfF3TI}mn&1~Fb
zTzP`_7}M>0jE&?T<2J%I_Zag*=ck|KJ;oN%#^;(}2BtLuynI0OLr(G@W2@-m#>+X7
zv$%jBes4|XgEfeYD8>+U3G&YaXx-j)a)ukPw@hWHJcp)mN_uqhb|<NJ74N`I;STRH
zN)#Dl$&QvF6A5Mm^80s;J;p4k)$x<OS=b@EG+LUm$GB~ZNkw~%^dTOnHyn&>sd9nC
zJExdKhQ-0yZah4NYt5lQ=-1IB+Oyj!nkE!LX>Q-4g~cht@Q@*<kyD1U|7fB#fXX>e
zvp2OM%S@&1#ut@6^pjJ(IsR)jZK<!9N#$Z_vp)BAhqxt^Tf|tK_4Nnwi4MfUEOQe*
za=5)Oy>ejm{rEI1_>LG-@H8g{hh$U1YuFV$X*4T1hpN*r5_CLGDo_jBqQ*a{;C_=W
z1%LZADR`P)!D~nb?={)3;K9(5{l8-c|2D=@@ZP|*D}Yxz<hp$)@3V?A6#NL}?Ei-p
zJWzHu;v$OCRepD&TLCoB!V2!kx*$UpIORl4@#^1E?fL`x8+Td3C5jBOWXH)EQ^E5A
z`NCa8!4o<=#FFn=J<rBi3SMrKlY*PKgc$eGdf`6BnD3eB7mLW4?pB$^70m-YM}CZF
zh3`p^)9z`a_C0El*h#F%1)XiDamGXbXaIFkRuQLhjFo@2N!;rkYDB+|%Q2o^zNhKS
zX5f;04;OipY)z}Kob06i_KKx9afoI=a32T98jg~Sz~U@`R~F>{@jdr(Xsn@-W$(jd
z?LJlM{2;D6;v$Oq_BZ5r1JITaFVx2;2XS|C=zC5HiPbCqKz+Og$T!^QK9(pl#F8DA
zV@*eic%X?V_f1C$%!(%dz}*!U>+Ly^9F>blxb`usM7l$~e}>T$Ep+3Zo0&sdbT;5Q
zl45-;oUy-iQyb(~dqD5p%z(h#5Ac9zI=yrABgD=;pm%Pf9%>@=A-!`m8Un)~(mOY~
z5LgdTx5-2jXMg8r?@(@L4qf0<CC8fY+*}9ZKOWMEd3Y#m+F=)bsdZkDG*KKt;~aYD
z#w)v-L-ak%DzVa3i4?$00PxC#Tyd6F;xkhvhCt4MN4)wSBCP>%5ykwH4&<+Vgu4Wp
z&RT9<^lWIx8$-CIIn;|&R>kV6XGt@D2QI%nV$F~!GQ<UNtR~G!e5{G8k2Myf4dUZ@
z9P(vd+7zuUVlk_LqAyY@arhk}set)7vJZ(VrJV!B&UoL$6HUYdxHX5!00{KM$jf;A
z6#_G#;6^Rbxc7yWZy<IAK<!WbzB6XNZD^MYcY&u<4%81#%0JdS^BnC0t4}rIcuKp#
z4IuCmKuJV1c7gXm>`MT@#l)ifIXM;AM$rt7c7d@Wx(((de0eCTPOSRLIjVg8Gfh-{
z#w*!TgSqkrh?o|ue$9x9&tdNQoEN2UO2pu%fLK4)H}5<xO3TATu_S=8DE$-yA7BI*
zrF9*;NC7B`G{&NIE5tSc7>m+!Zo2RV(3cZ)T$H|YzR;p{2iInV=zZR{|8G9*jn!oy
zp%^RD-)Jbn73sVe5R4jY;uy=(>olmoa5;K{*sCHBYu_MNeQ=&e=3Y>N3;@l;ru`<>
zd7>&N3XrN{tde|zsFnc5rvU2o;m$TAZ<V@C#6BVzjjd6vlF7sufba|wrwuP`aE7K;
z8p4{Ej>Jo1y??wwnpR4I{s1sEtrY|sVFIEVnsy9g`vLqCiN!Y;EKR#Q#!1s~{CY<k
zX#q<5JXWcFk)DvT?z)HsFfS~TV@FzZ+Y_=6<o5tje{vZ+Cd#&-JA@YxS<UgpV5~Ck
zA~i$~P%c91+9O`jiaA7FTI3?}##m(|6aNT==K!=w8?iZ#Y$2)u8QRX(+!d?*evvGs
zl&T9K0J9~U4duZnA4Q#xRl5C1E%7oSrK;2t%t{d%Eo?3EE#w~r(AU^nqS23X;ji`^
z>0C!^_dAy;G?CW=PqoJ?c`P|jgFetm@=+;Sq}wD<fc!B4>Z74W^noXik&#jYhhC;%
z$FrzXuUw+>aw~Az1YnGpe?#CFMsU2WpzERxKv`FMW9;k;IXwZ?>X}82owFChBsY^a
zx&WWm3!{D4qtwliwE`#?1Gue%NC5=?0w{@S?)xAm)<YK&0DhB*#o|kD%v@VV!@xHS
zWovT#yNTeI`1(PtQsE~)!4GUE0T@r>x+B>@Ig~Nd<w?8?aCZQx?OgiK{EA&A5PDro
z%Rp)CVq0AK1*FA8)-9m?8Nm3Um+vsfOKXKAdXF+Ces(iI==F)GF6IIlAM`p4f$soH
zBAW3*FYjWyC=OtJ(5ndq8ejxJ==CWC<^kw2!>sZ5>z`c5U%$GPeb&fogTrUTVb*x7
zbsT0JOGi)nKgLq5u^7i%n1eM*=n=f1Yy2Y=<}^SFzZDjqYMjAvB=_)fs|Lw!i|e8>
zfLnctT!+9f7)iHBq9D?zgf6-Oltg0pu8{I8#Lfb^_lHOaFI_YTa32kk?;vmlBX2?E
z^^&?s18~oV$YBWV!N_8W)b-Xy4R3sQ*&|yak`00P0sQkI;{GlC`vYP>VfF=x^zhL|
zCxEc45E($#(#wyt8ol~2u8pqur0je!h5o<Tz25Yt6=NFdaCE?b9kEYFkFz}k-=rm&
z=St{jC-N!ffztRY@hTgR%tv-6chmlbc7|*O_XE{`D1zIMa-=o<8^h!Tp*6nD9IG_=
zmCWWm)P0{14MJJN_(6cj0Hmp$@rAAjP%pcfisc5HL6n}trwvFr9;@WAgz}|yQLGe6
z$d<cJS#4|*zJ&Z-0Bx^L0<r#-NJ@!ZWc^L7;+9XW?*YjTX1$c~{De<i8|wk3b<qbv
zRYy4&-g2C*CCZ8-4JaMo#wz_;!Wy8=DNUowX2J`Sq0_@$MitL8V6p((!C_8IFg$9K
zHcAc?6ly`gj&U)iKhLM5CUHO>i!7Q_u60<Y!zea84)tXYZ^e|p#T?oKb!+6%%g(_#
zXf;um;WSotW=!eO--v1=P>e^asZLb*%-ubT2YAsAs6L6&oBqZx#R0|AGCCpN7{$*b
z^p!hS#pt6L@nKmQF#*h{I3qe_NTw{0(bp9sGA0bqN3nWlBKHk3`nBI^!ceRn6dXXU
zGO>u+20o<fj^;Y#Bk|WUrCVO6ht%spm{yJ+QhOn=6QCrb84sz)5W5TD*PU3ra@l%F
zO`hoVkTSf4qq&$q?LpGv82!V`RLth(b@4iY+S8?&#tA%Zn8-0)O!VD4ZpL_Szf6rW
z8wjVB=caBshFdTb5es5G^BJ+Gzb@ka8L_)W%t6GvF`k}R2r(Cs*7$StzB7i)eHsxT
z$9OipLgg-10gMbl&2uid=|nZCv&ZlVAUfd7#WDIcrp^G$E=WDHh|V!~S~kcsawv~e
zp2p}Wn9%}YGS4W+n8LFm<?;e};E!efPQX&^jIA8_I}qQ&H)w!xHxkz(9QmDUA>YJk
z>8beq!jDA5<SvY3h8(&^zYfpn(iy*#@!SN)e*$Q~k8?HJ0{N`u&~xTcI=b|7=1{64
zj4}Y)lR_Lk#xn;FmE-O8faub{Gl!Z$T^%`;8SiSq)5miyGO<~rqIIvUqywXYqFY7X
z1+kRKLB!N(y&5BCRno<PN^HQ4=p{q^>qv^$2NohSbY%H>sbR>yPPD%4Ds^q|09|wk
z&=%P@(aft5CUD_7#J`R~(Vpj6)GDA}7{C=_6tL`$c*AqF=kuZw7fxV<%S6QC(Vmfi
z5Mp2;OpF5=aUBa4Ifyta+Os7i&IP2Ifn3Y)C&*eN;`nIK>_7P2Iw0KvP+L21m>W)6
zBL8WEG^9>=WpT8An8{xY(#0zP+WE=$MnbAbvUD6O##>sGqjm3V#9=Z}PXthl6*U0i
z!?4pNX+bFdXsj~k8a)ix0^zbCdfYM|EW10|9=Be>z#KpuW9vt)g>8=&p3t|+wK(IN
zwSG;e-4pbUYN3OzX^qx^BF5`nlWCoVU*A1_&3Wo2v|>XoCOR+r(820`ohETLEL$)1
z8BncKrj5KcMbJx{YLY8c@bhQ?470HOy3#Vg%XQngbn(gHcY<<87s`1`IoYl`dcP4?
zk@plXveWxv?EFLA2ZeFlxQ`L&K5l8SccNS}%4$%rKc!>*?kH>e82+dEh{IbEC(`o_
zH!te^Y4zBTqpeQTJ;qo(d;Dp=`Zjuu#dPYQF8e(~=iwf|6!!^b;|E^j##`)its>4I
zZ*e<j7SZ6Ng-)=QrQHOJ__mZO^t}@-YVR9vHlLJfe=3^}e+Cwf!nkZP<py20=q_S1
z@JwzOa+2pq(($KgIv29Y@zG!GB<~W{AD!eAz#RGmm=5i(rcbze2$(W}>Co;*j$%mo
z9up0Rc7~bwQDt3>127%h-A$kH*ic=J1bD@8DfciF#Vdv{xu@w%7Oxmi<X)6#dXG0p
zk@t98lyWPI&Q_o~H;s}<d(g-INt9CiCi^!)&KCgMq$t<p86BheWTQ_5+%Jw&df%im
z@di*_59JM*t`ac~5w}MvM{d%nQZ`H%USTw<WJJj`Obu+)>d}xt96+6ED}r2s=>JAq
z2O568DYeM2Bw^pZX}!T2MrrzAmXfAKS@c1FNqVg&rO%rNTD3RII<L{^FS55C)(0$=
zVq>C=j~8xqbNP7TEgPi^mD9bRfl~s|wGc@kXnk;tKhT;SIl%Zp>xMQENr^PS$!eUL
zNR2ekOqic;trltfbZd=B^J}e!*3_hkar~hcp&7>>UZRL`+@Ut-pbFHXh;h83Zlvu)
zu=OHsAA(Jbw0#Kn<w)CyU|)?=Dj2%fG)f7bbc;Q=6C=sTyXhADVt<RI7Yg&7e6hbp
z(hG$<*jF0*1JD#VTqOTQ8n5?NHksa!G+yTej6V>=a4G#4>5C3SQQ3^TN10I(qxFDj
zBsFtJ1=Hp$RCZ$v9{4X?aAagN#Q70aZ#{tdaoWhp5tw)|LKk@e=ErHHBI)C_X#UL8
zT?7ZgGc-2R%WXL%$5he9(+J#hhgA2CkP;Q83ts^DJrHRat&1Q4_hS&b5(6tA0QYkc
zc|BGaaRBaDATqovOsN3e3m}pfr;7&|c?yv>iMj{_a4!aJFfLgaH38hqK_s%8E*_;q
zBn%@pU@!r2PlU+WnlSwXaIXuIFKX#x4uE?Th`85=#q~>2qz(`X>kj|wSEQK<n*I{1
zqas6J(66IUq%!Dl8V0J@(S<*Ns5$^R6hOsuA<KU#L=1yJRDtJdn1{+?`0mxQ6${Vs
zO~HRx;Q0}U_}5WAO1a8{ht}1_;JQ5iFp9Sb4#vAFqm(xaX#80KNVDtG_``UmL`JY}
zR&y2de*@5;Rj`WHxIjKy)Nz#xuWU@oOyMT7QF8Mr<pfI(si%vI^=NaUEmgRL3}sey
z*<2V5xB~&yelCqOLP|?u8gUw>HI7o^?~t^4K$%^S>iG(lx47^LvDNc;$j?U!9zo6$
z%<r-pAGDGZIJCYZuiPVjhuxvYNToDgQ~=O8*V=>FS&?UsX(4zwLZt6!OjRE!UPh`z
zg{aO-s!XKX7U}ylQw;!$en|D36BV|{`@u|=gH#QolxF`>dwc>EAEi-yD3y5nEGpaD
z!}n!fcmim?w*FOTI5&>{Br)T;iFDxOcr8lV$nwSlpCK=kJjR3Bvt8b8$iD%gUJopy
z{S66~h_aX{KnV?_6yLifA>kFU|5r#t2;r3!8KF*>kmzFDE9g*gkzgICk0Hv^B0Chl
zTT#jgmhc293s^$3tg8sKNtjk&7g+#mc^4hB&Jpjd#A~jEFx-oYR2SVPvpoltyXx!Y
z*?drm2ht2gJQL}=;2wE49SwBx_*L?3_J>IK2ISd127yBWC6UJPZ0fJ+;&}t|Yz~A-
zPXN7mfXN&;c`My3<k<|QY#4g#-m~BKAm40?APi$uw;|OQ9h*an#{Y?w(b$W>7Gg$<
z+>6IXx<hr>#A&Si$w+noJ!+(1q4-B$<E8i=sk<DKDc?k@4+;?(^S$^0RzMLB+|Na-
z$@gi#_iIC4Tmn!di|D|r_#jUJl8u0Fi0>Z2Lo0`R(=R^2N8Km!<r?XtEP&AWP&44!
zsAc!*Y*e28Y?OT7Yc;8rjI&XO`!q8^uGg{PHzR%hACUXBF0ilFh}@@>Autl4B%&Ga
z)B6y+1>pBKu_*RH4&Yii39>ors|2#7T$BXQ=~o_5WilG;qD^Do8E6s69gvTReo^{B
zM*IhmZZzhe>MapD)SpxQqx2jmYV*1-n!nCHH6@U3z$XH@2Sw>WKcJpk21ttm)HN<W
zW$cF;A5RM8hh-WPheW9r9un~-AUu!6sYP_NLA*#7Hxr3Nqty0HT)GKNTmaO4MGPb1
zI7{0=T%XbJhd`Qg;TE0xx=pF}TX?JD)GY@jb$tY=*KXO)dNC7sk&h+OqV(qvX-KLC
zrKr|~hjCIZ58+eAHYAON{7e9CS%`ff!q_<R3TE}?P%!;EJfieQkEp`yfqWfSm~-tT
zvpSv<t!t>EIyk>ggJQ%yhRM`6h@1!dQvil8v<TtG<xp!*xf|)Z{t@Xyou;}-ZpsQI
zQDmqCr`(J5{Edme1cLQQRP6wW&4e<zAB2EkGni{Mqo!g)cOxGs(B?iI<i7!+?RIJ^
z;Ww7%F?cN{ubV!oU~Q3fFw>1M#QV*oj6oK%-(E_~vZeh<X>)8$d6tQ*rM$;{S<bd1
z_dxnovT*+`j7$DF+6i%@TwclABk=uKUPyE?z_yQ|2U<AQ{<StIMg&^>2yOng-2-WO
z?$~PVn+UMB8y5y8I#Y$#c8~w%wcVL2J&m=Uv5Gib#kPVwU&Xe9yHLfpg1cD7wi^4f
zifuJ^sfuki_EQzxYOG8ot;WhnDk7#ho)14prSU0iu1}|xm75qNpYRgsSe4fh=PS^O
zFPiZZ=vb9Om^h-jE`~PeCD8FIv;@NS6Z3@jj)%MxRlMBr0?A!~y}mh~NrF`O8IaPs
zg)Z6xxG#Xn1_*qHkyQ|R0)Yn@*$k0E>AL6x;JyzcyCJY0Bi};gAq4JX1g~yPZmElS
zfH1s_@pURg*x$B@VMqPS@@pj=8o_lh73ml9gzsGQt4PVIPb{TPqO`_Vn%cFj%M!o(
z&LWripa^B~V;!%vBHVw%itu`s-j*UXu`5C|yCO8Fh|%{g?0uhZ@B5bazTZ}b`hI5>
z==&e*;u@X`kWB@T^^<+S_8Iqmy(*0mX96_nz?R(i^{NapzL?QU7qP9l@6)*NQE{?m
z-)Cdr*N47;7m~*Sc7K49nCd<UQYy68MJWLHWe|B20^>3A1w?K@;1`VShRBXKy4Vch
zj<+Uzw$+6K;C>b&Jt5E)AnY<k+^7m+H*FE4yEk&*%g`?F?m1OdpJ&|N=117d^6O0;
z`i7C$R#ECmWWR-!-13<<c>Pq?+DRJl%r+waK^c=RWVNiHi_)}yq0$`7g4FgAq%`k7
zXQgQ$(Fc{L%qd?ZGTBg?$c7N<5MgT2S?q$26fyd$Q-n>ox<uG?t80X9km(j-+a`J=
zqU6W!yiJr5VH<wBN7z)bM}$oUdq&t)Fp^cUY88d{Y_3L_8$lvwa13NLq}t)a8~-|l
zN{uY3E2NPPBN`*lN$B%00LqOjW+ZmU#Q65Q2n8s2?R_J03??3cgzW&uj23ESmb`NZ
zT{P*yo3D+{#IhaX$qZmj=_UlreaISUfe}hw7%Ys3>l(oMv?I>W&`>^<h^G;;MTFNa
zcR)M_Sq(brq7H!D9*FFOz%qc6h~|C{QciT%#lFtCsRNOTU0`_Yf}1)J8Qc|CGhK00
z2O`fQa33SZpwn}@>0(|t+|+?c$2W9Q{SDmIfyllLU2Ms~O&y4|>8^`cyW^$~L`wF6
zBJ{vb9f&N0z+8;r^}uy{>LL*!s5eA{hCHVU{SvBDMHyO0zm7c-YF&q7zmSr%RFPj3
z5aOyRIe=iy%uWL9gFR`w(JF-B0?(*r+tPTomoCx()Xb2gUOL4I{|~{uGo1~Tj?)p|
z#oQEg!ao@($M>QM|5p(BvKJ07wdj6^)ZV(N3gCC0So{Y?;|aePsn=@jjQl-9^N^uO
zT=AbGg6p}F0(=TA=k(^uf4LBTBlI*DFF&GYKSsO;NLLUsd<?X0Fd<f_-)Dg4J{B@U
z`{*J7z&LZxSXv=`v=^gYGXZx{AKEqw58>A;!(H%Y8?OW0)c{&`TN`toYfE|#HDY=H
zMd&e#>}(XqSunvt(|;PF_X7lT=LiJk1E?1&J9ngU?iGnQhHyV7Ao0WqbqNy(_SHoN
z0PU*1ghu%ehw#wNq3^kTiz3u-oXb}bBHtE85x!Lv4|fvL0ob<zP>&W-K10&KL|j6K
zG(vS$tfHj4vn1n%Dxb=X%%L<!j<2F@bSD$Y28kc`rLGEK3>jh?*;QKscMF!XnoB8-
z{Y1ZoRImf?3QtB=5$f^~8C$e-!P#6(h-_@3RuM`ImCE`H$i2{)%$4!HMb1mM@+I`s
zMKpk#6;ikrg;EQaKW$_!PospU5se;eAfYd0WdY?x0JlyM*#m(c7-<F(kN$Y}4@XC!
zNf`+#ZnM%-rW(JEf<A=bu=(&Wk?QKXAF48)8&8J#*YQzzUw;&O2CqN>wsisAeuGGV
z2=oOg>q_E&8($oNoR0vgCZEWf1lNZDQ@WQ}jZCq;Ujf!0WQx_g0)gN9Q?)z?=t3WW
zd;CD-k2UefYJ`1gV;F>WQFl{J9z*H3$#x7Se3$GvJ&Q2czUwYdX*`6<Z_&Gr5$0<v
zYU@xJmf0_0sWu^&<KMRQEAUTzY8QmlBx4agbj?XdLAY&ZdMDgAd$=2Jn?2kMx6K~z
zhuh`|55jG8gooj_Il`lG+Z-V|g60U-BVd~P3BJ>Ml}eLAHM?U?3Tk=sq~L0}F-@%l
z&7L}dr>R%NjcIBQBrF=hkNQ8%QeA<BivT5XV!^E4MLKr#pW$9^A&}g4AgoIU;_-V(
zb&rFTBM{pO;Qtat{2ReP_qOnF#2{Vt1aR*Gk%+;%2nKK;3XzEr7>SXI5V-+?-vPqj
zgUBx=Gi)|QR#L=xoMci&7pJi_5fRFE4|<%`9-@mHLwH;0<4_(>MI9XLBGg+RG}es=
zq|pG{u29=>>h~_Uou?wFpf_AckHlRzho)DA;n1AqR(L|%rVro@XI=TllXYcycrQa&
zjLTm~gxjW_BkhVa+O9Zb?20qit~lfDiZkA>I1@;5=2paIO}Jue(CKi}pflm1LA%o+
z)R)SLd(`;1G)!txS_#&mzTpiKCl4AecL-}x-|)ehIDV)uh74s5>Sq?uD--7|ph2jG
z%o@f=?23V)LCqj}9OMrKD2b`=oggJ(m@a$)-1|agJp`5m_>Y8$|5W(r{vrHJ7_N&z
z0C&8g`91{x#>g6oG#R0b`XlgIGemYmU<*Ll*AR)P0)%}7kt~j!fk^c*+cKy^7|+!>
z6v&M+D_jjKPI^{+Bn)9AdCQ4W6d4MYEf}u0VWRp#@bXAj&QM7taIv{GT%A>%lyd+e
z^#M@Fh7~bUz-JVfxr9hS;<Mq(-Qx6&S`CCbBk38%c-|truI(B10P+h^K;I$+2)`DT
zs+X{yp^L*@te}P63cd_CtYB<mD~LJV8W#rvw2hK!a!J`GHEdfm*05#){m?G_N9&^A
zDA2H3)s4hyUxSrb$kN5-$)I7y8sh>#z`q-;**1Kji=_bOh084h3_t&znXupnFfUwA
zHxo<G(#3&nT;jZr3;zH^L5I%KMLa;UPG~Ky0t{=ZI$sx0=Rx9ll-}CJZ15?}Qa^!2
z@7Ex)jhXn#5-2A?u^nR|v8|anXE`kS0gBzna|rFs#L&-lv3s>n7dx~!6CZr8i>3hP
zCC(kpM7J%vn7mo1i=jK3iEDSjFbiN_4Bg2rXXGATlmRd=hVE=84%-XkEP#0jbQhC+
z=~udF0bqWKw5y5vWIwbgfceqUZYJiH1G;$c0Gsg}X5z3Tu+loh2X4BXi4%^&I`SwV
zxanag?mVxHPtNIdgG5g=@!=I++`X*R4HCV~#GJo%apRUwH%Rn0i{$C>5Nly!VcsCo
z$4rdUJ;WHzgKm)MYxesCFAwn#fO&&NKa=N$k{%)!z`Q}Cze#?ttcREfVBR1xAix+M
zlPh?L^Zp)mgTz1+^UpvJF#{ml7$ob5D|N@1Dr%kuY7(y8A5M#hva@MFh<>|yD|Bun
zG0-?-VN7Ki%L*|*qVZL^!z69<K;3+aKWn!Tn`LqjGug1_J+qi4;$W8f6945{_C<?V
z!6qR(_$YL6WK19(97%9GI0DJ$!I4P&OZ<7$c&WpogY=68fj%^noviF3z6B8awIyaY
zI;vjxQOqe-g56OSDIHZiSD3iwOZ?(%A>w=$dYgB0pm9{?F)+OY;FSQmM}VLCHt$rk
zT|0+*h_(PmV@z8ipD2KfDCSBI@>c?A%fGZYicz}>D|oibp(&g)CD8K;*X}8h-vyvs
zDkKqySh6E4(7cIyWSEB-1b{a%K*tP)TA6QbzZ*zbN@q<`>wj!gu{+0be9}b^S=J>L
zVh?CVDQ57I#lToob^4eq&7tuh^W!N{f8tBefbXF&rvVH_?D;V-*?YRs$mhXBz`YNk
zagNz&YWgQ;lzlcYD04P+{;^W5aQj%{f}Ip@A1hpWyTav6;<YP>R?;sLd{m0Mq*Azt
zs1S|{H*2w_aJx&9!UfwEuDn#Z<}2+AcN)}Wb!k?(!=}PD0H*Z-yu<+^>Xl}NJ7y}}
zY{>aAoD?o-CAU4|B8vIqBjg_iQ2(_lob&7Bek)mpI8=dCjs$v+EKQXx7U3b>B3SPv
ziVSf997jp-1_5%P2t)63Ky5CSX0<sL=xg2-0D9MXPGP;HeoM;(S!I~$yp3q?g2Ek7
zL^&ITXjz7brw&2Z@KkmR@5>+#W|_m&;dxHOQ$A$QmJFua7<8S&6MMwLER(?=X9hlB
zz=WnOch&MBqpS8oJ8T6gfo8H#GD2KLG0Y;Viie1+Lfv_gaEgnxFKnhT2=e;@sPE2l
z?oRV<GOtWP{y+-<!W6y+2$okN;lE4ah>IxZH;y3x4h#QN3eT|%kB{^aF#zf+7vZB#
z;imyP$&U@~Y!DfmkCUN6vT0}@c0<d^;!<&_7yTl^qq3xfeL;HfNHnw?n=C^M^CLs^
zu^XC)G_;jl?1q+p7>ZJk4egI0!_Z~})As?qvLJVvA2;BiW&{2MIkzLJaU5UD$J}9I
zpqSrKit-SV0NTYJg+}(rTi94Q^psPs1$mzHquLDu@*YuaVG_j(kz~j9Ak)IG0P>|M
z!@}|p3elt-8_VB8zUF1+U@XtqI$4<etenYoiO*!`aWdf$bYFR9@yKFf%<0Rm<7#IE
zp5xyj{YW_)&+A9SC>2f3Q)wNK=Xr;0x-$v##{sB^w>s;Nby-WqI$jNMs1E%)o&@Qh
z<!Sk`6}W5x&^Xt;tYzkAr!nEh)%1b+$A$8&rEP*qONEn`Lb9o)kDA%EwD?=Br5y66
zUnE#kp8D}eDBXo<)Y6i+`N#3{q@}{HrOaPwk5}2XG#du-FZ@|cy9OIts>XPTr@+`N
z4{{s&vzBHA8(P{Ia=XV+H@vl)y9;p<#b~^3ke>^nb=+D=OUJKfh2zj<PU#lxInkeL
z=NaoEp2x73N)#Dl$&NRIO)bp=g0ZoNmS*i0;%|Reu|C1p{A1VL|F8K+9xymjff)?7
z7?_{;n#+~;`3ka!1?#;kkdEd<0e*_5#yK~abu{fOn~qkf>LL69v}zlj8V5=8=dyBg
z=pXuZj0o0OS0LqV1?1_-f^$vfT(ju^Yo?O7MTij<SvA+QY8EuJtLA!E&Fgm6Z165k
znq;Uk{USlliqv^yplqY6qH3;LZmDMPilmw>$xzMfQZ>7;wyS0WC{%hSR?RJ@YUTjb
zPXW9#AotITteV?Q)w~5ce^#Z|PnN2QxQJpjU6nWw5elGgbQvM6nM$-&HV(yc%9p{O
zft9F|y@5;DIMz^!B12pN$5ztNBY?a=&d|_IP>3m&Si$z#H1wr;t{RFx2I!FijD9fK
zc|P2D9@msZz3A6*I9M+oK)P8f9_GUFG#_p?k9D(^3ysv%>VTUHp!S;Q+)~C^s(R+Q
zDjRkhs8;^~p4NDVSks!<-r+$FaWKoA)*Nt}Y<p!u<~qqB$;M!oWPmuBWit3_ww*!f
zUP+uALTky>+l9CzlMmW>cACL0hd7wUOH%hh#=k&pLd(gdzbL7CF3H|SzkMW%sBEAZ
zUvF{6!c4R5Tb;`8C3Zl$g4i(2Rwl#DcQQ;!HVyNF-7pu=;Qr*$GWtb=?*mC^yFh<-
zibuozbG2od&jQIX^X-OtK^kVQ&+LX-01w=oL2Q^cDjSCRE-;+};1vwBm1#k2m@ic}
z4D%-BT!|;cT)vST9dQxGP`B0z9-;|=x?#JMy1CC<Gg)2^_31`#LJlqAl$w=2cLq^4
z_X3|S32d4YMTWQtj#`yX(@aV95V48o!y`|KkYKj8mn-|?-kf2Yjh8!_CS62ij;W`C
z>OV>Kx<zGPO}(6}oUk9Vn^x8r2a{FK0jb%E)HJ=9b1!D>w^`yz$UhFCj`^|(OEexF
zLznY|gF|oAucLWo{nuc6aA-*$!W}^4T=T*4*BU2VcB)y{XF}8tVZB~d*|MI)<Jck*
z2eVAAe$UyYb0Kq*WN^sFz;`?|Kpf068HCPtVvx2*h)t3~sZfhSkMZ2DnSg^?WWQc{
zyWr6&X(DVib>#jL;$W63w2AZnQ7$lCP?>G<rBJfP(@wSs$)+tHwcFx?@!X3XT13A{
z(5*5lX$<s3R1(_a+8oOk->*!zc-n4@N2M(uae7E*!hC#4DBEJwP{S760n_FHUOAAf
zhq5iU2sLbR2jpx{B88jt88-&vB8s6Vda{Rb0BC;}p1*zY8Cw&FvN@$$sAug^s$C}_
zPfunOlqfR9k{!)MO%wbMkdGxBCg`(Ih!vr1Ol?Db53>n2m|uAQM&D6N2cl77Ow`RH
zGT$qlFDtqaC#s=(`7pA;#1s!vHH8|a$9(R))BEgqo<n|L0PUkKh30I7=CkQ>Xfpje
zdW7no!pQVi0QoXx!MUdC4O>=t&PFv7TZPyb#yY&gro;25v*92PW|=y?+S&3FAoHPQ
zaL&fyH^~5TFw11{lC$OIL1s)iGYAc{7$m*N?OA{fAd4+8c()LPBu#Z2%^TA45C^kN
zp@W?*FJYSyr6Sn!nuhT!e@>PM$@I#f-SYaq$Gyj)LG+6R7s5$5k3u&bPC?7ty3(>d
z_Xx7QJiF!Xke0W_$?^o)%ij@l<rHRE-d$jNGX-~UA$NL&Tsegqme)4bL$pjKMe86f
z4{;I2(2|cJe+Gc+zwJfS({yP|9BRWU-NHQgMo=YB0hdFmY=9C)hPVKZH^NK<Y*Y;v
zD%A`F6nR1fR*?&+Fv|e17BWEW@^#QE5`CzJZut0qoM4iuB5NJ4W5V=NRmdjRfw<KG
z>esWKYioS^3GMcgv|A2^)2^IjSeSmj3fb^wV3J>r=C+OntOXom8fnjZbr1@mm0n=i
zJvC-k5tG_{DE5j-R>-xikhx9@xt0}jja?x-Oyr_)s0;lfLH|hVt5_&Xbahn79!o8S
zoEu3BnQK?bHBupaIJpwCVa6~niWM@~RLJ(gv_*AX%0q6cC|1ZVrb6z7oGsN!A(Nyl
z0dWz<Xeo~x9>T2#Za5WoB}7TD0Een_%BC>ShEY_z&OqL>25X{3ks+4s*i4%EJs=;i
zVQx6>fq8QjtJcmiYj^fp5nH-NEOrxMDW4F{4E9?L%;Q<sQl3JAyxu+#rh7({dL`8K
z5ODxPefIz749LtC;#@SV%xzYg94D2z%__6Nt}>6NvdVDi3H>6$qG)Q=woshbSS0=a
zLQ7?iMw80q*i~kMRGF(zyFZy<3$Z1JRp!2_GLwPn*qS(dfZV1rtTK;GmH7s8j?^TT
zxhz!%aS_E(8MPKz9)P<4h0cJBQVBTpGp9TV^PC#PhXsJkOSM>YB#I1i0UQrWb5;TJ
z(prY*q=V*MkKvAgX44$67dr#8K8JOAEE8$rlE|1uRGcFpdVuHf2-kbXl7<w3(A%}B
zU4qGbqlkp{wn3-dOCF*$fSR3M#57(l__U~*fN?JszSqj927-mp5<nOg;Jp=v8=pP|
zrp*Af1j4c2hE1asH<5-^Qv$qiGSw)c7=cs`3Q={ERGCQiUVwK<RigS7C>9{q8%|W%
zKRYB<E>g`6P+qS}9l5r)hu8~LCgK@F)I>faE(=gb6h_3?Ixl3(8N*UQ{4BtGM4V#2
z*15WYhgbw)yw(}{nun+WV7%6O3Iay}N+ON%T4!=Y4-o@kyw*7v0v`eB{}6M0t@CbG
zMYz1yS!@{9W|Alu$45YnD?p4bU*kp1QiNmNpx9uf88JSz`1)uwf^T`YdjYw6^L-QP
zg&(=&hH}V|Oj#13tcfesXomI;<L7NIHrm<%<yss)Z~uUL{{o;k8t$ZlMxp4v?PwzR
zlA&t!>-aLjJ1U;^;I&2`;#B}Gd6-QP3=Z{V0XWozIeZo1J&-vJ2I_&xq0ul`{p-qY
zFAA^<M+3Z<G1VNPn2l6DhPmqBB1!=p$pNY}0m|`sYM~X4J;e4#tbacYWBp4<#QXr|
zE+bBC?IGs1V*NWmjP)-Y5&sDA{yTy6@1-stBDo9c-wFsU>_YmdcJ&a?AyN`)4E<{d
zDb2f*{_TOlW&r)KVV3@lNGPO#&$$hzh`9+i1v1A4)INQ<rG5I|v6jLeDjNUi4=n{%
zColXTy2p*=kRh4!bAS?-Sg65J_k4zP*QYH5#Onb{_e9dY_-<f?0P5J$g`W!M6}ZFY
zsDs3>g)0XVX?X1qguT1b@Va$4cVEsj+wi&q@|U83Uq=-&yc!br5oK|48YMIgR|1nr
z!p}f?ktG})&PzJ6+&+N60RuRIR>4*UVttZG%7_FUzZ-=s<Ct|zAZhjnvHpSZ%8Lv;
z>lu*$F0x)Vst{{FbEAlCWZg7exx}mw0m*)5?J<Je@3fuubIAV>Ks`Isxm~Qg0!kAl
ztS49CIzC*flS~q7W_XCy43bcO1h-$p3Y&xxkUtbaz2zdo`Z!xCQTm7sl+Zj}S-=uD
z0OeYi5IKUIG21TT8suLA&^!t^PZE*%3%t42(IQ-V!mLBPdx(JU#JV=&1&9JW>(P*(
z380pDRvX@TG-R|K!Cer%5@e)@D{rKbjAKB1fMs-&4Vk{u?(*s3A<6)#k<K#gH$n`R
zBC=3K%W!2si|7xey?c;|aZ*ICUBoKLUxp%Tj4Etiri7VNLOx1p6|RJ*l7uTj`7=wH
zFD3Y_vPr1c(?cZm#D|A#Lmjmm>T@Y04QL&$!<Bbg#=AiKR!@?VD`jNbW$cIiy(puD
zOD(KRSa%U+36X;m+Jq}NS;AAGe8>_GN{u^hmyq7eL%a^4_H(U8j#Y~bvK9hwkZ2pO
zw5UchRsikdUOWMowMbZPKUoU-1t?>ztBhPr#zQG117)-eS2nSXhP^#R{oZ^KU?j`P
zw##@6@}~f((_h%%ej`~z9!h8*u9U7$67~V*ZkA9{N+_^PcntaXQ9_=JRa<w~@bN$}
z3*5kcHC!3R5|aCPi1<Dvq5c?Y7N6Pgse%0d0P4XpMJ*Hz-_{uJZ4TwoucJY@a-F5E
z0xm21uy1P&_k1fC8Y%fW;2s6gCfFp?gD-oW9BwJJhJGFIR8|9O(1TC!>mhCd3zO)Y
zB;wE=CfZn8ZB>ZKn1|FE&jWToHs90A>V%>Z+ekzo+~@WU)fd%}FErtoc6ozY6$OY;
zC)BrTO~w4WZkc}2EC9wAc~{G=X%2nKThqP!hg4>oUVz^N=}<UhdKRW}`6BOvY;FV&
zt;m*`PG98hJAo?{ycTi?hU%kgQqAXq-0A(e=2Ir{EF>KfhlJ`&7_nx54^j31G4>tc
zRTSUbb92ky-L#utfk;<SgMfmfL=gl54GM@L5|9o`=$(Y#A%V~Z0@7>fC?G*aIs}j=
zE%Yt{{9)Jco!vRJdvC)3BhPbk&&<5%Oxbs4XJ>b3I}vcU1ZHqx&r-@B0`3NAhXgK{
zz+4XOQ%WfyV7bn2_Dp92Zk50S4(wk_iFs83djXW%nI=6~1yEx-e1U69X=l?{#iVBq
zKr0~5yo|yO*K@f(NVWvOraV+yNuykD!|<vs&Od`>OK@ObX=ND!U+IFmXcsEZbA#y^
zr{L<-7GK7Bjf&G9pwA)Bg2{!8V>}@>n21DL7kU)&-(u0BuSwQ%aH%13!ohR8Qe1iM
zHBqG1$Yp64DtpZ#RCdOnX}exrX-mLA0eZ}V`dWI2AvED8tv{LGDXy%2P1K`GSDcC<
zPD=H;j?vGPvT&rOldF5homa`#7jV<HD;0E#G)m+JEnmVJSc5LI0LtV*b!cD4mJcDS
zleUh$*C-J-h8tx8w(xT|%Z5bwq8tm5dKf7`LL6%lc=Zc6dkNy$#_gcYhPVh{WrW^$
zc-A|I$V0@-Sf@nT9m>wp4c8!$AfBRUQ3;_6-9#3nprm&bS)7J)4B|TIm4(iN7t^SA
zq*WKcwk{={39tJ$i9QCkO{a2s)&h93M95wM&98xfo=&_Ztsgynhp}hg>tgIFo9bqz
zQ^nXrNVTwy&)Bm^K50(csVNfaHTFadrDL4L%jrx|9#DmvBHwpYi42Ws-HoMkU|@n0
z`-T8s0qCp*R+hjV4s<6dwFuatyPLh$oq(+*FrNcG2})N2{s7Ro-Kh^}4yD?7asZ4>
zP*%Pn2pic0ZPSC_Ay`(_<U%)}GnASwiJM0!I4_ZTJD9eHxcX;X&V0tZ?8B&Ga=2A!
z8AYopO1A(Ob9zuUW(<?n;J}D7N@W860?_Rq)SY(@qiT?rPo}YDl-@N(nacLWA&0n*
z4zretlZKvr1KHQ{SyDnsnIu7!hOnsDQ=HhMh7-9+D>K|A*IzY-%`D(&^c3VGq*~a<
zhg?Z?8k1W6C!E-J4yQKE;N=~ZpuCqPnr0XB-O-cU@FZo$ayc+9LFr4tKLGlzC(SH6
zj-b9sT2Fc#A+)%26&bzJ%gy3@k@uD(<v6w;z&XX069in=8$(NP0`?zC#Yo}6dBv4~
z37Fi+&ED=qz_AjT!GQ~kE9Ks#&H&JvK1AJ|k#x*+IdBQa`ZvXKZrRt(K884N6>+;q
zH~wZM9g+fWysWr$0U6JL;Z$z?hL5p4cX>upOOaMy{MsHRI8Rb>AHm6?zSO)Oq!DS|
z$teCAr~g~NMtWmh86}T0e->%ZGtMeS1CPk(<=94k(oRrX5^z|5H|y7*fVb%}I+n<R
z#}kxM1pEV_2NL*)1g3D{$pmFB0b2}kvnB)NGT<0G4jCMHHbMF2ExPRn&?1Pl=`^pV
z6sJ#P7BPm7L@qZ!pWv)eOPK!w)Bkbvj3*t5lrhw(r1cZOwi%_IDYZm_>kY&;!azC_
zTci<byT~ZFlyh1kBfU8S$5I2Q@cYm~rJdgv4J<8z85~%$v~sbQ*A$xW6gye!X1+pE
zI%M+OV$^6h$jurL5+h9?d5@X25p<6kBTYN9SqA))L1LsKq*~a<XQau=kYljWwmo5_
zsWgs|*}S}iN-JC6rYD1u@4-P-^M>PyF?k%AR$944z`=vvtovXBc9uX7e;RH?X+^6|
zPvZ`8GusdX4v@ek4jf%tsZ78w0JW3AaT1uyf#XUmpAc{>KpTh9iDKP2A}eWo$uy(1
zvZS_P-a{Dt0&#vn&Wm~C^Ah@YY2vXrT=elQzkfzKLRr3;=4Q{P(R78Lk8`r5tpJuN
z8Io2<9J_RY2BnGPy+S@&N7~l$=J9SqHhI7wP7}wQkZNHYpX2S$q!uDAEVJ<O=H=Kb
zpH)od<$b1P$cyiYynjc&zfyU>6F5a`d6x1z$);|)o7G7d<^4|9v5<{VdE+vPb)=Oo
zqP#kjCrEzs@_tlOY4(md5b4ObYdVqS&;-d(4s2dh8A`y8L*1<DPy+rUfu67Nzg0<P
z1p%uM!!&mo0sof3WDaaoQaMh*e1LwEz!DP)n9hM6ODca8Fm<?_bsSDWj|Ap&V7rn^
znYsda4xnShY1C~nk&aRU2YyjfX<Jv2_oESR)(GMpmF-1dvCycSH=RhtN#GBsrIvKg
zCi5jQT?lctvp%DvTMe2l&k5YBY8mGlvbqe5b3D@lnLe2sL%sg!awZMD8Qi=~Ddo?)
zUe|fa0-&)14tTk=5?9X)ur8B2T{3^Nr*(1V?RuhlDviV_Jd(!vM-oWd|A;;fi!1%f
zs3{B@OQVn}WJDUhOlnIkuC5`YfiURLjg$f6CK=z4Z+AWYUI_mvKw5V*`kWa}%j^85
zZuh(5K1{VD_Yrh`BNlb^k5AYKSOQM52%v8WSbLzE(>sPsKF3iGig>;uV7qr|cLn`}
zUU0r(kj2HpL8gmw@5=3nl+eMZi)Dpe+#GCi5j4bfameDL@etF+J*x|Y6v_>Youj_d
zPA@T6vbY4~o7}rLq*>~I+7eLg;sWh+6d~EL79USAHn`P1eFJc$&+~V58(wVNwryJ%
z+rHS`*t*!ZFSe6Qa<Ox<ZM^&a)xX}Vt=Z{$_L-XL?dj>6{!CAAcr)Fm>dfegg@5;1
z*1@^ZU-}~ivfQmU7DjhHnL&DoH6*r8yS8>6jwv_STK|I6-#yq4&W%RxCqqkpZnvK8
zC&l8B+ZIUJ*3K%f#V33A(a{}b3Rw1V9iBf^N<<=lKui##tT3Zux&PKDTl5cnv~muM
zX~njP;e_9NwP@Bsrf`bMd^-Sy{V?9Zj?VhG)HmLMnP>cuUhpWM%}>+b>c-l)>EDDW
z+IoJ$zRDeJ+Q=`~{vkI<D^AVD$kH>K?=|$S;d0BC$qIqV0O5wzQtXX;CYNieIZ#S1
z`Ai<BUoEQNle1CbX{r@IggrPKs?E~sYkf8kbT{Y5_@dcPH6{yB_d;&#p&LB$RC<!d
z24}mAu<B(OAIkLnpm^sfV(t#Nf~O<BwIplYv*MBq#9oKX<{<4A5l4*w+lIkSRM#8&
zHG!QyNj%aDffX~R4}AV5b-E6x$37)QcxKTuI=}w;0%*MD&WJB+`(PSAb9|eX7;1LD
zZ~Zcd#Nj49`UY&EkbN-OizceWYD!19&qwMlGC95%#{F2M#cUG#>cRH+8B}Y#ad5T_
zB&L<~hwbBvT0QDwS~`7#xWDjh&{X2-DAv??pJ;hqrfOfcMW!l2??Dpj_*So%`(xVV
zF@U<QwO&4x_)-j+G2@`yY@7t|q{$0$(xl7v&y^VUck%P{xr{Gz_&CYCxOJ>=j`XT8
z`VV7-q}Q1J8G$q@9NX6o9nuFkSf*1=N}7$_Z`BEJe4MSe9{(QfB?wo#W+f88(9$N8
zrXBvpaPW!NQsm-lZGW|n>ERFG>k+=}7dAI(Yg((Pm=_zrRK=ILHV-$}FFH!r5U%<5
z+Rt}lA(u#$HFv**+heQqZmlp&UwNCy)E)`35d<{?az2pmx@{&S1Gh*fM}ItGcyn$w
z)+vX1PWFgm{9|~76CiS2)jIwk%`^gfE*sNkC;cGSCE(6I>nGB+u%cz<*p;K<#2$nx
z_Ah#6=q`tvr>AQnbR<2))6cL#ig=d+*ife|-_=v6oF3`0WK0^1-ynITNn(OR9vH8(
zzt)e622O)Xbj$@cXPmq-MT9zJS{36sls7(&x0eBHPF&b2f**~dOx2l5u%{g_EJsar
z+ouSnD9kee35`;oy=yTmjBklto^WDOLL7GnBOk{43!0Eb**hvrLJS`v;?kD7%8M8|
zC{2w8JUj&`kuOg3PN$FZ6)YZde0FL|dU6`pT+zIHUi!S_LlhNundRh4fVvw!kJTO0
zq<ll)aJ-2u+YR~>z?>MP?{Oo!_MOAqcY89s44uCWZDcRRk1Q5p%Hule@$`uvxu5!W
z?qMEz6AgEjr0bh9`~1LEA8^M{GwkDLjcOgo_<^^c*&)MDq^~Rat0<b4dLCcwkb`qH
zfhFyEI?b~Z>MAH5FS-YGdc50|j0yJK)Ofa+^^tfUUm^HcMplrDhWYHJ!^P@mOs?Nx
zn`Mz>Iu49{3HMyvBzsAZKFv%cpM43psfRAr_VRfN_vB@B>OcC;4%zGyzFvIGlbO09
zo!_o4|CKNPqwiek!L>X&t{c|j^^WD1lL`=+nV<XE8}2cd<-btuWQ%hz^Bd1IOpjhO
zkFF`SNK4-I(~vv8oE<s=y~*=k0M6uG@l8IvhwozG#DSCG|5KA}8|OU020nY4qWuVz
zn+pV7Y+0N{Q;XlL#K0SYrFpmSxsx7av{;rx%j(&+|13ImcIf?o9~S*FhNa)>v-}4!
z+6Gn+nbZoA0(oN_Cp^6BfQbmZ$1KG(L_Y1@lujI10J9O{5)MsClJG^r*g_J=19P7d
zJ!uUz#ep!s+mH|A<|J`Ko`55KMhr@C+^nV_a)t^LP;R~M<ADlibZXi{9%X<Uz%oGu
zIP*&qLr;)O!}6VKl7fBRTTgydDdDczEd3ZO9p#zz+i&4xpxDKx0tdn0dgtWbp168l
znzVXQ(SS7O2-!k%N{wze4AR?R&W9;CmwSho&Bo@(q?{2)^`wlRII}@lif>?PPsFdF
ze*v>YhesMY0>n8+F={+i9fS6a#i@;))`I+WbB{Gzh{H5pjvL!`{B)<DOk&|36D~E(
z1&C28DC2Kkp4&qj9)9$J)8IA}LFS}?T4^9wwBG$;GssY37r@5@k2@DoCp2JY-=c5E
zQ0lR;qK%vNadeHXjzZGy_3R?EhK2R~80_VL5|UrY;EBED0M#D-&RgE-C|(*uxn4E|
z6`eWCIB?CbcTqo?wL1n(TO5212}jKwHrQu$LSopAxf9dt<#ps>A8tD)=G`)ym2Yg%
z(2makZdCb3nxAYW&os58SsIG!;0L}5bopMAPLv(p+vxm)OV*5Vc{R-b@N}))v`(hT
zXm*3Bx_Jy|5XY)#`pLEq@`dW6irScwA!&FSO^RmwO?aozujD*dTMaBROyxWzO}u2Q
zT6`LIE~t8ZH{$6Eqa9hjQqjR9*?yIi@SxCRp7dLIEvBA7y1hL}quGcW$*t9CO#8+k
z(dhisvbh;=y<IT);G@LB6mJ<Teb)xQ@amBlS$5mp*Uk6tYb~d>v%Cr<xdt};6?076
zIqs8G?xr4V-<>++js`u-1fUNrr9<l?d-!Thd5k7E)sxv8DP`W>(w2C4><!Qiwq%97
z$L6|p6$;o57%MqoCcvbT+iq5K((rLR7d|OOC9V|L7eQmOR`_<)TFCJw;9QZfB|CmH
zhN|5y4vVqdy-WZVu>YyeGVb}H_RH)%zU5rehj@wAha25CQvg4%Wr{FvNcRxNt09eN
zU`~4ye^<NOJPsL~>JWy+IfKf>dU%vy<(HjGlkCAk@s1naFZA=6MUS#+ktU`eipyYp
zrVpFegPQF+*KoXxN4O<6Q9wWfm|z3(GGf|<+`XS&{<fm{5s4oYIdGI0k@Rpe)j<;l
z)fEtwarS)V85*#R^3#PPueGS(qQ<4EqUyPsAm~lm;aZp;f<dcuRVrcr0GXPxQiT^K
zsHzZbWG{f{*9g}2d_A{MvgV#!BjysF)`IuTjSG7=<=;J1{c2ZVI+mqP$Yac*hcfeO
z(?lO}D}Opy(N{gMyt$&hpN2Dd4X>g1PAF*eEwhjdpcrV>VeRw8k8G|UYvB!P)<-^?
zd*nYN7sh0>k*bGY{>WyJXzsB`f>_4Kp?R*@Nvg?gr9h9J0@Hk<pfW<PvJg!f!q`j#
z=*FoE2rjwB)yt~+KjMIpl<~j3IXaVHP1ZvQloMu>Z8qj}LHT#UrpUd1v0)(8jrQmj
zaD2?U2?aR<?LxzZV1z_ko*IIM;(AsE<*P?jopMNpASmu^v-<mx3UrWTf!$#c5=wbH
zxFwwQ2|CnolpJ1?1i2tWn0pNH4}|3|{^>>Ow-nqWxoTG_+x{jJCq5&{O)+AizD-`D
zN}l$S80#8BNGu*OJ5Qzvst3>VOZzC=9*Soc(hab;q1ywDgb<Qa$#ix&7_l|I$h05g
zp|vQ=3bRK)q8|9xl-<T~RIVufg|MfmD-NJ{X$0zTjPOU~K3#lUsOdIJnuCADxcr9U
z&p0|-k9<?IXFOsViOTehGWhC18BPE{=TWAxdTw#1(q1l=^Du^TN*CkTIXj(p?i?L!
z6(4czGt=66Y~d&x6KfT~N}4L?;Lfnkz*#7OVqzEJjYA%U%{QLQPRdpnq=RfqwW=m*
z*1O)mABg=nn9E7ZwIxO_ZYw~TXc;rsM%b}hhlH|<S!40WBYtI9MA)fAJG4UdSRJ(S
zo|X0UBlh<w51Gqso<r+}l5TFdk@(E(=rr!9#AFjz>=<eyZ52^%)WNDRS>r_$t&g4}
zMrV%!E2*QV+G<%{xykbKq+}vtPf=s%)qez?<o?-%x@KoBt-D{hO-A~wviYQt@^Ee4
zGQxgHyt+G)Nj0P)7ioY^Y2zNUDZ#TOQ1FzxM&r>qigqc;5qGRIM<Z=X2BWOb(qx$T
zx~bvuhU`0Hmy1<cfgVQh_q93rPg~LHO#@hSo6sZXHQln*W&vbc_v4%UwuTbcSCjG%
zOJR?bBva3%o7Lr2x~|^Z(x<4t;8xD1dVy~DH`{X03(mo_mLKAHb(?VwJ?`t){C+I4
z%}mq)fboTO;BjqZEOKe}+miHQ-R6=VlR@WneUCfei0_4aUJwU}A~ZKG;r(OV77%t?
zw`mZ(z?RU*U+mzhRJRF=B;i;?Nb5sT*fzfA_m>iXlH?W0^6dnTxOUL8OVFT9Xs|op
zMrutq>V;3;Pq?KMaMvWD?p$XmS}e)4{t3&m)%H<bHi7%}H{N&#49|8w$ROuuXrw?T
z>wGqeEdrhQcAC=Dan6bQN6rb!Ykx=xD#5r&;E8arI!#A7t%5GYjV(N!n*SAX_>!Y?
zMh$XKJO<PN14m=x;JJj+tXOu+-ot6q-7S|SeRuL(XdzW=Tf-(nqzA_U)YW{qXM|OV
z$47P7I&aW~^qTw4<o6K|bg7X!IdlJR?yDq*uJw79YsSrqPX8niv~JIIsMe_y@vbV2
z(z{D9ZU$&rc?p|T#i34KW8NzOafuRBe`i{f2Z#gSXb$4uh(oE*t|VI=iRh#krcqve
z@)v(){$7$yIX;nY$pHUSTmHCU4)KWfsXFi8;=NJ@tgVD8ie~|g_fqYzFNGYpcv$bO
z>PAFvufH$p7q73d<%~<1Mn_9-jed<Y-u49w<V1ptMS@otAYjWP99x+Se~N=<H5;vA
zCa#PXo#r`Tbq~h6#>N-EWN<?dOa$o`*8C!~zOP4JoCLm^kwbS9fE_z_J&|H>2oxsq
z!vW(^AOiq0_pGR~(GLpJf`|g(L?3aCU=@9j4y@8K2FUZsLMJz$pf}OTU(8GVbwHW2
zd?Eoz|JRRoi~hj&9$NS_+w&{VzazJue|FbVN&|ZIg?zi)geV~S2c4dOCq)w}V7-F&
zpWG|m;hb8#jVGw|hdtSlC63p%*p)`yPbYB(=?yV9L+^irj!dKl>C_^g&h}1YruD1-
zpz^nW8%*)iKS_cyxD?h)u{kGEKO9qQWbY`7_50*$U}x8>XCIC(0di`uO-;;SQAQ`K
z*$71$Iw-%mI^&Ch&T?Li>ij-P7@yb7gHJ2f)>)HpZ2p;>S_1pezIq93Xx?)0XIc+p
znFdMFxU|3%PeZdw`^@}{bmpQGe)#F=iIX#k6|q`@_v^^Z#RK#;ZrLzWx*AbljC$W+
zME};h2c&i{<!RHBs1{}0V+?#xbAa|V4ah0!z%~Q;ilF<@Y?z&V*h@61XY2A4dn7xU
zJ?ge|vE?LXR`jhJAZc9&kYwNp37gMBiYHqoWv+@bOxZ=<BN5k5mUaIM%?g#1P0~!H
z)?w4DSW-}SK?PkTkd4vilbn?&oWn%G7?oLQgOg)-Ugt100{WOSak`UnE<LOr(<GmY
z>1u&Q+WjZms4XO1s{@#&sq18hS6!BoX=7^aPYS#yMBUX4!I6=;QdGP*Y&(AFGAfcF
z9_fp0S-W$``kU1tS~@mmcE9xyHz0SK*uDE3!buG=V+%8$5Rdc_DMOgaYk1Y2+DQpQ
z#w@P1T?%rA%1o<&aO|T9?VDx(%t)vRC+1d;RVt<fkL@A<K}IHwXaKo>Olv#$&4XH;
z)T-giiqK{xI9?>Ui~+)mG(x$Bd7uv`OJFk?sMS4JjBCdN>K*;WGl8btSqSah`pm@R
z6M;5K;8Kr1u~KCA=blI=eVifSe!I<Y#Dat*Ew&)K4FKscEPF}ZA6V&g;0Z+^f&CPg
z_(?UyQGM;(y=TCiQLIszaj|<EOjzj70jR2;Ffs`Ym5z03y+B6DfWDsU=Y>RNaf~{r
zc}i))?-5bT=K6jk=*uI<ERoEJsH<0O=Zy;Kt4HqM+VBO+eG&u6y;*jUOoYAYAk!2`
z012(K?=B&m0up$eqCXw4Y3UL>6#)FlGI=NUtodDLeb7SQ)7hhIE0G36V3-AL#BMNg
zSIB~{lBZbRK=4PH9PpZic@v;f-(AE$^Y{P8Uq;xyHS)4g7>@EGGJ*VjZVC2}&{qv6
zl}<HgA=XfA;{VB<KMDY{vaF)o<=0Fg1T*n(E&@T00e)X=B|ZRi3^+q^G;(xwe4abP
z7$l^f9}wJ8{Er7)7j~dk2>6^PU?W==f%u~K`2gVK9nFawbc*;-L$l|l->k1_>wXh~
z4ziE}vehdVoTkYBT%E{7*ggcjYS)d1JVD4kb1ec}dD*BhPueS+5}Vmyh$YaJXUH>=
zL*G0SdHHq#0lPI1k<z+|rc^QXcYA!fK2nB<BGvyX4ZdJ-A#h*r&5Yzg@CLt=>uyUP
z->(|K2^M0G=@DI7ECmL}T6-@L*+xhIiUJvq2FVXnb&3d1KX8;ictKJE*h|MdKcibK
zA5u=mz?;BvvMC!6{CX%s;?>64Nkb^#{rQj`-}IE}KNRQ;fIJ;I`H>)u^!hU%L`MQ3
zOGzkP%Z-GCvZ4Q{=eUFKA(5BQ!j8bX4rp?kJJHz$MfKO>FZYoK?`^SJg#R~NQNjS+
zAlnz1bHH(ogna{eebs7A`_OQ9d{Chwb!D(z=^1q$|LeekE1oMNG2om61l0a7ec$RE
z2xMUcf)^_w_ipS62h2%s=l}lUm72PS33y-16HGHQ2YZ2r>>2?J&-HN!W7z@r2hurt
z6QX7S{~AC7!AB7Q<cL~2!@I%Y;4TO|+K4QIZV~s7$jgTVrh)qImh&6v$yf!9M8a2Y
z1N=VR|JU3&IDi$I`XRP)4ETqA^|LUqZy7^`<8);iJ|wFXrWJ$!{tvz8mB$oQut9lc
z9B~Agm|{m%_Ig&ZIRK=CE>67%C5X!*ATHzMQm>W6R=$zcHQojv&|i-Vzfy`oo^ipF
zL)Ln-5MzyAyc3%UdlokslV(5S^)D+WtXU$n5Yx`DFr(1;NWuU%c!mGhYEF6l3Rb)!
zjt*u>MuPkhnKh26NT9kFB5F(3x4UIYR7i4ho0KL7R@L(qnCtgMUdUT#h6LseM8gK@
zNgbmPwK(vX3|N0k{gj4w?x&&5{P^f%2hLJN5`eET!q}5ZAM{Y*f+pZ^4%sY(s4cO7
zM}J~}VJw{TrlDtQ>R?*tj$w%Poev$Pq8y<4=@;ywDImZZhGoYz1e~Qv9g{OE@0;YR
zb}z|Lpb`S0SxPobB^bQ(papEy1$YC+JKr1HE{h=uZ<oH{J@2j}e<%I(0a>LJo>_<|
z>i@<e0~BPEWYziN+{l^$wlZrhq9NYouAC1kq%W@%>I}q1ar6u())S}D0d_*5S6~1y
zixGf@cs3dwBpE(62u@0Dx7X>qfuNBnwIGfcEA?~qmX=P7;SBt%crNWs6L6l2u(CG{
z#tEU%l7r1WYt$#nt<Ux=?^^;daSnEUpHZMaLT#rMJRs&%CHGt40dfv_9rzvG&|>E`
zcETeWNPC2<O}$J1wEtbMACTceB!-aiKaFkIAJ_zzhi$qMglA`35;4E~!^XTX93&(l
zBLi`MST{QQPKgg`r!)8)A{ii?46qN<c=#+vRjJ_L;A8pKD?VsJjJ_!-jGc(n&^c+y
z22XWW0K9Xhw0^d-8daGIKM5F|foH%P;7B60n=tSAao2FA)j<>g{KIV0_cH|CkktH8
zyFbvyg>tL`zmRQ*d_G=8FEMO1aL+|mN|z?81Gl0UkJ1K95K$+F?EiEJM}MFoSXtZx
zP6B)1$OK~9pvSVyvx(M!jOCje;g!Ma)zxd>zDY3^7My|TCj)}diq9FW8z2Zbuh_2J
zQa+bt!@}7IgBVQ}zQBoJeyM0+UJ`LYZ-gh}WB&uEUY?bB>P-;N`?3XPDDYN=7t&$y
zWYO7|Fz_!4s4k2`H$WFF;qvCcZ;-X;iFaUv05B7~+0gr0l3GkqyPJHDjgs6GO>$#Z
zxnlCms*HNv`2TN2=0>w(BeRN_f1<eoii5!qq~>?4(9H>ZaFomful&$s!1arxPcgAJ
z^E@%HofC6yOi7A>;1`kLs|E;GN(dPz9BA2emcgQY)F6&mBo@XBiu}yFqotEc;}ChH
zUgKS#2+T|Zzv#kFi1X@;RT&DL{SJr;U1)~&)xfSe0aaB2fQ%zKxQ60|AM^T8tY-oP
zBWYd5^b9dA`jEY3sqDFjeNjpra4Bq_7^k*>QO`om1KB55mlT+dF#6;uPZ6X?`FA?z
z+@4>x5w`=*a$OLNi08ham;g^id!zF@qbe2FC~j=!;#GSH7%uhS!}s1D3)`c69We+N
z{RBC01ts6fQ-?)CHn|^G@4`Z@_;pP(RUFA>4f&<Hr?Vr4vt!IMf|+1y(*G;~L42~f
znJjAaX_;)FWQL=>W|sSRV5*NP`BTpw?^m(W)UzGEvtxIE_l(n;JE~!{=;^j8&?gJw
z(q3dDTqf8@ZU1->BvD*@kj2{}?VpTO-Oet=B=)Goc0g6S*b)Lx%Bt!Ov%TE^P5<`j
z8<S9;?`AnZ<2zeP4dU7Mn3p92i9Uj2Qnd7^@nl%rS&T6kVOnyRBx|jFvNSx3*BAIv
z*LP-f{DyU<WIBI_UFxRN3L3uxoe3vz4>SC+mc4x5)Z!dFc2+{1hZ=e#O-~H)-?F%u
zW+xgnSA(Ba-{e7-0>eM6xR9i@nH~J9_R;;7ROkC@V5;c{`RF52s|&qPb?gO>5`L2u
zo-00gO?rQxim1(m=UxWgTE;(Oa|?g~jZ+407HG-^kssKgOADDtS&`86rLz=S;;eqI
zdH(umMj9>uQXI%m3bJr`iiYu_cmB$o#)atAa*7C=pxX-;soNDHjozMIm%L=>?wG{8
zp%7ktq|C$PRjd_v_a-uS6{UKiL2bJiaPzSZKR-@L?yb`aawhpK2X(_at42LNr!`MT
z_$bl(8X)1l`I0&_@%+kFz1bry99E;%yu8p8-XOd10a<gjO6XFf0Z|iwX|jDR{n<N~
zZAb-5Ob!gB#=GGSHcbE7RWFh6ZAk&1D*I00)t)ghRc95*FFCl{xzK4s%3v<d2@|!n
z-)T}0gMHQ$dcN(QYG?SE#v{i{XGyb67cM5qG-F^*5y_KW{%>KmJ{s)9P+D0%t{&p^
zVQ=@BoK!I?%!ff!kl|^kaLLSNZZ5({UrV(`CX3kLKBp*kWjxqNPB~jb?c0-g9r@+M
zV?*KwAK1AdFj=*0v|B)FvishElhcxwpv`{nl`R)(_c^^{ul+%n{7AeHG&hX@qfbqZ
z;GVR*Wen^I@G=stceFq*LqaQ4>*Dsy;NF~?IN=}_ldw4hEzOi!hg2M+r`FA!6&)wp
zc=UNfa;+O&erN8xeH9tp4c~C4CCFq8Iy!liX2;F!-ANSt=ZM%RJ375Ws47}Sw!R#M
z+Tnf5%k}KI<yh1DK<=I2HEFFMml0JSKA;V$%{!<~g;_mdRUYC#>#)X-F@VfN(iKKH
z7oXB9`7DPG*`ZX!NqLjQpYR<4n>WSDZT(1FY~kzL7c{p;^Q8?pz{xiCJG&h_q{39T
z%-{)z#Fx>96O?qv$O*4OhO!GB={z{+89sd|zgQ~$Q1kk~v{8oZMOG#I=r_faD4sk+
z0xFeH$&6BYZl7FdtFt4oN(E)vLO_;07k~Rq<8u@I!Q^A(6Ij%3K}p{Tx1JbWVU;uU
zzvL(w87reBgyY9yX;VGgq!Cg^pluAC*0{;)K@%fhR7-^t{}zhy+?ktGEg+`Sk@nkS
z8igCR^g5+~he%aLuv2d#3z5qw^$es%FRoB(?o7jD)$c~b7XEz>tPz-PhUnMDE$nW?
z)Qp10avWdA7<CWKhbl-G?_OE4i9VcQj?~+Iy^K6Mu(|k$W$A4wXM3hDOf|uHZ-Diz
z+Efqr!vj69R^R(4!l@!EDaXWWtI)`?Vg;MVl5?rE5+FI|LFX@7+z8OIxQH*ucg+h9
zFL;nER`1>J_aDAReI6wlz>GViq?hrpV|6d;f&R=wFT$}7*lm6tcUpVQUx2-AmrCFZ
zaI4~TOFAd2xn6<&c!;`ULA=Zx-XN*Hjd^lsCOa9Ce^W=|OBbQL0d+b_w~!S{EI8ij
z>D`uvVCOf1$80zr_8lIZ2<gbUYRBR>N&n2rfDI}Ah-+23sOCY524|Z~7@${D6VIq2
z?uW*0<DOK&lG88#1Lvwg%0BBS!IT<D<>%<t2s=@`?8x;>;PiwxdD_@xz4FOy*@#A{
z&}oR@3Hb&cd^0UZSW^{3j}1#fp>bIQfS=~SoRuYogWF?4xh5Eb2+)&?4pH+u;grn*
zo-bB~ofuKWQXYwxlR<-Q<IT~i07uEM`6-Q{KfTfSFVtlDj>b2$R%CrbY6~sWrj|G?
zn*2AD?0=;>E5<Y0mEYRf;5e|4{t0;P+<JzjesB5W5OZ<@KjnwsbBm{+viOLW?1ld)
zT)`s=#HR!GPf(3{hcSC2yxoqB9^sDwR9ybKOf(5nT^OJ&G2%~ZMn=uPZC@CFN(!O0
zPZ0lK#P3@Ygq4G@7?%YDFou|%m@L>yx&^SfVQY@F==LpssS|?wGW7UD!QOtT(5(n9
z5!0xBwd?AbpWhppO`#f?b0CG_zawTbXlFENnVUYsVSd7w7}Xi=&im13!Ncxx^1?@7
zY3c0y_Yb&HLlRF!p-{q?&Cm`F=#!Ddw@uxy&C)CR=h<$<Bu7jfG*CV`2#gnwyChf7
z(9wMf$rpz=%EkKIPm5jrw8XMupBYlS6{alBpIZxCi<rWc=MVM13TdB+2VogsfjR6+
z;R)yt8njFP9<A67sgSfyMEQ%2EbNy_hlFQrMM@Bl-+^~q*p59}d59GpNx!uLvo&tj
zAKg5pZHV>n=YiZpe+guMjw>`|6JZkjG0qm;9g|Y(dm|FT$i-q@<4+8&xl%_o)$>d6
z_>wz`&=<5&L;yo*;e)ubUiXdsUCLwY5lqKxyyD|q-U4V`Jc-gCkfQK;Vf4`D+76j9
zPsm7W(bDikZM~UhW?b6Oj!Z5##~vIq&dHbAq~^a#_ALIqCrJ$x&F++XnOb8ooY!Hx
zyKdfnf-$*}qKQ|mxA&0VZ;&`l{5z5~swJH_d&hm16JfsGd=+XACU?N29@C<gP3OXm
zG|84SNEmciZ)c0B5}|<!aQ+aiRE8wLphTgM@AMa35{%U23YHlh9C(lkiZ(uHi$1%N
zCi2UO9}|>Xem7gBFxJVY7?^()t?mwVS@}MxpECF}h;Cf9n&&;@zSk3RPLL;q2%Zi(
z?Eu8S-C=E?e_o^!%W>t^rznYoc@SDb2fD5qq4zAvmM?RH&^)vJWBo<P#8}t-sHPV`
zXyWDS1?0SjVhTgD|12d*rShkCgE?#7O_Oa;{ri?F#cF4tYI1RNCqY<b%*U>@ucC06
z=rH}yviNK0uKX-(RDmttabyg!|Bf2R_Dar6ox8HpMM{D&)U`p+mhd8B3wMu}r}dAU
z&n`DDrghbDU5#vv>!L5q$YtP5c2Ons1fJAOf_qvFAY3vplgUG5j_Zkl$>-Ofz2n8%
z@q(FryTrk&Q4P$1?3u*g__7=B1_B#=g3>P0z96BB>Nh2*n9}7JZ8+$WFd7=DceMNn
zRBc5FHtu@Q4A!(jd&TneWHdL33ZbBx-yQhcwDK=3KeB~6!J85H<R3dw2A~Z#+asAr
zU^DU3VO>8JMv#m=q4!>=Z(V9sT6xhbS}QJ$Q&CG(bciR?+*Hl$a*Jh~%e0oYIidYA
zOS`1{#=&Bbgg;)1O$)oOQP=QU1u#kw42dV2kpP_~bNDZn_|`wh%Uv^Exo}n$E6#<m
zJ2aJ=HAAnMJRA%8mk5-5Zj4C|u%ZMGCI%|m$$@3ZZ(}VI$NIpY_>K1kZX)4(zkS3U
zl~n-ntl--6MKIbAH3u!(3v*#WbVLnP%U^SqLRy*CTxE~mg4a?4vt_2DdVnWUBKnTD
z>YMX7`P+%$w%dO)?8$ORI`~LxoQ&u-8@s_1x_bG8iNaS_4fu%s1f|(jJ49dt34K`P
z^?{JH;WV{%Q1!zSsT>{B`)^Jliy|}*%m7Z!#*gBcAC7P|@l38nwd&dE)xx;jyR=-1
zZ(S(QTVjzfcZXBr>+R1>GHZ`9YSxX8Ur{gef)*k#X7|!d5zX7wl$0A@nK9masyYjD
ze_^88%5~U0H&4UqKBJ+S-x?<x8PTq#0ba8Qec`*Z7!W;f66Uk|Bs*TPW;tN;h+4X+
z%<%a#TID()tQAR-_$%ysncdROBNTx%V%ar*zce0C0_AO%&>c4DH!`J0oV7GCzd5Js
zm|wv0MzU5Y9XVH3>`oA=w^G(yxuw#g@JMI|3sngT=+Sg!ys`_UQCuHXxTNg#nV`t}
zK{x=cx}i8rM(=evp((|wyJ57!{xG4gP(|~5KMQnnqD<&PjOY#C|HB0@vrHT%N3_E#
zc$e;r18eD)6q9yH!{-lc&66(^rwL%dyh!^V;#K-&?Q*-BS|=|>TapfQ<pcI=0Kv7O
zW=S6c*&C~li~7f%AS4MYH(QZ#^$3hHR{0gVo<Fdp4(*ynV0H$T$4MfTH80Q}Og6D^
zEOVbF3-U^m+6R^!Gd~ganN@&b@|OGBKlC;b1e<P_gUFg8jh8XJjub0K?NkSIgmlw~
zc$*@PufW%)P_2;Yo99y3ybZS-UEOENgH(#3(}&e2%J(35V(Xq9=HGmFLa&u4+mQ|o
zm)jZV*=Natd=sbLMs>mvo+Jk~24%v9yFQ@UB_wbe{5Ne-qU*S+C~aU%5&A5v_n*(w
ziN9Hm1ShMgX;VQzi&9RZe4+E#P*>aty`~QOoK<A;ApF6VEn&~uln@8-xmjd!l={rU
z7!vzV?kI>lAw9`uSEc*Nzz7ohra=Wf*V-vAxq+t)*<KDP*STFSQ{LBvI5q8Q@J1Mc
zw6aFW5aUva^cXc=(tVj=3W<GCu<{3ejdQYW5C)LP^9-knEm+F&<QIOdHOMvcdW_y?
z4ePYgoeKXbMAXx!yOCl+_m%Xufy)NBC&4M0;xeWT$|z|+L}^~CW`_5h^x4z;B6+(f
zP&gZHTTz&NYxtJ$3oD=A=Z1)nT+=1eH{qfFxJOWVuotE-H~*Mqt=r7%9Y*boh3yv1
z-Ns1oi@4~De~YnL5O_3Jn1Vmy42M9qSx`9r78RA&=UBE{l)?tZ5A(;Lz_Sp~6a#C{
zj3*OvSu%pZ6SXf(+8gT62cPdiF#0Ij5PyJ{`K)L*L)an{8AH0oh$iiAE3UPh<?N$E
z^SoQh^8Q;!*NM~`4FplNdz_(6H=&NdfBMWN7A$E?7P>3xTBe+2=94<-HDSx>)NrGK
z_np03Vd@Vk{QKw$?+?*F3e=2&pjK=OHw*!@?|)7VfuU5GlRWg$v@Ehk8hhM=0Yq8?
zPcNyfhlRDj-0q^IBL_P+^kSXkDDOm=FQA=U=-k#m?O+vDv3vcRh$Y7h=Iz6WU*Edi
z-o=>RW{1aJc&^Vf5>gi3|NUb^0)PEh7{Gk!<JA`4Jm}U|s$XVlK$)cludeyMaC?UM
zKWyt!2uq6=vc8OMqbO;&Aojw~3UW@St5|IFa~oY@v7S84KR4qBv`A)#{-x0>OK8k{
z;It2cfqdl5VUR>4)RwUA*!dl(?UE2L=_dA1rs$)%;0Rto<69Df8#%cX;F0sr70X1H
z?GOnb^dD;AUD<b~jM7aV+1Qb1{T?CHY`^hmXzW8#y=cu>LdV}+zz)GS8}uSGwbjqC
z;k+)p>Gn5slM`00_ch*dnldmBPWcHPgCWm>=}Xk?1E(+JhMBRJLUj(pit_`huDZHw
z66f4^Px&_t^)6ore-ibI4o!4Ne)&<sLcvZ|2$>%W;wwaz_oPMm*wu-WZy>;Mb5n}_
z&+^~dF^YXV++3=-zz45Sfyj-PTRbMmIOZay%(>>cQ4jg1BOt|L3WLN2f2CREH>gjX
zxFnu1!NCTRYUpFbmUiZ?smmPvwS_F2x~OQ!k2fZs=DF4zYxKiLh358h?m0IWMbS)F
zqrwvtiMUPgx=bRqk`3|&2d%jG<B@C`%xy2ssh`nTZIoF(`e$%2?hjZeua+W|IuH|)
z<E5ioOXGUBmf9`~lguo6)ogeNBH@{5#CdvNP1Tdl+&t;lygKzW^slaJ@>HEs)UP2l
zm{d1v3=eJGC;W@5Uk_n9>JyFJFXWSMs>a<XW)f*9#h<SOi`MMZduD&w7i21j$3Lx0
zlVeC_lXy1w%--A<#wnxG?88s?#ZeUFX6m_Ld_Z}n=wuJeUy3GN=(UPt^wG(<P4ZM6
zTp5ZZ)2unoYs&59u@*np&00^)LP6E7mL^L`q>#JDwJ02BC_d_BTN(aRbiml%KTcob
ze3^GcZJwK_bXA~YvZL3_N$^_Y%(Ucv`Lk!X!M`9g8!K^b)&qJmOVL6%`#jH)cU4zh
zCU?5^e#LwhGk&y5A-;`)u!^2pz$WW_sq@OaVT7^X(~YUwv%2fgy|!uc35#vP$qgD&
zd{@k3ZzH$$Tk45f`SAE_ojeshCx!#V&%_e#VFqyXWzvOz4GJz+-qsD7RaMg_Xhr9G
zb`}`Tt8{dxkB3nPHZ;zIC8hQU(-x6;X}=r<H}u*`;+eP>a@<hUh?wV<>M<Z>ci8VE
zS2Ebde3cFyvNv8icJS6R?vfMId`)Na4K*J56hj^SOlQ(aaygiGrqVKVEqwEj)lAW3
zp1#x{nG$rDt;AbdNu@|!z=l@9*@l4#0WmO)uZS7;F(0ICC@e`*r+h~K7UClxrH%F5
zR?t(e;V%I3sjpbhQaejxs!znbZEMqs$B~hgUXs1ft7aB+Xvo!Fq|}zz5YEzfPH{W=
z7k!|gcDA|L%2`9R0-g1}?GG#yp{}snm|g2_qRMtt5#&%h$Y(!b_lTzRXyJYyZS<$w
zhEhqko@y56QPbuNf>D`Bc8cn=Cf)&NpQ@LGQ0U5$io^E6ZI;l9g9g1lAj@DiX)sUv
zEA?n6j?RQl+dQ>?jdiWR)$!p&cy2`d4vjQ%RD1`nAKNb<*!YQ}__=1|FJ5es-BD$?
zST~G+0(}N8^gH61Z?g6FLs$jPSm(<2PE7n_Z%QeuxpfGsX`i)hOm76Yqxlh3pF{LP
zBq_rYcACAfkg^-ujAgGLQ<X@#hHL>6`sQKQ65|t4ph(G2%tw;xsd?@xW~p-vE`IAF
z1_{09URzMPdBXHXc+Mu?-1dZnaB^v$=fC8PKdq)@*@ymzoa422YueUvgB?Tnxan$g
zmjUouSY;LYCa5r+#9gz%5YOsPTq9{%OP^PK^5)<W5!dk0%f?lHuvc9Z-o%bUV0Ix)
z>QZv3w%2Mu!x4S<folX?9B|DNrN^f&N+FEt4e=pM{OW47CKBvvmm0Nwjf9SY;H)0u
z0x|bS9LEde`xrl=D~eA<TK{drhEQ5$XE;FPk$&ig2Li1CVLu2QCgxqqJcJ}}4rU|7
zB@((38GC?z335+6P&h-u6mF;?yfeHJRn-I!g2KPAcRu3!>f0RgD|A$v#N5nbF$h}B
z+l`CLZ{69xaF>=hl0=NsL;X>!L{;2;w-D1QC|BS+4EbI=i$RS=GJ_u!Fb^GdDK(d$
zKALskjr_K~J`7YHsBPc|3i_+;>Z?|vT(J3bK(^8h$<S;S$z4&qx<zj8z6BNbs~jE|
z`r??!k#Klqn2xc^y-TG%zoj9;e%~f}y(}&iQZ_>i%W4?p9}O4JDjHuSIP||(*H~?$
z((!q$BkZ>1qA{U5e|jDrHh@PpJV)g-%6nUk=M`^L`%7W~Ki^BK++WZTWW{%($xUht
zb@KK@>3Vqu54i^J3%&nLa(|ULRw2xa=#H%qPsE$a3%Ri20NH-rN_>f(G!-WH0&ZD6
zK$ev>UdsCXjanf)a+{S@%#=NiuqKktnStzf6BYM|iXNKfUR&%~jXC=gw8^=I{yGrf
zz`*oMET+5s3_Gy_gPrq=N8w!JBM#+7wJ`kg&yd02pCR`JC9`t4RS+zXg|(K%Y?U_j
z=!Nz>hgY~`VRbfk2tygrf4NA{{{GQs2W8n|=0|JO9IehJfGkK>R>VhC*42DN+#m6G
zD_MptaX^;#5})%R9v#j{MMi;|4JM#_(w(<1&YTGq&)LGn%YaVc-&zoM0Xc)N6v=dJ
zeuWyQmg5S0{N4KCw4*sW`@#Ca=GOXv>6>O3kKp7;)J0)gDiz>FiOw-_AvK}Ttk_|u
zq%4&!_`WQa%*L7?yHE+qpj&QI=|5Nsv_t%VaE=YJ$<xG@)muh}s|3wd6UuKD9_8-q
zMm>n6?yV`3#UL;KxX8%D1XFkHKk!|oui55?6#e`1n|tCr>x1+4@Kj&jm&0WDgiH|3
zv4;!`KDaASGuM67$<*>&-)aw>s^U4S=_We5@%(zBmj!(G0IG#{E+Y>RBxlRRhSk$W
zb^Z*flp^#vl&!-evd11K50e@{O#P9MK03GLEN_1Z+lD%G%N>o#1*iNr%Z3`nMPBy6
zH2tU8r)i8q*Fv_p+{!MEBSrYy{~PH^xMC!Eu3JJ{5a*+qQX$98wAWvX2~7Pvry-cO
zcjD<33;(z$_|DV%(jn|rPR!t!01vjkb3N}i7=SfyS7z^fFrEP-Dyv;}yjy~)^EJ02
zAvI|4akuZEelUKs%{$WHiU35-p~FCfoL9@iIvXa(i@#3}xVh>T0{{7OZ=Zr6UFZ5-
zZSEBPz6w?=Lj3cm!E17Ucb)&8i?7b%wQP+Qcn{)zDA|EA$nJLf1rIwVb^1(Hu4efC
zahXe_wy0tLCzP$NV4>nP$WKA^^(lP?>)iceTcG%HOLm%9+%3zJ9`fNDkiX8){8fwi
z(*`yX_rR_*nEydPbZc(K_Ubr?7suSog6m;yz2DfSbL}5e7jMfJ0mK405zQ`=Li?x9
z+9I^N#5^Hro3^gs=G0*>6N~ulh2Q6>GQxnK>sA_|Mf)!8M*R=PP5QbJvT#^2NRzi%
zk8~h$NfYFpfbNtC`2bD@?0i$^#maD_ek8j<w<-~9E*86i*5pOMPV_>WD=3sI8-(QU
z{st>A%s2g+czpd|LBvmvrTW@@F%j?<43L{iF(OR*3w7_;Q#mq$1NxstiVMVH{;M0I
z+oJN#FC+gl#yOGy`PU7uvE7b!l}zo=PTZuWYEYm4+|-=1oG>35sJQjf>`K7~Y=)lw
zd#UtMAJ*Hk;}AIgEf5Uxmbkg)ZF1>-gc<u*{6Xe_u;Nd&;)9G;f<3*b=hVv_6ys4o
zTpTA;!{B#ZtdMY5Cs0^3uszHUFp+PC4Q8C!?!miiXxpHJd#4nx>!OR(kDp|3q*SQS
z4&)^B6Byz-Y<$Wb@?A-BQPzHi@;}=)-In2bhnwt78Kh?6xT)v2MN|L*pCExvJHI>-
zL(H(SeS#(=LFYRdp?Lx}>1aP8yW|5s@xo*oqGK)rJb9a1W5C`DW<%j@)gLmF^xV~x
zf;XiDgW<Su-}ZDVRi`}&IAxKF50ao6xa~N+%AW}jiIJBPtDrvwa!g49UsQzxgCT>p
z35yZ+Rzo$4UI&v^cmauHBD%rPEfi36b8jc^EY)vaWs!VFS8%{+ikoU$0Nvu#<kibf
z8~HCi^2cJ=KDmD5MI>Mwd0hXb0q`?T{NEFYCUjvh#SK!5R06R>Q7^?DosOwK$?Ff)
zvVwh)6o&zx0J*)hkFc#IY=$I}(7U(pEw6T(ZLbV^X3%d0hJ3?%DNuZOU@<X<fMvZD
zEE?H)xzA}(90>|GtcR;cB_H5*@kBG-(h-7@N{W?GbcTe;Y=t(lPTk<n9aq{%>hDf@
z38R6{aw)^m{l-{`K(RcyGp6<kcq~8IJ0Nb9`JJy2EF!!Rb#>_=Y4nc|gE3m#Jjrrj
zhebi|bN$9OKy+P)hHuYe6xZ13i+B^1V8AI#^*ujz`A-Z?EL@Zp$^*5QBpxT}`lO$K
z&Q4$<R*ET20RXyAL~o7@t(T!ekjGHH{`N{_u31Cyk2dL$&Zh;6tA6f+vCaa713%x2
z&Se7iog23MXW+yXqnen-b%(w{{4e=FBwX8S2UCa<!_vkh7bD2{wY<PLur-RHSs5d6
z=$<PTEYx~YwAfT@(IO26Sn?XoVc#7Ur9>4W?E5`Q?<!w!om@w@-4C*OTu<%h3Gcuq
zVZFH}nJ$OL8`f#2<c`Hr!UO%r-|*2{$d&^aq-#k?Fn5d#H%dn%n*#km<AC719i_N*
ztLg|aYWXp?w1ChEWq<1l=umkUVsiiDhFhXYa1!_lDB$gdxvTI>K>MG-1gVHJq)wmq
zvGgZJL(T}u^t;m4g;WBr>4x1^GKropkIT7aXvpqehfL_?<?i%R!FQllyP?WE1aQHx
z8yNo2avb?Lvn8yW5&x8FuakH-MHTyCM}8)^9Al?Qi1Y~hq>c;DJeG*wcY69K=L@rr
zjR&WA0UD+D9=K%qeecQdys?cHn9EFl)eTt0Gbj>n#AFfIbbnb;jji!c8fFXde-AYN
z8zqg%p!<8GR?R~%@+u0XyO%5&NJpjoqz~yNJZKQ2Tz+BZk*b}92O;rWe#hC@Hb?`{
zwjM-l4N)m~s{=a;FB-UbY4y0mWn5f$UonEBEnsz)+Kdte<2n`T^-c-3tfXbaBkhAn
zdxG??!p4#Ie_vtna5esZv@K`|2y#AroAQd`dh<fe9AFi-sfrXy=6^hjkK8Z_E3;u3
zDt2uZ9+Hl=Gn=Uiw1@rA{dp$yKIEjdR1>&tFRVOfIXV<+41%1A=pof<D<Swg^X$;-
zP$-5h0`n7y;v>Hu9Mo&W!S2z#lHPs~MQlNi9;5hSGqtHoPf8U~*^o|Bi@ZB~dm88x
zJCduOE1{U+@`WuBvj(^Dp~-&Q;~V>`%L(lOt6CTjzatRna4anNi=$f-(uxrJ5&<sy
zOD4wRrz-oSWEA%Fl9)~ssbtgd8V*fJ)FJ!(xpQ{WQQhdd^Hok<A3!0(Z;Ln!ws<Vu
zX^SW`w<gE<^%{86xG4x8{qY`)%$@TtQ$!P_JUiF79`mR>z5Xvt^>wFM$$0c0(H1)C
zmmMmW%2){wNm0GJA6Q)Xsrdv0vdL>GHuqN{**g2iSk)dbNK&;r0#3nKsNJ;kHZf^D
zlAh-iup-xI^*w8n$iBV8k}|P&<ozE)3mI_En>Uv&ueDrmup@BKh0DGDHhZxB(KgIp
zyKJO?ZhyGcA8L7V#=o+FFGDn|L$pa7u|o6mpE5&)H!o%c{NU{+N)evFrIx%Y|1ox~
zhRyCMx9pI9rQ+rKocf|1FK}3Fm6i!+-hxqtu<HboVg8@l`oTPeW3I!`?ilw@SxfS~
z`8AY$+uw-$VsX!BagTsfBLrO}#dYYf*Cx^Rc`rIHm)6IN@`p&R-GBVPlD*6Bb<Jts
zqi_bDckb4Q4BCuW&FUh18_zihRlp|3_pqkHU#>k7O|cPwi%VKBQj38iD`1g6)8({M
zr_rWt|2yt7UK{=JmDeN`Pe6}3=62a}_4ADdwJeV_-U#Ot`lbm3*5B#(P*<;i;gDyZ
z-$E)G4Dyv^oP7VRzmg%m)=WI-&m6`snGD=Ma0!Z(6Epv@c+>cW0abd<zj8)VMdB7h
z6`ox>gcsD}Ho1rLPC4W71%}rvWSr#{4%Yec!|Ck0&+=YaNnk<XJ-Srr^@qd5<qem^
z`YD&|<I8^p7W2p9G&ss1$2EL(@DGb=64_l39YlEO*Xc|$Qi)!g<RixpE#JS}E_Kft
zy$1$2&H<C%dtJglcKBbqXLsN;D+cct9=6nrh6f%v1$GA$RLYn)5o${S>INB&f{jqs
zB&wXiqzR;T4C;bUWsAXGkM|MXEMe!n7qk3sb;st+uS{c@Z{N73QU_?Jw5j~5`d0eG
zQ*p^q&>+y`h^0$}!7G$WU@O#yjHQ*o%lcu{0m7K<Yn(M%FP9Z=>M8>23kYVC6Uw)K
z5x$_r(=VY65|E#ca0}eJ`h9Ci9`P3|E+v|%kQB=m-Y-yeBcq$NYHj2F=eC~dV5Y!^
z`)DbSe<{z^Sc*4x&xm_A7j}6*%}kniQrUo-aI|F;G{*4x_}8fDefEO`48`zm-Idye
zsdv16aC=MsFFW&~y=lnoS|(pUit6FB)D2wKV<@YMOtY5S7Q$!$a?!J?@Q;OH7o+@~
zeJPLJfMa#H^QVNnb>xd#H}RRL_}uuhE0hMb!W3klJEUr#nO|H6$@Dh|3^&sf@A5Io
zG8SD;^35o{m5B#v`4&7cAKEF1gR%Y;bMh_e+YY%#UQb21d^$Z@z1jyvEBit*d#MTN
zcO4_2qQ)PxWXyZ;dM2X5+*3CIlS&V%J5l@x6stdwEn(chNI>gQSwgFbzMWiLTNvki
zVIz{2Il?_@v7HxxVo}3bjZCLsLizRd(=6~4Z;<SoM5^YIgjva&<{`Cq3a<O2FSs&f
zBynOePzXyan<6mpF@4h{xa%-9evm<sL6R-9Sj2t&q}R|8C%<5x3$W}8&;y_#L?wvv
z!7&*jhLNA=4521Sk?~0&m`Ir!RiP?LcCd&c97(V7zHLe5yCt+&9$2n}H;&85f#Lw5
zeLk`t4X-{<7vM(Y$(9|5K_#xKMm0dMWF^lX7~`%Z8qWp*?e5g^s(!A=6$J}lp=9WZ
zogZnkwrc#IoO4<c0H3ME+9h?vFddY#q5r;jByNP1a^<z-f&CH>;Y#A~foug;B1jJ8
zb3%u9ClS3PevE=SSGVTPo@L|Ss5Be<W~PiL(+lbP>&Gp+6y%UEtEB1l$n}Gh4|^V9
za=`1|*rzhJ3BHYCG+jLK7sQ;_8qq{J`9;I?L#H*{Who)xG5=EMAlLl&-_N2h#Wokh
z5<SBHJ@A9ublLRSfR~jqy~5EwUPt=b;X&8L6IECE`PG?bms6fD#Cuy)2}HzL7vk7!
z)(FnN(qo?dSlWFflS-90${S8vOk~awqP|yYT=)%X=@mQ}s2ejWHmgpQmSn7ZFJs=r
zLSOl*2O*XodX}plN^7^5#2Hs=lzjZ()RZ&3|CC*TRp$BTxK*=oLVw8{+83L^XKr6i
zG@l9Sw+N^#!lv1IE}wr`gqbD?2Ky*}r*+d=mn@2QRsz!#!rH-?s_hLKZ`=PJB8l}+
z1{`xafb7Eq$TqmQ=5v*DiL1X<dW%mB#eJoU$P~Z4BKJ=M(U1Li%5>{tLezaNvgL0j
z#E}aiUsXR65<x3}?jRjFNoO5NL_lIQPMRFC|EDeX8Jmcyq5Mv|b0AM4iYsD)De_M&
zxYsT>F_3M&<xpawA3T`{_U2YNl0@R4j{FQc;g|qph&IY3?Pq~1c_-tIb)Gq)&5>AI
zUo4!`q*xV*Y%o(H?TuC5M&e(DoB?T0OWtQw+-SC0Zd&cI!=+;yklY^u^EaX#K7j`3
zS*`}4QRE=?bHIGRJ<%~3{9O`gnLbRZ3<{ma1p~=k=WYZ56d<TvxKWFN_F0^|*CrDh
z$;Ga;ya$(x-b*xRRSSL6B?fcDWe5+hWlKjYMM-@X?(ua=O3X{Q>boWsBz|R?-*Hwh
zv(z79s7$j6$Bv;d+R<i(H<$J-zJsqgvPqEes|jODhcf9giE|Wp@efy9*d}6=a=ac;
zyq-jrThL`RXOOyNfScpa_AiUi8dIsdAM>ni4=w(|B4zk>aAVW6&ax4IcLYzq33W>A
zv4$Izq{g9%zqgDXgibwO<}yD>X+dlPF{0}`jMGEw4hk9<b^IV)yIX2VdJUhFWp=6^
zpHWO7yBL_V8rg@uYm)k$<BUNytVfOjR){p@3>NfVc}YYYb(Ygmz9wq)k5{Xy9ri4D
zj3xGN7JiYX_it)3rP09pQR(Z>kN_dFkYt?^={O-RRbbGo8)#W-sN?pa6$+_f<F&V}
z*_k?8he%wo(1!*z{23Raih;Td@8Jvl+bV61=<FNSXH8927Ww(=#~w>c5A*#;kw*TO
z;g{H};evR8pFOXy(os<<*s={JArI{zkBVLBE`n0X(F0)0m>&m{6X=>p@T;(57G|Pv
zH(4Qlx}YQ3MyL=%B0M9IVkpnh6GRIyqWJjSX{4p62(cRB+?=F;@MYNuS6Y%BIVu|Z
z`JJ$XB$P2l`F&w}8Tgp3{~t+L8C6%$tPk$qgS$HvcZZ_I-QC^&V8yMtyK8ZWLUDI@
z_X5T3p7*<dCVMA)WhL2@OlC59=8^7*c&givb{p;@7f;G^r)--=y!@otJlaq<2Vg$$
z{<YZ$KB;r#;@Klzp(H=y45hwY5VG0A=HfnM??7Y-m1uya^IwuU>>T(Ghfeb2=<f|5
zx^LK&A-YQ_N^4vB>yPzsi7qRYt|KT7*#U%&N^RP2&eio|$5Y~S?hu~(EF!BiwcDW4
zs>aZB(>Zss`ayT$;>W#OPizl=-Hz|5NBTsXW!z!s_pI9DwbydXry9$ii2+HSx!0GO
zN%YjoddE)7bP!Wry1{DZmbTRgcA}LnN-7peDw82>zAdDS(@FuEla>{~gVhd?tg06X
zMJtz-bfz$hGm*@Pz%QLj4r2f4HBd?ri0)S0$lt})8DFW!Zm0yMaAmRDCE`n>=%hcP
z_s(?N?zd1&oQ1+VKT1*>7nyc_xa3Qd&V33vDn{!&J`hg5(U0MbCF^CcF=E5a+ZN^q
z>n?jvFd$r=bNDnFO-o0{z<1)!Yg0h}7<*?JHZ|z<J+ks%Rkwpx4to)Iz+dI-CXyG|
z_Ng>KqG3)Hk!^b%(PJ=Db<<c)>!0-vza8O3zEIht_7)#5hwdr7%JZI29M-Hbkb0fj
z-<0~ZCpUim&lA9LO;OYe^G~~^mUp*xU0wE7BD)KA|1}yMPwO`JKp(Fbah4o6Z#+_d
z4wcK!4B&WR-Q?%nhromzX>I#b#l@YUH#N*kbD+^*Tu>jOk<=8{vU%@F6lGZdHl=*W
zb<}x7^)vo>I!o>NckyTIo;K#_=_M_<mNsTvs6#AibkBUlG<y*%dvL~UUYCP33TN$j
z>Ndu*`6s|N8Z2YpJ1)i`WA*h&>&C~PRCgQ1W6#-M^_>UR><WfVu%pg1%pn%$W!CX`
zTm|Q$SI}_A&Kq#vD!OHS!*2WCwQ0u80gNxo%qj1ujM}TiQb%kgEA2>!?iuoFI+%xI
z%jUv>ccMcj@zly6Xa+}4NGk+LOv~o??}yNNt+Uyn2%PK4bGB*ClX1gYcRa<Vx^aBc
zN>s{*99D%k%XVfY1~>gwYS+J^WZ};cHl4n~F0MNkLz-{9S`3H(oGnrXJY+U(%t1eW
z6=T?GjGX^5e4U!OD?4vkU>)bd>XJ77K-ZMrJ#R4o;0QH$U9N&m{@Dw^d~c-Un+RS<
z^M2F|RGsfiD~9kSMR(ck@!H*#owH%b5o*BEQqYDI)xTxBtXwHBn@8@Z5(bFBP~?iM
zBx(k{$*YnD<8y``JJE?$=#frwurM#J+(i#&l+q;+ffEbX<PUIiWJ{YxD!LIAQ0fhu
zc^}-92eYl|uH2uDBTm}Iv<P+u#AHQqGO3H<mhRFY%dQaqT3AXEgx3@Ly_C4nBB;5v
zDxn8?uM$)Dg!P@Qjuw+VhJDiW;Dt|~Iq5u5&@KHZ1tZwq$%c`5FY3;vCeLJp%q@zH
zDbYg7Ey@~pzEp0Ij+!#G7FEpeFI(sDKGcKN6vP{$L0sSE@cCWYWA{-6C2C+q2V=1E
zgNiZ^Q?^tgp{+hM>AU4sm$O=d1wEbqvFq|VWU}r7pATN#F57NLw%cW7Q`-mN^jcJp
z2&uD{PM_xYpB5nz@7EwFK?rKok^A*I_sYflc<Il$PU3^h%sK|QgxbdTb9)HmLE>n4
zm`4}A02Zus#5?r#|L_j{^?&~oGYw?MIY*=@CYU=(t7F*kC#^;L_PcZ&(OLg#LN+!9
zB=MAavK)4wa62X2UdyUoOqY&<dybg%L9+z(0W7+gv|T(AkF})i@rA{x9Yr=&GYGWG
znwDrHgaj%1)MB0^n(eSOSE!-r4I28>GPkin1v;d(?NFQLFPvx^IBDwF{6egfY)%u^
zhK&3hcD^_zKDN7f1mnqd$kJ>l7ilAmi88)qb>TTy0EA>B!|0**K`lyTbBWc{)MA?3
zV5Az;(&YIot;P;lu5K&AsX1OsX5Z|{c@637A4@CI+>Gyw2Np2PNQuG8ip!ac8}yjs
z#ZtXp62L&<A|XoBuB{|0f5F8LFSw7q8zN)P%`W=Jo;<OHc*;W^Vt1dB?l6j|CqF5c
zfLmcIG~cQjVuIL^!CLl&JIpQ6@~O~0EH6kP16)kLT(G%>pz5z*Kp|$o9O)j0rKa}P
zZu?Wcnt>78WQ*@ttrPZGhI><O0z)dy2a}KfZ|+q+O<J>)=GvWB1Jlo1_GREwB)Rqy
z&`PwQnbU=C8E6oe26iIu5M!YIuisAo`o@qdKWf0g$_~oKkmcok3>RP0rHJty@eoAU
zEc$PGI=?BD=M}*T;~dcs6&qKk2eGa09l|DO*o3-=_{f%PMqYsLCw&?^%1!~mea6(s
z2|YgxT@&xT&-!AQK<1q-Lzf6aNl~zrp)<CvVV(BJ!B`>(lWcs8!7AB1Rs=)QUn@hy
zRDtl$DI_Jsm)P11Beonpns0Mfd5-SySaWx6=aOOip2@X>U!D9pL~^8SL%4QT9Fm;g
z+ud@$m^$m@oH~l@>2~YiMb03f@}+e4VB{}6iOYxn_-!^q{S{*@tieAi9sV8R@CN+m
z<J~xf$$d8-f%_E$KTc`Q;w#1)!r}R(3HiZl@SFn%R)L0+jvY8bN#xL+j{Qn4R?!<x
zKLu&AhOInUljuTjR<q|^OcK-<hwadPO@1gryOa)3M7kWL>kPX}uXi1pj8&i&eeRiH
zV9O9#K0V$ngu#a|gGDwMKodMGL5orv(i#;xGo8qh{eBUWw#o$QK?cS|DSng~ahKB@
zJ6&FTF6=yaeEU#dXnr8v*Wv&3sPl?utbL;6TeaN$(7-WEacW_OkUEuhZ46?+Mynex
zh<{d9oY)0@!tm$^M&)_|fU5%xjcezSVVxyeWge;1H9d$;X|MC+_6g8ldrxvfK@X`1
zOV7<icIeB}=kK)s&UJPGcc(deCHe39{@I?`Kr?I^foPPV2feXE>W$u^#*<6;@n~I6
zlmz`Bx|fJe!qinC^(T`xT)+<HRD2N%S*}(-pq1l8n$a$`R`q+Pfqx>9Hlk6e_!$LO
z&nTOnDYrWf3l2_cSvukyY8lk!wh}6*k^Ut?BGj&0D!$`r0ot6eNH&AN3#-TWPOPuS
zl0eq+UzvQDLzb^R$9*n~+#EcHX((C4K{b#m>AjLzo3JM@++F;@!cYpO@7U2dts#&(
zj_*txX<MbgLhTQ>u%xfBc%4-88%f$fzvLgGFF%W={qYXE&5YM2LTMuT%!0MjGPB3J
zbR|!an!PYdeP|E+XS;D{QYXo}d9QxT7vCv_Z56mnvfHuXA)nTYwA@;3tFf`yK{Y45
zHD#^3a(_MNPA+dZ40UNbdXJngPqq9hy-cUE{4FscqBHmC@WuN>UI`WyzQbt27>FOt
z&x<Ad4ODh>91^2&T^R-xMd<E*m$Hpkd5tzPKvH}A01i(Fh7TnZxxK-gShfpfaYLrq
zd`9hS66AAx{&n?CckCq~uUkcGQ|}cyL~4)?85D6)U+0rzFdaNQh@3^`Ix@V&P%oW1
zaRt(4ecbzasW;;YIC9$<*%k|{Ka~O$Nq&1;VqU(%r>1o?y}y8cafsh{pj@8<!(fl3
zUP5>c6rpl)9`~x^gI~J~t#ifmUjmQ%XDkbEUs7$}B|*YJBlcO%nSK-+@x2u@fuS91
zJ|1Kv9{C|wusP<aBeo5or^I>3q1LN|IG6e$p)a;gn!+TWd_44|Y^aL6;GH+V?U>Rk
zkbV!2A)qJzr?5(?+vi6s;}~&lw$9P0-mog9aj82sZkd`L9z1#U&tA6E;&Icb&~Dsn
zsH3Q5x~C+m;VJy)t(`yc2Kqp}7<U?{<>9)II|)8dO&P5?BmPUvP3r~m{L;&YA^*8+
z;APG9yL-LRBln+e2Z0>!iR~$RHyebS3R)2t3RB_O@YsVT)~dIY(T>s&6kZG7HAe_a
zSr#4DPY(e$yRxA-GRITNw-H(((het8o>j21wCxqiNm^u|QNHi>L3|8_6V#X_7zl^w
zi0tTHFLp76M}xfn%NQZ?N>ra*Cx-^c-b!pAJgvCb4lX24e)f;#o)OP&;A(1*HNwez
zQyQZZABz%NpfBZF`Q!Yb>m7o<%+-+%GD!g{DwDSouAlhU34vxzUaa3YY8}X5!lJm4
z>0&2PWPiNyB1au$>NR#(U{Pkaq`7Tj!2V3PZ_$o;9_4aHOWK<>kg^k3P%3K+DW6xe
z9j@5_G=vZQsmcyNmnn?+)B`{9U6fRteWj4(msDn$8c7uBBiqJw@;2KB>p!9jCTHLJ
zv%s0`|2+<q=c_igTNGF!O^VGbav(`=10>4^MR}`MO@(ns(l$A7q^<1(eJkoNQGc!W
zxlCI7;oT4y#yk#Q+nOk%$1lI`J#zk{iOAYIX13mment|w>!(=j`!q1z(GK$rN&K5?
zb(8$C_qS}UXO1`XWlUGcKQ05Bxj7tnowmEg{Wx(ka7Js9<Yae7M~VSeL;_73aP0^N
z*<xdR(l=z9aipP{cF=46>|^=BIOmB-&l0w=!~5e58x-`)v4p?Z7S|X0j!yvPEFeaT
zHijn9HzV7PW`rEd1Bvl;nLp$qLih_FSumIZA)<&75*TlNait7hNm~Cx6I&C?vn8>E
zoLrQU{)q0>)Yto{XjRSkXBHz!ismbO7>^Id%;6WdkYwB+BBwV`%Y{kGt(e*Z7R(<+
zSB!i#fq6eFiGQoGKhu`NI6CpgJX#A0)%=Plt%ZOz?fE7k`-i85D<kgvH>Rh+12UAQ
zkoNFV4K$w~Ls_&{f$b?BCz!N)9pvb`wnY;b1|eEPoUiGc&Q&ZNzNQX?aKQxiE1sFe
zX@0ap#e$`f4~rM3qbG-XoY?Q|c<&70AjIdSF|bw-j-yrw+Oh6D<HyY78pdy@BCjI9
z=m2r^!6b0Tc6?Eky(Bl+S+4l&esOtf7*9B|zj=kOAkTTi)9a>8r(l1D*Kzr`Yok7L
z=BsNVaI^U%$XpxFX!%DNwlBWHxW>kIkuKSdO0!3cl{jq6PHGSiWv<ihcp9MFItc48
ztbF|+-q6tlx5`IX`F8exYg3^_X5Iq5Dr}Cfx0n~g^JPuLGY^)?+tX#ui_)3se`X9_
zg9_<q$Xh9L-oi&Ay~yC~7nC|smQ_JA^8)XkcM-Cky1)fXPZ~TLubx$`o!40K3DT~A
z$IMsx97MNi4IBCV0WJ7CFBwxRmdLQbB}zwndsSaRr%1c%EVdWg5k21p>yR#`H2O9d
ztbs}bea6+Q*N{i&<0g1j6TnztC;3wMh_v~r_Jm#;arD0e&CuV1w9B;-?lx?H)7CWi
zGy^{r+;NfGVrvV()<wbSiNVUo1{^|OE%(*-(4)Ff+T#0yQPz-_(cIyRn>sC+caD@k
zRK|ZLpXAbya3E19)kPA%)fMsmXG#(bACs<d)2~(i6kghb>Z;s(CfRZwZ+|?ZCcFGW
z2@Q`<iVg{ZNxCp22Q3DKAp=Q=&m?XoqZUZ3qJM#wq$>o`!bg#U&wh+xfE9>{Domf#
z7a4+&2jqtSd5>ww8QD3T8LO+CtE(;#7yiAyY&VP1vHH8lqIwgx`Dg#IaPIsYZPZTQ
z`%D~QFJJPsB4?1Spg}ANdi2UDbk;a;g8~zgyB5-dhtI8~%og1B0v<uGUMN8*$>OBZ
z6T8qVw=C(e3uU}aQU|JEPu~bu(Joa#5h~Ylyz*WWqeTlxCAZ29!ulGb-6Bu~KKyN{
zsv^kbz@H$GA>nxEbv%@iDqmtYj`^Rh_T{$!d0j};l6V93oKK#!K2#`%>>W^Tm7(?$
zQX=YWye@RYHtru-_6fNgH3a6pKny{?E^sD@u9>^$t?_oE@jq9bnV{(K#&T!bB(4^y
zOADT+Ec`KYsFXqHJz?Wk4`C1`$J#+MOH^1yqw}v#fc@RX@UcufA0%wKieLzcYS;9l
zdBcT-t4r7pi1X~lsxvug8|&Q8Lif6)_YLX^N$IbkRJ;r@lz0J0>p`OYAf$|f$W};C
z_w0?el^ltn9x!IQEaEdomBF8#Y{wFhwuk#E1@b2Cd&mT8TT9-8{6hLF@=i-QPT$E)
z@IQhpp!yQg%!DDYF>X;3ifu*7ckvy29Zrk<J`Bb>{JD>rT#A~;S)n-QYb%PZ{M8P_
zn10#m5R1IP0gk6cVH}12eMTK@2~~zzG8bexa9frsP5pKzignF#eTq0mjMTG5bx$<F
z+Iiz4g?s)kobK`z%3JiuW~_k1u`dpG*@^1ijHEG7r=&OXp91B(8|dGS)E%yH>hCVe
z$r<3H5k)8Oba*C1vVom{ld`SLqY_jho{ucb4;DDyB%~X&eZHnPFMWU4)s8%T<3B2y
zJ3g1LNX{kh&z#Z%w+uM8a>9)#a!iBt{|E#)`|##JNusE5Y^T$0^vejjpn1`7_6Buu
zoIJ>{o_f$+%DRFx%=_6Gllo^s1VM}tr~TVn1(My1Ua}lbF$v^%i2=zHr7#i61hRBZ
zS0k|R*-qig)^PG)>D{!{@s|jAjrFXr2-1-^^JR;winvhJh+M|mLh5M_R{L2oDv%2g
z2;2nF>Ea3_@Zju_MTn1-v$>pec+xy#okQ>JEQzcPx_&q2Y@<Jg{Xx&j-c@VEqx=b&
z{igNj+8Ff%UhQNbPWOn1JjSg{NXh-aj>k=Lknt3s%>5F|SrJkUD|KM~XYF@MQ)YwX
z%YWAlu^eL;7h@7``>B+Ojax0|wNo*OADh|d6*Kzkzqy06U;EpG4TFiR94fsVi{dMd
zfG$;WP7EX7a$o&Xe#~<(4vz}Wx0@FUtZkB7-oR7Gya-B5yg3*MnP65bxdKh^_|_Rp
zky+I~_1%+y+r&~(C;p>0cs+u@q7@fiIP`28*C_pz)i*w+)pvl2i~|U^<!v)-|JyI!
zAA^ZrTChcnH=8B+-Ef5+ePzK{%cL>unfUR_)G=6WD4LWO#}Kx(XelbpAEoe-(KB|S
zZbdC@J-WgCGurUkBca?)H^XmGv{I5Sj~m`s;@7A!YT-lcso&0>-R(K3+b>JOz<KRY
z@i9tLFVQG<AR!0IwnY+)3tZI&znkqC_#+}vGlT@UIR*{|k=UlB@U>`?BeyhXA|eX@
z7o*!dG6&{99BJe9-u{o-H*ZS!RAi1oW6r=&ix7^nSbqgg(Gr$j_a5LNunWnj%ljMN
z;VX3kqJOy#)$Dm!aeCCIr2mGxJRC3*kFU~X%qM5iZ-N5>+4PEDZtB94IZ(R9$KVx`
zBx}8ll+P_~Qen1T;sFWURjwC@QUy@EgzcKO$NtUKe+&f2sF%3*$0lNqt^1*he*6%<
zd574t{ZDbH!{n{doa1(pZ4U8;fNYa0Wp(Jui-B*I6}JAh5H{kY_P@-4%A`wuYm9f4
zxoJT5BqS`Wx5mu95X<_h_>;jbsyn~P@YctPGoikAn-r}f_W+rOM3r;6WnS$(c4^Io
zntI#b%Ttl?!#9@8^Z1V`68|ww|LCGB__W*aO>)}5Sg%!n*td37Ut&pQrJTZWGw2U9
z`6<3b<v9<6-VS;JhC=}1?aIIj$JB{B9e^PV()RJ^$m4?WS^H$aWwbY_4shv@WIqXK
zojA<E7LN}>(0T{=@(k&<X625ExnHN%UMo#s=i#{gr+jn$R#fots%C>wo{I}EHfOqt
zw39ZKBv#3J@F8+kL!dnD6DS(|n>wnU1nNj_!Kb>=1NQ!}WuY!RokRv>85muh*g}qd
z^~yW*mA(CXSH3nB@>NgSk+nkjQH$-l-*nYTX#ZDN^V6K^D(1)7e`M`HGCJVM#5`b*
zos||jgOPH4Y?1q|8lPAlKR`6ip-yvwY46Luk7AtR0Ez~RVWUmkY~}8`2FiB5O`Ev&
z6SMUba1-Vxc+9ma;}|KoGyp}D9_7<cOd{%~QburXezR_OUIS%Vhm+89(Wy&)06_!A
zk{0DS;fJJERY3k2du_y+YkpaV;ee>@fFc}(ZCUwx`od+k`^uK-*Ag1qq%gN-QT9Qu
zSu<OUnjc5>Nv4yaO*e*=J>b29r)7rBDl2JkClij{hKugmLEQT7-d^p0BzIj!_i;0I
z?Pb8eqDC0}P+4tL#fSJ)AZM#Z&t$QGj3CF~nJqqz#mX7M=KAwzr_ik0JB75wM?uRo
z3jyN9E4%ar09sXnmQKr)19o)!3VmHnVq5ejEpToN!Gwr~ymWUvT@I444vIIdk4$U}
zVvdAD#S*j+NN}5EK!hU9gTS-Bi|PRkYm;Vp)RiMRy&)g)LLXtephYb20s|rGuEfk~
ze(Y|OFUdMYGXRky8_f!s6$@Y`y><N<c(|ed-OBH8%hzcb#8w(B{64(-f?w0t12K%Z
zXQKs@`^Yx)cKs=>M@IabSttM_<K!cW+^2;##d*$@25&0x;23?I>BJT>1eIMjhC`Sz
z`HF&*L8YTG5lP%xg?rpU5W{cA%)zM?DwL=g$|>*=Fz98YB>jkp)2Ahyswwv{VUb$#
zo3$7XnrEB2Jknp3ollXrv28?V)&vtTAagiC&HRQ;%d?8{i+(ka?IiieA&?AUsd5_<
zcDSn3khwt3@eNg7;DLIOH#~L6?re|nOAhmGrml-t&_61Grmq}o#o**>rmL~Y)W`dm
zL1QdSy5maXS6%w!X|k^*r19DJ79C3L92(B_OtKx_<PbZA1PNIi)J}pLTf!B*DjV77
z6FVo(to0;O{0l_#Qway4AfNTxK7{DbO{iX6<qLU4+6VgO1!~du((bFEfX~)x`<p<^
zjlY4;ZUeLHQTB184=tU)KIaNsH{aih?K`t_jL%#8_&T1?$UG4S*Jd|GiBWhmDKNYv
z6&5r?ykyO1q|~p-6U{MKmu1NvrOiGWBMFlQZe%cdkEdUi2R<Vi?P*cOnJKOtiTArk
z3#~eDJ*?f6TRYDx72Y;yg<>Iw{P{KYFX>#8h8apBVqQIJI}R4*le!INNzf_pKUb;b
zUghgGks+W*UEcN($?admyd=>?5*VjBDQ+pr<5Y?nm)$8EzL#qjLj{{X2XLD81V^ZU
zp&NhB!obsmk3%!kyKo(#8s|sCc&Al~gXh+Fk(lZ4-qTA@V|jSq%-_J>1+qi@Q0+CB
zz>dC+@&Y;kQe<!Smn&CR9vT#4+ITpp7c;n+AF~f!w3P^@v|Etq%|z{4InJ$OU927s
z;F|UMHSMoScF&JMW>Q8ymqh5-KAp$x-LB|+umv#EyShu0Gq_S+IR@?myg#T56LS1Z
z5zTK@8Ll53m<Ep>eS&&uL~?sGV*BL9wwlS^J}ej@vk(gIxD8325O<K08K<{-in{wz
z6OJ8K&}reE=zo63A3Ii#-f?rk-C1e3P+@p@xX}MY5N=j$^>iRlv;V?Ij4^4h8`*a^
ztH*^^(BL1@*JH)JP6f>j@C*8BzKVz=C2P#AD+p}^ksWpLS!`$ci!~lED(awts-xRq
z&UMv-eE&48-7X8mtB5siQli|h4E?E^HSJOe(z62kzZ%8{y(Cw0nRN-Ebs+!03MvZq
zRkiX)dfl(Bt<HGN>vtnw-pFb8B#_s`POI{vV;&GecVG2d613|6LjJE2He^&3spCsn
zL0~Ah<InMidt+lR_9m$mrlCtF<<#*9Shg+Par0N?AVt%5JL-l}St;|*Xz-0W-F!3c
zmIh}7WxlxaCHx>pkn7~9@~U0|*$>hVbjG4;-jmKV-Mw|KJ(5GO4%+HEs(@^&fCj37
zSgL?_st*uVKo!+T6xBxpRe(ylVV-O16R;rQrSrq<nBxlSY_Gvtijz*5Q8D*;G<y6*
zwh<C1ZS}fuoEuT)vis0o!RmgqClhGh!Hzu{0;`1xU-IP}hY4o1mn31IGUA92v<Bu+
z#A3HD%`XsN>Y$3fl779-{lb&O0jnm>Wxn1H)Hia&t~+|D2`ogy^jAO<@JKM;mh4YU
zw?l#yr%tZWeYa=+Y`CEATE#Q&V|I~4Ds^zGl(H_{1#pp88j7UAMR^1K`O1*<GyF~y
zcVtkwOd6h7)4VJ|$M!RhP!ag9qNP7wpH96HDGkY=ITCU2@v$n;)a}H&A5PR4lylG3
zlmABbikzx)0H5*X+zI8}3FO=}rQIv6%yRgECEnBL2A_g;i<rKoF)vPj@pvYPY;^j;
z9asrC=;?6vX@e#_;o<d0iL#l`xlw}hnTrxCi$4vN@z7=Iz?cuGkkwdyi6{p!(5dLR
z(CErz3|9c>NLF!!K#5vr!#>32EKBEBXW`V=#oP#F+Ciz$P<4&1Gcg;Z2?`*Ru=<G?
zqNahN*()?@vP!Y?2kM0^9oN`wq`_C(#MoPGNKGsfR#~b|^B)UIF)kKt1c!g;()Cg-
zin?O@B*BWHB)+)>9wXvdx>QDoHr641z4DT%-#wdM@^Jb&vT(10MNu|f6tB6}yXJ^v
zvW>CH3bm%IX#gKXy}bj}`V!k17r(Ph9&5CHuGH<Zx%~P>gvw%8=W6}rBCrh{Gi;Fr
zkXL9;bnmpT#__|Rek^?LXjQ>3t7P0qGP1!gix=LFZoK7LG&%FKX3K8nDE&*zB#uZU
zG<aO*xL5%EhN<@Kj0lY*lr59H@W=p(&ym}os&BbX+0%}7t8_56zW>(GcdVkjr=mYd
z9%OAraiae~+9NH*d5<+xgyB5oiN-2Id?%ULS_Vz^Y6;r_KW&}&lOSC8vc}j-x_U{^
zvHRSc6ATTMBm-}L4!qq^z28g`E5qE8Se`m|DsT%%-rDTMRi+KW-l*}`c@ctJ)zG^M
z<<U;~*orphJD7FY-m4(<5LGaW_OI2y)D5_1i3fe9aq#hA22)qA67;&BA7v%_-xxo%
zQb}v;&0aVrwb+;#Q(ZZdkbP`MZERnaS9`C{HDNxsN~P5Q1)Kz8<3g9i(beUSPmBH$
z?=ELK@zpGhlX_RCnpO${+z&oW=jx7LSaFJ}e_QWdJh94Et6jd#_rcmx<*4}>CRHlx
zBb_<hh7EdS+L(193o)d3{&t>w1|(8xFQR)yr>}M7<XfYu*qEIPIf4_REg6Z!)>~!R
zNNFz;3>HZm+n8-3tuJ7+rw@DOU+h>2ccV8<E>SIk>4@$VH41TYBY#ye1+QlGng+Y{
z1{jdwDQum52NKi`i@ha=>{T}|x=;qf>fJ*Wsm%$3=j|x%vARW(0OAx{WrH%8^j(xZ
zcqj&WP{WditV@-1!)$<6^~yrwPtVqN$ut?~`~e?I8L_uCN^kH^0Yn;3=%lTra6$65
zM@w(WmHi<gZld!;H%|BiCl`k{b98A*mqE9AF5hnz2(tZL16<4MyJwg1l@DNc!}}D5
z4cdZ%4Z8W{g0BupvUe3=^Ww{~cZGvopIhbHHdCyKzOesc|Gj#w#T$x4xJ-4x(R969
zcap(I({%kJR^-vfF6$fm6FRzo@?nVvr|tY<?8CZkc;(rqC8!&_85Oem(;mIe3>8wh
z1rPPLyHWr?x$X)m1310}iGmDT`FbCLgwO~4TBhhq)R3-g7I@HnA{ug_bMELymgFNA
zgGHx6KkdLSb`~RaT*p(#3WLK^)on2Yl+9Tbn+DMfDFfZA`L4fASB{r9UXt(l8{3s;
zUXo(4kKCRL$Vzx%UgJ>hK&+s-Z|$9H>wSm5D&lPKeOE_H!uWqyV{7gv|JAa(&9=St
zXU^@)kqA9cJ?m9B@Cbis`rBN4Zw~Yz0x0(!g%CPf({O0o_*4LX1Lpm5%?4d*RJS@r
z<c7~cxhZaSmM<fuuedcf4qGSoycwY!AK({dG4qKF%?HGVhJ9ZrWj$rOvYI9jL2z#?
z+7#LGBf7F06AX=FawH(SG~>LoYCQ89jOl24@Xg|1(=c*eIE;H>fYdy5`F5^^wgm44
zJ|^H_v|S{gtC-T&gp3O$fNlw`5+$|k{0i@v`#Yr-PP+%;e=NqtwwuSkN*ho1*O;2X
zT*E)z_8l%pMdmS`?4GhnPc0|*7M*9iZdyvaE=Y3$;t5ha#&t*fbg_?Pj7h1+28C-Z
zEFy0n6nkrX)X_H`y|_vn2pHrA-3|W@4gs{on4<64I8089aeARUaTh<T9+CEqDpuqO
zvu%H&q~YeUzvFd9Z|m8tpIo+ax^IC}CjcqV+P#s4^tpmLEEddR2X>b0gdxaMTxRPV
zaeb*j?6MXoL`jXqjkB=WR=D(IyTqVERic_ETlyLZe%Z%K8c9&JOgf@JL85O)9+p_9
zH=pWQY9lmFJ3;H%U{$?d-#cCf7M_04T(aujUm<&Zj>dKuGWNCS=f8R~rhirb<{wMX
z190L%gBTMrlILd>7YQ6WM{wF~ZhMKy{ODJY{5zcXILz+}hYW$$-Xs_DR<hV_fW-DY
z7@ofyQN<C0kldH%eJ6vzSkFHB-jb3i=sO%lOQT4(LYJF`(uxq23R;j(D4}#dNxUQl
z#w}`sJ-i*PL=Wnp2l5YnD320^*t>-5w(#@@g;{67Eg*et+y2LvQiu#%Yqu9u0LvQc
zKW&A@bxlbV9PeT`mey`@CWm}`(lz86@!<CqQ?rz7bwP=+@0HaS?U#*e8oj}<KQk6(
z*sHpe7xh~G>&7Y-*m>kY1}{O?J(|IjGm7*U73&|JV>VoEWl+d>PoooOeCEyl_Gznr
z(82!6vD29-*Ef~R0;ue6k$F0<t()56k6xe9pYIl3!@8BcOBa*g@yilc@vXd&3R!o=
z*GAB=Tr}6Xq}o?EwGv}@;L=A5=!gGp<*teA<|pM$?og~_M%Raq9NrZ3IJheZ@;J^5
zwZyp>o8*Z2D$miCiw4Y+-vU<FOK=m+hpN~e#b2b|c`0(i6TFRayF}=^f$&=E^gnV4
zCSJ4V&&=-4<1S04v0$=Km3CM?JkC6>9k0qPbbiwuJ>@gQ(m%0_DIc|yw3&FM9bbq-
zSXj?EPnh=BocI@8OBy2PTHv_NN5zamq6vVzEivtW!#%5}E?X*oKt;hc4K(rnGTSIB
z*bQSpM#gn1!<G*dJNIM6vat!__Bq0oD>q!UnPf)`wpaoi8D>Wd&Wr)_9NrsCy69V1
zA%5SDP(mL1Q)WVuNUq%}Fb5FFE^<Zcl#-AKs<uA_jspfA0WxnP2LD_}1^>;PSIIA`
zTR{mo6V-~%pYg`zeXUwqW1t6bi`C+16*Cp=<a^Dj@#o{y5%j5U>e7^%9lw>&L#_Tx
zdFHPb!%04PNLXv(eC8+~A(1A4v*Q5Aq+er(Zov|3a3uRnAhNAailm(Yg>jY;g$Ul_
z-_}+s#mi4Ia}taTf)_Pei%kT&%SPUFDtN|;qiRJ`C&K(=97dv?*pWC6#Sqm~A<xy`
zse?ugWBV@ha+JI=CASV9-QO>bZqk9sJ7@T(!f4K<^8&BCZ#)e<ya=D(=z~Fv^f{JK
z{pNMLd9GWKkpyZ}`{~Tm2c=rVD^^JSa6H`52dq~?gxMyXhfZtef%=C^DB0?3x9#zG
z@;KH%G#ED39706-6I^uh6S4$~c2rV<LQn&8{uJh-6nulf^6|VYVdCMJ6)`><$#Bl9
z8p)<!5+N)_m@{aa*T>&expXe!;z2X^*gA5DD;k_iaWy4XIc_|Qqr*)mBozGqwpFh-
zruTC8H31bli!9BpFD1%jEU{F*ZUxX{C|W^&%;I**r)dFp<!>rbnplO}!E3rJ8qX!L
zLl803=r=OD?mr3&3e+X|n*<=9xv22TYzC;E6e}XG;{MS93cj3|hos|xY5+VsfM@ui
zM+EOL((=Ad?0q+s3C{2_lxFY=`|y79BhaKWL|uiHq|RLEIdVVSa7WzDUoCl*2q&xa
zOhW@QCh#zTGf{g)=ZWSxoTm41S<a+6W&+0%NtU`7GWDzFSo7v;D3y_jMRc_BB0~b?
zP1i(;5}54y%cKSGJMcyO*o6_DG_c(!?s?GbQdHK^GW0-}BDRuZ<L)2mKbbHn-qP*v
zSxzXnmWhb1M+TQ>aCruXOirp65dG;2sSkn8_EGZo)a=X})nE8Vv~-I_<)Z5lLtN>o
zS9v(xy13`y);K8iKL}6v!_3tpHNP@{%dsU*bi=Re)<wXxi>8!VSe0?>wNlRP($kK5
zmt=5!1Fa2KNb@UNThm{5$-Wjd&S|LVw8-if0omqS%E;_7N>G%nqnljVYOWJ2rL)3|
z!=%sn+TaqRzFcU0&A>c!Quu^#es!pcDYwqwEV3#qNl13^y-Zfpo%{Y&0+#^BjluyQ
z{*nE1L0x5RGH-Z-)kc2hx%uyt=S549Z@l@1W`M`wn1*jYiW+tHTBg{V=mn+Vo9}Qa
z^oz3b3L7cURR560V;ujV)Zi0!=|Bi{`gt4jBXOhGk*O@m)e*g06-z4e732!D%XI#=
zClj<ltW&rvb{2d(e`b0nIgXO}lted_eine;D@b4o!}dGqk|zNT!wYBU2~m2iDE$M9
z5GROH%t(l=7mD`>*yLo#GSKSLe~U3QIDxP!EhlL{%gx(P$h)j2K29Nc!k;~~Qwfz|
zcw#4IBq$OPzwbN2&=1jFM%yx~5Q~+_y^}m^>S%Q-DW_Wc##XjPB9l4NV=PhAX>7q=
zf!DyG_8lu;%t#KzggRmk9fzrcKLQ%=CO>vwYX!K#1!aXUK&lk6OSyq^LKQ6vxPFDj
zS)^RxZbX_Th1%zP7qO3fc-%zwA{6NH1FYx6Jly+|r0}d(e^K&TX3QnZntrK7nOXRt
z&q_3LV!vZA?$`&m2Sxh`?sNPKqafJk7=QI}J>kH#9#1$I0NJx8tkAIHL)p24x`O)f
zL8f#GI{Mw@L_1yxBLdK+5EqnhXpLRV6<vm&$N`yVNzjViGj67<IT$A*@P{23LHC;{
z>abpBusA{Q@DU}*D&h{ACAO;@jQVaeaaULI<D+U}h~@eFABba(5l=xy%P;$9TL{%n
z>btC%slHo=)@i!=M!Jcq$@{=TK+7YjE2>Xc3>C6s9(>~yijW3GD7r%-)&rqZ9j+<y
zUt3_*g%Zy~PGI6;9m!WIjd`uG?~PV9(Rmc%4|S@_G}W$UvbuK?@nT@P2+`&6ihFkJ
zn&_C`z`A=;+S9(vlu+>;?6ahw8OGO?qUopoGiFtCwGtEq+CT1b*@5HL932hgTrk$1
z`6tvMdm(UGOCL!=(7rlpD@L2xhzF^hkM|%CXkVOEH!m0klJHps_TeFFs=I<O$n4)u
zl$prQxQHFg&bGDD@T*ts*R!GP%3#-u;O+BMft10dq3{0P<ee;va{R10`UkI!ScBm6
z39dfg%z2XRr;hdrQSz9ceDBt>#(RovaV25e)p%DP+oJ?5`_WzH;#R0O2Q8NouRqyw
zd`R2$>5YV|?j)+7gByk{0})-NHM|sb>5GiMe;S5u<%MG%OJhi6iX8_^8MZ75O&UeN
z3md!@s(+koJbz=ny%tdWkWQ^zHodPh$*pcRIbcd2T-;AJRC-VS)K#|P7$lco(Cz&m
zA)wCQsz6aBw`aGW*aEB0msa_SnPB;9iU&s<fFwO%ccaKLS@zk2b|dT!()<E5f^w|R
zs0!YZE?^&c5!QGOJhRUPa)7wAUs3)=2|-y);`fnrXXB7lIp%N7lpw6|eRqvqG-Doj
z?YC&&vlSJBTwDiuGmY@gSF1@2PTGo=BKL<HqcaqsNf|@*h`3ZpNEWN%%FE&o`sH8^
zOeFaHl+slD${$iPX*9J<3mHxqE`psgpiulq?JE6DkRofCBw6&8Fita+HWO(Xx;*tM
zDshiC7VH^+3P`}}1&1NQkkYj5PQjY1;B*|hgq`FESh71<p3f<z9!0HM(HG~gO=U-T
z>bP1vh>yhTF)Ngi86-mfg=rX>6NpMi6))$gMdQuI_Ia*RhjY$3vU<VzOHh-d%9@>j
z1GO{tQC-(=zhoU9*gAeK0-dxf!3BJmjdQi);!luKGTuP<AdQ-$b3xQ49APeYglmdX
z+w5DBaeJS{UlRKqYy6O6Yftzn0di9HQYVeRdZJ&RSAKD&@o#=<c5AcY&|}70xn|u(
z!Y6V_?i~w2%hZD#*|yE&Szv&LI;d;ZBsc<A0G`h;*fG-Ktz>&|nDyke$ls-WFS*{V
zi$A&7mMie_X*ycyw9r3l?zz*01M>7gBQVxbuLC7he&Ew9x{MFaYCQ)&i9Yzeb0L7C
zuh_3L!UX0~!wBO!{M$4)LLOSQ|A|A196{LG2DuUM0&Bj_@Sq$(LJFfdgx4zLodOX+
zO%x(0KX;qv+3L+r*1YjncxP`2Ad5ujVRoJfM)-@m_S8jgb|w>c26~@8QQR@3AtEg|
zF~=d>hv^j3=9ms$AX?+cLCpZ|rJP!_>!!mVR_7+o7@|r4U43Yen9?NOu+@)is7^th
zha<I-sc&yAM()K>6`xI-3y>%3Ji|v#0YV<jhNt8uWG8ID5^BK6%p8zE;eKd?Z0teu
zVo^m*n=O&)?38CTRpl*@jD?|P@g*xB>`hU5I=>vIoEKQ<MUDvefr)^1TE6I55m=G7
zQWwE4zD+W&rp6eKTS?UWp&OU#3{dIjgiFOdAN$oahBc*sOQzt;FC)Be=t`Vebp_)2
z$zDf%xmVPg3c|S`Vqt`H75E7+rUh7iOXy%*p8=uV^=}Y#tT-ot&_9Snj5H}BQ6yK=
z2$@VZNFx3lI|QM($Pfi<a6*d66!~9HvO4X=)}TL%f1_|kE(}Ox<9p<>o$)_ANoxg3
zZv+zHHM*_2N;<cCkFOJl*Wn(d)6y!YO_q$n*A!Q3O7IsW3v@dMhRfrzd#<mGYL#QW
zmP{mANR5J7r^Jws8IfXz{flLB?hUj<D=iC)0yEVWHIY}hM0JD^Td|B@;YSp)y2(j)
zp0Gzele+ehK>LUZ-)M^FA)~e-RP=OXWS_o}Wo=+;m1L?N4A?Zw3HoiTjvvi)zwGeB
zN4!OKHHMeBvNlg5Un;$&`9AIOvmHOGvP$L@@~8$Ultcjc$mfW{K!ji$jW0x;7b!}q
zx1<87h%iAPzDq`$lk{fVOOhksO`J51r)Wkv<`@!l2^m3LWEN@X1n}p%T5|)AT=o%~
zE73ab=8j^|8xz4)gbP1^`Y3sPdhT5)-j!+__Q-E2cw`!lzkokfIqTw8{9Xent5S1k
zAJ0Reeie=0bF1x;83OMo4bPcr%GZ?j9S#Y~%d}$Gq~iA*in{5F$&Cng+-^iQ8iqR{
zZd7E5j1`|WQ0!7pwbO2)U8BVE&v86oOrFv@LMC_FJOQA1Bu~k8>MtV7j=a(C8O_4M
z(`AA4^A<_vq&lrsN{fx6;>~w~SZhSOSQ!=8GMzNcsr`wyf7;_u7K~$SR_bOdf*r25
z<A$)Ce|r^N>lO!%H<~#K=UyQWnDmy>+n^Jcuj!bx@O+~4+*WfQzvhCL@(`wll4$ay
z=1AB|$`MXXW~MSnLn3^!C(N<CwU9~Epk(P)=%;QKMII~OCTE1ArJ#uSjp^YSb1a-u
zeKA(Vd7&Fd2${(bX);0>Z=JupW)-m0haCBfeW*yH=3N5G8rw&r`W1bt>qnSG*WI`n
znjnMB0fwaQY9~;|7de+KxAEEKSp_6a`0l>h(S8t&$LgrRUAxHP|MNuQEhZ}&Bh)tQ
zh`P4?j`UTWC^@C+1gp7|-Ee#vk1!tMpxG}8JzWG|f4mhUs5x1ew708}#jcbpz8>yQ
zY5D#gfN(5LxtWW@fur&Dkwjvw>J^`&giOR>^ASh2m`!qh%Flfpp!5%7r0R8v>@Qni
zTZiJT1p^hL!6r`nMQ_J7*o8*(kw^-bWcr@oHeqr(oG#}-b9%Lq@?eM4oj%n1v}^mb
z-`&ps@hqG=1Y^VV8EMIqz*vbn3sn>|oSn7D73axFVW(Dz$6k3=zaLFwIYC2=#G2B`
z2*gSh#AxO<Q2lt`4Qj;HTMGw}$pu}=$rS!cZjSnq7Z%tFl|tkiqz5|~51Jcanpv#X
z35uD*T6CdQGX(qwyu+7`0N-0<W}*z-cniK9Pih{3O?4H{>Ar#xyaOQQA2C4ywC=^W
z31lvIurOM^8eA6^<xc!r1o18gvWEpvj|)AK@N#OA4bIZuA{!5K@?P;<Za_O)fT|3K
zc$CI#k8gy)uU#$pRU~uYGP4k2I7Hzs;0+NdSzK&2tlBA5sg4)yLDW3IiIuIdy{nNQ
zXhy~$Kp0d&*)4_o2Wau4^5*9D?ZAbSMSlblM-y{0p>VOsEbI~VASk|Df4?*R<!rMY
zQ9*^#x06QVD1`Es;H}X=H1PPhS6uQs45e|R<`<|ZNIX*(ip70D1Zt{<dj##E{&;sZ
zVmS*fL^B1l60$yQC^K@%eHlB_=pu3zL(wrg0B?W?SM)ls(%aD0l*6Xi+Z*b?Z9sO&
zV92#yPE_;90w|1mF4I}(LG4~6U$Ef*z}+qTA=KibDg_+4UhBl<3oPk1s%~5#IjD<&
zqP7BmG^Au^(^%d0>8gG_|2Y@;G)FS}xT|o~)$M{j?iw`<)((?&ZI~R>l~7h)FlV39
zGu+%}Yzur6HK(>o)B?A+<r}BN3hHm;mpA_0KkK@3t7V$Em_cdC;+$=xA>n)j?oC4w
z7bS&Z5zNnu&8AOb+YC95uB*A1C-}_KDezg)>F>8t8T@iU=p1U1>n11oZ%WiUBdbWU
zP`#p#GLiow*nAE>s*3Q%K>r!9#b=WtMZ?y7@i3tF!w+}<uMioz0X&}#ouXl?;St!l
zx~n_1FkK~ZdSGr#*{o-g+qIET8KvfPw^pR7%!f-?W%{N32UF2BayoTh-lyBG$}BDo
z%OmT9A`OeU>t2}i*)0?Nc0-J!zJd787@LrLg^NqnVsXlK#Y&#f--_|%L#N$wYoMaZ
z$-*I~5mMS+#rQPFh~ZQjvu$nP1jJ6|?-~Uf#_e<CQ~o8_RQq)4+(tqpG}@rU?2?OV
z2XhgN^6aQc?=jU1n#beAkpQ|r?TwF}49qeU^>0^)Zk=0>MWG{y$=;~*-xcqJ<&Uk%
z9>lkNLBsu0Njca=3LZMSA9DOe4w@d7VrLbL-eaz{H0#!3$K8b!cXnk(7`O=Fy_Yn<
zer&S(v>ZQBGHm6EQod$mUW`y|;~VIVAl(N^ct4^Ln>N^>PYDryQGL!JV2SJ}C#iMR
z!O%|$D*uUTLUM0NO4URG?Vshvjc?hqlvtv-^goxeA{D9h4=i=C)g3&>?<z4ZW=?%D
zGIf$`?Y^xc)D!s!am@xL>zx8`7*>%};9Ezaet8^Ktk89@AcqHm-H~p+C0CJqp*?)4
zvI_iDG~e2PPS$fLIDo9+xGfe9KDN$nPX4Z2lo_D?nj}Mwwx4nq*x)+ka{bAMPj*th
zv#jX7bv^j-^!48gn$v^JTZkaNRD(#b;N0e0CoIA3IvU0p@ns0<9bEA#i_f58f^{b<
zC5|+S$VHwAp(xTURZtFKMP@3EahO>}hI2Uy!4Sm_H+#2g_XeP1!2qpOUD_H*>Y7m9
z-d74`B2(J^SF9sJXEalyp+E26#gA$wF+%f%52|uuxRK}saTj&qC6&o=QtstD(U9aV
zhAk@<1USEnA^{biip@LG54C=H`EORzZ7D8LMX{r&!@==Nk6)zMIhGHs8DO7+WkR&G
z8VOyu!OwAmjvl_0c|8lO;<0?^*7{yrsE#QgR2~b61NS9ej1_r2u*|8d>6I9h0d=i)
zOpF^O!owGtd*C#((sL*smejUSLE5{5^n8xVS>boo%+4}xt!akbSLto}-wU(5tPRJ!
zQSG9WvjyQVpuZS7MX`?dwO;rx7Y;46iQ_{8mv7kui?zk+Ii##(CGQ>my(amA|FD*C
zGc}ccz?ws*?UsMOza<m5cBH$3GT{yqC3gTc4xPgC^KzG}`iF&8rDTzZ|0=CikogGT
z)UG)6gEDFmBU?CwbbHg3Uk+FJ{04br+ph$n`Lt-f8^ow5L>$#w@5!0$J`)QN*E>+d
zgch>>e-hFJMkTd-kL5`0J2JQUnGF8o#qgjX31g=^sxbLq!9(;Ba#whR_^?kOSL;uK
zvcdEMS9&PM%e4FB5`T3kHG^rn*YEIddf-F`J_fv+KEKQPrl=hJ7Fd`Iz@fbOufP@F
z?@p2YaIR+rmZun{tI2Shj^r<Ui7?A00jTf_)?h7Oa_1Dq#`;q<9}_0+A!ziY<Q*yo
zCiS5z@pmQ4(cG4IN=1iIn^XRNms9ZaWI&ZzY)X}<(CMng_e|!>Pk1q5=#l6%1+x-h
zLG)Q2sT0Bu(idu$8Z=+v$Gv);v$a1Tq&h-@+&Rg&e5^k4I^=;ANDErg!KUjYKSw~X
zP&WL_P2KIU6{}LGOtQiKPnhpBJ<v1iQ8(1e7S@<q1@!desGHe~ur8_LeE~}5+L?52
z>}pi3<Ax%>z@2K7(K)y5+cGHyVs^8o-i}kDTh2Q8z*yHBha(+9(AGpVtW_06b}W?3
zp~v#|9l%D<?7C}$w&opjD#dt5lcIIWT59JP`#rNnRgC&l{jL_vtw3S6!<0c4O2NBs
z@qM^d4n#Z??)S!J^#Pgt*nft68HcExzUp8VcI@GyizgyS{#J_TB=*9rg{&U<-`f5C
zh@m)pmDaMZYF7{kRjSU<75b>OjsjKbol$lB=-Aq9k2YR5Gj<_ELS1mkni9Bs>`(rT
zAl5?aokS_KR}A~cDD~V%cIZl(NBJ`$6ncSE@*3{gUt+Vw$`I96U_fzL#)+zH7i<Vw
z42LfMP6e?YQutMcphxt2KKo;|V8-{Wg}kfa0%4_*2Yc~YQP_Rl-C<>FP<;=W+0+?1
z)ft=B7&+B$a-P!KrpZ_E_K?$m{^&k6{A*sc5@(REA_TXK1c)mTxy9glft_x;%eMKQ
z24`|Pu=UIE;8vdB4J)cG(qaukV4fJpZiPD6`dY;39Gu{+UVv4hWu~$~m3OHtaq7kI
zn`{-|7e38@KmMv@V|NoBBs{s4!R^Po_&O56(f3?)M?$?4m7+5!{JXSsf}H`6PFRzz
zQ$F4}ffwC6i_DR#j|+Arg2~`3x=|MDfi3iRNW$nKj*T;5bIWb3brM4bmu7)w@`3wi
z{}xfdp>qwydo*B|j4G85lijScu~1h+?gUGQexw==WGgIU;{_EY2kyQhBi&JfU~U?H
z1(-mZUteJBdEz>LL-Cqt@cGX`?-F=MQ0#Y4eXZE7Bhwx=p)vHaU@7h$NN+_D)fD?!
zHbn84gEV>M;9~*RXdN)?tM%uj;N!g_I)!*8kIzV>6!AUZP4iW?S8Su%{$Gw9Ancd0
zd+l8Bl_G+_IhEWu?5VOZe5-2T7dj)u6tprE>xDMKp}Q4}4r(R;5;%HGe#y5^_G{Pu
zxkXl*(P``UdoMlL7$F~(>Q7?aKO)j?cqa~k%BOwZ2%xyBba{%@IUdwI3VX|DqS>P$
zh%({`ujii?&w0-cJ{iIjm}M`XbGkykZyBJ5n2NTB=?wAi381BElfcziU2V1;3EmZ$
z5JDNkSbsK}p)I|OnqW>9bs(7IR)u|rz#HL*Ihf%KQth9ZVGFR?^!YK8T`SUGaw*XC
z{cwSnz4&BOZ@{B38!#0H(T=~oI<ie@n^-!*uDM0C#!i`yABoM~+^6FX$KqfhVRVXW
zfTC|f9lo+Y*nmIh;WOwz_!m9_o8OzW7}t&cUo<`860r#-3zifp;O}<>YFgP=JQYRP
z3@6+sUys|TwIiZBE0n)5KgVzGt&3xPhI{4PYHqp3TfvG1$tcB>RDHE~xGQbTIK!Uj
z><m^PxvN!hvQ+0pS}wVMMV*+zB1S!GdqI={F5$bUb0RP-PeX8$ycc54y;G|o!Lz#`
z30$>Y*j%E@y?$UK#hf}txl*WP(L+(&h<@MPss5DlS4gD)HyZg$uTr@t^a^W)&WnY5
z^=qLh;7wK)+~xB<GS~fx>OBTZZtX8BSwa*0#|ssC^}oED%4(#O$<_GeLLCM_dM(}|
zKz{pDrFZJ(F|g)&CtJoCZ8bgJU*ugfkN)M}<4)F+5Yp76DrKtaAD~R#sRS$i!thj}
zPs^yJ5f-njt#e0iV#DpQ_CI%isw1?bc3xDF{ilONTot??Echtb%vIv@=KqL#2k1<i
zCQx`|+qP}n))U)KHrm*>ZQI%;8*I#tZQJ&J-tYhKx#vtz&rDZWRaaN{shR1nii!}p
zD>+cZSCXrIFaD&;pmOH#o+|l`GDnQM8W&5`_K-H7IT#73`c4!OAjsF)Le&O9oos7u
zL_t&L_ePmUMdI(_Zn3RM5`LL0*MmrJ`$Go?2kc}<f520SGqS{-oi;LvJ=9D0LjLT@
z#$+b7_n7z&hP$Je?CwoB4w@K}t#pV3hJX>>j5rhpco989G+;o@{i@ew2U|JkkH510
z)xMbGSx%@@J{)igLrwrX75+n)GvURzV%fJPTj|#l5(^zLCMvfiNJmH?Qiwd5>ONR~
z#U04zwaOH-VtHFxEDV1u2EoW!^>D@T?)HyaIp-*Tq1E46=1*Aq0!B~ALR2&t52rJk
zHZ~DmiV$ZTWHzLWpuWTp@UB@OApX3r$bp+7Gg1<<f)7z^M04&$0Nyu0E3^hp!Gr7Y
zqNf3#%j4^C9g-OnA%7uuus~pxUcMar?Z#nrVZY2sbB)cpDjw*=_~;N@_~dz<f9b<I
z>2Fc99KkYIg(Y3XS!i&}=V>o!z(ro=`1ws6LZ-D+%~6Z_P33~dxRBb_IV$*}S5Qy)
zF{DpqS}?@qk2%N$BlmVi2qrrIgUykN(D2_8mT0}cRaLylIV{=OLUHdSvNQBh+_pI$
zqjq~&<u;s&?*B3re7NE)(F_A_o8vt=Z<m2j8=rF?WnaK%?tkdR5G4fqbMEpNZj{4P
zRNyK%M;;~2Jp7oZ3{tFE6<7Yz4fJt6gIJ(v3g+B8NvY^t<+bqWGHh40ZkDG&4|N^{
z#?SMD7PyUcV^>5uK}XBl+dfIzNicZ#PR#ZvtS>B>KU*1oXi8aMojYc;mhxui4d*1D
z;Gj@lC5>6^%o?#)hRD?8J44{o0(|So3+PyB`6nn%x!@C0tpd<os;HDGo<dtm_eS&_
z+NKS65*`LlxIlBMRoe43fhT)Zu+RdHc0t=bpt0*qobit3CqD0>ga*3b+P^@FC&Dlu
zB8$*BvKcI(8I}&qAUYm2@J0H}{l7W`MYD2f9iv@+P5Os7c%aMw8?Is-DD@FMCjThk
z@_}-Y*~V**{E*?#wt}wmlJekWAq*^!zp>jR0N)Z6<zn`8%vGS)HV&ib$o>s7ZVLoR
zbY7qvCotFG$v#1-IabM2h%rI2eO<Lhou*t0FgXN1@QLg@Ew<rwx)Tq0rs2+pmVcV2
zBs8LD&VIqe`S5Jnu`{`b;mB4dc`R8KKOEb@j~w|^bim>ehY8INw9$a$6<$L2iiIb8
z#jjr|+v>{Q;-8Y@$Gn}%eR<ldxP-z)9TRw<eITZa#yqVOTF_3S=x$$61V&K7Y#Fw!
zZ2-Hls!YFy{4g<C!zS59qUB#OD|8f)!oO29Ef0J+otTI%>Im?P0XI@DS~G1IjNpNn
zf`=sIB6z|Zll{b(?8?wV+}V;QLRS>vB5M&IMlu<7Xf5*bpl!vBOSu7Q)*<@Rm_Y?k
zNkx5EOQ=BwItcw249brIXN2QFxtk~}P?dP_uc^UBR<Y+=B-H6Uf9%q*zL$iJA}e#I
zVYfdF=|Rp==gdi#z=;^Whn`)^Edc3bs(d}9AcNQ9qW&_4jlr3zLQ#=?GcpcXs+N{*
zJ{3h~hb?4};bFgmUUwgK-)00CsWcJqz>F0~Cc*=gC@-jk(fMY?$c>$Z#!W3&O=${*
znduCXzlgEs75Nk2K$4&|Lmhdy62C-YwU{=C`-~D)pyD}q#KDduQjA{o;aY_ZzS{H{
zF3c~o3g2&+k%OF4E3?W)k3jXq3Lr){ys0&V#=l2V<EC%|VU>&mHK$M^9K;<jS;~vg
z1TLcISj(*LL;zqRc7Qe3CrKhMV^8Fy2KLVsql}{{xrh(=DO*b`GI*&hN?S=1GI*O@
zNuS<|kch0Y?E9|(Amy=;*bp9+l`G`ZxHvInmC(7W!b6zxah;D_91>_74iYe3kO8s^
z^;xJIYj1e0AM5r-{A#etG{Umj#<p+8VxX!?709twg=s&u8PmfCsraBpW~h^@dg<&^
z3RKXI=am`2?YBwojKC#5gx3WCyKrbB#L$imUF#Sv;367XYG7ViLu8{mM#b`XtRch^
z@ua?Qv8X}BJ<=#fuP1uo=4jNH$9ba2gIHzsSS8RR%Dj2(OdFVToWdLCe1!@@z$)*`
z#ReOM0)YjOKUZte<bd?w)UqFFl~W7!nJFBYXn~@jNhR9Qg$}AQ!=v$ULiu1IwvCFO
zfyZVPId@L-Fm)q=-n%PBp@)|e_<>tX@<@e&64dv^XRcO@k%g47C_Uc240aC?*07B1
zfpCLvdXsLUD(eT=Hl@IgM-QsOX@U%&-9->SO)439i_+2r)p<A5j#mm10x^S-1MUxn
z7twHv?1`z9OmLH%hqPLARDyLvnaSgKB6p>rcGgL|d{8EVZep|@>_BZ(obhU&q%2~+
zKuvf|SFGf+?E3)GRyXGu0x!<~(X=Mxs)188`$Jnv`T-IjUt|e6a_J;26ot6DL;O2L
zlVtSlk`zOUG<hIZduZqe0Iofe13*FBb%GwpBnf>N)efqWnY%dRCj}Q-GFAPSZLkFj
zB-0CnFrWAwCeknV1EvXA_CXXk#}juG&Z;;q2ecAgTLHMA68krFlMTuf{8A?PYHOr3
zjZI#G3NwNj-Y!4Po?ugQ&|<a`^pBAC@N)g-#5AZ{BRPlKzdkVu<wr#XATYi$)$L`q
zEP2snm;Fn4SM$G`AQ5&QmSJM*5W}0V3wHZ*+$mK{?jZ%(pYM`9R`f2LZhrpm!InvU
zyJwx#cESwdKNjJxhnc#!Xf2vv&B7MlKbkjY-24nmpl3==X&kZQTI~*%gwU<bbESR|
z$g;$gx@lq4%7#I@Se*;l%CmZuHlx`cBLHI;)g@JFKbG=9wj?h$&dX0IXN#J}p1$K0
z_Kl(RFrk~NA7air&_<TYS7*yQ>&OIS51Yl!bKf<}ZH%$-dMfPBk-)Y;8YAb}!<l;e
z6Jf#|&AK+0yn<xqbeR=9gCCE0yhC63$v7*Rhw^j!pQ>Jw-gJqK@B}OG1{viKhVs~?
z6DuWt(0}N)Y>T>;GFitD^lxq;we^GLR(WcQJE<-2oc-lCc~cqeJk>U?t2x~Z@KgK5
zPOYspNrFoEb^|ZRcJkYkKMcz}E&ld$XEXQc++P$ul*KsC@V`Sl4!>Yd-LvdYwW3E}
zFYqH&Mm3i_J*j$gAnE7t+f{~6d_3D)ZM`ZpL>MHTIqdsKeSE`8^b!Y?Z}1@nN4VJD
z497ia*h8u7OWWCtU$Wb%gaFET{YEOp-A9jjT_uWCtc?>I=OvRyeMDubQ+sFhtam%T
zt7A>&DpsV8;k<BVR!dZFlBltBx9Y%D#dP{x9ue*ANd~NAd=~ncqc`D2yVW3OAeLnY
zV+^kOlRXT=?LJ{(QK$10D&5(bxtz=8?d?VCjt_{jH8Axz3!i<6c5n24!=qfmmknrl
zxPmFXEHGzDtzQL86Ey^#(3v6oUU3u|8bqC}&rS03`!Ub@3yRNa4m6Yr`DUCfE0MoB
zE$)i-XUkK*Y3d+<wmFLn)zO>`bQzT$LOaHy^y7TNt3KYuDa|ZQYCyypPIpOB=s`rs
z&teH6@Q~y(W1ml#{;Zu88JSJT$>1wt|E##Wr`bSlvs8iq429f*<rAU$e$YHg>bnt&
zN}{AX6|K0jjg?8}z9Zay^h%`E#(A)q=WN6FXjdZJGCv)B|K~pVE`xi^St0&M0WZ<C
zS)p8Zt39219uoD?4~bXw<&;#Mr-MReD~Fb*t5ED@gb~f04oStYF^>9NgM9o<AfoAr
zdd^Y_@|2A>`=Kyj;8&PGSB6a)r_CgWAU`4}svuS~l@hmaH9q<lp~fM?G%)6GI1)~*
zEbMalz`y?IzZ~eW(?RR7a7rSKySt{w^C-Ju%*OHXhA~+&u-{dzpBILM7SttB)+)->
zbA?j2;V3r`y1}E^m%alz;w8HA%YFqR1~*4uEcRtWg(XknnF%LK(DTVH;sh{r%oEk%
zN-i%{-9csYY^;(>i@fKu!WhZ_@W9v=_936}2NNnZ=PPh3LlYep>}eavdQ{h4r<$4<
z76FcdxCkw=Ww^2Ow@tz9EQ=9Qvt%4d>^E-OQ6XCPbmIrM>`=RVO_Dw?8f1Dp8ln$3
zSKXm`q!X7D5}HfZ6Gd-=W&CGjdoMZU<&_I6zu${VnjVpBbE6G*F(qX)Br%1vK7ORv
zbEV6wiX8t<KaICi;)~fOjYouQF=+{lz}^ht4+FIRe3)-Sv&{|+!Ln9pTe#L<rR#1=
zS0~l=(tT>`X9t8R*-5pfqyvj8VOHl@iB{+SF1fagiEFlG3#yzSC8aUz@|~)tF)us9
z7{8%jBFR$cN)afBB_hw;&LoQ({-y57dEJSSpTV-i`3Xm;%@J*u0V@z)v*VcwhT+A0
z^zV(<p%t4s87~Bp$vQVeo3dWrUOu*01Wy#ENyXqEPrs^1=6zOvr3lr;EV#Q;XPvpV
z9UFm7-kvX8C#IZbn8ugtIBn-tEc4ogeU^Ffc?CIn)bH8mP=Iy<3D%-xdr}p1_lFz|
zTZvDNFIA~{VoI@29nGPK2+b=*X%02@Vabsbu4<9$BhH#rJnNq4T9?_(MEdNi;Z&H-
zt#1eZuA7cPJL^?!QxF2#7Q^|%^IJ4DQPSdxw*^Fhx!G&TJMo7ck#7_xT1m_cj<r`A
zia$xT5$<jJxD5i?SJtc@N@7@L<X0_F%8fW?gN~~@!0#NA$T*GlTsV!jNH|WAJmM%$
z*nl@eUD7!+e)X}-H80`|Mp(!6Vt*6w<%QFb6tksGn(QjR%AzU8pxDl2THebr#mcZK
zM#=2R2ox>WlXrW-{8g#GwUwY%7sy|hPj7+Pvql<!GKJF!h1cu|_gRp~;<jL7iDEzV
z>Lc~KOFUhW<)_@*09!swHhtX~zrT|1E!YAVN$}YM7qG=w8N0zQp<isp?C%A<!r^?5
z#g0GtH5;*K{S#l+@>rA4IR|!3sFQWu&@3q3%~mE42#a&Zh+<SJxnkrU)+z`E>{%{O
z{m0>_<iFZ*p0LS^P#@;oqW+He^t68>SZrG~bs5?ZoXD&54#B-!ubBnQhF)|BrONKI
z+Et;CQCA<BrU1^c$v0L1_$H3&O&atuP^_ftI``s>O5)og_0PN1pjj1PV#LP46JgkL
z`2b>ei)B~dq44~6)U!;;*UoR{eQ_ksy5Wnh!+27gu^L{?x~y;46LRxNIbyJdlD&ev
z$%{<PHS35(v5aBg!gu-OE=V0hW9c1f!>-6bq2BH0+BhDw?thtk-eR1h!xtkev93JO
z{W1qc%LE!~1u~=D;;R@ot7(K{%|aQyDR_HP^Xj_uP*rinbZ)?|nZj;s=M5udU2*pl
z+_F3PXy@S`Y!W&nvgQrPW_+<bJe-TVBxp}rAv*tNn-cjtk#<SIbhARdvxJ-yG4M(`
zBG!MO$1jnx&k9~R1D3t{S|cWH<7*%b;y5tyew21Th?t0nk^++BN@o^){~)CHCYkD0
zILD?ERAG&s8mUVO*aprMSOiY11_N9ckW$kY*KhqQSmS!)GC8B29xN9wJ@MtNeTj>W
z*{MzrxuG}>&FQlrMdEPK{i6R&BjYGFdy#YvSV_r}Q252n%^(Z?E5x4>XMKV}<TzvZ
zhd&{gG?gBA9br}*mme{yPHM(6r*Q$Mdz@5NPM$56QoBTBwejqjP61qn<Si5S$@zHR
z{$G;TAElA72=;NhWi?1<D=Dq{Dpv_m*rkZt(<f7}aaG1quOaZ+lT<k7N7FbI7OZZ}
z-#eomnbQ*uV?Kc@7CnR1EaiB$zMHpUV;|W-KrSGlZVW10CSt}l4`cSEKR4`4VlTG2
z#V)(@X|otGVkL$y2@dCKKaP2uv?PrZ>ji1(2&|LF{5g+}slvYYX-Q;papwT@y~2T7
zHlK#ey*~n^z{FoVg6Z}O+inW?AZ#R<8C|}GgIfrlzE<Nc+&n|;!<9HSHi743kV{Io
z($65*ER^S;^l3%T{QgF%B}l28!x~je^7Vg#Ul2oz^VUEk3YelO`4~g)Q2o&r(8_sK
z7m|EIc0HSPM=82;BpIFmFr^>7W;D%wa>`|VwOF`rAF6VBS2kyrlQBRqJNdb@PfJ&&
zBE)<LJ`AyYtGuo7!{veXi2WiyF})A5n5j`XHNBstg4>>Y(6!4OT8KsB-AaGpv(FpJ
zgYwImzqikOb4A_7-lwuB^h&Su-+d9A%Ww1a0SKfM;IybRx@{h<D$)JRCpeY#T@i3<
z4&43~lXB|$%anOGXPvy~@0B$e+DvgyIz`X&Ri+?<hp}a_G|e{Rd_)<^fWkgtF#g~y
zigzN2%47>#bs-b2QZk+;5h;eS=%%smU@xA>k(9;9!QJ`x@BHWxQneK0*ZR`I-gyi$
zmVYx?$4gAo!Jhw>EF;jh)4|@gpbX>JX4%1>QY!^kZw-6L3rFzS(6(2I-iQ0Z*btE{
z6;^KrxUUOpV~Wq=wc_0PCx&Fa(Pv&WCj7KZ8J`<<Ic`r0*Y`waSp9X^oV>85BO@u}
zh??&ysqE7jxi4sBf~2N_<@8A*p6erQC+=O)OzcC{8*J}8V{v_)>Qz_L7Q1Z6HEpNs
z_RqA%hx{TyeQhDu&kc@8(73KPgFdI_MTWSpK!d;KCG2x>+*g!dAS0XdOgq1IPs;X(
zjf$VyOCQpV)npANSA!ocQ~04<nE}{Uj+~j{K-J|>Qh9nS#xbuK3RAgzV;Qb-3-Vh`
z;gDh4c`QGH`18fC@9EnxH6tfM*QO1`%Ol0K!+m^;Ir7^1<<Ww>$yG^tvq7cQHe{#U
zq2;NjscTPt^DFm?o;~f6PoeD=p>jRj&bfJ4p!x7BVSaU>vf`fn6Rg|Jm_uZ{9xJ1O
zh`F?;$n)<At;@7&YXuZ5?jes}ti?yC^ItaR`q_9k-0Rmk^5b(G78=V@Dp%9GeCnu!
zv?8Lwh2V$T#_>m~69_&3lsdidwpU>^a*9e8T__z{!^u}(YYlDnC$w?tU#VVmUt^DQ
z?l}~(xjx+w!?muaDne^6X-BN_%}M+GA{p<e`mXcK&!pQ+skhcy<=|eOc>~-&{-SQU
zJP)>W?bEaH+uXuWFddt8zWYX>7Ub~=hn1BhXTHAtoYICLF<))*Bao+b$8uyX>75lg
zJ)VUQZ(gVG`D*_S25V%!vWG@b%-M$apj#f!>1Ot;?mmyase4d`R85wim7_%6NLy?}
zi~G^3!E_w|zeh5qYdRw@HrdCPbCv@8w)T0+H$iXJF{U+RRQ}BhPmnxIdWCggJ?t*t
zmGSm@%N2e?$xqRDtNfp3px=t8md^*|AVTF2&E5v3`g=r=Fpa80U6#&dJ6I`#{J->;
zVjE4tVhJuQ#T}fxP|&Q^jyr*fGEA@bMF(w5neS{55BxgYxYDi$@deRQLa@lnt5TDT
zrEjH+@NAL?V!SNXn(J>{Vx4V$8xo`oz7R=ah1@6UP%G|#P{E7@rV~RIAf%t_yeAz%
zw4$K85IjezdTMg0I8%AGbFN9g?=+)mJO9pgux)rOuoD7N+*HFOy9Mb(dxx{HncP{S
zGT=cV0(TN=8PWG5>bC5p<M?N$fOT`PiEQg1+yrkAVdY-=d;7p!0_TiQcy?;d4;HZ0
zr;pm3I+F~5dA0)3gqr_c-O`%2@=wU15l)6|xbec4n811VOxbsYaCK*67kj;~9JJ-A
zoU<wGnV4QjE@T)8q7tcU(cm0I$}hw$RqRW&FHi0(Rkb}NTx8s#I5(jw?I!h%6nu@4
zh}V{oPJhDGr_E_67i+Y(dbsOV{Y#24BrZfI5S*W?DAHJVE88etxss^%U#7J?oobS(
z+L#wIaTYaK(PQw#Ky^v8rRF)hFFD#7k!OaSY)jSpvUPk$!{AM?kRNS|*lnU$*1mH@
znLSy}>yGUbj@oMj;2IBbox_ry6;PdZ?@^ArN{r%Fs>a=*vrRZj=4~A0ARtthB`lXu
zbd=zTm;B;RkCb}8e-4Yfqo6%AL6u@`B46rb?Lxg&w@qX>vmv0JRpcPMq{Hy<7hj72
zFr>%=-^S6ZwMTU^jqiykndkQaIh@pr=BafAtPe=tg>Dt_(zO{Skyh9ysijsA-SUss
z5;~zKq5xlv$Y$d5GhJvs3F1q;AC=wMz7SD>;Ic&=v$yl$%r>dA%PD!fd=>QV?8P;Z
z#kU{E61C{59aWTXc<?BnpSXx(ON%A(RkG@=xlM?Bt_rT~5O9D^&!%2p=MnZmnJOLe
zOA?g<X#l~UNPc3)oovc9ZB=Jm_=YOnz(s}`o=~(uOmnp%{uJ@1Asnn%Z%})}7en-n
zRG>!kKcyljFotZ|@mBK9I*{6#=u(vlas}g(B0!M<0mjm%xQ_mNH2Nte#_9wh6D-E^
zw7zguU$q3CCP_?t>H{(=Cck<nIwX#DmZ}HhjY9pGyQmWKTT!IO7h=V__<aE7_8x!b
zRULY|x>>d`Z;>H26dGUOo>7%8mrOr(@fr7_xt||GqRuwBx?3@45udLQrkjMC7+9@~
zqI$0QHh+25m9@=R)^_n(7}AX<!QFe_T{hMIdOytoB<{4ONS&u##m7<NV4YAw3OgR>
z%x1`(-HI^YM@3WmiAaGp3>cj3CmIB^tByEtssK_hEmF$~V3+fJwzGI40nx%rw=^s{
z!{IOT{wnC?8Vh~jxU^+Qs?Q<J;G$ND<a-%84}tfJ<*>{%d={Ba_!hQZ1Ev2&(`auD
zopFX^!YKM!V(<sdbS8|qgfp95KPB5=nxqk3R77kTPA>9po5*iP7Wt;g115Tyb_V#T
zzh5s6Nl_wbW2p=<hX7EopP^hlfqE*T*EP~V>maPnB*L^3)in+xFgi>{k^r$tEWDi~
zUq>j#Iuo<Y;Pu(kc-h{%JZ~}t>X#o^dAMRdUGbPA3q~A=mAJJbWwjP#r(&_k`$B~Z
zkK)`Ut7Q}iKYqg{!n8CNrKTLq;u<RNtIF^&Zg%v=66R9l34Dhndf(YcZ?VaJMqfP@
zh%3<6uShsQC<}d)41JG@y-tANP?aJfRJ6Mjj_dLUELU*TCe-})KoM_MRr3yiQ|v4=
zZ#o(H$niqK(5!5!`t7RiBt*;_n0D1?eJXf@stM?xYbt81h{`fmd6*jXudO%>Yto&J
zTC>{yR=CagqV|{k;Xk+gZJ@#d>Jb}N1UeQKg(d=k<2Ynttc@%?Y(7~U@IZ{@oq0=9
z!B`a6STIdjQMq01%eHB0d?wo!I*`u!SlFS{b1I$~jhaxyz!IFSe@UJD)^VCbIJ}>X
zl54%8N;m!rMmn5^-BGd;xDe9Ri~eCyyjLOIwC6(_VN+VRlo9qPE-P)S$nf}BU?Fg+
ztfuOBT+<$5Z&Xx~Im=HS%wG3Yx+-sNZIzCyq9YyjSlah`jKwi!&Sm<O^FWBtyTU*5
z5I49G6rpA!rsBw{MQQvM6_4ykBf452<z%szjrl4o&05NoqpuE1Jlnp9mW&&Z<l4XO
z{uQ?2>q%P2$M4Kixc=TY_Sarw?F6)wZz#jG$&m7lB<(2N#lyJJ-$u&V$j?aJ3CfAu
z!wpQQy&y&f4o5kV(Qo-CVQAY*2)2^uC1RFjLCB~+nsJUShI2|W74tN~aYCsV+Qs#g
zMx1q&aRyr0hO=MNNBeo9D_!`BsHM==XYD1}MR`WZ7j)xYHt1Ci8mNi&8}pFYP~`mL
z44luZnsamLjJX^BBfM%}tMV1}$Kc8k&SimGK4UeIsQt!J{o}6`(Xc;%fY9lw3J8Yh
zeW522&;ccF5-d4gQwDUAPF3Y8yWzXWJZ0la!R)XL)|s$vb`9;Fu6CkRZxzX&E{}N4
zdn#QNw2I2I&|ws>jmiVy6{sK0VNFr`<c5tm?@8Zo5if!PLNcj)LV$&i9|j!1=2*-w
zv&upnD_%e3KM^q4+JdSwY@1B({D8c>#XccMZzuyVc*y@a2h&AiThA5J0;BcJ_9lI|
z7WwT5Zr4=k!TE2(e)E!V!0#w!eQ(p9N&cumi<+=bx@|8zY^=zC(SD_*t@4eks^~SB
zVEA1b7SMZ${BxgDb26D`m|RSKQY6|WRPC$Pggu*OCL7|N2Iw6D>C&PNs8ZDlqD|F<
zQN*+o3Z8v>aBbGh+OGZc!_5QN)F=5CBEj~6nT`l~ZaQ*B)8WAFjskyNh^hUJq?DBJ
z9egnaiTe)*qe+94h(DO7^C=Z0udiG*Z6!sj^pdn1pP1;yn+7{2T2~AjG0@h?8c_mY
z+ZfSo=o1L+2)sat7i%r}n5`lC^;<=+mK3F0MSu%@8cKHxv{DnNc5N2Y5)c4Q+d(g#
z#;`K|dVNM?Q2`QI3n05KOTu?}`q!x1`wD<wot6_1I7<*A<)E+Eqra~x)2q`wt@>-$
zL=|dP8M0(qETn9+TeaG+X=7sWho$$IXgvc;wd^ak-Uz5AnIHq^qXR|U7kp?JvD;Hj
zWXJuLYw8NMw2WeBsgQNpvN4B?)?zsF&J)Wq<Hl6_$xJCAavdvN(=ljNR<W_}5Ueq>
z;u|MX)^rltFv(?LxE={Q&kNDi#SBw}dB62D`5b>klOCRp#z(f)x8kSOC@|;o6;v)2
zN3CJLWR+ERUpGF9Rb#K+V`m)^Ix<t-Ci}^@(C3OQ*3F1ag6&i%FmI{Gk;AFR^-k3>
z8`qSs;MI=0N#@CxO1yHP7i~nrH<DJ@jH1vbSucvGJ`2&0_j1s-><k80iE3DdKo^}=
zQS_eAYT#Zo^lN!dMGnt<61D1pmgO)vHk1@C=eu3eE%%N~*7;N3bh?s@=-L;P!Thac
zVsxfUcr@&&s`>8TXp@osqaAVJ&l%n3N2rlcF7qfCMLbuX_7NnrZdQ>$=G>*knn#rI
z_FDFqUGnxU@7B&QzS$hsnVixoyWy|wt}5a-P3wjxuG|Ai7aW><!ah4{+9;Zju}l^!
zxY|3D-4syWjOkTgcU@8R-j)o%tolOmA)XR^T00r~83Bz6GaUogqqK(wU0z(j1~oV4
zTLlp<9p1LhNg8XIWka<3Qd(Id6>iW1*2XB!c6P86?55g8sQ@pS*5Pj)+=6|XaH)se
z+r5OiUgKEbO2&D<ZhKjw(A`}phfzq-JPRlA9<+!Si={qdzp%g60EH*uX78r`nEATI
zu_U0oPa}z7eq^{fxL{-Dx2oHl*dNaqB++Eq<PY&+)#(qB!XJ-@S$qpwp1sNC$ulxf
z*L|AyqRH^U<jilw^~wPEi75Bs7guiotn}ebd!W0Q%(0aJl=o<pB>fen&hti5ZT?`l
zua&@sLigvo?9IMbhNG>W6)E@5$I(MU-H`OOz7nKO=e_Wc5co}0i=9R@lTf>w!i2?}
z8mAhBWkbcy0(vhW>R36|>-lF!VZDYJ`EtgdCRqt@b<)G?0DuRjKsHn)O`cZ1k$CK!
zUb_42>zDTc>bI3!vu_gM_^tgP9K#(Lo%oY6tITRRngp`jKb<=~S%yJ}Kd0um40$Yh
zpDGeMUAR?9;VYF$y%zvqR&hd+Zpe)jhtP}fiy&#xw?Jh^>Bw&+M(K>R=J1kw&DNr@
z&Q<#3i)Mb%Gi7&$FxB=70M{6V+i3*MPp|9dq0$A0uYyjBa<z8FhWUx~Q-`ZzUACCT
zS*kzK*sn3YYMV8?jxA%;FMR4h!-V`+*}ncITSaa^*Yx7%P3}}-f4vUiwxn!oo%$4c
zjjURJH?yR`?{LHf!cxW-MnD(YR8#csFV4lTsqbY^AIRiGwer=sRc*Rzcj*TME;W){
z*Z<<tpUvNT592|R>Hq3HLv_SNojeAwlG~3&f>6xYx8fit)TGv8FSusJZf8J7I5~((
zGft<n#QYuGR{hw}R?V<}mDpgU;taLxM(!7Wqh#$~RyVjD=CZEpX%+Y!xhUb@YAJtg
z-!M1-Y46)sHv4P9YTl)@xAt0V?_BBGeWO7~k{@#H;3(~-M91&VPR>Vw%s_4k)T?vb
zjIcFfx~+mOV}FFqFH#~Gs7UGb&IT=m*UdB6b)_G2Jo~t12Ws=54mWgUivl9Q(NH&G
z%*F526-%Fe-OX*h$JQn9j;3#Hu?^ORno{ylxt2IvSB=&M7jl=m;D1G1UrbqkS(;7*
z<@Ka!Ggd#>`gOspr8m1e-24+frpr>_eB-m!X*wP-EFg^QxJzxm0r_R0au)(t(%5qV
z##rlCkSo}JLQtzWwG*CcTgN^E8=BgInE2A#Z<kksqOb*<aoqeATH||nkomQir!{h|
zb2RzTeyu9^5tZrZvThe?Xc{S`Ji<PZ%l3J6UmN<NCfC+}_Ja3nE7w-&_IZoN;5`1a
zpA5MC4wodbU_T@GFUB3f+N3LBIM|IITFf`)4<9K|vEH&`KNDT8s2{12)c#1=jpDXi
z8`h?var!p?J^oN_39soo9r%R0jz2-eJMFPW^4K#9IO`@~oQPH9d~RxK<Z~K7g8%p=
z9X~Qi<K*HnSl!U!^Yxvtsi57WLu&4LoEsL6qRCz-zWp$<bHQSbo$U;mx@=?0DYkQn
z>%DbcXkOXC_uuzsW8mZ(anvoPzqO^m<zV~#?~cx%;UHh9=`!8Akw>mgjsCwDX_)EQ
zIc)j2bu7bYqd`b1R1xvmq@ju|c(ooNV6Kt0iC`M~_uO76<Hvs3`7Vxzn~_a3)Zw0v
zirM{?@ik5K)LY&8`0g3yHxSlOB41=636hS_x*JEmjM1O4$Sl8$ImS_Svj;0Z!>K%*
z3^6ju_n{Cf^(qh1*<fe>1<%tC%XX|w*#TEOs!wM!(M)VW$2u4_*+@FAov6tmouv9H
z#D2sjX?m2|O4e><Gp=jWf|K<tP2v^vHbNP-_0~<SwVgxE0iB2*xcmlu%}gzu*%%I?
z4&bNZSdr#7Z4LNfEp1ql*0E9%SPaVOVt%frh&43Y<Z2{k!}jbE?0#=5^Rbu6(r&6?
z?$7F=J@8-g$~L!aD9^iD&d!Yy%uJj3i#Twit(RFk+>9k#J;WgfN}vpZL7;pI;LTY6
zB0<#gZD&B6wEb3oby8Swvbi)I?Mn`rFL&3;_`ojy#k2EpNwAMFKG7Wj4Mh;e@dQdr
z0Pzf3gzt+x+wp7acx79f;kKAyX&SDzAMyM+R3}Ev*FY<&2W7#8z~%2MJx;gq75<>i
z=5{r)J7N@f6uXAWKAaD82?oQ>-vo_Gm7m82zxPKZmvV!_p|r<B&=0X>xxZGKluPG+
zy*O37I9&ezozadyIGy$KC$g!VmUS764l?>+8te7gwVtERj>c8*;<=iL{po%ED*Ds!
zQBLjy8Sc|D_VepkPN-l-q>$ggz3-7N_Yq5V@9*vRnyvEaaP@+eISJjj8JJRYtZ~97
z3}h4lx;TVc<qV0K2t*WcWr74iIAI)>%9}a@LL`hdf*KYUniUYT%`-Npa5b-S!)LHP
zP1O4}o1J`+lS6)-cW@-LmFUM^)vBkOQ9bA_luMD0?$!QPP7$hfEIpCC{MIH1i-Y)u
z7vOQe@1M1A`fAQZWA=7q^VqVQ(}63nX+M}G>b~UfFDADPlUd71BM(>;sEW06uNcLX
z6%FP*(ite#PU`Z;vxz+KV2n^cSdvkLc2o+@Sdjd+=qvlt&)FpRVUTG5^AAF+SUu}H
z$yz&tso|~lK-03Q&1)OUXHf%=VGtC77i^@LFQY%FBIGnnTkZ`$66^G>ToZOMBx~?h
zf~djE(60;o6VbVIH*)LHhY!51G-@W^7byY{4G$jXCC?L#(o+MCsyj8^s(%5j*(UJy
zidfAwuo%V*e{^!)Q%8B<)%P@0e^;UY>xlBktTpERxte<)5ijX8GZJPT>_;(0q}!b6
z2ZrZUB_?&PA-;Ec|I(~U%kJglJ$s_2U5q7c2A<affxCGL{B?Pfff6pr!hxcCCA@m7
zw~B6!@WQ4@=1cCi1fj=+6ltrVq>D@4z6EdqQL8h?rD@Ki+eaC1>2Wc~bTa2x#p!{Z
zL()C77i@4Nahjf_vJ4&H*p#8Z=Tx(h(r1w{Jnf@-%keUq3ZD0!8_F7yT}qO997^#`
z1;gUVvTO*nYc2MLVoAVwg*UtARppD2xa6P+hZKxAoKQs9oI;l)ILG$IJ}J8((3;)?
zd5=l%s5x!Gec_usK2vVmZcM4VV91~%_*^D9z#aVXoSQY&*wg%%jEO&^GF-2=SIjp~
zk+|pS{KKl`pto$ax4rnr!j7C9)Nkhexym(1>E4xWL@zg@2%wj%WtFCp9Y_()0XyxZ
z-TY_)+=Xb|gC83A3!o`6?3v)6Q|Nh}%Y;y)Q@)P7>b)^4PG);MJ^9Qs)3hwi`F0bf
zU<lXf67K>wMddUG_v#`F#ym5^3kN3f58hQ(%(!5iHMnM08hfW5QLlVuB?4zhW+YFs
z|3~jVOP^XCM{Wp+pJ5tEo(1G`H%m6&=g#PFxye{R*9vLOH=OV&v%>EKWNAzlX#K+P
zi<y9XJyYX$%P|Kg=dPi(UFVu12S?r|2I4OL(ub?bt`dFw9Hz@NdkVj2AM5b-lo!Wi
zIllL-JtyxqDYy~=LybE}%{?$)x#}i{6phr44nTDj)}}j@!#S1%#?Tz?&n^iv0bK9C
z?Xeot(7{}7adlf*4VIqj23Y@JD;@wgV+;_*mZ$>y|8hMUt+b&U($QCaOJj_`iq+~V
zE>~CdHU0ba1GM9Ov$RdwY}FMz7Yh<v5)$RG0!5n6RWoE>=H&r|k)kyy0)sf9Ifh(V
z8Y)B9jj%NYj0ZY3{pUV0I(^>TqShD_U84qgEy_AWm=s@?p>woxw72t^vehrKd$B%K
ze9nm%zV4ct{yC^btLi#KP|+poEoVBN>Je96VAT~z2ex^@rnoDUb<@Sw;B3$`CjBlD
z{qkYPt08UbYKVfjz`)QA!XQ?T&Kpy-5{h(n&5$9o8>=ZQyw}k*#)$Q)DQdjemEPxL
z=)8ZFQ?35j9Bp3PEfH=0NO&fx{(w(k9mU{@5lTPx9@^gvxKUzsq0Ks+@Hf~MVt9$3
zIB?t@AYxj(MeHoE1jgMZ{D8#k<hv$BibR{qNY)W~7JoqBoX>Te_N^`CL*|pZ{@b}v
zR*+4`j551xKe!P*Z`fkI>DGQfbyd`Lb$eO|j1riD`3O}tHxfxL#I-he0V_9>syyo(
z4x4(#W{|uXe<h-z{HUz0aD(g^MBn_nkNyP(@tw%p^$lY9wFLWp9@HzB`SI!V3Pt;|
z4foYye)s&m8=wEOM&RymNMz81n!efFTgFpHQc_Z9`5ah}G~%k*V%FF2kx~~oLcudW
z0Q(W%>{XlEgJ}Q^Rl?b(rj>7JA;bR7k`t`))}C=~+an=10v1O~;>1f1PYU7@5g*M&
zQb2lee{QxvzM~=-$2Kb)4>ji3O$`#iCxg(k<i+2#X*<6<#+wF857B1=aAPe{B~a=L
z-HVj1E&X}~G<W7I$V^S1wasSt&0ijBhi%&fU$BjIy9v=xwpEucVH!V(^6-yJTjoas
zBD<Jwaqqe9sU~ggaJPQS3bzhexD>4Q3k@QG-c75_gIC+vd@2Pl_Cv+|sJ5@y?z4ew
zO)_ddXNS?~(pKxUDW^4RUB#6`A#PaH<cK2`Hfqgb|7*iz9kl2?2VQ+x0;4e@gI1H4
zOsT~{rO=?GnDzev4BCPgzl<TO4>?%>zZ!9i+!-K&i(B>De{G1CYm8dkefn%BR%?w~
zr>!*_);h8<YSQLIftboE{+H~lEFh|<mVkh%my}wU^5UhJrN&D4-<22NurZ8gBIs9O
z8s6GLiw120KtdqZhp|9+Dnu*|I_&vI=uwYMT*2DEC$t=kS9D01z^f%<!L{riyI?fr
zmL!2p0(nxqK&|;zwFzE5Q~+!WI;oUNA-KkSf_~7VL-RIa4JH*As1Ik~tszwYre*q0
zb1pvRiyiG^Qt-61Y`}Dx>ICYGU4&TBw4&1o-_5E4B8*_y(yh`?GxsUxPV)%CH@M(?
zB(PZUGapj$Jvq3~5{qW1dHuKN&zsd}^qbX6RuWkzjXujMaPa)@tCXGQ6yiS1&`Oq@
zRWk@5jRUe9?K2|~LB1i86E<i;?|4u_Iz5KKY1nhion}wiml|XsB~b)OLGKNUzm`-$
z%+Wxc|KT-(@WHI6?XyhAxLNh4-)VM&eYpTy39I~cFLqQ=?m)ICWMBlNtAf&-_WfN!
zD8s1Q_Uu{svtMQ4r}2d#2JY$9dcowAf_7yXD46-HyIyxBu=DhU&<2u|Q3uev1_p27
zImyGyPdNK;&^IZW`ITN#!Ynn#Ogwbx4??C)NVZqy;Y8r4$HE40a_p$Bq>m%mS@?M(
z6>-)Bj6EEf$$`M2Qxx#it%wS2Ed2f)a2@~pVZ)B=ZAiEx21OeXuz?H}_uXt1U^-9y
z%7Hb;&b!<|9bj8Xz|Nb8kKFZKoq--;+h$<lzu%0K#fbbLa@t*c8u)>Gf@GczgXO4Q
z?PaWi=Ct0y8@mxWRu=xx7oRX@{(KjgU`qIDyR1IsFe)kqcqLZ%z}+#K$lXX>Somqm
zuZaGz58qo0MEo?d<Gm2HOH$WFpfD8tBX?=&<C*!#?!d#!nQ8lPF2p5)a%rSS8)%m6
z^Jfk_#`OonrTzfIZISlhOlr{OTrtzhW9RvTK@Z$#z-aNUuq;OH^8A<7hi?9$5VP<b
zA^}^&#qBZU70b-Op7qi=4UGU1R{m2s1jx~Uk`CGBnMz?DVgWXW=l>?np&NcHSsD{#
z2p|Au*s%yGJ0-l5B59UxPTvhZ5jhJ#OO26-^W5Og0eMftDz34|mN_et5fJ>IG4+*>
zH1SozzyHQ(*6b@V6a#)5OZ_N6Qv8S!BxJW^-K=NuzfN#SeWgttjVT*o=Fg?vI7bK{
zir*jyBCM%4@!;fK9dB$1`u`c!qQq?*y!kUi#=;Nwf*Rd-qh~X8Qvw6*xXCglW}s@A
zG8=m^wwid{0ni5S36Z{INa3eDaQ~N?+QBRi-b`W|N`~xO0~dRFltnS&^xxRwSq<H6
zShNG{d;m4gO^t=$(-U<dc^;S^SXlVWA#_;yWr%>{IZnsU8v(7w&g0iN@o?5L@z8*2
zGVyqV2A+yQs<89ef@-ky-v2xOGolMS_9a9cU|S?2fR9rH9cYHgQc$a?u%~>Vp^|Q^
z@{6wpYa?bC=p7k*T@aqQ_YU$=LiR%FEj;kr35K%S=ep3|fgOo9+XYKQ5bs22sTxy^
zNo{UsHY{l`hFBE8pB1o^u8h=xF^++vAQBguDwKLCMP#J@hu*Rf7}RoO16|26nNOv}
zo*e$#?7UImz)ZO`SO_4xnjROKhBKa=o>q=C@+2k0zF42Xki+8WgM?-pB>k5NsXIyf
zj|IVIFC8-^+-oqi$B^LUu;r$4l=I)%DnADJIyaT+fJ|xL{-BH__&oh|WR}DZG*iF4
zUQco~UchBT&funFlx|&wZefIO<^K+ey}F`bP%;~QWxs=?ev3u@9{AruMt%i?{#+a#
z{r(r2$wj@-4h^!j<?H2Ka?}7?h%Di%saJ|Vv9krULs=4=7w`7%!kG&p8r`^7b$+&)
zLeSH%>NvMiBdwW{Uyp+7klS~J2%$urlS@Y(t#H>kKIXCH_r%aPIGO2m3D+)Bo*bPI
zuH|Sw%1d2fL_D|0mq{EAISGMv6JVRfH-`w4lKkq0It*epRhcN%%VZ?4)KWRRl@-k_
z#550MGdEdJW_=yJ>rg(boJ-AI{31$;+>S_EcQFq^#WOrsQVJJV5Q1A<uvlxcT+6w}
zt{B<@s9X={tez+a>WK0?(U($bz8FBob#IG6UI(WHAn1pa{Q7J72hZCj@-OVRJWpBo
z-+Z3j+wuZrl^0YnIHDyE<?5-)J2%cw1F6n`c9Q$9B+Y!(BYw6X!3wxXq*G5kf5w(-
zZJwYPP#bR<84pVVMRO1CvCFi!I{2JMAZ8{E&nS=$hyRRzWY?G|{k)c;7G^H{sIq;d
z+$UvLJ4fQB$Hg)KeVuLnkZZjmFkc{8;k7acwb^<=C7sTm!2lV0^MnKP?cGP!+dhrQ
znkZ#`n|-^vdU>=Ye+s5?XX!hmT(76jzV5)qxqi@9n3*B9aVc5G<{oYFu@F18@<v$T
zr2WI{Kmf@V_CCdX;{@7C&4~8BRPs6hgOVwtRn&#_&6Ez`H6O8%@?s%6>*my8Aw<qw
z1<eluWD6=+^XHMo!$N(BtvU$^S7<=U7I}fCBkB!3c+0_c<yLN?KCY&5Y?-CCwVF(!
z6fv*oVs_Id;gP4E=R(vN)%ISbDM@1hRnw=ho0Y#IL1Qmd$DK2cMQVLU*hFbYFh7be
zoa!Z8)Xwapps99Vnx1KB%58Q$yyJ9xY0TWKv2cGO=NI0^YbHp|@p+x8{963=?XjvA
zR<}0C>^&P;!*TC9n81WEyamJ#T#^UVOfS6!dt9Ir7{L_1@vk4*!&5UhY??xRKaLx_
zNO;N^dkpKrjWSc;=HBN$1(;kp1s;n6uB%kH-A?3uxyqOxH}QNcub-ZWdgzF!8d)4P
z9<68O&dp68ZEQ@kj@%q)7Si_WBTa`Tm-L@ln1h%0%8l^scL?pVyD<nf?vJmPd$u?L
zEwhkEvs+hC_Wh9e2zJc%-n~C*uUX#2N>+uR^1z^)F1}_g?1KM#Bib~hbFTfF9`=8a
z`S{afUhNV1dz-3bh%aXae9+B+;yogk^I{*R%f8|@Vv3VtRZ=!D$gZ(4#h!JVGu@Id
zM2hP@0yO(*O4<3_RFUCJ0RL0xp2)ZpdHt;R;}s7eiBwIaQ{sl)CjA7aY^qVZB=Q2&
z4t|1dL17=<Fsx1po|P%XC&}fn{1W{nvSDcVPeH_0z8h?o%0+EUlz|sDH$R;fJ^Zht
zNPq8O%rMD*9WmhU>MwD=w!NjKqd&Xy{?`c8OL427lSSCFAnEr#OGm=3NN`m$&M+bg
z+XZLH<j;O&)`3N_5TwqYP`0OnqnT$21}soS=>L@HU_`pFJHC*>(2&7*=IE>+ih>Gr
z>|}t|s{qy4K(e<^oNr+AB!Po}jp&*C)@t3V<=48E5&<M=^ydV>1k)9bmy1%eL`-Zz
zqa`*GyK2k9@{%kO8>hUdw;dV(#^PaTOACW->AU>93dMN6S_CF+;vd^w`k&?WH~qZY
zf!S%W2UZpkcKbX2OzYgrh3%%pkN7ujD(4i2lCi8WGXYvda2`WcVne$1>0TS^0}G}J
zr~)%FihSK7l}a7Y=%jKaNkm)JpHFwVCRd_$XS2_xCsR#>2S{dW`E@Ef%hqE8sr(?j
z=7@M|LMcNd;nhRs)?>v&X{=r$(J1s-Qp{L_#hxQg8k=vC=<FMs$~Tm&2Xy@tEv-ok
zc^xvGeQ7_NK|VMq`g>Z@HI(G)dL$^nFdXbvuHP8a5@*_1TVDR1h=aaJ8KQJIPhaj%
z>v_;TdKZV#!5I++4aEo3dGDJ`lBrEo4FV$O1H}R@cB%uvxCb5ZXv-u6FM^#88iZ@F
zDyX2yV%3T_c1<L4F5=n7AE-jl>5d(9X$3B}J;GVlbsBTgAh^}f&J7uZ{>Wb?ADC<K
z%NQJ;Q;kgkumhVFKJHqt4<@q{JA(ZOq>Xxz_U1{X@cmwoO$so;{RV`=pv_|87tV~o
z9{vg|h{*CGEm#%2#lRlOx{-H$l1LC;_X4QZ?b&G-ZP;lzyx3`4ZCWxwkI`H}Sf}s4
z6`8T%j_`tboZwl6*d>|2-*9|ii0?_iZ=_B9{NP#Y3B)GLAzU8I16FmN+IdMZ+tjd%
zlQ!2qbPO9t91=~g3Mk4Qk_CVLEIBoGX_v9h#;w%Z;6Ac(4tOLOXG0b5nYw#uI6QUZ
zp84s#fJn0&J(~0nmJ-8y%ANYlY#XuilPFQ}>tIT$v;|kCR94QRN9xGhz>Dx2%v;u$
zv|;IuN%$B`*`{>*wV8&!`imtZN;jZVNz9fhxDNu_tcGs-naxY-qIHr}%UB>|r_S!z
z(iF=+6}E88+izJ?i;^*-n`8ayoys{Y>RmbMT5e2PZjiutk_1mg(9GqV{BF<;NLr7~
zl~y<-T(sQPzLg&w<EF5r-U9OD;)j1QxbFTuOWyW4ZG#pWa}NzCLFzXCq<0a*jMMo*
z3<Te{JFQSibqdtswE_GHga`WU%;So=+wkit^&}wI^tmiLhs}>>8^^L@8N(z?V>B>w
znTcpVSurpnn$+>tV~Z-d@_d2&`UAdpBGOtwsFL7C0d<xL9+;zNH5i6GY8U(6X-sCK
zW{Khr%ee=63{TB;Wf|dqByw+Tc7##zr_gY;lBRkQ#h^OhqgK(x4HrZB>74op+yyLX
z2CM`%O!8dgi}UM@O+~*dw3#bf?b2>EUv8<*7P>0VvXFT7;>cs2F?q?X-`9gTX4W1q
z=g?1SU!scN_|O0XBn1`-U1QEKZ-g(7ImWX!n#o9<VPVMOCL8`WWb#ter|Upjsk9z6
z;m2j^M{zKroXUgc(@Ov2jet4P2^SIz;d_mB|6`7+@BU8Q{tGfNh64WYs%4@$j3<>m
z-@nUd&9`?BIkEQ=t*{Pl6~kdgvKQ5P^~>tNCLVcVn|EnKe8=t;MlUyjLVBGb&D}>#
z#t;TO$=xS0VJk_?2glfmzC;R~Bty1(NkI}58^w#(et0)Yl(<gc$)?zshPV<-Y8atZ
zwt;2u@f&jEKzt!{3jg$VO5MGMNI^fB>@*aZOv;1a<(wAzW)J8igl`Gz3q39@?i?=K
z*xR6d7BM<ZA6Mo(p;J6CCCR*+bz*P(BgCU@8)XWIr|Fj=zc0Ijo-@g`&NLEH>2!pB
zdkk{wxE-r@JXNfa&;KZQ>i9gQ?d!1CWhnc6ed*Z%KV3rs<wtP|#bP}h=G=jB=!`dh
z$e9vt=x?ZYwVGQ3VZGJ!Uh9Zl*A(g>0M~MEox7o~yRzuzZ>@R$nW^8XzKrlSm&W-f
zr|Y$CxHbo6SB3Vs=SJ|r_{r@V1xYB#S@6ht>u=>U75`+<3FqxkxsSK?$$@+3KcS%=
zzKXCjXZxy6*uqa2yVDjkYF-26Cw;aFyjKt>!hC;36%4@N>BB7>I#CAR2bJOOP0}P1
zLRmgR|5I(8(Mdb>*l$5u2GM(&`*%hZGk%0yG(%9Fc(I)ykdVR!pMV>(3<h6R<??{>
z43uf|Lo<4_z@UwoLwe<u>_)*nJi9kc=s#QtcCRkb@R^8uQrdG{IS)j{Hwc3z-;jY$
z5P>?$y(9^}(YAwv+FZVqk@rBO=j~a67!D~@q`4fE&FYEW6;k{417|P$dBx(NmM<Jk
z1!03S^ouw&Hyt>@GZWmbH>Q4Ud4c;St45C5FnO40{6v7&s}R*!Rx<xhn$0j+7e)|H
zxZZ~zZQze!WU^3VB!UlGG1u5&moJ)>eOe@$4;pX=i-brMf8l>~plikYy{2G8`h@*H
zsFSvDqE_JZu`t&rqrLrt`G7%D#Mih;bDIdZ?I=I^D-TX+6gNE)t~c*~W!Z)B+bb_R
z=Mw#2qMNKdlEOcf7&M_z?{!J+zIL%Qj&^b)ucQMEKC_`EwLGVy#5Ow6p1R_Ntjguo
z1-Vt4MK~Ei^w{B<KGCtsc9ulPg|3SW<NMM^Mm2>{VZ#$`b}DaiI$Zt>#71^FJOe}0
z7U@&!wgO2~{u+fXr+`W=4);wZ?K%~$lL*Nlx@T!Rme(=S7cBO6Bx*)muIZ?{9z9g|
zN6(GLV<*l05q)36&NpxB_MeXt;{~4U^WM~D$TykAq5d&(u0n={OH5QSn!Q58oo}BY
zlZ(xU<A~tWn*Pkddohr?MSl!p{m<PWr)Tju%({bo;{$de*IEIt`<Wt%DBC7S2g3M!
zq^~pyuYpKlvvv_>Oh&UenneCT&=vhgkUn0SU+@Iz2+DI4-rnSYiXo8v1Od&gon6hR
z3TqwQ8Tyk^I$I<BZvhDure~E^2hK8{Y>X(y3nkZAvzP5rc=-Pi_LV_#1znrL-Ccsa
z28SSn1a}Ya?(PuW-Q5ET?(Xgo++iTN>)<<i-~G0>YJY6i?e5$5^gYkHH8a(7`W!Lz
z52o=Wn7~r}Bly7D)txgoo#!tFSrDm0sF3{R32c0ko$r-YH_xHc`}dkOiObvY5FdOy
zb1i!;3j>|s4-)2kb_SKaPnMxDRYu8K^NOdn9wx~xeC^_{4k#m!?fNQVgeWq^43sl<
zdPFA`MTKorZnCT8Lr|qYi0?Ar5Sh<NsoDC5sO-IWV977?+J3hpxC~jJ=whd%0ZD|N
zMuayYB4j==AZw<IQ(?(#;Ombsp@C}%$pnwT85&+Hs5mawm3wfuordS{7SdsxF(zf1
zCSRa$^GDA<zvlY>`b*2$O}oV%?wR!6oRIbn{sV*D>r5Z~<CSGYP9ADGUFMFE;QUQj
zB7mVdU$sba{0QZx#5kagVSM*yWr@|)*fJ{%Ucue1ZlOa<`?#I<Lyw92u1V_0HLY2X
zobMXX^@2Zr_m@~)>S&itQvS>dT<Z8Av?Pwg<DeDIVJ7P9jGFf{v{A^$_Hpc$v<bM#
ze8+_Hhtf$LotBh22c84%qWu#kO*<rA`Jc@zvYC#v8Q;BWh*2aP<{UXmB{T0DgOjfJ
z+Nrg(YP@!$r^9}U3dv1{4j-3&(Wj5DOM&E}_Z_<*|C8b&$-4EqOUt7K<vGfwp4{rU
zjICOP>7&sq8|BHb&#IcT75?9iCR8E=8I%jq$0Xxq0@qKqeAYVlKz3VSGBgsu5W_H*
zf&C`#78|0H!nlCwGJ=bD+{W!b!vs)WG7EV+lM(w9j1<0DLj8F=HpcFpnSMlR8mdVa
zUi)AlkwZ0oF`!r(4mG5$9=Kwr`fHg#AtE<gmP>mo-|P!uX(B=mv7)*!$;=rpWtYB}
z`eUY6fM<qM&RYMVQvXm``Dk3|^J{kAe5uRdS$O+29O^6S;N#PnNKSudFxhJ;DT|$C
zEzw8R(*wTyE@|j0>&J^1i2#bQkx&FJfmTJ~P6QS4sN(Z(#OFlTfiJ%sQe<Ti(Zu?h
zBz7K_Bg6#AvmZ4<RF&Uxx1S1WEh3`K>hwr_2Q*xo2a0Jbgk7MPx1M6C))SBjpir0v
zki}!klohjzB<PAHoRurzDOV*Dvnt;ODnmPz=iaD*3G~K26u?h-eOV`;=6}-IFp$KR
z&v2{Pksed#^}P#%!^Piu*z6Lq-Qc=;FUlzoGH)GM!f#Uh#P?T*+clb<z^7q|^H*JP
ziGOP=iNF{C7DG{l8%f6lXMliNH;V1lLt*^m-vxxgWP|5-#*G9mVzbF&uu1;At`V{N
z4C>mdJHF4ii1v%%>Nf?VA6_N121h^mGY@E1@-rvMvo*MD;*PdAz_8oT3T{^NT&2YN
z^Pq8@Unt{_dS+ZfZzfJj2nor}r`Jv@8FF)jKK-%F)!O+a-U8QVKXrep)FyS|s$zM}
zI6mC+ypVy$u^RPx5KT345(7mKy?jVu=Ao^Q`SIn4LjSS7EKn$tqjdVgVQt{<C(&Ry
zO9=AH4#mKM>{n5soh34Xy@+pmC@323n>jRR0Ranl`RGL(@+#vqj`71YIsmeMgj(1T
z^~T6r0%<rsKidfpNp4#H5-RYKT=2~ZJ||2#nU;L^gq0;pe%5<)=Nqcved2`y;U8#b
z8w_Szf#!%bEPbtS$&Gf=gNh<Sb)Rr_&#N~hG6JwCad5F*l7|Kb@FBGaum(Lt^XvjS
z{Fsg&F==S=KE{fjuvYhC7tpS;xno-+_AW{Re-$N?2{R|m$1>H#Hwf#xp*h}9hr=55
zeg7may|cDWrZ0(+C&9f_<KYJECpi`^+=MX|IGaqc2hx4|KzO>`Qu^laDHdhh>*eH)
z<EC28vSo+!i#mKeDUy;Y@{2CORhB_jMjl5TJ^4WKlz~#=R}+;l`8vYHVBQ_?g#)A@
zA1P3iRbt{Bl20@fN82_`+lE%%m|b^Za)n-!xOes_=>t0*Ny}ZMP0`Wx50)E;)Ox9`
zkYJYp6;7asl52gJmaNhp<{+uCI2-$(`PVK{Ug797n2a~&LuF5cJ!>)Fd(qkvLUer9
zh@MbkYwxd029T*+#E@t`uz?Eb<(<$%m_Ey8EjEUJ-W_3LJMdJchr$KZDxMub4G%7@
zm|q%I8V?b%-<r0&rV5S>@e6OZe-zoF!~0-CYLXv<Km54DYzYbpbRTKz&_SmuH`Vrn
z@;z^F!k5+tCibe{n?+ki%jeZCM{YjP%-)+@p0d8Nf;W^FIU<T(;ZADsE6mWZEYJ(O
z5|Ce+2Jmix9)E0Exw(46QS*}02o@$sY-i{r5riVG)*i>#ypOEfR9H2Shk)oDn_=g_
zwz`fp;V?N4h4)HX0|OKb(oo=(*66%1`US)@4k<w%I5$)vbLkIk6%swv&tCA5lH_Fm
z6lKWSb&tAXl+jt%`-s-R`*9Z3d^93hUvQ4_oMc=RGgv8Zt$HR#1<-+F+hLVm<X=dj
za>*QVp{B^Mu4JBL0`8Fy1?3gry!Nz|K})G>pr=$d&n9&>&kFSwMUM}<bzl87-}O97
zqgHCr8&fIkXgVQ4y1S;n((iATs|Gt`%w!qWZlipLT6%@jW`%!;_K)@nGJkZ2mQRoX
zqk>N+TY<gb{=NEwllgTl!96Mj*`eo`p+8<Mh8}nl-OG-D<#U;H;q5J0vnf>J{!fu&
z$Rq*7_2}RCT5MRYL^b@2f=vO($Okqr@%+ZcWi^k(KM6|B5ow$J2XVkqerh1KD0!03
zJJV3J_3rIf%vV}0(kuC#YN~@L8rWBgk)TxS#{K|b0YjGNb+1!2ZBfLgC%vAV{m{FG
z0hEpOsjTx-3hU<BqSbD^DUAy~+vcqC_0OsDFWGSgg^L<0gwZL<8A-oO?ncuFylPeU
zM(WM*&fdg_6~`W|BG>RrYL~H%(pjW_D%Sgj{prG+u*PU^BhU6Na7T$L&u`$46KHKC
zKi?GYh6qLx$ryj+L8bx69ZmV#UZ;n;B}65w2X%11bp)^I6_n>4LD@sy^wMyt(oy4`
zzV`Oov2amnGrM#>FZ$(YLDu@Yn-0Y79{RQ^iaqI%(Yvz16Ew90DtOb$(UM(ES-i=o
zQGvnxGP<WdF14E(n{v}jZHBg6?X&C6Wj@La<LWsXjaEiA{3#aITaq??ncU<nj_wE<
zX5&(Dgn@v0v*T8j*YdN(5uK+yr>$l7YnbgplkL&L7GKP+=(zNyIjaTm$wsB~ua+F+
zB(qu1Ph(9BGZRb300X?Y*J*@p|6%Xl6Y*3BFBx1J@4<I;8A8-+gj3;966Ob=QrSXj
zn6?I}q-~E!_jJDAfYRawnoB7WdfpV2hK=Yz94`}g!j2e&@xp!hneP}%q!6iXL@yw+
zd#7h<cr_hGO8HnDT^U*L6CK?{ZPoC2ZN<;;Yu?vUHD#!e>%HdCw11guwX@f!AZ;vB
z=LHB`=%)n!RIA`NUwSvN+yW~1EyA$nNG*(eBr=CYZFZd%aa5Y{b!>tJtC<&^@Z6!)
zN=PKked&M3tbE+lbv(eCIvg-<r#<(4z@B_)CZef&eMo*NJ@{<xnp$zkpJI1ezGnxO
zb~*&W%JM;7577}*&a+zVut^;C>!6Rq7qHwt^r&S?>8A5~WR~4YCg!iGt_O}nM+BgU
zEDVg^JquTTOJts90LQnS#AkS$&Lo;sRdm*KkR9IHk{V9vPK+^{l(=5Mli&>d+cVM9
z<K2<8nO*3${n3Tplw32{5q8+O)|5Q`24o`~BYWR<Kheo5qV91P?e4}}d+G!QFh+)^
z4SH)kqp3i)(D>O(+ZIuysba=!VG>!5o!88ol3><=?`_6p=`lQJ)var2mckhrB7da~
zx-z%jfUUAwWR1m`pUh+i--N`NB3G4uCh@K&tw8GYJWmhg;yW}xS`})wn6BI3OW##@
zQS&WIEMqz!xtKEwK8e&J^RvMEL2B&ex_*BsT^*RZ@AI_1i-~2ena$2V-kG`lq1fVq
zJ;7*U+uF$v@^cE=jX_xsafjN3gxF^gmDse42ZeFa_81*P=x%#e2R{{N=*E`R^xB;Z
z=<C;fhr3>QMMWyA*!*C6MxxiaHD`ErTZo31y?H+yn3#)GQVw(9pL?xy51D!hkD7Xb
zGiumm_!LjrhxhyHlmR>Y$F7hi^S$Aq;O!S=y3b|o0^O-3vDf77ains{%#b(!H<*L5
zJ3+JIVZf80uW)?m50h8UR@u-NNBmg{>)Icm|FX=rp}W=;R@j{YMx7BGIz_auXwmYS
z1Po-~Xnu2qSq#V@2%Uhem&1yi**0Bu=XS@*eU6azMWA&#Sn8fK;(WZtRwMVgi8tdo
zrY}r?;h5M?T->|fFS&i@=fswmu^B<%+F*9emEQfh8nI(hd*O#6kI$pCplJJ?F_E}Y
zKgw;-xjPf%O%p}rIsZY9&4V8T6QyG_6$A`(+~}sW7ti|UG_c7>6Sa;FGZd>AK&`xS
zU`Z_cLurH8s;JfJ&o`&Nl1SjNG}cgTG8lta9-BuYi_SiWQ~Cc4=r9y_>M#~}+T&vX
zZ)2<xc#3<CxwsQirIzx>`;CYbQmu~i#;}bBc8gXP&QR<;=Ko2|$_+)WT=SK5_J7a8
zPvIJ3b6WV%1|ah6BOAZ#2aIwnTGToW7_Tn~=spw#9412PqvdAD=HVoTeTuucNVvp*
zsg~E}V>AXo+JaO;>wRN3oxQ1D2ymDlYp5ztuc)=IBbYae2$njEs0@7w1&JEF<=s6J
z7<Q;>9}WyV+JqdMy6g!AhQX0QN9piK0@I|L_Q4Wj(%DBY)Q12yL`0mj?^u;Lyy@ud
zD?TuWs)R+H_@CqH>`B25#qaY<8wyC+Et)vkE%F-zyix1gFhk&YIuU;!8R+cIA&Xky
zsta0`gM^*1ehw>bbRtG&k4n<nFZ4kU*(F5*m-IxOu&UFPHbU+>uv_ZDz37T`_M#|Z
zKzB6}Cm#)PQWtU3sVHbYS6ABb*ZdEHjt5edPGb;|dprury#xlC{+Hl}P}Hk1Z#aGE
z?*+cuS8Ng39V>SRboze(<TH^pm$uZ<Qi<69e&e+{mxkD0z<h5V+sxU*zV?S@=YE;t
zF4*7Y@9~)bB&PmC`ZI!T1_N{7URLqtJ(e)Pi`EMCnpdinE4gR3%n<xC@@6cZMWvN_
z{TGd_!n#QdYQxfNZq8+j6Rr?|XbbFDrn$YuOlnpfznI(}IR|_AZ@+Q=9I5DD9-U5x
zP$c#y9xX*|9sF#LlS1QZLNT>g-}Fo`wV_PK-5suA(j!GD7(ltEWFPbln=ARS!fjjB
z-gj@1(g@9^8X71)Thip9PgNS%7o1=&Ict!iZ<gUROm$WQ$fz)sw$hwNZ}dl$9kYrG
zGR_1`r`Xi_e;OD$ATN*CpGF^k<F+xhA0%zyuIhAV3jvr-efRoPfi5(7Qby2`C%WH!
z{j6wjG?<)moGIa(q29*{H0if)!w3*F#j6q(gjRV;`(@pa7WTXi@w#(qj{wLxsOd%P
zK4RU4Q%-^e(5=P&vTVR}k@AKBjJmP!!tv4X!qt_^gZk{=G5wW5L_wt3?-Jk%K*g)z
z>Q4v&OD8*8TU@X!j44+;c)-dawCqb}C=RHP263?aRFlGqJJ7Co2QD013M7JOfqNCa
zu><e#7^yYthO4mymtG#aL57L6dH@DniG%cajL;rsURP!a=|kH>PPhs-0Lg;-&cLg*
zBG+x;zZ!ZMgpdx_LIOsmvHTN~%T+1?eP}|K?BVOo_VoQM8%YR&h*nid|0|kbV89K@
z%&Xv7$Tm_kP@g&HEe%LSA?qp_H~Mi+KAILJvY^z9rjPgyB(gsu&qa*llO`|h(PJG*
z+Q}o;kA^rw2@<InfB?|NMD4(>BX9}@kq#EgfkXzopW{PGeW|1ZNzd?^cHxF}zFh@R
zEg+WhPa<Ny8a^2Yk>=P34WPKo)%Bw({7cHaaN8(pSHWFD)URa2drW$ipuQgY>wkt6
zuLX|6&;UA#&q1X7RDEdX>B(2Y4VC{_QUmqT|4gCyM-`t{KbrHO5b(gbo;fg6W%M?T
zNQ_s(Ih<e}MY5W5#O}bIlYj{@f&o)Q^GZgWNFbjJ2F;uV)PgC?C}sbUqhjX|M)3bK
z@*gXTSHrk*-&846iFu=|VA7099%5X8bFvhczhey|0F*tZ5%*7z+Y9WBn2}~hMqo|!
zMq&ET&h$;??7$&aT?OBjQtrT60jYN2hV~Qx+a$0ER*)!onwDG&0)RJ{oEl8|)F7>3
zA6hq_Z78W6cK!}D0OV1N<L{Wfi3k|Il?7`;K9qF-uQXUc;L4v7Fan-bC@Ga6nC?6S
zFoUcX;QnJw|Acu=e@6#C#@B*%6L5=T5T<`^(+C)(I|aNVnt%qV4-p6arjkO<_3iLd
z@4(e~eSs}Afb^=RfaI_}<Pj5quH;&Yx^Txeg%9Mfy|gLNI^wUj3+!P)-$m>DhAt9-
zf5?D^XCDluWm7+4!ozF)MXpzHbaJM+b4E7}_u<nd<2`F@NQL>TL2W&OwGkU*b|5Y;
zCI7Nz&w?djp6&+og4cH3K?#G=?>6`K=@~9CO9)0tr6}X>rvi4s{+@7qLtQ3T5BrjD
z&?DK52`A!lr}QUOE|=!LA7X507kvk3p;cXcO3{4C4d`7kCIOg7+P1PLq!v01JP%eX
zrWAsJ8mfo8X7?iH>)Z|jVp{e$6a(Gs#?^Lr2FtI(nA~%!4u`IyW|-b0Yf;Q#Qv%vb
zRM;zX{1J^K+e?gbqCCiRwN>n+H~mP(GEdLQ&Mv9H2k6_8K&J|k0BZk&6s$*zp+`9*
zr-vM~2hR<$ZVVE=b3XVQEH7B1TNith(3B4-o&atL=KC#m@pRv5IrC@kqoCZC#24ZW
zcar1B%uwD7IPVSjf^=hVw&G<7Jqv+9aKum*H(2{@+hl$jPb&swf?=DSK7)a`b(5dZ
zE`Alqb%+gas*W&qYkjN%v+o^<`+1i8G!+3C<pli!p3z1<&b||{9ToiFmTCETK-bUI
z)&VDL9toLHd#f3-oa+STUI52yV#{;V&<K)<k+;v<x_m9AT7|#%R{e8zH3cr@`64aR
z>O$4R=qfNfEjKt-wb)z=GN=+GK95WtF$SMS=RIG>#i@_Rpq^84$ZU$6yOKil8ZaC$
zfIIj`zV)T|M1#69e248hd)Cy($_nm6)mtNLb<78(t01Mm8;GxM^8&_d(?|9$hw|x~
zc=d)jCrY4XIv?99=JnLaZB0hg;;Mc(yZ%1dG?YS+uaFrl-e4CxRuBDD7S6rTK1&r;
zmn*4W%B7x-`y`-!y!o}^erhn)AP&$qOZ9A1*uQjXuE71uQEPTUak(@n-W|!=G4n=3
zV|qwZt7mT7<;Gc0<I}g4$^2+^N(!&8Hdnk|p;<{|+g4*nAl@^hE3rGgt_T>}N-Pqv
zuXH#G3^c9OGOP>;CPwAq4)in0UuWDI<`sOr6}Cq^gyc=%Su$9#P^ScMcgLR@jSAI=
zYd#bT`br5Lg|w()RmGA({SG97YK$65<|ex3yi^sb2gGM(HnjqRs)Q^C#ffC_6K8y<
zBTl(Dex9%*MIopo{!s-w888RTbW%c^V#JD>U4}z5bmjlXoKh>QkwHdFsRur%bX3J9
zO1rF#L-({K-sGcDe!x$a!YyGpt89fe*Z=;$BI8B0CiCoH&{AxtW@rNopzyl`dj#X9
zvMozOv9q|rD7YSwteH$hd!Xz>wxbW3Gcoi>pGR!^-G3x+0B1dRCeiyl=E6spY)-wQ
zkbd$>BLlYVLkPmPijPL{0eN;ZO)OIg?VX8uUqQ#ntG*4gwk>!uG?>X4rZf*_0f_5W
z!Wdz(-rO{poX|$<D?YqapY_g^tPP)O;;1K2I&*}02-%b}i<rX~ndjS>JD4VId}HQm
zY?W!UvYIK){pzj*OJI!Z1e?<Rs7t2G|Cd#dv6`IN-hrsw<hTdgx=x<Kh5Y>J$v=bc
zO(>iA)QeZa6lmgy#=S&~3N@#ybQgZ+X2$0t;yNkd{v%|r<A*|fcx!s$qmL4K4B^Jf
zRc-p?@p%1b6VD)|EpAQD*4@>VW`gtl(rY4RO~z|K8^=v&PVNWnI-M3q*#S~5F$K5>
z#_MZWDkdC@5G{2tQF6ii!sd_$bc18fD>PcNSwtu}@-M_t`J#phutI^o-3E1IHpLn8
z<eYZDM2&@-L&Jh+M3j3Fl!IrI%U2Jj7p8BiPA+ecLN(IUwU>}Avc8({n{;ids(cNb
zIR0Z!?Qhunr!}7u!Alf7hz;yloOQF0ao3sCySOOEplXn(nrhF3{+cKigeCJ@|GR$Q
zMrE<pY0=Doyh0pRf>O`na9JoRT8mh^W*EkiON=6<Ld!u?bMHyMH4DYvl?yKMV&ve-
zHnDuzY*(9mZLSIQMp9mCgtmxO76(hY1ZZ)nl<sml^Ek<^WnAF5t5Led)-Bw6IzoJy
zp5QWtiL%KOYP08+HWxcG5a{#Qx{UO{uip}LI+bo1D22Z?3XO<JP+c>@_#@sDNyeks
z3wCLb*p{7V1E)yhrK6~SsjSqUaPvkmluuj0{>+__{RQmDTNh>FkA=EvKHBl#)xfjj
zYfq~``D?&FVQU9UBK3yezUx_Y4G6wa{Pyk#@B8Zs;no=ub^AFZx2W2?nCrR`w<z`-
zdHea7TYbiN>`nKSSoq@rm>awajDb?~In|bR$!{vl_gx}-El03!n-)Cfrwp(1ddqhX
z0wqewx%xPdvvrrH9Nh0+DS!1aC_8rUrB+K*ZRqvdS?e3YvDy-!|9;QILAigFG81lz
z1xF#HUtQR#Sy@*^Igpe!Qz<GDY*bINW!&3adl_dkqSQ7OvjyV5zTGInd3C+=?KnV(
z#$kM34C*on<q?-OYj~`fW1dr9J$sW`4k|C!u6wlMn5`^k7;^cgck~ObAzWNlGIuW6
zQ*yBx<~r^q65^~p6u&p_c_B=A5QE3nPPXx={K9=snRIZ1`v{+ze_TiBxSVay%pF^<
ze3@!AP8(lOLsI>5tGjqBPW2!_g}{MTd~Dm)ccU1g<+2<FB;mHdT|{3paBTYi3X>%P
z(35pllYC(I{)6%D^I{~k5tAFNvgCDWy&lV)a_*|+PKUq921Z=vKq+eQ&m~f4+sHzN
zuQp1wi%zPv_s*)cIPJfZA4G+3aeY#sM@FZQG$oIbC947)L$)a0N+N2t>k({d#zEdP
zud`I8AE}@Q>3S>41%?W*F0Zlr%fm&L7yrgHpUWgudRv#O`e#5j?^81kW?ImuR}?Ez
z=x~%-v8wHAgxebZ8Hc-v9VBG7k$*P^tn|a2hWxGM^wk61Z-@_PRrDRgBWH{Xh!@d4
z3q_*38aC!m0{<&Js^(Cdb%{{B;{FGSx^oGn=cpB3r=WAj(0>=a$)2QTeErN9|B$qP
z+c>`%1RL}|ni9bA{Hn(ERaAL?xDQQNuvWqd3lf7vI*hvM)=v@WTcpBC)*lH5%KOlm
zDu#%e1@M{W@Lmcy?CS8DA?n@VL{T$ES?EPs7)7hgMQu?riwe=vn7Lqwvlo@q2q*Yc
zPIx_CJo++S*z3%)ZO0IGqWaS$Yz<8Iy5wwUGHqEIZ8@I$&AYsqVhGwIR&~FL`QcWp
zR_}1I)?3!yUO{#qJPTz!^B5az7O3?&i)d5Qc)=i|GLx2YN!-5SJ|ecA=V9eEAw2(L
zqvu=}#k*DZ7)>k)gn`w7;Bkiea~KL^CC^r;_32xgQ5Tj9pX}UrFJ{GMHHvb??<FB(
zPjq!VR9Nrfy$eCZVcUBQ|8tgtPArvD56{MCzOKp_o8Q0${mS#x1Wt!C*l`dm!Ctqe
zvEPu(6Jy?l!L_dMP!p#w|2G5-9ud1TAt8u`xIj>Gfrh9${AAQ8JGLf&L?!Y>kt-tv
zu*nr$g*34w>;tz{vNaXe=&!pai9dEtTzh+bhVmOkEt>4pRccCd?O?o34VBEHa<AI0
z6(n)AFpz`r5ZKw_7Xd`hk%i~tA72sFjMH`6aghibhLNUf7_;&<I4_sJTif40TMIp)
zasu?T4&-M)HVx9{U>fIG6-0(;Meimpm0sxw17jqh0tcUAgcqX_{s5h2>|h%^C@|eI
zLl>7EyvHuqh7&gbjwEdQK?VNIh+WkS)i(49KN;74S1U?ukgbAf2RcO5^q50!*O#EC
zJduAZ3!V&FMCU~XkNzHjr-Wi0+-PnfTJVkldSp<#pAp#^X(eOkE+v_2KYGF({T=XG
zC430ZO4{ypOtG$&1yN+647cUC+UH~u;TBhGvxRFpV&8RI*Px?CGM+*{Xzit84T;Y_
zQ0nm5I=()6D;l$^4%O+3B||OQ36ad*_tNmdXondQ;b<h*CXd<NeDFB|ORlace|YLH
zsOt&kUQBq-`ykv5?GLB|4G5eUXPQ(w6{knjB^LITRse@tx>mdF?N3H)Y-$+`$M);b
zyimkE?Mr3T!ggZ!a7n`J6X>LRaE*dcfjnfh*s7=7kTQzUSZjsYQLQOJ7(^Soz3fp?
z>$C?j)A2P^bR4^go$HQ5jRpdUC-w_r_qug5Tme7z7urIx@DK`973Ikmbvx#A@*{2P
zRgs%VG%`rt>sJc0g*dD(Z)JuqyVy4J_>X+bdl_>}|Ma7Uks=u?U`$T?5x>%_*)&VM
z#^Byu)N&8bH_hxib`nL62y)rz7daz~$}O~UV?8sozb@RwP^&prod@v)=1Bf@dx-qu
zb3vrzJKvhSk;Cj;nqlD_xxM$$^lk_}!KZAX^fe7)?ZW0yO^p4zTetB^-dn+zs&m4W
zJDN)qw>WZi{uSZfcB&s^l%!|&-e<=Clzy^dD!`GJw$oM_yr{h{0i3|LyD3q5Cx#&D
zxgIRSE5?h}W_zz8zhBGiHZP8f^-G;aUY{tu$N`@Ux&Br?KVrV?&YpdMK0)XD_I6mj
z4vvLiE5QwT-}Key`F^RSB}G0R`~Osf6@-Wn!2`cOT?qo748JQ1;Xgf{{CCzB-;*II
z$M?(8{=kguO<zGWTEGg38*$)pKX}*Wrtg2ceHDc8g}@N`$!M^-zO7~)ibCZhpB*(5
zbx1s}4o5yi9<@R>Ymxyjdb1Uf_D4Q@P7nlkk9^)T9r-+K9;8I4@%1~g$9LP}@15g9
zt%FYCpT1rs#D+sMfoIAJUZ5jBfdK~a_jgA=4`1bK1-^nSx2<A)UK_hC0`?*!pRZIX
z(D*NQj7B~SoV5mzIByuSAJoi$x<wnnn$Gi@%jhBc3Zb~7H2JaUnARio4*SHZpP&*K
zC%L1Y75+K?s&)^9#9g3&AWqVA<r*H1pJdl)gi;`F4<jNJU3i3&1cEORT=`EbC5i7<
zOmub?0J<%N{6ACU|9TE4kIIfv3Q6k!Z$PFI%B{W}@OZ)lQ!wb6XUK@N01&<;4G(M{
z&=(Cf@>vtKRqO~qw|cA<JSS-`+Z=dk^jXPsM_Zr2_}`r)?PZ$>C4%QBWQMbO59%j*
z4?`KkK5KZlRZpp4@3*vb3eJOh4-Q{=&aFPe4!JEAU-0wR>FUY^b<V6lkTPZ0=k>>6
z5E{$;V%p2zyf_M_sK9=%&P@kl&#ewiMrtptcq)C?P)_sQgC81;F*1DC06ftf*38Zw
zS|x6Z9U|bmg^H!3k2rwbEMHxwPJJArA|?2lD@ldmv2hP(kG!$0i<G3dK=9nbFyo;y
zzyHg*)d(zVq2T$-PjKJoY_^bxMw2&AKwa6J*h2C{qet=kYd66D$yi-j&`R-z5>;qt
zHqTvQT=2Zy+6z2LlT6_MqU1F1LC@b=u>(stB!6XoYX<%6XTzk)W`0vFyAid<Rf9v#
zI-<t1+|v}}e<0eAjW3ac=Pm^aGE0Kz5(GYLq+DP^l+|J$8db{(!EOJf#uW$CZhsy2
zHranb<Q^wgj0xsHLv!Mh11zVi=}*CP$tQA5FdZ(z#e(O>lcLoPwOXV3-&Fo{+UNiu
zEY<oPSYY{08S)m}<?@8_)-t~yot0(!bxgy5l9S^r`mBw#bFIzWgOF0k8)|>4h*L<H
zj(;nX2>{LIJv`I6v~B{^D9-wspTLh>@rCu=YFqJSKF|H4_%~r=nczzP3j|mr17OvI
z*ZJ>0S()JZ{VLZO;|kqY%$uYjgB(#P5kqeHb+^xh^G8@2ts|i_4sDeBDsso`;oFt`
z(?%pMynrg)PBtbl#&!zE6u7CGqy2@Zcy{w+3v1Ian9lXF=RwS)r=Fnw1wbO|@j+gG
zamfcgVE@Cyo*5riu%>T?XuoX@<0n=g)|E`^tuNwU>Ier1W{(6zXOK^O4X-j|PtCxO
zzWXv46iXvw7-n6b9H5!u^eIgu>Yf_lOb_q;>oP+Q%79;PHQVdft>-chb|3c$P3!Qj
zR$}5lOnsbeC(*k}pq#V(PrHNEigsf?bwh8A{^m^D4j~8(a@%aLtW!T%62t6!y+;^C
zu~An9#c|}qLRn9!X0FaUS!8gGUr$wv)uk)k>ScL)=1^~4u;Hz=j1D;YP^`*w&$>;f
z+`uDctH5GO;|hjIHCmn-DeX#Y+9nv1jP=vpT2i0{pDP4JNyYcMmjT46;z~$wHjmq?
z;pDZRs^w2AxbmdHTRn-BSn}>&*7aRG^_^<07}B=$5vI0`dN09)h7WN^kbA5-7C4!H
z6R-tbENq9Nhz^eG2(aAT9~+kSe@*v3+1A&IC6Z<edVJ=Q3=sV_dvIM{RqfRWHu3P#
z%DGTb9j6fJsnx-@zq1c<AWKY*nK>!OqpknV=Jf@2{970St&(${tQ>mAGXD<nonNAY
z8`+#fynSNZ4dS31cD+cyPko|q(NJfBvF&FfL{(^wgeLSvq;)4eR2AbISM<0W@HoBw
zOt3F#rQ%P_D&QHv*{&0c!~K=r1RUp7*SF{)#R+p$mQ=+#XBW*yLDL|8CD|T%(8>-_
zM0+AZ)p=a~{%v4H9oo1<VCU=fLqSgokuBPz$yu%;sSfx?X*uE3bB0WBHOc8$0x42e
z+Zhm*W-eKGcrO3^@g)5D9N-vsUF^MncEr3^@T4JBh<nd$qY|KbWWr$%gd42*)?><%
zH=vjf^9^q$2FA0*0%NYh7B+jnN8(O5yU+Z-2CJ*ryu{F^OT@Ks3WRg-6@667y+`IL
zvg}-xz8YhE$78d){=)|t>jL`iU~Fz5zh%dvVff-dc7}Ii!9kMy!=!U|#{MpTL`46{
zf+ub7aLsBNr@73pdealP8%ozAM94k(+zD{Hwmb9KI}qI&9{c&oopFEn+ZzRk%i1Q1
z_TpvT!QVcPz3h`mUIITiU*)$vvV6RVt#JpsF5WA7ZmdzGzFr&+1cw=f60>|Zbk$-j
z6WoD*TUPIaIBq1u*S~#Jce9(`U)gNA3H}g>dA>=bPa8(={)#5c85_9cp!`b9d<MhR
zK>POW+K)XqA4t(yyP4q&px)+8zAW2Mrh9Obsa6)D0w|23;6geD-r3mD80_E}d+SmO
z3hBncB$P-_R`N)zFf85ST~lUez9La?_rHbm99#5wP`Bvey3S7{dE+4c7EkJCYglp~
zt!yF|IEByfIF+ZXFc42{icD%kFq;~7&ywb{vo_Bivmvb9qac#4WOFMdSn7|f6KpPd
zq)V=fFM8~fyCiJVH#3^nKsx;rw4#w^ONrf_m=kM9fiG<fFrl2LX}*+iUPW9d4z)wA
z8!AlFiDYg}GF<;%Yp0sBAz^EiSj7yWDr{k2UHeKvw63=?ojHYS&Lqkab*PhYM{U03
znaxz#EYF~kEq`Yd*02eR<Ti!307#XsI^H2!^r$VHWg3cx8uZ#Q%wfjLBe{SVD6e%f
zH_}PzZ?5mRb}kIJ<2%#5h#+&+c>ZpWYV38(DQIVc><8;RB+0I2k{Nm=_>>n%Y)%;}
zEuxLxF~OXkd;KeexI}!92uGYk0SJ889WmUHi{Vv-BMT;&wchQ>6xX7(O=#-HxFs4S
zpihv8=45uK)&_EJo#D~<a6|*T62$W(G+Q~i%Ic~;sko$~O^Dpf_~#h;=6?)pLCn(a
z3l<bR{wbI-w2&mJK;j&*3RsPtw*NXi_nG`ki{p6=x+(kAHUtjyS;Tkoj*R+>4!T_w
z?1X?K&v#$zjF`a_7b$Nj=n(#9ke}|uVyE0@zAbe{Vuj7dGgVM+QG4o%qghCe;L`O_
zU4P*BtAu$%TJHmK&0lr<A1@BIyGsoW{wu<2PEZxV7AX!B&zVSE+=YnWITGMViO;0`
z^A!ottFb|*z0oHx>kUU9VME%v$q9Ze`?2j|X7(m#aiKYp@n&NuyM7N%d_o#P&nN)Q
zHEYIo6T!2coxiHpAGT1<XvOh*ZtVA0EPf(`_Aq~66HKnzRNU9L&*RHPYB(s1vuH%t
zJ|?f!2#<0+Hv?fOE6|qagR!ql$BJ1IVb;KK6gQNk!E>tBIYg#v23C^Cj(mIay{47-
zvm1x%=(H)-Jj<zk15=pm=!-U%+)Nf79eBO=FM4YhNdF279msQW)uWSeQQAiAb~lT5
zm=?r8C!S~ARfO=Uq>+FzWOIV2zDmirD~nhRyFy4i9U1X}L>wt(Tjssbi<2Ob6m=f3
zad0y#K`oQ-_)x=|v2x^bdO*hrKQePW4FG`DyPH*-LnK*3tXLOg_Mp`C0^}f?x}rC+
z%rJ1k9WU|@s~Ng_N*2sa^BkKAOQMLr%Tz9^e2vujJ*j<cRDfmCk~Vy6!*we!>)M#u
z&M#&LC1<Bo4`ECyLXAuG`VH6Y`$it1#v|-EPPV#^t>I#|2ZVYiLn!R;q-`!K**FP$
zS>#EZ>^bV+SlU;ouuGk09<#2Wx9bPcVKlP{cca;04Uh#(xi6F}sviHSHi9M}*c(PI
zr~2{k6vO^l7TVNx)%Fsx=pz9?N}&R}Q3#JVE26bG9F3T_E+A0GFGM=W4iepbg0cj^
zj>1}N>v3-!pq6rO$erbmfOLTrW>@aO87DG%05MIJZ_E_y);aZ7%!nIth5i`|C%+zu
z7YlP)vbCnr*6e!^o~3(^BmTrT$q}}@sd2r32_-9C6F1DsT*Fsv!s$5t7*m_Z-6wWp
zR`x|p>P=_DucHSkv%z`K_+38ud}G&s!6~1<j-kB(yXTBjTIk`4FlnkBDlq}%ldd+A
z0Oi+D5&5Jv2FuYhuiEsq-Cvvj(p6Uq9@2JklhAge##cY&M1Rq$h)!O_9`^{&vk>O@
z<Il@Hg8JpK4R=w3)S8?wKAHShP!|1Fn#e{=j7_S=4;kf?rR%S#IcgGelDlpwY?2K<
zf`DJD(#0@FGj#n-xH&6{_>QwW%3^D4douLa2-++2mX1wtmU%=h=HHq!2Y&S-GX}P8
z5Ke**v5#O(Z!LVCw6b(_8m`_PLgHP@1fYrf91)4=PR=Ks9HX75qMdWe4tAojHPs4U
zk`GfzE!OZFPm67ENyYHN1lB^JgAgI7$du3;N<I)4qJ@WQIx6;0p}6e4HLWh&*7mja
za;EdC#F5&s4pZQScf+_ux~vnv!gME@Sc??AilO(uePJY5I;65h5Ayo*b4qxe0}E=@
z&6rF<HSf%rs}5sma!?}2l!hA!pYeS~E+-szetD=jt7tJewI<r|xxF<;YrC*=VzTm*
zPHWppYrqNT8>{mUgH&sr0m9{1kgYFuR7A-th+Op>RW{n<$W#DeVK5$HbU2qRX%azW
zc_RaG#vV06$#_giPPI?3kyP_tTBsq3kO#Nkkz?L?m?IkDGX5IN^Ocp(tB6$d&i@s6
zMRdrPGkUcMyFs1ayh3GCqcr1OhK)bP*j<Iqo@v-#$&Nyt&0P$4?~5rL>VFFsaA9#Z
zlN5WT#aNeL`ovjWAE+AbNW&Qt$`NMijWgbjtr;&#^lBrH<O2NRl7h|1iNpV!&RtIV
zEQ8!&*rAoZGH;}<w^shU;*|WQdkT74TPg1*^U$$9{q#i|kl0@1Q2)CkEz<Jf*O1n>
zwYvObFTbfCjG<Fkn(*Q3@ZBbFI^`HGgNDoDE0He}Y!h!;e*8k5_=j9{e~BL6Ktsj6
z@m^yk$s|yO0p(=vS55^4jZA+7Ab;+I_yTfd9(j8+b!%V52P&Rv2S?C?dF}+DX;6#N
zYRosirr$Ffn)dKH6=?h&>H@TZXjJfe>!oxT(!+to!7Gjt1-#6J%fvC&`wB{1tPd7-
z`>bT|RB4?kkmLh}rmu0QQhd>D7D>f$`;&u;ybp@9$R`Z4{!H3wx>Yvx)O*IGR5G(U
zWS5dJ7))ODgWG5@!;_)Cw(wNl1reJ+Bbc`bPQ)|6y9Reeki!hU+bV{!#2mw1Zx^k^
z9f?T@ht9f*yYBHJv6YRm3BWolp!1C=O?zi#34Jc-5-yzy7v4@3(T2*Q%_);;N@RKV
zmZVWYSpjhKjFLuHD@98@dSpa(L=36B<y1m>3H<=2CX|s#aBm=}adr#pV`lsfszk}b
zvk_UEA$vzOjeUZKRF@PnM1ck$%^@+D{Xi^tD;612#rGtHJS4w*<=A-(e+qo83AM-~
zI{<#i4;CWUtiQ+Xcu1gBdeNpR9PG8rgxN<&n+B17@oF4=fgOX)QwDaR{B(mF{iw(6
zF|D2K5sl2}QaRZEJvb7d^b|h^0tG6jR%YPF#`T<Ra_Wnj9O)k-InDl@5%WFcwH&WQ
z#}5lEM9+u}gd@L_L`B_70Qk`;DISPqvxN0FBA|N`K?>3a1~#|rG;8};mM(ICW++~?
ze@Jf1B4V^zd=UBNmxyU#QZU)06FGxVcbl&Uy!8G)Y@i9G6(rvibYg!8pKkE&#0(IR
zoKXQX#wI-9C0$=zQC7NSsI2v|p9kkbMCW*+Nplof{K<6z7FrAg@oxm&;i2olT#-TJ
z{)eOhl5&*fLeeXXVIfvgKxaTa(|SZp3ZR?m^lg{Kste;f%8h<0<JaIv^`M6`a5H}V
z0lx%%SIK5DJQ9zula-nmy8O|-MKy+EhjGgE8^tbAk|VnZT3!hO^8BYr?~h($<c&{h
zUGufdWC7lvBS=&}#U>#HZZ(k2VnX^I2%nyHC|VyG=vae91Aa-TU>f{|AlO!lRP+)a
zKmIxB;VX3zpceV@?HXz?6(k;I*2S>5$C$dr-sC88FHd@N3Ng!0Kb>*Ag74zg9UFP;
z)Qu9TgAYQ6%x4PH=<7TVfK-3uvP9l+Y~4q>3a1z0u3~82zKcS4IhU9EjSvWIA=?QR
z-eQM06*lC7KEZ}wZ@fTAXoDH-Y$VP(Tzrvr%6mjkNEE{~74Oj`UWBH8ccAv~#xyW%
zj4`MfEMvI#NdckCygtgj3RAzcQVS_Y)*Pi?-==uhU<PPM&S(G~7_J`~uGL3IK^QW=
zS(qP1nA^&c0eX=El93-uk=s>+0lx-)@)EBPQ$U1#>|6ShgllOzDqrhfyZ(f`a&mBx
zCK;rmA>bE)KI*;HdeU1>et^G-RU#eGR9|~A^NT@=n=;ftQ`uuo1k>D-lYgE@<-~68
z>rN)q{q+^O2KiZ?#4nyj>1R#3agI~a$Ujr_>%gvd=PZeR|8yu|k=8){hRO>Cm<XtA
zm5O~6BMH#Zg-AZ#H)U%Rn(!Yg2Q_Et=9~1Gb_R349PbmqsGGjZT$#+Z)i=%1YUAS3
zq%W@7xtQ5>Bu&O&NX*mc`5AEn5n8KyxVM)a#-+`itxvm@SDeKI`(ogt@{VkXf2rN!
zwbdIL$f+#g#Af5?(*CuRsaHE{t7o{g%zIV(NW3Fa?gcC%J&io;>d9`DMxe@f7dJ-%
za%k7bb=P0;0R_LYBp}U3NoVp!Dhe3kN~5YPr@NDbwlMSvhP#u~x+vS(WBeXtbYk@~
zSr>girWa(-L<K-dEAOVOsnIv7)!(w2iy1R>)H0ap%xKG$Si6-pSo22HyH>bL8}%z+
zDpPpqhg8zj$A3>0SeU7@a(Wq#SB$PXq;gd;(YgY)tT2{U#~UMV_RN~Iewms3ICd@+
z_?+YtOh;T(qm;3{|71cg-GH_pr1*m0X(03ysYD-^;U_Efa5qtj7aSW14*cKYT;8=z
zI*ELjeELlb$9ttp-yg=Z#UX=A!IDW9@32aUQum*`v=Aj>l`y5|qC0x<o_HLkS0BK^
zJA`^O62*o_x!B~=d->l>N52qc#M4SP6SE^f4ExU+gL(?_RJ+4zt}RB~loC(w3n)Cb
z{rkLgP}B!ca~=Jm17jWyWmJ(>vl`sENH{J9$6er|M%5iCJ9BwxM|rB0^`3sZ<&-a&
zOKq-qTfxze<Lc->qE-@k7SW82Usmd9Kn-ql95>sgcv=N<%IXNVRd4tdeFfh47Oj5Q
z#Ph&MrtE7u;=>~R#@a8@1^LVCQjGt2mdT&=ha2>+c@g0H11LeNpt5#Q>g{1(KVokX
zT|3-L;?7zX3|kU?U+eQ!4gEkVZ9w}@hdEuHaWUfmfntFdxIHt_ilJ~h<KKW{(X)+e
zXjH{=;WV4K$KdLf2uK$mx+@P;+V&xHdyoX(!vtQC?mgl|j|X552GB*456gL<Fxu|@
zISx+>=YgSz$ibHj{GmZxlq0{sD7=@n<nV7#2k!chy=Vc+ft5ft<_M!)K60Rtj-i4O
z5@fz88R4VLWFdRFh<;ahm5d*HCc-sTb5O}wboe!i3C?Ibi^SRbhIxxj8XqDBt)jZ<
z;{3x*L}go59R*m^Rk&+0a@k1@cxd|(adIhn0IZr~0pUA*;GJx1v<;l47ZxPiSpn{e
z6cBb!HK0H8vHdwEfUy4dm59!uZWPep)?n&CqmUSIYg+H%eG;6jDSO~xdw};;9r?PK
z>q%6j_%34ZpUCQo_?Pswv%~aVD+4em`*jbkR?+mzgIRJui9N-0^nogJaGT7a)V7uU
zQ^1n+Mgdi~g*0@})hPC{>@<Dkj%<ud7b|>D@zug)<CPj+^x+i!A1l)g0c~I&eLY1k
z$KS?hx}m*z&G-tl+64ogYH7su2gvx5{N}VLN99mKRw;3A#wbo75secMn^Mv7-wU{*
zwB3QBBg(il{-v*#u=TIo*ji9k^+D2UX-D45?1yxdPOLHq9#xZz6G~J<I*H=W!hfz0
z_YY?fN<%gd%@9OTngXg#Upo(F$5Bt!;G5rJKVbAO7nD3Vcyw<@DtPo>J*ty=`Gpjw
z`5F>Oy*KCsDnU#Clktw_x)8m>>|(FCVC&=M-aZQW!U75vZXE+AZ=ujM`#>Biq!3U3
zz+EH!4-T}RQK23>fVF2_`0bZ>Jd(WV>q9S)7qKzR)s+>~DFqr)#s?4h_~1`e8m3~D
z;DM>%EUL{CEG9aXs}3$RqOe_YPwT`<XDw|?Q?Z>!aJ8|lDnva-G95?2b;|s~LR)4#
zFGlX<Wd@zCr8+e6sz`tIE#@vlO}Q9jAo}G&F0XeBwgKH@M!k(kG;4~r+%80Ze{B*J
z0$$_`#q$UJn}}g#ChBzyc<-P*{MYeqU>1nL^R;DG+1QX7`eJop7?U#uAf=H8XDWUQ
zX#S+-A@<6VK>bq?`p+ZqM6iV0_fz>14>pOS*UoA|I5$L|9eMyp{ctB-AZ-4?ne8ZY
zR(J2WJ!g|ej}*{q#!rGKJguJu$W^u66o)JW7Mde5{Q`L9KYUOt6#i<x6eC`qO3U{x
z;%OEIu&wWIgJ!Heqf06??-mr-B)I6=1kM7_v`_kB1ZGC=bkPXr<AWP*5^@^zjGeZ{
zUPlngg=jDv@J1i+ZfS1pNV|l+14&arjL{`{<x6*Q#QL2UPSOSmVXFNsYJHO8;_=5W
z!sf^duP2wq2u7sHJJ@V+kk@F6sec*G0=zr#Sm~GvCopc1>dxa&38u<pM3sl#m4^x7
zsp5*xc=rI?3)XP*iD+G*{^NR;){bxn+#a`QI~=vLzuKJse0tPBjny1`y0LKv9VkCo
zkFtNkz+N$)(8E(b<BZmiFq#3Rt^>-R>0;}@+ZY<*(506_VmB*#SSTA^M)dn*hlb*a
z84<uZt9<xyh<|anOAkuYBZ?(052hnWLRu}Z=@q@gYSdx#%ZeNR<X<^GAWFmN>}@LT
zqN7iy<Kn#ZxsmSZj_Vrv#x7K30nw^_hj3h7PSLMLzmSjqDN*UBMCngAsjY)YUr(dp
z1}q>xXZ(w8gt|9*O5$oc<Xg0KSU}y&ahHL(7SEh&jg?QQSLCC=0EtuiJuz=p-|ZM)
z@e#Vtq;7-{9FASLRCnh=?{w6PbWwaXg~G`Ybu@3RIF-McM5MuBdUm>N_!Z{sPg4Xd
z<*1R6NJ1_`7CCM@Y9y(;sRXU(G?r3Kv%W4UuTt4xRi;`h?J30LLHQQ^GO3s!^+}~A
z&_}ATK{hv-C>ASMiQbC%uqO3{KtDf2mV2@*eCQ&lpxeKkHv%~1hp5Z`Aj22}sA~h0
zX>xRUet5962}cl_KZHp09fEL|FFb7bF?xn8egJ8B??N#zji}+!GC1G4-$P%44osva
ztA&H?>Iv>Og6DiAf!r1&dxnG8{n0x{N`8e0?fwc40jN!ZvLIK&fK(3{+O~Eq@BGoT
zD7@3K?bs;4A+k8Qd3M-f=2LqhBpKNnzOks%T{k0_EH}rjPIL5QId!lyO(XI;xlA^)
z-x}*Mfi(~5=c}h|TOOX|-aNx=Y52&xOZ1AQ|AqNOVtxk^$>v!bksEV2P?TOA*>8$B
zYvK{Px0FEAW%pYe3<V62wx*e+UHzT@mrHh%gJfFYw(kNTBSNp)r*L?C%6w}LAwFak
z^<J9Mn4j3>na{|wKN&kJRBXpaf)rf{{C0OGV!~~)$Y9He&NvycEg>TMp4D?LR6nek
z?*Uf{&&b);CMN1;$sHO8Rh=<2;o%(Cw4zrjgQVm%MHBVQ@N<9NZk8CITy)bv0!o?r
zLtc9vOV4MBSHyL#CN9n2w%h(ZL``{@R?WW$_>?mDs6571H{Q2R;u6KOH2giM1!q&5
zH|*<N$eS=I;p70Lsi_HD4D-k#jh2sjv*z4$5BE&FN<DpZ{yuwf7MPD-GGR-bam2Dn
z-7ZVo(K-3x_j1nKkZYEnzIqb(@od(-etyHQBanA}$=WbffjDT^3{qY00Waur6*Xa-
z&i{VQuA>XUNMH3o29-_NF7xf1HH+nb7^SaLun=@ix~Hk?o4<4mtMyITYV!RxYsNAa
zP3fMOi%3N9%slrh>zqu(1Y`Cute7=7rA*k0cmDyeW6#OjaPAtOz8a^((tra5FHs2F
zG5H|-mwmlX!7G!wIieLTv52mD^gV9+s<Haee<$;6u{2Z_>YDSX<QL(AC)ewnXP@uH
z<%3Bn>72w>cO!s5Jz$@O$?yo;I`x3_2>QtgqNjXK;TL(#dItY-2)_AMI+$DVmk&Fl
z6)WY`Vhdq>jQs-I4d26;_6P&euV`g5$}hr<s{&L|nioX}P%kHV1RXfTV>{8((N6J;
z@EsQtIpF(`%ZP0utc9`cQopABMa5d%{eAA!kZ{UWxq<N9r9Fy5QHLJhtJvp`?GaS1
zhSX;El7wjF5yb5>!7m~h)`{g>M1BeVMsS&92BI(Cyiu5)vllOo`j+Jp6vs`jM}h&O
zmz6(o^szh5Eokz)gs!?^y@a+KM#A(6qItQ_MBXin0sAHFF6I{*+Zf6%$Vmawmlw8T
zHCFe4v+R%a3uwKa4}(rD&g>YO4TLE1Opl;uR1jJ>mTP8@GwspBCokG^&uEz*tcA)i
zn+R*nKQ5q|xmkPPG(Cd!5yA3KBY`vHPH$RE)mx!8i;yrd8M{A@6qFRePpFWPz&yiG
zlcn;`?-As0{?E7I-~aYF|LMd^Nsee&5!*mG!K1o_zDH6qwWIw{YZ||ZPSzyc_wQ|3
zjiuwSIEka3z4;f=eoOxx3#Rgm<f~@}&|qfjz|H0s<Y!E#{~LIR^*^2kFQDHhOuKh$
zL5bP_NLtdkgqG*131uGX9|w!ic?tcODlIaM`4akkKhY!T1l9iF1B^L@ult-^Ah6hp
z)tDR}Ae`z?OV=aXG087d1NVBHTObcr<q_2F@Nvj5qTKQ^om+qf^|6^-FckQ4p)gxO
z2Il@exbh!!wOa_!z6tjVv*#j9{30KS^<dR+nrtBuj$ElY=75!AF4LJ(8-KOqOlJ`H
zeHTNMF{GYsfZym#!~X(-Kz_e9u$lGh>;xA35wLnQ{*l%j@`dN3jDGwaIW18{E#=P!
zzXxf0kMaUizaPqNa3x5KI5-XWa4_?mF(~peh(1iLm+7gGO#{BDMUZqBIHG1kpxjjm
zOol)j2Jjl*epeC5U?lOh#-&uf8;I0u8Kgp92>c7{fjZWuAN$ISde%jKv{?NXylwh4
zeky;db&=&2C_wKLB5E)VIi9~Bq}60UfKJ02Wd0#`1Qwu#3V#M^@%Wozf8f&H_RZhZ
zLUmRpn|2u99ez@HD;`7J40+>Tdrgq{{0-#0NNz((uiONZ9cJ5(pS*2u0m;s@?ZC{9
zwO}pbv7uu$eJ5uANe|ZI79cMpPun1Mh^FsC4Nux3Z3L$6M)DCyu;#@!_blV8X_al7
zUZ}rbfg1cRXE1N@Z!v%kuDgPHgC{~jtAotFm(#Cs^wc}+r-gtnE)p=xMFLg{0Y_0l
zA_~|=j44?9g@}s8dqeQX_z~|&KjJO)6NNihaNbCI>W}LKgn*-dB;ckHP~RW{4;Vtg
zSHyTp2ng4g2mzA}60pJ`0jGq3U^fV0ZRhtk{j!MKm(x!O=2SN^_jVKWI5#mbLuO{|
zImA4Vp8B<#m5Bd4!SC`X{-*xK|ERyv{!8LJC;0Ez`wIb6{YgNP5b%=_P$@uY-;2z<
z5VfzRFBHrf0mS@705Q)9Am)#eISH9_iMbe=b9BadQZPCKiLp^2F+LKA7oR7h8|d;T
z8C(c(zV=*YO-mjK(JB2Xz6i1hApQzpEl!zF@vnvO3v6T9Hk=sz{b%?oo)n{Z)zh?;
z_mrIXTXT-I<V-!P<WzEvQF4J(Py2(ig}p^T4}s7)gyqwh<2&>MR4Uc+mh>^e$M&qV
z<_)A4>Voww)^Aj%=G`1ft@MLvr5ZuhO6?$^r7T-68=_K(*$}D19c|-rZu<v&gu0;n
zAgQ~}csT|^)rHrgMKtt9;vyXMW_9^8`~|l1UY9S!bE2N!1oHWLIVL$ak^)K2mfP#;
zm*A_`k1sOls1Z+;Ino(uxltx)IiAzDY1^xrOWfCJiCa{&;%feE*W>?#miPak1}#5q
z1uZ}RzX)3Xy$@*l<^N;Q@;`0^TJ8f^eptelAGW}iA1?#0ywD0)ep!VppC{nT-Tw$z
z-sBG9$}1^w<-;Xh`EUzd`EYYV+btKg+bVG7Z`}c0`FI7c{O}#Xm9J6Y%4<6Q>u}|#
z6u5FcWc2Uh%JHf=0auQ{MgAMO^2Zz!u6&o{pWw=I5+&fue{=j3T=@Zq0$1MA`9BI*
ze#1d<<-?s4uKX<(u6&+T!j;eCi?0H%oRerLV+36JS5666{uR$H;L3;d+$G`4n+Uk_
zE6y_D%7YcS^5H66`LhaK`EV;-`EV;-`SAY+T=_!w%}Q|PyA-%`OOe~nB1?xW-^HX5
zTzQZJS8kC~Y?V?1uKYKW!r;n>C~)PyoD!}a(SihAIRY{ZxN>Y@0aqTZz?DC%z?JW^
zz?H98;L1Bve}3N|zeZUV6u9yMeDP7hl@Ab$j|5jfM1?Cqb0=`+Ta@MYTYd^$c`pU7
z{EQW@T(lii(Pm$0g)8SenQ-L;N?C3<;mQl{9IpH!0ayN|0#`o#AK}Uus>|*E3S7Cr
z6|UUh3RmuLE<5)UaOIf_T=|z)xbj`<a{EvPu6(E!u6(E!u6(FjNP$>xU#P&9XIkOP
zf1^SeT=^aau6%(4SME{Z%14=S<u(Pb+-8L<w^`xJZ6;j#WwG3zqQI3~+){-7|FQQT
z;89jt<M_O}xi1saGoiPDh`KI=N)#bON6`V@U3b+%T?H{gRyq?DS7u~riwaBt6;Of*
zgcbw~E%YABA}S;lu>zKL1!M33bI!f@EmM-{y5H~lKhOH@N8Y*bt*75}&podaOGdi#
zrIvK%2kq&~g^V)Nl{<e)x^f%EU(O7Qm+tl}qSBQwwWKS5%}7`Nuj<m3=l{P-SN<<+
zy7JOrovwVON>_gV*QG1Zw4^KFU`bd0vXQR*c1yZ)B}rwvawQF9x^krgWV-T^)^z3b
zf0K0OM=j~fkJ{6fAGN0|KWd~a&sXWnb5hN8<vFRA#$)79BVD=pX{0L`KT(seRq4wA
zYV`FeWp=luE8l2OSH97ju6(x9>@nTOR8PpCM!ItGQ>H7&cyE=iT*<v!q$|&~q$^j=
zVy7!tn2VLJe3m6$xlQQ)H`A31`E5;C{!xaRuDpftp2ta7{!xaQM(lLu=k4jrGwtch
zZ?~r_U;3M-E3b@5S3W-?U3q>)y7H3|>B`%r+S8T)HTD1B>B?uP+S8REOtq&g&-{hy
z%Fkz1pRRnHnXY^f>5fuMy7F0;bmb?|C+iZ9lq)hFjwW=i!$ptees{@i<Cq}5DTO&|
zIaEE;Q!*qq&7mDOvT5gF7roNb9L>o?+zOjCNl$aMAP+J9%%Km?W|5Ejg7g-(e6)Uo
z<23r+$?bdtZcIl*vsUDGzLB!1Wu(c3tzP`u1AaDtz@ha)7X1l+I4*KR`+ciKhsWh#
z?XheOylw=q?gnU^53S+hX@vj9$6gRse}syE#sF<}b7dbAg>BHyb@F}n<4+0BHf_+&
zr6%sU_zO$(nX37h2jexr*xvjS1;-y%(@)|yZEbHVHuVTd+SF$`k`N7-3J2S1@~K@a
z9BkspW#k;I(@WDVajXbR5t0g^3Tcjnx<x%uo^!{Qt^|F350EgdnRcb?7HvZheyi?F
z?#FLW)__|QbIlrjYDm*EHOz~s!=pny)={Nc-I?oPX`Pbuc*o=$U1*FY8NFs|S(@2z
zU0X%bf3md<?1`ue0W6ZWTXk%oh7Vwpq>3iV*yLI?fntmY)=H|SXRMZ$YiZXt#RCG$
zg|Glqp4%o-FImHmz@8Ax#IYOj=(#t94xMJRM!D2k<GMyo<PS$Oy=;0Zl;Uo@nYEGZ
zsJUBHO)g2f(Un8cYEhTE%c*afHE<Jm;Gb5>FujYCX=<&pVkZ2)I9bDoEGliIX*Uvj
zE^#|>u~WLGseXWxY_I{nbXiO2wjI3rojH5#@^bsku=8$ppYD-@9si!&mfsdf7l?A(
zha^a}YeN&iLV$EukGfb92q-yO)WDxtrCNGKl(ny?;js8FmxvOm>uMeiz-z?Vc-EjP
z09>n};c#@UZ^LgVIcl;PHP1?df-XF%wg#Q8P!QPZBG%z>bal&N47hY_CQB40c6UK@
z>xez9BO+1sYz<`6C7FTD>Sa`xK)DVVj+L&r(LEroH<xd2kZ?0N;>JYiq)RfAo;j+w
zt^qiQqfacvJ|z~=H`PXRHwnIfvPTNi<IQe|omL%=KiDt=DEgzpEF3%dleNF(<kaMp
zWSrzJwn@s>{<(pTBK{)4EXTgp1sx%NZUY;|aXUeZo0WZbz++KA0v@R5JCKsF<W4KB
z9FDt;0UVCMT47>C>D}Dc=pJqZP=BM3Stwu!m=qxadap54iHd;@Y!rB3JqN<l;mGF^
zqO>440<?pSv9RI&b}VAiU|E!G((2#1WSs{r(8L!*B1D73F*H-VIL!rw*d*;%JyW|y
z%K)YtCaDwl?88x>IUFNQq2zFkOw=N=IEthlfPHia;(9-DoMrii01v0NV2q7`fwUh4
zOgj<N52f0K%-CE<Zx{Z+<vbjXFA4C!o1~6B`iNWWni5xzjWa}&!x6ATPf6mSiBSCM
z&`cm<DS{|L0R$(>Om0pzLB|E?bfppMw1KXiCbwhPNlNYj6ks-Wh0IJ=or8WfMG4kV
zO*Mwa`e{n$rz>%uk!Y)*sqm6j-xvtAppwE^CA)#;N4-=_wfYJb_@hChZQ>2hcQ}zo
zrrd5U6jl?HS+TUKfe{Own<*~C2F<wzqAe7rqmY-wjTt5Y9$Mxa^FRt|m1}!@kuV@y
zTPo@JRd3Cl33aZ^&fA!Cz>1gT+J0VYnnssd?5p2J%~f@Gxz%d=y=hIgMK+9>0<I4g
zsRc~7b+@xj4F<i!4o_RvD{V6LswjQcUKoU+Vol|FwNfqDm^i^I9b$~5mUk_J=SEj<
z3Qnk_v?GZBI+^?@m!aC^S>HtT=TW8zcF{Qs5~^Ak3yxvnuDKSH?WRn}?%am*9^BTZ
zr-@jh|9gqia7wvQKx)`NQ&D)mwNMoGwnIo1-e4^hMK?y)vkMke`u<O}{6f*9tUD4Z
zsRsFC<K|Z0lx8-!%p=E2JT1}2ZWUMZTx6%A)^<^IvDFqKNg`D6C5qWDjVmTDvx~If
zsolusro8#RMc%ZvjzreC*ba#e6v+y!+_}QeE>~Ka>?%_xwYM`&u8^Ep=gQe%V@MG-
z>ki63zgBF6I&x`wbuy(&o?=IXwSlqK?xl;^i*?PlkU}@H!|7g)l;~lVI`J6U&W+ba
zbK~`~xVv|>6u2Rp;cv9}_CNdJH?j|6SqBCPe;FgkWwlmzR;z)ft*p|<r0PpdzP!}J
zmzPEI<?j^h+wA~5KekmY;x>7)o!wr!LJ5Q`?K0-7NWO0$VeaQfG40h#EM21*y92J^
zN*ArbQ0Ps8QadKw6nV7z&$Am#9xGpVwoFZIpM^Z>Dr7}BB|Ey?OqCvy+}zU~9`-CI
zqyG1}{5NK4J2yM++?*u1xvt60$#!l|v2$~(;^s8P&FOY-&QRQ(X=lc2nA^^#^{l*J
z-^%L^Oa^W!7`Tz0fg4-3a1*;0ZW_(J&8*DZ+{(NyknVEgYT=f4mW?#{BUz%g;=zlp
zZ-AZSiik_>A|jsAZ&#O>E57=@V&}G2o{!*d%lxmf%9txn8FN*nFlisf%TX%Y%Do+|
zTJ>6?X*=4*M<>CHc@aXxqj<A(HA=XPMQU`7<l1hrxU+jKR_qanzk5cra<6Db9A%;Z
zPZj@Ps^Vyk(88_}axB|t7`UZ{{F0?I7L<FD>2_~z;jxQNu4z+^9*W$hTlLUoiXDHK
zYunad9w{e&AIWcRBQ==YE<oA|p1Q)y=2x1s;wqDs+eh+8ZY=(|`hP0uKUP7}gxkbQ
zxJ_dbk#rz7vy*OfJGr#TwRDqXC9sx?z*^a<@S;d!Hx-eUV%k{9-D*}wlFVgM)Dd<u
zM}p&Zj;Dd&r=`NbnubIJ{~J4C=nzM{;UoO*MvV2}KYUobfg{>?Y>WT28$4{_kiz@&
z<%{<2j-uYE``g`@KgK_N_>j^0{<hb)8#R2mzg^+zQSF8dzPH_=fdkt;bnP|wT$9^&
zRQ`SU5Ae4gGI&_wL+!3ry*a3=>iXWn{?WD)`|HtTN7r_4@QxlGFbiCh(V^oW{OKNu
zs~vvt-|`3g-S-199HagB-Ireg&&=WQj~$Ue8Xgm=c<^v|1Xw{&>JcV#PyVP;Lk5rb
zi)!#=n0%)i1G)-_L52H7@t}M^%v?5yPKU|o5o1RTA0_87bb$YU*~#Fc`JxZ`#4WR}
z12ywuaras0e_#ISfupPiBgWo8VD$a!`M&&n3kQiG_m1`F4;VFSz*uYT=)yXpaCBs?
z(bgKU!hyr@%eU5vEP`4?h7TKLt%AP+0Hg9pjFSBV^;jzu3>iMaZ!H)&eCUWF`43r(
zMhzG?$TslM{Gr1~*%sw5ghufTaAtrY+sv%L>)=Pp2HM`+e#86WkrncX6%MtLRleUo
zM;qP{lf&;Tv`@02aM(cG+J_7nZNoyr;D`o;?TZ>QcHn>!qoG#?yZh`<RHb0lfT6OO
z9<3etM-3R5fA4^S56CqP89dN7;K2MLHgpa4=SPs<X#W6ze&mlj$OXf!72#+8sKEmV
z3>iGYw!#PV2Rtw;zrfC)qY4N5N9T_eKZn7TM~@g_pVx@N10NUygkE4Lo%`|!j#hI4
zMjbwCw0bklpZ}1;%<%h07mhG_QHYOGg~Q|$hssyT7DN1lhY7r?x&x8x#SaoM_d7tH
zJ~&|1u))Iy8Dj&1D)@~VFho2KxOX%{+aECs)gLmrAb;T4foc?36ug)1%pN@V77iZb
zZ##Hc7YYX9qa8^J&z%#IA?%e*jWZYTn2rBtHNt<}!81$JbS*J~bDb?7r6ocgb~;t#
z^|36Q?H#Fc-hgN6^hRgv(n@&>OV)T}7te7)AG*eKbk?7`)^rztNN0QJX+HSr!XN2e
zzX`f7;&pY+4ITWA>pH&G3tc=_cflB0Y-(ko6nal)UoF$TyuR+GktbCKaA=y)*UL1G
zH>6o&Z86JlurO86<c;(R)MA3A#kcqp=L5@nsEjA+TG(H}@6y>dZdyK@axOq~zM8<1
z3d_jS|Add1XVa<#MCOhZV||z=z_DqB9UME-y)K?oF9I6FHSwsis<|+YyLFZp5~D8v
zpf;m^FkFl}FGGwvb+~=h&oinY^~f9;^&Wkq81q1_#@s2#+$P67Gt55boXqOST#aM?
zU1uj8A%Xk9$HqNj{M};#A9S0^7Ov3zRPy$*z!_EIg}URRhlXM%CytqDU9<v5X(kBa
z^f5^Yi?OhUD11{DF0mAzQiUa0*hmzfRE0}d5FMrR=DPC_G~!Xqh|5-(gycV?2<Z`>
zt=5XgLLZ4o<e6h=X)BHfoH?|%ij~IN5Dg7=KMl9|s5#v6mF5DM9hEaYfrX7l;Zjw2
z5(`_2!V*<@3JYB@+pH157ANTC67}*;eA!$8b%ABf(<?1Y^r<C|*4fXlV$Kl}FxmQj
zcxE2d=mQK2re>n%=N$ed>V5EESB!t^(-U`6Ee*Q8iD&AX2Oc`%gU<tu0rF|Yhf+Sx
zd|0E=V0`W@g+Kjx20U_o3Qs|B4#e7FRr|GUc$E!>89b>KEJ@SZ)RzNZC~J^SG&_)e
zatPMt90NTSA-w%(Jbs?y16s}S=0LYibbq<Nkf5>RMT7=OLhhut*=)~YtpIA)b>~2Z
zB%N)1F%ZTVI@@ws3-O*h`^Sh7O}8h^pc#(B>iT#yHl`H1?hJI%K&*trGMx1H0~fBt
z%{hPoV8ZlGI5s}9={o{G0w)8Gqjxw9QHy=L6{x0xDCLdu?+v1^SHFv=QP&HIp14;p
zq~*-oVOfqp5o@rsTQ#i@V%g_&<C56I9f1Npr28u1eFl32Ub}gBoqau|6v#Ro9@BZ9
zNdmA{$E<+W*(Br%rXS*bqRZKth8+Jo4(UpS+CQz*G$4~y_Hj>5YMa!CO4aZjmK@fh
z)*zf=kw;MD&#xJ+AANyZGiMjgk7VY<e@Z2!H1;IXEj{A$@IjDcu@F=511-mFIJ<_1
zXW})SRYSwG@fyyI*RVh|JQuHFQ4I}0h}SS&L&Fb|(UBLm{XRj~AO?zcUnw9Y_CJVj
z>hGV}6l{#dgbIEi{sDT`CkS2*@oqZX7bqvX>1LsurImKNIkGH@Zq~hFV19q8q?<XP
z2BHavC54f8%8+*MM%sD5NE5{KirK}%(rSt4z_IF4`NE1gfZbn1!`1N`me<g5O}vKt
z;x&}0d@)|by)`s^DPF@pH8gyAMI`Znnk>+Lo|=hg&Wh@Yr?bxfDT${u63<0~cq)!t
ziKjCwUJ9M)U6Fn!XkKFhA!7mKE301s8j&#@K3YS=Z{julxuW`pWP}pP3VC7+0kj#F
zfeIVY3@ClHtU4%ZkLB<#pyQZVSRGveRH?IhozZAZqn)9%f4xD9K9xOL3Tjqa7w3pQ
zESB6;rJ8uNoy0{psVCI7*{n2Z>WyNLs6G{Vir3LKbDR%p95$yE^inf9%KMR{%!N77
zn=Q2(<%y_K&WhEfvuALe#&Vo@BFA}FjZ;>uab`q~^PU)|0V~FFTFG%vM~<^VjkCVm
zaSG%(Go!|NTa1&&7UDRK<TxiI$9Z0j^GdD8c`|C8H^n$Ewiw50F2|{i9A}9d=f&#B
zk=B2yFcCw7h|j-)YD2sVN4@gImIsMgjUC*qfraGC#@%8XZ*(;nS!2CC!`Tgo^!mUQ
zdC*5j6PSp+QD2^U1N}lfr#TqelL3HZse;Q@{|;$cy(E~VnC6d`Pzu(VOv`(H7n)YM
zJfB?N%AkUTSC~dWY?hkjHKVQ;ukMek?vY)QV2i5z6V&BR^oG3YL$J9WQ$^Nu3eC6=
z&RD<Mg|*?aGjFPAbJuO~*oTZ>`0IkQOnB(RTT&BNSL};-MhzT^FQ_|Zi=5_;YHLf|
z@E@x7_8R*J3k)jr6!xGOo|D`;Ic~Q={O3CZZoLXt6$-&WRifv~P+70XlW!$aCe}Vd
z+QnkizP>ignW-kYE($|2YR^)&*Vb5DE$2qA^|LJ{96`CDr1q}RN`>t094&jFJ0@lC
zJ1Z=*_nBi6T=(t@DSN*>RvT$`bVVe0&!=(N`ztK6cTVIeXI4nwuBz22l~JS26RQE`
zf#bB0<2)HT&If9o^R*i1WYjoMt8qTEjx#fIoR8HwpHw@Jl8L9I#+iLg%HB^_SY+>v
z$Z`Iy#`&mL<Gd3!PSG(bd(W@1$lfO+$GM=!IamESa!a$qCSVsIGiC3os8{i2Zzr8i
zSgt6z6Hsunq~Jbc?(bL7+>_b-<v_v83-?w<#N3OQOA6jlSsNG?EjM5!$9bnha>{ed
z0Y(kwIHw}VS-4!nXl<>=nH@FG=?aPSMav22Vw~fV<1AL=yj1--qW06vZ2-Se5y(-v
zm=X2LV*>xrI{RXo0{)-%^kVMp%5^WPwz}vPX`;J<Ua+ISGz0S;u(^-tpi<LOQ!+Ur
zUiT)hUrv=!!q#oZwZS>O?&ZZ?s|S*d-=?!wTA3K|HZ`E%9IzP-m}4E#cn3C+k6#@7
zRcm;4iI~e6oJ)!puSSf<&EZu`%d5H%#$170uHbesy3`78|IJp=0$#PMb_JI}jo<wy
zD*!4y(Vz^yMDSlD{OO0$Sc)@?yZU3V9_~WV76$`BSTZw_FwKG_eKt>Z@k|%kznZfE
zY@#kan|!E1VXtitgk!3-IlDE@nI*|^Q^2c-gkGEh<vfYq5<(ZA+edbXP|34#9%Yt!
z+z~mCyQ-asGbdsqQ2vS<cKU9qj$hg=I4sE(QQIjErYBX+m*drhejm|cZE-r*+18+j
zrbj(c;=9mk3N{XJ7=m3y{}2|oa`V(Xc~U(PKhR-)VOS+O3v8ppIANdY<V9;Isjw*-
zTR~30lxz?p*;rDDAWimo#isSmT>-zjX?3z^&;(4;AAz?n_8yozG$Po(49`_my>zxn
zn3d4OQCklg^af@-G|U^ai(&TcPB*SI+vkGkG>wqb5OI~N_aM_T6_D4QaN}g3?+BDb
zFU{GstyDw!Tt2e82i+)(fi||nFtRyWrD8T<L3ypS*$J}=Bg|4Y=F(QNtQ_ib!p>^&
zCG7rfTWN(!Y{!m34v{I8cyd&cyI7TJIUXFq=Y;{_-QbX3k(dCwc?YPy5Rz1;&K`$q
z&gXd!3k7|Ij~qRNXZD45t0VzWL?hFW8)pu@noebv!V|0A?E_iM9`^GlA)aw7nXx_s
zYGE<XG#M9Km;>d>ZhS(I_1$3cP8gSPHFVP$MaM(v&QEr_p}5c+=IJH8Q3ag<2#<9U
zl89cwu|~#3o*v?j!@RyH6b8ZK<8G*v;pOSraliVE&LcGT<=%jWBvM&uBa)7n4{%-u
zOD+Lw1T~h8^yczFK|k0YXuO>V%J1Qq<7teKUyi?E2UH*6c569u>_vFY;Nus00I&V@
zQeKa>^ig9N1^(`*zxDox{d%!imh98feksHaamE>b|Ci9?A{@#K1rKS|KMLJz{LuH^
zfaf$)<%sh7`Wg1V1NR0=AmFrqzMK$X=#K@wna}Crjaa&9jfV;KV4KqrAW=_mXZDQ(
z3FwNa)`M<S5clhX&a4{Y1H{{`oLV?HBl=QIbH0GLX8m(`OP|w?kYS^=Xh>zyc^I3T
z=)|)Qc+BK3=OEgmrOU0F{F|Na68}lkLh(3>D5~9Lq}X&n%hrS=9!M@l{uNBH-^F<&
z+{8LPIqsYgZRfy@VnsX1oc|2y8Fh%O)a^wm^a@e?G!VO)dWbjZ$FtBL=pSo<44wTM
z$hXxn-VA}!kEB|v?sVn4kY?zSH)g9CuvH@$&8IPYh?qFpM{?<@P11o1l8(J4gla?f
zJZO#zA!t7qWiIxlsEIg~TgM+zr-(Iv?jow!a2x)d+Qrf|Q}spJsA1rtkNo=w-T?ky
z=I8DFQ0*hCUaud|xSiMQ%ro-jzo?;b4JjUVd<1_h@h@ncv~lpG2f^cNATX$t0isWI
zzmRuD6QMCe<Su>%$VY@|Hj#U}AIQB?m}^%cCl9J1{KCrD1;apd|8#&%ZJ}!+B*$(v
z{UlJ!joD(53yCi3AyHpI)2ahD$qbwtd($s8(Z`zuR^c~H_v^kg^h~cjEaYn_1cGC`
zUvv6_q%Xy-57>0tJvjwH(c3_nrTBREetzxG{OWS3*x2dzmO-5ykXrXZjXOO2YGCDZ
z{MV<mr|LR|bwQRd5CcuNh$fvp-*~Kt&cv1Es7&zk<h$U-CV~^FbwcarR|HxuT8XDL
z1iIXHP$R`go=x_`D`0StyOZ3X4U8w^$Q0ozKS+nEMF6nD)MrvQJl?L6loq17pWOc!
zDpT9VlLfI5>gd!jUp??<qj{1S{jQ(`u9a&c`74)`g2!%7))UEyjS0!F3Iz;qgJJ%P
zCkAa%@n*0rP+lJPAZnU4AK<(QR!b0gISvG%=R*<(I$QEepxmn5U&plqZ&MF1$sTZA
zs5`RMteL{zIH=V7;#UGuZzR0#`48c>%7hosxGRM47_P;D2a2IHykUJ<>>&qI`Epd<
z_&!4)N22!mSFEDe#g2(d79#QEUc`}<@aWI-9Cq?(Vbk0N<!L<o=0u7nSg|GG6{@;o
zC$z1r&%tu`{1&nI12MCcU^j=fm?0;^LZBC6DcM_f3lL~Y$S1<#<UvdG!5muMP;|@C
zf$~{^*)p<fkgS`s%B`9JO#=ZU;pp6E-TFc22e*Uff$kd$)pM7}+T9vUcdy#J6OOBm
zk=^Zr?hyIFtv=qF-4zNo4q=SM0F(%+Xa>TXK-B;fM<aKY@Yig!iH}F{e3q=;t614~
zm_s`+fV7ena3-iuQr;koU|Jq8&sohIkM=_WQnrQ$Yd!rq@4%Lh1&bXhs{^RE3^v9G
zMRh&AVIQ2^D1VG2cQ+Yea$^KA_l5AdoQ)`^bNEtNLjyFSxpN6&t*_2X>IgHeFPLHV
z@8ErJ!++(;H}1v(f)wxpy}YzT9H6lMTV(_SdwB;QP3N%B|1QWrQ*1p7jlBp>ugqe}
z?Wdlx5}TAL{jpo^NBA0BzC$bU=17;`+gk$#!Vp~u6M$l{0KffvjxYgBc}q4C-{yKr
znt$<kKf<9Lf8_FRY;N6zHaOS%Xzg^<QL-hm20p>jUu?9R$WAt4uO_5$YPM9sUY)fB
zi%3}4EX9o`J2d>pfkxy%g1%xH{?8h08rc$!b{%g83Q$!yqiWA-U_r5W0zTcZiQlBH
z-V79wzkw~LtuWgbC?~35oe>P<H4U~&`W<=(D9R+<cY=+~-sP}$1v93;3i`S5Qb22v
zO+g^j{;45k$(51p#Q+u#NELfu5;z#x(u>N0*|7tioq2)S*{QQ<U(+-{Dt`9;SdEaB
zB-v!rdK*cXAW0XaHn|`*qL|<}V~Ig{V;^?+xL!tjJy{$Dc-X{;oneK5B(*tNv%wDe
zeft#TSw~I59-w;O;jBQA%?gG9EIxM*!WhV#Knx{S_;R!cPslRaqPz-!0lL8C&vfY|
zZ!RJr&QGiXh#s9S!cZ1=n*06(XqMxU+x~8c=8m-%Xo}tbjsvu6wmz}I1n1_zD{#^V
z>*!jb4gkDg^#A!`O|!zc6Z`b<CVV?Z5cuA8b}+xVU#L9+X5GtMCbV%O^?vFg>Rk}5
z5Fjkq^kM{UF>MITV9N&dSc)aj1T{gtpE$@ce=1n6ppK;<I*J9pD)868p-yA?;nUrk
z_)UCtQvo2xho%WD!+-FJ>jn5PnhQJ(jV{KCu0X84obcZ#{pI8A$f|rfg7m={3`diG
z$vA;4=<9TX-^5E1_p;L?6IyA)#PjOuyy+y~&`Wy~>JcrjusC<d(hot7JeP(Mc`i#(
z=V38Z9YinA6pEg6NzX?gAz5+DF^FGAGv9<$DImAbNDS7wkv4X;<P}1Bn>zi78p5vD
zk#KKuMJsgD=V8QPbJXYeB5O7$eSWW}6f9V_ALgF2gr~X4fq0XLck=K)US6+^^wFM?
zYNN40%?lNv*DyHjlbaKJawH!*>#%1>qv+RK4Wt*_3bUbif$Fc%uQnSHC|7GfA*w^V
z*YEeh><nLoSNI}8U#|g{h;K|3RcB1RB8&+yY)9BhG$x!r0!A%h83)nO+}T(nx(X3}
z)#r8#rJuA=D#=1AL;m_AjokDhc<xLb#YEU7xvTc937~_gF5C1f#Rv;`)uuHOdn#!Z
z>Fh;V2FRb(JkYLn*y%JfFj^H5aCFum_lPdu22B(X@95!PZw2})MtYs3<xi#w%at7g
z%1Uz8K<tt9bQwt8*T^-ubfg=`zl@zo6TdvjV?Z5(xroR6^n*DiT#}8OzuvH;yNtb?
z27qD<M!MZVG!1-FX4_C!q&chbpqvi{#!qryDMtTs6B*VZD<<qFsdYFpfqlJ638SgI
zk;RiJdW8N#x!@ctodx?9od~DhRx2e!-{0=ge0}KE_{dk^8?S!eq5?+&Hp{nYL^N5f
za%VtR{c#7-a}HZ!8gmv~Zf3MCS83XEhovny#cIn*N5f}3q_cPO)+iPD1-uK%prqNt
z(nQ??hF-`x(}i-6@<@Lav#$_&N}tE`V6+OSogoE`8z9^ot@3eK9?$5<UAL16!o7T$
z*H0r-O7c;q`s}@NrLbQrP5>K^y*my{*@6Tw)o;n(8Yd;W6u#(6s*eBy_Pt&CH$omV
zH4co^gasOcPM0SLiF|q-7<I+44^KegYsDT6L)}oPSoGQx$fTKblIgUs59AOGi<kJj
zWjSw-q&bWBgef}9_bb^^z%MP}Z9V8^N?r&9J8!1-q{%%-atD%bD8n!IqEJtQ7s%ol
zdw2?1NjLK3w&c?CLiKuXqW`*rU30^3FTc`5!wOOmOnqo$1cj~HtNC!Je%_%qlwMTl
z5Vc9_JdqkL-B{hRfJE-ReG<7P@oV1#!sa25n}}x-)GvSylD?r9V|b{^Gt`7EtFs#d
z?hwkN$@?fQ;sA+%S9Z1_bOG-s?6pGL+#^sM-NaqJ$?QVVHtNf>Z{sT7r8&?*kjxGj
z!eV7zj32R`!xVwUD~A6g7^iE3b?WL5k=fAN$Ge4jXCU4_M3xV_`w{%=@uUeZ0O~QG
z)ERzmg9)uH6ztguUZxEsTcEjKpQrzY9vcBorrb_M3eTCe32QE>mVh*GPqpX$0uie>
zNkq)8P3<+R_MF<(4kNVFMX()kq3};l4vHXZ&1L^b$DJ+v)`1M#1De+ZzN5e!uD@Vt
zPIcVY0G%U9zh{hB={g;GJ6X}jK*A;Bz~=m3GPzi$I6VG(gAyc3=+1U}%f&p$D`Na=
zL%_ZW6iGxfy4thM2nv+6v`NfK@-IsXE57Yhp!n9uFLm4aw!WQj|7_#ia`LBI`L>vj
zze32h7`Dz@3rfE{%rC`Pi|JP?^OoTa8n(lMhtV4UeI9StnP<cL=j(R@foAijog@Vj
zgCott-$AtS=S)UFBbNOfE;|k;;B`tV;vhseUn3D}u)7+bd_^y(sD&5yk~-`ui#HKN
z;Oeh{zn6CASLBf&SAZKuU{~I1AQ^$J!QO(F*=UbTC9(qs)O{63Fq8U!I(YbbkLD>y
zd-XmIapgz5?3>YsBgKncpCpcg+#akqIYpz>V=Tl?si&Mo$E>md>NXGi_a5>(33yE{
zvrrNc65cwf3j^$tTQ>B2Im?}4-RXm^8DQiJX%h=adl4)ro40uu-E}T_7Jj={^tZG8
zEzK%BVgTC50ED_$g+nY2YB6V{<{PFJJX01Z*2{I@8RWh-h=2yV2xn_0{!$-XHrnhr
zy+rr<sGqZY2xaW2(N*Gx#{*z!ycP&Y+){)8<jD(f=MwP`Q1KqzxwS0z6{Gf5wpp29
z+;rKOjC+@t(f)=_tqV_RH9QW>#?y&hu-wo}@1SeshSJdRVjFe@=#Ewndoflsp9kA*
zRPE4pOqEy19D^!vil~g{P7Bx(w~|Fo@EVo)SI_wBdf=K_VzszZ0B9eL-^^Npt;*1-
zRZDzYF7e}J&AEW~A!R|N|Gf?`JyX=db_W7ch*N)D))_`B6MA2sBC!25)urw~Ocq5?
zsiK>8gsQVOcHg+5rryb3Iq1-0#2aD^dWyC4IFg==qkhSD9odW&8E^2}=&HCAAH`m;
zOK9w7p&z6kevKrZQN*_{))a4ISx9GUp}bXCS8U>Q^$;QtuL}*ta(6L;V7Sw#(SKm_
zrfZh#bKgj`OikAGGFVHBE8?bHAG(8wVqk>Mc796;;#XOzTo5_GR8DjRd5-U3ElTmQ
zc(JC3`BF_dDU!T6#WI+Xhu?y8{1XyMKbPE4vETXB_05;RiwJkxKS?X)DGe0<rhFfe
zki+whiLkEy8mnK0H9HoAkgVjatyoP|gJC+`Jy8S$Bv<jfU}VrjV1@A@ZhoN=CpW|d
z177v5@S66$yp;9@4C>qzJwhB|9}=gOWs{&w3v`zU4e&mtvCDnjud~N`!`=%DuQ7ov
zLHv6OVyFbT?Z=wsa6cR9g{^io4=lk$OCUJAq}PWfg~h(`>z9LgVEfo1pzS-wnge<P
zAFmNB`d|w`M`M@b_Lem*cD9SAgSBF&$wGK*Y*WykgSEFiLJDc)Up69%CBuAw$U#1W
zZ9y%EFVq<5-Z45m5dcjCeO()|K<<|78$-0-k2THVW7vJTzNQiDqw{d44^ouV+GnoV
zCsus=6<YCP;AXJ_G-oF_d<Pw+B(Pq>*<oCy!{DlNY7Dd4sG5IlYmSlfhh+2l*c{rl
z@v@|{NZ=OZvhO38$0-M1yo?3g#|+qhMz9SdY!_*)U5FRL#(i)VzU^SsEQ%!By5ub*
zy2^p7ypVV{lU(<O>>f8xt&5+`^grko{LjdDw|In)P?~6$`otsX{AOgJgGQ)_0VHX9
z7eU61Juf3x(%2h-Q=?GaC1mWJ!*JYf_6pGLxf+$(+SxG_O)2V`wf_=&CJZb7cR(w5
z^Wp4jA42Ni1S!?uO4(n<)mkjhUgDLEU58cWhWTGnJDLpL9O~AIVCZ8GEq3=deir>!
zqkw>&pS{M$%|`<UH{Z-=gP;SRUKOmuE2*3B7c_rOOf3FB3X7vHSR8G~;?00XB|ZOp
zSX@6qfaO4Q#NwKj@vunOS8P}u788plvcFT!V`A~S0R|SoZuTp%XzAXDMbU5dSX|hm
zR#+UVv(P>Vp;6)OYJoQwz8eBk0OQ-hrtuU5FyJYZZ4Bc6q!{t$1zqFk{h`-;d?w!N
zkTk2saxc-uk~mv2Ps*msvkv=W7tagUuv%E&{BsUteUE_Q6{dUuj+k0gc9@9T3E*_r
z;p0O<0sOJdYTokSNwE#D9>6_jy$~P59`NFmkKY8;`X?CbkLVbkfKr+am`lUtESUyY
z2M=q8vFRcf2+=zC+$fg0`5GaCKe$0tH@~0k05DGxmJGdHbE9DazACG)zA=u8N3M|h
z9kg;`mi_AnzaoU09V8)8Jai6C^r2E`r3E6!Kmd<7uF=A@nSLecrQP7efWL8Ztca@(
z{H>GgI(Us8du!rM80`l!;FBFfVKJ$K7%gR|zSyrGV4pM(+t7BIxhYX-d%!?jUqIU*
zQDyvMv~BM%mbasYz{7j@7-*Z96M?ps{f&tqmDN}DuMTa`=P0zDyT?G=(>XPw%@_!v
zc)Z20LfeaST}N8j(Y7+qgiW-~%ZZIP%j%D`@Wp<0H+yrL78VIHezK+hFzhCNxyvF5
zXO0llJP%NA$);}8$boma&ff2be!lr_yj~yP3i@h$0Am7Zqi`N`U;uhP2vlJ7`h(_X
zp^>HMsj}y9(&KCu@`XU=b=h~=;a&RUV%~4mX5Kqw@7rnK8|1w2(%IWI?}aq)JlM?P
zyt{~b&znp0K7S78eQVr#Z;(CjuX)}}u*1Kqc`vKYyf4V!i)h{-$a()2%sra-5}LP1
zXLE4gUB$fjh<WeEdEXXy-XF-G=hZy#BiLaOtc-_=RJun@xC69lgzpC-pEq*zARFWt
zPteVhMt;kQhYCcd=oJ|)8X3L<JoiQc4c_H8dEEHun-QlQK<*P4!xpJ1V$yeLl2HX4
zFMbolqZ28X^}9uyRi*EHleSt(?2XM@2*r-a7vg`>StSg8JMtG>-6+JHkLOLq4aore
zIUnO)p!=>706;z67;JJ@fB<OhhPnlQ@dQ&k{c8a5OauTn!~np-MKuH9v;_b=>;QQ5
zbZh`DFaYpD1OWCe4@wBcCV_xS0s$)tJXPWN6(D#|>|RY6d^RWg=FzMV95uq=$+<xT
z22($<*>xM{24lkD9F8r3@LYw%3WafOx&ejQbTH1OgK<_mIQ*-iup$x)%jZTz;pDlR
zp>Ws&g(K%|Q1~nk6kaf)aNG`s2^#z9aRdYHk1Lg9a)PF(a{Ui@dQEfPyDliTb5ori
z+Yf{46X{%Z`MRLo!>`-#@B$1QTYNpHN7H5aZgx1rE^`m=7kluv>u3*tXusS<SFSZZ
z1TwB}$pHr$1?L@xRj_@nvN{{H?eJQ`OlQvpL_g22k7MYH+Zd~1JaT1x@1O&KP1t!l
z+Y<(b4{+ajUg9}Jhy6^R-S6$w+3s*qI7v+7hUbWZ*RQpD0Xjn61F(<kNv91z2FUk6
zP4fxBICXM?4#6FlB&Fwwd^+kr;pAGYfPbgX$`3e1$l->yL3CH&LPb7K){`brW2UYP
z*5r9CkZ|1q{i%6~ZHD38_-ZXtQyupB0g0D6Yi*tzsC@>;mOH4m5%5jX*_4A(*owdf
zx!pZH$s@vacH%jNu!ffIcZ9?#$wfZlE%Cu_H_XS71y+R7gKigw^<(D?*WupOeoeX(
z$y6LRO#mXy(p*vAu497kN)_FGZC@XTU*h_J>}F`u3t?M>6(Yd}-eOfSdLj}Iz%l<q
z>a=E}t5_@dW-C>*Z(fOXicLHyhR&z~gmM^6Wucr<+twQR7lAvG5Jy-a(J5_L3yNzm
z1`yzbhc~4hAc(z}zj9#EoD^jffbj8R$5Zgi!;`CcDrF$h*jqcS(bSo2E?u>v9!7-W
zcP6}T$Y%jc*G&yN(VKAKD~Csa4&<T`XitI3W1K&YV$UP6K(-yX`33eVh?N~Moez6e
z;U;WD8`C`7#?%lIY~e;)6vp>X)7S?yf^;8{&HKth7vOjUFEKZ7Of!8^&h%BBX^Bp*
z#-0BNmdA2On*PY9B;pDUS=TbGCVFtaoanl8iK2h6i|`Z9Ao)qV9=rH|DX8Q>AA?ci
z=)xiYs1F1JK4y7=F+7qn`q>%diS<E$Bx8J1ZZJk6F~)B@OP^n$b^H3DPo&>sYzp!s
z>;{?7a=_5Ws=79-vG>5(o1o7^z(T<3i*#w){h3(nUQE4|Q@{&Ze?M=^n&+4}AUCf7
zL}){VTlc$tuoCD(F#dY$+a|#G<sef{F#fdO#y(0ZK_3c|c+4z#)xzd4Y><n3W1mU1
z$J9zo%N-H>+_@X#FgS($umjKwdF*yOq)7C74AiISQ~o<+!;<@}E%dT-hs_7}l!0}x
zM__&HhM-#qvm;U9dvdu$GZ5a?itq($e(&vza8JpZz)P@BUcAavy=n4EU(+&K-QF-v
zUhONzXt@2aHcL+RMeR`1UeL&oeIjj=pW8>8B<K1V7RkKa7zWACo2s)%rna}4Bk$rN
zP&!-iU4YDyw<l@Unj^({78ctaIo(IIStG@{zuFi%(Z{q!p3fDg$Xk7+CGvc3gdwuJ
zZ*A?6nYr=IkZ1b}E99)i!&Vay!UoxzD|vixpC}9D-P{P=)Y|?S-#*Ix7zO4>VJ!1w
zU*9O}<Hhzh86V#hbxoG5n%_6V@_4&_q~W0!V6!{6<jOnZ5o-r-*pq9QMnCis3^z$O
zDYgL;`g$uj!r+JrGSl98Uv_l1&o8t#zPT#O*f{Zo_S+g8;m-r4!Y@3bRby=Y&_0H(
z@ox#J*|`SnK9NOF=Ek%$6yICTj3+d<<J*8RGqyjW#WFJ<mvj6Q=P1pLXR89g+RXUu
zCNazKRRS@yZnA6dkFNUlCdMd0L}4rw<E5LTER4NZ#Wpbh^Z6;`;@nM!ZSgJ)_C$52
z#d~tp1y_+_;jfip;WrHnf3=3ivYYL8#nCHGvtqvW9at4_UuiWe7T+AprZ{?KwI;>U
zo5f;QU1=13FV{EustA?7?dIyNiN#k&8xso2k;cStF{;&$2whc!8FA)jWkn!r-?=i5
z5wS<kYx9+M6GF@ZUOmV@IqdKl_*Exy{6U=!!-iRIs4~otPd<F|;FFgkp78*qpC5x$
z9>d_2Y2p}TlTxi1dYXY}aRo-WK?pI10_^u7yxQqT7*rc$UK7_unB#b5;8n068VQ~j
zgu~gPHPSd*`>M3WKV2;>)H;e+rXMjZaoPF$HNt`emAEWOA$ROVREQFx{>dYbuuo?G
z{d{#Wj0qb<B5Vzi^VkuG<)FkzF%M%yHu%b+gr+=*3rJ=Ud%2dI<H10N8|bj`N*N#$
z)g~Db_o^eruV?*B`5%C~wg#&r9O#N2FPHdg$==;AT;@>!(QN_E4VF=J%+>zhcD&2p
z9gG^h57Ns(5;S>RHc1Bq3|``8>UXwlULOUPV+p@rw}!73^A<q=t&B37_T-UXVemjN
zKcxwSCo~c@U~8Rym4@jmd6PcIzkOUH67Ck=$8V*c`l+5KjkNpwKt)$YU1$2I%*g(V
z%*cLzgr<(grlk|7Wf}-yH!?P-i8HW6X<C6m@#c|XiXsKvKAx_{h}OX~Uag;q_})A+
zq-X&q`0;;bf)$d4(?u6$ajHSBA?!jL-oS9O@JOFq?m^ShM`{w57)8)xC=E$*Hw6oB
z4!YI)%SCFHJMj_=1s(jZRJGn5XK*f3yWj~;8VMz~WTa2#!kQ!}zDbRo#df5X)zqUu
zcF-W+t-D4={7trjM2tT-%_of)n1QMoHHEQk|01n|+u}*DlH4;^XMdwsEvm#6%TB3V
zF7RsMVhyB)&VDbhy1aZUASKhz#Tw}{Q|E=m<z+9h$xWmtSktf=B3(ubf0Z3CQur@A
zoAQ8gL(3fs#%c?q`uI3q`_VxaETy2?{YG{Yu^%WRXL}tPpa1PiYuF#iy9rA)u|4@F
z^3B90npf>c#-FmBy-54{TUb0seG`pMITb+CY=))g1+BxU;zaBrn40PAyTxRq!|eT5
z!SUTm%V=eSoqk+wn)BbDj5rAbXwF$;zF!@4ShZpCfmt1jO;Dx8{_~gMRjFa@k905X
z(gM;eYfs6r#6vidWc@5>x9e8H9(zy~*c{T?uBhQKpt`Zhj42lRWxPe2HD&tDO01cQ
z8){Ie9tyG?O{(LX;+WH|#Od~{{d5J2XD*TWf8mr0?sSSY8=yPzZf!yt&!K`0k#!@R
zen1;h>xIqY`kDCk`Ys~SzsY-ao7L5{id}SL@N<!%)yq>UWlJh-WpY?AO<Yq-mNcCr
zZDY%2F_GwglRPg%C%{0>N_|2UtX{0iDB&5W0;NKzrLZc{b0K~oJ3Nq}x~N{2+=4V`
zv+HQ`s7H5Fx8Fr|+l;M|1f0bhNW^irUV;9=VwHzn!Fob8tew~B7(5RWYKM9C_XMV=
z!u=pY1XB*&WVwY|A|U6|*-3<4w$F*dYm0E^&SH4KbD-wIoL;P~X))dQfZlgKEKaJ@
z?&8|DP`jueW!X);%j>60M7m!O^-<miVK(hD<bjviVj*Vua#IxffC7MBibxBVP8amR
z2F#N8*eH*anL$GNTw*7Y$kK1)N%eF>CFX8Pp@4eWKP_7q^jWMKC6C8Ya*rJ50^X#4
z_B+I7PR8n*qIAKbnCFZ$E$56AZRd<()bJ->CY>&B<9;_iV%Lr*r=K|tEN`D7?aZAQ
z9K!P4s!DcUAeXw+g~47{5wT&0#r8XZwa`fu1pFtkd0{$G`QW^?S~t%?d)Kl%+I~S;
zt#6t>v#9<keblmGIl_Vh;;sjC`bOz@5rH=_)HgIyHuVBJ7<J0{PDugjixWDVHv?=+
z`zI&xUsT}TMU8iH>OJXdJ#XqFK(|u*XyUY>yoUNi6&;Kuu!<v&^8a_TVnKXa0n>eV
zwY<;rp#jSQI(rfq*h25DTzLX~RB!f-NIx7BM|1WyTFj=rfUe((?z#ngim*=S(d=U^
zw+n<aA$OnnEDlXo#v!TdW8#T!&G;?3QT$?huo%^eE;1eCnRht``J6^J@DXpa^r|R&
z-*G`w=oVvH!*#X>=La*-Dvm$zezE4ww!$U~X2F)B{EHNOlWG)ur=-~H&!*8nk0>tH
ziBz2cNJolAXdtyZK@rHG*W+IwpzYN|jtYUcB0Zs1miTfFTLU1#2e88G==GHWWn9$~
z8M1^yHEV|T`~$%H5%4L!nHl-!;|mU-GN_)hl9BRT3aS$Z)xsIU3ZfV&MYmFCD=Ec`
zKP|H>l2Eb0^r@`@jmQ*q!YX`=H`>B5Na<?a?Sl36@7EpWB1cswcOu99Rpy$?rh9$q
z{dlt*aT0<ZvRSeZ(|R<cW%a9|Z|ESQT}bjsmI>on;V~LsTFmARZlDBjsEbnZ=4czx
z2`wLm=f3i=(V861FDANSmjqRKOHGN&q4q{qdq%ajiD4@cO697-(#_Gv<l$X--wi6)
z<4qWP+FYoiV6E*5Q8%d&$&WTmmneO<p;&O+97-DU%d&@sV`L92O8jNn!~BtN;$;t0
zpC76&ZP<Kx7$nk$t;95I0I1_*2;H9~70aw(AvSpoQX2a*sW`Ew>|h~S*rp&Q(;VZm
z=N_BRW$rOI*s|<ZKRR}^;W2|J9T2P!x<M)x(hL1YaVKVx`Wvu%Jk{VQrI0O5kzT%7
znqg3U&7iS7gkm>m7H>X<HwlGBNe1hI+v6^7pPN=PnnHy_#p1h7T36wkr?e}+7=p}@
zV_vHqQz;o3$+Lgr<j`yX7v7Rh7k9>`8PiAR2Urj%KL8~i!A~q<DggX$l1K%x0LbI*
zK_SB%E_b*+q(z0V??-=a!wTMzooq-~yjBb<1%-OJAq-dFRS(bMcHr?rLy@f&ucX?9
z;C@@`5}3uyA{EO0I$Ju3T+&U1e^{{l(&LzY-+m(U8tz`9|JNF#dAE9ykM6D2hv!{#
z78t8!<WOn&izo7um<Z^=X6*eIT2#)cIN7@PM`Y^?8QHoDDE*V}K}m6?&W_%LR|7SE
zHGSrV=i;9-K8$=O-#CnWkzZBD*>{BtXpiSa5!8|$*@vD5fJ>;qbci31xF!zU#gj|L
z?gPNKkHEH3fDNHm_S-;hlLcxge?8R7;z8}Sgc{Qq2=gk&GT%3sxwRpx#GU3cU;J&B
zx!bbL*ZvF3JQuOd$73w>6LXns8=^^h&|K!S-)5QrG??*ngBi!iV8*W{Gp?k09J4Uv
z{NH9G$Bl`&T^7!Wnn*}|$rJM$wPd3)#J^wT`urL^R3~7nle`7>Rj$@|MW`|9qr=;*
z`Y4Glr{qRnlCn8$+gNy64^+t1y)xlf65ttckFo_)?xKFk=ob+(fHHipQ<)R9Y3^Ta
ziNGh+S-4E3U)!CD$E}-(VSY@uGc$f9LVsYlVHzK3Y&fv>PHMe%7zHwHucq~lI@>ag
zY)9a#N=hKmmn~X`N5$su<@HL-JTZYlb1*-ak*^=Id!a#f*j-g4c5&D6H=RwoU+oJ4
zx~q;U1^tHjDu&ZltwFuHGNRw@%QRt7Z;E`gW0__c)VnLAF|ZC-rVQ!>l>uQ;07gK$
zzpq=SnFe*y@oGGjc;ud_v-JcZe0IrQaw6NNz6_Q~^{FCl8A=6EHwd6c?jAQ=XDO?0
z5>+irwDZ8L_+DNBF1CRH0}qy=wL<QcWMmMHrONGHX=R{Fd}czXy?+C<Yfvt|3Xy&<
zjWQgfdg`x5s3+RHO<g8o`(-Shm57vz1V;X2C(>Mjbn+h)4LLQWuAYDrXQB0i1s$0u
zU&pof#&n%IG*zMe<i|4BYzSzU(ke?StxY;A52>ksp{5G^%8&^4h`)3rrK7DBubkYY
z>6I%zdOzdrbcz-eM2|&`n~2im$TmzABXhC2eX%pU63l+sM&CD1ViUJpXwsIR4e1aB
z<{^~G4?y#f7WNfTEPX?tF$fJ&{vQreX&(YNq>f@b-{!!xR&G(N^#8UKc*i~gkQmQg
z;<IF<1iMyPSL~cmGYqUSL1RP1^51qcA4N@OW}L~KkDAQt-+D4tw#f({c<Q*k)^dx^
zrlW{xT2D}D68p3=5F)05xy+=K+~0CCKgO8M<20F&N{d6@^=3MIWgqRMExBi%cSwWi
zZt}*n5^RW59muAjD3Ser3$}onT*uZe==k&K!$_*9SMZ0}vjw=-VrLo^=o57U#=HV#
z*u2{E>%&C(X9UF`$n?nr0K7Eg)cT1opDd8zg+;uUSt_ewVo>n}OMNXh&Pq?qm99Rn
zK2z~4vEqx570|gWkOYR3F~oisj#%TJ!nzc&ee!sqAVS%l@zdU;X0)BZ8z(cNW$~{`
z8XOjxQ;TRH?z3c0oh`h)5t&m72Qq0e0b|B`N&=bAJ}cKS7)$^oB8@P*!F+ME2%{4x
z<9~DiKcBmFM9zUWRE<aF8ZJVC>SSB`f!XE3z#w-15vQ9QX^*;R11Y<(+>cX9!7G-2
zyh@!yZj(xyMT*W^g=r^HM_&l^n|%X!`N+~l3p2CNZSZ^t_0xncyeN8`7bkD@ep}vX
zX9#4_0n8We!SAj<ewW6(!;2pD@m_K`)6u9%fYYA5Fu?NV^u-m6DR|-pdh8k?$QGC2
zVJ>~0jGa0Wz*K^lfoWBOg4op=J1FDbbd0^R8S`(Qh)xIw_T=0WVS3^Tw+lB9Ylq-1
zY&ITqJR<$<lNtWxE+V6lJM%0X2~15Pb2M^HZpyFI*_Q*PMNb32c0$HLu$3^Dv79K&
zwz$N!Y>&ryzkuFTv^AUDMvIaDq8m^rP()92OO%OO`1%7N2HJsfFg7qsEmPQjA|kWo
z<`Q6s-xIJ}i7;2pR#K_B0nJ$UW8?BN`iPKl;F;%CHJ(xJS05a$`HX6n>4}_Z^F$I2
zmE}v<_DPF8|8$9_j;O?GObqyzm8eaK-wLWSYt=GQb&IHKxosQSAAV7Hsb*f1I3Z2@
zH%iRHRjTl4iDr*9T6&_U1f6*DxKt(RJYm|I^OtBjMx@o%XLu8l($VkdjPf}0RI<Y6
zWsCio*2tdXv5|1ix-6e3(VbyB^DL+1AWSpy00mXY|A%K4V&In(lku|eE(#k7;>&T>
zKix@Dh$vaJdFw`IB%bMTrQ5+qJP>Bva+DjV)kUs|Z!IWJEC97VMB{^XTilO44x3b|
zvUh*KtQLVkvu(s*M`s_F$iSajk#9aKF#~^|wUU9{kiJ!73H*8fgbe(7tHcuc^HDr>
z%fO$vOJWB8JQ+!uO?CF3sOmB=ozP7H<RA%&_bL?U6)%^Nz?GL^de7yWUF!Z2>3D<n
zOtX;n7Dd6kOC$u|J}$sxgpbZ&s(J0f{*t&=h2tf5GOj+XlqVe_`Ug7vV2M^-P=GY{
z;YG#9#|AJN1Dh<h3|PNkUF7uRMpdZPm)8aCX(*j+F__2ynauLXmsY53C&U+5nB+@}
ztB(vOzE@|n0Va4($ktp$pH1+gYgF#>zg;W$_yDIDmS`TA3wGmKy0fMH1WXana?xYv
zpLkO?mOhTAisaim^+b4G9lbNlbb3)(go}9{b|13SQ)UehRl&nBT<878pw7c6qLcKQ
zq9_G;JfEaOm=6(OFoKsin=kK`F9)07bf*u%%M-zkCj+((i#126bXVZlV3(Tigcl_7
z;H!t(J4-ZD*5@6*hzilXRQ6j*W%>~5WQ{!uI>qOwyD`70%S|!5jKd4!qKDc+-N8zS
zc*#K$(h6!`F95ig(iO9mu2^M|8Dp=P{Gxdm#!yg5#bi6MwbqD^avbyRD9Uceo|KZT
zneHj&16adi{)VO}T$E*aj#@@y8k)U<-^`+hm{{*Wn{j+dV=1%>@eKA>qpB*H>_P?-
z<P4VobZ^KCy%-_4zlyki0VR-&&Irn#{fowdS^hIi-4@!evFSrGALi;{6{V=14a-mx
z;}5)P2PH2oLP9SSUkec$vR{NFx}U{NvbdXfmPkkR#>h9jEE;oXq~V0A0!l27=<*ZN
z5xt?r;%Sk_UA)K+Kec$dL>wtpHLem{EKjL8qrm41{PYrqDbzB6CX8Qy5&<+-X8;`!
zYPRMf)!Y}axnDI0Zn+*TmnIm!Q$)wl#SFNhHGW`QuidwCs@t<#zp^qL7c3WK-?%!n
zxcn|o6Lv75Hg~wOBY$zt`#Sor&O46(e7-gAv5VDA)fW5UTDiqud%&{Awtdrw%UE~d
zj{}m_BHurvhpT;GqC4e9l|%bcI>8PWzbR4A@?9h01SeDFT}O;wDA6+*DDUjo%+Dmz
z_Yj`qmTkZM%1}9K{5y(`vrvjq*n6iYwP`sIX(5bQeH;x+kFQj^36`C}?9qvI-DN-S
zb5hwVH18YXw~~QDfG86>W^u31wm+b*Hzl)&%b?!NvFnwodSI~w4%S>2>3P5qqER9+
z$}8NwB1Q^k^P}_sfFcTF(e5vFOn3o%&Y7^r0*}u`t20NV4~QUM!-%?M6LI2mClYgK
zJQmF1%CqAT5mG9cq?H0Qt6LY?@%vF?ba%XQIE+i(m#Eo%=zb{7w3iS+Onfo$D>t37
zG^9M1`i0iPFS2UDbUT+t{;D{Mp&q8hP)V$jR|>D9zhP(Bf~i*z`vhwjw{L!c;e)#E
z^3%#8_U#kwi4M6m5%4UJ1)m<G*-iz|x=N91?v)<jSBJ=e_vsqj>7p7LKKpST`Ka*H
zs>qUi5e9tU?dJEejIcAOn7^j!{@CfQKO2H$!h7~}md0np-_LeBoL<9m=dwo~U2EJ*
z`|ulzgrz25PY!DM#pJ2qI?ni^gbKuOpO5apJUu07xd0=2cuV$xzEKbVv(6S`rQ1-n
zu(!W)P)zspQ-Wox{!z2OkNeolDKy5hZyX^H#=X*S9}O|cxS7LS72`*m)$KNRKgj4T
zKY8lTEeoCzhYFPrasTJ5Wfc1i!%nGmoKg7ue3?o@bUB+^DN=(rk(31r@{45@Dw~O)
z%)!sjzdtwV<xO<D7niBCXDCk<J3BY%m!)Dq|FO|)BQ{g?Du(;O^5RMHLQmK4Lg44H
zY3Cf8`P~=WS9erEytADd5&y5bLBo3eXjyc2p6PO60pH~|eB1(?N`&aGcBCz^Rr(WX
z60GzWd!;8MG5fK?tWhc6rNdX21^x0?9dLZ5O!@S}vLFh9%XL-`$TF@R3Jk1;m65s2
zUah1wR&@nBmoB3WT?S^JpJ!r*noIt)0Q@y8CYD)V9F>R%j2=Bp7+pRu=vQbte6~ik
zRGL`9^t5WZD`H^fpBAiO<L5MtUR@NKOjL8RCh8A;jezNe(mmCWr5LWNB6@Br`4-DM
zur0x2c4q<XE53c#;RgVHQyla_@hd^P7L6&%bJ(PJ#hRksT6gN$K;w5Ct{LHG6T)BK
zLYTHR<}C!|udbrTr^g-gMuPNB1L2(hN`M(ZXVFrhFScE43~Rj<UF+RIbz@W2=9I0?
z%BVI(0$<Qz`gGX}_YJLmJkt*?Jk+u&2#sd+j{em%yu8)Z6l}!C`t?~T{1Ow`$BTnf
z=|6SKfm@G3)yBenTM`jMKH-E6F8?O-%|v)(+}2xazY6MNUmtfk=~G7aVG?f}lUR64
z+(D^Z4#mfe;+0rTp9+JGEQO~+7j?l(s-uIEjT5{AO3HX!SUY}Xq`AI|*AX7tmY}yl
zdED&fEwZu91!hkj_E4!zIa67pSfUPWC{8%EzQk$AOGt2Dq_ZU_9I!!i=~r|D=EfY&
z{aoVXNWEdi5bvdXd2bqV5WEuy3ndX3_%QV9gtT2NN}_gBZu1h|>JwrM=mX8-<#*5l
z(vw8zf`4r=#?ABzM=ACN#^Ps>BwVCT?7%O{<EicW1MEFVm@bLUN_6H><C#m0L}Kzz
z=)X_ONfnu|cyx%mG<!CjlC{It)|M{JjjHyH+SD#nwWrsn_NG&Gg<}w2;jmpxf6Ug}
zcDGG@;4UjHdf2AMn_8QdZ&$VdQJdO3RP8CY+C>qw3CSZNyql|9Ot!UH5H<fY*<hDy
zFsVjxX>1=<_WImj*b<+57ibw{$5YvJbAz5v{E`4qZO0#BuR37gmCDuzF>+yd!WrbN
zJ|qZSMLaW~yWq#|+~qurf9gn?a4#@GIll)8^<I(~;!}>>m)10;mOA?f(s^^2;+TJz
zL{z~KBw!W!{u4XX(1&?NEf7Bx(8?Z`mgR({L8r&==CnkC2wQ0LDdYB$_?%-B+qpPM
zSLK~<QMVj@2KbNlHWKV4?*;1^O^|%Mj<=a2lq09H`~uVV3Wt`5E@A=dVXPTJdXSG_
z!X5@hI3Hjsp*;98(gVdQ?mWDVFqB<_zy2yK4P}>wDMM&tNDVk^Nt|mplC{?<3Yi(7
z2%U6aeHeZf$yuN~bKp;i=DZu{+>sS}y75aM=fl}mZYaD3CNmCxv=8I_?=H>5&kTq~
zb!2(8s2jz6X^;BeIY$M;tO`N)!aM;ooDo>S%TSRjDb|`DepM?i=WW<wG^tWSXB&h$
zguN*U6O1LG(u0_ZKZDIW=fJW>K*2bk2i_cUxT&Qt*o~$j26}0E5FJW1k`%D(LFDPI
zmtRzPv;@D6&;T_|8tx-T$$L*fSX9^45(^9ZO&;8O5-%%8SqZC`#I+JSiyDWZp|BWa
zgtztb{G3HWd3pZBHy!A$*qDcdQ3xex(-sBg3ESs%=~6#J#gmNU@3FWJ-82*5)U4o{
z&Rd{ky6n&0U?7CR=Jas4G!SG!C~CHr8t>~B*Mzd!<4dfXhO?@Z4oc^eg%TQP*a9@p
zNxTQ<>Sqy+6g=?dNonIgE~;`Y@u?EGkN{smk<oaP+4vjP7&=5+&V{|0b)1k{^?Rs#
zQ*Wv~N%VV_&b|}<>h(HGr|Hj&tt)|%e>{n)FkSsHi2Xfj5n6BMCe6e>N0yMd=mT)J
zvRS;arv{Vu$b9TpW`bD~t)sqFx-}H}vZ;7!KS4}lNfjKw8bPB{=D4ho*bIOb<oD2K
z0IeWQXG2I|yhL7TJgr9BYg?%h0(35ztwktEapCMB$WAt-O8gJ^0Yl{p-p-Ps)31j}
z_C2#j#Jew;8!YYs(>!<1feiN%?*5Y4)8_!%scin-U}%DnRgbXO96ouB_QSGZnUugJ
zSIR)HbP9qvyWl|aHXE34DEq__4xyhc91N4V>Bzn(W}XUfJF>4GA?l31hJBHMPQ-6m
z?7|&IDjOdJ*_pwPib<8u3qs4=^4OOFA-YnpVpBC|K_2@q;NfK&drHG`KMMF};IBDa
zh^{Apl^`N?GW+rLl{_<{or|aA2PGE}S=>WBa~JT;J@~CKJn9wTzEG`Xl^-z{oO0x(
zu<qOGX`qGw`JSUxYT*^2OY+!H4o@C$!cLwguoTY?x`VKq=``7|0x0<&)4~D_Tb2bw
zWIvxj?x>KViA75>>yJ}@#_=$Y6@NMXX*qw@J@i?U2T6VvR3B>~WSo!gkcluN^qC^-
zpiV5{*Ri9>3>mESJx95R_t3@f>vZ%TzWAP_fZxSlogb_yr}&5jc2h`Rh3zcwzIGK?
zVSC7*{Yrfys+w3Tue@@7O0}T`OKs8$4EbY1;AFFs$Tt-yP0_x3iCq=mLK~|cCmm(5
zGl9A<iyLdz*+2ux2D%$;paJmfA@K>%8bUYHMU2OAS)XNk4A6#T?8xqM>gDEyu<^DO
z=;2U66XZOSeVKp+^4K^ZJOd4*PMjGC=do|$Z6TYVfCTm)ye(wK34+q6z3V7bp`wI}
zFN^6~ae}j4AVC-VS3pKD`7@P$GR~Qk$9{AaFc<8U*(A-4BfUG$2X@YN?AgT9kdNQZ
z+@X+9UOzZCPT|eTww`eS8Q;a;K#Fj(Rqui7&gcvUug?cwr2=08s5!O;Oayi|;O2R(
zBmoCF1vAfMOJH3gycWIr44SU!&UF^*NKuEe$0YU=bRd4=X$k&x=6HNOogI267|yFW
zE7JYUT^jVEIp-lc^acnIb`BV;H#<yFdT|^+zlu=GWU0P<e)mM2!s2l<SI@rX!3sU(
zli!czV*~>CopjU?r4z|H<c&UxoC6ZIWM0sZhTj)}t|az>5Mj&akz74~mgMU4xhUV@
z=Q%?%%z#RdYX}pN4GCp@teDH*K&W<9m#>K?tVuN0m5oy`_gbh<T&CCsW<5f0tj=D~
zpf65zjrG|}YhJdNEVNaGdqJZUI|AfTUAk2}gIT*e<JY$X^f?lhwW}q2RMsbVzei_3
zV~ws<W51~J(-upOE^PeH0D4S+-lF+E_@xl~-9>p!U53BZZ*j~GQp#}2Ff$uiRi>~y
zrVm3Cu#L_tGtnuhXZP)k$<UOK&HN0e=;B%GLRqppdxu&Hp)}X}?h>87FWw=DM1bM>
z<zg*4Y_LZ6zF@O9Wv~5$*oBSaf>@G%DDoCqpQsC0z~SdL$|)H}5A}?SfU+>{p-NRG
z)mrN1(obZ>B3&42H<g~q@(SOQi-Y;zM|dW>>GD3$qr)f<OHcM_maUgBhg$cnUdl$H
zvrv{sel;2GKGc-FPMIySTqKu-s>3iF$j_Oo^5UWBcr+5fWU>=9;EdRQFMdDNNb;hc
zH72a)^qh5N*Xis{TA4u9{Gpb-CV=|4>76jXpdDGT?`QdXs}D*Kl@6mO?7b}0e5}Fw
zraNyEt`;$oI#4IeBcS}RER446CmeEs^ACr{Ny4$vB@+Y;t#Q-8BvW|jHlu<Tm*Y!;
zix&-}j4XX&?&{`!BR!j^-(U&-?BfD-LHVQbe20Ku_21BzF0TK|H?(EnM^x?kyCWiI
z-`=E^>FBO!vm(izvv!){z#ddzKBnj_xj=?K0$F~#O!Je2EQy_hzIDIuE5m;hsphII
zO;+V>h_kdlwD1cMrPMdVCn?8j2bl@@C=v{|Qy<eF5<$CDT-DI7*pgAhsv%N3fnh$=
zC8X1*LwtgKA9I=Hdwz(We5YC7eKN$(&|w#Dj{4MwU`gtKJ0wixKgH$ICm95~C5k{f
z<#s7ET`colw%mk2kJD7dEWqmd6(X^&$48g_=nAMx0yZ?ZTf-WZJ5#d33sjf(K(A%V
z&?_oZ`=8fkX{oLBjVzT5DbJR;W|^pk3%-?omqB51M>StfGjnG7=v+BEcbjy@Jma#?
zt$NSqvo7n5<J6UbQ1e}yb5PX$mAFV|N3*1y{&<Mft%ux1eXnO?Tv8j4G;IDctO7P@
zF%rQ+<veyUOQdUDJJctChh@7hL&Ne@$6GTAP!m^ZRVYs;2rmgxz)gP3{h=b`uMt47
zd~d*#ImF2hZ={HY7kFdRCqRgeGi#T$#Fwa&mXyaxT5>i~B`u*D*g8p!N?8(>%mgg8
z%IZ><Oi=qjd&-g`m9k`lHDw84ZT;TBFCtZEG>IDT^!NV5p48jQEURMCODPf#Wudx1
zYiBv60C?{!BRKB?*-XKRuT}=)4c#vOB7m;m3dmU1Bg3kqeBRz-liXv%0_0;DQ-!nn
zFpYbipz@17lnnL;jUzHRyTzFWn*&Vi?YF(b2{;NYQ%<DFU?KF|_;hDMzi5y-vl8(J
z`cfiScKmq2kMzHEsV48TjFKi=A3f8w(K3qMbPy?X%q0~$F{U;huM8H$j93MRbl*S$
zqYfK+RFH>sHG-+s2g81Y(UY7_J|Twvwj^@cxR#-j-flXjx1(Vvo>0TKwvK9op*6e5
znZxs7L)DtOt8fkiQ4@!TEIxLjiT7>7=+s|hSCF=aUXPV&$acfTQtD8vzS6sbNtIK)
zJb4Bk?9eYCuXj7=P<EHQ%!i1o_cQ*)+Nrw8ew?MgeQ*Z)Jun1Fma99GA+{6~nsB;O
zSc_?Q!fC@JF@3DrPdh|;Eyc-G3jIA6FRjoSj1`3D9!eemVQXiBB|IfooC?o1HdUWL
zEw&BV^2`TfSM}^1&50i!ya8<X4+Da_Q`i?zi{tre9|ruY^+!(|8z|6Qy><2!*7s8V
zk7fO*KMaIb{kJXkd0+P2hqU2(=V>iO2_EQoU%l2LDxdWh5h_1-5D^XIZ;<gRKXfp{
zQ-12LspyoSIz$Gi{M_3Xn{xa+*v6Z&DJA%s4aQD>7qG{se5tx@#HL(p#zRz@#gAPp
z<5F%G0T6R0X_^@TK|bL!(<OYs<`J&I1-$c}X~lfeJIdud;aW>v$}1*N!zhv1K?LKC
zx-H~ng{=}8eaEoU4TPzc5>pixOg(4C6d?9(h1kY;NNU4Pd93a5w%&eYJA4>t%f<?v
zZR{;0RkmCk8K|<ow~SNSeyt_}E?#W4qiOE<HZ+}`i1}<8d**x4$^t{{OjPW(VCZGD
zcz*<jPE537sHPB=1>c+KSsRU>od$Zy!rjyxlaorf^$Q&|mJ()TJZ!AH3wtPxN9^~o
zPst@SFX)5ka}M+(%?bKu%ovYa<@0o>Tj-39wK&dRxKGObrM0R3ysBMNb8WT=zZc|m
zTh-X}W-~GqPwsVu$jXEM(6iev_Nn$#HSEG_hn2OLsoKxgW=YFc?FF{l@z1|ks0PKh
z2Gty~uT(AOS388?Y*DIOJX^!0N@asps=+h0S@R33_PknlzgjhzTWtf&n%Afnb7~3J
z7gd9&Ys9g})<We9x7*E|vwwf-C_vwA^AK<1DZt<YkcEO@IzGk<iD4dLmBcVF(Mj%M
zVwe|$zUecj3yb2^4NkAxJR*7{&gYMA5a;uy@Q>4PKhzId&-o*7I#uaDXR+=K>j`bL
zbQprpNo+^@`Roje?hN+qBvfi(`OxotyL7aQblU-cSqJS}_OKh)+FdL)4+`r-KbTHE
zl?^PO4nlz?Re%V=dY7@fVdnR+hdn*{B_K@l_yBeV0_JufJY9xOZu5Z@K?5N@4AM8n
zjI65`D{{BFK;dwCeAbXb6aW-o!o>iU3i#VPtJ>8JWLMzS{vcLU&*`(HSJvvtI$^Er
zpw@Im>V-*Kl@SE6=z9s(M_BhNsMWn#^noY%qK8z^v>BrRD&B_eAbMFFv`mKgXJ@E%
z2~bggc8aKIF;bC$*z&s0ELK;nf7(`Y@<X0BKd<8#{x<ZH?r``K3|HGul<)?pi{fx~
z59OF?4nV78I4s9+RnSA*5{&CqzxdKrndo%tP6_ujTWlxiI-9f8QC!V%x9UEM@wE?k
zd`tDiy|j})^(mC?`Ym)6d^Ov@(?RYj)<pF3RODRF?R0psQ~aPwL-t^q2WR3EM`a<i
zGH8P|KgL6N#G%=DJIzD0$JNZlt53wboox1&phtS^X79o>wvML74(^N@C~<sq+(3!m
zqQ)Y0OWbG=r(E`gR%1A2C!H<XCBrF&C(y_Ry}nH4g5JLek4c@Q+hQ?>SFqAD6>WHQ
zj|f6c!XU&&M)B!ADhSa@*`s|<j6zHTX;24jLznK23PK!Y1|b&7AjCQ%zGB&COW5JD
zT{7lj<>sJA93&jw<?xE=C%`Whi=fG~yD%1!jqu3e#U<8Wj;mgvZ=Z1YRf=ACi+&>V
zktGAdS)oTS6w2A!{IqJmNHo7jXK&JQGVo%)wemZv@^hkcE|{Cv%JZz1-&d9Ai{)La
zv-d>hLJ>*X3pT;MbrBW<)|wd?wxTTBas0_1$!L#9zD#B7I%w0TJ>E?SgM(>KHwgn)
zPAFs>_rxT`k2l68#Op+jqP-4Dlq!pyg{0nCuSjZDIY#WHugo(@s(ihooekwgQb(Y0
zyHU8k+#o0s)CwZOc?*CnWQ4SaVpCH;J2mayXaV>7y%OB}Hxjr3k?ZynxS`kjyw1In
zcy?JEm8nM1l~*8iqi9rUMUl|e#bsbA#`NlcwO1l%{Ki<wnTZzk46L|Bqa5>}<2Hd!
z2jjb;X!m4qyTJP3+ES2!nfSO)D;MZ|>3VGRYR6c}JbGO`T=o<dmUfb8je*K7JtZc0
zc@UBFO+>!bQ=;s!N1<_rDyr}pNUXrP$y*3uZS_)#wxYObTXUU>fPZ!p@PGL_iL*nU
zEGXlyn|YnT$cUy@mS#s}vo+UAti9UFM4F0F_C-c0zjU3|5|9_DV6EFaY39V>z3!)E
z6rD5xywEl<<P+DSLM46kMJJoO`ByK^cD99git^&9+8p)*ehx7*!Ab~IOl-ao5IH8A
z>y;p{=&*EgRBaGvd$D3RE1RKt!+fyiXNXc&>^1utB>F+9v?)fYTm(>QBVV;}k&wiH
z<+;Zjy-=0aVXN{eQeNr4J-tk&Y}dzo@??Z|FFXAn%_H64%i;yM=>97}XS9#f{m-gV
z#JA*ll8QQnmT%@EB2@4TRdR_`+^KBq--{=-r7NQc6AS1D-pxRSf1(qZBB-bOKh&!R
z;~uXVig83IWidM0UW-nqdNgIhq|lAbBy<YVI{xCtiR+k$rl6RdaJXZ}r2}i9&5Om_
zTYJ`EFKqGH%mv{UnLNvCFwBTD7=*pB&l5u&%<nG6!TVhzOof@<CGUUQ#WWPAs=}|k
zD1o42FqM^1ZpiiWTFLe4JxxwO?-86{)KdzGPce0bv=EAV3IpK>EMucR@R;hwC!drV
zk6U`Gl08lDDOLAp)RSQ)^vC-Vs^Mfy!>?t-snqad5ceLhq4Fp6v`~H>_MJyK_$E``
zRyzAu)RlK9LI{Ewl4(lMD4imvo6RQmjMOL_I%s150CvqZQY(+A%MAdVAawpuv335E
z_&UFrs8NAB|N1zJV!EO8tAx(CsEP@OdjHYX`QNWog_HI>eyzF~Z&lboD1|-I(DL8g
zw7gAa{ItQ+^k>y{yrJuVvg-P{YGcC2V5HtSBlW&Vst6rF!O)%!M7_|N^a7iYw8_qR
z3_MuA?6R##4W`%T&UVWSIC{oRD@Tuyw*}bRIR@fNx=Fm9>`E+cqV1V(5<zFXnk+q2
z6@J=PA<auHU2Ze{qi-L@XX&SVn20#nS>Rz_4~fCEoh1Sr0SApOkcQf9OOuaelc#&g
z;OGxKo4mWqZcb;;03JCxHYE4hce7V?+&fo}Ef(8sT;^J^!_<y>e1z@w{k3$rs4a9=
zpFK!fs@eOFDuBy(WPweIX@Na^eGMpmyJLJ~dQvZmpYQW5_(9F^oiev38x~lVDw^(z
z!Va0yzZ5s$SPZL4(y;no*<%ws*>Lkm_OKF>Us{^|LpJ;7I*Fetoy=WPm8Ih2vf`Iy
zxV6#QW1Ubwy1>>2HjK-HUtbp`A4Ae;`_l4CipOGfotVges*W>9A^W-Ral9jMcJV8$
z$M9DCQODb_krvDB?$tUgzUm^XecjDYV3WEQS2NU2It~{()W5n#8%N|Kh5i<F6_(Ls
zK#?KwkyrCGQ--%>Yd1QxXv=mIr*{^2PSq@wE&I*32-nHP?G7(?b77pbN`B1>rdUQ(
zw0+EKPY+}c5L~f7W%WV#8t#zJ?qa_}YUPe2+mzZ_vt6hi(<IrmO=*}-+YPm|#VFjh
z-B3GTXU;FvJG;7D_K98OHnF>ORBY_xwXy|w{R#gn*4S=ox<xkK)m^$5Hg_>uV~eHY
zc3E*djR8EgtxGMG)6VWuoUvZg-S+MgoUyJ$@yyG}U|5^t^edM5VN*Ph;iJ2S$1pcG
zrQQxqaYq!TUf5K<3vb?TxmSK;Qv|6k-z_|bafbVg?xVy5_Tl!`Fx;-)7LQ@cCL)Yn
zc5=7fV>l^tE?@5!9z%BwkKt!!aXp5Q?=d}w-<8=shCl9>9>WQn43FUwa_X=pG%fb#
z?wCf~zOuMR+x4QxE9jxS!EP=*{aCF$hU@mk_869IP&{{XA9)P#>rBxUWHW3~>~(gZ
z#bY?rDE@Sx!F3hFV^|QwaPY@gP75Lohcb%^cW#d~;pUb7f9$;nd{kB1I6OBe_hteK
zkOp=@-Bni&y1OdK;I3jF%lf+C>cxV(y9RalbwMT|Z308DnE(N#Oeg{Z15!mo?}G>e
zLO`Sw1VRs0uzXKB=gysyBD=ot|NDOb{rwg*_nvd^DNjF7Q5M5Pt8Es;k;T$tcwx1)
z7{cFmP$OvVmZ&+@KHgC^9(*N-ZHGrzN81kFcH3dTz57YkeK2<i<UX<5W)2)+Z+u2I
z&M#IGUZ?Gi``R0yQ;i3(<@R<%oLz0V9X>%D7>6DVERGRYf$qq7CQ*3V>jCD7S1{;(
zf4QgTf)l|wr^{ZScn4kaOXU3nM;`j=?kd2%6ebo-E(ymG0%4AgBg96_!dUS2(#U&8
z#k5W?BhcSPq*_c|78mq?Tv8$E|B+k#fCT=LXzh2+pvtvhnSG%5a$EL+RfDQVm^9IU
zIi(-i8kK&axYG0kqPCwC5VS$F3Sk;7ef=VZFZ0lBU;9j$t1Yu$En8{Bu=&>Gbt^3l
z^D~AuxN6aS(GnZrEnhAHZ|M?+Vat}=Fbp0uhHYI=81~<YVHt=b|E-wc0{eKY)Ohd}
zX`NrW+=gL1YB7AwB>i~}?r(;ul?{KtuW)v*eZ+NY#Q8kpErtm3h}?LVz3~^S@myX`
z5<W52lWfM>^~-H&IK$rkOVxeW5@qk-Xm32t-gt{@JcGXl6Wh!aW1Mvn(iX=<+E125
znT_GZKVPm~;_NS#go_^>nCuZ|vG`}PxE;@2JcjXvU$l4nqVAyI6qg963-a);^%UW>
zpYEVVmNPr5aTDRA0KDE5hxi>e?nR9;$Z?1kfZx8nfcW0wx?8U!4)mbbA71vlZ1<I^
zBH6_x<0f&wCx(t*Z~D~*IrY3Aonf%&Fz(qT4=-sb;tw94^&-VVzcI0`Hc2XkX)j?x
z&zCL1a~*BZk<TJ7^-bD7;a^LElCxU}^xMUT+W4g@t+UmKP&Wu)z^8Lz7IEc4x6=h9
zo^rZ9rr6aH{~aRS9`tV?u!KonWbk&H_`KY!c|<{ilN`NZyb}xa$W^i-d6?j(&b>x0
zCYOU2<oRO8;8)YbgvNU1l1bP?GbtGs5a}5Y_y#)v1`swZQHFX?ezY{Yo3D})G3BCI
zdRF?Yo?K+fF&MMPBwPwIgI0!1WL{hp$x=p8fko8%)ScAs;)+KqS{)wg+v1p!&}G3i
zWHS0Raq1y?*;4Q@oC`g~h{Pt`fA-_#^Pe2WZ$58gv73dD+dn`SWN7||Vah2N$&uF3
zNJh3?E#_|Hye~*Zsl~y^ZSe*0{KN1^jz4aPxZ<Fmd>vgSU{+nS&EXQn_9r>)Zqfth
zrU-y5QB65WZ_|_6iR^D>4$S8^B~O;{&LmP8!RpnV?ID$qc4Dywi<D-wuEve!62ERD
z!#7*#Y180ALemT@X0upt3DoCJjOb0WB6@c}u2t?a!2!KMx(_zd!VnE#9{YH}aANp_
z{D&v7X^kU1gKm1pbUm#pJns(AK+7+JDFko|e%lnj4SQ|)<(cnoQk_9$?5SBr6ksYx
z0gmWGzmWvVIMd@=wu}NC)P*7g;q>S~9aW2;Fx-^>8qg(x{~d_`<l{estiR|V5|F;F
z1vJFI{mxcu%5Rd)7Uuw_6<ez>kxu69?ZYlVrlG|^j45~Nvu4#jY^m-2@JJ;W7&1-C
z`eyblB~u@Xb8CiB*^Ge_2j2)xk)|;n4-2Mo7f&P3QGfhMrO+nFhgpnxNCBHkzAqgD
zqFq25_1+d=CSs`SqE3N<`F@2oCgFhs!^tZh;W*}Q6#jz{l<=zzJ`nsv#WBZh)1bvw
zIkUkGi&sXZb6L13-b!Gn=B{*vx2kV~8E01O<eVDwoP2SQt~jsCts}TVe<q*!R{*wY
zTOxU%bt=6J_KB?E>htl@>UB6UOl!mOwf^d%mEVR|97uc4LaSaeXvHmh3x!ras)JUG
z5=!F2`CkdnUx&>K&$^1Zel_bIa@JR@Sx?v0oHj<xx`}+hC_#k`e^K$A2a#r2F%|eL
zQGu(P@uW5?P<dx9HPdnL^TuBB#^2{NR?CrXs@P{X+Tp)Gk!9*FDDh5)Xpb@1pLEIw
z329>@rl^?K$;9znh{FV2A9XS%Y|W_spNFmet<{=~YO9qTY{QE@SHYS;wOVd#U5zyp
z&Arf5!*sJ^<P|S%CThvaq8t=tP?mdN_BwGFt}zM5lTmoh25EH+G_)tHAkh`G0kwxe
zA7%S9s%K(UZ8C&7i>(9$RQQ}PZaLq;<<@>2TwL~&=b!$D7+f0%Jk~m_eUCQ&<5+OE
zV?6kw;yEbH%dI!mh92z@sBkYqn{bPECe6N$D52R;R<q}QIG&*Pp}Ac6W4sSfTKh1i
zOXNPhE)G(%f{|S!M(Sp$ksgy>pWu<))<{D;Mveq}kd7nu>==;#mL)jdcG;x+v=STX
zo~XEk)II1kAIS;Rzk!Osb*4-7w?@fC6!a}Q+O}GuswTa(P4qw;YT-aL+l0a3i~@rw
zZhKV-Hlc$;u-(=vPwW_hV0T4A!#S(n&`O}el6IwhPj(;Lg@G#_n%ssb<hq~YZFq)%
z;=h<2W4gzu|4n>V6H#xRCopiJTz~(RlByWHO44=}7||n_7k`EqpGQAxD%#RL#V;3s
zxotFUA<CcZOplpdMnZF#+f&5nE0xa1FRg~yF==^(*zx6(C~@7Rvc!#DuH+8h_=BDO
za^EY=da|g4U#~5S2@@89tOdxSzalmn2!hiYGfI3o;csgBD$SUAV1eDD4v;W%jm((2
zKl;t6HDL|0%zoGIO!twkX%HwBIV#OcE>(ARl0p8fwpyi=82WhRmyR^yDGZ5vezb`-
zfzgl0et%b!n9n1dOe`gjgp|tXFeZArd(}paj()Sxwh<E}JPGyW7hE2i%X;1m`0)BF
z7XQU#k)zLikUzUV>iMh(t&eVfEbcc)KNx5Gky2|m`uPzMh9ojGeGst7=Xa@!N<S_^
z>`8{Wr{zyr$1QOXCPE<oD+$C`h0B+vbW|1>mxtC;xO_B5HUegb!3?FTNPPV7OX9<O
zz}y@*fqs44P7D9?(Ldx^?5G?;_C6eW3}YVR<JlASJn)cpJcl2SIvzTmz7KiKc*yZd
zUghvH?~%w4t!>5=m>cyx)XbW|;zweUV_~x}a2!jrZG|}1CHyNv?Che5{vYMpKf<7(
zSYfL8svQ!aeFR0rK0xBrLw{8)O-ACgtX*J`{K|@C-u`r4<(kAQR#_Z{WNTMT^qU*~
zCS<$3TU;DLhq8I8s~u*L?v1)s{?RpyqK5u-rTpmX=r{9MhCjM-Q5@no6}V+UPZJwD
z;TEm`zymmU7Yi(VX{V-q5Fpr06Q3ukL<I#8n`{rF&=xf5A}=R_;t5eqlF7<0VS(ae
zax6oQ=2=%EV^SLzr(hB-m6&m}k{*V%W8~!j<jL2UlhynF?QGHo3TrmG2shvfaj_N=
z9Ghq~TDMEc8JGo*(v~?R^OnUh-gC{X=DS;6cD6gNxfaJr)_{DandyR5*f9`0=|yCX
z{-SkQ2(=v#HyMb^vAEJ%uB*2A5+uG<5$c#t?Igv0LR=<3J&5@-iL>bS)I@J7Hc>LM
z&$^J$Q}`7-MEPh2ecMQfC{du5$SF3F15cuX4@3>jz1LFjRjpNTeCxN~j-aWZ?JVDx
zz~s-{5IRq9Dz@MWi#hFJa6c%THXib>_>|gi`5*v0JSqv{wDbdynuFEueX*_vwp*Hu
z?Pk=#cAImt9Vn?K0{3cZXOC^`ac*5Taf~K6R!$DuZWBIg8?X)DM(o5Ykzz($9DHdC
zQJ=Onc$zqwf`d<PYhmGgqI)W~?%7sh;mH)nLc9tv5iA%FCp?f18(T<2UuYW^W)Di-
ztB98DToOew#xIw&<m>1+6PAZ*$$=#iw1gS?Fc1h$WN3x$a59q!eGavelSvc1YvAfW
z%e7YbFHue#JuEk1HSyC3#js%ji`1&6=tIZWwSxrMs6)70D%5<*1LsgCa8rj6d_&`{
z!XJ>WuQ<$z#?8bzYTMV=)`V$%Mf&)Tw!VHmfgtVcE<6M!d-!xEd&Ji=a0Z?HN@4w*
z_%0DY)T2`%ACF~h<%Hxa^b1K1nYNwksK{Y~uAUu|T356=<72DE!HzaDMNbz)K?F?|
z-*@uxDzJ-N%pj}G?oI^c=-ZI!cjK0gtASg#wv9_}*<w2V^+W{-UQt&A-9ag8iDI%#
zi4(QO*#tWhKOwpiT=YOB#_cN5D~IA>^GHzL<YE|}7WI6y%Yxv!&Fuh8@Vm<8!!jgk
zqMMFuIh*SeZL?u1qi8Z^xd8w^zg&xH6dPs<S7y%u;@yNJYJ-pGm?eHtNJCgDhgobd
zl&R_M<pp^F-uRZU`wzMBJL@~TEc&(*4+AJMCV%{l%n7SInsjZ0w>H-2<}~BaZFmGf
z#}`2}A5f&|3GoRHv#Vpke&rLQOp8IoO{^qCj9=;CY3*5*XXcdPg6R32)s6s<UYu7#
zGCJRah|O!NO3kPQ<D;!rrp@7&vFuodW;Jd(!)m#^DzloJ(BWDo)tk?ZHflawEQ95g
z3Qe2b@~G8vd{w4RHJ^D2)tt{hn{k-GHqkN;mqZzd`TbnWIJ~tI<1qf?SF;&ftD5&#
z-P^`jWBAMcEj6Y*?mmPu0<fDQXwY(p-?Zj2GNGDKGq3{F2+!kkO*N11o*2`J{8X7y
z%>$U$K>@@zi)c=-z$_)N@~n2FD=|x1dtcp&d|$bNl)pX9`gVCG-;O*CA5~V%5Q|*J
z#8HoT)bdeWI*|}?sabYSssci&nG&&EsV%$K+KDI;n_r)?MC_sMqGpQ|n4A!Fnc`wf
z0RCN=hkuXm5=1A5fKPnWDUfZ7iJkFji6fA$Cc4~Py@~Q?FLhKi?PKw_lQG<nTNGI>
zj(3cLDo)l4Gw!Dc_4f^NVZDPZfBnv$qgAC7((jPDgrMc?nqE&d4Co?9Pr(p>-4N|^
z(9HzX^O3(5-();*lwwIFQ~xtQEl@dE#O;_|g&nhC5RqyX02_C~?sg#z@l9VWvU;sm
zgX)5+Q-%e)dQ<K<akDd9@;v`VZ^G?r0CaP^!4Sv$aKaaK&Xgs~E}v5+>w00uzFd(U
z!d$hDJ;7h9+OS?#ZS-SL@Cx=^R13^CL{T5BHaax)*|VkgyJ)LsCu_u?;FWTksXq1w
z$m7yMwd$+cOP*c1Aj`z{?i;Qh_nms!r>~|m9^M_1@i68L`~U<?8|TP0@Pn4h%E2;a
z$-1i?92PWhndTwaCz$(}PsW{kufFo=FI|vzM{}dJPajWX^VLj)GTIfZ43ZVE1Y^kZ
ze4Y{?g={{~NtvL>Ifp-P2WR{xCy5Px09mk}RHj?^!ijf7U6?(#(ebgnRlDvtKkp#p
zeK2mi%(*I?3c-pk7w3Mjm5cKlG5_A62YMZUj=*Zjy;q%0?onWA&(V$v*sKb6H%a8@
z1u7Mf`(BJHWP7%cEDGNz`pr3bqeSEaJB~=d!J~a_C2ogb^g0_PV#V5{crdEQtwhp_
zYTO2qqEB4Tsbb3Y<eo9rY@e;Nn(YRp8cvt=&G>Q&;8ci_cufUJ9E}M-A0QH`rnSj=
z?(nmPNtlNm`<BI!r}|<nlN(^YpEox3hGLLRGo2>MUS0Zc5%P|@oDJI96h?g(8~A*%
zyCa_BTJqoCPuwD)w+4>=IAsa{ZTu|Z`t6bjLCe>W2i;PFJP5ZzqaY=fCpr!v=o8Ba
z_MBIQd_21QcVIp+xyk<`ALuPNdc`HR(H#u2uy=)g;G`XdLrgaN+WEk7dxIc@(5OBU
zAT;BWDi_*23@t(Ra9i&RXyl|zHa_6*No46(Cnkz^rt8;<VvM-ER<ZmciI`7y*h0?8
zdX1r#FuIkkq9e-?h2dAKoX#puA=TLo4p+xQCo?EDYBKF7?(~FAA_b}NfdBg^y&nAc
z4v*dlsn1brp7pd|=OsO>kzVI+J*$~s2LZ7e#i^$t2=+wyql&*p@~>JS!jDJjJnwU2
zyg3Z>vi!g}N-lrTANBiP`X3tW*SX=@tLP`5qyHTs81?S%a@l9=QkV<S)448>Z9C30
z1Pxz^oBT630ZR~$y{b)Uq1Sop-`#}4Rd2%I437U6Um~d`SQ&XK79kJxjzP#C7ZgT)
zk5sM=BjkqvO@!S4IIrM{1?_EsFjkC^LodZ5<iXxHgdBV+RxtZdBV-E3`f0)PXpzkN
zKexHGLZkZ7Sm^-c)tWogD}dJ_mBK6XRtc&pD4Aep=jK>|^m~^J$NCJ|ce2=k70K%p
z*gAhJQ=JY5Lh(^eO;4mW9(p2x9>QZ1B04Ov4vKHch&Rll#n%yYHfnBS8aqAm#(R-%
zJ25Z_psz<Sm`M&E;7vw5RjdjYctc37uJHdS*jPQ1G!e0}AciF6|IAHrM{WYHyp?Si
zu8uIb_zw`~7@B0?0uK=+G?d<y$qPYX0qEc00zOrnx8l>havOxYOc&N%`QtAKq;M!d
zBFAh6K<WvAM4j#d(j%IhDw0q_?DeLaF#Jd_l@v=P2dk}Ki&a#mH^ox1x3WZ>NLA@4
z_t7}$=Ie`I7i&2mqof<wxWhyxNfh=14tz6@oF1@dCVq63#Ogl3^2eoI&iE9IwLO!x
zy|`jfeX)qCD3K7LFqy%46!WXzlH*LfRJlGF=u<IiU05+?<$0E<dB$>w`eImko<XL+
zlP`HaN{Jj+;dfKS{s(=M90O$PgtrwS>(8Ud639Qx3;mCh;VFs?V^GU*Kq`Rq^CTDq
zG^aZjV%9r;7RV%tfxR`eQoV4<r6}$1Xm6<(4vv0P);p{hj<U08sTc0;ZPN?KT~d1C
z-rhF7@Q8xB3iU$RfujpBi?J>aJWF6a=C}Wj^1Sa^sXVWDQ~*_gqg(C`;0OD#wtn&7
z($;$^ZT(jjd@o6~tXx+=5v`HuD_#9~^c%lTS3e&|SMO=p)vs8(dQZEqzM_gVfu0{A
z4$T6H#ssZmS3HQO#yGr9u`lPXqrU)p&pdv0qMG<@h2{_QAv}ctDI5hZG@+N`Lh#vv
zO#?Beik?-PDxCGmR)OUo+H3z#|0F{kc}%O8`Rjz^=gG_QNJ!=OFA~XZ_OChNS~MU#
zOl}rbf^!O-44j^`6mWZObArp4ou2rD=FcYEn2<rdtbv?kQgzQ&k6jgzH3nQlD7z20
zRD9H&#u}RtsA#P1I8=)`TjoR%^;aKV^fYlCl#Daw1eyaEd#j0RAwS(Q$EqnQGKoI!
zwNqBAS^AwfKy6dS32b_w3-6WRg1)|gf749Zw1D0iM*X)2OO=DA_|R43dY)uj8U<hd
ztc|huG~cgh)P;TcusL0_A95A*!g*-SpVLm3tkA9E70|9<@-MPM)|y6WBKRoI@vEk#
zFhy857T2q`b+D(j4nn^J+Ew&}&6^H1z)6v80l=+`$OCzkoMN+9tk-v$m~4C~$lCY0
z^i)61+9?JD<)K$F!sidLLDEMQo=lVX0?iUAm1V-8b@Us@!X#QmR2R(@HBDU;Y1uh6
zi?>{y?h$Cf>13BwLMcSX-wud-LnBkK_arGtnXDvb=)Z==H0%n0Kf^n{%zpYF2BOba
zs;jQWl@&mftrw`)`IWZTu}oH}5x%y8Nsri|Y1J#Fgv6Z-Df#0RQYuJPg_LBK32fUY
zreIQ{Dy8I!Q%b3zvQkR9YEhA;lv=1#O0DdrlrqJRb|hLHPY%cecRtap9kOw8J{i42
zG%<dzy_jN#*v6B{<wT=Su`n+iM`-7&s7#CA3(HJD;&jXEEVhCyIPH6+4I5kimG=6R
z3tp1R@X4mW8jO%GW?t~(9Sf}EH>h5}Y={$V_{Z9DRF-w6!_SthQquGY>L%QQsJHt?
zH?pj8cW^PSIsjME;@#6gWM0H9o%S?TaZ-pBo$^{KM3U%{#;HUw<VGN`e3%>V@@q0%
zu1Z10)Z$dEIc&3E8vdlZy3^sezKs8|eSX<V1ggqDFB6$8EYKnnnaIztJsJD?nFZm`
zGXweXls7svF>#Zf`C6bUH~HkW*F|NO;9J`UtE^%txRj5)s~)PJmz}7plp!XxQ>~9y
z+S;P}m{lpCgrDR05H6rGrOq>Yy$3B4l<eoCpX!jGGep6kG)luN51B>jQ&FNc*4eb5
zi6-_W$l6+yPJmQR_Cm}fP(UaxrrwTtQSuT&*~hn63}w&4X1%1@^06VxFryiB-0Q}D
zyT=d*htROjTlH%(KPa4|5u`fMoI4f;Be#CPQLZ;J+<FF<2>3y7z<c+}NoC9cp>jh3
z?P!vi15g8xni%4X0?jRl(3@ji#Bl01I~pu9#By9)lJO60P55jq#EFW*$FT$)G^r&{
z4$;u4#KJcGv4f7_j|QcT5aX?>{M8U&7f8FxWS&Y3dSvQ3ntrpmMngJQOYOw@V_r84
zI{k+d&s~>6T&^aZYAyQEMEVf&ihA_?PkhgJ!mcjWG(?ZV8hZs^jDFK!y}5iM>Ne<B
z01?cLnVhK<t$8P_0^Vc>bt{M1oGN>~A&Lew=(ML4Ww^Zln&H<6X$EJF2vK42x+dn|
z^Xq=i$kAtWeYm@Wd`Bs9&56V}T5y*rRiaR;ygCTDU9~<_oz^>4>(ddf;}vlCV8sww
zQ-rbWa=s0_l4!Y)z+bnJ&I6RYftc~27L(N)Ehdi}V$ox4A(0rAfn~{>8(fl(pV7Q_
zM`JbM=19b9#yY(Q>|BzpLH5n5NV$@=9)Q5FI7=$4<0r!R$kC+Dpla@zXaPw>dvQFU
z@?-rih+FkzLUzQFN%A-#>U7lefpN|uC!60<)>c(^)2@&lug;n6jv~|*hyKqsWJ=m2
z%QTji$#f@1;LQmTK-1}C61dgRaNPF}BpMf)(e|!{(E<s)@M3%t_`M{7H2`&y1m1)F
zoDCIi8+1w$lqTW?eKtc+x`tjAoQgu@UYaP$=b6pYit&X+rvacv>G|k729tluhhx;t
zAi{PgOxW_7uoX$VHaLQ=bvtDzCP2t8`y&XMq5>;URmsMv)N48V^gFY;WUezE{`RA1
zt`iLsFNs-x0;E7*P=8z89^zBzd)gb4y+ZIW`e42#ilJo?w{glHA*tQuYhog>n^~Gm
z#od49bv1?GVm>@d2a!q3u`2VNsK5x|iDL3+!?1(Na0uv&xuQEe%CBMR1wG{{9@Jnt
z$f;RDd#^dOgX|NIUVe#And_(+c1%_aGenu6%}Un(KWwm7?7Nfp{RcVFhm53^{JJ5U
zn2t*0!d{L3xL!}(Z2}aA=rgr)^?GaJS2N@_L6gAX=CA|}Dvq-mu}_dwS2PVsMaHkc
zW{Aa)mKq!@w^b%GT5V@9XqbwwZ%gv3OHa-LK?RLJ?ESd23oh+G{y|Le8gYFH@xDG?
zJn4;1{hE+|A3$+qB%8)`24WCpqWM`}(H%*~%>}^O)<7%CNptnO8ZE1tOTRg!KWJbn
zd3-XR+Q@e~ao*L&JG5FpoJ=eJ=7|&0#53XMbUwuW1@aKnrFBjh3-9$ibDTj8fLi?=
zmW(XEmux+#GOu|qAWn2K#gK$-*b8`LVqhpJ;m>IiBF4iK6-Qbk#^3l`Bw`euB>CZG
zdSt>YH0YW7OxVjW9L4eq0)$MHX!RQaJ3z$0Vh|z@BFCdSO&`=>6U!ahLDNO&=#wzN
z+b$mkbCfWwHPv4cD;$(LCNCbT$MgGUg{C<hAb^SG&uP)3jHnTyGMx30;55V4fmYT^
zJjtj$^LFKZq>H)9S~1qjxgPZK=QJ@-ZCfj`_*rh9e}`$AHM*KP)>g_OzA-0N;;$|F
z8fX5Q0a84#W^=yA5e6vOQ^<nP=^|J}Jgig>^?+c>Cg;(hH+Z6{uP2iF`ic5dNb5@`
zkzbLaG3K?>>vdC@2jF)9&m^YVsH~g3!t*%mNVMIquy&j)0&Dj)Hw{;aL#+BD1qv}S
zdtO{B&~k!$+N=7njYk!Nl|>*Jw)+)xY-m8pq1Q6?+fgdJUKH{XCHyg+>d5^`iw7G1
zU@>T@`=65$BfgVf(`N(>r;ps*#6?(0xn8dp9MN8&-Iz~qvgQJCeV)oqr;6d;;De32
zH*KoFDvoLZxMEx$y?zMZo%i~nU4M;}isU?)4Rqw=1XI8Hkq2}1XZ{$>#!RZ|0@!h;
zb0HO_b&7EeCBVh^4JPhDCf<&Q81|CWg&Qd{6K*Ds@ZU}|ve2r2e<myp|Drov`Um#}
z9mxSauLG=?^4>v*ADyCryT7fcXHYp<ln|=;^Xc%P-K%Qwbo>Trz9Q%E2Q@`(-Q@P2
z@w5Mdp#=RmQ@<7edoBM2ZHYcmTfU~YnUxQx-^Kr-4hUOm5g+KT8|t?Ke1MgmAu3fQ
zJnMB_ri#2gB+tW#*W<Xut^djr4}TgGD-C{k%t2L3(~-Tr=fOwG9@;2De(2YU<J%mX
z)RHx^ajD%5lq{y8WJu}kH-Nmpv;(}%!ulO+yjs0XYH<#WJ2wzT-byak5HLP;Dl8t#
zqR8UdtF2+jv6vyxEj_@@)xHG_)E2DeEx6eb^N%}B{Z4BOzKF90K^#@B7zmZK0j#=w
zzr%K`1oCJ2TB#Y%*+fOUe*i{vQBOD?c{DyUM$vqe{V-C`Jr2@hFukBvv3<>_Uej(D
zoV8B5W{D<R28eT|==WTdhfFhJQv%(4mFo?~oP7?B>|9gE<)I3a9{sh$yW@Y&UCGzn
zz^Z{JW_pk?-)D%)I5x@@O-vLr{uO}5i(Pvhz=yBJ6tqqk&{!m*lW8-Hfwf@*P3XCF
zEIheR?A(JfqeeOQ1I3LyrGw6p150Sb3s|cb0PROcZ1(iny>1570{8llQG4xdU|YWB
z$8=?@!@6IB4Y)>(T<Db<f{(7!N)n@-E@fi!N-mxlE}e~R4ws9hUk{h3PBmsl`}Mq5
zfy3ondRB{Ubm>u!J+0(bCK>DTGX><-lU=D(&pYv)dVo^@1<qh9o=P)ItM=p0)D}%?
zw_!#$)b6*hihX~`5N8nxAGYl~Znay#Q(>Wgn{B{Dd#f1GWrz_7BY%h)@Qw(y?p0ug
zA)BOYUpgsKyH5e3Hb{;aP6BoNjfL6+3u00G81&L_G|1P-)Nd3XN#IzA@Y_S3Z!$!8
zOk;bSHDK2`1L8EujR=P+CRTr!;iDRmSZ@0I484)nzuceaiSFO)l!HYQVdUbQI0O9J
z8sK1@0Sa+|`j}!szgDyh$Z@a@JZw)*GCinHry=qU-{mM}^edGp8;C&J-y350Sc&Wp
znEHEEeS0Bbx|yRH+4y=jqUi$&yM|b@$5Aekxq)V2+gcjhq|!tW1d?Q<H8R<xEQDXo
zCX)+r3A!Y-%t4@a>lpU#(NoNF{d#7*We&w4WjNM`jSk6^ueEW;y41QJzeu>h9{#5o
z{{bHIXC7(nth}n?4byW`kZIt|Rq_n*XA|!(P8@IqT)1<CaCa0)`V4flJ-XlFqj%rN
zzAM0YA(u1?Z=VIqgjoXerx}z+u15f-kh!FY^Cb>nCf!|=57UmRMA?a2?XgiScsDMZ
zJO%%!$<xzJo*Gp^o(@$)o?fn+JnbU#6fVSIB6-q9jU3vKzW~!PX&<^<EpiOG!@URR
znY_97f7k?71fZ0Wftq(ZpwW#q)rAO-H&pUx!N2)u+JEUcJn$sxB9Sk{IMB=pl+smH
z5gb%K)AH5WBJ92zLklPadOZ+>P#(kLiz4W3L?%iAk)>N4A@nvXF?x^!Ch~C;-=^=0
z^V=NG1}*q`KYae8A$~`y;PefEuVl8<Ul!Bm<dITz0I=Jmr)BuG63r-ub9_ZiAJ4D0
z?2dYs0(;(G%MAPB*j?pFbXVS>FGu^~<l1O|Lxe8nhT~IiIA-N;H~=a;(V+#Q;YCsE
zrONY{w>iqMehLIe5w1X$%pt&YSR9^1w>&>p-utPGW&yyT007ka+YVh%uA3<@Oc)qz
z0(z20dkv8*(7vQFf2aKYTmFsz;$>Cl|Ly+&iSE7%ySMlSy8HE8WcRyd_utvOCmC7D
z*ZidkX1d-&tN{}9xVXPu)MiJc)Be2j>iN_70yYOgvnr1!u6Di!os2-pY7BJaJ|D;g
z*Oi|s*WVXCrsZ))@%%2be5Es_x990s&akNsS_DsRcd#2xV|35C&xiIvbpFDRgvNyQ
z)XcDx57q3PoUEZQ=bQu}rJ0!-brqRCJzJ`!LJTBN4i@BUx{0wT`E|p?F5@*3kA?B5
zWcWkbL#=d%iliC6S<^h|-jDg}kUY``@1H}|t+puoLPJ;iMzmww=S1w-dompg%w{9o
zMah$2OzNU>bR+zz^KZ<)Ma=A9{hymX7K_;4jt>h1$y4~qYoh0A0lFSJK`sqH(FbVa
zTydVWSo(xyM0<wlcT2aB0h)@h2bvGPUeAH&4Jiuq3y0IK*TQx+XffF)$nq{w5LluX
zs$!YqVslo4yd{}LR<54e7Fb0qW)(T46qBOzupvIj%xUP1-O`PQ;UBza)20;htebRK
z)c1_^3cECj?&HozU&nPnQ<+O;h*a?@u#F^NZoseIXb9Lnkna8X=ssWM%#W=I&pcwz
z&ZjMPZSdka>Y7jbWO2EnG3V@eC+Nl9pFPII1+sOch?-737j=^WTGE#Ok&Y_$Lvof_
zi-#d~+ZnHkV>dO#v_a%S;2f&g!#fJB^A@z<`=z1z`1eLJ=@@B)DCBCew>XZ|&6e}t
zD(Z|*!Fbh(I-}v*Q;W`eW$md|SoS`bE~zk(j{fNR0Q%S@l<E!W`lt?HBW2PL7=Z7T
zRDd1-`sIV{raZ+YcdQk<oD1q&-wK25zBnK2)-$ai9hULXXR_?g=k`WKx?$s%v)w-y
zq+20K0}G0QX=?QSAZeKQor$=+{y{zO7Ww=~^}MU?xh8!1oGjp2M`w_tm1B-RSmn`w
zS;^54vyQ$DkG@Uh(eJ(g|G=aFQXc)~^S1cP?)@q}`bqXvm5DDlM<4x1=cBLaklv?*
zT%RBIZ|G~CFNaG8V#6hwX#9l3qe|Go5EJhMyse7|YVwv(CD&beElN-<s9|hUhcSM!
zx_{cUf_7_@)SGx?QvG@g>Wc+P%war_OMll83*DOj--hznqOaZqWaM|WZCu#(L>x-h
zk0}*S1D@Y0+7oq2HsMf4+^79QGY-&<LsidsUz`~a@2{ey<cv)@V+?z63ja!Js3=@4
zjS;B=xOP+hCb0^*NCVM6n^;LgHhmFoR8C*mFpXTmtv?4UHnM{k-1>i^qjN!qYH@ox
znE`rfFw?&BrU7^dK6}}t*KzBk(CQNizo{YrDxm>!;1}S(|7Avw>aW~Pw(qnz#>zD!
zU#q^EY;&9eCNo6?;9h^4j_+DAFJJSh@!&Amb;PKc`8w@q&43C7oORmH95MbXANDL9
z`4^^tH4RbD1Pz7TGhSB|lMizLHTjW5vU2B~wfT{xv+~xV{78aYnJbTs;6PH(5gc@S
zNq}6PbM!lTn8Ro7i+|J*LkDP7srNY$+tQj1h7*5HPkR$!vX`p-mTa^l&awWCbeu^M
z^9E^n(G5CxEmC0ylc4gD;b$+av+BD34MU6_Ag}B9F^ztS9=Y|u<CW1hFg@$;cl5cc
z_5+qO9frdvXoP~JpZ9x@atT%TBz6X^vmM4Dz|Icoe};X08m%VLRY3jK`Q!rm$xKBq
zMx3FQB#EPgh>lRJ+sbK^PBSbfiGuv_yZYq-+HC3agojysS`JfeYkHfXhAC3R9Iy}L
zr(teJTY3#K)$7*p5*uViAS@F&#jD9PE7r3_21@uKx>HPXBRy-ajuFNbvy8fD1F3_u
zdxEnWkrTXGS>^~|o4;a+9!vAc+XW`PPVQRYavNF0J2-K+KbP%I7KP`$A$C?m$0bCN
z#$q4xk(<Qu`<)&YKN`#Z>Wd!ztoYF!3M@;^p*DRid<2@gx39v-@fTw7k+1-n*G=Lg
z-df6!#Y$QA#h$*lk73B&{lyt9>`qzkr8EuOmyrAWLg|Als{}5!qYu!S^~*HVkQLX~
zBmbmKd5?>caBk8c<J;3-tQDuy53sA9Zm{!~(}bhi^|VINn#C7kF1iF`=L-d?Q_k9j
zI{XHv$B~eEojCZNb@`fs;q@qm{2Cbw=?)EPh#4IuRzlB>1|#L{4sP`T9c6(xPH9iK
zWyxZ@Q<IU4liTCi+-`?cbJO+uQy_I=3|*EXRy#;TtaSc6%Hzy`>_9dD!T%fcKio_D
z!t5>g2G}8uJ=+%aW6w4c8z~#Cuc87hZ}?@Om${;5^}8feheYha9%{va$aO0XAzgny
zDo}J*KN&*$dGwpv{lX!nU)iNXdCxw%pDl#+>+>pv6ds2|NXJ%^FH45?Vxej!B~~=+
ziP3Z0u4esF^qU>FSx=8M>kal<&#`8`!9HtAQYxD@r>T{v9B~2|A#*<)J={TE#<}vJ
zqDP)4NyIEkBEF0y5$t2UAeuz1L=qugAHO0I8=n8Sm@z<enaIQX2s27FkK>%_(vwFR
z9)rrA0&V<Ei3MTeh?Hg-+ROhJBUxV&1Kb$wCFYSOr6vYjmPg14e~{jtUs*E3n}+yU
z$p|}GMlk7-TYn4jc=+!F89*UsE|+&=`VG<hUQo%t=S1#19Pa=kT6n$nGEl15EJ|fO
z^r9s4UC&1Hw`6f?fW}@^ea?C@RPH+Rb;scr53F*yPs*c*TQ^V+H^1C#5)8u>7XVwp
zg??;X=+*Kd1aeT?1{0^jG?OVTF1;MEnRN>EWQj@NFZBj#Vm+2=ZVQphm&O>4*&A6R
zW4}R>_g%qwDrP+py<m$FCXRG6sk+Sl{>V9n{=GTjY+e@Y`twIV2Efzb6Tw9C^epMb
z{(gflcuTCQ1I^loN*Hc&3(WKOswEdP1`j_MMR}6MemVSy2-hSG%}+GRbwTe8$DU`{
z!^w<hFBvVYZSlp~7SJnTQv&kR^NTYiGjZH+4~_J0{8%~aebY2ilISz_-_zy!!p;G{
z5HR(3{n+L-u6LOx_F^08ySQ_JqGGWtcL`{|$SwzYi_TyVofIS7fOI#k#8>G`n#Ehl
ze1w9>MLK-;C9$9j{3k_R`pyf0X7J4<a@wINDLjLgWEZpoc_AH}O^$AMDBO&91{gDz
zbFI*Zp;Iu1$syM_8{!zqp?=*Xx@iHFe#L;_2hb!9IC5V#V`{tUabjw(b^wnke^x^Q
zuXkQR|CdMsdOu7P+hKBe=ka+bm)=&CA{WRK%QRby^%@;w&rX4+dMi<o08gJAi%(8=
zF`N2Arm5Ev(-Uy1>CH@XH=p)9Eh=)?2Ym5Iw+3=ay8fOa7UfY`rv3mW7)-?t?_fBR
z6B;BZIPia>d%rx^`p?>2JTVDhJG?Nc;UnZkq)RbGI_vvM#yCPEcCdWLQKhrwwKiAD
ziv1;J24yu;0Y79{Np!blH<C7P^<KTIrCz=7is<TyalOotc1KMt`G=f7TOC=y<<4SF
zrWxg+Srp-*=_3oyEogHh=P1@F{}E|hIG%~AjcTC7ACU3u#iGd+UQCt`_(p3FZL{0(
z>sc=Sc2H=x>uwZ(fsx?w84|?Ur$aZMr;iL;6|J^Tv;3T7vZ`f^q<}E6>bA>O+W}Ry
zz0nZgWnz}5B(#J9*q!_c>8Kd|jhEtqj(?<aKu|I}W3vlroq}w<$1C{8iv}c<!ZK~~
zTR*-VNo*U?M=<(Vr)v^wwE7=a=;@#ucF)q3v2;~6n)e7dUs+Z2x`tSorSbh!Cam)_
za(ErO*6XqS;tt?5>*l6eOpX$~DH*lai&m1Tn;V)!;kzsj8RBRb%R<B7mHw@VvrKeZ
zlXD#%wOug8t}J#~!?HA<j3R)tC6nSqS@0^MOuAN{S@;V86&%IIECi}#*j+=Mo`3?C
z@b6-fIys?2kjfDGySx}-X6k>IVpl_oGEbI(^-iSC5a9K47T-`|@Op;aF$S=e?^Xc<
z4Gqz=uBL!?MKzlD3O8R~Rr6~Nv7)X<l!7{pdq;u8?z#*P6W&2^xZV)o)HU(WRD#3D
z@5F$^rn>Awt+TH)ov?nZc#nLP(t~JgP8D5|mkL>1`E)DIa<CqB4S%n^m51jw;2KlE
z%d*5?Y!zdo>~@VtIg{!~`d%JvWut^J&W91>l*Nt%UnV0s`==v=NrfJ8x^YdyyIRFq
zghyY4;&6t3Z9W-+Ya-jRth&SB)-0p$o_f-TG~w;+_$J-i*YM5^dpo{97Nl#fF`2Z>
z-9Of-;&zpoM8kxkAN4?|SgNjv14tbtRhS6`Bg4|VzR5vHjY-#P%3<z)4i1?AwujFR
z9<8m%=eFQ&Jh!_HvAUjH&$h}=EqOb}u3219qbu~<m@5+DgzmZu>08I;x9IYh70tI5
zL|%|z>i4!JQ0MB|2~_^uF%WsQo@OQH^8g_PdERY^86RoRoN8<vNTtc*2~7q<+C2k(
zd{|SfI4sLJ4)kQ&HJX*$=x`^M+K8dy_&-cmolLPNOC#NUSArEdIp%G%N^5;k&SZ2o
z+D?~kM^&TkjB8|izLz3W(lAUDfez{_E?Grj`_w<`iQG4g`9kxodf?1va5$ae$^a<^
zR^6&n$G3X8VO0CLoiF@KPX(cO6g$RclI<YJt*5#{%r`**z21`0B3yxwPt>#+S6~(t
zlewL4Nr@na<A0nX{RJMZ+fHxw+<|Kti*)fK9QZ<YB?54GSI|;j4Wx%Hv7*EJiJH$0
z>Td(l17St#J(;2o>*I(WEB>L8#c4^VJR@l}?>k8=k5FSH)mfPClr>&k@)xJrxPYv{
zGeC6cnvNgPuS@&6d1pd#^3JSFRC#A;1`&fK#$=s|$wvc6x2`%_X9_CFI+JV9I`g&|
z67p&k%6M;%eiH?X$yB6$CSyf0U0m7$bAb2VCKI0rDTQy!n?a*Yz4nW?`}C)=BkYm!
z5IN3KOaWh{g(VDAkDnv~8i$lX(ltgPiPL(WYW>s7D(>AT85F{oBF1l^1DGoF>zJfn
zA3>r{RJ*(3G#AQ@1U?Xe*O448Iq-&eJz-{vML4spdR8Siflr!T$7k`YN&l#VbTp*4
z6v>e!&14g+(Pu(bpO321=c6pzx4IZ)=7Yo4?-WONc#&chfT)~?B@nH{_mL7Le%#^B
z!Lz?INuB*QMwVXdFLeAW#nd%$o+&T!@!tr4U-KkFfZDfi)j7**o_w(4lXq2k^d)rL
zlYb4fiwqmLAl79nvK;Hq-mM;)pnQ6o3s|B_dO_sv<Z&A(^>C*F^@v}#2Ym{JEsFi&
z>y@`{!d4?VjR@wy*EUcN5A>mA{(L8StKsJK9Aquq{kBK)SDz6Ax(i$p6G0dO_&44D
zFM<6*AY?!^-!(+PT^7--Co(PJcged|Lr=fDkr21I8h!dl^;uMnJ_G8K@tQp^ig^Q7
zyl~HnXlVSuG#qqO8x4O~6s$uUev=^{%mGX$8lFUG+-(vPxg_z^*G$7NPyCP2aKFhQ
z+LIAPPjhDLe*pwBqs+7u-!`KS2V3f~;Q&Cw;_WG7`#j3iZ6nMu`f=b)d|kzanf;c1
zFv>d8MJ0h*_m0Q9betzuvGt^i-DZe6b=@|7b5oQm20cEmtHJ5r@)9bX)TXE^Mer7Y
zGJw&$`GBZTpeneAK2xLmjHyPSX?1CviDF-w2uFOkIQ6yHBvN+^QtSp9)=^(UNi9kA
z+{qOC+{FJQDE8Ix>SF1gfRZmJOEf77f*C*>7xy2cex<4)>tB#=n<Q=j*!k+b-J$CU
zWPmB+Jwi)31YE{5a?+S3BE_xO%-2<ly{u`VFX=U3bvbhaDE()x)pb+PD#fSRBbDh_
zzjRYNZiMuIi5Z`JNg5J;=8?yTW(}8Y{8Ui}KMH<X^<K5+*8S?{Mv2<Qr+HfS=k$bF
zfMO))#5wmaX@UVdJIu@Ql<?Pum3A^j89JDNh~F$;88=wV@1&=BCn}=Tf-1<@aa$KS
z<nV?epBQOH&vU}h`AT}WrMpWz!Iv8xCh4!?0PS@2DDlFWl*IQ209xJR=;LPF<qbEF
zadd-&)1E|p&~mODqlJ{mQ1Prh_T62(Q6`?*HPecX7h}J~n5h&@vmu3$akKI&)QCGP
z?HRlAbw9V3F1yRWpbR$mI~(Y?iRXOq=Wnwy$!P}JD!$a5oB(B_trI-o2@{KOCRS6B
zMnq_`XJh2|D!^7uv~|DKWRcp6-ndPvckAOcQ7;>QzgsMS-9gC(Ry&IIhGI=OcI%-)
zg%=I6;76}U=XnFLL>juGSY&Twij~+TMJ(=ym+XHr__s-2TB$Cx?Ok3L8@S6H>hhAo
zzcJXhO^*JuCtGhLudf!)&dZ72`S;Y$k5D`RaYg4Op=_LLI5}d=Dlis|SFI<7Te~W5
zK0!5~Sn1$$Djz{>XZJV<9N+3v8a_HWshy5&bep){X@-^OTLXHU2ShU$2%&P%rO)TA
zJjr^~46%rUhD8UDn>p~TJQNb{1}3)AfkK;p<I~a&_{vEKig989##_p^h-hhI%3|~q
z5j_iF+#8LjtzPV<5}Ktj>3T7Dqm>UMQ>?bVn9nba+QzF$P#SRbIf+&*EDqLfKHtm`
zw@aUISUAV8%M6{fqK*PHbjt6FWJNG$&&rFeAM^;YJ8bnRJHc~Mh8T+>rD<Z{&^$7l
z2aY)^PR#cI7-H|xJaojgZhGydhzdT*lfLe!Heucn=lhNDaf*u#Aib>Dm+>_vW#BhI
z%usK-Z-zI?PPZ8XDHi?<OvFQy+&!kA;jto6Zi2IxE~X6u+-}kI=b&jOt=nfEK1e86
zaKRa(h6^N+b~$vYJ^4@{hG`%Gz%cb&z`w@RZKa^~gGCr&fUW?v&ptsNyUxl(dskCK
z{KOrNtR~X0;_^&;vVeO)P5qKuwBR(Fj~YJx2_y3AYG$nZctw%7?`Osy@D)Db?zZoR
z{X#$?-bf|dow)n}Mq&|)BAqbpbb=mk-xx^~6b0U~F%tWY;y5M|yq0<)vN95twk8(@
z^gY*P4ZptwKp@bzG7yjVdjWG>ixZA)rf*-)&MS>4WFc<;OZ>RO!R~cFAcJOnlJ~Qg
zf};W{fMKOK6%1Tr_@uf(c?GESdM=h;|Dc7Q_7;XEaXzRw3G`Y5=)GyM%dEU<IZ`D_
z1+{S>j(wA*PZ!RLrgPG|jO-7MP`8TDpheScQqfmAg0^{eh@977X<o0xy#9*wN;kwG
zEcQJmJT)g3ViIRy?Lb^Ghb9mJgvOSB{U&kvq@$FaU18IHV!Bu5X40s*y!XVF4IGfZ
z%Mr5o3~x7Gu23qmi0(2>WZVMHO1LgI0cioTDv56DEAt9u?r-z`+r_{SI#TqT-5VX2
zSK!C?tuMiC&k&nnX+e+@>uMq`sJB$v8VZ0(0Cb?&95oAVl<@f3EPzL6x{07ZYB61e
z{ZNqSjK;AVpy9%o_1aSiC!v=wn*h7lM&6PDg_{GxgFP|v)gl;h{9r8@5$hN~>@h+h
z#eUDDo5ekFxLEV`?h3rx!&LkkL(F(V)Bj{dg+N9p%VDA(C_}$Gaj;Ocu61sLxr?8U
zQvQA4FpciD>!S_gO*ia9eJow`CPsOn<@P#p=?q&l(lH6EZZtwI+eZcO29Z;aT>#E7
z$QyH=`qK421cYM!dBYW3wJBAs_xkgjHf@?O3)*iw;q}EAR0d6uFi^a^8i5n}s`Y~1
z6)J_ytEF7(R~<f!=ui~Z0XD`hdlaZ1^DFJ4JA<;rVAbK%>a1XhYCW&g)>1GVs#?#j
zPU}L|dQNqwu89%QK9rqJlJ@2{<Qnz;tsrNmi5{;I<-2@qMG}V_bFO!PMde(dE(IJO
zo~x{K4)?>iq73ulD<r}ks&G6PGNlo(Fi)}zFbwKDj;K(;kB3uS>bgqF(BZNu7v#c1
znKJs@=r_X(!_LX4$|8L_GeqA)EkJbQVwtyCmdzVjh|R@@BPx7w&TujqZi0uat%nQo
zA>MZ-&=psL>CDzMoG-wXeU{YZtCrNXzDzmQ0{xv`D4l9ImU)py-fD<hg&gaXVbs-=
zyp-r01Ydinc}O8Lno+;c%cwNkEryuO{n%&X37XEMFr6o?>F^zfeNUumCRivpY`y)Z
z428p&N*w+?x--0=PVYtB{QUFFD#*|8!hdl8|G*7b;UEt?q7&pVv45|azqg<;GVFP@
z9*FbhVTY>vvaAenXrvaeGQgNav0vUfGV;sEM7%Fg+F#X|Wl?}_&^u01fa&{Vzx;W?
z_T^MD&l4bGj79lMYWpn(qhCG5%?oc6ZuY5HF>V4&IR7?PKU26FM$PYcD%9*Tu^On^
ze|HoDo*6GuvtRU^a(JUqbI9%}NP{mQ9&g1BB#RGsdr@+!k59v41N(MY;CfH)Vi+A@
zh$G|WeRX061qvrxtE3?Y?2d)uW8=dx-rxSd)P<J7>y+e(%q_wh;mj_tFY+?q_J?wX
zfS*2+wlhSxLM`Z|=-0z{vN%RULQo0`siJjxepAsdyV;<ojsKwMU@%##c*D$xKO0gp
zoMW|1XqL;X!<+gj{;{k&t^2ChORL~E#heMQA8tm?by$I?*q&`+VYoY`%}y741`{BO
zo17lLOnU_A(ql&SP1+~N?I)urzu*em^J=S5wXT}ziCLIa#gE<)ZdOx~>Jsn!8#f=2
zpRZplCR3>~4751r&5@h0+$VMqVV80s-X_f96>APmW%I2W&_ZSW;1DfG3adrOy(LBn
zCdAW{2h2n7A0pHELL&+<OTtH*dK7Ms18|pKg&dRvw7Qj^)(swEPOmgQqlh#iUxX$k
zE%P&vRc<|>Bw-EoAwLce`p~^bEg4iV&fi%QH?DqTL|pxBj;sHYO$KYNxcUVgSHC_o
zuKsn+imS&EfEEbW*(4H2M%EXD=scmbMosF#l=MFuWOUJQ!h)56>1*GDKg5FTeEJ<?
z&08jBqrT4NrxygEH?ZQfvQl7{3DSEhU|vzNU@7;D66pI4XO7`4r@Zfp2wUCZ?Cij$
zza>sl>fRAvb3i`)I-&U~?i5rK{o1gT3f^@5%4vqP^c!N#8n5lp7Zp-Cosi+NPh;5T
za~2$C$mgZ{YjE~&*l@(4>N6C;DLGBwvI?^?Naj{v7-nu6Mkb7PP!?&>pC<r&7C!R4
zB_O~d-fAVeIZSK-)GPl8nN2~GeJd?f7X6pm0O}|aMLm8{655Z^Z+^5%Xua(Wp48_o
zai&lsAEvrE5pn3SS5_eyHG-)~jS#)~#(FUkU(_VgtdvDF4-8YoX$!6Wt*K{)^hTIv
z%0Nm!T@_Nf1pw$*up4f@A#s(4cu{E7(X;jd+J4~rTF>f0e^5HWO!3W8C5B;a>o6(1
z?K$d2LU$Wz*~6%!i;-=#fX$>x%g14hpE6Xy5sk9vsEy3Hb*EqY`i&YUw`JGSDDK#R
zU#i3Vr!xmnuN4ga4*Vka+=_bcJQ~H_pywFb^ExrOF?l~{p{WVe?Km^SxoftgY~V66
zd+f0%I1^<O-En7%9dV{p#DijCHJs6FxYLz`>&&BGOi)}IysjU1)$lspg4d(ff!9gV
zP+2le!t2E7H`|AW;dO?6CkR?U9|l}546Xw#s5}=5u0HF<kClLHC<0nt5?WhT39bDQ
zNOQ)u(X-ybzf9vDHqhF^^@;-5o<~V#0C2s`;F`;@sy_wa_1OTnl>*qF(NG2JI;ViO
zdmQLES1n-e76(`_SirjAf!Gwb7NBCi1+nT$1*cA#So=uqfR`*lWy1>#v6Nlf%IG!w
zTLPYB@#TkXCBqgs@xcxG*30pLCqLvs>iT%A^d^P_)%W0E<dk!74z2ZBq~_tQN<_`A
zR07)$$y5Ttk>PX!@++SnlBopN+ul(|Cn_<Kf&Spvi1q=QMu4n0VPsI>lAi<Frj%rx
zBw)fg)=eTU2d`bebC~4KhVJ|uJ0bYaPIQaa-k?~hnGNJ0ZuYn_u_qSg!D1H~$i81N
zvN1b@ss9DbF%)2clGycumao?k6O$-`W3rEH3%Ef@1HHJrX3;&`3249O1N0MKnB)qF
ztkF{deo>r+f%b2R;*MA|VVKv4{1<+oC%)UyYc_2x(p@6g5B#^a_zdtagws2~mfJW&
z)L)5aNVBcpfmF4eD!frStVx{fLcg1m2W-1+>+hyKjQB9Y#nF1~BYU2k!`$#c1Mr`G
z*>Y3@Ju8JJz@Q{jG}XPLYXUB6kk{n(c!e*4<cWu!>ERl)e!8A^*`Wz`Yo6ByLnMg}
zn#;b4OX2Z7@OYW#=h$8phm*u+PV-&#D<Hlkl(;|+D|{u;48K;Ym;VO@ku#+g3L?$9
zMZZxR*L?Z;gnh>WMc6+c6DI6#68+*)_QR!7^t*7BvK2+Y88*shD=LkZMEZ`hOClQ%
zC<;DjOay6PX}wrH#v<*3YEyNyDj}rsUlv(^g(cvKg#a!u7=^x58AXbY`zoO0Yf5A3
z_?%I42UeBF(s6uQH633OJuLK`H%ig*%fF2jI-*Ir4@r6VXB8=DO>9}5$;=;BH6=g0
zUsCcxff!1@b-$$K(*t%&?zbqp$&_4S#0x0X{KbNNSjvfeV=G*T^Zxl<xDx+!Y9)Mu
zIOkyON>+{L&1pbRj#(ldQ(?VF#68_b!(JnLdXdFk!5pDU6ul;y!u1?;g0pi;a%?g=
zmJM$AsRcZX3$W$*!v-~FYQS;(tnyxaF(vXnBrRLzz2+QHl0zmaG-G7x!ubbO>B7($
zE?tOQ@hFxqY|bY01GdGY!*wR(M9TB<S4Y%iCvY#(5gtB*neFIkhV8S;eU%kaxvxV}
z<)+xTXOcCozXLxVBL$ji2ULwAcx38tYthxe4j-t>{sB;OU<~IuX&}D7ON%LY7u5e?
zh=M<Bbgd^#?nqwuv4-VSrg5=AKJ>l^qA=oSL!2b?h0ic>BSk!eTr^)2fgGeq877zB
zDYBK`@x-Zlbx1kGu4xoeJZHi40bu-?pNN-zVSm&tYKeXb`V9<{B=AKohM8oag!od*
zzXTBVqL0~pD+ZfXaopp}cQqk%M*kBOs88WkK42(`cq{hZP%R*{tla0!c5u}%H1Fc3
zQ|U3y%C(Xzwsir<huJ4y5uXt!Ea@US;VYszLFQgT@i>vHt|pdKZt?$!+T3k_h1}{9
zZgCkm>Cvm=R!8<IZZ%?DHPn!c`=VG<&mzgJE=0fSRTO4cKkbWUR^J8e%xd=@#gitC
zi(pn?SuduK`^D7eZ~i6q<*)WdajGdr#HoxNOGEa>(~wK{#n+H06v-Xfx-XWh;>)U;
z)s}s+%xYqhVpjbcRfAcbeLj*|ZHhCQ$wgH&tL}Rwv-)vd46`cTEt%Dr@$uCTe^t!t
zhr6q0R$X6+WL7Kp#;#=USl*oaVP;kTKgg`A<W$AGEKap%LM*5HVvmhe%^W8=)uug)
zQ++Znic@is-7ojVaH@}>a{z0hJse$T_mf=~d)ho9f;~l+z+1Y<#-0|9lk8~~&*f!$
z<hHS=aFyM`yHu6klVnw|Zk64_JyBHR@Hm;ZX=wDDlj_azJy8g7E2uj}tSo-HWluHu
z<;8KfD!ZF1?GfZ2-;HAqiz|D>MAkV~!{ThyRh?a>J_0bz!>XX4;ftLZWh>ruqE^$Z
z4Jd)|L=@D<Dw_YKc%A`3_T}Bfs;aHMIfm&hw@kbu7j!96%O&3P>raRY#EMG0poRAd
zF)qPR**wZcZVqs&mSU=U&77*G2qvh+VxQ>cj!LU+ri!^AIJ24Oy(Yd+!ja~EAV+#l
ze3PW|jiocwqYg@4d{u-T*x_+*pAQe#JACrf-D*;wN{Vczid7!TZeJDaYT`(%J@V5q
zQcd;goG`z|1mbf%rrt&DukGUde}BDjLBp{v)YRS=hiPh)^VHnl7iA8412f?`mPR#|
zTRvym_LB^;ovS}&iKB&lUn7Q>c}+MRBS0SiK2!aJ$oT<l<-H55aNM`__wOsz-)SgJ
z*J9V-e~72QbIT#Dzhj-5@l9-#SBt7I_9KOMig|Q#@%dXo9-G026tp(s;YYu5l~9+m
z6>`1ZM#=U5RLbk+lCeN&eajIEvw&jk>Oy`zwT+CYp<#*}K>d9Wg>A66Y76z>Oy#V^
zcP)5M&l03Ja@NH&s~x})uT*OMjEwGiMq<Z06<4I|*CLT|`y04j*`}KkdPqmog5^y3
zK*wLAnTE?~fuRv%yCyGo`l3~-TW4fVKMA^a{;8A4mV8GBF%5=4i^Egw!3B6|7mmQb
zV4NDCIezJ6p-lUfHC@l>re`hGGqC<m!Y!=a{*7dkHw?VRridYs(OJ1ItBPpdVz3ic
z11lQnY_tUu<n$icM7}S#zYkxo-AwlzNSuBLiVVYg-!gB2oHN7lu1Jh&yF}VWG-Mi(
z82IsZ0>jhnGH;0QJ^~Ur^7ls}Lxn@O7e{EwA{?^4I3$OhRK`__1GuHVMn!IEE^jH-
z&P~&^iXt~P$F`|64pnv+>;lQm&l@{(RK&)96KxWJEgL;5ys<k=E85t?Q4t%9#-#x5
z&5B{_Vt2_=FGe;7<6qQ`(8Oxw(P9PN)WOe{5^dKVlY63EXfIU`YJaC)dDB2=CQa`|
zlqFa>{h>B4NmYL89412aPh%cL^d@Hzpefw0e<bzcMUs+*P?1Dbepg{tb)10)cL|AH
zpGa|uwtnO?-x6SqLBM!T9A>~U#7AYeL}u|o^c*p#As-Nko&m;$Ge{H{I);cp5Vh~Z
zoU^gsN*t%JOu}#b2l&mL^$#}ITZl6?Tp_gL!ZX`?0FV*aQDaOK`wO+;-Oy%27hfbm
zccpLi{(u1b2be&rA-+loMOXwLktqrTmPOz#L+n--feCC8c!eIBpaK|X4h%UfHw2U0
zpoz0QyP>&MDgK9=C09dmmh7(v!Rc2NffvW3wGV*!0YzcFDBD*NUVvt(@B#(rZ#x7i
zZMxn9baqS)*AU2Rk|kH)kW=ABfGHtrr>1IiH<u9f7z5Ok{F6{-z#)r_z<ymCtXbgo
zy7-acq$eKJ>*A**30~AA6h7f>eE5lOR!V>3VOkZI`Up%r+&;|WAHshI+R?4Z8NuvJ
z+sjXg(N4+RGsJ_u-g%{nbriE^h_%Dwlg)LpaG@tl_44A;Y5>LNNG|k|{XSTCI@A4p
z<hyO0=)(#*QOU3{V1UrpIS`4>r6li7@DMidujxm)AMeR#-0eY_Hs}M!U5V&FC7BkY
z_xQkvExT)Cyl_#@!p{By__Ij(LnsP@&Q;SDRaJaPL(DkZ&=4QD#CV+T4N;l_4G;6_
z?fjFo0Su^%Y4>2MATgz-hRHQ??~C_HsfvN;yOEli{T8Y&XB;Jn^C7)CZ1&>@uDU?4
zY3Uw4N~4Vhdh!e8f)kHho~Hd6?jhoG0%YG8#N75F+?4~JeG8g4Za$#o54hx~M83e5
zmpX?ANQ^mEvqWOdBNAgCWsG^kBEdx-zl{X96esCxh4{6W(4WZ74WVC<=Ui-C0nf=#
ziQqZiJuwom)AdSIS3d61a$5PC&a_8Mgx_bn;6T<S1}UM}&`vpx;B{GNWB|?eH^eZ3
zC;4q>yu2F;e`koGOj59VpM_46d`M_2b`msgXwT3zpR~K}?L!t<IY%28@I*l7shScp
zY4FiNf7yG-WwFV5ASBQk$?VP*@XFtazdDg2?C%Up(I0?2E}|tYgC)EsmcfGQoZ`}~
zb#abKA^(Z$ApbX!$Uia~`7wuZ$Z)z8*#!ichw3@&{p(OvFTwKkSj5b<S%r&~Re0~6
z5mw=`{|_)-<Oy44Y{`LW4@eN(3&&IFxXmIQvRj11cfORFN8Eu*;Plpk2hn`N8rSYJ
zFQ(bJkAF!shPW=s5fTrC^m;!1_po0N5dOAOCEN$cu|^ys%OqPsZhl&?i^lL=y{<-P
zaF<8F*{3&wkzCeD*1JHQceT-(u$GUED)h;Idm>0F#+#cGfD#daw6Gpd5)Z=uTqlSs
zF91sTkXh{MWV*}%KvDlZlb}eF)76AGD-ds5i4}-9(D<{O<^Fpt+r^if=u;bE-w?C&
zLJ?M^N2C>L{vMl1vr1W!7VS|Y%__7ay#*cKLG2N9l(um(#hOesdtZB?Sg`k{DV37V
zp)odAMK;sKf?--oBacgb;slguzCL`vw-ixLp)-77>Tm|jioUS&NCjU2O@0JfHEmrZ
zGtqy0xT48rh>4>#7i!pB+S9V%5c8OrY(Zl3hM4Un9=Ex@qBT=f==JWlOlu~m_(Ql&
zyV|M-R|J|n2H>&5uS<yjFNj%AGlUs2N4GCQW6Tnu6i6KZDb^-q?`7?v^*_a`WU|9<
z?i{*WX$+^fpo2WX;VC%w>9%ly0Bp%6A>8I?=~~E{4FkLM*R5R!`oJNPr3WJ@2onu4
zbhLCnJ$KL>QsmccN{{-UAP=Baabd8AezWkg%c8`m|7I;ZS^zY|O5y4IqIZoFD&+T`
zsb6pTIMNWqVAL@2ttlofMH6--+^VgAR$Dbc6_>N=ecGzIsc<g85hrt95@jA5h)X^~
zI5P?;?^EKCM45$7;xGr=Dh?CCip642TjVg~Q|Ns6x8<+25<ey42z@%4@b{%errpCp
z;H<(G<xsA#DRPk-5ndDra?$7>sNsVB25Bc39aBct@Do0P3IYe=DX!=s&h3pn2-=t)
zW3@mC7j>*19(4h799Ts;EIZ>x)U!Gh)ShLiTbYbd2aNH3wYtSMaCM*O;_5!-i40B*
zMVp63jR56+sE5YsW;jhZ<&~IrBU+W+&}yiDyODtjq;+FN9HWpt)&tAXSCtvh&C(%H
zGO7uRQIX*JzBo5l(_(=G=Xa_dZB&U_(MC-;5@(~f4c7ubLWgOc%%%^(a(C%2AN}s=
zC&6htCas8<#a)fN=5Q<~B#YT22os!Q<6)|-m@2vs!K@o%wvJo7p(D^`df!W-MYkau
zd@)y)=_XB}5Sq+uUc#oC-Y2}Q#fFiJPwJyuINZTDcv53((Tv{=RRx9T+Yl5Es1*T)
z<!#7^p%z2o`8GJ){<ZvuD7b-mhR?)%3Ni9k?W&bPnBA}J2gi%Mc*sk(CL-~=7`{@|
ziYYbR^p={~!h*b~RPV@Ke#Z+{m}4VE)4p9|MAMFJePv^;&#t5u#@a;KgupvbA)!Vw
zUP`T@0tCg^VR0_8`mIvRr)0nbO}_(v<JK)?Kk_winPih_jVg%PTC3P3_&wDL#3qd@
znKU<oHfBU66+mDq)*pmtnQPnt_1|^|5=FB)#9I|8W%H%YhN-rv_o%AO)e-x1rUE6F
zH>ogEi9Oj~ent$IN-VSK?@GP$!e_&98IUmN2nQt8#7CM>&F+fVtj6Sg@_RGcmemaZ
z8AQ{RpWh-P<~6;un%7stA3jy<A9={RVp#$}vEEL+DIst8VXtW!EJvdRSe-K&L@t1z
zec-PU4{i`Yc>&zzqQ@B3S+qKlZk`Gtwr5H##14$rs7hX;+n%#5pZHNec}<)HUFSyO
zza<1jxffBZcsBZ)Mm=Pwe5kvSDoZ1<y3hN*NFHyGed>6>CqojD1+PVRy2JG9`jGm#
znEE7(lpGZJbA2`<RN}!G(`ve2GVN5T#Dh^|VrorfzFV-miI~9#gl!(v^;u&;hYv|j
zJLxgu@4@iSM3Jckc-yaymP*9$9U<b&D96(*<CA!<*TR$^a~g(#+T9L-OICx~L~L-S
z8(WsZ>)8!WJzFem8HDeB*d`mEOuokzz-Q}Qy5QHmhS?#qFK7?IR(uDfvjITaiuM+i
znNph;tGfIgz@HQg_^eRxiUfQNZQ&QY?SPM_QDXTXF;lX$uYjG=K7Cuumu;3~Oi3HR
z%b(U*e@+~&MW8Yg=>K!@o;G_7C=M{dNKN=^5r6c(@5f(1rqb(f@AIAFK^Akzwk0Sl
zWhtqsExv3ge5v%Z8@_BOx^vI2ZMkQGoLD(d>?L|MH<8+Z*@*_52T~P7V#yK2QZvl@
zaPY6V@yt#%_|`-}jrK_=emgjs-kxbkZ-*q)r%$(2YZ_dG)>NKLYZ_DoU<l51f1*p|
z20XkKAR5z&67?R~#&kW1O~=-xaSwW6T=+STA#=Z{v?&7SbWpPB!OqsOBy8|Wl1ozV
zork#42pO905c@E~u>L|bR1$zMfA4i=yR7d%EzZ<(g^*sIvOyAlcXbC+A6^ivYtTGa
z<f18QNe%kw@?3iPnpnv%SHa8I#3FbJP?;`3D68k(hpc^SuIs_ZfFt{B<Y2!^x!M3j
z47jU=j6rUt=VK}DziIJAi53!zjqVW+)yrC!!aA4L#)T|t4WfuxQQHrbAJ^X5fTv&7
z!ReuGnM;k<w>I&|yxRUy2qu`HhX=f*jkBaF&MpM35`HgigKiS52`b?mH}Xw>s^M&C
znBs>&%l!y42!GQC_hTZ1@Xj`JKc@1_-ED9`CV-GM2|3XWu6q$xbNXJHcmbQ_U@EZd
zoH;S6z$m$-FmhEQu8_vLHV;g<=cj-dBeyt$LL~tcMgb;6e?a!VL4GNmlmV|VUo$c3
zkrFj;Ks#iPElt?QXxmPTA?AMN;Ee4u*Fw5jJ3Eic+pXB(DABJIiz&BQ1{bBle0-Fm
zp`{^~Z{Vy#WRt)e%9LA6l$T<9A2DbY=L|YsT1n2JzZzoTs635K12WwNx|m8AlY<{q
zHYNjj;C9Lhw9dLrc9L*dAme;llrEoY-#_57{kF->A7`T9^xqcF{Be0|WV)O*@#9v9
z)5KDN?3lLWV@f~-)A)EhCFs~hk2hJ5XX0Zr<~h;&k^qO`d;_NGq3LDQncN9yl5MC&
zR5btkunyoD&$v0YXQn8bDsu|~?rd|g4dv^pc`jCLCT*jPR7Tbl&#KHqU#SjMpl-1=
zyKG-UW|xNWh`Y4V8;I`@%fpJf<qn2#xfjX(T}K-nLIC=HcsRAxj;XOBxZ}1-6J5#F
zDDRmY_@(l5*%sXy-jClVVNd@Rf{+K9_Qj5Vc+^*S0atYpK%F>905xPZ1JtpDl>pS6
zplXiJ)5ydr0V)hndnZ$JCpfWjJ0jre=_q(&Psfu}qM&9_iOiRDBKl2!Nf@3kOo`p4
z9wiQ}a>6>@_fzt4e{RI5m<fgB#8*zOAm16r>D_3Eo+Y%GgrmGN>UL^M?6&tQ32*z!
z=-I&gz9kN;NP{jun<|t4t;5rhq=x!_Jtc}DO(=1=Gx*X8XB#z7x@cVQh<?r`4Q7^b
zZksWko$d&N_J>Ld+FOJ?e+A@05^<ZD-6cowEH);%0M5tc1#rYsiGHU&d3}I4(x7z6
zV%b(YX=g4Sby|U5`z65e;xa&tx=#aCtuD;VCW_Kf%r8?p*J>O19C(FTSmr=l*j-j)
zavB)LL1ma+9`awtW^d4xdCwM3t1S5-n{L^!v?p#ith$j=3#)l`k>bkt)APzz#odXx
zX;#Hueh-J@lQktlF5JYqsW7*si`0m4jV&PE)8|>F+m>AiNcZN?ZKNBMvuQaZxi~RF
zlu)uYF>SNVd6jO63nvNR0Kqc#dJk5ZIOus$9x<cWpVdTRD1X%QOGpSCzsVt+eEUhB
z%P6s6i}7cSJU<^lKcEQA=&9iZQMy%>Kt?~yU~%$C`URuKZ5fA)qGH8$=gWGn2QdTD
z(=tXpq+buB@{OW5!pQaFyE53v+r;?%Jd|E)WW$?pxP<hLT#t65q5zHJU=XHAR6F$1
zR6C4SkQ-s5YCWMkttYA0<EK^)zs20=hb@js+2kRK$~VSE<-ZdutNW+h#O2O8dMD9K
zASxg71}x~u!ffTT2nP_Wkx@JXM{M9H>rlE|AA%N@VHyos0-PhYkv?4$Q*@WC&$xJM
zUNJ%mv&aiuWu~rv(=bz4h>>VIenE~`fa4A2@s9I&(=;&z#>19(6{~iGv0WjzTgL5z
znpkRmcQSt0=fiT2n9Y2gCT4A70(epnI9tRaSFpdD#Oeh|vlO}NhN&LmR~r6$9rn;?
znJC+l)>qB&z{#Ct2k~{HG8P0nWy@y=5=k?p$O9UX%uF91;S93Qbp0{Wbp%Ybj_7*C
z0c!Ol2LFBxeXlx;7fWFuW_0qvpIZ{Cko;WD6Oqm{P$?A36bRFzXh6kKco_}(T=5hI
zMU^QIHSK<*@<PpAK)W}UIYQ-h+$)xOH7hTNGXQ_GJMGD>j*tsxKCP1vKyk8g(WPU}
zATWbdSBOGVW>yy#4)yoQ)56&|a3&4Kp@>E=0kC2tOxT(tzP$pR<0fEFJ@SfG`)|VS
zO`zD~BW%u9BAt!65#C__I-qBS^ji!U8Ix?8kS<Tlvz2qm5JR?NB1zG~rDwcOqTdN<
zkVuL8ee?>u0SW(MS{{e$4uGekgZoL~KTnf`Jmul8kAJhwb7q>7C~p+~5e$=Lj-QjZ
z7lZhPQQLS9=^{=!2lTsl)aG!H)6=3z7|3qD<&Yw7?xk<0<;4qgK^@>xZZQ`7<BhoB
zw25lRFt^?DYO$#o3^8K}Ow1N{fCKyqz4>2=T)_5eQFO9_oIqs!%={^NGJa+qvg<VG
z-ziQt#YNIpa7vzx1lWpiRWSrzOt4<;#upsbf^Otll-e{Iv<DT>;;B5aKAE+LkEi8@
zQ_63{d1i?kE&_{j)ADfs&0!J<78w14TDZ|dWi_2(oi6m<xmD^OlNg$Q4?+ibW36MX
zz430<7>2-u`mG^$apT-@guW+UWamfG+ndDGW;PTDc(zHfd&pE3aK}!IqzZFMjvZCv
z@Yxxvl|y=4B>z;;zu6YaDb@2`+ah@)aimUS#x@6YgR=)6r54p$HY`sQ?SYsy1yXq?
zF*}4RTQ@C;S$~f)*53yEI4BPdgOkrVvh^p$`k^4f>SEq8M@~S0(!k%U&V>+lv|nNk
z@Dx5olK!irU!K#%e2m?WIMB0X;E+6*T*6JF+X+VibKKnI(XV&m+rIMctKv$c%R?LR
z)iDSA*SmZ`L}#G|#v_K2Z2lMYx$b?+5o8HzIe{#kVQXh;gui$)6>p026}SFdv9I_C
z6}yU~8QOUVp?svbxHG*$b^}*7MF!OH#PJq)OK)+fz?)$pfQ5NE@Z&rRZuAQUw}~Bd
zV6i)Oml)kKJ6mrn?hL~3zkn9nNj%^p{sHLQQ0)CNih+#n7Rx}k{TRhSrgoDI#MWqi
zL?d7ubGu2lks)djk7@6>F%L@os+dR8+a73@?jaQ2JtHsRBR){L+2QZ{+%wPW8UKa-
z|J$!<UfB$V+l|EF%?{1RB*Oo4)BQ8T9AVUE8>`qe!>%@h>KfRLNgVhfaf<KI6mu}p
zEt0?On_<J}QpWn>n=4}(>u1De8SXI4n7KKUWkk^Kxk1k1ZHUj&3|3<>pI-x_&{Kkn
zLT~?yNH^Pk##xW|eibI%WcLZ_S<V+E={74P-9?e4d$P5a^~E+yaxJ&=qZu|*Te4Y_
z+Nq#fu@1RoGn4Zy<66MCc0uD+BNH8*G7T|qhK(KU!a=isOTEVcPe8E0&Y(3n2BNXq
zM%4rMPwiEof>B&d)%S4YT#Kj|$0O<!X2cS8IqysyEQX<$Y?efQw4~`pGa_mFq+gb%
zqjlw7(s!i>GGs=cye{C{8=?nvsh)^k)Jb;2y8tO-4+9aKpOq!LEWvtp8DIov0P(PS
ze?AJRpvwBCk2{9tE|W5?3ooh;4$jj8dK*!LQs=Ho2vuh@P^JAe4@PjIY34d!Ra*kv
z5a!oNAV=pZUJhtPcfo1s)_H5#iQE$rU?DSG4+>VLP~KvQ;;jz5%izK&PR&*jV3BjT
zI>;3`Rc|JW^C&oOW<p454U;M|im^MfRE$R{wZYP$$vRLHq%9>$|06P#&^2GG7~44;
znOs**lnP+f$s%ynfhPVwLx4NqCfd0uGmP(q1HD1SWwd}Mi(beiU&UYL9_hJx-mBcv
zRg^e6YXW-6pKsu$8D7_y5u>b@Pm6TwI}WmdgPi(sfM08IkLd4oL_f<1UBT+vPA+-(
zH<00yfs-x(84<pOBV&;Hrx?1GmDk=09{WZ!d0zxz=gRQ`HOEYI&~;d)0px3@+1W!)
z0MV_|Oust%&3t%c-Cfur$l1Wd9z6#)S%^FF6GU9Uo1$cv5d-g8h^g)bie72tjnk=^
z;-oVUqFd~t3cy^ZEgbMk<vQqGgf0g5xtkf-e`nM}6ZTOrK+sbnkmw@EsAHX6O#yXR
zI$R;Zz8VDMQ}yb?xXV{5kY|@FAkPq?tqzy|Mhg$1(#+0556UTH^YCV{8N&KmM^27M
z`p`sg!c_ngwV}GaM-n3^hP>Nv`KKm`9h-=NCM5hSy<$Ycq@}M_3O6ffL_x=b&C(pd
zBKl47<}lo>xAPM+#$<`<n;m$i$e5PPc;*9m*?YpFRpsK~fs-8u)VNrGL!`L~_Qa<%
z@{rcJOv-94{Wd<{T3x>JJ>VicY4nJ}MIc)52iR-kThOrJD;#z=akInYC!gG1C(sOs
zJH^+U*7pbJRmYXbBk%kH;c@lh>ruL^_yHJ`KPWy&42SOyfpHJiC!C6xd|v;(wEQ&`
z7iMr}8|-m(lUK{uQ^fF3G^g8bq6X4;vllaBpp|>O>T+CmNkK1gw-~aSis77?fr0-|
z82sB!U0SIw2kc#*5o5T^LF)39!M~recR|JC=73(?2hx*^9I(X>5_EdKPBtj<eFGo;
z?(sUOjP2Ucqt_NGCOtgYk_?G>)#gU~{HB9mze3|~uS@aiPI09H-PBx9hWqPVg#QLP
zbMk1??!G?g^+<u|QcKzKTG68+<-DiI=fjVC(_^Ey@h%sK88uqdDk}~X!V3*q9R_B(
z8=Y-cneCP_w?$p~qr9Q>Z5xVC&LV_c_>{VH;zrXW8a-x+E!gPE$VL+)8a;tBsC9k?
z)?oy!bFkfMt!ODF*V-W9<LpESR$vyjL?FBq5WJzAcJ*oQ0t9tsOEw~k<qcVKUE0ze
zJ}V)HmU`X#^~Tfk7|KRz8W1lr3<GiaF@JkOc-vRnPUF+?<2C9uWT~G2m%Q(eld4D_
zpSR6>%)+j~E(Ve!k`!3cyYmiqP|wrzZczy;4naLd#`}JMiUI>jnt@qz+$9UUvt$I9
zoQEKpB_qlJl3|e~C`-=2s_O3d-n^Z#27dqi?sFg9>DQsUs=B(my1MG%cr!Ju4~Mse
zT&V_;9$EPYJ(im2A#Ufs(dj{}e${*SpfFd?sH~)>qUMtL7xjI1)P{SF-|NS$<ZNqc
z?nJP)k=U5)ffiqxc8)!zc!rHFjbh&e+^fr_=H_U1h1%8g8D2LpX1}c0GZZzUBy2mZ
zj%GH0uQxZ|tXcy%^M_?HSRXOix*`D9SJYiwgbDW(b=MT3-~OWR>LT<zK-B%lTsKT$
zYB9ZmqWY?$RUag(uPj1!g$;W~38bZ|kFpVif$1ywkZ*>az>s_|fr`*2L+#FX+0eCT
z5ik=mUGRN-8U?S`V<wpsej6#k#XV*3XDrv0?B*NLFinelB1!(I0P`Z6lK|N(qx;7(
z6i#hI*S}dvktwu1zwk_C3t$B>d_#e&;6wH(0{uV!p~KV~gVaQOO%|U~&-kABC-npN
z1WvY<A1k0sOX&;{4GH@4+tw(&>g5tQTw*nBHKRFfh>kSPo{#_XOQl4%xUy0Y4iX%Y
z)|lchk-g0UMS#j=unq?L>oEs@|F@ri1{Lj>EYL4Fj@qyZC@)I0qvLT`1C-J4HvHn{
z?|JZLVwQsM6o&&zUmPT+PAI9)zO&i!UHLq(G1`CFAtLryC^-NpD<25L$&Rk*2Er=!
zsY7^vL3xiX_2DCprIIDGP-H)yhM!lok9z`Yu&eLk&G8_RULpbg*!N6Y8Pv~zJQq}p
zGVG|wIXE@-MH+k-5Lliodt2&Xe;mD^DE;U|tTT`3al%#rL*027hw5F$un5uRm0=dj
zc{d}%MZzn*!oe#138bFLz?4p)e@l@~;CfXh&!v`XQwK{E9XN0cnTo8MBJyoqkwt@`
zh-ceK3jW4C8@F1SFi@QNo`9DBzzZH%W7^ZMx56nrr?Fm7Py#WoKeSTxG#h=M;G5qq
zs`zJEnNK+NidRe(`-_U#TcLTUI><rl5#Kf^cZ{5h<7TT+K?iubS4A<vFv&}hCY6=J
zsV@+j_s7}YL}s>#NVly@IAh-4Rxx67PI*EP$ytbMt6K=Ft*!<NP^o1G(H2PxZPkf3
zOBQ`+5REK&8NZQo3qmQk1u6HUTKq#b`3=JJd`Y>@Cd$n<5oEg{$O0k=P;T23kyE3v
zU+lS(Bpcrh#XEY1JfRpsnQbl(abKGEgu<!uODm*C<`dzlF+3JE&KT4v3w$t5;mHVn
z`=#%6Wp-p5>PD8hgiiGxHV7*LOHM<X_Ljzf^UQ%C%f@@cHO_#>qj=+Uvhk=wjb#Ez
zUq}MTN|Yy_{?$r5)heu1E?y3*tesmMkxVX-fRmlg1#ir&j%f-XGZ<;T{Ia6D!W|o+
zaJekpP+hVTS%sWIJxO7n&P;hlVy4wCjU0t5tC~_2;$J*b<+7H-DSbs%BTFIIgx9om
z@LUexR8_?F-tv|PqphvV8EsWd!I5jK8XURQRB?l-xV)v{$n{l;Ba@?N>sisV5I?T0
z%K0(S(#(%d;duFlgA({*27;=J+=bo-{n;6^1z~Xplshctfc_&bk%K2yRl>$iY#D=v
zZ&uY=xQtd7dd}wAJ^{5(EB6Q|NZ105m0kt-zA9xPu0j`CDr=u6%oR5+^?cRRxZ@}C
zvdTKTF)B7O+z(E{LDOo$o?dEZ1H?x{3bLa7GOvcga2sV|poUT?z0+^xxUDS=j+<XC
zEXS>HA&gz~s#!U1TMNN)3#&<v+t|Wjq$SljBW-RWIBsz@gX7kjDh5QwjV%PnEvr@(
zj@#6t(55uM8t1qTmQS=Pv91|h`53GU<%9W%i|$noCkLmrh{Qy%ifyYJH)Ms|m4-OQ
zu5_t}Wmob^GTyBrccq)}h@!qV|Cn8=XN!<s=}tAvu5_=tpvY|#MeZ~=DAKb!r$|pp
zk$cr5?MjJkYgf=}dDyx2^h|MWSJZf6!lO02izE6vN=r7NdN@RnYaR*Fuki}UK*GKe
z0nzF22t?nhX+iY$W&*4IpOlFHMHXc|`Ntsosxt)9{c2bceZ?sd-M5B;=u1um(F1F6
zL|=6ZL=UJD8PRLH=!o8d55L&bE&|a9bVM&8MDGZT=snIzh;GO$fFM#|kAUb^%><&?
zK50Sp0*Te_I-<XpMSK1rM9&LF^foJ^=SoCxH6ePo3DG+RqUT9O?}&(K(6eR~)Ag)D
zZ<$1iDl=?7uCXz-^^`?`i7h>XoB%)I)Y<eW!x7;2+mQ(HFJ9pupero`0ZzUt2r$03
zg#bUiDL0bZk^sA9(d^oP3<37N9YTPqPgw}C_iaIdDNh*$*z>kQfUln71laesAi(se
zB6IrWPCBRmL@^A;brPIDp}6Gq3n)n0h#KJ#oe`1KMcm|bHT1B_g%Ew?ZGq^1PgxLs
z;cbD{;ZI3K|0s*bJ@v;R`lok75S>}mg6MPa2t;SpG!T8}9RtxLYjQ;Y^o~IEh?<cR
zz2plW(fcSy*6c3?qEG6Go<WG-7Z%Z5--#ho=GKfXQWi=?Z?htLhQ#V#9nlkI(UCt0
z(bGc_9ke2Pnnd&-6QZY>5WQa@db&jPz9@(;=&U0;n?j$Q=`0XE(=HL6k9q*ht{D!|
zeIp|J-@L+=ngZux5dHI80@0bZEQrp3OJFstmPGVHSu~~AAA{)Q%|Z}8{z(g>k2MpB
z9`~ey=p)SxMEjrQh(6v-AUgZW$cUb0Ao@5VdWuB!x2i<+N;Cto_0_^5`bb1=M3|7W
zsz){<<w<R1sZ|?UDRsPcH6@}K$)c@)klMGrc?hD{R<|HJAl1G#)lEk~liIgIsC~<u
z%cEcQ$cXN1sC@%S8@VI3k)L&r&LNII9+somG>e4jG+rU_q|gAvAbO_c=%AIOb0qs7
z(>Z#KEIRWCaddVlM<2Cvbe81kBPNa>XX5A+f}^t~M<0*E(Wi~ga5`;<N91O>s)R)J
zE|iXJ-c#WaUGP?n)9`>=k<DudnhHcutz$v-uBHO3bL&V%=gFd_b^aJc?|3T&(Q|59
z5WW2^f#}(_3`B2z%Ruz}S{%_k-V%tOS1U52zwD?Z`YMI8$>=B$onBHRdJrM{YFI?i
ziiqe2yuyxJB8_kuM30t;K5IqvAc@s0I-=8M(VagC(E~yeec6iW{u0rbOo;AlLi9C(
z=m8SZSEC^Md$*40<rI}+t6LyCPe=4dT(oR?t#F7w{bnRYizLk>YFlzNn-KkN6M^VC
zDHcR;Y$7czDH74EWYOA`KL*k3-wZ+Yvf36zuX|G<dTDI~(QDo`5WS){NA&tP1)`VN
zj*RGG2BLdXyso|y(L)jl(PZ;_O$$;^-w*@a6+A((!L`F0*v7;nKz<Yg^pphX`Ly+(
z<w|3Dsq(a>z<F6T;^{wz0+*VGP+(vk?&EQ_DdIDkW!7<ur!`He{O6`VZvPrk#~{cr
zO$~w!sly3!si~mcU{l5OrivM&;xA1F<%ZQMLKgIbriH9r2kMBIk(N*5>Lv9>taLPi
zj9f(E*MY!|tpuJ(1U?#`!0VbuBCtpajuQT*2n5b;EC~F4Ap%d7)I6dS_)A%I>JK7t
zPAGv73j$9P1U_jY@OVk!LngXqndo**&@D$2_^7Gkm!^vOqGFaL@QI=j*l(gDzGcyT
z;<je;Q{uK}6qyu$3TskW649g}{NUF=rMtlwBGd$FQaEZgDU6c#gLAq`VTdfc^aq&~
zMueIa&RR_h!=*{#jLD>sVKOP47bb-f(xmWH6qCYXV{@NJoBJNQxi3o0mkXt#7NAs3
z)+>mHn$ucdo=wMWGuE^<Xd)76YtYp`h;jB(HN;^$cNC(mm^79BP0SbTm@+6u_g*~S
z#9#`-&Zv}JdIFn-3^5tEe_-rz46&g}3?*c7imrqd_3mR$6BDJXz?PFD?miv?AiK(&
zk5zgt5$<_ain#iCP*vMu5+wkAS|h<lKh#xRARFE>cy7G>bh55->oHswUZ@-Cnytuu
z_gGo|>SBBoE)346pfLEtr6xDU|2l<l-l!%9mz_@GTsF3eV8>G_20IQnRXisuj%p&<
z@ob9u8iO8phFSlkn-mi8CsH^UjBFB4z}J5PT}3WtQEXi{^n}NcVfij)QSQ;fCp`IT
zjrwYL_AU9gFY!9z@6F^hw#e%ohJY?A71UT+;u$y{G;$)<>~xQn#M%p999UQ9#aoRG
z-y*ka4-n$|JdMs}c6O_=)5U?#K&KfNKxxi4JsplU4>pRispQlR-Bi@aSuO?&WAt<f
zDA|kKb?52{gYc&DuNs?Jm$%^IY;^gy{B<GUHav@=7|k2e+}8zP?RwT=w&}8P|FeJ8
zoo;TU5Fz(%UA`I3X~g;Oa9!lT4wxY*k>9sXY9zL!U3IPZZL_FRarRwZr?_sL-pF9T
zU|sP_sFAc=)iv3zOcnQwiqjhjXOVq%4QG*wriuqe#VIr{#)GCFW8KS5ZB&S%zZVWw
zlN(tXdO>AnXlg3GpPN$3$vz3N)&cH$gtrHc-8xIMWlyJZj$PZ>DL`Za<TK%`)wmFs
zKFB5sE<FrfO167)1c$LMJ&i9b*hp`Hb#h}+hD0{0T@ZGM57;l1Bxp3On-ADoS~nwM
z-PlvwaHp<%>=wCE4ff*p(VY!aDDY)3ub<tqIa1Zq?BsZb{JMsp@F=N&XI(RdXI6&#
zC^~pycnDazEDJvKCKcG}@w9k{o$z3yqV8-c{k-nMwcDSP<X-hShl#WW!S@5Yj<Bz;
zetq6dv*Y7(xk>SS=mSk_SGDt{N}@E8ZU5Y#%5Hfa<dc;FNV+!*A06>Ac-kN*qPvY`
zV2Zx+5EQ3y9L^OUK#Sg`$LaAF39_k*E<skkYgTcPIv6=z1PzC(S)!-S)RQLqA5=v#
zC8HCGao;sPgva2y#vnhxYo2N#SB>XaH6SC=ffnb*_Py`m0pVs<b`B+3*gr8y*h_A%
zmiZbKnUiXncQCRPvG@nX;_qn~Ur2G$)-7Dt-i+!PsQn}_iB{B+mqZ+|o0|G1NDd1~
z(<>`427%g6l;&py4}o+KrqZ({knc`>N<8R<2P2x7cH*O4gFEtvsWk>W_#i*L@8mPb
zK3^I-OtMW-^YNIBe0&;yuW9&~hS1%w-Hegq+AKl^U?n*x6d`V`J)LokTzD%gMiz=B
z5P*{1we)*4X#cavU$oIgVl9e08vAL*wT|?bg59?9|6cRZe?t;$jV&P`>s{!Go)kQ0
z;xPP&B4zI{QAE&!SbKzE!x_;K!NdP+>~Iw&r0ck+lcO`-(RYiA-lJ8_=v~Hs9eRuS
ziY%vVZ1n!3>Te;thC}b=xWN4YZA=di(j5WX)i9u4kCUJc?GX;N<;64Z2WY##hz;5|
z#U*H)z6b}}RqeijHmXZ(g5K1F%?|Do4zzjq2eco$#Kzhp9kg%5f;L^fFQDajjSbq@
z`Z72Wb{U)~d0#;L${icDQza#6Iqq<v`R@;C=iRY+ZITXJept{3#@`pvdUcKs+R%6j
z+VxK1K-*xyFQ9Gg9Gjq<?Gm(=ox_2)^ZsCMMW@)HeWzn>K_RS3{RFfYp%5Oft^5Y9
zY+rP(%(O|Kt{tkDjepZmx{(gR<hmgM#Qi0iLy)6GkQV}hc*-!mu@e0?5sbaKt_Vm`
zOn)a7^6*!r*qmDzpJP0e$N}8bNB}k@#piZvEb|K`A|*d0{JgK>qY*{z@@ptLChET4
zg>$_w(1w}?8acB^Q5}B=RI8%0K8NaCo%I))SzodiK5G&f98~MRpl)Wz*g&4tHO`40
zEvOqFe_v2{qf=~xj@FmvFP$t<O)Gg{pgI|K2jEc6)OUb`ZVOa*wfh3qkf=Hkhsvj`
zXT7^vpjub_zCe{1RcYi<ZPKCo<_il{d+!flEsQGiIaCL9zWUnASIh1X1$ReP6**KZ
zbyab*m4b8B`vTR$s9GY2YJo0Pzq1O}+i~{=s$o&jNgS%4OhVPShXtyI7O3P2_IE(E
zw@3K(CxBU^AKG?Uf$4vL_MP-EVhe=9`o43svjwUjirJkUtd3lZX~1=elhJjEc`c*p
z5Pq&hjHzbUAr7|)r{;hTky(xF5ZHUV*AL?+b4Y|XV^5C`%CuIoL77z549a&cBd9Z3
zRSi(?7LRO{_#Nb$5cSBz$@R0otBkSkDp@7&3lseu)e^;_nxN|iKU(#Ip$`bCW~pU*
z0p<2a*MtS(?lg%_xUDH>!p&?FfrmDv2*Oc#WwwLR7C99!M#}SKq~bJF|E|8zj>VyU
zGP?)9Ii?P>;&^6Kk@fNw(d<>;OPb!xdC`md0n4Ve&8K>xMgB|b?_>|>unaapams-{
zXNyYXhs~eq1N~B5ra)~dI(?mw(O4hj%Pu;kAG7nAy%`j1|1jt{NagikQa@w<Vpx8(
zo8Ix)#bf4HJ#2LR9{Y+q4t}9`(7S}}AVOH2MAoOX-obxZuM*h7osN13-|5+1Ul1++
z&O3Nn?_hC9y@Qr)7p29S?KVv<HC1)7apV*9QwRT0vU(*%F@^t*6|l2I>=m#&L9T#}
z9ry}Bh=wKFE8iE8ZncjsDn=$skP6y!kXV1ko+7dLF}pz68;jWEWErhWvPe$&Hz&($
zI#~+3>11imMyg1bvt4z%&S0{G2#ZUMqjAp*s3$+9@p`Z818p%F=p(iw9tT?6Ngrsa
z&Oi-Bix+qYFX<iJG8m{i8$=9r$sM{j+OQRg)Ny;g<AXX1A};J%1`0l4`w0b84HPW0
z%MRpXXvjNwL+{}GFZ2%DU<yqr+SWOgwWla-3#GVQ(N3q%NiC*4nB3JQ4^C*<^Y|`0
zXcP4gBt75Y9W>E9IBj(BU*@L{jv5_oE)j#gn5)wyJ2%q0UuvxTn>unNI$z@*G}1d5
zW+2DKt`Tzjg&+qzo<=Ez_jMN?7ZXz}hVS)pAz(snSbkeXGJxV*Lvat6DI;~!o^jdi
zzyrtZ{!j5sx=WVw0Z-|dbhqCQc}>-nI}==fQgJ#3C?YJEgC@L;DPqDeiW$DdC;W;&
z;Y_za;a2PlCEpy-!7mUtIU%N?Jn1$G%8AtekZ50wr4z*jI=)w;qvPnCq0`Q)&Czkh
zQl4E~N5|<m!=a;p?ZW6l0B(7r190}O(1C{6;sBhnl#i&T15of*H~{WG6&`@G-J%1q
zw|VG5Q>*hpZ9z-<wCXwlN1BHNAhWswz;xAs;NhslPqoZ*Z!JFj6ifL&WB#+k&VOAk
z93Ce8V~^+)Ue+wM=XFo=5tmxZ*FUL`xTaaS5$Bjzz?80X!XQ0*D5>lUXhEN`xs*FL
z*v$!l&m^7X`)*FTfVoa0$h0a3nRd1cg>KdpoKJRG%4a{JL%p|EIH<pTB0Qh0^hO6@
z%)6ljovgyqHri7Dqj9^RV{##|SLV($`>VLD!}C<wbbG5thhg12p<^wpDS`@G$^$ix
zkb>`oL&DUWVUU2jrDE)pd9+V1YEO9v&I#j3B*?ZqLm`+`gG08>Qa-na4%r@OILOA=
zutElk4j1qyNl$`uX7QMUc4j*vC|>|Ud$<%`C_IrL#Y+Am9V>s6e%7a5WL2?mX{ndp
z{fzLr%x+JKiqN~3)p)li=l467@_PoU`-Ua;*_uKwY>u%N%(3i%+n?ejoNX!JVeE`c
z!tRXAo)RMtiLs`$T7>p|v>Kn|cuV=QYWj#%T7(;MTeYz4e5ETX@c&@Hkc(1VwwOZd
z?&|IzI*eFhZgFQ+0Q+0G_i_ymU_VRw6@#lY!gBS|8UiK1#MlmpTXvnZ)%l2-mhyAP
zZZt0JZWJ`_MhoH%oXq-MVd;uPN6BhJ$wrP6u7CuJ$xy)&Rlc3wGg3h(n@^25ck^?<
zq!Y!0k!?r6V`WY0&Q})hDSSPh(qmTVz}~{kj^X}7e`R;045S3pjD#2qZJ0&VIbWNz
z{ZLE!1w#WGW6^+IE-u=`s6h0C2UivQ%+*dxB%9W6K~X7=qW1){*!=D$>4X2gB+&B{
zljs@V-LIqPPJ%rxDteYT4MoG6I-DT`mh!cAbo8ui8WugX>L7aFMr;7n%<mvP`Rc#G
zhABbLk1wgIY(44u0nqbliC!obeTi;q6bi@ux}1EQE#(Ug-{9S*>q~o*gF`p1u0gzw
zZezXd?&d%lqLyM`5wmaamI6S2Lwe1oZl+apHBqjbh{w|r9fWzPIlG1jbvC5E6aKzL
z8|}dMBp}8_vz`48>%rxA^qX<JMt#8);~$Xg=v+Iwjz&Eo8Rc|4iIJ;`CRHuJV{{pI
zxMe8n{Z%>39I}+>RMkoHV@oqhc!cQTRTWC5n%muBl31^@x%B!jh>ya8EFtvUI(pQ*
zu1mOYeTjZOdxZPepW+DI{UY4AEPB6swo|xo$LQPCPC@|gEEZi$I%C<`Mu-jXw55Ec
zvEf~8Va5z0re8IlV|GcmP+;y-Ae;VO!vVUTCb+E71mV+4vQ*}U#mjJ71D898`*x0A
zq>RTGDJ&r<7Rg4kFU@P8QXf{yEn@OP?fpYCoIY#wY1I5^$8cTmrD5lU9d;Sba(mcW
zULn@Vl&pc7T?w9(9r$++-D+Vw^gR%rT8o;5Qe{&Lr`AGCd7kkEW@QtL=p%wHNO2Ou
z(%U0Q#|el`0n#|a(NFFDLxZfOL%#OOBwoGJT}~2;p>!)zDu9&AaEf9qA3?;u^o6N5
z7Jo%uAGUP;Jq-`ycW4lR*-RFvMeR5+Lr_g+*FNKs!uPx%)bcbZ<~AwCeyA#?->d8b
zNx!kM^S;VX)2VJWoaz9XESoww{uv)?BK<n?nV$_cB>b!F5=r<$XvrzXb|eNR!@SBS
z5j6Sju;VNWPk*eP6Z^eY4Ac7fx;b8gZg0?#eY)xKUxU&uy9^7aprHM(ovS|9oJoCr
z*Un$K;@qlO@kTce=|Gy%ZItJFRh+s;dEtxtk56-uV{$V4wo1NJc%{#Iw@58Bc*B8J
z1G3@Omf}+`eYsaP!^!8-3qNQ)8eKB;*M%0s_lXsBh`bYo=nEf5(HFS$(+OQ)7%%h%
z{3k<>G%GGfmUp@F9Eo&8%7>Yw-;f4FZb-#22Z{xYHq0!Oj>vmHtm}whbrT3;`*a;~
zn$QtLCUvt^5hpb?>{*YGai^3Vx8LXfknZ~@7P0&E4zZon2J5E&o9zw6>0|9LQN*$4
zNA&^XV;$1(`eqdNIu`>jN+{xhd!t^h@Bx?VS1UU@gqhsX2Z}h>9gEh(dmpZAJ(t@_
z&KRs~Jr~<KLk8<*FXCW>qF%l8VS4LV@4iB=()f=PMB)@J;ARVZ1l%q*qlDAV_Q0QP
zeHZv=zKVr&;#_Vv7z?j@;GeVjWm7Tya<Qum{_S4^zK_T6+1=rv3!Ypk%qi(gak6b+
zK*9bv_-9`?_-CLJP&>e(^mDgJl3>b@U?hl#8XsY{r;7F@l{qLQnH`^_4f`0M%@v3U
z%JW>NS1wRzYdL4Kn!qR}62GoJ@u9-Qy)%|wi8ne%Mbt!LlPck-4c+Xy6j9lh!IDMS
zZTR~xwza$-;dy!+C1kig<$3yf`CJwAVxC^8hxJc$QuNg^TSfF$Q_8Z#My(8o`liMv
zVx?vpW@k9EP@$w{leT&?Wc}}r`cBo!zTQfC9QG{40IzRr{5OXFOlBoql<>?Sn()k;
zEfa%mvW`CfPVCZ0CM-U!u>lp*s7k!TI;V+DnEYYg<&XFiTsF9ZB2#2S#RUHR?Z=Ny
z*&m9tlZQOAwJ^JXB%aJwV#6yK>CjFY#iOVg^AC)eq|jUELmoFzqFI>@nN*ZK0((Us
z0YJjJLmow5+n@O;^j^O*ENB``zhRISs7E({eU-uKJgI_($fHBZ2Q)q-X`H~u2=bjZ
zk#De>e9hP;PQD>TJ|O-jgZNP9BH%A$nP~0{rT!h>Jbj^(N7TO~sZX@k$sQ?5>co#k
zEK{J|PlyB7#ZUAb|B;U~z<~;BdfHP?_(_uRCo3qdODI!J_((+esSrx;u?Ai9P2?VB
z6rZY4gfyvR3RCWA2<1l03W=O@i9kGuYEKJr;$5!5tKDdATD&#b;EFtD#^u&&yk2@m
zN62E%K!89g1O%q(5Xmvmw~ov$*%kRw^%Y>xe`)5o@Yp#$2K(L?EQYD_wzcM{TU1d#
z1E#!XHhScH;lmiQ`G!=|WAhbC+_(2XBIoLi$CNy^OcqbMn!-o@kHWt#e9Xw&w_X;m
zcueN()1&6{q<ua;->R=j`Bt}lC<u*~kV;%cZ2u5%Bx-;LP|3;j^5Lt@cnqZbAS;oE
zf61rin@r6Yi{@KCME$cqZ2Xms#C+>b6_-^~UZ_V^H+`7GM_NiFX%E&D{jT}Y#0SvT
za^97mw$B$XZQsTZLz%F+oRS#c6!(&CwJC)kIv$p(n3n?49>7hm1m$;eBR}uRQQVYm
zz6^=5S=2_Pt#Nbl);lCk3Z<=?d6d$mr1RHwCMamP+gZu)q^mDqJ=P@!U*x7zX1roN
z*U3-DCWv8x#9YpODBYnP{KF{m;f($vf}a%BJu2#+E<)X7qVB08)IDBF3CWaw!raFC
zdI6f0WG5=&q1n!|KXi&j6+epcju&CPQz3dnls5_(U`f<H8Vx3uf|V4bOdv3EBNGVn
z!@+L3Jb1|s7iu>B%Y_RFFy0j-Ai&XbdO&~#ja^(MLd|Dv@hChzz=cJoEu;y{+(KK(
z&x>#edPC#Cn`p?medj4IYJ6*l5vTsgxnbkfzrlL%q)_v>=VC_<HU1kTfRy<!^f63E
z%=nj6Et3Zl(IF(_$CdyqS6hn!1OqE#O!;1^di;TNtwpGTQ56YaB{BZMQCT>lqKH2b
zSCz+D0S%}m#{SpruCM_JE=3GLaH5S7;(J_qg(rsou}vD^62B~O1R2m;wu6nXBmA|T
zS{@XtBDS1ZUTN_!YI>v%3ZN$dMrx{+tq+Zw3-zY&WKwT#9`vMPybn}wdQRr*jSvDI
z4K0UK911nZUL`~jfN%y~;rc;C(IH?$g9>Dq=S=!Tn-HGlDJFqk4pu6Hx=d+TR(VB|
z8z0Xt&kD-ntnCfu?Lu)a?wMqZKd5oLP+Ysj?}uG6R^j8I)RZ%OU0%1$3WVmpa{8RF
z75>_@y#DoS$h1wawl~U=$0qBdkcnfc%btWE?I~!6v6GdARxSIcyqlXx*0iw~Xm&JC
zwPC?>BmwR+r%9lSImJC;O_(EO%b`MoHnJQ#Eb5+(E?cH)_R0V*^68^&9Oe$f1V(My
z4A>qx)GI&C$81D)7gWo||JVx(ikT7(Ir312oqbfOuo%k4Q$R|=7@^votq?{(S=Ks6
zxWu&;^>B%W^pi;+2>s;nqo|*JT?dCv<od~&4}>am=21gG872!aKKcjgC!<;$dc*08
zB6dw{p`V<p7)w7HZfbr`G#}Mk=qG0@8v4mFQ^gAvrG7HJwa`z_R}9rp2AlO%=<1h>
z5%d#I+*7Sxg|{2Nv_bY{R+4!)dF_G^bNK?Meeysh&iPY6^l`@LGVF9YCDM8h@qib`
zih?5Ad;r86WQA~t7~>9b%LT}53^y&JB>W`h5Xj1<6~$Ehwk{CqwNS1h@!6Jg<c{Gc
zesG5O$v`V>lMJZ^sjXP512v;2b_Z;P&*0bB9CcV%2iKAQ%bs^Qef$b)DgJ|fi!8HS
zC-Vi9Voy_FWw#Gf+Ns`?@fh~9#(!gomkMmaWW@ys;j0HdjyljS>*Y;Bi*LH(P~T^-
z+Wo@X`jsn}PX>^Fs9f|5u0F2N3xI3o_{BhPOZoM3PI*Wf;xb+1R3^jixpEmU%D6j!
zvYuq@f7s85XeODHa1(cF{P+LR_2CeYD-|T*9Duy1!Zz4IsVvXtd40q;TiX-}Q3)c5
z5_`Q5+q4s_%=Dm%{h-Iq@!poLRUBB}+J~d>jst{J!robGaxW;s>-sY4gP6CsHSu_u
ze6w>}OF2l<A<EMhp^u?{%C=H4n1vo6{JjnSF3*}%F4=76ko((tE=wcjGdoyGu?TZ}
zk{fdj!oEjR)<<W@VdWIOx%k;eQ(DVYi0${dX{w*GAfIX@Ux2_vZ~UL*py)yNsgGjd
zOzA-=85u|Q#tUr1=90okafn?9r?=bVPE{MQqrA^oeAJ~c6{hIt%`?3|V6CPB(0BVx
zrhKS3k?qv?o>$9wCGP<idlmCVLitC8@?W3b){Yk>y}Bzf=jj}negMp)?7$=?pjL3I
zkLIZr901VegPvRt2|(%t%EYsQ0IEh_66^|mMR0v09qx}Jn3NrjlW~qnj|blK;edHP
zFu~itNpMa|WH%3Z9F(^DGRGG1DPHY(eDwi?U&pzy?2gA5piME(7d4yikLF`yNsW!J
z#Mj$NOZk{e`g*%yI)jNsx&te@EqQbU_zxm!GDgKiB>50Y<=NCj9v6s?1AHpi3Qq+w
z=~tW$;OojBPWrf!WBrVWR@EKA`mbG7H}ypoq${^z1=wZST^o;Y1iD9_PYY^(5*{bY
z<+<|J|FHGUMM>JTz0N<Jqh#vvj}<cuMDPiE-zRXJr(+g{TfeA;o!2^)fLkka!p^mn
zZ>y*ic3JB}g#D%>-iMcBA0WE^<Z$L;wqs`=A#F-)x|VZNMPH>{Cz%DlM0zK}QRe`z
z=o%QjXz&zR3vJm~M?ENH_T^xjVb&9tcReWmx>$<vwqWzR=M`;_onB~<<?a<fiaoY6
zK>Tq)CP1FWd_`L1G^y(!D#oOiR1CnR%CL1de+qn?H~|)OKuk`dT-vnA$4pX?J*OP<
z<ioFn$l37i%ps4%M=b4hNKpF6y4jQ5QHHh8O;JZflW{L(7+IFhcL>R9eLc(ax0h^m
z?8OE{2YV^Ya=|5Az8gxYfd6)KOZ{vtKo!`OrgxL*0az)3w%Vmwr<oR#n0ckSj+3qB
z{jR!X<JNiljrQ46Xq_*wvCjFXWXr%sdDdjh$0mDuvfhaYZ9Lubk;&dPDw%xHh6$G+
z;6d<q@`^^r<tu)#o^ko$WUtUXYq1FjZRVWI$$EBRl)%1Y_>tZ9d);D@e5W@p$7b-R
zyw6>x54rq<k?Hs9QJcv^UpViwZk{Lml`qGupF4L?ww!+|YHX?)m#5fFW+0hfKor5z
zSfl?oX9-HO_&bySt|$nPW%2CHL7QKFfqg&8n}$b@ZGgDa8asyFmSH)Qy$(DC9!7lP
zv0GYlf%K^2In<UKR)UR2x8a7d%=|dX8|f7EcV1)EA)7c68NnJC7uaO5Mt%h|Yp%y{
zNS~@~$4({Jf!hD(A>J_YXtz)B3VX?dBR13-H%HYS4^HxiDv1*g*|^X<VEr=jkdYZa
zf08*Omz(y0kuVz<fbbB==(Q8P!VI$tp};#jG|nv5i}SFUhldPG>r4qdzP|)X6wW#`
zD?%(%?S*z)CczX40k{$@u0u9VL8P_#S6#D#C7<xZvH($NV8K+2M{E)7E75O}zJ%#W
zQ^N8|7B<D)0)P>|OH2wqgtgUzyvDXe;(gHja7INtNP;$s_>`Ir5;H0eA3)hG?pBk8
z@%7>%n;W~UhaB$09IqMJjPkse;8urg6LoZe{`UYyffQjz`y4hX*;9f>A>TN_b~a#=
z*IB@a$~kP~;^<M$56G9<hH>qMi+a6wVnnVNam|-uhkxf>Up|=xHLNzlzF+4M`)V57
z0}>-oP0VV5KqNTmq(32t_y@ioMR~%60bs0Nd>V_3o7t+2y)E?XBP6F#aNb(LQz^Qs
zktl-9@wlSCmWC%w#EO5SkYyS>a@fXC@DnF`5&MsUU^r~U;Jy4B)GgR=ywT*iYy#c5
zxXtPqZ^F;<V~wgOW!3S#>Ysr>%~eNDG&6MtIMg2oriQU!fAtw@78o8<r@F?@9=2s*
z55U^X4~MY!tjMelLPpCJybU6DC3Pz9*(QcDy&o35J<9sABL66OBsp1#-1s02;OB$-
zu!kfci?`#&8b#bJou+ozT&frC39PfIK#=ndgT?2;bVi=D6*e~e9T=)LIMU140~g33
zqhZmc!DbHUN$6>W0%RYpXdywF*G;g%4vTsr7Y3k(^quZig#1rdOTPm^G^YzwJ8H@H
z$Ek<eT?`A(4vmv?eix@KNaIp=dS}8Ve>r7WK<+>{f7jTheKsA*Yr?>?m|)?%98D-0
zuicYyp?d&Xy>L2{6`xv@wau*$f3dPDw0uF%`h=wT`lz5&HuWFFu$U`rXBDOPELnSe
zQEJbYwZ|2u_8eTvC4p3|j%I(_bjLF~YHM-%vOtbCswlM=%Gx7CYDdl?zeqM1QIzf%
z%i6<ZPF!IDsGO04;jvkN4~8qZcO>as230Xs??4qx1A(7@%!Y@IJAODht6JQj`3eU~
zbMGjL4`AC;8h%!IWj`u94N(Vv2$vKdhWcO=(6`@({RHd%2Ri6XYD`8EG;VSiBGo*X
zo2=G@ARyx+2!QOU3R(ujd8UB$*U(VZd1R`dD^1mjYz+cdfqip~A_^~t*`{J(?j1G<
zp5GUEc_`?tDPFRSfS4G2*yiW=6+$ZNQMpBhFHM`@Pf~V~ztmx|`CXalMf8lNNXKm4
zA)C0!2#M8F3lUx>+(pJL>U#3zShNNlOvS#9tBhS%9Rifl=`=k5zSE*ca9eI=Qrh@^
zMOR@D1>I9vbIB+w|KJymw6ye_Mmoan%<=k!y)I9)`^8;{Xv+WL5^1)SNYLo;A)5~s
z;sTgB>x(LT8(lppth(EAdrM>|4%n2xraqZkzX2R%D`Yr*9N;liyct>nZvD;Jr33UN
zqqPG~S&yPs>|Gxmi~pu3K9lipD5~zDNZxRu7vtoJbydiAr^efBlHH6i#7S}?`a>2X
ztT1b{o7~#wLV!MFcK{$C*$XEZON%*ZT#ckOY*&vBJBaP_)y8ZhbIF<Ro8Zk8c50AQ
zQn@NKOD)w47jk`Ew`J5aIqLhQt+WEZdS4^OTB?QVlg!YExl-nQ0gB2>>>iE?PiqhO
z)L9C~<@RAb?2FxT^}GnwV=MT|T846@JKIV>7J8laF#vwzGsGP8VRfYlXaB*6Y{Ei)
z8ClF3S0#zhWCba&N-l0|7javA84CWJ0mIcyMFZs7L(p|Awi=Wu7<J8IV4YU%n~7c|
z@6GN`iqE|D7{&?*@d~F+B6vL8h2V8(J#)Nh2kCi?0`jl+dwuY0H3xkG2YtH@2g3;c
zKJ{;GQyk6|A1WT^ObW+}SJ)a{@1@x{hw=FRlE#0(f>2jr>kkuvD-b~X<>bFo_;hDZ
z^y0ce#4<8NO+IYnhNwsn<MCgz>2`LhEm?euj~>)q@Z?4kB;jsQa*H5|$$&%l8XxlL
zP^QG>QJ+02ATo^4l`II`gYa<5lt)H>t_o2vF%9}*aYS5Z{j$y^Ti2TPLgJn>Z1G{6
z+m%5G)Ze6`Npoor&|BGBPEM~gRqev=C?w&19y-&EI*gWd^iar!!t2mATW@o*d1%1y
z$Y%4p-$LDq3fsu+X+G%gpU~U$Sn#(Lr??Y3*CUso4LGSZe)_hH;4vD%GYCM}4(htT
z`YxNV;GGY4?gs`ckZkpx!B($w)v7c*aRk}wWsU#l*FC3?*j#esQr}}I=pG`=gLe6R
zCBx|!51L*tAYA0DrADP@z_;^CE>7WpX$tRwS_ktk#YTGaX+hqe<dyf)PSf2k0Jay@
z`c@iSj<}C!8#oigFS~>PMC`%pg5`!8+*yJ8IQ!*i!$Rdyn`&%Wh8GjbhnTv445`!v
zc2TVK7Or`A>StR<0QZ$~SSA`AG#a2=<KzsodmZ}O#@!m}cQdoy%OA<^RUUOf&d#?`
z3Xrx9&=100tkkF626iEbj9s-f*6XM(O}AhbBQM0;ur+a;S#NApK{Gzx<R?eQ`eHNw
zg>!vDj$zFjc+_O(`q}hh$WdwLdV?!mumu9}c$9aD%}@vaVou?6QeWPlUhSZvt#m_B
z`<D2<xrmaD$HJSRoUk6CjvJ7WZh}bk9N<0or=Iza0rNbT<E5m{jOD-w*h!ppaGpCs
zO#j;>VrSf)V_wn>UCC@|=r~<gu_)kL26p%=JC2(ivE{)@u(Od80UzFD^HFmt%}&Cq
z5F3oK0>*os4Km!ox!X{pi>nS?ShIxuS7hCIcIF5P{rP?`AmKfBQsMUxJ75v$#`H35
zHZZr#uXZAd_{gu)Uui*)I>s$A&OD4>;`j2mEk8{3`s5=WVR6qoWQ*~r#UhkNY+f{(
zX+8w@O?K}HX*gZ;8o1R@SYxLXgv$S6B~Z3}%1Su#{-6r{RO^B4NyEvPaWqi7*QHaj
zhzBB67*uUwEv!*!_oWv(cJ}ouk79QOG5Cy+EhZ9o0)9%cC((*4m7;cH?O>H?Ifh~U
zxw6n(GS+KHb<i?<lJ<iHjn&T}-Y%|9B->nZJdyD~8glpCM5ui(S*^q-2DmpE>fG_9
zT;gNTWgfJwJj|U6?JRwxLVDN7YGT=Bx`9bd)7ay7lBmc42`;rvvgXv%P^<l`#zt@O
zpu>Zr(&GiUTA!2cakes`*nK|SA=YCROe0kZ)Zu{QEHV%cVgcbmAf5vi6-Ph=1C8!d
z>*0R_YA1waMF5}fA{-mA)<YbQoIf6pzrhJ-gUE;F;BcgJIJ!C!kmUh%I|n#6Vl7~o
z$I%Dx{WLOOJcz=WX=T-_<xuJ*(7(0I8V1LC?M;gxwEeA#Y3dXD$$M%0Lbu|p6BYGg
zR7|0dN1f`!>_a@8c1GS}@o8B82z`B+wM~;YA3oFo^H6YvxdcO1(}&6^Jk;q#1)meB
zk1)6Bo@(B1XX*!zR6QR^Q>*L!q!;ez3V>XW&Z4Yj8b1bU1i?(Yb08bD@-$zwKePuC
z<8;9B$C*q2;1w5a{+obg<$&FjHHQ{dw0scP4=8lT!hfMkS^gQm`Q<lDDQHVK*L#%Y
zWX+DpndKm~xi+7aT(m#SG*K&J3O+nshJG#nAPF)UqJail6U?KFUvJe&t@u~j##B*_
zf2b^Z$tR$Y<wgLt4gDAUeZ%<puK4&-xR39PkFH<+@jv3@$Kqpgtr3zU!|%hDGzY|r
zMlL@Mkf6Qb7YMT!Tsq_c9=Yi8hpz*RcLJ|7Az~d^SQD{MJo}g5z>Py7hr{`iAJ(Rt
z5VR+$75HZG96t>x$ud7dE{Z?=vm6!c|CFQ44yZ>T%ks-2+JfwPYE$0X@b5gao=YZm
zL>8@V?<hI7q{iO$;}MDmE|;8K4wZcngmLwf)E8h`?e-}Af53BJu!qS6`Q36Q7w<ie
zsQ`Z2vdIrg>-#VBJ<7w}$8*Sb>`-4PXu~a@p=xN6%1nk~l@$2$GL@^^NEB~rypR0Z
z9&yK$^{t|~>4N)K7exM6kK7ti5~3hf!U)36h8%RF983$9gFe0~U}OxTvh-QvQOu{`
zg<2kB^OqgE8x#6Ib)gLsofCRTXoW{R;HD9Yc#XXpMK`ThyBu$n5@tMdj00tD|0ad6
zeO~eZ5q7!n*>A*dT3GBlekXP(M8Phs!;ysDZvs%4u$vzhxk>+@A$M8~<USvv6(Sb|
z*eF8os(=#w^~fd9pGBxNaEY9!cJ=|T#$mjL2(smdE?d-+%#9vxJ!gfldEQ*JE4u&n
zjZpKHA+K<F))lqi!4WDSGb&ehJCSY!)+&4gCDCk<sl`=Ig5okEMO6wF+5Nc3tp38X
z#n@YL^mU4~5=;_<wjbwjXfM_TZB4(feF)j(*|*CT=kHz_PV>sZ4y=p9CD%kLjT_5{
zE%6{2rP#$hI!HAP3u{|C`52s??=W#TZV{#bpMxHcpy!!EZx9L1_W^V#2fcYA&|Cd#
ztfxf;Ju23*??Ipxgsy|aD<iZ-9i_0mOmAFG#qhAQxLDQGU91jW;6|WP_-s9syI9@3
zV6&&Wxl`4o%)(Ap-(4_Un%>k{Zl+hhfc^f0jogD~WqJd${^koNLz9y&&Ll(AmJ7nc
zihhSUSm}l)r`5sgzfdWOKm9!5_vRDrMjf+pcdB!Ka!i08h99#P$n(W%zu`wU@|ekw
zikn@|`04O1e6Se1Fxe}uOt{c9=$4HAGTG}6u{|B}8z!dgV<y|vLDPo`$1E;ZzJoDc
ztn5!4K2}#J8$MQt{gzwHiW>X!SfMMt=e1wsV|8V(&96Ss@}^54D;N4$o!?77RwKUR
zK2~S<M)9$NN-=z_3bMVh%SL_wHsH9eP)6Lf=L<VoWmui8oakh=a(Fl=tNr7plhyS6
zA~;!{&bGKxjXW+a=%=h-Mjf~5zNNopn=R<vOTYhdn@c)b?HDh;spjXKoUGRC#Vhi4
zC#y8w$qFNT{<?I}nxm!kvDz2{FKn8Nj~DW>${}t%_d^)Rlfq1iP9e<&Q$DJ(AyW;H
zs!iDzgDFgK{&Ar>Z7_d?KD(plgf&(l7ampbfo%Igvv^dE$&Tbvb@Dj(sQQ~0(W5He
zn7r;$B`%e395*gL220RT^qxB|E|o`Rd!532V8n@E<x#aGE38KqS`we<HD+OlFGldF
zS~5<0RBb+qR!93sW{;}eang0_`;#V*swsN$!IQd2RYr(2RW0~$ioQ058&yuI8`aD#
zGrOqlyAw8kVLvO2e5q7+1WK4YjU{j?J26Z8SnWPxOVhoerf2C6Q^6C$VG8;dzEyip
zm>j027*+Sns?)QiZ`D3?uM;iM9Xw&<(jWT3`+^D@JHYGnD}8@R{puP!d_woL+O+>y
zvpdMxdD9FhtI1h~Jx9c3C8(hS8b5|QS*aA8fJU@C3>Pb_e^nw|-`z({upZ;5m|U#j
zz#-hGM&jWk$){$b+tf(IZAvov*IBXL8=yZw$RFvs1bvP}V~d)tm;^fSET<@)%@mz+
zH<vuhX3o3e#>w$!;#7sX<r7zk*lFV}q}#;5qR8#dy((@WvN=J1mlqz9fR)mO73uSZ
zh~+}?_xXI?IAr*IEgxUl=Zl24YM>1y`mFI@hXeB(;U^CegdD#fV!aNamIHL$GDU!F
z=UQe1Al~Eb(pi)5`P*#pC{m3spT$N^HU9f;O_Y&xG-Q;aSe-d*Qmo!$qj~GIXKi_O
z0Z6~!(!>=PZ*s&uU^6y>H#tg8K$D~2&CE^cw$C4`gt3xtwbZ8w&8I%8pWGcM^`251
z8+KAG>x<*O0e<OsH^0!O-@S42(yx!Ke`}m@l<##?zwF~p_$XKOQOdD?CrxTsf$77*
zlObxCyz<Kncjb3^T;VIf^ppCP-`0cVh`eaB*NM~Jth<{xC)SHkRqeTI>C6;RmNm8z
zRY!T_S77cqKyw<3{Z`cVTY1B`V7$2D+mSCs$)0hR8@}l$ZNbnRzAwk~^$2JL4Gb0G
z;%xm1QZaOIw4n!Wb{8nj1qfG}9JLhsM}qiggLF0YAyT_9PWGk%uMUIyX`w!7iu6Hq
zInf90<m3<^v_K3~sCd^hl80$a<*nHHxD<Xx1QYvNh?j}ub@7tIr+io<W5W1Yk_T$f
zI4Nr9M6E4k_DosZUzEPTmbJ5sQakr#1gFR^Lt3X7a$Mv=OreLla=fu2Ev&ANKGmKk
zTFjFz#zbvlI7iNx4MrCQT?=IGQAO;2p=>a+DBUlTwMWFnufmo=<v@yy-~H?aX(8Pi
zGozn{KnJ;U-o|ydi0+Jj3SU2&+!<lz<1P41SQ@FdxjQ5Gd>J|ne(eISBA(rYQ)XDV
zLv!R^r|>!an1-I?FM`kEm&ZeV4i9FBVH7x+jX!Sq9Uh2KC+oQGc8ELlX;|UhA;D0T
ztcvoG6NaLET`D!Wj_*lDxmULIzH}IFhYRJVNQRqr<MCGBXAV>V8{UT+yE(bA6Jp5O
zmafCfb2qL;w&kczNqrJ1(3Vw10<=N=*BA;vD~n6}$vIwoWwRHgFM?0y?2}fXN{#Ir
z2VfQmUrHaGTlIE`j8ECAqvQqP^3`HrIL17gT5B_RZcJoOCxQXu_h>Qw$=0Otk$kyy
zF<waAg>et`tMP4(m)TA``H3g8?Ep(HeCb}hf%+MHIs?tFjnW7kpRqq@kRMws2kVUd
zT94I7AYXNEr0@0E^8#Caa?mA1L^GN$PdVJRvCML{6ozhzdy?zOt>EnQKB~cnU*oXs
zqWU$?JE8kE!g@K@!!5lT^Z3G=H96Fqv33I@EX<-h#j^ccVH<2dA9o}<Pu!$AcwEz-
zz=v?sS*Wm_IH&a4JT~6zqIucb=#@$u`Ux&X)!ojv?I#y2_>}^~Z{KeN$yo;mojuv>
zsJ}Udl)r=Mzd}2>n{{;H>rN;_gib>wU1NNt-Ot|IwzakGc8jgG?bfz!+t$=}yR~iG
zwr%S_&-;Fw4<~byE6F{-Id@L3^dkZPhFLMGRP<8FQfv?PFNDd4hQljc!uxBq=Mje+
zGkF?AO&G*1=M~q9aD>i>F8k`bJQtPw8oJxBTqY2@hb?9(bqYC*I_0m0%X^McvW9!3
z{{0>w<H?*spaR@HOFk4sO2l5*Lkt*rz=$5RUE$+^`!`y4(?`S635H0X3@b{k>3>wx
z+4?E;cajcgBJ0Ep@nn*2>Krh*+~wJjo?E%r4!%rvLc9wwkRxr=%P46{;M!Jcpy?JG
z{PBW)l|Fi;x?nV)T0aKfc1iLZk01pJ4VLO5B9myANd)IJuM|O*a??fn$sBfVx?)G(
z#&|dsNA^?3_7+ATW=-$2?jQ*GiQ@2~w4cHAGCw8hXN_!5@|E;zWCgc|zNvjzVt&9d
z>WynzL9nWI*ZZ~<xK~96JQz<ot%y|g-}HhD-9WTUZ+m!T-ndS;z&{j!h}BXa3QdZg
zWQ;JlLh(2pkF`qq=Xwo%P?{W%t@ViC!^CA}cjQ@#XLhnU{PuptaN%YM^s0-wXg-AT
z@xnP_R(>w;_yFU9CF2FnJU|=Tq`40nLr0q#x+#5#7dIxBe^KZI@SXl}QUFO4K$|YC
zT*)*)V1B*y(Qwg~4RMU?lF>(LvyXo^HTNrMvkHYe-?)1j;L|bo#DF68pfF$qE9~0}
zY$A?IV@}S@V*Jv(m&|)0<dv&2@syytWp98yC=RrhnoF6NM@23ig4b}!BMp@2%GQ1b
z$@Pv!NI!dYtXACGq&Z<gF!C}}Fg?lS9j>jG8@SU;9CKEQMX%CQl6Fa;U4Gcpa`V3)
zN7b>m^LY(1bprAKDZE$}l;|`Isc|@3;(wE~M*21mIe3%jXcx+OWmFr`E(uR^%<~pX
z5Oy#9-BFQ^Ex-KuF-~H5w|v9<D$#nhdz2AcKmc}<ETrRqgOnY!Wz>9czv)%h_3G+$
z?)awfeR0pVAisi;A<gwX>nli3DR{bh{4?~iFzRokC(#S5zc-TNHg)Dp)xSH1(oT{e
zXI(_rd_RG#K%@n`4z~?@|M+qZE?Y|m{9TvTs<q7~Gvrt2;H6Ox8$6ezpXKOs3x5`r
zqsTuduoOz>C{O2BSUEK2uUL_<CQ@4{KOqM1hr8ZJz~FkS_@dccIe`=WezVI$;TfBq
zojquXY`Aqay?GRkxapoIjBaPcY8jqdNkWz#k0lD;s+EXgc6BOsw;jgO-^vhNJD1yk
z>a<>&pC6qgtT%GfZ=c8grx;wEa{$@bSX6@jJ%Z)XMb>;1yHpvYZVLW%FYY<$sY&H<
zlzKKAN~%1#9u90enM@}Yh*`1jLK$V>4C^SWt*;-5R{w3y*gf`gm}KL4TlTnGQ)}ed
z>INIl=eziF{nqw6<rF$=+R)M8;#>^vicL1GVM8OAgUY)MeV)Qv0#6`lX{8@UC>BSA
zmQs^Al&{Iy3NIL<JF_!o%Q_tu-6OLyX-KuHADX+mzdhQgrxO*O=kh?gR1(p^esotq
z@W-FovlPU>5JR!lBS3X9IB;Yq?A;ulG$vZuFoh{|Dc3XQkC}x&t?Xg!p?wo>f#Y!T
zd;l*XngoxvlnhTU(8l;?r<^&M8PiY2tPxng0y*WO--?EK`N19R^EN9ps@fmHtkbTb
zYHpZa7xGhA>(?MZvmEUt=SAHE*xHQm>IKHfP}=ueXUx^V@04w^X)O}lg23~_61Xbw
z85jbZA+hDT#jy)x{b%a%9NcnprBROv)ydmaoBi8rv?fPo%RGT!Tx)dM`2F}XeS}uU
zUd(L%b@5v1yJ(rUTf{sDxZ>0}QL(V2ysZ8h|5TDdrQ)MCJy_`BCi6IE{`q@ctD!`n
zlE~YWIXWxy{3ur1?%SfrC^K$(TdP|`M9u8q*D^BbXP2dDVtgG_U8PoMxq@G{1XR!|
zYa;$&(?9k+xF6lXK5rB=9S^-bX48etVttw?%>(CTJlJKE;M#cE!eqv`dNIT88GJUG
zD@uR*kh#_S@VuXJmPcO!dvfTNO5_@+{G(xbuSzSxL&QfGvzD8=N(8^NZeLaSV~yEI
zjOd{ov+D0W*YHov3#fzCIvfyFkR&2vd5U%gLYF?wVfIAv)yBo6RPo!j;dK7(>aM{m
zFbqkY%(h`bWdAYu-;$xZ?k5K@ch6MP`^#F4(#zG&G@TVq+8uc;)ytFFtq84ZXO*bv
z`1OIZ*@RWp)z(EO74`g2e6@e3M?3vE0Q^&5lHJp9I)?6AeM7I8xD-=byB_%_Czw+}
z#@)&1RT}vg+t0&NJ|QWq8ky<@Ob@s%aPUji%{dz_G|V;_BIbn_a=Iy7m{)5O8aDXf
z(a@c4Z~3yZog<8JFbMl08Zu)T>@FvyoSu@=df^Fqu`((uhA*9goj9|hSj_UpS}X?H
zsUd=VEjKs1I<N#?1_QHL!}y;VI`&{LuNHZ;sv$W1dN|&{YQy?{7X_DYK%cj@;UeF;
zKjDyaT<M)&9-G4YiB7RBUm!aSmYg%f`cPOtVn1P#a@_fyUV7sty9;dp?H;l}BAm0c
zcgLM*y1htp3Wo|3;JgldV8lP|UxgHXp6UdL61i|Xy|CJ&gmybEqZz)WxDS4HqJK>>
zIlW}K@&|`>&nty<buc^RtY_y}zEqq_aaG}Ywcm^!&n1&Gw0>yT9?=WW#-3K5)Sk!|
z<g^24MfP^e7Tk|tfWKmS=J1)Pc%79ero(<8^Nzge+x0cA!C>XfcPE}hckJ_<2o1H9
zDIvCZgm=V4G9I$D>LtdF7Bw2R`Lagtnc(6zEQ}W<Lzh6Y*>#7bM5dd+oP_8im7FIe
zaTrT+_^IPDI5gg)L?=%MBYdH4RI(C*cAid9?DF~*tSO0v;^UZ%6r0t%WrQ3&`*Vf{
z5!`M4E<1HFF3v~d$H<Rv;`#tj8~}ecd+&<{C=rW0R>aoSfl!*c{R`5>u<xtSkM^W<
z(wZWz4?$lVX+{sz2@26BVN~a14j__z<>^+Cfpzh$;gm<R7)MBQWH_B}D$<VV6Ql7E
zcoB7J7Kgk`eFHhigL)Ul)27JPSAm@Iz23O9`y}aXPRIv<PgY@_wY>e_a5k_cB>Ic*
z@&1Sjd(6JC86?8EutjgF8?B+K1?@v=sY@+&3FIsu|6>_hQO{rZRFwZfkkkklG54&a
z{%$bQh4BRT7qL*Gsojm^9WWezzD~FRnu;=6$qjacBw!8SndE=i5jl?5FUNEY7%sUN
zA<cj|4-5)_^IZW>9=K1;GKGWo&bc3-mhMQ<B`waeHh)Iz?wHO#=*(2w5blXul>j}O
zV99&1jw03D3h}l{OKGo&cvQ_M_$}CGfPO6DT~h$OQ>6jF;KMe7?ppTb`LJZ$_t)Mo
zoulO@BHkWxR4CFpcR0bl3En3;oY-dL7cnF#{=g$%zTXP^-$g$=yjdZ96VO`hOmGOh
zTQ_%@NiXWN95xq_%I4|Wvjat=>D;~=xi+hwh;WsboIOpdt_M2F(GQv7ez*PCFin*^
zNDNFVrVQ?s(Xi=H+{pcKEg5{?Dp2t`3y<!*q#PtLo{9bBB+Bpl&rb7}w{r_CwsKRZ
z{v!+Hn74JXA{fLeKK|;N-F&Wd?vcphRuAGx#(jFE?)DdP8oxU%3m4nm-|rG8DIi8%
zj$b%m7ZD)0Z?`7@D)v;-igz9bvy5W=<|HsvpjHMf-FORD69+vLchCCWuJdnScm&Vm
zyrDHOF!X&}_~Ir6C(B04+Ggr*pk>Pb@exiFpr6w~kfrGC9vlC3XO(S9SB7i=8IiP_
zSCNwoDt@p$13uT!q&4;P%5=BM>m^@sP1(US-XfFq>1goV8nsFgasXB2`!{MIgTG9U
z+^M=SOwQLIIG^TEw^rNiK7RsarYww*O*|h<SPl5j-LrfLY-2Ivn#n?j5wJfm&MDv0
z^vh}5($?jj?kig};Lj-h^ZM;!*U3q*isN}TK{KxWyH|W5PN$09Gf9Oz;d1(Z^1{R;
z9h4$H2W%tE_yz11>CY*LU2IsFCJmu!r9iQ}<V-RGlpsA;K3F!-m+xxNty$Ecf1uSx
z<Q?BvjdR%eLcS&TTj02S(mXR<O%ycdo#t_qU;Zk}ZMD$^m#lHKRg+X$+d{sCk_(zH
z6By>m({(j(vZ|)v`L+71yVYuE*{%6q(=2sjh&b<;s292_f;+4>Q^KIm_1{)(!p+4i
zG5x9Pev4dP1?D-;{T0~Xu(x6Uf)0FM^S)S&s-hAV0lnDCVe30hI`xv_+<Nqq6PC2C
z0~gI4ZA)&>#-)nN*_Vjvw@LlC2h9=_)uw7ck5;~dfz#_PIl>WV<kpChlqEpU8YTO?
zwLk@<G^Imb;m)|ILyoY$QmZUih^rLuV9Ks@d#q7N?Z8Np<NGsxEiZNy(r6jvVzo%q
zq_scEk*dve78Mt|&4$=7&CUga#k@N)0LyuN&J8SFq5^QgURhWYaB{!&-#)o1*u482
z+Nd=68S?C5%?OXr-A<7>dgA3OtXkXIr<8O0$GdVoxE6-2er^sEUGGZC7NsidQnWj#
zh~>SY*V#a|gfu8yNVp2K6;A3m42d?SPH|evI79&8@_WCWz#ISezk?IjWwTL{i*hpz
z4Q=d{?cS5=ZpD5DFeYMN2-`zt8-`rh9`a_MnOf2EY<CbS2%2WyhTLy6EKvvN%&&Ci
zZE00irHP}Jx1<rtV<uW!J>qH@R;b>xH(AIgu><*9y3~twqehY}oJe|$you^ouG`Jk
zj);Coe)b3$)pncEP=5Nk714z-ONb>DU}VVq3}W^2lsyKAg&P($bf}f@GHN?*+7(g^
zj<tR1G(+6eR!eHdQ6}fN^PG>xQmf)iI*nms5f#d4vyGE<nlsWMu64@BzadVcr5*~m
zrIc9W*sq7I6MMp2)F3gb^&8rJL~e2O?I#p)^#0j~Wi20ZEJaFBW`N{(Z=cC^^)i^*
za<wYN92H7@6dLbIosktlSc?M9?kwXTkyO)C3r4=fBSLYwB!DBKoRPRlrSlD2oCxfq
zo%yG67+IMECzAI)sy$)4Iw)$8`_Px)v}`>;%ZgL0ptXNjNB)}6#SW!jI4FYqapUtt
z5IaChzQJv5&6j0-;EL9=(@FjCppJ%KR3(dUgDH~JC`->Yh36kc;lX#`4y98m)u$nL
z=@aIamjQSwK8eC*EeBmcCQ6fmf(kO0)O|QO%?M{3z|dGr?%}b^|JmP5?!pBr_%X&&
z<%kjEZZr!^Wn~HR2_3!KW$8SQzWNv4qzLPSp(a=@w(gGQJ-N5F-1S~z(P}2aT*}d;
zk4}k--oNp#<-@jxZdye$Y@g*PJiuv?Ct;UCOkOgh)8Iqf@h)vKB`(}|k1@}26}FRW
zwQ!)x21cOHfGrBZ+*^^H=U7~mCwFCHMW4I!?N_&X>AC;7^2DI12C-H8_VhdketTG@
z^R(e%fqEFZnm7HuJ@_w4s6OvWHW*3i08xiFM9FFbl)tkj2-w+%&ByT+Yo4K#vgs$6
z?wGPpi5U6f>OV-NOe7gz+AE2^rN{=^^h%4&Lv$i`3uC;m%9R)~ki4zR6QtL8G%7y&
zoPy<uEfwB_$X4>WLN(F`OQ1OjbMI0-T^>SW$<_m^Bkz!P|JE#rrk~yIdS#;;U~k}T
z{pGCx)%<&i7Q$=#^~*m%cY5O97Orb8O((2cYy;EFndCFp_=vrEAh*I33)g9mp7|tx
zt2-kt#r6|pqQfOGIn8sEdSGII-WQKGc0~i-M4&w`)%`)Gcfu4)Bh~%e8csBMMfEfx
zjW(Fc(MHXLLTV+E$_F({SI#k_6ftVEKDe~v&OTheytdihof*Dsz>CX*l=roa@$nT4
z*KV}Uld4SvFJx`Y)ez63#I@$#vP9t93+xfBiL;l4@7eab?<OqoE%^lDk(M{3ZM+!$
z*Zo#*?Hu9_x2E+zpgqG4%<oAs)UJ4Z>ty$n&G49EZEj(j0JO`e=t2@y0Ocl;hyvqr
zo5yQhAm!#W)SBwh&R(xnoB8V3c*s^iuiXPVn(A)HbHS+;u#+B0{wOKjtd$^&7`86x
z9Pt{Z^5Ru&6+nP~Y?zH0ZI~)3<T@RLb~GKG&tvxB(p3A8G|-tr{owG$5qnr{YyW0F
zoA?bog32BLL#NaEhU~x$R4)DcsI1HDOuFZ$+Drv1+V52-p+kq>u6y{2d^Gx<a4p!}
z;K%mC)&@rWub$AV2Q0G+S3Yx!<CIYA5Ip#5rW)SP<zvCFOX<WJs$+CI)+pU%KmF{}
z?zWvl=XGr3<qQv;W{Isj8-g07=VF=cwR<8M)u`wrDQLcoZOvV33)h~gms^{7o06k}
zm7Ih924cj3G+OM&Rg{R#>D6Ui%CnkAm3)V!%PesO3=f{oREX+X$DmGaF4dx^0viE+
zEO1+^bz*gx967q#lqr*1Cx)|sVpqn4?tW2x0!u5lao5Oj#;Xf>a|Or0bZr&JMS5}!
zb@PjwYQbWsqyJQo7b@LTF^_OFk4(u9Y0=dBGv-x64^RFC*ou@q7a+w8yv7{;bnG=;
z!!(y0I%iZxH)f5ecj7&@S_WvNgsr!T<;)&if$02UhwCv2AKt&DVierYH?~n=CQ3i@
zI)lRv!4P9LF4maaF|5Zxt5lycO0JOrn5HnJmuDOAY#Wi%YXJP&)crmbA!AyzM)ldU
zFB@q!g2YP^*xBmp1O%l~|KUh<{d+yhY(lf$BpL|sfJYNjwX}&$M!S7RXeJ)7ndLOL
zHGOvr^up+S+w#te@lFk2;=(gdpiD6Owm%}5dw<$J=a~9R{DsC@E2vmZ$D8r%k3TFA
zQ~}9H)M~k;eN66TO$F+HqOagkRyXc`Z_a7$aVuB1hTKIuu6)j7NzO7Ob<G<^iQk(8
zp^4;s`%x|@9-nGi=GH%fqj}7@-r?IU@5p^k@72&yw$)Uk8>4;g&PhU3;rugfoAI}`
zR#D^jcaN;T?$w{lYqe=qh%@8$L9Dpd6XzJ&s&hhr{1(}Ym1a_;V`-&ZCp<)$BWUbb
zO7!|he&-ZCb(DyUc{ieEU>rlE>gggK`I)!<%9~dtwfZ0kAmJqTU3S|EQF=p=u#ApQ
z;v^Ql#f!uId+=9K<%XTWlWjQ^B!jh`_k6Z<hrI`iO7-Nk2jFa9?pqsg`9k?rNZfmb
zZU!>|(_xGRaGPKG=lPrX_$)hkw5%4+fWB|f9At895ygrwyWLwDOP;UYU4$;X%li~X
zTl1o9Cj_D180qpHLv`ZZgLaDa%;MK^E2o*J+T3brgiPS{iLPGKJq)#zD|6K0@BKh$
zlW)u{BtjD?KlmC`z`}=U`7^NA53)(|=dQaZKczR~2yGG{n`buRVgVy#^RQpEydUj_
zwo2di4+2OPvIq3-Kd`XCj(Su#D5*Op&b?!+PAQb@cFaP7@BBCFb)uZTK6+~nO1bf-
z3(UHg{#5s>QsgQ^y<odj<$$=zL2a-OVeZ{1C)~>M%*0<1Zv%M(i_)J5=6?G0HXh@D
zs3DhlGok&s^-aIx;mgO{-_H7DWofQr{Hs!3+=TeHDt^R`7+&{zIAx?lxJTuHhN2rJ
zIdWPHW!?|TF<{Gh12)6%%PKd{>KPg_T(;XoV`Y}Cz=FNsF4t*}vgwYZS|MFRGn0cP
zq)ljT;!WEmU_v<Pn+GR`D7l)Oo$*H7jYT4IPNDAua|)!1AsL+>iaN;9BgQ%AQuS-4
zLIf0O29rwwhK9U<CR(ei-l+aomosSV6-41IEW$Wfm7+`0D)3>uL_3tSc&g9(oK;O;
z&#kx;n2+|bUC2e)8fmZk3oQXE7$TE9UE*r%uyl))JB^X6tUeAODs1an`GLQ}c5Pst
z?o6-Kt4*kgDGJ|EPfxHI?k2V#p$q3qT`-q8XR@!2b3%qC^BA?aP`2)O2dxH>Hkdui
zIrZ8|TxRBz*25`)z)8cPr>xDafYIjUp~Yw7_04{Dbd~Ix`G_>{XDcDx17rlyAT57G
zHWOWdD9@D5ad}F_+9ep*CeGzZyt{$9E_$16*LiJJZAr@Bu=ehbsXJHg)5RMYXwgLv
ze=O_4$5N{7wPeY9m%%|hn?tpWfVg8!va+$0M^sy2CD_76M{Ihf&3Hy7qex^|B_l!D
zO7^E7@~umos+n5vIfoBq>gqKowCjo9fivpWwzq%g9kn!L_`_Kbq3A@G!~WW7&k(@r
zW&wjNvM8AMHOI7j??4dMF7RMVHA3|2)%9QD%861y7<3arp@chAi2gtnZp3nW3J`zX
zci(*2$`n5-IuvxdqW}YSK_F>WbJre(7jd-NkP-!v-W%&ES{HBaU53t?S}C^!4VLd>
zm)A+tixSWZrtyavD&Tm5k)sGCEL$1ICg-mNg~tReOcZNv0a~n;xa7v6Q(=n6ej>qd
zoZnhZm_9E2(TLAaT87r$;MiZaq7etfIb4DPG2RCeJHz2%;Y88~k_vz@)n`^aT_3`c
z8zmU+MvF3eup$=<3G2+ELDV@|M;dLLTsMx`V<@jUyBy3LM|&(6+VF~^3_+;Ze{q`A
zwC)z{{Y^cq5qJ&RU=B<3a|;J~9q;iQvQQ>W&*iBgR;yl+3aClse2{*luz!ejMUdzi
z(yToN8To_x>=VHqU2?XI9b`Mg34hs*VB(H`*R4yUA0N-^Nl-R)R^2In1d+L#kA!#n
ztjDdoT0hJ|tsUFX*1TczLkMinKB5XD^&svpw0|u|MS9j~DmXgZ<`;LeJS}I^w;1e8
zJx|)WfvRpB&i^_U8|_y>ti*6IBOf7IjK<s$b%`3=n9x;p7@2d5dDDJ|MsoE0;^2et
z6knxdyYPEk-;(bA!rXZLDE@-no&6b}b&0vj^Cx@rJ`QD%1&2h>dy;C(8rd||EsL)f
z6`!<wSmXdNeGeM)hpkOaW0_y$@gm?tk#F0Im8W+W!Y4NTn16$Cz>}(naPBvf0H3<{
z&WlSug3DTRitCUzPWlu2`_rXMApywm5ORle8qICEL@)FLWKH)JYo97_#$aYIT;@F*
zA`<w4dt2cZ>tEO-&2n_@fq})%?Rav-lbFM3Q7sfd#5l)Mm<Z9@ev5PXontO5H2;7{
zWbCEQyrwd7&STr&WKdMtwdz$FmbGdWu36++yW^>~ZL`C^a!Ph<2~+{P1PKF#%C3IZ
zFO`o7|HnPAkT&Hzz^xT5Lk*v|14uYH$JmQ)6oq}@Bsr$RHgt)uZJb=(73)CWKN*sn
z?Uymp_tb)_>g1ZIQ{zu!RlN|Jpu9;y<-5cjG&k8aSHBg2*zr!nbwFknxqez0L@N1D
zFtER_Gmo*VP*#Z7!AomX-ugk1gD2K=i?ZT-PO7ZvD>NIDb0^QD@j1OBYWRM=PD>G1
z^zh>mHg=`Xu$6LfGFa@&gV4A2N4j9-<m=vtODkpNOjrJ=I9i@`l|JonX}SKe3_L69
z7QDq}sS0CVrSoN%Qsasq-y2<J%fXB$KS5?(E-P%KIG^a;cN*g4V7I+m@Fq*JJ5ru{
zh?x{bF?1xFW~(@zC4V~`E+_S)86g=xO-|w<gaziF9W(*^-MV1G@lvFmpzq>xB*98W
zI$iJ>hiSIs-LKsf2|;$k5T&w7-=#s{8OLjLCu!(DF6UR_m8)7}=w8{Gl|y&FG1+5}
zR4po<z~GI+G8*`p9qO~;UsMey{9~E0hjy=OhVr?;AGNzR!l5oJgYJc5(_&Aj-6{*-
z=p;~1+DQ1ZM6pCmj+TH|D!W6GMF^DniD?BBGB>J1*=fX@Ww6^p_zgvkR)>R!7VtMw
zVUAUsl%n>aR&rmRLI-pov+E~rx%-%KqmF4KwxF*63fN8@^sEFLl}CPYMs%QPxo)8J
z_Ddzl8=(W3i56!$ayj&#00(t@i|lR1I;2X9#@6xWfMHzSp1+uL=SJE}Qbsw6B!3(Y
zVxT(+>8ooovL?(eStpgK#9;JHtR4>11Bb8G#N;gmAvr9^FB1mKMlB!WRAfn-RXS|l
zZY)DJ?$ncGvOiYI;W?Q`sX0&-exR)+%ja!%6Fg9~{Jf&&Pdq7Z_QD}dWKE-2JIO<Z
zK>M^~S_l${PO#QIJp<9pY(v(4#%8+Ol43GZM7qy|3ScTk)1ch8Rvw@$p?hfgr~Bhb
z=Etcwu3#74$7@Vq4*alX=4lWXqpt|O*A&=pk%Guay&@FU;KFHc7%l+}D|v>{xoiA=
zKw-#g*iD1w+G^iaM+K~v5@pOb6nIMV{8)L>S;bv43;nJ`O}R3{r!o5H@97qVSwiX=
zVT_Wq)A3-fR~8qv-e=uW3PVG7bK2A=apV-Ajvd*faGh7pzjP--l!d6otrsAV@qb$A
z5*NhTIy9z>GMr^x6(B#saRct&L&Amj8+Y9lM^*96PYz-s$XdmFyYqI~d#_<|U0JI{
zzk|tRf0l*!{p0^itXAp&=2}p^NNnISBk~Qp`n@2})-L@i(@)##MEB!|V1SL_5|g14
zh4L#}(}cqLozgG9cRy4i6?^2DH#H2&RFj(?{K-X@(KECKTCZYh55G##kLBon=i-16
zwIBPRj8V_jQl@IAYKM{n3eI0SqAO}r=Kor|<t!M7>mSc~vt=vi^W|VGNmu-42K@+m
zIaQV4aY>hU4rh^M1Jtl%g>BdaqbP7xK&8tPhsXp@CTi6<2wOTzKN>_ia1;(Gq>U55
zYST~ZHJbcQ@kMAFCG!>)Nr>F)4Ror85PkMAtBZ+5|NKa(Z|N+Cc9X9yz6?{3>L61g
zyf8(2p(4jPSNC5s(|SB;p=?2}jER}$9<^sDA|;$zS&Y3CvOGcXnwK<gY$OWzCv+-j
z*9$6PgB72O46qw<tU&w|M0pFTq2L|wQ-9|MmtI(FzdmaCGyXGxS3`0MMqY!jd|0CE
z7^8sr@;-V3l|64+qeE3LGp-Y*KS4>4>>s}0?k4FobM?ly#w&{oLu?0*-{Mj6A_eVp
zqe@pqa%AFucL)w=O!9LX`6#A(->B{$uamwyq#FU{CsUXCu;BbcD6@;Bqt01~;5RMp
zPm6Dn;#4CU);k`_5pb+<h%@vw-xk0T_-hZMZ|Tj;V}!;S!tf7H;%vjzh!2wAEnY;z
z`iB(q=uxpaDMEPowf*gEUpZ_<K7*C-Ahpq^rRa1ETfvM1KVLj^cQ4Mw3<X0pg?=y{
zLi$PEW~xuf@(RPKl|;{7pnp5sauT)_Is6b!&)A|{)T@vDa}#piCPa{Ahyj{=*R~h}
zuH|TO5COuD5TSE?V-P65DsWN(GMyx5+A`PE7o9hkQ5v{pwED3{L*(iG7aa6gcoO*H
z7vkc~Ui9oNt!7sz{I*V`7a2=Wv+B-zw*-WFl>p-Q*tzaj5aT49O~U}=A*m1Z^D~c^
zCI0TZ;Lf@rnU^O@*C$zDGv|(G;`WW~9_L20>aM0nkgbEaT373CfxPZTFrEs-!{o1G
zqv*bo2A}xPPvyYaM_D4O@)#ZlxyXu~LX%<puJB`yucP$NU)IW{chEZSY}Fl!<uS?)
zKwh_nTdBM?!(5lZpZNZ5Tfknou7LplT-+KXmUkMtKi{K>r`?ou*Iu8`EnEvdQ$4mS
zm<u^rdE0ef2#^ciHBnq+C9bWZo1est!HdIs$LQ=g@?MWOC30u`m()kpIshzF7@I~O
z$9<`DGtu53<lqaH-F2w;*a#Q$|CEs58BlhlDnl%*tMMV`nTj&RWH`lS<SAh8QerHk
z5e<GkGTO1we+9p#Oy?0_<sf~IA-dbixq#<-giqc`EL`-8zgks&c|v{a<bQ9`gT8&@
zD3^6xut0}m50r@;O>LX-w}qD+2V%yRab~;T!+<`iAJ{zoJ~NS#;IyvE_!he|(JZu~
z7`Hj7_hCV}4}BYNatGDFgU=1@*L9C>Txlcp9h=TUFNzCIeh7T8xVbDJ*6zgLEBS#6
z@=clk@m(1VZuUumTH}aybKJhdgn-vYxMmkzq_4SZ=Wk~ATbg)IA~HYM*h8kl>$`pS
zj%JF1-pQq&6r_DA2(VnEUoaEGN|t9V0^Z<-VO}WvXNHA_Lc`}{)9e*%s!IRlVn`hH
z$rDXOXE-EU1TQ8!2+)Z#!@@Hs@m`Qi&QGCHwT)$igAB7mWN0V7En&uu214IS7VX3U
ztHEFs9Srb?^JUcdimvwr>RfIT`|;EULvO3sPmzbfXdCSZ&_tP0L^dzv{WIh6lR~4;
zhf|{u<<sb=UN~%i-c_uvg&QBLMhG2zETAA>47Z7iMWbn0bo^pF8ems<*e=myLLbGT
z>GE4xS`NJ7B8+WrfXYmr5RJaVms10G?_vu&YcpM<XNn{5_p=`dyA}ov{XJ=}@$bTT
zOi`ins8q96Z(YpUOo^VVnA$K0pbxac8z!RI=0d2<aL~}`U%T<>cU|%?Bzk~nNq~L)
zOdTbt#*i4Uxh;CbLwGo#;u(TIkQ5}tR#=+MYK5&q{~HJ&1BBii2%iE7-#R=P@D+Il
zrD0<g{^Md1+pM*X98|+b^w;>I1leXp0KkxWmgTA|_weuk;|=4(oMRG1)qtdjjRouj
z@zznXXt)fCN?&;kjb}^r#Au>xH(kU80WP4;R)L|)1cJo@g1v&%So#ghu^fas@hlWm
zUmQ{agaUNPzX-Ou4l1)(9tsVYO{|8ANbn09G>tDt$7>KGap%j}>#5p7X9zkh;!)3h
zRcXM6^(ygtU8TWjt&yfB*tk?XZDr$Hva5+I1RX>;;92n}9vHPmh*KPbB=m2Jq@RAW
zurMHLs1k{iBjcXPt8sEZ#~YreM^jfZNzcAS--5e=;`K^4+|L`1T_qd5OFEQek)azS
zcMWjrAsZHNS6oJ~6G29=i_|3JxtfN)|Ki9qWFOo)>pm8O>2jPaP7m!z9L|G`xZR~j
z?j)OszAQj(UXeKK@Lfs9t!>ypP4MeFT%AbkHtuf9h{ttf+t{88g#p$N`O~j^IWcW<
zhp`Ms?%S2cg0Uh1U3m#WyBv)AmWw4F5yb1BiU+WfcTdyC==G(4b(G~yW!_idLJp84
zBLR2^ip8|DKQRQ;Ej@vbMKZR=A36eenyoBuA0`=3L`yilRT2i6Zs2<62m`FXDz01N
z4|CzvvmGi<{ec$S3D<p`B*h(O*hG74kw|mI4g}g5xz7dDg>G1Qc;MH0*#HIhfC7X-
zND@E+-*G=Yb)P+9z;yfK!@T{--7U;0iwh95IZ!|tD4=wU1~jx0PW`LDvUq<V2uz%U
zbX+zz6SnT-GfdiWm?Blwmm9djv)0HRWpnx$7ovI$5HK$g$=7&gtrz-`{rTroG+nbm
zLKdBE>*B+$_{QknJk03bA`pq{Ca&i&*}i2y3TK@caQq=7P@olP#zT-1jsUrl`&4DE
zZkC^B*RdGjU3=t?pgA2eMg#yw@pBvrsG#d`X+=MnZuNtH+m39!87PpeDJu^YXs7%+
zo>3A+r)y_<fkcR-i$(xkhhs3pv8y<x1cDF*uD1i%KY@Ny0-`KAECJ?*G*+EgUuCf_
zFlK^+oG9uZg!~vrufvWE(cZ2Bk`K+tS|bj9!F0a%6{np*8#7==9o~WY<J-;-i0$KQ
zIdru#YJHu(FnX=jlx-F`lLMpx)uhP7sOz{|UR=h;REO)>lZ|Hq%>eGe3N)h~7|&Ut
z7Yb~mKko|m#{s6BBX{gTE2b-p-+}R727dn@Xl85+`_ruWa0)#VFdu5*)Vp?7=9_`*
zJHQNH1zM1@f&1Pe44{A5Q#p=&Zi_z*WiaC2QJIGW>i92be1X1t0;ZKIta=?c<{J>I
zBT&g05Gv4D-2%KQ>H<$I-^p~Vs0y}DmKWbLx#0qCOF*P{B;(uJ&Sj?qTt@Dm!gUw?
zz>p08Ur<Lw-a7HrJ&4BT0NbsLPWOgaM%)}E>RoQY+zHV%d=}v73h<eXru#2y5t_2D
zcUV(L?2QUEZWWssQ8KK}!dJV&nf-9Bq@e<(`x-;8^J6WMwm<C1KcI>@rpElMZx-IQ
zjE_upoh|8Ke8SE!w+-+Pp5^+x6V;1Se2rsV;PkvYcFRm(_vmm<82KJkUwB-n;toI=
z`T8`6<jXL9QY<tQl*HF@WGDTHOKHybqj+j(5-)e8K}_VQ$exNW86qjGLr*7Cy$A%W
z46_o!KCJk&7w_v4Vk{9ptjMy1U)6*6Tag86T{jR4vyzRu*OLxg>6cc;E9;}xtE`)*
z$}8(>&aEn)RV=cSP0fYM3Q|t5tB9J3RyA@eJFKRac{H4}9<Q7+WvlC@%7V(=T*zhm
z4GH<?{CydMX||G{MtRj89DaOjLtyPBYXH*m`+bXEssnV0^LxZQ5^Znq_S#-+Lt>cD
zb-%X{G&}7e|M)*=VJ_Bqp|oJKBChhMf?a#{YlcQ~Moy-0jKuDBgcD^XpSNGoe$W|Y
zHBwDeyx2D@hH%*)4s!_(z0~>>iAb%Y97?IVQ~XOJ8ZAZ1A<7dMJ2`{a#!tg9>Sy4&
zX^&nalL+q6Pli?>MC28}SltgcRlp|xuplC%=42nPkbQRRoHZwmJ#ydP@4fGy%G}MH
zOgn-4(nYpqheefz=v5dC8!qq|N!9%u7d9LnP?${>CI)<WkB1ApmO_8asLtkVO=a?T
zc_LQKVDu^A_v`pwBrIudh#3p^-Ocb}Y`|Ms9&eS~-F>B!d@g&!_AgI|6EP-i*kjH=
zB2h6*aWN&h-T2}A)NXug-R^5BX5o9QKYfU*BP-hC!v=68C$LUKTTo^m75b2m38&HN
zt6>HNhz%1vT2;4dVT+R-)7I8f=2PlJ1afyObNgKsi<6yJLPAG5=k?Ds?8F2_?*Y9@
z0v^TPwE@=hh%UPQ!MDGr?4Pb{GNLa6v{ayMH<_$NeVlA<f0Lik5t(4$;4qHAKULuA
zX>7`tu@Id&FY|#D97gU=R{29U+3<K+z0<rTG+%!ppd1Ar+hAvXrfdv}rS?TQp5h_5
zcEs>-#1(wx-}`T5LFtcS)9NKtH|?y1FA5~!S@lMAELP7dUCdtyZ<7%H6tCTL9!jPH
zHxXhXDn1lhzu6)fj;VgCm0rP5U3E-BT6=$6jS-TI1I%U+t^=w3>D@0*2w#|*42-wR
zDXara(;mYGp-y6(+?w8wg}*{ek7RG*j*GPQY-Ml!Tz2udg3_Gr2)x&%0_PhMwlH(1
z<idQ{Fj}9GZes~r_CUVOa<7m&qS#G)+6n1_g(m4Mvx-tR6_v?h3`OS-gzB69al2v{
z9N(Ynt$7jKwys-(BJFY8)yTH4Jl9it1sGjm(GL{>T^`8!hWk!Ajo`tYd$)Q9XOcP4
zl=B4i`Ez3YqtA?D3^M95HB`?mr?`Gnp#uH*9r{G@(Xoh#xk*VKU_BsQeeL(RDr%t$
zx1?Perz_NFODrM}!4$bV14CVOOojNsBGN+SntPpJ3cf01k}6sZXb4wpZQ8NtyS_$F
z6VLOI@_L?#=1ylKXN%6gyZ$!ePtotKe$kqg)$k#~4p*+g=$p6Nt-8YM4El}QfUJe3
z<1+&qvtS)J+!{ab@oKBN@*}H7hMf5xNv}_w2UAXhDRD*kdnlS4f9WHu9VDl6q|ET7
zp%N2+9eAbl75?apt*_qX3S7K(9TYwTXgaqy<Z4&W61Gf+FYGn)4K}L%ZWB8%=r_Ch
z-GU237kS%Nnr$foSngMD0fWFy=09r4r=Th3k)5G5V{hK$UbgQlbwb;d#t=0}&|1tP
z{ol&fSg40=n+ExNsZAraLy8YM(LEOU2{4|%p5Oaa@qIHYh)Q>P1y!zx<-(N?PaKyK
z+`4F)Ma~}N+nIx6E9x`qUe^2j7g{HJyRUXW_O`a=KR~0pSLFYu$4{%w#;&Jb+kIEy
zsa(z=x*zBM?fD9vg=+1mdUG3<T@$W9@G89PE80z<PyxwWNq2wkw9W$!!|nLHG@|J|
znOVuCta%wcvjW2<k`$l2?QSBjEq?o;r1b?)=ew=*0?j+;Thc_2mCyhAX=g&DRiV9q
z`8_!XyG^NgrqG=^II{{SvRr_CzP)Y>3vsaTlh}Q`LFu0E<`t?!k;Wq?<9%-AmDr!B
z#yo+q_sjt+Ffrbmg~s~Wtv`MLopO;D$lsQE07FMj=tZ8z%}MCLfQ?@B=f<*`G%y<v
z@*6u-GiJ;g-X+DbaV8;IGh;O@NkraV0U3i~x@4NfJp++)+{2s6`fvM<lf+X`T0bvG
z9mTfoSX{R5&pIpdtBxcr@OF<KgG*RyD~GY)$KF;h{<&`1q&_ANc}|D36TGH7zvd}L
z--t}*e_6PZe|Y*_%R(UQyN?jV*@R;6wHW|B-44q^Ra&fvcQ*4sxrMduA{>QATclq2
zjuR{ENqG7IcGQB(Op6ScpsSu%_rVgcWS*;+lr<3)KFO~7{>q?OBgr3#sw}+!z%+MM
z45eR-Zb-JCs1kX?4&g$EW=H#dzeTgkzKyfI_m{%+?RMur62zt?__;6mDY~rxWcLFT
z4D#hxXUZHz=Zp8_1<l7RnMgOtolA84LY@&^K4W4Iv#e;g7SL5*_SuYWGs<{TG*Q>+
zEAFJt6ngU%?u*h<$q8;ytFZSS)OtFxogP*QDh6HcHUzcq{VY-AjdVXHea7UR`%Kkd
zj+WkUY$r$1(Gog2moY{|^AG{sqT27?X~o95h^Q2mg!J|lwY9Bg|3dr`VY7g~4RJa6
zO(I4HEQO~*{yf`xa4<7GtY(m}tMktB%J44rkawmAGA}uOav8oB>Uyl;8p#W2jozSD
ztJXyixGRANWF?3Y`DWGyAW~CjB3B~y{@eZJOnD7TDoF9CogbyD^D(LU(|KAu7I?G6
zW`(uq`t=w2_sP1M%RK$dQdC}+W}~zt1m6@&R7QWc+aWk#yx!pr0UKntRMNJZ<mcBX
zJjW4QfN|o(@+YVqR$B%PWt_|D#`3_Z*X@sQOv5RdwkIX)S*zE7E-2mOML8~~bhkrU
zTaH0T7=4<WJwnuq)_=V&ej93;n5T>$U*Amqe$PWHM!Me?ci6casLAd_ynoInKOD%z
z?3SGbUrGcs1rl+7_*=ec`8yt<QN1`cz`3=17_~d>KuKO=R6k#Ou4v3Uklb>(%V4y`
zc5`b_Je%vcn7{+CkA>$<6K=08#vBRPOA)vLQlmOJ!xj<q>bSHukCb!#%lgLlcXa0i
z9A9$=S$C04&1gI5mV)$x5$X!oAX?WT92ftPo%TcvF=`&xCPg_2@iH!V^(|7q(^gv!
zkU8xvx3vazL~rkbqVl|8dne^|@8BHzb~6z6Z-d=E`+aPJ#X85@dH0-md2Wk9qrif@
zn<CWE9u{JMfC`?D3t7rWoes9Hxf>{n_2Tw`Gon?1>6^_k<V}HkPr|IZ`y;vD$5<vf
z{NoDcN2qs0a}?uRtV&Jp2k-vs3p_dAR`~PQR4~^SPw==I2EOs92Wqcfn=3ZPZ3t4m
zig-b34$x~dn}c`SQ?ep>G9wLD^?Oz5>q|_OLU+%UAoI^3X4nEWYL+1`sGi@MF?Q^x
z^ew+;-p>SPeSG4TghkS|NQ}4~J{#8_?*S@Ud`xESsog3pA#qL*jqNYv3zG8>chLgm
zFrMhe&vs>b^l5|NeO3(WBgnC4Sa31(Q~TQ;s4}sYS+dX-N)?Gw0ml32$XWxG?0+qm
z!)rxl$G)5L5BuaDULVGG74_@l5V-9S(3~w&Mqn9cuTXV!`?v+pI-J{{h~+{)H`P2>
zn`8S3Cc)lzVL7OZ@8BHm4qp5+1!KQo^HOX%pfnq^pfwwvb&MO_z8xBZ>vmp2JrC0A
zKb+9GKU?7{fBLvosIs98ly4qC@({)D?%TO?lBVqI&OoppK8*UG8P(fh5{8lY+kqqo
z)ZkxtG(;YrU*;4d_ADPUG4pq=(T6RKQofLKTZ`9Z>bJ~W_I$aZ<5gUVQ_;DFDJ4x9
zT`hx<<l}57R)-)~&--@?9(nVcN-T5|$Yyj5p)IFgER9$$s2mX%cZYHxAKBTAa~FS|
zcx!!(aKqfcy=@1Ex+3-7vxe@*Z;JmDdbyIRn=+Zhr}1M-RB)scZ?}*O=FURkn1f5H
z2T9fN+F|m<e{-q#a>K&V`?d*0+wVT{ZbCrGb6MT!WU3x+{>*KnZl){4IIMe>L{Ftv
ztRaV=kKbX!yPap_DA#r_c3HGCTd2At<bUJyni;#xJ$3^7n#CPrabFKHt^2^AQdD%&
zjjDS$kA1?aeg<FWzq!0(&Wr}%lb?If>3QB}-Co|YWo<$9FCweaiCGGTSDSjv4%JNj
zhpqW%qASn4j~6N7A7U{^K|t5%k2Q(<#=+y4lZ;@b+?Q8KuNI`Pc2l*AOsHq`Qe)k1
zR#4rgh}}m10=rnuuRce~r$>GQ)$Wn4WgrtwC1yxGKh@VMMMs<I55jpf$f=nn&u)<E
zYi@@fv6rf)l#Ohol&uUSUpC#WK-+xg@B=?I9qWP=_QcU(T!JnZb2B{No-Tjf5bZ~)
zfXS~#MD&dDHQ<ndC5v+h^+CvmM>El53#@DyEL^jg#a^&PvBvd|63di{f!0`KA2aZ^
zh*{iUw0Ne^h8TI;H#3hK)EYjHf^eafdCopB1A5PuH|a4>A9oM>ZrY5;hVK>g3cD1$
zBR{>^?ZLNZ8)-Xl?oTDUTx-(5B>C;c2>4<)Ka^3EIcR+t%dSs8bK#E`2=02D6~128
z?tW}61UJ^z{Z%jWng7J70i7h;cWz0kZR;G_@c!qqIA+98t4Dp=wvjCPVuGiR%9#Hn
zXAWw*A%3hIWoW0EAM!(%bqCGUL&p@06gp!q6v^v0hWBcv`#Xm5>i8R>53Qt@?+J5!
zks%#!U2ONxV1)-9EAQnOnmsEE9?Rj_K}kcombJhld+?Q3CB2Yy1gJsd^N+32X5PlQ
z=Rqj_p&uvwTrQE&JrDdZxhfn`K1?vY--6Z~R8eHg4EVuW{5Sa6H~hqj=bbKKM@Tgm
zZrEysF;4}XA~#CYCpoLzgho(02DZH=#PCQSjmkQ16-t_C!OYWCQL?z65CYzxR2{75
zR1n|$LV#7sW>=*CYko*Y<JXO44vTx!0`@9xE-?CgeYf@s8}^P<efPjXrqnb4Zu#EV
zl`?Pb{=2Gc|E)5}c0@v1gK=)RfNELN?2GO^s4vHI5Fq)vggEw<WG#xv55nQ+?i2%e
zjGKwS`Oo5Fy4?ThDL^;VjKp8awlg?7O1{G>+}(3C2xbA9?j-<0B!M)1v_|~wfYb+C
z9XdC(ul9M~z8p1{YmAm@J(0b%XXIwYK330|9&20yr#d*wZC@ucs6G)Le8|hYR_)6h
zF)YO$+kdc+Jrs=S`(Y|$9=^NA&cltuJnZlXEdo!OF5D^(<SGvB{$L~PZ_CvEYYFqa
zU`WEF8Ev&Ip950Yl#Q<mgtqeiI(6$io&3(1jn%!C8upAI=F`|8V3UH3>u_KzbS}%c
zh8hlteDkYdoU^5dU|62)pE66ab5+WkCq<pC?n)#0*oXA9m|0+yiUmwW?@v)s;_8~&
z?Y6ex`exUG``q5XUU3+GUHt!`ilYb&rHN!LuqM{$K`8kR8O`BLM6Mr2ssrQ(UKW04
zve?~tSn+=Npq{_ee>4R?Udlc7Eq73bDE8mHUXgX)gbe#>QpV;(4!ECE-5tsqO>K@4
zi`RymDHE3v57+yKvWDuLvB=#MxhSsE*04O0{PlFd=`%vdxEwFv2_ST9%_7Jfv*C%J
z%$NSnUrk9QZGmMl%BwS{GBvaW->XVtNv_kP+jNc~3cHqUYDlZIQBC=*b$^f8M6`a(
z)mR`H8r{Q7@OL+HWo^0a42>x%u<^@jP7RCCi(la3qA>5v`(G!_RDXcVBp5DfYPI#v
zTdppVpZ9!pZ*tdAMZ;w4LPBe!YNhQmU@8!-?Vu}m@|W^XfvL(S_sKnfr)oPLRt)8f
zc8lc@Q!wF5Xnfh$i6{)5ZYp1ZDZkzE0m+lCLU3kXhUnqx!ib6@4Mf;v9=a*(mdCpX
z`i|s_x+c;_um!=WGiYDIO|Q`aUX94TdycPUMOvlx@5Jd}qmjOlHuDU8@9gL(BT$!X
z8o=;eY6SN@k#XyKiL~21$&O!B-wCxK9Vt2{7{(<rs8|omAj0V!sqo>}!4W024`1gT
z2g9A~nY#CmWwm#2d$VSyAnAjQfcF?B;}=ICZQSw{LVAJ5YER8_n)i?P<HyV49KFQb
z-6kbF?Zmu>(&(|Nlr#(Wk$;;`Ph1~V-y@MaLT?ym1v?TRNTu_>{jvKl%ipszyfcvq
zQ?Ud4qsck$A*ne!{fY%>eBAShX`0UPL^oOJ6?vn|JmCpQx-|5MO*QEVxH;WQT1wSy
zvhY-F|L>>?P2puE=h{@zW@N3|NbZ;i^|rz;81z|!Af!panRWBc-Mn+J@#8zELYwEk
zhyV}E%(|35az#}=s&WbU#tY;Hfvfoi3{xBQ^3YCfdY@@VqpHN_-$`h*98uN68A=VE
zUXCeB6K+U5N=#J{k%z~XF<z{>Q08U0<;ngNm(WV9R;ZS}mL_1l$sBIlUvL;j<1PWQ
zk8(=ymFpGiy9c*XwbPW*upM@VJ>8bj3;MWEt|51)kI)Q%zb1^{v#z1=thDLE>atJE
zWw-fj1oDsOv5@BL`x=I$y5Q3(c~eB?0)xOia(nFM57fDf+$Ni+rbLJ}<@<((jjH7q
zb`Ye-#a^Kh&?8V4pQI{iGO#OK))jX4wFs@1X}h{fW0AGvM#lzIeTI)xg!d5!5(6KP
zF=UWvA^qs7Sqq28HZ5z)_{5rFX<j?we9@}1z-cmQ+)X8@djz-Pb*S#`c~?JcL*C<e
zNTg>Zj>?D1hu%%*Bz+IYI<ybOqN&Rft&d@B;S8?<f7_<08#t(4Thl$Z)6)LY&^5Pb
zCeQq4NliP%f%hF_+goDK7;QLHgkNX|rv%N9{d|+x!EY!>%TpPFkaEzzJLvqK$6G25
zRa4`O5l4Ajzi>PR$^n*;I|dvMRtmJ~(uMp3U9o#{$*(bWI!`>Hlu2)D$61|f>;^He
zf4<#xXM_hVEaQ-~QX1>E8#Uaj%nkZL3J`tRf**;Ix2j3p2n+G<ju2b=cSLp4;N)d`
zhmI_=s49?EwT`_p+|i5C`=|N(*Tf;{#8iUznD|zM=LvNl5%tiX%yp~>c;$JaSxH=>
zm-L`~Hi|ln-MgzBk1bM;L*nLz*Gf8DnH-^2NCLgu+Y!6YsRiJV>v*iK8OA1PJ9%^T
z&vPBo*K@7|T?=H8ah?tl>)mful9D60!CI}B%H^^Ca!fI{v^HZgvXN17Rdl3ytG6Fa
zDATH*M&G<MfKsJI^#FKA7(;me@|iyLRPm&0!dJfRM>v$02j&};4idq6<Ys!E*5LT!
z1N%@oYpezPnrgLJ&d+yvvzhYqcshow`Q?@Yk3H!;YS9EMe%)d>mG8)m^k@E$&Ncbi
zG_|Fxhsafdju9jgg2llkI#8yhYNqvF;2s1J20S-!5QjCDhzztL6}Q8oo;zziT-B-V
zgE|8&Ncw5+U^NAZ3^XC<H+$-b3c66=Dp7RoaO*2z!wDj5bm&bW+4()%h2NkI^Gm;k
z1&avh_uh<tT1><asLW?MeV-~PQouCcAN*x(=P!E(Tyi1uTYIm^`|Ew9<1-lrY$Z#X
z{VpVhE=U6=kVCtrlslsPsY~9<?%94ypUDwo;yRu9gsjufE#7XQIbJ}wb6zIh4E0)F
z`_+jcB+-4|D#yeXN}F8E$d-t8N)X(;o+*J=>a;+!{yau9@Uaq=cGxn7Qmrd2O77q$
zh3xFS=KOpolGtExaagPpQyaJ&i?O-%UZ<oXJOj=yr}l!U^^miWo~CQ>dM+NijIMt6
z=`hE8e(P^;3;sq$zUp4*@bIk*`1Xik-Yw88;Jz`!qaDJ#VbL*yR-f{(ZZ7c3TQ%R9
zn&P$Rl{t5}%n4IXtrA{Gc=hJ7>n2ofT%*_F<(fvk9cr{oLBF0|(z)Ez63y&~s0scb
z08>D$zlCpquD7gWAFJ@e6J0Ft{>BP;(>pxK&h0<8b?1gFw=U#u{bo1nfu}uesBBQ{
zLy<B=D?%d)VUp;W&tTW9EvvGIhdUmY(cuSHiw>Y=`9<kyNucoMntmzAG0==)Ui?0t
z|2|9n_CnJTeBL`mNhZ)1hABPA_rkQ{n^v#|kQ;{PK4>0=IsEu5?#!HYRKlmbAh++%
zJ1unL&AIbVn0W*eMk9^qs^tBwLc8BP2j1*rv*zCjU-yQO_x3+82KNQL2EX+%WBXwd
zZ6r5~#`~z{d=jSQCqu^&bbQ%67gmwsw{94U>)@ANb(<=d?O;AMvUjN5ba-D`RmC!t
zr^+qiC``iDeQ?<r-LA}hum3Y#sG{0pJ^f!w>aT3vcVe(?)ga5o9-LtPgDZP^^ay5h
z0L7V(h_4-muXT^{Ho_;pS`S*GGqFPna<2n?`3CM`+DnJe(Sf)U$a!l!S>XzgnOn5c
zdW3ig{sG_7`YwkVBY<=FBJYaFS002*hqTJGwKcP0>Hyq*gLZ{iZ@-+Y><=`8=jZi+
ze+0o44w9Hy=hod<1ZND<yV`dC;_QL4B<$i>Agb-4{0`)MWP&1I1N%6?GuW+N?X9d>
z?#m<<B>TWmeyaUm;?Nc}ypY8%@@k9DMyA6d`bsycspHxxD<lUPutt?{MShQ_70rR^
z!|>sJs2gJiJ02(CIdwE+>UHy8Oc%bxwgG7DyAy8d9D=`09)ept*+9ka#)@7s*GDI_
za*9yQ7?NH}Dfp6PYfc%yE43ooyD_z`NxRXDm}K^iK8PME6TYcN?Hh8goJ(dNPa;5p
zNA^cMxr=^Drf_x5tteTeD^_dKIa{^Dxi4zVW&qmh?d40B!5uf?!>@|&R=9Nc+#^M>
zbA%!ILo6}94}MI6`lQl>o6)MJK=`z=ii#D8X3tOKQMTHJKIaJfM0#NAk<`bqo6l>h
z-1$CjLGGix-~jb%9v-#}UtR}A`+3}6Ln{jntYaP&>=QKqJZ%0B-u&6T`M>T=YyKZ5
zXnw&;c78?&zLwsBQQ3h`(Sdh)(brK2&Kjo!C%xDKli%EWfc$o0K2)<j>;z}HTvI#9
zxX^U*8*x7WGbJp3h2h$vJK>%7A?Qcr=G}G&+x;~M*$#U>V=N2X%~IHIYwmpQid=00
zabA60+Qa>a4%;o!au7iaid-i65hvJHUcs!|W%GEw2AR6U?G&)e?SDdBJJ*t)QmN`t
zPzN=v=UOn>0K9dY*6C%wyZR{-*|>N6UhU#Ja68&tzdx-U|Az7J0Q}*GIx%!O<=Lu!
z*0fhEn1j-JSiMTas9ib-zI4MVYuvweKfE%Tq``r9G8PVKb<B7BipPULCppMdP5xYV
zP`h^aHu&0P8Y165c%glaES3f3usIA12H?k@K5P-(hWbxO^}Gb-=M#uapFyN}xSQNI
z2*vvl1=Jy%mZP{0<KF@J^<;YM;4wHG*^v465=)*jhLvwTr0vMv4!`Lj9Dg^y^%lPM
zS$yj)d}|C*GuAb)FZmcMrEU1!E7#L=-{RnyKyn!W4#3|h@ixuvgP!Zh;OCPK<~y{J
zRc?DFbP)PTWqtJq)Yii&a^Qd$t)06GJ>Pacp1nR9&z|YTv&Sak*@-SZ>-VBLAn6X@
zqiJ7J@i9(N80{KB`s|!rt6envic0t;pzPd!5KfRW121+O@cl_7Wq;X)$AfUAhNa!U
zhX-%rZ=GhA(=m8~JUaJz(TY3JF-#+Jr5E1sLj3@r>Lv+x6VUO0_7FSWrWtT@j{%?1
z^0m_tQvd7>0@?5Vi{vGQS|Wz=|0BvKWbIikk@a7hH@6MqIA6{-pfMkojlnQ-#>EEs
z@}GeG@UbK`_w0l`gDr=~p2qo`@WMO;Hjlxg0eIUxa`m#hBHwCuHlKw(ITSvc!lO)6
zau8qpShdIW4FS#X$^1Z3u40&G+_>`A%Wn2TOEKh*K}#OIpDKsDr}V&RDi1zB1*KI!
z7{xGs42(Q@N4eLB_onB=lo2-TnqGJb?;M&^w?BFJTRfTQBV}-A-QhNb>WL#auU?w+
zB|5f~+IlQCiYDcAQ_7*S9L~;%w=`C_VB^*GS8=hHBZ9^`?0gZf<v}dq7#ni*ehK`Z
z7OBHr9(9Olm3F>N9jH0;-oXPRX`(|U8^mYAnQZK)jZg3g#N)3WJ4t^JAMU;B=J%hW
zg1$+IgBHF@3YkatgGSkLS{tve6BWRLvR>H^v^jZTipQk6TMJ~An7q>e);D<1W1=Oy
zilv0*wKIHkw{}FtOU1h^oWpIGa?}+3jigWsjA!PtQnZJ)HC}ehvZ|dcgmx2F&ucPn
z=|-k<i%gQRA~4M9^z{&RauR2YNjVWZQr9O*;>qxR`&?)rb2juAU<0hklKUDna$suD
zHg1mbv@kDu6TQiUx7b%Iq@EFxaG`8wa+2^28liQn$4;i6+uj6cNc|`xn9#xddOd%M
zdlp5i21@#J#7XCQlW^t$E2$|FWeia=Fg^Qc{(GiK&zmV!E7tY!4a4Wo?`;b173{!s
z+>q}?5{cwKO5f6YdEclj8n+oj1(L38sThHrHwW+8E~rKPNTC&z;CMCwzc-j+8O)#U
z?$dkW?<nhAS@Az>EzkP@WG&~Q!aG-Ab<KN+k@0(=aR|;9SsmdaIAehIQ(A2M0DFM_
z5Ng5|H?E3k^Urz-9-U+yIF72JU%Sgoa|oWkz7BPX0nc5pwIU$RzYYdE`ucUzY?*pr
zcu)Tm&@sSGL=BQ+z_bO}?&l`;ur-%9HYQW>GY{&AZ+4F@gaxc_@3+}utR0GbSP^XM
z`!*cv9)^$9J%1Q+)}>y!8uiIV<>aHetCP(_irsq}n|1dpm>%AGPYTXvJv)!?NIv!i
zJlNH9@+5qcVn+jA_~Lt_)FLW%JC^#M2bJaYzNhxGT$T$yX1uy}C%oPs#u9sS>d;Vv
zhe@aX__Q8)upPzVk522^@$6OFrL(oG<}N#Y7*fL_L~3j{QgGmwZ)mG#ABOAl_r68$
zSgktuFnkg#yL)mE{1Rp8Njximw&YHfMR$^cG>sYiZr0Z1KE4vJF5U~L4<9<XJ)(US
z-}*6{5JOnyOH}238C9aqonqJBtX+kV?#|zv;_p1tZcylFm@<v0m!tMZ40Jl9T8`|)
zC$W+MRx)FVS3*s@<@zCb6`S@YY}!p55g3d;TLLFNBb+&hP%)1pukP?}-@9#JL1;P5
z?Ax|lyI{7qd=4TIW*`*FhX9+kSG$D12nW-9;L9BZU61+>9b}7OKe-FaN1uX6P(j`5
zt%KTur{G=!N#0Rbuor$Zxo41_+jxR4ybm$wA^5$A5XC<{EMHrl3r}?!tdaTp4<0<h
zO0d2WN{=n{Zcmmqvc~N&t?zO6!QSnI@P%%&=&nLy7h)NeWMlr9SJS=h`-kDiwqf`b
zqb!15ID-G>>A8s|nGZ{R0E_%g7gBcSDEk;op&|7#w2PPX<8#zC)NiZt&zgK_L5Q@F
zfaAa6@A`bWg>cjp-P%?!yyMY6hc8sIF~sHNY(G5Kjgts<M5R~DpAF60O?Y>yb^wnv
zhL-K>f~h0yiq#vTWB~H{z0Y*xt0y%o{kwa#U0x`|SK+%F((NLx#f!qK_XOOu2iyLZ
z2WuVB#vp{PsKYV+a@Qyv_l~iRumYcM)w;d#NEdJaMfk*yd{zsW;mNjq_$)#@_)!<m
zmhVu{p6I4~&(i5Ij^9~$Gat{l<ii^jS^a@VhRaVyQAK#8Dj$Vx9h`@!*XF}(^vqr_
zJ+lO_lv7zN@ML{H3adJJo{D`Ki(Q02=HmG-df*&93Fku(QSK{V1b#SF@cFI*c!qcV
zp*_5^ztiwSDa(VEtZvy=@P?-k9_=!qSS$4+%qAoLEiawl?A7k}dKYLH%wb7w%jw$c
zGuz(%1G^c1x(BED;cg_(asrWawC!HsNwh4Hsix4|)3xip@PS9$=sijtH0&K2WWE#d
z{tei?ziU+T8QK;vJlRd{`1&3?Vr$WcX~hA!fc3Gv*e4)}=k$A#0L^`HtcxDJ4$m&Z
ze{}mS{P*#0Jp7vKqL4GZOixzRgLzcN-@CBNA9iW?V7CV~(gv4k)m|9eLydTiTq!t;
zeK6pq7Jsh`uTq2W=^BC8NEEfxV~_2@asMPB4-a?K3(pdV4DG?+D6Wd(PhFHSaEF&b
z_3yff%y&?j{T)iIfFQN&!(<9jz!~Qx-EXE+=HSKS1{*#M2;FA&G48L+F>;Q5+cy5B
zUHo@C@cSXSx(9{o1^I9do5dDHHtcI^WM5)?d9soQ(?^7?zYJx4WJphyu~m)idB|g9
zW-Z?r2qA}Ecv7u~I}q!+K01S|eV%#EQxdO0BY76qS(MLD)H>gMAEpkmlZvY3<t$S`
zqjs@OPD>3zBT~p}(-lb5(}&sW556CIR9iCVOB73pA~k3C>}6N|?T4XX{PDkeLd@aK
zU;g$<)?Sb8+Sqgj3c>uNke82>a~2y!b{~MIayY9F+WXjB?5bsuLa{JaWc94Z!!R%F
zVQtAg7`b79twQ_NfWO_)hiLb6U@U+eaiVCe&Vf5}`rvzQJ$e%EhI05scR9-De2B5U
zAHR19zC3ws1-#o)2Vc!$1GHRW=YF`i&A^902_x+JgYeVIIOXqd3*(jFvf;|Z?CSsY
zvANo^84tme9eu2OBTN~9;T+W39erg@aC8qlq9@sn$v-6FajkD<MdOvv!_?6ghnm>Q
zio3tSBJYz%TgiS<rky_r+Qv5C13M|EcqK|Tm^B3RP|wsIItc3q*h!d*9X_88on$8u
z!(L=m3DHf5M+;v*!ZVm5uN?lW^}%fvRf7{#QG2x&9~A!`qAAt?8ruucCy&6NyLwQI
z81PvQ3;#Y+D+xb=J~(<qJ}On@{Wm(%Og;n#%ZKwuAl6sr!zP3wfg*M$+8&g$Wk9?K
z#lVGLXb4kXqx-ar&+2Cvu;0O<uAWK+Ak+H3eHW!|>_H>66Wcu-{__UJ4D2KDHDKj;
z(b7n5{=B=8(MMVGJ&q~iH#eY=U>{){@TtFe@ujw(wr!2TU-k^(g?8kq=RNrcQQlFD
z`?PX+cMpxypQiM^@fU7NjaEW)KFrC7=3<yLCXSn+31xE+C1LF@=0duy2R=N+R<Vw!
zzo=cCd+__L9nKtkYsHS^I0Dl~xyG*3N)f{N;2y4>eupZvV=P5<tT_0<-~)pP57NJb
z5BLr~Q1L)7N`<jw!~(O1zj+XOb{1=ASHpP&pSuz^viuD@Be1;(F0F&b!>d*zl(=~I
zidS&JQ{Kqq@R4!|gs+4T7vrBzZQbx;w9twnG6oA#tbL(7{Cx6w(wE!`xk&z&0pHF;
z`=N7e2P)9~Kf?I~ufmQnTs*LH6?+9@+BbRj^Hr3^iDK{yEWn5Jjc^?vM__jk+}k-s
z=;G<gIFK8VnlB?jpo{Dv{Av=7<-Yd5{-=*WaQxUe597>-4&*}Ooj0cBv-1ufhcBj(
zdcQbrj5rFu>k*#Q*OH@fKWK}+Cto;t@Q*JYYP@M<%GU*t=3oW2YzVH%hgyMzA4_qw
zfIF-X!yl%Mz@OW+QEc@C-Z6NbgNyIAAxFNFGYp42v@S0@c@VyngB?K_-luuVQT-g2
z^QK2D^4<)Oc4PNC>#ilNeGV)3X;VF3?@=KC#xMRw{2Pf-AozcDZ;ZFd!t({`%6QY`
zz4gW0uYGNmUa)^vI}&9Lbe4bV?vBI0d&>$SVEhrz8H4(A_%~#J;wwXsBr4!I+C?o#
zR>Hq)^S$4Hkjs-JIjrP|ZyeLb^2z1g;DD++p}Tr=AeSJ(jowiR3^bNiz~$w?y>ubF
z7|t7o**M(OdRFOJb8+XcgOpoX!1lohdr(ZUaQ!Ygr*D-AsGuGf<%Wx4RTyq3_1eg`
z{{xM$M)nQ%bvz(v^6&sRsv9l4i>FS17WMq_F;;ODXDQs#O$)3C*j%<2f<y4(Fq}Qs
zYpTF=*}3&k!Us1PspZfMVLZ#PfE%H_MgJ1qg(z-0ob(>iea|(vh@|%Wx@0ahUja@=
zp1J~@Tn{tD{qU@p4fR5QH;TwXcwvtq<%1}Uj(LVw>DV2dBX=OY9PAo{2f7R$Ui60X
zq__eeM%DA#u5!d)`EY0V&@n_t;_V-C7sVv(4fT2wRhmPU=3GvPope|ZQ;aJ1y{iAB
zEY}(3py$IZ;q@5EIsOke7e3Y{%KC>FF|3h<PgB)nSoNp7is27<v9Bwiw_tA<j?~7X
zBtqulvI955A@4AJMZWwB_oqyTsRn$fYk=;4UK@rdshKM(;3<;0s9#^Wf%PRfM&Lm(
z;76!43j65E5iIA=dx+MzX<<A=THk^%yyB^Ydw2oxbNqSlo^p5-|Nf~<M9rpi{}_b1
zF9psKPWb-r9-e-6z)O?)rGJsh+?I&^UwxJ76ZjWHasuah=Pb{=vhnDlimIg*RZ%#j
z56y(0&VHfT>rn58VR|v7!V8z0ZU@1oJ1j1xr8AQW(M_fx<Kzv^mzKcAbsH;JAX^O~
z9(o^Vd$rgb$WO;#!IZlCDwq~-Jbakt-bCvadn<Y?uEB@k>ai8C_Ex})ICl4<3G${#
z2=LE#b2kfnSseKo`TeaO?f$TT5%<F`_VYhW*KX$N6Mla~yrng+hx{#p)>f2b{#YDI
z=_}b(>EB$krKZ%su6pg(O{G<}{?e*-{+im7+EQ_M?H2!<Eu|$D9#MYGulvK%c$;50
zI-(&@Q$TOh15rcXZT3g#0UY0uKZsRElPxiS(6hN?Ln!92#o-ZUuCJ`#?yo8R=+@Gz
zwWU<qmRf&pbwz2FRZK}V63|Oi$S&5UhCnPHi!=nHSe)NT1R6r&WURsC*E@87D3ORp
zbi<PfM6iqTR474h^!Sspq#g<unPs&4lh|*+bavBQ@dV!6jQ2K#j4~tCQWi7tG!{xk
z8stkYA)_fC)SYBqTPlk1_`{KCC>Hm$gmgX781mo`-m1+Vo8rM_G(_dDi!>OXh7K$y
z=1(MJMx+IaL)Wn4>ehxpLsJN!FKut|i+8Hx#`<_N7A%#`qgJ%0jq5VA1^#96)=<nt
zmHM08a4H0nQJg!xg62?%9<SdOqN;c&u|EFO?5(V}BGjSQMI&g$n?o@@+h`Gch_Tw-
zK|M3es^RKUDWWlC_;Dcg2zFcOPLI(_R|AG&R+Yj#frNofnP|2Kx+b(c8HzO^9fBrd
zh;`H^HdBeAK#ND;?T=7L8sh#yqOk$Vrm|ux5RC-=Az~xH?nxr|V3B@3o=h}^Ov1Lg
zOqk`=eoh8YAW966+!yl1>ivOW(5j*>5;U4PdmA-4&>_7cA=q3rdwnE*Gy{4=B!YLh
z%C@Y<Ss6%#Jn?#eA{1_jnIpA@7`ZAG3T}!gLfZn-WJu5GKT=e7WphVuvK5)FD%2()
zs9fT&M``S@kHq4w{vb8oe2BLX>4qXu(9RyRbTX%NU6vu;+_5I0ha_9^qRkeDVnKCW
zT?t*dyfqYR7NaETR>Gw-)>5j>(6U&>SWA;7xP~H05oAvq{a9-hMFCQ;H54$Ez7XOg
zh70KUe@Cprr5W}_T1sMp=41&yjzVC20!3vg$f+;7hNIsSz<#4tz*!b)jdpkhAM(z&
zCUE*Tgo5-~RBwue&E`}VN>QV<w;>*D!1lHT{3M~Mp%I)i4aCUdNJ2MAgrZ#W>rL^5
zQJ)NZqHz>`enU2+HQp97N6GLPF0fAv?Ndwc`2%ve{3+fUtSZ#riX#@XS(%QBke*az
zxiZ{VPZnhG6-pUVtOw~3h=tk>p`iUufmkq#gbfCafF~9}smEu2I1z90(@z}iwV`O#
z!8NToa+@O!%~5J>JWS0_B4f3LTI#VOem&XHBzdGP7DR>#*j$4AjRpD3^qOS7;V3fc
zM|O&!Ea=46VBZ5#VvY_!NzM>yC&|7wQYzvwS?m;wr6LLJe?u}6!dgW~O=*f1`!__8
zaj`+6R%*(ofPoyUQ`e$6!8UQ_p~wXqXRJcUrdXv^C8=}RA)`7`8ILt?$NCz#@S))E
zkd7_#)FT7nK$0l3MlD6d7>zVU3}Qf!9%-d#C4p)>kUZ_%1Bn>TQ|yyuIaE!d7XOwI
z71bbuw)IGlX20Pw>x)!ANJe5t;S#?&Q%kGYs{$j`(rR@0>pKi2K`hjUv!&e=!Fh{Q
z11Df**&6@0(k(S*)m8pl-{w-Hd=0fENZh_2RTz<Qa~!J(B~0~FBS<B>i|Vxz1+M&Q
z1nMP!IF+*yETZ(XSZmVQ7>_r5Q1#+0w2I>LL9$Y{$w8(Z4-2|*@z3X+Kjbmh3G#be
zJQ1{J#3CF7Ir@_2`E;&Fv50yYnK<mXr&Q7i`;mP0p^OUbXOM6n6bk+ZqKb8O4UK<k
zELh7`l2nU<deL$eBc@z70;Uo+xVZNhEmCz#Z9Kjy5bID?3Rm(~)%gFqQbjeb3(=pg
zwd<EzZP+BRV-4wS6`Y~!)zd1qU*a7VN4&t<FKtrTLVFYG3xs#oNX`}<`1R3%3MrDU
zC`<79vTFbOvdU6_Ycwe_iiKV?!DJ=MLH<llE#lZs9Ke)r!)GT{Obc-;<D3&9fZsF0
zGY7voWU*w6KTO))n#?4Y+EIbk&=gk&b!|K*cr~7o6NbhU`?@|F4;blm5Xf1%&=T0i
z8I<J1mO!jAR7NUGsB(d*;v9GKj?$Q6H`i9LE34Wd8g4>fd>B<wP{q{_5n|U!B{?An
z@2EeRq{nd>P}Vn~auVvwA8%;zgoSuSNY~J8%`*~rQfx-ZGBAv&*;AY)BqUsrH7BST
z0Uc?M^yYG*H4&oQ_-;^&Fh$PGCbcB7MfD*|?U^Ip5l)aA;;K|9=Aqe%Bq6Q828C8h
zA`$42LQK9H3!xsOX-Jb)f@##hXkK7F!AL5?F{)tcY7=Wqh=vmg35JwOCK3c_#ZUy}
z4apXPNS(iV!6rU%00@bWbPpa9k&td(MmR~x1NC-1nzD#Cj$+~va6%}wI2h5%ShNOF
zvG|1KL3WOXxVYYeW*8zEl~uBuOnhpm$xy%4)70pec#t%OKP=S%@g+hZKM5fZ>W}&;
z@{u`QS@qN+s=~iSTAh9lU;GnI@}lK_Bp=~6zckU@UJ=DFb$dK!A{PgOCLM*Go1Mkm
z1i<u1Oi8sc6SX5*I94Jkgwx81w_41MxBLyL#tgRsT`VpqW39YhVhGG3ZEFf8NU32%
zR6&E{sLeFM6m3It$G;wtn^Ue;E?g|n^iVWxNuR<cYf5bal+H0F^*F93$JqL&aE-6F
z)L&6nwN3?tY1%`@_nha2<r|2_;sOimvbyS;bd$D(%LcPU{;K#^9RC^=PwOIy5Xt2Z
zi#9Dtf3(%e2f?u%^<GZy^v;;QpsQ;VRQTqIX+(*6SQSUSB}ykgM<FQY0Eyvt`KF1|
z%z5oEvf6@;jx<<Po;p&4(kqbQ*0J^cBGsTalpBjl#mFh;kWVebKM^6_5{XGV^FQ{>
zONB(DcA~sZL>ihJq`hi;64oN(ULT2ZbRFa_I05e4P=E@Cs4dxGc?>u(MJ6Wo#mCDd
zB(E;phUzpCvV=@iBpTd|&@rS-s3Q14%v{yj6GMmsPYmxwJ`=y6iyFU0G*iBeW3Sq8
zFXtW?Q`D|Csq0@K(9uARMm-IFf!q+L2up}GE1D-wggI-J@u8;MQi6z`2+?Q+Lv9wh
z4Newtt64fIgxZtnI2F-N#4QKXh{v&Ou?_-<7ErSkXcjqbYBUv>xKmSB&pnDJLPFJN
zkSWNYHL+>X941ruW!|tP%OXORLNTHML(xa2a*=4w3{iy~G@R14iDamTgRFFa7atZy
zyISTuX9T1^Ibd|0mlny=I7&`%!fe<M+hE}OG)?c<aF+lIPXUqn9N1K{c{9pF2~Sn{
zNjxC6yCU{ToC-!a{Z|cK#u2K)ey7YaL0;h+(jPa)6Za@J7*eXrrZvR<ZD`^pLSgPE
zmAu6#tBdL6-xf;LBLq+oI7e90fQi~7hP!IzyhGc*6aTgaum`*SIs!$N)ujnzBs$D#
zYIJg0ky(Ddn@*EjxK$X5{z6mDbE_83XtLc9g|~3*P$mag0LN@hQ5{3jXUknv^C=b%
zGKT6+@UN3_%~Fo)D9NYD`D$6rf^{~d3_#9V7ef5nz$Kq0^O4wf>q^&dDP2!emdigW
zqJyEdNw-in#YMqegh$yd4e7VcX(neGWgBCw9GhX*aZb$Y&^M=`uwNzbi9aShLY;wJ
z7nlBR#l+*v(40Tw*R}|n0bJDBulTu-#Pp-nu$qu#Sr*skwm>3n7S<;XX|V)w-ZYUP
zN{$>+9Btr0BY6_T;ZP#Y1C{PBqG=~xMcBNUupUszqlhK%KX!W}hlELQ{!8%~ikVF!
zNK{8dibBXwhxKHtl(tI{u|A$?3D{!I#7w2TlhhWQx+ZUspE}0d+YpLIivkvpr!iE7
z+#{x^&J%An0?KSKS)DV6oU$Qo3`e5eb<Abkn#$_66=@Pq=zCRNb6nyNIlMr!KYq(f
zsR^V)((&WKTM`6R#^cS&)^uQ(iE&#3WMSwYg;L~Y>Y(}6K&l|KVTOl$iOH8^8*pN?
zMwK(h;VMh6Y(bo4`t?norKVINt2$leA}hhu7>SBT@c0E@2rDM4pm9l+Poc1{vee<X
z<yNwuY*FKRVpPbdBcpjJ$P{;fHsNowsdP2hk85Ww^OG|{w%as?R9Lt*R+}J40MeYG
zpbC`;DQ%A!O%=in)Kv;2^iB6ciQy6`LpPy=`O}>7I1RG^8L5dV)*-Z!Lufku8@%$R
zj$g}!J08U;X(@%c(v>85U66MIyjHY?M7MNg!~}MCXrnTn;ERXMu|T4OJ9C7%;AmfZ
zoXqx@AgpXcGdt3txbTQaYSxximTZwMLQX`d{~p_bQmZxFcuI{*Y(lO}=}vbD)s*Fi
zqLB@)!O<1`oY_#Pl|gz;kH!thKoecDC}A^a5yZA*ipK~|2*w{Y)dy;Lo#GfAr3g0*
z%F|$WS!c(>X=2+GNOl~5`i&Nj5`1<34b|1_tZqkIL`$r9L_unFiadXYzeM+E`2Bd;
zJ)yE%W#K|A_AH^ekqFR8jjyO<(jInH$&GTg&Uz6Yb0}Je^D?XEQGg3qzd<Y1A^M^E
z1r&WC!U{%!qH!&9v=I>ngCaJlAT85IOi+W@snG{r7CWIzT#M7DRP_O5fomuWu`!A@
z%)`XNWDByK5GwY-bIwzW+d|+>4-q${>lp4Y7hNWKCWF|7wu2!v;%l~syaR$Fd|H-n
zDpQjx#Moi^TSB@KPlU>1szoTnbOc(hkbxPtcDORrU~yrV(5zWNZJ<##i^W(fFx+mX
zGtysHTe`{7Xh-@0_X=>AKufDg#1OoliO!NSJ<^EiDG!Gxp&~j#xJ1ZECSv~3ZW9e;
z1L(nB_3aB621s6@{0b$E4)JnJtB~!<dc7eLX*H!pnO<Ufb>vXW@Zeffm9nO_mVw0M
z%A6z;eQXJ($VEZnKt;p}=9J+Yr(fOq)8NKGkJuTua29zqtvq+7KES>I)Yz@DdO{SH
zq;;Jh_Xdg~+PNfEp|)x@or4E-kUBi(QYKuh3bs(ZlnN)CCLY=U*iq?G715|bW2TAj
zyl4xyiE;&O&9{hnGiE1q@cfzp1wz^*G+-kBDI5-ntBKdS|HO_Ig{}FVrW0gl04dE-
zJKDVDCqTnY3^Ey0Qs_+J^Ke8A^;j!TAH%LwHl4evgt+DNt0WdwVw2pAZ%<Pb+}&bN
zF9FH2&94?N@znP`mLFWPkjGKql49$*0bUbI%f%2bLuWpfNCn6Ul~9zMIK0q0E23Fu
z&#*8ygG<4NXeeOEQ+b?6_zE*3P9jalCR8w#7Pml6{?TM4B=or79C(p{AyEPM^EO7~
z^<?ny7`n$1?FgYpYHf+@hGk4xo}|p21;xHicQ~Z6aXe|L7ScqX#Uj7OVSXMfU$V%G
zmDhCW*lf=9QvPt~y)A{%$g8zv1GxpHS6~7(BZJ6sf81#SbDiY~M%Y*<4M0$6&Eh!Q
z{&ASW4bix6WgfVDM++BcMo6$LlnNyXuukNtmBt$4L0e6wxS&bvL54yOqv0U!Z&i=1
z5rEaS8tggh;r5BnkuZr}yFOdL)>yqXQDtRBcg!DC6ts|8O{`?KS^Sl0GhvaHNDd5a
zg^6`-X)c_?gcA(^x@1dBhY$^@6xNk)@t1DdQoV%`MW9trnrT|X<ftqut8yZHhyBV!
zy2zxe_{f~sWXU8#p%lJE<AF+tBk54EhEiqu#IqFdM#>_YKxAe@Q+Xwg;{pj`9Lp@1
zEtZ3uQejBwWy?WbTU}KvqxohYYKB!?y~STvwGN-EEUl?=WRqIfm}PyCZwmhpBpSJ2
zoSeM^Tbe9WlpcI?oo$@zF0;Vad4(cyZ6>vq*^z6G_BeuCXX;>wRWwnM-R}q_;5hP{
zLP0E1$vQ+SqZ?+*pcRKe=pj?$q%EKrc1mJ{GNv+XIN@n-Q<6MVPE?>vZ7gB2f(FeQ
zq6Vc>5=J@ZdbU&mC0toq<R-%{zp|Q}qQYHzAU#YjBxa0rq-}0GpqEP=w1%7r>Dd}F
zEA3L|y^8KiK|)EHI$4k*a!Of&kqJ=KGCTcrJTDB-&C+8L)RX4$SH+Dos*RjdW|TF7
zJ;BimdT<bNI!I8mt)y~msdUwuNkHNklG$`Z*p?J=22P*GM1b@~DlXjEB12K26k*QU
zebqCrC~h(ZJaNt^mcl6#=Gm25^Ea9&4vW}ffVAwQ=1kCG51Gt}QM{RoI1$daEcSvY
zVVK^PY&l3G$Ro`T;eKo(Z=ni4%3?gAYD6eW!1Utj<j2+h3)&aj7*s@ol_rZ2wb?hG
zU0H;aG^m@AW0A#T+q~2Pl<OsAx7HJeGlT*l#n2gVsgHzsa*Rhvn&vhNzj;#Jgd&%z
z?U1rX1!Zo#I1=0u(h`woYjwo3PO(L_tV1vzS=NcT0|1(RwKD=ZMrsh|SUk!zVs(=1
z*mAqMCJxPLqDUArE$(>2bj%Bvc!V+xb|*<8tD(?(G}<McwUZqxOVhHgC?cttN^bHA
zTVGRJivVE#TI3Xh+oqf}eK;+lmWEb|6C?l-6BLOR<o@)8?NnMImp|~7C36V`VbEoM
z+k?klz%&(b4jIY>=fa+cd9YgBLX|X8Y!I$4(}Ow|8n8oe{EvWWmB=K~G*6=HEhK+8
z0y`@Wrf_Mx!+|^jMJ1$w_!<X7Fp@WviH^|5mO^B-xn{K5+T2V8;1p>zDIzDW2shYs
z(3IRbZiJ9(LJbKL(x!Bv=_@_j0)3*L!Uc<-CTiL(&fq>!oPf=3@mRFOUcn$aqo!;}
zsT#JXr3XAo0Nb8IX`W$d@kCz1q?uWMJl~r*UO1txyfYeb6YgaR3n*&XJq5rr6@;}+
zA^lJk;SP^LSuT7&FLaL_d!83gT`j8;W)9*MJ&+0s|FiAVc8X#pUwShUr6d^4#w}HG
zJFe^QnkW)5EoQp~D+_V9Bsyfu2KOa#PB!DKHe{4uKh7!0=aFy(M<jt33+Ex})ry7E
ze4Mr)-z<k?!<b^Tq&p1ExQ|fR0^jOIB%z!h%?X!&S&dNo%jdndvdY0was<bNA4~ps
z$#ZBLqCmli5SS~#Hzm^At?r0acVv0wOf%tK=HJ_rNsZGiB8z5Ss6N@4p040u;xNDD
z1R?upZB3zdD;aB!#oJ;^I`%(h1tc7pF{Q>@0zo^2OBeyI9Xz#BE_^TtzeJ~GUB}v~
z$|7>T1R7K&$>F=zTvdjcnnE%5H+P@~V5J9Bu%?4+poxr@g{tqu;p`=k=w`!)8xupd
z^hz=l7i7jf8pE}UKUAdeSf2E)F``#+eIyiBbCVOcU%=C<#wmCRoc|UJ*d$g|u{t-+
zd7H$lhmbQthbO^{WpCA$>q^%-?QW9*N)m|bREr_Ug-pMOnlvfmGZLQ%%)lde`|4Z-
zNkA?aN31K`Qo6RbY+GsCsz_lBdQ9aWq9q@VvBrQS@SDC|uXc;iVH8&uE|x169PC@U
z#Ca9x2#)+VYsmOw3<nVN7cN$(nu|ZtCcR4tNmjo&%QA}0umizY<dLel<*PAiOeZwS
z^hAS<Ec$6NjD-Q*lbxK@&FleBes)SDshrkstlr`nBGn75<kOprxlCy%DsmXWnYljh
zA)Odc5Hr12-0MsD-(LM^CgzCvfuFC*GO4JVAAV~9O`-3&yVUV(*+ficP9Zzig;=HC
z%8uO<5~~%RxvrIkh1v7_#6l8VM9ZZg7Vj;h(h=$g$OEBVUt-aql~Ud%4>iPzH4p-k
zpHzk^E#oPDMX+l>*OzUnsdY@LY)(frFhJ5QxH%yb)x=T_fu==%6RKpDzUhf|uApV%
zf^3-=&S{ouY*@ftL<j^hS8_qK2cQ+~$1`n2#1!Q|0?CFzQdbgzYpls>VHg2l>;=OL
zU2Pr_%h5K;r5yI^%aR&0))j%{?rdA=KykW^z#~2~D5HWyS}DMsF+FU%yx5{!>1W|+
zK=E_ww!K)nG{XgDBegW!Uv!OjL9na_S()P3wL`Av%&91~`O0jXWF0d@*%_7hFH=Ux
zj26<1Xou)&3319AjtK}_n3f+MiP3UgN1mxAGabOK#bTpzVW7E0qwt?xqfxk&9#a!6
z&FIs(KIwWih8rBs))AH?kmM4z0U;H~ys8fce^6dfXIyyd{brtm&AFzd-X^;mTNA|J
zoQSt~WaKlp1X@jfWiJnNI*#n6X_RQFWX4hkO5BQfiip>EOM4o!Y8(n;a-R>S)A8&$
zbpgM>f-o?5{qt54Gpf4H4!){u7j^ZAp~%DSYd0cn;vRLh*&`wenP(32Ifd_tnZ_4|
z>4rymfX%tKXsMzV!hr~(fp92*Hr0gkv2dAVJ-M<D*PQjd*Xu&jGCLj4bW~@q;F-{>
z;$lZ27H8tEnVYDmW&F#W6mw|P7us>2vJ-NJ_zolSk#!9x2(VLaTjGh3pDzK>ouRRs
zXxtcgGA`!UggqCtZqPy4SMfuTTs0TJ$q9*u7Wr^YY!h)VESDq@j9WuYpwQm%FDL(t
zTpj6A@&ujsXqw~Dxga*uk|o2vIopl}3S`Y(p=Udqr4wItic;L|KG7=p4DKZFMG=xw
zH-eNS>k)q)R4|-jgY>|oy5dnd;4O<uh88^{cxbDT8q^w<rT&j@t**^(s-)zS50qtm
z>j{5b6IzmbD;4I~X<q>qUh{oVB+91zOulo8s7T%Z!}M(P<Q1F?8NLyzd1!U4z0ZK@
z-3eK%WwG1qLnynPDNxN5d&S8+%(d#afWtYQ-AN%i+^KBLD3nl|***VuA~TPIMm^l+
zB9fV~4SXH0Iv8t9s;VpnVY$}`##jl26beMfLRM2nk_#MA9X>YONVmO`0+g9RWQ}Q6
zoSU7|Xrxt-=q9aPtSYBcqts_n8nSX+2`^9RGtY?EnjI4O*+x0(8+-6Y(gE9HntePM
znO-DP8KflRtp@(jHyUt+tQ<i~>#E`hlJ#3VM(`XHYY&|W&nq)g6_Sz`3n~t#ROa#}
zSt3r-ZDL86wMsx~Sf;6$b)jau6_SlBL@?L%>p2p0H`4M>qovi(;}&Kd8c5<Ti;u*p
zI->W25H$Pc0E=LcwZn<wfG3s9Ete^8^!6=fwbndP-Ph&=n@TrTqX{J*;BLKokE$PS
zjGD6jDHK{(Yjp(xOA>)LHO1FT;I^w!V@T#$I)JrEbmpPWJS%@OqWIG@G_(m^iZZMO
zv9O>K@ez-$MQnshvXb)F{YA^i1-6PACihoZXlDgFd@^K3nl^#E!L-=Q$TM5LEYk?L
z#EY3&?QFqv>s`x(V|kKPOenp`e8rtiQY$6JU~Y$^uHoknIuXh=heZTLTKF<~4^Bss
zuSjWve3_f8vs@K2X3-f-w<dCk7G}4!9paOM4J6B}voD4rRV=dB#C(z)cc77hB2|Tb
z7B4I;%(${JWA%hRJ<^b)`g@!tEz81FQ};7sxd=M+COLwL&UFqy5oz(o-f48GQPl{J
z5>I@y;nX<$@3c`~uo9xo*!*G(UnXNGv(VcjNYo;e5I1-1h_pIqg1X$>Ol~mOUApK$
z|5_@Henje%M&{~}^bN(#9kn(q@d)W)mbYyC-LW{%>RXbdf8Hq+$F>AjU1_4xSzHay
zBq_6gS%baRTHI4_r7!ZyX2v+3i6YWo6+qKo)5fC@Jl>5eR^2~GsE?$*#5>(-?Zl0l
z3tu@&|JkslJ0~x7_lC7nM3v-;nJQ}TF~NPo!ld>~#|1eEJ@kNcbr!+A5cg;VEr}(!
zw@9<{()P|$_qDU~uQ<<I8YF!gzsNL}h?I9z*c}un^=Dq;CUZ-|Hu8BqHQAsS(E+7$
zSxxm?zv`hh*AQCNCx9d^SGPD$Rs@#jA8NKXV=y}XLERu1in&||d#ohnQe3-@Z+cN}
z$JNbnmY9`RN@_HoB^H|IidB~=Z0^`D3_w5kzc_>e?MRiLOJwC~Wrd4+8X%A!RVCoV
zp(E!ZYOW(kBYl0hZl{Dv!^J79c>Mw}PT+KqD-h!9dT(AJ7j%xj2Wej+Y%$+XE8CJu
zLoB{PQR>*JEsI<fRI`VtME6Hxswu7p_p*h%4VepPi$jZNtu?t;Vd?U>W?R`h+iH`l
z(OmFo`TBV@azaPqVuFSugHuhRRa9QsudWf|OFk9ek&AK3Xtfg*tlS?7e~K2l=bNXm
zEtW~ud<za`dn58S*p8TNOKTBUn~{nvOLsD7heci`JYeA<H&Y|sUegQJtOMF~jPLg(
zNl{r=QX^Z(?FU+$EcUJuf+uO`6rw~V(HL@gdmJl5&E4OujY{qPnH&rxGLc*@&P)>;
zOEX1}b5B+^n@pLCPHEpPSw`*wr7X!#-^I_F^gn)F$r(Sh>D}CBZj?yG5PP<%b37x%
zU+kfleUrBA?!Sd<0x3~|z)YYqwAPWPYHBOF0xl4VdQ4BhveAe+JGo>L=s%FcXC*aN
z4Q#D$QMIr&HG&dFO<?FPa&A-AtlCK~`6>dnSiT_CpmvI*xw{m({5+8uWz2R6PHu4K
z%Vb;A*-RLSXWK0-GI#Pq`p~KX(-&_$2od`GRhb}?zVROlu^53N(((@N;B*aeO+~_*
z65WJlOT?8D+ss=cwdz=Qx+pDQMW%@Hm5b@3+4e%GSxY#`={f6J(q~9{=V3qVU87CT
z0a5nxFvC}(H6jt!4#-)%%F6vGEo>nM3dJdf2!w~jk>Kr~k($Ovm5ZrHVdbV<S8{Ht
zpe@@5Uyj6r>>Xdk?OdhXq*%z2TH5X|&D8iHxlAJs&cKGBuThikSh=Kw$5S^sgjh=5
z=P2b@wwZL#lv8tql=fv?fsvVV(rlpv92j!blaJo9mzzwIbxjWuYY}2fkibN>i|myf
zPMuNXgnMQ-fcTXq)m5fZm>W?=x#YJsY;9WTFZ-}A&t{EeTjAn}6C((t{7;3YT8;GB
zrsOHgVQ^p<>0coawZo6%T>okAm6URw4{00gn2gz|?k;J`S!HQ?YlmPUKL2E9MMK;#
zlW}z=8@DwOp@p((h?>tO{<0dsab~v4twU`6;N~&UbTEs$#xry>l4$L8NX2jJ*l&9x
zm|3Xo&6TAm$`<8zT!8SgTy-p_vy7y1Ij;`5wcg8V(71%eEm6eH6)b!`>R-M`usPRE
z*`Q{-ilH?(R1l$5`lNz79UUR*ve+8A->p<ca*ysR+wYp9ovv+DNL)127qdEDQqsL|
zIuQje6cJ)MPPkz$R7oTjj;DbQ>3`$rjvWA$Rs9hema(!ZoNg^Cpyir<+S^!e^KUNK
zqvR{vR;V>SqLXE-5XwvAuZzzUm~$*G8{cw#<D3Zb=%j9Yznpuus#|bP;QC#fz72`G
zHLhx4h>t&1Z`xd4qpVI8iCnThrQ`S-ts0kF-gq(|$!oyf?l@*7@Wo!S>A+aowMGR&
zj^I4yjn{~6q|;5#?CVnGrojr?6dYp(lwCED;kS2IFS5=ST4#%_v&Hs8tc+a<<ReS1
zvt{z(EE|Inb48<>HnS11l1oc;ZfclB63#>wn5AtU!A%t!mue200#RiL9%060Y+_Nn
zo^R!tncBbu%eHjq>%R>vPkWr8tUn8))tdrJ4_j6I#M3!rEi~_&#JW^<bqpGFF1nzm
zY}4k-Qilad0?3+H3LeL@L@AXNxGJf1M$#!-(GszjMW^SDn()`&9fI%d8c6Vsp+jPe
zF2#T?Q*yJ#{ttYVlwl`&l0b<CBQ2f{Ra^7c7B0<OmcKB+Ft2Dq;qnCw3k&lu*%Auo
zZ44OV`uv5L=FM+0lCjXLMiIuxpMgX})2jAmOXe?GlsCUIZ+`W{y!l~jS_=PeE?cV%
zrZbO=*2gy4Yk=KTZI;-HSrU9ziCnjA2}&ZRm^V%ctbb;2N$EE?;#M{OQUWMjL?Txz
z#J6^I*l`}Q^et#7FNo3Psoe-o5bHZv+e}~|6fVgI>J)cuwmoaOoRqm{YI+BcsIB9M
zkvaFoZQccY3wOD&WMe>IZ>2p+)oOmHhR1;#luzL}J?^}_=Csb(q_iqt(I#M*5*iJ9
z%q?pZExae`dnsgxre@k5EpbTvQ@d5zA)Y|6Q2bda{wxxI7Aw5zwmYFSNx^<zv1cla
zGQ+Xf%17?Gu-LZE)eC0B$<_{uAEfx*5lX~~Bg^!76qzH)O)jZicPHaKuHpD#1NXgJ
z-!~vqSBu;uasjscO@0((mTe9>Q)R}Xurs<ZBL7HR;dRq#skXHtp_E%5R6wanJSo2l
zgR?}Z1RVZVkG25EsI+PZbzfce=F%#^{Jm)6wpgq33i#E0Yp<ZiE{;-naghG$CaDpX
zJz7h}2RnG2H{I)&7DG@CRl<;nM4H<SC5=+<YSJ9)_-B20jx}18=&0;Epr+-OiS1r!
zr?E99rsYbC0fmARXyRWzvG{$W52Ij3g>)$LC<)!R$!jj<Z)r7^IS<25JbvnWqm;?m
zmg&Ox*046Z$ufURH*K!<W%0x|r%P4I`6S~6r8aQjUL{<hGJm}!7!)^!UJkUYOl&P#
zqjIqHWUFZhM?_|UotDT^D1X)YQ3t{BJV}ELRy{4n-?0%Vjp7EmC5@8j(k}2R7ZK|s
zjS=CwomkH-;L!lS!I;cDLZvA-V^o7tu24H|+kU<yy|PiA(n9h1AVD~~XMci3h@Lex
zEv;2G4x7*1;Yd8lcQ`0%Z4HUdM$KTWg%LxfqR4OK?+jU?%4T)3gJUtRvbkE^g<h)r
z%=Vt~28(@y5+R`t$yhApNBRAa%BqYn*_k_hDrwr3mCQf%WNi_x`c@ZOUC6QlisQp&
zezaCQqLIcX+SJ@$(V8VyCEaO(m8%K1Q3~S~X2}${QWGhXiL`4H@oICuI;k{sBhfT#
z+uplNa%r05*L8WDp5{gqyAX(v8YSd1BOdlu{E#APHJg7qi%my!ooA=2&${oA=s@Be
z$BIOEeYewIX*NG-m*L7y>teH5F`6zuL?WHLO`}ZWBFjtVGF|Ow(-&M?OJ8c667e?0
zk+61)#k)Kcm6p6W@(n-aavmisF}q(fE#b#Bg8Wt^`PU>U$2{#D0FFI?1*II$C^GEj
z_=_8AEZDNi8`7dlsO3!CT6NT<0!TV?r>o!o5Z1k#hM0l3oqckAN5%1>mMpuMr0?uX
zMq}Apw-r5>ff@}sd|_&IEGvY`vKU+BTsbzEGZ%?PL<$jYfg!FTJp!hQC7p!IXX$vV
zgiHu<EW9FQqU^-X?R4D+8!e86U=neTR1Gc}s_7dfev2U}Wr+e^@&i{B8i<SRfIDqm
zpnlXw`Vdrqg@3WNi57u)-9s5-<m+;HeA80wGR=HZBBE^n0_EIv-w5kaz&vgMQL<B(
z^eTIa8sEbJb(l_j-$`{ZC6ma7w7<V6e-{dZJHLaMmOxoZIh-XmYs<<U3$?~ya?aOs
zN>iBpEYjPl7P~C%_i|HpY+d8BRDhPshT4OKRCL-KCV?ml2iK8kZt6d|dz(We$h{L4
zUxxXyOFQvZZvL8S#flU<HK&m_Kjra5esE;p+RL|s$fwqa;LL=?bVY0ncYMt>Ivu^^
zz&!oyVCv^h)23Q;gzpO>oo`!Z+XPCo6OhQjCOMXoh$KHin|1d9!6vrlAwFRlm?(m}
zh)1&0meQGt9?CASXcu6;Iwi6hZM2t=A|%tlI+DtWfmAL~N|xJ}XC|oF#B;D<QDNHe
zqO{)&JqF*>jM82dG;doz97j6eu@)!G%@M@3wu479sZ_Oa#drJ~411pj;zcwlYSVU=
zs9bIp&b>%2a`$TCnzMGM=fHIf4qLn>(#h3{qK5@2%k~j0xpTP{UNIC+n8j1W7vWGC
z+~G-RcCG`l60>;L9PR#JuOqt~AvHHgUAKc8xIP|81o`eGiDavcr63KG4$*Gro2N;*
zg++EOqE*=$A}x+13<T>VB#Ah!V55a<C~HLQRb-s=$!znJs<|R9JXu73sVWe4CMA>G
z#ma9mch%-=D~T%%GyZ0xl?nA#k^0F$S!`xHmqXSe^Tc#&hqWnr_Ps8}eeMNahj3^+
zaV@ERy2be>?2qu6h&nSZzhQ*z6mzfBY+rVBeB?S3^e<Q#B*mSUy<|Gx=%d;EbC@ma
z5@!|rD}aw&!G&&*ICDeNawy3xq%TK>S`+qyC;{S>&?n!~-pM%pLk*PKRe;F5pf%Du
zKM~qJpX`_5{GwnYzI=ILVtid#C=6<|^O7o}LiJk`F`i<gY*Xi)YZ;#wuxvkf-%{pQ
z0cI=I%}Z=Yh_#!8V~>ES_*R*@q+Q}fHGsfB_PB`~obhPTOktAWK$H7~q&rB>y&hBz
zAds1mX%p?$+MKCi<$85BMNKY+;-M${P$}PC8*P01D@$UrPulmt9f?Oy(=7YW20F^Y
zNV{q8S>76zNR+S@4YkX5@wHrP>bv#LC{c~@wZw69S$jaK2@m}1%X&mvQzoLdR$h`N
z!Oa*Ct$7WZQZU`=VrzV{fl6F?EN#kU*gZB%a^~Yoqtzj%#HTdUSt0YYq?|gjP#R6r
zK?{%D3R!7>v_!1uE)t)B;|mDNN=r-a%v~ut<p5e4Nj7TQ5(<yAmeUSlFHrYZB_|*b
zhnghT?3TDD9DI_%VbdF8XGK|lURo+51K!Gx_x8rg8TP80#h9KzZ6$)z=a?-bD<3|t
zRbBeD|5&EF$^5d+8haaJcS<cA?_-tR@@;YK10oIE%<o-fOB%NQq7{*t%O^L)MMtQY
z$I|42@My%jq}y@}Z0@K@rfvM_NE>P9A1x$tRT&DTLe5~IbLzN!RAQ}jmU1r)g>d+;
z@yZq;>1&sik3orXr5Mn<2z_(U{urd#(=EW2AXn`XA@sP<*i4(D(zAXk)!vO>y1Xra
zIER8XL+j+0dD(Kr$)Zz2;#?19b!ON(hmMsYrrlU%e}vj^uLqjYuaTC~Z-2&xqRQOH
zRDnv?t*V{vSSq2P0)17dq0~Hf#wf~XJy}oK(r$w@b&y9^#de;kHd3Le+9GRpvk=D-
zU0K3zF>1yd;<c6Z1#`##?O9eFSqVtymQCg!A!yVm0-nrI>*7?AORxpyoO?ghmd|p9
z6L(NLR;+O9I==hpa35K5Cc9HSC~vBBVvV(OgMZGp*miSQ%gmG^)3UIV;O$SFS_X#o
zjbIAl%LVDGPPB6btqt>ycq{jb+FuJb2Q>Xtf*DDC&aDwsY5QAc{qnRm?WDr4G1q*g
zeQ;Y59uCiqWAiVuBerUMs2hh{UmR6D80v}{PnfTOQohxgJqp74jQwR$9MAU$jIy{B
zT!I7*PH@)%!QI_8I0T0c?u6iryF-FIizm2~pbG?dcewNY{a@Vs;#NIR6;(U*_MG!M
z+NZmBdZu`um8m+vf3hJP#h6o8M>_Z*u9#sLz1MssWfC`2=6N`a{(~Rg<A}v!%|uGw
zE30!$;v&4+e`TMuUb*<HnT)c&n*ypQv3SL!UL0~~6pB^B)y;8WG;i&aU+7GqT^w(%
zTvu*wd;Yilp-U*mORkeTVNfgLxU%ea(<$YTiw!BW^KW{^G<Ks_JHhq78QjJeG2xV-
z*u08;xck{ddLp<Qed{sYQUOw8G!6gmH5|GdMe!Q=;#D=i%RhKW&6nJ9MMM9EDHSo&
zk|dL^5taxoTryiP8@9+xsmX>6EB*A|iETlmpw`tgMeBZBg1LnD>RBv##2e-@c)rj1
zQ^CY{Rfoi?8>O&4I(Qp};9eKMx?%(i+pwo3_?Oi4QuOGTcHCSwB{o!9jdI!_YX^{e
zA#t|+&(Q-@m<!8NwaKQLDzRL+xp#9Q@6QpR4Xc_$9rGG%PU|^D?2kX_HY{;6X<n5C
z{|1*@^JKxLQK_gWSF<S*p&}nEvuu_dVzG?$hiV)n3u1@C?_hY$n(UqfFBel4>OX&}
z^`YC5zm&FOVX#Zxut#fZ9MGK5{yK-@=-S{3MsXDZo%}=9vlr!ZGOT`o<Fck<V0d_0
zw{FnXoc87B${(HPJjAXzx2%6J8hLGkH9k2L^Xr0K5JHoRYEcqx<F}jIrjAh0u<uRM
z>)}ns1ncf!3G$~jGBsv$_Ffaa_`fDs3f&C*`<aorejJook)Ym;;6jBj42h{noe^D~
z&A(A93V9b&2rf?=4^%|djT<$iGbe~=aQNVm%jpnBwwM<kt-6Jmr&y?NM8h8T+SM}I
zQh8EwkZUtQclz2HRNPZ`(lXJ#Ab5)zuQ^RkP2udhOX0kk6?jlA$n7<suOuq=Ft9Xv
zxw&z(hd24_1UD%mZ|q~}6@T%d(3+VFF;SH8U)&O&D{H=I+`2uSBg(|LULRw9J`7@W
zxH0E89!&?=N%~)7OzPj98ZOpx<Tb?o3p_y9a-XU<O%!XeQ57;9k@q+_SkWJ~tcY;!
zjF<8pJS>qLV+c9Q<0e%es0h35l8c_kE;<sC^`jGOv<;Pd^O@x7=WL?j{(xRDIaSal
z^UD{f5RUH<LfTv*!OwD=E@ENG%lM_s-4V;f(+v4|L@q3>d_Om%g=mGQYiyluO}p7l
zh+@>G??rd#@X>pr0b^tD4o<4RZ8l0osu|&Q`0Op7w0;eu=JM9Ki!>6M$xc=g^?mRh
zE73xXB{oaPY`XJvw^EyRDasaRKkIIdf-SuJ$jHk%vzA%XPfR)JFjmbqR@g;7_OLez
zm+Ly?RwldC(mKL<URiWF@_Ud%?c7P3wVB=oc|NH9N`QRKcAl{GvGD_Hk&?P{Kg1F-
zMsT}2XlZzAL0!b^A1iRIecyIblI2fkU8tPVQ-hDpTU)oP(Mg7<eL3MBKV*@r1Pl&?
z-wIvw8*bH>Hp=V^rJFQu*OjHjq9v7W)xTs#%j`Oor|a1e1qDTo;3&AezK@)AV`5FN
zwEr5%97@4Y5brjV(WDfUM@+Sp<*{}hB*UCMVZO2$%H<Kv_>_8(QD|VQ-<;;OM&E(#
zobg~hM;v*R=89aYQ#vRq9B{hR0#V0=yc#(A?5E!q)uVZPKw8k~Ft1*UtM7Jw5<VeE
zU>fUC_g)DSedHHqQbskj7z;bT#%bu68F1576|k>Qy3oTaXSBpjt7@p3rkVU!W1dOq
zXy?=LUKOHvk1e{IMXVoTN>3|gspsi8dRozSR7`7P{nWdDG{8CVPPhNmySj&7r<y2<
z!=GZ&fFV`kbK8T#T(sYe4mUSz*xo_2K*JsX{;DrckxVmX^wid7I{y{Qx=re+L@?tg
z0%^<G@z=if)-P^TKg1MdwmBGbO4%Cvkk;hQIm1mUQDz71?y%EFHhMiN^o|lglAc=g
zZ6IlEtcA0ne&jyL-NO&x#4260;wO*T4Azt55Vcsxk+!D&PFAF8$`;Ad$vUwT>)2wk
zh5GYto~2TYzV;IxTJt%{Rz`9{X3$V(vL!x_Viwse+Fh)5flSJy3ZW<GcV|7G2C)(S
zs@*8rwmvOuOBO%-ZMn|c!FJ3Xdw0Ft21(P(ihic~C(GhO&Z0YAv6$-;l2eO%a<96r
zY6IpDf2HsL4BqD!{;{IF3P{^)=!X|_z9=@+a6KZuxLM7A6JC`{H$yi$$x1?9s3JYV
zxW&o3Ht<!IKi|_xP0yn*nWcGsNRRB6_oXEH^7<}0*7kkpzqAS#SyS~Z@iPZJf1`S1
zXoSbi?`ezhhp5eJKAix1#~$;AsS@1x)6(609_Mp@oMU(7>y>6d6H|{*z7d)DxIJA7
zHk2~>9R6mt?=l<o&&`nivZeo}T<3ily84P+*-O1rp5=pvdqk-aaht^rWa+og{@%t?
zIjcn%fwfG<2vcQG3mt^QIW3z`j2at<A4So3J!*RlXT#7oB*U*Sr9#Hvrbqhx>YvF*
zbn{lB2UEkfbknaS{P{n5v)B#rF0lzv;d|Dgj=M+GlNRP_xI3O`F7V_xMx;BY2Druc
z^)Jzhm1K~Or7H>=1_iOGiRXWgH$fanQ;VOuja)w9o{8d>tY7xAA3S{3!EGNociHk>
z+p$*T;w&S&!~H&9DHCR5Hc#A%8qSlt`33coSz-OhMwb?O6=9taXG6(I86i^edX#nO
zyEQ%Cr)LWayxA7g)<f}LWl*kUA)2k=-AAJPuRm_tq=gic@uE)|PiL1N8|zX(H`sLO
zl|R3ry{c3o<+e$_XnTWA@33MXU5!_GV|4Mu^k-+;&zlG7r)%@lYu~XK)l}|YR^pds
z;8sv-2+=I2B}A2w>TsCyrf3s6gkm@KE@H+sS2~?H@v@+CrzEIBt_>R2<ZNlSO^Bs~
z2vS^_C~Opx66T6AwBtDgm@hvYRO1S_uD`nmPbQb+x*pjKu3PXUE<(nmQCq!i<-=HJ
zGo!%X15vKeIQXDt7p7>})fReOkgyAVv}^oIOcZ!{D9V-1Y*Y95AS>*Iju{Tyv&URU
zg0j1rbQ<oJhD&%EQ<u>C3+Ts>Ho879X8fdAf3F?zb2U4&OUXr3zQ>RJ%gP_-ZOO<h
zN#Ao2j@Z8EI7c{=;Di1n>z3^<t5jLVl3*zc%acoaO`gU+VA}Iw9KPHoInK{rl2ol+
zyU&#sF6Up8TysFVmKFYGc$~jxhvHjBG57ZP-Knj1y+S<APm!nO@^$EH`4gFX@#9Za
z!9Ttj3y5owNBABpH2a`WcvEmm_|)T*so))3dAZ9=y8L@m3oP40owlo>cNcIzqT0oC
zeyMDv;)YhIYV4nbzGxV$p#LBapAB=xw!{s|lrEg3o6m;Cy)hO&6K>8w#?p#^&)we?
z-BF%t^_0M*CLO;P<Irg0ttDC)z%O)|*O8v+{)I$dj(o%9HQUlao?L01wyBiU$`E2-
zV?Pn8?_FDN4sE%-+j_Ls&MA)hw!JTt9Sl}Pa;iWVo^SrqaMB{=HWXqbpyL|cDTRXQ
zgVNwBRw=Jv-yZUyNvPwzh}z7!?0XM6?#tY<N%iy>Qf*fAtK4a-3nSQeuFhJ6MGq}2
zA+CJ(V4obn;`x|p5FXE$Cx>oS+OheEXaE2EM`CPxcVI%imnT5!;-5*pGY32&rDL<l
z4ZQyIhy!MyRS-Y+N-K!HMBYcQNc`^attXL`_(sx{svq4IJ{8)i%uNRgqd+}aQ_y6T
z=xz`fE#8N%VY6v0X0g8hynRl_f^*pMXM%1lVI2{R37bx*LA6g)O8jCfJ06RG3Ap1N
z8ijf^;br5k9naN%VdJ?yUs`Yw%`WjzU3s&Amzd0rH?xYxX3dr>R0N{e4l-4saqQlp
z^i+4jZ3`+NO=b0d1gE=FugQo131*>|F3n*M*MW8j)J3Q<>hERClIAw?bg+yg*HmEQ
z$kUEZec!K&;4*Dtp2<D3mior=D@2mOxhoGu&q^u+pP{@*JU3e!WZuL)s@UI;7bqim
zyx<R2=xav7GUX0v_uD|0DdX<tqD4~0Dal%Bw}*Zjp{EJ>q8a^bPdZ~~BgjcX`p&{E
ziziu%b};%Adfv`}p*iIO!+7!38^No`5%=<5?jKsEnM!8uA%COHNuUSK+Wl|~Ei#2p
zNK>408h<*MM)Ym+N3@hNG%7qlu71E6(aN%sTwdCZoJ)AQ?nmE3dO{1&dl<mz31jQU
zS<NVHA$~o8#});dO!RW-_U=C8;qZP%aTOPmuukGaBt?dhox4a8+L92Q^^^aO)TXPL
zLy47x$Jvs@u3}`FPZ10FT3`8Bs^m0zf_`>57PKcinIy}q@=yEMdm*kRO0B78D%z1C
zgZMv9Rbg7&K|M7!MiDZjKTJr|Do6T%?S0@9ii^YUZw#&03eW!>D~nC=2+_@%uq`$W
zE{ZX{!64-K_#R#sso;u^CKf7VTj{FtD|Far>A4kMD12aB-)hhzKX!10O{<y8*zf8G
zZ-c??7^o(52EyDduj=3Vp&#C~7YWg)DF417h5tSU=Rmsl6Bq;0>1&MoOVu#y`QP<t
zo%c2zb`e{T1RDLfiYODlYx$Qe8CYIN<aH&#2lmC7dRIvnHTwDLhqPxn?BYMno*lSq
zyTt!p#jQ!c)8{F=^FPNd=Z6!MC?tpBpR@>+_g~vGz<1-)rr|vJ7v~~%W?OmyFI^Lp
z#}m^P7;-AkhJSLwBW)Py=o-kx?|W}>TM<ZKyqPRoawmL9@a8RC$9M!I&Y#uirOeDL
zBw2y$vXJE#QlFs;R7S6uP}_RcGlc@QC!uL{aNf@yA(SfHBve;_JVH2}oWYkwcOT4I
z8$qA6#~Kw+qjk*T!Lg3M-jco!UThax!OEqaHAU%!=Y4`3)H?*`8UmPD%E{Opl;ANM
zI(H6S7Fch#C>Z5CqeoOIt)3PAbYh?|E&XCl3f%f{CeTxcbbQoJE`blNh3Ge#pa2Dx
zrY+S4430P=^I943auP5W@Y{gg2Md4U5dB32PRkU85tiUvEmEicBKw-u>My+s4xaSI
zZWRsZNk8~SC{@}Z&@>mTCU=>Ktw6K2Ak(<V&YZ3Z{)mVrFy7dBzy*QhFk3*X41hG>
zj?i4063c2@hZiUbcVl5izx<TLIx{Ap?9dXaI8MOBB`MjoZ&n!a5G7vrBlP0s^1MQ#
zdFa8NMhS{9dW9Ugdw{dt$>9W(+T5f6nF#R8mI&+0-~SmNnkw-)bz=4RBzF1S1pIW%
z?oE+@xDtvQ8jHLO)ox5h*Ms$8F<n<cbXCI5{{Dizyx+YTam39&@2$JCy~f>@7k+A}
zPd8F)c?fCt)h1l-AShwSml_uKhZVclUMbrK(R35$>Ylx8ueY8bjHe0@>KQFaQ5Y*=
z-eD5ok<5fsF(-nBxO@DP?n`u&nEg3RNUIN$7t0YQw0-Fko<@f|o1`0o>)r^8rN;v5
zSNIoh*|5V{<&oO3QSqq#H|T5_ttryJ&}AWWH%|k8m@(gmoORX)nQYPsJds=qN;bi4
z_@Oid{6rk?hJ!f`?3k0r2<LO(IdTxsP}m{U4c=J}32tpLP{qWO{4}bK#BmQ2u=XH3
z<DheRidFwKqxETl(=F$J7r+UQeDDeM>VDPfU>zLi+<%?Vl;L^sPYBWOQQNkxGv~jR
zFJc5lk~ay}p%)nadmsM^VP-y(X#eRRPplx>!R_bJy9!TFl=OrX_DJ%+ajzZ#9mDjG
z=I5;n^C~|V98qjr_HgAn{^(hBhIbtOZa(hHy1US_f+4<nj~f*h)f-v;R6tx2rK>L#
zx+d3B5tpY>G+CM8>;0&EU28lhJduI6)PW|15_ifQLf>{#E$Im92r}R<;casIS;_nb
z+rG9c5u<GZ-eiEHPo}cnme0p-!v-?##8tFhOzB~X`<fVE0)17-HL&os-1B=Q$9VY>
z%{u5qNe3f^%2dZgFJfV{*J#OqnQAG+bZ}R4_p*P*OS~Gsq_*Sj?M|9)#)Zf)NYrwj
zf+K^B-sGNnU31eki@bqTMetd-hoj)&r1YXhnYQ{c(w#u`1z1(<Hw@+%9u2Mo3Knhp
zXw(cP1sbF0@7AM33Q*P<X(Cs&Xm>Ebb^+(u0dlA80Piy9;%+r2;})c(^^1Icx^d@S
zdLG)#%>APw_Cbq@EQ&VCnYB&V(Y8CwFtx4l(x4KGk#ZqspKr8Gou42<6x{3YpnWNp
z*<SVsX6xA-Rt{O1$nG)+Q*rlr5ZTAfyh3;5UEdP!+jMJ>`jF36T$U6(=*Pz0o24G<
zv-*R$CM8n8sKZ+Ht$ZWuJ7Vpl<XWuc$BR*`0<apBVd8;~G3dkdYVVQn$brf^*o+8<
z!COxp;^>JogCtTIO4rAm9t~axHmBNSqOia$7SgTXa|}j9G^pOF+l&=h*?@GvGq%jg
z`KD<EF%EKjmnU7YmOObf<T@9NC^GeAN9jX(0k;ix`27ibIuEF6@eL=2kLITtq|TzE
zx$r}I26zTx`NGtnS#4^~C1A~A;qA76dDFO&O<hYR&fF6bk}4=cVL4-Uop-6PdKGir
zW2u`=S}XQYLZBq#ymVrI#3}wp&R%+q-{9crry?VmtB59tU@{|FZn`;tbrUUEAe6n>
zw!ZYE`4)3Mf2Aj-dyh*+{1B$t6mpy9QJvgJmhLO;O(6B}iwXLr32tj+AwdvJThDdO
zklS--V$+CKx2NF~Wy>IOCo3@fW4>=#k@)tM(<Vfl6RP*`6K+z6#2}r2%jFrr(O~cv
zQkD{HCJaTR5@NFJsZ;OGqRp(3d)UX_KRR$QaO6Dhp%pGxW7v?Fl%%HnL!#VK^W9Yg
zH{QcI58lHu51xS_EcYK1bKPwF+-#5+wsiT}df|mq@MzWg?*aQ9ub*$<gHN4BPpj|;
z)jI@CD{(nxJ&SPCjZ!%I!s=-|PsCHE|LBa?yZGk#F@6kN!>iAU7qaon+?z?Zh+aw4
znkTKO<krx(Ev}r9)6Pk%6r$DklC3<51HSNB+9Zd2o_=-FNQG%_pdx4td9<+NEu=?k
z6;~z6ICfeg(G)YQI`wQl?09q)Ba4WaeEp?rS8PzL^P+&qLb@8OO^_^X+~|}!`Jnx7
zs>WyMKsOe=w-_T)+`znLtNreRoB3&?uL_rbr=vmZ8<W-MrFE%^HiGtuSBoCjjD!PL
zgHX#veQj!mkX*Pei3iI&ZEdP86G}}6jpzY+lgvyMO_q1(TvmkqIWxt)6eDR1&nMTK
z<S<Qz*^IOm)684djzyRHTNgjb2Hl`;70qCM5~EnoYLlA(%(WU8cnip+0eVLD^HZ3M
z4h#_UR@vIn5qL^@V5mnsY2oAK{;66wizm$g(LLtzIE-J^F^gI_ew__Cdwd-0S3D2Q
zD<GH%HcrDoGtOUSroevS_2C*UPNzPL6K{49Z>C_<{9#OeMp_wUGA@IRLuG>tE2_48
zZxuz0X-xy;!s9()Ouu_F%O>7{<cFzZDNvrU{+^8a=gI*KxDr)CcTsQZ+d#c*T=?EP
zh0AVBGvmP@dve3YX_rpxMfSc*VtjIuU0u>3-0IV!%)|5MDgJ5b8l2BRlsDFJryf0n
zI#`Q3j!~$8oZ^8v4T(-2s0iOoL3$D!tiV0v!Yu>lxW-K7L$$Km^|IL`&S$hL{F>P_
z;B<}bi*zzK1<mZ{g8YkR5;ujnZk6Rnxn%<L2z+YU?pU&a=QaO2DNAlQ^KELm4E#RA
z9~O93DFz<~!(iw{`jDvgLGta<PR4Xp{H6<<+H!;0#&?MtKa~&v9Q;-)9O+sKk#kV^
zru2D6h$(4r)8s^g&JuEQtRUypHj46%m9$h}SQm=!VPlas!a0|{@?TY)F*+FNc*y$>
z)5GS!qPf3ZSlld$a7X{-`tRH7`+EOpzG<?lc0ct)E*$yJHHPss-%0yw>+!EDmOl3%
z#6Kt7+*Ny!H7Ok)o4sC`Gb}dBBvS>Xy3<kEJHrLoV@s1l*_>Hkh)|eXbyj7ip=;iX
zg;aKpV#<}lJ#K+pOM2|T20|;v0=kP(G__%tt1cf*;Br+8F=5+M_;)G`h)-CK@ZHQj
zUtfPiz{W)17+_GOYBZ4yd$1-VmJib`oC_fj%oLXm>5knI-udS@-mfi2ay-z25M+^L
zd$27A*_lRR2^^KVGPEU(;Y?Tw;ix^z9!g7$i*?2*iI6MbNC3O8M!U<OLJW$s2cKe)
zxh6J5BmX)5Tnb90GeCFcbA&gc<@s7?O$Kw2L@*iUfvW6&z-k>9B*1}k0tH4cE6-O|
zb277re2{oQ4|EX;%ZF_k;m2ZIF`B@p(E=jnAP=-H1bL;82l|MJbw>(->9JCVp6vc)
zI8)ih#d6Kg2XR=D!M1@uQUI7s08GUc;!B)8xNFju>@4gu8d*Sj3QUa0hUD|s5nhaq
z=W8AS#!nLA#2+*bhtmzVhvG-2!HcBxf^<=pVTKvVcOm(pMH4^^P5@<BQ-CEvwN=6n
zp2LC+MiGMi#5@ZpPQU|Oie;n(Kg*|p$b)em;i-P}KrsM_CZ!-Tb~|XDy9gYAR|XI0
zwmXCO>tP16-Wwj+pc2AUK|W|*5kUI38tu;p-U8x@585;w3Od=DRw*c#$qpJDodzEO
z<^`GJLZEe=Sgx^(naCnX8ik+*z!+Kpm^wgyZNRw1N(cdpQ{axkL_2UtaH2i59}pvZ
z0s>A)Q-;w4U#d-k#m&gfE*_N-PHqBYP++cj)^KHjjQAPIKJodW*ED-D2f!GG90z*L
zL8}ZcNC&hkse~Y+KLt+b#5%JDWHkghirXkdYh(5C@0Mc$ZAwjnRc*;&gCWSBadu45
z^`8u|M=5+CtXa4Y4s$YB2SA)ez^P^dIg9`_RpAV0mVn$^Q(*6|Y&-Cy@dOWyU|Iug
z`;)<}VG6N3+8(S5_{}DIA;{SaX%_5FZ-D+`6aw}DZX{JgFrv1D1_Ks0MZywrqaQ?Y
zRRyFNHvSEP+LwaZ0i_COBHuYmBD~N7ezU4wjP~b|8CWifw+C+_VckiUf?g!1z^8yO
zp3yHL8gcM^t*T`pgRSXuWBJg`!l?pCF#x2US%AjhK%l`EWM+|$8OS1gWQCvvA|6<@
zv?9o41OoO3^p?kkbw&s{PG^c8SeV0_?Cc$&ocDnINPszLN<p=FJg^o3O<O+5yE|<Y
z)G7{?CE<>M;z&wCCJc7a9>9S-0HyK)P)Bj(@LgdzdiXvcW&x`JfmRAyV+Q)r08ot=
z5LY&Z05L9v3PIQa#!SE}hJaN7H@-s!BATA(>pBoNi-&-7T=*4&DCzB>-2cgu%L}3+
zfIx8o^92G>-4LeX9#^3}up~f^3BZnyKo~axT4l3?I%XpO0Zvi{-L@uef&?OfOp^?#
zoJk4cGa$Du5C`q~pt@}zxXn7{@EaVIPdp6_XN;ww2>=cefc3o{bn*=Vhu#tXi|G&q
zD$GVp1`_~+{1*>&6bY*}9B__Zef%>`V7^E?3+KN+zym|$2SOGCgzSIz;9EcpFtCFc
z2a>`y5WcsO(g-4VkxB@;5{(3~wrVt=A|R^(k&tJp3?&AT87v@@`*7RWx}VLa(!mED
z^4(zioG$<7hMtJiD?`~%8Hmhu@%~bU9L9fr6@GoG^Zg;}(fp?nt~;WI5sr#R9s8_2
zyc#XwLTU!FGfi3$8q}wNBNEaAf>Whd$NrK0qYA;>wqF#+h_?-AN(_PK)ic0Utga^j
zN#nMlsts=BXWR>jokkfAUv+;7zCF_i`jw$^bDhESNg%9A0b_D+Um=D_uJRB#RxSl$
zMdy#%*IOG}4p<W12q=h==d17!eWD);0OR3sYQj6h1;isczHxFGPWV1PaH6Of$P|#1
zJNzf!9T%St{7VSX(a)R?F}H6=21*Z*IAK5Xf`0t_4%G)9DADE3%@IyU7(}3<0IvXb
zJNTYS2zZ_0Q5XBnwoeJU6EbcEcGSZ^voQYy?`+dg1hWK4P_keu0H=--Ao<_}Bp%V0
zvCjnfDF0jVC5P$sks+*Pjf;Zq0l8j*5o57|0p@I_@f-AFkf8-OHJinjtattg7yK^n
z9n|{=F5;OgV4}(oVsNHV8w_aPcSaNegA5EX#%DXY&L{wU&fo}z&$}#SxI{p`XC4J;
zok$!zAe3ZAl)G%bAcUSl2-t8&K>)?4O78=L_%93_s5gN3^UndK?uhhOFisL9icgB3
z0es$AtOnFkJ_X_Ey^b%G)`t|$2OU74GtiFND$MZ&_X+5D*AC?T6kd>bp|&RWnb^-(
z_#g<eF0e$w0Nb_@MC=Sn{|KJ^51|vOBRq$mECk&04IuwR4;L<RmmUR11IXM$i2nuF
z<=cntLkE!0=>N1pAGwal1-s^1R0VzcFKczBd*ov$04WE47H$_voYw!Bop6A(fFy|!
zlxGj72m+k^M4W~UCLxJHIm`oP0<t979=r&|H^u)&UEK$)Gfhc^wasB^grjH6QV<R>
z9QjBhh-KP?iBZX1xo6>Y(a6qb|1Y~Qa%25CL@x!Mc7@o1X%Vqnq5m5X1Au_i1!#r>
zy(Fi=>$X7F0%FqJh5G*uXQD#TO?S9G^kXKnfC-SzZOC9qKmd;MK(&G7#4`)G4kWT`
zV669JnFZf=r~W^2P6Y-S6$S{w|9_#$Z#7Fn4Zfc!lsHVrP-c5iETZ6TJhW(Kx$cN(
z0&tdHz>&(SK6(ux${m*TZ+W|_EHB;eWFm4-TPNZtg6Yy=s$|B7ibn)u)f~yfvK*`v
zHlfj)p7+XEi@U14_OszKbl8y&GjC6}g}3E!_AFB&o+V<J<?^%FU!|4FYE>~DW^NuB
z^B4lFC;!^doL*52C>zwOmfO$hKip+7SYQ8TS6<Sj>YOS5@}QN%&{dqsYCp63Ad<vj
zT#55&H$xYQ_bK^iaoCEdB37)wQ2z7)fdO(ACH7n(zj#<g3gI!#%bF_Yd{7HzxSn~B
z&9ko<NG_3_yXb!n@yuG2TP*gtW^ZBGz9wp9xL$nhhcs5Kb<P*_Urkgph~~G5^6o2i
zy{`bkMiek$Eq3@q8lUTF@C=<GS3mvl^#uXE45_N<$ie((Y{kI-mBRkmg8XmkJ9_`C
zmhPUkU4mQCEcrue1?Vi`Wen|10k0(JAIzB5Z=knD&k8ec=)+w^sKpd_gn*?4cLay!
z53UFX%XeH66qesOBM2<vI3qADT|Y#?7j5yk`xa^Px4Rbg^R?R+ar3pC6czEdYZu}3
zwks8d^0a>}y5w#bDzfBm=Pa7#YG*9^$kk3&)WF$JR7A_!9-q9LeF6WX@?k^tcU{eK
z@N6mdL#gt|E9I<+@^L4j4bfINM@#YbM(wC>`>HpAvpUocj)u=dxh@cT>2)4Opf&A{
zb|d5ku4-;p;d^t`OV@6POnQ^*W5tKYeu&{j?uu{GW9zo;?N4U6!tPYb<e&l$v#Db2
zTJ8glrKlVwqry71sp5_+b!mzfmIno-<5@S1Sh<xHvw`1T1iQpuu2n0epGNL^q)nsD
z2IQ&y=6a1wIpn6qoQ~U%C`**DB(tyN<tbJO0&zla_FW$Q5NK7L$KDLHc)5PO_Ci@I
zi@at-md(D(RH87_<+r<L?gAw#8I^IceAq0;aX)~qEv6IO<=N~Dqs0mA&*llW&Oao;
zAJ1+)9Drz59)6W$*Xo<f<Od$?N8EImwCIKi?0b|7wYEJBfsSX1A87vT<XVaCoZYP_
z@p$!m6$k=&Me9%)xdaA-Z|qCDiJ(!*V#rmYhIMslQ(`$qJum#5#gh{UFq5ekkX>HF
z0@eLnw;2>?FIVrq#1}wqdoK6!0{fcnLai8AEze73$}3m(hWpCR?^GV_>ac6`#Wxnk
zo@IhFf%(z6%b>3r#frppN%zfu&@-qT_kCcL9!g7imYIvG9|mV;t5mS9%Yb~I$U<*d
zNl(Y3SWdZk8Nff0<q$?Wm$&GchdpgN4)C|l_Htd^tJ`Z*U2e1fRa?R@7b>tHIxW<i
zd_8=zRF)X$0`tmVQFMbCpz!x~jip`gqdix20PGMAQ5KDZA8G^J^@FFK0anWky@8cI
zu8U%Uy1}hL1J%t!uV{_9)uNd7)$Kl@95gqI74+w>_8WVgXVP|nM70r0i$ri*ZD8fl
z?s7@XZ-8^do>1%g!=cCVZ17>?NW4H>Q>y^9HgwrA*b3mJ7%coBC%?sBFV`V3dkGE*
z(UIvnx)q?MWrA`W^I~Q6=$ZY3w*qM1v@X=Jqz7|R3~QPy01!0t!pk*%9|zi`YABp6
zpE&c09I$BelTa(ugRsl-?E2O2vTSztxGeeWVlUQwo`+)|<$|d_aN|1W9;{ucL$+=P
zMIfXp<%MK9D*0tf0_C>*MZoZp$59_Q+NBmin!b66NU`E@s}T@d6DVX9Y~VB?A3T#E
z>bQ_+;F#yveo8t(JO`-3`^|q|6ziburxh$xBd;y6<?A7@!BsFB!L0G9Ah%KbVCNmD
zLs|2D#7-RT{>hQ$9bw*3a!k+rTto{5SY<Nx2*R2-7yOSC<mTs5c!h0^;DTgPJzu<k
zfmy*jXB|?=PiROf@SUMF&J68CT_+zK3EnwEZns{ik<O4K(eyM;JQ9kGM<B5jow+jI
zI$Y<bC)+MjR&)4PgW^$EPt?(GweaE{G(k)OYZ>ZK&+f=}SYXEP8Q!q@SIGl?C|XLG
zNdDFIOMje@kUfjgzD{BP!8Q1kTLPuEbXoTpn#=JaB9#4~BR&jn<1oyo^&nHv1yQ^}
z`s~n1K(x)~`l=7@02lUBa%ieO)?qAtxGZy@eo5=(f@~*a$sL|Y8O-s5{Up4H1zs-{
zM@&LEItYqQ#i<ojLR?`1ma>%?(qi$&qegrZRynaJY^TGqU!r8Z1?~)qM0a89dRNh*
zU3ZhI?<$}5d8T?dSjmpf(qujf3Pj7yl4p<8h<}}je=Q@B(PR2_5Lfq(w_xWFpJQ&d
z;=(U2MUO98ymbrO!;FTCm+gFxFB*%=MKSu29_NOgs`iVwysI-$d3=sK9gA7qSo4j#
zzT-=L_M5&#&ozbKdoD!0a4%bRz!HhLSI^)MXmJzRNVuiEEDx6aa7^KZ^@uWFq~NHN
zWb*0OFgYW&d|$uhQ>?>>=FK+&8XcABa>s**Sg}sRGmmL;POCRNe++j8A~i{{igMQV
z(fg}4QJUnr0}gVAJQr3b?J+s1c78g|VCLzoZ24FJUADgh8U+7qV96P(ss1}}f5l9-
zbHQgHF{zp}<gjoA<7rR9xh(jvK~rT5YoT~SUu;agMgNk1UcY#XL4{tKS5&DnlrpGB
ze9xdpZ$3JcjXp8^<)CKs^wLE=4&>i?91<_Y)QSuoOa_(Yv~Z*rRi?Ji<C7ZEkPBog
z{%lH1=kI1w#^hAOq)dG*OI_m4Ej7cES&4m^6S<sJ$zBJ$?;>`VSYE^^2xG`id0dv(
zymKJ{QQlAk)g~^Ld*fTkhJzK2nPwd7VvQ0j@%x}RsTcxZ6v>~^Vo$uzZdv^Xdz)Al
z+Mz8)ay$XUy{xfs=H*!-o3PJBIs33S*7iTWEc#anDCrHqRP(dH|7YJn8LEq<rjia)
z<GxM{pBLyIttv~}I>#YB)Bk7RXg<g8vcppKLDq4c<?6rsx<N&yhLGh(eGjVJ2Z_=G
zh|Q=YwnH)l<(P-dhC1Ha;;B>$DB#a?d(X|GQN?Z4o_`|Keb2j$PdULoR<HSOPWI!>
zGyY@GX}RA+&v&^zcK&~C>Tf*MJdhHQv*lUxflNrSr$ddzCTHnrwb?FWGC{@ijbl*4
z3@g=+$$u6sNcckM*u4!KX07idUj){iGWSgKh8l^<1BwDNxR;Ab#V%J4Su$=KLnqU5
zF8%+zg{pPYn+xmu%6q%NvuPZ%ST#Wt&NrRt5W-0xNf~s^)Hca1Oi#756Q`g19l_){
zC^m<{=oZ+&StI$`^lj)oB_JDDBTcG3Iog|yIyLwEAx}vSPYF}8VTMmE?sral7w<Ix
zo-nQPXs=MfhL3H;Ax->qKkNJjqdb=1H&s>0-!)FL<A}62zG_Fm#1!{D*I6tfKbSh+
zxzN=|`nNgWOFuMzz=L+ADq3;KaN+;0a(Y=Ld&%;Gg&xP$xYRsi6@mnO9yeX~(-5{f
z<OLr~3XCi!o0^sW{MG{wMRqj%OVWffbaV5MDIkiy`r@i+xk4l}Nt~iv;bjharSj%2
zCm+QsN2gH>MOEEp2-+#jmmdi-;7}$Qz2>u;5R$RGSD{g(H*USL2vrq+6G}z)pW^xK
zADz-Fo(ft$J}&1Y?Aw>6=Fu&J^~ZQQCi`|lQU8ejxHxSWn@o&dsM7o<jRUXGNO#~#
z<n`C#eAKI)&_^ug1cisx*yl?}!i=df{5w62)g-gXcJAM-{@mUFM10^|kLOf5ey{mi
z698wYdFEcNMs<jUzm|0Xqak9upfPDzPK~{>m-+(PwVW!ANVU^^dqD4Ac+EGz@C(`L
zK&3<ZKAf_#f)ZK|8|0hs*Tu;jOsG#e#DwJ;IBBYN=Pu7(N4Qt;X)_#A4fUC97;$J#
zl@j@jNiXvFJxu4s<yK2)Ie5GfEYHctVJ#7Kc1o77!vOZdN3aG~zlB(zeLijWr5@b+
zbssTgCkMM|zNP{bn)e1SnojYb0ZM<JMmVnWmAw#TkvN(woV)$%Ep7QZk92}U4rlvF
z;Db9>5L;qtGVxc~oi2M8&U%hcdUGboZcz=l;W~m5feCr!qnEJQ#C&8l*ncp}HQvl(
zpM?4@T~O9V;7%~MGF!Ln*C=w>Or8t^1^EPxxPX1ntLpE#A2DKO4Fw@{VGxc+{ma0d
zN!d~Z2vv)|hvscN%dFpCeG^a1=j74=v(B8cQW5CmpEa~QM;nmXQBaQZpSI?*1`bjv
z#S43MkjOtanpY+_^gPY%i#GBR4D4?8HD{q7Wypp{fqx*yZ0?t{`wMfEc_6mzztjZ}
z@%&pp9f|Zc%;J5kC0MrR{z2Z_`VW3Vr0H_*Uc<-|{%JtN-Q%w;0!t|GNsHbm*izgu
zyF^^%_Hi`oz9c%+WBz~9Q)%sQQG=^t?_a2*xul>8k*c)tw@AhPZmk-yP|>Yup7HUx
z$fOnI<iUZc*wEhI=twIXh(dHYkn)vB82O0>*x%y~{TD`BTZMv;dq#%G3nw<g3Vok}
z)H)nA0N)ubPReLxh(k>Sll(}BTN|5+>hlpumA1f$7!(}y4#xhdXx#e1iF+oEw+*r#
z^4xep!w2QX;BG8E!O_4w2ZHJPQh}}9Fks{MEpV>~aIa|w>fIOM(*y+%*EJ7;9=Em%
z_{JD$S<gUiWtR<eOfHZ{Bp24g+Ykzk2Ja3>xf%~kL#=^rwbAH5aCdZv@M4p!P>Kj#
zj34$Hn4sEmoSk}a*N#wt(uNXZbs{eQON06&;cA{0NSsFfgtkchw?=S1#x<zTI8N-H
zVj$FJ&cY*$G*Dt;55ZlB>KpF^m>jk<C(@AhHc%q%0UVf#Dv&AN_FI<fTZveHcr@Gp
zU8Ip&)B<<Z&!MndZ)z0T+g8}0Djc)4R83nn%vlg~yZr<%WMjwm+4vOMnnih|jQooR
zZ7K#QEH+vHcVRL(P!&g%RYD{TCNpscPoLGx_K)ggaX9jHX3w8t0tZxNjk@a=_4A53
z@Hf`feW|P}e1BD3iT?VrS)Hm!@>6iez()97AvbuPm<KkQ5y8;i{|*m?O)>z1rgLGr
z0xO8Yy*$tw6kwH772<3KcZ<&h^8?o2a0d~dj1NjQz@ze764W~Ck>5c_d|{%q6k0>4
z`80?52f19}ty^H>TlzqmYtJm`ogI{)`<NYt3cqo<Gl5Z#5w;tGY@|$~V&mvCgBu0M
zAqM9CT4%O2zV?si4anL5og@5haV|rs$-!qygzhl=y`o%##`oGisppS1`O+X^9BXBm
z*xWGz91gGyf-9{UfA-KJfqy0gtnndDbAgK@Ik9r)F{u%Duvxdf&8U^VO-Xwm(Kpl1
za;>gR&s{J@_93^gMK)`m?T+ELn*E>sMtgZ#{bomR52S~$$6wDh$k8Uf?c1y}-W&*M
zzmEVOTrSzHaqJ$x_ssjHYpSdAb!tzwAn2V}OiQ&qgUaF2VkCHB4@;LC%ctNGt7hVF
zZqBoyx!g6aHoaQZrOAK;J~#g3iF!xSvW<8U1;V;ROkFkk`4-b&kS9Nz>|&SkKdf$b
zLB0FK_o`vAGOi^;CT#PUDm+zF7b7%;0q8~J-qhC)jg}R})=1!La@T(M-sF^G=IKQE
zZ2YvVNM-!68-WaFT)5b&=v6BS{V21D2u!8aG(#61q#!4??%+V_iYxUT73XT*LI5M_
zG$f7G8uJO2!x7H+d=^na+EW?Y?~4~fS-nzRrg^98<yCcEZ1j95HHQNuCk#M7L-`y5
z*BEhpK@X{@mgY`PwWD-JQAZXo#~Vj*X5b=kjph>BnsoUH5f?+`3HCv?hg$kp2<l*w
z9>kq7py{=#i}g#>l9$?OD}%QkUGdG@APp6sVTY@B<I9WOp5c&SZ7<v4O5tt4P^(P|
z-pq#f&~GT6$>pNZj-$y9cn&;L*e&$;0BFu+bQ@|jgUgP`Jn>Z}`oQ_N?RZ(iUFw46
zH}3B`I$OG)@8sW~6x<y=_U+b#5ZsyVP*SbbI;6{n8+~U+AT$l%mC!P{-!hLRfbS(f
z%8=rUS!y?o9WrFxHuc%$YC=eB>;vScbjGb3FJuB{SK^D8v%{M0iF9F~Dy=;z2yr<6
z9{lQ?7D%y9efYC@_OouI$Zh}AdFn+2a}t~7IN78Jq4*n1ln%e5VIg&|?3lV*lzGB$
zeZ*0NV_4(Dnl1I;l>)+D1D~5S-m)+@Z#Lv<z8!RYRnJYd*t0%`jQF>l(~vZ(XtQWW
zJR?vh>}oIh5Ju>W&x|xE%nGk+ch35#V(sLADrcE4Q!C_OO3+!Xb`tQia_ll@J!HNH
z&{&%Ge;PfqyC)&|ero>i;+Z?9{#jPlJu>0UiTb{jc!6ltu3DS8DvWGZ8L9XTNyBpy
z*`}?=P~VxZyO7=S?IXVTAel2#iE+S=V3T6oUz3A-5+0Ug<LF%LHQ7Wn8n=?lF(%+O
zJ2<-EA}a`)F&mhTDnzR2x{j0of##duw@sMuwDB(YnJ)0z{lS0j4W#<)kVPd;)6cLs
zTp9|E!V+rx#eCJ;@;M<a<0^<DobmlXNjhoS{L%QZJ#S7&-f{4@1rgr|aSM0R*UWGC
z)9BVg)l!*MOjWpxY4MslxMf1LDqgbL2XO-Pq;6a`shqlp{?POepLHcKcBDI!>%s<y
zXFrk=WML7=fepHAbAFS+69%yDA~R*fXnAyG&{G-Ni5&SJ{V!&uDsjD`w(Ml(U>fw5
z{1=zif&527BQw5q9q+fVIj9R))$_7zf1B*S=3x^4bXPv>G-v(T(D_}7j|rNGPG;al
z?9jyoZ4b@335=`*c7#-s*fzwE)ei2Q(n<I_)7_TFb~DSy&DtDq+UpJms-4G!2BX7*
z+GM4IHR<pw%irf|<rKT|9iFm-6McHiMK;roK3@GiXD)J?-=N2<Yn|~=#~?cEH>an?
z6;ow2C|H#Y+I3pdBNHoEQT^tOyw<p!pCBHfhMVqzm*(%)5cr4iDtphdIZ-D!YV5dA
z+P8za7YGf)I|pcDMZj*P+Ex(mkSGl%?33VHVr2l+UV!?tskT;3A!~pJm-=eA<u}|V
zC27On8Kq)2a9WdUBAX4I5PKGKsG7D##m_b)d+3h^4BGmM^y!-9KJ;i=_6d*~W`J+c
z3}iZM?Eora+_09h^YuL4+NP}};K=a~2n==NPfS#gq+&PR0Y|z8i5C5P9=VSXFZ#OZ
zE?1}vbA2sq|FTRx^;wT~3oBLV=kz?aCD2XZ$r#3JqNEZO0uGs~kkOvHZDrIk-(W(R
z^5xw3@BJO{6zke`AxWIzQU_jaZ92anB7StDwzUfBdqvm=vx#SohIxkehUK<C{k~J4
z6^GiQ%C69^DklQ2P4Z+ts&73`8N%f#zu*i>Ur(^wZ%@xNB(wzW&*$4Nf{opGQaQ0<
zQLdk5B8<3ntvD2@cdUQTlF6-oaX;S4<FWUW)McK(Ni(_+U)3zMz11Wic|sf=%oQox
zde6Tkf33mNqRe8<n5N>GleBPwF;q6tT0U!FTii4u_g{+;ZH<?#fg*>5B8O<ti`Q20
z4%xH;PS7fb=s(^dMYgK|lfU6><|gT+HFHlQiD5x4q-f8fzVt+XWmO4(_4c0AFYnC7
z(u+h2(<j|ItHMq02#j=8c8!oluJgaYL{4tR=m_X~J;`46%UZ<ImJ>!^=7aJk*+dh<
zaF|s&u$$6#^AxH#913~KrA|IJRl0akaqzk4?0l+PA;T6G>mzyB2Pc-Y6<9tJ7BYco
ziKRPby^;J~dq}P(a5Fh!bAan%D}tJyH&*kpYJPgB-6qf^O?dzP=$M$|{r{yv%L=6U
z8#k){;Xq8P+lr}SGv_^jlBj@J1$H|=8$?Hkjpg}&Sxx!V|5@81Q=$B4eg&AITO!7J
z4Jy^>#Zsk#1|-JpILDR;WrhE8kBvZ6!>{2v{oF)Jl<F>)pZS?Tr)fz%MJu_=;t)>H
zTzNU{bgDj#Rl3$*RDZu3LBcv%GBnzKYEymZw~+M^rTG9Hd-lP)SN>Qc?ELfP$d{x$
z$xZ{)88dXZDuM@G_O1y@A&WzDCBCKB3CT+S387E6vK6Tbd4vUHlhGPgRN_?sKy%I2
zK~Exg%vDq@C`Z?c6JLdBQI2?%{`bjjioZ`@9-v&j_|eq-t0kL_XK6qVMmk@e+&71(
zG=rqO&U%*b{+(hR1{!yn1ZZCTcwCY9%4<eRoh5!cmI|+>mv=7PI&{Ia*4DLhCT{xo
z?7LjB$ZcJ^|Al&Q(4?`2j0Gkl<H`G99hd>mizBt)i`aJQSZ|pX{t}`|bsJX`Ip12~
zFKb^EYX6QwG+&|Zg9}R8dj3EAIqJ%%hpQ^+kbbPWi573fqxw`Bnax>TY~$v<ws!sQ
ziO|}(;RQRfqkCL>QMV#75R2-OObkG6NA>tt?1n$!$h07__us_rhd1{xsYXek$Nm?t
zH=Fp43VKU*((^>j1w%2#@EUjUOiQ*17}E<i)e7`Vt0V4QwW|lir~k#O{%*iZ%KM8f
zKQUyAA2+oFF;=Vp4Ib0m5<P$gaqKtDQ7%3p{Q`ouAoikq=IV=w*Js=AH^`RfZF9P*
z0-ROi+qI5E#M-v8F(o}oY+e=%4+2JycEMhT6^RI#R4623*yU5h`F{d&26er-6?7AB
z-in4$2=%pyj$UaKDL$r_FX__H?Nu>T)8A!v9P<5m<Fq<bsns`E!}@+}sb;N5UDBR7
z@3)E*pEqKIC{<`gWf#k|uJYO*t`gmZMyjB7z&H+0nX4(UOt|@twk^{nv+}8$?y#(z
zY4|M9sN$`*&l9hKHq9YN7kpCB#lbHYj=)T{W-YzxWoA+bYksd9E21HYd5W^H^kS<F
zT3JL4G1lq{utM>3Oj(YDYgA=KgRq0Zf<J`?4ZbU@=k`q0VK=B|`(j8R`H@=3TSD&+
zYoVU@+MrqX+yQ>w!S7)EGh;?wl?GC3XcweMGSz~qVM!;3Vu{?EFYY<EXk{9cCsUwm
z0f#p;!*VW6u#zFn#ksPa<`L3MqNVLN%bkM%c41s^lG)42RL2yoQ_3F_WX%r}8?WYC
ztX?%~zxr;IZ@zzD5JA5kX`X6w_cXX4Fp`<iA;p-4HuW6hnZ?{8-K#>@>7U3l<8N~G
zJ^H>W=#9=upJu}l67k(TUweCe?coaue+suVJzkb@R&8rxf9plxB5Q5kwK1ia=QL=Y
zPrb~U_lJ%B|3-)MQ~4h|aU}sOi)U`8K+dRHJ~!UQGL4VDc%$al7oH!tJn_aa$<EYi
zXE@)csH~z{Q@0LT&k-rM<XJ)MKGSTBBY8gc8(yacMc3DD=R+MG4E$1OYeCXQKJ)<3
zx9FXBFq;uk-?Xl>-3m80>)+8U*ruPz|8`K5D{keI-nC(6HMgka^1E14<pY(=??JTI
zZtmLOJ;rR+immTIf8NjS$vHMeg3L>OH1e`CqWI?+q5Z%W$ccTDyRYeoT1!N>=`LcF
z*@R%v%-!;;<f-5Jy}liE)`@E*3OpcXz#9?;&I6{FPD0<Kz`+!3(XN3)kSH)p8NIqp
z`{pP~QoBE+mp-(q(;mLnru8$9E0#z~6nOt5Fv<L_glOcM0X*t+YA%f^@+A!TEn4J-
z5Q2{hFog|IS<J+U@0`#u@fOLB0&~PC0Y4zMj7AmMK$Q<W?4uR1L!pYo-5}#khyvGV
z#ABDwTPzG_bq_O+@}zFR@2`*tjbJKkMu^D@<{>{>As&(uiYpWLa1+XseH(r6lBx<B
zc`v!0jQo#g6k+7M+*|sj76lro6zMf)v_LBVnNG5?$!ELC2}k4kXnNq06gDQhhj<2>
z2P`_gLQW+r>ad`}#9FM210TkZUN5^O1xL1ea#xo_-Ar^$-_u0Ggl<aMyIIQ3cPEqx
zH$n*D`BX|9FOle}{&_8a6!81CU{7QCbyrgf@}z`if9kucB60bc{cXov2sA$812ffN
zb2$*NM8zQ=<beqmMcqV&ZrP*S`OWka>st{X@c{3NTbTB&3SB4rNJG%WY7e7Q_pq1R
zm?Q|t3E<>SE8WJfRZgv?Jr33I8YFv>B?-SBaW(b{l-anxj!1W9#t_l7`e&Bf=9SWx
z7nK698*fQ@7DQ74rA3@PC8=&)I6F@~<L`4)uIf~-{?4NqL~oz|q;Met%r;`NCBMM%
z|Dwv&VvWat<@vei>DEkIOKWG5R72+ozkOLxXsrOv&Z=P)hTmcO8^a|f{sJ@1$<UpD
zDn9&VQdUcU-OgXBLr>PxN@?wVpsxWA{e-@bT;<mMGlxt}(=Y$?+((Nds=(Wv7Jg1S
z1{<#%lqa<voPPyMk5OiAu5pu^SZQuM%VwmuG6XE;>(3_~_Z8ms)QfWqc&DJ7Yn3~P
zuvY(yH&uA;cm|PoJc`4L4I?E@figkOr&C{j3O^Mzl2NBAIeKw^+v6-%WW$K7P{&Y?
zPorcAW4Q{b7=&;%v3}T*WW(?@IrB(d^pLqE9ysd6mD*Faqb(5EWaH{u!b5u&8_Z@*
zjm^wf&VA3o5!4Bk>TH5kJ`%r}$)8`gHnp_5A_jMf*>i)<S;kE}nMn+OK9iA*T=BT8
z)R@l0pQ=r-<;&|GVAY+3LsnNI?kjo+431y98?Tf=6Ld?ROY_*?;vw2NZa&%H%$sla
z1k$?xosk`!Xo4*@$q^ZjiBU60M!)=0dP)=eba;8>(RgypZ{p^O`qn{t(%GR`n&T;?
zfH-J>3Pb$p>>7o=Q+35f*+Qj-W!cN+MLJXQDm(>E+<6txqq(Pkwe&F5cA3^MoRaWd
zWhiN_#AMjU0PQ(}{i&g7q-sFPnvd!HR`AqS+m3g>afKNBOMaWAb0y0&_bA)O-Tuk^
zXr*-NL@$DT3Vb${RZA-jKS~X>SpN&BR!Chvk5bGIOy!aF^k>$Is`2-C6fo|TkOMR@
z>uZvO?=NCOHSe&X-AJ&g-TDbZ1gI0q8x_3zS7bX<XEP3u(r&F+ET1f(mqrUgJtH!O
zy{+P{miw{A`5rsUNAWnhJr3c~47>o<exs{rOl!hgEB^Y#hmYB>&;1h0WhW-7jgemy
zVsvdt_O`4QuXw}qU~=Uwap$YjdrXbN;zZAn)#bsFk1{9df!AiPt{md5$_g{19IdR{
zRIBV8{MF9U`WEFG+Ro*2R$3T554YBpf$8_5zqSb4&J#^!P^H6D*2gr<$-KD_aVoc~
zO6W$2d)Zmuem3m4vt?jA;C)h~DWFoJyZXq?dH2^mJboRAIpv-@oJ;)Oa_Q8IDS--&
zThnDnW=EclwvkP0yTmjkXb;}-H}CLbWkSgjd@XKl&IAtskGr;Ak%VNpD9Xmbsnk^R
zQ{2pbnyfN^+!V`ps#%30|1eHN;LlnL-DLe2sZY@eaTC3vObO#i-+RJAF7}!@fwx}g
zaFb_-4(G5-g#@zG@>0>dx4dD48g|xw3<*E1(fj*5?R>zG%PD_l=hyqYjtn6w#p$7f
zhH)Dpm!ufyXkQDT4Ban2tpkeHzJFA4a4OLV4e55Uf{SM+-f1AAzYC?@!C{@jb#yaX
z5w5iwh{3`!7o%hSiQ{|zEq*jnjUM=4grUzzse~7)E^%i}#DISNM{30D{<gL(M;#Z5
zGI7di`;9^f#gG3FPgemI$I`4>+@0VMoZ#+~ki`Oo;7)J}9^9AUF2PA~cXxLuxP-vs
z4vR~WH}~HEymNNW)^u03)=t;fd|j>8kL-YO;yr?O8)9MO-tq3_3sC{r#1%C|L3Qqs
zGKaR_9@ePU)-zen*zC?$KB2hBeIWMDb9T*;<?$Y=xBH-kLB{Pi%Wr?)o0TYE{-6D-
z<ax}G>z8Y+U$@?`(2wLSd8^Dg%ROKvUQr};h9zWX9M0U*7x0GCza&Y^J$U|`%)lUi
z+nwq`iRN&s)e`^S{)cQ!{84<27FO9<MTN$oI6reSN}7Ac()-Q@8zqhK_Vq+5vaeV2
zGzfmNrN(PjAq!Ns4aO9I8aErdx<wOz&70I6?O{vy@^$rw@Igz|ZSPAA8L+KeT@IoK
z_$1sm7Oy`M+-VlxUrXkLB;Pi?KGVXqQ5H#j8b106uhDe^#yfvVfyg+!mA<?GQl+|F
zw~k%$IP#_IEQtxbHLMimBl7#|v9h_L)TynQtf|b8b#L*NXJ__LW+S81@vmDQGF0>C
z^F1XYoJ!Z4)ADK^>wBR*T|-R@*$YCK>Kuz|w2J|}c2lmbqAv}k)eWx(ctGMWh2gXK
z8PAWurpj*7Uv3H{QTx{)w%$EfNb&(h9vC2u077FpvQ97xAm~0kR;-8q!=ngfZU4ig
z{8*vG_b4dyePlCh68k0B49Q=a$7|G0nEBe!WElQb*%?9z<-<2GOd>r_CSb?$$N~_@
zV<5Qap9pY|a#rwDJJW<P830=9Z(qMhK9GY8-MiC2a5l8mOJasgCa>&^bfWap`DJMD
zizxUp6WRFTr_1Y$zgEKeT|-4`phdJ55&jFyUxzW~(=}^~{D-6MRFc{El+Rk}nEAif
zPkQnmslIGxlo)Z~Rtq??I8tK$MG|)yhg<9U9w<8JLzB0+lEyO|OvPs~40o!WJNNuW
z_lu!`nxgE|MPHY~2g{9>yX>bTX*z_-ua}7JLEvaeN<uLRhHU|we5K^nxG08@F4-Q$
z2W^-WQM1uF8V6y&n!xtJoL0RpO<qFvNF*r?XmQ<jIa0Uz`H8>-i8^05hs+7vk*Mxh
zNETrxfbyKxv>8);UH-}&#D6T)-D$3C%Z$(&n{G)5rF%r`p<4^1sJ`0f(6ImN-kiFF
zpo|+jJok`|2Lnw<U0+n;v3qlKzEu7$b}j<XT?i=k3yPgvseL#<x75s8@AlsoK=u&e
zkEF=v=k|TemxQ9OX05Mh5r3Z<r%?+=ZD$pHXdl1+yTg;GEGvKjr<-(-N8{a=8_c9b
zR6e@UFA&67WwKm0{)0*;v80Dg=9tL*BMwT-=%KF0BPVqkN<(Q!F}d^D9B~<~Pm;!%
zN8VmFx)FK&@888z)?Y4U{>E8UT(TO>9lg^f?PqZ~)3b_CSIVO(AF<eF-M-hI4q7O+
zXsG(4sghad*1(yxi1ZD`haU&u%FR2B7I8Pgl#9PBy2GmCqjO?_XXo60Rr>LTDoOys
zGt<YHn3)8oKdf)~kG4BBykbcnKSZcpbX9JGJx8ipSo_!;ihX^|p4=0S0Y9i<9Z^yy
zmrn|7Jw#Jp2WjJU3D%I3U`*JAUi3lPskGDt3)AgejaWrX<5j}bP`jC+?Vsm<p>|B^
zD);MST8DC(vD6&zi*)>IK^*0dd9yj)C^FWm(S_JSlj*6AePlvAKW;YMP79|YlNie)
zG(qHfLWw-f*_+Mp=-!ja6{y0nL4hisD6}rhjsccm?bzyR$REtaXIfJ0&Ln>NCR^xT
zgugH0QhS6LW4*1$Xr|$Snc!1p!1C}jDQ*!sfFq@j&mRID$i%^RHdmC=ROqIq#>!Xx
zWx*lUeRm7;m+HuOxAB>sF4NlEQYWPM43S;_glJDv5kY?30}>AJ@W4`CxU@N+G2?%I
z4kMcH@QDq2ew=+4Dg35BMpUEEsgs=ibs_$1+3cs?qD5VInN}jD#^@^hXPg55<HFCg
zqByMtEKdDmIU=21S_|g~925Ip&rL3x9*r(&#~+@$6U;H7B*U8Q;4?-$=jA{<jsht(
z>LoD?XAbiF#a-Lt*Ap6v+4YJQg(LMTv8U1^_HKtbYHOqoOnHEp<ENvTz3}TZ)me4a
zXqdfq+OpOarb?@lh#T-3WVg}S9?_pZ?>1wLlI#4^21d%yhiNV8PYVQV%+9pyJBW6c
z>oru7c50V2Nj@rxI=k3wsr@Xrr+%V-ik#H`!PW~x^0YE`Xpoo?6j@?!wclErlGD<s
zlb-6B*+`OV{ApQ<W{x7{^R^|P(U`u6iGiRY9Q(9OOU!HkO#;iu-q$)q5!*Cao2lpt
zj(b*=Ctu5;^rWQVREak}lg<L+)UXryuo;(8^UL0W`ww;RY)Uh{zRRRe%jRc(DZ!wn
zR%=6Dkf=xJCws~MOL+EHY+m3jh>5)N{>RL?m69`;LxzP0;g{N<Yh|`qP53*EIZN6-
zuZDi-*6N<~N^$wrUF0v!t2*WP2ss&9Q<dMUL}Mv_t_!(KyEvhXznj5x+s?@1iq^?*
zdN{L;KQTBzzjX~X@$MhnhTTO-m>W^N;lf5H(R=p8ECn`->?D0iAABQ7%Q~sQ4?aD(
zGnJ`N7<iq3_x(>II&Ts0@Rhw~f&5?Om+cC~&t)QbnL0Qr^<LC{wOJNMtR3;vUaY;f
zCZ$ndsCC%J5PSLz3gOQZrvDTRdQC@;w{aM*Th3w*CV7wP*krqZ{%3Ej`fOShx0cp)
zbn7mUO$gT2M~~W#bZ=%Q)0P}Ew>AMA#siTb6;^EZ_7R{+2aMWN$TZs#Hc6JoGj{3+
zDeN-{2&e19kdUrF;Wihl(<mG7y+<|Nj@-TDtx5|2-2e1SG8<C%vSu#AB$?gDoXrOP
zP9XpV`3hwNo0dXvX=q>fa`>0ApiCJTR8-FpE}){bic2A7HGC7azi{4#Lwx>4wJI-m
z)v$f>^Cd?AM)@aA3unYOe3wFv9BA#WaGb0zPB!y4DCNp{3gW&RX$A2<8{jjV6gI8I
zHMA35NAkYUT+M!g!W6t~LoLai&Y#M9&Q~?5yAFao{~XLGW><r<i0UmnD6nyKgi{I5
zktWr!i!KaR1DDs7qY^8fJiJ-Lq^MDb!ut`j-qp{M8d4#pVK;xYf^RCKWrMSSmrDp0
z7>8d~A*}y=7r;0l*pY_3ns)deRNa-$(9Tq!E4j^|tAx)>&>-%0{fAww=tS_xlEQkE
zuBZ0z@;AlA8o6Q+lutD~aLP<7vj?SAw*{wLP7C0TM&cdNYFb1Enxpr-_Y6?v74^!1
zuLrv;Wx2K&kvv8qs@ETG;i{Ms(m6&LyXd2JY=(kXqii^9Tib@KPfMry;BVe!5JYQ!
z+&2@{wf?aW3zphtnkmir86i1+9V!>4@gT`L+i3oUF*#ffc;Kr27W};LTB=zta8EqQ
zlDgd<R^`YV{=4vHh2r-cJ(co^sm#(tep0MSEBQ{@0bPl=o+-0yq*!V%48ze!l!elA
z_LNQat<f0><P&XQ9Bi0;xHQk?Gc8#Z;y(|-5AZy(+~%b5`0lG)s8IJ3$ovsbcOGss
zh*&s3j^F*X-DREcqhu{$r8Fyd5K0OJSl9ULfJ;<i=M^)%KgIsxs?VyT7U^$J5dS)A
z4{YMYZx?Ye`Br(A4&~EX>`sr_0CiK}eWaia`C!}OzNCKy`5fH1<GKYNV{=M^duis}
zuNPSDJP{_mZXdY6Ntv4HCSk^yIE$V^s+?j?(|FsJ<X)kJ%l5mU>h>%$it&)}FoSH%
zJP>9ed9@8LX1zv2_e`n1v1PtT!@GeDoym^UePmGV2(Ichl)84`S`*2+lm+kaqWR3@
zTe_TriH9WVG;fhUw)=0Fn|U)QG+tlc-X&^rWR+SGx(FoQ5l~Mt8<@KN&i|fG=3f*f
z8P3J)`{jsUtjhj#zRPOBgK@XD=&%L)A{(%SoK41-J%3_2@Yq5|P6z$qpN+Ob`RrIi
zF&EcGBRB^~3g6p{aB@x>5pI>c|9&4zlR+t}MRm;ig(wkgRRV0;)1iDFq6@b0@40@D
zZLZewi27o9U60;-a7WY^KQzLMRyC`I$(cH_o?613znOs(-TT9WP>sPnfy)=OX;=&g
zA^z-h_y&BY>)wZaaaL}`_eD&LY;R-qWMuP$+>g{-zlyL3pZpXiJJD<HP_$vE4ezg_
z*r7b-f|EUC7R7Al5yi)YUHk)fTHC_j5~s^&3+4-u8vV#6#qvkb@5wsBmqhBQnNG_R
zdNQ&F7+^7Gcu;T-npm1u$@dQCq@zCEv=gL79AOdsT2nDe;J8k%)^Co#LL2xgmP0l0
zsUE5uLx``8hb&ppOYU}s^SETm2h`=$=oP60*GB&H3-9+qm%Z$lR_gHWC`IP=>)?d#
zNh#y;*E-5)l4ey#tk1?Jj`a$DkL@qeUQAq0%s$MT?&SvCHvh$H_38$R(~QEo9cw(g
z5?=@}rnKSWIT|<sZmcMSaMUGxLHQt?D|;|vI~@RxOaXji)O5YBho@k~A8l>)y$uoJ
z5KbVbPR9heyV6^ZR-g0i9k_e(HWA$13Ow$hVG;?biz<qUKkxymNeQ4BUuvLe6-IbJ
zGP>Rd9e)5lGXEKWBfSUQO>PQqJ~g3*k^>MB8vvYP44_I}_x!+!k6BLuC<P$|7Y~+C
z1C*BwION)wp4{ZvTHO66hEFnR?zXrN5cH3hP`b}3=))aP{BiL>mO!)q41l`@fz92G
z5~*PjQ|x4L^Q0*)bPA{_Aru#{x(_H#%YhO8V-(&9Kj6nh2vMNb$5KRmv<G~A?-dcn
z?mhv%KLl_p?EqlqXtJ+aSNQJA7-&K>9^ezS2AAs!F9yYf5%mRB0T_!5As&b+HUa2`
zB`q`(=!IVF?uQMdu4zD^1}IGw0KG5(xET^9yY0#1=(p8J8~sQWP9Eh&&Xo!PIOcLA
zvk13cIHVbJGW0=tqt%ZM59I#}7^Y)XT6hT$zyo<rO8}CL#oIU(k0B2V+!~ap)mH{k
zIrC12u?RgSZ#LmM<mCau_;AP+0E~M284fv_ttoe@oVKQg&%~wcz1CuccPmW+H{Vn;
z(L(WnCKB`D!3F`?j$j&Uv!@LH#)|lRaQ8Hj;crUYQ%>JIpGrpytq}(1OqCJ75(wGw
zKtKRmANRb5|Mq9d*^5HVs{M+vGLi|H8%qKctlpMPBU-2|Apa+Zo)+3o_a9n^f{3n{
zKQ<h)2)JT>N5I_`|BR9sg*3SP449<}KqMLvaR<860JNox7Y~+~*KUvX&2=2<*u|xM
zM`#g}7mn&-6oslqM*x}vfJdz{;Sfn+|Na94&>Y}<g<cul{qq8t&wy}<<!%SXH|XLx
zl0M}nVWn0o>Qash{>I^q9Jt#7XaN?WWO&hrd^D+(`rWK1nZ4Jz1R(#u%vZmK5U03^
zVLPcsj=n|VVURXKV1Pq;@VNfbd2)b<7#KpP|3$orgU18KvU#9|LdkaFpU3y4s#|f(
zuqGQOz!xCLy>MX8?*UD60yHU55mAwf4p2)cOgs<@<(4$nH|JCg594vQW)TVna5rU4
z61cgu58NF941zGAj=&7J28BZ+0X@AD1zgColuY6Oj*>E<%Z6sO&^CZ^Jsk}0&SUgc
zBKpP)l$JIX3}xJfUr@Rk#s7xDL_iFS8{w&SEC4zWOgw)^ID{DJ`cqgq1P2&$ap3o6
z`FQm<PAIb(vM#c=B~?xA3>tdSM`h$8hV^clx~{cU0zZ{Lpdx<@S|}6n-Jk~S$##zb
zpkBcE9RLX_0LHTtm@g&(>b3aBup-cCsKjvL-6z2$F_75T(mgc9B5q=s>iTC?dt(l0
zX$cRJqxjBWxSk<y5&gETx6kmWzTfr`5dZQL!?FqTiySF|Mkxa0<-!PW`1M<g9xj_D
z2eeOu_*+F09<k%CH5Ku<jajpCs7SIeT)T043McOBsD8KTKNCm+Xu*wmuu&{QIEKfs
zaDWqyY4jIVB-j^D{}`x}eH`hrVoJ&9@-fT1TGEN)MA;0~l=l?g>o)idPQGEfIRtdE
zLw*j3k#%B1SSjenU0WYnBMQ)Pf4?(h2qo#LMR&xM*DR`3--y)KFP@7Lfc{bD^H(xG
zE4{-ruLk!N5fk-DbXIzsqZ_%<n@Inq_dkdd1Xm8el1XmlD&)d*6bL7Squ!Tgd)wk4
zU+@&kWc88@3#$2-E~yXyl={V1!OU83lS%P0yoNo#z%G0O85i%9{XdDcg1{qeDHBx^
zDa+wR!_2zM1ouRP5Si4QNN1%il^=L(v6Nnn9ZF@BMXLbV^fMCD8wRHT(g@anbGUvj
z6%Efw3@E4G5&V~$F?;jg*!e#iBdz&=`Q(a-$6v#M=Q{6+8ljuO&70bKW$rCp6(dKn
z$rT8v92Lb;8Va+ZaP1(YY|qN}@C@USaw;nGEk|v=J9pp>2Rg)(ijf70f_>bE`$nj?
zeu(?qjSxCrlz0r=iPH~7Z;IgW(f`tz*%guS*{fT_GgL!UX{dK5z`PITfzdaBqgLOb
zL%wd&DUefN|M$?u$RJbE>6;D|;6N9Tq6A8EG`gjo3E47Q8D)mcl$80>cTGm{nfFGl
zwtmlv;lz`$lJ8%-Cb5wRT_IXLmhHq-Y_fmoKgy-3B1+2Lbc#;Fn`&t)Y!oBLx}HcS
z)xy@^%-VU&ka5lCKWa+xv96{izF;Eyz4cVCWAT49aoSz(f7BWvwQu(?uPFz?9$5yt
z&dTZ?FTsoLe`$Ivb<DQ^E6bd*^S{)sH8#uUz~8%Iv|c9;I~~GF{u_bX`lgzDj~uL_
z#x3EsK}MNm0q)7dj_}^)|7a?U&A$IAkzXIBasq3@;|r9cgcT8e_<=RafU(o&Sjo)V
zVRJQ4Xex?5l+8}K++y>K=@^ZI9(KFvr)oEp+IrDn-Tla>?ynWv5VW|?(f^}jdCpb-
zqvp-BIMvD95Oh{3N&5P^*G}KYqb^1&`b<~fS&nS3ryTDGcV^P8Hz-a;P;01;#bhyv
zKA)Q1ava-h&(xX8zmO96TaXObnY~`me;dG=fir|#8$=x9p?R4rpufk1_lc~%&I~3I
zbi9PrZA~CuyCD?qSwtFgUT#dnsU338MmlJG74t1%tKL+Iqz^um0pre#5&i>)M=~4K
zx>k#LCd61&A>`zKDB`Z$>3tOX;-3Wcp&|-gXv~njU9%e#ubZ)ZA6F(r-<>++M}EvL
z9iFK5DRB2*48i=K@RTmqjXXAB#lRXbqjoq%GIhjq4R@Ej^2&>Oj~8`nKW8Z}?Dmd?
zJc%gW92F?)e_5)kGwTZJ5JsnnF*JK-zq*K;lD2D(vDlmr*%4Mq-YZM<XfXDiOxU^C
zVU)1Z&a5-@tYo}&$XTftvmCkb=_ZVq62i7T>BDk%Ngkix<30E3qxi|-eDz+@XP8%(
zIJ}cxBw{Kib6U8RMAmCzC(N_NSZ0!i_ba$Taaf0krcaDQ<yPRhL#OukBQ3eTaf0O;
zJN`y%X85A_prKa#BoeEA;>WT442JKgShHX;2QJJ89iF+~YBCjeR-5GVa;CVQddF{;
z=KlzVhYNZ#F3@tH`)^La0$$e%n5o#V4puW4j^ujqFQb!J3D^c(_h~K_+W|X1>C#;D
zjae1R8+&EOG*cP%Hu4mG=BkMbvGk1d%>O?fkcdvM;8JSr)vdkdUm$Dj<y%HCI+F&!
zwMJ6>P6X33L$ZBLGX9s=<~iku=QvPiw?AoT2(ji;D(rc+V9%`>Xw8G=_IlRH6s3<Z
zm2noz{TCnalP+l14Cz=_vwP4lgosN?vs?Zz0iZaKGiEUF@0fnk4rIt(e58+u!!e86
zmL&fq+ZdZf8p9O6_f#d1J4ZK!^l&O6ck!lq6atCl$XzmH&=khN^&7JY8^p(d-r4d1
z_DeWmFhqqz+OUZ=zG(Hur7*r<yB&#JL~Y*Y0xTR|o?rZiHYEEqX4&3=>EtU5*t3Dd
z35$R!nh(7Fjc4<Wh7`pBmWyUwK&4Z#Wdtk!#zR6lWad>0quwe>?EwG3HRuA$7ZVCt
zl6ncgl|avyX3UJ+zO&gzL&|^!Jrh_}HBAAti0Yq~>AL_{ohzQs5*a6tqLVexfOv1e
zET)=%x}sCY_cxVzuvsU-q(P~T=ZCjY1x$)*MX?pG!h(_1M$YA7GEl(*t5RW=m`**}
zWr#GZ(yIy%v*ItuCffBgX47AQRazQYr4>?9g_r^Rfl`LCLZ-WH2x!>Yh}S$S^Pc`g
z>F~>+*i5~71c`UKV%b0R=4V$Ab<_2Bs`z&`uLoCIs`fOmA>Y&Zms9oT$(_sE`I|}w
zJB7#e)_?r}?XIS$jlG7$c*VuSYH8-KX2!2omag#gU~O?<8aJVdii=P{&?{Z<DH-5=
zd%vM2?t90dW+8h&GRRk&S*XIA);x2US(a%b+h^sLNNq75b7<|x2LTvBgU7`{a_FyP
zX8$m5(bA&jX;D7W(Js?}S?01B#qXd0WBI3yRLc3;V=IF6v28(a3)yQv(e$ByPau0O
zm2#(ISw(yzrgc`Ias5x~)!c0Uo&qEMsI`K)l3r!evfQ(mser0-T|5mR`3S<Oyo|UK
z&uMPU`)3Z*1Qq4)QP+z44vIX7)(PA(yV&<mgY<csjHJ}O=cfN<bMTD}yK^&=UJugK
zIVk<ZcW%k}yqsz_H%o6yo^H0?^iL+=NOK|}tq}ch@tV9&4csHef{dh|HviTEEP>2S
z|8QC5%FA?){42a=1PJ2@{3|RsOHY^eAG!ZQ?VFDlP&d%1iv{|;wN$h1ihoND`9)7B
z+5excE+AXQ56C`z3_Uyqt3FL{`Y&FJFHUsvRo{`Xk%FQEdHBQY@Hg07wOX+sBN0+D
z#9Xa@cvm)62T~NVVN+10Q1AcjM18u!(G99?`;!(Cifz6OUM$&gly*_LGCrr`P82_J
z^~*UH3+>`fFfXI<0}nesgT!BNKGiIi1+PkaQEH##loN4(qzdAB>3+w2DO&KUaYa-g
z*PuX1U=2hg(a~{<L_>V1Mdcp9Xc@Gs)$tKQzqv`C+nwCO3EqBClm&NS@pn3o`94kz
z0gr9Px+e84fj!?@+>zknC%5lSlGso0)`%fA?#>PhqKP0*66!@+=ND~9OE2=J9NX+$
zN&{w_uXjOoTYjB~CsLvMMm|T#r#5SgmT`aAvx5DMcs&z`o=Tct$iLQ<h>B6~WghsB
zAqh9ydh-wNxO=ZlzKijl>A-LjZj_$7*nTc#NXlxWM7#GFz5Si}Xy<^zb12&G`_8cj
zE6kuX4nyp|S!i*+IgrBJK$Ma?#ni^;8`IFo1)@v}a_K$A@Ua@stIwGf-mF7Ea8pcK
zcXX9wq9eDIqsD5Ko${EJJ*NCehh3xfq%>}Kco6KJ6!K%j85H(D>ku&_6d`f51-oD>
z#bPXDtVM|?Zjh}1F&XZG@v2~QDu{hIV($CooIvsw!hIEHWkUFEUb($jzC+`IXz)#x
zit%fbB11x+C>6^{Cp6hzE(<h=MUUB|xKrvd0vG>NHbdjMLv~~aOqnXQWt%lK9gmt8
zcMtYa$Fs4APd7gVrLoLOoMq-&9bzvh-KGCD2nI%d`+7GPbpg**%XJZ^B@`6gBir69
zbY=R4{vIcU;v78>M~3PgJ@8W(-8^fQw9>=;^;-CwbM(+3em;p_!SCgoC@Tz&ZI>mg
z42_xP1xmGq>YbbXf<Xnc-@SsJ#rv*UDNd~ys$j;)mk&e|AO9HVdhKLQ;#E1mMtQHL
z{h3Q~LQ-bh$#A#pniW&?DMq6Trm;`>gwA9-xmX3;*;9QQmBgbnybsmxXZ^uMDyGxX
zyZAlyNK44!Yo=c?0pr*e>yM4Q+4Do9k9No0(jC3=Q92JqlVWUHrG^{O-fn_9R-Xld
z4_&?7->8+;s_@s;o*YO7xn*t+hKL9}s>$hW@QWCp36O^``{52^zvYZmKT9nSQrzZt
zajEn`LLV<=+v4=>Q~TmxRfr1oYP$uIR13J^_Q?^AKGLux8r!BPM;3XeyF-Mw9|AR)
zFJ<5Cn}(4wFUUME5sp5-LwgYPvb24Fs<XDS_$h?js>ny*zrh`qfBS(>nYk}6@GrjH
zx@Z$xi=+V99g{o|-s@Q}#(0^1%?eJEn-Eh>fFsnqReSMHmagZz&13lKneyvP_3Le{
zwdHQE@yHHS2sC&0RFr{3w#lcJ=~g-F-D%dZZ(<wb&spMs*Pq8-emjr3@3teajZ#LI
zeq_@Tq84@2I;IVJKGmncx?Pgud^)KQ3#+JGYr~+SXwK!HyQ#8?3VZg`mAh)1q@`^f
zSvVO1Lk<3-(#E`Y{UeK7!*EkdxM?;0?O7_UqEfa1w<z!s8I|UyRRr^u)Ui!8Ic?BV
z-->xLu1Qzv?rWO<wK+W1FyCT;(febTJPpN?B|0zKU3wtW^!n$Bpe2QLW*O_3z!sAn
z;i0AwjGPw+pjpv1@xNYr+3|a?9x&eYr%D<JjVtYG^Qoe8&%{zQ1d(h~$4f04Hc_(&
zksMnp(8&C4?F+`;UA!Gar8zED7(}PREN-Hp30g|`)IzVp;`R7}+w1o5ClS}A+aHY1
zz3I;qO!CZYP1C=q{P_b7BTC?5FfMPfb3U$GaD!@?UCI-$R2X}*V8O4?moid{43(qu
zl7IA#vd*PY>5i@m%os(7##F=J^nH{?r`g5XQ=nnQI*G-X(pDRiqbbCDQAU5_bfu-i
zEE!Uuv7m@7z@3e?EWo{t<M5>E&o>Jp>|OEtPH56vD}&DME?lgFdVrD2NYj7l(N1V$
z;1fgmpd~FWMPffh7=)|&n_8ZxP&z}AP|E)!AsY7^U6$a^0YUtS$Za{)jMEg=Ftq87
zA@m$cIu?QVdnC?4Hz(WPqI2Vk7}w&O4Ay->H@=~CYsc-~^)4msg?a;6$i}MxLKCO9
z6GEE)#{=y*{bq;AZ-NT$%->uU>BRraGL`NPx~(U8@%P0^E*Od|V1d2!xkD2D{u|qb
z3`P*hOhi06)VK{rNJD*GL;z;6C@Scg(VYIu9gZ%iOAK>!|7=`Z%pYTNMWU{;t9&Q5
zL5U&7;Hlq@5T^KW%oCfmU@jYRcdt+h3GKWTl|{?+XEh}mlwDg;2ZI+qYYB7TKPGm{
zkN^Fvm=n6c)%l0n#ed6=OS(6uBlbzk4hp(5_)OKYM#(m_xV1CAb<I+3`JBL+egBlC
zKk$^^88G&;@;epX`Z;$}w;ieUxs@F^C!_U)t;&JJ#KrTey4<CfD+tSAS%Xa~E12rd
z9HL)@MDD2nCi_{gr00h3Fz{P_X8d&RO}<qnuYM2jWq-l(`T#fCPicy3RN_77BbgHC
zW7WHZfwT51$%Ej}X#2r0@8~;V7yy)0T7mOXHJA7~RQIZP%EW8KlCOg~t!>S@Y3!K7
ze>&%Hi_9N$K3bc<DtTYPg`I=6e+tQ-qA<a&27HHZ)5Ward6iz#t%oIDggUK<9ovIR
zHGwT&2va#@r_Rp|3<1MkvGlk-h@Lb*O~y9B!)Pvs?0eL`sDY1-x5h5amtBh3>QBBG
zal8HjWWVBs@8USVoMQWbAl2G*`1LTASJ~Mv9q4Yr3v*KsRrRApxAtQIwtFlBz<OZ|
z=1UtO_-Gk$9RU}sJa7+O-*sElgK!FIiE&J*AyrOY4IAqWpS$d)N-gA)v7}xp!L82D
zS54qw=1Q7$YN_;Pl?OflolW=@Li6kuU-s-sHTw9T!O&5=lp;~^bDqrUoK>fc(hsMo
zd$PQNC$;fK=F~!h@kOCE$A+gB&eV&6!P$O2?Co*T^L>C{&$|m~fVv~3`D!FGRx$_k
z>2@zXXI!#l+cQvpUPrbrLQ)6a{Mnddid@n0hAp+KW>~b(?<6bt+|X3Ie(QYK=7*&4
zDfp5<CP&}0>t@XE(k#JIeemS@>Bh(>gj-G9F@Sj5o#ah7Su1808snd=U$P`hvSm~3
zK<wZ3q^HkYzWR8-;JT!9361<MKvctQsUi0W5sXhI;P21OxoB>GVsGfXBvcF6T7uME
z==2D(o8v2jkE?hOJ~S}Cbt=%sFen*BInMC8w0zBTifh9ST>pI2u)g^W?49QX*~~2Z
z@{=z5HpKZ7>Lr4vn)%9t$1^Nv^>ap=uS<iYGU%+}r_EL!=A~{Xom?*3&|tYv-$IvB
zK6B5R>2uFX-E=0osJD(ZD;5VULVVCZ5{U39TENFU4JcrcHa^SO4KZ#BB){U(e2QX}
zQcC5fkg6MJ>^=tPpl1-SC(M|whR#Uc<|r23TYYy@mXG8SM-tltj+k!E-)2cq<Uc?%
z`0nH>7YSSh&@(19!=FvE#IPuD5#8aiU}=MHUi&sH8uGc%fS>3z*-FJ-0a0wrBs}}u
z5i7m!u<A9}gj7b<Zz|p0EyGZmH**9}j9aRq$@e6|j;iZ-<iGS#j|*`IdSoz#Gudva
z`rw|u^p=zma0<$>8MCKkWvOQ}UG56jzz9BNf(0hrCpSstXtX9Rl-+11#Mt6@<-Xd;
zJ|N|7ki#B(vw1zI7C*!_pebMZTn*Bez+6{$>*^P$|Mu!+I;O7gg+Iy);=g?kHC&1Q
zt)-m^k)4TFFNt59*HEE_3dyHJAjGQc3A+2Pg7F*_8OkOG&{G#BUvyZpycBUvh;=!J
zkJ$VUArwpVr>p_CE5X{Vuvb9D?-ko6|51${Px=gntVHaSf%cqIKfv!ewLu<qEbov@
zFv^m45Y+y4-n%32{_pP``<9avV#KMHKgfOt<MxofTVpC%%2O&zJ6%%_&Th~70T7g8
zkT`St9o^YxWZZ4YEs^Cg!l1?1Vb-Ra)g9bj9lhc1460Evr~wWUT0o$(<Al<kznN0z
z;byC-;D)3gzUuYDzMF!?KvKYC)3{pYU|zCTD6ztw+RZS>k*^RX9_w-0;v}n9npXJe
zp8p)ho0PHwgIip%{{t01;Ee`@=k`8FJYYT|`tJRJCw$+#;_0}`QA!Vc5~GKEp7H}m
z!aJmz1J-v{;Dr7u3eIM)=RBl%^I5P7uSTEpGvM>a#QmHL;uKcIt)Po>xiZdwoos_;
zLR9URc^yCs%cVnfioXR}%OS3@GK4u^<>82`K|&L(;N1#h$T-zEta4+i)F4H1R`3D^
z0vWH>H<l9Ia#bN6a(tk_8Yb$7qBt?qd|sBI0sCJ-!ycnGiLf9h4b^T`6zhd}zP(Ky
z9a&cHXxPVh;8Dj_rK4aphzZKy-h0Q#2a+7jAzrh+Ojy*~L8qexMVGh=^Nas+2igxR
z>1oO5<FrUey7)08A#f!<?ps>iQ`YXfwkZi)fvHQjAi5uI`rqK?U#aMH8#UAaAWx)w
zEk}r(n61Ad!9W53_3kTkZgv=W^5shGsiL%`(vn9fm-FoG42Jgi#H+N`+rq1~tgNif
z`A|3h6V`zC--o6ac^;O@&I3{+%g>s0O`P+?22q>Gyn&0D1IvQqd7H<1%uQ+oQ35dQ
z`Z~X7KK>e_F<Ov+*!OwzxuGaIZMWJ_;l8uHrTr2S6yJ{=uLbtG^BRP-90I9$X=$`t
z4oe`ZcxX1yUQ^gTVf_;2AK;3rS$Yz08Q#PXIJwCUGbDPYto8r6!81XZagZYCJruXv
zspoqn=BC4!B;Jb7Dm$o2Js<lp&_7D4{UyfB^jUVQav;jOXSk`_t5tf!c4$kU9(q*0
zTeBq<=kb~A@J%{Uop6_L=hx8wD7h%SnqjYROcvw#^%T6c#uGkW?$t(M_*1N*VgpL<
zJU2HXnT~La@nXu?3*(;SONC;uodQ*V8w^HyH7N{P1>IjME!xKm6@%?uNqN6$h4Z)T
zhyTLA1uJZPIC4h5JmA&w`Vq#i;7?G4Ro@g2uDjwtMNPpJSLzS(vk2I?gk){|?aI$j
zffIDR(f~ecf*SJ!W7<ZxCx!mx0{8Hx+ADVZG6S61)^9+rEH03XyxMq7CBY^FqBOw=
zZsAu)m`Oz-VeF9)u}cp;%&>o`n5CJ-TjjKqB2x9H-?z`%17$ky&8o-@<Td6hHF$cj
zkp3a60Ahy>ASzf1c-q~rCur<S^sQMMGS$Dl$@su-u2xbIP&TJ3kfb|WsH*U(M6-XY
zgwJLf{!WxO3GSs=AL3p8$Ir%bMV&rfX(G9{WLY)cGLSCugBSc<O|XgrgZPUz>xrsB
zfdPEt825F5;qT&4N;V<_Pz0;eIwaT-m<3dLbgn8OZaCu{7sHO({$*M%PBnI2)|R2$
zMcfcxQLBVO+;o4boaECFtm@=X$=`Y2{KC&Bdc(-LZI9LXIo8a5G#^Dl=L*Ua^kv+T
zkAL~<Wk0D<kX+s&x$a=%t3ZbiRWsnsp3T^?^{T_{NVETx48mjGS%R!@7~#Ct^xLr=
zt@<%B$Y!agWlp)UvE-sJt8PF!4-ne2iR9V(f3fs8yQ5S+SQdZ0=IR@Pmz?S$gM>C=
z=+J9!8DUX&ZPX(8{k&cBH5hOKCy3<sX;zz4?f}xMp%{6nF7~8c25HHzQK6;?uPk@R
z(Y}e<R_F=9OYR~DP&)~3oHq##BYZ*(1Tx;4c&kVUf@?)y^)K9*zqN8MS?0_q-9^t9
zLbdpai?L}IKn=aa?H(#%!{_9sek~=NyK=ycuk{U2hKC82&M9ipn$h{&tfE=fweLuA
zC`wHu2HnS9MA@`voS8mzp*2KDHQF7)2|fvC^3Z6YI#rV=3Ymg&v>38*p79xezkpwR
zEjEgVq<d&yb&~{F7C)KfK4W*Kdcu3hw{a`~%5cquX!UUpE>0aySJ+>w9SSHwhE$t$
z5XCY>@gOD%*@8#(?;IB7zd24f&kqP_V~m`9Y)o7j>3sLo_B=X!oxR|?t!uNw(Vyt1
zt)t}0zU8MGNV@B{%~e}Lz27a339CeY>!wg!H7|$xK@|D+m))z=X0vfC82VN{cFQ{s
z<c~)Qc~Z45!%lv3<)fx~8hwVXf(<E|AI0t7=!NQ!&d>}E6uOSszz#*;PBYvVx{Wy0
z9P5>q*~J~j%!>S$6R0S&+vTRp-uLxZ^Iq@Mxq(%`Kb@GPk*yufm*Z55C?8co(bAy&
z8mK?ho+=z~m`-s23P-Vv=w^1~tJSiy<Zvy-Kd~05I&Vco!-4A3{9vl=!noY(9FGW*
zEWX#VnX3y=W%+#9)DNT9>-vn>fOZOX@vj&q(MvbdWNYh>T6O#`ABn1|#~;aq4R`F@
zh$w93B_^ckT*-OhkQ0><8srQcXS^Y_@tU7ZxS1^+m!QwB97G_Y6gf)CTbKq7+9P%y
z$eun*5?WyuuZRM5`i9k<vJAIKoU_nvy8nH&FK+b%NkTUl2c3YA6L|zD&XTs0bDI(Q
zDb^tWFy1VPxzSLU4=dats0M9SzSi?Cwy}5s?6w898^a7wPJd__v_^Yh&wX5qztYQu
zYZ&rF*7L0~)fDZe2i@io+^Xu}8(ODYuDk%wJsu9N1vj>`2|K2YS{dub=z9T31@qdO
z+MFp06p1|2B)(aG7=C>c?>ppY1`j!GPAMD<)&@RoAL!HQUl{5>ieZ%R_6?g`KHE?-
zElz>=@xru3eiW(Msgaa59Ouc}KQ9p*!}Q2B$~ZfRw?Gh6Ea!!jNM0m`dj;Nie)sbW
zK@F&rX$f*9G)@RZ$BRby5w8QC(qMz(PFE8oMR0IvRripn{8SXlK@MO7De3Miypp=j
zP`9s`VH<0$v~aJQGvJLx;gs=gyZ5-sp|0Ps?kup2kbcmA^njD_AU8pH#Euv7-`LPJ
zaY0{|%A2J%3YPl`yu$y839bp%^*K8<$|@#<@FJ1J%K8^_Znd0kMbITiv0!rC4@l2Q
zHLh?HG)oXqG?P#&LD5D>9TO@7$8}m&CaAkd|HSXP;qX>1jr_02=br*bRRAQw*0jsY
zAXWbY8nb}!QN~*3;NiztcVu7V-Qm~j>*5BmtIHy3#9=~YGkdexXLnRJuJ937N1X>E
zD<Y%Vj-)kN$HY#9D3lI~DE&8ePHs8^HnHlAP&J@WvHFNm6!763`R~>iPMj(_RVrM)
zKboeaJ|^rN_iz$ns}!DZ4_;5>ZF8*selLs^`P1<;Q{%_Cwo&AZh-gRj-(!Ig)*2Cg
zIh3!rHyFL>3<PBlH_%M#=#6ai33n_`O7h*~V!zHhoyTuGsA5ZaM*evB)1kyp$b^X<
z-#t>v^GtJyQd(NuGGpJ@%V6F7_%_JyZd-+^duaMz+OvDs)3memU?HBlTQJU+2`ZUi
zzBb3{<px<KD7o}%kbc*WZ0EZ3@O7Yf;#%XYwX2_ood5-KTT)F25zHyUNyl`G)mHS8
z00@@Me?Ke&%Gw^ltSd6@Dwn}?SZxNE5xU_fh_b1Cx|m8+IE$c&pTUlg7j-yz5~aZM
zpr7d50S&B$_|C=)=?ueX4Zg#NNYVk*v(ldW)y|Zd6KWY&aTT=!5gx^KJWG6yDLea@
zPjpt}<m<-L+O-E4($Ws7Ycyc7UDzc2KIR<8#|T=pJV|EWdKXdx5tp46eT`nVrvV<F
zef~vjgwr`r350uA_WR{yIPf5?tQPtpEKj*lId3Yz)n3P;74QA?0Kp>{{pe(hZ2LLd
zyY7}KE@j1C*H2H#+Mmv<8^^f>a^`Hm!SOCH@IB;5bd^}=`LQ%f;+g`+g>x?kW;>hG
z_%5iRPH6Rq72ipdFQRAwXzI0U5w?Xpxlg|B=3wOCOE1pTuq&lLm2%2%yo^j=S6gFS
z3yD<&Yd*VuXT}y+QIKbeKNa?BJFExZ^qosTvQ^8Mmtk8ksreev6s@w|9@|c0G`;iT
z7no#o*_-F7*7}#)kDq{B`l{a@qNk)U?#;hlthPl67%S@nem_xcTORCf?M%IXS$?6^
zOroNENxh`%#LI(ijXcun`>|G;CSzPEFK~~|SGMJ}IP88L<{#>^_Wuc>jt{mSRstFP
zXDiFif2<dfc70h_%@r6ONlbjyZuvH6_f3Ck$)jB@X-sb9%bCiiTO#=zof7_bVzbDJ
zDAn6fdfb?0$+}PHUJXC=H4b<hBJ{h|m8nD~tvI!H{EmgxZeDlAF2~n5=upAF(k6kb
z)<>J`f-~<HE22b2)r1xCC3~GO_9`Y?eTN+8uYFfKSaCd1;zuDk4mNWq2FetjKUKtJ
zTu_cJ!~{F^^wbm9P}pcs3daw?&t7zbmQr4Kenl$F4f8U@;p11Q#wr#|R@XhX@yql?
zJL$ui8JFx$Sv28}>b9=&ap0j~133c8wc>}u{@B*<A0CU_0768Q={)ZgXvXd{mX^#w
ztTowup=8Fxv-XKjj^A_LtstjK)m6k=fM|qoE5<xy++<Q|V`XuU|CjwZq_v+9h@u9>
zm*!oEzHw*OMXH>2TKJA~+sm@kn;Y?phc_@n#)B=dAHtO%N%#ky@X*F$D$Qq<#oA-#
zZ@urtzF%z!PS#@Ga81%ZZoXM7-?hehnap>0+GmV?-#ahqsXd}(izn!PC(Rhl>H&W_
zH3347G=nD?Gr$V(@@jQ<I(T`!ZhT=|-$B#p#^ZDNEb_<SO*!md9m?Ur!#}Jf)yYyw
zWn6O1R@5l4l%Fo-MPPxrmLvf@R-M#_srWlyge1{iGEybrpUEfg2%X+835ZeGMe_*I
za&(9)ximp+>^WG<qtTjf`uoyMBz7b9)X#hLxUlZ{W)KEMJCv#+6Ol-x`eDuXmjrCF
zzrYGqf3N)_bEhxYRSUuNsQhZ2j0y|SUPROnu0ZtR4-bW?OP$dko1EUx8yby5h8nNH
z^sPBrS4#=I?=A?$#RBD1$w+%b2iVd>(1J_EYK(sVDV$o0L2rP+x|+7b(@WR#<-2c+
zbWE;Nm^{vPP0nbH%N@*)b&sTXYW*!kv1m#8>s95;$dPjc-N>&o{rZnK2&W8s<;6IT
z&e3Z^801V%V$zgSc(V0k(^B+fteA^ublXH6hkd_kRri0e+aFZ)ofCdbrLMx1ZKA0^
zi@7LKdG-|2(t2HF?IaW7a7{gqoU&W9J;T;paIeg$v)69iaq{wsQww}{!*Tsp+PBvg
z{4MK(kkOh|khTYOkN6!b-JUZ3C%4gxPIbS9wb$95{(B70;}_|>_UCc>=BCCxzXnw0
z*_FBQSH=`CkRQ_0S4HN)(IG1zV&ql?+?G+EQ*#Ae0a<o5fxm`*PgP{IJ9KTToUpkq
zq@u^smie{zvgH1k4V#kH_qv2j{@ZaXtZvi@afZg5aO+@<brCpW!gAERAk;N@`|Y=~
z-9N+TkeQn%=U%DPTc6OTHX_4K>+q;z#A~a#9kH%|H$~WG{~ozv($;7jd9tFZ!NFpU
zSlNZQ*!SMhe=!7FI0W9tgDFsWB5E%M@gQt7=ix)=X(iC^UQwaJ3w%mc!GlTRsUrGd
zg%X0ka;c)g$CP(q3qy;FDYZCOd;92uxl6Fd!?0k2!1Bl)1A<@m#b6<b+w%PYDGHaP
zfdW`8^gH<9Rgf(7k?8h~R?6S?kae?+n~c$M*My+uNu<?~zL;vr6BzF&q7QbJ5lXvy
zHR$sgl0Ny;f&t_OKcRc9wgamfCH{jq$%b<GEuJ1Z)J7&zT|86-h`nC!4z(1TLv!3*
zJir5e)mB4;vEbn%Jz}`=!ubu;fw~*|(bT=Y^fv<Fph#dA!|Xxi8rlmFJ2K8~Q0xv3
zB2=FSZJgBx1G1orKw+qXSf7l5l^ZXE$K_iVz~S3n@7+u_xjhaSJ%M7l-Gc>f6pKR}
z5-4ySao}2YQrHh9>XP=&Y{;;=feFy=fX>W%9JkeHHk3|VygVr4(V0s33+1@%m`2Qn
zNYES^u*KjXX>rDTYjovNM1>_&LYeSO5OBGb&t1;k1C0%>4R$P@8wRvbGaVHLlZh>&
zHSiSh7M)p)M$8N8lKXW;+AYCrBJ<>T4*i<6!?LGv*fgqWakukR2#t{-X09`N6?m~U
zIRhq?zBv;iMfPCX?Woh2O!Rd8yyg4jxF1!>&F7I)n`2@>kdEn8OE^(0SafqVx~r<`
zp(Hgs%rFiL`=mzRgIYp+jk%%RHdHbkPDa&$*EsbcEubDp18(qV_wXBW@r)KY|1oJG
zE}Jww)o7n@w`G_*JjH09?~$B4G{O<x1L*jNAtaEwG;2276;~o$%8myQrJKbA%?FWg
zwoQ0jyfL}}97cC(!z?=jd3X-ogzl<ZdMNtwymk+&5W=%S4G|pY7DJl5qO25^Cr&$g
zRoAML@W<Q?9D_&c?pUw|HBuxW2BhqwRjK=AISGD=R*a*2xpDO=Cl0YQ0;8G5aXk?(
z7Qe=}oA+*RnDiY~7Y}9-V~)WjrZ^NUk@aCbvfcJB^tnG&75-w|(y2YvGm``aF4qqf
zyIDj}HeFYJvpSSp9BUBqK}aWfpk*9#wmA;B4qSq-a=v!!IfDPZ8qL~Svheg_s52;m
zKO@`j>7lSl!P)bSe0VENTu)Yx%n_8~Oo-<$s926<IK!UAbZ$lneMc(_wYNCZ^b;9+
zWsjyh7m6_|*FNFVih;|~DO67!KGLrRw_Px{jV_if$M81hh?V02h^|TSnf$ebqUs#^
zcQF4f$`e{_KGBmq%@CGhF-6LG$LGAwhactGM>cVxTwP-uL1)N0e$q$zYDU;cW7Iho
zlv~q<Lt0-Gp_H@NIi`~sS@``;5)Sc5!%n`^zNuf-;~krlXrT_$&t47{cj2#%gJDkX
zhEy=89%Qx!w{>m<*>mYy$U5PMr-&J+2||72l~>?uj~%2P;{)EWh@~x9JFO8fXDGJ&
zI~sRhpD`z);vouC;=7E+EB~YRPZedE&!4lh`~7Vm!jEi>Sl6e#3I^^9Je4^K*3_V}
zBi<sUj!2ojnf$(-Ssr?K$^nbCmev@rU$qX_nyQKwkHw+5^1K!+soB(3Z7OYO8137p
zu=CWuSJ-+e@Ki+68<S_xI#Aix{fT*J*OK=)HtMG?RGyMycTu)P_;%mh=6Z6<o;zu+
zqHvL}aTcqI(I=HPJk1`eG<=e}4ps`26|5<6Co630VMM6pU@X_t`o2^-c57cs95jaN
z(SmkW0bfWx%(pBQXMO5YzMAod0^BWWUWEPHqI`=uGN@tjMB!_}iqOuBQxxn*|Lt1l
z2r)Ctr*_<JlbsQ#T4_@q-DVo4^L|3k3DI_z6Uv?D@H0Eo9lh}NIQO`6)<@><EzfY0
zY$4Tr2d~hJrv8w`8Y;Hcq)OE0NLa=(zK8zBx@KkKon5i;eVAR?g=;?o+gXIRiU;8p
zrcX4#0aJc6j)V~>Lbe#6&eWW&ZCP<oyQ$4Z;Kloa^vZgbdk|k-rVoUBZ6VM`7GW(A
zW!1YF)MT0$-$;UI3VqBaIf8!)-g^dl7Uj@p^Uv%UvrAV}0{{E&9f#T_R;O!>`&kyv
z4w?hx2m=*cvgL6w|8y^qAXb`T{_b^l^t|HNC<l(*jIy+X(T3tJq=HNX`Vg@MI#%oV
z8Da}2e4}e926@6_x!APrGDLJ&7~iK{Uf{pA4(;8446Q~D&@yVnj&pC%u(hi)J=se)
zm(6J4d#CTZ`65sD`TEVph1Nt0N7LQoOhtp;z%D~~Mf(XF^bPn6QoB0x6OA#cu}(Cr
z4Ubo4gMVlPu}mJ<SBMrZU6Ct;`E9>17F*VA@D9S`D;<dnh?1$C+v!!f#Ca~4FXW}a
z5C_`G=dgkvHbJ~u`uaRR^$dYZCgkH0m-*lR+G@X<iFD1r@-#sM2UT1RQb$SBAMR!m
z_s#|STR3{M=`_C!mWUmO3t(f#^3+49?Trn?;(vOr_}QX_OI{7)1O=Z58htF<Y9Yih
zP1iTf92g8EWoI=#!PJytYwt9+G!ihSUnZ=en>UkrB#f(O3**GV*c=-z4a@BPML1?;
z+44$sLcnOzduTbN1uo^UPOrX@!hKI(WBPzVSXqK#>ytUcx~tz`LL5G}03k{GOu{JZ
zkNd1U)5<X6B69o+9V|2(JU&dcvB2g7zg)`vG}L6_xLu4$Ud780gT9Zv-5G2sY32%Y
zZN`QX@m!JvybPKtYbG8k`M#hrnhDywgb#X8T_@5dRp;(TTDmXKIwEFeS${OI>bfO!
z{oL@OcC}ds3%7N@!?anT@I$IV6o{GpG?q=4N$ha{usbFw@}U<KKXcW4HjJ*mSG_rK
zK6ux4-{Bk*pKP5A{oE3!rzUg!1pfGPjW|*}rg$Z65D96u;y`iYd^usC$cB{R^<&%C
zmS=~|FF=YsK5)K;IN96<DM>#mVS0QQnTSFjxy951M)x(SEO$=0>c2o9Wkm0Of!|+Y
zcNk7njVSlZt&uf!H8nBQjx~#0=%>@&3iZ|3w9TLEBCOY+a(JQdZzIp(9S9HZi=x!u
zEZ=3*+hbk&);hpT1dG-z&rTcbm}=Nqn6HAQNGKK43#m)cI6kzr&N7|dT6>=;m5!vH
z=x&l+yqKNA0`@5(i%=oGZUXB!i_3L|bTzRg!Jx}Vf8byD5ULKn06|{$1iXVY73@q8
zxP9hmg@+~yv*5$@egn6eMA()_YlH2N)*qsB_o*yYZjDMj+#YwahR(_lL~f==4xwGC
zc;PM%j-;QyI74yrk8T4K-=&f`P2}P&lAE{?o!WmaipU@67`Ue~X7_ryH~e<K$Fib;
z9e49vkL%PjDg=^Ywf!AM(Y<K*`jw6op4=*n%SFYPZ30(CuW)s?$o@Yje29;FR9H^}
zj+x1z*_(oh5A!iI&FW(sr9+C`rs*$Np$Xh}d1XutbokbE`Ki-nbfBvK8a{~TRFHNu
zpm^B0*h>iTD7M0O&PC*-w375QH|i0j@p8Yfm@VobYrQgZQ@Itcq{hR7cG8|`m7Y>S
z12<=Ng+(Wi&LL*?A(q{-YBZj2ZK`gOCC(5(9bZe>v>Nj6n)N-cj4fE<c$j~sOwrO@
z+inhH%ahVZdagRHvN^^v<b2NZt0;0ab#(=fEn_7eg$O~bXawzKB=Mho;^rs6_^YK*
z!loJtZe#i<z>kAb&lyBD9E*N+hgYTO0$~N5p|V#=t`3BehiRRus3^Z}(-&Fk%02O;
z=|>?+;sd;IH}%FtQU9Ra;7J>C4&1)6ZNe09PcL9RiwCoPprmae!>3RsMJyZe+34{x
zKPe2q$NkihIfo;XUrHmmJqyJRPgSEPRpG~1k5Xle@$JPGCe%PZmty@jr$m~Ot7wcr
zH~hK;9k$%X6h26!P*=D$=C6l;o>n!K#do8WMl&Da<Tk@5l9FTSH!mW?+-XTKVUYw$
z%X6S+45~rCmXHT$|MCjO$jvm1h#V;?lMwth{Vv^b*pB@${$?OD*6kx~n(-THW;}SS
z@29D6v-5smhdi0foy*j^8t%EutMb{cwUo~+5@Spl-_){n2nZVF2?(Mc96!Ra{*R}t
z0E%OYwz#`H!5xA_@ZiDS-JL*ihv19D;x576J-EBO1b2tU{=Q$oeiaL|Gk0(I^cFpH
zPM>pU2sY)7*NuLdf{e)5u|Qf#_nTDAw8PZBmET^?IpMqAHLR5HbNrNmGR6(XrcJgh
zZNbeUj8)_CfHP-@Z);6fQ-9=H-vH%i?hBnCvQ7a@AnM!oRc`EnZ6DsC-=u)@S4wu;
zLCpxlhafx6IC4&+r-092etKskzXji*pVn4NZQRFhYz+569;m|yt0=i8D6{K>?YhSH
zuS;pfAR8(NsAW2y<}0<15{WEg?%6H-Y)aZnH5RuRzRXN|ReQ<Z2G}7UdrT`oY=<$R
z|8Hkv<F)SH#e#%2QGjsJZUTTWoI4@FC4+!fQEh)L!u6M$h-w^C+-9Mziu^#E7WT`{
zzt|RpJtJ!C=wuO=#I5GY@2?*C)%BYi%6<cFe&A^INKC}9kH8o{I^GAW2Z6c=rp8SM
z%DjI#xD{lwS{d}ZeqQW(kVCz+dmDL?Vf?_SOU6S$PRBv_ym-c`>oiA6Bwsjhx(S1~
z$HFP`ciSR@4~YJvNIs7^z8D)ip_MXV?1DO`2Nd9)iE=6=<9O$x5p%GeV>h|x4Ig>Y
zE+gB;HzT!Gcsk0)x_Y-wkJv0tR!H`P`Nxl2D;14Ik?6j}Hyy6jf71m$)B$)bv@Z?E
z9HS!2F~AY35W}Q5oyN?6<fXB4f~hDOinms?9^g+bfp`DP1%CpPCIC+;ZD%?U6}*v6
z|I%PR^kCkXjluNUR?((2f1bQQ-#PH$wFFRMbNS5CQE1kBoU*NV;AF2DeS8w)wCVLM
zXDOWJaWvH|yf}^2iD|xg9JOt9Si98$G-JM0O0A>)_iJZq+O#poVbZp7v)%(7Irm@W
z&sTHqwGV#wirHpIIq=R%U(G_67A^2r(~^AoXv_o86Zyl`uVh2mZLa2u7#ZDqo8H9B
zzQ@*;Ofad(^_VoLdKsPxH5%(osu2#fC#f}mD3xD$f-|Ia?+<h`$xGCh8~k&luq5x+
z#>x4WTksEBDA#32HO0}NA!2?}9nLnpY2!Lg*{cY`guafSS`_ic4mPZN*|re;Fl7c-
z%dNi}D!PAdtO}FxH%|vTx$l6hh3zGE(uP{$D9j~Z!ts#An-|8f#8T^F_PoNtlEF^q
z2R*OLPFef;g#E<M7&Q<<0Y0Sw)VdmzU-L!c&r$ZP1*%@j(#)IM^1AVVDt|~qcZUYa
zw%ghho+Hf@Rga+?W+%OY0;!3yIU)mL<#~+$W|HWeOp2T_6CYa%htOL~qpC06_$-^d
zv@|)@iv6%_Rp0jgQVc1}gB3t2NLd-c%DXYF9aropG{%Q;?8TT@Ns|f3d@{B%FGn(%
zm{!%p)HM+#yTt9gT9YvJLT%}E7t1@1No7Y*>!E<KSMp;>(M-1-)PEVoe4)BDOq>eo
zBB2(uWm#sSr9s}>kj+PF{|9pWyqBi%(JWLYl&-6Zn64|ds`K>K$HB&Om7c?v+JFx+
zzqmy$LTx6HC?bG6k@NlsYfEHYxozQKrKEgamH7N-Q0Nkuv8)Hnk(J2sHC$}kroo7-
z5%8ZD)aZA5oe|pfVtJ3;h}oTYW<BE}L9s*mXdnqVemNEdN4x5r_N{SaK_vR^TXUSX
zL66PFB|+sG8=)SoZP_V0HrT0h@eXTv^zj{I+EDzHx#_$d1n<$z#P)T?t(RB8S$1Il
zPNyWP&lOL>&f^(8%%KBo)T>CS_lyj5{cEtFKx!-7Bt={=`bTCE>Z(Qw4`EtShhaYl
zH(IAe>#)ciI^2ua7aar|1qZAjmJDjSOYTms(dBh9R%7m=Y<I%pL#%ocDnGWp##Ug*
z+RgOQ;oKY%&o+X;8HwTA+n_S81S5e9d)gq{VOzJI@&Ya-40n$&wSvoWV<x$S&n0N(
zXiv&-yi2qQfL`9uf!|BM@4OKcOYw$b#@x7dI;A7PMTTU?dx{RQh~(|LoVuEU`e)K)
zw4Km)2!cLkC@dXd7$O=ahof3e`)kum5eDKad)I%2LKZrF^BmBi_VsMr@cIi{_}+Rw
z>&Z((+rS}d-cnr|Y_a!{0AvQ=I2|W6?vY)V_#klE`(2h@x7pDC>7AX?%z<eB(faUX
zC&C^tv6HL-3+^30u{xoL_si(e?}<zGZLHH*xKSVm{3E?nw9O_IhaM|8=NTRm9g0M~
zx8J`Q27CJhU5i%Cp1PCnsZtO$8tKkC!0$cU#69T4M!$V^@%0#X!!h>hWenEBw}h^C
zp}xN<DHlU9P;r70LXk!lUvMfj>8K5&6*r;1{$QKT5|1Er(XJphec+Fmg6b;wK{tD=
z*MiD7Ii)4S_Lg6vsRNJ!)m8{r>@i!x)BztB$8~0(1X))mxR^pj2H#`;xVe5wN2jsN
zS_os<yg1Hl7^CV==@hFfzUBS=P2|Nh)E;V|ZZqmlQO7ImF1qKJh!U<j+mj7Pou14e
zeAuKkGI{?U|9Tn0^8_?usX>#v?r~zF%~sEEhO-vCZZm{zFiqZ|k-iU4pP8I7KIb=2
z;f5^R0=3oMz0;68=_SWG?wv5pa(~$I<qp9D-}h@Z$1=K1y`jv8bYd}8*8o={m%zXa
zbYdkw)^xl%Ar_}B$9;^{CmC71x$2>izd_eL<~e&x5prO7CEIi5n1tphmZg`uF7Q%!
zbK1qR9c>&W8oz&Bl$AV-`;V96rCK4Fc^#71s=7AWz4t_dgE*eq-C*o%Pj$JhpW~3R
zK?<nUXAV{%!_6w(Gd<~L^oz_v@6R$NxWq2%Rk%?q+4``hz;kwAv*FUHg`-%~O1nMl
zZ~bt(v|&{$=zkCoIChF97(>H(Q)=Vp4;!1*5HULVxevFh?6`+H>IVYM*pJ{O8w(=N
zN)gPi`>^&fSogD-SXRGK`%iJ+BXko<B#OnYl6)HFVv@6;Qf*Ns3a<)X`kbRY{Jl+R
z6n+t+Jb~U;<5>7JD?JBVaMu!d)9y&m@9;lq@cLcPv{Ra8@{fQ=gjz;eEYTreKb_jn
zS0=tI)BMh(BC0h`YIy(@zhTwrZ~WQPyJ8eZR?iP2O)Gjev16l%_2yIznM*|dUNCY<
zOl|l@b{<b+V|S5D$~ya0?~%d0En~he745%o<t><+F8hL}8XQvQyBSEG#Nl*fIR(Da
zAE=j@V+m|cPmXL9@YPge?qa5UErG(_J=aI!+ctHBd=4@m_crM{y61cVh!+8{3jyL(
zfDmlJK2p8Ir_;HjlYK|50l$DXY{oA9dv?#6g+%T7UYmTthaO}S|LJFll}}1GbPeNZ
z2CB(tc2eBhqNa%C8Cp4hky1Xs2A`yb_U2jN(Y>8FTZ!&cO5Jv;K??3$c5I$i3cP(1
zI^@M}_Pc71{KGfuQbpqOJEn5Q^_qn)?tihT3hOyJmU|xBb4y(dL^f1eB<3Ueio{Wt
zc}xe^OIuj&y0Ky2qg@U`y!nG8!+>LHQ^9GR7_BF+k*@qh6)Mm}w$4Spit&41>XO0*
zwIickc9Gmkz~{mEnW9nVWNT=6lMS-nJl;|XOQnLIc4mg*_^De>&9vD9J`R~0dSyFB
zR=K(S!XhBDy?|Xsi<|azY-r&AR2WCS1=qPzJwVFMN@p?KLc;^7v8ki!W_MC|`cPf7
z%6MO`2hk%+K7#mL`UX`{fW;n%#R?{-;NUh-1!jq^`pM%55X<k;gz%*ynB!Ip&f+)c
zIBKkZu8%;W;%m;$i;=DG$743iV_S`^#~ji#&5d>sj_{H|u$ThrK{L?-p66UR!rRP|
zME`DIA=zXNt~30Lm_7b+l&@YM(?mQZL9BG`=C7*ofKrDa{G%ao)H+IUN7zZ2j-Z%9
z&c&nVr_51Yn|XfMU+#fx5mSO}i&^dAzxmA9_;7eCyE>}T6>~08rb91ad{cN=5J-Db
zlSgxTt8|P!gboAzH$NSw{HS=J=NCanT6^MIjKVcj@8%l*DxTkYPM=yx)yP(4|K?O5
zz8<41F6H2mq1(p7_CvSI@j>EcE-iYJvw21?%hp4~_ZUjE1OD=Lh{;rb1sW3VM471>
z>fTolQLkpW4j<VH-KykRnX$ss^?v}}g^-{R3j@5G`hAPo>Y_pI_wp07g46?$yF=*%
znhu3pBw0jTgk*dhW#}Z;v+W6^P{L07oRU|D?A%9+)h}GR2<TsV6}guZ7s-bfg%{tx
z2rq8%A$+Uku&V#mEWKCxS=_{TyfjHdm{S&O5kGux*l-`Vfxn0+#=XGjj|X29o@o*~
zUH&1_bdWZyPUHfze<Zr`x`aBDYYbhDR|-*UGb<35<fq+(Ftca3zid&jU|xnjD<Dxw
z{b$|&rQ#J_<0)l-YkPCI?QuxwP<QS<Q2ZSEpY{2`meErJxAkcjgKg%*aZ{L;X680N
z^+3?WknG-)pH$R0zQJxzLAg$~TpC01qc2HXEoC~}`j`HL$tA8^H-h9YVM9Onbmw}4
z94Z2s))S{7!P0~%ZCaM8c=U>i^n1t51r}XFg(KhXal_u?GlfQl?1q#zhsv<2zth7U
znLn56ft5A6#P*`r5-Xt{jqnbwtRB02>8Gwk{3jIH<hPyQLZRGELpoUgl$bk_w3BEq
z7_cnu_G;(c!@IP*L(nRUG&OXNeGA1G_~?=`3V=7>dsY@0r|=I2X)y)kj{oJ&OB;zr
zT|l}?W`6b6d>UnD?`}`GL-f?sWpQ2fYya@5rmNs>1SRp&7mzwne2@PTc=1t_`NQE#
z`jo>GCM(rgqWq1E9ZLA2(Olwm!YTsudeDlRN>xcj4iFgNrO83bee5xS;MsQt-f6`_
zwZo4nRpdVb2z12;$Z!iv0|G;GlK?UfQ-DBeYJvn1A}7?8+*it`-Maw<K9JXF#KOWh
zHq{PdkCGr+ZhH(N<dw`<$_GJCsO~IdiBqEqglE}c%raD?f0;MVfADFjRHeafu!Gxh
zG?VHTzyip0f!nH~AxO}DurP(u-?so~Oicrqj`%OcM5>n;98&dx#10kfE6G9GM8OH=
zm|`qpt7Hi?K}V2K{*`J65*(>$EY+(9jx+!#6Zrw|01~(ZIp7XBO{Bd}8yOb+M>g6+
zI#V-DkI9IS<H?MZ{RISq7hIf8^P-u6tgP{@{t1MTMwF@oJ3o~$@$(i|VCPnj5{Ig@
z?5xkBY|gbJ>mZ)-fw21TIt<YZ%|#bXf$NxMq|Qc%Ys<&jNK(1Vb)er+4~VYmnAc9=
z{=g-fRzp<F7rFOxr`surPvgr>iwpw5PnIS~Sj)Nhg}qMLmXj*_kQi%*;=7dupYl-A
z4Pzkq4Ahb>V+bJQ=)fI8IfTke9dXQ=>%pYj5y~Rnp_+iDcQXk3wMl!wsKvwn>%UD;
zOA@E!gy4MXJ`CF?>M}*n>jRMw!jBr_@6avtS}P@}%)?<<Psa7dYnSTH>Jm_bdxSuk
z9I0IJs+s)XN419+DSNhZbg&HJPI{q41b?`sCp7{U!(qD)a{Gm3I|YP5LVQiN09I$K
z@Q8QPq}Z-uW;!m%qCP_P%zecgTR-^F;Ni7{)0c%d)S0=lR3hB6@Qo(R%?1643ZxSn
zx9?3&gkpx;k}U!Xq$mPf8^8Zb&yK$Zt|&XqhLvZ|DSG|9s-@2J{YjPb6Sqe`?#VmS
zrZ>D>qS)QXlQ}^bLg^-8Q}7CfdWxo7a0i{Ax0k;_d56iuz2*g`vi6xZxm+gFu+-_6
zhIRHJbGZ~Si7eDo2>F@#?QzOO$e!k57Ip->dCLBxeq0szxH}imK_hO7a<)-3ty;Am
zf)`(b)jr)oy7ZDG=l<SP<n+4$WUfz+;e97z4M<`hc_5s9mb)nCTaAiYL8)?YwnS!5
zLHppdLs|Fa>@}$`rFF#%-cyEkhPB_H2)rk%#h5{ld>{4-8*iigqdXhM>HuBd$sa3R
zbXIm5DM7rGV~ISIuPeqAOI%E=8HeVDHe0q_lcOf{StLA@V@IVnTN!0G-<n2IU1+u=
zS~E%KMHYMXd3=YI^;%UrJ$Kg2{F3{h440Ia4)B)1b;GiwTkNYYhjQh@LKi!E?sKQe
zKCYaPV9DF2en+0!?_}+M*_IJeN)icqlm7IOxqRNJYkU5akDRn!^o*EmX_K!*J7UGg
zHQs69H$Z9To5&{O@WWP3UFNh#U3M=dw2F%QL7LHjZo7O;U9YIUd5lj(q(7eU!&jMA
z_$xu#9v!%hOz!;=t$!ar9JI_^kpkWgHcH}b4UCA%8z;pZ;#PL^HQlqTB3i&)Zum39
zpXyT`oS(dEH31DZfb9{|M_w1{3#Wf(i%u*rye=8<F~_lr=9MB)G%wreyPv$|eeqc$
zO57)+GIO?BE40;vu0=*4#LwD%G+-gPT0v<Cw#}Xbe&b2`U4+!K)gSHP7FWc;PpXv<
zX+LR|qc?2yZ3`^$6Wo-0CblqpP5Qn-d~guLc=guQ(ZMKxlb`FPs%T(=^ep|#jjnNM
zHGubxZv5GL8WVWPe<~h(%EN0hAe_je&}$H>J_Y}1trKv{%6XCS)4#-6-)Kp<R~Ahx
zNoiINE*b7>mh3Zd<yJ%)&Pg2tP$xdJ!2<1n4P^!A3$@yDKn|z*Q%7%5QI)9zycTW&
zUJm{o>n`nKG*YLQi5CI}R$!E69cG)t+r1F<^DJL3L`-rl2Yn9N2S%^-Aes4d-~LX9
zT*l=Qy4HTo2WXT8{K}o&x*bl|N+!&^2ST7*3^N+%$XN73M<l}wCcr`}nTUx3_$zOu
z2Y?p$?2X>;K=nD`7-=a{HOo=T_04y7@*2Srm9xxzDTJG^(mE2e;U2?SXtUwb6yL6G
zi(Kvk1u$&p(4ziP2R&I?psq|N&MclGYP1{Xh29yd0o8tK0qF!BdV30I`UDu&7|YjX
zA<Ig;DimG(^Lj>8L6`}&ensl-0*{Vi2f_${64rj%2mT@l&^61>?7Xtuh!iiFdC*{S
zO1k&n$u#q^Nxq6m*}n`2qvbz)&rskzP-{rxo~;<7;n)hRmr7bsU!=jbVkgiR^YeHv
zmHCF}3pUje)?MJnN3AiC+8sf9Wfs0c)|iO(rs`m{yS`{Wo0QsAA5XO)E!dFNW^x;Q
z<O$GOs6>rohh>_ozyH;=n(M35ilRh|anQ=>!$tDNW|wk!p*>);A0g!|{7enPu6sxw
zqX&dG1>s?%YZ&=;3e%^FowTbZ5V>%k28(HB<-2PPOZc(`SPtLkE^1*PMO+<B9EE-b
z<Qn+1MST5P9Y4SXWky#Mlbxm%5H<JM%Ztsq*WdO7Ozn2kMy>%OB0*G9M$L{d?3iKw
zT1I$#5#e6ySkmP@#L;JDB8L;O_@)XCMn<UZ?MsbAjBD%q6<w3r`IDcX|1g>h+cX6-
z1gIJ>IvV*|yGH&9vYF2Ux<Ni-f)w^-u9JtDr#q~LgA>JgoN`z(c$~|&?5<Y6EVT?B
zfD-o9j3J>!ghjrr1s$zYB0UpvvPpeuc!$%{)H47N_p-H`Z`Hoh2OihygcJUR{=aEN
zOZ&TB61(fw_AlqgP+Z#LE%t6vvm3NchfTk+m)RmLmD2uTLgMrGWIMoYS|}_PO-^jk
zSwEGr$;cD=>!A<@P3PBHe2{QA1E?YC5Q$9^K@gNYq5y9aJ%Z0v_|6C!ga0&uOgqFA
z77A4m(|d42a!s4`4dfQbE2$ODxs`?KH1_;#(Lm_VZ_~F`-RgRZ7P5MZpkJJmC-2&g
zBs;`y2O9*9SxCk@jae=;E{uU9*evj#!Yx@Z45-GmaZy%qsChJU(AvT*v_fT?K$p(w
z*h|BWGf=xHdT-SmnQq9FGE8zqYOg}28ssXuDvUi|4ekA}e~>*=MU;6DsxK9+C4P&k
z_1OV7*Q(<>hUJ3XUBe>3=~fdSi*{v@or<$AG)JCpNvjL1r=m=#UX2{(Pp}_odK<$#
z=RV6ae`GCX>|Sa%KlB}4qpgamB9KzU_KR^?Nde)Nmz|qjnie;FX&RI7mc3zbF)9ds
zIj-tIYB@TX;+cOZ9=glrn*%v2AVn3mjEi2W!!b{1r3J_4SmTK>Jy_P@P0?oI264Ye
zky(dnXbpCmgl!XBhoJ_jxmt1)^)ZV)wujR3<W)NP6(8PtEGt2Sxip*ZJ7o^JbnAyp
z@2^?LoQF*SFFYXvfXonAC>a7#S4bxrs_lI68rNNggu`S0TH`t1LJ4dWf0C?;gDuHl
zNV^A(a_Qv?vBls}6mItoGBAAJjY~IF)TSko-h&JUI|W)&9uQ(5-si(DFkj8$(-`cd
z(u1<uOGNG=5sWYZ@oA;-Dy-5wOtQHtjf3Y%kd{ovI8zv_@OI}!QvyVH7WqZZWfR52
zEZxFZu3eSic34Ao2)7cv%=<e2UUy=f?P*z?V^_jDlGTE7`|SUcbx0%!kv~^_6H$1!
z!2jmp-7|sIo7^LIpQtv64)y_j6uAE1nfd?8a$Pxfs!{1;R1Oi<qeiOF4leQKc$xo4
z{7j;i?a{>U+WwZywmp9|P{B@5PnA6ZoMNw%_VNCVC^ztP1Q{FrZqjS9;~&zuX*H*P
zZq6#gq%r&5^n1E6h*I2*-p-(!1z>(qY8k8RfLy4#-sic~?EIkWsV`<`Pz^GV8T-9k
zFITez8uDiR5lg1L6x~GbZ*aLa$jLqY8Gi@UURLeAsh;{U)BoMIjfLX?Z-e3Hj*_j=
zb=&Jke&dF9^>*fDBE><hM8mmbtcSwmRsi)|M_Ord#WJMfC4IU42YpJh2#l1K?!G;N
z7TO-0WNSL+i-pEfzVVA4h5l%oi$CPQhN{wc^24!aLsk56tvJ)%y+6;%<&pFL?Tm`A
zC&4T+EAgD)dAQWFpLHY-3EA!c8Z3NLr<HNndk6?F9hFBR-qF&{on>)x9-B)))tn)3
zh9Tv`h=}HRC(A}O{)i(C<R0?(bbV?G>CYf+LI5+&brUDl>$aO3(bGp5W78XAeo|?A
zaHAm43fYkf+Eu&-(QlU5s#<^ECK~jokzB{WfFZO;V%97(>vSKE!Hi_l^cp05U4|}B
zDFbEc))zA0WBQS_Qmy<U3DQNY%QuY*W~Lnuw11pS9lE<A?IbR1@0sI2xBE*>b}BIi
z%4w)*Do!=~GwV%iAA2yWag|h7;-{Oldt<?)DA~@6hD1CVyFa@1vz%7Z<gA?Upc1(m
z*S+$qD~XByKtp8lU#as9%uWj!+mm4U!B5`r=`lMyD65Ohg_a~PW|xY1-d<IrmMp8(
z)brwb{TwkzW*R7UV>O9K4p`p_K4fE|3I)FQB~_glI`IR(gsn3Qb!%BkYl%ZoBKaxS
zJeBj-t@`}p4D6Dyh3@SCeCT+7Uf}+umg>ciSU`L3cq(RA9cQML>RtSxAx!voD$WRV
z9fl6ZM@qi(fIwnDO2ULw&~E}r^oIcWgQ=X&&CYeA_b(Ij{{j~ta#hg+TQJH<uVa+J
zS*|##c0kr)>{P0HhqY%q0z2Da<mNX92=rN$l_~;Z$fnsrcNQ6PP`X(Nu|sWTfYH-9
zoGHvkj~EB#1GFVfC*$7;bvr6{D0l83QbpC~QoWhr1e;*MhYsqwZx>rBiu8nRaY{_5
zTpR@ihVzuki?wnkK&y)Ekw7>pg0U78IEOSoY#-+Y^0O4BTG5uNRBynkyx4QR7i6jf
zFrBi=ofC}TWWlHrmJ>?RTC+Gr+0w9=ii-_Fnv-ouHUs~+;UTObm5NRg8MyUOFn)R@
zl>nn9v_yam3pg3*Zz5({en=#y^8pN%su4IwC1f!sq!#fG3<gJV$`B_ITBX4#(=QFv
zIgyq0H*`9Ftv~{U>M$5;mVvV!f=7r$oZ75<X>q3Z?RK@@W_#B`R>%zUy7K8O9)Cy8
zD|2B7Gx(x5LFAqW+v~H1?<+H6*l2uT04w?{v958^46k%pf)2kySICg!_{LO|8c$hE
zQ#%jTnT8%odzyz7c>K>)n0knF+jDV$&^I~HzY>D4LGha6XT>or^1DnEH^LH6;WDFg
zO{hCg!{I_`HsJIgy=+;rd~+b0SJ05&8o6JJvx1ms7GKy{YA1nwh905z6`CSC^&>M5
z7L#^1C)YV_h$(jw727o9^Niq6=(N8kuYAPO87yYxE-JH-emW%BoQIA$bR<YNJJN_b
z#uX8o(5n5_uu?uG4YNz=+g+Mx+3D}>d!cf4H?I4r<8cyHzp;-HiLjZ+nOXLq$*M){
znC&-)vJ+($j*+Q<^ARs@l>FOztu<rX8m^8{q(cbl)^M*47piq<ev>^bBT+rTb1d8i
zAgr%-IyP2(D8XVPay1iO*pf9dY3Ib=EY(&`p7E?Lf)A#W62q#rpr+Df40R;l7%Uq8
zV={7#H<mDs5t~5h>@nwB8xpi7J`Tvf*EI1-m%a#n6@MaAMAe(^%)_N=UZ`l%TbOg?
zt&-bt)C5JClRsQL$wO_#>Mh$hP*~V-s`zUP)Ec%uxL0`qKfI@omN^AHg+eNtbPeYR
z4~(W13u+)PDetJaaZzTYm+9~NWcy-8hq2hEUbSxb-RQ*1ZyL?k=?ReWA)m0a2Mo*E
zVpkkB%#>cr(TeM&RM2zx2F(;k;}}fWjnda{)`^qfa44I7Qf#c-bi?_a$aDPsIGHwz
zn=)HxpQbfv3)gqfyVlsoKy!|H=%vWlq3G!sp*w}PkiN+>2D=_hroL9L?SK3#^`!Ch
zxF`d2zZl8k?+{Cj)qL92%SE(8u!x7OE8`o3{%j@=UPrhzOrY%?rLjz6twwaByu|cP
zSt>roj+sW*pK;tzO_qN~t}tuBOytTf=ZC$!G~D7#*aKzn!fqkJe^WT6P?M;dVaxFW
zGC-ichM(~O@Nso%-fBG*%>^fEu6<N?qNJ(T3_54<o2Q}&-sD$xTR40Zih#HCHHsv|
zQWWsxo#*bMo_bhJJ_TM7&~vF&586aE<l(aV%J-Ho$DuV;WYusvW!cmnZ=F5nka2ri
zDGyjQ^27ZT%y~4}`7_H)&DC&Im_vXOEDErKBldx8wTWI7T<S+@VYa1=jH~LBG~k$`
zvZ&A^@Voo(Gzx6BSf$!OjN?QR)#s7}Ym=NNi(tYSXq2Zvr=Jm1=Y)4d23ox0Z`UOX
z)@=4y8mDPZq3v<mP+PyVu^1uhN+Q-8bV~2Mp9md3X(?*A{Ql#0gYJ}GLi=?6FQQ*0
zx~(j(GV5`KafoXFrJ(cCU$V`@C(5F?QGf_-Ilqf?MWv!g{X*vHbGki0tuxVa{1;tG
z!0-LRB(j<z%-Q`Pt_m?2W@0-I*7jggt!ynMSajU26hlcR+sm-`0QGt7XWCCJVujfN
zDWae_gSFEGv);3CZ#n?ynMUvkk=t({ScAl~V`1&72Q?A7gwRRUBGudUk_opVDg$*j
zk{HOsyjq~!k<=;1?IFA0-465YLD>ZDqGSN|PiIkZ$A{eYqaPKX(m4p#uUAo1JusX@
zi?2%;N|0rkobuZ1AL|sfp+phZj@);wXBHsLn}8gYJ8}oqGgLj(k5o@jmL!OPA4QM$
zOVWtfYJcG-mZTXbLE19*FQGwVsy{eo+^HK1VA2l7V^$htOxva?d3r4*tzbIwJfs4N
zub-hc$1lHQwWiQOvMJP=GfO+F^E!+UxT!S&FN;{w>7ooVTeE!z-4~g_Hq)du1s~Kx
zC<v{Cy4iBVjfe#EjIu_KRng*<lrkI*aUWbN)?UZMQ_V2d0odn~+CN+BB}sL2maA#Y
z9!VPpF8DV34<ETbKu6J-t3^YMP26j-g_B0eoF7GdW#x8>OCuZw^N_;1pc0;5;s|vZ
zUqcz;n)X^5j`P1!f&Id!vO8cy2K+U|UpQZ^xMK+7-<I%(DFP6^4Ck+qS+vwaY*x+5
z`8(L(RiD1jc0r^4aV$V+#Y|X(xWeC@dC%`bbPjgLQbK?S2F4*YOE17!snhQ`&-O!@
z{opi(-Y~3%B=5Bk+z7>mbTVTVy{wK39FMp}@?<-WSevuFRy>%kCleihPjOk1YJ(JJ
z1XW0fI94G$3(Xoq#vOeiIR}8vFn^F`cU*ODH;jK9cH1&|o>cm?ob9|S&*nqqj!|&^
zDQ6vb5SmRsr#C(0cWyp_#7Ag`{VOVfzLN26X6kH<s$BOtV0`%xN}iLcRpupr!9<@U
zMZ|?Zt5!^nL&1K=;=$s*(eI2fMMJgHi91woq-=)8@v|SPd~3R7N;pPG13PNW(1sK%
z)d<~#^$#qkgcx@1RQ{D>{q$!iXm*bMr@>Xbwh!OYGaPtcV7Ms(L<5_QniQ0aFUt*R
z==WdAI{Q9J_jq`&HotCJZ#?M}t5^Zai%T%6=C;V(K|THDnFDdLEw4Gdkxt;EHPffU
zHFY4Wh--M1ipw&?cg+5LJrR`Crawe+)c@|~P1VIO?&Yq<<K*oJ;tD`(a&(N4b5jcO
z0vQLQg310kEmc)p1959h3U3JDnb{+foQ|HD=V$6#F`c8t>jieY?NN68yl|(4*IFjs
zKbPFyj7z;en+-}OHLA~2Gkutmm_}BFt}+tK&@KIc*vk#a4rIbpMOuQsF|svf%_L<o
zoAR4dh2>Up<@wpGVf)`GL;cS<Nam#L?+97W{K?!Qy9W$+X4tcat!*VQGa-15d#=-r
zlhx5k+m@v8&Xwg(>xnWhn1Yt08W&U~7|DwT)o-w<tYb1?xFNP|<V%^Q!`uiluo+R?
zY&bz$NS!Peq{P?>5H*$^_qMqE7(Y+6(<5L=AN1xlEPDSiDASe?%?Gt<O1bLPG?U^b
zd~Xrs|AqO_Ej~q$tB^S<0_HV%xWa;z5;x&KoV*A3VwhJ?_AM#Gm7nce^l;vghIU}%
zF?rM5ow?a-QD1w4z<cF3kjanvxsjaSovTcbyCr$|RR>uPVL<sH+*WgQ7W7{DNf;0v
zaC<FI8|u{Wj0^LiBZ>W0RVj8=trIN01KF5N2vwnU4sFcX5!n>kzlatGkdrUVo8`m{
zxv_|7xa*SKM-CX8ib71BVTB3L$edyEV9=7T`KRW&l^F^q`nM*)A*ua#5RrUIrkvX5
zNz}5@Fu}GBR~hh9qiO@pRrax22XpJx;cRDZ5Ifj(igc2vI{`gtU*JK9=43isMy5us
zC{8N3R$i$Uw%^sTKei>HD~n%o{cFcn{i0`U+4tc+&Kz?OLSFkFbwpYpJf=Z^vzzTo
zQq`BQ?J-`QE(^Xg+{2sv=8HCf*ByJu@J?L&KAJZ%1SzN4a`WAfNsy=-<rxo-R%iL^
z3a^wQzKQU9Zm1!bxsQ$a;P+2GJ$f7A^&nZzT$a;UWdG(Kf@>BO`8fls&YODDj^8FF
z`r7M)&dYc~<`l_XT4~{lI%B_19gBNOx1gr)SCe&WP5Sa6<=V-mP-N!PWu##YUq+oX
zwj~n(TIwi31AmE-2z`+y_!V)apAf>^pCE>x1?2rX^QCfv_K{ro33n)3_hq@9bZ>BK
z2czCOxE{*rgieqw^shipVMOIx=#91Jhwhw#59spI)6gr1?Aei4C(+<X{i;{WhDqQL
zl3y&_@pjg>Bcbd(k^@U41epwCf-!ZN$*-d$Y$!&IVPZTbQC?eCiTiH<uB!o{FAuw&
z1=Kefjh<EEYUJ-)T1KRLH_u3QtSlsTE+Is0Qbi`VY2;1gVz$P3elncF)<<|<wiILI
zX_D-;JF`R0JBSV!G0`#vKWc_KTS3hRZD##}WQC@>_1@giv<<A&36AFqt=WA40;mEw
z_fJY}&#%UpMbwRz7x+IIvWP;N0$6g8H~6w%zu%Zbojp5S!Wll=c}c-^hgx|ViZ3@P
zZoIj7y4=N*8LX#S%N|LftzK$Q_!i93p_l9Q>pQyU+U>p%b}Cq&d|C39R&G&!UXe4A
zv<23Q#hdVVu5yfNhYMw!5FUn+(N*A|@O)Wxs$VK8YLkFGiubz$UVm}p$2Drz$JMZq
zFo~;kxJzT~8A~gET+J}q52V>#B;L@G_CzNI{v!-B_n{}GKmR6P&){)>J6Q-^p3A9p
zjaYCqBW=nHkr-|Q+GcW?%TFAipb)zfrfr}PhpSLnH}&(2Qg!Yl_mxUbE|6?DED{&u
z=lr$vn<-Q@d!=XQN_`y)qz-3QtDqe@Vm37R%5uCuNeb-Y{4#2hTElx5q+k7Bd$<qC
z@gk6}N-tlw{6KAXbw)dMUPjca78;-y5a?dIA<XI5B_T@^VMlCOsBzsvj@stCkFg)v
zB-kJrcI6GLF_J&uKMUaOBJQ7j8X=Qg=4m3fGb-qK7uaTD?D|qgEHGnrlPwwTl{qmd
zUHQ_T=U9AQm)aM#z-*@ae?#aQZROL)Aurh=+9k7Wal)Iv6+;nzgx!U$>g2-vSi)F7
z7SU(8>v)c<;eX*MzbvfB30C11b&w%kR#J7sHxT=9#M^^u7e{$H(8musux!^_48c6%
zFJnzK1TYn9Ic7G-!q`PbA2*Du;8mBUinwF_PDJ;W%Kn-LJ@V6T#Adke*E{P^(I$5|
zJyyf<bh|bO7I=q6HQ}ApQ1nXgDko<CTKDbVQc1X6y}I?)aYD0X&LMg$fQn+NzVmy>
z6<t;3@n~V`g%?D97h@NN$9V%P{fDT(4SYG#pl_)vHhNuE#`&&YEn9dL1ljo~&w(P@
zhTtg%i%x1oj-qyOH}c&^u)O?I68iYOQvU=aG`4g?QO_a(9i%Y*$R6(PUwO;BY3F1)
zP9{<_a)T5|Wh=Lop#Ot(gP5O1Uk(TEB<)D0^^C)8HK9p(Ko`aIA}FaVi(QJ}4B#?E
zaPYevit%LIPo!!5<!K{M1E}41M^<y{rIbQeL4*@P$2Qfbwn%>{o&uW7yv^>0i>v<u
z<?Hp6an$=;Mn(6{%NO~Be>1V{t(8;aBA9oaBLn7Ll9P)wFx3@Aw#%D)^{3U_i8@s%
z^7b7?O+1IX^3bBChHPi`hABN|jByh{A%EfA1`&~wE#(xy=$a6_?1+4vGlrYB@IOL*
z`i?KgkrqC!w=-Fc&$_h(^+Ng*_%b~IP^Nn<%WHTKp(?-G=V=~F*gFSrsIRk7(X4yD
z(^9i3^<3#Y0#a9jRP)Umt1na(zku9|QO-(oHIPwc$SCJaYlX+{+C;2@_qZaw1Qhos
z{$Y8Rwh;k;0eiZFydgGY<JOeU9ACa4O`vA#hnct!awb=*q@40W*Pn&gBWv>j#v9%g
zRnVMX&o%e+R74l5DLfVcAJ^_74ELZc_E207KMG@xAppOrUW}c}a!rNhLIJ4n>nKP(
zhrfT~g8T$c7vi(A6(7%1OTX0IuDiC{7%R@)OT~&EkWqQlR|2x1+Ld;WEjM`U>s#kG
zOk@8`z>$r+6{x~yDj?nc)quMJZwSUxyLY)OCws(XkYe6zcaOEA+~~IOqvq~**O_%e
zy?Fdpv?|3W2E2637`^$O2ZvR=4_2;K3IO_Tq;aC=FX>HkO-Tv9gS-!@(2zLQ0K)p-
z@qm|p>+cw(dl~M))Q`}>3K}2V--rd@Da_grcknTn7PZ*GxOZKS45eXDW%&6?JT#u1
zAAda=VMV<fVB1%1exZlj3<=>JlPwkb&{x`Qh(E8LWtIy_=3i=oda60axkYlO8{;%?
zRF<`Ckm^ByrIy?8z1yW;X6l=&nLg1QtK+Z%(2fQn8G9DTF(+4+L7u$5=xW)w=oR1E
z90mH%qP`)hTuMgUVC%S$P#XD*i<`REH@*ry^OQj5x)N`q>_CHUo(h)GS!}kboq@Sa
z!7oit)t~MqkVev1T<FiP|D7*h9PIO>5jI$sJx{Fb=e^Vn6Vqml9Nc*HQl1A%{sX-n
z^;#WV;U<8J?8a%qERGs77u$Xs)~TSVM`9RGFlb9cFB<fX3TwwBl=@od4ehA7vww7t
z6e@Qh>bz)&6bR8Hbyb1tj1NxHLt#j9J;_Yi{g&weGK4c%OMCS%-)V?DtkL5wCy&&&
zvkM;JQL8y-CZH_X3>{*njz%uC>ixyaTaf9%wRG3Dref>;=A&DY+AUXv{g^Qr4=>?Y
zCPvLUhCjYo*$vyDGOVxz#lxoD5dtN~n?hDf@XKCjDXxfge(Q#R&o8HN>!+FHF>K6z
zOtnR)#pOK-ooXDyl=K2sG#{Hy5nf%irxA#UYATxe6@4^s5xDPDUGWNdVoohKZ*v{Z
zJ@}vr0RH*%(jXWOE+x*z?f3Zf8ER19{fX;73i^0jp*efqwoH|OI^Xku>0yfLcu&vo
z3Y$Q0T9$~@gSns^b98Ow6?Z*`(D17$m~7)+40nuGGD4eB;UxQ#`Wk#1SFoY{hFKJc
zBu!6ai?%!rrxRMijb#!0UTLuuJ;7sA$TPuw{m4y}cnJ_-vCZ~L9gjgL*B$v+E!GY8
zPd<`+SG;OJ{zT6;(syqaR>iZqFGA%+sB&SkHE{?-4I1{LO`2gr@}UU%sZ4k2Dh-lR
z968D0&!EY~zFl>+-+cLNFi~#MbK0b#{GDN<8pl$LbEK@_O1%K(t~d{1`pg<-Ldd-h
z8WIaTxUNg?f29w%NJFE1@7w$($A?$Sy^GJ2>PO+r7BKY$$6~$BtTDRuNCcKQSKqx&
zFJtOSdqP{PFIfC{wYCZCw3a3RC@Qv-l3YAEC7vZg!!=M1u*TUR7rtAbDB-l9APhDs
zOZZD1I|j&4aT~S*<pvBIg_4ynev|Y2Dx4Y9Z?fty|NW^)ZY-wV=sKtf{kE~FBNi>(
zVu(OqPGgz=`=h6S?=U*EK*DIETo{#{8G%h0DVqH4wyV%3^4qP`F%vY2i*$BPy{iQU
z_X(OQjNmD&ty^H~e~fKehlRTgYEL);q)~TjJ+yDC%tc_$hO~a56E^th+N(vr4Cyn(
zDAXf3xb{N~EH-gL$D-Q#2j)H1(lMQn#lcJ{DtW;g1X&`O$9)I~bE32T;C&Wk6jHrQ
z(qIjb2Rqe{xP&dd{)NgO)W(}iI;rXrm<OE(bGlt%QaAuC-bwMv!p#V;5Mm`v0MT+n
z<p9A#neUb``mc!KDW{b#0@Jw#+}<lV5iH`+21L#EI<xk+<=<x>WYBsgM_8`aUyva3
z(2>qeu2l+V8Ttt_i*IT73?r2)`Mk6)!~n0hg@i4UUjle$!q>@Tb5Q`zAlVTanFn=`
zIDz##25~Y{MP!9ec@Xs5))$2Mopn#|c2UF49}4FW2=kAsM#Talnz-s_L&ZZMq1@H-
zN1;W(AY0=;-622Ge?j`Zw;-362;&>{Vs?Aw`~@jDpp>lkadp*4%`o-a%@9x2<Zt<_
z4>E&GPO5R?>C2DybjR7CZ{pjwF(0TqoS40Ph=iz%oz(d>G13<Tv`RPDD&XSXIw#1)
zFlOKF-K=o;of=$s0@`&&=CH4dh)DdkR9k``AdE(-TI=zduRYqoj7HtNAqT(qZCkc9
z6=mvN^ERP3h0o2BJ%Vwt%kUFV&N3fuj{S2aov?&R)H{=yucBbt(ZamkKb|e7&TJWY
zU}hJsPOQ2j;utI&ze>r+A(qIJr`RlV+lbZ?NBh;A#pzPPnCNG=bX0vM6L!KcTtNPl
z^HYy*c4<bxJO0`yZoxaWh#aZqjn1OU*tB_7M><^R(<U{NXR|T1f7B|(wtwJiph!Ur
z@KfeNpOvq-|B2jOc1OxP$E!Dg10Rx=O4xQsLwm5YKppV*IIG7;1VZSfl}0wwA#=`B
zChlFYEm&+{u7f1+vma*kvuB_Puob;Pd^sKTLEZaNSJS9*Fb3P5L8M5$14WsFSJX(O
ztr`p0$-|w<(|Z9ne+x=+)tIR#MN>o8;Mn)_x;h4WAU1ad59vbLx96?~rgr6S-CLuh
z)2gl`k{OOu_g+N-(S7k+-n__!C5oEEgX8jHJPV%*0&}UGo9R;8@MLZECS`5SSP~b2
z8D{e(x&tLmsc)83xZ5b#DdwzA24&}r_;Y!Hay~2x9gRy-GITZ^^1S9ieJ0hzxHkw7
z>gKuFG3qGl`R-9i;JM~@(e8yVtJaYj^+L`?q!JqWs^y+q+qZ+eHbY-wJ7RLU?%>&i
zO~<nv#9(*eFmEKSm)gwASm2$cStfa7W&L7(rDbx{<ZslXtg4{oD!AY!XZt891H-4X
zpGr|Jca@&l?S=Les6u}dwx+lC49=^zlm_@K64aM3_Z-fvx0Dz9AlUHi@!`vhVOmQ(
z3+&+fi}N{&IalkMj{jgti<)~OanyeqZ-{@>$%*(keQQk}0JNe8Uk}P~ACjW>sW_Tb
zbFZ?Rx_kqU02jq+Rb4oo&8dA;={esG99aUi&b`ZaAFnhwfqLRsJ+rtYE{v6VL&Jyi
z$An^<+y%(WhlIIJ6W$4{;42B1rKJ?UwJg4Dp5(=Guxo!f9!Hy<)#vk{dNFi^PEx&o
zKf`y!w`<e-q~#^yai(X~LfM?YC45k(!|JIRth?EK0UH+;E8-;d@ny$xT{HKq6g|k(
z`tEA!GWcu&n?F=|6x*f!!{#S~TI%tmM~_I=m>9*4oA3Wm{b;-4!iCZF{cn<DgoD>H
zxcwZq&2jx9DC4_k4B<~IXyae$Qr(E1_XFOC?3|9Vn)ASOKSzolAHTJj7)h{33fM9H
z6YK_RUyyrCq!#ES{<@D*jYhpLF3X7~CI<?HX31_BK+fo2EP&q7<mTe{#^))Ts%1|N
z8tux}>xV35zeK*|JMAV{F>qbjdZ3@vB}hlWNdD}qxpnpME;1?FuGkR25uFerwP__c
zBe)c~kpc;tw0?@d07)FqX6!)S;pCCs0cr=x9*r?%6?^P)k>#Gg!Ff%uVRH=j4)3)Y
zuB8amIO&@e-Aj*fSQ{A+ZFPTrqYM9bw2%AABZpI&*;t;hN~b-l?CcS)Zy(;w28W3a
z4hOrp2VfkD3^j(5eX7jd`z@AnUEZ;IC{w}vZhtyVD0H}mv9GExJvjmfC=<KyB8r>@
zDNkOjG0818-Vw{aiFfYQAIu~dw~x^7{M>j^+nnyX_xy>D{nz@&T0&Et)<sHvCwG#n
zd?&wNg$p@8?8B0}f$q1c4W=8H)|gUjE`k%|s#R`hBNOpAGmF?%xrs6|d0M@^9iclk
zrPl?XhlKmuJ;!)K`w2?JIPIsl9SA*9PRYc*nmU<x>YoNm#V1j$z1-GYO{mU7NKo+?
z48yrlJ2I3_20Od36R>;<mYi!4(a7eAPcI9811qqe97;zJ{#S-xR-R5tFBJo&XF5FS
zki$2=p*I)b3%4hExbBY`-X!&pcNgWMvW`B{M!6>#D>J{`bTar^oPfS$Ju{0_p#=bL
zzt_wTQU4<P!-;5nXA3SAC0cZAK*nlb{orfW06QI@_sJhDyDMRnH<^X~*5D8E>2UGi
z53jC(QTTIM8$0(P@cL4(aTGhDad6)qs0<fZ7Y${^`w~1nGvL-VyigocT>;Tv4S(Fu
z5q*`AtHm7!CsjJ}@oW2Hx6m4$T+-*6-u9d+Y1|J3M-O3~{<j5=@({9oxyBHe(Ga=}
z=K-Wi;Ud^Uk$=$?0bCwR-mlP@U@*L-Q<rDjF`^&0p=wkGSij87<XGZxYDx;ES#=(`
zT+y?r+u;~*h5(z~)ExLts&rSCu0<LWa>#cZ49@bIS#Vzhf;b_VU1m*E6g;$9TjVd!
zX@9TAlxAm7m{+_edK3)KD<-C4Y)wQk^Qu`bSQ%~0qy4d|uX`u3CHW#1)2{ck5m`fN
z*O~yYMQDs`6Pb^wJ%|)mfyqxg#Qixu@9$OT*1kM4-Pem|yX|*V1tdW%6A@+|X&<eX
z*^*ze0ws^XPo7-bKiA_0x@%OlIA{xYhK6BgryBJvqIMIe@PB2yRqd*)y|I~y*Dq@K
z`%l<^`o#je?17sBBY@X{MbVC4Uch^)N#pNDyV(qCN*hV6gg(9*9O#Px-@ovxt;QNQ
zXLDl98W0A{(7z1Q2Z^o4uYN4ibCfHmkFQK2{qLBs^-HVFi>`m6Z^i(sfX6)#fa;l;
zuSvN468>(-V-MlF;5A7ADVS{YGQRK{@nWlg=bJOF!d^AaFt~p%Q00|HO7Lg|B=w9>
z<;%)RvB~?}=2m(9yK0J?+1Ru6qmp<LR>D@{$jHp9p+1!_kope0bAZ+M*d)?*l4l=<
z2if*NuR~Z+v)IM?n29^KtrZ=ojh3SVOO9n;N`Gd0{DGw<{29INg<#&&mk7}psgG8O
zaFHqfzuY_{<x5l0IVR^;EDeU{&4|NrztdL*(CJ6{&_pAbR=j#Wtq&iFKc9_uaaq$6
zul80Te%m;t3GwXE=I-jAFAZ<hM2rvoThy`V%=5(j6|wiq#{mIplIl#{FJa3$onuPL
zO@mbfCeOl)cEC5_V<n-Go%Iq=-t60Fx&4grp##eTVu(1<?iAsWzgHJgptZNG8aXV|
z;Qw(%?Vd4&SuEHi)xf5(hQ}3?2m@WT!}wdG@jt9UI79bmyoLfOqH@azkD=E(8{*)n
z#(v>M`7*&Qw{G_z>vQ>l6|nO)@EUI7Yv3^S=%ex+3iM2(f47m`pD@Tg{z?|wu4z?N
zg|N@)2(@ezGgjy%9}%<uk)Kr6>+Smni#UD@TW-moG1*2sBI-5sUs?46eMscYN|rCJ
zh@@mD(K!{+t4LA1>s&)a8w-hM_%g_52e7wnYxk^c4PE0nQTvmfkTSZp{IY>=wPjAi
zrd(3tpe3rrZaJS7OOz2jqZ6aK<hvWcn9`m1CuGWUz9$N?g%m(!>HPiRD_H?WbU8#P
zVmn&inQdS-vclaD87GNW>*Ko%t`VNY=_S>VRH?hC7x*_nZ$}oBIu=j^Kn7GHPuN=X
z?=DAD?#cIeFeAb*1ES;hkwMhy7R>{xcf=^)2<g4uuBPxOO*3j?2KsyqOD%+k3jSmN
zzdf-%w=+o2TxI7rRDms)x*z$X*}C(%i)R+ON6O_MOgj=|w=0++HP?_!Wjno)%Z5eU
zNum%(`q)KDUNbia6G+$on%Q<01JQe$<2O4$62pRY>bow(J)d;A&C=ER&JXl!WWg{5
zJ2kVJcjt?97ZdlclMqK4R@DY_T|tML7}dead&{=;Z<1|;yqJ|sZdb4DHU7gQy<DD_
zY&eI~t%tN6YQFuQXY3_5O()j6PTw*#vtsdBTXj2Me#$LXAJx_7vU_6`I%%JhLYBXU
zeG(HR#W9@G)1D#?Ni10H55vx~p4ez4qM*-v^}Ech$`NJ<sIl6}nm0oO6h8w_EZ*j|
zUKGn+40!|UqEb00!aHbSyj#34j$OMA1}{$p#g++|IZn!#O`c9cEmZqD8-K!5xI0$o
zLne^&%_qs+(o%Jkiu53!sA4$HV6IK%$ET4R#T<AaT?`%V7)x-k&Bt8U5H_#%he;Vp
zEB3qP9Bh>fr3X_p@H6J;B9??Y@tOk)>;A|d%GS%_>-M+A)DPV;nkBormV8Z@>^?Th
zg51gJl;^Khh;eMb49ZxIL2l^CcX#JViXoTTio{bovm6fPb?x7C8affFv^m)^L4DJ6
zy;AZ+d2ycgY*n4^+!yFS*cqZc*%98~6#wGG#@piq56m7hAEoKXy>Q4cI*}p<TT96h
zmivh1W<u76;!x}3>Yq+#gDmJcbX-QA`FrZ3wtVfOlP215t6-$7^({7BEKYwwpi`(~
zUh{pnwEx6V-L{nKMFu0fNh_(|-3l40!fGj0WIdw3CSGCUvdiH%I+ce2M51dtb>(%s
z^1KY<T<(&kyZ96fA-7eHa@MhKy1MZUouY?Z;E)|iD|oitZY_wz#%V`U47xj)F}}x0
z<4d_3FqNZK5vXT4kvW}c=F5FhPR#A~VbGT2<K2p$^oVFE$>59of*eB3d~&*=y}y)y
ztCaQRoIOVM@HN6@kq6fa5dT=+&0^hNH}EQ5>Or)*l}$+2Vv@iz-}t;H_{AE%)Rf3o
zT*-do-Y}e3qvbn+wXBOz5c2`cy85Q_4(G<|KsHB;y1}Gpgvu1`>77U8azDC))k+rh
zJY7@z$CZ(^gW;y+iTWq+TzO!ZUf=@U^FQEXj|OSPf}9bRRBzW1*kIA#tq2G_Km_As
zg%&!gUcZ)9fXsV5A>^xjJlHGJ2+a<qxUK>gMuF=^Ab19V6+~d?iSuMO7)A4*g9S()
zV28<?rxjQ$WoZRQ#w!M3^9)l5SX33e1~zH@0h?CZ(+MG`x5dFJHpvDMo<+eas2;%@
zFQ@bWL|p-FrZB!NU_Q?WY=ar>0yBKW7YcyDq{jrXK+B38ObiJ8NA_95yy^ZY&oTzr
zo?>DFcXnP6+)xr2f)h9X4@XxS7RS%TIh^89+#QM+cPQ?~T?!P};(kcc;_h0kxVsd0
zFAfJ3D1NxZyZ`sYKD(EjWG0hLHa9oF3=WN{-7f&RBWDROECvvhO(64EC<DaKB%H9_
z8GsK!Gl&o*O8|)61u!uN1SmKiKyLNu04iYtEjt1w%mALIpb#jCp$2-qr31u$-FE{-
zL$pAz9+LoOK>#yVE*jHr4WMZk1|Up~Uk{)furPzqHUXlrM2vT`E}&U>0KF$OP}3~U
zLdtfR?T;mScMjk@paCMlOrrn>vrK>@pFuz$TrntRdO4ARh_YM3ctVg9fC_RK<AQw^
z0Xk8S1Rz>?kN`!V0nuFqB><6ep280>4Q9fRwm0LquGC9}2B_ahR8;U%{ZHik7gmW1
z7zM>T@zkCCD!@Czk+2H#O-F???!)^1XoI1!V(Xn8<*kB=rBN56G^oWJ4`z)=czU_;
zD<#kUPdpqmd!%QAaoB*wcxhYKk4enn|08|u_hCEZ+h7PBB@Mw(jyf;EcBZ2S3B@Ly
zU<9M*E37=+lqwM2reg{3mj!rfS`x91K`dvC4U$Jz76v*nfeAp%cR=LXx(d+UkWu8C
z|1ir!kednjt}hh?Bbsm28Ao`%O&+N~<k0E*+hO_5_yF~7Pk6P~Z@wg8i{3cY_cDX$
zG}+_JyU|z1@p@nG08MWU{{a7I+2~Y26-HJltRBP!KuS3PMW<3fPQiC|ERf%!Eb0g!
z$AHQc?C}|aXn+d`h^RWEHM19EBBa*5#-e%+h;L1OfN_#b4qAvYM1+vApx$HZA>zzi
zJF9`7J&aR>7D@rpC8B|0Bq9E;3BwG8$^8eSN&@)Y;Ft@UijBh>FHt*UMy_RGLPw>D
z<hlU-(tpmQ8*&{)XD#AqO_(L?lzO=s+93~d@+d7BhQ=roi5<;-p+&+-JZsup4PZ`i
z0)x$JNYv|K?W_%2FHjz%ZbId3h9d_Kc^;;-NbspwUMI&P<Bs^{R_0=)MO@yHe!;@C
z8qFm|Ei2jZ4l?7BL8bmOv0M}8t|e294|uW80gP9bTu9eDNSL&mG;Q+-1)JhkJ>ps}
zfYAyt|KnK@BgHtjC>ER>GpW?a=a(B`TgSTpvwy&_8-Pi!130ygfxe0Y3upmZWXqn$
zt{^b~D==K<<rZekT3{K6XAy{Hod6t}0bu>Mfa+u6&BKYqhHoTxG*S@_3p5mHn%H7~
zGlL)C&G`*$V2lBT-BB9ATMDqWXa?6<as?#uAW|4iuHF7I28io*xfme0ARRFF7MJfe
zVK9L>NS<gS&;iiAPb3j2JQ-LQOqc)+T`M4;FJOcQKttsd$X<rP-2gD%T%dd!kXsRu
z+ZYf?6;MJ9O`IZvb2wmg6}>;ePe5D2><o^#a@nJEU>(}xghwFKa`V5rPo#&2(_>}R
z8%STAU`yTd`KNqaas{yb<Pd>8f$80Z$puTE3}6Jqi9o7=WbVLcQDA1<KD+>imhwUi
zM3n+QyL&(c0^r^W+<O3<-2&D=+toaZ)^OZAU`=%gdbj|5Wp&C<41=Rn&kbopu_-<S
zUQPtSe5z6i=z9kt)&SZ<0@@(bkitv2XSxDyrjKBiKTPnO2r&HuoRdIssT0r-{ed4~
zNlajUu96a+dI#ADI^Ap~BYrQxn<ZmLe>JHYuwWY|Hwlbi9zC!C0~(}I0%j#G0QmdQ
zk6AN;oG$bkKnjvP*fDo7nbdgxyI*KSijoZ)h|_(P4KrvJciisCxNzKKs{Uwe<zk42
zBRPU#2r|5-WQth;mf3ZFU@l<*<2ea*s1%U54Q0qR<w~%cAE%|^`gAPEC`HB=fFX7R
z4%j0geD<09|0^0Wen&{aD~A^ltP1F~GGI(*zyRU^`b`4#dv1C$5#O5p6I7!tM{`30
zEGqx;fs_{#(x&E&O%M0GmjH9Q8}QKL0>j$`M64zQ{D*;IX96@Z1+=CJw7T&dcq;)Q
z!uB)(ttiJ4mc)eD+cP#C5t{u41#bRzen~CpxC^0n%lFSl;afoe-6oEd4Zq6x=*A}%
z$NO3`tAEpuAj4L;23GF%HrBsWFV?dA&m+$B&GA{c<whB}_b*0=2wm$j1F628yQyKG
z4c|Mn2!9Ky*zs?D>VGg2N_W-aF{}DU?Y>OAFFcVx=TN}3!IU#0Fi7~+G_!nOJ4&r;
zuC(;Yyq$_}A3oK*37`0vf6YYp7FQT6E4RHsW3&J!kNqZoz4tU;_5rbs6Dm;`-|28R
zA5n=FYDR9+oz>KA*y+lr<^#>X^2v!04C=K|($ePJifk*!wJDcP>vR`Zi=n>zZ`qRQ
zzkYqMtVTjO2nkc3|HO;lZZZ6zT$E&ApmM3vhr%M%gMaiqgF9FnT4r267WqEeb6pg@
zYU7hW$p=mc--O0vRbx#5@7FWw0T8FTX9MhQt-zIp6^@MHGDg`B;RwSIW;?sKnN&=#
z8~sxvdg{Zt0+|?O-?)`1PE^kxc2N2%#npxn`A1(g<zkBt|B=Y9$qJZ|Da$(YXJX7b
zb8i&st%VQN{A3#+*Apb5=TLnXJmPMDlfwH)U~?h85wV!n4aWsbV^+hKhGa;&JX1>A
zMl;V59#-4Zibj@;k4sR2+>l;&P;a)A=Vx{=Y8cB2*H~sS93dcMPHd&dhtq#K5kZti
zft;Be8Tox0#YzR=-Tc#ETzT#idVKdHx?I}Gu(Uw677R#KWY|-H+MUB#!`TrA!=tTq
zUu()`%rMfkw_mtLs3(c&;eDs%)}HY?72z8McQPrxPVXVsT*fOjkTp`3xu!aa{P==5
zryk{DU?cH9_cC^9Kr%Umi#}GPdN|!H?i;Y*@8@hOTXQaAJ(9`0>v}=JevNTb#g;<5
z#S|0A;ygJ8j*N<tI4V5zU%2O_H`DaWpglTcqAy&^@TjFU`+J#4+kJ>jp-3&5v!a23
z-5;DMPkp`hAspFE#mN0ln+_STWs-M?=JsCyt%cL`mQ3VD&P7v(9J)rD!r5|wlQ*J)
zCY|-ir5dYhhg8|F^?pJ5C*+6MQmd|{!{q7g(Fnp~d4`cr7-y4Ei!3wau=T&vHW5KH
z9%D+Z3gGFBU%78}SU~1lL*d6;^Fq!S-j?C?+|0G28+o@agI}YxI*R5WY#cEgNBLvt
zJ5?qR`1Pt346%Nx)7HI1E8$odv6EK+Nt|in7*`;_e@m#c+9tB9p+C9coH}*NnH}ls
zi`KHbPA=Iqamsl;zE0kM%-zDk9Vly1o!TZ6W^Um)%@nlTyO9uE{6o+6sG`On)_u}$
z)V;4pmjGt70e$f(=Pc0CK-sU6^<JM{O~Qb4Yfcl(B`l2WQl;hQ(7>eaMq+KNde*6D
z-of9-e38^{B7LtRib(7@{A(bQ_FAKXA)rLH-HNz4j+*hWB;uo}tfmw2$wDO*UQTbG
zx{iW1!M+2yEnB$=;JS26-7{T$@z9MIGg6QHGp*<0jR(gd)e;GvrLssZek<w*(0N}p
zKP3Mlj4=E#j4&?1&#4iNXk=uaS=z!u0u@+SJshDPzAe@tg?uPYBb1_}O#I9HW&JnH
zMhM)S`>s3PKaV48>%_Li3&-yK{dyxkYri~X;(c$=BBlklP{<wE;X59NW7<45uBup%
z_{&SFLgb!d3k$apD{n8}q;E$R2Gl$&+XO7=t0})=g>yvw&)uf4Be6SBsDFfM7ie=7
z1{ltOWt&jG{18*Y+l|liOM45)=tKTmKV=~?0C{395QhruoS3Z++1d)=zt(4tyZ`9*
z8sMa{bO>aKltbIh``IMPVkxXRnWU}N{7rsPN+~%;;4@Z>_E}MS#HQPCO^HxPUkMx_
zL(k<VZj5<}HEAz%LQ$z*eibFo<QyWYGGCCKn><Oc<?|OR*n%8+J$<Qxuv=%Lq#5Fp
zs6Y88okiPSCNfDSM(G(Zcu8)O5pvdu9WzRr1pB=u94Mz|Uo+JYf3MG3(-#y7PZVdj
zA05|nv^<`R9n|RSFR29F?quf-%-`J?=0Lxbiq%s@jx$bm!g#g(wY!L&BJtQq3zC&%
zAn42+k0d9$_dC4*O+4{*Yas&>DdtkTYvxpAcXFF+?};J0Nh88dSf0K&l%?}i6|IZ=
zm*pO4bVGDM@BzURo}A8KlY=J?>xZB)4=>STd;dKvnilH2UD6w$PYhKt-_sLdRlb*i
zjMaR)8Wo}<<+53eZ{7{2W6Pju(+x>=NpTuqon7!3>{Y+>?UCN7{W>I{mtkD^uXtN*
zO}Bm6^d_4<a;9WSIaMmp%ju&PO418ffq8-FR(v<lvQp7c5_Av0I9lr9bG}66tE0R`
zWCJ^-FLa=^VqBG)?`}VO)8u59&3aO$2+adiq}*uxJK)vWe<pX01Do%c@qk2RxW5+i
zp-p$Sw4wzk-RTkVf**AFq1K}j#>WcsQaw$dab{g(5~maiKWflozpR|oV&|;o(Q#%E
zkSK5KVaf&mTk9j;w0>8zs`)7A4$)LvP*nVi<QrolMbIIR^Tnr&B{CgG3X{~y4m<N}
zbo-61)-W>CcvGTUjdo0=&)141#Mdad73v6UiazA?3B5$@%?tus;71O-93R_0&9FT6
zL^Qs9Xpjq#G`iyo+Gj|UPG*v*VoFH9ONWiftm+b5qMMRLM`NFCMax-Q-M-!{bCmb;
zX;{pjpc~Wl3)=N<{;rrIAzXO)khl}3;H#P$SX2Rh#$2YK@ZTw?;Oi!N(e63$@BlnW
zo}bR<wD5e0BTBF)*l_Y)R=v9=^#A4*cNUn_IQw#Y`>*;B@$2vp-?B5E+X}wO+&_d?
zx3~GF8$OAYg*s%+!usBL0%kFv&A!kIO69E<1k0Prh@?kGu3}^3&X#W`?c_ud&1#*Q
zU=N&saFSB;lZnYR+Zh_8z{XAR`g9HMbyAe+$^e@$oc&10HcBVt1Gw+*Z<23pjO6aA
z&940ukJr`pq^|Gr`uy<-5>MPE&W=#JNg1iXtGL%)S1>${$6a=z1FsyOGVq<UuIY1s
z*suJSVQ0MS+ka(=%a52FNL@is{ui0etTVw3aVMBOYEo$bT|LhcgaKvPoX>x#&F)d8
zrB1OTA`285sSBy<pBSj8Q1z{(&<uc!L<6`~q|i*XfGfpUq0i36o9$u|+e5`)8)??c
z9m`)N?9<sX=e3ndTmkG8%jBOW-0su}Yp<h6pWjP3*!@e?_}rb0kwbi&OXhyl{vtyJ
z3s(LTvl{PuQoA8`buF{6b)LB*G8j#qFTHQjz~gV;r;M)lkK2N)XGf6&nI8HAnE~%y
zoD+SJV@vXaiVkHV){iLZeJVjD#2UCr=Y8tE;SW6_u3K(dN3j*hNI$daKMKNdws5YW
zGq=iXeKL?`3v_7Y&padCozGjqVV0dI_tsk9aU|4Wv5R_m4{5raYe5}r=cbwmA>)2d
zsW}x*>uHW8Rrc(N4I2W|3thid5^lsTJiMVOk|Zp)*iYr)ayY$HC$D$MGp^-HV7q|I
zz5BriXDpD*1-Bm&SC4(c*@2|dR`dDV!27G%RkP@+i<%6S#A)F3kP=ZiZEDPN>`J2=
z$cgte?{5*yc}uuX9`UxqeLtE+>{HGx{L3rBhkD@Ts;u_l-4Rw3UNeA3E@&wsEk-<U
zr7<>}z%?yqIc`P7fGJOZz$!Fkf_^uTfFmsiIbo#{+?GKtHD*`leH>u{9|0g%hRm77
zi_u8lL^53%`$?L`CeKo0?g93pSC0E!pF}N_HewuEcDM?~E${we9YstdgEEwl_q-zY
zRwCYIC@W5QbyU@3Gk(lcGTe0dWj_!*QG%ce)s*s+;g`QQOkO0pAi}0^urZqF<nB=8
zg;lb=vksIRuo}poC^62~$x4m^C#^_ObSECfR=>q{@dYInRjdyAmN2ZrV_Be%;GkuR
zQwHV3Ti~tG&TwtaThMo5dAvss8UTll%E80c<MLuB@<pIV<XcOvNOK_GqXpye#)!);
z<22W@n`pU<9At|gxc&SXO3?kbwIjRV){^IXURB{cE#S#ouqL+g5RW@4lk|n_8hDE+
zEuMWO;)T<{QkcusvYu2c=J^E{s53)s{cUIdLBTF8vivKD#QS_hPPB=NCR;5#yo!{i
z9Ly}xj}0aex^u6@j_BlNd&Qrz&7*B_NlJZ-2Y<dz&Pf#xhPA$`@AxHbruO`1p)lvD
zpoG$pH4j<0mpfu{%M3$4x+}d=<3~(u{giQ@L7{}zYFlMCo%dVQ+*KocK4yac)EbLE
z>juiCGmVaS+HVNlRjXY;6+z0sd;>*H@jl0P|3gp!_*bSU%#={)+el*1HU31lUR4R@
zc3^}hh9H`8SipT{fX!^ip;FF@1ee4}$<1p6gd_lA0zfDQ5Yqfc+W8S}jf*|g7z9nF
zMC5kr)F(mabY+v3x-R78bbrmxx8d4RDy_kLtI9~|emvmbFaEjRLLqjWVxe+I>pJIM
zTF<dvQbdc(<z=<sm;bCr_#VQ-T4)cq9$q*G&Uvo|<CmlduCj<+g;BLgdxg~>5J~dN
z0jqM=SQ#cx`h?nRmp1EdSJ4wyp%GQ7h!fU)=8mC?j!K(KPMOcBueTbTTdDe%xUrgh
z0^r%q$HwGK?1?=;!LXN<WuFD#TmH(nXy)DBM1=f#znEb$>PV?i0%6TwW*yper(fyd
zJ)3}0!Fe*8U+!%eK%IW40x`yf#0{wEO@H*U{Osvl%qf&xsd?tLhS%Qf_T3Lv=awaV
zgI~~ICh?S5x%n45)cFjV%#p>=D)IaAHk)c3r%z7q>=lb4u`7OeB=;@LUvEV8C-+nr
z2J4JEmz;LgzeF|vzJFb4@_6Rs)$l*+xy`C)zeXYEFg!$CA#@lC_BHnVM68I9ouot*
z$Jhk&NJ{tsx~vX*2jQrfrR$X}7OD5Jn^0PukCMrsU#a3;b(H2yopO$u4P#DJwrMN*
z*=YFFE%jG&2`>KEtf_3RIrn~r!}c#Jw30m0(_i2_GYY@)k+^Cre6+IfP&oAY@{{)0
zwV0obsRAlD>n!X`#`KxuJZAKq;yiA2guF+jkX{NcE_d4GlA(Eug8WN0?gKZ=^k)#o
z@PRDdO0}@wPxa0822SwqL+j6rq3js>k5;&&9w{)>yA6p`T=<Sk?T$uYrDHZ#?+pv`
zmJ@mg8EA=qm-}H&YYGv!E*s^*cgBAOndFyovJ?91Db%OcFia-a;Fe;&k;Ibx8N%4>
zX&P^c>i%h%u>6+7yuoO}Ia+J1R1_~Q^iB`{IgZ29Be@p2gGZwB8nHY4L>n7wQ5QgR
zFXZOth2e~q_XTucyF7^W%s=}LoCZ}R0E@k6?hIltjJx;?Gd$O6g8ezy)RfN%4<s8U
z4e2fVH*iP|v5p#x;WZg9hs~w?QM}Qo1-~vyI4ZL6?GlXWm6m_lgaC4gsLz`1kGTj}
zf+Ovf!EtsVuUJt0^ZR<S)hfN4{2tA^9gc`7n=ntpU?$2&I}?ffoDdO`mVtQBE4{a=
z&AgEH(Ys5W4GTWGlyBKJCVCYb&iy2xQ|LL+k73*7Bi?UzqrJ@q<0K_2i49eJp91%H
zw4;;!5*>G*c`IZ9h7T*?yKw=*jEA;lHx;@UIncFd<-7{dvrywx0t?eS%vA(1Xmai0
zogddE6~2>p?vE2w3d!9G>0a-t-%n}jh^?`Nv44Ic!ewsilFVHT{sxyI)k|iQk7C>;
zUDi<-QS36Ed<I<-L{<3Qd@0LJS;M18oOmLS29tc&#DGS>Pg#mafs+tXVUxu-wjhSA
zOquq7|J%O@!(LR@`9iFY?OZNrU!IZ0dL(fdZ&_*??K2~CSvoOcujXsDnJy(hA99vE
zj6ZY2_}wU<aHjL+4+RqiTmDMjk1t#&e;w4~Cd0W!_$g+tm;Ee^7NUy5x5dPp$Tmdo
zRU~gQI*I*4^MR)+o1RahFO6=y<VI7i!^}3rBE|w#F?{&g+i{b4vG`E)6Kjy!ir;5(
zaX)d+Z-?9d4s_ZxaB=H-i6rItt4O0D<K`YY47Qc|-*j*RDMs}=i{G9p1$sj;-;a6+
z5NCfpl=W88=-8$5KKq=R<1Uc^GWb3pMCT+q+W!xBy-RW(5%#Hpp}t3dk)q7eO6|?e
z^J=4NEE;9Ek|gPBJ-s}ZD>%ho`kPEUOq_t!dxW5*h%~s9k}~1^1E1&AoK)^=*<@ze
zTqo!E4~RyxOrBJv<2TO;m8YaKub&7Y#^zGZ$fR<e>p`}q63z|IJjIv^Lti55#Z7}L
zVe^#PB$rmkqJhn>D@|vYpLt3MmcW8X;BPb6OKtAgy_3QIPm|-;2A%|zPP*w*_jMH`
za3uJfv@4{Pfmn4%4!^I2(JCd3<;Z0m3tR**!JEbco3k8D=5ZaQGDrqzpI)Uf;*EX?
z=daUSdGafbdHHUIl|qFIWy8TOMGj@88$_AE?;>J3mACyug{PlpvS<o_sD2}jE<UyH
z#4%MLy5gN{#Shu>#CrQ>6sbDEB*(|1p-}&nHdCuKiZPx%hd!PRLA0lC9sxPY@QNXg
z?6T5{JAn&wWVc1GY>)^Qz?)}{xFgLeFskOLUYQ>~w-2<;|G9UTUP1*;=Nucri2vLP
z9^#|bGtn(TlNvY89lEf|2UGv52tlkic~=QaLUaGLH_@8Gi;NKUs4+Mn-;9Uam_(zW
zq7x@0DAw{uoq?R_Gi%Pm!J3vfp+z5WUL(Q0OS9>>C$Z{@I9&-gU}Lc()CGwTKUW^`
zW`x~KTU<gl^vWOAesYgFcHP$${Y!QIsiEgBZmi4wV@ftqRE=m4RCh;T40_AFTZgIt
zSja`5G+jFiN6)t>40$bV`-d(JLg#p(%=A-V^ZH=}9&HlHtL8lbB^{fH8oi8{{tA5H
zzG0{3&49b>$MjA|uxXC<LJ6RPlGYPtc3-@<=)72{@-px4ZTUn_MCFZN9~xWN_uyo?
zf$Q{2nKTgnjAy`U*j4ZN?PW_qf$p+}AQc>LNVyVR@)7*v7Z7_KlHped;G39keM5w7
zO6y)YYaw+!XT@#Rm>(BGN^ru`GvMj3#E{cq#0lSg>zsg$v@<xfT@6MQKdRX=@ZCFN
zXm~a;1k1&TA6j?)b@u~AD;Tje-Udto{Kt9VWdMS3L{-3^G2?H*9O&XeIV9l7hq-$d
znJRFZy*BX@d-D$5OTby@L);Luh*Y@0(!U(Qy72E=8$SVwrvwBb*o_Me;dGU0Cw<(e
zey0Lna$wwB3u5Tq9W61$2_F4kv~Uk5?~8mdkkb)CG$Jk{uS_K-PR7UFkI(78b*)m-
zb{=UIiKSQIlNy}Z7`M1_*+LkPJk3BS2Xs^F7px;~81v0AI<Uc^<V2~A^F+4>4y&@h
zZ9vxQtt9*oZ=5Gf1?pg|cy}Mc|KS$<<|g!W(U7x99VMz4-zF{`zru`6`8gXrckcm^
z<F4P=3`S_slo3i>BH&BKp5GPE_wjrP&!9Vdd(=Uk^q3+>5mR%^3L~kX=*@1dzjiWL
zpS*kTG*zoN90C1as{}L_;uXXP$q@mMqL!~+e>(a%dpLUc8ULPi3Koi^f&taGEI?wN
z_Jym4;?sz4vaj;?t+<C~+#2NcZ4bAWR*Aikpr2(7ItV;6VmUFa>Y!60?ZISI;lS<h
zt?iL4{PntKJS^%d+^rU~$9i8}LyQ#bXWB5y&8I)f7v9J-!2#uXT%UpK#5)A>d?Z~@
z%ax0jdAFD*AFKrG803I~x)CFeDC;DR?{Fx4?^osWV9<8;Tb<mNlIFMI+9+l+oWc*7
zwUw1qQ^rZm!ud<!gXOb4>NjW0zCFkCg=RVk`3Jw%H@!W<zlFX18l3Vub=7A0Qm!k!
zQL1tq=t4yBe2#9;=Phoju-~ZUcEss-MsuR-Tv5{^wt+3%Wf`cyJKj{5V8Sa#Mks4!
zANXm(<X>sh#k{M_0=)^R7*)kCGkqV5%R<I&X}A`<_;aH)X%n71;y3VtnkEYLlO>3)
zpo|*wYXWvXRIG7<sNa022ab#3u2IQ}h#XJW6IV*UMtuX}BIyh>BCpYvJ)mMpZHwwa
z<jol^FTacwlKEHmV7p9pD`iXdEw`$ldn-gzk=zagI{sb@G@x)Bl!5!8d4}Rbn{A?I
z#@|!3mIs0EpvvwrNOdWyIKIl(3Hh)JHG+Ez$~tc}ul_Kz{zlkvb_yVNnQ|6VU0Hi?
z8>Zi>dxwnGHZ!JI(-bOcS2v?pn^s;|-EIgOid~%^$sv@@u?&37(Pw0G^wbtUjjf?r
zShSbgRA6Sfx)=OCj+AZ)eW^tsWnzQHuv`MtqF8Qs8ddhb9~5HBozGL4e`%xR^b0A1
z;bRc%fNwouJYd>+|6(AMku_uDhwP{q2*=9EN!hF(0S{?Aw+ak~GoeT7*5wuTM}a1W
zOw89-`v++4t)lX-UvE*^D+H%t#p#s~C%dv2L&}^oxWxKQ0*78L__lQDhoMgn+IK;N
zSMsX}n1$D}yTJ@7UewZiFsemm!lcK)bfK0!Ms$C=9rO71))dJ)SOVru%21ExPb_;h
zoNcN0D@#1niz}IP!{fRb*u|T+bQ!;}{xb+qC$M{gbZ*$@h3xt;*F=TxK3)?h(KiQF
z>VG>^4V0EjCw)l}wIV7uwPVnJE*ATPwH`$7hgk@7F1i5ZM}E{1nCL`o9i+kFBC@N|
zd4@;273*AQEvjZ&UsB>Fc_w+?N?t5}{3ZQTW#rG|^3`yhxTDa-;Ur4M_9SWwxZm2G
zM8(DySuW>Ua(hTq#1)0<>$q8)>s+S~RhN;+<BPrg_DS}M&?Sc9Vac94P;{;)w?8p-
zAn;W&*-nt`m0T`YaPEUh<lORHCAsJQV`x>iTF%1}ruCBPNEDK)Vd>L&R6b#v+>88;
zcNxbR2mkgj?t*ym$y<6i&0Or@*I&Fnm|-<dn`}YM8kGZDFEyd6_`u>G)c2ip@CPNH
zj*7vOmqZt$wGEc%c;A$8I<a0jiy?TWSEL+pFKE70(?hkGdC4<;VI(e^=Y|+hoF(eP
zItdU`Q?z5fTX_7TT6WAYH__We9-8AW7}tHnAcMTWgltwk4JQJ<NxxL)``n%+>^CuE
zw<Ae;M8m9HG=p<mlFkH_YHQ?iPuiNyTG3@!9&WO86sK3buMFQ&d?{+=TE91Dcpd7=
zWQ}R{I_n6#5L=c*5`OI}mw!7OtXW=+K1Y1LyJVku*`g}h4m!Bx7N#VviAVh5(g$pw
z^YcM*maEo0hJ>tz>H!9(DKHcS+`wTQCE?gbgOQx%V~X%FaoF4t6eYN8e9~-YOK4Ed
z4$<?kh2n0*c};xRD<4AkY@(QLBD1kaG@%A`{_p!qS3R-YIl_Zz{Mj-)QD8zn)On<U
zcx$awk}z(Fi1!(xb9K5qVnDqAFw$hDtCgMb5wETi16<&Dq{D7A`odq}Q3lM+x=!oS
z&`X7o1(<1q#;e5>H*vV@*xBXylAJ5>7EZ%_FK&c(c7FCseDmi?U8Ibof*$Lpl5ZX%
zN}wJl>n+V#CnzJR2CK2dTsX}JJdLtSu(Q{h1%0=ryilE6hCO)yz9h%2@Dkh*N(+Fb
zQ0^HOVb5s(Jb?&SVvvAs;j<QJXP6$iXdqh@Dj-~n$*(iB{~=CHxcfucIr1uf-BJ&p
z?;H3j!a;Q_=7PHfB&w+9-P`h=*4gAt5r%v)q#A5wrUeV64TA?k-6VvJZpebsU;<gK
z;|A|-N<aaO)<OetRld+=W=I^<2TZS|dy98aG8XS}!4RR=5cI|J)q>*F9Ze8Bpm^C<
zhU<u<vrul|S8ErM#hys@=nI->Jg6+rAAJ@Y{ezD@G9;6(g?WuBx}0?>M?wg92<d*v
zs^lCGXu;2273_QL^CNH=f8mhabeNOj$w#?2PT$%1@`=tu+*0AQX=sDCX!QYNmL+P4
zh4BU`-Ou6^&*bn*j?-?KY+H$70wZQC`yCR<dsvFxIYM_0)JYIWfBq9Oy~y3-2vtJD
z7Ca7*?ll-|6EXH>s&o?W49Fr&Hw6RbpXz<e&KIHPsOjM#oU_;A!{k?=0na<63(LsC
zmabV};##h_(qDq7qppK=PClcw?Sx_8{9J)CHl9b}H<p9F!cXtKtCRA@(%K}KO)wB5
z=UomeA^GNkSoqE>eVO51cITU`4_b{mK4qSV+G42@JWFrW;0~qfK_jZ@B!AxZP5Be>
z+m4X|aik;c5?pg-GYamMVya1F{9c4yj-fbJGZDh|4eWbCMdX{YlK*^9=+Qt4N$I42
zH(uQR0bd-%a2_ne6K3@h6{_P=b0SIY{~|FVuAV1}&-xm50qX317ms;8QYth<gTyb+
zQVVMwj@Wj2`y<Y9j)(#`-9sMD%4LD2sf<}p?2s0V+-|%E4}eyWnLB`e)ijL*o#;$g
z%vUd&J%W+r&h~Cnx5c64Twl{#*4DrIWEm_U#%;e&z&__LH*+x$@qI*xQf-blnE7re
z@{z*{9^{>TQuBT~&HHj)o^~9mjqvwyT-bDuVX~j!_r!}FD!6%!Hqvo^$=poyD3U-2
zMQn8Ds9{hp+S}mVj8U}%{q3K=V)iH*pPZO`st*}P=8w2j138MTk)e<@JwUrVUvq7G
z>nR*|y4Hw@DW=xW`7i!Bh)UC2#W_x|Nm_injp*qVk)%huXN?*&C*h-*%WWAR{F@jX
zy^=B9a%xr9xw~<73!jlKvLWKsV>0O5^YA%?6r#m~!VkET{8;=%H|n4d6AG=h>a6`V
zCScjiczj4pIs$);Ui7Y7BAsw5tk);ueQbAT?DSr9YTSttl&V(~p7QB5*|ZbC*g5jA
z$qb~wb(T5d?JZ5F9;3XEb+pcPR5X)8u&65y!KzpMzM|ms+Q87$WYq>@#Px5LBjUfN
z7}c4_7;%EK^w?oV2l6~dmYKaj4McnH)cUxRZBin5QL&$NevV-Y*CM@_EW`sfG)^9_
zX;@PBZbdS!Zif|;aWSqs5O}XSu&us2&*l!<VZgd!yx=k%UsS^hN}m(Q!ajSet?x}M
zpO-{voW=gdJ%u={?#>@WmNv&Q>Wt^#=cZd}?~q`!M%1gM2pF+O1fRN1FxB)^KohRy
zv0QO7T#wRSf2X@D>Bg5XF6<lDlo4vDWa>@e<!vZd%ovO}wB(#Bi0o#cH{Sek?e6`<
zHTAHrKh1xzW-GGmhF;~5xD;SiWtCn1Q?2-FqcPWIN_Ng?NFYz_nCQT7u+l2~YP23G
zyc_iyic!BQWtu<p%logCvtE2T!27?aj5^@^mft`n3dH{^ApnI<&{HCJ|GHbGt3hQq
zpXhetDc_pLaUuLZp=N}u@8OZk<-G?NdRO4fb$liN4JJ!n@Y|3v$W*NP7JM8<gbyKG
zQH5ct7puDuRUnlk53Gg}rIB&U<1A_s=;iTVxK=D5GB|9#V={xs)%A0RhrZ*?L_Q&1
zol*mG+YM5tldDJ5>m?(-Ux$S-oxEk6$*fd>`633u=QR2VAHL)gvh>3&C73C_yYCQ&
zxiR9()Os$zto<Yp3D=uup(n7*By@)D&h)SRHA$$64W;8$FASIdt$fF6n1l2Y#yh|G
zU2A=hQQ{fI>)emztoi_k0+$=|dh%>z^)bG216sIi#72KUCzP4%J2=>&b--JED5(@;
z2$GE^KeXPZ{|mzqMSdu?EBF^Csplp|@vf?d)O3!CO1bVs-Z5$8eW5Gz^}p6o^VXRw
z^Hy+?8(Y?xxWh%FAuQftWtoqv@!)6qySjmQ5MwhHS9Tt<)kGVS>hJVYak#2*xXkBK
zt)7c43Y1;?sFOvN^!gkeGAeNUvU-9KUcrQhS^0?Tu$I24Ij46Fv)Zr4tE#>0<=^!`
zt1B-nA+|Emy_uAsm+>U|Kc}wNKN8s(r~WPVwoBYv^JJKpyF#QBoAgb7=62G!obQ~U
z{F;B8QwTMAcvJ8%4GQ)by66|!VHR-8i?2V;xo(P^zwK@`SZ(%%R@<x@j~m;pZT|Ev
z_EA+{3H+55lnsh4IoZF!`E;V_AwT>}Bj~vxaU%ApLm}voOwT1N`T7+t=Ep<?W<5EE
z4EpKXM6;35>0BGhG*=Yw5eNNxlNvh7uS-2TiC>Nf1bB6z!_}1?Mstb&-~W0u(-Nh6
z*w)ZCT$uRjKrvny^2r1X*o}H7OoAm_F0o%1GN+2-<lc4$u1Qib@<Jc^0_nzLcQj}0
zL{obPLu!^S%009?=T=lzybtY0OHQ12={;oCef?Ccp4{cOG4JW+Q^Yhbb+{(&hrA!J
z_3N2B()4ZC^G$(_s7JydB6Nn5;vM^Z7$Vagry*x^iVDQp>gzulP-${?e!s=|*@|ro
zFOqM53~rlYc)0&8o=biTjqaLDv>VI)shuc<%LQ=YAD4aZ!uP*)4Y8dOlGlXujqpx0
z9>5Xt5Xt~f?a{#f)yI&ds^O8VAH4;U*bU+A_X-91tL4VJQ@EYeUgV#Gj*NT`<=o6Y
zE}Iqe>T~Y%#SZ;4>yL*vnLRjKZQBZOKXN-Ku|>Yr9gnaxLn?bI<~QM%RxW-D!30XH
z;boa3L7Luwoltc(!r)?RTUSc4akVrH%#kK6#YKC;Jm63`D3ep26Udtr7@19Si>-9S
z_;yX3W5hc(grz#S;<bAsb3vQa#XrUN-^bh{&uhUCRLO20C;S~m!tz$QahvgL`HfTE
z<W{&5sg<X7E#XtCHw6t6$s%dX{NT-prm*+MP6J|hrRduT_Ej5M_>p|}B`jNUf0@DA
z7D$i}6ZLIwFtLSYhz@BDFY#w=cLg8hT}wK8*c6t1+=q;#F`f{FmT3%gc1gQn$;lP7
zN2cFf1*17S-79$`B46&_+r)6md%&oercVBZi^rtloNgRs{We8!DVUx<(N3M}6H1XH
z5?T^<I=mC#``)VbyZ1V7sZbmRBhHimF4CBWL;M?wSVd0;t<Zi(N7=HWV1N^^S{72K
zdvta~WE<u+nJ;~<NW^fJC;vw;S;0}NwYT`yf3zx-&u4x64D3HwzhBFImj6JbiQfkY
zA{}MPG3bSTe(gi2Fo@2wS^nW({UvG9+iQ~l`767xN4;xo#T{0@OAGy^!JrPyYrCuD
zC=}1}5A&!cRUOx?AXOc>s8cxnMxkC$?nJebQ_=jMT-MwBZ1X>Y*-;9|Q(Pf(lFM*|
zE@8~06pMy<{xI4O$~pvj4{vX6AG#G5T9s|~0<;)9k3IGRFK_a#|LR@9B~D11i6wHY
zsHPv-#L&s|q@vXXU2t-c%ohY8ke0b{HQmGW!CsOi_<f~G0!9SOa>Y;(#>uYIHh(w%
zbkz@kd$oeL;B{6S#XV+fd0y-b@7lmet+B$Wlq9i2dA=5;lu<vU(OY!P)O%}xLHMWo
zuA^Oc4HV1?B@`ha{~}46&fipDT;Mxg-I{e8xy&M&@4xSc?tJC8&4m7@3KZxW8&^&w
z1M6^(@6UnmscJ@`j@p*KqCL<nE&1OB)zLWJhB+=p1h4bD`(FY|rXDt5H6FBBxKz8K
z-XA9034UpW$Eyh2Z}Zz|kd`>9V!1i2n);@9yQVj#PFQ9q!FT?>xMC^!LbRs+JuGo@
z^1Q;mP=zm?Ec4WCPE-l;FYYanGl+9MH{WQ6!Mb#ee`EG_gkPUO@fPZs<9)iyqjCf@
zbq|x`k~eYx>K~q6b`@FF<tr%fA56)Jv))d@o4bWVcL9QR2@7p_-AY1R-yaHBo{6l@
zC~PoU^<|6qbGduuEgDQ(#lgtIlQrVc^6y&Di=azQv;dKSediceN7$(z#&G^q`|<w`
zA-BnIFVdbsJ-F>Vp!CZHX%xJlQ>_V?eqyP8HqJo`84htn&|LW~U9&8a<E?CbRi7e$
zXBASuos<2$u@}{+1l02mM3vlSw^@ZLaR%B)vI#YnT;H`2h3u{i<J{%noC#M09#IY7
zBE8Kvg75zzYBNT#TUw8bcBP_SoouZp+l+<1-8i8;M+7^&Dzai6vhJKR5)v@0$Bdf0
zhZ=GQ4JMmqU1odzh7FWleY%)Kd`90z9KQN=&zvSSLWiZhOi3VQ%9*=P=IJRs4(|D~
zj%qn+_!>eOKxs`fB>8wxGBg=?;fH<a^TUL|#cD|KPN~jTr6;Ji`<Y>p>rdi#N}S2*
z>~$0>Kb|Q?=B&z$TfA5lK`z<X#1oij{04hAvZpfFLmY0hdRC3#w)zk9WruERpQ=i@
z9J$#NMzc+)tK~hPgLRI4Pgi)REPYssy4UGEl$#rVERSD_yJAfdc3iEK@z-{A1E*D=
z`3KZo%<=@T_Y_#ryZ)rUK^OifV+jfH#h>cGU4B>NCP7hr0TM9Thx?X2uWFwlkWhsw
zUSQX(7|pQKShKq8on6EvJj!}18*(D>$8nHw<$gIQ2}7xMx09N#tGN7@l;Xe?wZ<)D
z;$$fNiKU>d!u2(Z^&`XOM9>YpWHdupG2hATrztf&{ckD%`l<bcd&K>BdpKOpzqf@b
zXB{l_dVhkkU;RAX>_1)S5GT-lDxSGJ-CsPq2dOo=JT9*_p&=D&o~bjxJWi}NAz)ao
z<FVgnIkc*KyRy2#X7q0YhxV{$h}^C%{7vWSwBH}d%R(3blHxa-OZS&_!BmmNf^3Pc
z&Sr3B%QOl<1=enCKT(||=DTg&oO<mnShwozmbV|?;oG8s!k-u3SeCJV?Nm=V?K;b|
z??uG)I=(DAL!;}%Sx#pfKT$UalZkFUCf6LN*6qi5R})_?oO+oEX3uujxhH3&?Kn6!
zn-6dWN>!{!p_8WGo6)p-zcYJg-3~k=i<tGA645uAEYkE=B3Yh-S2|W8Ih(``4H2FS
ztm;3bH<>Q^X%BNm?Z@`feu|m@zgc{|0ii`{SH*2V<q1pYE)k6p=0S^&p0SnXUHPfn
zwUTTHk=(!UeVb!l8^1GTj6V0~X2H3}`yqy<t@E7_2`Hw-xZE7jS^5Gy8M~7LUe^>G
z+x%R<28Lx8O~lHezsk30=^Duy22=7_HTF8bb3&N?f95fI?REfdE@cT?QeMO0f|j<7
zaj=Q&MX*6naq&_{$@`+47&`BvJNykZ_C+kJk^B&=azBCIZq3BG-qYh~QYnzidM+;9
ztI#|Q0pODd{OpLWZx~8&L#MvBjjEkYWz8|P7u8PqF1;;tMhBqtZ6r{u7r!E`)gk^B
z7>?-!-{&rYX`85$zeNu4dXxvh$;jvxFolB@G5>Ac(@>vbYasx~p{d|`q6oY4@4+xq
zAUe9Hd$sk_JlMdHQ(DWG9pV1Xw^NmyUu57`;_TGd#Dg4{%k04fDg!QxAAZa<ZggCy
z-I)I9wQTyNIk}pr`h!=nqDka-7fM&f<B#%4ENib(hpQ&o&RQ2h*vShXXc+j<;ZR9v
zLwMmMBxwTHFII25T$X}Z<mzus&>4x;rR1>2Yp_@0<HdIuPxKa5#JFvKm%!nStn%eV
z9XHOdl6Ce<691>nL=~(XiI$mErDF%Z3OY}Ly+BibPN&JK8LfQ$j&56rf=)-rrtDa`
zg2czW9nrsMJ=~r&50ANjoovpOF6Y;`z?)sA%AP<jtH;xmu2M?gJzwHZ*NP|WvD?0R
z3$g<FZTAX?8kOAz^#Z;x2JQ2e%DJpvsrIoa{A0evEj{x-{-|9^l`pj}&)q*)28ELU
zOkEkcMG^5yZ+}9kad&v896ms)k#M0#xP`GdLnqZ8`C&<5+Q?+EiC--7&46g7kX2!p
z{=mbhn~32OjxA!B(R$QAFV*_{-C)I`g6cUrHd6m1IZv)SkID=3g`+#K|0p%;^m0cu
ziH3KYKF$)p3%#WLqG2lq5b<Uv9LHpcuX)`=uamoqz$}=;gZ$&45$T@S``Es_$_{Tf
z#wX65ZWiYGJBTJi1D|GWpm2)6_TA7^uro2XYiWk?6|X9LTemljUR~mpp{}bU?r65W
zYG_OpH@6On^nT^JvV`qawo{j~tE`&sYV(6=*}?Mh^<!j~yo$2ooPd|=((9Bz@d8Hg
zlW~3;96$T3!7&TX^)^Y&mRV8JgHkg>?_%zr@H;Ln!7o(Upe;XO{@WI+6TmF_gH)Yy
zwr@;Qe<Q!#e#Jq2J{V^~dwx`B`tkV|4+n7|sT})-VfNo_ws>3#`sYm-l8uWgx8a{T
zIUROI9V8N-OT3>pj3|#c3`sWDvvneoTd#TKrL3XHQt-*D1(S~k?phY5_u3QznRX)3
z-HR>zeZX_yZWbyfoFHTjX}y{BC6(dhx#x+U-@D5+aNW@TJXXl|su`7;LP4Quu%IKF
zQrO%$qFPnLa<rDGp!Rf~(Epw(dX;N$p3&B17EjS=!REi>o8y)p=`M%{lkMB<H)W-<
zLgUx+_wK!55VP?@20&n7V4%}kCibQoCFl(4#bZBG1`2ghZfq?OKTl9ZW`oZu)2eSO
zS=!u=Biw=#bYjY5I&^}8Q(cKN?zrjV;Z$tKs2*$-8uXQEWIhO&3%~WN{*AAh5dVjN
z%d8<<?9iQ9q5E4JV+PEB3Q9J@fTF(FLJaLmo6P>hy_?!PB`hUsbVjwipYk+VZ6kK6
z?FtU0q?lfDA^SsfYR+dxUs-K*z@g$h@FiQ>Meh07nJtnoCMu9LNh<UGo0kmEVc-sh
zlM?j?#oN6uj*Z^4`RyY7+|WgwWRl#|u$Tv3f=X0icBWMO$JdLJq2lSUhKtEjw^weB
z8Hd(srA0>ZvAnEgRSaaOr)QdtI&-u5rA4gH)_xK&GPM7!jzyiZ5ULtQn{GPK=DthD
z)op`8C`HMM-wtj<M9s4o{~hS1eN9_{Rwz0%!-*=aOb&7uHyuab<BLVS{qc`{+>>sS
zdp^y|$WFL8XZh5p*uh%eXHKBO#m^8Xwp+$(QrVZlF4#s!EKB}Cedc=q<B)xk<FybT
z+2jT%1yW5Ys-h;)8D?eTQNJb};I=j{+iFL;Y=<ItoMrx;Mwbkoz3>%D*mOFKBorN2
z^V(aRWu6wXw3X<`o`<#{XAnDVa!I`%y7KTp2}JquSA(OM-MYy81K8EyJC^shxaguW
zu*x$kx4KieKD2JWg@lJRM=I8yy6%8-DRk7IW2ny~;O;bvI8pDHV!7;g0&^7kMxZyJ
zqYWoqdVgtz3G})%RUo(4S?l)F=;1(NQsMnH<UXNyKH&_5T57FemKD^bdz;b`Mg)IG
zjCE>ym07>eaLxXWsc`>73akmI7}`9XILg~RRT@u{MWm561Kz^N(L1}T_))Fjk9gq%
z&(`gCVygd<RT?}=rko^o!yU5KOgs^4K1tHhyrDYnRMu232q7QO9FM{9d=+d=v91ke
z@B9;sx9eC;iOL9(DPDL7&Ke9vf)^OJ$`B_>O|QDDFzOf<Xl(f47&or-l@8VXa&d^b
zsV|Wc2%99hzj}GY+tq2M1V8UH+zn@m*-#DVknH}Fk34{JqFJ?h33{WJGKsqooOU67
z|E7zL^bCLkMEKcCMW<bQWGD;=Hk=xdY+i2G(DJ|mIlrLCCql(N0YwGyXzQ4%&hlTT
zD2#r$<>2b99&)GV!ad&{v$U%imh#aJvm&(~lVt157_q)wh+ZshA<j%g9}(|nJR>$x
zuw?8Vv&5qmHfoj<;YdgKC%g{Y;yhJHSJ|~BFKKluzaBGd@(vGp=Sq2do{$}Qo0@;s
z=%|kRdRFYIzLpch;nx%-QCih;-ollTgkpqBP&J!ME?@;sx1CHt{l356@L8&`AU1`Z
z@JMj|4<im92@hY?^DxQHht*Rl+7u=IbaKw#l5xDDL$mKL?V4Y**^-4^E{Ir?Y_c-q
z3d+P{5pUg$6uK-O3lQ$0?Ap4%zE7##(;F=VcUJ^w(z<gWrWd!$fYaFyOtyt6ERt+B
zriV`<O3@Sxs>Ew2B@;hYwCd!)ete6iIADG*25tG1P1AqI$~}RLB6OqD@h<A-<^9LL
z^Yt~<^(E4$$3OUP&2ywczuxIDVo|_4C8BnaT19Wn3(>l6GS*;H&mk$tV5o2a!zE02
z+PHts7_S$yAfIQ@T+eC$JZ<^dlzM<_@zZBzm4rvP#!H1lIeyHQpVT<)hqmRafka5J
z3EHDaiQlK?30Qv2@4ee~t1AS3)2iT5A+YsUxNT6U|D~?p-pIVhdXqhD?DIVXe;w|X
zSG_)SNqjU`<8JThhtNVyd*=P&{V-jOhHVMO;I0ez#q+&HS3<Exo@+&v@`oe=!GP>i
zXcD4uPNp6lox$e;aaARqrn;cS!Ew^QM(m@PTa-;FNxJAqPIXOZ(`1DY>dDUSS6Nda
z1$^%lrc2;omOb*H_2}fmQ<GZtvTNa`@=bQO>r>S+Z@<r_35(K$8vF<Z#@UBeE|14u
zQjd?HX<XC^lO3n*#o#1IO1no~G<Fnj2GnEwDVJM}cUxV}p3@`xO^0}ET-QSh?;`l$
zzKp0Fk4x@@`Pe=+<oS)i*SH2pBu@V=_-Zr~DqW`tEhAVI)5^i#NmxTrJl;*%yIxA%
zQfatv>4xuWyHhkv-wg`rtxhXuaT|(N)Pc5b=cwrB?n2+n4R-8yTRT<fs~SO~Ey%VG
z>Lus#i%xt3O^0FFQimSf*|VX?QYn}f$y3M|f_wu&&TB1YLxOU@5K*!EY{k1jU(T!g
zHw{Aig16F1-|@BuE3<8z7CGz|-xkxl`nI3j#0U7fG_r}4R-t0c@_iV>a4|M7Cp-l&
zB_ieu%e912vXzeS-L2r4%MT-lNN6nh8PK>payhTYdlq3b`C^|jM$T7#?#j;Aoh}(J
zTyntyyE0Zd#Evn3Gs4i;<GFX%_A;vb)F%9Q?_;|Q+cuBJ=uUT&SJA;N>9ZAu70E!X
z(v(Qj!zbaKmgAkr+ZYb|JUAyaa&O#UL$)6A^-cl!=`F7XW3bz<{Lv4|2#K5D1oT30
zcllgkTW0OOhEeO914Gb)X6Xz5KI`t-q#9x=3a{yY{GfW0c*SiUo|E84*TOZQPv((Y
zzg?;1bu%z+A*dYgsET-MJ!?6uJ&o<4y;j44adb$EjTHWp=H#61$yYDjRo7mA%B1w<
zr1@PuGm9zDcACF0B+a}P;^RlUMAejc6=~JK<nJP5r6%J5KIo>MoIU!QWS>=yEs<P}
zh0;B|`hh~&2N-F0$A~38w&}ZNtvwQM8Vhf3U%cB*!ILf?sK^+7c(8J{X_6vT<Q2Q8
zbWm6VPWLSr@o<<x_84|xwjFEyLWDf->O|J_4@No-50`g*^{;~Sg7Lj4@`Lg{8Fat6
zrp3!V8J`Ku+GYoi&6rrNsE>@p<u2_S>JQ{5Q3##~@E$tf9mkU0Ge{gsH=A9)nLB(d
z<yBGHeA3-hw!WZsGOO&$&`1m9($jD8eMBvDuHnNAOXsOq`s+T{!Ed=yA69DStw_cF
zizjL0vKg^oq}7;6Ut`5&GZjM!Hd_k#ZE!vqXqSbIE%-&My&*_R8===Rs=`f350CMe
z#2PlXvq97cm~TN7#?x*DQG&r^i-=xW(s&@$wL;%O;_b0!{`BLUl3P6&NZiLu7gt5;
z-WoMc5=cjX#G+s);u~jnAxvIz8E>ynIzsEz?X&foC1vC8trYxvLu|z7lt}Pf84dOI
zHHH+tuxThQ^}zYKNEOxL@2u5CW5uV`qbB%CLa2*c`Kr}2-{)qh{EhCQkCdBItO8HQ
zW4B$6aNVPod^vY>D(8EQKI?l$*~1$uaZg`?$F!W`jWc0KUs3ofoBj}^m=AZgM7@BA
zJ0fSe{WLD4oh;1H<|__9W^4GEdXrDlyH+=$RCu;|p=#J2BiU%qMPE#7uz5Ha`aLZG
z_Mx)w?ExaQ$lj-P^e<G*iD}|R?f35}#Bb&9URJcj6T##*z|Di%iyo8UI-?2|z^W*t
zrJ6jbA7|VvXW^BKvv<?DGDwarv^<0BVW!Of5U(xq5qkC<9EdWsJU=du2vA}Wd?0)c
z^Zv(+y%5;@A|(=PtVg?ppAn@C`y5>s(Tj=AdKX_&(<h0zF1w&?TK$`@cM1NKN2^L2
zZ!_h1ySf4~Jh6A{pdH0aR1wygowmlw@RvY^o9w5mO~cNAB3jCr9}zlLX21t^kJ)#T
zngQA!0=<~<=&kI5SME9Q9cVYrss7YScAUm$CJQ_Si_ROU<dQ!(NWArB1qiLDb8x$P
z_JITE#I8;!Y90Db8izkpLUkYi1boued2Zq1Cc1EnkPLb8qaR}#6T2sgu_*9<6$mOq
zXCqKrGJZwCYx?T7>vq#0Z8bt8IR_+3CeU}2=GIyt?JhKeO<QJ%=@fn?aftl{!5lb#
z4zZoXRwc>iz=WWNqZINAP+?a!#1N}8P%5c57AUS!twi~TMJt&`;=kMZv`88v^rwn5
zaZ!do*$8WQiMEc;5!vqae_VZKR2)sTErUyNcXtR08r<F8-QAtQkl^kv!5xAJ9|D2k
z4#5fT?)p04y7#TO-XE&_)T!>O9@fm%p1t>>pqfy19BX7cMLSr^hkbFZEB5{j=piAE
zItVaALrYIXAv`{Kj0-EeQtN4*fHghbkvPN<dp$s@=Rt)1pv$<oiCK+d#U<*uZ!ZKT
zLJK+|nHHq4lL(DwR)XY%*4U|6py?uV#T0epI(9B&uP~2)IH;kDUz&BhveUGesZQo*
z2eamWiE`|gb-EL&co(oZaDlb6eBf9_q=PSK_ueQqlV0wF@?0jc9sa0W$z_ah3ALLi
z_gi60vi34ERm-VWR^4hyS^ZK|xIPI%+4(dMAX9$kFJ*E(X@@ZU8gH_ap~r3M98q*T
z;coL{U7WU;y|#BHo@o<QHg5ACu&oP$?aQB}&lyx|aoRwQ>uc>A;!Ls+$+K4XX;M#q
zW$e!R*cWm-28WZXe0QxKd$TLFA}PDS^4)aoZk`Qm6^}dKcXb4<u-bF<2+b42l2vm}
zkM@rFqY6m+++<j?^v-_5H10Lj;V?KO1SeaPaA2`F1?7{Re3<6$pMfNN0CZmF9*}+;
z#g*@P1IX?=dS$P?o&(G$PhCmx*kZV^bWD5W?%LGN^a+O0m=D&<#yOs+)A4S4-2Y(8
zlZgBBS*y<DWRQmJPxryUf<@BFFkDjg<ck#ivQ4yTs0BO*%Ua@T_pdW9Qk7%^LUAMM
z4;YxFn|(@1apVIMY4|C84YrUW3$FDmvMZXMmcz2K{^a;-8od`Yq-CA1^Ud;inlQ;I
zpY*+qn~h?r95I(XwF_zofA82K2#8#gX(2BNmKMvV+{Rzl^GbI9N^Q9m4TgHl^H_)z
z|2c86Zs5-%i<S5H4*8yF<mcha<e!F-qe`92bOV^6iqrQife+HDsvdbUU0rCalrcUG
z(|!CAGWsb(7RugR$OSK&K{2D4O~vOwM<YonuceOWWfN-@&ISeA%aiRtc#mCKFC;ol
z4dbaM^^Rl{i(^{3ea*9VV>lwV*J;0yYO#>l7IVwyIkn=kbmF-}N4<Q9+@pFT_~J>e
zmj(S}Za{|($Bzy1<oicVka8vUd$uwJ#<HJZm6YIyZRv+Az9%Oq3lif2*5VKT)4ZSE
z?r4;KC7dRl`=c?z>t$HmJTcfSNteSgr}ZD@p@VX5+P-Qgc1j_lTbB-h+CI$b`?OKR
z-~=leTO8nmVeWioJ7$6K@{x>KCYfAG{n#;3v?p*suEMSI<&t>M(rKr&l=F;ctCXM|
zKGy`JWX68OoVq^9y{jRTOUDyB(^`i6F6MvGl~&^aL08E3->kN78|E&NlZLMQQ;fg=
zgmNHd!G#yIN28-M@h5fl<z0m!Z^6@-LGN%zxG}wRbF-^v1y+;9_pa?lQ^R_L{sArk
zqwh6Eo6P0hBn@^g#-{B=BQeQCCw}--7Pkg(xGSUvr&aLZ8ou@UWyjB&+FpJ|J8}#R
zM$_k}(o||Te(z>vRdtm$-I*MdZT2Ty0|{Q0uM3{<UF7P}%`n~kw;J(XvX;2JjD{UY
zQ6d`e)I`>$LL5i8TC^wYt=sAL&MzB$t}3yAI3kERHhjNYm`m;3(E(L|fe%>kLkmnh
z!+2wnci}bZ#UHb5!!UOQ%rUe{aSkS^(C!17)K3F7ODViXw%2SxkSjUPZAX$3hb#*I
z4}QW7SNHd4kkS6u#u<G(Yy7qHBr=_Bt-6;V6@Gl4!iS@F3(c;4JsZRb2Ki+Es`SUR
z)%)MpZFYqYGS?Y5Pc_ace?Lwf#)fldw-WB`r&H}ANUXq=wl}9Wa7=fuirnxFc{dgE
z4l$N-KA=V@`#uqPd)-86@P?9;h;@CAt_sMqTVBw(-#Lt*SmJWe)ziL<^R%&nb@>{L
zk&3_qY$`*fS8g3Yci4U<jCf2~1QVmh4gRJw44t(78j0xRNQzkiys2Qi%uyyqs0?CI
zL66q~pZ1j4pw=Y~EX*Z)bt-73N@}X6MJox|QD?eH#N6K!kjU)J@W}FYKvAtUA~l;l
z3h%IHfCpXBn~jb6!B|>ipMefKud{84TowN#v5S>q1LEqS1Z2>mA!5k`#SA9U7A2EK
z%$fu9{F#qRY=Ir~yq#6yHNwwN-VCNCP?j!wvc;H+YGch)B7`pk(Z>Ur;`&Fx`v*v#
z_<(ty3bfgdzi_$2j92BbF!|CW!T58Sn0_gd;4%G$x%N*@tMkBI7cepT^8TkQCK7x$
zi;219OiTqGw<Lvy*`5&z?)kT@2w;%-(J3EV4Npo07y+Hj6IIpH3MO!-0h23n5nQIv
zUHIM%D2kL8TW-uweC`dj2$`t&-oUcmN8t_B?#|isBT=|7lr6APz;%HjRZS5B$dV06
z%sG*_x_c+14?43id5A<y*=y7^c=T^*HU{Rocec!bD{;{UR`!nYkKMq>?{MtjI}%r`
zPj?CaKokDK&%7@*H$ky5@uq^&Umg0d`|D7PCIWMZE;SWrbYx@7P&Fo|-p_v8xMr4w
z=4TS!s>8h$Odysu++Q(VJr{x4H7FrsJB4g9)h!=Z`DkcaZYL44n;cs??(Luv>@bV}
zTScR1<4-yCV!3#xPq}#!vPDs?=_XfPEK@@4BLeo@-~al!h6*(nJpLQOs?hoCqaYl+
z;8AixdF@$79&~1&d4^AnxgWBH-|h$3xc?5Mk_yV>JQS3J6_k0fJ4k2LDQ2#`>7eCK
zY^9m9zjm7@ujOqUP5QVm#O7N~E`q{%@==wu_LqL(eR4L(MAB^8F-e0zC18mlmFo?a
zFtMqNDA&}LnQdpGqWV69pNZJXR?+GOQ8mVCm~<jWOT5EEh$H)nL{{TrBq0G6#Y6*L
z*OEz5Tlxq$B}HH2LuJ<JHblL-d&9;@Wi>ljX56zM)cNs@^_An5|AYG_9P5mJm^3xD
zK3(SzLj-<kzP+?}VVv4)q3u2seg+ICs`z{AhAS@LBP2FHsJf%6@3K>sR-0X6SN%aX
z#*ru!8dKKK-z}?AzQR75k&vBD`>0oD&%E~BAB7N&gNgaa6NT=y@>pF$f}*EH=HozP
zD~<%L$!D?6wc%rl{-V^#$bo<quE+?)oOWDnWlhq|hzLmR7oVaAy5_;6>i`*8BTr&o
z&?Y3pG2@fi!D~c>NIC^HIep|H<5vu<;IpLu4h>@(8g6EM{{PlyyVGjo)TbQ5-TC-f
zipqArbPnB$YM;(SRqD`(GTrhQ&WPA3p#_yqW;qPM*s%`<Yxz7k>HeGJACzhCV>nyl
z+b>P1{-R4^T@;ReK%yy-_#H_6|GOQ959fHY5cM7uJG=^l(RK5q;W{;+TN#s=<(eN#
z6_8j1Ne}PRCfC>$Y|cQeiuUL>wo85@GpvFv(otSylhaL?;Iz_MgeFc_fo~uo2AlRV
zgr;J=Aodw3Yvd(`5&~#FqGpWAX@*d6niMT;6DKm|w-QwZ5Nj+uV!l4ICWclPP80<Y
zf&oHUh&`8SVsM{09$pFq*Q1!BI8QQ-F+9a%J>iI~m0I&2B2TB6u6S2%m%JquY$x`L
zoA=y*=dlfXOi<2rkwgp7*GT5g#EPh?$3)1+UVN05*a(;+0elht&~y)W2-bNm0@BUZ
z_YxEh;|R0NM^&0EBE}o`yJWK};7$6Vq0pD0V!xrdRH2qDM0a2k$aa!!m_;!`-!3Mo
z!93@qO4>Qvz31GZZ4PPvJ&v2a)Z1(Ui30PeX`D)#qedT8n|{pYVkxzy2eDS92H104
zBuwizn`Loh0gosFctoFJIYo5SKcc&DtGHrkIPoe<nQ8495JnCq=MTvU{`y-@8j07g
zdbF=NB4dZI>x2&uSJA*dXK=y=pQ&jOCfNIPRkS!m8VL{V{2%nxo2z6s{TX?pN=jSO
zXXbA0+Lw$J&9R~N+S`p3E04@8u+j&!4viHnU(vsB!<0&DB<uCh%~B0(XG^Kw5Jh_O
zjmG89x1VJcy0t`R70y}bGQ0j6P=L+r{OC4PB<EY_jZ=r$n{7ljT#G_PN{WG}mG`@s
zdPh;`I@zaY(v~dXZ~aOuS~~i@YnJ;cDA3tZLK7;Uq(2GrR7X$70PP+1N_gJ$BM9CH
zNzon;)WMBY!#^;XWIGC4lUK!s3<Bj8PyiaR?=%B0gp08f)rH6EWOtu*7SUOXl1*@+
zQw@(&)js;0OS?9~4(8U3EQdy5K|5F!XQK^A6E=qd=c^W;>R&5bk5eHN`-k9zGtDf`
zY;@Y-1&d^a-=8~%(>4B`p)aZ7papNg>Y#mRFp%9)FJZ2D8A&Mjx5dN^4xP<re$Oe`
zioBtuk22Mn)faskanYRQQ**c#DzQ2g9nqeSkLAh3Ms*lyBm?_ePji?Dw1JXX1zy_J
z&Dk&l8HG&XGL#a8077}_*Em|x+c*n^o&l&Q;fps~ZlC&TOC-L5@Z577*+$7`BnZh7
z=^4*n9>TSN8;|yQDN?`|e8H0-I9WOQP%I|s*;u8*12HRg58PDPli}^)oW9UWN}0q^
z6XS)r;&8$H9SFs>PuzO>mr|U^9YZV2mDTPhw_j=ua=UpU1Yd<7elkWqljuj7W{iKZ
zO&xr85*)yOVEZT}GJaaDfqR9m`Rmc`J$x`LtSd^D`fk}A;}y2&aC1^dvHDt~#D2;i
zmO=6UZ2lx|lC-MZkNFV$H!J%wUc2irtNeH6t@t>SS_(lh&LTp9^3lJVVK=exhx+fe
ziqaWsDro%3Ox6wJ;zyB<_%Dbt2gfe%3hx$-jpx68`Vb<>1!<HNMkgq8S7nwmnL*9?
zVY>ywh+~2#qoF~!Tan!^XWtkCDhIly!FI+MF75tuLH)}C?c6Iwy+JF0!QqJfJQjom
z_rkVAJs&IVG(_ZQ!~?zV#_3Vzf)&iO8%MukTKyZ}gW9EF_LM_2h-cU$G|YP!d8n=H
z6o!8$%N?tXYq7LRH+y>bPl~ODdY&l?+z;G`en;^7ibf~O3BU9&ag%}!E0B>G(r((H
zhdJJgU2T{}55c>fJpV|eldnjt51HHF0QCJIjw0>j;QcZ7q?;}YX4mp7uOKxxE?h8r
zh#>r{z*x^V)RkKvcbyihl%^3Y#ybmJ8r?sJ8^PQ8d*4Nzc?Ud13qKl0mkPPr>o&H5
zN3DW=;q1BaY4pafbnwo#)wqWegvJ_xuPmVsjc(&R_nSP6gRiBR{Y6sO9XMXT&HLe2
z@3dw3I}2g37}MbCjK8;uhpxh|WjdaY52wJ}A)jCU<U;5M8(gt(pjxm;gLyx;fCQ4^
z*@waWNHfr#!r5srV<J+7-)Y`OukLEhThT^LNAFp@ZRnMP$Oayb>Qqr^PrjU9axkX&
z>ojS=<m^1i35Nr6HJxA3yRx)t&FnXi$i0TNs1Dn{+wA!tqI$*gENh+tetnhL4Je<j
ztp8d7eB8J#D~$(IE(Bgu^h`J(#zrV|9QO@$rd6Uzy*U<xYqL=kIYK}q{0NmJqPl}r
z8IJQk=}}tPd?>%-y*h<0{jZUK%39116D$zdQKGU(4G@aU`$njBQ@jmCwR%bZE~EL+
z#b8V8g%Pme=%K2fpb1FmXSH;S8hU<++WKGfmr^1ZB%<L1E0>aEMi2gv7IB1!*+T<C
z$#wlZU2k#J`SEWpR&?Bo&XtZ)QY)ylf`md_@N<GlBUwL4bkIMCMB1$44d@En-@of<
zvG`$|V7lV4_3a%GT9kt%I%1w7HTy~oUWlvL&7cbhGQq&2CuyJcA4wA64=(X7v1~y-
zn(z@0JDHkueUOz|>1`Iqm9t+DHpfi%qjST`UDY0xcBGfNqVpmzUr}Iv);`Lb-H(~>
z+byrdRCn8J(rV0?<rLdLGu|(l_wUv*)5z~J8=g<V%7a1F>vm9;r5OyDyHMOp-;;-4
za=n(<ZM`4)>n5WxCt&mB>At@h@PBEcaD{bb)NQ>j8Lp4FXtpNzB*%~;!bicnmil#h
zFwl%Q^COL<R_?Msh#^!koNtUm<D@Bfr=oW$H1oT0WE5N{^+P-@1R8Zg;gk-+t<!}m
zKXO?`nCz#|Fbmd@uJyR#j5R*hcJ-U;F!KaeN>fL;yPw0X|EgQRySdRpX@|LJiqZbA
z;+IcVOZ~_#6(p&%?tUr%)XGRA90<jHT0UvG$h(HB=wR)?1w0UPbqzR`dFYLxX%hoD
zKv-)JdWNYb1P7Ire+<&RDo|baq0|g2+8hfMFUw^X@Yw(rhcJPSv4FznGq{kX^3Swe
zM_TUzPsL{@#_VBj?68g2!lm>X7@$~6ZPC>COx;*r*;b;)BquH_+Eu$zxoNvmt+r=`
zj&3$=i4F4liF@iTjyO;bb@Ee(8<C*pV#-eM+*7~Kv7(h_1h1@>BN;Lx!g=4@7C}=f
zzQjp@=-fB}83`>C%Hndi(Ptqj_@y>0NLBFAv!b14JFIfq8|BSPbXp5r_=WxEJJ_{I
z_dK-b1%_vEPAKF>%q-LYV*(=rOyI8o6F44V0t;viEhu}h3VpI=n`w1EdHY0X8C!ik
zd9+8={3FG);fMGV-^23B%={34i}KBVq1oZye9G#?xQo4-&x=T#yy(IL;m;{GF7p`E
zHeCTVgvAO0InKEseY+9oX{p%;Cyj(Z8p++9H^aNS7uRIxuSK|9QUs9Kouu2AK}VgA
z!o9D|Y`tmiA&0vsra{&TvhPP#=oVKMGD<8CwJ;u98`?8<?4|iP6JNZnEqbOJb^Ui}
z|EQ&_tbRcq-F6<4g`QVDUACr9uGG&CTWCU})rDFy%P!u_c#%4e*!|7p=wfnHUjhH|
zBo4n-(nR9=Nj9mJ0-%NTx4O7s4>mIUJr8%XDLt6e<Kx|@*E41*zYhSVI<fQ|&<q7#
zSbXJxRM0kxUH0K7Ik?I%Tgoq&(Doe#QZJg)#+Ev{(Yk9*|Eaagdc_qa$$r+ilFy^G
zoMPD;al$zus#rOYG5o{${9Z7W{354IKHBzpFW#*O)=ESv0igQxcN<9^`tQ$_Z`-2S
z<{S7pwq9awOUJMx#9zIK?VyH`=-~viaRow~``Gf6jjxjI2oiOS^vbXM!<QJz)=IA(
zu&_uED|8M8jI{Dz@icGnXY)Sbh2OU89@z9WB%$_vP95Urk<_Mp)Ynfe+4asY@7w$l
zagakdxM{+<&Ds`%6dcG&sSj-sUby5P@t3yqi>>J0_I+@EuY59;^Cp)x&*Co$9a0Z$
z^j@gfv;lo3qm?fZL(YJ!RZ-)s7TQloYR75M-+WGYpKzB8R9i`V7Q)6?ck_N4s46pW
zv4-?r#~Co~)F@wSt@;ord7c`ac%JsM9*p+!a;17>lr*C49czrE9vc<KM01-rGB8Jo
z4d}Z#iVWC0teyK_-5h=DTfZ=iT+eLKaL~2cd1LA%gmNMGtxOnCKu>MGGiZ27IToB5
zzpe4{=aajFTQjfaKnt=N-<M2%<%<eG8Aix8@cE2E-#~Ow23?BsrV#t{<s0Ehty}{s
zIKQl1Ajv-=$-PIA9^1h*75N7fs)X_}dMDAZ+!bSdzL=Rs&Z&SEo_>cas{$$Wi*|$3
z$Ee1z5&f5dnoQIiG{xI1B)fufx(K&0A5Xe&Z>jXLGMg*LQvE1!b#gk@{`AIUpurbg
zfy57EIJF@HWPf$jq&3K#*y_DZt?ZELZO&RkIs_xHCXp;9EBZOZIj-wyvm@EGj55Ex
zU)VE=-|C6$d%H3c;|^T>p>_Kt|2Dg__jfI=JKRe3bwa02Vn}EUJrU*cK(KB?3G+6F
zBTb*fL(5IF$YAq?_4nk%Z_+tFwy6i1HHJzKeCF4rJ8f>JSXSA^JZX)VMWT~rK(IMz
zd#6IyMwaXdhxD3DiU!f%2~-n~huI3DbN%uoUYbYVC!n^&t)()$m)i3d&K_VCQ{sK#
zKk`$|OI$=%t#dTygRzJrv3`=>4NgX4Q)*6TFfIC}xU!b}x0Y@^IGK4&qX9LCSyxDi
ztH?sSS?;zoDajCP`*U1H<k_=RAhdTCl{E*wQl@EsFsZ;8-`QZ2Q!C&}puOv*`TZM?
zB8SIRj#^Vh{+=uE`5!BX>F+j**BMXWt+@vYKM|XGCGxJ9ttp-$AWmmFPe%nJcP^!#
z(k{iQO^JEdLvpG<3^-wv7tucWxrd^e>cs0J@%KG=1QiimrsV|o0?1wCsjT<@v?Mx;
ztdN|nmq6w4!g;}x!B4afrH?WG8n~U#85Zl5N@aq{i_>`)!6l-7M8frH9-alX^J3!_
zOaVG~7QQ;(OEdLd`hQ{cwB(Y;rqs(`Zp>ua(zc9xpZ=Wqk*IfNvzO`cW;0qh!;`Yk
zc=;PlBJ7iq%wd1p?n-jN!^%#uc$m`JWKH6P7aDcXHIn5<i8Q5IM2igUY+oF4zxpq*
zD%<eo%Ezf}y4`3et}CgU%V2hpxy@+&OlpTe<cQWpmu%$(moAyt-I8w6AbpmccL;73
zs27~X0!79aPj@Ttdorxhpi9G<z9xpmUUqR%VPtxGoND2oJ9-sB?A}g!1LLF%-WwJt
zd!fJj{a@-e+Nv=oyY_{wpOI<W^*=uPby@ud6HVaz?zPSB2UGJQVj}r4-z7mzk2TD?
zKb$AuxkF)f_o`_qQ4I53(nhVX^v<Pf+Ph!i(K`2`R*nTFc0k6_Z}Z)bA(NVC*qAQ!
zPe~DzOyn4tE-&abm<8UMi1!=eK<Jbl6Z0Gr4}?%M5r5bn+xF+LMT=)!oWoy%5dgf6
zXhZ^1bQFR38NlCWHhVUs)gqRPBL9Gmo!K2EQZrF~+>%*f#okP*Hln$8C2nl#xHpK#
z*mXm~*fBq70~jFz9W>cLtdNKfdc2mJD&%Gr1WcithKe&e5*+joo0CVu1l>6&N`!O+
zw`x3$Kr{r}BfU{|=~*l*m~QQK7O|>3N~(>e&%h*==%BTLlvN<54FC?MZfU7D>Oa$B
z7RWyV>!5!bt)V`Iv4W|cHwN&<+7|%&Gyu@IBLH7C2U<~>2*CLqRQfGqDQpo;%}T8L
z#6f&c0ib*YRxo6CixH1_jUf7eV4wx}MhO4{+5;fqKGXw%{#BqzRofD#1c1&XyzPUi
z&oDr?1IQKw?}Ln0*u3BA2EWtoL5FS5Hy=hGNRiZlHF{N1!(6(f7F}KVXblHg|Im1T
zF`q=XnB<OllbS^(N!FrB)=HX9YS83j5);pc^(<%C0FHQN$9T0WMYQZ%ipRCQDy1a%
z#bqT$h$^57E1Wq|4tYp8G$}Yde-x9Q5>!GHRz}m_m<?*+{?@3;!=0TYHP@st_Y5vJ
z+Q_Ja&a7f<MLbL={i;dv^~O>5rNz7f*`ncn`s_&RRFv=>e)w9-EDve4CPg&Y_xNvU
z9u8W;4)gDm+M~^zku92?5@+>EIy5Odn!SugC86fafSK$Deu;uOdTN9iCC+M-^l4J`
zHG2i=LJfN0{`N3ru2|q3s1g}CGL@Cw2<2lE8==7kRm`32-F9wup!>8M)rWo64_U|7
zLwe8Gq>qD??^8L;sY2f2Q}ZTE=$lp<Z@TO9DUfmf!{|)}hzd)~*O{>5j4gX?{?xyX
z9;x@xVr`oqH2S%0^WbAZUXh8bmFi#xqR-4z4#7FL0!)Y}k}af2h$buWRuqSVMTP;%
zpmbcdzWPy~67`;_wD-rxXDR)0_8TpVZ=VfqpY{m^OR8X&h~(&{_sD-`7$#C}7{h-!
zaUK@DNc%ECj@{pJv9`c;vEJS%;w0xof7gA6n32N~NUV2(;_2Ac+QtAeSQsw1XLC=f
zvER`}O5GPZ^i4<CAX8{MSeb2Z0D>N#H957lsWWrUmkX)rnA29-?OIBe_KkoZ7EpWF
zDU%LgJ`RfkTPoCYe(g1p%$0;vPhF7?rNzkvpm^EM<S=;Q#&pSZ_%U=Z@z-}_<I)@T
zG`4S`pN|syf~mAfHehmOq7SW8ZtdK5$_RRl<R{|Hgzxo+>MK(vzAlzkNnuL*jZrBQ
zM}&~t^Yrj5@<&A2>WN7x%-~U(WzAz?&NPKbWRyxu^m95=QI*=_Vt!QY_?IFDq;UUB
z!30v`ft1i69PeMWrti)s<w~P~Utn*SRXW-lV|^J57CV2d&UdCjC7(zQEyb$wb*Rc&
z^T-_>OEKoIGSn3CeWg6{G5^1Tl1AbZ53iz>ai^5&#s4QeEYto7-TCuFy8Aww-cP$i
zHki@5?kKxACh3AD`h|<ink`Mp_OQNUWhcQ`Bpbg^bj1f#8Q?UHL1POd6F1K)Xu5?W
zrj7bSG7!1+O*yiUfTSnXxXJuGuCSGqAs8VRyR=higd|zqbG1rcO$fQF#$f!YjSZI}
z7guru3{)ZRRJoV1Pka^Bxun1Wa8<1m<Wy<TK5S%LB;_MjRX4*?EmfICJ%<rlPszv8
z^k3BbjWK7aK7vHQ#z3zbg;C(vWQ#kK4SC54w0mP`F^}t1=edpV-Wl+n3;ZdJ8=rCJ
z(C+KJf8*<~tQK-gW{|8c25;uFx(CQGgo%owK#|MnQIy3R%fRG~cDX`?Rc3AW<6&gA
zanRM6fE_szt-@O+f&b^*DjDsVZn=sShfmSpJmnak3UB!Ez3Fvl&JwvC5ju5-$F+7j
zQ*vvMZB;}d7DX8_0_qHn9H|BG)Mg%8i$QE=MAyrXVtb&8qKZb6jop|2&y?quQwhO$
z1z|b-%FQPUxB0M|_s(jeZ9)2jso}$DSW%#R6*XI4$PkP~BBqI8*4MCS81&!IqKso3
zyt=u-hP5`>)%MShp(__GS7Wyd2ZaB77Knuf+mMwZ)u}+EJyz}Di`qpKq|0n$--sh)
z0gfT{7YEYt&lzax?+s7_;$8&J_L#Z&xUJ`7J{VqsJkSV<Ui*A}sdW2poV{j5-HJ}d
zhTtIV*lXwE?AWMq5y>Xu4Rec$(+rK1HfBTr)9JuE2M0D9pQfo=b@h`DkLJ4=m+P^L
z0rCn{>6TyBN3R6hZp&i)ONLF<8&fNBQq0Q+3vp{W4G=;*X-NqFni-J`%8lFzxGH*_
z`P^^C7w#EN9$Lu~Z=>TUC6tsf#rZB&ha?Z^K3rl1WF)J40`A$<-T$@PqkK+0jzP5b
zjth=7MPdRAb^`TWlQQ!|hJP7Q>@gmohGeJ-n+4oep#Ku2NWip%^TDX1IhnpEeY9&w
z`^<kmuUA~?W=~i%SG$^1j<r;)j&{xj7zN#8BcuChs`>B&^$^{sKiBS4PQm`*Xz~)^
z<>iIA!<`uH+{1DTHehsT5d=yz=x*5RcFzzf?YSNu*i}=ez^>){`SC(XLxEpfLqC^C
zspU{QCK5>^0z4CiPtp*cdUx3S?wrZ5?jG4H{Sfqjr{qygFh-2CT<5XJ#H-~2MKW*w
z_m-ty)qcsM@L=jtHS&s_N)fE@4A$g-HFH_0|7y|_Cwm=<XYL$LAxvC{Yl;~f3lk*m
z3T$p4Owt8mz<X`!6g&lYEIN4*yQ_d!jD3tD-k3E&nWI8zpQ7&=km^}xurRjVi?y5~
zf+S2pIPJRZ<a%`mvtQ|?H}r^~6i>qJ;c|8aB9G?)-@Pgk%5Tv7((++5E?8W;+lIr>
z@J$|B?MX`N+FF`+yoc)jKOjs$zG-+;9Nfs<P-u%Znj7%eIKrf9wKSv;*)>7mH+<`I
z7;vZpzZH}tZ%B_qJ5aLffml#1^|h!wL>15Rc%XzQn)XuZNi3jzSe0K5?G4uCl184K
z(_jVCINjh}qEuEO_>G(0IyZJOLu0w)m1LjLlq=)@h6*?!+<$1i-pJFKs*VSWcHkUh
z`_KTi!%A^t86_>bdGb{b<|p-lB^ukz-X+)VfeYh@sp#0$KosTQwyLL2I>Y^zNP0&h
zk$)n`{#xN0UDsoA<bMnZ%k3m^$_bY-&R&fE%W<sn>zvTb$n5?dKhnn)jhqkTai`p`
zA7oSV{IH)HG5V_&&tw8JXbwnCZ)UvLO03BP{VdA%XQ+F$*}|^GiyobxTa^^nA%{~v
zNb9tbYy>Mup^LCaC#?H>AHmr@l0q-fr}eHTM>{drheBUS3eUp`lfuylKJ_77t^S4C
zFqd77<JIzQnW88rwIYDYSXm~A$!KZKFQ)IT{oJk`w4ZqNfp)|88ciPDxKFBdN+)fd
zH;D?TDGal^@YdyrPe)?MjV3j82os3Zv)eW*%ox2lL9}yC5p#$3949WzlS<K?Paxd`
z+e|_F(vgaLp%|8_^&DUr@mas;0`Pf~Dk7l`;|9ln!_R{0OfBRCttXt|fF9z4IXJDS
zkUmB1vG|o9zsB7dc0Kqt?Nx;k!#|Vx+UJ6+hGoI5s*WN2C1Wy<V+tfbBAk~9F;BCL
zW(orz*a?jb2bLdb=h$K!z}DB~f7_tg{w~4(z?~~?shR!lKg+R9-<u265h_@y8n;tv
zU)K1XT4@P3kp6P>Q~$S&#tEZ_C4X7@5?So0{XoZSArE525Kw*sHpm7)92pfp;M0>L
zI2i!>17~;}@cnI(LkZ?nO6v9WnE1@@vfFIkHwN_D<)bLoi0};0!)lJcTkl0GE&AH!
z)X>hfyK>iS(%c1J`UMCUFaEs|*dQ!?%r9`zR!Q@0Xkw?aMJ&=fELM#{e;VPOiPhPw
zd9sg-HqiHe>%$NtPda$<PspFvnQ9HzrT_pXJsRP$r$j(nE(=J@nTM49%zXr9^T~C?
zg?O-xn=ynWlOA+fcS9}sldj{a920kUB>Ib6*>m;B$h_Jav6L56^2pL!7)cWZ9<ItY
zA_+aYEPJq@JXZw@$^ltVbf$N;&0h6iQ7i(g?1>_)1i@%+<$Oz$D|m8lUE86#an}Ca
zRjHxawweW=W&WY>1ny%RzX|x;k4YwyhMsG*lUT(z36qY$oIMFmh}aFWT&z>@a(J($
zbQ#5dp(Bww*Qpe(4x!9qeqt*_Hp@6}u9iLRU_tq<r1X{P$8^$G5y!>5yh0lO{KtNB
z6ze<LZA>F`vs8i1fov2Nd!FQCe=%H|i4BmW%vx@Mv3ZIsAbI!v2NoS24sOL-gr|B4
z|1tds6+M_B_zCDI7#%bX)inl8Q?R!y_XG!KJ$Z)C%^v=MH`e~6R^x<Z<Gtt!efWgz
zdhruWPWgSDmxBgh&B;E+wJ>@?pdI14O%xMIsjz(WnxN%e;qm!&P-B7ex5&hylmKAm
zQ8m5meRQ+Ztl(Eg^a1SZV4O(gmzBS_Mzz5=J0sxhiUMt1{JMEBs=cI{+og_r4Cfck
z@j-z_8>jPl^v*x~sdJTv&$~8`@9tYU-xY=29;w7Z^;d@6Mt|tsQIC&xjLp20<G-kV
zIf|6f@Ui?N={b$rd9<2%q?XBeY@IR?f|emdRY{5s7H1*1JS4;VWC<5ioz9}xB(IY>
z^+z5|UPyA5VBPz_L`9gcRK{if$QhIjDpj^F22>Vzbc<+^7e=O@o-7;r`xX$^N@%fr
zN4daHbIdy}OSB&IZzv~0%TO?{=+UzHW0jgR)f6er`5(Gz@r|Ab6@oZlqk<I{2$cgw
z<LK#PN=_ICr>D`iA4;b02sN-jXa7y9%q5*2nyZ!GvdG)OoTXPlvrMUrUa-F(x)9-$
zPj`5bV_07nIFAwVvJ?20gL}~3dj=D>%QlM<`*l*`ISp2OEyHahA;{|Z;;k;W?sXS3
z{27k?%C{q4ab5If=r#Z4C)O)VYP9^#fnXK@%~<_{OJH{O)N;FtGhnXZaHA(eq%7Mx
zIdyHVp>a^<)xIRMtaF|@hzMC1P?hC7tS-<rz$tsCI<xkhve1)s3s-Zq8qqsxr%coB
zZ(wi<Vlte=`$LnC3up5eZo1q&eX1$KAC`@#|54D|H7m_wI7XYf^#$7)F;<)TsUZ_Y
zKK7me>8nha0&7%LG#EIbWr|WThUJZTpMLIpwC(Xa)nC;}Ex$KT+MrB*r&r07QIdY*
z_1XNXXid)}*Q6yf88Z)Y*eyuCk8WE&t-AQ)>~R*?$RRUGPEas$B|0`a+Kj_{aHtD{
z!egXT5-pSjhTY@NV|5(o>&~PVw02$t@El&v@B7q9?KY@DZ~m_@OJ&EEn(9p(!kk!u
zf@(D`gAuEPG?z4(+0kAve?z!>^Wj<^dpDX(pI?2<ez1F^ekGvE;{N^risO?~FY5bo
zW7jP*_D=r;Qi^2V-q8fgCY=h5iT)RmPPW)PGmq>^DCT%1{!?ls8^+d7`&AslN8D%1
z>Gl0m?Aod8s+V_LdWQE^LdGw8IZ-olq4S}Us|F+4`H>Y?^poIOJQ_nN5+>!<3uNrh
z?bJ+*Mwxv|t=ojf)YLBRjHmw;_ju>BI0=8^<1@}LpRLV@RAXtg%@2eJhEL8qo13hW
zp`DX=kEW$Z!fwfikDZHqM{$(Y2V_T*uGt~*>qD8PTBQh0zT@;RE=Ck*0&esXKYNo?
z1)NMqlD^;wrPpPxZa8|Sw?1eg)F$!T6rrA5wEZ5-3z;fa{^{~!BODJ9%>UB6R(piM
zH$6<|^H>`5<Ruw*zH~{o{d8Q_h`8nP#dPPBU>a|H5^?M=iqAyE$7!5rPaN*e3)g$!
z?w!w@KtY-k8f52j;&wsyWfIiahm;bq&*gCulgCpMu$_hKSeU~e0MmQ*Js`^C0U(nK
zfTe|n4bmS3xI}#e0D7|y(4vH`sWy&*_RWN9Lmxmv;58xu=mxGoa)xd~#Aa1)wJ}0m
z*wPge4j?6{)d1@&xsryei3c0R4*)raKP4cGz@S%jY>+X4zj$mF0C&Dqk(Jm-FbD9G
zaUI~+LfD}Ef7r~SsRXRS+Xq>R@`=9^unvNqwMxGVVlxmw6#`QZR)8hZ2cR7?I%pvc
zpv9$weqTjRHM@t{ok>s|2$0B|n6W{3KuE)qYNH>R@B+Z^Isn=yGFb`8bRqyh(Et=O
zRbcEJ!1($L^vDAs)L&JgqgNUe^Sg%hXuxf)&R=IS?r%_^__dycrO)N=90rkbej|5!
zM11Ss{uBJA9;R7?R9=Nb{@keS8x@74Xs|=?{(Di<6P>Tnx_~AQ78hiTj%<P6k~UjI
z8m&SR?GjsTwDl(hdNG7IiEpqT8Lj~tT?6(8Bwdd$Q}3*T3&1mTMig^K3A0~{R#1vp
z%482YrMvKDy4aFtCF8!ZC4A{QQW5PMQN4guyC{ptot+`2HKw2q>L^}2Eq{QncxXn)
zo^2+TG^UVzODm?L(EJ>%@!}PZa_AM;z?RU!CTlmOdIzU==Ph$c8uybe;b)Mlnz4sQ
zV6aBuE~4nzC%GOGxgZ4D)n3&nIJGBwxx>h~O}2zhVM8@#Z;hZ}jW<eZ<U`81OSXhd
zVOce0x7ncJ**9a_o4Pm<Ljs7vBL#R0iXy=Zki4Y!GIQ8t)#ouzmkgg?-HC<QuoveI
zK^=9reJK--#7IaZt!t4Eb-b{I#9Bd$H^WK!DO_>;n^@py;*F6c1WTdTWNg^LN_7lO
z@GV-TUb3_V>^DF0&2G7^`KWRadl^`v4yp)i<}o6yV0mez!a#c6rLv}+^g-=sqIK-L
z3&9(rZ1!Kp={}&D_bO*x#ebV$<NU0EK)WgZRIQ8;jI=s=rB9n5BS7Ln+LVP+E_tuw
zY8Qo%HJM~I$X*KisTIn(Av?Rkproe7oYfh1fpch!Q^vr7lY8K5)1`%IgU*cbq1drJ
ztBqrANzEH=BuXny5jltOTnNqrFjjq3m#Y+pE8IaYl}k;koIR_MOP$uNP-|z>Y|yMs
zsr|oaa@r+w$tm90(?;z78)xLOS;0Cx77IOR8j8GF56(=sp3cN<C!2jitlRq0mrL%6
z`G`vJol5dvRt+;SNh2hm^S#)!kI+0WPh+1%s<1+H%<gEhg4)cF1B_kJdT*E~8KKsn
zF&Wg@TIUZ1E?IckmmbMTTVQRrdY1Eh<g0-)8&pa*MR!DB+a>YeFiwOc0vn9sNJcS#
z7o>KgKXy(hAapKbjxH<kmQy+l??i@mMh@@1^M$xz7NJIb?B16FZo=Zj!;H?pP1}6@
zSNbFR4+<Z+5|CJ4_ao0iWj<F<KXdK<U^H^B#*k#FQBI|pbU!B-AJrifsidE$Uo=6T
zK4w2BK)Ecfm;=C|=C}ykL(kZZLbHEq{6KUGh^_)rCV*n4-a&1ab$Igrju5<*JJ#@4
zELCRl(wX|4ESI%JIH|%z&I+hCuD0=kl6)oQ0vqfXOz9Qcgfh@+{ar`P4shi)*0Ihm
z?tgWGB0i0*vOM<`6U`e&!fbkyKUZmR-6`-BCrBM!xOiS|+sKWJm;*7go1?igwh}oF
zGGTJ00jAKFBt6P~lYlIA_rEiwpUI%L`mZ)%Yc&o2jcT;{h4Y{2`f-6bIR~6CyDq`0
zM0lu9C@un$n%{I6U2AE0$0wUXjt1}EL{xLZ?sBsp{-xihs+kWn_dLWOoTxmQT<CrO
z0Aw;0{0CZ_t*+k(r?4#FzXW#Z`)`W6fhW{8_$jI`WHZstI)xP9X@(8DpvOTU7nUnQ
z&OV^HAU8to0n;!EL%728Zmpc^Ki`!uH|?W9fJA=bRz)R*=d3BC5?0mC0hc<;W56*t
zgcL!omz8@#=E{@RK?cc%OU*Y(I&rza%YQP#Wn&8GG^Q$Ordm>lQy0r0Xg;aab@4sk
z54sK7*=iR|f}^V^qvQ%Csg)5)s5FSq>#L`sf)oIWtG-NwKf!qwRkL<1Hw!cx){;xY
z;SpRWv=a-E^?}R*YDL_m0?Z$3Q#PFyyl;vm=id1N3=yV*$$+uoANpKvv8p%Q&Q*MX
zRCaE2O`rvAZXUh3rN>&v9Vc*Lg%Y;1Gd?fL$61<zuT%<ZgOw?2@?bip?>QhUQ=%hK
zBy5}<=Qx+hZeZ(ZA<A<x%665u#eyhRKcQ;6k1M%@yIwq5J!5FC8c9;;Mw{0lbgVvB
z2)4|~9$*Sq3hh(Cq2iu$eh{yAr3@Gw_TV?IS0Pn^!y?P*(anj@5!FTk@3PP{Q~@y$
zmSFiW2m$aFGdU+6XxX3u)S23kWN*bW^Zh_ohacyd&Gu*2@8Z!acjHMy&@8@Em*mQ`
z&yZNgCXy7G1`jrdkvba;uy5FjQA3+&(b`2II#5PHI=)k_N!qSbpg=l8x#5h$Nru=r
zjQKL)pV<J@W!>JinlGf>;^?r_ci*hB1bR4S(1~sfLfR+}Dqp3_XVw{TiBo)>qLA_^
zv>{sacHk#94PRp}91=Qsfo$63Qt+P<Rv051ctWtgjANQU)+`-5clw0Zp~_=d^}%p1
z655G`nv$i6vr90pDxr&Wf$1$bnl-O2tQjF=A^S$)Pw}Qx6GE2|l@EG6aLxr50$pxd
zs$t+Xs~CVgNoeY#Ra}SXn*Cr*rYK+J@XV}5Q-*{K8^B%lt#Qu7Nxc;LN5>=!#CM*>
zw@9}V+=Gz?cW<ahs0jhNVjEM><Q@q7%)EXD%mh38O0n6ENv4CEahPai7;~YAM1u{)
zPIYduw&E6Ro$iBsHQEa+JtbuthpAfY+)|#~iYw>I6Z1_|ByrD=Lu#Ew8etCe@XDe6
zk|kJYJFC1h0{+A>+HuK=z;tSGp2=$>eBeAoFR@$K<d+eO(Xw=Tsy)1AeTm7=^m6|K
z(_1ska&|h?^XA5H>jz)yw1k{!d|O(G(I)+@P4?Cmo~46|{zy>bN8hbV;&iA@P{yiE
zP<A3sP_`aKP-g5!kj}|;p0Kevwf%S3G2GQF#^;A`ylIYR>-f;|*x#XJ{Q+eco9FZi
z8FD+Ls87j)2POLf^AXV)Mv5V6?!T72gH<vh6KaEA?>6`)vL*7CO#bGfa`y$BU%Qyh
zuKH7<t+eLU3olz+(jM4KochMq3r>7gns6t&5fE(d6E`!zPSD|`NG^`{p|Bq{&@?ZS
zp3M5@)84PKBEeOOa|!l+XB%@u;wrsQHP}p$_o4gcL80dIdiruu)2^ai4RUha(g%58
zhy2{Ip!sb?EBJjGa;GAP{Yc0Ria<in8p*~Y&K%smiEgJZY#K++Jcp&)mtR|z>F$+l
zn@%V9VGR&rTKh$~`&pgDGj*kAN3Nx5_i%UcNM_torkSG+noHQWpkrl&YtoF?@>0h3
zWw!u^k&5Aom?!9JsUT{#Uc3>?=xyJROsnB@K@?dECiR(7_%4HAIIds=RoJ57uf~+Y
z#S7^CznIRQ)ioz7Ej;t=N#Vs8dfh{+vVBa)rx~Jl2d6O(0&-n=eUm2@<Yi9I)q>M@
z$VOhNts}LU;K9gr_Z&M9*35Z_w5(OC3wAulRPqn$T<X;FhevbM3LO0!@-w%moqZ#&
zrjv}vbD=@no8~ElZby5JLGo870AFS+^_df0_cED`i|o)Xj${y*jGOG0{Jl&SsX#YY
zzH?K;k}lz;ocD0$V{eOX)nS6;jMkjxa%oMac<W6XU*~2HexTzq%k!7#33!CNcbayc
zj5B#|?CQo`%GT1!WEK1Ly7t1h4K^+zS90=bgZ_U5!yCN?189Z6q^29)k63V^a1F$@
zchKtw)cpfA#NIXAtp5>gM|wVz9X}nP2xR8I+48{zw_WVp$#Wf?C_EpA{9O1#cuifs
z%`45#A|qc%tGe!jElI}3T08o*nF8pDbapA=W4IV206&Q749<uYFAhcij&M!qDy<F9
zPu1<KqxRXiq|wp{T0FlB?yE;AN(1}LPDkbS`rIkwqo9q%+_~u4oJ2R$1#Sd?t2Q3s
zjM`iMENK#5A!{k|N`!ePVvEyVIcXwSpnX>uxg;ABo+NDu{mdlU471BvnbG=E|7*2s
zQPXH%m`$*_)SX(@o6ABj)F<x5kM;D_GudrHp#6yW<l3515@vI&p$kdG8G1DP_|ht~
z^OrK8w-XNlQfM8H0_enljFQ5f`h6+FWe3~3Ns=`oi$+$eW#7&=={?HYPd9i@wcs4r
zUu({A-fo0<^q@DEJLiMvdmBgpue909Lu)2TJU_s#S>HH?H|L8u&{DPBr6!0G*dUqW
zZFA#(``eEySmHW0zI&VR)UhW|+dhqDzRWtPiDWz5C^j3vR;AfXKGo^H;>@}^+pP!L
zPX^gz7(4vwYK~j8<8w~UZ2d5*pY+Y$x}?$_J*tw!Tk8j}{q)axi{;Sofdjv<3AvBB
z)t3mKP>kZslKVnK@anCMEu5-tq7{}c^LZOg$v({A%BDIL*dFc7brNGQDit{xb~r4w
zYUSKq>#;wZ#w-p0NnzX<j2a)ZZYHPTkF(&1qF2!{s$2F_PP$4$QD!49i^30V5=)<W
zOZYWb-%m<oyXTtCj^5uRlm)50u_skLw4o~#^&fJy(!xm3ZPwDldN!0DCvhb*jMGho
z-+AN0PB2;z(u)!Zop*{_dv>sn!@0_y@sVuKh5oQd%{}#@Az`N2DsfJ@tsyol^{0;-
z+No~&-Q7PL0n4@!h^E$Ng&r};r%*d-Ol%W1iR3G(*>XZLKj(v39ZhzqL>ixgp>ZVb
zEv@XH!lc43K#G{xbC<WGZnkyu9ZWM>FzBE0-(Cr{I-&34bq>9plI4yLaa(~4A5~Au
z0lsJ~`2TalL)$U>NMl4Nd-r=e4j@r140%MaUSaq}hb)7HG5kMu7Fw_m)^@^XA7Qo2
zIeiY(5v~k@gJ|xITld7wXjvtVQ56_p{zkHZr}gJ<B$9Xfqr=X}yIjp*@n>-x-l#1%
z^43D#VZZVvVP35RPmMm4whU^4-g#_B|KNH+YhAmsz3NT+3@r8^45W}6Jy~WHQtvw8
zR+ZJ7JxsR$mvk-h+K^&=M7PfieLZL*C8Wfnhn(5xbcxNoU?D2Ca)xnkd9_6&SE*v{
zc5P_+T1hE6v0bAXg}KdX`&ST8<t3~f0g})!`HJW5FKcCq@0T?VEpeXgy^M#NNlIqM
zqddsB7ovy)NMg|m-oER~oag;k$_Oo)EpyvV%Z<}6%2sy0IcN+3aEGxcts2zsXV&Vh
zQ>f0%Pmd;0fd6zQj7tZ01l*^XLO!SofZzJ_-uZ;nAf$yzS^{$G3hai>=%52tfNiog
zJr?G995%prFdxLmJg)=l^%Wq|13TqC8espfO9$PpCM{u8lN^b7f0O(#3m`t20mKJ?
zV9Q<xY}xnd0AW%#HbA66k^mgu;D93JPK7Cw`w`B-)z)NzJBcR)6bTJrh;`&2(4Re=
zB)FA5z`;i)GZH)qXsz0lBEcL0icsUrgbA|FWr{@XIwz$9uHv?e9WCy!L`StD1b_=@
z03W0RXuAPH*uV5KGpdcQf1ty-1Vpt=mP*X944`ZL!!TL_NZ=G`Q8Ezk1A*KAU6p_(
zS!InxBn2oQbxQweAs<5{z$HLR83*R~W@*3(Y(-oGG6rB9juR4)E8yxcfXqw#-{c}A
z!OH>4fLQF-|Jldveg+ui4d~9u%jC_he$~Z064#_ML*3GkXdImBltSy4q7H3naC@+*
z_tq=mPO#(tX1__W1WLPqRj2qm6MifM=dzj%JgWbMQ<=yXnN}RGE$06Y*e#@)2nX45
zNk%j-Sk!}AX6iB#ef*z!j+NF=b*jFY*D&QZGbJ>e&1hUGs0S;|%wq#aOYXqxz5=wH
z%YQGGC%Yo9h;2A>9BHMGSGkDSez?MOfq6KxMR*|ah=~7DTt)$5*LP%#@28X_TA*it
zV6>zH?21(b4b^qf;uF><#;BvWMQk04&0vNvh2LQ7zI{|pwuvF&iX2$XU34|HvYxbw
z89?F1gToULkx+$1t3y!w?PICJRU<^d3ZtL*>nHhO#7kf+DimI<&&{mg8TC{iI1c=}
ze|sSiZdliTsVS<eGVb#8yyhui`2D$Ws<DJrP#;aj3*PqdU0&%p1p<R++~;Ah>UAs5
z-vBKH#pfUsQ4aJT@zqN%MmC^vy)AO}@f1u^QDG;menStJa(FhW(Og_{3SdE1l$%v)
za`GTAL1`>XQUxYf&+p<Tb4hZ`Q8+4g%;9oXw5cuR*r2kI2z8d!H0YG9%K3r{wfBme
z@>zD6*!a9nYOJ;;sD0J+A>Vq!sYDJXmKf)T3I^;*?O1ly%$th`x+RwwZ&<^Ls%W{q
z5HdFzMJfjDWMe;z*|ESec*?RKBq7M87n8Z{C+SVo%F9X?LwOTYM<(2s@(4G#ic8KW
zMU|VI<xUg9Q5AD!_=NSz)zUKiGGT-2kT5A(EjGo%Qw`*`E*ljB=1plA_^P*YHpVEa
ziaRoV();dfXt%u2@M@*QFZ7Q-1geAULLw5@fPeooAme1{UJ*p*Q9vWc_bf&QErd@+
zH(S>^%HqJtv&JEmQB<igLn2(hS_88XdVzz6d|to3C<7f=@~yNa*ve3Rz-*>ot}*M(
z2%hNdXwT&lvQGCa1J*!7R8ht2MK+xFN&m4<mia^SD^!V43_7dN3?LhFh9(gcJ)pEB
zIjuL5T#;b&c%-wG^kI47ekwDlAX_gw=q<;G{gn1)+8ofs9^lR`_>10})FQF+$e&ar
zePtmF<`g7{n9lyrqC+^>Lu(gr?w}%*vNO{J4Wx~Fy%uB^)@LHmpMJ!)YK5ebeIX!{
zB94}*3K^-gWC$;?POCX0vGnTDH;}v23JZ&?u%Zc{({X%{;B)t&(4p@u6;of=)KLIZ
z2C8LYiRu?NH4brt>kyZi<#_x#Ycfz3pV&s}nNrYh<LSTaIVg3IKcmKh0>QRmd)*o6
z?!oH2l*=2Pe5Sh4!RhxX$tAbC8IEJarlvNK{0}GCJN@UEu%oeifQ5Nv8cb)BIrOVu
zKkyT|(FV!J8cxd6vK!|%)J1!CKltq@CnQK!1>ObS@5UXB;5rEV+l~eS(R0)J>br(K
z+Bupi%q!{?JNT{d<J+K`-2CyEW&`pl#@+Zw@dBHc7Qc29k9hftQ8$KE)otksP>YHR
zo?U6Y3diRZ>)z;t!=p{xB8L?2FYOl-nTY34)v-|aQb;8w0YhY{=cb}Cc|%(pnZvlp
zsi^0=1-^NjOTUjJNU^oZU&G8wgaxurVPCM7S<cLryko*jjS1sR`Q^oD##S8qRcls+
zwdA<mfr#cplY^$slu*`|+7yXnA9Dk*5mOfRhl#gsE8R40<XG;?3>_(}z};N?qkvdp
z1fEMm)U)JP_?GSUkb??@TDo^*-EnIn+kd_hPPlMdXZXEVV2keg#qYZW52|BNbQ5{h
z=0~C7-#Zso7)?TZmju3#PVCK{g=(~)GwBWB<g{^Ek3M!+vq=v6O96>zWQZm+_1Ah^
zdSdYuWWL2QalSBUCh|Ty#!0z2+{{XsBFpxptJu2BBue#A%rRHm<liiNd8V$#=(NAT
zoa(iNJtKd<L7!V%Fd(cA`zYGq7sn_Opw8Q&*^c;16Y!9+!TyCmx2EwIg-w}zPV3cI
ziXZRqm)l(0TypTC>x!cL?l+6<l(bS2dx?LhqYKx%5cZOz&B2A4Z_`uf+=Q5P${Avt
zZ|^+VfpM7F1B!wKCR`g4`$zDjko;Ts2nHoj=u{=Ah0r|-i@x)(q&F{%8P0Rpw+ra<
zz8Bk(+8{msv1Fx{{(snd%b+-dE^L&=-GfVTx8R!K?(XivgL@#j1PksC!QB@N!Gk+2
z?yv+8cISQHx^?S*_5GOIuG2lId!|o!Z}&XsIW2V(#u2FhBA*&t6BexDDFvt0o%K3e
zcF76Nf3v$9hu8T1MM#MKV|CcYesbLWN4jQxe)7}w%b!5O!XR?Eh0=LlAFH)icNVDe
z$c{?{SL0*9iO-Ib&LQ}+ft1{}h?9lhU|b_PHmy|s^L$O<A-$6DbdOQXp^*WT@yavI
zx-=1c7bAbNZhIZepmf%nY7{3VU62`)E#*ibkY)MMmtQXvf@Qh%&)lJG=Fg2*ar&vx
ze$~ANY%LzwQe}rMM_HcF4Mro(y?M19se*ezy<E8cNDtvVsIj=eZpW$U>K1u%d`00f
z!T<qWo}$SkEhImz?=|KVaxkIWTP+#G!Nh5j5TkA}t1up(53|0%{HMEiD^T_j1OYD|
zPii?}f1KaEmEmKD*5upcArr#GmJ(c!1e%$9h@?zx89t=JDw-Y?tSsIVQWsa&`CNi9
zz;0oO(2ayqlk8tHHOCT_X9*=aO{&7Wola>K$<hat!ehLarR6ZZ?<#1#JNu-Oy-v>s
zaY-T0gSV2^*6|(-TKmeG?9<Ze%_j)c)WwV9Q%)4PY2Q(r?5LgYV0TBIS;F`F5}Bsm
zOB-B34slv>gKrl`Sb(J%W(DVKsEOvN^_3LRLXc6%U>i-DQG7%hu$IN+1nv@`0xzL5
zRHGj&LZgE(YYS00g>#dUD!E$LJolClbdng+o~rq`b^p2+J%ki|i4BgO>>ak@?_=ZZ
zI^_=icKLp+j%xMeJuU%Wu^y{sU)!xbLF*xZ|31huuooHvsw>Z2WQ9=v4w(iRLs>l_
zbH77WK~v=g6VJ-c$16e8Lrq)U#x&^H{F!AK&YJ5mCNkp08Iav?-#&9JkHY|=qLu<#
zvHa-A!lrDTWwJX4LdA6SI>5SI=gf}r3J2bx=kH-=6!%n`0&B9q9HIn}+yQLF-u(EZ
zC$=>KIG+Mnf7ogIYJP4*;sJM9h_=b`->NJ;P99Mvvk%%Hun~wN`S#Z|2Pg-BEiyV5
zMZ^)I9_HF`E{gPDaKG1_Or#>eUATTIY#OBbX`QDwIh3t7d4wsa;#i-X)u7u+d#gZb
zpByyC1@gwHXL1exAkTeACa>TvPJdwkgDZO`?{lz%09ZJMD;p&8ePa=cIkIi!U)~4b
zjq4A4aKW+Un=VXk?a_~f)-2g~wkyN(pZJWpLuv&VU#&`PK)wmQa6V<6F4I~G-W+8Y
z&~-dTrZvtfhrwlFa!+`<2>EzWIZMgH(3_qiDxcQ4@lW4Bfw^?jUK7<U&%5QW+FQrH
zgC0Mq^ZK?+TX*RMkEV}7pB9Oh%=g{LFW|^1%!ltg)%gi{CcF^5N==o#3WD+<bSE%N
zniDnyo<&HtO*t+r<1|7i=Tcbc6J0~e>WU_vsQH9YpBYWKSSE?C>oVd~)o*R+0)G7j
z1=VOKGy^w68g+oXoVo{E_DPbE%9k?m$K9zL+c6sJ-YpWaTM;)x-qdSFVT0eOl@^EZ
zGh;7@Pkt?qxnJBtVvx4?iFIgDW8~3!$o+N@E~mHHVMu~|LKJEMziiJM>KI6jolG~8
zB|Y`(5dM2Q*FMO*uz;+<(Rxn)j7&%#1ACG@r|_TSR#Oc@jh{M*(4#C?yX}HkV59n}
zHD<qL?06V8!mIhOTqY+3r8@`pd%DU3Xv!wctn~wOchsu%e)TcTn<eW~Bt;xaUiDL(
zZOwH^Fg_3Z$Li(ucP#}~3HF{<Z}%UFh{4*_^w4awYvqNv>}j9M-p!$A{%|_b3W^RA
zvaOyuR{LMy%)OAh()xpNK8kKum^Zp2SZ}lPbd!Spzww!zPH;Zzo`)BCg{nncy@~1B
z>$bkXex~$xa_-d<Tbh$x|A-Bi{Hgr%F84O3tM__bZ-RIsFo(Gl3v#s{7}v(YBW54!
z+IaLyrB&#Az`Q}4u`e1YL|j4|?(Mra4}=G`Dz~h;)qVzC7c(E?P16zx3jxoN-PXW#
zrSiD2{mw5;tt$jw*REQTX`e2YDXzd?$9*!HMwWYFDT5cYZzzXXA*xJmoDOr%RjXAS
zsCAovtEYaUbhJwgbAE}^59tozwRKz*F=Hs?7S=DW=~iTtWwSSyP*;Tsup--H)N)zy
zVV8sPh5r$2@Hobe{>bPwPSZjQ(I^ZllyUqv2HzW{b$}9r=F{B*CaKJIjU`DNy;|g#
zw>|**l2Chp=Y=1K%NwStZ2GCbf}+l1Rc`$Ip4cV&r{}B866EXbLIdBqI9wgBBo$=C
z?$aEM4>WUU<2S-rMgJuf<rfKIyGy149OUkh2to|Bp9tZT;l?q+m>3)+2Nmja+cd5?
z<Wln|k{qI7r=cjAhf@)941up-Nn|SI9X;?g$#>Dv>F>NMAdHu(@>l|^)yeQ=TtHwN
z!dQMh4%hjtnL3bG5|tX!wq;JDTEH9&a^eTf)ivyP&G3y%5-IDVgARAcHBUqOLGK~E
zb76;@!_o(bj+XnCdsab;nx4z)R3wd?gg6mMPf=Z`uBVd8*Xh(bHM8KW-=QA!AO41*
z6pDqKKl-86vX-wDSB!2*EFwuCjW}|o+W(sSzDS&J2-NOrSZ{f|qaA?3hWu8=)BlHX
zZnc4G?2DpPLLrX@kHTo;oDkhd71Fe4fq3n|yFB`Uz!eZ&$N%dz;tye7O))i|eEX{s
z7~stgC}_64q}%kkywfQizkj8!`tsIe*<vuaGCW^ecloY5Hw)jAc@FPBu39O7i>3C1
zsQI*B&5Uo^=iyj~XT6(o+isEftBi@ZvZu|H2t+TsYtg*#67}`nmBa>cz4;Oj-G4b9
zWT&k-<%w`U<KekwY5mZ1>^S(WG5qSlC$uAsx=cVRnnuLMwD>eo<crU4*63c4YeYAK
za3&`%Eq1W%JnH5sL4LD06EHn#!j`jfFjm~x;=p|g#W>0+)3{@2vZ1?5wAkvT&)iCJ
zAkEU}Fyr8K+rZ_R-EP+(%2jl0@~AO)NLrkC9(`wkcX4K~P`iDc?9$qt@l8gQuAbhx
zoN4R^-LX)Kq~|j6kum&e@1Y_uF4yRn*oRSOV`;_?B<hs4uJb+S*!43MFL#Dz{?jvo
zx;EVEHcNxVz6oM(`w^v8E_Jk1CX+B_zY?e9$Nd`p^EgYYj09`;9GhXK6|UUuKE+sl
zA9J<M6kmeZy=0fd=8OY$mm7o~Qq%t70TLVEDenhT)2mIN_EVYfh8#%k_OedqbduX@
zSw1b^i9P=M9LkKehZU@m11o#GW%WiE<asS_M2xOu7#1JN&78R1tL!GvC{TrxmRlH@
z3G<ezws;hNAQh)P7OIVa$TK!DC>^yLTS98N|H;M7{_~%sRR!$T^)JKaM=Xk&%Qy(9
zFuTR;S1g@`lu&{FL*bjxHIj}Km*^}uvkCT<GS}HwxsN%miLk9eWW%6t%aTKGmL2eR
z1ODD~QT&9L&=&NIcJkk$_JmHxgI#?gOT4nCN>|o|O(mgUHOzeaD4)lwkAg05UVfa0
z480|-^>8xQue+VBDiiHzCK;Z6d995OclGE}Td30W8u{j+BE`zM>(0keL}00mZC*Rf
zH#}Ym(2E&eYWRM*qpBdzZ4o3IF+u&jPxgF))o3^xi?3@yC%@ub@_oc3;AfsN63_9I
zpy1Oljk|ckzODOkKa_6SaQ*@~ebD0jTB9LsL)x?RR+T48uAvLN5dzbtn)}9tJJmIY
z2H7u&QIwaCAS6zfoo;WjwsJe$kk9v!z)k;(<cz6Lgu{$Mxee9aoKBmY3VDG8CX!W_
zIzPzfjM{%~p6o2c6j|y-5ydjukn?HZ+Zvl69@kqrC65*qjXjfIc1z{_p}~|0ciHe9
z+HQM@8tlKTjJ(?*K*Ucd68O8(Rw9B*Cp9(=^%%MtVEEFcZ*^yOQyedM*3=aHi)RwW
z7XCS;jH_4v@Pk+&MdXUxEpghrXt&)OPyBD7;32mkA0eyr0HtPUSWSk!aM>K6GA+r1
z`^EBzt_&St1YoFmP3YGHm#OckIs)(xtM;ly7SuQH$#Si*f8w#;zZ#YpRQO{2;X%^$
zZ|3pT-}%!j|L<@)o4_S8*|I6#G9}jXW0YlIgr!GBphxu3qU4}8TkAZFijlXQF>kXX
z_HI|VHWm~cm3dYK6AM`um&>=r6K}Fv!zW5F>foPen=`fJR(L7J!+jlOG+~$F)F<xz
zZsMyn`|AL#Rbc1x?12#8oM*-^CvPmxpc=KR<2fW}qX|{JnNNW!Imaz7#ou>ko&UNC
zVtV*~uu%Qd{nwO$rEN|FH@iat1Fm6i`K5p(5H5<_>kR7t`7p-rZq0z$&@>EZi)B0R
z+Uu9Eu;uvk-d2!!#BHh@38!RyZ6;Lyu#ipFzi?lmI{bL#C$7x$`W7m#V?p;Rj4HNo
zzS&_<EuHngaogh9S|i>#^Mq{nz2J1vOz@6Rb<m+t^}4sa)OU>^7bOIo3>UPvTcgaU
z*Iv2E$1+#e-7gP?&Qlh`hpg2ClhG(T*NW_oS^1V0gCa31xjiH5=2P+<Sg9(pJ^Sko
z=Kk885PdoVQwvaxQL08*shUM43PH#CwQE+5G#%Wbc{WDf+Z0*3PK=MZ9y)H1F7L01
z$;M^=I?F6HZSqcM?S(>xp<HSEdGoB(rBoSXe=V~c6Sk!n<#=trr5DeW?%UQ}A)3va
z06&fsYnILT57HNt+9$pZ?k$QNyfYh5lnp_O4Ww%Ik>m&>v+Cd)YP1IyVYuuPtl}&5
zBppX?7vCcBbMTGbI9W5-q6(?M%zGYwg1mQ6m&%U<Wp2I6cznaB&Wh6Cf(`}_??OrM
zWDTfUdnLnsu6m{W^P}Vb>A+K}Zj((=I+U8aFz8q{-xa@CiMSWC)pGBzFlNyI!kI6p
z)Og<~c$aXTVT~gA_(In*=rcLmDbIY6p6dqnzCPrd87u4;JFFAWzdj@xPLI_ZdgQs=
z{+f_^Abd7Q=A;pSlHiE@Zo`D7vAL7AFj1Ig);F*~<qPYquP6GCUpq!5iLGNr+Fy95
z^bKEBP^p!7a&r^t+M0kt5^FzVvti+Q88~&77MrYFYmx7MlTNE(=zmfh{dU{t#J+Au
z{!`7763L9*<u_@IVr`NSzs=#3=@^lM^Y!6XbDCsLV7qvY*gE(T=g~cB!mzuI#1KBO
z+%12BXAC!g`Os#0l#pF;N?<r4?C4tDlB`7k-5K3Rj_-0GhA9V66INeB;@A>g9&bo5
zH<phxv<+%)EC&F@T)m=@?RoJ)!LmbKDZeJdn(6V$HPS_6gC2Ux{3nLkZqbV}3kjf8
zT3=~_52C647?Y5Kl`5%MT=Z&@yLDT+z9K1QY8(hv&JwovxQzot$gY$UWIWTWqw4PO
zP;<lzfc(L+r87F1+6hv&LS0YcMtIIE04;H0K;cox@(M0ChK6zzwlgf}C;hqHH2Z7_
z@_s2&H>lPy?By(;68`Dc7ipp9N^H1j+Uy05AJr)w33D{gb__gWVMsNrY7KqC^aIa`
zZDB#nhq;*utzE4+i+v`fNM$3x1xxx7Y>pq~m6XA}Ns2RporTkow9QQX<wU&!8nk2J
zco6Ww6yTK#=gEx@xt5fYd$XW6Q{<2j|6<NDB@{9zAthIxfxKKF3!EO>6H>!sV&G84
z14zINz%NqcO$@*h2I$I%YqgT%fc!7$qfthtgJ$hN5wE-oxbOc!q>C~nNqyALcB$1_
zWih?FxkP^@ak_U6S(@2Zt!*-pvQbl86ZC^27TLE!Re(*fUevo4QT_oYyrn0B4C8BI
zwGY+~!Jf&A--c{dCa|Wh_2(p!8O8l;AI0`uE32@(ev!UHs+4i*tsn-+m?*)$(zn&;
z-=ntab09+@n`C$oO}WvF!glgcX9GNtOV=<sfCaTyGyYF8h+<t9IRCp<f_v8b6Ovyf
z`yDpGMHh(9J;eid^0r)Utr8SgnoA&`xE^eJjP>CQZpdb;WK4=w`5x@0N%W4^leiCk
z2@$G;>Bkh3?}nZA==A)dnXzXVK^cwWtZrx!Q7n(bi^A0k+D6UgeAX@eb>sm>^jw5u
zW%%az-$=x?fIJ@pFyUO&@2y712c}MnOn+XfZRxMDkDkyr4~u1nce=V4m-%;ZNZO)>
zu|5(T-tI;@bq-u#)YIt%78h3T)1re1_q|{KwChCwYN={B2>7wK)`Y`c+@(gmkw$W*
zvBq=j+a-tY!#e{19BwyR65FZ%R6VCWTY}i#Nhtf`U$=99gE0HYGsNZgpd#=q-_!CG
z**hON-YcP_Cd9%D60J4|6?P1W6>1e+PA{4*>O1d9IgE$E1k?vg0O68f@5Q4YdVfCH
zJqqd#-E0v8JMVlG$MS4P7B=chG12Od;YPr?+(Rv^sW+KBkV<Xc_%UA*m{k;@I$`%Q
z;8)yj><M}zPCU+}PYp8MCKv<X)zl$QSv~&h5;(M>U8RQV&lhA(#n^eTC-U7U*f9kj
z&G6ku+r3+d&4Mu|x6<{CQ?|p8jFI)KC{4{ainl0p08y}+c(3i9IOClx@%|KXYt=q8
zHHt-v-!sNRH0s}=G2=iTljTiDAoB=aaQ+*zg?*0rU^Z*c1Wqd2fKe^;O3C?|m7X5D
z=<o{AWhz~NsIO@jfh0=PJU3`WndD*M{92bNW7ASz9sjh3N>A^q>(DC?4rBWLfk{aT
zGD?OAos5d$SlAw>M)whGS)hfm;Y$%HXkEW#E!wji)1$vCJJqr~zUn!c3pP)#Az=6j
zwkdyd{vrt0lv;!D%`(utI6=<+bxupTpt5{4ZC|{_Lh`=4nGB+EWd-=ljijtGNR;w&
zVnA7eslr<Hlnk;v;kT|~*CBxFR4sSjQW?0)KO8nZxM?7Q1`*X)J+rS&II~(nlNa6g
zvwEhm1sT_AHGj*8@6I~Kccu5n<+hx+Z!7Zbth_z;%lAWR!t*4v7S^G6aAqt2N6LKS
zQc<Ou=&LBWaAGx+*TSYN$32#lVoAM$iS~HZx#HKfNMcYX63JF|_veoGqYAk~P)=6r
zv&Jd+$>$EI-c*Cz%`}0u;~9(A!L>e$>bq|EzE3naA7;{aNIj%=DTSUHj;ix^FVLWp
zRrNo}RkU8x%X6QQ(%gBpRoEbI{aY&0F&O<Z4Dh)FXPT^&nT@;_C+(14O%XZRFE?Bw
zJ7e~{tBNc|Yvvwn1``I_#})j_RafN&WJBUr@_yp2ntv2(9j#kf8i=^YS;nQw9^DJz
z2V#i_Np*izwC(Dbpn6pH4K@l5H5O$-`8-P_KeOTSDBnSGEgjM|q%ATW`{&*FHLvVy
z5j3YOlWJs}2$kr*Dx##L(GL{6Wx6T~tYiF3^JZt|=-$ZwQFl`^^t)u;zqiahjjpxz
zm!mREm~G>1A^+B)`GfT$8&=MJtEEx(b?sk?q-s|>0mOe^l|9~!>I?m;r28AOvaz-9
zeJ-V0-f5(k?*$3I_Aj#Sm`oI}F0e<_=suZDEZ(U^J6uv*P)IQCxneb54hYX?Qv_dp
zSWq4He@x9X#%!yXbW5|l*vnpg${Zw*5+Ub`^-?wbR|Fe(68p7}-86E1w0?6&%lLve
z7fUN=YJ??u>KEE<hmW`r-bjyD%#FA8TU>6?Om1>ii}0`ttb3@Y*YQsjR#^)2n8i<v
z?B<J8G>(Vnm%*%msh>@qx62eh*BMXUHLX;Y4ye0iSp^;HX-?bw=LuSD(eI38Pv#B%
zj9U48*Nks$8uNMja51QtS>D&eO4b<PgFR-d{kJ|-bN;rXgHwWx<wk&7(PWk^<Gz=?
zbI$oYcOQQvE*wc81gFTxV#8d^r)uL-OZvFn0nhe#UeiMN96C2lbiht?*eaHO+uMj$
zTQkdKTa=UTv>lfl^VRuP1mgeFk!!?)1p52aG6^nZjZN_7bWv1~WG$B<2$n($SoOlX
z#!Dx^M*wi|A#9vkS9;h4WE?8vi6NhFD)(AkvFuCSeN}f|_w@9whsHX(nfKk<V?%n8
z3{@n2=0g2DXf9r;ME;tK^0Z(0kX8`BIA^QUdZ8dcAp}b*%6th7XFth$%&N@n9bU@D
zSE2s&?To`2|6$~gO?p9AS^LY2%<%a$!j9J?tlO=N12}gWg9sYrY#7pq$txk32oRM<
z15LtQ1K1Kq&gpPwH<jXak9Z)P)ICKUb&uMCqxYM+E=<3Sbx2jeGwz^X$tB%dQY#%=
z41D2JpEUQvezOUJ+eC#Rk=-o8ILjiauHNq~bATnOO8NvI)_C1iiY)VkBFX1mLVT?W
zt52|cF8_%i-5Y;QR<n9>{bCi~cgCL4Tl|&1e~yWe7k$E0i}X-@KHQ*$MO?%{um_i6
ze=1vT{-&%s)1r?m5Y<igzHkW@Y6Bcw*Iv+U5y-vSP($X8fo9`%0f_&=DCA=&05ssu
zFCWfh$Ir|M*}zXl2;jvhobAg*)?3iUrFyC0zyXm;3@KMbcp!C5jJJ-m2<4Su8Pq*X
zV66X>BCRM%Vpv<Tu0lv%Fj8E2wydf$0Bhr?g3gw7f1NMsrZZWr*=>94s70~-a}7i6
zO=odTsow9>TAcURzIs_GuX?6XCfw{0X)F81{Ai*6cUWh%iSaSYI1@2|xb1O#e#6Jl
z;G?;1Xn?e)j{cG0l~i3D%Y_Ff?3tWC?=3RqUI4k{;{dO7Usa{<xnJ|?Pv||WwrP<o
zjez*bwTB1`3zn()+DE_#)sayq+s|ppX3?>FRo2q&e7U^P>pNQ8jR)r>YTH{9^3!iW
zfsV?PJk%zIf1&#~<i6saxdMlIsA7;RsCu>f@QYEnpaHKLCF&T=A{QEzFd#o9;55^x
zEw8~v6z_1cdb0D)%$@5bB9Wk@SV}dPlc&=mvdUi~e3&VvLu30i?NlpTh%Umjn&K$i
znsIsUj_&1?5S;<8C0=ifSAhoq4sMo5dausc&XE1rw|CNL0tG%Gq-Jl>hD?S1pLg%{
zu1@u^DQ<smy)y^<F!b>KOF~VqW97G=EnkY&f$a`|A^{_{55v`ZH`nnC9FU$2LoHxm
zV`D+flQW!;#)TJq<cnk>8`7HR&c`Bc*VGkPs?_ttDnIi;g*42#mcJ&$IDhNxTK~+t
z6+TcK$aVY*i;x(sc}wCAQ4SFuN&$&|A6tQEWW(C%>HJJpu2>AWTai36c}k9h_$+9c
z)2Zq4uJSZpjW$&>;dm$Y+|ks*vve1~vMNmdAkC!O<cv`**MVg-_P%-dMYeA?ersB4
z%T-&jt4%60oCc|cUI~eO?m17L*=XIBPy+_%Ix^~wV0gOQnob|<fxYR>=mgZIsW$T{
zY4yZRml2?yHZ(zbQk2mlk=x+-`X^wn?I$itaLS~ASJoJdV!S>Rs+#$l!IK9zq>br!
zRuAXBwt<p|`F*lQmMr3&!cDH~GI?s?b@Y(2j<<o!eae&wIeF<uiU6YU#!tc#Hvxmo
zR(a#+;B#?DR1W*>L8sguo%6h+CF>uhVTSFd72-#oTH%}W0y}<H0r&4hnV0N;JG#yO
zt<qxH)<RB!eMSAk5`7@$X$pMsdKdLzm?>~}6x5o&zT?SEtGD5;o|$I1qSQ6-l(N21
zsh{+Y;5h=GmpiG25mF;kgk(fUvM%wDb9L0(HYu;dqLWnDcl-J%S0H-3ND!20#*GK1
z7w?k)=F4O3e3->id|Y*&)ANs5y?aa`MJsNslAVQxqfQ0?HNIQ+xkfJTp+p1eSNB!S
zP`xU%;?H=MSN@anDypurm=8wO10lBVUf1N((l|f3F`)cX*>`A=k6h=fI@{$h5`?{F
zDJuy4wA5QmQp=9a!(&pDdj7$RhYn58&8&^oe7xlqxs=92#M9%1?UA+q0y=oQ-a@iH
zQbBNYiN9S0g<2nttwlHep43}AV5w*7KE23%jDZ!1`q~&Gdy~S9JgX|m4$&tggr2Dx
z$qfpyLqrm~?CDg42h}H<i!+Y%g~n3LKJaok=%-ai)rM2jnB}e}X2U@_m}cfVv@bTR
zzqF1qIM98D;hPQ<PTT!)7gdFp_f3u1o4_04S+o`lzg+zfNzLC9wY&y09zK~C&!fFt
zb8=xFcQ;J@Gq^rix1ztbTpNl4jAr-v4SrP)e{q*utn3(dbCIhxt#7k%&3b(%Gc&**
z0taNCvI!<l9_E(1QpZNV&^1l&F`Yx>2?R}LoXRnN<`d`dnyEsU4rf^$?pXI1&cTco
zMMB#?aS4m1mO2a;-{TnC>TU<RHj&AjV())58|e!e+^iF^`Be`s;YL^76y4^iTm)a%
ztqFe1-aI9n%?n}3i!C67Pz{y_MWm9dNP%Bu6sSu^X#h|Vl~nkRARcJz^A9PxU?%`Q
zHB$`i<^~z5VK<4XCH}zy{!^l=xKx3MA^<@*fIblgOM!cS$x)ZgSVkfH4Cu*+-~7>|
zhHY&IM8|AW@Burp^5OH>{{fc-{|9EWLro2v=hHwd@o#rn3jXYaI)JzNkQ5b?mJZx-
z&Q3*bW|K@Sk@X=uD#Vdqk-Ef|0a*QJ@a4msKcnJ+giWcUzk9WRjSA^Q$DvXNRv2zz
zo7xAgl)qVkm8P2|8d*<N8<*;wCoL)@5ZIvl1N(O~VCm^nf)`<x3Qq-aFCBBVIJ52c
zfFBtdwZy8w5Do}w8hF^g3}q>BI<U*lJp{bkMmmy_?Wa2c7c<QNAZ(~1vOqmSOF&yD
zZwn*P>?v?SiFt$?{-HcE(IMl9Kts1C7^uxgNa=7i&f@_ZZ~$cE4BS?Pjia$cPYtWH
zK^y)3KOnSiKo2_L=+>=|OXU;@Fb%18N#jy&0B;fH9_WLPdtj~f1sd#05Bmyiz5mk}
zeQi>>RHf<IIQ4$Mav=EG)^WfqE&wQl5BRE4P)j%fuOS2YqhLi3TMM*SbW#corz2-!
zF<xgJ#0k?Uj%Y^0DT`=Ef5-_lX9a^v568*9Yz|X43ez2a);U3k3CF372tiVM2LD(1
zj7A)i*(ZPw<{=KbwOX=1AxAXJLI*EpK6DPkD5ZdW-miFO!u?OUJH<d<!1Eui3Dkhr
zvHvPCl1DVNDg9sBH34c^3Qh`f-%s{<Wux?G;(X?1k%RO~DasF+c%V|{4Ek(WxRvls
z49sj!Wxnm{(fRS`b@P+b(fPG~4Qf~gO%CO<O--v4YZxSB`snY7Mu4qqmIIbTXN70;
zL*VlO&r0~l=-2Tt-pk?kjVK)EJ9Pikw3YF|ANgPPm@DDL;6$KbBa_U3%(NPWBHP0P
z_6@wKz*yFHbTjuXz$yX4_QQy%R^<#(ch1+pAs(5$y7~ze<9wvtAvJT>W#4r;|Mw5(
zUJ1VYff=yzzuG{Ynnw~KHRlM}{c1}x@^PHw@hePvMAUZ^8Vf|%NMb-_%grba=C+lm
zE<v)z!BNZFvj5PhN_8#l5i|I#lJdBbG;ygU8~K<^f8F&_e<AY~^IBN>;9eQ<WAy8x
zl^~Hm@U}_)Z%Jbr9nZ1}^Puw4XNvwI9H87eXCHTn?)v-a?-zZcQ6U@7sZw%qzn`bj
zU6+sT8|P%X-I@ngR8w+aseu=rn@2Ak=>MUQdrkQ4hG*qiS?RO;e~WGPWk$gRTvu}b
z$+>x;pIA7jX_=Qepe5ib!~k4eFB&ka?g;^#v<K|XoF4YBQxcczwkIqq1OqT+5j@Z(
z+W+Q&^9!K<t_{GAvJl8nSAsVprIzpmqWGk5(nWvQS(laq*VX`Is$7Q}_LUwmY#uz2
zcaI@3RD=0(K&EeLz>IKR7lkZfTS+Tn&<v2`2kQep-Z|sLFgM9XuQ-=+MoXW!N0d@(
zuf&%VJxFfZ$P+)x4vZ*KpgyDw<aRMYsVx2L4401wD-NnWq2UjQu?wiC*JYlN@@<d}
z;m?KQ(z9NcZ{=#r2yKUaUp3vwZ@wi56ZxJCHba*tECKc#$vS$l<+L>kRG}=83>;?1
zx){E_vN0$~4^739G9&>9dtm=^EKl46FkJR_i|{^n+;bsYC87Fw?`8BN5T9w|TeI@C
zirFOL4&0PdC`Pns%O+j=GpsQ(AC(<bGhLG5Y&09?+gLveu4R0lot!)re;_9gR<1`<
zE#_N>f2ekpo-ZAP;f^do;^dcvHoxp&!K6>)iZmY-TFLXYz`LGG<A?8CdpMUC6cZ3a
zgfxPb)jYT_3JccY+LOZm>0?&Ww--%O>1xdlz-*3-Pb0YAen1^SYfm!y<e27A`Uczj
zcDkh5tqXqsXAN?};pukVD)VL|y)+)bAiVnZ9JQHo=DDbtijYISi3!O*KL5S>xsSXi
zp^b+0){C_$$%z0PP62qdbjDMkXajN%^~EdP79o?OpD(z8x*i>=7SkeDvlsOKrvLn&
zvi8qe5+(BM#p@_xz+89zXxVD{`BH0r?#<@d=cxZ=JidBquo$$|c=!Ki=~r7;8C_-u
zqZbC-lm{xmK%F~GvJwU>22AZj>(4n;OZ#u>Madwx$KM=b0s`CR*f&oXLY7Y3$Zia8
ze?4x6eB(T`P;r(C(M{o~2AQz%SiK=f10h;Sg5e<kjY!87&0oCac$Bm#5K_o;kfJlm
z?$koKn0d{?E;DMaAXl(R5*uPg`POeYt|>#A-EKrM5a_QRTWDjzEtD&E2agIO%{ep!
zQrY-r?hQ}m!AOrjM@zXiVm=D~8o_jCNH^B|g$<D@fSLEXf4(9=Pn6$YMHh2nDw@E<
zPuhH~fKOhCp{&NCqqEUf-CzEN{1fQ4Upk62S@TJ6ax<cFcC$lG>0xuMT+qUSoSeBt
zXQD7xt>?PV(`df8R4q^K*T{tHP&lHAz_=TZW>J^PWxMKx^uQ8MX9YQYVJy*U{$*!W
z|K)|ZkTXKq=%E2QAy>%r;syZuf>OSYxv3|LNDy)nw|aFHH>2F1VlS>(YiB{f1*;pp
z&@P_D8Wd^yT;hBsk~Mvja>9NL#Xg9-Z}x{W-%+P9q9C*UPDI<bG+)+YiEQnYH0sd^
zvO?YsAMnoj6w8YD8=IW(5A`_W2PrcmNilUpnFyaOKZL*{FDOY71v;RPl(>k3`bkQ3
zfK$pW<D;1RnnVP0TrZfx0c{jJ)SUTI3fV{U<tJPm;as>ec6V@noe~igbRPvz1wQ%f
ze+RS09=%Gy4Jfw;l-s>dnev)m;<aqpM1j%h)D1l%ke_pC9Z09Q@~duQRKx4lzZ8&a
zBc0#@M}6wYKa?L~b#6Em%Ht>_>Vcz1g%w-)>m57%H-8_6!VFGG*ofPD8BG4fzdfr`
zRV6L6N}(M)6g>WfWX^5@p#f--){slB^`?u39r9po@q2WRgdk|2Ii92_kqOzknU9|u
zovGhVPXys%E`PT`UHA5|?=A+%6q<{V+otzm>~$xpNlx1a^rkL_;@N2y>2l|-$mB)R
zN2_hZUd3)JMm5e}h1DYyZ~S*oyK?s{m}O-Uw*3b$EJS6mehPG<BCh|*%kl6A7QK%Q
z+sMz78iOGPFOB&sIks3{#6Zc?Qop2uE7_Pk<jiZ@aU^b@?J1>+zOB#cJ8LYDTrC}v
z%7ww2j6T8A|936o%3?f9onJ9o__M}3{vTJfC}-<c^y;bB(4C&m3I(qzn`bk9t&jnp
zE_sbxWifBk$q|OhBEkbsb#WrA=X`TYss9JejV5}H`}(3$DW<G!J?Rar<GiwrPFv-Y
zi;nM04Mr7T5-Ir=p3te!Q;4k`^Ldk2ZCR)LVWvt7A~IVg0L@f2(beA<hqUD!cbH3f
z-QLY+wWHcA8+`*R{{LsQew$z6C1QRyT$Wx*7%b+vi`B5-+EzBaI;eHO$~hJEzhFjc
zmzyva#f31~y>r6l?0+h#|8RGTCwPzq68pi2NtdWi8adG$1#{OMZV7u&W6+pyVB*k<
z4(~coo8SvX_rqlq)OBL}Yw;^vYaFB#+h25dn#JiqX^jab5$}@es1eD!GZ@`I>iCSD
zSIyH^xYFb$2#%Jpg}W{>o}!4w{PHtl;&>s+-7joO=HO;kP7+QmS4ZXm=8eh@EaIOr
z$NoWbj^aa;ElUX2v?U3r>fQdC`Z?GaJf2xbcu$<QX|y{7)1W>4=ce^tV%h!A2lDWi
zEFj{k+Mf_#_YX({t6cmZ0?K*^FdvO4c+8ZxGbW8dLu0&>r=>rBW;*#hFl82+2QI@H
z+@-;ZoUva8!9Vaf|6oD#2|e0shWk@&|CV29uNxxUBnpB%T)}G)T*KjXrQkfMoA4(A
ze=F*0w6*oPg9brFAeWo6JfD<8h=Iu7JPp}!>*6<d;E_2i7fh&vIGo8O5BT<Lt4RmG
z(zl_EkW-EBk>}ZeV->wn^1SX0N<m*YfGQx)eskJ8^Zt6Y`%Ud8+7PKr(yIW2M*h=H
zbdb?ajHGm(02`RQT{oxDPx>Q!_*T^B`8{a!ch8#4Lf1Q+Aj=yUF`TbwlRICGgZ2b+
z(^bECnjTdfNHfe={bT;<p0hc|AmQpMrI&t*M}<x>)L%97HyXQ0h$bJIsw)2~T3r-F
zC*es7Sv@dbH5_sxQ~$k#bCj}}<_akE4>=#%yyl3ms1yDt(j84cNwFq0+N~2IpQzmO
zKM6!Yhr;R85M$4lQ|5cG*uuv^3$l$%JlzqsQ{xs}8A@u+0gf`lGTz$%Tv^VZmB%_7
zbAS5i`Q|S@Bwk?q22SqZ8NRe8|8tW3)|!m!Y2P2X|F<KMhG#S8_$zWD#>>3IztK{!
z+8mB3>^#Hw%od@gUIy~#Ki{pwKRlr!;7E|Jmhjf{+0!|>SN<UbS6|{vAv<*+*0^n5
z>-bF{MlBKg+-hXr&g#{<u=MoaBkzdbovx9b-qw6!jgsIFGUhp7(iXnRBBKAe9=6!E
zv_Cbz%pQIBll_#whW#`G_~k2MFBU&@kG%en)&H|ACtbaPC0&@~w2B2wn}PW}v55N3
zPJ2&4SGu-q!gr<iw_9xt8Rz7GQ#0=b*-uQm>?chLY_;vKOqFW-m;pM|ce<x_?)ER*
zNd|9DS5n5S-CW>u6&#db^9R*C4%galEss_0s{z_ZPQA>vd_d{!x|r%o-Qk7*d$wXW
z>8<94(N1SDXSm2-KmtbhML^pJl)G8)p44I((|}5D)ChMh6;G2*T@1+lKFdOdjPWnM
zGMmurzh`Ff*GI}z<0)Yc=)ZVQK1A@^4V?TvD!?(l(21|lvt{!(S;Vp=-A9#gUi<Nb
zk=zf4@(<4RN`Ca=+4S<%D>}rys3W(un}`DAq&eHpBC?8xOoYU&c~BUxz3xw)odZia
zvvHvj$V3Zlx8#ZlRVbA4tiH8Vr*UJ{Ohgngj2pBy6x&joXAEF_4B$3+B+1$gJDY(q
z4m(oxU8-3uk7zZBZxJ<E(z{qv61jIo<XpweiYCF4B+edWPc^x75y!}xR9S=Rlo?bT
zqBzeZI`KAS(t@r<VX)IDY@Y2L-+3lo$TYNB8>5-1q$|6F^)LsCxfr7AJw{psk=7o)
zPfZgkM%o4$`^ba(z1IJ1p_XG*WzL-KY^&>12ic*(O>cK1iG9U1R)FpO1RQs>3?rID
z1SOg1-}7<!ae=H&Ar5v|caLQ-{Ay~r-|sKWU=ERoKaOZTGc~XLv>VZ1NDw8-x>PPA
z-YS_A`fC?*I!plrX^Z*+f2LAxr4hoA2skuU{|Z}#Y4;N8iR~`@JBKE~4!!<DqJipK
z9h-p|Kz&ZBm|M}B`nal)o47Xv6HIH<9Bid*S`IUfO@2zOGm-^s^ge<e9NZq~OzFBc
zetbvR@<||cO2Gj}B+Pf*fD?W|UXDI->I9kga{E~$*L*Jx6RO-G3in`HcDx(=Off0s
z_@R_xcK-`JDNbcYG!hZPW)18G+Zk$L)c5o(ik6Pa#MHb<=!ZXZ*su8US-kfaC-NSW
zb4>>aan8KD=5~Hn1I6YUzf%q>eNqk<anK@cT-sX_j5&EA>Gpk2s8GCyErRyYDMSZ5
zHCwpM#2_T-Ne9`rgXd-$A)c#agA=X~qf0jYGca8z9@M19+Oh02SxmxkE@Ju|uZ$yW
za8kMuwo<!dti)i1d=@K%Ni3TSA%Tfp4;jj`pATBY$N@nyyT|cdgHaVgui?|rkI_QX
zzbmp}#*9nAgxnae><oOmxjcIf1eHBy0M7g)@UhP{hX}&{B}WYv`bo_E=#wXY(g>^(
z{ZFX11MBeu7R2hqgr=X|af6B06Q;5SIQO@Xi|bjcv6Qg2w-p71pNSD6!)lzeK2QH&
zIE^MI1n4AzNIW>B->l$!DGTt^?C&D+{7_n?_ZU)&px5ND4xl<40wBU^YTqEqL<!8k
z-)OG``>e<gxM?UGstK?f79fHtx`W)sYVyyd(eyMznC|4+sPpGxxJ*dQFsd~|_}A%n
zB=knR(;Oc5-%V2lmcnoW`(T6v-VaP*Ui?(}JuU-OXdqWA+-6FGkONp~=BUtUjMrR&
z#m+8T2@b-Jp9*_6!s@eOz{CjGo<jrM3k2Zk`!Fu1&L4JL4lqXKpuf+r{@$p2Va3V!
zLWr;r5}tMCMQDcuF!eFfo6<Zp{vR>SHSepbe%d2~0wQJVE4}B(bP`Lw@v~2mHbW6x
zn82dL2~_9bZ|pFG_o)BM{{2t@xQUnu3inyJeFE3du^3CdbUyh$(I{|tI(Rq*XZ{=4
z(8saSlDnxhdM3s6P|V(qoY|eRxIxa@ov~Djr+7JubWJAu2-^mI0Jx>quA->E;L*sL
zQP|n6c^70Zz$r_v6^JC6L_5junLWuR_9xJYF3wD-<f|7IxynG_eZXeWs=+PS0bN({
zqdepg-NNc7lnuaK@MM{`X~I4KvP+1Waf>A)hnp@JzcB+3yX!9-hW;7Z#t>4EOAM90
zdLY6cwC}5Zzs|M;`}SiORwo|My8p;8mB<)wx@6`SQrKVM+e##7=^B_NzzNs>4RJ{x
zyvAt92^m9^mghwNsDM5YI$ctykB&$dm=x9Z0h>S-(hg>!S5t@KlDK!olDHftBYc1%
ziDUrW1`7H^92sr6xBFtY|Cuf<uPZv`n+@e=4)BP&eI6jFOzHp}ISzG^c|!^x4K3g=
zNwO{9v&$~K&b=+V<$QHK6LIUT5M81Y0F&BR<iI~?$DvWNA^rj%&O8XBM7cFn5)P>7
zdaQ#$6u?0;WoOnb+;iMlL^!YF25)YR$^9WV#I13A5iuetQ{K4od?S^`J_Kh;-3VNE
z%INGkP8`aqh&~tU_VfGWjXI1fJ_82m;}B2W0T(7e4?1|?gkgebDN24Hr60RFo#^<s
zQ6@bMG>vbW$X!D<W(Ib%IOCck;XpSz$%qxBt%oM!R<DH;vX=Q97Z7xll0eCuk;PE-
z07kkF7*qeQKg?K&uyt{&uw!uSA>KtPnkgY8n@q{1RXTsN+tUqbBCK?Ig`l=&uts#c
zGCQ2vnpO}52LUq+*?6P`Y|@irMEK7qScuOZ8PSoCZ&Ao_L7~OH1#y9Wzp;B6%2Go}
ze}AT2FE|VQSnJqDtn?aB=3V^ZadHE88k<2E)W_ySSzXC`iF2IEx)nwNS<Ce5;_X^c
zdVuSwMZY#&CW2IF!PM>D7UzjmB6IxVw1A>HSZ(W~!FM!+!Xmf;Yyt=a8<9iJ5>0Y0
z4DE9BrWTH)Z1anm#VSo~Kg#XeCPxdA=8)Lixb03bxyi#)oZbWT_Z(u6$>hM}YX>6H
z9CjHj@Zr_bwg|5u6tO8JaA+Ciqe>#o0}3((ro|m9M2G?ESe<rp!r!5KF)&ihOt{$V
z;`ogo?-5jEFoR~7$YVaXU#f>B(#KlZIGzK2lEQ57JPp$qT<psO<HG=qY2%UA9T-&(
zdNTub#1K`=$x>}gL=HG~;>B1hIB34z@9*&IDF@4ciO57)5z)bcqu^<{0cU<5$OR!b
zMtxiTTBvMFQXbOhcXt9%NvlK#kZ&F<)`O;bJRFv}V?dO3!J&C<K7H9#$kMFM9}!5N
zg$sJw96Q0BJ-F$&%`{vu{h0@Zd{hijYIRR48Df};c=Tb#cZU^g`3D`QNZLW?UrkGr
zL-i&-tR(WhV8#KXH_|y6V@;jU@`oVfY$4SHNf{W9&IEg~$j7wAtbB_>eypRc{GDsF
z>yQ~ksq2v1;Z)nXpUM<aH*-`t-5GQ#iu#m{iX*E@+dV8@55fo=Rg*oCKiXht8*kEg
zq%VTEvP~`&^)4keV)icVlWV<zQxt_&;Ng7~=d8JdKMxp>i4ldUhlLl5sE3sqML_yb
znVyZ8*k)tJvrwcc271?OF-Yc8VG^zvh(DoE;I(OO4tIU9AOdk0H>^c>OT3Hv&>5H>
zzHc!N*O}nslhAWGtzUKn_FYZAv*S)(_-rR{jpfhNvpnu?%Ivrd=prZBo+&aq>2Bb|
z^64zdt^H}4SQc+7X=tWD@L2KE_WAAr*pnAS%gvNp)8&~oS(0rs@r!=w1}0fF`^T83
zQKH|X45%UHO+^SnBJs75+8O*W58FOHM01XZs#-NYO9Am|`{)vIF7TYVMNqf{R$cqU
z$X{t1J5Ga2CZGeY%X$$$x#!1q9zOp}?PeA`K6+SW9?HK^p-RHlimBpb@jbx}Bp`W_
zS^VWg*oP60Vfvad+~#N5)0@u{UOrS0^FT*I02AZ1b846EgJr%6cVDRf2^S8QwfB10
z!mhpr`T}>^-y00ZM_4F5s|<hSNrNWIVJ^FAUGn=do2#RRHwz%6ExWNE`V{fv^{PrC
zc;#%3hzo+#rIpM^)D6kz;e9eQX4{pNJ$$%8!+;;Io$<CiS2(Q6h$dyov?=3`#6ugA
z?#mj96dh;_KNcfYcrL0E({%)8hl#H;DJ{DC<L>#Bc5MD159Z)=e~l|Vw2Mqe_dpTs
zJWC3QmxTz@diF05d2k+(>SoCIgo!H5GtK>HxzpRB`;1>u8W4mHL8GRx-wj7NYq`37
zH{fJ3i~K;9$KxkAiTy|yQ9ox*Eq<mXtPw|>sFfmR@-@U_Zng7AMRc+Ez8hAC(7(}l
z)YxHj`LX>>P&<QxO!$BY1sq+D+nZQC?*tS*GUkQ^%rtNrw&XnJkDI0h@7aSgaxVs?
z`HW?UG;STY#h8CX%3>`$E?<!Y1SUflKzx76mWzH|FAQZ|{$&i3nB%iBK=)xFnPA}Z
z*P%hY26rp*68o0Oh+e}CQ;c{vk6dvjAwdxn&>pae2?xwAR4^WF_dd(PTB!e|TzZA*
z;r{WQZM+V-+x>PAOXT5c;uqrj`QcIGp*jk!8^aeMo7_=L@?^UsoJn3KwMZT`GL3hQ
zgt@LV$wGS8`y<xcO)n4Lx9G%f&s;p9&tA9}#K6c9>&=vd4RR8j3t2%*`I6Jro-n1K
z0~P_Z&|wWo4}^LowczrjEHnOChHc7cKw-R_sVxp{wnYI($>PAW(5IzLwx-d?6nK#%
zn=(+-H3Le!mXBu$C2gGwZao^M=%{Va8Q7Wplbh6jC&7cC7#@4!H0zrxuB+qr3djaY
zO+z^3ne~RJ=3^8lv>f<)i8%sbSAA3Gr)VVMg1*~_P>!w`ovVLvyZus2xa4_9482x@
zJM&Ke4a?oNW#NJkG53yEm|@t-5D979%`^k27$F@(cV=iIwF7Ag&z|nqbf6Jvz*P~!
z+I|{*4ug>i*d=A01?2&QD=bcbpXE0o#kalvS={7jl-(hltjH{=@!0*`j!l4F=N#%D
z{`juNsH0tp;@@XYj>JnroA05NHmieUcn5^iE&)7lp&#i@^>CpKB8OcS!<!hHajO`k
zTL_A^UP>3MBO`Pz>EqQ5pO)0Cx{|7yD;b<H*l=#EE0(3wRoBke!Wtgj<3{mlaN+K6
zKX!$?y*&O?AkE&tvafjT-}=K4fW5r>RVxy)l7b=*FOf8o<q%#M`|D-FVn&bF!Z%0c
zuK3#c^+G?rfxgy-hk~Gy-Bp23g2&;?p0Mrte!Sb7L}Ur}=Gr4TmHA^vryS1@^hD1_
zLh|KLuGoK@Jxk-^kb9S}nEn+TKIdS&FKZbW{C07p;&hRg{GIt9@LAHv*Yel`8x~v%
z`sJim0blV;hh4A5UrAg}WGe+&G4EWGN$z|&hT@n5maF5#?3y20*Mj!=`+JvBaFa~&
zpDaccQ(r|Jzd67<&taB<=Vwgrmw780cuENDcR$4{|D)I6Cbe4Vf73p3;pOUOMzZnW
z@GRIZPWM<k-d_(|%8u9TniS6V;Ftc{3CW!l>@hH??ezKj995}Gqhk!!*;~H|-Sn>c
zx|!7-*0F%I*)KaPoH5vHx#SmfnG(warySU%Ck%RCFD>AO=~Zn$keZi>)*N+7YrKay
zl(q5~SCc}zW}0^$H2Q@Ux@`D)bl8o(gWFv%8(bTk)053ttZIQv`uVLN=RB;6`_5rg
z2>ouWpa2nl+3@kmA#Ou<Vy_6Xo<Eoe0gXgx?vF_1yY9r<gH^Ic?lT3;J@j9*x*BQ<
z`54xG?<%#sU(qW_X0kZXPDPB+?Y*^Fu%G$%1tttAKkp=xEHKWqph9{B4tOI<7rF_t
zCI47H{C0d{Lr6r>Qxq4B<8?WFAIHmLC+~__9Uci)Um*&tg}jdwYb#5#!3>*j5<m`{
z9ubtwk2yi;z;x;V<IG68`Lz@=)^0s*pz&*$4}<Cair$N_X>L#WdtNGw?^;u&r$u6K
zoIf94g#~}?(7{($n9t1wWbysLUY`&rlGpxIz;sB$V~!xMDkg!*f*f(pweANBHDZI1
z7@iMx9VH|Z$@Ppkx5F`s>OqT6^0v@s8@x2!^@}D@8|WtG;px`8J??5H>x%C3rKj2W
zS3Sn#6FT-Wc-jK$>T#R*A;T}ZSrxp^>C}9I=f}(K+H7Swq23UCfRqG(UO+*aFG7WN
z#rWoJl^(hiL<B~X8o_+#QT++>D(vmWaaGNe%2rLWn?d|k%m)+T=+I{-<d~_a-Z3Fm
zP=W*1ENZx_|3riZzK7Z{f#H7V*@=8oj(?;J?b$Z4IX3v%k&<BvdvGmD0@^?1;be{x
zDk-k7>~DapkXFWdsC5_zf_Xph3AwpsU_^B#%0B!iOiJwj)$m)rR(uF~)RPu;xn~bg
zM(cMcUe$JQSDX8mz(LnCo1R?s(IiPp`fSaOjeI?JAPcXy=dG4qz@h6^={Vxs^lj1a
zM6FH&5Ph-VDc(w0N5%djPVRNDq7=evmo>?)GqEPhzc6JJeS)gZ6&K>g*G!q7;9neh
zJ@&l-u#mq)h8)2=_a;i_cCTER;8i*wajAm8=0Uy2m?hq?GOs%Ef)3$lX6$v}$}BG3
zljG%To6FCZr(XuLTkT2zerXOhb8;f8rbTDfj30`3s<Te?sw+zqWPDe7hnEV*;_|3=
z&uTrRKcMNVv{y{@wGj-QKmYjkk&@Trm}{CnAIZM-PZG<*qa=mLCqeru3JDKb$!x!g
zp7CQ+*L2hc-^whLn+%536bVtSiBs~bgIke<<NXpFmZ9|R5UxL08M0~9VPBduVn7jF
zzb)_B7&wy0%Oa?ZD@uu(=a-BeW{cFWDXZ1`K5DyoY}-r32wgO|Ub?9Su+B4-RFw9A
zv;ER3DSz~C@Y^AU?MaE+wK{>=#6OA25w5@f+^PPHtN$pwmSRR<gIe#jD0!n}(to_m
z3AnzIVfJN9xcL4oKqB>b_b5s2A6Ikq-pCA7GNo*jToBm{^`l#J93bEY1iOHshXxQN
z0s?VBfF~bB7Dx*Sk^zA-AdmzEqI7^D4G`!HD;8EUzrHOj%rrjs<;LeVJKdC!%S<D=
z#pihnkMR1LEDP4oaC;uM%S=nY?2w3(dnG#F<jgVD&Ro0Zx67#Zx)>E7<^%!7^UnyD
zjvf!$f#melFt4A^O|0XM(kgJfheIDwvg|)4L&bn>&8Hz=Kg=yQKu14&1HPR8Ftevw
z?O=5D){&mA>Mvnym2zWOr=2h3j%Rzdd+j0JofRewx+}e-S0nG$kam5Px7+{ct~d(E
z^5gMSzK}Ar;xj8^rA4oheW#t{s@P&-QGzDo`RuiMDO|CI0YW9KAbl2`a}k3J>BUOk
z{V-GT_MQ*i_Lv#0W%kv3+w;0v+d~5uXp^hUU0L)jYbRKphb3!)ST~y0SM@uKBKe$=
zp0UQnz+^AZ(6I`CR>LJTfbFu-ndz*?jlMdd)wQTKe9*M#Vu^qs7R!urA%BS4`UvM@
zeRGw6WLcEhJ#U}w6}2nf)_~_<=rb{vY}wd3oE!M-sp;d|1V2mDnvw5Ky^hV{xuBk-
zaAU`x>XMAKp*M=*Cd@~s>LaoVJtyfDJ!vNpYh#SqUxCe}dZF_HO>p7Z|3lVa0L8U5
zkN+@>ySqzphu{_n1cJMJAY350`;y=m2<|c52@Zh`?gR)DAh3Aw4etCW_ddUGy;X13
z7R>gUo-^8Wc6UDAMvFsqLmqD%mUfk1h5M={(Xj8nk0j7`{<%NX{nMpd+Fh02?VRcr
ze@?U6+lz-2*1pO|_tB&^ld7F-(ch$Z-tuvpUU$1q7%K-!jWf++We>w7R+Sa|ymQEl
z`V{xNHTFjwV)hsRc31OLPdRKh?Y;n^oDGwBr)fY835sO}Si-EvzCXG}6b=1e?-Z<z
zm&IG?Eb1muj$7%$TK;s5sS*F@n<w72wM1db$v4xnv3!C(o*xTmX?pk9{2!Rb{OF%n
zy4VH`*ziaex4Nr77vzo&6YTTyE){-##(n9nr5GKTJ}}9CHXy}iQDWhbeMt@*^Yx@L
zW`el#ETb4Uxp^*$>tN_zl}?uBel-<uA4|tbO4`gXeZyZbY9k@_BULrd<oRt~hixBd
zF~v9R55j!Brh&Kb`s75vl^FHOey}QW-Nh{YB0i>h2wiJ516ZxAcT4l*nz-j~=Zoo7
zt_9|!l*To0PjV{PJ0#kJjc0ln3lFwZIdUgO%Rb77yyy9th!=B~O-q|bcIShAlQBxb
zutsIaenC2bw!z{N&jAC2vdFw^%^=$vQ2765EQaq1SD3QaRqQpk`DE0w?H@PtKTKhq
zH!&h5WC;X}cL)73S(;UPrs~p;OT87OQV&i+%M>L`_(Q9=ShTV_y~*92Dr@TcK{qjE
zUkJv8T%Qj3;K>d0_1erD(I3olO#Txx+QW>tO12r<NVS!T`RKmcxHJ}rR1;!ExF*fe
zN=W@+MK|3)DHlBI$yun2?k|_GJ6m5z+$|g&jKIeqAuF7xRQ~!L1d+im$H?nzZ{2Es
z(vt440UhDsXdjh~=U)FUhp<nY;3(Y@KC8p$=N(W)O<KN_J-~6k?v%6|iT~~1z9z8j
z_RiG_xw7azk9EQ8UC32D?HE?{#~#kkxk>UbY_N3FG#~M8#Ph^$&Qh#ot+HXsmzVCB
zKLQ%?s<05c;P7$Nuvdj?l~+X$3H}^z(nCn}YftFI=l5(+WS?;D)vDG7-Wf|aaAI5v
zgGx$=)N}AgoW#zdif4l}gKK6#2hi|iNQQ_~P-(w8C{#Ili1WC^5hM+gvKW`jK;iae
z^J5F4tUbN8n5pp!Y6}jUJp@Bn`|e55)m?c;`x~n0l@oSx$Vw`^*c~sS?91iZ@V=G{
z?@qnOhxv(aS>7@Uo1@(kN%C(sPMkmQIRi|aHVRrcTD#uK1hKZ~s?o2eNz>1nVXD)>
zW}#L~{WdT?R}z;ASv|IjW<q~?R;l{^9+Ubct*Z4j@I`Z0K4$=*Dg)WR*xA^vplnE7
zT-ia*Ajb7tz?EvQc?I*v^>2kGej50w?o~GA6z@$hIahv=|DKF0T->^eAlu3^Xs*a<
z@4Zplk8O#!Mm`0W#+9{gA3H7}tg84Wj20S}g!RiR7%)?kKbJmuQ_DHLI#0%%o*P9_
zL`a!T+%;>qKmE<u=IQC1lB>Ppr%a|%UF-W^+9vG%Cw%q`dZp;oSx6NA3Eis@${tfr
zJ*AyPEe)Fu$+6?OKOtuj!nfzI-^|+4sk}-I9>#unMRoO_xj7-2*zB1sc*!ma9X|&$
z@Y3$(Whn%&hpuO`4`R6Oy!}7P*I&hZH1&xu+UB_kjyF*{m?a1^gq|e|w-o)6sdcqg
z7Lm<qR1JQNvl0}rhmGIEwwCGOl{JnbYmxufNHsr^;<MME*WPSOhFvjQczXCIQqeq~
zS<fX%eTY~-INc*tGp;C|Q&kL_kOutO{}|xSXlJCp%qJRxbFOeNU70T!^7Yi=R$edP
zBXY2uT@FV)Y9NWnbYu(p{8!CJHy@o2^nqUIv6h$3^XGyiN(t;g2NEfz$o(90aVpf}
zO!#a&R0U~DPzBvSPDvUvvJp?DkxomezkNfwh>udWvueGt>QfNvzWLL`nDeiCC#i5e
z<pVsM+^9e*jr5Co?|h-HDC0AXawavaY#b|o&X)lkng;?OtlQD+0=4%aTZ4lf+gu5A
zFB%-)ZGQMXPLH0rpgwu67uN{ANwCgoPe?q-v~E>-iM?`MPp&8#G3B+JbfTJIMjz)x
zGhjLW+F04c9)(^?0kP!cWf8<?!bfZ>e;^z!u90RwZjd$m&Nd@@tpnC9*o9W7x#@uG
zzlHhDYi@M+T)kd8?T4KB&@6ecbMd1+q=6(tX+O?~?*-2@;v<^29ghrnV?<cnd@}L)
zd0ks$zF=^U<KllY>65QE_v4~JSzQy<aC=c0l{%&DN7gzm&)Ubset)It`AVS7IhWKI
zTUGg&Q7@U%vGsSsHZGTVt@Kh<TJuWTQz+W^=2kiGk9s_6OT?eO#OUHW3j4}21Dqdd
ze2z*LECxMwdTSH|Ue~|cl2#l((20zldSQE{_1a?Q`cpxY=s|OpqI6+XkKh`Y%8uZf
za{7q*N;!uo&YzAwf`uenBYD-g0ZxQ3NW&Hb(o`!|{6Y)TOTG$5vHL4f2YO9VwJbTZ
z27NLw_%M~nYaeSi6Wu*b^7KFw=l=Cb;n3mfmGlkEC(HNuyVl`UEqe&j>u`?~AwJst
zbS$rs6>SI7&HJBAS842q=n~T8w^gbM`^LZKu1~d@tnK%?k_>VW72|)s$h#?Xx*#1P
zc0lK+la<l`j8PIWGj{*7%~Ig5=e}XAP{ZWXwX4?*mvuRmQ&W#KgO&O~t3y;$_RlUo
z9aDBLXDfQ%rMOe5&WzFTlQoT{g%vxWbMvBp)G)ffFa6|OjXe#5orOf#sHPjr5FaP|
zSbBNt_DMg9rDt9pSB^Isw#mKa*nGw+%eT|Z2U6L)Ibys4ro!iTW{&Jsh7r4+`4uw;
zM0H2XnGNP?Clz`e3J+gzeb@@_N>4b1yuv9h*mQ562p6ab{>mNBAIY=RyS8fE?{3xZ
zZbkmM;pnpc$jfp27O`k?%tb%&nqZ)#eVmei@8uXvnx_=&oWncKYNDYTJ<r55uIP_P
zZ10A&Jvlo}s)*c-bqLms>@*C9_Oxl^1yyCLid6NVrnm|9_!)0Z_e%EF_YN}V<NSVO
z<8np#K+||ss%W9I^Ym6Vjh$oU<@nRjOY{a=95P$K<P)Mfw&2nFwtehM>*x97<0|Zq
z%Ou{_m(cucQ_0TW#G1ac5nm<>j2)g2`T6HTx}3+{$2#5{MjJSA-%bLw9ciKzx5yrW
zD=srq&Gm1ND8Hq6n-5RIdNd+ke^*$3M+&naCcVAWJ(PX&&_^TljCD7gNyW1}7(2&$
zd(CqBwcRDk3Z4K$lWlRL6~UfDNite49bDu;Hja0?5U|gOM9cmQ+xMNjN{0Y1vsJWM
zH=D#QNzTSS-clXmYLL{_Q&ezRRS5d!bys?9SNaV2bO9o2{5_B90uCPEfK!oLz{zH5
z2{_*Rm7NH}Pe62bXZYxrASG66;477z$l-5cKtMh>VTBNEE@6}{<$odE+*f&W$ji(Q
z$MU`y!kYb}@*$y$_D8wXuXs#Kg95G-k5Af;Y;jZSOL-<ED;^NJzUO}r^ssGwjd+th
z8AKa_?kz5p&30!OS84gUt8%!>%a*6zzz3p0;nVpcz73pIYvZ9Ki6n4Ff4G*DE+AU_
zgVgL^)mX~TW_HTXjC(1Zge|TjEeua>T`hd|)t3_%JDT&)OpCp=ANC>tE^8$?XZVs=
z`=nW@!q$SficRNo%DPNqi2rThP>mNNv6kQ6A^q!%O??jip_($yYQ60^#Z|dSoQ>c1
zRIPGrf4vg%k8@&-@_n8VRHi9TJpGw(vbjCxjrVBPLUZ}0nEMU#&cNaua{_;EG!e)$
zSdl6Xx3=^VQq2Qz#O}yGe+nd>F+2>OmNOL82y`64ZG51!QnemGztv9mtD&bw@8C{n
zNAXX4zw?UgO&Ig81OD9G@p+u7Z1G(ivlOypN22Cw+h1#;-tpY1N1OvLEH@~D?n@}P
zOBbS8COHi8<~dc1nmg*Wc+Gm>%*zr&t;2|IU<}%_Lj;w(8hrs#A}(8d<#nZ`?KhU=
z$EXB0`#B3Bs18I{1~{98^K*D-V$yz<`QhcYwmaP2C}_ws|Cah2Yuda--u$D1uOCF<
zp$e^wW47;Scoc}d@h;_R3~64Q*Waeq8=?#?9w{w{@>fa}R!7Q_k*)1mupT0~xIaA-
z3Vix~Svzs$(;a8OmtW~fjRf|Fljd;|YUn%9n!eO4?eDVstjB>9%_FvreF~XykwIeY
z$agA>jG8-u{-kOryVo}Wp1aisDqFq;^>OJ(qgv)xaNuMvtNv~tvHJ3Pg>hSf&FEFL
zp|4ZbyLIYyhpNE-sEbDW4CEP|3KGTx)4U(EZlPTYKW=WAVgq5|hie?;Rw?>?L0ZNT
zKR;&VYB1G(eu1ONGUv&PDtCZYmsE@Z!D{v(a^RES*PD@+<j%#ycsdvZIL*ulPBSME
zdQ5YP<6Uy170LSOyXSEE;~BU+C4PE6t^Z9Juw{7P`1E++S8kb>Zw={}G(xe4xlsH)
z!>BGc?%UMQpW!!3ZjZkw)H+|MfLyXvS87yeOzPkM_{SjlAzy#<;-5CeczULYh~dx*
z5o_20R{%MyRlU?SlwrO3x1f)hB}PeM?UyH=1s8!75BvqcoqhX43c2wS|6n^w%0gcN
zw#>*&X`#lcyxHQdZ$8<*Y}u|FsVf%6_@7(aiQ(Z-?^CK)Qv1%R<0gwO&Fb49HFa6`
z9E8Xx_BFn!dRDrhOeiaVN2~s&`+$LwdIvJwGqk$p!4g&MHvH<Bp5F%Aj_;Z`DfxM<
zkwK)wr?{IC9dqRhbl{4U3br$fY~Fj(I@orm-eEQ|-&_#uwKua#|D_Vnl+d>Nd@V}n
zql;qf_uomRHXOP}DPeg++1zBEmL@f-KR5*|&CXyUV}mGYdtL25&*hReV>5c^BjhX{
z4R@cJD|pEkccs7Qv$lya(rJLA#8J3E38MHefxBl%-5^GfHM{v~JN}CAkhMSr0a<!R
zpe=u#zFDk(eJTPxTxJ2zYyxm*=k5(Pp+DAA?|5V~A-DK@?y%3FY>wL%ehn2=N+9hi
z=~Xp*7l=@w@}r7`YDctDj$$(qN`7P(e7PizNg+tke1S5%e@*Abu{tgyAO3ovt1K{4
z3c&_jN5gB$c7#qHfB#i6Lhi}=hA%iu*=}fktFdGd=ki8Bpz;3)HN!7k|NleHLI-r-
z@034Tj&DvBa>hMSIin70=+QT5y*s2MPNGfn&caVxX;O`hr;&}?gOLf-h7ruV1Q|b{
zMLF!_k;=S&ktWJ@4dEDX5_A5!T>fY?HigbdXP5-Ia!b(28t+#x&oEF}cdHL@GtvvN
zFB9Zef}sCwnr)>;6@Rz)%g3sy?=giYCuebhoj{f13YH6>B*)DbNo<$#FUPOHv?Ncw
zz0-WP)+qNM(M6S92N0CI=u$jb1%1!yR$JI|H!Eo|XfOGPoY#tOsk<wZ>veTIm%`B_
zS`Qh6(Ehk5>3fei8pRz049Zj8xgta$4_4n+$`!pnw$+@eW*UUYfbFIy>Cizd$fQFv
z61AePMuW}t{G-Kg)APgKAC-gHIH4zRasna%X;#>hg3?I>NVA2by%e|i`AXMBWM2lQ
zi%fELEq=wOwirEThqJzViQLKbk6Wq0+v1UfypG2?)eGZ4D+*crDiVaB_m$@D*4G~&
z?<%gY3<mYC#P!AyfNy+8X=+q(Z{FAUF8to$C+6zWWpXgliCT#jfKy1c<0XCki1}bg
zEzdR6V1-2Ro=XGykR7Z}k^E7~RNx!rkjFK|A>9^u1RD|xid6RLmTno0oBxsbnX2Ms
zZ)(WjvJ)oL;X(kdAfCxLol)Bm6S#}H&G_^pcSU%1y{eg^=!QFW&CghS_{&b+EQ+O~
zya_Bma=5e*V+T74$De%wt%Dm-tuo+;8=rr1v%&+8mkT<hr({V&MP=%0*)95iaWmXo
zN{%UoNm{7e3j^=m;a@@Nhq_m!R<5YE+4M^aNoETy<$V6+3ihM1?a1^!XW?t3#0@5f
z0lFL$D72?f5}fwF5AF3x`c`hNJ;w1pq2SZhUlu72!is#4o5*bVsho}9!$K`8%2R{F
zX4=5yYcZ;L&A+f&jr*w44?2m!vGM!eq8?_|?cp~o1v$ztKFfXPh;mLYgR5sszwkWc
zbhj-MEl!jUSFz3Vjr8@|Y2Qvxwt0{4D&oHTvvEHfxN6}Rk@T}K$d0U<hnDwx2GC~Q
zVS>*U11AGD*_$^n9;V%TBGK&6kKi?PEJ&_$5P1zKy9UoK@2NyGU!IC0teGEBCo8#%
zim+AS(|SrDu)#OFz_-X~5s3aJ4xEl8#zNl$!yTvrAT)x%D3~c=vk8cpzV<7^G&2EG
z!;}dEldWw6%%%?zQI{2*AXUi?Xq@qM0Gf=ZE22vK1GuNno0<rcTLKDDE&=@3j=?+3
zvgsK>rfoU_6d6v<jC|f=NX(S)%L|yUE=>Sq1=0~gYH|T-cK;acE_)7u%YuAqNr3DN
zO6m7Mk#rHw6od{;V5JKtyXN=U<HCKsp4#JnmK)m?LU+GA`yhlq1r0FoM>@}9;CjKB
zSf~Y@f|CPg2@eN&GXIVT>b6G%>U)(4Dl(#>h+5eR2r!p09PTnCdIkW^fWY<^<e+`d
z6u>2UGkA`30D!bd#Uq8?AZ}1aKrZ0{FDr3?_&Sfjsz$l&=>rYN1F_CpHHevH!hpM#
zuDkaDr|Em6h?)oZFw=3xe*q|aK*zPrsRA6YR}qE*;J7eA&m>iV&et*oJ*f!X+%SPK
zYuKQRhZSMt1fU9*1fUAF;7+aTsCguS|4WO72Hk?*61mNYfsTMOjsO|eJ_9N+2)b07
z9gJJlf6ijG0F*ZkG&>1Mh-z1DKvx5g?H6D`f$wSSW@P{s)+k>Rp(6%C9%MG;WpYq@
zGH{oE3r2wMj})K;iJ2AJfajTuNWdb!V787H0e5K;0e1n6Vgoc5+6*pOf}SV@)hGm<
zAN&*O&?_BgWJ^Mz391nW9MT;8kpuqQFXcW|qU>O@{p+I!I5LN|1D&r7EX?p1Z$UHT
z24XSi&pZIlg#xg<M~V?YKuo&lpy&Gl#{`C?JOB`fi!wyIoZ;T2BoJpnlWl``pQeHu
zEwh8M{EHa!g3>K$0wcn`7fk`<^cSQAj9XA;s-lXV3GkbbQ-Ce9^rY>Avojls{>oP6
z0(I(+A9&9{0Epl&E8r`S0r+SNdY;A#tPH=e3W~5BP)h>fkA4&M(V{x)trxhBmHMO0
zaxfRJfxr7^@C0;b!)*Nku8RRr?)l(<3LqUt!E+FR+@b-5I1WPc{dH{M4Py5JWb$v@
z7eVz$fOmTkq;JOnc<3hrJrBC`0r)*I=;(Lihl<pIJ~_z7oR<Q_39g_#?d{E2$*@Xb
z=x{Df_2b2B;SHEOUX<)`c08_5WH~Yo&Fg8;U^`m)w()p`VINUlG}JB{8LLOT-1s<P
zE>uzT%kA6$($&^$WcWv>IUUZw1}QR*w*Jj}uE%!&W7R?})$c%tt#kW7_3#eoE3E&r
zPJ^t4TZqV_Aqrp8)|O-F6h#J`)jX>aAnLBWr#5hca?Q=Jn(6qeAGfw#r*3l*a9Ef-
zdV1um7F0;T_x30n>T7goBZ3sgb8GNbH#>Mx{V(gpst~$%Tg%kOnxqdOSkqH|>1-5p
z-FvMGkhFgbTP_%|_ip(&Lm{}u$$xs5%oIlVtkM6L*0`}YT;ua^7S$zn#V0#!s;TkL
zX2<56&HqUQQ)AsE&Hq-%LaCtQ)&QTvD97AfOYjfpe+9^Hv<_c*{96Du7<)7@>0BsI
zEHK>Rw!jz?k`Q=ac2D73882_*sHO7nQyoWcLI!^E#U^(KU=TsVe4`&J1il8L5SBS(
zlV2_a{7xB+?$<-$z)8>#jG}}(YOpkz&lTx<xNyO$52PrLU{W#wGkVsR`&Z-_t&97A
zx%Q0mY?0nx8F2JH$>~vq4g6cwDk+NpsLcN~!vbmmmly;bH3a>&-!C!+1fhOln%xg6
z!g`LtR5w}zQyl{+il~8gkzWL?9RLvjekx7p2g~h#1T1_UAOLgmE*=;YzDz|GmP`=r
zAp=ZOD-djP5gW977MmIQFr*9I%17?6IdcX^YZU@m(n}~X=rOU-DS|>axm(T+%Zb7@
zL{G^O!2=};gV*Ki^hWdph$C6VAgd92`OLFs8^RADWexi^{pcQ94g8yntjmHPn?kne
zyGfwSaNs^)GGr4*LgMBrzCXQD8x|YOFF||m=sAC+a(H%|gdZJ}LwoKZ{O8qw>S02E
z3jdRxZA4F?SW*H*lMtIJA${X`yx%p}+e}w*_c-7jBZWa$ZgBOdR;t5;G+V(oV!veQ
zOIJp$^M98wnB{^)`J)}=Gz#w2vixIvz7(=e+%sffD*q>=8zLxNnfy<ELjCs3e-$Pe
z{95o3{%>05rsaf>!7nFxsba_{A0znhdgqbIIT?_Yo^m`^xp<`P)mhRrna8GlqHuh^
zMIqVo)$#be;CbiI+id)mS2@97{N9a-gq8G&<+82p6U=(bple^hoZiU&3T(6*FgpLv
zPZBW=&86n-%ch>#TsHPYf}z-440B*wP5;KwD14`=^7dV`7{TQPVan$cKqSMafi=7V
z)(2P(ZxFAOB045H1GrTg0|Sepjyfs}0vc$BM8!bofZcYrX0{&t0_^q87vLw%CI*ue
zOrSqt@&m)<Zv+ez)BpHqDgc}Z{M`~xX~A>{rivPD|J$I7n-gF&|9%4QDGs(iFu$q*
z2JNs1`0Fd2JRhW$AbCKk18euo3V^9^r+Ss|bq0EsbJ%2`O$R><ZFsT9qCvvo2R5l4
zP(K{7Opfh={ht~E`^y;_*sT(_gpZ+OV85Cb@~C>j#j2slDKqr703+>$$}wj`{B10h
z1kCbGVIudJVB=){Z{w^2+Yt?DMfgT-bJr|M-j!)Fe+<J?L!mk8<NjX2{5-U_Am$z(
zi$_$GWMKx+qsn*i5YoR3NBmxvNqK=%!^ZDM2ge~%G8Yf<%jxw9zsP<RLuiP(hP}CY
z7Q14YWcn2K9>Cx*5$6~fLg%X2X*2)WZ+C?_RAHRI(&%!6W1Qsrt}pMg0KKXSGm3wf
zzpOtgyEdM~NBZ8nOhP=L!}4L}q3D9Lj>qQhmV|JB9s6~I^niv^?Djl!H>xKs{kVAk
zSXbpj(64R|)B;_Mv#x`xMtzytXFFRT^ylXk<fJK$5+~sO5Arw>R+AmdFFGzh5V;>H
zrkMZuVxlxrOf>P*C{Q%9y?kJkRm_n#BA<`MMH=QX*(=XdjCmZNE&3QHJoI%Q(|_7_
z*w$i%B!i~D&Ir+)M6OjS2t$zM2>4^vSbei`m$%M3a-+j?=T6+9fynu5lcKSN@&pKa
z2%7r8i6Tpc8l$WaL?TXwX(_g5TDB!{$&twEvII_B=&Z;aY2h|Cp7V-Dv-#}O5xFil
zT1i*URph`Uj}BgEEJgQ#o}k7bef88T+Z-fz^C7|TlJB^No^d(fj%|^ByJ7(#R_xRK
z9Jbm)>i5w!ZVwHDPwEzNknM)-y~EZJ>J?>xL_^2lD_#sKaOa<fhCM%=E4JdgsQ7R|
z0f$_8P$E`0WL=QWz2&CKISC2_Fd-e=km6sTmVBegpWyz+(;zsMp=O*-q{^{;x;2Tk
zE&HvZ)yex{5=n6Uta+*&Qmu?qX*JLg*myel335(UBjcVCWu*b7q`#uGf@V&^im{T>
z>FM$OovDQ$L->p*9>X1GN$}hsD6*Qms1^Mm!@gMBE|?6%FaCkbxpS1Q+SQ0b=#R0d
zp<0_W%Fwsi3!jDsz%}kj@*hog%0XOFww1n|{Tla5WvwIuN(#~<nQu$Bj+=5uP{xU!
z@ckhbt!NqG&9jQU+sQib=kx-mOdF6-D`V2{_lnG5noO|YnS2D4cR3pnjQBZJf9kj8
zkV2A%?aF3O0&&w0jlj$O$+fQ<0kGfag>R?trAUQwRYNI6&nV6g^Ln4{w+%v=mgx&A
zx9|SMUgI63FfB1YV}UhK9cMp+ucs=RV`7YNx4@#O)?yzqW~g0yFqt<)*O9HX_Bh|o
zRh*HAnq%rb1^Cx0qYV^kPVI&UIl=WQYXA2kb_M@i5Cr(C@TDT=i^$#YdY!UF3P0Vl
zFcWrI0SLCqvL=Elz=j#j9N`yPhNM374Ub5nN?Qe1BF&_yZ#o=SIP?0S!qQB|n-`3m
zHvB(6dA_4z7D%&L9YXC+?51wfk>CpXC`yFu;k;RT8cQfk-1|07aFwJn=dmJu;t^3d
zp<o_F_C!fuTJMT_vt^s*d4zks_WNdz=8swt0_LUK*5bq=%n{T!&PY9v0iD)FvfwMV
ziFz7)m)@g=KmJm6O}(fB?+@o@{YmV?i|r{m-D2PCZ~Vog%Y;TWZZQ>!Vl54S(5L!?
z;#VmU%>kEZE+VtX>-|(NfTq<!;Vi_IPfCGam@&tAplgD5|HvxUCL)MRk8*|rjG2cp
z&Mut#Bj^~NPXvXO4!5f$Of6C5wfVsxML*-}nCZ&?X^qht{GEvkG?9AP`>AaI<^>S_
zSFy`q@6}O$(pYf@{sX@ll27i==?Mk&NM2Fx-Bvyod<5+%x}4$S-Bb1p-kb`}ox{<*
zU-S)0HL1M$uSEm%E1&OKC+5^Ha|+KG7Co;E74#YJZ;^C(VV?hGvdByH-FWL$X*p>%
zN1ObjjKu4dE*i|}RAosl|Kg3+p*w93_B&M2Y0i<XzEv)<E(s02mhH-fObs@%E|1hI
z@!B0<n72E!{M2wUmY^9Lb|fuEudRJ9+TZwG^qt036k46&)a$IfdPaqRKGCdDR?r;b
zYJcPJ#r>l&FN|DPI%mThK&R_3{8_SF=%JMOiXAG6&$e>x+-#*3Y36&E*ha32^GfQo
zzowzdDa8}u!zY5l)LUVc3dJpq$WawG8~^(NM1Wbv6wJlSEB-n92wp|{1L-oTAl-8A
zIB1}<WKSbbBDy1KD>*vVnGdVQ_FW4>P<Pe00(a*p+rpZfTral2J5j~#Y_E9P!L&X<
zMd@}<x_ICbd;@m&!pt{R9adK3kKw(f->D(a#WAlu%ExK+0AzJT+6+M?b1N>{gbT!L
zZa5-!7#zDZPOx;ZV09$j<|jg>)X6-UXa&>#p?IT<^T-pwsiwsV;D(;>MUkts*p6Wt
z#fv3g=5T_4<n&qKUB&S&^P8v32DB9ZjQPkvz{6XGk~uB%k4@?%oV?E#dWq1)xtNyu
z$3CNtAPZMM*$+(dJyRlzn^L~6q;(MMM8h}{%5TBGX6rn&E-cRHF1Fx0gE{Y2925V`
z(Bft64W7Fv`HCA7jl<9lo~SjQu-TFuv}Ani1`l5O^EmX4j7jDM(FG0oG<_M0aydmC
z(DhBUYG6AK=r!+Mg`&)#1O{}4f447aSwUjo{&R<3>rv3L0=v2tUj2k>sUkc44A#D_
zw}iLx>9z`?gY4H5zJ}}?@+Jm{VN+Sm-5mbr9~xs8_^Mc(&<l$Bng|M{%ef7-e~>C$
zO?o4184ehok)#s>Xok$(yJ`{PK|G(2A%}IzYoXs?6T#g2+;J&$J3Cw<?%%6E2G8$_
zD5J0a{`iLZ8HS||(hA{Yc-L{T5PXHRl)iK6nJLjUraw9Xm+1HRA8!uo2c6bT)P+{$
z<rAUY_CNekY?K$)XE3wcpCW20_D#1SeD9>c%8!CmkKmhNRP&IMn7A>U2OE00jvp5N
zc~s-~<=SVkmFM(LQFqY+Q02zqQ{)dt>C-o1`ym)vw0)E3`-k>uk3J~YUm;Ot^E|<P
zAwZ?LJiScE?&wCK-j51Vm^Tim#Z$2(dL)FLg3CrDAZ}fY^yV97t-Lj1H?c8ls`{nF
z%bTk5s>5vOgM7rr)f^%wsHC~P;;B!0^`Rib<9YNO8!JIN__$o=pX|&sx$R5bVDqU}
z<9Q=>jFyvpA=wk5GtHz4*Z?aXeq>0WH&kkcbzPWW?`ZAcj5a21Tn8*kC`(W=;w`N{
z-7~ae6my=P1{*#n+6@v#<rGPzxliwXUm0{N%daCjhjHpA+>OLG6#c~aZ~FX3{^+S>
z^$&bwZka^ub#6?4R`|(JwdX5T<S9F9J>3bAq|k_=XB8wWHm{)kIQ5w`bstO9sat;5
zWZ_;Kv!O^^B}3#!>`?pY37Whl>DL9UX_2u(m}d&G%!H`mi?4AnrMwFqXyNBwFY6Cx
z%049HBGBZ|UrS<>zJnxP;-x~gtc76Fs8k3Fb@Y}gw`^R>k^luE*b6i&1b-GT!bBcD
z0Y#FD3QlCJhj;1ChSCxK8XI_z!A8_D3&A1Y{h;Wmx57W8c9*nN&@V~k(Sv1EA@_M8
z(}e&TJQZZ>5~i}wz^5id+T;9(7S7dekLCX;71HEx2L*xM5bi`&h#hrw5SSeO(ySOc
zIJFFE#fA$;7ZK0mj?pfTtXcdX86K-%<c1T^jMABZ*NjxSI*3&0zy%{vw1a&e8gZtD
zw~^{2Eya`}y(K<Zhkwb&MZ8SHMfesYzq$maj-H=;2qbp)$V2hG1uBtRM9~samSW40
zE<h2fpaQtX$Q`!yC1jTpC(RwT0{m)O6z*ut0!ZeCulpf~<NDAs^&*#U9Z4vE`pq5!
zIq(S~a@gP>n~^&qPjYGue>pU=LnDU`1+I{Q?4^uC`NPn4q@(xmyXl-xWIs<Wy6f1%
zP&Q^|cz&_`^U0ppy5Pd{c$l7k>;z9*F>5TmCYiW)@}iazHMDTO=efiy$TPc4s^Et&
z=I-dS>hcHfrPs@a5&9kb8kUBUUwH>AJP_dp6Zpwcjg9^JB)Y-eLJDNp<~-&B8<b<2
zonzpMW`oQG$xeC5SKP92q%#$IAxKso5%fm$8QHS-GIokueRy;-i4g>WiS2~Z@w%+K
zwxg>bBHO30RfZQ=N?B*b1U5Mq*$4|hNORG9Ul<E3catdJ7VN5_@lOP9#DHSeX%cj#
zcgypLRH{ZUEp0v^pB2S}7$<WvlFEC(|31a{#oG^fLmmShe({5rj``WtC3kCU^9>H>
zc0Kx9g~ts0L5fXB)Y}gKysKPm8VlJecr+61w|@6<`Hioa+Li*@pJh1`>6QwOEVNjZ
zt^V7_DvTy31PkusZ-tETmi0#y&leBtAVS15H&M*oD-ABBwo}-62Ocpm@9F1K*wFuT
zl-ER!4LyoO@i;0!08Mo-o)1QfDpXWK|Gn^OUgwo8Qu7qO5<TKEHWyL>R}(#yzoaT!
z8lL}m0zG}jfs{EPPVJ72Mt0f^Vb+A}Ws|r^F`{%P3?X%8jf2_dIL$;bn6!ijOR*h+
zT#7Gv4x-R=`%*ybP6*#YmP43QA#!TDgaNQFU2O;gtqu($9nnN|41Lp^1VJn}yhsLg
zRxS!`UL11>i9ct^4#q!4uRsqnS|CYpcxvW`zlrc+@IT@fcR_E$ekv=FaI3R`+wo6^
zN^V;wuWD{MKj!p3&aPn-hYPwZW9236Qx>kfvrR3=a(sRqBuqgb4d#Wm-8!r!F`OR$
zCDMT5(sF@l5JmPGxDZ`!uL-Yllw+*v@*s5cp_GnMe+YnyfK?u-j($0MrjC9~?LxQ#
zx%zDgL8Q}UllT+45Ntr|SQvxbK#*%hO)P-Ph#BnBHh3eD;h{;>Rm~@wC~%ZftV@S)
zSRFAEkh%0__=2<0+RWTQB=af0(h@Q5VcMV7zDBn?t^*ZPBm&ZEEtms|$^ENMJhBj7
z(M@lD1_w^0LnYukOZJHoQiqiyh=C*lp%7$;3wTJA`O7W*97M5X8H8R5bx6a@n+2&5
zz74S{7#qAP$nc%lB$rrQsIS`choF8X7Kzeulh?TZ^r;ZhUre@oew#{lRQ?%^C<Oy{
zPz^bXy0W0-kMp?FYRQm^7ecUNDWzAtNgW)bC=<kXu#+s@+UNeukfTtFftP=axztiW
zXW#rnG0OmVU#$bYk;|J6$N(5pcZOo*jT2Ke*r#mlWd7gWNPL84NcXQLAUm|m+DNx4
z^Kp>Q^uc4O8;%fM$9w6qoT`LwG%^x9PM9-1I-3Nc2aKuOEwHY!7eZ7B8DMY~lOgNK
zUBD*S-T-?p%7$XjF$kUe(0+Lgy;+&CgNX@H!GnQT{0-3hD9%kF9Y2J$LS_f+aLd4u
z)~3BdDd@3-T7mn8H>77^Y@obBgXx70<-syRFTMeT!~YFSI<9H+7^;lr7YuI)7TsAM
zT^eCC9v&Xt(psCnP!d1=;gA4VV$R^k+atP)4-Iz+sV<-VXs5KQF&WogtZorK7#sMk
zWFLe!f5>l?hCjFE$GwzY5E?<zB+NC38BMYo(F@!)_$?nb_|dy(2n?e<g!3Q*U<VOb
z6j=lXTM%XJ9zKN5M6EVTGx4lGyl2Qe2cy@c!oOnDx<xeF4$6)h{Sr>4F8WmBX>{A>
zIyRjra+_w8<#T1j6Q~zQDbl5+9^}|$4jKN^j&%&>u(wGcwjCiQifFXM9YraY;8JGT
zAVqIeUzic!N^u=iXZUbT)6E^`)%TsuRw9&u<6%zHyeFoqNZ=#nsQ+2Rue3fMk~GkV
zd9aozT<5R))DmkWAq2J~3yk*9aFmcjS;fyp^y@G~2n+^sgcr1EUp7?MzJ=6upVt|r
z4e=~j>&~e}5+iBZ+)y%_&8kAHX+CROr)J+<7eCJa%CZy~jv|_kmO)m9n)<V%dmg=m
z<mZ5@6eqW-B6{x6WG@M@9dE#LF?e*fu@IEsux_=$7Oq9v1Km!(a1BkeXW;%u>06EX
zg?67cgj7f_DhwYRq%=g9RsmT`>IHET64+c2SH=Vz7)7d_D;5HCH4x|4p*}kuX)jU`
z_tNYY?o9?L1k%Ya9=<pz3p6d}2cQlqQZAtx_CnksdR3ldxRw0~HKW<2Dzq8v1r5Tw
z{$o0lAGzUUI5CiA*i@mmgbP$ctkh+{u)>TYZSXFwUKyj<v6y0!e`${B!}TYq4@yUR
zOX|xHpPoPT$+5@ghKORVlOgPcEYp#sB8ss6na#@CO#3TzbBf|zv{|2kaOn-dVZkTD
z^&@FWn>M1ERsH7zypTiogh%HTD5_8`Og#(%8g^A^J5B|Pz#^6^^dtg;lr^`_3OjYy
z0o9B<JE+?I?5<KwfIaX<&soq6dC8cEGCbhG5P3<xGFbG>tUBx0mvMvi4dg0CI!=P5
zDZlKif>og<F-5(cyZF&yef_h_;M=hI%n&(`Ik>Udn9qV0R)R()AmyBnq>PivZ0-Ak
z3nI&(K@1BSlqp7S$#k!Ryd=mYhI0d}0@pKlMaL%#<%jJn>#3f6YJCUR_|%A!l?qWm
zy0{6C7xd>?QQFp)P(-kr>eICL=Zff~6(5M<Www*v<(qE0$hQe|I#A`Qu|ZZ?GY1Dj
zi)27<+Nu4My1J(p>9j76l$W$#$ZOr}$=Dzs0@qH@iOwyIL4ci+?*LQc?2e9!46e5J
zT?TQ!QKXBUmWhQN)@uiKjxS;osF6_%JfPALo{<z@Yp78hMmct>LlswFI)DUA^P;Lj
zOMqR#0gpp0^5{#M9WPX&J$?1WSv7oocluW|gEI~&5~FEItN0`-5V1+-#?Li)v3N+c
z2QOJ+&R}0y*r?M*?!~}k5wi9T<AjWp+QFKEHOd9{k%a9=F`&0)_9u6*oZZ#KVTtDf
z_sV{Hz;$_BMY<0aOK*~lBQM?85rMn=uKRD)!ESZ$&}9?m;L&A$K5QJw)sM&rVS9+F
zKsskfi&GQRXuI=n$(lPo1+IevV)U!35AlI`bQ3(4O5T<$W3*=1Gu@I2E{kbOr`~lj
z==W)^&AiA>ab&`Vlb?EzDgCv4rGM&Gee9X9jk(u#N4{87^5%CYvOvw_C!d5B3bHc>
z)se2&3t3%$L?YPq5rNxcbMYCf9mJ40A2cgbB8>Lykq0}055vYteryE6JjEtPMvy8|
zZH;jXiq^+XKO%&8-7R{7(#X**&xlMB=4A`G&^2ty1KqFFMeWcKZ$cs{CJP{PcUY}M
zHn)A7{%*5Z7j@|g&r~>nu~Hxr0<(@8<6gLGFdll=9gB8pw%?097|N>zyFg`kr{V32
zhnB=|iXnJRL$@7Fs`->)dVO)UmlkX&OKLn_b&npx5t<NJ`=d0&5vd|fapTIV@RF%_
z9hl-;E%``YL$2&lziF<o{>{gdvEpZV+bPskEsA-nXtD{0hf1*1^dO?|K4OyXair6l
zg#g5K<i7A%a6;@g<nVV^=dm)^D>+3nyxTzwRYdQQk>DeRToA_J%kVrzeQZMMZ7jlt
zFlB>;-7q2HJ4dM}uQ-ML`AttLE_8jNG5gB1)d57>1%|XXE-4fc2J$9|3nu1J105qX
zisf7KyS}p@$a3^GxRysYY$)DKgM&BGN-($hDrsxk6@64`Rj?D=3&9q_8f38GLLMir
z2(Xq_)<?ZHPKKOdePD*y+2#^uP27`$?PC$9;+$KDId8>t9qz}n_yn{`a$AXc1f`h&
zIv&b^Eo8mC$b($K{0apYtX+(m)%lwrxtf{$4i=nLl;xWg>2^G3bzrZ+L0>(J=3!R5
zkEXO}ncRGUru0O%_Fc0JiqfKJ^51{3#em5gt=g9VBw#b;Q3{E7P$@b<VoDc9>E(WD
zj{zD;#mG$Kz>A0vWRWO%UtZD6;y~f^%W5#&_a{RxP8_s4H!V7a?tLjQCQ-I1Q-s~Z
zYr+&q5(SlFUd%tJy4i$aA8&BR{3L1*mmp1(Q>LO;;Bs+@VV;hPN>*Q_Vy<Vimj_RW
z(>3b+ogepc|InI&96}(+V8aKdN7KGhF}PV1%cKWVWhd964aurzEFT9OB$yxJRI*=}
z^^8`sA?)@HMf7&a)LR?QyK@pd7ZGQ}Nm6$wk_(b2HT^NAd;MK8U2SSaU02&NX+Hep
z7Iv?Z55qhUNDEbQ78Dki59u4wdF{qjJxk{o(e7W9=SBADih3$fsn$c=)6HpG2d3)l
zYQ^n;`it?>;Is%1H9FrQ|4q??lvE6PL}XzR52l%;ym3}$y;9Jmx@NA)Y^z}yzj?o-
z@QCExuG@FAyr#6Vxmj)r7f!XW@h?3VMybaer>~KD&#+s(2OFywa|oDkCGE|8L>bsG
zIqbike{WPTuEvZDGI&$?Va8;2C(VA2yJ5ec_6Obg8a_XQ<7jwYN^-ZXqn*xmak7qk
z^CR6%o##Ljmujn}vi|Ux<VRh;8KQL0!lcr)3U9@trH?FJo5*xJoPG|`3}1T6#Bsap
zx0M_AIscikjvjHN{QN7Zhw)&T2Hmmwmw-z9?<n~NIx*a->gLHroZ&H1+$p|Bn`GZY
zyf+OMuQn`7mTc+ntMQd*1yrP}KvsDX+$qiXAj2i@n<VY_nmRHim&Ru{TIC@#{@pdR
zfjaZ6PJQH&2k%AAKGnwmc*l!<^Q3BGE%Kvj!ch7gk7)o|?Xl!jp0e6dCtsd~rcY#A
zt0hiEq$xJj-jBwpv9F0AV$@gcxaWAyCSQMcw;gWV^izMPMrrz)6d|*~D}kw&y)KTq
zlJzz9O>J91=9?+srx)9AZjJwpZZTH+TW&GZ!Wo{ZWh0Zz2e}iHOTYd5r_hVAb6)b@
z>=U%$Tpwf%8<WRCPu9Pdcm)&Mr%`es5rl$a<8mSb{(RxQX>02+4ly^x_ze|r8}1@@
z;C#gGE<(_h)N~>JB=3F*_U9b0c%7~g*IdERsa@1`OFR!tjC{I3aYkP#?~7Z}_{K9k
zk{`2?d8)^(h3j;g!Q+LJBOSDS#b~hUOLIne59#B38~cH(7Bz&UV90m9xa13hVKi>$
zHv}0YPlxUG(lh;QeqYRlN9s+>&i7{)B>I^LiiVZTW)S_kU$S;2cuK)@pnXlk>GAe(
z)9~F~h;x?o-D+cu-bK~q2L_ZmV!B_Z<tI2VP||z}GbekR+&2ceou8TKq099a3LA_2
z)b+3;TMYVs#DOg5;$a1GlPCr!=`J#^2{k1Uu0!0CJNyHZcj)!|<61gxa@<2wcc0AV
zGhJY+^~wxO5*>^d2X`b^A+LuVs!yO|lx~LASSx(5y*Ax!>||r$u-ah#`A`-%84y|h
zPhd-rYm?OeOXcW0PM>+__<RcMN=v8L#oR(05dlf_!4k?Yoe^nrBgqUe<?0@g6AaW<
zBt(R1+@{f35z@uda!+r>?jl&&1!kq0HcxR|{WK}kzz3P*B>~NoS*=${kQb4px&>tY
zj?2Y3s_+2y0F5Zo<ZCP~UF*sch2e^B@v%j3c`WI-ocv?S>`roZC};^YMk)aw;LD#}
zK92Bh!A*OrYujEOTZUbZMgoIsjgGI}94iJa+9s0An#AkGh#qwb?x$uZR#>XmJe$J-
z1B-vw5UdE9i{azm#evtvlsH}WQSgI*R&{WKY4oB@qnj^KSp_m;H^Jo(Ym96NJasB3
zx@B@qpw2Y{E;Gdal7XA3Q#G-4gm7?#*P-HZvOE078H$eOgdk{(I|QDRM25v<!MbLi
z*_v$s@y(mJMD2{{?2$!v8?%kBGdU25N}F>SjKAc6eat`nMf`JK>W3S}8j{p^dq3DL
zRIXH_in%`ZHK0=JWh5V;;%ZoT^0RTnvIZm4*zNu?{qi*{59!4^*XIsi(8rFQF`MFl
zwiYDjGdOz|mPGBp7hJ}TPAZa7>+II#r>X6Df)ujcSeng{T$RH5PR+tNN3&l?QAk9U
z`H@-K_ZZz9<BX9LMv%*CZls>=rt$~6V1(LQ*m0qBR@P~aaxw0ux~^Vw&{gMgpTn24
zxpy0GvL|TIkA$6*Pi4I@K;jKZoW#Uk%Df~Y`x7+E$+dQoWuo7EB-m9Nv+^QChp217
z{1bENTPkIxTly1xpmFn8l@KIIQh+KENN|IM7YRr_{VO2_3A4Wva**))E1>|1_`eb=
zkofdhLJbn_e<idaG5uFU2NHXKB@7^e@(xHCL4pP(yqG~k_^*ToB-H*&ioP8eHJ!^n
z)KphH=g^DRHq4`EkVl7aMmQFrXZT^<P#cFzeV>EX55#q%XW(F5Q5&CAZ#Y{!{{16i
z^S&m0GxKRM9?t;YACcO9vH3aJan(1FQ{qhs9*-8@sYq?GLv2mCeLNEoGT@zy)T-00
zIa~h>N(P#7@<1qs4(@@Ddn{6$CkSpd)%LL_ylCR@-RAz@EmXJ{lv(q)O!=pv%xK&*
zk=l;>cc9FXa3CBo0{7sd+I6-L@K>@zQ9Jmnseyh?ZCqeB1nPaHZG|$@|F?=EQ9!s%
z|2L;&^4w>pR4K)f1R)adf0(7k{6ijZ$k$Zd_$+NQAWYsVAN&p-=zwbJXjddv7dw0!
znfhax_RU=Omw;b31x~z~sL-r{Foj2{GKu|bpQ>C9myb&!ySYV4?RO(u6?1d1;MX$m
z<c6(F3cB8TC6BePj>KY>mF1A^Le&#C<GK6K?K;J`T$MA2#*7Lh#!wG(Fek1otysRv
z23*gHnO}9!X>Ki~9ORFh=!vk4S#9jwc5bY#+2@&Xx|$5ZFphfDg%F-_vj^22VXm|t
z1CLq4JGx%6<v7`ktZM~#TQ@>fmX1zal#94it=8WyBXV#liFQx#b}p<s=ct43)qRP;
z#|nnpX+0|EiBzql@lk!e+*IziYcwwh*8PcA92}jsFKf!U#;HG2VDMG__QC)Ma>Q4Y
zOW!Ni@Q2u|Ga=GB#$D+O@ua%9Ua1(h?TUY}80?h|7M_xo$>vXLU7WP{#M`1p8#jGq
zI2LHRa`r{5OyUdlEvl=FSHY#O(~SN=Y`Hw!GsMpYqW@Fy`Vl=tQt>it&TmIxoOB9g
zUrMZ(xKOFd*%j9j8SM4DLa#mgzi#8zU#Zfn%t`H#{o>yUqT2?NBgXpUUyV!b80gWl
zm!oHk=MzL1E~j3tWwp~;u!$|?srJM+_LiGu-Hs`DR=Uz|T`v}03|&GuwoiD*d8Y^d
zcNbfFXYz~xH#Ye;n#gNu*0wVn9i86TBK`sv?TDX0zKL%C+Nmm*)YQilnuJvqe_%i9
z6ZDg6Q$M`eI%U;-$!0jVH?-ojiNiAR({J%_yL&?~G2%~_PRq-ZNDSVncPK3tH3te=
z(Rww1!jXFHl}0vTPExUzX;~<5+1K!Wbq9}OML)EE%bexw(~5sJq=$tYl!N}K!9KAC
z^*)MkE6s7Vv?7)>x4218MhngejvA8?{QAGH)!b5Z);b&t_89$@#FuJjo1_}%twCXM
zQnjI_eR3wUUK?e~3K}D`M<lxa{?zclE;CN$Uo!dfzt*@@TjT#)e-dgt)3J7D5vcy-
z;`tn3@W%bG0p4+s|JVFK)GMpErdnI^FAjaZS0BU7y#<bj`O06G$6lgmU=7ZhCHA!V
z`cTm2tY+DGSuQI@8<PDyHrWF?ssA>IK=C3bq$`hY7*)%-aNEmxoqF_)^s57VhW3@j
z2*>Qia~~YJX4gjy%3^p$eoWgmN!+i-!%B=ieez1}?AFX(!?ypO5%e*xNg;DxpqPsw
z!cEB<u7?;L6=LpyD350?g>D!~8{AX<HdZH}yc4@d-OU}mIx{VYW;{N=ONouY(ru3a
zUsamJCB}FTwSFjOTc@36KUG!>?KLMl*{dK?E4|Hgyj3}bx6>hA9p89RQsZm!Cs0ML
zd*+_JKUJ+xB1unB&+C~xE1dp2;er_3dPY6Y^)A~Pb2vz77e#bVdlbD87mwQ>Do_}5
z&EFoz)!pJbm2Zu1xC)>85nFY$og;hEDY<n9A}1e#-*#(K)JmbXb-9>wMcn)gat210
z`gz!L8Gf(c8tB?e8kGf;c)oAocprv{CcK~gVn6$7awf-2yU#&$-x)VwYDwd-J^0!Z
zHxno8SJSGsCf{bn>=7N*(kj5D<;OvKJllx9Ui<c%lmY|p#W_-iSivM2^7XYNDCYlD
zzP=&jyzwfe)7ks(f7ZtM)e1>v*T5<*(;N6*xwvyoD3VY3Z2!6TaaLH*?HD?VQFH3b
zT(Fb1K*(q71@~O1mMb5Y;sq7GJ}th%$TK<+)w}xQw=3$E<<+e4!(7<dgYftEV>eEQ
zJf4ShjeEJl(k=^G-Yph<lFJhUD2bN5n5?}Gp5=Hk!INA6(jFg@6(!1RVQS=1IWm6d
zR6R=?YwqbgkMf=Xf<jtp1T7JR<s}Zb3;uTf+p$P_?vxWPVfgNr+l%DAIoV3)e^83i
zH{P-}NYKWSQ(iKm`5+xTkV@8wAudRN;9ib;tB!8531VK;=%E~6;4RXQvs`AZ!cUYu
zRwL!wzHiOT4*)42VWt0S4PS$Vum7LO$asFzO8<a&)jwW&8Atw^><Qu{2A8!28ze;e
z|1kBw<tGPk-TuCvL;Q*y<0Aua`PrHzM8gn1z0ZZwxGgVH@LcdOh=LPV3r6fL$8f@)
z)s5BFgcCdt4sIQ-IHT(mjYcC{QD53u%{JOo!*{{Qq3B!?aLfSLJixVIs0_Lt4o%=)
zK(y$96K$a<rF-LVYDB#x@9!MQ6-$B(_&QRy#s5@<S+pbXi6~-=q_XBog9Oj!<yudr
zvr^Mb69(s3UOXfP!Uz#dkB;JMmPCHtwjUi!Pnr`FTjhTVkz>zKj9w%a1z6D|I%qhW
zBK7D_o(A)-mD4E2!Z$_RmK&%LOxR8+!BMaKk@(tlRPH)k`(L$7q)EbhwlO7d_DEbX
za)NRlmesM)I}Tr_z+1OA4U2;mEbeI0caC&=E5+YL-l(j9hUE!F7OT5lA2$e;?&cSi
zC%PDz4ON`~E?>AbJHxl1aosmyh$>w``{4Apu-tF9V)<M7!eYJCTz0w4OnH;8q03cy
z;E-`6ikz!Co&4cwzQK*@di6A#oz#$#i)LLH-6XnyX2ZpjgXQI$6qoDQy)7&=48buk
zb9dMAZIU~21aV)7*<7zO!A^y-p*u-yp=w??LD&H|)9Cr(ftSl+bJ0g3U7|H|rWBDo
zM~baUGc$x!Q%{xVy89@u7^SYe^Y6Y&4^WgZy=FSKCpN8RC4GgJv57a~%=WSCWE=0n
z)xOf&q0*ZD=Q|y@`vumSC`@+k2p3=3h2*ynAA%bksZv^*)db`Dg(N#a%#ZZ)bS9O4
zswm<>Hcir6G}p6#BfB*x-|(*RoLhs8u1l{FiaQkQmSR8L#Us}9e=ov4PvKEdVf9lW
z>6ITD6ZpSZZ_5%cO8@3d%HGB$+!Kv#n~WNx%&|b9s~oSZ9AV?mE%Se02?d+Znkp8Z
zTM4VjBHPCz?39@`65m>a#~fd0)JQzU&*jZu7rLJRw*36HE%BwC&3W94OlptkOU$Js
zHvArCIivQ-o`$@fI5Cy>SYN_LH(jh4ZW2!aeAiO9Fbh_$;-}?JUC&XI44)^Wq|C~D
ze%8>e<jbi2?Nb&ZPuN90Mu2VVPl-DD_7D4fqqTIG;9BT}RApDQ?$pbXf8Hc~@b;cx
zSgxrVoOctKlzQPZI3JTs{Anci@z?PgtY~QCkRVJlC<BYko@QN@vFjfwKk1LWY-3HT
z>)(1@L<3S$=H#kDlqE4FS|yAW+rP`jzr0?L-e-d(-Na4@kiI<nSHQ7GOOUh;1oj*9
z1|C~$4}~uNhtlcP(?=z1Pf5F&<kAG86M1aE&111%s|5)SSH}Dn9JZqIUw)}YWn_C;
z6(`IsUcfr;0l$n8uX>@MGCEMPHj14z7yD&ht!FZNcT)Bd_5F>PL7vICx(IQpZ*|lj
zrcX5=dC42(rAu?W&pdc=wal^|3PSe^3#Mi=8xKzk66%G@@x+I(^uCG3eSC$!wCgRu
zt+}ZxLuGHTALO2fQ}Wu)A+8?H{dDK`c>eHM=KsglTL8t;M2*@I+}$m>JBv$jclQu1
zxVuYmcMtCF&f>nf2Y1&1LGQlbck8cPf7Q&^_MD!Xp55-A?sJ|#hhsu$zA)y6;B^vk
z`Iv4~Jy%j|4Ql*u_nh|JH(0sb%&O6|<EYeFC7>)PfcY@ime+a|0F{<gx$+6ZQF0?=
z8B<MkuWHWu=R%`S3n87~2Punl`}DoItAcJ2AwQ1IL}^S=8q)!8@d!%oH!3ime(a@N
ziiKr#5v8ojYjC{5*1e?88`M;zSX*ev;x?r#DiZ!&?f(_8+s5B_8~lD)Amq}lLCuHz
zg9Q>N0Qd{NN>2n5!r5C~2?gAwQ`{h$DtJ5P!3zR)LTY{Gpjp_`NPSOeQGExyk^dFJ
z3#t+r?0s|1B>I$u9=L;W5hrfX<scsldVvyk+7TK-gsA#Ptm8K)dCp<zteU~nPN$Hr
zk6jwg{E?r^&_btxr-xlS$%MEdiTmpmGkU-^s6)6M``787b0*taTKckDiWc`+X6&WW
zvD*G+O@*~<pchczeBr&$x}?{<nM?0!JKsdMXXW$yFbQE5V4=&Ke$wcgJ?>V?_O4&b
z!SLfM@dQ!JOj3Yj^a1t(D`G~^@<?qn^TXwXfAz-)2A-C(Jt7~s(VKAUenWPmBK_=P
z$%^JFIH)-h1EI9LYvrsHlR5zo`;(088UcS}5=o{@4SXD6)fiR4#%7LT!HDVC@WHv3
zrTpKoQP9u)+iPD0BPQNWDwDxpyo<yAw&Lg0%a)vj^ESWKbVkjepX2>Ry7@1sH`+Ql
zCk14$a2Qy}T__V+M_b4Y456!qQVx*R4}?=SfXg$A{ZG`6D(FXM2T3a7MB?c!^WRx}
z{5KCp%`l$m{jO^$@slmnf(D+ybYvsV9}HY6l1dK$%<Z|LVn2H^btT%{Uxev5N$R;2
za&_%GMdi6%*2*;<7h)wcF(3cM{S7dV2V=RG%eXtD*fqN=oc7Hm7rI@E6{XW_U#j_v
zEI9{NxdP6E5kv=97-yC*;62P|0Q6V7#>U}f*2?^WeBDjNE4%#N`L0%Gx#qW@;v<Ug
zRiIQ#>a>`s3?I5qyy}w?%1%}6&1Y4)U>9*d#=?psyES*)?F(fr+wiWW&yl*LSOv{h
zX#e#$JLEV7LM`JelfTzfTXW6Z%h_Om&>C-g!^tR8?S$PbR}SB2);iKJ{$MW4rt0^6
z+RU4M_)~W9oQR~&t!Sp0^c7PoWCR2j<q@Nd7}~y})lrj4mu0I*MT<Ep$$3xyYFWKt
ztYvIFo^y{9yobC<adl5|gy5z10;M1jcYSgv4w8Mt>iB)inC{~K>t8m49weT+3enE-
zk%QumNvRw6)=QmOXkdtTVyGw4bZDTD2Kru2E&^m-&DWugWCi&4_F$D`9y|t>R*K^>
zeY07qIDV~Nww-rb4N^y3`93XK4{r*~rcm;CO>&ZFW`^fCeJw-mgb{zL?pftj?=jw0
zN}(3FRUHXy+=xXcowUM3m#)aaEFkV3OYB9+wGbH<IOt1|s7k&Kugr=<Fzb(pH?_!1
z9EC`!!Ps6RMLV}I4E~GGjQ)%C<<F{RCFF~9tD`M%pU<LyyT4W*!<2k8sp!cnoVzUK
z2oz`sLDYe5+<hh--|XFCfG`RzKn5op_obhA>C5nF=vI8+O6q8SuJf4URLd`96|TAS
zPyt{%(ytjELcPb&aaya^uMRJ!K8%tkA}c#H&rS$^4ukIkkcfNwmn-|?29z4R`nMTi
zA{}fW#^eomA{4OxD$UqKS!%n~&NfL7EBni2p3IVewTJNy4(5mW{QhwiTmd&TGPxkG
zay#ewt1Tpq=26SOgE^c5MAwTO?joV0PD$~6h+d05w&hG04(T9&Y6T@IlVHUTI0~RY
zyq9MoW9CJk7b8BbFGPpoYm#uc(A6at)%De#?YSP~9%@52-@=XeMT0l9M#WKMX=pT@
z6(f$?(8;S^EY{X3lEH8kiQ+;V8`i(67%XKu?380-9uaMLrzE=JA7!b)Xi^3|Gu^jo
zv&DwXLmLT0Z{9og{{kFt*Vd<eho<k3#a@GsvyG#4n1wwk6YH$OCDOH4?a!D0>OY|N
z-jK+V*-S37rk0@8W$3zoIk2v9ss52X8M)pie{jPhuafujHIa2kN~>6^M5fl;!!_NH
z1i`r?*)|1utxA!t%K855;e$bP_hc>Wc7FIS0iD4NC(`?OO8haba7FTiu+@e3hr0eo
zO|Z=^Q+xc27j>m@Mp4SdrUOi;+c1koCk)>^$l%YF(b}4g<}{I_|3}3cZ{Y^;>Knku
z5Tej7IWl-;1ks5vdM99|X|8I7`yWF!VohN3)b?F9jKc~C`3`+uvL?b!4i6RU)>S}=
zC*<{87uC>4b^xsyaB`c1Jn++7{%((1=UaE6AFhm8cdlHhT_ELlTBxVMUppEu$JAd*
z=nm(sRAN9zM)+Iqa0JNf!h9`Y8KdWI>wv%zQpS5Y_;UFH=;S*foKVlM5Clj(O>n!K
zp`d^UFD<VL?Bc}PS(W7A?^d)B19F0|;f{a==^N$+DN?aBtbh4~0@}c?0ep!P1^5gf
zZOlD8V3!2^^ChBKckB-_ARGhy?IR)97t{b{%)QIkYYg(86R_xVCNvQ1ziTmIeF0U2
zn{SN*{IdxR`IhzPIE?*Het?`<cMT{sFk1_K@6rb>lK{)|%*B9)Y2arh=?jI2RIUS`
zhNA%QDGwHreis8j68Ki!;9GebWA4@b^P_<N(-w^GfR%|}{{bZ%(Pk+8RSbytUwHsn
zUmibHz(s9Bi$t%#r34F?gek;;AaKdvBM=~I!5zybHVw3IBlvt)@PA;;2oLqwjA-&G
zH|C?DQW~v(&J4=*G?U_DWM$%+n2=Hc^7S)!e1yQ4HZ~zQaHenAY^I8wLr*+|{i*~;
zAq?XRnsApNvd%wyyjQEp2-_mwEBEnanNJ$U{5EBI2gPdj6#DI6Bm+4Fl&%maT4u$b
z45&~NqJsJ(oiMFx=<T~1an>WgoU1890^3vIeZcm!{miFmY_>pn!YsbhpM!#^*t;_U
zx&HDu7;?f*?kVwZj<CgB^7>_VlF%#OBX-<dsSO|EnvO1QapSjGE&w@aLD{&Z(G<g_
z(!w|z1z5p1^Da~^0hA$0uGZYUxiI_#lqDIvFmz-sY-xd0+_YVnDR1ja<4f*ugmM)x
zVQP&;a^v=NCCy<R$>Rnn)HRxdqBVsFD-3eV`Za~FVM`2h{{NeHud45}BWaByyf^j8
zYu375`A7WN&~FTqPP#MJLn%2~QHk<LDS<yB^f0LT;a70wub2;?QF}GK)UDA4-`@1K
zX{iVPIqYjw_BW^YEPrV;m3P-o7UA8Jjp2nQUrrV(`R(Yy+1H3Ednn01Zj}ccu#Hmy
zCUcYJVul~^1F28olA=b__J%(kGM-96%D=eL)GQdaPit;>g@M0wfuUBx3P;x(hh!ZU
zU0LL#fJiyqc>fea!2yQ^Tzu1ZZKRVM8%Pp==KR4r7}w{PK-50m+1-^d)wy+@3Z(-H
zC-aBz%o~P8i?1g<8OWX-r_MyK|9%!ss{FAG-TNXkGr~i6Wi09Mx(8M;H$r9IM4mQ`
z+UY2AwUxTTxPUG5tQ9i%f%@HH`Cq=D+w2H>yX|ZaJ0c0Dh3f<L>B}M7`%aPqJ3xrF
zA8>B&>E%sbN#_?Db88UB(ps}`Zq{-{&ZTa$r&ax5yepny)?T$(HD%6A!r0fsCV~k{
z6|-3>K>~|ryi+*KiELOS-gY-gW|C6@djNA52#{<hN4V9(LR5sp45L^<;BQrxUB;>=
zrgn?DqNQdEss+Z`2;^r?ipjo8nhg_cNI2CQef$H!I|~FUi}%)G4XXFl>4ZCO;$|WL
z<<Izepa>`J4kj2ld^G98+krr2Kvv;yk}2*%XDN1jWCbG?aKRT)=7dP<NbT$43b2A;
z+OQ1_y?%$&Uxb)3X8>+wASOtce%bM%z`3TsH)vj}vUPEW*hm>e46L!0wrL6L2;OG1
zv`Yu1NJrhlllxrTJLLSG8qr^Gzhwl66t*PgfnaAF5+3!`RgS>~ZXc_Dx$#A0_+muE
z8|1|{4kfH8TH=w6=f^k~)5bdmMDfH#US*-d0>Ui-Q$%>Z{BJvVpg&T=xq3G75+VEK
z)z2CNd$zHuy&}9a|I*As3Xi$Um!8@6d-fJS!VDIF&)?8Tc13kT9qIjuYjCh5e7&>L
zA0*dx0drLWB{X-cct3aaui3!3ar1rpr`YA&FLQf`SDZ_y6xiuCY%cd!LeBlY;qs1N
ze87r!mse&!)=i3JFy4l{Hj)u?iTF>tX|x8Zl~!hC;+g2j+X*Qg8c(uOeA~MH`#_!u
z_Gj1@L4<J#JhfS!nEnu}2x6p&2Hs_6<bm)WT4#riwmVJ|O3sl#!k^gP>-<d8oB9%~
z%xPY{ebFoE`p~W@(U!9(nQ*?E36KFmGqQ3>00q=mupOd)xhOZ2GSH8n4$ZSJ;=;&=
z4g^I?E7i7NUBD4gYl_}1-S$>WzrUQU@K{VZVNgZ7`%m?-lh&>|lc`h9wGN6zK8RHk
z-%;d@@;=b6nV+t?0!Dl&(x@r^1Q6t~Z*<QcFH}OOpx-aP%r!W|#$L37^|^ZWefkdR
zq;4ci*s|K00lq1q^bRLt>|shIMp60A^ss@y@XJn9@P)1oyUJJvy`Mzs@xxrr75%+O
zUNs(sp<Nu24&*EV;b3!hz?w8_lZpvL_r9*Gj8?;IiH8r_Q(Vg&D1P90T{ZQ@TyoTi
zrqU~rg#=Js=;I|5Cd9`oMF|@uL6Ta*KTs>d5k?m?m?%z1V=sv3{~OGo`YOF7e-tbS
zbDnAFDQIP_`<X=t6QWIBq)ZB?iV2}Si*oiBqBF{&>IT#uzfGN+8g+NGDu@F4@|>W+
zLElUv<Q*bT<`twiB1T$btz`?~n~TCbe@f33Hy5c3U9P?l8{l~|W}U}D+WJe=t@9n3
zCs>BOs)a&6B_=Nm8&QgHk-~ssM%7t-U==PBLI?H&ud?vyYVr(w-1u>sI(U-kgLlBA
zDU}Uwq11d&Lk4%Q>_O1I_K{zQs_)nd%BL?ecy3moU<&eV<tX1=xSEKeo@wq`GNVq9
zJUqFdNdR}lk|F7PaAIsnvD-L)_%~>4+%7q$TR(l+5C3X#fGb4a*a(EXKb6{i#S|?D
z>&@RJ6=jKiv03#w6}kMptsg)Tv@n#rGV)4z1nIC*ZoEr12u}$`Fx<v2D{V98+CB5S
zIw^f*pICk$tF%B~S3aiQMt5_77kGs{P<^sb9MwB(V-RQWd5@oZu26kvcS?Gpn?nK1
zx)Zy~4ZW&Fxl~Nw<e^5Huvk#Dmj2xaz;GBmo@`|}uz@@Lq%M^fz8XMyQ{y3_)@(h*
zae*U!YYq55<SI-GAioApaAA}V8=+%gjt8jv3=fI5{Q4TB*fl)lT3>?Z=-N})$WGF8
zaZG&Bm~?*VEyJzgRt84%3v3&OwKJ<XA5RM>g?lQB&L4EMpO~K_1}bwfK0SmCpE5s`
z^{!vS;KA-}YR1Smv<|4vBzx7Sbb@{tpIXuGod1W5<*j}}b()qijQxkofzbx_apbo5
z?rNQHJLJ6Ms3^IO8%x?AN$5v<Q-;0xp<YFXp0;%rgP|@N4k?&BT^q=%sv@vc=pk|H
zcgijhyHNd#!)JcDfP3)Fz+4GL!_s{n)Jn&W0#0JjQ7fuOkFePUvV6u(mS=+r_d`Q+
zis{o3%ht=ssn$*QCLxn7_e@0fve?Q*Xgf`maf7%}Zx>D_cB8OKg8I#lu#^+o6&;E%
zh9g>2fyTHdtW~5uQ@0T2lBt6|RojAbidlh{{&bkJpa;1^n?AL_b?k;&T@$6w{v8!r
zjZ&fBBZP>VJ9Fn2`vGhDu$wGyeU3}R7>%Vnt0J&&M0V)gB_;#*#oIJ<4kz;;79ZTO
z$yz)j{WG^D_ig07+;pG8eoP7~1MuNSI!&^^-r5dm<Dn-)<m3un=Z*DcsT(2Kuq}LM
zk?%wgKU$tHx9eTKuAyFeZ28ds&3-7ZNcTzM1m3c}RDJ#(%K`%Gu21>i>Lga{Gy?Rn
zxa@KYNCDIIHE%%-_s(THOxqQ>vnDBBW<L?$6EZM_in$rZCUQ9qyy%;9ojLrt4<_gR
z+?gll{b;1$Tl99e>QCxEo{S4{?^0Uhon^eqNWd21EQ(XV2g&)@pRvVHb6_)ZktkF%
z?9%d`@%we3SjfP#o2)VGCWcKHOJ^$C!~La}ut9&Den)AYLtCS+$hN)t9HNn2;`nr1
zoJ;(Ygr}6}<=g8e^LaZ;e58d(oV|ySxcRQe#^Vo3orMLAJH=SK@I+e~!v8ffA`z%A
zvov-qj;_^4f;Na*tD>5u93$SXM~|wHrV!#@BU}X2q~q1Bc!l+mU&<n9IHoO}uPYIL
zOr&=@l`ijMkKvwk!S#URG0jr~0yj*y;_PjXV9W+v|Ly{_@?ztNpeMc~anCt4Ohx}1
zW+ozV(5vM_m0Xi%)>p$mv|~-z5xG_sXqglLXmfYv%*0E;D?*5xH=S!J%tyveY*K$M
zG&f>mvR@ku%>1Ri%3B*}WcCkkT_QI3(F8+LV?n2vEIjf68D&&v2-1x>fIn;GNy+aA
z)!xt_IpXJ5mn;P0FON+yKS3`ew%z)>a(9tocCg^3cqP}&ud{_|nDlE_?zW^kL!|G&
zMcx$P@ieskm7|2vxXr|wcWBIz@|x>mS-b9ZQwn&^oZo!+U<9ptcZMfB?)!bFRJ7|%
z8O$_=DG=LHS8#Tgea-A`4pY$iC^w48TJIbv{xW~rk{8Vlyr(NS&Ex0^o73JzSpA47
zsgx$&AZj>R`KTgNqUg!2xv=WkS?z;fPdGXg4lyprQZD#0wW2}3=8_iDg`-{Fmw9zk
z6PGA5aI$_29MT|cHH1^#3HxejWH^e`{4k+x+Dg;)X+Xajpw=x~I;I)4&@yn!zUzu2
z16JuW?3VHVn%9_x!GS$>cFsAI$qddhAIhEl>tCCiq%=l%cZr?g#5i96`aD#Pb6Gv-
zbt1odPVj?ge}7g_N@>W4a)sUZ*O^uNa9#xrD_xZ<cSdtZ=>+)q(|340ZnMIQ6B@=`
z*Y$Yu6tFXyG4aQP!y*ZP;X0m=`8g?#JM=fe+zi9`<)lB#89M?O+*dQ15>OmnNz+p3
zdMi2JG*q%bMiNvVk0YWwsjWKsYPl4egPe&MopYU>bB&xyI2WC7e)1K3{A4#tNTayQ
zd}cNl+Ku|e#Jc|7j(stPIm+VLGse=&s)xX`iqNX0S31@{9#uabS3j-fN@ONDgJLjB
zvUDWyc*{S^&J)e4{fIV|WE$o=8whosd+;WVYuaz00&HN5WTkK;idOur`?+@3jA(R;
z(|1%I`<L{zdX<>%R&Zie0afM6k*4{V&wmQ!e>U@#j#IRy-LL9qaeU(F)fzaKT8_2~
zIs5fb4H?tLESZD<qi42@Y<dq+VBjfU<nOZqR5E~0;Fw;OsX&;^mkx7L8)wRtnWLJ+
znI$dnHNFMWB=6>rHLO{5(#P7{$5pm=6gfXHrAbwix#u-xjSG+O>t~YjH1=20c+7~)
zXN-q~UiRvFZ>-PR<nVuz2_itX=$jIk_u%h;yG+G`TL*EQ<X^Vp!&)B?@~V)TI~#Fa
z8oR1q7s#_9x)^RBbvi2I>35GFd39x-d&6xL%^9rx?#KbSIZ^vSu(C4u%?Arev~zKl
zG}5>+O$TPHP9kgn$kz3bnWl@#wsKqZZE`-hL3T!ZA}uY+Hj^a~!e!P&iGvuQG)Hgh
zRv2z8ZXvcZwrb)K70&ZeB>?Gg0ESO*2~HnQt|!`DD+teJmc*nhNBGr-QNz00L7TSZ
zD5CtDhj4hmXDp6a*BFEbo_t_>tyW14+t-`hkvhYQhKnK{d3v8<IL_95i}yj1o@9I0
zk^%M9)3_w!A}7C(g4-h5v|r&ADXN**6mHB`B)TUqWqpE7E9}ktBMe74B&Igwl_VM;
za$1$^&pRonbs2dVSmow(HvP05z$4Zzc#N7r=_i_sK+b7n7l%$SfhshNFI#icVEsWG
zSQ7wu-zI#9c_vlIPXtNyl*+zyIfp|B3q00J2=(*<YcJCOo4g;tN1)%#`7<cO<8K*{
z1h%QesUQa~z?I{p-vA*9ptcC%RFMN2QPkMKeie}c%cJ>VfmLqE@XtTs=e{hXX*R=q
zn$XRC0j)H{kJTtN2l{DiHN&s^n`a_*#~$HBAn}I*_Zw0>VQ%CLw3wT2ADQRVaDlOO
z<tUB^h)H-3`kdFxa@68R->`pX;yDzRdu~7=G0G2E->qLv*fderO>e6aAiXLGXio>i
zaW3`882|*Fmv$#Kn}p`L7N%k~j0)*-Zf=hpcs<%32=9XDV=X)6yo1~PA2!<?uiGMT
zVzw0GNiS(It`)UJ7E&fvM4EaNT6^V0Gu7~d7!8knYR!-L85XEX^!(IlPyOcclhXQ{
z_1ql|Cp5PDOFWG0);zOE?M9ovIb0s<=DRG(91sdvJz1bo`l84w`=eCZr984ZGO5RE
z+EL;uO!KY>xl|_T7c`1mghal(-bW8`IoR2LM7qL~^(4hN^_cl+FKexC`~KKD(h#<T
zBj8OBQSpv<oYgD6G?9txmH4qkMC_VFh%lI+j+~<`>IFp6l2D=Dp+lU2vhUaM0*px-
zAG4XR)pB*W2-So!jdJu?Lsxamv6_Pw3D*)<R~%V%ezKaXHyN0!#gmqjR!xPfpOzMq
ze{bF0_#jg|QA&DLV;XoWL4w5X1&x33T)*+@w(#evdt*z&`f3JHK;_7bPM?sqD|&QW
z?!1Q3!`CM=lo2?B^|O7<nVm_M?4whICjBF5Sl-&L`>Qy!JM@2A=gjI3M=D;$$|AMK
z5J6njLMv}I&k4spiif~Hfa=OqKE@|6HRWf-8Tvqebj&kjxy4<1W?$_NdNI~Y3a2)v
zBvjOBOYv+$TPP}IophuF+@BU%jU}|{Nd(0yf$H@Bl*xHwr~r^Ce#H&X9`sfSVi8Gw
zPkcfYB7dM<xodS0T{m5)4YGgQ_`Jp&<(cXRq{As~aUtuQe*gwNU`G8|LyT-F%Q#rd
zK`P650QiUiCpsQa%mAH#{BK!~0-e>kMq+BC3N*y7c&eF~uH^<cI3JJ{PywYAlTzZG
zPX<5n{o32`#`qxvR-(sin_P>rUg|?;F?K>^q~%n?NhCL~e^$uQ?liP6=P>XpYi42l
z;SZ}7gSaGLXi?gzfipUZxJeWw(jnFeB*#9BL20(rXU%{rEJtcBO8qr{JM;6<Mxp5i
zy&7wigqokZfquGkVFc~F6BOy-pwafuJ&K<xf6vNpzTs@+RKj-?p5yO)U@xM2TCmQg
z9r3z4l{O~)nwxH3Y$CbA(l?bxiY2kLvMt*@_YjNJ|HU9?T4&M|!XUh;ZMKVIlXX(@
zJGYg={l~x~9BN}r6V?qSc-<#4uL{-lva;Gp&q0Pmm1$W`95~RmD}%Q?SI2sY1>HX%
zg$1t+z2v{LKb=3KT^poo2d#sP0WizvjeQ#iOCH!^QU0+E-JXG_Lt-`Wii_*p8j4|)
zN1ez^=CkqiLD!ekDT<kEPnD5=50PY==jH=VOGCoQBx#v`nO<F)iv{IN1yiIM*2Y0J
z*NX3)P1-8zFA08OS>55GRhAa#y){#{OJz)QPmbn#o8zhCEk9CCXFD}fmwF8OU~62>
z^@JwTI7@xHIehZ-n7(mUlr`|mpJ~^~$s(z=bW-ojEU?kV6|bC81}w-?1uU#n1%xPx
z`W!f@P|^jxDOLqf@;^2YI&&K{b27{qlAfVcAnD~kNJi9eBp1D070$+9{V-wOzWUL!
z6?av*bHXAfChc*nLMH8@>gb9`-c{7q-rZKzMaSD2{rkbm?SGEIOY(I_CoInyh8DzK
zQN;BBzh9c&|Mx_2Syx3j-?XtJR2dRLXDj%_FM*FJ{176g`Hula&j6TI>lhmDS>j$7
zEKUr<VV4SKls{p?#PXew+F*=YbQ)ltnvSr3A!!soxCh^!5u8<5e~J40+vHE&`8Q^$
zmA!mnDaPe|E0_EEEQ;kHo!^Ak4sp!(UX1lbWoP_K6UYh%Kq7@N$ItG(o1&vZodR)C
zf1w3XC9XRLAu!tO#@}`sqksz<(gbj4EX=5jJsQL(_1M1rnom-PuUCu77$uNGRY=0m
z52?hAu+5OWc}`4n5vFr$L$}sq#C0^oiF$1)wVj(q%GS4LW4t4mJPvKi2h@@S`-^P>
znd#eqF@wDSWmabrb#bZdvw5o-vTKb7;ir=kUCi!I7o(cK`TfyvV06`q&jV#mhG~X#
z_)pe$OfOioh{M9piN?2{{n<r6I$5<VjK8eiqH&Ia<DOfQYsf8IA{mUJiOR#7p0Rzh
zYnU!#c7I6nK;ibRD=3_V9pyfGE@aaV-JtVv!6%XH$=KRM4BHPMT8q1S8S9PI#B^%a
z9?rxf9>6_gqv|vx1rLjq9CLtfl_*(p)^TP^m09Y-?=SD$#8<8_4&**MoN9dlWs_!2
zVdO?;^~dVjBxg)n0+%FA1H6((`)POm7ySRWPCvb}UZafqWu710Wy9O5D8Me2)j1TP
zU5*;i59Ykrz2Q_t%8c|E_TpEo^94fJ?A+zX^mSarJ)N!&?Og9-l!;!iw#u2JT4$kb
zdxgj}ug>!y0ol{ZZc=8$l$$8U^+Huyq=n}`q6bISVO?w1t7daczhtZQUE%=KlNr@a
z3ubVDuJR<r<en;U{N_#r$L8FlYMJAC>f%<4_{|v|Me%F~9uL1oeOH7{v6jQGx(PM4
zf7al9DdMyP0n!?&=y;Z9z=djrGJohcY0I6tJDW<7>@<gr;sdcwN$K!Wb7>7hVpz09
zhmqN^g%u7bM<S=W%*ckIKU8hK+K-1dAp7|ZxpUqIv&c4&M9lzo(^AyefUKZn)ma^2
zm)DEiDOdMRSnhu1)V2Ptez<PoXxiGH4WoC}OOod(gi^XcwtHw?<4dxQl+EO#8E80#
zlI4k=9=%tr;qo<#8mQ+A-T#}J;v8s?-fe-wxA<_4n`o+MV!1xI@=<iol?s?QVSE7m
zJB6PV>1VXVw-a<dfeCXI-M{=f8DA|WF;a2A8<Qu1JW4sV_R@^;c@|Y+?(CtNGk2e|
z`^@OFWx-3Tl>X1)zXNE4w*)SQ?Up5zZ<b3rjG2{}-d3k_?CtSQ?}SQ}9ZE$J)4Gj(
zH8|eX*Zf0W*Zd4bCi_w}Gz~nz7#lwuc=hd+EZqt;FQ#h-LBZ+;A>X0o&+zrnGGrO}
zErleau?(Z<!d+`lh$(-d$5b=CCLY<U{x>XdUWI9MaPF7n@TiF5lz)(Ra@v@?-WSJ)
z=8W+>Hfp?g1qQx-zaHX}nE4g9Ps%Z<3{PRHJ{{+%?>#d0Sh-c>e1Yh7@hHLYNIUtr
zb;-TbtrhFlYi8({m0SFU=%l5{x{=w)=argh;jg`WBfH_X^6SPlC&hj_m2LY;OsU-v
z@19Nyy7XRH0%e>s)}G9t47r*SyUuDUfe8iFt6xM3sK@;R;jXJT;wOE^xrKK42hM=5
zZi~`XZ5n)wRM)Pew%MGPAUM@D3Y?x~#e<Up+d@_MG7Bs|Z(&7jp)TFtD(2Qf^8s#T
z&rv7Qc=b6+eHMP<6>fzG1$E&jlTn0NAFdA8*azRz-HgG%u*b`w2fGYiFiQg+egg=n
z^|W~z8L9a%IeOi$)FSOYusp+Bbzq?FB}+Z!1<(y{46@~kv)f(VWHLHl#P7~VU+c}*
z$%*T@fCbkQUQ%-mzUA8Owg_VNFI`l`LeuVsW%MtiT@T@AHv!vbhZ;(bT=lsmuNsVX
zIT^z;s=bx}{RK7;%1k*5vwb#&ClvrxAIED{&PbC&HY)aQ)wAr%y_jS(UMV)qaYy15
z7MIIP-Xcqz!3J6vQafJ%EEbpWO1@j-;y1%|=T+ev%W%8gN<#Y|G7BWc(0o2k|DH(C
zA7mzk>5IE1N_dW_sqwW;{%<ehjrUqyhVOKYGL+z{0d=E^?d}S7Qv>coUZKzZ{@*U-
zIlEc8@)WZy|JZA(LV7*F_t>rKMevMarRj7;&Lp#}t6SOIs1dZtq}l29yV+86LEP1^
z?p^~)cAa*~)$lTz<-h(yyCO+$eRRP!^0jzL)6h<mwCi_6R+zqK2lZvLb!Vu3!TMc~
zvN?T)FTik5_|&0FE+U$9{cyf|{Iz)J@dQ~=&tGwguR<5LA~MfQ%UaJ?=~$Q^nw50S
zynQulx<R>8Jtu*KYTpS2u_LnZC`;0WN>-TSHxEFbOB2&?ZKfC_Gud&%=EA*^%d;}%
zM`3+p%gucSR6pmw7Pn5Nb!a^xycTm`;{(Yiiw@mGL5-DLyaJ1Rwk>?QO$R8*qgqpu
z1lL}tIoTS+1VUW|aZXcSnY-=Wh8DfxDJ<WrBk^cX8$q1Uf;p)X;FvnB=ttshhK<lJ
zxG4{(!tLNZ5j{J(ujeQ&K;47LxBQOFZOww+C7z_CKpkz|8~@z~>k+xO#WUM(%L4e%
zDtqnl7?*K?-96Nl7^Ac8kLzLBW;#i(%j9Kkr5tshyvA@Q4)Kh$6-9V-a#xzn(Y~gW
zMWjClUK`2#q#>51`Fl>o;d|<332$$Jd}9yS-i6J@qWHMcrgyiKt4N75!*OSrDV58f
z%-E0_=){VX_?3;81@=Xf!_tlk5AX7(grB5c<5*3Y-@=&f=nr#?!^vsA!->;Hnnk4e
zpD@_ly)#Y$q!z0j4=NX_3OC|nmz?m0992!``v2*WnjCW$U5F=L#xE>+wT=j3j*S;u
z#fyG_{LGcGUxEu5w6_Ft<-GRTfBO-t+TZhC`naD!$bm2pEfdQ!CLodJJ{MfS!On-~
zM@m8!j5Ap7C&6j5HzfsYP<hs;om1<24#-yt;BwEodWX`rhdS=(7I!5pm>qYg(0IjT
z#?UL{9J<feQ)-RqJQ$Ga_|Ut>2-a~)6$)gS_UwydRf+HMqtVC=B|C7VwoE^ZSupN6
zWH|+yx^5C}ZJCJy(HP+0sax8qS`v!WGjGhpsa_w~2u%}Z5+7z8(-zN?7GvkDCMA=;
z9(&&N=ndqSKuenRsXBEcL;Zy$s=&BT4E~UzW_+p64YK4LG9CasS@9Ht`$tty-kVQT
zmtpRX8(A-@6|<qo&J8<fNVPPA&z)U>M#Ys~`s^NKZCZ<v6?bviEn;41coO$zIVY&&
zvbD<cH`JsmvCmg4vYk9QO0b)Pg^&`l`Hcbzc-{*Yu+1DP1O4V6Y%(_wkO&QA{FDJ3
z)UmO?T&apiv@M`fiUE;OlS4iAZ{fj&z$H95KPNc<8#uq=WN2U;*s#yc83YeC8dCX!
zps9(}k6>k}wwy7C(N7N7L|TZdEs`>*rJb6A5Cu(3#j{LUZV>x1oQo!sDlnvdsAUWu
zKvX)r0RSy6%bUUkibwGDBIQS&Av)%Pti13)HXwc%=eujX^UjC4FTU1`M_@Q&{WmZ0
zgO?zc&H$96)Z@Xlh#PW)9ppqyPI|8Iq<5G@^bRJ9mYm6|ujga!`wu08As6rY)|&a`
z2xQNy!ARu#kl=O5c;1{Q|GfV6D7GEiOdQ9^uagAt_;OK;+!_@Y86H4-1sIf^K~a|!
z*sz#DtavI0;P`(to1?@Ww(nX7HUv6k?(QuXxUhwH#^ncTV$?wn6z_~{FWSK$%$SCj
zWF>ZUhY9rjgNSO4IK|K~9cqhjhOo!wwQ`+ugI^8PFph^|1DFO}*(GOaX$1Vr`(rYC
zDwZNH4y8<8?eaTDoXM6vq#G|VnF^sr1VYD!o7OEz>p$mXg%sIEX`DtvB$W6P_92AR
zM+)9LDrXQ&psr5wxoji==cH7<S5rIhyqs7lg6Sd6+!8tXwyoGEooEQUZg`l9kk`ta
za-@!kFgTFP#rayUTvmsF7(d93C_@Luzw7vsE&{y@VFT;-3EM%0fH=zTwDK=ImokHQ
zfr62AR~5l#hq?6Fx4t2)rKN(fH$v=bKmAhw3af@fD)Xgym6g|$W2@Q?OV2@)F<5`7
zR4I+-{6wJ}#Yi)p4uN&><PC?s2PVS}-JmBPF1Djb&O(X*`Lh^99dqRi;E<^Hw%D5=
z*m5F_(T=wL3ouj=+K0>X?3$I>3D?CUYkdh;0+L1FLV0o|9@6SJ<vfa17*WMADe}C+
zZ$caWI_3);47D%Z@K>z=5+GIm&svk$tOd}%KsvVG@+DlueRL_aw098=2COg!dyhJn
zSk6<=B1|Nyrjam#6&Cp;%_z{K6_!)Wt~DcJ5VcPGV%$u}z#20_V#%#fWOjl&y+|}s
zP^k>B3G;zfb@rP{(+<j2(XI8M0(D0R?4cwP;9XcUM-u1&ue38f)v>Df7RNQ5eqSX?
z9~-m+NfM|Hc5Tp6{p?cHI-9tRdw>jDzC+cYyl+iA9_6EPLt{uq9Y4~&??wfhhDsTq
z&HW2&DEZq{Jx?P1ZtJ%|A>H${GEC)H(ag7?BP`K#fqrPx0GY;|571h!%}Yn~J?GW4
z6#vLo{WDVuz7@Tsc8G_bGT!hp=PP0Tl>9eBUOzdp`6si;F;71^i(zvk4uI%FzoL;j
z=3}prE_Pz<P!Tk&s(pY=$Z*3TK$DwSvBtZxpIzLpl5ufLuvpJf-5fkx;g2T3_e){&
zW}^Yz>Oiy?{L4n7d1rVo==u1_HOD-AOAiY1?Cfg+Y&v*Uk0}Fg6!O+gsXTMw!bg{6
z&@<DK|J<k~>WmI-UUkd+b0?HAg3!|NER}JOwI`!pPNO)p>Xs`oC!m@6Nl??LIuVhA
z^3pAWgY#a0iMH~!e%F^r@+K#OT?-oyZvExu8|8`RQy3!wvdGTQElkQSoZnW6!c|*K
z>uto;6{Dy-%7?3V)mQp8N4|W<An9!HtfJRp12Q@k!3mH2BF*2}KLjh$#==UmqG=U9
z#=-`}7cDhHj{@{iSv`Q=kzR#>eJ=hEW0cBJ0F_#waokrPnkdadYrX4@VWAyzn7Oow
zmpQtf^*wv;u^><w*U&J-=U6xKdxT-lxI`f=Kot~4PdsrsI1`I}d9><PPd`WLW#v*_
z@|N3r=dnKBuwWn8I%-3SIFy(sJE>Oh`Sr!tsC~U~0XtgK<7W?Ih~Q$Spg(m<>Cdv#
zXC8T1jKX6_^qra`2bPS-bf8i^06L#cT90KXDf1A#JnJrps_5rr{+s{sewwzh^Y%C4
zB(nzt;WLiZ&C(+M3wL2c3D&-;F0=TD#iuNA(A{EFudG@Y1-tbILC^|MYI^<=s%D|A
z<v5oiOU8w8)oA3k`&oUyQK_WL!c7FjL$SJF7RznD1De)MGQ+v-Qqie%KlYPq-`8h(
z<q{By;hQSeQl^9n|G<HIko%Xai(G4O?mpQ$O(9r`8DGXu3jy%Pe;gF!Q9xbD5~v$E
zsCsS4hyzj&kr^?~VFb3tE5rz!DlUH3&9sIP9_)OvPX{4=;W8ZPAnQZOj$Rl(7uuhX
zzhG|+bJUzO3X*m<cd*%stIiDEmtBl`E#3X4z80eax)>0rvXLc$T885t8@8gYJw#_D
zL4f16+tLE&w(DG;U{-%y+ri}g^j6dfZjgG;KA|(rJyuBFE(R@7OEXD+NYxZ9T$%B=
zppTvv|B0YX7nJGP|6ZW%k)3Wl{tdqG2_6If_V+k2Q<y)>vNd%&DR+8aj4`{Us>YV)
z4>ck5iXI2QEdfb1GXcqpK1WWQ@Jo8SKgZ@CnDnu1e<S4(R3=H(;h00~`yXar!b{jZ
zy-fb-UejrB9wQuK$pqnVlc6<1>}~&GXW06St)fJIdZamPgAnJ+j?Xy!5~K-Za($fU
zk_@v@MX|?H>csL_Axxt~@*DWkj~XRknh%d~?K@)qA^y&CDy5dEQxburEU<aekvTDh
zc_r!4T2~ujN#nRW2T=Xjp?K*dkSnR*+*B@Zfi7q%dD#9(Wy1IB#(rWdYHanmbt!I&
z-&t#aCx(S(v065rU?BI2Gim)T(=aKEF@1dT#m@34NMTIZ#Zfb-g;YY9tWeLzfJgfy
zz>Z}EHNbh}e(?~;zj%;+Vg}~Tr}7+rUjzt*l9+)++lI@$*w&JFaQWwSUdCb{t$C~=
zjaOkOB<TW=#(gtsnCmG&mhfk2`Bt*em1cB=R*^U)&op^z!vD=SU(k4<Qgl)<oQQd6
zc)V%k>*|t((=$dSM-vW*$7StQb%ZT#R5iHZYpOp%<?6H5S8;{k@v>;f@x_a_m(5Z)
zTBJrOCsm|cDgIk^%86lLOGA?A(Q<hhyPS9xQe(bIAdoYd+&yY$W;5|?KTEK`>=5x$
zPm1*k0WSC8hNHC@`hq-}H2Vmd*29T`vm;Ao#jrxc*M&YwX)5<IpHHLg8vEKM{P!jX
zY8ihnNCDrwMO&_V;B@b_E$)<Nr9cikM^V%+a3!<vFxklS6$k6fM=O{@yyhg|;Xemc
zk+BBp@Q~7ALeq|w2HLg?%s{Gw8AvfO1E~bYBb&f@qdPg)nb`D*7CZLk=DFkWR?P%0
z(G)&P3_KR<w<wX9(@44QY=qB%s@l%RzJRv?>_eEs`M?0t!^BTXIiX%AouKXS%RGXW
zUA@|MbnkPY>D-bYtl8MZgFZCkh!Gk!l!dTc!9}ownZZ%C`Usm5{1Ir9s}tv1l?F_r
zR@!tXDVlxDKM8%ln(Y@&sJ<-8q8^yhk`uM(y3E@j7DL@2_j`p^)+F2qryz^Wn9b;?
z0!*80t5>m%QZ>h-3iYz1%}JKJDL~vyNdrtd`RfW27H#+&%q0ee0N){q5*=)M7~xQL
z?+8u7U(I`7nd5I!h50Qs$a>O;w6`||<^v^RMbK@_9R{;1^~#t_8fh_gy=4gC5jpF2
zx}&VbZ^V`>go-}^9ssxAI#$@DbxsXVxk8mDcvtWKQsNx=PaluC%X>46;Mg1|n;?q}
z{jzu$gL$iMzhAk@a__1t2>aHx%gKGNO~6}Gn{cLKX`^5wtBL(%#fAQq=yS4U*we#1
z#!sQACTHI4W%Sd#^{p|;IQgSuUQ+wT`d9nI>P3o#l_=xS-5?mnov)~3h#+NBe~QUO
zdo_y2l%OgDD&{Dj2`050^&eNf+fg$nqe3z`274<Le`elB8c+Sq)Is%aU;Jm0MD3t`
z(m&H^e|TnZWWz&#DuO}X^G9-q|3Z!<dMX$fetDyZY5Bqe_A?2|I99xSnS~RHe$$FW
zO}@o~uMiriCMV=EiiYR{$1sHpYyz`}o-SCl#pc{wSEgdX79V-BZaXna1BgEr;HoD{
z!&FJgh_z>z+)He_J#j{dMQVx@(69N%tnpUEh)({!0h|dBTt9=LsK~b-ix8P1NV^Nc
zL~yjib77_F(=gA~XzjekH{FP7jflR2d3#u5iD6CR1G*Iph86vc8(irQZh?uG)ib(U
z3x?Y4a_lG`KDmOmR(XvaUpf(a4FZWxoExkEUT5rnS<Ab;j&>zsPCEvgT&gL+^Cz58
zy+aByL&V#u#hnU9c#D)TgdH|2<FJRwMVfianSv~<`3~lTV=%GCGe&L3|ICa0iBHks
z(r!heU`&#Vfv%-)i+#9HTwf5?W@+9hS+k!kMHgZNqkW-COrhUGq1}iJ9$1gISFsn$
zA(>9dDR&yUL>*s4f(=%pDItzjivw?e*j*(+6r|J=4xC!bbjZqdj3>=o$)7$Xsu_P^
zF;g3U%Di}q@!$OFQISCr0QIU+(^E)fZDHuW#aZvNa~ip0RrX}7J!PP?&P4D-`I`rR
z9h&?$2OGGeql&&~-u;!hu5%SE)J7VpTG}DRI%@#TA*zyoH~j35GOR7AWcDKnSEiQn
z{@n@oj-Ux9R;;DwUo{enpDJiwj*4ngKUY4xtr-je_S^M~Zq1>vlck1)7W*}MBS75W
zh)9_$RyUQE3C=~Zb#jRGE7muac?oy=C`LF~YN&QMl}QHmL#hc`l?GCof$?0AJnEO%
zvljwrV=fQ#sIXT+jllPxS!(=iz+^Bt$Qx2&QT|VnB_qpe%3RL7+x_AuEdcmXpiE}=
zmf<h+%1wbh_@}v-*dkT&d(}*7+&f{mH76^>s~A%@!==);9_x6^-@g*HFI=4qE9C6A
zO4|yKw-B2OQr@Z^azmxgsS%}etQchDs*!<Ldywvtyi}zr5t}5ody<C?7}*n=6j=;C
z624T@)OS%rEUN!kd}(*_{}(rgoh_RGUvW>Dvx$0#oP>JG@e(bFt}b6-HBmc!XsEl9
zZ>Ryad$Hwzch@Y_X^&H`QN62qD}Dr9qHWQ&s=bn^R>k2U@4qB)XE3hB<)g;OceH#6
z&Qc-RW7JpdKhla0rA>qfMT~#^kSE(s5FQ}+3l)EX4|h!`_4vD3LLpeBxc)@>D(5d!
zqL#>*v|LVip&DZRLkq|Xz4n=*rrU-WZfAXS)oeQjMM^)$rrKi=T4RTE(SSm?di{9F
zwu<bIVFL8Y=yU6jsVZHnSqn7(BoD@Yb}Y@snk#g=P+ll~`>5=ZxJV~@6a1xUkN=$s
z_xxd>O^5vv%LEwyml7ke?5`=t3gH{#FGVYSYg-(mr(?ENR#a>gAl7R#JkaH}DWU`R
zGk2gA;JfkjECP}kc5*m~;=*Udx#9R5h~R=V8O~YlyIhCY*ZYC9TaW&(wS0~(AM}My
zs~a*{C*L4{>-_zq@tv+|)LKfJEEYTk8U79e=-kTGMd@6#%`9<dagO(Vf$uM(9s>^{
zsi{oWX0{;r9Mui2%%WT(j&*(#t+st@^5f?nhNQ8hze#g{pJb2Yk@D})5p6c(VB=3m
zU41gMK1{NDs_r@rA}67Tb0Qna+H(9EAjwnhT})=5Ql3w`^MYo(#>^cY%||c(e7_?U
zDuUY_k+_njVc1%)M_I1vhzD~eD@o{FlGU9-tjFdfv22|AIVv)DJj{?#FlISaW)Qze
zPlc5uQIMqMT~al@^w}u+jP?2}OG)^`*vA2F+8#D>mRNcXKMaZUB}Rj`UDk42o_SSh
z^P>@BmBeh_+rpw^tDz-K^!$C5GckV)7c`W_JIefj^`UdWh&S!QI!tLLf1gmH`JuCP
zG8M54E>bEQBqTHB?N>E_YQW}IE*?Mdt!Bt6KaOjx*9?H!^)z$!6F?+=T}Py*L*st^
z+o_pZ-spKTyOLDqk{PX?!z$>~j97>at-5#;n&cd1zGmfg6{t^1=5mHU?Jd7_7qa6)
z6D5MCkfM9#LVgdJ+cHu=O?a<VN>KidMBo74^u4Aj&vp%z25T+^;^3Fj8lw!bmO_I7
z1(;`$LQDeX*HV9=&UXco*X7-iBg0=NXT+`75)kzMR+1wRC>)wS+RY}vvB}Kby37%i
zS^E=G&;5(!)XvJOT5mb5)N(jW=Rq@+H>4{1Q4zg)dp*t$4Wr%g9**nua~*$PQ}|%s
z)2@MQxg%o0m8Os_H=ItvlKinul@FYT{iF4_c3xy4@dG37A>Oe#Ae8c*lK7NtSLPF5
z`X$}MB(E9ybEdlJ@=nj)=IApHrsjID<>eOx*X|q(Ze<pWTLB?7E1liMFZrG|z1+QT
zo5LePdW?JDYH<IWw>VDg?Koi6C#`cO_{vN;a~a_2iU;0fB5a%VD@l2gzh<cdl|3aw
zNbM<dL?1cYW%$8ib{@WWUbJ2M-ni6IR~F4l@MLIu)hCgvol2p@k`#xAi_Ui0Sv~Ia
zzFf2OOQB_5nAr~}<5&)OxA^`e7|LN-W(Cs0@`;Eg<_pdrDd`A(8_^Ymy`j#zl22K!
z*J<WTZ=$Wy?tjt~sS<wt@$thMM^U$uVW3lmQNG$xJT)cipZKreNogsauuF}FNsEOC
zya9>$$1VBIOQp<~q2eI;@Ei<OKCAPID`eK%-t98wI-5?d3cdMGwS|&u#%rzhbfi*b
zw{lVZ@+GiIG!b@fg~`pmn(?U-`;Yls<0R;8gp)v;vHsxKj6mskks}<`9lQ`sEDRx5
zeY0G@*f?a8oQ%;swDRS2FTc>AFV0w!T=X^E@K@}<@zkv5lZKRL!Ym5h@l~#4SIV?w
zWj3KPmf)?r`v}7gD;?{r<u*TdcEJRuWNl=9b#wR%>d)(=Kbq@BHlx@}aIU*HeTi9!
z;rm&62;ri%RgsSP#mB8C33=-y+qmIrzvX2woOQ=5&b&=3)N$c(4UpuihC1qPQ%r%9
z*1GBq^`TKiL9-VndUoq;@_G(uQ<5h94yqZTECUDbD0XQ}g<76#Y=*j~!zNg_!-*cm
z78k%kViiW5L9F9}btt7aC2<Gg?wIBZqq@;AcT)l@%jeY+Jwkt|bM9?G7E4_|>|t=9
z>^ZyQ%CNU>GsA|bXbBPzYO_xun+l!-artChuR(9^9I5^3XmQQxS1+kE?+e(fYu7E=
zqmAF|<8*bSTih)lIA}2CZ?TeX_38claOi6W>c?pRYDWjUbq4rfGvT$1BJQi`|B<II
z_pqH%Pzxi^*MR-A#jdcs9({>#pz)sdRN8%XjoMQ%EEb*O`w@i}la$zml7bmEW=Zpf
z;24Pj*u=Nll=?r_XeIUg4|R+jho?3ME7mv@U+13bOZ%SNxIC>Y9jv|@3D#(Gem(@%
zj&tmX2bGEJsMZGz)KejWgWJ7p5%$1Ez_cbqPV@7ED}8idc#6_-u$4H8H#V#_bsUsi
zvFM{+Rbo4CfL4<e@vkKmdM2#Vy_vaICa+!2Y3vJEqbvxcoNgCQe^dZ;azwpX(jLla
zHfQN{!@BE0Rs!<ppJ$A@oRTxN;O|J{eKy)QVq;7ZxY{bG2|YDRDl0<lR55s%Bl>*P
zlzZn%>ck~0we=Q;CQb!5M%9RyqP<wwLQy^zJ~7uhRs6`>JURQOHu68$_xUT2Mo;<W
zjz`x_T-J|-X)WiDTwm$~@3pz)MdCoQb+g%nZ^f-^Y9uQmFT|naSx{^NTwD&0R$$)(
zgWlid!X1~8PdlfI$m{`$e}?6K4+?l#Z<#?3bZ#@*GDb&>K`u21i{_G1^U1qO9Y9AW
zi_9J33^fW@gA+9RGLMWX<+!!pYZeBd=GKb&?yK`2sudn?%uQxuMz2i)DjM%i=@|s5
z32)~uh)yDyn{gZ`fV^viDB-=r5Btp1@2xW<EAG<HroMvc7d_es0<3}I;E3fB5W@6h
zuA#Svl1I^75$+&}Qn=pVYFT~8vS|9@xTH>B0>ZJH%j8t%wLw!P8ZtBD6hgomNAJ9b
zdG(7LGwB?3|9p6XS-FHIl+oXUb;FBzvM<Rpm^b=4#ckD8EzEXFG)@hQjcQhI8-5dH
zVOaDAU)9=ya!RB(7UYD_!Zcko;=f)Hkxx%M{>)F9OYn@#&8KN4QSb{W>hrTG>veLC
zQ+5km{kIfSp({)7aZuQ*1|jRJ?n%y^m+V$H$0gl4O?EuCSeny)R%30)eo088jbP0Q
zMj~8^+-URc>Z{XuRfl;+v6Y1#k7rZ=wT3p<k)4P3ng8)b_LVN?eQAf`rkdJT<soyn
zrV1kURcyhxWIp(byVnEZF5iD`TIv{^)9$YH;t;jN%oPuke4+zNN2orf)Wy#}@)4#!
zE{)TcmNDw&uRmpe%T~vEJrIEHR5N7LGXdm{TEJA;!hTvsG20_tye1)p@exzPRlJC9
z<^dJqguy_JvdNNGA6>8U*=b{TRWUy^$8y7UDl}Q8#)ey!l)7j-W9=Ve?lPw{?2lyS
zFf+V5@>Vfr+E(MWSmU+o)VU~99i_I0*rAM4#q4%eXG<ko#U+3j6`!6Os}^l$x}uJw
zx-K55CFY~LbEPYzubm9k41ya>OrMuJG8kX3Oh3|EFdX36$ang2LJeilisAM6Ns{zr
z=0z1e6U5c-{PbFjEz*lE!oi<ZuONmCTR+Z{w(Qj34ek@8oxB@NAouKrkDXu1oDMGh
zN_(ll5yB26KrB15IBUZjGhj;$F>6iZ|Ja*&slZkzJ~&8uxn|KSN`;qM*?;2!Iv-uv
z;VG)X|J+l1o`&ZXF0XlZWr5dP*L_vMok8FYrLcnRP6%FyU@gdhqmJWhQOT+`*|H(F
zlIwdwwc<~qu!8N*2#&(jx3YFBsmPpnCAl{`mPy{sDLR%8+miwP!-i5m_&S~1bazKq
zzJt}JYH`Z0RYYKQ>!yo&bs#ZA5_ZL7&>Ki8Qm6yj_D^Ocs?9DF-EkCg!0h(_@b%R}
zadgp_4DJ%#gFC@JKyY^n?(R+!WFWW(clW{FVSo@Ef;$XJfZzmz+jhR)KXz-YepMq~
z-7wXC-+lL-d!F1}pfG1C*hs6#1#G0P5#%JFZOE*;&VA;az*i>ty7Yj>RT3;w=pQT5
zFt_kSNt?IK0cCG<AgP?b_QP6KP=fBSGvvOhcLij(;p)}*I7|1$o6MtsNvbt7T5h}8
z(TKgMrDqEm>MdY?LZf*}zsJanpQ1Ym&ymz{V2?3>VJAMoy3mR4x3r*04;#4WGz^k+
z{^@zA|17X&z9mTEaA+yXn;NN2KLxIDBI|W5s~S!#w^f?YnS3axQ&qh84J!hwyahFd
zRCs+aLpDt^KC(=Gm|46h{C{ubvNqz!KKmUvLh$}P)o1f)nxo4%U)tfR<be6>kuS>S
zsBR-b%B@I23Hv~euWJ}8q=>+hKm^r8XKiEM*?skG-C+_#=+O!ob~9ntm4#liqWT<`
zvc1uYX_0ZVErqe;A&bRorJ+zrU95X2(@rDkWE-0aE`UI%8ZsBY#EPq%tYcy@e{|MW
zek1q*U~lh7T6yHmGQ<qH$k+f-B5jixEPoQsA6z1nU^o4<R;uaLYGM10)GQ`pCy44>
zC#fx=YNQDtC3rb%6uj?g?N!TqM&eqwvBp`s2ui&^L-&A|7;M<Hogj&xAVJq<fm$A(
z*6N0fhHw-=D)pulZ9?k;?z8;o*YA<WP9k;dRhbm{s;oNFsONoRV~o@{BD@h2+sP92
zi+@6E=C&?4<6cn{CZ!krb|gQcUr|jtJRhO>TVx{4jIg?Ayjr7*?-2k&)sNxTVWuu$
zngHqb3b7UmG>GEsTl-2K+jY_OhpiZbs7nfopb_fK8DO^T{@o-TH#Tk>m?N+z+9(#)
zD3Y{;6sZ;NxiFO2EwULmuXfyvVf0sk<^j~r-4AUg=Z6ad1$4|<wTvYO)8CGE;>?+0
zu5K)*`#x#3U6yv+6hh!(&<2NH%`DV&!kXMyEib~hWt+vfIY{QE-1Lq8hcD=s5Gmfn
zegH>@Oj-^q%`*DT=!}&d-p@ZE(A_m{Xy5hq$l|v1ImaINZPk;feNP`sb#+%)m4hT%
z-G0~VR9();Sk3|M79Qzs4bISPBOOIXhs^Q`BzzaUV`i9zbVIg%LYMEnZ%&Zit=X?1
z@W;xeEK&&iyRVJHbC+MQm{`wpiZWG{EcC|sCqba4v`gNdFnd3|;FHA=!-LA~6d-*3
zHfBW59g0D@wUoslS(nHp=DMk(S0OUXii+*f2K8iIBHe-&WG0+@-p+*0h-$6>P;kM3
z6{8Qzvf@N*6QquFh~>g>joCyZK8ttK{j$rZ=_(*3ehl7wZEXWW;n3&=ZdPq{MOd-7
zz|lwAmp-W-Ui_Lg6quyy@|<2x;?^Ck25k8dz=`(97a702Y%H&i2r!e$ur%d?W07|+
zuvolTJR{71J$g<TQLHfZ9F7e^*`RU?jH8jgM&(Z5m-VV2A=+_$K(lfxLCObGlb6m7
zwu`#`CPZE{wNaOqatfEW&0n3VlJ7#>k@SNdPFx9?s!W`TevZYth=d$8{0^)9F+%Iz
z{xX+4A`(A>K(JhAra0Cc7nKTKmh#VQ&gu+iE2a)wRyw6QHT=Twt*+G|*V*F|;f}2l
zW%?d}Lq7h^J^TI(z9$+3_dIA^Whbc2oreMSC@9~#w`C?V?BxJ`8X2ElqoF!z+9F#}
zzo0r;=RjGADA6?5khlF0v(Dx6;<CY`Pf>0c|Gu?1ChD?BYC-($Q)77%!M+DB<kp-u
z0dbwP<@EZODI2EL0TuLJ-6#>s^o%eK%vnuMK|pBc`^-Hijdo3k3*_r3Fk8Wa+yz2v
zs2&vbA_vs+=-zYtfI6@)#E8iLZ_T|wBVw*GFp%#BAVm+ll)PG#W=6!Zn98cdhm~=)
zgKi~%5<Y|IF{BiV3gRg%Wd~&A&&BL@JIpP%tSy(B-x)0HqTPg&e1Itvcn`iqokU4K
zE4g(kaSIijHkR+dmaNbc5)jP{q^8v}uL(dmpE-UT*8XtyBDfid9)4=VyXP;n!!$p4
zD}53gR3+Gt6P~~3c~eWjZYrO-ulv_sW(_kF-_o-!v$~v+oqI~;UPS=^(cr-HahG-Y
zkdNE8*+8BUGp~14%XK-7j!qF7-+{_q!Lu8)${XX@l1W8;9&4ic>l(WMB{4nzIk3A(
zXY|h#14cySpUVHjB~Y;xy7_N!0$hA}DqX+^)mgab0_cuNxg$Cz847<_%I4txlbA!(
zfm!s@vfp_|H1#-i^wha&3fV)6SVJ3A_tG07I!yy{*PnGjsaYpH_Omu$`jmqs$Nf#*
zb-n|;RqKi4B{;t=8ua1B&8NRHRXz<v?8ImNC0;h@(utqz**uMdI&<%5!xF|?it+0u
zhVfRn+e&^>E99k);_@<kY{4NFVhe5V12<UR7oDx;%`F5JE#C31zm4bbf*Ba0g~UjG
z=T!1(<qLC4QiLSfDKiM_oYvO#w61;d`df^q*VLFEMr0JaNE7}}Q86LkPnAD#%8I<O
zvb^YHRP^9q5^ZuUN+;|^gE$4B;^Ky1e7$b3&N;?^lR)3HsNzS$w|l&&I@mZ=E|(6i
z!?kGp-mJ<#uUI*h{#;2GY_biG&6iKfDW&MzJVBW>NqFGgo58Yq19=vM!Oea%slmNq
z%z)-7)meqTsh2iW+k47w4k0L&VWPV;=C^1F?yjDV6hbM*V3qI-(0%ScT?Y0japn!4
z*o|+00$KqK%pOs-9`v52umW}lC6bTRtLEIU1d|jz$H*YGao5Xxui#H;q$Xzf|7jn^
z42m9x>r=GGC*M*b3Y=V4DYseXlVp5mJOMj&b=}r++-%8hfHNGrK4;788Zfww{+mx)
z^MKra$odBV<!Cmyw^V7`gibhidNol*%R)Ion?a(Ao!?~ed8gZCq9r<c!$fk~rodu%
zoQaZuGYJ>5fOP3?^rC63{0Cl%8{!X0RBAN|Wt=3!4%jL1LBC{#Tn+wc_Ns7Hb|`Py
zG8y4HvWwLF+@nR@dZ;nMc!Byn0qIq61=W>UJ%M9AU^Ct~F!#eubnp@41p((45pNMM
zG3h#mvt7-u2OBYm!dW(bp^d7%k|8sLC_n^C0n3;`!@&9|-pK8gx3)kTt9DxPo+m@D
z7ehkj<-R}6@$#LjVuzJbTL@G?^PEsO#73%Tml<J7SiUKFqraa2IGA48C8dVep<D3#
z)!Bx6_xHzuw@JGLcU&l|0WVyG5=ySzSrk#{%XgX{vEwXfbk!_ElTTDKJCoDaN9$v&
z6Tc++z&ayoo~paa86mm+DbY>hGPBKTZrVz=c``NA&*p-cmqKczLO?kd#qK*<iLJ)~
zMET&bAKn~1JYO@jQG?P+c#MgNu5-Z%ER{&-q67=b9lmnD<^JobA3&l!CiM1|G`GRW
zy?(hmvP<GYOmouCp)2T)pDPi{^$6sWOt^|HGfz9;p26XB)f#}%7(-)XERsCl4;5px
zGOAP-W`@YhdJw+XQ9-R{W@TkXM?XB<>buI-4urVQ{66a2-lkrs-W9)EsM4MhCUpIs
zf4Vu^U@15ooe};S%dhB$QW!qEF_R)0XPRU6Z-GFbLI15v+vFp9gT3R6mlf|LqlC8T
zYY8sOH1%w_nVDr2oU+&zTz9Q>8YT5c8rXzE1ashE1bCn5cZ8PLb?3GHVtMjLs(wu2
zqqE|ZI8)g@#ktoZiI{G*<gwDJP1$!h$`q+l(QM21;EJ{uryruN+O%IMGb|^P*s$|a
zNv$%t(+BJngtgAizwT}nvXcqX%+V*Zp1}yRw!a)c`9*#&p32&9-ixam@}PBWIyRP6
zg8M}D-PJzeAnIi;y})Jvg!qYoLIanKn2K#b6T04{GZffg;}Gcl&I?$(IH+PY)M-k0
zKYhorjN6qEK{MN-#=O`su6yV*onc&(IMXT)4mRJEh;r?Xo7k$s>7+&arl3gIBgdSQ
zIL3$7!O6DBOh}MS16vp@7c88G+?9!Ga}t_77{PzMV+@cI4nOD5MqKklb0F?gjw4p$
zsWvL7arSv=y<y3T9Q9Rk{<y;#&pd;MQ}KnhKz}5YxBTeu;8Op`ddkGJ9Z__5!HH(+
z7K2IQ7BNoKGRN()q{Yc<o%mnke51Q{p%q+6{=OEcSVJDZT#vdGRWS4B*ydFwkwMO6
zE27gc{1`YIWpvFe%{ly5AMT$h@*B*X!TAA7vc=qHsB?mdEY-p}NcZ+dSD=lg<`qrv
zBOA?Yq6?V~imMn~Of*yV0%D47VH~P?@EOGFi*2g7m9(T^sq4yPzOj*dT^ZBzQp(d?
zjn!CSX%TiU#&5qHC%4C(xy!Pqr)UQFe6CkIScS@|{9nv;CW`T_k^K={TOK_mbIRi>
zc-ADR<1v5=97D3!??D}Ulo+|ndYU1WYvmulc5h7v;5fgr@qI+~77*ak+i4^^_53lN
z2xm580@^C%?|nDgvS~yhg_3a16pj>;clCpt2EO6BEW?4|0(%uSUWhZCYJW^Ow-@|W
zw=;8#Z+$&1=TolP3K7eRV|POw`km{3cegP0t=yIv^98)ByOL{)@$%c$$lvaDNAu(e
zg;%{yZP?2(W@1Zv_4u=Z3foZK%DhFO6?@5jqVea9Sj@0q7rGPl+)I~?<f+lXr1D3>
zagI1+CMldx6`E@X?QymYzmaM9+2768K}nrHnK{YL2WHDzoH-5DRkd0pE>e(&zr<ow
z?5mX^9CaJwR31jQC{Xi=wB{C5bH%ZrIV#pJoluDqsjXgHE3+L%KYg-k!5}pdS3Gat
z8M_v|qAN?X$!?)uwf6g<wqG89k=Fs)kTBNHZ#J5jyVJ?i_TMg#|K*h3g>5!)^A=p)
zbZVoqHW>lVi}99DRb!!*h8{IzYIa3pfj$ul2L7b(an&TVy?h#X#!C*)<5+yiB{=l@
z&X>oRrcTUrf<sdDlSnE1X*LAtl%St)Y11bW5J^=cQa^`Op!1B!aii;_TG4UtD_gC^
zKQR{EAAe(M5@To9Zj~nt@AAwof_RePfE~OckRG88<{45J%a#`r%pZ;^{QOg#ly=cg
zw_s7E$JDM$iS?zw1{V9Z=hTGWG1Agd_R&VQ{3$K08wuMHt&Lp%-F~ilJI^p)*=-se
zp;(?7_Sb)1Iez+Kl-+xwRS7QhVmvxC-)GidfgTZ$f}{X1HomsqjLpcTV~C$z1_vVi
z#J?#6!HcCa6T7o&rh%~@4y8ZOH9Mo;QgkCcM%BVe*sww0tU{`o6Mig#1#xw~KFc;K
zCwJz2FHn#Zlpf<l6N;}qbVzqiPIr}hS-Qcr;R#il0M);Sz+)5hgwqENr2fr2Gj{As
zmisX6rZExnOpPT{;CcGkpYMW!r7xVm^3<=mIr!2ma+>^9p=!6(9%rNcqV!InwcqA3
zIm^^ZWP$CYq<PyBs1(Kh9(1o4I(OoX+Ce*kTXwUGd%lH`BjN^Yt#C|w&9n=Cz}KBM
z8+hl;uMl-pV@kmD_E4IJ`7aGV+m0*S19_lM_P<vc=2xyEllX%=<Wq6G@zc6#cYT+x
zYJp9IAdasd(^`uqlN}vpS387;Dx;)n&IkH&4<;O!V?iJN6+TSws*>;c#PL+U)+Xle
z<|}ut4Xxne{~;-SQ54K=d9CSitr;!;JeayFKYDzRz%ZnnAdbPS@5bfLH-vyiI`tbr
z!?A0A3dQ_^oE+pjObPN8!nG}-qZ|}1D9kchYbh*Fo*DkzF0mCu;yawbVN6}R4}G2q
z^*|Sl&5d{~oZ`F0WS5l_x6MEK;qc|fyW>33YDNCE%w%*KY*5OtEQf+;`+lj+<oAug
z&z*^sGsn}X*Q<QTv*oK!WvkU!S-WTRPHwBY;!pa1B{p-;4uNo86_DqY^h62LE%q6r
zYrZ&k97(3?anhaq3(EC4!BV0D^pS?dE9Gtq986E+t6qgqa`^gz)V8E#Z+C}wcv~8C
zf)VTu!=LySyn4d>_bOA_OBYH(euoGU_;aXu7g6f-*9b6^Eom`dJ{IWTcS|xBXnTxD
z#(|9--uIxIyjW)~0~2&}n#0y;8`HO&76X>kxZ#9_2ikwra?fZch3Q(`KBroquhn#|
ze<oXgy)%^Md2cJ9_wxYM-4b_9)$e9)bJOXWwJeXUgI2Mqk_8Gk-hcN&(9vjX>UW4W
z^>FIurXJnq;;0mdcDcw=JGbS>!Ht)bU!0a}t3m3*iMV3U8YA#-`FzC<S^M+0v)bRV
zO|D+2x#G-z`o>xFKv6w$XQf9hE^=LPHWnOc{;PIeCF$x-wgkUn`BZwkU&my+?DXC2
z50jFn)?$}H(P_E~gp#`nhnW6K7<xIJVEw4@FtxrdMy1Veteo<M;X^x*NM;<n=p<7_
z($(p`k<B%o)9+TPww5iE5?Q?J-^J$j?iNAAZ~Cik#8>^$a9Cy>R$K5)-B>Blw2nC~
z^JQx{BMEay7D5R<Q>D)8ro>r+*X#(sN>*UlaaVBRug^KBydB*U7Q*D|IXv036+wPj
z6`%FYMXAUEC594|F9UcRQ@G!Amu*{*!#i1qFCkVdo2@NQ_ow$SVk8yrUq&5P0`pri
zdb^(khjJ^PU(_Q-Rjh@MPYu_?H%yEGAN!_AJK0d9-2J`#s5vMD*GTzgT2lb4yIbH>
zE#IfsEt41V-s|+KgZbci9z({d^rh~jSluff4r*;Iw{+kbi*91`N=f%lwxc3oMBpb@
zm2ATx_rIUty)C&*a6bjSM@O6M#)PDfxYq-5fjlDELr?z{&)uvT0;lcFuQI@*0y35E
z8&R>>kr??=Ss>eHg51W-M}Na7qEb9$SkC#1@*}B>#<^*E;p;>K`o$4~+*jqL%)cm$
zAJ=gegu*+X$am2H?27ir(<__Zz7h`OiIwg$8&Fkw=jYM!{;H8rDeNSlr7qi#spuyy
zw40Y0Y3p+*$+^bf59kn|D2!~1`rN(N42I7i3}te72Fu$6Z^!3B%gr37%`IBQ7jkRD
znkhrWR;e62|Ki_seaN#1Aq%)OH@O2fRt;s^86uQp5f-O7`wnnIag|D5h@3QWYUq#k
zP6D6!Y;`v@3dq<uJ}v*5`*iN}qx_Q<{^`|=<rl`PHRaY-gn)2?32^<qE!{c(S`AW=
zUNb_F+9gVl<Poud*&fcV3vg?!z*|&U4`kUJjUSNm<!Be{{H~_w?Hh0Z2)9^HFD8G1
z`q0&MD&s>7ZgS4HzvlT(--o>OJLhG;^@gA4md(@qbj4uVFrJt(G|4U2EnZ;tsF4%H
zRM&1nev?d`*c;KEB<^vY%;(sXq(3oT%+7@n2FnBk^1_%N&Igv|s0g7h$5a|OHrNYf
zB^Gl_Tw<$6{+DoZnv!We{MXyu?_W?Dnd%(79X^8sDh2GJk-H>(w}+~<bG@?78?>($
zz9Stg>wGYaed87OLvG003@<T*f;1uUJMjER!mptR!U)+_j{9EH(26Fq;=i=y@SJXX
zI9|dwUL0>b7KV5PjBO7FRDPYgcE~LTed7iN<rCs7Z8sJD4UfG`hUWn}8x%fBRnd_v
z>3irdno#oU$D*GN7!&xb?^!}WaTBAQP8qYD`%E%`Um&X>^~Fb!`usgo-@AE~jly9(
zA}4A!d1{)W7azDC7Hc2K8ff7=<!kG^0{7P2rW!TfPeS}ERGfp?65kyE*wjsz=$vpb
zG(3_d=}k~Rs_6Puq`!rIYGp@|sEkKGr*K&S7c9sTci7N)puzMe)8N}J0OKYA#{INc
z45iGBh4WjuM>;LN!q_l4A{HvY!sv-zdgE?<w2b%Wmp}K6xa8=xm!l2h!12-RM<XJh
z4T%x_3*jUWH_!H#4nK067_p&*V)=(j*$VaZNhD|4K2{?G5ml{<yp@KOGHtJzoM;tL
z8;#kb3wvHUdo-V`zRHa*_@q)-RW$a2HTKg_6TbN;T*=L4+}L`WIbukc(>%7nzRO4W
zvm#Y1m~_hl_J&zA0#)T5g18dke8qb>{>gv?@&L}aE1ZsFse1lOAquz00mI*Z=|Wh?
z{t}ZZhEv-2gYJ4FS=ST$zs5py_76o}$VuUu{xTmj>+q^ULNo1&LnOJhBy=5K?MGV*
zyU3)^9%Kz|p&=kt!Me|@kB;|1!iUSZ!U1xD>=G8@wqOf?zTHZS5D+QQ3@(@z@PXO!
zi^BH#f}wBhpWxqo{|nM5@SwKvnEGKLtUP+|)*F6f-lX`Fep9vc9F(tj6C3qtWFGq|
zV<UJX0$f`qPy9uegczkf>emx(_|`@`Ddt`(OEDRj(p$!o2-Ke@R@yR$K|7)=JE}J<
z2V2*wF(<m4e-<YF?InzL^9C<z;5XWlJTzgTNm+2a><aeEOF6;{DA9WQmL1XC_?_0g
zJ}T*!4m`W|i1~CH8f88WYzA)=mjSg=Wm*y9*i=q^tEeh*9x#RN-<`hWG58{(C`ERD
z^2&rwiF^h3Jd#~H)v%RbS`roQ!%7+1mh#(<o0v-UT<)W)^H=M=)=9_7zkHlKrfF9h
z#=_}WIa(Cj#NKLS>1*JO5fZT|CSPEY2U#U0)3azMC&w9<W-=vrKu!ieQ-Z|xa^RpN
z4!+Q4FBO7YiRehe^Wz!|*#j*B#2x{FU}ZTAX``ZbnrpNU`FBJZly=bX0^8${(hf7Q
zv^VT<5V7nbW|lbaJFX&{*4g0uhufm`xUsciT)wdEqn_u~P!#EG#9)F-Y5{ibYb6a0
zY{ncat=XZdZB+139ItmqtyBiSr|E|`S7{l<j>!F!oEsDrlT-B;q?^(h*c6lJVzE9M
zlx9wF7CGX;-o?RDS75Q9|H-C2_Yr1<dn}k7Lh@Hzaxd~GB{yY!TpuBPt8>Y$WAxFz
zDl&HU+)^25&s|l!b-r~aq~B?(5y8!Z6F$J*s11P%YK(ZRImM|mBBnMgMl&RefZ*yl
z#a%`&_^)Zq``fxKBxt^Rs+ko+h@9?2+8u#6U?l0a@Da3^lXcBpu*uqip{7y;Fdzpc
z^Lfw+uyhmfXf34?uFA0l8Kr-%hw_P7I2DCsuo9aTxb0|4y~`uUrvJ5t=WB8*`+sf0
zN!|t6uN=gJw7{ino|H_>vboyOEvpn$ifKI*0$dUm8PYvr5i6jDE<1Q(-qr(;y)V2+
z`?x*Ei*i0tll6H{N&wL~+a_v`Ou(2fY-OLebP|@uJM^!0)SGwa|J}fcNUZHf1@8SH
za=P7$6O8T;%z%?(15P?Ke?0hjh8Nzz2Mf|9N_UkxP!K?5pW%@?&=C;RMQyaB)cUdT
zJ>KYFlg~Kc+WmW~g(izyStb9ao8pMEUUscydK)fs?6!Xm#=Cm15=-EPLQ>=??}UI6
zkS5Ro)dt`)!&3$Bwm&`+<9w@TN9w>pAVBZ7J(2BWN0R)GoH7pQ6;~qGzQISXNT)1_
zN&PVPaSKi&<w+3iOAzkVF-_6Va?M{SW$B5GHptp(4J*)i*k$$^_UcOb#Rj8H1iCKj
zj=!&4`1sPWHCkJ<wP20Hsl}VCHGiFFC+i5X)NRTt49N^#YjsaBRawq|{=4{8^EYUg
z{nww*klvKEEe8kt&IVxHQ~ok2xhJ!1cX0DuaI7s2u`cBLt=@fpS&<EbPHPTd8I(@6
zK?{Zf#AUN$02=0w!8b=FRKnhWe@iAIB+x_P-E~kBST==}exGB4M(juvh^5$xe<0{A
zN-mLs#C7Iz0{FbRVO8sR#3+6F0Gr?gqWl%m2+II-_={ciWe)uNTkOThowo{+f87*E
zmedCR==-qy&S52uN1%?I=*-hHNl)yN>-r2_QxKjfOlCE|YhAD7l||~<ye>>$M^mTK
zCm&zdyV!+4#Ns$ZsaiATCc+W>B7E7H>F6iKqKZKEitbM&s=Du=U5G%L1Dr2E7F0Sj
z7KCHPiERv^o;#Ko8Vo;+4WVwETZl;LC*y7rSD?HA;xjpLJ|~k6sV}@!=o}Nk$#!mH
zr2H{s#E!05M%?g}t_De1N|rKQ!8ib&4wJ(nGv=Jg0YqM!KwbJ+xR)9X@2?or&q7ma
ze6VFvFa*iDo6ew>u<Eh~&P{*BJh{l5x*bV|-gKQ;2JTR^jy0Zfh!5uIig8P66v$-R
z9zZEX8=Oq*2f8U7WdkLJnExqW2(|PCS;^>rW509fxN`^T`^{o$u1RutkjuQkuKgOv
z?jWaU5zDTa<U{W>mLO+M*fyG+KAH@C608!%uy+o>%KETuDVP3nF0+;&jD4U0+LF?l
z;z%da0$$*Xq_ymM_GW(B=Clf1EErHq@rXSsJ5hF0q1w6>N$u%ZG_$k%$LcoX5S!!4
z4hS6afiLs#BwbBwx-R>2=E+H(JeK4y+_DzrWkrrT3ew*=*)eA3qiJSQA9-xbA8o9#
z7eJQf_Z%T^B@_!|Ew{E%yQCG7&Rz&LF)vDwYb)x+wO??`uw|UT02ba$FxTgW#+5&u
zUJ!CxW(o5axJy)D`U<g1xIc)xI>>~ti4Fq&<B6i5-~vl}))SiCxP;b=!^Ix%Gn}a6
zjp_K06&Nd951Zors(F&K;P)T#;y;I3&#0+MOz7@Omi<IcJ~6S;<CD=4H%u|Hh#A@r
z^x0q$y00*VnNDWitU)$iO^VpDI@Z++le+=`YTt%fusQy2YvSWm$3oNXE?}hc4^|aB
ze>XV{2HG4upv@K~AORo(VE|9rnm$hC0vsM5aC5vpS||ozu*DxH7LS8c)PWps@V+e;
zywdldr0_(iHRMF-H0i>qlnzwT7KI!?kVk@Sq_PP5XrN8VzXMJHG#q3)!F~;dFgoX}
zs3?}3zanW7!tXqp>?zKl2%Ln?gHN0Li~1jVtm39l2z_E(Izc_}bEKhf9K5jnqXi<t
zW)^h>w*>&J%iz^V-muGn{WkghrbKGnWCgb)t`qTm0H9yggT@rM>cFF*a1kSk$8@5)
z&$wnw-bu+(+8hUS8T`HioI%nDlL$d+{)aWHKbxil^kx<P+^P-!F|-yg&y`(uAYDcm
z{&Y|e{C1U<{a7ky7U@_;N7hbxg){t#Sl}^sRK`4N?u0-a2}TS6#*;z>=j%ZXOwAZg
zYgZLS@(YUDC_%Ii1WkU?_dis%dIXzx;?w<8;`d-opnZH@gj-oXqtqDYChH`UV<>JJ
zmGjC_GW-O2i5$8X7zJN9uz>-IWkRK1;Ik^|f}#%jF})V<1GYXw8x!l|)~l2cY!=^i
zY_Od;79_qdNYfU=+YQQ0-0FhF)pR&s<2ZCu%*6>3C^1(;UQI;l%|@j+SyVCHLu_Rv
z5Z!~<QjZGqI{Ix?BEM$_73Tz5X01rGN0ZVr`IhsepV_s_ImElh3=$iZ+fGM}=GqwM
zu#nSgr#E_i#UMSBsfd=LV;qMYx1`k4uF3)xDA?{YkyRICH_%LTgnTeq07*I5c|Bnh
z)dnicAhoE?PJ-(#YL`h2+2GFRTHu?PVz!HYf>ja2rsjoUW$c)&Tz&z~d)`?ZJ`X8V
z9jNYRfP0~E6C;Rcb_%&m>?wu3vEl>;bOMeT4zN*HAWL)N4}{LQ2!Z8&_k%*@x%JV-
zvVl1E9*ASaKttz$1z3Pxt(kn!mm9~vtx6(?3q~xM&l+;NYmeI3-G00>Soo&T5Joue
zx=X|bf9@M3IQes*8Pr(p4DXHU2yhqhZ7eHd3|$18)Wv)Vi#FoRIyzn4FL&;o9{gW~
z>0HSK-|P=tKDIFADJqjFl13~Oxnmf)G=4R|%Pq%~cI?PJ*!pm3sEo-HvjczFat)6s
zeJ;ali=4#sxf02EMDK|GU1r8BTU=eRKAx^u8bcH-x+S}hA@35Ij6QD^D{mAT)Wx}V
z>Q&eW*)O<k&}||4Xsn5xW6$RYTPW{X4TU?wSS5uG78~u*1!cB}ZXMCPUu(-|%PpWc
zRxV)TWIy6_#;FI@2-J3A+FX;*(i2n-q{N`pZ@G7`Ra%c4*}9Ywd{02EtGfQ^cgGEo
zO|yBp4gGnz09>GJf6j_UxUm9y7SG-*Xoiz7R3Au$>*s)cNpBuSOf?q4|Cj3qP^=bc
z6?tA_6sieh%-etAAO*nCmzt}iDB=rKRfP09z~<`i=%yL`5zEmXkNCNv#HZ!trp#e0
zYVPC9?uQFV6z_C)|3{1C=i<qEc4VqPqfNh(OCBUq&C^S4E9G@SqhlF52Y%btq8bSA
z>`X#*5ex3z^H2D>3=ssw?jRq-Pa#nt;B-_fsSF29q|ML{ZO}86H?$JIC#EvHn*E)Q
zCazW0e0Jl~>#po~I$7@);9RY$UD96zztsrO1AJKAF$r<M@G=R7+a((a!<dsbg~!SC
zWFpdp2T1=j_j`4B$ow+D3v}W=IV}9wCQ^^$Wl##upi2U(-3{!!C(epL@Xy`ccKI-!
zZYp5IB|h`zw~`Fq=;|~~LO_r$2i;1lBK#L*%>bx=RG-4W^#QUh9>BLhlpViOIb$KP
zCv)ckR9o#;M+okY0jMu2jV4vk(+Eo4$zg86VgRC2(qVu#IwJ{1*TOM16T;%1k#6CP
zK+{%i@;!5qLq47=IEs>ltagzRk|x%2GO|gDznZ!jAHLE;V>4sn`v-xBn>PJA9CBvK
z3Ct1#a{o<$xb!bSh93mRdZ9+S_AsBl+WP!~=E-PIvk+ofNhfX=by0Una&admADHMM
zo?xm24WE<^Q3m)%yCsn3W_N1A1b}$F4#Z<IcQ?XpUROgZ^vJWR2&g<)1{~E_fJ)2)
zR04$;=-LUL%<jTocrdz~S;S)ZV{vxeTOq*Xn7H)ObFBgLGGL4;G-XWCkqpG_KYiJf
z@_jnlM+>t#U%(1sew`ry9uZ{xS7nAgDhN^~%WYB$7;D8k-8k*K?r7~ukKq5UZ3BHs
z^{eZhKLxEs7C<%x@pRE{f0@>7xyT$0_m1Lfs3$ooCSmxC09IDMo?S2gOBBA_#}JBx
zsd=A|)i3x%u>W)|O2XlrnMJIG;-5D~w`}R}f2bS&P|yCOzw$#}>+z+$A^D~4YeDJl
zCG!gX>k+qS{|LNb^mF@UJ+Bs<y$W`VGPsn|Hb#f6JC^J_u_-6G?bobV5e#z#viF4K
zK{jzMccN5srMh6$QfO5H-)tNN{Tz7{8|iHwYmC!x@oX0KW$P?cIxT>D?BK`L9^xm3
z#ZjWm61eLok(|Vt%o~tcjtyEX6Ggml;#$oPr)gtXX|uJ6;=oAZ_`fch2f=U+gvcvw
z@8hyxBvv$qvVIQvKEJ$X($=o`{93vcpQXO6N<=QpR1q{077=x${-=&KM+L8yZJ|-t
zd=VEZM91zZ`IDUQaz*S;qaTO-H&+IfVb@j}_AcjE3*r8BPPbR_(0K=ebai6VNw33(
zDk^!e##8?!^lei2Y(~|*p4S@c#FJAMYTqooHN_NiNp4f(&DU7UZlmbO_s<xNz@+lp
zl2hEc_?1$Dh4^3jKT@00r4|qbPBi1+U?DF@+SAk%FQSMfIh8U#BIKRHh~aL-P@`0=
zPd(Sr#`5!WJ<_!o1;_6{q4V8JGL1`|4mWX7|Bhq5qqGkjkp+wXQ~LgK^FFj6KcHv;
zL_7dz07(e()^o}%bIZiRP5F$~+Fx-^-yf%rtt?nsV4uZI`F0KUoMTO7B*9*W=3O1@
z&J#g->CF~IS7MEfl^mTMU4BDwc71Pr;Mssu)UkCdjGXi`4!Q7x%f}g?q>PslOFksO
zG=YP6v6j~dR;NAU`;M~QWeASNFFVG%N<a=u?O;W^bV@lcb5A)t`P_p7r1a8$;bld;
z>TJ3$>rd}l&QB+^f*;G*d^QtPeF>+e@>QzVo?5X(aK4Kmo(>sf0u)E+oCcscH+GyL
zu`iuGu>R^2zc+$RIN_w(H0QP1(y;Z`gb+JN_>i*&cu;;B5@tX_Iti?(mp>%IpQgm_
zk47#-%dYSu*v~E=TdDp;Jp$|$tposrsvh_OFAe#4L=U_RM3>asL3okGg>Eo@Gz9#Y
zDKqr%jpE1Q2ik0NLdn24uXe6q9U@4lCfE*@$imUMO_6ZZ&)}zwuJ5_FVk*t?FsJPm
z(oemsLOhn%X-Z_Mp$|{99ctm`{Kn|~EfqdjMF(pkc$5IfXlVD7Nx=1$=11bCYQ{{D
za=3mv2(mkd=B|;90MC}jN}8q8iQ|}j%!LOtIh7-+?F6}moDu}?j2?2WHo>KD5Yf4W
z**{LPX9)cq4G~#+rAHXfABGkAez2*BkUl*p_$r1bAFmHFkQWwit=IP*wM7c~upRL^
zTmH(4?lz{57Vc<W(o*m6!Y-*!Wb{Rg7h&2856s?w%FhjYO7}$mXgf74V!W6qBLHZ}
z75}(o9^g@=|MDV$h5BEE2DmRLUxlM!n@ht`00fnoG{*GD2C}6)Af~QUR{Bt+hp+@B
z!^uc&DZ-y?`e06*G51PEI6&h!h#G!NHo-f~r+Scu)*bnup%_nIdO$7$5q$JPnz31i
z?B2*sSikSXF*nU*z8%{UYa70D$G(GPSt%OKB{!93HIYHnQwyw>lXxB;?!H_%2<(Rx
z&~@&DwW}t^4=gV}q%Ita@($~{5-3izPIGy$;t)goAPEME_L6;as!#j$7`ZTEv=twn
zqfPewf~qUH6+I=(XfvbyD)?{$Ye7WOJV&2ibGPBi>vaJc&7P4p1zX;3qGLnt1H+^X
z=Q5s$PU>};G+h)jwzD>a9W?+CtN^<02V@RC_+DjDrYp3BEEkmUl!peIa~8l}FaL1I
z8z2mH0Ac8_@dFIQvlS0Fo7hec$}dV72#TC5v(7~BNnD2)AJLmZvq^u#?!u-q;e^>2
zvm&#ijC?6UkLn7mQVyFoC;wc>H2OVI>UYzbUwI2X?BG}Rp11Niuv~^=Ds>T#)3REY
z$YC!C#i4a=3n2h|j01&2;h8OwFlDBsRBt<rrR_qzXtHfvcKEwZy;1{lmDN%Z%Ec?k
z><^r|#K(T-Zsmr-yrT;r;f^m4D^F-=V*lCW6Z_)f$APZH%4<;qr`mXHfo7+Ht+^46
zkFg3L+O)EsHXb&4Y+9w(8Nu6gZTPVERu>e1cQYXJjPL-cm;ZlI?+t&j#m5I0a<?-$
z3KbnB7}_Dpu^JQVOZrHd``MRhjN7ig2>_)61p>@E+Rq4oTVT{%L#@X2cN^2;k_n)E
z0*C?h6X$qEt1l}_p-0h5b?vAEeqZ7t*G4X-;Qo0z0{;|&3#d^m9#X!koH6{Z8(?`i
zYaoN?1$;6K@JV&ys0Y;8qYfT=`oP>TJF2))qXq6v#dhEpvJh`f#xgMczrH&L?x89)
zpc7nSO&W3a{qskKYh2+=38)R)Yei5?p&A>=PeMUZ<^WXyv4)P-zz&Z>JcaQ~*8*Z}
z7eQ4HpuX0BXI|Dvcw@y2y)t;#xX;GwCqhHT)O1uXDqAz0OD=9Xo{IPstAZ54OgRxT
zVwh|r-bHGXp2z-TQaz|6y@Sa8l|lSW)Sfw2dQ*fKy)sQPTsq6(g|cJt{xCwS>UX(l
z==R68!h|iGp$vcyDz&ZAtI(=7(Ij6?C*W~$UpcujK)#8Ng@_na8dX8KCnzont|i9p
zOGSu;=pba8BtA@Cl+EJ(LRxFBc$2MN!srv2UaRX2<Ce)HM8ZK_vx<XGUn^3AGR;p*
zxIUA;nFI>4yXdBE`x)p@j2W)hYK%;d8SbP3F28NTiQMxq1BnCza=is7=#ksY2D-i-
z&X-^$6~1EPjM{?$2rit!)w8e06#m2j3T*-;EQ5y_)Td4yH8_+l36tjwfhGdsntB-#
zer6sKUZM&OF~1%S5L!ys|8TOGd&}bm=WAoEm{5Mkf2D-tvHm%Xul_`=Xz-cneFzEa
z*>y=b>Sl@cFOFQa=a_?8UEevLOPa7kHD9EDgww&bm6`P_M>2HsABD&k_l1td+7g8w
zPNh8)LKPj|FW0u1j3d=n%Us$on{&)H5wF{YYuKKUFr_D>uj!Ljet93{+WcU$mDJx>
zQ!C<h-Y2JA)D=u8Jx%A<GiVb`>O4zx7`(eNs!HD07$~fz$Uzz(p>-LDf3s9BaIU=e
z3eL2cgAk_Q!hrM$Y5NP#a8f3?y*6k`&(O43Vi!Q{%K_5$UcflpGeEiy0*r(6PmLM^
z)To!uY)Jy-jVbsL6rKz?@i>5D0)Ybo2jHxL^ri{(1XKuZpOA}inwJDWJW2Yc?m46Y
z|Mb4t!Z5hE(on0@C9Fg|CHCcM>MFJ6YO5sepY_HB{W>F2>JLsL@W|38#g0A0Eb{$j
z5J;kc%rAEP-Q`93(D4V^%-Xz<kxm1a$1PO5?uT#3Ev63tpeEHHQ`u~_P}w|BdU%5p
zi~iIXNZ^I@VTI=i>_yu#J<)Aq*MenA==2i(x;{WNne*!{Q?ZNHoQi&?cCT);eB<L5
zpUhMKCQV;5ecVv@fpTdKTaZ;f&)ymXxrfr2DMwIrP+-K}VB=f%(bDx$EaVW`<qlyR
z;(`zLvtLI$H(6^#5K~^y2cIpqal=qrPOv+6sMdV{iF!{||C6Y9`xS*h#Derml;JHF
zYQdH>sOO0)up6k9W}c<z{^DjD0iGWV9QKa=wESZ$6DN_)Y-S^`HK+JCvAcDX&x;=c
z`R<J-|8s_U49ytd_`+z2X0JkEc76H$7sT9m4wZQpiqdn*$X4w_dRZ!+k$S7WZV@#+
z4mr~NDn|;IAM)(;&Q#c)ASe?pLKbZ?-oEppWiHqQMC}+kM@z*`HybejLXrDebU>$(
z4FQBp<N$at57^5;b;laW2<&+Dksr5G2DrVFJ`X;qH_@D<06B()H2}LDz~3bT*+;z<
zC;B6r*SGhtKQL95yc{KZHJf~3$;dx$cRBZ=xbp-pC)a1U5}ECl$li8+319$iGno;d
zVVH67?B9U)c=0=`>HJurIHM-JC;(n~akETG_#gz!Ovfz-5B9)r1%3Y7KIJxe)wE3Y
zVLL_a<47;3G_=-K;5nj@U%f6U1p|pN(!WI5p8~ic3_w-QA2o*eFAJiT*>Rb|^-tTw
zy)~(|g5B_kK&x9N!OQj_gy8bncNU)+k#Ch%G0&H?Nnmb#+|X?YOK`irB^X5_`R6Op
zkU)l-<UuFxhpiaU<N3R%S3A;pnRcihEEDc28kWMV(j)AEF5IWAbJa~m$$9X8#AVsQ
zyMu`GTldv>58gW^_&#-=sRyDPMbDQ}X=~J#pBBKl)RM&`X|6CQ3v^Ltv99eGoz0m1
zczPlMS_IV$9Za%V3jwQjuU@bcvOp*H1U3O+`u|gt=QG(5sKheLpIQP467nV@pd;Ks
z#|!~FCOz=<=s@Rn0RC+VP>Cg)6!1yXXEjs*^1Z(Q^I~i;Fy49ZSxrFsi=<)d*A~+8
z12cz~<Yuq(=?nuU;eHI&iQWDt_0%cN59=)ok0~$hq$c~41lebK2C`yi-`66S)&#?w
zV{WY<tL3iW1O1lsok>MP?IYw~5uc29i;#KrW67Ko=7k)jW=H8uzgD8Djcz%*&cn!S
z-b%+PFzGqTkMWJqJ(V%a)Vu*9hH0Dd!)(-ohTyIj4-UmFb8i25uXwpa)0~_|tQfW_
zqC&lyU2begXbpoImS&>3U4FL6C8k-So|djp`8Y4!)s)!8?+}W|Fib*~6Z~}B*E4x<
za!d*{In^h!r3o%eHN9qeL6_srO~{kq_v518y*=-7Mzr0zl%vx)tF+3Q49FFDCyRW4
zw9mo)dBeGj;SfpKWZ-Wwjgwws=Es3^BuF*{qKS0)s(H~Q=KcUF3yUj{=)EPpuw95V
z@?I8_oLM0e2Nyw|w$6I^9CaooF&RF=!dnau^mo%H_P^n-E(U8hif_|b;TO6wuyzak
z1g}CoiN^||xjm!yh=*;m>4lP8PX35q1+}E3@^Q8a{(($t8qbsjT)t{&->ktaWP!Zq
z&O!NEVzD+s6rha&o}syd7Xr<hw`slP{sgbv5Vo^6$i#RhkFoklxrjRKuEFoW14rr6
zcF0jS$#*=zh?^=Jfn$f`9MC0UsE0(P^NW?5JG=Y0J^o_YcmB|$C~fBu?S6+I71#2{
zV~ge$lwR`hoNnP8V5N26EspN~fvG<)oo=DR2JF+p*xlV}ZRtl0oyKB*<U_7QWiBa(
z9MjURN=C6u!jQv8pvsyD9<WzmEWE@&J?aB6r{fJEB=mp*T(R662cz^xMRWZVBjkHW
z0WpFX5F;i5F~S32Me4w~1|T?~8xI2s;dog#v>}cNC?u$kP)zMc0jGUPVjNfE{iwx*
zsDht{+>=~8C?lf~hH-l@VSl1p5H;wkY!I;?rFB*Y<mw}KS=krH(96F|`)E_wu|e9t
zbF`nb0UT!h?~_*4A?fWD>-ytl0gEVu&8M7lRqt`!6Vf&M3if1et)}HA#+87+4n4GI
z70N{p{1~$;E04V_b7_KI>fh{VfV_lSS=&On!)+;TU9F(Z2D!{0N3@X$PBj>-ORF07
zWKT(c7$_I^)=ek%Yxeo3yK1{JwM43KL)ynW5!byc@^exG+okpwg`B8Tc&DFE;b)Aj
z<b>x&p~{%Ps6T8%V#htKF6&ipU$S^+`=xU18Huq>jpCjs%<#o84w?&gp59-#yFeh%
zgqb>~w~lbs{%Msrrc+dW6WiL#@^UJ3wHB{M9eCK9CMM<Ry2rlE`9wI25VqQ~I!@`3
z2y+CnRA&Eub;6j)yz*>Q9Hhb38O979XZRw_UGMRU!47u}f)F-0*-fUjoJQYzYKY`!
z?HCby!)1ePZJag^etgDFy5#YKqG+VDKqXREQSEXDpVHmugJ`|$S>UNvLMkTzC}dq|
zYdvewY`?tz2KiFP;*ygaX7A2}<$E_K*ELzj^3bSK(jTRHZH<GI!r_vW8jrlM={YgO
zYn#SmbZwRNltO~5ex1s-I@hMSYOf(#VuFoIEwI`|9eeBmz_2GTC%jl5ppnG`$&H&W
zFf76bBsc9q<jWs6CUxJEXvB%j$%>SEmRQB@0KCo}54g+$5S0urVg%P=K*!<-v@W$S
zz`N>pF<d2oUk8h8b>P%(+n}`JaFU*yKxrLyO{_i63^&N#6n6r5uhz&fpal+Y8whUS
zw_qsGY7ejB-0Leomt-`>>#STl2q1370vV_{0GT&7)9*P^Ey;Tq^N?i(O>J)o@{bEh
zxB@%D9Q&Ukh|bEX7#+k{?>jTf<S!X*?H1krTvuA6xz&BO8RY>+^ix7DzW8=ed!X@a
zMWpp}p(R^oMLes9$wDK*iKxv_b=%)Ed?Lwi^y!TJJuj!b@SCO*QqS`#s`_AE)hHYK
zwuJ$+r=o2kWWpcKt#t4mpgjx#+5^aN1d7vJCoHq`XL*(8+!%m_%YOrhyI4~e@6oTz
z(sH--5qGB0pg{&Xm`b?6Na3eHnF!`GrM|b#sv6qVr=QO0LoxF1D7E4|sLXYm-7)kg
z!T6CFcR<~*yR7fLaum;4_WZM5$>xTz{6XW&$wS;b;_irQm@cjPRl)UAUi-MUgdySm
z!zH;KVWrhVW15-I^L>v>8NuSc&+4a!!)j*}jkMKa+{JJkZIYrmxxN8qH2;5uGBzs~
zG-FWCAxuDJ@+|_I_>YLr07P{Ag2IU;hH1{c95kEwBFl#^-ltMPo*0YmOzp|N(G5;a
zdKe#JKQ)Q{WJRW~*+*q<)?ckF%PW;tYuNjMy!TflSgpkWmPaM8D648`ib}|(d7~1Z
zP<tdDGVaUi)TwgKMQ?SK_o`o8=Z|Lz<o)08O1gRd+%w0PU>*@~VRdR4fT-})Q$Td{
z2cp|Qnbde1NbG_EG!~DqIB60iP+P_fnfXouUr^?Q8IZt;dn?9)3rjMDLW%98L0dmv
zRL$SZMb3sP;ot{;6qEv&q#qqQrv8R{j#zj3MMiU7=4N~ScmF?|-)C6O^+ZQpku&iX
z69mT+p}~^dfr%b{7SfX5WF!$+M!oO{YJBi7CuZ(?e$}BkJp5(@bb7ClZXcC=ktZ9;
zag2ioH0q&q>^Cp&Z)So?FzaL}jYRR6era;7VC&?3AXixoeJe+~Zr@6Xh4-DwT7UUX
z=9enuc;}XR$Wey>%WFfwvc<Q*dG!o8Kj*u+ad@@JWc4=kIK7ei!{HNGd9)van(5)@
zXk_7@@Fb-<Z3Hy2p3skv0l=KpsN9c+-HF52^CmINNQ1F24nG^17#n(1%YE+3iaSq0
zQOAQ#xgKxY3VbEdHsrg{5IN^h)kAQWPOU;7fMKKnR3J^G18i#Az$bKXMrZ^c94rH}
zx2XSsL@C4!(7AiUfR0xUbi526J4~8nKfcY#a*+BhN~H+&jVYoomjBX(H6Y4YIzp)z
zxK~Ov$@;?9;Kf^0*Tflqt)HDv!5KsI2_%tT!?U;_+QrMiJA?LQsXxiNsq;^)za0Hi
zGT{%lPd)d&RBpIXf6wfplV(Rsa~olcn#P0pz|yeyQn9*uui~yEMozIf(xM?INy$q+
z&pPucj9*!?z<pUY8~sc=T#a~FZfel~Cs~DIw6!h$HO^CH*=~^~bX~*dDf`df=}VVV
z+oiGlXirk{Io;v!{!0m}aALlpdV;?F4}0KC)9+*@-|vwG5IK!2Nqr46YsIA_9G>-3
zE^5F0$g}+JV3DBqme>2k32m`;q+2xU!6*1W4{nw`VXAP_*qv&MbI#3EO8yT_{iR9s
zU&qJ4WI{67XGiybi<<3x^f~?&=T6&y>aQ^~N%QJ#bxM@4_*&KH_}JLf%k<CRp3fhV
z<yQhr4})C>)mVp|2UPxWaxO)h7%QyTIBa5$6a|mbyKrRmoN=NiWD-9Y@b}~YP+Qwu
zaPXjjXs;Q1|6spSKXHV+#X5n2{5ySpK#%FZgz%4TzOC>*O5G5UX|>4{oJ23D(8ml#
zj0;VFTT1eOoB<x-3`!xu*ddDPSAfTJ1A%}zi}xG+n34Ra05aT7f4@)+U@jzK?7;+5
zKtzD9nAIPfeEWVaEb9FT)f^JP8VP|DB*yw4G~wqv;<8=0A`1qXs@qWnvvBn&?)e{|
zE{pj&%qygNlo3mx$qlaroKy0FR?U&6Y5$je?Zwa&mDa0?Z`vFy)jQJFts9uNx}7V<
z2^<txQ}17^X=kx`RAL-hMc+3im*~A-6VV?y(SPOB9csp{>w+nhmvzxqzl{cKrN-q~
z9r%=)T#Ow+CzM~2uqE#OaRu3~@hzmYExm}c7D8q2H$S*x;4Iyp-j-gM0fDqRDm>y_
z;iT>2Z&{xbr)}MePJ$$Eus4=fP4J=m%MGOGjnqk`u++p=%#M(bCOO#1a${Z`j1n&-
z*pDh5H`YaZB@$X%%kW{O4lAK#30N)8?KI2oQx;0id(|6S@tng9osU+6&mYnQ69eP?
z#%=Hc$+d9Xwrr$oTG5c!Fy5>dCJ>%p2(PCl9s2IZPl}=mzsRi*oFr!4D_U6;bqQM}
zE@<THu`a*;m5e6*r-=}DJB^5zT89N%oE)4EM2e`SPhJEhWROoMj0tXE1F6Ro0J*@J
zKZ|=XkU2&I<4}*-5<RA05(m2hT>1py5>87(h{OUSeElLk=ve`S<kpIV8@hRkVE_cj
znZl8d1KzM;H>Tv%&rYPPA-monGd2bN&}@@N^o^kS<=S!IU9Y(e=Y1ch90LOH7Zxtk
zJEz}XheZ+59>Z4IB&LiQDHLWw-kUQaibFI0zjJ_9buqy&q&R_}+dIf;&C!EG&I%bF
z?(5cwGUK-85-lV!j6CK9BCTWB$p=p*081L!uok8SG5Q&8VR<mQcvZG^VCk~BaIi|~
zfdXVh=*tuz+&)7fZqmIJZ32~tEeR^u`VBA3GVxmO=YmBEb(#qgK`NJjLleu+(C7Wa
z57skb<!2)EH!oU#PlhTtlLe;Bv7EfY>?8r<iN}W3$*)>iS!An|ld*4&^DxC{3`3Zy
z?mLY`%&G1+-iN#aX7LS^$FXWCF9PtXD`96@?)ftV^x><%DyO5hdv~HgImZLDXrMUL
z<(`+q3O5;wSX@M#Z*3?!fAhS!Cc+Jx7bURwDljkVr#Qy><4mTL8Y&dE3|eKz``rG`
zXJmg8<n|K2hZ|lk2x!Bi<b2WuYk^}C(DuM8(&7d=UPRLu1}(!rQ%v`KUIO<?{f$>7
zydv}Axf7%petX`F)Oqu|Q&R_!y*+QjUGEZG)JKl}zeaQwL)lsLx^202Jf8P&8rfRC
z`%LCrnJZIR=8wK~O^EXzHE<Tn)u$8#`*5{9wNc`a1131WaVgi*JM}`bzNO~J-4s0Y
zZc?~=PL-=H6gysfx3(8G_~UxE0fWiGNt5M9ZN|hQQwdNv%7$Gkm4H*x_ydM(h}iaD
zNntJOnV(~^kFthHVI4D>DRhTko(h3#heEU8XLIg14z%|s#XkvVf6_dYJ7(-*`s>=H
zen!vS{g-*QM1BnWt<tsKhf9>ryz+$FT(s%GVlQtA+MVb|y*hc`R8p+8;{772o5W#7
z@o_;ER-~kx4hvOb*gcz8w~kL0P_!P*(WwttWp&80sx#b(nAUZ0dSEpCU%b6#R2{+6
zHX1B=2<~pd-7P_aTd?5n7F+`ag1ZEl;O_1g+=2&pcX#-jbKdX%yX(Eb?pid{yQgOM
z?C$FBlBa4|m=M$MY0&XlloOL6LfwL5)j9@a6+1YyGbCrcsMH^ljE+pdOg@<<#igm&
z9r6is6&cm@1bn_e%GJCsJQ~{_$~Gd7x4Un)zdXxlKaA~i76iY$s>gbl>#ekAs8r)r
z>xIpl+<pt)Y>N&xcDoL>3q)%f?vw2i-m=iN`h7mH^owS98Ku#S#<uZ|#;-%|;+V7@
z94UvCQnvaz-v1ob4YhO?A_R5hCymtq9mdx2P-rfWnwM#Y4mKg%V{~VDODqu3GT4Zy
z09|izqsQO9%%vKbkA7j*XYRn5FNE#T!N?7iho7^23ShT=!~dm;PHhZhOj~S!rX4%$
z*v#0EQ|#IHnq4$Ebok^YZee-jz|^^pq=e1fQc~<L{<p<kyh5zJipqFoRO+1{8pg{x
zd4TQLZINRUe6n)d!MlNin9(ui(Sv#g?(Xg`9`(83;e%<8idpuiZn3o*iStB!68O@e
z=UecVt#24*7Ci)!Rz-->C^gm7KX;GcY!<wWNGBI}(xtua#mi#$dofss-EysJeX`&P
zo#Se{iz>`e;VPXCpjxdap5jS!aP-H!F!iF?kJU|4c3j@>*sK~+cR=iMX3yz9B{i6f
zRHaO_Ri#B)L6V#<9Qoo}OVcusVdF_*n?Eww_EaC=y=`r3T#XKslvF<<7U8xampH#&
zT2mSRf@eskkGLrGNPGWgoVFTv(0L|YvCc}z+m-p5REQ+wO#4lOH}?EKzw!5jdUduv
z)is%gkeo?^<|*t!@Say48-(kZ^a8?ZPr4UU<t?=7{Rdff+IH+wcA5$EcfZm&jf*dd
zNq&wDa1Q37!w(Eg?veGS(qrY-@z7Y)<0dgKpH#Ovq$v!26LK%M1)?;FGx*jHxxU^J
z2pnmzh~0*gsD*$%iHW+Xw?BvY^C2tRdEcIRUSmHq*cNm=u>n)j)c3~C0|bB?Nlgc+
zSYR^tj4>z|BIFjH*XkfdaPt0e)EVGotRBG1-g3Uj%?P>Z3%<h=YzRld8Rw!`hS9(V
z1Uo_igly9yeBx>>WL9T`ZWDHZ^ZYf#aykvH@0P$Y_fiCd#2?-Wck0pf5n~yc;k|#u
zLq98^!?mcQ!#ze*y?0Fmg&b&dvVg#A0vghG8XEGY1Q4m9!=)zlLH+<xQb=*&*}Cy*
zWqR)~@UH@?Ar7d6OhCH0d6gX_soryE!b301qr>sbVB=iRV<&x^@KFO$Fm4q>zoWOg
zwIDoC62ud?SCQ)Jr`vq}@MRVEn34<;$=E6$WlOKnCO@J_?v#pZ5U#p^pd~hB{gbGv
zmk(@DcfYi8FQP#^&BCLJN{cR6Imei#tKGbkk2ht}I|X@<kcqYkWC$S;p;hP;qYPV+
zFCb<vUy+%r@FO$Hc|&<YmawwYZHEM|EsaLvA(&<lZsVsa>iwA`vrCa7;v<DX&_iJs
zS;3pikA$JqObywOZKEFKR9vlCqY~6g5RmueNg>h8{otkQDp6X@|6u<HFJg!IGDd9}
zIy%T7u#nw+Bfkh3^CdZGY*$y%@JMhlJ_*zs?W`LJ|HMg9Mv;+oB-deT-i&jKV_gqL
zlz$Wgl$K`dQ~!BJM1IMI@E@iH`LIbs$Dh|`Ac4Ce9P}tTP_SKqyw(=V^LSn6zy%~W
z9^ltvqMd-|UH1=5mq%nl4)Qur)%bYTt!m+Tj7s=*8N>JC3NTZuoLjLjtA0~1R01!K
zdO=babEN{8Sg_xfOp0nO^wd0q<>%(O+$GxVw0i^b9bF8Sr<&mK51;JQm2l|>uTAb~
zLwbt3yQhB@ctb&Xeh3HdyGqetQ0XJ8hCS?8A2!`tMt+NK7>Jm|tWF7YrqJ5k&iT1~
zkqZ10=#+QCI~jckt-w>H+_ze-ii&Zf+-Gp*c+InQ=GSGV(?nSKCyd5NoA+Yp@B_L2
z^NhtE-3@-+13sdD{2hcH#)*RXGlU)U-~1<^hD!mJM0flH7=8TWn%bw1yrO$5P1=wJ
zq(VJraR-SfnMC(5#a%gI(VUVj+GlmT<l<Nz06I%Ka02qbVt$=~yXEB<P-`54ee9t)
zrEOSk^Y>{!mKEHiDUh9@lIUQ7w}tx@^%Xn`lwd|vFso`s(Sy3=DCyt3zS7tMrUr3T
zu*U$a17dBm0Jwsz14_djatlC%AxA>kNze|C7=6SG4ZraU!$Y_S_;~!<4e)@cjDH%O
zT7!H?K{yS?z^gSe&LAA%1D~bU!ChDyp*hu*bM37G!peh1b0L`Y={o2DAXA_Y62Rts
zQi(TyR3&9lkQgAh@hyh&!@Cyny62B-QfK)H9<A^{$Lw!Z8@LujFKUGa81BeeiPA{<
zslflM_qPe^Z1P3Ur@O^dQmAJ`R^3AFrC^ntGo^*yDFRNR1KZjU5h}nbWa?$_RFcR;
zS(H~s>Z|^@IakrCDNBc?*qz1>wvM$Z=ij6XtZBl>k{2g>MGWz{kB9HCq`AnE#6(Wh
zR1~JnR0nKMR7izB@(iX%D0uqX|C}60H*mC1jW|ZjTi!D>`L`!AuW=0>cA2@qYij`n
zQ~)GM2HK<^Q0e<vf%-|{0I!z-up9xL08lVp_CdzBJD|h+75(_?Os@z0o(?+umJ@U~
z+p9TcLKO^1xwSe;#bg8wnh99vq5x!)1>pEN!C+^D31QmD4)7lO{ecr?@=#=`&tuqh
zuFbqf#KAVP45Mt&Rts`mR&;Uy+Wts8xl`?ZgD9317pr|m=th~1y;qoBi-{N@?0^5w
z2^KgHun3w|zkWkIJ=sTXtUuD_LiH!-7#R2*S7w`?q+=V*C^^0)Z7u<MysT>3+Dy4g
z;onl$Y7){FOz5Z-*S7yVDeG@xwoS+cDItdvhSwmgn7J|a2!?-k{iLj7a%&o(j8xD2
zfax+LqqsY*&Lw7UyM*CiMXwYmHzTXa%{7FPi|?d_AvgjqT)YPMR<^oXS;Z!8F0r)?
za2*4<OMm1ZxIquQ5=K$AjA9XJNsKZMnaFLTL8v!P%3{~#a{4o*r9d;}n{1%1K(p}Q
z!;r6(I@T1%fv?ou|DOlLPvOeNJLT+S2SiF0$Z3@a!w%JFq6l;s+D-h@>}_;%qv^hq
z=wr(M4uyT}tGZ5nB_I3G2qD|2RM~zuxbksAAAe$rgR&u>p3kaa9<=_kQ#*^a6Wnuv
zpZ<Xnku{*WXW|O^htN?85T+a1@F8uFWUA_uFI>?^HXiDC>N@7X$s;TY71!pZ(^Q=-
zb&=j&X-FN2J@d15d|~kDxH=j@`c@m?JZ-RWG5p4Rf)&=&othP@r3F0&Lf(|EL%#NM
zP@t0y>W{(M$YxjN;v`ulu~{|YtphLD^y<%8x}{~62E&wt#F=^v!#Dh~`ByS5^lf~r
z%kvFyZgSV?U{e><Q)V=`8wu!E<kB;({I(W2Olv&(c-RF^Q?~4_Jo)bMNZxkYCRkFq
zQcI~jXI-J&hmU3~u)!WqOfiY`?wHfmSyR?&L+ue1<=PZPkJ?4>+zmyKEGDrD-E&AA
zTSfEMIa2kqMPhzIjutcU%jc~pJul-9UCp=SyniXVd5*@f*C*k!Yu#x`T>osyvvSqj
z+GAtG9*?aT0MQFQInEr#SFTSo=}FG0KCSpY0!1uL*p4bJV3(Mimg}Kig?;kHbY7I`
zm%sko0$0=o=;s}rM!ZY9{lq(tADKnxm@J!=MH5?{$L6?J-#qF?s_m73%(oLZ4fP|_
ze!3ngqaRcDC5Xr;)A+5!v8zNsoeuREao#@%9y7G?d!r8W{jZAaf?HGPm#rea%WY8q
zXEED8ttB*fq-Ymp{N#iGo}(9P3RQ8))rX(AnH2{mYDc_u1HwHuciw?{RBK}H>}$MZ
z9YnliLImmCf`7T>7)aB_pHAjcJ7LiIl;G`+#f|6-2qxY`_?OP_Vq>B>3u|hy|0Y7Q
z3=N^?Q|IvW%8M1dU|XM2m_*v&KN7wd>(Q;RzD8{F;*)N_S{GD0z{apasa5v5ci4F^
zS-@RVt%A1uDUBiKZ7`p_ELs7J{!`Yvut)pvzJ+^2CL6<AuTMOlZwHUDG5r^^S4xoK
z93{VcDA#0OtK+}lZPPze9A|14z@p!^(?7C%`(0>w^}AhC8Kt<+Y~lcFdGoZhYdddI
zMyJ@BKEJG*scsx`HhRpM>GLq+RIK_=WpJ(+VT0+e=TF}9JvM`G8`)pz=q<Y9Ztd6Y
z(s|Eq!TTwX9-+;u8@^DOxkn=Wzt?@P-~XQV6_6#=<VGHs@ozzA=I!M;*h&-TjmIwD
z)L4FlQ^v57dNhy9r1eZZa8ui`dKX>z@CUO=eC^T>c_qaeO@6Khf0*w!9bNO%e*x7g
z$+w+Zg$k=le2FQqek<Yv<4V-Q(K0bE5(|arB6U+r#1!q}#yID<79-aXw$6aeoeQE+
z2p#XqTeb9ZR+Dv_%rS@r#o^wa(3Dxjt&@{+iM{5}k=ym-Nu1kH+Zrl2EKBSW1(u>~
z4tS~d9pzJ%wL8V!w*i4R+W76P+j(bP94EMAszqC}S>j1Ie!V+b&Z_U4F4AcAkQF)d
z$PNEiL>>-Ayg9f#n@a^r(*oi~jp${|zRms4RjOFpk8-JF7<E|5QBUO?ak6ncu@9M-
z$t%is4<zovpNd{tgS{x=wKzEyq9x*=xN6#3dI=7&?u@B$c>x|c9$`P+8l@(-pC}6`
zE&X2fd&$|(U46Ga^3bk~KpMLPf<uNez&4`*F`?Lngb_lk8yIF@efDeMl)M2Wf+sH!
zrMEQNJLqb>e!S#fAwK5KFr6-d220Rj>aynbgBZx}x1YfFhyp;v>3txm7Xn<<l-2;i
z{mjcJ<G9SoL6<u`m_F3ShNlBRV#SX6MLJM|q@c=1Eke-@u7TxsT#U<87+T-0ekH6E
zri7C4S8Y6wR){`3Zc}#8sfYE8@z1UKE_<31LzkR7A4WySRX+^REx-6xZG`8GG9$PK
z{{nVBCMiYA)n_1(@I?0p&&e2}ed89>5m=1r&!LQ#?BHrVN{KI_WKb{Wtd58FOsrCU
zs-U!#9ExL+`}3lzPbe~B!KnI;QBftYtVjuyU<70JYX9qMs<(q60@pE|G4^oMKi5cF
zZBaip819sUWK)dAAD3!ZtRP)~z?AykvLfMh@H??TQ5#T}Y5s*SgY!7fgT6;Ln={Rn
zGN#AKF6cHIg+&($JR|#TsLpi>b@8Qo4TEFBEn6TM5O_BEV_qFaeCXJ)%LyP5`BgK*
z1$`I_0^QL;Q0;5Ldn`E0TRwNK6N_B@f%$30Wa;xzXjn0KNL}L=fc`VALjj>OtediE
zGEh>SXO(Aa5Qacr`ObAb+tk?ERO>gBf=XzOBSd>nF6ON<!&67Or8&&=5MyU$2X1`;
zLjF-#Ku7*7<~tTR(BOcK$kbOWr|=bRM-IgB0N_*{Xr=|t(#@7>{n!&Xg2vp)L2p`F
z-ttQm`dzR|z2C!yETf=BzBSRZ4MqE-PKB29efR?6R3=9Cd!AUb^h9q=CgLqyJ&e^S
z3+;|vQ57hAnKA~d1cRn@gQB-BVEjnLZBny_`(u6F6D1KY$U<n`qT$$>*~w+U<SaRf
z&}<=2+rnHaxE1<JH%{heO%A(#^O*iba|6%KUpANd?K6S!XZM{UL=|(^T1ME^()!O6
z)Xv#D>1wBzd2d{Da?~J+M2EUBoa1R1KRHWw<U8?+w_p`?U;~cCo*VBWW1<vHt4jZY
z4X1Qs#l7kmRZVKOLRR0Izu3xlq}hf1lv8ztWVOdOqny#=83xlVV{GQnd!O?DR1=7B
zD<+_WUXf-0wEYZCphWZ+%dFr$A%K7v3N%eHi69?8p_HOysNVdY`tV2!+H1j8TmV=0
zY~WIgekXj-d8z{edNT(~rzE1&IRs4<$l)2lm;IO(xO|OB%GlR$LuSsnDn?OyPZr9a
zkfSXbz^I2Gql(-hpm=;u)|fu6K~6P`6)VjmAk3lyB`Bth7e&rhXTWw&@tepbrmH2O
zOGbyh3khjNB6cAZwZgVXQ>C3+3FX%nLR(*28#V8Um6}I^FfQm#;d+rZ;V*}_J!-`h
zjuzVQZc~@>Br_`Uug=SSk3MuuzG8Qw396d6k2F-i_RB)7OdlB~#}`7ED2vx(mSeaL
zRAMrr=PlQ{I{yoYw-TDev@xf97Ht@4#MHd!Zz~jZyTd_r&K~?*52S11jug;AATaoC
zOE?gTJBj`PeMg({sr@{^3u)y2ttwbk>R;EC0bn{71l&iNtI_vCRJze{^%}qe_yAgS
z`87r%6_^9+1!^M{Z_B7%kXnMlP@sV2%iDwz;qY=D0IZJ+o#=IOF0N?>mfz0mgavRZ
zy*W|nTP5&8W8KDuJQh{P`?m9?l|c$_-VzbK9t()kqS1!S#~*!{2>%?OU59Eiury$F
zcLN--K##)QGTczD|JIkUvv!&tDGdy(R0wVMv6QX}zAuH?xR9Se5SxFLi$2R4l~J^Z
ztxRmW_;(bKK}jPP3CJTbl$^w+1!Lkpl~e8{AfG?p6+CywMCKT?;_NIp#Blmg&G6^0
zQe_p%Xsg`N+|n!g*iNRerSU3!mHlxqzu)#HcZU6oiqFI41oBIcRDO&;&uW2=2A7iZ
znt4^RdXXMqNE^cG$E-mVwNueLyyDfX8uYJnKYr2rX6_fH!@k2z8a(5#_>y=p^cmOL
z^v#0O0D}Muze>Zv9sl2nonQL-AI&X2EI%6WvN#R5q~-p{B`gnuyu1QHmsSI9RH#o2
z(v=k8CPl6hB9eseL^Iu)IHAh`no_F|fHi_&!5UyTc+!H+1r=yEw#%C6LBbo$KpUk3
z#vMMOu>xm2!7ULm``iGH)hh@LT_n6L3Bsrs{d?|6U^IXLN|YG5k0$WSGwL%UEXD(p
zyWJsxz!U>EpiltN+5iO|lmvjpWCA82`Eg+3kp%>$fM5YYG{eD>4;)?00kVDuKs7<B
z-z|j~&9t_~f&;l8ph2z&saFPq1q_69dJX1d^Xq(6#18Uxc!LN%3e-8R4zLxXf~^n>
z@RBrO)OuqulMg?EIG2_RCa(@PLZ5#Oz<ANoUSRkQCJ;@v)D-TPL~#$c=N@@J>nF@s
zEsT|jGT!?k$*0Vw#2X#Wj^c(R6@wXA>-->^J@3Lq-y4U8hn}BEfEahZ7Uob`xhXV}
z?vrL5v#VDNLLDjX(r2XX5Vc<s4B2%))M&pz1Q3WKs>CFr@;{0tws@Rmf40#`<vves
zQesf*%B49YuZL-g%oAPu-b-(1UHvCly=tg!3JYX!(dy6y3OWQ(&=X1MI*dU~CqDSB
zRtHI+Nu#7@Fsw7n>7kw6x&$&h$vDHhl4?TejH)K!PcGNWdH@s|5=cmpvb1Df0zF%Y
zrlkQtR!yq+@H9ZEm-+$w)C}Ckl&(YfA3_B(1ABe=zk;U>R+ji|OU(#IhQ3yidXF4r
zvieo}M%rwA<`>SvzuHp6gc&;*PH2MRV~|w_rXi~IO#*N|X@b}&2u%pDPF0^2aI^m)
z?q%Z;T}d<{h(K(o-yFhUkPAx*Jh)XIWJ}_I1FBa3A)KlLpH&5uI>aa?*njXeA<B&C
zItb13OQ8;XQ<z9>H=TS$g6#uC!nIlh3#G8DNLSGh-<`T0U%DCgaXmY>l+R~HZfQSU
zyx45MEcLG)x8vV=bDe`vja=uJ&kiYeM>{XA<M-Z9*-o;PH_|w1g_l0G<3SuVTOYT3
zKVZ8M|Itch8ZvjG&2V-oS!HbbV&om)NR{g`F1bZy%*$%O`T>?NHru|#>+-!_*T~%m
z0x1W_KdHgtG%9$Vr4W4wrKCptpYUjY>2;|ci|BKmP>i>v-9p!X(i&NixZn)xl)6kj
zU1QFjb>?uKVPqGbPR_D$VaAwBMhLU}>FdUhCfQMb75z~kF+BTa+$U&aDf%)2il{Pj
zrl}rP84WdcT&<eTP=YK#$zJwHwTfx!9dDILwcH$!93#qU*Zl;)xTBK&+dz~unxZ<t
z%-`3xpIvHAUjKR}vYN;Fv3yVt41aXR?&Fm7C#aai)W2OUsy{XtRe0BUG{nvaC&)cp
zvDHA%?I&L4hE1j4Hm7*><1-z3@b@s)Ug`+DgUZifIoJQ$r-Wj}Sdz9CZ;ZTB#eQ;M
zL?in=&!vIe*=AkC>TA8c^!0-A=6WB!<LrA-*Y$J@Vx#FlS{drlB7tcI1xwn3*7;NG
zoIRGU2ex$dZ;o$xXkqzv3E9w}J;(JcW{hA%<2DkeSZ*oPKZKMQ8UD#<6XHEBQc%va
zu)rhxeP1kEbI~4KLi$Ar#ybUN59$HO`V-+N6~>~EgxL|LkoBJ^`!}lTmVg@`ajG($
zs=v7Hqme}Ub-S+!@=$6U=~};*0hwn}#Iw|+@+QSa>x#YmEwGT43R1(|W7~aE>CIIB
z^4r}qGvd}5HZB{)-VMDYOunkfbgK{k>jla5o1mUH<4m1V27|8P`_OLL%wgFze0P22
zusdx=U+l@|SyuCKvhR)DrhvJ-ywr)eD&spP@vF*@7_fzgqTlH&NLeK=(>9>|o_-d-
zkmu`X#7EV|i}Ej)h_lC2BaV3B`QWF{@elVe+^mtmRAm01QC4{HAJ;CO1Al4Je%LB5
zx{B`xA?o*IA@Hb9x8PQl9P@Wh8l&tIyrRiGtd|YTw*~4tt`>DX>qJ_Xy2^1E@Rz1_
ztZvIVzRxDNg{L0t-!cYfQxCZCtV%fzQy}=?OtJLuVHYWPnSSaRy;pxfKfm3CWwqQb
zx|m}zR+@e%8|l`D)E>Y+|KFdA+Z`Rf%iA4oS!Zud_gG*m1WP5^@eD-kF!iXwE&(gp
z+dP}Vu0AX5nJqY{%Q5SY>;e$YX*2>-Zdj?7ucD10x$>ky2<uXt4p%*{vs_$+Hb<&&
zyi|`r<SQ1{3-Bot2hFm^bNa~*srIi_d_#ZaAFiLeYXG|nSkr5X_rf5?CcKW2Z*7j$
z)_is>+KFKK<sW|WtR?_)`eot~qP_eM>iOdZ?Bg#GKVQ6!(!iYY1cA+Bnu-+N%&@=v
z@~bJ9&>~%lfgG8rZv>siHGuVJ$0-!)C|lh8VfzNG)1zOE%@3SZ{`@ZyvOgRKQax!J
z|DEW~^4wkg(Yw{fBN5%<Q6Ub(@KE(>GPvOSA=@L_p)RU2%!<hbr`STGD@RlQBpuIA
zjlZRJhSXja#QCBMBZM>Oi-+eDKOwqw`TL(FAzMB5R#HYV^t76?3Ww-NZEMvZ$@;24
zy1t3~>VCYk*n~FQlYgT^T|NJK1WE<@UY+fY!pq?C*n_xSVvthq;*Yz3aVQqWq`IRe
zs!2(?v|Arr<`>1VXHK<=HeLM7J$GV)998265=b`|R+@9hnKSU>q0X0`Bt>}<qfu3+
z32PYMHN@6oLY{Phh&Dv9AC>_@0E9?DHsAw6;HJQEdrVNFK@Iq7<Q?GnH4kuZKgp7u
zc59GyT-5md_z$ot3sH1U95l*<ec2imU9dMtTubNttkorhVf^bAjKQ7vq)dz1WG3_r
zVNvCwP<b`2HbV*~!t(XAHags*2ypPEQ2j+^l4(z8Pnz_B!4P?R4E}J~-(J_4{Vk&s
z@uHpU&gBLRy`%XzjAv@E)1M+wjC6%QthSeRZM7}GuY>R65k@)-OFvQ!vK=ytE{y$n
z_~7#0EjTdgP=1K-BG&W+)ilcmpV4#@agAI^16zAQd|~uj{dM=)<9VWYl-ur4{#z_)
z<1hc3hh;VAQ~eBoBswQ=rinq$6%J=R(oS+n9Fi?35r!l%Q))gft8+;;w#4<JoVsVx
zlCDzc<z)ZdH}<xMhq#%J$NMH^EeYA4#h|^a29hSt0^M#1sM2HfM&2E!uMzcuK-YRz
z!B$?iy&c_ZSrkltx9+#MpJyVe+DR{gZm@&3AFu;*Hw5eLe}m{l10l2eGbmKqm#B>{
zLagpcgm?D#8PJb94z@ZWS^C8Hq)WqoLKrA{xtm3S2e6_4PB9iA)Ov$Vcb40K=M@-Q
z*1qx6sF?h7ereIS?IwO&uc_(xeOiNV$C9qhI;e#)PZ(BZ@9BWD*uy07<C1EzM+J<3
z-lg>8k<{4}BE!-R_5tZatro7j>=>%UWFCPN_SYr9G$Td9PCnoEkr{#hhmx|+(aHv*
z6T(h!GY1B2AI{EA;lEUg<hr-vdPiI#KM-qIKD=d|@yf>G&U*UH@(usBalx`(5s6?D
zG`dFIpDCTNT0&qFF_?&~_9aTc88ZeZ2Y8?!0Kg(dd&mEn9BgmJ<FFO<W3R~vLFWl&
zA+@MKpc=0d*AgqfT`qbGVm%$3kNg1jlJ#0`yqv5_|G1Gmu^8%|jq^VE>Uv*X?6EU1
z0uAyK38W(0FR$@O8#=ZHJ?wFD(ht=Zb%o#a;VIU!!H4)_Y#Fi)2t7=5`_j^H7-1A7
zAe14=s2)`Ea8;`kC<7>ZPFW=-+vuxIgs_tYa;yY$=+&hL=wSj(KvENiFJCghXkce1
z@-SrK^t}6&-&63n>`24@v{oB&O3>oo*fv{FT-~x$Cnw@O2i_~B_6nnN+GuuAmfF%U
zolZ6CXv(iixAeHP&P-qGMm~A<jQp?ql3$61z5}vzLr<-@DwNRjHr^&iv1P?1ec4kr
z-YvFO*;d^2c3^7L{A1LGnk6N6%M8NQ%?$IVR~jWcg){uZzd=IL1NCEyIRU<Pr<CNU
z=E-BNdawZ|`i^}!>t<a}#>*`FT$t@W_=X7BcW#A&_>K->Ji5I==>G*mJ@Q#VdJl~!
zB$sVvf8k~{PUr{_33U7_KvRQ3N&|z`2L$Lo;0|G$g2_6q0xsHMfPPc~Yl0<M4`zWd
zKLpl<Vo=yLEMA>cUWEU3PNgM7xV)-rZGLbwY|vWi#tm8@DpL<L4S9hhBx93}UQbrq
z`Ghm;&vEzz@8owh=Fj^F2Jy_X7~8KY>EJ;s0yang$_NZSSbN>2&Ma~<ULE6ZHUEg!
z(uAbDJhTl<c^OI-pR@wMWH~HKm7GluPS25;Xj<vdVZ?a1Df^eC6N(XM{QeraV{3o+
zIh~Yk4;HENWK5(>N34>6#|JTR6aZ@g;ex&OHrbm;3row2f6i4PB+1acrxrPSl&lk#
zUoq5|r*|L2s^|~KVa9!@uIT~BCK?!=@`dC!#@?hWUv)z#1m{+<a&G~Mwu0PTrKs`v
znMYdAnF+@uU3nj3BM0QF-hGW@`gu?LKbCo{jUt3kggCcyz`t|@lw%^<c1s=*UK{}Q
zn6IGiHOT{t)yT6CiZM{cD1ajN8h;g@++K03Hkl<0C0tj31QnswxBBRVcIg`6<EL>D
z;P><WQ1GT*rbw%H(xqylf#3veHR%^(>mZ+dnr6i!QpmhSuK*S$w!syQAWKTkA3P+@
zz333zNZH#+EDaXY_;jqQhf{olk>^JN<jiCBtn1J!|1>yhF_b=CdF9}|y^J_-1Shaf
zW?dy46_AMP?fxJd;$+{&n?WBJMlhuLT3iJcqiX3UW0j@S)S+AtD?7QEDG|EH*HQQo
z|BZilit&8+oBMPc=waoiz*zR`{<lmPTIB+J_z)<?py0ozx$%}Umwx?$9c5S+e!sY7
zLGn9@1XEl_Y+)<i&QjjibQ#+GU}k|qM<Xxuw4!@eY3NfE2K|nOnm>>`wUmr<i6BD8
z0C-IqUb8V}>9XIHwJG9c;X<NJ6F{n25<<-ag%dagp#+1$61@lXTjE)mEM_%;698C&
z#~i@XG=QVo07vftPDTVJ)al2EmLhm)9Z;V00Rb`~um`36f7m_6@y7=%pq|>k>aaNg
zb&v-L#n9mn|1t$dhC=SJU_&fdr%@@iRhT(vW*A6A&7i43xmE%1;4Z4jvA0W>@0cmB
zAk&u<V1FBC)uI7V1T?FB{K0?p^;lnv#J*NND-oYK`muH)5lMY^FEX&rV%wqq<Eq0c
zAdJaGxzm|TN~WD`%~+eHE)NovDlbXKm*jsq7^_@!_)q1<pxax$Dm|-YlH&YWtH%=o
zX{012g8|zkwSG<H^lKi;kqX${$i`{c)4K4<o?rABzw}`}qkO-|#18&szNQR~Nn(>X
zUexc|hP>6tdxD&}c%i{fo+i`7AH6G)XJGUb)+?73d)Q<=coFMAU<ASi^X>E*Lb2nu
z&)e2|4r;bvMZUTve64Nx6H^CIX&_|X3_(<EEe*_}e5-U|`!olM*<wL~1ljwFK?Xe8
zYQ#`|X4&maJyc)t_Q*bCYoQHMB#`n?MLj?*m;_j!@6-b>#4yq`k-7w}yk8=3Rtqxn
zhx^98(Z8;}CQ0!JT=trp%d-LGvdIAgp%%!pXy$PZkaNH?iwx$|8W{Kl%V(e0tSc+y
zK!hy5bJ&#LJ1UP@rZ`~wvK|h#N@B#^u!LC&w(8m=r)~|@pQg7jb}q|jDi|v(?U?~y
z(O89Q?$jg_AEhvIf}`Xh&3)m>DA_-W1(CG+lR@W*ihWWDhV%V^7nc_#niKp%F-iw=
z0_Jfk<tcS3t(vXTrKh}n=W3X^Z7ki>WP5lxX|5H2_~}Ov)!hq<6<7Q0`|~>Y-=#Y=
z3<TX=>d!m)j4}LOH@Db^?s(SWZ<lt8CofPqza=5Lw-s{lP!jW)1iLr!Q#b9M%R8{8
ztJxxd<rJ2OxWQg>Oj4eh3fl?)C&T?kOh7v?>8f1f`A8cJx;-T(_AoY&g6biRW^TYH
z$9s0?1NPjH04AS9s(>*`=cu&{YQCu{qB;G%>;4GlT5;!^LV+qJnWMs9@4kO;T>e$?
zuPDF0&{vQy3si5hAx(<*WsZR%8xXc6KsDkVx9s7J{)3v?hpG=pPGKjyYsYWtse4cz
z|ChcUsv-bO%H+2W9jyYIMgfsVA}LbrPpqQA_}_>k==7QDqd(AY6-7kW9U_+(Lay8l
zTI(^79jZ?2%x*9JJJN@#Jlf1*qgp#^l=|g3j^0!y;Iz#fF>!eQFe+#E{A8pH>+oE_
zq`k-tKhS1w5p}qb7ctOgh!Az?k@q9&=z}p*qLp{|j{No9m%KN7WDD=#Mt`3>g#n4P
z*NSDYIl6bq9s<@7Ngm>9K2{OlyZmaleXNkL<$&4M^N)Z0nNAl?{cqE)?IA_R(NDgm
zfwssS#*-q+&`FIxNeOvcnbW;KWOzXs#qp}{*?KnG=-qU?kzo9=@I7{gcub@C3vJ_9
zR{VpNO-#wWGbgu7qcUb?qX~YgQHBHh&rxoj|9)aqRO4iht;>C9?Q)T#A{WjGbH8Wq
z9&mh{=<hhK{PJbt8*4t|%96C&MOZl-72DTaRh^~~mbT`^;U~-y5Ug{uk4zoAt&2YK
zi)C!hGkt3(&8bL4USgX=IVLTWpN}Jx<C93f6c&lHu1}FWXF!akdeSV5y%bT?*FwHN
znStt<t<o6^`K8o*em4%9u@wTEF+JJASZ;CJ6rF?80p3>qsy*ab8QVlF_il<we5#aX
z=I`zc`;+)HGrX;AMw5IZfaL!2nAWhUeaK$x=YR>n4Ce-04jU0w${FqiZvAtp=s}qH
zkO{vA>&AE$Ze;whYmHTJ_7$#f;TWh9Wiy!XV-4of&$AlaWLkA)F`#dQk96~adm+)X
zYGFoA21b*Z<Vj^XbB;Z`lN_QMWr?IS&}mH4fA1!s!=q)a!mJDoDbVrBQ~u!${ORqd
z;_PLuY`=9xX*O+q3J_O6&WevDn5iQ#weHhch^VczZoIj#6mxQsXG718=&v`$wiJm!
zrq-}ssqvi-!>=uh-^}bc`!F*fmHPn8VtR9#id4U?%*}E7GM(*LiP=>ud9pG2$It2|
znTR<Y_m_a4>ct+!MTUSZr`}Fr2Ki62Ta6VwQb+t|lZO5l#BDnyl$-)aycJ5h?Tq^y
zZ!UEmIDM5Va^%d_1bjxKy>cr9Bkz|JvPlf*O@Xvr*I@5{-kX@<YkdU1EY*@WgLst7
z8i?~aa!FS$=@EjtFD^@eGGxtXKD!j++3$N$#kVzl^Ld^&t^9Ob6^+`9-Odou*!S&M
z&q^Uf_KW(&KfTAJzisy!?jeLh?W{FAFHoYD^?DKGFMs6@Q6J|r$?nYzN}<BEL)ytM
z9<l?9F||q^XFX-Qw`ZE@(6`~cjnhj0K_|u{&3;MrKuYlYRhBrxToS&cVtC8%-E;`!
zuEX)}rsV@=-y22w1P@UzpqY+DZJ>Y;H67n3$pWV^7fG#-*0v8&xW*tFXi(A%m>Tw~
zG`}ltrmMA-cUNjpO>W(2jm09kOO@0{!X4MrudL>!hMF-p?6H<Lg7=6Z8cFqUFhC1v
zr`vX3@@r=1hkd_M?37KgB<A4Qa6^&Zd$gfbj2x;hO-$e6z2sk6+vWjZ<q?v$C76pw
zM>sdP$)h&lB`Q=d+}r7?k^sX<?Ga2$=hKq=cvbUx568muXq|V+4nz2kdFEEy)Kif^
z{ER1R>8(9}jGcY2y8I~j!2qtQ0MAAVwQ1_rW>|H4s@+U1+o-#J??8aH0PjYLIB4Gu
zt0qdbtD>n%PqUk;o;;6~A?hoj#`kt`FE=Km_eNvDk^W0Wzb;{a+gt=YbN15wXm3xo
zCzQ%&y!hxjkD|ihj}sY1JK*@V#$r(`&1T7;(@eX1k{UkS?#EAyvr<f0=soQ`MVWXM
zelpz#djY>u?6A|#Z|+%at>lS*K(#?<MYAW!(pJKW@KSc`^n`Nw*}9k5V0h}~v!SxU
zV^8xfRa59TuX@Hsfn(yx<z{GzcwTGq%UxGNRe#>KyQ<iTU*ps_#r?%8rT%lD?u4nQ
z)465Vv&xy^$XYqi5~p>;QgmX=wA-%-fBH121!s8wms9opt<cp+zPfP}TlrKjkAP7g
z5iS=4d)?DN_gBhKO&SNn!f<Ijdq;7IL_h;pnH1y76}bz9=F*;dzZ6F!TZ~}SWTo<}
zM>s+*s|{V6yTNUuQ#N?EE^jq&=sGK9hhi}<K@ITQv&s-g<IaylsB;$^>re6tAi1%-
z)Vb+CoO=_2a^T+GJD>Cu$c8&PpA=`2Nh;qIMolgjr+v4Mbxj!ec}C2XVDzvdxvUgM
zk(A1rz{+-ZWPum9DjxSShglQuHmobhJ3`wRNP=0gfj*Bc<TI?4`~S`#%E6Ku8-v=t
zOM1g4guUuq(KQy3DkOmL5O;<nx(yS1=(}|qk-fA(fpWq<A0u$t&Br)npWdfFcENq%
zMr0~5wo$U<mU_h>S)IOPH*>*1>i++n>_eYA%GzX)xaB@TB{mgU2fXE(dKFa9Z**4|
z2H(hFSk)E=KX6EY&Ht!=G6X;KVDIZhh+cA#sHfcreZWigb(W>GDFS}RNv5LA@c;c(
z_SVYV@}4kTwsg_PpE{OQ@zj#H7iP@rw%n=d$85;6A6wFs^V{>P_~9<p@{R+8mlF3$
zHgey8ALOxU812rH7qFR?@H|bjZQ%{EDoBFG+b_faTBq2{hVlLMuEW)-=B;<*eZh0W
zpy6J%Lh9Lm0e+r)`kABhBr99xOj2;|XxJ96g@B0(jY*oI(8js8g13`M1aek7BOxYW
z0IZ^pWKwaTg8U)9aal{1Po8cf37@i3n8+7BY1X!f;JFy~{se%LH05AN?!VCbbf8^a
z2?nL3S4Mt-S<y3JB%%72k8m*V>XUCeV?8vBfIRsw%`f+$6USZF==RA>eoKnBu*{*~
zGcsc?^q2fxdmK1J@;#c#wTDKh1Pexy)AFHzZS}qKhaeMTp8`oOJMD)jlbv<~?@47J
zuhNJumhLh=The=P^#lY3zs#kia9<xJLq^!W8-w+BM<(7zdvf$>QdPOsEf0X0dH>{?
z&8w<(Ik^;Kqq6w|e?#rABI?y7d1T_{Zp&VpzFQvADy$juIC5G`GscPbbXh7^liM#Z
zzE{+n^+Hj$rz7FjMBO&>=xCVJOm?@YjoDg2CX_ZS#ASLBJR<B7@+ek$T;p=-Whanv
zM_BT={77foR+ZE!&&Q3>u<AlVC|4sTwWwE+!;7JRBX*JL&i0*bJ5m<CW3ww{lQ#d&
zB4fI<4fYs!eJFLxLeItU(K^kx^Vy+&v#WudS8$j8;L-Ztrt_K1c}u&VB&a-|JvO?<
z^MXt8#$+mf+BKJ0q7F@p+D{VsY|;2^bv8;SP=0)}k&YMygQ*0jC*%4^l;JNhluubH
zXxlQFVAXzR1pnl)58?<gMFq42f^DP*4vT#GQjBRA<4Pr`!K%>qbqOPMCoc^`ybfHc
zsU=@1)SL%Kcq&<D>;~r2)3#&e26oXivP1SE=f~|wk%Y)ZVl#e}_cg)u>}Z#cbCsx*
z7ldyGj;f5#8iN?~IZa0XVzp50@15s?<*y3jp-LAWtQ3;6iRrdF?h#$ROJvX6;fyZ)
zUCC?B`0j1pYunAKR6mX!dp6_=___qfIE;i!i2t4$)fJfaYgCl(#gEsu<h)q=-4-(+
zG&!n~C-#~X+X@_Ql;(eLxvGh*Prp8!nG{@hpYPL@e{enc|8UZc$Thy-eNnURq^}-2
zXovx#jm2oCBK4F%M8o#jZe}Z@n$acIsd1xZh|pB~nESxKPd$Nev}y5wIdx&($Z*mU
zqB^k)9qRgAO8$fum3lem7{a|h{MTDdVo3a?<|pw4BBOgV<ztj;qcX<;N^`fH_O*yR
z`RDTPpTu7@{)V!w1zt*pEeFC2<s=vi4R}f53b&_Yc}ZlfjShK9wAbcE+IOMsIS?AB
zor<{Ei`-E^M#V(y%mZ>R*Q6@qFTNAa0^k-|Cpm|KaW$6<F5rVkq!$X)V^mfAGELAV
zEOjd~hL=S7+sJ-!zpDI%0B}E-o6As-v%qf?0jPn#x}B4@d;Y`|<%bD_fTSfKWd)GL
z-qOsW0G^L8fs+zsJ<~pTp89N}w1g>d!ngG6Z^Y4VO9T(i#;x3_-8o_E#wH(E-++r%
zMC{2F0rg5Ik6as@L#n6vHus&}Fd#?-1WbTH3lP)*0)0SGZ4U^x0Kp(2hyw)FfFO)h
zrcMc*2;Ahp8|?=tGI{3Y{t6rLk@O9)34tOAia_6<UQcpc^rPy=Gs)oO#L>Fsp7U88
zn03PLI?2_Jpu*}d7*nkbDr8_DA`7gr^u+uHvv2p#6rCPoi80;F23uaRJ~Tglp$C2J
zV*W>N+Coq4=tY}vZYpRQWh05V0Ti5Lw$xvX8nyYy`5EI)(n-F?fO-#qJDEQG_FX+b
zeJjNYovXc@;O@@`q50~IXs_^yA#y60F8&vCdcw85IL~RyhCO?{-MdZB(F?&J1fgJ`
zE5lmiZ(iHReaB^d=QjR5ol<Dg6RKl`3*@LE2M4G{PZ4l{S@bjn2QUr&zyW@-MsXQ^
z$?*>LdniXK3Qt|oJ%bfUFmXe$=(*A<>v7_V4krDq3=?9n+j8G&IK040Dtn`qU)Km1
z4Y;)3f(AT>i!>JE(Ykvn5cD`Xo(|^i(z!68R&f~j_w2*ePu$MBBB6KhD#4bEx0<)H
z_Io#P$k6(0l<_wc=vvH6$GfkZSVp$oZ$sR@pgWKBazA+7o_i9J^NF;d_+Rxx7%tv)
z?MAtc=Qb|~NWuo>SFUqog?Z@zbNF|$aEY&*c*ThQIprb!xg5Hy#HEq>K$~&cJppk8
zfApwoIjPHxu4G2&K0xtv#JKkb!Dq>x@)h1Lf|3^h;006u8!!E&j`s({Kec+lUhF|3
zkxmj1Z`>inA4=V~Z{qDp*ejQAi$_@WLPwjYM)PPKoQmxFaGNyTcC_h1UC=WVC+#c^
zcrKE~@4xtn65}!C?|471ecH6+Z%Gwj+sh*6b2#TtW@HKykn~`SB=0{*-J%=H>07Gi
z=j$P?3|lzA|G~A1yMZ6i5)j=;IDCM^X~Lte#pY;)#U)rn5t-c|=5N!I%H*gc9<yRk
zR4y(7oWz_LECiK*P#J;^L$+uVpT{O)uU?o2&+B6waw^DeJ8VN<MriSO#*Lrq+p-@A
z+DvX!jaFDZA&le^X1+64QRBD0smjL@q@JS*7|S?}ls$@WT?Xa?e3_%@G<}Q6Lm?uz
zd8KfmX&moSI8+@YP&>qDk~we|JpDpw(y*PPyg>gXp@xyNxxwqNs$om#J519=7a~Jm
z1E+3=>TZUJOqzu6sD_c00q3-5kws*Uk(A=72A$NKSmF(XZCLdC21hE7XI?>I9y1_H
zW?vnBVjAB)Khw5?d((TF1YfAt$|z81ZWbvc_K@$@rZEtCAc#Fzjimc#t{NFMvcK8@
zW`SvA*#tc65vYu^0~?3EN4CK9EuF~0fF~!k%a@qODTU}pq$xCaT*O)JgkeJ8Z?K`V
z@po{gHOs1^=A5y|i^<mT48m9%KZ)k0L>gjbbDA5EV$8@d&4?$m!^zl$UBsfy!v>P?
zaFk$L`~D)tn2B7O&Ej`m(Zk6~sEu67iKJ9>ZzjnLeV^`s=UqjO2l|uk^&xeWSVIrX
zWqGUWljh0!Ca0L@{4<#6$(s{_aiY0l%^^m+>r|bnz`R8IQZhuVtILU+BxwbYmenOC
zkJX+>Tao*?spl)kd3(NbIJp6Q3Yp7<RrMcK(ok~Y$PG0S2@^Yknh%1X&R@=!f-~aT
zWy$B9WF}>uf19iK6B%d-R>jKjRs|-5Z=M6+eDONAf5F%mf^L#ys};YNQ}QS}<C>;s
ztfIm9^+*~ZFfQmPU?_Ps!zycLObUfwBg0DBB+2<pyBiaPU`4ew#6N|m@sqv=PM}6P
z+op)322Ro}{(>G|=)RME!HAf-6k$$WwpiS``d!nQm@{2B_D5&S?i~ugKc{!GOMT#*
z#}dJBF9!ywSioMb^Ppu9Jj-)GsHA|FCmHc<0a!Zr4E4`m(UOy^a_?C)rnIAtoMCD=
z_Xh(`%A~ieeNWXn8SA5loqWF$;{T)onWBP7s%w`$l`V&G$czkw{`S4shZ{JwWS>=I
zErI*~l^C}xlA=2#3Q0O?zqdkofE|{g2$mqv1rM(`IbkKbTsmbVb4%wYW4HpvuicAS
za#v)KVoh8mymU?eS^_-0M;I6?k2G`5=%-3a@oRS_4<pmWd&-A8@GDM0*FL0!$_r<0
zKHdS+cV05nif>D7qT41SV%w&9qCr~ExQHX#H;kde&-4ah2;YJsBrB=^zeDIDax0KR
zI`$IG055wEQ<KKNN$UQb%ysDbYPutR?LSmt%4#kEMy<L@VBXT6KZS{2dJ7hYU!}S=
z9Pk70I5{M)H-K%-#unJd-T~X#(g3?&m52<w$hEtJk7MOH1_|g|h?v$nP{~Mvq<BD7
z@&Ug9lENba*v3TCSz*j*-g7`L-7Sa7hGdYZ50Azn@g&Kr!G<*%EpzV2sMl4OkyS??
zhfrT&iilD5Fx>^(&g_!+Bh6?lcE;?IQ;ds$&5o@4OspR+7&1&6U=c*=KD1^NE?AR9
zF{L0dMHvt^JkmrLKU^xjR2r`zaIU`|Y2m!y9YT2_wuC9Q-JCW8R)(QicWu^YXAZ<Y
z3n?{iiEUc2sN5itCb4Iq<J&t~3VXx?V~VU=YvvLB2&7>;_F|uf1Te8?HXaNZIOkW|
z-o2FF7}eJi?kx=HSufZlVbo3`<ZCE3?J~0N9F!3mVa@IcrjE6478W8=EM02Y8GW%H
zW3njl*KwD&Goo^)oI@-V9jfXbhkUka@G`ZeeVE}*PlO?mjBvZ#-pW2O*6Sqj-fi*R
zbcMYfyZaQ=jNrDM&(~o1)BA_p-Qr8(_A?EG*79h{C;MBMZR8?@Upap5(eGMjSXGBw
z9h8(;M3j(6rl$SEQg(zEz0-ww@P6D02qo^wCq(+d@E`ZPJx5k-`lg~;Ib(M|Q4W1*
zaQoJ{d1oacu;FGHGi7TWY?ID58f4QBcFA_x<6XCB$2(<gum_8Xafvw<g#NuI9qM<O
z;$Nk*N`4|B^$d6-fS(zVsE`ZT@+Py5&{+GtaKC5KaP5c{xaF+4z=w>Dyc4(91aXnR
zwvOs(EMiA(R<l2I4$tm^bW~qtwC!*_<Mn$YW;-BLAa`O}FLr+>LbXR4_8ZQwTQ3D)
z*D23H#Onrf!|KUcWr(b6UA2LvOENcx(?(LY;5fVMRVRC$9a^`9Ogh&Yz!Y`Z_e!#W
z57uqM*CjFSbuoYcx^9bazu7a$23*LM1lX|}RD`%-B(AaZ-VBT~g9;<y)RphO7{C26
zHO|NHTe)InlHtbkp%T+RdGhLYHu@XcVE%MeA<@B(QCD#hi;+B&8WpyzK{ZOB)m}6D
zLOh=j(d4dt!jd}7=NnZ<OSLP^O2d8^Xt`gX%R+p^CdSWOAKFKnM23*%#1)?27ldi{
z=yx0t$=hOh9=*i*GZ}@l+BAr?d4=(2w=FQ?VWN$LeyH$~tI6wY#?H6odzOF$r$>f1
z-7cruG@WF1ZdDiLz$BZ7x(+S${AM$!c)YzhAw{+gbf;Ox#9!$%+RGxd)!R_r#>fKc
z!YDHvVf6t-@|oUwfo0S)g5;GYnSGif^_v<Z(6L6trnplUnOqn|CguyQurmScrN}*+
z_*J49KDcbMc}6vYNJpeIQ4e)<GFSO=lZqY!Upv;k3N9asb4yHbE@Ij@y^nLIiGJH6
z9uNnt;tddJP{w~!L_0#xO)p6ax1<nIr;JZ8+Ym?ji7Rln8Fw{$Fi@X;qfwRCVHwS<
z5m|X=-<EG=*?BM^k9tyTgr7LOk8;I3$?rZX!CNmyFEAd-DqFoKOTITiTX|Un_sbb4
zMcZCtJXmzcXF*K-Q{vjXwRgw7v+V+Hk@W)sFWWmOUH9Md-Yo9iCGP2Y`0KegQ(D|h
zJB$Z6Ri_Ejt>yT95!-74cI}F_3~v9JmpBWWAG}I#QIRnx{g6mw*T)WUQqltRwz$6A
ziS&Es0!%%2`So8Xqlvoy@$u!~PpKO@vaOOU+@wY}EC(f%IKou25)n4UDKP}pvIvw0
z5wSJ`;v;fR;W#MshNa&A#!OVF#@`{k&C1L=Y_N&T7JiL>-gf@p`*zLwjI=@9^NkHQ
z%F5Atr}Q&TDaWO&<?h+c-;L7O!HEO|W{WJajOX6M;V3;%WRU5hqyBT`BL5Ut49=!0
z$0g-9BW|}UayJjdt2*#+e+qqgX5L<K80Mnm9G9wD4pWLu!QD^ckqZKw^aHb>V_Z|7
zqifq2@3=<3cP|4Ih`0c`qh!K~0C~aQc~C*#P-s>%<4K4GES*pl<;^0ic`MUTd_j%F
zwciiuAChv(2Qa76EuTZY<iw)y+)=Vws<02*dWW#9AHTVL+;+~cMHo+>6V!0&`D3=d
zinGLlwe1pc;E~9MjGg4>fu|Vfw^WeN=z*WqsJPOi$j=9~l%#b1FVEi%&c7SXZASAG
z3$Uh#9TR;(wf&P~6yHr^&o_kTBAbp-6^PmFrbq9d<1|iw#CWgvSp}>w_Xy&g2BF7=
zlEu$0ZRyc9`ztt%8dp#O2XMoN0SC~-(g6oC@{OqGBjFO3HlojC4&>*=+X1G^Hz@>h
z@3%L1bEw53lk}rMUkJ<*c7b=c!pd73;d=;Va>wU7hK=JHcYXVQh4ukG>*|+OMVWG!
zSE4CWg3}qAy=DsoRfa9yuMS&kBHZ=_SI@`K>t|=pL4AEEm_!*@a1yIr@R4EVEt}YI
z&e&~usyyX}qj`3YieojGM)>meHu^T9w*1RY{+@33sZ}uRD9}7z-c1%fzg~`<HtL^K
z<%~iHPVRYxb>rE@clCOXeJ2D2^I4jHe?M?$9B?|*=uQ0TIR1Ghf6XWv%PrU{I^njd
zU;5ZII^hvJwB^sNn9lkE8PnYg{rP)CI(b}iZ1O8Vfn*saR+%#=YWZk}a|~T<x4|d+
z^SBp-=zMUklBc%O!He6S?aAg{Bjd6X3l*vM9~?fO-lo`{AuPAH@=*R4FD$ob@5=s*
z@7kMpZH(uSFLz|%QV}Ji(1i7a_1wj=^<41n|Eb?Lxz4n|zqDo2u_z10Mm0qH{MFg4
zz$h?p5Q}GeR!punLrm_8>A&?Wr)Z@YuF#hGhS^aZaqM>doB5T}n|a(uDyZ*9gQyc?
zS<gJQug^XlMcIv{8>`>@MA04gLWXN{n~cQfDI0)0Xw+{h70`0n+P<Uop0b~3GW3^2
ze2#euwQN*0LW15hyVgwP<alGNx7+09v;U#r{X>G;0Y0aI<`?9ID-jp=@4K8jk)o43
zC#V6Tf`KQqLXP5^pgde>HdjUxH)WUZO@EEi38(y@1920+v>+h4=)Z63VQ{F3S%|im
zJ*Pb`OGl`jQ4Sh8N=z(aGPAN9^6j1Q#Vf|vge|@<ZF8@ziRwM!G$=*HI~ZbFzY}cn
zel(z*Nl?=}cWQ4>U@-E|VKOV>z%=;o@#3q9-*dcVT$_&2dTafMygE<3d~u>XGhdvE
zl};3&^+0kwbl6mub+Dw#-Q;RLlKOnswe<sp=05zt1Ng+=lvbU%SidXiLoq5s&UEGy
zrZ*nyx^J$VtOmAqW~`34G&yhXcjgukyswf^$(5efCu<UH%|jYlLYCN(Cnwo^lk=)>
zx>?$C&BJWX@eE}rd)<=*cJHu3?W1IJ@7GE8fQd`VZsU=G-k8*|N)yfD_J_B;+wHDU
zBPe2b$gI8fj@_3Uh))+<V?ryG3oBsL)-k))GGgM~`>*WJsia-i&M{5NH>sR(h@aPF
zw8B13nesN~!h5f)%;Hw-ofu7~S|kN{H30(k1+v0JLbc;nDJg|RJxNY+3XthE!It{L
zV4%H?=MU|+6UP0*{n%xa#JTogtuOzgxvp<KdGe}w%FixBe&C3sPZmWjO@T+SF}a28
z_xe-gZdA|dSv%mxn{kXt(OeJ2TW8`|LAU%>Ey@6DQJT^1<A9(}$8N%5Y(P2ZTs~4p
z=poyy2I%lA8rK1@c5^`cIMW=*t8ih73xo@&SK;F7Rk-*FgbQa?(rjH=x|(If%g1nv
z|3lQb$20xK|GTeTllyhugvdxjE-RAys3f@*wne2<?qS&GlH5tEDVHUpB9~My4O?y%
zxkL!r7>2p*Vm7nOZ+*Xy$M5^!_TJgf`<$Kge7#=J=j;7C`4xm>o9ml^PgA8vFF?ZR
zfg#!F(DF*OCFS}k%Tk8Ykf!$~T`cFfc+Q@NT;0&iz_U2TSX|{sLfM70VmX82HLn5M
z9xl5>ALvp&?T7|PSj#m#j@<U93-l6BKdT9O+THt|?*_bgrU(0C>!Q8mrux?yJc0WD
zA+Pv*wB+Vtgzw($UGBH`I(~lIWwiaC9g_CurtU8Zp>*Y^+qy-7srCka`&N<HbmQX@
zqYXXTz2-Wyp|TNKQJ0I?$%5#um&+a6pszJ8@#e}N49e5*cb{NdbaYQdxjLR+5b;xO
zDq3-s(|DdDqyFJ>9dInd@Ijy1L5)8$vVTrL3)j{7Gba4-lgwkICw;+^*)OiU{<^WZ
z;hOGI-$t0KrE19~mKmzd><8xeLE!vA?rD!BwTm?u|HFvJj;21c{%_#bjOg`Ti|f}f
z0De=r2bF!8Qtt)0=fCJ0?pH6#M;)Etqc^n?|1fvuckJ$mH8;<CyUEmC)s2X0de`Fn
z?81ksJU!_fDYd;}U2`&@`aW*sl{X7H=Tax0w}&8#z<-{3Q$Y$wjWHp6KVRZp+5IDM
zYIWA9|08-rYcjJhr$tC6m?C=QhF6g-#^DluZy#nx`63Xxr|3H5wa2b0*PkA6P5OAI
zzQSqWwhwP5yYxQ8{Jqwn*OAZw#9>QHT<Ke6g=XrFtdP_jvd>X3t_x|8>!S?w?nZ|B
z!A3^I=e7&y(Tw3=ejZT^udh7YbNX3UJQyBZ7yRbnsGw3cNacj3L(j$3_NrK_yO5M<
zJN|I$W4x1ghdFP79Q2ss*k<}w;r8bil}E>>vd>psM7yG?j`p!LsqvZ*fE@eH<IUNv
z7lH$7^S8$-bI1Pg?d14tg6QRQABI}$^E*iU<0``B^Uktp*ql<*v*E78j?N2q?h&@K
z#}6IS$i04jbHq<kZQT6@SuhTxeew8sAb(>!K%#gjB0KeU+e$%b)#4fUkBf*K*5&(e
zxdmhezEuDGC|G5c|G9hbJv*=c)#N)8(5sETu_M30%VU{JVX^Sfmpy{Yy&AM<eP_2Q
zDm^Md^824x+LO`epKcr$Pd}~UZu{d>2>V*EVC$z=bWh6#<}$wJ<}>f;4@%gC!0rDw
zcP;Tvzv?l{t$q1#8xqJJ*DWZfG3{&DrrhNM^eJbyW}bQV<#txTUx$2mc=YB4Ee-PX
zlIw?E*f7=(PSxXwL3%P_k8}?G@;)2+JB|77b;$wG=_Z>|m`Am*QTnGn+aeI0*`*gp
zef9su`p)L8-0;wSG)nm*1EHyKpOk>gBV1ltW+@0$k(SRcJhNQWO?0tn^fh|!^Br*f
z>0FZHlBB1LreVm0&Js&l#_i#?^rI7v1JB>xDH~Dv?K>-f)I;UXCu^6NGR6a$qi@bM
zbgK954zj3htoWOE^WDDrtABthI34?1T0OciH4;6KZg3jf(+YlEVVQnMQ@r~2Tm7?|
z(@k*?$R7LWu72O~7IxGc<ovzu#y>_)2&<60v0LXiwJOka*HIzA@><8r_irZ%DT9;w
zIV-6Q_2a*r76o4;QQZfI*>(<Az^75Zv@kd_@aw}A!t=Vs=9GBf7msrL4$p~40KWC;
zT`|$@aNSe9p?swE<w3Ah)59(Jmvk5ya9`)K7z5DZ)T(?0(){?!Whh3m#Sg;LTZ+;n
z{XP0zPVSGDZtYyilZ(5yn0H29pT%31fT_>Sb($)qkvXPESVs)~v^o?>cKJ_gdY4b8
zden2*_Vl$VpS3^i)ZZvo53{w;=q}jmem4IMv0^P5`&a5+MtL~Kw#UPA^kaT_jrI4Z
zSFNQ{sxc*bYWhirKh;D3t05l`iB;qN)(A4%@FkxI?m)SB?@1}4V3*>)3XT>?<cN?>
z>2!UrB~H51iGGBa)!j@yM5UOA^KP(ZidD8m0{%A8IauA=0hv#X1M1-y0%on7`DTT&
zzvLv62hy1_OZVJeTb{#+*7dp|rMt^#8#N<~l_<0iUn@!?ZBCN^UG}-Rd^S31R8Zud
zi-z7?1}6!$x}h4iM$3#?tUYMtLNg<cl5~1Zvbk*>9vAydGBHQS-wvWVF_Ld0)pt|a
zMX<07HJmXd_vry)$3Ml*uh>Cu{`**Gs%x3{VWI-LYhl&GRHo0fkL)dM(JFfLLo62i
z?`!voCZ4%y*1hFI=*al)c-fUmw;FwvtLf6?ZnVjFrt6;(u$&(>bdS|3MTIS>q!K8d
zM?Lbj0x2D7j)N1$oNVWyk`H}%Z_muj6>>feB4mT58VzRm3W819kH-~2&_5&V$!mMq
zG6k>GQn_k)oQppg%f04~l56o90Y}1BV(DrCKbTy~G@+vHVB3jOi*b!}PvYy7{s?Rf
zq$-Ry5W=~!%vd_2%=tI8Y=FDBFE*?Gtw54L{F3sa8`m4oTR+BBd--Ljl;fCNX}iBW
zO6@pG)w#|AL;hfg0J8xJj`$&IyRFK^+g?X&+V+hJn}7i=V|YDcxbW@;JI*!l+wAC-
zF65jaM93rM)-HBB@;hL3m3kl~YH|dayk-@nihcRRl`Rm<uSw%k!@DZ%6}XZ(|CjEi
z`luVGv<%@mZ`@rD!a)JD5<t(z?*u7X(ful%J%yZm)OCsI<Zb0xdSD_Rb!UZL>5KYS
z!Iy}v#50I`!tUE$7+aOX?|a=_<`D-JRK+q6ZOnlHEjUeS#Mwg5TJoufNkc>!b^aus
zLzyA$K+3OqE=DUnW(20#2iJW=5?|oMc|a;gbRc<5h4b2R&e!Ht4N8S!B`z#0C$5%o
zJ7cR&95q~}S(uocbPq?YqH|n`1O;6YloU#`L7BO~_V$Y8!Nf8=SY@NVW~htpI?3`H
z8KBn_PSk;{xX?Sf=;#{q1<0|l0z<ZBjEZcxpxb=$q2pC~N0v;1B)@+-)nJ(-=-m}?
zau8@NrV0>OUcJ|9_~F~Vyl3oEo1G8|#;g}W4%ZJeAem4t>%bh1w~HXfmOsLixu|a^
z{cW%ZPFkuKy}Y&lB6s!hw#%Fki~|klU0}Pf->OD<1(>SutPvZ=udn@>v`LBzP8N;s
zih_sz9WIbKm>lvqp91t)R5RS@6^u41P01k@ZYHJTucvNmy=BPvf<8+AJ#V_B1(s66
zA8Wb;+oN7S2u&6oEEsbQ5K-SDwf&vazC%zYO+TW@KMYfiQQ8<Nt3Rs?N4#TM6ztUX
z+)#TMRU!^Z1|@zc9tb^drFKq|aIuq7^olnm-P*{HxgrS;tZ=}5M_#~oT3N00en-DV
z>QLS4f~Kb?QIh<lp(-&~OTj;p{cus^7p~VG>kO@o2<?+?nV$%v+KaE-Cyd)}3Af&U
z$5VXKwnqoTrASJSuYX$C5CVDr)g|xvTL<6>$UrcnhBS9$A~c(UyBs<k+RXQ>?yxtN
z!HP-|2}duB1SRJt?}b^Z%WX<1;nTO~DXZ`QA%-;RYWH!;IVRlBgC|Q>j&Tt*>NYn5
zWx(WfLKN`X#Ulw^z_K@!nY8uWNg6iEu1WPUu_n1Gw==qgJs=vlb{hp;MM=~IlE^m>
zW}=%4Xg<_9Du61Y6=;^#a3BEQt&iIks$L+^*+2aO2JgO_6*cx}4GWg3@v3$#`AXmN
z3y9z+jmK=p+(y-%M_3#a9EJ8MZ<(pA?g~tbP+qNyBqa3j(-g-?hN`jcVk*+Gh&%fE
zoYa13ss7)S)T0G{-qqyGBd&C_{&r<1^r1i{)YfX}x#odQ$}IFXPeT4sP1sTI^78J4
z$8^r$i|hHX+Lm;>xaG#8QisNOuSh&p?rlX(m((&{>NuSuDJ2tUaq;&;_qi6$+FnoS
z2kZijYiY9*u)No|P)Y?~CrI;Fk(HV0JcaF4-q@+u&m%c%2;<0|FsPH@DekJVE+j)`
z0D*+x7W*4;uHB_H<R5T8ntioa=Rm+$*gwc-)uCypCq{<bqMn^Vo>1#k|2bj!>RV&O
zt@V8|8panLs!{HW3QGnhg%A!Yj2;7rKg!OJ{MbLesR#NwG%b9Pr@+IZW<3>oFwq=$
zBO@k%2o$E-lvRJrFx#Z=ASr;T1ame$g^%f0Q|~cdJEWH@5btbE49oPlZ|&+J5oy<B
z(w%<`2fKy6*t!#@S<pY>_KEzyt&tD6gB+RBUjv~0ZFk;Gmi#Z%*z4+an+($5t`2Oa
z>ARyMkziVK9V<C4p7}J7MZho{ALTXnPLjLQk!gDPBQO!~!g_0U*>1Cg2|WA^@fOvh
zi+zcx-!BRUxZ^)%72;(jqm!Q>ZTqmVH_@aHc?BMyNL2!gPbT`|46|Htk)h@!2-P&^
zd3}s^o(g^f))P*TVSU(y+hFY=4n%!>xlK_(LX|ogV2<CPg~k=azKi6^Y4{`-<B+2C
z7*PHHw(Q3Zz{RWSFV8>@;$3aKy+2`#e&X7)@-<qS&PAdXiB-z9l2czgKdYR|@uJ=j
zwILav4&f;d46`o|K;6JvNR`?o_@O(INfsJ~UK{Tbch+n6mB2oh`Nx^co|AyWimKC`
ze^0whBc!>9`T+zX+UR7Z#^1$E_`Dko#Jh5JY{g5&%c$T#dPzL|flxm^__o)@cKKob
zWOwWcN`mj1!H0iOz_3-=a!p$C<wr*4gzGOM!l-wWkjhCZuvc7Je~rAtHaf&1>&YQ!
zeTZ>H%{pVg^GP*tEm?_FkG#fqdFH@nRVE&$4`SAqO&9;5^WkS7VytwFq%Qz!-4Sa2
zT7x?uHqWgNIJJhnON&+Wo^;_Qzlpv)1O|aRT#Kao>95EwH?pc!rX)Ydp1H10x@9Uk
zg>O>m6ALj{eRJrDdY{NZY-yS1f?PG^yge{JK3+TCc3T}@bV@(7qjV9|81i;N`lle8
zm`k)qTTP2Nq2>n_>ctjg&(y4UF6>nbyJ0x%BlB14bK9Sc&4xcM!<?IkCcNh7W6@T*
z-!u682G>%F&c?L{uE!IK@wd9-P3XULLFu>j)59dJ9-3*K3-A>U7D3&>R;Qs^J(Hvx
zy4*}})EDJg=lkG9p&^BZ)it00EM}8vckcsGi0tMj?@fTN7HloUWyb7bWC-mrb9e5$
zR-`m9kgC)!+0GJ<7OF9DXb~#D)oX<gQ!3c0`o@qhIw<-1`U<W<_V}IK)sz(BbW)#R
zrEd{QBodJXPv{yT9e6mROxoeOF)&GH!b`V6($B;wzjyU$y<e;aM0P@8{&LMo=|X`1
z#C^kwc8R~AG-o+dhq{%%jTVoNEs<gsYdzJ-W{zehTZ`m<G0&MU@FP2mq$>{1Zhd!&
z!<OSQ{Y|>uA~W$me_K(AxY3yEpQg`P)HE<87Y&>dq%+C2x4`O1e*o36PRr`Y!JY(n
zT-UMY-RA)2>L|CYN(HW?G80ZyZEs{FY5xZNR2ngM`~_H6Tkhak9wmU78*uLOqDKqa
z8ytZ@oTa7?r;X}@`dg4<Mu`k;sA7}!l*pP`Zp_T>Zhz*{XA&-nCZ+{uV&^W`0ZF~E
zBUX(iAq+S1Y9Fr}lmyaWt1j6=pv~=^AsVD04;Dt-w_~aIXBlhf*Y6=(-|N2*Fze!S
zCiu6Vu(ly-WPC3XbH9tb^E#aRVW0h%RoYj^lX1zFU~^O@{JR%)lJ%)|hbLwo(+pXz
z>~NhD3-<VF$we~FYT0Gi@N)B<i9yNyHqjcbZ_J-}m%p4;lRs^!E;D^^&o5vYAR#@g
zZPR&`u^FSW<L|9s`{gVB<IA;VrZ0~~7%u1DV5Udllch_fpm+9=WkEdJCOqyP=W>W)
zl{2X#OzJ}v|NUmn*%Xu{>CWjN`d6dXCe@y}8WMv~3r=hHCZE^(PTK0fiNaF3YXh^h
z^LCx}Dz@^Fi=C{#Gub>`Y1T6u_9ac-`{tAG<1m}h15GSMcI7m>vGSdzQar%c^gjrO
z>xF++W)U27rAA*6MOCBD)Q2N($LrmTsFNHYpnH6}YOR1uzn-lptZ*65JH~cR48(=k
z{$RQg1-qxDA(s}Nv&Ncs`AV#5gT|tZUxw|lQueh!SyRh@(VYVe3>^sy=jpJk&W*5l
zjU!(9wgdTE#KU!?2b%c^HY*97fHK;sJwMvCJ6^%|=#`q>;#XnX>_bga8NP(bcip-$
zSu6NEUufiu?$fXU(`zq$QDXe0VGC8ULRT~eoGMUfYkB)W^aTU?*~ChsVG5FXF1rCQ
zd}`Tzp0n9-bW<E7uGasUV$?r6t{N|^eZ;4xT^eQ0^%w=<a}2|I(Nw4yDA{A-8`FqL
z*ohRMzPQ-a_q$0uUTMn4t0uRgGEAAhuPMC57m8}@UV|A}1-JQP*6(M3!X1a@j?Ht*
zr~*08;lc4+iN5W+d`F@y44)FtlVy)30TX+aIf0ifE=W}-X}QmHJTs3TOmIzZQ2Wk&
zO?#dD6R!$u?+WL^*)BxTz%z--w!LE^$pYmVDdWadHBd1Dn&?S=>;U$E+nqw(CoH<s
z+(tQ)?T9NS(r<(#?sFw4|IO`_dC=sYd3mnKucP)7QLgzERtHKPD>)kLUV{SiTZsxp
zf;8f9<NRIzXJ7Cx{$8RBQ6i<S*LhzE!Z@&*N#}S_<&do>)!MAgcSYJ&o6TL@V*C{u
z(GuNsZXG&5$AJ$jf^XXX_3m%SJvg`zz9qS;{Lo&j#s980Plfb0A@-BHmgxnNVO&=C
zY?Im%T`9{_LK*RFM%i22k~N_xa6@c3(A4A<DkPy-d8)hs=z(}z!r{qBUV<dzv!W=B
zBfG=SdHggtBHdfAf)&3=z{3tT$=J%?Of)L|J}Gm3HD!Bz`ifJVt%AT5$Sl{YTFgbe
z9b@{9HyPyY=ySGZ8yAciv$k3Y9F-U8OephJ<$do8Zvf<(nH|l%TX@ot<u2#L@jJtI
zsY{<uvRib?C=99|^qrn|mG%=)Y187GLB<ti@214y9(~qSn*1>ta@(CC*%AzU^OGa4
zNS1+}cFBHzcwQJx${tK^z#Z85qJA!@%&avV+v;_9IncopP!!T&-_;C=l)7y!dGp#7
zKX<m}ebE^H3Cy}37HR*G8|xde-7`-++^7KrP0!AEjj_$~MlgF|PlP(BjA%A04+=C3
z?)UlG6{ZBdqeuV!c^|yFYr%r)mNz{S1T_92Q}9MzVSS*mWVHFxqb7w0<?Xyk5Byb_
z`Mcb(sbIaeOxZ3zyQ_jP7Kz4J9izAxmEmtyJMJrx*OhXa$y`Xr^&JZ@xx0VOrvF%$
zVeWSl1!is!iNUh82Eg|~653L26}P~ed~egl-=wZdF5`%<FsfSFcw<$IeH1L;B;qT2
z&|kOWlPbg5eMlgT^}Jrjsl@-hiO66m7d!|%$iU)}aIMufvHYa@qElpMKsXZb?Hgtv
zQYRd)?eumw8S@#v6C%oZyXMT^a-*tO^<*|~k>`&r&_F*1oV(!jDUms<nvCSvxVwFh
z@E@Sql8YOtv5GeJNIm?odn>;cP850gq`~uFse_j8Br@^OU`IJR3I{*H$**hA^Uf?n
zBznfH394aHQp4kj1oX+l>>Iw~Ql$jgGH^g68L#$-;e5PFwD0-=97{!}zdamZC8$8h
z2<;CTG!lHgNpZ@B(cAsA_u67kQV+fzCwt5lJBN?(KyLcJ_ct_6n1{df=e2$cX>6Un
zRjEDxHoGY#X0KoCvsrtja(P5k(k!<6x;sIn<si(wkZH5O|CH%2ifXlYyFnobKPV^e
ze29I7ecmW<BslHo=3BcE=2^>~eHHgT76Tm{)gwQtkQ3E@y?+^h%V?COr${-qB4;nt
zw&Ph)s%^XjNhI_?z=~rX$~n6XzXbbFKl{8*KnZTeB#m*l$lY(=nD*q`T2`&;g{2Bw
zgy~zG1t&Zr%hGX<@kx{s#s~|u=X}^YBRSmKH_&b|eJiUWfQ33XjW(U0do<P4PJ-%!
zL2do1GSx|8mY!J{HFPfHx%|x}RAPUye|vFDI%Ay@&tiqOY1LV+c6Z1C8yjhYNfPao
z;3(B}0+sQpUDuWkVxj5aJE$W;g2TW`Om-{-Cut0U^cyS~ISsYdQhLYso-}jC#!Nat
zu>=WyoNYim^kNBv(N^X!7)God4EVmeuh%RG#_g2JO^n3&cEqI6O6B)`Ir7l-p}Bkj
zc}1t&R>x`c`bHF?ZRbJ<;>)f84bU755t1doot&?M{&W3UK&#0<@zy#eb+HRKi{?{;
zguZyb8r>H4nC9HA-;z<jUC~J1b3B^<aNz=4?X&#T^~Q>EXs0v&^XeSOiVgUv#ISBi
z_H}K+6VHSy7IcmpiuXx?0~zx{+lH%it2BqOYLN!hoV#5yXBs~jTdf(V@GTcjF4>M(
zJ};i*a94^LQPX-+iexj%t!MHr-qVV=A(i#<q}R=jeD63cHKN&WcDa1qva?fve)a8g
z)kfLiI(u^#8)&$IGKuV+$ZWZrf|UDGd%b~CfIb%`m|<m~Ua`#y;7UwMM){Kon%&YF
z5hw2JYBP2N+c7jYwu|&$klsWv5ntjTsc7&OmftMf^H*V5nbAH_!8eXXD-TF^7Vc>e
zasRUP#CgS@9E2LN56M+SRlD4N1O`#*R&hC{QRd34adFc#dXo!`ev@P1v#vh|ERd+z
z5jks^VP*1_8$#bBJbyKi@7sl`Wk>8n>CO&VaQXe2?+|wed=UJiE=(qyp@`zoygst9
ztr&VZ4mtC><UC?W_sJ}gG7TZ$NL1|x;r)o#-9{N(nxX=iYTnV5X~hNox&!JWo?<}{
zzEh$Tz*+Tx0+CJ65vYXVl4)@s+ES&3DfDI_XBu~MwYi#o5}Bza?WNK%aDi%Bm`+ob
z8b`dcE2v1pM2a9mkOXI;dz^Vv33#_}`c(6cLXG{k0_kPNp5*+m^PJmMVfo2~+r;fG
zA%aN`3%NR>b>CZ1c`DRXjIMm{!YNzgrBG{j05sbfM<QOK?v4@1%JBbs>4LkMUQJfD
zS2DH`hr~!Caf$nJe8kb5wK8wu;&kS&`!XlU=9)p^{k5*l&q-$sdJJ3VVt?s~>C`Xk
zd)Cw{r6Xk5zGAn*hsP|FYmA105(4U_e|Hs<jB@_Lw5U@M!w=DB+emuiEjqAx*Evgd
zT6On$;5_r~^vQ|TZ<#|G-0^=bD)`kYzZVXIhVynyHAyCmNh+L%W6bj2Nym{CgN??!
z%SQR~eQDkHl0aO`7i9``*aZPOqxQ>j<c8sf>$s2&txtW^>$$l9AEWpgFl@NMvKCT`
zhgbJ57fJJ!|IwlZ#}P?`jgUVhXgqrw;4;%Ts9Yq2ls$&@yzWjltLtr;wf@?xzF}^6
zb=n?OD<oLg?svt+q<1&>d>`oQE1`2#!U%gj#e)pj^bh&jq?B+SamG`YYe_ZJn#r-f
z6msS;mk--nce%(HC<3n6^!6#O-63#<iFc>s7cw~SiTY6@n9GZphk_teNk-jnUxi?a
z#)K~?V{_gB>}91A-{W_M+Op-FG^ZqWMNwY1n2SYmxKpt;E{`Z@qj%V5M{p}<Z9yWa
zy>(XX1P4qua{ulw#73Dv>QV54xZtyHw(Yhlw&$euKSVr0mkef8-CS2o#0HWq4FpTg
zZZz!kw1{*o<@j36H!>$c8zvy1YLVK5!NI!!fvE}1cN6;!q|u|GyoA0U5?^c3Ptv2d
zi?=D%cr2nGU}7Y=9;Kj!t-HTniv}Wyc7t0*@%Bm>);;7Qf5<}OZ5RiZU6u-K!&4l?
zb6GP;dQ1%MSc%{`G9&OfJLxBX-H_uW5&ZcNczw)AAo$2bP3YG4eDA$hxEfdJ3VDGi
zh{gw}d1KHi1*riUTwyM-e|ZzTh5k5a^9Uz%^+rOYcbpdXV<TP|h&>7pLAjyd4u&+o
zCG;+U@_#CUw(l)Fle9I&>Dym5L-#M9LN<GsDB74+nB7cjPf7-)Z>U0B&@nOF*mI|B
z7@Tyt_qKI2QuoXH<C?b)t}P*WSeB9Qip(Zp7&n>Ri8$(!hbf2dMBZw!Ut(>&5oomB
z?G`>IOn07E5$`pn|B~aE5S{ucH>j%W2~1tF9I18yO4LVI`45^F(A};c*l@p@5Cbob
z-Qb=+9t$b6%2(bhB)+x>ZP;3=Z1gm}OJd?rzmy?&67l{J<BM~ErJzK)d!zaYH6Sy{
zRNnu16Qmxv6#+u==LcH3TbAi|V>y8XC*Sd7wgn&Ukh<<RF1WkYO%eDPY)sYqd(=B;
zmgMp1s^t5)gD_L|SrRX)Uj_BdIa!5OYq@T&3n^kxIaEtZ9kL(zm;f%Q&vyVyqg=Zs
z>VQ@!+yv*@1W`*fI=#e!W!;3yQ~PyKvN4&En0j*TVixK_w}I)R<VuLCY?egy`Qaut
zTZxjw3agMoSHI;D^--mjl&E~jqp{o*tybOBj`JKns*+dYy3xiGHADg|-Y$W<K9>?X
ziSr{usJj+BV}_lB`b2sLepxBn%9coglF;~0%Tt?xo+NkNQi#E(%&Y<UToLPf7q`-p
zrB`6K`*;d6S%?K~z=O+4%A9*bEZCMjr}2H(f8M!}6Eyf&Qbu;nTY4%5@zlZrLLdkQ
zm){S~i}$sO2=}^$hKX?7Bkl=brpT+^H%V!GD*UO3vTFAer4g>et3S0(mW2qTCPa(I
zn@w+I+!ob@8$Os3>V|$ZSUD-&`&8k}^1+aXxB7pxXI`0HDHZ$`c5%ZwtwlLyI^=<!
z-O`<;LY!<DvKHn}xcOvZUA7{z()l}c_3m;s_RW@SV(rgi_JVD5+nkFP5ci`tD1PpK
z*OrK%Or3=~_pvWf6a_NXU3ouP6?yg;v$GAdoR8XRWpkdiO$=PWGqqiVwg2s-P*HK~
zoNFFsyLClBRK$vXqq&6Jfe*{7O>|dgs&%;f%GX?6BqU?ld)f64?K_dPfv|@TLeff!
zxX`TGE*4@k;=SL4WNGvWx_)a#)SlN54#KGY@{@?Z_V<ViMa}9oqbI5O+5Q3Co5uQ@
zkX{Prl-;ZbbymHZZ^Av*?sZf(#;GP64^=Bl3M)@gSqQ2YN7j3j>;@GEUc>RTu!LFo
z?_iWLmT_pQATIsUT<?2EadvDJ)Bbds6i*GC^BR$c^X>%jBt|7D*-t5xUtRA4qAo4w
z&tN3`CD8^O(66psO|JZug6^e}0q_Nenq+T6HtxO5QGUw_2w1-5dMHV(zC;hQxS2#+
zxK(84Ttm3&juLCBB3@ebG};KfyPW*kLSPPCaMlDRyafiu3j&1vzNO|=dc@+RS=&R5
zcNm;V-LI-}yRE9E(kwTas}nDEMqdcEDjW&+wvhEql;&x(2_h~vUy)b!#`4#6LJihB
z0*2=}=N8uzz@(y<o%{#eoswO=*?AgLtS3pSyO$|5qu(Z4VYqRHiV?!A-oZTzVe(IX
z4|XqA#!SDAwZOrO@`o}QbeF|6Xrhh&Hzr_4Usn?4zUU4e<_dR%de4nem9^wA%B+s2
zbflOPzD;SKqc)?TBMx<6to-UKRCe4Jhi3?~{D%lmrGNY5U@dQ8O9f1(F8dWS_3Vpw
zAX~Cz80BeOJCL|WIy-AkFMP!lAJmb|O|Cp>*q{IXMZ38b<#2Wo?#$eLL<V;%Gqw{!
z#0%MrE9`VMu1cDBn4KPdqTMjORfgXJvy87<dd-e^6#jz;`Y4w}j~BcuSeJa$s8~MW
z2Q?UFST54f{XT>F(qcHf-*0c7`eM<cF|X8i-SJ&_UkTSPUbuE|{#(0y*it1O#}bY5
z0x^d4?B!OeU*sCU3`U*Vbh1)m(#Z@KX)Z+0zDr$x^WuomJeuv)emmGM0XEYpdNb&n
zjIoj_svL~Qtm&IduUOkf+l^&kUi>aNcm`8AkSynQ=kAwF5X|yDF&@p=^CT@^cn;{&
ztC~^=jD3eIv4_~LA^eBI0G8>RxWb`jfwUlux{rh*$~p0Ds7f+@Bi`35d<B+~TU5rO
zED!vP49*31`VAai8sWt*I}v-K@O=zqzu)XRnsyFA2``$#2$8iXp9iE~EABBIEu_EH
zP?z}ZDP-n$2~EBot^}6kQ2R^HeG#05Y1%2A-V#c`(Z+`Fuo9~>2$RN@!2(qOq+!Pm
zLUJeI>1)xMLLLT?c$R2HoO7aYE?TEe@3-Zoe>(;<Wgk%AO2^v8Dh#P<i^z*PCy|ub
zjiT`Dr;ruMeRR1{!zO9p%CyvpQdZ3uQ-urITtmrcqJFTyUG&Xc1n!CLTlw9ILgMdU
zz7Q(Dh@A!vHL2K&=!#RSySTMKTU)Eg5W~QaZ`(!v0<oyj;N4fGjm1YL#8pU@Q6-{{
zq*jP^QQ$m2114VAJc})38HB~uHp^|_1h8dd{;S8lnf9)u7Fr2#jW`y5XN*GLyBOff
zRXN|q!nVfqJc-3cyWkz&DpK|Ud9SQSh3V}!xf-#t1YokyrFo`8fbMP@T#x8p1ccof
zlsqO<h&m*kjpsYsvRJB;)5G37jK!o9Jn(^IWqi)mB#{0rgwuA6X+do+oOW4HSj%uA
zNVMob=j&5HqB&(3bM0B~zL-NBwI>^&EU6{Aw2puiVz<1~T6Cm&>w^U3q$N-M7J6D~
zxJlr-Sao7-${BIqR&AKP{8Z~`4Pnn1SoUwe{W5fq&bV~TffS@zq)S1Ymio+Vq?hej
zyDX<++X6H+sAq<-sH;bF+%JagkAWqR%YzuD+X+jcM6cEnXcEFN*kV(>KRbfxWU7VT
zx$wtWIG)>bqkgG8@fuOEh-Ct_Mrn+f;BWVa_o50h?Dg?2G+~>5EOci-^IisncX;ub
zIZt1jXE7D{E<kX%1F`*hmcI({gI5R~OBK3Xc6~`$PbkC<XGwyUu4K`!bT>oTiUp!2
zH;gx$PwRVM!D|ZL$Qszuf^SxtVR8lXYqYNoS<xp2hc(O8(dH2U6>5szrs#I^um%gc
z7b=Jzk41HkCNH$^D(tDbTQX{}kT~EBR0V;agy`e=Z!F!+Fh{5JGB(dZ#f*c5ZcZWl
zO?yBD>S9|U^5DSw`3&wY{Ors77ep-+e6ZChokALwA5%Zs?q>(~QuVigX0WM}w~)6k
z1G&8FhJZjEw3TqiQNgq$#l>;Yt93!s{g%iQT128+2otXHAk6hTyz-9VhA_E`o!*{g
z(XPBDLCViEQdfwZksEwoT2JuIyA4g}J`S@9n6Gt;VthSGyfs*Ve$Ju0c+zQYJRL5c
zxxV{~f~>@(X_Tj_MAl7hDIq1L?q#NXvxu4f%>s5jCf#h=Cl7dJ8g_2taQLwT>Cf92
z=6bT8ZqD^T%W_Q|f*mJa>(+Wnip!qY&`LZBt8d*$NzTTHc3&eJQ1i~^<-uG-XB6nX
z7@h6fLz_Lf=e&^B0sDMX{cqLAS77aavBUwB)vlb|_RBsKwxC;r^IKQjpkjI8y|9dZ
zC~a?oQyRsnPGn(gZ>W`(o0))jx4UPOoYF&jk3#0qBS^bPXWsb(cNc$|U#${G!-czg
zqC!;`t__cc^K_&7E0KpsN%K-)fU^E%^Wuii*p+yl?xu&uAq{`vodb%<k}25T&i+)+
zimiIL`u9y6kira7?ZNicwJdY3zKPQMjtgOaw}31DWX<Bh3#OXdauBKYBzHwJg@~jM
zLg3iHSFnQnf<KUjWb~`SPa;0ac-ZX`nTsP{zezks)MeTRY`~(EOq&XKq;XI7$!v-)
zAuT0k{TWE~-}Xi1@0_38|51;|sFX*v9y~+7djB^(ohCc|P90zr@P{p+#AMcQ%`tjh
zbQWI;kx_eGnwg}+^kBvausR;LXA2tjV5p)9rIV=5sRbNX*}cfQ93=Ye(-q9d`S_9A
z#w}Y{mS0OQl}y;RIkn_J@cdM4FmXUK66k4{%e!e_5>btSyg~hfQ!uESnE_s9-5ObC
zfQI&lP+z^P{bhMl`<^i1zShNS-M>BcDg8I;#)nzPm_z*9e?3jni5pw5L`I`u&oV^*
zHZHbp^s{EImHJBvOZH5aFRnw)j&S>3+V8(bXQ2KZgZpCRzjbf7=YWcT0x>{HTQXlY
z2E7*d1}w#V{D0%o`a=$%h1goIc*N@>mEpQ#50fc_1B#(~g@G*tgXETyyCwR`8&iax
z+sEDN+YP7xPR@tX!=GfY6LQE3$H4JiEc@ixuDfE#%E+N3K2>jO-}P*hSKrKTi4END
ze80jF2Tf16m)ElnVeg(S0^pQZn$hUL$C#60@&fw%CWTSM4e-QBh=cB3soaFatnW-O
zD#HgxY?~5B$+?&>o5FOY=0JDU2}PDP)sd=XDvm9^wT`5K2bKjyCn(h!ocJ0a3;w~J
zp|V6sc(oH`#q6g!-zd4sYXPP^g-J}un_S#5%Qr6a95wS5zB36YqSg9Nf9XPYw<Njp
zjD^v^^ty9AtQ*<frp$ecy8{cTBkausCi&p1JJOVF6PviXcWk!`yBY1g20oaN-VW-U
z7@PE{1}r7v{Qwra_6Gefk6-ckLzWr4<^GQI{C$OTqrRhMVEcIRvsZ{8$@hrCR4c0$
zuWS<X>DYQC&J|{$4nI+Y(&Xa-o%bX72gYg>bA%e)<sp6}RRBLxq_4&a<GwNzjn_OU
zH5pLU`lo3aZ%4dF-N8=vM_!1_OnrJOtxP<?HFQrVS}lX+*B$8;kNUu#eWZUD_PlHs
zYr*y?s*Hne1!&4#-z!iTy6pbIw%6miIz!NLH~2P|8snhCLp{-}g-Y^OiDV(kcdLXB
zLmtU%v{c!O8y1EGdiV`YXDn9v<J(H+JcYa4it(tZHu=*~@KLtGn)6=gPVOH1ePRkr
zC`qP7x~tGGwO)7Pg;lp%+AUpD;SDu=__(1|tJcpGcC3CDS+bt3n}sL!=PkqR>U0Y5
z{f8kX$-xp!^#kVkp8ECU$uhWT<?S$|iPCL)l@Mob3XqT05bk~A`U4#Yy5i6GFz|Vp
zu876*SzFGo7M*hfVRXCtE8-h)#dq$8=)&_Rb>A8*!a5$a?iHr<26()YzPHW)rHkUa
z*BkWrWvEA|3-8%AR_id)ntCMW>0kYrx128v3jSPGZr%`FjIy2DO$j_Ih3T>a33&rB
z2#<0KIJU@f*Uf!Lc+unZZuZ;dP8y)BvFVb!Pyz5$`IAVS_Sj-y2(ayRA!6ElnRD$j
z$80L=hpn62`ogy2Qxb>Xpm!VxIRO4~AGhiRPH+?!=s!tn`@KG=XAki&-7hq0Ks4n$
zc%{iIWGG`(SaBoFx33a7@Pi39q=y|X5WSgXiRb8BNC~z3>wUu&nRMHYXSo3E9HAMd
z9&!ap`d`^$66W?lvI7(sP^|;0_z?EX>M`zA(f$Vfd6-l&C~zE}9JW0S5BIo$v@cIw
zZwRA*81IRJa#Lya*&yx^F($Mvmvr_)J7_%jQ%CQuEQX({);86(3pu6mH^sdGw8Bus
zU(ebOG?gGDcNd7=tlvI~2$d+P{#FYe6j*m>>d(ivyZd8VlkJT(+J_x2A-Hus5VvC_
z)ARqMu$A!8j$<#CC<~X0#%O~-tqw20Fx&_^*|?j#%QyO}P@5#fHsOmV2L1aNk${H&
zhS+LlTw7#`;^h596Co0QndYzhUk~aB=q_N?ScrBPI@W7mqj-`#HG4yavW}cIBI!XO
znht8>-N~-W``y-^oDd#%)8G(im4W=RqXGj{aW3bDKc7f0kDUxoTj8O<wZVQtn;TtM
z;ll#iV#58oKlieK2lq11zYLPA;Jr8Fg*4j>X;|2?$S!SoxcZJLF?e%EEIcI5xN}^q
zuPxmw_?lp9*jqz(W0<p3RGe{3Ht?J{#^g<yMN<cqbPWZ^THNh+T+KB!2nosh$&YK`
z8#VB|ua!W>^^FQDycL9M8DFx~Y(}au)rTHGv*il6$)T&0&a~;*f`3(%u$-AUd3vKR
zZX>9l|MSk%XfseX(kUck`>sNa5@T&6e*krVB(9)dlH_YjsVHbnUB6?y^Ah-D?hza*
z>tn4!h``ujVfBg=|MWyw>I9)?96Wh%6O3k}9y6nNFc8YN6~yyh$cw+dmIzMTLBikd
zemxEbl<x2Ej18@k#Qe}dvbX))wB)I0Mh1`3SJSHO17x~IVMIG?$Fvpf!Gnoc;1(_P
z?<Cr&J!qOkn%CtFB=Z^MUb~X->MY+!6X!iYw#&9OY7A?*CR`bhmhXHjR3XySjLs_(
zs;I6Kl`%uxGuEXBcA%HQKuGg+dPEHuI(vNMa<#L};zZ)n9Al^La*9}Y16d!EF-24I
z7Bjx@EX?fmFx4P`efK3Ck#HWNv&flJT;E@)%rM{8f?iKsy=gE3yyFg)=1&tPP&DfY
zXy=!d?u|^30i!`VfYGe)Qn?khMtE$&X_j8!z}2WW8eKfH^29`CvGUgWmLE-o3mw)?
z*aTnbuH*iSbq{8@3b+ahH#Fc&vM8~F^rnzQv-*F<Lcz24Woanw$j+U_>%t63j8wn>
zoZfC$^GTw_RNy6gFKH>jT_74csq-rMt%KnCc^=COn!b%ohR<<4ttxfJZ4&%c$ZA{L
z$qc*`@kmq+<C0|9n5aukGZdiuW54N+EGfn_98bYm{bfBo0c-b;^`BdwJML(xK1r^7
z#DCvd!ctdflYFv#<+nZE2Hk&NJ0Wr3dNd#q`{}3ZA>r4u@oAu)D^P8cNQ2-S7LCI_
zUR)R5@RD9lvh1DRDl1Y)9W0RaL|!D>)iwFY7n<6mj<r4V59gr=1#V|X07e_aTvYie
z`Y-z~H)UhVV}{iQP|u`N$|dg={j)<*tH@TFOp0|&(>}pJ8d|yND?J5`6f#$3+;Xc5
zgALI5hz+8Tz`DY>cl*`Iol9W_G=f7`8BtbnjXn-zl)sB>E6IJ4jX@6#tqJpWR&0rS
zawK2(OGsVnWBI>mqGD7D^#i^FsSxRm|M^;Ic~%<Uf@S_54h=IDW*VdKF0Y?NtC8=y
zQAMeEz#N(8?-cj*WsrhA<CRd~b#2+9I$)a8CS=%)W%7l20;fZj)(9Atr(=YjI<z=y
z&sSj>jWRSYiKtR05A9rxQXV=ppr!0}F^uLrEv9Q?vSxJL(xA504)oy35c{UaR-25}
zmt@Ny>12s^g{l%ulV1pLGkZwQNoe}gurfz;&_cosej77;OTm7pyusK0lwWiX>1E;7
zQ*F9f<5x|%Tc1m?#{c-W({=7)!rKQ5S^OM&K3&LB3YyQ`4G?~P>sf}i9`SFx)b`1J
zPU};&OnlMrkn0Wq%qQ0+gJyAQasAH-*;)6Q$>Fsg`;6^?YlWP5gBB)-mromRe7d_l
z=`i;G<D0^o!N$h7>plI}zv1ZI;%Lm1JWL>#8nyZvGxHiTEw2xnyn>pZSQi!C3jLWZ
z%)QQ-u|HufC-vkh<vY|POhA0SH}ZXN2BpQf6g6JKKf4(FOyxe%Xk+g&Ca+Y>!*c{t
zIjHdAEl~V#74fL4r0<SjJdRBiYGFQLvCW@joPx|3a*s#@qvgxAm5*-;_%;1F9KvZX
zmJWQqZ4ehctEW(+l$L^<%^(BlfQ0XC?UGk)TZlr-%{_=<SI@<=mo5@ZJhz7qm{Y4s
z9piD;%A1gP#~1dVF#}F7GrkfEX{<nQt2zo?aVK}oYYFu*hiwycsUA5uAmtjMyU5c9
zZ4H9zcPw5OW<JyR*r}Cx_C+6z?7=Ouee=aC5|<RdQGhUJ>yqmUR-l<1x^xgz|F(Un
zAAXh|MhzdU;Ony+a3^eQ0Y>%$o@6l)DNIouCEYMyt8zcVw@yQ!vTYQW&OxiMC-zHg
zx_ByY#p>lz)Z6E(jl(TT8;AC}+LhC6z1!Z!+fFKyk)}Io2fZFqw%8LV$5i4~NiH>u
zK8O%b+&Nd?#iG~m7VO(jET+958gL&0F7#e;f(XJ2Ij%zkQB<4IT7P>5oIoo^)3$Pu
zd;@+|IqX1kzPIkVh}-cpT&*o)WdZ2RYFtn**{<HdYl?Av(gmXA!E@UdW+R^Qa#hTQ
z)MnV0fPMF6+8ua|PW47%h5FH0%d7Yj0|h_GY{VX2{l!b2EK^Eu<3Mlapkliy%V3kC
zKn04RBn2Y1$=RW6pH8*=;T-R_p{S1)!1YKIbGifX^P2-XUlRSf<rJT@Q-RPVxm{jb
zPVtx5txb0pIq<*-K6khro)fJ%R4@O=TB9lj;H*-R+T3B>(Y_8q#@3#{+#j>pPnQ?b
z7rzkid=|tsr$*g@A$^)UBZ3tdmi)Tn-FW`?%Z!$lCCmeXQ^oel(%gqA)8WcwOw3z?
zE;$%%T6b);{j)Ej`o%(s%+1lS))J7@c7o%AYI{&Q#WQ<Jnf9qsxW!JGN^*`m+1d#o
zQLudf;*E>fBD79;`Q4pYCXS_;5Fs{X|32kc;UGv9uGOfdvx9m@8<>AI_(cmhVcduc
z6t)P0?Th58a0qvoi+@|7Zr6#8E1$cQV5Rkq(sPn^bR2k2N~y54_$HlWRJvW-(v&Nv
zvVGew5}H6bv<xs<27Bz!#hKPQ%Qf@i>~u%GnlcAY1xXGs?{lU6V3zwx9xs)-ym+=T
zhf^!e3P_36KOu0o7!}FKjW`RXLddZKUoUMnP-AHoRB07l5q2;}Gt$;X7?dQP@UqLs
zGv_!xrCOp7U;aG_lZtT|0{(V6xNl%sd5ga{l7e#;x?4%Bb(o3o6vBfViQ>$H9^<a~
zg{m8_P|22M*kMVnVfaPYqCn^*;}g<labg%zq1R7&7H+q+IJNKZ?G$^J?RdR{2jry7
zT@3ssp?rY2<TLWxXk-1~3;|5bbJW#98poLDDQPXk%u@HcXwaMo^jTmJewZlf#2>QP
zQGf*N(?d+5aoL~nH&^FZ-E2Y<MbBGoN^B=5<E&v<-QjUdw^Acy0$lorNigR+8Fl&Y
zy=&9NJ=7aiM@foZsoAc0@w=lg0a~H3qHZ{`MIze<4^pyNlQPE#Wa;DFi566*eVR<Q
zjmWl2{0cmKXrPzeaEphEZhK{_V27{#!{ttr$X#R1*r^_73t{VgCss~kn9_jg`wv>k
z>97LOEk>-W8@m6%@=Y{tBJ;-9(_$U*&&LUbLu)9-LAmRkF?<(f89Zu`i_0PAXU}o$
zsqG_Y`pTHD-<aivJLDa-YYk_&L|U?mdlxUfSrZJ-%PHSSt8jh{-UpB$1Widi%l)OU
ztXB(GW7>-cMLM+Ie@sC;vUUzziWJ7Z6@-&)h4eZ}%ZQUKurqBn+Kl#UE{UYz@jCSo
z9bu~3V6nvTF4k!$?(Y{cEHQYFcg=~v{+0Zqig=)tcP!>hVfXCcd8Uuut1S%Tlq~>!
zc}l^?k#%&~RirZJE%28%*@(So;qXN>R5?ZF^T{tl?kmutv97sk;Pau)Nd+N$u4Drv
z+<!zVl-yggCk)zuc?Ba(si}x9?uy7k1AOKby;Z9JIMmcCpkz#CDDjT<)1Z^i+A<d|
zestwGAMT8xJ@Uu8-(7Bh7_3k*e!-R%W0*yznh?hZZeyjUMM9F{VHhKe6Vs4;9~lNg
z>$r$;JEoQ>^5OP!n|(Oqp#9jiC?nP14{u`SOzN0tPJaHy9Y~DJLp!N#zcz{-Fy-x~
zzCm+ZeS-LEKAGhH8(mwDEn_(JAYZ$S4+plmUd;@%eUqlI)zW@7le}=OYfEEDik7h9
zOE?_{=}QRSTOcsZR<P9@1AO|qpK3-;{~V4m;L?bNikg;A-<VY|_ah~OFMezn=dXO8
zZFZtON{E2%FBtL@mV2JD&MVQHoN0~}DInj@evSVRHaJX=xe%M4ioTW>aA<!nOREch
zns(Y${-P~3uz?Lp8#yyz<`Ng=t6&0`BFn@m#n;t#AA$u?wWzW&x>zZ`<nfZ<LIzl-
zWHmLS3cLyM)|lFXRG5}@Az|N19J^EmWtdIh$fMKf^n=}n{46XA(w4L)LJFfEW$PCX
zd@Vq~LUe7-r;M(KP?gupyi{1jK|&A9NU@rBCQ#@_Y$dHOEm@b}1em!35<y8q_0@&>
z>UbI%hS*S(uot~a)ZUgW-|oBI#d|mrGK#lE*a`RZr`0{VxoWXBd<~(_P8KTwz<qW_
zCOuW&I=6ZmhyCr)PQs@UcT;sjb=b&)Zad<Ft|n?FFAmjc!v{vJi|TrOS`*~LL?z_X
zlKj()9U~l$f4(SryHwiXg2RzVR)zr?2M(!gg;%?ss@Dmyd-KxGt-j}>!6AHx-JyM(
zX>uwwusNkcSPyLU#Q_$7jlpF_)ME12`8CnCtsIkv+l7MOD9)#lv7t@w_j?oL@=}3c
zhkGV?(J!NCV`pKb)~R0;L(>9yWy3dc4x@Hj#2#wl*#$UX>`N%rkw6aZTDPdV#}8iJ
z2qKh{R<`mBgL|xfqnEZ#tBBV&g6u+G4_|P7kWY+UOqS7EwJs)Qy@2I{8c7pNWA<=+
zg}%?*pF-@XQtszKSjH8EY4J+4{(*<D>%>eF(8m{&-P3Hw6rsVDpN7E(K1=Szk|~zW
z*FaXg%hXz5txwb1;&<MsWEiSIEcN(WJMSdc?i3cPGiJ_dLcByXJ86s+{%UpHQM->6
zKb_S$RiQ};p7`02vpIb4;V(c3*^sQDGjFE~4Sje8G+@Kczd2-o&CEF2gUY?K5Y}il
z`xo)z7ci02vZlip<&Kz5-?#T$YAr2E-93|6hbaSt4*q3QJ!ACaCG5qSh`;(eTN;q^
z4Vr2FIkU39HB1f&TKDSP8Z-fE?<-4z)j8Bxd@bRt#DhDo(ti`b5#rcwYJAGf;rHd>
z)}~~<?;_~)w$YG9)l8BncOqIeUgy{|BcxO#E@Woq(1f|{*Dh+aWCmphkaWHdo@j?U
z4qRX20#uZea_HSG>uN*uUccZ8mS6p!{tw#xHNF1`YPvhzVZ-tLfo*oYx9lI+#K}X8
zR+z6*9JSdmyG+8V^xfwD&!W16f;g|)%P-MU<}FieV{LKQ{F|R&2+p1Hk?BDn>Q4|H
zgpPG+&4hbj45mXjwl5dBU(1nsuhagCBzGq;UWavfybpdanR&9o@1tewRMMi>HJz<@
zsp9<>aM^Q7hSVn!t2EG_HUF3t;{DL4BzD==bZ}<)o5cHBj!ciJ_8N5TkZ#iaX6)lh
z)gitGO2ybVzo|~U=J(dSV{j?s#7v?}o$A5E<*gk>4CR5Ofs$IbiE;Z0+NBsBUwC2w
z*2Wyk54!pt)92df`S&xUHmqn}u*p>o*G1z`FT=I&7KDVKdHUUi`~vG2$`{Lr8XvW;
z@1D~w>JedUZy|f~1TQ@4Aj{P+v~vwm3qJTbwE6evaNFkF1iQc&<h+Yp;9ksB@IAe@
zsgJd^bBv}SA8TY1i5=_P47A??e3<+7bWgn60SsBXWc`~UfAK{K&eDelHi}>W8X_^j
zsSt~9P*zZ6q)dGT=>%6|RzMv1j6)np=?q$-%DR7F4^5TyMQRyd{%vO6#V)Ag>$x6I
z@a~oc*_am{n9Le$wUQYs$e}i+>O0G&hM&4#v9$pAwBhdjNJ_r8Zw1i$s<rnX=g)rw
z$(fS#6$r+Ib?H<=)CS<%;njJQ9%k|;BL1^=&4r|BN4wl_?`MnTrPOeYf%@$bhcT?&
z^gNZ2S<}4Rev#Uq&R5j##l9dFKtF|;`?`WT--a+7RyC8qt0kj;z|W6$5H)S)ZPDUP
zEVn2C88Kh^i6n5%WhwSpzlZ_MxI9ShkadnN4&D%pn2MFPuOF-i6xaTE!KVFE{rD67
zvY4;?v5-W>kPFF&8<QuO+C>PO24gqEhueNq4eL!FPhNQi#GIQ7cjn5_{u*<Uslw=h
z5xx3laE&0-DohH|U7)g@T$7$tty0@}w2DpdF=)KAp&4Ucox+m-@!qpjpn#Pb?O4Bt
z-`5p!jiHyJqiPh@e7Rn0iWl4^(FC-m2ge~d!agr?A?IS7^n1?w-gN~tU&%{FlnVBJ
zY2RhH!w9B=J$Es9BHE-n5skab*1gMZoF!AW*mf%s3Ou=+9k$*QF0c+nXA1BuXsv<l
zMJ6?5_Jwa8|6!gPK6V#3wnT^$gvRGzJGL4?(~A-;{zKFLu8Lax4ES|1a@B_6KRmWV
z9SEuv9En%J|K2F;c8U^w5Vl(1$~+Hk=n#0@@Fp5({AVJH)_ecqXrNkQn?$PMudqq&
zmj5t%ks1<Q3Ekd=T<2ir{~uFt9+p)1{ejkNWol|_YUV(rmR3|&;DF>5Z&{j^nK_V^
zTKOiLGYV8{<dA&J%*p|W%1RSU%@N4CasbjKM?_O`1Qi7lIQR5>?tPy7hYxbtXP>>+
zS?jZgz4zJx`EQe4$G6ZnE{6{GuTTFbd>kP*@0%n%n72QlYUYtT@5l2?Aqc<|f+0i<
zJ-=#6J4SNn^{W0Hu6o2KqhCg49aDcmw2-0-0+-|B4CJ49UBf)>q_RuDWqlb6u)!j+
z;ec`_C(s4$R8x3$+t~5-IWE-)!k=;8nLV@7>3mr2{#zExI;P^A*ht@o)2dsEp3=or
zpG!OgT_{~RXqC2H35YPDkEWmIE5|hWxcABEd4Ul%NkaEt8G<DuCO$wl5G;PG+p*6)
zxTOYc5q9}rO&@vS76CjK_k8vADI_=Cdfa`z03q|PFx+Ibfm~d%iavo>VXM$oVU|A$
zDJ8w@=wV_jud}kRFN@mmKFM63RaDPM8%^@a9^#~{I<pbSy`<Y_CC5-PI|tFF{l}69
zDW6tF_Ur+O(TsqdOS#vN-aY7)RM2xsUi_)h#WP=cof`$el{knr^bR$)9^_(90BSu?
z=!IMbiYZO-0U`5Xo5~EL*4Ig{)B=`a9s0ur1Gzhk6Tf7pjV8L-ys1)%h<P<XIth5x
z^+-vTBbWwu`1_Hf@<z%qu6wa8RYFS*gVm=C>fb~F1-w_J#sC9()ATbNH5*y+h$6Gi
z`e?&p2-T@ZohuR)P8-NnycgB08o7*WpUI3y`Jce@PRML<d;wyv^2{V|_{59yb{3s^
z%$%#FMlh5FmYT?RE74FiTKFG~MD;XMTc^<+6D)*=b=<CEaxr#%Y{AHs?iNmT{Y)$0
zVj<FSGU$OBHx6dm2dNn!73dL>^TvG;uV#1^cTcFn{tzK4@|0+Y)JPtdRv^m@l&_71
zOD$ks^5IPjZc3u7hTW~7jQaRG%Z>LBP3oXl?b+?|CU9vuk5XUoj?E1=UNMaT2ST_>
zDBYT~0{PpZ_@RoS+*nvrc|J%riTxFY_V<eIWy$}I)bdh-)cs<~na3bR23$HB4k8-j
zTkB!LOV}1pY-5f*=I5P+Y|Mq3h|EF2jD}pA4>IpnSq^#a;=r~xSPmDP<TK*+yfRY4
zyvSZ8aCOPV8&c1UvC>{wqfv~z<i_QV$(YL3!aT+UzXyw4i&Wt;-YeaPW;Ni75Irm}
zZ#>E?94a!L4dEIZC>~6J4fu)xMeoJqQI(CzVdpoDheI(P*fh`eG)F-$YAf0(k&ko{
zlfuN|1H|DwUXj)c$*{dS^!glmUF|cxhL>@aO5N<i7)dSb82`S=O3KeAC{szMYBAlQ
zai!$Z=E$m{xttK{lU7_<hxygSQF%>Uq=pn$r=0U8>#k1_sSxL4NA2X5JBMhpAIsUZ
zli@Y6x#O(~w^Elc3DIxJO1h10!1PTF?^mg_;9wMKm#l&Z`&zhOe>gc+C@KiF+2n2|
zCFc=T&@q?i(}=V9*;Q?yRve%|{88ZCx_D3CJ$*H5f7ZG}D6IefKv>PuC-Tcgz$(X6
ziYIw6Y*09cBYXeDfG;B%G%G{7!oG~1QC-B8jNm=7Gxn&M-GgJn^Px$Q1`N2j#-hbU
z60VRX(vWFgYE(gfE@V&I#Mv8N@LB^UvJvAqk*}v)m#!Nd%vI&=Kfz|d$DBK;e^pD`
z;_4%@Tq<4FGZD-x#njsyf+TVUNSD3x4OZ6ge=nVik<7m?N~mmznX6pYXNjWk#Wt>0
z|1Im~IStPSCp2;%(OeMo+<RD5tZ<JYqN;(5ao|kYj)09UM+%_#D;u@d2)iUU>KYKW
zsBan&oKl@(Nw65~$yaK%Ni8^q`2Y1pY5iq808HB<r#Gm_qbww3XPCyE9g?iPc=b~O
zFuhvJsaNik#YXL@YhXdbYH*j4Z;tTgx;C5050CNp4K4dfqx#(|I)DpSGOYLIwa|EX
zcn`shmB~exmR(1@VSDH{269212w+C~#-6#S2ybaav4DHo;C#a6J0kUylz82GGeh|*
zi|}(5Qs`|HBof&}A5JtlssV#MbmN`UMy=F&ok4Z8VLKvW&1ld*uZ_A^Eu&cBU=`Z(
zS%l3$Ih#xx^n$+>AbD_wVMei4>s=~b$(d;LLY>q5FJWLS63-~?8|VLYCTyd%4QE1L
zNR{Qn`v|JDXnQyNduxe%`@^!~Cw#M1ED~R*PrjW=|B@{an@c9E0;(DCxeR0qO`l;#
z0>1s(3)gW@FgF~nOf_F4Zwem^E-`7XKNYMatS@@sI##l5H;}_9@8G=2mWNhB^ZBE?
z7div1eynQ7R#vd+k5)HJY<i*Mh>&u6py1=p0ss*!u^HbYwMdo5-Us*@{o{NmFC64N
zd18+m!IYMGM@W9mw~0DH>-QQX@xL6GxQ})*sH^8vafV|nnlzVw9=R!0TQ-1RJ#Q%Q
z6^~c42v#;SpO&<&3HQ`R+!{_%1MsO4P`8m8jLStGVRxsK`0tK`o^Kb!FdQ++-v*r@
z{B;s&EpDr!`hO`4G?Y{3BmXM^*2G@t`aoXH+6AFT_4`f&n_?x^U*;xaETk)9oi8l9
z5}Lv8h&bNP#k6qVJeJ$fPp)3X=DZr&%eXIgzFhz)kE3xAbmc1AK(0Uk5xj71d>+-4
zIePU|BjFfrwGUj@wQ`Ow3aPwI`gTBxbD4{t7NEadOWHS-<(&S%do<;-M8dG=X{2h-
z;{BJ<YQK@p{Zcll(ewi09RJmdO)D2z3mDxIP7r?9U+tYpstE4UO<KIFu|IB_esmv9
z4@yao`Z&gqjdf2R#l(At*&Od5J)k-1xkzsa;cSUj$15X&rW_i-@HBFR+I^F+X@8x^
z#(0co)&|Ud3yy1!;J>OhKE3TLjRpAg)@o|Rf~x}E=1{I<uu`4I&_Xhp{zC)5CPW{v
zHB?5>m#NB`^ut}>XZ2%|DnVVXf#+v_-*DmRQ8R|`3(&#$cFE3!b*$MRE^cEn9_oH|
z6r8rL9=uP}G!AkV27Ows08isuOuyFQ{<kLu4iRFpu&6JQllMjB)3Ai=BK6h`^|D*U
z=F(Od|Jsz^t*E0`4bJ3#nPPsRkunIvt9gNH4=2@tN#6QH_wmog*@F}u)~kE0o9*fY
z)Qeu)*eneg_B3v&k_0pdaIaJu(NvL=UVI(JqLU$sN=a5qo&RJt`tF8H)Zy8gJW6}S
zl{J~P!_{Lksf%&4s5Z|;_7!<p%>?a8*DtG|$R2094Zm>-Tp&nGm46|CUK?!d@jJ)6
zzJJ90{a>hJ4l%KmPR<IaqkR~ohZn#69<S`8Z{rxhn|OJ@ROeu1yNTtX=z%AfEWos4
z-;5f+iPWA^6A=}IJ{NN07Jm+?EC**{w$+TEga710NH(A*s}pWLZz~fV14pg^YiNgP
zlj6_~gIgJ*hYFdqE38)BHmsiFXTwqMlXA{dX->!&t<jb%Esx1ub!4X0Fe0MZ{kf*7
zvtv2xZtW+~SFD8uZCT04T>hvtQOi0^KYHY#Y#pcf^lE~)1rTR23TUGv4_#Ktz~2#Z
z;!2{CvER6aP2P(h;`~P7fP@pgeyn><Vb_q)$~@t@Pf*R^v9In;(%qH!yW@N!`L-6M
z-rFMede~X<1q1mEzatjnP<u9{oWqzu^&|S%^i4AQQTXrl^0Z&6%Rf`-X#&ou0NPTi
zWYZK~HwA~x_A7^0zM8!f6lXD)Meew}U@<~|gn1|ku#%qTy+YRC5n!tNDa%3}>%wq|
zz=25EA=w#4${jf9NZ&TJX?pm!ZS}82u^HD?d{nA>{7#|4FjN5hT^BbhEr9!Fq-r?F
z4O;D8en@Pf1#dr-pclOHS!QR(1gv@NPk~W{F(eWA%>Xw4G*nxyzkg_b>iyo@53zq{
zZZjA+VpV(*w53B;nb&56mW7ss;lZ;JWdmbhlsP7)Nq2*OHyhE{a!zvTnnTRfl0du(
zL0~Lao#}{Pii`6#wbn6G&lH^-P!`QPSVmcA^?c8P;0DlF6=q+vSU%1}Z)4Mj_X)c1
zEH8wEsU>0Hc==Pgolr5?hQ#+Z>2u95kY$TeigAs@rwG4Ek;*mW|G`_iWMYZOrZxk4
zKMROQc9r1ctir5Dr4I!EMD45lXJ{Ruz`qw+kBf9abN^+qb=KMdeh?Iy&F}^;7BB5Z
zXSafm2=(gm(KEE`bsmZQ!@s{p^_Dk+7a@6b8KC32h>Lwi{>lK#TiGFixU0QY2Zfi&
z-w5S`DZ)(bKSrmjPdO*FS@u=y4E^$$_X8!9-HVr(NWV+J{f!F?N#^VPF9f-zE-ZfO
zqTsH}kKn@9fW*H+OA7rAI<66!2MS`QC}T1(OdL?zMOaG<%vD7HQ<ok+MnlXjMV>O7
z1QDqc@RMj7%BTA$*|Z6;4<91I@&CdkXjjIVfN~3rhhBk~3k>Cv{gW<N4PUdP2e&G&
zHYi>;v7WdL74Gzgyx6E7SEwxEHkVe26A5N$q@rTOYx?ZO#DZUC7v*KoX)IDgDUF7O
z8r{j|{CA%dJY;1s0hopi5sy#@dcY<)G<?AfhL{uGsH49Mky^IGp)dr0IwInNNm=&y
z+3eJD%LBi^pE0Rq2mlsKh#nWPLvqa4LE=e`g$85u3N`+yAJOWlXnx|5!knV|J)+W&
zS-8+u@X^`d>S^Zk*|@^`GH^<0_8<!9eUJYG(H>D#*hqJ1O@P&V8cr-)gdA`5ub&mX
zMI<Wl?+=wEQAI~y?tt5u8ZH0!Jd6^U)<0O6#s+6eGwa+Al@)%Ee&Dp8toxtNnSS;S
z+OYitjLN}Yh7V*{4HJD8;WgO2pKpMw4pi%F^C>A=n02whI$Ch(q-$L^%Xho8M)y|s
z{NSg^Mly($?6Do-7gW%l0~AZK)(meiw0bg(&%g6r^e^208NH~^L=H(8{fHQM3HmtZ
z9(1PzzzEiKUO%DF2vD4~9N}C?o2L#8=`QtI)z3ga8yF`oLn{k!6&kg)(Mo|F|61=&
zV^!}he4%9np8D!(dZN!wRWF!7;O{(C#^B@I7!NIf0ND{a^noj8>eUq$vCkVhz5%F}
zZ)XcvkJj(!BpyONt1ODul_E_!sJ@qw>Wb&c>WX7@$k*9m=mIB(E(TdA?+^rPpn}Lr
z*fTRhUkDy*Dh{j9GczJQ)G}<Ta@K6Q(U0)Q{@;E4t1G|Q=nce4;zILsP+_&trnhty
z8csj$=`pD>>J08~<wZOvf&&4cQc*X>RU5<@j_rYE&zT`?o(An~*BIlQ@>k`gAFGr9
zKW^v=EUW4sPnbhE)dFj96zD|k*%{wubq_UBBFGBtC+Cv8UW7CK{rlOghSM;1_&M{L
zCa@5myi}9Z*gzf@&>!;^Ui>~S?GV%YyHYZF0=6sW6{-GMszeIbv8cb($8q{}9U3D!
z%p3JB$sI7Zh{Z>NpXHRzI*rOvHnBRL|6bhmRdZ{6k-A%~_OiwK`R%{Cdz(8;t!7lU
ze9`dDMxoFC+Hp#Q!vaf}=4kW9;I<2JY?4MqHgbkJr6^4ELt4^f-0Zw$SYI&?IA5pi
zzf?e2E(1M$ser0*i*v|~RjgPoL$5-2qeYFTQ{gL5A_xa)V-18ijYxmO8?-{^zDl)c
z?3_buJ9(5S)Al%gl>u!XIzfMURgf%Smhxf;Hc?R*oKgKU`tYjC+&x3J(p7KTy5A=(
zsIz;a?${1QpB_Irwpa1R#AIAJt^>cl^8Z58wL#%ofC&%HlP(|bRgK_ZcLA&>j{-dt
zd;wSmXS4M`U_?mFNB6bvuM`cV1X@*kc$Lhpm0udX_q9^5B4)*B#YWP9@JjU16kSWS
zlW&JcQUwakd$=oVskvKAgKO!KQ9EO=PIyh<;T)qbXRvnFxE;b76DoEAGdSmC-Rt)R
zs}>jdOc^dZA#6HO!=s9QGRvS{UMFc&1}m%Q$%@66m*;iGib4ZBLcWhx7tLSw-2QFM
zFJgBMjFQ({J`wuWMJ>ovicG9swJi_)E!$p8*OhP|;CxNngI^=p%5Fp{XN?J<j{k3(
zF3v~Yz5Z9J?YW?{JkD1&1#J=JrYMj@62M;kyFx!z(~&B~&A&1D&!}};pxz2Qb!g&h
zEn4EwQez}|5cl~*{9TZR+4#XutFPx<-bfld?uzR}@Rr_@zrTjOGHC5D_?w~<Zsvxj
zkXI`}%p0;lgMQFRxCnwRSg;@2ZjGsa0|NQ<%3J$(Y-fmA_irN?gKLrpYJm4&R4*dF
zplu@py?+y0)8Ne?8-WP$W>M>ox0FsU@E7f;pWT!^w~|_cDXMLpE#qwpFCxzmM}dL*
z2GDva((ksrD>WhhoQtupp6z$0FZ(qVILbjAun<d%5UU8%8;(RhzmDTB90)8#FJ@i(
z$+$l7<k_fLH+B9L#dFCLmEpO~`ck<<^{=v$ocg8jM?wsL-?`_}iS-UutJ{1qq>2CU
zfDtIme|p}7W6>Y}Mjw!hh2bv)?nN6^r*mtIAIts6Jvt7?Z4qs|AtI+9e5syMKb9)&
zb63`Fyh5axX5(=Kio*p0B_etnIwd=mq;x6*a2Fq?6Fm**D+^4F3SP{*wa@p-;sn|2
zU{6U0Ql)1aVfqr^`oj^x7_YK%|A-EJ1PY3eQY^F~!*F0tCHCwk4RH7Ke0W{Y&p-~U
z^~KUmxR~A~8a@0sug7nRzPTJvHC+0*)L7?VeaT{EI^x3a%f|28E@apn4!|!TKGu8V
zK;3%$CKqSd{ii-nOiUd&qTDJ)&;~9&nR~fAhW007O9-m*$v)$;<GLKGAZA3aD%#}@
ziMnVuf13%7&uB2?p0C#*mIe2I0(brPjUpfNr?+&8G~2)DQ*ZQkO^4AN9#3|oY6j^F
zWZ18i+AZUo+`O#2b9@S|)Ov25C%udS{*7JqHKY~#j%=KYj0Z!?$Q|uHV_+oIHjhwX
zYl@s+96KM<@^1__d+yi8MYwJ2{7^%s=e9A+D<Rg!32mr;@F9a;?RSeqpG~Y4x75Gl
zCb`$Qq-j@X{|6=!JMO7=#}pLc#zs8<DQfBR89x5vP(AqcT5aPL@K~Fmws~AG2{rI0
zc$c&<#5y~utc3K$pV~HyiY5L;*POjLqlkXMcPR()YC}WryU6M{T(f&I{$|Swz^m6$
z(%s;wO6(w*s$R7}5rH)p2c;)!Z$Hc?o`aN{gw&-*p|vJr#40ndY%MN8ds8K+T3`mo
zsYj<z1x1TZhwrEDEBqb-sEX(AdpcO9_p6A99;$0q)@uOjvDxMwi|vtF7<BB*V4GRq
zPE^dchZwK77D2@k<tE-3nXlo02G>N8UQozYHE8}s&R=nVtU+^5onLPHn>T(d*kdWx
z0w>344|cp|Obf_EU;{VR!#EE$Ldaj0{Jyyh*2hINo#_+sH+*Fgn0;5|DY{rl8rQ_y
zT(&wh-{K3#QrZn!+;RB6%Ch+b@w$zk!!9X}RtBT<gW{nFiNXt%0y_Q?->E93&cgZo
zf%&MB`oM3kA5*1XDK3krqn73)fN)S~8w>B&y^jFM;-isYQ%!!$uJG5=^K%Fx-I0Y6
z5>h=(aVmO8+hKeL*E8yYg&KPH5e4U-bM^VEGHM0=+nFwM=rb9xCPiEv-bxmXDFa`k
zBj~9y$F0>5KGc#Wh5By3v@$zyv}-UjSYN6#6@E4U`rm0lfA@E6i$bd(D2fy3A*6xK
zt$w{)xl0xi+Zv4M`U)@YIc)TLR9{(zm*JKwUpYvFUTv%CX60C?czQp4NefZ~HpXf_
zd?`CY(I3<K>aGO+8kycm*CGGuFMWCUbZ{}df^YVY{TMr7czoyvFlo%rxpsH;ma!Jj
z*lZn{akzIM`%h@-8N31^o}gm%EZ}azFyle8)Oc*!!)$C93}<Mq=6ruG{6A$`L=pn`
zeQ)3N-cW<AnXT&RhDxKHQ&h0J{~WNEa~vL61J0q1I-i$>RRuj9nJ}M`E61vEKj`^e
zR)5ql5JnDrK5K)eF7)2VtYNo)Kcs52r)2d{gaOU9wC!lKePOQ**J_GT7(b_Oi^6%q
zohRMDS|zT&-X$*(AFs!7)koVy=C`$q#VRzzLoe}B3;QDIGYr687MWE5$k8J9d`jAi
zApK<$zq5Rm-YC+avGxq1_eKCE-S#HGRp%7w1q1kadh)`v{%d_JnlEB3Wk6UhdetW(
zaB&|cwifV>1-%UuLz&Yw<Lkuwu`dcZ&U=3vG~y4qUeOD#t5a`OUWD_7u;hOttR{^f
zLW2iH2CZxwh8y+c&cg!fP($I0k@VXqT92eqpkiB{{jKVds{C7Y5U3eSv}EoEGRPgy
zXn*=V4lSAVwTJ*dijVT|wHYqjuN`f%6D!H&{a&?zO|1G?H^D9OgRP`L5r-E4HLZIV
z@<#%;t`<N48vSQ_)7E$u?#`$;yMW3gsn*Ji@Hwx`>%c5S`{BiXm5cuSWXj@0G!*y3
zHR-ed(hIlfhY~^-x~*#g%~&U2-Ppman8QYGclM9|K8omkLire+xs@~a<yjc)EASO)
zNEhsAjfz$rU5FF7Ev#6^I<-UYT0ITnZWZsL9S|rU=6w5@gJ0g%&Gwl1y6E|mJayb`
zYT6$2NwOMSfA&F{(-|Ar+jpm48mqrQ6fHDO`(9MsyBL<B2nL@z*4oPh%{lU}p`?yg
zvz{ea>1)y;J)eH9aSeFX$i5Q88zNDiQ@W?|{(J62eo%g1q#5q0fub%4jLBDb%G7CV
zw0u6VT9vp;KD%!T^l>XDLK=3ld%O6~628w{WIbniIRl8CZ`B|uXRQzH0ri$bG`9#+
z%UVqWePx^r9)F+k<td#ExiFwsTYPCCpyJoucdU1F_4*-2KGCI7_v)hlGZSI4`%L9f
z4*5$9l^A8lwGUp>9}igy8MjQW+=_GDHOc*?KO<LRL1LXgt?i6K9iI1Yt_aq$mLOv4
z{#kbaYWl<{s0=JIApLx8jeJ9BkEso<^VPtjqGT#k8}@aY(^%@t<w9pC*&p4d?gb+n
z{JqZcR{sLR)g<@h&7?~A0zJ$?fFSwHN^NWjd_1(4ux`v}Bdk6dX6mB`i6%?pEAbzq
zV6j_lRAG(&FN6u#Hdu#hEh()M-ov*#%N!4@JIkErFJ4|GjqDMWs@1k2=!b(f+wT))
zw@8F><nr>bD|PivnHvKvMhJ4)m_lWJs?`XDP#+=L)xLc&i$05g$w=*PeIpP<wA-$V
zJ|>xedA0H`<c|reoXjOxe5A!BNuIB4UA@qs3L}nYD?-B!2$#%S0X85IyWFi~4|_7Z
zI!DQykZ~QsL;lT0zN7;w1;J8wl5XrB21Yex?g1%r^xIh@Q7&bx?l2nta^-SIh`RLT
zyo|p^Bp)&YZfm%cQ9DC^(vLHW*p*3u@!WwXoMupbNAMr@q;%wO5<PJ=+?d9<GN%oM
z#pFm|dXN$_XXKhKP6#~yG;(US?Ar42=4!%Tnlgg$<-m~MYdSV_5Y698A;kCF<a!}p
zXCyCsG2k5aWQ2(~tP0va3dqQPUDKmsTNWD&)quil^2?kX<BQXro9HZ{`57lIIMi&>
zmSSvPGDnmd%66>h1apxCT=wYO5>e(mkt(uZ#>t1YS-Wo_0dDhaI$^7@7)f9M)_@4N
zi6Tnoaissk3zIV?o&gJcS|y`<ZM1qJYVnngh5N?IGtILvtBE6l%zlr<)ydb^#;#xP
zzi>F*C8qAZ*BbxG3$Zbf2;s%OeeU!BM7cnlN!Z@ekH($kn0<4!%8?wwm64Krgw3$)
z$e6lHtu2(fpm8(BgLAi9(mgBZ{3Sh7da&WDy7lmy<{5<<d6Pr4?l4%O$k^!Z)_axp
z;l$q2Xwtb@2!2DRZ;xwIM*YNaC8~GyO|UItC#XKFeX>cfjDSYWaD{?)Mm_L#Odz?w
z1@n-O)dubXUpr4Fy(u*S=RUZ<g7?)a4Xw8_Hk(^pTkj)q7b{8?Bb;3gGV-GK#hP|q
zAMC@*&A37DlW@b-Cc>6Wce82@TDwA$svvi_uLM10JOLuPO<~O{!*adxmB$@NN&S8E
zH$dlbI*fRZkNC#ET=nd3l{(&Kz~~R3d1et_<8|pPk-O`TwH%lhTLx`@d)Mgt1#q&b
zOUAY6!<DhmOb~0bfCCF3r&;MP?lDvk19!-T0et(}5ZhPL114Rw^H?UQ^Ipv$F7sLo
zYxZR2BHDare$K>MRG*ZVxR~{*X!Xe)S!6jf3BR6e<I+1Pj0Q~m5(dJu49|(Kd-H3u
zXpzq{jCz3e)q|53I(KUuMyqhc-yfJvO21yX{_)AI+guw>iSt0;P!w314=4dYZB{3W
z5OJ)o9c0&KxD96Pdwu1`<0o2?z^F%g=E(WWilGti0~Kl4PMO3=^gZ0ImGy_oG5xaM
zViW(*M&Ir~9-Nh5=$qu!5=XYbSX&nJTLvkBP0NajKe>se%FalK`F8u6`EuYQmk}bi
z`ZT1!wzYoS3x}Fhpd*joF7;3Yn#Dd3vpqzHbC-cz9DlK@RKs{GJZrCsp8G`627GwF
zEXvZy+r`{Rapb7cf27F5(O8bwij`LrYf=I!fzJ!XE7L9#E$*p9_a_eJ;FSZuZrYHm
z9JMRfaIRJ2kM3FPQEV<vX>?4<EE<Lgyjtk$TTvo|e7OFl2G6Zx8)BtFD@V{bs!hK4
zI9O|7!v&Xf!g@!6j@a^9|Dh0@*|VI?yM}AZhW)%C1DWrBi_SSxhv;kk4d25R<Qq}E
zB?(KpfLjr4KE1fb`01~6?CFAF%SGvV@w&ypT{8^p2+QuVa|+YGrb}4MrD)gy37fgb
zkNWM7(%1r8yrz95df1Y6Fx*PI5pUAxw`cY|g<kk+C`M7<8O@l84X^c5;$No$8-GN6
zU^rEF6~HOmP__H>(Fa3>jNYt?e(Q6;WHER1^MiEhQwa}fC0es17xwlyuVQ_7^xZ$`
zKFEM3pw2nh44n6XbS6B0M&92#7F<?fIJnl&>gi~F2~pkG{fF!G#fsErp~l$nO|?c2
zG(BW^b&VwNV1NZ}>TZT?;Q|ZlEj!0<d~?k!efBb`=(8bYN8hJn-CjyKViNmA=EY7c
z(M6<A<3F~}s~gJfmSYel(;>0+OD*#yvj&BJ$h#epaqswNqO7v)Wk`kanEx$NrfWC<
zkjPJU^MNn4D@A1B4lXRePCfJ)KzlZNSP&w<q~BJVx)5Vj5*K4J=Po;b{_w3W6N;pS
z*2e#;wvA7#7<}?0T`DFP4Huk4Z`S^beSsJ<;#+FC6!MR@+!h(kJtD_^9&roS`|lpO
z^tLt77)|)vq?FX!Xk}tr5+CU6`~{Jd(zU6wo-n+5<VK@uRoK&!r3+gy_aKe4UN`--
z-(FU8uP@}Lm1&a@-t%XxJX1#|1-o9n=>M{)=V0?782vM#;rmY705&v7BK4DBX=CW6
zE?hx=p955>tv8zWO4s~YNXtB9(uNMQoU<?0IDYoaYPhWA{%3g@uKI^ZP{Qk4Ohmu5
zH96u#f5kyIaI3c8ySu2hFnI5O9}VT%7zW?-4`m!ET&X3k9$N}liA`TMBiqUr^R_dd
zOjVJ8u0bZCze0V@t)HzP@PTj1S<g?P)PD@tWEA8~|HmNwBZ}1I`j&EnB7n9(6L-Wp
zU|_wx9fI(M{#G<vryf4w^2(N`GOSnH9%7@yqTFZK>l@;|p&h}u&Bm~sLX0g&!X1(S
z82#!6GpGhpN_GDP-6J%F-g1Z4uNsK7Mlptn+Nho@=Oct+f}@^GsW}zTt&+iOSRK!~
z&EdkCalMGwXE}pqtObYSf&g{K@uH#cU57f}MlKh3mQ8wFKfZ)xJcq@er4|)VD10J?
zSz&9UH9tyxa=c-^LMozy^IN#iWyJQ=dKRl|u#5dcB#8PbvB}v~G}P5KxjB=Dd1uxy
zlv%5yehYna9)3DbjZAqflo{5@LjFUMWEG>S2ly~2*>)nn)Sg7`&<$#-#o{HXDXu}p
z#tLG^$k}^%HQ=gL@;F51zx<xJ#IxW9pi&3h(hfPL7aB1Swvq+u5>NGY>UrSKeT6Uz
z(`qhXxL;^0+!g8Cy7Xu?wS}`?x>nln|4LpICOt5Pk)4qE2)Eai<ms{kSqw)&4Z#gu
zf<bRa)r6gEy`$4Q%eGz7pNAb%J8MUg^>j}Z1P~~4d^Q}GZz9i?=Oh3g!dH-A9O$%(
zxn-xzTOd*>`8dU&PK3zs5s2^R9iS%~A@Ry&_mQy0x|1Vp`d(&Z*HLL(;Y+!>U>a?3
zu>c)Ew4kzXAsV;4vlIVu)cW68%1w2WmdR?s!hQK+EJAW#C{TfE0MNHKYp8m%OAF@8
z)MePnh$v5y;7)+rQfyto4K6*hKnv_n>{_#Ts+Kkvz&hCd74i(pDqPCdKKt5RcBcgr
zHx%Eg(v`CvD^pt%CG%kU?BK6EJ4LsI{v=J|(Z%tgaz$4;WSG(GxWaJ&v=K#dKNU3y
zjKO`Csi)yvWt+ofZE5<fGUgKWT#u{Tg$VbR_u8|e2eFTD5(5J1OsGA2ztD<FwIghy
zQkeSR17=H1M`8a1piFA*1)E|kxt$9yUx=9(4cJfSl$?f>w0W$UccaG-cM85T)9w$s
zcRT4|F?lZb7^A?cJv`5Nyal#rAGm7@YoY<1T0nQ%j{!G2r?rGFxM#VTl&~oW`fwp~
z6CuZzr?hIC4KaxJ&t>OxQt%ozk;pfqkt+4v0MU`9$GrNX(>IwblV`GI>G*B(`@9Op
z7n0q=ahvgIw}Jq}n^Toja65F|P*`p+=}Y9LvAX|~JUYE=_fl=!tx#dUc<XN|<_d)D
zM;GqV=dN}UROELW=$eF%9dGGM^neeOm=<!{J83_Ut~mQ%THsi_t;$5+m=4?)zU1ZX
zdWJWXIP$_#FXkcL5|)1!iB%?f6|&4by;7i_i|=A-N%nDf3cG4PNEMsKp$FwP@*hzL
zWK=a^ldH{=xGdFGp3a*F89r<2w+}y*zB2!>cHzS}JVp~^^E_ZHQpPcYQuOVRTM<rK
z>=VKY^D{U&w%{hQjFq7z+i!^CIfdaJq(DBX3HyY<c6M4xs`9;OKkJ4xt;{71oyy|V
znK3Ga4Ol9(u)t*FAc=N`r#m&Oj8l?qI!w1t_A%?6b`tutTnN8bG$wxGFfGws<QCk=
zZ;Z`CV=ht;mnk48(p<$1cB{60jQ6;KzKwc1i%+y9Hvk8)W&cemrKB}*6cKx+tpyYv
z`8;n4EPzJy;x+d{`(}>_O+D0jZ4NkUe9j&zIUklBv9PPgy=g@eVb6<+4Di`3dBO{H
zl<wf^gF88>w!HPc$970{Tm_S2OVO3ccuIEYF7L<0#Da9%8A`1%#Bl{P+bNYNzS?^!
zm_9LVl$Ej7CDophj}OQt57`@52E|7YBp_a(4xXDYt1hV3MC^E%f)Y4P>=L%zTj00o
z^SQ9MI~NCU^yt@dL-%8~C^fQFBL_B+&s{e%P)+(lxDThGSXveo2camjt39?mv;Rbl
z@CLOh<H2<FLgvtg^f;RB+cw_~c-e<xm%8@^4eW@oDbVJz1~HH(-@8z~0pVE=L^4q-
zGW~@MupVoQY}pO_m`NJUz#sJ}4-g)(gLdIr=z}NtyZidXd1rTaDuA@hEhR@-ok&~s
z!4crW(B6@-ev;fwDCe!;2{QE9PWeUQ293h4AX}jJ9ODsA@#rJ5dLBC&KF!Qfkp+fP
zUg&-)n0U0@Ri-<d`N(`T?j^G|U!*-B$_jWSp2%k>!JSyTDl%W;It^eC&PxN>CETVl
z;Vv}I<9B7scmAM5v8j6jU!JYT#6{shdF}=7iDLIWcA{7`HJSv6<}x-*0(g(}(HKXD
z=6vleV<icW$|LDWHqPpX_!k5y0UkU(JNl(ojin0BK{II}b5$9awww&FHTWvtFICJH
z>0mctpFc8RkFXUdGp&?l=Y^&k0qbi}VzeFS`1fx535rHY#B8H@pHwjqqapdkt5~RG
zX2#Pu;tH5hN6{m=C=aF#B=Z6j<QCWmkGi-gT3}p$94N{!dD#wGdc36ug0bXo9y(#j
z^NYREl8cU`o#ACNGacz-L+T~5mfE#gEy;G_(1N7~^`zLvo}ww~wWPr*fvh-C(Wxgu
z1=MoPI?J<Y0AP|$9wfyJ@|~%=2v2cqE=Z@f&{88{E%vzpP0ZOLbmRHBc0vQa#hHKU
zRFquPD4f{wEK{KFz&{}T#Pe*b;T;vScFJQxb{FbU)0lh|c?Uyxa2G=t=lKPW7H)Et
z<1}vp4de$jM_w8Wl?-p@oo)C(V)+gf-4G)bW{VugVk=Yia4+|g2i5(&H0Ab8cNJNb
z@E?r;9V}IlQ2^DI{NlOo>{JG+B`AS!oPL6{cSIWJV<x4l7a&v+s<`AwX^(w&NfUT(
zc3@HUU41J{AYWryap0fIpOxG6M~f!dQ~^H}F0<pE`YVd3G;m0l)GD<PU+Jzxg?5;%
z?LCWsdEUhJnt1zenl@c+G!XAY{t&;O2ikzi)9@7Z|I}?Bgq$o+Bj!VO!ODZ{M30H@
z;p9+i^%~%|tC|zD@=^FqHm^UP?mB_$UNu3zTPU{rxu1dl?y|f)o!rkNSw59$w{|dV
z_A*ZK*4sfHDOzJ?YY-?g#h(0^)k`}&7kR377zfN2i3#tl9WeLrlwXM{u|G<{nb_L`
zgj}n0<nI=K=NaWGGAk1&E&(So2AHYJ0*W?P0mM8G3Vl$>VQD!=8ylRp(g0;(T^>1p
z=oAkxv<w+Y;I+l$&1+Ci(d$5*qbJO1%lY6-r8=R<Q5qA$pteGihPDemctr_52}8Su
zMJ$-IY^~7mnn9EX?i1KK<%uX+vLGE(`ej2I!Ml?Pt~S@aW=TWtyz5MJ2l_#|u1J*Q
zI*%ULec>c9c?386EB$VNrQ;HKp0H1humG0?PvlX-+DD**5G=9TkI+M;)yMkX(b)}A
zcnx`9;#)vR*lb78q@Ltq3fz@&MX9@5xZbOw^!d>ACx#N;&$3C~yGE=UFLhAQ#{QQ~
zJKLm`4^xp@3;)Z5+Cn$4(6tb#XN#u7=AE5^yaLB81~>))3cgo*|C*Lld64@)+ZWOv
zg48`x=(c{*Z2ck*-?wIJ%-s#@y`<~*DD6NW_YSWhLB1dRoC(Vh*eHXgW-?!{PVtDU
zf8^%aBlJ=utN%qDoWki~(XKWLO)TKSl-*EQl>unr<dM0sM|WecOz)IWE4W1)pU;ut
zNM{XT6Km1|6R{nG7WZh^grV@49fX*(x8DMr_Kl&<vlyu}>IsRLZ>T|ax4HBB9q2=|
zTl?~u>L<}=!cpdQf{iM!n%TyR+erp%KRZ|q#1HKsDYoP66v9}U@$v(blX;QLKV6zb
zL@3VQh3KQ$xJPLTAXXFxdUs#9z-9~3sUSLt@+sOY9v??laH=43&>!dQ>Ent(9OIZL
zO0-v8P>d%G2&>F7>za^dN8g02enkI=dZ`%ZV+VRbP-b8}&5(MUr?}~@p)x`b1dueQ
zR+DvlT+S}(FP?ck9)W%MC{!2wMSzU6xx$0w#U#khu;@H~TDy3=aP8k0egs=^d14}u
zqAgkBDedfh%*&3aZ5!MrR0Ro^LRgszL;Dg!PVi890g2!$-GGg_<Jh!Ep*kRO=wu(L
zFrC+yKvSbSgD97wM71}aMe}e>T@{2D^`s9a&s_=e$Y_g%&Qgh&qlFvtV7U|>P=74!
z07KkErs!;eOa-@Dax;%)@3N%^Lak&%9T=LD4v>7pKe*(rNOpcq0$?tr*#U~wODQqb
zuJ@?C!aVjy+)iw|fjg@*alXtrTcl-K6wYd_%Z-J}4Y-6Y2v3^mLC%gJTyM~b5I}ty
zPeA_sW%(fyEQq6+qj`jf8mW^f(7b#K3)o5sMG&)e^A($8u?XyaCd8JZA<+jpCpW}?
z@k06i3`)SmvCq9g@;BmiYTQc-K)saR7CKbpPk=C60eS|&CJ<Xe2WcZ!w7D<uKL)Sk
zGok?VWLA%QikHj;71jA;a>VLZ?Bf~w6<xVH3zXc-9Ulh$Ro$>_C3CG0mx6MJDDU*O
zC2^Un1(BMPHA20>^b!K}e+jgZ$3K^d#m=^jD38gQ$pu?R3x$F@*dtjy&4$d>X;D`!
z-b|x?sP9JUAHrl-xsl8`UX20Gfp503sEeI-I*nNgo(MUOHtQ@xV$X?DxdAHR+iOS$
z@818>4uh}n&d7!CBFE--ml@zHzA?&pJ|jGJIPQ^;Q}h&hmppGVj;xM|Ubf1C=SwfJ
z%C<clS{T{}YM1;?A9PBjDP-l#2I7rg#|nwfMz-iG=gHbUBq?XdNL|t5E+Gc=_i&0>
z!-+8za%x>4U7&6&N|Izhpw0SqAzh{eJMdx0B|6}mE8M4dA}dgAL&$a%O}Q#);k|K%
zi_j@QwpKdLtGvhtL`R#g)D=f_<aL&QLJkR!Sb9fL-3HpZKE?_!S&tw-6#S>n?8#lN
zv1k}5n8;Kg@Rx0%aR-+WpO;D$?t#L&k*Y`4@dh?USxK@R=&0vE`6t*&lezo&OaUYw
zU&LI^2Nm~*Ff$(iPYp2wzZ<l+S6bX;PTfwdnB<VpYBIB_<bKB-MW%kUxXuXST3$(E
zW;$eXm~lIitLks?j`$7vx{t8d8iTc+-K_=eWW4J=Iqe%GR_L6MI|xFCgx_IFy9tnT
z71=LCa@Z@ni`|*LexJiKbS~&?KzXu96y#B+?~9+DEfc>Csa%gY)9PWWwxBg7IYKv&
zo>7xrJ8aXABG-0W&pCqLDw1kMJ^80_En@FD#f9mfyueBFF`KIF4^9PV34k~jJ8?np
z5$(#eMy1AIk`JegDaIq1s9)BUE>`Aux;$aof=5ao^-03Vziaj5<s9>`{eWU<kM?(2
z0{L0`pvM*=J}jvpsp8~|bR-bog{F{5i0!Jb%nvPWo^Fr8@5O%PLG78D=p(I<zw;0d
z_`6KL#+XOakegUHmvc~>0eXV+D0A$n)41e@wj?E^V;NAEEL8Z%tp2--KHNX6-UsdJ
z2XX`GH%q3MA>ZrjdaUQx2$k}Ej<7JA6IR=(m&*GuFcHwq3C|Q8iFT-gjXJKHM{;5Y
zJX)wzKzQ=h3u2lr1>r)67DbzH+AB}pUwbD;3`K95-ZQQti;>#$9t%;_Im2Wh5}Ht-
zw-NVpD@^Am;N(x;??};H@kpip`wY0wD`>8gY?I985906P^Dd+AoMadSk~R%*=bhw{
zSkg(6GH_XVIA7L&f}uJ35F)b<@zLga_Pm(=b6%LcwKb@#W@{zcj-exo;kk`eWwOkh
zuvhg#gpJfYYo$9jpf6*%pOx(ut_#5()x?$GWOOkJ8X*fz!e+@!p1s2g)B(DAcIvj!
z;4p9y@^O40NsQ<$`0M^Ch}MeN<W3wD)^LkAdAvAY5b*dsR!d@Y{n=31=bwR((o%*F
zot%^!^qKpm$X0ihwF*}K<m<I$>NYuXIk*_quD^=J^8^76Q)NGi2_A3>kCl%#t8NjZ
zc@p&L=obkwBj2S5ZzX8j+*q4^KSy@&C+=v|ByWjfCi6C>ZJ|CVxSj(#D?yb>-hcfO
zuo1fxxXalqB!%O}y5b&<!qLk^=3I2&YSP2I+iT>yK0$Be43kTMHyKF1VgFP=FWI*l
zlHc{&rHXs-v*=fnXr5B$S=qL~&H$vSuTWl+N>jt`&u_&86IvtPNpOyX^b<#8%DOWL
zptibpO55Hl^7xLq0otbCgv#9tR5hHj<c9E@;wigK`5{7HYFr6&04s;LJg#gH89ga%
zfptVr`3fblj_F)BGmvwX-H6Ut<Q$!#81i~Cuh@RnmNZD1EMYqoySM?w5vD%uMaXzA
zyI>k>kR9h!Ti*^;fN@8_9_;dlve=&77}$%6rT3k50j6sObCj(<Xp&36)wxT?)E7)k
zwx#;S;rB{z@jQ4nzufX;9J0(<`s~cb83JpXojEp;OR6180cbXJSabO$oR@GHQ<U{B
znwlqkt_~|;(|n&Z=6OS~j-~c6;jq5{N=AMF-M7R{XBv)qv2<4-+o11nVSRr{TB8RX
z5Vo*8mKP1NvT6UA{sWnJV+Qw=<5*=ru(lnDejA$`eqDr>jB;nc*l&)M{>P)A1s`lN
zyyEx`E!=));PNGj-u{_O1u)3FFqvM3OPJI?J(pfqzPh{RW#dcHyt;!6{MCXjIeu=I
z67R;-PTLE(bYSV%o>C1;*sTcL6<8kf!B9$Pzy)jlF#P8;GW~3F-f4mowd=-+x;s{B
zk<a4QyPjqPBfmEaYgnfNB0S)x?8X~X7hg3WMsfoKsK|ntRx{bL&S{TqveIc_4M60b
z)k^mv5%jTlzWj9ICbz}7aH~|Fbq3zf+47NGD7?}+y+!y+<r!Xk9%|=Ob#79!dR09S
zmXCIlMzZ2`GeaV>e?%WRk3BxS`0f2N7V=sa$wWUw2APh2*Y&3_T8%s##>g8CFy7Ni
zPCMmP#AC%d<46yg(=PdM{@NiU)^)mK6sKE2xK4Kww_ofj8d=3tP6~hX*Bw8rD#~VJ
z$2lMBY0fJ%$L~xal6bRgh(m-|Noj6xN4%13esIZum=kcJ@<>2Nkyz4L=bj6LG=^L1
z`d3<x6u<fsTKs6J2QI~E(jP97N<>ft`K%hXEo?PJ{iSntcHs!*1AY1!ZsM4;FrqIk
zMrud2A&Zq@@5Hf!fwFajF(#vHrlskraPX8U;2%E|$*Q6nP$|yTc|WQ%!VgOtB$V3o
zBa^5D&Tz+ON`a41ivPT;b21ekFa;0z0GGr>x?7G6Bp}UlrDMDzLwUHGER;wa%!3?l
zbhR<Rh=1@bj^+#*7ciR8=A4<r01K%uNcjAp^F+Xsh*xj@SO^&XkczV!IXq^jfdrz4
zW4xTIN?cn8EZbq^q@ODWF9N=uiOEV7Q!DoZ*TpJ^@}x(|<(RSnt-|-0noqq!ds%c1
z*<d1@2wr4%`gqlRULz1^&vDKw-l>fuQ0`JZQkTb>M7Z#inylO-Wg_GKg2(rUnkFv2
zDG!Zo^9fS7kWL#&O#ZaSAY`u=q<V;u#GjFcmbE#zNoi3Z5XgOMz#*c|;>FaMmmc(q
z`~dSDQGslKcvE#_9%ZNVo%AGgLzya(-kS%^!Z|qSvQ?7hS;NZv^GSsNHKxr70=Ob3
zVd;}|gg7AEpW%|&NXW5Ak2CpUP3TzxB}9xIuA7>Sgys?^9+k<Cu41n;dLsx>B0j|)
zGQ}*k5K4Q?8Ob+^<qRiqmxrN*+Vq`vx%vH`PH^EI0^HHtzsMvwP^wQ&s&6iAn_Pyk
zl1ro(6MKO>!h*GGz-H-Lv+gzjOCi)XA{lwm?apUESq4S6q=DO3Vhki{YO?gM+1c6a
zshPOy>P}8G%F63)m^^R23x<r4pCIB5LhAVM;hrlQr4d;M%c6xF?MK+^Wd<Rg!MtB;
zvXeyGKpv7?mchUh0WI<mx)%^TDgaJd?7mcVcNh}1ApDj$*t3snhel2O9?jx0%M7vi
z?a@3YG@J*U_}w;PO9UnjIs@}8)Q(z6Iitu|6I&$JQ)D$@s5*j5vKLtj^VDQVi9RDt
zUAQpNKr&ceY_3NUF20{IkT0pp(gp-&DLy&IeR)1^a(n4a(M4(UK430%CPXcS=R>sV
z&U1Nj9b*z|AU{IHj~VnadQAcQ?}Y3|0IaoOT?MW%{F+B-3z_B>#+ES30&@oG7^6|Z
z;|D<jtBk$=(gKn_^C<L#JrpFiiShn8g%b##FS7c0=n`l&0G}57CZ(QtaI<PTmJu>=
zRt;BlP;sFVxp{Iji(eHK&U?R7te`Ny$aGbsPrUfC@cDX@@`Qo;&2w9C?Q8v$?zTnE
zbm`BSj`qs9cE)q@53{>%rq;BnfsuUMXd^Q8viF!ur|3=mdh~4v(VG;;0TuDni50Wh
zu{{a(x%7XoJ2KrzbjM3G2IV7H9V;mLM=t+CDJ5)tp1$D@*XeF@|M05|7Lg_N;&60n
zdFku?=9_I3f|-HO3p%YH+SQ>CwEgDy_iW#ltYT(*CGm4tn&H9?cXf!H$5VILt)^1f
z>M`v`dpFkSz>zF-X|y&iO{#5gX8Pmp#hEil^FBwV(%WHgUthb{TlMp4bm6lExp^<z
z$K&GR3QHblzPTyqoMi;9ggsU5mv??yJN@Al-TLxHk2$k!t4iw{%SBn<?l;jPjGwpC
zn*G8ZD@gy_L-|J5r`I(k9R6&|fNUbWN#hs9I_fBOMYZfmKc@RQgVMgZs@%3q^$@u!
z53jM(58Jx9h0rWKH}>V|pHf?P)RTj<x}R4oDAqj2qT4e`lGCD@=S=++lT52SLI_IW
zT*&ggJd%8rarGrqh(`O$b6<B0Q#Q3XTQPF;_lx!uz{-@`d4pOPwyI@%{Jx$P_r^~<
zZsD}kk6qq@=RRa0(n3|*WGt(vHwsi?Uv4&DZN2%_xhMAhO2SzE&xPk-^e>s5{9sXe
zvzU&>-}1mmhke}=xeMa@BH)iDwb}CH>qC^I9KL?Ezu&tKRP_1thAVAMKh3oIsV9DZ
zv@~VLLPq(~Z}ZjK(d*?4?^8lP{@$?OK5jO5cXsW$Hlqt%sM^xxw?v14gLex3F8leq
zI{JQ(&mJ8$7(ABpnS6N!a^*N>j~4fxeH(5pAz&4!eg1&5s?nTnfZZ+LrqgZvWxGEt
z5jSv{1FjkeSQ%2c!&i#;QEKvY-yn%g3%{eT^xZn{yt6xD|HPrUyOB@tzxZMSzi2r&
zv-K4jS+O6+K$^f@M6drf``)JNruD!`rMn*Im%c|k;egx!Ah&~Q!31Tux!l*~fBv-d
z44)iYp_ScDHkEOy`-a|?{V+4#ucQj!!!^3~=fv5J&<|$PvDCMEFCSQZXneZGPwDKO
zU&525R8D7?EDvB^!5C(3OZCz;eRC=MdtMnsrTly5vn$W7IJ%nv)~jQPnf;8mUja63
z?gf@zXt-Mf12Pq_eP^N4KglvU%Mayq%hfMLKbC9EtSS26TLb#?)1SD{h2mK3fI7*^
zhBF+7xclx?ldjJZp3Tr{;YD(<-}P&S6_-N3pZe&3=>4zn*Mj}cR{lMG`<TPi+Zn9K
zcH!R!?z)rud(WB2;ps1XX3wferhoC6G}C^wmR{t<KWgH*z%<7A!&O+$0d1XT2h?2d
z(xgA@eq4)u?v}Qx;vqBl=lSLPxln60qFhU_dtq|Tf$N3vo45QNOFuWb|IhO&y8H8S
zrNSKarOSB}48e9Ao6k{}@85+v2f21P6+U;Be_$$`X>RsV4W%*9Z`yIxTwLc0SnZo4
z6ux<5Vp4eHt%D(=ZhNvMw2od?UTj$t!wb@?HJMRoyh;c)HIshX-IL9|_*vy)#Uxj$
zQD=`o>fNvzu3FOW)YbsBkv$D88-v&CJ}m4tH+!t6nO*w&qAJ$UhH&wW<@vkiWuJGS
zJ8wyMsMw88sQLNmNI+lvljoSjCea0%XRE=m>BmW%eRlT$ow}8PaekMa@jS~9(e>@w
zHX9_t?Pj(&>+@AM>R+A0$$+h8Spny<<(2tI%Wp6aD0!ERcbe(8Y-)UAMcOc9R<fV;
z=Qum-X87kbFZY)ZkUcN|I{mrcXSB&_LD{aN|Mb({(XTH_;|gRS{`EZdWWU^5gHU*q
z{a=KyPww8I2PYmDxIMh&&@2~>1-|=fwy2!HE%wjv@%*2(sKlnnDLba<I}S)r@2{&%
zont2KIY~F|L^O)6BJ|!+CVuR6@3u?Hayb(K7XGTf_PAKLQ2`t6_vwEHHF3{PogO^-
z#?lS@5a{4ctt<ar>^EuPJXfcjl5)igNTL5cY-N8a=xTVhzUaph<LYY8OWl*t&ZBSL
zNE~{VefZ7C2*i8GkG7sm51&UlR{PC5X>RkA?TMbXat;YPv~|wV^;U!S));%!w|_cT
z4~2RM9-n?U5mBV6nsG<?wE6s}I|%Ez=e1|@>+;MGwjWSNzy2|Dh;+#g&?Rh}zBdv}
zhyQQ&_THYr>Z&7@h4bcD-fn7h^SOyRd2w8Nt^9>Wn6!$gvD-K-OXXX4N<B;We|d>E
zoV^*}HFo$2pX)Uk;es!g3KE<XHSkI2M_OD`^^w?5+9^R}zP86!t5_FCPr4*4|37_Q
zXH-+$)}@G`G(n1Vq=<op4nc~DbP$jt9YTjt5_&I!QUgJ%(u-6T5C!Sw(lHe2#Q@R~
zk=~_z=icYN-_yanXPhKwCu7bv*IaAwB!Bi%U_qg!8A0n5bGmC^Nal$+?bUfi$Om&f
zq|~v7>gZDIpa(mJvTdj=#;VMO7~fH*{-RYHfpyKfQBT*X0bN;CrfZOLsNGwLJ$AmW
z<X~aNH@4^2;(#r%O}fSv>8Tg=9@JEB5!KXL=@i#ptds+>-Yz`j)#SptZ^6QAG?|OB
zw0xY1&;mKV6{6A^L#gG&>XGO17LgMl4GP;ziV|0%=yi2cX<xKdO!(@~>uRWkkw}`V
zm6UYG7^xMT(p4qxXv7$)77tVkzbbMMOw*7SL8#>yL{vLT{TQwuNlIPnLO6t8t18tJ
zT1#<)*kPkoP^CrXXRF?EgL9*rhVD%Ar61-yqKx?9pz_|rTyWsh+^ACOo4C>W_7YUZ
zO6?6pofk&TP+csyQfz5RPFyIg-t4Q3!%eALnu4W16axssl&1*XYOt#XxJ!EVVivQ>
zS)9l_%K|#O%0ToTIV`twRiCg6K$c8mSrC~?H`m@1VI)EKVWJ?(*ru%{KbmUd+Mn^2
z>EHq)%us#oY8U@2cHe3=gAgLg$`>MF1ZwQ5rjDmGxjFD82>Z;%p{<&))-3|fz>lc3
zQqWU9q%4yxNWHaIzln-us!A4gs-)sGtUvDF^|jQH;?`dyuzWRXUWdAF5Pytel3$9c
zdvI{;+jFvxr=y*-o%%y6AvJL#U7MRF`751m5-gFQnJ<OMvTi$eyDrQ==*f8F+?RXy
zhGc02%f~`mp>+-Y*_ML(rt6r)1Leb2NL4Ps|GeysJP-K{C-}hUb^Njdl;gb5%g`0G
z6bc);O-^m{3OW@hzqiXabjqq?@+R>)O@=j63IvCkv}(a~8Z^D`@dPxI_&wXr6KmkB
zfVLA^V6*r0>4H+iRU`c-zm_W6+N{S5)w@hu+ijTXy%XcSKAC3Ehf4h8$$X-Gl#l97
zZUdEiUnON1M#!CM6+zA#Yfex?ekaDtwU#GgtCZ-z-*-;BC|YO&UFm~@j$W%*><Qfv
z?SfOguV^=vS1;q_H@jodbai)qhivl4sG7z+;Tgszd2kek5Mzn-D#%mIR1;ofX?laP
zOgn6!KErj{DWOZkGM~C}FuN&l@lK)yaf*4C6uz>Ho+wbkb&>^|(2dKwX(<uW1@9^>
z&|hQxdN>XQ*yZ68ql~9SP)U~<ZZHVU_m)L+f??xnLIWIarR*~4V^_AdS;jxJtcGYX
zjQ4MRsKArE6s!WXqti^~%al5b&(%{{g}<(m9yuAR=1DQqGSs?ZxF!dmeJ&9_c5R7v
zNl#9??P`<69ckfWg=rXSkX>VP`6-%3sxu0#nD@#|)7;cNG_W1&8Q#Qk9MCyVXrUQ<
z|7GDsVo!1cu{d&#ixdGDMw>oQr6?36Ol$Sfc~>FU8f1t3hTP-i#H822sw3cxtLuKd
zDpt#%ujGP<UwZGDgezf4nr5kY+}~@BRap09TZ(9vy+&oX`|4uWy-eB4audVxXy`Qb
z+rFfy(jmE(oD9NVe_*j!Z?u>Peg<K74ma_wJcLj0Dla^$!h4Bxe^Ici;vI(-8EG~_
zj$@RU1{?9iARp7B;8ppQd1e<^EM|4V{fAXzD&v6`Yr8|1owoKI**y>h|6$$_!}l6h
zt{D&NjcW?dKcTB%7Q2`mn`%1o)&}hFX%&&onY_&Ne#s}b97gzRrAwflrmVjpB2K9H
zkZ0-;Q~p6oHAW~Ube}#U#op&AX;y~c|7P>h$C^;<#hh+QKE6q#b#fEO#qg1j@7`^W
z<j)^=ZvmU!x%#ec$)0ayG0=C*2C(|iv@(ySF(S>E)jYv#^;?<u^SregF-l04`uCd!
zYmAqG&FO@gH0P!&$iAyZMhSYXD5F{7TinAA)0h~QWaf>@=Ct){(any!4eH5n`XyYP
z?L1|99G%A#X%x0|#NR75{6W*+2L?bpI}{{xAnR`>E_jIKczZpQ^<!cZ=w>Ke<m9|#
zXsYE}zpAd{spF-E<%#1MOHu+}yEw+Et+cQXwH#w2CR+6#>UL!>YZK<Aw8+1!xp1hW
zKHnN*bP`;rR#MRlYjEMT?eN>Ao&2Ukv*F@rSLOm*al?9aMMJwn(ckUtziu&u!uD$s
z*fyqTgGQG*Drx#-O_?V)y2q1~2R8h^B?az2lH0{Bn*VVqV7!o-y7d}rS@J@3TyyX1
z)_Qr^zW7xRc93bX6~{!Kqdhi9bVOu0%(KmCDUw1&+@PKy2|84sy=~J`C%k1N&Z`z*
z@4{EyfM%nxbbcV{r=g)1<u}F#>P`WhD&OL~qap}eXOL5V!n8-@MWw1HXi75pJb%Dp
zrE3se8&1W*?2!YbjM6KbxjD)M+S{r7M6YUOnZ-w7kri+m9LtZt?^TUI3dP4m6E+4P
zZg5>P^x<P;g@qGGj1l0Ej-}(39>nAAS83ptcKYIurLp23w6;I~5tI1%yGg<0(*aM`
zzR!5U)n!tb<{BEVMV#MK$S%=f$J=gr@_4@7pn3ZN=!?HSE&ueD4=0<fW<E$>GoN8f
zyZO)KxEQ0SxML_oTnzr`y|tnG$BW&5&HLi!&3lr<W`1vIou%VQ#iq@O$FqtF*Z4dL
zjQe--OUFLqX+9UkJzBcYx>UuCiy;@cm=V7s2eT%ym}VuFn@S*&n+b}pJ-RVo<9~I{
zUxg~d*PqIxfytx1VMj&c(<m(ElHqxrLbI=ikQv!dux{YaHD{~=#mr@*iooX}v%2fF
zZe^loCwIYL&W;KW_h9!LQS@)?#p#`=mafX(>PeP9vDkd>RkWBYWL6)<$PY8TQgLLH
zk)DA6!LJkdN5;~<T_?=FHL2WtX~?#=220AfCokBqEqifndtq>QWMuB~3g~+zDr7uA
z89LpmdhGLj=0x7Mx!hGCkcmE`VTvW<tiiDP&`GuVa1pho7Sr6fLAPm(Vc&iHEnEw?
zle`_T1I38DleGSL%OU--cOM_GCSKh6q)o|YP&*$y(eC8FqOwgu*g3<VB?G5^kp1<e
z4TFI!4<fmlY4R7yNy46)cZ6@6tjOC=i0+#C5Q?*!iV#Iqt>gDG#0HC=JM!)mY}`xB
zWa<bQADf)-e|$n0)V$3excj1$Xs$T*yWT@wfv0QrNz8Vw<U4p<fef^Ets1*{1F>y*
z1IWWmJ<w11qchhpGxmF9rPE2OgC5iI&vajDyDJnMV1|%{kl$!(ByKxrGGn!ghzT^N
zvpd2qJLXx1-U%Mh`YNYtj$1R%V$X6UFota0&K*oHCf2~ta85{djKq&niU>Ykj`(zL
zus@_hxagy^KJw*;Jtjw2k2zEPr15c6Eq2_9#;`t%y5aMKGzMGPiXCJ}zp>F`CrPf6
zfa)7|0^j1G_X-TQnpG`da6PVjFqcirsGWn1CREzsCFN&wBLiK#wIXoj)uOw8g5&%>
zd*QbtSF9BSy(u0V+6c%eljWpTc9q>d&ef$W`O%`9s85UP9cLQgT!`v3&EoUh?kd){
zJyuXl<M&^E5qaIeQ6?@e$HzM758etA(#qIRZL?W=`plWyJW;K!cFI;AJ$!q;sFOES
z&soGje_}N@SiHhVg*wUE8_(X&>tf<Zfhxe<pxwpfq($9ub+CKPn&yn_$1*T)DH&(v
zvFen5^oOO(#2%<eSqwxm_;jnt<h9w9>_r2QU9?iC=)u!5kK{`f6BR}n<%V>`XNsC~
z8=i?SDgMvsE;XfZXq_>#F##=;9N=Vw29!t)GD-}ZfPhob_^%VVU|P<Zu8p0Fn`3h1
z+y6x7ceB8oy{g|yg01Pr+wV$Mw0=?0*32m?WI@BxCK&U9z1xKuSbPXI=+|Dk>BVv6
z*WAyq(-Pz6u4r{xdcss9WxZ*pSWd29UKOACM{y}rPG51DltBC9<tMWaJ)8P7f)sRN
zW(M%grh5NnQ@21(mPI(-hGnO7<K*>5zH2<M|Ij-hHzc+H@Z`0|?P5*ehvq&8>#Sv*
z^y~rY&YGg94o-KViq_!Cxf>IMQpRRqEk?$S>?M<Tnx@l?;*E3yKFqwRSZLg&A0N-@
zFsr!{F~v}8SY(&7-aBO>F6u?E8X3~E8AIR~@#4$6LLO5so29zS#@i%0bLB&f@8Z5?
z7~RMlk_kuM9AnzL2LdI{PMR9f;pfwrje2tTLSv&OCcdJByoas_oams8c4a(bczo+>
zD>g%$sz+S)dPhsO<E7#zc~Sln!%Gn)FJ9gvXObR-y0%1g&G(&bYfT9Tu-mBL5D)Cx
zeC9j&6y6y3vK-AUaEC*UN!pl89FA=>m+d^dg{Bv=UeK8t&S~w4*)3NeASmX&J;JHu
zP0+>@C?Sn2_UcWAw+`IE1rb`fctEK=%yrl!U(ysJksc?ZKQS_YA0syNbn`Sm<Bt|E
z%xl>n3c8C&1v=r$KJBY#p(Mkug}gRvM4Zf;)k4JD!;7O>!6s>*Z+R}3VWbD7%);Ie
z?NJba!8q0dXgwR<!<ic-gp)^_b!)3zaj5jJ23rj~0lj!VMq&JK)~1JOM72=|RR*$W
zc&jnv+xSC|r+Veu><6mvUbD|g>dcOCk#mLfhO1(_tW<f3mp{Czs9^K7D~$VknI=mA
z8X{Vo&5O7oNlrl_=uG)+oH%}SLcWw-@o6b}=TpI+nxdQCgO~i-TfJbne(Z3|wtFT^
zZ}*O@t!l=JxK&#$D<F^tQH5gL1lk(I2YT;O_vIyprKOFvYmSmR1WF=^;h1n5qe%jk
zQ_v&%!(7ff!+>z1la%`&nVKcuc1IP(F9i!$UI6<D5Jw9;agsv1V=EF@kZfVR`oue8
ztDsP7g4zAycww#JcP8x%J}Qoxd)btCHSey;2VH@NX}e-n6vBAFpXP}7kuG;YTgot6
z8QRrf9=YF1ReWSDHvCj;?+_&|Yj87VnrU^={6}9|TUf0lyhw~aKesWcSoKbm;O$8+
zxA;5673l{HE%hOr2_x7So*8LbW#QOo0p8X2Y_f8P;=PhN{y~RxyjVii3FkYc_7G%7
z5;aV!rV+C|T3UQLvwJly(SG5IbqFs@A0byd!`XBO;!)p5{5p67RPN*v&HZe1D>u`y
zy@y9%;VIHH3|QK}%-+fl3H6eb#>YU&_ntj;>xO`%K(QG!?T_$f#0c421n%#o@||QU
zm63`--izP1(iXn@Kw6kY`g&Ox1PnT$`hk*-(OY629&dRm;Ur?rE6{GOE;)KN$_b2>
zAfo<G1@lqn*Xg5n0~SB;E@qn2!htivAjdKLlzY)Lhrqu8%_{R&Cx6@i7J(dLf0&kt
zmyfT6pMsCh*lmX^6s24?P!9u^)MvQ~q34R#3l;^}C1o)lW=34}x`u{w#bo3`8Fwf_
z`b^hBlJjISyFJcL<r*eAb7i~VMwyt+6&7ideiX`Oz716mT3+szB_@(G39SpWwAy`f
z{h{}?CdA9a?jcFpraKh%pp*SXUV@ekvbVPK`T=vo=`0s?mg_2&TM>q~53=i)#=WhN
zNyaihF?m^5(mfyt+KOC-hxq74qldKo;*Leg1geSzPh^?Z(<%OdiuxP*x+Cl~iWWML
z-1@iEh8%VUqTffN2L-VeyX%|x=vT248sh0ny)C0(4PxTZm9RAxj(0>8cT&)s;S`w<
z*-7p0+xf`;h-|>Uks5Mx%p0V--;t;Rc^%#JA?_-Zo*_L^FF&NUHiUknGxVL_u%KI9
zCf@MTfHvvWfaJV0S*xN0eAeybkw_TVYQnh0^3KXF$^dJQ!n-CBe_&gZmr9P6tM?Qe
z3*V$Qu8XzGa+QW>pJX`M8Y=tD)>8%r=8;y)y@~>h-XF8gLoe_TZ?t-~m&kVYX`6Yh
z8c)8aW_0)@5O)9?c@nmA1)LtUrgTo`6{0!&kxGwX-=GZqkvb(=g#?-B%(mx1LZTf_
zr(G}Jv3Fk{&d(?<sM;|)(g(d3eN&nns_k|6vR1!x3;8@-R+65EuFlP(W?T7QbPnfz
z#M}CJ){M~=69S9c+{-#eY{EZ6c?CRrg`uwbTs&a^yR&>1t2-!&ZUbA4m7-LKeK#48
z47ak0vluVbkmk!Q*NQ8I$tdEODPbiD@yE1?eqFL6#A%W8?s5Gtft7a(|6SjtYo_aO
zp-VT8%?(T+A-sccz#DVjXg?Ttyr5nAU{kjA&e0=-miNh5W3moL{RXjXQ!a%`PxTma
zUm*;;(>F2H^DXCWa>Fg?Z*f8@#HzcFj3CMW?CsULO)pQvP{t^N<DjHO-9y4&o?=F-
zGdriV<`&>a+hrk}M9|w!wH%3B0y-vfQpfb7$K)_OSjzdi!}k-Jw1}5tfn#}<`F2J*
z@}CBIL@S3xBFtRg$>(Q_-KJ0+GIqME##X7q#YI68I``!Z2bv5`7UH}zC{N<v%@(0T
zsQF1g<jK~-a>K&(!TKcG-NQY<CfM}yfoWh9CYI+)eNwJx-fIRP2Q*T*6E<WUiOhU^
zI+A+S-vR><d9f^-RSvy>dP><w>0bhpDo<_B(|!Yfu5)!YQu(}mV6A7>+v7y5#3E2|
zfe=Mpl|0PRz8dd~m$&Y^=UZ|*7-G2g87tH@o9(cJhU-u9x+@Ev5)OF`9Nek3d0(lf
zw|eQ&HfQ7Ye%;6`f%BoHN!I*r=y%^@N1<1Hiu1O4VT2McQ$#@#yTZM_C#Mv}W#nDn
zylq)}CDh$Pyj&jm+Z%Y0qJ3x!^j5yFy6c%EZbOH^o7QRp-~9ZKGD>O1)3>aZHBGJL
zT$|q#^~m>X&=fpinBzGT55}k5Fv@jGD6@f+Ri<<*&ckj|l3Um8cB-dK#DY1;-Ksxh
zc6kF+R|+CO>}+-ma2^ep8f2N5#t)n~(p^cJA7t6cqD4=!H%d#sGFp%E<T^eGY1DFJ
zZPB2Ru2ejOEcQ!|Y4>lmybo|*n-=Kz7_*Hi8(NMXi}7hBr@z+Z1y-~_TH-wly3}Y=
zHuc`0h#~AmbaPe?ow)jmC83`1$iJ{=QgS4XxZfy{>F(pM^V~z98@6Z6(RJBD>4zyr
z-?0Q3a?fs;-S2J*M?AEU^X-5G^ojG;EU7`{?#^t+Jd4_Fm4@M&;!XCB0k26l)20%|
zip~Cnd0=n6$R-gfv)!p@*n7KDX)V$zOd^IXaSV?e2i~*WFTS=^kS6#bU7E@p9JSnZ
zmqkb&yELPJrgbfrwlat6>}$2{t{_g=IsQXcTs$g#Dx5!$#8fryzb<}0k^D2bhVxzK
z&%r|<0~xgkypC`SH@<&EQvZVF{s##W<>lwKg1fmx;0PP!zfxTOg~9|F!F<e}9RC$V
z@Czmw82ttz`YXp*G$>zx;KK>vLH`c~2PZE$4;cL?$KRCdDap$}`2URm!y}dm_PGKe
zh=B*&FFg9V|AWUJ=?rtU_Oy27b@z7volk~tJBJG&2WONJ2Z!kwzMTKXrzWo>BPXLH
z^E=gIkJjijJRBUgOE@@;zfj==CS91~17%rxb#3|InJPMy+uQ&aVn7tbe=$`A_X6)+
z$fPANtDz<LJ5m1qXr3)Vk}n{D;=hRUf_;ES`%iIUFgOD44ukPJ`}__!m;Fc-4A?*o
zxJ~v8Jcaycovl2aoUL6iz<x<knvMssq(r}C6#ylF^@t<V-0DKClI~IK1R#46s5I#>
zaW7r}iM4ihMP3w^@Q3of96;-H%iqHi(fouuo4dMQ7&edTrhztKa1_v>zot9F@e}K6
z{XZmAfa-CA0o++34i4bWKSy4$4)|}$PH=bk3j@piNY3U5@+H0cdtf}ppI~>SgEhkK
z0-rhgS7SgxuUrS5x%N-kKPQ%{@=vTK(#aWlamt*x>Aju+6{6<<9bKvR6a6p!5j)M0
zP7dgf0qXRtVK%ydC+%sCaKA`*r;@QiC=eOU{(Iyc{hwG@Yd55$=Y@_L)5}ht1KmXo
zc>QaK=$QYV^`AX<fnhL7$B_hJ#>)e4QT}3BAkZ^^H74K{+}siFdtvB_z)tWwAX=mA
z_e#sy{*AXZM<6Z)iz76BEr3eRAc2bg65JT|w{9fD&E3_*(*45zt|SS06AmPv4b13Y
z6W_@ENq|6FSzqM1VyU>fH!zbC(BEU{WdDS^S~~-#0~Nba{Cc5YW0Lh1oVPrzIH3O$
z|2<gc%};{AmK0t~XCHSvBmyFI2jVRz3KJEEIKmMg-Vj@a2d^9Qp(?>&Uo?!sDtQiE
L-J%5A9_Rl6gkq@V

diff --git a/salt/sensoroni/files/analyzers/spamhaus/source-packages/dnspython-2.3.0-py3-none-any.whl b/salt/sensoroni/files/analyzers/spamhaus/source-packages/dnspython-2.3.0-py3-none-any.whl
deleted file mode 100644
index 24dacf04a1ca715b37f4f17aa2fb8c2b2942f600..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 283679
zcmZ6yQ+Os!)GYeOwv&l%+qP}nwr$(CZB1-z;$&jmXa4=1bN2rBMc?#wRdrXbRSMD|
zpr`-<0P^1<1f=|EY4U*p0Jh)&0K&f;6FX;meSJ$iOBa28ItNc(mEHJk4n)6`dQ4M&
zFJxU;Z&i8U4hVV<DC9s|vf8R8N~ZzI8nEe2Gxw$b?@^NdvE#sLpS-uf*>?lDpjEuq
zo;;ebh@U`)#+%K&mEd=yR-HFBi=z<4puZIbP{j5NSTyeJ1aS$BfK-|gW0CUQU-+Bm
z^7+2rknsKAW<UStAs{4FXtC*D2`{6*?BJU5Lg`8ylc=>qa}oPcB#eh^rQQep^iUS2
z{4Ej>;FSas!@a~=E8<UCC6KR-szZ-GURC7G?BNvNI#a^}vR}*tFuv4t!9dtRdCCbz
ze__RCv8$!<Ew*U&PAa8nglqd4MD}{2^_EFH$2P4y>vyg##=+^tC4{!u?qQpN^i=88
zq5fU8>nj^rH2qFCL4|;n*L)|2wuFQkn%4(N3P~)=rr59}9)uVp+hQhgfXhrsB#EaG
z&dpKi3yZ0fz!1tOqIZhzkVLc_rqsOmSUjMLYZy+4yF{YmWPw?OjvJ$jzt#8MGfkpQ
zuJbAtKo{^^B!OsiXJuE2M@<Rf8ADI82xBLG0zZocNBrianzcwcd?I6~o*|HMbndfH
zgf=E1!D({BZsL17?@C)GF{ezMZeVPSbzU1_l4eINpSBF6E!GG+`b~Oxq(J+?7=NI`
zOrA+1r;s3Sd2rC^kcU)GR9MZSwLnrp$9i@6z%o2Q+fDW=&=k>`b;c%+JuUC8WFmPQ
z+MM6jEu^w&U4R8|DD1U!{E2?eYu~7mGR%!e2FtFaI=4u4?b(fcJ!%KxKg^G}XFoX8
zN%`F4fiBy5OTI2m{^%KIVW{#%^$7QyN(|L`E>GLgF2UpV-L&D(r{RuwYzFVoi%`oo
zSQk)u6n?mY=34IYhZL*;@ufj~y*}CVTDC5X@vEbRr3Y`bv?eTSELAx33Ob5CTVT2z
zeC@eq3SH+hb9qGvBlGW=DDPcaOMt`etKfVwe|{7CDJG+>;0076lGeS|V;D&Ft=#cV
z;=}>O*sT$lrS*}c6+g`94hykKwc^XARX6$vCMahp%4#)rSg2RBSA;J=Y>=Pv^m3l6
z!+_xP+IRg4Zc7!A`sw#1T$5dDn}c&_;P&<Tp4Tw0AG&_W3%<gCsD`oBqiO^U04zcP
z0RKb4|3x)JXHPq0BST|rQ#+G?e5+L*wA*5U?fsyRcwPhuG8lvd0eNX|0)d6;baf9-
z%Fw8!@kH5W`F>GMY5$_fZ88%Kpg?|`etD(PAEs*YZrjq@Gh+?r#^35)9=zzoXp_$c
zjdP9=xqUKp?f2^mmo-52LW9Kd@X!ft4)ZA~>Ik!MjV;gz-Q_e#B^oIWDJNk4-OC=(
z2P{(!HZV3qUg3z$uTJ1gry;2@*zFrXPwt+GE~<zb&N!sytj1}s8Q@2?DWIukUrJ+7
z)H(A@BEHikDmQt{^_FF-@GO}K{SeT>8$~Zx;K^ScN03os{6oH|cz)55r>;ENSK8wx
zxOS$53CCOLiAUHz$x!@g1gG&@#}$V}M^SFiC<<(%#A6Gh490rak4aFPP)~&UXpqg;
z5U{*FFk4mHQXB>~@?JZHIaRjgB5KJR-qVQsAyDC?^N5Dv5gx`5zMViiz}gbC1)jbK
zl5s1<vu~*r!Gd;{Qlg!d7QxHrAHu9<+68|<-x8NaV(mKj>lIXNd6I63qq_B{HoHSO
zw{C}4vvR{e_C~>BYTcyP{(kP#c1C{s4>-=nvvh-A*-~1(%j~_86opkcDJ(-bwrSm#
zB5iRSlwRk0*s{b8QpQA&4F?N|M+^Tc{+(Z@!t#jul=C!PE;o@oVSaR{&n(LG%XQwP
zE8DT^Nxtv;TeYPt9G@~)vzR!120jmmR{8i&N4VxO!T$3wM~SiU7n<MtuS{bnrV7T5
z*oD+#Z8I;Snw%*v5lJ8M@)LG)r24Qs$@n`HB~vdn|C<`U6#Ix*FkLTixjzRHn}z*s
zy0Ba`=BoE7|HY)U95S017yv-<50DuD!K9_V{{Mz$uZFb!A2!6kn|gvHVG@@{iLLBF
z-jX;)OxtZD_)TF&NFB=~Qkg_(NzY>Rw;SA~A`xD<LvTT`^)wCyc=JBbdG#YPwp^ol
zapA@6m>#sQvuQ<W9SpHXVe67b?INJ@Id}H<7lihbq$tc+i-?->?P0k68bG08vt&}p
zxg4s@!KR?%N+JU7p8YmktP1#9HeB@;^+J;eFiM|SW8nH(U?ZwmI`?~EQ3QoCun$cE
zqfFF{Su%5Oe#YxJcT+pG8(cZKZ0&@fJhJ$}Han>bi9cv^wHhQDo->_kve_C=P`qNU
ze`7rG5*3on7Om;8^7eop#vM(E>J*i=5S>J^g|RF>6hcYDd_i3$*f|0jh3*a194p!T
z_T_nT(Tm*_mZpS1TYu#em<MI@%CS9CW7)RmaurdFEp%JRUz7$?stP>nQffdP=QSk=
z3mRspt+j%bdr5<vq`P5nirbpndB?s2c!f7EnlH44rj$gXHCdZuqmaMM%Bs7OuVjfE
zM>5?u!J%BHWV6J$O^bC64w>1ZgEMsFHq=`k1Z=I?^<n|(o4-fD=EC-#9k8^y=ZqK5
z11=3Um#zVCkwk2aPfAw1r-2{`5i0~+0Yp5a{S4>%B>FkzY7+^x=`IM1zDnSkFL~F>
z&Rt-p*k!3C4&}Y8Un1NNa8t<pw6NfCP`~b923NXV6erx2!!Bj~>?K95N4qJo+9Oo-
zQ4RpDa1|_Da6@`D-jX|V8bNkPko9;t#wDy-_9pf_XA%oV$SsCJTKHo7eHp6iZk6V)
zwxlfx_20i9-)Atk%pL|D5aXz`v+<h>_yf%R=?TuSjN^r<9AGKrrjby47FRD(uEuda
zk?%!d@qjt-b3{)E@gidFTF)YObS!zgg@9NS)M>R~E#3HV5fuxjS%i$S47{{1Fa~2_
z{5ek^A@j=XO|>WL#s|}k*D(Gh77lqh?9{5{vl@@mv5cPh0AaJhKABTR;@JUG3Z8`e
z+C9O^*8KPn*v(`~mq;YYt*fq<?~kj3U6`I<A%ge$^$Cpb-|hwOAl{@DGNPlf6rAhd
zqylEkR(!A<j3jR9m5bIwMShypKp19|i5jL0C6a%Z%#WsBFCb$=rD;})W{3ppNS@4*
z-ygC)`8)V4SDXy{9|*2!;Su3lOr^NF$?%#+IXaniADe%eOg75}LwpVW9{>709dQ)9
zlQR3=QZ^)^@{&%5!*qw?NHVc^l*uQ2XiIQK?zp`cEp#8V=z<(ZRf~MAF-liMuWxy=
z(TQDIia|Y$xTsp^9saVoQFn%>fOYWuJu#ohUL-d*Y%w;E_9p>T&frG)`%ibczP;b%
z?)U5U41Jt&hhQz7<jdlp6}WJ0dnyGk&@vRZ50ZtyzZjzSvFC3pB%4wS*A2EoFYF@~
zl7!i1fT=${>i9D#jwR(Ijr-PDyLRlzogYcVWpo>uJT{EZ7uTrZb$vRX2>5U&LNvQ9
z9ILnJG<XuyF8ZQwj5Wf>f)~E@kkOWrW1H0reR)cA@A5DlH<+^xEL-`4<3gkKZ!d;F
z+}oYU>JFd097Cw@zavC^Q)uZ&sD<NNECCR*G~q{}B^*L`CJ>C-s~XVK(VmmswxK4b
za*$1ErD`z4UM((}!=E=P?S1QIj7<yN_*!L%6>erLb>a{K<jVYIZKUQPYJX|X8|^!q
zBzScAb|BJYo+D-6AD;B5I_5n4c!z^o&GA=qUCUthn&(6To8ePIPVs}zuWoJARevtM
zDN|_E-zVRJedI^!*~K;-VtJ2DQ|T>7G`e}<C4~A2RSy>T@)HpAN4-*O*>2tfMu4*X
ziUzfU@(S*J?Y$VEr$M$R{f&zJ=|KVcmRZ8Y>z^?Hm1}`i-r$sfzx6XX008a(lWSvF
zr~iocmHJ$K4jXFUgStjDhJv}I7jC35H+PkqCA$(?JB1LQ$Fv3`TjPwKMaoZa8>0aT
z_l%m9T<$Qi-|oZ5+lIaUKV0MzoJ0%V@d>)iu;q3+l&xhVA1zbS9idAC9#6i$Zyk6F
zqF_q)qJ?^dUdDKfN&sYpQEb_=3(!MIX}Hw$U)AkeZpa!gr_M0%^)}gIFr|))B32Jk
zB=mfN*nKr#w~5by5W9qP>~%sXGo677eWuL6t2<EE1k}DjK9mKDA<X`X47T)9QWXk%
zhu5H;M69=JBiEUiL?!+uLUx5eZ2Uk~Xw#mn-bsg2ftaqes1+fhi$hC~g{8|SnkP(h
zEz<04t>i%QBCd*Zl~y>=6gb;*l>U>HJis%Kn$QVM?TE#jE-4JH!la3>B7`Uf#LH60
zwQexKX@^@!MZrdtinwcTHTT{vl5yyDVSwm}*-SYNMUFjb0@bwD`%IwK(lyM9CCPI{
zOVH||u9Be2SHd^VgfTQMcX>wBmh&jCX?S%THqT8fA&1M#v{6^B7k!D&oqF4v7x&0z
zQf`#aW$0t%fFNZ^LUhym+(&_NW}W`#71J>CZbSOi-N7@)L4QL66MCsVg_n7+FadRR
zWN7V3g`zDFERT6cfuhEz?ma2M-?M+t_sBfAl-@{>()i&#PX*CXq#F=F3TwTt4kvX!
zW2t};$o$N`I2gWXzn-?%!d`x~V=qid^cF7?^2_t+e<E+zE>I#qgZ>J=_KtPRSPXFH
z&oCR!VSH@vnrOM5E1CLHd8=1>>pl4mEuHh5cpOdmOQ9*#TjNkZ;pO=-fNG1<ai?1_
z3(7>x5>%bX`$||#QQ&zXGyI+|KGUSat%HhmCfbi8Lt5Yzhp6A7Ql=$uIa*VmHn^Mu
zXTr~?+dp~t>+ZU}e`qxIo#%Fp<|U$$+t_Bnw?ML>LImTQWs{9kBdVtHQN)Ecyp!y@
zQ9JjT<WCPdI2Y{adhK=!3`*V9*iPOQ?cJ&cH%{153G|~BSNzQ`?%%hbq(HyzSzE3%
zYe`6F#F&JO><n;70(#!|%QUZIK38AjTks4^0r1cX-ySWg`bz$u?~X6^>H0YXmu7Rl
zVSbRTpxK@m^8x0h>ArNS2`y>R^p+g_9R!{2wJwjppkem}pcsZ(Y_!fl=K^P5;I{Mh
z6`Si~?_4d*?K4l74vyT)0i)ZxUh8XxhFu&dxcRg$prSv3|I#=V%zGv6AB}UM{tp^k
z+S<Ch7#i7_>KnUw{Idcx|E$0v8)EMTb=f_klK~`{7li_WC=fdsa7(Yr0$x<;fCO<g
zPSkReO3(KPUs4mvmTdbNG$av1IJ5oEG>@%?eOPj8_^fi{?&91g9QiI5T=%nDU(Ak1
zJMoxIKi?I;zrSC}s>c22NV4VGnWwzeY7MUWMi`&VV&Wyl2(LALj|hRsTb$vQIK3XK
z@^EV-u;ax2iK3Pp%kk$O5Mv*8|8C+u9AQc_1g*9v%+*SymvQDVx+oBo_6BK_LgTS4
zuRE%zKr7N5<8TJ?Gj69zkM<I}$h^;7;=-IlHIBKqX{J5aRpr<q#g*)aYnvp4VC#HS
zO;XoT{<G>Ryw$p6zTO`~n?!ZzvQ+;*;gMR*RR347NY7{oBr;Wb^A~)kq2!Y{n?gOm
zM6MMOZ**L?M{-C5{*_}{leCY){CTjG;E_m_WAO%?$J}zc9>#H=#M{d3%X_EDl@Q3l
zlUx0Qy|g$Vb7MC#2$v#7l3!=ysw0=Gt-&{_RHW4-rwMR)u{9vd0S~~!O9ZQp$*$t!
z%v3!P=M!*6f0<O-Ai%mu*fs{V8k!N-tE(JpHgPQ%9^!UFusyRaU=RZ8Dd-U{qirz>
zYz5G-Y4i3Qg@8}Pmj>cju~}w&e1!59!MhbAaKhJrGFgP4Fh>}c-`wCwPXC%3=$L5R
zOtD_F?ztMmRc8-<&!N$J5G%<z))@2NFJfG&2yragI?`VP-8=gKc){9Nzk^TNFUG*b
z>90ZUMD4w;wc}%G?BvlY+A>&6jhtb$;)fPF2f(y%eLgr+vl8iq>VgE)08L^YFLQ2(
ztp>60i%&Ufk;hV)Q&U9rrQJy%PX1n&QBkaBMk<_`njG_WAD`D&R)uMS<IU!)ahwtS
zBG6A0bslo+mJm#d($zSSCl&!HMH~YoUy}DSAyf<0Do*|iRtk%5E`eM1P{vW6t%Dk`
z@mRCf!?#~!hLJIp3L1{P?|^{M2GreOk#11_cKWtU8!??IaYPN#=)82ZV}H~}ol`g%
zvP){XHIyXr$qn4YM@Ey5cWYs>mxLgV6@uxto<@DCF@N2pG+ZigFviK5W=~gsLD+Qn
z^Xn=)I$$`HpfW&Ce0jP0q=Dhp?a@q(rq;JTlMV6@?HSN3`ZPaHzf}j?p*Ku!BaD-_
zLdrTU&{woOWO*#ZQk@_6%o-|Qx&*6#oY4R3aeIda>T=SNS(~NYo_w<DK#T<(+y9ry
zC})s+z@Pwt^1tZp|F`rm|9y@})TQnJ@wo3o9dUL<2-kKF+{Xg99kOc%_~K7gsDLza
zwnmhSB$a0CssByFa<CVN#OAgdg!bQQ2fbY$AK~XFD^zZMSj`(_CvumSjA&F3x)`JK
zO^H%=5s-wJmyhA$I|1m*h(P+V@t{BWFCopaAz>6+wQ3YZP%E+H<6qqf5?qv3*!SLW
zuay^7Ns|QHsEvz#$h6IK23`7UTt4zVnF%;XS<r1ExuGia(kDXXl}m0#;}rJ^0DYzk
z*kmFe6W~@+MR+ht>CGGh)*4XFY}XH5d*UDjY6<T>|1I&r%GBGi)O#o;N+m5!h29!t
zusTCBmSz^u3eI-MQGq&Rmb1~3r;@$MOfo4>cGr=>ORr`Wx_o7L`2ppu6X+H>+-S5~
z?Aefwq#R4Hg9haQydnj^XtTgBv=)&*ibEA^CviAlYArlnhc)M=QCM3MopB|y49TTd
za6OyNqmkg|41*Z499W+?VoHk%4-^C+ik)M(HNyc#UY8oW*fh)yE3ZC<=0RiIi~_cD
z9H!ZH-@MGuo}3j)rBh~8G8Qt+)Y)aYGU`c|n7dS-wn;HAt(orU?(z}znbe|_B)iB2
z5@8Zbq1TO+e$|<7EsBDT5wklr9IFCQLq6HyVghff6q;_42L3%9QIq))E<KE}$dlRq
z_Re(2%E34EAnJxm=HJSl%o)%Enl19B+7QFiLf56$G+P(-=beXr^Ksz0y?SPZZ(fOS
zn}ff&?WUR5y7MWXGb}B5h*y*SGk?!WZW%e#8x!e8qJHXB2~NIMK=w0D=5W?sD^*XN
zzt$_56@JmejCY4=1?)G>FA|;o&=qz1K3=u{j>2P)7KE&4k2;VFJY>I8>Q(XC20PsF
zJf8H|?9-okFWC7he1gF}6yL>0&k~h}djAbmJ5g&`Z7C!5zA-fKTC51N4too^LtDPx
z6_zX|N$kEGPSZMR@IoLufEF_YRXY6ms$!jI=7*G}B(QHIL$8E$VIu(Noo}l<T(|C5
zYuTO8fzWe2_`TpN?0smEXEnOfEa8Y37q463gG)*twsD@;+Iq5MfO+WQm&_h^*%eF9
z>9_uqgon?M=lAMbxBpaYZiND_EMNxSEats5&bI45UTDp~ReEevBJ<MB&f}VEqhhGu
z)BEvuxV(YhoLs9CZu&HO`*h~oaf|V8h@)qX&;Ry^Blp-k;F#x+-nHTi1G%iC%ShGX
z$7+e_UqJ&Dt)|SC-$yS8rgxW*SDrU{=qAY<jlVfZL%8oU@oGiu<ic0XxPIZ6bkZXY
zyA28YDM(d04yd(S{HO`-00-BMyO(HiwtQ~v|E*t{!g;lM+6Sn1<L>EG$1oi?bDn?1
z9bS4C^#lD^GsYa*Zt?zUMhFZ5fb#$T;s37`FjsBMZc7Z&_e34`G+c_Zv_&8vv?73d
zD>PsLtVo<VLG4IEFXWG@d%EK~!OzYH4t>%kU?F<uSZ6MW`47(ec$xC&qm4mZ=5X%3
zta)B(fwLhhf14OpZlG8Q!q&{!;WeIA<-ndgNK?p_9SGW-qJ>P7(ge25nu8;-9=j4&
z$6=>r(yany@9%m}wlL{L683o)Gz>E^u(eB#{VufHQKS7CVV;W?^DdOP#N&KLRK`ad
zp!X{h+^p#@|1nr@O11boH?jT4BYJ!?>AwJWf}?&LFa-b4XKn#krYGg4-u#q1OC5?R
zYu9TS8cpp?-x>$FcqK%FJAwLNi1M2iG=G0Y)OP!}_S#iR^#x$`(sV|zV?v0<459)$
z+0Zx3RAZMbl6w<APTRsD)HVo7JV#o>w4>J{{8VII;}?0x)lgrgBw4d%3_ZnBVi6uv
zK`IFSql9G#p+3sYf>t_!tqkF#`HeAlh-H`h6RrHj=HdSK9H}&AZ!{+fwP6b-m>yj2
zZfM*v88~n#3=9)G_dPEsO@8C!0@!MmC}dVTA5tVJmH8)F?6*M}hIm}xP8qwb44?yj
z4SSj}!<O-}$WJZ!%(U6jR#7(wfqP0A=A-6>`XVrg(|<qBuQIV+e(Nc%$J-NX7kdW6
z5K~TI)G&pHkYoJD_6oH!1nEWuG52btfpUX*`J<^|I>xy9Tt44YMbDhoX|;9%STx{W
z+}-Jm%1qiZsyG<3z!KwqSTSIgJ0f@BP4<2nRzay|cOC)KpF`jIX4uW#78Q#nPNCH#
z(-|ZvVzLFphv(h+P}#Ma*;U4G!oNu7ZEeDrzp_ctbCX+UE@w^>uW!^gZm|1fN0A_*
zf|8#@(V;OfltpFt@r}PZE%)PaS+LT=r9*Hb(DdMa=n$ZVZX24$_eY~jpJG(Cf*ut+
z$Xwt+QBSp=E>~hc5&uXA((+GQ^vq{XmydoG4r6i1g4?gz@Jc(~io!0W{Gc^~LdnyG
z<)D407wSo8YkX|j7^fO1oHllUv@&bgzP@qtQTX;(M#y=163P9wf_zASt~>an7t^?e
z&IB!mIh=V=nC{`{DzqSr_WBYVF^3q$OHtprl`%C;y+iqdBxtB)HC%Yk$`nvepVisE
zjb`?Kt3i%Q7UB`dVa<^rXLsDgH2S|4tjF47-&)9drJd`0C*Ttv)Th+0VcUq>oo4sX
z>0a)=<ps~RZ=%7Z@d;ICXuhr=eV02EXAwP?vda={B0@oyC+-|NV5!ejFy!fY^uPSK
zbIGl-NpVIp1t&+rmSxtj1Ykn@zPFs3YC7oSU~DUpX)d4dG@`%#N;)kwd*@E4)3w@&
z+UEu?Wu@b(Azx^O7%2)0w`j_zMqN;HsXR?qjvFq!soVP>te1E^tq*=c{wpV8Vdfts
z=m0>c5deVnf69rYtErRcKOb?WW9z)t*7SX?A2^90cSOxBm-YAAqmHY1)2XPEwlwL_
zj+|XsAm#W$2oYLPQ}M)6|L!)J05HkZLC;gm2?KK?6flfI;I^+D#t|X6blL?=Pp)~5
z=c>_3qfTA3C$g|-PU-#(m9)}^nG&Si2LA=zC@-6|Qd;B-mb6(7KcBH8W`ssmaPTm4
zBRM(wE<Qh}=jX0X0?m*|t3|WlFAs=tg@;lJjKUPc#}rZ<QqgR%`HmU%36`8e`uK7i
zY$;ao!6r|NOc}EcUU@KHSY{}fGRX$52#!Onq@lt)kD0V;mrRMl>tUPO0$BfK)loAB
zxB_O3$_~xut(39MjJCjOCfVzu$_ycXp5UK?=<Fl8`Hba|1Cn4*r8$-~Q%0aC$co!z
zrQ4KH#zVyrTVcW#7jk+p8=jtw&mG*S0L#l`i&yQR9`{-7ZN@+B8tx9W;KSA5d+$-X
zAnNqpU)78kdU{M2Oy}@qUpttmpF8<I2E{uM*QYtMVFKtDXf6=u>1!ungU(iK{a&6M
z;doKcHXcAEbza5)vYGj>PXCSkPeES&NAlnuk4qpZOt6cuRUDc1SFj|;;P*}loPv)B
z(|BE2ae*@K*Wg(F=h^q|DYh7oW$x^Od-!SnVI*#xA-lIHYzaYJx1HW|zA?s_ipstb
z%HC7CQQ=c3P!t?}eK`kUjN*N??q6|^)0bX<g6X=F>Da($2Q9{IE!IHl;vB}ef#6SV
z7V+U5_*{6fTpdw^cOIs`A9nU?!ezr%{F#0Uj$Aa_&6{m2`p5Xf*OLo?Zz4oeC}2IJ
z${ujh5ypg!&f@@~)OCrx4C#X1>=i6n$ap-Wv$L6>1T#v=dyy+4Od`OWSvDDLcwvpU
z)9BD7vlwq<K7V*(nhdm&UK``JZkV*j2vF1+ckpw}v)Xr{&gErw14K}d7@+NCB4vWw
ziKcFvT+oi(H9HVF3oU7Q>DC+_h6_b`TBk-n1m+nohZyKi4}7Nsvt0WTmF~66Pq(T5
zB_1piWpbe|lgxM`I+IeA4C9qqffZ7C^A)Htjmz!j1|6Ilq6?V^GKvq|QYF^P#hwFu
z_rWHOpeqN&#wOaSv>xcwp^xQ4W`;6SqP%aJ^5Q~tC<-oB0+SM7j=tab&}3y$({H)A
zCz@?O`g9&e(BKnqx1x6^^;f~@HIvhJo>KBp29=<$)aPy4Dt|&Z-Us4~U|%3Ej-n4m
zCwlQCxsl#{xMU4EeX5)s92n39^vJ4N5UXk?%nJ-uYuSeFw5sIi;Xi39IN2a_$0D$m
z;WW#hiD8M*HmG6^9~mi@G7E*XkR&aID$4AU75X*gWh*LRR2r(zTOMIusM#p<GEbOS
z&rWf#UFko+3)mg0_f0EYG!B0k`@@yTMX)7!wWY3}S!Twdu7Fb_44%R!)${|*3N?|J
z^s>k-omVwR><^FlW+P``iDFhSLGpcVTAZY^+GX7x;j47Dq7BqAUl=hv%RKsFm0Mj0
zS+?C9;`H=0yziFx`PLa~E@z>j4elk@hJUhB9qC@ZtGV4`Xg4oSUIHW?u;8_WPT#A~
zl%PoKCM-p{Jx>ad2ejx%TTG<9t_PL!slHw(7X@}w-))<-UCEBDRX37Olo#8rLcr*q
zW<IRYNqM~C9!3j;T$&E^Q<(hFMhgm8j9KXwPK}p&q^2%_3O2<7gy}?(=7a{&^N426
zxC-6GJ>0-Z|7H=F85h~?WpK0V?S+}Wp20>XkSTw^|H@{E8N@<v*idLr69ldHB0GaJ
zSvJWC!;eSr;Q<qwA0m?i0$7w=sk}z5TWnq+8)f=cB3T-+1P48Mi4UqWk(hR50(Zwr
zhyai{2|#S!`Qd{(6%J+YJX5sj$$*C<%5Een^m07ouS`)UxqGn}L)1!5&_SxuD3sIL
z&1rWYEhH@+NW9@3qO2Z6@H&kQhF%K>sLIij$sa;2O&Zg%LZLJkZ5nW2Xf7ULH_4eu
zBuOwTc}$b$bpzVHP%Y>^Mq2iy36@XP^DxjQo8KVBdxfyZnRgtBvVWLt)tUvhLUoLA
z*DqfWO(XsB%fx0I5tOJ{xd_6T{N{wgIC*$QxART8FItu4I!i0CYEO8aT12RTk%D|b
zQAPL1{pkJ{fI<`Qs$(HW+aHpICjOom04>;;ADkscTJGFS6ogRNl2^vh0ewv*s;+)e
z3$RAo)#@b#_c5JMWe@mSJ~w6RdGbTLSi6=`0umx+2G9nIid6Decr00P5QpJni7gwt
z(vZ;lAq$tP{<5I!Sdl;iUUOPuNA9V4hqS+=FTNe!tInlcD`&=>Kg<60+w)n?qIZIH
z(G|4S4EU2!si^H}K6o6ItC>QibFxB$2->KYx3G6!&FE~L{JBJ&m9>W8s#IN)e^7UO
zmUO*Bxt5aFc4jH%oS0eqAa=1*O)Yx>QS7z@@h_R0g|c)ouy$R^kj3?_<HH65zt4|w
ztxp>?b9_e&I5InKihxV1szWzjWl+@Kk%|`GB_L&Lm#b&1Buoh|U`9*vrep~EE9}?A
zP0O_Fqy61LQfb_iyJ8{DLavjbVk?P#?qctXrRq5st7%nWHPuqvRL)`%_aw7=){Wdn
zOkkjL1A_d5xyp-|zRg-F=mAy+EydTq_Z4Phzd<WVk{$I`)OxIZUxVEj6V=?Moi!78
zOFFlruDSL@{)#=6{c258shcGPMQJgQQraJrUpWE_W6TPUAsmRIj-g%ax)NM($|;Up
zfhJbwM+x%b*G{-Ks4h@WiB9OueNh6Q_c`VB*bS<HqC6xSkb23AQyeY}H8hkgYL@fF
zO#y~bVryz#%5AR_b0-nJicJX4d)7HN89jP2%hgh-W1ewxFm^_|%(xt)29h?7)M>SK
z!!5q;GPGxz#(%pOF~t>OpeBYsOG71?Pmta>x=<gi_P=d0t!Iof!7I*3WwW&8E6h$c
zFp!}59t_FE$XO+aTP71=DbFp$lvNkx=%<ZWnF`WM7}l}}50;_*JhyQa7<tCKI?}iv
zokxrjv0D(-cq$@I&U2Kn063nmwTbZbu2mKfY9@Vp2Kwomd`&EbSyq>#Xf3v~r<l4+
zgDTR*w>)uRq5VEBat#Xe$=tJ*XS4f8dZpNn<2Xl1*dtrN7%~)TUbXkB1DA`*E!gq$
zz7F#F@m=c&j_ohb+E_Q#_Teijc;=7yexnM{7yRz{X|PB0aAXK>eS%I<ZuRvGbfU@=
z>icEu{(KCnKU*=R=qRjUx^=|20}FBMb)t$GPUXfBwjzs0v)79BYtK~FoF_J2=hI~x
zx{}WR%UzGc*H}Kw($c<iAPo(KHr#cQY46r?;R`FC=#S`6Abu*<c=6mIx@JT77YE40
zyJ=!%RLIKMmO)&7`w%KF7O^&j8FQ%u5?6FHLn>8AAUC+QBdS#%RCZ49Z`&xeKvW8C
zNlLb|Pyv|-yqH|}=`Sh@h_O4>M0li0!8kZiH{jeXL94Wkuck=SXFW=05^=pJ*ukf_
zE?7>Yr@eb4jL&LQX~yM#cp{q0McLQ+xN&4L9|}GaU{_2e(3QADYeP2hb|Z`3PB!U6
zq;d&r_jW{#1=<CQ%ChNtwQrh-o|RL%MO8~gvEGhSGISmDgxEDZrHDyn3koUe!;I0$
z1sm;Gc;K)4ftNXh8b!(cK{1_dHP-x;2Q%S}bv3vA1le~nPhu6dk8nj@us-41Bb|4*
zoifK`ysUf$cq>`Ip(l$PFO@I{YGg)H5!EkYu9@IHU~;i1LsR5GVKAQ2&)_|)8#J&&
zfiP~(lK}vO*wp2jH(g}84PR`tgSri&U<O&04AEJ}1!4IV!tQbw)YovE&Ln5ta~@E`
zh3J@a$`(k2U0h$aVeO(Yd!Lu01vACyFN|0v+aubE3?(9PSW)E#UxRnBjZ*A3HZr3D
z@jYez9td}Ctz`aKh<3GchADMtXVB}qIQ3{8202f?XeaO_Hv07y{SXao6G)Zeh;3@{
zhy)w#CKXM^NI8Z>m=#XEdt@7UpHnz`od;5CBxh`fkH}oqt@4!lAqG$7IcxI>p3x=H
zdEwkS(BeWAK&Zd0ulwT-<CWr6=g6Rx#_PHsmS#4LcSq6|`^b~}q~6uNl$4jd^Wr(R
zmA3atU*k|LLrBWa71x=sQfw1Tv0L@LWcB*0l!W}sBDOp8afQ^Iea`$wUcO_i1zp$A
zJz*j}>eVX>5t=?>I53q_x!pM5Sn|$rG@Ch3<Q>9&(aJz8`Al5P(&vk8*(cQI^OTt~
zm1n&0bGF3rMi)n^U8u53n83Uy$<W3IKS`)tG&y?VCuNYDABrY9N?IiJV5sB1OzW~x
z!s_U-GI{~0i8Fj_;EYGl#MBfm3s`|IrASoAz+}A79nCBu-hNWha~13zq}dw*X^m3^
zObm)TIeJ{V5ma)?p$a5XiKuOEO+jD^MX92bzs>A0^3)weGwTK~iayDEeg?*7;@%q-
zXASNKL3y&1l?4yhla;fut?{H3-FMyw(VuwFHj8>tMOJPVs62^mm2T{n1||+JYh^ZX
z*SjcwPK0F9dz^t7{2yCK@FxmleQQSVzfAX|htjo;QnaVGi2ixwu&f7Ue!i@T&YX0?
zm^?o31ttM-LVQ?547g5y^H_)p`y*0j9z*J+s7@E70lQpr3HcIau*yO_X6H{8V?wOr
ztBcq?Dq7vdrS0EA>yRwN?YtKEr3~|H93O_XE?*bq;lCwJpkZAFAsX!w!3#60ud=rk
zWFZhy_Q*#rk2hIa)$DVxND2;5*|dAK>hMDeb_S`?#t2|Ekx3RVWJP*KF~g%*hQf2H
zR-kY$L65%KRRjEYc%Sn*Koj7u|JIp{b~YQ(1+|Of)W$xLtr(MEKjt=*vu-x(9P<lA
z2c%6kQJp&F<)>6pBmPa1wVt$U7F|7WZLihl^lgUQ%4BEaYAsZQIrzL{GAL!1)K=05
z^|>%MW3z|do336nk_ADBi)dja?z4ZTRXAKK&kx5|WT#sjP@>2VL)KlNy&<2&^Zy~;
zH$gO{8^_iT)*E|FX)O$oT}1U{BX8T&4vr7-9Ww#J4g+e!luA_ZBd*^m!M|hdlKBm$
zdS-1n_%Qg&5x5htFGEJ}tWjZB+bC^11YXW@;>21`!;n#o@zF8j`YY5v)K#Pqz-$FU
zB*(Z%q+SLTFS!rRo`N<CZJWWSK)AQg4VQU$npaPHSWN>&&JPkp5v|_-93m-&+2<RF
zTCVL$m_ef6Z|KG6v!LRQRLi1v;@%Le2;Bp|A7(mfkMW7R>jC2s*$!TjgM#;wrQvJ0
z&+a21=cGf5+__Ds7upPc5+oleukctn2vV}lVG7r$BUZ?@E-_U6;(b`W51XF})je-g
zj}f9yIf;8Go5$z%xPN#S9*@t*#*?uZWZu?lpG>e-ZvNtJ+p#=cjexIzvl0%IjEYvJ
z6=2{6)9rT6=1=P=nwgg&K0^WJ@onWHp6Km*-<5j9S$n~UZ$T~O`aqPRtVmG@H#Qc}
zUGjW-Lyr4_=2c6@eO|6B)0_NbiZ$nT1hjabPVOzC&%rpA76=}8Mc<T}UeX@_cZ0|)
zWi|*u|NHe(p~`rDOulz)$9NIuWCA97_F*UF_t&ul4-nEm40#2l4;jv$oMvQDyO!J_
zoWn-oTDTOH9-LMV2e(*kldRk3R<<}%-^^b)Casyz-y+qU=f%p4PS;iIH0Dj=D0Ons
z&mLRTJ;nZ8G6+@0LEhLZE|dF0?LSq~hI+}x^`;*4$w$olyFA`hMzC8|SYDKVI%XR^
zmM+-WCQQz0png4-1!N`4sYAJB!1^dMBTS<7_F)hRcEj9(jZjkhH#3=AOijDf8OYR|
zlgs0?;ovl^G<dO{Jwh%Yl-eJWJDY|)(k<22Zk!1q7wt)?fOIj>qgQ3#$2-Cg{7>M7
zcO#LRrTq0||L<m-4QS&7rn0;J;<BJILCK6-Lk5KgyQiOM*$~wERn&r&@S8;;D0Ppz
zR;O)_TBTl2cAMc|lyy_D6%)6aEnqjUkK7kpluc1sZ3Jx*pUC=Eb4hS?Fg7@vD4W0g
zSyzge?~rb`k6bZ^hk^JHer4>!BPSmCAQ0oAxoQ2#hq6)qt(i)(kn5>MJ)|nV+{JzA
z?H~z)1|wIkeB>5!Ckhx1;_@@%7JG@`Q#gAVseH_#dIPY4a)X`nYJmJ%cB<m4JDC!b
zhlSs21;|3<-n15s>(Ho4U#;p#wTSdpZpR4Lc=)a4SiN;|8G-!!lIXF9j&i>!ArRDE
zMd=EBjKWClspZmvD=wb0ZEYD~7xD1zJWzg8TCwP-RV-t%fqS!=ST@A(V!~RUSBW^?
z50XUD@$?<{<v~vG$DdwoQd53-3voE*d37AEydIA|S6G}Y>WYK$<DE7i8T}73vdug9
z!G;*Z5k!aqXR2|1D>j~FiP4EQr^*yu+2Wbzh}s_!vCj>6(nfkPok7F9rzBOqZD(Uu
zWc}=B2=#5|EsCl=W8R5LnZ6;Ibc8w8B^oQ`Wo_Za5&blG!fnfnk)Vk+9}Owe=7+hm
ziWj_gm&=2t_jq|*ZmFDNuMdg4GNg@@@C&kd4B2&y*gmEBwl+)aO7{24TF-@|Vah5$
zS7_zW5)IGlqle`ET6~k6izILsk|g3ks!N+CV0skQ(O=2($1rKjR<<ro*rik@Ea}?2
z95*EWY_<6{QLQanPs~IAmRUDM&8ON})`oXx>$;b<3eY$H!053i{*08-s`q7`t;Xl7
z^tm*-n$lihe(y<cheDf9wafns)pEDh)N@A57p2sHf*#b-jt4Bg?e==~?H2BJQE$5`
zWyC?<{2Bn67b$(&#?!nCxELn$IJUzMOxVQe#<gm@5R;{%_uayfX;$_<p6){>IIqZ`
zS&13C%;0BJ*9{Pa<Ca~P(~`G8>%BBPZ>_Xf?9YK;rPSYqwxHgpT_PE%*F1l+E_))W
zZ9knS)0JlA^zQ6Lp&Mk#+)z>x_T_}vWEi`79p!2Q!2{`yeA*UM+OH8X$_0*ugGl$c
z!LYgyb#FAR{#y|+(N&F^6OGKyHqar0X<uNGxxdWJo|=WdTX|Pl>ueG#b=t`ep&Oub
z&RJRnHY;w~8%?5H0jU_wHvoG?cKH1e<~@YR&-Y>P_FVfaCNZ%ju2&K8QGdIpsW*eW
zJ4-^M_P!*4cp<XSBYR*%8m&UMFu9c3ulF+dO*II%S?Mnq#kl(`#c;6yoGG@S4F}#B
zKh4qSB=mGLmt)79^DBbT(fY-1tHtb7?aOC+5LQ4`2%GWW=55jV+Og-zNFUmEVq@Hj
ztt?NeCHVZTx5b8TMH6BJX&6}yNVUK9qH2~{au1pFc+2b)OE2rp!Y|sHk{8#e8dE2I
zG83(5wOV(uUv+jzp`z1E2!B5Rt}3gQpfJm6PIVE}o^#@!xG0goLAJQdt4dwj)aT^c
zKMt;VmsjYu;MDC<(66~6*4ULGxUO}_G&8^-`z%@Jei2xrh1y9XB5rR>0{7r0Pz+e#
z%weS=gTFdj%!C=YF50>s<oaZa4F2Dd^72qwDgrD3@J{i+r`rE(Lgi%YY;WUc>hwRU
zvX-{}VF#MuOT9rd2Dt;vlI;R8xRQV|H#0agH#N8Spn>5OGOn{YdMin4P5ZymHYW+G
zA_jS$<!1RgVVVag4-dQF3B!rW@8)2Gcy7`6Vi+blQ#S?fJR$EY(5<5=7*2vDB`0oN
zS+i)U4JSd=FI}WQ(xs6I5}KmQlHMK9;C1(#-Jj$0?ic@W?#w%0>4&cXnWgcI+~IL=
zs%IG~aB509CrJpBpb3zs6UMC}`;1W%v&CD1$W2B`lHIBk1%>U26i_b4_<LSi)rthv
zCiF6hq+_DPq$Kk)H_*-7^phwXLmUBfaj@-Q<HeB5qK7~U6QKS^jIoBf3WN9>M#K3P
ze<y4xj-j6`)mM8=R={O26rh@8!h#x7LL`Hnu~N;tr{qzZGInYFAA_MFWB))r;Fldv
zWaPZTyz&u$+sK$bbe~=B$HfR%wSPa_34U&A11kgjx8=y83!IFd-J?K};eQ#(q&XA7
zv`}?5FI)|KaD7yq$lhGrmp2Hp=1<!P{N5(P^bG?48Gdx@`qZrVVb+}`iw=b#34mdG
zGi1_E8X+f9W_U6L2H*4V$W6%h1ekno%$YdyW66GP0Xh7V5tCN9sqx5$FkykPe)|TJ
z7{p|HzWIzF7cMB@l>f6x?%$a)oCIWJbLY_g8}1M21Gf{mKEd3PA!8uvXK8%0pwqyW
z5#WK0U<IK0Y(743!I?Yfz(dmm>vLqp_U6I;#gQ3H#^G8wMt=eX>!Yy_1#$qf1XjoC
zuK|pe!M`RFIB8>KVO3cS9f&eBOadVM^Okijs|%x7@9yUIcS;!h3RK>cZo;FDK<OBV
zsN!e>1r0Ce^r<cACX&m9#+Sq<-?1<vKj=7KvqT^OOUoq#c3c>mzBdoIXgx0t-;t^p
zF?};+0V8X)_IcNd3f_+Ti?=ANX)7a4VCl_n2HCM<hytqArgaG1$~l@B*-0)*y!9ss
zcPI0j`ZkyPBg*>+j5sWp@+~jzfbhOy_g2KpeFyUW_wt}bbz49#*M}uf|3i7fIM$2u
zn+#YVr9a3pfzzJ&K&RI97am;%izaqD;cytVBpb{AT(2sg`B4|400Oo*HJa<A0CB=f
z5n<qQ%}vvpFC;0g7hM=H@LVK#knocdN!eCWeSP*_BFhH+Wc{u}q_8nfK1`_>^DD@L
zcBFn)B9T~br?9lB7f>JV{)|l1NA0_Bdd!Y%betV)h}i39nTc4ysFW7L2;qi9-atb(
zL*P=uCh43g=pXd&+YP1cyJaj=A+ocm^6Hd&AzM(=-qLaHBQ*<7;RX;ekRA12s4XQI
z2J=qaA>kE01)+j?w^<IITHfjRQs%m|CIkHUcD|P&ov&iEt31XlLrE-}BkvZ0Ag?r)
z0Zhx95iM1xfn?XI$G}hsjM*`=PvFDU@q{&MC_Sw(y8TPiizi0DwF{uUiVIezZawc1
znfBxKVnq$m8n$Va2-Dld13Q`)4>Jd@p~M?_Dw1P{mVjZe4BW6Sp4hO9ECy(QDy?@6
zYY=I-mK;5C@Bmc@R(OBV2_YaMWz<AjEX2~mUqMwmB`bUb=QAc84~DaGAklH~RBo))
zoqCsDbzQ0oZmK)lUJZAD0$ryB_timMq6EVY5o)edQ|Kny+eB%Uuyt)|w@$?xgpT4>
zYHP67+G_QYQmIf+$xbowz8&B5+-V9ohtH#*z*f-N8qC~*9;n|uC=13?aSs%RPktG*
z1K6dMq8wsSu<*vQE~l{>Du7-hp54mO!u0$9DzT2MD9;kKh!bvV3mWB<qRI*<txy%7
zS(&QXPd5vS<5-7yz!wr`e8dmn?unVqtV2iPzHW!gcLeE{2!`7Gm3mY)vq;@*<iAoX
zj5wcQEl?C`0@v^W>xJU>y;wbPyX&WSXp%t_Gu-1U`&+qc>2Y^}7#9~9RwKAWkwjVn
zL@jQF^aH?(=o<pDBQYVi=5;R^z=IwS<kCJ=AF&Z(Cs!{QVBg%fOxagr!p<}#H!81M
zANBHu)kd&06|$b9TeVQ;*BPxlR^!fViTdUMiZwRg`re}jJS^aJ)hdt@Ib0S|!tCY)
zoLpqmmG>Dsp^mW2CB*sB*Pd>4c?IGhcR*HHpqwhnNWce~-_gp`EQjOu@Ghut=Ni-l
zYY<k^9<C{zOY*qwT(K3ciPj$<_aSY0(cwYjKD9;w+i!hF@%(!c72tqCzU}%8%$xNG
za4KKTTv}DOq|jWYOdrkG<H0j<vFbGI5API#Z1Z5d@e%+h;$>m2H-s+-IHMGMP@NgB
zoHf*KK|K<c!fBe^Z{?B2oHnixFc;5QKf=L4KL5??9wZ)yk{xg&Of7pL6xh-qSgJi|
zBAtQqIOs0s*?XEQ^Slt#b;jS1b^>(5caWV0bOt(lex7vv^77_*B}g&ZSm_gdQH<eo
z7K1Y4<_rm+1T>xc;P8;~9TBC;qBKYy!KI{^2nhs#0j9GCcRY);6#ymg0)%CWp|^A%
zVvTGUWa!L=2wSX-?Z-Tg%#OF@#BkYs0g4RDeXpgD@_wU9(0+gFzlk7o(jS0N-Kp#Z
zux6w``OP5+e@&S%5$)}!l`&|D6Sl&H^gtBo=$v}2@-qa_vg8HF!@yGVB)MhIjhPUN
zsB0oYcPE)+CIp<E=dlzd3kpsd!Y33=M-09{Zeivb!E{ry7^B#dK-0&W26!_b1UwdT
ze9Yhzc*OgG2!R?y_=GgTgec`;*&*kc=t#E&x?t);Yp-xQQ!-X92dDC2riBE(cw#M%
zCBf#ZhY}jeUNmvIGFZyae?He52lets3X6OnTpexJPnd^KG`q(SuwBMzdP|#UqoNKW
zM(dv_OBSrFeL~_LC9f2^bV5Yi7Pn)0^)+_I+U*z)O$vC4w=WYKRNxvN@a>SjXbIfc
zgRBmz6;RRCyXMy;m<+mkOcA+Qn{Kk#@1+>4W5`XtX_I0Y+job%wAPM+v#7`((qEl4
zVUTMLr$J%9u04_mhC&&QVgzE;lpx!oc~N{^SRQW3HUVSrvIQ=KETxg(I8w?z)Di+I
zc7O#P)s=K7`-|4f4i3iS_NK=rSXZ_(Ly>t2$=&c2QFs)()r%^-rqRMDuFU~(tSih5
zujA5+#vz_{ea?E$$yJjz>+oKIt&+>l{5335t<EIgmAdZBO>{-A<0R|cl+{F$?W2S|
zyz`Z<?1d)haBKxQ{W7_Dq&B_H)2pW_BN<EQG8PN32<<vbvBy?%RMW<$$<M?pt;E^~
z8_|kERG9scWeedmF63AO@DP9&OsqlB<`K+gZ5(Yuc{2CKL)ZMgXsG}tuQ<(&qua+=
zngEc>G++&=mx}#43bH2E%0_bskoE~wv)weNlObi4@3~BTQxUb3iG=q|tl^O%>%Zu7
zBuLejjscElm#~~#U<ljbByS8}F6?v*%{H?b549_BYI%kA!8J`-L9%s$+eyrECAJ4=
z2eNZcwl_{YaKR2BSN(}s|CX<Q&sVtnNwfNyntzq8{(Sc_zzi5P%D0%L2*^X8#2Q{J
z&&FZ0O0#f6A*mnK^+etP+eGu8IbUe%rQ9TjWJV$rg|)kQ0xwrheGltj2FSUK*a+h(
zTh<4qR(5djmfh>&3Mj7jaC)6hRz9Rv`gSh&h*)i-Z%`M|&DEV4k((LRXJyRx$j!83
zbFQwP_pA^8h`qouTo`Ns=XDF&2`t!y7V5(Y$akJpIX|;DF`L396DgjwUEr8(66SS%
zeg{Of0qe>1mw6vxnII$-i;t<}V}otU(a?pwg)w&5zGV|3V^od0r@-iiig4=^!Dw0;
z*{CWyBz#i-RX}<4AH)V+Fhc26A<99*)C%g(qJ@OEl_I+Qjrc(`6Hmtta&}cj^hM%8
zUoYEwhenP-Wi{*}Y5X}{aK~hpjDJ8NSe0w6zv#MeB@t#hQ1AB9w(SrSi|*X*nXpyK
zw>CLHiyWC?qeMasRD~hNkk`CmKIAD*w?1^IRjW;3OG5OSt*(Mu)yiv}u1H?TWS(pE
zTv}1lb{&Dn+GrfhRUT@wRO<gi;Eb)Vo~E5>IkKmfzQBY{FS|x-Ope0ZJ$&&RS5U_n
zdF?<5C!la>E*EobZHPYb5B!Gv?@mhFMYG2YF#u3o0Ra4Ks{F5}>%X?Ev#Ig_I0s&9
zXB_sV-8X8)u4kc57TSrVwdz<WQstJ~Xc|vR&W)To(fIK~7E`M*ZswL+oo)Yqzdc^e
zBrnnpDV0dcS-^IzSn<NP1pq;WK3o5I;!TuNtGA6qBKl3$GqLoRhxXyfM$yc30ZH^%
zbn&p>kH<R35)FpwXDjN4$}f0tqqLaAmI$0!2)u^c*x2&;b~d&js<`GU5?vj)--cY*
zY<L0_?T&t#sG`6b|N6F39mJywoy2s_l1!m<6uA+SN(^v~6!b|#s2eSx$j6MmGLyi2
zGEH{}Omb5dA_@{(DSDA_MET~TG<_t;p#kQvnY2=jp=N-bXpZ=~y5F97rKUV*fDF$(
zUpcZn&|4AGPY{aPra8ui-*8gR$eWTGk!hWlfPP?#1s^=|P6;KX88Z#`NEo~8vx`2=
zydIt}OaFO@vdH$}WPAjKcZi}+{*YbSMt>iIIQgAlc>UhQ@B!80AK~_4Mn9(#0;z-F
zcV~wFkPd!aJifHxU+N#hAdX(Z20&?n-ha5g+#NhVqt0>rJiT2YF=c!m?~w(1&Jeun
z_XoeDhl_`o@}VB4hL;Y%9oE4R1wv1M*7^C+hSwm)ke-SVfE#`eD(Lm{U;)$LcXLLs
zZM)om_|E|&!G1TWT`wBG+*lDiP!d!8J3tf^#PH9%m;FN6;3}%$zsY)c_;K?9lRzvs
zuh*xjIJZs?_hP?tVH3^n?A9SrKgvHeus9%=;kgy+5p-|~CO*a_6mA}Gk1(e|4weS_
zlpO!~ySltq`Tw~vUO}Pq_hJeNx(RC%62C-%507{_+NKN$d?yD*E%^0<MdpaxjYvU=
z{SIO<l<gbzv3M0~SG-`u=Dl%DDls~E=dgamJA0@J8bnqW?Godpm4F$$FAeptxl|}r
z%sBJ^aP<z%xiHbTZp@Wr#kOtRSg~!}w(Y#JZQHhO+jerleXCB@Ir~R+&)K8Lct+zt
z1>NbSCvB3{M;iKJUl>pW98^*ke$2sMacE!ubmDmP6~sXd-yFIVW(>YtMfWxHu?lnr
z2gZLhOS6+@UGlpI(zGMRA1Y+2^&h@ysP~OFCB`5qhuor3AGFZfMWX0G^aqUbIOrJ%
z>mGnX{h)kb1|EqSqayU7yw@kzzeVMP8~3XY(s1?oB?<YVzGld$Zt%uH2`0xH$H0jy
z9vnHMqWe74h-tP8eEBQRf<m3VXI=Oo{FQ+5To;qDk}U@95%AVO8NjNLRty+;J&GY`
zkY#5_IG<+9ro?kT<7yXGQZ{ctlsyBns>^ya1&?Bdf>pqTRA^4#IC9QvEm=DQu20Kx
zFSf#c_+z(}WzqoGIiCii3eC9~p&(<y)H0SY{DVq%Nnj+d9`lepJ!I%vIr#^kcbrlX
z&8R{uSNmU#=|pH5O!`9Oma)Uj7R0n{F;ZobC&>@YeNGJc1C|JK`kEb6243B2@SIAh
zv^0`L&gB&SUAmb)^gF4mdwIXv=Lez-_|VS}m&U=_Lx)!WOj3WNEv=*6L(72im6@57
z-436hKV7>!zVLSYdY{{n1f+6&L2PBEqP?}GC7J_;Wb%FSM!jI3SV``dV1~g={6e6`
zA-`7zJyubpyVwDXIFQ(<PSIR{tJ6uqg-I$V(4Ve}AgW_s@C?Vp^s~a_@PV&J<8TvM
zDiE4SVRXszi&^a<7{}mcK!KnleZSUJSR4YfU@#IpZ3{P2#0JYsTZ2v1ULuQQfX5*Z
zK;m^Q{B$bo387Tja&pF3u)lYg)$34gAGO)?9mNalBW+bKvscPT4u$6&7{YXCwp}aR
zD}t)8!_R4=q@uv@iU$H`6>^NDKvG6cM0hcv;c%e`AI4Eay@VQHI82jqc^M}HtmhHj
z+vHd0)@_x_-O++W3N(R{6|W+Z|LH4Krv7biVoI)1Ep}^AMbxS-1S?5Wl5hCtnSD@Q
zTsR1gC<@7}cod+GOO%A=Q!c%aUQ<A}X|7bSkVup-Cr6%-96D(nHG@_^jhbx42yI{Z
z9_GO#S5hvOSBBGlvy`-Ru?67c^RK`uI-sTM8Kx<-jrn`EG(I|yCTTY@2~ZQMp4HMr
zOViqra=*<**LCy$>l3u<;an@X?-IS+;rIOz^nT5D-$9ED_HKA4oI^BG6=Uw}$<HO=
zM{<_vTjq?@YUD79x4A!xSZnB5Q}$~rowJPyBf4i?6n<-d7hDY~(eVEzY8he|5Qei3
zHB9mQlLsYUC<W>F`QvqV((;B-fB#JS^)7uN^iiD=;BjI?C4V4RNFp;aU#2qDSibzg
znGxKf`~p3SDSNA2LoC+0pi1n)Gug0S^Y@HF>@;<rE)6g5Sup5Lq&wR545?F}zi}OL
z7xc^l4|H$7s80VM=odV6FZWwRQmB6LjA5O3jpml#bp|{rFKkGe(UF>H(pNd=UUw+D
zs#%b3<fCe5r9ta7b>9N61r0;=)2lotxL%4<udoTLO+}q=-Jb@P9nU5aWy$mpq~ph3
z6(MuZAlJK%9wFOXu(*>|7{L_=A&^sIozS^E?_&F1Oxe<1taoP~&mU_muc1(0=Ni%<
zuou5?%zUG1M94v(TXN2o!PU>qmq*{)*9&9!55H_JLFHwY&(6`?*w|>LU6ZPh(wO;j
z5CnsXIMc?fNvIz<HeBsHRcxc^6a))ekthudOHb=$h+&hb2+w$PfqzQaK}=P1ys<^1
zZvoJxj4Sy8H$cC~?5e;2Hbq96q+KW+a*8^+unvhnfP(SNET&A-6)S0|xm)8=03^J-
zq>@3YMKl3H6yA`+Moozng}A(6lsIOb+}#^BE!KD>V@#ebKKfGvaHBl4Jw*;RG0xrv
z{d${$hI_0bo)svqTA0pA#2icW8Z8v4vfG#~yTf<u6h>ONFo&j4AjEn-W&t^$?g^(3
znlm+3^1y%?VEngxndCFmFuqpT99B+{nBE+|U0YXCdMfo+xrQ`i_&xIEJ_ZZNK=A1P
zi>EI6;6{HMBfb}24jCaF+4R;WcftLEBW7;t3~~LA)PsLanE|LUZR8jQbPbpgqv#=)
zUG-j=odqG_br+rWIH6|>z3Oa71j&I@ES&yZ3NS$Vq)|jUUpiuw9(NOp;G6&q3rIoi
zt}AGq8J$Cu2?K)h;d=ctu4(kh3grNBu)`?#FX)Wyq8;@CaByey4hJ<B1XyFk7wG#-
zXl)0CJZbY}?DO|ovdLL!{mI_E)SxLS15}o7nnCs!2-+I)G2iO`2|Oq+Rd5zA6f|MH
zM+O%|gQzDZ7~=J?y^%u83t49{snDE?8*f%s=-+@*5>_SQcdk%z3Nb))byFKP!&LOw
z1d8+a!k7q?HvYQ8Dv+wh#j6-7(COSs5<K$ob})SJyRJ0@(8u+Fqd8p5iC*MM>)!1d
z`Nm?Sa(k#;0|<)LimG*-KR<fa!A7kA9~Z<F7H!MVX~)jp8Vg2D7J2a|9{w(!fM?=R
z;G$BwSdPj;iHu-5<KdE%(8EVAv|wOfN(sB$@{lOHuN`X*#z;+qysFfo01zu+5Z+##
zzbJG5758ykQnCbn$y7nZ7a$oquTPp0sOU!vRWIpM(R>0LRP3<}G%_Ouw!K4pzisu<
zcS8&iV#g+S2W2)GVtoWekU&vQptINRkV$pqlnKQe!`J1OU!A0xyp+mY!K)=5k5EPJ
z@6(s)^clF+%1bwGwjn0vM*e{TQsIe`)|-f_;T((oGa2%)cWs9?xB;4%6a!p_g~EjJ
z@0puREk-GAQmY44Hk(Aazj!i=4dh;gK@G2^qVJ`m?XjXBkR{`el?7_7)aLTk{Bg^;
zG8zEBy5(G)bfB^54{xDCAG^S}GpkY0FtDq3O(4rmq_T*KGaReQ+LQnODtECWqkHn_
zxeQT6S3k~E8Ed%}XY2SdWs;nkKt%Zrl7J=RJHUId6(jv?HKThJs86euVWe^7VXwB0
z-cAR@V#gkdfKQXqk~JjFWdhS7nM8i~2WuMY(HTcOqHZ|bE|t5ZfQvX*ll=7ihs3P3
z&=VPe#w*EyoQm*TR4=XA)Px=zA=MK~a@DGoDY-n6l6!ZtC!?3To01<QB8U#wrpF2A
z%3&^04V=+|(u__Jsh~Kwf#sEiq_6`NVRH(LFpfo+8cZRyn;j07Q!r5fnu-aNvZ442
z*XMkwk-?~FK`iNgPi9Zk%FX4QBw;sOSI+@r$nbX26!2MwezeT<tV{0n0vgOxZuhdc
zux^2AleypETUv8B)n}OF7cL1MREv!%<^$b1*W2L)(3oNIG~V5a`q%bXk@d*^J6haZ
zbuQ-H+ho`??iCPmXqE7!oP}+d%VU*0>I`Uh8vHy2sLL4DAw77QJYdSkN7j!u5*0sU
z!lY|x&%BX^Y?YbSL3}{YHc*d5l1@~{`OJM!*3p{`3Y5==uoE1d&lF3rT?S!4jg{X#
zSZ&Bz6cl=NB?8xvJi_~<OYL-O<F5o33G#rjQDd3jNP?sU^L2$Dj?@U=_qa$_O(|6@
zUX`DD732yJv7S~*6xxqgV?<Q<*=@p=Y(y(Dl!|q*h7uuE8~awQag^Ij`Gn>I_$)EX
zRGA`i0~9_4OY@`0vIR<Mi(X!oFyo~`8ueKDLw$PbrtHa13%SOZR|Yvt6z9|R04l5s
zH6%PrG?mswT9WQm>Z+Kqp+-LcM7~4iandXL-tyzL*S5A?jq@|E){}E6yk1bw=AeEX
z%smx{107veM!-k(%rrcAxHeIr`eYQDC{=MB3W%y3W6g6&PsL8gYRBjQG2g(gj#?XY
zONbzJ1PSIpcKJZkpKS!tkKSyuR$M`_0Og0ZqvR`-`tS7Y>h~h{*n}!3UNz{vtaF}f
zJ_tefxro_BdCME(lCFw=gr&I6As$9mg)3oobaKe^DgjT-Olqq(lVY3MkcXSIUIn}%
z!R8Tz!XDD#iNnU{OjdHzKO3K;pf@eS$3H0vDllRK$1$i17m%1tf@F*;Bmgg7bAbFM
zUmV)=`z{z(T(QWMKO;)%m&b$&iM(ZZW#?}Sn!CF`sY%KhCU79|pwyU*?`}!3(HIkg
zYNZM8+flIAwYg$KY89}AxwC@xZ-gqMnzFbMJVadmwVAw1L;8hrV;bVO>qFAHmOXR0
zXsOv|UDLEox%jh&REnI^Bk4FpEosU+MBFL+I%e(AuO5#u-7<(9)bq(XlXQ+63xx-R
z%NR$7%wW}N=XVCj&Tn_4UlGiTQsn|~a=Q%e)%_RXM((%X7X9zfChsO%oCqbJriHJ-
z)|p;QnYE2~8F)vtf#7h4QzuzrdF}KqFVtyksD1MvA<=m99s=%{4kTk`4D*63DbXgW
zx`<fUQblRtI7j&oldM(vWUREu3;ld}Sbjb`wLMRk?~*~w221s21VUHt8s6}cv+21Z
z<I4k5%)Xr2+m?(xU^M&G&~H2dmUW9Z;4<OGdGc-{JrdNv@1_#6$tIMF(csA?z0E0s
z+HWXa2mCI7O_PbEt%I3opvRyZM``ipY&Z6;;}p8w8d&01<!yQS)*S6F9r3TaF}#%Y
zBtTownVcPITLVqz;7hXs+tC>F&x=t^T$hM+b%)BUQ^a2xDxsnHHJnuXHLBB-T{m%A
zRp+8rBb2)8%Q{jE2x?*A5pcdvAxM9A55LQ$#xA_>?6KluSoGiq0sx0rPuy|;3oeM}
zdz)9U#K7XEw&%XjF-(STqb9J=wu(CqY;--$0wCMUG*(r(h`(a!zb#{k2r*myY%xCx
zq~(yNrG<Xt3xZmEgP{;uxI~o=`A0F6cJ#1~q9iI^Gou90V{Gy#dP%DO^1zexLtbDW
zb52y{sG{~<Qg<*`q_Ux9d;Z@L-Xy=Tu_Ot?G7%}KTOy1zU5J!4!*y#p3ng@jHS|Ti
zq>xuj;a7z)W{f(xnjvSWKl`(oXhIC~)}ai+*;;^vtw6D>{eVAkNHo|U51x%LN41z5
zGD@ds@lhOx$z$CFn(kSb>w&-YX5PYsHiYhc@;fL^qr8kT1Ta8f(p`AZog9yJBnX+8
zQXXnFOA>Ro@g6*R0t&-0Xazvl9C#5)pH`u-cp>y&KHsJ-!mJWw63ABTgm%%ZhgCIG
zTSlRrq`hw~6x%zK#FOJ}?yWn_q-*(LF!g0@qj9rDW^sp|QIp7+PcEU9mk)GVh_g$C
z0LJV;vv`D_=o?sIM&i&y!AXng2D#Udx8|W(zs=E}4AT~YEKiXp7w|hK0)-p%WU1N+
zt~%{)jY466R|W%$f0Hn^V5)!&a|{M_p`+TrJ6}|f)s7Ng0tr2eXZ3Qs3U&mQybO=3
zf0u}HwXHh-4pq&OgdueB;p^l!xxp7+94Syv%N-9Cmp@hjc7Hi?j?qN0M^{yrZ?=Sd
zQBf<^M&<h8?!nA*YkSa9eVQ7QRl{|o;#127uNsK<Iw0Cf8{JnZY-;BaN?zM04;|zd
zOs~?GzSCZ=4M-{!oGXagwTOl(r7@dR4D4Z!%-#`&Mkq09&63(lB$hU1z@?QAE;)!>
z5@~gr>xaM#7d%TiugR2@D|Q*<@-7o_s|Z>xd;^{pLU)%{(1e-;MyyelPMjSFE0vp^
z%VhHZfZ!LX(a9ShO9G>K9E~eRN=P{_kjU0G(33#5Rps&bYWluKJHj9Jkbem^R$&+)
zkajAU{aj{^ifsP&a>Dt;s_W#ZqxqvRJ4Q7clpWjqC}OBFOVOD_Z76H?wut;5<W8jM
zwmrjdpW35=^1aQjC=m2%rwsQ^HQT_{R$FST!JC@twKU*KF?N!?f4DG!A(0dkFRw?5
zp?uNZd?Pkn6>OnH*42UUKO#~cNRG@R?c|=iAPT`YClUKm)Md#D{ms|HdJ%su>(WzC
zRlWb5)=eFfW^Cy-@>XE6o(2}@*nO?4D*dn5hzrN#iTOW7nB#rgOI)$`JPZRpBPXZt
z#m3UrHkD+^{BnYkA#G5jkQO;c%*%%8X(f$~euhJ5v;za<3PHA=13h3bD-IFcVWON*
zDO&G=E>ve9M7bY^8#!cH+G80|kIEAjnW(+4>}11wxW9`5_SUF81LAL{+aC5Oe*PMt
zLEuV#QoSg4VTI@eZ^7~qS2(fs#kYPpA;9dpjbyA~m5saZHJ=k#W{#sbBX!*aZ<@ZQ
z1AU%852i!@l}Yfh=uB*Q`PfAJWE?}H+2Dbaea{Y<y0B5BN(J(^QYpB;iIzDgRQX^t
zkd{*;hEzdy5&Kv|#=y+`%bZmmf96GgvSNUIII5kp^;QzQqLHMoax^0A-9<m5Kpi-9
zn6WsSSLApr=l~_@j)09~<qPv?r;C%r{rh7&bH7fqfr0vvhjh_?<n!wdjG;-dVr0AX
zaM168K$sc<l`VTMjG~A$xvpMqPozIE64E+R8F<#kf{oQYrjB6u#1aqo0L3AUQ#A8;
zPa|tqFri?F&eGh_Q@Ixd&VDkMG5f#*u#s~gc_tI^Hgm1Um`e*|GjWf`aDK$A{BcTn
z=AG^WG8XDUL%U*_Mb3oaXBkD9+guekBKjiw-z)W<g`r=3+Ve`~YH=;~6G%*71$>e)
z{v!N2Uo2C<3~cC%DOR3Z8l5?7{rYEsXhT!&R6V`~F3W&WCC@22B+D-Co{7OQ%M=7d
zCITEiPbD7I`wvk1;|MkZlSC;t*AE<TOvfM<4tt@edPr8XtqX)G1(pOE)a8Z>B(?V7
z#_4tG#@6mvo@<e&s6;OZ>6yBb4#64Y9)70#ytOib85`*9Px?I_Ej5&eY>3rQ*cky4
zOJS31Jv`nWPILlg(`n8}xgHoY5|zvS)jz9<VGc9EkCsrV%0%H{S3LkN+E)X)NG`{{
z$RIdFjWc=>1j0zOuvZ&}l**|)NvoYfS_o5b#>_h&ciMA#dg1aqxut>f4k0(@46M(+
zVH7nmv)DpCgiU(3fZ6;GFB?S?NlaYSHL#%B?3Y3GkMN7PYo?H<zza`6`OPOl%c+=(
z;a0=r_CD-0ZE1N&qp{o#;UG*Kwm$hRW0I(&bwvYxKI9t(uTXrw1)-dF(wQZ5zbR>{
zhNGRTb?0`Di(c(twf4xIf;28j!%MFQUad^0s8MRl(+B55qVqXIJ6<LD$^?jY<rQsd
zo$z9Y#s<9q9cLH(rwZLI%!}Mj);A>T%RgUzO>FYDWyVRexoVNl^{As%b#Hn$_Ldek
z1&WBj%HXIlYu$QRM>`z&)r6?4i9o6P>$mU)8&d{E&{QW&c1?7Xur)~>b$b_m&cOO@
zRVt$$<Z?q!b78YB=OlWK=2hs4t!#n9BdEHsZMai+<U_VBXNWfDf$y=%<R+T}^tq|%
zUeUF}oze|BnvLYIT-E;aRR{(#z>0o7-tI+rk-yuqsC=ZSACB!LNp9)EHFFAr8ago(
zX5+PqXZDx#hEDGg4HuK8!grbjp0pa(o#%b1%TjXQjh>fxtl%rwFg-J0o>ucuLyoin
z@EhMYyv~ZugxX1(_S3i5zKUjq-BAmrR^iO=l?aoE8;n`)DWf->QHbvxOy`@K^Su6w
ztSGOUbzOFqK)JfUgzH?llVU;o7<Hp{@?Tx(>9z%As3ps=I3#FuNv)C2TV9<v_HnfC
zRuvu0#>U6(BahdGr9E;T29BkEOIkH6$*B~ml)}8PW2S6mMvS|4&kNU13Kbw5wcQm}
zk?JBCGWvGokAGFE(&bN}_ejWRcc#fK5dn7YLmSd!CXzk%jo0BIp>2XQ)8~!|Pxopz
z027*f(wynGBc9n42RgUF$1{M};Ix#3eJ0PcefAl%M=0#KcM;bhcXZ<BmTzz8`<HND
zlQFdNLC~swc?szyMGlVo7t`u`*09nRZLC{6X`h0&>wcf;DjHaO*Z1dNFu(b3-M>r2
zcw}EhJxMr+V!BqiI{G&hA$7|_EygN~Ou*J>{!_wsq#1N2i$|3fB8<7D7hqf(p9yQ$
zy}MuXHg5W9?D&DVgAAJhfgIWrh!ASr3XCP7_u4G&kB>TwA`LO=Y)Bl%r0eEEH6(@<
zu(n%`&CW3s`tijR`Q&QQ)3)K6%0L#{-8MtLFaxmwYnwed);U8WXUXRF=~x$VX>K6!
z9o5_e^ii^XNPthjDXtdEh(LpEcm*eJ%F5Vuf7zmjv+i6wUE2v9f5)$n<CdBQkVbmU
z{R@)sw{mu?oM|2-=97+w>JL(xpam_wv=$zg&@xq{lJE|a>)@~nsO5CC$#f>G9QX6I
z9(b7hn|v`Z!$0sc0H&26*9%GLy$#xCdTmLhXG0Mn+nNl{$?AQyXK9=X=}8K=7A|mr
zRDGqN-`vguc^&ABBo6eznpr91lhnMBhI<V~iL~AFOukS+<#TWKK14XtNut7VZ!~V<
z>@gY#hn^{Wmsg;`Brg3zC7{QICg24+nfjbV=g@I`ae5lAD=WxRVi>?D7$b&61!2`#
z`IRw&yD3JikK;S!2}VzL9eZfJB82`$Ln(e`(RyNm?)-y%zqM1q{fg^NQ=IJt?kY(G
z?dDB!v<rLZ*9|vxcR>X3ikr>&ZJZC*D5|(Xfr@I9${Pe$iD^_3)X!qME@4C1U;w?b
zw%ymS?)lKQw)?tXrz&0H`<8-OB<-}0@-LnudPijZL@Zq1vQ;T}C;6E`lyDkLAWujl
zMLN$_cSDZY+VJ?eT0uG=)mn{gHe3t1@S#_QK)>>>1Km)iZ!;@qF#ha9naV+kNJMWK
zHe_fQQnTnT!`k{zJ)f+G+cvsf%F4{3f^d!5I9)CCX%^GqQ=+1y8aT<#+Kbfs&Msq*
z?=+ibbB*4z*_FQO%1bRLoUN}z_=3uD56Ahm<alxZ=MV*Xt8$i7+`KX*cN$z3<oD@8
z>-%UKv7*gq|7I^nBtwan#w@Pdv=RB9|80(|KRT?2FL42MrJju;eau#ynu8H35f1BK
zG#nYxL562ZsOdOk2BdK9uO4Hby~qiQk@{zV)xL&LVNpy2*Ej%!Zyx;RS{E3POE*AJ
zXZw0`bX)MLm>3zpn<)B+w0pp?669M}7?6|o?qxZ&;NIZpYpTPOZnM;<@R<^{Sxpqc
zgT!5p^*c7dR_He^d@OZUPM^Pp<VLZXwY#|W3hx4NbNzDFHM5gxZG0`=eJ|bhxb-!&
zOF5JT6)nXZcQCRNw4ypDtnwOM#_J}%0DV5_XmtTg2@6&z6+XH&sVL%;foqQN{*<JI
zD3(>MgU@voLTjY%jJ6-P9HtczWud0d6fnPpET?HE0{9;#1e)PCYLctm_?6D;vS8Dj
z^Fkf_%XXGJIpp7txGN#V$nBtcC;%P}U&oV}CQU`zBPK1_CueiDlT#bX-<`V}+Z!JR
zu!iE?mhiwWA2ZM)6#UVYQMVC`U&Mgetx*GwBH#S=sG}5;VZv07MnFs{bP5;yFKsCt
zFsf17O&t*ZQfi-Hpr%#Hle!MCnHYvwRNT=50EvSYZM3OOQ-bD+OYM|@&W4@xLETQ&
zt&KXZ3|(^AWoL72W7NOVvn*j!#s%meDVndMPky3y1b>e!SHpgv2j?>nlUjc<{>bfq
zzb*3n{oGcUZgS85M6P1mSU<d;`oX5!RxtYGyE&BNvtF_`U6iDLtp5zjc|d?%zXX~i
zz9!6%*;o5+u2_)Eng*1Nbq?R$%;iI=r3T%dOFXw|d^}9c)0{A?)Ew_o_Y`(}64W8!
zLSj}Y^bzbwu0Cuj^MSJtM{s(Wg|?aBm%6CNHu@x{NRDo&nAMuiecmA<^jc{}t_e*b
ztaOmhR$A?*j@B)!xXs9f>Q;-(R&Ji~@dW#~EQPB&7d-LUV#*k`vP6gEt_YQ0tQTa_
z*Ij5R56!l8=HavzRqX)U)$~777e{AJa?drtivMMRmc{@owYMy?VLR1Wb`SGUV^91o
z957OEg;$Tak9xWY6!{B>+7mHFW;>CQ`NIA+N*|Hd1Bn<2SiHF`%KQPfAQHxEIB%{U
zr}mBVda$2h|0*(CzXxIGY|pqPgiA4PEqeY_4sr-dhTPa~y`6>89s*<CAJ@CT?WN#Z
z+;Z%3UGeruFf~jLZr)m?gdWEE#ghKEQUYKVutm~8*ij%;llSPYuLso3<61YsUDkeK
zcOKK4^^4SThX&c2(Jzj+`uaxaRlPxbNY~t)BBr^%<OkO|o?u)5!Dswc$)5WM_GVAl
zIF5eXoT+@s3{<D5RqdMm(-&GQks-$60dHi*I*9xIYFwP0LdAU=6MY3P2FeoUf-)+S
z4!45Ti6#q(pHys5g-|7`l1kTtj1>W%ttU1Gi+LLDyr=`>Aey(q<!sd)fKn3DwqFy(
za?!qipdm^W1UC#3h!_HAY_@7}xwc=)z99VS#D(sx+X-hZO>?OkT2pd%H|5i<(S0g+
zX^NHV^7SRHhUp5BzOfR?yUL_ec*bBp*ofp{80gX98>pa?R~Xcc|IeaXN7XJ_BQj2S
z_y_v5LsdupR%9qaBLY0#FyH;5PV+8lYi{(8@7=Avf*<*JKQQ1f?xV5Rt@<pk<3LvO
zwj((7^IFx&WI3Mnk2Bp&#oW?_;Bnpc%uPklIfcu~DR+C{MqZm0_?>t=;G>l-#;Wk_
zgQL@h#a_PYMhKG{mfd_U6mH}ArJ}M*r^Bwa^%?wiCD>1{(MLY0efGv=<@7kNLbm;V
z&kgN{2YHY0#L<iQ9t+8_l)0m|sgQcDu_GH*hrRyueJRDUYiqEvqIIM2=cxiAwSw-W
ztk+8VrwyV=Cc-OgRNMkbPVBMLVaXHYxGnAFZoicNt=cBH*~>j5GR{k_(C*=)%4ft5
z@7F3pAHfJ<q-0xOj~-$|g73yZ^?3Hhv;mHZ=v)RWU$m`^g+620!1t%6ubNXJ`VN7*
zrkp}8|5%i}qs0w)_F=*lT1(}09U-Z?swvzhK>czLCTDBM4;HFv^cn4$T+}&g<Nl2;
zg_H4A^>54Z&2HxMZ2moysX@ett-Lg1)CNKrBROwi7JFA*{RdtvkV>wm)ix{rsEeIA
z`uu5{Z^hs%mMP;<iIN|J4x}3CrWaC0(MDiyzNtEY5L~^V+Ge1c1}hc<9?xI;k6QS+
zVUMhX3h*_vjjsY3MU!NJXkkBke^lT09b|2GDP%2n+GFeK&gRb9tLH#xc@N>O)oZ{(
zW2nz+CxUdZ`5Svrn815+e=s~sP$`@brsp27ZUQ_@FBfLc$910>oLy<RdIN0lzRnpQ
zg%zEbnpY2~*En|9aC?JIhl9JfJ;&Lrw$Sq6$Y%e3+-Ipznoid1Nj;T=qx)Yf;5ZH2
zk5NeKqLbhMg|<R1_jynIk826}AK@P9|MC4ed)S*e{b&BER^GKc_^(f5R*%tAuLDU7
zm7=pdNtKJ8QC~-*jl+4lR0#%x<~Y@Gk?!}~$2IR*wZp4jSl}xCz31JOXNEOI#_Q_I
z*6y6_OGLqDqi~y@^{V;$X|kU!8#7)Z(h%`M#BqZSSL1n5v5}NenCe+`Sq!}YS<bky
zv-AFRe*2D^RHpb+n3X`G)-K3Ogib}x!ia@wJrrIH&K&N}zrwVz)gA3Qlx^b)3uV2V
z%{Zglhnnj+djspvI^#KCv6;52&~YL1L*hE$3cK)3W|O!7BxkyR0nNnUtd{H9u}DX4
zN!11-&!Y20#cm10115^U$lXFWWpxQ%nH|mLV@mhmr-HyO$iMlPiZh8-<>cZ)OOp@B
zM^5r|*~eR&Lvt+J#wSS;o&svJ`d%V{NOBQuLKPZHekCI^tRzh=bbK^v`yLX{t|(t=
z^sG9XLQWu>Hhz~RMlDgo6pt(opk5#pfu~qWp2i(*#y~%g2<^RbmIu{iptuVhT=}ox
zfuyYCjrmLg9w&r9??_gO1q2p=CrSH3zRn$J7!$z>$Iel=7&C;j<Twts?5{AQR$cmH
zyvLcvrBp_vc8NrKK0|w?lUg6kKXjDR1&flDBZ+>;lfE;YrHTK-1Ul1M#sCgM1G<Hw
zVPc0I#!{mFM)fIoBu7XYAMYGfDD81%eE}Neg=1+oPIG@bUP^VO9jA|)PU2vs+5j{2
zfk2O)^If@pHmI7Knt_rE222GaQUrdt3YseH8l$KH|IO``Eg8ffa5^<DXQ;etx|B}%
zVXH#MJ(W#oz)FV}{zSpziv;~d52eat30vzMX0t0OG!uJ$IQ{ac4#SNnmlMhNoY2JW
z*E<Ozl<ZNg#J(wnU>zN-QFuxxMET3|^tubR<>dX>la;`maUyL2v`=CFu9y>z__rcc
z)u`|E;NQznW{^UbAz#PXLH*#vr29#ex#Gji5F?g%kjcRi6DAx^M7LAtM&*+k1}@Ba
z6X+#wSB@V0X#AV~zFwy%Di4+n>Cj$|!6W0gUO)Ry-93*co%STYaVBIrn$xo?_E`Fu
z^6;*EzPpuOZ#U|Y)wvODHp_p0s>296xD}Z$7P8wexw7lRYM|U6{3#M*o~6;>rNaFZ
z&xK+MRLeDfm{Q%9D&o8khx*@dobn9=&p%>5kaE2EIqW`*A6#<PxVb()yFa-TUjehQ
zjlZc2-hZwUgI_OZRk~n*=`DXi{$Kyzi84(8+<%2Ik^f;W|D)9X|NcD_MmCoJ4sf=b
zjol^((tk85#!}z#>@p!G>rMe6{Jae*qCP-FVne4WB1wbj=vI<sHO29<@Aq_kG7UE+
zT3bO`)%+AQy|-!THxRQ%_sW;UW}iD-K)d|1RbvXsaY6Zeg^h8wwtRFyQ5LuYR-f3)
zTwN-}5yXHq1gRc#{+jvIKGfA?shl3a?~n5jwTR=WXr~h)ik00HFsq$<_o0--(~^Wa
zs*^#?2;G%&Kl|I1C@{Dh83e>MfLh*hk>`|k5#OWmZ)yCc>!?T)JD6zx@d0W@OHGmC
z-Bc!RUUW`_jed{?!3<#8`WYt9g$_%#4N7VGAp*ThfZyYPz)>mQhFoMx@$qmc<-C{b
z6+R#*$OT6#!w*<({#`WV0A`bg=^9Xp!^tZIe&{-L`=p`Xut$CP*xZ9oP+yiX3f<88
zYortP<q&*2r8{(3fuy0h1_lYl(>R9CP?ENXBu-<-0iqQ=_6%CvQv>JX>w)8GA`t{H
zuW))qLrjuJE0nk00ns#{)g1ak8kmJ8VW?=3z}+B<pr;J|j=Ual383FiBL7JaK@9#6
z_;VQs*zb@iMDl)`!NZsiJqM6RjP-|2TA_USsqbPxQAU!Dr5;78RbRl!8B_nz!ltMg
zv^Lp25}Jb)<Dd;z9xVUkI0kjtd<oqKxcYLi&<in)IUvMA<l~IvpLZk?Obyz;%HL@a
zrkG}5H1aa{OifVqFB0i-Gw)2oKO3W1C<+CA`WF?8h=wFwp#=RzG(It29_}zZ=0_Ye
zJW_;rGrd27+SCbD6T<uEP36b%8LN>|;(MJ^D{#SZm5(YBUvbn2_PQPR)OVxi#;h>;
zJTDEVACK}B54hMptJ32S5zA{4=<$SMm98Pv7NC?zbf*K@nESkgzFq80X)pG8qV96r
zysj9U9v(W!In0<bV&I$pKT;3(P<IIDIzTUFQ8FX=?QLgCZ}Y@rZ?m`^?w4*X0dc>f
zpu?~+QOyJQLFp`Oc5L1(T8!ITN6pj!EMIVY4&TNCtOaX+3@;&aTGu|XPATcNw(pka
zfa}-Dq<^Mx3SHUf-0h8#CGYF|w6ThP^7C_CSX|x;<5_25_wXM3IDbEm7gOo=X83dc
zT(yy3*W1H{5Q=lqE*<u>1~H0}1@6VEOE5!;1NTsmZM}07E0wZ*?(Y0meBA9R-~1>9
z&8%emH1SbV?8lO1@P7I1-aRW#Ae4wHa1u;_sWUu5wp*=mV)4w$_V-V1*5x@65WEa|
zc+_v9tu{2vUcJ4x6R@VKYU`Vn-W1M2DLS0}?egy07Mk(pZeAwFtcn5+4<i7}8_S*1
z&p5aA<HPEiGF*zX(}joj#E^f;f}@0CG77)^-mGbI9m==VOe$|GGi=@_!K;dB<_Rjb
zz*e(HFM1}Qj3TjI@pJrUmAX-#wm)3W&=V;)#OkJV({zKi|B6mI4#k90#|Ij+F038d
zQJ5qr?<8%sN^ba;Sg545=Xv=rb+I~%@~kjek7AR+9t{D75SJS#6Js8b_BSQLmf)3z
zcCv>hH6mlQ78pxmg5aayEY)2z(W5SyFWhIr6!L#3pN^XFT*T*YoMa<D^!Ag7?Cx6x
z6PBFAI!VDuY8X!Ey!oBO5KhDOTh?NzrtX98vrKH@v@MGq5UIBH``bUAaRhH2rWY=n
z7swrLODRYVv0QP)l%7L)D6DB-)=|J$1u&2sg>t~i$Qg)0qF}Q%<B6-vc1z1$sVgZu
z$~6^&{i*HT5!$%4yuM_<=}<s#no_Ic!Gqiw@a4>c@yr28M@K<Rm)iTT4(FSU7=!#~
zT)YBL8RM&DJ9S~;T`AN13_topUudovi95prb^P67D{=b!Gw;8!XbnR>DqBcbL$|^X
zS`b&=%Hy;r-3v#aQzF&B(m)_*n)bcj@ZrK^ZqgVFX|00(jd~c?qlP2Pl=^ggqkTE1
zO%OYxOa6lN88m{Q-Q2mm*Bwj0#Jnlj8j}1wPmcZ0j=6J(Wb#S}A0Ao#9{O5!`JXUh
z%UsuFv{ML4deFT5W?bhjr~T$o;HJnA&8xxhNx{EfTanZ$$u7{;`d=o!28s>-DtRGv
z+a)XJXz9ktmYORI#SS8}-Pd_O*A*4Z`iwoK8GE;>2yy)v?>uKk;FELy51LbL>`9p}
zj*U*yw)|n8!YBRWV4=71boX%YZ7|^QO1BHAQrvImuoz!VRkYQ~@9=DFje9t}O-M2+
ziWPekT*?^d=|cac$4iuTm#q6|*Y)V^rX*>1S8aN}!`^yfsW$A#y75_K9p5PCI<U~=
z>I!%Y#iJLg31OYEi*9QjWon0IFx<HCe=o3Jx44Ig{|&uiw*PDJ{pVc&Z}1&sTiI<$
zy>Ry$(#>xR{iB#;kx@Xd29>Rol3roEzBZ*c)R*W2&$P-cS+Dr@ndM||8O2B>vuRe_
zsDOFlnem!2GVL1V>VIH+s;MzjJy+IPjRUmayX*;f;)m_Hqe2=e8zG)n**QBeuB_8Q
zX-xGF(WEgB-qf|T@B0q@E6!%suNFIewym7^9-h+Qf3Fmc!Tc%G-3UlH<<WLmI07!=
z(60<%T>~RqT_Z~SFE8lwO_}MLkQdPSwh^U{GIfB>ezbHxjM$eBk+dB6S&vOjK{EYp
zx9*5a7Zl!zP2XcW7uwrTWy-7%x~KgZA7{6&a`wTPy8<-D^oP$&i4UB|_KzRXFvr_e
z1X+JP{!kye0huNM6SM#}uWgdlP59(}Dtp$UW|X+UW^pl{m&0Ml3IH!;bh@&aJ-^&p
zRkePnYnrica<VtY5N1{dt9WfSl0Mz!o7<1_j~Q3E6?n#L@SO1<|8f<b69f>NzKQ*`
ztlt{zlv0LSR`x4gU;MOL5HgTMiB>iqi}|S7u07x16XZcgm(3bbsJy`QTjxasSA>2N
z5!_3CpbZB-GjdSaKJybu)7(p3;mcKj!+*CNdAiIVSn5^GK>x|Ge+Bw6R+eX)l#2Qb
z${$cQE-Yesfs)Y}Oc6fend}YWX4L)kiKng2Fa3p_ShD^kf?8f<O)Uympe0tNOUREh
zLXgEm4#gG|qL%n>u*<qM79K7E$GAbD{lVFA6pFC`7!c3&&jB+q_z4IAN0!5;k+>)m
z$_ufap+W6S6St9j&@TNec5JV5lOgbl5X0=ZDrbQW0*|sw&G8%V8fJnrDtXsG(Xm5X
zJ(6(KH4?_hlOp9b-XB>VcS4coyXWwU8eArkg_Qj+n=uF}zs<>o8-2CE7^&H?KMbj}
z{Fl^@Et&{+>N-vhUDvTc%JrqXNec1nx-r!hL&tjv%56-a7+b?uB>on1l4{{3$M#z1
z!4Li@#4<?F(kqqm96L>w)DAi6!LAt-@I~cf@JYxm5%%o>FGl8hhRCHyo}JylS53$@
zOzg~tEqSY@!@v45!p%tFGsrk?Jk`E3%qmj*fcdFK8Jc671_I1yphpGKUD*iJCUz4<
zzYflM^T6;&Xk0AyZ#T{S=C0%wEPSkm6r2*DQDMmEuvQfsL5PGD?r#W>ZV2C|-}}Sx
zBx^`BI7?l<5jsxJ84)`aUU(Hlo`bp9Ui286k~Q({>%n{((*1kY2nfys8k&1Tx-gv0
zb)gVkAA^3*=}h-;o^Ue8MX~dc638=37Ds0niPZo<=Gf#UR)>LeBaDj+s_;j2(=s$3
z6g{YdUR$nv$VMfmxC4VwA>hw+7w274RW+=-9X@a<=3Cc<Yg|L@z0Fi%947?fhtEl!
zwBike6rp)CZIx7rMpQB~VlCMD1CsE}F)2|;m$F!ebw~~51yj(PI?X8#F-Go%Ikmp{
z-<Yk+kj>CO5J9lBwn4+W+P|}f#n@szB9oFT<x~pJts0yf@6S$_lu0xbhUT2)!G|gA
zxdl+l+%O}*CrN2{wuoa!&AGsTo2dSxcsj7jq8eFVoor-kH$n|?&vBhhWFXQZ8F}Ur
zWjg&*_3RY%u{tXF@Jo6%?U6;9bgU6Tm)ERs8B!)@X7y2qIrwD6QyGZih~5O&!qV@b
zz*#ZaLGa62kU=HwARshCOqs-rJSr@7r0Xd@<*P@HV^x-P2V9XsVSfPkU^q~Onrg#}
zCOBE4gyL^AcC_DMyJc4B9r{t}($bsz!#99|K7CQRenWF5Sh0}g-(QG1li%<hP(ck-
ze*+lk(6+x9O^5>sqW+Q;xMNWv^Zm9<bL?M0x{pooj11UW(M%nRH~RBE8K9h`9(FhN
zXb?Z&FZ?_g)kHjB&`V#=b5;8pAahJ4!2k;{Xijw_t%ilrx3!Q!b06~|bVm@hC06l8
zgFIHcJJfgi$ch&DHBbI(2cW;Dl~_5J9HqGY%{p_g>q6Pv2bMadBy|okj@1->>)gNE
z2ysLenn@dF9KuPoBZ5&oGDCViMC!vDd>}k87AcL#6r(PSq+a%fQ9CiS;D<r%7pRk<
zPV5l%6Srj{Dns?IPUw9<Psdfqk(pkHZ&|VvqDPyH=({kzd|*Z&>o2xz>PHcab#K6C
zq9yrzq*_<EMC6+bSig<j=O_967f@lb#};BM0}UNXG!9Y?q;tjwtk`>SPjLi`j&iG~
zQn3ybaBvM=DV#yE?iofUXsSdyMg>$hQk67Q8KgFSp<{X_TN?i*YIB674o4n;PdRe%
z?qEnW#|;h0`pC!B#C}h{Di0=AQUEF=sVz{HnF9t&fUZpu0^v8&0s^ihfwo4e8h}2k
zC(QNGGgi$gY6KC6F`hBICki)&7=FWO?8C(Na!4);fCgu*`I#~}A^__zU2ce-2`QY~
zTE@Ypx4NE}Km2;cD-NQ6O?v&tK~|K`T<fdhL3cSH<m+@IHB+zh2hOVv_%!mX>06o)
zB3NMYfGmuwM{m=B@D0v1i)518{Ek*c4@@_XTFsV}3-Tg#abp8H5mVGgeb=Hbzv(YV
z(YR_}YEDWpxR~+v&0d_yYKOJ+g`LxC=aa6K*r(8DssB>Wp!+}&TxstSiOSR|Z2jue
zEAl4Zidpoz<6{B3@W--hfnOo}2foXy15XLE_edMq`OkJ*e6qUvm7)Fmo2R|o{5x%J
z=^aIYZ8>UAEuZ!T+m6qSZ?wc}OY>#500}k!);>YuT7we5b5R*bXwGD~qaXVaAVy{;
z-Q&m@!;(C%#CP1O<PZ_oJR^-aUKohqN7<hXAo;<hH42BfJ!xlV^MTo8049yd%zuV{
zJy9gS;^Z!4uYd{TPGfyTMxTWZ3|4qz_{Y8tzIR9UO*T}T2A+hG6+8Q`EQ#TkHq8lv
zt#2iSx$3JRk(hdPUqD;-T_ztV%awpK^c19h@vmE*@z^H2j4K(t>$#Zw9W0Vom;s?Q
z1?MJe+w{{Y<vT_NOHWpIEt9><vCkEJ%d%Nh+Y4siL*RP*MEoV1fuF^qzk9uQH^=Xr
z3<VzHxFb9WbveVb;(qC2gb4NR73y(myyQ>VSsy>jB0Cw`MGh`}fsZS`GrR-$_L8Ji
z!avd$LT$ud#;&M5u~DrtF+-{lT3M4tb5M7ayr1D=79LA88F6uO>Fw4qeoH;uEqLrs
zM3N9~|M6#3#8qYoUW*m2XY}Xp)9P;WW$r%V4b-|6{$s)w{Y8nhdj<ELUi0k;n8rv*
zAX`?f>6e|iXTi>G@19=B-`n7uVNSNb3xd&zA+ci!T$ACgV^DJ;r`?gd4g<6?YbO%q
zLSaox4L=<31HKOkFs(R%6TK?i)EfzrH<OG?H$+uxWSTU#*mT#eJXxe5ddw8ALYi*o
z?!@e?={iqE>!USFkRu@kZ@N5PSbhi<C|4IDZgM{>kEAy!Qu|3kWD~o}2JG_6Z2wgp
zk-gU{iZK$*1rYRs%)19?YgqXoS|~mjCkHHiC3B%pPIF@rA}5GR^W;aa2|~;5m@+_r
zJM2Dvk{-@ZjfqDhR`gmROGqR=a!)jB(QCXiLu<pSu)@9!DS!#Anp{Fhi;aX80)^5)
zSMQ#o&?^S*%MBen0t+1f>E#~=qPw!J$Ygd^RYKCKXy{4R-Hf3<l5Yrw@52d9iWdXZ
ztPNe<d$n71d9)(*Ryu~iykmq^`Ph{YH<!o~!qrJQ)(d?TXi_9?*3!aoiS+=K$3F$?
z6ozmH<}+=o?34NNH5OA!{o$3Y;6(J^sxufq#H1VH7D&qSELD4BNm3xzj506+11D;v
zZ)P^S-^+i63Z`<1OPcNJ1~xVW8(Y70O`ixtUbV2awO{7VLqqVb`Y_;W4IZJ!Wn9WH
zlO3MqX|~<Lgg13K6Ne4?76`Mmkbpurah*lqN<R#X@5KNUj_$^$kr}uKah*fu*6f7G
zeQmi`dTa5^OXBIKU1WQQ+<jyH?1AJamE>*zkri(F9XA*8)|o#_PESu0VOKnOS@73S
z17S8<19|zyaYHUKww|ZNmyD1zXF)g7I~G12>W=aL!ho4Sn`o^JL#zmsfe|eWH1zIi
zLG%2OC42*%qoK?VF65o-21EuEDE;o@mrwrU+YJz^u1TQf_0H9wz?op1qu+w3v<W*X
zRR=n40s1ABZ#;}21c>uQZ``dAyr2|_Hjt5J)BGJl%+n0a=WKeVWzG4E!nl^PZJ7&}
zMLOkV_3i2Qa80hB?(Edrk;$!KQ6)EB`092_cv^wtgCrVpXS%3171nN!2<-rnm(TET
zT@Moo)|nx}|B5{4eQ*0OPj<3DyOGuDBBD|%$?t0mOr?p@*vRr}dS{~;R_tgb)W==m
z+ux&>32dK{G&S(3JOYk_YQC4)RntM@Jw?IFbRHtuJBJHUd4kBtRNRv9xelmi7Ergw
z{!*aO^*9AJRZ{as98lLgrnTWYG(&7U`sO$~nXHDhsjkf2+W#5%{RZpUqlDH>JRI}H
z6$$iDDI=BLHdX-Q-|gfEZqTf;U#N<1t?4Pz_NA_*G1)`yc}V^zG5c3p3uFKjhM@h=
z(3oC|a&@tSB$CS9f?FMl03Y|%h)|xOz~A13bwSQv!k^z1o&EtV8%;PVvZg?=igrB(
zD*}VOOt}H6ORF+<2jN5To4$SUzYhSgJLyk<t3kc#(@sWRwilgeX)icV;C`R3E&uuj
zt=xyK#8zsvsvBPG30)-0<so@#U9qxA#5JDsdYM;EC#nRrUln7<_QwoY)ygH9ZJqAy
z;bhHo>^-4L0m`Ut=zw~~wg<5f@TzN)v2a>$59d_vq#|OPhaSAP>jNJa9{Ne#huZ9^
z!*NJ0FasEqL^%IraR$Ek{^^f<?r_ASgjB4ISWjd4ItTTA5s|5B1(gXa2^dKj^G7Pr
zrvplwtWh1*sTyc1@<^>)@SnSEfewVTZ8v;|?UmsQEil&TdpeP&`Z?+@n{KkSE1-jq
zw$lmAlF>lY(#A?F&1!U%bnc*9+xZW-@=V(eMvrQv1{mR+QD+KxT{ceqUwjKZV2SR@
z&*pRUtN-rU^}zqYfGIPHJl6e8nd60~z`W}x_>a`H;=QyYWLU%Hx<a1!DB1%kuF2Ah
zlu0}$ZbH7XDbUrEhN>EHsNS+E6w%>y2@^mmRbY4AsK%vf^LCHe*weIN>7sx0#!^)t
z++sHlh{L9PIGrqyvcORi^iKWb&A(&-3HanT!C(~654cD^X`(0I?mJ$3fB!@~cr*w|
zb8~ZFsq?c+t6%LkF~(94_)7&w6F{`m_EySgLHIZl@>R-f-h08`D}-#UVFQN9Q7^vG
z2NU1?iSV8Oowp)ecD^+ceLD)BC*rG??MhR0uZN+olOs#HJ;;bY3<txc@|FJG6+1fY
ziO;lky-nKi`(K|~yhynA5dVqb$$x=>;Qx;ZZtLu5Xa7H~3f2GV;2RQue`ada3Kz01
zC<&V+GbPH80wrkzvKzBiRp`V1==M>$S8tO-zh2sz+C;<6=un|H>)+1sFh5RB+Ug4C
zmTDo=17M<kVId-<TP??twdIn-OR<MTtb>gIh`H`Mdc&S*`y0x^yx~~)B2>DMAdO?i
zs6py?+rA#y)OvjY<MhNPO?SY#GF`Ih<{!}_U#d@F&{D!<k8dytAG1|?pv>O0OaHgJ
zrN8$H&>BG}&Mq5Kr0qnfh-8J&vRMJj<PlNY(a5wU*olr4`;Dpq{#H+u>@X)75C=5r
z`irzQB54$8&4^^EUxcyh!LC9fdgg``_-QYcuoU|+hf9EF`g1;iYgmN=7L$B`jsW{+
zqV2SCnytMNkX>8|J(*ddg}oK0-ZfAwAeqI{SF*GjARISqZZ{(gf=c2=yifgDF@LI@
zbFh|U;u$sWHsIL~wr*fBy8jWuSI^^aAX=QNpRew($HZX0eC)%Z7+bo2;ONqFuM=>+
z7Xe|ed+I&Af>2K&RrCO4e?MUc?ovK2b)b{e1aRS1VT{Fhh@a}^)@cQ7-j^z0|8o~t
zxf)0x^vdH|?qDHIj5MRi4DY)p%O5Gi?X-Z~0!akW$6GOAaE7NX#%S$a?@;btA!Jki
zL?))Noe!I(#(0%DZ8luTGW@j~;Rkb$JL!jk`Wo?<=Hn+?MVDspJx>bv(^D852Hs8b
z%o`nlhO%2rc@c-IKT3_Vlp=CX2!Jq>Xqg!9D%1Q$^C@t>pp6oT27mW#$NWC&x}xpm
zNEU5Ytaqx^&QcSK)Jpdbui=5{H_z7+Kwt=B0V?c0)@C)MR)}I?h)<-7=j8iE!#vQJ
ze!D`*K`#R^z(zRovxDEZ@kgu-m6}W3G~_?@)d`L<rXgtX-PkZf<j}6v@Jh~06{!Ai
zJ()&4w&3=78MTX<VcuFj=SXA-LQ$2L=?HNsS(@}uUpPAkl++>oO_(A(t|Ea@{c<8F
z$i=>MpKGpB5>o`cTLT3#Ti7^>tRZVUMq>4er<7<a`1Ee6*6<Op_Wqls`lX`Pd{{8|
z5TvE}6*PFqayNx8LpglB5aGZzd^J_>9!pmI6ys9ltnZ#>!oUm^dbFxactf0!2cq*4
z6HhgAdX;*hVfT##Nt^bYxpbzVOXgiiMcb$_Sp<b407+v1s-04vTyc1Spnv6_jFxx+
z70ht(qLti28bsR_O?uynlAtBg1r2u2AROd3VuLnC;D-E|zxMgxbcl8TrX1wF!uPB>
z-z^EXDhnfIv4e_9eTBTFpbX=@StK>{8*Yc(;J$-&(c3rB0p8Du^~&Ul*p7Dpc}`%i
zfk1A!s0m-@D^97(fd{T_skM;gT#IF00zWUJ)VN4bW&3BfB9h9dl=bDCi3hGtL%DfY
zjv93$@3eYF-va+yZ7K_!A|l<&J}Fo5;88#X@s_3$xG;}N#5_;L+MuLu%X(-@+JRfE
z=%UmTbt(@UuH`$iofU7*@Pxx1jPYFG?Of`-rHi`I;r!e2f8ivP!(01>|BtJ8Y|k{>
znzds)>DabybkIr1wr$%^I<{@wwryK?Z11e+J)U<TYyX4m%N$qDIjZVR(pry6H$4_{
zcSHM?c+2_P%8<h;FQAxK1Y@<tZga(nz<$?B**)*(qt3J7Vwxb9XAojTT42_@Y|mbi
znbfu>WSlYV*#3^3EX7Zv>N`1mLZoGF))aKxRqo(Bd4ew!ldzSoXF(DVcSq@7ax!DY
zurl8(ny={w^*BAfH?{YMeATf%VLt~6!Y{z%=?W#SDZZ*$jE~jq$WC-pms@}r)d+ko
zyLM2gjrA=O6c5%pl{mX>?!IguCwtTFdi%BiA#%OnsUc1L@0KB!;dcQU7>1alJ;K6|
zNqZ^x)C>VQ-YjJypg3ZXyYRl)Znx5@|0<3N_&d_mLnly*K8Xks@e(^ThK;eSp<%%4
z>U0smds#4bJ^__c0^EF<l>N?9`piSBE$I!Ndkm0dW9HV^ZHvazMJ(FD+0m3-Qw#NU
z7kGdqi#RM+u#UMzoDZhdXi=ltaYrv@!F>B2fVJhKf~h{Fq!?R)BE59CVsjbs1%C7;
z#k=IfjH(WzduTT_@wa2?1>?WhrqJR%y6`_R^@^YF#Q%S7YU6DE^Sek=(YIaaM*Ezu
z`7x{N8I*1mJ{MYK=|Gs{@JYPI*P5r3OQ0%NB2&~$^RPbl^cYga3QCoTD*v(Cah&Pm
z?_Q}fQ%ckvyH-j6L6}AbQ@401L;ZuLd%YCHP=J?U5<|5;e2bHs5RNwyVEZL?mycZK
zJ|1L{HC;hc>uPFxz0=9#`OfhwIz2>A5KA$yfAULZn=#F?h?Dm$fIR}9GWgc-j`%?8
zgPgeFUqu8cN!NaaQr#kAxRFb|C3t3~1P2!?_Z-ByoYY|QcoZ${(5e5$ub=b}I*znd
z5OC(N1b~Z_D>HJsF=%gMed`I<#4g3$3nWI%5MM)Px!>=f8u&-6wnS;5B{aGCdZTbs
zdP?=0C_2+}7>;fiDj50$2ANZ0b0<`YoUS^a;%d~r4ykAXa)H#Jc)O&bk@LRWLRjWl
zkRA%R51<X%uG{UFE%+)4HJS<m2(}Vpg+SWGaHgl;W&6QozfZ(awvUXk*oL!x*zbNU
z!|hh};&ndKn<FB`4+z#lpu^|yT$BG=+}oir&~!<-REiK3=E%3?Tolh;<`~dF5mz)r
z&(AGQq<Km|jjs$~7)vw2-z=H|qQ>IK66mw_@B$!u5is;A@;c~UX1HQjXySo1lQ>um
z833lC5rS0#FhI+QjWrQ(2MK#fXE)=~4mUJff3HIo^?LkKyqXCf@Wu&MXNSH70qP*k
zz|0@04u`o4iH=6ut*O6WnL!7JI?)Fo7gT0w&w%Kvzj}7lNn1z`G33gf<&;GUzGsQC
z!^gr|De!iJ*MA?Q9mgWU+5n2BInS$I_b~FouWqZxpnU+fzOp{Z>wcF&52ZN3rQ?op
z^W_uIQ1STSKRpRt%FmBo0MW-wJhp})Rwd|ZBc>s790xt3|7OLgMFqR2>EfGa9Fu69
zSgaW$@Y$Q18-sCUIz1W+`vz_rv*mN*6f32E=%^@J4mG7oBdBRe516qFOd!*&Y}~{j
zCQ93u(BFSCf$P4eSer>qO8+v}l=_@42P^p$Oe)~U=#3rgBr<E``*YoZ3z+oDPqZ3)
z=27;>vq^-PJNs>6e6CcZu}~ukf81S_wu+eTOW=@n%Tw+7DRRy8rln*RGl}537;i3B
zsj$+QPQk@LdGAQ>T#r+f3C8(Xfs9egg2X3mUucqsGI6C%S>~Dy?<~J4|G@FCLoO#s
z{h}J$-mKAwwp5X6dD(|(wJu(>f1Rlr!QzO(vfqgs^q!VqX4gL#-&ehK#3o^Zdd}n%
zwrnDSfZ|-LWn&0$H#;w0c?-X)2_1`6MKHU$pDE33fun_NAIR}Rd&qXhYITjIt68N6
zvblyHy;g@7Zqva3DO%O9D5)e_-i$PFcfQ`IKr;D`OxC>SC%d|4m>Ru#wKw%d0rI)F
z_=D4!$o5dDO}}K-lagveP>E~f-mMS3=-1|{o;6WxV$o+HqQqY2AENV%?4Sl|O^Gk7
zM@qvInN)L7^R)V^-5Vx*3W42}wptfWV8a}Pw8L+HE?Y=OP}Ry!4@<mU42FA@Ri4mS
z+>f3fBFM>DDB9x?Kh7oXoJDc9M!?s&RcabwXiQ15G`R|(ZIB6@?4oa*NO07ei}eM3
zN!?UExgO??EpJZGoD4YM>fy}8x;@T$p<A|?&S>Iu<fynd3Rx4;c-vHuK+CKTr8M+x
zcMCk}!Oq%x^HycHhT0M;<(>GR)>=QsA1H!<t?{zOpM4<y_tb0{bwX{00s@-(0h<3v
z?f=hg;$~=U=VWec^PkbFrfs_~f&K$S+>~ZT`OUh;a$l>^*cG3_360{fL%4w5q@f1@
zu`ul5t#*LoIsfiHQCS-fDHI<N37Bw}&3gBal)^3t#7<mJ%ek%=WGI<JHYidpD<(`h
z>nl~i7Y66vnw`oX^II#)h;?Er;9yUMqD{yZYB+JHQ0Vn|z1&=M=<<Jj$flS6E*70H
zk;g{hPFa0bKMY^g*e5M0oz0ge3VKg0m9V)HkRXXDbioBn%UUd48U_Svt)|SI?f#~w
zMTtxAWkgeiod-1*&8DI=W0;Dr9sX9<Hv?t!Yd~#NBQVQ=EJKzjU{tTpHYO#`M8*8*
zL$-XRrKKp5D~Ee%q|l^alLvl=p%h9EC!|PIKpLT?33fTBzw%C(wZ+iwOhYV~J6U^Z
znTzrj!Pv%~!8nw*F=O_|l*T7Gg;2rsEC}UtKVT9vI+jK!@kPjFC>Y|K`rxs35s9SI
z^LHN1f*Xn9C>YC1!r}A6kFo2Q&n|B9bGtDe@T7Ii5j&XMclErxG-J9wxd$ff4fxpk
z7z;RlhEx2Rq9j0_vW7V}B`m#e2|MOrYXs4q_5}Y-zwCgYWy)<Au;5F=lD~ODU_4KU
zJ#Vg32PPwuV=CvnT2f{058)!F2u5I4c3s%Lb8nrdGtca=4xnuJ>KJJuoA3D#z0{nC
z6T6^MvFXJYpsz>zBGX1_$-lPToK9pz_#<U5zlNMbqGIk9a%H!zSWj3=Vqkj(eJq6h
znQ!rmo47lW{?bDFLXhyfp+7fY1`GXo(e0U({sfG+rcI9dLW>U1h0C4d-ox7K3<@iv
z;3Cm!$dj@&9|>YGQ#8r`Sq$)Azcy+W!5p!t2z%}mTF{84U)IMpgGVdew+LQ1A5f_P
zzCU&1&d?$=LP-1DLYnaRD5Tg$3hCLL9<Esp%_73}!nW%IVGoqnHp&W4SmXkz?8xW=
z;S6)`O^<}Xya`phNZrRskmF#1Ev?G{4yzs+*FD&&p33X88Imu3c<x<}3@dr1u2z%F
zRh~Nbz4FR|O3^%dVkzRuzZePbCPHybIE<79vfV?tZ}q$an6l6*Vx+JJ;JIHPU&lm3
z6O})xEQmwu6)XO*cBY(Bv?!n_o_pTfKO54(sZQTETpO(6_Ltze5wMq}wkQhsHx&Jy
zYt$I19Nn}@@&Vnmqtv9-eK0r<uf1%im%U=?cacHU`K<{3-?$Rab%<UI@NgU3rg}3Z
z8h3*NHl?#-=NNK>Z+_T2LS)W;-`MYsWLf36tHC#V2nEYPB><kuA0n#8Jv$fTB)qIb
z&onS{r&&7?16kMsQFg1eaOK}YbXkP^Ih`bMKTh7HI*2l{B8I4P(M~KSlqahaGV0c&
z*X9gPVd24+vB=rh)T1ZRa=_JZGd!zc>7=kkMX#oHQV2ooZ8PU-o*N2N>jkCtY-re^
zOow?j*P`;(s~0!cQr=K{GB+vD5z44-PNjwqbd$erWldX`r58d;&(X*MfOdLZU7=?j
zZ&Cz~e5s4u6~RiQz!f%(Oi4@~z>^v`6jvFcvT&HzhD<luy+Uj|x8Nuq<!1OznW_El
zleJh9s757#GZt2RuvD0x4qKd)O+L5`=9*qyd?%RdE2&Ql{rAsCab{jYV?EI6*~zgB
zBV2JkS7#ql3^bdZGkBE@m~UbeO$ZJg>B9I<C1~~YJiI{h7Z-6;y<McNd2I}xi%p&8
z!hYaE)t_#Y(C2@j(a@)^%Hlu7aM*7a@(3sa{6~~J^c4X;<gr?(21`52V9Y_S>V^bm
zEtOQm3A6P|{-1QIt!&jwWw2IcoOj!l5*D#`Ic2X>O0sGDl<m2xbu-wx!&;&J73c3J
zK_R@wK8K~JXBro-q|)h2HsP9Ie|>-XO2{~kg&dXRTUyF^5vsn+fivbO@2R3=er@)D
z7;9XD)0(>yAuMK#FvT$}bE)7K+0nW5H7LFMN%e=DyAAu$wYTLMY^%}ya@F4aJSgzA
zus)DY3z{m@$)V34)UTOkxSgMVtxlu>KY>CEI=9a|a^yNUJWZ*_SJS{S4WYZwWd*c}
z?u^bW#5gW%4M=tblwCb}Jk<Tm7hB_5uqap^$8FpkXZ&VeT&#BgmX~m<uzdTYJ1e`$
z7t9NhesS-lG8mn7Y3;l>uDQ`r&aaNZ;$oriaZ3A##K5H4<qlTHlHJKCS6i<GI$xv~
zAA1hPVf%=_FU}5h1=BjIqVA<VIW?i1)l8wH$52;Y`s>3-tC4A?gpv_BWpEyT9?D3j
z=2D<l*@D&QuWsIH{qLN1CYuzm2DYw*t&g_D<F84X6Kg=euXz$w)7N#6`kF=Dh5l#0
zYls5M_gmx1_Mq?<>1cbbL#O8naV~ab<3?;F(c?Xrs5lD-w5}3e9^3Feg+K1=+Y}qZ
zX=l_BPjmQIo-Vj~gB344bCUB0+RVf{7l@?`cJ@)UNkWrj(gk@HnAH;^J^xc$#^;|i
zhHC(t!SA4I<*J&{dW#1>8X~$(L#wv+9f^#J3W%g;EXgWr3u8Z#{GfMvf>x)qqjPQ)
zDvUfKs)VD_P<wF2NB<ghEuV~*dR3}L?V+^>)twX0hEHBq_m*(`&Y9bzM&|UxNV7?e
zFtgpOC<G&)-p=<sl2q_-G}47iM%x13;(any0E$3VJN%@o{_pXgLA0j7US|GuiEpGW
zwsro{vS=(YE7EP&h7yHV`d=W0-AVC%J`aoiaOeK5^8eZxwJ{;xZ@aK%>fT65Vc2;q
zKGesx5q-A2#081G3d-%Z=P@=?E)ivL5uswe80>#ZAguLmn;ZZcNBLHQ?9LgOGU@h@
zQNkzZ|B~^w-Su`pHIME{^0%z;8GBW&`*^Dwuwa*>apTs`=?syURZ0H^9uc8xAxWaH
z*`d46ntU7!{d}3`i&H0c;bL9hY_E0OXjFr<<hNwT#5QUvnc0}Z8~Y^V*&T-?3LZSx
zuhMXLtJJmu<Xn93``;=@$PYp@`-l460|Nx~b3ObYm1AP1Z~8x`copmanBu>(b(tXN
zp-Hjl&I`4b*Aq4e8|Q@Px%E{mmLiJvdQ~NeH_S24d_JZ)J6+mT=?H|a1nwtU3}-m4
zp~fu=mJH1EP@RZq|2EZ4)c3yjTRbXlC}iMcQt4xY^U82dO2Mo6G{{X8NrI}CmC^ot
z=zPMdukiW4+b{QhMc8+!ityM9EKPmW!HIiTs7Ydi;afwoAn{}rJ;1M=NJ~HP)tS^Q
z{#zgvpiK>0oVl^0CDl?|DU_|wRkc!I+eStmpNxT1YN4GZ)?ZOC)ywt9U<vC82kM@z
zFi`?e>!hQ`bwMOuG=agE!19ow>6IH<awp0yEiEW&&LnfPW?qH>%qle+ubMQ;Rtj>r
z6k(ObD&4w<7s`rdl#{xf%G!!CHbQww)TkD5fL_ZP#EB((>jp+-;yju!4`am%#)?ck
zO`J_UQ$pDR+Gm>vMI;rA-iFX=&xji;?{xvlpZjDKMuhZ~fRJF?CvF{pc0q+N05sh5
zhSjH*l*OQxg1m_1o5pS<PsuF8kAU{tgy2Gi3u2@DhCF0LBI7*C)$Iy}Y~WmPqW}v9
zlpN{*QwsBsjasEMN1ArxDU7{ROC~>6(9=6}OO*!#jr*sUT3CoROeKy%YiRT@O{B>j
z@siU-Io1e0A(t>RKK1656ZN0c;D-z5)*a`rQ97qrG89<!LX{9=YM8=Z+CP>;q4&W!
zVyQ_SnH1-BVWoXmJO4kJOd~v;Ti`qQ8dWNoC5-XIhp^Cr%H53oG9KGnDVDVvlD}Z(
zF3K0t)#`3LFFOXY^Oz;+@Ef#d{LGGxuH3hsl5h@2xr6Qt`sZ^!FM+?-S8n8_x`2tK
zl@++=0fByqv)@nMJJ;88mBR|N5ik%l95j;^i#AbAp_ktdy(aDS#azjwRF>$hqZObE
zqvloGOhNOMbfz}Ih-IKU*`W0)T2*%?$^%r*+wa%1i3Y|MR6%W1I8mCyPF*74Qe57}
zULoU1ng?8~zzpyB#)-Z;f70JFtoAL&K`UJ)kw|;mUKzO#7w%0Q5K!0Wp_>K}_^N?<
zRA#IX2iw|;;jj9KYF2+)iCh^W#o(;nVRcX-jBRo(Nv_GX^vUNGnam4fAAt4|5JYc!
z)%iqCiMzJz;{BD<yf7fBQ?!^6E6M02=Q{~D0E=P}mUXe{@!E>~0gb|*abvzGjA>No
z6tX9T*Hmg{$UNt&PPN4Qign~L-VDr_;pAYOF<tPw#sr!PO?-DLiJkxfYz(;*J{GhL
zm-a-Ti0fJ%7?t^xFvL{aTtYp9S75abey?qsF}#*1hfGQha;%YHbHpTF%9JY_-x&2C
zkPs6PxMp`6F4-c8%_v{VJU?sNr@x}ENnd3KW!3xsJIr10Oo}R>n>i@()p-hUR9tdU
zNp(E=^eyz#jXAlKi4;$|BZ=>!c}kG`nxID$r#sxa9K!FZDI%yR8i{M%u<lH;y{*?6
z6=uIOhZo?333P?>A#%Th$^G*!<W@b>0c@CUd0-O@o^82gLntf@&<}98>gg9|SVat|
zy`8ze->d1$QEZLe#XP~ju<1igaNINne1ZM<9NR8+LV^96V@5wWw*Rg6HFeOpF*W|r
zRZU6XHbVmG=ambSOLgoDnPV&^Azz9#U<Dc_1b0_OSvd>(r*Gd%utN&_d1Yq<e8Zkz
zL7BAX#}?Sd(ZJ#;=CcJTRI6fx|3sFiUIIL{SKH~BQ)O#tOC81UXZH7+%8#3=OU-|X
zDs~kTKAMxj=ulm8n%eeO)6>^X*L{e}cl}cCaHcAasQX#2i_^CVQvs7}D^|2hfoE#3
zFBhrp3)Dzb2cNUr&0FS4EJ=Nmq-^@2X#kg0M!HPUWLbh57alD|r>n3x?LUZ|vh7WN
ztW*_~^#e_(OMNvKBu&yxNntQXRpy9}N!=V`!%}9So7%8B11mR)WhSp#m`4LU<@m*O
zz|W9{N8C*fzra+t+ciLnne$F{yFrW0pE89DK%%ne`KK5N5Hh68q0I!C@fSeXV|(<`
zk}<$R(}!ai155eela1n2>Obo+=g~sY)<(C+5lmAEIoW;&tQlhZ?VZZrq9L&)zaVnn
zTm>+Wc557)$BNQQkNEk)804rY%D?I9J>_3v!t{2)Vo4u>G3q=d&5IvH>YNJO_kX~x
z;9TzP2Yp~J-Ob?2)#inB++Rh747NXMqRt1V6fsevf+bH6OoA~=?_&kqTd*$h8t2|H
z&v24B%4M|Q7>-&Pkb1@;ADRl`VtFE&hMOw=2JpjOsUNZ&U~9h9%II;*dP1gjl1jjv
z^3DK(ey;|AkQv|=PqnuRQ`TXt1&~hiM)L4=1=k(GK?MFuL~&E!H~uGQLZc|T#FA31
zH_T|4Syb6l=o(e3LfR}%$7XEZAVl!kQLhkvkm&Vi_(6BUL8L(owcX(NNlVrzhrD^p
z)5No7=#5`ri<dUjhKs19mGsPU7olQtquNK^N}C!G=gMYdg86u7y&TXH4Lx$onm4N)
zf%XM7R%Eazq1pWu@+;bk+%pjLN>wEqP@}vp*jdwWU3zrAfJ?`2^R|8$C^i&%Ds2vv
zqbajG%<F-R*-GfG*;nJ9s*DvL8<(wOGqUZyl@9&l&Dr3stVhp$*bn;Kj`Nx48Q83a
zX#TmGXl2@tf9v{wDYh6pXArw5f%Nakac#Xo{dm!@Qhhiq*~4cDf#<=0)F<``o8}`s
z`(JV?{-T$^z!<_QLKfVGPxO@<vWQeMay6y+68eSZn>Go*r6MiP9Xm(FZV|;Za=*I8
zC#mAI^Q43-c5~HwV|NC(P<?wpRB)Uc=1JC}cyP9V5sc<=D0MQcek>lQv^`z8D5i5s
zOVjJW3BjL&!bi@X+T~prU8l4vZw=X6CMylV)}eLcI+@qn<JmF9v|b+pSj)Aj7CInL
zDpb2a23NS4Mp`yLhwzwcx340*5{zUj|Ls6E|KR1vlP`8SmVI>#=bPEO78<7iAN4~Y
zZ3(#r0t7_&6Ab*{Hy(3qYiB2Y1FQcGjx1$q+YLszu6I?WGkup`Hy+5-TB1uo5KGrn
z8_^4D_AE1HQrY~4x1E@JJk2o$xKzY&l3Tv`7=kvxq%ut!4$T0!q~0VKXDQ8sSFMDk
zi;#cLRGhzGd>Y!jJ9<LK)d;;v7=LYU)(DP)G!0OeSFQm!H7(-AcC4!f)U-$C?{zUs
z>I==ArGz^(t)_g?q;zPD7*sJboL>6jAr?@+F@I7f+96aM3Ee^)y3kl$^Qwbr`K`}h
z<=F^a6*_vg_U=T<T`__9NLCWg6eTB~)QKn;$&E)#th$^P$OvV0>RBh(vWxYRc^R^j
zPas_9tXa9x=pY4U6T_?Jsv1V_TF@Gi)xp^`m>ss2>G8j$2Rhw+EU>?1dX$E|f~5^q
zD8Vd4)g<2=ahKucQHqmSLpIbF!0m>r(5XhHhHx2!SD6c{MHlZO9v{zu=CJo3{jLbc
zZlhJP%7=9lES4gH<Db>@G9?hfriF$)@p22m+J|17zzsVksPRq4@f~269WFqwzxfUT
zlZiiFwW8TfuDbd+Oj-H`@dxE<7{aZO9cq%8O(itC9%(;Hg!$S~@4TbNCTX$pa5dBR
zpH$hi@R-9MJO&?Ea-NG&r4}Orz<!)RSXP|E2Z0O02Gow1L2X#S(d%IU@b`K4=^09A
z4uAN~c%`p?3MEH0VSNF61AVPJ%m%dGT#Jf%t0+X%2c?;$f6FkTplg)?l9Iy$NA_;l
z+^l<6SAv{!um{>BTA!<axA@X7@tUju*Buy^yIP-SkkQg`u_h2SE&uy9zOR|nc7*5Q
zmQ$+hw##SGUz%K=@n|`%Z9QB#*u}eD4Vr1E%pQljKhvOPWy-BVqs<i7`>>YL6Woj$
z=DFK2mC)544EX6sT=&z;yyXEA@zqB!LoJ)0$kb=2*Ogxh03%Jby<S-^m%!NmZo~19
zAcqrzlSLu|9egZah&oxB0>HOYr#Xxd>@!4xmoLzN|3Hb5dswf2Yz0}U|944bZe#59
za|))^^ldjrkw2?-nJ5ZM52*uYQXJ*?yueB3*nz{H{&4pZK^-==Hli0x1au^l;J)p=
zyZniWC+;|bptAsrYua>Y;kll&Tc%*0zLO@xPl@n2;FnfNvt4ACs>?1H=1rugIrJkv
zVRasE##u!(1*iH_mPb!O{YQlin=QG0mWk_^m6P@PaP<Kg>50#%`mIq7aab6se*(s1
z>t2VV0OO{Bl@yO?27CZqRWC94Vr2e1E>;;Xb5TJeUcE9~y>Ch+kJK*TO1|2yJat}<
zn>E>nk|B~eAu~Hz17-QaRE0Xi9&VS`y^nzXL9JHl)(j}Mb99+_ANhkZ_<MJsNYfEj
z(K(k@k+bC1%3y2*R4K-<|1Ps3;I}00pT?@)dTtvxL&aU~;2hc=vH8>GXMS!}PhoAE
z-e-FCs~|1g<5pLebixY7i8OE{=@Ky19S4ySgr6l4wC!k14V|xW9;BLHQ|pzR2Z#Np
zrQyk>O$h>T<I|xwuz|_@0S>JiL1r21mkF;fSDqzg9}-en03fCrN5QT@KRuU!70K^W
z-(n%@1a#QJw_tY}pJ&<0FU;E$H$bQ5b?V+6AVl}w3X1kLJD9G%!VR&Lx~%&cXH&^|
zvpYZ17tmo|ifDJ_$&&8jADwmuf<s?9J3l;%n-33B+YqO$`-2ze&b2>vtKLQ&$+JD9
z)Oz<g*V?#RT`taEBk<s7-v)2$^P}B?Zj`;I2ZICffx@7zR5MC1vjv9@4(h#2^iMLk
zs=m|0@nqSwcupzmgn>U)yTv(((ni40H$9+GhVC<Kn+=T<vAc5H$5lyKJH+wFs~xH5
zjY`Uc=~Q#n842pAQBc;s<xQf?YFYP)^&-E%efB*^Mpuu?B2^_)#!GH2FKyai&O)_)
zeFprMCY!M$q1vyLaAzg8ei?K}fLa8N_@gSV{6QH5iOcwdQ9BKoh==ls;d~rtMV94V
zi>+=QDYA!wBJw>&<cYeUcmo^o$ZLo?yb0$A6&9AZXPZ$@elloA88Zp`#m4Au_WKmY
z+vAyr&k8N20AUZ(Toh9CKEK?gtHvlC!PnS;e3#F3XdxN1*SNi8Hc&#nj)|wQXqdZ7
zEBk!8PoceMWc&SHXo=k7-a^VScT0Jr4rh+7BZJYR!lPp*=n#cx>n|70O(hO?3?P40
z?+-Emez?&z1~Iysx?LcGQS5KaEj>qNbn{<fe`Y>EYyZeKf!?qk9vK&eQHQ>jFg|Gp
z!^0!~z0aMQ=XiH>fIHYHi;V<D3hSVB2PJ!r&XR${8yl~t?A7dMh~QQ%kVF*2+TAUs
zcNzWSs9#l{^{tHbaHfe$j~hSKToG@4>6wo}zI>(uUo-6DPQON;V9IQv3?6bMwbvne
zc-nw4+lVmiPx7fN`B1};61E`fWJ%}RwW|4ow5|M#p{07g_)V_{^ET@>SA4-q0;<p@
zs7E;8sTAsE)8sB#O3iK!qf2*-XONz3E%DO6+eW<MwJW`pe<^g`+oSR^f~Rej(*>wX
z63iGZ79V{r|I3)mREFT@J6dlf)k)&Y#XU~{vMJ1F>HGa{r1gxRdF4E8D8EaX!od9f
z3YZ{zO&Y67aq{`v{)e>G&!F~lW^0=?=>LsTScfyj5tkd7`TcS4N^|I@%UK-LoOE6R
zJ<Nud;@II+WBU`Nc%j$s4DS-qsNoL({xsO~cm-uuLRY1oOA!+hiszd_?LPi9FsOCr
z-eL+!ZuM2(5nsamz)HhCt^NcLj}qUYdTr1N$ljzq!W$qAIi>SoF_^MvDySazH0^Y5
zSu)x6=Q>m#@3XjX$BNA^dzW4<7IWOhxEE&B`r8rqNtxakS0o1@DmymWba<5N!nTuN
z`!mmYeM*IWAmk;9g?oy;!D{V|vW0#46cB-#l!iYkQFEQ2RFIV?B)*zm2P2kIsZLC+
z*eFF_F#!}Ansndl(Kk^gTd?r3+ZFD~dew9)%I(6(&U(HXo-2u=W@c^~0$FT1Rl5KK
zVwn<Zd(!pnW&AweYu~HLV+2UMgu@i}tb|2$%_?2_RBTydg#-T-HhoX$>s$Se!r>A2
zn|{w!zMLSs%tIg@IBQQA)+b*|`nxZ%ipB1BG-;cDp7Ww9<3VBiFM?(549VP+AnMRG
zi;!;~f%${+GnmPY+^7UE%+duxRgcbrDTNZ6+|26JI|E0kD&V3cBkY7q(>{r)<Ku!O
z%-OS6>2m~c;h#7+k9!}!s#Re^*C=Bl>SK1(`n&*5Yw&3-FMZN0?4%ElfdM`RK>kXL
zFssdzqruzM>i~Rj`&j4NiGMbDj$rnzb7viZ;viTk)MK@Yd+874_45iH*<t*aXfkuQ
zC-v=${*4;{@&9-y^f9bU7JjNDkbmx#|LdJFw{!WQ$horbf1bxa1#%4Nmn7wkN!GQ`
z3MI9v;30^EgQWVaRg|5B2GK5hqpeCbpB8pjp<y?+W41-13_Q0pIA#nTf%D7|;`waY
z;QERFwOJr|&~Q#W(yg^G2~#7Y6(NZe{c!-nAre|Jg*O0|$M26;PNX^K#9$b$7B4`&
zt`S%55hi~6*W!sttn)ezE=FIv$x?)AG7q95%2$d6=+jxW3hW`P$ulWm5EQaa10iF7
z)1)fXHqs!Hr7L%lZKH3>W1g4v@heV>l0)le>H^PX>B(QJ?PHELl_Jw7*p*M#T38oJ
z7mJ`!S-`$e#O`4n(%_Y^D5D93jdEU}RFQI|&ear7t~WQM^0%jS<q0%aay~+50deQ1
z>ITCSTF{Ft$|+#N3dA|&bRm)$jxD^WRG-%WS3NAmIztp@C@6tWD*D^u@D=43%jhWU
z=&)R&M5GqQHtD~V1IjcFEmqw@WE0LkqAbFpOrt$GihvHv=!hEjds1qY_!EAGTo}Tf
zKMI2UEUe=4u3$KXtv?agc{uZcLz+Wa6fq${-u}NJa2s0(FDVu%ML_aSvP3WwBf@dt
zqS+{IBSCt+iBMcgD)T`9ov~Ib2)R0UDCbm^iP|xkBABS&Pjf{16yG4S6B|o>;2;!C
zB&GCUUUK^S-cpHC*63nV=y3mH_HGFlIIUy8-ax`ghXfXFbcw*1#du;VVQ!g=_BCN8
z1GZQ==~T#M*SmZAm*|6bn?|>{Fze<4dVlE&nuV<K5%7^Ui8@GcGfZEwX4{~}+QU`=
z=O>hBchy6Tew5&w)|}V|VM#F#fU(^7L?bb<zM4$=9AX(#dI@RUm-z(;@}|$pEh2|9
zJ`uOFkbkrBH2qcqe==?@gTzd>5lask!fP#5XJ0;OX?(s$C7TcDTX3m>rCf6?DL6lS
zX<UH%e0dGRC6QnWaW6&lWi^~Vh87EdI|t_Z9u)u1l(;CCU1l9_x7+gbU?kYpuCSAU
z&rLl1S=ID<#q^p0Kjb7NS>wk4cCUCN&Qs}U{_?AtUS4Q+e(D$7KQ-~Bm~?S0w;NuS
z`rfVzt~)%tl0UDmupb-+sp20<rgY{vcXk)=jomc;^0G{LNmR`*4$RXo;t~Dko|a)R
zT7;nh1k|MCEd(}QbPU{UHw%56#!NZe^cMR_IRrc>rK#tXrSlo=Hw0{_?*)$&c?HmT
zj$|M|A#HB&Z!dzn9(L>X^a`*ICN*)5?3AIM3s9`w*_qI_yUny-Id@Wj?j35ayl%1W
zaTq_2^mYx5JnlMdU8he$AEv%tHh)9^w<J#Ju^)N+IrmJM|8@4+e<X2{+E3kt7|Pd=
zBp!J{noEWrb9Urn9}|i*7x$w*BIOd@!(<n&uC%6#KZ>+&`oYYyOt{Y3qb3TO#qr!v
z0sw%?1}~uk!cEaTn*=%6!i6$|&<-Qi7q@GQIIW^TNJD%P!MS5@M$#DQRe@nBx2bZq
z#kU5(vz>wnB4tj7@K^17zCY*eeQyZTAvDiQHt?goM@~Ea4#knJjd7*aBtaw%=SU#O
z`PLz-wGL`7I}XP=?}g;*<Cuo}xZP_>@*s>+Ku6#+ooGG=WiTVO8$R)Z&Cww0av{^K
zpsrtRW62wbS^XN2<J2xs>FYm#xAOG{$=fk#@AXG#?Lwed?CMbF)I+}t1-MgBjHlG5
z3$lZu@xTS+#XXEY@h&G3PZxK5=*=0pG=G?Lwji;-aprhq=V+7^!eh8Cn{o0LodFDZ
zyE=0fe>*ed>e8BVrXeXE51ctz(fQpkxV`!xFTdLPNKRns`77_qh$l=e+&*ZXMKSQp
z4A;t?Edbz<FqXX@fEhxrM-p!DOpRZyIx{sQgMp#kgqA5R+Y5&vL#Q%6Y>9wFt|`#7
zrjGrvWPFQ<#4TCzWjt=&Y@(9Yw#{!X*-Pf&*6zNg1cgFmLNNv$pY*Gh?!~j`L-!n*
z0>`+>n_Dw!-9b$6*TAJsV4u?HG0^|QrHH7A9qwM{L-N7OXEjU=Q1P&8M4KumhwdGD
zjq3cZx*vPlOpm5j`N6XuSt0aIh*r-Q?0I$SWi(8X>E#M2<_e~1U=>GjGZ690^Q$?6
z?HQEX&7@c8IdP{KM+t2A2&cP`qG*(K53FI~V4gZH%hwheVMu;QAF{*c2a%87<7>Ym
zojcvR#!>oI721wOCmzMZQr@11#mZkW7`yq-pKZGJyZHOucZ7j>z>*F?H|IV4=9qsA
z-KzMS^Svy1e9Wsp%aR%SWoc9?Ve>&++wsHKCXSZYxI{s|aC(TYg`7gz3wSSuc?Maw
z%2`Bnw3l&rVOhUL-@Hp!`4vEbgrvehDvDU!boTVqe7*g&sN)Giy^_7bjL!7HzotW7
zNePp`p&5T+Re_#f_syKwS25{&2l72V+9(<?=2Ho0$llT-#*_nx$C-T-*>>?z(;_%_
zJgGW3TvoribdE59l2RC=4wn3jV;}jJVR@#vAaq@2U7mTG{Lwdx$i+G9H6X|PabkeM
z1=b?%bO6E<%Aey<d78>wLik)VK73DvyNz9I53Kt1yyyo_E{>&;jXOAoj05zmG*A7H
z;t~o?<eG$l3}G0GE~wl=cEH(rBT95syLOjd(Zp@cf*e_4LtR0tf<T-OJjpfv2*g)X
zP0LMBT+{HfOs2HzR8=}iviZaj&LcYB5QZ|+x&JD*t9)$8mjCuYc`G~jr!919yzU~@
z#~0#`f+%Z|B>7D3&TQgi_bP*1O=>SEV5jb{IX;Ttbv~nR3zhzrxelll>>%=$B_6@x
zbh>B*;(=CO*8c=n?dxo3tPr)6#9OQWY-5_Kx#quXa9l8r@wUdVWVUGNT80EWb|7rx
z9>FsCv#oht7s>}sr*}*$h^I}^{c*`B|ESKi*ifTkmnFFxstDOe`E*!aJghxX>gPob
z>Q6F(da_TEryjSsWmQ8TTT$Nrv<B;8cJM{5GbIKGJv!yVW<@E9j>uHnEY{TTDpH-y
zI%n{aV|MTVw417FWTTh1eT%H7H#6K}(Iu|ahE8ewRet<Op6%JOQNKBheKp#0Y)FYk
zx{8Uqc70}|A<$Fuk4l<j*+9KJc9obL8z+0s<8(^Zk=#}?Y<d}157_+m@g8%9-3n0T
zMJ->$zB6iZvstL};w0ZFpzO^0>I`3x9IFhW?6)Aa&6TW8Y}F=t`h$Lva}?+nz{dqq
z04FNr3(sRa3N=^b_?cKc<E_{n7a(P_QA}lun|kaj?PEaUzhkVSZ=!St6IGJJwsnC&
z#v>3mC=Itv*Q*oIOJm_r%p?i0H2XWI*;?2VJ_;Ojf-5E;UV;TDRn)vPTj{A*OV|p{
zF3hTP5KaRJx?X5BYil2&7Vc&7V^K^jOjp&%0j^g>1XCd2#B(2Ek{Ux0;X<1cwd)?C
zL;x=-uglMjzP!!PCzw_s9IN8y_yy02&<s)uOjR$&^bzMi$UwDz2s*9QB;=g!0Y%)n
zgKeafU_8k?ASSMSk<MUJm0Y=K(W$)0I_pj&x$yV0UF**oHkN!u$f#torsPnVh%EV5
z(vxk~x&ZjKLOlG_p1m{oHqBI<IhprTkBtjHqNuAZkzoQnf-S8JXCFVcgL-=o=zya1
z#!0^JGCf_*U1}TC0{h>&MJMGhuA57t2A%$%xv=#!UG@dsFUXL3J)pd<8=5NJ#2I4q
z8E^#oc&f^EviVnM$l?s#&*XrW;c=+YS0Y;_<}!*>gF@q9lV_#O#TXa&;MDB_CJkAo
z?aH<DhT67VI{>_O0^fAs)E_w^(BOF>#L}9-`ln+{sj=noYgJZ4q8oAXQ*EoK$L3V!
z>U0WEWzaqxWb}mV3XwtjehSp3QSj0086_A2l;NVrXR?{S%uhaF$uScyH=b<@B=_m+
z=nK1%dz_<6G!F0M*+Nf8K%QGerS{MoXJ*5EgE<CbC5loe5YoX);HJpX^JjQUe>&TH
z3C3ra9^}(plb$EkW=Tu;@RG7uB&VrX<r^&Vc<6ZP_->d)1`C2U>(^T{p3OTddRMfL
zr`tH29jP4H?M(2R;mc~U(GrweHN9@Eyl7~_=SU^%XaUxxon6kKkse5bj$<J_Hf*@&
z_G`oX1Ef5ofjwl9eY|}mFg?U6zO6j4;G$h*cWaGZ<O@L0vu`?awMP~+kH_466=di{
zw+Zn@yL>D}yN8#`VK5f!YfCx82eDofPcB<eg@djFB8-+Q7|z9}{QspV>&h$iyhJN(
z<fPe#i4qlMUd%aQnCw_}=bia|+i=NUNxMg=ndcC^Q;!GoFWB%_uYBmzKv`s7@IC@Z
zsq6gV8(C8g=0uCulFE#LSvFG)ndKz^yl#sz<=S|Us4;aePLZD`pPMku4E*U0V?pyc
zVfb%}Bp348W5Wdm6n6W6!${V~j*j~Ovv<4nwsieLYM#1&M&Q3rrq9o6aixvukd14J
z#;EZ$A4=RAow#|QqOT=-{B>d3k{<iZ{@k+T0Zf@YM|x!R1jxe4{!QNDFAPkHRt}>a
zOfe?UrK|FKsh#i;?Gk^GpUsfbQSWyms(8c^SzLMUqhP9jcLz8<{5U5~OH`gWBFHGr
zBsEnPA7dpj7R|D@=7aY0Zf<%0STpsU`A*DCY3Nj&d>d0|!nWe`kFRO4NM3P9_*w7N
zmp1q?2aJCjsYKsHe`KH^7-g>f6G>)ub<bKnDs-2q_@{F$4R1GmWX3cRL2iwNmY<A1
zVbooEY@9`g=<b-(%kt5p#X1Jo4s3T-Pu-zT-lD9*y4H%QcdYE56Vt%dn81Dmnchlu
z&C(yvqm&5$kf1@XbzBYl0h3#J@1CskM~C#xDZ=@_^7u-phx1Q0y-ZCHPbaUxkd%(D
z&c`F*<&blYzcXNGV{Gr$-ofYg9Plw!afm7Qc(k`xQE_;4Gyztwg`cgPlcfcmc|BdN
zOPWHlgR6s2v4ZhaV8YdUBF?abo0H`$@;I&2<>L-P*ZMX#MCIq^?BM<Yf{*Lt{d5O-
zvt7J9TYG#RTUr7V1VSGh)0LgBNvObp8YX;vghuM!TVarmUx<_fa&-G@IXr(Hn_JtP
z;MenVcW{DV@U-dH)*=_j5Tx7b29}c}=i>Kreu3Y&`=fkB;c_;#_qYVk>JE+9;c<V5
z&12``eoO7{ZXe7^VOuSe8$NI$QVB-_xvKM+w+;R8oGjnVEgA|>J4ZXy(B16i?GCAq
zQ{eUZXpMv7M4UqHF<@L*S4+5$LscO!2UjOsTR#KCwi+02vFC?zbo3FVKVN!)20|V*
zFh&N~Um+6Uc|OyxXKCr_`Tp`j?Vhyc?2)l_<7jEAkknA9K7GH>K4yAfZxKHLGWx+u
z!1j4ahQ$4E4L6)K>nY)4$P0#MUmCclrMd6}N`;iR!`#O(`>^PB`LJOU9T($qm#BvM
zlP6GM+g2@l`#PrJU-}9n#lpjKg>oSaq6HU0l3@?tE_SWSLjg6dV$=e;H6Nz*Lc0xL
zFwy;miu1A?V!Z*}MBDsKy2<%x<-H~Wqi_|ZU}#|E%8GVPb<K45+WI<iXM6<@<sGq9
zUR5@SPT)d)dX|#1`X#`Y?8g7B8{*3!jZs#dpdR9@%+iR?I6#SUu<Y!TkicS`xeWQn
z&+K=4d-c2*jMLq9<o*D|;<B~|g&?<b`UjpLdH=rNVQlD$&%JE~qUfufov!S?6*oex
z-?GdkB0&sKdBWdXg@DF*UcrH0`~+&8q!!UH(A+1xlwT4P&+1FN7Q0EntH_0&K#L1T
z!<Hi=fD0!t5bGL(_yJ;n^CEVd)1OAQQfjkSdeb$~`me&EZPn3p*m7Zj5AU@5BbkIt
z?Oqg=mmkplAOsYtnhgoq;%{CUj5IQ<6NWX10xXnDGufaJ3^=0KSUU4`ppBov@GvkP
zeS|zr#^EsQY$`Ui17e|rS}h!^)KcWD*9$QF?FKiOgwJMj`1V)0?tn{dU-q;nEukpr
zW9)zmzvgs`AbZ0r>r^Cmi|OhNhUk+$LIG%%5C^_pBQP^G7zjN9#@Q?rhZpBG`IucQ
zhC2)H)43J*8AV4J;zz?o>Yo@eUA0>tP)#D*c4K`>Rj9%MKN4MvhM`jg44mm2w85{a
zad6tC3^?#u`4B1BT4PHcld1gvZu0A$gPROdBAki$XV9&mc(i;I*c>KfyzM1pPXmjm
z4*L#$y@h+)(ml#xOBA`9#<2R3a+a{B7Ehk?J0Hly>B%XA$wfP@Zt~FOFsYN1&&xR}
zmcH@;S&7^ZsF&IzVsG~N`G-I>gAQJHmMvUXGf9x81v#PKet-ltX;tu_Hp-7+JDu+8
z`u9$)#gpEZfZ^(7LO&n4)LwV!gmGnDhC;Fv;AEn%eYR~D&->j<Gnw6;r&U;v(#v=d
z<co;G#6Y7MeB5kZZ^(dYp}S1q?lvEL`|$j2p*t)AE`I(2Y{Fzb(j1n=Z|T!XW~9Us
zo3zRKm{%*Ni>P7`d8lA-e3t+*y&lWBwcB-Bz~Y0x^j|+A0Lj711VZ?V3J~olnN_5n
zwcCs?P~Jhpf(R0EXsa@uF2UF3(a;_f!jNf>Z}a2%jX((Dd-k3j-}k}tGFBJ@fxoxT
zKsI8G#JPuMa~}V*NMSaxOo!(oX>uQ#4_|*xpJgKH3tj(7irAp%hWxp<YF#ZI<xBJ}
z#-V(yR|U_a>)rhB9m-et1`2TkHmP>^P<H&sD?9BMeWp%RLhj(+<=l(O53%GoNC<@2
z{PuZ%q*v!PH{5AwVEKu09F@bUkR;YZdhp3r9T}*bd+yK-u$hY?l5h5RU5lZV=|X#h
z4gb?w1gUOEF2Jzi>B)U?e*j`>yW4w3cJuohBtMJey$`M8ZQip-G6~qWDr1jVTV}#(
zbJz;s6Ux&7oOqeP99zDY63dsGy1@zT+IDeRq((r7+RZDyUk|bif{&XaU>PtU(GvUu
zFFqx%4BL*vkU?^JP2nN^@uJu(7b}o9w!j;COq)ukRAwgu>Df=H9|@tJtFFOaY%f?W
z&Es<isCePN`whJ5|Cdj;mc{tt%6jzja+{~GPbpYc8dOpiEy>4$pk4tS`ps!)iDVmu
zV1r<dljCa2aRH|q^GTGbuAE{<_1Op*M?HySLfmy&X|q!xXYDJsy^7v_weoz)w8GPv
zEl}LmGFYar-Z5umS{<rt`&F&#eEX!_v-6kIT4#J!E}g!WZy9^KkAq956-AF!t)#5m
zGs4IAmxZQCWrmGkXZ-}xc?KU@M}|25y7#*!%l49LmGlC652UxNKpWKr6%59b@Grqf
z{hVhj!Il^}jb@*8MYrRrUF3?1>?a@;j{M38@XQl!F=q@`w9rBN48=L-@$?c(spew&
zbioy%%f&UMT0UaRSwX$9)%2S$?|uV=&~lK`(DHB`l}*cuKIOpo`L*EntcyNS+Stk#
z`1f1ek#F^%Pi1>|EJVV|j^A0<nqA8W9FEIG&Uo<fAR{Tm3NJy(Ij@)^3$2t;_;`C1
zS_Bdf@E|A3b_Z;cAxXg5dD!Z0VDsqc!$-!wO2g(NHo_VQF+SWhGrGF$LtzUIW>CAI
zmgn-}7vlXe!N)=eOE~}fSl$Na*p$67dbU2jjSXn?w{O(V^1Y(6KB=>JjFo$E;sU*>
zZ*7FP@T`69iw8ZUvR*u+XAoCgWH8dj+QVxAzwiy`dv2yNWMtpG0cg<shJ*BSyZmpF
zJomfv>cC_rj!VC04YCeL_r6hUkA`?8OBB_vN#tx#Y7bKb{pPz<*^lLZ`{SgT#d?n3
zMIdlRXexClXrB6N<cVb(6(CElzCyits~nVe9xo7sR1@}%PR&DHdLnniGvEUqzB{%1
zfj_x?r^UgfhMVqae)_2;+sd{1P{I=!C4)0lJ@AwWsgb*$d5iH?$zPLqxC=Q#&Cp`9
zt2|YmE@JeFxEWJIEaGh<ta(y&fCkOV#ILx^bC@%Ydn~4P%SVBf$NAp|n>I}PGxWa|
zzukNy|Dv<qZGUhKJeT-z-*F-kM@&&xDT2>v1r*~u1!yoyF)>wXKok0|Xc&MqFi_9x
zh;fGS{)CP@v>O{3bfhf(PM`31;&}(RbP^onoZ}l7d(qP(nJyifAW3RMhgXY%FDZr@
z8>Qnx;|p4prY&NjYe`{%7uo^M<WHcU`0ILfq*R|LvYKFB?7>j#Uy<t}-CchX8WE(7
zD=;5JMHjzhGt+j@@GxmcV5y97W47$H9kk<+V|9EU%DK`&WMO6L8Q$?~YGmlYJv`i=
z>MuTDhaT4|R<vyyWMy`=vT!?A1YTDorMukLNeeox9{f2CO9NqCEA1yr<C<haFxA3?
zM_iV;$4u@`)@1A7;rbFIH+c33f#FKov--{Yi^1YgL1LEtr^7T$tgATDT#D6+8jK^Z
zkh&UGOLT%@{D^_nq$6Kf>zT8E2<z3iNCDGC=R<I=Vz_}nBw<{A!3OM5RtB+!A<U#*
zGV3&8IR32wj~`rPPURG$i?H2&0Fxc62p^o^Zem!Y2!#EEydWaz`hHN|Jo_l#jNBpt
zB;y?uz@KXrG!WC=Q>4g^`Ck+k;M0!Zt9nyjrfF_lC&IbOTW2%;uPKSVjg=86@=j_R
zwhV!4NqAF0(1E>*iC+k%8x`ZEwd1_vOoKfC*eyU7My~}U{l_8ruOUW|OR{%0X}^PW
z>u1urfq?&}d5SE1g->J#Xfd6#jwF42ed@{&6Z2q{+O#23Q4k*+hC|sh<Z?fBB(y}v
z%F%B|_tfRa%CbVr6LM3u&>cNHj5N{!Z1=f0HrT~86%0K~q`@>|O(k~;ya?;kyhV`%
z&Suf5iFPQ(xw3-i^DGmIX$fsqQGo@BuxlZ3sFG(Zcb7v2$8capZ3;sg;j!R<_0Vby
zS_2GPvTcWY!c5qu1dRBuMr2x*ydC4b<kNvEIS+`Yey3CoR~tF6&pi(t2)LAsaQ-{%
zH1yp<Mobw>$oO0u;d{YKdRA9<MNbTbeLnu!{}^1tH(jVC!uf(Q6{h1^gnC*ZUds*R
zdV1W)Gae9)167SmBDzDQ+#&f`$n4zv7d49VY8~z1XQ1GYO!0*|aY0j!D(6iA-93en
zg;kM3N8Xu%17{)oYcYr*b8cW;%ha5$9Tci$*5ipOYpP`J>nnMr&}1Ud{EvL8hlP_A
zyB1X5V{n8EyI+y03;*sVSTQFQS}*XgxSvx5^S&y@osx{dfO`&&+`1iP$HxB)P#tRa
zyL|6pTBGyt$6DyE&o@5RI{V*X6lQF&SU5t~0FVNSx&FA7=5Cwu$}+a7Gy{PaE}bA|
z_<Sm|u{AKCJiUM^d*r6Xo8AT{8+1U_F5B3z;bJH0>XM<<s%94|bJ_<3U4K|C0l0B6
zOlPr3^ImnJzj1s}=*lh`DhKAng|~Joam}&h4UJfNMzlkM%VjtvYQ>6vtU3t9B7Z8w
zkXYk6C1etYl(a^XK<VrV4%GW_P#UW2OJ!w#|AGOS#R%`G-4t_0UWWOOCHMJIX3{CM
z2#Jt>hGL*ch_r45i`&l^cE0jVE>JhAuSFS2zWe8Z`FOb}H*4k4?L)pX!?7Q=LKW&)
z@$=X=mFvCjx~SyulSE#bLH_ZRfULNH6*=8#I#*wJA6~>?K^K^6t5dhI{s#G|g?|xD
z5??Szl(WXM2Chu~rz%8RN_$%?Ug0x`Z}s6eY{nL1zY7rsT$yqfo2+NM!1PZ9@LOF>
z!w6otgEVfllA3~N%ngFZz!2<l*g8bN7dN)*@)9(KtpPCJ8LTcUG=5#MVo&oA1o?wH
z@{40UKP#F#Tj@=D`9neYENvU?!Dh2$dXL1=;nft)7|;9L>d&(On{w=@a;&rT7xm~@
zegFVszqmLCVXmPpxsSgZJU113*sC(NeNV-PviRB>2w#mXC?2u)7sWoMN3{Q~wP%<<
zSg%ItQD>h>Q)T;1rhu~9G2edwr20L<?C94g@rWBj8W0S78yG#ixHu&tVlQe8*zkIb
zWDx1a_u0X;S$jea#n}C!33OCCc{vL8eJcM>gRDFUCTN-P1+LRUX&fV;M7Dq`WB3dH
z-@(4hLC5<sQi3BVZvH=mJS1&WBW9vtP+fTTk98yHh;CMSdi;sXO^If3+$n?|KCeKH
zU)sZ#(X!mFgqF&`E;D=U&7k*U$7ZQ|i(W!O*H}Q+(H1^L*tO^TvsI6zJy?bczAQp$
zl3?~z1$mrBD9E2m4~Z1*OwUm8mVqL0hc?2dxhG5xZ-4?>z|nJMBnM+eCpSz`cCNZ2
zJsWd#(6YT8o&20L@5X1#aEb3cVZ@7oBIckljSNdvH43*N>M~7+tQ}7#syL^5c>WIn
zW<Z(0ptCV-1l{3&-x7Xdbi=c)*Fvigcp`U0m}D@^cs_iKaTkbLHx7d+62A}E9lnSx
zJM!xN1=byfGhJTlWwxHkv63e7#}K%q?L#2!J{BLPNZfLyIV$Iw6FBE3x}D_dR6)Zb
zfS%X+O+H2E64{HXC*?x{+?^LW%mV<&v#uGL84S!tVIX8<1r|HPD~{%KoY$~8GS?c+
zAZ<0&4y_-Vempe1frUWp5m@)VUMl26B(Z{~0)Rx36b6IBq6bk1M{eb-IoyOD0lx+&
zSNnc|27p~Rlhz>tQu{=C5BZLqRH;KDd#oepEd4mF$&C}8rw)=m^$NE4yi1)~?YO?N
zA1Lktb?mGuCBHA4kD`I~YEGw(tPd*~g$PG1#FI2X1G-Xz!=ZBz4g={n^a*w268eTZ
zm(+;(-j-ImwD4gg4Z49X$&FRK=UDKsjpS#*q;f1_MgzlNVYgw(Z54~DTx3)anF9A7
z!y*@cbl$F^jfjFEVN=XtWR26Nzyt5danS&e`$9{Ld*+~jmVu^~Y^#1etrH2pumHs4
zvd_z}_#vxG(k%b@hd+G&hiwmABv(&f?qlq+@JXD`#)-$gPdlA6QJz5av}*XAkwAh5
zX-n0JT`|&!jk{(gsOhKG{o>W((e+h+Ye>Mp_~z=$JST~@@9DQ?aZ65$#K|NgzE4xb
z91bARV)y}d>!yMsoPfX?v-SEReAi|9H8l!7cQZ?dUo4c3J0mk`jjpod3PDTs5)r2g
zi0QUT$@>FcTEjJ1Mx0>G#vg_a#T|qlplGcPY?BHCQC<|yFOxq!|IDwe>cKl@ZPxX^
zVwjyZ{T3@@#FD%KgG>2hA_n@(E3$9l^kul+UZa!)dyE}Z9MtYKFwfL`Wvo<UPYa?a
z6U9L40=_e}@1Y#`kf{c+e-CYx5bK4aqtSPxpqXE!x2<Z2%|NkMoSDbYfwA+@EAe+;
z1=~2^ZVKK+xNhEp-S0MS!iLOtw1G1<%|PuilQizNt<dBP-?iSkZ75=57n;5m-}{;z
z`$?P_D)tv2vS)Lod92pmey_+Lhz>z1Z$9qGIwGEoT(zz2S7g;=0ifS{t0NFQ-Xd&J
zqS|j^EA3(Y9R=ZmeAiK5g(9{~n2o3XhW0K0aS-KTWzZ2!Y1Qj`3-e_MZRhcHWC4YB
zJEoCFW+H-T_lRPrVe;T_%MPL@OrpAK%$zi8hkbuwmgFWKW|H|uI=#iUc{l4*)|nyF
z2C9ye#Ta9>a4v+Grqdy^TZ+2uE5}B4z(f>jP96NzEA+=Fy5O_{N=AHQ?coL1_uo6z
zy~ny6-V5$hu<rz<rn~Czl+<m%ELj}vqn2LdOm=i8OI_*Nf#2hGuaq4SdxBZ=wH+P*
z+Ye__sU{o=?jJ;<g7L1cu+WegZRqp8y->BHfr!U*2ig&hPeiX`_k8U7KI=amW$X&r
zS=>)L5!cL1gzI52`=ns`To5F;??{M*)k?<6l;upMjTB}GbpWGjxnrXb%Fo$J)MQZ6
zf-n>dW#GSLOO!a-aD@looC=NAnUtQWgC0d+SbkS#cb6^Qws*T?3M91+Ien<Nn0kUt
zJ|eZ{{d<fRLbE|jA}2Ka<mR1w-pST<At14y>V_Yg$f^%(4yHUd&hCvf(DZCJAOlm3
zA)b##s6Ud{5{xKjfs>ibMiuVWQ9+#s*^Gc1Pd(<G9E4ud8I)|FeKTbi7^@(nDmD~~
zg@#C)!@{31nBVi#sGY3xqFuk7=p{<$lPQf5uB2*dHf|v2yfC)9`Fxs>Qa0NP?O}!;
zw33GFo%JKtVKWJQ9033q1)X`I<34$Qnm$(AGAjlLbW27j{(?#j>|iP)Qt%xKd&-<C
zY{!kl)s(la&6Fbwz1xH^0iYubn*|7{p)wW{#LFl9Ri}s&x7xNx$kC!Adgzd)P$qS&
z!PiWWa=JpJ;?Y&ADOpyYS^TpF(92C`CYW5qn{_aPHQLDe5-_Z?@|Qhv?ue~|x<bhg
zs6^XvLoB_kqA8N(<G>2zaS3O^;5;57PjWj#S3~qNq2LXTq1`NYy+y7uq|-YrqANOf
zxxy?(6rn)bN{&&>fu6EYz^Wi#kcZQzrd-i;f&rCFQ(&zzLAit(**eig5IFC!H&wWX
zHCLdwoY>E<CRD%8+BD6q0xX{M0&<ntSgQwx*|H;EM-D|hJ0urT9Br#H0dFcrlg0Q@
z3xorbc4hmx)7{6nQt#dB{`6U9iT6fJC789%_Ma+R>I#hEhL0Y2`;9d$(ejLUR~Ine
zYeAwL5y06P5fS^<i21UtMs3g`SnsVBr*F3Z^W)y$cCzaR1|)2<$e{OstciCU%HNKq
zM1*i+8Cnu&ZK#!SL%QxxsX7i0yi`T2&p@2|7%aMQtw?z~(C$Xhj>|s;M?B)RE&M!O
zVO}FB(rWo+)BxtsL&_0J1UJ-OJ{7afb9nqD-0spbFGh=*AKWV-@L^Ax64vVVXkjAj
z=fPgz93ULT(x&x|N5Daljtk9LZKeI<^)>$Avu6^%Iu5TaK-^w+PKQ<cuO(vifgt~9
z#(syO1==v?t?1H*@m)*lrSxYwgrw{4`K38jzOAB456zqC*r~pG*7S9{v2iGH#cTi?
zqBP*g5zTz=5ZYU%;U1O6B)>&v7V!mv^De#5OE2&Y8w%twQBtYOG`r8HP6WCl;eLr*
zl#`sT(~~w3z|&{XDSZqbZH-H#pAy_{5$g+<V#$TWMIF!63W$IlpHg*_X$0K>4RefD
zV`hl_KAqy}KRQ6VLO}fa0Px>7?eA@eV?gsC5lCqiD7`5iK<neBU76+;!^Z){APSpP
z8PeCi_+ER0=tx;k65kxZCRz3tMnjxEDI6IyeB8nCP04zI{kj7M?glpZ^+Ekq`Nos0
z1EO8g8`B9wkZD3r;@F51ZIM+4@)vNLp;n;~y!BSJW9mu%yiQ1br)bM^Vh;7(GO>q<
zbz83^>;;NHfz(|*PJLEnw|vZOqF@Q{J>ynM`1TW_W2pFrN?4nY$9iqjSg<_{`iG3z
z({O3{)R8K8d+gf^R8YQwNJfF;86W(@98s@cqm}vm8{@n~+I2d8NSC#>Ovxa(CZ<#I
zpo~Q33=_SF<u@&Je{Z8#2gx(%dqx_Csex-VT4Ar%-j}TeN#+zKaP+h9RwYVo@4`=b
zB5LG@mL||c(F8Kv)Jm}6GMGBDOi(WM5PwN$0quP}J>A<og-=JB|2mM)eThj(bs6P@
z*Qvgk0$#$xU}%&ykDI-1y6^l21WZeP3dgS#kM=;vj*C0yWYr0?Ir1Wi<1XQdHu|{l
zm^y5W%3MK)tK?r~%J%kllCQqfbJ8ic0co$m%Vi&VJaXnG<*;9ihe=IoTMbk5`RMqW
z`8rY2I8eGihX>TT?_7}q+1+<)RWj{AbBIvP4hd-ONVRa0h2U_ZEWn?Jjlf!ujZQuI
zkQU7lrm4<GGD#0~Es2*oFfPiS6l6Wc1UTaH_Y@e|)yWY6uF+NUsU%@9%!>1NI&NpB
zKR@|E8JL(iQtjo^hB0p&DWlI^6h$vWZ*15K7Ph7@=gER~k1s$}X-u+s!NCZSK?ypN
zC8!oe&|vo_CL`M>V2?Yyj6}y5KJBkqFWw&Te>@O&syS1Tr8Jeo2mf~El&AuuXUoao
zfmo9g-j!AfkWisgNpM)hY9#@*eW)>z$M&Po*zJdXiPP(qL}rCO+NB4|66<xz%A1_A
zk;0goct3k2Gh!Yh{MWcJ*u0M1Vfq=^*u35QbT9T22!o*d?}DwLH-5GCx2cP9+fodu
zO%;-*=wiN#E~HR5VR%qBAdPl%tbjHGGEkWJ1)Kdg`m0Hy)rnnxqKF~rh9w8d0lJDF
z!nysoKZR4{Eqa$iRC0rH2b2pt`cFVthE+9$ZA2VAWNRgobDeyWd}q%0Bn#s_AAQJ3
zq{0K9K{y49E}kUw<rFtX!`KfN1s*Cqv$tC~lt3}A2_f+p@$wmUh1RvKNWE654p|pi
zyx$42Vn(|bDN^pzX*Y5d?*LM1S?8N!i(3gjL#M}<eW`WU&>5hFo{)ZedgYnZmboj-
z`D5?sIN>+ylmabPUctz50Eb4)oi_e1)73*fgZc+{QAXYL#I<{P{<m0pGiz9Z16Q6U
z&o}Ni-L7PxZbpRqQV~#oFDZ{Hw_z^#;MAt%WH6!>X=S1VPU*@M85MM`ET{L`a3t`0
zJHm$$();)9;fRrh)=^wIk0d<5yu3o+0%ci{a7W1vN3bZw$%8veL1V{EY{P=j8e8yf
z2_~&{(qR1IlobMlEqS%yWO$~JUI4&Ydgk=EF{w|vI(j=hk59z1;4FUxk8dRMau%5G
z_~S8yW@n4p5VV3A((*dFzJ4i|H99xFehG6xP|z|&2a6m;NhTCLl?8FHu~^TLRkAh5
zWVqw&U;q%~ivlG3q3F55c6jhPEYqaMy1F=|cUTL)69j`P8}B%(#~6ATT<uR71sQ~W
zc4j9ZQKAZjI-QmeWN0B!x9nlxp5B3>-^c|S-d?3*Ry_*pOd%jHy4_*(DwxI1?Y_JG
zgxaFccjUzrJ9Cij-A4~y5xoa~VVS=J!PbAN(1H@`SI{8ghz-#f%P90}@A)ZrNgNN?
zzm>sa97bm8l;%~<x7<_YD?!9}&{_>RXNpdptQLfgdtnKNTZMNtxwJGcE&~^=n{kW4
zI?(!JCI`0b=A|{jT9+|7h^^a}ETpbmm)3@A*bCQOD>ip1??b}Io=0V4e{RJ-92Xz`
z49byIwXtj`;iPG37`Wzn=~H6b=P@uHeYPcSmk)fuf4nQimXY;mZw>L5ACRUjEINB{
zrUSem37BQTKtfw9kFhqa+V!VQk`H$|MId6?FB5z7lHb)<pt;xT+Gun9C??Y94!e}z
z11nFcCv>A^2&J9J$Bhnr>&Y*ZBOFJoUFD|A(huI#l@aUs$tNLdZSjj1WjrTObo|U`
zv~kqF{%kg$5ez$_wg<{$$kBU}xn~rl?g>8~GcuC=`mq@?9|`~=OBI*y9yI)zWmAm@
z4d^ymTj<xH_N;qdqy_N1gFrI&ixf>>EZRhgpS2WZK2MU9kGZIuMnasH<-D^(9PfC1
z*P|Qofuqz%<M7o%7bjq*r+1|m7dCme542UsUgF0WoDk>ej<BIdTDz5Q$$@BBf0CRo
zDiS<N5}^Z65pn5U==|vL=*5X28=o!=5B7L3ewahHPs6yWmu2}u?z1K#_VN-c;GNbk
zOk5Jf;tiGKa+c;r1Pq9$-#aN&e>!<b{b;`72W|DG)9d+$5y-<&d?9zN|Jts9^PN0{
zSXPWf>LC41mfA{=YbTq(4CZN-6-_UWgf!=5_wqFr?*{LqEjqI=&h)-F{?W|99hW3l
zt4vwGOzxW>tuE1JdJGiQ(p)}*9`8(<g(sIOaXn12^{e3f4-tITyoD4aXR<BZN1&x`
zZHdd+@+KSd71<_dzUWY#!sNcp$H^$KMvG}$$=&94a<i1%WXL9gCI-$=F)k^cOJVY_
z2%yQLkj&<_)Z<bnf7o!6j+(Msa<WQutrMNzqa#sKZwnyM%1flndO5o(r_R%wX>*F&
z*d)!Tb+X?wY8q2(m5B%bvl3MO>KUyl?iW6(^Ktg9Dd*$`)fW>ezb1g{HgO&<Y@;Z@
zPxq74-|s!Q<GP|_Vt3|I&dm{l+4#gt{q38R%fGekxLW09`_r@wz?;{{hu2E5j8Apg
zfa}+QQ&jnlY3V^~m;y#CAAXlt*(KS7CG{M}UAgQCm`!DDGoh0ux!R{myvZpLh99vh
zM{Xu1OO4?TtkNYn8M)jn@~OF6JjZM-ux$@*wWD-8y-D%v1v*8rAg~DvXi_J-W~~j;
z$A3RL1cV<lcKAn(jZMoG`!iJv4-58_*RcGvbaaP1I^A}jqqXXxV3PpXvVnU#x{5nN
z{%*rY?ug${&gem69@q=s<#Km9_hqn>vgEAxlRE?%9iD~h9Jn%`v5wIjIv>ep7B#aO
zBfkzYzdHx@VMGJ;jINv?VIq9K|2i*thGn78OH70VG7!=}fl?g4kLi#WfDq+IGekt}
z&!%qN<qJJ`wPCKP8<-3eu!9nxOw8;P3~d-H>wdKf$i4H3;~>Ze6B0rAKA6<-waouP
zkeUYPDlFQX3tb?z)A2eI{U5tJcuh|@lT=`d6Pk$Myc&)RCiiJQ^ecG-rfd}S+b<dp
zAEwp{9t8;b<B8b#PyFIufJN1MO#_WmC;l549>d{A8)W#*ufinDwh~8&c&-@S;TmQ@
z{+_n@oj@c@d3(c9mSmTU?82fSmDRX*m(Nh{8S>vCHHmY3&5UUpKb|nrx`9Va5ts<5
zYJ93t8doUl89l;?OyS)Q(m!W7LY-$wE-PtqoAp}V#*fj^6&X`#yA@?^b758w{Pb+H
z3rTYkfmAouV$}4ufAiwScB^)9NHv82cEWzP&ShI-eQScFho4@xNFsvBRRLWsbv0p<
zFdonyrCuh+1MgxWM!``n<~VS{6a6F$ISdoKG4N;}-pl&ln2#0}DnC2nVY{H-u_o3o
ziL)Q6$WNcTBvvH{_L12aZ|ttryX@VK>8qeA!A7y|1xlcVHs@2Pt(#G%m{#TE_TRi1
zEiKqgL|wd>E(3BaH@0x0UfrO$aS)q*-*R#T8VaVyS+&;VH=_EBe|08yqp|DO2JUjs
z_1q+GF^hp+$%Og|>FJnvwphcE&O(;td<LMmy-3(i+m9e}G#|I`81y<`HeP;l{jn)t
z<JJ$lFs}8gi;cEDN#drf7=P&F4OQ!TD>c8t%(nTzOJ+;G`h=|@hWn>rOmn>P3X9sZ
z(DfdB(S5A|QfTs3ERmQ+W1|x+AMuz+zxhbE>{xdCwiU0_fK4`9JtkF#NfbxTuqk`I
z?pAbZtea;aIov{cZab#bRSqadVbPDVtWIcgQ=%Q8YCPcY5u0Pk96wGf+WNY@jjk>Z
z<HHf`2`vdh8r#@U%Y6KCnEMw*sDMCT7{V>v{d}YgRX98<Yeo0f9r$4)f5TVIAzX~;
z-oC|{CQ2n_H-EWj*(ev=@i`2ydr`@=C<(|4+T_S`FIpO}C-L^4?z6E+gs`_8^}^Y`
z1|_H+C^8b)u0MXZ0o{v7b=ljf`^g5K@8%To7P_WQ()4@^wP4k!zpbApa#JB*d)|$(
zw?N`q0XmDT#9(&L?m;~#BVQ-hnp^s|kjQX#zw`-X1&{51w>~4BhqLMS$_#O~T@gw*
zgxQ@~&M)51GG{&;Os`Ii7BawKo$Yn;!7lRl&i6LaA039QM|KuiH@_=HNiNVWPU1&y
z59oZqTI9qJX}Fzl_0IN~nWGJ7{e@3b6wfe0eERq&4iz|E&1d<<b8iLlB6VOU!fH&r
zVj#ovDdUNe!_e*;LC@@dZCh?PsVen<6~hwtQD@nQo|aF4C%VpK2p5^C3a80T3|ZR(
zkm`KPWV_b6r0`Gx%jmPbSAmsM9K*s8B42=<nbWi6%Op&0%PjxuuB@6DB=_65Jxq%z
z5t-kMjsm-{d|8+;W7eR%l|ipL)C}?Ci~}kGDjzZdq?PAR@gNWr`{B*1GxQ1|=+i+y
zj+YV#IvrVc3V(aSt?M1eWN&8=N=Hn?zUmbX*l1hPI&B&%eQ&5O@gndnw}HR?w{K3a
z(BIw~Z===<|6Hj>`1;f~w50oJ7+YEB^)JbHg~B2>#Fe#OZe5|w#{y6pPYp?j<6v(N
z2rc(ES$1T_#gkd{s=F2d{|<sx+(bl1eG9%NCgB^4m3eD2vUDV04S@{w74u4pYTanF
ziaS4oGq2&walXnt)&7bQ8y{F(jh9ysev|y1yi?jE%kB#glrXj*W&qMjK0z~$-K+4J
zyBi|+FSuNxUjBKNK20*u2f0-`?|BH$gChvH&VJivTIad#A~Zud?ZEU4PWBip7CDCX
z3z2(|EKVCVb5s`hXhBYCkJNjnyGjC$*1_Srn8CwbqOCNX?JS3!B9v4Y$rj>!_VB3G
zqC}f^6zTYh{=D0)?1g>G6z-=#;oOO+e?1c|T_E@UHriJsAXp$7w(OIW0+luh0?q!6
z%N5iS{13(mW-c!<Eo^#=MsyTb!0%ho3T1T>hxYKo$}V?{%csI&7t9wplc%$w+e<?j
zp6Sjnb1#H<AB0^7!JQDI=XPET@w4y7h}?<6tRsFe#;(UXR>t2~<jX)gCFf=w#j~U3
zU+14t?S|ZEWjphgPALXtz^qn6%vbxRnA|fq?~JVTHm_SfKD67@O=4yX6?SrcBnbm#
zY-}f5d~$UH1omVxm8@e>hL?#-3IaLOFGr(A1@+O&U1a5=W^=q<5-wGhc(K^Kw~V6;
z5NvAlyPDuKeQ0Wv8HxXk%c}bRJtLum)J%3#b8%TMoA9Wd&G?E%A}l<$L*AdlCb_KH
z`EgoPSR=k74ow#h;bj9A`Ry2LFB0eAK*^{0D!1lt)g_2L4N-SWr7J}}J|#UdwEO%s
z814q+?39~k6sDF0El_gZf<FSoA5OgMs4**zH*&^=bBAbUlKl%?>tf>$OZYG21>M4%
z1o_yP{6Yn<2cV~0cZe?oPUMD(FzAjm8kN%Vn6BoKPfBy_T&9{so{sHJvH$X1Eme1C
z2A`Yz{H9~@X%%N<H=VF9IVTC_`rz@4t$IVRW+|Fxf*c2d_HMEqSgoCWROc9n$Ceom
z1#vrlQkT<ARslK!KBRc$j<>P^8hl9`OC%GoR?FV2Uy>;6%oGug)+n>Ce#Bs@@+9dz
zm-_tX0A=OY8+&n3aF`Ua1)Hy1!W(eup_Rb7XgX#26P@9@-QYSM;99P4f!Es#e>d@T
z6A4GD(=!@Qax5jg5f@QT_>rSZFYkbFH4soSg&aw`=f96c5MCecv}#4xfipzJj7xTX
z8Hzga+g+84*(rWcl1uSlO_RnzwA^rp_xurWxJxNOdMO*8+)^kY=p{zImXf~lE*pI?
zS6h|?vxsKVq3G(pT3;Rgl|v<pFzQs0XU^+R#)p3!swbUy<{Xr-L4XV$l<`^ALAfbE
zu;&hZ$qHBx)j&%&>s*t$aHn%E@?wedCO9Rt=B#MM?Kp9{{mH7y(->-N2<p>Zk&V`U
z?KA>rq51+o8Al`X@2l@z;LkycVN>pFC4+pNY?Y?`1Ycc}`rU#Z7wHf!nWJw0({j@#
zTmm;+ht`3Ac;IzLRSJFJR(Z|>$(RE<OFY-+TaWb^*OLSHH86u(Dv7r8X#d%+4MZYG
z>^vQ)LFg(3gX5JODi1q0`L$d>Y|bP<iDZyUNgs-ch0UZFj3wj^@Z)%h*kDPhL@U(7
zFXnJ?1j^n$Lkuzzf5oAHGV!`9M<~Lg9KxX}#v8Fw+=and@yfrM8;Qdhx#0&L^gCjB
zK+D7dmm2ulsxbQ*y*)^_^YM1Xl<ktl3*cey1+URTy@f#o5P(?~(YOY4g(iui)PuYp
z=3~4=caq~pSS!w=5a6OfkW}+AVSnCq>YPw&hjP~rsG;o|86?rz_zFd@7-6rdhmy)5
zrt(*E3eiqHVpC+y$?^26A+CG>B-6WcJl!<o)8V7$T6j)ux*a=OGvl8+B|aw1sscoa
ztpo`0#lbPEi?Kd68t^AlsdMFo$<$O6U87n3>@HNQ2i3|BbO^-8MTe~rr<j?$wPh0y
zSvl2NJnb2vX8*oR=cnuit&j|FH~3Vq?&xBrJfu@r1W45J?vM0VEieKQQ0M6=3s-GR
z8nI2JHG6EwIY-nBvLDJ4tp{3|z>h;&H*fLrI@Ebdj7j72y2|eJa#5e_nrryn=KL+@
zBYU+hn)IXZCHo{fLZ!qZ5FSIDv~9}Ok*`Nw!^k%1&EtCXm|jKoZdLHp#wt8c-Eg2(
zZ1$7nT6<X=H`2h1bj`^AA`wE5a|iG8yXbK0TAdwo<9MK;)h^apRlh7#G|3HA#tB6P
z9cIe9BP;Ny^3W&AdcN>0OO?<6G?uE9T(uY~d)$%3saxIsWbglD))_h>{<<ms6KqO9
zFKp>k_owx%ov^VESayzKR~eQS{4@E~buU!o;C~|QH-))x^rRSf@~Li^>s8uVv=L2h
zo3^`rs=IutP2(MJg6$$+NNpeM3cz-<>ZbLTkxLO3EgB}aNqE?!eBPse?rq=p=-9``
zJ?6I__f>EEr$;Tgu{*@qIH5=U#GQmjcXnuZTSc)O`VL3c`>2<&7#mxqBBli0IcEg<
zs^$1;AlNJ5Y~g-j@3FCWWSrS)HBk8(_cd_;=7T|Sjexx!g3n8$5UgEYm2?y;$56)W
z(oD{3FLx~$|59G=D0vV0>Oh05wrz)^vupw3%4BO{klQrM{aMZM<zpGr4Y(<O+NM8U
zmmOZ3SjB~JEgvlAbCe-k<pA7*OjIvU4v$YRx7(058Mqi&&5+_y-6HDr0msj(%#CLg
zOjR^4i>Kxk*Lkq8u16}Dy>~knE$pE2DyQRLa)kuYbX_>7I4}wo=Y(xaPS@1VKN#tn
z&xhKx(4Dd{q(m#jm^T@`Qv2v4ZbBw+5z5Avq+UnZEv#z{J76u$1%?G>iuya=@6Dq<
zjt__SgkMP#+-L7_v5PFc;*pcUM?^|&1hTV6XXsQod97;;Oc+J?Si}~dXONB7Tpa)!
zgIQH^Xscy>^MQ5PJgu1y(nPpYoD$|*yE31MktHk=%_X~D-c)_<1@@UxzU?N?fFM_{
z=rwT$PS(Y5`*=UNxXarU@K_wc+41?|5x(?2_&4#xe@t+Jc63m8bcHX;$6+13l}`Dg
z;cF9@e7*&PPmr5(Ud!zfIzt`jLcE!##Rs;siJxI!pc}B*e?VYE?>F2UOkI09r8F$r
zbbwRBTTJ7I8$RwK1i<&t<9ISC(A%-Te7o2;@xFx_Hc<kR9$N=wJN=;_yq$XT-IlC9
ze5VAyqUu?JRjYr6QuwcN_0^Yx8jn@1lYF+f_jy=}sjw#R@=x-#rW@6)(@l+@*9=qp
z->|U0)`@m?Oh8Ws1?=>#8>jQQ!TqW2%i}^W3?WDQ(~!u<u19T;|27C%3maqUV@Qz5
zy~#pDT4Yq+HL{t+1K3ywzCG3;r=~0FsM<dDGfuMNje%3nWny5Wb_eJ4N)!zcZqhNk
zn$8?HtNmGJZNGnSScCCueTp!j(#^d<5+%8j(*o>MepxH2%ojJ)yuM>W4V5sd4@-6g
zD<1bF0FlpNS>tZRxf#b<ljc*Qzj89kG4~EZm)bzASq0F@+^d%MAoL@3o^(!>2;G|c
zZO72WSgW<6x^1K0*;0Fn@7$?26GDx7+J16aEdPN!NtB!W8OdV&+@5l{bYqCLjHV%l
zn`t@vK(}85x#M-%=%snHbo|$Gbh7{_vgi<+38*1X%PR-oQ?_HC5Wa+m<x_O?Hw*(E
z`b`iJ(-<zza-J2xvgOTV8~z{TFn(4TJhp4}S>0&1Zz8Rx`OV<)rlw4<NBrnjS^#8Z
z07xahiTGN3;`Rs~vK5G8F`dd!Q-Rb`D2ExcTUmvjoH$v{Oc<6V%A<**gwwDVX3O~!
zWZ&Cn_IAGf*F{m`{9_iHXEn+_$PeEMBOx*Nd(5rOoaB3U$#pTM?)oJhDY+PlZGpO&
zvrb;(w`<M@r7Dm`u~mbQ1gOdp+t;y9?9hPW7&}-i{1vZuBAyilxvEQOW74rTpDBO<
z%7-B~wN*ued!JVomCVbkh`oVIUGN@s<CB<rz7h}Vc3zl#RO~8td2Bj8HZS*t|LYXo
zb`yAo_l&0rkx(GjUUMKHJeSN?L=<Si<D;Qjx}+<{ZuI`ZH=qe=yG!nw8>Dj#RjP6n
z-Wgg+fm`f1RkzwDDM@S^6*OGVfQgLowuwSY<Z^Q_azZpSI_s>Fup~-SkC3!ut|aIR
zTUDaJ8wM*v(h}OGyY1h<hk=gNG8YkZxE-x7TbqWkyLzNP)%ZehJ7#m?={P$#(9J6I
z!1wJI69na6oBQP{alA;kU)WvN+fQ^PuiFVvI7FMr+gz?pF?^Wf-O>Y!1~a^StWJ8n
zcI5(+yRz(dRj{*r1laD%qTAg;DT9F7t5vVE%na73%I7A_X=F!nR`?xavlKcfslEx6
zx_8eMHF^4T;L2HAC@S4mtZC&A?%z^vCe=XE<De(2F|$HJX^fev<HknUkedprQjKwx
z)zjMWK9G)JWABS4G<P!8Ed5AV4%X;455xB6_%&gA3sWVDV-XU`^At%*7Dv29@veMG
zZgNgO=Et&oLC9F~#?gIicDs6D5U)Azf^@<Mb3HdAW$$n>v+Q&(!;Jcdcxw})%*vPK
zV7KFF1v8<tzPdwEq#VcDZJc+l*O8kry-EDfmP7M#g#Y+Zng1A8+mbNFo?_}Sb=_t~
zhB`oPnYII9#QzS0_Zwt(-O;Az=g#ghXPN>sD4yA?Go=Y0w>@vb`WP05Gy@gCU{>`&
zf!pJ;*+q%aD5(Py5z1R$OfJ!<3$I6#AuOP^^RmfUzm<4w1C7o?i)TM%RY_w&1pgZI
z(VTx{qN0hNrqhRXS(6Su9@~Tkyl}m(x=WVUTmEWES~f#pnl|aoEx9`3R?4pk0s>5j
z9WEhO#vI^yO2%PbtHbxi37V!N=Sk-gf%4wPnkw<rY=cZsv*@w=%%(xIS;`fPebvj2
zyc2iCP(iyR8q+b7^nuc8m&UTh8xJc`OBR3VI$e=uQUQS^M3KXMLWnzI({Pj>aeF2q
z(n*NGI0ZqDheY-g;3o_j^qWb3yQs|h4@MiKaCw}Mnzv}<P9$f}k3SjGae)falYNHp
zcH0))#_IN$fnvD)N*E@V0U^kDQ$N^GR>KJj6TIM=fh+ubH9RRqaP)mFn0k|nknrFp
zG;~0;Z;S_<9yEe#N^JSVVTNKXbZh0B-CZtZ2wI6KJ@wr)PtCL@X|{1uCUG_G8#|BD
zltzoH#&ekTKFujNYV_D*Q8{Ib)sTOC{=YsG)nzfp_)~uT`QDyNjU)+ze8r_hXE7|;
z3N=a$G4h>LOsF#ht6-SQJPH|+4lLj4bg9AAAJ7}7EWVI+V=ucFg(fd1Rmw^47I;}T
zP!nxnWRWsZ*z#H6QdL<C$fi*Erz2b*#I`WJLT=Q%OX-f^Q8{0#Oe@v$seciWbEB?H
zUC0%nINI9el0g!`5v=YoMZVprsiKluT3HRWdPK3Z*o83#${LBUMKAG$HkXG+TMMo%
z{<D$J97#n)hfrQj$9PhebCM7%ml>E=G9yxqfTI)?n9`Mr)k_X!le5I?(92D8LYS~?
zzCclEbtL+nh&ozlHdM{DoFu34JNuZTk-RTgwpNt$H&s$n>{2XF;Uh$DG&dU#uSEoI
zDt6Iu7z5vttDv_Xtij-_JY#&2^wS%9bun7zzO@~1a(%BZE@=b-dmCR{9{BbWV;H;o
zdwFaF`eQ6mSpmHU{>!t?9Qrt*<JJcKu@VTNi)x7!wpTU#Qx)+<vw-YIu}9f?)r#s%
zZO{MA!ffXk^g!Y(-y?&owUT6buiAc#wAB1Ze$2bSP594kmcCX)HqUp=JJEK;PjJGO
zO?nf1k|Q@~Z*4t!@+A5C<eRf|tL}^g?+|40C|fu6)|PP;NjhCfwm2DPy8u7mve_;p
zCCsZWm(em(%D!XdPtK1wLH+*%P)h>@6aWAK2mk;8ApoR!deOrm004W2000XB003le
zb1!aTZDlTSdF?%GQyWQ=-}x0a^6go|LIc?2@v?>;8RRh$Soi?%#s))(mb!#`-0IeL
zw+!sY{`bpAJ^LYKd+eRNSjBjd)LB_sSy}n2tkNTKm@e+K=w?=k_F+dHCHdmMn57AP
zpA=a%UKVMVcSSCxI5|EX49^E*nr5PqcZEo&;`sbf#L+}1x!l-zR6@49y}h%wyS?+H
z7^d?mS<buSIGOY|9s%S#na!g-kD#X_70X<9#RM96#XJq8Df|tRP=ry=G)Pg*qFm(Z
zw73m2Ne`nU2RvaqS<Yor1O=i((t_k(ESA|K&84`FikX1#@Nc>-#1w`BcxEz_<9l(F
z1xX>pE}&Ut>BlIPA@maz@IUBcoPLx<6Avg!3m7N$OtdWQ0QeDL2^I?(WFksL5Xaay
zk~t6e;>|#upT55MYyWHjOcU?UPXBUzG&mBi{yBVZiT?0N3{T%458uBPN5IvS{_)#$
z(LXs6(B!N?yf_}51D?MgU%U}#gP;3nN8;iX&;l-tcX)X6{^)r4GqpQ@`|jizda&)q
z>1#moc5rt12EOROIzBnR_#5^7`uJivI6v<J3ZOy^{xTR|i1RmyMicdF00Pi|butjI
zPtO2NfA}|X{%&x1+&}38#b<-V3z*)aes_8%4o^W^{^vcQ0vK`Bf7|~VX*i>%>LU*6
zP5<Kj6uLZvft|lUxxfLuK0AFYPEOB}X7T=f0A2Ji`q&sa2h^T-q1^zudWIzThe*)j
z#qsG7;i2P;vp!NW9Q=H8{PSRVIKZZ-1b=aQ27vF+RfDeRpB<lLpQrCH01dQ1C8U65
zIAEN_b(}(=glHI?0TbT#3GZuv7J3^Styb%3crJ#)9H$>XZEQ@lbS{efMU>o#Xue3Z
zLi7`m@}p={0NV<g1>+dj!07_zIEcIAV!6OC-Y4*RV?(t;an$c&X)Gs&c_fnwteoT~
z??qt}2=NHJlY1h%Nzx1!XOZ3SZ3uWN_<AS=m<1o@2p^AN0lyIY;v!qh4S6?_i$WYz
z>p_;K*&a4uWWmim*n>3y#C?=mJ%-moj0!?^9VU5Cf;w<N-$u~A`<%MNu{&Qz^ZBws
zMr~|t9H#R{CiDCP=!YJVk(VuGd8-Qxu($${NgU)kO~aXtNkO!A*S+JU7{K2S^91Gy
z!9=Fu;7z`aL0{msO_y;zf!;vzv^zbTPHY2<8ubAD7bHTVBLy@LCLcgcg}I<sMKq4$
zsJKV9FbQ&0A@^w_6^>Z|>Ii^w{2?ixNt)yZC?*gchS`ITq)-%uB0;et79-O&#rZ5+
zpeB{U1T-Gt$$Hd!csd*ad$u(y>|q*Zc|mxHdXX<dnT6>*0182;BS<cRjF3^BzXy3g
zI(^%RMX@h-T%xL&#;fqWGFWz33=I{${QEM9xf!SsP#^o^=|kKI@Y^{|UXV;=4t9&%
zAD+H_dpg9mdJan;5ItkQ{zT$2mtYw}`XZE5F`5T=(R?{?PvTt32EH;`EHjwCIPdxB
zR-wvgAh#nVuo>Hko{vTwXgy!m3(m%{4?25rG90PNbS1in-&qKMt~@~JkqiH-3HntT
zR!@WnM_*c)3bQ@nGVjz19n2TS{YfyEaobz^z4Lo8?02MW>_Y7eRIV|CqtHog%&StN
zdliI(d=f0=TG$dH2{;6%hmveJdpEF@=K(o6*q@g1DESz~QCRNqT?#r!W~Clq1BzPe
zCrWvts#$PT{+naBC<D+@UdSNC{<T6WcS<Zn{r7OUxMrATsPA!<W>Bbk^k89t%j83n
z-X>mOLn*`lI8S5n#Bf4Svr}-2qNLO>pd9EA9*2XXz-bb<pzP)WaJfKhk$|}<fZIu$
zYy}EClT@VCm?*oQ$plpizJ=ysNYZkfHYi>4#gdy2czZ~hPd?zhNYj%vxmkCD^mHGH
z-5-7s>7<Y_H8CLY5c34oVqQmd55)7Qjkq<x!4IDVg-jg#^?3|O=M<b*us-0wf*V3c
z0{vZLFEysMq^AJQnqjf#iO<*c9q8bs_!6paB)i)S!lcbcmZof0s5QnL@TH}$M8)yZ
zu#b+$T67?=Ah!g3{)r^1A&N4vIbb$G5kSB}9g>R#@yIeJSpYYmkOUutC`K>DBLnf8
z?$)QoAtDQ+T;c=?+tPR&V51i!)B-m-Xw`qV$h$Idt$z{FbY8&23StAcC;sWT`<L-$
z{wg7q;>ZSgL9%fR<cRtG;-1u13|2kIs0f&|Oyu1{PLNk0<o#_5>Iw*>I834QyRkNL
z6eUqH8nts7PrG6hhXa2$d0>u-B$oudEz_V33Va`F#l0`ak6Qrzr(b^g>AxPE??<G@
z_l5gxV}r;b2naLVv=;Z+%f1}n7ZPLLBD?B{tpj{xCW|c!J80mq1u*ywt$|w2x3dWR
zt_1WX#HH+a{KRHHXP-;ciUDnMqX5|V=C5$3$vvNftVQGkP9)RU6-1fC9tcx1aQ1`j
z-q9!^sj>(D5>uMP1VusYQj4)GSTB%r2hmHheYd-fYwQ5t{W$HJXNrA_E|M>RnwUXb
zaunV4NORwRYVbV)gundK5>J4ztUc*?P%<Vg2TT%@J0bdheBF$#7ELZ!cK?U%r(sL{
zK}^an8N%ol0Wv`zK^=3`B)(tGVa3;tDkG7J%Q`N?*q0s)Nr3%<lz6zbBOu;E`<M6-
zdTuo~)T4)G+g>`XtFlcuQr&n=a@5`-@MdBa{TKuq_yKMU=nsa%F_TuJC{<?PLj(Mq
zTLo89501Dm0EdN&a*8dL4pA$ZR|u}!ahk>zUz?zMae7Ny1r}FU<d_s{k6U-i)>f-y
z(KCrYb{G-k#$FucsIkES6%ZB264jp!$>i5Y#-;}zd=vdf>#!KIVg}oT1{|ag(_5_I
z(>R*kgD5I|Jy(zrcTY2ly6BXqR;L5pSI)A&&qQ55+q>#1T3d@{a*yv?ok}akVyjdc
zO=(SX`oNe$v@$h|lsW3#Qs0*B%T*Fvp+%A6iYplZrzEm%BfM4j;AvS@S4b+EjA&Af
z7<7+BP-i_Hz9V{Q1v(@82b+@S-Zo6DO%M4d2in)y*vIvCPaIFhH701TyNEF{BLuZ1
zCm*z}A+g9ok`m=n6E=7XI*rm8lK`_5OJM#KyqhHiCn!cpqjAIVg^m)F8gg<~`(A`c
zB5wjroB+ma8vb?99ljk^#lYKHCE4``4ZQR|f7W6}BTmp_lK?k+9zif#CH<(WYo%)J
zn8M2XQ80cQu6L34&kv7}+octuR)aDzoK5qw(K>MBi_cOYn2D5?F*`#>y;9|O?a1_u
zsqRZ7a@jX-;NKeTvkSMvNX0DGafO$wG|PHgrKBTXJg6gHtf?bB$?lp@%OW2=d+uwC
zuEU`q$s^7NH^BrkShUdsR_iFpCsEV{w?aKJ&{|5WI$TFd@n9<23Dpy7r>?SI+NnaE
zrm>$UbpjWd$q)o0i^k|zC#Lm<oXp^D5E~Td;4X)lHhJ{yxoFRdVv+BC|NWBTduev_
zeI_xDoPS?r&z^tZv04cTWJdUA76(3uw^~Jds*M`Bqjx8(#DhJ{0@SWL)FxKD&06GQ
zJ}_Q0PU|2%d%gyJWkFdnPh>;_H>`2y38>AB9HVsdfJwJ`@leh(DMM{n;J+AVvm}a~
zcF5$-G7d5;U|kBmBbDVzB+3ECI8#dS+(|oZO8a(&?7{2=I*$eBh&(%r=<!o)lt+u+
zsF*BzE%MD}5_%Rfq1^q^5R}_=8r`Wd?lxV<p%Vj-CGJGJ1G96uitDQk_g;zPTIqaS
zv;DMDb{uuEw#{Z80Gfs0_zzuK2N3t84_KB}04{&^wOxfz^aZrPU7?(|sq+zh&tKGf
z;(A_`*WFWewx~tP-A2M>(pF76ltFBAqCMxKW&{dJ*&Fcp?&|EQO}I6ibIlTE<0>TT
zK!a>M06lv?$|UGpo$yd9xgt58x{(l)fLb;<S_DD%pQ5v>hXC}-9wwG9x36f{PdHhg
zrj(g&eKM2la}aAfA_)44p5DLFm-|fxXX#5u?WC$sR|?p&QNos=BVyJsUDiuj+ZVB}
z=i7I_z$Zlr<ml7UJG8Ro1?-pNSPnED&~vu3WjM4q4w!mg!fu|wsO#~C#bj9MeCRl>
z-(Q@wIatxu{o}SR58#C}&~jscR4+yszNM+_y-I_Fz+sES0-ZXh?Z2RqBa(xhWi#L7
zdJUaI?)7?{LLP$UHgUrtns#z#cq@aOq8CEmW)z08MBhq#UpekbBopPMD`+ZE!Yy*G
zo48bpin8FFIp&8LRJkH&C}<FlU*nzx?VdRMVb|BLzkp&IfTNM}hKKH<5s}@vWjsM?
zTNYMDPxj1?jvYpaXy$UMocCN8DbHDHUkY6|y(>gb35n*+hGs3lq0|-FM;<?~(IPEK
z3^)~w-ozG{F#Kx1MBXXFRi@DK1!51WUH6Rl$vy%+QB@I2F~K)g!@R;?V9Fo!#l)0m
z&5N}EYQFgu`{r(O28kNlt*oRc?QCzD-VXLvcaiuGh9I`YPPv_(TrK+Z;C?JeYU6fP
zq@yuyL9E_Haa=15EvHsQuCD>;`nqejf};X=1i?ebCORsKR6vl)AiO6u20;9}%nRcL
z6upu(thJNk=7*bGp`X~0Q&#R83kGxUFSrA+A`iUrlUK~-lr`D?>OC_UyCJOxNDjNZ
zmQ|7+B3$tQB^D6`b`zVHbb-nVmXV`Ka5DpIh0JsW4r5h)fKwWPlcAWx!JJx?+%@VW
zJ05=;Mx#7V!Ag%nd@ozvdF!e%m8$iru8F&>h}D&!t>Da7&hZr}zeqJiJqDAZwquY&
zC2+XcWrfU30*;lE1xg#G{jNg_<IXCJD?c7FIEd@*v8#=UA!QTdwCcEg!D_$iW{8qL
zocP9;p_B`!byv*gJZ->%a6R3?#i&|&h;L*8LI9*!$a=)}jueqXz`TeiA7UrEP(A)r
z3&5VstADv&<bD@8=kTd^Zx}#>qR0SJqgBvW&OVv#7_X_S2OeT|PYLx{&Ne#*1(ZiO
zNi+o?At}^qqP2k)15`<&>lx_TpRKT+@&2%zhw;MhioO9O<kF1$q@=^0FE6)tu9Wfc
zhIAXn;X}jG1S9O9g=in6?N$SgWl%fP$D5D;-1*8w+Eydl^m41SAfIU|#4$xl;SGsN
z!J@z*ms_CFB{_v3C6-*ywEA+?sz-kU0|1PT^v{g*fG^L1a7g#<x4(O?HzTW|%M2}h
zdnR7K6i++2QC{ZS%<{plP36@>?$e&&Qdr^)d!}w79#zP4nXJdNL&hYE+f--RxJydL
zil<wo(M*f$>vm=^rdcQ<>`By2BIj%-OoMHj{3eT)skf!_)v+vYC0Bc??hOXcqzKG|
zrPIB#GwT&Yf=A&{SP$paLZSoG4ED+ZJ&2PkArTvymwFh#0Mh3XF_5enx`N<_Y~qA&
z!lzA|)6Fie4*TH1K0x;D?;Bh$6f7MD1}40(IQ~)EqTTp5xaTA-JKaHIx$aiwu{$;f
zTyD`V75UoI>5oxy&lyeYD9@;T?0j&@GGZqks|~T@37kHD0-$r3C5dC&Nhp@{F@V9^
zt!Sd$p4>3fYga2$isjc-AMEt-2FnUj;`0=SAnyX)$4A$QZ5gMFv1JPr$O!9l#F5W}
zd<{&4RNHtg&z;`)-Pfv*>Vx^t^EVvL!J(6R8Aj7H;;>$yzab5`x3@jTxnA`n6>?j-
zq}S7?w$57`ov9{=*8#WQbrLTga0!)L(@qPjuI)|_B%)_N?y8TrjJ&s^t^aXX(UG8v
z(l6C^yV|ecR@AgTD7XFcnesQ_L6k9Bt_nqr&tn~?lp**qK|Kg&;SdU9NQAEDfGc0(
zOPR5DMRj+@PFHNNQ_Qsj#g>mF-cj+p=kA%OyXq;Avhp~Lrc;F2fe1O?b;r$*V1|9-
zC|h8&0afY=VAswAuS?gPNK63Xd<Wx%<($-3|7)PzSp;DZrU5EMZS6ZL3dNS{ce^#;
zAuT&vP?Sd&?_6p3r3$=jWJW{p)<f$w^A2#4TUO^;b7yO(@(9z;ic^&VKg71uL4<NM
zEnT{K#k(m<s2$0{gCqGJ4@6V(#HCWxP4d3R0%)StJ$~YIj__1Q-i+r}1xtC2HMQl#
zD(f@Hji8J%YV@<~qAD`brE^i#(uo6yDV=Xs-U}WkO$p96ijqmZ4ACJ$Yf3H_?tI(6
zLVau(OC4G@XR)G!*6(LTYV8C#GJ^j)S_!x@2aUzE2T6u5XZ@6+Yh3f3rloe5iB2At
zzEfujy{R#_{_`fsJN~x*^w?&fIYC~(|K=&O=f=LmB!QovQUOc!4=1a_(^DU{b0&hy
zF(SoQj1ws3xXkFR2!fc3k;n!dD%dc6QU-H%9)c2Kmv`Ds*#w_s^{%``nEboRPcehN
ztym|6Oi#PiL#LK~4HI_BiJa{fYObEwqfsKi0d3!{MH|V6Lt0#X1JYiuLz!Q-?a}xx
z*!OZR_B9iE^DT%x_);Rj#cUsZ8I8DW(wJm#y)^qMc-(@h7>#mDIb&+Bb>QVB`9VD@
zt}{sKOo!gEH%;~TidXZf7)_%jh(}>sl*-BLYJ3mX2AV#(heSJPSiLNhhkHdGV3;P4
z3nAxGq0WrEg<8;5v_px;Fu5sZxLJGpi4woe%nCuZXwEfyv|H1lxK$;Tmpn#wSzoO3
zQ|qCIJB?}QhWeMDhtg-O#pQ*~)j-hgZ*OboYK0(|z-=6lCyRQm-mfWmKUm*lN>#eT
zEtA$_=n0)FkS$dxuN1&8pY5B_nICgs#ic2ezCx#4-*2#%wCXC?dWpsA%>Lm(XZbLp
zruO7GbEsPXACPfFpJm`CA0nGZDj!~VMv4hWmUg}BVUuC5s}L&T(5Y5S#D(gu+)y_N
zQzw6lc}={AgD<a8Cy%<gHBUS6+$I<Lj8IqPDK3ipbm?#tS$&K7T3zAF8zOkLG(scL
zMR?ji<T`1rdu3t_5`Bz}s&s-}+{!rqkM8(<-GN5f$Rf&!Emtxi_IZ7^SaocyiY{$S
zU1sR*oL~9oFN|(vPUQpI2+}!zN5gQmpw&ym37@iV3G~ed`7$ExL;-iE()73;=%wW^
zW_EYP4O~J#k?Ja+Wuk9#pu*}*x}wTe6a6?=`z6qqd)I=yoxp3nQnpQs%iBKC_4$e7
zkC@{E97{SM9!I#s9X&`OM*n$RQo0NRd8w6RVF&I^tLh!cuKMJ&@TRe%Nj<!cV8B2S
zUpL@X0I2A#yyIG}PHVVqqExEZL}QW~N<c&Cd%c>%YE=YMuP0bc^x6R-#p!D^_I>`-
z^(17UOA&SZ0K@`sE@Cu_YsNM@i-sY*^*~+uX4%SC6ia7e^pktNDlCkaO9#%qF{#?%
zf%WEKb_QH~mIzm-!9pA^?=t&q)L9f=ECbA=aeQyDNWoR=xv)5Vvn7Zh@MuIPUC|($
zj%&1ycWwc#ba2+LtF-qD={i28_8k^~Ezi)%+VM`;6%>cPNfAVe_6%qUx_E-bpJ&!z
zk9tU(j5CZT1+E@768BCRR#kj49ua4dG!e-vhI&US8(VyIWW^-0>~bu1NiG;j>~b#E
zUaI>volbLE;Kp+9IU#i32D4W@D_wOz-ZJ-E`($OAoH+iGs+Cd8gUAZ}b2Q&pkD2aP
zX)<3T-6f$Wmz_<lv4Cj~3Y?pnRF$oYx_pM`j0_g!jcaZG#Iq3PUEk)^nzWM6YBFuV
z3vKI7SfhtV3%k}O!5c{S$@T|X7TlM1mDa1pQFwYhw{2VBTRq+$`RU90{TZa`$-ZCN
zQvs~s$}Bhc-7n`@#|nQ?fm*p9Ql(5rjn$1v4>ZS@Dj04MiAocX)vA{!W~))I!*Dg2
zhnZgHTqEQ0)y(`dnmU)AM7Ir4PO)31Qk89;E5z%}-51W=C(N1ISB|5+sNWB_U_FS&
zX{Hd?n_Tzobv4w`ebmMq%~f-Ca-;X}R6YM?w0Bk7LH4&Q6*slzaXqdo-@wrT^cuEz
zBa3#jPUQi&^Sn6KFFsk>C6yv03+@iLx3|R;Y*7Kq`2^!~QuG$V<U_ml-J4dIn^pxI
zm1OTWi?CL;`gEMh;KLe2YTy|kM}UQzU|r@;{o-ME5FG_X;|+^XaR-y$cTZoxuDQ-f
zzceA233{G&3~D%!QO6RGjjvjMLd>D9rewn9&031c>DN<6pQDY+xGGsZ5<e3z;Fd+Q
zsuq@R|C3yuQ*dZOx2<E_wrzXI$&PK?wr$(CZJRr`Z9BR7&pB21-qW>u^-Di@*PK1Z
z_{RV4Ep<n<sJmv*mit?m?a?Mj4iX%jpaXOfy064xuSDVqb{zl;VzAi|w?U8{m+&;6
zo#~CI9yHgTa*g;Z#UCQ*U*LFCpbuNYb6zd3o`0AspB_&4bFwXCXU@Uka>hCFILlz-
z^ZCu#bgf%1xA(_+I`YcA3*oxYEfnqEILjGSl70o6Y$``9n$1?%y_9+iuD~S+aI%10
zv{6JR{Y6_&RZ=u2!~N6VWAo708IdGY7<SgIWBF^FeJJL1Ej^Ls?sTG<Zq}iTXu}KM
zNt=yaF6cAhpQ4=)4TS3WH=gGb3F!Q7LTVdcS{;FAmdQ+z>ZuuYU9r#%{)g_3n;|0x
zrZcjrT*ct1r>l$hYTA+DOiMvx7*R<hKIoll9~DvjN+fl9FI1v~*hP8m5-fIxHvUOo
zoYKoGMxY`lvp%c}vqB}%wB1FRwAH>CUFF2T{V818Q?HxEv<6rC_(Vx{wi#bAl{(zX
zttu95aXcv1NIdJ@ZoGN>P#VhK!e(`jeNy=$u=cKrCUxB9%1>@sTi0;BR#j~QxSkQ0
zgEA3H?wEqKAU00^dw1&QPbvy`JO08T)s)R7J*qIjw!RiKZEg!wG~k8n9IiHDi+Bj;
zt3@*V4Tk88O2Cd}on-lyiT^!}w8+}(!6aGh1Lwb^sL8QZYB|;gZH-W4{|a&PIA^8n
zqZb1Gi=p!98nnszQptIvl#+IwHACX$zo+0x|6)9t&CL`eT1>n#b%G6N2?<f%1j1|f
z@pme<jBq@`F5S*aNu<XAsP<SxskO2at&zS=zzO6Rcz)KX8gDT$j!7(QfOsA0@PfIn
zu^FH8$&)H0Va_BeA)~^|xJY=Ni<Cw6EePgP`g<Kcavg<<90i;!dklrzFeu9F=xlsb
z)sR^%8E>G@ijR#QCQo;-ozGZJA|0S|QodupJw+_<3}_0mXNdc4KbfAlf3soW$yL)I
zhz4<|J+H0G^?vGwtfIzx#<HIlN+N5=Xu9pH{^`ge=v}c3ij9#qIoqTU$ftH?1XL{a
zt7ELdzjVA}!sr1bN#kDeEBmS~)_f@-8X%nBdR66|M|Lo{(0TkTFK<v`U`H(gk|>ce
zU(VbYPiu&PgUuE5_76l+dw}~s$`iR$1sm<04(w<S`R@$vR|JpPWi`GUG1-=ac4ULe
zxsI<hvUj{n?Ki#hyqUvP(Zx(QQU(&B30Q?vniRMtwH41_8wj(m{A7gmhK%Uu<!Db<
z(51yyC~+gVqnvQbDGbs`(&<R@He6&8FwwHb;(grKP8ZhM%VoU^SZk^QEeVnGM*%5o
zQ8ne%XQE*0k2RfuX;uq@`uA4<(@BI|wC7#Lv-6atVXCKKst!`!{_fZ%o|bT5`qqGZ
zNu{NKD5=$WCC)zTd|TVwN3IKJEsHlfH*MoN4RnUhLF^<XEvwbdR(ng+O;6>%cPHF|
z130L)+W;}_$&|-SCJwO3)Dno`W<W7`{j66Y?U$j=x;^?^-e+*s<!-=rOe^C7{^;%O
zFLLBG7f*R4zSVaPd6~Mg<-vwIRs(Xasyx083Fh!jQ@O(#(BCj6p%{g_DdUY*e_57w
zx_&qlY9LxL-%t}&+ttcaX0&XPxKNGGQ?g5F2NPT<VJ&lSCTss4-p+Cl8RVp*Bz)W_
zCtlUdAXyr9*<-Rx<j)?QBhJbmYAwuUj{tC08d@oDv@1oHsGe4H_t+hBS2$lTE~>n8
zc}!;yuNN(c^kfZdm6&Ta{{yTAJCcx>f{0A;J>7S%9%z{y<L)!a7NJ^j<r$v164nA~
zUUxO>sX5|zQRRrM#1&g<f1slOJ~;E%l)V9@pM4D=ou^Z;5ZlMODHDh|O&xf&iE)6G
zK)D6Do4Jlv^8GsqSw_KfvlQNOBE+P>4%)=i3Uz=ujrKCK!t?MnyQm&7vEDeaky8kt
zaG|&azqmW)x#E2g+oHgh-gb;vXN6hiC7j@6HHL4rB4~I%%pyC5mb%jqU>m-?jRV%*
zlxc&=Nzpjkd-<Cz^y9L-L-*+k^^?=zi@&?$`1(Tp=?VDr{o2;TOX^>+&nT=1niAVi
zoPbX$m_%o5VoVfI1s=&vkTEx5d%v5z9vP4c6gkoC3Lk`4biCQN|AHkO)k~2#r{CX3
zM~A_Wf+07k;~m|b88;WJ;`YSBUnqG5o<ft9HMTSKRl3c`3X&(P%MX)h(_=tU_q^)+
zV5bKP{F6;6sC<|K1VUQmtWazAi6t-aCtFq>kVXFe!|v0&{JUeuH(cM+{k<Y_C%EuO
zd{gq9vU~JBHQ)0lfF^a#@b1Mp!g%g=kYM6!A3s9XPR&~o9gKV%o{;;STPPYWsCwG>
z`P2ohHB+T=Qkyd;Z{{lvU#@w(%|)*rUAbH5y!_6@_#?65-Q=hvHww0J?vsj?JNUV^
z^r`yaD>4?lgR)o?#GPE&In_MB!^O8j)i-E3sY_Q3{$*#s@dIy+O`VK)kyrzL+FxGh
zc3{By=d5?WLS3hn!ZW5o{iB>?vI?3AZ1t!Vzvp1Zs4-Py#$8v`X<^W~*VAIR?<#%N
z%%}aw0p<S1CdE`a!YuH-g&#FX!nmFh16>BNyB#H*HN;GVm(UY6+;twDRJ&lX4oXJn
z<mcvlWxxuVXm0ZBU;CBRTYk0P^7`lk3P%5fz;fC&80c~qJA+hj^>W}lZg35rW_yCI
zIJWe2z!beAV1=S5l6vsL3?<R$(n^s4i<_G+tK17i<#1ldoH*){)3InOKt`EP_KJLG
zvLR$eYKMeWDa;x8bvcC`{-J%+$Pe++;&T)7v=#WvcsYUmSB*TbF9pq!E;yV}v*Wpn
z%0KCIl^PT?w110twNMg#9WmrpLIb6-EtG(k>sSh9e7s@A{;q)>!n<M)U1NI9$uNmm
zi<+xOb}yMU<*iT~U1ArN&h^H3U;itGdL2;UYY7wpAP*h@;P?A4i1mN84o2pN|KZm)
zt8Uoriz9fSP+N>c>qAPK6l+r|s5taV(D-LJXJbYeATqZ3Z)0pYv?lJ|yeMTx{-sOg
zp@D~VQqAU4*7ly@D-cYng>F}~IERTbPpj~%PF0V1QbKpoIIoi9RS=pR!(6q|Ti~G<
zkIc<z;N<N0L*hg(N2*?)2V6~ESm2lG$;$Z>v1v&#Z$FPuoO!QZ&Hf567NTG*)T?e%
zqimql6szk(9hRgb?H4yyqM9$n%<^oSFyI{hp@^nTso19yr!OW-o_=yvf@q{{29n8|
zo=6sVF2amZ4Ex7=WE^iQIoG%-HGuUqEBV*42s*2nV#w)lB#~run5W-(<fX(2k!Y6q
z0lbiOBe_0@GGuYOD6h29An6XdoHZcngd-v<iDE=Tkaw}1cjEt`>~?-pcJ^n>FFjm;
zJjJc4`)=6Ouj90AFWX!Vu?pUaCo#c|qD4W_{|99^{XZx>@&BOguI#t^Pi;=yRz_wq
zcVcjaS3eS6LBr~=;BD&kw7H1MKW&Kq3uPyWkDw>`thxb9*`}XHTP}qiZJ-@v)p76D
zr*`cMWpm|k8112Vxe<t9y=&9!&Iilmw8Zb~7XS-eUGF@N<8{#SHcq*vroT&A6gw2q
zDL)3O^|qZRs?(QsMpuV807dH}dep~u+CM9*>|J8jE^UUul{5Jaf%A^mXm@oH?`Yi#
zoT<%g_{*__xe18=6Z^}t<0x@O2Lk)f0R)Y(R81>6_X^T8;8^90U}%B4R(?R?v)=}W
zhui>$>H*K6F7;mH@t~XezUA|M{OgPGbvSSP3Rp5yHxJ%>4TKg9|JYC8k;j$#yIN`k
zoXkG|E_L1B_}76dom+SvfW`BY0uv@xa`N>fR8kf_GDa2ZeuNQmeUy=Zxk8afs(6cQ
zjL4*hZL8hmtLrjJ2K>r=ShC}_e&KlLTIXgNVT?^;CC~-5_nejFH(Et&kcu4fXOKh9
z(s`%YI~a0ZOBT&05=AKOuZ$oIGQUKME|FKic4eucoYboNScB>?5%<VtQ<RC4p8(p!
z**31YA&wM}!WYGUE#x-{!D1nr36KVNP1rJTzZ^>cyIPTK5t>@6!r-zbE;J%^$pxx^
zjmE4%W`w!I6N~Sf$EdO6!ldaciICcJ-kzvmSwloClP<B({A3B>sPz3<h6+u-N;CCo
zzyc)-vShfV3GT5S^7VZfS1$OuZyP0YpYo(+!Y6ILjvU*z{ms4oVDK~5EuKy`4M4c<
zRH{Z4cjCt)ik8d;DTpPBZb+aOl+yMhn=o~g;Dj>p^NdZUx1d!LDZMN}J%Gx|C4goy
z6Ff0Zr)kn~QVv@5I>sDpfHo6hT^7ZOj*`Obdm<fe9C>x@o}t^7lf4UTGpZy{1irpR
zU~{cL`1%eivv|0Z7oFGUCE5_$Xy%37*ZT8jd{0REVzTlI5hh=^;sM~e=~TGI%=3&U
z(I4)cQ}tmaHTSAu4Ut6DTvyd7b`ToLZMup*RWNft-N~@(MOLRc8eJT2ihUX;j4_8-
z>x&1E4>Y#RKfV@ei5i0hLl-q|(7k4<3nOe73&i|H%Ze66U79VT^L_cNN|(mOcP6EH
z#d{F}-Dl&&UW4|S<&fu}I>3&DIESq-qo`?CAf5&wo`Feho=5@Sq|=4Z`8|dnPHSzG
zj8o4xELJA4z60n!3YZrpQs`Y~A@|TAQ7q<Gt^)F;hxRQIda&tL0WXj@e8<fo8k^PW
z4AtriBSOmdj3+K?n%nD1CC+s*s(2o5W?KJ3Lv@OmrP0D?<r6Y;ZO^NtbW2M>;Ni!B
zYdIE&4O}zdN^rPuR1NMX|E}m=c1_U_GzzjMo({En6f^aGy_;XDFDd`aviO2i&b+y}
zLd!F6WZr`&c{{y*Zb8UKZrmtb02YyQZ&*fVF}gl_i!HHfRI}N5I%3^yaw5ON4E$(1
z{%YED>xCv(X%ErC=VE`cmmIDB`Cs(XGNH<LhhOfu2jl;vcC$75FSVP7we7(O;xDSH
zKAvB=<6dn?I}pGIHz?jb7eT#4!QtPoN1VC6v9)wOR4P}l++(k+iOcvFDe0PO5op3P
z1RYU3_szr9R06qGoUKc6n{ILy`)OmOw2jLV)$Fd13fjJn=5g?2+F@37NT3}L>>3lj
z+BknQjc&u9Q=dZpZu(*Nj6~q-#lnIry>4#Ldq(s_^H_^zENo-&4yS+ejaxmM0@SY3
zu@!auC|cc`;RO$()T?h6DGj2+c%OPZQo^{GI^PIrX=p)`0Qorj2J7rZo3H|fM%LA;
ziKdmq_*x-_D$MoX&x7@NN*>sp`dz@z)v7n5DXA<EK_lgTEYTk1ZMf7cxZ36sKIeE5
z%EUd=BgqWO<OoF`9$>Ot<DPxL@W?*PaCd-I@%5$kSV`jKTC5;S!2D{b+5O-xQJ3D9
z9@L69S`_`Nn*%S-j#eXd-8lt@j;uNZ7UL=s=)oF87Em^RXk#l4RBga%z%-cvni*!t
zLI3Ho0Y^`P_uz$VA)y_^$J!y1xK`-=F6|~n4|YsQV{X{PksTXcsUp6(9}3MUA<pdT
zBW*%?&^uia!0(RWO9v#tbiGgH%pPd)LA^u&A$g88f6vjST8SYr<gk?9Z2(HOLArp8
zT`1!)v&tUf<lny28Hk!_-s+<X%O6m>!f{sYza<pRo#`QcL}{RHm^9%3WO!H61C)tT
zI57$Z0@v)AMxOfI&_F4MIl8c5YX|NKhN_V@_%ns;ZcQrK-Dtu>6c0Ju(*ZG8`3VaI
zjB%(kjGUba#f6xH5Ha?+2s%=0&_88LH?DM|N)gZ?+j8sueDpVm<HVBKM37P$KU4Us
zuAEXtdQ6UNh#Ne~mNUC3)Z+x<w8BInOE&eaM$JnLbM3{8&s)bXHYCWr>ve1=U+IpX
zr)hM!SBAXfM-*DF1Ei}x3DP>d&1&}5fiRVwxU%1X(x>esjZQA{alw4yNPQXLYW~zd
z$PPu?jI<gfmTH%{(Cowf3-Jx;Qf<d()~H#qfhG&O4D~YH!bxb-6K~!~w`3A~6Jmhl
z8Ie(Q;?(oy@_s<&Fcd7iTmL!lduMOb4|#+8A>2{oxpfLnYaXzg<pH}DmYpN;1K0bY
zf0p~;`#d9XjJ@vR<o&{`{wML8Fuh{mu4XTRHT_@!XU3ko&lfpq-R~(Pl;I)$C2;vU
z2EE2lJOdgklI{~?R+LJNbY6Y=*+r;_@;6k~$W&x<eFZ$fXE^VnHT~6ik{g8^;2iQt
z$4DX;FZee07@iSV88F6(0+C|wjxuj$nj)-Es?;oQ)%VtLCA-Z6XIlU+R&R;ALq*?i
zMu(bcCjr6|t}chdGI0JB4<#0FtG`!7W8<`{oc=pQeT2Ksuk2}U(pIfiq1{uZ5kZz~
zawZ%YukyR;go=$y^&FMQ8;qG8l`k=ytz%g3{(!rQId?C~J(!;N3dPy^ST9z0cv{fW
z63{P1x3hCwn^JRUPUFvKMjY>jk|5UH6QG_-C5(%sAfg5!(pHJhV7PXNY?`f>m=yY)
z%rH?P&J+M23K$a*Xs}e8TM&mRh#8Rs1w>F_pCF2Gw9<f3KGHG-jP%Qx0mdKQqB+4E
zJqt<}9`$Ne3SlEpr#1Evqsvj$*(89vy&P&1ozXtPItDTwJXRT2QZY10^<WngB>Q)a
z8<Gezz_WbM%4DMr*eY<z0dVI1XlJ<Qyj^ImVm0J&F*(Sh4iLUi#jfq5Hq&vJH#9#?
zEOt^vPp$Cbi3b0p6iIejbaXfqaU`eHr=6&H0Zw_3bNlLS%TY1F>22IlGg;22M1m!V
zh@nEiZ^u|+4Yb=lrr=395kkr)%;>nWO`Y=ga~{R4%088P?%YWhaJw{MtDc)>|9@X|
z<%y1b;1UyWUF7Z^O?`VotE`SdNRhTsbet~JG@_0ryZpV|Axd7zy?x93%D;J{SYgSd
z2uQQ%*F*S&{CJ*s`+Ij$9XT&^ub!(Q-UK9m)WkRx5QC6Lg6eB1S;D}OO+S7yT+Vm&
zQT-nyZ555ROdi1IMW3KvtH3+F$Dn1(n+pPjmPF#X+yJ0fC@<Im$PE5iI&mh$2U6-6
zYb)3^_Bwer^aQ)BSJj2@SJe)7-)Vv)yVfi`n~ZHM0A!z$5YVLYz|dRU8nfpV1igOL
z!q>7=ATfJIE48`1eM%%s#o8zBb@29C_b`4c&ui?Li{9cmpQA!at7+oBOadw&O*^G=
z1ynG}RP?W&3=dLWcY6fo*E@|iz2P7KdQXl<IkxU~e!kWwRb^-lomvdlZ!W)!&&SnM
zzW|9V$dQ^`;8(V6JJ=|{Bgqaa)0!LyClV@{Q80DshJ^$+1vs>iIAOyfwgI5spGlp<
za6%_>Y5-(cJv!CiJSnJLc?PlT!aQcA!(Gjai+_w^hP~hm3qNpWMuoY?#CNh#=h!r!
zr(Xp>&T+?*I4n%djM-qr#sarT%$$#$TZFuDV^F-@jF_9h!p%*S(3XsM`pf;6xt5AV
z38>s12GNOR@`a2fA^-zp%EfXrlFEzJ_>ue*1EWC{Nq_+{O3z}>^P(l>NaGq3unX)!
z$Gkl+p3?vXz;4P=gq#`0ZJMD}W(&wkwE0BjU&z4n>(b?_1Il9t$%iXnG!4#W9-dXk
zO-F=E_3Jq~)zrTD^jGeHM<b%7eYb@i<4wJMqt!-S>=!UrA)?rD`23puTAO#Tz}jMx
zO=`-kPolql;n!Qvtt=sj9f@AH`61ptRRgueoB^@D?6-3uGK{qHO65z6Yqmc&6jrn6
zpDR5F$kGHCk-6&WjV#{_@=7`cG0LFD0&&1$%uXH3U>}rC)a6wT*A!L-jxX8m<VcKy
z8b{{iv6jGI7j!(m7TE&d?&339Wywbp?ai*}IA9=6FX?6#)g)0znGN5!!~gXkNkw&W
zF#F`?V<Gy#>janRz5I>0&6`EZG8nxcMcXLoiw`>HtsGofZpi5BCac8aV@)}xBkFjR
z`yu08(LiP7TICdy!u)b?GNTp6<Exg~9HULaSb|r?4nf=`37HY%a$_RPu&&}tw6Fz2
z0JjPiwhl*|FBJ8zFs?c*E2-0PH-_s9`tl{AioOlhU<n*8Z=>D^N*X9jSb|g3d|V?@
z`dd6zL-sIsrwy_g-V9KfceIob{c_{2of^<n>Kk49G<!yJie0FH+#XUvQt1(XMR-t;
zqUPiX<~aU`mGIA80E$I+C7h@&QHqp|y}2|&bK1)bXm6~&Lts6)m<uGg!U5I`Pk%VJ
zBs(s9nj?d`9Oh`v%);7gUo&Y-`}>qrx-GLOOoTz7V3gm@8y!sq4jKBU-brE1evp*B
zNIq9)k(Y#nO_CVg`49%W(tt{rt*yMcDNDm>Nw=JTC2bu8cP>Be9*%I@zXiYBAqku#
zQD-YlCt%64pb_pD61eCwDrgNzGV9x>B`%5xO%4rMI+ZSy*eIc8V-V4X9evbtozAWu
z%PDvn-u8mROx@nBsCxEbaTS%(#jQ-TkUz;3A$Hjexw#ZBjFWnRyCc2wtytW-x<wf@
zR}oHmC`(4quUk}NDwr0igeIg5IYNiLt)FQQOH_YyRef-TTre$?@m-IYC+G6t6_GtV
z;Bc$>VdrC)^M6df+&ciuL_rpA^cX23wSnUyJs|&Vjl2U~t0Z9C9p$2VDK6*r#PUQq
zp+qe`erOIF3TZ7)`!7NN8-BX11+7Nlt0z=RbdCSlSO7tkQ>f~L4baYSQjOpo@tm0L
zZ(&ZQ*cMX}Fp0$p-2(<x;aEo8xSPqMbGtmA-VtqjJ*orN5<sl*ap_^!*?Pndn+d84
z|17)+EtT|3ABD`Bm`q+(vav^N_`EjlA#gE9G(`falQZpJ68x7NjrrtGEo4r_d(!>;
zXwxtSxpKEbe0XYCDWMLoj8fbr#U_kQ$~gkZeNpe)1#0th!LL`|$n^}yY;Ak-c>S<$
zxpf6a0nrfE2nrIHe}fwq?X6uO-?-8&u7)T-f5t`VljJC9Rme7rEb2PlO8MgUZHt&!
z@b`wvoTy9(hBeG=5ADqZIrSAY{KmrM%-%+K?<0k)7_0lU-(c>y76!1hIbS(j<^_de
z%_cVmZ(I@zc%SCQ?W??03DvvS<m;C1J#Hjo;&^sxeL}<5y}jX9SSH_@C6>9l!rq})
zt}RzKOeuLQ^i*jb({1TBzF!0fPr-TLtxXVa4$e?){0KyFgxfje*v{$;?7t7ryN-}%
zP|gLteJa^RbVk0WsGnMrdJTdKHF+zdH0o)AYVc4iRw*vL0$3o}1xH53R%za?w}f?^
ztF1=7`>@7BKW8Rt^6M8U?(_INL)qr9BhK;h5cqWiw8)|B95rhC{-^YP_Vsm$OflPI
z1AJ`#3mhKA?oZ>9rFVnkNlM(qJF!5b?ka1mj#D|ibM{Q@OlsgVdr(C<rpn4#Q|ONw
zfR(r4ZhS0_Tau>Pgok&p&Qc%rhj{O%jex-@#PzB6q&}|MSdTZwA3(*0PrdxbpVxTy
zpshV-lEa!v<EwXG+wErRT+a14zptNM#IJWaH<^R&mY*9F8Xk*=pRuYto|s(!&PT?f
z-v3paX?$?^q=NteR6qd${8niH)ts}nGyL!3tXjp|wvYqid!`nH^&h3WabZ!%LQaMC
zi`jlr3WSsYWkoI)l#B%~M$q4l&kyX4I2P}P>ZUh<`gHeWcasrd-n5jZn&S;m(62K9
z6Co9DXI-dG^onEGXevuikZ}w*C&|ySzLF}zdUDVsFf*3mtWs(5V~%cgz0!lb!-q4s
zd(h8@-2%!G0TC_-4>R}a^8l%F#ssSTcq<4>F8F*3=AM2}BBrsnCLD}1PddRA?5DKF
zDV{?~A{mvEzx_dyNg@9hk?I30$}1I^+z!w2>|}Q)Mf<^w31)aJ*S6qVoQY5-Lm(8F
zj(}&?LhO-((P8XW`4|Srp^%D&vdJ3u6mUUS#ljMlP^Bz(ff9IDda@*_*?Wi(Kp$R9
zv5};)v_kvgxrmuL?1{B<{Vrzv;8PZLY4t<YpR_un`kr_MQs<rwC5eXKBo3${#s^?c
z5x^lL)xfoU&#O%qbusumx}GUSIbQ!Th=q|tma4Yx=_tgGu#??qjqrsRAPNyc6Yz)O
z|8XkT=Tb-o!S3sR{8f`7=xhCe6<9JA*RTtZ5T=i)>GXb}2Qk3bY4+42Kw0Y@(`^MG
zBVet#l#^<=+oR}>Aq0z1(=P)Z>(_zMhq0KdiGciRtFO#vbR1*DD!}ir3dv}=uoPNI
z1M6uS?Xy3%K;u()a}xZdoUie(j}1hCRh7SB0AVkRkHM@m2on71^COCor70Qjpd(~r
z#1RjZQ0oA5_0bBBKgi0;n({KzDK-v)^^+Ri6H#7<Vj>iSksX+Sr!-Es(H*t_#}nW1
zbm=-mOoh__u{#C$`82cZIe4C}uIDp|%@Jz<5*7ijVt9d#d}>&^4|!~!03QW<g+rG8
zXUO8w4<c5MIDcmsM2~XEjt8b=4clMIv1B%FZH@PQ!LYwzHJUO0#BSaH%?*VuB^`gr
zsfPG#jW_E`Sm72$MLC7S#6@*QO*KH&m(%1cRzjfvw#~$Z*buvoHi2A+MTCFaI1~7*
zGTp)gFcDrG`>vJ(fB1@TymjRAH{F=E<!ndwz^v6*sUC4T-6;|ce)0-x4pt5ep4UzT
ztpye5ua#ozaCJ_Bw>Kv+juY^!*L;dkY>*;GWZ`Ak5s;WMk;Z0x@|Ohvd(Z>YvL%Rm
zZK#RY*%sNjrlutpnHE#Hi^d;l2NIiZupY+i+VWNeGI@nYwc7Yu58m@KjX<_UG+U=C
zhg+==GTD{}+Zt1iHO=$!#EL{ETo!EA#Ek%nbSwKmz)s~1(Akl^+?g;}x0|;sN{_Ts
zufQX+y5D%Q;CA+ai4vuv$<-;LB(|&S7e<E!kCl>mO{WF{_CRZP$(u)0U3~#@k=3-%
z%*9|Q;??%vV%FFLX`cmVmB2kdOIR-j@CJW5buEXtKh!FpJ#*h5YM5n1dwWegk?-{<
z@hC4XrjD!)LzX8)x~V6<=rbpX@di>Vv+Z}j#bSGw7H8Kk%x>m=-OIr2e74OSVC1A~
zR|e7FfOc#&$<(q><87>OEk(qGcmDjd?@$%Kuug&VuD4v7`9__y*=TP3g^aambAQ<X
z1f(5{+;SfRtNZ}||7ObHV+#Q2Kfm7r^E-`f9O>=c>73l{jE#W**Lf%Tgj@MS0RVv6
z_kZ`=I~zN=|F`qf6?rsa=Zl(a|1x|knY{0BgSu^!_Apu=vLUiW&~yV1<8srbx+t@O
zNsztT_s4Q!?n9iho!@4pLqKu*_4)a^hqLnESz7zJYPyHl%Py3yKyCXpw93hQ9;rPK
zjpMtsj;Z?sawy8-`BObN9?S@llt_ghN|6?X!f}7`{dQ^S_Fr=;(B*bEx9?7;>&bO*
z#DNuN>4mXu)Iaw+M`#Vcls6{22n<mw=6X6K*{OU-S(-))oxUB0Xkires6dn>cdalY
z%_MYvx-%0kGyw96<BMYH$vR=VFpV^wh$Svv<6snYdw05BtncaNVzoXNfSLBGqqAa;
z$-$;1dHBAn`%7n>aflJf-<DJe$Fz>rKsb4l3F%a#D4CXu3y>FdUQlH+j3Z(xku=gJ
z_GCaQw>Jk$V&ca_Y2Y0~7#UuytPeIW9K47rgZ~aLBL^SKD0!^ts4QOipS<&Vy+<=5
zFflQpjwtZag?T$5yPTL3_+htKJqA9M1!Mr|I-1Rcz(VrS!UOO{+sD(pc?i+Eui<fT
zfIBk|J~s$-F#gyW(S;rJ!;iwVJ3A&w01!RGkY3o>QiFShezPJUJRo2gA3m&z4{}2Q
zW{z)dX*_s%(ZE7HJsvzfX?^$Dr`E)J4h}$@w<k!y0JeR*TeDjLdkjU@C*;ycJBIA6
zzBt3Q)x+_56mmOXuX}NvY-t43J0qqbLa+ru7qAJymPEWqY#`;)u=`yMM6R?LnV5QB
z7#>`Bgvf)vz{2^!y}N#d&K$XqvvCY8zVtFUUPg>qGLGZ%L`pyZZ*mZnJREpTGI`uo
z1O`H!5JQ52Lcsp+n_8i|#)UJd68(E5Om39WQRKLs&*mxMww}huvBqKwdR2Q5vi&2f
zNhwBg{~h=PcSs{mLi|t(S?QHZkf41Ds9skWrOAc5xE<e0-)TW%LAb<MCEa)eqhrsU
z()90m)OSrnWKOYsHuQ!!DfJ9p<DQ&MUE{8#_YW>vy&^r-V~UG&gCsP6FXq&s7EeYQ
zTItX15HzH3orwa7*)FNt<-5(V?AgXK%Q!K8%$dYG3JX>LJRQY6HypC-WTc>Oh!bU=
zNg_T+-(K}YZf;|r_Fm%MLYu?;B@MJZ+gmK!ydEa%MjFm!3Ctk*HY#JdKc*KrD8c7k
z`MQA=6Z!+dHjSuh4^<SVCrnXBeAE%bgPstn`2Uv155)(G{Td%`o3qTr3g}DTG_G&=
z!w{eFj@?skp#9(Jcr-&k@;dw?b*Pgp5UxWZYgl#p=_i-49p`mAO>30LMR~OjSs(^r
z=ri$N+eyjFa?k_v(JoL00kyGv;0{Q5{u=3FC7O`C^$Q{e0-h?=@&#-+Gkn$Gv>Q@S
zz_7lo%TOQIT_D78UCuGcyTAo1Q9z=N5ej7Y>Up=~#lFWQ=&@S_PW967H?m9?r-QJ&
zL!sHgTpF0HvF=bQ?Q<@A@=qTq^ys?o&H<~)Yc^-c5v?yi@|RyJ1Te-<4U5wa@uccQ
z4y8ugWhXHgV{|@%Xr*rG`-J$~^mg^xqINwnfbsXw)B*>I+AD6ZtZfPQ9)EL@PW#75
z26<$IgFMZwGb8L1NDr5zw28Xoh%kxB$P^2g0^tN0ke-yq+k_L*tsGYSS@w0CMk27@
zlQP5rl{($ez#*SVQ0)l#-YTnQJMlJS`-PX&L8oN^rsM4j0KiO`f&vHd16!mi!{>Ff
z>4}U%L2;s%PM1hVe>-ACEB{RNy)=4BRCx@S$&*1pCM=>B5WK6A;E6BSxlt0^&K+Fd
z9`30;4Bf?@@9#OiyAgHF*{W&<1*_CBaNiP`^AN}F8r2{>fC5qj87WJnM(Wmv4%f<x
zf`<*&T8jtShosm*<JiRWdt%MRI~D?=^f`cLIbxC9ySFoo1h&L+(gM`QH0b!d;^yUf
zP1RAi%`>x{ilG01x~l2tnxN0&)`Gsux~3{G2$h+H?c1kFQggJ^thiHk%r%O&wnc&v
z&;5fKea!@GtE}&UFx2~|xuGk-YXaYJjo_OFEyMX{yYSD@8FoKK_(*Y65HBF<WD?N0
zTA<Jd+6<1HwgGsiT*MKvL!1=%kFV{wLLuk~RC2mxz_t5|q{;saz8l#H?hPcRnLv`L
zm^ulv-jf2Akb$mQs(HST5~5XF#L#C7)DA2a-Pe=S#-KaMGJEjGncjLx)CJ;9C)Gx#
zxRgsCY(q2yT>gg}Q)#q|yCV)L8Y%+}s6DlKy!affL!`E#gxWSEf`fK~0TefY1^h2M
z#&o9?Et-7YFIC{c#dTPAU&dN68ZbD1Zqa;yHtaRRGp)t$Lk1NVTDJMEx93R$c-?(!
zWUxQ~x-?xs(?@o+@J!D2(4+;M1<t`8OjB|kW)v2tRTHj^xho}zPuo_{Wup(UQ5Cr&
zLhlRW5%QV^lSKDOy1jb@g_Uw9q*OQlxKfW|9@wO^ChKQGd;`MD98MF7(TxXcNMCdi
zSd$u#TdF~^O&zeLi|?nPj=DtiDz6hAO<(=k#EW4$dsIC^dhsSk@W`G{u--pd5=l=c
z?-ptZp~z7Ewr8s?s!lQC0U>Uv769K)g&@HVvrsH0K~gQmcK^tOQYUm=qaX)jm<UWh
z+=y}Z0JS3Nno1oV;+RMV2^8e=6UmE~5Ixc@W`;cc)ZNQvCN4r-7nLV@f_nj*A4b4$
z{tseK=-G;&yPJ9;njPUK3@Stx4Y-L9iZ8qm0^+Vz#i^4wnwH=tk=?lZ0|qU*El~fK
zroR%)yL6;ytC`%M%H5#$B02B2;3>XLD3)F|d=1#8zZGZ|55D?TpF*evyOy6zH}uaA
zvz2S#c`k<u;)#g)8z_BpmtyOAR)HY^bh`m&3RHwk{a8@eh&cov5*q+*7UKsHyPh5N
z5j4$Afb{5Dao9en9j{$_3mcRNohpFbXb+U(@!YUt;1av~nf4LYE?D+=I$&n0#ro_u
zPiq8KcWeF`?}C!GmX|eiJ4n;^EnA6&fLr6K)-Q;I17{syVE_8tu?xVkkG)$)VC;>v
zN+F2OP*RahdM<q_aus=IE5~3u-P!RfB4_eVimYQJSH-q@qEQ*I&{GyJ$k|Y0d#st2
z3`-clhN}>)Cc&kqHFLf#7*dnGCDKP=<=S@&3bm2+(r4dYElInSw+1EC1-yW)VFRu_
z8o_lVJ{dAkv+$yXluS`+qc06Eat0G&f{@8tX1k-T2l=!y?xzs}_w;UA@LfApe%We&
zGowGtG?;lCv|<a-+D`8DHsqW8AaW6?Of9KVv3#^NZ6IbZyWaxTCS~0MO<3(nyK|`M
zf(k_#s$h<%(d0{HN(7Bc#9Veh;l?13H+ll5H~#{^R9<y0!EVn3|5|*;Saz{IbT7tE
z@LX}aT#C85;d-zzQx!yFj@7b2C6N6<*exe27D~ZkO-jjA0d&I}Lf+qGf^%kLWZcej
zb{GnskH{!Ucb^Sp^a0I65KFCkiL-94oMv7Xe%67q_dbun#BW^n3(ITrqBq}~V0xvx
zxleZV)X@+LZ4c?$sZLBZM=s1suXiz@By6}@5!meH@}tmXLLMjIcb>~}Gg*ftN!~yn
zu!v@HMbBtiAWdX<tF#%g<26!@NW?(k+rn5-5Ij@@NJ;c&>T-%A&w!iQVU<%lSU$*a
zB6w0B!$1(Xibd88MAJI{@vC{Ah3kFGA81CKCG>BLdP3dq@+b4HIy7o&#3Ib~tmx=q
zxvYD0koP>`3*OHK$K)c=-Ul1P$4547q}D-ujFf<s8cFe}O{&@DG9{hY`dYOc*XhJH
zX`P^?@QNHB;Wd@<h>moEc9}{|uf0?=V@cgS%sbYoIGbM<qB!j)GtlytM@qJwKdH`T
z3l+@Y-bzAtH6ZX7IK#X;Hx9F6!_UN2hY=}B>v?XMD(U#sG9&zEXW6456O7~0O$cpe
zwh{(^0bEQL1lJ1-yhPk1bD%5xS(%iTg&;2cenbvm-N~=<DV9??@UsdNP7em}-zU>`
zem!ywq?DpCMiQdcv5+dNr1Zsds-gWu^j!b+o*A`%5xg1}N=vNT(<M5QwM(3$ZjMn>
zfX><}b6slyyA@Xzy4-5IUO+LSnU(fUU|czq2O4*sP+j%Z3EN*4$+@cRB^0*?$O8%W
zCIH}uv<bB|28wi$>W9rfjoXl~=W^rP=ppWp3ZcJuqO4boctf36jTfj*P*hKB0E}wy
z*Yk~+{CNBo1jCn2Oxo$T>nj{f`q7&e=;4H;-h{V(hH<zIygl|2cM8Ke$ZK;sWLtll
zimRQUwH@eF9Z%_5LBJ>2Sc902yO?ZMo#DbrEZtx*QU`#oxvKFXjsEn(@DbmMZZ2U}
zj$Aaxe$DDfxw)XUu-nwdti9>crb($W#013D6cBGz0I;=(DxuD368-j|z&&1YqjKEQ
zbL9qs!v1h%2%v7)>6spvA3$}KoHM@x%o6(CigkQqdj0TeJ@#iQ?KPLgoILc9nSaTO
zIU+NAu76f34CK1J5r`oXfom3D2xJX(7KZ;Ml3e#|r624jlMxW2;f?RZbZp_MC)B&_
z2S1VG*W+|-TNnQsC54VkA_1Sz9gw~E9Z>3|w0SpA@L3-kpfC@xwcbEqse@oX`d?yV
z!m<L%jAD36%IchOBB`luY9|DdU}%Qk>wz_glI~V4z+wMpERZMggc8AelJ?3!9!MNP
zX+V@e@0wYZpI_T|eq&|27Vk_b+r$*MB1+)HF3RYmqXs1>$!yY5&qg>qb|+<+^-Ng)
z-G%+C$pIO3l8ce(5w8^T90b4I8!3RosL@M3xw31b;GH?eKUHOMe*v5q|FWX~K*PmC
z)XNYl?EU(LPmt8On3(?+>HjSn-!I8zg+5PG$Xf?P{*EmBC05jxnSy01{@5yc9%QJv
zg;Is0jQX>*NeekDCHzH%RuwkSQgUWWDF2tj)03h=+<U#s<_X?qsn)aFW|cF=!<Q}%
zT58t4$6A+xR%1ynwx@QUrBg%E8i?bop5y?Ti722_ts74o6V-74EO)%5@JKv-EK7j8
zP#B&T_yGNVj}yob0@8bKT^>_gzYQ`V*0&K;uz+O80AR}<jr4YND%|ZRSTYS$NHkC9
z1RJ>ytP@7c9#aiHt2k<W#E}$9HC)A9BNDc+<-nE>x@-uzsrwtv8BkwNwN5LY7o9Oq
zl}}#|jaLy4KC|T#V+=!aqE!rt>yYXDWWmMNc@+$&#mG3RlTiRwT6PFj0=1$GYRoox
zGZ9K;>TZJLbh(Cv+QCI|*tVb~5Tt5aAvy}*RhD@zQnM{+`)y60Rd}+p7Rvi&kxX%)
zcv29y<z6ZQ-8m>~>RnlV!X;K(S~z{N;rd~_)9t+i$$@e;i;+J5q}RHUt|IF8{Jiy0
zJwouxdS;tb(Rs<15|#@TraFTG-bzI4hwoI2wKm`#b&YIB-;=Y~xOs714Br@9M93LT
z;`9;&TD$zJ4i4SOb&9tv#vF}lEyOT(L<Q*&elhLoOy$0C7a93U$--!^IIh-8X?T-&
zVq2MseuidTr3{UHDc`&0=NHOeT@~v@Y6Jq~R*I+PNE!vp$Tg<u-3*PrJ7;zE0dupK
zeZqS*{_-|k1K!$WzA@!>BlubJ&fmDgrli81Q(eXy39Tr8QuKftm7|K%YVLbJP%gW$
zxd_PfCz&i=KU%lYNR0E3l4JB1=k}Q2iGGBg_JUHZtxHw|u33`*uZ3>Xc7162`V;0p
z=c@tQntZLRqq^}D=ayzpVz0l93lDk-wgxA{$r^u{rTS~5e!=W0?9E}P`~?=Qv<&~a
zxT4k*r9@9CZYPV4^76omG%Mi5%-|26D-5w_MajQR>h1Q86JaWJO|Il*RL%=^{nJd_
z8J>$tkwDe%Goj7}NnQCR@}{9Q`@pG1&^a0_@0QnjnGYt-K`X(Zr*j4u>#sdp4>%!B
zzN$6a0JW4zg2~w)PWsew_BVs?!B&1R&&oI@`nDHqJN7my9>9_z{|7w|(#<i=6x)H~
zafI@6Iha9me$5QM?ufpVO6ZM^byNeneZQv7!P7mmmqI+1hYoTkUg}wH6sNO+SUN7P
z&dw*D8x0^M3msZ$e|%)pvrK0}Di%|DvuYHH_j6lW3agJWEm^Vt_hLo9g&3_y#x}sB
zI=*hq!iYI5fx4J12cNfafP0^T;H+$)pK9rPo17K$u{*#F<(H;~8!b~xNl@G$ka!Zm
z!{Wx6LXVj^D1==m6Cl#zpt9TJ1}6@8V9eQ!g3c?Ys`!|Q^N8;aI6KB$()`csl4Uny
zhiLW+2zIs#nS%QGT5;@5rDGYz+E%5E3-6|7-s0wcr}(`>Ilbm)AYeOVwVHY=CI#xh
zN8Zwdezr5WC9jD1fXGdEmTe!2Z7;SzD$VuQYYQ_Qt{om~qE_HIEJMGc0)OV-a+OwS
z0@-o3uOr{ViXkaaD*lnC_$%>=A0<8FrBk7ry_lOS0P3qA7k5n^JXZZs$?bT^kTZEV
z8gqnh%+PNXVM$)7(yx{zW2pDuXJS`C%KH;x>ISz+51@)#O;mxTY6L4<t23-GsH#~P
za63I{T;(e=*ATIwz_34!U6_Gxoz!-=EnVv4ZdZl<#KDqkqe#FLFS3`3&-&eQ;*HnK
zu9qnc`pc2Vv}E*w@I#b`X@Q&?^DtjU>VJt6NhxD`d6ZiqNfVMM+h-s^eE;6ranSEV
zGO%Tt$&O^v;$R%=!kv|+=cg_+uwPXQZiR`GYbZV$P#0kiu&CDJno%d^XyVP1=MCXw
z$P$c>tupIKo3-})LNBwq-`3?PB~S9s?5qaXru<$UAV(8V*4`OqJ;yD_^~TfoN?NYV
zf~yv}IaEqbP*T}r783*w<32Od+5zeaE<?{rM5IHf<-?|or#$_wyx$73f2cqn6$w&y
za&Y+AXhgnj4(M?SO0Y2^4>dVxarcKIPcd#nP|}%y1*49~(g4~jrC9zN@_C9_1r?MK
z2{8!BB{~Hm(lWe)MT~Wi-Bi;@{F#0tg&0Sq6#3=Utw3s7rWYg)L}T@~&`21vu1rtU
zYhFDwmGSyhzD`#i*FZMXSZU1hxsil_Sh;JW9*0yi;mJ+>rB*E^3%H&^HsqA3XsGRV
za12YVRGa7UEF~)<<f4}gAhem6{(7Qyq%bCvSfDb?I;<<MY=j}nSEv}R#Zm2$9n|o^
znzDE;zNY(7uyd5e75bpDy^84Yy)fE)A%a6t!*2RJacP!5heOs27f!95Y03B7iduk_
z9jpID?C*lF)|Arm<-~DEfL&&~55YCExyN*p2<IN{Q<Ax-)wjV3bSm-25Ney9HRlZi
ziHhP7Czp0YKoi5|cJsAs8(v5n)HC{4mMb8fLBu^=5{W5B(jw1n7-y-!wX2(wigv&O
z3yUYpZOyk!8fBjuJqoxw4V8{-wMX8W+2yTCJt1ks+PHQ;zKndb1D2iiX+G@0?swR8
zJb(48sD*^LQ=y2Z<Ap7xO(4>!kFFNZ#pDySO)~UvVUf+8ajxGJP3qn|+JHJL!PmF$
zI+o{j&&}@7!%ii2Ce-rENWE;1d%Iw75nJE7kyt-woSIDKw)d0Op(cZ|lwFA`c|;AV
zU_70lKEkAEw68_Qc0yED5s7JHQr8&DVrSjafp=|keQR4MW=HS5?0CPt+?>0pwL?Y2
zd%N*5y=_)y)xJ=KZ7qF#e^Or7>QFU~3R^ldwm^U&z*=PfL~H)UHr$m8UNmgkwjGN?
ztv@TSTTXcL&9m{MYFTUQqaHb8>R!mw`g~r4S>W4FX?J4MOHPVrlE0fO(+5aB_mD>Z
zB6KyEhT6HR@`bLBr6AL(F?}^9Uvrv+{<69*amvx^H`m;BW>%82yzj{F`d(@X1t?<P
z&FF5se}>+#op)9V*tU2$>+fsUI9^K3il)zxR?cC<IPF8(aKtck!PBwK4t7pkb(7{r
z$Cm8rkb>mWFU5+lmX)jz+?j~o<)e{w?A|f+wv0p~cbjf)mIO4Hm`brF)o|X$PqSLZ
zd|l^EG;$~(FWa}<r5ytcu>_ANr4jNsp#l0es{kzK6w2eUadN&IyS(c0xEbYk=_jm5
z0K8Ozqr!utj>eq+2A3h09(T)079l+_0>7@Yp?A0r#vJO_nlt^lboz<~D9+;D8PA$K
zg_L{xzM4Nh(~Qb7XW~2H?(^!mk3X%kn}$xcHNzlo&8riABBFuvMVOq))WDMF8#f?L
zPA(Oz4VhYcr6u7T92TO?2q4b6%<()m$~Y=5U<mFEYUK_A6E79cEYD{VQct7lC+voE
z>u%0yAVZbf+){=^JWN|>kqA0c0f~C|%tJPdi5)2!3&*oZf!vS7JZ5oM5$X&(FVgKj
z?lL-%vw_Gx9<t#rP@>#Sj+OBDzSin~uF!v9l-}z$r?dltBL{!cUm9hQ1Z9UV13y^)
z6X!*g`urzKyBL=np#kSZ3ZR|w3TmPjCazJfljy`iX<94)wBC8O?%ksh+i|ft=`{?f
zY2wH%Yh=db0^36jcsIuHvo4X&pdw{s9H3~e;z+IghKKd>yj?sp!RYW!Z9o6c2zMPw
z%YG7N<HUG1*!o^L+&RCnSTC3e;)vI4AA|Ytf_15-Grq0PAQ#x4-_Jv1s<jX`+pE&j
z@3xMt3PnNxnRA)F6<t+%f}!fCFWsBT9mO1dADvQl{Q@Y>zCiXs4&F2WrFsT4TpnSN
z6h2xEUD6&7OV7>W2N?whwb=`Feu#gsPDL=OA`zp^t5S;B!nlc&uMQ}0V<yo5?Os0X
znikKimcA~jL%~QXtoKR8f{t?JM&&$oYA^aYO!tI9<!i0Ns){KNIA!*`yWfH|)Db#W
z`AkWwR;M~#88SNriB(bjvAkmb_#$iOVSZG5e*_YJdD)*bMe)i9WgM(zq56BdHYtf$
z(e*iZ1<jh+b=BC)IF@?3DxDW*MLU$crb@SHHClcfUt#h&zG8Xq+Bcx0dA4QbfVm7)
zQI>wua^y3taA77<)59g8X0w3Z@07f&ocAipk3V%7(;|w4wbbu^!5T6rqH$S_Fu1mn
zV_(rz*Y)hMhvJ|JGY+#Q5nZx$uL5Ch-mhkPxSg|vLke|t4;xin|8~{;sU}1(c&}nc
z6`q?n{xYH$F@=Wv7g=gyk(%F<Iz*`5Hhmqk-^SLy)pCASt2F1LOjB7Pxqh))Q!K!z
zS^uNp=4>b!$KOe1(d9h7aC}ZgUnXDfey`*vWTVmBLf@{s!oF41YU#Ye<=mWkAX|T2
zGa!}mxWaFR8C#oovBZ9S>C30xbh_4NKHUw5CsYAmaVOn#=3xrI3wX9#q|1-E-Hi`S
z^thj|$HC>p!{^R`Cqu@YPshva?%?$LFhAZ;fBbJ30^ajyi*Z{O@5zc+A(%Pm5BOwm
zHAk!X+CU+u2~4OWxjzSX%qY2`Etl@wLjKqKco05+;0J-Uh#w-Qx4tU!(rWuG-ybK%
z&<5`S1ERXfToTL&QuGJexX8B)Q%M^h;9K;tZ)%%Y5@oJj*QY6PR76ZmXJtY}AD8TM
zE#-RV^Z@sr3L~-Jm7zjZAFZFG2`W5f9;RUam71sWBUqlBLRI)v?kA24uu=;-Z1ERa
zd1Yqm!~wkNjn|QwYP>^QpqH?n8hkp}EV)lBC`BF2gikg9yOK8YxpU&SBz~_RzTy|A
z3Mi@>iN$6(Nk<ir*HO0C=?7Uy?bz*)(`|ZZ;guI{-`D-FZ;@=(qA2p$jiuK#k#~e#
zWkA3n{ytMu0>AEi?bZiPPgFQY|E7(Y63ctz?hn4VBrGQ!A1-^{c^F+9iat-E4`lQc
zkA5M(r<9X`6FloY;srR}?2_%u>rGO<*BPouoXtdITh&LqOf83R@Jt`=G($G^Lx>n+
z5Hw!2oMITor*HO?Fc~X}o0i?=JO$iFrI`%~6tTx&UPKRe1m20t***o`oQ19-_udV;
z1-GB(Gj^_U6$gA|XxBr5;~Q%>cZCj~RAjIXf^zG9r*R-y*~H$*1$v)Sr0#dn)!L}X
z^MG%5$Zz<XJ8#S+fz2e}TQ)5{$F}u35{+O<%Eb{(QMk;G5kenN?;Ysp`}_4}PG^7F
znE3->`!xXxSxdLOItM*s8Mv*kSsy?<?aWhjf#a+x;|nO&jB9B>+s)N#wG~%wbL(bX
z=34{s7maJ)YsrysgLZQBF&q|$a}j7yn*BGm7binCU+YWGE_4(Bv8C*{;107xq9&0k
z_Yl$N5ic?Odk!LX16*%w*hL6>WEz__Jt`wSf|tACh?u)zh`J~jId(5AF6Fmn>j7nN
z2=V}X7a_2fgAtUhrk5eX)D$Z;_UdGlt^-j)e!ZmpX*ieP^r7?#ytvaG^c{?_FVyCw
z$eL^j4eTx3WhV_#qcPg}dM9Ak8!*HdY>HolaVoWGq8na~ir(5I_U!n>Qe$n0?B67d
ztW4$}y0Nx<ZPFNUjgZHbppw+ti|9^fojxBf5&Dixf`yle3)z)6wDc_vpY1;D!Zuk}
z<%yXcn>|xNmr{=2afPhedyXyR*OJPTj#0~hz?RM@WU=$!jbqvD*xYcJ_-)RP6Ghn_
z;!ej(m_|dkcCFJ6G<5@!{TRJ}-%wL7zusQJf1G`*^5;7DE%i>R208m`odq@xoId@B
z8S%B?pa7^S15^f-FT{}<kZKS3jRrTs65R;xWirVh2|qyV8tv1R=mJm&7oarGO$HBX
zCIvxh*cn1Kh=@{R*wcKXPnavvZ*s;_a*F^^%X51gV`~ybL~9OT{ts8@6f6p`EZJ?_
zwryKy>ulS$ZQHhO+qP}nHs-vT7cq11e}7hVW>sgcrlzU-2j@NEv=bODWI}%K!tG?8
zgM&FtUzRiWzt395!fAj57|pemB50&jJn~YujXDFf3GA1huapLt6vI3~Dt*j)>Cra`
zS-O>OZA)yk7R$+aQ(_<ypg^_V?N^*^s8+PulF@Ds78(&8)e2AD;KlmI-&XMPycwkl
z^|%ExDpuPG1V)TVQ3u^tVYMu7WaLE-P?Xx#rWt3MEce=uc!_vord<L9`KFOU#G3~c
z2gwSaH-)O-td6>gCI?Oy2X$7%=T}PZkR2;yhi8JdLtwi$>!};Th|1p~>GM;G22eT6
zq?pc!%tN(AHk}WDp8f(|E6S?c2WKd2Po905=DcQ>rflBGCb>s)qcdDc=y%-*+^Dni
z``}krNVt{<J{lhvz@+YGk<?p~TDiw1BP$Ob0`LakYyz#pf3v2XYL$XlH>>~;t5+i*
zW7fdGloM#&U^)JrV6sWV5`oHXsf7(Kh`w{dU1t-smje8gk5-aMzfy64j}a01?s=hY
z@l}C(Wj$2TLfQ<JNW1Y;O2qxGYxf!%9jo#!Sb@sm@+GGLd4)K)C2nW#`x3gI`|l4K
zFOfsx1-Qb=>bB9!h*DWiga|nbk~Vu;&(sm~6=CJkfoA(G)2AI)zPIiGHjV?{c}!f_
zJzYJSFXS+RuSt!q{a>yFU6j!c>&Z$2t<=*tw^Tr@4?AL!I#`<xES4UcTV=nmP#NXb
zpo?VhGxd_QPOD?y^SkmH7~*Z|fI(YE!w+9)&~Hn61toe<Vc%d77;oHXF`_A;X%ygP
zxKD@CQCc72nX#KrY-&W)De(+0pPy3hP9oK^=;%by4w;FvAAx+?MM=>N-a4Jrn6*uF
z8p+D;2!qR0plP=mX1{BAfCF*^+Pz*fhJ?2y7E!sSnNgxY;1U3dvvRMiJNxOu%(Mk3
z#^n(VGdUB3$=yh2ccGj9H)UUi^70PtRP^j~<9=K=z{k=4Ox&5NwiUQ-4)N_B85E*D
z8aBB>E+@B7OcDljSI?>P@7GNOgoMueUq>uYdP)hdZ}y+hn;*@L^nWwcT~s*F*Kr=Z
ztPZMAL<eLC6%C)p)Tl8A^eazCw`9N7nLOgEoRiwphW9!QPMiW+A3CfM*B$E5muqao
zoYEP)!c?y*1ik=PzCYq=-t^PY9&<meX@R}Ji+7A5Z}hgny0Od^NuD%SCOl57R38XV
zS7(*m<FL)7g7^atkv)bguSsIc9cI_b<k9gfh%empeBEdP`aq|MWQgBKM7D8@sw^yN
z^5m-JG#>r*=P&1%UQJzd5}^jw<LN41TN?Y#GfQ0qKh=AbT3$Gi(O8U|%mkeDb(ME?
ztO%&AuLu@`*gqAl`2fm3UI$X)Zwy78FNlZ#3Ii9Qe(YAW+F3&vM#A5@UdFY!kWpvX
zQFey(2mLrr$F+G)SfcR1ID6F~BKX)e?;^?`ujVBUfIQC^tJS_tSi$RlVs?SE7<cgk
zU;AVv*S2di9<wt1^tBEh@?;)rg66eD@=^FG-J%Cwqu!J<=JmDeV@Dx|KoQ``KAWP+
zZ#c5AG4MIGBlRscG)}U8&SD!k*bF_NLcJKT1yfn8`SGVUG1w{xSVV;~lhJ2t)H658
zBkvhj-F!6B7vgO`P(a-&({v0!nK#OCyMel3qN6}s5cvIAxxja)jC+n#`gpx2eX)2J
z*Q+){$VZcjmLRAXmh^2HNYgmJJp!2_=-Bn00fDxG;+Y25!Ke$zKqJ4l3Dk#1^BZF<
z_Y+|2p(<RMp>b%c<C(`Zl8e+ZV4GFcKVz0|&gweCE$mvT8ZDl%7af#Z4}&R>j(z84
zcAA%)OPj)GzE}3wF6aJ@h{LdkR<}5eFIAu!6wfeT8Wks)Q5&%q7(`w0p|wjJeIvm%
zD)~q1M!Ia4_<P8g!a1T;TuSQ)7B&35+DV$R*x{rK-MCOA0)5z*v9QX+0Z$we)%0#%
z-2tuyI~>i}pd!znS}#o`ndG2wIKF@Q=S*zEsT)SjoHMBR#i%}XJ(%woq!76S3q%$|
z<x;|b{(JfO#~^#=Rd?vzyhVl>b>Ig+rUVz>7du9o*Mof6DhQ6^hkNWv)J?)v_`vYm
z%WBQ(>+|Zzj3@nq&$y=WI|}R$Ajeo59Fsc~!||AX@E`I1L)+EV!X5+x0Xhc-$-~ZX
zo0B44C_>4pD`&PC%*Y^s2l{$b1E;xFl=x+sH#yLSvOhn~g7G+WiJmN<!hNh6T=7#I
z)x?fG0#xM!omz0Zl6g?GIO+F`ht?)YUiaFPEJ*W0Q(#C%Lb+4hubE?P0fMbAYlj$W
z^9txZX&Fium$ux62?g%&^rn5~(k}+4swoFKRge4d--nSGQoStEk*ts$H*^+x9`Nus
zmOM)4r`@Dh#(H;yoXx+-`6xH0E8ri)YP{$fT43zT;~)f(p$G!7b`DUw!O^v`E)rL=
zZ?a?mSaLKMsal(+8J3G&!<Fd6K(fVZc6ksu#a`jV<_9=e*cCr%vgB+B!6nuD1~7Ar
z@=C{80IzZ;R@!OIh54_L*C#5N7>A1-{?#~9VSKUhBWg&GXK4O*(z%w88GrGLhs!eI
zv8@%J!x?}RT$IePvSXAVF;ZC@*AmhnWq+d3#jKSEc(tEHfN&A?e4$326SQMq%(xZ>
zugk1d-$NuROuY=n^hH8MepMFirx1@q4XWX<zTVIbd%RH=L8i0~4TRE|d$yk!m06z1
zJ*KCh6S&$%#Ozx@an?#FcjQ%<CSGkQeJ7km=oS^iH7#X5sG5^9nRJ%rm`!>r){`~*
zN?;2T2`l}dOdoO}S-!NWiA~B^(gfR7psLc*-qw?#7SG#8k}&q`oHeEpWF}9;v{_Ya
ztm!g?TS`x4l9Xz+y@8@3*_k_2qLKv7g-s-VcbJ8X`B%r4&SyhSs-8>-;e0D$QkX;8
z*jSV%cG(M!$+{WaK6EhY0=Jr(wLcPd*^iC6Y;s2*Mk-2!o<>Pp#`K!VT47k&$3?ZV
zkhMP+bM6*$sgZO)8byJmeK`<UM1NEgdi0;Fkqkc;yU3as9kyZ@h$Ux1sAHyQmp+^y
z(Mp<cHR@s%J_#<uWsKDsD8}<qNcuUGC-SPa%krT7J}eZ|HZbOUSPRZ}tr3fTYR7W@
z<(`2v_|Q0a`&wQ4s{drQ2y}7nhT&&3kbF^uoJ>rp*t2BpHXE4#!vANOGOpBPpx|Gc
z(g6Yh0Ofzfl=jZ%hV;6+<~HU|y1M^@lGVza5t|GM-m|JO>*${2C%`b2Ni4y^F8N0J
z@WzZ0ye>l<3Do1;ti``N+g6s|{tGMc;qzxxS)7jdusH6EkQzFuBBL054C_u86X|^a
z2nkY^ZE@UjVRz?0ZXO)Dd3!)8Jyd(3Te-1v^DyZ{(_-Ot>wZ3F+jjYWazEY0>pMS2
zS*T4`pz=zdq1bZTfsk_v_WAXIG^P%+MxzbT<2muiD=H8=no?L99%I6q${}?o&o3>o
z*;pdJ&sDp<XN$8z@kqlq9CL0V>H6$B*~tP5^zBVF6t~@CFEQ>r+`<?J<7gt9Or3o*
zDD=a#ZrYZ(-foduWQ;f-crr)S@BZcYfZ%Q@)v0`=Kxt@<wBjYyJJIi3Nb(n8bD)+T
z5lqPfGNkQFZf5G#jJ=C5En+2NL)VXyfZvp4GGJu_%TQ=3%pQ9%hw(=AUK*W6Cqc~M
zThCL!*)v^5^FyuVZos<pP%uTMfI0XG+tnaEm-k8?_DCJcItUmBa1omLJH+$Oh)ANX
zu8dg#eAW>PsrRQVkqv(dpeoxmlc|4>yI_g2r*a9Iv;J<(AYFU<sLw0hwagcEXgb^(
z<@~8<!pyffXA$z`z_#HFQQagAF}yg&-ykltkW+Vbp2apQN9WXVV!Li`M$?32lJLOg
z4aq@!-(0y{<2yI_6Zw9flHRfGUyI2Gbz?0kBV@<;U=@~h=mZO>xSd?C+YtZDza|f}
zQS7G=E5$I<dj2{xXjOPCrBojCXG0QJ{@{FVTI6g#Y6)XlHgj6TU_a(loa#I^>)QBx
zJ--SEjr=l;wz3J~aKec<WvWNfah<HM-hH*7jlR<LZw_NJn+i!il|h@QDaYTBFu8CI
zy<+6*IU1@d>lVVmM_r~|-=CHG-@pgk|Ey^=d&>i6Z~y>#od2$AeMfg2Lv!1IH9d@J
zX}igG*XawI>J`r@EY1ys0p%ue;$~UjESv~~Er$X`EYB#P{vb{j{(9-^CE>L$GY7Z`
zzDaZ&GwQkfj#K@yowN8EEi!BoQ<JuKeOzK%H$(Ez;as(=5ePzjTyI-^@0&z#<Pb~b
zkX&d!-IxS(X&{r0S&6lF=12t%=PWn5))v(EB5?ME+k8>J%f(_R*zh7X{d(p(m-Aob
zG(Y+5sVVG1XA`&Y#<Pd*H0C4<V?-^@f|0`qN!UX)=@%4Pb@+R%s&)<9F|JIR(B8Is
zs4G@p_;dy*(z-DU-+cvvzC(1fCm?repEXN~iqO`GxfDjfrtNzUOka%h?^IX3rur(Y
zrnaW`YU%dqPMtKaSKZVhfCaxSB8s{ld_|Yc$Dt{s8Y`(N6N<0W&5=|FFF^FEG}Z52
zAP&ad8R*2Axd%bwm8C2b{|Hs+ho;P6NwygYqpAREQ44hIb9f91U`|cso3HTT!JH8%
zXU2Vj<maQLBjhPbo%`SLPy=;cgOj0$@m!bHGu>Jlr+yRclZ7;R*Cs7gLKfb|{n;9Y
zy@u#G28QG;t|oP1Z=&5l2IG$#uw#TLTpkR^;ebwoWy2{)>Ay)%V|4)_dFLZF2|7wb
zf+&!FX3%Z>oCTIVDktL(U-^Kp$;xR2uH@-|5UoO!u@DkO5~F_EI}Xi3l%-0{`jadz
zB}R?bD6aNOW7PG2DR4_{MtH_=#Hea|#-I#m1^%Ox<^A|#g=le`Gj{O&^+uVY@j_6z
zom4O&4x=j2RexY!H}r~Q09jBFaC|)5hTM~f(nmt1a+r<5MI*7#(1@d&=$RUuC28>2
z@X5)sft&T&c#8#r(uLqBd=}B;z{Uv>nU=Q+7-EsJ^q|kknhvT?XTc?R#J}SbG(0fc
zSjtvC%F(ExOdt(865e4!!p_p5NgPC8e~c<<Q{WPJ&zvXp=?K*Hu2J%s<na>F)#ZE!
zJ|^)2XOTW}6;NID%Hnb2IFr&7H9hL3YY2GbR74;<UxBPmmH#fI?RJ7jLvZwd&&<aI
zaGN7Ay#W+QJRAMmn!$2N3=*cwbrn&fOQcn0StOoZby-g=frY%knN8{I09?Tg!iJc<
zmIO`rfv0i~5pZbav}_10lLToC2vQY2xow$qaAIQw`V*}LR+CZPs5eZ3u(qK$lG$^=
z(S1bbPd7%V>zgJiL!)YuM6LE3Q&ZQw_p_yQ@g%uZJ%+hP=bSCKkek2(1GY?VF+mR;
zdAmoCDZ_%CaRi7RH}tBXg#yJhisF>(0q*f$u6zIyz7m-<>3&XA8jSVH-Saju;1<*U
z`2q8X$vLDftw8Kvi|+7dE#K*FDITf{CH6xW3Fd@`)iH?U+d$$O5Z~W)`HEN~-`TGV
z&JSc5IKg0Qb`Z=z#W2fqPM4^M)^WpeXAtXx{lHwv7SKpzXt(p)KOv`bHUhAIMzs=t
z>O3jxeO_j(Q8@ns!RCS9!JRXm-}eVH=q{tsZht@BS-nE`i=x=8PN?0nR}u!1axr+9
z7wqFoyJyv7Fd`{u0Y;}KUouh$8cXM#ls2;-^%yeaB};VB1Im1s1qzLiOu;Wc39u+y
zjC7B9`rN$7N>~52{w0zaW!xu+$I5vtSn|hX0wPCjx|>cIo9Uk9zwFVWlIz*Txs`*4
z`|2Rf*kc$vZTRcD)ftT22W`p1)p;Yc>S%!n3v#g}F#f9qf_Cq5)2Qhoh;e0k(&AGV
z3T9uTHV_IKLa$I(#~VW{ZD6ZJ%L2r!C(36nqKTBuj)1YqjhXO@Dxg>ePaQzQt50Aj
z>}t)toJ{dI>#5$C7j4P3hYhK`au3E1K3+~jmk{)d<6cs4DNLwU15_f%OQ{t1833W+
z^hH3pW^(FBfMI!MG?vb0=-O**@2yf#R4r_ckHj9%@l19xFG)^+8*)6NJqG{^6fNxI
zW1L5Pmj9LvyfB-`BbOp4%AaQxjKy;<>l!<3+z)ZPh<oYTlcawbEpM_Cu8++>cKao6
z&~~8_hUFGGXbXWYpKQ7lc`5p3t{=u*W!)E25XaUNqoXRn%*P}0>uv0J#z-fI50tSJ
zfhaBPm)R1hpBKZL<%;>un!th3OQ74T<T9%PD9bpD$z+?1z7&?E+eVaW!A_iM85+zv
z<YYrI<Dqwr70G5c!@C#JjHy}E9moEyixI{(U&(sK%t`q2eK4Cn>HXN7@*0A>FWnE*
z=HS9Ke@-*>7a)?%+w38fBJ6Nz?&+znS)J?AuC0}k7Tf^vj?Z0pn;+E(!H)PWOgx6)
z^*tRSOJTMRY3RD+2>-$F)0#2-Lnjk!d?E;-q$K43$-CFLV7}b++dF+c^Q>#xfgRK|
zR6MZ*^T8FxMU|vZD5?-Wa16!=%AviQe@#I6Xjyd*H$Y6KJeTPq1P?J(MS)(Q8@Zr-
zk(j2$eDEzL<{cic#qUC51p++a`(Il)_BBpESYQAESf~I1$p2v+4Q;KhZEgO?H>zp=
z(^wRr*;>8qP>Hfi%t;NDex*LCMb@>9d?{!c2q6D>v&=G)3X<d@jF(+kad{*O?Tt`Q
zKicq6{Ml#jKb)fIU3^d-{1hnKLua&!&+@n&fv3`t9=jBDM_3X<bNH(0sjKX%W}~1A
zM-qfR!m8}(WksC&30YZl6(>T3<B#+r&#saz?!KjFpaI<d)I~9@#-2v#Emv#6dK0~D
z{{VcdGwU%o*#4-X)pO-Le`XN3nd!#1;KUwC?*qnznC9+}jt);NBd-QuZm+Ii7GGL>
zTkz!~d^Wzmuu>k7q{8`_AC!P`DCvH^(6#xFi&p0D-ys8JVTroWYNu`fh;+)u;Z873
zlua~<Cpeh0pT+k4ZSW+99o?=~=|^(QG!8<odxJ~eXvQ_#rU+~i166U0E?aVdW7`JB
z7)<zqD8TA3VRg^Jl0&ZuekBy6@<EC&+y~@Gs3fX!8%(Ozl2AL!!75}gN6lJj0{zuF
zWJn%@Uy}epZ)+TcBsMDk9t^SeEI5%4;vwL=e3m(cqMnB~Ll0ck!r#hi6>@dNJb=_R
z-433}SbHuHBYlS$wkrhbUzV1vnU|xo)Gi~)m^Vl&mk}(UNntSW{MOjN@t7%SQ7Yh2
zvn4JyClt->-+jUcypYAd0wLLO5Gz?HTO1nvJg9f|vDgTWdkV7;uHhv1@qtat%Sn-W
zQbj2|-QLm363C#nT3O4d4fHb%8Md~@AgRI}1l~nDtx`ASvQ$*sFCAOIA7HhPW*aBd
zVX*W|Zzy++boYs{$@paBtrVl0{vs`hP$bAk{>bAECr$X1Qi#7V`D>t;HVQlqk0wtP
zMMXrqgB%GtJ+|cCw-lZUO*7hTC0P|Foa5<FJ!(ywmN#Cmi*=k~ZX^-?NI!qE{<(~m
z%=M7n<)|}L3H1Pn4yv@tj`?qtD<b9Tu!zaOG>+ZGDDxoa0p~(usM?<(#k8Fq@*oqH
zL|a2q)>LPQ`<$O$4QoBh#iQ^F5e8lWb1Wcv7N3UJ?;{uDji@{x)=cL?N|rXsy<W<2
z*XDPmM!bFOKmRWZlyEV0Wy92+V6zhU1mhrH<h>HZBi|>v>vx*fBod~AjZm-J-+?Kr
zP-q!e%d0zuW5dcGY*|C*u7>|P+nX=O?Y05S54mH^FyU+=_QD=z^><4ByC#9(gw&nD
zxRp^6cF7*aeJ0j0HCAKSl5XL~=Fu4f+yl($wo!8Tta+q7n<DYL^XlT`A(7sK#rj^c
z38-bkms&O`DblSr1z>hoxGE0txip)nroH2W16Eudf^I}74X32zu;684a)tB-wk6Z(
zhT24_cagV;pg5PawR<Uh5R>6C&4#1_T#HS_1vyA!8D>oqXkJdMq~r<QZ3O?@hBNKZ
zWeD-}=~PsQ>b?3Jn^z<E8z;Ma!-@q}-(EJk?;uR&)u~r#BnA-MfNXDGNf-pjEXYT)
zGq?iT;|M~xRuLo^IGIFB=whE?7|~~sfmwfyP@8Cu8Ggvm+@%(DR{Ov#ej_B!5DXR?
z9qSN)-VUIK8)q{1`=x-;V>zq*79Tz+SdA8!xXi4?=s-395NV>|W@QS5{!jL}{d&jl
zg-bSYTR90^88q;e*T~!b?=Xm41wj_e103jmn=P9ruio1>85TQ1r7Cx{88g+_Fm(k+
zw_D+^4mj_Zt5D=y{_#bz1WpfrSYD^0%6&jvHtps<&dy*g^tMOB?I?s!?*(4R&$5TK
zYRYo;$OVForwe^>Q6f}hmPiiaUbWj)I$utszKlYxb8Y5LgFL79TdkmhFc(j_nCV`F
z31(8}0Vln&M<>;rYMSBGEOZB_=5}@JlBBjLZ$F1qg5}GV-A+2_HX3^Rw!*^}1wAo1
zvDNAd=ErEJ_}{6{RFzi6(pudd+Gt6cqpo_>B)^P$^ilxR&#Hag)HcOz%mA>WS`TZY
z9qnOo(raTOE)Gh7D+DlL9H5BaSx{}>_jThvQxnD6RZHNt+w3r_(~Hf%Y1c)=vn1xf
zu5czn22}J}ZPfNpg)C7pQj(m}I=_oB-!d^KWDoT`EmxfD3&tpOraX72zljTvft$Yn
z*{|gyQ4FyD>(`+F^=pX#AtnFQuKg2|Zgq9rLpB7T*IK<qbWGGBBXrOR(eF6tt(yW*
zr^F_TI&Fw3kxeTjNz!tTo7&qu1b7L)252St@W0bAq0GBlPn;R6(=m(78U;ptqN~y@
z-0d}(Rm|h(-qe<K3M3GMw>vZF_%`Tf>W(Dii6YNP-QC%R5oke>OzCrf6&=Gxw0RKD
zd%`EYNl+=1cv=bEH8~{PPe4+Ws<(i)-OAHeew&)co^lIJq&h4(Q&5ydPsMMr9-!t?
zD>>Ik`}H0b$H$5F6|RVB)5j<RnPpPCcFt-usOc}J!CdN$#zFcYv7jFycXlK>cF3Yv
zPGl<GzIjdDMBCKAo<29-e||1zzdkN*E>bfqU(b!W(z6OHM>A5&^195Zr^>hTX_GB0
zVfQ;BwF_9$)Fg8_7E8~rT01Iiu3sC^sk{H|ARdVZ2MaLYR?!sUs|6_q;GpZTy+Wl+
z!%SYspzbJ1SaDXGOQcZDQWi4JF4w0}KJ@%WE%IY4EhbfsHNzfAG(TAz!Q|l;pMIeA
zA#mU9<HTWLzEhPz)m<p90eC_@=T-xtDt$y7TtVPcG3_eXBvTa0!Lrc9p{VlHZCyx1
z2->`D7t*}pOz>O3w^?l>I*Vx?nq0hu!q!=REA{}OJ$d%-)I!Rsz9*K5%2*_9_TY%8
zH4Ri1gE}jbo>H-cA~w$DTA3T<Em%!w(lelC%!WB1fTi!+=A?uOPQ+-`{8<mph~HD%
ziJLj`8Bg1GfMcCIn(3q`O7*D4Y49OB>m|vqsCE{b(pb?Gm|b_Zomp6;q$Wy4U-Ztj
z<ec5zeY0<iM?xo1Lr~FRPEk8R4Ydj>8`F1xVGiLzz)(VTQ)~cY2TDjHkr-W%#m7%r
zM{`KOS54_WWASwP1l2fhqam!pwu@e!o_CMN>G~T3xAwx|g)6B}d+vY^<|Ds6fJ2Vp
zGl#DtJB^-$f|3-p*@O-O{e>>i56YRqgW5jPezHhhbG6`|M!wv$-BOyNH+%2dVeSR<
z&_(Y%UPqLZa@!xB1wmn1aUfK;L`yIJ%FiB&t@u~A8e$f4UAW%d8|Cgfbn2^7ZDg`Z
zv-g|hm$i4L8Am$``kV`Gax2cRm5vLbe&fk{@fb4m=IWxURx*$hf2k&o99d+CT26@S
zue4SywVU4zXeJ{T2s)4vL9(;qlX%Z2y1YxOCzQHr)0dOBn#%HKS3pelMD?Y^I$N?7
zVfJqoatW~hJyZ~=If=%ZFF+Xa$Ma#aCr63jTbgmSI^_zL5&@)tNP-CMpb%>|@U4~Q
z4}iSwn4b>jef#vE8l9&_vHXYzx|HpRbKI#9*|P^Cz7F+YpAfp(&N`{b8Zb3Wz$Lsy
zL1FF-zg09%TYfr@+IPFy_?JVoL}m&$+!yX(WZey~J@1}31C3DWZ;6t8V<|h9#(d_n
z2TzZB;IiA{f|k`u^j#x@+Dd-~U8y%Hn~UaKMi{|ZRMdqBmmTRqIN$rxgF$Vd#<q@^
zbcj^&;GsXfG&D^Py{pRU!wRquQgcMY;i|{TlDkX!NF6xaYxc^BnnWM&(!6s~R#z;E
zn5f9)6humn_74IsloO?Osron`pcG7?4LUO%h#geHN<$R98^5lyp@#c#*m*nMQ^wVm
z;z;?Pc2xK%CuT9eWhWFZ-9I%heK~_Vb)GV!Z5}i8DFkE19x`Ghd=QPe0Yfx-;;~Gu
z0Qd21BO0sHzw$uQyIB~gf4nP(qdCLk$<5g=`$4EG^#c;PXi6_IB_jJoK#heARN_P)
zOATLf)6<)3`{~)qI6h(TB}x}wmJ+-^R&|5%sGoG!$F^|GEO+pbvO#gX;>|wX9@SaJ
zLTXaEDif{mOQ=^IH7iH0>T7E%PbfIMo;ff^obR>oardz&^b)9ue<%YOyklZ*A<W*E
zXPnp3aH{n1wH({_t2;Hq$s78M+$Knl4u#xCFA}n&t{Kl%y)&(lX1~{UWzkbj1-%|q
zo&z`FqbdfeN5xKvvomf-Z=Om;4B!A6pv&Q1JP}CJCK=$ZQO2gy|4h7bpga$chpPh8
zQH>@fRHSe*?*Ead_R>Y<&y7`<Nd@+J^&sQ|gCv+h&&8cbcjN}r1v9Kwk3PMg6FW=|
z2%XkD9aKwEeZvm<46MWQPiYO$=8RS_W<bAqVR`d-H=ZgAsfJ#Qf8CikWS*{<i#RvH
z_|;Z)Hr&Afy{2_t=zQkmc%y$_){ek~ES=QuDVJhGE|@rp#9n3;g12jI<6}CfCw_4{
z;yPGw?cA^1=@d-+ejA*;dFi9V*CL&wlL3{vUBN;cY{D-ZzpsoGWX~ssmB)w?r@hqg
z7t1L<2NmHo39XIjX5w4;b;ow8@x=npMP43veC`B&`eq#{3!ntk_fHac-lbW+Q|&9S
zfU?$r99DO9e+&~SQ*vj94zc?KvZIuc=)(~)1xGGuTGR2cM^1~yRk)gjA9i`>aKrzf
z8cWf^OK<b9U86z&Z;f?w_`d^Dj7^(Owx?~~epY%E3yAX&Kw&`mu`Dav78A1sK;Vb~
zJ(3ABszf}A_3<8`P;?0t%F_oHUJ^9-o7Y0-rj*Y=!|a-YcO3$$Lbv$SDo`BgV)vgj
z;>D@r%pw1%<vkre-9phyV|CzxMuB`gHS&|xWGtFAZ#MMFf*LBjX_z}s++Qpel_AiB
zuEcQ154ka_#h;22^LKws%k~K%xP(vaXLpEu5EbebF#?q7!A!x)qWD0eEG7l(G|m#B
z<x1rpPIn-dV+%S;^NPyk0XlCsRy1Iyn1r}=iV`|;$4~+8f%+ezm#>(&cCd!eY|dxs
zXw*I1@RB6x_~ZrIrQa84eZ933Wzl^TCnGx}cWvnSXwioa>dQ1LSUZ4G#Xj67YTRxi
zmZ}7U?D}B|)f!vW3+AJwE@}KoyWsX-=C^YwwUU50cm^Qgm82Ysb}`Oh%#LX^13Xw;
zDKL(j<z{kZvWP(|5Of4_Iuf%P5PuI-T49nd*W66-cR*BLwHFzbZO;AoVLE+Ln6r@*
z4P&SAUQ{sa0p)pLK*lEBk4(6gX-);Ii4^k|@b(WdYfj5WQ7SROjk^S`CdOu}YKryZ
z4f1^21ht4gIZ?|W{2`wT8HQuV07f;uktW-%$>F2K1<eczz<_!YchgDpq|Zf0Fup#&
zmk`t*eb*ZRRC+{`ve$%t_Stv6-5RqxTn1tE&}SX$P)g-?t~puZ)7P|xZNLjxm*%1a
zXh08<ICQ=x`&HuKY5h>QJr$LlYCBV~LOiGBV>lQ_wkTsGux}3&V9bv=U$vMaA*(IL
z2fa;+IKj^(?4G`?a3khq2%@ZXkS-Pp&=>Ab7-g?2k~gR^RFUaZI-xL3$5JVx%M1W}
zV+XTqeYluG^5v$}p_FM15Zt}s&Iv2LuJVam(BE{yH$n>kt#TZ7>71>uUj|hp*=xHQ
zCwo~zxs}LwRTTwZqAt!&TayQLC1h8q{pP+6>K!)?@u<J+3bJ3r`ly^)M)^Yj3h~XE
zV3I{Vyv#n|9xXg`Iq4iB-eAgD<1Kcd#w~dZ(`&ku&`JZ*LOvibUT+e@dXfeph*G_$
zL}=Jn(-YPM%+~2dQgdtXq3AdVEa@$k=Eo>_2g<D^Z)u8O2Gcn4N@HEwn?rtp;e$rM
z(6IH|79#`#7SD8mg^Ub+!+<Fdm|zr%GNN!%WDmIj8aEajVtqDn5bh%luzOQct?Xzt
z+o=d!h+U$2H8|ucm!hPNAdZ51aNp(Zq3XqBW*&o9&=0hfo{|Opc=WAPC}&YP%8$cE
zr#~ItuaSv4`f~nWWV)Our(6Cy;?3q;H8oFR^EgZ;>Cp$^WuZXwXdw}YTiTL?HUj$;
z!Bh5u65p4OX7dHp26p`x&k54<$DUdfx62asG$3bSXM7|oKIRYRGDrB09F&t6VlJV?
zvT)0-o0>#`kkqu#jev2xyiK+b7e4*HL7H+r9HhAJow<iIi`(e6U~k}HI-csol{m0<
zY>0=(5yAWml2ell{q>JKwZ~&Tuz^nfnNOc|DMxOa%qy=*7^kpWRK=_zJI3TP#a-f}
z)t96~ZVYPh%PP~QPp~f$EY#nM=nhmszdSCWkB`4=t9qu5W&Cqu`gFr%>J@^=X?c0Y
zGn?{rKfi}<Jh_IKdm6dUkoV%b<FqqnazL~AgdtI5a=^*N%<HXyM~G=XI)Tg-N=v<J
z|BwOX%|T0Y7-rQiCo4hjj`!DN#-L9UVV-gtWy+z2GB}ko*$#qJDjBd;%HJ?u78aWD
z3mMggO}OhjCj-c&fl^&46pBd|+d9zoIUbL~_S}1NWShkLMYvj$k7o#x`O%nQsfixA
zPqi0lK#FbXb20S_b#KPLCf%{T7ZSN#wi}CFo7=<t)w#yjv#I@PhK4hBs}|-i{>CeA
z)Xp9T#vg?zw+3}T5lN<(F<Xa1h@^A6z}|8I2{$c3IpoS{T1BJv_~YUvW=pGI%h}QS
zeF|+}dM=e2S{92{5QxG1tr^28ntaEIUj6&&5dK>RX($FQY1y5`<Ut*psYM(agunMu
zIx@YO2|buOm@tQlJN`QK@cFj|GPk{UWXy`tz(2R1R}mwe!lIq61wtd?B{5}vKo|D8
z!Fs-idCnGhr7SQe3`^5!!mJ0|ukR~`Nk&mBRsTJVOpUu+Y&X!|s@}-$IsHMTL`LP|
zzk$)qo73%6|HO$0;r~&39R3$dHmqv>Z;1F0N~UXX=hsiCHT!q788$&L;xD<7HD%(F
z(>eo5gebQV$;6zLPQ>@yc03X(`M=j=4ZgMZ!|lP-o3TT8c(U~u%2@VR(kF7@v<ZVx
zr5zKb=Z2}n%!;W81BhS*hF0>ed(Nsx9Lak%p%$>sTmhuoAQ})u&)L40(L-0;*U?)(
z|HR_@ss+L|2UY`5Gk3ZNmVaCxS1RT*D8?XEE_lM}0=MYh{3wD5=xIR#cWiVyqss@v
zsbGz$Ng(?IE9GLL6nzOf5!xi#y6OjO6$rPmNlgJ<Z&PJROBi5#8&Nu&9KFQQ29$XO
z{T6o@{69nk-UCSdc9EG^IutTo1nJ2br5oz@>n(t1q#}^5nusR|QV@wjUWW2#c7e=r
zJ>1Ye>Ug6?{q3hZYl?iqImd-tz?10#hjdn^?S7Od&Nl1N_*L&XbHj~UeJ6YeUX6jw
zcW>p#e+lgn(dsp{Oqq0LtWTBR*CQX>qq&=Y_GS<a`n$(5sj84YZNO74PSbHYwqE~0
z_|y35+K~hNM(JTGkmJDnIWwIyIPwP7XGz`7z7MsW2pe79OZXi-XZ&ixlhNg*?502j
zvoSQItx($EC0Wuch?}bHb+#3U`oB-Q3jj{>xB@z^lF!sVaoXsEqH!9Y#8vZ)@W-e>
zhcz4{<V)yv!mS^U_?sd^hvv>)E8a+Rw0BJK+3~VyeKZdu(9FJ=%erC`z<hK<p~&OZ
zFe<N<2aSo?@8OZ@>r-y6+n|a?J$rPQ9|n>~P*L8?h`2$?jjnOcDp2IM)Ncu7*)(<q
z<!z9;Ia^RB42$oHuE*o68c3C9GPXz#6ad%;$9<2u7)>S|zV7(}{#@hkSp&zPs@E8e
z9_NH+#p-QU%{K51EADK_F_;Cj-C|+u9=#HUI%AM4(<QB(?hH>goSL=Rwm>QRyUL+B
zK??931PA-bnsfHQo-w&KLUv)_`VQ6jyNa1ew76qMv2^a1-V6*_;rD;0_(-fvfNWbL
zF3W?s<;-6Q8y<(Vy1;f{++(VkL`>qlhEehb@0>SmpQ8uvqZW9X9J}+u&z&vS%-cl4
zzK^^)rh2OBH;x-xNW2;>&9$bug~aSl!U+Nmfq2gvS-yo{+EoNmt}eOmf~B5n`ESl5
z1x7ZVtQ{FtxFU)5ox>QwmW!I-AzMbYPLWF`2K2Sc_Q$d_(bUf{TrOcxo7Y=@EAvp!
zw5u6oWBQ`U3;s;dk1rKf4;PI@%8Fu^F2xxq@nVqER75;Grn(8pLGv7pSnbOsr%UXh
z*#7N;y4P+a7E6;fyi|j7*e#lsWK)XXRAQvBpxv&5v$vFCytzH18>4Plkd4s4pv{I{
zzjnRyQK1LWIr(UjZn&aj8_#UJQPs3}pG~?^b@o>D9~DNYN3v{_9317SUihJ+yr7o$
zZSUKXcw_i^xbMxPb|-HHcQ?)$N@nuJwJMKR{$!Xgs=T^=%0$E?*nwchYGH&v(>pej
zwKbm>VCN7kDx1`v_nRw?1@2?_0<evB-eh9n(AAre<dqmg3iXq-Sc->xgRSoB7X+xO
zMLhWMDBCe!P|;UFmb>L`kBpXsw{46{6wm;6*Vo!R?(Qi$dxG1}tF0x}p*Dj}my9=I
z(s2%~^jE@y9xfZM5ET2Xx6vZgu7PuHVl+3s$OXwRs_Ts>ha-#tu{}|1B(r$N&;y?c
zm6=UK2!vym)QP1Gqn4;dDyKpU=KuCrqr7Cp8aI-}Vk-KVn(oUPKk){-pjZbm+rZHX
zPG35h`zGrKU!ofB6~bv{j~s(PX7q3!;3vdq7a`=(&<Y5+nI|(EoW3$4#I>NdFC!vJ
zT^qibch02(=py|`aT%Qd$3rKwj%=}f2SD<{KXlX0Srfg~EOLcJ?OG}K0o@;7ckNft
zAs1h(La#U6z%M7_u<?s1L&hGq7!-ExoN@?61M6GI+nWjp&}I$~9L^a8J~qizR&@^#
zx)e}ZKS?I8VRzo3eebUBeBXKg<27yjQ>J_=_(BD0QF$m6xNW=v1kqGq;p{^H({0}M
zB1ry_Fz>e%@2{n&I$(rIaV_8VpXdDQ-8=N|?o!>$ok_!<L`uosogF-x$5IX`>mU@)
zo`QI`VO^RAihFkXel>13izE$`>$0-v<|(ehd>u2CD&~V_x#ocM{F?Oukrg;c4eiOR
z2Tqwnz3aIZ8j5tz*(aGo_QkaIG@}(bT`^gv%NaF~VKX&u#p|We^!@QNc_R}UCJhvI
zZU{`)@v3aEs2rme8P0zPnFpif3&*$yrJ!Y@R<h-%5?0O>2mZbH_2$O={ui5W<V#c$
z6BhtL%<2DAJtKW5{eKhBYu<0yO}2#I&su@x*4hMW$L!b+P2J?yis~Yd%Q4RN^_?CT
z*?bZ4gA5{NpP~8Z7vJ7@00_S#qxET*#mz@c!*CEV=D_s+DLnvwB-3$^#E?j1x(!oY
zdpy(2zdh0hZg{8W9JCK4(;Y;K3R*C;V1<?bY2@W&$D>*#j*MMg$nqSC_GIvIc*=gf
zoP0iBPe*U}>;_3y18r)~!wfm@;IVnfmgzMEG|>7*Jcy!Xod#gpod(Gu`#3(I_5=Y8
zhB!rIsrqCMMmf75<wdFbIe=LN>8RA0r#>-x2(0`&Vb1Y2iPHa4Wx7yqA-#!2=#B)y
zdo;#WrP%f2-yEre=zUd-N5U9m03-K~|JZbCWcVceLm<Nva83(jL6aK@eYF4)y*g6-
zsQNTt6azi^Q)ye5_+SSY55v!~-}eA%WID0*zg#@{S&=HgP(7_8zD{&vskI@6?6pIj
zcFzU;Ue2T+=;;60bf1Nn`+HD(UmRUOf>Ge~pNEe2-jI5LDgNACoo<eNINe1)gQ~Uk
zAq)ZM^mMuaVXA@m>+pAZzu$KTZr|)!@56T<ENvYR{{yE3^Tmy-8D55m5F>v61_1eY
zW>}!B4F@>w=gjut;(5<%t@jLQ<gkC8Rr*%kw*x1#Q7SIw*9$l=FPh`F_o7z>XJkp)
zTQtGvOjlQXAkL8B>SB7B73t2v>s?YyONVggV0sxK<V^Rqp4kqruKPl$7tqc*isJQ8
z*xdT_okP&I{@$fMemw@Pjt-12oR}%_m50Q2E&b@+-E{KB9P0P|9n@%-mm{oR-Y+R2
zC`BRQAW6+33J_V)pdO60+cJ3@{g(P29Gph=%KMpQk$>(do);%aTIsmtQKmBny-1q|
zxjEejBgDHq$E3fiC5jIJMZ~26u0L5<_<rZb@N}VF1@}WO<e3EGIPkOGh3UhQ`a5mZ
zw-s8*hi6(+u0ZcG4Snwk({v)q#1rsb7=b$OS*>7}d#gUx_3gu<G}6G!pj|VSgD(~*
z?cj5$Y4R=k%j=ph=XJP#<JfG&hT>lKB8#kz5zbGmbatq_lO01kZR8tSplbnn4xeD<
z6Y-gSe2E@u0j!0I19V5b#;182slAw3Aeg>m`~*Z4<QZSVsBP)b71))GA6Tfz$v#We
z0FDVl6!HbPMwELzx?ZNu{FUEFpfUh;%06|S2)jOxkr`ukJYoiZr1%FQR)1C6Njykc
zq;$|41A!r^U7kACsVK<VZi#-*q?$S^Q-t5M)wq)}8<ArB6Mv9d74jR+o;nN|+?8?)
zgB^}ngbQ^l=9(ZG|5SG%Bw(hQjI@=_^N_QKUp;?bIM5`YO7+Otz$8l?rMUZMJPQ1h
zeqOJW3_Qq}pUzXi3=m_bGo6jUJT<-@kX9f_6^)v;ABcE*eY~dx&3sNRQk+CkgYym#
z;Ff<2;~mUS5Je`#1em`O0Yh2%QhFZ%wmT}2&FCK}q%gU>q&I;=7$<NCI<i*39hT&u
zzu3Ej8^ysjrbqCqe+9NfQJdJU!&3;qJg+Fd78ad|?c#+85rE;gGC_)y4%d<LrUaCk
zVG$8BZ6Gq}8=CnOa|Gkg(i_*z5O|mvr3-K%3aH{Jz^-Tfp9@6RKRuB~t{ZkWukP7U
zN{LW(G5c=C`Gu4K8E~Q3`ECMuMu(DPhEry^1C|&K3k+)55fQv2E_r5TYs2)R0*Lvw
z=Q3*2yOZ$yN!!3nI}h&ePFC))z0%?J&N4XRd_Xur@PnfOncbkcvJ0FMhc|MN0-9%=
z_L7pMok~UT*Anoo%X#|<7DP6p8pSWoeCq0d$s2>f-_h-ZM_x+EXU*K)(N&{J#@p26
z$dJ>gzgY7YkQeDS`M;lvO~`ov==@CKFwkJh!8eql$)9b7=SG5zEAVt`hv@kkQqEI8
zTam&rtJyj7=SaZzL}qh|;V&BsNO?b?jN@v?XYNU}b8=*s_nHT(^w6Fg6ph*60=hrJ
zCcB1^l#78O(Fwd27-hLD2fY8gc%Bp^uLL)8oF~xqZ0kQCb2xt9j?%nN(%;~EydDcM
zrK^3(T4P>A4@(85z67VN_WNHw#2%Z%ObJ{P&C_bXoIlaDJeVs_nf}c3o`eT0V=Cc;
zxB&))P7*N26#6kl_D+o_g7XuPQ;^t?1pV-UwB`y99S!oxqkBN+F)@T<(oOnQ<sF2f
z!j`ScvE&6caUjKZ9)$heaySOo?uOhBq4yc2DnfBu*i}tEAG(4!tCrp&u%1#0#*&K1
zsobHPfu;zir7GPaNmcUFRN}dT3z($@PWa()_T-l80_^d3+D7?~*#L7woA82opCWPu
z1jb8&V{MyYv>q)RC5TGo{3T=f*i^xiV`s3vL)3gAx5JXV)x2$k4<9Cp8uVf^H)YCj
z4ZaA&uge_P#xRGV73LRm1Y0!e1bA~S`@ky@346Wmzw7dqr3*SiO9WB~mK}M%;W&8N
zd23l%AD9LZ65{y>5DM&(`LZ&QGplUPw!p_K*Z{?ELFKjxWDw4uh0tP%tb|T4Y#mD!
z>bhRaie{R)>x&7g54E2L!7mVK!aWDI+d~Rq4AZmFIMy1h>hWIHcSMbcHCZAT*)amj
z{r7otdQu(N%Mh>}LyjH-nKB3^TVF9yF<+>%Tzl>wjW9t-qF;l!xZHxk`)4~SfjG%J
zq*}Ml+_oyuGR?foQ6Rq9QQ(J*DZ$*{3Zi>k!d{yXy}z7skN|r>6LWxiOf0GcT9T1X
zQvhR8jUdKaSnx4&2=IY%zn+o5u71^urJ7Y8q2~fYt^^1iXZsw~6pna9J%z(W5(601
zh!qqE^ik%ZMl=*?Pul}g!uc*COfYB4&OoD|pZO+9FvWp0M`t(y(3!Yy)M(hZwStJC
zc}dgW;lY5ArN1C%K^LN?^-YBkWZk3>g7s9{kZ;_T?vFg5kf3l3hJ@pB*Wrd%z#W=y
zH!z1r$okygqKq<eSs-meI(31zjXrE4<3$9#kBFH*Fnp7lvT$hnC8E;M5Wq43jL<~C
z+DCeDqp=`$9)9?$g~1w!V#GnX>y<YObvD`I`@JY+Q6yq1J_xEfLoo+e+h3-;7vesl
zDyfvQg-3NDxN0WBgR}Nb?z^!#ok8-^x!7q*8M1lPz)C%JG3?aB%KgcIe)o=kF-O0H
zo+!~@FfA+i(N0Y7Cy+S^gmH?>adtyghLjk_1ojIRDlr&irkYh1P#`Boz|IW;bf8c(
z-`<H6OV5)xZbj=2-fF8WOz%9^9?~L&P8Jiq5X6Nu(r;FhW{)$WEDIa1%-l&BBSS*v
zULEnBa(_Bwns&3WGG<uHgsTo-rI$AG>E}CzRW`JiwIdqGk6e6YRAWgpy$>T_|Hu3O
zX&kZ5Vak3k7U=E|oX7%rDg!h+qf8Av^xh%z)4QEL{eIo&ZKK3+7bv(A1=AGd4CbIv
zqfQ_wD}wYa5*nLjyq>t7LpwJ`IKFKLhS~>wXS*m`RZ`1sk1)#5s0%2}<AYH^O_O?(
z#O;)HU@-jQB9q~}O6h$U;@6{0JGeG9V73G&s^T4h(#sf2U*1#FLY^%l(7Az%k};HB
z$6h?Mw(%U6C9DJo6ToHL!y_#dm|TnF7<~UT4(Yocs3jE^8YavF3XAk!iC?eUdug6;
zRb@&)7@xk56L#*2J_#)yq4EhSoiHT`=wB-y#alVZi>ogBPeFr3j3c%N^1WdAdF54x
z^n#>C-O2b*=AxKu)9F;&gHVxMH2wf!IzGF*Z_gpaN``;}<lKw{&KDt;)Oz(+BQ;gV
zyi0@@>Z}~#Zv6xA*fLo9P25vs<FfD3`nhb+J<xbUYgZgX^)a=Q{VF1I&zZdRER}X3
zH+oE>YFt{^9*&Ywbu*iPU+sxPh#Tk$-=o!JC!1B<*E{4Xl{OB9pU7NujZTIwF-=`W
z=0Kk)#QI|PbmG7bfO6cRXl#eJx{i5K-t{E7#G?{M3)N7<Pe6(|k)<k(!ise;G6KaA
z(An3q>A=oJVIWRze>9FFt&WkYs(H43arEm`t(x;P94#w^j(J==H5gWi*7jrCCtIJK
zY~7XC#2Xi~oh)j_dB~p-a^LkVmyf4Y%U9pdeVcL4_EcCkB->fvUn+GpwE)}OH3qdn
z1&CMrlOmL|o~1(xS-A1ovW{~HLAVb-DHjDWG<i;|SXSc@#F&>7J>Za~nB)klArM(r
z;FUi~gFzJ)%rbF{A2Ku3hWqT>FePAL%Qlh>9Dr@qI~)tTm+XccqOc92@-c&1bjqL0
z6}W75loSI)fFyO)V}EP~yk_aTZQ6n0n*O4*Z*Oh0qOV>u8T4m2OG|V5`UhilO1KpE
z;1hDpGkVDBci{0J<HAo(+`Uv?^Blrk6QvZsH6=n3upOXjSpbupawn0QB(4B9${;^2
zuLqs|O9F=<5;oL<JSH&y^Ga-;HWZpN@FAV)7}`3KqWg-+kfzQh4dz_hD=^o%CS<zo
zTlLA>>S@{5)*A&O`SzEvhJ4&0t*Z4r+e!)0q7~Bxooh}N(-Yr@*IJm5e?0pKs)YL@
zdNP=`66qGDbQ*Eu7!tYJO14|L8EHp{&v(PwtetI*L8T?agzK=b55StgR38n|JGj*p
z2DkMmyyN^@;Cy?}l>JuieMH0{jdfF<I7v~epfs&ifEoTk%Hd9*L|I<nvZ%m5E!B_W
zH>2S4)^t~M119s8KwFn_b{W=K9cRZJU_~-tjT4i~Kh9ye;jG5_1si%gVxLmEhoG)}
z(E8FfdM-D&^}Ls>Fcp+6LToA1G%qE0lIWV9ufj7_T3Cmx-8z!1wmAo7yWGGv`-WM2
zr<K1+OYaZH{hF><f36jbw5!5fqc)Ior{pR%RG#@d^t*t`%_2xOFN;M?1g$BFz0*-`
zml>f?qt=?UyK7>x$6FMHEC!NQY)h*ef(Y&dA&0`X3xCgW{&bc7f(*TCU7-J}Eb-SW
z{BkFJ$qIB!@tnA|jBLL(c%NDnPL1V;*CbD+O31+pkOJMvfTVyZ0beazNCt9vh`F;=
z(x!J=V+Z{6$6Hw)%fma(KTon-z>KhD?hW`_GyW=yIq>4!wx)b03uJpHrcB?or+$BU
zXsKtrSD*IuuYQfJgldW$aNn7;m4>6K`LzL_zugvjVsOPAsWje*Qd%uy)v<vqnu<EC
z=)@Iem+jOrt*0cv0FMwiJq*OpK_J2#5EAR$fvSK#5rZDvhZJ0oNEm`F&>n~C;LRil
z1(I3G%&8ikkqm=NC)|(nX{1sS8a2L==BQ8dqkt?IxfzEgyFw?5k2AsqREse(iz@Rd
zsFhWe824a01Bb149%wj?PWRl-s?sV7;-qm7cyMjTvG|ebjce2Z_7)6M2A{BF+*^1o
z=w6=AA>rAByrqYml5K~Ijd5o!U=8d3Z7Ef$w2t5nspnsMQX~%somnhTWuO~fgY!cH
z4`X(!obbp$hmTj+ZSgf@*qNBO3`Gn8xHcvl)U#|eDmoFfr%5XXXu&Su)3!CMjEnNB
z4OjRv&>1Q2rcIi{NL_5JBY$?Ng(lT$TZ%Tm9@GE6DJ%!?Jp_EHqrF3Ttv|Tw7PRyK
zEJ=>cS?CR;=xwf*D|&926QP7zv7->V_@H*176BI3xE%$Wf33z@g>R*=pvjD%m7~h1
z9pjP574vI0)VZ7sfU*@u3+yF=h6lr`hiOJCkrYjmEUDuzM{dPx?q$YnU#ufrhxl_x
zTj!N(Qg#LW$&R5t6+_a_7-Ml&pFTrQPD-C3U|Fvq8rPVec#xRhejzkitS8V-^xhwk
zNERBgz)J3IrGZBkr)7YFb!@5V(N+iN!V!^?S)&_kYTHZt)1I6;vy*&YGdDo`ID^%|
zQih_(3ZQBw1$@GA=cf`_oVC4&B%Hk0R45Kkp30;lrK}$oT4c8xe2w8rVm5|~GqLZO
z?2v;(U@(DZcaJxq{f^z_R<Qs%g)b4a6KL+_M77+Y<Rqz}>T2Hl!Lc*Z8*hEnJS(RZ
z*R(2L6X_IdZ#L=_xhMuOX3jYKHYBJ>2=Y_)6^n2(66s~msjZ*2%B#&Y-khF?to`Vi
z>5?jl;BLe>V_86~?01Zp)R#+{8HA^}pOZuYLi9Qn47B8=FaS6Tqu8|#tk!}|4=qFs
zED7DGTaSwUi)MlEZ^emak@kP+dIuiS!Yy65Y};66+qP}nwrz8jZQHhO+qSFLsolA`
zC*A4u2WB#p@ePmXwXGy)fRY2h^T$ZmXmlDC_ecyUk3g^1yf4jZ#d_2Ib{2r8c2O0>
zHBX9mOVVV??Bl;h(9zD#Xg);ryqd63>~u;VYMqkEl!RMOx7%nF3Jg6h>;WAf1wN{u
zYJhW8^%V}Q*$Rh_AIBHm9m-XOJ>HF)s@Vo}V;TYgVgu}N+81n0f#fA%(?M6*fHMUE
zoThHIio+JEqJ2xT$dexp9+eT)l3*n-lg&~N*(Fcqb!g*F`jj>XL_3h1W@<+jI%~k!
z#Q-^SBvevM(SUZC#Brb2%ZVb>^Xta14!$3Z@bP}&koS6cUX{BQxIIh?L;iXiKjpt`
zB-`cvd^yS_+uaGeD3!yLeQul;D*N~Jw$3)&^L=uZIXX)Aig;%RpKO0-Ilmnea?~Og
z)vF#FMdI^ClNOL~>%y}H6X@m^a8lBSU`nN4s=X#YhPF3*e*7~>bT@`?&UQZ&9Dxs_
zZr84|@S?$ZXB!ayrT@^w(FN(mcD2~b>~0W!s`WrzLrc!`^gQU*Cbn{60v7c+R9mb2
z$stXEH@J$Q136r}q65dE%YC28^nBE6d@){Xcrm^sErS0KZ))gdnwWda;svtc>5vO?
z`tfsbUB3WB24LSpscZw!?YWz1r}D>7rlywe1_s~t!xh3j%&L{n2q3OAJ<tpSHwg~D
z5~jlD(TM{tc#Yz7+W~?B17AUb1CKHYc$Y1aV|Ptp)O>)twl5*eLrqNER>@BW)Ulp-
z=ZxjPtlB}j>wHBLdO}OI!d>rzSy8Q=_PCrG4NA_3R0Rj=YY+;?FJQFO$)RkX-Fhfd
z!%F^`cnO?%25$E^Gq+#_mKhWesCajkS?{ps%5ULz!7|V)yB8)1E*N`secz!Laqf>x
zrHOjSsViD(4vEa!@d@9gFkk%(4N|#mS)NMCBv+2)E4GgUycc8<pwc29)_u;E8`JUE
zJA;1YjvCw&Lb#00*4xLLmTi_%N0vfU#2cBcwH_m`F=b4DM{PMuacl9YDWLH+{l2CQ
z#mX2|xcFMO9e=LIxh$)KG|&s=$jt#j>hwjEj|a&Q0%WJ(e>^Y|jaquutvMNfxtr*9
z_oCW~OV0Mm0PNTc>!Pft_tLibWhw!2vS|MP5bviX*@6aB5Vi~9${Sz+Wkx7Vk+QWA
z-TI{G3=vyX=4Gw>{mc?r@grf{X+yD8FS+h;-eCsn)HlQF0LULJSsAQsC}joj5zDT6
z-%UUIek2M*4x!W$)D#LfB%i=)u|3RlM0#A`16Bs{GRl0f_0scF%P0Qr8ng6zNiAIL
z=shSm;9IT_f^n&17v?}-g{0UEmh3@YWgA#gQX6O8K{iBwVv*MdcAICzt$yf}m+NF2
zX^IY4_~Lz6)UusyoS&oDrYetpuj)Z~dp2J=9hRm>$gb6H#%_|imx#*#E;eqcGU`Mh
z@RzTCEQ8zqN2>aE@J|;E9?RgU@WC=H&;B22Np-7RZC~JRS)0W=&`>EEzo%BHCL4r^
zXYL<i++XUhY{`8%Oq{~yIZmtvC;H(_V~<D2T%JpCXGBuUX6;GRKKvA-t=uLXu<g3q
zlcsn5s+OB>CmeJKEAQ>i1{lj?0oxux6L7)KPIg}_3n2eKaGEUN@d0dvWCH~(%Z<#|
z`bhrulzG5g6Qy<;@;$;pW_WFQCQXNo_ZtiMR%+Z^<I1t==JVVOz@*x1|Ku9Ci3H^i
zzlM>pn&Azj>0U({(@Mum*+Q|RgRx6q2i;;v`NyQC4?ene>F2Y5M=gDLKz&{CY{tf+
z>?mdrbM{zNrFM&Qu!4RpSDBA;PkxhYN=}xG4_`=6bpovv3@bfpP42v?a0EQUUnRNN
z&dZWUshWw9iB6%ZZyIKnkB2DbZIApE7;`5Oo7lQ(1r3KIQ2=j^Ag88P6sZaVAw=hh
zzd}6`e5RAcNe-zsT}%zD4lViRxCj*$#N%>K7x;`d{tfEIqQH@G0$Fezw5n=|2rVdQ
zmiI`<6b*S*fqT&F)=+Oq_+8)TI%n_ow*?Jy<Z91CxqNI8>TD{Q>K}#`I&4nNzy+#M
zaEjLc%w@>H^*5$_zEv8ktBTNhLYtg?yXPs*#+HS0+dC2gMPBe_CDqETp!my(p{C`9
zdjT!T&+Y7&aC4jxbF1C;&J4zY1Lt)425+^s)VMP)e<5C%sTI~yW3otQ!$yde6)2|x
zWs_BTRfiqrl7R!C;=F0hD&E7@V%2|Z^(W(wg6QMqcoKvR?GX&?Ha%gE7=LtszG~R~
z=Y-!m3m|JGzZ5Kd0dq*JLO!24f6A0#Z&y_c?F~gOkZOmZbljxWm$mIRIgzoDJOyzR
zt*;7n{@?jR_oeC6exhR#R&gFT`p0D^e6ANmH8=jsWztw8&7G5$M*AUG0jXS*(pg*U
zZ0yCq6fO8lUANpecChbPYoeeTM4#GtIR$ZLL))y|%TwE$6WH9VZ19WHA*VG$T`UD^
zc7$car%N@eeXBS(Nr){6-?~O!a&ODI;l1(;5vIjs&ba=uzDx)3;{W!HV%;KFV)2-w
zA9N9$8CMCCpB?ojBijH4F_R1}9MV?f=vEZ;&MX>E2d%{C*7!Ofm|aCn60_Hd%I4OR
zldmEGlJXbiE(8rPHN=cs!J%Xpxs=sH)Y+6CN&Fs8f#@7oS)ti`DH&aGH<TwzBo;8C
z=*_)pwNSw|S0|iRD4B^HNfhckVB_8U%8QPP0d+t9F-RKg#nExOoHvT_;+ehh)5RhG
z=5%0)m}y*O4KxT^LS0xhcufMXayg2`WZ#vVFi5M+tJTEYYj#o&el!(wP=jXC(@vW^
z9ZE8g>?g3GC|ClHR2SlEK2b1_<tf*PA*TyB?FYqeJCkX(h5ZdowB=aNgKG+nl$UhE
zx8~D($PD)6ic7u1Uf-rGYfygQWhpUCx{oldm}NXNXm8k4A1LNJzoN^0w3cv7lwICs
zh{w1+mlSpaB`zJh#V1HtFL0h+UmR&3?*<(Du>#LH=AH}6HZ4X0|L4}Vfu7gPlDo15
zx<tK!TmDaW8R;jK6d{c3I1$M=Z$>N2@H{9K($UQ4pWon{7gO}{be<b_Pf1COg%FO*
zOmMB?WeV*@LI*V5mBb0%1g&HNRvy`7J15X!LIkH7xj>g;MNpa*)A81jn>f-sfZTOF
zB|EER`MTP_?RA;Ma&lnvYEql8tz}88b*5&KGBqUow~e9Zj$zO6W<x|=t9=Y_m`3i+
z%i6DGw)aOG3q)bkeo=8C{hH_5$Y;+2xRB=|I@r_mH`kkYsMg77_-)42I7DwlP@>N$
z*3y2yDy@Ng1`TO<%dXE_;mSzN?!{0}P{?WicT#8XQ5JS%)G8vDjXzo^O<M?@B0^P;
z@9Ra>$(Ed6POtYDABmhe6hzit?pc77o|c0AsP41SCaG{~>Cm^<*KXy+sEXecY@CDr
zt13=kn#KrFM6O?}AR3b2(?2WV^9yYq-QjVPsWhoDxo8)p64j<Imee_19{N?E(EcLc
zA;((<qcrALVL6n9SaJ6wzYso;v-Cip4jw3_c&hdcpr7oF0N0oX*y70<Qy)2mf07_t
zVqb?imoCENTfzU9@-`scc<2B)+I#Uu9^#IP+}M@DJlnNyovVwU<EhcX)1v<>gC9`q
zF9&_7WELWvsYI*RM#eRw!i?D%`13GVLo06?SyW-q|D#M^nyD;bWA2-rUa9UZMWg?$
zg~33g(w*2Q0sX3-L|>gtXTWvW8FhDo`$7NjTdkLy2bB<@003ps|97j^@joL}BWnXE
zr{6hhv#O5Vp(u*aYi%18UEPFeUy7=riOQjLc=1q4%b;a$-w-mRC3njRD}u`REf3Qn
zF`S0^=N$J?&LzjG?@YIou&zSQUw6$F=d0{FdDY_%T{I*|4XXRKrI3mbWd~X0T_b@h
za|QB>cPp9Uz^}E!ziCby4x=2NLax4^o-glTPgm$rk=kRVw@GxTz^4#gcI^`)Dv;(C
z(3X@tr5t@e6H(ICchV-J>19>0Sr^4+Wt3>oQWb6Q<QGuf8Vq)hw3kgQ${S6}HRaaI
z8p>I^!rjDUPmSi5ntiZ$)a?gxR-TIGRURwgGUbtG3HLCb3s`>g_v+kEMoBK>Xe?jM
z88I}+Gk~9v)D{{K$_eqwHL6%t?k3wZBhd%;$=*&xp?UK*C_C>$tVKE4M%zSe7>Wq8
z-}<b@gaw=q-xkt0#)AIBw()P&V6$v|m`X#oTjt^t5SsSa?!b18*dP5d{qKvL5%92F
z+#y8r(i%rGg!Z-H5xL%M8DhRjb?kWlK&l9xMgoHO>WkLV9j4>}ubu<uD57}|LANNo
zjI(ZJKI%9ObON41(^?n_=mna-xdBjK=4Z0o*fv7OdDn`a%&tl7!4nX%!;KOJxELb)
z$)pBVHYFNUc>^-qu%bu$He2AagcS*_>#$7%x(8taJMhC2N0wATu1xoK>U#{Zu+u-p
z(RB`Jt^U023HVmo`_zE2clm^%Qhn5=5goFG)C{b35CUl(p>9pNApwU^p4|orO3B48
zk~@^ul*xd>u|y9I@+>9|SoT?A-Ora<sU6|Cqv=-B!`N^4VDxt;(|6qM&JevqBBD`0
z!SW4fv9NOIk+Lx$v^w(|pBZ)J`j8;L`oudJw|X0DY|-@(Bc>cHw|whrXrKEClMdD^
z0vPmFGjvyG*{a<gb!cCvU1J=wx~3qQdUHNGJ&|4Gai^6PE`tA1YOzVqPotvf@CzzQ
z23+VCv;L*!naOv@kxLGvA3Wo-$LiqtLD(JPH@GLfZaQyg+VGuZu1}NlnPNM7!Hah8
zp$<Hs(oO>7&iayF0}DUZ+Hl~+<KF(A2Kd{@8l~gYRzx+#m}k{|vT5nuBnGW=^xBb)
zf7vS~ILebhtH)((-A<2`!!fbU>_<4?sx(+5{jGsJdtR{*jNK1nqdeANf%vGrK*U)F
zR}_ENT;f`YmL`>ht~fPc1FJq(AxpwZTM~UU>iLMAs%;P@qHNXly{ftjp_9{F;?X`p
zeEu#l>ui}h*N6uOfc0P$V3Fs(TxGdfSY5B#uQB;6&RKfAFA%oUrcx`#%MS592n=bp
zB4E6Wux)`VT`qV{4}QPk4ukj+*=Tw7^E{Cg0-H%u3WerI&Ggn!D+3Q7BvU|LK{FuB
zbA9?zRPEnU$7nQRV%A#@yfi2P*p=kUGtQ!9)oj<@oSRb4x*KesdBJPyo{3pg3!sr3
zPgtXizy-@feS7Q!|JEyptMG<?za4c%+EuWD`)>3%{Zt?sKgzHf)~TS$VdbLY$f+KI
zon})~%3^Yr!~9W{Vk=1X^7{UQ70btB;aj7#d{Y|wYiZ+g{NX3{BG89MJ-66ajmtb}
zBiD9F^juO8J-e`wNSn%*K217MX=|9%q5pfl2|)WX>xTJq$cxH#%Kp;3U;PrMy&GQj
zA}wO|-QS@#-P=nsJnJ5t;$+tq&2?Dxq{--B#>nl;ee3py6%2;0&M&-g_rJT%*@8b)
z)JVT7uz~;p@c-Yz-G8}FCllvir#Y=<<8&a3^s57#R@dCTH#U^1?5HA}#c9~sxwIY+
z%-Wtj8)9NXpM;8(Focvi;n#bU<0hf+#g@vI_z*cSEhpE@yU4_Cbh_@D8ue*1&Uvci
znt*nx(>|qWE;p&YWivrd2c&90LmPG)H1FJprZFS=V>R9YiY+^<@#jwtTGz6tD&fof
z`1s`EteoyoOiaUHakgKHk;SrAPcWX|(|1Xf5dZXvXd5WJItVau>%YT>fd4`*rVJIt
z@z|+S3-m==$Xg9&&Wp*R^L_z~ro)Sj)CnjJXeC@NJ4csQd)8DFBtfiSY@5l}fRg~6
zQaO*ExSg|uO-Bv@#w#8#x<lNd9s@`}eJF10Ub5Wdpv4-HmqqCjsm(h6-k{0@&lzDH
z$P~~?Afr&aW5+W)Fux2k%NHX*Mu7bKTe3s^Q1l?^l^eNzugqsLbZh1wtk@mhdg%BI
z6F+wrlkZ6>Fd@?Kd29AGpltlGMmB3k_w8Kmx^;{(AQ~w*XW#c1Lv~M@!%($dJvaj}
zuACS>z=+EJqc2$Ir(SGbI5WQasoK!Sd40}nK*+s7SYM22Q|k|~ar2Vjty{pS-cFo4
zwL{4G^Eh9_#ar;x!5<R<967L4Ci&mVdkoo?H_XbzY%4$1M_ts9%0HF|`uzM0D%x`y
zKUUnqWMuWVr|V-F^gBz&9>df_iifEkS#Ww0zm?H`0**abtiCotahE{qSFy3VcWZV$
z1HUwP)^j5C!v4$2{mcF{Z-1fDB|p|2{?S$?76Se6ar;Q8*xea_m}q=tg*-+q@eE=Y
zWkP#FZWvO6;7Z<kpJS{1Rm<kh>!|tUV+Zw6P&()pNTo;EYdYgMfEyz0dkW*%10Ha*
zwd&#o5ean^9fD;`ng{C;I$_V*A<OJzlFQP)KMLx}fN$D~cM#L~!Nh;e+fmkdb&a&r
zK(1_{;Hy)xC>g&&PVmjBzG1a(kpGrwWufu>SPex)Zj!53%3$u0Y}rT;{(a3x3$-d|
zS?I8=wgny=`PNK<3{6R+6P{Q{*&+6ZIuIfw4eNz2bVEQr0OGc74&}EeLsGcWY`IJ?
z*$lF)R*iB8FrY!>2G7q4Dm@h$)pCGmW}nmRD5U|zmlws??xcRV)M=n0w?!SnIaI?K
z%@a`maDMw}90&PnxJDw94{l<p$)k>kD8oMh4M_tE9`T17#;F6ep4^kGxdsA)Y_V88
zPhcUxAxx}TCiMmz;>++m@?|t&N5?dVTKsLc0OA27537tO&`2Ab8rHy%CA?Yk(j`_=
zpE%7;xNyZqsB`Jxg)8kLk4JCtzg}Z=z&*hmiBL|wcL~wFQMfliOtFbvHyPUS7(V0R
zZ}+fom)li0kVP)KCU0F`mqkzZV8)06b7B2nVg?Fhb0<_wVoFM%a=;UIhfp7DVG|`Y
zpjhEWgzQmbjUD|K!Y~m;%_l@-X;&|<w*z)|z*bTZ#bO}ie`1zM4r-T(6ikF9&l6CZ
zl$aHPA}kmQ*m#UtJFnUu8-XKXiw<O4&7uo`%OyET2$Z~>idy&$Kv<?3D^VV6l!h=q
zs1z_e@;uC>*hK1MT<>cPQP)={XJ)D-pN<<VGmRTcDjmu3s7CqPpd$shGW%#;;=v5J
zORlc1BZ`+g==CatdvCaHbB2KWFIui2Gywexo=)&D@OrNhPZNLGVaYF1gqeDf=q<_T
z4Z`Rk{;7_`rR2K;|L}62&{R4Cc<Tq8-?t)+@(?MNFT%jee8_JEKqL}*uOWjX-+9pA
z;k?3s?hkml)Y=-aYiH+!%nBkgLAm;@y3e%}0A6WZ@2^s_Ai9PLf<!eAwzx3O9pJF`
z6?5)jpEXZR90X_NAK?ah=NCziv-qu%wu`((8*4O?6<`BkAw(PXT?ZrRj3dk$#t0oF
zQ)3W_orXUx1U4#abUx}JawM#1H9(A62~xZwJx%m?V8sB=Iz^whEq$$O6>_fNEioe@
zk0LqBXr>H$?m!iw1iUZ`U=tYpQaevV;YL{B6yyHTl7&`^!9D-Up?=mmBe-BML<%`o
zHwd_|K3?#Sus9#t3`AJf0Fws$Lq+FC0FKhWg0WY)`+ygg(0PsA_{4b;h-CzmjvI_d
zw1K*P$GC^PQO+D(>j%g!T2TrP9#ArGOm(8FPduehT(Dyb2WdW0?Dnc>E?Nz7=MP6a
znx%c{Dj;t7Ko!3RB{QUi1>r-1va3M^IROL_P^bo68)~luRTI$2J@F087(nt~alagW
ze!89hfUF}u9R-PJ{~xjJRe@42*ifVpTOarlxg;f)J91=IR7DAXo&Dw&=#Mw2j3+Rw
z#93K5mB){OztZy(q0bTs+wYBO%jxHo5h#2p(c8MYXSObeic6?&jwZ)W#E~9=+eo^m
z7Nh31Qd0GmpDhel!jSMz==2mr0TcvrowBZ@G)LMOa>s6r*5HlGzuSCXIXNsIaT!HM
zrGb6mmw&l7_-sZ<3zj3`XNnsTR$Qv+q;^Ab__Np@vUHV&_&z#!m^~l?1i-HETcr?b
zbg~FFHo(1e3GPl%XDvQFW>!5=0}d`#+B$(3-hV|;=(iU|Zv_rLJscPG$B;<TR!i?b
zLVYGSx^-)}EiVk!iZwS@XQMJ%y=LsO*FHIrElR(q9}l#wD;`u%vbk?v%Q51W-eb@X
zZ?GLA>R8IC8xE3O%uyAxAEP<+W5_^v7t0qzSw3boOr5+p9ZJp%2s*AW0=e*}U)b8b
zUQC`XT(m9`)eyV2Fc)^@ie~blaQ^}}^<Zh(w3jwRh9_HTvgGtM3vtr~kX}kIkP4cs
zI9$dY^p**@)PjN<aUvlQL@`Pe9RmeW=qgKVPCrwEkaP-rA1gnWJ9k~c!SFplReXAS
zF|<}r!#7xwq;rQF&@ePIkU}nJ`Q<!x2PzTEyDMf-GdJ<REE(A=?fLuYkYB~@#f5&i
zxTQpSCGht6%^>stxdnvCZs?>Q^qHdGZ37W-Y!83mS_<J_h;d2$VBVysIR)@CFEuj#
z6R{~PCU)CWs_fehMg&*K>xI0A3)}Rrl1mM`BgqHKA3ITI{(?OP?@ycmK-#BgCpV=c
z$q;xhGD%IPpCE~I4420iI-mkZpi-0whUO5Xt=KZv5??I7Cl-tnTg4p5-%OHYTZCj_
zJBVwsfJKPcfA^PM3XiL+KLgUVl4g~wXVa9UNV;39$iOO|f#2KX%BYn;W8}Kp!9gAL
zYB?pHYZ&oi|44-hWK9z}c?1kr(9TXFA<ZH|jWr#`8BUq71c7U^h2qHZ&l#yBMZpN>
zagXk-0CQREl#pW9)+1=|i76=Uc%jL;%hpZ-1(6Px8EdX<{I+!v0ZT64CF-SLo8TGk
zm|^UG!JlcF{MbWdfT6jGL3O(sXJeoIola_x8fW|EB8F`xsHH|^LCHD;FFDeVz<s7P
zY(d2~iL>zImlW<MO~-r2AS0@0Sm<t^Brt`?y4Ym5y|Y0%$MOM?aGChvf3C0xoR5l5
zxGF_1XZtYCF>U(@8g`lox(4hw?wu7CuvdCDG-RryID7X2SVzDvm1aL|tm@U1*-n<B
z`-VaNhWVCmz1Hpmqg^4qw*^jnO@d)BPxo*`w0}bK>JwAzX;e`c&`G2?R52N=_KQdc
zgZ3?B<P<N&nSk@F-P0CGqblyWAR@MR0)|n#ZD;{9RtOwEU-|C%UOw^v$!_vsW?XjP
z34Oq0=>@<t_pSxOvoL$>&*^fj<DX_az4}LpuP&!`^@#bmKh)Wtya7JmJJ}I^8s=YM
zHmEs~xs`}y`h0hC9mRbtc|C{azB~f`M6Evx{`~6#&|!V?p2?utJN5UyZ&Vu{%Bk48
zxxE)i*@N{CWI2O}P=SxXzpuh0oxL*RFFOa|Sx|qxya7ydzVzdBgy}bgUAM@;unL#?
zZMx(M9&h0^q8c_R+pm%2wJTZ!q}mZw-n-o9q}~o14{~i^E*_?`;nD6yX5o(v<7L&+
zA--iV0QOo86ll#@0i=NCR=TOje!5G4lL?*}wrfx)l3L5gtN-5M!XpVqi*l?u+yN4l
zQI(_3m1B$E*rPloRJQ{y?JW2JeN{LF2)0!PsnN|z1MFZy?Oqd9!i+MvT;c~y`k0^S
zOZoeY$`tP|beG1@ER)!U`{AHa*P}_>D9Ef12Br<)QuDxvW9!R_yau%`=lGYasJW>%
zaMt?Uz^WgPM`X(eDR+VW9pM#3Jr-J9;&}4+Ait+F-w9@_wqwRqCBRD-aUp10BQD!P
zSpl&olx-j%ys?P<6D1rDRjOr#3ZM{FKhXtWppF!`g)wvzy)c&`o^Go2>=Tn6L%dAP
zz)fe*W`?$xGa}DSX;~_IZt6ltHtmtT|BTUS;<Pm*G~`FAT?GczZSiBz9nrHw#qPJt
z0SWO42lg)wUKBl!mx6?Bt{$@-bR+=C<j~iULQ-F6;7vyPWyRpBX7T4}I&(kMb?;Xc
zecH3nzZp3fqMqg+Wd8A2K;q%SUp-ODBji$ZGpy^tMTbMVtNmWo;;rb=p2o;fUe-Sr
zMeVw|3wK3nkSk)haHg0vV(EpyuZZ_xoU(rwylj}iq{20PFbFG=DU{=8q|9tQsc4a)
z?rj_z(9PGMJVi?1^vb=e?Jd;j`8ZY2d$|kB5q|wP&F9B_K42@0f>&4&o{MZ;T(i?b
z5jy=W?e*WeVQP>HeTSF6$f!2%#j!%GQyo?6U{r~f_RKMTg94``nQlgHn6jMx?34_t
zm$t>M@UqgNfa#(~;R1L~0hFCd9qWh2sYY-gNq4RitC9d((IQ3^*3dCdRtSuJV>oUB
zrAR1Z38e>^9W8v9eT{;Ig6KmHf>A9&%blK3*BNGArC+)-`U%v~BWNFI@KYi$UL&TV
zM9VQ~z*KRY-a+9tysQ*G0JX2l9w_ePCT|MW-;(UA=xD-US)|eq>wMb!(B_cN(txop
zl9*I=w;32O>Ld9LC8+L}_k6<V4W*RJq|BYJ5?h4e1rBzb%iA3p{ZrYxj;xB_OsRsG
zKG0T^ai8`M-CN#5?5Fc@hJPl&E3QU#aX>3e#4p=K#ZnGVuo%qWp_2t4jETIpmh7Jn
zw1yo_pQVkkZ1LQ&;yTNd;i%q)BWX=XO=rQySVgUzus7Q^6R2VqMP@(GS9m$1&Qtam
zN?g}3x0mhU{LYYohkFFGja`eZ&YN(EU1WK~QYbSBl)ULvM7HSMv2%yFaNLRYabyg+
zquc`f*itBR1%%llb;5$J$b(!eb-@7`O7S2g3B1Oq$C0Uj{wM-=CT%-5RuAU3--VBI
z(?BL$oYfp+BP5g2&K!d^C`B8lAE_WR;#6W$;~^Kok{)Dl3Gdz`-L9{Hp5+*sdORP^
z$3SH!|AX=c)B0<a@u*%jdJ(%)Z+v$$E{V{0qQ__UwK}U|ee<)yag1AVk^fD!KD?`T
z&GS%ehKQ@{pk8{(7yyee6LK)Ok9_~VbfnK=EhqjVzknCB0rS903zP_7d@En3K<7$T
z7o{!y7?)d`kdj^>vS?6JjP#JzQX;&W=hqIs(+l3G6T|7c+UY+L4>jZlc6NDjf$d1(
zbXxuhU1_zcH)H{Eg8f)l-oe?0@jQE9tcT+x$?>xH4EE`$YYM+elvT5A;0t3+7zfB1
z?2-9GJ)>*F+L;W0!n}>|AL-<~71~V0J@I7OCZ_7WOj(17i`Kxb(w;D&#*704?s=3e
zK=-AFs?aM+aFsiDiEMxq(JS^{;LujVX1N20_u-axVZlZZ%A-Q~H`<*IpeyO$VCfIZ
zg_^1%Hr&@GG5>4a$--$od3i=zK`4e`gXPRu`BJcvOhjrd7mQQvoHVNAzZkKvZiqGo
zxlBE&&6%y0@0X93FO6WgahX`^Oy3|AZf*F+*9}Lr#<|}s8XV6GvqK*fPPPTnYN22y
zZ+nmPbaT~paCU5fpf4#MQpdPSpxs4avMXk5Fh?hcRmf2fmWH3%z>5TQmGj_BI#}s2
zpat;F+C)bZI}U8_VjXIp19(@iW$Od1#9XjrRLKG}ka4U;#pag>20<T1do?5qUe(YF
z-+W{Fa(!{~cVIBQ5R%{N$GD|Z@&`4H-*ShQ79ATOWdrD0Md!gWVDt|xIF4;v9bX#6
z)h!Wa$aFWK?OnFwvXj%Rxk+s+QfKT<9M0~$9p$^6O3fufkH{)+f#vwdRzKYj@PBVC
zN%$dOmO}vmRQ{5jes6gJjBTCh{;RR%>|t;6pLV>uj#8mCTF<TCJgVIj4QX+NDX*oO
zD+8fqIs#gFA=k6&5Qvy1vN&KmL-X^`D-S*_bDG18sZ+iWUdODPTQ0AdW18)&#@Bay
z{OBMuhvdU`kGm{#U(%l_d^eGd<It%>aoMZ<<F^!VNhS?px)AByqHFkLPF+z6JV=Kn
z!xb(b9<Nm{9xu9VXJoR@7{Y7gbyP9>#h3<}tWySYO2zg`A|YCXdP25yO5ebL1`Uao
z>}I%sG`L6Grxr^O%+f@j7-${$8YNRZWs*@00;=Sj>DMQ(X*Wwei2X)}8$n?Hm39j9
z24MD`a!eGAc7NrBNFY|j=r>L;;NMef24vOw^AQ{{d?O~vTFWP*>61y2>a;WienGYc
zZ`z=kGRhja=^k#dPpoh4Z6y9!<9M_1KxdKa*tuH8RV7@d@y_8|a1xzQm9#MBP9VCw
z7;Y%(Wh6xeljNL(v>XHH*1Fo$@LWzji87`EYVD~!x`ZaZkGa;EXY;s_v5J?iPOf99
zOVil7!}@zz$X)H_5XW8j)qD3sQ}aVxY-`FAd|MeSQMy<N0HviOOU0Vu)iGpyop-Lx
zv66wAUug^i3|uA`rjvy+jiva_1fWhO5II@u=ELF9s1Rp3+kpMR2z%<M@#TV;_pN2h
z92=h$&N$v^5e&dcYs2IK+xP&lXzZ!LtFYoKn`5jofu9EL^)V?xk9K6NsiiPA*`G(B
zfHT39&iFL<#g~|Uk~^`&`@>e{A}Z}2s81zz#S((Zh=Wf8lS#`QaM_CHQwf(YVsi96
zsTv?o==X*Y1Bi#0Qg4qL_QoXLGVWL}R>c>(Ye3|Ot0cM+t&zfhm|)s4w1yx|x}=>>
zp|#_sK6bh)s^9%PN{YYpBFPCpOx@dQmOVD}kW6NBs*0pHaQ;=68^nVxCBk^|U=Q8r
zfDMb~7!E-ferM9=+>=P9_nsZ3!tmY82Oo@^@`A$z4OBl_#YS-%G28|y&92|G+QgiV
zS00c`L`~b-Pa6hz14N?Ub#j=3N;C2czR0Raa_fdBR)^ih=P)O(+$RjvwdjiA_Uw+-
ztTW_U8ET!c!Mk+$oyYV?wv{QzJ-0cU9SIjhe#IM#kTwz`P2d;#<UZeZYZ0r*8#Qe4
zI`s<N_?+-Ii68bH@b)o0;+2m*rGHKhdz@OQpBJ3YuGb+}xYbBM)Q*}za$uWu_OKXF
z&S<op)-Rs|AEQ9iu=~{te^@ps?t7XWtz`LCk-jph$yzP2@Hj<cP@zeCJI{hzoyc96
zi#Y3<0A0BDXRuSk(<T#*MMuR&lCxlDQC`xFb~~buG=%<i2Tj1Mul4GK%g4eeQ`v^4
zF#^8~xgfNW>*pbD57XQw6i?%Ff0F-I=^DFeRMO=<e+@tQo7B&tQ1u*~_>{bDHhujF
zFYHHd!IFLqLOGhu1^m}<BKu`K%~8o?fm)*3OUBDl!nwDA0+CK#f;%+9kmNK+CfSju
z^eSYcUTb0<`d5n&EQf``qW;0fzwxvC75Fbml9q_yQP3&Av$M^gwh%Rtssgh1wP3n?
z(^d}M8YdU$eY&VfofQ97I)c|-^=!UD%y#hs8Rs;C(!Ro58n{hr&qzJrdaT(AHZ>v8
z<Pd1?MRavoLhPW6KQS6#!s4$KvZ|xmZrRB1pm19sTtAW4yCBRo{-<n)@gkcpZPD>z
zgj`WG<GC>;-cn<k=5{6;8QmwXpuiiXv<+umDC+Xi)o5{Ej0K-Ol(FNXyIQ(M8QXjV
z&u~(0Iw=ASE$-J~-_R-gvKhiMEbvw$(GoOR*<X>Rj`s(7QBrmnk5qBAbA<>QEnZLS
zb{<BlUtAJ?q)`_ox^qo~7A&XZ&TK}$1J%9+Fu7&4Z(zf<3VN@811TS~de`Sis4Tr1
zP|uzT<?n`oP)Sud0hY4pw%}hGLM#ojk<9tC-g|0JdyZ_H2-+Gp;WgQ6k9%cyMnXAn
zYATaW+YVdg9{%-qe}x;{#tXQ&P2}Uu<{76|)m0QsY6JV9Q~KVPu#<V9b2t)idzLg+
zy!VG6i2@s<l$Zm|B*-PuP!)*-8Wn!855&Whu4QR{6*|3xUja!)vihU~E$QP{Z4%9s
zNbiw${xq@5KKzm9_i-28Hv&HOjY}jCqG%%69ZWhAk-!>+CiR45+hh@LIqb6n)FX5j
zeCE7s31}TLf`Z4jpRm=LdkkU`dEprzf<DAi+}j7#$@&X-+d_1A#~+4vw&ZFNHBAGR
zw^*XP@Pa}cHi~#HzVL3B`>suwK3_5>u-&4m;*5vaVdCu`vmx%H$O7zLFrb?wYw4%F
zNbwR6TwCDFzVgOid>9zAX-($m38&!XD2u8OoKsBs2eHReE%cX1ur7CpMN4B<A~bJX
z_377%t$pXU%9^F_$vRVse9W%3-`nDazv!&<&Ne2`pvt~0I{8Ksd-07mk(j!04{!Po
z?&r-!Q=wBPd-2?};q{ylwhcsG08^0-Lzxa!kqko{9^IkJSVw#?1B??3o)sGUJz+H}
z&pA$)xIBuG^~{^4e=9&(M|GLh=4#^d^+VUw^eAKtV=^4<-`l9`3p{o1FNtiw;Ph7b
z3rT{QjSe35P{t^8;}GfwTtb-*y0!b@wHqIXxa*(2MGn#h1ncn`Tdlg9;!XyDWXF{~
zpxo$%1tZQlx&5&9azQlGyx7MMv$8fYpfc|TOUSKzN8zn0oVA~CFu7g8)$Y8lJ19E)
zi+&&20>orBIwwC@(BT~|y2Pj8zkg!#j`GmKJTPes|8QW^1_qxBR4I?U#x}CqIZ_4>
z_ke_BN3u#vq^Ryt*chnxrvrL*&3rRCb(KoR85k8B4s9)`sxK{&lVI9PboSt|4ckR!
zN1)@lm^dTKLz+T*9Hu95yT=3MTP~yAKCkAZWIgm4F)7S+F`~3&m8l&~*<%I5=&!Ek
zjLYD%<h3O?S6poDQL&2&m-kB;=+$3JM#pqT3HiQxc~^@Ir!<884;IY`P=9*tc#1Ng
z!c>Dm-8L3RTu93k^D*^go@~`>(zeb;atKftkEZ3+zziNNN0PGBLc$#RYJ3?c0FYLH
zO9b=&m^dt8&1BeoED~X9y?v#T+l;;JJ<)`d#ZG?t-m*|`wPYQl>B4XbTl{76IYE~M
zO9a4umSOh*c^(oT(h{ns9mPlJz`))2jNNOh{%Zf<kG08gZFA*&%CUs{%kz*=Q@=sp
zh%6J#4OqNGn)hc@$Y9^9Cc{$Nkp4L+DW9Ltmj9-tX$C-8YF&8344<#WAr`jBuDrKL
z+?rlU=|pC*+~9c-S>IS-785q-p{4PJLNV!;g8uVIkfkR>4o9Im+qoGL$%IP!(?6Wt
z%TPwtXWl%vnHPy#xl&rn5I}gDadC=R-2PE|mnq(@))j`(aLo~a&d|M&JtRWZO9oyR
zGOA&{q*_E+S*P^_SV-`BmzfIy!31Bn5g4%_mcyoj3r$6@CKMA%mI{p@+IG?6efJj9
zcEw_CPg^>}Hmj}RYIB)@u;6N!#eNT=={wjTVk6@Bzjb(Mm;ez>u|@ckd3dkOgoKm3
zdq{1eZr&}Vv%LDV`KAqWXhN$Gfz11L_-(GQ<;}bKuY-U@<|b5??9Jpi5tFofFlo%5
zGQIA5|9e_HQ?4NI1`Gh;`^%`o`2W+||KzkzbON#(bONGE!h*l)t&j3#VkSGv_9JTR
znFyy!6ID93;y9&cyiJAs6M!t46sEBji)aDyyzRelZOE;g9Eky-xx*~4n@2E1maOJA
zeCn-{TfziW_RXNgHo9uG&3Q_jKlE8bDI-l~6j#Y$lesiyxJ527V)Kp`?g(37VOO>A
z_`KWumrh5%y?eK#aq?xlWA$+af3N?v3CsbncGHXIDOBn+a|fb%{5ex0bA2;u2$D^c
zfCKkJ0E^yOM_$~*hq8(<Rk~htvPgGPmL*9t!w}^mAKWLt0<@p?SvEHa!y}vxu<GF%
z)Mc{pKqs8eTTVK24|7c$M$cHQAiH6a>5(v*H?do{!mNRl78@G~4Pb&51meQORkdeo
z->jloI&SbFMjd|Z7gF(+L(bqAx6}^fj|7Qil#7yqg9KwIvd{${XXF<bi6kv%dEhRY
z#-i-_qXHxo(KP0AOmkqJR5UzsxbQ_NH9vp~e~d)os5xx4Meu5o!phfuY_fsURD&)a
zK<V#WDgykxF|RGWtyBf-n5&?kg1QiYK(++WEGvPQe-JqWThiM0^%r%B1Z`#)yJ&zb
zK0d1|D|ABWwAjf)CZj_*36)dTu3?0uu4)3Op}{r7KuL*N0PCO+gF{(MEW8k7c|w9T
z1Q~_RLZj`|ysbQ3NnuVUrN$gl37qEpyQJ#wpd<$nF`lwId)jf40QNviE|MBFo84zg
z2TCDgm7fYmP?r1l!3GUYfZ#*G0y>)+dVBrRUu2HY4%2nA5_$f$&}5USMgH!3dZe=O
zWh@%7p(^Qf^WP#3YlF&nUOPjV)RIKY6h!;1U)Mh@5Pvz0P(0|2R!O(EtQR|dqqbVd
zDlckduh5)UaMF--9j=!ve7Jnf))~!kmbho?wDi!vfLR<u%^d@>@s;g*r&8H$Y`o<9
z#OGdqp|RZTY94sA0`x1xjkH$mRZ}rr*jVr@3TsV<<`b*dM|^()o`*{q{y%XU8aR2w
zu16a(n5zY64QMcC6Hz+$lC?lCqtw8spIQQOyt-ObQ<$-~T^P$wY!C=*OfbOQ>7exH
zVqReaZP;n`sruchm>z$9W3$#UWpPf^yv@Gb`qkLP=3xun(8XRPU7{%bc4;jhD`Ri<
zXO^q?M{!N@Psp5aq)F_@PbSk(T$hk=3>~JAZeg?^-oc^iDE<{kNG$~YPcS`#xO?dX
z2mk;pEC2xZ|MpmAlods!1vGx&>#(Z9f7nvrH+l|AbN#f;gy&)HR2g}ZG-N==zicVA
ze)?aoFqyE40>L>c-pip|5sp+tcF7tqHH7iynAhvgeZmu@w0k$=)sH~GJ!7B+$z_b^
z9_k1c$=bH21EEcPvf!Rv7yZ5dI4Jo?kw0C(9I1RmmTDp#7@3#;t*o41^Rtt6PVe`_
z&C?Z(V2|Olr%90B@ys4bqivZw0|ln43eHO6Mm$kGER}8@iEm<sf8cm1Jm_;Dv3QSi
zoUlC8Sh8?d;OQl5HHre3<RbAh*hO<$d(qw460p9s-$QdCNlP$0yz*Qp>=v{lh2|QB
z67)|DYEvJl@IJ8A*1g@5y=6va+dz(t$zZW9ws|N*$Px<)kUD4)wF_-wg9Tgn3qgeG
zIXc^mJbzn6;q1>+X5caDn{5ELEMfGCZ(G_R3M!noUyeUEh(AR=c1cev!3;WIcj#KD
z;~_;6;=mu(C~Vol;U)N5=^VaZNbjn-6Cq}y@OE^$8iqaHkAU2rj0q+_*luD61RxFn
z*L7$m@fwyXrgACx={;RAyr}{VgRMKXL~Of*&VZO`BfG?dhtS#G0t`|_&eK;=!F`;x
z4yRX1r*N5z7nN4$>k^4z5+iGB4UlqMeKavAhyr1!P>}-zNH!N2M#?a2Wb8+7WtNrX
zZF%I3B43n?cXjp{o#{VMH9-F+pviJ%W2U~CBOMO@tdp+ojrbN=iAJFq(DO0og(G>w
zmMG}Z5i&C1bYY03b%MFA=z*Hi>sMw#gPv`>)VS7)kl=nKFKTi%V;fg4YbJCix&{@<
zXJTzPs#f8^fO$w11*fGLGi~9!)`S<t88dy*1AJAEMGkOaS>=rA?(GE5X{_|Y_zD&l
zIxUZMp*pWe!;#RWZhC){m1#ynIWM)_%_R(#;%&m+hHg9c(+CuVBVUpoVChd@I8L;a
z(=WhepADV>5B*}L@Z&~h=qHWG|4uPpoxoR)plHrfmZrd><-l;<$kmUx%_k*uT6&H*
zF?O<D&i2<VQyZZwX|QfRmt!{xpp*c9i=1xEtu*Y{CBoWdU%LUX&CAs&9PN*-t87s*
zT#(0{ujw~7f%g^Ssg#n0QjjJhrdMke@4#=?cNY!9b&R`Zr49~Kcwx{mOtH|#`f@N@
zu<bxJBJ15t>k$l!I>v@kR?Z0N+Hk2{VSh&Dlp4kawA%IZzHF^6o5#g%m-9I0R5HKm
zoXz*NSF?dy|0@Qy%X1k<Y`-4tCmLbTTH0U7X1-@--nfx9N<<x=tXP9=Me$x{ZqCd}
zeF(Qg{r8bkXG5U0CB5NhJ8KYrwx!g}qF%YDAlA*CP7^oX>)#0PBLXo9-RUOIISxkm
zLM8`68;a&rVNs**0$=(e$=9g6|5#D)mGcAlInxEr?t?Y^!{VU0ZwD-LTkaosYX4$u
z-EEJ+eqG>}y`!;zqj^((8L&7{>*MtA6?oPnt~=ImnlMW1E&;M*`%FqTBiEIRn(%lf
zl_%+>=m2$6qTGg)sJQ4;>z_x=i(Emk!P^4h>pfAl7A_t+h5X~=_1~){;(we?z8zgn
zS3xm56zf1|v{_>PD7dWZ*K={WlA;McXxEaisP50ibK)8@!9&m|Zya+lFUmLMoZk6r
z%B2#_n|X*8^Jii&8g6mg&c(MdU*5K^v#&V2HZ_%|y~Y2A_x>k$?*Z1n&g@tG4e-}p
zqWy2KQdQ{JOWGs}*c}oegxvn179K4~sy20o@jNvRkwPZIYV=*doDCHTM8<#?+5CLN
z$yT;hP7|`y-+I~gP37Ak4sVtk1!o?hO%O(>x;q2Uz|U`Pb8zB2LX7YaLrtKD1U({5
zTY<O%lt8hscVh;QH@x%J;qUhR1G(|!%KF4vtJ5=fqTayT-9(_y5C%WhcU&u^4cl>f
z@t<`)%WK@Xv?IW?@!x~HFMc-FY+@iNb^3I&3tbxtmMq`c2RdAjqs4HqzlUH?&AGwZ
z_s1nTHSb#2*&A;aV%CXGo9{H+Oo#K?2=_CucbYYwaK1LNN7Ty7Dy2RY170O5YC1I6
zgm?9SahBAy8fez(&d(c?<U^2f=+&nh=Ap8HWGb-d1|E>wD=_UU&mV%VhNwi1uK-FG
zA7Ckj;((X7<6mG&ATbY6H}<jjP+%cByp$Nduo<4)7lJno3D1}?3_>;@r!2uIJ4Id0
zqHN{|DFN`5YX@tVNPCr+iZqi;K@IsEA5Qp%xRinxt;|81(lqDZ_4O?yP7dNr-is}4
z0GnJydYLRByU=Q2X(7~vWKL1fu&m6<QkPf|Dp{6{i6t^0Xr4IK=9H#-Tvpgt$tXg~
z4NA$3%)MM#pF&)`=d4rDattb?$gpfhSYM}L7l;#XOz9CRN(A<782Be-k;-Y~**Q4P
zc!HnAR#1lY=Hilqx?$?2@DZ_tklGuaj>s3}p5;cf3okdtdN<dolWRYF+}9`lt*MEx
znGm3z&h|%0>x|DcVs^8W8u)A4l&K2D?q$Y}y=`Vj0MiLP+CI_Sz}jas)7(3)2AZ<r
zf27<F2~NY-zh*fH`M;Z{kbuCiX=bb1*ky_%{M_g<h@mXkuvgx$R?;d$j{KS?$1gN_
z5z<D#UJVfKnpR?4&#y7crY@;dbrf9J)GWv2WSJK@l})RE1sl}J4X9C*RjYZQWx|SN
zP3KpfkX2mLV82rr!AssAFw$445BkmsT{2}}b7B7M3gl|KQq9h9c+;-M_ZwGFuQ$|R
zt;&`P`-?L(c4qD@G%`|Re6IXpPSR2+l$}+X+YFRfB3o$2SS&1XgB~&w{UQOv5-vS4
zJn6Bj+Ppe^K|X_|ymhXrU_WtyNC}%i-S<INAOMkYCKSrEHKduKxu89UK4uS|x|HLC
z5X$cCAeK*luso{z1WJfC2R5|?K95TfWq~;vLZ2nRVW}m0f_Cd@BZxhVOfPF}@T*@2
zW#@y*4lD)vuoYC6K8Qg3qu&yeN&0T!K9zwz3N%mR2qfZmIQ(%~u7>cTCd(X5BD^kq
z`4H^JkmWIm%IK8N4vp9I?3yr(XlNm7%L;`(^=Ck?2W!@e53-9r=MP8&!0ie&Qg|)P
zRL)XySofYbEq7WN;sATUTDTqesv8<BV=OmY{{z@(D?Jd~(8#+}h<q6^li9hp1zZBd
zw$DX;O*S#yyh(7taHU8AaGKaY5}H93#~|g)Tu2i81_o1@wGs9;_mpK31y=y+5vebR
zxsP*}aI7h!yBhRw;MSJQ3>D>rBvRHM<^smf8jEY5wf{>1vk?Y{q5xDo$gHtSB1{?@
zgl>S865F4RuV%oBRbR0$2>4=~Sw3i{J4x}KGB4_OAwO18p>kAHB$PiE@kc1&;I+wg
zw;UrzG&k-SOR6DJ1hVQd0v>Hqbekksh`48>ftGWSr<kwa-(YK<g*GZg-@M)H!}b6P
zk>QX~s9@$(qBcMlenRX0_I9H~Cat95NV14RyGK_^KCY?BsvcSOd>D{S)BJOz?4+5;
zS(z@mSYKpf5HtpB_Fd2dYYPah51g^7ADzH?MZ12m6hpQMJQDF-v?_d89w4ZCLPWx7
zqfyNp8}lZNx($nZ+Y&iZzaJltrqS*3ucuW%1kXdpVS<>#p*{wj_?ZM^@Y<>J+)MCR
zCGdPMQ*1M#VI6_FAkbt55+3<piB#v$2Qg*Ng-O>WA)58{MU?;QnDQJ_)T@8C<Gh03
z`@@d|znuJXB$jSgt37Q$XX*+xd)PhVH?P-ALYG}d@<cRqTiNL6lZ>xoGjy@qj>z*m
zN<+b#?>pg?;9UjuQ(n&BhxC&E{Wk?HPl1Xy1;(_XsjE%U{t~MS*X;%Lvde_;@*k6m
z)wSrR8FyK5&rhr$btg6G=<}we+{~bU7=v&8^t{dw^eSe)++Vm%awiCm2@w%Xt;2>?
zb{q%Av3*6;`xD|Q{{7TM1}kwVzE-cc=1U$bDbFoZA(h4U>W_UO;hw2L2%o(%?^jlo
zqd&K@H;}I<yYyu5Yn-g|213Bl$gG>3n|pGD*+#+QN8AhsxpCL>KWf*-&n6bIia=G6
z)^ywWf1Bw4Gju*mCKGl4hR%s!ABFY5giayhU;eGge~Jv3Bn7!&_0-YbM+(_%Xz~0Y
zNDHimqV|YQ%_3K`QUccdcvjlxl{JlnzK?4+*-8J1W5V{epMN)gW?m2xm9H@#Yo6>9
zvV_ex-LG0^4qG21Rh+jOtf8t_W9owK1$7Rv?%$h1n*d6XS5umss$%nZ_-mt&kCRN^
zK9NFin1fN!do_$Lm4^DRJdvT~nr9`9HdgfIZgb6?p)8JuW!e_3Z#34B#TM|c%x~2e
z`7YT1l$kqnnR`TJ&sTJctLeP?K~qDvg|=Cmtys7*dqHua^;SLB^hL(jFGOo!?&eTd
zE*V9ox7);&E|4Bk@buCQkMUe?&*d{+@T6{-UUe^0f#8(HDK0e8VKJbGZPA-VTf-b5
zF+oX4-)Rz1KEa_WY}F-|Fc3oi0TXb8(w;=qoyHpmF%6tRiKhTc67O^TM$=a6+<+pb
zKT2buh6&FD#}X~ln7J>Uta`>UOkHOJ(g+NtjOqITn2piLZaycFlN>6R!4S@XPoWPu
zOVs)~GBFf6po}x*(!s(o`)+w?%m&0!^Yuj%v73{*M1+Kh?)E)2h#^)4Bu<R5c*b-*
zKcR`H#A-lFlGM^Pjoc{o35Ia#^8HNIsKY44WCGFILamgdxWhFQ`ssK2<m2gk20WxQ
zB#^Z1*{0T#9)dy2PnS-F4*QC@pbQA(%3~BM9ES3Ap5%(`JoKM6VKl;I-Qbk<kWLFu
zWOi-_C?X{lI*0j9*JTvnJtIQ?_j28OsP3c&5S`$9-(|1(aL}`N(%HC!GKUqPs{l$W
z*>tL%KPAhb+4Vn^TT%2+#f|O`In4@lKXm5_?nr>Vk+cWA@lT@Ki$Y&I_R+FIJeR(x
zYV_^gz5czbyG0#-HlmwuUBdILY&Uw#^*g9G&=M2NEZtllySHcbTqAc+lo#KyU_pgo
zSlzBN5y12K|Gf`3D0Oz$_-pjh|Brl8NLcB=3|_}>gB~UH_K_;~Oh(Hj+&24zP$okH
zMqLueG)%QyFaV<t#KAbz)qKNm*TH<%6~8^4Z}+t8bd5J)s0qAs6&t>E9J46K3f|WU
zE6c8HIjWm&Wq2<+Fq$M;3X008zw#FEcaSEnUzu9rKp83f<L`q5!|T(xtAf+Pw$|MS
zVC&kkeru>d-GHB+XI^n7%T>xy##ZM>8A{@4xR$P2TUVWdWqBRzit-lYx;Hh!r=sc-
zwZV0?WZJ%4KBC5(7dTnL!Qa_h?Esb2v<om3vU0^!MNf2OovacCTxGNDt}+^KQSGtR
zT)`lF{D0Vcr^n3ytx2?F+eXK>JL%ZAZQHhOJ006e$F^-d>6r8MZ{|I7_CEW)n2U2a
zH_u;CpZcz+YE`Y<P$KjrdFPy%Hr64-G3|pX$+wIidniif_42U*o4hrfKox3Nsg^9c
zxWTec@&JPmJ*o)qlsQxnp}kg!pwgbmtXp+>N_39zG^s!9VdaP+>9LYW+Ds2YLGe)H
z1=I=A)oZkJj2e<|?Mn?`SPU_Dl@SIZkvP#tLCHtrj4QoPh-1}8e<gVf<-z2+CZ!UR
z1N||u5WA&|(-+ZKf*e5n{N^BmB2tfu2a}Nmm>-K(A;q9OIkrv0`hLVEWJLu+%!=oR
z5*0&H8v7H0k&&6IV<BUP6NgsD^)gS83?deh@JA&JwlDzzUmo!f;3?I6`+Z=wppmug
zxTaRp?t;M0XD{ht{Bcb0)Dc0Dq(agLD}`XsBH<%YWnw3)&vqea#gF}=X#`}ru1-EE
z?+eAQH4J|&M4zv(5omORHfbt7Yiw1XY}#B`45H`C-9Ky&WELMbJHRI><$S`OmpX(^
zu3Do4`E=<ZJozh28d~DwnjSalP#+&_E>?b+baPCA0C)Gq+HiUuAAcD?ebL7HT0*qg
zA%W~LD`_6y!bQphF9%jw##yX}N^&etI&{=HH-KAMA5!a4df{trWjROX&eH!Y%nO_O
zfV2Rq!YP1)1UQ%RzqT0ux7;fzte^zIc@tpxEEM@?_$1{T<(02+Z_}EZ6BlKOk+&8D
z+I~<{hU{PC_XoSIPIRpJe43(L=^U6<uEM5tGd;dcH#LQr>Y*9?A=!ce9C8F%l9cLs
zD<`*68c=+mO@X=Wj{*#{-iW&$Al>^j&K5WVZlxPa9UEnARL^b+#^rWiHkEI0zl$!F
zz|P$VUM9ZODfL`$-i?Ptu++2fF6j?yVg#^D)(N5^F5VrnIQuisENDWKsvTrlXc7oL
z+a9NZ5T#--qm05pN0uBC6qZCm)Cv9=9yN^24ksFdpXXi63KW3jF^~Nj>bLq+gq7li
zh8akybLN6b(#VmYdr;5!!YQPbts4>5>c=W;lca%?p$mnK#fiZwgDJ*~Y$e>3Z5Ud5
zTupm1`Wxc-TAwzi9~UwLOr9w$^*9vmHi|DRQy7E;FhaWSd(~*ZY4h|$S&a{K=w9f-
z=Qx|XDMD(&M%HDt#<ZzPTOZ53td740M`L08+L>Y+n7be0vPWrp>O<%%9|4NVQ?6qf
zK?}Z}HyncQOdF?xlxf0v_O@!P0h-BS4LNjsf44}jtDS_cG)#PpUFNLRLXg71IZj0j
z5x_~qmfV*y_}ffAmT)Ap(~&mU-}k;q90vwyCWnGqPEFH4)J*GxgguR#Akxqk<%3aw
zATjEX_nYW(!84By2bqqez&*Fo-&T(?7gtqXg{Te<q5kbM(|cp3d*q}F6vFST3N}a)
zqdcfoIsRRU1Um4L2uf0LFxy#Hp9izZU7Z1FrK3X)x5#;5^kGpxU5=M*+dyHg+uF9o
zy&Gkg>-(kj`!NanTf)sFn<Oz(6T8r@nAt0YejtC@ME?V?S42IYf9%cix0`D(;I)tG
z$C`}l0T@*8B+FX`i|Z@PQ)to-<9C@c+H=cdzKq|ZvkaP#><ZhfZEobul>iHV9Jl(1
z@JkJw8TKLE5%dk{6m==!m(D_-IIYK+cD3ntk-xfX8}DK4y&c`s4aLoOhQQV43=hhc
zIDff5i29H^*gY-|ZlQ<0azv1mEOeSfR0PHNE6CXi2FF(1Iv;ipZf!@bmop$SAz@7V
zlabgZs&77zwCH|kU7R-JnncC=CYQ-jkbv3u?B1fna-U`oS85z4WEdUK^DexM>XSvf
zoY6w77PQ#nO{&YbGaX7bmB6OFi{U_>$PLqg^tU;qKJjLeJxQ%rrNlhHC&`<fkY-y{
zy>+kM%&~&ms>N^BUQ~5`2}Puke#87MBOE-n0=x0xs3`hE9Xh--sb>?egHyF%euW`F
zyZhM(>{xhBE{ZXo5u@H-YW123M0hrK<8yTp-pINjS-VkUno3N4X$r6HnR&`}AXZ&8
zuEBP#-3mi)1T|Gy3>T~=_{LNO@x?-HFUfIL2|$|rqg!kVay4Od@`{$v$<uKjJk>n=
zccp>vMp@lJCRcOE3S1klO*%5R)bMd2riSpG;F9S#D>{%=Y{B18+~sAZ#rFXXPU6lA
zGB<@}oJ^Y&IU&7Kxn|aYGvwDK8E^+0SP$!O5B=tLdc>Tz0xw9SE&cM2Owu*@R%a^K
zQfrqlT+3f1tFN!+GN>3zz$M5m-`#`Q6Kw?FuL|qY`#82#1@?)FXbCq<YTzxS7*Psf
z?H>yE<DNd9zc5gWog<Bg`AVY}mdz4P&OABkv35Io2d2V@kZ37HMi0`b3ZfF1R`Zw1
zKFDlqUj?vI<=<DjP}dOtyi}Fs0&ZqJsoa-{SEwRTL%F_3X)skP<SIQldbcc-66s?x
z#yCDYm8y=xv(jSgz%D3~GYMprGlX6V427Wa)jWuef36t!e^rTpg8wTakN*D3p99Pt
zEr7Y>KlyKhGW^oQ07f=Wl8#;HfDHjCRYFH|z&10n{RW;IgYw8A%{-Rev>r-U#>71-
zu;S^f?{D74QjC{2@Xb>32)YtR_+_=@lc%MUd9H(=YuLXx`UbIAr0rgv;FeypIu(?X
z!7%Vj8=O%W`1~)@$Ex$h5ysq-jS;^5y+5CC$02w=NA~YzY52T}^-Zm-9c7BKmR3Om
z@RKu}p0LFOiz`$);dTyK*5z|=Q%s8F-#T!GcME>Fd&1Mt{c8Lb2w~dT@2o;Lf+#Ov
z%)+iwZBwT+8wrmQK-+!EI)jDg?<g;mZF7H61Z6Sdub$<-REQlf3eFR^XOycv=TtMf
z;+LR!RAlT<z0(aAp@mM0XD;ZFVNj{^sbk~2v%uQ%$!*Cw6^p-qq}g_;sZj^NO>JNx
zS@28JzS2Arq*_hgb)Y-~agJ#=wG-snbCsa%&~wS=m#rVzc{FvzSu5=z?_lzSp)zs5
zCJ!q&p~V(D1m;Rf<=Cg_SSPh-Z-)&Ws1oAWkg)6~k%3Rdn%zC{x>A;lGz=^XUzz8D
z@Mt-1gr?4YtIn<CVxtm^S=R5^pS_{Yl_qax`O^6{xphS#=N;gbny5>76};%RmYEsl
zC6O7YEA~ZtKO%cMILj^_2JEvea7dYvz|g!`!%kucyvGZmd!Llsjth1e8^u4p=lgC~
zy1)+x*6JfUGYt`7_cB4jgm1W+vpqTmD8#YdA_dFT_pW??2Ro;ny4TUon7yw>?>6T_
zMe&JCjni{`<kaxzkVVNoF58CaHiw9N$Oh}N`abz?XgJ|?Zuw3!_1QLQkjgq()Y^37
z1jC(CuQ5J;%^$`@eAk;c{bAO48cpJEokNDUM+2NI>RsatX;(|n8z03=u!XD39L@BT
z|HernZ~!&&H#|T=iX3>)N@Btca&I<iCxy)t>ASI>p*GK;DVdCqZ@3%#L47=rDyz~b
zEi(r@(k5cP`fs9G4Sqs78{iFu0YtI?_zo1+W&SF*#mVx2CzIjr56Tju_?z&8acyU1
zYGJMb`=}ryFt5_G@)_`@(KA2c4oR=m((4NYoQn-gghQYd{Ui3TboCngp5x6(y;xaj
zD_{6X6&L!m@D?-MWIcqgJpnF4z!&~LkOM|<9AIi`18obWy~s5rG$%}%V3^h-TyK9p
zQg8XV-rpf;>1dxGE|Q12_pf!^6Iw~Sy7=e2DzQjOg#1Da)lq<uDB_&CiLkyEUxTJ1
zgOEpEKuIKgQMnAuJNmAO%!x+-7SbF+5k03N{syc~&qYUhk>&y1cuIbaW>rUbz$4F3
zptB<%r!qUnFGc>$TwxaM9@d9b;<hurV1`X))z;T1ZBkf_1B1y+6zqftaJ68Hs-0;H
z9Vpm!!Qx2A-z!qVSA<(76X|z})%*^P0j?GXJ)z8!ey4gr@H(#hE*A)W#5X|&`l)_G
z!Kq~iU4HBhk5k|~(7F-qwmJf9bbT+&y}k!+RD%#k`~*_sCH}LTnVrob`LylKiE)P5
zKpICRe=5Rf<N;12YQVj|b|^bhH+K1N<0QgS7~6s_7|;0_oMjwv@3_M_1S;atJ^|~;
zHE;zp5a?TL9gElsDDA$Bq*a|fk_^TX!N!>s%V0F~MsV^8=99Ifz*4)1Iq*YM`D+us
zt=~E_EJk%I!Cu_c2G$5rj(?RZ5A*^m9l+}dPG$z4kHsTmGOY-9{8B^Gr_!w)2K2lP
z^2EXe{mt8}MZ+YbLI?-RDu48A=g9PCPpZw^=YM;$(JkM%T$D)lp*JseJzE&bC{aDg
zFHtNk3nQ+9JuBwEwGekiFaA-qPOUO+(lAZ_EM8DgrqBnc2zPq%=cjA!^j8*;&YI2%
zj~!e}?&fg!1KaBJs_3ds`86bq&^R^+q1mW#a7|zrh0$a(4fMo)3+XStqGsIMW>)tk
zk2*u^LD#ug)0>(TbVIdqCHa+vB~1t+<Gb_Vr78p_Y5N`q+!d6^;#0}TXTj#<D<r3o
zwAh@qUOYF7nNBnz^dFXs!w8QzyA$h1KU}+Cjd0#h#+zRudjrFp6ylqU9(77V$O}2N
z-fAGXWN+k_%pYf^AGE!L+C{GoG0^Dmp?=#E4}-)uEi>BI`3EeyHS#w2o;uTcuylGp
zS+ma?eqzN4l(-*X0db!pD?Jo|o!1A9pDAeAK|L1LOchzj@Lvo2urZrc<m@fVKd9W8
zh}j*aHof<f$-S>@Do2M1*zX&q%||<=@yu<Amcs`UL~=`cp856T<Kass#%wwa12Y^b
zC)TF?nS8e3Ll_t(k@v1M47d_)Gj4h@wC3V3-oWsk3r}e5G$#G!OrKJe;-t_3@9G*r
zd63>eaVhpP+3W+QngYUywc%BHVA|0~v2epaT=63^22#rK%dNG4II)}zZG{{z)9@O?
zmpL!LBtMJ2gk_PD=X1I9-&eW4QA(VZ0N>noz~0M$@`i+@RQ`T(6Q%!pLw~=xh4*t3
zTV<ElPyfprBCPUoGMFPA90K03`NtaasYDp+>74Fl-l3-0uzP%b!Q5?c^{+?h=fu~J
zJ@>wMVHY_Tgzv>HQ{!(du(QK2c){t#^ZNxX<6`@&SATJabMg83cpUq--od?7-SDw;
z*z@|q)6q8)eVYx}Yfy5c2TK<EBf{}S%MyWu%^Ri)4g&#vZx$T#3Q-rwwnQ2S#6hEl
zfO~$Jj7+J1=^n7@!q=*|vpDp9M+18kbJx%KAA2Z!ca`0n#X2Ufw*zB61N{#R5<t;9
z)|ogsRgk+TUg9*)>4YT!(`t^JgAFw2S;5bkr!=pEN_BY12tbzn5F;5Z=@p59P?<wE
z5!&?v4@&J3o_uZ&LGI8%QlTbP2BU}%vJ^pcz)#l+ETSfsoB^&IdEL1ySWAhjA;YU+
zN9%_r@IaIlT2Ml_)FOmYVf<h*)?u3brQrDY|2;yIrQCUtJ9|@}8_-BWK`kmWV-TPJ
z+Dt$^mFRE+I(BU8Z(k^=;GXq6(@2Ua|AYmjWS$Z6S2k(Vs&JKm^ek)YY-lwJc|lU8
zJ6KI&MzC3u@H)qnzy8pQayku44lG&*RL&kFz#nScaZ;{B`^O&|v?OA*tJnhN1jt!q
zl+D<TWf&-^lvz4yip%pz1&N~|$tyt_QX7ZMifN|lm*B_W8@<!s*m58`L9JI<pCi52
z>a^L1OkDfE$lgATcjuQr7lOVSKiGZnS?QF6!L$FahrLOkG{J<}y2!S*Px$z^NP!l)
z_f07Phra*K>?ibJvtOdN?K&Yqb^4%=nafnUD{$#ZWBWB%CXGyjW4hCLrhK?k#9!YF
zTu=A*z|HY%&8EA@t83bQ8i<atVSo1Y*xPUX0@`7J*l<NN@DCYB*ALKhFK8V~3N?|o
zqS^-dfLFYpE5A`#k4>t5<piyFkT);yk3$qT-T9S|kj+e-9haFShN2!RZdp3HMirZx
zElXHz8r)8ad|?^rz{`91ujtdf`A;KJ{uN7vt*buC{e{M|Kv5af_5M65GXWvt)M(B=
zH@m_IXdR~&kg37nKR{RXMMhSsOPfXAT%w`MC6So9-XvYi`#Ge0zy+-?=~>;m4o$3j
zl1fJsQ*UYg=aCgM?3JQHtn*Ia$`;3R=c-gujhe~;$H>+A)FRJv4p~C6;yH4Fb~$g#
zjl2{EV!-GisY&Asz9m8SS&EQ4;Hz~3^QQ_O$f<@2FX5z`4w9LAah|HR(P4_X%?mdD
z6cQJ1?t^j|hF0N|iN~lsQX1nVo&lTj9J7q82y<t376nL79RYm>$bT)%gA9`>R7x&%
zmWo@q7fZl>3S~EY9~;DAPeO81brA%Egq%>uVzghz!G9$uc40gewXpJ_f`nOStG|*H
znfyPJlki{3$t?ZGjG{t)a33H!!60kfwbQI5+(n6)vtHIv`{S_R(TMp&k{M1|C<0u|
zMNnbrQt~6E2e+UTqr0DA==mfluD7?SN8$ycv+duqZylF|_rp?qo~;9G4mTt4Lj=v5
zfAHoX42OohN?LEbA#jqDcD)m@Z>KH67b<R5#Ee&5ivvGTnly+5$uuoFbMQ>MT0qG5
z@^+b((siA=QeHUm{pdtFNYM-wjKt8%{F7%L#oBJ|@gcfNm$5|+3vx^^aFlO9O*Nt0
zOMc)vCpw~h_iz1G-2qiZe_ezT0JyRKgVOYWZX)#kH4(=Cnh2cS|Bs1)@V`w2?;C)L
zumvy?9=BMnVXKzn>Vh1E_4l!FURxkqfJ%^8(wmyAVhVQoYGaR&Q%#>=QA2N-LohIU
zw2d#iBm7q%D6k96@-xR8t9pyJdb<}HE8|fF4<#CUZS^H7q}SJHcUnq<m#p6vXHTw5
zZ)qJQTDDZzUi%=F?9^947T!u+szS*3Tl^e%&mZyG)Q}vS+h;34cvylT+M|#Z*{^1k
z+6Q=ohcQaj+C(?q&nz3J3`ez(rX)WUetyAF3TvMi02$`5Tm~$iG}E)^%F7ufY$J=;
z`PRnmg%q;{1IcsXf7_+BV+3F~6cr~6iB0t%Q59+$OL?Tt_yv|E8#!Ho4l%M4gHE>I
zc<i}xzV3zCFl|>D!5|=vGkFx2d?d}7=Jz?1tlHEsh3|h!mp$n?&jjd?m4(zTO`N@m
zJ~4>_<ZqCsJgD#LQ8A>_4jVe3xKL2xJ%N9$!zr{tDAN<oZwR?h?J*@X;<ccpDC-!S
zChp{Vgd#YN1i+?il~5JqvOpPK;5W-Lol!fe0*(6u^GQqtLLbsNQb}5OoHFVt524@`
zW~-)y2ZAM?Q3rmKC=!*b9fk3Co#ct_Hk!I<BWQ-na3Lrepd1zL%K*rPB0@^JV@S|^
zU0(53Fgo<xe(q~6)s0jiq6<Rzt2_bk{lA$Ap1PGTo6;2s+=d^@tr+@e<6C=!?n@&4
zZ@-H~_ryV;DcZw2e$L_8OTRsL>|kbtdoF!YRqHvp`vCb?b&ETHtwl9oyM-6j*lzqT
zH|(NbLszJ-KHVIBa}oX6W(+A+l{d9zz`ReKIcc(#z!mlVx3gDNUwWnL0L&i%1`D+R
zg!#W7g7JS~^X3YqOcF6Rqn{cNbK&BFs5mfo9q(^=St{1-x@pr-oY$N^Xs9+Eo^MW3
zcG??1S3`GkW2=W>cs)9B3jYv=>cJ{i=4r`ua3IXShws4mC;^douzNG8yF4IVoL^qH
z&_BQBlwKiRY;6L$W?v4|K`dP#ucAe;4Y{&`M)DU1GN$1^j*R9zR{hXhzo%_v)4IS6
z6U8BH74$OiOh>nd9WmeZxsW2rOp_Zmp3l|C{MZTb$H0m8bNuCO7zAPxlvQ|Z;u=D}
zeLvgCX#jqmV{NGsH81q8AC~ROmRKrj(-oO^hw6UE)JblqE+D}STXL)CX(m%z)I_E=
zw`d71LGu6-k9rP)LwThxE}4cDypM&b1B}7Czm6?IV<)Uu<)?&}Cxl!LK)So02V6pR
z7!5zn0P%VDc%+3UQ+I|_<(3lc_s(;E8YFo|^-B8y8nwaueN^{RmQsmHB!4=;EyZg7
zDwLzig@8S6!pMj|1u=ko0BIozBT|lwC#hk^qw~3hf(-4Car}fX-wGk2kf?k|NPc?G
zP~1qS0R>CR$k<fnB%wzs43{i7%4~%;h$xguGBlR2nOqoSpln<(<;J9BM&`B_>)%8&
z3RYSXQAI&-mJnh78y%V5X0d`0f;e4*aZu&I)=yv@%RRURoS5A6kR#<1!#m!+p#RV`
zZ0>jkH6u7~5B>2=&4cRz*BuW<TX#0Jav}E;SgnyoAxL>FB?F~ceE6z#|AoG?@jk)S
zW6PGA4BffPy=}nv2J^4N5^p3v{|Eq!e*evIA*?LU!U2GzwbDP9miKf`D;0t@`OlBM
z+_jPny&eSvX70wbc~oS@0)E`p6521H<$TR`bN8_QbH}M4Piry|2J;tI4~=(rs096G
zE|XI=Qqi|->lSqnL+x}NRYdxXhY@{qYB#Tof$G4DjFlAv%QB+!#{_i^iSsaV?Lp>O
z9X)3Sv557;?w&Brm$YSM^!N17Ypsv_Q)dpzZ$A2L+lBA}rfW7-$5i+Ga8}t@0{)ck
zwT#A11B^A26x1!Q<-Ijj5K}ZCk~YpAYVM(2#gxrB+HV^WzvO=ET<5K>4ROHHC+h+Y
z^_ex}r>N1KRW>e0;_<9@KDJ*JNEuE#DjV?QYwy7*(o8hi{J0#ijvlsYOxL8J^aOe%
zRT|9{IYuwXzI))ZqrQB#Zd*+XK;FOb7mKJ0PDg#R5)!o&L!CnKzd;hqk`)L4e&H>k
zR_;dvMJSA%!&okN>~E|%ARUIwPbP=nwB_ucH6a=$tAQ_R3MDw`${WTgQKU4a2pdNv
zsrI;Hg5MCOSo}%>r1h<<lm~<rj!CO1YFZIffrrc}O%4+V%O#U9AY(Qyz9=$=G@6+Q
z>U}yj4iSb&k?)8i7!xx-Nh$zhRbjg%pM*yJA5vzOt(WUji$F!r4=_!mj-V710mkAE
zwNb`!|1VPJFbsg;A)6xk>+F(P3AjsvC^tS!iGfZn;^e~!F`+p`xQ8%}U{q0*+qExS
zb>KH6W;f!O4UiQTE#moZ1^b{XXAY?$7+=0N-*<o`_;0C1;@ZxI7F#r|zIxRSouh4f
zLwl)FEwwrRJhrm)z9;D7t%kMd>5eAuIo{dH8w^+st|OIsx|L}?YSBv_TpZo$yw?5T
z?Ot*JaICU?22TZYcJOfFZEfvr?;gdl3p#cy){WIPdZz6p`by~T;k@5*lD){zegenn
z8n4)Tkfzra`VI82=tnJ1E1m|RKjObfKO4*cMgRXr|Np<}zi_boKSuxZzo1|ESE^l*
zsr%mt;PlMeng50S`+q)wtABX__Yw7_sk65K`UsxH+u}L^X0HO$e>QtX<z)X3Bvq>F
zw(A^-K2J4i$~qU-)FhPco9LMZf1?6cl+={85e0}w;WA-k1wR$UyCOfXxr-{tMQy*^
zjqFaaZ{zZK0i&o`addU0GGs;RWkec$zgCaA({gC1A>B8C4M0reMp=imQe%Wq@Ji`X
z*#SivF%xj$2M<idtNk-SZz_9xKBxw#yLWQ|tJMtX%)}2&BtO~#jkbZ*RV1R|N`{r-
zABrQK!d#*$rhX?lrYurYa)KQ3r21K#>=ng18>s|6Ag-=ZEly|nD-U&?WBaH4T>unt
ztkM?9*n+Q$gqprkn4>I*y3J0^a2v@fratr(zL|u=J&NSJ0EXn_PnJ@u<}7hob<ZWO
z2sS?pDEYktLPm%T!7Ssk6lD2e9G!JUw}zYS!}T=2*4wU@sfC;XeJ~F89*5E$518RD
z?H*JVo|Y`(Z%bbAW_y}8Co4dEosNB$H<#4oxdJCdGzLwrS4KYE&KuO$$22xa@E&HD
zy_rM<eUIeJ6t#5OZ7AK#Ii@lvYy5hD_YL2wE<+HtsM9hQile*qw5P1o+<E)dt~?=a
zF2W5bheuXg$ca*xt3-1UP!MpAuQh`N@X|D3&L!+`noeEH1=^eYdIVE>!O;PoFlap!
zPv{I!z=K#eAUN7;`NdI;jw5WCh1t>S4`{~Y%0XoL`)v{gc%j|JYORlp8*TNQ;Z;&U
zst7!IskXp10~yu2Q7Ce^tiu@0uFd6y>@T4eO|_E|)6L+UW5w0fuw9pG0yr^eoO@eA
zFE*LtCs`(g#d*n#<g(Y$<{sLUZkfJo6UiE4xq>Bl6LWrq-t_9lC7=l**o(-A3spo7
zGAVGA{>I@o_=?ei`^M)4hBZnJrKQzlPO3tHuegEtL*yvxwrP@czp0Mt-R@OBoi4gG
z1iQRyA^Eeqh_+HAFjC_1VsV%*PFz^xx(qjlizW<E@l={%tMS6{othK8>smyUM-dfE
zgC1@k(|j<3qcgf8!E9|CEBj6!O#eh$`|?iWCR?uc>uJX#Jv||)*ocEG&Cgc&I>B<M
z>4y9UA`p-eIcG6Q7!>GPjK+Y?G-2_6h(5vIVt{RmVwJ*_wO0w3T`0bVeqRNh(#gtJ
z?V~`(N+gb`O(BSajkQoO8NdvTuY0dfA6RwSH8d{i;3?otmS;gF(bShL%1Fl^kp^7I
zh6^dghOUXBl_N(f82E#oxUh3c7>zAG!GXqt!8C=!WOe&Mhw}^1&My6^eqYA>j1?C9
z$)wO@L2>-6w!-DZug0U!MP)kHy+YAxK)s{$x<Y5Y-6CO=!Wm?^JYAlq;7|m4R$O&N
z@}1ZBv(s=XT7S4Y`om8@Rc^Z)Zr^V;9>nRl%rNScqnD5)pKyjLx$J|TXntb6$%g9b
zfDQsquyTp4VU_Cbs$-yZe$!__DZT8Z;v$&GC-y?4?h`#enV=z7sWj$LnILfZb?pj_
z@VuPI$o|E2NLWHAIPJ3!)#NCXg)GV_@k7WaJ{c^6T!wBd&G6EWP`qys%wxe>GPx}8
zkE=~(z4teQ6Tbd|mLsl|e*8Ke?aV^=PQ|Is;C6@T&fX0N-@@r~)?QJoHPD7VEA8O<
zGV*i|JCVKdUCZ9)05PVjB1Z08*9^4V3GO+kr(HZRrC;-PqR!2uLv}9Hr#0En*_j}b
zA7Y%V=$^vNA1H>}cEkg02wg=a_EQcSJMcq|6MIrl*RfL8{9aNI&>K(^kO9|?usF}}
zF9g<q3KjpvD~8kD8_v+|9n8->Um{<3Sg~-GxvdE1_I%F%8OOTlIFVoBoA+T2%+A2y
z1}PttM{;!H<LLw`AJpkWXmKen%Vg3oezkAy5{GAhVJ~xC`@m`RZNA;!xmNQ!8IjJ+
z-|DSlUWe*(kJ5i2tWL707U;d%3Wa!RW^)-eFWzMPsDH}1?tUXn=R5jsJx7mR*3fwT
z`_~jgn{DD3-@o#GzU$;01YqD9gZ$4PnwYqZi0og&SC;>q4FeE<D<wh`%%qrxQGWzj
z8S#AGH}x@+Hep8C0ODCjq;OO*s&MX$-`8TC_1Q&g_(u@wTwC5x-mao&pkA{!q#c`P
zm~SX)_KP+TB6f|Aw5!sk!Af)#5=5|G$i<*b0s$ql*aO%B3!xdwNz`1}**qX`b{?;{
zre5!78Hcv5Jlug|EK#n}FhKOBg($G?CH49ej8f%bP7&>L#4#|@Wh>ZUFgpB$O0uB=
zTMS?ll@EeMzc!6Dh-65|s`Irl)_!88fNcw`kE&2W12PHUtdDe^u$Rgp?b(#(GHEx)
z0xUJ!Am=3jB9(@Ij=(;M;zpRK1?R(B>kP%JNwd~km!A)ed_;3`Fz8TznI+12+1a59
z46r%Rbhigo?`y9!vM-d05qM1MUI&N{OCW^~_$*+%oW|}1Y#g<d0TfoelLAI8f<rgZ
z3J9w0E&<Dkv5$BOpZ%_XktVF#N~^XL9%Q06Hq<Q!Q8M8fhQ%$FAJb^t>c~A#m_)i1
z(x1l9i%1^)w6BLJzMX^vX3JPi51$-zUwE6ai_B*yn2t#%ELY#Nuv9tAk6?f2y-tAQ
z-aozNz8W@kAmmCXx+plcn6X4kPOTl9`MX}ufF$Jpf?bHR1VeDDI~gW*sFfndKBNjO
zV^Y@$;#~t_OcWp46!LU!*oZQwR{RJ#8B6o0dRE>()h1Z$4k^Ed!%zjRJ_BzvAQBdj
zKd-Xch?uShPtr?F^COa*@2by<#Xy?62s~@EdZFKPa50HDrI9t!!^}u}{&cUTBveEl
zt(}9#%wCl9P3F*y<<$$-<(u46utF_lfjbYrTuHdQ3~#iEAK$S31+SO}wEC{4Eg$3X
z2MUQJ!ITVN&eIT&YSRqW^e*tH(^#{kmR*p;=UEGNy9mZm`qZDgf`>IQb#-`?{FW-t
zMeE}LxiowizQx^DEZGvlgNC%xEfk_sNWaxfCVC~GhDD`lS_?96shiz*KxdI0JxCDO
z9l?oZe5R%Ku+EOU={qqpE*@#stxDT)hVFg*_4f7;+><yZ*MxrV<7;1BhFDj{PTvfH
zSO|<v;}by{W%Wk4j_BMV=?wx~!%6Tgyxr+$8MwjmN^I21Vlxl8Ku`4wRW5&&dtK<K
z5G|N<BSr+Fr%gZ!9_?aVTh7a6D<%G)j62P)Hjc9p>j4~Z*F~YT>0^C9K?ucAZ%@61
ztJh|erVl@ssv?QY1w3(D7&;E>$hEL+jHUvJ0*j*XtVe4smpJf25Vihm4)))$CW*GM
zgy|x{k4duY1)VtDeA;_JzsM6+@pSzNiho!=ePugSY{o*2pfcOSgoh8;#LE75S6aew
zoPAqyNiAR|Sl+z#WJ9sN@to&*|2Ms$Yr1id5HKue!~SPeOiWx3KpkCxSScWt0*I9Y
zQYla^kj3(f*;I#02K$(!A-Fp#$~E;2mHR*X16)!`u4;a-f>~XVjBTbm5;JtXZFRbH
zH$20N7&q<T`+V=kh0~u9YD&yZ*yTvfs<u#f(Dx?<HQ5?@_>Qqe3L&0Dl4N;PfONn@
zDiznea}jiLx7QzBTusnJ4>NYw2OL}cxC5KIg`^`#L=loex)7iiN4yqLFmZx?4K+?!
zSb)U;)28g3eD$GWUwBTD0->x*i8FtiR8fJ#8gg@B`H?auB#%NH5U%1=eM;>RPn@YB
zhx+AC4!Kmqgg{0_Dgw)QtRZm{9fpB&FG3B)L?mibvhweiw2MUkCeZ2$<-|}BV}zrQ
z!No!>r$dSu1$xN7jsh6kfgKFbXVIICm@+}r;2fWr?|N4+k(^PpOX>TQ-|bA8e~O(v
z*By(D{F#g_MQm@8;RxaQsd2z{^IEuSaPiWDeLQ(>f-l0cLzG51xB(}sh-+ulnU3MR
z98a!u(IId29jyG@Q^ol(qBNQ``PtAQw4IF!om2p#Iqny?kn7cmqX{|{{HA==`nl_N
z0HO#`%6KkJQ6DRV%h6QT9HNEUTbV)zmp!W92qH=(dV?A%15_aAM1Yuii12{{B)JPJ
zX0~8cd@u)wHe9mNuxfxv9mcc85AYa4(O);4>*=oNuisVqLArS11+-ejH2lD1PK2pU
zYQy5eZ~e)H(YLKRn$9g?<inSCLd^O$W;+x2wQC_jG?YkF{hBmO>pe9{1H4{aeG6!i
zD2v|)u~69DCB%!*TKU8x3sOd@$UpdVNSWN(2wl;dcX!5-Dn;Xt!VwuBt|opAz%M#K
zy91J?m?8cRJ>nX7uml;i%!{A7L|IWgXLoz$SXy+#IudnSeXQ>cY)aVZnBqRV4pvP9
zKdeS&HbHk0f?)Pd1II_O>yqT#v@!w?EMeSAf`8FdfxyJUz5U*=|CYXhROBv4)kq+3
zh>#)ZDeEf0!c#fG!B$_O^5L8wc4$E!&fr{@wv733cXkF^mpU`Nm^8XQ`LO^6TFi@3
z@K8ZW9=V?M`b}MxlW`sDoM9>fc-9lbxJ^ma&XSO-t@L7z9;>8RJjQev<U_bRvvaF!
zo%d18((2@FdMmCJcUrTd!OYCG^$m*=K_fFO<F!dOmlwGN!|4UyTBe*wJiLwR)1dW`
zy5G%T_%~B^-GB$a)9Kf98-WtJ8*_flY`1hMs)wE?UK@=iUc<a}`0!`_pPyF~Lz&&Q
z{efidAz8IkS48hX7{l_7Cr@SAUt1LwAFkr*=De$|AgqPbF&g)Zg)RDAK|4ZAS^oAq
z{cSy8j`}^EX~PeTDV^0QX!V<?^zB(N0oT=5zaK1h&?k?s4U5{`@*|DfyenAXK_u1B
zgfkjcX+O|^3cTfvG=qfHC@W32XPkXIBb~acQ(Paz>ekV;UVVo-s8|eC>sv5!BFRF9
z%0Y}cF2=TCw#=MZxS4A07AALr+ol^fRrbSi_7Ll`UweR;u51+@6JP&hnQ@*gB|I38
zcnMB$>5@^4OwBU7=p&n;6{qw10zPkJ@%!?vf1#PL82eq19=wS_p1gd9p1nh2uFCw~
z#gTb%Xqp{83*Ds~uRF>Y{mJQ$<Ia~0{bH(OsJNRGokgW{Q6IXy5;-R5X#8VQ3O{{|
zc}2+t_sy@FEv>q7wr8nh-sG&xQitf}sL?csezkiRHx|dKu>T=r@1?HAHcAI^6IZ(W
zOY!vU-wfW@B~2<jz(AG(=#BeN+t%WWLNWkSE&hK+{gePvKh&19E~V7+fgvd5e@In1
zpS3bk`R_^-^7iTH+hl-Yk3F3$mv7I-)dcf24>R{8)P!3T+Qq9#uN#}cJ7q;x`!4BK
zszj}GRcjoXm_)CmX$%2p?Jh8?w_FeVjtKLJx`d>-Xkj8qZA)qCwa>utbcxRgnr^A$
zjeGA{J3}w6qNP)SjH(hUV55m2EmT7RMPYz3e+O%Qhn<pnB+cqnPL5qF-~h*27S#Hm
zyx(mjo!PH{@_v*pa*G9f34K2l+5J3UGnb*+(vbEx<oK60ThWV@SeTJYkl$mBS^7Bu
zL4Co>7d!xKv?Xilk4YbdNG_7j;1farqLKiuMHb7k)D<z#wDCIqiAu9a56Hy&*r9>v
zZniN)^vBp)`&~}=BBWIR*670pd$e-J^1pNk6dPX-SECS3VX$`x&9v3_a}EFjg8HH7
z)18YO5A@i4uI`6znE8J~_52Yf$+NWgLcFg$Y~Gu~JM9d&!--*t;=nj^@%Tbc6#97*
zxLj*7E*z)*g%OFPE`5Vf#?srGO^Nqs(g)RazHVtD_0jeA-@64U8vWb48tGX=Ywb5_
zoh4FTaKSK{1_la}G0s8J^=m=t!&pq!gyBPK4K=w79Y)xgW~cd;1*KOXS@YE|z`L7=
zd+g0D(YqaY+c0AI92+fXR)+b*LMqIT^#btP<72QY4TAW;@_>X<x6K)G7M-Eu#ru1q
z<b#Sgcj!WtYel}RC}~mjY*i^X>6#Qbo(M`%Z~pp_RzYndKF@k&7ZyQ1wWaWplzfCh
zE1W%<@2P@_I}(z(C~f203RKJYk>QOJ@gwMGxMzgSaERY6-{hT5{QwDy#F8rg-D%05
zD0HMXO5)G_Y!XL<q9oA|D!6n$y!f=lQi#K1N~$Q%l)|!|Mpz#b?IXVqef=~Ac09I)
zr`~(@-Lg}DKfFnl^Cs6R1=9BNTbz1>RG8F~rtqN~0Vz5wxcA%VhrcPt$1g`$wwvwJ
zGPi=z9Xi37ME_({Uiw+N8C=sDJe8Bm2d_UzkKL&R>$oA;Q}?2B%8|%AIKH38em<Se
zb{S|w(GVtZiQeWYREi3_ow!fJ>1orM_l*QQF4P&4udq$3b8c`oIx*YOkH3ED^4s5=
zc!IG9U{r;?A)3?0I>9`?NkY5ggzrVm2d<)YQM2@^FDsG0LKJu6yPmQ=mD>`T@z;XQ
zmJuR|dwQ{D-@~NOJ8a-f?d)Sog*w1tSF*mjyl$3{i_k>;@DaVs_zc_u0qrb+2>#g%
zZ##UuzSxnu()J`ZqkU|nw)MV)p4_~C%8kfPN=mOT;XwNoKscCF$vHQN4I9~wp)C<1
zNFBO;^Z4Gly~J4M*^8QBMpmdCfA3=TZWr^NG*>DH8y}7V(zi0-Ieh1P7QC`|$g=OA
zOVl<>Z?3JEc0ds^aClT~i?=5S#n7ye&1FW2w0qUp(1pm#&){t3<+;Stdf1Fh-Jb55
z>hrJp8sC2-DQUcBJ1~G$4gnbc{?j&;6f+Zmqp}ryEjAbsyWXfvrUv1MW~9Z4Y7tjT
zSP&h|JgE68?%cjFrA(M*Nn_t#Ctp_4X43k<)>ewz=4@xObNNSG>xkRtVkSsK>qcAZ
zyo_S&vP-?z8B5ZEghIBkXP$SwSyIpf?ZX7p?jHGoB&(R=io{prNW#YaQs(JKA3AKW
z)=Y^-3lXLw8K;P-HVOMyL3N6|kyDj`l=F4sGe1rN{54>IA?q)vPW3)6_v3Uy2RQj`
zZ~TSo7z6)IpmnSs1$gO(+6GdRgavvZc5jU8G&`qiFBC{i?-ZwTmPTl=mWnyA0At}}
zcNv^Hje-dis*{a_r`kF$frY>w9riTno?wKWi@vr7@>Hk-&bM2vq+fXXdAC-aefn4c
z9W38*l*GDzNW}>WKTG}hx3$Xa%3B#o>d{yAub~H73-8@~rxpY)BnL_Gv1jZ2SG=vG
zh%E$vt%qvMdr##kXo>oVJbfdTWNs$o=8jlY8L-}Fh=(lylU1u9hTX!S+-v4}L+E9Z
z-|}HtDkV1uTXFqVJ7Ar<kwG*WoakjPSa<c$imQ1fR@+YvxB%CEl;_k6lPkF@wv7%M
zY8RT0J?Ac7UU5>{6)qE==btz<>69|?EzhsBx0AGRt`|*B65RdFU*-L>@n*#wd<2H~
zao|mdK9k44{lJ%QJpziUP5E?4zw|vo*@*l%xdGWnR$dtZ98N%W)PDrdKMqT=lD1{`
zPeku0RjG+ca3qaB>oz+gyUe+tBZ7*r3K3RLQYn=kOx$E`a4*+*4@2}eV)>C_Q&YIp
z6P)LaR@z<Py*-B!tqq?Iyu0?fO-XIi@1^@=ynykM=;)h|RhN(DxPXVq!BzVPAJC(w
zW<6kmwHISBc@z`>+-Rufo|RjuZDMAD|Ju=x=CxMKB!rwY2~SMept#<3aK?U6j!=H>
z>KZ;L{HCstIYx(g6a(#kS~yI5$|{#$!<+3R^%DN(mg2s@Vv1$8qpF6IB4*|Yivk%v
zp3Kt81?T%T3YMafS9L@a$&<kZM8zd=DLBsOk3{Sb^s}|s=cPm>V$Z2Zop8Xg#ETGb
zH%Jd-G-(>!`lX)=n|+u{JK%B6Lj^eo92{!n0`ntigm*O$ufc$0t>@TXrbEm;_C_%s
zd^#LgIKLTT?8Lx|G0IdKZ&6>dHP*t|^|@$#Gf7jDUQ3p6#w}}J&4Z*0&3$6PC)r@A
zKv?_d7%Rw+5lc6GQj^rCm@Vpy10J)EHU||{QkIB^z|X);f(5aigM&|dCM5xz5dkb-
z`UOw_<Cjw1$045cg&MgSbw&n?QRN?@K%DHKe(NinzlZH$jV{`Y;2i}#ju`o+Y~yul
z*<@_F8kb45^Nh96mS)GXAa{#fwz=>U=SdrU7lPhaQ`f`{uBd+f@!8(3+|*Jxb*9rv
z3i(Y{H(6BI%;QZm8L<2jGQjfUjf(FLlX!R=u`g)+b<o~ct9U+mZNBlC;hctwr_#Ee
z<@}N2<bC#bCVdB3>iQz`eDi(%0Q*<nOK_BwiV^U)^_}j&0ix{R&GAiaU)!~jJ73;G
zT;<#gR4=mAbM106DpDEC@Sg;6kJ;sroV6q>(a~0d2`V2~><y3AuGS#p+a2Ux4dtlU
z?>U?4+1U@wC&Cq>E5F;Mdr#8s(8(%7@7bX3c>pV@9@!%Ha{)n&Cmlab8C>*`2IK1A
zPz%6X_whkLqk^F<S#pxo@YWvXalYP{3UY^^8|MA_8}Iuc>cMO{8nCD1PQFK``XoG4
zute)+*P>6v$-<<}Zs_iO>2QR$<r<wah}nLCCYZ%<xijwn<dcq@=E<l^rIG4NQj1T~
zdHz=6+!=uk?&{+K!y)n|dX9>2hIH3v%-G@Mm$?F?$Yx8Fsf=s=&Y4+=OFzg*vB$N>
zP_1a9iCJvMlse(8js|W-c(7NcG7;H}&<g`x@SvWM&i%5}<L1WuvVq5W!uQO9?c*?=
z#cbv>{Ja%(wF3*@594a*4rF?=<Fnj_DcG_NL4xHBfwGMCJ$L%*03<5wX>%4!Dr5xR
z9nA}(>+>+3+im)EBQn+-gB10ifkzY_W2)>42%`OZqnrCBP?Fb`9K@8TIS$MMXo}pF
z!T%P*;CqtC@s7qx_c^y6FD_B$)eZutuak#O%eFwYsElpEJU8O+knbmO_Pg)r$m&G!
zS<dwB*W#f_<deFiMF^XtZehftW-HJ2d_*8qqWv%@2*X9pS}}O2v)NAJm_I_-Vl>5$
z^HfEP99(}wKagG7{d}fyV>(Mf2RZiM_P&PofRBgg{50Ya7#O#gnF+WW!AqRjJp^4P
z{D@-~rUN10AMKJ+49l>?%R=JXEf{~vId9No#r||a8>HM>)1Fp%;X*)(+?-yCP$}m+
zp-(+u=zve-!kq3}uw=oWS9VJ6fhsyz?um-=w%hrmd^Jzi|KQmV+X0pxW3E6kwc4i%
zL21>gH;J4l$IlYAu%KI?G$?MEQ7DD-g(KLFx88hVaPNZFpw1>03%y1`hzqE1hY+FD
zqoCb0<LvrlXp$CvD*UuP@8h~BLpO~}QhV(?-MV@M9AnMlSE%}q#<<ywKH-9u=mrmQ
zZJF-kQ{zxIY@KR{1IL0;a^Zs(d{S)Q$Z*8~(m0biI^nhX&FdX(1~ZGW)G8<^t@xY+
zG!udF#~2nN!ly(G<2(A!Mmh@+tRq2WR}z*N*JMEC&PRw{<ZeKzES2T{GUK0a=s`%R
zL?rPN9?=?G7TO;K<YJm0OV2>_hg~Sc@>VRl<f{fi60vFPHHFR`vKco#e|`!wqNT(5
z(guu3mYTCnrjVw~Ii!>b?*R_jNp>&<?c<IRp_5bw<oGi!3rcxlVWp>aNp)~`gku$A
z-uAQfKR>AA1tT=el2|Z)ffiR$Rx!9KlVXHHV8!(#vqjG6lkUj`r{n=Y<-yX2v4-Nb
zb<+~Hkq$HwY8D?*DoR1;!epTGa-S6$F?#`n?L>MTQ{`b`S2`L4bN1A?6yQ3b-tEB`
zeGfO1?A%}hJ0~^3GrDKO?N?_p<q=lyuUj%C_Cu<rP1_|%gPh`gY)Xye9<b6s(KoRc
zC!?~crZ4Sr_Y7VY$%C>!whC>IFwnxaZ=O!RnanG->*O|@E_6!|y=Y>GfYs!$7`Cv<
zAPUZ2C(Fv|lO#&`{vO0pP$3P|W=SQ3dX>Iezq))%6S3DuU;v*5uC|Ef)vbvr<VxE*
z2wWjXfE#d*q6jHKSuq-~7^AWDj^fX3j3He)crXR2+x<P1fc9C&h_5=MgsxDK=|Vst
zl;pi(4=b3@HAD;~t8C&=?ZBTKdmdqnvO{;JJ$E6V*jR#mGr#Vw!Iwj{_ki#e)uuDC
zj)vGL+Ws?F;o!!D4YSV0F|6X+bTFL+y&ucWM%ISWC-gGh7z<WxND-12A>*LB^|Pi<
zpzd&mfADSAe|L?6m(G)f%^7hG8h;8~tis-a##J9zt||-_+>|h#fGG<_Xg_?gMSR%0
zq2C2iD*xb3exdT}H=ud3%u|i_lI;uTdl2NymWejdHS7hbZ_{n63;y@|gAuO!@l3=Q
zlp#T^gOIBZ1<CGUQK_!v9!;u0*}0q)e<nwOkq--Zc+uwp&jlK+F<d1qz?e>0h+RPC
z6shQ37%!5yZU@WrJ!ka0>dzslc_7$L`t7Pm?=r&cG{3}<x$8Rzi05u178(Wn=<+=8
zPEKhnM1N~wNSdl|x!@N&$V95s5T^KvIvoMYg<t^X8f_sAGfJ9jY5)Cub)x~*;#L+T
zag;f7o|+P2YBW<kYQRf9)lQalN%-_pvB6e?f8Vipw5S5$Twgm142`Z@iG~yLAFq1Y
zwuzCB5}iQkv`V~z9v>52U+xYED0Smb<9!N}##s9f&Sq)aZW`eswkgtNW4T4npWk2*
z!s115Djxj%>h^-DuB~+_f*Nmy<_ip^SCJy}sxCN7Mu_G_80GrLW23O(yOMUC)fM;t
zXeknxmB@#8kIopgkrLE-mgh5u8hm?W_i+;#2IR@3O56m^ZIKn_?d@(JWcUotsRJKd
z6(8IZ=qG>GmuCNToJoRwy)DA`-l&8|{j5$6n?Xh}EghlyJO<8vI<h<AM7O-3_OKzi
zZLi|e(+rIyO?C(w(tV2eUR(pZya>X-3c^p$Yo|V^D8@NYPT29NB5Bp3g{nR&e(MNP
z8Jet7$0`2F7}+RAD{+QsAX7Rid_7YpSz^NG)}zl^a(RS}ePy&RC|i86t17915=6Bt
z@|}j1x%=#9W;y7(#$5eFO~sd`3Jjl&p@>ytb0`9YHA!RNC2;{$SyGOq=$%Cn-8k_n
z<vOQzeoMqLJ;W_HlAKta1LhgM;<AZ$LRI&v_?N*qS3i_h9tEw+3u9e|;c?&W3JdX8
z5c28uhYB&L_vXqZX{@ZO(1-{p9&VzFDx4IVQ#+kjHf6$v83bEc>pxPoeCdUyaV6b4
zd5P*Sd$Q8rAD4Ssj<y=o<(YHK$;k!_%i#m_5-LDvfsH1?u<i;x$0zGf7}HzuxY;EK
zLd)4p7C#&)c!(RT3y1}J1OywZrqcXe*(eD>TP5*k5$a`&->$LS9<(${)k<~tn9hY%
z^=J@-LOUQWPsZM=L~6Z>W6X$C?0U!zTWX%FRjS{Y%w`7gZNkI49K?XzAYf8xdmry4
zt`|)-W=s57<7NIdy4RdziJgv-ePNIw7mGY+nj*ImTu75j=-+>(N*1O2Mj92M=6}sw
zDQE)&o+EGSe7MK+YKm-D?ijhll`CmdmxiyoBHd5Y6jD--LyR|PP0D;K(SwDFYI~YY
ziFeXQS^Z|EB2iuSGzzK#tJ4=E^Sb-1Qmp3#vH37y8jv(Q4fTpWc=G-p8uKc_l!;C>
zW-029AM&%tk*=A^RMVZk)#_5QE<49!O)9AeDHml>*$K4SKbm>ga)wugV$0lf4b-~q
zMLUv5;CQ@({AHQ$>OvekMX@Wg)W~l^Zn#@JU&0x&L|o&9?1t|!iy;fpsUFA~DI$H6
zJzR$~r`=sQD@8{&W-Nxg%zSJLR}WYgU4CVJy92?)pB~GeQJK|H)i@KT#$)PoTpY`$
zuvosO$E#Oa=tFpJk(3mYOn9#>#d|l=!3-`U$NQN2v4NAMRB5eC?y1349BFymS>|Ng
zNPT8)7OMIpeJ@j4XrMe>Pw6^$HdVgXf>rJ>Tc=S4;hI^s<kE4W!rp-wLhWfEeK=OF
z;t9TO+fkov#F{!M&U9*+lGW|twM;D8C{w;mig1ti-p)JrIkRqcsA^qr1tZZLxd*Op
ztSh2UZTqO4`+7uwePgfPGU|!B$gzRaE&(F*Uhv#_Wx!_)F3$eM>I!MzezzAiDB^8N
z4r0My4ccgf=pp#~2nnS;Hi>Qzkc`Woo72v1e!bs48zjUNW!e;$4@%TSrCW}O*Rn64
zyZB(uxNG~i2?1?D_3^uoV@`cs>K6PSq32|QP_H!4TjY@hZ9(uDeYR90&!(#|K~;1{
zWhU8HBPpTzDBx$UxhsPw=9;M4olJQM#xF{g2)p?AjA$>C{62BuS10;W7>5R(Pk25`
z@tRikS1eh|s5326`YMZ7>)&k!(??b>NQFK0T={PisKvCe2L{H9q8$xp@rsWa3pBQ>
z_KgDh2*Nr0EinNE(}!nZzqQ(RfORep-5M(GUe=kbBvwj8YfH+*w6MN@kqr(W=l<)T
zjNc`>*zZ8!zHtL&lK-^ZE%nzP%U0C41Qa6uZC!PQS{cM-69Gs<MCWQmN%dEnSOUq@
z(P6airGM5gmSvk0)m$3Tju3h|yF5Lvw_adXnpfj}))+`CP<e5dFWd~HYjDUuR_aMp
z{RM*_CeL0UKd~hwd!GCBBwO2b`HRu8L*<LkhmZpeEzk(Q{y!oK+5Z$tDz6j1bA2s+
zl%&doeunS6c|!z^DeP{C?x~kPAeSj&<nsEAyab1~BUaa61o@Hj48ZA!2Z`us@oRn3
zNWB~Ops9IOvSkE|;i?#eE8R=9V{Eae^{!;|FQ0?;e%f0HCKbKJ8!TnTh)rk5O6jQR
zBF%-X;Q08)M};<2Uriy}8byoK8{PM)I1ydasu9$&jcZzV8udxke-``h-*Go}+xc{R
z!}A2)Z+cd<EpefS@@|oW=!&sQkQ}7I4nzW@(}jSMFju_g!)esK-Y%S^R&zwqk1hqi
zf3GOt2q#&w*=Ax#2VKWsa0K@uCvqElhkA+Q=gJ-1?aX~SXPmh5WJR+z>_#Skq*N2m
z-ESb<I959wGfb-Tj&$_=AMCwjo1|;Eu32eS+O}=mwoz%b(l#q?XI9#-th8<0w#^;&
z&R%=<o;_!G|A6%&zDFF#6XU+0F|P9*qsX69SXK@3s_g#sb>A__PFHWu{<KP}S?mf{
z$gW$f9oW7N-Sy4vL$E62LO{)~ZhmbtLW&|e>`a}#h6_aw^&PeG`(SSQf>iL>iTM7v
z04kkS<e@g8Ir48PfUE}Karu8BhU>f)F7ndW@dV4Uz{i8rf1v;ptAC*YuHFnem&})6
z?SX=^<u>@viFMG_6&?&Y`rA((I$}0#qo<!^g&Dx9)D)^H&N4&I^@y8r8C1KvZDsLg
zl63)Cmyh@RF7}7dLFp?@D?59auGy<m3drg2*)w2K>RoQ^fd1U+ZU73<_#YHt-QYhc
zK;}6{m?r=Q&;_6XnCSmO0Unmp_}CbK#*Y^9ciZ0u!hq{puYpVyF5nWM0aQX~QS2GW
zJkLcjMdOIfZjaX5vxb>uJMhBRYxS7CS&pZ=eTjoZ`6=7P{<i?G%YY#YVpZ6YgQSvm
zJF`kpNx`t{GQ0r5bxAr5N@?{3QQ*k?T_H7<V18RvF!ZPHu>>n9`$8ITKVBj<!8<D*
z>m+Clr3Ekv;p^zBoW@`Gml)lb8DjhqQAYm}QHCQM4**1zgF}u*0CQHvA9GgpcUa3b
zhRY&TluO_=Rg?oEqL3?b1!^q@rTrs~8KK?lo5$=}1;{pz-&P{qcodSdXv2Xxg?7D(
zGx6r63<Z6Cb1gHJ{>><?Dng`_HEJlr2(s~jz=f@9G*^Ub(lFEZu)@!@Een3|g?JM5
zOggH@+_qdvD!}SpiM1xRzf6?<C{|Gzb3YIP8llOt+LL3*>ER=PDH<VJv5U7;N}2jG
zm%v-Z6+RhnY<Up9fD7l@Evx4S!`2IojB%hGg@?n@zT(33pHM(2p`)Lgvo8iA<MWpQ
z4<%WG<olNm>nyw4oWFNS=+_d)lmSm8)W5Xq<RnD^k7J?ArSzHr!h3e7VdOU?D1WqC
zQ4Rz->ENAEt(U^Y8Zu;D8JFHOk@kpBPjdb?l0|B?794S=SJQ{_w%?pVzpU6~e!Bus
zbA>pbW<;%VmOD_(uvc<CK)H!LeQ)k)YU%KsVT9y^YC@u`UQ|$wUNAyXSm!{y>an3)
zUF>;DJZV97RNm$p3bw|&v!GT16SQyqGNE)c;s&ptayT7p(pT`U_4A1ZQa~Leqy;9j
zc~|IL$dQ5g3rf?NJReS{{Jvy}Tk`Wr_#~4?cT9}|P2BVW1{s2uIsxkTB#@?lsd*iV
zCYpQ22x!yMvJ*V+GicEpXo$55*zS!@AWr{r<B*&O58*Elu6ZR(ZxUuctKpH>1oM^5
zx)RVE<8};K@!o5wHEYoK$o{a3spwb?IJGMWs3SD&8^}%B`5mx&z+L=RpNeW=qQ@<6
zh8f2t@v=bHB~)I;w$Up(Ny&{%dSGPt=1!NpAj%*njjNK4NW+Qr@c!<1$rE|jw!w^|
z&Vsv3;&kcma8*^N>M{m3@tr`Y{e6@+EDr8E|HQ!{1+6wk?;&oI-j=(|(dbcYz1|Mi
zJsRrjuC&X&fW9_c^&1|4c&qP^4V0n2``ivdezHeGi?LnQ{eGII;k-f*Q6(1@(2hH^
zeH?LFZ1)`JZ{_5=5jVsU*HbDiS({JadtX}3n_kl}qg3y;D9?#ZH(pRm$>w7UUpVcg
zw~Tw^gNEk|9lkgZ-}Scm+^bE?cFga$lU!v@zX#)7p+Bo>Hh;E@fSqC&$?(Up%E!m>
ze8sPO|C{W@*P*%94e%Hu{Yxre?*9s?+5F$oYk-zlF7ctJ{M;fOz`H`!39Ov|sf&pi
zFcPb0)tlWG^De*m{GQ!%+|B$5QL4B-UmIfVRds}yLoRS0tNNeWJX$$L{~Nxpam34W
zkJ@qpFj5e$tTqgqY;O=Q+-Y8;%CGHqzLB=%fWo*w-B@e{SFs*lPgtflfNukdmM;cT
z3^4Q(QH17Oox#1f*yPr3?+gm8t$yh~-;q9-?KC$MklSr6&bKhaMW$M=SY>u1-)z?3
z>L1|U(m7eD?157jn%How=j=_WUNuk0Va#%!Y-EHTC?#gYFx<_Sy*!TBIVCz+6TfJ8
z!iUmHj#YBaD&<{5JLx6-gJ3(|2LvE7zYCD`1NTTpcmfb?aFK1dF8~C)KmPh2NvgtL
zbV&)Qlu96+M2ER7_O|N|m?R5XGXM<$yh5a)&$k$RZJaKBS7nU6`U$}(+!sG$=#OkX
z0;r6yL(G3FW8|O8m<_0mae&HLghCIJriNnr50#Oh@F#+sqfaGbuxBobG?P5QDd>$|
zl!zum?N3NbR<w{L2Q^lpA@qmAwi0Co{lj2?{||$$@!t&ggONV1<oE95Hbch|nDm0Y
z&FbL3D64z2A%BS?C7IfVKQ!P^iS4_dv-0d{gseLNctS)YIhp0n8|;w0Y;@=qR0M0Z
z+2<IVLeMcF8+Exq8_$a;U%P>Gg=oUxDdVNJf_H-8$IOSU{<$4>Z^zsJ@j^HHrL$Xq
z>JrSZae|$rZ47?as3UM-v6bUyfQ>k4+Y#>_Dt}n^;co;h#$e+8{~OIG_dhh>|ImEF
zv;RM6KKOs5`L<48d>1my!PwaO>%U%QjGOBCvwI$DpPBuA^TRHJ!8Zj!)vN&MasDYu
zBBw0+XU37Fsv85?(((u9Gt`TZ5S_iSeiX(k{YuCz0cz^sP^Lz`2V`c5Y8^CQuw3@(
zT`h|wF*9%O{>8ERaLtjwrn(Dxyvk$}8%)^_+>tILYXvgerAq5zj&fQGo1_o{JR84|
zuR;_i!bg>00igiz4|F;+ymu0Lwtjy<F7Ng_zc9M#@cck40uYCn+d#T)%TyuUNvx(z
z4l|S>O-Wh``}45P<r!OfA?XPX8`J;C8m&|@pWHC#Wh_M`PZ?2Fq=Q&k+91{AI^|?T
zOcG2ButsP2M96hxF$-nG+8ocqWo!4K(%KYQXkGV6X&K_=U4;;4_rb8HzpOPWq}GL7
zH?Rl;zmppi$_h)uM1qu3MVY8P9Gk-P6<ia&?ve2=z~d!688JK_>Nit%Xm5!*hV7Uj
zR3<YF0*Bhx$aKRB3rOsUX>Jt{-BJ$W5nNxc8^dWvHVm;|iRm?^Lrk}KgN+U{bU}jP
z?SLuKy!Uwu1bU(e2|g@~=z(hP6_*C0lmNfQ_#_Ix<XXVxU3g`JJ<{D7Ad*Y$iscY`
z-?ewa+Nfkc>4ls}!Ig6W(GPS3q|quzAdarb8&<I4{ukezrQmIo2QZkr`({*Ak3rES
z+kzP6ewk_%@`czls|VJ8FJb$Icxa@GOuHP_KtK<(Bk^jqMdR=*VyF{7(3Ahh3pOgs
z7mfU=N$T+n_8N(V^O#!_A?%Kka0E@<rek{9DOw&<ez$xLr1atyom}gd3|WP(NO|tw
z%+GHyD@W5f*qXYo5j?6+*4EN_L&1XQ>B#hQC(MZtv2w*4tZ6cQnNu;qsHkyB7pY~E
z%)Ag>?cNWApjR^wI)nb&H8p|R_gu9u8F-@H;T^<T+x0ZPz_hd?+B@2I6ONitq_;S|
zZzc|FS~S=dw7Z2%Qh)`wr3F?_#+ju&IZ|4cHs;dEO7sm%*er7)y!JVP9mb)ZM@|Pg
z*JeY@Tj71tMS_&3S;!Vt4D$osF_rh#(b$l?N{D(>$9!e5<fuFV^UY8T{hQ#P#a_3p
zv#c|TbM(fb5=Go8uiG~$e{6syJZ?)PI9aU;tfR*F$Y#OC-0k*Y)TO{IGh2_lUu+95
z4d339{rq`AB~W3$_t8DlWHK|bth=?a%!*TEv%~k*ma~a+QAGBYk5XB2_qn?vzo>~d
zWe{btvc$86SX*%zzd<*gzB);tVNVK!yw_b5b?<w2>4~S0W(ac;;p8nicc4c>TL}c&
zcfO#*U2ZH-n$zT8PMc?}<ztAN?6gVWbFL*{z_tVG15{eRz$i&_N!>xm=sQO29GiZK
zMGn9OB)oa$b`x7cux8tVPKtExGHSZnJHFqJhl$MeWY%A1xz>;(A(vk#@_2N9o*%p%
z-Tt^;XnyO@6xQ+<+U2o6QpFeiWVI20D-SH-y$xwVat*+bQT)6vNKCn%=FW;4BDfod
z<i!qjIQzKv1<xzal>PYIoHb3{i)R?n{&0r>XTIQ15n={Zp<n9%t*%#vQb!>@KFvZY
zT^e9?Wh?MoJ<XCs3vq6Pwlhp=X$Gk4VGhRSW_>uQp-o*5(#%YAG_RObO`nAYFCTE`
zjxkIrNAaKdq^GlQ0&JzTQDs2HAZaQ~Ej-E2>VP?(2MAaF_hku-2qiHwqq1SUs_5wS
zI@?;BydYeXry68fYGxGhd4(snl}Hj9BhuW!Nr|z7Fe(J&MV&$y38Dz{Ds}|?E-68h
z&z}e>!gLBU3FQ)lO@x&2?14y2z>Y!oOybNUyZmo>b7ghv<9p#o1u}UlhaP|~A_(?L
zW)R5e>#A9Z5D%a@K6+7B&#2=v%K~O1jk1{P_u_wpsYr(*?Qudu=Td??&=^u0s5XD}
zfKH~p=D;rY6?Iphdexa8d`0Q)^#uFs3Eo&=cXkhLx-?&CP|3rPEZv2$SmQl<hj3WG
zPv6CA_th1=BM>03-&vX6_b^>%XPVGjr=uO48VF<-4@)|hLpNt2TbQ}&92#>R{Vh8=
ziwM{{^E}+(eT4>mAYo~k_a$<8Ca8IrDAK?e=yD-bYd}eOpo;U}!Sj5VeK5E*(DJ!S
z><?g2%VY}*p&qjEJFg&k+Y_$Hsg}X6{Z16faZ$5-<{H#Y!;`Ft!Als_=rFdj*dQ}p
z*BQ*D7cHo$V}Gd!ANjS4P-E#}e5Qr*yp&Q1_xO^Vj;pGjO8}(z7f;-*<|}02bu_3b
z%4!9J$znem5%O@iQ!Ny=@Xo|*Yi^7f%W!=_FPr|}`RPG)5fBU|??!&zXe|4L;)v4?
zElKl~!=gk&!Cp5TnXVBc7!L>IRjAh%DUA$0XOwvU^uzqTseFfxTccz>5tLz5$T^63
zC`l7JPN;t=ao40;b5ong{mb~O>!mL%*=!nTr=~{dXRXfi#JTw5?P3lJY}N$5_s8w%
zH`N*@tkFzWrZ}{E{_I;xj&t!a1G%+6@2&@qKvzxwz??0TqR8EfdPK_?BuX9VVqKgy
z=j2Rnd{hP6XudnG&E+5lIE+B3eaYDJUb539@3#yZ$t8A+ScE<mdz7N;#NxQZoE7WR
zi-=E13PjYx9{+$KO~h>*lTB-lOozs0{i4pKBHOc6q6p(1nEis-(1JE2!LfeUen%Z0
zc$TO-5ao~3FT{1i3h7E6%POzLe35<Jun`hWsNY0_wN}k!8&T9(be{IQWU#_`u;w&L
z^w&wkwRa54qVLIe3HqA`1?(R0TbQhY8!0VDHp|Cn2t;nUoKp_`twz0%e4o{9&><A_
zMyfjJnzZIG&`Dj6PsTF@BaenHWadkm8J)=SSe~BplxhhTPhBjh64tMks|`c6Dt{St
z<vH(~;IZd=?5;xsLul|k%u9hU9df7Zt!hSyz#tiEcg*+>JNLi!|9BM+mDja&COUDW
zh-Dcg%474!IK80}K*`I_#5CfafKwtwj5BC2a(aouL@C@1_Ap9JkuoA<BsR;67H^2=
zH1dK{#6Dt9b5~VbU$v#KO>R-HbQN^dEXd`d|M_9`^q5I`g)_&OlHK=f_Lt>=+<Ded
zZptdVIHXfew@IbTX9&(9sBZP*62$JRq4=_<0p7^vG-ZFYNBQsq)-5sV;_cxnTxZa^
zOUP>R-!|tCjriJ^uuh9mht13|NubfEJMGNv*pQVA7?#IvUWqx=8fk1)y{PSYkfL-{
zyVv$kA$=i09%<^K=DyJ$lds5AE_hb%ql(sTjY_LgL-#J1apU2Qir~G0uV&e>s&x|%
z#BTWJf+x48;zrNdgu^gB8nmU^9X$l&N?72v3QIg)xJML{ZD)NX=aEj-1R@LYLrBWQ
zDNMZZJ)Wx1CQO<#C^j5%>y$icJYj=}{_?XA828wp9K`#tm@f=5S+aHIM0dl2=-C-O
z6c|#cZ>j1(+Ov+Fbl*2VVrqd@pA?rh0PoKG#thui25J#GHutwTB6Iv(?rMMyU*)5p
zq}PAn3!viSQ)B?RgUSHX%((wxH~CNbR}fSZlm(mtm1@5K**~_Kvs0Aor&}U4TlESC
zT0%4WzZtU-8bvt8v_Fj5<FRXjwX{o}GngqTQ-3R9``CKi1gcxxGE7UmI>Q4QgHhdb
zx#xs^4y7P_<&Mw_0hB+()f>hA&mCYCccm_BNF{hnEd;V*b0=q@hl}%7{LQUhGi`d`
z{{4Ga5ifDg)_OwyVCI&dTy7#46{!eG)KE1fZ0NpPgF$JnZPy7Yiqf+q1cgVHfW0J-
zF)&84GLoIdHgngYQXLD5aV9fQbFFE6$*s6D&o18gacwYEwIGg1k=Sv(Mk2F_M7AE5
z0RE}?#8h&1fIJ%eL*Q$1725!6vNaPno$NOOGoi#b3kf<urlC`<K_#Nr@Abj(0LF~3
zH9Y2}TNlX}+VtZq4ST;U%$hm4V%yiec_dQ``y=pCl(j#M*%}4R8;S!T#4<3_=Yp(h
zY(L}=4PM*5;Brlb_4FovcXaU7pMNoC{MTqr+j4;nLmjDOw*)`lSe*ZC9{U`QVUj?{
z0-OOSyEIL+Q=#se1d-U@{&y3P!0Zii4m+NhjqF@iJD_bC5QmSbfC0(aTA^n-Ckffz
zRhhI_lO~qY2q=uSx<L_4D)}{15666_LDEZV&$te5<Ot#F+yDo@sw|5M`%F+9O&IZc
zOn80YJPpw&+gIE7p<8Ej>$iFi!9i6I$eM210F}c?b<7@pFKYor(i?7>{1)3kd&k~D
zMKxLg$)yc2GnTy85Ew9yR-2#EcGx4|H5ELVQe?RHN(rK}*S5*l&$W{5ESc6&Osa0C
z&F`+qjJCArniKsZJTEWT`gEh^73K1B5;nz%yJAc<+mRua>=k$P%yg<v#*=iax4}PZ
zZahZ8vNN+x0#)aq)lL8rgVb5m4P!m((@DA(5>z4uv3U>P<bo<|gu?AYbj!^xLVkl4
zeFU4M>#G4l782;t80+iADDnxYJ7C)xPeZoDps2I)0j`wOWTyMkC*u}KMx5-{jB}X9
z?8Cy(d->fBH^f3}tQWh7h@skzUxdiCR5usBp_0`(J67J~czePV+9S3^6H|(@Sjs$8
zokOzd&oB3jgZ^3#SVe9AQ6~3d!X>+g?X_~N1<8A&#k);hk9(y9Fz#Lf*&L*BvXTSd
zg#jgM3^jVc?4J_Q+5)cK)zAF*9tw*>H(Z6hSadfK+Zsj_n3A?y<ua5v@{;KzQ+K{~
z7V31?s;zNgj`^qdY6=OMNzWOuz0}3@-pW7JhhuVWcYPfwKz=h{>~yo{7Af6YQaoE5
z#eL5XX*`=#YTyWR9`{<1MR~kwdoSMQZi2B-#V;iYHK;PT@!5BcB2dE9a$G1TGRvGM
zs&+0u;7n#Zl86$W3xWl&wF4#Mjv0bcPLp1=xY;>fdNJVAm7&G%u!1`s9_{j8u^TI)
zb6?*R+F8H9333^z-+>5@{*>K=Dw_(%F9sVur}~vWKG#*dRr&Gl(Ejtycl-nU|D4WQ
z{z56u2UwSQApW^F$t#G;DTpilwYDTl#Q^Y@4Cr%zV_bQUS3$Hax0J7JP}1BXIfC5t
zYgmyV@*f`1s)@5<8-IVn7G@i+qEZb_)DKB}+-PI$2p0GyPMiIJHqZ@fI@2KDsvf^H
zV_AD%F=Gl1j+n=w?=YZW%%bsTB6v<P23#T<KC@-+^a^)&J1FmpP%bu9l_o?XZRaE{
zX*CzcAchdGI)#}jB<ZYdu0rbKbXXT4mFkbzeGv?l@AA;a`amDd8l+rWXQiNJi<_w2
zzmK>g_j`l@Cukj{e@)jJ&1DW~`%H270a89)`p0~tzE-84NHFTPy|k}Ltt$PJ6_!Wb
zh|&*U$Lhj%7KSz=l#RwAR!FF}D&0x}=7tP<Oygmm&*S3Aw*cq#H%K#UaCRTDN%pNl
z=CA}+3_CRjVqs!_9g{6_L<Px{LH8l1o@dMhX^G_?d9zq@P-zYHHI6X0dIr5a=WR>e
z;6D4(P-8g+>SS<f=qGpsl!F-FTb?naWD`8WSZIBIjZEQ2Cx+@gJdE)T-!P1^ghc(f
zC&W5d7$N@j_?<*B&M0;tT~bO=D4RrIHc(MchFkTI9t(-rnb~|Ri{nF0p+rj7WShJ-
zRtEV5R1wJomR>R=k?q3{YO+HK8@56&v8p1uI(%+HK|HeBQSu$0`>cpm+C2O29lz$8
zg2~B*L?rg*QhjJ2EYoP_<vmd0dr5dH3Px-O&&72}Ny%#eLgSv1ONT?d;;ksLJd32p
zntkxgj!b-N3!XPs!&8?NX9X5nv**Tv)7+}2{Y9YiY{dv)#Tc>tOS_S(FC*#LAj9eX
zr~QEcI|rYzd+BSA7j~3iRYpdJG?F<@QWXVTTbncf3%kT2(A)j}?INMZHe7^|guxF(
z>zWN&L3Q3N?Ij~={3~X>@Go*H$4AJR@@<aut#8Am30pi=A+H9S_R7{VXyZ$SdQX*9
zYjKWw>UX-(?)cP_b68efKzc(tuR5+MPgmQ|_M~F@=M8Nfr>MP7M<tk@GqX?)mwWXN
z1R$31Ojo{_zX0Ds!Wpe$whWUbD|}?-Z2%K%BM0;waImVkQjGh2@52QQr-*`Hsqrwa
z)C(#WwjB6qaliz<MZa7wn=$u@k}5|>6AuPY!#Sc_us3ie*`-Y$*@nDT>czZXt^rQa
zz$}AH-i7>C(Y*Os=^#67iVhW}lwND{VH=y<d^+_boR$WU{BBGK_e0+P$`sve`)The
z;0WS?;19vMggWmZzW!v``&-hS27bGw32^fO0o*+PDQPaR@Mmd-vzp?czqQX~b!tAm
ztQzIYL!nY3Z<6c~IHf-?L1kGPk)AzU2U4VUy~V}iW~2e~l8d{9q31!yWd^3a8wj&z
zPNLfyHpV0wL$#APlc(mkk4d7Nd8CR5bh@Jk7&E_&*ODYy$R`tlD*_2Kh3EwJxOhH0
zeHWk3w@%;3?U#3P$bCVTaRX?<q}F_PbN9)4L33J$__!%^zF?fJV*A+OrET_dXo?_P
zPJ0H=pMs-VoJ{@aKN+wbpwrkP^e{~!BT8ydK%Mg~OF40Zmq9M3e_MY&QvlyNYu<q;
zcT=fgYD*=OsoYDTaPxOa?S}t)O_0;HKL=e_AehBgx3BaKv_U+q=OmpOEDu;Md5^lu
zcE3m(ACMXLxi`d50DpA2BTapEv~L4lgmc@*=`qI*%3vL1ET^W|Am6G~^P{UpFY?bJ
zm{=sx6*}8=zs8w?G(bEJz@AXca7WnC?9}(}gl6dJ$Ik;3s(5#6?1Q~z(*QeW$96|7
z_?bgOCqw{q)%j!qJshu}ExG=(^kw6GBvcfII1=3_aBm|AY{N1l(#SX2(7pHYo8s4c
z$kzQFSfQV=W9`3O#c>QzS7;??W~37!g$F2TmMfHyYQpkaEAoOkddaRCgHk;9BGZH$
zhf&_W#w=wL+hZXCZ!XZocp$~K;xs~^wy0~*+hgR5Lo3CKks%ocj;R6Y5K#S*Y?M8@
zzQ%%xq<7jf8O~IMOtm;~7zs5GG#7>%V6H4kp;}ZRORciD6Qg-Ebb~P;S~ze~2Joc#
z81EzQvgd1?DqzgkBCcoDgGJRFSY5O6%9p)z!@^?f-&gL*neAAIa_F2NN>P%YMO?#y
z*J~j5`oG^^bY07#Kt8*76%10+r!63?7w<BIuoq1Z7f(Z8Ip9FZ3tsD#0i&PWCLb$d
zWtrH6Y~orJnjeaLYFy!Bg-NB-U|Z>36y-u=hxw!`M+N3Oc2i98hT-P^&@X(7xgc1o
zNuD~gcA5v$RYcQo6<uDX)pc!|SZG2GGWy|C5r4e=+Jyd`U7=Z8$Xc>onpp8AiZRq6
z?BG=K$O)m~a?OI+jsX@emge_rXu`Hf>p4sZ$1!;5xZ6(l?E{ff!Vk*Al;eshCfiOA
z_X6=VbA3W1MT_3DOjpxc$IzDPoVO!InJty~o{^AODM{9g5$PAGL|ujz5HqGOg*BG4
z6X-SMFz+c&b8D>DF@+FW1#$TK>|j}sc4K1~lnB@M2IRtba?ZI3D{thHh!-gGrji!X
z2`bI-HJ6!j;2-0jTmXDhcnb8=5sOSniKieu^uqD(r;On?UJ`@EC>+pl)91<B+r{t4
zOAjt4tH-2+M2KC+H&jBNK8lfq$7QYo5GyG3*S=TbiG^j|QRU@1gV}9#?{FL!ok~j|
z_Bq>R)!~;yzKyhtuu*1oE>{Sh6{b=~2?vEAy}`Ed5XPPrbitn=`M$W)8=Nf>_!x~o
z_hB@jA*TkM1G;piWR3v@S(C)<ni+3wm%VQ*=z+{!?IwHR+7{M=K9`<SqvN9+6F$oH
zuiry~xZ~*BiB!N$d~WJ!Qd?8lUzuQ9iMBkUCx9Kf)N`?w8nItM>iOF;Q{t@MTNUy@
z{~jD6=#bL_%t#OZMNX}tq6DaQ|09w7ABp7ur$q8!$4*P;?f^yg#5{0DMvf*pKm*LY
z_LrhM_V2-wqu5)rZorcm4p7ScQ|e9WKdCp>&A$%bZ;XcD>QJLv7DHRh8<g7nhKUe|
zFlWlRvJimGj8GZs#xD-aJ}z;E*$5>I+x75<j8iW&?0lA*f#un_N%0!N2R2w`tk%!Q
z)E17aqmWJ)Bnow>GKIH1St2Q|3xIobV25CzY9R`T+$)~}@A_g7tF5k=n>)L%i|M|3
z?v5ZoD@4}S=$@SUFm(ydhgC@%&{F3l%voIt#qrRoG{azh%$$LOr`mDgOsQGSn;GTP
zcGjg0SZ+|5?5OoJ#x$tPnaW+K8p`6*dlMM61#;e#EB#^Bf_Sv6o;)DnsmfvLbqXvJ
zy->jD8RSi`{3#c1;#|{TRxB-Q_UIgo3pvrII)#!eEZm9&=3<iy`=P5|zbAM?JFrOe
zA&UV#zQ)t!zEZ_ou^7JG0zH&L(>?I&FsX)tAUpJi1cF~64M=3Xu!twk_?scb4ufO~
z!(-8!quYL>R}}ehT-tvaVm_sAhlQGlpumi@c{;^%^Is*<>mH=#1hGVuOZZdy`Q#Y@
zU$+;!BRY#apbzN^7@#p05N@M~rOe$*Zsi$@wSx{~cW5Aj(D(E|TLr6NfGF1yIF|c6
zPrb`)&+tm_Kq@oQ(CC4M)9Mf8fq^Pov-VOIr3R4n1=Kp0u(=?L*Ore-k^My7BlSU9
zag)hpFjNh4!h3SW@|Y9Kr{fF90I%BN?E>q0TRMnTgPI}WJCTSZE#Ng<bmkUPnX$<I
zno&c5dwJ#roiHt-5~Ttjp(X$1IDy@oE(}=Nv0!`}51&;wB*W%3rx`qGb$1QQ*mYo1
z#9Fie<d@Cx+V;VK1>}P>Xdtb?lTs$o>Z-Ra{0_7<7MPL2zwtQ1GGEBTCA*FG;ZpX?
z%SFe2tlr_{7zDbbn?MmJp~z@_GzzBd=tjHu42!27?EpA{f&YxZrC*t;BO9m2tmM>)
zBwmgNOzP;2Ww!LZYl&-ehhbPWRn`l|%Gi>=yj?AvTx0I{&kDuj9nuZdn4NDv86{}A
zb{k&aSmt;UH4h}4Qf*Q*=$Xq=o*jhqidzEM>79^jYYk=KhpVnn59?`LHfkmsL5kk!
zS7KtbYAy8lMvLPSyZdT5mYWos_w)E}w@RPJhGIV6mF(i;md5CF4tk9+&1CRvclAv)
z*OA9<x}WInm*~l^9h$w~IA;tO{Rs+Qo#@z#F23BV`ArM2c$q9Dla`u4c&KfpO*KoO
z?OWlgZ-iEn;oRjY=^mfZbE{?6>I!6wShAaPCR=^omA3Z@UUP3PGU3mDm3(rf;{TuT
z($w=t)TMx+7!UG4k9m}olqJOhXV9N9&k6^Q?_}{+YHUy952@;t^Rn^=lo=!_A$m!6
z*;y1!!!Aoa1?z?HIUgS`cxOQ>tL;r?g-@SvPmVWuvbVjZxvjk715S~qnB199e3O3J
z*8x>AJoKsI7=-5Aa=7&NQ*87I<kdL)+I!&2iBqt{7?@u-TqAY$badXq@qJTwPIIoD
znFRH+XU<a7hsN0!ws<Lc<B19*741hHos9cLuxpI+SYnRRK6Yuu7)?w#K(BdC!uGX4
z0$_;J5}9j|4>OFUn4+5*Nb~xZp>U)73C%#;6*|NPkUwvU#kGeZ&(0(T7swl^?FS^S
z1JZ=!K64qvyWtP6fan&U;fai>97n&yQA$rTB?n678vCPqaUkdrq!VV62&EvY6=6@{
zqEuY;(l=fTyietKzMM^DVq&cTWrhwtm=0;v>Rwuen<{JtpVNUD)1yJEc&)<dl7Hd;
zwq_sgb=du2Mxo=cSyOoCG21^oc8^z(-Rh;&v?X|)KhK-0!S&$;2l_gp+qA8I{Ja6n
zOAblH0HjE8Sic)gkqX1?tl$ba7U2Ece(HS$g1PY#6)a|A?iV_l$Qk!6!piCVrW#**
zmA?Il53n*ppy|Vm4+7(p(l4%v!~++MimpQVa4`8F3MBTI)yd|y&>~|;l=fZ0xGO@K
zR1nkPWJjC|s^5aFJ&AHHj;eSF;iH8&(G=Y#dV9R>+e(R5)Rp*jo(Y~%RG`V~yx9@>
z)a40Nf!>o?pw)Pa8z{@^v>@Y#FmUiAY8ndHUtQ2Ey8Vhm+qTT3Fq=Ed<gqhjX$C~S
zLx%Zm-Mn{LNTUoh8DTy!mak_08M0(%?}o0q2)W|gY=;ELI^}2#$F4C2F>t<uXMi$?
zT-f7G=|WaTC1YBFN0r0xW^{k)p0wvci8pNWj{<%aq)EQ~K@Vo|T<dpEF+@ghI0P`Z
z30MWdHR+Qy3ShPk82`Xn57!~i7O(kvr-~DauEBLhyf#G}z?Fn@w@90=Gn9mE_M<NK
zf`Xk&@md+dhlU9<B8BRZZNoo`S{6vT3oNPGIJ0kIgH5eNcTLBeUbgT{m}i!=v!iaU
zq1O!NB0D}cIDzcw%3#K@s12L~LYIt@9Gxv$3Mx8Qwr~~K<Bh3Os8XTUWE?5gZ)sRz
zP`hORbRr66aDBCov5~THx{=N6rV|lmpXncEv>xPCz5&+VHMXR_94}l_;@9SUTG0VN
zHNU%-&Y&*v{~}Y(SpI&tH--UFyLCLx4OC=PGD>~72jz{>h<8L2RmirJWe+vX&W9y%
z7Toz+dc?8359a4nhK$@s1~p4bP@j(}M>K()C8r195UU;`SE%_5nd>?&lPKDi3o0Tl
zE>F5!K~4#=Get6-O$2eAB8DhG&Xi=CYMm%qbry=q!g)bDw?q~QrBvoy*8Lu;YGIYR
z>`sJAVI`!=%z3>`Gl>QFXtcd6mQnd|n_R7w&01Md;UUC$N&{qlNjI}_$`J*-$(M1s
z3N4rMdZjm+NU;W^JerJ)XUNy*X^LZ9z<j6$8V5FOQBhg+^5yw`Mqw;kZ8jONFl2GM
z^krc_RR<fjnD|?xD*7bDnTO;>ToUbK|020u>U7P3<&DXpA6Wchn9qVoA%s0?wn$-~
zrtEcPikY7?m}IU3{}KNl8%?yppH9mD+LL|X6h)OUW?A&kC_+@MmguokCpYc7J9S6x
z@{FbYH~8w-sCMEx(?=o~GoOLZvOMqt@{s!Ti?P68%ZFE9xbyc1#g;AiXii_LyJAMj
ziQUH7R~(h^rH@r-ZzOkwrM3w9YzOqU_birwh<PPQAXxl_T2p+!og5HB%#~9rfziT6
zv4jtX2J_P7?jgS3h(C|4U5WiBocFDE?u!yF5gs~9D~RB)SOEgkIq=L5v%25!zx4rf
zK&rdrn0CR8blUC%uLdq$W$=YX^&~c)J8K4V1`R_Q<*%-?jX$<<>35x^!LA}{<85wI
zo!%B9)!<6O(2R)sw^o~ekT5vdG;p+5NgKY7T)?Sh+=5%)0S&BbOuI(?PG2N@r1v_M
zvQs^>mfY|CI@S$CD-k@doj&yVa`(j!vO=q4fvhJ(C|l932({HM23f2jYZVzM#WluD
zy$;UpcCG5+YW?kE!g>9<2BK`E>gp3{0vG4PphNM+r%N?~EW*59prDTeX2w%k+j)O9
z{j|_ly?N0dJH$7lrALwE+c|VTzN55h`LcHuZNFuWA0BpDK5t2GxK-CwXGgkq{fF4)
zM>g2!&&bIN^e+}k&wq>cG49u{ngd?29{xqr|DOe@CJ6vVA^}S9<~w!OOv;~?E1s#1
z#fpC<{S$r-r};(+;FREi1nS$X?jK1%{}KkrCg&s8H-YVe1ooI$$drE6M7GG{CRemW
z8-RKwav~HbU_qfa;Jc*3A&<yAQun#vFfd%vEZY%H>l4Jo{maWLdYkv;>=gu@ovmMM
z_tI`GNc}obtH89@Yj=?T6blyzc$RQzCJy*w1}>lWs<2%TXLLvtJ5a!C|KY-^#dM!v
z=7#g2;Of#qkQAl1XTbH5I64bYMiWG)w7hF%O>abO{i2?o{MC^*wsQ`#>D|TfU5j`Q
z+YT&k<AtPr+QctS^xC~)_YtNJbbCD^DemZ&dwrUQP~jOY+==}%RIp{5IbKA-PHU^_
zwc7Y(24bX5GXXcKwo=T^IR(Q&KrkQbPcT2gzQ06df>)Uu!AVjCs!WikZlk%agpG7}
zRC4gdxqoU~7k(TVkrlNcntX`1Jk=vL6J5rEY99wN75E5uA9|0<U_)qKi3et{F|WoP
z)DY75OLGwzv1)WU7%hsA-Upi{C<-iI<|g)E$^2x>z|?~3>e2#K#X3Q0|KMTSLM0%W
z={W^fCX<k;0&_tWNy9Uoq9o1}3K!Lap`c=cU_)5>*J%x?cqRLm3c$LR05S{abM>gM
zDC}pdA;7wo1haa@FhOr-!ML8|G)`w;Zy^~blU(48KbHQdH`D`7(~#+B$aYxA&B58Q
zP<^-M#;4z28jQX6k>?M7oeB@9vwfk37gHf$gmgb9)9tJeL#9s=oW8Y~t^Vp>8hn|Y
zpQHh4Gp$ck*m6GfirGE;+jidJiGjRSz+`m;@cE~mDax{vvZ8{3tC!6WLAU@01kp#{
zeo%Hm7JW;qf<~eXRxh_JS5|6u>}&Yi1{Qnjllo`po9h?c9kGXNlp$vz^+|^Wv#W4V
zLhcHru$Zo}DYll5d)6_3fh$r3Q-IBIBKin3sZRPU34=S`d0mAec&MjDf;D0@%AhF&
zzHpZB1h<V-2<A)G@d?!@dCFsBHC-tRIT)p8viGI{2YC97+TZ-sOlr{vDS)=E)W0YN
zmF55ZmP$1nt6dI+55P3$ur3zm+mS72v^GV>DMw{@t!HEX=y#lfUrAzfjgch3|BPcK
z-D?wYg1-~?&6ppgEs9ToHC3$JzceH>xR5hgiL}O9E#$VvW%9YiI~W8KfC6vc_w)s#
z?h*`VfHng2JN(Q8vjD}6qKoe8(9zZXjNtEFwS0!4<M$1Too_g{#C|JEji#GA^1n)l
z7Mw0Mo`NzI_UB-mt0<uMI*^4TMJ2-l{w@m!*%)8VN&XTm<<CJ%-IC72lmaa!n#PW8
z&b`4TxRo@*nk&PrNp28~NjQ;if79eop3NQ)7!)^TwgU#mN8~9_fpmDwFw=}_YglBA
zCg+-iGk8c0;$iW>X@@zdz;DWw8WSNCY&|Xok;Z57<<1P=w+N#<UYYH{lM}W!fXOoj
zF=*fHoBc4+IPBj<f#ndsr1#0CzUT#T@W0*R8D36=o5hL&CdCkIQ?SX*{B5%?A3KCs
z)4knzd7MHtZA<Oq{*I>*J}=6i*{>Eyq{AqL4A55{o`B|Ud%!Z7^XWDX$8Ud#TM97@
z@;9jAz{3|geWSkG!=j}P``;0U_QW`u{3(#ZTnvtA6Il_23q`AyQpX#T36Q!2sTy@(
zm6E!6qR|jU!Xq$~!$avZ=M)DtI3w9=rzd*L2B?h5Re+jH@q+>C>Ehb_JjnLeuFhMb
zMdhNn1^Ijo)Rf_cE^zV(<b7tXBFMmpIB?O#DdyCcld@op@aXOzwU994yAz?hsnKE$
zwwNh?^{c4gJ87{QN$tQa<_jKz8>+a|_|*#N_e|(+J93Auj8~6VyYkGmRhkhnf|)lm
z<c;pRpSb|<k~E_|%3B5cZGBO3dKAgN!EP5lhvlc6kqo0E{RKlzP5zw~TFs5tHBYvL
zkj3tWqQ?E<8X1Lq*uMzuX!o_?CFM`68b8=-NHqyrMvRlAeu;R4ma4H`DUs)*eV^U2
z$!*_R;E5Dp!}7KC->_!rP*`=F$xXe&YZXq9CZBCzBxX+#L{UCRc3jAyK~GzW`E@6e
zkTbt$#v;4tJs-_>^D?@GgR`6d_Hv@6wp;lmf@x)67STg2s$6I!OUz5>Pq|lnp~l0>
zqEsi-4nI)j{gqyFWi6;ek(U@%Z;<{D|9ip>99T-qWOaMh*O3bLS;O(GjtQ6K@62pr
z-ZjDnfhV^yUl5kB!7Jo}=YF60(msKP9<L2r!Hc}9%$+`@1+H&pb1NozQEf&)9CtUO
zhbGvlcN|YwL3NyrcxR|(&KD_q-sd5iJ&`TndfM<nG7UG(FmAeJiPjt=$AzF4M{xvj
z*_?@=KN_zBSvN0SzD4VEqq1%U4o_ur`L>YHJnw?Ie<15b;j-y-=zs3+FJ?e^uM^3B
zQ?!ttMXkKUuWS(|s6D^UJr>=l2|;r&T;ZFf7JOMe_OIbyBiw<r4s*P?cq8bF=s;*2
zEmSyLyj--%K%eaWuGRT;Vzdk*2j{+YxZ!695`8b_5%%R<Yjvg+>I++{D^v;7_)4Y`
z#qRALb7-Jx=62FFSJ42a@5Vg$*B$P9*X2MaF#O9A?zG6iM<0g`bxf@Rmxj-O>B=fA
zi2W(c|0lPyK~Y)ueq>P^g-n9|U)%}`_Gqlj?WL=|)-T;kczwPNvkgpr=(JP$K<^cZ
zrXf1QOD|t&&&6#obnsSAaP}vZHb#ZINWdPeLvY9g`7gggikLW-Dv#SF<B$1kPM_bb
zuvYDiUUx_D-%g;LtZZDZmG#$Ml4TTsF$r6>|HfeD;P6Q3K@+5GsH){YJFW5`c&Wz+
zF|gxx`wc^XuRkD)&GQ}WH*aGRjB{9tdHsdl6n^N2J7ACc8PK8OWi*gWD$@4{Qw9Lh
z2kVS3lR#92zgBM}6X<Z_2OF}~WX9~lMZVbV#~BkRPXF!+d`Ma_=WTZaWDRk@jqq#X
z$+5*lQZQVIA3?I#uO@!y&!#pgMULz*+nn}_j2%@3gU~5Ks?ZXez)~dJ>59Rb5Jf2j
z#{ok)4FZ2I4m{M0oV!012g_848G2grMEt`dMy$h;_o9<z_@m=s{%|WH|HZ9fGTIeg
z036NV)s-lMM80mv<N~%=7syQ47NiaA?%Vka36WhLylD|bKMKfE)rH~hQF!AHBqskC
zw^A4lg`%XQ0FBDqtEKo=kR{x(0;ffl@`OT7Rctg!TsX}%VDKG7L;BB}Hj3o{z?!yF
zj7KX%hh439XeEO9QVit^Rzn4PF$yIPUgp8FL1Gc|d<d#qNL0+`{zK(d(r_D3c2ILJ
ze(ZGnlWU|PegoxQ&*vKB)d!4|aUgufo7+G4hV!2fc&9o#Z=r0no%gs8DZc?5+GNR)
z*PsHITYh$TySrfF-_Q;b0h(UVk9&W+IW)`1@*4t<+TDLypR24aA@-+L8>MPsm;YDv
zLHrkzu7jesuCph(s+N?*50P95WA$>?U`UQ|R6zD2{Xf|UV9Av-^k02$rT}{{vkP6<
z_PyNHyq5p5PEXLVNAW`DHlK0;9aevEg8&k6$6=G;Sx-ES!d?n+2PnNuZULu3e54q<
znLfL^`tQ!&U3qEx&mKS~3t-BtD5bg5;KS3^pF&1NO^P>E>i-$n7l7kHQ{pC=@|0Bz
z3{Az&1v-~573)>nm_|?;M-|QiHklE@kVFYvsA*~q;Y@5v2W4HV1#)q0w?Uy{C>mBz
z7C_@tgM_JEP=io}_7;p*(8ZJ115u=Lg+BBB#L`H|VA$p$S(+DRDh+|O+$tU__iJ6<
zTy5e|)!N>4Fh?fY=J}B5`xYg1r#rGMa0u>hE07C=KS8E@w--1v%F^$4&99A@AR!_y
zv2M1J9GmTXh(wRw(PXhffRh%)cI)Xj9G$1ZVdHH0k)am>ejA0*)OL>tAep>;*1O3c
z=edvXirQraj7jY~n+1Wd^FugeTU;H`&OA4REiecpao_x&hMjp<f5$rPaX~e*b5!&|
zW+Ffw=5PW+Su$s7@41{JHb)<-DR<`N4q=qUG&I?-;dJ^~!OT~^8jd0EXNJ(+wayGw
zq1Hw)yE-bYGl}N{$lsCZzc%ob$q{MSL#{z=dfI~w&i^zx%?U!}n%MRB19REy=Q87v
zM*!dLMMF^p{@rV>x=1TRMhn3%glOvWgPZrf$BiXVbvzh2bDc~*^f#DE+8E{eI9P&_
zqA?ZsMy~37iM3+9x}K%_t_8L??={!W<fx2P*zVwQ!ZJh@@q62wCkrq@+dI7?7@PS6
z_*?5cOxU%Kh%&@SQ*-<I!;DI@&M-?b_mhS3egq7UaFT(4ZH2OIk*-oBQ65?%<!&<!
z%@9%`Wj>XxtmH@`Sf2UtaWGt8y|-VzK77azAn50w4`OT{vxEI6ah~2593IB`CJ3>G
zbFuW{2EieEQ#&r0Wn?$p8urXqc$OGpG;YxXcjE>EL|E|0bc*bgS4Vm%B~3*abo-D(
z7^R*2d!bKKSFWLe$sG1oVnjA=nP1D%_a?@0UN_FYY)JWBR^wK)M~^k!i|pUP%>-45
zF)(tVr+jDp<n<pG7J;>@Z9>(uG(r@m7x&ON)()Cw76k69zMWg))I3Oe+q7yUwpIPm
zYbo4PCErl+q})uU?q|oB<hCw|_$^0!5VtbO9OSo)s`wg?F^3a!pc|9GIjzTO=3WHZ
z`>7I3)$4Csj^gW-nkOw4)W=9pa|q^+eqbLOi5+5?qIJG&<hWsta{Sij<@FFP#~6K<
z3|)u6OiH_oe_VzpGSc2bZg_~f8+o8vx}R-YNFrWWC8>t+b5h2WHu{uiGj+i3@iD}i
z&x3r|r2<UPP1}jk6yl-i*z1iChep>>%S>oT^!7o+c_6`Xld8hes`zL5G)qm(qlf$6
zx_sdCr`D3moBRD5eRa-c`qSTf$+%>{G?@UIED=C2`JcEYmA?{M{TengD-uW_6V)Ze
z5umMK(;rod#w~Ce^l_K!8_7MVkB!}BdK(N|mM=`n96No=SLtoA$(G-pD7u?kPD&r^
ztTwuXF28}T^HE~RgfN(V|18Vq5av=2;KM^f{|*|Dpy7eM7^Aaf4;1003^3q|A`e-J
zrINI7w8AazKR@4N`n)sE@bhm?{(!l9j;`yq1;ra3Xm_P>lJAR_l2k0+v5z$d#oUS1
zA6#?_TuiJqkTo%Y1G*O>mFQ5UFC{pL1ym=iY+RS1QWXmd8<P<|178GBI;b{<dr*m4
zbsvQq!5D<YaLAh{Xze&A(FNk5Wtb0{MdK(BrQmNRJ8}HTM#|gRyU@C9=~1+vrveT^
z6vsaDN<fK%>4#d$NSaO9^g3Yyns2ShEg1Yw@PU&Xb6G;0;a45-(fnZi8txyx&_x(q
zg}aqR_Q}!$aZ}eulTiqVuJn2WM-y50&<=hzVI~gm!#4&e&yK{0l@}>^mNhpBV+e-(
zAqikenerPmKRPkSndu+aDX@q^wSX?n7Gnst%u`27<mnayZY_>`Xdn>>t~&*sF6DU4
zIE8))yCNBRyq~Be^pJG*Jf8#ojD;wg7)i6j79!T#uuMUd!vQN{5*f@3HL1W&4eo|c
z7A&v{2^|tel{+&xh{Vytj#8NDF9}&O9$W;MHKe~{<);Ez#<jOwZwuL7-^0sAL3;5a
z2$}dq3cDaPr+zd{Y!QlKB*K5C$O9}hx5%qf4ok+sUPB11`Tq5yA}iRTTHMu>4uz*E
zeoar^Rbx0*W<J!4Y|!a9cgY<ixh&Cha$Gyz0hwZja?*oG`!{VvSU(#1!l0*b7b$|{
z{BZY=S4PzkPsfk1FBn4c4z&ZV0huIBhf-uvYu&zI`x%O#lVPmWb$yM)6O)Qq!}nIR
zBO0Xp>Bwm52%F52I^q`(Xa|$aCqA_`8p*I5qM6F#jTIcF;_WIjHLwRWK<`_~A37d-
z<1OiFhF|n8Rsz988#g!d?jHu0d>)tR#|Qlu2k`8rzJ~0sM2&3BOc;z-I@r)0^dQ8m
zkkPEi33|`Om3Ui7;ZP{6rv$!K5F2Ij5*ovED{<lIe*9SVCv&}aE|IIj@(4xWUE1^V
zQWb%VT{2)s<TGX2`&o(BkNh5nm5S9}EB`xj{W){HUNjb`-J|G}*tM2}V7oY{ql1Mh
z38%k<EV7<FdNRHsK%qJixFy^YmJNQG`=~SJ>SOAO{PhaY8W(#r5ksTDSMjwbX%pG3
zIHEDBN}1`LiOs)!P*mwFjn@lY*<R#Un?bU3ye$E_wSEF~kZ;fPAX*Jn-y}x($m4HT
zOvuV|nW7KKJh%YN#DJ%Ai!9u3^5+)0XR#~YxH~O|QCZ(#ST;ewuJ6T34WPnzLP}RB
z$B6{Hu9Hjh_^~zWSyH0Do4c5kDm|o|SpM3}&@q8wo2;$GqA=NQANGTi#j~r%rg^!K
zuyGJVOeXZmK!1+liBdF|{VEJ)@GNtJRf1`zSq7-5ON^~35csQPPnP{C>k34B0uZl3
zJ!OM2DhpWAKR}e%FG}(oR-ZRhU&r0QjXi(w$Y|Enn4$1^W$6LB6#}D#7z;T#sC52~
zE;3SArbU`u7|EPo*i0K4b3SZZEEBvgR{6yy^X~Zx%w%Yqq5JX2HQ#s#+{@=xTYnz^
z30z!$_cR7t6c8iN^fl}+8(A$`UYNThylk|x=ua|3M%@r!yE~_QHhdJj7)0C;;~ePl
z$+KDE0uF1^=cr=^`xT(+@tv3-wXjMeB~sSEWw9eM`H!-SyoB`d9v2_oK4abs7bVD0
z>5S`^SRKHaLEuBhIzpHeh#<|7o8IhIi(YYcqU{L8CXx;^Ehctyc?RUy2I4&9k2y)A
z0%#3H3OI+(!q370i)+(u!3aG{`$V)!Xcf+rnm|vrZ-sd8iI)t@i?o@*!@}GKD9s*3
zto5@`xnTnAf?f*o%nX~S(H@NZufFk$Fm74->X|Q66*&bSWYbDyUn&)i*Xu9H?Hbgk
zBklI2@AV0wb>tiQ;)G3|Quqb7mX7-i&ghsk+b(psZ@6U^9`wfLW?5j_@UU^$5n%qD
z)EYscO(rOjDl>ePg8`waV#INGP_CL9!J<aG9!{$YDAi6JZpvzhopk)jOX4r)BvS8Y
z=R8a!8o`LRk-?<9jpZw5S(KhGN#c_Uc`$vi)h6setRGn5FA^~gK*QDuJ(Tf1!S62~
z1vzAOt*m>Jjvz@J9-<c~Lf`-Om7NV^ohfUPcw+Qsr4)J%Ge@bBRQyeS-x*KTY@!_^
z(z-eCnDTI|rA<xsm6zLg#HxO-Mdr8JZ+3R|MKYwQOfPm6t(^mU5&G}FleVcGihJYl
zNgqc2xH_o`rR*8*wsrO?(rc5*kDD)cxQ^(P^qwXp3<%+u6M;*PV=lfB>IW1~`TFjl
zo;DLTJqe|)PSXAv8-J4%K`$UGCIOm;tANix9<wsaf3*!6;Q|@Hiauuc<iSX&!cCRh
zjQ9n$Ou>LMkSa+KtxD`az+xwz9KXJQ%IO=f47Hp2&!}8MX0oLj4e>xW`y@$tfr|w-
zGTzsh8$^Hx;QMn3&SGBKc6F5`0uVcY#u}H=x`=aLJi@3tQe)a|8#`BFUEcu+o2z6@
zJsVf*&r%P&3r-dELV|CKDBQq3gfpr9_kUvy*R+RasR6_17^HvsC4bGH*ERk(Vpuo>
zRh*f0P_|L3RF=;c9cMiRWUHDbm)f<W8H^6IAnB$0`8rMq?ozwH=FQ8u^oKHhT$a@9
zZCbjJZfQ2ljR|EKE<ev+N9UYzRGVqVr5+jai$F+SH5$F9)j%g@xEagU2t1D=EMy#}
zX2NK@@YmJV>v(@YxjC=iLctt&O#^blivh2WyG>5StfY!a*8pmbz(B~a0n&_{V)YSs
z2ZpM&#D=W#)Dl#!SXNd+a*)sr=8#0ZWQwm3bD*%*O1v~^rT#4{x)omMDS-7!=kj&o
z2z+M^U@1N~P!{7P4)<qRt#d1Yl2nlIy8=;NLyZwxQsGWS|N4%S9!$GB;r{}un0KBm
zLOO+$$Fg6SsPe0|dklCp3;dhRWKV8)<)Kd_`2r}*?4T>Gj2UorYfaWZFd4>tvjx2u
z!=a-9;-nMs>J8%I58Sb?dRrMgVE-Qg&~Te;_xZaaH@nb;-r9uC+|+O&w`f@Kew3L6
z1OKuk_Y)P1{CQWcmv0b)IhaNcE%_JU0RyajK241;2gS``%8SAnv(L~Um8^~9&HiYf
z3mjc{T;ueMfwe#8Zw8S7*9EeJp0;f^H=(<$5#97O|I0inc--5RTR(1w`!%pJ-JI30
z(wjo4ruyIiTo+EUDgGCG?-ZSh)^+Pv#kOtRw(X>1+qP{xso1L6Mx|ogwoyqcId9hb
zvDZ4^xjUCTt>rE^N!~H%9DR)bbTb1LUfcQ;`=H@~3$AQ@RPfx<YWu3JHXkESqo}C%
zKz@5(W9=94ufQ@>k8N^pm;^AtI)G3VaVm#V6ptuHq=R8o!vr<bf!r!g4OlRyt+kS2
zE(;<%{gyfnNUsbR@yI+_iKZA=Zrf8LSjJpw+NC38X!eK{AteV3`t+|mh=?FZEL2nx
zo*!d2Z{v90Io}vCzVKz1+!#?vY9~W>FYGf^%?7F(KrCIC=0O}%Y@m?3Dwbg4Cd@<!
zqi*bzB#fTv)DtohMj8G_4Pax5n~kS3ETV~0+8N-phVWZhBsGpfo6W9gnAe(&EIN~`
zkqN$I3b<$~^0M<ekw_%RReYZ5DnQ?e+7}i_!IR)we}6#@+H5bjU|W?hOn#5K134uL
ze}mC1i3&nS_eSWq6m@FWyqOsiPtvbJjwVi5?lf|^y!Ei~^;Bz(flm{6&=v4VPDlvC
zuS^-I8j@8cy9;OdReDPZ_K<gAJ0;PiDQTt@jcOkuD)P3TAMOXQ^Gj&t+l77R*?^+f
zH(5wrDYG(_)v_4)=5T^wMbz6bCl`|PLQqLG4Z=}de@diFc{vf=y9d{v+Vh^=855aG
z?KQ*=<7A;uA@xrh$;pXgkS;i|Ja(C*@WScfUL)P_<7kog4VEUVAbvCDN8#}`E;K3c
zw<08y3|aj_T-)cOaFb|lb$3tXI-!84H9*-ycmD{31zN-BNfHdR+@k6pRa>aR?zK5K
z9t3lS-9Xr#(tKT9y~gc+aN3F&dFc)+`PscQOF8;LmL+U_W$LD(N8XCv1OuiGCtq-n
z93#*V{$`6h@A14T=~gq-l-vgo)p`9g!AkWz!RBFmZ_(wN)S!b2{fo=3A3AL+;`(@E
zGuEO>!a{-_=$^`b{%ky0>coKb!YrbY8brxEMJhDJS8?qAQ@+%?5=G5X3w5qGL@pM`
zkwuo8asP`2M*SC|@gZm$ckM7&=cjiaA$N;YSbn{jyBI!|+u^w}X>eT~cB*-hRK%gK
z<*mKpH|v|sY1T~sU7h6KejF>@bT0BqERS_A9jGZSDyV(ZkC~j<D`M@6SeCs5{z36b
zMV&u9Qq@qX?;#oss~$Jfgv1(@X3_JpSYO99b8yA2q-9mq(ciN*^q!p@Lw4ltVs_%{
ze?bV#S2OpMyA)gGoJ!2njPOB!H<yGP@Rn7+G1F<Ll~l!DRXJJV_!X5sY>3L`tcl*c
zDPdP<rGh!`ubbqUI)faE$U67{$G0kW6Xct0bFna<JHfJdEWqF1&+i+oR}*@Ttj#BX
z!->Y3Xs+Sc>q{j2rf3WD;LgGEPTIC9mBW)P6p-sQ688uUynj~f<^(f!mR$RMr<_a9
zye?)EQn_@3sfSNR>SXG^l)drB$6ia?-9X$i;$%o7jpOiR??Z^=oJ}3Kv}W+fW}M0l
z7ckMYrXAC}H10=_<SqO^mz$tPft<AgLhi}`hmfnH@o6Qn`D^@(FtYWBQf^e5+C#B}
zS7vQ48~`A~W+J$FIUXz$jEn&-vg!T<SE{;Z;aj(}{n7D(>kbuyJ-Nw;N2HCq^hstL
z2|8ok6t`<BJ@)=dhyjdBO`(qRI4R6RkGPJPPPJ|BRsv5pR`Su?y}9oF8d!Vff%V?I
zb3tprwDLZG(EGAMlT~1D<83BfmkyZ!f+h{XadJA>G<m(T`9N30qH}}o_JKjz;(y1s
z1L(NGj+!mpE+uiYGG+VqCsPdBZ-9_?Gi-SOANMY$5MEUfoZx#Ck1%oFCxsSHgD{)C
zD~pZkr4i5lC|Xa(V)ALLo`3-`<K3}|JN<TjaIz_e%wFH)G)|nPm27Krr8-Ko#<3R>
z<s<x}(q98$LZ~BTf=&=R%VBob<mK(iI?ey(4>?WULy_np{mmcZ2JnYUjJ-KeHM(jr
z0RO-s4T6G_dJO~r@oz)-1L+=ppCRoCpCRpvfRJ`1KuCKwAf){+vR~*kr2UJfEcE||
zw6h`o9nuc=cSyU*ErIyS8B0ndk>+2)*G=WlRQiPf71E9}gz_2EKKXY@yZZkT(jM_w
zNc&hME#+rOyTe~0?el+!v~v!LeTK9L6MbS`&OJXv+CB4-0OQ|;j%RPEhW`#}XZ|as
zouGTrCa7mDjC9SVblE!Y8Q!Fa50sDQB32e6@8h`gW7-ts``*)wS?X85q)`y!?TN|X
zXyhw;|NK1KgrRf%1PHg5(Er)mqN*eb_&gT>A8uNLGHr9AdLn8z0s&O5SkPr9vQgSd
z0|X2}M6X1Vl#)ZId{5y%e*IqKvMETj$Yz(9+mrh^X0%9G>iLdh5HD7LdZlMIKIn)`
z4QYp6WBjkLqLkx-3HW4uG$A0edMx3jAfpgcsme9S`u46Mk7GkaVc%~63lDgH10!S7
z5TZlw%A5$->%2RT9-xf0`cn6cATgI^Rq0AF9u{9?3gGsSj|51eng{jzp()Z&F_fp{
zWCD<+yND8-vt+0TDMdC_lC270lO=<%S?6P_LJH~(Ul8pl-Xg^Ykdnl*#i>sIVBrC#
z0cddj^GZAoK;KTq3vQr=*Q3l<9Zwy1gp5>If6}ITeivv7p(v`MOz7o^uV?9wuAtj+
zJ{3liou$`3H;UMyi{%41@`FiD+wK6><p^cS1m7`)Gdk}ZhdzXKZ@|oxJ`b_jCJ(<O
zl_*7cZPDckWf9UCT-^%=<gnocw^Zvf^kjiz7+k^6fDj(~@?`D?x*?AT-dkaNApMWo
zh5r>WFP-nTmfU!zK)*6Q93Y8A9ER=@ay*IyvO6T$TgER2%u8QUh8Q9hwESogpltNd
zC%Uu-2yJ!PYsres)5s7*qZxk~GfK+>C2?d9&`80UX^`-RUMo#;7#+mh?B;!sQ;mT&
zp=Svevp@(L{&c&TX#~Gt(6l}bB-m*eF7m|~vS^cFgM)W+NXU$vClJBBh|^LO1p9`q
z{FUI?2(Y_EF+6Fmj~bw__xY<f#bYUS$kw>kf~wQ`j9S<vuj(1AE|@#&&Au1Vgp-9q
zd+HQsV@>>e=ORbNo9`<HF2Xa_MJm=u1b>8EjG1`4e(L*jZS)Q8GO(yE9<<xJ((J-N
zoSgXC-Q^))Ym7-1s=6MgW=Fm<RYsy@DHV7zGLzXbmn8vSMa$0x4^*cBeNV<LquRX9
zSpbce_)Z_mQ9o)=AZ%A4EZ|N5P7yYj&FlCwFIFJbOFDYT7BRu}H5W03HTrB!@8V)H
zK^*;euuqGF@y5-W)>bX6s%y)o096(qX>)L*W5*F^@R?QXa;X_#B15)1IF>^a>tqwU
zo)qClvv^i7=MIPCb}mr0rFE~po;58K^H27sVHJFg9yrhuE@{o(cyCj`IV<7mfTyeP
zYF$Lq71*OY8y;Vu&2p&EaI=Ga6ckJK=t}iqTLk`~%;VYq^tQxSQOxcbirr9(tk`Rb
z%1k>ACTnzmL45rqR3d6MZ}^CGI{M{Co22dHw41YIxX0p$)#EUb$+CTgqmuG#-e?Ia
zHe{=e$re_Co3tq%!@EBG1a0HiU}dOPv$5F1zz1D$g<>@fgtI}_jsyFT&XKT#3*;ld
zq*)3#KW9ZbYO)hCIcc@#C1+LXiun>oa2+8Ns7XhqOg>qOa&vm_E+lu~CMNJw+!$Ng
zTk^FR3$7*{cP+EmBABmkAz<^HfjR5v-<$A9XZF(;M5xY(EErw0z%w4}>*FdTO1<`G
zp(>=C#%_ZvJW~_ZK#sB$$8N5l-JFbwj9r9ijA6x%_CCUk>5<>AD8)qy9;~f4AGaTz
zIgf8Gg6YPe-ngT#SeoI((pH-rC}1rv2bbzb(9g+0a<|kaxa0fy|9STP;LC&R2i(IM
z0D<^F+4?k?SOI5WimHuWHef%byT>rL?9_HBpG@^q7QH<9flPvC-`}Q|D<>X!a}a9z
zC!1tT&--xbrEP&k>Fw9^oAEmyW}__RaN{23x69359?f2*V_&n&Vu22Z$SpWAs*4~~
zm_!aD3qgHqRE)<3|8*g4k?Gq^$O+SiBy@eVt1Z80Oue2L*Jo}xd3nMVTy)_hVVYBY
z*FZsb85eD<*dnq1ybO5O-RJ4iP`evxQDE4mLL9KeT&rnEtK2d}+XU<wj+m;jSV-ZR
zkb0`}WkLQjT}v?e^>yIYb9Fed=Fea><{?`*`_eLosvE=-_1gsYDnUHU>kyQd+XPNo
zBU>RXnH5HE+CPK=4v>oGTg(;y(0MjiMx1j-?FXy@L|Q4|2eS45Y?Dp#4N2F7(9_so
z3Z~N$PAodKe;Yu8&JMn5_h*p&B7Dn0YotUldDPk&nynr38|fDez}e@YB{ph`S*i{o
z=4_ELGU4nJY7q`*?$5Ad^^b8xjM2w>pr%n$Mt&hw0F9R?q0Mh?X4n$dL0X62F%i;F
zIe<Ve(aUQkRKy|UqneadG4z_dDx?Xc7>K!B0?VHUPu=0_tjBUh=aRLNS~B=%ERkVk
zI7CKi160YQC7g(=#%v80h+=@bs$YduLF*k&tg)~z1*c3+LA6KI^e&-&n6H|USV_`N
zWFca0e)u*<BR(R_2>Oh0=wQIvAREDe@tspaL~=Czq{3D!Tq+wZ(Fk!de?W)#N{Aur
zrY7yzm&=WOwpR;c=ictcsuu2t<)0n44EN0@BVr2*!f~)-d<=a(jI3D`e0<Q{KxJAL
ztZzQ9d|O5!Z9eqx=@Vb@r|#@gQ7Vfq?U^*?*A=JK5wmmO9}OB+Q*4W8R6)_N<HWPX
z7^}PdMutLdW&)sXD=cfibvy{N#;(JS*Np7(gb*;x#Nk~}kE8eT-HMLyZb!uTf%w1K
zYAWh%T*A!VS@eY|!Ady0`gU{tWU8-!nlF;t-8tALN&&(}wYtf4A0*O^PPp3S<-t8s
z9*2?Y)w+s#-0aU1#t)1<$$WIDpNLD5t-{wq!X2P4Ss7cVT8R;QymqP7qeOmu_%OzU
zNlBO-HNd0fPlnnF<Tj=9a)|8sy=&q~v1_sdU(IDnmwFRH&6eUYrsXE+*7cC(%!jO_
zObA+QVP#TlUb&Lci5Ai%(@C+Z+qnqC?g8y*NbR?hMQe6l)GCO0NdgK;i9g(wPs@eB
zFubYQi*p`1RDVz*e0_V^jE<UO@@YCQ{9frr3;rsf;d%<6`th%-f3RQ6Rs>YNCSX+k
zpO)M-<>f?WKXJ4%s%y6M3<y43wHSf%^%Rj(hzeBID$8h!kdY#Y@Oi%+lSYSE2V<?n
zE*{S?M^@I^%0#+2nD>mnw`KE$HB~%nT027TctWPls(58lOS)P#wboY8k^u!l=+!K#
zv$v?nQ^KO*)0Dx~*exl9gB14-2_>h@qD3#b7{c2<2{|S~%(N+67%HYV9Xx@;#c&;@
z;$xn7V~O%oMNFEaMGXx>Sovq7tYbVsTpXUBnJfzqZEb8F{5Jf04<fh?EMQdNEOoVc
zgJT<U@g#4>;q`G@-NI-JWddtd7q}H5Nb8O$f{;!!g0w+(L}u2xOhId{%Oy?4W^QeN
zgs3zQAu3^j2@Q+(4TQ_)@&qk5VXS_j_yg7w#AqCXhX~RCk<lfDOM4ji8pLr$d^Y08
z2szXQ_Fm|M(CSiYzMD*8mX^Xj#l?+@Q^eXZW}0_YK795$-qs&{itm)i1BAmtF;B7r
zK0u)$mrrQ2%VefAqEXi42B73eHT75#r}#33HQg%bB%$m#7A;G>nb1MkN$9M)7S+zn
zYFKgt>2RbPc(@$JfA0HgzjL?;a&!r_tPSP!NwM6u8Eo3@!mipMmJpNCqNG`L6roue
zM7xW)HwOZla8Qiqksp0)OewU%&I*c;NEE|}n(dFBw3`g@^-ldWtud6n+Q=;Y9ur@Q
zy(=yo3)->^uVe8bykzYD+pz;%+oYq=+1kxP2n+oYCaE)ZEmUH!S_Ks>Cx+~4;p7{B
z)y$%%&^1xWCy)-PA91VCS(F)$e{v*t)H@EybHR|4FWj16#%<n7!=*CS7k-ZHrXV30
zNpf+Ht};Wdc*^Q~YX7)-qUu^{{U&z0s;oi~=X`n4HA3cDZ_p*o@GAk^KzM^-Z$j=H
zb=@2Ux`0ip{VCIn36``R6D7M$(YzZGG7J3tio`_vE>8c>8tPJ_r9vwaPO|ANUUEnI
z<9kasd^i038F&7Viw7B$MruV9(L3AK^Ejyl`|=_Q_npX_2y`%T$*F|W7=mYbN9`M9
zY_O>seqWdZ#gW){=Ne|O_DiXo*l3b@*taSx3K;o^yuC51niIMmZ*b3}@ZUJn_=}Cf
z<m-+(<!1zqR*}~qmZx#AK8{PYdJkiB9o=RBMoO}wH0QnpI^h)n(G44*8ynj?(K{MD
zd)S*e(F@9bqu0~3u(fd3(*snZPGX<!8V5q?m1kstlf_q?X)+tPr#f)40_y^la?)~^
z%>oFNtXR;&M1q-%mkT!v@#F@+pC1a$TW`#}s3bOSr)Ni9L2jd75?T4&Z9Z$;9(yk@
zC&#P4;RbbR9MWaeD6Tf}lkaDF8(-%jJLj?2VAvvS-oZP5U++A!d%xj%{U-kvhcDO|
z*3OA%s6TPY)!tvw{}|?pVQGD;$pOa}3hQXd(YWRr_MzGkV#Aw#p<(~(>7T#Rrl)E*
zlGcPB-(bT&5@e%&!1Jr4Dihgxq}vJ{y2r8woagT2Vx|v{9Khy%d^`b}@>$^Mh(Vlt
zxR~;^YFRFIeC|b)zmVtl<eFM+gcHZ(j?-=T@V}!jQqeK1#5)D6NJH1tTHE2N`KCC{
z#Jm+=(8^Dd+-XKBYaqxn3{5};O6WxP3r9(tft+SZfCHRHQ3OMb)v=qg0Z24Wq*$NC
zFoD%cw0|r);y`2MHjw$8VJT=FAwfB%>e_#uadO=AJe!fYY;h@E0A1j!oFPvgk2#~g
z&>j6JZfU$^2nNw&9&{!{zmap5x#9I)q@*Nh#9-8&TLi^;K=Quv32)htd)9m6>hKvP
zEh-$DwDsq&Or%cRN?ub6mXWmKgxwhIVYV*OE+{P(ohC$``GX9U-h6Cqk?!b$bevjB
z2?}~tBi_WQWT`Jr1YiZ}kGv)p2tf~y!9=3d%ueg=AHm1Q_X4PNgyh8RUazP%h2}pr
zNaz<BqJz4<nqw}`CcKVYQYw3MxH{F|SvO(FqYFmFJ89$MuF<{YzW6~Wp4{6a_JFl1
zCMUUsUnNPB1%qTj{Yj}gQUI4sfz*u84i%^s6)1k=`#DzBvYa6${df`=wLMl!se#61
zT%G=N9|tALm<u)Ou!UW45``{^74O$=m?UKC<ZVINbVI>takmdLib#StR{|*NP<?B<
zGMa%&h+>jTU${~xtuTV4%cLU~UqosHO+CQ_6*P|1%$z;$?F8s14~TF1G6}vdpZqO8
zrTOL34e`sr1SE3dHiHMi^;HgV!~&KY{!uo<67-*AmK@cqzn824FV+gBcEg!Rxz!Gx
z@>wMzED|7If)33bxu0K4e?YO-%XYMVK3Q4#H7$xK!a%av?KZP8xzQ2AZOK;#)CO2u
z12NS%<m^C4d}>Iwo-`#60t--fDIk(~f@9+IPT*k;ffext2B?0a=E%@Z{`CF0-idp9
zekirV<KNkPU?nLq>9o@ccR!G&V>r(Jl}b6pP>wcDeJT{fL)Tbfiv32~8Jbxx2nX6_
z0+qacY(`Y>GukMWtEu86-A1;mfSD3}m3L-BjuK*4(&F!RsD6*db`0UstTOum_t~N^
z(#<+6@%+eKOb;`E>qoJ=5veZe!$!xVT^m=Ec4J`Z6hfPINtV#Zk(f)@5L?i1(Fl$&
zz1z+D9-_hDIyGB6Lz5k_chu_ID{mTKG)D1_)*uu#_K$f+5dMfiVa9h9#dPASmNE?i
zw9VfuFp(%031_`oAUBq1q;70<nwuktrW}L9T;h=?>7dZ-*ML7bRrlKXU718b&r>{*
zs=za=4Af8bP*eI-w!v@Lc6$hi7NIP@x45^j4B>CfqC?*>P?k51Kax!mia0p@YU808
z8Sc{Fb7taKrX4J3Xy1tB8BIcmZ&kH1fbVE@gt8CCn5%9Pl%GTF0zWCNZj5w;6{ceK
z-!TLQ5sM@GjCP6cVj@X8qY671Acc@KHN6u|A+!&S{Gol(4#>>fsp7%*l%*qSBsuI?
zE3yC-)=I*00EKnyc2d4$Tb8WqB6uFK&8+@n^3CaBRP%}}JK}L9b9;x=b6~Z3$#`Qs
zBGa35g~L;oRfO`o6c}}8aBTc(;b;`(dXFO(K2c3*@sR{XiwLC@>j~VSlaAKlts&=n
zX9dTc`^ts3T#49L8@Bf>?rKS<hk&MtMwPgcO1d?`FFW9uLm#H#WDjsv33f2kr1Lj9
zR2w$BpR213@Ff_RWdj>`h1eMU6(h=QUAMXzlZLf$5=D<<!t4VTBo+Hb#d8L)Fx+I^
zU{BF!XK`~~(LrBnrJNpOUO+d&qqj%`3tc6#J3Vrj{q9TRd2Ktro}Rt;w^e5AZY!#L
z$I917PB)ylc}lo{rl>q6204{)D{<IE&iVAk#zZ^zEWb3O)ONgxeuzc7+FuK4vYy7s
zncqA!`-R0QK||MP+kF#by9zkXhpffTb-;ze*K9Du;5M2ZpU|tN3euef-+NHNjUjHn
z%aG)1b{fEX-I{X+V_)Sf7Zh#Xt|E#l@6Tq5#EUyt)O#8%P4;S5E(n4Ku^IPYUh6-T
zc;ImH)#5n1*cgCqd!orGQAYkf*NrV|B3{&=bnm(pmPTH(WqI_4`|4QBhFd5$=XEIe
z&%aKI&`efuVZh~@1vn|N{@<s>KknB5(`h7oTLEwyJ=TF+CV`BG!bntFW)iWJ#S{-}
zggTG)0BHBBHokR?_T5gGA=FfF_IMpfK1J|D;#98;*?XH$=~sKpyg3E<!g76_6(W7b
zJB@e5qEF<BTL}!Hxb4+vL1XomANt?zY`eYt&#ZDow-`FRNKfK){J0KDUM^f*L1%u&
zjL-$cmCVdhwq`eP?>pbyv<$SIXjyjHN9<8tb_n!c?OvHW&l#cvb5w8T#@2kw&B*|{
znI(I;4_v&bqm_KTxRzgZHJ`}-(bies%o8t*ubmCt6yuNdQac)->>xCn{QHn>23^ww
zU%_8~qfT`DZ$QPEU`x^S5A!&1l51`DluLA+n5-@EGEVn#YML8SiD@iGU?0qe^(5t%
zgiEX`=JrD(HsPwMf(03kf!OwV!8(bD&?VCKP#SfcZS`e~#qm*+<fp2n+t)SZtl$NQ
z?HY!G8xc~=BcmR4Rr|x*zyT<OS8a{PsgQSQr?Go<bsdp&+7|lh-XsmXA^NJZgPG`P
zBh*`BQp)-E4!%_Z{diR0CeSE@a*Jwv%8N)F#QKy985(M=sq|}9WmA|anX6&LKpSWx
zW;lyjIh}EI7ATpLC>0Ds5-s?nt4%3G_M@a|T4~%9D=d0cv9Om8RpXK8`bp%QntKIm
z$tWli_0pA><`9WSlLM?+@=cN5-mfUN%~q`0sNrNGRA?-$vz8Tj;9I3F;Lw4_zBR9G
zM_RMp=lGfin+=<KJW{_x|5H_ga_*V;1AOez0jkQsFDOa5zb>f%2B1yWVwm)hpoXn>
zBvs^o0vjabA*=zIa5?gQ(1y?ZX`%!`=r#Ijo46pgaPujtc-iH~*b%7wQH&bt3h`+5
zFJ}2ObD1*O+Nj9`qh_%ew1cxtQ6wpsuZTtSVIjzha6s5tusdr%)!_m9`1<<f_ZC_k
z*NyGlzY_)@Unci6|Bf(Gb$dg9hIc84L5!eWl>y^YID~`GxdIK=H=`;a%`|b~FBlq@
zmwskkR6o{Wxhku(wx%fnhBms7_#*i9%bo+G13bE|7K?^u84<urI)oQ@pO?|peTA5_
zdLXgXC5CT!7K#La7!;RPwp03M?O}}9bbka^LMme5GnD~G7|>K*iMlRxfrbs`(N5K!
z5MAJB|GikRkW{BXdY|L_SIN})qBV*Y8-ob25t7wIfnAI`5@Jcj861ah(IGIVcCr<u
zNECpc5}g%%V~a_8_JeK}a5ph!pAqU14yKy!fC2B*MHcS9{_Kp53_kSmM<@e2R?kF<
zx5F84DC3Sa3s@gQQL_kTAo&gVn-`WC>9vfb&>&zfizjXtrXK}<G7VSA0FGufwJImn
znub?aM;cpcpHj(mS))4&da0L6x&@)MZ4Ra*n+TLLoLcNi!RFEkS5%#uJcC3|K|{o1
z_co#RXSj00v<ptP1(K3_X6$d#OoLrIe$;1ydJ4DflNtexDtU2$nsOY>*?!rKkP?k$
z9!h3C8s5>q8Pa<vvP5l@pGvmPPrcbu=z)o%!>;i-eOsyjaes86y)<4w=C8`%it^!j
z;jwu{oetewVKV$BqlW+_!;Aj?mZ#T@EemnFQ>h)!o(FVnw((bHeX!QE*YK&Plac9%
zOcbjfgP?@Ln4_)x+H>An!Vv8Fj}d$Th?B(LbKJjY#2c|wrMu!=HZvj<$5(<64%!UL
z9NYs+K0h)J>G}%imKn)}em#|+Ya)^=g&t99eaKucTE}03uQva1Xq(Ti!)fXw%C~+O
zkH8(NEbt|?Y&<2aK=-d;wM+M3yQ3yN60lfEXED?@=f)1O?;~y@)s>o!6yxC5Yw;J-
z#r6V-85hD0a6)%U-(t*1#+uJ`HYLwet|KK$MTa!WeTFm#=t<gdxAQ^{?v9MGAtIzQ
zR2_X!P7QCU^>Qle%~ti@>^it;bx*wJYAEfTW$t2k%9G+gmg@eERb34I<`w{`SKR-g
zf_~O3;OkQb{V!(W|CB8E$^R|c|68*Ef0b;X**g%D@nzTZ*xi@!E7pgpf_G9UT)ihK
z^wM)wR=<#JcdjrittMhJ{xH)ncJ_e~hR}|+?bz%E)rixv*Nx!$Z7D<E_MR{TzmwdF
zUMu~sFm;#|`MC|yJog%nOPouROP}8|wrNHyW;Z0sMWOsu2<?zb6=M!*bs^=Cmu&LE
zVF1s=J^OrFCvI~OQJx)NJW^L2`skOCvYCpkGTko~i=74l?rLptHgK`3(QLR!{)IJ2
zKWN-~synMBHP+6#_XZG@ht0VMGhH+M1Q*1FyeVq|ZtZ%Fn+JKddOtN;3JR)K&ONFX
zY)}00ub?2b)T!_Ab_66;CTgR<iz}msYQ0@5e&t#OZFF6nHo6yI$##@<&M;1JhnC9m
zz3UCU1OM}qC7t#+0|gZ9IpBu<Hy7!%Xcc4tHCwIW^~pf~05Fg%^3vBUGB4095NQTb
z#3eyE9LcG1LunYyBVyZrB@4`Yz`R~_pBhM}&an)Ekfi?X*y44kKlw6j@kp_JAr-)R
zIY61VQm9#sv($!U{X?-l9!)~ZU^hm`@35Z<HSahm&>3>m8U`|oBCT<Wd-*FiEZEgn
z4A?;2cB$1cyA?DK-bxp6(VNT=Ac{jFQObb092AjBt4_}7b53g%o<ZZBm!~EZD3f-Y
z3z2EZM2bi*S2&UBD4HBPTY>lvu_9(%USvNt4`na=QGyLB%>wM8rZPQ5ybjfm8bcdA
zD&jd}h*by(<G_#9C~{+2DrX2Ug}N9gJ!&^@`Z|PG5KmJm@?}pTQRI$^3fgG^8r^iR
z;ToRYe#YXOGu`(_ZbO+N8<P)v`?+*mo}TyP6iIHT5_zN}JAgUkOFc*|zUL*3!~1nV
zG{m|SIY)?nWL>!G-pk(TLiy46Bk#?FqlhphOW*Wd!ogzfXnOlT&Kok_XEVCr<Ip~C
zYz>G&O<$g(&cYZvrWsO{$mziRotPYUtg#59_dXySrY@JA$j~ftTK5p*mTE6czDAc~
z(DvvNqRjS|JDp@(;Ra?mdC!ySaO_w|5&^SVyRt$yeKqU5M*?8v7cpy0=_2ig#F-0^
z6xK3Ayy-kyr>VHR)y#1`mG$Ndw;Ajk(Yn3(ZYFj7&Mg-$<nZNyNjfuAV9+=M*yor^
z)d~9vK3Kp-QMPCqoNCXAMPwau*T3Z0pX|4qT`1Ri@itE?<?HuxBp@0sI3*9WBrYI}
zJ(4MD?WRj-@rkg^Ijn0NpFM~rhze;%t!#wl91R>cghvoffTs8sXa5lvtzCMp23<oy
zAQh3aXRt=m!GG}dPcy)PTe3<&R5F;IX^OELI`pPXQW^b?6T7pjk;p2I2MY}&XLsj4
z|3nfCnxeF28c4Si<e<zj;vDfMnwj-`Rw9`+G!zIlm2VXgXbUK)-3Nu)LfT;+G+1&s
z>nhyshZE5e_VB{>G>!R-&9GEIa#a+I?095}smWOLvJu82l+6$6obUdN;_UR2<F_qa
zpp@r6P(joU1a<oQeXokJ0!cNAg#bg`wV#?J$IJY@(kwc4le>y@B`h1%ErUEok80)K
z&hegf(_G(8`F!mbjKugD6CQS-+V4iFh~~?{ikNNvPETC?u2lY>RIpC41_ubWF`mlu
z%@%K^op*%uMUs@stBgF=$REL%jOU}_w)hcnx>*htha$!6)&QU@gsTF453tJ;FRO&A
z#RaV13^>ZiGssUtAMpI;>+o&!1cks9*?O(XRGR*TFLiPy@nKnAVXQOzBMi%Q$K^pM
zHF0-?w5*I2Eu6qt`sRHdZ?#)$_&F*{It|$FA^sPCLMg!P43<~4A*8x()vfGQ%7Ta|
ze3j2)yks{l)hH<+BS3s-zP;oKe(&umyB#Q9g{77<q*9QWSv`*y(UaX<7#fW*5M;Nm
zT#cWPJl<}+0%gN&__Ef~wD94jnbDT?_D4)_poGjkIkNTA9Ncr3H*nh;<|?f4>2)>R
zHsBUpR%Wox-lq_cIorx9)bwa|``rBTf_4i|ya!j~XSETv_=yNYY%a$%6CLUfA}ecx
zs>`)6doG9p2dW?8XlT1oQU7@Ls3Jt|b99bwhP2q+0+}=vV!e*;{g{A-cjN%m-iYt7
z8GAuwm~3tw?pVeZ`<;ob+9%lRiWjiZKW@KT+sHB^ei*S1K1xgW9N=jx<LvEK9~Vn3
zg<R7bC;#Ln_n(_`s#t(_N;wqaG;L5xwQcRT$dTv!b^_dw{fcIlo@W&ZK4v$u5xi8x
zM~6|Tq==aiZHTje0%&_RWW9M?XPV~RO`PTH8GFrvxn7Iwa7^8u=T@&$XK@Fa15s#!
z8l-f_c^2pcY%)k?GKLWkpXxUJTY@rjfn3S!aO~acg*9Vz4Bpp=)*tUY>yNLT>@kNA
z@8*odv{qkGV@Eua)ACDenUomYU6Y!muEaQx*|h)Ic1$)NGrej42&W}KSawIkjcGf>
z4w$3)>Z0ikJXTY52>aevG?RQ64N>)a_?}G3rj@By>~vP;%Cugq;5cf=p7_Og<HCAP
zOcCj<iqcbTg>DsGIF+%PmW2MfMx4E4R7vSA^5Sf7Ou2a9*KPgO_vIx(q<qbOpw-cF
z;-JyStDZb9HH8d4M1Oe!RML6veR{)!>JCkuWUn@?uh*Yl-?ulP<m3vYo!aWYsA^{i
zunG(RB)N997<360{2~pV^hO>+DS=c)F*JgKbkZENQ_PQdQp>trN2_6d4}FS<aejhP
z4PAi}nxkn@sZ5=)Y318ltJm>ey_|1z*JiUsdux7Sy!Wef?iJ=1jhvR*Rki%V<@MnT
zlB$i5c*wuiQ_rXR#d5%7R}gS_{(Dg!aBqr82>+EtnWA!KwI%_`(d{v`@8%dHPejtJ
zK`0}tH430PAZaVc3Dc0?GcIqWc3qP6@%uATqp}7W;s_>Px#D5B+4;xeYr-kKCJ*1Y
zbkVfB_!9nQa#BjVYP7X3)z$Gn0wE-E8d{9=WUwfHnlju$QIP5~MXYQYy3P2mp7s|8
zx2d@I-$(dYwKcVbsyXqmws1eHf<{5}@f6(pF$7hs1H1Y-=S5h;<X8>G?dY)0gE8+3
zmdOoz%W`~nu>KU)g}P&@UU4U<YKb2hJ9_y0)_R#B=mz@$MYgr9YAq{D58ef1wSc?N
zYin8`iU3+v8Z7HFxR(1oB&~;N-MQ&(l~m8il&;kG`CbN5n$D{PD+DC>HLfZEuUo4I
z17)TD4eKx(COC}e6^VWssKh{UOBrGgv}lD(j@?Qlen1kV78)W61R^oa0<$5|y?gio
z%Fz}75SoIyfV2kL4vREPG<(xayVF;~u)@AyxS1r9b*vB-w7&x|^0({0WujA7L;0!*
z;C1V1XbSysWZ@UxU|faS(dpOEI1oWD*~)X*2aNokl(HMjiVkG`V(W1VqFpETunP)s
zG=k5rH!XhhI=?y7R`=KcEHjpiLCq?1hNZc)hLu#~n5d(~NP!re4jAQB(i(>x`MIzz
z38zf{Ir4Y;t<pL!TuNl}B<Vdh8_sEdcsE8<Iw;EsbO;#v?^v2<C7MHg_fRsFT<Ja0
zag&yi>I9%LAkU`n==5rZ7&5|Z)K~jcvES^S-mHrtuf=1!*2<3rXI#9-T4-~@T?S~s
z%aDE7Gs!+!q-6&~tEA8!kM$>Tn;Mf(f}FPF%6aja)}Y>)K0@fR7k@?GAA_*v)763R
zt6-|GFR9o@d(Y*{JmDXZ3F6K~Ra&md#I$yEnvS8r0(+dETfrUce`faL!fP1YhVTMz
z<uO6h+n!cgjH9-#xacd$@R&>jsiblPj)6kSks`EHCM|CtPM!Q{ct*FA?ker=aNE+G
z+&6FZqLuFkTc~4mo*9n?5}Q}JZb(}r)WM!m?31gsowhfw(Yk|XuX=gs4k;BdNs+(J
zHY;esxBZD+0A)#PWve*bGrR0?tHP(|tRqS73e-ecs<>Fuw=%jsGnYT({}byTlcn9;
z3dZHeHDs8SckS!`N7OXOOAm5&Pko1OA)`@Rt!7P|iqd?ii!8l|)pZpoIJ|CSox7(0
zmgdzjb>5}W$Hm$hd@?;qPHHYqCKAv%b9vjz_c-!@vuk%)$4@c<YUeuO`#)5-go=v7
zXJ(>JbRQJJh7x+^6S++XH2}VBu?&f93`5nirfDX)mN>|`<!eF?K6WzoMEdd7I2^nE
zXfS>Zh%R?`SQ$XC5i3=PlMpAc%C|B0QD%+)8gP+C7(Gn^*}%M*gxXKbNHDNnJ{Ztq
zUS5<o(=P9Lv|eAee#Yq&eh0ry$^0Z@f6?CY>jO3Ql(3R2WS4|MHq~UyNWcmR&H@$x
zpKtt5R$k;Az-s0i0AKTO4Hs}$Nh$#1uKu>K7ONT9Wqlr3dW_;Kqct4KB3+w0#Zshf
zatby8HwvmMVt<{h+E=s-I$58dcT;rhURTr&oqhfE6_2Zl^YLBi^m@yYlSj#ZcdmeM
zlodJNhNP>~qbKdD(a^{sgmw0%vFKcN1~??Y2?K0;VN2uZl9K}g#(Hu6rL?pwS(iUL
zdLM5OFSn;qJZjVRbTam1^H@6i^SnEtsDVV4#tP7eLXiSwC^UuGZ*sq2n5eLLLH3bR
z36{mWNwUq!Q-B<pQWrrfO^8sF6El*z%Pe&n1-C<fkqczKm^KB&mIQOi2PZwiHS<uC
zj>-g=bG*tiClbmN-2|doJ?5Cp$~uxJr8k%^YF5w%42MuiswM;j(-Mw4p-M-X&&FKh
zK>YEzUx34*Ay@~0M|V3M@2wN|X6t=4-Tp1Tqy?Dypz1DPGJ$yg_yPlIP4Ae4;LzPZ
zg9|cQjXO?oi-`7vOWUqpV?z5%ZKQ4NH6#i~hv(TTSc9wY9uD>~ro+Ave1gY~cnVS&
z8nCFup@%~scrDj=F1o?74D&eAAJB$R5PiWb;C>~e<7H5=+nXWQ+O_#U39o-@boACF
zM4=7L>}9b<1secogRd&(=8EznfvIn}V~JP}av0DP9D+|ZQ3r)vR7b1@YILArV{Vuo
zqzapCyrvvjl5pl_$%`Z&P_5!VdC}kH(pg?8<kQ7>3#{D=we|)1ycZU=v?mhat@nYA
zq{yAqKdq>w6(Q9OLe@u2Z63~nck9E7F;`@y`|8yqckphJ19AJl(U+0ZPsFdJRNj4o
zZJ{{N^zEp~Za-sPby>Qp=(jnG)SU=Kt1O9!r0d=usM=Y&H^$fZ6iLBtVvI|lV;O#K
z_&S?)Fd!c+hR0UyP#+2Dgr9>@^QZ}|jRwwT*+tQ2<`&xMr_aw{`n;j8=xY6}q8(@)
z$wYAqbM3@J2uX-dq+pPv)l{o)6{aM+O>jn<k2x1Em{&04V70~AAS9)!_S~yzPvzsi
zjew?{p-#mJGpB!KOds_pnNB&|r~A`j)m7&YS3B&FAfNTRi!gFlSt~M({y~F<Tq_+F
zs9%5_6tIavMqFx4_KW7;QdGdl7+4jT=7mGYOXLCNZ=E!H(qFsUVWLsRcj`(KiJsv&
zVUw)a=;9fkSR`0UO~vO`Go<Ahy*YlD`yj(7)-Bw*SUXD7U68l(NNnMZ=l=0%4J-e>
zKsp}z+Z|FgJ7yz(06y@hz><WS>oAWCTyl1M#~~KLz{AGis*J{73fc`Z@`}}xazeEF
z;yWv=f#BU|5*BF3L7hp2lUmxw!Hk;7+tW;#LzpT<&y^c3ctljtL|T7Qos_@qb~=^%
z@OqD0RzqIJ{2R{+&hf&`CE1|1`?cfY)vY=+Ifc?N^%>tuiNqZ#c@4vlBRSEQVh3mn
zyb5?sLf)2{U?NsCJO#1q%az;<BD+O;-v`%lRnlJ768p>bprS{9c4JUme%m{y8bJht
z4L?jKv8<HZEX$~>*Lae4ye>9R0tvBp4(Q8}nX2Rq51VgWTN~qek{}l|k2vrgs`yF0
z?zF@(toYFjdsyJ4v%-c!zmC)W9M2p)FYoJ#w+jZUhc>D9HuwG;1>2-x-xO-gx00iR
zawo0b?{b>Rzb{U2ntq>1<D@!LT(mZLMZz&NzQb2<Ky`WZT%IpF{CT!C`}mg_GHX!h
zZV4E6eG>Ih{x$3Z9F)?3N8L|2eggHLJR`X$$ubmqB|DBAE0G}AWJr>MCa08A?Z=}*
zv3e!{Ja+vYC9!CVNBA6ap>hTF$B5hIx*|?SK~vaZ#5o+%Os*YI93tevbAnXo8-gAr
z_Ah#bzsQ5MfRaHkXUVPQHJqR0FE5Ra+38(B^2!h3b9A-?U4j|G3&V}O-krmUwyeUF
zfdrMz^bsE8aP99iv~F78tgPaBBFj0j4CX*0th04D>dHrvf$iVdaKo$)vyrJtt*jD9
zgY&oN?F<d#ZfkqC3kTDx1!w0xdO8J@Z>^TS;xHDvO_eP1zBD4*ng4K@^8DpoG0`4Q
zDnF^5deh}UhorRXFkcOBl)rJ6w0LY!rCv?((=`7wB5#?$6?Foa+5(c9=*9;O5a^th
zdE)|0%GOF$l`2pHr9cFs9xb)M&fEkfm?n~(hc!ramNOP*sl(Kr?OfGejltD<mj4Z4
zs3_3b0ckTuRgO!#3#61Q&L##@{?b*b9iUA*u2p6Qm@;UqqoBnI0Khl|b{2gSDMp5Z
z&>`Q`dSbA?iUxrnJz@Qqqv96<*~ys|m4#@s^|X?{ful~jO0N(Lt4fSah5;?5CW2@p
z26vc+2_WlU2bGd(hf*P5V_?pgMJ=!hC7X`Axd@PTzbf;pN^HNU*$w4L5IDNOQiW=$
zuqC5VWbbJxrz8IzAxQ?ate0%wc$bdPFT^7?!@!wO$ZlZ$>4syM5aZoi^G%DdD&2r%
z(6wPikK*;gVs}8P#ZK5iE9~y$+g;PeI)f)};HC7FVFw$=s|vsN+c;CN6<gK@kN;B6
z9dB$y&p$75pN>LzeZYoODcpa2lE?}E&C{>`-^j`%3Mv(xUt>+Bl{HEcF-9cVj{aJz
zs=*LdIjW3N%cK!kOIzoLFwe!KVGTt3W@fn_-#4=R!cnslYw$qLiE)QH>DhJ@4kV^T
zCGn~Hq-?*CgP2bKbOpvvtpX9$1*s$D=!0O&jL%N$+qQ;3Ki%DZar1t&_&L>ceRqqb
z-CW|)#MV2C>|`G*<W{7uJV{A~3PU9aBY`mD&nkU_wB?X1B;{cP_w`1C)4myH%0Y6T
z3>C*gDOJTPF-k*%!onomF0brYpaam93J=iiewHdw>M`OjPhujEwZ7_b8$o#hgXn0k
zxs=j8GPHMIB>1C9vTTzbC-QOqY?U>oCip3>NJLcNAizwzOOsTee7(A1Zz;Sj+i#a@
zXY{r``P9v2<OL&4-TQz*;|5d1?zTRJGmNpFaWD>CXUZ&qxaBB30*7#vg)G<CVn^!-
zlOOh(TG<ZpRh+lBNKIyJP2kK={|aIk3~#%LE0L(P&CWpfRnH`sJ6;vkCjzi19@W=i
z3Dc$0hs&_Bt@_$CRv2!)gMX}FA*`<uk7Qz+|FDY_lBr$u_TY==p~?0`g9zbaXg*x5
zZtPPpSSxn6unY+Zqw;a4(HIvx=^cDJWVi#eV5R}WR@KNS4PkUNx6#kbj!}Fl9!;f&
z#R`c%lJZr-c}Z>TZ?ZF+tiFh~raYy5pT0|QK(q#hsq-d}=jsv-XP~&ER1k5vz)}{~
zDM6rBWLxF~Gq9yxm*j^&)E8I+r3Tf%P>Wcmoy*SJCnXH2nx{*sSxO1VXPPBFylHQt
zo6{Kd30y|e&`rr((PxktMJhN-ghCq49aUdVG+kEF{$Tm?W^#?mlxU@`K9=qjD1i9}
ztB%h{mAKE28mOjai{@~vjQ#G)%tA2t08ECv;CsS3?La!J0NT2!b8N-^DyzpgLlnY_
z1Gm7JOk!XXIhN^520lf8O-|hUzPH;>CWbhbzO5MS`-VZpO*vC#pqNO?=9G)jrfGT;
zIR@{18L`-ySoKp{(GT@oHUcMY=o4#2q^5`yRe^*u%I`fAEi8qSU*Nw9iEaFqECniO
zzZ5ILNfpC=OJVvA@LZRzkx*Pik%yIJaW{E+-sfVL%=+_HilW>d8xTV*HAfEA3snPt
znR7`SSgz!?Z=O>1kJ}1$H|NROP;%;31#PWwWt1;?cG!KyKo^GrCLQUnL&k;XIlNsH
zRr(1$^^IKLVU9Q^_&aFSBYs^Ex)*#TPBn>NZGCuO8lQyM!;Q+|VdBv%1`)Ao#%zKv
za_bjRIk~&#0=>gd{jR&?IJ(-#S=~JopXVrYJFRV5as4LZj)d+WX=wv_VrRUG_ET%+
ztbTd#Qlw&I`S2i$>XEhYj$?z=@>{)2P6e)4;teq^#q!h=(h3q$AIh9BI9qX~{$XTz
z$@QxD!|5G~`dkL=fa|$yWwS+p5>1EgE2wx20ydlKeHdxW(H}ujLxtCnN59Edxx@vH
zp-Zn4(iK-dA1qSqnCWc0q@^)qq$8SA$?Q>Wx!vd_xyeE10T0S~l5<?Sxs&PR$1&eH
z=i3E59azl{kNacmtRt815<A_a_2%)>9aFY|v#_cNHGYL!*A$V+$X1cp#ywtDyT`;C
z$WB)UM6ScUR0}G!IYqOAy<|tNlCu$?tgoFB;<v8RPnW1OHQbiTGWZ+@DV;fXQ}|s|
zngdz4{W+yr{0sEBt#V_XUG$IPRQkND34}hDe0DbP4i0|Vz8-<TE+3C46<F{eX_9sN
z3K;y9?KGzb8{C`8TdVZgN6scLsuU;fjdh#S9>2L&8vP7du?OH1TnU2yJ@QPXPQpb6
zbXKl_9lC!TKL8H~Ic335R@tZV1HdZ#1cQn<Db?>PtR~qurBKn5$^lqq(0{SYaO|<H
z`ox;&*q+YpVD_sk8r{4JOnL6c_cBJ3pdpMql;13j^l@bL$(%cwu_>qNqIWB+6Qnxw
zFoP&yB(f1Tq(MWwu;Q&C8opTSGUczBJKunvTXOw5llS&<ytrkiqo*fKg+*T*4pB(n
zJO&EFOSf!Y#7V+})SA$yKpY7XQ}d4L0W`G^8*>KwY}!GoR(C?EXKZaV;mV_qYYYZu
zKNM0)QMt`qDpE50pxFUg=6_POfUS5CcdgS6D{*-!sbDI#gDq0L4^b-_;8_7)OzPj`
zTylR_f?3=FnGz$#ym)zALMW@v(Nx<&<~nN{lg@tYZ@B`g<9AoSQgy!9@nl>5m>B_k
zX3rP?_)`ROXa=3yy)e)?zjug$`6IswEAdYXClXFRG4zBbum3)Qxdj1iDuiQ$&p4tD
zyXk1Rx`zvm+ee2P$09%{f<2jE+YL~R`#EPE8Q>+++yMe4zx)>4#i{p#ZXkD&R)BuD
z5z)^rg4i43C-5Q=JQk;8l9P-#^4j}DB}piuz@Z0#g7Pukp}*%G#JlDXl=9AYeK&(F
zk-5=dVfuCP_0Xc;pJJ58Ov4mJ`MJ#wkY)ap&51EqUsYLpC5|?q06uB?#R!nwMjMsB
zF1mvo0c<FoG|4Zo<g9Hf4A`Q>GG#NXA4de+OM*jDG@LbZRc!&F%5cFG4H40N!?^jc
z0@<-{N>YCHMnYFePr`>vna6ddRyAqzvfh@gV6|7Qlq;&vPb&u{^rUZpFtB39bZ3X;
zd`V_qz}g-6!@w8lobM)IDn#4{?9*+44M~+#!Sj2)hICym#ZLmazOnr2U`Gq7DV`Di
z%6>hUuUeeGIBC@L?FTEDeV?piG;8G&U0DUOKDz1BZZVz^11C(}=I#O@!%cWUD}8hZ
znXv2YmpixbpbJBmX6blW331xdH0R-1WfGk&+UtW#1h7Mv*$7h_U0K>TGuJnJwQ0yo
zkr~xU+cJ9m=HPrdo<}yzRxx+x-oH$CRW&*yW5U+;xZYt0FqLtCR;5^ba)ptYRBx3d
zG(Wf*$A$L)oGc&U+3~AF>i3WzM{#wGEWP=W>D~48!r9gB8O(2c?vO()rVjqg!8#Xm
zVa%07S1&?IDJBOGZG>*l^)i4B<zQvv8%S2Cu=)4<)0Y|Ls%neT;n<^Aia};aR^+f;
zL+~1!zLO8*unjB-+cL0ks%Q_R)|;fR$2V%{9X!^aGWUOSI#D5-ud8+Au=v|hDTdH%
zmI;PfYdbz#N}7Cy)21|al?XxUEo`#*N}Ei{Cz^IPqjp1c#;)B?8(<<+sbZckd@dfc
z%(ORARj-y#q<)0%4)G=}`cX~(>vfkARiymM@_q(%9{)k2`8-JU{yQ+~bItB=NB4;|
zb=%*L?y|oe-M!T>ES!uM@rFiUEz<0I1^}_RcR?}m?>(<uU(pp>Z}u<d`1(y8Ko1ax
zmDfAI?g`(!I{iiTX8a_21JIm2B6sA0YhRT?an2WE`ixhG`0MD|+4X8~9%$tUt~ffo
zKrcPHab9tj>vGJ{DKxRS)(~jOV&G!?_UlCD;JVJv;d(Bn1<eLlVgp)RK9SyOi&+-4
z!~WTmHgR2;hS<ndZPsDP(c=8=`rAXpy!tdg8;t#M)PS{h_Xf_sB)c&4_P;uiW@g+&
z3*v4Dz|Ulj&b2l7iPCud;_<-Tg65DXEXEa|^Q;5@WO{2NPad42f|8=W1V}{w32H)l
zswyHK5AXlLM9>97XWf(iy8}`Cs{?^til*A<Vdw&qOcP1X12s%|m^=_&NRFl_$E{pK
z9e}y=M1U5VS3#qOiRV^h{KH|Q%P>){<ODdP^PZBe6e@!~m|etgXyQBm%hC<;zn1QG
z0Mh%@(hYv39t4nLNXti=JmQn?AK3rL(!HR<g<2P15Gqx+kBKG92s%R&@x$p@?Vzl1
zSv7+OITr>s6Eb(v$dFdjvG1hbQ2G~iW|5(0ZOC9qj3?^80EseXsW}UP%t`hanX|N}
zlvad12|(tAWX))en(APfVp@xv6h97Sc+%mCafb-4v$$#YPXFQK7kzQ)uTJs$oATPg
z(#u@<OU=)hC(W_3kBB?d<#ykDGLSh3mj~jp&t-{JktGTsyXHwZjL~<Xe|8^ZSg6l3
zfQxPj5M1~lI%9>;&KSVIwks4vcn64wq>;woDWn`1ns_N^5u=SrVCc5J6jcd<&fHP;
zXD$;5|2*XAyanoc&ZssKX@q6~dJk9AQBaPmZ%!|*i44wS3^k$+snlwPU8&i8jQ{|4
zAOVQ?lta*R2q^%7T?x|sH<Ys+6cYvjz_zWa+5Cu3)01s_!%bUSLa2*ev@r=(KU&-d
z3OWo{SAhU*It8gAAUh5+0{U#7UEWG)in8Nlgm`Kyfx2SvQH~k<a+Gl8y3T3|TITXR
zl(8yZ;knyTNFaKZnlCn|lbVpyRS*tp!AW7PJhxS;MGS}~JLegHQ8@>pOWgIRM4V17
zD>DWYT}&s6SJ0=sgp#W)B!&YP0pUrJ#UjoJWXkBf_KDs<h|wQ{JWzZehc7W;xQESv
z&-GyhIqm|7V1_B`?7SK<thc~nBF+hJ)-fEq-A7S~o;G8L|Dtkwt@qxb8_~BeIc!>A
zdZioS!|#B6QaNR2^tU{^)4b<0$aRrg9jpmK>c2cSV3Q!oqmHM}=R|esZ~dl|>4z{l
z-^LzvTDq~`5*bc7BWdmGb43-~4qoQ?v~&CDTTh*P4H3@fXNjxM&dcp0D2r)mbY3H?
z_L4xEZHN8Xg^5}oLUA>$)K`I9873QUE3+)3SPLN9C(*^A@RP|FX*NV`ed>0*0*kE_
z62AC^a?<U}`a=SsoK$A55&+>)7$6)5tQlA?ET9n~PxQqo1ZPw`kcV~X!-6$hVx;+Z
ztsOc(Y0UQ%)pA;>ls?8ZR%mAMCIb{hQL+Z%AZ_+#x#}X5EnPEIxt;B~uS)RD^vs0%
z?=G#vO++rZ{|{a7*q-UyF70+~I~}`Y+jcrOJGO1xR>!t&+crD4weBACne$z9tap9L
zKe)Eac^_4^mlqD~H=khriEdzWj{Tq@gscZaxG%9#GWZQGAJ=WHd8I_@aONP*=Xq0h
z^*x+L4hCuZvWl0BBjbAakHgck=W-az5o8cE8KZP~upcR8*MbQOFv<x~9u%2Aa0OS;
z;AVYC<Qkc+yCZA4xVw>$*{MTo0YutX5=?PT4av*+!EY&I^4hQ7fyk~aX>wj@gAP;a
zuR7mG6`WkHPfc9&W?otKSeC{m!c3N#J~B4QIz;;0UF7IG%MhTP<W#y0TssQa)mrhK
zQ@vW`@$;q~?w$h(GDnh^^|a7!e_T)dN@3zbd9`_Df&RYdRR%@aH7Fj9uP;+HN+G5j
zOuLLdKcSg?3|3;iC}8kl#B&58(ufhZ&d_(Hd|VQ`IxeLa!<v@(&_!b9%tsym`1s&B
zk@@bt4s&QYZzZL18e<VOD`<(z9m_Ort}@R}m6VfEfqEd$zR2-PU!P9xgN@B619#^-
z@`zRvxCB!i|A&E#OK&Op*Kn2GY3%e%+?(Gu8}`rK0+}H&JeuS6Y7aMp)$Rx7<5y9O
zhfMcQyQ-kA+jo2ou&=ApS}N0zP^oaJYt)~DPm~*m9BY?Xf7T!dW5!g}&LOJ0#EWN!
zf3sOg9io~+Fg`>4Z}r)+l-M!@sLvcgef}>YB}E05|Hu!(yZ9?V0PmudeW76Pp-Q0u
z`LFzN^puv(Lm{aRmw$_JPHE}V^{IzhS+UD_vsD=wKc8Tl=4NU?0LEE5XZKnYPvuOZ
zFBhp#`2Jt|)Aaw=9~OZAxIkIL>74URI4Hm{rfFsRYWqB2->7zYGA{1p0~i8eK;@>J
zDrBxs*8j9suEU`P7ytl%Xam7$b~2@k9E%RXdK(xTE-tXW5CFiRydH_tDPG8*>3?V?
zVxA@eR;XtD0H2=BCXKkF&<fO0%4I=XQA;$iiYSZcay?M55#J}A8eET|5es~0h)kEd
z7uSh6Sz2Ccj4ZX3#*%XMlfOBTLVZ3q5~PxlN($gz{27x$rybbkelZuLJ%xCZf8Lqg
zz`}HnyaHe8h4r^R0V^k+_^G%3n9Q)!g@B2?DzMkeu;=*@4<>w>g*!<A1+XsQTm1H`
zjdg5`_d5<duk?e3xB~&!MO$1we}LB+fC?;QlI<a}GgKRdI0C!@!6r_iLy_vYP#ICL
zxBW^x(f?oi^HjCJ+7%W_yev`E*?Wx&&>uiurRuN#7}H&F{nek3a!ND(|3HCtUcxB#
z@PecOP++@Y<$s{S%Kt!tQT{@K6#!6Rq`y$$#DAc`wU8TJ+wBe@!^*k2k8*vGxT<#e
zdj7a>wPRRS$br4jKLdy)cbro-oE8NQ^Eg_N0GmxLm+vhwONN5w!FEu9rFPn<Y7rXh
zTORVL^o80u6=kaW;rPg?juAs=%h-1C;nJiAob|JcK5h0F`#|QtiE(Mj(EN}SyruAk
zhub?t;AbXS5LLf~%o|``&a<GkkKcspT(%!4PiIr9MR|q_1wS@=bVd7r>?>UYj0qa~
z3}K!h2B)-4pTY$<E*R>uETZ%2W6W953RN;YK}AJ)N=9U`u4Im;rUKL`oFoM>A94*X
zFGVR!c-Nq(w>x2J6+jpgXHU#1W>OYz59^L<oMC@%f8Si8%ibtcP3h&o4Ahq!o|m_=
zUBGZtkgAtWt?5u0J`0~^_%2c)lat~({R7s&Mu)rF=Ccu7!zuo=RpHrx%`6?F)|%m*
z`l|&*S=Mmef_@8a<_ijBtM^`9+My!R4bfn`sw$nXjRCE9zj-C4`KSW0lzKcNWoJx8
z;^AHX9zd8R&1E(bN0k3aoE@|g438_h#r7V8=at~o(zWb$J(J}{a|gArT9%Jky#IbQ
zg=xi*nMre4@H>-*=E0@WoE<4I<yw52yIfu7u0kn%s$L=XhT4jquw}U5=UssuQ~Bua
zap}#tK`p)XvmA;Yh5T%7)1L_9?hxK~k&4{teQ5C8;f`$_mY_sdEDTrkO#BAx8}W=d
z`1!k6-8@R|9BWtdpVgCTy_l`h#`|A*-`>T@#0pJ665$2hF+~sW!=lq&@N%Ud>z}9g
z$>A{jcb|;@e4F~F`n!0!rg*!J7wm@)@r3}{*S}symE>Q2e~E=_fWQCC2|!UrNbn!0
zSODM@19nb02KCsWNg@7}rM4kTvI#zsMYH5cq+&^RdhJgMnml}YymR=4nGt`bgGws)
z(%7yUh7;Zq99&SwJ;O#qJ}oiFRQWL=LwbYmL0XyUJ;H<JD|k!9fd==agRdgj9W~cC
zP2cXk*Hz4|bI>h3K;R^1co_f5E~5SVm~St2D4~VEMH8t-A#jWf-dOn8oREg9q}w#$
zz$^kdF#lgfR#ob+<6Q`N;{lSO0Fkv*j1{nEVN-8sp-RpRry=jN{E={gE+P-vAWUv~
z4<0Xhs?X;wCfQ^pCc!6-ZyDzDv;h+{eFHgU)Od7$q~gzk*H?hJsIip{R)rB?Z$u+S
zOO2S=H-XEg^QWimfZ)Uh>JWOv78Xm&ln?;$as2jpHadEydwpD4sPomcJg;~?mWk$M
z?WakS-;0E;t(eV3h{>5my5O%7OArm_mR5)MnLrej7)FKzeVYu0cqqw>DBBn-;m2;4
zw!lF{5(n5hkqBo|VyTuC*!3IL>|uG(T|!p*OR`XqO|fX%Er?}qL@e4n<dHH9_YNJv
zcdVtpDvd53t)w6=s^B?OE7Jy!f|M6mmhbaJ<FAumWu#1Z%%_47^uhM31A#b$SoQ+|
z&Dc@s&k?)fYC54@KQ|uG9a8oDOq#e5db20L$pEiMXpswN%2_*t0jkIlD50K#A{Dq*
zY}qtqRW79$8!rzNA_!a_*Ts+wF8()Yv?~~w6H&Yt(~4}jne;e>prSxiV#5&x9SZar
zIkY(EU~dLTJqrkkLyx>dt{0Ko9>)3ueoWD}9-WgJ_&qDbLoXhFKTAMRJgjxgFoCVs
zyvq`+&MEF^jeNs`BGe0zQ^7xRjJ-<?f<^x1z;M+iF{r@j!_hQ2)Rg%_uRbdA?~gq2
z6vjm7_ox6S@(w3D9Xo3CrM)WgUw|lS`<8luxom|F=XHevQzu>EBB;}5^iF`so&gCb
zIC&4zgjE#R=62AmUe9gW0dhM_Yrg#(saw`aB|XhRsPdD|W7l0rvSHfnC6QbhNr2zM
znF~k{`H)JI5p@FelqN?0cglxTd+pfFba3b>ebsi^-?O5G=JQujl_bx({cfY*b;anF
zqdG`Nvp5TXXvc9T2(q{eUb}YYF}fAj#xtUv8ZLshl2a>6MB;_Kz3r#UZo`8IAb700
zoW>doLq6ZDnp#USKrdWfZ}R`b3ieajVgBJ3jvv5kT~OtMC_QZJe*4;N%n&W2B8fEo
z=OIF1E>V#X7A8^#_|$9EP?mDv;+H>EJ{DDK<S)e;OCumTC+Sm>Dk{TD^bvo!NHDmO
zn$lc%;V4Uecrnciki=bCl&nY%@y1`LOk_kVmB`I!#&14)jW^pY<?4jf6Hx~}IZ*ZG
zU0PC<6RhvrPz#@g56x&4aR};mmq}p8(`LaF9@C$>$4J$7yMqz!A+krIg}2YQPVIRV
z>H1MKNvFi&zx?cpN>{^5L24LYiW1|hZA#n>dRP5|-B-$hKCmVdu1v_UKY2XQ<ky8+
z6b!Ws$g-spdSTcDQcAk1;_#f0^?Vs#Rq6zl3l;5TjV58}qrq^BZK+||!Ry=ImOhKr
zu&XOiAUa<-2GbI)BRckswi4aWNJfR_`bTds#WHF%Lybz4n2n3E+tG#C2O(?I8wR6V
zrE2Hp<WBV_+02Q_6e1<kAy}?@^q3y+i6%k4<_dn-;RRTFs5gGw&8*;(KW&$C6N6b4
z%Ftq;gvu68n(BJ;h+k}wNJr0a%ON5}8=Nl(^C(O0(($Bpd4L?dTHk2Aw3XYpyM-_c
z`aRViSXzb8LsYQ*DSI49DCbe=ct@FknkTF%bA6QjNKhRVNE&47S$QcLG1|!B$y#t{
zE&k!n)^>A*SxR^(UeEWY<H0hQU3O6=u^_lk+_tjBJL9b(t%y(5;SOfvfxPI3Mbjkh
z`ZE;vQ+Pkc_Lbdv(flU5?0Umuu-FaqhE3YB?y3aITVGdM)n@x^vo@nNfKQb1oCBiW
z4QqceUp!WSU-X%xJb66U3jTP`VZM@yuoejqv-rYOtyWt1=uT3-3AJ%p73#;BKPib~
zWDpyy0M~>3Q9i_!Es^D=II+r(A88%+BZc$Ixbh^Ah0<=;AhUNHJ$$I^%JCm{eHYq~
z&~9a{y>QzNtoq-b-*<Hc+|62N=cN~=57|0bofp#8x96d8v*1rYwlBW^)%A=qIM(t6
z9HF=XPwoH95$b<+JpmkrzriPOXrfL_U)6?n{S|!(5f$XzrUMDdHUmsxHWh4;Fe5d|
z_KpvVV%hc=y@dGB7(O#?Ag9ezfDI1BI};Pz*u@o;WntF|=XK`_TlMtA)q?Oi5o%KJ
z%pLL(un+@Q_2WDv%BoW){(rij%gfCFbUnd#;blCy3wqWko$Q11<{m?a-oPWkA;fGH
zR|v?10?IRJyvv({+ipy_(EF-xb~af%lsa))Gj`$>+b3`I)_(?thSQcmf^ODcWj0^W
z1>){#ytn=GrEvyW;TISCP}#3#a80rRe!^vIsa2FynJ*pn&7bUxos$jCGvFp}CA<zt
z8@SBoSOur7N_SI@lE=3as|vnm3v}3q%ruWY%qav(QdRC>Skj?Gp1{I}1ctqXb-u6=
znJ7A@1a9yY0DQs}v;AeOy03vl9wR++?TGt6bUGaq?NLB9hS5}QUk2U*EE1TaqaTdn
zn1eN5@EDUd==>`-(jVZJa3~OWB!>LbAN}q8MH~TXN}+^%K#rpn<Zj{7X!+ni)tJPk
zzLFj6e957GOtEqP6ZsG<;=1!IbN-k#wFP}c_l#_{erfSw2MS`-H4Cs(h(dXo<N$s`
zIA^e;@+>3LEFz0mxGNsacac1p-Xo6ROakhOW4j%3&<L~-<pf}PEzvB8a|GZI_P#_S
zHB1hv?(ac=46l1o;d2Q<Tpq7<0S?iqq2N=}Q{3FLatT2uXNQy>937}N`KWu8s$pmF
z)io86Cz)Y<7x=T*9wUCgrGOhN8O$$99<q*w$gSEChVC~GQU63yZDg6Tr<>PJ9k)2s
z#<oBzPTc*scC|~F+kd@UxR@H->;c~_1K^wecT(?veX#O28T5dw=?g0PYn?=ed2@&v
zf`@Id1hrq*YLPOF3=)*=FPdJ+jH;JMt^{M5VUP{1FQ2FG`f37~54#$<_HX#NF+Ux<
z_=2;}Y&&5Bv}1bVctLDn6RC@}<X75&{N12-ntGJrJ=z(v*d**9@XzliCsX8}U(*M#
zzXvxr_iXk$?-PP7Syd%aq0&s+)@*4~W8*|_8P*8Mf<r8?(RgQ61ueZM;DYFz049y#
zeA0WR`K+!-%r=d=Q)!tA^YX@vxCHs&JMX|hS871CB6QinR}92PR?~VbVy>B)wdt*b
zQ@w4cn^<U;%z(RU2G;%_PD`7oz%1R$xZO^+vDrTaCFh@tuzH+l&Y$EhqWBuiF;Ejz
zPaueXOd%vIY}EUs$07&0K?h>=0MLlq0)8O0Q01txb)bpjeJuIV90<~M{Bs;}V5WX*
zhMjh9I!j>tcM`*8Mx!-=&vgJ6Fn;p_3?O<?rFmykPNyCzm0JAw;WQ$YBjX?3hqi=1
z83|wu5wx*@gV-oInskx{kB(1FP>}X|@4W;m$RmdUElmu;KEA7{wh(MqQcof*s<dqZ
z@V%m<B?^j6|D*~h4JDJ0Ob}|O6v7=W9Wzb4Hl<jWzHY&Xv5?4vkv%5OP|TjEK%4ib
zA+fGlEGGaVN(*NZsYD8JXZX8>7{(z3V0v?=asLbxDj6Bb>f{SLBaxVI*ntjif`SYD
z6|-!*?P|mQDIUKFO*d=~w!Lct{9M2u&CC@P`8(g!E_!Y1i*?v(f3h3RCoOGOrzj+4
zyuzb-k<Vr+#ck#7Nc$6+cAjB{XQ(^=U-$iaR9tNsz~h=2K*#(yD+<7?u`qHo(04Eb
zJg}owzHBnsQNOaf_i$%PIPEAZi?nU#3T6WvOrh?5E!Skw?0Y5TdySjwX`hz2>-_?a
zc`ot-SEjGLwwhzC$msVkbd=U1z^2Y&kEEMC9(u6G(vTNFWbFvGV-x!rGr{DsdxBwp
z-iH8p0fvYLw9yhJ%+(W6Y9dbVC$FBL`xpE9>|DL!k!&cNEVLlichymt+Y0ka3o2$x
z_i7Rrf`IL`OkLHju7B4ck4ZZ3{``rM1Ukxg8U|^OPDP4Td@xv*D~(i`>zEjLk-Hg|
zECnr><o+%3#HUNKrZ*Dt*bmyhJEW38dUj4ERpt6hSwiYw2$gqckmpNQMq1lCl1h5j
zm9@5E7_^O4n9xcp%r_jU)WS+rezh=T6Et=x;=KMhD1f;kvnRL9of>da%--A^bA&ip
zPOnj|7Y(NKx=RV>(+bKg@lF8~fNIAZvI<Ai+xUBeFamJIh;Es+Y|RdtZLEb+Z5~JD
z!MPyRAsC<(H)f-_uI@8R^<v1z&_@R|JN^5%?ky%5Bj}u^7y79RWZ&DZ0bUb|5_pqO
z7rO;sKcm}*X@@+)XlcV7xd&>@fP7rdBA5$5@sZ?H`Aa;~jBoMB=Ce9>{x~R#)bhAA
zd5!oU8uh-?FzgvKKZf^_#jgq+(Tp}z3_WEO+&cUdUt@JlF%5iNld$UiQ2#R{S6tzG
z{){0}z6ca0t>R8U7;ogFHIt4hMDUAWAmJ49Gy3UeXMm?QSujB_QH5tfyXzL%bX{4|
zp<pjh-2Fv{zG&Q6Kc;#o)q+5+;aol+^qM(*Opx;YIcjV5iCQS11Wcn%DNcll1nTVi
zO=;P<Kja31@$8rb$*=5wk7x7Z-pUJqz_oEN#t-iUSIo}~f?fdGhxkg*&dp9=T}2+{
zhrWD5W&Zx7VA1`-c^25S0IG1tXR2)RvFOb1L*003oY{e_J#QA#L5K-dl){<kWd8lH
z>qBU%Bb>S$<PYIu@R=s7PS~ujtrOAG_1YG~vs0vI69iCybge|wd935siq?29EY{SB
zg_Hdz)sCG;yae}guxym5Z0@;EujRC4zz_pkxl%S){L*&}+zf(y{-<6rkUxFjLW-Ba
z9RUkIIL+g?_6PKH+`)&EtC@(&I38l@MXpNQ6WwVKF1%<CkH|SfTos?DOx4&M*g_)H
z$fh2?^rtV!ik;#p$q~@E*0#TO=FQDw;ae2DR?$UwIfm9%uDpdZQD@|^WUp_R`}}#6
zKL2_B`mjG=qUK+grKi_TnfoRAUB}Pir>hS6lgUdiF&`bS=Dp>`NLR;tkL!01p(?LH
zu?XI2grX3*LCqp=k}jl<69v8!j7CpCo^Za;GI}wAsup?1)O-y%X#sj0sYU+8U)`ej
zm}gqiN<)E|j`wgAO~i$7%{H%x{`LM8W7jD#Ylw!->qo9pjLKG&lq9#Ab^a-ihFc6p
zRFxrWq%6?voLm=NDrb%!@9yPMtTc>QrN|8?TSaA)fU*-brIGF*6J<Kc{R&F)%Cjzl
z#)AA;-k%Bzxue$bHr1qq`M<uL9h{8Xf5B&8Uj|wX<2bQzp+J|;3v{<IBVMI&&xak+
zAR)`8q^K{^@JhWD-g7qQKBSucJ}`q2a}U|#`l=4fs;-`I@4tR$?`Zk{Y6@6?^So#o
zYIl{wLKCl_+mKihCPV9Lml!|2B%*n+HN~|iB0e!z@j=6i!*dw{>Uw%7zx<bi+O5<h
zw*Ea&!2N&E6NV1|qn`h>rr@L$rWCjmjY67Cl(a%3U?K!BUS1ZC=-1e30&D6Lw$HWc
z)2-g)i+iSVfZ^<NlxCu{3p!-hWaL<jniDCfAAfC0m2Bq!7N&R4g7IUY(pFH<JQ{AC
zMK7BX@j#oO6Jj1$NLnb~cJ3q-#~051Bb(CaO|Q@*{lEfkf@Fb{oZ?k@CEZ?jHc_1L
zSU3o=QCY1RDQn*+Rv1xUC!T;HIT1we*Z_rI0Y{-1iChvuC`U$ugd%MP8%3|nH2Oha
zlWPFgLjE<c)r0fFpGm5J-~<DMPU0_2*=I=Ym5&rQBTH}%A=6Q0Q?R4to>%~kOGAyJ
zRX5~!3n}kUO$-E*&W|{(kb<n!cE*Ffv-Y&*vdKVietodAJrTy>S9Q792Ghm@G@hNd
zbO%d@xm0RBr8QHm$d4x0%sp?5bliTz<Nu5M&lD*4cYUPt-o~N%<1jNGRQIEEGxNM4
zQT%g{z*MZMXC$_JE(ddWKIrkMA``5t^1t@eeulo=4zFY?ZYdWC6@PaIwyg~pWWFX}
zj~C-m5wCJw?XO54>FUPzdR)wPHCi8DV$`u7;om0+@d1h@DpDtN`IoJ%>5elDPj06Y
z5SO?f;EL->nY*hjGl7>U3RuJ;mfC0!u#siNKhBa#m>;Fr<8Mt@92`gc81agZ0`#Nc
zO3g8DvoCUX>NS6q<Zu;HS*=au_2qPF`x1p4C8mlj7(vHL^!D1)Lo#*tbZ$@kFP+Rd
zB{Kr4wYyO`m#e0Oau+o4Mk814rX>8dWa?XAckG-JxyDX-B#Qt>@?42+%aT1l%hrG)
zhy<C^-`fJqq-ab&8rhzgF9vaSYS(syEvz`t6)ZUiqkc%Os<}o2#e`Bs&-E<*^TsU;
z_T<$P^m`L+^_57?QTY$}4Uy4`gGFoTAAj3jsiMicHwD4Wo&q%?Bv9s>Se|ZN<q#>r
zbQCAwwk0bzTs*(j>K=~zoCr~S_HVKG$l7|rR<G(#x<O7_36;lR@zeuzKAY&$u{V5!
zwH>d-IErNrAuK*is=clF{ez2#EG;ApdO2_wv%QeC;EjKFZp%>dbRMmp`vNqc^U%F(
zv=MMxFwH+cS0`(f+B#ZWD3XHhjRVbYRkH&J38=tTfw((PE_~luu5Cg4&(a46oxoh3
z7TYTVVP<{CF~tm{OY@-6x~grFr<J8`<1F2X^K%80xHH?^7fNR&H>~YA%Q&ua#B%J*
z7Dpgbi=#-=7brn6pA1eQHm1#pUR5QX><M)5_@e?;X74xCn&4H0OGOX}G~N*=b*L))
z^UbZImMaN5=1c?67&o;Y;nfT!VGdAvFZ7~ScBh51>E1$b4S)u>-q8m*7%-*M6r2zf
zf2wh)vE#IZzvWhBl$?}U3#D{~kf2;ctfJH7m-xW0(%g&I4PovEcJ2n;`n>L?Si+2C
z<B)T)AE=}hi+jDu$}5u_I|w9bQpwa@V}{-Aeu{pPHRFxj?T@D{7Ac36!xfn~&K~4z
zm~FtNxYg~IC}$g+6*->qWD0%sIuTEVj;I4~P9rJdZv{=~oVPC1{(9J#m}keIUdw85
zS(7&Ok=VK!EY{{R-yg8@QhnL(QIdbxVBSvOiI7zaahjTQ!dfAtW#F6pB+~w%Jf94v
zn-eVQu{6oEwhNp`7e43gfO2dvcM-hBrBiPRe0*z)a{3S`L+(L`1Udiq{u)^Uf+I27
zH_X;1Ji|d6xt~L{LV?5)T;suN;pVR%YJ?4+(OHHVxwV`5_OZH}KBRW_eN0^W$^jeW
zs{0JqBR~~uWn2`K#7wZCAo-;Q!9Z5SPB)%_NE*IkFG^_K-?q?^k7sMsY4M|sr(ywN
zah08#!|XdMv1FLfeF@K*w{pmwJ|7IGbGLm5^msqda!jjw_=PzHPgN#Q{A#kPHu~6=
zQ6uwH{gcA>W5#-~RKnuFV|BU22a;!iA9P{>zwh5Sbt5OU|A>9k|G7mw05AoXxiYWV
z)I$FUC7*|AdV+%zC*oIt?a}QmHg+SmMwr2?M&k6e;ZS{#1uN2-^ln|)i}kqkzIfJ*
z_zMW7=nYY+b)5sGdX|ciZWp~Vu)vsOs~^9yE<z4D0&U)!cFD(iO8go9Fr8{p1WbcJ
zzXpLL?N7f3s;7jF3ffQGLQ-93Y=P<)VAAAQKZyqXR+T`-&<^!qg=wrmr3g>f(N9H}
z1PQrqJApZwY-UZ>h=6x1e(o8-xWp@CNAUJ8D7^20aTJ7+e#C|aJ^Ljqo;i~;Piu}R
zOL^Jmd<auiRK-c`pw-kdx8WpNY|4=HlFYJy><#jQLTwDq9_t;%?6}b7eq8MY5r>-b
z-6&v!joO}q)q{4Npo)_|_Ay_h^t~V#pv1S|>>(8(^&&3;vEj%b=M!|)y7!(tV<YYf
z;O8+2OuW0Y=Ym{urh=cSTDal-gNYa5$MpMJMNkwc11F0#7GVF~+lVmV)1LiGA8n9u
zaZN?i{7HXZ<Yj>K)}Kg8=&2>b0Gm&L^OcT*I@&Xm;l>s$WU1_;xsTkMDQw6{HXQ%L
z%mN>|Zwfw7!H}t+{cPAL#gi``N8BXw``$C$+>*j0mylUHfP(qfkUfg0pXlDEs5c59
z-YXwl{e?MP!Z!OH^>t@Zz`#=UE>TaMuP!GL`IV+9s!f8Bp%&*o)t~;3`tq3>#=5wF
z8GwpM?=YY|_VoFwG?oN5fBx)Sy&Pp6fy|XPRh$rzFXuLz2<(HW#S}D!Hykx-b5%DF
z<leSPD`Ck>z<^PgW98uu4t;}s!07XJIvG^X*2XjaA3pq!CdT)zkFEqd+fk}{2XP+Z
z#ftPGBVTj!nica2$qMnitkrIJFYlY9i}ojc-a0V$g4#YA8}f3ye3v?p#uQs15ZBEz
z_$fMYn=SaQPJGX2cD;yX9C-r&jy=wCoS?%xgt{7%2|*hRY)s)a&ydZ0Y;%d?<IBeE
zktg_g(BpVUhPv^{(utpn(E=M0H>8NF$MS6u-4_S=fW{bWjA3S;k$pf0js;W9Ms2JG
zfFPfRBA-Dswg>~p8dGC17TJrIA14%&ERCV#>tGPm_n7M=nd{=e&NUz#F#+n0!70EL
zsj8Y=LScz4m7dJ^yzQDa77VY`)#1YqT_C(Ua{9B<T6DD_ts@3B>Qq^AlPbX08gfyZ
zk>+4AkL%Cnjt1FpOYkM}`Q{ZxP03p8(F>WQ!dDUR#ulIG*Ik17K4|p`Vw*@pNoM_4
zml7t2TqTz&IdxV8)_&nZFY47}luXN$)75v)@PM)+sbNMnHp#2IjA{zKR#CGAPs<w#
zPJGoPo&6$|lc6@D5P$2$>?TEgTKD3_QI3H3C?B>ed1qQ5qL)n7O(aFC9+@cNmTzsi
zC&q`5O<wvZ_)ZhQDoze1E2P?9a5a%PFXLi2vg>MaZ5#1ZtQF-ulZtkz5mj0#W=?Ps
zHS%^mjg115jqnx9Fx$_89+0g+bx+$+Hhx;g6H>zSJ2<yG#6S<_>Mwb$;U)SOqZHX_
zbC?U3jh_2SZ8+`5r##wBwI!D<R29gba+xHRxK2qb?*3At<d!UvcfluFc1@L-ZcMAq
zmiM5<j_S6qd)$YLA<no+v^28(YH+x1dHvKhq+a#;_P^s0Ys`!X`2czJ0rWZl?bKPh
z{zn}L0aZ>w8tZSBlQjGwlil$|qEZ8p#`;b!&RXDmWnV@qtY=jX+zxmPPydZ$MfS?h
zl`KjeBVZ<{v0Y70Oxc5@=v;wn+n`30W6&GbZI!~Av`i)DAVlp6t`R`_wesEguLPiB
z<czR^d4hR!`^6sxN-$z)W%+)*@AeNrxxOqeHFxh`9FqRCl5Bacei=D6a}pgIE-ArK
zvNt1cAQa8cs??D~^**fz1eQdD3v4a~*dbL|mqxsc|NmJ@Ui(&c;<H7emispkA%N#x
zgZ_6V840kG90tf^v8VOH1iS9Y4cMADGF1Jn3$tul==6O=%QJM6VFZkjswA(aAg_+e
zSo4JTtKSYraZlg_0=gzXr!u|vzdW0I;EE6fVffT&^}?aD+dqlGU3eiJ!!`(RIstjC
z=TRErt*GxZgn#o8?i+fHy0RZTL(eY}?X59L?mmzvkhRx&qcpTF%by!^UFjoCd{7<i
z&Vb~x@6##_a;Oc9wAkrdzm9G7G2R3qkhQTxHQ=%};Bw5$7~LV^e+bvsPVX-f8g&O4
z6`KJsy6o$m#Ua{n^I3?u-Xwu%FbwS5JLH}PHkNPkb;Gons)^)*-6gAX9-1IrUlHX)
zsK+)Nv(AB%LFR*P-~pE<Qmu#V$Y}N12Sbr-4<6!$B4*Ya@__ihF%si6VVgz(`x*ic
zm`Sc4WL94$6($P~z|coVuj<XhRqe%!q8``S=%za%_6vb+r>A53QHx^h^<Ue`mgj)&
z<Y9k_5YKUm%5~Qkzz-_<RUwJsh`bRcRxLesCxaYk7Ew!78nOJ@V&VdzB7N|PH;V!e
zUIMPTE}eH?Y@pBBhX;Y6RsEro%^xjDkyDX`(2(&C@(rAg7U^U0RB1)FU_Kg+1XLTY
z)a1!<=w+LRmNFIH8teWQGuez~bB@#!t#u61VWl<=IN#ktzjOK&K)wC8v{j6z%LJK#
z>JhOCdzOs}zMqf;3@7JGYkx9c>Snt-*@f_Oe(Zzf>cs4oW~X^@;6OkbsREgZ>&7CB
zEunm5Xp!di2Dx0}HG|L;>$jPZZ`)>CnjKd=@1wgwt}3Dnv-tZt>GZTV?BEQM&q0J)
zy7@5vD2Iff*ds6`bzPL?AUH1c%oPmh>mqH?6-Q$e1$W5#D4`GiQxSH0YJZ~;%=uk0
z<oJX=?1h?(;;=zk=cG}f+`y_?Db~wMwSk#jEy!BovJn4}a2nHud0H|nOkG9NK2J?`
z4Hm3;>UOyHVZPGnH><gvHiTo7Kc#`jLlT)2XY%knr}=QjmgTpo#HF;@mT?_gpSN4_
z7YipVnQiKe9?PGbSBiq%_YM=_Miw1~p^+I9#WwtI2tEqIJ`xLvs3!U;KPnPtP@XvM
zPg<NgDW~J$32b8SNzcq>!UsQEvaY{8^45K~^=dZ%$Wb~hn4&TdAmIPm&jIR{w0#r~
zocpbSQzQV}X5ko1sd%B9)oX?#x-5*nHk1=U{hWL#ZVSjee$lwFQ%5(CAPxmDopcv^
ztkn(IeZ&rQ$3Eg`5AFZB`<MIVIaz6W4~Rdb0dV^NRyFJY{(;|_qz%X)pax$(P{C(@
zFa8<j+>Xf!*bhpR1szfP@BN_YFv$Y`IlE5XZlN)Jdu)Og+9MeCys5X$CmioT&<2ZF
zjjn5IsYA>3DMj1sQSs~mq(+Qpc>`3hExZ{riUy(@6<qRHP0ms*Dnmow(cCpbi#yQU
zVSkA3_Woh>%%*qWdJMi_ne2!ah9J?Ix@}M%L=~5QWKV%g@6t7*`9a`Jsc6N`?@@4U
zeQ++Eb5Trsb1N5Vhc5-SfK1WF^=PT_3L%aZ>C4>hQynaLE`2uNUzfU8G=PxTfo024
zjEC!-w8mCo=t-kHI-CtXLcMD*YRqYxhn$d=f;#o8$)nDz15iIzK~2}ObU<v++L9R<
zn^5Z^4`4<kQ8zzR?`wx}x{JhtF+@UX=MI#J6C#}krA?y`=X<8;D4@6?14Qa3JRXQT
z@{*qT6r0da@mna35MAAbHfny6JJ&@gg&KbjlqvHemIkqw#LY7XWY#L4?2zrZTU=ry
z>L4t@gBrmQl%lxAJu*E_-q8rPRs@cq7Lyk47P#TxBaswx%uHw*I4K-%rw(E754szM
zmIrW$O|dpP5L#34@U$hK<kbyR8HfAAl{MOc(cPK?nW-{O)X+c`g^dmdRyZ6r151ck
z7B|$ROPEkoBt*5j$!PCJT5}F)WiBD3!V-*myC&>mwa_30Amy`BX-%3akpf;PgyIB8
zd+xPe6hmb@AmV?aB*z`o(wgX_gC>jyqF-s=Wc3sGE2}k6U}{0J<ALU#B{j{6Gwt)4
zZ?!vd;h}0bH=frX?h9<vj}L*wJGDIdPh*6~Efs@mY#4l=gwc<0KD<5=e0$H$T2J8V
zcJiF50kaKy15Oo&Hr1ipgau<aQ%+M+S5&qI@sXvTm)ns2#NJ}@jJgU!Z7M4YZazb7
z<qc`CeZy;h&EY4ueNLmfEIxTSC-Ed~<rO2cWBtR>>Qk0lswGqealRU&oW#`t&x(3!
zNN7_MZz^zyJ{@Ut!`A)d0Ucti^R4SUN1HSQ_vC3*->*VW^9yfI`r(#(<;e>bsUD{D
zxm6Qgjo}+<b6J&T4X1$Bgf8nzi%!MuZOTLLpX!GJ+;@$qv8?^=xjuXtcm5BGR;D+H
zN?FD(4LG)V&VqOS+!Z2cF>h7N8>vD_7-);qlt0Xu+S1W0SUfvaL{aQPb%|mcq-HWU
zT?)!f)^-#CO^p6=nEGlKCrFRgWuMiKX4WT3yzxUgnxcN4uW1i1(D#Wx>;10uPg^@w
z*a4gGnRj~M#I_}Q9k@fU`+3BCEi$BL8Mr)~c#KRdUH67E9)ZO4@}28MJ@QcwzqH7H
zDL@9${yPgggwl3vhw$wih2a0!@N;nfW$>Tp&jrqh&3e=A(>q$GKhdo@jKusa59VDB
zv)yuz_S$k0O)xWHXe^p#Jf3RqMQ!%W%cVd#F7JJo6^3=kP0d*T;Kp^^h1(_r=jd*o
zs5KLE58ru2e(1Q_Al`&NJB+AREwp1tyAO+)E(Sr2+(yhW6GOP>yTC02hqs6L9Ekyz
ziKgbLWj2Pt*3YTem~!%D8so($lIkuyd1|8ElmRS+iLl!jG6RRWgEWrR31b)mIt636
zscJm7?6)HaQIn;2q9Xq_kUi%q*BV3#^XLfAvAP2}mDGS`2_TbAvMa_^nSnsGNRrH%
z$PPE>l^`J3)WaL1r2cc`sc^#~MghfClmx6!QjADplyvR7R1z#-$vTSPlcnN2dI#xS
zw|W*9RFXfAYsQ(!tLv8=a_TY8mzpV1aDe#ALZ<X0dWP>h?BU$rKCge2s`Ryhn+t)o
zK@6v1_WD?0UTS#WtoM%2_MVipbte$6CJ{r>>HhBN&-P?@L&J;8#_jNM!%p6hIe0!(
zwUOP`*X70O_WpW)xq*V`P6o;EKfeBuc&O9uIxna3iKCdtgfyatFkmIyjoc!sADoC$
z(AkUp?H?u*7x$S!{wAkVd4!^89BMEN&!4S>?~PXA);lyhiA+H!+Fh;H@zWEUg-?j1
z5?4bAk(o}6NiCg0ZK-c0VfJnIdw?oFythwztJC%EVL3uR@n~TsP1r1&49ZV<bXfuR
zoo!@TQ_q1usboJ2G5Rko8G-E^8AfnIIYwGjbOx<iQjBK*v}c<H1lXzXhYZ9-<Uc~)
zmez^6$(JLw7zLa?VzRjj6H!{*mEzeU)H%UA5i7nS!+@-`&zp39`2))HdNriWHhMNa
zu%F=OblX%ex18hjV8n(yP$;%e>ALlOSD^H@i0_<8DBA&c)2XYX@$&|~6;RL{tDid?
zz>Q~42T+R162J-g{BV{tr<tzVP>7^P%(8V-z$z5SQyu<fnQ>3d+BNd>2Vj|NnFy#P
z$S>%OXqMRu1VPJpZ38gl9EA-pNts|woJj|#ju%WWl4*Xbxg$c3kii3qdd#Q}qMZ(*
zTu&XcBKI^6<#Y)@i06b+hKM=khA5O^a<ehXxi)bT3vetAOM(s9X9uH~Kc4N1kq^uZ
zzo1fK4=85itt}uQE0Hab3B$%DlBq{97QtBqND@Q79qo(7aDyu9Jj=`ICyy=i1uSiH
zuO&@HkH}qL|2DbM%Y4YB*}Uq#^gfS+AYm+xyebc%V+^YE31XDT`;HhNV;E}UA|2sL
z4pF`spGTUc@Eko?_KnhYtw2i-`QE{{s{uUXmB8dT=`oAM4X6ieP)K-iK+ztFc&DSU
zIX&H<!$^4X<OGUt12E}p;`9s1pV2RwK(|n&fN@!#8?G!;bAz`j7p&JK@fz2}!KHAO
zcg?AvS;XS5nObBu_2nZEW|^wGF{#3rvyA7-de2XKwO>|hh8zQFv-#-;l6;S6e(2b=
zLN^yQ!pdxOm#vWgFsa8o{NLoBVW365Nj%!ybE<D|;@qq7p0v{hrpyWWP_E@&0@N#i
zA;^#7371TFZH<YL_=|Io!af-YgcA5Bd`{JEyGt5jJadDcri<zq>X7?SvU6u;(KW(s
zSH8L-y_I}s`P6^X?H29Bm)$vM?GqJ(xFxSF&u~hymX22Iv1t!VI;vPHk40qyGu}lc
zSz?)`#PR>p+T8(uCy!D(5?g@1uVf5K-B$v)!&z1rwqTxc#97DwJf&xgWw>xh^-<Oj
zA5aoua<W(KvLGnANq|NnQzz=1Ii|*S2`goP?w!rKFLjc|>WK3Z8WX|-quM+j+o^HD
zFrgEAM9Ucx;e|PDf*cpo3IUGI$UeXVDP^ws7JgDiBTov??h>?-RIex1jpgrXo~I&D
zpfJsI6x|GR)Iw&AJFvKL*#n!}9Q`ddKcq(uUcQhd;B_l#-alnD*fl-6j;{F!<|a@W
zN^~F7d(Hax`f{o=j><Sl4K3-faX<e_iV?sF5;iWu&89*_!webLjc=i8bT6#WL$9s8
zt+sDl#(;LUa<^Z55fPoWcBlC)cIe}UG<|xFDW#QA$F~qvfig2A+duZ~2S?P8(;J5O
zmQPw$gE*q3tnVFUZyn;dM47;#5q0(gESopXiU)G7b52*X&Mc42TgVa9^8)XK^-)ey
z!wpVsStut4W8mLC%=-K&)vSr?!y%Bt#E~9+{lX5+CFFtF$8n;o83oU%#h}hD%Rr*j
zo9wM~3}7AYj%7AQ8CVfl7BIh6>>z}Ozt<b5n?d{Yp1ts7goKkk*y)QQmEp9jLO@e0
z*;|1JCc&-eBx4^L1Fc^@d_)sV(%+DGZZbmE5oepYF;ERc2?s9;4j5_4x`Fxu5iB8^
z?n_@chgHE-#8PF{ezZra!km3y#Om)Dm2{vlo?UqIcD<A+Us&x~&<ArMrb-#;z{2X8
ziErUQ$(x+SB%v>?k4TNr=nXgB6BR+$o)Bp(gH%;~_fT5D-;xZ&CGXO)qtaDBv%Kg@
zQ2SwtY*Ex(I*se5jt5Kuqo|(kvE(o)D>TWb`iG?Hfny8<3-dNUKdXp9X)JM|vMn&r
z`MAuG$w)}V9XdQv9-d%rq&bq*HN4T?IUc{3LAxMNdspd&eK;~k|FbxrwSuJFph|oO
zYg`ipN^TLl8fz3YLJD$W;hVC3PF0{|o00r$3>b!NViOI9I7G#@3h=N1Isr`3N4=D+
zY41omM(<|et6D|(zIb;dw5eq`EtykaJoVLJxCc-A6qCP*wJn)C!n9lY;~lH*EAq7j
zZM2CV-c1v1o&82`C8({92A}o(HU5UHcT%|(qng4qEz2{NL^ErB$R7{l>X4^gnP&1U
z@%0ZKtl<&mZNi15gx<U?`4&dV4ibG0B=cyOj%n-<x~F4hN%KnR$4Dlu#JBJE{N&<u
zpsOTGoZem!&m89saXT~Yv^_lx<fe0UtO!~6@z!V1mavfH94^QdX%qms0c+8s$;VK~
zFxdo82+xsOH_dZe^CF-LvgW2X$g3<R_AMGvrWz^zJ;9|bwA~IkuFP;U&uP-Y#aea{
zwvJK0vo7R*@+pP9el6$vq{Cl4uqoz!b}NOwZWjpy{u_TkL5Luene@v|D)e;i?uzXe
zkfzN5FN<GoyVf||VaLrVC^KzK*98+Q+of&!!$+&Bi#>Yl5-9#{ek~_ZUA`he!-^s%
zen43-vQlrAM^t%Rsjhq5fD0MkP~FKR=vM{$`01KSYhEGm21UEeg<C2c!l}LTzEwWC
z%}l%vn~GlZR*ozvwoUnCryuSEi?Lq|d;@D6;w!e`w(s?znNYy55PIOIo|I)rEtM<F
zPK8b_XB%Y1`7Yj)Gxf4pRmxxLB1$zGCna`aS1~T<ecex3<y8zLjs9Tq0UjDSBCCoc
zX)bZ*U9=!Qlxp7>jDVstk~%cW2GqDMbt0S8QSS({fxpkfN_AmK1Gif-P=+SyPemGz
zSHXPaMZd5D#W5{PSKVyrwRqT2aIDyAX$*aErL5YU>~%vkuXrMGC4EPo$lAUJC9p&;
zId+rV)V$Q8%vkC{N4N8u?u@dU*F%NoMDGj?vqSJby2I-Zr*%gmJnCp}E-nftlym6q
zN9+fc(;+17Nv6F4rQwgh&ftu3>AH_^3mu0}JvF(Ehn7vDpxBHjE4tF008EB~FMgYA
zkuM|I<H6<4DD`?Ns};PkoJ#R(HgCzMvUtr|Y2*a2!^mA#40<w;+7dpt1|?np^U!fx
zhE{g%5=0rqWZ789GSqgPkm7k7EDU6>Q~$$r{7)`=Wj+aV;c6L%WdIF?{BDFl5NET~
z6VMNv=ZQCNVJG-ngmKV05$RMQF$v8au~X&#aDP)@Ef<4Lr88w&4+|rlhsb0P^q^4*
zc$J&<IH=BenyyTLzeMQ~Zf>~;NfpA~G;G`uR+8*~snvc(bTcYZr0X4jt>Xx0(R?TE
zgH@xQZxl3bYiqTq7AqB(4u#6Y&WDNU)U2W5%0{4CxBX1&?wtAs>QI$fnl*ATHTGId
z(HAa$qv1xh9;@mTr1o3s4%O9L$tH@VjvS0q?5b@3m2r7!(0-$OD-K>s@1wz|d8fnp
z#mm9K>rMPTfZFXe2TXb6-jXW4jO`GOPoae<qtO;b*%6QsP2mEkRZ!9sJ(;A~EXg%8
zx#h248@?JY3rzre5T<vL>Z!(J*GBNUQ)uNNWo)%htCv;OM|CDy;@o?S8R_qN@vWse
z<qJc16`s;pyZ(Sw?w#kDbNc#Bp$qGSS6b^lg&X9o#vh5?Ra**0AkhveFOFHyiy-`4
zxm_FdhP~G&->N$y%L|**32{@Y3Zg!!br#;(mm%uhYJ)Fz9`ZHDB?S6}l8Xrg0YA{2
zoxV2@csPCGo(>D7|NQ)JXc@)jz2O<R`)FT`?)COwDBr=4>~ko=$~~xHST-%vTQaYe
z?+b$p-%(KO-HnEWA0;ar^Bb29<iJU|+#f7Gjs$!@H4;UI*%aa^YwTKAKgSW>K6wR#
z)Y<gsq{?LTP(1ueTqo;O8wi<x3o#uz(>tjz5z}v_sn~eA2pl1Z2P$wkh!i?u7!p|a
z0~_-yH8K-ff}wcM(^rM0c<kpaICl^0a+ieTWo8upm+y(Wlqt+975j@{Tb-P^xIs2@
z+c>}9+s3>!smrGY2{yo|Sj=L6kDY%XHedOZE)+eg#4K#w5JE?Ts+gly*0^J*V*M6-
z9@qP#P@(mfJA=)t>9981peW^>20VsOUh1KVxSS>9xzscdvEcq*Slnctc2jTGx2;mW
z%6-CcThx>X{|Sn67Fozt%MCL_IZf~;H``n?l#x#TeIsAFRNlfGRcVESd*ULC_IFaQ
z>>auJSw_xUOFbjW8rf~JW&(GVK;TfB+cUD^@UXcJ3BPE0oE9487}>Y2Rh;I{=wB?$
z1Nu{PB-it_9g<ri&>+2Y4Wt!w`YFBWgNQD)pgI;gevXVULVqx+JJvqQU%oGPF)91+
zM#^}xREy!YUbm=44v$cT*bbpzGDaMH(;tOxeX~v>al3YAc1Mbqja~}2kiA$^9&0kN
z)<kVOWz~W(7$PA?*Tl0OHN1WE;9!L+TH7nEBYxg$6MXR2-9#_*5ZHBeL*mMfc8f1U
zXpuA`sDU4USx%N@X`K-<GuN*`fucX)y<A5YKK1Zjn#-q&frHgN4NmvoK5;z~!DC2M
z2wA)*O-W7OSNlM5gj1-KHX|r;^HZk4u)Xtf&0(`6G$YXb_a<K{A3kOvz@i`pIJp0g
z<vLnA=>K<K2S7&opU!5OQf88Hn~vrWh1w{Tzn#s>vNFN%fX-$Q?V9%Kk@v?WZPSfZ
zS$5Knkxq7+o3XPekm78Y_+!J;jx3%2kn&sJvVVT2#V8&ZO~Ea{JhVJJ+#a=W5@26U
z4$c5fpEW2wDUpg3TRYQtQ%n2fft>gAapDF9uezEL9d2KHUtnbX<_~ZdUWp}O0zAMR
zC@T*yF?3&mn6jzQrjM#5^>jWrXBjX7PSr^muR%HwZAU5Z40o7r3Sv}8@(#8p+axHz
zLf;9Vm}WC;rlv0vT3-~;+trgmqBTDzl&TVrUy+A4M2L-#xhMag!&=<MO3R#VNxZJL
zmg}nnSOB;BX92v86|ex_weimDOPzMC`_9b&xkD(!8&a<a9{qc_9mJbEfL%TC#vX`?
zg#ET(1l$`HsI9;|GejVmUAONYZ*FHw&Lox`GC~c+nma1Fp1!Nzdv}iznxSt8VHAfD
zU4XMw%#RN$pZ?37c)Fh(zRofdF%=B-cL00H`Bu+)d^#vQ%qI!-f1y!y2|XZ-a`D|#
z?XaaCENwctNPkG9;AHwFLk6+_!$uh;Y^+*WRs4sI5-eR?V~KTG<m;ABO(4mbz(igD
zO$fk7$&BNeV7;56<5y8ksKd_)EOJX701SX1m)g{Y2DDRj!0egnX`xvBCjWs=TVELf
z0f3{B8UKZ&e4xODQ`pV?(pZv#VL-_ciY0=A+1{IqX{X1FQk#b^1u|)-dbqrZv&)kl
zdOQs;udM*=egiKtXOYFQ@YK)I(QGvVEQoTDw>mOO0X(D6K#J4LkD*dG9dDedZ+y}F
zm@M~8M{Sr0T#KtjTA;k*8qn%Ln9q4=C$OI(PXJKKEicz?m<Yi|!SXy`&F3S>aBlfw
z5V6_x<QA@pRtBgHA&Elgt|xCa?OeKjX^fzVB`O3%BL@bE{ars1rt#w8zNndTIQV3s
z^_bIZ@V1nFo(-s(L%lG&A#}9*MmjKgk>M8aD~+456WZI>2U&+bJrwR{YaNMxR6Em`
z=e$yTD>D!w4OHVrYbfLvAI$D3FfnA3O1t?Fy|1}-EoTbXw?{XJp0PXd+23rx>YFzR
zom(%T>jkTI*29;a9vLm?9wy&<)f6@*;HNU6n|#Ln*mf@Aq9p*pi?^+;@>gTL(GYo>
zrF(K(9~ZeKHbd`rKC1{k{-y=5x(^$Qs#o*rL&@+W69<BPmFmbW^y%(>cSKYTHR1?2
z{x9n>M9X*K2WP}+V?8#FZpKx(`Re<1D8^HT>v+?#o9@^KLRX|`ML)h@TJ>o83cC+E
z9jItLPurFGcEfS^Yc*SPyQ8QC>cwnlY^wJ=Mf(IcsRio-I<;$`V{DZLl2#JD1|1|?
zwkq*!w!Gwxc@P^_KT1nF6P>H0H5GW<r|=U-2X5epZwx^ZhO8;33K+M<i%Qq~yUNyL
zc5NUgl++u9DYYc3V^piT%bpt7+?m#&yQG&Hz_J^!daSqIp1xSBV;(L}-#%S=aBRA+
z+Me<Mx3|j0%6<n0{_PtbpauEw=!v7N<9~Fk5kT4dPYu$6Z{Sjk@N5R29#Dg<Bmu?&
z)F7Qj5ZM7WNMRC%{1W!9ny)Udv0Cb8k#+=tvJzcodt4?>z@(Pg=MQdn`t=$@Dyk=a
zcc><*lFA>fW0h1TE@2Nz`^Q~Pn$vqu0BQv0%jTz5przV6>tz4t;pO@MxOld&>m9(4
zCb%>R>6ymai9z8u=tNj1nM0bNQ}qm~poAxo%UIi|OU5)JylA_lcPRpvq>;ulzhMon
zNGMx0*S0eUh&BsHjlv~1(kc(?(@gN}V1JaY^+0d(XL?k<*n_yFOZ3+x^(AWXgadG^
zAz1H%C{hn2G{r-NrLeDNG@7(VXZ-a+6cyAQ^8_R{+~nH5<wKhXeF5y;QoL<(Ap!yA
z6z@B7oj>k3F}L4#z!f3;r1(;G`%v>a9X`e}H&$VPlG+ChJQ)nU{2|9cbUU_Y4k8g&
z8!)#E7`5bm2yiGr*43HxY?wI}at%gI(P3`w0ef2b{W3~!@iHL?Oc#wC$dA6`b?pzj
z2jlNX=5(qL)KbiZF!hhMiZY-IuvSfo4RPEOK<B@6^93PE3sxla9YF>$(mT;@I_x2;
zFJ4f!I_{F$g_03FQfE&i+wV|A)9IrR4PYJBhLCLxkQzne)J2Jv9P29)=beKKo5nxu
z^WU1XhiMrgxgIlpZNQM>l?JN-tX0&^Va*_<mN@)`N!x4!*wYa7zt(DRgM2Y65z2UP
z1U+O*)gaHAaqr2)>xcKP$t@)Y0!}jQIQ^u$GDpkCS!DxdkEJBx6+dd>9Jp54Aun2K
z?=x1_D&w#*q!guTatuMKlt!wQ=hZ_K=L&|CxpQ?|1<q%peR)GSMR*=-U`uxilkv)@
zzdV9gcz5gNgZmYixyQF9DE?vD*}`7<;jlj*?3WMUzGjB!vxb{+D}T<btgx_>MgHW!
zQ#yeKXV%E8hkCbvKg-ZZAraJ|F4Iaguk}S~xtzy|by5B*TAg@?1`9+ruEktIdo6eE
z!oJvYG?s|eOvzwY>q2qgNEuAL=8<=|B0=#q2W#dYYM0ht@6e)S3!YD9emyFR8w%y7
z%9Z0)K%*YUWZPmJoCU3EM)7Pte2*W(-`IjSv$pwR$sDVJVR}6$dEd%;^V!CF;jQd;
zhHVy*n@&8su6ee4anZ$O#cZDGACOxwHJJQm`h7;9oMnpk{~_xfqBHA)H5^+V+qRvK
zZQHhOb!^*CI<}oJwr$(Iz1E%F_20=^XK-d`u&Z{}`#c^k#aZcF23}XkL8`FUEmJ3Y
zed6(rMj1>V*sc5M2Dc$}h1QqxEB4z>5Mj0jn9cbI=hm);4n443+pe2zXn`i+?jWDU
zeu0VJWci-4VN)cfPH@sCPN;Ry8xlP}8gaJ5`XnE}o?c{?k#EoOxE9s^^eaDtJriqL
z^&rb{v7Hx2BBaP6@hB2!=gIG$=J|iTaycoK7?{oG$E-KFp?67XMnGQXV<Ye&)tH{%
zyjfY%LH9tPcxP<~9av^w?Mstf5e``DeeH@3C9qvj(^Gi*y$812f}@N168xQd?{Bkd
zY?Y;eZ_kn&snJh%^>Mgv)3nfIv|;h&z{Drrk;-N5m7}wbjM!-r?C>1vgmU{y(7@|Y
zJh74m4LY)J>E{aks})5VzpQo848y>L)q<|qZ!m@Ea7vu&{461!(T!a4!t48QtX1p+
zvrGM!y3OJ_diSj6Ft$2!wi}MNm6yNq#M6qaNcUZdwmpw7TMQxWfq-zemm`Z^kIedq
z8)}eAk(RBKW)+hzpCrzs2M>ErhHz&3?raFBOYXO)77gF&Ls?>(1%8;3a6Uh8ah@}m
z1r%RH*RimNc#*~Dk1ZR-EEjnD`{aC!5^jgdc(rl8d!HE%cSsTn=QZ*hazwk&^L)~p
z;f*m3LG05UOIkOP^id0XCgP<-Xv)}COiy3Ek}5?DPRmxCuVjXbQt`74FPE|B@XPo+
zj~M<_=~FWfSux;FEoty3J)|{<ZvU{lnbBufCoem(1TpwqzRZ_b4`F1l=k`{6Fb-Eg
zS*GX=IOg{&t-+KT1=yfHT;LO*(keB#_f*`GYrL}3=J;H`gsSY%vQPa7Vx$Fw$4<)i
zfA<!%oD{k){*AAxi2uK_(ACA#=3l<&NYmDNqwUxCU;RKzXS$`a=u4fg#Tu3p)AhM*
z+LFZVESd8;1yU2DQYd(+wYjaMUUv*2$@pYio{Y0Ja+ZehG;{Yn-~J#k$qt|9Uzct~
z5ev2n52U)bhd~sKxf1<m)&S9Ua;lQzos0M2dii4=B*|W>fs<m6>%{a>R!PgEy9N-q
z#WUR2y9fL8hZ{)ooIzpcUFp>7G~0P;q1HQOH{X0Cz<hF`3IM=eVv7u-kVWe`bbQMp
zL5y6lav>a{Q<q%qLr(xAxI~&nwJXA_!(d4a8lg~b7H>0VMW@DFau^5z4`lkBSV^4h
zC+*Wz5H!beq6re2FNbHO>A%qwA&Ezkcm?{!;wPUXx84>aU8gCj)=>=u`iPnjR)q!+
zW(W<vkNLu!Y2{3D<I9Y%C*$`d_8Up!ck~|u?~`vXOD|&&J7jwYIf%ik?cMjtY|ug9
zT6Z>by<T~Pi7^}*uWw8Tzbo18qy+!7m}!6sR9%4TE<(rG#l!Zl($$5o@9B$xP<<X8
z1JM3Bf$Pp-fcx^r3wd7hVbr$CZrmunKmhvC&nY6g$tS)cbIG(16vR#SO;XezltEWN
z1@rf=ySH91Ja*jYHP|N4SP#5-F;B?Y+Y6gOKep4gu4h{LpoA@3oW;DiJu`mL*e^`>
zo@@EpfT+3K$j30_#SEP|U!*-*-c7j4z?K8{%ZI?FUzL~e3I*529Jsq)NW55{<->iw
zmoM~Rf-9pn!p(lnxcvhc^=q@_+vOZ$8G{$leSO~rAmGV?wM=Lir$VzLXS;C$AvE%P
zddc0p?ASK#`$9oK2kCz>(=6G+fHCe&pTYXO5lnl2ODU!K!Jomjt_It<{x~1Kt@_CY
zku~RuqK@UyS%f&ommV_5KN78GvqF9TgAn6~_`}UfKQ@iqguiTu)$e=_|A^Q<d7+(c
zFPR*^bjyp(V*WXf9#MqBga`lQ1fT-olW<ckP)Vm}%jG1GJg_HZp^>%-^5Wfwv^3$r
zBBr&qfiOBXZza5EL!7xxA-^s6gV)^W$_y^Rwe#}9W3YBPYiU*aQ?aC>!U(980}?;}
zC6Z9*av0^D$(F)Piu0Z5^6OZq5bk-Z)uR2CmviEGu5xy4=$r7%lfcK0TlUI|m1Wiz
zGGY|8>vB0|TcP)K$Qf6d3=}R#aLR-9eTmu}XkF1Vm(|;`hut!3kR?J@QIlpC+A8l1
zHG|Vc)+%TylKkZWw`uc1v?02w3S97{^0?Xt7rzw6cPP$Zc|^J^-UJo%8c0(Fk>`;W
zcxHIqfe3bPlKd&D0;NhyYxJZh(p`D+E=mNZ;jNk@8Iye?DOv#%2xVB(D%35iYSL~q
zenn*{^`-K0N=ax)$(@+P>3kvR`OU6HQ%4KFiMFYQhj1J^4xE=|8Ej4m7Bse?+8=-~
z%pvP{R68alb>cQ%2#Vd`<qt0^yh=95LI37MP6f@8pe2breE%{M2Gnnsxh1BpYvtpx
zIqYlu;lvw)b>6URK{aYl7b;H0VCwFYcn~C>us>*5FWyBi*d1=WD^Bn<PHUPaMtWMk
zTb?OUpaNx=Ib8weB>{C2doJAl2yE%Yk1ja^usC>N`)aO5ZufkQg0lBhn$_={M^dw_
zY<Bc-yl}|5bx5?pwfbOvQwvE>-~}&_4KW>Uh(VI)mo&38<+HAfInA$F!)?h|SS6V<
zS%d6z(O(SA-B7@pHZcKwPe8Kie?bzI6mR&~MP`zN4iZ>vM+c0<JY6sL{?;6|NsuDq
z)}%>2u8GYrzO|o^QoqmPKOT(EBF4S+-&BjEr>Z9AYP-|7X`BnJDVu1`R1lT2@Ebc}
zRX?*GJ4BrKjKp!&b{@zF|FzpQv$CIyI@opb7yj<s1-Xw`1BC$_ugDGlf($$Qvu+cF
z^+1;=hKI+u%1+&UJ6qp+by3xD6)(f{K}lnHGNl>ctk6EU6KxjxN6Hx%dFqf~-d5OO
z10CZR8c%39iMT)Cw;>k5i>nHn%3IohO}OD1{uOHB9Ma;rpqP0}&{+nB0v3c;^7VKa
z-&=ee_pAK$ICgruL9)9{Ni#l%mtV&4*T~07*8SNZPMOAXAj;P;n6Zn=kq*zc6WG6@
zoj-KLc9&PFs(%E*$o+$IuP!zaJYQmc*6LO6&@(z4BSLx&`V!Pb`deFXUnZt=EV83+
zDig;54BJr0X3<ucYHNd$E9wHYpZ=kF*BH~u?h9H^gU#|*5ld^3-9^4fY6CQnRaRp+
z7C|az-KF^xK;t-WH7QEDj>_z{NLBfpu0jip0ZQ9WH%#AFzjF2#r`5?!<ny@gE8W3M
zic?`tdfk9I{$2PnJ*s0lD$^G)<)4t{Cn08hHifALIWkRQQIWfh4Iqi>5{lG0noa$<
zWFqm~|I^90v<(UvSy+ErrS#;_s1;6|jG+J$+2~|d9+&l{Xpr9(k_8)YpR8qqwb*FY
zdd84T|3c8Res-^(J4D4yDvPQrenpl(I-iIfY&KC-J;JR|fEaoj3R}YG%_vjDg7{Ug
z)kcn6wje=yY16q5U&^Ndcym$5Xq+^*B9Hes;s4eX{7_b6Mq{|~iQT^>S+nUv6#K}j
z&>O0?dwj1MY&kyS=(wYWxXV2ZuW7Pe)U7}Ft3!iW_iEl=P6U11{R5^-5}*@OS%=hU
zK||iD?N8`7`hBgh@88~c#Mj=bqb}69<{m2uPab?*mqVy60h1R*jd-VmHqkXAn6&`R
z1t~6kJ7IZ(U1>?sr6|lQBKUQicUc7>Y4U?0U@sc|P~c~HL%g{iQsud7vI->ziDRsr
zS_z}?+pp1+t^Um{0-rIZlbH=b&$TAmWCjdqEjwvm*hn;{Yz<9#+^q`cgTzGp2szxT
zZ};L05{!x3-CaO)>G0+ZI_Y7-t=&Zr&vv*rUFvgZ1pn&kd2B$1IV&H_l#)?T!Q?w;
z3Op-4q2MmUzRWUKg%MtU&!ng5KrqRaU6d#zDo??faE3R9(+vAAVRc9m{xX9Y7d}b}
z=sOVYbje{9&^98dQmII0r!9TmmOm0}7iK?wGG=?ZR=!$ubHIsr7qQ`QH4lPte?pJN
z%}%7t&pf(v*1Sy}?|XI+LMo>%m=m0QJKz0{1UD*e@GB-p_%{W|4rqgH*1sQZCeB__
z7}D$=sRu`DHv13Zd|$?{$5pmxl(X5-RrD>V{PfLUQpXg}%i|{Ve8{8ik&ls8kmDG6
zwaVQzCP+0{`O@?Gl7O2SU?tL<#tz?TwZOzPd4&LKr?vSP=1wiU0(doPPzYAhLajJ;
z<PR(Yr$E&<dDtjj7wTE#6f@+;B)jGGYRwV=!)s$8QkNpMn%mQXyedzJj?O-QF8i5}
zfjMtr+l~w|#*W+o6)on!oG9{4(QfB|*~JDbAfSKiOF;ip-waNsb|$7yrcVFr!Yi$R
zHwt6F{(+V1%kpCmXG5~nE|xg)D#se=vgz6refo*u!K8EmA#a88$);OR-`;r{x{1<C
z%Vc5C!co|PvQFmaW+%R84?>THPxQ}fFBKNgTKl{*%bkzEVea^3jO}|Qi#Y2=h)de=
zAKwQh^=XSVitnk==9J*b`S!eFvB>XFPesAkF5EsI4_!YV8H_N&_1d6mnV>M9=U@f4
z$2o5khd@hMk+Vd!i~^@pp@>(s_iIr)2A+_IgHg}A)51x$O0_9cyG~1>Z`<aKP{tTt
zm4rmAx%T9$IqtZnidVhPy8AfZacq_9hnNCR^hTU|P^wm;mCv*U8e@yZXHw`-IjQ^t
zhj_h`CzH4pFiSWol+E;(hk+N7>o_l(U5xfZ2kv~=F90HV?p{k6Npr)G!tR@4vqM)N
zj|;n9{`A;e(AzkLJiHi#b5jN$?j+MhOBdI>X2cyUD<Ik<TYE0Ec|bE^{f|=7A8A{6
z?dh=r=xs1vgWFGAZw4NK4+xId6;K7r=cqYwh0Vv&ZW^D{9s(W2Qht`BsD78#JQ<sO
zAdJEvWq(ezBpRV4rl%f6(9@pY>!_$XOpA`eyy3%^9UPZhItSkCmr{irMsMsGQF}1!
zw+}o8V6kj>`;N4s!SvR1b?$jpcW$h}Lrlo5O<nmjAdG{#m^OUbaC1kFvtSYT^^&Q0
z+_oHz)s--n(IF>y3Am@y;JNr+K@aY0WQ@V@qo>^l{>vxJi}1a&A|{|4a<5>rj)VRX
zi`eT@f#5F^F&Nsxo&kUo1zHfwaRL7yB)g92m%?iBkJIuw3mr-Ssb$U`kDiNA8pq$+
zeQ<`Iuh@MfAQ`07Qsh9tx$lEqQOoMm<8dcmj@K|4#&dU}vqUqy`<=EZ$F`Li;<=DH
zWNhA=;;rwY9*i?Rs)~w8EKCN<&cmM--8tWYGF*nv6kqJT*szmCU4|}-uHW7Q^7Gqc
zJ%VjvcO;RSQVU>DB4%R2{2m2OX&2A8LGx4);DG10vnVA2hDdy??kM#RLNH*LzAv|2
zSb4AaitqdH>PGrEt@evMJD5?0RfE99fM`l~Z9<4JcdDjp6G~%>l$l#0iPFOvn4~g<
zz$t^`p{?g_?ae3!Vlmq8_*fZW=6ftqA<;=6Yb#VVBs?1N-0Nk5lLexg=|zh72qHsn
zgKAT2b0Iq~yOTv^=^ah7oaY61TM_XS%T$lvvFXl*l^T%XtG4UQ2QhMy_BSpUkfDW{
zGdo%TR}<A;PC1ix+62`W18BX>9KWYnY~c?#6EU+0Mnxd~1{w~rLvZ*zQ@HC5jRR#P
zd6a?S-qx#LKWln>V}_JQ?=v9%#*R4L$~QuHsm%zTA?D_xEcV-M=9V-DA{>BM2KaR0
z>P%ohC@alvk<7mn+<<CXK=vC{Sx58{h$L5<8GD5o2X<{%tW`N*Po$p4?wVX#;MQ-S
z13bJ@#xUVF7jrE;UV;GPs-jyY01mtqs&q|5wU2PaoE3~M2aaBJL0d`4))H0>LDybM
zYC2rz`9qgFsedfUUSM5FQn&Fhmf{BQOSGbue_!YObgHi2zPuG%qbvL_uV+6w(qpL4
z#A>mpaPG4Zcy+F;so-TOgnRwtUV+5FK1SC17x)F{>f-ZdOcjdxwKa^EhPlrtqp9s7
zvW|^Wyu=rtN<n!Yd<WLIY&uA1TqOAcKKLB2)WC*EcD!A2FjUc<DX|7+tX)U9jrJc-
z46L*8lxA0C_9Qj*Y&2wb`eB>nP(AJ}Hk304I?8;OXrYWzbdoxskL#^0_taEE;pS<l
zPVi~qTaQ?IEe9loR$}*-?EJ)(-lmlHzFAmfrfeu1Z~8TuUsM){o%O485!0poNL-#&
zEE)zxgMM}_m(`C6@=-VAV^Y#<Z}pjcYSV=>l|^LAdXsPv6TRPRdgGTxBn?B_TT-ck
zM{(33bG`B(L*+(_&fBk}%AH$CqXUyb?{KiYf#_2D{b|tzB@=HwO(5PGicNdXu%q(D
zhKv%n-<z7e7Ey*64B7*%+aa(Ns?ge1UOk%hh6@N-Z^->>xDO-7sxza^`GwfPWTVQ?
zY(y0|@e!3nE8zi@b9>62;WYLN$|eADW>PrQtgb6IkyD}HtV@#5f2|ki8I?j_O#XBX
zr1Z!DxPPOM7f9{(BgY+flCjhkloMLEjJrX5`=j!^BvVdEyGpS?As1};Sfl`c)i9f2
zq4cD9zP;W8W~q<(Z4<QW-)pMZBV?vDP<mw=UQ_!wLPIFdrHO;!gElt96~^Q!(VPdx
zD{5f>6vB<wqgJf5D{`aChr%tNO%rmtb%Bv9QM+EjF1mej{z>Mv?1xfbA2nnW04Z|`
zcsP;B=5^!e{uYDD!^Ko9OEkIa@~(kRmeTu{rI<lh-Adc_TSXM(XUe&1FIocC{iQFJ
zabPdXV0baw2c1B_KY%%p`8`z-YunElNb0(utcX2L<h$b#okQWP4!m5fxZZEhMtqrT
zU<-ybutF_(nKa58xvk8Sgjb^SP2IUH>Tp>}&FR(-ckSSL%3U#7`)r`W{`vP}fSy^!
zgh?!?o?<Wsm%7opaa#I@EuZL8O2<I%s@k0i%p!$vjTuF;ihfurQ{k$xo4kO%r@g~!
zQDm-iNFXKrw^`ULsh*;`26BC6owTDc#!o8eZ@<-LQ-ELy5VIn=b^C29evmL<yvrco
za0?w;vs~AHJ3{6^!>0AE^d0F6R27niKDMmBVvaDf#T)`zh!mj;(e1^e82zaDht`s%
z=2c3MS!gJMT1ai2PKv+TiPcj+G3#VwN1eiNr%^-t<Mi-&2jrCN)<uxUy>Imk`No7Q
zM(d;Rq{!&y41_xq#a?l6&RkXCSaU1dCu!ZJ(E#4*Lk;^QT72zGi5O3ccCah3QD<9h
zH`GvDh`J{qf~A$<>h$4E?nxk}J{GoY9YSTI(JP4Fg4@W*=#Je59CD`Uw%;OTt)g&o
z18Eg)?)ViVw|sw}TO@8RZ14vxq_a20wV7Vj!u!*b0MJQ}-Dri5u}r&`m)T9Izmz^<
z8-QyBcw{pOeC@-nhUB}O^Eje7tE~e1Cqbl6EOHH>+HUA^Br@Msu4@hPD)hC8ti}8$
zRm4QM&McvWQdiqh|HO$&&ZGwEvhXG6nrf}4*$r0(jaLoOk3%a##EPR~7_NrB%Dc2!
zaV6eVsuPk{#8P6%ko$5{xg|TxcLTFHvQ`@HHT)fnabQVHtijOw$Zu3imj-%wl@w;T
zXWBp7Z}iF|9$jlykwsuwYu92c_S#m%qFiqT!tdLL_SFuBvCUzmt52Koq6r--pXWsf
zEM!Xn>sH}ndmxt>f$~-EY}U*xy7?Wpabb9SIserYnk$>DVj|>L8SX-Iu}ZKpI{NH-
zQ5@NfpOYar7T~PXC_Fx1mC}zw;Dvl+(V8raigNn^;rCwtS=+<7`+C`b-0=C5W_1!k
zsOc!T6xVIz{YwLku_ewv%#!Mvsm`j8<8DgpZFe`RM^(Yi&?6de%1d%V)q|DPw_kKn
z8!t2ek)ITEYI}P@=r(mv2Hst(u;l20#!W?YtI)0$!2p%A`D~IT{(DKugAzy~Bn+0?
zd{KbK{8GHV>QEtEmJPptPJIb92!!QsakTW!Qk$$FzbU#wOqLJ*)T6MlNqjHdOh2`P
zSy+{;G$@o@P|IkU`Hdow!!UxdRDq~VI~h95<(Kh7ty$I6<f(cJnbqIPPa2rayGVc&
z0*^&o)Z>}|X5_H$sW)PS!(M8Moxxd;g&vqzrcWiT0d5wBgv6(XFHtajoHtbi;8yW{
zPD{z6S-s`Y4|qZolE@|D@~lBBy=!T=_MM~8ocGt(hI^`qb?=vn3I|3)$CIX)V<P&(
zl>*`)BFfhUGBpvr$o+8J2YT!$bglJCG>2H>n>{X(_hMMe<ZXpxa)h&NN7PxTg20C6
zCPKVL7wIWNn09f7b<!V1_@C!lps&SX;dX)7N{N2V8YlR>qdAgb<v&8@(R+FIvP+mp
zQ|6@&G^(<imLqN679DcB-4G@faon?0XlV25>@M%P9~*c4tRfYv%}W*I0msyD5)mUb
z?BFa1S=cPDVf<A9zYHVOS<%}@2F&g`#EtdbBy9SsYam3UO88M(d^wS)puO1;=pY3!
z`N?2j787ch>QR{)W|#GEZv5N=rK3So;BJouzOxtq?5D63F$j9yZ#D8_sC)v8j6oXH
zRN8kM2NFpn4R)0Z(D^TnccY3>aY1b!p*@mKrWsSe2uX~7=MI~M@SFE{)0#4%BONUd
z7vj~p-p9nl{KW}9<MRAthC`Cag}U><#dc@8nhMR|-)uFyBJ;r)Wxb8x@9xVxD$B4D
zpTD%n8Qw44Sk>w?7u!zwp;DBaV=uxQ*c2Ds{npCk8RimPwe}Cg#%*a9%ncl697c`g
zFq)V4pb!arFs_`2REys7!nt?kSaIG=i%{ZGA7}~~VdRC{_q|`ls{Xv~q6y}}Q1fR#
zTNn{5=;brmP5w~MmX}kT-=tutB&$F0?4opAjV+|f5u301l?<B~1M=VBWs<5Unq+QO
z%O-bNbQa*Rd;b%v)j<^1IpPKas(Jap{h719jobhBXTBfKIHPmBH=i^k21j6&ghFc_
zn`n54A4rJ}o_QkFq-dkVMuO4?f_81Iq3#&PNO?am7o%O~=s;v0PVFq?=z&`qx$5rn
zy`|>rxT#U9DO=lYh2E<u;-cLeZ0@GOGf}1EcB!(OOTLO_6&~JB9zI@<v}UGcnUBgO
z;~AXooT#4cl2P1SYimydzTLe)Q`;*awclZ!bSIki*)PMAOjwtfLVy=bwwZJ8;M7bd
z+KVOza)ow=<0ICr{+;6VNJ}+m0;Rc4)8_IC&4+Xqs_w~5>|L1&fKx8I>^vdmrIu3l
zkdY?cI5%3HrZdGZ);C>ROnN^f(6p{r2?vd%HkoLW+y{`EVhZ9KYmN|)B<PO-3dfPK
zl<z(;nknc(acTtvEDMkyxI*GEu`G208Zp4RI;(^Y@#X%**wOL%_&#jzjY%fc!{6_@
zHL2);WDZNW?<N*A2R~w=(Ve1<U^{{&eW|r5$sNP!@wp~|`lM)KBIy7&;9(GO^s@i?
z+Bx@@(8dc|2Q<;g$LI60cY659Q|W$x{k4H&(Z7gcZVxondGIiJv)6yhKw&RW?_Zp{
zldY4Budf3K1okL|`*ZdBsHEc)XP{E{?F0wK_&%{=e0O|_+ZQe8kBV^<hbS**|1o>;
za4;yXv90`cb*Y1!3*7Sg1R4;;yl?Sn_lWnrmt8rY$60(Mo`zvQd&mWMxj(oejoX*?
z(CEH@wFdsI>C?vfhg>X;q#BL|vb+0KxZ5~=$@%jB6qU!t!_&zv@~B{M;^Eix{^M(B
zE5#089zMSD5(~AzryBw|zs?wpFB3O^dmsDEZygZKa(^)a;PEr2!D7u(vXEQ_g4h{D
z<n0)!YaDkp2p*n)7@E^Zp~b0tF%?VQV?;}~fG{4O#>(s{v*xi#?Sv@|)1`1l;4!~s
z*~}gf*i!_SRsj{c`<^x(dZ+v-MDWj4*EH2!bB<t9C15vcsM~12o3R~~d>ul0%Cg+W
zqr=~}kF}~bJ?!qPnKA_&?}F?r4guVyM>=019W?m{-9`8^QC{(WnZ=8`Cq$pdKe<PM
zng>D}8S~SZ{k`UwkGSU>PpuVztrb6YV*A5KnW<LICFD|ZHaA(N<veK;Z^gwf6>YdS
zYbbb?a&JuOw4LE2OLkvBu{`$fKa&z}<g~Gx&x7lUfq36&r9fPoZ0gPBrNYGi<Bhoa
zjTl9luK7Jg0Nv=hcw9eFhYkpa5N}~U^d-DQXOoy4$-I03O|-H`haNrpfwxBCh8EoL
zOio^%%hp*G!tPEX*tL$kUqND{Cn%ZR1TmVCI&bMdJutgEJ&odTbR%AfKRoycg!d|q
zs&=61htxBX$3SaNPDy3L7O@`o-H^22scMy*h^vaniIQ|uyQNFU5U<?&bZP-PKs<m*
zY%bcmL(>F5tzwkj!TsO5e5p$+lx@g5>~x9s{j5HmvgWfZ)nl1=ZQ5mT)eL(3yL&Uz
zxe#12PEPZc8#t#hesg%B&Q57^*GDo^eY|PD1?EoSjpqH3(S2k9D@>In)TE}WN*CwC
z(?4fza#^{m@cgPl56o7F^zJ&Urb{VR6vq=Czc}iSpkU#y&49`m8nb2=gj&{weK!5A
zNXD3uH=D76Qu;te;*y#AY$fGE?20%M^_1V)4E7k_RWrk!i=&=_^T?;vP>lPs+WW_O
zUkkjp8sDoU29m47_7czSOU+W)Co1ECXi*K3i4GkS1QhY&nvgV%`j);liN_!qunH};
z{!Yz8IF|J3x7K{-4b!ydc>2OJa{oJ`tJ=GY&G6^z(JSPNo;dCc<W?O`_=5eDHRp0D
zqUfXL=M)*zcc*81ae*3KAjag9N?~ix2Y9c3py#n<R2%1`7$qYc#>gdqk2rm60crD^
zuTqZD!L~!n%d%mE*U!vo@e55$ud<Qq4LrlL0jvK&$5_aLgMM0OsGcnfiK8l1VATRQ
zb~pyzJNDN-UC>l|Ua44Drock-qgc6@8zOXRUV^h3D7DS23tziJEow<npQG+pAbHut
zRxOwTe<A${1j$K0Pg_|d7=i+@ndDJc868M~Gk#Z)7@Q-c?;;#kj#du&E8dSDtrWpi
z(<z|ejv(nKR()A#eJ7o%+;E?@y&f8ETX;s<C<pif%Q8HaqLa4w>lptuLm7;m?h>`O
zBTj_K^jbfeJ7lrzHa6<(@)VQK8R|QB<QMj*|5nhhzNRUUI?z<76FF252MDrtW?ff;
z$^pC*ClAAgH{%%~%2m;n&75n!==vH4uqB`-WRQ|3s;r}s&ehKg;t;g-oY`Z)PN(bb
z0l#$U2hzmyF+ga<hD_8X-;YW5+3Mn4xL4;&GD4S}K1Q_&_^IdI9bkTZJ~`_I?L)^)
zqdIo#^<Z|_qg%!v3-l{nDVP6!I*cvTbP^s36@{8hiVFlH<HF}hSMt@*^Zk*msHMY%
zTTVCKKG@x~3P!?y<-$;LI&s>U+gKGDNJF+a%AkVGtW&0RI0liV3CeqN>hgGvc^H$`
z0mv*l=HlUL@=wTwJ{0h;g{qqutTj04xsJ+e0CPn(@vn&1JBtlaktTBq9c$9L*<B5H
zFJ0B+vm0l!D%bt?6o|Y@Ih$~mzx>J|Aa-F<%N`C<wZaZH021H^fVry-k;~Gp2AS2o
zf*vK(kUQ#_luK7fedJ?ANm1t>+$KzmY6TiW*&zLp&>?;gjD#HWG>fJOd<l@$MFhyW
zc)s=o>%bBKAqr(kyZpxOhLnql>*+b}-D%rsH}v|HB}R2sEt=Y}NiBT$gZ>FNIx>v&
zIVX-~OKPu%-<St6MK99UQrca=PxV@R)1_m&Ir+1}hv~!e0Zs|T8bd|<I>UR>>oRnM
z^u5%dd)VDWOjA|F2~ZV?`FdGlHcZvQV}Ypk!W>-OWqma%@(9mPxDY5__N~WuIug!Z
zE(j_v&6q<BK;YS-2G(;O5)*2A8u$z*1w-LxFnq}@%@;f#oB0R5H!wsOh#1T<CY$ww
z)uEgL24N%>(p}XE&?|bCO7=>UsViE@Ol7ld$fBLeToO<qxbFbdc(Lq=AHlJ7P)0Hs
zX$0wLN0^VL=6wW=rQ41FQhZNpYuHw88You15^_RlFCzx6g*R`pIHRiL-hU}P00y%v
zn%YZ~OCCU7{jrC#hL4%$h5w@KaOP8RUbFs1L%eI8<$JO&M3Ed|wXS$x;{YQ%I<WYQ
zC7;7ZBN;ovW3DPCS!40Kl3hggmoDZiiAM7!QOa;RL?Je|aDCIJ7K@+r($V_<A)gYT
zO6|v?C6)a*umcj>9^EX81oAA2%LZy|w{>cm+=LNB4nt-Nh!md}7<oXQ10*1c*is6~
zp!k%qnEBjZNIo6ZpFdILHl!PJ$z9`l=Q;Oe%iD+eK$4xc<q5qQssd|kHa5vlT&$1Q
z)Kg=S>t3FWjm8`PN{!O|7+Mjk+dm{!O;3o5uL>bM&D7bEecjExyu7{;RY5#E5BAJ~
z6dy5ul^wh(9AT!@DI@qk6am^%T<A>QZsW#a#}v<&hd!ugQWkGL&XGa#zRL$roSb7}
zup!;Fbs};TSi8B%irAb{bq^z^jP!u+J$Eb@elcN6VuIH8-i>>(vz7&6w4a<S;Lw+1
zep08g1zs7TV3#_Ks<G%)U?V({?O_b!!4tUuWRr0qCBdXE$&7rS)nFv2ZbAig(^!<w
z6=xE%?i|E^4#-h@wia<N7cu~f$#e>$MjIogjLmn0<E0IjBH&k3&0){SrWk*PcbdN2
zP1QUbjXT^Y$6#rO1)tM{2>*ybv~UOE6f6h~sW7-*sJi6V+xROII)-zz#P>R?)?AUE
z{hM$p86H2ZJbt<DS^SfZ2G=+zoq~q>-O&+3l5u(l_%bTf(&;bnL%3|_6AN(rN7$eo
ze4a4GY34RUh;bpKeHGPpH00kE2Zz|5S!5dwQWc)tu2`K%q+Tu4BM(Fy{*&EWPM8Yb
ztcE{~2s&Rn?+-GPDzY`q`52w1Hga)B<MQ*2pGn4jCF;CZO(}C2KV&FN3NdTmwl*v0
zRoZ>gP?6~bc0}`yVXWjY!-ohS917DKO7*6zsl0~Oks778v5G{_^#zQ5LuB>91f@kR
z8jQGCfnd~8bZ}jM+-h#7V=r3wQl2Og#fxflh48w8E>31`!b$@Wukx*s>w>5wxPDV<
z4~`3m?CqNazvnE>)$@+4+y!!XsoQfXAjfJcO1e$fqNNhlaUtg;yn7zYA*L+=^5qx8
z_Uvk-_@ma!z2`ANZ5ps}5z9D%uctS{g7a%2;lhRmJoM)%C2aK=@R*LLIdEDe*`g-}
zo{Pe6T{m?T<S`!H2X%GTh|#$TD;*mbp5fp($Jq7ED+yMCvECV$#B!0A?-Aq$-PU#9
zYgclHhJG<_z<+njleG|%0J>g*hNy%aa#nObv(AQkLmbrCM|fl4gI_&;4vnZiZ<jbb
zpg9KwFW~9{>Yu}Nx(g%v>Nv}Ou!OLD<Xn@8g96sJqd1ln0+_V|>a8oSIA`t3FKHr*
zf{aXlD-TXiahGzTtnk|dpivLX1zN3$qF?w=U0B#FcJ`L}^jdYrS&5&tw7Z1RUo16J
zqs`*<l3S`6&0W**9--9;dm<Tf2AHv1VK)=vNErfnWlx>bW9ro8AtvsCNB)+pKe7U9
z_E60(>K+9xr_mx=<~Ol%)2-7=F&D&|0sD*T_+k|b4Elq1;H&-C9&t|9K?0e;w6v1{
z2xbRJ+`uxL=%S^#)6T21ERUs(=pa_+l-1kCvLtlA0ADN5E*D|KV<p1Np+OQCtF#5|
z<|H0gHYDuFCeB!bc3eJ<FiVK@Gh~74{n+xEbZc_wVyVobA1U>9<wKb9njptc+{=2v
z-%^hvF}?WTWM$5^a%R;O(m7F#R&}xNa!v}w3iH6E;Csvf#35P+l;qN$wH<=X&e*;*
z!MikHr)NbxHTN;s&g`B1aSmmCc%8jbR=Q{?gmqW0De?}`=1$_PQk*!$Jrg_ypVJhr
zfS$$B+ATtw)XPs`fsEY@iqNvW%zA3$QVMc*h=9qa-~qQJ=5)5Mdq(pdIVR9mmk5Ee
zB(PI{IzeUvP81a&4o5GP%hhS1p}apD!^2k}E~4nPt7Qx1Y<2=qf=s>MI~a(3c&Wh;
zzXc3|DQVy+0!j&NsCbqwx*U%*yKcbw+D1pV=7~h;tPCJ)ueThVW>kHe!Ck$hj=EF!
zg$O>}2~o-CiLLpRjY=AKcS>SxNrAN(C^Umg74}6LfORJO<%q0NS<0;n!6CIx`4NIb
zD%E6zhKAO^j7AneUKK%)%O^&8c;$ec8<N>sR@P_J-kAur6};-18cwR%6v5Vw*_6=n
zF!x5|I3fK+`kxy@gyZS)c_~#B9dOgokLkm!JQbK3pGU;qV26cJW9(P<Uxe?dDXaEv
z@^hN+kpOJKV45HOgy%+BqKm&7wgL~c9gkU+#v)uTi7FBsWbe!#>?0f*prbEsP>*bs
zk81;*&_|`z+w2v?CL5;iO?}N7vdyTiz*E3!dR*-5{9IB5go;9qlDvz~DjCL!_3J%<
zt?~Ah=@l;oBAKrj1v3hgPEtd!U;Zxr>_w5|^|TB`Bjg%8gH18&jBa)xc@eUI2{Lt!
z3}r`z^wjYj^}MpT-jHOVb~^q9Em*VUl5IY$z#ph9yD**fp3?V8dCV;~eO>XLv=RLk
z_(1*FpP^EP=}N&(nZf1dzPgP-`8DQ}Ft+a|6D*>(kkE4RbqjguFv-IGaU-8+0)z)u
zb<Nk}k?*n$KJDYMR!7FQjg=cztd1_qlKbl6?N2v#4v^wWRktZTvS_}d!wCSC;z*@v
za7z-n#cV2M$Nj9y01?_ym0n+kw@ivnX2{r!gk1GLy=YmXeh_m@;MCCwUqlcuVodVv
zaDDwl1#y+FRuP%)9L(iX-lDm=>6cDOX2s8)oD~TcR-@SjuQ~pWTtGf_pVuW&P8#B+
zd|pwZ76bA>OJ<l-!tedLc-J1Z5zf=~w&`zZ9C{?2>dh+OPml3b>JYd_pjc?p1O{om
zDpQwg(m_%mYfi_axZur!#0%ARf4P*2<6lg}uv4N|0=iGb9KZL(l#26%*Jl}z$KKb-
z_~CC{@6Hj1%fskIZO7+CpDMX>Vyksb8o}YzMThc&Kq<~+=*sIIXSx*i{TJwmdW+l?
z8OQC^2vL<IqTpr<NG~H1n_7X6<P*v8U*rOxB3VhEy|krTx$jxoHw@xTTsEtzqeg<s
zeV+tkn9V8^k=V*LLm|hq1Q|&{+b2ZL135m+$`$@*i!g#1p0%4L<a;y!Ltp=5@+(pk
z16rZBF;mhZq5r4Z0FO1StHJH(;LsNDp420<omz#?qnSOfA(4xpZe>gGLq8`$_r*sZ
z1FXC24T+j~>**SQ*~8rRiV*oRS2oe8UtNZ-c(9atbWPkZdU)5H$bWjCUQZehwmuW$
z?vd!ZY{+eocx#H75J@+`6X%*{;Y%F7P2J!A{5dk@;ZB-mU&tJ(QByJNT9a{h{EbIJ
zB|f#xA}lh2)^l&w<dSXrwV~jO*iq-_Q<<iSnad_-xqskX^VbUg^Mh4CUrrWWq0Wu7
zCK5?iUVy~7t8QAt%`TM<4zu#)$d>(V*ZIN+T8sca$wZOCd40#yIPurTqE+63mZFz-
z;<>~ceN&oR>m^y20o3Ya&F&)lDcbM1!Hn`iq&vc5Daw$yK#AcM-{TP`Fy1VMvhtHy
z$-rY!;Zad@HB(EbtN0rlb}kY5hvG4G)}eI`h+8r`;VqR3Xq%teDk{b($)fNp$^JN)
z<G|B=EYap2=mC;9p!`vzQ>6SrGGQ{=Im(Ya8bF<7tr`;V*^)JR6zK1K3jxFI={DLC
zQLbaWO$Nm>Nw)UJbiSS*ghG-zzBALO{9`^t*<tx}$^N89TzZC!wsl?ufCi*mi_8oV
zJfklCQ5)~py(Zs?h27^in?VtPHCw~6mVr99(REqX{nWFIUq{p}+|Pw>SN;@PT!{*o
zz-rM2_BO(dJ58acS_w3o9*4*NX?(8o#mE6w-tAl$Psck)Dax#Logv?B9=k&u>=sR5
z9$jw=$lOt;UwFpvJwl!_`pMGBvNciysD9UICcc?QE<oHwGWHL4i=vVg_;GgMWFQXN
zTjeq6h$mi#L>A2HSlo&s%BH^o!fOYDC;Ku3&0+gN4NVgsSuE-ns>D@l>fPu^KXq(U
zX+P1x1c&7HD0{G&TFpqCY_#Wak?HB=gy836Q?G*I3L|rS_EeoaC=GL*4-v9k^i~q#
z1QBl*&NU=@TN`w22;v%L4p6XdOo^aW1!_usOhqM)^>fL{l5suC;hrMNaml2FNEUyq
z0l2=DRl$MDJ!M}7yV8W-wFc+6aOL8W2u$nP-Wlb%jNNbQXT9My2joOv+e=Ibe8pJu
zufu}L(r2}~MzJ$XeRA!%wEF=f;wnmm-NLFw>Gb0`smX2ExH}v%<u64205^}b0CYlB
ze74?*Wb#06YBH_CvyIF8o4Nsof#}HN5rj@X&K1!uPF<lU^xxQ!Aq36PfZ*=P2n1DF
z>KqkR0iC{;e5}D@CVk?kTBf_doQ&LGcNwL5W{X)+a+ND3xW?S0+X5vZ5%ME{nX9Xe
zb_O<OZsAOp%Y#w!7ia;D8<kC$TIOD#@)L3%re@IXWgN+rq)TXdi{A~C_Z7T(BA26$
zmdw)F+#9sx(#A^h{9$q+<KSOPIZ8GZNNY*`$do`yXd`nJK+)o^9~)?N*(8e36af1P
z7`M(h#`0qQP&V)SjN)%&WI){yy$vnO0NjKE$ha&x27sC&$x@@b_^THGkHZm8>-eA0
z;vSpUXq`oKglt)sO|DDhIX}FM9J&QD9*vYfX`}8!oBZH+JFcvwOS+~#v1q$rSaLjf
z8$2eG&W8D=>T79{E(xyt8T3tpB8}rzAaM!)gc05AJ9l-Ntsr#!b<7r|(BkZ#cZ4j0
z(7X?w`^jcw6aWhk?SXt5EowNp)9*f|0Ps*DtBNlAaAFxH35R6Y;{>_=M7|L3bU8XC
zj<f3Gr2e>Iz2Y*blg9?*Q0(L!%BoQL7vBD*>c0^rW`-#ZP)f+e)8Zlt<14W(_?qe%
zNlY71rF~DgV}+x#V=kI>{D^6&_#U<|F`07|yS|37-hZR*;n6-eDyiQ{|CY#S8Ie>7
zdEU*uG8WH$8QAEHVuDD^yWzt|90+IGJ$m{@HRQ!;r=QiIIp76Ovv8rE&q?38>igKr
zdXAZ_bC-)amzAnuZgAdW?yMBJV2Hyu@~xfdccbfqsm9SRY?}=|>^&|`u1j7iWG0A<
z@paF0k9D!5VD1i3RE1CDIBZp>OQA(uZWFs@S*uCKg$Po66RZS3N1kyqNL!Mqc$tDt
zqHuy9-@G3pPydy4qAHb6E+5m;QA-v@#1uXfKbUxaB(kgkG+l+xMVq`@YO0yj)r89N
zXAC>>phD3bYN!5*a@gcWvLCmS`;(?H*w>hEw{+0Rp`FIpx!Q4Rxt2{S?Z+LX64kcm
zzD9jh%XQg&)HDOxBA`lzCO=dSnkOVXWUc}lTk@bjdIg_@5-U?ljI)XW<3v0Zm;Va8
zRT?PC7@l=#-^uG^AH#Hbna78ZubicayF(fLwWyk7Nzfd3^AoVg83XWqN|Enp7X>e-
znGm^GXw{aiLFGVki++QtpTaW15*Pl>^P8Wa$K9MPvrruetXQ(p7vJAXeb@%iSvN2u
zD{4R&l#6O(cO+A2$eG>3*DuikRdoYog#A|NlQ)H+rGBuk=yk0`VACJGwr@sjzHg=l
zy*IrZnk2NPNp*-$YsM(+gElKWGfl+qeN0&fdcT3GAsYLy+i;etXir=i=}f6)Qb&fR
zof;<2lvYLpGk$er9vt|(j|`Jap~qZ0kPw#KwJ6eWScdQn5WbU5Kt=!aPB}AsvVJIa
zYome~#<4WC*OZZsrGQ#fk0F-ZFi*C*e(24bVHr@n3Vl)*wd}RE;Yqatqo!h?HR{?L
zFWj*8O34zANJO6YYV4zbbmBMl7uZGq0)sgEou}#DQp*4*izuZX{A5~#Teqi*Q{vhL
zRSg~_YmrXK*`XRY>2lSSb1E8e)%w$1lC+=c%=Pfy+s<~h+_uxH^#Km1B*+l-z~#R}
z=2L}x)5^6+A-z8Bu7ViRZxXD+B=WK9Mdg<bUFncVLgZWnsP{U`Sw^E>h)4!B^e*m4
za$1PqgiwF80JZR3u1t4l7*{}}Wk*<DF<+oZL7Gj>_G>CK)?9wHzYWzcoOwp{uKFDB
z;lH}y$?}oHA>(e!3NA+~)pHO6*sIn_rBO5izv6NEndOX{tB!A<`CPt3tXjRsP^lxx
zEvh=AqOjrAiZOTz0sbZ7QB;F(wlT04@>8RQ-WLx7<c8V<1M4gKHV4j$2f5p3olTjt
z8{$}yi7pE$gq_TDbl6NY_x^J!okiN^JDxp>pHT>bG0>!}_CaD?toZm8k4ibfgp^j`
z;DP>C$IRk#V%HyGqliPymxl30ib=Mz;<l5Jv-Lv&;toKgud$r|0GMB!#~mbo;K3h2
zVQ`(HLTwAwo6rVRF0lU<jBztVFZXRH{+Q{-i;ep{8V4FlJ5moDU5kvI<LygU+EK40
zHB&+&2eYdZdW*qXsxz7RE~lFp9(UK0Q`~R8hnnuCYFys11%`*2Oo2NA!uN|J*ro3!
zR{?~aW=57Xqlpk4QA_A#a>z#%zu7rzh5v6g6&k-ufO=eWrNJBdCW@ca;9Pa2nUUF^
z0-;Gw=ls;S#4Nz2`h6v4)rD24wkB?YY2>%7swY3F>Z2J+ik%cgNS2W*zC)siBH}<s
zf~9>J{R^An0l7~C1A>V0lddMmYs1EcZZ~(ETj^3ZEny$isE~AL`pxoHmi4zi;@18Y
zkrR?~=FZOt$F=eC&#(BoDI)yZrBl*7eZ(#gMqfOTrpw->4>8sd>9;5C?K3_hIc%>d
z$c8xMulbrkm-vx4-7o|+arb_&Qr84`NSxdB1CiBJBbDW;102`r^T?Ruosyq;wzMz}
zqICG8fSAzdrdL4B%l+%q#G3SdEVF!KbbZbT=tE9L_37)}hm1acb1BLa^AT1}jS4q3
zFA@dg%Dy&@xrZ5LKucJ1;RqSfwX!ftYiz0kL@@YdF|A7Fza2ac7Xz5<H7TYaBtc^L
z&Nk9HK83#9Oja7f7F{Xiq;H`zGRFr2`g-x201)?Hoz)c7KUa!{uK7xsC0>6hq&((6
zq_8iNG#Y1^LYhu_p3kpV;l`Lxrj3Bt?=EHqZkg3f5X3mx^hg$P?~B|e6E+jyz*nkx
zqO`<|&54hdp^%^uUyG>1?Ite{a?BZAkZmxnS)l2V$I;Pe2KX+3;8besg7;6>{#j*i
zo|Xoo8<4EqhM8xM<h>n=5ri}adNW{w(m2HL(?xxMwLu<EzA5gG*FM);5^P;@^7qEr
zR4nqLc^&myjDIArD*Z0U@GNyE?r4M;iM3=<awUV97ovBjLEX0o2N!K76<2Br!s`-r
zn9F@ldi4@kH%4k}!LA|dNi~G*_`9e}mae{1&>V3H+lo~>?<yO@Q@eJs(lnezL(_<r
zc8Ui;lOWVzUK8d`{_8rU%K}Hg%?uaYI(6ry1dWcV=kaS-&GrCtu3c~1Y>mR`%?SbF
z??H{X!4mT@DS6P^KOAHSCkPcmC?{Ke^Cnk(y5-B58QoHIF<Bh50qPyQGR>RK#OA(^
zK!hy?NWQV9l&uVJCwMiBqn9+|r?21&n#2CjM&I&X(4FQ=z!RG|=X}GIe&z2uS(5dh
z1X#g|D-Z)fB{yV_9*yo<?w#8F7fx<X@l~;X31%#(-&dS-j44pgi0sCRbDS2m(a${-
zKT(h6SM0iDZQki4$eWUt4>uzn5_KGZ0@7S*mgSKeRRc_MQZS*$zcs0pM9&MJVMQvO
z!6c@h%ja<6`HId<^rrW|sDP41_B!_W#Vv+vtAgJr=T<6<UZ|-nycv=A3?vPVa&2c*
z2UQqD9;+B0X%FCw_|lm+Jl9b3MkR25#})POmYryjSTH}4;I5lv%`KWIv0XSANSaWK
zg0tx`YxBLo@}At!giGROpHzY^W?r~-&p&@OEaD(-lA?QdsDdEtZ?$>P%L2XuWi&5G
zdWRs(x`7y#lH%p<f8bH9$vm#V{0$+>w7YE0+bxnpzHkth=-etT@hmZ6nWINb#_ag!
zW4bHVFR6%N@%1RySY41MOF?Of8DGutE&LpKkkT!xkr5xnlM^L!>79K*?$7R%+T^Q1
zI*<_@)w>`==}T1JjWT5wB@EgOHLYD=ieMj43i^+rpnac3q+UQq6s%CUP)akq@z$|^
z21zpLbw_UWe%%>&{3#@c@TU=qSC5|7T%lUG7X04zSw9W)IrJ_|1DA0Z4qHCW#1Esm
zinPkmF6({^qI5diDX9*{s5l}dv8TIhqtvwgUa|9-Kl(bTp(mTy=C!W++i?Fd%DI$-
zle|I|0c3lr0})(F1Cfs=X}ktGXN3{LQ_yUsT;)^I%%&#06_>I)0)CIn0MIZ(jq^bZ
z{b!}LK^FEtxce7PLP!qNwe!^XT$V)XZkRd-7{3x7wRv@zK){fQ&f_T~gOz;~S_5Hq
z6ky>Rz_N1LSRyr$mt1is^L^4(UDVIDj-GQV3{-aR!)wk{RR<}hOq$&b38KSwjwi#Q
zJX51Wy58GSZ)TFi@k`CZDQh*q=r1wZf(`4y&tf~^8u5r41}QGTugB*>BhKb_8(o#p
zpmR&ztU8p6aUp+}F|4I_p(4BqnQ$0syhrj(&oNI_vimrWf^)lSvFWmQQt90$Bgxw%
zjesq1!^9nQ^p$TMu2NgHxy-7@RDX#WxKwD3pb$*7ARYRhqP8;UL7d#`5UKDaiw}=`
zb~H0^#Y?w3QrA9_Y1~_-Bie9-le>93-sc2#)KL(Aag<1)>`FXO6}<|I%*rXX+!ij6
ztcez_lw~<bb;l9(HXldR?gsECl}yhLoSB?X?=5Gc>Fh*(qIack<otWK@G*|;?bFtK
ztIX*dJ#Tr_RLn5Wfn0Z%#Mtlnntxn&H<pTz+KUlv>&3>!$uW%Fi1YXG;oxONZiqpI
zz({-e2H)qw*hp;_*G-w4n)1~AGT|+tQ3WWkw*CS&*cT}6nf>bl-(L)Pe@)orPiBHu
zR=e*0_pWormdTsa9KGwdDognA6JTKO88cQe1?{fuVj}8!?gE-A2#TirWSBbKzBda)
z0K}eAFw<G|UcYm95|p}-g~W&RszkojZ~-XMV~I)EC92U|grNygE`4i?YlqNyZ6fJV
zA=e%6jpRaz-Bv!%*G`A0QjQ-F+Go5yr?TWZoahBzx+7=#XAlOgPRJA>`WP~(^*A;F
zOLZ0Pg1dq<Ep&&vVde@NVm0TaF3Kdt4bwHnzF#)YI)M!+^+Jd7KC$1%Ct{Xc5rT-&
zh-{YLqW*+1B!jB>yGLQBRequiG2&~!O-*e`3#4QzKSXnG<?;m(rzt+0pkVbiYY6M6
zOh_fig?9VdrdO$DS4k`B4F)aAXh5d@I4c^4M@%9Ji}TkAhpcy$K6Iz|uePGDQQVR0
zY@{eD4_q&!zdxhUw95EEOf_jVo9G}AbL`hI{K+{6bG7SQTT16i=$+KjD1InM>7af?
z$aSjcBxyzM-2k`-YsG(v_~!bBZ<OIN=yEpxN-|E^BHl79zbiZjOdD5~pm$zrMKJ^E
zsc|tLuU|Xc_jxWW;9P97O%+Z#7yQ0T?bop6Z}C<BgVbnuhotnBp^3nM*ZB4wrG#zB
z#bZt660M&5SGOMpDu`Ubhtq#Uj{_O*0<Sm*%WUIsx(>&7EWBEYZW>&Vv@t6G&-?`(
zr(U6S1i+@Ki=eC0NI6Bc#~QMtV@0i1q+;BFO6qWhIP{CU;v#6%wrEDy41-*chbxA(
zP5F*76%A+gnRLqq&q14;_bmFMKgQLeh9<zy9yc!QO6W~V?+ovMxH<<O(ZViSx4Tc<
zwr$(CZQHhO+qQk$wr$(SobS%$CNs(Y2|I6At*Z4@3_-1}#9G}e`)}d&!%yYnKjU<0
zYAXY}B6-x*7&*IBc}GcF_lLMhSnnb5ukrhRiFR9BYk9bu!fyGQf)F=jCAhQD+9c&f
z;uKlQT=kr?w=*sb4>iU;Xg`Ws#SnS^b>BKx<3-biMs<Svv2&V%_>agMSRjjfOBokS
zO{MRlrD<!$B)hc=7;@}TJ*7gIoFO-^q{^$TxjZZUh%8^Dnpq=Rylw6_*1#W%^4xAV
z!|J1Y<XkE^r*Y!onRwt%4K4^uTbmVGUOAWi7&hOn?M1W}7eE27&fey7M#30{cA^dx
zjhD2FRcnc9u+s3gp4ED}MBeT73R-6ABTY#rnHJ_$(hMw+zWDM+>+BuGYc8Z?$rq*K
zN)A$&;rBF0*^7JF9k~H_lh{umg|;`fX-J`8@<gEHY|3dQR%yb?xz(cbQkH78mOJj8
z#3w+#HS2xB#I{CtS6LoOm;kg8TQdFqET(cPOEwxUccf>iKI#i2l(i%*Ts`Rt=ewE5
zC;AVI=D~P-?QN`R0&PvV$jb8-iwBe)YioI&%B67I2EyJWFpK2CJ=TE_2OMfyL5c@N
z;Ayj%77^^6*d3fGPY>YYC2Af=%kvhYT!x9ZYrqZB{DHR`+xam|NBlxi<kF8XY$KoQ
zqrNvl9crQOQtv|Nnd!p}n{RHG&0O87Lh2V=%IK~6<?C&P2m%lBMr=1#VccP-18B2H
zP(sPcdP)w<e~2*;bFxraq+IdQJPEv7*^;8A#W-<VpIv?H5<vktw<xY`C;HGxpL91z
z^Jm{ZTrOwJo5I$BSR;kvDQru9)Esl#9@x?PfjU2GtKS6#rIMms1_k_NMx`pR?F<hZ
zektnj$C2b;$ALB!rThoDxvpRtRYj{4qVc25g>xis@{4F`Rp|#3oC5$={}bke6%;MQ
z0;)EcjEol@;IGsOY`5uW?1W}PMmDoGuAJR~MThlqNCp9X>Y&cQ;1Q7vu^XWxU(yZs
z)Er1e5a;dlv|60fdUxkC1M(>(WPxli6l>{%G*zwS)8RudxusFHvO`Ezg9c{Rckcys
z!tg%Rou967MhJ)?O)?s38M%4Y-;<pJgtWg!Fj3V|4Nu@LD^^?DNfPcx{W4+P*Kv{I
z^8II6RQR&co3p+fc&KNgUuK&J#J?~#x0h74QNh}2ZODA{CF-(%T9LC_kY8sp)$<kZ
zp|v+SpWeC$>thEApyO9AtaOj2YzJ2{B!O?pxBO_V<rF$82lYZ^4(NH(vP3hEU(LC|
za~(Xa{cNM#+r^(3kJ4CdL7utOSq40#U^DT()<~nXNQ{hKpDnFp4i}rdR}R0HUfTNR
zRf(G(j{cT|#oq3wgP8BY6n(LauIZmDW0Oz!L{PUvCX57mHS<-dD(~?W1T#b7h1$T>
zkED}LqNLU8${3lW1yM(YRMQ@R)Y(hvoi9tRB_WBxsgJQZ$v(N8wm_LOfXOip^LvF}
z?}`<8`si+M)-?2=U@6YCY<m>WPq}VP?UQLMliMQk+Hqca#NCp-9LwPTvf2gCA#=Tk
zZVrosHK;Gto9EIe`)uzByUvBbpjIHQ3$zSfaJyI(p`rh_NKZtXwD#>LE9BGZlA>^m
zGt7u~dq=pF_-z~+)ZK#{AB{`|Q@d--AqjKhsDhS1{XA%!GS~TN_R)V|<t^MH<zw|}
z7o*^?%RxZmWegeJ#0p4n>POp+v9{l{+cc45fywRgb&F17eSH_Ty4OyW>?qkPH5D0v
zGQne~ErV>23NPi?Jj9x820ynSW(SlXsvj4V3$S)nw0f6wDUC@dtd_WNKbe}`I1R)F
zqLYb1b`yU(5S|<>@7#)8;Z%koYssidJu4K>k2=tp*DvoJD0r<=+BJzPbcx%_pKB(&
z<ZK^NZN=PMu;W7|GMA0_PK|p;_HHLelUHV6JgV=PNq7fFh;B9A=<fGB22@ORepRii
zUR4f$Uj=uOQ2%ynG8fA_TW#eY(~}WHGLD`guQL+95;qX$cy7}--{QG;1g?6$?P-$K
z-hWG|SRNNjRPi_!VsJp<J8Br$n<XsRhJaTmD1<w)&*FeN7Ef(G<ifA}^CHOh{-)(>
zO;Dw3gpK7)VHwMaCco6l5(<%%gs~G7krxtW2~lM`I7%kGxhIu^a%MeD^@!X_=}6Z?
z%ZrCGa-upHs-NKC@mY!j)?XW;D3{oU@i${xAx)ZYTZZczZ8ndfol*qw5PO=4sbMk%
z!PudXgPjs)bz~0s+%Qd_tr1GR1D#o5=}Xk?XvO&gSZ$1(nZ5Si`=9+>m)9#gRb{6t
zqyQAxF>kCZtp0wqbP5{@j8M89$M0J29#tM_Lm1=AF^mft=F|&GrLM}O`^m1W5#kgA
zEx=<09S~=yFkPi35!qS^#yw^unT{W6?Gr0;D4IqTV#Ds^a$PAV8^$LB?0B>DymR#@
zV7Pczhbrm@@^C*vcwTYm6!LMltKPBF+0lyy^KpBlO-;`UyFX2Vq|+F3rQBgG^`9z&
zYAy9mQ|_r==yhGR<!rPOfEX32maBe1DGNG%L<-_XQV%mLO9mTdFWV~Mb^QU_WY8=E
zlJ9v;@2%76M-A8{me6)TLpDl0V~$N|kSPue+e!31jHXDo<93-)D*<AeP$=+zw#d0a
zR>=}fiD2Nz1SB5T5Y5;<yIw!Dp+cHunp-%{RP9}=et;%TDd!Ne8KW^xRz;E=azt!O
zWk*Gn07KRJ)syQ3<LH4|TujfkK6n#+96_~Kd%jaM`@5s8-dUs=>~X>kddsBJRaWV8
zX*zK|pF|qD4Posk9;5r*{3m)UJhR#lNDWH}?+vDZ!?7toyEkQ&FQdz@fR8&uY834`
z=Ahpa<(_LM5OVjRSg{2S$)uuJ(~frPeQ0(rzepj~Rf9|NEUJi7uX4Qw`3FGZ`;JF!
zvL4P)e$ka8!ujIORCr8j{XyApBM_;<R*9A0G}#`2D4l*kXUDY|ML5)-o;QVbPM+>m
z--wRl6qpw*dQ5*&n>2eq#f)$E<c#An@O3P@@T8f>`m&okE2=30<%hy)X;8?)m$vw)
zRF-=`!G5Z|(%Ae$EqA+Ytw-@BgkQeO@jcKGN8xaoot`TWAV*KFQB?JgB9G7pck)7a
zxVC2OhI7^u$(rM=21|;$a1K$Qy)d5c;J62m2rA_dGFq+0fd4>DD8}^4fD^6n2%p7U
zIPvMhLIO9~`jo&#A8Nky8atB;zWp3XI|)M&ZwaF!-L%C)>siawBB2otuf9#C2A78P
zSrrSwoViHN*UmKYAs90IaSKJzVNrEAZGb_wrAfamLnoIM+_=XvzrbY5`M54~<!qqE
z#W#g#MGoBNbS5fXMg1hWno|bXhED^tzft`RxfuV8Z~ecvN_9{V-#erpo~gffB%Tok
zZgi9W=Rt8G!?t)N4gCx#2WG318Xw`mfSdS4kH~D{L_ebYh>X=h+ZqS7T|G_NQ<V2=
zOPTAh(b)@An^Ec<JyuO$nTYzt#M6**63-@#EMr3MczIr}c^_C}(dh89{l}j;k&bbM
zy|4Op8;gY5e5jyA){)*OQ#~pL0*xTsl|UsmEQ)mlT1aaIEKkdhTlQm8A|`9kU?ItO
zsGt#fwtxrE=s!h!S(5jvl0=Y^#wntuvzMw06*u%=;K>|(zFwTYZ+Aa$-rFP#7eZ*o
zs^vb853anTk+6f!i5)6$t?$J=M7V<qUZ@E`1&$v`SI^;V#}6;H`!X*CDQLB}Kr3h0
zF&%<Ai7}T{k^A#v(<VFlFn#LvW+mF2F3*WX3BWsK-ZcxQzRRi*bJ#D{&~{yB5kcQ#
z-tCk$2W_@k;*~y}1WmQ&inS!Z?${tsv<2>c9`+ncxx9~%iTL_SIlnrJ8fgob`z5Wo
z?ZG;oyJu16FfX8+Nyv~8_wZU!T=|<14fLj|w-w@25B#aebH5EuRJ3ba(-O?@*)5Xr
zBuOV$?|@PHcCj@Sf;tU>><v{)=XC5e&j9|n(feXbvJ>5;KG01KObStXCCiZuO?ufl
zKdWzNU61o!zz!vOJve^so_^bKkh<Erc%LK!GX9Bw`J+<ng|NoaQ@>e*rm>ye3u0-U
z5HhFkE()}ePZ`K7aXUrK_++5U(0T2n^mWg%QYr^!BxmC`Bje5`^VDJ7k*b1=B9{6_
z6?t0!O;KLdjLB%&0nIrwitkpbQ%&A1$$g@BBY3iOJ9v06A)4d+zIt<*hiIJmd|SH-
zo2a@({9>oSSr^l1#@-)*?kD5>uV!dz?(7?h&HzZa@Ni@rEE<ZC9gywtXHd>ta~#|z
zaQR{Zp>&j7cLA~YvhR>#h9q&+>m4i~ieCJeKSCJ>xP0=sk<|s=yHH$D0wN-r`b%lV
z1WVpnnDRl3ScM3X8h|0j24S~{EOinwrm(Tm!fYrZQPRhNe>eW!`9@+Af=X-RmzJM$
z*Xw0)P}Sn#^{fgo_IWN+j>8lsNz+I|>VV|0>d<s(7<BYHx_JFexK1y`#>URT&C2d(
zdz1aNwH)|)ecL|$eBUe3soTjDOD9ttGX!`fz`8kP86zLc_0#kf7zfK9th~lePHGRi
zS@f14%jmRB{V7cR7Yqkis|K#h2Z3^MQC#(>>Dul7C_?z!rkXLqi!-oymP+0f^7g(z
z96rA1is6#fbCqABHQ$CV-0*|BevBT|j%+JI+G~?~{$=F!d~|)<4v}q>n<S*W?&=@9
zsy8vXqBFB;wY-cN^>l(#Gq;ZP856mK<-M0;`RP3aXj>B^qS7bLnIFhPNHvB$@|hgs
z%o+oUk%SDY=|cU3Mign?Y^UlbJ1b8*2%A7qy^tSIv`6w7GR5$FCpP3qC3H4ubt?cL
zmOpcDjgm3w<gNI)r!1KkFZvrq&FL~eLYp-%0Z&^MC8H6qb+kUVl^{^Pw2Kt!+@%ol
z$Zng12r^@yrN(-#tGBaq0+M%&s51couJ3neHynzYj*Db$6r*UG8xI(OiqFM7r(e%|
za_9oy54vA6%c^nB!QotMwze<%M3qnx)e0|!rWe8#tDTA|S~6(ePgXXX=2y&BKuG7|
z=Q_-rUQ~b%Zpj-r@8mIHwn?9_L*)#tv@9=8SgWqN#Q(|Si0grjH;)-XPN;C`${~33
zEFK-}H#o|Qi};&J25|Mb9Kar9K2Cvcr+T99)Ii%fq$Vgnl4n*fxZSsx_@%4somuWB
z=H546xuVFGH#qwhlz?8QS@nqV0BLgc$-Y^OD7eTP9CE-#lj8=67pQo{<b##x<x(t6
zK#r@frn%&Ng)W;`iMVP)a;Yo<TCu{vpl*kC<b!zAyMyb-$K`vy|Ga4W^t@>H^t^%L
z(_<mJIz0D{xoO13^mvpv?-u?`yhHv+*!G+88DNK1Lp8z$YNK{349Ug0N-V3F1jfNs
zqoYc*alS9mAWC9W4!{L%#IM4$MOJaYB7W7uqNuoyA~(J}!=9m~VpDmJa!S1~hJmel
zb)3*$A^@btB4XuS$GyqoNHgH9LSwygp18qhg=f3=Y{pJns-#Wuj40q2MWh>SaZL*d
zr#7UOkDVzWS82bGcs>ptua?L+3;=S}sjYTwA0kw+V7gY9IYFBO@%e(a95S<hjt&)V
ztS<-*WCJvuD#T*-iP~_*faQ!Gn3&<uWD9!W6n9HDVHu0I7XzDb=Z-y5;zn=|x=w84
z9`N1go!+DfTaS#=hX&Kf$F7TLTjrdMl0=%4!sE|0>8#k3V&$nRwO1PB7J~duW3#G+
zQ3`VZ(q)y8lU&{R+j0vJ=5zYU<Axz<l4HWgaxa5dvLI%juo1RMpaZrc&9hD_nu00%
zv5m}#iNy*NV;P~%km}8BE7GzCyKYM?W^-cuIC){rt75f;Rfqn9_V}E^N}aA=RR>(h
z$$3OGBG$I#ec!S3e1vp?@2>QbmkUqdMiF;&`E^cxOgb%T8(tekh<XM`>Eq8s_hDje
zXVp@64gNU-sp%XsO0`Xt|A)rTcpn1>1|3J|k0<gyF)!Bf$Ve=!Roy>UlNE^_%>HZr
z&EHFX*H5sIU=%L|WD6^MCnGE@%`k5A2#sP|GZS(A@T?K^K#Jo(ChA3##J%*k(k>aD
z7v-!LPt+^nGmwrxiPO7lH_Lx$-L@3az#@VXvJ#@z6lB#_CH6bC+=jg#D0|9PzG%Ay
ztrCtfaK7y(6m_kes)H}N8TjA0aViL%QY!p3570`Axl22kW9$qX8-o5!C1<31z=ON4
z_xTN))b^5&paK_8(qpse(sWqnTHp?I^fXBl?+&%z%Xsq<79#5FQXw%~I@xse7X$~Y
zwI|Mp=w@;(7s(HRqZ+&JCY?0={r$e((4B^=ARQDi+YagV+-95e>PJRuG=bvif(=Zp
zu)n_(Yef5(<)N<6Ct8?<fy{j!{@qFwJWTEKpz;OX489t>OpUExt<FvR6Be|?zJ-&u
zhEgIXTx&0O&cijrCo=F3Bu&NzA;MC5c!pgOzai?21BuTSr@%K2m9*uXHeI;jD0tub
zc8OajC;Hg=^eg_0A68+^f;kE`1yfl~*=3w3%tzY6r6N5<TvCsfjO6c(>aH!9>lUAi
z48Smhs)%|pq#o`AHN?vj0|~{Zz?w<U%yY@M7U<no3PWVG56%=d9t*<)AXomN5fO0L
zEiF7ERBZGzksd!zbI{qteWi-}X>Kh7dMP6zqH-ZQAjADn6~1G#0u{}++8eh$Nz*N@
zoa59gtM!gMXQAf`qAMh|^v-0G90o~O8JVf|rQcT`of+8hoo0t$Y(P7|uNB~5q%veE
z00eB24BJ#11h31L9OkF83j79}$;A;tY^Z{X;>`Tikk%DiXRn!e+%$G_;#q>)W&yYB
z;fmUhzWZ8;*K+4y<Vv>?X=kGu2uF?5^eCzZM@`rDC^EK-NJQ>vk=2@DLz>V8Pze}7
zn?|IhO$}~OO<NR#m2>4!$KUZHE5+jPbM=w~<;F#}AiCS_;UU@Tf!5@Ws^Om)Xg47@
z;1{Q|+y}+4(8_Z6nlDneh?3Ok)VixL%=`lWZxnLD(uGtUC;-6IKNK?J|0fpxJBM{L
zu{E$U`3EiPQS+1A6o>!j%QHk)-hYY)g(y)ZmUTn|PDRXW%28EO=_lQZ@8RrP@x&SP
z`N-1QbO0(4akCU4T+8)%JXzH`g$O0w6@RH$)`#(;KM?6vkm|qZRZE<fBr!G+5}=6w
zE<hW?r49xW$wLkYeY=NeWG(B?&zYHLs()Nu{26~gUk8U6ioAC;37S2XJ%ymLtI%#J
z)JK>2Lk?v*h@E4j9+6CQmvo1$sH%)jUQR-l4-fS$PRs(AK?zTW^5`hiK`1F?VHs?P
zPiI042^l9%19*Ebr$DK$j~U)noH)aJhyO>7xdnkV&2U;V(-6Dx4lXo3f`ui!GPqqn
zz3gAT?2!%7GLbNWhinAMNPuz1i%E0&f{ZP9_+Zsh6PAZMb9>By+|L-6z-r8WCzLIH
zAb$2+zcUa~^~KsV8AJOaL%!4zSj6pc_~W{qE&fC8wmFDIczyWt0odTZ^AY&!$ZXzL
ztWWgZhmd;+JQ5w|&K}Hb5#LJ^9qB_#9*8bB7eoMc-{%qNpCLBPQiA9CK|p)HSe|xB
zqF{$0I`~~rp<SHKG4_YhKdo%$KTt&Iq3kq%G6;}1`bV-`R?`HGwa+E8=OZ!)@Is>L
z>fAVFoB>tj*?sKMEN1B=|1w`lYFtLg@ix{)d0{Fs%qDDe!J!d&U>mr=WC>LoAUn@%
ze_sL%%5;Q`@`4dCWe+#{!Pp**aG0`5A%cDi07a7fs_12wU7!*o_V+~8gCnf$>t4F{
zoH@5`-H?ai=UGzNgOL)2_*K~<-|`m?s<g#HnMNcS%&fhLjzb3LtzR>bFMpaYp`82v
zx-|;^l^TxR>(jCQ&Iv)T;_As)O}j@*EL|XAB$I6`<N36En)=kLlO-#GqK9L_q=Bpg
zek-B@_ouSVk|HLtS3}2Z4(GIsw)c0qUi?j%b*gnO11Iyl(Sn7BRYe7bvO%#We`~vh
z>Unuv56f)ak(6mC&Pa_w(Ji`zU&MfK`g^Y3e~2hjbRg2WARdw$m^m~KiKT%SgH<O|
zf~*2y-TmTS7t}5G9r)=*J^kHNW3VGWfv>*gVZZlw^%dk4`PXce6&nuBY_x~7uXV;H
zxyNy9*NSIZusB2#JrE;fzM7vW5uFK*+vE!{Pld-C37~cDueHT$8$F6Hx#R+=OE#3E
zX=Py#o3&Qs_pWs7uV~}6_o^__0Ho#;$oXRS$p^o~0SqpUTy8QDmk0hybn*H~b8P7|
zfUt5(B3f9ZOQuE*b;_3VqLz(dPlV?U&PYWkk)*v;oS2<e2()I_fo+LZn&zc%9q0ld
zM?xikcipy|1=>!(b&yy&FZMJayYuDGYSUwXo1K@gO3|DRm%--f8sdj!I2rI)v4X=+
zjp%ANiO<9x@#;}_@{EXNjqYuW|M#}P%6q?6=N#CNg>H;EFP%QtYYK76`Gx?6bLY%%
zphHz^z!D?1Cr{T%XEiToj<TU13Ck9f%jdLbgpEf<VoYVflL}MkTDT(9h35cPz@lnc
z+xkz!%ynfs$0_p~?ai#S%mQ}9oz5&d&`km2yF_TY#vtB2^ir+qyjsW}ALR;N{yksw
zSTi+>d8}PQJ@MO&<VAq(WRKFZjtk@HB9n}udJ=V{l)_A9aJ7w@t8u8Bl36s#^xe1D
z^iKg-sg~5E&OV|k9ojg%THvnLbsT@HJ2h<yIbNzhDu!61I**U=RGRY-4x|#~BV#Y&
zE=6yzQVHt}s-any77IOo-5+6;T+^_}+rK=&KT%(oNY{ve$x$xM#_dpQRj6z1rmW%j
z;g&dC2#U5Ud2HI*i@#-E$~Bv8bsi_asDc0uzX8#9J;5=V%VVelK3!nW|5}el5!G3Y
z-E<H=8}?Oc8MsLO<V217)T~RQYcyB~)iwQJ;M|XaV_WsV`i(sz0Dyl*;r|Vs`}cM`
z|9iNXHUCkFSrPw3A*R$LPMbgW#IqHx@fsX+F2u-?B>9(fA0?V6HhvUL;Dm21{Q2-g
z#sA}<h(os8)!|9n3SqeGmZ!t-F)TX#g1_(yKJHn>+ch?MEx?P+vEoFr(3L|ieBO}g
z#EKCYXpdX(LXduxM?$q?&5hSU9pj<<AbYA3wGL;u^L70UXZH^pfr^^NylcbFI&&y+
zisI_KXPA^~0x8j`-<9Y^4c0KqDw0@x&o+UST3oUc!1NxUT1~y;i1(*fx3m!?uQ=Qd
zD|b>HkxG$f0?xV%X|wRiI&T6zl;uO~idbt9`p#o7a2IE-C){xy3C_B;&|MlSmtU6n
z9*XcLQmoc_0qi&=I7hN^!NdxBuC9+{!`6dXJ+p~?GMx3egw^eySO4++_(07Mwa?;e
z(E7u{8$r9imT%N4?R_5<s!Z+h?jusCuL{Y}o5k$Mcz~brad4PDJ!rP>aM+6#YUjNP
zsx>{3#vP+~-`vrM0d|+7^L{yO932swCrdYQScM*|XEgBFl^cW3S1FNhG>Sfb7F-{Y
zM*Z#|cF+1JcWp_s2PPiiXH%k&wv4I%esFi~ONbux6A2D;HgFzjALdeS5d%vmf#$Dv
z5XwtE)bE6!80QqS#j`kR&nwy^h4762+Lvb|J}|A>A{A@KjD(ph4;=o0-kUJ=tiWam
zcqf2vPQrw*IAjd!p@sM-fjh&aL=?R{8^&L#0R{eIr4~Pi9D~E>Zo<2CKCD@ZlP6C=
z*8Dum(mh15%(4g05co`ToIs3h`(vu!G+Sh_9ND(b9*9$GR;mta4Z4YEv5D^R<9RR(
z(nN7l^-CkWvL@8w(D6am>06D?byPt{J~5af1qvQymDKz62P|E2qiX54Cu9@cu9^FS
z#ftF6ZftnJ&yG~*W>hl;4bCcVIeGNL#q)AE&CA?rWBRIRTvtwLKKWg<n1<@rM%#Qh
zm6OwQE@c{}la*}e61CpQ{VFcxt~~_EB#{!*y4F->jjY1tBXng{BdAJaFyXs3p@!2q
zZGW6fZ#fo>Z4>SJ$5{q7T%ttD1)<;zu!ZV=e6eA)Ngqo0x;m(Cb;Q1Xi$Or_hy%n3
zuMlQ_q5f4$LI^a0Va~`Bu-HhC<m)0K5@1x6Pi$Qh+@oB9Yxe7`<HjjS4cfG;>}_WY
zp;e>pV6*HuH@oNB;JOB;X{8SBmnF#WWNt05X{34BENt}PHxu1R;bG^s$iJ{>;k+AO
z2~k@cl5w7=KzUOm=<pO1WNZV3uQKc~z(P8k?A8zOClbfD{Z!NslB|t&ra*kL%B}Ji
z1UHmGK_gugQe65jb$sSuYVQM8(9e`yAF+BVNCYa&NsomqSyNTKngWqb<?BT;sj0);
zd<|U+!nfy}byf~B=BFhj3kv<g(UUo27Iisvfp(x*HWW#<EJ!viTzqDBQ&K3Z%iFX2
zo2D6NBz}fUb(6hz!yUDFQqp)?o!>VJi2pKFVoTMKja1|npcZzIPGY&T$YT1_jla<^
z;|&ohP+l|th}a;uI%d~ip%uleAeFnG>pUAj*^Mf+zMx4)aF@)sP4a-2OdJg>%PdUX
zt%>e*DbgttJwzmati(QCw|jYq%~fAj?W_P+O80&$!njlbRRc2X&C-vGq8?LT7d2(e
zH(d@ji;^mfZl{?Eo{p~?kUFAcuv992fr$72$R06wQQTIOSlEiGmRK>stO?P0l%KP6
z*8WwN5bRu^&33q-SI@Iowd9QiMs?|-=TE$JAb$%Ok<tz9Y^=M<-78L22+F~!2r4a7
zv~bHVlRK-cL$4n2z?gR(FLcdKNU&_-2A^r;!m6HWCsQ?Ne<HnWI`t^$5-xAbL$gCC
zEsvXvmL=W1!p<eyU@a-Yz{Yhxn~#8tjO_$cw-YKUO21q_GMGczq~3xJxYOpzuz{B1
z^Q}i5gVpUhJLA<bWjkksRHP%4P8=H655xoh2<8zeyMZIb{JRn9OkM^Nbc7)ir@rLi
z#}F`r(6BB|{}zfYso5hziwpK~Q;=qmjpl9nVwO5Km}?XI5LS?n-0JRl-U8fn_N+u~
z2&`C`HrD(lZ>#^vM76Eqv=FkSn*5vTqy&*_=$9&S3Ws5txzJj~qohltAOY1N1bANQ
zbg7Zjt}}mxBF$1;^HQ#aQ<qZ9-bWZ>%#xNX&L}9vRw)M~PuDlV%3t-jT*nRlZ6;ck
zZdA=Neugmn6iy?vsEouy;@NEn`nK+Q%C51-R)nrkiR}+m!cLh7)r<^pXT!3lY5Cdc
zlUsN`y%Dg5HLH9A^zxruFqkEx_P;C{0VHl0G>+uux0Dx;Db!0ES8ijV<bXyiA^bzs
zL)lI{V8;Sq^2j85D<9*)jnTA<tam`^mblJS*3`4-&BHUz;4{j!IT(*KdukGGL>;0!
z*&)j5FrD)#u)D>GX53P2Ym<e<5-nWoWWH-?gbb&&BCR4j1cT2l2o7o~CM?;e&HgBu
z%QOfr6V8&{7c$AARVbh_AISGBT`5eIkL^JMCDR*@{-$yQx;1k|BbTM#JThUWi6+hq
zEW!~KONH}`HREMqksHQkikXy;luX=G>8C4MU}vtN*_qcDP7i8oP$fmU=GnMmxazr-
z1q#oxeJvCvWGG)7ir&2o5bU{i%);T__S(9>FCpEa#}hg3nOR}W7h;{JEEfDk;4$LU
z)1(uWl1yCZ7dP<7`cOTWL(^_qT(su;2;8BJB@}IF|H|vmD}oF4J!QV619{Sv%bX_g
zS!Vx2FSRT_%?BE~IJ$FV@Hjz<(M!m&tp9Oq4N|@p;mEs6O!>ve>^!cNmBS!a@KH`;
zd{lp23q#|yJSyl>9`v+wQe$31^S0&nT7t55VGY`ir(TeoJ~Jwph2uvJ^8~R>Xg<Nx
zBCe>Y!Paz3Vlx%XJep^uMa0dc9KRPii#sdPO4CysoNZNnbfk!)dsMP0mg~#mG^vCt
z;WVm5>bnnaQJ218klMwfRGTLwoZoRABk!!FO!++HRN59|XLmH+TD?(<xh$Wts`Y#;
zQj5$!6{h?N)Ol+Aa6J~o?A|&F?T&KIP)@$6%1k;+XBN<Xojd(Bo3+gMAsLFaE(u?h
z&LREq22MfN<Dtnt%NeDH|3tGow=8GhpGwC9WKOhHNujmGFU_(lv?<LWCEvt2rY^%N
zh?I|KRB{(ob0yDTDXI5rp1dq<1G~EDtY@edh_`IBO(#v6nI84cNuPwIyYkv#Rfay}
z-*mFAU@qZy>E8qpl`*9)1!29ULv9XC^`14<u))1*)ej+`s1Eb<RPni2N0WgOSkahK
z9d!)%@<&e}oXqF#9b05dOp<A3s-ZP~GjtB=Px<M@3uo>A^&|Ss0KP_#{IR$9hQ-Po
z9I_)Xpad!7w88<7t8n%9&Wx#V+FrjZUKDW6Y+FA2%QGUzvs~N+xz_fwY6n*YnI3s0
z)uo9N^B^}jt(&Uyt7KejV$6N3(y{UpC@M_Rc_wDb8UP=1=F+mM0?*o|_$>!|!SCIa
z5>^YSm$=zS-iH{n5-Ja&%FFqKSQ@iK*kI4h@eVU&0nIle$%$^ji}u3CFBe$8(EeI-
zz!(ye(AT%_*8weC^6LkojasShzdTY#lw1xJbvXR@|12eth<fVrfc|we{aZ@>qbdKt
zsn*HF(Zb+A<r>$j3Rau+@V>8g?ViwAQ-7Gf)+KS!bs+;1!b+}K*6ukF#uQ1%O-r8s
z%B98-waAWxt?NhWC7#Ldy1DJT_1od^e}W6Na)AmU4w#X?!dZ@H@R~`+S1W3dK@byq
zYY;ykTf%~(<==$?>Gm0>0FYoABl66?expDpDyplRgaYyYX(1w^Yzz>*L+srlvH!jw
zR3`JxZ7Zlqp4(}^=jY=<t=B~oUGl^cFBSoDk)-Md98d<qP+0H|LEn)Ze35-*u0Tqv
zAi6%)N{<zt24$<@nCBqXSAg7#id_gqDW~kuzjGobTUg?-n1sQFOO`|6ep!<%usb|>
z?M0|{C8xGm1V{*$NNI!tBgJIt(V&<%0_r@7ZJWG&AK=BP5H;3@$!~QNn(NF+a)ng8
z2OK%R`p|W3A%8`dGKPFSRcbK9b!$H<+vXemE%>b}`c`_reXg^p-m$x0Au#E9^tvjQ
zHDC_hs}DD7hXt>=4aqH9%m`uf60iUrm9<|{;KYXY!{excj|kFmqe!W}8TGMSFVo8w
z#c-OFSq$CKr8buO9i?&pOrvi8mVuhq)g+&OEK+9~QoXIys$vSz@{3h2+4}+JG~ydB
zgdMXQl#CF5TZx|v*&C>3n>N<B7vu@jA0rbo<p5J3>}sc(#8BDpRex%qWjS}Pc72)j
zZR;?1@TJ*W?JsC)AW2YhRX9pR!N@b=qSegSi$ZEWB>Ug%ty&A6LXm%EEdl@Z(Lb5=
zKY!AH)X}!aZ`=ku>Tk~90mEj>a|Ug<+pr|cXIYA*4ADt`xb#}pWe90Quv=n>6;>1W
zYrMa=>jVz|@}<i!wrDCL{l0mxUmkimwBmY4TH|=Cna&@$9TUpE%Tx*duNkS{4J(3`
zv<lG)0&8%gN&eI!#F;!6gsH^YPZ9$}sT3=gI#&VTcNfciw0`c--+bfp#oStDI*6tU
zbuNHhyG$95CG6%4fz>FNi4ehE#3&4U16<RFh)yOp`oeYXgp$<Hp^~Pk9jg9FQRX>~
z(n>M%=9ts1#Cnt3<f5$Fbr9ZRw}v(2h_Qg|RHW;MQn<v^%u!tcNmBO_qtswL%7cFS
zh6KC}MoB#Kq|Dii=B%wp%Yavi`E%T6%80oLnZ)Fi8I7Yky-;Ju&OG1ac;Nh)9(=ey
z5Osl63om4MZdq@GRE*f$p@Usoj-b`BUw5v8U;Y06V{3S_gZe=1d?AZ&#@JhLhg6I>
zfYkab?SnsiH<Z{r=pA=2-}oRfDcl%3z(Y3lH-CfZzS{Qjvwy6a^}-en=rf)GfU5EP
z!}QrnlH4Ggm@aGp0QdglfE;-;gQ5GqF=ceaeH8GW1r8tP^MSs?y5)%)E#L_>f1SeS
z>%(<C*nML)8(0fR@!gBxew`bGP>$Nyk8kTog16(w*^cWo3uKLN69b_9EQuND!&c`w
z3(x|nj+!^}2?u>F+A|M*=eu*h%tsp7GeOt|8u0PYC#>_~#26fI7sH<+`eDn;pPt!5
z(&O_n=KC{3Q<oax=s={RV+AtA+h1aBU3Q{*)}YEc5wL)eCuxQYw`kUo7f2@jS*+8d
z0jhKDx<&%ULIUe3iO{%RZ=ncHLs^pt-JisB2Lo&wW{zOcF%(6@+QhFK3%tJyNH-65
z%f&#>6v2K7^fp8cQZ{JaSh_(RBS%cj=-nq(XM&-ah_nVdq=_6bmY<>=SkjVb1{y*X
zmo<3+{JT=s0<_HFRTvfQGRfUQ4wY-)GrY9PpL#6|<e{hm*Z~|eRLlUcU~l{<V_KQ8
zIdggp>!AUrxwO*9F3qqt*d*71C(8v{DpkjDWfxjxq<hs=E&yeKR2Jz+&-4KcR{1Wb
zE=}};WW(kwG^}rcA&+RzdxwQ_OAtK{Fh{iX^r9SKJ~ek8Ky;LQ0jEy;FogU8uq7xz
zazfeL0B4X!JYii^Z)7zj2B|vIc|3YZ(t0cu<24{;WjbHV{~Qq;yNL+jvWLE41OReC
zzB&p0AVNN|9-Q4;l0{Xz#k2?5z)2W$6sLJksQyTx4Da!JH=%42LQqxb=FaLTkvc8p
zFE*Y;=_(_UO?U*ZCwODYW6s0I5mz7(4s^Thu+?pXjmqd_HzY<(MPUAoFJCOwX({?)
z7koKKjeWEOB)#5w<)WU?FT(F%aJV8UDlTHF0uSa)M%Kv^7AcB_!x!_88mrJPjyYXh
zeK~|lmiGi3V2Y4xDai=}YTh~H=_yMSYUcIu3DW~v^{C)u#0jBRv-ZOh?ITkD&QPLJ
zjrMvpKo%Qi+V)gsTP*dBKQ6dk#wP)A7n1iuNlqg6Je&sTB>M3z0op%N%>+9eELyhb
zM5cmbHTcQHBTS0`q(27V>Hp-wxcE3!P!v)KYJ#}#TEf6M6L3A%J&Flcl2?2;k3SM|
z%fz*O^O2%}>w$6uiq#);df#sOE+*wsX$<7WwN$-oVDk#~uK_|GdH|Ev73ahT7?6&I
zIr8WUlu1f-WnJv9bR*Z((oXbo<i;^3tx*`FVFat@y<%m00qAU?E_y(=#LGs+!3E$a
zjvmRB0;^q{+L}mb_1glm6^v#`I8FuS<}9%hM}SdWi2Czd1WZS%7pw^ukcUW0Zmk4x
z8>#E5@RlA=Mv;h(;jAtgsr;RjE0%q@jChp}lL*6U2vv7hDmMQ?eT3FN%xr8*67QF-
z<I)*L+UFGy=#ou}H1G-lukFm}09W;-+3`Tk1km<DnbC0%<nJJr^!jv;(c29$^;LJX
z6}LB?D{OQ&cQ^e%gHR!jD5I>i(~)9SOsD)-<PPS97%^=oUq&M4k+h47OSGX}V69QW
z1#X?PZW}9s&M=^T%qM?Vwt>oYuqf}E)q|pktl9{~2&XHKB#qNZ1!y}u>#A6?Q}sF?
z!vw6XgG_$wxcl}MNl=or=^TPBa%SB?*E-;bxxdsL20&q*WU<yrKxPE&QCfXKTZQMS
zuZI+(Q^rz*6eq51`=KB<M+>DlEYN7*dx~auvpQbfH?q<&iH1c-66S|71XHEX^7~Hk
zFc@UT-kQj&nXZKY6fIZ)g>9cyJJTw-0q^T-R@p!<h8)dbRb`h@Y{B+v5lUgZ2`v9C
z>+)7H|4?~>B&v`y)0L@~8E*u6gsrvAtTdm`v4vEAqpn{yHC)#%N$ap@uY(-8S~Cx*
zN1iwdr_WAbvE*Upzi(muP{*byGMj|DX2)HDM6#`pfHV`y_Y8Ack#(@M?k++63?y}-
ze}W{F?`DP@O}{|%R?>U0VjVZoRSgdGG=Qgt7v>c&*MLFFcKluGFmMk<HBJ3XV<3ij
z^yrLJ<uglK>lDoq_Z12?tVc3oB9H|>HQ-Z7jEZ5jmE43l&0R_fP+e&$NHaE4=C#yO
z<)9IDVki7v0qYowWXeP^S?2xO+?58TwF@aMhW+qF{cg0p77{TVWWfkbTVyuQRp1Ko
z;7p1pM)V3Fo9F*&{pj$tOfPru!~f*eAjiHR1;cxsQF`Nv`#|Bw@^Q|=`D2E*<9J_^
z;BAqYEJi3%DQh8>_TE1LbQlNi1-1;OCfR1HJlVQ@=w2-dlX9xx$8%e1dD<L$iqIvd
zL_Pi7`Z9DsR($%F`R%Ej&>&~O(+=DLmDDiXuWvw?i;s~Lrjb)$eb2yEy_^f%F%KEd
zHnDG*v<JNSX7a2QO%&@kZ0UZgQ+Vfg_&wiK4`Y{eJZr{d+sY~Fumyl$aSfjE4|nWU
zW_t6Waj<yWw~zOZ^}bVu14~=4=f)1Ln0mI+@<H_X6}Ha6%gqG7lh2{HXB)KIsbgf<
z4i$c4dYPcwlPj9Wm5tOkVeywY8;*Pm8wwx(lokAJQ+I8v+3us^gkzRG5~3q?J^6a{
zTe(&vX93%5l}Wti^VhhU^}*%D&SbWP<>Uel&`AKe=GSfXccbVR_J0psZ*VRld&mF)
z_}Tyf@c%PxIony8*jjl0H(r<9%4w55arc>uUb2Mxnv!$V!)&BO(V9acg~o)$<Fu7j
zNi#B-T9;f=NYH^<?Q^#d3l0chK=Ofoy|ZfnhMW|T8S`7vt!P~Ah+D&M@y>Nz{IXky
z_Q1NwWRf`altF6nJ(R>^g#e@E$kKiXPxiw&p*VQHE}9sMF+Dqp{K+DFUi44_aP9p5
ze(_(ng^X^TUL)k*beSM%?Uof+U^b3fCqx5vK$@B$E7~<2E{MxG1!N!S=lQ@N#DLU3
zKbU4P+IT#0+k@gbhF}svHvTOOB_?AO9=Y&jSgUcT_>#Ejh}KvNX!dT`cyJ6T70^DF
zx#W?iL#8KvJ|9^B-&Fz$v^l_|JG8HUq{l;uWA;$sL2y6k`xJIsi>|*p5c!U$Oiyw!
z!+jydXecw%WRCAy()gL<hm+kFcws`^;ruQ*+Bej~mCRnRgy$d>Beo7)DBJ20P`T$a
zmbRSu?L}l?yn`J(&J!8H>1qEHFvjcd>j;`LCr~|r)F4i--nKS$=<R!Z|MO@S;8gx-
z(maWO`%T;|UtiEpSO2p92ORI?u|DUO9H|ZfpnCkz?&lyyhBrSwWQCg#y#G#D6>kT2
z44|~#8yw^N8Xw+MEvNr|yB{y;3+%F95d#NaK=ao%7{36X<9ydmj~ModcX{_PiO-n~
z8Bw|;G*s4>wu}Q{+TlD)2c`_XnIqHrAaaid960bXz@`NF$a6rYk#Gl_aPUl7&^-L-
z;LxH2Tm$;ct{%+JYuKp|Hs`_jzbX{x?u;=&oCPd6Qufm`Q%HUNuW(>c^1)vJ@rqb#
z5NUSUZwC1N&e46{4ec{l%xP1nOz%>MH!c#i!9VXj5fmE12qN#=9?%<DF(R4O5Sz7w
zZ>hmmE{Ti_Q35w&R>{V67x7f_Kd>3LD+p()SBRt+b=FzOazX5u3w6B5LepUlZG|U1
zMhZm?U1xeQwcv|C?t(L8zswR%LYaB!zcKf(VqX^fa#+5xnPR_|Q$Mauf+NTy53Qnj
z=Juko`@2+cuf_L|;AiyjYrq%T35#H39N~S(0Oo$8xvcPtzlN+Cu?c5pM;eFT&OR|f
zZlbwtj&Js_h4bcb327!rq`f6q+olcq=f|Xxnk#`_{D-}r7Jn_^+x>@l<^)I1ET_kE
z(h^e8<ZUhCk?;59_TW3T2H+~Y+__Jc?tY-s%O*KU9QLS}=W?=9<OM+L(SUCj*o-@i
z9T~e%Y4p0yjau%&yDiR5m@?mSW4p!8M-rGg15^Nwz)?k=Cw`O&h)<x;0;fz3up8H_
zhx7JQ=FR8FZ;5pcrk<E05XAB4de)a<NO>QLBl6!DqWZK?dA^K8z}{qNJO295|Db%p
z1h5xo8AlE|1FVJU25%Is!H-}(8s@n^hLAURVQcx1I9?pf1mc^4JwK4fur^;}btMg9
zdyf5Oh7m$fpw?Wgk;&~omRgMxr`RlR2-(E|q#=)vgT?kUiTSG)8f|JdTLvC5KVc>i
zG)-f=Pgr~|FxPyeIp@1cT<<Vr?-pwZ2V`#X7gXtC58r&jQQaO0GlU9X$Dts2kM(xD
zwwtZq2zc_Ze`(tdc{}_)g3{gNJjS}>N^Kr5o2tmjY~mB{gHuSYWQ_c@=@Xm0RqZq}
z;9xvvBns^uT)=w@ZHs$cY`vDK7%*V%__MkL{sXEHp3=Q?)f^x2bUH72=AyGw*fAVy
zYGf$TI38sJ$bO1?t5i0JCwBbFVYP=aZc=J)r4hfam3o%CI@+{t!!MiEB<&jMsbz!Q
zk9GiTyT%M&5k{=}7UTSQ*@0I>ComOImy)<IVFFJU-1gI*-hf`sO8gg!o8#p?&?o?A
z9xscHd?O379UxU(F2ceCk8%^q$5?$@2yOsO+p=vMzJsDWf&1+Xtsl~2oz+Fq_W7uQ
zh4Qx}WomKiGE5VGHw<9T!@$)rN7ii^!{~=I*#=9wpVm??FMuWaBh9b!V%jGBZ-uYC
zz&&L*nbw_e@5>^y#I`yapbi<q?$UnSaof1w*!VredsRCR%In2Th1QomsUyGL`1#{0
zTr^21_GEL4oMBNx3a<Gjnhg>gO{&7gCztg?G)dDtDs}|sAqWHdFg$mBK|8Ct4X%RR
zuhj=JB%e}WpWFierGMU(JF>O^9S<xZ(7A`O8U`TRM=b6=I4|hyKZobMiSQcf?p#Ql
zudEp`Y?0^?m*5#_iUI#)V04m`@dpelu=Wso5#FEJInaz0o`GTy$$g5*ZJZRcoql1L
zRd>ke0%YI=zFQ^TqQ^i-kQT<2hw!PYEwHajh&Ly<w=W!b6o7yjhIp*xH3XHOLEoFx
z<NIrIJW7eNESr-bUK&A|V9$lA$NM324qY`4VGq_5p1-gPZzDS@i3`>>Yf%l|Cmgx&
zi4g=Z*q=2BmmV%HG!}5+Gcg$G&y*F&I2d}m(MhgLBo9aHo&Yg_D0{fR?(XE<6>|w=
zIil17u_)UX00P;4($0}L{hod9ku@1Xuz?oRd%VK~e!ss=A24uaviLy>vKw0b7d_ZT
z;gY1MrNQtNoFPjYMsV;_qK^F+Vzx=nLUd{063VloHg8&#HfHuvpH%{J9&6d?=wnA3
zCszxIiZI#Gka3&w!@Zidby637B!JX_;zd9Rt42zJ&437bBG{ZlXgz4cfg~V7h5dp|
zsF5oEMsI}<G{ja}(xO_PY;LbB-T0IAiC-t_zi$_zg-<8R?j%#aceML`&CU=)dB1#5
zgdo_t=q?-@DYpZhDEJS%G(WL<j)!FrQ8OxaL7BAyDDt2nDOPHTJsGPv;Y-|7lpP>8
zQU&)QMMHm|=UZvYEfqEcFnjthd@H`KD3$)v2#QHa7L;$>hA?&Tx4=~mK)Ip2?ADF#
z#-|Q1#+$yX9$SZ7Otmvkh*dexSZmG=v|rh|E`{6``C=|l#-h~8FN|h1bDo#RnHNGk
z9<D`%$M6V0I%%7OlAa?R9r8!4&Rc5ic^oXMD5t1ql@W0Xrz@|7wId@1vG*{y2vLL3
zl*ma+T>uHkPoWReE@||<`w3l-va>b`MroLLyq<dC1%G`IxGCke{sdrB&NdJPYzHdX
ztpfIJ2?Y?JDD*R%MWn{W7lU=3p7~G(*bs^Z?31k_-dBk92h^S*K~cULq^@4OAlq}f
zOYx%?JIDw4LvhSR|8W2|Hnc4lm{c?a4ut2Os6lcl?nnHYT}k+spjm^0d^>KWipXYY
zyqsJ)3POg+d9(N(v&Iz+X0~)~Nf!DX2tU4n4hl-eRIZF#PdWaR2N>7(1cCUqMz_Ya
zg=O5nH9U-F^<0f7@Il=VDwrsTlOQN)0D{R4+(2zpp>+niV5q>=w7i=SNU^MaXHb;E
zEq0!(IG7eusY3`=6ilG7_Tl2MKkpkI#Hc<2;$1i1+c0i8-0f_fiB3>_Ir^YW%D}B(
zalO14_&V#QDYUyq^Ko$nFFtuK&#eY&zX2JP;MUT);GpoD32-rm;?V$+Sqr{RV+V1q
zz<YoTfX}gw2r~1iMoC*t0Q6hiPvWR>YqTXex=4@*ym}b-lR%s<HWckJ2i$PH_>D`d
z=$iAeDXo2D6^*}%K@$Repanp08~lzIyc=W@Nj&ywNQR)Ub38YwpG|<T>OzivCyZ!K
zNKXP#aJDQxTA})m+9NK!))z7RooX1TK6|A3-M2Fup-#hyVemaZI!aGakG~<A)Y>+z
zj)Co&nY2z!pcDHJdQpemK+AnJ^;KC2&bo;(CD_<E8(zN-<|}$nM<xQLU1C-i=UX$D
zft4d0`l-0t5Iako7X}tIgAs~-U!Oz^d)U1shFwtUg`AX_qlzn2-XQ&RPxUpxx+i;6
zOY6`zka+U<*T|YY{=f<JvW3K6naR{>`p;u?7KwDx*b0h`fQJ0mrHamck^RWIj8^{k
zKsNZ3_yg?+ZB3G+eli&eHbq3Xyr6G2FfC7;tksYUy);21;SS>q#|di9#8;DqhCDik
zH2N0urqqmtZe!p_#3ue{OP>mFdd7_MLDU6Jh6xJw$`^_dy{z^5cFKDHAfa@BKbVhJ
z1+`u+hNvWK7%giN^b|d6q6sVKMqAaI_doh)DwwO}6n*18ldf(dXs;0es{N#(<GLXv
z)Akr*iuMzXp>$LWW%|Vw*8{d0qS!##Y9*4#In6f$Q-!Ge)o`#Ou0I$5`3iOHJkd5N
z;{dLOfL6`=zpytNZ$xMzzZIgPWufxwU|7l4mIuPcGHOCIVXdTFpAAs*a`W<D0yUX-
zq!VDYi}A}XcvYTwK61P>34)a?HTT7QV7w3P>dXXeytx$EOcMKMwQ??6VFo==@4sYn
z94iF2roumq??UvxIzo`0PdDMg?jjZnK&}iwGXMfYB-m(**Iw8+|Jbul=N_6zjIh-0
zO&sLMlQoQ>9-g^D;G&kwM|AySOrYqyhCbP|h?2vK7Zr_p-;dj2%#N4A?Wcnz>(CS{
z=(`)4KkQ@qWV;#1S437*6*e4n<3yV_(+;`=-OyKSt$>Tpv`IX8Hw2PyJ~hoP!)9RW
zGLT*3@>Mw)i$N7UtHeHgX+;_zL;N{*V4I1NyOMm0cNvLP7m98JJef>LS#lmrtTkMy
zw~!I`pBW4WIA2Wqs(ik7(=j@5v`pN!D{fQf&?l#OJ^|cq-n<PsG<Hr2uinr83bY16
zF9puHza~=_C;;|r30+w%o+7dx{!-}HpSRMEW|@4fH}(!XR;%;pbZlHmO{)2V*;q+5
zyi3EARwYE0DIqa0h|KXl@#bek*})UVEv9vx%;~;RSPIrxDt7x=nH$QQRJlLgB0iEV
zl&ad2KE{%N*%(E0!(k4usb<Sb)ad*$Rw2A1drHCRfsrL8)tTvHuZWBpJdpLB*#j^$
zCA5~i0tvm9GTWmYvfum|P<5wGlR5IA^*OMHV7_Mpf_07gl&mp_{^P8g+<4%Ur&R9k
z;aNzwn};kmU8JdawCP@xufcv{9LRJ+_1v}yaZLE72_b27ow?bG&=TBV#o49QAiYU^
z)iJ}f>W07SMr)rJjzu>a`>;rHvwj`;ZUiH4K=lv#*tKYnO6SBeki2q4G-U<*Gkxm0
zevmp>Dd#lR>-AT8wYRpmlN$Gk%on@rA^?oZ6~4gu%yrQ^EXV2^#9z$`X|@NVX&exj
z0bo598N1gpv&9{UpT@VGGQ+VIZWy*;h{t(h-@d&Tyk5q3csmOHxo<j>{exvnm;{UO
zqXWsTLK`Jq4Ok#gsBws!euxN}Gzs~V`420vOBy=_{Y6UVm;bVkm46zccMD_{j_}{J
zdOn?(`Lo8Hd7!cvcm$pQ;_94&GmF}F8{4)z&KGoS+qP}1V|HxYPCB-2+qUiG<Ui-^
z+O_xXx?ELruJz72p7E&R9O_suC;kC94s~hS0AQ#tsKxP6^8t6^nQ%u9;p^)!48xNX
zyI_Ft>;KwB;i48IIE90jn<=|D^p*IW_Om|top#tR6HipEp=xT5-HdZ@{pUiK-niO(
z$aPN3Bd2!|lcykDvAo~QemMQ=H2&IP-Zfk$IIju1=mAo1f0Q^wR6KcigcE5Jry^d<
z%t~1Vx>>2Qb>Hx5Fpcdf>msw3=s53nuPuej?I8Rx{=q8x&%c(`2X=slHROUXW$Ugq
z=(+l4+APxiv9z$1yw~ywFZ^zkAfEm}3(^MkOKs>qX(64PQIVlLnU#cI+ui5T-n*(-
z9%^zWq~%lo3eI`ob4OR*DqL|NU!^57mhP(~x^Hh7pO-N2j5)k)cT!qraBciE$3^ak
zj0!hCk1P4u>+ifQXS5v19_1ID;sXc{)VjFfX7zwTo93n3v40)uFwd_13Lm}ofF?H2
zwl{Cs1SNL8Dcb!{8H#yJKvGSKAq^RhY`r0)uDq&>tJjWkfZ(JeF^S_!stiM$jZ`lL
zXJ<Jt5r^M(b@qf%^1V#;Ta36r{C!tl?v}o4U6082Uc|{QD#wtH>IQqc4`MV=dJL$^
zwR9Xtg`)MZ7}#pneU&|v-9gF0wgk*={*ckp2*_g-<fFhl6ii?8AWuvsJ#OExhd-lo
zy|pKs9h@5?4sF_#!(qKI17^B~YIIZz<GxxDH|65i+lX8x>IBhhoz}cOpBQzo4-dO0
z^+5OAWEs=4dVHRrdxxjzcE)Z8jD!O>+@6oLsqYuNY;hzLzL-vOdRg3_uNRNwnDlbd
zdR`S-hpV7Av_ljWoW_UVSt86`CQ=1sh*Hr9afU8BtGe9uNgG$wnk)~oaYt&p1Le*$
zU`FP#*s$cZk%q?jwll5}&?2N)*MFNbeJB-(f9QRQ*u8P3ke8^#4>)~;O1!jSJ1iUo
zW88riq`&>e81uc7C@5r09i|gXAAVqJ%)??TPe{$t0Qi(gF?BXu&ZB21@y-2ie}Gp`
ztTE<kEjvl1jS|ruHcK&3cPUwgUq#;y-apA`(mf8-FwSxW8dXB8UV1$PV(dmoT5`HT
zk!<B2l1F2i4)Ez)!!C8q-(gp>QzCv1t3~O7?ygS}KA3f9AD!fUM61>ZP<L{x?27Kx
z_W~vi&2m0!{{%a@j&UI7kH@kaXCGNcT8%)I%p)@cat6AF&EdW+T7M6)B`_X{C^)k1
zLsN^jDis+nM@TCyMp+;#JI7u1owcx2$&_ywtPUXi*zM*FSx(7AeTBt);QG`GyX5@2
zk8y?;z_d#`(CT1Ce8(bsd}TB^VKJ)tQ0wZ9ubu#ICHiV5S}PHIhwU1lkRbl}%URP+
zJa``a76v!JUpxtrUS$jl@TEMB!Lt3*DbhT*Imu0#tdVTH%WxJo)Z#<mKC$maU=7N-
zqcNt6;!o@f>Q?iqlzj$Ds3X+>_o3Qu0#QtY`ma+gYxGE#w2Nt6Y->0QfH2WG+BaN<
zw(ZiMe4Tq>zT1womqDqTF2~TI<Rwu^%8vK9TRI+&wn-m*y$NuY_d)I6mKQ5rnb7(T
zJJ;x2bGLa|Iphgg1-4eeAo4wK9chb}=?0;gg#(33?(Wl72-Ft&O?=?~w@AEKFSaiW
zj_->YuMIEO$7ZE?*x%N<h*8y!8WM6t?5tzKUXtqo!<327kiwKT1~-DxY<KR&xkxgy
zG}KkvHbs5O_0Mgj2x9E+aUEZlE<VZIjqj_##uXR6UoU5(;|u=ECZOcY*Z!!W%Z(~*
zhk504=zpWR1lG(vm_LyUZ{`0^RyaEv*g6>)Ia}D-{)c41v$ESCx^4Fz6s40NorO-R
z7R~B$p^KW0pugb|`8i;qbTFwEi-RFtq7wP`Jg&8)Gg&>hiYNKfUpctCn7HV0OCH|K
z-?%8h@L3Gq9TfM{TFB6;r-pUcWmaLe%cv_K&QDhC=<INJdi;t~PfjvF7#2;Ga(Mj`
zJXjUPXyoS9R6W#WZkJKrh_LRYsu0b@Y_Dw*zvE6jb_8shx-el}v&yJqNbq8?T|y9k
zEBAbhiCIqNPdK&q5I6ow#&{I=(H2iX<psnyK77$DU4K){q#MUkxNQE>9523yt9dR_
z>n+t()rfDGODE^!<jf}<kV!&w5p4O6MH}s`l#K!VD0HNvPAja#Sz^?S9;m1u?7`;V
zF?eCZg8QPrt`{U_-dE8$;F?{@L&egEP?J!Va!_GSvC==##E6pKRz|muWyi>%Zq=hG
z$*1%$LagItEVZtvR49!!NRr70nBSG9rkK!84Y*0@j)T?;>$kKM#EY38gn@n=!|j_f
zX&bX<KsmIc)n}9^)z_M<qSSzWz{b<OEc4s%^dXTp#Py(pH)BZDf@(4mX#(qy2=}iD
z`h)vD6;9%6R)qpiX%}tziGVsH!atxuBKNA)9I@}p+7$zEOb3~1_<NV2_ZXOoEGka;
z*3joNw5r6KHId2HZq99`+szjN?%v0jdyUp><v`@&5C&`B{W%7V)#DvD2Z;_s2BX0B
zAs3i4nyuRT>AWY+zqnor{sN`M7U2Z(!!hS9ic-dp=J(KPLfla^{L`kmAt+e_`~s~n
zPv-_oqgJfdk#N_+Mq(COsHmG%`kjKXM-@6OgBCyXvB_FW!(3kk3ISOkI{Oxyp>3Cr
zKc7Y`WVnzBF@TSRMFK$#^5UbEgs4HSL`-PB3uU*uRV@rL^qVRcZvnIifNt%C&s#Cc
zUua0_$MFj|dt78LAQ5EbN3yJ#=+{9iqMi%AsH7AdZY?m!?!fvI|6EIQ3e23kDM2=P
zQ4UBH#H2j<Q7ta=7n|G)#mCv%1BNDHUUp(I{iv<?qwP`G>)!mBt?Nw>%K`Sy4YBtf
z8zg_=sWml<G=R^nHF`;FDPJ&#@_4P}Z-o=QfX<pK3I+V0>&gZhGJ1H6$++qLY$8+?
zH|itZTDC4k5nSl?DS`Z{UUAQ*z0}xRhxq7k<m6W4R9%&kJ)2EK9#Ou)gB{x@sc9oI
zrU^0*3|^zjAfBSY8ftd_{)+wPuI9me#w|OA+Q6pc3rk&&+cZ~el;im|!botI;sUJ?
zl8-8nD6M}}C0q?2>2;61!t>CVHrkA&a_TDz2Mgs@;0=FOBwn8g2G5{Z`J&Jn7h#=N
zYv`vD3x)F%LxUXhu(ymP))C0Cmuq529RxK|LInK1f*E>3Hsyp@@2TW>>aoVyGVJHo
z2c#<zgros6XbEFr3M-gYwM-j~r-VNY|43*FydnDtRt0Gbjz#jqL~}+?g)t|M<$1ev
zpcvTo1kCwvX()EQ>Vt*Rt}Do3jlV}P1@v`H67wxrw<e3@>Oj+Q>v)s@2cm?g9%;w1
zHa-H8uPI9O0U}>d9uvQM8>Li>9t;mw&I$C%f*&a`_GSAP1@K8<2Lo}^0T*!U?J(Sn
zLh}2mmfxKi!V^=iVPi1B3wKklx5jwV83%UtMoeRQUOb$^)wPxa%`JrV6iwwfYY#FM
z;~z@}tirE5J+ARyq~mV;RLyvZvhGh}B~`6p=^I=Bi5$Te!-dC0l-~8!mrdZ<^>#|I
zCTj&E9biv91Y3K|zZi%tIY4;#cIc_{k(8>jj1hPN4ceLC?x*meG>ERKfx)yb>rLf;
z1wGu%&LSEejBgQTbpztV&_yR{rS+arsy%`yen+W+%n$X@2RZsZ4Dw)DR!|X#2R;E1
zfp^$Q7ArR@0k?RwN2LcI&8q@4iN{EvR5doWlB_pq#dh!r`q5mh)_cK(-ilM)EV9{m
zZ|nR?=f!R9PGFoO@p8fVxQkAiCKL)C3WUtiPqV(hk5^|=36dh0YNR52GIO%v7yPXw
zD3Lu>FgyYv#GO0_j<W1j>;~L&fIa<T4t`VEZT_?QA72lF=I-sD)p7<laJX5{ztRNF
zH-qSXP}m<a2A^LZ+|k4j*WF#SS71s6T%ZriWzD({q<RASrsc&6<9bu8!9AuURVy&)
ztOOS<gVeKfD`_;FHoopIj<g%Hc97Ak+IM#e?MzxJ5)$FVnrt!O6mJzmyQB!Z4su%k
z3!I#W{=)VifJT&@t08xr7b7hM;S}`?fwYHMEi9_`j@5pcOiqX6PDcm{SZOV{Ulx{E
zLTPX$p|B0|lZW0F`GkM!4-6wcW^B`<t|^pt#g*2B0?SJSK31JlxACo{{V1J#sff_&
zt1$}U409_^u#n-!W{J)f*LdFz52FAkf*&-(a}p$PtjIEVIt?PHS`9=vJX9Iu@#sy?
zC>AFSi)b&%#D_ujD)BQ2f<=aYpB2Uh(A%RcjiDg$xy~xc6nGLab&8P)C^XsWLMlX=
zqQaRnk}_RUg2~=t-9Q`2u{Je>UJ5$bR(c)T$`&#=LSWnOi4zQ(ssh*DzzHFxEZ&!J
z;#GVm!W;F(Z>m?ZM|v9;xyigc#AqdC88J~^Mee6iIFZvcJ6G`L3)rh{DzltbqEegi
zbujcwMceN(u2-&umdDT&MN3|Lhj36Iogy)YD$!wZW~7Pfx^@L{5yO%okxOu_P6s9%
z_9O4FzbRhQyI8h$Dqyb}dMvC5`avl!Wko&xi~-Y{#a=B-Dcanme_$s@DYZVwWWrt>
zdW;7K&WR{)Q-8{5L_8@7PfF+If^hFsZcs(qv&YAH_DL2fPcWH!>{vw;!g{r8OWC_2
zuCmRA<!-8YU;6r$pC=4v8*0FSh28Qq?HE$52P-QG>buAB7tPF;j1q1!uD7#1dx1l;
zk)ghOl4#*Xa0KF>!#JyEPK$+d7VFy3IH1~|dSf9H%nt8=<VKDa8qjD{WCyb>F!qY>
zl{-v4n%^2}2=_PidoBR>Mq>oXzYKbCVsHjGt@9<rN;rIC0ab8>2D0av^}iOUwJ}%+
zk<H8;hRmVwaxLKRhbm~fou&pUuG3sR($<&V&L+jZMlYC&+Jf(SfGo<bG#ABL!kabm
z_FDljS)vmOgOF(dCa6pm=KAhA8*u&fUU37-=tD4Y^Y(9;MABJU9JySc=4ohS(Pn)A
za-rh(K<Elp_pe_ExFj@EW$($AWEN%-6k=ox44sB4DO7|YIP=a*+CZ#0aBWkRHaHib
z;^o{jPnhlMIDAJnGHm<9iOQiY%-WJ!aifZkr`aXwOiU1ms&@-Of@rBpR^lQ+r(0iU
zTdKZ!aZV>QI^rF<k?JoMP<pme-MRl;J#%c+uC6bpU;L{=XU-p*mvXCYHNxjrtk@uQ
zTpY@ca#uU+vXefh)KR0AQBKrOyeP3&JRrm<ZRKk8+io=0X#|Qx(Z3g*0M1N(bwDvW
zv1~lU>32qOEe<}yq-h@>{HZ3XR<?49m5fQn_?zEILai}$K*WoFniHK#9%Zj(CJ6{C
zb8f-;_DQC6b#+AX#I{NNp?eLidsW>a3|{h`+SJ-oYHngc$vwt-3S2BS4DhD4-mS;<
zkly*_OQ&6@C-=*_gkQ0J99k-PA{L>|?D6gtUz6ts%Hi7Zjj~Yi&BLDZ00NuG0xlM<
ztoa%=QvHA<NKes(u{s-BdO0$Ttz4AJDhBK(g}~$Yf~prMMifu@mHMf_c#C>V%d<<}
zKrv0_*c=svDmt`Kbud3`#T-UTDS00Xb4tYlaltS3*#I;^eL%A(A|8qnV(RH8G?H>7
zE`q)wJR}v>@ppX0kQJi9ng8en3=K36O2)-!(o)xal|<cY?!Zh&^Z;0iI&$7Afhj&6
z8yNoTYyO_0aB#e5Mg=8RzP6qkEEU10P$sWTCI~Tyc)opwN09`f)mJ&j2ozkAi0{Zq
z#0b<aBMIRf^P6XyU5^^|+X79-&*nF8%>f?6UZfcsPn?}Ask$|acog@b>@}Mplwasz
z+lj}2qCjStpzLQBxC_bt;LCLL4Yy$}I=+<1NTyBHBfQ>(Ad5uzqTb^v-fh2NtYquh
zYMp7Xt*}da$6#;W-bt~%?6Vz{H)-n1U^JJw6#716vIWV<ZT3?z1Z11~n?{q_tc^a5
z2cEpCn(KOR$72OF%o$9>Hw<YTh!o*Xvw1?!hyDBb;poVQPx|9@!7>??ma7EBG=o!v
z>S*;-9}Rp-u0*FVNxdBetSxr{OLX6mXNM4-Rm7*7zlQn2{@KqFL<Jeh*lp2g46&dM
zDM*vwy%I56^%p87UGI_)X=zE`)Z=*BI@2pV_%K5@<w+k$5FKX?6C`mqavjA&Iha#y
zZ7(mx@zNM+5?^z?jqwNwc#{-r0kj{)QIEYn5X}WMr#oIyDbFf`>v<Z6Vqu|#(?_@|
zqJFnketQsg#!#eqi73u3`kIvcusQE{w%KDv%WqeCQy|^z<}Z$;l*~A%UVhAVc1eE*
z{Sb}E9NbDb%qTVBW_e5PFqCJo5W%5H1MDHDjfXI`21%XI%nKu;U+vR>1_uBO6{QNb
zV-SX4P8lldb_&nD)B<oAptoe9)P!oZ_2ssaBnX@g?PCR1dP$BnN0?^11^WZ8L&L6h
z+iCLn0wLC9y0O&6ybU@Jf!?L|?@BA94_}*qFoSoU0mVix6n)Oca?ef0ToEWV{-y-o
z({;~EVQ~#@3BZ&PK~$G#LqWRCSa%>1RGqGqcy(7ct9PlV+)x=UnJV!5i&;BnEWP?-
z*N+_(&ORZ0@UC2$gF<aBmO&dcDBP|&43|g1^INcV1X1P><X*`prI&=4*7ExV$?bg6
zpA09B?&6mZ6RrDM+#<z3aTD7PT$gbtdFLw*(<TDXKcF>Thc4DxvAe~zEdMiyd3Dl$
z*pyD*x9{0@XW^aIZ92D(cHD=``OmhSnE|%UHNi#Ne6GG%?rlA8c8~97h)Pm)b~WMl
zt5%E((JJWCjpko6G2a{Qtbt8KNM$RZ)R_k4bXI{=_O3V_2_#3PdyHL=@UqB5J0uf(
zdG{3}Zr%=EN`_%&eVgk#Lrzj$o43$3ai&vQ32C4lRP`n=IpG`Zg7VYQc;{^MQ%@Gq
z2OI7fFZ~1~rk>%`{k)*jcuERXOxSaGSj{zZ7Q`^{c#WN#5bpCIxgb=)fxz3I^|Y>w
zhEEO8X)Sr}4q!4_N<-qgcwbkozM6jI^A@yyM)Z>GsfNebu*EZ!%v%x568IW3N6rPj
zvr)TiFv0;+(oOF8fXRX6Jy@R)?XW2{RLR-%R6h)t75*uQP2KI?Jm84j`#xxUDA~mm
z9xv6MH(z$RRAr~<ZyCkE5<M43Xi(#`Oip-oYSRP80)~1s>dhKqNW3~~G~0Eli_jME
z@SOFX{mRM{p1~)F+-HXtVBBX*4b1Bo2Y2Qb4nMz}@RI`Ofr7FUVf{{0j^kSYDc--l
zE`V#1PDm9oB@4gS7Mv%DU>*TfmJJl9K|3Ddbl5CYR=WqWwvWpB^FifhMvQsLj~P^+
z^mh;IOD*B%5fsMMuahj(il<hg37Tisv#tu+5CT2jCyrz7*TL(sRNQW(Mbai)E9zm>
zCs6EE?xoAj0NOHH?cbJd4!A9XKAyX?0+Kg;ZE0r!v)9Lt=>YCg@m`PX+JVbws!lMB
zn6r{jp+Ils1qi(3vx4TriN@ded02OQ^y7<WX)}Qq7YUhx=4^_u9H%kc`OxM?kC#QM
zBPv>!_C6XD9Rz1)53=202nHjwsGz%$X39TaB)1KB81KF)_Q4#xebMu@zbls{Oi^^n
zC=5L-B&ZE$x@WTHi`~ht9!`s5MdrNC<rqz%6rnOvao%N}1CF8hEWeyW_q70{csp*p
zY*oq}%NFq@jzk`$;e*9Ni3YMcO-zI|_0e6{6~UI9U@S^v?2T`kYOTGhK4|%lwdTYP
z1aoS{Uk_JrcXlaiOXqu#?>@Z*TPDfl*|=rXhw{&y0%}*)lbGc0%$q)vIJM)(*&s{)
zTstvyi}Z$1ztmnmJ5P5p9}qi}zMTtQpzfMBx)=>0wT=e7_@{&Lp{;PO85*l7$U*YH
ztnq{S`+{MWHK^N(#ShRJSNL%ee`08#3an@8q1$dVizO$}$G-n73o{Er&-MHhg6RbS
z0m1$kROe)2_H%wT_!ID66G!=)s!rWmgDnTIx*X`LycVbJT~QtUi??H4q)2DU54xlw
zt|>8aTXeTw-F__c3wqu7xjb5O&~U+SeslhF0?xCNkOI-7rfpKA;<{#@Qi|Yioju@|
zQZDe7JZ8Rfl970&Xqga>0<<YoDLJB=BO+xY<3R%pAe<N`YE(^fVek8$3;O-p85Psr
zx8DnlJ9JL8R=GYAfnodet>z7N#y8dglDto~VVpIEjh#0=UqMX1NfG0{50p;-rS5}k
z42Vd1<&gvLgu8<~c)2yK$55DZLJL;CJMkyWU=CyIy$bwD?#23wV&l;2i{ziG5+D5V
zuTms9?6V6@C5`F^>$(v@oZjV={~gl}RVOh;8}5|KXhE(OZwPXSF1{;4;yxA-ddncZ
z#c%A`HXi|;5jj=d{X7JEL-@`>;Qb&ASyH*0(eq4x4llQA?|cYfUA;oZ{!(|WBcpzO
z7Y{t%!j|a~2tD$;nW0;AyVJqOYch`<3a$~nVeozTwt$<Bn&bAkI|m96&WD@jA6n7d
z;tLGg>9$qG_9>h`-EnHqkk&#3QmG#p6S$iwLnj}}dbSDVnD>0;*fS++gfx%qW0-&#
z*tOhl9XPlz;0v>he^xS^`Y0C5{@n(lz~3+Hsn+S#U?5$2Mk9Ng&z2R*e~3lS+S--5
z2R1cSK;z1ho;!Kr!3c!@!_uYoI_X~)!h3<<oMFja!O!M?E#Sh(5unKp^E4Q;vv)sC
zLH2(EX^08`#2Wl>Jo2&DD%qaMOP!o~z<>Afk>nAXu*Wivo?{8t1X*K6_Cl-i#Cxhn
z2dtYjXH3rT2FXxtag4J{pp>-28byiL44JVWr?LA~b#LBXu)-Z3ou|`3Fd2WF#^Lhv
zjcMPy5Ti`EcrrZxnZhKVX7ps<vr@>{9N-14Kp@w-ZR9{$%~C_V^j`UY?PW6K!13z8
zp<xUdCKT7qs3T~%gc6-w=m<3Jd-Se$O{`!NK={P+A*E%y<k_QCl4RS>5zbI&mA<aT
zLmK==-;WT_lU7FWz(nMu<V25Pf7I|I3`@)#&drD7Xl0qkY-VoeQkY+WRdax;*Za=p
z{rBoRdoK{`99!(rmJ#n3t0wKJNF0PC%n2SovLe}o$AQKT(TKQMWQZ?hA;T}FQgK)G
zJC_mN*#GQ8jNZu=bMSf1!<D`!`CV%Oy>?r~9BTs_MKg#%*euppOIV5EJ63sYmjbLf
z!(0I0#I4o~-;TsGrghhJX^paCJ;8`PqE2*wuY5U2CySu=pGM~uW7IN}b$b<g*Hw=d
z<_l-%xD#fZ-#L7VjF_WfBd>c9x|AeE`ynL8<?imeS*d?tF(0Q-^w&v?G#?kc*FCo!
zWGSFa%`UqhmU8T&K2Q%a=lB#TY0%C21`km_@ziYk9jKIZ4)Hi)G*Yl5%OJ@l3(pak
z61PkJP9}9ad~U`h85b8GiFZ8Uo4@s>&Mq;Ce2)UCZmozI3Ky=c42}Rlr$#NLQ2=fh
znv0#T8^|uJX4%d%@Wed!v+V=q$g3~<Jg~k^QG8o4;|VF!uQjqao?jdM`wBVmN3M$w
zy@F8jsZF=;NomBP#h>Om`(leh3zaVD!ZACpBy}D8efksT$zx!cHBm%YE{{AQakvhI
z45cNBq^ZlC?k8$T=Y^ghfBD=&)rtV@(*WCW-4XA(8562feL@^U%#J~+^h?UqsZuqG
zT?_)%0*l0-+-htmJq|_y)x5FeF@2FCcn#%E@n?)Fkia~MkdWvJ!}5=oUlo_$up)fI
zl`7SeN)YkOAhhnib}NWdf35g2cTeV`Z^XM2q}{=%Y6eLyyT=m{@vT~82n+CLG~Re;
z2)x~qrc(KG%ssvkKiz4Guif#dVdcTbPN-~5us`n6(WpuqOppVU=Sd5El>?LBAJcWx
ztT2cV7{^`j;+|TMt4UGrw63KSr4Y-3H{_eI12&UJ%!)M{Be7-k^aL?XnqJcR*@Ns>
z<4X_+Q#K<LNTj6YQYp)tH7r(*f+Sjc;buzLFa}$-lW;W=XI|Kew9FU4g=tp@LHQ|I
zkxJ=yvZoWY3n^mAvc~Q$Yh2#kSp2gZVSxlh{WQZ!e_mxg8sL$L&Q;6y&svLkThVh4
z`nF6M!U4EEcy6>X>?}w;D=7Ej%oDOgw#s?C2pJ$u-Y{|Y(d~uGb4tcNJxl`u#x&PF
z`H&>8&5CI|nepZyluxRPGIhQI9`xzXHl@22FqhS~yH^Hy1jDaEIS75k<M7qOb1T21
zNNU@!SRmLOGY3w#Bp7}sV<to!;5bdnwwn=7X;${{*mhTqM{nwX29*94WQNEP4TE6<
z5KVANyOxI{hTvS@VHZarM63;^+?ZD4t|M)N;TowBy#YhY#u9iY3v}+SNj(AnBpoO*
zY5`~+;laudE#p9$Qh`;Py5=|pCeI`+UAAhj;dB>$Rll9<B2<$OI2H@ZvmUi4_PLP#
zy&vB0zoM*;<G&WxK<I*`0Yvqd4b<z@;E{q7ZI&i5s+heGbvDqpVJ>L`P>PT+>}{yx
zM1n4|P0^n+;(5YYNH7VaSQmQAH~V1CT13<p%nR7Iue8i1lk%am_)smOE9)#EeQp?|
zc|%5IBtg2Yv$MCVBw^p0=#pT@vRT>sc_J{|%_tJ7E9LTxSeqn?GX?+e0rTpA9#p}Q
z#g?5eeZ_fwekuTjl13NyOWuCNz~`G(a`}btoArCuYpIT@vPU|}nPuJ_vUWEiBu|c&
z^|IZ+WU;JHSC+{dE^we)chbPF{If0FDbH76RJ&DgwK!b`8QJhlll_Bm0JQO>evaMU
z7T1!(GmHoXdt9T~rip?EQ9=ji#yV0Nh5(>nYMaSXcyE!lG%dn}aamdz>1Q5S5S_qy
z7l-PZHmSd#obld9?pb@OGWItt_Z#~`76vujiVo3k;$$BjN=&#-!A9b$d}bV7Z-V1U
z2zmSOXfwaZ=`W(3l(HHNH}Dy+fsMpY1<ZqWaEVK~H^=nVvamH%gR_x2s+hsG1rx<2
z`=lpP|29#RXEYOQQZt0V60mBPcNL<T?6)dm*8h{i{ryAXK(N$}beET~U=hsJ8>KI*
zdxYXT2l{d-Gy1U~MTRYuj*!I5uyP18j)?I~&7pS}t(?h~-tTvfE!rSoOHAZ~BwH?*
zVmWkSzmN1s#i~U8**4q|o|3<G15^8hSI?koF79Mq<~(AlQfG-w^E_@6t4KgB0ox&*
zM@~43CHN6q2!)8!+l1O=Jf@|ND+%1Zp%+bEb5=wivkk05f2BEzi8;v%E3#0>jz9b-
za=F-&n<i!ND1c2>V4z=Phl_<=x_CN-f=y0ZBZ1^!K4=NIYT3wfp1H;luZ1)|#Z})a
z@Nt(><$N<(>VT>gd}+tn>0U~j@USpYZ-}xYDec?)6RoGqNlka{XSLZ4F(dyaIQHjk
zH9WKg26A@oOUu!?(t~|`a9tCbf|z0Jt(s*5DJnOqyVPz<UY`QfYQPaK7cZxWi*b?@
zHOgSR#pqw&{Q49n?W!Hp!NDWM){%5B(G@_BWhyZG3c?E6nFzw1jzD`VvSfu!>qZJ~
ztxIQl4QLcywAB|wNXs$zq)T36h7h39Q6(e)n0B%W9yT2SW*QQ@7>mW}LD{bYxg%o8
zI|t0{2k*S-{H+PUkO8rgQm~grGgYrrq$mUMP!gcNs)WpM5V6B@zQJ6d!G<K$dXtCE
zVpc+-a_>16uTi&=9VCx9F;Vd?lxl=U04d|vwifiZ8B8Gcl2??FJoK3Xgg3R7sYNLm
z1XXGHAp^%<5=ufIe{Z0gbn!$nOU@SEG+Z`O0VA8H2Zz{~7Ymk<K)(voT50@T;V~4$
zk`;H3Q2kots<Ia&qtwAPN>0GD!f__HGDRJHP8yZJiwhTHY*Hw^5GxY?0fLiZlYt8p
zf>U3@_q#%%C_Nf0l}qk9z04fiR0WvS+L3BFp8FvuE*ft(Q3BhFN$-?T8r1D>jxasd
zT_Hs*>Fzv<4;(r;!xc3E=V{`=NXrK}FBYqcl~8;)R51-D-_F3yWy^bCAlIDhva?!j
zaVpbL<#-o4cz77*BDXsZ$3Bf*$@I-pR$-F&E^QZn5V@(-^1vtLJh`Ud5b4UDmDH*i
z`g8gH2_#mw4F;;~M)Z<HD!Q)igVmH9Zk_XM{#BXMk8SH~6TH7}K6mC(LAFz5&2o@g
z9{)kejr2)>02}O|8+=n)9Cf{iMS1q->Cce&5h4gL(W9NnMt&Z!t;#j=h`>zNtHN{C
zAz(m45+w$2ltY`!X=Fc)^KcGioK0YOT-u80;`MaQ49>#Y?6N+;X<0VP?l^Y-bJ_Rk
z9FnYJ9hd_Ngj4?XZn(j5{3WNlO|4zV{0dhtcUm~|aFHLH?}Ss7uE?eNrq|e^N!g^E
zMX6W1wn#md+AN?ZQdyBBvPpODI6=ioI#j@>e3z*M%P_II2JicNG|K6$gmTy5xRg6p
z)bx><>y>3hXs8lX31C?pXd`)rpf^4hv;0SIuQE3z?9hs`y}mB-r!=2~M(oXG5`({j
zrr8&`)}&mOSu)**_1-$?Ih;>A^nk878Tc?kZCp1$CB@A|DUV)j>PoWr(5Me3%QdEW
z!|~R@T#AZr^iNs-&Ty?6lsK)5Qv=2D4bolCi;-{#lhA$}eK&S}cenLC_FbJuVY!D6
zU@S$3D<1t`m)rGE+St8ZCl-I@Sjp?HRT5va8eWnq?XapCW4c|&qIyx(|Hcd~s%sPI
zz<_{cf8y=`C2(~9nGdZ@{y19L{%1@qO0u(C|0#pnK3BqvXJgHUu~BPK_k%YwUc(@l
zN+WHi49Lx;T_ZPC0+FC#`s@9SPc`}-Pe+xG87^|~^Sp7(@rKe@zC~55jeQdAjU}#g
zJy9OtLKlTnUsaa)B;bVLfHp^3Qd5eC_0{Ze39LZSr#aEOuyIc}t$)4U^?3--%lrDY
zU;T2s$t7MM6}ujV7?%mTMFz2H--xUUD{V==VtLh%$H8k|t_Zl{OCU=WWOHOsO`6HA
z2>xRn-cBDpJ3>|Q>e^pqFqB^@N$w_Zr=nwl5Ytx)w0!YxX{GOvPHZ-ao^z>Rmdf1m
zfUHz;CXm=Mz&)`8sx(m!dBx1qI69_3N>@LxNC;!zB?wbtHH8KRZQa>a8*pB{VJJ;3
z7cz($uW&)QVSIXQ&JSrX;ONy26c0xvL7~8y)dPf!mtY<b8fMfJ8%Zi6>~!E27XI7V
zS-1`ujmj|2Wry5=8((;IWKbj_gS`(f#9cfjG<61mw-3@9y;u5j#)w!zlJ|#z2t)<w
zQ#t|Uu6EEl{~wiyzxFWNUyHw3@m|3nfBzzfc`Ikm*7WSlw8>dO7=#bKT7^??fPyj-
z|EeH%%Db$fwU7?y9!$i>NS530!(f=0gC4N3W$9-wNew_7fG|3ix4AOH8~kUg$|zBp
zTN64ra5X$2B3c<96uoCIoDjP<vv5g22gfFR&)NeSFVZ@hCJQ^D?{$_dE@9s9tkWzO
zDwzq9Zh%TY;1E($g5<t6I0)|VF*!qbViVOrkT+6*ym6m}aHBP?RcZ-pss`H%R$E46
z;wSF>$v+Ww+(^Sz{5p*IzN~o0UkA_U!=?$~nWlLK0o-Na&t`j5lIn46&`!nLow|9u
z-+R_C<OP5cer2P5jJmn05$q6_4~*~l8xj0<VsG9bTtJYCswXd8yu7ns#etAOnDfUO
zba$9QXY+<EPm{+H1L5k`C&vSO*MIEYmz+?mF~spO3peHJcj<<HatOdbgA96D@z9{k
ze4A`7%~5dKC{fkkvG=9qmhw4#XuWTYz`tgDIo4~|w=2;txc0AV?y$29zp4Q-coBVm
zlX=(a*bJZbL=Hi1s{Z^Gt?iML5w}Uryw4WeKeSmuJ{O;^+TUv2`Iou%SzD89vBaBM
z&B7Oq&(?AYK+$=Kp|AmRKX#iaX4PJ&UM1Gd$SAiEX!m%m%#+*fBJ^9<dOr+wD_!Eh
z3c1C8=iVQ;J)Pl&<h(!WeW^}fk)BX;>egK^`-^$GiQRnLtW|f+^#0;M{zv6b7nbv-
zm}i<?Zsx+VuDwcNRL7W4{wbvU>ap{_x3w9P=&9J9lchKdXE}Weu$_Tk=$ysX=%%(&
zb?W6=IxhK=GwL2sd~)%rolm#gY&!oZf9Hkz(`Tv#?P6Qv19q{s(^HP%?TFAwuDH&~
z{eSCW5uYuhe*frU3x1BC{>z`??ED`MOOmRu-P(^9c00#VSOwe>fkYyyqFjm$Qrd8I
zg=4)zElYN=7E^t(vTD->YP*Zc3N&w~+)M=N`l{oPoe!;@zPc*zD5ezrrU9a;pbBm$
z0Q?^;?W<CiRGGDWr2jSiCXuUwuH?*xh!6)PJ%L~^6FFLaB^#fg4m`v%rdr@QA2Fqx
z_5uwqcidwYoBLhdD7spB0fmlWRVq9-&Uy{C6Yub~@<FWAqP>1@inc%Xu}7AqDQl~0
zXhMocr=eg;dTyvDHLLt$9W{C&%d%7t%Nv~)yi=k-yA=8AJOl<Kdio)2pK_ho5y$wf
zT=^}i4tLV@guNwLm|}tK{;GZ16G%F(utY_85lV|+1La6E)8dE>fp%!W!`*6_HXIJO
z=q`obL3Hl^z{?ge1(pDkY==IlKeFheTZaT(^fhR@uxzZmZ6te6=K(Ou^H!K>Y!Fn0
zy61-eiJX|Oz1>B}Xu)+}NGDH_QBZ2j><utxCfD?HJpIu9iWCT2^!tC5u%8DI&;y8I
z^<*x`hQRD@U9kHMf>;zUAh!iv4|v-@`Ef33hR)unZiWDZ(8arFw7eU*$jmS&IXn`h
zwXXO=NQy8aXY9Nh_cIDoeY{}QoBmYxerDI%-~@K#$T*><+9+2#Q5KRhS^gg(EGC3A
z0X{{X5CG(P>-lO^|0LeRe2T&#2(rY%N<R?w&+k{b66n5MZ*zWRGJ9NUR2NBN#@~1w
zP=O2%a91x3u-@Zm&YT5Ae@Sm^AqJQdl*zoc8!KA@YPoFan6Nt)<%u}OAa1l3-s8b%
z^(m1mYn6tFHP%$_f597xg~64-%m0;jIh|!u{Pp#iO!f1pny$FNKbLCplWH&fK5i(*
zejF35Q)ZH2p-UG$R{ySxhieB?1P8^fS=FDcsVXgp7g=Q0Q!y;ClfITOtH8kIy}}nv
zGifaIeNgUcO9W?iD4#Ee=4GN(57!xFK_0dh5T0)d-)f#J-Hbg{(umLo&JmhIO95PK
zp&sW{qb+Lf--T;yCMThnDcYwTwJh?4>hW#u7`r<Z0Zgs~!CyMYqITu>{SyCaC}{7z
zsOJ$TP|=t<<vM#8X)G7TAo}f>LShn9*>bhyNjNYuPpFfkrAL+B3JL~8KLkhs5b7jv
zPVk>#Izlve@IX!6({D{2H%vZ72&d?l*<RZZAI}_fr#uE04s<NTgMm3ILXO!12CPE1
z^=X|23PvDE6+Bo)+6MnjnZje1M7p7utwnFiQ1d-V(5hJG8wW`9VprjcCQLu8-j0C$
zbEkRLIP~l{Z31Ot=vWwAi=a}8o+c1zW(xK5H3HVPur6ds<7`mZvQ;mz9BQ<B^Ap@5
z@hYK*?yCR7(^1r!w*OR;h>BP`wrSbA7?%itoSb}M&_VKTeikTXJVwjn#p0Aup6`t0
zO{o<=xel*W{Bq@o^)~s;*JfJfDHe{W`pR-SW_CrjU1&f>WD9h=h8%vAQN*qJc<$ZW
z?s#Wex_hquXXgXo_{N9h3ts4hdIC07hBklC8L}x$+ZE<WJK^P5-+WdHYPTyal12S_
zd4G?Q8{a3pjZN6F{Tn-~I=Hni{rA%8W!u)tC#)U8n}WG6uOL^k9Gi2qP=V;~^zRN_
z*)1K@e?ln{m8IyurkzVa6GrLn+|;qkTa?Qr-uKK#!8eIe#?XUrh!akk<6!Vy*@z}=
zhO6GAJFMN)6VusB_?6$Uic9rPJ*=Y#*OktxKd6y%4K{SewiHsqqoSU1%+DxWxLA~l
zU-<tsD~|?KtuX(yscz8!x8lmh-q^tTKg#V*oOQ?bmPZ{u{~^RAZn$$}Le9r%*W_CB
z5GKaMqJvEd9)dJ-Vr+O3M*+%c*SA|9NFaJ7Dh=07>te51@tvIwd)pSgxO%|0eUleb
zp)V^@LBj~!9<fv&4|?Wiwa5@`1X^Nzt=rL?QVM`k7VMK+yoqS*A(9l3Zz15>SwL%i
zEhp>a4$J4;eDg?n^LB-QTaPZaOcUX5Vf-AeKZAZqqlyL>8Xj2*YZ(W1qi&ouXbt>r
zfRm7l9*!?L07@esM>}9NQg&gS55(<&QKiO=p2x2|Vv=er-gWdxRsL>d0MwuLV|pn7
zz)#Y1&(G1h9ZQC&Bwz$PbHM%HXNUuuCEtS>+cMoHKbjCvI|&vFppw$P(*#-sSMTF4
zA*KM38N~0Xi^7s!T@*+aC)}^v$?gPvji@lZF5<TSx*JOCd&b>+`L!oU$MgLbAIaZq
zG~Ax~<N70KAhrKUJC+5Ww%fY+1-$`Fffct3HUshxr`ngbi{Q^!Fy66_ZWK?hd<;c`
z6TibLgc)I8@9R!f=PHH7>qf@wm9r%%%uYZ{ciUH_G#^QNd>JC$O2ECrMf|-4kU8Er
zYMO4VSvFIX-+m8IM(@Mh;W{ai87f1j-alaUp4d32Q*9zdf4p)&g~FIAYfj*JU?|p3
zf@yibdwoZVp#-Ws>3=13vG%422oRIN%}TICt+|Up8m?Z(C)P(YUO|w3^*sV~UeAUX
zIxSym5keFwKCI9{Hy-7X>I2XnRCAfy(?IZ%IpT$WgKp@uWiFY5JHmH65V=88VtYJn
zX1!OBTOEIx?n;asB>K@KMqCI&^n2%Bvdy&l&8nMsR>MPOrsl{DXspR)VMO^L0wFgK
z%_j^D<Id4^J$T?zN`gD{MUd$%>Y+=qwlxS$YG?cW{c9GH$P5%3H2o`{RszCJGbmT;
zmd_=?G&`uGVo!NpmF!*CrGjC<1Lq0+Aq$r*Dbe(aAN_Q`GhgVi<56E7&|Cc9VZFK%
za+cK?E?3@leK-r^LQp}Dm`V9cclo5~RMGIbli`2s#J*C0jH#Zh@JYf<0`q2uv&cCV
z_P!U*S#;;=X*I*kLUWLeDpuOwO>P(Vmy9<*JiDZ#HHZ8E>Pxm5DvQLakm({$bPDCb
zG8R{l6*Dg~z&;X(Qn0D@>-xdN5(j=SYo-~&j+maHN$gZ+S_*b*PH;%2rB1&m1%b<8
zs6IZ5CHIxiW!e_9Y$lQ$z2ATe=-#Yr5uJis^TZD;3Y2Iq8A85zkh`#LT-|?oe3-!)
zFzK*{26{J-0%6t70Wr0l;~|lcM+$N4WyNQKSRBpB+Q=)n$PRSis2LeK1TsnmOH>=M
z>sJz(rw2p7gO)H9#enH(uRFVb)2C9mtM$s2F+wtN37idx+Gq-=<w|SB(y0Cs1g~Nk
zXb5E=&)9E}?e!_t2=bcGb&quNhO<c6*u;iuZLiOTP7I*uKfgjC8$cWgE1<@UK?Hd8
ze7MWSO=-elt{376!HncfNY^p10wJwANfX5lnE>A|=L<Gb7lG+vdf}JFgM1Jt3dg}g
z@)_dEkL>LU^!emb6<7%4y3hPvII#07>61q8fANnFSY!twtK=vP%h;H|iv$+}!8pNg
zNS!v4lX7qXYqpOlgZ9IvM>h@ukJmOW7^$S<v0dJz9uSA{3UG)+%I1J-0?6uM);IA>
zEu)V@H@+xoXiD`s%TrRrW69)Mn5C<qu2_`uKmB!Hc_Kmp1Xx>k^zrr@vA&47tvwj4
z+N{sGHq=c^fvX@#LA}PoxnI2HLT`%wuw$|Lol@yorga<`e;o%fXmWGN(1e8MCmuE$
zK*jO3FH~OAo>+D;6bD$U9Zs5yvEbLp?<M&FQOB7=lIOTt5Wp4fQp7fHmgH;rqMD5*
zs3q_y4luT?nYS*GDhy$vQ_EEE-kact6S~-hJ@vUHN&b~WA7e-?Eh-QOH5YUFAu{&_
zC)}`PjOsZn%Bzr%3u2j|cTW@=Z6opk6)Q;Kk1ZTz=i<&v0Psbz#rXn210WTYftvMW
zVV#18>K$A=puH<HC|t+t5$?K(CpuOh$_)rJllrl;v<P3@(&(P;uE#g7tWoT?ccPSI
zeQB>QiIzPzC|^sJE%ey@!I8d5IPexi(b(j#gcMucPYi<rR{0%63*_eveZ=*klB+0w
zkdoG%#r`)j&_qj60!bg6yiJ5zD3rRhC#CH}+y$XgOhOr580=j1A4x*h)_Y@yWMc}b
zn+Qo%cVa90qdX{*3PYiKx^@*(#0UeiFHNNu+)Ap5LPYMAf0=!iO_o-bjc&A17hnzM
zh<VIi8w*?AfL#<lzweRFluLVGiIS!RoOH;kw6GShOf*1d3;;7RLK=>p=>y(AxIzy9
zB$k=i&XrgreOT9--IGs>SwRZ~M&*c83m!;L$pluTutGf<7^;Dz7APQ?mLN4WzA7qf
zXe^G1iWoVJ?wsJ7%KaA?;B5R?c?LUo58YXSB=(Hpq8$BpJKk~7WZhM**%jDt6)|@L
zludq)OpvvBg5gngPHr5;gXYx8(``=em)Eby4E9-lA~>xfL&YKw_f?W0bflHI4FP|L
z653Os=Im8hLf$#GLYl<6Tn%ayIL%*Z9EA|_o=C}Yr9<k2d5kwF-{}zG^{fi{!nuQB
z(i)b72apVc6lmpj(^K^wzKje4*@~5OXFDtn#c_nWtyh26^4dxkm#R3u&}b&h6_%70
zkFdK&(;Z6gbc;j0@2-C<4ca9v|DARoa=NTit)H?^@NUwqSkVn}ZQR*vbzb`Yg~nEB
zJgR@xodrx7xDjwGhz0CyMrj?qeoaoQ`gS?KV9b)xkp^LPX_@hd3_OOk$*yYOsBLWU
z=mq?2yW~~zlr3q=uG@lK(!4x?78_x7R4O^p<47wje&-52M{|zztE2=Y7}D<rb=w=e
z>`LXZE0|Q~E9Ldw1p8Td`J=d}G|Bswbv4Ic=68Zw;k;((fyU}J((g8r-s75&6z(LT
zS>kvd0t1HbX(qTH9Rfw(&1}P5hPho?d3<TtC&E1z+7+HHCEiWl2WLA^khT(xobvn?
zBc+!M0F7&O&oQ>7s_+wyW`08xBDt;Kee;U_J2QQ|>)cpL`%~Fp!Yg%^Xu9SIJt_%E
zn9XkqGG&3cG;V7|@S$*-Ch{2K8$>I;D&AI72y*Po871{0Efnz_*n!7rw^FNoM^7E{
zE0JW<)dEhYo+y5XSM=;m5rcR%5C2bNmEtBg1j;c-S=gP2M{@0KRm#I2Fq0Un%9A2(
zZ*J6)2LZ*pUR@5zfd`TY`$lMFm3wx1PuyTm?BA^Di?S+NJ6&_;o7{+V88*{Q+@LRy
ztYipOz~7lwq2FCV*0N)6>JV>P!|3#Y4{3BfT?m~1o+-rDk`)4_=>@sB7d=LES?rt8
z5L|j%`CASWOSzYz3DbSmYg82@a6?eg#0cJl?1Ww>MuX?OxtdzWY%-g>&BuNw`*h0n
z6NGIO;4H+hUv_IMbzZQT<!%~RCPTmLRN+6AVakD$09kBooW+Ib2*c;aHNeKMnuN9a
zpktMdOcs~Ys@o)cR;XJJ&i7H)4`F2Q&nS1zn}o%dKI%{>YuKL&jap3K6e0ev@!_r7
z*0+CTTbKUwe#0fW+=t$Y>ygZb=$5Om6KIJ+xO`9}K3h8ef#PT1@&EgqR!+J(`l^XF
z0~e4e7Qz{@aO960FhiLjIp1FnI#ZQl$+~rDb$H%{Z9Pd&b3{|lx0b>?CT80vKK?P@
zWFbo-i|O8Y!g5?@WJP8Sp2U8-96Cm1o@3^9_|quEvy~qa7d|ER+e-Ve2qQV(M{Mj|
zd%H=3)zs<TR(epy#k1H@2mi@AFvWGIb5MTXO6R0EqRWxMH8rB`a<z|hh4tCzJh$+t
zc6`GB`Z0RM8_U}V&fy!mdOkQ{vpy(HMs9l!H+`AMU|<&cbw}5oS3^-e$bHr3{HUm-
z0|Is@e|dgcdHrdt;;QmTxvFEp;;G^^-7;$_xS$iRv`mQKbL<QBKmYz^p_sBrK!Je%
zLIMH(IBx&1mh?ZJJO3{i)~RG*^`FL_e|o>!!8GN)Wj(ZGW_(sgtUMzcGOos`4qFhz
z8>7LSNDEzX`afSh+a0Gy71+(kvFqm|O}9GOxST{K<_X%)eD+UN?$V20wh1<h%XX`E
z)HW}5<{y7QE-6x@(7~6u%*WNoM5nVrC(JZyuC_HRI6u+XjE^2%W{i&xa>Y;nD}QcJ
z74F0lGYjpg-TZg<4wIxU^u9IJAm}LFUR=54j^QF<vWSQWXq8!1+OFJO&adA!I`r5{
zoV4t&Z=}f#xmyT-<G<{(%GjD)9<zbs{kDFJUWx_IjJmwo^uKD)cWsIUo_C!TQdvWB
zfe8U6yGn<|Wrq(q8xk-p#cOGx0Pd&AMYFMrh%QeLzg#+2Z6Z84f|V7WyqlJGVve$H
zXhT=xEkb6h5gRy2EF25^=_wXbQzB;+0?0s9rH^XcgJw>X=*1p66_+H^^njcP(Ihx?
zpgR)W3A-l1D6=0Xqyv-eb87VT{u80TqtCmOK8VL<f&f!T>ON$osJ~&5EBwa+;iprQ
zX(|c&ca+}P)}2HhC$RQNBKkZ@&Q4M(pMf?f*-sEoMq}tGI}o8vY+g#UW`i<u0m(Gk
z;tG7CVT@8`$f>w!m$KLKC}EbPhUNDids{h=2{}(5DW>F`JK7Y>J%BW)#Bj=_&$}Gv
zwsj6lJKac7S{ioWs@wzt>!1P%25l5_V#dWcSRaMmK8oBJursB*)yEz#TA=VcP2l2c
z1sk~+c-dE@%<|V6bI2u<-+B_=<l>hHj_ezMN-tTV+bin7=0KWRY8VP_)ayC!!-<`i
zLyL!v8{n9Pw3y%81>dtbe%~bF<t&|W1o_pWALMAy?RzjnQNR!u`InvRpR)u$tIJum
zsz3cPR@)Ei?B~x{)1fy)X$4*SycVDQ1^144U%xm@)C3H;%_AUrs=X(_OZA(#$+=&B
z`nL7e*Ft_xBJKKuZYN;7^D*^)8zaCITo5WGeJHDJp7~-duIG$>f82(=@LgX&SKL`O
z)W*pD^6>zlH?Z37E*aN5t@e*<rt^VK-d0iX?ss=sym`IZxBY_upQ~xyWvegjKkX-U
z|LvXo|EtNw`2Ua7`%V8Dr^m9w8W!u?t8Eiy&o-U8C*6Nkh8Fv`BWTbXrBnfA;^Sk>
z&zXU+z({vw8K*)I`VmC-_E&0IHB75`nhwpED;L&NybI+V&RQD%9-EDZn{IU~u*K|V
z+c`Pj9W5UttaT>%z89$*HTUC8s$l`k;d12jrw{#uWbbj!k|XIU7iKRNjOy9atW_Je
zS2Lk+(P28j)}ylyRg$V{y7UQOd_7;D%T9N+b!k_~t}!k`aI(o!>)T^h24OdHFBF??
z{^)`TH<wka3=zW0`hAGhu0P`I9?>to()|FzHyg=+QZQBiEtsp^+BQHehzvW3m~88Q
zaJ7FtRDGXe>Q5N|pnMmQgVk#tsvHVzu;wFvd4!k!AI^O{pdTIafNIXIx=bE++g~%_
z=jb7ewm_w?d>jV8;}P%PTgfo)tyXukl_F$q{Rbc;rcxnlM+YJF<j2WQx2(@38+O?!
zKooq9eSAB1VY)JgJ90YQw=Kul_sRIx3ct*3A$cd|u(=Etb(-645q!6xi}>@l0tAne
z+R~8v)o4^kWvf(yKGRjj;b{6jSae7+)RF*Kfoz_+an)_ZoV9J!yLJ^Qb}yjS?fRV-
z?>P3_EGU3$qz*w(tRAcfg(@{%{UB>Zeqf0(-9#_YhA>U%ip2>5g^o2i2C^3jg&fZH
z4)ThQrlSO%9zuIW9Zx4FJWHv)CktbdRkIHd(E#<K>nZw<`woytFQo1prKaS%fK4@8
zcc^A!WB-t>N2=vzCA2GNgU;E>9o>J(2a}WVxB0B{Q8w7`oRHa}9sh@`b7~JI+>&r?
z+qP|M$F^<l*tX3b+qP}nw(VqcF6No%OkZ^Wf?nNURjqn~K*Z3758wHBL+isge#9P5
zVUeM<k=SX3Z^GmX&7-nhtyA$=u>iNX!7e+xa3Ka#d!^NZ7;bS9JG+J+uwNPlTAP5s
zlk3^9MO8S(?U6YsoB3vkqs>*o5x!r~9^Q6l=xy!#tbl3lDOQwiM25UGq9Ar?)O80q
z6<m)EJ;}pk=8Ah}xy+Te)o>jIH`d=o0cOWg41Swofcj}T&A(+4X1`K^OH+~^Qh{wp
ziH7b|$XN=Evv3{&IGj=U9Xun;fq5S78P5kA-x2sSyO-e#CvNUg4PTk-urcK43+6}~
z=I^WR5G4t?rIaZ;C#o(h5^7n;gZ2e!+}>8?o8dBM6r)doR*55Mw_zp$BQ5}O5TIgu
zCcQ}UXxi=ExHHYBmsxAjmSxfLv`+l-NB?niFA2V{XCPz5qQ^HN=}pJrkf}j{Yj;j}
zhl1L*tcsvTKN1Lo72x=Zai^ND-BNj6O+QF>!K}wWc(gd~Wl!AoM>$iDDIJb>IRdlu
z?PrqDWZdcp$8o%OGDur<3>{L5Vet%^^OHbw&!SNebc<2mJD@Sd<4{EAzeEW^P^c&!
zf$ji?NHzAo^<$I;GT`sW4bw#kNhjeA4EB;pi)-1>p0%v!HMHz7#7aXwOaX4<LFA!8
z-RT@(>BPR4wG^#dyIoinQYb)MtszR+yL*@Q;FK$8LXUR)Ojcz3T5GLM7mMm1s4m?K
zS@(WT*hcz+>o53Uc>>apgdpoO3ek8)=YXd&fxa8_r*-q^p4f3-gM^2q@Zk%ypz|Bs
zKRJXeO4vfu`*O6K!S;9KcMU;<*`<)d@@I_w?1B#%dO~2<$9wB|&<w%X0Ngt!Fhd}a
zcU}^Q`wi9_BVj=8d#yNy&MnuC)ZyE=;XnblPX^h-*OA{mPJiYc%H|i&i<`Lal0hWC
zF`|~mT7jYANvRUYC0FIKK+(Z~7NIOlpLtH|K*SOKEvw$yG8P-0D0+hZGZQk&RbBG>
zX5+lH>!z)uM8%wo1$Fs;^^vL1JV-j86soD{Id_wr1ej_u9jpdcM>sLz04Cp0%e5eQ
z8rV@>yBLGpHL-Fw9S@J!&p2GAu0+^X#$obKh^%{vap%}S-Q1b`Ii+2T6RJOKwbX*+
z_=JN8LiP_*yr~exDo0oqY7X6?nsXI_=C2DlQ04pnw*ZuQ{vfcE6cAc%jAB189vFl&
zDZy<O44r^Jga`c%Vc$(A4d8_(G}cO^NQ9wMVl|p~NpTwAN+p1Sr8yRUr#H+fR|jEH
zU52zej+vh3od3hKCdsrFe{Q?q>_4=?rI#s04CZ))D&^5*eZu$ye>a)h`)39-@2zmC
zS2vL1EVtcWF0Lp|pt69)e6VY~B8dS?;;AJ>49m#qjDOBR|L8_b;w2$R(M#I_*dQyF
z;UH>9yAr5D>WL()hNq8n`I0wdN&R!wQSwmno#lxiv;^YaXVj`UMBUZy-PRl6E)%^c
zUX2u<pwOKH5uoTm;G^!esAuL9S)6|ofA?uG6|XtYi9JLO-K{DMg<PEp`tn5umnNDy
z_1DHgP#UX1wO&YmymgT=i|BCu1MoH(Z2<$gNhRy2Ku{J_>rQDb6!`eCnc3qf&D<Am
z+y5cP-3AS3OcBVMyC#NmeTABPI=zxV(xIM`LqT(vQcYuDqG=Y9ZHL2+n{Fk6G>b5d
z8uk`hAhC|;Ua?XH_fAuf8i6;p)2v0Axng=ExPt()p?CHxLm9%o+3VlQvxUk?-p3q{
z6H$z-1*{Se2WkBpVi|#nN%}zCxO~->VXLw!-b2xo%9kK<4nF#1c6yG&VDwFJsLG>8
z=-^*P=WQX|O+sS&e!2OfCSc*yUGvqLA{MN2xaa+EB4<G7JVbF>1%EalY6!aRw;li>
zMo|y|5tPC|DAb2}&enw+{l62mnUgMPeo?z#WEu6$v?992`kfSXIjwdcCv^Okb70q;
z9Dm{}8AJ2BqvrbHj}+wM(hHA+yyKdq`!~>9(Fb$=7vf*03}>#Kb10A_o;{})&B6x?
zbn{^qTKAu5_Hd6cv7hOdY9X>L$7@*X%U;P+E>4|_BfrB<RkSf*Sf3NO*MZy#7`MzA
z({u3zS4AFJOmRdDPK9*IZ?NeK+16%Ne`y&?%CMJC&ae(l@)7S9aID2kxUG2u6W0u(
z{?7J3hw<i6er%z55WM-|WbCxi5WEo*w})(;=C$l*^dlZtBd)9ND{EEwy0SD7d4x0+
zPY!sPJZ?kWTS{!$f6=*Q#SuGyx7bR%DOwfP4=@cI^}t{|4p{AEB-I-pe7#@R9+=4S
zlAvMOF<$*|Rw-Gk%l6yORbNh#3CdFGe3!Rjwn$zv_+PUD0De0?+cHYZ8{AARj@VJf
zg|50TQmx4?Y2=xprIS2x!q2R5(U=3@V<*Z1j$6xtY84cauG~YlR#yP6N{g6nDW}C$
zTQP*OxeO^2Td;X2T#f<7V02IBt{6j3=|yFjsK)yfoVl`e9dMbxhFfKUtUE9t;IHJI
z*`@r1t3I~YE3ylzBa`7bQd?tJOMB2dKQp>~t2@9xz@;{xB7j`BE$V7t7T%QDt<XT&
z3525;8_Bh%5^V;O9AOxiu462BB??1kblqUE)}de%fo6`CSbNF31ed~`6n-KXPtv+A
zW#01<H)g|SsBoy13LT86T&&p;f`qf!O|_9HE$#URH_eALCn<`-`3XG0hwyt#t7MKI
zam2WHv=Y{66IW4J1H1jzRthk|K}Otush-`W1lumsfdw2HizsdT;eyk-$u5=$s^1o^
z3aflzBz2%9J`rd5^7?=R<2GXgg<F1h1SrsIn$49C(sLl^3fUc^&h-i$CWF=s@Cxg%
zp^M?ge+9nz_z4c6)%Qeq45CZz&jHp9J-|pS^GmQzYp{<yDeidKb|3|Vxs}{Q%xI}g
zS139$=p(D@7xV&?uUeYouy}6&PFy)-oE6fEM;UH@rZnuBsVi#HcP`rrlaMLWi|-<z
zdQ*-dIU%itRK!eGY!1;eHaSwjCsNF2%zG^|ddt%F@olwhwhxA8dk2Pr0sH~WHXUHX
z%T~~emvpcfK@l=Y#l36yNW@|@zhEg8Co?F1NyUr$<ht&OI;%nWVca9LyPfSf5T3#h
zP24}jqM^XbAJcNDQ8V^6yvY$~JKL@83vv`^#LbAaNu^ef<#^q%JW9g-8k-Vg_jF%%
z#t*3eQqT(Nd4r^2J3)F=d9`X(IJ5GRWYDi15sX2}db?1g&nJw>B|(HtKLQgc9N1iN
zjKaRo$3J`13I#;@(msRg9twqe6G(hS$GP`C6}h43)A4#FAU$k>05z9birbq&hng1<
zG<gm_<IqG-Wzj<mSyX@~5t#fUm@(vNsNorc820J0D{G_SpzO}v(e?qf%0a`AmVxy<
z;5TwBin?m6yI_u^hz!#iyb;9Iz3QB-JjS@2;r`TL&RDEbBYfun?_&!migc01FPp^R
zmre4&b=j^Kw#-b<P8R=3SY-XK_v~{ZeP`?Ckv5^10;5aVx}LO-t4sl;=aJc^9+EY*
zq&rZm`>}~VOFAIgUVMKzPxRBPvoVZ^Vr*JAW&5P=PH-e-lqPd=>@t7e3=u9hh|`U&
zVOn%K{Pmc}!ofknV8)~k*B#QHgp?!iMz46x`oe)Yf^0WFOZEAk=n_B9V`G?YsgTr&
zz>Z_bK{yF+s1AAHB)buO!Iw0or;L=u>9U+8Ihc{Ogm1)q(uv{-h~ap(kojsym|V1K
zzz=>0gx<_zY(dlxsF25+bP6=5yo{@?7YaqM+BE62A+VmA_38ur)B{B!FPNCvTzKJu
z<rpp<9>2yWK<5<tog_UGBdC3gU>zgk-z`Yqf+$dL15p)}=2QuO`-GeYd5tAdYq3uY
z5>u~h@VNwsIoTiQ`?AnOI!&gjRO$G+l08@j>28KH2v{JYv3OUJS%z2aImF!lI7%6z
zTD*ZWsZt22Nt*e?7ZLv=OZfyMs&u+hXjo*o<9-G}rF|%Sa+@Ix&d;|kdfb{`lUDr&
zGaxE3Lk3XwfLsvm6OmnjGLY<fWy`1Wr~IvZ&EP6b2pHJj1inufp4XJFRB3WWW82-l
ziPwy-Gge8;hy{ensHmWfFpVTf_T6`F`>T)INc-kGCZ8jdi2_zNy@PtI&Y4lWopO{2
z1<2F%RB)G_^k(q3zCxjQ_|(K$X)CggbU@FSV+-U|+Ieii1Pl!4&Zuf7QbA14U7+9n
zll82?aY-gb=Sbu4L)ZdHngNT^p9vhP<jzKt0Z9umL<HVRU;rG)zqzdbCybm0N+B+3
z(+_wImhWoPJ!1E7-U3Dhm{>UyB%<tA+=aUEvtq*wnVV6d?@szKY(G9u&g@Js@-rnt
zCbq2D(--<@+g8aYYx6?(-Apaq57*P`8%;22)~4F)u4I!sOu+243>Mq=8vUE|EwcS}
zfKyrxofrOMw;|&@qVH8WJ*<j6{u{h%6sFp<43&&W`OKeMxB1-4UY65NS#p9Hra>V!
zPDQg%_B|+ZF_aiA4P~$coZjIaSQk+DRsE+?f{T5y#Lu_yOmY#%n4mO|n|r;32kq*2
zo*?7p-3@sh4Ixe)FiaZ4QP>!3s*KnOr9cErNvp#G+AzD{Ra2ZU_dfoee8cHyfWRqI
zbZIsF2pBTx%2>KOKtti$Hnlu7zC<qowN+8~i=#z{SVVDYq0~SyLpUr!<pMXL*6OM+
zhfxC5USoo2i*Lw-EW;q20sK+of3}F{heOf%On6~H8v~u_mG3DOuq$tQMfgSYF)3AS
zu4M#77`UH$djnk}8@Ud1%nENtsW1in$Y+xw1U{K^u4BB~GreXV*h&PRNDIgz=BOXR
zK~m1dKY<mY3o_(`cZLy=J*@N~VV2>z?bZj@Q<yVgwd(vU5aO$fP`cMx`u07B@wU*^
z4&@CAlI$vvD_g_NOq(CxjyN%>gUePgFR5~KX>t+b+1?hDtt}OsBNq$)P70g|*?6Ri
z(o7+sRXz^5?i-WawQ~BjgiwAp0t-=Xd9bY*lrD)>mm?xzw^Joh9@r3Q8qoSU-x|1o
zOsb;syPdD&>;-nbB@Y9HHXPTVpCjR0(Ji2P{79y0d-oyvelD|BYN_R}HI|zvyIO6e
z8Oo`4gjG0*6`n^?FSRWU;ONFX66KCTVW>Peu~JB{hWybqZrpU1T%TG@mD;cpepNH+
zLSE#MuBVxD0-Jru@?y`#pe_DerE^JYALzYnULWuD&gW9^{K4VE2)OD~fT=!*EklUx
z>+9HC$K20BWvYOT!0>6k;iajrClL18?WW%W?8?DFf0Z|<YuXWcSlX<4_R{YZs$(5)
zp#dk2tj;;>cm&P&q_G~nE`T4PF^$~q4qz`%mw)Q+jn}}}tg$k>iff#n*hz<hAR$aS
zFXkSowyiElOqm`*Z14`^Y07d!FCUtZQc6Otr^M<mzAkLe=!d-+@JZRHcxfSOYmSs4
zMU_K1Z(bUfvjm?7Mkm{4)C4Oezy$B1qz-J^X>N(-Es#NrI{s;_stN$Qm>);R3W=$*
z-Zz2MP(8<e_VTexB0A<J*xhTbNsH@Wqpzer4Sq3xb&cilVm3N0+X0Bn)stG)p?7mV
zk{UYzB9HD7W-q#jyAb<)H-~54XnD;4{nj#fHgnMP<1mk%ll{5K&4(A`i9a1W()Hcp
z^K&@x+Uo1^dF|V@;H%u4u%!_BX`ZBw>Qdl4q;QdB!R<u69}WOAlq4fY64I=Iy(C|$
z-Mftf{(uo_e0De&BYGJ~AY$aZTK4y5y;V&WDabE@#g+j_YY;HT#+ZQLm}xVH|K0Vc
zEVljEgcGMK<g8<hhR&it1E3N?fMZJXtn)LlY6&&i>jjw87Y}1B#dOXLXrH;pW<DnL
zSN&ILW^+QARq;8<z9oJ&`3y7GV$Kc@jH0eyq(V#`gJlzqS8exait_CvIYsEsp9(@0
zA!t==l4N9i8>EQNeLv%IC#LTh7|wqj2S~m%uXN;O7AS0PS(gQ5Nj^z|{r2ts>Eh~(
zoQaT1fw2|DeQ3awr;n&c+5B;|C(Vc$q0U!Qd9imQjJLC!E60nc$L;5Cx(8QJ*B3Lk
zvUb)-il<pIo_G51VEjMKLy)*52-8x~9E(hAJUa5#5p<h~%;s|cM9F;)q1%Pt*cYiM
z^|fO>Y*wSdTF=>Nt-9zx-W(3lPa%Y1yBru+hYD~?vUthd#3ee*m-Y6^NfBC}=c|@Y
z!*-gA3<#s&3J}s`jc#GKH^k6I!|(ql0^3YJ`%SLr*xD*D64=mWx1J{Caz=XI(N_ju
z(7%s9_DaT<T07m%9_JQTM;5Y*)_LF921n3L1uxBJ1MqK37-RA6;&@f%$}^~*+g2&i
zd@ine(R-|H!CqL>y*#SMOqw?F0IoE$7E_Qt0W8d<nJl!b>kI0CxN7gt8*jWG+II<=
z)mJ<njIsv|EO%gJC(9tr;G9!$Y1!!xYs?N?;|J59Bc;;Va^r`Vy)hI_$-aw@+vXe>
zov@vOFFffI-ld!IWc3)zwm`~`b!=b<FXm9fSB!8KhM-g9->&*n$goCSH$jgg93zyu
z*|oXOw%BRDH?>1vk0XrreFzPg>9m<LD+2ptg`s-5C}f9;!!AvS<C0?Is0NQN(muhV
z1x~<)-ZnQI4q=*$F%rd>7tbtPW&dsgk)g#tR)tzrIo|sI_iq^j{h+?*uQvn#o6h>*
zg=<#}hyUcVx>Ob9HUwaNZfY2g{Kb+WFocv?XIX|DEs>=S=kXBAtIHO$Gd4wC(Fs1D
z9(3kOQX7GvYxx?ZuRg4OpV!txsnby-=+(f))BwHExTq&3p%S1AUU}FR&lt@`UirG(
zyW2WK)TtO=tp$b|x;g@a{!p;Mfz>5YrV$+&Lh?)%GBL20VhBd<u`z2yr9|zSWs@4~
zXowt!_9F4^h&L*@8(Rhj&l2+eIh}3^4k!X)4nrzt{nVE%$bj+VgN`y_I|#^Jvo2%|
zAGsYwmDSh9C^XL3rbICX(#B}@JILiR<zMD%942Yu@6P8kpLvBsfkq;u5MvdP*Sc+e
zR-ZUe6uI<JE(6AAnNHToYrdum6wJ!*Pf`dlJi`IAcd|&dxJAv-4kv3RruPRk3pYJh
zFLRs!WarYwDO_O59b{gAkAu~2=FEkWGB_)Oq`PHSjk0=##`1}$>Qa>~UspUPo3L4C
zO?|=pK<>c^oqid3mc-TNxRNzgdgi$|HoEbeC2fqFI-yVCY`X0~h}Sf*P;JPNb#Sha
zo}Z6tG)7+kSP+8D+;7|sV1zmG;=BxQeiGjeZ7;In0<;0YNNEDjRC>J8I~8#)8_+hU
z(Tol8%n3QDPD~_d<@Y%y&iU5^`)-B*?gakWvCtwY_c3e6ojapTaCigCZ#RBPm<p&O
zBNoVE!ZIv=y4l+IE(CX!u8WqeFqkmPreT8S1a0%j_DFkve%DZO=ILY4lq{6}k<}}=
zxH}$5#~4=!xghyhQgVq}rRJa56rks{hR+zUVOOI<3C(3N2;pBRkzCjorF<DCqh<H2
zAgvQx%J5-(AD-dk#Rh3G9L}nfnilsEs|8N6YW->kXUG_qAH|8Hs?;RZY9vsX{y=cT
ztMcPas$=C7N1C8x0DRIeG?0SF6l2j4iUmL?_3|^y&-ZAp1pn%p+?cj>j3ed8&pg6W
z^;IHUMN+XsRJgbuos8OS7h<Ca`0<W3e->wM)1Jh3u_RS7o1nAB{FoSGrsW`mmaB*F
ziDMgEcL9GAZ0t9Ot!9Wq2xb`!u}Vr?5S4(^+91Capef{FxE&lVyTVQ_sA9uY|2N2{
zxHs5*cS)U=Vu3E4fNbI^i%gn5?XWRzbz}HvqBDD!Dt(K`7V5TGH^J$Ny`vQ~_lxda
zWj1+eYfVjL)v2T96a4@Cr{$+Sv-0o&0Bg+u7fW|Db@+WntF%7sHpGy=w|+}C#S}Q>
zAlYd(7uC?^tvM0(rK(BTSEzx)$<){oBa+&vH^%qAUp`Fn5AX9r9ZU8N!#A_CPS_h7
zJVP&ebgCOpzXj``-w->*2OVhf=RszW(?wmW(@paSKu#{peYdfrJgu`$rSH+l<~c87
zXEbm?c@RH$cWZ?%x5ma|M{Z<&UV~xhMUyJgaF^wPZgvrf?cAEfg2HMOq}L>G;h-7X
z2GA@prtVhcgwVu<9(vQg!a$JEwD~?T)#!;S1<0iXmjcM=Q$-@w9}-!AXRZkqhiA+o
z@Bs6BW;IEsFwCs`E@qEb!^fl?2|PDJ!{mGk#UbJH9qD%;lIt0=8jpp4g0hfoQ~kb)
z21Kr&e?*VA1HX|%|0hRr8zQ>q=GX`xHatCfPJ01f(y*=A0RIPi7xeOZ%w5M&dmuC$
zhVBb^%gQB?X4m<1%}AxE^ALl{BChm%7vrhdxg1};!i})2Qy-ad9B5U*_3r2Sb3XrT
z?(tKNUG=+qUfN8^FJoj2JIi-4@cQFh#rHl{^R1pA^KsY+o}?G_;%g0Cdi9k!zD~O9
zrVp_FrpDvafdeT0dY7K9`z-6FLk-uS=R8YJf7}0y4X5sbu=6NZE3O~IWv=VmhX7B^
zviwbg$oo=uSeS-0K>uK)0us`m6HB+DVlU0jwB@%G=Tx?x1v3M<<pA#ZDR&96ZW9+l
z_$2Y$Uf`ha)_9SW4y+4a?F+uE&poynZs~Q*KFGhth&gYdz2G}-8E0Eo0PG<&f}#}0
zBcphpD;?n<1)c{n#a?^GscuTuE-ubwgHzw32PWwYjV8^4biFN5YIgv)Fte0{3jcNO
zm?h@GjUDnQ9|r^RfQZ{C>8@qchkal0?M>SU#T|Oljz(Na5qN-EJbr3OQ1>HfYLnS+
z3yTU7M-aYpTO3iltFNyNvdFg}!iP{T<W%}YWvYqAGM&V}PA}$VY{3F>h+M_eITKND
zVfrW&T?%Dy&{j#pTUh1cEA@<GG06kNp1>5$+dr8S1*EaFMp`$Xn^VLP2Jfi$RZOd|
zibfFfW7##={Go2@#^W(3$=u~-CkH0OU;#UP_czOsYG$AbD=c*>t=@B^%EceZ+sAGA
zZh$r+g}HH)4BDh-sAOpXzCNl6hDeJKMu8Jt4)F6q^(+P|1q>5ie#d80iJT^n$@!K5
zxoNxS`o5su%Ac7DMCeZt_2FxX7qnX$zk-n2jmS)-Cm)B@>I4SzyziJjk$<$GyMzJV
zkP%YNph)X;&e$o9Yh%7+smATM$fww76>dfBl-+t4jKAegB))vK9WCtncF10VMdNnu
z2t5Z3f*!n6!cR98@i~lU0PYbA@oCllN0c2>3mEkDU+QTsG1x+zd?Fxir_?6!B;ZBu
z^|qaXUj15sj$4c!a<b@FN+fSe8n(F7+8P_Nwi67-${X5enI&VBPY$7(LnBl}4MRGw
z;a(N)q?y>JkhtuO^oQ})6u^GM6Z$ifw16jFG!`|zBEzlOh*hRd(~!jsP<pdKB99Nf
zMebvebMuuUoFRc)rpEMbW|rJJxp0&F<)>@b8Agt^lx@880stk~K!DDr_Q)Mg^;EWE
zoK#;UFs+rL!!4rkt&TQ)K!88bMyRX(n~#_YzoZj9CJ%=sOF6*2Xb(osr8P=b2+(8e
zGVXr;f9g{OX&QHgDO%q9992+=sduxG_<Jegqe+^K9&0&n>-9M!#Uw2S2j%8Occ{kR
zc4(E0rV8ki??tkf2-GVh+@IHZ>z+8G`N6+$u)hAAh1+Ltt2TH@4gnKqLM4E_1fiVD
zsepc-mJXp~>c=Z(nOj{}iMp$IH&E)5;tmC842FxxE#f5sU?h1WhJPTFdj5{$eUeu*
zgHwSIn!~8@iRwAuT|z%c{h+e>`0U!=Vtu-$n`QU?q-P))<HTcmL{kePmgzpna4$~c
zWa*g3nPr$L8Eby}dry<CMa(b|-y&WMlp^>;H%KLmIuH@lsc8_cO2daTcVy%O)LTdo
z%uA<(hJ_leIf`%`QmjO)L4!{Trrnubg8ysA9iPiuwHv1{YU4a=z+!Qq(Ex$mfP3p7
zvGF(f68Um5^b-(+b$2{QVGT5}W5J5a$nVguP$|zI*vI}DtQ(W;PDPssT#TirOPYYF
zzO5ao{X>jKB!Q)sA3?mu@#<y%CAfq}VGDG|S_y{4C}$mgwB{VMdUIJAlDMSco8zU5
z%2?LxpCAL!o`+!7lHGtJkTD@nf}6Ba-}*OzoiyiFFLlOyY!5KSQ>>Ce<{tfZP-4ni
zhr#-JZ{VK3I6@$C_e3G&(ty<X*6+sP83&{+f)MA?Bp7UJiR-1g5)`j&wDGWsMmabs
z=d-7hQ(U8N&|Cy6@95!PIk5^uJueQ~hEwWDL3O~)Lr7(k=LRK4K@8mdZt33qz+6zD
zK0$P&fJkWQk56fV{FuZvlx^9`Ts7yXYFfn#<28*dAyY*a;`C-h9$yw;=#*Tv)H~z6
zc&ll}QJr*b9ng!e;E>FFlAvXvvbVBz0dH59m0kQ<*jIC?bR~VA8L+_in$BM4u>U$T
z7F#^*zX-70yx1mx$}S4nb_gq+4d;}FnLoxEiKZTzOJ$;&@^;Y*v2+q^L{p{X0K1`!
z!qUzs(gl-fShVR?Naf!Hs@n(vFwtL4XQ)ipHa-5_RdQX-KFKYxiq_USRurY@5TL;b
zu$lJjCc&j_KyCgp<?@%N+;+~hc=QTGk9BbuY3NKn%jp%)mSYuL|7@WpmQEK>%@sMV
ztjg~3gbQ73B&E&hUDan${>Wfv*{c>%LM>J4sy(xVeu1eu=S+BaK)XN8`mlCdX6whd
z6?)qwna@@1QX%ZtE0ZB1C}of?#mz=OIdoAIF4`*>sRWg#`25+g;O-~9;Jt%UK%yPh
zQ(3_?T?9!2-LjEP(yy%yl*qbn>ErjtdKN1zJwNC&zQ{Z!<P?+r8(5DbmQZ#OPtx(T
zDF7^tggjPjLxN|%V+eU6pxpO1xinq$3m)$cq;F5oI};cK0dH&#;p!k=m>V4cBa*sY
zK6@3BTSvKy4x!NgsU(a}d}w6XGQ6>g`09<{;FhUTt;%>T6}vfgrtH>^&*1O^1-)n_
zmETNQG%s+hsi5puA8&F20le9l=*?ti@pb`_1g=umVGr3eU6?Z~L1derj5ZptW*03}
zL!paqV8^hA&r=I`_8G3@!9}^w1As2cUIT1_1mosx;U+Vv=?OFT{3x|NC}A`8<ZUe*
zUq2cMa^E>0@pQ`FoM|y?;@*HfoC=&^DsN6;={5bUJU5pWaGXD?(P|KRYZ^-%@UeEC
z!d<dZQuONLxfv-=<Aur7=<@q%;eEGu!Tngv6X%C1=t9xB?!U%7D;leb?!Bs~)D~r8
zD{*%RNyF>j@~aSb)B$Br?Rs3pcm9_^E?FLJ`2jf(LZ|}y$h#n><bNM7+ar{{5rt){
zeOh?Qeuax=Ub=5uh;3QO8c)X&fjmjbik?ZavHOw;Mx^8FTPLTZz}K@{z~%-@VPhT3
z4yQbwI?QMjja};%`%Ee5>TQ_VHQ6k?W_mqRM|V)~<op9r!w6brS-yS8VM9f3u@fp8
z$3HjMRMnT{UCQV)L)z^}J(j4W>Nh9kpp|A5pFzfpXuZ8=EqtOKZHnT12i(RQmkG>K
z0(`p0(UsRFzxd+Gj_d6_n3|fvAb}CQ=+I5>T)gPZM*I1x5}beqkxbj*1gXX1jL>X<
ze{MNkf8i%t3`Yz#_QV*hdoqic27P1|#O>re&QZ;Y!S571#3^QcY#XQ)!Wo$)*295L
zNYI}Iq~`mJjwU;w%Mu>p+^5ho*Mi9ynp#^1r0u%xxuq1K)4Di(mpOULl--bfyh!$g
z4@_Ye*h<SYz;zaTZu4T33p}awrEkXFrT=pN_rBLm2-aQV2_v(F?JC%QQ2>V@jxEPu
zeft(%!z?gOsRLKuo$FTd&v2gD&d=9U`STU;O_q;F_DLuI-u@6K-J7jecEuF{#?cpb
z!h)~HF?Sk!$-A&;YhjdswDDNHUMc0r(dX>|OIF{Joq1$ZnlqTQ!m4$iVdI2spt8VL
z0o3o9bwRxJMB!k&K#P~zbEB`T06^80xt3$W726b;H*Svar?5Z^z#|cVh%r|OF?T@p
zauH#l+MwkjQhByaO};0*z|Jk5%v7S&H;tJgnX8v$rW+kCAiskmrqI&xUZj#K_&!}j
z&sACl&L~Eg0PedyNFbGb5mPgXpq$v!^@N9jtpUP<f+fn*!h6EyZ(Znn;u?{p+v*&c
zW3pcYjXZdp@Dgwk9H&mYTYe+}R{Q<>Vw+X2XMJ{E>~b?1X+(l-S66sjb%l&i#nx6~
zCY>WeOZTZ^SFJ!gCMlq3xqIPXl~{&AZJj$orVj<_k>mDV<$l^Pm_9-BajZ6J9Z{BK
ze#@9EL}s4mDvnc(vRG4T#a5Kmj8nTz9>?-XIp?Ci<Q7c73Ao_*F`X|%Ft1{tsHP*N
zv1%f@Ecdt?5eQ&)td6JV;w3^~j`d-wx?;{`COG3(#lpx2{1ZRHEg*YTkr6JZtC(w&
zMTew?&m!sI#hqp>yCtor>EZga;Wgi!MnT7>?TKQ`@yf+jpVbMfkinbF!AGaXnVnU+
z8=tSUl^kF9mx~$hsZDx_h$>r?uo7zbf77vme_om`5`*8N^w$aug33H>ao*-=bl~?4
z(XWRkga5v?5NYw$9tqqHwz-vvG@SLg88fvCH~m|WL??^SwDNk=uh;QWTad4=Fpo_L
zY?HD~Tk%;lct{!HdA5_e=C3VypP?n1YI`UM^>!$wA4u9ji_PvyfKO@$6eVpOL$AQ4
zbeeR|Y*19Is4u5_SZajh9wTLEm25bT<(zJwYK^JVk+0g=-=D0KkFjpfm#qIvD<~@?
z&ufHvvn|h&O(ttvDfMO7OQuRDb2ph^I7B(GFlzTeQge!|pmy&71uSk`%n&F_-@&TC
zOk}ct%NtEwH&p^GQfh4oYZEf-nk&YE5;L%4#{6~=cP3Z#$ouQwKzkJ6BIC3riH-{S
zrH52Y8nBv>xgEe6sr1KpIr;KTk27<L*<ZpxlVmdkw~<5==2({LI!DiqlewwDv0>Q3
z2;YWxr1UDqVNiuavq+&MNx?SGHld(4OzRm-L*)F#kOj2f=K#cEIw=M>bVP>n3Lt3<
zrMNq>>l^yNwK1aoQa4dj004)P|I@}i>}>y|ja~8n!hOa51NSAnS4np;uWtC*yG~lT
zW~#StP%U=I|F=1OkuP9KVE_uG4ZtE}cjepTGl`55m$Yx36;v(>1H{bxdwpf3XaCt}
z(W{I+JZ?tHS|GmTp+>(rXPepeRz)2%);JPfLoG_$_p<k3!^sNQ&<&IHDHY*E4xB3!
zPb{01bhp1P1-pEi$^P1-{Ji1sczxZueO*#BOq)rx=DdjzWV^!U36R_wH_T2l0g6^_
zQ%|X<E(R!}K6d{%`P*O>Df%xdDh6fAMlpgZN2Q`P?vb%f(hvD$;Yiz5MVXLdkZF9`
zu#N`JopOk(%oenB!1uv~)O42E&ygCMQzJ5yXq*bu6>u_tbcehyDle-v;71TS@w1EM
zU#p#lu3&1JNxz8!cW(}WWTX0MDS`x9KFd&hI89rJTFvy}>Hg5t%hv>RZqDoT{eDN^
zL&M2_Eq}mHXg<FeT?l#&_yBv&kR!pZyYH<B$@|F(P`UPVs9InHV(*)e{gb42cGsmI
zAG#Vk0Ghr=>%hVT`waL%s<Pef`^E!cqy9x?Bs#$U)7sG)wcFf}sXbroJ9X2ip*<@P
zcC-foP%VPlP8Mv<;3;aroVd3mSm*4|@uzfWYbyxD*Ph<c=|;nX;7=zshF*4-Zr?53
z)51^@M;E~G+YUPb)Ogs**UDFF*Z`@D3V)qc&AVCwwD~;}7n_HpPcW|AU-vuBe|k{}
zW_PAeU^0(2@9LNo;Hxq1@;5N09^n)(p<%OUOS^_)M|pb{6MTk@Jf7}+ZtiS6yaVOv
z%HQYvNKoCFWl%bEJvdRdQ<3ay0AS~O2=abRJVt3E&NxE7LG~OSAVi(l$eZZj6pwIl
zaPaUs@PGD0c>?!B@xj3xh;kw=yTt3U<0sMG6~cYMq`!I6RRx+P(GaCMpI9UenEnA@
z0HdOhE-S2~5<~LWq(FZ@lLe-NgG0@t9MecovZSA~OH}9FEAsb=Xv$J6QBIF%e=;P4
z?0Bb7o=iX~*z1|jZT@79Y~K*Yl$&RWnXI`%XW63JbW)fc^$b{=z+)7#x1Y9nzwa5k
zJ-@fTG?faL-*cyv;+yPs1-a{qEqJU{P&xbNJGI`~|3Cn9N%^s`{CkJpEBN!|?m#?Y
z$<meVxTeyhD|%$Z-!%q}AVdH(!q|no({H7b1P%@^!g(iyLOkNsnRf<AoOOo(X9OG^
z=-aQTT0n>}mJo<y?pOh;-j2@bm>tw14fu%*%3jN+7nlU&)=p1b7b?z&KwZ$3j9o$%
zm<{I&0@_Dcw_n`a@0qM);$Fo?P_Nm~yOK~}E>*h@tWujU?wiR4T;Ej@>7IvfR$Zd0
zjS<+*F>o7$zfq?panB``ll=vNOhI_S(e&cho_S}CD4kSkzKTAdL<j99x6Cr!liXAu
zcgc!wn|QWqC1cOi%=EeX^5KFa($;v7WtJWH;;y5+wOfo~WktLPf^0CLkXA+|NsqKS
zI-ueb(!e}N?whUzHAy!zoJ2r{keGlQgTpoVYN*8;V+fKE36-GH<fa(B%HXR7;tjX4
zO;TVF9jOxaO}EdVtd<iHcd`VskHj&E2Bxy))-7O04h4!Re|%*{^YS_5mOuFT$r(L5
zy^twbp;DM0aGn4eDR)9hS}?-}Qj*DthRF0-sF)!^e-QxSwTv5!Q_oLCU6|33kD1p%
zl6s$csLt^K6GmRQawvQbx{HtsoQe@I)j~J<fYHmxQ+<$SHB{&C=<QuN7zjQJ6hS%s
z&fhEbX#k-F(j~XeJoZ<$ai?Y09*o(#xkNh&*6ydU6;YxtPcv#tkr=D;3fJ)1lEFCg
zC%eErrJY<48Z!56p|c9ZGIKbd@(I8qFh6gkB6*bIaRZK_#@CmikK3S-!J@7r?x<?!
zL)LA8VuspVVkgzRv8SgvGLYq*bUmG*Ow3)?O9E(Y@mVA&2!@2;&SXk`C_TNOk)fmA
zBYlX^Y_d{UrY-8l2-_T#@SI#s_@{(QMc50r@WucrZ<!l|#sU+`s4*r3hDQLb3}R`3
z@Ss0wb(OOS<hd1E63hhCCy2Yl4S1Wuy`w`JOT1X6m}k2V-qFI)EKYxx_Cc8^p=|7d
zLFQK-{HPL=Bve%u*phMSWN6$EQyVTT$&q6iB5D{jT+5H+)&3L%;AX-$?lMZ`RuM_|
z3ck}xrruXl+~*gV7O9JXE&`NCydjBs2gu5U33W*JQi;@yl6WFM?<sUughl0>D8>{>
zq?hb=Is0gT^a^7sc4?r1^9r;1-11YY2GyL8{YV3yror5`uilcZa|7JY_$~=xy9k{g
zhf;SR@(Z}dPa<*N7t`Zat8y|D{4I<7Q5P#iTDO{Ap@{XzmQn<;R4xNQ#KGpMT%eKD
z9k<jlE@GBiPj8v#4l`7vP@2T11)|awv7poez^zI8b4xGVI?=_obq7C~$n8{YZ3D8E
zzbL1b;FA&1kz1j=ALJ5Bk(e1$3J<K5ZXo0_$MAIq_^5hC409g04`;jBcgjlvgAnTw
z)mh3gFk&=Uz7;dL!2izty^2d}7RIboBF4ys6c7+<m8;*dKu6-n#BHHD2q*W}Guo7K
zyLdb>2+I~*WsSfjKWI`{2m@jE=?TJwZzR?7#uUwnzykQ<O3TD>2$dEb32H7?8}GnY
zJ)3`#3yR^#Oc%jOHB8I~t}+O5Vvi+rBVQCqqI4=v@@l0>W56Vrq5`lA1@V_UZ+$18
zMjrU8onCXWRCqyq4YPQqSIJKaCuJ!k?8u>Cv*BR2QpM5^SBOEHRbVASL7i2hEPTPV
zBZ3!FM{8QRdF&r{9v{+<6k2_Jlkb|cSOeKaL&-7gK3pOhxTdCk7x>=|;gJbazev$E
z5Y0vX&0$1m_IgPwPWJn2+3GCD5WQKTNHRSzgElT}>cpLXvl&zR%qgcK&&9_VyQ*av
zWkLa4M@E>}*lSdPwMA0%TzOcITI|Bp^n@4zaP_0-4CV1M(XGwAY^sw*5yMOQ_(;wt
zKW;usy+;HB)V~nnbCPjTN922gG+C`O>nZwhLq=X|j<_uriVSt5^la5xO@x&ROJaFu
zl%0NP683{6LXDFb5u&;&kmV==(uDdmfFwUZtL^8K`bY$`zN^U8R<rzhggd(k`D4b~
zg3sTL2_)o`88NGyXz5p6e-6bGq%1*apPE$0m-QSvr7eR{h*<XB^ywhej<c;src_SV
zwH(YDlu$baHj06KXX-%4L_Xq@=)&n0PKg{euMLw%;bZh!p=joz;0MqvMnkpe4q4Jk
znT|Q4fDKR?!vGLbpZdWHMr5l}3Xs0@Ec}1C9pa*71i8V#m<n->FjW;K9m_duMLpl3
z%9k7AV4b~qk4M!bvhrjH{NgPHvB&BjNfzW7Q)L!MUmiO(zK{kAUvd_W6$50PGDpPC
zp~!UgwDO#Sl!69INBe>e!wG{Q`tnoaop1eO<E~f1R%6MYEnngP4p8cA?A$ZZ{Wa%k
ziTFc~WNHd%8%0Cyi*-#pr;9`>aR`bqpjbw=JW@r}ThH|oya_)dZnnK*3<1=?%nl7!
z`|FtrS(~~3Swr`1)s)ibSkH&7IOc(+jy7z|p}dyHRL;;)p!mhBAc*s;)=;|cus?fc
zmto!(YFi%X>RQ@r$*dO3($LQnHEJzZIzLeLqw*|K%RIc)Q@EBNR`buk><!&c`lHNR
z>g<Rt>6nb(?%sX4XYZ7CF$twEMk;OpYIzGW=mPx<zF=5BDoP8WWDORL6sZ>Stdd$W
z72~V7NLQ_In$mWE@3NLJ6Cya{^)$|mREs95X{F8Uph0aeCB!!Sg1&myshe3RQrC39
z-p*q=waR+X@Rr5}t5{S#c+%S$-V*YQmBJrx0F(3;X~#Ov#=eWS#Vp#7dDW$T&utvL
z32YNhiqv!2T!oXx0#mUfu@X`r%P#J9P5&;sna?jn1n}p5-#|#pV3mTFu%x3X)E$$q
zDX!$Ui8g`UFal0htAfL%B@b@d8=_4i6F@mYrzl%3Dz_}~pO=^Hjq=3Mz5k)3UqDOX
zHV@<*h&_5#9W9kM_OI+2kK}IfkVzp=edq{O;*~XJ?xn22K}v#}%FGnnu5C(E&_}mf
zUxb5wSqiJ}QaNVGr=HlLt=C%4<~~!VsU#ED*-Fz`6D~frr|c=-|D<JYQ(on7LdzHH
zups3U)0<J-yH-?MIg?uHo9=($8QTfN+;wk(#q)TvfDPEv))Rh{JN?FT;tz-ZT)-sv
zyx4cFqigqkFtpRXoQi}!9uf}V7qe_X--7T`z0nk1S!xKWW287_L4f+z6b_$uXKMtv
z>|nJp_a_T1JtCP!p|uPts7b<2a086=rAmqE2M<)&<d!8Zcv;R5YAy0wH+N6uRSd2P
z_SjAZ)U?u^VS7D8GU41l2;zV!Hd(Pa%k0zsHZ$RGZY=ERfMd5_wZ8&#t@^Le4)wU<
zUP@xf;cEc~CgWGeR^hpfy2*KWYQTFo>t^!#gyA*ku@=Po{=*~tvdZNXfp0n2vukWV
z-3$44CRw9j3}(GZz`EF_vU1a77;9^fSRbmevCft>Sr#<^vwtYUV@0=)B=1@@XlUhR
zLWpj`Vxy9>p{9unz!Tw)6C+?JZ=9;V_Q3Z<7>?@{t3W41%kf$gxY~oGk6r;|?w(20
z2;j4i;*~!WJj)nPLG6D6?K|_j;!?=m#ExJpCtYCrrB?tyK~;ho1xM0++GJ|hsp4Na
zTB@oc9F3|K8Bs~C&v%}8xzxpeZY302z9n;9JMY*0%0`$nxjBCwW9}Ld$~Myev8N@#
zK)Gm;VUx$&+!4>?Gp1|Q&t1jo;9vE+zoO5V`H;uU_4)ij6L!bh5nW;6(<t3fFtJ9H
zPBv;*7y=m#!s2V}x(Nbg*?YENt}%Z{mwj6_Bmlbf7*B@<FNB2H4;D4ZQhAlll~M4R
z@4be(Z=z2yHtrSkk(S3g`=E3-{9xa~3_ZVO1C%lhVy{~APyX|rNDy+x&-Z#B0&yP#
zuUUdf!+j!M`%VKQNo4p>tpk>X5-~Q`ymVTZ`6o<Pkaw;ve(47I`K43cxK#<l*2m0x
zZ21VZ`v%<J=QW^}H{5PO-m>_z`%LpJu-{V(bfNYi;zjkG!$#y`^L)`^z2K?C8bVD&
zpZ%qQoH368$b+gMJkIuCqG#EVxh2CB*?*qpcZ;eAXD2Kf=gJ#eGB33mLQ>TH^QP-S
z4t9)Jv}6MUo{<)=k!5YA8Z4?Tk<CYwI;o72uvTf^xbgD34A=#f8<*jpX^^ndJNVyE
z<czpZiVZDEjWkJGd2QrpI<!=iE&!`am;;I#_F1DS%6XWeCduJYT2u->nw~%l_i0Z;
zBZu<2)+wMyMdpmxYb2To51Wiu6@VHLkBbiKM~Gz-{P?82H={|b6^UJ3Z#YZg%#`rw
z2d;9VcLvi$8IzXn50a^T5czP7A4D!<%``GEliWoWKMZ^|weVrWhn=zoaIPBU1cMRh
z;o4}gxt=ch@2h?Y;w65*BvX|P)UoR*y)}Q{fmb-G{0#V|U)5B~S$fg#e%i*qyLNY=
ze{VlB(BJ8BZ3Nu_6xvWf=T!M8VZ0Tz<z7+luj`A0muU`g8#PI~EOGsDT%D97gx@A*
ziOvcZL3!xoTA~`P*~gCB3UtCHDAI&kLv=?4!bTmVFQ8G~vb^Hf+B5td#1f%)5*fMD
zO7ou2K@Wir`;*l<&<hb?^U%hW^0Ug_an%EFLE#woH8oM5RjmHW8cD*d@&aR(s7~bx
z>Cu^n2Sr$<hjAwZbElUm@5q57y^q>pB2b3;LYKB24&i$v(3=VM{j{KHs$G=ibL;15
zREGW3V0wSSxW>If?Io1Rbmzr05u8I=qBAA>WxLR)na{cOR3lALp*lg4Io1ibrOnK5
zXY>o9=o=vajzY32fRFw*xhJj9AFC7vVSoknn9U8@mWg)(z%ZgR?<OfcQ(&Ww?w7n>
zQugKi8N!`yOMJ|IdO#<d8Eio>==*UVIwSr0<Qv=fQo(CG^;Dt~Fu-m}a^z{gW+}C5
zqv;NV8b68s%oSc|Nkn1D2y+eu3z;Z@XaWH}h80mUT&OY^6FNdQng4^vhG~}Ef6upy
zs1H1RSgmqDuu*zoT$>q;bRcswA{+6f>kA~BZ{a*%qikw8$qVTSN{CZUHeHPa$+5f_
zj*PC~EUom^z|8G12owfL0X@J{K~A?&XPZGx(4{)pPHoDYF7tpff@pM3HG?!^Z0wY_
zr2#9ee71r54-{x!?!-!k;2pycc$>YxUvg1yYtw+2Gnc5cY&ipZ3ec;y(p2te0uvLI
zM2emCI+KLL?{*yG^x&Y!B-Xi8!SwC^xLJW%Y6Kalygu}w>Nw~EjF_&014?PY>K85d
zW4C<7?>W|BJ!M{nHN7Y^)ABxCjWY@jAet1A*Aih`r80V5L1R3>oV;@3Lm7K09K<6A
zFM@t6g143{%r&#n=&;2J=LgF`?Th^)&pZLwZ?W<SZ8U&X83(OO3T}{ShM+#p%=y|B
z7mBUDYK&|ySz-x?R?$KrvQW8V?cWt`udRB0s67`qV;In7uQkSC`fOWV=97}ji_P;i
zjB)LX2K#G<`|jXgs6A&zi`=DAYiY@WY^UB7)Qf(*9_9*V;0`|H&hF0;#w!3X&WA!X
z?iRNQ8K<N(*IwXuC7V$oUhg);4)(F<z^57WWcn^V%aqOQm`2Z$4Sx2Tt!C=OkX!vA
z1G;!3$xU<^B^Y|lGjVbuF_CO=bw;aBs7VLV6}#S2Yd}T!j@9JcFfuwK541=PF3#r6
z0t@|?oyX7$pgAZvsgG*3Bhkw3+swZg#N;ur_;RPYQMx{FdVf|=7{56_jCS(T%FWCJ
z7BAAco;(6&cMi+tB{hJnMz!8W#bJsZKv>wXX6-r4i2@BfKg3e&%4Q3ZtpOw#S0%RK
z3{H5{X9<&UA$IUq`u9Hup&_xpvjUs=m-daI=k|v;vNR8+KK&K%yW0f;w_0=ub0L09
zJ5ex0=}*ZzuX@C>#TveX!}~=!azn|{%vZ410JEg*ZwTG{fcQJ9T`n_%HGhu6WI2_5
z5-gJTlO=LLSA@hw%jraoHRWOabe;hkDTtXs&D5A3y~AEIvfvo`^u0Q1=c1&HjG1a6
z0sI^ug~h@xv%rLz&4BYTWgVL@q2m9wn7@>jCF-2aZJ62S+t1?X{>Bgvs-~DmDt3nB
zyXh`D+~odMNw&n}da6wb>TTt8A?iM#R`<v*Ctutc1WK??<mq0$bLMx%%3UE?nOKI7
z*1wUl#CAu$p$jg$0!^{P`J795!e`ZbhcKk?6_6R4P3)sRwH#FcU9y{_sD(;HedhwG
zb#RluTOYpl254t(;NEB+43)V#d?$%MPUOf>rkJav*3~hKuZW2>MLPcp{{z?Fvy^Fn
zF2rHpZWI5D2w1v47NQCjXC^^#IcLPnFrFx`rHRnE2OPW%ZzpPK2`hFr0D<pud$P1&
zwIMj~mOp`-#O_qC_cug_+(x!1+OF5M#-D#LH_#b9=dVe_vZUJ*%FP!yQ7r&+!f1~?
znQ*US#L3i0V-F>P@$|7U|0oLhF4ApaiLS>`K}ec)BErdu<fz&}nH)dQF#@k53RhG^
zjF-H*^Hh@72``m9UgSD^DXu`UowX*Gyjo#eY9dIzp;~md(oq-*h-cQ{iljQ_`|V$j
zZ)1<eW)p&5msyx!8Qv6g3{9}IyIpG2TEB}z3NHA=w1hM*{%vjbNfGSdfh^<_fh`Cd
zBX8s${LE?HZ6daVwm#47w_8Rulp<kzdZ_|4EQNYAY%@9e^Vq++SkchDzzh8<l6vf`
zS%@wJb(0t|kZ~cAiHd$*Wh`C4>?xPNgCBleRd^m3?f4>2SfGx!{FmQ}3YV?g_%B~M
z&M^)?s-LKZp3jo=^q8}bDYpX|v1mB7%Fx8v-mosa0cbPFP{4(_`y1fDe%{V&vo?$#
zwN*9{)TFvsN@zgXJVV(>SV-soSXa1rSC&)Spquu^oNDv8%S+OvhV*}itv9Vzx6{vs
zfX?_<^HnHJ2&l<kkn+L>R(XpK=?T(1PAjq9UNvLgGTpdRJi7ps8;pd2;OG5*j3(|f
zhN1l!s!~(~#M(xisOO?;EOa=I)t}sRLzb@JSNqx>pp##5X!Mf1#QYeO!xGx$$Hctw
zOQg}zC>o&V?kx6y`N>CijqX&kzV&c%aCVOzkPe|>fgVNidk&U7jfs|+#7O?ukO*c5
z+F(Q9Z%+KP4FC?sD+l7(erQ$apK2%(@lkLWjtCb|bdUw|PEc#vkBNajt~{3PrsMz;
z2=3I_PZ#f=2I-@c7RfHM%EF}6MdSJ%B}PDqUM>i^gcd9!8CdURke#f1@uwHUVt(?*
zSd#XU<?TT4+%jO5i+2Jzb5NQdN>e*@%RQOoq_&z~k}C`;JnmnSA&DGr!S*)VeJvn@
z?u*PjvHu8f4tV`;aYvHT5d9Q3q5q;b^R<xuM!f}NzoSmcAKnrsT|Wxjxn_I5_&j@1
z@}uD><o=e}suzYONnHBYnaRt#T{POUye}vBX=G}g65uVdYip*dma-*`nFG)ce?D)d
zXL9fS0&Ft_Jj^_$`f?t-L0L?JRw(Pb3{=CpLqlZXu&I>c>*WMS)|_VYC_nbHC2D-#
zjdwVEp2%?kViUL*d`CnIbJh?*K5L>$94B`)EzA5^v2Yr|Thfw@9=0>KM%e+au+i7O
zijd=)XoZ8u@6)dThp%r65+&M}Y}>YN+qP}nwr$(CZQHhOcb~@TcW%r?Ox*c+AN5}m
zYwfDFGjnB%x7{N-*gpzHdluHEuzh#_*j=9OMU9QV^-W%-)@#eQj0|}W0d);10#k__
zZswING!OY)QzHbsL$BXY*|iUD)pNgn_MAo;dv*82elT~ya#-@#_x?Z~XsLzCd%{16
zE%f(J2gqJ6%_7@fqegO{V?gP{YfB4veZAuJ@%)^4JrcT!F)-U$t8EN$5i3{Ru5}9x
zEXaax%7`1R9`n+JsBIy}Z*tg0xhZVvB8zj|Meugky{0BX@!kfcAG3f{mb-WCA9a#H
zbUv95P9K8GOB}OsH}H9Fe@m`2UL+*ndq}#1N1eMPv8M^{(y^9;o4TEr2t?OOlB?{B
zrFH-|2G;TCwinlO-S8P#oLXYen!s*R6$OVl#?`fx!F=sd6PMW)86oW&bPJ&MSf;)K
zPq`=pw~6HAKM>dB&2MDp@Kg07;97!o9Be%g%Jof;a5qgBeA{x0@J#bs{Rx+lv)A$0
zl2(`DDY-n6;^I-ad?KyXHdv`^ABxoHZvrG1jp3NbQ*Tj+HY|p$KsrKxF;yd_yp)UL
zf8~iZl0_Qo>}v*;W*{Bt!=9|N3{+$y8BYLwA<q!BX^lo)?h*1bm;4Nn_Hz^_9TewV
z6Q^*!_gN)UH*N=H&ZB+*BP86eC>bu~vRXHQATyvtz}J!NRH%^+SFcb21yiIN5(onG
z70i@PVySfKm!9O-N74iVKztnyWYuNb;^3O3>mjl*0Ugc=y2v!y*uMPz#g7YiPzl>L
z>=Ro0+NLN<8ufPp&xFSz8Qq;!yqRGPE#OpaUCKy}xJiYePLoom{)9|;Ie}yvs|=33
z?_b7fB@|Fdyry#>UJgQO%FyZi=S35B!DWaqdF`YvEA6nX=M3heXP!TyiraOJI$_pY
zrR8o&q!&S&=~y<x&Gs$37`4ExlU0kCBF?%Q$X`oat@^ze(>vE~8|SDmlPym({+Fy}
z+zA7&Mvb;C4Z-E98^#WEEqC<@j-p1&DWJ*<SDu4F_s(yhwnO1=oSCow%`9gR6Xl`b
z2iA^vSV{Z#*Ax!!I_=0jPw=Daq=PRi?C9FU5-**kY}4gRV=fr^bn?16_gJvjPf1if
zW3gb#K9W`ZbC}$845sp~%jyAv7-QfSSpMFr5wL=M<{!jK|0(LkogJW{M|3>sCV^E1
zq;)#dQ1j)~)(wI#tJ($PM=V*k+7OkFv6wtMw&hP;14{|R*EyOi+6vGaa8XW%$%^(j
zHQs+_VzFE<9(>O0aY9wam2^F8u?qH@XoO<#9#G@CT;^(J3<;Mf*)H&d4^&teC8JFm
zC#0Tta4o9QLA9AtTvey@L?`8O>zJc#u(4ITRPLI-!)VvDbZO^0nVB9#<i3kT?Sl)+
zUDKg-;~6@E$lWmL8`VoksGhLc8m*+{u<s><s4tu22vUFOHO_uB*Y{VZxR8JlH%^A<
zJlVsH<G;R;tW<Y-x#0+Xh(3BNzlOyuvR^+JV4;q~w&%Rs2oHyMmu^rwfETXr<9YuX
zuvfBJ2P2TlnTfGVgyn&EfvpS*WJ~!;ydTbXm8s7bV1}n$s$uch{N#!Q^v8R`^6vb$
zF}Cr(oRx;wjCked-|nHV#uxBP9~pFSMuUZgXIi~Td?TWFz|wVqmss7P7@2#!@6<dV
z+Y3~RI$_fMQNn(N9{=$rT&_w6@|v)=Oc&lnOVMtwogS=ZB%3*WZNfaLV~3A3&nvr-
zvoC7cZF4?}mVTemG?0%gD~+EIi)C*O3LMQhi(1CgZzl_2YE$zjqUc`dwFzHYqGB!8
zAdv8@r@RS(vhk^YZ82`v4tMvn3{%RgLkGC*gv82&1Ug)?#2jd_|ApAQM9Ae$6M>07
z+sAU>HaY>cd3;Bb=U%p*TuI>^(E^rGgx+C`h&;&>gbIF^gjoKZ*=td188+jkLdzMl
zGmTa9-D!_Q*YIt*E}b}^<Mj368q<Bd5o1I1(zXYEK=*C8M{`Jj`?GCOab?H#6>lUo
z{z+ks;nNDe=aG|^d-JvfpqO<=Z7^-w6%)M8zH?j)2$RGSJ%+K99k$jFJ|F(0{EcD7
zA_qm*w@Ey=EkcP)8u8Mem9T^L=Yb!ijh~0-+blCcLZNb0<<l2O;3w)S;L&GUe9<$B
zf6&o&zQNrVW2-jB#6wPN^%2f!eQDpjU}t63hioqsVeaZ`-K%zJvfOs)0zfGDysvL;
zc^j2`|7I|=(cH#zk_#-kJmYxL{<^QL_R@|*uf{yRhPgyKdAyV>S17d44L<6cn_Jby
z$U+OUoZ&)?1@PiZZE31U%i}BsG%?E3PFkrz!upW`{D>9q?!@CLj-g+u0)zc6JUVWK
zdlS-QB`5eFpv#^t4Jf?TyMPPHfSyUgSs#{(03gaY(~H>gP&YN3HG5Hak*PD^eL$|X
zP}*Rgf^1Ow2yXALMS}b?sD5IcEsgnn=@Pk4x+ab)!2cINkHz1|2JvxZbgTqq76x@-
zG5GNEPxiU_6%aTzfQ9rG5GJszDh0D(7<=>y!GLA7^$Lg>@R0S(hil7R)kQF0C*5l&
z&@Q}s)owGkDTv(L*3{V2yu-cuMZWlhaT6Kb0wRK$@u<4q8$eHOFuRvEPpwBSG#;@Q
zqBN}_2Qrag(N&Im`3Ej}9u?4ytr*UA#6G|GTeuf#+EWka);SQj4<0D!K5a4urJRqg
zGgla8H5phLqvauFcXa1iutgUDFV)szvZ{d+_F$2O4JPQ<;+QFvEfW{alhs7?&XK49
zx+q_2OKawvuZ1@(c`xM$i|idq`7mRp-KsAv;<$?E>f~OX`0<o``2t-U0UZi_QLN-a
zJrGT}0d8635%ccX^))dOY2s|mVX*uIKSTM5@3W*sscvZr6U574<haD^cncyv82fp(
znF5y;v_@z>`ZT1%W11*a6{xDd{_}GN-CLn9K!xw5jW{eCY316Di@##ZmW@cfgMT57
znTIG{T}F|hq^GP499F8WynX)@tmpHo2#(dGx5esDr1_)k3nWT69HP{&YsrbR>vUKE
zm)pqTe8tQBAN4=EO`?aAW(vI*x|ii}ORd%kH(YD`k-jeNh=-e0pzzyeJsjyiM^nwm
zg^a&04R=ZUSHiTWndDIa?%9PwZgn{;`Wr|8Y);2ui9<L;#c=Lrb9J9TKgf!;Rp@{?
zfADOzMBlTCZOt-vgDX8?*ZVywLy2xlA`y6{(y^;kn3F4H$_8VYd1n*zQtcB8i2A~m
z+Auj)TP#-}vu%Wo*?k}F$1Iy@ea85Z<@o0Lg?d>nxs=A9UXq!+(S2?c@;uX5X8MK3
zp=@;*fV#gFynik4`EP&9dw*Nr^WXk1_wV{|C7Jsc{~l>67=&(shJKlvnKLiLzuzZB
z^X7!>YF4){^bM}LqX<PN2KPy5TbZa^y9K*!9t?ft>ujF+HyYVCXDh#3tq5_+YHmSB
zeWh9u!{()FK|4EmXAY`l?;Z7cTE&#O*ERkcmg#VKIMn>ij=hR?`vkA<v>3}jM(q_j
zAx|U)POirsFtL;2w7x4=Qo8`5(H+P?t*5a%gWOaieKfsi{fZKfcRzG@7*hzAwz%D7
z`_q^<-Vqwc)r|eVYdLB73)~k#GlXDN5dcTIjbjdU7}gzaLp%ggyE;3b?X-<zg=w>=
ze1>WQ_rqk?Qu~IVH7LVMQTv&!%0VA7t!ctt1wS!t{w~U1i9kPJU>>5lpZ<<F9PBqu
zShJ!1bKW_6*s4<oFME+fv(N7({-Px*upV_`Lv249$43@oW}#e>1KrJve;04He=cq|
zPNr|Sz1voayBdGU1IJgIE`+11Xfxk3V*q<-Y`pzTT;5Uy{|W*cnvY!n;B<y6ht|Jk
zrwyx)ONI3h%?ub+rl=-Vtb16Z^Kfv$_bHTf3C)b%Md23Y3b(nk?DV&wY9DE318s%-
zi~rwhD__&M+fz&c03GXp+lc?yCGtOND>F-*|0u3b|D(8)aQdgXI-{_UY_ZJ2$4^=o
z%XT2$GRqaQllWvquN4X&Q5eDm!2nqKC-Q%HdFNqZ{-?OQQK>^x%OncO^plr&pEvNC
zkZXPw#?#+Vsqx)1G`DQ@qp)v6xhprtn`bvoL)TSvn41GH|2Zs~Pt%-}^3!j!nFLE#
zP8)&FL;JVyv;g>awp!gze|U}G_3<qK@ce4cHlya)rRlm!pbG*XzHo`2SASF#0ce@o
zC_C6~1L)9YlPda%^f%0Mq^JYo#6fLu1eChT)D!(I2k)N&wL_6jqvm4^j5J87O4uc^
zw*8Z<nu8m9Iy=nW;l7P>6R87;gPq6RIs6S5{Bn}GE<p2K^ESs3;sK=e2N25hO&YRn
zP&*5Cpy`lIOAR&H2yp;X-8#>VW=<1>WP|+-^x)l#aK5bAeOdq8m~R69mnqNZ^g)gP
zm{u>OPP>M^$5>c#^x(rWC^s-*{yP{t@)|e4`GV;VwjB5m<iH<ShM$44pZDHJ%<MP-
znt`eVIQe=0JlL@N%Kd|*^k+bWiqGanZUDzc{CvLv?B0Cv^WaN;$mi}smyLWGAOJv>
zhQIos!<5-R0t`_V`CkUmz4`NBH@g-v242JcO_TIL%Yyek&?xa=<;n{83O`t}o0kwU
z=lc9W6c)pCUg*8=62lo?Q_?1v!uDL4fK!YNY=1oXM8WoA#nEqkSOl{+$0hL<UdniH
zV3L5X$aOE)!7JkuPxcTXxpLvegl*s>%8&7s7;pOd@q6y!<-ayuMQ+QB8CkwL5^=j~
z*zsf#&M%Hp1_XW)0YNE-`vN4D#8H7rMTGrfggPz|cih|1f`Wt9s$JP~8vN&#6!>*;
zaA=-wMyJAEbM%@$TIZgUUX>W01Sg*z@&X?7gDZnq)-1*hmrRl2(wAqk@_l6v&jtf;
zGMrzlJt$swDQJQG`VT+`dNRYP?f&6UuDRldm~=@E6jttm2VTlwU~H5?3Kk5QuQlSH
zgVN7pnZ9S1-`w-H*$hC@4u?xRX_20h$1hkqvw(?^M;|$6?w1f_ra5i2W55aC`noQ0
z@EAS<fKA{YKsQ2Ii4Ah$z0rR3v0@A-&&&q)^d7unN+#@vgF=8o-$G#m7*LW05g$pj
zXzV_Zo^1lGGX;w=ShEd^-97T%F!(N*k!U1jjuq3J=NJch7NelTAD_%S&=EckDa@-a
zwSovBL=Pc=Q3qHD2d3DHk>!s{ECBp$Ak?T5kIoYxR=Ru($_8*cwo~i{r6dcoPI`7v
zD#VH;NS;wuZDPx7KQUu`VG=Q2j8V&oLG{QUL-FUmjIP%zIwyuObNzMOX+V+2i5=kU
zuzp^x|BgghVFrDQ6r!p$!%*^ggOSoJgc%j&&0v(B02w93+72sI+Viz65)?M-w<SlA
z;)8$05nSSsNXA1$044t^$L(>Agc|XgfZZ{&8IYhb8DOYl$laW6hHqFRBc#123n2V(
zc|`>B;U!&V`6*3M<>zW?_>`a?)jAr?;dNCs1bQ}4xP$?j*q^yGgDM8P1#T_cLHg~3
zG)JPW5lc;15%f^@bImjjck>gg8n^@SA=#rB&JHKM$+#t38-f%7_C(SGI)i>)iEIi1
z4N(F4?J<q8Ndk%~272ffm+sdZ(+z~TK<*n*YPc#y81yOVI8Thn?+<}L>^)%CgOWGy
zDtu7@os$P;hfSk9VqC&W=8jnD&6=iJpz>+DzMx#Zdv!WRv_wg9xt)|4$MeeHmI6KU
z@w=8J8EXC2X$Wzq?gINnn<C#CC;&{J=wt})T(LzQ=L=tHz_2WjdQhm<m7hpLOV!jY
zn?A-aVH3`SlR0tOHE^E=&8}YoSFv;ir)6PUENDLUF<F8I$IpTTUqAqH6JGwq3hj#4
zTDTVYuCdJsFkY_RvhRyECjz%oX`J!{>bpU#E}J#P<#nnVVe1AIMWhr68ybog^s)NH
zP2l`+NZ_%%I<aaNA5*^~Fyf}9U9d51wQQ&6x0EZ1XaWnkG8AUXTP!t|jexydTLpne
zaOm8G-E>yua4mlE2Mb%N54?Xh*vUpEg2UdP(v7*_D;a>l+yb4)YX&BdGltHjz1akV
zdwQO<!MU1@x7VegTep*`0cgsY10r(9`YJ`%O$*2rneaT<1%b}!Yt0jKU&eba`&U8n
zd9mR4;KN>=xp?h;TL&zBrs6f_+X<iysKO`(OTvHD#u;M4@Fs$6KEm0Y+`tFzeR9n>
zNoE-i2<~N#BK!<7gl7U2coGWZft5Q9Ah0%Y$+j&q%dzDoJsQd(7+-E}7~g~y>?sA7
z8md2yT&C~WC3_;KPXbY``y$dA<GV1LOW3;MCN!S^VlY`Jd#w~kiIPx*r8VIEs?E}G
z6<%zNTCSY9#E`8{G}ryeN+T9!rnd%SMX;FnQdWnUNM9{84uRpNHIvA3%EF9&JGuue
zj$3PIqi|Dz1EXi`U|fyEQ)Fs^Ix-$>0^NcCrP<E?bjUpC`L<CAid4c0%okvu(DiaF
zNHfe3vjuQch)&p>WB!+uj=A^#%rl)UA}zpDG2>j{L4fu}I**3a5=Ds3W~k!kaKr(%
zrISYk4?#TELSrz~Ixyxr@A8XBTpKS3x|7-0i)=*7T@BQ*&37jh0AmOFoQUi)&l=pw
z0v@LRWQ0rCF>mqhj9UZ+-L*<4po_21w%5gi#d)!kb!&h6!5Pw!8|@R9)TB?&kQ171
z^bEd+pZnX$?=>#uw9O!eKY$zTp7IV%FH;PskPN@nE1Bp-)U<3t;)Zl)5h7%MP`@!#
zY=b&xN$X~_B!8-MmGrz&ThkCFc<n&CDx$nvC$|{L7-s-yk0GXAEPgm}yY^~124UFF
z_a1KJdfW^%{~C%5ADFgWu>B`^JWtezvdRn4s|2%-7-AU0Zg>PY?u(&=Jekg#H7XQ%
zZRH0?te}YtUdp{yV1s`P=7)83HH1ge!IsVqs1*u<HF0Gu&oH5UjmAE^BnlF1wh0RB
zs<$s$_YX{k&~-_-_eN5o{=LpN!{CR(1=9l?ly&DU@(!_uDByQ6xY2UX#)NS<D;~3S
zE5uy|!n;=6Fq1L&zrTD|<vf>3j>h#fzZEu8rSAB~K2w{eYq|!zld9mcsW?B1IPDv7
zbA#Go+O!~EW(u|nyQW6FAi(R_)C^YMhM}Y|aWT=cy#bnI4VoC=TLmBl92E^Zdy&DM
zB%s@kVf@@J7mrCVi6NFXq0)d2V2^QMsOx1bL<S?#RGLt{-5j(cLZ}=9g`kTH!f6cg
zrRcy0ih9s#!a(U2C`l4rh-jLz)Vk?2EJ=Y1P<lJTskW)8r1fZ1kKPz{__6RCHR)J8
zPr2(QDqXs^iNTXhjUgDW5LsW8H24Ut{Mxjv&?A2;1ts@@RaR_`E}zS$ZNzH(Q6P&L
zX}jC`)5ol;E}}M=_^g3ev_tUpMHlDS(<{c`Rv^VC>);On-|}cD8(>)6@uD4(>Ov;c
zHLVbJhutBQ6=zu!DYXIpxc%Hd&#x=|N^ZSh9*n%7$k{)#9@yp<^a-6~rh-yMDpE#n
zgR=9YOQE*_xZ0zXp<WWq!&z{}L#THe0@45~pnr3m6M)btcZ7h42L2_td04}`q0+|#
z31HN-Rg<GUme^olCk7E%0J@=#Dtf6fCBTJ$BW+G8jWV0@SzP*CK!Cy$-6~`%_5z5l
z)_1gE6&CJ?G8nNj5Rwq|bN3*d8hwdsSYXDFi-!V2Y7$#8pq-hVGRPTxB<U%HBY7KW
zsSvMon+HZ~a3E0X3(4l~=V-cSf>1jejiNIgHPvfE64K6(fMH0{2&6F9sShMvG^F!S
zsxoyHDK4Qx%e;h!N;;#y1DDyKAS~oNJ>bC;u<iIJG!@f}-&|ZHqULV6=Gm@Q{RKms
z{=*eGla9%EqELf}hl`0sZO|k)D4hPyT9pFcu?DeMn%n-D*yHbZ^IQ6xJ^kP7Q-1fY
zeo=ZZ-9NZ4eQrVL^D$5*fETlP0c|e+-R!t@2pFcDQN`D!*+aLY5AiDih7yHj(bx~G
zDL;kF6bqEXLKt+?dDsaJg%$UKS9Qu(Ujh##C@*f~H=F4;ogs!!o4wJ+PiIZs@X&s)
zudECLx*_?TrP-;D`o#^ho8Z(d_Sm%}RU*3FrpyLq(jcyx0z0N57-pmbFaq`Z;3klw
zy%}M<3+ZiIc_!I;jcd_WB`!Z>WskDNvG#5Y5hlHV^h^%JHR@=KB_Lafg2UU{;O((J
zJ-YLA5>wmvlTm{$+>LC4QwLH&y$0^vbFo4<=EK$kM5+&0k4HQdfC2cbXz8fVP%(VO
z`foY&EQI_F4s?J_b=SN$ySz%A<CGmn9ZMhxGx$+3ijL)_Q$_m6&<Xos`tKgE_aCT7
z>kpGH3o=9q#C5>hn-;o#6SQ2d4Ab_w9tewfm1sICH%Mie)Nh;!(?TKxaO{ikix5hn
zu6$07b>blnn^L+tR-{r9hg3k#U?=n~{A6<1)sJhFDsE2~h1tmNwmE<2Wnq^6UjJ=s
zF8V>{a5b~~J-5z`jkq=YCQbaP5x?o6Z476;&G@(pGM0p@HT|>s*^SIx|BIg-tXWyh
z_<MnL=3X)Xmp8&yTT?}rjZe*B@39;wp4`&g=N6&GKGrS%^X6~srmd@H`@vNu0B>*G
zpLYXX?-iH6Wre-sk<W^u%XTzbYE*4j<@m6Ct-|m9wfp6qtK;dSaFk>Zvcev=^9yk!
zbJq+SHpnqSN36%MH=^y5gjn3@7>y7G=9uz0(Ked91>>o*!}?h)5Snr*GEp9ocB%^r
z5Tkl_z-A+yN<?5r&{uk1#oie4{QQRWdfUq=1qDMdLT#>`=%h@O>^{<E3<@bbN|&09
zP;XYVeMF34<*Db#C$2uwZDETe(VTtHyxx!kIzu_z#+jJ6kR@`YsM;UL*VJ*jP#6>4
z1PbIF*P#8xFs(L%nur7gNMh+^@S5)h5tfp4-<mS^Z$6OWCke$Q(!*@uB@aG%3u1X{
z3sC>*qn20$y7+kgzP>9RJmqw1`h5#v;dodTf>U~H^?G8M&5|R|LK{NFOQE8tP!Tei
z$bVJoic(b%l9<CV0wG0LZ~`SwS9mg`=!67)XBe%}hsxO&(}4y1)*4xh<L5G=*9(qA
zI|O5xag^pkTXL*dMcj|VJ$p)J>41+D+i6$LgDB>$^bXocjUisP#kDo$P)iE{tm;eq
zL$c(D#At>T4|yu<>%7U1?(3ZIIlT*B&?BIBu~lnMlxb5;>C%<O22O4J$}ecHb)OlX
z*Lk;zP%3rf#r>R?N~O5-Ld&Fztcg>4Xp<=FW9a((+bIpg4{M$MRR<Tf21^}sROp|o
zzyo~oSKONx^(t&T4cfJMj8ypB=X&dB?o{~b9TNI`-;h!<;LqBr2;eDpItplly`CD1
z!JDqu$o${wXf4HfO`{Qc-^|DGBMr4(HyXyH@pC|T+U)=?V#SbQj%hk`)?VpgG_L&-
zNWQ}E&2RgHz5=0N`Vl|DZ{ui#jKe3=fplxV7C>)EN23uF7;=D3Zz5iUFytVhmzZ&k
zkULQE{>$L}tnMef)zY*+oG`r{!&l#okH&UZwmWl|>Bu9{(z04g*3_)sAkie$K1_il
zz-GJddt8?d`5RScxPD756pwZ@mZi?wcP-o(kv|Xz6d}HX#jp4KDk(B=7X~VZc<Wy1
zVR22o!k&X%+U@#%Z`3&aSF9lRz>VfRz0#*d&ir=ChipS_gcF}W$SBSnkT&vSVv(<>
z)znhTd94%7mdW+~lMSO!v*@%2a|JXs`z5Q`=w~>c1?}<apSa6l5iQF?@8hQaotB(q
zCv-tDm}RsQuV;rx&$=1np^tOb`Xp|mgV|1%@Coe-)IzfMpsZMn$!7Ggnr&5;MMl3D
z(?IICq3OvjEm^YtndC~WefldhfAhK*U>o8oL^AVpPfIvu@<nWz-S)q1;<xR0KrFx7
zjH=h~4ke1^r1bkPTF-e*`&TL$7N^0uJvL=g{Z?G8M9ycu1FSe^^tSbXo|7RSS7E5l
ziX6Sqy^*hsr<8lQ-*#!VMw_+OdiwyqrtV3sW9^~smDiBRG(#QdMfRo(6NZqVz2BE<
z@V<G5d?pcSew)8yF<v*Pe=7(RndYTaT&;ZSUo-Hf(c|&x%_xGw;Yt_XPH)w2{SYhd
z{$y0BxNk8t)e>&v=5A5Ag(b9}eTh_dE$<~()sORKWZhbYm$xewBBuo!wxl9oH>vem
z|3$ICV$YdhsJj;Np5VP)0@K(0m8-AYkKJRG=i)ZXDvP!~e!@OxbsbVL-g(;)sAY89
z{{f1$E7eEc_2=hPD<#qkb2N&cVjvCSkY=yuoaa7^aSw;4eFc>QtmVu}m>1kN`!k7#
zjyj9qy!jn|^bszx?%UJiPHN_!-|4A3cU?+#FXrKgf3US#Gcyc2Zc?H<$8B_&u*bO!
zUTZK~iZEV_0iN2@j$=f0PJbPO+Q_bf7q_VD?Z#+)qr_<yHkr=&2xwLFe27wse;qy=
zrc@vxybs!bC26Yvr;8oe{9)BITdN<MjzY~`SCJJ<<~!{?)N?J7Cw&Y^I#FeNyZP9l
zSh$W#hRh^b;@Ad4r(@~dEOIk)_TeM(N`Nl+TNPxKR3Ft&ClC=LG@5({=%V_XTEOY8
z4gM}^fB}4+mK$PCvb(gQMjh+4P=9SvX)L0|yNu$+ULDj$LWfl6y46oRb*<6VwYbA(
z8y2`!$XEF4X^LQc0Ov6z{fO47-wb}Un}dF#P92jLhp%B2mQMJ{>Bu&1r)oEP?J3bl
zmpN?yyRhydtEe!wCWFNyqk#HV=(@|SGPFFy2!U|x1IO$L3e!txHT11xP@Ve9>)|8Z
zkW`4X`#Y20L(O8XL%p0RNiOu@-BA(EZ+7WG<}_eOnEH|}G(lBcvZsf9ZmMzuX$-lu
z+sf2h7n3=R>|%jumMGRNj6A)@ke8lK9CD1qB_7Jos7<Y6_n7FZ>$vLVnU+slSRFd{
zgS&up3jcm(tVzRphqKFifakh4#Jf2xZs!=$*3e=;a~%tD|7wH6WvD3JLMwwgOxfw8
zY0Ie5xY3c)NQQPbD^Y=lVP<O3DtDn}k{D5yk;jm&M=x~z0}lgoGy;;0i>w17#6B9_
z1X*9h;E%!Re5Bkz`EaqP4()Q@#ISn_mV6FvL@?o?vu=0XvF|vS>cFKfj_aWuoOZk~
z)2;4vMzTlAK=08`WeC)UZd_H07JCp5VS?9=35y~)PiI^qWdkzDNK|@&USc32^yB`4
zjf|mcFOPU3=dSy$^1*cJj7*Fa0`8Y4=aW{Qi5t_+KxwBf&oj<VSs{iI16bus1V)ve
zMB$9kcfvV|k_wf#vNw$x?($)m%O%bPIowM#l<m<j=NC#hZurhB{89D6XFSachm~<n
z^@)He5UeMC!0dz7`8Vgo&GKI#qKEu<@_`F>xLZ2a&3W||oE%v1@{ff(mFgfn)x_Ir
zkm}S_?sKjsFCJWka~V6Q`9iH6^yyujQ2PTZ>Sb-d*Fpmm4c)f6D5AV$OG9j}M)b2J
zKvbiCusgWK>W}%x@n<?{QC@+X2jZfHH@A{?T^BN=XHt+22vNEON`MJUK!sa=-=>qN
zOJpw3j_9KiXh`~QX-~SPL>o$qp2Ql^7+8_omMhWnT+SZ=rRX__0od%P9`!<#BG*<*
z5iZJ;=K+W9(mUD&4hROO`YecidGXF^R9+DwgL9pJG}`wy1UcGOCc(@S0Q?(-LF&r`
zJNccX1M|echtt4~1GF8<*Wv%Z$rH8mowi39fswp)cxI5xR3*L@s0PvaSLoHlUXTgi
zAh>LPb}=L8H*oI<Kr^ttaC9U@xnP=64G8t~4kD!#WLzQjFWRAdp!$+C#C1P4A^^`@
z;e=NTxMSpGB%9JTG|SN$2|K**I%m!RRyZ%^^8#tWXm{q|V?3neoVFfuMj5G2TB%|Z
zJs*mN<K9s+kNgA_o)E612u3^*&}hW)D?-vsnJ;D!DQ*MQXhO4~nqamAQpOCfLGIyB
z8a7i%k4tD94Fmg9i*(c6sB-p42~(ENnUdW*xMU-MQYnG0Y?LJ1q6YI=+c%QhE#i|`
z7@7Bmaw3WT07zKlg%yGG9vvNl8MCN2YWqsY3!|9oeQF<=RwSD+qiE+*KF%q_z=zH^
zhqS?+SXp8yMQ&6D6T6XJjR9v01t1EtyJ2&;mf0nQUy#P*;w!o38?3*?Ekpfyp%?A#
z4e&qcgm&bjc#d{(rbSf<+mZyg!-%Pz&8zVk=o7a`ie%?#C(KhILMoiITq^2?u=P&>
zkvewR$hQq%^2x0cwW%&5F;69#8YI$B{iKY?sCtMcy!i}X5PD3_%%bRAwL#RD=JVCv
z^N9Q9@)>3UzIZEm#HSe8l(P|Gx{^S1L#oESM5x>RYHkvNs2!-hh4zMGI7J9Yj*rho
z(ht85nbQ7pligL*lq`W!lPFys5z9p|%b@nxK1DOJEe6|8ZC8gR{i(U`JQhl*)>sl*
z?S0W}P>XI8E!HbwJ00?+GCl}1q2l06b-DCo&aj@>hV}(%n#b9ZtKUd9L-QKdg<n^{
zk`!2n7gDTyZe>lo7CCTW#Ixf`kl%an_b)VM83Wz3JQ5gLpqd6j+I?5CO_0pbuS@cW
z;Z$mqRUo&~r1viNHzNCeT+~j<Yy67?UzMg>$C1_<L*Rs+61^1F8kv5!!~x>^a>3r_
zirc)?A0wQW`24Gn4dk!3fS()F$y-9*t~UpfhDLwQDms&;BHf6MO>#Wc-*gi}TQ<9m
z#ge3an`j>Q|C<p43}8Sp0t5hP0{VZJ;s0TTTs$32o&QlnrHR_oz>El?`_I&2Z>6DK
z3s!<qL8jdcLe)aPPo*W@%VY`DNi$Z}AN#qxdLoFv3^XCk&Tl8vC9swB?}GNIg5<YD
zBco38Q`~jjP+q!;@QvVzh-b|#-P&dikAM*FAb!Bjrch$%7er8tR;^0*w7=h1xOyNg
zNeuv7=@`g%P>W&WrNj^9oJ}c#unmh~fjkrD_0S7#FM$N>g!M5nS#J$uUV<(P9T_W=
z1iFKYB@J%aEf*3=XU>@wb$q+~rqPnl4n!l2ijx&Fdik!oVRcPH5jztYhDGfdmYLLW
zH#uFCGm2y0?j!-|`$rgl53KD~*wdRwhIxaqFYupjlPwd?G+9D{*czIh%WX}$J0r#h
zy+BH+I51(u_B6_3c-gh*loVg=O19z6zsR;+eLa0v3vo^x_zgJU$u6oa3DsT=7)0cK
ztYi2a$-u)GFA$O{Nv`+o{K9^Z&3BRRkAVMO595;P;eWIaz#Aw40O9{(=o~y<EbQ%Q
zndq4580btaon2@x?ab`yWh8|~<&;HJm1X6(88G_3)O(IvBr$>MxU)xWX*u1@xe4M5
z9V<z(#3P}v`uDF>s;G@4BovXR=hOM|?3@t%PPYaTlfv!xzshAp?Ekn^Y!z;g%UTe^
z+ur;f(}npFm|T9=;)BH_GY;4}VAdpL46?EK#qM|6`i0?P@#AQ~9gV>=gt+?DdV^p8
zlltrmw_kTNaCp2r0!v8jH$*qM!6EcJ_ImFOE9<u}vSPaUdOXHjE7Zn)IF<Op(A%-_
zm)Hr9l#=`g8@o$+<y>*8zaMB<<mW>&^<vXOHbR4m&ED{?!gK_ds=4<Vfa)j&A43;3
z1%MQ#>QcahvUe8run2?_Of0Er&B5$AcLU6xsSxWCf{w}!F`=stp7JyXq)QKKKC)}i
z7MO79A0+HK4c-o0@Eof#8Ph2OlmNMnmw+})5M@O6n0A>GaP*?Wm~j+60nQ|y=0w39
zTcvHo{2AvLIg!G8>lUINNeD`F$s@w47(e_8(kfn1Jg$-<wUOdqt^z5X!RTOufvqT&
zAnmZnSTmV0#*i%^LCN27B1OiMtu3PrG;tn0mpP;HtO_AhvjkB)i%kGr-60WI-5gOX
zCa{ulQ^0BG&V??+_{kg_O?Oer&9&#pd;Y@qb9Qz8IX=7kM4xDQy|s(hUa6zoFFYgU
z;q4xtNvHe$wfD<<aU_t{xNWP8b(Im?0MFP1f0D;HaKfL^#5d5wFQMwJnR;d#xa3N{
zG!1BGN{BS&0OPU-%G?0?=zuiQLOwVqOQ2^1<g*6)BZPeLO!oc%wc`9C?TyO67S#Cn
z;Qz0!s4gKYDg!$u2o*qp0J_jy{s4q5TH7Pg5*?wX?IV?tiQ#&9>-@9#2PhHF0%~Xu
zPS@UyVZ~h0oL_KFs+|H$7M49xM!Kk#!l)x>R?EQcw?#+X$S~pD%J09=#(0z-;oHA_
zLmm_W0HXi(g=9rl1Vsc@1Zy>PmA56(eAnwQNLyJw*3$+|l5p)aU;y2Ysf09cZ15^p
zI%r#K@k;DUyF-t^KRMgAhuFY?w53Z2(mwOPeD7|35aP^t9{2o18<na7ugAX@Iq63O
zOsCYO)2&f!dwC+>ixhR!c4)wFPJBjk)<#=h7QJ<&^hVDSW^$`<2qe*>MSY-=teNBI
zOsG;u6Av#qxT+p^U^cjUP47JwBTSzw$ff9@4?e>CZH08A>RVZc-srxY0l!`!2>f<^
zpOM0F(RZ{slYuH?sn{?Y;)@BntEh_YMcN$ChAuh}O(|D%avfRg4f!BJEIwTxcAg)v
z&85GOH<9{zw2l1l{}6p4#_dkPH1hqN!QeNvuqoN|iu%<^wBuiY=b7ub=S|8y)`s8l
ziAF2cE%_7GVl&XO_LbYbuMhWrq<8eM8~&OE#WfELw*mWdyNfC{*Wh&OpGqfPkJl^k
zdOzwa-mkW?ga(Yf9s9k@{??`V_mZZ(OCFi_;K$vEIsNrjLm$0oFKkyBvpFa5Lw$GW
zim8sdt@BR2cWGl-G}#Z@|M~Iw{SA}8gfQHEmu<bo@7;BpKd5e)18d}?DEb2HZzF<o
zg^zrT5GyNkuq7+>fhYYyfvG;RStB$3os@KxB`Q24rM$+sk?Q;kQ3w*8pN}o;?s6~)
zhkA!k?Aj}zW?s<dH8&n!wl?f)U*Slnt1ow~njYyGaGs={CtcDKF-1NTDR-qzIfm2J
z1+1M|gvjgEG2v=$T!~bOboJ4SFhM?7QrVI!pM8p48}Y!-g~-OzOuXA`RD%n98JmWZ
zxjXO<a&*YO42>#6w>Bp3`kY?v)<VO?9=zG|+w{%);vwZ_)3k8rrG6PAI|Ln*_JS>o
zN;gfE@eGrHGu!i|vkAZ1f;dm}y>1*?kgP%w><&A7CAZIJ<EH5l#;xCc(l8o2JgFVG
z5S^@wJ{?V9O`xtgxT;~3PO4vXZod2-2Iu|!e9?uRbi&)#i6VMF1MSZ$=FPd0jm<f?
zvkU2{mRIK}u}+4<FC~K51X0pEWF)H-98yE7oD-?Cmr#^g^Np0kW?Xu6v+9s~9!}CG
zmpS*8h(*jaSfhpJ;G<O#<afvo_}$unM&hMk*nZ}RN7ptrkL2GJ1nw~yettY1PnI7)
zJ{*6h=xPm<oc{Qn8!_8rA!aud9=Fj|-3k!*RJ6K&C<hQM+cKFcT&KZ}QmWffY1oRI
znGWWUMQNMvvnCa=`nT8*RdGGZr%k12#IvR<CfZhM%7gWn`)H$M0gP$%D<*YF3uMph
zP&uOuy`Ecv6*yD2by_p7=>dGPs0QI5lfok#2=F^Gn-S}bC>PpJX-ja>Dutn;*H-4u
zZUJfP6$UVS8mj=~7G3Ag?Qvu}EKaOri^6x5uM2^!c^FieN*GH8MVM!5@UYUDM6J0h
zYT<cNq@u7Au+6m>EAd!M6xAyVF_xuCXs{zgBZ0(d4Bgj4-DGU-c{zmOJ6rN}PIiP%
zUkzl-7#T!(u;)?zk3@yOOhe&5;%yV~Obpd!lMIng#z8eCcR@2X&s>_jj@s;JAtI0j
z26Y-#q&>mNR8W5q>B>)FI9%WZfg@yV#5$fBb>8~ROuQ;{??whAU~MmPm~th4up8Ek
z6+)0ok8!urIfkW~Zj%U2TmTy=s6zo=5Ka>`g(*MD4)GCyu)TP+X)<t?8N5pL*6aLo
zcU;bh-H#u)aeBFVxp;xHIDgox1K-vkKC&oE$gx8h6kEr4p2Ne79$lX3z>JHI&@4rB
zw38|tE`*`TBZD~=BJX<JvuPP8ib;C93}qejuytH^Dt=tt++4iy<Zq1Mp;dH4lNMol
zI}T^Z%x*LrYL*sCrgzm9EwG?(=B$gZIZ~idvR;B^m@8?l3v+Ndga2fZT4MnF4RBp}
zalxr-Shi_$yDD`~GNF9=tr)CtVT7J#zSlc&tPsLgbX33UKIEY5Rh?0ZDwDN=brB10
z(cKkQZCV|1ut-s>1q53hI~zmy^FDAy<KUGpz%C0~{`Y56dXgkcZtI?3adOrp7PM&)
z>T<dTqBjY0rYc5JEHP8boRurdGK!Aon5xJN-FBYsodBRR2CFK80aJH+Lhy<pdYf(n
zKs)%+CebwM<*_I<PAcj_r3MMau!Tyx6{ugbP>BKiPhGVFz6IcuU{x8Jfw;-gn`AW9
zqC)aFsCu2Psf$AVnCbnGhY#ZuVeH-fUsShq`eblLvGQ>nwQ80QKr%0!>HRpopkxh%
z*dy2#ca9WGolD^A<17XqPW~$q_ZGwm_$^|q%g;wsr+PW5?F=<9yL1Y=;#4qMxa4@-
za^5R=+Anxd;fe9rUzl5ae0W3uzYHZ=-!!OMi|}(Y1a1Z^1?g^U*oYoTC~#XXh?M}@
zt<Dv--o$4k?9yg}Kv58FBuMjktZ?h8UoylPLumU9)usE%(W;d{=gSWni&-zhPG47r
z^R4H;GEr#-Tg@wx7Wb7Z?Zlg3JfUfH$d5dDJWA8M3c<T=WO@N%h0xp;u|?5taz57Y
zxM6SNgrAL4TK`sLN;_ElhBypwOl$`Z%)*_;)}MKXO5I>92FFUdZ1@j2fDehKHQdcq
z*cb9tnrfyi1OqT(#k?i;B|N~JI3o0cFPSTP1#%J~UdD6^=_AeUU@d$jpg57?E-i`I
zwbqW1%x&~soMz6F{^G+NEUpS4KaK;p0H5&x_ZTCQ1{j^<gAM>dO$h)%@V`zCN}|H@
zN+P~l<7w4W$)V>zG)Mg&%ol)iKq2fx7DGeah9Tne`zySz_R3}64s%tKzNwjrjmF|+
zj?CYuU!uw}eZTp3+_0Vi#vlI1@v!)MpMS(k=8xq5`L5vvACZCHYNb7LB&J)Kl~KUx
zzd#Nt-t-^A%Q4u<qJSx;vOEHoJ<O{c1HkG?b=niwC7rR?7-UvLbLfHyA<DFWfzV!q
z<QX7@z&8}V`ahj~b>8kF;=5z8x0__GEU_5~aQ(65>+%YStiSEGcxZ?shZ*AYTwM8;
zvZl@Hy5`9k-#L;X88$Z9fU;Uui$DFzs>|L?ntA53;qw(@!1)yZ2kBu2KV*I^cHmhg
zZgu*J>WLCwIh8bvU-t|O%C-Y6oRktyqO17ZH3vQqLy9>*z}tTNT1FD&feY&rD+#jJ
z;EvcCQDN`>0%hcYrZV2kIaks$gjFL84NmMg{1QV1f%Isq6|(#H#;%*h@#4dPZ8+1r
zXekLrN^1mW<CtlkK$a;y`D@lwUbX{MK5K#?)1xI-o_AhfKr;WSdCyiyHN!ECX7ASL
zc;%syaSLM1;Gn6N4}0Sz{|QVR#)Uj1W_!95Dl(*7O_!DitN5KEQMI9*JVAPgia6Hf
z5hRfM;cWcbPY?l@5hRByOWnLd5+fgIHq5$V6ZQ?>I|sim+^hD830yfx@Df6d2!YFR
zyiPhCFlsmH+DO}{p7`2Jh8FKd$)>7)_mQ@RPur<*Dq`zSfbb83i2B4%y)kt#co<HN
z!LnUZD`FC;YfB@FNxRxTl&tD7wLp6#<6&6>Na1xE$v>8R`-OuEf+_KSKO*1MLbaM6
z9aRX*QfAVtYG_1I*b>d&qt8#j04XH+HkX%VezSFl!6<`o5&pVdJ@;hwprH(tL+<#+
zTg;K}h#f)jcPl~o6XPLdi1ITc^BNe~c8Jmo)trV5n6Xsn49yy7#p<!@-rF6il+GKa
zU~!wkPss2|em03kx~tJL3pipz2vd)Bz<wTk^7_>}GtcIMIvR9HXprjsz~qg<-OlMh
z#P9@9;S09;Xp$1Ma>pTuXg9tEDzejHty*c5tylIDHwsUCi-FWX6TiYa2=aDr(8Ooa
zbfSU80!KUrvkqUkR>$|Oz)4qOqcG-ar~ni0l{b$nKeq0-PI}Qy@|X7e*h%XH_DO8{
zJ&K{Vu4NXET1@~DQa;E}@)g^d#FP~Cx{n+t62V_UmI)7|ov;gmw6GHfZ1+)4=`oHG
z39^;rAV*30V`-}+kMLp%mi#7P1AW&=hHHixlhUy5YgjIt*|ypozE_PW0a#mohPP)g
za3}Bti)~xi!tn+l%+DYOnfqU5xQ~W!@s%OU32NmX#b!Fm)|FH#Z)oRJV+se6;S~Lk
zl*xw?d^op3@UdsYO2<_%ra}kO!Jc7mlaedzCWd|KjL^l2I6{>j#}g*-6YYXNAp|$l
z6NEW#94TLPD&cB;lrRkOl4ZEBOl@tH+7JOBaBoFJiWna0N$84>56_Y=UDro49Ld5?
z2NqwjDZT(Rc03)uOf}2)fdOL?x^?9!ApS09l*PtJd+v*ZqhAtuFU8cB#@d0@&mP^+
z$sA)`V#3)EvBeAL>f{n&j6e1h+M@f8Ms&2unu~*77sB|ARX;xXqAxMX=*wY$ahSqh
zV9lOfVR>H>`KL9dKZi?<{;ClVK8mR)0U3h^*hjZQ8z5!Nh#9G|mQm%N@X<-w-TGg=
zgg@wx$dafAE8y+Wn(E{Z6?3^klpTkw==aVjbWBbYa!ugdxCl{35b#lozGUkXh)%8k
zuq#-n$B6>sdh3ZP^l=r&dZ^}j&^w}6mB&d_cc~-6;Tz=J{smZ8&W?Mn$xdop8LFKQ
zQS{R{Bwwh>nPhPG1}ns%;MsX32NJ6Urm?#IjNZDy*%0%6*ILOkqlcGD4;h>gGu{(U
z7nJ-rqhh1!+Ot=38B%!YY>aool{}dlT}OyL@**h(6gYgqy>)rQou;E3n~7*HHnYBp
z2Bso6x`zT^7I))IK!ZOGAbg(m&`>U@;KhQ_G+;-fRZ$je8`QL}m{~8h@*1v~o4)KX
zNsN{@p~oi0mfF5kt3L`4RKsFh@2At+MR484zVz^$%t3}W@K0`x4`SdD)QLG?6Uebb
zi?cAHI~$0MWy7<t`$w*SWk{25@(1Zrx;G0Uegq=%1|L>TyrH@-+8PpU_9K5Es}81n
zS&|vW#n$;^na5zmx+_!L?4!seUi>D7(KBr@+_SiXB)Wy_ZcIbJwh=@4WhG2GGX&(z
zp7ByqJJJ@o-S-|iO5&qBwNM(}@D2zu<ZBu}V<p7dUMyJQF1T8<TZKr?D?z$QSjQj-
z60DG4*fT$%*LwLcnnxSM2~0<t<~jQSie-qsQrjmq<{)EzOU_%Cnn`$f#(#8j?!URk
z_>=uXFEGmPk?{sED=)m4-b+MtrW?|EC4=xIxE8KCmqzTY#HB?e(hAM<T!a*y(9d9h
zyNC&89wIfO*oD!>2tjpX^mh*j3zj`;BBJ3A*D>iw?V5071~uk)ppnIQxSYOX_EPa?
zPfS^8I2Fp;xIWV%6PIk$12HyaErzb}TD^NI$gei$T<v-qhef|}VYZcseR<BA6h5&l
z<|!j2TVYX=MkaoczUn2?ntm4!G5kg^aUHOIa_#|mlVP|%PRxAsIaYXsosfNEI^8XH
z8l)y1)SeF?hTOv4lE<;%0@owhTV0Uw1wwVEVdcKig^~pO3V1K5fO2mVS`BIf<}z;Q
z#CU?1FGc+euwqv2*bbi8`l=uTlwI2+s+&;BTz@F4cS`MsZOG_;w>a)6ctpPNv|=1F
zkE>uc0$L%$Ra_`>l<PNpd~(_V{Rb_)JT&TnR}Sww{7X#n0X!ku9vnv$+wR&DO%)*h
zgEIp54sb$>@=jH*gQJZ7?yrNb5=PXONFsmwxbMFGBMD~zoE_Mm_w!UFyQ=VoVS%qR
zPTPqhKgqV?T@L&mCWJ3nbNzrlCbRVxD`re7J>?r(aSmA`-f-fzcJFi&+;Tg#t7<z`
zF7hX_v0vDU^pMW3&t$!TZ*EB^%%T%jHVfs9Xh-V3nMZ=ul!Sm*zo0sg;>!HXF)ku$
zyqjCxM^B`ksfpTgUI;WscXhu97n!b|%<`hW>APO_Ez<P3pMTl}+&2?P&r-UkI%30)
zb+7Uw+;Bw|@&X}HDKr~nt|A=uhXOD-AV1S5`9qPlK3k1oN5CEtGoeezXk?Nw@+lbQ
z@~u=C-@icSr-mHsrTbx+sJ}^zK^1wezz$y2rHf(=k?SI!ad;regd~+w+oR+8y~PFT
zeibS{jwq)f!yEG;C?Y=`8a3UREK*-THFa8n6J8iE@FO`-OtoWUoauj2w!^Th@jBqq
z9^^C8XytextYk~PqKPxrQR$n#T+yM41)G7}&_j59fEDd(A;8|p_F1C?{O;7n4uI+S
zigT)VS}0T64q-f%sh#TYlKMT<6gVEG-ZF?ZGrW`EKZg2IBECtxVg`vEARlm4%&Js)
z$$;ZsE>>5&7Nz6v>GGoJ+`Xu_eU%3Ic3;tR+)#koy;;nOU&pZgTn>}2@S<`nHTK#%
z9LL#9-RX7F?XHF>@UMW9`8~%qbcm)-O~j8(-o{X7WGsUi7SQO&842@975ccTE=N2B
z?n>XZr&aF6DIJs}%U8#LU`*BNyZ2?guJ*c5ee0?P#jq_*)Om^O3?zQFtg0q(!K2(+
z*p0nK=fdd2kH5xL<En)VKdSV%pv_t*0zCZE?aa}YV172YR_r}}>>%QB?#~wxF_(|(
z=LyRUvXy*bwOXgIx!^Z(;gOQ#w&J71^Fzz<re&gm1KWaKBI$KP7g><INa7uenBO+M
zk;K(mF@xNg4wnA*X-4ydtzqX>R%6o7qvOi`cu3U+!GO3m>CO95imgC70w0xaHpxR$
zJaWTx&UGn{x@L%3JOAh@QJd&ni?+;{>lYYD4p5<-!3%G~dpgTOg#OGN_Xl#>E=?^?
zi4iHSd+vN52&5=63R#BnLpP)i-jzvr3AZ=3odACAM8k^v(J3!`s`g*#qxR1ehgD%6
zn~AGg6K12WytiNVsJk`^%`XVHAK|{nsQld%p3rAeU5@AF-Kr5m6vFIPCUPg+Lr+8{
zhox@woxT;Se%$ko{qlB1b8=_=n9o|aebyl9y?wlScmZ*OT+-NC;aSs*E`wlANKO<p
zq%fzOkX3BvUE-&n<5APmqFO_qzf9Q$iY$rF>4n^IrU+V0*<HL4abCE8|AQ3wFZd;q
zzj=#=_VKCoVuu?R(23MA{W@90wbh?;{U7Mtyy`%@bA5edGil}p_}+P!Zue&tPO(Pe
zQN_o1IM$x8>oTa1b#@hs#Wj&}V*Px%CtnglbSHkgQ-5SdNhFkCOUj2j^m43}Xn!n5
znAUniPvb67w65I-&(DmSz+;eo74SU~_%EiGH22b7QGA938VbzQ3vF5#V~KeFaBRiO
zDB7iawrt~ycq3^mIf#(|S$=7L{3Q*{`i8^%;ZEe%jz^ejshZKJgN2<*;IlC@sVm{C
zGrbr7+aL2XjWh?oFm{Iw!)_}%K`q>U{anl~hq9X*1f>V4ZnhLA5y1o=Gl3mt_&=9n
zH}$E8{n@P)CK>zU^WH4)@+Z2(xa<^1raN>1(%>E?Q=I2+CwRIi=Z~9Bt~~sE%aEUQ
zCl}h7nKhF8Br<(VYISo=+Qyii*#LWczIVrJ@L_&ey+5pf_I~)Lx_s596S9GZafCA)
zisk??sbKp=CZfZzdqbC(tK=viqyIGDkKYiBXwfu-XYBim&io*hbicdmopu{&8}O5n
zHOyC35P-MuLIobk=NL!nhZTz{EHMKCwd@}ffwSAQ1RDNNVP^sj<@d(%K`Uhskrqn&
zDYB$w--;L}YqB+#gc;kA5z<8KPsoy#B8@0XrL+jqg2<MlNJ@&dSbs?Je+H>{=IVcI
zj&q#z{oH4}&%N`$<DKg<%@T`+^jbwMyV8n7KRfA<#s&w9sEW!A6P+W=rOBoam2N-H
zvM)ql8zg5HXO|`LS==zpIJ~IEGyHq{GIgZ{>!>x{TOA#GNh@t_Ut4p`_P~qE*ziV<
znuL6MHMiTgam0JCTcFzkf@ap2#M284?B^O7%r3lRCt^^vLHgC2P{+h9Sus;l-Uq5J
zB0G&9<m+l(%(+|5877{qpDp?I=v+B?=8@4y>CU_e6$|xdZI0At>X(*>hr;b@IlXi2
zJ7#w!w%c!bVszW{wzX^nJO7J8(%wUYiAAKxp$e;rq!P70F4HKJ`dj-2p37x*In*DZ
zs_i+^zR+4VKi5vUZ^Q9(rs^HJ(keSVHymAR+*7(@b;Rh7TF0GlDo9#ZTuuv%G|qXk
z9kA5BCHsZE&-Aod{@PnjGPxgw|GTn#(Y(?7oxMGG@k_e~)=Ad>d-eOSI&yzfV?6$y
z)k&cvQUleA))D_bYfToIMQaTdU3t~9xrWmq%c`50sv=c%|M8jQIem}5rnu_Xk7`{I
zwL4M0QOCXKygvV%p#9{o7l~%MTl%D)o}{&M)Ce}LG}G&Tu+9In2iub({QPZq?o&5u
z>WnxCr4{Cf=a@ZLsU+8GiHYMS(h_E*t#7+&TPW4RclpQ%VPU^Sn#|X?vQO6zwEeiU
zStjWwg?rELx(8aX(}zE;=8F+s_Fh>o{au!@)zO_?;dt&I&5;^z^UfS~JDZj1fi|!7
zHaZFQQx-*g;Y=TId_x}HZdJ_xs_=#vPmIR0HwQk2yVY(^;yGZM{p65v;o9^ZyYLnI
zcW#bYH(c^obPW!yuS&Aa6aCo}v#+h_?T;Lp$}blTcI9SR&u_dyN%OZqA{(6lD0ks{
zn;5#E%E|9+K9SMlV_Kg|+a#Bn=>!Fvcn{3FI2==!C?7V%%pgF%PD6p9Sn|@gcDD3h
zwZtD~LKSKb3*Xyt)BFqD_eIGx`&(_3_c$4>uGlF3nkxaX`eJ@nr1IxA$xHVx|2M!n
zy1^rHbD6zof_C{}!kMo_N~R}V>YUb5<nD8doos#IU>lfLQTkeb_{;}~=%7Uo-U`V@
zq0K?O@$9ZwmXp53U-5jpRm5ku<wl9Snbh?KfjT~)52gN)*s3EPTdXtJ>&?;I2|ayr
zH>`dvvTnY5^|SrlHI!K8%PZQW4PqRR7j;|YP%{!guSy^G?3a78%VsdXJ2JnFi`~|s
z@M97C@Cm_JhcYAzd;d$xa^VVpOMNz6<5eK%mUGD2*F@oLkk*AQc>;ShA1yI1$<j#H
z;!x5!*)b#T&2^Q<g|*b%oz8}7mluCMWUJIBWHvK5)gj>9_S#N?r6Y+8UhAFNWI8f$
zXq`>$#i4^)Ep(w1{M@U|UkZzFFZ1@4R1tkyP?6hVFRtylY;nMT`H;vtj>6VCZ*~O~
zylg$DYfCy^EnO!0ss3Tw(gPcwN{>`Wy98IbQ?eZ@yoNG!qSA*8pRb|O#p;)yFDN)q
zv6j>&Uo$>h=|H|qjd-)iVfT^tgo{-zK1KG4+!VpRj<4tA%D>2G&E1!@Ahq1D;yPc;
zn}vc86np~apFMVdo?cUdTWkHTpj{!{#p_cK*>(!PcEAfJDr}VC$b9?rPGddid;SNd
zr83`Vcv6+j_6$b9agx8%w%)F$v1^-@faOEQrz5sa8()0zJ(jmowl>_qIkwS0p{%2A
z>-XT*7p_qkZzFK184f1XYPSzn?A*BFHgBSoTEjXjw_Ikbr?DYTE@zR+@}B5X!&4hN
zi|&mz(bje+2gD@^U5!zQbUH-l?YG)=pZ|13ZYsCv@R>-f5j&oD4>R({e#Gpk`sab$
zH~YLtYeHTcaD+RhuPGJ_Yx0aqZaSwQv_hs;HLQeB@Q0hes;fbvx>~H9$l}&{QTXbZ
zry>RS7Lj-d8b(|2#GwxLO%<8V@6B8_rF&C66MlA?KQ`+xv751)^S-^(gPi2fEc$g>
zo}(NK0#=ZEYp;HC<sy97(@rs!(5(|L?n$Qcbp;4tm2?kM-15(sHAGF?5it($&koz4
zwA@QLny}AVQ*i!6%~hobPSP*O?rrVQJuyr1zd46(T?TyF{CKx*34fkd&OgYvN^a!g
z-M|w?e9pEj@I62M9{SVI$9>oYPm>t<RPlO<#Fb>0#(S>n2%*J3Xy!Nf(}wxso32)`
zITl(oPrLt%DsIP;;CEL}sxApWx&KY?9zGXBv$@RD(|KyozXhfq|E6S;P?R!H(|VoY
zOEw90hsyk&HoHS#)+WiH>g&#Pqw0Kh3k>S#F?y1#O6xAXI>J6@^fPHmjJ^Iyn#%PW
zt~8JHmGV_L+J#k!>d8VUW~uAOm&VVp%5JqZ5$=?<%O{K;8Q!qiIpOX{kC(GEIhU~K
zOP;+^sBz<n?xKgv4X0K9eVwaxiVLUnt~B^n${M`=qR7(sl!zCUY7e`EqsG1qf}V}s
z+!&~r@SfUzc~#`$`zGx=u@aiH_cXt0YSayN%?<AkPk80#=E$~|l%G{>>J??xp1q@c
zM+9esn36y(DX}SAb6~i>_lRLs3U|`Y<IltE+ZqGbZ}td_!oOYkB6@SL*Qvuha|3f^
z+C2^h<)<k01c}`goX;L6Fn=K3O@`dgu0zV<@7t2Lj6h%Hh+8PO_ukr%Dr))KYHlrO
zkEFbP)zv{&+ue|LjzdWM@L5VjXd%6;G0=wknzZavMgP1Zi@LUodXeB;BZAk~seicE
z9&b(#T;Emh+TC}Iz@N9<z)~VxV@3ag(3Lk*qP#749u$c9(Kqv1u;z)jn`R%HZOSs$
zy;oIR&E79}N!#2$&Oh>f;`$$jb^<0DUQMURuJ(%z%Pn717@{6a)E?WnKTyldn#O(Q
z{m`c>-mR4)LGGUnazY|R*9nEZ4&=~FO|cwc`~LH7Y>n6_=g^@fnS6-_JeJpZ!UhNg
zqjvjivRw<M>UGPcb_++34aZ(;dVG(J8`3NbyFd2u(OP!>xV*4(iHa<tv7C4|_%vMp
zroal0<u8<k<Z`WL1r@dr41YeGJ^Q}r`MvAYLitO7((A^wch5YVIQIOrm}=tI0+T9=
zad}zA3ZEFkxVYdBjgDte{*~|a{pQp3=-BeHC6`K?lr}f@7nQU+Sp736Nb!-^D!Xs8
z^*t8*7b(5#y~JMLc%@7zPh*b5A@vRK#{vbVsy(CvH;y)p;Rr@-?1CI{dmlFkUdwRt
zW7};s;G1*FvnKvt9ez1J=rqO;7cYvOqocc*yT79&d{l{9Ed1=Ar4xLVrVc(bz(D>Q
zbebn1$HhcSke9O)(b?10%LPH8nD8s_fe+#=1v%V7m>P8282t7(!QI<&dWcqndU!lc
z*f}4ETQG&d;pnt0@MXZ`5a$5DzakFI41RtB5Xp0y5drX5{No6BGC9DX=tOdLboQqr
zToLG;)5<;rhcgEOHW(TLlL-I68&T@3+`SkG5nwe)rUsqn2eDxo@qeOu@Sxksav>b<
zjuQ^YHzj8TqFC$?fNy}SUl78B`jQI?Jo9k4@6ya32rB#`_j9FqlXkl@zPXjTAo99$
zsZS+wxa>?E4w5l7=rl`>2?BUQadk#W7hDV-J_#9^4YkBSC1lu+2X7e8Pe^}#Y>s*A
z4;GxoHBiJyA^eQ5fc`b;v;{jS^se&CN{ESrzlpcCf#{JkvyhuSDTJ93LUn#|pII<t
zJTDH%{cAe-NvDa1P71yJ{k(lpp`N>0)p0&lcou{kYprqkFKqxBF==j@zrbx+y46tV
zFz?i$)Ak>p6jGgC;hUYky%1{ceY0%OLWLD^;&3qY)S%OL9iLF|BoW<E&bDOw^K*gH
z1?I+PcI}A?rJEno%Z>4j3+BwoMtRPD4P9alWEN}k&QlZ8silQbFXJmx`U+7#11ka>
zDc>`bYWOTALP!)QXFP*~;scAZ!o&1Qq0eqqLBtjLmVO73ya=-}B6CWpjF^#daJ0xv
z1&2G_!(0#<*CvEyR|<uQ3=*BXr}n{894`1E^Q78c6Iw4K85P}EY+9qwp^{RegyH|x
zpwrgOV;f&L455p=Gb%=zI$3x8Af0>UnP-*bpA>t$pl01ZqFR^)<!}iK30n?NmP`n}
zeVox!hJ{cK;{#iRQOhT!uwodi+=aQ2whV}84NBv13-2>m@7+n|be%0GV^2vMOzH<|
z#rEbV{KTBT0q)L!+v<dTJ>Mxp0dHNzOvoYpNf__Y?%s&%@V(-{R}>0a6jm;_y9;jn
zli=)4CL<Sb3cqy8Ixv9?OyHXgAmay}=IHPzfU)Bu=9j*!F6RaFuZFz@D}Uhnr<}1#
zA>_}Sp5Cbhxf(2CY}$5^Cggt8B>eFYee;FlINT<GW~CKnQt3kUCnDzTYI>J72WmSL
z)-TrNq?kXH&LkoQ)w8P8Bq~?KUUEr?d1=%n{2`|x+lOJ8K-Wd6?ktElwrj1*{6owr
zRD|VK7q=1uq515Eh(Q~f8gQ)2{iPn?$>g+6Y~-{znd|8wD7*&Lj9yq}%CN*>1D_gn
zT6P|Sg10c!H`ca6fO_ZqTy=x`X9F0V52gm4)|ig~S?MAezQ-w#NT9EQBNCQDDP(2n
zYHK4HeOuxs3&4&iz!9CYf>FW(4-gDJ6LTYdls^xQIy!QJ6UpMwoX04RIl`9nd75l?
zP+V0IT<p>FTN#3(Z)SmjloySis{=!Bfg#vD@2f&UOtkU(2ujZ4*h|VlI1Hi1QV!Q5
zDCRaMs04)yTnMlLTbiKmunFpa&PvfUwnA89w=%Rl0~lc}{)99l7}NMuxIcRtBh6(%
zfoEY&4LZ%H2}PME%m0k+$gly-dvFMQuE)0^FsLMJ{JU7Y3=sQR{CU~RiqN+-RN8=u
zieUQ5^lG3SWuY{*At}g%=Ahx7n0zQWGiYVlf@}W3O4&>>MLBdX@af2GFyjgAWY|)v
z{LBh5Ff`d@ig2i)`o_DZV9FWj<k(V~+k>JI5RC6HZ2$2AOHM(P#JXeuA1lMqT+ajn
z!Hehl%!J6!24k>>u#d1pj1?6S4F0{QTP=a10=*W?P#r}ukh#$<U-6GT1mlM+GvnbH
zf?<kUe?=EkM1Qd1aH`-7wp>@uV;?_>`MLb=`NpW2%5I7LXbY~eR{S<@Rs?<<A{uhd
zah2wPn9CB454@}h6GJ@&Bh2?sJ{1`JEcH$nKrzroCQ=$dfL^|0LI?_~+S_=Ejs!5`
zGBiePjb(_S5c;URByA2+D~Fsg-pON^%xZBoL=h1ai`{!K5Wy5<D0eu_Obt3sMsgYo
zLEB6lk3f0c6ufvIdYT#>=CG*Jm8>XJg1!l1GXcF3uI720c^j<a0IRUIpDu$!q4qG@
zrG+NjA=@8V_Ko9fSs4TiGlWYWF?~|Spg#g_30wP16j>Q&sM?o#?ksbWalnMbF*Z#C
z>k$YubHmLDL*(19HSGdt{$trQdespWR6NS79;cmz{I<XgyL%neVnvwa4e|P@vyOsQ
z6fqG}vxTL{+G!&&rYJ_alif}dcr(V5nw6Un48kTvMDCczXgYx%Z7he2QUe6T++Y(b
zJK|C|Z4{th^&mUgmFS3PrC6Y=mGcGP)&z)Z6TGmH$8d0AT;ut(Ls}S{qhiu*TaK53
zI*EppJr)uJy8sIWT_#-m?EZET*iM$fc0>PVfowz73Hgxl2F3};1Kyor*WNw{R)(dS
zAtE`~G*UTBz=k9UEtV1D%*xoNunxf(@M%ik3XJWLU~Ikm!I_`gm+ht|`gl~+R~F1W
z`x8R)5?Uqp&Bk{RR?J_n3a`|?LmU8mE<!KBzR{KU!h&=S<WLztcxqjUE?9CJAlP>a
z)_yF2zZk;lUsN9k3}FZ^){r`XEXU9UX~>I%Hi0w%h_hs8KWvYGMwS79fymB^ntg6F
zLH`*nz;?#<A*>97F#@q?@cN63V1_neuodqe&VtZ0&_(X)Z`W0JCc(OEW?6gqLo5&j
z3kw2jKfbq4U7!a_z6p97HZx*}Ss;c4bA4TOBd8-@r9x4ScWLbP7`<aG93#{*Cp7;&
zbq7>x23&c?#-ufxg<ztM-nC+7;=~t#JG-G$v8yj2ffZt|jcSZZ|I*DF8_p0*u@)vF
z8IEXMDnu6y8G|j4U?<0h#37l5LqLV3m1NlB4um=&U@NUTm4#q#hI;##y>hIC(V$<!
z3mXt>IxE6T7j@BMyY-f!YRHT}WCm-7_5~J(wGpb!qMbh4!Q#NFf;ZSQ)4j}s_)7y&
zRlIo@ItET2IM^Z?yn^NY1@cT#+@1^kk%TsnZLepqVIj~EJY9pFh!oTnA>YPa-aCx2
zz~u&PSX%R#FqCN!=Oo{6=>k_avmEv+?_m+H0q)Z<UMVTOKM#yBSix8`x{9$3GIbh6
z$kS|6KUDhy*l)0i;>TEo*L0pd7P#B%3&(M39p=PzJi#I;yPch;vE!oV5|IdSWd(!-
zo872aScpG~LYxMos=T3(@m5I=suf%Do8K@&sQ%M1PWut=bwMyzNigp-5$#w;fWJEl
z(cq;{=@(F-F0QX)zEGL^Z4v;tPhI_x_uTAw^zGU=!acV^X0g`jFY&ZD?9SDHGKz+(
z><9O;ciqf3a7^rQu5hc5;yTUUho3~hTbCjJt&+^wcKP70^7sx3Vt<6s0+Iz+m%!Q-
zf|<efsX?cGG?-9QT>adMsBm3zw@=fDc++4~n0so_Y4S$Dq^K!}cmfWzLT_Da$9zfm
zti^=R-y7~zyYE59c`->zT^M2%YQY?;%kGnExC2HZI!|-&t#+22>L7Spyqfu5OJDG$
zp5pF?h?INIwK!R*a})3tn<IgvzlG3w{M@}zdY(b|WAc#W^U%Ps;qr}|)cd2tEXbL&
z^%-cI<(M<{ByK_%-~$)#QO(X|j^Y^!Xb}hD!~*%98gyD&%7m0rROow@6#*?JN1!|5
zWSO%h1aF!dB{ivaMSY+^MbJ3i9cqIJwSm2C|1@Vp9q8_*s4&e!<du841CoK`0k`4*
z)S%N`?)*~wp&Y){p;kkHhW1jCImUAeCWO?Ts2k=I?=q?SE8xadDf5K;DkpS|N5vqD
zg86#}ewj+AeeL-zocz`S<{N3ukEHo6#?6~C9^yYAP{XWdet^nvb<F&6_1_<-!i-~n
z2*z)m81LV3<B!B(hA}_D;y3K_Utzx<XTii{`P0@Z9@{&SzZp02hpq&pnXt9Mbz}HP
MhJs993(FYyKlVxW;{X5v


From 9317e51f20befb0e6c391432c5d211cc1b736489 Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Wed, 8 Nov 2023 18:26:37 -0500
Subject: [PATCH 368/417] add yaml helper script; refactor python testing

---
 pyci.sh                                 | 4 ++++
 salt/manager/tools/sbin/so-yaml_test.py | 5 +++++
 2 files changed, 9 insertions(+)

diff --git a/pyci.sh b/pyci.sh
index b0e48cf98..e85287063 100755
--- a/pyci.sh
+++ b/pyci.sh
@@ -1,4 +1,8 @@
 #!/bin/bash
+# Copyright Security Onion Solutions LLC and/or licensed to Security Onion Solutions LLC under one
+# or more contributor license agreements. Licensed under the Elastic License 2.0 as shown at 
+# https://securityonion.net/license; you may not use this file except in compliance with the
+# Elastic License 2.0.
 
 if [[ $# -ne 1 ]]; then
     echo "Usage: $0 <python_script_dir>"
diff --git a/salt/manager/tools/sbin/so-yaml_test.py b/salt/manager/tools/sbin/so-yaml_test.py
index 3505e8d30..7e03da9d0 100644
--- a/salt/manager/tools/sbin/so-yaml_test.py
+++ b/salt/manager/tools/sbin/so-yaml_test.py
@@ -1,3 +1,8 @@
+# Copyright Security Onion Solutions LLC and/or licensed to Security Onion Solutions LLC under one
+# or more contributor license agreements. Licensed under the Elastic License 2.0 as shown at 
+# https://securityonion.net/license; you may not use this file except in compliance with the
+# Elastic License 2.0.
+
 from io import StringIO
 import sys
 from unittest.mock import patch, MagicMock

From 1ab44a40d3493673b6c5429ef803d616bf59c428 Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Wed, 8 Nov 2023 18:29:06 -0500
Subject: [PATCH 369/417] add yaml helper script; refactor python testing

---
 .github/workflows/pythontest.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/pythontest.yml b/.github/workflows/pythontest.yml
index 3ce481ee0..fbeecd1ca 100644
--- a/.github/workflows/pythontest.yml
+++ b/.github/workflows/pythontest.yml
@@ -34,4 +34,4 @@ jobs:
         flake8 ${{ matrix.python-code-path }} --show-source --max-complexity=12  --doctests --max-line-length=200 --statistics
     - name: Test with pytest
       run: |
-        pytest ${{ matrix.python-code-path }} --cov=${{ matrix.python-code-path }} --doctest-modules --cov-report=term --cov-fail-under=100 --cov-config=${{ matrix.python-code-path }}/pytest.ini
+        pytest ${{ matrix.python-code-path }} --cov=${{ matrix.python-code-path }} --doctest-modules --cov-report=term --cov-fail-under=100 --cov-config=$pytest.ini

From 84b815c2ef32c1d76c8546293c7eb6a3ea7f1bdb Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Wed, 8 Nov 2023 18:30:05 -0500
Subject: [PATCH 370/417] add yaml helper script; refactor python testing

---
 .github/workflows/pythontest.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/pythontest.yml b/.github/workflows/pythontest.yml
index fbeecd1ca..256c0faa4 100644
--- a/.github/workflows/pythontest.yml
+++ b/.github/workflows/pythontest.yml
@@ -34,4 +34,4 @@ jobs:
         flake8 ${{ matrix.python-code-path }} --show-source --max-complexity=12  --doctests --max-line-length=200 --statistics
     - name: Test with pytest
       run: |
-        pytest ${{ matrix.python-code-path }} --cov=${{ matrix.python-code-path }} --doctest-modules --cov-report=term --cov-fail-under=100 --cov-config=$pytest.ini
+        pytest ${{ matrix.python-code-path }} --cov=${{ matrix.python-code-path }} --doctest-modules --cov-report=term --cov-fail-under=100 --cov-config=pytest.ini

From bc044fa2d56185b1c1c41fb79ff23962df446327 Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Wed, 8 Nov 2023 18:42:06 -0500
Subject: [PATCH 371/417] more coverage

---
 .github/workflows/pythontest.yml        |  4 +++-
 salt/manager/tools/sbin/so-yaml.py      |  4 +---
 salt/manager/tools/sbin/so-yaml_test.py | 15 ++++++++++++++-
 3 files changed, 18 insertions(+), 5 deletions(-)

diff --git a/.github/workflows/pythontest.yml b/.github/workflows/pythontest.yml
index 256c0faa4..018b02890 100644
--- a/.github/workflows/pythontest.yml
+++ b/.github/workflows/pythontest.yml
@@ -4,9 +4,11 @@ on:
   push:
     paths: 
       - "salt/sensoroni/files/analyzers/**"
+      - "salt/manager/tools/sbin"
   pull_request:
     paths:
       - "salt/sensoroni/files/analyzers/**"
+      - "salt/manager/tools/sbin"
 
 jobs:
   build:
@@ -16,7 +18,7 @@ jobs:
       fail-fast: false
       matrix:
         python-version: ["3.10"]
-        python-code-path: ["salt/sensoroni/files/analyzers"]
+        python-code-path: ["salt/sensoroni/files/analyzers", "salt/manager/tools/sbin"]
 
     steps:
     - uses: actions/checkout@v3
diff --git a/salt/manager/tools/sbin/so-yaml.py b/salt/manager/tools/sbin/so-yaml.py
index c8f102770..68f9b43fe 100755
--- a/salt/manager/tools/sbin/so-yaml.py
+++ b/salt/manager/tools/sbin/so-yaml.py
@@ -85,10 +85,8 @@ def main():
         cmd = commands.get(args[0], showUsage)
         code = cmd(args[1:])
     finally:
-        try:
+        if os.path.exists(lockFile):
             os.remove(lockFile)
-        except Exception:
-            print("Lock file (" + lockFile + ") already removed")
 
     sys.exit(code)
 
diff --git a/salt/manager/tools/sbin/so-yaml_test.py b/salt/manager/tools/sbin/so-yaml_test.py
index 7e03da9d0..0f2ac7d81 100644
--- a/salt/manager/tools/sbin/so-yaml_test.py
+++ b/salt/manager/tools/sbin/so-yaml_test.py
@@ -1,5 +1,5 @@
 # Copyright Security Onion Solutions LLC and/or licensed to Security Onion Solutions LLC under one
-# or more contributor license agreements. Licensed under the Elastic License 2.0 as shown at 
+# or more contributor license agreements. Licensed under the Elastic License 2.0 as shown at
 # https://securityonion.net/license; you may not use this file except in compliance with the
 # Elastic License 2.0.
 
@@ -21,6 +21,19 @@ class TestRemove(unittest.TestCase):
                 sysmock.assert_called_once_with(1)
                 self.assertIn(mock_stdout.getvalue(), "Usage:")
 
+    def test_main_help_locked(self):
+        filename = "/tmp/so-yaml.lock"
+        file = open(filename, "w")
+        file.write = "fake lock file"
+        with patch('sys.exit', new=MagicMock()) as sysmock:
+            with patch('sys.stderr', new=StringIO()) as mock_stdout:
+                with patch('time.sleep', new=MagicMock()) as mock_sleep:
+                    sys.argv = ["cmd", "help"]
+                    soyaml.main()
+                    sysmock.assert_called()
+                    mock_sleep.assert_called_with(2)
+                    self.assertIn(mock_stdout.getvalue(), "Usage:")
+
     def test_main_help(self):
         with patch('sys.exit', new=MagicMock()) as sysmock:
             with patch('sys.stderr', new=StringIO()) as mock_stdout:

From 9231c8d2f2db14951fc4b4330912348600f836a4 Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Wed, 8 Nov 2023 19:17:32 -0500
Subject: [PATCH 372/417] replace reset sed with new script

---
 salt/manager/init.sls                                | 2 ++
 salt/manager/tools/sbin_jinja/so-elastic-fleet-reset | 2 +-
 2 files changed, 3 insertions(+), 1 deletion(-)

diff --git a/salt/manager/init.sls b/salt/manager/init.sls
index cbe3455fe..23ef189b5 100644
--- a/salt/manager/init.sls
+++ b/salt/manager/init.sls
@@ -61,6 +61,8 @@ manager_sbin:
     - user: 939
     - group: 939
     - file_mode: 755
+    - exclude_pat: 
+      - "*_test.py"
 
 yara_update_scripts:
   file.recurse:
diff --git a/salt/manager/tools/sbin_jinja/so-elastic-fleet-reset b/salt/manager/tools/sbin_jinja/so-elastic-fleet-reset
index 5a7be9e60..203b2e76e 100644
--- a/salt/manager/tools/sbin_jinja/so-elastic-fleet-reset
+++ b/salt/manager/tools/sbin_jinja/so-elastic-fleet-reset
@@ -29,7 +29,7 @@ status "Stopping Fleet Container..."
 so-elastic-fleet-stop --force
 
 status "Deleting Fleet Data from Pillars..."
-sed -i -z "s/elasticfleet:.*grid_enrollment_heavy.*'//" /opt/so/saltstack/local/pillar/minions/{{ GLOBALS.minion_id }}.sls
+so-yaml.py remove /opt/so/saltstack/local/pillar/minions/{{ GLOBALS.minion_id }}.sls elasticfleet
 sed -i "/fleet_grid_enrollment_token_general.*/d" /opt/so/saltstack/local/pillar/global/soc_global.sls
 sed -i "/fleet_grid_enrollment_token_heavy.*/d" /opt/so/saltstack/local/pillar/global/soc_global.sls
 

From acb6e842489d34ecab03ef580ada85e1cca25a20 Mon Sep 17 00:00:00 2001
From: weslambert <wlambertts@gmail.com>
Date: Wed, 8 Nov 2023 20:34:08 -0500
Subject: [PATCH 373/417] Don't load index template if component template
 doesn't exist

---
 .../sbin_jinja/so-elasticsearch-templates-load   | 16 +++++++++++++++-
 1 file changed, 15 insertions(+), 1 deletion(-)

diff --git a/salt/elasticsearch/tools/sbin_jinja/so-elasticsearch-templates-load b/salt/elasticsearch/tools/sbin_jinja/so-elasticsearch-templates-load
index 33caff435..766477e1c 100755
--- a/salt/elasticsearch/tools/sbin_jinja/so-elasticsearch-templates-load
+++ b/salt/elasticsearch/tools/sbin_jinja/so-elasticsearch-templates-load
@@ -123,9 +123,23 @@ if [ ! -f $STATE_FILE_SUCCESS ]; then
     {% else %}
     pattern="*"
     {% endif %}
+    # Index templates will be skipped if the following conditions are met:
+    # 1. The template is part of the "so-logs-" template group
+    # 2. The template name does not correlate to at least one existing component template
+    # In this situation, the script will treat the skipped template as a temporary failure
+    # and allow the templates to be loaded again on the next run or highstate, whichever 
+    # comes first.
+    COMPONENT_LIST=$(so-elasticsearch-component-templates-list)
     for i in $pattern; do
       TEMPLATE=${i::-14}
-      load_template "_index_template/$TEMPLATE" "$i"
+      COMPONENT_PATTERN=${TEMPLATE:3}
+      MATCH=$(echo "$TEMPLATE" | grep -E "^so-logs-")
+      if [[ -n "$MATCH" && ! "$COMPONENT_LIST" =~ "$COMPONENT_PATTERN" ]]; then
+        load_failures=$((load_failures+1))
+        echo "Component template does not exist. The index template will not be loaded. Load failures: $load_failures"
+      else
+        load_template "_index_template/$TEMPLATE" "$i"
+      fi
     done
   else
     {% if GLOBALS.role == 'so-heavynode' %}

From e39edab00dd325ef3962356bfbab5724bf00431b Mon Sep 17 00:00:00 2001
From: weslambert <wlambertts@gmail.com>
Date: Wed, 8 Nov 2023 20:55:08 -0500
Subject: [PATCH 374/417] Exclude osquery and display failed name

---
 .../tools/sbin_jinja/so-elasticsearch-templates-load          | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/salt/elasticsearch/tools/sbin_jinja/so-elasticsearch-templates-load b/salt/elasticsearch/tools/sbin_jinja/so-elasticsearch-templates-load
index 766477e1c..593b2c1a2 100755
--- a/salt/elasticsearch/tools/sbin_jinja/so-elasticsearch-templates-load
+++ b/salt/elasticsearch/tools/sbin_jinja/so-elasticsearch-templates-load
@@ -133,10 +133,10 @@ if [ ! -f $STATE_FILE_SUCCESS ]; then
     for i in $pattern; do
       TEMPLATE=${i::-14}
       COMPONENT_PATTERN=${TEMPLATE:3}
-      MATCH=$(echo "$TEMPLATE" | grep -E "^so-logs-")
+      MATCH=$(echo "$TEMPLATE" | grep -E "^so-logs-" | grep -v osquery)
       if [[ -n "$MATCH" && ! "$COMPONENT_LIST" =~ "$COMPONENT_PATTERN" ]]; then
         load_failures=$((load_failures+1))
-        echo "Component template does not exist. The index template will not be loaded. Load failures: $load_failures"
+        echo "Component template does not exist for $COMPONENT_PATTERN. The index template will not be loaded. Load failures: $load_failures"
       else
         load_template "_index_template/$TEMPLATE" "$i"
       fi

From 02baa18502b0dee4bb839283173f9cb93bc8ad28 Mon Sep 17 00:00:00 2001
From: weslambert <wlambertts@gmail.com>
Date: Wed, 8 Nov 2023 22:41:24 -0500
Subject: [PATCH 375/417] Add metrics

---
 .../tools/sbin_jinja/so-elasticsearch-templates-load            | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/salt/elasticsearch/tools/sbin_jinja/so-elasticsearch-templates-load b/salt/elasticsearch/tools/sbin_jinja/so-elasticsearch-templates-load
index 593b2c1a2..8f45d6c36 100755
--- a/salt/elasticsearch/tools/sbin_jinja/so-elasticsearch-templates-load
+++ b/salt/elasticsearch/tools/sbin_jinja/so-elasticsearch-templates-load
@@ -133,7 +133,7 @@ if [ ! -f $STATE_FILE_SUCCESS ]; then
     for i in $pattern; do
       TEMPLATE=${i::-14}
       COMPONENT_PATTERN=${TEMPLATE:3}
-      MATCH=$(echo "$TEMPLATE" | grep -E "^so-logs-" | grep -v osquery)
+      MATCH=$(echo "$TEMPLATE" | grep -E "^so-logs-|^so-metrics" | grep -v osquery)
       if [[ -n "$MATCH" && ! "$COMPONENT_LIST" =~ "$COMPONENT_PATTERN" ]]; then
         load_failures=$((load_failures+1))
         echo "Component template does not exist for $COMPONENT_PATTERN. The index template will not be loaded. Load failures: $load_failures"

From 209e237d0dd4ed09d493157dd9873150216b1b1f Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Thu, 9 Nov 2023 00:34:52 -0500
Subject: [PATCH 376/417] re-add source pkgs from accidental commit

---
 ...ylinux_2_12_x86_64.manylinux2010_x86_64.whl | Bin 0 -> 661819 bytes
 .../dnspython-2.3.0-py3-none-any.whl           | Bin 0 -> 283679 bytes
 2 files changed, 0 insertions(+), 0 deletions(-)
 create mode 100644 salt/sensoroni/files/analyzers/spamhaus/source-packages/PyYAML-6.0-cp39-cp39-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_12_x86_64.manylinux2010_x86_64.whl
 create mode 100644 salt/sensoroni/files/analyzers/spamhaus/source-packages/dnspython-2.3.0-py3-none-any.whl

diff --git a/salt/sensoroni/files/analyzers/spamhaus/source-packages/PyYAML-6.0-cp39-cp39-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_12_x86_64.manylinux2010_x86_64.whl b/salt/sensoroni/files/analyzers/spamhaus/source-packages/PyYAML-6.0-cp39-cp39-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_12_x86_64.manylinux2010_x86_64.whl
new file mode 100644
index 0000000000000000000000000000000000000000..d2b6c37f9d432b8001f7034cd4a314a7a28cfc3e
GIT binary patch
literal 661819
zcmaI71CS^|kS08~ZQHizjcwbuZQHhOTW@UJw*9}`y}P*Gi2Xadsym{ys<OK>zeH8b
zO96wR0Q|2bIa5aIKW_ea1@rGJ@1Y?mBTZ**Vdz9J|36Zq{$EO3HaZ46V+$u|S_@lK
zyZ@giVE>xvc^KGO|Nqc{{-gOXBoP0>V<lRYr}w`{>;DSYzw)0v{<o3U#6?7;p=ZTq
zrsrX$XsKqVW}6flmYDY(<))=*C27X#8x_SR$7$#y=)o%#<{0Lf*;bk7j-V!H>F1wm
zR$wV;C8x)w|ItWIQOX`eNl3RTiqkQ)E`cI<M0lidW_XmK-izLs-lL+K-kXwfEMp)k
z0<a9vg~t;S0}BJEW6=TppRe_wJaZ(|ctHN+75ZNx`k#1qwzJo>HgPqvrgL_8j;fQM
zn%)OO{%;)#Vm=g*0|Nl8fCB*F{!bmrh$svG5mXk;QQ3^$WJB;dRht5@KC%ufuJH$R
z=%KV6mW_5tCWvEUO)Wd2C27$;zT{4Bo}tnpaM1&i$aXSyH+63xC9%pdzK0YhF{6Gf
z=|;OP9)M!oK7IEjouQ_mG&9`9A{JH?)CHm!9tK!g@efrzc<q6Pkp?##*`3kfHyKh6
zOZKidW!`mJI9muYB|D)N3xV2EB&acv8r5)P|Dl@`UqIbjy!4+x=WecOP9Kg$+4!4$
zd0f-(Kwgzo9TkVK8kgjLq4c)*BbZ`3Bx-8N><vHf*9yA@RuPL)J2Mx$P_Ugck)c87
zT<s>x*osm1Hu6x$P=N&fihDC!v2tf?tlQ-&nSqRJQSE`mbF9(CXN*0EqJ-m~UiwQ_
zWECW2D-xv9yl?kQ(&gq86XFP17QKlF3axfH+e*f!Np`}HI%PwSra3C^C1iUFyHnuG
zrv|G<*Bv9Tat8#pXY8^m#dH{wGYV;IfxLlbmEOi$a4b~Gj48KA;))Z9bMM;~+;J+q
z%h-G|c3|KE<S|Q9O$6O~Z79U7&uJCIciLisG}FQ+h?N9LZIP8a#vzP0Wd55rH(gTj
ze*Io@e>@q5*ryx)c5OI(i%wjdrvssZRd?^r@p1A+Kkj$5?woZly~`y>RcF1;mt)*N
zo~-6U;3fz*_!jOty;#f0C*vITO1WAZzuMl+)4_zJMbEdFmb&&B8BiLi=66IE$E@=u
zk~wYHqTTJ$=0p6)ZU{wC$kjogovh;gvOdLIz$6fhm^C#{?Bzt*syM{|>VumtektN=
zXE=-=#ub#D?;b&gU>6^qHxf+>!!DR`w+LE*#|JQ3DB7R55&kY0V^nm|ksRl4_4xU(
z11LT%Wh-8I%`06owSGmcHPWdasgEnH{<(Uj_J#KlS$5LcSCJlcz$3P*i{b;YL~uHX
zZm8$qJY!_9Kx=|wp_mf%`J#i|3PK`WV<bf@x4<KHo>{N)95YgrHHCv6H+UPjuB-Ch
zm)wyD-J}bv*$eSC(B5W(`bG%bS<VB-K|T)V2`BpGCNIkk2DZd3Jg19*uP(ON=ToUn
zpBSGcrC;d(s;b9RiYxIz001%|0021ulZHu42#d%niRdV7+h#GK^u8+L99O2Ouf7x}
zxt{tjs*@sMmTAyIatt63AhN|g7<vWttj!Qww5bRQ@%_xap044}_H45Q+E!}0cl*7)
z9N+)k0~)vS3x9vA`A>nM`3Y_F6JG2?>RQ`vqCt7t=Xe=eTYLmP?{vadhmAg&dWHJv
zxehELUU?ezU*}s+_}URcz)jr1h%I_)+i%Km%(!|{6bSMDX`Ca7aqF_D@(S9+lDyS1
zkva<6P#GF<E`TX+YpS`oN5%q9I_PBVz!kAnYSrf!b-PuwZ!B;S_TPD%+l=HO0#Uh^
zPYQdzT*13i30N6J;z?{AFamnO92i)374u^r<$~K>`5+72KzeqC;CN!GmKM`WKdibO
zz^;bFtiFfQdSBfRC%hD+V$r51(&1pexx-J*+=2B8OElf8z<sn;{<5ePKn}ds-t0sc
zsnS-{l052TF1@eZ>SSj&?dWzm1=8$M&j;uD@mao1v6Fo2WnCSVUv>2-c8vf|wq5)1
zhqr6^EV>lqeM5PKdp-q<^e$c1hKvWLQTd@lPUsItchCJ(pX!-g$3h@<FKtJV2RO@i
zN7O_DbZ=DgM?s)AU7JRU(w?k|Lx+^fE0praq$5<Bu2@tt2N+VfqL?DwnoyZ%j5u#X
z`9fycRMBjha}w2F-Lb@^Te2hYSd#WpDBnA<Ib+HcN@ZBc_ybPG0qg)3UVh3WGZE#G
z+PUs8{_wkF(b1#!5RV*kz)*#NnRjMn6iR5M5*<1siT6O>NP7x#lp#o0d(gA?T=)}*
zZ$qkwDB}UoB2*k=sq%-B3oSGvpju<TkSUekpXiI>7;ln+9%*g$a?7_{5d@)A6+%7;
zLPQ>s+Q3xG1MaujZ@~X5$<1S_!%qLC82X>B!2X{kSy4n-PVtY+^0;G>I0D#S7x9No
z|FoiY7$<>i0EvLVKXkyl8wdn~9KU7QvXP9l9*6HyUWQ7^F7HeJz!CQY9{M2&y3NLS
z_us&LK_fgvkoUMk!VszUG0Yx}-V)pf-0-`0Srd{JX|DDfd{3N-bJ!=A;DV(%_HVhP
zrDwsMDT!~sn#Cl%4<v=`AeCtA4Dd6WeeGl>W`&pRhI(ww`|^XeVEj|C;6lFy_`s2e
z>JdJLq6D?l#1DWD@~nXl-E>(3#9?DOT>&?ACA$O<8L=vkAO;Y^-$6?#a-7*gCEA+G
zphJ~%=Vs?rWolU?=B}UE9?_f&3@J;*QaLV;iXSS}cddrf{v2t%K;LfA*ZK-SFu{2=
zC4}zR*V8<Nelo!M7_0PGFV5lZ9J?k;b*Kdw2O4IJT<7szki>o=3W0ijyF5j2s}JM1
zlQT`0_m;LdO}P#k!?7rjEWyhh@2Q=ZZo^%Rc2y;rU~Y&ahl|OIE(Tu*Yw}?B;|=A5
z45e<Xd^58Oz_CZ)Ok;TFMSW(0yMWRMM31MWKYiK87@fB;S<KixE)P3D2<b?CbGm(|
zW{(2)8KWXmP1npa%p%g-_{RtwKO;~3486%pOKG|3r`1U!7Flw9b<&39DLmuA)zemf
zcekWn!QySd#{i*kfuTo!9r5k!k^9PbNcP<Rnb*@CN>t3sc)h8P`@u#N_^~S~+;j*M
zjC&bXl%?mOR88JcHdKgdFk<{9#$p-1NMIO4qo6|-F<!9IOw69OOa%UZwp(Q^E-DML
zyZIYT$=6pjPlQIPm<TY|DI??Jf5qG)t;|={(4oyu&mix@MR~PQTx528*eK<>aXMg(
z2lcLoZ-%mHHQLckq6=;}l5Un%t8k<(X2ZcD=AM*3hS>1lnO#b^qe~b#Ud5-ai>G_l
zKe{EfJRCx$K=Vk@N-16%VlZMEX4$4CxP9Qo2m(}MG87>8R`}8CpmEx_xA!AdRwU<R
zmWgY<YaJuH1uy`9V{EQ2-brza24d6L@;m-kO&7_6X<JfwD8W*U#f`&*X|+-x8$@0R
z!UXbwqkn(+8j1VqlaiVAaJnK%D+hs&W49$y>|%4z>JI7_b_5nNU<TM{y5Bq(&5Nj`
zZ%RpM`yw}ywIQ<54`fm{qf|0;mVsNlQK!XImSZ4mbQBYz0a3ieu!|aO_6p?M_d`$f
zhm9VHhGrPBng$A66J`|~5heXip{l6y?!&<QlaDd-wG-f)9je9BlihKVu40jH?%INp
zi;hv8Ubqt4F@yAk)X4=jq`Cw)8#2mQ3xMQjX@gF_YnFC?(NOG_66Hh#w(f5hS%#za
zjgqTMx!dHrf1J2}0R)Suh9uxSTk98n+W=0Fn6fDnM*K1u-AL7JMsiqt8gD8Pa>ImR
zvV!#xh2)bCcE!t(>|vRQe&V&XTh?u5kR70w2_p`$D&nQJU)|Faw|yICqExZ*93j#8
zb<R{>gt>KNoFlF>KzychD*;lL=B#ixbT}<!j^l?j;rHLLszfN7`u?BQ_5A1bBmTpx
z|BMav^ek*Gob~kR>^)4BWvsRs5PCk<V8#c!M(*)|N<b7TB!B}*$^_2GsW%T(u%wt4
z+}*x!xrx1+v@D|&O6IfJ?f7c<b+RD7sKQxR7|KtCuMsq(O;77V9}vFU7r#Nw$8-^a
zEP^c+TW4zl<AUk1Zu>u6uNwS=*kVEn_jcYGCt8XkhQ%#i3$?2}Z|yt!F}i^><*fb$
ztT)v-T&aCokIcR#r7EEj|LTvw=0a-5A!d_fFgULvbTy4;g29N~`9R0u;~HQn=L20N
z5Log*{J=#ZX6}fAI3p1_^D(4Il;bwf5`$ckAG-DrU;=G1cLklmKW3ugq$y=!a=!`0
zqZr5^5_m?<rO!pH0@*U4QDQM_9E1V~Huypi#i$^Q!Ry?mvRcZl8VHEhj}dI3!BD)w
zHJE@C$q0-LRQPYNIn70^?(qlL5*1Wo0;+Z+SSyHEeP?rtpuk8COfZt+fv?!)WYB3e
z&^h)Zm4Y6rxG)q~?JPAasCWR%RmQdVPWtEl;gHo9Xaa%WooJsi8wZMm-5RojdY@iI
zE-U)R1d^JDqo3aY<gK=ae(MA?2EWTjNU{Kenh>vyoxZr3&SOb-G|woBpR8NS*y`3N
z+ce?gLHtUDOUny_iUp0bxP4NZFidGZ8sC*0`O&M8TIKNb-(ja(X4m1EnuVz7Ex}7F
z*gB1JsQ#_LNt_g=ZW}_{+aAJDilwvbOaFL{TTRQ-6mcC4!C@p3Zw_s5j#A>FJnGQ9
zp#yBq)6Ay9*X_0hB^~Uh+S_+%9_nVTYc<jJ4&)(veU$!LtybdFEVGOH?o-qqDmoqY
zugRYJ&Z=xMg@Cj#9bC*WP>^`0Vuz1FzIpDL9Vo2HNV`3uN!CzRanw}NR+Bn0L36HX
zoy{QR-+J0=;$;^czmRmGPKX1E`otkZ?>%={r5Q4zt!a6B?U0ZK4%%ckoKVZ1yqo_c
z+`Vb7xjXEbF7BoFQNOvBy34jjCm3QOyy)MsH0)GRiAK+S%k%l)yix<<35Wnd007i~
z5hUC{{rHc#*x1F!-o){ra$GC-*ak5m?07)gk)TchD^Do4;BvEUS57$Yi_0;xHOeeL
zom=&TVauQX84T+9<>tE~E=YEerCd*XeG0H}x30ue&P;gfpAc|b5KBy!R5b=i#R87h
zSCKOLo5O4+|Ci%uh8M~b6l+*0u|?_!cOxmAxn`VW?xf;2En#Sm@bat9NXPE1%H}pH
zcuh$_f<h!9bRh;z*YpoIX!QhF8$Vk#>z2F?9nK5Aq5#{PB;D-H{ZxA>2eX+F)D)(h
z1_cy%tkR5ndYx`;BF#mssnMhH{-y(p0ROdlSqKOM8`8-9$e`Rb<Cv>%>C_TLp*n?u
z;5<bLG}~2qPC4zx69{^bpAxM4o_DCQPg}I!-ANFNn{`}Jk)OLjrxzY}5t0QWPf<Ir
zWporHuABc1^y4Tphmi}Ab@>#vNBs8U{+8}x`M`{<S<EWK!buO>i<2!B|1CjC)01-q
z__`-ltY3f$RO?T8AoaKEhYsgA8MoIp%2%8(^|R{5Hqx_gpsU}1b-ebH#CH<^O%^P~
z|1(+Eb_T}(Iaw+Ll0yOrJ*U)o?&j2l_yq3q14)4tyy4>MWXPTE>$Ke1QolPgS?v~9
zEoTxA^y4#L+>a-W>m(ksnx~vI_bi<x``A*XT?&!&E=4X|yz;F52b)Xce{z$G9a}|D
z+P8(5p)Yx4yUJ0Fr+nQ7WnYRyU_apxMZ2w_>|P1R44*IW#1+kv1g)*T`&3g842noc
zwmUr|t7>&SP4z~ovig0}yc|<WAgYd_JZhsKJowO7R3h#DE8sw!t(2%g(_dyTlC2ks
zy64>>u2t{{-8|o;SKQhs&v~K`?W4nJy(WkBE_P+{!_4*E(fM<Yx~<mz2D)<ide67-
zd%r<veGgV4L(>?O`)4tQSc5$A8Fgn=80`d^NK*j`dWuu>HS$7O3FV9e!S1z%GDHr^
zF-wv1p{j)>S5KkX?^H!HHbv9Y8F4t_W+;{H#aH!kfq|x3hP2Muq&r&=hJ+9A4_?4*
zBzq<hu;;bk^GB5Sg?sH|V_0Gtiw;aAYEhc|pdTztn;)vGvvLYLe<42{19$#gibY)Y
zeQ5okDLVd_uz~$Qs%GNoX!pM~Ek#AaE{g%d_f&0*NTr{kx<a)kYP6X5$!7agnd?vB
zVm%Tvrr6}{ZjMbqT(O0RxV4|#>FmE#Hy7O{=QMt>=vO`*ogeJ?H7+dgRfr{!toiSR
z!TI>(ipzYfK>xxcKwqK_!7R1zI1jw0s-5B9NbHFGeIl+=IdyE3ixR#oPw28ilL1kv
zkCMaqpLS)&Gvd`?o&>n>4u7c7@DDe_4FJRsC%_(ZA<w<QOo+gLbtrD3DGSbX#(4Mf
zvhQp$C#}K((>KmgEyoG#;jCkpZ%0e4s!cX;6`C(=HY|rv;CRp;)Y)oVHAO<uE&P=+
zAqm|&jo007Yh?!GJKU=L-NMeR0^#Eb@|`G=)m_u2v@s9&&bDb-)@2s=^XIZ##JT$;
z3fhdL8=0`-jt%$G-r}_PerV$?h(w}4f1pb`MaU*%Gg7ttxtfW>vaKx!z1}PgrZ+GN
zy1E9Wn1xW2TWL6u7&7GGbH}1w+TtSarL?Dc+57QPI@tAs!K$Cc*d?sY>ieGGk_}8k
zt^CqhI7=CX(}0h^b+b$H7VtHGOcqgLw9*^{$tHhq4R#HRD4R8<{rRREU9;r`$o40u
zd_m*7O4fAqM!(8BBpe)K9)S<2AU(%@KJh$JYYVYv@C+$i_Z^UuUo?HgNpKB=mZ>)y
z=I5d{b(O4ymjmogoK<U@%8(4%3&f_U6{N#l+~6Zsw{1O`SO(IxZ|W^WqON25tw>Yl
z`V2-^hKV$|siiyBI$3?925V-pO8J1Oj2w&Ftwd&(Sdu;ZSZ*#4p?GpG!dKUtx$;A5
zZXbEs)Jwz6ism~RC|Y`2z%^2CR7r;xpd5BmGKGDjK`xZ}@E<f7jtiR)E^sfa?@nLw
zu>z#ifgTJooyKvF8Dek7*p8y41QxX3R42+ng(>@NAL=x_nqmh|Y%AsQwz*~>a`Vbw
zA8@foc)5}g7OwZG3v7z8xyK*i|B7JXpArHE|Ljbf(f@;B_6Ckl|AAn~I95)J?Jr(_
zA+5M%605M2zE{?5Nwfizb7;0&?L!PX`bZ_uHAZGO;D2epZ@r!xNiPl7A?JGjrC5hk
zV`n}|Ik~;gF3^fRu*S|$DLMpiMa|02$e_`q7=#sKW#vBQz$m0mk0zO>9C?KCS1JBr
z=GHdyd<4(KoGN9baC=>Oux+ge&3Yv4+Xob1-rYgy=;}m^nSrON6-7~_(55=D#6*tM
z<kX@89ANCzw`hGDPP~0l3M`k(m*XEgd$LO`V2aA=<#cmm=jkQfe=-OHi<9&CI56^c
zc;35q>&fVIsN~18sxLQ5WXcp8gY6k+pC;k_b_|ZAAg?jZc*n@<Mbp*D^%a_=(mAO9
z;Slp_U0{)c3cOb%sTskGKm{Lz3x`4(<Dhm9G1Z8sHCKo?54y%-QPgO^o<Q**8+_m>
z97YAP*shv)V&UR{U#*HVN+0A)$QmP!3vM2UabS<VZw_B5)|BXU@?he^)q$`yK|l%p
z2Z*|w%}Zhf%OdUCfi7y7%1xCn#TrjutQBA>avz6J%j1(lllOhQ(X(=+TfQGxbn4S1
z-0SIJpW-|PuGS2AV9QW@r$~sg7>bCT*gd}A2Vd{O2L`BaeZP)hwd;v-xS`8_++04)
zFM*6}Z9)kh1&w;~&sR^&ewJ4)hsFNs095OlfceqRdj{#|<T@hb{ycgb3sjZ^dWid;
z@89Zo^_{}+v{kr@@BJm0BVcd^tmw%eu+j)`;ym(c*METlUam$)j!`EZ67VGxo)ErE
zL}$H}oQaDj_Eh6+UP}Qy|E^rBUGT_n@db$I)E)tKpfh;^j9|U<22o)TOCr*&E6{3t
zXf@bFyGJ^aF|@_7h@JPI438^b6E5|5QU~9<{O$lnc}>r2q4(8w9at8_mJZ2vg7nxJ
zj1L^|;DkYNE&ETuRlJFAZhd9~Q;xCr8^xMJn+km?;zrN{?`B93a^y<SA$sn5$xH_8
z`oEPqq?TyhdYYN#mO!%%A5l9fTd3wYF?0<vE2hjTc#9|O?317yy^IXY`8T_==Y>iH
zHeI~Tu)sayNLamERl&fyh5zafGPtmG^@Y(9BbD=;DF_m!D8t~^8=9jDp^a4%Dzb+R
zhlR~g+c3&C%^I)?i=^*@o-v=?nNmtF0By%RS|XBJvB;o9OHR?w+}Vf0d2#u&c{+Kr
z0%B?d;s0(R0#>{#-Nt`I7JEIJ)<M|8t?m=ym9ER&UDEe`dHx08X3l5k5ksz*42MYa
zjXmTn%h5i%M1YtCNP;w>qw&fmQ^ytTm*X?Y$A6Gm1n4(#geE0P#~k?7^~ppx5XA59
zQ^gkm^)&00Bk%Y52x0OV6e9V8Y$`0YLOY&h8FOiTnF9?yi-e-^#;mTVXgoWN%%7)M
zWQk!!=`&st3_T?PKyc-|8`jhpTbD0n>KWMsp@gU80^G>kDMbvRCUzAHRTz$ZMk;ca
z<tKlW3OL&`;AG3p8V2qZU8xb65T-P}Ag)TTg8UYI%>3gPbD0R9E$g!ngI+}=sJ0G8
zJ=-t(Mq)qvat^>ZQ3MhXa{uHq48-S>FV|8tbIS{TsGYctWTfF7*`Mpg>q$X$fO3XR
z<!EcaF9&=5B_P5x;vRZZ1(R#apE@XK&`njNM>-EF?I4vcgR%nmI-oLS`6!ASwAQFG
zLS|EEph8)HLL72Ny1oc7=0juxf~!8B8LB<tRw(=wN`f(PCdKugIEAOgS_B-1vK9RH
z<UfEVly1DsY6B3KHAB#d7ZGrEDKNl3B!FJ~ltMKjuL2}oJ{L?R1}njCsd|`gZDN+5
zEa^XtGU6Q`WPBkB403qBNI|@QLhdcn3wB1CC*d)1V?kr2jZe<}(S7m=qmaIn$P8r?
zNMwESd$CZeFO@JTPbl-Ij^55BQ63?LqJ*L$ay20sU{B0hSgW}J&A%=GOpGry0e$&Q
zN=tbR{R*DyQK_rqT5ecWg-i-C$Hx-Gyx;F^Ew3hOhpP?TNAOF-8qbiX%s0<Mvp`e#
z_VCUY*&vAj&XeXkjyGToCS*uE)nBoI%d%9F%Hs#Ri?WmaA_$D19Lj7E?*ZGp9LO5Q
zYD_4P2w-=_6g*t+FG|(4kz|F=0r^*e<K|lxDjDgSTUj}NSm>u2=$&uEwT1!j+!|Yy
z`7`t5EHVnXOI=zaP&=~<fxWk&h`>XapxC=u{4@N^jQQc3Bg`>$&6MJP@yj14A|mGj
z%OCXE0Nj+?0JD0Wo}x-1A81sbJFRm@{SZf}ik;g@`aGTSXkyB>l(x~WshC!jf1WEc
zrS>XZ4eCHJ1Mc&4#%4n*Bvo-~>AGAQke`~0R@{3{5^aU_y%JlY$Ct5DPo{+B0;U4B
zGK$8YTurithzLxVChD0aFVrFZ`Fp!;hVCXf^}MkZ1*%L^n`a@CN<l#pigziaQ*hgh
zw{=ShQ6Bvgpn<tcd=Rw$8sb?Tzs}4W<BUbU3!N00Tg1Zgx>0~f3$crksKks~66_W%
zGYZrE4sG9WkwzejLZWHmOJm)VATCyvAGd&fH#`-Bs$qnQrZBF7K+Ju+cke7|pKsqX
z^j90OqG_NO+mRVwI?~JtB-X{n|6(*BR$2mB-kT?`m*p`vh8(w|GuJL>HD$D)%Fy8N
zDS_Rgx?NBa66o#vuGJopQP_!6%@Nf#hK6_mn*)bTnpKBEJ|{Ie!^mPh+&->u+F<;p
zdd>A8FeK#H#OzVbbRQe4v~yrH{_)FZ1pe7U({i;}WI<E&i+8L?j8BPtE}5e)Y`>V$
z4GDrz9OTjqi~LmTD)N9UrQ{?5>vT`7zdlIfC-Y=w0VI*%av&8^ZCt3u)vG7Q^0b0U
zOi`LQ`DTR9C^-UB%rzYf6Pw7%VEOZ3nui$au2Iu#Y2o0}%hhrwVEvlvH!Q9wVg@@s
zzI&KdAw+3@OM2%P;azA?QwlD(cw~!OnIjav*@}P$GxnRB83BGL_${2GH}fGjHW>71
zmS-GU63M=Gg);k6!eE8-E~q<e;g%v8=mG2&*MAS^vJzX_mRwLYppm}EosvXrU#Qk2
zM_tbns}%Od;b4t9t%wu&Ppdd*^M<h1cD9twRD^qySRKwQUg)aWBA89VS;B=w1En4u
zW>7M<yN?3=;t|Q+S7<TG)8u)ojv*Pb6(902{aiqox2#}u`E25%QkMSkKVRsGHN)~z
zS)iKfCz64`Bgqwcu#{X59drqfqoDh*GQt58TXK}UX`xIGjm4!|IpiMSpPtcqN>9kk
zS4s7Pw8!9Wx6If{7+L1jG9?SO0#Q!et6k!V!wt6E$k1tFIJUS%->bo^Mm3tOo`Q*u
z5-`k2%45xxDh48HyD|C2FBwVCIIQEuBw<y-Q)*3kyHqgGYD1^k$|s(#sWUVa&>mM>
zP^+1NaJQ;P(UD0pavn=<)P4%eVj>)9tTVw4d?Q9kaxu!M4Bo()<QQsD?-H{XVyM;b
z++<$rdoWEh=`pKkIW_t_7EmO|K#i4{IC3~~n;4y9-_#m;lPCheS&Np7#HHR37F*8d
zcPmVdmAGtID;w;Lrdpa|S0PZ|USSz98$1hK@=QDo>JQrT<u+J8an~#8o)0)E;B1*l
zcMqYVEqE>=(zh0+$Se=NE=z@ZIpCk(txl1(+KNc<c6|6OH8U&mqNb=(D(({q=^N2D
zgpC^i!Zv)j;UxTFAhBx~LX%7X6KEqY2sq48k=iJ5cut)Q+Z9soi&})S3bb_DV)mPQ
zkU+}@P1`DFyWtn|6$E$b0`Uz5pg{cS-RH!6@KCOfcU)~A;2HDvTnAVc#OCajr9acv
z&|<^}kU<JtOUy!QGa7^Gv#I5E?%2dm7c;Gp<W}V-g3Y{hQ6I)ZxhP(`J<Wtd)3dcf
z5x4E<26)ufWzDm%0*p)GJLLW+|0wBMJRw3z=NOyq@wmX0`zhM>grlt5mg`ji5{v!L
zKIqX0?`0Oqsim#~Tb%0iXK%b^-IV(BH%1Vk(bo;5cc>lvxjGltg`@Zw6NJP_1wS1p
z-ez*)KGb#Ewg&VAm|3?7tb2H{c{efAk=oSO<gZ(^OJ8k7s1SCL9ox<dl^qj}TuB?a
zS{^=<{^7J*6h5+jpv7|#5S=(Ipx$J+pLjF6di*nOfiB*`K2>mq?V^}B^rKotQB0+4
zsNLqo4$lj<__th$uk1Q->}R*GAA-TIX@oMpw{=5fs$VK=V3mh?tGQ*2bL$`61Y2=;
z%`*JV#`U}YlV2?k>+W~UA6}eQ>qEPPcCxd+C?f*Xq}|biJ&w7@<ZPH8SZLo;tT%40
z24=1G$m}k%F=GDGks610hK%vQ75tjQSSAcS(ZCB&;Y{U#P}#JCnS=qeToz5{vU-uH
zb@tZ<X7xMZLz?&$C<n4oPX!r&;c>QLW$i`vCgt?MIV9`v_RHmVHfL8Q5PdOWV#G%A
z1muSLBlt!}9TukL@j%06n6lxSJH<Vu#t)F+m7!Mcq>=$#ZV1w@9Ir#U;Ha&;w#C{b
zK-hVWdfSWDE(7r_U|(zBsa@FnS%3TGYPoiOoK{?=8{EE1hEAM|R%AVtS`G5n+s%&K
zF2z)K$j>TnJLNwPVXFm4=8_39?w-aGE1Rl*pUC1Dr8+8`MICJ%lNPvR7Au*d;=`h~
zCRbH*-X%8p=Pk8+r6g4<M4%ym_O5z^^x2VXUk+;f+^30ds7$At8e%|tbf&9{o@|hP
z`M;BQzOMx|qk2imhuVnRmg!B5<{v&&tjm2_e|$@93eR7uZH!uW>y{9A&)8{X9KYvt
z#6Te%y_JM?<7{*q?<J#t@{;adzu6tmJKlUwwY`&`Hb=(kIHTL831@5Q4<5ojVR22V
zcyIN^=(=V&w(Gkpste}HRv4>0we+N9nX<dNU$9jG;G1x(p`Q$nqqI=l%$VJy-uK~e
z-nks!YBBQ%4m3-A$%wEN7AczYEwZo)xD>rIl=%=T+>Dcx-k%r<3{$7kzp(#nFk6gE
zsG;<44K(uKZlV91J9RYq-|4s(^=sSBcBJpyvh+)$c$mphWalm$d35u642n5d^eD8b
z!kH9{jM$b0(x5^tvpiojaZMspDjUyND0@RIK6g_N9-IeA?~M}Dt0<Wi2k}VlMi%;j
z8YxP3qD3G-YiK~nF~Vv16c7~q*1W;A!a$h>a3t3&Y;X;jTme;-wsJj4WpqSLNH`dN
z4?ysNlI}4=Hg7KXzzILcwL6>4qH7&MiP4F~GyyVAxVwOe&3YQDggXePrRX`Hs+V_&
zky~T=K|K}9fPg&-Lbm<~*y6@uqS>1QDny5fAwzSC%w2(8GMsh<jOpAo(yo0{IFLSO
z1;>Dby*&@YmK<flrY}4wC?L2L4wMom`M*DV)<YsOHbW%D(jTm$q#bL-JBr6Krx+}R
z6s`3{%PB&U<3FRIgCq0CfT#zH9h@D4XS)kA4vn;p)$PReUUY6FrOJHi$wWG8iD_w2
zY4WLyz^82nqmS4fS$T2#fwv~4j>i<IVvy9d+JcQnEVJ6lt-N4<W5c5k4fN)z^MZ<y
z15S|X@ySrZ{a#-(HenXM`(n<80Lq`NqG99pJ<Fl7Il0bCj-EF$=!xYh6y%x<w~h#7
zG?NDyCwHuK=deT!yS3$HftLgN)RDZ>E)m6_!h|H=9^d;tiDH#l;J}Z$rBsx}!<-o9
z3!sx~>RK^$;K0$LP`C#i(@L0Q2IEaOAe@^<=4B+Jup8xc7>=_OL}K*%c#S!Ul%hhv
z+Je`>CC_eZCAlpgyscI8YM0%k`&8!A6f1gH01k!H-e^b8QI`l3B8@!z1yRg_&%9`L
zC9swcDlKq9O-yqcp}~lYd+c8&)_ddk)~*iS!A*`C@PMhYVT(b5EMdn8DWNir`_{}P
z6}u-eLga{u1Z~asaYWqc39E8u6GU!cqAjSik~gygDNQ8%;NvU9GtXCwS8`cvzxeZ7
zN>B8EE~*pi)qh8jEy%wAxRvQ8vH2hwvEf`8$hscL5<z9wZzwe$LfVR}2f)%-d_yb_
zhReN!flS)D8x69F*9<tK#hXp<WS#d5LV3zcJ|;%%mt44may9=&B&4d-&ocE+ENR<<
z*r!Y3ZV9Lf|4|J+mtmB@n^^w67$UJ!5ql14(g|j3&r@Y@cT$X$lAdW!>tZ2%om&_q
zvYSs-^%FqBk7QYGX0>WSbo{{Ki>Nedt8LXP!3VMNy}Tz`)6v#)35Z{ti;}Z$FjOmd
zYnutTjJoJ%^-B5f9f_wRr5dNzZEoW6K1chmGEh@V@$(jFAVN6wSW>BeEMy&3{zc<{
zzkg5P6e)M_#Ls0W-mp@uAPah90o@lKK3~zwQwq8Zm9osg2nX_v^BK4!rL9sEmMeAU
zrNe;x%JI);^5Dq!%&6#<p=VT4ddx`CqrB<K3T6$`yC!8&rK`;{#*Jv%!|hR-jv#kh
z23$`Kn{f2z`^ebO)CX~W6+@QYmf-RUFsf78Th2}vw!+Yh!OY(%9eBr$PRj+P9WHBq
zO^6>m<p<u7z1@bpoQ65uAmyey%(buW63#xe;|Y7LRYq13D}52$Kn^nL<>C7^(a@Qq
z%dP6859}2M^g4>4BLt-v$!Cw@%f7>3m<Uo;wA7BI<gT}D2xB@|7!F2AezbIGQ3v7u
zi3ys4C_N&3>a7Jb4soxO&CTIkF-7OmT0nZG8;2)%>cUnWkIVEY#?I<%Xhg!|eEbCN
zIqVAw2#j9Riz??~S(!+sv*40n?Uo=#YK>SZPME0B6^wBQq2Dj`qZ}!>umR6a5<Q&g
zGsq!pnIC#LS<_O)N4-$md78GvKbXx!JDojvRr4XedV(LVP29wYVX`Ihm8xoim@{<z
zu}-|t*E)|Ict0_-uf>mX+8$V^8@-MF{8BLDvvctZRhX5r@cp_r`ufDb<@5FYKKV}J
zDloLTg;$R-xO?uKJiG$+)jd4DesE{ZqKWI%rR?SI9mQYX)I*OlabeAxj~g+(cYVj~
z%bQ(_ntif~nss5QOcN{{P{a=Fgtc6#H)}L-0N-yuk|ybr*TdH!t&rZp7IbP>J2;P_
zs1!cCnO`~Y)wn&Z?_rn0p~JNDtIXB>0g;lr(Y8^KUf9x^16=3A_VOTM_@;VRI}RYH
zoZKj5GK6-b!PYc3B3s`{;cebJM!~0j$tLo|4z*hCck3)?w<8}B*Y5qsncv7>Yf|sN
zT7g@sE>+gkas@6eTV&3~qv|+wjvrOJ>%MLi&V$eW0={@a#{A=ATol`T&d-0z<X$DJ
zzzSMTQh;Bs^GYkOH!rSs-Ll%;W$;RV@zjhS@5Pt%)>`fWJ9N1`8<BgD=lU2#-O$nM
zVc%<Bec~JCn~^n&pYP;?znBpno2jFf%$9a^cAu-@wKOF;0vC(Y>y~Q0ECGA`u+f$I
zfo{lL?L=~e-|2KwWEL~tWAm7yxqZS#`kghKH>1nbWIjF9*zsEmofGdY7Dv`cCr=*3
zdul$JpX0uJJiW#~A9{CIVg_>Qd5ZsE%`YNlH$cEY)B95f0094g*HdgPoSpx3IgHoB
zZBsOH_nCTQg^GYyQrOasEq0|*tf8X2+svyw^^vKo5Dz#ZKAch99Ad7OZ2ae?<^tMB
z892X|1M@Hl&e_eyWn0Hb-zW+8)Ix(yD%HDFn#^P%5q=!V_t<P)rL$fCn8x7LBlQ^n
zzAwszCvR->J4Qw|d6Fcz>H8bl_3P&P?rwSJzH6xMc8w*k`UK!0!IRhf8>q5swR<3{
zkMDPX`R<u}-8exm=_03mcGqEV7G4jp*QBqW=zWYzLmKJL2~STKh$}qAbG!=f_cLt&
z@>Cf3s_3G`pE~Q|qYiGj`~BzHt<f{gErP!@&KZ$y10(K`20LyYkUN5;qYzKY4=!!e
z8#Bk&I-CBHb5rI{FLj3g(PaGR^ln*7w-yT2!Q{LsCPo4c9h8~S#X0Nd2Q26m$+A3h
zEQup3Ei8(oi)ukASuV+m4X-S!87GcgBr)ezeW2=DovDwe&eOVgVuD2qT_TQMUM^Z2
zH}5cRl13Jt_x*%slKl3Vx=;}CXfpAhU)3W+S|!V(m#az_sfI(IlgJxkUMGNjPUXu0
z-SMa(`nNUe$v<EH*GA0&9GrDqO&Qqesx#z1*3xiZn7wgFahfLb+;nA=Adt;67UkOR
z&Xqn?ER4U~o88y#ZToF{bASHT4;xRoE01;VOmO(+-fX0{JevNc?!copi=N)o>-%S?
zx4ekzyAu(G(-zLt8j1cv1nP>%JtwHY!I=>>A??>&y6jl`OD6m;)JDL|c<0}RdrSbI
zSv}|D`nz@G+kPquVCAU?6*iNmH{rpUWgbei_hx;5AMH|;2jnPpCD#me5zkbehP;_3
z6~<4CRYYOHbAdn>?tgo=Nt@9b=v-6lzktu&xI!2kny4r5I2n+a@B9fr(4;LK76V7-
zOtgU(?u|naz8GoE4oDd|`O!;2shu!(4Ko8gB%zcT+A(!yCYG5fy9Mt{^_yfPfN*HU
zlC-`XFgU&<(@G*P9+w>>M6)(&WhF@(-r!+wsT{;;ud;S4%nufUFgX))AQU1dS@h~*
zu#7u}W#T4H9tfw^LaHxgHF`-u&`Cjn#0WeJ*}>7;kbz==SK7i8=_ihoR^ORsC-46x
z3nmqDP~&73XRG+oo)=&V1V96F-}7}mTx6ur9GLI`YDh&f<)DZQl8~!I>r<u;Qf8HN
zeToXV7Igr1CJ{-wUK=9pppXRmWCx_8rrncxh^nfKs}d@?sF}))a*-W!QrOpWpBdy0
zz}uJ3`!4yI#_3`G_I|r2npM3I`sooun%t&V1tY;->7-)4eRBYN0Zl|YFEUOcVPphO
z?B59lH97+cFP8wo!RTjj|IqYFqaA{DW-3;5O{6`x)65%6Co#z~t93UUgsgnnO$duK
zSNa5h?bdpNxf)le7|NlSo+j#Pzk*#we7r(pKT$(M_9OZs@Hz~^qvE|z=MHOKiGMvW
z1-+ZoFO>!U^+V=Wy#b~YDH1VuwMGfd<Bt&K$qkZxbAs%X6W-R;ukxcwLetC7;gaL`
zV8h(HR7XW@J)36gh)yHGzc*w8?l?W6@3r^Wp3pSXkQyww6mTjeMid3|MihI9jeMYT
zn(n9-cpku3?`Nb*F9lVP4i*E|SuF0Bi7ZxL!NEa*_+;YMDu}!A_scSd)DNz4^%odN
zx;CEISu9yE&ksqOhjin&eWJ`>rc2kFn}{thwDKPpaLY<7ydeTKoOv{1LaX7@5fVyH
zVlL1-Nz3tFt(#Q1K>+P7+cMq_(wRElqdX*{B!~_aAOwqYie(y{Ns2>2^QKy!x~2(u
zji|rXmvyBMbPuvm2gxh|r?FfM(k4SNr?Cc>jD9cnvs_1p2r+2xmlHh1^CF}@W(>s^
z4r3J+Lp>(#4T{v25Dnx@rE|5J^NPvWgY4^OJMv>EM2B4eYY(2O02W73J)@=?rlMcC
zlg|KQS_~b99pp2XnNW23CVehgoMeK47ih*JdJWSxX!_|7TU`i1=%O|>vUDll1MSwd
z*qCL6w`l23Xb)~}wwEZD%wyowmoUO`YC<lBh8y&x12BNu1{+wFkwr)5ubv=|PL3J9
ze*zd*c_OW$h;k5P)vkO;O`CRKYekid`4$K(7IXj!<a!Ce0GFXtc7?EuYJo4Xt4iC<
zxQqbFO@(cXtRofVKE*p=`%ItLAHliM$RLf!*hg5MOUQ%znG6Dos+*9$T1)1AChZX3
z)GmO(%2=9?pj&Q<NEm-JoZx?h93|&;4H&u=!+g#ymnNW&+Bz|=mtHr?L5sw#@+>b9
z7(PO(5*J`)hAt3Vb5Ou8@7)@`@4_1j2xuVWz5h^&2EIOek$GXN#GQ{7Q4oG;V5IK7
zK4sBgfRjJ;6eive#@vtHu8EH}FRBJ569d+TuV2qGKb}_VESL;28Yvd=B27wABy{q`
zQ-*wfb0c&`Gpex*M625-8bcE3JJzUAbJ}T|&Yfy9EMPUSKv2ez27LNRc%Ghvpm{WW
z`-Pig78G%Ita8neaPWf>!r?ggj`XMVuz4-yoi8}|Cx7mJ5(d%T4{|gtF0OyKl@8+b
zPcs)Ownq^^qF*);&U~yjS)_O>A%nseV&9jb${HA9_(ANOh%m!j3@w!|_TT3zU!2zI
z<EI~gNSl?H?SKD{fa|BcH#t8N_EQ{_M8*qG>ytGZKln}|pKNru9~9!$<ESNtetul6
zDyZt4nUR}=Ccjw~&MmAjdCX;4SVda2>r>o%y$X1j&-LgjopC!y-)brfboO0(+Ee}X
zWx%h}C<tC?;?ee}KX*qcPI(#O>FLE!X=ypzp#;1qRcamJQ6*3E5#t(73qj0qbK=le
zFBS*IPw$x{pHM6olTjSj{K+5QoOn;1sH*xk0n_=hVir7|KCehg8g7f0pa`qeT}S<9
z>D6p$-B*bCx-fwb;hb7%hp3D!){ai$+Q$iltS4RwvN{4N)|(+`$V;*qmwi(C^S7@O
z<Y!84E54w14pKJrh$U{-8DRCpztlNlSo)$>7g2HFDJ8iL*iu)8L>v=4VIwRK%;?RA
zRK_+m0juszl>P2vG06!%QhgWBzoJN2N%ZO`f?TDV_1gIxJ7FfQvGiKB=@k1K4477V
z<FyKm^cV^-<EsFn^5QWbsZ(NBsXvZ9v!N?2metMWN8w1h{wv2BBOU2AjMyd3k;Qg2
z`gFpY+{WNA1CS`M#L*lm!^J+;YSi;oK?ZI>QO?p>7r>EdC@#05UJ`a$o}Bu+6Rl@Z
zf)M(Vk$?%FMEon#s(977sZ+cTc9EjcUBWPPt4zQa5u7F1G8LoTvNzSMDSJXPqQt@}
zB8gt7mjBl>yvI9MK1y1ZhqQ>COXj(2-#!YHj247f6GHRxV5Y>9w)vNWh+?{Wqi$W_
zBn8^m#MtjAI=VWOOut&s$S}t8dRcDNtgpc5``OK0Z(8N95<dqAeczN-xX5st?W2H$
ziqI##Nq=EL8I`pS^}$No?7LWGdLetP-0ayRF4d@Gh5!ifv<dxfc5HjAHPOfQ<|Il~
z*Net2KY`3+<9*Xd&v^wCc&?Ewq8;pnWP%-ak82+`i5P`q3y_s<z3ppCAPTZ73DS|W
z<kfo55aV`3#!<6M!BeY-9g&=f-0xEA+3YfWVzke8M{>!!p;NBqpV+}aD>lu<Emf^x
z-dgFpII+*KXk4GIX+?n>P++43=3lm$VhAy2mSMPN#x;5vWauinXPpA;_N)Y2wOXKQ
zwS{FtUE6@0xe+#PU~cgg*GIg0jG#PEw7u-vlK+K3zN#&Rk(;T*HAQ$T7xT>FAe^e{
z!o|<U2V$+KCF)QX!OoZc6ltSMN9Q)<)qvVS-LjG87^aJH=nrNmxT<s7M$ubE1Djj+
za{o$Cx!t$uAxALUVAJ}%wwZ?Y`h=`Rq;AbdS#m^?VD8zJSZ3O}s8L_0uC=(@^A|}F
z6B_d5{^u5sfb#Pg=ZHedE7eVRNbk0&P5!-J?r!zc57Ulalsw13Wz?%mVS|U={F*?t
z#b@Xt-458aVSHl41}sO_43kaFqKz=V>x~dPuul@f+fvha+s<WBJ-)OSlQ)_lE4>&q
z$gZvY`86}F4ZguL+~Gg~mBXvL^^Bz2<S_{98OxR+3^KE(Y~TWQfWdMJqS~=fkvB&!
zRzMB=x4+n@aaVXSe11y?`FRtlbE5^<k@oE0OXA(?<whh~{p~n@$~Lh@gte0MsX2c2
zul*Na-pyR*r^s~RdLf-Pip<FWw#WbyBoP2cx@XIK+Rp9NgK56oiR6r^CVT3rh7p#W
z9eWf!sb3l2pJL{~B`gLbV!y<B;nelXj$I+@<XPFL6oHt@ToUn>PlDxxxA=pV>0Ah)
znZ!!0-iS9y=)jw}T(L?!%qu(*XyOw(N>q@NQ+V6Ok@<_+&n@ZV4pm*maKT$Ovq5yH
z$hr6wt(J#y-fb*t0lc0yhF^J4KNuaN$-bGwt)*^DBIAqxoUk#?gl5_@+ycT-v(ok}
zW_^DbCnFAwMPLO}tG*%YuC<Z!gzhcJq%g&_fgyIgk9p7GS#UK2m~Bl6Z;*+cm#136
zC6rWznfCF-SY8DO<@w$!@nb-Pj-lX1MVS{ttbbBbbK;5&?@<I_b;Sq;E|K^cL_js!
z7&FYsW6>kzx54g|A(lhJufW1W$vgNil#Aw9Ze-n1#CSDuEOWA$&djmNK(cr?6qhIl
zDzJE(<0)@11woNCT4zEeVLZXC=%^i`l#-9`S!=m@-UY9p4JPhhy6tZO6@@+WWPu5+
z4t<frAm2%(I;=o6lXXpB8+HM9Y0jOL!e{e4usW1V{5VYIa<yB8&-46nhyFe~4-k86
z44@F{0vjy|IuSH$qEt;v`RXR_ww3K&H`Scqte~_hxJ}`8?F@4qpc2;=@-rPS6=G!b
zbe)x)41c;RWb?Fh>Y<X_d8LMP-(H!^E)BlD0mk`c@I81mGRxDi-p1!~B4M)n!pm_U
z+OMr3L7w7G56A2!X}F9&8P~(-c=ZNz2bbeFkb|q^`ikz_2NwxHZvRHQHN4;CAr9ud
zeP7NL<uJPV=3?1(0yO1dt!fYaMF7$Lqck5F$IhVw)R8{LQpbCr0In}#kN~b6QvcVe
zGPgeb_1c|0?sf%o(zsQ#+pTVV-<oev+Vvq9hzM#0kWjc#u;p1|D=Nq??`|rIoh$&b
zIl;c*qJkQK6)i@z<E@UL*Q@?Ftq!jBw}yS^yHBjBe36$k##><k5aBgNUdrOUqj(3|
zS|kq=kwndk!SSejnJ+d^9lPlbkiQLFH^)MI)O~$bdg~|NxlqNU_mShFK*ch`W+NZN
z#>VFP^(T~#UQbrAyQ>u$9=82iz~!yy^A(3D!CXvBxdNAC<VkrbOC$8DaKQ6noWz6(
zG}E+FTvKcnv36#p!K10t1Kr<2f0u{i7I$4tSArDGx56?Pa>T2TLkGHfTyk3dFUy0w
zEbjH{&w#vqMXk8;pyLIj*IQN4PcH~I2qz=$z<CQyf|VMG`$TPc;%6ImuLh(e@M&Xs
zl|IOWD3ZFnMIfM?WgN+fFZm0E^*pPz!Ze0RLZ|Rxi@2zo@m#6Uuwm66Vqy6bbHPgP
zXVNu3&pK5u5kOIn9c&FKSVs7(HBpLR9p|)~878%;f`A`?LiTX43<`P0g$LDruOVat
zxIDVmrW+!>$BwkF3GL0(h_`k2{pE+N&P_yQar|1Fm)oCd;7caE4q|b+rwZnq3x`Ep
z%eay>eq;eFef3522p|VN7h;^9vJEt|_&cu@;#4&Sst-z8>{oNB=EceYFJ3x)I~flb
zi!wbjZag(yCAAjcSv$Kp^b!Z}aG8g9jm|x{HLNvL37+GwjHB%)II2eFZF0-B)O-+)
z_6E9At;e>2(yyAu84Ud0XJKtKE%ip4;e}|0w{Lnwz!mzTELI#5a&-$GS_!Acp8VJF
zTkh)UK!`dr$ekuHSCegd?fp8-=-JxQpW}Y8r?duWZEu(Yxc16@K=fB&DCEF_0e?(4
z5UZ2B2jujHM;PtA7|HHL*QfLQJh7^tpB<y0$E?4K1l^)qyD>Ti)HMm*&breHF{%CS
za|r!FgTau4a(}YPcP7Q<)|Hc>h!&8G_fq88s~t&8&iW|;Q-r8K`SWcZK~A8)nE@E=
z2U||Y{AqF5OmB~#PWAdcpZ3zq(&@H8Cgp~mlcGRrCzO}jG7XIGt$$B?4qW1k&lciW
z#ZV6SaS`F`7UyY^V`D4X*BN)}typq~q48`4y&+?9YcN73Cg#ULKhupha*UsH3yim-
z=~4H6>0x$IU`lDPau_+xao#M$?O%CI)(wZ^I>~v9Pf&>=FE8PTW2w6V%hfd%Et(M!
zAI}zZQMKdve0Yn247Kx>WB}2Z-{x$)J@23A6Z)uyc)O=9*KWCMVq;@<S(-lpv0y(;
zrS2W)_`}GNK8g39fdTCy%;&mOmD_}?xgu&_LNeOc!$?!3_y59K*1AIu+8<qsD3T>9
z`p%ZA{Gkvd^%#esVr{4O-l}IRPQ;4cH**7Hk*42*0c`Q%gPn@ylMvU%QPhiyb-dq?
zvbr?CzyeY2*`W%^^4~~?lqkm>Y$L9h<Eqj`z^EZ#1-<<f{&q%>Zyy!&=;52!v%)9l
z#WCGutie!xOR-)KSt28_f0y&x&8sg*>#HQlW0ru}V_Szl(<ePquCK%(w3o*>bD-#*
zBN$xPAW%mHbzeap6}FUC6ApFbRvk`t!(Jt{EssozY4temqlgS+MH%Xf7S&Y>k{am$
zQr%>f#g}`?ro3zfGLdAnHpSi@b7&KU57z{FHl67^d^;3=+-=M$H))yd=+D6*h-<0O
zmWm=7*{C}^mgs+QiDfn}(y6ZB_s$ty6?Ie;9uVLAP81|@X`HB?%E-_tH101-XqNtH
zg&2iaKPNDS*&4ZJ+#b`{bDn{h2`EVgiC++}N%mPXYNn|qt>=F8t6AjgnCGGw1^w{C
zKyCJZVK}N`RSA0d$pfI)@LDjJ{1LwL2<$tD7(C~%d<_d_m4-O96RUVf?VWwjT7M+%
zEeM+t#PAPAOTl8)Jut$Fds`?V4#FJlPjLi~VGQQUdM?Gvc($u-S(e{*gG79>=?^b`
z4jAW#rNP*}K^iTM%|a^Tgu$>jBo0U6#ktHgAubMa_#JH+*oigR?>{zy&+C})L~p((
z%ZYAYS?%aa`1<yo$r6lqf1XkEW=Swg)=t818Cm-94SE_L%G;0F-e$Q_I7M+;p_Qy$
z(1vZz0fuF!9s8<WY8n>Tb`ET^qt7Gg*OhH|OsgF}Q(eA+@tjFzGor3-RQ~*bT%BWg
zU{SZMW81c!bZpzUZQHihv2EM7ZQDlY=3I^UoG<$qtg&|0tXa<@n`P$ISqo0EO8rN^
z{*|Yy8p5&ex(98m%B=ovq{hTYcG|TUCb;b9O6{>4&OH-S#*Y0IUOO5>5{`rRufU}L
zW)z7iAZ*s=LY&IM8K1-0hUK9a?4DjLL8d%K$j4a3=Ty$eVP+>-$AQe-&D}&aV!INl
z>*EC%l;ll7Kr0b%+z$H&!#<)C=E)5@0{&{r$&ClDw%;U(U$DGB^#iFg0Q)v;>x*Xo
z;G1K2rc$92P0y@J(nI)gcSg(`@*!t==%+2b8CTUBr_5fSsj+$ZwJvfR%yioeJ8T+T
zPb<q|1Am#pZ5SzcC2!>O=8g-4uCYaJ$tUHo5u^8CXaRse7+!w%DGwRgaI0RF7urkt
zOf)uuXo8<gayoIsWcN^@>!U68z5~w9-eB5ZSCSR~w`CIAykzSTlVegU2H@Y+LFpLo
z7kbxlZipjsR0^D(7XVy9B9(0j^tSd%PBg?G4IKP?3F#udy}4EFB7Bf>6J8fFk}2}6
zfDy4sCUWEE+VY;o4)y_`3?AqJ87cZhLe)ZZ)on@rY@8xVp{8V<`-JvXOasWGf~RuL
zB8y=orgR2;-bs|q6l>Ga{>Ob*qk1~Bw<ReZjDvNizQ)uAyb~M!%)(J+V+vw+s;Kcr
zez2|)o20idYD?T&{5{!bb&*8X_xl7F!&$+Cf*HKwW3(mpTqqkcJI*nipHMZzfTwBF
zuJ(r!-0r;7*L)u*@-E5at@Gm>uo_7Cscq-M!_zRk(8Jb2HhTD6cs*FXUanAEzZLxg
z1-=b6zt_SXg}d^fW|~OD(!F{rb|<JF1<+z8`!Xmr+5Xmwy&$DKZPY9-P<rM51v(6K
z`3RM}IxK=Oo7Cv&#01!@`&`tzRoDLf0yX9qDE3Qtg{K8-1mlREu|U1;xjDX9_n5i6
ze0)sb(0V+Je*9R`ny*P?75CP<wJ_<MR0vJxY`QvEIA&3w?B-V$4BXIHwfL~5P4;3I
zoCVF9vTovz9ORCeI=O>&<Iot(hu<j_B=%^SsR7s0hcQ#3MNJDnga^!xSN-Sv5l)X~
zXtdxG+>2%94?eAaYq|$O9e&G49CpAr;*jm;<F`+Ka>@H9CIobTHjkX1BY_+T3U{80
zli(!5k}G({?On@uM}#HAf#X#_tK@C-l~ndk^U0MR-e_}r(A&7E=VWA>OHm~v@`!xJ
z00V;`45%e$9<TF(QglFxM8qetz3O-xhS_-mO*F;WU1C=_{`x{K$^7?W;#kB#3;R%U
z9FL>Ed+bL`)Va5rE;lXou(;E!)d}h|-U8gr`>iIc#)283G2Iv0+Qq>ZH$5nNry#k*
zo=Adj4i<CX^>X!$OSwWD-E~-bhh@}VVBFV`9&05xeRXOb-+^ATd4*2e21*A@wSO>1
z=bbaY2H2T_j&ik#o_{yJHQv4|J>N`gJ0&aHw`wv24<AQm2b!Z3ar;)MR#{B%?Ktdy
zNEdx`|Gs3J8vVGG)}y7^j!rC>npi#ie0LGw)=?Ih8}X4hFxXXhRL&iw?NT+pA(7pk
zM!`P=?ha<G>R_zXyFR{LnU0aDw%#q9zM)d5dgxYI;jK34UNn%@X8VmY)JxGd!7hyE
zjg#-L>atXJkrgh+kG~h*7PmKU|6yy5QrSN7&Qj^+pbwi(v)`@s`i^1IYgyRR0$Jd!
zQWtVrk<X-e8u--O_=0gw`{MiWX_dfdY97OH`v(^4KbA$D?W{~}oqp>-)5?>UhYTp&
zpVT0vYhY~n@??LSni?@TG>WFkK=RkvYOu5<N!v+b9&Zc7a;uMv<^-F=QFfhXx=$|<
zi$D{QwjXip!tL+~RqjRnpT_i~7)qk4qKP4gSp^gk^X(;u=mh$hIxFT)G3L4k^F-np
zKv;}nEmFI)fL;n_)|JR5Av?-Z#HTf{_xxM53H~UZC^OEOS5(?iPUmS2wK1tDY4pfH
zBZRP8VbqEtO_8EgMRtadRU)M`{T&1ec@&e?Xo50xWJD&+$QPF)rvNu$zA!zPbNDJr
z)}7YraS21tqw0@OjWuOz*=T0#RKU1IB_`F+ayA(jus?aZzj&?Ql>DshbTj=nE4j1F
z3<4Sw0RzIk-5n&bud<?g>RB|yaP(TL5-?9ZwNI}=dXkQWlI5Zd%^RL(hEa#bt$zg1
zt{I_}vzbf{y>Qbi)DG3ny|`tg;hI@4=Q>e@Bsg|fwP3WFDRi@U7{zqHcJTuThf|;U
zGvSE+F&DJ~+=ha-mnt-?)LnrK&*`Fa=iC}xDmmHjJje=GF=@ZHnrRYZJMLR6#VJzi
zJg4xN5;>OV?yhl<o?Js6mZB8p(~Wst*ypky1^La7_8&TqcOE|NSzLP|@7nMs9o2pc
zH~ta_q>Sd7i9p2D4Gg2gkBsN2(sKm;0;v>!+nrb4ey#06&XF#7<dI(Ymx(0Q!7i}H
zpqR`RwBULh`s1^F-x(M8{v_2!d^X?VbBl@wAP;!||L6shGF-$^{sI}0kpTb@{$CPm
zWM^Y<_kVgd%W67ShoUGxueIr%AY9d!8*22Xkl0F4E>M|I`N0IH#g*#9SmlKZtoc`d
zx7qM9rbP*>vMqB^S?UYloToWnfBp_L(nhkAVLP_I$)~t11Lz44`R+RE-Vc9Ur`}hP
zP{+5DjJj#Z;~vMw|MO`7l+kb@lj{>+T=%xiX`li<-KU{6UqqmvbVRr{<RNxnHfL|r
zn_a3zVL}?^m=wXG$EIL9B%=4|ETCCe>k@GG^E=l`<ROWxuQES#7OintL9PdPbozAg
zYX7`Hd3iXbRY+G|p_z4d#})6^-hqH?>OxG8s`lO!Za(JrXIMf1Lw;KOcWNv^{wo>v
zpLk^vEo#hD#0luPa-Y{_pFmR<qH07rRSV5B%Tv0^1;c?JKSf{Hfd4|Uas}SNp2nIa
z_uXjG%YJ4?bCRv$R){X#gtg;~e4o~bQ@AxTp&%`Dgt(|R3P2(o6n=8E`?-+jA#8gM
zMpq0h`I>;J^RU)RQyFA^=|J_L^7K58q-8ka#}Qr1q#EWlk=lG_F{JPJ>_I2k2!E9E
zWf^C7Q`zgsu_%@zljSkWNGWY_#J_%)pyL&(2FgQ$PKMWH1LllRjND9NAM3h$xV3nN
z2XwuS3ZbxBE7!}n`2W^yYVGuDwe8fs)L1%z1<ElKJ!6tB2c_2{We*Iy^uTGxw~Rus
zl*QWCI7Xu7u_(E@j6+&3O%fJQmJOFp3Q|N%?RcQ4ETWIPj;4ZI@y2P2{^gjWRHM=O
z5={QZfzaUNIDO1BJa(~#3J3alR^-ZDT5>D(+tuQVOUBxB7@9B;^<<r5N-kSL4(^Vm
z5t83n5y_DU)Twj&7i-L62U4C`bW9Ns61z_$9M&mHCNzcJCz8=|4(Gyu+@B;3L=(fo
zta1<HeNO#;$4HnDdQ3<fcG9Y_;%UxY!OMx#|8}QFtsspj9B2`}NEzYURO2w3n_RlY
zyU*Ma0&GejyGcbS=h>cqc6lcqj24my?}~TVxhe7vMJ^x<D3Cxk39I4VdPjH(K@|X~
zzu^<(;!@#RAYx^A#~uAKE20;YU;V0OsJ!b|beylv<uqQ@V>cuPm^lO2tCz)enZG}P
zr9vHR6<1mt0e1coXPsp91)FIyv2?wVxh2EAO*^XadU@l!MaGuANt0r3oQ=ACs{T6d
za)s~rh*ohO0`J!#$9wC<Js2Vv5B4yGsfa6+tgXiWNHKK$ragc%?P>Pmcj!#YXFWFi
z{Z^3LTLGKWtkjKjGBeK0EnB;j^D#TIY`vGXeDU_}H|)uu0k#{=G>f-CY^QbSUnGet
zKVpu@t@1~z^VT^OpxS6AO9EplUm1fF%fg%!^PtbKBpUB@URi4-q0`EFZlHl7mek-O
ztDK>%1HSLpACBUTan}W{A;4#>_A1ik6qSQ_CiYD&t^a@gvPdbg+=70q#;6ScajpCZ
zI^kM#+wK<w=J%>6Pz3J+wYs*52Zo{k3W_4tYIt1-Cql@8gzJ<~8dsF)Ir#5&8<&qn
z@*zyI)S~{JFrmDY_;z#`H!hh>N~d~V+g!(jY&BC->&2MKp}M65t=J-?`znUQrnb2X
z%D@v%c^Epsvq7YLr%8)k!<D!xLFKQBbw8dT$Irq2(8aYHGFaN;c&m3c7OHo=N$Wxl
z6Dj>YW_iy_b9(q|`<nVomT|AxY|jSi53ri3G}%s76<Ly)oSdf&UOk)LPF>?}8=Z-V
ziMnozs@g@g#Nfn5Dym_j$V@fG$(7(8HiBV;u`B6XW7_O`1Dz9eAA?pv8>my7=A9LT
z5(L6Q>N1!^>tj+}7lM@QWf%|3fM%D*mvYL%);?t#4Raye+YnEm6tvc5;`jILIpJ`?
z->ftxBfzNVXdQ$}w3}S~t@U-xZ$Hq$=*HdL?lyhdocjiSY#me=x-mG<F`U)Yh#Iro
z0k^$Ru2Qpv9QW;-A|ze!oLXVu?1b)f58|LzRVWpZc4~v5<imEFc17As-I{n)B}_oY
zqxVp&H;3p;dIiV0TXRSqH$WfG)$tvH)$S#X)kjMizBo6$L37IHdbr?%iAxseD8vyS
z5|ZsuP?rZuD?pz#P@p14QP?vF^hnKcu7cyj0#M)?e<aM3S+0PDfGZ4EiWEVE7efbx
zFyw_10egRzLx+JCIR01hlr*hQAoGezK4DuqnZ!UX-ko>A(5xJ+h+T4$5T|zl%8|o{
zs+0-MsW<m%f*8Hv@}-!dEk|`;pK+kXxm%Vc(55{-sKgqn!L-1D1T4$24gP8XqqQYm
z-)3{<(ogWaMLCbrdo=2sTv+_!^WamS(fJK>hC`L|ma9bUznydl;T&GwiOPbA5Oj11
z5LnDwf+oD42YLY~bwBWI_peu8Og}t7xVgN5U?3l}WjCBYV?UA=o!)+Lb$s=^<5lo)
zbSn$8Iw4$-x^sA@BRz#WX9M4v!=S*dAS#qjHC^d6(DE;Qwk8H@H@sAR02P~6V7O&6
zU0I36W9FqRI}9QFe(*+)6s4r>PoVN3b=i}%Y5C5tT2&f%cowIp`TUrzP9S6M2?d~1
zN3d$m{-_wRL)}`2EgFnIpFk~xk7~v*@3X!x*XoalFtj8GuP@N>c3Bx<EAHs^E<ZpW
zPptv1@D2~u{T=PNWpoT_2s2~m;O?4gZTYj<BUcoZUD`^D?)<=T-I8?N5X)hRnvSGD
zj>BBpS==~m*aixLDAKKI$hT~gCrA}?lg-zxkqu{MpTs!y;rYBn-)jACN9}Kop|XTK
zX+d652=LXgS3;nm+)#H<_;`pcf`56ScCD)!at)G;KN9%%P0={^f4ns3nBpr+w59x9
z)mQ&9BAoDYR?2Xz_d^Ha1H&5S{-Q;mjPw=dbKGoBDk5IJrl6MIcY^zJxZ8VZr*h`7
zAWA=@$>?**T3XLWJNL%u@UtGn@hFEo4%?z3I=WQFldGX1>6&O0`fdQTAANT`Q0~f_
zrfY^*XztQK$GS3BjDO6Q>M>bJ)gP#341lXH*@~%tnyt4>?7Og22JVZ%mE5P0f-Jbn
zdMPLTj+kS?%68$W_9XUvgST-1+-c!_C0Jy>q<}lU3h3R&*Xe%Xp6%ri_y{aIF%$%y
z!hRxR9SlW?-w~)^<&Db{xGNYtUMB^(h5>m(2@U0I3uL6X2c^wep6OY@49SDHn2Gee
zj|-x|naVkgVGIB{r^K?ujJ3HKOxyGX%77C&lHNxT#7&Zx?GVDl;Lab7{OaevpmqU5
zGpCzI=p2%Kc|nIU8c|)Us<EPwcGLGrs~j!yPMAcTj|@Zj_tSx1iQAgwf8LusIrz{I
z9%{cPq`Ncb<$O|{`rOc$961(+IGKo=ZL5Z}V2#;ml?la+*h2gRBZ5ClKYgV(RBJ9K
z^UzE-UA%x~4iqBrvcRhoUef9imJ`nq41x=jx%Kh*D9#*Y*Z0t%0@|9WqaSM!2o39o
zH_O&*o@=PlVS*<RH@_!IL+q@D!iAsHk+PP+?E>phY?37l2@O_}jFdaNPLE9lf>{Q=
za6CQts2kN9o+-i*#}TgLNTJp&UT;wooYQpM>fb`~2KZDV9L(a)!ZCyEY?$?0tWs}S
z(w-|QGlXQRci$0DIrv6@<(!*iAg7b<=&rMIDH!i!g3mnDF?1=i0L(I(kPd@44iqb}
z&dCi~+3CE9sb#6BX9G%BM=ZGd8=>jvaCh<`u6B+M%_1vpdV)9u$h7tA(24#v?<t^F
zq}vAMsdkI6V$!4%s!@t8pPNstF(ni0LDKqj{}=x?DHNBhf{d%VRxa_WWaDZQKa33B
zwOjdf9&XeUI?iVv;wY1Va{61)BZoG?z4kz)Ojc$-rC4`Dn$i}^3+H%mSR*ZPK*4$i
z>9F9(bQARevvp=QdFT{xSfRcOSl=dAQ}@4E@F8GefR%wvr;q04c11o1&*?qfA@V-a
z$Jo4N*7qkik5}2B>`QPskp@U?1~2w&P796_W}=|Rr&gF<2w``Ww&R?dKKH6vmo-5O
ztF+;F(0sGgb?4mmi+nkQm5a~pk4XYj!}ebb(FO6<fu3pNi{i<{eM7E7%r^t&GXou1
zUL&L`Wu%w3Q$}lfg#zI{#&~PJM)=N2CZZ}UbEV^pP9u1L(CUQEn_q`TgRb)n^I7Fv
zkObDItIfx4nZe=33DAdCzp12`9X+>LMhKmc!M_@X3!KoFseQ*?&fVgc6Zb#d1!j7S
z`T&P2DnsE>i|1q%cd5Fq%+8Q`hoGSJ$y+TyvO$(G13r1dXPOed<x$Cn`Np#Iy{`TC
zJBR+IN!Y&o@SJDq_j7lPjW}4pQ;2q>x9!Ji<2Q?|wnZ`=6FzKa@+E~*3*gfq(EskS
z<94vK;D0@K%r9Z%{}(cT!Kb#)|K+iN*Q{-`7!Z0MQBn&~3G#jXCB4Eoa6HB7ytGA9
z(L-a9jgU93lUi>vGJ6F(HBy3s@eb{Ld+!mp<2MWIGmcY_0x^M2u|=wdZ)ON=3SwvD
zH=neG?<n&~k{!osiz5IPOo!A<XsgqG*Lf%)F#$DTHuFyLz<1%y8?eh|1+qbdoe#!3
zLp8x~i7%%#r{iKkgEYg?-N}m=hN`s_g{F-E6**@mtTiNQxvN0uI9(q7L53ZQ>#n}p
zC-wLpA;Yy7v^)DV`dCuYBs`u?S?8jrjT7#qZ;Or^3n2}e9f7>SBcD$#Qmhari~^SS
zvuYwSXIo2eY}itZSV*B3Q%I-+7Ox|yZXmwrLERa*-1a)1S31*{>Ox2Dg`_~h*ZZjn
z>i;;9zRIqb&XYTHpcZiv<F2PMO_B{I3w{@j^gy@q+Bip%zvcMe0QEP@YTx@l`4c(@
z!(@8M+!{05MPo54I1Bk22Jdl3aGWuqzo-INiaKlO9SBZ4WL5@FE`9(Tf!xt)`lFYw
ze-$F&y$Bs&S8LK<OH}q}+J*Xa2eGO@)D6-x<!WTM_K<TqKtas!dBmGm+j`f|MmDQ2
zvq(L=phEuLhMJjrK)`aF<TVRC|G`zg_Or<NF7A99KCFnDV+qyb3yQQ2mpNI*)5Y!@
zVd#jG>Wv`P4K&?Ne^hA8bD6!sA|H9a2|N(%{s#N+M`u)An=#~9>(UVaht_p8ak8^^
z{omWf)fzTVnc_(QYV;U)x?%Mvle0I|v{bx#w{yCVsl>*~WS5WY;0!RVsUXz(tvX{j
zcYC&B!!a@VHN;3KVVwECIeB=dhFY>2nrvK0Xs&Z*M|SUN;QS8DSxq)>JX!v}S#%kY
z$t|**^piy_X5p%`6|Nm>I5{cm6nir{2$4^!$29WWejk24qv~KbLI%kJk+2k(^;-+Z
z{WQ0w`?Ynn?EWzKX7o1Jp7I6NXx?m1=VZy4kDPBm9gmMsYNVECOx3*|4;sEN8v2L)
zP&Ibt^!j+Uf3@ct9g=94qwTczFEH2#ZOKw+|Iz>4{lN|#8o%9yKQABkG2IjZ>1xTj
zpR3IZz{km8Nt(vTWg{mzYE|VimYDe7Qz#-H@Qc@D<L-^?&ek7&?5Mc3O_#w;=MEX$
zz8^K7_#&8g6sYerQ}`u2jk?BwA_Ai<wsZqHw_wX2;MuEw-xGH7-j`yPiN!}(j<f)n
zf&zi*hYw{`lQaQ(@?Y+tWDET>6c|Z$7&0N96hlDw{^b#QZF@1NL70A47@Bg2iF0l;
ztZsi&25&NClk6vyUJ63M8j(O3eW5S`+{&$&5<JYv8xVr`fE_yW8ePJDV$p)<bHlQ7
zPh`&-Uwz~>zHdsMjBL&swc<p(6mZ@A1=`^}fDaZ1fSZ`{z^eb+AvCki+Uh>VbGpeQ
z03tu}k2s31fR6^LVh;V9GAihAXaa6O7H|f)6xP_gM?ujiK!>2}=RPX?6D}vx=A9Y*
z>xelM0?}?tDM2O=<Bt2(Z|%*sHTV<9j|+BJZgt3=7f89a<qU@WwjaihpWj%9;GK&I
zgPPO}4<U2uK=Kv{2`D@Z5bD=zgNd5+b~^68AelfrHre6Yks;lCIrdWzi7E2WiY;L{
z0WMsfCKt2O2o{Ylp~<KAGM>r?iT3h!Sp(L}G*vMryD}Ff7g&YXE}gZ6@+B-8(#u>e
zipSuu9yQI@uK?R{fhg5a!mvx@ha_-3Fv;NA1BpaZ&h~i$hzT7W$KWAq{Xtzh46<z+
zfIwnDMB?c<riPWP^UE|+c4QCh6o<nA9C1Yu_=#13n3qK~b^S!4o@#cSRjYHzOR&l1
zI_iPT$s4+44Pq)!&?m$KR|fWi^yXc`qgSXGC>I9_g8Z1lVTBYPeb64tO4!!cF}>D{
ziMp2>(U+>yxwN^J^KxVJ+5A_=B_*h(Mz_?$XWBI7FF-KuSd{d1MB_;V)KrHgKcan-
ze1?0<e`~imdQ3p2o~zr1v4vBc{rsfC?Hokqlo7PJT<YmCM*4yxxIu$o_yNdJ4+K~<
ztYcP{^(Iv1OsEN}(c2V3QNs!G8Gi{%XxkPrj!<HRvTUIPbNf-K(r7^fPC6y?!Pd@3
zG#6CI;L|(v=x3U@7(!vtoGxZBbykK`4-Tkke=#bStMt#+*P-f)7TGGr%sldBOve(_
zt1`P83MoxUR%|NNsw#o3S-F|173>DlmMlyCm~s?HwLyWaF<M@#s8Lisx})P1pYm77
z`7AcBa&vrb2)!j<!{2ks?ON)Sg<G*>L!QD8*Eh!I(8cokCd9L?7K;qy*h~h%i`#*a
z2g2RP?s4Qz#s`jzy`@P>7^_PqVx#P@PMV{o)W;VRG|88)Q3~YQLpFWN9AT7^UL0Md
zST@Cb4ZUeEm6V&h+tcf!jDzxyFSP|vO_2F2<Z60!>M>QzMfg4BM1|uj93YMLo0vX~
zKBL<Wy_sHma!b|&)x2~m%p9AUHWh{$e))g5>?DxLKXg0Ng1JnV8_TPtiJdHaJ(hMS
zh-yTb^n0RiFwZDBecH-`A&*mWvml93FC8nHU9oAO8|H2BjUPi=jFc%dC|(iQ)D|~L
zJsk8AF99xSg*WaGV%uDDbz=$QJg=|DcEw!v<ceW1u!^X+#Iuz0X%*7OU6H{$aUlDP
zXwTeXDDHeBjj+ou>_~~cY3Etwmag-PH_H@{>$Xg;P0d-@Dmf$;>wNbWdQFomrM7>V
zYiPPv5eH>!3tign!1XLMB*#tlwv}mzse8C`E;B@LUtZSwe9&kpAu`<h@dM|avX>h9
zpy3xgqC%t!?wF8Phrpi22_@T^Qm4qe8RkD16d>4GBanoP8}43K5}}WLt-`imp6PH?
z)qSV|UBn3DpGoc9%I$*kYky$UzYaA1u2oDZYi{raE8MCK!H(dW4?xCX$*mPc4?>o*
zT_=(2aH}WIWM5>Ke8?M<D?4BWlS*Ym9gjF4${_XakS;S{_kO%zMVJkXeQ9;k7qqDl
zyv8uOMd3s$JIL_e^3p)zuVx+;d}Zr(>y@=1l(_@%njn7q-h=(n(M9)~tF!QD`eDa7
zw*4$Mm&VOA^}f&_uwmiBau2%lMQ3}jxnI7SyTty;#rkRQ$8~cu+fH3T;ol8IMTGB-
zv8!#WJ67?g#T2!&E2P|3bdJo+rU3e5Bd-OH(bL`AdF1PgKodn}m8o-18gl4i2??<C
za&q{*uiEu~{tN5<Hs@u7t82MI3`x>rc>djAgH87YBH@Ec0@#u;$cEa-8SoM&I$g`f
z*Mk|149}*xz8pX0bR1md+BubUKB`p9i_8lw?p{!xO~SMpOaL12Rr`eHh$8*=ZtGB7
zWN5ymxpw2;jJq?7;G1nGf@j6y?2utf41d-}@r_MM<0&uLGXq*}XO_47R*1RuR#Cqq
z3tM26q^F?O0hU!sh4Z?Aj}W9xpZ}qBeXdAWHSu6!o`HRXJ9<x>biBw7ZTPCnJ~B(j
z(_56N!4EU|@((j>X3#D?r0_1#osHV2&Hg$Oz^OORBy$K2^G@S%%7)1N31j~TQE%OH
zX{pPV6a?Q*lK)9qW{#J%(8cq#08h`QXXcDrf@68)C^<AAdk8uZad4u@)a&@!8zy}J
zhX3!9MH@?K<L8$K2>n}r`u{vRqyGXp{ujAXbzFAv7i)S-?Om8xhVQ=w4Jr#kn2Icz
zDnX{dzm{?haD3?y{t8kLK^31N#PlcUI_7%|4Fh?EK@{3qhv4yw20lCxS->)$t5|_v
z9Jz87*C@erSf%4;h+^GfwWh#0!E*SZgaV6Fvx$s0^YCAcc_)%$;W1_clyO9=80|7v
z(Q}qsAT@2LB=ouW>sAJ2Uhq76cxosrBsC;dTc|^_2ErAiMj3_zlnC<QcVEv<rY8oB
z8Jo!M?*mvrSlEGd#|p+AN`09KX@K|@c7o5f=tm2_+tg*LZ6&r<k(<N4U|d*xPc5KR
z^nByyouCKAXnQ2!=$#fy42|mBfpAO|f0z{+0Zf%ox^$e85`ZuM%l(p!_Rf)nja^JV
zV~_JFEw%;5m=xVV>RC{5#jPyT-0LAm11LoasQZD7kqp=(9yS~G6Uf!i-vs0WCz@;=
zT*%~>YOxA%Z!1kN42S?*?ux!<KKmZS<|3cI5liie?mP(tFd_>5)s19s6Oj|zWp98h
zmJXC$;jgQ)o}NLI5FKd?iQh)2jNV(qJ3A))$H5NnoaMq&qG&@7vDTX98Pl|?BY(GG
zu2*C0{f5of@yEUG&ncyv9I7J@*;t1=Pm5<CslJZHx-McMYg@859I0mOHDpc19%dgc
zrzn4FTZOf3ZQ7s1+Mem%pP~NyNzvoBUQYUb+(G0w976hk`Ot4PWMN=!;rYMiZMUk9
z-68{u&uwjZdI=eVicpu#gb=6*w>9v5cb-LL)sd@un?(I~eZbqTHkYg+muyRlg@;Ab
z=ebi{9M7cFfO?LYhBJ#EaB1-TZr`bead$O)?faJ}>*k#&HZ6a*sB>p!dvp)&>}*pv
z%Z?zah?S2`kE#pg%BV(vI6{IN;f*6{X(L1~E+?#yoY_WOm;2B8<LZ~A%fDl5kM;r3
zDGLwphng(57bI4NoW;lq?l{mo87u*nCDLl!hNzA}Wv^!Vt!oV0IW_SClfyZ`;0oqk
z+W=@ywG){{?EIgM(B(o&+83aQ7A)75f3WNvE-96d21Ec}4cqrFXVx7ee2;c#1*!h7
z&xcqd(C&ZP7AFh%{B+P2QFpEI8urGFcha3IKDZsOK`TMaZlSt-b)Vs=c&MS}IvfPc
z<`_$7o|=HI%cEBlf!AwLU8#qM+A`nu=_Ht@=AWMv7yz?z(>Fu3vXQCu`A^hv{k2)P
zL3$*svVh>mgfQspx>n`Sy>Z<;1_;l1Dr{9IdrE?$8lnvk<xEvlrnSlDdyl*ZBMVKj
z)B2|9Sgp7mgAAd=YU~;>QN8rg63k2`<MzWk*6a{@GIvD*8W1HMOlnf-^$4SrIV$2w
z^0#Y-30Bf$&qQt$L}R2aL$cIm#Udky^LpN4d0GWsU>ejoM+l!u3sRIua9yQ9jJgyN
zR}FgJzp-|!-ra+64u7+kRbam|;(lpO^X`|jJk-P@stt$g{ZqVSM7pixmRV8UPox&h
zZ7O{SsWslZWC9cAyw1~SUCbwYSywLQ(+D)*J|4WGiYI{>efI};x$I>{G(Q9Z+u*fl
zvZx(bIGm##?1Q(o^h0@f{ta*25_h$Owjf2}qF}B{TxaqElSH9N1=i0`OX>MEDwjqF
zmy{y`#gD&Su9p4yZG~b1pS-68mZ6fUol)NDGoS{+aSY`kkRd~|@|T+4()n%h(zL$C
z3RNG{nUexcB#5!$SAV?~MYE}w0YI1zVl*c4OBSs(&zAl!dMAFg)I=EwUUIMCY8?KF
zF;L%FcFBOX!}6FVSk(Qndr0T`=RXsyic7P@`!}v7Wp~&M#0(k@*%G(@@C+n#qwYh^
zwtt~F46G{sYAddjSq@c84oBIV8ZO}bfOQXIiJiizwN)tjt2fNL*zX`(<_J3Gt&eyT
zyL4twuYydLfqw2cegvEC0c1!@b3U+O%8C2=AMnt1-%*;IUvDZm_8(<eCnEz}+y7g3
zwNl#>ui1U1#&P^}lf&E{?=xLTNJD7MYWA=ZJeAc=h%Vg<Xt%{`)d_qhePh>~STUj6
zZOz6kagy^4j^~<EA*oodoG9sXDSKy%WTK%BVkW|yEqB0F_5kmo3ij?GpFPs=kW=#R
zk(dp#e5|2uyA_D#RqNK8Tidg~>D#^f)%khA`1Sa9ez~39UCMV2*I<qo7Z|6&85j1p
ze>}5!+DZR%VfhTLa6jLe#>H3Dv;O_LxsA@%=|Xw`@%~b&Ca3qM--U{r%kA~vs1vu7
zvHVm})j>7Z38dro4X?ug{dh?C@5|zIeN*SH`}^wrB~yTB=o+2N&+EP8-Ouhb>?D_s
zYjd{ccvQhYRaAl%YT|-vxc2Vb1xF@Gf;V$mLj_DibWE-3?~ziGFyhn$5nPD_DyaoW
zsAnr2Tmdr=I|OTxTRshLEYS0*t-_JW+rO3SL!w;JLyRBT#B~i_<^IRAHw3w#`tL8y
zltdAddy~I*cH0?63L0QIJAGvwTWzR)PGH9u2l9L|zlhIaatt3Fa4|*(Mfru&Jt1$%
zEY%@}5MaFB0>{NSc6N60h9XXOjARE-Zlo#q_-QjS2S%vKH@(NA@KR#_Ip!V=P>V!B
zR&o!{TtH5<ImUHtZ-jw#U;vtXzvn<GRuo0Q3(zu&H_6^-xi#3gz}_eL0<$}buYA9u
zn*s7KlRb~YAb8fcl$4axJHm*Cqg_TuDawo3eJPy_*}EpFL?(c>N6hGI&X|gf$^vUi
zYjD3Dato|1QT#&!BC@GJ=3QAs>&$`|%zMV~7P2z3Nd+A+Gfo)b;Zfrj-0%L0KpfBW
zlc!64B(uCDA|gOX%%<^)SJt|qi)E4i6#bht0%Z6`euYg_LFSyaLFjh5`(oBm9RnW*
zuVq=eguhD~a~Z?S7QD0?9uZ%S?Ee_VSyw}!!M%l=8{dH9TQsu=!V8Epl%rKLK195;
zv|$#epYt1iH<VqQ;4nDjA}w^j;qJ7VT~^7MXCC4LC(Jw&`?WZXgtvPImLD+$03b`C
zbR+}Q*r!dkIB#W~4%W#1FVllI2JynjftF9#Nv5R$F#jPbvJJTHv$J!99pM$-kFvwE
zvIR8@^*MqF9#Tw`<73eL!drtdFKHhq`myXjH566XsH%j2=R1vxSct2l1n&)9P;`e>
z;bsyl!;AGs6=@VuyH0hRN&!ec){tYSvj>)ro&<BCy#)nWFdTX4EV}N!Ge&3WR|s8{
z5AWlY&2H{UYT(Kb@(uZoz2GV!z0%qQxMYt70Q=%V<dp?f0U8qF*qecnkv3qJmpDU}
zWzI{q*(o+v-zcaO&dGti@<SHFMw410t-`F-LV;ob2!#9n#QDtW#O%e=f{X2`hh)i;
z$|j)cEL`b{fI!Ynr)|xhEL>bvK6BaQQFjqO!c<M8JQ42|H(q1*()QH#%1P4qkg4Aq
z2{>Z_n}GU}>PB!6p<u0;p3zj_xY_wa;2C)04ASRrFr#^e+Nb?lWMb-!RkVp(3>f^~
zEe#TZsgun(2%v&B+xGj{u|;zqm~%`0PcTwR&&mi0;JCOXj5I6EMQdxfe}Iu$u^8P7
zq=l6ElZe8H%22&>j!go;nv0SB&~zRU4P|1_R6tKCcqJNO!bp!()E5)Ple}~0C;Hpl
zxTE+v%}EB$0H~4(dQrFr6LvNjVc?I~AVM&{FhZ2WQlUxQteR=7>I3*xGc7%xvf$)!
zLHW}-LMZLCM9B?9sFRXtIArxhNk{!nRoG<?A>on(fR$ScchVOTYka{2(ZI!{ruA#n
ztsMW2vhxD-Mv*l+0%tJ=jL(>DU>GAjrJXR;VX-2krWqwl-(}Yxk?JAA{RHX+O8{ts
zIqIcCSEm>Q)Nsa*U@$D<+T$iA#%3Tl#(64Qr4pp-D@s4NbE#|VJdM|Yot{FP0~KAw
z6-Dw1F8dZKd*XDAung&OFlK5~!hBG`Fd*dv{5xKxEvM_vz%L#brlgnVB14s;p;8q1
z=jxb2&OjK7gUqE4vtFS}5$q0xLIipw%q77)z_qc$g3HY(6VJRhO%q!RF3vTt&!KO#
zWP})1qFO-*f~yamt&7<+kAmL4+PkkbwA?iYvitBlhF^eWo7lAs=nYf=N0Bab0C+jv
z+5AeZVPmfL*i5s_=mJ?DfQ3&SDjK+25Gw1hU?0qBM~6PZ40aF4Q(TRn`nAfPGiroA
z0bPV;AU#7GRLP4zPlDy_yh6&~9-e(%{|UQd*<41x!282sbA7dATDKDbnZ9fm)NH^L
z5_Lpev-5(}(qWq?@C>8kOwI|4-f%D`qr<$orm;#NV$C1mhT;S&q9i4sun%C5A}BG=
z2QvByWYR-;qW=(J?*z#OjvK#I(-1^>!$=ePHmZKOUeY7Xtj44ezz2FQZjS0WN)^LU
z=3VqWGBKHASXH+n@CTe3rhj{5XWvDdtL>|7%3_5}Z3}d6G{lFOD=Jc538rm;WF%M$
z@46;ormh_<a3-0+ps((ZIj1jNicffz%s8jt*UOV25;px_=<<@<CQiFD8<wW;k!&;1
zDkV3NRq=kiy1h{*w)~$d!cA?6?|AX`BS3N`>XHYP@(}L`-J9F6t2#{5%27ufWyDpg
zhQjMz$-8kZ4Fw8<+GnNfXG82po2%;p#qK;Ze^TY|J<11B-|c0PU~qeUn1(%3p`?{8
zk1l1dB)DWGMOyg%HGY#so?nB>xxqVO2F%pMt*!%Vk`IE4oUt~DnScEufMbim#J`=q
z={G$jd`KqpK0L`&yevm#WVE%XY)vP?5+lHpz-ii@=|uRhLr$OcQqA9@l&qO6VrI7X
zj2H8>Q0o9$FShyn+!j(R>$h*egI7rd%f(D6A1&)ijcY)!fza;8L783@$oOjN8vl#=
z6dIngiooqfgzDNhD$~Cv7lX+QAlhdg86`ruB*(b5m9x-g3Y806RWzq6B!b8V5-Oc)
zpG^tHiVNV(e!O9hNV|@GMV;3QRS|N!yjHFNK@qkgl%`UklwpZv(HXoSsykh)@|fzp
zN(IQxZ3gi@%Co$GuK2p`I)EG7Rm^$cR<f$newUvHtx$q_+!tcJd>6}8l4gH^lILM4
z0v{U^vG_cRO|aSjraM+HIWg*$>A!j>3_qzjLvO$+48o1Ua=_&bzx6tE3DGlcEkdIo
z)6h+x1z!h8QBWFfL$?#T1-;2~WILn!m<V&tCah?AtHwTZPz_6d!`z?^aEH`ANUm=*
zNI{afL7UhxFdJ@77Z6%7RJHoracXDnRLfrawmI<55eOX8Q?Ifb;#kX7cqEskeT2fc
zBpD31+L&du9(<v&l4a!Io~FM*iNG8QTS*Q3C&*062R&F+U21!qU2KeCU}@%ULcg)i
z7}AN~(uluJAsHCjt71mQEZudV5cUjT;9=AlRjZBJ3`C?fJxS$K3?N<NgY<jVssN&B
z@(73|Rk?#EXnnr)QT^h{aD@Ksr@PWON)AraW-5cTE#hIYfH!&msl}@^at&mpkmY)M
z0io?a5}3hcH|B#8gqUb_7o=iqxCvi1DOU4h7Z%NVkO9x1{d>)1VaX#qaYlhUb5n$p
zGj)zLA`a);Fli;roIXQgy1>pA00~-&8svgSPF||Q&?mtjaYFC|fJ0y=3J2VSAC?*m
z#dM%t%AWt1Uhr^{nUeY^8iOuKD<NsD)!8d4L=@x`4gCPv$BKwrwZ0;}-d&u+70abQ
zp6SwSs&!im^wpxDD1bpBcoQjyj~dw!JlXtcJc{1`IzEcO7KC8MP=6&C2$r*ceX8=T
z&`EQ>(Nd1>{*PWl3xz*(E=4WBAapH=Erws60fjtk59vNQXO0>2uyr0q5rh36t;~(<
zhj_4A@BxG`q>EhPg{JXa++|so>@0fJu7kOE%t>w6aVEFmC{%zxM6rgrC(>x?oGwYr
z9zCVhGo|&b;<-{u)Qo{Yow#;~O@XF`P`Xyjf>(J{^JJ^gD0l6*B`<o0lPz<j+tSnv
zqL}sQ(48Daknim<)v|Ov+SMBx9#kk`piHI<7<g^CaRbKnHmp)95x!B?arMtheDegI
zz$JPx8zBffsy|kq>$zEsw&jA{I#DSIf?M&LsM+!M^3>N+{Hg4}gvh-FEAA21KJ~W(
z&XZ-U7|kI=W2JtEm{9vMkx3!c8#fGL*=3P4y0s&AcjnsQnmK<`9l({3#UqM-UX@3X
z>ft%=kN{~aILL|=6-M+j$O#T>=)y#F{+dk)-~C#3oT#9D8HsoK*b(Nk4I0r-TBF%v
z)CYaiab8girsXE|IiL*oMz{Q@tXg;exAiKx&N)gO3dwPa)WPJ0%}jXBGm@#7#LMWm
zVJal1<;52DRpu0Hn$4jgt4eF<^>8E(^i8^E1>{hRD`VWJt&@Mx3o!VY_Lg~bXk#w?
zm~jZiKP82ASJKX|p{{dc?CIOqlBQ39kSK^|jMk<$%+E6GVD!y`_IPY%V?}xs95Sdk
zCa3u9jCru)u7A6&215}0H{%<r758NCK&pvk>{Sl4mJDI5O)kw~NVwwkGyVT@(t0x{
zI@CxgQ1O74+8{^LOEH*RD6iB=+1MmIl!mG`2B~2L+Y~y@P>6+Gu`wU8vFj&^Jf)D&
zka0lG$N&}mGr9-@Pm3(*$bFTms=d~x05GerY4!Z0whF6f3%U0dyQv$Q`TJ<8+s!K^
zdIumU5b$%J;UqIU!YjoGhGfAWXf`3GTy>rfX84ukHk+@ak>yt?<YXsr#8B1nx=wDU
z#jqE$WuNz$5VT!~)hd6^<fmq*3|QQ8rD^C#e`9$IhW#+R@0<*7y`cO(E;rG=#wiPj
zUr4^>2=fXRgAIh1A*;#W*~NvWd!cr4qbi?P2owsR_Hc$+0iLrsh=8C6@BZtwSDtHa
z1?MPhFg9~_+;5BOu|s>^m#lCB_Mgc+`Q1wl$o#+<+~~84rY9YNGmG)E&8hWLaB=aF
z+2VZXc{2tk6;sr;!?peNHh@UaJ?3atS^|X2?Cd-*@mu%#^8w@d*hK82_t@-<L(irC
zGrH-8Yr6##bm|GrHENEk^uU3QxT>w)K-ucdh+qll)rUZiMdIdgXmw&D%LBV^e7PEI
ziElo>O+wd~?v)7Nv%X2GdP{7kW|p_i`IpI?y09<1^Ofs3Lr0+S8_kwdQY75FuY~6w
z%9h9#RC5Quj5~X*OtRQk8$XxDhD>5UrKHJKMoWZisFb<ZAAU^FCM>AKafWtollo}4
zjfD#Pw(Al*Z_kX>DYKA}R7mtf&Oc?Gk(^tR`23xakFgKo)LtML*EL3$MowpjYf5I$
zRfBw+HpS&!mkd2?k#TN*C7{MjfGFItFrt6u^b<j2lN7i3!$z_E2^Gs@b45fVN`nuf
zsw>QQtnCeRkr2p7vGs8ShZM_t$pi)*!M!CUh^FnKBay-$kAA;JGXMg{jCkO&{<tY0
zTwh2FA|Y`r-tQbFQDUblh5xDohc`~$k0nPzN|1YB0LO1MuJ=mmna2ILz6+8*N8R%^
zXbaSAmiHKQ&ImDerp}ld2Gh|j+R{fCvv$dP?%Gqyodwhi;+m6SQp+s$LwTzkm<D`q
za+X;TEk`Y`1)ED>7mfB0D`(}?6jhLr`6W{k-CX;sSpA<6A+qahvWleb^;f$cjmFcJ
z;>60H`cHE>^=W7wmfL#*gfbftSP_%wWJ{KV&Ksi^3ymE#2K;Hc3Bgk6oQb2WSJR)g
ztiMrGzzkCdUeLB@136?5*U<|06x}1^5Rjdq6x)qA(f}zY=w=Hi@9WS<)t!-N$_CnH
zsjbH#zKoavjxn9tI9vfZ(a8rluQY0ITxu`hv>j|lOLccGaG-1N-khr+Bw-+=X;lzF
z#wsImgLh(}>6C66Bg6n{3<0b#Of3eAbfEi7OUV=upRhK<F-*cl8|I4>mUuLjsS&63
zRQ{A_>Iie?Um5Eu^1VZ@dm+M#-~`vRpg>V1^P>L&kh|sQJ8WH?5{uF9A1H0V)#mrE
z;qu@%!v?3Fs$vxsMg$k7Xi+RMmY@S<Q!UH4DjWtahNgd-48q_JF*Y*!9c#?`Bbgs}
zywwT3#S4s9SM66m%KJ|C)PY47asx}!w_*On+6dKl=(AvChqqz(WPAV#&kE&S&4^GL
zDo@x5pt|rYR>h6+C(3Fkhqb}kKuHnn<J4y1#C;LUM0ki^6|`5y@$Q%U^`vkQk&lLK
zG&vedrtBjFi*|$;8W4>U<TLFYMNPg1H=&F}n^YqF7OG*iI1B1!V}$2nFdIkA6S9V>
zsgh(c1616GqiN+)0RwHfqzdHjv8Ou1t8g*|VLTD!as(@44-{GQaeaRlS=nJosL0HO
zx<BzJz8LTxiTN;&g6%HjQ6-gA40%VT<{{!dDrS`?hVnA|HRF`YW>DZ`;jA18unPt;
z0+3(?xkEd1LtGC~?c|gJ|DHd*3OTsr^n1)aE+q^mcLGxZ=!Je-_4_vKU73BN?|wV@
z`TAY|b9;LHoHNL{W^{M+$A@=cmu~_Rq;)z2xq*i19vobC$N9ys+Xh;NQPihh>U1-6
z4SWGt0rTDbGs-iWE3^&PGKhk$4?4x}^Nj6=1zcm{w0kJGie5G2D8@}?F<leUbsGYz
z<1pRI@hw4o)t-+&a(54AoNQE)EEtMa8AVTelb-w#pW--pM-g)o9C>{UdidiD^}P3U
z2iNlr=I0&7XL}f@cRwoh1^6)+4mW_^d~<Nwdk`md!gSOgq{2xeIjSBvx~umR5<5Rn
z^;b%30P&*~$K0N6TNo{861be`omA8U{gGMKBaX!s0t~2l<RS{W$JQ3&vWcAz%73=7
zssX1J;)4P$g84nX!6JIneCiLc)_XdPZqTjykNI)Ka&^pn=WDNb$K!NstDjFBd~(O<
zs!%CO$goqMgB|(RTwp$4@>merA!Oi7HgvG!+SrOHyK(7T2x3AdOe~3B=zxr?qQj6d
z85ODoc@Xg&IPcl}a8q#pD2<S{QoltC(WO2nb%!W9Ol&m+=!OE>f@&-sb;?wDG*{n{
z`wXaanS~E$6Nk>6wAnl+m^7Ke0OMp<XnK~$vGstrjD#xLVtR3Y%Pgt;%o4~Zf$|wU
z@^gKQ^C?Ju{D=(G#2<Yoo<K#kEhV|4)Q@(?`ba1Kc?AH?(_~q@Ll_#7nqelOWi*gI
zi5$7%De0%HMz48=a&N>u2I+%x;#$qUXcWwL>-NHvqBy#_i)VZG1L|S>qHXoLC3j*H
z@$A%WTSNv<_$S}G*6*|Y?5O_op|ll9P!DNP5DGWl)oVrNh~X5{8A<IgxM$+;Fir25
ze96*ivpjnM7Tu<-QO6ubso;1-2`+~@^-Y{*9T3rsV<qVxE|V~WH^>6$1t{2N+p`&Z
zRijDPyhveUvY8<dT2AqZT^I2y26QWC`?Ba9)^~Y~U@kZaSFM=7>+;r@D~JeL6l-vj
zwJ98?26Os2q3wcM!6E1kNhID#nvND5oT@ruE?vWXI9paE==GYOgu<I$mgpOIhscUz
zw{rkK#!OEoG56$X9MW+4K+vU8VN9@R<?NFDN%Pc(m7<SJ^H_$>YwU2PosjNpd`>TU
z5%S4ve~E9rlsk=qp*#6i5mgVel#?*0HpO+%Docn{s7?bj6m}k3-ksEF5?F5+FE!&|
zH3eeFAYTj9tdMLzLOh3E6Ve|fLj%n>cq`KM%<A{Ld!RG4`@LDpAxUfd+(!_4m6I~i
zS{SE@6R|qNTRD6FfwfMJ<&bq?UCb+mUu;%7ub@qejH3vqDGlhi!kI2kKs&U$Z8!`W
zov5<jWB#m>>3o5PY;=Wnn}Of01(c8+U3s<r=a?-<l7n^_7x_ckDQbaKrp=csPz+$Y
z!0$vPa}9l-Tb9GP47HUK`0A9HVu>rjhbc1H!F&$he7IvJv1Uj_9KRybTBGd4(-c(5
zuuhp|Vx55i3>)(3FLgY)pHv3AO(G;D1A`jQpQQbm!tD{aN`Hr{s*MGUYF$U|ZRk8r
zP$bma!deiXv_Le#v!$aRuy--9FV<=$6nohVD;64tt%W)gfhZt$1Rrb(^^+^dI3o#h
zH|ooVggRT+rHzY9<}KH}doZ&?r3W3CayR6A(RyC`M61HDN{xh6NtoS|3#)i;o@gev
z*4wLTSUpXigcAp4`8LX~xQ<vk@XNLs1u*3LJFY`xr$J^fv_a`d^)36-1<`vhoP<n}
zwS_T6@&35_4qNDL1<GQ_@k{4i;)-gzKUfxMw%fL!bZ@DB5|#XSIX)??4)fOu1Vsqz
z=5u_rz|xG&3k{)&WvGGm1%UINJIol-S;LgFxzcSYgLLymV$nh<P<eMz*1hW<A1HAM
z7ZNI7e-|?Lpy`tuiDIv=7S7NVcd<$nZTKsokr;)t>#r<c@i)VTSdII)kwUr{^nGNw
zK4vX&96tWEvWnjF<$FE-Agg*|=&0}uCne|uc9KOwsotg9RkKla+9skEPXGs5KkEuL
zPHIUz?~ZY?@wwWdh@S`XabM(IMOfr|oJF!cI3nkOAWpI|FB$ERgjqPk*BZ)~&Ch3$
ztT?a}qK4~{EL4OLK%MVj*XdoJOvp!h>LkxdHKR6u`M*JQ(O1PC9`^POuD2XxE5TC=
ztf22M_{)tx_{(iqMaZ4GEYfyv=3KXLn6*6iZf>4lL-Eq~Ojb@0&h}nku&LBG?ki3j
z+V~-qwI>G0$p*h#0>1A!PVfudlHN9FV*tgk4xO>5y-xfF?xxipS%@p#9NA|0M<E+5
z)Xmil-UwyIhZM5ss$PGB5{%T+W``mKBx5;^EVO8+SR|e$OJl~>CQq}Bw|%woiAH<0
z)IbwG{SqtVSrOHO6CCfasydhhNAGJO)qpm<F0;I=mV)%R#hoSz&6}}E#-*5_B8kMI
zXAyM80f?g-v&~foS%UDD$pQBA&Qb01Yy>PSR#k47iPd%7T)R6v3y%7%d)DC!^I)>2
z|H>yCyTEloO8=R?WuO*CHl!6Z5?$JI-Cm(6nPcxMW7yDoQWvAWNno7S2t9wI*il68
zXif)hCSa!0#AYg-%;51cc#QHB6A?NfNA)Ii^VVd;MC;~OjVWe=;C0>eMpvQz+Jf9M
zWvH>t5mCv~jTMh(C3JIUcXLh7ntE(^z{s)W+AFu3ICc>Ri9Xe7RRhhmq}!I9aKph8
zV~wSOu8;mC0pL|0J&;G1$P(NB$lNl6j%<tCD||$wxqVTvY&A7jvlX=*H1FrJUiU9{
z<rCGwO#KC*RsjM-!6)Zei9>+ry%7yC&^;nyeVF&27sLWX{5#_}%Qo9N>~vX_n3UZO
zLUQq7lhEvIo<EU=Zt|7i0vOuyrv>9Ga|jn+%u}`i&rD_tgb83L?jECD)9Ntn6Tq#S
z-RSeA_@kn4XyMBRW07koJ_HHM3^V#Om1Io-04G+^Ya6rV@QzKHM;lpDVoUqKxcbVd
zHlw9oiWG`F#l6KT#ofJFDeh9--GdYfF2%J#p}4z4aCdhr?ixaFdd_#(y5If#CMz?~
zGqQKy*?VTZhn2%j=9yz(1w2(lEMD2!Wb?_ruA=?W*mEH?rzfR6tOH`d9N-PEd;r)(
zUN4}RgQAcp!9&7y>bC~#N$S4GRzAP{3BL$;G@9yD9$Sm_6fbAOX2f%SL=8P<`K!A3
zeEi@CZfvyrifb9<aT7^2Xz+Lzw3^v_qO^U>RK(=xQ(MPPo;lgc$e0H%rWdh40gT?-
z5zihrxv~r)Vj#>(($xy4{n9u5lxHTp(JJ>cs0fknnA18a>5R3RT(9BAtUN8eU!khp
zedoMfNn#e-XnSsQUH2sQXL`NfmG86uM`N-~8#Mda4%IGBIERE~nr-jFeat87z8rRf
zg;108&uk>6`>2@n_L(-j=q;H<`O@b{sY7H@&Ox9NgxqE0Hyry16%^$Se3L8z7JE#)
zcEn{p@D#OR*Cu`7$^p*4(4yl;;#<=4GJ~&%u_0ZvQ1nCrK=GzHxe{XxZFos6TUCS}
zU9dcfthCRt7!LKV9i2A*CMeA_{xq?!hQcQp+*8@MZdcD`sb-=m{|-ZA^2mx7K}PN?
zHNRMY-5;ukd}SJxRxyFx$aqrb^q7N~PgSm|58a+Vw8t*3xJ}iZ5(G3EK7?i$JL8@Q
z<71}L%i4V-L4RwCF6xyWwGsZP*e}3&X8Nz_c|iR$OE&^)Gi$z`b}lamH27ZnJj~af
zWv~CMmTrh?WsFkyHK>|jEE$<C<M+ySbZCP)0f4!7Xlz$i#>3{#19&IoPQ-S^@#cXt
z^C9jLyn6t_1Q>B$P~JQ^Ljnv!@a8TqY<Jg<5+M518|R}<;Fq%ty6DZTRCb&0O-MqQ
z=$}nTTMQBP3+weABf~3pRO?(WoAY+RcH8(XiMiHExbgln(P}Nn{;~_Myvn;DbsgHe
zWMf@Y6%u0stM{H7hZxu{06>DBkO(_wgpJme9%t+ZCWW6swvYi20$CpZ%jY;G;_kkw
zDZYj9V@a(pX_uCT*bUx!^S?vg%TXrT?vl_iTyG-N4joU=n@`<YN%-#ir;{Q5%9Eb?
zhWSS5p{V?bwv?VxRp)KPN4{;t6zdk6f|!|7KiVYkvT8@nK32{k`#F`WKjYR`F&^Bv
zRo7!|hFcu-qzs<P3dVWnO3C73t5VRW`8@X*<7JlHw4T6!(7WRz40>;z_3M3N>Qo?;
z57DfQk(4@ia2<oj^h8Q%o|YtRv|KEgK8E1AwiecJ=w;3$3DODRdXCe=oI^}5M@B%J
zL_~LQBiQ=GO2?W^uAT;e3+MSaH0e11gW1U*TjpRbV>z9G97Y*i+?(5ot!pfaRsF_4
zaJkM;4-~%jsa{P+3k`k<KbQzZntR|bl(hI1*(r2>^4k<yA;vF3Bc&9X?XQ-i#=FWw
zGpxRY#|0JVZAd!LTu&d|9Xuaj1<4-H-pJpBW_malZr;1=9%Nf|gFoBw8j?mn@ZtH+
z9~GvphkZ@te#-et4}zOnlD_SxfEe3lyUy-~1u+%Z#!D!k5?CCPz2!~Kz4>tPN#tIr
z5kuZSsf9Yr-paGTte(L!Y~DX;{|QxQK9q=-mG^gPb)Gz)nPky>Zjhs4iBeE)PCC1q
zs9CWkzUx|4u}jZ(mo^s}FiBVM*D@Y@)HC*=r8pAW6EcDN(a^T+a{6>$$v%3$U5)vH
zl;GJMf9(D6<|xz9nU?#L#XCE!)#Q)?3Wy+^%lKs!B$<!km}A*|nVX@(&15T!P|LH@
zhIZ&NmJi!XmVRw|VEVR0ldRI=_uurSagms9TUpiG8@e#Nwwprql$&s_9c9B~UeaG4
zm~#(l9j%MmF^y=2Ugt<5-g3m!l8bld3_8Ky?=i#A3OG(Uc0pEAdA|2$QQ4^_N-{Z*
zM5H9{W0@k^sa%cxVPQQAEUc%^#q3`e>qxIEJa9%rmh)fK*u>tv{T{;YD%8G`ayY-A
z={ludEJx`pG%+3^tHZ_ORDAl`O<=L)w(whOcn_145K%EW*5zk)S`&V=L6@jl>H-wB
zI+<5dAhjm=fgRjCbjD#w6_F+b$PNy*e(T8Y?)Wf&dg@?Rx0iXUiNEM5saQ0;vw_h$
z8w1qB!c3q&+f}XNShL``OZSkPB#L3{DaNW;lB<;FywlJ0ICh@8<ZU2A{`-Z7#ocH^
zIUjY|KBu9pbuS<|N?)WvXc<2db(iU;oQz*=E?wrwXL5?IGg@@b&^DxF3s}*kH<vP#
z^deEg0BKq4a@~XM(|H4Fr>+3}$T^^a#rmX^n*UnMD^ZzM6#Q0%m6&e{uF_|2MdgE^
zkIr7IvWj1&q&lT;Wp-WxZ2}R+x#9iX0ADFatE~>h7gJ`mZ@%DX#$(Gv=Zs2;b>c3D
zKgH*_^hv`n`<{BF0EorS1|SA=pb7f03UT`6_wZWzzy*BzO}y`teL(T0flGc4d4v*W
zQh~qPYID%T{Z3z?GCufsE>QyqO{&TCSEHv5bCi}0FXWsq-9}!s+3#Zp${qU?Ms6Ou
zIMZlh!fi`k(yZKBhY#z+*HstnT{tC<39I|>yEgmSH&%KL>>tU|-X*9i(a%EtjhZ|4
zity09N>F!qtQ#n{vzh4m2S&Hw4<G^1d%fM;pUJyw<n=dhcoZ+eW=zsngKb~7cCX!7
z=4h@e^M18sw@h9SHgcyV_+#<afapv291&`0G5eu3JZxy=@V}ln)u~RH0y*3&kff&c
z)x};e7;gRZh@K7E5&uLSSkL3zh_D-zU6OxSJ^kPZ3Ux)Er?6_+@<ycR<L~8KtOAHG
zVYs{4T;m&`{QpOT1RT_SOktfLHXUIdApY;^J~KxLS2q`TGq?Xt7d{iVb^UKI{0|=b
zRNqk({Ix34m?JNEl27gD`;$xEOV49RsjxYIR=<5i0>{c32Mt&k#u`JTVo+$Yv)2Yn
zVfZ|A3$F`v#$4$n7D^}3okp@wy!Xo&{fz-FWy);as8}hDwa9;}Iue+B8Lwo3AKy$>
zdLPhybkZ7jU$?)!+*--Qa`4DI%DY<Xu-szDQWni?u$%tUSQ;5zwL(_ie{^RvP+Pxm
z-?`1{fkD&pto4|kYF#&SLtOT&VVRe6;k>DxUr>(#cG5jHX}HN65^D*)q1=2Wf(U2h
z4eAAI7?9bIPokLSIz*b!bMxkH<O0qp>^-D2k>OBic5PGWywjWHKU;g%q?liY00vqq
zClimKFR1E+j3np%8p<+X5GVt!b*I!^`V<X|6QlZP-VXC^dSt<O^IA_|#?H>O8g(d&
zEtZU)sNbh@+d6uW>!3m%nI01~%GSeDyT3eBk4N3MZdJL5XEe37{``!qOLjawNB^NY
zVDLf8d0;D3{C+s;BY>%NUU0$giAe=5rO`gy=t6hHuW|d#KAAfj{V3ybA4Anv$FTNi
z@=N7XoyPbZ@1mM_>p|Jy?DTH1x&>Cb+dJW6>bZ6G2jJzj7=?#DxL<xd2Q6Qd@QnZz
zroRNKK^TnCY8<^*fs1sD(ycyPdrFyeFJXW+<)W((_F7GNdgfmZGkDjUws<w(6)B6d
zI?eo)!D@$>Ar!Wy`6h!YH{;SzT+_QSUpbajZHYcSQ3RjO!8GKy1ji-F!ph0rX^fk9
z8dt#+wxk}y{~ViE6vJ=|?B$wP!1pKrK>9u=_~G)|efhLoVs*8ip70H~3NJdc08(gR
zXvBGjePT%_aSJu_*YJ`Vj1nrA@#XjwxSO{DO@;FXKl&%sJ@2Uq&3b=maMAXLJ^sP%
zcUqKv-z9l?&Vx*kxE?<4-`#@fyPS>LM*mVy&GPrqs<yBE58JXs-7;<S+uQ9+Ns0~A
zqisKjI7#;~9ArAKXcxIw@gIE1C{-vxj=Ysd{hOmlN)uc1OZXaArCYfL88rf(;0l{O
zdwGb-J=ay^#+Bhaq4k_o=;h6iEYj8F46JDRFL<;RIVc(h1`GDJL50RX#%rOiVssg?
zs0%2M=LI|+@)_$s*#Ng(IbjgoFZb<zqDD45fo%%3(0bBum>;+viilm_{=(v~8v^r3
zi>3y8*7+VD4tX+R{xHmJYwyT*+nT+ctH=NSi3QbA*C4g0)8FSxTE}gu_fI7?Uwd87
z<4O_<m3N$`K~;INLfGl!=PR0_BNGbQ<rTQ`cD3aJsph&aiR+&Wj;D`qfu@P7JUMhS
zmo_Mq+W9Y#*uGpWF-=nv`Nvhaw$QyTw^q`iAve;nr|!9%Sv2BX40sEdPg{gOf*$w=
zbd9GGVwD{`qGhTtgs*OHQ=yN{I5-IU#!URvf$C^d`$-;!-rZ|d<&-aoc<Jxo0#kJ&
z*0;M)MslxAKV73EA3NP@Z2Q_V(R|S6%Pq{Cr{HM0Ani0!1F0FL<={D_<M;Tel<O_k
zy-j7?6TV@I{>|I0h%t48WnF`2v0yV0_hm#v_vk?c>lYCa!ogLCQuSW5T4tya_i~Vn
zZx;pCQonffyIjvq!@5xyMEU;B9CM4W>KRkk!too8w`iAA*fj3+Op@nZR-@r%&z;{5
z!pkhP{M>h*H`lGApq%y&9M+hiDvCQ199y|@oXApwqmQd5`_p`XP9d7tf$*Z~*4#+R
zQIuabsw@Q7?~i3Zx4|j=%?fp$GL0JkCE?Ot*ko<U3zd4SbiFeAxVe_4Lg9)l5$Xgh
zelE_rMj<i|KsFgQ@O*!)V9&5{;_VHWS}}NMr1K{`A}6Hk%zBXDhW-3BDxL<?LFrAJ
zGIXmZcdK0|T~!yS(tpo-wssMiwSf!U?Gb5n9t7P2&)F>pn5dd}MK0^Li2H1%#g5<n
zDS$sj{Juj*{^jsNt~T}({UO~kG18;B8QIyrpXO0m)*htc&*|&!{p6yYUEnl8wlVNC
z(LLI$?$5Hlw{ZHiKVtpDLaW?rN@|c$k7`fYBJbM0n0LCfzK)TAZ)QFOEi4l?+oC9k
z`C7yKyOoQ$)v3k>p8;;!8w1lB(df-4)Y%GhL)#hbmSgmo_$O))Gwsk{dZ&TE7ceVB
zlrUvk`ZCwujTy$VNCd<fS3USq3z9Qj^DCq{W!#TlyM9_?|9*~Ejv7;8s4WOn1zxVd
zyDU%@Q9te%5(8W)HjJrEb<za~8M+K<{MEqsMISp3w)Ai}%V|xc{Psf*&1q5b{)p0O
zb4K!jd<CO>((Gg3<GUE1p$JRAa^13`gHFQBu`DIN$AMh`U6mWi4-`{Rj61{*=}uC*
zkFPJ09q;QDPY@7h-`M^=#iSK}`gMrhh#afaL4h+7qHb;ep1Y^Qj<;KcUU<Kfq1S|)
zYz`~yi=mcALVWMvz%K|gz8g}mSLBny0(x;H3c}cj-v?;(#`YzPXGy60X`9qFZ2Xjq
zZ8|jLqLsVukKcyAJ1Mg4;V7hq=bo#}Gjdj2-^PCHDH{Q7zc7AyPk~>ar*mVU5KJv2
z&t;}&e){czmtIV`=^#>0o-LKDg+0rf#aI7_Z{SHxPMZOXAtC#LVimJmt6Qr)w+At~
zHzjqv^9a6yp{#HyQui^xjXHJ!ztP0f=#jV^Wt`Z<js{BZj6s|fPd+i27g?4o&aHOW
zZsCxZpInN)8cdj$lL#JkY*k#di)zn?OF8;H)%G#k)PTTMxSXU#u`JnR35O^VU(TPG
zr8SuJL!hhFMGyA)4fFkRt(MZgMfAm02vhO|JNqIqaSI8Wswgg9fi_pCQrRjxamU-2
zY&+zNkVuhgUGh%<uWYWna5dq+eaGO?x+ZqbrgOypg(tt`a^@{YCO&_?-`&&UZ1W;%
zc@&es8z3)h=3<5&ls6d!l$u%HrTNk?18+7Tf(SlI5DNGZ`Q{np(DWsagEZ7|?CCvf
zvv>LexZ1nvPQ;EK;hv%|5)ZA8rWAu4o*de|vzp>>bny6M8=Rk&{ToBXFAx4F*PyO=
z+DSJ>v>o%PM*q`?$KpsFGuM_kXg}iC{O*3jYx-pJXcO_P{jO0PP-{Q&M`P5s`e+oL
z2p5O3H6_51Wge~?Sb0krQtYKsNh(@2gG5<0p(G7fp!d_(M32d=C?7>cDC19Cv_P}^
z$P=!H5BcN`Sts(%SukQ_V;3<J5Pjj^L+W)bt?l3zXg?1coq>Fs+q)xs)oZs;?P6Kl
zT-m?D9`ZC=(`@s3Kb^HSGHNi|MP{12MKWcZj?w!@3lN3lVNmRrLzg#MJiAD(ZTd>K
zy_(zkvS|cLMT88bMnxTtme}#JAa7+T8XILC*}h!d6@RkR{y+is?4q5~bn^N0yVMZr
zL^rkk3FFNBuQYxTh}XSgbw{KbhivNny#@754NnwGCXJcc&>Y!&8_uBa2{LRejyHSv
z={}LW*sLL)h8hQhkKcpW#t^Zz>$@&K(V&JGb=y=cBmBKqj`@&QEra}pE5mpMyW+M1
z^6qmelWI!w<sZY!`nNokZXAH`vYrWMJ2`dm8MW+7Wnwjv65y;9G=Dm^uQ80E#w;PW
zMHf{5*2Ibg&X_y=>z;Y4t=HM#>&&}I$>&yr-IQ~D;xyyQg*-`piWoa(o)TyBcw<~j
zr9`*=IFgt({nIL+Ht^svS(hS;s@g@Qt||>$%KU99wul_r#?nf{)9ZKBDGqUbyMuo-
zUzKg9Yh>0B#t9?!IX-2rn;Z!$IWtYBN~_10RbJA+@iQ_RsC;5t7nhn?{S)+8msqaz
z`5cV4md#S5Tf&?y+j?*KDsm_-b5?2V9oU<`<zV}cC*z7_b6>8>tVv&zo(D3x4_Quk
z)t~lMb-w5W%4+>6L+`j~mvQt!NZ1dpBHBg#MRfElDKra(Z}3es58z60D%ej)ijmgw
zX<$Y|MyU|ZC<1&^c&I%iffZ%jG}%)c2~PgH)ZwHMKKk)FD^c$Q-lf8Asd8%%2co=5
z%%xd(4P@ylQ;a^+i7(%xuew6^mQU&=cWIi8zN;(*;0AR`yaY58R4t0>XyzJOKmK~y
zDks2yLN0r44WGT_C%ca}F$jywM)1|U6dqeL#)whJ+I<HOP}QEqTS-0`Y8SfpC@Jf;
z>|LD{bF^S2{$!&MkkmllDAXf}napNjV}3G7G~Qpy(|J#7yF(DpAg+g3^@i@eGsCOR
zL-n(_K$Psy30zbp?gW*;4^w)iv_nYN5v>BhHRM0!X<Ul>Wv2?A)NJ{-=e3u5NXu+9
z?6Ovw5c~+IJ|N||4I?Rp(<ZwtUkJjsWfXRMHOx^@Bx-X{Cy~xOhMNQx#70ChIRyvM
zhzk)?s9^t6p+iA?zPg2blya$m63w9s$}RmWpui_lf(W2d>*(OksXTX~u^tN@RG0pX
z_wK75g-SxV3f((4XCZMokz{>6O7Y4Hm6US`$4rN4!kXIs=Lvl~t<AWv;YlS-c^>B(
z>3sg*%e_Zv5-O!07Ye-lrJMLeRkldE&c5fyo_lO=X#W0!g^Lo~PcaD;L%*k`$$xp4
zwMq008)|xLmZHc0tH|Y6c-pqw*AXevp-TXv+Iz&GTm=N8_~p>$%8b^9pv-@##x!iH
zR(}_XGBXVa&u(;NXpP>xT5LQ`XF92KtB4Qn7#Tgch|NPSQvZ=n5?*D|D=5bK=o0h3
z2YKQ*{X#Y$MgZd24&Pmznf>9-V9mXwM>#pyX#TP9ZyLL^R*I|mj)DS)$3ZFw;0odq
z#|<^=8Kw``^@ez~&Y}e02>!WJ@|nOMqamkE8=sx5R_<NLNO=5%=pW-v;1W%QXaXJ9
zDM^ZkcMtEXhYBcti2+BGMoSqt!Cip?<fPoRMjW0?heK4|gNuJ9s4kQCVuX^vxk0Ih
zRT!nAn}6;6Vos^eQafB{p|Ge6+(xJ@dLtb_V<lS;V%{~K2CSWNe#9~zEN>T*{+luD
zuAe>sWKw757GykHjk8+-{fI~SG+&V6gs)DYGg&qDg+?j`NI~66v(=nJ;KgBX$R5`C
z4PENdruUAGU2J4PB<bN@mcS%>ZP$?-DTf7@19DO3@7Ek1OPhO+51a3ANVEJ>uqRf*
z`J2hyXc&*b1q;3{&=|8M32lD^zgHW_@s%Me-EN;jMd>0yl(cpdNZM-FK?QsO@|Mr=
z_R!>Mtppi6JTjd`rh^IeOPFB)2c!JR0YAf!2`H2ZZ%Hlr>SGu)ed~-kpRNsBf8`}u
z=Oj<QRN|NK?p;XtD`+4mNB4tE)jczgt(OStDjYMI6OOvtM&}k2H+zI|sGn2=Wzb!*
zif_*A;G|I}e8;CubBD`O{oQxHBwhc0K^)XZvmj%Mih{dbDMog3MLqG4owo)I^J1IF
zO!&p>r{_;`8M=)dsBRe>6uQoFnH};uU7nE1erLcr!v2yavhtpEqqULY-n3A<bReCN
zf#maNf~r=wkVAdc)1{lze4F|7WRuuL<T?@YOGVoj#*(bq&Ud1k2%Wcel*|2e;$7f-
zJQn%>AZ;r_aosj9kG&t&VVlS)M4$hzD#8vCyIiz2q@7m|oK=bqWCr?+2*e<(Tzt_k
zwK_FXKe5c~!Z)*Mm#grdHnf(bQ&dCn#EDL9On4{FD<^}~EjCoA9Ox^tp?<HV;W)Ek
zXL6dPf*3i87}+xB$DjvE?{{Xw(!0{LY<brGex%g5-Gh!ka<+QdwX?OnVnq0PX1)yh
zWAXW?*O%o^G}+VP`&PWc1Tu;@HNzCB(V9zw9^XXpd>@XV5Kreq;cnH@kV2Ik^MXPy
zt}9($Y^{6L)_zK240veG>+D9~tN-3^vBxG16j4=`a+eHbQ2zdoh2i9F99N3Z`cB2;
z$+V9E-L0Nnajjp+0k^>i&+%2kiBSskzt8X^JX1Z1$BnH8riwn%7}wW#=`5cx$FbDh
z(eXsWwXFvV&6w`Y1-R<Z7WKTg4`mO&xn#6W-#RcK4NM&Ghxg#zv3HCqi1*uuR-b1`
zE#Zy_rssWoOVtRsHQA*c5=;_5hY!ac%G>Sk8i=9JC_}V<s@f7RNid9qTAUS?+=#TZ
zRkJbCy)b_6Btkb@%9S?Xl6m&aiP>-sT_TNc4&p}glVpt`7Ly)XnEQ_%pJCV}V(@vV
z=u|fU$Bu2<6V;X=Cq8<X^u3yfC`SDhR~q4h&xdfrI?1jy9hC=px%!?cJ_5qt2mC2T
zhyb{bnVNOEQba$2@yfqP-Kvqn#dsy#+bh~{aPHkAEt2QoyweDs2jcHjZ)kJSKO+1k
zTs!6ym(Cso?pZzYYs%GV3a5W)y>q6CT*<=bhXxEtZV*hW51=x6x=X)_d#I97%6dH@
zkD$fWLvRj17r6dA#z3Vc+2$4G%1-=4A{r5EOxZN#6NQE8spd|^Szp02#!RDYAp*Z<
z?l;+UdGc{@(N|-M0|$S32jSa?Oy1tDxv{H+d%Iy#G6a`8Qz3->K1t3%w4Q==IjfS_
z?r2pSA0g&Bj5KeXbJgAF<PAwhga9@R$7a4tHm~P5&;-W7F!UUUxnHDqS1!rLcB9M@
zXs3iGpq;>7G~xKpMX~0k!B^35hooIkRdW!^|9#=M0X?`p9CkH359$B8n(g3d{{6qb
zew9>yz^-QBFn?IaroyfD{gnBBIm+^3XF9Ejt*=NIwNbhby3y!|@4;L4;lm0-{g|&~
z*pY1rd9gxIBipCSTqCFAq)fOmhH6BKG~<kTZEAM)DYx8S!F|@EJg(%7Z{IqL0`r~f
za;(GY&EI0Rd><DTM8b2r@E$75Xf_%XmlQxCE=r1|=c%po`Z^guOY|v>upF@{?b8tm
zbN3a>r|#2hv=siv1)rQINGN<C$2fzrwZC*aT!|~3N>ok9;G52yS?%l*hITnLv_bVu
zlwNre75;)xRdxs`Cuodzxq^Rp$9<mM=4Il)6H5)pq24hK4;yAj$<I~bV}~;FbdE?a
zlYYk1Fon*Y`N~ANa#LG;unPTASU~G5fs2@ZL+SBT{piJ!5|UHb>!H@7eH(N0iO?#X
z*P-*@82K6YWDzH~8&MGsJOcFuyiXUuI6b)!4@8U`_|7NT@ALQWke>h;SKo;vjG~Kr
znh3}3w@ElJX4k}o*+?QD>aEk30R3eGX}|p8|F^|tD+Nrv(BR-4c>kZ5s4m}~U@d@P
z?W6v4$8ulKK5n%c=e4sdc$g+Wi?3B_r9LnS!zY}l`%S9tl%g7b<u50DA1%+?y`;Z(
zYpKwUbZW*crP}u428LrSolG*3o8E0Fi$eW9e)drz%SF3%zdpUIk2Q``%uI|K<`apO
zj|-G80fwI*mm~pJ8Lje~L`17a8#Q0HR5VZT-D#KAg|+8Nr|(0Eo>#*ZsiU&f>fAd-
zd3HP|_MF*Q_}kv}1l-t?u`AZ3NE<W|5uGG9vEJwu10c_5p11amRNMDr-y?*Ph=`<|
z_u4)?K5r97U&R6L)Y~K(qfp+c*@05_z10XlPtI!oT;<1f)=q4?){Z>6I8nGYTdnO}
z#B=mo?)`#RdMFAs^M!Qsqp)%XV6(VZ2Ugsy(w_wemV+r|PkvWZfyF)5svbX7IR+qt
z_1+%;nM1$C_npq;tyuFmBy5*XFve7x(W~m?J=jguvk<csk0DcYp;G|Pa0XkU8sB*)
z?6fWe<nibYzh#@2sYb$H7fUG{=PL=9npjw92Hs@lvGe4FqF?0vvFhnej5nx8vF5gt
z@;urqx<gB0yJyk{ynA_vfQTMSi~3T$EzR7Eec6n2A~{P)iNv`&Mk<~mQC)V?Z_$&(
z6}JqVAvfqpLXD*)4bSJA8uENw`Usvoi{8~F-n@|BzrcDOVcdIz`l@lGlXH<FFnQ*G
zDxa!V=HM7Ccd#<PksRoDBvxs6LGIkjD)rz%Ju+SJ!`EW;Y=kUq$;tg&h?7Z`tUfZ>
zbr$6{i4)J}57M9#WZzuo*4bH_m|*A4>7)f&T}0?hUq)*C6GcGbai#6|0<tFLz8gQ9
z<Efw=kM67xYf4R$7xMKxLF$WRC8CTc3p3`N%2AIE!QCt!SBGjD@uY5tcjxfN-P3FM
zPNlA}O&#7SQ~oZog`l-#8AHPUe4yEQ))fC`L%0=%!09(gLCNgUX&$T0r1u!jx&K;X
zoQ-HI+2_%?cA@yH46^aI0!IGG4UrFys5hLVmNm*ULrJgxQ|m%^n!?^+g-C(9SoykW
zs|pr&6Xl@!IzsFH19=%hhd^~8(gFYyx3VKs@BcLh=*b(xt4rOl+^_Rn%q!+V3RgwZ
zc_gObnd`T--nWW9t36C}hnC^!D;vqeb+;lrJQ-tIgi?Ak+}e71P64jL0ZjsIcegr>
zgi;eH(P;nA#h~|r=}tFc+8rC}<i5z745fOjRd-W;YtI$BFQWVN-7m3C`n~gOM>%=2
z^}s_t9}>8c{NykJ+7&m##|Ay0Fj9t0Ga=u<Pg^!M99cBPL&XhCiuV)}!ut=-LZvt3
zSgsLje_Ec4?(r}i4)FMAOYKMmX845Bh=@gr^<@xecizYgzQ;7a|21tK@#}s~JcTLJ
z4~T8fxI{bo8n=_6bt#*P;PdPA?{gh*^5(e{lX1esnkjDWwcd;_N`98Ao(615Eb!Mh
z)F1<+I=A~zfAC8~`P=vvU}Ia|-wie-;(uw$iV2i~_eVmFAz2VC5Mcg76~X>#bnN)R
z<MsOZct2m@C;h#^(FIEe>+r#7HGCdu&Jah0SGqrQcgrv%&q1K@T_N+9hq;PqZCS<4
z_}m!HoPAhKcLLY;St~<gO{r)YqR$q+Af|hz^UwPgkq@rQuf&_Uw>fIXMnAUS)yvT}
ztAEb7mu>EMO&8K9j%S}<miQKA`UlyE?IWB*mOxf~q|NHOCOfFAveN4IwK9+|?2onV
zC$qT9j$g%)!taZiS4Zwp+9DG2!>b5HmLqok^%5YH)^al5cSCcnx}fo4Cd1`6E8{Bn
z<_i$1E*2ufNv;aK*Eucv6ArOvHlCdfPe~@3zJzf~@US3T$=edo;0lhsIxNTtR)@Xb
zfJVLfyoo2mT@{*#(NNnn)f<)Wobo7gc4{pf^GuHWx3hHQaYP#e1BP7z73TibhA#`L
z2{nk}c#e;g1cipzs?LlG&By!XYn;z62UdZm1>es=hmU;WS9h%rJlJAFLOQlRO^*>s
zj3=xyeqOf`fg;8dSfwx0)%I8N9PRw37qp0qwPlFsw(+XiGBmgg6rQ~9=}$nJM0z?d
zyTBEmTZuwm1QQ$MMy=n%c}BzADX`+Oc{IRKNC-QzvY;oV_U`YSwzZpJ5_W4wrhSo9
zZgphl<~W=I+qG$zDm6>3VF#;@`f@qKQ~p0LS|73C0(Vq3A}yic5#dE;ym-6Z<koo3
ze_Naag-zXOA0yT$b`C)o(S|ax%UU&&w5C)adGGf)?vANxu*QzUD`N>#tfL?7zF!n-
zZdi|iwBy%h3^4Qp4)wpu{G#>`tIO3y|MXeUSh&59d<v`dEgSgz>6`IonvgHM3qeb~
zY+RU@(t05v!Da$V3W7^({;Z1i*FrHl?-bQ{;OKh$4E?z!jcklI-hv(MhLZ3$PR--8
zzez$}1h{Dm35Nj(ihVM&nV-l<T{<*Mr_Vh946e&^tKnEy3*&Q){mKU`+r7nH?pB}V
zuKIND&WF8qcLSTIh;vgqJO*HsP$3^)@c((W*o?G@sLFEnA@9vH;wKFz<v{g@K76Ti
zfnqrLbwoZEqmTdjp!K1+yTs>-i)!OS{gMGIZHwJ29Uv|wWUjsy?+|$il(!P&k>(+n
z<$U=pFPA4slxi555fM|5cX?EDia5k}I!42;^?O60?P5-{{Dl0muXtL5Jp^}8lgM+r
zQR2E#{<e*nik!VKKRQfB>}AP>ste^U@QwE+b~k5Cf(O|lr1#xAPGDM?)A?DesD!kZ
z|8INY6p`s8p|anf5>ag%fA9~~??{%sorpJCIh9`}{V?fycc9wqF2w7}`t{(+G84sw
zaG3K2fmov5w$Mv7?*bP;u+N2of(lr$kte6Dyhr4!eMGVKI=LO~h-uqxV$=mDMB7gR
zd~;`Y<|sP-^Ye2>C`f}fjGp_aY14IVhu`Z6>$jP+U-?9Ahta%E_NimWe8sX7R8&7q
zpG)1<6l)r$BHS?=j9lU1{kGiVVxnv9(%&fM()>jSBf^iP&*$55qoIwO%8XO>Vbh|P
z3wbztniP)OF?L#<8J44=5H5-LD1(GuKEJe8bZf&Co7127+{cSroUTUtydxx}&O>#I
z|NXgsg~6sK-aAFBELxSS?ptZgOklKUK5!KO9RD=VrnDAT`cl^d)=#bU<rrqN7WN^o
znQhKRAf8YP&rtlK%LXGD1(mA;^+x^S<;+J5d`_obgZ9?ECC4$Z_`=!4|7dyDDNUcZ
z=x^>PZvO1qeT#eJ6X^9$l{xNB=mpiyVhUbv?_AgJHU%=Bl94hf8&$wi*-vJL;_^2a
zn}(?6<eZ+qiqUvVl$O8ZPIQu@l04{`a2NLmC5>!(!&KuvMmt%7&4)6!a3u1{ZDe<0
z;K2$8UwK8H=nr#S>1<SHF&(*&W`Pg+1s{-A{b#bR?b$PYYMc(~iUet!BmwwD4uTrM
z9nldiSREBXU__E-?LK3g2dm0%)B(~!{(hE&+Z`}1cChTywQNziS>J{9P`X$=7x0B3
zP*+9Z%h7Fmt&nk0uKIn*$tp*bh+0sQ*@&=|AY5Kgoo;$w6nlklG%W^~pDdo0X-pmB
z$He6O%TI*e-!JZb?1l3qq{QNHSxMOP(b{x$*C3HHKn5{hMY#2<BUbXw+CJ9G)@784
za$53P#rw(<Q9@F=<5GBE$L*wqqOh-a>UK?VNQ-@fE(-T*T&%CMX|L1LPzU#02N7n4
zzc&=EWy&i+mH3v-X{xt>o!a%khG(2Me8$j&tlrv>XUde}flb<;vskU?QF%<taTn;-
zbM*$$Oq4v}$87yUzvlX4u^If>Q#S^LgTg$7OH3b(3Ts7~F2EhL>Ok7nSRVyPzZOy7
zg1BxlJ8dI8<Ulo0r_=}$%<6rNFSkFN#G_O^UmUIY4ertLe{a;!i?uqFzrTa4W~PE;
z{J*CijQ-R0%FM~z&C1b%m6M;<i;u^Mhl|zD+QHq6)zZP8&D9aqfu{dW;{hrfk{1#g
zLWDkwMnd4h@rQ+lMMiCsfy9uu4vyf5gjAXu%Pb=mak2bqq`^__y!tl_FGg84aaPGT
z6A$r|8ct<;8)9Alu8xHj%L$87Ar=3wP3VauyMSfKq=0YLWM_8AWIBJH-<RVh?1Je$
z$ccILG@Ry(Uu_b<BRMW?5+x5ENozIK$m)G?r%BirROEzm!NK;Es(_QBW%XO^IASNY
zHv79z*Rd4VR-T3^qU;H|sY8$kd%V<qd!?6C)z`(Lmi8F#`pvLw`;{(x*Q+(kh@n+v
zLDCibhMNy{Hv+lpBt1~+>ofcuqiPrHcO3PrHr&XEw;W;+V)We)O1yU7LtM|<>_o97
zy2L4N%dwS~ifo40!jIxiYzWDUe825JWtd{D`wqln#PHB(N=TBgV{mZ)`enlHTwuC`
zL2b=qpx$o!c^va>rNTYBEtQ(BUe9Z@T5TXQ9K8%(Ncd_q#P7rckbLUM4fg#B5gvG@
zI2>H4?kZm1bUnTBo-o{5O<ms9y?+n@`zAp;#-G|w9m&CEW&qOVP2|%H$@`{c$b4Pb
z*=bb}gdAnkXZYc$hJv{+CE%yw_l_2k<15BZ`?c2g3pO*z>5@?+*^9t%LpxL9$?a`?
znxMd@|EZkB$c_3Yf3sS;^WHWj&LN6ny|ZG!FV(?X<i_{zqLOrTtgTK_^zbkHSO4Rm
zA=K)fM!Z`KzO$s76%+xZ?Ch8fekRlIjW0tv;hm@aj$5_flol$Fx83<*qcQMN>1@=4
z|K?GZ^ElcpxNG5ZSDKbGeeIjuUTvh(rfB<ZQyQ_>12N}S$Uqp^;dUam#@()C*UO{`
zJBvt%pT@)=j$A00@A}L6g^2U<FW<U>Ju-*`bf&EHudWMNnEAo6lamorGx#<cy{rB(
z%T@^MaIPipq1kZ~(=rS^qtUZ6|2_Mzk^Xhn?l{e8p~Nh}z-sWNgz6PfQs4lgjTF5@
zV5_6m?G!Mz#L@KjYVvs6`5A(-f->`JWP)ul8?xsM!ls*WAio)-+Q-ACgW#<T#6owe
z?(WpFp|&AEq2b~qti`s2FC$d1I40ybdLe~%>~aDG;*VNkRQqI7i&fj?H}zEeU956X
zuokhdpXCIG#h(}HamW`(|5DxYG0S-iggi2fubkyj?W+@mpm$V9qNab-0N6jOP-m*j
zLO`>$a!*G1g%lqV<pC1$*G6P?n=e#%ZK85dn|O2+ja08%Z-F-(FbQ08PgR)tC&kL-
z#a%3NLSe=b`iM$*@qr}YklT}V@qyKw;J=|y3SW?4R;VB+O;krh_)?2E;xDpq8FQ7y
z2hQfGUQNW0_j{<WpzrB&{sCc-6W|P~PZAb?5kxAfs-`--NikkjmyEw+ji@vcAE~g7
z=K~{7H&90aCaJD6gF))#bQFO2`#PowXciUZyKKB4lz{G4LUPbg8ruLlq!6kd|NJZ>
z_tF;v+T@iJB*QT$(+t^bqn7hF#Qiae*_(?pLm`92IO!OC86ZBhNmA%1fHeGICOP=x
z7VmuB0V7=^-UUoAmjw)q9UMjy-{}&S%W4pRL4FG?=9BaFqLq7AU)qe1-9i7F<B2@%
z=@fte<Q9MB?GW$MNpkW#lX_sDF`n(^#1?L2ed@4c%H!43_7$t);bJknd7EuV*WhBe
z{X5PTcb4PdFGAzeN6-_Yoyqq=%MHob$s2cYkJHY)VuaE7tasYYmx-$Vm(WU3W@H5W
zp-{qL(%3G`fge^}@ts0su`kw6A5HUy>`)gcdu$;EXt#?lVCU=3=B3+?<j^!|7m#z)
zD>!V_Ho3EX)s%uAcjy<9@~Zd~c2v-WFs`^U@}=13_0&tH&pRyTo!h2lS%YTfVolnM
zmWxQvp`PB@NdixpPfoxKC*sE8U0dW$JvWGbzqR$|R#;yPUS+e}oBPn8@4RPKB_ru^
zP{<#x>LEp8r_cMj&O0lC{_LbCY;e~r@=;GHd$)Z<kAf;^aJFRssJMd0Z~{W>C6Fux
zAr^v6dJ9<ZgP0pgW!nvD%7CkUfFk7EsvC3)!`GEABd-qGjdjL6yjP{^k(ee)<OgWj
z;OsNY)tfZ{tBR<z1^CwYnh%Y956W&B=UVTPqhgHtKv_J0f!7YXxjkF!N&zprLa{4e
zQm=dtU;Bl!hq%wc>!Cu~?<>oA597>U{3jW6iFJLws{MVJMxW?UhR!D-<n2P_o{cKd
zc;Jb_Mu7gv?%n+L+q;M|Z{Oz3lgRDefjgmW%X$}Pn@yu*FMcg{y4UxIY!l=+z=u8Z
zs@USB0q`QrIhL6dyJYh(<udG7N7lIF&_P%J!^P`cvyqk5E^1n{jTa;&;{L{R8a<gX
zYT7EQNsFN&6H>`A_Z3id%d+(H&2^;xvh?hS*a;)mcwtssj{qL>lSjFMtV9+$DrV6O
z2a6)s;WQAYas$Eg;S##FqRe*!%S|Eh#3_Gcw6!8?9r5-;vt4Gt1+%H~m*K4FpQpX~
zr~EpN?MO&X<^%+L1Y;ox($d7nF$St!qN4-C)C3;J;y9jL$ke+(Ps?9kkX(%cx(;d{
z3u`5fEP5UTx54}^%dY1mIit1aA7fZYGIFyy7=1bDsu`F?5njWcz5uZ|tUNaA^UL`?
zt)I+S5B5k>%*Q7uhjMZ)&Gx%dnMGGq#^Y3m*&10HMjTRu8@yQ9(^>>5$AjmbrkC=O
zZW^jN&U(x9O@*yTU}A$R{4J8ixahhS=-RLqVidyfIg2b-scuh~eI5&L>gpnIsfzZ-
zhsisPMMhbD=Yo-*PP_k>_nP{4YJOt$9s|;wHGH2GEuPTc|B3`Oe1npVXy{#c*66`a
z5aDP_$UJgtDham9U#TIiPW)~k1Q89aU=-3hdFe%x=HXCE@uu1Zq8+%r!LN+fCc!Qx
z<d81}d1dUSjYJBFI=L{}o~?OibbM0flHfiTM^qkpj{sj}K3PLVaL77xU`SlDtP@rH
z9rbWSD7=Qojxx{b7<ZxXz!ufJo<9EaHn^Q1?ZCqFQWuZ(!fK%A%tmBs_P}y7m$R$7
zk7;n@bHz}lyZWa=i+!S#^^{yQ*0=0@mGr`)^NY9?V7?E(^Fnm{gLgZ!6=F$C&`=M)
zizVgij;%O^RTzx!C}AjUA4o4t^FN^xBHLut$WMv4#2jfy78Btgjx!JCpcTpVXR-9Z
z$WbK)pXRsouM8#O>~*txH|pE5eTuE#`}~!NrFqow&%CUHhX@t{R&7dBY7)_(ZpM3f
zy&Q@oI`GSKxu70Q`_#WCN7pqPed1?7YVL#im%>}(r$2XpspwZftFtE)Q=#nl@d-;*
z(kM%1M9i|ldxjJuN&Hg5K=08#GhMfW$o~kUe!oI;fr3|eDCs&Crq4oV7)OkUO31>d
zS{v!wvMFT}k(p{gYD}R2r9d-J$=F~R^Hd>px}Mb2WYwV_q$K!N=wn%6pnZ?QGSc(k
z5?=8NR4eR|s8lMQBtaV>YnwI$p<<8zxd6v%N}F+|Ci4oAak)BO#NLhu|7I?FCs@KG
zgB5uIPLqcdzP7=Z^j@!(PF~*qCnIGYi|gS`pu4g`j=DEr4xyWN6@FO`qNbLN%ywd8
z^b?oE0fFV%<OuUnckozu3<YA6q<Dnn3Ez>a*t%#;rR0)Z!y9uhcCi5Ju$sxny!dSW
zpTCVJKU<jZuOej2r;Z33=Xw6#uM_E32rbQONIxxqB3?#veQLn7;P>Vd$04^Obc<D7
zNi11LJA*wpu4b*SfoDiTF3rEk_^NEQ+h0!2UcHKX*68X@adL-5e%bHsYTt6Wv&^#7
zHql?6&Tb5=76Q(x1vOla2fACggY)SnINtVVw;9L!i{MMd!&_g>nbg<_OWX9>MOzq9
zPmx^q8Z)w(%h#V&xEShw956-wne$~e2IKU!e8+fxeB@&p!;*MKB{b<VQ2mmJTePe?
zUiyYIY1%IspPK9O2&s-}32li!rvJ+sMdfa&;_ZS6J?S%D=AT_V#!14zsqMTLhvslR
zd);#*@kuejJr=f+I;8xm!5tds^Wljp!6AK*{?RE9u85x0rMy>d?eY&R<Snk^hCy$)
zd_ckp)z@{FXonL<)hL8mI{oDe_Qd=;-cRC8{2$q&YnnaB!3G}tC&3%*0_}Dv;dfH~
zAwl1km!FoAzP4elP=i{0;Ci{s;aWFanyq?*G2_0EXOCvu$Rc~8oo-<}YFy)-TKJ5P
zhfvo^5>;prTI>@vFkAa>>!$@xHXiPoH;E=9L{WPrGmI3S*mB?#kMS%Q!8M+Z@O<2y
zsAPHau0ylu+oaTNH`W$fay7otm6YKb{TS5{w%p%82SA^aM&JEfQ6OWf&wW~I(znX)
zi$Oi3x%XM{!AO>ZyqICOD>Y!y8S?P{H78Ck2HFKFK7<-$K`3DD3)`I{E|mf(zk!94
zJvM8vQS5i=at6HHLELThjlyx6;*CsKUncbEVb3x_c#hi-$!s>0uKc|6?cW8US!tjG
zeih7K0$}mg?d+bPch(W^WR{Fa5s2AKpaoaUOCS`N*BOcn<aGgrgEIN5;&=D1zK!hn
zc{hMgy!hvaj$93yov{unfQuUn9tHXnZGYcpFkO+HZ!)DKJjAs(3s)VyPUEUL(m|zw
zTFy{&Anyeo^b1hS1*#AH$P*6;1u-`ReuHMco*QsIouC5C0MaL3#r7ZICb@QZ<}PY)
zd0)dJh!U>Kn$oK??&SXKm5acdsM1dQnyA5!bGx4cT@GyZ#jRQsf1Srw*?r~4b==!u
zW^fJ#^A2C#+`?dwL00$tS^#cY-yGINWp)x)hedUEuGWkayljP^4i$uA!9)t}k*Suy
zL1xW>WEiTaIeDQBu<st9w-9SB+j$jidU=z|tZGTF3sep$dwsi0@38d>#Em;VDpqV~
z&5kR>Rk@GvlH93S>ym(}B)ll6zyI3c^4u<zNw)!;HAP=}c~z{mGrqRzR5B;x4F)E7
z;XTA9J=O~ERmrs{fQ#i}TQqeBXRHVI1TV6OszfjHhpH4Wu7?M?_7pI$LVLzy>VGM9
z##0f!{>(^zPRV-ZwE=(?Rr(=G^cw?UEttJp0F|ecyCv~nNDoy%n@47=lAA-oi^E4w
zPzzwH6O<4r>(UW6`rD%)#wPpr(V)CgDtJ(_9r&=x1+;X5x&a4oUcb^@xt(9cdtv-j
zfaIYn!7G{PRZ)NYRSDN|A5x~VGrZQNv@i-OsEU8ad5BAR#A_G*peU3BX2y*>*j1?n
z?KT5`ftVj(iofn~taT~uFgfPByL7H?(q37dZ_-@J!PxYBw`fc9;ZFUWlJN?c0?-b^
zSQAy-iG#Tx49Q_%IxgS`SdeaG1j0;bI1I6+t8{_t0=qzv{~`00=D{(^tFAGirB)b_
z10IxX2Z9HYuC(Yj{#2;by^=k!|7@1kGeW%jA08h$|4G+9-+T`;N`?V*Ony{f6a8#R
z0)_d6-yqD8RXeZ4xV)DqYA_NT?lQ)n{MsaTR-P-r?o6*dvO6O`R3$ye`T1F;c)fdY
zOz=wLfvUt00PGD|uHK6T49M&2$--!q&V(uoC4q}apRT?B$0r>R_SIRP?bi)x2Zslf
zWPr?TUGh6u?ZWj6Lh0Zp`Sui}i~Op@0l+yW?G-}1Um`ulB!mE%S$}1;<Gj|Tx)ZbV
zV)S1Y8(y9@K3-X!UnF=@v*-S^BtT=QMJQl)K9TJojXd@*sm(#)k8iJ3Qu({O5*VG6
z|4~@Fj+OBE8-}5{4`NH-nR{ZN=!N#+n9^*CMhT_g7=vIe%4H2w(mJ07C})9Oy?s^b
zD%Xh=lDv>EE<$l1oM2&pXtmn~I%x(pWL5D%Q@vOp9Dg>4q{hMA@hl(@g!bg~$)%a=
z)fH+5T)euL|LH~WppxQ6e{qri`S7&`7K(Qo)K{qIMvPa&?T|TzwI0aH-lO;PILrZG
zS#cjOZ!s1X_6J}N>A1g7{1K*yMLUT1pU4Jq(-Cgm{#miq&e4j$B9OHH>EFX{ZrsV8
zBVGmlwzw6#D}fCWSbUeSTc+&p9myJfjDh|OaD)cfS9e>wXkdipGCQA%c>e+wyFe9y
zgHBK;;NtajY0}O9D+N&NpB&l-@I7wT-Xf8D{y!LUz^3av>;G}dj(;*&AN>!$0IT+W
z$YE{_i|_RYn0ZP)0D3#@|IzahZ5(%U@6{gH@!&NKXNGTb^rOtdny4~N?ML=2ne*Ha
zFsfeTV7lMayFB~7lq5Fa>*whz=YoCd3`ZfPu(Z4y#{@Hw9=+l3b!f|f{IVYO(fS4e
z)UuxRr+dY(s`_ufOm~H%0=1lANdChH`C6CqP9!Wm|C=nsiXEH9VNMP6v7;3T0C?yE
z^#T@K!!UBT09rx2-jI}`r+-P@?9nezcS6e-ll}^IgMx&<(h2$jme%g%%0NjifJ{*4
z;~j^9JPEYn5EdHyM;{f141IGLu9ytFT5#ibUqfLi{Qms(LjRYjfF4lUos}D<I1uI5
z-RghiTYvj(oa^hq@G1le-n_nNcSd+n`RP^iPg5n|N~S9=!&gjTlM4(C%or63%_A`9
zq?nv_gfa6{ud}21kFLy?u5FnTa+?PL-3AD<OV^pTm`d{>I-NCOk+#+cQKW;d3uSbM
z#lq|<kf)dB|HL@M71zIf9R_YvX#a5%(+-2t0;mV!c|#Tc<C~Z}xr|o|Ft@nkvwvm3
zLOtX6#fD`U!Dc`<2%}w?>%UySM8iTn<v0|aNk>sK4yCX3SEe%j57qkMEXh_7VE>gK
zSLG0f0@@2HgIN%kr2;x&@v*!2s#MGN@0ZQbH$R;0oQW>Z<P19O>_&qy)Svihow1ro
z=>vS<*k{s<49TqiRXcln9QS+q>6Mh)=#HxbPCjJ6N;9%5Q)u_$qO_DzY{i`Y7>-MS
z{!|0;Cg}<p)S<m9>U#9X?Xp3rk_8Ul{_@kKdlg^@XedJ^U*8q~y!YdN;FTBhrhOWe
zdqIS)F<$0;{*lZ&JN)`pG|pI138NyAVl$u;r1zWzLre)%7q{wmn#VtyYa^%7z6dlM
zJKHF+Gi>G!h8cKql?4o4dKGHfAOOlXUU|{I3ROMm1B<g|_qXC7S7Q9ylf7KXp0pI#
z`e6hZ`oDYfrOTOwkbZ}1Z(!0J4(w{tQ*5R-^*NtC+2wS~@4U?khz6-Q1F}Gz>~yf5
zfDs5nuq+zZBnith`|MXE42G|`l#{TuPcaN*^)-tJbLc8d<!pp@un!g|=kGzIMmxHq
zU+E2n<Kwgxd|wG4RFb?_ChIE_yy&3t7ImkSV67;St;*DbdGhm}mxyRWbNFiHDW&oz
z^h>JOS;GCH^-DOrSBtz*;)A-zj-D5PJ#1-@6HVA%y&+!{)rBo?u!X3t1yBppW8XSc
z-2vBMsqSzHy`lnnUH|0|SJ)!jWOXLBGv6+RfhXV){sCxta2X)*YuDrb$E*5b{VGt^
z&SI)QKSZs4Q~qU9VB>=B{BJ)v8`O3cpbN9z#-1aI6xl}4dy6TkG-`WUcLCCd!4?O6
z9JW_hH#@dhd-pD44#OogVh+ot3A`3!!0+x^L=nxcBY4V>mtTVPkaCzW-@&uvKUToA
z<9HQylfzHqdWClPSA}Vz`sH+&A?AF%v<cc|yd()CLT%UFl7_Fs^Q!3<hHpY^SKFFI
zZI|DAKxx<68b#coxdbCtqPFXARls|qwkvHhBT<k`wnqhRWR^gpaGKS&oZ*Q?t0>to
zmEl$Jz5aA3A-y(t69h$Fh$`WE5d{^at<k|W0#IG*2Zf`xt8T3$8q!>1A)RA;VFhWS
zyjTZmp{}u9G6hxPcr|qQKg`Xc_*Hb<B5kN|xx*7}^6ueyIR^2fzR(BpzH5)`&P1Z1
zza$KD#A{}{?1XnDcr=4|#C!CH=S5%et`Ag#zxa457nI9>X%!^Oc=<l)fe6MIGK!Gl
z76KBCFL8JkLYNeSpg|NNrL7R895$ybVTE+~F4e6T_)V%yiJ(E$cBw6*cWcy_T8M_!
zmr+QDjF*athV)KN-DOB3-?q5njXqxL1{pD33IrK_aEj|@C-N%jW=7heyYvd;MH3R=
zVukNg*edO=BJ?WjhGEL=UiH_qi<qb)sFvT_@lB>h`ad*%by$?o_qNg<l9B=f(%q$?
zAdR5(vV;goDlE++Al;21-2zKVE!`kpF5SI!#{$2{&-Z=*+3T8_Gv}PS&pk8e+UI#@
zpy@y~0cWWF{)=Wg6%b8F68D_8_<zx)!i3>?=K;~Yk7=90gyyyhVM62EoH2nWc|W6n
z*u6t@!}0#z2E?BENX0Lj)IG5cf!}1f9M)!wA#1W+gQiL0p58`_aX@<Y8bHoFt}PAY
zJ_tY#THR)ZasR9BgI^(T(}(2}%tf}Nel#)TqEj9;QC#n^HWp0T56fd{fJYH+g}Blh
z%M+Lkd`C}#xL)x9$X&7daiM8axu^c)5AV?rv=Q<vd$bXXD{g>9C|AE^92AkC6h;Qq
z5uTqH1_0a)TKSVJV?RB7X(Ir*5mNUuU?3*!N0*p@Zy+>Ba`zU%H(BuV5E>tedw3fa
zjxoiRyk8w2io>rCcb?5jp>!Bb2H+Ns!N76UjTTMm9@=Js(efJLT&vOYF&Yqt*M6<6
zM<4x`xSZZB4`61nIRyi--B$px-4_AYpsj8Am?oS@PyCYq1y$)^P`?6{LxKGCa8Zu|
z-@F3>+*))1+{#G++-xy{yEZ>+H_j7F&8c^^Z81WpHuVD@a%`s`h63Vd7^bIln|PoX
zhdHY4L9E$zxcf||o!X<wSGV33X1LpBZyKqlE6z@Ja~CM~_$#=^h#u1>d75C)T8RqK
zcAQh@_@LS8&w2=r$>ND}FErU$Gh)#?bi2oo-Q(HmcX+IgEfR~)#~t@%HPhPFQ>;b4
z_M)Ax_<l+=x`-pnJ=Roa)egnpdpj9@VQYH%`p&xbkt-iih&R1dyt9@gaAgDvDiyg}
za<i8K3smR1K4Q~b+0ftNZBan`60WNp&~8^TqI73Hf^mxm6v!)XbD_U`17seZ=gQ#i
z`4utlBik9i-#nn*a#mOXdXoKRsDUPoJtm;(w7rGoJa++qPk%DnRj-0i{?0o1n~%V*
z((Rz)C$Rs`nCxR$I-vAoTH&4CY;b!E`FZXg#dI>@!exMu#IBN;*tA|2^mm<~48eJB
zGwB}JyN68u2h(1_2Qa$SV?Y{hS`U!U#JK$oc-LtP4!9XJ!M$(-3U{X9@SCv~+C3!T
z)*Dmy9O&;u4B(_iB`?uw1famm-v=Ei;7uz7o*tV<1Mozn-6{e-&rO$r5w+c5OFac3
z;h3fb>PRY-06QbtUc$RdK*%_NJ}}ehSN{eiLkUQILa*)x1T?>u0scn&+rPO3LgfXV
zD}2jU!46bi2Be4Gj4cvgyatqsR<HxIV*WltyK({N#I7`em`DZtzfnE%!UGD*6@`Gi
zfC8Y!i*<SeK<6?*2K~PP)dAYV+cbcfEa6_10e;MwjsU&`0TKmNlUG;)s(S-`q=25}
z({6xpIkpt~d1enV9J2q0V*vDFG93XToJo8^2SkRiVhga==${^W1Mp7@8;~l9nmGkv
zV{aS&HxNuIVxW$CPYUn@?B_!TsFs_)2GlH={^N!tdLuvwAUv2wt%OL%J$b+nTT{OO
z@s0Gq;e-P{i398v?ySo(=AwYGFz&qp`Zu<lMBI$=qBUXw`q`&d0h873EwliE$o9N|
zf=-(WfEokwMKd7$&Xf=64<^3&I{6^=S8kdJFq3b(6buNUUEBczr|rCex0h&*09k<P
z^c5Hy&NMNAz(~``9t9vkX8Mm!(f<2@YXG>c|3wD`G~AiWh5U<7EnvEta4#4zP1|k~
zc%x}{7XS*q8G{n;O#xz5ZBT&Rch9Gz0X2+Rx9=uL_IAQf>x$zk5J!ho`T>#=Q}L^%
zdVgdt7<NC3qMoBl6BvJk){!ORzB4%SoZT~7J(cLg^cxv*<rKbRjmlr3g|a=r{uB>4
z?O%8%ErW4yDYg!E$TZY-%T1G=l2Yx32bg|tWQo^t3|nyHpX<1O(J^i|;N0T4UvO77
z{&G=E{B5$Qa?-o`DVF~Zu~pugMMj`y5A~MDfJ@1##ei_hsb2SW_gV4hox_BQsXv5f
zr;9;9clQgvXYxd`C>rIhqBy6nRezl-)jV*7(66>&jNb*NZ_sAdci8QbC;6?ayg${i
zv%rPCGm}=mx)v?;Y_v?;a2=pOPuhuD$($(E&}EcCUrB!bt3`A=RK;MVid$x_?o#Wg
z8NzSnavJL@=mkrvT@2I>r(eb!&N}(XV|vB_7rXgrg{E7?v@)9h<A$9!D!u8b{n@4m
zLt3tUTY2@jGH!FqF_RZ4TKz8Fht~y;!3zny(ghjO9lo_wRsJ8!uT)P(lV8zRO+FQ9
z2!ZM*RXVe)zWbt--b(<vGl((xs@K;2F_6xeDOt<O<GXRfw*kkn<r6NUN%^l0)@uI2
z^m^TEa&5=Lk_-jnJ}oAA;d90ee+-$rQo9p|-v1n`Gdupv1^dF*O>sPFRLZUR{v~>y
z+tQ<Jw!O=Yo1w$HdGjBSDIVoNJfiijA3RC>5q)!Ap5-OQwT+m$)<u*~yL3|&MqKq6
zW3@JQ;USD&D@pOZ2nM>|b*6Y&3|x0x=zuO2+1yK6Xp-J=iVe<^+VciXag|7CI;wRP
zhq6G$<S;UuXb!9HD9a+mZFrr{6z(+Whr*H}@f*4i8sO^H)X$O-IaEtpr)zJq_Ox=X
zx|IY0XUp|_i60ge2$mfZ`D^GLW|*z?fbP@EDHMr|{YDVVeynsyzBUZW;oi}0UPoy5
zWiDEvl@_Ld$!7E*y?YF?peL=0mI;h>flt*4i!OMFV?Vbt1YK7)P&$t!OuN`BsBpvL
z627*Um8^=*bx!^TXXn%XeuDwuuWQww+j%U4zMTRO&i+xXaW1;J&GYm;$*AY~Rq;{f
zd3BAUFmfc|VMsATZmweP#{ic?1&5o}mnw@^A7U9N?DgXhX^YPfdpN1@S*7soy#|<H
z42<eayJAayqOa^Uz9*Hi?|j~(llh&_Nlh?0e>_|7`g(v0Gxe3hlO%)YW=5%&pN!z}
zW;1pID+TYTdoPI!X0lvAv7~g*v|Y7)4=BxOKALqav2`vD6{HS_&P|$$lc#VkD;RaG
zyxOa{>EOudiF>suv**5xli4uX={i}f)1<a&M#&}V+G7#SkrTZ?`^c6zSd*wo?hdQ7
z_vjjRb?ED_zqcPMA0$MiBRx`U=J<z{2sA`g?1Nr;c4m+r#`9SK)2x*tt~upti(0}j
z;qR-b2?DslQ7BcV)cy;Lc2v=~9b`}q@oi+Dc<a0Jb(^+F7dyz&@`7%~>PnmINbxXM
z_en2<mr3KAD6(u)gG$o&l(RNmS92Tf()Pt}H&RQa`PAO-@O?^5g1+du2&V>%aD(Qg
z%ce{vDuJhC_we!711w60sczC%Lrb-p&S<xLR2y4p9XS&A?4D%mv-FhiHLcy?aZvjU
z9k`5S_Y9k;rR?_?!*U6?(9hi~V!!s6DyO-E<)fu7cyHI)+RTDYI+?sS)P+AfTFfMh
z-ZVQ_=N2C{RE{M{>YuZ_FBkfxSWKcSvxA6Nde9Qw|0uW0O{Fu=fzxsK5%eM;xj!&p
zBZC>jPrO_@=C|wxU5ay!Rn2~Ohu(AQcv3u@or-E+ITHiJ&6vP>+p3UY*2uue7cn=E
zlxqHra`^pN7&WI~J{JP_Os#8H^kvVm_P)sH<Z7wlgPKNuTvE0+GE?$>R8!jfyYdY~
z3H4>)#-4U=Qtj&4{_Ggp>=?KB4TIyjC3|_`SZqzyA^Fxfo|wHJ9rsn_Y^ceZDW;&H
z7lBkYZN5<fy)2!$w-DX^4mCpyNXk2g(e;h`_2Y24SPzba$8v3!?IK^9*R4OZ)(|cu
z;RLDO&0I>oF7z_`UluH?K!^2KA?<(Fhx}n1bQVXT@_I$3DyCGC1$nvmF0VUy&q4dv
zzBLAO`=L>T$~BBEdG(T&a4U<V2D>3A_cSbm6ewk(t@!+}U(u(FYr&~nzT#1mi?>0@
z`f&Osw5i;K0+wiNCAQAkbBkdYZQGqb`TagfXXQnN?ace<W2T2?H_<x^K&Ce8#>18T
zV`&A)OT<ButzAp_5QDrgPLn$=*CC)sqA65eh?{X)y@Dxu%_T=i<;6v8w8p6Lj<>4=
z1yXF6ja@jqLW$Udr1t&N2kvN=;L5$rD57qrtKLlhyJ+q-zN|C+^Rqe-)~o0};?7Yt
z6|NuSRZ2#py)nL32M_$$eD-GdVzI5ETMJ!R+{?)%dc>sV7GK4L8uT+t*M8rHZ6qB*
zo~1D*4Ee3U6iqf0?ex7>l(XkbcU^s!4-cm|xu}6&VM;ayGeRTjGuY{P^E>&DJ9%C8
zDTqe$J1-g5AwQ74Uwnd>&6$!pQU|ENUhf($SUzho&S@ZEN=9N(_-gUppK=|n%7ybX
z(ocd?`z<p!PedB%NQ@U*lJ$g>3D-}6J%GPqKDR+ygSR=*i7G}lbyHi7w?Uq>c>Qba
zW}G6gRLeLhC~n{f`aC9r0QUH@m4FZxMm6(E700v6K$^g{P&4a6bm)OkUs*hwbJ(#V
z^M=*qy$u8QmokASZ5$u^hCzh!Zl7h#a#gCaq783!tSTR+r+@H`YdfwiH*dSeJK{>+
z)ZH-sVbMDM-DP-81=k9BnzVY0(4<^bWMa7QRXleyht7C`TKkyM`Sp=xVo<+vVE=2=
zyT%+rVsj05k1vFo{oLo}Ytjm2mg3(8_u55;@(4QbI`zzg6wse`d^vXz=q$5qX&?68
z=6cJvhZ{#3^i+`>g_m1TE7s{~K@0hj)O@Nrct7JPaQned$Y6wl<r69OT_?6TCMh@3
zYm%VT++2AKu~#YwvCeYl{d|RAf*{+fMG9$(SdwRhsukqW8=Bx|fu)W|6e0w}e{P?$
zziBk!L~qZyqMfCsaMO>DZsS>PnqlJ4m~4NEBtl-Y+9^_sbd)mL5x3inbi~Bd*h<=%
zU`>#@b#<mIT)pq6zv!N@YaXS#Xb+_KzJ89b(0KtRwOwX+8ZmHun;}Lg<i7=XmM-+>
z^&sNKeLTWGa%^Wz#_TSbOtDozo!LQp%H;Y;=7$dHoL>3SSpJE~uIrNa4v*FNR56MZ
z9!3OG46g8=vCH@Kczyqx;dI2D!r)s?#&cJ$stRA9D9om9`a!5b23-M+*bmL5UPhO5
zJYuKkWh`auM?1dH7hC(UZ3G=G^oJx=8lalMnZuQeho->{(u%<}J6f`?>9JI?5#Ze)
z!HLQ3T)x>6<=+T51Q~j&6)!9;6P;9iY~Pu>np~{&+d29|qjr3}W7w9_p#`UlA%Qk{
znQ6LrA?apR&VidFC)>9I11zdj<%`Z7H9BDJ>(fcu6-;kkHGAoN*XRsG!r!}#@}E0j
z)EKJp_!YV`YL>lI+aF<xG1SMPRP9>SH2YHadM>!)v1@0c3xX+PXv-T>`JFkt2;53M
z@W>%7;><TFU;mn87)!T0^5)#ADP-E;bAW=nCyvi1+f^E2s&)0*E{R$Jw})T4{3$A`
zxbf?`HdOL4>UYi7(0a;z1l%FeulG6;o`e8Lq<rGup@|C6>59Gchxy#Hf<o1TZi*EU
z5Zs+#GtuzBRgpBD+b7^Ccxh%l4C)VqP~i!@f1vGDUxr7GOh9}X_;wA|qS(eEOOMBE
zqQ!Qf2n@Y<A#A*Rv@6-DIl8gHzVqih-nB&o4Ed?F=*5WaWKE*|<iOG-WZ^ZOJ2RGd
zKpLdyCJ@xa_!g0zSCW}kq9g?xiOmh2U77tf4w+Sjrv~BJ%#Mnb(uF_EDK8p$f&BFi
zuR&|HhMJ4>R|77D-jo(H+v)-uuz|VV=!_>O=OR<NdPZ+#f*LpR$1VHEAd!vQlT$CF
z0>N1@A8;J3-B|Bu%I3s2%>^H~e~6j7KMblK2Qw^+!5we`jhMZ8Qv>yfM^#6{&j_=9
zL1A!*jq@5wBSeiy1&M-iU|Kh1!x9On>wFFBCCas6-jTe++^PDNH^5ZTKo9DaRYHVR
zX5zq~$i}+7YA))&+=bIr<m9O3anZRnpTS34gU0LIk+z-2AU#HbppST$EhEZ^-3B;}
zP%i{N%+l*ZQ-bXb!uNd+8WNCCm7|vj`DWX8(R*Qn{x-+)qHlYCE`}kg@xsDp!r@pz
z@W*WBADBVIcX`NBI*?uqwE}Mszjwb?o^2-`2oXB)1|$}1F>6&6-jiECDWddNuPNmd
z<2ZzL$MCE&iwkL?tVj3$?VSu9cKTLtwYSI?!?+0w;yNoApTyiJtHPslv1feVr8Ogu
zjQD544ur7WcNt>ooxLlvT>*?BTb1<!Q$9U`2dQ^4hq!OEyh6l9KL^=pF|{;8Kw<!v
z`77K`S0C#mE&x^89QlDrm6S5%E?<w<C4G?X3cLdo<jh9~DP!)n9<SNd8Q-|`bEzR9
zAO9H+GrQ1yhXC$S0F_+6g{x%Ad*Z`40fid}uRtDlxdoFrcS!TensbYBh;0&VfURfr
zgeQo$CEA7c;|@Hd;r-;ftVFGFHmvMcSx*zj^-k^dl?$O4R`|2k&INy1O(QF4N{dO1
zdkj+65f=7!PZ4xk8JYU<Yqa%k@+HeS1Y7_^=027uV8cU<zlJ*uO+tJG0G$hB@4<Qa
zzylUU$f2@ce#)k#3*lTPF~p}*b+iTo@RyYHqedtU=~G%%^b1sEOE^~)-NJlU9<BvA
zVQU`*<I;^_%IFwcgC7ixLVnEc?8-;==asM{5+Nxr#dm?it@kvLy9gL*t1up%NLU4K
zm@RJ{4goCzBcBq@fz_FPsJyn!_U+Drk$SyFv`D#tRJ*Ci1%g)a<(NRWhocaVFF7!-
z{&&|HkVtEQ7z%k@25LeHE^lIC!#S`u!Z?`q==lLNNRMiKYWf@8wH>|{oc#SB!nFHm
zRvoUf1Vi5Jp)q0gz9MkjHyN)vbOj-Nl0)DQOiH~blZofJJD!b!E+0Z|Orl_BER{IS
zSfV)a4ogt~=qS-F1f*w<9`Si56i!qbISU$vknMa0Oa)+qlEVciz2B^1At0VfFxxf2
z`;GPK6M@~Y2dp6M78X$17QT&!0;0kWn2@$^cyO%41eXnY1?2N>I3}&>`#GXX2u)HT
zqUpt1Ia3jGUvb<rJs-(QW??P)Z6)d|#f6a4CB5nG<T<B=VjQeajt!&;Qze}+4uhFF
zxJ0J>Ru~mA56&xjLNjYA3POCf`}Qstz<fLP+<&wcD;I`Nm}k3U4~LcC0xwI8=setn
zxEMH2KtPKc2=?_N@9%IT@7M4ks4Dzdw=h^9QE@pc!fe%;WqabPtVb{WySN(;)2n=}
z*ln)_QkYTX@iN&43lt6XLCSs<BjJh>OhFxlOA2tx;Yo;PZx|f<5I4KxFlo6CXY*Bn
z&*lUQ%K<taFS1~k=l-xJPh~y)_kA*N;4n>K-H1cJOU85%ZhFUa#y2kF!oD->Spq}8
z62J=VsM%u!**Z)?WW2JAY)K>(<6+qVBjU=H^-@zd%Yn6yfBgJP^cBKq?m38U^n6tw
zggDfH_ikrS3sGj53%&RWj6ECHFZDKA41_rE^pGbA1dmEuQtiy90wnkvQe;af!FC`I
zig$~LZ4t-8Xat7t^N@Hzgv9Fb;D7BBUAh$%=5&gXG_T=!bvdv=qZN;fYWWA6x5$M3
zypqB!F6D^qU1vi*(Ky~i9yqMe6;2srVaBp+SQYNFe-q~Nv`biLRK!k_@>Q2cbQaP+
zI**H<X0{&_4*N3wD3?>ZXrN#8b7|Iq+#`q#SQD-|pM&)LT}~3PB{V+u67GoyFAaDD
z(gakZ?|Qbxy3otLgpYR%pN@&_nE*~Y*5SZi?PFaeva&(Xwhg}#^8fP0-}TI}pPaP%
ze*Xq&V*wcmxq#%};0hFFn%6JV=h=1<fDm^AIWV5}?HNC~t4ItCYOGh5vY89)6@q}9
z#l)DPVA%whsh0}0pe&>(8o<qk;38Y}xuV*_!27ApzhEQfWM?>x>rDhxTt~Abu=fFA
z&I$w6T!R|&9RhoXTO6;d(2iiJje{bhB6>_DC%6cCh8+iEv$l2{LO|@>v8boc9`DZf
zitbKm;@%<ACa0p2o?d{O9a(vTP;yuxBH0-zA^dW9g(MVpe9qV4CoRuGKg?6*_7p&^
zz;4mahy(Zh1E0;xmWeAz-jLFoCcvLUJZ2Pu@3}@>hm}B-#5<Dw9}wrZj!Z#n5oTA%
z`+3OyV!-X$9e5NSZCx%eXK?xC6gUPZDKK=9XZvUe{-rw0cKegE9>MmkOEPRg4Ni~;
zTxbnEqyl)ESQqH>6cbczPC%hf?Vt%mwvmJMh9AAt!;<)QUc}`nwKIDpu@go<(S!x+
z>@g*MJvjY*yUH%kg=5sOrBw$3p?57U+Ey<rVVo=S!2k{1X2Yf!<6zl3E+D@1C+0<W
z7@Z3>iT_NDoKr!{p7rjQ71=^$b|lZ9?);&c_!$T@I|Y^^JW)Kj!@`Rl&hJE%>Z6H%
z^jw@!mR%K7T9IOvZSYu;Z6|h~?a4<FB2y-iI`z`LUKeJ&{Sl;hiV3W%eF8x)_S1^+
zjt1W7luu9LK{B<3z+qOeMr)h`@=EY%W~V&hFbaT|34}!he?)iZ*?~oqVOMepX{($H
zvrVNA@as@Nih=dpz+oBtE<V=+3%$UURxnc5>nP0QGE_SybRoQb1Z+PulCP4hHO4o9
zk7A5qFeDGK8vTG2ag`7;fMt09&GHna=lv%Tf;Lv3;0rnLd8fs0Tp9$lHbMotmdm+)
zWTd4hj({Mc;~!oWTmz2Y(S|=Wzq|E^Z7n6c6pxOoZ0*2Xy0EA}oXGAPc8Ko6d%xdL
zQ9%qmq~=AG5fq#~F^Vg^>+p=sJS68n`!4)D9mV*Y^V>wvCE0t_0C(Q?7K0}+KQ3Uv
zj;+tP6NUjQ-`a+w{!K|lE^G?9a*fE9e+ZKY;fuw?*2o~B>Mm-Pi&39%#L5U*C>%C4
zmIF)cA3J8+g+uUn4ClHseM4<};$SQK7^F&zWG?$&n&XK$^xG3aHo=-#vMDoJb0On?
z&$@kb`3ht!8v9?4Df6BBm)nHr52R$qFQnv`j3Qfse@pwV>~qkq?8-<huynXhobtIu
ziZ^PEZh+W#{GoaG0(uCDkZb9S5y{CK2)*=!=j&}SkfQ**h4K^xLS<n+|7LCF)A*F;
zC<Q_T;k-^={S;Dm_su1JaUj$84UlBIj-8ehYw3aCCBOUo;W7QT{40d{p8mU`!yFj;
zVaI8CFfhkyfz#h(U`@DiSc5r1S)_3EERe>Mxq#fxC?Fy+EGB#)mP>m!P(TArTwth>
zcITQ3SU4)&FhO^Vi7r#}*s1(Vh;urC@PFO35XWxI*ND&AzUT5FnFiR@8U&Qqh%fM3
zr(RVw4%T!GhbiR(O9suh#~;N>h$q=j6?E_)nhuUxTVMcAizQMQ)+Uyn&p|}*rHv3%
z-{`siyoPtYLZ~LnKkSCW6(?h1gu4GP(?kFpQtd9>^^z2lt`s#ytA#Ly*{&#|uJy#2
zhB95pPyc1ZQj3%>21`jUPhTQ*4B#+}>B=1Q?M8xtrJyZv$-iZ@YLOij3`}nz(>&0i
z5fhDp5r)AAMl}%X>(t8dQd(t1stoEn`Tu8`@42@B`~r50_BO4|Vx%OHo&5zemzpCK
zk}2EwO%A|W7SM`6Y#$Uz&FMCJS0p(OvHl6Hn2R|u4<JL3-R-z0k$#vR`ZsE}{r`=c
zxS4g^@FXdZix3M790WtM(edYuF9I9YlK&RiAI9@(vc{HvM}@lZzdW-pee?7%9_I8)
z56brr!TI$)Kw=R{-auox+yfrf_|L}l4Bx42nBF3}OBqyW`~w<&QC*fT0}!Bjv3Gil
zX-B95p0jd>BIH$L9`bJ`oHvbHK~)BnjEIMQuY|*>Jj39N>`K@>vp2FkyZsQ>FdNwr
z*gM81`m3|y0~*T3v;CVwH<cGnF>V4i=4$q7hD&dY14D`z`m}X4#kRLJa-DrWXh)i(
zG8_FfZ_98;M3T!_z}gaxLx-0gZbRH@WIJRKWbSXxNlZbBwx0>(vAsVe1MJD?Ziy~)
zw9|Waek%R&x8Dk+(f+A4`8nkeT=Ag8BYw#>eN~K$&<u%~xc#x0TvVd3(n4KBIBVC?
zyO{jJDKlSRX~5vg5z~#=k1P!0fn4%oLAl-Q=9#poxX1Zg-aZ1dD9?L)XzNmyMC8?s
zY}>KzMQ-c}GZaGtDswNmULATk<>9!FX)N~@b%SEG@|z2hD>*%kl?svjM%QZ6ihYgV
zh3|6DdlDQv@-hnC>Wk+=aZC#_2}7~2QnB=wZ!HC)L{?>7WGSvaR|`GSd&>`(zIh8B
zJ3^pLCyJ|5v1^FiMy4fIlzMt53ja#4i%}^G{2&+76nG_=j$nBRbtn4jEz^eV(<I5v
zJ5`FwWQFp4^#--c^eI>|F&3Rl^s$7xDMpo(rF?7RI|h4VUQP7{lRThFv^XrIt$*o~
zoAh8`N09hpO0-0^U9uk`L*?>LHDjY$TW};=V5Vdz?^oTnQE%3Fx_X&=5l`!5mR<q3
z%ZJA<DL3(b^<HSV@52wx+<&^98_UNE#qc1g^<BRtTPitS>|<nZVUTFyT_L`DGP$V~
z`X4HKWWJ9iS~SdvPxL~lwo#z<Ly}BCI&j?)`HAGJ*lrW~wd+4r5CZdo-eSiLz^wu(
z{MABczcnO{!^?Y-|4{jwc%`v^B^m6{=gV|oFszyJ7#ei7)^`jc#*Xcr3kJS2Y+~?m
zTa^H6NXl6b-+0FjGrp3IxvBvwNH3p7v&w31Imh&p9Y)ZB*##b7*L3*`U<0Tqk^YCu
zD%v{UF)?Hj_gZ+h{8=yJ-IWG<rZS2t-8W1+_=<V`$}>#8?=*BN`;;m+nS?Q%4h&wA
zZ;80#Pp4u5{|8EQw|yTM017DpikvzM=d1T!w`CvrS&QCQb8M@!w+s-l9>$}Enjz%>
zxZ?GXE8xsZ>}!oxOi5p=Yv`&_%o<W8Lw->WrI?<~{NQ)h-FJLW>&7If(iA*g$Sn5;
z^&Z2?Tc($=@8S7<*)ZR02YA4&+*fZOC9!pxkk;bU_*Qhe%>Q6vz>e)D0T-Nlt|ya?
zyoxHnb*I1n(8a!kB3&1I(n=}OLbT4X&e4Uv>rHf`+@(`NcXTdG7PF*+N<Q#&#4?VQ
zj)U=mx21`$>x7E$kkU`C%~s2|=~`-SW>7N6!7hvbDD2g6m&K6z*Vl{Lr-tjG(C8@-
zij#w`;GKEDChW|IZD}eGIoXFD%4M6r@{Lo*barOO?k%|mw9_K$^?2ZYS0hsfOL^J&
z5nnjwrfONMS?lI$rh}iyJE0Rx@B0ZJ{)gjd<?H`dX%L=J{ntTOC)Arh^T7pw&`2fb
z@V~}uWww(~fEk*U;1_+-C)b*YHg6V&>r6m}2!DBq;$lGb0|@;T8~ub@_TG(fkZclM
zDMJSSE5grcEuSGTU1+-u2M2p&9V>&-5tpCW8@kH(Y3if&p0%a{o?*cdfqjgCA($WX
ztK^B*HHux@=}ukIWME5f#SdvmcVh2-PsUK6p~(CYG2+{Sju@(qZ;L*<)^uOKnf7mr
z{I9NEaUFDh#mG><IK_N8())1K1}Ve4=9j$>#)g53*89Ct#KgvhUt={_)>=87WK<Mn
zlcOIB+92$t*UYl_X=sRK>U9cllo%$Ag>7B)<amj^-sE@2qkAmI2X#NBywC~p^_3%D
z!~?^+`ah|jYnt`o|7x}p`+PS5o%{~T&kohrjEHqiy@y{jsH5H|w~3cNYfZSS1EH<i
zOP@Rku)&Qe8SB#tefWqMQG&HzcXZsUYAXFM8hym{E`*rCR^BwbmgI314h4=1>9SS@
zb-M+Q6G7jrBTlqE)C8&B%WuuHnC%Q0(+lN_M}%m5TM8s}3g76P*wNOw1O8SM;&`&O
z@%jwnEHh(FC%3+FqDR~7Vq~dcZd+`8+HQ|iG1n4hDvP#PuF0$)^+@U$S^H;<X$4i1
zrjSRCo6;DEOl`6f=&#Vx_984u=m1+sG#IiN(|5eDkEqc0+?q*J9L22ZheJ&H(e`YP
znq3DrOGr(rZi(8dF{bM-nCmegyZ$03S!ZfnJj3$$A~6;7#Pg$le36-mlcDg4zPE0&
z>e~KyR^t^OcN%icUt@LPx7|G*&o)g9N79g74kmp^viXcR4bL`Ki!D!D<AT|8<Pw$D
zjPxTO>ywsKp0x7U_%!hHM$2kU9_vM?I;@`7QLTUm6dr2zOyGQP4%#Y)6>(dukZtXV
zR-`x2;?-dBW6$t!k7K3eU6@xwzo3O$2Zww4pkvtW9i^6-ea`KN=^rq0xy46^7#~A5
zKK#t=pyk(Si71CTMTd1AmKdnkwHdu3xOjnjll#6999iByCun(;L=}!SQD|7&HGIsc
zT0>YnUxB%5z+exN@v9M84JUWr#l6aqXiDv?8;qs4cv##u#I!NI<9ddpmb|}agg+mD
zr@KYw<dR=(hlsO{=ekH@uu*pXc|MJ`3gwz}tUTwEnM`u}^93$4gWA@xM8=YUFNw3A
zZ#!hW$`fgf5>M`Q*%d8$gQa*EWA}VnT8u@zW2qf7i|RXn3fR52-bOpny*#1j4tl>u
zTH<V+v#JuRZXwlQ5kKroKHdLO%4V;tT|u7E4&idLff0R)m4y8Bw)Y3DR=oEI&Rk%W
z(A*xIQfTFT#u^eS?mV5*P7r+eH?f~dS)_I}ujWFz>2+i{^Rex9eg?l~m-WP|G}tlW
z5o^<>`U|sLw-zgMy-fXX%kXX~L#{=6Z!&yZCGi&xUt8~T1T>^dLMUuT!HRpvi!+Cn
z;=R<|`Il9x{01~V%Y69DjSfw`-b{UDTD)8eam;%hQH_zHeX((TwDE{A=g;dJ3VOEa
zf3Z;2N#;yJ754ZJcU<qg9Q{H__)v@QwDk(OJD{DuZ@Z(5k7y9%M;1ay_i1;0HfcWG
z`1$k3_pFmkzQl!{30ZvX^rFd~w%PihiJT>x+CFa-#b|4K#(g>ds-kDMqhUICtXSeq
zk@UJe?5%*R$;*dn1w566=;QWA-k(Yp`RU#>w`kr9^)6n&uV|ueCemA1RHapXRk#-X
z&p#pkMu?+>+H5^;ZkQ9so1y26i|K7BF<U>jzt-BId>(zf=$BDf^bXw{{@k=Gg~yqR
zZy^o*oNj_TFAomhRjA$#cVH!H6O4br^NiE$VNXss{0jQoeV8v-MYIjP2(coI{B}<{
zcb%^^`vg_WCr@mrReRs(xlFn1XH=w05%i)*6t6p!gLBx81Cc{gtJ=UTJ>Y74e>tP>
zQV21}bu%~M%wN=y?&T3Sml>CDut?HK7O(ftu@oh_<Pf4WMhVxu#83@bC@`w+DrIQ;
z_wJ%r){&*_%*XaJ`9~~z!vhvNGmmKEchw>zb$(8muj$M@JZV?c{aLHu?J6MkSXw~j
zFTehpiq22MGi}Z-7N_m?ftCUCI{bJD%e(nQ#kEglO)r!dG+4U52-A;B$M<bUf9`(S
zLzv*LNf*ywk{NeS4RiixcAk+IEvXbP{Z{a}(B97=dR&VVxw21jK^u6-X4d*<S}*WU
z*9?5iK{hRhdmHQB%EU?uHYxqo8dNt)!M<V7TjC!KJ`i@@w|O-EJwMI+m!HU_l0aT0
zNlDp+?P1DO!pgvnCKFHLt_H^vvGvK?nE3KJ`L8B!bfU8n<=HPp-j8Hq3f04Wu*&uY
zwH`dM_+W$|AN?A#1iRQLKYsgH=v&9t+*37|=D^NS{9v-~W{JO#)fdh`bGh<2C9Iit
zD6y2>@_gPYoibRkh+qeQ(tD}ap8mx4{XFu>yT_2@15KP=DddLsX*YDN#!gR}%3J2g
zp&ZD|V2fW4KGg(Gt~w_{GSC)zjnW20G#YqRgo_X3+?-AiA{F9zEefB5%)&Y5ETd05
zkOOE!VUFPZr`>C%d)|!6`{w&BfgsqODB0fAb0?`(!Qc4zzOokLOs{<&N2d;@=`TCv
z_kWR`Z_0_-*p=cVIn!b|%XSL7Wa}=h$4?vFC}bLXyPr_$1c|5v<Ca^65Dkj4Nm4!6
zbQxBi*rX8<?{*5l9w8QSzZE2Y`>T1i4fXbT?WzqXDQstg*}3_lpQ0?Ehew&g$amgW
z9j)E2@2oAx20EE*XK&_@eCtGy>!AI|?U+OR<&jEp(ob_9))skxBlTzXora&OxG`0d
zWlPhzxM(>3oSI?#M+6xjo7(P*D>7u2)0W`%VJb!v737UHsb#B+nd!XZu+yb<s51f`
zy1kDOLQMwUM{lKG+%_Kt(e?hIo<olkqMAK9`?~*`Hw~?fsl%8kb{UU@qvOJUT+~?t
z<xe^YwNv-4OHU@STQcv(eL7?7P2p>#N^j#qTXSWCpRoNs`KUvCjc^Cene&z;RddLE
zciNk?xW`yDWuL7~B-zN!bs_k!e9(ed6D=2?&d-BC{v+dhV?a6sX5pMyIUVDwILJa3
z^3%ljaF14Jv(iAnu{SvDp~3bnv_RR-^cPIr*UY(SZ&>`6ZWvF{Z(};WAcpFd5<LOg
ztE)sgyrx1@c7MAk4*ppR5q_>+Y^(C|p%t2+e2mjVqCH~yARYQ)*wgP@O71vCEf7|n
z`vvu!gyrItwx<^E9|;En%qpa*@dg48Dx~?7JN5U%gIGJB7&DWXtKon7SzH+?F<e@+
z^*d8#l?yVQu4!JaUNjBztndEPW6}8N!jRs|y>2#o;d5HmIlpZsZE?4Q-BKC3n}MB3
zg!4w>@`-jCNbATlf}`@79b9`pMM-%en?4}J@d+79?%J;(28rMGM(5-3-apgkZd!Pv
z%k@QEj5EA!*<(4J(ZGM_DC51WfFWM^V0!5{3cb&EO_G5or@9xft%K9&PNnI2aRVp+
zc8^aT5&jf-xvQl$Y*0Bt?k&TnRz@z?<ml*N$4e`CgwSM@d{BdI_I~OZdtFl9zM7-@
zfI}JH(DWQbF|tbE4n0WlN?MF1U)7@U>7GXz^4(zj7azUb(mW^K9AyE!-*`({;jd3`
z?pD+<1j53FC7%#p%(Z{>z%SdgX0|jrCdW85Cwob0^t^OMEbiCI?abqH1P<BRd&-7Q
z!7&+L!6^?KX^X#c_evEm95mhM&yp1U*{5XW1gB)$6Lvoh#An}<Zzc1OJ^I29Rt@x&
ze&kpX_;HHQ_C>Z=L;{H}zG~mcyzhH#GLKX0etPq0aq_1KPT84SV3I6;G&wYz`Vo}b
zp0bS^^9oU{6?8ZIX!_EqBh_ODi{N7Zi9rJG+q4>U=Wep}7i?!11DxI0&zAJ2pCDhE
zh*8+BC{Yj@{p`JBjOa#WB;}j(eAQ&3bsRYSxE6B=qyV_w!4|vqpXnwTjur+K^YHb(
z?To)MO6lA9eaWVZz>i-cCyV&FHl0!9;>=A*dPlKnE=<VzcNfh484Q*+MipK75D8t8
zJ9fVM!KHh-`qsLWQAVle?j3uINAPO-o+ntuoJ;k%npq7}x%p$)+&-yh)n>D*Q0q3J
zNMuUg8C*72Sfw%g-H5Bi6@S3g_tz;ojJL46r?|{LUBhywcZTidjUo<%5n<->?9Oly
zG{eXYm$llp;e!wMNbULf>~GP~a|psg>i3D3dBx1AVaOC6q!%I{Rv~OA)767Rt#@=@
zQL5hFj8=>H?KG#NYcWJ!bi6ON$5}hV)7hi3TJU%A88Hh1rDf%@`$wVO?XBzP&?)rX
z(2CNA6OSvW@lSY{a@?whS1q1NA{e5Z0o=$C3X<psI<O3(9Hgf=o$<rQ(_htk4>{|v
zvJAoMis37AeDTtTCd7IVoy%3fR;phw-e`y?;&PLisZmmf>~(13zdnp#-Zlv|pU0V*
zeMTc@<P@o|K6FoS;#=xq8klupju0(kIxI{7&Ko8sUPOB!+~v-Q>O4g7@?T{876y1C
zr=wh1tH3BXjpLzJ)vy!4tNWS<sG`z}A#l;D`qP8(OZ)rQ<8xjVx*;ijSDH=y@u%7E
zZCdSQHr-WwpD8%!4OJ|_ID5aBqcT&2YR)3{QzZr`4of+F*_Gv3If!Ch93!ya@}c4+
z(pc2<CA7s4t$n3NP5b2)f{Q8NOR3i^3U6P|4|4q?G*`sawXu!KNe;NyoH}#!8NqD=
z{fNbp-MJ=R?80&LyrwJQ{_EG?$zL$^DJ2#kO9S$~craQx(cl#yJ*V%kn<%lv75d?5
zXIZjqd3q47knR@P&r4`pH5&Tr@{{XX0N3jV*SV;rG_!aC^d;p<*SMN=VS9GaT>qpi
zUQPNF`=4K&fSXb|_VjRXr@X-n@462iDo{g~QtBOLgh{Qg;D8~X`xQ|9wI>`Pod3nn
zr`?@`hfbH=GZ*|JOP_8R<%SHGemOPIH8MY187;fbDmd@HcDZPXm}i#ogDaLU!fRR(
zv@xl*Fq{6v+V%T^A@F7yC$x4}fw)`dFHZ2xYSGVBsD%3XpNnLd_8R}gUtvD^!G?5&
zGPU;=h+T2Q@YYWID4_~A(}};%$(TncTkiEd%frz;A2}v?SiK#Yq={)PR!0J4zimtM
z><(O1Fdom_Q@O7MSN(Q-RRUt{Eg61%NKQ7ySYB~yiJ#6jxG~cH_T7_?i)AWnpF29M
zpdSNz%)&&ufuvH>gV4)Azcni2G+d$|7QW2ZzhFqxN<L=i&fd8A(c)L(9cCWXDf`9J
zkeWLa-hRR{LuFXI1eGxoa}6GODjd<iq*5!{yPPT*x4(?>B6a_TccKIq!~Rb~U_%#>
z7L9F<@{8_#=--hObX=k{k?-jimE{9omh~YYFpqMxqe>C^d-+M>Q+>l8=G9q~)ZW7I
z!}EBm4l`EiptA3Wk(KZz+p!=%Q8F#5&U7bQshM-?))(C=1IuD^^LR<ig0&hgX&`jZ
zm7$=HlYq_h$P2Y{De~m2-->d75ZgMYk@t~~XhylwTyoa8!aGlH*#}pi-13I7{n%``
z6BaD*`yREtOE$0>$8Rrr_JYvwFYgf(N0Q6Vj_Tk>FnmpF&0~ey4&5Wd4vHAjnLP>i
zxciWwp{ls|8~DD1m{6@Fs`xzGbZr0B6-l7S0(Cun&n7gq%MczZIE>$VODdipr*S<y
zH>kT`it(qMzvBtQk=J+TC4zaoWcD?KzrHYdTYfXlk}Y*im-fs6XTOuXtBmiByKlb6
z+XY?xG2;t@3&JvHeF&eQ7t8h0u7xOj0kW5eEs%#~Qj9U1*$9K-M>@Yc(+;7c%v~ar
zWd`dpg^|ahEaOFmTc+OZcv1xy?!kboyUyRLz=BBX7&plQ4lUEC#5x!8&u*!*1uD9A
z%6NO~i}1N*y`ZM~&T7qcnw2FcMlTX6c<y$p(w4^%v04u7;M@{UN5P#<3cXZoA95=Q
zU)XoCwbpipZ%lJuN;n_lS+vymZY)j4x-<oCRJXfPd6z4B*-XDNK5TF5F#g<30F7{m
z$o$0*C;8i_X$t(`xzq{&c3_s+ZnfhBUUdd5F_T4?@O`4_c<GclzkIhcxm-4i$m)Nn
zN=1`+LX;W4YU>eyu*%T6dhWmVTV(Z#x1k-A8m&qfn)4A_8f6+*@A$dJgt?GrOAurE
zhxy`4n_^hrbf`3%4{INM`RREw=O5NTZw1HsGhR|#6&0@5=q~j59A6svZ~O|zBZ#v0
zTkW+q%T^(L$w$ufTqNA;<wW7bU+pH%$}<&BVu9p+%j&{B1G{TXMD)9gEWTU6rB7G0
zZ|j~e_Re`Rm1ej(=bMWRZU1#JuF}<JU6>p)9c2jfS`zw$0M!zS3ZmUP<hVBQ2%m^h
znM6KVT~^KbH&A++lksj{VT!hQ2H`Yi=a;3h)Zp?Ycr>jV{`owjtfSZ6z*{@?5`Tkj
zQ9iewesj@o7Hdc8cx?#FY;)FpR0W%Aa&}GBP|@w{IH&Fhz0Orzj*@Mn!Z`7P_ei~o
zueIYOE++j}>7S=Q>oX=!a5nzbopB22^BR1q8iZ?g2i5hl>o=9auS=Aw<TY3vAg6Yd
zALQ~B#CKHh%sOpJ`+TI?w9IWevA-g{{yU1jN8C!6<spg}ys`9mqqqyx^MPU7#h-7K
zaSi`0o|HfK>jc`JfMHgv68;&n)9zvUB<1!br&%BaO-WBBeleHu-&=?8x?c73KPc0h
zCY(a2HhL6Q$zGS><J&QVy2<OhU#L-BbHDo%eOe7Vs$PZ+Uq2ft%~7`PQ8yHlB^bI=
z>m3rG+J2`}7xW@uYG$dD#6ER9&$P%_Kb@LD<Mo4BU6FtdA8Plv#~XVw_n1$-ng@Rd
z(4fAGz_Dl8oJ4NRWF(~)Q`@YgIm!4GJuk}mukz(A^Uc(L^coA`(@=RwJR<iW&sEEB
z{BT&M#v0naemtv|X~M5J*zQcro^;z#-r)U#>Q3;piNF?l<KAb47KF8RPjI^##V02-
za|$!_d6m{Yw|3tn-G$%Un>%!}Pjwe5<Xv}?|I%ai(4}*u^(RS+@G+)a4HJJ|_Ia(5
zaq0uu%abvP5g%VIpLy@@NKw@>^}~^F%ub*t(J?LCN%pYIp~a(x+j_R|G_lK0&9Omw
zP^MWBfpdsERcBEqS{=W(nUXe30hQX9MrkVAZd~*4G87*o2?xF18`@+S6FCr$e-cj9
zl%`9~m{sbc?%%jY6|AJQ+-|qV#$~3un8KCoT#w|pBeU2OX!YCGbNp{RpQ#Prd%4pW
z;I$GFu@bgwtFsbTe{Igov`)re;QQ(_@43$JUsv6_#evC9N!FvGW9=w+B|>H+9d#Tf
zm;cTltLjSH?4r^NbIAYTfu1kS@BD_Oevn-U5uk~s47z=BI4e$#qFQ3_HZvXdJv&#Q
z#ClZd_lf2eXpW0;vEqTxThjQQhn%<qaq5Z~QFCwwO7^7~!b=$1SaKFW{XwJt!o~vi
zC&S4WqgQV!@!=@07t2L9b>eh|+?&8VS9^9;nd2^>OqR%1`=w|2N(s+m+)wfstvNL{
z9qbtJ*|-&G4`Bz3S<%a-{3xN|9Xsc1lOt|F*{byYW9+V#D4|mR#lWRZPW#at+3>u8
z7os%h^A89;^TnHT$0=H;Dglm8W2h3X<Mn=d|J=H)_I`T1v<@fDZ{h_|$n9BnV>_jO
z>kUs-ZCmd_(~)i5RlgL9=qdDSIIa64jw|YP!;#=%^~R0Fd(o20XAx7cZIO8s?$`1a
z!^>T=>ofiF#wyNVcc=SiF0<Cdu=iUA_0N{H!%iz0n?~+7FCAsb|M=qyl{*^!Tw|zH
zJ$4jwP^bUW<GS@{w56YdkmF#TCtnV#=Q-HXL2UGU1T@~|+Ce44c~H^W>Ux7M<`VU=
z*uUI-Mpe7}t~#!RGPt3)?7Yl1+V(_dyJduA>oWSRnxl((!p9CoZljMOR&(&6wBz{g
z%<W+iS#)-G@-mT|sEq%*p!&N3*6>2Ox>2+%uT1J5EuO(sf^f%K&);4<W7G{uNw<Kd
zl{A$)iFJk1f)I9hZv&&~3r-oDnX#RP{-MjbBZ0)Z@6pABF>(btS2AJ8uXjU4p${F#
zy1AOTS4Hh|+$==&_1YzuW!WS3c6lT9O|~YFlONR!{5~oqGIEHx1eZR3KBGTzFwHc7
z`%Ij`4{RyDwM=q|Chnf!AYHIlU4Ev47A$<#b|!&MJkZ?36i{O#B;|A5kvI8Zh9<Ju
zyoZ-0+;7}6e|hQY&~RxZZUJvjvkb?D$KL80rY%i>L91@MUe+2lyLLHW93<j3NfK`C
z>|}G4repY-V9EP%U>)4=cC7gFWQIP&*N+N1z|PTYeDB?B<#q{0BXT7P06#zb*@X%l
z+*q-al4j|+CHPrc)QN(xP&LP?3~u0Z%i%}roocSeGwR&3%Wb~0`+47wai~f|8ZK8y
zx$3B`QkS;NMRD1OK69iJT5(tLbnH{OxdVEGQGIK-G!9K!c824R2g5VQdo;VCj1RRL
z`+4F<iDkR$VP6WX4ol03o60lTO;769Q?T>5x1<y|+Z(^{>uKnzD9Q4pnQ-l)>dK^=
zDAo+G%8Id3Pzu@pTA{%XR74#@^?L0PeUm_ln6ndKopr!gk9nYE()1&5f0oeAB;M7~
z%-dT++(MM*@|qVVZd&JS8SISGv)^DXPC~Qn!Z({Kr!t!v{l`bySKl=Bray0{S1>MG
z=+W68>2;9#E_sF78b2S2xQz@?-s^G|<#OZ6C^nZyaKLbcy4J#eadv<|;|XPvSXjxh
zDY2D&sO89uM5jd8viE#kA>NEQ78eRf`yxvw&YPgrh~nX1`+!)PGiMH8H#cK?LG8a<
zYS*Rt_I>J$@1Iy4-m@q^0garDOq@6xOuxD>ZR&aMt_=$7Poy&-vmjQ7M25p~E8R38
zqWY-dC$3|<N5PEbJ&jD}x5t00ZJ*or>WsBtEB)e<xJf{V;!ayPMqnOq*IePHT}w$-
zvL5Kt#qCgiAg(%HR;o%HxSX?a2ymzJFFCDWm2NjYCf>vNO282qI%KJ6bcr!yf9~hL
zd`Wx|c+1<8JKDl6R65)|%Xi6nm5+OMp`CZbY@70I6T>@eamEyKpk;K>&hA!gSsDT6
zjIc}|+%J6|5u9)mFo1<IJMf#n^tpn5`9XD}`cA}ATB8z~)9&J*lbU+Ao_cm#p5YyV
zzvBZIk+m(9TV2$;XR&^VCT7=1bHCWmYxAAPQ>g3wS;G1+aq;is>C}lI;*<!;*Ep~j
z=wE>Co@WPS;mlv9{jQyU+ufXy@7C#~#ho4zcAH^+K9m1m(MfM0Z@C-+Pbs`<Ti}P<
zcNAzJSSh?!uwn6yDorr45l#+Vu^$J%B2jRb3LdH87OlY{;@PJ&d5)bZb@q|y*RrWm
z7f~%9wo!M0t}6*mg)7MgI`%CWZ0tyc-PcmE=JQ`Qw2gdMi^T0)#kvPmZJ!$WK6>N(
zI%2^&DGDr(QYr}Xw1SHl*>vy7=UQz;JwNAzDlclCExtk{Axx)NrXqsA9A%3K-!hkn
z%!^UIHv{#D^EZuF4O+g8i}*xov&)-H_Z#$xjh-i^1A`>ZY=R11sp9G)v0UQowa(Vh
zgXP<^E7H+<YQz$8M6{Xz_NDJ-DTr^A5J!E)=K3B$vD&^(v>W%w=j@5DW-#Xzt!bk{
zdHFz_N&Xxa|6E!&LQkwBc;|w#)V;|Uv!vB`VXo!=9#W^}ds=yKjl!EuzqsAvlZVtF
zgkl)TBm|AcK31=$jzTzjKO(jgf7coMcs@C~&EAeYQ1Ba<_^#EL+ZL-EvqsP;@r97Y
z&AI%9Q1qJ;sKS1^cR}WvclGzP2rJP9ZtwWh@?zlz>X@I8lH+;A@#?1&&!5f*2n@~O
zqD5xS9`;5z%32fA`C_@vHPDM%JMh4b1|%HHvFG0}s820)RK8c~%m3hJlL+dG!6zbH
z_itPue+u$!?@k8MJ5cptFEOJ;>3b7*Uwyj$yVHBgKi8<X{a~s&x{shb)~s~C<)~=I
z{mnOUMt55I&^wph_U406bTy%A7_qYrCr3oTle)HwJRUhj5xe^Jgz-4PkO+cFWP<zC
zAH;XFf*BLTPbD+vL7^e|skcc58!b)jt4U~Kf)Ca6bp)n1KE4mKj24StZW5RC&Lhyn
zA-6s%t<}9YpK5>fZ^u&&V!Rjn#(QIZD8DNy;)LBc+rjF9;OvWzVFepqKMH*g^D=kb
zMdfC6cd18KbdT{vYQ0p9$Nt#z%HG(0NOWYnC>?znh5Dw3|B4k`09~$Q`CKh-`i0+b
zDR#e-Z%jDy<>^DbR`M2NN9PHPW=DsWZ;LfzKn(cnEkv<%7&|jMdwA7WGU!ia9*>mZ
zv)UNb#>`R1hL01SeUN?-A=4@iIcIm&4O%_L+rR!jPMet=YV~Mo_fZ<fgL6pZ?EdOZ
z%1o_!%4{`#rbXnI{&#a+2T9Uz)Tf6}(rr<UnRTg~jG0tBBb(<>X5#+he=#)VLl3xz
zHWP?gJ6n%VAqK2-r?)w~BhCfeUx+dl-JA<fy%4PVN?K`B@bpaqXu#7za@e=oTLSoL
zk^+9*d#}rrmDf;+fuk=_WOu}pV;Tz-9P)hqB3jriNh#(POUith+?nIX<*~{Aw63=u
zQmlgJ1}7n>GV!mRG}VuuMuto)<jAbx=0YtF-T8}$&AFZak%$R>AHq@QouU1{jkS|w
zP;*P3A?M3)eUl9`vydMa)98t_U|8sv=I~gyv9inY-siCM<YG3`veu@#=c(t(bvUtu
zPJabEuQiWsICB}jQ&YFGm;C<l>8S5!F?w5Zwl=*f@<pI!dZ2TSkyf;9?Jee|u)p(@
zE1#EK+;R??;PVl02Y;mLRnF+3OmgxZc-3gUoS<p;<lg6pz7^q8y1G0iwUJLAO`&%|
z-2VYrK&Zc+j`yF8MpcFBInJlZBe4VSF`HIz((J)tE6;dVgTysRvFT8_(o@7vUe$o$
zN0$Ks?vXIb`)5!K8Rp{y9->CGQYd)_U{20RpP}bKxy(9rKh-FD$@M$Nm8h+KXqxHv
z=$IxpI-7FL7}gbP!{@kS<q=p2XbB=>_6V?U)4(d0JY%uLL*xjtv=mLW6ixKPJrVNB
zqFmtr6|ibxb<>Wt&*5Kk<|O<x)%ASI%gEf4UE@;H<9slC@?T1eu~=~xq9qM%ROkxN
zqsCs*m;$W22B6r1b(a=i@*-F7N4t>rD-XjsbHup&!oXpk)GH%#sHtMz!F;LBMv+|#
zK;Iloevx56lSQc>LNw)|9k&)L70uD)k>%`NblxcxEnT7+pB|JFGoc+KJ5Ujw-jAjN
zG-;kA2v4~^JLwT@SH7S;_Y66UTjOx{1E?v!9We1q4Dun6nzg~yCEzrDV~kE1x5e!>
zeH8p7ZX1s4$8m)B26xdA!gvVE?J$I*g#eYGzoE}vCVz`*y};^#g}t+fJ-gv1SUGmg
zQf`Y|(XE&?*9!9(@OYH~XZ8pXtyMFNQF+LrGbfz#S*Lsg31sqECV(cI3`C6tUyPy`
zz?FB~6Dl%m7d@rf(~0-E`U1}e3IW!-E%UV9+bNtK1(Be(lG3+_=BrbrJ)v`?tCKye
z015{og2rNt38k6j%53FqatL6mA3!@Rjq&4#`X&eLa=Ilz?PjbGIUQ`Lk%(+45s504
zOlmakoflmQ=riXS_;e)vk$Ib%!%LFrL%{Wv1KC5uVb^$vH^e3YJIHpLd=@6@jh}Fm
zEc5QP2^vZPT#<?bjK%K9Rgez8AH|2r{wcIN08$M^6+d@0UGJVj?_D2=ZZl=<g?h`5
ze+9ZKnrX(Q2RGp2`OwrmmrD3aqvoH+Fc2n%i6Bv0G7yp{ovK5JYJK_@L|N>FacBJi
zDst|MR%CaDfqzV5cgQ77Z##MlWf+#r3z1ImDA0gMMZ;QYyf`>Od3YGxE;F#2_facQ
zLs&}I3$_lf$L!v&t?b?&vAFhOW;%jyu-c04bc|cqQ9c0N>0zKgAj3!Ewsr40EI_$1
zl19`DSK80~J6x<K9m`CA&|)*KMOeL=H5?g_!i*LmkKs;>W&{1j?JZi0>j%F&6Aon_
za$<s93DW%A#k69JW;>CC6Q6upyvoV}Dv;cmBA^W&hHSaXhOXPr;TT9u=mdZA-P<Jh
z?*I<&Dcp+O@rCFBNqzy-)~4XE_i6d`h_om6g2`M?gxvv}>SnbktWB0?7231PeA2A^
zWOt$K27A^;9|s9jrNv#N;eVZ?Q{}a(@``*VC|?cAIuMq1Fs$v`%;!={Rzyo24)sp5
zr<CMJ^X6lFb~n(n*4R_B4kX*9j%TICYqKtbGTJQ=vvh+bcTf1?l~TQ-DG6&cTidfP
z!N(Q2eirB3rG;CRqr+(~-^_;>MfGX@w%B?Hj=Ctbo;%+aiH9KLktX^)B%I2`T<qh(
zBq^+@6g+LnX%eG}mbah<480~sJxRX`!V5Aj*kmK@7sO!Z7f_wtY9UY4rloM5kK=jr
zz=?}?i|1^Z+-w+g)<GQMMb%fqasi+saZI2kQ+9p0vStX=b~ped533OCR!tyA!|=<c
zT=ZRYQ3n()+D`3wpS7z$R_Nua570lQ#S+X<sQLqaN)C{Ig6E$?)lbATP|MqmO#IvF
z?G>5k*(ObYjZiYh$`(Rgeo-WkE8+PyR^hP$P1uo8ka-fMxGq1sc+=Ma-Lw~+VXEta
zl9yPF#@iEixt_3lU#DGoVCJ=PdL7W$x+%BX6Cbv^Izu18?-SEkSY3(S_KM6i4)~D<
zoqQITFYr|+_~KOB$Oa3kHnOqP_Qd*UqHO`0n|S1A|FHl?a$`n)$twho<bH#`c0%v6
zraDaJ)1frIVG=AZ&<DJ4F~r+k_t?E%&_bQk$euXX>goUx*Vg5XtH26tnmo1uH-SrV
zE@wC~4&w1;o(959jPDdpga-2?=1J%O>X%Ouogg?NuCwY0v}8>BsA-vZ4hNDQ3@y2a
z!H=xl;YWhqJ9H>&PwqEqbRDfk-mefNDw$X#>kw#iv=bJ{5S>E(HGevMv3nnibUkX%
z4ylc0yTQUA_b>>)l~ywCc{Sx|<?hnT-G=3w0Pg^ZLJCYpwRLf(=ugsP&lG)4e@m6!
zPiYFQYoJiUb|O`iYPAA)3DXk$_(`8|S$}QTH+te!a6&b$2;Vk7mkMOo%@}clL90=^
z9FEK9On0y4i`#6x+E9}@YOEsHAH1*%5GuqNzE<~&^}+TdD1c-_CPnqJRSro+`L^)E
z_^udT3YhG@TZc2N-lyw(G68Y|BxI5<A!mVXD#|B)&mmu?1P3yTl;@w~n86G7td4+M
z=tv%Fb$H2fvS6wZFk?Z)byx@@Ze#}Of}K$p+y|<rZztecu@1#HiV;4rGa|s$5!$NY
zTWtp;i2PD{*O;6Zam7U&1bxR9_hl1F%&XRe;w3h^x@aDZ?07>`7k7Wd>f#w_x5$fF
zH0BR&s7PZ`24XM-BWPuTu6FSMAlGf!bDaqfQb<FcJXGk{#Lpx9uJm?p2%?*Q+gBX8
z&0b>*kHg!UUz*}|KQlBpEM#b&z)=?FBV#T4-mrJP$pf*+aWJD(#f&~BW;EZ`ADWqq
z%_MXP&uqc`2k_<7jH03J24#9Z`-GrZ^<nWkJKpsp%u4U0nxx6h7Z8vKS-E=%>tH9K
zo1$9@+Ri^Rv_HU17Hu1nV@B0*LRGds2n2A*_?}RDBr4_^^`_ec&-o7d#Z>_xrMvBO
zG<*qE4atG`#7F(!+e>%r@zkYHintoh6C>wY6LN;>$Qg+7<68xCZq?<~e#I{E<7&!N
z!l-!q2S7#I5gipfwaM5c@XA>Ha*(#_3l!-|#?MaZY5gsPpSylw{Ji-D`Sfxs)05;r
z!CW8RJAkON5Q)zh%C6rNt*eZXm+XOC41bA6SK71p(S}G$D-Ho(3hWub%3JISTU~nr
zfME<k&951Nx=#oxU6jZ8^rt`nc1rhXO=bRAsXtMVW&ri_L?qLUwZK&+_aH)KnJ;sy
z5;B-IWjC6|tR3Jz4LRBrJ!P7rzWNja|F#^uSxiwgjegfwX!IMvgbIkSrQ9=+G@4p!
zQH4gmi@$>@d*_foWd%hZWm1Mv*~c?mZGAJL<@N6vEtjDcwV$E42)9WjGtKTpiFe;e
z+GZCJPU|FhQ?kLzf!hIpjVEBIgiD?n@`CmPdLIiCr6OqjlT`H=c<s#uoL%z4ng#g>
z6(sk7K+@k{u;N1;)f95@GEqYscXgWOpfv3b4hBV%2u$hcJ81HMT&j>fq0~!5lm;t~
z!3?f3zL)L;Xnc~JQ&2mg3_bwey6%M^zMDV+ant#H(2M*PX}a~mNZ1O~`K$}bdb=h}
zBiZcEA*CA&e@H|cat~-U&vvOKP9shH+S?s9{AD*0*5`kr36S)`WQ0VrXWWoKC~t=j
zG#o}p2-_rc2R$xiuH+fc?jBx&O$KOuEZwAkBAoIWwZD($qB3rfpaVKFff2FmCd9wY
zlX0#AKAaB_lTo;aOi`Q@;+i-o+B=vUHUK-4splS4A!Iv7?zU*+U7F^^mQlo~S=A(=
zPs8{YWN1zu$vv1xQmE{BT=(g$kvym;>k)BBe<AzTdn!!hgGr+#0JVFC$)5%E5ahZA
z-CQpry5u$Ll`H0i6Qq)!f=Yf<hhNd{e{7G(r<PqY`3n*)ivTgM@o^>ab5ni5k!LJf
zw%Gq~aqHBr^i;pRK57YtcJDpPoc?qYMswx%#|cT{F!MVW1Z%W#w!UWZKlFq?9?*Mc
zUm^a`Lx<yiYPm;bTnT)AlO8N@);DQIn>EZpZ+Wa0eKkPL6(MZxWuASLf3&AV-pRfm
zp_#^#KQ1xp5geOXfAODUH=s?|P`ra^FjfS_+dfiWk##Wp#fu0t*s(Cbl((dyyHO+A
zvjLdO9byY~$^)$qRD+!I&}bsLtl&VyF~;>l6>2*l*jC14qza8jMFrh=DZU**BT6km
zAv)1Ib6}|z$tjFW#5&~zdMt<eWOQFzQ>HJlUV#$A`!fH`TwAnT89u-uzOMt&0eYlp
zo=IOtEQ$~q1>sT7rQ5>E2BiR))FjmwskAvw&8TC=`hsRu&<=cfdXT6e=fk6e!ku7T
z85I{qyV_903xYD8)M$!t3pUh*8Vb;cuN;1yI|%U!|KucV(Hi96b%~SMK4t#h4#uV)
zsKDG6b8D;)r;@)#F4fNsaL5~aqK7Z*WLxFC-sHQb{jH5*B5<W23l0d7i!e{kTmOqR
z8*A>!pHsaNZ@_b^ye>-(l%{=yn>RC7fI1SA&@U)ldMyIV09%+o3qHh^6y2z=$H{H7
zM+YWsnrxFdHz}3NRw%azmTfHyJY&x&v#&TF;(h-9@Pz$SewSAyY<m8WxOEBT(uXSo
z*QO+_kf!4f8T%aU12lky-XLS}+#9DimS_qfw5Q>vQsjy*Ra*Df{iKQV&=JT}4m^fD
z1&x$&%+d|)BN8U${jNJO9%%CZ=<ss+gHYbTgu1e~n1`elPP*?&a)%QqP40~mUf$#G
z?KCh&s?&)AxRLNQ)KS=p1Gwl$RX*%*xG*LKvjfy?aXdiYAFJfqPwy<P9^mA=)-cA`
z>fpyMuKK`z7Qk;XwP9q9X|cHOhM6jAsw{cT?BA^42djAF+dFIlG?Ph@0I<>n2!-j=
z;hoZ(6MntD1|nqwqyvT$+zz?ZPz<r$z_G?rL2O6EV^etKVA5WE1ZBiMF^G3Zy9<Cd
zrOM@{d)3uCKSfhxOFv_&y;ec{X(jjDfV5QkBItK9Utq4+DbVP$lWg!?N$!c|3)AS-
zXTq%|t*b47{d)N@)82^qu9&L^4AGbJa8ID^^zQhdviMP2`Q07zYVx*bDS-|=d;ohs
zgu7*EI2de7Lo)X<FJ0Tk7J&DoExICfwbxONi2od3%cWVT11CIY&)5YjVMt=X$Z+X(
zJo&`qo6<3ET~R%qUZyxwvYocTgw0dp<x5R|O_6t`tT=glO5l!^t(Q{*H#jnOU<2Ot
z$nb>ileeYH$BTBb{nH)BbYw_Q!glFHJXQf}q$V7brhkUKF=LejsNNBnpOOe<@5Xpt
zLVSZR$e-~nFZryAUuA5C6^VWPC5>`Mo{{R*icCq^@ci+tHGwH|@9;D^R*v5Vq(F;C
zU2|FR1)QH&eU14!2_NG2;xf5~-WIBv<jEkJEO|CwCV{LT*XpOp=M&<y94HQHMzg0R
zW7b?oDTvk(rSYQzqrIR!496Rv?m)R^>4}iQ*iz-BPWTgsm~dWtttpDTE~FnLvsHTa
zWIuekI{Aw5d&#?qKIoP#5oc?K&(HBQjwc$Q>r{wmpAw1BHTl{5TsR0(yn;!S_emG+
zv`%j6RM|x!xiJS4mGTv&>%5DH3(1>tlS{PnWiKC{J{RrDw|fCI6psgbv&%qX>^ZgU
zioiu{DT_e#ymA>6$~3&;{dyg-!(LV;8d;XNE}-Rs`|;HyR=Zq35q_!_I-JV`fTJpF
z9uxQs#gkzuJ2IKLiX{XGA;(|n3^dyt*c>xQb>Ah?Us}cy$BH8%-LgZXRTb%6fa+OM
zPHIbY1QjeD93JMP&<Rhwday<rO<V2N=jptnwm?e67CbLP<I49?Mjd~N7LpV}d9Vj+
z*#e4wRDMT3E3Z)V0rNR}AT}0rSn6TIOGA`@R%P46XgI+;Wl2x=nT*3nE4t|C_cSQ;
zRig6eZ4H&2o`#Zv{xaIwq1@0*;ARD3q@N~!NfO)Tp|LD{>m;M$7ON=+x<0h*r!Ztl
zr|j7gUw}-_twnl$(%0}?Szg8pg`U0w`UL6`bg24wkNA8k%YKI1MfoQEYT42-5g<<G
zgwH5+<$S=-vbX4dYN%M0E%ZL5+oAa4cabl&Y#FwgXU<=><M;2hIPOWS67~oy&7*jk
zAw#CjXZW5QM({`M`y@CZZ)lhZ%fW#Df)~oEQq5T3XxMuq<6<-!;qqa-yvNraHOh8&
zd7nLdvQ;U=k%BJPs;6#Q+B<?y*2C_Ns#OyibTC>yqqX29uGif0K(~3#$g>{tF!T)|
zOou;ldzGgFh@#D+|6DwrF|Q4jEBcN7+j!Q%X<wx9X(iz}3lI8yxzB}ATNWIcliE#6
z!ZF=as+&dQMHKudAT1R`;<*#C^#`G}n(5Q?kD={yU-$0NdY>%Hr3`W<vp&Dy*FBc<
z=5@b7E?)AHcj+$bTb@Vb*bje{c_o-sZ1!IT-oSo&%B#zL3+o+&dPQr@{@_aed$X{A
z^rkgNXIdR-rl5w=4Eg(I(~AHt`*TN6%?8=eP2I~)6)j;p$?FSU=S~kIxVO$FxH}-+
zMHl?w&Kr;AW&~;Y$M~Exd%RUYXew?m(8dIZe8edqLp^J68WKaH64OIljG0|Qu)9Wr
z+yyWsAn2@>fl3>IuV@3u&tnnRjB;hm!^Zlha7EUt3Br%5sbM*Jk2VB&j*?*zaWljH
zIsAz$R^kBiqV)o92hfR=>4bE?hmcM_+z(TJoa_GiG0@4VhD0Yrp#kOGd0_=i!!>oj
z8_E*HUe5aw`z=NczKnRtdjg-2!LvHfXR<G=$4_qqKf?unf*<)?{Gb7?;b%fR<LBG%
zRq)fh3V!~G1h{(e7%zTA_?iDP;it~|f5OiT`v5;Zx$ZKkn|D5v@be@zpltigjGrB8
zmGE<a9q6~OfuG|DM|u_faMF$U6{JPzHj=K?K|ec=1Nmq6Pi4Y^l>LHL$?od&$*Yy$
zy0hc(VNY@9Mvbf^b-yKmzUof^y<aea9)zHO(1t+&>TLl1CJpr2d_Ozj;WZ8Jm!Vwl
zV_b3FhlH;QZxg-_o)bCQc{8v~Up$g?56LUwi1w^PYY&6+l_OnnT30L01*A_QaDd~E
zs87BUz~}G-zPm^3S5gb^-V_NTD>1-TkLi84A%cWIf2fnhjQN|P-(^SC1*mh+0@CtM
z0!;$FWhZTcS4yLEm8+3nWbn>s5OLl=0C9iuoUi);5El|fh|9(%_MO#v=i`ER?(JH&
zRp#PesGWNr;b_23bipRxJuC9#p~TZz;vAMJ<%JiEB_?8t0AVLr#;;g8N*jUS4c-0$
zzmb*kd;h~G{PwO6zu`Qj-dDlz_wNJLk0aD$>InS43IkDAoT*%`I{Y@<3-}$x_<b5$
z%9HER&^u!jQ_fVu@1!nOTV?z<LpYv5INs$ZLa>R%GX{QZV2OcP;(0D{2wo^RpE2Q=
zLya%QD&xAaZcv+a1ATqwrtqNi-UCqg*D&-0?`&vl(`ijVSZC~i!uFz-n5(px%<YZD
z_P#Z>HxNOaa<%rX%63Qf?LElt-G=SGXlkzow%4*sdnxHo@0|<pwISp2Mr~?mW8bC`
zYa0o5cg=*lL3VO5Jxh64lv#+H=2y7(z@`Oy+rR9C9w1pC`&~psY@`%!2S9Q|SSfsE
z7PRxlDW9)zT)xO3L;6}^r`V51Z*kj@pkun}%F-uLZrMA~cG1^4N>NuP@KYe!p9&;j
zPVbrQ%NY$QVJU3Rw}kQSiWlQMm00cgO5Xsu?&w_I_%?Jkjc*8!@44N6<NNDf7+(;N
zZ}Xeb4(|B%AK%)})r_x0n*aEo5aX+98s94cG`<OM@c44<R~g?!+W2Z$KfarAeC<0`
zH@=fyOyg@25951hm*4p6zH7|iO*p<2Co7Ln=~T`5GMxV7YZA}nYu3dW-)FuU9N(N7
zJic!`UuAsb+lcYCyuaG<-3JXQPjswqe6`HuyU+&Dll;wZe68Ox=I?Q&^Bby+FTA?(
zWp(u*-`O@izOD{qe1#P>z9l(4zAc@q8DB4LGacq@Qsl_9P4cX!BTBxqO`uDLS{%cM
z(D|ECEcPE|O^OW2Yzny94xh+d%uc0MtS&_AK3v)$M|J^VEk2X>{+%}4>UbR<Iz88<
zc}gVrNs1H&2X>4*5?5SQ1N5unw1f+;HqL~MNNM^$sMO6n;;_|`wJMO^h%g0v**M!l
z2Voa0zo+_qP$zQ(Ko{>1-4q&Ds1t8Q>kbxb0~+j)B#BCukDwx5B_;5llgcq3^H?wy
z08csdb+>A&-WY217aQmE-yP^`=8y&E09~G~7z^><nRP`#qHZ_GJCtV7Nzo=#`~%^{
z12u77X>}Y~E#Yl%Eub@lvUGdWVMcbDgE*e&D_B77=>Ve`rTLHPjJ2Ig{q}5RPrnOG
ziES7T(0H>)0Cz3~jvT<_7F#Ik*z~D(PX2t4>?2HqOx6+*Gj{=bEx3&2Re#D`sFlU%
zP7g*eI!8w0feO|0S17Ql*b$-@KHcxr7N0ZOuamc>F$j%U*v?UBk$yKdhgwnsR4Df;
z`-hYc4sv&^zwvY41g!TG+C6LR-dZ+t^mJjrU?jtJY&OBw#SGW`b_|!A<3rw8Xx<Vn
zK~T#TE)uh}eVQ0Yjl{Vods^h<;~d{)m$UdmL=1I(1w&rF+G}!dw`PY<<{^f{5c47$
z8*<T!a=U?|mH(bv@z2-4+|%xDkx?Fl#^;CBX+n{!C0p&}Ne^bPP_QdSqdbH+#%#}P
z<6xD%iQOB($*3?LpQqq7aZ%deGY4OIgNwc+do`j5aNS&NH1CHyiB0{4Vl?A8?pw?G
z2mUdd`N#ZASLGiwFI^A+h`;Cmo`1ZZZ19f@7q5eV3{3XtAKjDxj(>z#<{zW|_{Zo<
z{G-Fg>iI{}gIDJt(#3zlKi+w;8vd~}>0j`V<kY|CA4AJ%oqA@{I(_a{(>lG7YT_T^
z5Bl?uvIk83<BMBiaqVXP{qq^bKL)<W{3HK}iGKul^yeRsV7={u)$xxlr36>;8wA%4
zX1MyNR^=a~nST_NUY&o0Yy4xhnSYGFD*tHkKo$P6iHEobcw^r2TMYiu19hw44*w(n
zh$&_MG5R0*$LOo`kMQdF$J0rb_($&~KmJh{K+au<R?qZXh=1gvx)gJm`A51l`!n<?
zP&gZN25>X~V&b3iqe@~#qQHK;e9qUs6|EOKxeC^f$$KWbKM~gC^H5WHE5&d>FQrN1
zJyVGI#!h)2Js|zdie0AsMwkyhM}+f&X12pr-yA(lBdeW2ai#na(BNK&@hwFDIKByu
zF90Y;>2Sy|K}4I6yeue_`z;HDi_?i-x5!Yw?jezo0gNRsUmYy$!Ms^m{yUU&o6Poi
z50R4^ZO@(%sB~&4eCStbS+0VHV(CMRcE)ZgjO(+@{jCR#I40-SbOb_83c&q(@;)L-
zxr5ayXGA;Y;jv0t3Y&U;No|d{XSEG*NyZJ9B7R>e&Ob;r@MJaH-6G#C(fHmrAoJ&<
zHJV?%S>Un;U@y8_kXpPi8<5(A)#5J!!OC9;2%lENm#_N=l>1?-*75VQFuaxR7gIdA
zxh*g=0Z3z64fvw`azAaiZt3^k6+>a;Wi_Eh=2Q%#&4Oa&7^7P1)07!-T$zHkw-52#
zucmKS!<?#8yZjr@j5jMFhy@X)ZlTBbT!KNAornPWyasRl=-8?etTsU$!CFlWdp=Fl
zWK8oYKNk}qc_vdN{TVBTLr2p?W+VwT2ksIkmjy+$obn+NU@!PnMAIE|q2&IGB^gp1
z#cSUSLc$?==FSP=h%4^93uXr(6tl~9aiMhMh@v}-1+}%3e=}uS-E^YuC}6_5V=WY$
zSr)((83^>QG~F+peT%ickJto}JCylN(cOAn#ivBVdv&5u!~;u}04j$OEL<H$e^CBB
z%nBxms-rdea9Y`o&%xq3yS^JpNjcw6$G+z!5FL3I05f-tg<u`yrFHlO6eLiUm-qQZ
z#@@|h<GmZ(tYym2N=!O<HYR|ARFeA`$=eop!`wI%PD`E=ny;RbY4TBT`^W`Q;wGA-
zvEd!#d<&xS^0TC%EC8#;ePlFFq}?v3QhdL`<S4rnF=xi->fn%1sgG*$(9=o)!q8bf
zdna3qejbvOcM29s?kEdhG>-9C<yKnTtJPIP?$LU~8)QMS{d9)x!38g|J(%CtU^&PK
zQ<gQtxkHsEQ78l1_hIg=Y5xz#{=##4f8%N8)OwCJ8|Q7nC=_cFWjDkj259)14kTW{
zjH@nwFKb8N>mb|lCP!u+0F^%gSH8IL__Q))8@F3tVYGWeMg0Y@OA1%NL-70{srNJ2
zSXU{3pRd1`E3|#D+UDd(fq5nsHnjyPkKNDA&}&)J6xU(0mAB0|w4vR8lL(H5SMv8M
zhZ7jDhoPPESP|Hkf1>(bTB3U9a%emlaZg$3KTXq;2qly;bCsd(2m;J32rzAZjr4Z5
zW|hHG`zQcIOktAyCnBq;kDAy}yIU7i*%=|Zi#a1}{#2l?t!;S!)x|(gA2*y5;|cb?
zk~=SmIcVcGg5KTdS<QGHV9fmmghih1e&JI+hxGc)UY2U6y;oYEWK^RjdML5F?=M6v
zFWhgiz;aFyNu`~p5l5pi;%>J}9)90q1HQl!btOJZY6|neV&H%7G}5_}2AtBDpqE%`
z)K~Dvp0FP%II!{(94MAx++I8e$?olMg;72K0*vaj*0c(H5RPyaB9b0y%buGkhg?j^
z8WW_Y7d?WjaV(&>$gb?Y&sblN7SsB&zrgEjV7%}iFAW1Ex>7M58)10`FuOEZAoYD%
zii&lQ;D3_mBTk%D>bJQXo}uTm)~0x}<_{W|pv!bm6C=-(Co%ednpOE_;&ZVtQ5^T<
z-(hXvt?f$!D)<Q6Ref51#y+Kc0<F^oeH}}l2Lpv5O4#qJi)ET~nfjI1vbJMXtmoOA
z2sm|-zMgaOkjcE03Bb29%<(5!O>vFsD5+mLL4Q5`QSPM-j@3&qCI~vmhSU=Ps?zsf
zR((7-a(?voBASC$lX(vQz%iAY^G=ht-U%(fxsh5d`bv{G-b^bQkn^t~lX)f*<tST-
zl(^V~1ZfFQ{KVgIx?1Aq5Xo~0i-T+$d=K=q^NP`rA9q@_MvVW8#=*v2VFueA>J`oN
zFKz#UOJ`Br#p)81y<y%M@5`L1eANm^J+wDXeQ_r5!wWa*U0%x=#E7?*J>i1n!F^<y
z?&kCkAL#UE47C?_p!_zePKVw+(2;3)3<%M=s|#jse$AqJKIuPk0PTAmrvUxnerSE>
zi5Sg)8DIK>#@XWU)3WBD@#*p_8Ebzf^y}96u$=NcWAW!SwD7e}Y)_SVcuUxT$~(qf
z1GL>@VARagHi|u_Z4|TNMls2aQadicC}Kzs?GuyS;gs3Wd&N#NU^|3}`y!6n<Wbz)
zcZBzW9mfxY*20UUXd`HQ-_}U(<rTc#i)dfjDK!T7l@%=?QfYp)J!6!ayF`uQyj00O
zi%76V=n3RfpeVdg&ppKQa<3*zq@>d)!sCiTQ@9V->+a`(Nd(_bJSv%OYq9D4o7T*u
zZsz@E<~WykxU~q+!$@px==uwV&Zh4}Pcimu;sykb2$cq_SRyTe`8lQ7<7thzH30QI
zN{ek0@PX6F2TmzAE>o{+nlbVQPAykn|CI^58wv9E;iwBCC!RzHW`!>Z%4|mcr;y}S
z@8T65sL+Z&H<4HL4XuPG7Prn^_!8?yCViZ?CAVm%piXv5a({>UCs|V>L9}1C%NHc~
zR(#<dU`3hbz*_}4X|fB(nzJTHf}Y&Z)=GN$1QqKaO`;9Nt-kT)EL}^|fi_ctoT6%F
zLBRQfS^lR>({2kF^0hTN9~@Z~zRYB00Z^Pn%f-)k-JSBw3q6GegxO1y=k{Q(Cbfj2
z-WY7Q=R3xgu%P}vh`|g>!<)RNm*+8<u~oqQ)elUU4(21l!qhm6Cksx?2<1K}-J^pl
zxfh3M9;IJIcfr`5ReE_9ch{;)cYFQ1YoT{nQ|s;>>h8@j?yi=(yIp#BPm1nBu)ApK
z<)hqPTWzi)d9DVCViugMNa^Lq7Alsk6>H1I9t~m}7fZFJoz?D7ECg7nH2ncK!oEa>
z!+ci3Aq!eal!$iRY?<93N|qV^ln`fGvCsqFq$G9;#t(v)D%JVTV)jukp_Y-a#jm~v
z%a)qU{%T>%ZzY;%ln5J2>c=ImKwJn9I#hc36pi;8yHJoU`;NrW-XqELJUL#+u}m99
z4;ezH>E6sO*btucK&Ktf-OOT*%)`~x2U(HBLNMzVQ1)Y(Fqb9w%OP4$?g;utViHeN
zF&l%-=esro8vg3CaZba2r7gZnW<4X-JFcO(gVnL(*lms)Yt-l~!tV(0t?G@2JY7~B
zm-;X3dh*(uAfHH;kAX^aehR5H7G#lIw)pg;fU2Ae0R84Sg?{hje(~ItJA{960luGZ
zyq{>2w~7}(&N1ahmnsvQ>bW%m%5Z%6Q2$<OJj*Ye$Fu0NKAuYDLjA^FcG;w_SW*rX
z|NC_USf{lJ3!@PWzzTiX_qhu5{+KwQqBhgcnsGIvtw*PoV@(Z}#eI>}z$H&uxz8tB
z91AU~3!o+13aiYo+Qd9_6QNoYMVIs@CSwy%8h&Hk1>unYP)?MwW%f1VD2KP3bgJ5Z
z2Xp(214aAy7$Clk?OX7WzoE@p2Hy(Eu^l4hOr6BSp}2|YU+K`?%w#2ZJhYVZ%QS4{
zjZ4P-vO{cf(<<<M-^2vZy&61q40vA0rZQ0l-QCQ9=gorz&za{Kp8h&K-#7DzryjvG
z0~-l4!-Ju2rEyhwV$ARy)8IK{;C~J_byUw&mJ5|FAVAe2<+}eQAD;{OdASAq$!k)j
zpQW*;e)ehoEHwI=hy6@8^3Y3_q1bNm6}_L{_?%RsKilznS%r2^&x`|vqC;aDMfXF8
zYMMberxh!fml@7w5!C6A*l9Q=vHO&=#_;_WZCu9{1)rZO*W&}b@j1pA_gZ{zX*@5%
z=S!D0cn<C-c;3hi)_VIztgjCdkT=TB>r3#VLWE}md{Mq^&T)l1E-^nS!r`2_WSpPY
zoOPa-;`=0cR`V_zdF+-Kx&Lir7#~fs)7_;e{DvdE5sbg(c;%lG8mk|xbO(8;*C@ev
z8HXxK?(KnWD0z-wL^9i==@+$0zgT_=168GbK2oW&;7)j~ug}lfeFRT?0na<wdy>YV
z#Qs+fg&BKbCHF|m3fzxUu8>~zX9IsbwB|_Y9G-cX7!R!973{}z;8sDUgeNryf!NCr
z(EFF;fuX<t8L<vrTZQWC5`<Upzl8GNjsB076EipZ-$?~5J*xJv<eU1hTgv^<vqAr%
zrCR^Zuz$(i{}<(c{fA!m@4uvS|3|t1?SEDszq$V)(SHo~f5904vpD|wrv7uw*)?z}
z1`0+a9~^j>FnzzcKwVk?q=|Dq%M*7HTYUWj);gT>%YLNTvMW{g6F!ROpy9**i;uP(
z8A-d{FtQg-VhEjrWuz2b36?y3QD3Lnzob#!tWNI`uym%-5tz|Z6Q|98fA}qQbJM6u
zdv?ztd)B28>6IML1a~|~`@?701J@e+!@Z-drGMHpilHB$<jH`3l!=Wo<hWYnoSvvq
zanX}<I@+*p{-VpWEN<GI*~6;GF@nJ2|L{hz_~$O-P>45}oaVQZ?nYrR$=!?Y+{OrV
zREPSgk?9d;XojRm7%OnAXy4;5x{|UT?&oP2ESy4;yHPN+ug`4;R8e$eSyD^d^|?m*
zCYHPo7;!@wZnv0V*cKwTT{`GM;KZald(qQXGmJc4uDxhOjsPXsJ(1rO;AgrL&4GtW
zIpkttMB*Kbx}VG9@b<&gp^|2f0D{VkW?MHjlsvVxP4hQAD*MSh(d7&vHN?vDVWInV
zBek2tgY<P1841BOwDuu%o7K`|=`a&V7m45k=*K*}eSw|kBC|rTSJKYW(0i*w&Cg#0
z2|2Ej&zD2~3iD1rFkB;z^YT0Hp-^n>vlNPb2wLgs%#PRtZKsIa^&&!^)tnCbKq$TQ
zUIlm_gZF#D)M1xOc2Y0we$g5{X;?ciU=*JhaP&5Njnz&sp5Xf8mBk$|0dapsQQ)M<
z>e2S1nUPh4Gn<2jicX68+qCO%5>DBG-*HablB01r2WOhm!z3*@6DD-;AA*e7j8AF2
zN}!LJ_X2b@dc%k^u!*U7GoBnqT@S|Q661S9N3Ofch)A@Q?Z#gB1Y?UONP(qigpx5m
zL^DtZR|$D?97K<A&b!@++qJE#Kl|a!4oj5QXD05A>U-Jbzk~Iwer=8yVE)hTxEcDg
z?gwg%&)Y8R@;erve-iRIF-hLdPF*1Nks(CtyJ&zPhxqwQb|U?Ghmo5Eoe0B`%D;XZ
zCVF=iQ#nOhF{k5L3Lnh!!W|+3VkAYo_N%jXf27j-4vw2-X?lWB$+-;~D9c5MyaR>|
zh{QDWDNn=iAXi;xh7S|Hbcz+H{&t8KJKwEzq!;caRc1G2-UBVThG1RE{UQ-lvFjeB
zlGmTXg@s4uI=wJ(b*ZjDkPtsj?$2GyL!udP{QD7PV>+^m18FPTtVUP@IW|uF5|T~v
zIT6ATg#s>7fDb78j2IZ!jqhtJ^pGeNO@)#~A@wnz|9nmW{HhOL(dTn0K6lmp#)V36
ze16^7=V!;~Mw)&G^N-J;8v0r+J})ZQ+q2^H&*D2Qf@NFM4YqTbZr_f$JX&Kfr(oKj
zMdr4(0IIzQ)$%-0UcJcjIy+)37R7B<d1VxuOtNF?d02XizE4j%d<W}kO)eY#E=$J^
zU6ug7chBfB+HsChk8Maf-Q%G3RQUvfae6p3+@*kaytA#KHY^wCH++9P8ws}oSG#*B
z3F_#lSWqKA4F7lVve2H`Eo}q?D2lQ;|H6)E55#j#JL+cH^%KWvtZy~UT;6R^FSiDB
z#Xm-oUECibTC&0~wcv8O-}#}%YOPD={w)dE2Y?kPmQlPG_W)fpJ0c4j&P9~u<uf)f
z4TCOvLKkYQOQ>s{R(jtGjCO~n|2E=%@GHwW@8)*YLwf1)!lj#Vt~QwT;Z9b{Il^W0
z_{~J`YAeGJkOr)pof^l{t_0y0$r111K;fI17_50UaF#aYX<m)hlBe-ScGmxN3qX4_
z_L;NnAog$A@3gmHc;fdfwHGo|*iv5gJKg{L4FmXVnE`)%lN~VuN<EUac*}?GGu;rR
z%ZX4Z;<^dSUfB+1mD{x#N(cWK%BWzDp<tei^2m=2ORAqe0&V<^ZG6IQq>?TmI((Ak
z2rCnBLLoc^BHoLopXJgGC>zbM%LZDPIK2Ho@bHRCb^I$u4fTu?&vMR}8n}&!^5MZu
z&QBwDm(Wf{%TfG9XRS^gsnP1q$nL+?_62MD^kYH(_C%K;UB<#wJNlXoQn<xS*kpnt
zdC(`HqpO+Ysl;%TnpuNGnI)r4YNp=ZbHV=I4I}A!nw)g>q7N2G7z${t5zJ=T!5=lt
zcr_kKP^yf!YUdNwK(ZfXrSobrYv6$k>{;ptuT<RkX2{3ktlt*>#`NMHj&2}Bt`_BK
z@2%X_z*4{Sv;4{z{lVu3O~EDj#5;!Cxt4A!Ob(}mxplu=_gk5QC=W0@-6rm)c4k}F
zjv)Q&?p;6|Uwlr>UVaAFN8Th{9Sg}SDL3&Y^&~EJ5>*q+IHVP+PP@PcN}ro>TQ`az
z*5O{<g5(j=kNfZr2@V(*1WH`}5rz_1zw-!<I?92*`V7b$j~(AzqBqhG8qrF}cg8jX
zp^dG>vCW7;t_|(@-~}|Y7#evzZw#{U-s%~EOKEe9upYktiwN`NW@e;MGtK^pFu(B^
zXB8OhKW~m$|E1<HILJ@t@Y2}Am}a61u4EJc6`<S1oPtGX!~;=fW;*m}7trpIE6B>8
z0ov^-j?nTjTDm=BIzlVO`wY{L`pOl&W9FHLDRf|xMmp+fer;8ss`_2+fonB8zQ@pD
zlF@DE7|VFHe!g1HIi}m$^#L7O@Q_3D_-4jJBsUQ$nmGHGex|kO51Q_cJ{8X)PztRq
z>%IU)XKf-x?-#Pp*#OA-4dqi&Vm*`?#3h!A5>2th_bJOzxT`bENXXWH+7Pm@0-I5e
z<^q8EG+z;ChiVdO2}`7*SYjoX_~5U~_AZkXsm&`k0!yr6PmB)-05S(CD~@tJra5ZN
zc#ntW^u`!1K{H&>H!D;o)B^~`IgWXwYZ8|kfk4z@Ya<-{?~scjNUCX)-<ca}tka$*
z`90}rjp{8xo_V8c(k*qB>~nK|S=Px3cJK05q}PJUqI9cg94r1EnVL)6qRD)3J)E%u
zdcTL?CsQSqsyE|D6cg|n#iDyC*ca?qn$p1hsZerfQ#6O}mjTw>IgBpKirBS*@#2s>
z<Dk~U;}B`YI;lx58@vv}NN$=uK3W_V<d7eYO_N8pN|EY3)Rye$!cf9fzyQEgvm05<
z*dC5qDo(kAqnkJ?f_8laRHsTfe#bF~SmNDF?Ko0rT_eG<Hvzk}JHBsIS96_6ZabIn
zjqe-Q_33+b=hW23{c?R19&74D9wLpZXXAl(!h!Bz9|NNq*$Pn6E|fNPi?NQ3PLrp^
zit)lYd+|75CtWqk+8^nm4v+K8nw*UTW=RP}aaSu!ePNcoUJHkasoFa!u=Bl@^8_O)
zU9|qvA&9RAMh?w~1gd_sQr)Q!Hj+HI1mSVRfnYFUHE))Uj{o^Gnp1s11GqWR79h+M
zKdbg)ZF7)nX>C#lKe2Fr&czs!pL4i2nq5g7-~~m6hD!)@SYQfTM;=_YPH#lsub6lq
z7?>t+%mSkZKC}tL4^f}ehu}a8132Y|Hl=1glpmOE1r%2R_LYPmn%jWRLTp&V;hlmC
zOfb}x8id#YyX^stH4^HA13(o73w%4m;O!RapzNbSk?t-Nb|&K4Gbzi^t)9Zyk|ieH
zg>AVTk;f?hxnFT;rILFFndJR!t(<t01|6JkmuuM+2Q7+PHYc9B<H>j8nHo+n#)ioc
z=ESM&hZWLAg|>CI3h88T0excmSjqhaLhae>3USK4t&R*J@y+ChaYDJQ{Gc@X`PJbm
z*_{GAW={#?K;4|Q3}2c&c(wH*IsJ-N>Ho2hPA|b`?Q)1sa^ENE4k$a)e^!&g%;tD2
z%QgwP)E#KYu7zLfdbVqna$*hQY@Kgv(Ikhh<Mo`iG!_PAkzP3#hLjV_WcTL~lMvE!
z|2xK&&=w2y5L)rY(&JDX-Gz=8{_*N<9pm<5PDxDx<#Rz4PjubDi+N@cqXZt&FVdVI
zx8WlmS(Jn%44h8hgXvNcYX^~4vl$u3A<U8i>WU0--NHP}8^p#ddDOtfp2|*eS54u~
zni|Ll`qvbe0)6M)e^kB$*?`v0f*C6kn5=jM1$+)QeGZk}8Pr$_0*b^om`^yI;D0Fj
zkQ`-c9fRTg97+Zk#_$Ci@!<$!?H<6|(gTQa4Wa6a3OY|N#ZN)^WK&X5LtY<5KVa&#
zvvtXKg(Mr)iz~$`+id8?O%_WDSQ!!;e!|z?l>@H}Vj_|j6vdS7{xQODTEZeU<~xOW
z6wHlh20^lm8dU~Ih_>iJAM<%^yA*o_CR0}!_P^<w{6Bu*H!D_re$hB@FdUzAjCfL6
zEyFM4#FRaNUO8L~`3N3&v+RmV-v$7cwOD?!?yoSgq<lk_@R4dhY1o;RkgJz_*}t6A
zD5r@m<*zzs4@`p!EmgS(sL|@Pm(B6xwg}H{mqfhT*AZ7yC2|NrayV!v2mC>IlBu7Y
z{cXm2#C3-CeMDhLmL96MHa31k3l=l3_LS~jjC>MiG$k*9DC{BjHkpS1N=<=V!hzcI
zvf(d)@i-}~LQdC8_o>OqYRh*uU_Cr?-^>pP$|E{-am7my2N`4W1GXLjYr5xw>sP_o
zZB>?!fv-A#`GxXnoU#(7L!`bgJ=4lCU<e|2NDc_E-&g9wOMT#?u%8Ixs>}94?Dv@8
zvc192KG)VZFMAm1fgtmw9jON1b(hTa>y2`(WSOZJ(tX<&xjZI7_!lG6RtgQ(YiW-^
zz4RqkXJWHRfw1hmg5M&fbD9+QSV&HnoJA?V4wgHnq@d&kc?kk?b^!{=d<)*DgFCxY
zC|pcDzZgCrr_T?QS`~l)N|K+hD5s29NYEu`4J0IiR3sR9hrSI*B|heE79tjz6Uv9u
z`f?HzA}!$0P&(=j1?5mH@@N#6bigpcC_4*CN+Q3Bw9g?y2{N+43NM4~bF?z}7@U&b
zEd*a-hDyddhdiRd%6F)dR+sv#6#xr&at1ZWg(!THG`I&IZbvkY0D8g%fJn}*kY>E0
zy!d}}%9~SsJ3(zyqHB?=YLo-Kh6--!o=L~pHGyAsNU)%wO0;CJh#~RC`;+7~PWhZt
zBb2XzyGWZ8=(r%K{FgE}0$ECEpekMT%a^stpo*zQx<7@V_f~pdU+H<N@myntpeJ>k
zng5+ua>6v8KA*ig<MU$#AtU8x$3Ol^uvm3qw~Y<=`OGVrsTxC8+8R(#8-66@^R1wL
zb%4f~H!IO$;szql!!fOrrHXlpVS7EWy${XpozPf|A743YT5edcKh~>VZW`w<p5b|+
zVusaT=KYmeXG{y7ziy)jbtY@-N$W(Nd&#{1wW1|UPxx~u1EeVk(vA|I4?J=dRLRXk
zo?oJ~&|)zh5~~UBWPXRJrL)l}RNGxE=;W7Hd^u1_d&j)6)=2KhErQO`S-={Z=SdRe
zrx_3LS~NU#!}DyF@^Hi6Xm9aj;Kg9anC9qc<vBvUsWUHXa+|bdvnFn6%#AIqG1E=O
z>8OzO!#i>&hO6Dq|DWLH=*#|i@hEt{r8cy<ZE5l*9Kn^Az}|y{(L-IvaA-^3#2YTw
zF!KhjLCg;@AxboO)7@HwlgdQCMbhUb6yqFrl3WAB;g8a3BiW<COfv7~7N`=oa0Eb7
z=bty7gZMPmS5|#MHT3%f(&V%1-9U+H-lsVZxg{74rZL7QF=j@MDDpi8Y}m7CCy_bK
zv!m9%ME;-uiK@B!t*fe<o>>=sj3Wo*D5j-}j+R~sLit~6$bW4;l~yLV{)m~^gvUqI
ztIW-q7hMPze*7=PuYEY2^LTt`w0Ws>f#&7V37VI~@JIP(y>2|YA~2~f^sKHQn3o0i
z5ZY4jR#OdLDbf3@L}<Y}U1U%hf-w$XT7tDftKXiZ!1ToP0LhN`7!q|1=OLQti}_Tr
zQ7^K@(ASJ5>kk`Nu7x-`d_k<&bY3;l%Eb_-?`UoABu~s0R(4yNh!gj}<g!!MDfYhv
ziHZP`1{}A63k4unpCy;^SynPgtn5u$hE86!*BR3neut@<57KL&lh3+D!=orb=%y^G
z2EmjPC0%{$<8hdm&-<-+L3$mk&e`_!*yCm;D?kLTHH(A0AK~Bq?sL_#kqbH-@sPXN
z((>mRF*#28C}6BXR}iE}g&=JbsI`HURgJ(PzM2RvRZ`B>K_&hxsYTV56hh-JQHP!3
zbyC^C$cImr_$qX!UqG&?Nmk_`ywu$epK#Jcw6Y%Gk`c`w!<E6BQ!OsYr+uNch8HP*
z-=P)gj1Qb)wbdy<8Eu!-fY2tlvdefE3?`0a8bn919y+uYzmxqEv+GdTbjh;WeRaj}
z90(g_2i)0W2`IP;$0YZMfm+hgJAsDBZ~&>jp@E$H=#)oWmAzMR==lzBN05_Hq^ro$
z!A*gZdor2%<V|>$^V_mer}idW?Fp8FM=(v{RZ^{!x*ib@vON}dkWr?o6OgA^1CeGz
zY?}YItr(DAf|XN5hsAbMxLR4seKHo_M=QStm|9pRxqDGQPdm+N*4##%w@xx>w;1(>
z#v;>DF?Yy}t1tYW7Yo^WVKp68q2+H=g358lQ&B-jIpArwY2K&k$m}%l_<?EOQ9~W#
zlH(M-`q=DWIb-qb<t(cnx+CZ;A?nUo7mGtGoCz7NGDGp84p$!-dDFA#Y*o_aV~Ae$
zy$ZvA2OOTiTtOI6N9ukBdjH2|Bu7gz5SWvXoB*C+&PVZDw$it8ZSfn@hG#muqZ2GM
z4&n68q{)bQ9`lOn@L)=z3FPS`Wu=dq;$iv*g^1~+T~Nl<J$*v+l6Q<I1H>Ue6RX^6
zt_@T7J=E5x4aTd@oH%x_FKq}cR6<}}s-wcBx0Whr%HdtAHvauebP$WMa+7_|`Bu1x
zL0JLC?b#6p4{70&p*OGznw>Ns_>VH<W6VGlcEPe?H|W{^c<wgq{7aeB6w`&#=_W7U
zEH<CCjbnYFpU0pdc@KqbI%D(qe9U<fZrs+ECLaLO#Li)9nf)&0{{cXY<~rn)OOd@T
zn}37pzEreJ$}Uy#mFcPMl*&7M1Ntpe(RC=VT8cTm%jgy9jXq^9lvf9^oLn{nKBzIe
zKS3FOv4R2xUQ5akF+|%=Z){q^QORw+A^@%#sAUK0`_Mup&%j{LybI?G*QSDs1$a*>
zaofa&XDi@Q+;X;<zIeok1(z}0_ohwkUX$EgiRNern=~D_ggFz3StU1GR&n`75{)Bq
z1ny(oNE=?nJ~lw|g*1@{llSTkWVim|08|%#h=ic1Z=3c#W=E_`(<Xihm;DyYzWX6=
z`Ybp6Q^%3WdAgP9fE<0!foRoWXwm48&-WOU#=GaSwKUQ5?ONP97pE}qV<?Q<o0Cnf
zv?1-`j%bZgQK9(^)h*bLMYOZa$U9E@SYdsP(~}RwALX_J07t^gQRu|N^S<->z7y4{
z<##7N&GmA*-qL+B%!LoFF!9hr$<q(i-MrHTL&OK5!Q@5|+LB(i2XlonA8-Y=z2EsS
zNfVJpds_r4+%P2z;%0C|G%cj#$g!?C9^Z5NBIyCA7HONp=XMDewJ{u6az${r;XW~b
zSPh^sEXA=dyB)@=PSnSDu?YFuoi81ap+rSIXw%eps`)5%&%K<K{Olrx^$_&iw2Kyk
zd<ptAaH+;r2)$A)sLQx+B;Ai`hNmf(SB-r9-leeKf-f2Q|M(oFJ)c(Enx3yJNYtM$
z;wnkwMKO&c<e64S!g<L(C4kmNZMwhHo4y*}?r@FLmPIj|XvgUsdSchZUKeTzu2ocC
z+ad0=3ZU>-PL*?bT|2quMi=oidCJ$?E(8o}`N(&b0+cNB3cA@5aOVfOyn|rY2B4Nx
zZj#%EDJqVH)tNWbjp^)fnJQj_F!kwsNu7x;<}ReYr0T3PWRJ&?`WI-s0Q}>@4!J@c
z19PE={l$|@hzzH+Rgz08IPJ4DWfM+L#x0`FN|3*CTFC4C-p-NLIwck4r`3bK6T&pr
z?b$Np6O37MuckEPmxt0uvO6DCV<-;1`5WPVlv7aP<$vQJ2j&fNa-V47UvtWRK+~Jp
zN~+^%OE&4F<l#yxdk_-}oB+~o=PSre#QS?aTf;a~x(TL}JZ!6#Jb(*oQW41=9nA4A
z$=!grrFU17E>!4Y-?J3>p4?lBy+AWZFZq6)$paY$wJ(VNXq@OBa3?m@kT9lHd~{L@
zHI`T@xhFL=V<KLOF`~qHXb#?k_cboANzo=0bd7a-moN(Y!ti^vCCzXPhrusC01VIe
z7b#et=NqzH5eRr+if<QQp|h^Eg5}U!Jd~HhF}*-($eJ8*gY-)CsDJ=U?W^Cdt0_!p
z@^^1m)<WAN6DUBx_Zch<5s4Bh{$TzC%g@V;GWnu&1BETbH$-bUNLO+58T4t=2?A-y
z=Q=#y9_Q$uV86)T_k09WNk<YMX&sRLrP}OD&9^BN9lghPY(E)W)pf=nD~0fu(Q`gF
zidoK^s*Bm#^_bmq`V5l=VAL1kLaQDwTtr{d@#NWy8<~U2($~`S=ZU7<V$=1gY3(bt
zJj-99o=t@*k764Z4l)WuN7Lx56Vq&~3p`E~aI``=>JuFLX8>earKl#~s|tv+zqkrn
zf&YE>N}`FxN#PvZz&!cJM7A;!!DoU9h%j<51)4~rI%?2t<=Q5F1NeORvlReKK(xPn
zK)0s1<NPL`t)S3=U2RiA{-xvmK1P4vyuvSjSEz(zJ9irKz_K&&+(vuer6~B^-q3@0
z<8ybT{91e-V8joX;B$YY{sMd+Zp0tw;PZ1vd(-e)*6Qy<c)QCk8;Y1@W%wC}yF1VZ
zPI<E0*gyX0!}0^6d~Yb<9bE@@WOm6)oTxbvYWDWxH!psJxk^@78T<G)WBuMxzdKfS
zQl}-SxoU5y+8t{-spt2NeWM!VWWL(Vj|f2Yl+#rruq-{RaWB|!Mt&=v{|K$C@0SZd
z{I<AtI-@Yri14lvh2&)dz2uhv6PZ+E8tQ&jM$G(ZovBR@xItffliX?E3sI)lb1w(}
zT^G25Lh019M=4Qc0N#W`nQrOj!jn_|+{`+4^|`sZ+%KL;Z48Ar2151T*hY73!;T)(
zWW^~O8VU^!^kM;Q4I8qfSV<NKy<H=oWyJH9>&0`4$^QL^mG9Tv%&6;G{5ci8pYS+c
zRjV96r@N3moiPS(ZGiDrVlC9D28mzCt+Y0ywIA0!${Cc;eN{Z>{ou#b0)noy`Fk#E
z`y+q<6cz2HZJ%<yHM=|T<(ueG92Dx4V3^A6vlV(i*_qblb(qJs-qUOOuohZ>@83*j
z#7p=^4uggwsiDWPp|rCVrmTX?@zhjrZt7wB6Um2o^6sFMw@_2}!IxC;WGnRG?b(nn
zb3fDoY4u9hrJ&4)c5nSC(OFgy0Kb#!?xy*H<`?a!<{#OPaoq`4$rFah)q0~6@CB}-
znC1a=&{Im54_4B-`UKSaPc&~wfk<+H_!Ep0FK#Z3K#ncMt;6trV$vt{@$#)$H@@@}
z4k5R&v)4J@7LCqT$`4ylT(Y4J-K(5@6-~DqRg*5i=T5<I)449+_f*XFjbtp)bdR;B
z>=u;4oQq}8SV4Y3JX!)1Iw%>-RT!R~5{S{`Fc{YJh1TqpAapv;Nt4s@AsA!N9RmW>
z<PrE7VuYgc(ZWIJIS%})d@_kW=E=POCSFUY`K^Jb)9tBeT8(~7psk?dzoE`QOLRNg
za`sP}zp-1j`3s1l`RlV)%wI)go<A{9pU=gq__8rh5jk9f0yJklp0`C`ldLpR-RAK`
z)kWqOsoZ^9m<iSHUZ@cjz-~D#YCBoU*m$zJe=3}~XtDwkOxPb$NI`xr4Gxj240z6r
z#q5?E76;VTu=vA`CM^0ZxJHJ>XXf*uEH&n8Rtz*;RG{z6{`?QZ<2ze4JRZND@JRXW
zh{w79cpUUGVyb&%LGK0{eem%I`uJ!ALSxumfkveFNJS~G;H=wf(b)eM)}{`fFsztY
znzN=2$eW-e4+OqI9tnM?JYt0zgHCzy3aip^qR-FbNd}-=3Ny;{Gi?amth{v`6o9WP
zc)znn{fO{z=p$q*nbBsR*E5_r*h6@mMaKQgLRCZvF!<{3c{dKWW4JwILWuIFYPKlB
zjye*j-91|4g!vO0VRzj_PEq80NIlT|;E!SgIH-%hQLiQaqbhv#jhl%1-T#r`qj(Wj
zDhI6Gp8|x+)S?O_^)ZXtaxEU5<s&_LMrhh$lKVbtuz#dIp+CShC;`v1bWzL;40cRx
z!0>Z)nta)Tn<!V?y@|^EMF!*lqJh7y@-1QsNJW`Ig*XDy#_F%le@=zk*(lapqD(F#
zvvAszNCa6cBh%#bPPy2T@VGTIhjv}yCX8qddAD`qIY6nPX0#G{9qR8iv|l%B^gA^U
zZC1;ojWHbBXxkdsPe5QtPl@Dt>_$p93i*(ejU3(yNYmLLAlW|N8iT?_)aVSP;1+y5
zKp#tDiKbhBsHXwJdgDbe6^WTe4Jew^fRg>GyHlKC5_+Xe$IX?rgrLD~OcZa=SSjuh
z#T}D);%a^nNe$o{1>xBp0?kQ5*&TwA_+etx<bL=VtaEhC1!`x@?hs;ng9b-wCZ{h&
zvbfP#%E;DQHqWz-@fVt$8*USPMlk5BXfSHxSxtX<csI>U!Fp|8{vrh+>htx2uN;i=
z<101ZM>H>OR4rfWM;{jv)x<A+-;b~4sDH;-23nb~yn4)V5beCH8ouI`_X)m269hP3
zS&1{Rv?{AyKEFi_*qYk}afHhDAlewXUwQB_@RjsS{`=P~DZ63<yw8LKN+ca67fF$c
zD*08Q<j@_A65I{jgm?Ns_FiR$<G{O!i`Fr^APY7NvU}dcuMKV_OnKg8Ox=pP3QTuT
zC_3HMvsH_+wN^o^T9t>6nyP4mEj{+y1e;k~;KVgjE0pKPnPi-&;YA7tliH+_S)K=I
zE4N9|)%1mH)@lDdXO@G3?=nJxWz&gW&qUy{qrsB<jtJr#2j7VaphLa-^90DWPc-S(
zb=ss^dD6zL6O*Rg=10dV@8AT?x~=l`#I3{qiS#j$HXXzte@CC45F1;ttB&c;xRB~+
zXItF>Eegn079BQK(Pn4!9qg0}vCH;qW=HUet4t9xOPr=un5OMx1dlKXe%_s$K5|!t
zrjHD*Wl}@_!&F^9spsqUd7Jg~x2v^3itv={21gAsbmLt#TQOX#;oDW@=A$&7NkMP>
z+aI-SLPHymnC*|oji{;JbEv7UbA-&)Tw5SAZM2~Pl?1Rpvg_AqgZGCWt}yK?e=&;M
zcoQmn`-8li+?;kEOm1b7UYQ??&dgR&@#}j{&P*Qn<Z$J|BgU}ONjO_Vwi7I?*Jwo8
zhfIp7uhs}6jJ(~C2!DAC>1;U=;m=5ecnT@a5AxE;Ir!~GrooIkf(9{&!2C4%h~TFf
zPN<d!>k^09rQCZE0p<Ny_r~~1uGMH~pv=+;E*%NZ1!AjXpkYsdoaz{4FxUdCk}--C
zO-%IGIaU)#Hl5xcxxr8Wtws=i@mD4OTjMQ4VbELE(vvp~@2@>%Ab#(iRBQWes<mNu
z6?!^B2fieIH`||{=3+yW51Hxd6gM@En|g6}6??V~kyFxBv#Z#%ZNmNR*|gbJ?AfN_
z!k#_2h3%nL8i{mZ66v!_kjR5kW_$L2+Nl&#K1<62-z-Sy#aT!mUqlHxjGH+)?JFNX
z?x2rbc}vk<vzd18Mn)8i#1l<MX)1;hF9B_&dPCSCg}G#l)>*AZTS&V9W|TOobOZUH
z`%vNtVFOz9$9IxbJrz@$k;1wIPs=x1viq3E8rp!wP--U|=IlyfX~~*B%TFeQmYz)(
zEj^n|S`hhLN9a4Z1VLuSY7)Q6S(f-|dqLtiJWD~xgg0ZD6{b<n(;baD>XVE)Pw{_L
zaL!Y{?t3N*X7>}i-TocheEv9f-D?A<IJW{ixaCbfWnOx-DhErXsFCHXO++;P3pAo>
ze=7;W)B>SA&$yM9=d5xV?f}Y>vJ}qLRT8G9KAdL1aHdX6V&hvX>aF!`O2nT$pR~73
zn^apPEK*O)=4odW%6Py`eG6O%Fi3{QXc}RdNh$A&h1~CxQzrg{nM{axQd&MLEwF~5
z+h_M9C#y#pnB-MSMe?hnoL{<CSI*fPGvE)+nWBLUs=4K^%Bs0ee!6CEWfs>V(4=Xj
zVh+WkQ9BQ@Rim7vVov9>n%QCpi@$Ooip7y6h3=j>jHC3LzekYf?#3FgjIFDw?&TO@
zELPt>MKsbLbWO@PKzjLAq|Bq9iND232QBgU_xyX?3_(-s#w*wCU(H+V=Y<UVCoiN%
z$DbZC@=X7>{cV2j`>xe_yH64A=N*d@^@P^x(-hB2J^j1&I9%&TnYTv-t21j=*O!)7
zZrD@?WY^ZU)@9l8O6O%PT1876=T(Uqig_ma1jr&}-h7Qoq*CuGq24j6;HAWQ_uh$D
zMg#@;IqRzedVS#SIb`H-{RYhP!D4a#47zc^yj7c=_Jbc6lsCTT>p+Na(e>u^+!3Ge
zE770h@%b~A2(`xRI#*J+oip-j>fn2l_OMpf)vBIPGTr=sa+!V}($t**->j3G9lL0{
z(Qb_s+IfZEh_|Qf+)iClW;%Z&8R}QXl6rHI-+nd?RlxVudrzCrNlY>I_dcCJ5z*4r
z)m*yEzQwK6g(g6kdw~Vj6b7cO-T|OT6Fyp8%&t@d4_j2`VTnzpoNYH7A8LuS_+@<P
zz)a%LY+m${YJ&@WeE4wu+T|32W5In<c#lMO42cH7<=5F&{Yswvb3O_RMk+0LaC9hA
z{puXGFbi5J`X$Bt@|+;Ne_8UpNoDf^DEK<6Kx?>CizCnB$?75&Whcs1wr#J__v7f%
z^nXF1FCCyWA>xXasoSfYKSQ(Zj+pKXh18{Ge5heJe27wUXi+b{CbqGCT#V;&;1|5I
z8jIbvT|+}59Y6s#TbFECyU~~$CGTfPAUWLZ92N+%kt>i732TyS8?6;V{~+)DaNAIX
zDQQoMBrko>G)aSZV*)t4^U-r!95ju3-punddz%K(z3^IjWg8`x9`KqcGe1!6bPPTY
z<BuyVf4q1eKBn=<`ISGuM$?MtSZBNHjjlY%6HfUPf?wapGFr(RVs?E;-@%76doBY*
zRRh)QZ7tr^TIS*^4u&mYALZ8h?+%9N4;gud{jN5ts9974;u}v^RxhVDBF~ECnO}@Y
zz{ALu;w^;VPOs{=i+UMErLvRXw=})~frxFFk_(^I&4m9#AnGsiarQBv?{6XO$NJh;
z$S%Dy+5I-yC)B!rX0m(x4!=#+j+?cu)XB#gw%ZVx*2l$c3J-X;tJY{*+Ah%z!Q=<P
z;K~5>9BihR!bai<@7-s$ZONO?^3wZiGxWIPET)_tHyp|xF@`(B)>cS4+?E9Z#pZnk
z#&quOe@_=`_#ZF<>DcaaoT4t9X)5MTtF#0jR?HjO1>rj7Hb4uP5aDbx@$RB}Hq&tJ
z@>jNxh*m_dyBM@kmu;N<4lgkWQt6t(b~EiMGx>6#iuRj}n;L3!G4cq{#T%P2dxakA
zRRz*6|0=exnSp6%hV$Cs`|=3^p8;C$+sUYt+`k{j=|Z43A7-GgYy_YR4)ftl(KKP8
zzI4QlF_$eC7ja46SLpG;*~`T<KmInZuJ+q=y`1CAhs^FtJOa52_t^bE;vNs|``-$K
zGu^5a2A;nziv2cK)X%&e9Eo)OBhmTapZ}i!weMDm|9JuoWczev7XYNW&-`~}Z~a5$
z`zi)$X>^sh<aUhQ<8CErh&#@0^bc$xaQF3+R`)bBX+>4%`3^%BeAIs*?cu$mD-D&v
zq2A7-1o2nvQ%1BhcRlL>$r=!3fEb<$KT9M{UUgmlXY8e|e4)!IHGSbC>iJvvqja4~
z776+oJWE3SZ4J#5I%P9q;ra*v)NlV=X*Z{9b<)mr<3+rqMMtp7e9RjiZ3<vq{{ZgX
zW7<bq6+QQ8cG|yd-M*9NW)E#<tUvQxnwvM_kFs!vF*k$5tM7cdnfYCR=j(S+=V?o+
z^OA+sc`5u+?lE<K>MDeh{@?K0ZHHKL#&&kUY5NeHZ+6YiYt5E!=Y6X`)0iGv7()&)
z;0y8HaA19Mv`C69&ZqTAVbzasyqO<g>-g01+<z0%|2Krw9`Hxm_qu`8xxv-<`MH_F
zUO!GRZTs)q+<kU4W4x!t%ozP9Xf;ky^M4KN#^2cdeQPyn8Fw9ImE+abVlPVJNkZec
zp9qc3z9uv_hd;_&(={}@0Q{Be;oq_9N;UDIfHW@=eU*K#%D4XsuphVnf6)~;cdAxb
z^z67GI9auRsmIM@yXug%p*+1)_*2@MMuX-(DU~OP`7*Q(|3R6=)Asef_dEhIELMqH
z;aeQM(z&<h6ZJDkmNf9o*DtN3dGG%`A(CT5Y>IcKnEtgVX!>vE>34of)1L-^lsT^%
ztEj)RimI@Xysxg0JT;X4w3*4tx1ax}B6)fH^4V{kQZ-zh{YDoNp+5gAWkgI4x64H^
zZxm`4#~Q@`&g1wIAfMi!AXm$2TU1vo`2-Hs=N56-r>Vu#NWT`1V=UC9gVf^NKM2OA
z+}GdC(bOiGYwVq5B@=8`eGT3)bL$(8*5kIB!L{x)RX$&@+RE#$Rym8uDgk85+<rXP
z2QL0SlkbR$CT*^=??ams+a_xG-XDk<q|b>MBH@qXeN`t0_vQdpd{?UT{?Dzb`W-4;
zQJ&m$ylD4UyJ$xvS08q*i}r`Drt_zOojJ|5ub-VA+d$Y0{~qvFvoB9e%@TT-j_*nz
z<9Cr|Oz`jS;<L%W-^b6b4w`6UQQc~3Vwhym#JXIhR=UYqt#{Dq=XKFf`^%;U)va!|
z3u<BQtC9ale^84}zk?Q&M2lDW4u$!s(KZq9{-iyRNd=_r)-Rt=G;<mLD34Av7|2&g
zswGcCX<q$10PmfHs-2@5>#6w+>~e7*YOv^Qr?-cdOzEDK_tOJL6%<HOVj9$Z8q{+z
zsO@pve#S6b$`Tq=(?ceVgx#oJ;Sg-P!QsBzxDo7yaHm`zw=HEkR{ojl-bU(%<-74Q
z=1mRy`f7#itMxxoUX^o{&>8v7uPl;Fmuc?F3BT)SMfhtiv;U2zWFT|pChY0|qlij>
zusRXt=}#xNudGB6h{mpFQn=c>y}VH;rphMB+W)53&D|)}I=~B<QEkwSs$@e&U&Vgv
zrz?IY9gjX*{dn4p?s^uYpXX|;<R`YL*VM%J@Ll?zmPlp$QjJE^cU=_;5qJJ4L-PF%
z)l(lfz3;!-LG3pP?tK+0wLbb^sS-u&D>)T(SI;N^(bY4fa?1$i_WzM{rp<c9##IBq
zdE=w6%kI<j|9-8;p=A9Zxmc$DTG_3Jt*ied-{2j@3RhO<3NgqP?Ek<Oj;;H94JZsb
zbSpD9o!<DvV`8oisWn#ree3Tah-sBt_gri1U#=qI(sN9V$ymi^+o5aT`mYg7ifXr2
ze-HYXXz2{71p2R|uMzY!D+%;>MprKvcVOd#{*_#uy;47xDN@<9xPlYq)Q^ra56RCP
z@*mC5LOe)q0_$5*crc2$x6rpxBftcKGn6(oDcm9N1{EB$a+Z=ZFzgQvhVlPRXN)T(
z?DZQ}J@!^2RdxSY*y~*&tlO&ogx{n8lRshd8iIMj$d~{>HdC!e-U$i#=4<VX=rxwx
zw_j8H-OUT++S*^X+TiKcE{Mt3W%`d?O&aQ;&qx7o`W`93&ESvHYqFsLkK9zPxX#;&
z@W)gOzd9@b|6CjSKE7IQ#51<ktf2{JbkPj!)dB>MucGs<E%J!UyzB+6-tfA486Jn{
zU2cf9YNu@abs2t3HO^Acro8wa=jy3D4zs=gDa@QRjg6a>ifZN2BiEv(_F8FTFD*i=
zV=q64=<Ee>M0aB_f63e+`ZeTie%^?`>$UPC-CZD#)YFpu-d@C-qZOl1>WN}X|KPNG
zH2o+d$EKe$auLRM!6?Kud$I}1Rn&Y7UnBAmd{!Hu77gI$5NbiW58jKz_@OfGpx{&g
zUMu8^4X|R<(^ZB>)KM?mG^JNt5kUo_*LnhM>R*8U)3*#Z_sn3!yzbhl&!OllAo?2U
z_^lNT^q_C?n1C}nHpPCXF5fabqp3Ib;qwA8+N4@e7{3dOpeYG9DBWmJ#-zS!Ro%FX
zs@S;-P-5vqPDHnwOjgPY)=XJ-*!F6)QJ?L9quI^RuSRXm{U52ij{K`eW2gN`75&um
zzw-z^bzO{M?s9UK<MffVS2DiAIS~rL(m*kR>aZPu=Q{3nUGk&l@~b-jmqq_4LA@jI
zs-Zf}llTuIrRVYlp88=pnK_qo-`6^>Xi+dL`=XGKgYa)sy$4?VZG2O|UUfC6K>KT9
zx5t<HeEvI-)Jf|r_wn&sy^!|mbb%<O?POQmtPpR+UVwb{+-9vI&dFAXZL8ARXfQv_
zn@`jiH&!D;&s>WLZHPlLZ_HGmT!XuIP3J}N*`8S^CwO1Mvof;Ee69>nerAeYK5Un-
zAm2*(0{3L>vu97XDjUB7&MdD|EXZMaQ=kWLy6A}K4`Dh<p$A)G)*ZEZa18IQF<*SK
zQp?wT8h3<xBZke25r@vtp<Mo`hi8d>7j(afu{EdBV9Z<}PN$%@Xop+C5|bul59m{J
ze~IrClQv)>&tfX1Uj=$Bh_3?e7<XhrwB(+K&}Aomd?6@6+3-1^tF#T@(OH(_F3@qf
zUhxpBF9Ps1vp*b|7=pW4@LeLF?I-g=LH#ky(~^jJf_Svy1NQ8Qlq*32xo?5o$ZOCE
zu@0SW^+9J3b;nX>T;w>t8CG?a&+lBEwt(=WCHi@LN-RFV4ehFzq1|_|-FvilCt|y$
z5BYrRTeKfr8UD4%n|_pV5X?Jo>LR4gpo#gHHPGs4P27u3{D4iQo6qOjuY3!*DO#_e
zBYpN=(o4UaNqXt`@JGoT>(j}g7oXSHQSTtQ6QOxm1vKCDA#rvjZ@WJ2i`4Esd6Dh~
zFH}}0z{+?J)tKyvKxiYc3s;|m)f+q{&?|Yqy~265bpbea-WAh1*L84rtG7iL1heWH
zdx?RjJ9#~ybB_M>Ct}3;dhN@D0{EP}cfP?KJD;AfEbi&W6XsyDwDYlX=M^6)K%`#(
ztG8mbvrs2GO_%k0R`KEKO2z_c_9p{g`Ivr-+}d`0f7)yUD!v8)rJVm7>C)9sr{c_x
zVi}wmB<_Yh2tSk!T&|udC$GplnEm2KoI;n&?nQs>ex+>(ZvS3tzqw64bD1@g&7WaH
zIo<Xbk$nl~4G%NTOJc;|4n(ZHpN5ya<DG4Xzor$hE~_BSy*7}jVDdRan=%VWH=R(_
zK0MCHH||cd!YCI6Wm;*ZDTw{m>LNNK`LH_l3W^l-m$%?cj_JH%Gf$G-G4vx)yP46_
zjHWrF)(nk%?4jGeqW;Pe+@pO>Kkjk(apWEzy7Q?;?b*aV9vrA~kE1n-drTjQ+@o!T
zANLp$;m19Kh(?n#&H{R-f6CnBhww_=BmN7)Jzfj1$~_j;(Yc4@J}hnpUwN-a;_m!l
zS_S20Fe7i^jC|KoEY(keN|hSUN?gQz53|$TVhrtC`jBq@lCL-t{*>JJ(w?>W*8vC4
zgmK~0oB3%8neeB;jXRZ~J2yZg!{4csq5~v(6pT1!>SX-+p1_6Ey9^t2B=(GyJiCbI
zJ6IjwG^;&fZL&0LjU6XxR(`U34W8$A(I<JngF@2cNzp0N;>>8dOg@{h1m&wiSqH+h
z4u-W|D|u!>f#i}xK<S6rNp{y(_N<lmtmDacDRsSF-ke;r2EL8Mn}xE|S~;>-+p~@(
zJEYW&c6pPucx~22K-DSSgM2Yaa!;-u5a5+ky`d=yYcub+(;mPdY9j==83hz+yR>kN
z^1x>}Un$a?tMvUicoXkUp>*9d?<0*$z};90`z3b(UNVv}9?`{EBXk|A$>`cs6Or@+
zBFPn@VeSKj*83=+>ubV)Vh=#qZbTg3j*SuItDy_ey8~3c5G^epS1r2U2-46spHT7;
zprjDd1t{69qw7U8Dvt?N>gZamp=*DHfiB5&9|>AS*(MXpiU?&j=W8fagGr)T7STq~
zh`HI?$~!>EMn=imV&&l_$flL|bU$2q!Q=pI@!A`-@>ciLR-QMUR$jgSxbnKy@LPE=
z)$m(+b69Sx#jptK&E=Jcr)m4GyruKS%6r06b>#)uHmy8ah+9W%O?D51Rp$Y%AU6kB
z-D}#ayBijwGSd#6&|}=wgmU|W>7EdLe%xP<kDiN?#JI<NAU;Q4*6+FM4$noe8FD@u
zzYi1V;d$?z(HB?iVaWsC6UCh&{71c=!|(aZ2KhMArh6u$PTrTx`v-l>xVgH9=01Wu
zZWAr`zI1}9Ju#{Q{rZ2TJqcV?)%xs?C=M>zxFcfX8k8u6C?w{fgQBTXnQ4^S(`Q;x
zmYNzf>NMg~R<<wpT5T^gP~1f=*WAf{yH~^w1yo@E-*WCY3|jx*@BNZH_uR95=iAPA
zzGa<ho!L=}Fvi}_)n#cEi~t1DmW;^&Pu67;nfoyX?Y@slO(b&)aoTx!A<U=YLZlbq
zGV247Ua~#tB{+a*k9<=wm4aY}US^W9bhyG^1ikoBKIPlcix1Ju^xEk~WiLyEbu8qp
zU?GBDUJkw$y}TAI=*735j=dx>tzcGWBYQdei9#!54gBRRf0e%gf0pNC&iRXG`$B(}
zzX*10b{qk6K&b6AsobScunM?w1g`#}Vkc4)`T@9RQSQ|T1vlQx;JN|eT9;(sr+{l@
z9l>6h9p3<Wog;XiAb4%%xMqe|TyX9DrE#!#cD$AOivq9Tg7y66C^85V-XHlP%ywfo
zHw4(XAEWJ~{pT6&d<bqEu}WmKvYa#3Ih*|Dc|HiA)7kX^b^sH{=o_TA2o%2{E&NbJ
z@jrqH#h=VjQ2d?@6~!fgf#OH~8O1v+)uH$Se}Ur8AQi>s)7Mq~uYFzUses0eKbiGd
z&MHg|=SwyfbIK(;CLNXDSgM_ozWfl+NE@Z&A8Ti%jWh^wAX}hvMk21^JV~mg+(n6l
zD|Arz@QzGT#UHBqHxef=B>lV5T++N6!#`5*r!@V$3DqDD*?39O8b0ht>~eA`aId|f
z0?LIL$2Ra|aX#1#7`EygXp_A1wE)kff)#q23O%JbPdG0S6YPZD%*SqKmh0m2q?;d!
z{vO5t=1_mgK8wFq<NC(E4}9)hg>Sb1Z3N=~X_kw~8Ftd~tm`fp|8B3Srf?IY341YS
z6c;;=eC^%$wM~z$Lz_NngtF<qN2r_rYLM9USwTFDyFXSoeIqE5LA)Pxujn>?2C3>d
z3#iP3t9?W0Og2?3c{LI*Q`}?NC$kCuOK0Qx=SdCz4X*R~=b|D%US#-RMn!S>eE_)r
zSSMRKPh6_-ex5K>sCd{DF7-UoF-d=(=yILU6OG>kVbSKg{`|9$&p-3Mo`3!f)SrLG
zaH+WY!`1W81@-*%vHtu6{r<Lq`n{6twcojheiv~4k{)Wm=Sq}*@56o{sq#EmO}y$I
z4x9ZM4zH?kXxm2*hp(<O9O}J`$w;+&NAPiqdHFH3BSsu@&b<Q-T4?!FwR2bcU3@MY
zc~zIMUH3j(ykB0fd!HMU2}{az;STpwG=vZ!6=^c;lbos4ql!P7-8jv85&4$shQ5DA
zL|>G4zN4Y?9DhRP|2?3f@^cTUsJzfmpz<6)p4d|#==j%6A(H2&_-m-_xUTMB>~GMM
z^y!CmPE66XE5|TWCrCwm^8s<D%*D1-xUHq;nbK?@M680(mB+e^bE~d?5cH9XeRQum
zUWu<d-kr*Lt+1`>7UTWmuZ=fJjJNEHemoC*LZ(046Q1h`d?T0b2|pD3`4kLea(o;R
zUE0)JwI}>|h3yIJmjIgl?~111wQo2S`O(?z0Q>IjI8wykgN34SUR;I@s!Dci^_sX~
znXCO@Lx5@gd0m$`snzA#LSGBVdRxxZq#HR(ffD2(LtfqVH%X^;&bmUJ<mNfRvzdrz
zpQb41KU96|!sO+fmzBC_7bT1MZWw$=ZRsoM;Wy|3zIq0}iYbzICBk>>#djK=+*!tS
zvhFR^PL({7sjh6R{H8wt(^RYcAKkP1y|aqHe+9pPPBAg`yDI)zcZpwT;_J@jNZ9_@
zbcU=6xW6M9fJNe<=?#W%gB#3-$>@uvH}UgG{QMLW(sDD58zeWm!U2jc-r&VgW1wx4
z6`*~k0BzEF0NS2ju=q`4E@v0>H$yQjdMp02SNt;R8uc<0dwB(W*`oB)34583z0ADC
zoabZl&E40q7xS+$uU~`YX_U<5IjcPP3g-BqVU;r}hM2%50f)TKb9ewYO@8sZXzaR%
zji+1XvDbL<evD4Jg8`lF<=V1sSG2!zveLl!*e=r^U?cSw50em3VnWRYpsu{m)BS;$
z_`akpafh<R{y-+u*9ox1_b>7i3&b~b4NI(my)Ebu<dior04w-$?FFk`c1^5!*EO$(
zAhTmFTD5g1pA#2qY50{#!+WT-SzyyaBzx-|W2;jegyCGSJ$W;YUY$S6uLAH@E4q6w
zR)Co_NF+f3wM(a|$R<5}uW67=y2ed4C5iH=8m(4sE_nVj=dw;eQf*l#sqO1{t1&JE
zPNLbNF>9<j8%(N2+y~`=EAR|1!WC_ezmPo|3rK*J91X&8oVBno6^<}B?3=+y)t<U)
zIxR4Z<hNYO=W~>l<*#D_9C5C^C`tHOr0|)G(gA#4jj1=eX4cHCr$p_UtWj7=OIOEc
zX4a^(+5Bp_)%Av`NR#!js7CX0q&4ALi`kwI>O#z#;*hZmtqECJhlY%bN*$UNZY;P`
z-_4BnVI~_#OL#6mMa6Qm&f<%Po#BVmR;MItU|8cfneCXHTGYU>Cd7VVBk@?gdaSYD
zMHzxQ)mcf9j<dQ}UxM$Y(LB=J3_N){H>SE)MqW~^h%HGNg>|)|dQm3*vXGnd?K*-W
z_FN9WD%a~e9|q}k9s7%<ItG$H=nC<lrkFzx((hf*O+|AEXgGDr^3hM^%oq+^(2u+O
z9z|7rvDyA03Dv+1?&-^^N>66CnJiR#>Qh@!pZSQMz7ee1?AQ{bW`T4bO(x%N>F6S?
z6rp;C&h_J>1P@_Rg6sz{_5CVnQJhNoJFrqrnbnmviAKmGIh<soho}7YaA+7P#<bJT
zT0*M>1JK|zn2bsr;!>QF&P<6LodJW$X>8{Z!2V`N4PY;>%k|nelA8E@T~T8xA+RHK
zpEVf%sK7t&M+_hFCgvaG+_w?+#Y|mukFg<v(nxU~2aMm4>+uzt3DL5+ji3wV`i}~`
zIb~`<&kBrR@fTGYcVks~i;vl{87)k%WH^n7{C5D_KvF@j7t<cuB29q$=G>lyPstXW
ztIK9<&RSobiHTKRUd+f;w0rdqVlxPw+kyE-)xjca(=BPP>~M7R;A)&?8m{s+6v^1`
zZwONVkV;OGvkoQrtp;Y`P7k$-iYfLPb=3D|{3^|PBh6W=G;l-!L<+VKKz4UJfT}w2
zouhVN$W=kV#l6)^ckJ+Ewh(NkSxxa1HDs^S2c%}ntn)gvB27}pf@-%5{*d<|OH=Eq
zOGyi`&O()%?<N|a0iB#y1kn%hd$P+OiRF%Sr-16alK!-2x(S~YJ$fY(U*dmf-~nWl
z^ynMaN)>PW4?zl^E+9BDH?VRd-Jj<%10XvBPq~k{Y5H<LOzUo?9y0u}1b^tucD#aj
zQW07Q0z`%_D&h^|wfAv4JcCp{al{V+DGf#K759qg(2mP=nC;^$Rb6y+C6Cw>2Y8^8
z?(+tA<JgWxiXD*>W^)pB+GeTl{Awzr$=PVBG_HK0O4Z|tzS5@Eps!bg^z`*a5Yv~<
z75j02)K@QMg#dc4x}RWARjQ|>K92SaDqUF|A^N8<COn{}<`nt@N&!GAe=-+E3#C)M
zqbpjg;tS2WX@P9p8{q0vAu{aj&dNi)$^IELBlgM#2K1FKpAq0e6#ORd)YbRHRX5HR
ztCpWK)Vp`?Cmg#vPvF>dYW-*@)_p-2P$EKUH@C2ejE(S<+|f{H4kIwBOqBFFHw~o{
zQF0@F{f>g8wEu@`|K*$N{a(TU==X!DG@RDu{~~8Goc{y!l=%;+G}HsxF9H^^QMY-V
zKsKCPHq`2O6iC$n5$xZg>t9NEja9&hP_1@eE9fx*H*5=wg5;IQ0|ZHCg;8PmAyuLz
zXv`KloUZ1OMu~x#r0-ljM-wi-c!#iqT%S&Mkl<`mxawtNJk2mSlUYet0}@bJwXX@x
zU}3>kn&(kco+`;N?zic9KD?8@Q0oy>{wEkteuD9wkOd1k4RlSYvJj@oyEte_=J8+3
zqVcD~KT;2G;~%NO@gE>=b^^zLl*j)P$N#y#aeP5kJE-`(MqF5xO`$BVjY9Ngb|l{5
z7<p<dz;#KWq)ExcNx>>vJwVS0NkP$mH>xy_;y@lw|LNX&`cLUQ=Cr<SnoDyYNptR3
zYy5PCrLjyGmP521$bC`l-sR`xjY)K0pl1@~o+*}M$I6vLyeuP=0B`~Pnlk$-9oSr7
z93vHXuLnR1MK25Z9<yeHO`?H+fYJbu=ffU!>*m9tiZajrHb7;+Vb_@%c5>EaZ`Ug{
zdk;v=1=*rf;@mu6zR9xY2JStKhu@IbeEb>OR&&42pk(>q*N%!8V|aO+gMK~)f3{G4
zG@q%Bicp6ZEE<5`H_0nc2H@!dTJa{xs|@@GS%NiwojKP=$?<olxhCwgpz14f?t>aZ
zae4~fZX|p>h4}b>1)s94a{=!^=X!SqD~Vo;@clPf;m&zjrQVpLf&%Srk4hqNt8=f|
zynVPogcRJIN~;&FRlkTSN_EPD)<uUUgg%<)@ohCe^#cIJ*<6!M^2=~CDi}jEMkvTF
zphxLoE~TfJpD5!vwxo7G!lZ>z&W&xj&rd)Yq00E(4_Wv}(0hR&^>z$<+XiDxF45cb
z#IF#*2EfaMsSwXan6R=ow{*uG=<OE)z2G^#Yf%C}kWt17r;Fb6w7j$teykVTTq_Wh
z$(a^&lrT3;1Bup>^ifrwX|n8Rx_E$%1`(R<-p_kZB$U+#<=0k{UmH+<O`8q!D-Xwh
z7XSK^1;{=pJ7lu@d_TERgk0}~JRyd70v$)NDeS1Ud9KphxtA(sQa$;RoLj>rHJi-=
z4D6mNAGxUl?lWztEH{v^pVHL;^JF=XUv}$Qj$l^VNvS!NNIh>I^5Y7SAw#N=j$%vq
z!aqzxYkId6Hr<J?8f?qvye?+5T%8RgU5UIJ4%EpjiEU-_Y0z_0i4HvpQrB`{YFfyU
zT-nO)Rx34brHg`VDuDpJ3hvbK3k6WY)4ExdQ6^`(vcm0F2%z984Q8hZqe==)S{GZ1
z$mD|H0eIDVjYQ}%r7!s>Bpzpp&3Q#z^|xw&&|o_`^A>upvb?1i(3>4+H4<=WvwGpG
z%Im*TvNP)IJ*GM@=}UCaI{yV(I}(Q`;x0`L#gj}Di#QRlIo3R3jk#e;q!s^@f&UqY
z|CwTLXpbb{IN+p?^>{IwQ&rDA=OCVFa>Ire`C-cKuZ;BrF{;3l>Pi|-wKU+54E!Sw
z{z#|fr>U-SR(ME4=X>}!juL&RxyD7Oxkh92aN>}uu5^nn_c>P2@EkfkM=ecYwpY;I
zbN*)H?HHPihu3?^-6yv4IaKst$9IJ}cy-21Syv96(@oz8#I#?p{<f$`XIT965-k<o
z=z~m3H|)WfPnXgh<V@9g5ERa@*|p{nP(>>%qD;AT+QGTxL6USmo`C0fnaubh%Mw&G
zep__HiN9{PTd0>E(nquT%z>BSh|cx!+!tSIwtw!+inUk-4E#T{qH1H_&zy<?^PE@c
z<~pqSpr5X+<3idGo3knn|6fU2+3-Jc_@8LR0Q@5y|6`J8S94Uz?c2*km3qCp_O&){
zTdmi3xqYpTFDd$Yt?lFuRk!U=UQ(sl!|A>8<qMi#@9|!KpvHG{&nkm_zkeJD``m#)
zFN`Tu{58s@B-r${_$ssgBHInL?V8<y4?o&&Mb@R=8gjtTn72L|k09ko)bRlCvzJPr
z!9N9VF8`XfIPWdctqSVJ0SBn6gC}MfKN*mrWin+nSbMCsweC)9`2lO@PLOr+JK;R#
z3LF^E_R!zi9(r{qNTbikE~N2_-`4DBHTn^qnC+9%Jo1ZDFHpDcxY>;C;VPDIic_)t
zkpO|^LjxGg^Kux=^Xf2`_Y2VTFDu4$$5)u`@xElE?J^k+DI3^8XLEJ^D-I8%<A8b#
z$xUKHB%CIn31BCQr{G`qk#LYR7T^>7y{H~{YjvfErY2xED#u{bqOsgP8iHzbDd|Y9
zdPOFimuE$Wr<j-b4|iT(Bm1Q|*W?_pvqnPa67(!Vojkd0O}N=U2#3lY9Bs`hv?k{q
zO9BCTo&6*tG3q+k1`IG~138vBx2Kv@t}2ctPu3HT65rR;J4$@+&+2PdTXrlVCkf|F
z&1sDtt!Mfx7f!GnH|*8!!knF|*L7AT+K*{pV!QQJ_vIvAB37I2hlqKVOA)W|zC0U*
z`;ryRec=BJbM~mc*&^fAT|U-B?d^YlVwd0Z<6Yh}i+h__SLtn!ufmM6$dW7n0I_d{
zlXef#-W((4Cx;qP;&8Q9wZHO{GY4Bqhi7T_oEUNz%a^EMY<-E2AYbDT($Bhv7H)V+
zZMYvBuE5C=jXA$&Lr@MHlw#J%V||gx6#D1~<T2cnI<oo$iAk|UV$RJ>VvD9%yQT9p
zG|DyGw}bkS_crcUN2K090jj+#*_DlCzYvH6wjG)kZxD2C98X8pdx~91zuA`JtyH+P
zd!#h#C8Y@UMv#T3@p!a3i=kMlIVHYU*9eRB-i&Icin$2L+eH?baiQY;<R}4c@0ne6
zR(cHn;b<YNdGO{H^$^2yL()q@6*LcC1MOz*q(3*~eFo;U@7~U5IB>NO>GRl~Ta~;1
z5di&+f(Lv0_&f~V-o4$=C(lVvt%)JfRO;W>?WRis>#Pl^t?1oYm#;y<T?5TZ#qckH
z0OXT=&K2)B-qgL%fYIciZYuBPZaR5^&lB|Z*eM2h-%CQhkbf&@{x7Y62{S-z=Sn!E
zevdzulylxgkjoCU;5&8bMA&}H1msPTk!E{iU%sWb#ZNS8Y-*f8Hy@3TwJ#%Udb5tk
zrY6>@!KRM-{2ey+n_!#Frp(KyFqd*x7?{-SK8ib6QXP)|LRYTb0nur>_gR5rfg4pY
zt7=;3maM9I9l@$%OgbO9p2VhF>)6zZsT!L~LOzw%m@nR7heqHIK6sPjIb-9;w<9(y
z?QGyCo?!_>%VHdEslWK3J$`T}{33OJ5&o)B@5!YW_`FVgu7}S-s$Zsba|-&!RBHAC
zRAHOq6{T|zpz5ieIxUukI|s0`4$BHKtFavFs%WxP;14Q{K8e*?P?{Beb~OAEjelgo
zA5r*6I%>9p6sg2CJX?tVq_3an;%+%r!R9#^h$zBlAXy<QsOq&UAEifNJ$bpvLYzQO
z3xS+YZlzoO_1l1ws#*z3BENdhyB-rmZ0W=%W=l7)19UYk_yIa7E)a0aMC5LMO@UM1
zVr+2=Tf9f~P&yrpf~$TtdGFx+UdY8>bQ|oIXC({lyrwqXi}$gJw2tS|->m2*;U6{*
zp5zFnVtwAH*xw)6Uq@qq7p2WF>H9l$L+Q_nSKKb8zo}T5c-{@sAJAvE37u`;B_m<4
zNMVvVBmL(ErJ7#Web#sh5!9Lx*d&^65>rga%#JAX!vsC9jXzJI4lIbw0_0$05e|aR
zDCjy5?^p_E;=CtU6F%#PazBqk2g~|o4b+DE@-A(t_epNvFxwZC+}zKH+P4HdGQoI!
zg_0wjdYtuvBjvr1V`h^6N2|NvLIMEMX=E0y4sH1Jza%ac8~+rE0b>8}zev!^YQ$Iw
zQh{2|;FcZ6YAv7Bw@g=C4(FEFGPRbe`j#1L%g)@gRM%%4eaq2mOJ8p3d{S$9ZHlht
zIJG4Q8pO8I_4&KL<s`M`H{9|UU7sK8TTW41=5Wi`buC{IEgPyt&y8Px7#jNNmOe<|
zaIUUl3^W{~YuJ8@z)~A&7J|iyDJ<wIG#x7y1jl^3>6lNKj?N~0G1>}`lej1r7Kf$^
zH1Nk1QKW`vNhfW5m@6Kl@L{2Nu*hFs0^C8Bvfwh}&RXQZd0*pmhj@7Yfu5J)a}Rv}
znD{fGUqAEmQ)b6&RKQ@r^wo2~2qvlbNk|slpxF&JvN^FqQKgWhuF32&f_{DSeN|e1
z<FnEv@#-;r)uBq<|7Jy6<<pw~9{P{`c2zyE<$a9vdmrcTOY_SGh*_O7GS}R|JGYSH
z(ev(hK2oDVk|xfjXl3jIj7*-T^Xqv3Di>=wKZ)n?3ec5&SEcU0r(D`8-aU-(8dstz
z6em|&!5oFAwxvSz4@teM^)FQ@exe{oaO2}>k7v$Q><v-A1O&WsqoUXLJE%e6pPli*
z1N)xcjnAQHr4^y*=-4IF*NL|Ul!*N-VusY_S#hbgkAFlr)D0j7=3G^3X=ksNS6?>P
zGZFKd;iI2V)^o6P%3QL>;(4*=JfijUc;K2gkGCd^dGx-f%%cU)!(FPI$7S5pg$k@T
zqb%5w#Z=+g%Wk4`I+3J0xt=9eIxJ7l!?FmUDGje&qK2cmVV-E%0UPeWg#GK{#b%vH
zmu3zbv*INn#f`ZXkB=XT<KB#MO9v)uXM<^EMxw)s&6Rj3j01<x@{Xw3xham}BAs}$
zAH@1f@HT6ZBxfO-ylBmD*B|h6S%9cKkM_i|D4+YnEYTG_vG*pv`ORpm-tevpWEY&_
zfNJvhfux_R;kvkB8=ZLQNMxLW*%5<Bri8?oI^s1?Bs@ruW$~fwt@`w_y*cTnOYvj!
zq{U4veop8c2#kqnm*8r%ndne4s|xYKyx`jg+J|U&0;#n=3Wve#T6maGV<rVM9ZOki
z>2~|xhKjev%wsAS!WX+R$gOZA=_Zyy_1puSIXRQuTwZ%fadU~H^I5AG9}@9H8ThQl
z4|SxOJVK4Sri`NaAx9LN{gy?p!RgyOP<%_`PHgCCPRD;Wh6s=7x)>s~KBFV$Z-A~l
z|I408`+{g)R_BFe_g+|-^un{~Cj$rVZ^?K3uyUnHzd3Nlic`pRrt0KXd+x`4ho9rF
zT(7Qn3m|ua*UZ;aoEK7@SNf4}K*U;7;MyR`^lCz<AjDjo!BIwoSMuWoub~+VyjIZ3
zp;df_fY&9H0bbYdM0n*8Vs~x%D8XxZ2R*#@bIjF89S~kG8Dp-#HO5>`^C5U;uYkFJ
zG=bqYG0+2E{U-}}-5*#JUMZm}yt2j+tZopjzC>7Ut5RU)I3&vH+zY!RZ&U4!7*{n_
zi>spN1bv+HMahI;JYTKGRaL+|i{DWEc$Xf~Vf99W%^kG<z+>(4;T+qB#?gM}2J;Dw
z9?&ieGm0rAMoEk5RG&#8te)GQ?A$~|l~`XTsv~vO5wR4sRT*{=4I5pThJBibEv>5?
z_D%h;P9Bzyx7x^c#mMglYa@qfBVWZO<$_9q<JvfJ)6aM$rt`An%uV&mV@u3#TkeF&
z^b{8ve9&MNiemhgXK8osSIAP?7gWp(qS}>3+6NG&tbrlVsHE?R#~2^F=Ia}Z@pL~1
zb8jZA^Qb$WEccCx7DEan5rg}NVv-VWu+^Pz!3Jn1bN#f(m-X(!$e6ii^9AYg2^>cA
z&O{*#Frb%WXslRy^iORj_RM-7mY^P_$S);J&{w*KQT`s5pj@Joz&j&Rbz6$R1Kt;s
zA&9Vx%1Lb$w`hIQe_L~(yDZ%2g3)~r;6{(IQ(Y_F3Qk8<GER^E4`65*#y1mR?#J0V
zIPXNRov0FXc93UT6jzP2I@g*V6+VjD-xV7ii2^zc4GV?nj}yPqoI6^ewq=m3mz0{b
zk<*WAo>-%NRcS(@8;UpI2yqum52=29IT%i5Zf%hk_fD#SL5?S>&P}jJv%N{6!PBfO
z4U9d8-P;cN5**YzQW#IG*CJ4O9xyv5<1BOghg+S#<b{N7rqlTcUM{1T_lH|^)`p@7
zn)8O$nOwo^H`~!Q52qAI`gDq@k*S}Y)#!i_XLbaNZ=$4e6WBhjHlpic^uvgCL?9;i
zpgY%;dcy5P>s(43um6<369o1h%1h_|G?47@Dq3El#Bs8}4uAggIN`5DeaN$_b@vWO
zxyd8r#0c_AJU=F{YS16K;a7Oow_l4Jkd}@YCx{Jo@ml|y$}^F_vNG|7@Q^S;m-4&x
zt&cQb`K~X0w?man#hXyCO9cpr0)#)s{e**uh2zhnZYp*6@}Gjv*1+QOt*M~i?7?|;
zDA%pSEiJ(&e#*T~xilA_eU;~G9X#gOaqHj#xFmn4-nY29N%2^%y!cmjxInVlfv}_D
z$SLC~A_{8;W2i^Db(h;3Utyj<52axIC39{LiNkCQrr%9N_o|kg$o1ISFErKF*F>2H
zboPaE9{0Ji%2^$R9F5z}SD<~X9c^&j$==5urHngVjEi@YsaUYLi8?OcH_A<5+=WQ}
z<6tOxVVP1t@5>DKUrJ~HCHO~r{w@(mR%CYcAm5&|>VC^>%MJHYiBI$Q1Ni%a_<axE
z_nXS_`?c!6(=kZ@ea8&+fAXO(H2)_h9%~7Cb&ThDEM0!*rW}{HVHm|@A=)jfE8?+$
zyP6#b%J?)m^+{Ol?`2vXjp%n$x%Ym5C-EDWrS%(c==b|_?zbKGyR=*v?>6Q^SjTxc
zySuGb;`DNVCU&X@agD!D>|cJ8?YK4G4;1gicz+c7u=@$lYIB7%i3Fl;nD%qY6Ufag
zL_M4%`G4U#U`2qC#aZ=1gveJ*6+AzSCLZ`n8Uvq^1L1*EL%dY8*07F%|I~<=dX<C~
zsdQznM7&f9{2?89y7qXfA84C+jkvsCZeHHlGUa?4`z7|V_~{zsb<oC}t&BGv+m5@%
zcohN0@&2gh@ivJ#xcu=5oFDavB>8|Yev8D|+aOp6yQZDDC?ZUbQ{vZXKYY!zvwYS4
z7;WMWxlktP%ajTG;a2D?b}bTyEAf*NF!i*nit*2EZ%53tFu%1G^GTNq6JH+YcQZRU
zKi@?%$E|o=Y*ZJWp6QAm!~G7xey^2k{Z0`5K7;*MUQzm8PyNck1d2b?`%m+FKJ{V#
zE08NfiMx^#U~u_q70=<g8vlgm#PpS~P`x)vcW2^A-Iz)qyT*P9Rb$}mq1W{H<y>1`
zIypu!nt<Y7Y0=I{{#3D_N~Q2Ve+4WdZwqgh9CI1qyP5(AmS<{Hn5j+SyT^4?7$K(c
z5>6rYn&>zG1>FCi0#v8811vZ5x8hJ+#ZVZSrQR>|eD4{<Hqmf}Dc{>1<~u=|FXq1)
zMEmh0a1QB71UqP}IKlcN0&w!>YA$AHKLb<FpMw+m*?@?HIUdX%s_2L7{CF!*;8w=K
z_j!Mi{39y_pPuBSS9A}bT;^yl$7r;cb9}lq1s_nN=6A(0zcGwibP;~Pii_WdUH<`(
z(yy69X8!`5A^$GzBl_Yq?5PUB*p6SkgB{$9ZN4>h{0jE;U!|wh*i$d96*U=&J(*Fg
z@5G+cG4mp;<r)aCaXzN}4$w^Mb_qbR8{0<WsPXvepZFMtk5{mJEFB>Glat;N#i0u&
zY`E0+apB8FXO-bZz<o_=cm_b<0aut$GuY9sfGPQXadm63r{4&MAWSb>x$pz_v|r!?
z_moW9?0qJbx!4onMr#Y=@-+^0yFLoQAHt_ePyO!jD1lX^+6k>hQ|eB_-sU&Q$skvd
zyHLs4z>n@ANxSGvwmyCN81(;1S&hgwAz3hd4bS~bNEmX%6$I(P2e~7w=x8){)b^Gg
zUGp(^^dVqk{&<`qvKQG!9%D!It8pjt@fVCJ%-@R*P_WAXEg?5R*#G<-1^?xY61)xD
zmp>Srt;JvZ;#bXacX#1q&l2UdnExGq^(+1u0YB#dpganU3cjv7xaq;%v`nu?E8e}1
z`B!mZ1b6-)YQKdQ`T#my<f|7vfBE7f>NJ`TEZ-ofI8C{gWg&0m;$q-hdjB|KAGA8J
zk$+sy`EfSaSn`U?AjXc)Zp-mbJf{+L>XsBgGSPzXt$aS~OAqO6Z79?}RQ-FU2S@YK
zxqlG(tSlMO&PO{#lENcJK0=u;R)w`=<GgT1D-Kre7&~n)pS1X6S#`O57zyKa3rsKj
zB>LjoTvI}^fKmV!_{C#q0EPuoU3EJ2VK|X1Hg}*>JPQa&=k2zUqV(08GgkU>4FztI
z-y4pmtQbcL=Craw0fr;)9RY^Q0u^}5PUw2M2`+bu@V!HmWkT0qny9WKjr@E#twUY*
zOegw5tEI0$TP-X3kUHAvYM0N>9Qdnr_MvLG0c!Pi@g7FF&GR+DZ3@6`QYgK7$yb!2
zM{ubC6mUB{z&qT~KA?kJ2B$n=oAEe5#fku2K%>8K7tJ+ioXEzQ;Q__({S07RWV9PR
zOK0)?xqiZE%U%9Kz*;(&UQR=k3A!6rxAlb)auy0$OA|*Uo#jt5emjl<I)%INc$q-r
zdnvw@7K~!JGCIT%>gUf?mzD0T!wOg*zKJOk-sa@;z<;)&KR1l?o{x;T0I^n{uIW?4
zE)_to&}pD^hFocchpzK{%$Po)od#mX<&)yQoUhZ52_c=Zy~AemhCBtnD)Ly-xjh$8
zansPhI0IPjR=t0sAT9ZS%6Yz!>tp<sq14AXsrUDn-o+mBt5tsk7e3Fg*7TQ)(v*y9
z#om9qnvdvDVygqySpOPd;@zM8F`obPv+AR#Zv$W6XV?ih8gFnBYXkVVblq>O#BUk8
z-<<H9^9Ti-g%p0}=aWyKHMxn0zwz^t{;ERLES$g6VKg~OH_viu=Yue*S<1QHEv>=l
z$Cc+o>3e+ct37{&&m}k2_6za(=1tWOFcY8u;%DhOd`QszGBWYGlkPqcfjsCz21W)$
zdWCi$C*6bX<1{$8qo!d`SP?POOmeBXKXmTJ=;vtU-r0}i)i~X%LzhzWa8g>)e6`>&
zLX!!R8FITDirq#EAC6td?&^oMe-ZUt*9bU*T=12~KFoxH^qyT{b3GZV@*DPi+GeIR
z_-D)L{&D~R{Ctv!*>XeLZ&w|tazk8SEACMJN1{6v`ct7hR67v=dH$%9ijC?Hy-4>|
z!g`nM;57pDaS7cTR|b(;vP3SbLi`!2;N?9x$p3)YV%W-5go`!98o$+S?@r+`Tg>)X
zeOOh}MRW(49d0sQOg3?3_e`_>Ec{b8i^9Ck_CuoKOs>yW_KNs@9rg7Chk%!v?T-^k
z2T>S!duzf7i`l-?2mR-Y8&EvbuuT?Do~p)y=eHtU4_5sA5C=?@O5TL!4owQ<b;V)E
zd3dy%&^gN75VmJZs1D=1)b-Jap9a-sF>cSJP)e+a{Cy=~UY86*t3jpS|7)LG#eL^+
z0ZQb4n7b{Hrj{Er>vKP!f>!l?lsc4&uK`&}i*5+(v^CcTn2|dSC^I)J(kfLP*7}+I
zG=U}Tz5Ch`=MvnK?$JExTd8uw?A3$N_XysbuDsM!{9AemYO0JVX~<Bd0+LpY;~8h7
z1pWZdP=q6ZQ`c1_NyU<^dSasIQDbrLCG0_OID)XFDP`f<A${-wfU|CejvwZ)!d#In
z+xv=89cd~y`LE`mH6EX1wdY6hIbN6d<f0@E<-?mQiCPB=*^-qGpgfqY$pRHzLMUXl
z5dtCAH5ibniuDi*mN<Bw;%AG865m)1ofQ8$b|K|IfS=$@uJCJ)4ky3Bf}uLSHB>Iu
z-!rL=-ZnNWsMg=NQ(|{+H+iT??9S~5R<r#`eLuwbzJcfa7~}h0<bO``gXw>KInlon
zse1U|0;#(C-vX&3RbN|I*u;MAG)+cjD}xla;_}K?76f>(74-8_*~(Rot;l+|@|Oo&
zDGt!s%AL$s_Ay&All_YM%6bD|d6)P~L$7>g+O7G@B;+e*$ESdh@|RTQF?I`uHzhuv
z(#}T;Iic5(9ut;@JB~9aurlOU==G%h7l|Okksx|kh{LR4IFAj{F`WC6;WT816S@=_
z&bvB>)Alo9IN@bFhGSJ3PKGq+ppM}rvH|s{Brh6MwYtwjZPK<o)z?SA#YRL)^5i~x
z6zf@o`&hkjpJ~K>0M2^uGs%Pd_;B2&a$RLs5bXR_h4Y-a%A6;1FtClinqLrwxT>TQ
zG}u5Yuien}h~hy^|9#N21IgyRfnKHG;l13OtOdA5D+ej$wY*aK?F;p{)#`7H)!#O&
zzs*#CTdMXqLH%u+`dfzj+b^UZs+^_IAOmMPL2vg{K@F*$co!<;MS1>Rgk{YU%MMUN
zpJAXxIgcY)as$nul3L;u0vLSrC_6P(m$}^q-_%1B0b0~u4~Jsy!ujLKx#?MpHU2W3
z#40F_3(IdC=5aY!!FgO#<JV`O?-#R0pmG$(vBlx3KUzKYhf3jRcwJGb*?(WbF>Y~q
z_K&8SlQAGQXRU8q{O@M_1(?PFSJqY@dKNS<{&?)d{A`VU+~g%Ri*v!O%Wf%;tkBtG
zMUI$tW_!O1U5=Qrmx9RMQtnWpTjs%=x@FF;q-6?zLhF34@*k`-?zC>5@s+n(=ct?d
zbp}_`I(7b8y7iUZ^t!%%H}&g#Cy>{-0*!h166dRj(E5_{c<o@1(rW{SN2z?WjAK_t
z)`P#q3z6|)IlRp;piUZLCo5Sy_F_K~#uKa6)j!moo{k)hCYYO#$1*8$NVRH9<hNJo
zbk+X%0KWUDBWMma_RD&Rnnke_R@MXJiuEH}x4w@L(0Pl$F*|-Bo<H5kC)<Qlyb-P>
zXM@#haGS9?PZzI-6~q+5UwIz`&ntK-ikxr+ymLdAzEAEq&%O&RcGV@$7VKzFtfvT$
zjv`CQDr}wo0orrF7y$ahV$F|n$pB2x!TD>j(ncNz!4wRHVTwPZ=MV7tQG5pZoR5{_
zqzwbeFpG|yX8Y&th7gA@zQz}>`jMPnz-)hy-zCxcT>q}n?D!m}R2UHXxgRGRDNA0t
zJPK#q(HB9oLvp8z%LlW4gVE-&(T|Q0Xm)7MW`{rhjEW!TpT-g~xgk04Vd|1I0HVR~
z0EphXsGeqv#A)^|7)Rbt`btbu-Y2-)1uzl$Lrq_z5*X4Tn{EM{fXrxdY$$QHvLxcc
zD^e5@C07eLzPb9EFhCXY#n0yYXeKG7gTm9C6Qk0cFGnYv8{QvBeijMXOK#$!*I|-@
zR#C<Q28h{B^>fOS-FvLg_0m^32i(~&{P~s_&O7XSDfJ@9suyDv$EqP{&~n9&h9Ai3
z;Sc&kH4=T_6ODHU`_TLT`XnmPP+pmr@dho+7p)n%nOqWNWdJHMROlrkv5;O~U^nRI
zemH!2RtutBtFwNjRGucl#(~aRVX3bBLtROsImdDn5gulHZ$EJf1FdB}mTZ87nLnS7
z0<2CeDs#WZwev~MEVMb#;N=QMB;tkjunnf<-2Sk(FbjqXE=hAv*kFNQ{E~AD{jE!|
zQCg-O+gZ@LY@l;wrA4Ybpxv_s`m5eYO??&6zU{+40$2C*<xAd|h#ip~@h)s8NlG^^
z6N8tA^sjcix<?Y1da_d7`2u?57iPyjgt2t>8wCyJyEHq61)sYq&le>VJ|}7Z2o?8Z
zD3A6m;dA|JzMd+=hleTb>uAhwO#SnaP0Q2!7iMM5)y01Seq*d#!6%5{t8Xf5iJimV
zVv3SiE`v9c1A2w2e}=g?mmBlBoR!AmkcYW$LKnoL+^i-T<&5$5R4i*{C6X~4I0IiL
zEUO=hmD$4CpAzMd^vNLuGqBI|F&u*D`Kq~=p5?nt=~6!!_epq&DT29uiV5aduEBL|
zy~+0)J-p2&u%kAY>K@+bvZ>I>n6fC~4HP#t*oZB}>wz&eP~xv~WGyjuqw9~l@Q-9~
z;8u(?j`uN2j_~9-&h8-$^Z3*%F0#(kCaCk@6UDZWo;TUv4==u=7sXKsY&q4rO>S{h
zmk+1&K+Z4m2q%B(0#lKGJxZ3L;#sM#L0r@QV;{VZ9ZNOcNm3y;XIWFxXqe_a6SEuO
zf@DnBp)$(+<dyXSP;!u)a(aq2C$DUUKN2{AA3u`<8}Jk(9)b~i;vS^oDOk}9ItOM2
zaOB?Q<Ge4?RS^iMwhQ>0C?2=*dbLtqh&TxX7bD&j1XOVEUVt4y=ad@9hWP=?QG~;x
z9#iD~p=1d-K*E+1<r!SVipWwST*I~pGJ9hmumkA#nGk!uG6Fb|OUaa%5Exg5KfFdB
zU4z2mhXv4ru*vKoFCBKxvpK7!ZLn_VMm)BZ2C-kZV*tL&eF9@1$P@9bH06H2PMJiG
zkRXVrTBKnqTzF{S{kU~&h**6Zio!!j8~SKPkNRPfhf`EhODSWi<Z@F=K{2aZ6kxE@
ze?sRduIUqIb@_4h1!dgvV}ENaXm}<};nf6_Wn)N&l8>h;y+y?x2om1<YHy)ulkwW5
zE<K(?$xF=hOMjyz{*r_wT5mvFLuWx+XF+EBczio+18$!;e_?jYi|u+(JG%PUiK_eR
za?(ERt5+m!*jkgiH6R2!-;AIg`nnI_&OAW%;rn7|EAB=va8%#f=}<-tDoJU-BNPXo
zf^u)#4ZsD*zEC8m3@(qJ+>`@O)q?R1@B3gOxG@}OJlzzth3Z{FA75Y}_Q&ZuBK9Uc
zpm^+n;xS6+Tekataaba+22ia)kVN6m^)rgfD_Fywz4R>7s=ne*nsl+XAfa2ZUt@sH
znPIVJriko(RyGTPI7Xi?Kj43BO}Y2`VrV2?r7W>IpIB>=F6>g$J|H6mNW9U4^)a*E
zU$J4C?c>Nb2-nQnlLMdWP8NnFjB1FV0*XiPFjPDOJ9I+D1O0)+5M-3+G1VEG>SUl}
zvQk?-Dv+NMRRwmSenK{PR1}y|EvTRGI*NWaweZ%Dr1mq2HaYO<Jv5)u9hLc%aX<Z)
zenzzP){jperJn|2f0F<ip?;07flvu889O&pPQ2ijj1zziohuNbHWJ{5Tgc42f*u|X
zWjhBV6@mE&e_`IGN{Hdoq6VBQCLH+%*%x*YrNL;6lYK-gzzL0&y?F)x5*dcp$cGev
zNQ?{mqBo|Q)#`XG!RG;LK0ax#?ir2FQ}B7mO*N0<ID9^=JnxV)@VQvKN3r7bIrSdJ
z#{Mt8g-JusxM|QQ3MC7+AELD9>@t#nZ?0J>$Vj0qLU#FcU3~0e^;X1jmu4qXi^sv?
z7uD1f-FBX$yoPJk?aaRx;DxE8L-TzDm3Rl8X0iokD?V~YvlD~|<e0lVtD#`D(Sp%t
z%>c$11&5Go5Pr@>7%q``IoFTPs*?F6US^dMSj>(d7yz1ZL-@6+HSgwMH`-&%rMbOS
znPLCKqOgA|$^n8d&ACZV(emgcr-1oLKlNhxM^i->-F-6|2I9~#5G~CYjpEP(5G^;=
z#VK&RXlcCKPaSx>5TW!FKq<c}K!Y`gP;2m4V6E0r^e)8Yx2wtjtxz)c!qnvoevw_w
zB$X!cxF&hlO@seu?4piD?XTPgno!qm8fZ3J$hwIVLW=!EBo+YD$eN0iUVxLniLMs+
z8{>5gdAuBTyoYWY;l(}@nd<v9Hw^DDGPU+i5S}@5oKb%+q*0}I@LrjRyuR9FzrrQ|
z1chFjS9+V@$$ORYeU0=qQn3|-DqMdw!EZvONu+FgB61ShjIkv0XsOK(O?nW!f5t-6
z!)$MK1J5s*ch_`7R0PIBC#r*9zAo@IA#qD7inq%al65VwB72+CjMy7_Vg{J))9LYH
z6Dr%`F-7bc^r!`Bp#%;dk|mxGyTdJ*mxUN9tQ)x}8AOYvUlRo^$nl{uUds$qexj{*
zbZ2@sKcFIEk&1!&V*|DG52jSC!*?+$w9<B!%1WD6sw+*hvYiZR;-z>VDap!KF(ix&
z`uiRm+0&tIl5p|IuTsQUR{Sc7T>9zL;#YNkfq<AT;~6pKWahWElTdy@piU^&q$66t
z4UlPw9v`G)IKt$+1Ni-BM79xz`~M>3vsg(QO=oytqu_s>vej~hk=`EaK)RT;HjnQT
zShe0`p_j`jFzcxFX`U97m_gegnA(NtG&n+$%CDeu;R?CjwjEo^??x#J2Nvk&zjwCN
zT<SCO6f-iS>3Xxhl_pOAx`g=lYfF?2X%<QW`g?19coOt8U!?#C$<uD6gwPo!nTjBj
zbc8-kml1*c-a!j^<TC4LF*tU#<_Kn^sdP=`1aSsOFq~U-R#OUWF{o;#&D0CIXpz7Y
zJ2BlWI^nN5lL`5SMw{*1+Ol*31<p$Df)*}LZq3{%{QoTMZ-|BuSJ*TRMRIOOqPCbD
zrhr!04+PLQQYDta#6hWRwi$UMM+W$`!$tNJ2V#;@{a~VPo2sS{sWEHoz%llVL;%BJ
z&R2VIl0H^6H=6BZ+TbUsg@iXDFR|Ay0^kz5{sjM+7b7k%$D~y8CFaFzl1vrZt>N7Q
zcn2CSs2JJzvR3{9Ah`JrJcsih9jDP_$F^rI8nr^3`jxhXMgE-#i+*mSV9_JAq`-IE
zuqPTbgdOdDI603iHiBZI+`NpC71}Zgm3;0*q<9HYY0(8lr5p6a06s?l8ijiQ<N9MX
zu6WuV8YZpKV^RTjVQ<!o7SZscib=y%jxrK40YlIf{!K^_jp{z8Cc^l6Z<ur@f>^(b
zNfv2+Plb0Q-q3PD{g3aYvz0NjAl_^T)FCud&?XUxkZ^`DGFinOLYq`Vn-d!qR2RY_
zs<V<VyG{!gUGl<IbSV_*f~(uuU965iUI$024vJoy*A!3PVXl%0pCt3*jcM`c2t%ao
z4)E)L;n%Fzlr$K(YfzlnF2t1?QFy`n#zx+Q4=j9ZhX?kaB?$I*k>aGE5coX(@M(J=
z;cS)=_{VuT4(2`uYSs&#X?N;HFc-V|i{guic=L2ewU4{0j}NeqguvYMh#UExeUvNZ
z*hlz#8yp0sUw_f8h);6&^$CLurIni*(JytzZ5#~@VFf}d$-KP8mOCtRw9R><A65vM
z7HLTzp29eg1>2N67&y-U<ecNal(SYk6;thg_#tFCm|4eutP9$Tr^5E_lj?Ry8-#RU
z4=t3jOE=^B1#bk>OAX%9tRppx6*>|qbZO4h`CUN9NG4E6NDiUC5UPqH()v(}93KQy
zq?qn5NvgE4X{uj-V4#PJ9j-{JTI81e@l~CC!Tt`RYUTs|$X~1ZT>g<>Q~r}tuW>|`
zyWKj;ijKfRfx1J&ZNzFKiq&-(!?5sQ^b(1^{9LNUt%#i<1BQqfd$2L>hT6UK@><-}
z12m|n&-mS15zrrCuAsnA(#7XU#e^nn<i;1pd21ur=Jq2@DN=VO<)RXQ@^l-flwCjS
z<$eDqgy$>UFsJ_cM@`-*6Hf?yh@xZ@&oxsx^=C-=u8>{L@DvW*HMkk_1d{jDTMH(Q
z@^Rdcdd>q(`ZJ3v@6Ss}h}%e`=x5OwexsHw^y%6~C-gfss72^EmXW+0HDq}s3!{u+
z&^8wO7AY}Sc<SSPqFCO074_qriaUH&%17K?L&^h#?i9`}1ZRz0I+;0eO&L#oI`&Ci
zZqpPF9AE(tkR1%a;zE&QgOJZ!3$M3JF>CZ{67bycwu<p)wOM7@2kU#4?@jLVknc$?
z6#3qYk|}ik@hr*rKj9xt1jLd(#dIvY75w@O{F>DSCHuQ~GsDYijRhLt*dX@7-aup5
zbI&5^H-xFIwvc{kYGI?J$(pkkt**_^vegwZr(OhY(_4%sQvdHYWb4?L7<4b}0<%k$
z2siDXQ~|kbOX|8)J<`;r>KKZ_#`%5LR<&o9grYxAKSv4eG?^;RZ>+KAPKz9!Y+n9H
zN^TOUNubO~eLAxtcK}WY{pjg%&+Icvn$?Z?a9*@dpg2OHDO!N~k(LtsMhjkn<2!8y
z5hS-lZh(v@c%Y%#8o!z96@;8YbZ---=Q5zar8>`{Nkhrn@Oe|bC4?VxFclkm%5kF5
zH0M6E1IxnVeH&fnr^XL5nH@(OqM=JN&!5+x-dP5@B1O10QjX@pf|WC^nN`xJZkmAm
zE0pYBp*H7r3Nk^9HePU3{QE}@IpUS;w?dD~lunrKFSz;U-b#fV_=E=?SoxkWd#+Hk
z(P$2Ejguw|lnhnEp0m0Dm|j1PVB##(uieGyE4*e#cN4w<Hg;IR6+G1uk#`!?b0~uT
z;jZk3ltlLXF0^MscPU;3;sR(#N8YxFIvNEjCS6k)u3TMAw{Co1f1tB+UY~y6cwXmP
zHTQHzp}Iy+mum7|mFez~b@8CHTG1`ji6)#>2L6#+Q}`bmsk29UNTNFbKoX5aNz|zX
z<r$3A3}Yg*Hd4>UpQ?6uE;^8YPK~o1(~NO<%QC$j_@faa_Rq~&4lG-yA$AUlh`=GO
zQ4YkeYm9PW5>Rt1qWq9A8;f(_&^y#~U$#Ye?i;<#<J?!$RFwm#P9R|fHP@Z{9&F+L
z+&3k-77-A75_v;cvKhx_p44gU(Kvx9wQz++ioHw6%)?n*k0SK<CJa7m;`Q7Y+T|AK
zzLPEg$+<7qc0vdSMJ6Pi&}0If|1`1CJWo4A4Q}oA`1e?dDjv#AUd6+;C=c-vq>6_T
zlwhUn>&Hnv{CwP-czE-;A|9r7Vev4qg+V;54A#WM)5mdJ7Bx}D!x!{JyJli$@JsbE
zyit5P9N97;R5C3qb_yep6!n#cgXdb3cxZLpLp*GuL_l4uj$zj;MHZu@omKHLwY4f9
zFv-y05)YGvc&Kh&Q#@Fu$D@eVyxU1H9@e&IJ~N8cg4pN7cm-p>)K<`dUlkow!~@=>
ziE=g<jv^IIYsd5*trHI#D^P?)-!NPT2?r|i3>*;c=2(RTL<MvcAEp#z&O$-)0+!Ug
zgHKT5RxDrgM}$)My?cc<r;t_+_=x@_bZ<JEX7fLy?h&E_!&Eb3$3*yMVz@q39xc|>
zgA9Q~QeERc;_rl5S!j4eX>)-LgCPTt;=SG#A#bKMRfN$Mn^U$@qcrD*ROfka;AjIv
z2U*?^Lowm~4L;VOc(KCiArzC8l&Ghb{4shS%6vEtFK7yj(ME`V_^XQ1M!4Ur$!|z|
z?<PNaZn36+_tWugoq=zSdXl&W+wO~OJE2&y6H@W6|Ia~W5cX4gPRZYJy(#BkXu$aw
z8esjK5=G8rHBcnM{8L`eKVAR9uvK_${P~O`PZDRrxKd>S%bmqS?s)WnJ>c*4uRrrl
zz%!3c8^<Zu7sBg9C(?cARXIA=W5fafU_~YAFw%+B#{6`N&2U|jVqNcf$kT-<)syHN
z?85f}-Ed^7mKQ;XQc6eS0P?DnHBPQK{~s`MAxz><b3pMI5!G&abeRY!M)v+@gkbNo
zFDNfq*i$}6j>;s%qDWw}?6k3WFKRqvB2=FbO*E2Vls`Ym;VQjxq<o5F-Y>=A!=J_M
zau<mYjn4n8V|gs%ac4<Pc+d^qf;P5Q78F{_3_yQ1KycQZC*;#-)$$!RRx3?uTXUgN
z@(L=9nhl&SE!>)$*lvO!U*bB6>0_98QaH+k>{+h9LUf}%fFFW$rbhM!_DAQP;nBdc
zqeu^mC1&;_a88iiIp<9<LzwZ<nBD0Q0$Uprv*kZN(qEC}B^nL5WmB$4mP9J5=f&gX
z@&DGL2p{Q{JNZ^6>kR%z4u9XFD(PB+2uU7<$<0wvC5{{KM+pYQrTK06o8QsNYByV=
zoEP1H%9E)Rs<eRM9UHEIcazMUI}CmiX&g1xB{!?dX!7bKgL&Z25R`7`#PJ#cA}o+2
zBPWr5L&h6QZYnu`)>$_>FVZ?Xf}8Cr%?;PD9Yd5u?kviBgEu)bvbf2?x#qP|=Gt6l
z-1`E4k)NSV2j$Yc`0)I79qu^Q4@%1n`005e6YP~`BeG3H%-nMPb`;d6O|2C4s34lk
z)>sZ)afL?H>bcg+^g3O-<@D;+I=#81{~s4?#!la8E$p@OUFY<B7_RQ2EAZg{2zC2t
z(}ZCH_DkD7>GvPiiZ?b=a>*1C(p*s_9B%Y!siV_C>zM67m=)9V7s1LV+Aiug@meco
z(XsS11rbEEB2Nq0(@F&;o8&dyxST1~3MagJ%lEy#=sk`6v*IWYEmFv3sx!Jvpw$rg
zMecd+mL#w(_-~WI-5=IQ0*)%WsXX0Jr@P=JKZk8qcfA${D&IW8vt8N}^Ndp-hr~NL
z`g2?mNyw*zFrU(CRRe&dz*>3SDHVoA!ka?Ckl1$Zxb`aI+UygYH?A8F8db)gt8MY2
z-mOXOu3GzTG8p<DdxYlyAnGhXE@#7Ls+)TB1kSv_1Dqqr(fjcV)siDUd5flIDIF~W
zp`V{}n~pXL@=a_3YaD*oz&ty)P%wu|YCF%fALJ@@bHRbO$m34l5-8EN0wo-QGUPCf
zjn<uS8~gYSc0F;yqMCN(@C&p+EI3o^0$;CvfpW>!TcY>!KO_DwdN2L9Ru13v4g-fT
zZJ==YAL}X1VbEnAb2!jU0ccN>$+2_l@iD5;cYN6F*%Upnb4Z58J}zEHh?gdOX%7c6
zvI2KN9z)F%Pu3%vi1a6#Xb=BLADvKXqD>mmL<)%+!ImFrrf|>`w<eX^cP|2W?~$WS
zpZ?IF?6_PLLF56)Yva&8cmEv@eefMG9NIC8)Th&WoD21WbLwRK;AFo=`cskqVbc0`
z2(t<9OmB-??-RFYRD}o+^S~Zg;5UJ|DeH)<<D|pA;><J4YTS9^oi<tuH218(8nT@r
zoIFicDHCM2-(yzLr_V{%)x#paeTTAhQMaZ$Tdg}6Fa!g14`P}ZPrefga8jXH8@m{L
zm~ifyx`1WpeqcWKMwJ1Lv{UMBm>3Sa4w-H;(MT4Wfp3T-?=>zjc?eCoSYC1=!ivjF
zK0lsHrra~1iyg*^+IXMtAm8ncW0lzdfxxxtUQn4EW_pjVdE=M=7<yO3w#VUwvf%hF
ze}73R*~8$p+^#7TZM1x!tRZ<!38T5DnGYdyoDfMdQuD(!_pUCDz1p%iHDEV5@?w#f
zoxSCbrq#Nmp}3=U4)EDwgCaX>Cu^@hZu0yhuY&qJy)5$h<dGsmg*|nM{Wz)#{IlU7
zsqGPk{Q$N4-D)zoSXU!lSNWk^a`8*s{x%oSeX~|2<=z`!*M1jFK%HN0^f2O(Vh6v)
z=7rR{$m59q1NM30o&Kl9q-xTY+LgL9YJaQf{`a7s*X0(gWh@1+8`{{w>rfH&O1`(@
z1vuWr$Xj12@v6r(`8)7ydXSK40dQ66oo|?*Y^V~_O0#U^wBK#SM)oM(+?QR!rfcQ#
z5_MA%K)4uR8Nt?IK*(75TUuBo<gS91U;62$MT^JD7a0s*4B`+^5T8U4FF0SDe8_c2
z{0;fwe%+gVs17yAhX_0{@^Rc($2&kO9J?;$SBm0f^KwJs?8<J(tFNmJEKYj7A+J78
z{)~=Hl=vkYy%s62pyTX0!G0BOl48iEcbh1;TA)TmSY2W3wxVH|ODUfTV}pCBw79Wo
z#zywAM&cR^HJ23)MYulRVAX3xX62M7>J6QvVPiHbU!`k^C-6RuS+s^AeRsi15>n8W
z<N#G~EJp)Cx^y@UyUxPkdA_gig}@{8teY;5lTB8}p>(Tj;W0!ym~Mu9H$pUBiTNzW
zD;2CgZFoiZ246QYymA&w&5tkwVu0-2%Z-Gt=Qt^I%+XCV8Wv=hkACgMeZ<DEG}M!4
zR(V&Wo1J0yJyH?DaxbnTD_0hA?0UFdbWo5fexjq&+L_B~#MIL=>d`mIh^%PRD&`Z-
z>pL4A$e(_JQt&HU3soCjYtEfQH`AL_U0FM*$}*YLX=a~GUioK#y*}YV_HFj+WaZ-x
zG+9Y1bWK?qTUReDKRknL+QVQZT^OMvw?F8Gj~1Nb<kZnNj$%PG*^mZIebKlvQDo5I
zOp^vS*|~v%O?Jftg^L_{E=u2pXj7KB<fJy`RGRV!hAFo`#9v$R>&d#Wr|7;8*S_wr
z``RK$9#VwC|AR*lC;j)&TA2K87&LY;044GJXK@M}Ym-Oe24-2aj}~cIZ|YA*bDJU=
z<l*HtcCti%bpI_?p?hl`<SeeVayuQKT2)8T;pz0pe0W+|4^LL>DTQckMHRo?EMAVm
zm-frhF<E5fItRUCbWgoR^T6n|-Mls#u^y)=zexF<V;5gXu9=8(L5h1{+xYIt-PuMH
zD)o6!B&J}`!>M(6L3!9&&%l2cuOQ#p##3pPrZXht)+n6g_Fa5;n!D(PC+t4BnwQ*e
zw`8qX?auElc!UM-6f)gjW%b42nzH)DB|LS+xaF<#E%*1qTK9K9B4W#Jh%zViYtbM7
zYRGF7V&2ieqfMoGe%cSm%i4L%**4YB7C-tB$9v%qFD{JJ>!~{)&7Dd8-$7psw};zY
za-i^GG<19)!n-wf9NVXykP72JrIYVyNOiHU4yn$)Z9uA40;#@2EFOk?`dJl&Qjr46
z)ketec|ucMrSl|X$wBN9w@r4G-V#`SJ%RNou4%yUxF+Quw)C<nwC0Mky2hF0NoWSl
zd?1uA9ym$pi=kGm<o0QO?OH;fO!p$?I+bX=$)FM~yTp@i4x%l8Bu*A%v!rZjmH&u9
zX%mXQg%qzG``0xB@!p#N;+b!2AWqhUc+L_7hyz9R!c>4xJ{E3}`&N2f91$a_#P_Yd
z8?Jh7rQwJ3@FQ?|U)}KLI=bOa#^LV}%Q&DBeo21wz+1Yx%71KOxHKFDb81s7uhHm4
zerF4t=1`lE`xLRskR_E=7NnRc+FrgTDm><i3MmNtK3lxd%@;v6=*Ik(H@X?+m2U3F
zj?ZkSdm_B#D3*@b<AcV33JKIF%2^uZz01-73pAM>SFY2`RpRCQ;$?SyX)lBG!-_xz
z#$UkqrD#}nen$cQU-9<%*J@RrAhTAq^jDw(9sMs*#QBAS2p`pZB@WIjX~Puzg{vOs
zalGhN621R-Y{YrL8@A?=KxJ!wB*_$bUqJ*p!AH|ABaGcKo#Wn<gQ`_!K^;JKs>b_C
zdDQRjzi(VARO~7l!ekg8ta<wMAwM2N9V>Q}y-<f$!PJ~>Zn}|PzMnC53u0;~q^==V
zo=|>1zyRe{SKLZn8@$HK2vF`HKPof8rcZzZn^dy-7fM~>7kNs>KQlGPq5{%)EA>G1
zFP-t{;5p<7G8UKse%nvz@Vf2{Y*+2B3>EmuBOb;v`SmLdhaL!rwg`vRO8(^zM7^Gr
zfsvBAr%Pk~#hFDucZFg9sY!$V=9;jNrWY@m1Zq*DOi@%ye)umUiBGOFNxZs*Nn!z(
zMt79Ju#|vP-m=3h&bI$M_JE)*H7?p?Z!eABLb&^Hbi2_9=F>WwSRj4l;p4oe5Bp)3
z)EnYf4$rPuKcyP+EBkoUP%cU_e!OWYDdkyZI+molUILIT0fH}qc7vQYHBf+1n)I4*
z#x^o2BX81sXyRzQP!{&ypsimt&~wfHo?P=c{HX2*fg*$-fG7EM-AG1+`T@#8y?BC~
z59)aGrg}^{H_@JY=Lo!1KO`7XNYNBZVK#k;9}}-IulCD}ApOzJ%;^I1dCX0sg<lw$
z0PXnOLxo{geyoTQ^bthac8IcXUguwWsYq<U{?Dkx2T3ZZ$P-`i)gF|u&ArRlzt(xs
zQ%sS(s~U&ChQF{Cf^E>sd8=08rOw5P-0h`9o^zoiVg93DCqg8FpAB4B1LcR_9_8mC
zZid$UblB}b{R}_dyVe`venG%lyaR4&jW6;W-F~nP+@*1A`I7NKb(LE_Qc|OzCb#eB
z1?(rh<`jC~{?p~i9Zs+DzBx&?ZcZ$c*0*ciIy^@dM+Au}F^W4?$|1(f&mJ()a4N7B
z>+NT`0f+0eMlV)92FcWSf}d=|(dsJ;Bb6}KxiQtbfoK2;tF!(S`S@xfE|DGBs;ZbB
zP=W-j^RV}DWL4r%SdUY?1T>QBEGCd>v_dqSiq-)gzh5*|h<|yE5Zp6yO6~ENCD-_u
zF)BZpU7HoUZ><~jBtk53|3CgN6Tf?Zov5FnI^`EF);r}RlN_+qt#^GiSc!2A*j(&y
z79NrfM;lF^jopVSB9kqY8{;yTZrSrPE1zc%)lhY_9u{hDT>g_NhdR!y_JR$DMOhTN
zLYG&k5g~4_V%W}Bq21|f4Xn~F>l7mB6P_IH0NsPFQh^jI<-cC7$q%1%|3LpUbUY3_
z9*p)s=jE8)6h$wsna(iz^I$ET`B<%+X~XV(_WtAV2H<x~)@c5&n6Js5JR;Ruret0G
z)0%TWLzi`NC@2=mt~nJ{*EY~>4-TMQEtx+>_+XO#oQfc`V>@L;UhTsvU(NRAR1YyA
zQflR{A|D>b^8DZWN|@=Nfmo&ietMPiVyvD?8Rjm~S9jd3!sJV+W&Lat<#gAZ)MP_T
z&P8}88`@h(U%T?bIwGRLnvnR&kCe})4h9Oteo#7={?ylmNU9PbQUsAp^S1~%EvZTJ
zN)d@L8#}R2;tW9tf22qRv)$^)=JilAc2aJ<Z-CWff-Q>7=Nv(yW=9(?zD{fV`lbpI
zGT^@(%vqrVY|bQ0YUT#a|CgMz!58BQ(lSqh%*OD6ekM#jGr&3WxJB<E*c)e*o7lgv
zAEix`CYJN?h^wCjb85ov<ROTe2}3KZFf$=GFx!^~E4orgO5sbc^dF#ZM|o;&0lHnU
zW3~?qz(4A8zT|!}Ww`D3?*i04879}*lOIF^C@K?YcTxROs`j<{d)$(D{J6R*?N}~l
zXdE9Z;zHDFZE1d-k_$BWy9-6>RsvfJq1qNWNHtJrzc4^q((_zL#B6`GE@xCsb6&MM
zOGUz~-M(r#MJp~PkpV2;klTtD?KtXz)<=B=THjx3Kx;=w@&zbcwHaFGhjm6*_Kkc$
ziiMd&K2G)X!TZ`$*sIe1Sfu%s^wWE&mItW$Yh2Sqf##f>a?a$=s>TgAJGRh`V1US1
znVVG~WKVZMt-&S~<0J8=Eg%xF*TS)KE=HYVYb@jQ9%fi|@1iLR_&-x$<RWTVjn48w
zf{r@Xd_ssT1O4Pim8dVbQGP?0zaG89Eckw3wVF@JgwI=*dg=rosXL&xQlM;RU6rDd
z^``<-I@eQ#I9U-E;p^Phl*aW@{7fZ&Lt?nQl~Wo%v^VJ!!_BFu<{s=rYbXWa+ng6+
zms6cbq;c1()cGTJIm}p#B8>8fBHy*bd$Iy@ekG!u?$?-d<j?tc%s22Y5`8_cU3>~3
z9GmEn^?;H$We1htecTjN!YNb6W6G4gK7KyZ>C!54)J?;$ofnbcAEx}EfIQBMDv``^
zi`kKkH5NLkzra$<Ldft`7!bLv3nJ20PQAMNFMtuupHaA<$hj%*Oq==}A~gmpd8bDC
z33lrk=Eu35Y*%6J{r%MX*htfa2zop(7l<c~x^Bet<Qt6VzayTfF`moKsyy;VNu~Ui
z+)|hC3E;jHe%J97$FiF^Z2wSV`)+r7k|_D+_<}MG0+l4MKIliu1}Aqx6D3tyxhTzr
ze&pdwKB}`gQ|8pt#L_B#QYxB6;tjq3zka+pWxP0Ty!|}hBRF2Tud%&VX>Zcn7jgSJ
z*!~i&bB82df%#2W^CJ;{?YScG>k<AvZ#m|lJc{9qxgoRqQHJ0HeVH{ZS%QYBGD<OO
zq<^~H1{T2bM$ZAH(%B*(3<;L?fb?X8Eko_#6wI(w7fdI)7n3%wsM6?Lkq|V=)#WN4
zQWt;0*;K|f`x^Y9r)FI+LnimN(A6DN_^wI86uviL4NYJT(*C!o2uxNTBGRnR#DF@X
zO$C^Ga)A$Vx5q2FdR^XS+|5d*{x<r5!!O0Zi~M0l<yBPRv0a7O@6-Bt_%(Q2{78kq
zzU6d_d`*vcJ2+p?1DC5rzMMZRJ@Y}?gb0_qDUCSu`8$=m{95JQq@LOjzFp`spHuSo
zauNSiwrU$v$wZ(MxlGOX1!P9~nIkV(sTB^pk-D;)(lghm-`6tJ<KL6~*uY|vE?%ml
z07a9CO$;^LW9lfmkB62jFNL*+?(^TKKIV+`V`{KEFEBQ_5`#~1KqBZsewYB+=FA5C
z>SwVz)1s`-;nC)X{o<tQv$R5tlmw93PZ()Jfp=gRuCS;Bs1T)F%#K6EAG@0I2lQ~b
zlPblde&wCVcL>t)_~t>(;|tS}2R%dVKX%y>wz^%NjPW)Mmn@SK#Jo}HYrvqN`+|}<
znnVKRe37*jPYwx*o9HE9qr^7*GD1m!Oc@uOL`r2>5%HTuQg}NiK(3M1@xOEdag@kJ
zx~!53S;VlsJyrU$Ij5k1*4(3@8fWgY0o;&Ym0Z&)J1xn%DUp}~xhbp)^SId7&`*Ax
z{y5b+jGz4}3G|XQXVw~vbYn)f#)CJQ?H5go3LO=wZpbdOcb#2@S+?`50p+BVFRPXA
zr<AjIclrgOwDILa&R=Db0tEd5GOv3oMLlN(g>${!zf8en03jvBjng>D^IHBoSKz_V
z(FZQ<%9DORY&Ob`-PhX>njR*l4((>k0XLzC-*6yI25jIbebs)6o_RdEv8XRyPY-NZ
zey>1XJHyxVG2jD|E0-`<{!^nvOh%r6xD!jO@oL@HhA?lb@(K&;J1f*U>W&yGi(7qI
zdiiC-I{7s<&k3-&gFXF7S4HL3=9(HVRTN_%*-yBJTO7NygL9^1^blnOb3GSrbq$P)
z*^TI7LRpfU`=E#&!U!|Kj}f5W4vE>4J~U?ce|)6(fx<C-2vHqS4d?LiB_TONu3`NZ
z=V917p&URDyoto;0cc0mI<9$`#-`v3W(R)vx{lu=Jboi2!B?ZMdGe)s=QX~B{<I2T
z$~s@AM!fn3seDNqNxw5)1_lXUL~72u3p!!4&TJnNq~k<^k^hUJ<e9F-SB^3t5|XZd
zBr+tM^Vx7<N?WYX`z%)He}Ewk0ERRm4yo1LQRUZ1rd2cDihS>tL=l~Qi9v(DP6!w{
z=_s+OMSm)6DwFCahD?DUC^CIp5GOiGb-idJsczz9Uz<-Od?+Re=s$>lnf@s<k{2l<
zXzb2U1tX!!*y#L699lj9VJ7utBO`f%%;gttl;s-N@J<PTqQGeqMctmF9+0Jswv07D
zgB(3`JwgV6W)oEx%ngUFv*h;mv${e;ijbjTrxd8~wBZZEM&Jm!&LaIZwVH>){O2N#
zf;}{d;U!YZlP)O}pLVZWjaV`Rs76}yk|=EJ=vK-Rib3aqleC40g{#(Lvv;AH+_03d
zT4Wi`o!1T8$K4v0-g^xlBDB+q{3v%yNb`*>kp0dZ+}V5BSp;Sj{Lx7sbky^z9XRTX
zC|cjWLK(nwI^zI4Y3`R}iqf3h*&r_$T~+JJrDI>e-=Oxn)P5JVFW!#La;f%5;I@Mi
zl%hPG^nyd=&&YYmU4dgzs?oMh<K*OVXi!g*UYu^shhJt)zud`RoJt+(H`rxvvjp?#
z%ky}P=CR#R?1O`EQ})|fG!>&d__ibjJFE<*3QLoHuNv}E0^qVFp>x-#qv#p}JhAPs
z)e+>?lwv9{>0@$Qj=2ZbO*l85BtgjAgBPK304HQlIHusRvYkFne6)yoeYc&|!(H%?
z)aeHi3twV(V3Bf`K`U@?+~{4FIXsjE`YeADzK$hEq5?GTC`(lKHqjUQmgc=ey%m3t
z^E^=dX6)JLeKX#B+OQdp=almyz^xh<bCjTgQ<Q%oFWMba{8`wJ;40dVb)6A`M03E>
z)qDI{t+O+lZGiX1M{J;E(wgq1)Y*@QQbklPGw?1yVe4=nj@g}07v?VjXI_<$kg1Eb
za{3|%;I2Bu#4pbzZ5S1^z>hy9;Jy~a*V12|<()-`-?Nw9?g6=3y~2qFoFjU71%^`K
z-xFw>M$;f&XKD~R^is9LUx?<pQpYK?J%loAl7`?{DPj$Qg>_P<RB}^*?i7RWj0U>r
zDRkiq39&MG)wmPBT8Xb>8IY~$msNfu`>msGg~&>8!{YQPyQQ_KtLPNPh$cr|=KPj!
z(y=~0Ef~RCnp&wcQn@yX%a>@R4m1+#-^Gi8oq$FL8=vaj$G<^?1O)iWOWq*2Z||)j
zm;RIia*j=0Y+y_$0l*(9$^2=UUGi$=mc(?J^5kJu!aK1mp>SA(ZM3Cka@+@ME&E2K
zyLGNb0p!R*o<<DUijyrYal6x8W7sq{`#PSIA5u(X{=UqnSNSlGr8*CSn!5^-jP5_>
z5#+&<_|twd*1a>-v5H^Ao8lcldd)<hSWc^Y3I}daer?y_aY`rB6?kFt=$j%`mQ|8E
zr*LzongnvwKD~L>NND@Cjj~=8wFHDxeoB7&s_@Pah*Tyo{dkf)g#~fcCoaZGXmdO@
z_XP{ZmyBh7>{uDi`5~P1WTNonY*fD}jTcQ;kw?R2;Gw)NIPBI7+8nowrQvUe`ps(n
zf-16y&pJPsmiThGGzn+OCofPgB1k)$5hXozvdVDswx{!(XsM6x4e2M<fy!wO@mqTZ
zQloPal{5>f_Z}P`Tn?_Q=HrV>P%63Dx&kk~3$G~QsjHQ3A8Ac~nBklhqBPD`^95=d
zX?W3_Y;K6z3h@}$Gk_G=@UCz+A9$P<-g|=7$~9-)d(lcr+Q|9SRb0Jhs-J2kHIW@;
zMx6A_2~9anAa!m=lJqeB$i>_*kcDN2RqA&_Qx_kKR2Kc+sVdc@YigvAx=vTC=|G4=
z&7reW60X;W);lg*S!bGalD5LpQLw;tu|9I-Nlfa(iMvCkvBwy?bZIjr5?4y6v7@-s
zjZz(2WC^tZZ7xzdQ1t<Jo}AMs%sgjrB$~hL0O`(%2R57;@QT%Ur~4T4r?Zj?Kqwbi
zi}Qt>u3mQY)qND=P(eZ?P{1epdb@<_2fB%7sH^rhrc}ApkE;U&Qy83mFjX81dHfzS
z4;_!;(68v2A}M<|rWu$PX(CU9=&a_Pn2jSQqSZ<eK~!a`B&(hfObuwf-Pk`WeQi97
zaklX_XfEMYsR6T{Ikw=Dn5&Pgopb#|kyu@+U|~`#SoqOvOtt{)4HLnBCN<cv6rnO}
z0}+>@kh8G+G(M?eP;MKg06fE5g>+0wK_tTZDX*}W7gQVVKp59H@Mx8YYdcv@=P3#o
zF-iA`-%WB+wZWdbU$Vd}c~7-g|Hts`mMV_G^Pif1T*BuQ%JY8d06t$<p39}p`0V4>
z^6w9e#ORJBbVVVjed)6!JQ;*v61tL*-#(S(RP9k`y?i&(`*&aJzoVesBuq0z@JJA!
zB;k!V!R1xGJr@ZF^T$a`X+M;#ViT)X-Qfh5vOKNX?+PX9Fs$!qC13U_{m#LLU1<m#
zHco6<l(J#Qox?vk<JupUTE6`#K|nS7R68iB#Ll1g_0|=ombVgbd#RF5k!HuFN|7S2
z1}NJd_6o{AVm>y$ANKg@!e8D#Dt=XyFUs^acmyE=|L5<*qlcTvr+&PULul>fpmlOt
zqYH&GGT$sXF8HP}A39E9&4cl6wEXNEz3~?4_Qhi_yo~GC?6P_w=;t4U-T&7+Ij_N_
z_pTR0LBg1TGxv%HaklIzqh%<e<@R_w@E0y-lR|RN3`?MS&e~SU%==s5o4Va~+??$_
zfp3e}AOpuP)U8K1J5Ro%voE^>A5unh^*7~I0Oy<51}`}L&Gv3>(9RGR2My>BdqNxf
z;MjJwN3=>_hvtI}i`fx>52a{}T8H)skZ0q2Bf65=lx&-Cy-xWzd!t50F(U;OGg8FH
zO_|<Ca|+I0i`gd8n7tQT9jj8j7tj{rVbt8#%|~HCp;9A(@S%#ba<V@QC$d4Xe92sI
zbK*rC*Qg<B?F-V{w#k&+7xS6ZoShRkp;aQ4a#g1}hi$S*J;rN6b)+J7AE1=QC~c$M
z<=O46eSAFN?*;gct{d|?1uoh~;5@NL0q6V}0{fOV5u6@uOD`P4&sXFTPkjyH^+GSa
z-{+tyKLO1$c>6BBJx$5XV=ugBfaZ=P258=Agr<L2kzy8`ZYa`26ZE_C6uzPZXim~W
zb3d|I4`^;6XwoJ4l2ojcCzU<z0lyViB*_$2MGI*u()~FSs@Ul)^FS3BtyAr^Pya!1
z`f9ZTr$4%rDQ?l~2)-?>o8Ut(9jTc!Ow11^9@6*$t>SIO%*+|}rD29QfGyTOpyeST
zr7eb6Fxjt?MVup-?4=Z<qI}b;g`6fa)Z8%10t!f9ZBqhtn-a7LH)VNO+LVVD@usvA
zkvBNe*u!E>k^d35C&{=yQAuhBVDVA-A^k_n67NVgY*bkDEifEzRiV07xHhGxA#N3!
z)Bx2-ZXk1<V$8=Uf5Sd@8&|F4uK=32Q?)H@&oat}N6l;$s&RBJJHsUHFVZg8{h~?5
z4wcr?kDT*0llk5p3RP{jVwJMP#fd}-AFdLV@Olzc!fM6$K2&OP&;wC(l2qpN5}?62
z3mG>O5*sbR1Lc%(v)$5HsWMr>2fCt|B4{vX0o7^a{OUh1P%}1bWwdZSS5cMXZ#I%E
zG*B6>8q_p9QRPh(OdKjrK2SxGiR`JS;9dRx`hr@nu-6O4b^&FT=_reKWRqdLp4epA
zu1&`60=6|{tOwaW)L&s+Y3-E!nwV@~$F;o4i^s0&<;C&Mv`c;~m0gmeX_w@Du}k3z
z27dK+F2Z&Dz25m%F};l?$r9UpzJXu0Idm(2wZDUoUp3k9fd)x^{{_Fg|4Ad@9C%xw
z=G;kIi>A31yxjya>D627K62kOLw%FLj|&NYpX4d<d*W__pEFOu?}K{`@Ox+;Lg>L-
z;P*AX&E}F2)$<JSJ9^+&@N03W4t{&~dcg0G-v0uAK~H$VFYJa___YfI_|3l!{QR#O
z;WuUz!Efkq3j8)R{>A?$;8)ng0KaA~giuxwq<16yQ2Q89Z-1duF|h?M1N=VRe=GPs
z)lLV$#d|!o55L}CwGR)f)@dJl!rk<^2jNyFtMU@9k-OL$DfQl^cmuCi@BadmH?ltQ
zs{)_hU0I*_RlsLyi~&B^od|&;G2ZcO;H&sHj5FYV@TvhmGxpsIK7I7?$@<d+zcLd4
z1%7=t#sj~8DffzBYnuXoy>lD<T6)EZU%nd{e#;g3IXW`@mJ9evcN^gM+gyauOFg{9
zuO2~nFIO)b<ut&r&)!?XFQ=^ze%*I_z;A1>e*wR-qdnl4UFH>j-ynUyb{qI*UN*vS
z?K*<rYriP)`>6xL@5NsP{Jt>4@5MO?q2YIXr_bN%?FOy}(R!`{e(pbS1;0c+{$1Va
zL7!C#|AId6e9QxWSdUqOpLQ@TxPtIod>i<+yJUplthEHc`+ip7H?lLquj9`Ger6;5
z;%6g-O7HfLe=d5vmy%n@9+_=`-|F4Bg5S$6b@2OnhX?-sFX3O{-<d}};CHRmEB;|(
zwY)cP1HY3OjPOfd!}8%L1%7Loe&c@<@XL=j@;^I5sJg3n{2S<?Iv$LFA2^KsZ`ZBh
zx30OK|84icza4S^0{=c6=>fmf*S+H35!6rS-H!j2c<{f~1iv4DP~bPM6T$E89|Zgw
zbvE+99E8xITHsfYpu4vz^FO<h|LwdL{LC%%{BN5F{0{f{7w{YVhzI=sSK$?Y(-8lb
z+>Za9_uzl4n0~)k;CC#F>Gyj9zZpjOz4!{13Fz#det)O8--I&%%Q5o5?YDy81I_gO
z?{^RSjqCX@==aWtJ>VC6$t(R1yaV9(!R`28u?PQKN$|V!tpdM^|3}-KfJad@kHfn;
z$Z~{TgusFv0Rx0PL86HvkR<^&kO;~l2q+37Dsq`9DtC5;ag8sYc;M|Tpd!ejNFanW
zAacu%5bha5NH`J_Lb6|1Rrk#7W`p7V{Xd^avNO|NU0q#OU0q#W-5Tk4>=#bI_u6~v
zzd1mm1?_$Fp9{YpqI=&?&GFQKyYEK7+Isq}{?m*9rab7ue}jGVpKjHr=f8`?yy(}u
z*eCxj0Q!CXZ~9O1(tnw>zE~#cH=`x3FP3ro{Sxk}|7HP&Mut~m|IJ4Gk8a`ka<-@b
z`|ED>OKzsue>=VS??lx9#r}K3+y2Y<$$y7{e&7C^{*!g|Lw`lvU3#bNXQ4>e%YPtQ
zV}BN8-O>ih+UjRc)~7prkoDV{K)5=cRj20$z0>n1eoZE}>^n<G)=)W|%W9}kvc`t0
zWDS*@?chZPTW;*;r4}LX3fU8mPa|QA>GYhJ=Tmhd_<3+@_n{SP1Go}78zo!_QMH5%
z;k2oe<5TZQP+FW<{Rc?joSl05zE1Rgdo9v;*N=j}783iFKXUrk@8m(>UNi6xzD||t
z3vBx#er=D3cA_rL@SyLGop+<}vn_N0O+d20^xd#sPhZBiyC3vo+sgF4sHg8%5BhHP
zq%Y&-lY_nJJD{8Js5!r?pt#pzTR0L*MupBFI{bGe*yW|F8@?G5Z2wYDu(U7_g4LT2
zBr&z~ttZFe*BwN#-==%W`NAD{lk;4?o_uGUm!9ku`G1(Fvj%y|d3m8vJy`?fe9^zi
zc_!n+1;~GWb2NYC%PqJ+vTF`8C8e>jf^f%n>is6&>k`|kKK{bHUF1Og))L-0P6SfW
zzyEfOOPD{9&EwAOv}UmX|E7pgr^9I$+$FjE1`J!^=WB5E{#q<X&%YyjvsW$V-t3JX
z$(y}V+<Iw|yKMDxXaCYg^>t1|UngDt2Ae^#aV_6~@B{YDkc<#gvQ94~liq+HETXmP
z<~LNgbRxgbO8#=Y>g-H}s|9?xr5ANDh)bm{^1EBST<06R>cs^l1>*ouL7H<M{gGke
zDbm<2LQ0Siws=a(7Apb&^|1=g-5oCE<zQEybl35iMZ`f&so|}U4rpxf{%H&%ESuI!
z+mna;uWC`aT3L2EmWRt9akEebRMjrMf=R*y9|wDxqWhZFc%5&_Q9E{*mMG3H`DYrC
za=S6WAn<)yr?`SwK|pbgoiRdU7>e;{|K(!*SsM~#*!i6c2UA_mewhY`SN(-#KRgY_
zF}j_m3IlbLE#cSMn3gi?<TQ1Z2UE(WP<idvaxG<Egijg2t*xbbrSCTBD+y`8)#ZPg
zelSlo>_7N&XnX9+1z>nEoIGIK;p+ijy7PJ$F*lv5E#{_g{B?t-Y7FHa%!nMgY<Vk#
z(x(D{{|dh!q2FtkqjdIoO>C`F)Mn?`Di0>ad6}ILV!gOvRzO~|0b+g$P)7iIp&Wk~
zzS@cn3c^zSE5tsy&|$qjcx{qzUYl`}$0=ZJ?Fs!p`~cW_p71X^aQkUqKWmIAt_CCs
zaQe*vpF5aSPwVdc?2xUAyxH-%pAUf0yD=WUo8Y^5jZf?2L*&uxg?IDJIc?sHO8OCV
zY+YuQmA^>Q(&99Pi=jl0t?!d{`At)w%4)zC<LfpX`Nn;5wYJGECm1@vWh<R1`HZ|T
zlZ|TwIE><I7LY~~sJwoMKCWUP^FCp6+ZE9Z^v42zjJcbYq^ewF;ap>OuFh2>H!Sk2
znWCp(<O2ARf7l$J_lM2p{KOBY6SLC^@1=do(n0q1_oV{17tp6!sl25^P^oWnV-7sx
zZj3SgIOSIfWqpA-(}Bs-WuE^Xl19)TXS>9(fpkYM&ymYyk8-|8d5dC~2!4Y3co9U}
zfYW*(-dTX#VYg(*I$_iNL01`YWGAdEcYD~5=OEQE#Iy>YVzlk~3WlRb1p4vuqsUjL
zz2kUaqj^RQif2=KT}|cV+52Sakn+Vz8ppgpR0OJ`)xcxqeb4?wj9MAp+yPhW{^X-R
z=k8-X`2vx+n@VB}ka#q5f_lmDK>2Kn*B-zUrrj1`NbP}KHF_y0SG`$=*#{~@D{}9t
ztyewUO8eBuS_&>l{8t<6i4$rZRjOz_>|Yu$P4?<&o6cIi4)W01(}IVNo+ci$DCHM<
z4>`A9XI!r}Vj<pC8xcGAyk!e<?W|-kuD#fiheo$QrBb-XDIJA(|1KzOI(1JJZs65P
zoG^S)d0TZncGr&S^klW^{9b=A6uz$TX-ucEMd`Yk|ANBAV<L{M+U?i#Za>s_`yW<k
z)8Xn-(SEgu;Jtoc?XS4wa|i}N`wRZ9|3~k=|K9C~miz2~t?F!wUOjTp?Z21gJ^sEo
zEoN6|Q+wjQw_ne@{ZQZSudj~N=IY^lAAh^|`1{_JeyuuAw~6=Oem(E@BYd|%raDgN
ztB3A={QG*3|81Z2Z(f~Emx=e@em(E@Lw&cuq&l0nSO2Ctxcf?BM+Eb9N&lk-^GYAD
zx!`15J{MT?)wv)zU!4m=<xRheri-r-GRuDzv%@zh$#wI^uiQFT&K$1_Js#0Dl5QT*
z;iw^w6dWyz^O-FiUQU+R_2!6UtggU*ejCrod`ByBH_e6X>eWV}a`_6;hdubZK+eNA
zof2PU>y{w}_cX`lcJ&(I0ls(TcUNbQ3qD8&X*HQ^tasa6Zuw-cHq~M7_YUae&E=!Z
z#UOrBa8F3>jr2mQvu~sxsm?aZo&EPT7=ygq-dyB!FkY&TwwZlzZ6As7YP*l`wr5pG
z(+1pI+atW&{`02Kwx6iZEI)tWJ&pJ2E?#Z-DDpYpi>hPc)Va5|$9T8B`KHgdS5!y4
zF4%idZC~o_J>I_CzOOo#O@n)D`z7zT|GeR|?fKQQYChR>Pi+@;@@o50-)#@6jz!&c
z&;NZv^He9#NzB;=5t8-HpA`()O#c^b-rapqQg@-F7bON?^C@*_suK`%-)?<AoWMDY
z=os}t+%>okGvz?=2n@pu-PP+0EP(E4_%I$&oGgFSgX1K^qj6&F-ooRE+NP%Jc1!->
zx`p2PrD7^SjIVP9J3xD*8CF|9hj3yMi>=2emC)l@+}}gzwN|m{+uS4Jm8+?ko!1>u
zZ;rFbPcIb{&vyszi7|(E@ZKNwy>GI$I;M8|u6tsI<L$lLPAc%p3PsiNCj{-{{TBS5
z!=+;^=X;b5FS8DlYjBBJ)ZHs$J=&A<Gn%O5pM6Qau$GPgVnO<)c)Mm?{m<|ubhrPY
z>nV!;kqalI^AVi%&e41D<{xcGL3KWL*9*T__kP)quor)du;q8@0xSz_;5_>+|7Wsr
zVoKZKV2$(VzjUo+-SqIOPWRnJ|Ls*FW)Ut?AGJaVu|0&?#tiIqHv1!&P0~6Yd$cOp
zJM?ny1^bU}9<?-ASym~K%IUjS`ZmPqFTyB}FzNvqy`aPBg~L^0l&+t1y<oQ`*y9QI
zd+$*G0`^A^*1=wLwkp^s^{ng#d)HQky=WoA4kXw$0QRpFHP};5RR#Mey@-0jp0w4o
z7Kl{=l>gqRSSdZX{-2gehPGa_%RkqBN_L2qq3~bdC_I#-tsDPGG+uAxg~o@9Pv!Ok
zps~a^8q2qHKczSM5}?vz-<1qoa440JaVT%UjYC<+{>T?6XhT_JZ&gD%NpFI94dwTn
z5%w~Iokg%W0_?Xn*p5dbF`~3jX@Yk|#Py}pg%Xy&#{S47b(l0gP!%Q%^+uo<CQS&F
zEgvE5u>|`$fNjvho_)M3*yHp@y%+4PO;w5hLZJJPzH80jgc!{sjHVJsuK-39U(zt@
zT&3u*)~`3cV0R?g`5z+e?eh_K4*MhDr-S|e-&Mg5)~_eMVDHPWES@bIv+^r^^Viqe
zh|4j;<we5fCBWsa7d2ekRLNgG^h+8qToMU(8o_Q(uv-A^_Bz;a@2(1VX#<_<?gd-k
zh_E+(fUtYbL)Z!IkG$sv4R+llRl#nlU;cW*eurQWA=nKGb|Zj2RR??Op{ig%u3z4I
z!H(EiRjoNN5zY2p>vk4m)PZ3nfB6XFplqbw-{tRvyz+N&$5x7Ksug!Inm2+dlP4{h
z(F${*z~1ypjH-i_A;%$Y7X~m<-jH;>4lQmR0F2=P!|{frxa035DL!{1DHgFm^7G?0
zQk<$%FbC@OA#q%1>dSu!<S+s`96&bEf$VUsDv);?=`=loJh1^mHU-RQ#SrEjN_3<c
z65@*#!>T03v?B;`!~zDeGY7as53s#YfaB^_1#t1-2=Ko57{Gs`3E-39ig!Ir8EYIW
zKs93xK#bKxEY?Fjv>zcZ02Eyu;^Esmh%<ac^sf?P!XaJlxea{QPOh@H^8n&A8t^H5
znDAL&stw|StiT3()A23eoNif<V1@&j)f~*n#X8F0sqc&On=DmPeiTihJHWOb!vSW2
ztHAXf^>jZ19Hs9mhE5q(kpD0iq+^=|ay{wq=Y;7j*M3;DnU$QIIx;r*O~y~mRgrP#
zZiKxP&|Uoyp&L+C)eQC>h}Td0)D6nsb-L!?sqeG-I#o9RG~TKe_a`(T#hbrP$&p@#
zcP;t5iV}R+9^M7>cYUbb$7m*p448w0J&^s8W5;TO{o{$sf{i?o^*c;c8yOl(?REb@
z`K?zr_2IX6+J!Brn=?-cWHc>Pu%6p*DlZ1z=ZhCV46ce7&-|quo8Wpr$L62ls>Wv5
zVVxL!Z1L6f2URv*gO(fLz#?E|HyW@_$X6%4qGnt$56$_v`0q>|F4KMD5?duMPwv!J
zo@@41*<7cp$}^}V5iZt|4<4kBe24k_PUw5_5%gm2zx1M6Cc^sJg&ezV7IN$_?2jxx
zqj9YNX2G#pa3p8lynlh3@;gRe^?3V#b0O7j;=_gH+>o#F=z*;69;$SnZ&liJoyxDA
z<x1=NWVwXeI%2yiivSTjhbEbGuqJ5Jm54oxL_Y`K-N)Y*-}33NsxMX3U)9)$zsfl<
zpVQqt<w;h~T}-8<Kh%8`mB;=Q?2E^?)vT)95o|8YS`NDP=PIJNbg`XJt)ax`m9YFu
zFGyZkez#Vq36=%>9F~`AdE!??#qaaOI0QGrl>Scy4Z&l&jeV5o16d8K!>x_iBCPpn
z<%TSM6J_8>_D6O;rOANouUoce?Xl|F?-!5xXTa+JqxY<CBTw&{bMqChrhx8Qg?DM2
zBrk6LTMYZxx)5FB&?KHrj1UeXnyz6wMu5=WFHM5bM^V{mc>&j~7ev+T7H4&~kT(71
ztE#m+yAf~stU97P4*mW<tB$J9zLUjg)hX54synpCSJmIDv+MI2RCPVchUbLY@qR5K
z2>v=bhz?TaAo74MOB<c_K1b(Zb#{6m@QLxa)!8GHSBvcpQ8lZ6b#^yatoGI9rRr=>
zr1`8GU!5J?M^<~y@dvW@S#^Tr6)#wuT2jjP`f9PPI_~owt9(`MSe-ra44+lst<Emm
z<36kYS)ILxMn0?Fe;0@1g_Sy;a;b(do$_jcPN%rnX>&{I9$&3Zx{KfNwUs_Sp5v;c
z4`NqpdvSaw&1zX4ZuQeOs`GD-uZ||!{;N-fXWXTaAN=aGxpsFMgwa$*PsOv9jrK==
zRX5o9A%dCj^3Y^7Hk1+ns9+9cB~-_*y0pS4uEmub->{+z(_qhC44C;^r2|>F?lRjw
z?TLpD{NM&vW8ZEC#tqSq)6@*H<22zyRcp+^#+6#Wuv`u2vB;e>#I9xdIiYJbs+`vM
zv?_-AXgSA8O*3`u9rdIKU^n<21xjybua)yR=wS^!WL%|(CGgO>m>xcdherAI@Gd;8
z<;CW}!_(L4Ar&49`IqP6;Zh+zJP8jY@PW>lkrP1f#om)A0Aw3`O;Ww|SE|?&Dz3Om
z4-MeqbB;z3JdEZo-*&NwhWsHP9u{*na^azC0X-aqhqYLYju@!siM-Y&GXEaM{7!^M
z;A*;^>N6L=O$XN=>@!W9@?5nRn@X_?R#v92QHzGEwx&E-D~)48Z8ZO@DziN6E?m8G
zS>>RB!0ITX*O%!RJ`Yw$K>O&b2tGVeSvp%R^C`#A+(k`Y`PpZcuGN`|SN!Z#D+b?1
z#m)FxZ~0!ji!K=C8~Cy6SQm|0UC&e4iuE_`73Gvueq<c(ahy--vZGSH_|27GWvs6B
z>a&dklsG@DWNl@yJWhxzC%094)iSFRteMLzy((L)g6BCOm0G`4YVk^CROkL)sl`d_
zc^Yn#diJL8N(~g9cvI@^tOV-Tx=NtVZ>;p{+L}tQX0qk0?FmSxZ5uqqE|m|mr(YTG
z>TAU$nJ=*hUyFpan9gXlFFH-Z<DPi+-&VGmmi0M-)qIcXB?0DnL0BO$H@+3+z)qhv
z&|r29N85VVFnPy3yut<#HBEr)0bMgj%d6&T7c1SOm*Xkr^{4Z+Tb1xWpYdk(9uv^t
zrINURL0!phGCMAsF<*D!2tdLkUpM=1gY?xl_#zDtwY!>q`9>=>TX(XQ6rL>E*p&VC
zY}SUko-G<z&VJxy%7}Y&ztMnM^5t)w<!*i<k=a?ho_bf;X`35v*OhH=m%CG(RK)C%
zz?+Sk;fJFOBye+2KrAY=r+RowOTOF&ilom7WmFr3RGSekzyFq&oclK-P&^T6+FSYr
z=bMDjb%tGag_z{QZ*gQj&etv!l$2M`_xg^(Bu}DWnkNB|n+B&orBguFz@FmZU;>b`
zxCf*MhdZhgLXnPAe@4SG5$1Xc(ekl|+8tF{01yL{Ucr6^uJ3_VSkr^3kTH;PMngO7
z1;0<XL4A&2W(;I>!MpD=Sv`5&+geWZx#;@~e1!l_=;4E$1-R&*5h{0nTRRwioQC1X
zv{r`n8CHM03ldyr09G-9hhK!-1Pw^WW}DaprX^kp&#+viYcjuygL9|Pu$Oeh80A{b
zj?8D@ityV;Y$D3uL(R1aiQ?fpGrS*0Zt*r9Kc?%<AlD-M4!O7!JWr?2fG*M*WRqNL
zp4VuXnRPdm+Q)1o*A8+boJd7xO_s)PGG+9JqowIV#$;*wCTm7-zw~YX@B&17On$O7
zVUraW7RgeoVwE2VsUU{nsfHbSX2HNqYKlRGE63>OnKD2W;~w1d{B&j!T)-DVzm~7H
zVpD(XH>SYIB$#-HcuWir`SzJiwcTSh$dAvZ#P|IJy%OKcC2#SZ_bs5fbXs0qzk>2Z
zJA#>p-H>L%%X3Zrj5Gl1W!l2N)GlKD$KNBt`Y&`5BRs-F>Jodz;m8Pn_mI&bU1hjE
z_&3Athj6$sk8$6&8q{I9-GL2EU2ynl!B$WBc?PA^GwbJ{kQtdS#N2qB;?T#i?kX#9
z>+`?9iX8mLc;J@FR<ko6udfV#W<0+JX+;oSgTz=l950}eXU^4MIL8Eb6!7nu84>h(
zfJ3i2+2^PHNf1bJhR#zJ=SWR)uEQJYUIz}}_y}<E&LAzLLZE^B<_@sWmRR_FJP?_D
zOl&K<br)C9ta;ozu_n{yeZcLJ^LPgLWWntt!|)7ssM$Hhi07|;)@$t0*P}^5SJx3!
zlg5<s|3LQcBhXe!W40pi^IO|Y;$pXLQ(NK1ZX?x;-BQGFe_Q(206LqUGUhzq^_Jwa
znfgn~xgK}=_M$s|U)g1(tOZ2s4`=BoA>iX5YVz#e$<ki9-*=lF;o#RAh+<|(*IMFC
z|0@Cff+yz}C3NqNZ8qbO1tlV$=$0G-FBYlyqROGVXSjLk&r-Uv(FE@=-r@JZdfsp4
z{1}sN?1ezb2y~yr!C6xAYA#nh9!O;@`SBETs-w~x#xG(_rn@b1@);=aGFEUN<D<iR
zilc*jUu?Du_K-NpG)|)1zJ^F_P!h;Bi?ghPUj+{&wF#0c=PPvQ6?iI!2WE-oWUS|X
zk$9h^mDY<DGpUf37L9)T`yzAXT=rF|bBEtI7Z@20dMc`Yw0;K3HY%@`dceOWFPRBy
zJJ9G|@KLxW#!;7)(St^Q58eS!eI)Y4pgNjKOa<Br2(j3JvAbqRKe%}n<7MN^)OguY
zpg-?eYu>R?pgQke2rIfkeshkNc6c$He>O~E+EMxEwtBAqv@FkH{hlrE>)gxpVQ7*E
z4Q!oJuI&twq+yN>CB@C}NjUAZ-a9i0v2b2xq`)rB&H41EGDUwMsB{{yFp$s9RgFTY
z6|&kVxbZ&Vn84v<U@|Vj9h7E?WB6p;qL#;G+~6V5MGvr-wzcYP9GM@vlYJYH-(Ex`
zAS&}AJ{iLlY}MT@`u<$~-J*0ixUb2$%!HFM*?==<m8-KP+NP%fO*Y>I*d@C<8B+>>
zk(=6-B8|<~CgT)odUmDBI7OO}ZKaE`Q)R3Caj^dKST-5IQ&U_V{7MNe!|P9HgF3E6
zyLarCY=Bn*x5RkKg>SOw6dL!)d?le2??=rcX*>9)khWLLJnq-1rmA@9<$qNbh331e
z3g@9Ryc&(<WWz!(NL`Kk`)x^-lnr-Oe!eAJp<laiYWH8m^Jo0o75CoDxZTv`8QgBV
zpZ$>=CgNRnDN-rS>dv1^)H~U@pl+C^Yh77;OLs4V5a|<osowC0zI+Q!&#?CEvG(P`
zA=qNxJNkPaxbX2Q<jkx}>zHk3CtcJ>Es7QQhK>5x6#acD8{T4{lsC&XKG-Xlyw2#+
zpYGL6aXn_mP|K4+uxa^>1rsO%lafZ-5(u;ZbYRjm7!v@i1G>FgsmaJB);Preojuq;
z$Lwr^=P}Atq&vy3xZJLgpeK7nS2JN7V}$6=3gv}j{r%;qHC~Y)eVyQ0h!ZcB>hGuK
z>Tjed+>#fz@}%QX<EK(J?v)MahAq71-ax18a6czg@JU@;>CMCq243h9MDLdJXORd0
zvoExH2sb=OpxzrBX5!<P8a5E)K;W7?3<imyvdNHMM~x7Pmy7D?HyXE53Li*=<a~(n
zit>wkUm(M8X{3f9;1x^z!W(Lt5kHtJQmwt=&QfL*h8FQ~1m(w4et)`tu1JRU@oS!Q
z1$&p5t-Eg&80sfILw%yZU)~kfnBk)ms{togcTTK{>U}4K@P=P_fkd$AT&+(=v@$5u
zwEXHSpvQT+o>(qwHIy58Q$Nppk9Xv2mB;&6%vKWhYD6op88$TcV76Pz?h3b?e;Ua@
z#Z!|uX!4&MZW1RUV}c4o)|9t#2L6A-1z(kTUEgxM9PZle%{a9OU&AE905m3?H;m&5
z+X&$WT^Pb08N%|%uY0Kq6uv_oQ!C<*y<&>_dS}#o=d!_G1-<KvmWy94cYAj@ndFXD
zR~G8;Pl<bBJnGMNBM?p|`y(Ij!EbxsnKqJ*{D#(g?BBkQV{*20E7F!o`>tNY^4xV)
zYjE9`bY{b3{<Q~nbTO-{+=sVu?o!?b*SIUeib=z!;{xU-3nUKXz9=x9K12t_47iaq
za_2f&q-;QqHI;7pTl_r3`GA=&p6kmvRvt1<uei3F9o;bTR8*(CBE908I!_2Tc6ef*
z--%)VBwkvSEI5YEp8+bzaAj9rj@e+MRk*4*@Fr5Yl5h&^n(}HPAhdHsqMrUI%J}7d
zBf*K!RX8rCU>df{$}7x5<SHK5Rixf&5eV|7gkI+p@y-oH^pNM2{Xgs2hehQc9dovI
zt8L!kH0=v*2AAOwe*YXYVejF{gnif_`LXUQ6Se^+Jg%=6NF)C;t0o@}#)5f=fSvv-
zf)D+zKtu-y8!&dltXmp8<r!3VVt{r0w7iJuU8-;DrQ1S?Ygu%!2jAuikP`8xSb6GH
z=<y7bo<ZrN`oHoqh%2dsP+|}Qlo1ulilFrl5}Wu+IkBE_bSMuL=&hx1^$Pq*vF7XL
zD|RKhP+<9xen@|zH6y=jJx~5?3SsHdZ@K_<CDYD-=xl4H0pa~#`&PK%w}8q5kzu%}
zF_r?fGp2%~iaOjL#Y)H$4m=3d(^u6&&(o9C%CPdV<CUnJG|#C1>Opp?%$|N_nw>7j
zhKs%|^290HrF8dUNK+=>jy-gW{$|K%`hxdkcb~$Y3&Q=es}^^OCe!)=mIe!7QJtgk
zj^~0qQ;TkdENuttz;w?WA^U(^^mIEgfF`nuw^R4A!o%Df?}H3Yk%oqI7ju&IDBK45
zDEXN&r)Nf7{Y;}l?lFmcViRkVPplwWDz>@*24}*#SJ0VYc3iF@lEN)Pk7=d}RfIdW
z{_LJD&CVN)p0j5e*$PTQ$|sl-UEf*!$f9yZb$=R=pS=JVqKs;F7$3R!@$-0&x-^CC
zg+-SuBw|=AenEGix|qVR(J-FEuedIy@Ux}gVR*zN9)X*}d3s1Go8OZ)DI8XEN?ou#
zM^P9~Q!r{=X&8nB>m42ty$qvsW}4JsInq&Z|5G^Lr-Ct?QCGvc(`iTzGSwn*)Ijx_
z<V~rxuS=sw-qi@RvwaPo>d&+Esww)?IL4c(hGU>bcZCgjmRuo$*tcxI6lw4#wwwtp
zYD;}ZKa(weD>#<WiL}X@<mzJ@ASIr$^3ldYewj8CI{!hFvPmBNGM~|5xLa6gfv_i8
zx`mqw+vJ;5U^9VyM`lMGi|`=)Rf|SHtp#|9>P{?o=Y@cr$O*4#uI?bDR^Y(4=wM80
zD}3!nyVTJ2K?BAN>9-lI+yIgzQ~GVcv^Gp^+d@g{x?QTl{lffq!NURI+a-I>Er0rw
z=8WHstMtGxpFxHx7$O)3a_NE|7}AO|UX8;1g>1Ol7_&hg+6Gg%))uaGQd&$~x!K31
z_;CyF7ew7@!$-U}SOOB>?1$G*vw2J2J5{w1lOfR~Ea9Wg&Rjq4K8G^9CJ~{nLg4?b
z4P&wsM%T_pH;0zsu8>x3Xo$ftZn9<c#pOCK=ErWbvS&Y@xzP@ObFi~o3l`|>Z%fY!
z01jZvXz(UXT55t%{iMWF<cDO}T4Dva*#TRAj1?aEo%WTia?(q@7r+WlP3pc9TEmPV
zj=<*9`AO>LlGW^JSV#Eg-%+(eFZ9cTc^Dfwl;H+<kY>(CQm}>RZTY|pl+g7J*rdov
zFG060Zv98d<8T&8u)vM10|&yucB_Tz8Fz8hGodhJLpM|%Go2~k3on<`T+E6p*f3Q7
zlOtV$a3buS?5I7{YY3DZgXa@G07;0gwBNqJ)E=|L{B9u>iP>k)ps*(<mc)kLHiNqj
zQomZLtC#$##dP+@sN(D#%uEWvd155zrsBw*nc@DpF9G@Uv~7Wg{vL;>yZC#Yp||@J
zhtwjG8xFe!Y_^e(GZ-1cW7!l5`vgou$ulh#ZvB0(6a73daGi*DDvFVI=c+~Br+V6J
z|A3y=`(8)m46}8bulrb;AX!{}Ez<V%iy3n&$kl7Yw471H9{|7R6DH*UNH^MJR<Osc
zAnc<NAF#}<V8>a}JfkvpQD!_Wdg8GR2GcGHO$%TR;`-9M#E*$L<3F4G0Lm5kRlun-
zD*#q|K>y1T218~Ge~30!^E-pK8vO!rnV7H4&SW<0D^HdRf9%p$>inT(igmsG`2<a`
zg$CllqM|^v3D(P&on2USwRu`pP$veZZiQ}r-L92St>%m@qdVVsjxTpBVP#}*FlqJl
zpKmG!>l)?>=`utc$FrUY6Bl>#0+p8J38UGCTf>QA!_X2$@{&93z02I;sLeR&4r4P;
zXl)M$yi`+Udkr=TzhBU8^84Kn*xoMH{5=J-30^tHK0$$8^1Sv8{xTV!Kh*XSj(R-1
z<sI<+fhdpOcyjT|zdTRMlN`IsPQ5?<mag1ep5<2P%bg}YJcbvsD&O4k^f$_OX#cZ2
zsy{Cpo{yJ_`*`K>=XHL2sQ_lmV)?rXn&~H(i+qat%o0`>lxzMBp$AlsQJEyOjz6im
zg^YiclV#ez%i3|Qy<cy0zU<BHH5p+*;cvR|DE;#~P_T{7Kxe}4WRhfo?QAFP^q|x5
z0Kb|xLUWzVL&xdj1j*Zuc2yA{c-tQaWWFR3W|izwz0o+bU4);WeN~#5srUk(KY>ux
z1))G?)0?clS88&kXs7hN+5?7tWPYAw+yYU5jVe^EeqPo%PkLsy;j|kX3Fmxo>;3zC
z<!R3``aNID$Bzv;S1+JckZ&g7_36JhZ)M;;O9Zu)cz3mw7&czhNb-lJ#7+_18RB?1
z$UwWMS4)5yV0Y;}-&m8!GJKAd@cWN(7>6;uu@lNU!c!;`p<b}>#4);oR@Ml;BrHnR
zU`65QD{C|`r;deX_e_&!WTJVggcs@WOU3-rm*gTgqUj|}C*EI5bJz%hAR?s1iFWNS
zrXP1eiGWDZx2R{qZelE`%;tHSo3`RSnk+#o@T0#N`B<_QTHaV#STdMur$pD4qv#e_
z<pthv16AG}=#<I#5x_QKgGi=J^B1`3B3x3>-}1l{u_KBDx`^b7JD&Y#@;`=+Pun8l
zzyEXyF8x32k4yj0*&lgmNAlmZxv?&Il-Cpq{U`8+CibiIPTdl1-npCV?%cF`s=Ljt
zs#LeLH(r8_M2wFhalv^+GGsRNC;z8gCuXREVD<?CKkymVZ=d3N)QaqTB>)~~T43WJ
zwu{I@aR$&;6Rh)*JJ+F)ej|D){<<md$%}htFr(DTJGdRF>{s(~>-8UC`36wQ>M>oO
zE>`umT=qQ9x5|}kLSDS;cYyj0J?ej@)rS(j^!8U6jK|DkE$$)ik3l%Te<tDh?qYxB
zSKC);mzg`~gQ+ZC^_=OkNr2vowXbw4R{j3Sr-ka!*DvOLO3Nu)ZM`~99~iOC>|B1G
zyd$Dhqa$?v!KP?iU;!NSX?RVazbUTtafWef8NYsANpkD?nc+<le2Dc43JFxYT@(F>
z#+vKt(-PWxO66y@KGg(I&aFa^`I3hP)gR4SQaO3cW4{`<0LG2cylwnabywgqEBD(V
zp&<XwkL0vDI+~YO<rIZCa%YmX7ezK)w=d($w1Xez=F{bBkk@Bu<z^0q_a~p$76zZv
z`(b_}a&P0)8d^!P7JJ7}7ujc(TRf}V4x$CyX0zjU1cUyTapp;oCq+7p*Ez7UIP|!P
zOX~$w%2QU5=czm<tzUSu)GxwZ@9}84cOk#{LG0Vcqiqc)R)!Hot1lD$&D^~YM)aZq
z=qLF^_(|IPfu983?@2CZ!CyAQT1qmi6TV|Ix?84$E-8~kK>0K2RnFZIb|nt|<6K4P
z?2XfE{DMjD@suup!K9QFdB_zosbE^<QN1~%z*gM21+)b;?iu2Di|Pb(*2R0M8CiAp
z8O63XL@8XegjiuWLm+ZzvTH(^Nwi2t+xqLOeS}b$B9a%3D#!bfJv0&(k3#PwfH<p4
z=IbbPx@Cj1^@i{;k^{i4loy~)PV5pfN`!ojtWcF~KS9CIxItWtl~U3xXxdx`(`Gv)
z4HGV9Qn8yRyUg}ndrSj^r2zf<h~8YN&;igpevLr918+LQn;qAnRbvX9$J+7gAB$Nm
zgh5V{_N#NxkD_7aeO61}_Ow8K57?$2!Rg*M#Yu89D<cUj<uU#JleQ<unG3S@F}u<Y
zd-@f7vTGuqX~cgpkx&Ghor@qCD!sgh+4+6|xGN_;8qWS18qNNBigDGeOiE^kqC?W$
zj@h5)cDM=9mraKAm$2sMoMHbkX{r-ub{KJ8-<L6a2@{iZz}^@s{D%=`BDI@&{>QAt
z@(Z9oq<}DcdiOAQS{qq;3Z1WJ=Nj-Y<pe+^h&!(?*Z=I9^vHDBpk!j_`WhOx%{dP(
zn;jo`v^qm=HJ!Kmka>PQw0Z*-(AK2%JMOgBavEzhDQ7FR1ce%8^)f-e0)N$S1;#FG
zGMt)RLQP(vCc|s!o9wDK8O@t~&^$jMblYrfavLMBJFS)MhfQu1P1egwfF?)!Q(Pp7
zrfUWxEf^Q9;b=O-)y0@Pgqa|WSS|?K3kyq@(wN41Io#YZAk18^w-rNNpjaOW0=7$|
zBJjFzc*Dxhh>py*r*F0E+yP?V_J6Y6o%j6$xokN5dr0LUIS-y!sn4#bo4Wd1?VHXu
zx7XZamzsttQ!DiI7kp%6i4q6>NOV1KRW@t!SnL@9ByBq1JgMeZWl05}hZ9|stV%7n
zuG}OlcY&4LrWA^D$eZ(uQE&dutbov!Mnk_b0YBP}``o!`|MiLIAtnjY=$v9dBKUnJ
z3E^~8i7SCEgf8Kn!G2pwTRi>*&Pc3*K=Zt_xGD=d^{WSTv_JY-d0mU#f~qieACd$U
z$0fUKs8xPpBu(vBRQ&$vV7qE$g>vm$p~R8;+m${ER11BlgVcf-3dcenwL-t>3f&$-
zg(9#J>?`s@MqP7<c%f)4^hE#_0@vz)MhB2IG3ica`lgE--<DJlRr_b(k!rs_42~zM
zaWt;LcJ%!X{`~-aU#0tAlfFO6zpsSvHOkfX&m}o`h#=pWeGyecoT1xhgziE#=OPF}
zbiHIjJ2m|Z7~UBcv;oI017BLy!XJzV+mPgp;FdqLA8XMd$O!KLGd3KVEeA0bKP)SW
z$=8$Y{kf$^!@AyBCN6{lkV}}&yB6e7$puS?TIj%95TK$SVhy|)z#7Q@2^tJ8{0Tub
z49>GgSPTDUBlUDvd)9(&Sl;JZHufX$L$a&mM<dN`NaoqIg+UM*KpQ9I2Y&#+#+%?C
zdFWcq(X^pRr{dW^k&+3)KpXV_ftFchAT5(R5tPSc=J^u>h^Y6EAZ^N%I4-_TiMPXs
zf{%nASciUQ^R>L-sOE@&3w9qF0(tLp{~%TWh*!VBhDw>w9&Ah@HMN0>q0<4p@Obt;
z?|rIIMHn7=XE{G`I(+W$Ne7od-$25r8U89AZr3F`4ECf$Ij&@Sb25A($nYAF;c@f)
z5B%x+u?A0a^^QT*4S5iCbLd7*dSF!eVKJk^+eb79;muM`g$3&UhXlaD0sJ$V0k~1B
z^AEY6W8~;96dEtSpOwga7xlR7IcuJx=|`0gWBfenFvySSK#`ce{Zu+!4<<Sc@}$G-
z{%Ce`I(#JPFbU|;&piJR47zj6b%ygf2ZHYBqA$`dH-cWI(E}sHSB$&m^ut;l=x9NP
z_ZCpaDZJvTL9F6feSB+grl)P1qNd`#p!*-w`iklGJjI@Y$wU-5?V1s|Vkt`PGxxD|
z(4q^tt029>?AfetFatiR$>8ETAmzbxmtgr{zhy!g$b>L<i6-SCW0ndjZ^^nk{Hd%6
z01~1Bd6ofTm1+=>2>`@j)e&v+ZAfz!$VsN9Y{Rp_w6Z;^>?u>h+>f|Kb!7D!w6%<L
zUi4GJ<Ss@qN0taM9|4#VS<M-k5z2fG%Awi_<>EI8Why{1s!%>7DDSCI1~4e2vaEp1
zNTnBpBJUo;ZKK1*xF&NFyffdEj(rryC$m^LKJw?HhU*sA7(_Le^BPT|#$+vCQGQ93
zm#KvZsQfHm{>tMJJ4v6y>C@|9(5L;6my3G=qKipw{PGwp-GNHqu7#!h^U~j8X_S_k
z#Uxy_q4X3g{TG#P#!IJRY2dA`#l(t(pz!ZlSZEfbmuA5;0+%%9@&*)$8D>fggVuWG
za|A$3nVo-e2`?MS;KHE`*7{p8b+IMF^9O~BNZY0~cI(=#FnG3k6_?m<_dYwngzFyz
zZ?hvVOJI?<^9n!310Z1u>3r%A?Ig^CwjaBLZP(&$=N$lj4#3hjD5Vu@+o_|pc2gf?
zm<#2RnuzVS0wO(ig~$dWOU}aEM7hS$$~o%c_uo=0&I3aF({hyOSS#|FL7Wespo`n?
zuZaWl+P5?y=K)A}DENpdIFbrpH(|j?dBIF5XoG_FM8PBEX52{yTl0eNL&5d5i=gRC
z+Y?FBEqw^boGbH@<`~5xFB_n_5!%((0ysXx_jF`1rj8oE!Oy=9;9K{?LvW;y8pAP?
zqMj`B!N)`)b=kj-%|3NhUxMA$X<@Hc7}3$zBzB&9gBQVS!qaU#VVM*mf;dv7v{135
zFO3RMl7>JGM+(JobgqTg$be6oB7P%<VmPJ-)29AayHtRi`r8SyCXd5TZn4?%sYy&v
zj-e(WksSNgNRAvH$>I7*3*>ku&NGl>l|>)Ou?EA40&Dcb2!MGHi6cgFm}4(+BD_#d
z+>&|}$&y|Uu~2kQ?`93*Sb@kP3g`H`28455#@u2l6i^j{S;}740;+h2{y{oJSW!Nm
zZdKzsb^#Da5eAw>H4oyu`~L)y>nc<(dz^egp+Lj!LAcXIUyK9!7qO*mf*gw?_8#Lj
zQei<5H>?Kj<R?j~+d*mDYxoY<n7*C1>ibKH7p*YH`iPAWEI6do7qTH;+@FT@Qau{d
zVlkv!$#2znAPgz1)bKvB8;^<FfEH<?utoP=GFyc;WRf9&{+NDsk%C7K1Ahp_ar!E-
zib#!_K@_PG3XvL3?XHj+P*SP^hnMWqV7>}jQ5)kkN|Q9Ra0o?$RM6SeN!<h=1P0^X
ztwX!Dq62F~>Z%v7;!v*%fKj@|O5q7*9#vM{n=L<M<4l3@k>ahQMg;O9JirW^M2TOu
zYLXv(jBCk6x@y(z{1qcO3KCI<yFIFH-<j}0V=)voiHnHYNG6TRMrUB}jL88Qdo!lk
z4vT0hb(_hS5wDBS*k)zVestd|<CSe7#DfB$%fZP3V(jDL>P`BXNO#KilM;)pNjUB+
zXxy1px-dK<&hZf&_vJ}6?$6hvpp2`@Fz$!BD4XN~k8)9NW9FmH<VTb0$-up_aXbB6
z8B&{yU<|rDv_ej>Q#eLuUGH#=c=^Zx?{JJ!!5FdJJJL<T7`4D(7|uq>z+*35A<z1^
zBGr%@W^xaV01slgh$8J=)8kOqBsF5=GDRm~xQ3W!AFJsRg)o;D#yflE*~wxmGdoV=
znNSRe8E@sBgZq=?MOeok`~C`hOriPRQYad;!<<nFyPN3QMYe6QNe$~DPwb8Wf!661
zHXl;Ye}aG~>9R++oi%X|Cr|W?Nwk+5E@p#hi|URBa@u9PT7vy!7gIq;i|U=0+f**W
z^h+y?I4%8F|4QGtm>rEQo{s4Vya*TyxZ=8Zr=6v6npg1DbheR6oAe4!DM`|x&=l#V
za5jewik5#kMw3-|vcCO8W^rQ9YNj<l(`HeAF_aoKJXyL<o;%G;ooyyBHT#<6YHrVX
z1z8N_D@l6D4xD<SE<uV%5c10@z-fGAE1VSm7PvmLhLQYOOw(IjHqSVdhjBk4>YAYy
zx$!Whf^V$39y9Uq;MB0mn4%CjZSB(ZuxXKQ@6>FVm5riHW?*2+JUsb)+2%gLkJ+(4
zvlattp!+rasRuz2nG{6kXZB(0WZZ(top#`BVxZ;zp5Zqe{b_>WQ9t`Uqkg7PTu(TU
z>v`u>jO%fI0_T6h#A9t+Fp3I;==q(wxSP%@Z$(+gU5cF$*<;j2_OQ=uc;HW{@4%lQ
zyaIoI5Sjrx!;1Uqiu;)z3(+pn!i*Mr#tFfls`fcs(XR3c72@$Aa&OPLn=jdNLHYTX
zdJfXvQk&`(3+?mD4<za5sfB^$QYYHO{y|s$4xmTo4=dlV2#@Q^R&paML|lSrTuti|
ziY*WAmyy~Lu7_b$14Cv}MN5N7x(c@_dxi!e|6nM9oRCA-Ksevx2&MT?H{6|Tiy`tJ
zysNbgJS>X_#;OiX4t~Mb;b6og+W9(H$eHq%mF8UMJJ^j|vLlgMzq3ko=a-Jili^(l
z5yx^w9u3cq+v@%#ScdY6B%Q0w@kxbxaQsRU8>P4k)!*ipL!thZ+k9U(UpE*J-hD9C
zd@L|3wP94YY3J$o$~zJm+%9VTkGvM1duZ`POW-+0iy!(#_YD1<56>gTbAdcf_Y8QC
zhvyOE`IbBkp67~q9z6FGAtxlzct$9Xc*X}6(Dw(_@9n+L|H>wS_rM)3{;3!22$k^j
z&^4gbAzk@VB$Y~>dK$4ZCgZ+XH-BG*BlVeT!x-j?wMZ}9vJA+|Z_t@tV2XG`_SIe-
zSrF=YWq6rBZVJlTlj)cw6i(_zmXaN2fOxEyw@~$8xoYsUCp6UBCUulQA^k7I-2#Ri
z5><-0L4@a1i2of}I{;Q#;X(fbdA^O&+jNW5KUH^f3KG<URBylC(!i&M%bFnbVvPAG
zqs(bj0=%0huQ*h$MFlwe1aS-P%VH7j^<gpHQy2sY%mcT{0-<+=vcfKUQtmE&RF-My
z35!w0*jxx8H?fH)Ga0t`Tq3TCk{7589C>bhxtp(Yz=j5ENU3u}i&J6vWTwzIV)$+b
zPO-sxT#zq2tEnW2^Q#bVb`@tg+*u5t#^<~f`alvGtH^xiIa-OkOIq@SeUT9FBfo7l
zsH4kP<|Xko$y+I*mKPB~_o&)>S&7K&D-{q4G9TqQ9|N2-O1$WUZNldmpipm*u#nNH
z8xP}l3m6*~&gkJ7>12Y;>rw&2CujiX47Ac#)1$)dmRBX}n8Ep<o9aFV(kpVOAQ6E9
zq5+MNj!F-YxJCJB51y!v#~VfBUPQmP<lkxw_n!o5@hGWvAROlWbrDbF)$iWWZ){}>
zlK|wuyazS<WDbB&LvLyEnw6%!rMId%<$Zmi(v<f?fX9?q=1&uwl}~Kp>clp|pC&^S
zpA4;HGIR#xiJ-mm<~T+bgW&%ZR~n_DObVbCKJ8y>EBtgyEn-TNSTE_+@LG&WI&n?E
zpUCJN6Tv8&cvQs8EcMuLlwAoFZ`8Yh&ue-kBktdgjIV%gi*@l}#U4|mrZ0Q?>p(!w
zt59=&5sfRnSO!Dc&)*A(@~QrOFr1I<g8b6HHS$Xb_DB9Lu!0*)%xJW-DdAT<=%nik
z!2gCdSVfnVZX6G+p&{Le3*T4}3ri84$0qlK{GCl_pE>6hK$JngXM2C&rM<0M+}Nj`
zSr5KH%)u!!ZqN9<e9CkN5wAOK8vu+FbyXji68=8W4T9#CExLGbUXQ9k9FsdA@>T5W
zq3%;Sds1Lh{LPj?$;h{is_Fx^W$O;?-W#(zpmakZs0pN6NVxKx7Uu`%9HRh+#d?xq
zdsm$H{*9Rcu+l*2HwH?OkmixNYRn_b#2ap1K8DGUz_dhmiF`0lw_)rYNWRuSH(EkV
zLUDI-lH!iz6zCaS&IVlIp()m&8#;YfAe*2a4Dw=PTo%I~O3KJ8y$TN<i|ET4cnCxu
zQnlAmReP<vPNg!T)V7-ts-s(oDO2%~Z<RD&T@{Tr(*9A*)7^1rQnvDI{#{{a{X5L(
ziq&MH;j%G?FVdC$g*@jcyuKVQUI$!**EpZI@5b%H%z^%VdR43#ECiCz3S~aVC9eqh
z>|+egDTeot^Y?CeKU0HPlR?ZJ1eAOM!-kld#lO^tF9W%?rmVzhA10|O;4HubZAAg4
z^EF@#w&s-`u>$J{@yu_r(g5`80yqzuBo*6+BuTq5BIpo57#VGcI1yLih-*xkV&={F
zgWM&sz2W-L0$BKsnFoia8GWTc+ikXwxgK-bZce@mCkmb5K1h<7R^MjB<Db$`P&8(D
zYCp_9&<&QFHDIZk+Ss1HH9FBF6`;z8Zh7{@<?g(H1pl9wC&Tk*HQ&{y!j|B0na|Hn
z+HvjL9ap}A|7G8(al4cbCGs3XuD`<ykdEXQ<*mp_4G5K2$B4};2b^nlr31<?7j#vL
zaO>kWH{vlGSJYHE-$nis)oK1QZrakJVmuOSc6{JRMs59vy-tj;L@<~qYhgi4rsE-0
zDp{o0_!}RRczO+RhQoaPC2nCI#?#qn`Hc(^k2>_Ynr$Z;*guE-a*K^(<KEHD$d8MS
z@e@b?Y#6Bc1VbQXJ0Re|H1V+^EfJgk6l^&kiwAM)_Ms}QRs0Z{or83O|D^rW2S}~L
za!-AKNnRVpRKSmX-5wj)xPXlJaDJXCHtu<BQNk7<W56%EdRdm3_+fR|8*qvf96r`1
zq5N!hMqIbqMmn=giA08U6V!#E6-=n;N5+u}<1d+z<9?WYC0d_U@h9k=v{N~v&NFgt
zKz3cZHt$>_65r@1^4qMbaC@FNIob_Uu~q2LyYSRwS>5!h$8g(A?5lnUl~(BHw<FY!
zOKqoD1?C%h-Kx}a>-4i*Hg(e+^6mV120h0CHa0ow;JX2~hvROh6zP)Ef$)-Fc?1J#
zm1oPjUF6;{#vk@kUX22R2LHomOX+f=bP*P{8F8(d%`X=mV>sG9;_Geer$KqfK(>wW
zj6l*hf~Md9AQR6uDxN!S>*ukec?Y??c6z2QoFnV>c1w^O&&`onj5w%I&xH7kuH+=2
zX7t+c+9r2-7!R>B>yy&GZ5WR|_>(mwAKaquA9r@s)@?jPNNMR7{Z;Ox>|ksi85X{d
zbOTWQQ||czxlyi`3p*xi|CN@!#P88+rq0y<z@o&T&TkE>2!GECr?!NAlWMIwx>_N2
zuRLnB5e)7^z=-nq?AGBiu3W^&y5(tIp&zhidMe5*UruXuTn9dyhZaxI8MJl!#Dlz;
z(gGKBtQBQ78^#UKA-%qgf@D0H$L%Vf3YUL)SdDpce$PH|!fuCxxeSE-9BWwj5)0<g
zV)4LbY<tUeYWoBr`*XQZN}pb(>!IV0$Na<hbHSf6=gN54^l<e7_w*_}ZPy@7uVxEs
z==Uc7pyT2%w#E&bpPIn_k=<%`9)pA0uDJJ`v?9$n2QSnJg59trsZo*?gs{$m?=z;H
zDHfVJ9w0D-RWQ%iMli7g%p-Mtfk_PDU=nDD>|_{%DQ_&mBm^Ls^Nl%}Rds!V*&WEi
zq*A9oA}~LwV8YA@CPRRE$LtHt#{x__`X2)yB`^b2Fum_XFb@eZAKm8*%q)KnrZb)6
z4<axnRsrVA1_<V~m4oRK><i5JS{w}J<qgb!0Kt5tf^j#5_s!;8d2Y5zjo{gz_ATq%
zC4U4n1%Su=V|G~ZF1*0k2~0l~%v!A0EK-0mS$%=&SC@mC(*VJAB``M{2{1LR*s0@<
zc&C1``s!3dJ>IGBu$92PRtRR13T6X=Nf%&tHTDJOPHh6?yst5U=^iFO*#+{pgV2a%
z`C!4GpyTXZ!@cUqPmG}jfG3jbgvkRt>vHZf{aPnXNddD>_<JMRcWf&JV#rCn8nkGI
zK17{##WduRXNY!f9Gj>Kc(TbYPhe`+CT(RM>CF`P{7&#SV<1x=jquRIKXp{WUDv#o
z0W(G0T?+s<ly`0;mkE|##(L~NAljLO{g0}{+X-OpNZVL5Ov2}PsqNWH&k(hh!OdHV
z2Eg=e+(m<b-UI$xg1`EHg8%(y9sHq9JmL2Z!LlXIS^-c;Zar!aPtfqjL?a0e^^G)Y
zC}v~G6_p$t*X$w~Rz2&%p?3pJ&FIrGC(1C?(p7m`B-564EA;uy-17X6?B#Od=V$sK
zo>N5}Zrpn<=sa5poo5Sy`%jC?-QwKz)LJ6Ns^FWfQL&JL6>`@uNR+Nayy{HI8&M|=
zHmc$p<HKM~_CrSvZ|&#FBI<;xrwuJ;=PbCkNwwY6bVu4hHh7#jUW}}y?Jq4icx)H1
zHF)k;t;OPM7E3s*YM-+e=72=0&|_(U^Pv~lKiQ!Y*FUSbm-eD5mMk?5le=_K&9SCo
zN`E)zFJ!B|24Qjo{L~;!Nfh}h3-JA&_WXT!x4Q2lvv*3Yc)lbb)jh*HWd}Sz;#S9R
zEj+imtv)Y-=TTzc#Y@7oQXhfAf};k?0G++KDuVo4HO2Y%xKEoRAFQm8e6WiBk!Riz
ze304@bPb$qsb8wM-@G_uHZ}$unabI6JfB8lHOg8^ExcD>uNI!Gk6N$yxt5Tnts(o9
z6q7?ogFehoiMeF{aI<N1S}+rVCg;Go@5bgc^KVB<IBu~Arl6f&0(A>;-tvgbEe{XT
zx7;ZNBx|}yLuTjL+9+?!&Vsx>QJVzmKb@G6Z-FiA_d|qW-mqZXjxCt>JL*a!Y)(%7
zNeg%F+SGtSaE4BpQWObU26JsQPc`u@Odxa0(4PBGhZYzt^H&=U&V?4(gv6Vu_mh^P
zet4*X;(22O=Q5O2gV~R7&H$knhUq*(NiJiuv@0?{Nit%!ISui=wLK#-Y&5gn(x<ax
zu#}2VkxpW4f}KvBO@Oo}sSw!^PN7~FHZ?Uq3oH5l%x+x*Q&x;@es@4?{Ax{hb(HPt
z+l-XEMB4yAgyCILISpxNK3q=uQ485P*NFOnCi)TfYcjpA&%1`1Uf=-^tFu)xoKMH_
zem~$#bOy%)B9b2#tx?ZYE7ZgLKw+KGx-Fwja!f8;<KUDXGAp+wCiZZqHzqH%B`KqK
zs9iE*ZWJiE1vEI6a5Pa%^a)LoZYE2Y?UK!8Pv2xA^5F?av*ReP4e(U`Y1};G2=nL;
z=OsLI0CWXwnlAiwF~ZCJ+w<FBMDf&)jMgs$hOS6^%yzT$Kj8)*x&gbq@+0kN*8+1J
zgp<lUgyS$W%$_9e7ygZ?B;p&ain$Twy-Rdy5!7Iu0YHRUlDy=Y3tS))z}AZGwCFSl
z#6xurq|xxw8ZgCE+v{?7hdQ%u(suLwNFWxe?8tiPQ=@<>XEEOd=pJTcjo78*I!K>&
z^n}DF_5fZ$p}+e<sd!p2N-q%~5O;?4OLk<_x#GvlRKM}DMySsY)J1)Eko}Q=xvI@;
z$17{E?l`ZV0PPi4s;!sot(ksx74iLA)GFm6m9)yc7QI$^)`I#Y?Gz&yBV%k_0{%i$
zF7d-}kHH(q=RA=9!FEEoq*;V+Y0Ipi$YLOq^F+M)!|n2(wy+ak?CI~n))4x?k^0}#
zEzWb2w*L8spa(Mr%@4q(KSiGVA5oj`BYm>z2Tj!&8o*+iwawJl9~)55Fo<{n9JLe!
z%`8qPWWjt&gj1bgZ|0{u(@WeCe{`vVa19kxdaNg?B{tT><UzXDu3&3fw6M#O?He@3
z_N8h8{h)6u%B!iD8i}TYF<vb(Y#3{0B<&bnFZHyCcC_WBmNt}v;Ti-}#;dXL@pj}1
zTh?iRo`nL>#^Zr`RjV{LYFq<0Mh$d9CPkhAhE9a5PV0m*gXnY`2J6&K^EQR9>;S~|
zb`WMG)$LcG_OeI*Y~@`e?>)UgjLrY7gmR}uwFf?d=UX>~eAEMrZtMn)^LGSQ;{4t{
zfb-34O{ugm*7FCOW0gtec=FWx?ISeuj7+vH2&aU)oJ`6I;jcQPp>A%a<}hPc)V2!T
zPd+V|w1oJI>mK-RT~GWg6?yXSgV)r&Hz0SN>Q|DxlXb~Qx(&0>EypEcZ<q*eCqTYd
zgRLJMxac@chF_X#QDo0Z3zdHjL&uQgQH!^F(Ry|Ay1I`W_j&`=C(qK!fidil{M6;j
z_R)^QyVyrB#X(yJp!4RNbROC*%b{>1)(zF(I||QBuL=4X8^HcoCbk5JzGic|ZOP@f
z=6AXzgA`X?e5@sHoZDlVLjSXlN|R1N2FGJ4BPpTmh2t2xm)HVxFHO$<%mjAjx6mR@
z&Bl5(C9sJtzOHI%<Q@ZHvEVVt=m)?a=D<SD&cQgdMy1u|a}IbfM}Mp3Hbj?o*?lUk
z4-wV_W*n@7qcB*FL&S+RS5%ZmgM%B#a(x{zylUcESUTd>1v_xaM*_BSq<D(WIy8=b
z<5lxftETM!TC2w~$Ltsdvms8Z-<l0#xnPo4Z{X!X0U=@X8VgPJEOJ@Y9DSo>ztO{G
zjdp3G*Lgev4+QP@TdPa_C+_KX^lBnvEz|0$TEZlE(xG7kbRTLW(0z!8Gd);`#i_5o
zy8brWTv46jOd#w1sa5<t%tP>vt=Abb*ZLWF#@3_^Ho60CPb7lX00Gg_WTv3w(FK{;
zYBwu)KRFz-8x97K_|H}$T$)hLE70^Y=$BPDJ@Qw)j^{c<F4sUg%VU4!;)_Dg(mH!d
z)M}KdK#-`(*XRJsC(XbWewEMHB$cn{t9C)-dXWEoEy>f*IzRYmsJF0?%U#qa;$3;^
zSDJj)r+D~}59{UYliI3$?LG`_oLfhgudu_ae1)JP8+ExhfqncdO};K!RQcLlN0o`$
z2rQtkDqlwqsq$qd`D&&gUBg#iqx%spstOO`qG}V=j@g1-#>}pq<d}2JG)Xj-q_swA
zNo{TyTa`bA^4&e)18B--{wRmossb}AMxCsqHXPpD{F_@&|56|3%o<N@pf@AW3EL-7
zmCY{#b&T9CROLJyQw{Tz8VEk#T8pyWJI|w)i<TopCmZy5qEw32ZRy!Yc}ioAc^ygv
zFQqP+uU0<gQ%X1Roej#QyZ)+(pWy}Bsz{Bx+Nk9LXZ*7%82R&&0OZfu0LcGyo@TEv
zba{Pl$&<g(U44OyIVz(j30m3;oxAA6dY<dRa5g`ummB$%x0&%v<NWjs72H#lzRh3R
zldr|g5r5}iR`(fd($L7)7HNFjhvtP-2lae=u9nKTA%6p_4cGW~!a<d9A4V-5)wL#p
z{cMrOw^Ouv;SY^(cN_#@ZM1oz#X*&CUnU`Vu9l8(?Tftl_9b%2Mju4Jt$DE8e0#N-
zj&FzEr{~*7#J6Eu!{IjbZ>Qy5pKE-J3cpW%jc+x70OZgDF9GZ6$^hLwFuj>4-+oqK
z%mPt&;almL#<sOI2xeyzW<hBXX3K)})^dfl94)V@2_pX}UB4K40)0sHwfrlfzrJRr
zmA_QGPeDT^WUdkUG~Ed6pELYYlM|^8!IKS~lP~M-70|0{I|ty-&8(OJj3}_KjE94-
zMcTS30@^basCH*4Jg>ei+J6Boq$?}2MfIMEMDuTjihNDQ+e@1-ME?=kmddwzU?0h~
zo0Dj5R5brrBiIt+?T|eR_<hRiDr1UNJwKfKKh=Q!f5ia(&#m15ZvWQ*LA?K=y`cYE
zTv90$2)PdL-_OVqurz7Xh%Zf)bJr=qn+fnOzm5sO$Ko-^klk+F<l4jj$c=MVBeISV
z=Zly4MWY&N-c10~ybKfFyvvoo<|E+_V|)kuD*xS-$hJnIqo0n342S%ymFlJ9k{4Dy
zN+i@<#OpnO#qDNem8-ml2lwNCHnGmO_?0iRahH%SC{IDpzPdzBw1g&_U!_yuc$CoG
zP>>>ldVd&?WQJ_4z}{!GKl1&j)!siWdfx>h7RZxAGzHr4KGl~nrKZS;RIaqVS*c6Q
zkx-L>P){i|0&j)D4OAGs61N!+gvG`k+yhF=&Ry|z?A?NXvzmLs`s`c}li$gi_Y0OW
zJKCd36(>V4q*L;~^BQ_*>xucQejSuXTh>&N;CKE@CuFmZCV(|{thP7H!<_WHjF_zr
zVl>WNPBhL#2a?{!vZ;Z3FEDJy{!)1`=b|m-2R$FlK+1cY5Udvq_+UO;Mi$bm43zR-
z9vz~70Upj?p*5Z(4zMpHD3vj-d#zHV+mM4U00$MYag(3qjeb>`Nx#;ldn**}!i)C5
z$em?!`6_Z|fn!f;bp>AM$UEwD4XLzYqpd}=4Y)zQS;D?6yGn2=&vijgEKK}_md8?_
zhbwuYwHeX+8_?<mXnoR{&}wiIin>)Z0B%KLQ%Gq*E6r~Cd5O+q-e7@n`#n_bPbwzA
ztuHYPN;uZC34SdmUR$iPuja7dg`)^}mMUK|4CI=PaUNHiQUWOJR{b*kZ?9$e-~x(O
z=ysoWJLf*LdgN~p<}rUF6f-+Whs6=N=Jm+EnGu5W@Prlavq+J)B})N3w{c%f5}VwW
zy_fkV0x;V~+$Und@`^}cv+8LQF-<#jIH{H<u#RhPEs9?`c8vt|0;{M@RgiG+fo^og
z&1G^bclu5zVrE<_*|KVbU_JOP7p#CDK++%7T`G+hqc7;WWzJ0s#&1$ji*`9^rt`3N
zSIC=xf<CYyrUN*A)FXoF&@>zod;_<~2Us!ED@D4PEQM{-2n2zMhgm1&KJ{SFwJyUm
zs~tlRH;`18DYXc8Ze7IFr^4&G7O$1(WV6V!`va$6iga6fuaKm6kj2YrYHe17vxe0o
zTP#UBsVpn3%wZ$Z+fxrXtowQ0fIe*z1A3sil9bFrInM<t2|7>1z1OT=oExtVcQb50
zfi2YkQHrkXhr8bmVqtrCh~QUJq;u#4w`E=N*R+kY^a^zGHt;xSZLE~8Auth3a1(5)
zS<rJ{Aze7QP<;cpOlU0d5U?riQ!EA@?V6BhRW~V=p_d@sUquP(^y>}{0%}Tm9;b&O
z;cg@$qzYF`&${{4|DXG`w035P5%udXfb^Dz`jXp~DEl6MJp*5toz-=0UtQ6S)p|x5
zUe{~n!81yXGJ#V*Nji?%;g~cf+(BvT=EtPz^jDfR4GHGb)DWcU!k1i{z6NP>uDpY2
z@Q?PoWQD>vFY74sgyNsav$E>n+OlG~)wC0=#?zOHVZIF380N*gD#JXZW0>hT5bZ@}
zi1rL4nCl(G@YoIxjNIfa@`rj{1{)sC-6(i%NS!db!IyAC60&cg>lCB&jzAO;4M+wK
z?KL1dB%;<hbo33Kqz(uc1F-6<8pvysqt(}`_`1wvJdso%XhV8J5d)sp95s6x&VRW&
zssX)1IlZEK!o4m^B_=t55HCXA`MF4<DYubCPZ}zb=++lLNOZoA7m09v=tZIx8i`IJ
ziEcrI&)%Wo>sbdJw@fw2|26A5eXfj&2$Q8hq2kAU?mbg!?gcx?a~WgHO5pu|#Ksyz
zLrBU)Ydel&`tylkj1<ayXeLFyP>TJ2)(v5w4Z`G_U(lAi(3@Rr(>6lAMa0wajV(t_
z)K0yg(5>bHo(n1^R#tTmQ5i3yvi=>bcU;}Ngb2tWQi2(N`dT-=!>+N}*|G$S{XxZK
zNnZkP(l$F<1~LNxPGu=ST+vDPtXf`@eXN#{Y&l4i>>mm#kA4Y_e+8$5agj;~tUS9G
z(V^z&<#;<W(IE|Q&kfV}A38d*Ctkt+P~~;UF3mbJpYkc{L--Ir3=5>27kNH<TbA3O
z4<T*_bY-2(8i1pEK;6$!*8hWj`QjG#<=t|&B8d51QxebfKJ@;qoZqngSq(rZo;Mi`
zTr<9m<bh!H0vJV~X`1fInq1StwG49Er(DyWkA<<Cbdzg3{P<K&h9i7Xo&Y0GTU+ji
zwdK3Ty6)Su+HoAd2Z=4ez~O+^ADJ&Vs7X2#%zh<@u3nPeCMG|*H#~*FmerpF`UyI-
z`a-1<Frg$~h7rg(Sy_Tc@#;%}{Am}E7QKs+7Cr88-nj6oCvUVh5nb~?(ep-Qq^+I9
zn+fO~x#NLORs+N(4{$M_gj=2Zi*>>Y%2;Y$W}{T8=guQ0TZ#~q)l8quPk*Y7>;p6^
z@=KqHk^L<YKtIV_e-nE1ZmBn|9_6180&?@uQ>Hb%Bjnp4N@*IQ+|RAi1wnA0xd^a)
z)Emn~9Lu=#-Yq=GTWAa;*XBGKjlF|lT@o@hyCvmArD7fs?@u6zdFMR1q`mN-0GAv&
z$GHSe*uombBVfTQ-<5b&>&UB}fNEc#gBCk`%WNThbDR?%qsIZ}UjinOZzo=e6%~CG
zhamDcXNIE-J(*!$5Di7{$9iU1hr{tK$KwjX`;)Tu(N2JLQtna%^MIIWGE6|pKO#4-
z0mrY4bOuwF4VUEO!CKmNj0WdMAS-p4Zj0m;T#c$32&VjS7BQcAOQ&gVpX>DK4v7D8
zu0`iWR8J}<x6qe(8%p2>eQV)BkJ9}T&eenlp$3g6sIE07@~j|bG!}8oGXu+MP|)9o
zlN*>b7Ay!jePPlxw%I{Spe*b6o?_OZ?!f#9{)4?o-Nft8ZAVozLwBX5)GbUt5kL@i
zw@SLYg()8%73=}r(SeW3X5fIiXON;~&d8q!z?kp}U6?v-N>{!>O?N`&pscM(?hfcD
zaf=T96{PRb$_v1F9RhTdAg->VS^qOM-0cJ46d4+*#d2H_O1QGSl5+x#=KaV9pdpp5
zNBE_HU^hQpQ=bl+apagl?o4*g&!w;>bRXlHP>4Zji#K%db}J8_;C%->MgGd)tM8|H
z-@my*OgEDiP~I={ToGlRL9?tTpw;OJ7f>(|<N^L9Okgu8(<}KiP!DNcx_%nRlqM&+
zKCg>2)b^YF6V1D94CNbs-mC>vu(IYfQT1>3S*cwDYm#%iI3WlTQmiNWQssuaRCxx~
z@>NjFYp#2BZw4+^8UTuq9)|IZ@Kz)tz|^s)eJYt^z^aAl8q5uHv>$a1Cy3`1{s|Pf
z+>C!h?Y)mo`A=`?gn0Tworrz~$%vh!*c3xYb3Z-jg}MPz2W6>za0m!<5%V=Lj$><X
zvja}};HsOg#F=(pyN+q+p~ou`XC)HnCJ^V7YaUv*6_=y_(8)(m=~dQMY`Q5lZN;Xy
z<GKuH8rh%EG>F7SJi`>vaM-4-IOf%XMF<5}QObe8y=R&}y!8=4M=*pcxt@FQ5|?3s
zKKqC33^nv?xq*j%VXPMhaV1In70YoxB%r+Iw+%ETsKI}~1m|$kzL&Hm(A+|O&x2J9
zS!rGgXJH(?0XUofsbs6<;xYw{Ddo&T4_b%unlA#a_nh<wJX)+50nO!TT6Fd1#Ycb)
zADr~b!}r6t*G{V4JFYEXzANxS+F`uCVbEUBlRioa8?z>KwHeAB@l=Ym3EsbqEfhct
zwt`B|gDm`71YhB1Oj}krZ;YP?jJKWe+0%IVw)BJ#tb~2^8sI(egf|(*d@aN0@h5<B
z|0H`&(^*X!YD$L_V$G&~XrdZ-xLh-x@QL?xfLk#8hSB&+ul?wy)v@K;kM$9Wu&tGH
z1hdgY?P$$_tj#6~yRibYv!$CLpVM!R90#T~P0r|ROpe(;wLAOA{8j;OZsp*&*UwA)
z(sOgWXQw^@KMK3&njM?icX%l2UTAjwV1QIturC^!y(Rr@3mc@VH6%(qk~0E=0HzG-
zY*VAnzx6dro6^r@&n}&v_P0Gf$1krD)ieJV#2&Sezi&EQBR#jLadUD^PTE;pdMT6m
zv23<Xzdh^KTI|u!>=?ox=iGKPBMRU6n;i-C#?8RJ^$PpV-UgT*ogf4BSRS8e`vaDL
z>1Ts*?oB^yw*7$);el?h4Ea53w!ul#UzC{=!k%85Y<Imf%^q_#wT-=9ksS`n_PK1A
zF3XATJB*euO-qtGhGBh(bKf#<!H7}#WQP=ukmhyEIQ&oD@6w&nWwUMH2)k=gIAoq~
zciZm&W+-c5YBK<Tq2i7k6P+8w?de-hyafhd-X*?3MacqRBeU5jzQ4!d@8;N3tP8f&
zf4rPf#_GYnPp&t|%Qe^o<C6~|dAw<a`L}Gf{vf++K&V|Rv`Yuo_`oGb#$Pc<S#ef!
z#1@bK*fRpVJYzI$5zje6_-_s1gB-s=B&<hyCz0E3?w!M6D-#$Uy}qa3Z+8}pLfh@q
zcI5~w#PP#BCD?cNsY2;OmA&iNR{E6Q;rsPBw)pyf@s9Y;_}1e)9HcG+Cir`ZHcUMs
z=DA&oJ)@gJ-gO7)xGgdp4oJi#fmz?7KHS$kJ;Wf_#gB55KcjO8|0G84Bv$|{;BU`J
zguEo|x72~U2873>5nk;NO_C~XL)hd-oXFTE$z{P?9v~d~a9U{IqqrXmanPqQKA;rF
zGPO&RYY1ztTbSJy3t1BE?XCmLG5cozEiYtfB|&184h#XKzsj$0E@KP*z<2CPcZQtx
znf08(fTUABX9kZL6`2hT&GRALL~^VLwqnhnwM(0m{E-+*c-n6Wqd<LoMuUNNiT#xP
zbwc9NUnI3%D&o|(K%22WQU@U6VvVVF1-UF(+3rd+*kcM|J2}?gj<M-xxp4*b4z5sO
zpV%vZe<ZZaAJ{!FTf}4gF=%Nkp+D%61LWPe3HgU0B;J3Bf&6z2ZA96#KlRk^)MLF-
zMlrn+nT_hjo4=qZW(Vwq6>l-F%LPU2T*jW_i*x+U&P@6hV0O;&hf~*)*_#yq;>`g!
z>_3^E+gah_&8*aaji9X9!sQ+IW21r10P?f9?$8~^=_?Gd(!y*$QhGKDY5ETM69@&_
z102ZNXkcIDPHLt3SPAdXkkUV)N?%i@Y<yUNm6*iJCB>o=&JqqgRSKm)RwGuzV4`#j
zpvM|D$XnD((O9WImBza1+3_3c=F#+c_AD<{%MQb`mk6El2pI|@NcLtllzu@iJsC^?
zLEmPpkf|j&Z!E{DWfx%C4Bk<KjI`twfYN5Q^b+=%ItEBby`w@a*dO9sRljWyGAI*t
z=e^+mjU2ymQr`*~F2`f+Q{D-PcS1eLz6HQ|IwIixL5$PLgyGBa2e9&&C7{eRF;ia-
z4x52~W@|rJ@SpM&Dhy-7UN6u}e4_oFFA678;b<ysF{&j(wVzh)r-}cR>rlO6R4-mD
zVb^{}i^8XGVd2SCc(hhxy!LaLD7=yiFQCHHv=XzmpOZylCly{og+I|se69UlAPNtI
z!Z|ov{L@<glZ{Rej;(<YA}4&LTbWJq(=<-$mjhs^l$Y<Q`C2mGG;a4dtUQfU>*y!)
z<3;X-@lL<YhI~MU@*w8+4qo^S=A!TTBnF{(V1L%F0>m~JRi2+<LSb`I7km1wVTQDE
zkVUQ+n?xOu&0TtJJo|r|-FVn8%^Gc&`VM1{lVPgZ!dkgD8e7>u99!AO{;UfFE*{QW
zVV@7s=f(7S3w&+^pC6&mtLXE5`ur|@ZVjLBM;t5R7e@Gv0Q??i_<fJ~0aAb?LyRNU
zoxnyC*a!goFo4~96I*RYpYNm3-QY7^05AWSK36=ApKlDq&!z0oI$$pOt(#(g7WgzK
zd<FtO9T^ggGEa;aNGv2UKNFar01PAnk$X}r)97;sef|bM_lM7+^m#aao=Bfl;d4Lu
zY-FDoi1tHV^Y$_FIJ48*OTX_k&;$-`mpz5GBdB&4s0}PHZ@GcMPtxal^f?+n4~Ng+
z-?&3@O=7+%@}v1;1<n^>>eGC&%TLS~@A*}lFZzi2qP3VW8mRL{*K1t4B}DW4C!_>B
z`+uOACKBQ|`psqqYpMl@nH_ad^Chq`PMB;DgzxOvXj1XHg{pEjfO5?>XtM|^;u`AY
zBCjs=oUK+Hv}uY@T7kSg&Q{pKEVa@;tTc;C=ZXfnT0RP82dQOc_L%wv`%z-h>Fz><
zPIt$n-acOebGC=RhHDY?&Q;deD>QxmW;9pU*RF$3dUKdPCn28nOoE;NjYd7R?>cEX
zdN-PX8_)j^!!kcpnH2_a&Hc6ZQ>b=%78TxS@SYxaXg{;HpXyA}m+Hy%`lwbSSNpk7
z6mD`IwP&IBsf7PT?J4sIAY-CI)1Udi^yjE@Z~eKP^yeexKK17V<)lAHppaY{j6%|S
z2osX$jGP~;(4P-7ePA)9y$JfC59lXMS2fGZR0CVSJi(Sm10tB7vhanNkk))u(NS}$
zrA+o`-CxjBNFhq=9{N0nKCg$*d*E|%0e)UipA+e`6F%>T&qoT>^@(18TJ-wU1HZl&
zReuu5Yl9GEdjJU*qwJs-o6+Y3^!X<Hv+gW>evUp@pk9qyrTcsaKKCi`r9Uk?{b^xD
zva0%%z)T=8{{=AD0gU@9=}-EcLZ6?3&o|+7E`1(OpF7j%N$~jweBN|br$5cEzSEfU
zYzxyHZ`DZkiXSJ<3H6MSd|M*0XHjKF9ih(;!)HIt@6A4Yt>+@MoyF#lvZcP$0j|U<
z4rDdIpqhu-pLKPiW&{8RU7j(t0*_dv-!_?hZI|Z3$U)66yyh6Hxd>`DfttnnDm_{K
zdU&}MYch$|b?~|epP;&JsqSc~+Xm{c%lF2&uE2NRd|vrgUitE4Sor~{+!ZR%$iGu*
zeUTa@{r(QG*o;^Fl`2C0bv>YBV!qe>62gYW6_hRqq?gott%E%y<b6PNOu$^bakKlZ
z?tJ4clN@vvHJwGSU{KhkWS35_8weWNInN;Gr4I~ZURrAKnwQeLG98*0!W3+pX#`&{
zGX0D8mxumMJ(G7y<PFs8-_)&nN7VR#hR<tWXgFSn_^$LE)Gz}`!%U|0`X2fP@pFuJ
z>(2Xm>Z{&v)IYxuA^smo_FGS|0Dy?@yh{2<^9sPJ)5(}~W+NzG`M{NXu;u?tg>fwv
zn;BXilRh;J$1|hvK)wi*BMQBNq~-Djf}D8ef3*Lv+>8C6cQ5vT-o4oWd7Az2qD9%i
zEd%T^Ic5h;#C-l4SZH^RFR{C(722f_)*`(Cs8k?_R|X!FleSy7<Pn?sTuSH`62OO`
zq|*|B_0p1o&C-T@h(KyBPlm4L$@l(D9LNK-MX)h0G*VYr;@{N89xR*p3FFrw;@9;l
zG>fr6>rMgH1}MJ#VRq@Z+2J;TrD(LR1#^V*xR4wlGzdBV)BvvAP1p-taW+cwWcI@^
z?QvUrt}!h!#}8dGIla)_;eO6u@kE_o+!pFJkpCUV|Bi;g(p1wHp$GDQ_s|0XJN5g#
zi~K%hm2A**>RWk-_3v#=f1%(Gc8hbO8E+W3`x$I2o+mXB$^E@VM^>H;jV2`MUo!nT
zl#$FBiv)Z#*=QKI?pr^(p{&#INUvg|R~C^gOC{G|D!JZ=Ze2ra#TRc!YQ4yQFn&nC
zXiV#w<LCFk5)1Ss&}qG=zPxBm{n3ZMgf>&(@uXAwRU*?!w`Pwao#KDvbc*(%Q~FgR
zQ!66V!vl#-$77I8gZl%SR{F^W7c21><^QVS`M=Vy*ck!gMwbAOY^dSlM+E#ZI|k!L
z3<vB|kzG2NB<*HzKnh{2xj+8MH#@)r!JDt;@#oRh$6&LOFpc##*rXs=?*N<BHy}AC
z4+GelEic?V^26u(+5mGRx5EViT&PKFgAATjIUJ6yhhqK+%I%zyNM}N=d2O`$Fk>LI
z)wWoYV*cUjCBl=X(I&HF3~G-Kh-zQRDc~Ao!d!U6dBVu97f{>SrS0;(i*7vm{FQ+c
zDmG%DFbno}c>@3BFi@@a=W*&a*`;mr3hYLHlC(ATWpGoDhr|{Ua8@eZ>>Pt<Lh#mW
zOzi+kLfz-l6&#P{6dUHpiODlNey+e_4Sf`c)0u>7<2D=Qbq8RYvtGF4)}5b*_%U~0
z3*k2%MmiMqDIOWPjQu(-pM}44YcF8MH0VKj5ASoOAy>IU{)zf7e+Na=x7uOzLd_5~
zZUMxFwA1<5Y{lD+$<i$@hd-)vxLK9MA1cYAUiqSQ)bf-f)V`1-Bt@EOvgOo(ji98Q
zJ}9W{Z#@5tGMXgyv9O{6?D_v=?@hp?sIrFP?#@C8U<Cn<d(@~w(MeRsM53li0@c{j
zDC;YtD2h1fh|&!xh|#W2DBBiBHb)(0+(yMwTqfWK2?!AvL_|bU38+wISfW5kLX!T@
za%<`CB*4u0{@?dJzt1D7uDVtC-gC}9+dcQ3QgMHj_&b)Lk4Sf`gEDX`QGRupjeAY9
z!xNtAghi(h0%Sz5O*uk2b#1G!AFsZ9y@aM81{0dDkx}PIG~N9p>BZOa;}!f^#>bcg
zPrH^M58%g(_;LCl;qiKWe9@0Bbbjl<Di0F>AD0K~hA^Z1^<o0r#6igDdM0Se+YNaT
zt?%7P%&7tR7H4F|oXSJCnd|(S?YNlz-ONq7@pEuZYqf$Mt?~UV)L4dkjS2OyOsGHU
zh}EWjs7;SVZF)#eLXyLBI0%Txc_ReG3kAdr3F5LkIYp=(!XHxiMw~wWO#Aw{q|A&6
ze@L|cJk*pgpu(WZ|K@G_c~SYoqwW0@80_Z|2kPHaL^S%r)j*?XVm#68S|Z^Te*8T@
z9)1x#J_8?5g2yOttlH;+UFjrmyqVo4<vglqv(}@2Dk%<^K-4~u`c*L&Pns*x_2gD!
zUx=>yT0+;w6h)4KF48t;ZC&7RPDFFyAKW5MkI!$6&C<3Sa>@5TWwHdV0@M2CY|;8}
zZQ)4CHQK|}i|-jcCG^7&f)ZBwW*37EI18<^l5u+|$ZwB!V=W7VNwkN(#_1W?rcL~w
zUXhg16f^b<ZT;`iJ_J}4G^}=d)arq260=Zt2%>5*iRxREsFueP)e-2Y!1cP<6g#Mv
zX-#o1(^9dZwPHbQ#YAgraaIVc64Vq6k}D>X^Q!lQ92=9S7Wae4qr7TKx>vn3LoLqc
z@S|tj=)4z#E{MrWa<=F@t@<`QwR)JkTU|q`PNL~9+v1&qvU<avHO098??)m$#1il6
zK}1P&2NES+SO}ElMoK#S2O_iw__2>4@5+Y9R7<|g52ioIJpu^K%x)?vPnaCQqi%Go
z>xwbd{~SSESA1`>f_Xm>ZDr)_Mh;N<0}<5g@P|n$r^<c9D&EK4t9|sHpo-PL^`t`V
z6netm?@T?Rh`#50lj`k!XY!M0qxi{Q6ZM~&s9*eVpk7udrWC1@(+N#Q>co?461v#<
z&QY+OG;^ETsNb=hn1HEY<uq`Cf%fh5LX*ElWBc@W_)Y@zmgz+-{|Z?C{Q+<~8F6~i
zcTw{1zo6fz{JX;M|8xER_(B$Y&F3@yUx8w8L4qc2iP!IsivGW~=zmKT{cmCV-_kz)
zf722De`C@A790J4^S@93UH@O9|3d{#|CcfS_XGNWh3NmA|2F-n{y$6q3$GCLe=gI1
zKGOeZK>wTL{e42uVEu2HaH1vz8k47<Er<Kezs%-D<vaxsq-Zsp(KNb0O<TU1rL-lT
zXPA(F*o5@s{|<?=DmRDv8)@`+6<?%l#W5ZGLgxNNjT7bMn*vVvMZ?MNH@zM0$7p&S
zVZj^w-TF0lHzrLUFecr1k+?qq&1LOFdNjRJdk-)2#-#gy)^#d!0`L6;?$K@>EM3ao
zkN$Ha*#6q3>^=vh{as9Wt4-e&wLcxLk0+A<^?_V%_}7Qoo4fey!|%<dahoc<H{d<m
zsyy5lo$nk2uHnHG#KxwU^=<5T$S+G?;#W8Qds}+GP1crPh<7><x3dQ(x$mMFKWHP3
zZxj1LGvdEVe$W)Y|2TVH+u0bjZ3}8!zA}CDOa9wF(btc{CwkEpL_aU(68&t0Kkq(_
zzMugcqv$8rUo}ejtJ2Vj=pE&+$TcpAq9jF)by@`@sPE_1Nx^Uex}HE)*53cZbUmd=
z%2kFl>u1xM_2d_pGwTl>II{{QWuxiL`jhp=Y)N@lII{{YXI3u$&K2G(uP9ZCKMTmq
zRd+h?8$|iB3QRxNM4KP$cDo;Iy6|KDX@e=$SA5C#$vIAz&sT3S<@5965yubg)%Jg3
z`LVPwOg|RZvh@|B^Q8d&Sh<!TE5pobmabj0f&5q}Q9JTujgRtA;rSkNc-`<N4j@u@
zhHd{U+Fw<mUHT;(br*ig{;F*5o%~g&erfuvqOolff_8}KsO{T8{;E+i{wnfWHnv70
zdJE-WM*r0xZT>47uYQ%uH>3SoA36+a@SVeu2DtkF9e<V=k7dkE_oySXI&x;o>PH^+
z7>{~Y8c<I%-H&!^sh9x^W^Q@624!GIK({(58~*l&zZWAAI`ee(i}Q3{5a;PSmgVq@
zOK8pRC-2K;xAn*1Av{7+v7XGcMf~_HetZKy#)D$o1b+M=Kd$7*qw(>X_}IgbZ|27f
z`EmDr40yuF=dQQ!$GV3B0}#4xk(1>YrdtNyITmPWQE0*<Ag7nSp|MM3b!eKl3*HX2
zx_o~Kv?ln@4YWFaXF*?^{z!eD$9;VRf8L#neJ%gI#mrB(Q(J-qGr#X&q&-77rl*4h
z62+_v)A(-!(cS~}d}4+?U}Bb}{0(k_yuTmlV0D@{j-K7$s9lE_c@wkzKf$Lmv@6$}
z{1|D>?<RgcocM9U(eh&oxkVKd81kF9)x90fcHf9%%ymz}O44UAW>@zofSh;{0b~Wb
zaBf3@{BvD9``H%+8)lv(k86-ak{nK)B3IWY$>H8kId5bd@Hgiol9IAiSPknfrwX^d
z2leM|?{_bx@85{upN-!yY47_z<xm$nZ*bbX{GFne_=z7c=1)xJPn?XOcp5*Ex-N=7
zgult7wvfD-Mta8vrw|2SF>7a6lUx0aTul>%Ih6ewa+fv8e1hx99O}!7?%>Ar>xgq{
zPpuO^rfJc2nz7B2Pfc%8O)(~}L%!=7w_3(pocv`>VA+?x?R(jcxi!YMYI&cSZmIcr
zJSK(e$nWv0zi5xH!=*7SGp%q<;vYcw#w2pk)z?^UD9tlqSY`^)1?Jx&bzZ$54@*)(
z?>jQHic}v8ptp$0;+{!(;8-fwPEqA*DwkGPhj6J=xw<jw_Nv9Nyz&a%O5-Y(>X39U
zf~yY6zzYyuL$dG!q|uOUypZ7{7cWZTq5v;O!G(+$W8tC{FF?&2GD`orjrG>$eQ-SC
zQ*O&~I`qe^eETSamVAQ#qt*IaETSByY??ki`MFcu^a-7RQ0~DeloYrx)9pWr8v5Uy
zO+?WJKKkxbB#Hx{5KnoO9~biD?dUMVv;y=!!QXAPGJ$C2J{x@ixm+ZOqt_=UaZLD>
zWoNyE{ff&zHtb<ZLAk)eaW}6us6kRbc3^atg*Ac4oq#<#Tv$+(m`R(DR38yfyW&5r
z7Zf2XC1o{X5mP6}BQeE5Vp=>B(+wnM7)Z=AkeF>CG1ow1fq_KXKw_zZL`3VTx^!62
zThK$WRh#z->!go-BG$tMaXLca)4=n5(3$ia3(wJbZCgu<!)uJwlNhJ(5Vrb1dI2Hr
zBJ>FDLZqDzV4f3?uZN=XH9+8N+*%V~%RXj&H41#CthMm<6XFX;roCBX;cG)@_zGZi
zKv_cPDEs*T3Y48<_%Q_DzFW(9+qkxKyzM(5@V25Oybb!uj<@3&Z`%lA{WtX^yiJD>
zyn6y3Pq_V~7E2$r%kMq#JJ=vS`Vw|Y;za$51WE`52?>>pL8$yDJ%mwA-tgE(L&Axt
z2XaCCnvZYpo;g$=cK{lJ1lo}#JAak)KE4NlQ3~?6G~L%n4i8C`RXIaF*E-8G2Xq9`
zwI^lB;c02w12r^_pS^0WoRENT)_n{U(b&z_gD3JQ)DDVpB8zH>sjTJ4d(Pv)Z4^WW
z`1nD7{0cw*oFDJP#{=>4&HOmTkC*V{;pp$V93L0fkiSPb?&xF<Qa2V2L>L`n7<ofo
z3>Zx%7<t0I!3x|YJ@l=B(UsxEj6iOJ6x0Yt(xX%~Z5+Imf2~}-Gs)|$k@MQ5heG&x
z?aT@CxG#)H9%mz-0UR!e06qgIrTfm1!y|xHOEc692!!fYiRQr`(~h>_iQ78bd20}+
zK!4qRUm9?olu`FDn0hGzwEw@zi*wnD2-jP1>hc<bOb$O@z>nWUz}<|G`|{&s`SDbK
z+#4U?fR9u8@je1*|55z-GJHH1AJ?s>#~b-^9zXs8{=9oVKK^vIU3&ogAXGuIRH22W
z738h=6_K1M3OR~_R4$N1a=JWVHUjsa-Y~N?`N1`qu3R3lv=;77?h%@l7;NyT*RVDd
zsLFzG_^bKIBE=_zT^A|<c=aC*W31`IT;yt4zf)mV4+a${=?2uo)RC~ZvD#%tEwva7
zte`^UOJD{SEPMuM^MN>9y@CoHcu3wHT<hx+D*Z0F!QZQ<fIJWObCWO+4aQQBl^;+@
zh6);uvEVqahR#RIVm#}x!4ZzdwAZn)I-Bfiq1kBq2G{!g$m1$XooHn3mIu&VZfV|X
zcW43n>1cE?+CBz}88(~9<6DlURXm|b)5(}USQ1)}p>ZXl7jaCU&}$m~d78(9oECFJ
zV$?IB?N#r2V1CN)e)cK<2VX-d0bJN)JmEV}btDlCY)w`t)O)4Zn`L!Wqc<Tx)2mLa
z#R0`yP_g=^v1-%hz>1exp%Lk(N--(HC>gHCO3E0HVM8Ys9T;wqD$~OEtS=~Q>pJy*
z4`}V4KqOUCHo^14aQ8|%K#n3O{Ka`W>4;}h*f(Uo910QJ3||B6d@f!}mAM5<WZDg~
zvz}C4>cszyI2F28yS9pTs8tSg2v+A)0#ub_6FmbZwMfmzebm@lkDudK8w)C3?m%s=
zyR5Ow_Za<7fZz4-yVmzmU}s}aLqS=j9_w)cUv}wtMC~sFIh_vVRFi<T=2a&ac-3)0
zXA?{D+ygx9N3>Q5w8qB>)Iy-O0Ml9_&{}};TS&u;w(W^dXu8_?6*Sl2U+`GKSL{zo
zdO4?)e!qi<b>&ze(W6FIpjC%-yoph(?!!naZ|K#`G6K-6nHc2h4LzU9{>cs_r?fFE
z?2%2MGs8^d=q5}lC<{JOQ$Pl#M-UIk7kNSzh^4aJ(<SA3hTWJP<X?S8fl?IQLeV^K
zv24LiDpBt$@Thmm9(6EINrpxx>TRX)GsVM87cMhAyma9*%fm|-F0-{&)j}bVqwr1e
zM8l`oat7&b5iW6@QTHjG)2``)Epj4t9|*pJL092>lH@$Bhg4pKUa9asPFxOff0EOq
zE@jel%yM}GG%6r^8VCG+9jEW)(={CKWki3am=3cvj`{LXe@c}!Ynh;0`o8Gs9;>5c
zXQg%AkwQ#mA-8meC-G`HU0oB{u{E&A4Zlv9(kuT)pOk;T6ug(J`?1_3bu4_hm}iBr
zo$#(DAMlFX?6CI%BUUZ{5_VJzy+E_I4*ppWKWkYB<zxH7%jn~sO;9|=!i$(3mOK0X
z8tIFTeSd*}q6mFyt1S<_eYkahwd9lizWzT(9FR$8i{BG;20iF=ZRb-kaxFX($Y5%k
zHsXC!+#V7u1o)V;K~neQfvZg>Jg;!_PXW&top|J`v8)*Y8fax~Wp_xL|JwllwME#+
z1{|Jym*LO=5A+cHlTUtONg>5;3&q1p%7@G!Wb{sJ%pxX&rX!ew!4L!&K&EgJJUt?Y
zp#O5{a4@26O#`945T@L7#A}ddU@SzBn#?gK(+}TkIZ#H~G^axf9)nR%A4ZeL0EU|~
zj%se&7u_e0sO9!*^m41VmfN-e*DbfIw%8HXRdUd1xJ|%IU(g)eM*ovI?H&~$VAobk
zL$8x+w%b24M4FjL{R%S$j9U+O*ZqZZXepfsAFvb;7P!@QlH#LHj1h^R2Z1Cb4}k80
zE!5<h7w}0l5Fn*iefd>$K4|AA?O#^CL;KNeQ-|h}M3qC2kc9OFFhPn!(zQr^4hL4G
zUYsd*ONOyPAX$(rHb;swWl2dR<!UaS&KNKke~AP1p|`j!Ux;-_jR)1Y-rIMN+!rjq
z#4@lVE9L6uL@=omW#?}|QqEE`KdZMVY7>Bud(T_U-{_rrWw_{{4r-XdhwIfenKFW@
zr70`|)Ka<wmOL0ov{wQ)luShw)Y2>_Z?!ZVFJJ<tR3io^QCff(pp}%$pzz@|O7&{t
zH<QB)3kdX#k?;ySce{KU6MGp^!CUw!6hLt4qm1`LoCjb)fZ_2ht01Ke0+oS<Nilwh
zN$82RRU9I`gt@EmTLiK&pL+S>9Ugxb@ndSCUv;>bUKTHf=p~vSxdT}qMeP@Y;`ZP!
z6u+U@5h|qDp>kGgXlbL2i?PPVB;#TlUnoS8#`PTA_2ahdMYiiDw(DiK>nd@r$^SBy
z!cs}Wghhr@IF?5UG(9RtGt_!nFHMpZe}eH6kI#H>TI_pU-WKoi;3ef!+pCMLSLe}u
zV&DFo^){aiZgE*}<AlO~ryK?&haB9L;b<OBI##g_m6Ny$J&K|Rm{X!BRLQD*5msUR
z5VgBWxS|Uz6%X%CLr#|K!985k0gI`;RkkOv9OXuWRQ@k4{}WhFyWUbTOa-yag;G$~
ze7>Z7DuIY>zCis#Qci=ZmNlIT_W<VVI?Pd)=2dmf4whY_{)~oNx;_vH#p0JB94?g<
z%t{Maqa~$R8eR31l&*X=Mp7Q=L08iOEqryqq)hCA6__JZFhn5_3@ka1!RYhI;Ya97
z4*OxQ-(n$yuqVYEcBg5ntN<yG(aL<En}ryvISrV2NPVBarj;T|z#PWPfhrKcK+RJ5
zr(Ns-0Ig`&bt$ZskCnqiC`}+-$RJ)GwbXD%PD!X7k>d?daKaq~Xo>n-Ee%q}I|y)i
zjj)D^1_O=o6}l^x*LE|z1xk=Avr&zflywXbR8;s1Y}<GFs)wX3;j5LBGTud3+a+ZN
zUMUTda&C86%%KG&o;FB9A8-Z2Mes%BY?afTMd7Oty33lJQh9{16M<e1@D+T!j<4X`
zU-K1wdlz0QVCJstMjus1qmG%`7G3WVIbC>i8k)>|-(VfAF~O$y&&Vuw*CdmfIs0wi
zqMp<~D<LkU{fQdAZ<>nj@D;&zv@1l@C5PcK=7IBL-X^2%!4Hwg+3hw<-t$m%BD|+P
z2kB)}S#GL-gdt$da$()vlFF(%?x6xH4MS4u(u0;dX(nUWI5K#q0H0|l8R8VQwQsgW
zbYH8edlSBslX8}XX>n~6)UEE(a)hvYhZy`L43H2l`){eHt+@sauBNpu<yXqvB9V@|
zAM&ORz9D8~W($OxmW2cSlIwYc;uw^aKX${j2+OIyl@vS!RqU(H=Vkt%q{>oPS@TQ2
zq_XCh{hLbEU0!nFtDhMUy21k~7=+i~-41XS><GCll}>+(A=}(l4qutVm7V5QONz^~
zAIq9E_{daQGpvd6bkT$TLuJiCwZjteV*4Ce2&j66%4s10ExJHK#se<y0klM=M}H-~
z4_I$bRn*a6Pj@3$p?`ObSF6@t4J%#y7W-V|7vp}h^A!ZXj1VoYNkF&1R~?t@RVT_d
zh3Tvv6lQSjg*r5ay)PKIg1#53I;a*FFv;{?UyM<Tg=xNS?wWG+<rya7B<+qjj+px0
zZyY7{r@;$sH8h)fU=V*&@KfRu1+GBVsC=hX@quk0gE0kMg9^By)2rIa9C{HkHsqw-
zw^Y9O5ZVw6gbk4o_~`){%m;+^hj;P;O;t(o7g)=VB;tSgY2#dCm2ZY!5_Lri2qs|&
zJ$B0eodt+OSZ#?jQ<Sw*a3>Y+;r)=nO0blOF9VmQcIfMS$4N|h0XzJ%kyFmfLkZ*j
z2zW84iCPbR`xRkG9@MUTm6_OG!f{io7ag+K6MTe4Q=l3q{s>7KsT^%(lpSp@UQ^V9
z#D{1dFF{B;7y}NJvx!G#aOn}%>mmQQ05ma{d33$TkqU1-PH)D1sHWTqXM<Z>>^B$M
z_K!Q2lxM%zLIy>diDIBcsT|8XMdKICm?3_@cQJnZCNqBTOg8cBrj&O2Nj#sj`<$s#
z@N9x@`!h3Vgx$Er%v|ly%w^2%gI4o=l%XJKH!WsFp3(^H%GYGr1!CT&{mZSCp;Wrp
zpg;WrVGj`h3%&{zKrV+l>cKZ$ft_FyN8p`G=oM}x1a^W^908;F1-KE|(U`LqL~lJ1
zuw1>(rO#=##doP+1h&<dHC1uhH~dv!)>O+2!tk~{b&ze;jx`WN^suZED8bfdBVj84
zcN*!b2MvC)+$EODMK3dSbp*{ulb=}gJCI<XUtin&+Ayos5v&qZ4HOho<uJ)Fej2|=
zQ+=3~FUwdB;;pj(WF6`)<~l^p3~1*H-zo5KKi~0gwaFdWwiOh$(Y{ppcZ?J)Y(V*+
z6iG)v6&>azw&YO<<&s2#3lb~^a3Pb-feYM+s!MlL$eUqIsDm;*th2&pme5(@GF!j7
z!I~!;5@gwiC#7L_%oAT?L?@usKOY*x5{4yld2`20Sgc+BhC|dE1WZ~p3YdY0fN@5>
zEE5GR>Ht@<9dv@$BW$X#X*S`{{OHuSNTeeS|6Ba13(VYDDyR$bF>I~v1%xF9GI+@$
z8N{;M`urwK-Wn_@g(_N`dSATVbL?x(xSpW$V4dl6qX2{YpAVoH&;^*ga6cv&HdQpz
zh4j4*^cYapYd_fw2|$l8`M!pKL2-+~DC<69|43(iN&n}eBU{?~loo@KzG~_i_68yS
z4O%Zx6rAUs=b0e?_$z?!x<<jLiOkfdC^EY*>eEbSWgXB?Z1<gz*%3C?cOHrYwECN#
zc;IlHT_4nZgb?hCBxWcrFFeP@aOJ@$DfaAsa{ZqF&iQyFm{(6oK3@v{0jm;M$_e4S
z4}z!y?d}(B*#tWFHo5@OzL_poa;D3&CJ^dB!bd>uQkKIL^$UIbUXX|I^$Vn6?OysY
zTy27@x)*Fxc#9a>zF*nhI#%EO8=0mnqd=qn>YIk01aIOY12VB>${hV&QGYa?)Yi*n
zfF5;3_7O6{_xg0k1oa8OQg=Xy8m`1~`|xLCnfe7-4p@n_vJ`BZmn7w5e1JC0u07D~
zeQp*U5BA2AeFTk-a32hXUtD@M+<4{9tM%96FYS+h9v70o)-WbjUuGuexb{-M26EYi
zSes^#j=|KpBzOr`S@~RB`Wyx&tuozn9fb62(zEu^`W;x7BYX$B&(k=@9=gs23p6Fh
z`{WJZnpSs`i0l2utL{KV9{VgK@)aiwplmj8FbD6d$(!ZCA?K7na(H6I6Q1hC6wfZ;
zb+Ypgz=&z=%`-*-9i*V;JARI(PGXAetpOcm-U(9q0q7(wuP<xrDwXSKJKQKK|3mk_
zENgN}<t21oP3{agU9X{QvNJA|l=JcLd6I&81M$PHWlfoqay;HWOH!V}zo$zIZpG!#
z<YWP1`J1w)1gU%<T!#QF!3N(6`Tdya^G8d{7W_MA4(~H!^^IU{GK<RsLqpD;ayNTJ
zlBV>ElGWM44RW~8-94SO?QGC&ib1pK2F<1knjPKq2nBatKitg8HkH{wFJji{x1D2x
z=Z619dQR+FkBW-}z;*?4_-dGlH#1i%$9gfiSL{tRCQ1Ag{f#kft|ME93Q#X#+YIb%
zbV^BWHkS3<(>&JZR<^UU>9iZ5Cpby$Cs}}%$}b^<kv>P&znXyv8l0xQEXzI1e+n#C
zr@ARTWPSL)73Owy(v%rMMN_6?ad|||mYx(5@RMX>s2Enr5uv3j8Z9*FPLwL#YMO&q
zwOg$UPg-9TmRGm~wOic*&FwC0Oq!BPKEDb)AOcc0NvgmNi|~-O)!Pzb5hR66*G`eb
z)1C=vBkA#=di6Kw7vv+w45Yw_XGt!B9L^dpwD^KqFv3bAoDg{*1>EHDAk;u<=wUZr
zvXwkABD59(%Oa33#fbZCT<Ok6IXu%PjAf6yoL|2e?kwlm?`wn0m&AKC5PF&7sNv<n
zngp<w;s0L}gfrCq7LSo>gba1VLO)3FegtzBZ6#$HQVC+cA{B`!K@ibDpJF09fG1SY
z91Gv~48V`!SqUw}Ltcj8*8aQtQJ}UeAEe8pE_7+_b?Wa$`7?{v>Vl;%P{C{6WX0g&
zRl1h|_v+nb%bZ2&3u+s4B7jE>+^LbPce-@kU7ZvA{`+n5@4wX6?)w;g6K!8Mw#C?&
zm_8uRzTD7ew=X}Uf(BsEI{60`H5eg&P*DTqqZBS1PFi;iErzeVn~MQN(-EzOjqs+v
z*Ro^0>UQ=?YQH?ma^j&VXAo{EzYTYg8MA%3-NCGx?ZaITb31wQA!GS>#B#(_LGGPc
zw*Q?*`U!{3c?xevxsfl~y@HBXOtF4b*@f}O@92rp@salKUjg?i*HAd=(jJ79!fqB$
zB1eXk3Gk*q8pdilvAa@*Edw=IKf$ZzEx4<1Z=#G8OAp$3@(q7w+}(i<u5C0n$V0SI
z#VPLf51JzFo*&t7Y?4n9QHyfk8Yzrtj=Z4?-j=)r%%1RU+^O`2S7gwirL@HyejRrz
zb<DYFi-$?`giA}so~uW7h&dOea3q9UK-kNIi*!EJr50oe&95L!=z;~=LOU!V*nz%S
zK(HGH7XUj>-yW7*<Z%TpvKqpl-n?3s_JpNJD~La>H}~H6dh-He(;OK-?Zk&z6i}QU
zo-Cn*^y)C)X)i_WW(!@5g3fW%DR>&CI$7&go4sm-7rp%$d+8)z=IiU_JzB2Hy<hmD
zj4A;WY?7NJ2<r5x^W0{ofl=C`ujo)tcNX}o1l@5O`T>;AP@K06mjZg{QiLacqy|gX
zSn44B700#;(#78l{2L0O;~Iml9$<ds4Lym_@P_6hGy+vl02D2#z+!SDtMo!mz;Jof
zq)Nh9I!nR>q3v6=ou(2*y`14#s!T;ex10pRdLslv1Z(D05eDoV_Efi&4i;c_D-03w
za@2z_v%t$y4?nS}Ed8A~^KHinF^*aNe2K-^F=-Rru=sig)@<3<m{V2ORF73ls%u?(
zciMjv`G~9ZON2i-Ja;T_@lW6_eoDr@V<C~w27z7u+{48L%%_F!>u$sYptqU3($}@x
z*SDRX)^Ff*A()k&aSxy93CP7hvjUpHFQC8Hkm!KadR`xPIw%1K%Tz$3L&U3wM>qxY
z0X2+#jL?;4Rk1n%h!+IVDfTUE$|tbzHEbPO<mvwXv2QF_bKSYsLvMgu@FS=NhpM=C
z58eW;;78C34gn2d$}WrsUW?JdhHOu=@_u!K%^F63F9Vw=MND}mka~A~ya$$n0hayX
zE(E6L`+|5yy8PgWk2|9GMn&9Wxq&a!?96b8i<ltZ$LHFEc$>`#2zbs!(Ox8P=xGi}
zXNyM&Vmv5h#;BulOr_C<3R~!;6MRCC6=sOd%_>!1Xxs1kn2rpxI-;}@@PJQXVyy5u
zFrFr+09HV$zts&zK8vdB5+Q$L<Jl^0v3b$PjwkS%h>!iw8ofJE<K!4wwI;B0D+S7?
zho`Qf7+ER*Mqf9Kkwxp4_IcvtV?l7sD7d$33m#*+{IvCTp;HYL`7LaLdYISF7N~~@
zU4&*;+(DpTWt2W-53i%H^cO6-Y^n+u{e^W2$&7DKWB(w<ShKzP%sjL=^_N=h`)5bp
zeQYCrX4`-Cy*d@(ZO&uj90n~WR59ke&5Fxa4^qi5lXbrpyXEt2ds{wXGY;2M#rE)4
zW=UuPl1>Rn_K2t+K1G?I;X6AlA1rHfPB}Hdhwnt(P{V_cxS@s)5v6MU94UCBpxpwY
zmbe40y?{orUV^gHNlHk;u>vwF$PTA@4Y#NIHir#j<doQxF3Oz1E`N-ZBE^a$j6&t4
zbqy#-uH*9|%Y@a#ER&dBn!)RcXO<c~bCkg|#~M6yg26K<89Z|u^UQf-P{=k#Jfp!m
zbw3&p;YYD^Pnf#(ge%kO&vIgU8^wxvo0mSZy^(;zaA|c}vr{Vn7NDJfsidHBgl?RV
zDIO*=Mp7^~6rDiJ@b6eIg#gMkrken@`*`?+5Vd)4GGwVZUi(fnwC{AGeIM&O(%qJy
zT1*uk5JzX6i|4msltPL=12k{MU@wG1UYoIhg30mFv7P^tq(p$Y@?VyMgVEm9e{D7P
zRf9kqSQ2ileZP^;XP7~(5ALGsI+Qyj{1k75QfO$nh?UbUV5<}{mg`}q-IG_5PKu)B
z<T&eYw!@(wKK$je4u72?&VBXtgqBkLXWpa~N%@i(Gav2x!Ch04ZP))m;^3fc5~r;B
ze18wAQg)*IFL>ce7|%huLV^+hrDe^RVwlMl{%myjgon^_$t-Km@SRrH42y=MLH=+O
zMT1C6!b!9-AKY{TPWzOZAPr%(EMh2%TSR_))Tuz<H|9c{hp>%05{!qza#W1>jez@+
z86G;fMfpyx(<k-GG)9C81}prToK+Phk0^r2MMqU=!^oc|f|koJ-76{AB#I^<I?VGc
zb;qGR0DUL8!J~4#zCs)r!y+<#XSzd62^bB2$sL-FQaQL*3O?tc02(Ry1bt}*`{XJ}
zOmP&15l0>#8S$tKt%!(w=h~bOzVayUhK|Ho?iM|?;H^>Tm8|nGA(jv4a3QhdjQ#ZH
zGeOmHi8vmt??Q1rm(j&a^rz2B5V-3qDDJN{5i_XC9jb5;#Vy6T;N8C@na6+<r1H;_
zOfYgdpRzs4Y%T-HPAY4LwcnJCeVi{TBZyEgkd%EV;>Bp_|5>^<T~gN3E#Me+C*Z~X
zlCp*_fSas4UcCSLad>fsq)a{qFD`}m6Hdmfb0tNi51lP3pV7tXl5*2&crim#{zw;>
z!xuC0;v7j?Oc!SWe}CsV+`q$#Z>evI=r^7~`T=i=?2eAp`N0;aBgie#2+VJS%XWY!
zwXCU!Z**Bxs&6c9=RD^U+c__z2Q0MEh#0&UJ#4`$Se}M?1}vu4bPhx`x5_LRx9>%F
z`q{0-p#YWFI4ydEzt*02O@+Bps#e%seXN}QKt9Hgfgnlp;^DV<&%{MAO2j8MZ}&|`
zJpM-K6K31V+M;MP(8osB({71bLysD32u3>-$Bl&Nr;C;Tg}4die|nDoR+|;qHd}<R
zNlHbV*#5!F4EnuoHvPa_I<sv{$M?`-md!m88)$b_Fle76pBc5#ub~<cnoAC>G!A~b
z?7$Q-7C<!scpi(4_oUzpwE6B@AqAhruL_viP~x;u0@xq`5=vf3h(gJjL&gr-T^8br
z&MF>nHFvoq+8JUFTbnKNn9ACcW%>4u^=LZU^Jvz!8k@t{qhI%hRznPyps=gF#}&S6
z6mIuaT!xR!i8AOIuV+97TE{@c=)l1$CV)EO;SjdtR+!gOdpa<;!9wBkG2}sLb}h*d
zbGg7}qX4UjYG(;QFLN{fRWfVEUu@>)f?K$~Yy8zjbNsx@vG9fz9#Fx@5kBR~fUH``
zy4XA+#M6vGF4oAz{xK<K^D;l;>vX*4&QLWo#)aD1JTW#@(B_GOu#U#I7wc$^d@bu+
z588;gZ;(0tp+@5L{Tiv{xwgHI*mm&7X1d*{5jDDnV@ZcwO2`VYAm>G2CY<2uPV;yi
zwEy`atwXWvAJJAR;^;=BxkQ-52TyG#QA`WN*UMZN)>08d1K<84k-wI-l4Z(;G-iV|
z;;<{QE|Bc7FzaduqtUps5Np6W8o^TVVoKXGn|0iUtm7_a9d`xkxb<R1q1Ru({TPx1
zg3$GIV^<bd@QYemc`fa%tjrcuhT@k~5*Qo}RSb?Z0q7;6fAG{_7l5G68gcH-28oi;
z>!jR*>WEB;AQ3LcOZMILB<&8PB0ugz{u|*punv3(UfAKekJ3QQVTzu~hATmYaCLBa
z!qm&~%$hemIn5%N@DSWoo^ldKritC=DaVvG--r>)V2$^o9ksVb#Kl#%5YMoaC&T%H
zI*QMjZH0JtbcB`yOU=cz>p>>|>+on^AM^HC;`SAhh#BLnmBK<R&S^kLi{MU%4~DYJ
z<pf2+0_~h2CSN+Jofahf`w5EIF!o)#B-`WizIRx0d7emTp(obV+K-@HXl<R$K1{IP
zf7(=kMx5fy^{Nf%ADP17QiesTf4aBr$R?y?$!)o2O(eps>ztj;y0*0t>$+|q+y<gR
zBzOlfaY)KHP7#%k6v1|gRQ?Z#P-vfah`{uIPF7;3p%OzzZa7K%)nOeuy{({x&Y<6A
z967!HfWv;|6cE|TsneaUQ6s;T%WVYH57EdM{l>vG{)eLj@uyJ+n#-0ogEp2#eKhQQ
zQBr0juPeKJnEwQK*-WR~e=PiQ4fc0~KMA<}Ncbe3+v(`f`IQMXnnI842<^qKhN^){
zQ}yejY^+wN85xchK2WK*D}(Pw**Jkccp#Kj8w?enwar002w(yTuH%2JpwfvT`_oKu
zX2NM%U<+X)h4r0H^QnEngh#Yl1H`Gy1`9JdoTLO?)~FX8^{6j!b~Ng@@8?k;u#Z~(
z{7p+B97CH7Z(0JOwT(9!Hqa)+O1XNwi&EAS5x+)Dg*@iBWR^k?m=kRjrfVAORWmca
zoVV$Y%rx!N_bEllbwV<f<$?8dD*1Smrta+wWYxbNAsxh%kAC7I8_!%egP9|qe5~7G
zW>nC(G}DYN5a40ZC=e`Z2Lw+UAh<~|l`I6oB+=U)=&j;B76g<iP(&CMK8r|KyX*`I
zv98?Y5`1D51L>Dem(Q+Wj}%D2>1FM*2dpz7S~mWOhusfNHrUOWPFn@ldQIyQ^2S@5
z(OcDpw-Mk|>ZT<w)7N}fBi%?az0JMh2FR0~DwHT<C(F@j*&hb2FJr<NGO@BJiq<AR
zm_dnBVXTIFK&2O`;&~BLB*n;~0~2H7v{&C@&E=!k7)1{Ee@g@qLrdA$x{x+$d3kaK
z$@8S631u61ioJkrR@Yw5WbUg7we4-83bPsvx8HZP%jry7NQ<L|V2SH!Il%l5Il!Cu
zA}0NR)7uUr0e5A48SFmC(e*LS8})tPX)xHj*G+=C@?K^%kD#e_y4@d;Bc9yTYHH+l
zt8DAf_Yd3J^F0x>?&?%p6h`iVNjYmh>Sh|K(Sd>UX=YqxnS=e6Y1#{$810zt!Gd_E
z-S6SbhtCI`7}>|Nc`CZtK{Vgx<g+Si!nHn#T<elDlEvGQJ)NyjA3W7Zx5O}->tY#=
zryWMqzs&}`{Zkou?gjwsrq-Bch0}^!RzJ7IFRL$F1mk*zd>Cg+$~g(buU6+0YRGn%
zP(vK%`M5u@BCCAK)4g8rY`QPh9jWY|cEB*wm$gL&VZSVLG00*y(i)9kl4O;yr2Rrf
z^Ah^zDvE%mU0$(d6KzZONY|-Xm<V3=DPnK>^({6m{CNsv;dP96S!sG58m#>v%FfKr
zx6f%_lU(5uqi~C%VnwtwE?_NwAhtYb^y2TqdLm%Qmq7@*ko7|U)uf+!tPfAUEY^+2
z%h&GuG1w-t2x5}X^<w>^-hU3P%oxu>aLwMsSep-t<=idJG-dU_P+T{jkeEQ;sH($w
zqHLz3OGgivy6#Pjsz>q-i>e1j;#bLq5t~nGosY+K62@l#v(3;B)2;n&{c{rEshrb+
z;5?Ns0K{bu_9O?jHUo#~G1Uk2E546#!(bIP-M~%J|BM+QaDBW*xl@mVkGiAzXm8}B
zkMn>jInP!*^V~mKtpDFE=DE(!Jm0i4&lh5u=RBUy^|UP{e3WBbg^v=!s$XmB(wE@R
zo6Vmoc#daiE62Id@ux|Za#En0{AuO05^*xP@shzu%ft5`gaN>lyU1(YgO8q*ANik#
zANf)j9}DmricbCxjJsr}o4rF|C2xno$_q~6-+$F9oajC2(WR2oXNO>9-RWY6q$JR%
zR#MFO!JqNwS(37cF2({^{F$wurAt^E+_D2z71Ki@t3Tk=6F%UlgLXvXR>hKC01RZV
z*s%U}Zg|QL^nyHtC@*0K#o9`{t`H}+q7{IVOrG#P&JvZKN9t1H2|?xN2L~%R>Q-ie
zOeJ>qCOKk#NXWF-3+A?2Ff(R$>`TJ?^@8akvy+0gbugcQ>=tJ^R{sRQwzL^1d%j?X
zm4KUwdw=3hL_F%NZ~sZ04LS`zfuXYc`k$Cw=19RO@%ME8T?W5H^cC49Xr^L1J|7Lw
z)vs+KPCX-Z!{+FX#7nSU=FmQD<?|@UN8fI>`>BFUVRFTxr3mlhV1xgT=si3+d`gd<
z)>dB4U^)iDTY9{Yr(a~uFnAq&x$gPpJ;XXZc?%oNJ$@vE`7ZdgyqkFDfM<2vh3I>S
zD@3gnmNqIUM)#<mc#N!$sGZa-WkTBcBNNubfAa4SfBYQ?E75s4!a4@|B*rN$?=EJx
z>1)7Q5=*uVfMK+V<2#6d^cx~7fP#EkV*O7!4L6Zaq;;=5#JaC`(7GpvvOHOQdEm;H
z2t`}tu_Gz?`XS@Q5pG8qpUpHrdlG*3IQXpZO#0;Q&<H;{4b8nI@yWf_@X1kaeBuUp
z-XX-w@>KD(8&2iYwixoOYl|U2j0cD%zcu_#AirWBoWTbx`s1P2tccO&*;f27rS@Om
zOLYF)x6lsH9xp#u+<6M`EGFs|Sv;lSBMy_RwhPfnih$_XDGbp{+Cq7q5|fr}_J(iW
zjGrm!ii_YGUIbgDAhwQM2zUI{`9e5%oAv48{OJu+@Mri`&IagY-b%N+5PJ}0>cuky
zf-Xx!l*W~WU<rG9OTt5eC}{|WpM~ueYqQ0o#%SIqXtSro&gLEwI^ElX&CL^R?h#^h
zUg2n$f=$4o^(rkADdvP+m_0uD#$mub!zsXgs*}NdbrXKz9}Li+{QcvAxp#Z#!2EtI
zNfcraDM!v8UV4k!!N0aLdzkhz|9)X>EPKeQa`OZQi-_R|Fzb0$CVH4TxK-jFf=4WK
zT8tueSP6s<di~xegDL-^F`6l#h6m|CX^XLaj)}E>T3g%kGqoE0_uGTGWf!|%Z;2Hb
zL)#G-=nOCBWmSv|Vzzx3>ewpa5*IczL|=S~Av*L2(>w(7eVrlu54JpLd&90R*lVMZ
zCl76mIS#ftI2`fS%tZ*#@`^-Ly9Yj(FDX?H4vfmio%{CRBKHvnsNQ0@kE&kbQGSe~
zKIF?RaF<<vy8k5fy@L9Piu}5XEfIIwjO57al5#$s#NuOvcz8G~X9I-^c-3FoQnt<w
zrbL|^)TU7Y1)cB$RTOpo<U4t*K-OCBpe=%_-$f#HvO(K&yBWM$ASnwI@F1?kbfm1{
zJt5YLh1d!gSo=SNjr|`vJSbvrE?ZkcJ!o&a+5?sZmev3r+9jM#CHx7G%3ZKxZ71Km
zU1Huq!!Y%=roGcXxCLPdfYXvhnBTD`#(Q}=uwAx<FZ#w|PXr0pu-y{A<J+Tf%oXT=
z1q#=m0rb)N5G^>t4pp}cp?W%<QCNfZ?9e<e%XRoA5nN})E8ByJj(0{oH+;8=Siu|f
zd-z79LxYYgZuecTRQawf=D?2P;09k}em~y;n8DD^oz3sb??vD+8u9-1rU5^7b(C98
zKAc~zx4;SSeX?UsX3yI5hq2fdvF8)LjXF>8{G@Ft=zleA^z+CDbm%wOchjC8&z|9p
zsFO}^GXoLgBSt21CLGg%0}`7iQ&t#uI;!=|r0iaqnXNHinLAtKnbiNZMzJ>EVjElY
zJss1!F6>snSYkUaR*U<yaLaaD?6Y=UKkwkiR7AhH#bzr%dn;R%Gtg0Y<Dp0-npvzB
z?BX!I!n=xj(jW0F_qUp^U)*I|#Ju9l%{GW%@+q+0_x2-Wu3&-#@DBl_mP43kybF(?
z+HXjd?|+S!D4*dG{$mdsvSB&?OgQ*&3Du#m^1#P#Hgzu%_GJXroOCd5ub=%O0~Xp8
z656B=6>CV2>-oA~7WNlhH=4WtqK#&2Q*UcSM5|m%K^p#A;GCR}eKu#ntjBZHeGgjM
zG*@((P4mP*A+H`@i<yU(Fx26T(8qeuc@-36iC=&>JqZ>3@f2*zu^@7anXpKe)9{*O
zLF9D2<~1s3;59EzISa3A`8pe~8QO9#UNf}i0=(u}5E)n$K%Wo=i;Hq_GMYq8af-)?
zDNfUt2zmFxrbwiw7&|mjWD~;%wx%CAjK69FuXSbZ_msGn{Z(xufvXvh7*!ksv)9YP
z21&t6egzF{oU(dQWdFLwX=MNUlhdeFHq9ARw^9o3c3@di7gsh5Y<F_~)ljI#!Kyy)
zpoV&(N{zYBLV;{HU}>9O4srTZK7B%$p)^@NP7alVLNFqQN*$;p086C+x)JGAnL`}`
z*umpjBLFj{*)k<QD9wexfRR#=5+eW`1+t96$bkTogEMfstA;wp|9m5iqbO;kMO{+8
zBx0}M#znD;xGI*UVCm_)Z({1Tnsw5<MmQ0Oqb7h;#!uHh&2?_KQU-r*@pw*g0@qRy
zo9kuv`gUuQ0RS_dZ(glG+Q#+d%o<xoSUK$>5hog5mvai&&^&E3g0FvM1OB;eTqPJI
zzX1EwE*VEPD;)f|mLDrM@L0#k>El`=w)2Xdk71L0xJPZJLhA>(0BY!&mq-!&2SUu7
z_oKgi-A!|_rXXDVM#`a!@Cc>%7TR^u=p6Pl4u=Sb5BGTTYb4`ha#DNLk`#|RoWkEh
z#tx_OcM!D0v$+7Iy}llN^QD_8Ttik@X@9#3^@J^0DtHX0L>uJ^&0j`5YCh7e?`}Cf
zFwLU|m(fB$k#Vd3DJAy1R(?i!5MPUd@P(r#m9Oz;u5nX;GnD{Li7FG|2~*FW@V{sr
z;SUf<n*S!+MtnyMPrubVUj({DkIh^TppBxo&De88<c#HG2jQfjzQ!Av|6Lu%Okxt;
z{etdd8vB@Jva^h96*q<A)O9O`<ncG!wJp`fuat_Cl6bzs9V$1L<`ZP?F30sqH65q|
zboh?Uf}Aa8`c$}}vl6-bo5(EyexA_ajFQl8DLHFPLU*MR_K@oh&hn}|sER$YzQNhd
z`7lHg``Yg?_A>|2S;X_qvr)rv(>=qhPQdd6#O4B2z{8od!Cg~stY+v3>-m6D6{sq8
zs|#9)*r>gB;W*}pDDv&|K?u4-UBacU0o=8~au$Kc1Sxnadi2qcfW_Y2fd^86ncabx
zp~2k)nv()NuXh?{JwF^{RePGxty0tkY^xR~>as20gs4r4bt-XI+7n~BKILO$+2$x<
z08o9(nPWvh&c_`c<l{suXw=QD)nT|r&X&42iGBk!GRG30#`=mWE)I*V_>EJC!&7W1
zi9trwAw~vOW(cfKlLPlV9RB6_#dL=+MI47o$KM&87ei9$(2W?ks7t{Wr}9L>DJQ?q
z221eV2-W_@4J_@68|i3Ay50xRYZ&K&w&)tEr&og&F)|Cd){|eN>>G@^I+%q_0Tyyq
z29>+SLnH4PiOZ3-=HhbwbquY+R2rB5uU7L=31yzJeLCYXpT0rt(3xlQNM!T1w&ey6
zDu`ZU=IYZEVOCn@VH$01GtWcCpBK+93ay}26Y+6v#@Rwj0eL&c<}D_{iPc=uhlN>b
zF~>`&*g*vDlFBDLk-$M#{f`UFilf?#<Tp-W{X)WIpbY;E2%w0Ul%1SXI?>(mp_A&p
z&c(+y#LKD5WKCce+(;ta&QCNng{Kk?P2sM@!&JELjwO6p&faBJ0}hn{&7yQD2HbFg
zG!IOfgBbBJIbGlpRu82o;M~u^K!xq%MWHe*bCkz`oEsrWLb=pDM{fYkHvoVXXiWBd
z4MhQnztqwcSfVq3<#zyT-`_yu?j6b+liN-`AA&U2rN^?18FHAI`BrbppWzMN3B)%f
z#T&XmTl=|*%<g5O#l&_2d(Sze26quG!X(}tGQkq=|Jr&|sIzMl5@}qMfgN87t8Qo(
zr&YzU$4jplVUJA0c{RQZ={)7MdhN99TLfW;rZs9ktzXzWpkb9#I`riKLfbzY43*=o
zeMJCkcWo=JFj#cmrQkzo5FN1S7)XVw;&|dxJ4OBTeWo7ywW&wG7pq4eNu}seafVye
zIrLEd<4|#yha3X{526IP$n}t13l$S>jDicM4@1=yh|bwyq1lojvPzBAxh<?GnCK<y
zvh)OP^YzSsOVFyWF!GW{FQG!GZ3%@+a=kDn;Ky<&%PD~Xw$ot%Y^}op7#`7&0+|0U
z0F(cE0FM7!;?Kr%DZy;#B`Qek5_LwVT*6C2ga~DnsFdl!mpRsL1tQ|HN6s68Oc~Dy
z0=Vm5F3#B?7U;;fx&;<~>Vna#=tXU2v0ttWs~?Z&lGY?<f^sw?)A{CYR4KU_v<FkK
zy|GO{GZND%#VR8#zMM)ynRBNRB;O+FhTofnqP@!~;`Db4pzCwnV&8q>P|WAAI~1W<
zVRH;q+w{^y9d+>HNb2Btql3N8W;%d{E#@T(&bWF3fn5`reZz|Bhguu5>OZ=ob&y_k
z)Tm3K@mOHMlp1y<2&b#F1C6~<Nk}I_rBa>8VVLM_d;)To-jZ@BIX!)u;$S|Ndo-m3
zo%rQ?7QiBr!va;{6Drn#k$k}oK8e?Bpz#<OMi;#3BPp+uj7XJ~zoy_tcj&Pzz0nT^
zN?tPF>>?>$Qt={1QZB}H-+}y0hrgFl3&Q;``wZ#+JZQ^~(`SbX4QZvMxVn<t6jV6`
zC#RXFlGvDQBvjDiQ6I$zZnYd2f)u={o3RLv?`AB5L#eTKvZY|(E@ZbtyEL524p7-5
zA`4l1O+qpOWhj<gCIG1uvuX<aF{ldZ^lDm7VK$o#oQoRMRLe%1>Qa%sx^NU9n^p_Q
ziUYw|UJNV56>?d(I*+BF!BP-F&)IFB|K?h9e;>hS#b5DnC_hu1Ll=bQ&$Yma=z^NU
z9zuO@!YJl9@8VYN7Qt@=52QOwLO14?ghm#4LQ_F`UY#tEA}Ob(AP^EWrAkLYJKdkc
z*9A_XiC`7h%*)vwg$v+RjD`hxk9d-ai^LQI7g`qs7g#0W=sCEF6t6lOwELl>K!A-k
zQ4xoOC_sb0h7Vw63{EQoM5+_}VSaH?xYI%Mb!H=23|?3U!cMS*+Tie*e{XO~N%-ng
zQkOBUPH1qhIR87C9no+h8y(rYflEVQC{Z6x7lu`~ws-`aAwRa_W|qYQzN9_TF1V_L
z*U&+-!7$0Ytj<YSCnK=bP}*ffX&?0;534r~%a>*w5^WgftkpgC^V01P>p$!J@!<@T
z8)CTPRg{A4ie8dZA{KFqjk%FL7iaWk^NfBeslFS5_{#1_{_{uz)pUG`jM&!@uO)fA
z{Kx6N6NH@__%IFbNJ;|b?#>6|+M`trC9Up950zcJ{Tg1M9(A=g2CuOjuTzu5)11_~
zR&%vrZPg&?={s1f5v|-B?IiftkZ^vMH`FgvWCDPZWBmf>P+sn%IB&kXcTFPJD(s%A
zRa}b>kG<Lh*J6vr%$(iGtjlsyMijtm#bpb8_!^ALE2Lb#jw4>al}X0(eIm(NzB7~J
z9C^Pugd>kK6`><<J!3zkCLu|1OeVv^0;a-3nF*n=l<A-liBd)`Db{L=ek&%nCXN);
zF!ih<D$cLLk#VA1%vb`Z88W1iS@>lz$8t%;dDI&U@Oc^<XTny)ZLTS$Y^mKK%i&W#
zT<xGF0=TnfJ6&-@ivCbDDJEvv_dU&|*-#jR#jNx$5kr3=<;4j<0jR)LVY*WbN<vs!
zbt_OZLNnD+*rXt8TMX8hOsnUSBd~gY5=zx=CSR;cphy}dXyA!JE|Y;;t~?UHs7_3;
zDLh%oFBV1mdrdscCOXJx@L+vgW7MQSYP9O&CB3tn(sCH!<-88*ad{n5L|%ty7~&}+
zf7qZ5Bj0S6NF)XpbaIpVee~zya$zz!mAM`eH0dPzZ3oRdfNZLN+Gvu@08GfX+szG2
znmWPDF&17fF!559VBjSy;qZ9bBJgtKe+@6LD7>6W$>X|b8vc&mNU-`32RoTnFKbqB
zx{O)PbD7?F*I{L_N!He!FddtYIS2@>fCqiw!C2+_43l<9r3dm!hC6E#fLNxZF1@F-
zQKy)rR=#VozqPKVlefBAbJa|X@nh3s+<rKVv3rc)-agyEvvmFMiuH|Gu?$0cwac*g
zMUudj4h5Dzq$w8QlaN)Jwh5Xh!<y}&%WpQ{*u!t^+izN3dzf*3z2AJJpz<~yb5cil
zax+;#yDbaot~RRVVRiFiOYA#qTJW8ptaol}(_e~fHHGZEDytPx%&1oTmkZjl0MBT%
zw@8gM;kr|Li!LZf^^5kIeg-hK-0DW&r66}%3W~<RIk3d`Gl(^e1ylS^+__+HN+__1
zE%V38GJlxsmjN>7;(bqOI4oSyafV|uvlRH7&Bw&a8GuGG`wZIi7zkH^8Zg{L%e|yX
zoJxwk*nn6i>VGff!ENwu^76M!K>yn04uM70O;U2{;ZMG+1C3zso$WH~z{L0!ygd3u
z+F#lOBw#obBvxrfr#Tz+n}5aqq(Gx2DGxYIFnB_8hBw^jzzV!GsS!S<d8w55w0cjd
zAln2AZm~@UcHcj=9FwN;QG=nmzyV>oOqXL_Ph_m4ex<#4B^xW4lnU9){lY&Yz~}+6
zwdZ5=T0p#)zo0B_!(*lfs3hedL=X-FP!bue-K5}m<f~;Ese6SYBnKAbEYb@aRyzfN
zh`Fc%)`<?9Eaoed#k}=zIHdq$88yYk@?^Cbcu4^Oqqu+pSq%D70Wg_j(2oiLXvLr(
z;l^a~zvqo2#Il_-#<m}TQ)KrMZPcrK1sA=_oZ_wK6g`KZVgpZcYU~ud9?cYMibe8>
zVshBl6jM2<nqnami^uBCZI=Eq_i^^WEMou59Q41OJ&3H6V+GObUbF6qaJ~G^$R``k
zGX|L7jdn?$VBTL-jJ@2CEC&;9&*{MbQ%wCoX83;|MoDJ9`CJ^cdV#1tdg~TFgL8mU
zwUR$XIEPZShYN-Autrk$I7o$GLxe9d_lv{8T)o4<T$>|KVSkbpcK=Lt0^Tk1(&82j
znhwJEQBx=oQOH?5P*DN>T<nrw378uSSi2Hvjcjq#QBqTwMHpjeiQyw58eAp(!RRA=
z7}j;vqL36!(^vN+?uSS3ljBjBx-aoQ@39)&s;evskV5%Aqw&^e;w>87^_Jh+zH?H5
zq5$(fu?G(2@ySlhtsWx?esx6&0+|JYEChl49|?kg5dr&8nnRMH0M{<dfzVPKS%dEz
zIm9s!AQ8R|xyT=f(Gr2iu99-OZMdO(GSFQwhh^f_-cUik92y8?3-RM2S#r2fk9V-&
z>A<irJNF%fVatMHdkOE;fniUE8D7Z@dmP7$;b2n+Sy5uZu{YZDXG2%Ha$sdC$s0P4
zHn5%(qlE@G#)HJZX)@Q+mUul$N<DLHo;Uo)<3}N$@?58IN<Qq2mwE@CrquJQJ8V*~
zE7KAIm;$l&iNDzW@m_VO-Op$U2K34U0I`K36CN@d=6I7~4spi292Ywbm*Za?<Z|@S
z08r501O@%@-o!v-Z(^XaH!;xIn;2;9O$?NCHng`paad`<7RB@ErkR7b-V9s(ip}O5
zi~FlKqYsZk&1s+CRu&MyyVl^hKeyQHA7!wB=}KaH2T=l_L^UdO6lIF7<YVxhKsUSp
zNbu`}EwLKx^KG#j?5wDL15{$~XzR#9pTq<HyTPEh8uiZp1AgF4`2G073j>duAEep%
z!Jwn%2NzYE{9sV!(ei^v_wUUQ7Pvd(2jS9s49zHC<P_6i*bYlbblF*g$fGN`LXSAE
zFnouZXZ|Sp!owzC__N6uu5E`eyk+u*zdFQLL>a@2cth&{DsOn)%(sgCVOsnAVN?u%
zxV&TjupmF0KYZ05f9P>|{;&s6cOPnr=MOvM_`_3i{Glw4KitwGfB1PoG=JD&@`pJ4
zG0U(YEhd2{<2$e(um2sb$Fj?9)?=1wJ(9j<@`-rsv4^B!&1tkAuOYUPMP*`*^%}iw
zhMD%GSS!czTFGLAQdo~`!G1jBN7H_+aKze=-QGM>`*GEhBeEY;g#Czcn06WSpL>M~
zInAEm_{i<Z9R7^*&lo%MZ#Fx!l{jn<=5<GHN3Jk=!{1EaFx~lY+mXm4fMouCOY%tU
z$gC(ka?Vk}bK3xh=a|-Lrj1DmLurBLo|1xf2?E<&19-ss&333S(HTR1ST>l#>P`H%
z%YTl`jkX8xi?s(oY2O~4+<`rKO?&p>g=nu~kTJ8fKD0RZ(7NcI$w9}M6`xRo%<S~v
z@K||^QAf2sHgv-!46+dsle+YoEgdnfY|%Q))_NUBa7Wb_u@_I9K!My3bw^w@c+`WE
zGQYbO%gq*LmBS#@bq<3}F)w?JMfsqEEy`Qaq8#ZCJxxK}Tm1dpp=4l7XSqY<stq(A
z?>iyTc-+(zK+ib;HRyO;;zP1?Wn??T;XNml*#vcSyYY)?H$ES0H~Jo{+iB$IkG31{
zHta?tPWm=Vh+x}qkMdJzMB29(@sO%Jw18MBaQp6bQncKpU@so7%k2s9Nw7ANDWtSr
zN3hsO#;y6!av5c*lr7!*B04x=O^Bs1HNlL1@C+#DrO?=omx9=|tD%EJX#b+n_;3Q%
z$!xPgsL%Z#iGr0c;l(a6lrK~v8asDhLpO%{RjM5?Mm^6N4Too8Od+<yE&^@e(8JE@
zD)g{ZyT;EWId&e%#q9AAtbj31m*yf=Y4{kX5-P2yV_k4@*x~aiDS~#CSSMdOqKE%u
zDh}TmwPcJsxt&p;of<Q0JPD5UONt~9*^lBU^dh@$e}eBMM|XD|^1bZvh_*m;qEyj~
z^X2n;9?}xJ)(UD_K+?j9KP=4v#1aVF<tm@-jzrW|bfU=}dd-Lqd^ah&?<epORBo~y
znvmfQjm`3gCS-$dlFS*pC}&v~p6|=3Day>p$<&==^l!u>qrg@dpdipvF6M}2$HkZ?
zrJUpI%W(_czuw(Y;}m-|;$W3vDtC1;n949SEF|~vVIjQFX4_^X1=3y91vLa>9v=0s
zTr2a=;8GEsHh7dMYBYE({LOc(gH!Z*7=UF(u1`;l29lpjKhfB6aghS~uEC$;7T7%-
zLE+p`_hT_b9gk2eZ*zffVV6nDnefHHrA|<|k_=01NETUN;XbaH%xzSUIwHlRPRa17
zS8+sfU2|tW=kDg7J8qG@(->Phj}2ybenRwYE1FF)e6NdBS{@2Cb(55du6X*Nog72|
zc<!8|=0eL2HF$JP4`($qn^f*epv8%R#dH4pIkc-=$r`GptfCGp`91i(y9pj!bR<R5
z(O@$^p`RI_FfcYg;Rv=i<<M1tjS*QafI@?^fu`8#x;ocNUw<_oRv(2#q>pUs3@01+
z;o^VV+)$eDjHZMWnvfEJQBI)T1O#22BTTHbz_u67VCm&%*ub-ivDT!0x@c44_NEn$
z3AUw}G1H%z@j#q0yP&4RjIS0m#^d={^Neq8>}<v>_ZT$xD9?JWq)d(x5V(s?6p+(w
zE-mDo`dOG?bA$c{Y0;CozLXr23%JTxXqvgT8fbRO>cyGHkqwL4OO>Gc&cJX3dyp2h
zO3_nK(#SBB?nRB5<h+9s%Ii8fhYg0&7?AsbxOt(tnUDE>{=_%O&(Tg2x2s$Dylkmx
zo<R5KNWmZRK>np>`?_pye;(JB&@)8)FSA8^9Vmec!gKrgMEl8yxP5&Cw|~xP-yfrR
zzHKntheZ3iVmwu%{bZy444l*}4R~<>C=`>6`LoL14bh6pO%1G=911i8Yq+GvBwmv>
zY<0!323q2`92A&EI|2AFktbjoC~#6eRTo2Z&^9caJdYFNzRYZWZZuPHGE-R2OyOiR
z-r-_1-XYy}*k#gnJl-IMu#+|7>|~9E2Bzd}aMQ8&sEERL;|Ze=9O=miM4d)kw2&d{
z*&iaC{*Y1@_CNegbo^=DW_=|F=-@5TY;ivNla1*708=si04l)`#Xeuv9QFK_=GZU3
z8ogriWJ19^93i`N-wQlW?J6Em{(kFY=w}&nDAqgUJ!JI1hx^Z=Sn3}4KZ~F4-<AGc
z)^j%KQkZjEd*NI<k$3|?{^jrVc;fx=_@DT=93FeZ3y=Uk;YuRM@N%+=PCgguSY746
z!iW%hW?%H+HnzqN4$}ul4eq^GlgueJsr|0r=*wOC<{NDfv~<)qNNs)Njh0IebkuS*
zx6C(MuHWBL%N)@^CyO%LZ{BB~V*<=PizmsUjsDl)gxwihSOt&JVVuk*9j4q8Xzb!U
z2UTBq?w=xuX5$%WFqHa!AwSrJXSJl+=<nLMiuOt3p3dA6xNky=zg7-$*~)~9T>di_
z{?r|7#E&QWPl6Wo=rU9-r3F<|WtHKt%Bd3m?S(kgoT}gk|Lk@@2!AHUf5QPoNCia(
z0I_dXl>Ix*qqcx)OAb8sOYQx0u&TD^Q8hVlwf}tm??R6cU$effx$BgivL;Mr-h`=_
z@NH7>OPn8h^QwHq+)`zVTV3l8Y}@J%=x)q?KD9<!%Z={+M*Z0RhAXhWwye3z_bL8J
z2yCw}Yp(UJ2yAOC&RJX5RPUDNReP$px%i9z*T&Crt50PX;C%YRm|o39rZIYqM^!R$
z%ItQzew7?f8vhI~fj;3yXkw4XdZy?lMlv2l=QVPwxZNX*sNDyhwu|!*G?@N@bQG#7
z05I*bvs)r1;ml-;PAbXU0eTwo#K$S6Q0OH*z+TdKzc;VWmuEX~7@CgBLbPG<wl}X<
zR##6xR#sP1oz94MOePWcrF<&5&i{odvbAIsiJ?V=;J}CJadFnxdEC$djPXqIIQMw^
z?vmB_u;i$=<17q_eQOj+3o1Ukj0MDVv0sFb0blv!(<rDYUJsA>!}F*!yHWJx4QC!l
z)FY~}s)vGAeqhgoWsrJFa^A=SsXRzl9OhjgDz9;51Om8i<n-qK?7vLM`f=9xq{?E4
zQZ)^9oI+U+tafq<+bd<MvLrGqMZD<2fa7Orw%7`bco!B-{Sa-gUFVR`ciHGMgvmMT
zN~SnTc??(lN+vn3>qS-T{EJ0biN*k>%Hb`TF1}E<-D!=x(-wCpGAqqCz~GIvA3zlo
z@xPitrnn;5)0WlvIihpd;XX`(w8USieZtWXO~-tq+NWo;9>Z}yg|dDtImF`X?V4CM
zg2LANj$s7j+w(D3PTtRwaw}QlMU1zw{0uC4iKI8xNjq68?@rg>mNoa0%26rFzl=+J
z<!4F?#$)8qloU;1rj@E8AwA@5z&eRfV=v)5`Z(R{8eJtu1XMK8iE$TeTxZE4Sda{F
zxJxu3l@BLvi`x{bjn!IWpfUA?wSjF-;UecHSX-c-m%34){0<3UbeFY3dwd<<85s8F
zTrw-wq}ScPKNm@reg}R9sk2zBY%@PoF_ur|Y7@?47^4##Tk3<YbANJZvdo1at}K{x
zEl~RS!%}*15r)UKLr3;Q`35Jz{<Tc*{}iXOp6-3ZSO>m8TWesBxd#67-&_NFfo*^6
zi0QlAe@x$NiKH#IGv)YrmZJ{>)kUj0lbA%$xMT$Q)w;C^!{@1q?|Z^uZ7U;oHsAb+
zZZ5z?JO)(HFrdm;T<_uv^p8-vZp?PWPOyG>MJ2t@pm+n!7x6VNxngxS?xcNcE;>+i
zF}&%#j20~G=neal9IynbJS!T^7+>ejJK)dPF=66(i+>JxC>y4YGANW&uM4V5HK}Tk
zv7b;Vz%^9x&sWc2{uu`v<J{_cQU86h_(ApG(GSkE_CNKzu+u$Ku$1DNLPY&V>T`k>
zQQQ`2aCE!<WE5pbMTg(C{ik%e(7wN)Q-zMN`BhYG!uYO$c)J9e)yA}T=IOkMCksZ6
zUVGrPMkq!)=LHGfk(n)0kz<NsOh5iH{smocrGwLuzvAFD<o6Ia@@D4N&<+&=B~Rzd
zpmIQWiu~@CFrbg+uqT2gUaJbq+RA)&@HwjgC+B@7DZfR@YdP?XQ>si=KMK@V<(K*D
z%bHR-e*q=)UE>hRd{J*JYuZl8k(98*^52r~vC4!OC*K-o?mI}80c=;CQ$?P9+74e+
z1jr6lWzR~?)ZTC5{HkZ*#>SiD=O6^I+DiUPu#3D4u(y{90RF2e@tAB>xx_p)`7ir(
zDR`d~i%+6#$JbIF6Nxe%-(cmP2=~8iJ~Cf~oy$I=ty(URVSW`&1{Ch-`M{Tz=#=H?
z3D?gcdWP@52;Z$+BH)4Z_dlmU*2a0r7+}Fo_yQ{LbB5>aHbgRKU<=L8WRBpWM2;+{
zk(BaQOW{XjbR?;KqXW|hVa8BQz@hx?5J&8vb8y-Y1+zE?Xfx7TLnO&moVWUcGwQCz
z@tPDHqQ`+MXWnX+E@xgC#ZNXOY_30*Smq=m;g#d(_$w_f;^v4U*PNzYa~g7uW<F+>
zeSNKQ^oahMs$Xm5g~7h+Phr>3$&`3Q1Vq}`zx5sc1hGHfX}%uT<o`i=-YH*?$IRDr
zg~-?Q)XBDdJroxn?s42)PSu0@Gp6c^NuFb#<4HTw%*&H>qM4UxIOgRk^@QeA&94FT
zQA_gOF7onlR;-Tm^2|Asd^{6Q;)AnePij9O4<$7V|BLz$e}F*Hem=p>$Ah=^I}NxG
zl|xHqR{P~(gRd0qXEZOgpY~Bg22j%2>VRip6HsmW91^f|4~Rtr>t(dHUU=-*Z#h6k
z+#J3guu?YtMXWoLrCL=Z)fDdz<6mXz8(hDhyXCI3s4L%Q_`<@!M6KMJjrKthJ&>8V
zLY!hgBq`|W3RRE^8t#AHU&LlsunKI+tKb({koELI?Lr>SF|62I<DrZc9(9*D;kjIr
z**^o*`O0C_o1^WW4$O%T?46bq2{8`~J#X3nZ|_9eJ99>lF`NWOe6w5KKV1C^=(eJk
zaV!t0z+7>@>p=rgl+_U44ux>3s44t6xOUoU!QJ#BfA@qCG8B~_SaF9a=YR4ghe%qf
z0f*B*ZL(VyQU<*6QtCCl0*`}gj~-{nVc>23zDRT&M%~j^KARRRA40Oa5L48tv%8Zn
zM2Rem)Y-j}9i!U{D~(9yZxBoG;=34KSHUyMQgdi0ajK|bFA8dM#2t|r{8HOTLe00;
ztM1f}=j$)sp|>+J<RsVt?{~+P3*O8bn3gUXegvkU405EU8}4uz)zuVE2iSMLd>MJd
zx&|)oA}MRTA%9ddF*9a2gFbX$gyW-<{L{55EK!vkD9+&hOq^LT;_K@nr!NQ?PabGL
zQu#>stvfMG4T>apK*?l+G?GplCwb@5Pq)gw;+$i-q<MZ5y{v{)h<rl&*KMZ#hWkb<
zkl{H(gR<GgbBBBYg(@yPTU7l<0)VHun)Z9nrpJ$DP9q|cl;e;r&>{$K@SR^2y0Ra%
z@@Il1_MHaY<&Pmu%cEqLI*sC~Z)eI*_P^oCA0a2uPHmJ(HB^9sSnzvVGyl%U5Wfu~
zb>>d3r$`Ehhc(=R_v!T{sUnrawdT=Jm~EHY7;(~jj_h0?sm1&VJGCtFz1mi8naB!8
zupkv@Q-qV1f)}M4DDRtk7?gLFltW!Dl=m=E{-9L{g|v~Yy9#aOF^rawTLPHF^9u?a
zcq$V;?X-3H9^K$!72~*G!5hJ~?@+>*;%chi7b`!c;BZu=12eOjflI++3U*A|_ec!3
zbE<T`g#r6aAJ)OYrfnS{J$*KLzMsmR!16#2*##23;t9Q)N$ywm`pg3DwBHzznBzot
zevdaxX`=vR31s_j!A|YW{oHn<(HHW0PabBNEC29J1UwLc0Vw}D0#GB)5o%lhIq1Sr
zGD&fh^Xd@ThW3WnhHiz|hQ`H5frW~RI=SAryKzpAYHDCYJgTX2YHv|fV|H)0x=y1T
z8CcH*YfZ-vxU@H?WB#zW`D~TbT&PmzP~gwzS~Z48%d1Mx`(9H1-VG&VFRZ&VubL}b
z7IoG9m;pZc#7Xh}J$Wp)Pe8M0z_C<qY1T)F={nu$x;-c{dEQOjM<MP5$X@h79I~Gx
zWFyj%ATVrOJFlMc_*^sMypE=`>SX*tVZ@{EDbAroqZsO~mpj;Eo9|#tt?U@K)HZhI
zjATItZ=3_G=a~2@KLq#OQe`sEwW}nadje~$xx&*C9l@E0;mzA8DLqf-51|eDQWvrv
z5#|`bPJ_6)D`vB&&r89<J#k5ygE*$UcozWwMt27Mp6J0~wKp#f=Bmi7l*2;aO^3Vm
zn<G){OsnX0oh{wNF#ki-;n&%F0zU~&@$2kQvFq%mGsQZ)`7E){<g<=`ozbBE_vxRc
zAijOm5Z5>LL|o(gi5$z^HPAC2$=CHHx<;@r>vgnCX#>&Th!n9j{0gSk0O>ixke=CT
z>?!zCV$2=v^B*i3nq=K0C}?^+g(Tp`!B})l^J?%RsfTj7UxGgm3>|+ryq8ECew=il
zae4>R9Y_~*PvzA~L9}r7>$;f!1YA#ZXgvx4fpTsNuc~VjMI8rsN<5%@r<j1gH03A(
zZHxwh{Y5eZ8<x_@1YSxjxwaMcyfXpWqF74brbaELq-2wYr6)5!vJW$o&KDBrdAK#2
zhy6|IfQJD?>W3(!!rAH?K2~xgm)KUm1_R3L+?TVqL_O%q`$1AZNn(cPUVaID=7Vep
zM?&W6Sx#Zs;5^QAGGD8p*vHGtn)^!Sm}NeHH%Js@ZF?kT3Ovi-D+M1*Bu+BYS=RiX
zr2P3*6fY}4BRCb8+xwiFRSGV1u}#Akj=P)P!ubUjh+0j^s0wUr#NrT2o3Ut0oHf9T
z0M=fF^>`Y-;7n^A*IQ@}v;zHn2J1qqI1z)g0<ECD%#iT+rCsPZ=&w)Xs;pQb33@ss
z!9bHmx{FU_(!~TIM7-ISYMQrIQXb~%b_tilRBn(eK5Jt|7w3sgx5mjNAfcBEKsh;q
zNc%LP=Lrc6)!bC3YZpKv{|qU(7(Q7fRcdY)UP){}6^Gszijv4DTnwDEjBf1qCoQA&
ze*oV}#G<;P7Ug0s3VqCzFt}x67Ebck238^!oWcoJ2iFIx67)X;UEtof6g+>wnRkSh
zyd+bKKDCb;rAom=2XO11pLa2z&)8>=KQ0Cn0}H9pFp5EwE~+-i2iHW;Sfc65VkP1m
zgp`f%x$_vfGcPWi?#%FAfQ){_E+*a+_o45t7j=d@NzL(q8s{oE>B)Mrscu=w%TE@&
zm9XsEUHtrNDpoa`j_y6KJydA8_ZA#7)Wwsb2~u|+qPOe;Cy@5kZk*r9&WO(yIt%J9
zLUh(d$?=i)?sL}a%UT6Txf3lv4Cti1_%}LPe%V1HJ&MQFy?F<~Ucie1zD(dw{jp`)
zOeb8PE3ArV#bW>ER~V~Qd7KHb$O$ki=NiFKKB5dW4)=qtn1NhU*7v~0FeZ@}#~G4>
z(J*jzy`-$^Mpq|E%9Gv2yx^?}v40s1ku|8H@q&Ex#Ha;1jp)*xaJYN01>L(BkR3e@
zR%v5b52j;O_qwI4+uY8^qFGk!fSxGL>YXNfELJu5mzq0JE5Vxp?-`i|Q{RK>LPr@z
zq_Dl)m6iP8>IK&D)HlJj?lC}$iupP8ibI0FV`=4BK`W^2w6AqB*#3g+2LKM#a(V*+
zc#1206;~-pYcS~L?+t8toXukj)?qB%|I|n24~rIDu9O&+<@FSyvYgySs4T87HkHLL
zE|9+Uk5Fd{_g7|`jxij-tv@p{e7~2Mtl`wL%RLkqwT>to8-JpuiV{elR?n09pA-f#
z7JKArmVs`Z4-`@YPz6~T+=b@;T2WtC0)h(6$n1xy@_MvK&wIKfJ<rGl^ZQ4<955p@
zS5h{2XENTR@yO5I%S#R@e9Vc&Y>zi7`V}-GoHb;z>vuHU`424UpcLGQF^hS^3jAvq
zM#gt=bB_MW9-@DIFp0YgzK*Tm;`^3#+L>yXP7n7G{x>PO^q{GEu1d6v^_E#_26>tH
zTHCqT*3Lb2c-?T&+K~jsudBWPhphgqf3N;09Atn^NM?X-$Euo7?q+@wXzj*%E~SdL
zuJP;W+}<$)^UvlA(m%#ny$4&fGLYXqh)#$HTl><FBL1<6l!GS@#k2BB$Hsj2M(eYa
z8{;j2`%+_;(~I52avG8<mQ!|W2g?arfS$dNVQ@<l6a7=WP&A-oss7yCuDqm1DKB|x
zCVJ*K{Z8n~Z{ij4j8wi%NOM-Jl*f>O=O3i~Xy8$>0Pg=)@H-vzTH}NQ#1X(=`M8eQ
zS288U!6)}7GP?i#E3S{lb?mpbaBu~!;&}|yW`Jor(qc2fbQ1b|niH5-qZC;KzWTTO
z<B|G7_b9vI91Epi*V|XX=%^Ja9b<x6H&{KOEYU7!N5sJxZ^i)`Z^l7cFn;|J!S-%W
zU<!ER7ls#-Ku#|^34Gq&KE7Iu1XeWtj^n#okO5%XcMz)qt#%7>`}1k;@U%8M0p>L0
zfuu@r7iW?B3oH_6_4eezwkzbk#-eb)p8lVT)hhjIz>iuT*j7vBg{I+*;8#6W7CNK5
zIitjAh})b3EwfU@IBhpu+q>D;-p$CY6#XB9)q`w(mSyWyvxqXvUH$8Q77-a#(<Amq
zs{VC54553E7>1D6LokHzx(kM|vU_Lp^@ZI`4nv*1N`~*o`g9r!UDF=%rLvotIsuJ9
zDM4n_1f5(!7tl%X)Q(ojoqM>0-yGZlW|PxTZ)YmEOEFU!D2b_@DT%3|BdO!5^bnLi
zi+fV4b`o#Xm+d7*I4CK%2%URZ9k;w{8~<KFEqh^&`gzq@!*^a)*J?0UbbV!AJE+l1
z4jQbgq6eM|Efq}Y7}4_}{+|AL9joB}ho#ENrapzcDEc>bVo<?n06@BfX~eZc3eE(Q
z)hh+_dOvcAptb-T?cKpQ7uK?1N6_lu!c8;kC99h)>gCQfBkDy8UQqWtaqX{uv9q*G
zde~XUE{mo0{k{5M|4Tdr-q|fis#+Gbe#)=$?dxLOpJBD%U2j-X2T4>~XxxdlljYs<
zpL;0wb3W^HPuIt{KP5G${moYUKey9<V{H3dt@fAKTX1$A3H*lcvExsU5=q}%3^H%m
z?}WeFy7&ox9Xr8$tO<_U8{fVmC8qsVR{Qh!9wk7Q?TYW<rq~X~TOEA5C%*k#vF)c=
z?VoC={oi8S-(<DFqn-8@vF%H(_WA9!-`gdoz1M2r-D+<dxIJQTr0OppVBT}yA!bNZ
z4)FP<7Z1dD_i0zd=&WhqMZlKLW4lqxbRzNC8VfYoDRgSGokDwA6xyu+P89lg{U|AD
z@*bhKB(T~d=|u<Ifw4YfKet<w2#vbvr(u1*wfg^I@7?30D6&7$o|z;}9!$?bz^JH$
z@(9W!k%!@FLS7RL808@fnuKIRA|Z*%1cIVO^N<+OxW3q3b{BWm#a&c>tBVK#V?dn0
zs6i1>@VBhG$SS)cvY03;;sYd;>H9rZ)jd6vo($~Id;hxgN#}G`ojP^u)TvXas;jG4
z>Ux^xzvcP6PQO3n=ebwE%X9o^C^zy8t|gH_F)eAFdW88qeL7$LO5cbZ0_J`*qWyEv
zuQa~*1bCJ=8F`jB8F`jB8P$-quk#l6-mR<X9eGPcEUj9uVhi$~yJ)$Rb|XwV+Qv5r
zPKlNqQ;xC8e`6A0BMq&`dMf(h*r2Jy*%&c(*cBtD4u1;i7#;o$^O45(x;WMwOz*IV
zN~*8wncT9QJuns@+w^<_2_?S`89lml=ci_1kE4BoD`QPf9y@;;#^*!#f+|~_G`&O5
z<vaTdGz?(V*#5!XSo7LD=7Xkb+4}mQHp-3HBS-yD&&o}gl3$Yc8E?V#(_MT%b?3j;
zWs$`14Ek&5u~R%lztg<QXK46;JjJ}o&_;!$z4e0uTIUPG-faJoll|^rD%t8E*pokx
zos!plC_Xj+FSbmyeo??O(X{uuqx4U5YX9e7=iMg`p73X}{2yijPk$Cr^toiI{w$#A
z|9U$0o1<)TLQ!aCV?&g-q`B7`u%ubLHA26n*_p`QQ|N#D5&ncGaFOdzM|ktZ9pv(#
zb2xAnyCaINVt2lN<Y%xdmv{QRUN7^b3&h&S>hJjwMViSXdphtZPMxPs|N4{j%&_D$
zom+k&Qs<Vx63N{1fDhWnc5v3;{f=vU<j1PEH;F~77e&gKAE_yCiyrbzk@9yf<)m1q
zT_sXp)>2LjYHpG88!cs-m<L`bQW~_Bu_8~hNGa1&azx4nBISB5CI9q!itC@Ba#H(G
zaZ(W)seYoGe-SBP{8LSt{2!jOPNW>rQWT*H_lT4&T1xTvV*N{`tk+VyzWaGP-0wwG
znnekdv=VlRS!c($JjJP{$UmH?xIX&VIrWGGCykVUo0umTa6X#uM_7xzPDGA8%>BE&
z4)OT0--_|z_CtI~r}d%(5&HF_ha&W&`ehOR)s-JL(f<6S`X7JLb+mnET}OM#+_R&-
z{~uN6+m8JlmPs`WolpE6?vv%PwmdYQEe~y=kA83cR9hQpqwq%2S2ldZ_2|$+m5KTP
z@eA7We~@X?F+Uyixn=48>}RO|YU=fTeA;gg7@y{DwFZn&tB-LRtpA$J;DdjtGPwQU
zKLaDr{fm>I%E>o1qhUI$PzLkqI~QV5Ws8!XHy+ir&ofnMp6AM7tvhwbs2|dp$?3g!
zMx{qz>fmuBK2zf^`|O-L`)>{z6>`5Wmb<OX(sT&Am5~+yIj8B^7-5eu|B6fgmJdV$
zUvBK_9GV644<|VCC>6Q$t?z#xRoy5S${rCV?0a7=;nLIRt;7q|#i7or-=34qAO6VS
z{Ap_Qj}C7BB%!R|e93tnuJL$Lx7yrs$JFLFAJaWg4f^mw6PsyFv&xP9Jh}0n!hjbB
zX71(g*nL22O<zg-{aYJ|(nS6SOdKK2-_N#77t-l^w01hVVI6zSa*{tR72g`jOnw`L
z)q_?EagW4ys<Br(lHcnzy~oZE9sgAUW5IutR>z(_>{WyQ>Sqyj?|+N^zr=>)?~IL)
zS{rBsNW<Nd6_RavgaUHYwKNxE31aWLOB~VI@(6|a4t5k?T@YA*R<fsAt(ul;1It7^
zJNT}SBK7>qwU4mRGOvA+<8P<USsjmmP7URW6J$D%`?QY$vQOLcz4;9<M6d_?t5*68
zdV+CxKXE5FE@WRc9Dg7`fX8Qd^EUdoc$4n!clab_G`*kDxi|2A=iv5V&)Oez*LX8;
z|3KO^1#Nn{qILF4%0c@l^g19vq#p3N`Bm{KnoBuA7g|kR7t#V1K%BpA)lLs((q!j{
zp8A`3U+lBng7x9$x6VZ$On(c~hZvncj5$YrD7`H}9#h{sUwxqW<=*CUq3^`AP9!(J
z%Qj<=kGoC3J&kY=@8Y<F`5BHn8G0@x`DL=h%enCAfSAtL_!+haN;mjFOzENpnJ?Rg
z#_bK6<C|kF$A_w#UgtY^-8{f+H15^_dG!_5xl!omC~i-heors>O~pUGKB6dI-}_m8
z#|799RWr2OTlKc%t#{S;;?_RFEA}$4*z2rf19`>zsiJr~==@;q?K%41!Vjp1`Bo~6
zm&w{j<*{S(n@j_43Tm92dN*`&dS(;e_3zi`<p+LWKHxn*!-mTGjMe82wLbTSu<x~1
zr1o-Sv(T>RS$Fm<rhD@?-ZbKz)qvjmwPe^^)o;WY^wy01T;J*Q&>i>hWBs$ipnvw(
z+d}s#-CKUzdn@Drc1utjQLWbRWHr1$sCniF_Z|A6MQ4)koB~5R|NGNGyWQcp+m|b$
zdeO6=2K1sY8%sji-}BRVn_h+f@lLP$KJ3$T)pz}Qu;NY7l-8(*GZxQy_NeqJMm4f&
z0Ue3T4@k+js_#*y7`%7BHZuPv+7$Ic&##WNW31Q-R%;_C-o&@i+Hs#G?h{<CSyp-*
zw7Mb1)S4IJS%kzd=d)uG`RgiK^a5y#(R=z0ud^4G<;F)Oet_BgN4ak_TVdx`krvVU
zZ`?YkYVVyjd|_%hYg+!etMyj9Yx1oLa^nh<zCY%+UPWJ4eC(4hSi-xkIW2oST5x~e
zTF+D|myQ*<i|s7DTN>;s2Dg#71aRB=51-af;~$$J@HXeE*F^vGF$UFl)QR^#Z*nV1
zOS0_MXx)CTdz8VRi%?SEK)G}-;qUR!T$^cfHGFN#nRv2#_?Ii%#5qQz{O1^%OuBQ7
zfL6oKF=~0I;pis~U!>Kay>R(H?F^%T>CZ4apg+UtO`|i6sL;QN{z+Bi-;EmUYMpIO
zew!+G53g9`YjnUw!<$^<P3wH(n|+>Du9nZfw6SrMQX3{qo^nBeF+?;bF&ef1?p(pY
zzY}?UUZ5lj_1}*`x^z=udRjMo5$et$0ba@Wm>$b$UFwvZl1*%%yQ?+R%4)*)kG4Ke
zjYK{W9p#UBU9<7s-)Q9*=LPOKKiv^6+@iPXttb%mr#93@nB>L<JY(ZLj{eaOj{Ykz
zKgjQFI}bm=vU4r1t>{cMvG*BsTd!dAp~GDYJ3Idk%5u}oJj+c)qP56M81Dl^SaaYU
zCp765@gAKhsZEsR^y*rtk-x?{zH@GHy^=YjP4u3A=LvT7=d6`mNf=FUXULfy+%;*v
zJHa*aZoAy{YM`ELRry0^(^sBlqKmR8Tz(|pTYtgMh8sV(2L~@~=L}bN@e2Iybso;|
z;*##1&z+K?b2<Jhj^9LITk4!7GW|+qx{{X?)uWUgQA#wcV%AF4m7}y<dFH06B!iB#
zhTrpc!OrjHc77|<ln3op{r<UYQ%h&IG_xf7PRML4|4ztkJO2d0>;ypA#Mw?jCm?+y
zAQ6y05s(C!0+<4r3Yf|cKxxTCVf3xZygb19fOIfQK~C#$+gT}j1vwKB$&D|W=uP)#
zHgK@78Ln;KAnp@!-zM&ppkJ+H8+?7_#sReS<%{M=J~#L*{1fC2zNj4CiH&=jQ~b9s
z|81WCcE10%z<*onzpc{x(<xH$<{hlOKAvbQozA11=4!36((Cm$dL(nY<Ep=~0lyN_
zc8b0<t+irh(^s|88LbNvGMhfG?MqlgUu0N0ZD|d!v7tbSWcfAd)f>5;h(yb4Z-zEZ
zj*uHKl37CE*#VY9y#I`m$YnJCjjztrJu^Dp5yN_!=YXr_-xTcP`^gdWn%XRD(@Qbz
z=d?6asN<r4cPS!eW-HT<+=*|>P3&A06dB^Y7k2JWZcDrC^|xl7*hPP?5r<qm&sbdY
z3wvA>-;mc_4+1UUx>^n;zsKG=`*H}$^WIN0$^10@WNP?Gp?4tIc`Oa>r8yJZJrA{7
z8#+x5KSeM9Pfm-H^Zw^)r}sQShg7xv<k^jp^UMEjV`uw(*{s=He(Fz+e|+^t%1!q(
zLr`PYy414Gyi0ANj#w7>eHh-l{kZUE3dFUX0&C$5$j;DP*i3j0cO^nu{>rjmhu)Iz
zbgdm{%4vC!zuChS$~Ey@Ou6Fdg`*4WyGF^44N(|LyGF~6AA$YGkL8x9X`j;}vFN*v
zHXVJ!B--%#$<%t~h^Jr6M`GvGqi@hjvpbKP<t_0J+S=9ld|!Hb2Yut|9{J?Pdnv9*
z-p<?miuZ=7lB;<on<kSH`9rrjPj<W5fBFkHT#X+zE6Cd=r02KroEy4Hj@|5WG*`3l
zX)p2<>M=|r@)L@@50MR%t#Tvn!lT$<iirT7P}}xpR$A+W^nQKvdvvr)T5IzV9%u*m
z$v+bQv%+Bh<Q0Toispp!1fe4|e((~Xqeo_T_Fna}l}$g^+Ch*%_-khCM|MI=5cxK;
zFB^=%dS<W%-t$*B<X_R*%rWdU1A5rTzw-RI`^$a$Ta>%bs}qRj8`_8H4HU@NwBhXz
zJ=$T~gq0tJwud5T@Uw2oQ07c-=JTZY`Oe%3KIJ24o$zy79^at0(jJMPgLVvs%sQ?5
zf*NR7-j7{@1yxWae0QbQq8kPIK1{X;CUVKF09%yY-sxfER%C2mpgXgGy`z(6nlifO
z4TuJ_<z)8m!F?Ef(#WbxYiBpPTK2LxV?U+|N6Sa6=M0(J@=;57!_hAI>?u?>U>xJ&
zi@~@}5K-)NfWV&C@)1Ju4B_Y}u8BJlvI?9*1i8Kf^V-!5hfI+h6C#D)!_mA}Zv3r<
z-HpV!Vxc1)-UF5TvkTyFMN*%-Rc@q1y@4?aJ;_4fH^BWBaw8psowoKy_AXhoi4(yz
z_q3Vap}v`s41vFccZ5fO1$z_4?!NXo@&B9Jq4JhI{sP_!t9Su#WFK+<K<ne|-L&^=
z`;sWA7AoH{@OazP=!Nk|-^j3{uyve1Ou-I|_TANqJ9*vV2|*^AjqlOhH&z}eul_5Y
z$8T!Sow!?vWhWFn#w;~11Hvc56d$LR155LunLQP6Y8Dmd?mB;$7<gP}M<J(3)=^M8
z@l5SZ&(bT*>V(;Jz%_BVr%2vn2Sy8$+!16X=bJLt7M)J3_nPG9*%mUDsM`#7(^qax
zV>hVx^<?<!Oep7gtT=o>Gx=EklmvSDbr&ehO&42)+*+X!u@C^R_*M^U+435#I77?n
z?Kj5#9(G`@xNY>`s>eG=@AeE7_>v!=ei^OhL*mJej1}lSvUo@W9a1vbIFl%Zeqb&I
zjKz6IhDFsCKzl|)Focv?T?%~)py4!ge^rdmn$x0xjza%zDxi1kR+uq8n}<8rjx7h+
zXG`l>4w-_Ul8!c`TVPmJt4?2)$UG}&enIa&qG4O|X&9K^t)DOQ?vTaxguQ=#qo%F#
zCZSJFNoHy~*f61b>`-J?-zRakYP#3UCP=Jk9+mk;=Lzxs8m?P<Jrt_mLgQCP%li$V
z9jWhvk^aFXIy!%<I|T}o+42Em(i)DPfy$kf8?UAg-SUsL9b&)R$+Y_JBN+BuK2UK;
zzcS@5$8vTaGiS+LhM+rp(Jg*W+o$TisM^D^1|-n`O>Akxh)n0NOe*KC3x^Ei{bS-z
zIO(P|rrL7GM_PAn0S2(*5l82qWXu_ofT(zgum!iBzw>JAN}{3Kc|&!+s=impO)v_`
zK<AU2zB<cWdZcHWyakrBzH5P}yuRyJ&tk+*H7~omzUxZQ0^CnCFB?|hHO+H9p<T<U
z*LS7L8E55;FTNaD(#DSyICxel5qlYr2v3rm{=z4?@PuMiU26O?M)XfVb|;<W;6Kl;
zj^3a7iO!tw#J@I#o8-nz*|)&orsw&;;pf!z5fG{Ma^p(Y#P35TM58yw`qWb(Te`Tu
zXbREP4`~oWftk1AhtX;qzDsvI*z38MNop&@%Kw#Pz!LpAnrct)o<*~E-OgM47+Tv)
zJ{!t7Q{M%@>rHvf$F7~9nPHpI*)~}@c7zUFZfr(uP>!{Oe#0cP#Hzh-pV@LC4Q^su
z{TURyS&IOTGe`J&H#`FRb>^hpG=`>xY%5e}UlJ>qUsEZIX0+eu>o!bsO&3Hn^J`u^
zo8IPFeqCnE-@g2ipHD*VaQ_|jeq`ZKy7uAcZH}eygRoLYoF%g|-;DOiSerf{T)>7`
z{=`18-np2j;QXQBD)!1v^AU+&O%u})@mk~K6q(k-j;|FCk3Ve#PopVQXZm-%thKZG
z<^p=w-1)y}m?ax6H?3js4<>Q_;G0)Ft^Q)qzr6S9%<?Tan35IP#-!79D$cyRObpR+
zm^)+clKDnjOI95`Olqly4s*kqKFi1qQ;@y!!+lS5#?>)oVp?CLl(q5KPCT%R@F+2l
znzZ%7HLTaZT}#nx)a(uS)X_oy#HYen6%+iX-+v}Svv%Iho@VuQ0?+iE)-3VJd|s;D
z{F-)<(>&L1=^K$Kg4+XwuZso}OC(Hd_I}ICuk#lgGzu9Hqip2)iQYh{qun1D(5o|-
z(3ct3KD3pI{Ry@jvG!%I5U-Phcf7J+><44I!e*qMQ@;`GAJ22wo8D^3Xic}WFUvHV
znQ+-+nZiVvXi~q>aJpmCyPVuMwwI`xpZeF_;jbX;@r|FHWV;9S9~&anj$iNVVo#DD
z+1C}6z4k!opH4CjF=Kf1T!fL$Gk{qgK2?kH^hs9Ww$+YIRyu$BUYv)>kH!Z@a?d(`
z^S@n6D;<G#DZN>zP6+>pw%dKgG*~QuIw+0yB0Wk+>Cr>^`Y9$l=ETgWdwc^E?VC+&
zIVARNb0cA#6+YB2O!}<1pHEggPzU^(8Gmf8_L7#5Hd{jS%Dgla^U^whWZws1x(}UR
z)v2&$#yRw14)#%wl|zy`KHSS5Ckz$6vorcT-ujjMcvF7Mw)|(gI!APC9~<aA%yz9G
z68k_!4F&}AvNocL4Nz0a_)Vgn#b?`D2G3wrAW~GIXC^bx^ei7m<;G+%)cCP*IM}x1
zulUN};I!bm<XwN{8aw&x9?R}+f9A94dE`c2%-?T5uNu$;&GW0lMzsc&r>F+<YWk>r
z{R-1jPYfR(=u3kzr}ecbxdDx$=hh#w5<=1z3^l2=`wQAdf_CjwjN(R4ahbwOI4U>2
zqHP{o;#1>p*WxZz`1ob6_uNkZ<)#?)AvWY<Sk;;$5|Qu(xy#gYg0!pUz3tq79>usx
z%6*W>zGy)dq)L9^n{;Z%(KE>(vvra;X|V2m;X6NlO;AsN$LQA$WHXPZW?Ir%>VJ+$
zPG7@+P)>I{|0?S_x&=r1A-utEfoGtxOMo2p{19F$iDiLn>th67jPyGdM`_Wm2L(0)
z@9{A+jDkP*iF$syaXZ(G1g-71oMP3LTOK(@#Q*Ec9rK-U<=As6f92|WR?Z!|ax=8b
zE%8^5*QxU}j9v6X#IkSrSuYg?;mwtN!_~BjPD_BBc0;$igJ}$Tt}TD-OgYV{BCS)U
z+W9vh_nb$GS;~KCo#*RQOn-q`c~;fmFT8r6xN{%-0E+rt-|lK<gPp7OMK<)Q>lm(y
zr#&nAA(vzs9^_H3)<<X*tci9_JSgAy3Pq0axmvdKQ8Ral)ivUjtM#q|SIa?H3qwT?
zHo%TJrOciWQ_4O@XLXqxSYlIq?KOK?A#5ya*k#{rS|HBN<wdzBv-}==!*-_Tt`?uC
zl|LujWfy12s`&hYP2YQ_(bHa%-=6dYg&oy@oz>Mc+fG>)XzSG@PIXxK(8Eo^C$E3&
zc9KTtP=$RxRR6sM@nC~Lz;0MIAF8p!N=L@lGq!#}<>FnfFEe5jnI9oHenZ~Q#6Q#E
zE;k%SpmjSP2TI?F>oBp>R`asgaZzpHVwUfl#WEh08y}An4})BjIhp41efXiuA4gD@
zR?amS=fs_IQzVc(UysoIcKJT~=p4O4bAK6q!kE_7nzJL=w721`nJwwakL|>4uzfn*
zg=qYXFzq~IHNDaDVatJgKbO3cbgv>Ers_Nz#qJN${YY@Q_Qum`>=hY$W#@@E8qV}h
zl^@$Z_!O<sEHu+x=pC1dH;d`-4QE!lS{S=>b2}2JDzxHs|1q<_=IjXjR=RE3xwA8>
zp)+-Lj7V!Za&1F<y$)lw+10?dNSJyGp)ngmXno`WYv#SKmfgf((<yc~w}TdfUN?&e
zwWsKC)GcBeX>FU7s3`ZIWsEhCj3OQtJ9r!%Mdw<b4ytA607ZXZOM}<EDw!O#--|O%
zY2AqTpxo9!w=?hu;&A4O6VR2vA%p3jTWFitWXxvxHzL33_{UD}S@dBiSB-y1pZ1DK
zdn|$%=NSZyKTp=4fqc{Pgus{;NyqXY5dEt2QCdldHZ?p;HzQ8vw0zJJw~KVYf$3ih
z+bfc5I)XcrZRZ32^Ez8!WH#VOx$y&&eyfT}?9bRuI>j4;^~0^ACtJ18aI5=!d=|NR
z8R`NJn`1KLzbD$f^QhHys^#Fl$C;Y>n3^>mLj8s+sMEbi>3`ZQWQcbjiCNodrwZ|P
z#<h7z8qVIftaK_ro#;6ewI6+$<KDCRA5#0RLLJbePKxQijAEAZ7>Tv9A|qx2`y#V2
z98*_7lr8BA+;$|lyISsIW}}nsC(Jdq9%4dzTWE1lrCn|AEY-drkM4zu=RE(p@*I6C
zy+0J7=<@ya#gm<#aSfeLP2GERg-@?-*jeBCm4AIj+o}J7MYmIbp4hg}-WK>LnJw<b
zF%jlY+$}eZqprbDHl`;@<z}jB=kK~Sx;s1jHFVlTF%l;jnXT2U^$|wvJ<nF?h7jb9
z6MI--5@os_MSa@M=N}NH5UG$SdnTaUFGc%nf8u`WMfCijz4MuX{S8`aNm^+w^yHYA
zq(APQo%gMcWsPxshoQ*5uoqs(>%On8iMWWSD+iO?8;<sAIDRIz-gi>YcthT@!qjrM
z;b?pPS$Gh?l+<Gq2kE}oF~!m1Yv5m6kelviDjn7E`L(WwH%z88xf9>0J)FkQgrKjl
z!dNbgNn<BNlpx4#C5y1gjdNLqA|fK>#*8j~g^E%_SEyKhzEjfXvIw=0TzZWrzq=s6
zbStSo8!fFm`H7cs*{hVDe_`KA+0LJ%Z)YZhz6zSt@RpgI9SiI6j3sk!3$uQmwx9HD
zuD>QUo3vO+@|HWF^69CX4XAECqo?})1Or_F#U(lsZSyJYx5_o~fZUwRo+3^C=LD)s
zx;=m;ZUZ_;cQGa`ev2xYu&7LoJ)^fH6DJtkk>h9etX|iH)rNMnV0Q;$Hux}7-{2)t
zh=W`BSbOBM&b92(Xx}pv*dX!C@r>ZHOQChNU%8`d8*F=%GMk-i--ivb*V|omF7?OM
z`?Kq)8~hJ5=Qp`rt;<tf6HmEXZpw4DEO*I`51Yi3w_<ifUs9^Vh_{FKJHbtOJ5}DI
zd^sw|bTYRk-PN*pXNPtA>Im42^s3cyDFiS&pdz!Y*e8%C*W`IJ<SkKr)vpm#wY@9e
z)Lzb=?LS23IMuM_jm#uWS}{F3lSUtz`DM$_w9OF>pZ5839H_y0goctUX(zMr7#HLK
zCP;qv>s{6bAkM|r@abi)wOJ-GO8P5rN!s~o6di8UaQs@+xAfJy6ZihatTCz~H;<*E
zqm!DKs?@KcBT=nY%R4*2h*=$<0%r!HonKfRz8Ern^&G32RXI1sEb1IVb?)rLtV?<d
zsOAx6+|LKB!X-{3XAH6>l}}~%wHW3!uS!t<&K^bw<rjGbK%<Xktv!AqZ}gl?(CEXc
z(eK*YMLH4BlTVLh$+46?l#&<n<R4i4_(MGTvq4B6LdjE++{RtoT~_+OU4DL9g(pAX
zS?%`JR#&)-ofVZ8qY&jx^sK0IJBN<GIw`4U#Av5;PN~~jxTvhW%(KGjsTBCm!U|_u
zMUAJhqR8#6EO8b(YdqCuMIL8O?V_Uc!kQY2Bx+?f&SG~}wY#X$<1QYFY{kx{g)5wk
z+#s~Hav91k12JbwEvUMk%iPs9WtA0_Id6rhw6bC}_#8TVTum^e6c@;;Bz`#+9(Oeg
z#D8Z|X<@};HyH4^i%`6Cl+#lRhL%<q*Ot4TMW{n%MLA=pyt1&E@q!vwR=DX#qf$jz
zb!Cyere?Gx6&043msKow4!zM?Q(9SDUhFI_T;}$37bKYJg*EQXx*~U#2lW~W-aW`k
zd{!5h)wm})-D;YXi*0FbjfWU243K016<$y0^3pO^3C>QT5SX)a(e0?LB+Z(en+vXL
zYRf&&<z+~!^*G(t)s@vG@Vph*Gqn74WaspT)+CN_E(Uu`k)x~%q?Z+z*Sc$*CCIYG
zy<&M~H7ZxVxOS-<%{qMO+~Fc06F>3_9Dfx^BPtfxNI~==pxO#|T@`PVkd)Cn!#&QT
z$_nU&$64WCT<9rVCYT~UtSP(GosW9Xttebn&SJ_c$~<L-<%oAyl@%>vVj<>-G8WW~
zmCkaM#WJYGSzeFeb2zWia3M%iU}`k9Mom$5S(S%M6Z}zpNg1&$vM}{w3Q+8>8$}#4
zm2xk3S4%4jmzIytXaCdl3ae|})uZ#P2<Af=o_zN*H)lbIH?y#M$>^fW^4g^pqx16@
zyU|?(($h1SmU%oxD8I(-fzEl{`9(|%fM|?Y?Jlk@(qT!4d>N24#_LJW2(PHrU9?24
zVaRk(<q~&=aXCemORFj&sp85arX*C(Ox}ryGt}Yegf-5>@@jWsG4*FR+5lOqp<$z)
zH@Zius!>zOx|-IeRRV|F6J?-7dCHdh&CpQR`GmPZD<`v7F0OR*{7VZxMWxQ_+KQk|
zQm`B}`Mdc|KI@2F-$)~u7FMiKyBjp9wxX)AXo)jX>m)<(EY|GX@L8}=b71(wXeb0y
z=<!r1j+o>mShlFv<91dQg3-YKsnXT)o1b5`qAnj?P%m=llNvIW$Y(mC_Gh)<dkU9;
z?V+PnYKTuK8mf$hTv)F4X$TI+ni3bI3s;Odhw^&%14E?@p}(rW)WA9xR_9k#7P}4T
z87OZEdQ5epp!uqC#jnDRhFMyPLCb?thE<)lAgip_h#~X<qeE$>U@UaG)Z=T=M39Le
z(~uspx#jaCmRF+kU<nC}nD#<*tKB8;YBxrvVzhq=@s9DOY;lF!r^3lI48Ob!2gxa<
z-3#aiVcOAsM=i0fXP`IyrG-^hkXuN8HMwy<iDPb^^7EM^Pz`P1H;5^LRY171x@>V-
z1;W&<g^MW))!><`3O%I=qX%+Z0fq~!i%RpU4X7{FNUY=0(5Cj*Vs}Xy+y#jS9yVgI
zQG!ydQQ0!+CgXSv=eP*NCwfrLq@gebx_I;(eZ@#&gc%AEoi94Qku=CSg;K-dE);0G
zL#0+1F6V6>DiIyDBD97WrUYkUof%`jTN@&S6WM62r3$a4vbMU&E$K%lgTkuZ?p{)f
z9#7N{V4=u_OeHcs5>=DusTM331+V~TuBz6P55rSj4kaC0JbGv`R76@-TL$M1`X-E;
z7@MG?Y6{5FVCeJ{liYQMMV|5%l93q}UJf5j`S3Axw&baWe<)>Y!_(;G2{j{`bH_&o
zL-i^uuMBEZHKno&l`r%-%iV=F9=cgtS>rM8u=&J%2=7KSg2ui|&zwTYJrl|*^wKpb
zODZm_Axk6m97V$UVw@i-*tQ3;B{8LyNUtUC0itb7V7;ZPN;Ws)1S-m^s@$6C4*2cO
z@+uo~ZNSxzYcsBRmsgpBYe%+Mi2&RWSkU5C_BMHyZ*Z-~ebQ>L@>H8wc@&oi*A84C
z;ClNPUS&J3Jlr1v?8N2W;8jlGI*e;St{u2G{no1-dmZt+kq#KK)2kG}<yF?a4Vrtw
z!w#?V(rdtZ$E(cQg>wJqRX)VE57%e7UdQ$8cfCse$ZjQXShrG-YcsARxU9pwl_Xqw
zxT<ii#??NgTiF0;P3%?<0M_G5#eE*G{a1A>FX1Z2{RzN@xc-gn<K%8-)tGK&8Lp+c
zig7K#btA4ETvKr+;~I)<C-7efekZQ}S0fGAVq6d7+K%f#xcZIlRwm<GxW8Ljk89BX
zb}Jcw>sGu6z{7jpO8Lj#O56wCO71_pl}#UlmqXpk$d7P;7-<K)l{v={_b<eKg76W<
ze+vB1x|KEm0R+A0I=hwmxN>o&;%fc8TX_=j(d&Im?kt~T$JGayZ>CTA0oMs!4M@vC
zTp6whalMG^5H3|eYTV@|qnVj4=2pxp`Z_#AF)>2druj_Z%#uy1)cKX6=J8)iWi96V
z#jq4*H1~IMmuE62Ox18dD~pP1tC=ejD!=CZVkXS`iBt9dX#(phW&W$XaA~Ogg~Gpe
zf?ba3WZgPoi0$Q<Q$gMYhHvton1QdUUCIVw=dv1SQr*~+!g1plO>j<iCi0#+(#bpO
zNIv}=>7>p(lG)6WPSI;eXl}fer%q8Z!vKG^knB?T(nT1i;mKoKf%yz;A~9vqymrV1
z5-o$lX4P=lkc?=8?@TSMg(JhQcjBDtTK5QjeKhOHoD6lUM5dR^!Be={Sp^5NtWLiM
z;h!Q<I=6_%>6l+Qd7BqPi%L<9ezvA-4?YnG4{8e=@kfg2=Z)oO`eR%+{ieg&S~6QW
zinBe1)t)(gLMeW{*pS(!tn$j`y=3R~XL85VD4o|G7kBI+;j+RSDUg0I*_nJpa~CWh
zHkbzJuammP<wI*O=ZfbXTC6H0ZiDKVSy3EZyq-U!WU01dNk!#y^gK#&(#o4;n9glU
z&vXMPG~ic6Tw^TG_f!`axfijyll~XbHkr$GGZy~K5ZY!a+~9PB{55V^z2eY@$#9aY
z`{~=(fV@;u=~TONz`RHO6}xMS+!e*}Cu%CoA*kT=+02H8s$D?3QSp+l?G4j!q*dA)
zH(9AnBmPwR87fC$x*`2^OoN!2t2Cw`YJTreC;2n0={6z&`SNL{5N}xpdVE>2(8r-Q
zLFiIpkho`S{fkrg_XS=Z*8ejrJk=}aXwJHB7A8%pttcykCnvh@G_@SnUen@9wMT6y
zzZA8wkQ((vT`^Jy2C5=j`V`?bbumW>L0dn90nt}7)cQtYISR-Z%(8Z2b7rkkL_M`e
z4wx@#?Vt{by81zyl&<R8EHU?<O>Tuwr-TQsg{%E~$N1CFVd+=o*Bcg|vS@`zFXY*5
zjmNK&JnUD&8{IUI_iIeB262DfAD-!6T3Nk97v_4PR!2%><B-2R-9(E0STpA@)y#w6
zZtL}U8C#{JM&V(;P*3U13@(CBi2NngTs58*<-#D%qj5~v16f$tA$a{YcBM2LhjjQX
ztm~n*o{~|?6Go}z)$k%Utm%=vj_DBR*S`{o=B<P>6^iOhH>b_a)%Q<Ys?>*d{XE|<
z5C3?9sV37WNyA?pfUoMCnogZ~sm>Tf_bQ8Zql;J*(#*x2!o>mh>pJ&}fUq{j6F*fK
zYq%au!eD6gFk#dsbz)arRZOB`!(@%*_fa)D=1bK~B_%$RNZe{6ojgT0Jul{~N_^5y
zF~viZ#uiJ=lGOxF2f14$Ew3&^q07sPJ*C{!VeObAamA^kg=&fBnKjbVvI^iYExeuC
zNSb7Fdzqilo;HcuD)H-qZ;2qYE5tHe#6tYi!ZI=^Y;HP*R>!9C`W2TI5k4t^#D+)Y
zr1%Q=azyuykz%C2(wwwxX_~ZBx?CDAN!LnAqpu!4UMj3A8(pLdVlaoJrcs&NB%Jx~
z5|!ph(3)CpgTdlv)HEg!Ei+#((Ism+!6Nt;7IxG$o*_7vyTwATnpc}dXp{JIO!eZC
zS0^Q1JqgWi6zjgjAa-eCmDJ0x{yCrWi~r)XKhLjvabNJJPkG=CpRx|H1F-H59wyjZ
z`NXXDz$G6>kask`uv%4E)?)xam;Bm7E?Q@4ulU7UVIk91Vj<I+B{Zf_qfB*WrN_TS
z+%sLjdK{cy>@IhE0$jwvbpNx+fOP&Kp=ah$@>Atavg3Js5<Zvwd{8<s3M{|YUgyt1
zVE*t7aD4v2#t4t4vq{ytF%sAw|0Vxg{___guMac-|4s7+<Ug0v89sjiW2j$T|HSi0
zdYGs4F$~lFE~0TdA8bPB7vosS^dQHfM|#je-XmQY^^o+%8aW#>dP!I3q5<g!5)4Q;
zXatrn9&8z~-y@w5Xi~`hd<|OVK2*AYCaq65QUHCrp8dpt!LEkunseANXHYzJc!YE1
zN~baY)Tu`JRIX|QoYS01L{{xmqoy%`WHirzl~co;GPMVer?N^i%(p<zH7fbm(QG#m
z7$FBFe|F{#b2De9XXekkJ|mO(pb;k=4-6+n`NEWjBcY;&pdy8+hsf5W8Z*=K@^WTn
zYqgN1CGHjBcp#LJ<@0s0Fcdga2pW9j5%Y)n&Z8Rg+1*quoKxBn#W%)O6l+U-&f$}W
z_smEBVR4xu`d}5EG*-iQYWmfa*dm&@I>ngZBekj=POF-#F4Y-u7f@UX=7^EGH|F#x
zq{68><2@7DVqkC)chpuAy-+;+E2}chSJ<?8wzeF|B(014t2J%7I&Fb_Eq*<U8A^(#
zD@^=&neIA_Kug`_E1cz(w00}@xKz~AN;ShXmQhbcqt@4#D%Oq>y@>YhRTmb~QrYrS
zH|<j3TdFENeEUvKRbf$&6=dW5p3*{(b6HtsIp$<FdLlg<V<=`OdVT`xh30m;!F!dP
zRtP=x$W2}A2GOF*YRX2>FUjIN=g!F*mC_5Ir@FALJQ&efj)mn_rG<;!p0Xl(jsa=9
zt8uH<PYR&#mk{phsSC2eJ{FeKW1J+>uEynHmdqZlAO~AL_B#hX+AUCPdv+$>V;aGP
zPM>smZdz?E(VpT2>Npp+zM{r_m%8hU-9=?fQAeR_oQ}HsH&-mm`87hNthzR#ELKo2
z>&ZWDL-jWg7|^#$D1M8}7MC$84<9`|FhkFN8K{uP^pFdRP5nXYwSE0~!A&geraJnf
z;i}8fRSMDVhzwgU<hyj)-r1tc3J;8eq>YEL`saY{#~0h&!sZB)2R(Hp<3^h$ogUqS
z4R4pA9xonc^5Kjvj`mox4)CXFPe}kh|8vV=yU-&&$b72$r+a$HF#?{3g=(iMTJK@J
zPYZ=t!IYY0rBVzrkd7SAwC&d6f%e~T_jvmkRhE}i1u83g=WqC^;X(bn_j2zZ9;Uv$
z`;QW}9X!}zp(F&$Y<eD?M60F7DJ(MhA)WuBrZFXLiNTl!b%nyXZsZRcQdP56i9J+I
zKEI!*DD}90i|d6siZXJpqMV$qC>wC^1U!rQgqsv)(|q9F3_M)F$2ACXlW<ML^(3x;
z;(8D`A0zF~8x`e-d5RLO?|gR^b4r}L=c3~2zk6wwX9as687l26DP;c`JVlx&T`3Kd
zE|*qH3#416k<wk#-O{yEK#vISG{Fy-dvKypq=ADy@Fp)Y__1|B&e5YsOROj<d2}+a
zt0m%A8Z~N^e|y2~IX7me%^Wp*PTGxg{IMC=r_Y_4Icv_S%vl*+f5r3XP$KCmP3oQG
zbh0r*jNJNBqK3VEU_kdAGm2k@yNo?;CqY!u?tZa;4pl2$%<XIqDpgie#{DFJ#naPr
z({3E;RA)+D1S6ed%Ap29GA%bJZMIroaBFZItF=du^mDCEPth|5sC>~xyeV`h5CaBv
zsuD8$0XW}RC`!h1MTz$)%Aq<%d8k%VhF2>}!wZU1fombIi*QB!Sy3VZzk6O${*7xt
zuHWLCgUk1vq8!EbF0SpkrU3U|z`p>WZzSRC=6o?9omlZnK1KRw`|H}HM?*g^q-P>}
z2+iDChU5vlG@akU>{2btUd*=DpnOT&*uq|KfTOOJV(5~xUr=cx(Qonm6e<>@ZP`0M
z95Ha+wI|np=Jd<NqzBcN0SzDI0|X4u0rrYNQ^^;PJlNVkNu1rNPtya|XG+RzYf2@_
zbg^af>L^K~*ZTIa>QbJ<{m7Osr8ruW?gm@~cm$Bn`MmjoF6AWPmeww1q)n3Y)^;g%
zfETxQDH{h$(iI1~lt-PCGzKu^N=Z8UewT9iDoMKPV3*Q9Qj+$3-lfEilBD%!ud*NI
zYyvz27-#V+Ucf<s_C6>da0uWOz!bn8fO9Au;Z>>t%K;k!*8r{qjEnRtI{^0s(x)NT
z^g({W+-R@j0vr_MRmuTZ#(I^fD88>(`5thS&8v*0^GjvG7=!_f>0ng5S6L5u0+7Cs
zyr!R5amJ$D{$8aNFfQJ!Yz7<zxC?O2K;(}Dyuhoh0o;Ef@&O(O>;T+!5$XrH@?zAl
zFX#?JeE=6;;#KMar(Eh)_5zk)=2fha=Nc#I0*<`gt3=2sZy3r2^bYqbTLD*&M!oDP
zXAJ5OI4H@hyaX7RjPd~20NNeMf3;Vc0+>72tE>hr9|yiDemvyV4|o&2iU;t-HOL1z
zB?aa6M?9bt@G#&Mz#S7IKfv{qAQ!-ulhJ;F3#Xu71h4ff^W(uE;7Y*tso;lTI`|j>
zx*1+&9N=NVa=<v+Zwa_Q8|6T6rd)@3z!QL;3y_}YRgM8}x&i44;CD9K9dO}oUgZ#A
z?o!C(LX-!%8gSu#hzE>YgLc0N^bUd!;Qo&wN5J)8d6oE!f&aBv$s^c}dJwdCD_+33
zq1{UEAjlE00C3@iZl#^V)4G+oOF-xTZe<PN;oo*EX8=c@?N(fuB5e05j}jc}Q|Qgp
z^;i3pb(f(YIX<NWusqMFj6;7I)aX+-0ZwW1DeZvk0nY$>0Y?r-e6vrP16U4N1-KHh
z5pX@=I=~%(n*hCl?SO;s_bDGxKEMu22XtPJ@M@n@4!8;MDZrI2KIIVL`n9mSS0MdC
zpE3w=KVS-A?n5XSa1&q^;Nf4OJiwKY_>`9b;~w=X2LRUqo&Y=nXdQy`9|Il0g@8$b
z>j5(W4+G8zjC&k>Q2G--rH#VB@+mt2r~Ddx1D3A`J)*M#<qriPPXZtC@bAGlg`f5*
zCjkfj(Wj&iLwF<T0uK6<PuWP}KSK_Hhc|%^#lPTF5-_fge9@=W18#cBr)&m{`>Rjc
z1(*wX2yo@gK83zUG4d6kQVe)v8_ENW+X21+*SzXe;zj`fHOLciKj1jP9j~LE0oUwA
zy8)K(MZI9(a`&Npz)k=5DN|tQ)_m?$)&LIb^eJ}OyYer6iVJYcS3bo9IPyEx1NLv^
zrHb+t;1nmuQ?iGH6{TP_${DICn*mo|1wVES_)CEw3%Gu&q8tPCPJ=I-1b)+j4>&R#
zbdspwD2g>1>F{Sy0G_x7{_NGjTZl0paOACuvIEe2o1&ZnEMJ8DV?noAQFak5Q4}xW
ziN%UCZXEE-6lE`<7w~()!%Gw;WjyLvt|%VB6TeiH!vuc~|6v07{jH+p0>=Fg`~vO=
z+zMF!B<KQq0h6wQy#A;tj{<sMLp<Qfc9fR_`g;{+Jz%^T*GzZbD4FW)ri<hHSldjJ
zL~rNPiNekmT}lCcHOgksvL(!rW0za&rE4#meC607ms37EnV5W=y<He*1T8wXcs{OO
zh%2Co44ZRhjLqtb<@hw#TfJRMw7{o0IuIlxD2~3BCF$ab?q(K+F_6=>n{NQ&>tb2j
zeq04!EzN0OfV8w&MvD%t+l9159eppZBZ#|1#5pM*bw7c)l@yU?vp1OUVMG?=e-8Lh
zMKqmd;p*;EUM8IBHv5C-Ok2WQ%XFJ_O+<z*u{kosmedfHZA&#*$Jmn6Y>8<$=X6^F
zFsIwBS+T4fI!SOBXtbNua<XknmP<@AHhY@QIwO{F)+4Pz3C0;AaIzQ<rFkW<@~+0O
zxeTn%iZ#!%(TPe>CFvM&Hk!Q3ErL$7Im4FFU?B;0#@G_lMUgq$eR`~vOYLulj{<*T
zkBQfFtvSb*u!izAQ#~6Zvuy?D6EU{Lbel6xt>5%mGuk>aOBY3QBR=TVkGzQU<Ad@&
zg?x4JGoFxo<XfcSrUm9B{XL9)?eMQ|2+W7pFuQCCX$+O{A}n-3XO~i>;pGq>YGt0S
z;?d#UBY`)hzDrpV*zTFs?%CAtY1HoK1xz4XgG&<SEk)i!<h@ms<#bJ!X(UVJwd9y=
zi5WV<iS~O6c@t3oxuV=PRF7uL+YnKMN@p|V8L?@MS%1F6$d`(Ij~V1M-=$@ouFpvM
z;v=9h=b6t1)Li7VM|qXsi8?++@_CT@#oCDJw!}45$L6RsTS`Np40Mj$Vr(fHtba_`
zi7O+P*^_mkRSci<U&O;=;vt=QNMk(AjCs?Rkg*&1`vdBo@#gOR1%%OTS!3pQ=?Lg}
zLFW;zE@^%`(__?}*|D>=dl2NBg!{}`VJi|NC25Y;tJyf37ED209^y*PA?lk!_06FA
zx@`3(%iZX?DQP`woE2-XMM74O1eh*qA+<lsnGb(jk<@agQ#qM|<uJLD(Q(;aGi-U;
zw)yF{f;3y{bX!%9Ej8Cr*sfTTQ3U1zXFz`n)nf+fe;VmO8Jjp$jM@WSvF0@hWU)YI
zta-l8`sQvIG~Pm|qLYkrLFZ(gUq%#HfVdNg+pCN7AZ{b(1G_{V*;JYj6=QBtuGt2a
z2i8g%f`wv@o#|wf#eH_HM0TC#H*J_tEDh}M**2$JBQYbE>%|%1egNF}G`-02>-c<4
z7qVh=wfnT#1)L1i7ixdvo#sZEvy9ekG)R=HRy-?4*rpl$W@c=5jHrniZ|aeMp~I_O
zO8Lzz1OaoVnvwd|Q^2|J?k<H+%$62u?Qhht(rl@gLX%NbOT3Ss1g!)2bSe9K)mhO;
z^DNJrL(rnSPr*$)c>kro?&dVkdQR*rwW_zNF}lhZAj?YRcVd3`o~38sM4{%#V{Fb0
zRr=S((!l1_`g(e7i9VPWTYzA?zYmi>QvXL8>oHgSQnS06fp$0BmS=uBCeZF?QmY5V
zq!T?lm^cZ}$dm-HvMQ>l{4zE9rE~dJSuDm~en#vp!+2M$Wx2^#HwV@t&9>S!-PVR{
z9qu>a+K6j2uC2J*O*ytIs$Y9F`L<qVM&P)TrqvIvXl{;SK1iCscz4jK&FV)!lpS;L
zk(d+bP``i#=EX3VMWW|)G+!@3+E;<LG=sNSn~9p<-(Z=sG`1EX&mhdLJ(_>An0bN)
z>_5Z|gHL^THSj#ZTd(2W9wQn87-pAnADIrn1l$hbUZ9OLtUqLFZQ$<@S&*3dW<%ST
z&ia-FqB{nkBdxa3w5Sfbpw)Ic=GmJ4NfUm`Y`tqD(SC<Iz#&(7m4ycF=Hl(P!DPNZ
zNDZ@lDCTvsML{u;R!&e98j#97LH_rUUdyciIm;w{D!^di9pcxg8)JCqq_mYtOB!mN
zwhn2<25BRy{gJkAsNQzF{9}5#Hg;!_z7YN~`fALubH|VGi}B$+@H2qFarn96)4a$7
z{P~Gq<&3bw4^lhm=MQP>`~l-fQbyqX0VD5@p0R1_cya)=y;pjbhl!V)`J6!=kFtdy
z{ylK&u7aPY@yq->7x7yi<L|#k+Wquc;+xhVk6iWt4&SRmyK!{yd~c#pa*jDazUh4V
zW5`#Ed?QUg+h+#GnL7PIl1;;veq1Tkk1I5lVLn-kjCN1*DvbtxDTDW=RC9fh-OY@h
z7Zf8pPI^FpBfGQ?^gYR5<xxw3T{0T;XTrjN0kf2DV3ye2;}~e|9p_b^lT=<^f%7;R
zw3?pXS0bOy35RXTiY~>P+Oy5mv^Jk%+hDfb9A(>Ro@Lt%jIHJ@TRX13uz&|}9l~`4
zR|l?>z}a91(s>}~0r`e=M7C6?^q6$RM<e@(x>P|92@$>3g&OYHJvB8e_Ijg8%QYsW
zXeRfC4#+PB^VZN~bJD^d3c>xBb;#Q|(W~4YDlc`jiXLY8)}X038#8IH(gAueP4X(2
z$A;A>2*6TlF&yVGRq+^VnoISM^7_H9XL^;RHnp6rP~~L9Kf1$g=m(|6UT3SDhtVkC
zR+j~|YmMC~xJxNkTis0@G0j#ri{~n^)qyx$zd8bb4$t-~zvttK9WyQTuo~`LP+WiL
z#vF`^@nPkX4PV0YyT}j@fbdQ7Xsy1~t2`Nf4)pRYUQ-A;6K}Ncf8-9YGGs;ot;|4L
z8JyNhlO;C7P)Zr9FMI;@+P8a^hay7iBYckh9+tq|9TYX4uMbTjnYDYBJ^ju>ry#pa
zj4R7@hx*GJ(5rvXtK8H}f0<*@Ur6qIk@u<hy~?+?5VF$GYpN^{8ncoXOSV0J0LJH|
zUd5-?E95%H4BHWtrO0aQFuBkIHv?uNrZ|LBi+1pU{+aJFPd*o&tM6yoW)3YknosWn
zy{*=6B~s!)s>30~y@a^2j^4@;y0gJ#nQsZvuPq;#G4r?y?UxUj1zaZYl!21;=!M<N
zwm#=l2b1~X5b~yV)<)2>4(?Vq=Jb?zW?<XRu(g>jubV>gdctN~hk;;&xqw07e(k^=
zYG_W!5Q6y=T!yW<+A-a4BR7U#6^OV1^|>ALyC9(aOvAdgnJg!b+an{^f?3Tv69z+5
z24s~kW@{O2w$^51ZC`~l4%c@pc?&|+RbN)S$#Sc)A<kCqO*_&1xLesYFl;+h?_O+3
z?K<9{<KTFwp6XUkpQA1OE-Ex{v`)Ve^iD?klo#WA8w)a29kKXATKP?8%!Y4*4D$iA
zfLj7M58(npmN(m?!$?ESED=^Qa&+M=T{vH)i@s^6XPo_f%B%~{q3@%8=0}HG#pLZ%
zK=elVlzXD29(E}+SO!(J#9`disZVbLt)wKMvUzN8<ALxAH#jU2#_f|CYZ>3yw$U-&
zw%LI`?LdEVu;)N=7fI6nFZiG1NW#9*^WD-SpK_7-b_@C9DTwnF`}o?r-xp6)*QC`&
z8tzEXVrxdUhEPS%hLP`P$``Okce}Q@m>xSvoi4L={HKs-FY-(b%yYfXna`+a0FOQY
z0p1bdT_Nxq%!RC6_WTEF-y_YctCtsXClS|Q7iXtu)QF4M#SKB6)$LP~b#W<(8;7`l
zy0~1#rMms}NKOTa%SBv`q>gDl)}NBhHwTVs%>PHeN0F~y<kLTEU~{c(_N-xcOz?b4
z@A+oitnB#@Xzc~9BCW0b>o#*^R1s#!F4sLjptc%B4pfOxc{8w$Sw0khi+-L&gB!I~
z-XMCm=~Eo!V`NYpSl&0WXJ?ijrWoEasIBUN_vr0D{)_>5HT+Q>OM4V)2}^v+10t<d
zm$n&cYml}|q}{4Z+mE!9NLwh<ZjSNu)q%8e<vwMwMdK^q#JoVubdy-)V(VX*z^|$F
zDZdmnmh0$`L|S{LF<&mEjjJ-|s~BnPkTy@G%@%2-GxfB`0cmU>{Cu08;vPlZ8N^MZ
zxJ5i}BjSeK;Zr71+-*E=2jcP&N9I6Uz~c@eZYAPqT|$~;vpcE%seHuIC+vCM&37|5
zID<C`tzB6!g&$GvQ=T+Sf$Q&1OQu;{Xitl!elZTXu3DdRCDF6=H`(m`IdU%I3zk8~
zEIx+C)7+yN@pa36%5#BpStGkeD^QjsbBNh2tssPWPD17HM>*|x2J*%9AMuCo@+ob>
z&la3jx^+2nQA9N}W0~z9bQ$`=-9DwvEQKFi^UUrLqZb=jN<nMRDxdPMDWE?G%{|T8
z`u?23R!u$)>f$ce23tYzgZe;OQ#l7{FU-9^UpY=FP<caOIixQsh;MB4DNQ|}<vyZ&
zM#FH6f!opKQ^xnyt$&(yx<$Iu23+s`J|!yR9CW3vH(mKLq^?lkpuIp(wZblIYeN3<
z%aUM<(c3ll{BJPEk2OApZ8*J)_q8dAOI_>llWhJ+dx{WuWhkA=2$&PG^<<+d8$DlH
z4_bK-`IHwzJu_w!m}&}|61mi8Q-_hiz0Ie*+-v?!!~7(pL6@U`zwjxS7|4j$0klOn
zG1lb*Kj{&l;?eN^&vR&)`=x%sV5M-`HX>i$qdw&&F>X@aI>ZfmOpJdLpVMqYTpQv#
zq@KEw8LS(w8biru$C~Sn^r8SH<KQ?rANMK$8~7|B#N6HduAzcK^VS-wBwyE~Jzr~#
zePeJXUHIo4O>En?olI=o#!So`+niux+s?$sjcwf6wv)|&YpeF-Zhz`N-F?o3->L3;
zm~&0*zx>{Zn}46#sqPYP!uZ@6O_=wvI&Ux*onbIJYkh#mh&?-|v5a?Fhm(-_oWWri
z^1RLc-9Re1d6Q#vjY&Ib{7*8GHGRqaVf6Nhyj!>4cP|9)=j8WKlQ)jcEkbrfV5?&B
z6Wa0L?qfA1-D1Z(&XOI(;b{3)x~_=)I_P!ZHC=mV-;~L}4xBlqbuWUkdrdu4Pe3M0
zAi)gsoTqSEgTC3)1H>#qlU!-AQixKnG2vuGQgd>F!CbS-qFm-K@x`UleXa4SU1`+{
zZpsSRVeWv!mltf~(LMLp(|qMK$&TN644#sc>x-C5Mq=8X_KZ-q)l)Uju5rjYbwK+i
zLX+IOtF>B=*V{zt#p=iWZ*IL$PZMih=$|%UdO`;ae@$Nc-`8yY7{t{YJ{$&ia<d1s
zM4Di|srracoL`b~f0L)ec@&rWjDf2u`A#4_qN}bFOqa=J*23pM;)aD$vAgHzXUmw`
zgf~4oZvfI7f9=sUBC;bKIQE*it+dALm(~zdi>{I>z9m17xEzyfq*%pvz<dWmBC0mD
z)f?{#kLesg(6&4w+R$qobuOh{-D{8A4MTmme(Hj@QdV?oD(FOM#j4m^AO2AlkiZ&!
zAp#R28ViEO`PtYuQ>MgB5cnc%B+;_PDD^COsP(Y^d(JI$MKw_N%@BDNgOaP@s8vqy
zatTT(uVKS{PHMuO11WG=?E~Xr*QLnG=D*l8Ga1R?nebC+x-q$Yi)1Umg77C}CUJH5
z-aFHA?>@Eys5^2Jy?8bxqaqro{3W}Ge?GyH&s;N}$$z9Lv+bHz5^P`-`UTtzL(=o5
zH}NV^?s`Ni{xGZgU=A;fOYl<p;Qr3#8zdCl_-|5c?D0zYm3%qwOor6H_d`BYFnqJJ
z#RvHUX~vp(r*yXR{B}Yi>|>{Wr5%OJu_mGDSGFHP*1#M+<^f~ulf3ZNw+|X_-fXgG
zt{U>@(;&1HREbecw%{@;zv-o2VUg`btr*=*fzJ$H8rdZguB<qSBhfZyoSWpYz#IHV
zP~K#*=qR!JUX*{~Hl+HM!v?pfkXS$?_*8W<|N0c8eW$2E!LBWYd|Tb2tKu9Cw52Xb
z&9|&CcA8}9)hcnaM8CBos-#Jpw##A#nI>cY&XN(nateEoUzn|P*~18ZG>rZLrn8!!
z;eX!Q%>!0f_V%1#^F}=+UPg@l>SS9!(B|c{L1|aUPpkS**0rCnuu%;<aCJ5lEd_Sa
z84?{j9n;FdI`k2n9!V8@JU2zZoR?t~bgw%VF%gT(yF6aAnXPEdgYe!q*5)e+z7C_J
zO(WnFZ>>l-guTQs_NS5MF~BDHQ&_LhzQd(x_n@kTr!?GDi@exmY?qpzT5-b^i4ys3
zXVpPE^KI4Ktv)foRBh0NJ>_f%ibd3|^>q7Y)eX=0f8)4Er<#jSBX1AUJAK#3#!K;M
zC#t7AsZvhh)tVV&$?2mqqZYyG3FnEFKHGhzs!C2rUJF~3m2OJBs9<d#>dee<$B*m0
zEcVGL=Qewzp80o_jWO3b{cGtTB+-2F|Fn{y*F$`$ufi|&AcoC8asnvEQRI}6i-!rC
zfFVR+kV<c>uCZ7C?RcNQnFTSFg8OHo!gZ8#cRzkS>)NGg550T(+W~ne&{<9r^AVz?
zkmqDGF;EQ2`%l@Ut9QlIyU7Tq2?S)?l|!<FKtp6zLddPsz2XT%G&CR3xvDbPMKs#J
zOYL4H;VNXE%l#%XFb?SN<w3G2%6WmLhB-Qr(=fw}N65aAoj-dY+X8Q_!k}*3036}3
z0L$YeHJ-0<$ZoR!3Ie65YuBl``y?3uJhJz%p4@{}vU~bxfd27CJh)`!QyerLk9;pI
zxFsx)QZE`<D(niw_8zzp`8F090Nz8ncMtrN#yHs{-YYL)05XfjIK}I-Hh>bmf|`>P
z{<$?^8m3jEcN3fl<GM9K7!F5+Yz*5mEdU*I0?je!`!Oc;I-Oo1l#gUDBlsoObzT4v
z>RqLm#z_?P6D%B-N2Hel><CtyY?}=%6Us-w*9vljY}+0T8O}q$ml!Gr%?bwz<NrNf
z8JkM?{~<2m4w3=YF+E@sT!?9#9o!z(u_XW+N`Ptmo7YXI|3BJ(9Q<F}%8yLoTjhH#
z!HBW1alu+(TJ?H^!HKZ1rN9aYUy>l82&lFp!5Sg6sEs27#vyI7uARVgQ5~ZLI-mq-
zww=KIF<4}?g87wuO~C1PsY9PBr}iGJfA$K1soC$=srQn*#9kPSMm%rd3;fN|1rZ==
zMSG-1v_xGSq6(21m-h;@QP*`=2YrHptp`7^`miHYcTRpp5h4AFL{7tp%Hc!+{Rrgt
zX9h;Y2ev3~6Ru6(?4x+tfiqhm0~<qo^%$>jAqBl*I=wKj5aR$MFr9pX0B35T9892A
z@$C~5Fd8XPi|)DtGKUk=FtAq+L2c^=y!L`I?g%C@mHPTIETK{EfEl4nUBl1hS`{+K
z7aMp+49+a`_b#(*j}oraO_a%3Y?~Jfw8ZkDfZ`!ju<?xI;jS?yYV;$lx3S^@^ZrLj
zZ_<ME!0}f43juR;_TJ=GAh1s+FcnAgi%;Fl<Q0e-cmy}^j||&MH{1Oox=o1U@pQiD
zkwAL=2-lg+a`3P60Wr8mW1BLhZ=K<q3x@ZJhedb9v#_@@EWbr$n=<r-_zV)1F4#41
zqjvN7Xb;eW?~G%)KZOFFvV4>&Zm$k36v}QdhUR~>i4<~j1Xc0ge|+K-*up9=JdN&g
z*1szJEfFo8x6&nY1jDFaZ_#64ah43_Dhdsyf%`4-=FP!pe01>X@>3BUUl|mS@c!*p
zC{Ps2hgNmC#$qtbyA1dhtH|^QM0_xN|FkCs0!Susnd+K>^qLP6q(*vNJ`OGg2_l9x
zymk)66Qa1zK^WKyWbvTu>H@z4m>f5U_o<!OVS4nyiaEI82>b;}20op!+;fF|4_Bjm
zB-VBG88$>Mm;9@}9$-QWEPWk?HF+=b3VdoicJLM5UWDz0Abl5Z-k=LSLNKds@)S*T
zhKDrNNPC^a_6QeU&>EUQ#58#=mfNPhI3r}%*tSD511`SI3J)xB%WUfmtO~n<&@Fvj
zD&9lur(r9yo*oQq4E`G7^cZBPW_xx3yi{=n7ISh?@7lj*stDIfFCkbUy6pzj`PAR^
zt-0k-J|I474AnMiAb<wJf9;(k#y@Y$N-G?<bREiYRA|r3`cY~70+GGj4$I@g<g`O&
zTO%|Ly37L~@*6Q;?TXvYp(j#yzXd^;27Z-Lpl+0l%3H14TkMj}Q*}X)QoxG_Y-f@v
zQ|e>y-cN&N56Y|$bPuuq<2#=~>I<&Rqm1v%P?JOA)7P;jme)kO>%;JRd|L3UIhF@$
zG!Iyl>jk&6Rg=>l43Er#m3heKo{O{1npF)!L=z<qUOf##k8uxzg?F03WoCKb=?J$9
ztAXQjnLuppsZZF>t?)*F@LH0XF5#k@$}UXHPx|Y_tCP)|3rr9Er$^BA;zP%aLwNdE
z#eIL(vYqBKG2o#asX=ACdVSqnkPD_$$K>8MyZ6m4?a><D!_MS<=C_-Hi_+DF3iGwT
z!_y`8Qu!^s8L)EU5vGv2xFTzy`U|$R2<40}<BR$_%XDMxR3tuFAh3lm#=r$upyQgK
z8CDXVMPu=eJ7&2}y%Qs_MQ5gi1=29FLd#^hMf@*Fuj{N_?HlNsUvQm=EU#8t50ph;
z{ec?W5~1~CiM=*3^-OuI!u4^v)cf2tI10T<;0`WnkH_De*5tT+8rix3eoG9TnR9~2
z<L7oY9Qjcfc&!=W>Mq?qPz%#?W2<5}^tx8PbMl+gZ95DPH<QzPk?rD;EC;7LCWIWW
zFHDa}ljCZn;L;cW)4O~WuZrDoY&Krq*Gy}GPZOC6>J^s?<vNFc%k=7v<=`8gM&W(q
z=pIS^FW*w;$ogg)PIO8wh}`QdoBs9Bg&+ge*Cdvom+m#(*mtH(<uh4iyP=CtJahC@
zj_@<LS@<<XFjfGPYYs9%c#oM}+0S#!<@o(|qrpM?>uSI9BkqT6#mC(jew)k3Ce_-`
zPi|yro7u(MYaFXiZ6J*7SK~|vL~T04oiM|kS_^JzF51bXbtCBqTA$Gy<?zdy_-lg5
z@O$W6=-f1C&}A6Ohwa;~0Q_^CpU7+53qR6bw_wY8xy~2&hpQws9NEK{*+*0E&d&Cu
zzv{6S2x|EC=A0|vKXUk_n#^~=aqr%l(-%ew+0So=W=sjsI?F#{gc*@laT?_WN(-kH
zSz|tX_#idncKrv=Q7-A+1?ikW^}e2C!YYfwh5tk91L%uO|Ml*%2ODy8A@8}fcB(PJ
z<$bjlfqm{rJaWO8osgUTef$K>x&H<4(K2zoIP|~w!@Z-wA3dLh{51E}^8Wq?O<L=D
zpo8a>wHlLa5UK|?^CjWc75Fr6SkJf4PptmwNvVHeU!YceVI<#!{BP}_uU@AYP2U;P
z>}`p=x9DCSg!gXELVbB=ws-{j1$`6QS-qDwP^X*<fwA4go^GnQi!x?OKt6N_S8RTR
zP$DAX)6;tL`w`kgV4Nb=e&kQZNAkvJmB7|L$<mna3`ZcUouJ8JyeyHh=o&?N4s~ig
z-Nmc7r)}a&H6VEV)eu!vxW!98WO3T99CThS+V)Sw`I#Oy#|1k4Z7{FYtK+<x=shf2
z>&d(7HDXJ8*x}?9rmwa!xkc_q-0a;s?CM#3$iX{t&q0519vF3Nh%xE?Zh_<i>2LPW
zsnt*(@N}_vZF}7y`=38?d<@1xvE;S;7HW`iod2^XrcuW5O-Ho%fd3~l-Y0QL>XI4m
z&-kxvF3hhHsyN|)Kr{1C`Y`i0nkqTuwv$Sd7P+~;zbx2Bc$x4=ru?tN`S2xsehAq%
z$@Uj_Ah!RK9#T`uqZCc$xS!H}34e;`A}6qgDH=<2OMJXK%SIA>1W;&*i>GLK6tRwL
ze~z$M2DlNU`XekxX?v4)_#0zg5_hIu(pOKF*`RtwhBE!L-^1|tZ?k4O!kn2N*@r(N
z*o+x>^rw;K(n&3xiktj)vf7`DNyx-i@T1}xM^Q1>@x@`1ar_BCkK3bRJ_RR|b$mw?
zB%uoo&x(U5T`q(7q?x^O^bcX$&8Gl9LBSYIh|$JfER%CYgsT$r14&(Jk=qE$)n6?H
zl8>GZutXJ!GOlpI+oTNa@mk^Kv3Ux9kaG-Td?ASz$LVrNEU*}c(@FUXifY~d0g`S8
z&q%9nL8Df<An3*^Czca;ovB>$K&nVlW}2_1`{wQurzJ=k*fkLSH~9kyp9YXpU>TJ{
z(Y=Tup<B+_Hv(&%ydh%~Z<C*$mUhiLhFB&^9uUJPSf{c3fo$h`UNqw-(6m~gD%w_p
zqZ(Zu=bE_9FlE&dTxF`BGwMZfaFH0MQn?wwj#?yzRest>|K~lC@nZUp<h{&J6D`<h
z2SeQ6iY#H@9Bmni3bpdRUmbD{_ZR>D4k`ODsAeH@A8|_gdUd$y50%&p=E)DTA4v22
z6f`~yj3sh3L*^NsJC=~x)_of3Fih&f*m{7(;rO3cPP+Ng3DIv3;^IBvO@90H*xdtv
zUN?6|k8wHgQE0?JRS;uEYfoLA2ySfI5b+^I5nB&s%ufG%P0#{a%@kumZ6t(vr}tg}
zGUl>=uVHfj>E-;F>XG5i5sKz%y-Po15<Q+=7o%a|T6;Cqm8DRof3HUs<t)TT@YJF3
zbOU;0+NGMuUN`-beh`S-*&yz4D-hMG9($hZhbq}N`nzvA__uA`n5hVnXyd|+P6X+r
zB&st~Q7t|t^&bnzlwO7*1Hp*<`Bj*d-C={DhkY;bui)xqLkj{^VgNbStp<2te!Cfw
z$gH9#8(GEPiI5=KZd_)>MTF4?c=^YF>^5()G{<oxFzxk-tm#wW&95e|$r`~zS;4I$
z7RQDqBDMee`H&j6r0KYCWa>;i=FC@-H%9%%H*L-2v9m2S6vh?F88fZ3!-U9tLiKO=
ztu00NCCyVx>wZFt3!uPohH%CVI=d7pvnG8ve1OQ$yrI%lq?j)Wr(0bRspI2ChgyNo
zAb7gjmJ9Kz4|``JHOePN=YAx`yVW{2dbH$R^!z9;TeugwB0o#xzIK?k^PRO*h|6B`
zRuSXHAC2QCi=Xu%$rT;o0lEIcq8{;8VFogNyMN|=X&h;x&<<)@3HTq^p7K*EM)zjq
z<63Zaqu!w#%CC6%5)$cB`(=3_d4J5xR5%Mnxt|kXGlqo=coN<(-}L<Bl}={{GXC7|
z3M@@fCGkh*bnMKXiTznFKw!Ce(+7ox@K56w6(KNA>>v1kdD6+g08p3^7YF(Dz%3Z%
zIYLE`aXs%>T>RVW$%xMjV=Hmoz{jx!(CzjwJIXVK5Z(gU$SNWX!G%(6y~^WeR4=RM
z#iTQV52Tb-kGD!_wet`QWcRsVsPo#v`YY*m?4A%`pROOC*9p&1h40VqM!Y~`f@$)D
zKR#BN;KGmVlF+Clly%N=xlEm4q3$F8dO^Lb@D38&MLu}3$H(p0%rIG_x^O+foi0cE
zHq4SL>{`(>y~}Xb>XNFx>jZ*szmAh$8nvYXMi|-;P$BuYe56^}%veVxcOtFR-Cvjt
z`G5Z8oU_T#s!TzaNdkYS2DmA^<JR~XO1h0mIERv3&%hzc<^LU()yqfLszOL)Xd4)m
zh`(wUk&g|gjj&VZ6nNe5^u3e}0?NUv1+<N2eemsb$upqk6e0;(yy9?(s@N!*CL~#w
z2JefJY#AhHEKj8fJ3z_Dz3&qyN9C0Yksvfk!jfk!>tC5NvS&m;ZBi{Btz>kJB;eCi
zzq^avDr|4*gL2WTj(-=ePmQxsq^0UgHv&5Y{FBfoIA?+Cg52J=%q)UEaNu0aY<%vc
ztA7J#*yQ+qIrn7{SPq2|?sZ3hX7qh&qb~;4^xY%Zi<=^B^1GPmPbwi2peoFoaqJ^t
zrXM+8c0*b#Ay1fD-*Gfm{KpZ<58pNV9@Ck)0|Gjh6Myx`i$E8qfAL(mAnehGi9C3W
z#-qYQ7=w87vQ5sH#@@8)qeiD+Sej<vsn?GXF6gVvgjl^eL~ha0R;cv8aQeGgB!>v`
z&6J_e@V14Rjm90>IXCo7!DkEh0w06)`)9^Do4h%jtkQ&ac!{ku51J7!P!TV95o2c$
zT774VCz#iaOj>LAz8Fh<KNqyv|GXxCh^4$Tr>x-?);A(f<-F8F_!*ZQuvW~B#9ceD
zO!V?zapl?J{#3Z^L_QpSZ^*)t(~$&LRJDOOz}#A)`~uM>{g<t<=kzu9-yG{vZrO?*
z#29YuZ^=E{h>vb<#!_g*D$ln7Xx!n#dOEXd;E#x$SfQy$itWqoWQ9tnFS?#wKCGu&
zL=r?-!_b|jcfKQYLbS<?_wFp7Ro-nW%{VRka9g19soCp4d~k9bKeOHgr;tpX(p|+x
z$MmoVIa}~GE9|a5$!foG6f2>Uut&2dwlAp=Dk~EPE~zwV)h$sL)T!Xrk{|Q(q5CMM
zE6m{vj*JzI2?Xe7I+^Ws*qcneR8DdybO0^sxY16nar|Gs8U5g}w_I%3^DAZN$y?!i
zN3AJPVIw`F{(z!kHlTsu->@_eXv`#vt5D*Dv?*}fTPt&!c^wjsPe{LZ@?fWJvSNz$
zbwx|w`8h~f9`td?T*lHz$`kVkjfaA~S~_v}mYBEPNMBm$cjxeN!%63b2g*fT*xr;Z
zmzkzGTnHjFnx4zbD4)!*;mbtM*p8J96a}MhR$jWoFOq@7HWPkAqBqK98ogPzI9;r|
zu{I7gMl-OE_a9WuaR&^4NP481eiFj-957o4X!i|oh`;FJ=mN8EW#}U-FeVRLqoGvy
zwG*dgv84Y-OOZHo6RUm4$k1*KsNU{FN379FdUbaOhV^)1(foPqUv}OY2QR)QSD*4_
zP^R=p?3tPE1$VpEnsJaKFVtlAM}h)y)Klp&YV|_6ax^A$y`U6VS$Zywj;iNkVXcrL
z50C761VC|($+*EZHS}6~va})EXe+dgIf&N8H8T_&bmO6u0)rXqwEThyqQbSe13II^
zdbzN8D0*D5!I2w#QPUN(oCW&932)aa&ZKm<iwNZC9&zBaM(F}Podu@WfytbyKCy09
zNRD7p(%L<{jOJr}p`Mw0%bk((iFX#aU`u*yDicKlK!-x=0YKv3$ggLEEu*@nZVYt-
zd~uuUyto_lo>Xm{ub-c5S2`pj_MxdK&k*PZYD7@g?gE_KW=m@jEJ3_Emb5a?)#!m%
z=jLxa*Qi$bxF_l_{9|_vg@=h*g`@D#Ne58rVJ5(mW4>J*NKdV4*lw&pfQQcQGw2mw
zApFO#=f1ReS3!j-##Q%}7v@?2;)%PRVtzw&(S&^hv}ZYe(OX{?nD@U>e?0$tvD9OT
zO<uiR!TTT{^TBk>)7k~9I3zaCz7edW$-X9DZFdF{6keocyPtCTTYQy|>)U2eT%N7?
zlO;X^M%GrZ;OJjmZl7k3{KQ@p)@eo?jZI$>-DXslHD5eY&bcT04s&mJ^w~lY7{Of4
z&9l#f%UEOEVV{1@%M5;)UF^e-(Wa3<#hcZX?dzUDN`Jf!`}#uZwBW(5>`svx12DC)
zWIil*%A|S&FCC69!oZ^l2AN*oT;ApuoNpaQb-LG!*4AeCNw*4rgrg=I@miPgz94g}
zezEb!@zGc$3i`<wp?lE)%;GSFo4?d1F2+0w0)H_WhkESIla)dMn<-?XazR&qqE3u5
zDZBHlf-Gpejbw5WV-Pc$&*$*RhRRN?bnd@!CO=Xh(38m1Zzm$&|E3)AC6r=)?Yc<h
z6ofn{A1k5s<o%P5%3a9aOi^b@+O56VE50(%%!j|h^(_N$`wFrjI=Uy7bU`khADTWF
z8@dVVQGxIN>73H1J2>5-y!!F47jDqVpO(_B^E8J<2BHdyHF#3u4KYGfj6V+uVY;9U
zUxEc;x;R7ooDH$NF!Lq00tk@OaJ|~<U<9BiPL?Fu_Rm33Q2eCn`wvVk0qR5|gkw%w
z77{~T_Sirqii4Ie>VFPG6e##8zp@pTdTix-pQu;itBI`DOrM^kmm^Pm_o;MtD-i$F
zL^`|6c&GeQHqPV%WQ7oG7;RD&*DP>>c_9$pEd4bzELB`s?QNusVwm->gjFWav^swV
zI0Y4phBvuNr2J$_AT4WTdA#+pob2w62X$<e%&0AfHi{EPFU>AoSv&>x;0F=&U{1-B
z+~~Gw?!3A{ab!We6_>j=HAR_rN4?Y}tr*4(cii<R<&WK*eHVPa1Z^|8#G`@|yK@&y
zmGo`5g%-8SUHg7x-7r_T4UVF9w_?{=f3o7e3K~b*?BT!O)(bM#2V(}m0Ik_YzAJBX
zBkxyA{pbA$BP?MWb1NC{`g2npW-IXvg!6_;P3gZ8*5!O@E|LrI@dx-4!ezbnW;xi8
zb27Qcye$g&s+$b#c|#)#s+u<GR-UuK!<z(83F2o-vK|cwyLjlg7+s@&T><las2;|a
z>xJ%VaGlqn74t5HNG_@X)X7F*2f4%XgDz%5$jSax$w#kj_EfuBFe>dY!}%r5;)<ja
zujXODjCkeBXT<3*q@H+X^$oZlB*`y2kuQyBaPjQtm<9udN5s1LFG^b-65>Q(k6Pg)
z$yBw|0=|}`zmm{cVv2mP6ckL=g(2PH)N_->l-?+JyTx}v*bn5V1$W#9Vauv4*gK+0
z#Rr)=JL+t87=m=y9t=wwd?t@5&n5y(;<_e#Rj@Lq7Vtr-P<hk?ix>j)2!;|%1Q7@m
z<P}f3>?{vB78eSt)wx2txQj&XBPV7BWJx<}dwlaT{4)`D*uJl!6pN)_oV)fVfn+Qc
z7b^L}m%67AfwgKV<fv{3^5@spW!nZb8H~0pN6=`<e&QyoUfy5Ju8X>X2^m#dNPC}T
zPk&HHhgVX`qGMXO1$0J*Ve|NCPFdkfGASC&%@|smEr09!L)yy68YrrFUK+sMpr`#_
zUt!5Oc_pHR|214nfK4$t*>*QvO(?1k2Z%9-uYDRfUkqR*(}4H^AwKxrje)oVcl4$A
zyb;8XhKkQ0k4A6*U#KG^XVm&H8td}ugH^PGMAt8eg9k-v70%{{<%J3r1~ye6!4d9%
zzZp{LM^*+IyvU(qs#UXfC{VcbJ4~7$>t9ocQ5U1jk!h-I3`W%P+nuYu*&h%lE%cC0
zf77_VECr{J9ZM|ymFF~&Tu?4~owr`|!cogj=xQdaDKi!)eb8~Z<`wq&X&D3XFmwBz
zE_47vMBX>Sa{$3)f}<3r!{qZ51F<cgc9aI~-asmjt1;3V?D;<iZb+jN9#Zz>7?QwN
z1IW5qp_8OM)AZMD`G(ls^0<-tCARpWS*|tR#{?sr$_ul5mV$z`_RJcSj&9rgqgS+I
z{BfCJE&feyy>j~I`Pjb_sq{=?`1_C&WllHFmv6JiveXo&(D59Vb`^%N($(CA3Gj&V
z^DjWkvDG7{hOpNC!J7j8Hl~(q|MBv2Dzci^e_-MYPKBe5mTjvW?G}{Y{xTZN6!a1X
zNlxb2I<b3yP|q@5DN)OvoX9#2r0c~sGf0BE{ZI58z=KBaKlDNcaRw9Bm^MiNA}Z>}
zeJEwG(-H!N%yCxRe_iDplXb)vc;!x0Ag=1vqt9a`p4*m+-^$C8t-VndgN>5?J~+?9
z;U#3ui%!bMXZ(YMSpY_3OWsD(WC3vGDt5h+4#LUYB!5)2{tU3>Ulm*=bD<2qUhNX^
zm71mBZ-CF{&YxH}*W+BxUx{0o=(gK`Z-l0lmqWi0o&P-V6B3U}@8)-jXjMgN>t=F^
z#6cs+cH9#|h?Tg*e61-tCiT|-Z|ui2mKtD$h$#9YJ-<78p>CDD;P=q^g#_MSgA`YP
zqC9OjOaLSpg?I8DsVpFOQ)u=~R%>!zNXDRS7DKQ_2}|usdy9HO;6lykR@6X|sMFUh
zw^P|aQ@rSPA(Sk9Mo8g%?Gz5g-^3{5+(y(<nd_zS1vA_cRF)U)kgUB=@~o%|`+Ox1
zU=exxL-!^_ZN6%4VJCWGl55@R`h6HbX1m*1B6P{qM30ucs~cfTI<h(eZwy?agX58S
z;|s_b;VnH;lkD832>{w$H^nBtGr;KT!C+ZqO}^&DO?l&IIFp%T6`#$2BRBB>rAs<0
za%d7{Z_4Oxkl^V$H}QkkiMg}W)^Z|`3RTxf@I}UHWhWF&Dk8EZ?CF4h*hf3?9`e;!
zCOCwxnWZ{k3P<+1Nh%JkOqUY3<b<nl(A0^ZuD2ytiOLQ|$ooS&+?*;_S=hBx&kj)!
zw`iTtOd+)f2b6GReNPln>z*<}(l;7^s3+vG#Cu!9hx0oznhn*&6`5=6b!$B%E2iWy
z#Y-Gqh)`{j_Gl``%v`jkgI$O+2To0G84D)zVTXX8wn&B63sYt;(j=MFHk3;qvc83N
z7qT`MNYviw3ACw=zP{zuhs~&iwnp3;>W9tfg7s6_(*4x75>s$nNf><l2T@sW-3rRe
zf9n3hVv*Vx*CZ?t^yGh^et*vnNBz2{pU9lOhR6d}9UzHG$EWX#8L8V;r04&(iH6u%
z@3rD8(59O07?Vy4@pH@iB|DF$E*LL%MQ?eLl+{S2@^E536`3^1`G^__H+l4^h*JzQ
zpM^_K=}3zgoLXWoBpW2EcTmkl%uwnypA|@o7e(Y(%{;MACUijl4-QBX=?vyHI=aOb
zTjeAvEK$vT;YY38IZy{Ry75kr4Km7wo;Y5Lm>35~m!Iv){b!1+NvPi9{#>~KqK?qr
zl3EyVH;08{_eD-YPay0FQ=YzjqH9ZKx{$z7GsAOQo@sNBU2^w9Ui(EH`?T5l`#TiJ
zluHGSFbc63aF^yaXomB$0l#}Yy6D=H=H)`BVrYM1z=7S)K$=f$5OgMIImN=zn3ojF
zTXH45p9I(bY-L(XWAqyg)d0%mWe(;$*J9X(#rKJ^SWewhr+;2VKitJN1qy0xrDu}5
zAe?6zt2@P<3#topc8<F^E&?=m8@x~g^#Pf103UG7{9UVrsv#kWes_v{;Gkb>3+@Np
z_Xdge(iV|+3+~1U!$wd|h2OfT$0=wRVMSzu5?jQ4O|$HR8c^rvksomAJ1)vNY^4!S
zh{cGJtFb|P>kh-KH10%M-}R1Sk`<{BXk6EVDNx@(zZ2xoj9_z`zX))E<n0NH6g~fQ
zW#b$Tg(-So=YZ&T7UUUQ7vtamM5Mq6cNp#GI@SVh>Q*p;yQPWu7al8;&C0i>02Ld4
z*Jdm3M4SP05Xy+};WNmBjOlGJOa@c3Pd0%|o?N>=tj0{WpL;=|QI=|wWn#M}Sq0_l
ztrGV&eKjl9K6r8!c{ee#SPwVnzDB%Cd4}v?7KIP}Y}|!-S6D5=#R`)KgTkAT1phx9
z%1ys3o9oD<|DudVV8((0f1a2}oXD~*`|9RGM2dAdgOa4PS}%(JNx^fCs$o<;9+#xf
zkD@+|SpBBR)<#A$--~;o_zkJ{aa;<NF3IVMD^syuxf^X6(u?f*a|dsUKITz7JrDlC
z{ku<LwgQSf)J|Vp?g+1ze2kZ4cknD?PN811GmhpeKN?S1JU(szzg;($?vM#VL+Cx`
zq|%7xvYx!*h+4~2Bs?N-XF!a1mX~C$yZnco+Pa}vNKIk+&sy6O!(&N8Qd&kSq)4gJ
z#)l==TeE$E*SfoivpB1i?t{KNtT`QyfW4zT^9u<rmIplEv;q`0fNGU8hql^+wuBbj
z10|=;EK14R42nKSGHs`V7DraO7)B^&tnn!WDLvlk0>`bnL}A+PoKKZChZ>f|sDxP>
zT~Uo1M@qTXFBn=ppgP5riGZ3Xha|RwF<p|EjtZ+<A?+?LoyjTEt&&8sJZC{(L0L?>
zCQpxZiDuFjZH4jJY)%<n$-g;kHTB5_?tPEw-)a5XBLy<@3KRe%S46clYdCFJMzwW4
zbk6j0fFqJxnpbkW!mN4;*32S9#_+;``GG{U{7}LJh5>M)nd2HmVOd*w3!$W@a8-F$
zzJzLqpv@Xf&1Lqsv00%P&fdHN&eP?-O>IHP6<uwSReaLolm-e>;x5hE5|uNzyxBZT
z0zOR_xw6u1EV$92OfTn0Wr2kJ!L}{-nI@UPMpH<6$1g0crexZrg5Uy;H7Z9!P4)+#
zDHB1pW{y{^&5CNw2Rq~6@QAJw_|4gUy4<V}=(k+#i?Kh(3)a){K<Q<Sudf<t&40@+
z7Sy8uu{OsJFBV+LZ*umtyq=D(0z#^4FNb=_l%|WBiEVH`J}X~cL$58J{8Z<@q~GJy
z*~~qJ(fyF*>{vO<xDdb4;ctH}$<f@=WUGA@MozAcuwj?WZ+w`~e#AqiaAGI*PkC6I
z{0!6BkYqeTwkAux_oYIdh6wVLhhrp1I@5y4;7qULaLeBUMbk#f<Ic>rOQqTsj~ObU
z&IK%$zpWdK|JsU+kjK@;=bc~wk1%Cvmu+Mn*?McYZVr~y$?(=&OWcv4fsR}@oGaCu
zpgYL-7yS*1gI<?MiVN6~w;DGN4nAbAxU!r}rnEruo?rfrm9f|Sp(sVok!%4QhMQ-V
z4WnnKF@*xEs8|x}z#~Y$5r>|G%pFYT`N#ZEBD~_mf9xl!;lpLnWkJXZ`qou02$2t$
zB2ye(u5RarG>!hy7V;5dx}aQ`zcAoRK_SQ7JXu9z#Z!yP-31S>hB*idF>ODyelq5;
zz_-$7a6&YD=#$mqOjqOe^+<DYtiF&%Ssa|1HnUcjcR}c(E<=Tpd%-|n*NJRrpNZEq
znWN?7XQwKk=RmcuY^32US8a)6ba<0Q39kJZI-KjA#Klp9$f0Km(a++qb0r}{AQS|1
zX!^lFcTd?g73nq);-|%vg|&<DEg-xMNHBx7`%S@x@KBx4!qFswl2S{Fh?{>A6u}uZ
ze$3r8&=xVKf1}wx>;jm`?R9}={tK-*APRo;2Cj69*gIc|<{|px!O!l29?O>x%x3;M
zlrp6|l*D>5!UzTGeL95jb<QggCaPiy8h65s;}J~ul>lKFY->+=VDJQMMD+Ie(KtHQ
z(<q}!tWswisBFvDGF{svaHS*M4?+VW48~RR-WURWn21TN5TQnd$!4u{<;4my?}3d8
z>`q6FbtzR__&?RraB*bFMb)=43{E8j&uH#rkUXpn(a?EB_cEDL$nIhh&D9t`dlj_v
z;pD%oG{*Ew{@xAgg(kd)1AK}>(qsJMvw=~8)}k4`|5t<?@|7VtsK`2RBA09u3SQDe
z%~r>TKE|R(d=O(<0*INi&Sy6jOD_Qkv4xPfXyE#7V8L6+jIr?*g*Yo*6}J0GVGT@%
zE9az>Fm-)BI~TO4DLC1gsr&-WzX`!b#%UP89t=ztSUn^s!=t>W88!-v(U@))us@i=
zkgJN`lytNU?!K+l6xQP|MyO+BsD$ADHkHihg<CqODk#PcrAiZQtXhMy$W-CE2wH1S
zo?ndVFUQLIDcChZlcgMpzxJA`@}I03pFvE1zBT)!$bWcJ_N*8-RMC@?AGvBc=<WS6
z|7ni<-?0?@NcVFM&+{h?Rmi8OT$~)q-GpWub_Kt>F2Wz^0>#`UmH(Iv>n*9#p?Y;l
zK91n6D+h{8$>%_1>au`yHQUqJ{<alfSx6CIS-2tfNaycK)BkB5c;eIERTr^X(qe<8
zH>hieTAx2@>B`EcTO&rzsTa(`r>R)YBDziirS(7&34jS($^=!TU@<oJ*&_B|*9NiL
za{HF`-YR9vFDQDxu-FBhQTzu;1BublHC(AK<4M*{-*-nMI5}O;r=;S0{judtWk)KD
ziQ8=uEMV&3XbDb?`g{1;%F%-1za=3~n8*qB!CCf1E7Sa^<T-|8NPgwYWWGaL%e~3a
z0@%t1_CZ-rrdh#b!WEt=6A-m5f5lq8``|^VxTtocDTrA*X}K2~h1!;nS<+z#&9##`
zS%&aCEvQ;AV#PvIBf!I-9@TrY%z)Q+<0(_cTKiZ3bcTxcM9@b^ghx7qAU6Aiop`66
z<PKzP!QQ^fZ_((9l{3CNSZ2<o58kzqElzSrqOp)IElGNXXE7N>&f7cdHO$wQ{}F!-
z=2{3cpXnvJCJ8Yy1`LJfKnNix%g(#cP3J8=1-{qRPL`7D3rO*LDDJ;Y39RCzWqQP}
zojN>#xw!*xVx9u$-Z~PmyKEMc)nJ;UwPfJ@1;&Uo<rItzBFk-UZGZznyl^Pmo_^TT
zZv&M-=J&CO-9hYvG!k!~oSN5SzU2LTY585Kp$m^*0)@c_G64vYQ0J69e6z=Qx9+V)
ziST?&Rn&;LK*@E#`ysZF7iO`gJ1Ke5>99$c{64to8tK2OY_BzJq^nw*SHVdpF=0NR
zvW-8S`i?M}aw3R5yans-yLg|D9MJi{pVd?=!sHS~5eLi>u?Y=1a{YM_1M_<byNw1o
z-_KB}(oJJv!lrmO==tkCeGen(sOp2ljXi{U3k;!Wae2eo>9F0<sdDE(vWE8oRD#&U
z7|gVxv?{8-_u|kyG2n_%fOhM!#>h!rC`t=l34r8406wo7aDL@dSf<aJW)v6f&loGG
zJ6E8YY(iXlIs2|QwMT$As%Mkq*aP(!7G8{4HN{_Qg|gUr`_qdo+tYZ}(0toc^qJeE
zYH@By$*n&?dc@4zg;!Cvs?0H|_1?mH(ROQA&+Unsqp6kY007MEB(|c3E7%ykFC%Sg
z4`D28{#6#6>a7E06ftF#Hn~5#_%wg^y3F`BVtM<3f$OksULCbERZ#J`W!`{YW&jeP
zjByx&#0g3tEC%<gWhm{&wJk#I&}2fo4a;npa}PDVs{iae6t6~-!1)))?w>$Gl<@cL
zc%J<@)(Ekv8*7ie&i|Z7EDBM>?{h+U_Ax@oBLhSCL5bji`$2ZP7oA_$YN>Yuq%>Z>
zIC!K$%r`?T_XI+HHipM&<N72yjv&5^DJG$d##S~1{i)6DP$!L!&R+&AqEu}eCW-kB
z`?@kZpH9Iv4pBv>-#sPUH$t^nPL)M*)eKaO5^I8j9R-)$eA2k`g(uwGux%z?^kwFJ
z;U`@vEncvD7mnoUmi(b6T}0gyWdoxQn4aWxhh(+j&PB?#8EK16tBaDO^e8CR1&*D)
zI~t-OYRpk&hsYBf-l@QgzPI>;Q83bVYY_{GjIA%=&>8!egp>g*F;8=WS)yv!HKhz}
zxZBu4w+gn`IA$xW{@X8^a?vYkI0I}=1qoq58}ey^Q7ao#ShOD{t;RjRO#bl?PX*@I
zjU%_&TmzY-0SRVVS<DXw)qayEbcrw5wsrTtf>eF?@SFG|b(H}|8mE+5dq5=9z6<ov
zGEu+pxo;9heOcC7N4ar_b=ViiG5M?b|MqOg&dmIcX-nGiN6EQ^OHG5&`$RU2fNT5q
z*M2!M7yOWeSGvJA7UCEz78PRv4-Xr4-h3A}A>$Q2#C-i~PcK8$qN~6^yNZcu*`QoX
zllw>=u@{>+Ks`p{B&09Zz|B9iKy>?TeMoMZ!33)`+Q|(~bBG*lnC>B3;M0PP`3Q)C
z=59qpMb5eHI6`mMk<CdEbgCS5UJ~{qAw$*~ApXR6ynLf@qjkBLgd|I3o0xdWjPU8l
z44g7fPiK9B=_*>1XTQV3Id4?uS)SO4@blQf+&QBIJ+}VlPpBQ)$hWj~xK+(hN+kGY
z$+aHv-w-C)JduqhRRLnRn*_r#o#FOR4Aj@YMI86${t0;lh5f6Vh|>05%vgC=ytK;*
zqsR>_%iY-#<sg3WN0*fe{qB$vbHE(V?^AXvB9^gWXdq6KKN1q%=0z37?0aS{^iRNj
z)uq6HRac+F5CN?3=Jk&=)SIk+84XZNDScwxy5Puyh1df3K(Xz7Z+&EBUndL!S3h=-
zV`62Vx}NVF{`A}VxtGYuACHb6$Bc|S`A_n};h%OW0{7JHJNZVJ2*_Pv4(zxuEq%)$
zr|#hTv(Wn=_@SS!z&KKZ&!@2&osHixXx-1mEqFmf^uxxN3Ee9rUt9rPcRcJ&=$nl5
zdz)~G{oQL`;Qf6s^@HeRw`DXmiF`6;UDT*zdDq?50+&ZjW>=Yekrk~mT@F(5kKG0W
z_Kg8==G^g{Z|+YkT@Hc3OJ8rVeo#w1(4a^I!}A=}lKVXb?QsqQ<b`)JBVrIe#p+5l
zm%_pnn<f?|TeWJcUL&+NslU0#zm+lZ%_sSA=->a4p#=)+sg5~KCtwh8?>hCfZ0&vO
z(O2B95I&K`Z#psGgb+T##dnw?Gc}EwJq6ncxC?tUQlCRVd2cKVu7DG%+g*OagH8gd
zH4VS(iFpj7GcI2p3lKlGUY+$N-H7R1gAR^&^`)zj1O~9bD}($!GAC+wwmdEaZZ=Q@
z=YZOw5yeKPnEb3^xylc(we1MLimI@mTJ0npsp?VwP(#G|%aoYc{@~fA6qw1g=XyD=
z;`@v-tSjE10k~23gN8aIpZrs1Pg}4=2R+1Hp=Ej0h(YzAi$nz(-XTW{Hyx<p?ziH3
z^pF-t#|M!Cv4A8H=YC`WYy4l(gKYeDP2-2v4#MzgH|H|3%m+CKs8GP2QeUgSDCOD7
zj8UDg9P`sy>)BU{AmwrCIdnSnJTjoV_6|Okdol@*e&fg?n%*;s+EfJ0r{lUxP7swE
zZhJlStz!rsZ0}XKeN|8Jygn3Si$W$f-IIQ}l5q?^Eghdl+%CzSoZSU?xQs9{hLasY
z@_UnZ6p~%7>hU7MJSv@b>FqMvymw+kBKrKV`OL&S7|UgXIXwFv$4mW8S7K4ZE{4Ex
zVGc|hS1iU>euvOiWWX#E3;UHA#3v9P%%zHzy;etlpSpp;^KDL^O!)7<B>SBq!)eYP
zMI6JRTyZ*lbi}*t;icx(mtMT%=iBys?FrHmvO{{$fAF-}0*Yz2;qoqF18;mM$J#c^
zYynnqF>&mF?5Pn-_tcBLFPtNZ6shGF{_frY{4qnv59Ot{BUmOsDxnr()z$ouv_&2u
z7AHoGxQ+gZRhCo1cUWhxD&8QZEvNI>P%@>PJmkqVujZ_#PfUflA~gn2Ocfk&PFT3Z
zHD=Dvn7JFfGc+FU(T2oL{KMcM%al7;OeAcM!~;&aL@fgf1$-lpt0G#g2iZD!(4E#)
zZb-@6`Otqh_4fe1&r+icCBbb0R{fiU^sf&8T>-+fG>HsddhbXMNlJYrC*$AX4~<Jb
zFc>xEaVF@q6P&Z5e^?<UsLvpKvxm#lskth;q<!1>J9~KbRX1Z;lQef+3=bho58AVA
z7!L8`=gQM4r;w2K<M1kHeTo%@bKc}fv$EyY)77f--c2k&BU-S>iq}-74rwwlGSMk@
z_C|ct7^bWKm{*g#c+e*NP0YGLasQ<$(=e6b=?;~!n5e%qBA_@Mud|0i45NKC(wW4t
znME-g8#htXD&iVT(ZUl`aK!*Aah8R}@<yGs%(Bey+k>^^x;BSm1)`%J|B|vP;NtPE
z_jPjC*w>nfWn&)lw}({8%<6Xcoz1#Kt+q|^O#l2<w9+|w0{<Z40*Y-r#44?=U=}bk
zyB#~!l)-$x(Q$CeEc)>*9GGqg@H%=N3gJ^|dP+;UyB@Cc?3!<Hj>!B9^O_VMU%e3&
z&_BMC5gO0Bh{4y2IK;m2Ewn8{w>-4hzu|4bRaEhiNl5feqEO0AcT(opg3D!Px0**-
z%%c8w1{|v31y8;tzUz9yx&%@%|Iwmowaiw32zRAD6qPY#V~5x;nv_W7AV{C2kJM)v
z*LCGQ+)dYY$(`?~eV*PK`tZ)~4u9P}2i1_B3Y9*^cDLejCkk_30la!Jwal2>I9+<?
z&(5d^z&YZ4#x4YkGj@rcW~Jt;lw65wibibcEMtBx8SzzSPoc5OWc*!7Z4~8`6aKE*
z3!iPI@okNe^5s3wUgt)zWK-M=g$;Rgx5CEBUH(OrOZu<@Z}LvQBgG8-s@9#w&!T3f
ziHSdXcQ`vxTUzIXS1_mlEgTLXppH;`lh;UJ6R`XOeI<<@5r*0E?ucr51T}OCDwF$8
zmKNUVEV$e(PH3M_<x7sR=4E-kO+iB~4B9hhQ-E%N&PshkFI|NEg77FHkafSGH#&(}
zk5~0Pow5kmZk)OBO=|e~QlOA@Xz^&6ye4)KQ77h>0_n7hdAF^565E@^OO04!wN;yU
z7JMQNNm?4kZRM6e1J8jsZ@gK0{s1)?(;XsA9gAyetyVq14P<Jcl=XaU2D`ufunzrR
z*;W|*6$WVaT5|5{RJ;~0u@p=;5Ir5B>h2XsGs;D$%5?=iG1)?Ln5`Yny<ys#W76l&
z$qAvp^Lt%=XiH+tM<|{e#tEUKm1-7_&kdt^Lf+gRg!moAy6Q_0bC2v!t@uBaIC)#>
zBa!({Zm13G8#g1@e4af-^mx?G*&5gX_%&<KBD#WCJH6vLQRZ6MGr9ZfyGsK`H%8Ad
z+z9~4Gr8fTs|W;*v@xuJw!JGX9*-XCv+qQp&8nal{syYq2(wF*#~&S*dvL|8Cj0sU
zmLcwkg#UZ#v-1WW27Hr!NE$oBJ~dcC`(9&6)n~;Q{KDFy0fK$K!4QY$4x6)V-YzrG
zbl2tcFHtCm70VCKgcSh$n`B3nly<1a{stJPR{suYFV0_lWNFPp*it7x;f~MzNsY(m
z(go<xVD2f5Y(sAv;oZgu`q%gBjH=IIbGV6JW#6@9qm#icRab-aqjcQ%6RWEkulnY{
z#uxPErIXcb`l`$xYrEzg(erTa_KpwpOX4!cVViy1(xwNx_9rla02@tN<9PRYgFX2X
zk9mhmfSu5JoWIt{?J(n#)iHHEOXgEg-7DF)SMq9Sb_geK_613!=M#)gABw5)ur0{E
zPd1F*KWnv9D~L0KjOq^7@~(8ex<}=J)bcL1pc(`p@j=n}GBC4b9>S=^n%T2%`w=4P
zo3Z+yZh02$V=6qLl?^ay=nmTv7`FvcjLJ$eToW{UGLxR!c?=z;PwK5{m&4Q|v1bBA
zQL#<lN!(D$VzWeo^T5Mg1_|R4oHeToAi>sEH2X6DYGdE@_QBhdLN{^rkC-t`>S<`(
zp~!TO*n*t;+l6CSm{~Kqh3Y<sDEX(PJ#ry#B<SuS<?gIbt0|uAQ`0AnG+ID`l^&t1
z?+MP82qF`e=a~1PLIaWyyl*40WE%{f5}V#t0ILg6y^+;F(6KRz;t`_dnJ*$&EcGL;
z<=M2amJ<16=0;GbUWFUBg2ZG?+GM7-?x*G8Cvu~wg8)6$Ea;czU5bh(<DsF$H$R#U
znlrU8NR6K4ls1H-+ko`RH*8pX9oOQ9L`li1dwSM4(QBXKZyxbZw1@mMMl!DI;Xty$
zwV3By-|ocDyRb#<b7XB;2UlYa@}JLt41QdlSrPt}|3q!{<QF_c_+S^dbdM!;YaxYm
zOHN4Qg|w2sNqC9mC&G2@J8!^bz_;6v39((0O%yzft3_$(qz`lB4@**N<NK8Ea$8n6
z^&htVT<Uxv>-C+Yp3;NWYmN|@V$B2~{d?@=_3yI<t<2q$5qu@CcKYWp*2JtBv1Yc=
zH>tu!esDG_S#xC_b59&j`c%~rnfi~X20Uq_GCB_^FOsoJDq<E_OF2#UxB$t6nXoH)
zV2*ADZ4NIusw{ZYiPI)K6t%5bn?Dm)-&H*6!F@kEyV)i{TJq=c6NlAW)se<ugSH^t
z#fqQYAL*-|s1*;q=dak7cip8+gx5FN>67cJy0Fy|AM}l$*s3-hrU6^uN{G~jwNBbv
zm7TKYlITAq{su;)4#e!*mj%~Vh{c5@{O71GNPFls>S+FRZZmjwi)^Lmdy$$2KJb=j
z?ncjL6?*LWg^vMSknIE?GVuemksK%(_=+Z$vZFHB*&P1B6a%_1YuqO+t<IbUAz9uH
zPb^_*=OwLnUgg!5YlYEg-s1BrAp+f`i~ydy2_ocll@UPs*-1K&Gk6;ifvL9u9Ou;^
zyN7{yvY^$@{KiFu?m1JgD{ouIkfzktPKAmCed%*)%e$JgrSUXPsc#UQpi{f7!?>~4
zOHMh<>Xou|a^4P-2mip-tY=DGnXM{VsM+<^++lY%42)vFrcsZf{`AccdOH6nIWXb#
zEyk#7{g9CQiNkD@>MK;J=k!T@7TxDR4Y<H-4}TV$?=lv9IvFkH4WPbYKUg0N4{qu}
zuT5#eqw#Y5NHBr{r2=XqTnwnXs7aMU#a%d0F?;x}AkHK=cGeEaXa(AdL%XJGt(^}%
zc784TzA+QJMo)IbN;SCp`Ls#zC0z}e4e*IW#^2Q#;>;)CB%oF!Y5R@Mw5I!V)|jE&
zqk^_pz0l{gNOA=nuq}2pL>g)3?rJ0oKCU5)tb2IKkFIGZkXTl@@4op}4AVf6r*wC*
zyp!D41jDO<YV_PPuA~%QP5GvQrrH{zq52z6r#j1||NWk{1tAQdhM16jYvn1L6D=u*
z%O|drvy~@(U8*ukhQ)a)PSQafV`~XL9)S<H<9wVU(|%t7R;N88Y;_9#tKrW<^=(yP
z>!D6n5J0_wz{7_(bG5TRerCfbW-iNme^71Bi}-OC^gnOgX(lv>t?*9NG*_0HV#-KP
zS(mjoLyR7J?N)}ID{HdyNuMK49A1o7%g5jorW4vM`=oJF<MTr2y}*V9WeePdhn_<<
z-~IW^teNqxnJPHUsd`z7sDwLsbp!+XhHSx`k-UF(<A-&&6$$g^43gvs{00IyyrL=G
zG0oRC9jkv=o82+zbtEzp)R@#s>dp=$bD7LNuPALyxlNDQ`Il>USv65voF7GpB=OWH
zE_0rNA+}Wpk7_B^EY6^i^S9;1bBmm3rBDV35hnA(TGa-#n5-UB?<V3=ERS#ScF!_p
zPB$>dWN~Sco|mq6uMVK+GMgiI*iw#L;_()eWQJ%I=HxuflKwBI-ZCI=?+F{l3Jb*+
zm!b>BU5c0D?ykk%-EGkV#ogT<ik7laic4`X?oy;cDR9H@-v4{wFPTlwIdevynMtxq
z&ge>@p0<hT>392eGWCkZAB=xV`1K36`v1`AA4G4^nfpj{Rx{=JJAKx><NtR2;XPHs
zasNrcm=er&Vs~tP{A9m^DNAx}9d^P7-uh$lN5InQ!@$z#C8lc}4T8o8uCDkc!^S3#
z;HBnFVMFG6jxH@WClhpvp%W6zbQoJihT+JGr^f*Kz)9oS6Y;TPSf+5wQV&pll9muN
zazlU2N3wS%EC~+?gDt&gWWJFPo)}n8h6)l-oG4iOvA?J2J1G#6U!5ZvKEbnm4r?^U
zYc|U?41O>u&UD~-;AM7=GimEP@#DaZv-m?{OXqwn>%CT;5fHM(!ZAbk<D@=Q_{`SS
zc>JV!><LBv_wO;0{*!X{48@N?o!E%~-JG#Rmq8YOsEFE(1yp~EM)}NusHMrijTD;)
z%RdZ!!LAM)V`mW+Hbretmdf7+B*Fn26uPcbd78a6<MOFYZslDwn{-h9{GV}qH-bjH
zmH;k4-m<M^fIehXHr7x789(u3Z!oF``b)E4C;<IV;J2fMC4q4pqU`TA0s7grPEZk`
z@|HMVS^%Z^mUAQk%scUeJE#+w5BR6~6dl+n4;f`w2ikAVOg(#m<G102-5-E`T$fv`
zv^FP)tPI<6fWM%Axk;#7G0@?CSm_-<@DxY@`R$tHPhe&R=B2SYfQnmJ`2fcs`4Yw!
zfL$4=@M}QeE(-SrKyA-Jfkr}GKz$h*wwFOq2}U)5^xk=^21NjUmBG*Y!b7P&u}uM(
z{W;Xnpbj|x{C!Th5TJn)mQ1aH_GYUx2BpCMHoK%jEkMH<IJp<B0rsqQ6MBF)Ph_{R
z9be4hNF?j{Vy5B@_L>=hVoO!tya>lyRG|+r^20)C#902?n)^{<r2^pd!F@sTr5R^%
zYaF1$SnBC3FIIm`5d6jZK}+ynFP&Y^;YGqo4*0b)V8re8_0;N%h|P`Mz2bn#`w*>e
zLx4KzDV^j3JbDP57YzYwDEB<J_QIR{EcyIJBt)XA^C^HHV@IvNczm>h+$FuuDUOu4
zT^ks$h(7IQ2N;SkR`B*kGko}Ww=cM%L^lGKqqX!ziLLu@A9K~R!x-rQ<J;!xi@k$3
zD=1#ry1Fl*02&ISI_^=uSOn|jAsBF5KH|4X;BXgy#Iy7Zj&xV?12ll)cGC?n-ATJJ
zGC#jeb4mnHvGAw1)MP^$nEj82P>Hk5%9rKJITEb%s}g{bG4Qc$<(HllvIBv70EgQT
z!(1<VhN~Xw0uz44td5y{X}66{p9B=~<jUAH0gj7&_PGHAG!Slb;SFF(`!CsxY%dBj
zzy{2K@ecFg2T6wwJyb1b;}?WD1wXU{(*?!Y%%K9q1__nN(_a)|fu(5!3JBu<9<Bz4
z1>mjk^SrP}3362fq<I7n1irYz>m#=Ji(6iE6bro|=D5-KrVQX$FG}Yl{~~oi<XQTq
zUty)vi@8Ax3L7uL*$3-&7r*$IiqTtp<%=WZ>JWeNsUMBJ+2)<_i}>ixowqM?RD~{5
zyjX~_y#Wi@e{gO8@fnb71vYzO=CF~4v6lbRN_RkG1+@B+n2syI^b&^t%Lk0(NsyQL
z*8rG4pWv4M#T}G;g2pfX=MtV?v<Pd5zexq8eMWqEda-f+kCOvZVD_iiS~s=8ajfs&
z_qhP=4OcnydpVA6H~0R<m|V>0PcMM3FDlRdFA9a$Q%U*&y=WR{GIB>xP@Fvw#wN`F
zjDm1yGRe&U=u!@U1a6j$Zk}ed3#Kipt6C&15j5|It)(m>H$Qw!$mV#!YUQf)pexDd
zdO&D44sm~N88m+Ko@y;=$tsg9y0H+yd6Hca`Sz1O*8^Vj0?f{m^8u;Z38f3;CHcWO
ztZ+VHHy3{#I?V_OUJ_TaAZWhj@MBzDdZ_`*g<ZnUU+6tG$lUj3JZDu_orW|e7@{y^
zyy3K~i>dP@au#I4^`S$_P!Et%tCs}A*N-wDSKH$CCa=7BnvXLA_VEYEh1445@w@P4
z_RSxi<63DV1_tAm?soNDsAivHYA-Sm+mdgZY3AjG_*FOsSUj4n)mu-CJYIM1luSo^
z%Y7Pif{Vn`5%&J*Zk6s`RqG6`J$sdW6DNB7fmx83B$-{2ez!-nc93r}mP79FjJodi
zG2*US=dWpzs?oY@Zl*YP<`Xz;a^hrX1^Qi#@LE2oTYaNi@#k9iRlLWsWFGX_Z=M=a
z;~B(anfkOzu5`yf=wKtfBVTEc!`?P5thFBK>}#~SW2eqdF#Q56o@{Qv7U$0U=(*}<
z@7v0}rWRx2k5aG3RaxnMH+he3@%BWAS*K@Ug@ah~;whE+LIBk~HB7ZZ#(Yv*bTO;x
zccV0&h}-9r`D9i?U>zq5r6h{V97QtoB=3VJT@9+g2J0n!cu_EY2Fra}*{*>j)2tg~
z*YCv5Q}n%aNEST{V!!R#p<5{o5%<!H2qIsIXvz7Wnx*`GIW2s5(fj{ZOU;_L_z{^s
zTk*Jv{phU!PD~p2HL-UO^U5JcFll3r5*kC<pN;UAEe?0AQ6=WHd2M;WU&)Y#y_z0+
z?w0YDLEJkG;|o4T)5^Exh%{U3)Q)8XBmy|31TK#<9iP=FJ~ZCszN@bvy-S=soR!@B
zr?yQVgT_kNs9ZUKLeE1Gj_#pEkiYVUXL?kYo4m+zPf7QHQ^7683_13XWT^)$$GP-B
zi+FCqj6L?I%g7zZdf-*ZYKgwYoih!BVg8^(ggxhfQ*#2rw4q+MYTx_wl)8n(s&AAO
zy-biBGsJuKA#EsJoP*S28G17^Ls=h&CXgUlvi{Rq%<r~AroE;FSvsFk-h>NQL=Uj~
zsm{0|B_b5*&I(=kM)PnasAt!YS7^2ctq!#lcuswuKK&4vI#V7thjoW@k;+3YC0p&%
zC+MM~nXj2`cm5!)ujpjkE2ml_u84)lA+6a)sJy>`j=M8-ExV&<H=yk=i2K!E;AeR#
zKGwVxwNojiEFKo>E^sqyyQO+&vnBi?(hEyhQoc^Pe3`vmTk*Q@xZyW?w8@w7{DUZA
zQ>N`%h9{3P4{jXKrI3@3T=k`0A-PovX;X0*lk~fo`&`#@DU*9L9%?0z7Am=%I_76Z
zM%N^}i_QyMvbm{-sER_w-5pSvEtI!MVOMt$en38)C-8@c>1Rmvv^(EO)VELZ-uo*Y
zNm1%4-;8WI5}f>TT}WzM4x^KNn{55#{i4WZl@`S#%}~ISDfI5uMRn3qT=^CJ?k)a#
zQ6J<aYyS!>TI~xc5J$>vQIgeZN8d%`>>skDsh*<IcBSfn*G(q*9J8%zV%mQ)SkZDZ
z_N>X?R;K#TDP{96{)yISNK{zrj%|BP5yZ2YrP|uE$IBBI&U5QTd->zFX$DOlu93R;
zk2ao5mz`K8ZJ7i$tOWDakZBBM?EX)Jc6Fkh79-a-5r<V^V=DVJu{MXfsM_CZWz?C>
zBEt%pT`9AVnzg<)W@Q?;+8%GKAF2f?WFgx=3R+6qOba4mG`JU`#Eq=|1voq;@A5XP
z;|)<wk2OBD;0;JHUk7NMW?R7xw^XJ^+`F}UhcVl-X`u(zDd7(=cH>{kxB53u4bcxW
z3$*Fw9>R2g3Vzq}!e5uwNT*L7Il`&Vo}8KEN#n0ns=3Rp;a%zcWp7l+8{{>NA)ozT
zG}k!Z+M!yVqlo7=7&5`oC4isr<3!MEXPZGCt-vx}C_v^YCrckggKQgpc0<!?7d@=E
zb?J+fZWo>1I-ofhm<=rw{j~afF3_H$#ufk7tH$QL*^$}GfGSNbjq)d45gy4z=oNBW
zMUB^G>farG+i2Oj!%wgVJV~6#)`4r^a$dvyWf~S2bz!o1He}VU14+IDY1U*|*3qpu
z?lp4)>r*({$A^nG9{);cJvAR31n^3;@8WHr%awAg>FFy9-YRtz+Bcc38?(Is?iOZp
zR<D%SqqulyHWv-6IS-C|ueHW(zx`Po<vUa343o_pAF-Iij43Y-&$yIKbz6+9a9fTc
z6{jIsGwOy`<=O2O^I71A*6v0@*Ty}geh{Cr#W7Z|#!^?l#d%;_&x4Q0?E@L2S9KM4
z<8%4dXa1&#)~XRKuU=2hw)OS8k@*$3D*LtbD@HC&_g>{H;7Zlee1*9tsg2*M?F?Jf
zb5tEq_T(qdWA({`x+;x}ggkmJ9fyXze;sXI6`f0Jn)AjG&P>(Gnv&}B+cNE?uH2%6
zkN0mxT6K?R2W?Z`{%fJ(kd|N7INx#lN!Keb&s@=z-Bl#B#m~}Mv|d>|Rqm-JUsGRh
z)-%7E(T}robhudN(K3bOH9zB0K0mE2e*(1i&Z`#Fl2<o*2}&Nm716Lb_lyY*#oBZJ
zBB+M{MaHA6So4qLt!--UN{^n!v1h&JQs>%m)!(%<1<f()wbOOr^%dY7r?r<O?zmTs
z`|q#J+34#}z-O=KQeA}I*(&PnXT)zq?U)>T3Q%uDxsP5s>^D`8)uxm+-MtOSWIBx~
zpif$?rX|o`&ejHOU?5*pN!KVP?_W&I3!M6u&=&1A4Lqj)F)E-Bh$gRTxkZrt(6{X4
zZ~M7QooSwtqW<MbqC{?*chUOr`$FX>OqSp7rE7lyIQ?iDX!I@jRLEaW*V{4|CZlV`
zv?G`AR#*NZs3)z@@>^DzEZ>?etYu)~#@)ZxLtzf*z2>rCNRd0P@&7kZ`BgjNKSPH1
zgHk=e^5y*4q8e^PL4IrvCq3U*3J7U5h9^N$MhQbbAC;tIU!5`)D;6il<`E1G8)xb8
z7=7S67wkj}VIJ$2-h4Q8r>T!2RPYyDT2!KINr>OkZHFYPFCmQ4p-v*Y(|lGW9P`J^
z7uEbz265e@G2PROS-AZpK{6;OKuu_}Rv=z_Xa0Ac{-?b34qdz1Tq7sEv7v(;U5>(!
zZ<kGIS>#$-N+=le4)~5)?o=&jYKJSIYH4v9>_}1T?Vy@(M_hOyN_aQ6Y-DwBs9hPR
z^DwQjsOvOrtuf(vq?wA!#K(D3cp}WDrZzJ~2YlsfUU8&EX*0Ow#1o~sj8iKi?NzzA
zr(tvC;q-s_D80dz;w_AfKY)39%&AoUS0UH;Gye~!)p#5n)O+-8wESQEY}40cQG3*_
z!Hc~=*V^NQB@z$Zak7v4EtdoOU0JvBhWP_IdrZSkd$B02>7qnZKkuTj*?hx6%3S-^
zS3^NurIhAD)TlE{p>mkl=aC07%%28-640HfRcA0rI=&rLTWj31_f+*m*SuFM#?HE8
z-2U44PCUQ7CXXgnGIASC-H^%kCni25<Cw<)VXLOB|ArjAp|XXDZH&{%Kf$gwz4<ph
z>W_Kx_|`OfHTpKKoRDPXmwm*=vSj5Lb-TOSbnSK&)&X7^4KI5iJMzcZE4I{@YNi5F
zE)pjt1DM!h(ca-WY||#@(%ZG(V!E;<LS2t)y9C^po=zhIlDhonlXW5z5~jT@0y(Fc
z37dbH?n0wpEogHGkWz}Jv}TwSOl=;>4m78DC&d#*bqwO{dldy1_H)U5taR<R_VZL;
zU)f-W&&T1fS4i5nR&jN#zY!3+cQMgt7c#E4<daG9OJNMus8j2hr_lM;XCJ4;FA%}v
z@{aqw(wSng)i1OuEn)s%cF{8<>I=i~w^1w6Q9m#>7pHv4!2R?b8SzB)&OM?za}q4&
z{T?w<+bMhqTM+7`1_zB8&Y}3uBlQYj^XQcx9pW98q&^J4Y1Gcah7TkT_EPOJm+8}+
zK8*98TWTIonlwMLmHR$3x}-N9nQ82>SD%&dn8vDg9R<-pD_4kUDtkaG$g5%oNRJDA
z-J|s@P9w-vNtjxTQxuw97VA6(c9l!}1Ln)pv@s4Rn~e-x-bJ7L0MATK3;AbGjJQDs
z^J{g;5%U9hyEF%bI#L)(Kj?l|p?x@TzSa+U^d4&dxj95<ibLD*Iu!CLDj;Q1Q5qeu
zT`oE~LCQfY(hdzwO5cb#kb}P%8P+m2ZGMktk^KH}R6ELwR$sI8+^ER@k{dM-_T>*N
zH{W!J{S-MxSF8Y@qv7FG&TG0UcHGSP(bIZkZ+PQ1n9do-qS%_f{^41phN0ofW;36m
z4`-U&@vIK(aQco&(psbwG6~q@$Um^;NQ#Ar$Y}und#}X5)}(WfuP#yAcG5}x_;y{=
zJa&8qQvTH=k}R&ok>>ndgz|mYPDD=_KYAN2>%ibx4DA3$gVwH3arFj*Jbi!h7o!p}
z{xN6$YLYuY+;!K(Qkh?I7ocm5zIUX)<U%h-B;&w#6PC=Wm2fEP_juEk;*B_<FY)V`
zh*)u!a(V7YAT!|?Y>}EMU(-wy39N*%r?<A)k7+o@ysBZ=pC~(o1x!_>(2I5@;$ByM
zxTc|vN1CG)C}hC+uBaN~RY9b-n8lY0%Q0qL-6(cMFY*4g=aDk<l!=|*)(^!DLjw1L
zAE?RB_^Uo{OPbmUyM~y&(%0$J@?p_1e1G4;szm&TA-6JWur08tuEnw>46}Hbt|TxR
zhe5k{vS{5cWjb5Jmq-1r7cJ9IhO~E+S~AJi)JtdrLbxZGE6%+|4J`x>()<v~nzLb*
zMhPoZ>3;=LqtVW_2@#yeq*TOsOP#Ky{RH6w@`Hh~qd{6UnV=a3B9%}O@^h7StTpQg
zq!8e7Z~|jCoW6}xw8oD~z$;qv_*=z1s?>`QU1CUns;sN?57Lf^xUH|3pHiXdN6Q*n
zQds`hL;j`I%iQ1%+NgTLZnbGGYXXWu@6s(-dily+-mtw8{7XOC<b+soU&CEeza9RT
zJm$E|u*KAai)7QCkwkNaM^xIRro<>5|F$%JK!kEjWZiXU45nCq#kH;va?{U!#@Q?f
zygY`l<zg&N)OE7htsCmoD6Mo+SW2tv91_8Va_5yqbSYbYW_u#90!K>Fuu((5efbe3
zlg=|Hwvac;gI+vE^#SSo71Lj8`ZR5m!0+sZ*EEh^%qrvAp<O~AF?T)Llmimfw#IHB
zkX|+7axF;Wn<kg<MXA@6Zdtm96J{TH=Mvsox=t3DS9jgTD30^{M}zeKxynsDGR!yD
zYeo?&C93VuvMDm187YRn`GZSM)o46{%z2XPPV@e~7`xz>nF+_DdUX7?%`RTzNb|S!
zjvqW$W|^8MF(#V@YNza&#VmF8&d(ik7_YNsy&+_0>8Y^+7kK@!YQ}yG1JTVT{Ije%
zTOIE#G?68P8`ZQ=Q<YfldgKHXNhd!lPQspxIU%NDTWKm3`aOE?;y#n{xm}yU(m7R*
z-iXMks@-d%LPZ;TJV!&vB?ifvovP<FZgNJdbkOA}CW*nl5{Tg#GFNG#p>(XOyTsW5
zSG0q9^|~yft1$4=pNn62t+`TRr8qHJBG{Y0EZ4kq2x0)og@sjQF1uGg;GZ2YLop_(
z&$+MatfeTuvsRkHAosSdfxaAa2~3<0$t1Iml`Stmg{%3YP{D3h@vZC>;%%{Ch31xE
z>h03Qw=i3&ImS@${6(j_F1L$J%+BL<j}i5Yk_&Ob>GGD{o_jmLm0Zs>F3&Ni6ib3q
zjkD9Q<p|Z`K7$p4xCHe`lKHkQbM2xw@f$n02~HvZqRs@R9#{+$<LdOg>MDx2JXkJs
zldcLC>h;_;f60=B<Eo5poQtkJaF00!Zm1RvfEA)Ac%CKoo<@0k3+)1nKM)(bvA?!k
z)3}Pnu+1y9o40U35?V0O+~jpq<+-J0Nw=!ZdOyb#v|JEdcTbY^{SW5Z6^1PVu$ph#
zk>WemdOLr4zK9k3Z7&snHSFIFTfizC;fhaW+5VY|PjuP;;&^?Y-G|?|=Kal&+tB(w
zU3%UlIXMZ5U=r!>2lr7#RPSY0-Bm}O>lQ|_5Z#~Wkk{R(J7eU9#eDWL8hFi1#BdB_
z7irc^?^4o|#@M@`F*3YH*Y~K5Y0r+jY<N2f+($oa)3_ZMv!=m#i**IT92~nCZgy$;
z1lu=BO1&D@RB|=(mVm$BF~NnZNb{xMxVJ9+Ok^gPlC3*H+_N$5PWn#HQ7YyiXfMNS
zIAHHB(QP{0E+$mj6iKAttl3LZ6qzm%i_OBAQ$5clJ`ji>WW^+&Q?-*L;Gy0Rrq18#
z`nmb_@c9kZUj<a-I>Ci25XZ;`I}!(5y@}WlThQ)+iiu|l>mLfCD<aiGM>^UKTO!?=
zk$QM0nlsUSGWyFO(S623_GYrmIh@I%B||aZF6!;lq_Nm<iyDN~z&GTkn9|{-9Fd6}
z_=q=&(U%{{-AGVrm>CFa>{TPJ|3Gm4q6G$G_NSv=XS!pBy^$*8KN)qWmL9*2F=5)=
zas3eGr;2KrhGrTJa(w!J<?*^Sk6v|+TGGBB*Yy)VI64kDjed*8T3=wAz*K}|nwyi=
zv?7aN^_Auww=2x(_vTP^u0&7v18Pxzdum>yQOuBCQKzABW=XLGh}X18Cp{KtGA}kI
zmHQK{E_g2^n)9asw+i;Sh4t(<pHT({AIG?RokZ@IT`VHqAN;v%nf|a)$)RpPL^Jv<
z9U6|D{$gB;bSCs;-k+Me)9^W?1p;<b(k1oSznrS^ia4orqSDcO=?RO2X0dW#B_dGY
zU`rZUrbk;IjsG&@owgSVYmwSCYuek`-3ke<kQ17HR_^F7CHhpJ^u$8AG9gVXOHC|s
z6;02F$!4H~n|v<TcT0_w2p_sEk)i8cwA?8%efn0e2k|$u$GpT>w&ZxPNymMz0I-z+
z2Ksbka~buLyoj(#hTv$aW~*TI1G~rW&jT~auKiv;eNRe{?`!_B^-M7tp++t7HD@8R
z;rQWDe&n(CH!)7%ViU$}*%z?$I@~3m)KMOic`y$?60IFZ;aN2`2%(NSMg0boRsOgT
zJxg<KwyP6UDGt1~hc%B(HJ1pHXS_Lny|%5n=Lb0<^9?9Gnwl=f%T9IJ3$1qVlkz)b
zkM;16A3RF~O^%w8)#GNL^ks-eZiB$}YFj?oDADbmxZ%OM4VO}vby!hu6slgpnQK<m
zv)UFRb}!B}+a&wnsZG~a8zPUCZ-fNNf2tT!9C?qZPVZlv!82H;MPvz2#_W`mDvfLQ
z?sdA}?v302`G<2DB=q_9Tw|0Hi^W9k?wK~Q_CnLfv4A)~TJ3DO-1P9fv@W)$k5{bj
zHeI3(p<|vs1O_O5in|<yj^bTv^YA#!(vfDU;JXP$X0mu)iLufF1>kIA&_mEg<n0kU
zS=~dFwRCgMyt{-@K?(&eo$wW}c-?c3aDi0Es+9&W#^-D&uBRVy`y_d0a$9&(OA>Pp
zrf>mTU<%yd`OnP_4>>sZfr-9KQ@?&|)|T|V8U6xd{k8foy{q|41q1HaStF^)m6)pD
zBu_*_ky13jI7)@HHrHDogF7Y0cCv6biKlbZ((-!KC)tM81xA=2GtI|CQ_l8)Pfsc)
zQY`D|xqWrNnpuQW#_7+A$ww?xMt{@{uyYl68(>**jn1ifl6%>grzD#_dc78DS(QzY
zG#%}Uwahrd)XeM8>`6sh&xh!2q0ZJc9nMio$-Q^OQ))Kuc+(@N=z~T^wmgZ{mK+^@
z`8e`@M#1G?M}jAILQJ{$^6BGKBoW(A^X&nf;mA0*Bir#rpk=W6lT@rz7t@T9^--%+
zw-a~6>f@l6#quXsuGppYMjN)dP-LTyHyY$uN4yrx&q-53Z0cpgMR57y+GUTxeNx76
zO`cht4%%4#cjcm)f7q#!XTUCz#Js0eD^EXKuqy1E(vRC*&_TyJePsbdEt!7^%f?%9
z$xLPfFP@oCCOrNHDLm*VE0U7pW`~Wg&3jtpR--<-3ana<J+~^|Dl~unkOY~$du?n#
zWU+nFm>UPt#-x^#id#I5f8{ub0M9^KOQ#|thJ?5P%bD2?PZj^z`G&8ElVf;-{`Q?*
z_)qul;cacHJ%10u?4Di&2|C@yfaoZZe>)xqK20-N$8WHX|9w#)7`v%>4X&)6Srm_;
z*Lc)VL&@~2<cYuj=CI7CsunD=FvH$Z=xmM+&Z7GLhn_puUx3;QqQpD;y}#uhju|r9
zAreeAFLcG-7{{kZML1Jrz2DQDDypD)b>r4kC|XXpb@uz{!!KTh-S)3^O4qyY-~;E!
zbdW#my`Dgmp}I}1oh{M%dBK}^;Ll($wt=mv_Qohy;Jh}7Sy%n%7V^YV!FO!aX};a$
zoZ&A_Zg-JrMq-=W^Uv$fQHw<xEHY*jr^t35=T0g!1|~k%OReM%J{2SS<Xvv>H0L6k
z1a5d@%Yd(=fsN2k0#T;Jqm-lgWFsMAQFOzqYrv1ZsB&bYK{9vqdMeX*y!q=kL~#o^
zi9Hrr!C+t5?y}rKA(OR;sPs?t@Uxkfo9p4LO6^Mlu<4|v(;Y!R$CKe#QK32Zrt+jt
zgP#Ezwr=B;TL_1biJ0d%+{8yDedEIn<NW&bJ9>=Ui=w8{I~m)D&NY-<oN_xeChpnF
zM`$Vj#y7`$qGM_!tmGArakujx*N&8Sfm#GCt7L6I4TMxK^e{^=#Z$kz-w0X|^2}8T
zqq%2l4FO!$2^5w}MK`3;ZsGYvN!R2my)_Yg>NrjFs52LcPc&-%Y!P*@0$%;mPI{CK
zjq8aVp_r27vuI2tXMH`GPn~%8`5=E=@^3l`Y`s82NK%4L?z#ZdXwo;hv1PD^*Cbr)
z3S+4KXRceEZIUo9i=JQ47`co`?WtypGRw=nWvkr5rZ$n7;7huN5%(Auadgh+ro1t3
z_-Ti2dh;oUEs7<|*=>6L)A8iT!$~)pT?|9!Ro?+jNwbb$OKTC=_iN;;A{)34;gMLA
z_7*GO*{{QS#l6mdN3?=4N^AOt_&(il>06A1ZzGs|{jH^2c+r}i(2X;}x*07Z=A5E4
zY8)mzA2foDx&`ju@z=u{pANa8`O{@#iaCdVm2x|hw0lx^Pm=l&&2p<g;ehP)WT6We
z-=aHW-v6(RnKFNmm-FoFhvi6Uv^+*e<mg|Hv3?84D}|7gs8EIkvQ&v#h_}y?j&4oe
z-7aUIyGOrbu;1*EiKq7RIm0n?i*cAaMV|X9le+pnKd6KtrBavM5`wxiCFP+;xrqUd
zd_6kwl@gU=^Fy(u#bsb5QD2%2hmW*HB{bESki1|?!?G+5VW^EW2BF+!$wDpDcbg%t
zj2hKv;dPq7zQllh@<`nvMl5u657o3O<7-UeT~-rbN;J-~_(EDVhZg4dWZK}0NO<2E
zXv9LU+HVD+Uw_*_bbI~&cE)r}UN@^vfTn%KM9Q|@%O{VmKG309q7}=MeEW4`vy!a0
zs+rd4K29C_x_;z4)0Vt~1up(Hq1~_Hs=_)+PJEs+4I)dq%yx_9&@Rb1i{nxS+C+`a
zG<c~jW=5-$QVUD2rRChxo6R!a{iea61Ix6g#C!W{J|m4ALuW1qk80P>lSVP*&SLM=
z{|unE5=(@UkPR2H1hSH$^N~h3hQ?2*kA7o{IIF{>*_}#c*87#NHXSM$-Iy7F&Dh_q
z!<hHibw=_YctGRk#;#Jwu=1@XaE-9f?)O})k#oI0z$c1gbaLOLk>kWIa>55SJ9;m-
zn}o#?6H#$!UMheuUjFv?aK~tOrJp8!Pv*`$Q$k(v`x;B|HbSS2d8Xf((e6$jZ6V#E
z^ZPRMliy)<`W)X`7R4lg5u7adMCkntU&yXbbD4`<6rknPl_uPJ!tQuva-nn4wP~@T
zhADp|&zIoEQVvK<9XW8e<o{`UnWVC!ZjPS*?yvKVrB9^;%gKsbvk$q=rz72n2`$F%
z4_5@g(EAm;b4xFYVV0^}I2-ySMm6sx>OwBl&8cv}gr_q<@fvB;f-{$_N>7Z6Tu@rI
zD_xBu&-T`5t6Qx26wWk#OVORIsD!EB&=Sgxsn&w0Zdq>#qbqg1x_zGQqOV0f_AR<@
zo@KM`b|1}MekRGe!l4-lJ%z`cPkZ*JU5C&*6b$+C10KK#Vj+gNJT}=uIXH-I``226
z(_J1NXia34=#~5{pB5p>?XmFHe3v>B1TMlXppb{1@}Mn=9Gf5h%Ngr1!eeAI82ty0
zQ{~69(2fM6t8aL<o|O_~Vfk+daotyG>NLvLt}b5r*iL&hUCs*AJmGeKEa0w<S31+i
zc|=`F^HXnN4+v4rRTsIj8%*!)I)Qwwm1XurYTX9m4@)qhMgkXRKNiZg-QzZC1l^&1
ztuzOEe5n(yG%1~4&MeIp12+cpX0%|X(swl$D8r7g7l3Q6D*S~cog>fHYFmCW+Pr<e
zEC$riO0Bj!quMkN;T4iKm+4JP;{F@F)w9BzMy(^~q_S=A)PzelD|c3<Y#=KmPxvVt
z>6nuusZM@%Cwkvw@UV)rmP*g|b#F`=n}RhL7(0lz8w_unQ=WHZR+(EW=e_DBFq$=#
zx?SLTTG%|^^(fC>2&VoEx67#BNs9Z}QX7F8_0Sl(o`%dbHpSy#l5Is#?sTAclsC#_
zAWvH@T}dJ`Gp=q`Z^E{FUf4f#S^jL3N6~^$7JTGbdgi5jL#MHWsP)*~mecGx7bmU$
zOMs+W{<-?EQ>_4jiDY19*Y=~_4TzD`yhZKwE?Sdta8YA>yO^o4(@l5|?8Icn6`6CL
z@euwl5;A31ID2SQR0`FiOgIfe$sNOz`>C)Wd3%NXh9U(ohK>&^__x5^doeXgMXk>8
z9)*?*dWCDWBYr4Z1iige@x?l{d!J$ik-LL_mQUKmjU`8ERJtaq8eg8A`>OSm$>7wE
zwqFtnQWa2ZP7P88_7)&4H$8RN7XM=5|8?NZAlbyv2;?&j<2xG5P*@%kHpG0bmH4jW
zb+WH7ydpR7QwM?kp2oCbhye{vj55J7C|yW5X6S-aZct~{rM*!ij>`Bvo$4r#_TJz4
z*B}n@Yi&yY(Be6MIr%{yq^Z`}x0~<`y86^-OhXU)3#k<k`so)YRnZ27dBjqNxbmGY
zz~(Pnt?-|1)^VK{cJkQNT8{ZZlOH2gl5H1@NoZ>@GkHgBzk-|ga)w>>(3ta<m=Cl8
zFh=CmSoD>_f+REt(lEI?td+r!T@L7N0I?yJ8XQe#&q}MfnbpE_bqJ>oQ_c2wXl*Ew
zz{B@y^>sVWJyz79<5|vH5E^o_@k(+?qBLqh)8Lfh7L>H`p>6ypXKN(e-5oiH{>q3+
zOJIbe$n^cMPr`JccKxZ~^G$tw__TKTTu2WvQn_%w8kO)LB;=p8qzAIUi}mK1b!#&3
z5xMHQ=%pooAyX!NhdIfyo@TK_h_=q~r#P?Tsbb$ycBq2BYe2yv)GzKZ1^X)TV|3Q%
z7J80s<0tGbUm=x0RveMiy@lhoN$&JEZ@D1yB%@u1=DopdX7BbgC-K$cyqG5HaYcpL
zLg@aXP-ycphmZ<?mEP}sofKp@+#`3%BgEz9)ws%e!KiR^rpodg*LOuka%{kg@=SBz
zkIDWzQ1V|~J^5++a%^mAse}WoRxZN3JPX1#gH@_GL2G5f7A<{0*t7|%9aVjT3EyfH
z5QZ;oYZH8)lE0{q*~Rhis=Fh<NpvCJ`gvt0UyD`s!6H&u>FRDLg-1+gbxlxK``;@8
z>Ux;=AEP&PXQLEFj!RbPMwIYZw8L-2i)RsM;i<p3`TqD3z4G@9D{m~1yF`rQwNfmu
zaq(Ra5k&~YpH)9yxjhz+*gx(ijuHmiYA5!B$O}(dru(^Ga^BNjHf4>!O&Ax5b4!2E
z74c}PWxjIvUe`$X;o|=rMbJ#+LI|Fr;DwEn8d)Wm-xEhxr%XZq++bw~gL~p(v#g&l
zioLh%JgcOCN32kMhwuh_=NdD$W$f;-BnSuz%xOLr1^<r9+WjXx^{j)?@s*LZZLdxR
z$)F4FyJk#zY6rELcLsLeG>DE1)_jAlWC^u80g=veh$-FAvZ1Z^fwEQd<&4oft_4V8
zp`FN}$z^aJDx_N!v@bLQ+UJ6)-(XKzLFrCFlQz(tzcFC7kRoY(7`51fH08g!cy<#L
zL}>X5NEr%7wpj=B4S^OoVEs4Pb!O1W6HvbH5QzV#`>$jO8}TNMm^KS`o`JRaU4S?=
z@)U#>4&M5t190_XhauizulIp&m%xq&10a5nY+wXF3O+0wb&Vv%`J9>*X7-7MQs|>}
zJ6mi+Ja(GMAP9>SwswO}ZVuHy0nxEpLUXdp0#yr6&CoWBp=Tx`&g-V6FtSgil&cQX
z?X<BMa8&L>6Ch(#=<yMie>AwR0m7^Y1M$xpKNfwni@iWE^pmE1(>f60yqAOwT37<t
zfgnQip!1)gNp@JL@5^?{6B<$)o1m@;SWO|ofa+g%Mi44=N!|g3!r~CzFcI(UNo2w-
ziTs%N5xT(%TlNL@T0nU`p@ckQN{<tuO3@QsG?QkF2(SS%|1Bpej9`?6vZfVMg9>4$
zfg0OE(}_%Mgn{j*jv#Cy4RB9SVW8?Su+(CHM!+lB=MxYckA#k`G#_tlLmGCSzyQc>
zkO?Y&OhwZs!S^lxqHY(E?Y6=gkH|-cDn~)34h*8ucNF*b^+AM+pMp@J;Ip?-U1d%f
zC4{*ql6?r&wFI6p>;v()iUKBZiggw)?2@E3=z>K!KgS@0UY~-x!ohjeP~dMwGGY@)
z;g@Y0+2&9xFpU{t0(&1dD*v1*GCUBI_A)lB?h>3y9hr$GQ6a}FyKTNHR5F%b2g?Ku
zQD}sW>3s+BrxpY5c~D2&M1h_Ohcx_PB!&I1CZR-M2A4s>dpNN6a^g*EDI$F=U~9bu
z?$qKEQ<4PKxk~_(m^(j%pwZP1pewC+qC|Gm*5TkZ99S5M2?m7wh^oc}8id|V^-l$|
zGfNknfHoGSM`hn(@HNcbJFo#_-%<uI)*qk1B<3#zl78P0+GmHo?mu}U^#BIzOrSZw
zVvj|l7sTPtl!c^}*k9WRBQ6ZYp$4U~Sp6U@T-bYV7*Fhly)e{{Xp>kF#$!iJRqm+T
zOYfWlR)V;zBf(Y{ma#>e+u&i%o=__ohz%R&Fv$tajlIwih6)mIq6)%dvVk#Gb8KiD
zLe<!gH11!}pbH!J;_bipkU`2z;5-lnJ)S)_bf0JwUdp?j9EKQskw9kB#{$^82e7qw
zo;oO>#$6c%4RdOw%JG*+{Qu&|l;h4U?t&g7q=L1nD%Cy-gd-VbN23V{pMcm4GqKx3
z(M8u>43lXfuCW%uXRjeO5U9r_7i=ch*-ID-n4CZmb`AhE*9xlf@z)hvA#VMw3Ec00
z4$?$A8*rPBf-n{nC<@4=xj*(oUaGy090mk3njp;V7*Hs_8gNe@*b=8x3t@BR*a5`G
zE71<bfh5tUu9&w1<X;$geop)j1(E~A;I@|3P^IA!;VVax8f?tB?o=TcA^Hv=<E~bC
zn1CQ`$pqR6!6-fgL1J^h{WcMX4ru)@B-<Rr08G#fm|%xo6;zJfsTbmWh)fFW;^h|A
zv6I%pmC}ha9FOOO!9kd7BiX-!ek_AAmw}waBLRR~KlXxG?29aAPQ!GB^VuLWNd6S`
zBLX~+1AE|x{fTw97KWY@Z^8+}2(pQ&%Jl$kGJG_s{3E7>X|X-m&Bgg#)&H;92{ZZ#
z4UcVTAcu)bEsn=uBmw#a5mVvI_<o@JmogPVjV<NWMm4s)3TIMCX7Ys{rVhQ3j&tUN
zjMYZIY+E2gJ(*zFBg30d2$4jEkq93MLqALsdP3_~NGQizA!FzeZYkoyPP5pCP%!c_
zRn12zgD3RC$qWFf44_TB8JdZp*n$+L{~umb7#1n@{|TLVHcl8RkqLm%ckE)L@y^2p
zfM~mbsaZM1R%1KVC|6s)M_l|$Lk5|hf@;}eYGU4c5Q9EYoG(b59riwA89RPs1jMgd
z6sY=f{}bBg4b(A0l+U6XV>7E31DnJXY5?967xV6yk98)6bhFRK1LWUwJi8MqfHiGE
zop3e==n80!Af(|O5G}?51KTx~Qv@9{z#7i*gLpGg%Dasm_85B+OJ-7h3OG~*7?aN-
z<}bUa8^RvYg<;b7=l`lZ`9DGVX3%mVPsfAv8X!XDfYF$wWL~Ac(FRR|J13D~#-|`$
zPi|4~k@yP<A`|Bpli2rtAm#t+PM+z1b!Q1kZ2#3AEjm0gHpL@q_QtE6Rg?d#^kC9L
zpRJ+!951COaPYs<)13><#0$tqM`YqBMpssy*Yjlso4l(B9)<{b0tPw;ZJwnQZ%RtF
zcag(B#X5f?+uX?o^qBzwYH-yg#uqw;feYF{ZJ}CiY=(!ec|!GJAS`T{NIkolGRKd|
z8*Ci??~$HR$u0nIe*wH%U&n~?Wlyb9V#hCAi1WE=BSMc)K-y4n9xZgA8-^#Pqm5;P
z_7Xoti{n7GdO>wq?1iV;7emUibq8@iYcE8ohbOeTA7u7}Xs}6}*hF7SM<45DYbNcj
z3S`7{AS0p&Xi^Eu9bmo&QZFx*<<I{K9vKjqu^IGLY(on<3_*%-KK`Or7|_S*CGTc}
z10@f>VuRi{LAqzLO)AMYb>bTADm%&AbRJo0TN1;)@xN9rV(7$a;hMGjmYBvTamKBg
zl|=c^LNDD8E|@j$FB8$6s`b!*%{hEXS9%=Ycz5S*Fwjhg0o?eJG74lNhy67(GJ2ob
z&RxF?lIxxlwWmoPCuN{H+LQJ#Z;vGGik+at2<vTO|7ntoO_%F8RjT)~-5buy{%$?T
z#wgsYajoVa<EBZ*@$Ru2bBA+bu}Y_~D&h0xZZyf)Ai0H)p0Hd0ON>cN%{>U?cHmH%
z=zHc0wC8^scX5OU&&PH9Wd!H)kAf5TyRshRSZeB@4aOsy6i@{`Y-tH^j7}B&4Do#v
zET17xn__+*R7$7YVyfDLk*<Xd++exYZ{hKWVmSg6;YIbHth-{vc(~*rhy>@sW+a3u
zLna>LbFn=FTYullIP}N9jiwPMplIFCIqn$J)|PB3r;bM&c_ZC8q$40ClKMb)Hf71Q
zr7T4A6j4ateeJGpe~x1siI<3OT12gfV<Iu8sX?w9@JwN|L1rZRJ6zcBcHIC6gvxWh
zE{@tGen1;SQvxqb>5iAM{z}Y=y3h**iYdU6%qpUkRMEix5Ce)LlZ>edrrhxJ+#geN
z96Eo<+ke<z_1hccKTi?%v$XW`T;Tj%p3YG_J20$fpzqDe!y%C;<hLSR^l)a$)lyK^
zjd6nGb<mzFdzr_th&4c|Du8w$cvA{|)gW-@W?;p43zr4{;3vB<@M8J<Sn_Sw^c}Lm
zwDkt4gpF@l)-7S>6bb&QTg35ksRI@>>v@#E_14>XK1tjkd|QM(zduTM%i=1#4M=nU
zmXrQh{5Eg~yq|Rt^_hQ5Me$!8<g6<CoPR4ZYw=m0)~GIely55_tGy8Nq>Fo-vL(QX
zro$F^k-t-+Fs)frzGVHJ_ocI}X%+tS&jCTQ-}H+91K{&SQ(v1!76wlv5-t56?wY!b
zz<R3o$>l0+?W_~ZS%KqED%#Qqf=eH)*))$|PkLhXA!yFu@YuzC3yD~Sq=rc_c3ADw
zoR8Q4%1d!}l6+FgX;l|J`;y3qwZ}~>B2mQocEsXCsWR2(qs*2>F>Cs1Cm%%tcs<CR
zx99n6Q<uMpe`%f2A!1!xW2f4F{#6;@FAV<d_Y#nQwj=gg%Ra^Be6%+Ya%m;*J&(Z8
z@gd~ho|@E_%;x)JZk;y=wBZUKa({E=)jIR0DwSk)O`wl(lh~EN)K-!1ow$`akMolK
zR(=$HmJSojsdhqb4aTIW+!L`Z@RZ&Agx*3xS&e$IofF(W13YaM+HFGnc35aaG!pI-
z9^S=~w;-Iee^ZM~rJjcC+y_-czKIm6MS!kg4K1qUGf{<dQs$88)A8Xw4P3wuB6oa9
zU1b@^tsvr!JSP`X#aq!T+^KW^xe8;Fg{Thj<pxor`O}DKBV05U<;3{9G{A!gom*hI
z=BgDb3ogM0sbvsFhR4B}<Xv2c89F!baL$-0DO^*0aQr=7B?(XN1dnMQ<lH<n(VX0@
z00PIaAexii^BE7@4MJ?~nMCaU0pSrnfdbXK1S`RIdFybMdvBg=YL$j7B;@jAG;u?S
zmMb93H}pENn}zr5u}c~^T*NtKkT9^U+3HC^NpQyTfM|8nm@yGOJf#cL?C^^$Q|OK)
zZe~Q*ib=W;MMzob3DHR0Z_7y@%WMZ$5s`g)hI0l)iQ$%HM6p~E7}?ct5_d)}-{veN
zj}@c4zoC>yjdE+|sohlom?WaNa1D>S$s(*F4Y48N9U_+4x@*iub#S4#ydRFWqVy$s
zhrPp}j63B7m?aYZIxwjtG2{ro1QT9(tkQ<6x!q<ASaeR5f+q7lmkL%e4G#9cW%YEY
zt^ox2;NDcZtmUEwDmOkQ8_v|9oZxsy%Du1V1(V5R(dgG`qP)0M=^~<4HeWPnGW^Cw
z%ag|-=<Ya_6u48{Ikw!synuJO@0|=}Io*OFA&&4n?+~{BUyJzVhSbq!x}c{7C1dwd
zP9DE7p|f<G$q@V@x<Q*sN>o85dW1XGkz<R;5otGI;I&S1EuD0ai%5%DLI=R-kBFM+
zn4(odm#k$i6OOfjXc>6Qoq}?%MbQn=r>9Re=xru0(Sc^LJ#E1|*DBTf4nQ54w^^bL
z?|ah%b+~(IFyA{r3I@tOU-pDddt`s6kTbX)EQF&?#F8xDKvn=Ky68Kyyk^7|DiPSP
zIIYc;lz9GX17<bohA;#*b>xL)!IgmjlO(JBuZ(Le(6Q+rf_Q^0g9bnM2VPC_Q`Qef
zGuF%yv83@VZQ3d3;4#XAogCZi)GDys0&#^{6MtTa5z3GqlDjZnK@dK++fz4Pm1~nv
zM#xvVAuFVTj-@Ou9}z$hUvv$grR(0eAx}s{h6q*rfP-7yL;%x1qR&z;oeYXf^1fE}
z<`Pa$#huaye0)w+;nLI*ACiSw!T=wTu0E4jRmPDX>1DyA$Q$&r;OjNPE5Hr*JXsyV
zfMo>`JrsED4AMp2;5oB{f4U(oR|aPYeiH=`@9`n~B2o&14uW4`AN~q}ec;Ce*5N%W
z<iD=X0g^LU;z~SndP6*>j_l{1N166}f0Ym(F%lkLWPgx>=lB8*QA-*pLT3Cb8C66%
ziSyzg!`B@)V`Sz9>%)6`$Y>}suMq??)Z>o64)B<==6tckP~`2kDu9POl>T1`PI63L
zm^c5$Ky87eyaFBYzcA@wbD7D|pAdy4k2j*Xyry)*nYzreP4NQ*MxpMWw6krxr$Wp{
z9Mb(C-0Z%K&Lk_I11m~Xi9S&kXuZI#hY(;wIwH!IJZ_E5coTz7Yg8DZ#y@x9rwQ3R
zV^{HQ>WBzghAY8`UmHfHza6dmOrxFRmBk{@>%>0wF&Lc&NHy~<5o`cx?M6kJlE$Yf
zXr`!xnQ02z0QOSn)g&BVNg-`C*=9rsWWnY*Q^PsIU$sTY)+`DfhWAj=-Qg+sQ4buI
z6kqF&DVo(GoqPDPEL}gSA_yZ7LH=`)URws>AY{azY<npVm8Dv-6l5PxR|H>Uc#d0C
z#8Y`*Z7vnR;1=2fW&dD}nLsT?vojGyG8x`pvjQqOpZMUjeT`zOLjd@1FO1qgCy(2{
zmo0D)?*2d7Et~it+1!mA@f3c@5n=fRK)xq^Zua1+6}mg)lF*Q7I=pLQu*hholtY?x
zT*jw8MQ6ff#mPyW0|wDNY#>XVLtYK6N+ADzyL2)lir<E+in)_{0B~uuMFn76i+=6U
z)DaUR0AGR#?=W5|^*!A+E~6UOweR>gdx7}iRWLg3|FSg^a%ZZ&)}tf>3*rzCLd<U<
zd`Q2h0HS<CcNbiG^Ih}-z9~J}Xsl8ysEUMx&U<BT+x#j3`7Z(G#(#noTfBHDH6-tC
z_L(tl!Y3mQv`dW}fXi`1Z1$kR8$@CTOG4x-^n@5Byma+ArAojzi6NI|8BE0VIFz}l
z2c}A*K|pFlU%yLd``$e$3W4X$0WyUCj2zp38HaXm2wF*orlVXzDx9v8=v+XsMx2o@
zP&HVSLq<w6AjAg&!EY!F#&Uv{fQ-V*p>mIRC5+su#I{INAkWWpN-@X1x7yuUZyICs
z^fpAOe!45yx_C9_jV-s&D*&=S=o)n2W6cX};VQ*MuK)*20uJUyoKxn|W>>)z?Zlp1
zc>!#>w)0Fz7fcjGeXJUt8=0~gbReh16Jt0G$dUSmpiPm3>6tZT9?l&9e+hEjssNK=
z4}|;|n-T@p`s+&=+c5$0*E1@bt2Ty+el0Be6;j~kR;7Bt2o$e4Z)H=ln8Qxm5LbtC
zZ8tce#@r?%nATw--pFu3h$@gp#ZW6gzi?^M1d@S~X+a5|8$Y54q6{~DPl|fn*c^bh
zP#>=CUwBvg$Rt<^jsMF83mG91B^jwt38L3u(^`>c7l9JU;=%)<<O!Xd`TLs*Q407S
zZ1|hWN~w(s5{}!~h>CI?w_H=oaQ7j>fy1an2E{;*1-^Q^n}Rpf&JyC<iy4p*`BDPs
zNq`bKPGqeYvy>SEgHuZm&bo)=zm3<3%MctBWh>1XC88&%Y(#SBqbqO%Dta&H)E3?q
z8lob?5E8;)p7JuE1=pDjrXf;+^pXtxbD07~xFt~__dKpo>j5UICbl+<xko@GLmUDl
z=;h*0IRcQEMsMN&zWPJ77h%T=;qMU2P)BcB*5K+n`n6mP!<k$`w;*(=Iqa-{SED%a
zxLs;2?iWUOCW9p%a@FgE<^P%FOGJogd4@c3g`g-7$T|)y!7a#v3^0fpdJEn6e-R;N
zaORxwWI*sKF1W>I91jT!e+C3RlPzF@8>akU+$5sA3w?hxC`t$CniDMb7f^g*9>_=f
zlcIELV?F5Cf})N%Q-5=8H9jH&IOFV=yf%orPYJm^#iO>STQgosP=6_b0vuD}c+K1S
zI2G`sM_?5?3d;SbW#s?PPY%>#I-ns*a6iL>2X{1zHvqHxeG`3OnvqUSk3p%9dhkI>
z^c8QFNRol>ddXkA7~Q9@NXy6x+8_Ws8^$X`Km|++36$rE<eVyp<Chgp6cL^1fdC11
zf_*9s&kYN44S9$KLE!&CJ8_D+r$EH_7mxbqH1*h;lSR-J4FvG3^|uc+-%l>mk!;Zu
zB3?{*PUf&h!to_H1i?4+5PkMF<uFnUP)Cb_`o~60-;nMT9b$=KE&v~Jh`6(AtPZ3`
z4#ZbCoTHB{A#I2|nh3r*>Tyz5Kw6VeewK<h+QUZv`-ZaoMeG;IpLrlNu8sPqhn&Ih
zV8ZvDz3>?QRmR~JA2RZXGoM{$C|eBAH~BvoM~wrh@4R|i%IX>W^DI+f31=hrzv4AR
zT;a*)#({VPFXM!e^&guRAlaW`AXlx7b`OcV9r#rvT}vtP6lp&$17WQ2M7r5C)`Uef
zr4-z)^gk}bL=}o`S3bx^PG15)hzk1$=RDZy1E)FTrUjloV{7QwgrZM01-d}#Y6nDT
zMwGnaq~KC%`~sy%xXc+x9r6wj$#}ilGb-$tc}gx<kOpU?BzkW=jA`EEP?v>3@<BgO
zefkY&*_ZK~NRy2(JCUI}lf~^3_QOtj*;s2G8an+}c$Vq&_YS(UE)jCaVg2_qX=$jV
z@7h};yY7cL2ruiDZF<FSt*UL#E#KS1R^-nl%e2oT-xrNiUC)j=cAzfl>z(zL-tN)q
zEzQR-?x`vGS<|hU2Dxo~=|0aivOQ8v5@<Q}RL2z9E>U7TIBE8%8Bb*@@u%N0Zay{c
z=2?EIOM4`=dM<AYN?b}#FuX8cDiaNaPu>vka7y=F^3fm8wR<PnC0QJ#`Tg(j2wr#j
z7TPwi0M@iipWwW^dS-q|=)1We!}aZG=PM-Na4>%9WBd|EmhnUWrjGHe2AN&a5mLP1
zv-WS{uxWw2<GAsc_(>1@cpt-`#XeaDx9ejePv<h5%L$T+I&PHm`UrKq&f@p7{j#$=
z@;o^mGh{hrB=KGm#X%DNm8HXMc6>cne0;auId)lr-*8cW2+ky?`)&Q=&N=+W?X&gk
zWahfdhHruU{)$9tiW$W!BBI$lt+-dKf2n+UW7;`z-dSYM8F}3E+R2*l6VE*aV}HsX
zh3+{BQ)!exKCt!qP0oj`?wcUYi7I|fC1ngc^Sa{qa{V@y!-Up+{rduZ`rJ7ySx<f>
zN<%`@fm;2C?2~;Rm76(J*M`buKuh<cI!gJqKT7$8I*QedzjSYNgqv9M?VR(|wDVgV
zzHLJ5r}|C%pF4uwIWw={<UmN2X2r&zd2)Vd{mYBES{6g0gF^&uYXr((1<5;ZOW0h#
zRa4@dF>-b8wBb|cdEDp88Ts_)9vy?uB{8g7tG}b*u(x<qXl^Ipmao;w)7jCQughru
zpE1xdd_{^G@6{NlKJM(i$2$LS!`a!><}#0Df(OGYC1OU<@G1zys_yMZ(dLP~m-G6J
zGYRW7Fz~Q;*vXdfQ#v0XYkC-Ni^f$@df1Fg@`4LLUs##|UoKBhKF{M<z_y&yBC`Jv
zQP&h6S<`MO#>5jF6WcZ?nb@}N>DWfcwr$(CJ+ZBcPk;Z-x#-&cl)88ARaNg>yK1cg
z%eKir&GKFR`3H9kE<x)%(EW@$!5r6zG+4DAec?`%$PyaxaJ8^!Iu!@9dIcYS6$ds*
zC%7*-fVN6IWUn~zR4#&k6Q_D?#fmFKjfd;nf~!c~64XR4vj?1PnYR`AnUc8Eg6Td!
zErH4&O=LAkZVvfsyj)dVNYj?GJtZOcu@po_yDED7f9Yl&^t20JdP1DF5_(ENZQ?L(
z#kH_(1*)vGcubcN=D1%ArX&?4yslI7(lgSRRy@XQ&DF8Y&E?IWsddi&wc>!r{-T6v
ze&qpU9vZU0l?$p%Stdb$*}=o!!QtvZP<?z8gc<3Wi%Yq8cEGiBaY+Bi&Gp9iVFzkd
z+0V|9AB|&uX?eSJ+l8Q_4e|+~NAq5}>s7vsFz)dGcvA=oOxQX9+qijgqJGcA703p#
zt_f_gY6x6V9)MfhJBgil(6YLN!kxaMN1Db&G|x(02>6>=b!}fPU@Uy&4}H@G@z-5=
zTphgkO+h(7_Su2@-Rs&{ImjYYCRyn>|MPfGc`l`5hvp7JHYMW81}~wHX7wwBHuEFL
z#;pEn2W!o9r9l@5*CCYl>$bz&j)wi@q-_{5M~SXTtuVni1qC4V_=b!v)!$txe64l`
z1z#)h(OyvUap?rR9Cs59om|TX$Dii1Mc7{xNSF6$xR#8<Hg(|6*R!+0<U3_tx}KW<
zTlnPa;xuQ^KCCm*0SlIGP)s8V>IE?=Li;pswvOc%2`xK|@n7S6AH$<p^&`_os8U~1
zYwSVKt=i1rBB~h=>?d3F2HJ!(k%^}rO>r^hq3zRCZrO-NoiAMJW1;MxA|%F@Q*P$-
z_1=(O9V1*EqKi{YLW9v7w}BhO;!ciU55l2KBbmpgtCnCYs5=L_Wow9IQw*d6%2(*s
z>i7IDL_x2q$V;N4c`SwWpGhZy%f&&3MIZCuj`>Qd5APip<<E1I?}z?n?7l7SFMOJL
zC!NS4iw;{11Dpg0xU@L0fJ=X(%r;Lohd*5Q2kC~h57Qkv2Iks#@6!#jyNEj#;W8;m
zrbsktcj7(*-^W>bspNj#slTylZY;cFE5qQYaO9#)ysSJmb`vwf1hApmJvRgeo=mOi
zi#j9+iSlaqm;I!Bh(Qs)o_$vMEz=4dCjb{FQt*3xeQ<r!eEI>ova@S{UU_ZV<=y#d
zM`CrEj5S9??QU8vAj9$epbwO6zd|@E@#k~()=8<h2IL?(XIe@UR{S_Ea5)iwAA+@q
z61X&LAHo9EyVhfz@kkMz8@tc37<yk+FIv8G4F6v1k<iTCYC{?h%-CW*5b)^T;nV3u
zDr-aZsOZbg?)!<!h@0_7%H3pcNb7SeGjYzt$asxh%9Ye@BzTU<Xgd_E=eD&-fYaqU
z&bi}Gz(mj!PNNyW?MXB=rqrmz8Ndx7{M%Ngo^jlwuaUjsQ3L>cOF9BYq+vBWU#O?L
z5AR-h_~~iq$RyQ<>h&<FupoP19Sb8fIADAC9+eQ*8=t&5;+;Md7E?84Y`=V#c1+q7
zv-A{9PMoOkBbh%br1`pYil4~uqR;)fR2qLbbRR0*DBs{XVio(?Ej02Tc(wgE#Gx?8
z{P6lt5WYOIRWMr-Elf_bo`(JE!Ap{UiAsuK()E_RM0DYf({}S_W)wG3Dh75=pQ}c7
zQHnkd?AH!A`yj@Fmj^#sC4A|QU{FGCdS2-#>S}%I;eUW0*@zh!uMed;Ve-XwK$D?>
zG^O@zRjL&rym8Ba;Yis+XpMdvuOBI`UwEt^A@N<*^Y~%&RG&h9G631dTerGaX<7pk
z2b0>}5^IpCrQ`jPYVWXiuCitd-dJx>`b9~@E8w|yO?_hVYV@)_=%gFikoe)RBt;hN
z9e#AK;}-1g5bRxlK~{e8yX!)4^tvr}n=YyA!XD$nH9!EU@vu;7s;>^;_W&34j5ZbV
zVzO4@-<CP?shC8Ntxfwzch{3!e{RmGU3(sZ3hB*Mr}E~d<3>ocp#qOncq5!|nUoQ#
z*WRh0oN>;P;wiz{!hffIUDBdsMy;Ocks>mO20+8<$rpM>8;civ>(JZ}i$1{-%9$nQ
zh;ie_#37C<3Re@O3Ro~p^Ii{2Jh2i=1!7xdzAQ12eQ>%mB-7gDME<b(t64f8`F6Qr
zmv8%p7rz6lUal=jL*-jv!+}w%oIFB(kMk10x_?TgOIVg10hgbEA`5?AViw^=5ANl|
z<^h9|+%Gc<54WR{JP!;jU1WoNi5fAV3_EB4G*`bEkw5AwH|nru4{4j4;n^Tz6k2%A
zGzE|E=sJ1}&a@1I+A%gZ?Po%Vd@emaLeKmr(^HyGZ28yq8jn*o3U_b$lX4F~F@TTW
z2#GK{J091DZLny1b{nD|hvHzKy;}2IuW}0Ik6F2W{Wa-}x6^J5ksGtc6|;@{m8^_&
z9y{_hz41E<NQ=@<U$qlzb@&$ack11elo$5x5K!CxN>u>}TszQwFhi^etLk9M%(fVw
z3zKiy*E=N*Otc1UiSy`x!SQOz&^Njn!OUrT*%s95MnDqV-+>=z=1`MC^C|ESd5C{d
zBHnNuD!@DK)@h#h`9^yr{V*E9q4!&KNT9vOpb>b(oDXs#-=)ApI&3k%-vADf`J`&1
zr{TH4dkQfAlHxhgqO)S(l!H$?Y|vo-RXxzB5R%6f`ie!Ns~$~Ipo;m59t+=grkZv|
zvJw|S$tUho_{aM*zt05<<Br|&%YV~x6zAUmP{zHe6D9NPS;Xp4^Ivsk300+uPl4&y
zxabP2GKJNQ+mUIW{p?_wZ~jMI>VV(|ZnRHaldgRtyzmXSD2?rjHDgUK(z!sce0D-9
z77mn8SObEJFKjqPyaiwUfMBEO<Tu_yufPLxG!hiV#u48YlBgb{@ozfsSOPf63oY0q
zKa+VBQz2@b=I{1-sO5fzP-3>#B!16Hi5|tvpJ8FfvY+!qtelCCoDJ>j+mWx`w{Lt$
zT8;56zx;?;^S}2AcvPKeF10TZ<qLnI?Xwz0gcaa5;e5OfvTE6YcYLiykwl(wi#~|O
zj6h|x^#m%IC`%;^+Xg6&5(kIE9TlK(my&z`6x)-WM=X)zM__n$pHw6E9g}>B==5yI
z(=x45pAEpA_@YRp)B7p2mXRoeP0c6AG=dRlnge}A&EQ!<!^<v3yYU4pCV8R?;&c)y
z&s~6f?FpK%s89Z=Q{ws!FaKlGQ^yU@pqY<!LZE28yC8)h>g7k-#oF3LcUkTP<ieaB
zoo=p0a=kruu!WKXc{(F{lIb<XksZTZHVrSm2JIWeoxS3kaYG8h=oJ|Y+<KOVi{o;A
zU{b%U(#_9w&bEu$0*wItBvY*R5mT7sg>gc^cL7Puz0|G?CMW`=9|IX0H12hD390SU
zhLF?;@d>H2z1ky(97=~~Cx?0>p8y(80hzY^#WvJNhIq=jTQz1+G-vWWZh52XpDstg
zCX<3RvO#C_aw(YAFBc>V69?1BxzbTAZVt#_lX<YjE#GwbtRO=11LcVt<U5R;KU98>
z5ENiN<{ODh-~2oR(WNG&&Y;!H841XYvV?O_-%|`xk72=OqYfPw{^dn~xMb$0rt-kY
z;E|Ku{e)8X%0~&XY;)o1yGPbc!;+nYmaY=&!(!ua*{iNUoDy1i{GkFZ>P|fBsdf}Z
z=AzGNcOy1DfT`#v#VIM6t6H@LtbqS4XM9hCl;20ICy4~>xoNc-g<~2iBhj;Co3c}q
z=JRyBZ&|D}=iIfp=tJWJ`Xm`37W#r;JUO0f`uEUY->=d<HNV9Mm%cJbPqw(sz)$)q
z8T^9gGlxJ5FzSgVH;{$;Gi+R;;g=ED<Nu9c6D&9fr3?Kp0PhBmO3$E|3JUwkykeCR
zl8Z#F`^Q6b@lM0HViC&}@b`7-r~souxX+6c@ZZl3su%P^qdBsEf@V;B7n0`a5PG#>
zu_Cu95DZFw?(a6B-VS$1g!cEP($BP0WRR*ilEYviL1dAi8qA%l*P^D%NYFj#-H`Hh
zt5)+{)!LK?U^95{-_Ad-zBf5)?v6FM`xUwIwW()=ZU|6cuQTKP%;}93sPj6tr7l^U
zDk;ibn}Vq)R3}K&*9CZ0t;yo0jk0u<v0){xCmGDx^&buz^t?-|0Cd)~w=SeDWE(P|
zOGT&TFV?22A<t=t9zIu>a#kBMbm4wTp$pkFd@RQBr@37Kz{c`&)*CWfF2noaf2MfR
zklmv(C>73K94UyD*%mcS+UX_2BaM6wd%}rN(;W8SD!qGJ?yODeaR3`Kl!|&s#+pON
zCWqxV?30<r79Eu81l%nLC1rEPSi~*J7-o)0?Mx5ROiR~q;lQfhNj~wXc%a5*l%6Gl
zo04ZpR5SNdi*IQkWa*XTFp%xVLOT2CH2+Hnm)Zm7r&OwG1dEYbntJc2kaR}u+Z3qz
zS?Vh3Lk<L&v=+{4&yX-`H8)48RG&3I8EJMj&B57bElW`T99w?HaHXY9;riW=-PlYu
zc%2LUUC#MyD~Y%*Xc3^0y-?~7wY1J_@|feBdk#JLA}FdXP@palzho<gOQuSsvdfI7
z`mn5~P-Pm^5dCd!U6Bd@HqGi%<Tb{)(B_f=0d~2L-q69iBe6wtLaL+5+Mq2UB1ed{
zVoIM3fSG8{i#rIbVYU+Njn(+>9roQjMi?_OrSK{N$QP^fHAC%Uq2|-PWZBpWF$e?f
zk<=U#zWY|@N$gJale8NpA93^p9Id0bQ!ac=s#Wg$Z7SM*#5&{p?{BIa{$k{7_3(Ic
zu*q=uhlX++_u+p%N(b1#a=|Uyty$~010G`*9!`<U79xkK<q0h1TKX$x+TL~)Tlyyb
ztUuY>53Njf$9p>Uw=VMJzLJY63Aj_GQeWgsh{_DyJw_nU;XmmUKh7;X7I-Nha^-5=
zB*LU~`LZJ0Fal(Pl$Ut(7L<v7kX}B70Kd+B2;-6C*5%dov0N+PZ7L94UTaWbe5fl|
zbl25<MbW}lJb@dKgA_~^RH#uw0JSj6M5=HxaI`sMclMtweHY(UEy4!5t{xnIDm}^_
z^BnxZQ3?J1l?%WyDe34InaM7)pH7_R^$xKw@%0osfB4<8Fp#r!8htuZVryDbB9kg3
zSHf9o;_k5##8Eg0f5`bYe)Z4{$6vNkLdp%7c<kOtrtA8OQ|`g*@~RvrDD)|ypcmhM
zk3RC^iG(TkgN;^j!|ErGH_4zkFvlsTN=-E0e^CqQiHGJJ@Dh!7O)PAW83opcOi~9i
zsV40e67**M@Er|<f#jCi{S}c1-=n0YLJqk?er4}HFk2-tEBjlJo&Lf|e7(!7=8l|i
zq5G>#$AY#%#R8=Oa*@N@X&(zFhHHT3(6}2DVhjHkQt@tcELrMs?pJ^+lPtL*t&59q
zSV~^HOn33KzsMOO+?c1-CDb8xh?p?OZ%ge&)bN;Uu-lx`9vQWtuAKgbt58wFx$p!)
zs(hG*0Gd>mk+p|v^S7!?rl_`DEzhv4w#8)H)ZcBLr#B^5mpiI9SQS|Y-s>LFbR)Wd
zC%(B}%ys`2pZw0S?i|n#mo#R=9M8%)4%bWFbjKq~Tk{GRtY4LBs`*EaI_&+QEzkg0
z^`O4?A2}T(!`RC@R1@F#i5mKulO<Q?l#__;%9dujcU|EUG?#)P(!+8S>bGVkDazns
zxFd81Pi7`8r?qF*wa~|ULE%qFnhu|*`j0leA%XzAbOjgVBs!USKIy#QVDB6<wJC*1
zrX<-;Z7-h(P6gjB4mm>Q_9tATnLu;gpX!1trs(P&@IQxt4A=9@yO`+B^(XRzE!%>S
zI+^HGP^P{w+)ej426z*TORKgo=%IX9)&nLV@S>iB#KoH3(Hs3s@<a+4H)0e<n;CBq
zJ8$t`3Bk-(SIX~fI)nJ}c7ifpcSe)t4xwsBA3!GE9^T7wPu`=*GRBlERj{gYZ#;*A
zKP`4sjZ`lNJQG(+l@XYmuulnXquwYyHd4_kd~G5k7ghu-&J7|I7bz%N5G(2(8TRI$
z&TrX+<P$T;YVx)RHU4jxqHHzRXYh-l`hiE@RZHqvApA?Z#(6N|=&$$W_-#Wax$|Jj
zrNwoFSw#j?E*06t;2i4Mj3y&0;vbr72yf*Js(3iBEWY*Z0a>%^4eeb<4wQ|B7z6l=
zMrSQg5q(*+3+XW=FBAX!Zs0xGb*u_`QqipZ$EM^T%2=TKB}QNlfvAtzT}Or2{O8~Y
zzF8A#-bwH*9c>6vBDk}3JZD~QN4pj?e#)NGlD9enz*`Mr;pE3E+^y5l>?|RFdy|^+
zWrCDw5JHs|HNSjxsvDv?9@W9&S+WBdPWC6E03^JINP76K+Qz3SIpN1(&ij?&cUA?T
zz?_$a9sYd?tAb22jc->_PzYp(N}aA8ZbN4^tW*Yka0&bO^T*REB21w{3%^p0tV8x%
zv0x4fV@=cMCNQCG$fLL2%3K{+5fys1fBtR?u1hTr4FGpb&?M6ScdR@4_v&tC<ZWFe
z0TuFeJ>%o?*5`J)>XkZ7DDd;3Cic07UB4r??n+>%{flzDa@m%J{&R1tO7=paNl@}r
zzf-fYj2`y)fWxPgY^GmT`RrrBKX8@UXkSCMTdXZPVLQ`<b<vrkKfdE#VVTapV+*Xp
zq{eqboS%6{S=ldN!+&2myU6m2^5o>702?{&QZk~B%yexi*Eu@MS0<p7f-%0|xmRg0
zh8&@yBB|05mW2TrII#CkQz8!*qnM@^6)UCxa#xvz7R+fGgwAC=8m|%1RKNN(rI7~+
zR(@QQFhfnQ`dU1~eS4ObswQ!TQ@JJj=`jHgJ@$pvgaG1qh{8p72qPMecvfCIIWDmG
zS|6$Y!+9bhNUTU${zrqASFk3mID+U(dAR&o%p$4?X1)~4v$yj@NbQv&RU6r)$XZa0
zmT-O#YgoK&zSukxMfPVYiY4SLAct?Nl=H;DJ84#~#C$S>_?9fy+C<LkDjmq?134?{
zB&zwF)lQb8@8V*g`Ui#kVWt0cgye%s!AxAqaU@?>kzqwz=WQgzt!6AC0C&98;u9ex
zseT-99a!NVI*x~BKYe`HEuvXMG*=>?!F9M6Dj=(smXEOYCk>4#QBRWaHP?4H_-kBr
z2j=&DPd%0@(&L^Tll`YmXm<<W!$awUu@X+Cq5t<A8j!1$;2oh}6WyOYm&LK_0@Zdj
z7tPLOEYy5I8TZOK@uk^RbYB@dzCJP!z@$3X{990yc}#Xf=uw$z9>gQG+r@tT0);Ec
zmprY!8;)X{J!)1G@XLoZqYHKNjIy!yyoz@Q{g98$V`G}NF2*IBceeXQj7NUr>n}rY
zXQ3JQ3`-&ACnfTclWI%UcJqDVVjRr9{K@8LETNg*EyA(pgJ7n4eC+*VbL@NIFFAd{
zpev2Nme=gvE8B*cP30H5IUE(^Ve5BMC-gFJVt2q#C8}w^O+%?osC%+f7w4bSEje_Q
zcrr=WEFj}+5bRUY_0VMBbpYju@Un?<f@K(Du1Gh<vdKQAQ%uIs(z#aTOgap2aBO${
zh)(2}>)Z&%QEt*Ifs`-pU+1x7Pu(w9#4{x<=A|6_rCdnGD~DruLZ3OL3jn4p=mu)y
zISbT9F5VP;hE0gPdW^Nk0zJ3u$K=j_{!HnDWxsfc^RcTBbS+BZV2xw@7yZQcb}Cm#
z#j|zz#iB}M*Q!wVC5hDm`w9%>KzQ#hQiR|(dxIhX7Stwqn>`uo8MBxvQ1b;!tieIx
z#=X=m7#b6?1Y!qLGcb1nCNafn^O6_<68QvXJiTne+{2JtjF`9!ii!oo_mJIQEju^s
z<5k(Lp-^E~+fS6NvHL`?wECDHBo41{Zq_%+Pq^_|8=k+nVoo1Rx)8l%;+zN;b@K^6
z<>7h?Woz$h&LDf7%sVT>pO)4tRJYo390Vpxq$2N437$=0VA<OBAk=f*ZmS%_J0q{f
zs|(w9hFBc3V*^~3CA#HCWA~;`pwV8SED#|ze*{m1=(?;dO5(n_M~&G$hQ<2MV!@+T
zwk)qrv^v{L{V!sB3<0r~j2vTjw$WfoNsbgaGks$_QZZnzPKLqI^`!fBOv=>4eK+Si
zjRP~afrc2qqKO6Gn~(<4VEb{naP`CA7<%O$-{p<J$y!x0|K)m!oiDb=h46v6ryV7P
zu#)<Cz4O%*<%T}^&LoC1iVI=ITE3^D9}R|>tIg;aw2bXgjDzfJ{%U0`1kdIHIVzw5
zVJ7Zp^8{ehhaNS<8nq1*QqW^@8}_qb!X|!QGww~4a6-WTcDYS#jqnF+QXAC4m$8Ag
z$aKQX%w09ZeziVN*s~>Ze8quz3q%KNUzN;%m%p$f7~Z15TrZ9mPJ6u%QOQa>0k^^j
zEo#90sXjbm0QCqiL_fqXHmFJqAXcbg4L-y;lrSUJ2KH<#syn<h=;nlMjJcr`VL1j1
zh(Qz)6Xs#u|AR3$Fg&y6u8f(uRS**<`Vjku{^0n2jM*TyF`f9Ug)`Y$DC3<=RyeyZ
z+6fzi<uJ`t=`+WUZp5#T2`@Eg<lA(2X)IVIu#2fjRS<r7u2dgzpbZ8<KCnMd0ej&{
z-MO3a!{3aUNs9V(6Z)(VM;Oh6nk81y8?OVugDf0I2Z8|vQ{CZ5{dDqkN#FzCBiP*c
z%3JK5DXXh(js6WT_q&>`*|RJ5ZLsQo-=2ZrWcl`JH#AKHy$Z%{uY6jWpcoxaJX5PS
z13S8<ZHhb!pmHpRk}RqPdrGxzGlB+k1i(9f%F{a$GHQ;1KKGjYMK;3-7-dRjvoE(t
z0J~v0bdSVz)GfA9u6CuNITsc^d?J^kwkQ%a5>Y;Cs(lMSG{s;OApqj!kqApJALKnH
z6(g92W23R5Xd?sN{)x0I?~$67ql*YDj-<MXFTfB-5;*`+!!$DYsN`GmUh>a;Xbw-I
zO;2NZ4go`w)$2hO|1l(&QbYw`)^-{*4Wf}t>j&<VhzSuNvYA1c%~ORzbI_>S*S8}p
zSVSU-2QHpU?$D@nhzl-{&bFum#0X*<%s59Ej#SJ4hQXmZ87Xf~vEez*a=Si=ORiTB
zXTWbfEOs$(;PFAj-bvyS_sHCFhIw>>t1S`f$X5BD1zS?fPk|GU)~JF6#bt;89>bo6
zzmY>!K1)n8wOyFs9=@cEftmuTHvU%i9+mS(6IXk6a8v<?bbewyOAIEhX&C8$pi#rO
zjn2GLqKVlSUP^CHbadf52$UY<@(|bhp!>RR1Uf$Ov2}w3d`78boD4e2zC^Xgxn5z-
zkfj~*4{hdtM-~*x;N_cGVn_}^lVAr=aIJ&gaTJ;2XCawMTV}78bER{P#uSJTnBsqY
z<9QPTfjgoA%oK%sVw7tg=l2E+OH4P^k?QzX^~hX-7Jk<pi#EQuWb%i*3}p;%)mP5m
z2|I>l4RZayg-EN*a&LXesBSVv^GrkmmUBb_SwA-o6!P+(1p#reKL{L|H<|lX=c|s1
z>|c`jT@|FNTo~<a+jMKv90f4&(IsXG)6_8@xX#g%z}vHbx$w3o2%2C6L#Cj=hBN7I
zYAR%@GmYXpG3Hl~GI`;|rjG*xg=yh*Qi5aR_ZwyWFJ*lGP3hq|nnOgzvd*Xi-9EA8
zW3F`VGb|v8`DlWR2b!i}e1Z#iur$Kh8$)tM$XykHA$eV@ktCoISrD4%Slf9KIATDU
zm@;Lj0(QR!U%$5B8&xVaFk-+TBcSN`aAUw51Kk|w`0%sw6tfLOQj`Xll!%J4Ow-W?
zR_TLgoJ*?~YUOeolxy3TKK7LQB=Z}<>7}x*k_&g0^qA{)lrm=7*{f8_xY`Z-l1!7x
z{>g@H;$Edc9O^Ek>IHbow^Wowtu%I)^e<Q7(qyD5Kzu=Z9+2#>sq*V-FV>)1HNI=L
zmSq_^w-eHUdj`L7o<`<)7rZl~qMCaqfny#pE&OF;dde5u%U3!%tt@%Q8TWN-TXdgT
zW)!BRT6oW<Ful+#sn0FXd(vE%pIPGh9pf&0A=8|S4O%_UyOv;bnWlbC(63EToTEcW
zRWz|wTJe^93jp2tw*dH(dC3P-<UGcKxWp=#KIVo$f?%O!p8$xI_gz=~ItD0m&paO6
z9G9)h5l-ID;^;<$_cvskUwk=achlGN$a{|fv}lg0MW3hiBRSO_0rmxzoWedE^<46=
zP7dQV>6J*sFkP!)YW5`O9CSX#8%7VLS73P|VTeVJ_*PdCK$R-HusdSwD8gbdAonLH
z$K#{@nqJIYLatzWJAQ#L_&r1^uqK>c;<(CxOb8Jz6>10Fs5}B_UYf1__UbE|>v|Fm
zn6>)mq$**AmWpa3E#KXs$l#b2m3>Wc5#jd_^Ujw%5L0TgG~8^lune8OlD7*ByzDWz
zzoO`+?CG7j^oEzQMyShb=b*{Mhjm385?PqJ=J|1EMfmBR|L;54-FN%ljr+1Qcug)%
z+Y@aY4VbmHC2O2~X?g&5HU#Up#FWJdr5VrSH$CVdo{J6#Es|#4);piYKC2~2cd#^P
zVqV=jrBr8;SwcQl$rq73y<U>yap_A~WriUqa5V2}L9MfWr;)arul+Qqo~lX|Ne{og
zx=&*23xD@^qEg7b5=_b)x?DN@lC?HAf~R>G5@|fMxZ&P)=d=Fh5**GbaD?h!S{QnJ
z#7l69Q4HmmrmU@JXw*fF%CFMV?}G3WDxAF}+mI9RWH_}E<joW4_LUj&ym>{1eC}K8
zCAK^_lPaz)%q@ls6UJ)dMIo@WlVvJor33?^L4cE}56)T=1EMwV)2SpYQ0{8i__bIh
zLoaHo-~&^}c{ZLq33Z?f>X{09>%X8)6=zVsmXd_q(9kf>92FQSA4LzprsP<tBt?px
z`Ee3y%RH@<K*P2IA>7vPqlyBO+Ct5_Xj5({F7Cwnm;e{d(Qp2>i@&d2YLBK39Ra5r
zIn$t*GYSki(=ix)lStz$JQKO^@Qs{{DZ(#=sXJqti<P;XW&R{u>_FkR?)GhL0Z=AM
z-U;JZ9+zf+zF=*0{^AEjefj7cb12jE`|fO`UClrzhz;9OnUV7C4!J{byz5g!lCB5I
zMAs_+hxxj*5X*nx(^HmhEyA>j<wwjnIU2OtG`Y2Kry6R8J=MfUF%bg~olQP^M`T9o
zZjCH;giPXZ-EXrSY~FDZ^hx$<=o{QaO*_?au`pJ~{z-IFQYqp3!VK7twT8tqPt8@m
zb$VU5HSXyhSHIGBJ2XgbbN+Q#)U#|>BVm-v+GleTKZ`w<$9V5LX99>U_%ztY-I0?S
zdV1-zuuS{Ni=aMs57$p+=6cX6RXZ?rPplD5T$EG<x1x?!;J;aK_SdvEtKGfn$b>1$
zoaQf=b9wRxDz;RRz{|lli`_0KS7CK%hm)x7S!E`riq|01S=gFuU_8?t9@wphU_v`C
z$M|h7Uxl)>7}`2$(EeB+4taEZGJanU2|;8TSs$%cq^Lwh$S~<&Zw2;oH{KgGK-Rk9
z+k`LZ!QV({J}LQCIj+lqX$@x#RYpTz?oZu8%}s7DANfZ*f&wS;$|>-jLCp*(V6*dA
z<V49K?yVlLx)@(^NnQK6o=lRt$vO5Z>3MYM3?Av=*+{h`L1hYs!3Ty28%Hmi*2a-#
z+&v<kubu&%WWo&$*Bq*X-_pIJTgThpjYI%=B^e4qN@R=>GXAKBf}iV8BbzBk;#Fyp
z3g`AU-C7hM0YVe|k+3FSOTIl3L0}gF+4OQ|bQ5UCwmz>N+DOgUI{(@J57S)0!kV*g
zy{EBU7u%e}h7yX>@_A*Ci?uMC9u|R+VQ@P;WHc#M?`oEeA?S5*XR_3y=LhLZDrA`F
zFw_gO@QrpnGd+`YB?^6eo`C+dn4FW2&w6+LH*a1r^cyO~{=`<&4B{veoGhVF8Fx6x
zT3Y$~v^SYgy#0Nrny6uJUqUOq+@6?aaLPC?_#-mu&Kk;Xkv(-LL1iOWG+_%{;!+@E
z{TsAX23ZMp6}lZ6^S9qbz))4p-zf<>Dz0`T|1w+`H-a3T)Rn`p9-96UejepqmxaeK
zagdEe->d8Vc(IR)n&79AXtu?I_i3oI*#OzoO-Z)O;VmxgRvSGAgi0G;aaGN#LxxqG
za?SM6zp+5IfBJ45eKZClvRQHzi!xh{A5E>y#o5mt<SBLILiLo4k+HvM$_gkY>?|Hg
z1O;B76(3|f-sN_o?z;sv?^jq50;sy4!uOoqORBJ~ucEPx<gK$KgBJpQ8uq1aLytT7
z!Z<f(9j({r-v2;e(uD>k<GBi7#Y^dc-*c0flL)h32;|Nq#!(Rn2<sX0&8Aagffk_V
zymG%1?3^BzV52`P0(H6`hHR)YR7O_@wYunpraR?+mfq?LBAk(-x)~{km;YeK3-!V(
z-4h&bBda1D{lY9<Lf2|yVuZW=?c8Mav6bHu1rG5qXOTnHmP#eNWl<@Qqo#|G?(U0R
zDFeFcQUS1}WR2AHJI!0;^O~Xwz0?~iNx5*@f?^R`h7x4ZZ=r_$@+Ey^7`0DLoG#Ga
z&hL}ME?huu1usH#2<#_*u91p@WTg_(E9@k+)CPz{zYeyt)t<y~0pjkUU8*H#r?TVj
zNKNgiJjo8l$6=W+NkJD~1HFRH^!d6IQe&-54!U#qb+Up?ur=17<L0-8JC>CCv<pLO
zy}1(CjW1>f3ixkYs3wP}BF~JHzw{@BtZcDPt$qF5w!~kxU=}M?S8Te6Pd+2|eear%
z_ljz40}tz~=U1{tlVJS+TeRzLhUAVcNUSl<w+e@wUqKS-=9GS2$FX$P{k#rK>BbDg
z&gM<e3Tq%5{bJlN`XLS)#o2gK&A%qjZs)@#L`?s%dD_+T2^GBv3VU49lvakB>7P?I
zbhs~hUDBHP;>b=^R>#zo*?vo&2%nojBow;7wm5adK#h+GtlS4E65i;L+BSOg?R$>y
zw-NG87@xq;S^)T<<ep%d@BSc(=lgO3_-6cHDl>fetQDZHdRf%n2dc%$GNm4kOvxqu
z0VHa#-YQr~26M(XJv$jxAD{FmHnBxAw8n)yUy+M~b@SI5{T1gUzj}5c%`i%Dq{2C=
z<^XGJ#TLgpATd+*8G++|&bjrr8~2AVE-Z_fo_KF%6Q!magoiKIxRu`0VPha=fy`4=
zxOpA=JeWb=hf)MpOcMx$hhJMoU!naO<HPsUR7`k6!CtZ#S)gSKLiqsbgRhk`tg+{7
zp(oGIhmXzrBJsnoimjsSl^{Vi8H1hU3#OMZfcxp2Xzra3_?v(^XY$u`hs=(A==cQO
z#arf<_$SsiiMKDK%C@Y*j(oz}>0J8tj_4Bs&|J?&Z70X*Ir~wL?aCu%kLAU0SHbpz
z1X&d}Mw0|+o-&h1TFG~itzE!H2NT=0wcs@6fX)7^aOpwgH2r&AdJdKDy)KhIx%3KM
zfB-Bs#;1l+n+FeGemwh1<z|BJ@(4TfNj2cgx3w6!5!F`LHW*gtmT<XoT{@%zd=6XQ
zbSdG;{xzrBVc1yd*Am_Az-pQEa_`hBj+@|4#?Nr`<b1Md@J(L~Ze&y!kJJ%I*E_1c
z0~hUBaq%q|oV+RzJmjkR?;R!Ho-~>VEp&LRUPvi~)3eCl!nOkp&=VG|L>aLT<{;Z|
z@U}Yy`<v5D@t}}s6m(k(sUk+gM@MO-=MS`n5L{9yl?OyzZ=}B?ZviCTcp-x$QWrRO
zVdTWm>QcY)EyMmOSVr7q_zcb9v>nyDy{}jg93R7SmEY=R9?LAQwNEQMG?H9JvzS;&
zSq`Am2cjbn0q!VdeDPSI_m{BS$2J8#B{LqA;hEKvoI;|IM-Ja2qxON1xCoqqIt0Lf
z$dg&jE~qx7{H<_f>2=uH!pnyeA&%ipS_}lISWbMJdUo${Je<Sh6VXY-IQfwOISwg!
zoWxDwDu3dFRx>IAMUOhqx6>>t8dwA$#bZCao@Sg$=FRiB^<+nk8@Dd3*J}g+TO^C)
zl5av^t0NyKON`l%F-_t#f@D9_$TU}oxL93;3z32b_}rdqxGI`euuU_vjQ;zRX-<n*
z6TB<U(!DC+iGJfwVsjNgEROz6sQw(;>Xr1j8bnCR`yI#%@;0@uoJJpW!ZcZ&wwi!{
zA_nb=-C2M7WSE3~C!P@~)3;B4%9pQr-Jvew5nU3*J3d{BbT9bLF*rANphD2Vo3ymy
z>%flwOsW1=!8LQHSKsoz%OZ?2p{(UpORl?_uOH3>#L%Xr1mY#Ap0@_FL(v)lX$8>|
z`Ve5!rdHtQYU$r}d2n2>wH?UhK)Z|Tvqg^KaKy<JZE57{%3M61Sop=ikBJpZ1a9uf
zalswIlADpBvP_}82yNS;y~E}!q-@`TFF*e7UfPy7Lq4n059()rz$0~@o)s^}h|^-)
z!aDu&JJ|Vay+gcujbW&LC~kXQoZa&mrtu=C&k}hrS-@2pdFO&@KJ@E}kG=U&i(U+P
zMoXAE$$E<9NaG=yTgdCJR;IaEc_-gGk!~E1tR7)>m_Zi{qg9F|C$TTV=mHt(8~UJI
z>Ft@6_`rNC;W2<ym1mJzgOK7pQUIxlA(r8=mui0W-y7GAF2^TwNbKmp6!Sj?rk%>%
zY7{tM*dYH&5|>kYfQ>ntVe%EbV&%LXNLQWU82ZQAn`n*MlF5ri_G;3UUvNlwAG#u|
zZJ`bc48SEBi{oZFE>Soq+D@=P<=0)`s91~7rJIbok^Pv8x3pc-C^_pbRD@`q)1`cw
z%ilpT;^V(>!WZ^k`jR%#Z4D=cidz)=@+VU`s|92hP2dxJVe({dlQ|_n+e&Ulw4p-z
z4)U=Q$<OYf`D0>QI<NT{WJqWI+5^i>cXfRnOmOqPO^7uKX>mvMq@UYw5O|M4!r(aU
zRG~)7W%-AFbfHw<#V*?oR!G7xE^!NIWsJbD)8Fk7j|j-|Fh|)mtXaSLZ;#4-?s^Z>
z#2rO39cR*te=i^ne;@TFJXrfg5NzmTQ}=XhbkM+U+naL!C`_>nJyffgI|nX#;NrE|
z%?!m5@7LdE`+d&;gGQ(ccz?1M-(Zazed6mj1*&%aX|VHM%NjDn%OABtnu^_UKA!>R
z^LE=GeZxuL5Gs4I!AVyS1XwmBOcn9e#ugW^<+a^{l4K^C#p<|O*jgYKtdK4NQVDqg
zc%_8n(b;#J)F@E=7u*rY=tgPak96PD9D2|)T0P87M)9F6X-_JWmc?gh0wyToK~Ur#
zfu5}dVRo+zGaXsNBJTx@es`)O_-F_s^Yj`aXO{0(GcQdvfqK4-XkdTp9ir%bDJ$~y
zSm)H^v;LD1l~32Xi(qsI{?6v&0pYq?`Y(QvnFemv-W0P=zo^FN82RMoBze@Vj0NWm
zitW){%+2(S!xio`Q{9xGPl+&B*cUM~dVApUSgL|RfNo^lI9(h1v9C++!^q|A4oj?Y
zfRdsPl?=nki=aV4kAXu<6mBaj{B$mo9dfGHJt8WPelxWSqD7*7i+Cjmf9N~dy=BPa
zBTk*xpNa98Ns#`7GK{8V;x_fRYQ*Wi;Sahx_Q1#Nq`N8w`IQ4cHgQ+sA28flD1Q+0
zw9Qwbe?3pn+GWL+3}PdCU1e@1&V^o$rv)~Z=pM*4oc22y0~i(pCrn|^OGZ>)JH;qV
z{$2&<DBiT1V`k>36$uVZBK$#-bVKyMc(QV%bf%mBMDn-8T3<_h+##Z~M}2ZN`}{Ox
z(QkfoySPYHylt~F9mJ0I?sd0<rd~swO&w4(K6_hjigxhueRY1#oNc4j;v4Q0xIwtU
z$GxzuUNfzk`7~dW+|~f(QZP*h-)b}yPxC!?cGlJ7Om|y$ch)(9Pu{-V4M#}NMki?-
z_+&8JSE6h9g|qx;bh{cCVK`|q06EqE^Yjl4lfHKFXtPV*xSwE+O61j5q^Se0umddC
z*3TlOU21BmN_0u{RZX!8!<zJw;!tVS#hXkdt2na<tauL$qly;&^bj4tMFa5AS*X_0
zh8bw+#oB_g*@a1TwY2(49#Z$sVAcG=;TI-Gwj-PLe6`NVEB^?Cjhy(Lyw!a^NW1`0
zev=!Dwz~tEmfOj2T45)!(X?8q1;d)IbbVlVeSjbT-bu6@wkKQy7lE-eM9u6qj2wd)
z|3ynSo0+tel>1+d9LKKqd&?ly*~0C}@mpogXjz59$-KCo)oGl&S=E_hSEbxuF77uU
z>A||u?Wgo}MzB^?Q6W(fPj}LFEcmo{iD$mJx@x1OE^CJ64g5QO%73Cid73~(MS`Cc
zt2W0L+|nbRZYS>o=Z;L7_^aE)17kl=jzRn9%kRB{SiS&vCiPW|OzQEBFMvrsgM4VO
zQ#ND_weS;Obn)Amd1oT3vkq7RR|G|%s)C*f^b-OtYog>bi%OqN-4T39H*(c^p{4AQ
zFWh0-A2w>tu<x(7shJVJooLnzNlr8jYB+nh((PhfnsP%KLi67a)O(5rFj}CWAXRtI
zgS057FYW^HS1J2U7HQUE;mU~$$Qu1W;O`g%`1;tL)0>d0swpTBh!6KCp%_QQ&3BhV
zMtjmLy<_@SII@YOKZXohs!`0d4fgGrqJA3h8uLYOaH!(K^ko@tvP|2s>onW4BCJ#;
z+ZuPh8;KPzH@}Vcz}<Z+ZBY}uw6bz~j+Gdgw-0hN#Qh=<9Z9Qk7-OvLBejjD1C*WN
z&56^#$Q<NoiM|26q-#_B*><+I0%Ntg=%VKxsSzc{U)<W7xQ3R;U!K63EUgc{-dI(u
zSamO6p3cb*yx!nIGVw|Gmq+Iaa}ET$W9OvD8~4EU2D#~$9q0z<tW5jJM-3ga-H+}N
z)}1Q>(haY-m`Or*((^*mfBdC+Q!N`yi$@z}>|Y~Zo-(rL-5)Qow#h~eYmDY2+aK&%
z)K9Tw2n_R{iV1>q2eDQ>4L2fWOOzITOV*}Y!EcGiL@w2~ey~^YO%#qt%W-$PlDP>y
zRVlRhee5r@%qe;c=B5JR?TmhWtlo08Z>+rfqY6Sq3;Z1MJ9B6y-BI&R?W|M(Obgwd
ze`Opv1{L+yT~Gm9r@N1Tv(l-u8YEJlpLci0-8ozii?MIA43>IH%ZgGg-Qc(oOw!pS
z(k`WD69cH#u9{wvq@b>28^n|?|24R)bfI@Ft#LL{fka4~G$<<bsQA@3o*IAt7qI;o
z@Gqn1=`UFD=_Y&XcHdlN#arRqvtSl9s3x4&EmOKI?+VdDtkqPe5x#XcX<I@JZ$5Ui
zTZHK1#D!9TMZv}9u2fIOAi8wH-a2R?fVUlyIl@h*;8}=&PjaI@73q4zcz0X12rDLb
zr$9UI^^yoj23j<ap*#v*$;bTx?Zr_z{VtXI!MxF`9v~SypmMUlnyc%g>jPI0Z#L`g
z@zaci8Ra(($o#9rn`9U#$9smBvLkz>9qob$$IL*SgFTqip66~lkGbV<8jv2f`D6Z$
z?X6^exy{-iq#qnVO?{O``a?Y~^~2@^gS?3fsL66nWq^o=`0uYFPUsF|-O;u20dXD5
zQcg#j+jYt$VMUjXlr`<M24yW};=}E3<n=!W`?HtnLh&-^?|CQ_NL{vcye>8ukq5KQ
z$Rno$nYnKc`Bwv5u0&UPZ#NEiyTTy8VX8<TI_r+c#Jk;&{k2fuVTpuk%9FrYA(D<a
zjef^v>*!{Kq>f<k)*o+7S>K{gF%1`s;%;^sQ0)DlBIsT0q37NBN8&e-`t7gO5pL0)
zp0R(bk;Nf7$(OuWh5Qi;Pl?0!A2d)n1&zfU+4N&}8FGgY(TKQQdhM6uRM}fJTg~en
zqAIHtTW)-*a~mhp-VmqF9dRDc87|r@6{+7qlpLbY8yWlcZI{L)w)auK#dz&9mUbCR
z<Bl6<Gs{HU(#{(XN?%wl^phhpnR(5~VeI-ij9VP=vSELcp3qV}LN@A2+AiPr30iCw
z#z$<2?DSiz5~gfLl}|nrU&s#J)5hEAPRB?Xo{Bi1>KPAXPb6dBpWH+zB@RW5Xtesr
z4mg;JaEw+-;NzF*c3IAyy^axYK^(q2S7vZKKX(@@LM))hn+i!}jmZKe=fAZdOfLFq
zcm#rInI_iGKWxI(efv9mxVsE1f%NYm$t16V;7XPa9){Z3?<pk9JE672S+pdmeI1H{
z#<2*FUnD_0a{#qL%x?R3F}_hfK8&W|oj<yJWD30)9^AUjcnt+TGC}^}!|M5I9rV9p
z9m36W{nXEArAbK-6iZQlICY5WEA;AVwI@YU;YJ7>c@U<Yz`&QvlS!0?k&gYdk6$5=
z@CR?6UDM;~=h--d>=^7KhW*Ng)5OtkEv=Pt0fXw4uNbRuuJu$*4FrE$Xw#p@bYs{>
z)5i+E`KIeaZ~xsq*)@E_l$cH;rGjR)-<PIiP)tFHy4*|LQg48KS~axxJAbm`80K{8
zKAO6fXlrWsz2X|?mCXg(7n{=<xfw=>r~tBi_zz;waLuV@1e<*{k}4gia2zXZLRp9K
zpTMrcO1tmK6di*>CMh~b%eBD;O1gUk+YB!u&FLIRxyL%BRw$P9A;((H4jU>dTx>(+
zJByfR-;Iyk2GiRZUW%L7n``abWiE6s;_a;}jK3SJwGT#MpnU#PY_bb_^l7cf+eN@5
zevb`$Bn==OpvJX#3@^zbc_?`<S!oHrws8$d0Cu6<8K{50a-^g})~EC%l2u|0IEKog
ze_NB;m1sVy*JV(IP??H2RW+V^aCi%%<w(FpfHI!43Ozl+xIDW=wLDhgm6o*gR==Kc
zE&OYJSB<IL)!`{6tmpBkN?-kYX<LaYP{4w-rh?O6klI4h{f5ZpzEkxVyg;#Z)k(6a
zvoCe2{9(;y@|&Ctb#3y2tI<@4s*SLLhOOvtk2tI?Mlp@Zs~NYB!C%0p$};sOwMY2>
zCg}2)u5&a7;IWUZdUC1R7B~W5pr-8uy53o+gqG*rK;8}lIu(=thiZ}*>->6#037%J
zc2ZHdb|3i&9jJK4qI+Bp+}-!ey+oRof4oKEd9Av1WrU~tRuMX3JN_@Sz^-9+nuz`Q
zXxz9bWsa%mR<V8lp9qse$iE>Js_VlKl;U14=(o*_JtRWb)f)YF+r0l0l%`~jpH1Pr
z`f3?X!X8qvw1|J=(UW!oipLL!HPHESP3So>rK5EsjPaT_HNI~x5erV&b&M{QWoNl0
z^Sk_G?h_Pd&m;i1bSgAw=+d7@pL3%1jAUs}jfw4fAs)xn-tunCk5(6R6dd(s(O^?`
zdnQpiggE23Z!30lo8b)NVp7!`JdCdlhS~q#gH?2upsO-*@`@c>>`0F#=5eXD9X@Xj
zSEoCn|DY9-Uhj#1ocv{?;GSN2h+MjhSdq-=>SVR%nO;erVzP9Hr8<F`^{7=`kZe1@
zdYB@PSzjFJsoVb@o-b;Xc474pM3rB>i8N~2q~7j@udV=ODAO2mCcj${_UTwRaejfd
zi`>iCsOMvG?`B(TCo=T0W$frwQp8WOsT4{xQ83SuS==;l^Wx$!1`Z2!3e<m-C80~1
z*%GLjxaSNy6(Ne6FK(Eth>2@zu3pT>^C0jTev<mqwwzxJ&7bXiGYJi9HaABuKE_<_
z(-;551n#VAbctS!OcwqE!iI*|k<ItKyKp0RASKY6xHU(bnOz=PQ&+)LGYEg;@sfSO
zFp0!{FeqXljI?0}P}-MNQYJ4WyW?W#&m*{PUavXUm^=P=VLXe$LmiHp&`Er!4BRQ1
z5Z%Ckv~178=VV=W+$3c!+}B$nc+Pj)oQ2$SJgw4*HLu<OwBxn&^(zhlSB{f;{<0nE
zvgN&!IH=rWj9n;Z638x;p;2?!75n5qt2QHO;J%UuwbF9^fttycy!p*=3j{;l^Eck=
z|25M)2|){TqB4?3jCOGs3E`9p(fh;*44zvPy=<HuGS1hJQ$eTVhd$R@eOIC8Dou65
z4~v=ZyT1F;FSG-7M)nNk<`fD5XwRn)_Gu2cvWG(VvkoceXaha@MDD3xyugw?&we#}
zHIDQ3xbMDV;a4m|5`3y2@h<ho(lcM-vOAMl_uA%biQIV=i&9598AaRe-HwC%t$Zr^
zL@MHY8VI;e&u9u?<ilm34TQh1_P(Cz)_m=Ijov)#zvA~*zFcQtuPG09h!2{)>;FNg
zAw=ze8rwCzb51gR#<n>XZM%n~5zoxGnm-nmVBl3O#Orh=kc3Q{nP069#q<kV-gj3z
z7`U@<`Ga6pBrExePIEaSAW+1gDx!Z0S173zLwn$@TS-0jR=YYfiVC0R@@q)s^ZScC
z9H58suCol&33~X1#F;CM@04cbgjF*DcF+xly9_4I$;m8L-*M?s5N9!)OuhjZMwj$~
z7%C2`Dw8;#MG`uW)dQ3*VDv*xQ=&)0p|wqC!by>3kziU$ChSt{YQ-8*A`r@RbT#42
z(%Rc}5rQkB-832IVr4m<)Wlc0;?z@Kq@Soa!CHDa<Gj?!HV*Il1B~a1SXKtlcs0GE
zxJWVC{X%%UI`9tL%__IJC>l{_h$rL<S!Yl1<X@Ft2K{0%=ikyH9qnY5*zqp&Y8zcT
z;&!jzJh?Ke7#R*Lv9&w~i1Bm5T9GZ-C|B~MGE2)uRtchO;6AoDwgkpegJNW9<?U?-
z(&lV!vxUW<#IJb3-FtU{NYAH`+h{DopC~!oimaU`0hjP{;vUiPwY_~Z%RSUn$St1n
zuR%V5TuI-7ILljY#x?e3a-fvm5Jt+EL<W`b*9)4VVC6HKh@<!HEy7v+J$7^}o2vlP
z1N)P34|JHlK%#9W&J-oXX?%pL%A6>JBJ2V6^4l5-NfosOF)_?!31wV~gf<cAU5YsR
zC_cYP7>%rr49T?6ic}<nLo{wZf@WkcE73uE;2<26q_EF%P6Oh)ONnG-U}4+ijdSa7
zjhY<T&V@k~GE9exBMI%@QLYO#`ESPF07En5B^nPHB9+R54Rjtv<cZ`N>&Yy=;xadv
z5mMg+!*prWwD<_2c1MjrBryKkb1W*RW^mvr8^Q)1gpk?lc@b^Q_~ix;rv7}g+hTRR
zr{}HP$J)HY#492=kSveHwYpILGg{_p*KDkV!m1PR%%JinW#ofy^y=qLUbBg!7|yXE
zBu#2iSpzWH`HYw9U80mHT3VBFJm}Rcv?vD8nhM<|7`?+qRd2CrRrn!K^mBU=4nn#I
zM_N>(4x1hYox-(<#*DGnqGk+0Q_}hBl*p$Fa7Wi0&AO#pmNkZF($(Nsc<N>u<Jht{
z)cuU$o<fld`Up85x$%X9>Je<n8JSvXd!X{?pbWk%%^+9anVMKkUIa&6rrw|gyK#L;
zxlY{Xtjh_GA@k=H=9t3Lk6;S?-8lYu(WPCtbXG=5AD+<~8>MCi479O{a9&7V%3<F{
zQXGqJzp)aNrvk#=N(EJp_>>=$?D1a`Ti9RjIDOZpGOfZsnbx7@Tg==cH2wh5rIeT4
znHFRZL?IP^nvGS~IC-o8rq@#8(QBByi@D+ok5Zb2Ig|~(BL(){42*J)0iyv$oN~fp
z$5LG3>rkA<s@{MU)6!RH9;}#g1=W*OnFENIkH=2Ja-XOL5!LKJ{3=BYk&u?|;|#9?
z$2WG#1(aZ<;OGjh=>4c$@Cz7Sx%;IEqfX1T^lR6tZ!zS`9fwFdbXl$#4=H{&WJUR{
zIT|cg+E>dq4-g2|32}!|(&CAEEf-U#$)5d2*+D)RXhQ<UO{G2@X`(4`%z_c3;%u7H
zS87khnz9mV;B<Qe#io9Xj&72dhmkLUBT;6CB<6WIV-?UDt0ffqkV~<8BH)>E&xfwL
zGJ2Oi=MB>Z#{xsn)x$>?z)kQf@R9=f@%j8mz#A#FAS!sviL!8Fxyv0qkb2Z!QeU5l
z^T(gh86D;qd%E*vPgb(c&_@Dbi9$f^K0)zV)dyzDr`4+@hQ=EGGZY6h?<v}nu+Iqe
zo7*+ORJ9nRQq8?W$t(O~yRQ}-_O2EBV6|&It$t0?tV8^RJVd#y_G6PoMo#WAaytGo
zDVzPL%rcS3GCu#rwSC%>JDZnpY^8gfsmq^vg=Zz1mnglRDcoYLf~)WH{|C%KGr!7V
znlIf32+}1LE3$op{NpF(S^rl{UNL31(juGriAy}Cez@H!OXu5{Xhq<4D6dn6Z?p?<
z38TiJ$ikmW;1EH&q+%8R67uJLA`5rRi`~UVaBHpbkCA@_<hkKfxV@t`@Gzzd6PEGt
z=8d&35W7BgiN`Psyo20)%eZO*u~yY$kQ?zS7h9R#mUKzQDmDZ8YeAmRt7R?L*$eiV
z=M{<*63fUH>)(Evi~)Cn^6RHO$|)7aaRm(jSo=D0>?zFPPm$1Ex(>7aavU%-E7LSL
zBIpJ|zk{r;&{_|2ZCghlfrB0>FR8f?K@yHs6Hwv)65^|6_O6y`^pP!j;rrA&t3fq!
zl(v@RQ-Qe;<iD{yBDnu@l$r#!6@Xj<a&<-GG?>pR(TcX5gSihX<ZJI9gxorxyF^Wp
zXSbAoIor+Ekyiuwc7iFcQ(NoCnjbIcEmE)?{JA`6^~<YBT1E4f_mRJkO8B<&GaS__
zp{2C+6Vb3V>cyI6SI83ng5_N<p>26}y67d;`T{FlklzEX1PR@>JP-1j1YJMYoW;;X
zU^3tf37shQ3fM0)Waxv)-wX1r&RThMJbiH3E@EhT?w{bQD562E`4bnB`?O1VPs<|4
zmFM9*ysB122jsT_dA9rXkF!Z_fhu7HmC!KO?7UKzFdLTBxP;}Zgbclei^xAqCG5{y
z0$+r%%Gj>TI74MLiZ$QhGOC_&iHc`r8E>jGL^Z99e#q|)@|^T(h2uy2q-7rKvt~x)
zSTpY`S;7WbuHh06O1)r_s+Vv9`Cm~96MRZ=p13+up66!iR6>(ja|D-=?@I)pFJ%dz
zNxh=tuwFt0@;iV$^L$E}qDr_RElY_zR6^5O^Bk8j7nakxgzuzYIZ-B5E8#No&ru13
zeUC(%eI#i6Xz>ahTcYXnW<inpTCA4aM?=rLL}ie*eRK$zKA^m$W^Et6fz)MC;V=nN
zYc+4-!z8ALEz{mBI9QdGP9;@{%(tCOYWI~(wE9YxG!4vTP~LPd>3yX3fC^8M5NlSe
z-3@*N>Srm*`T$i$j$+|-$FF0g_si8X6bGNfnS0J96^HO`CNY8(BO<+zSaAWAW}M@B
z+p>yk1w@L`k>0R1a$<1{O1~27o7ym8TWye5{^AT-b&K>2W2?&NU7|e5Q}P*ui)FmM
zBF7Ti$ZEt!dR}4UJ}^uH`Q^%1B;Ppmv)-U-^p5o0V5<$VSVcuHs^;Sk*38{9=WBX?
z;yRg&C{Nk7()<sY{zB$8LUS}9qs*geB)t>uNoDhvUt==xHI-iDndamn2Y3(_X=HB1
z=KFN5^pKZfy5MW+At%8c1LY+(%R}53T;e}S3V$IX-e2o@NS-!XJcQ1y%4!TQQwxfD
zV?7nu$ulb!P*E4;nN?X$4Mx<`&a6eqpMQbw9cQ^QYV|=AX%Z+h2|8b_r|&x12Pa^1
z6y*7!N%r7t8Mm#h1_m<DAM07o#>PdLctT}<+eAO;)|XnUu)ha~!Ky~A`6sugDXbb^
zl&#rNg%3}7n0^fg`6EGoGpc4A(O#1#xy1;At{H1~T`!?`!DJ^xzfpy~HA9E~75P6B
z^tSBKd!<Q1afYC4#hULhbj3?9QTmdEJ}mW$2vJ*uo`C#OAWuqFABRe}qZ`>KRpaBF
zN;?i-j_}@DFZ=TpY>$)ut*obmJ=mHhFe%DZx7EYzz&bECW+82ntc9$am*H$6f7(BN
ziEo@ME|1*FU^MSr@Z$|~FLi})T%sJv+DqLTOh-^5UlVIz^>E}21J$E_)kb$~NA*gi
zmx8<xqy_C?+p)oS|JoD<L>-}aqgfwav-Z~YX{X|FUAi9IH_wL~<=(opfd7JONPFvo
zuh8x%m%X>HH<+X=6qM<EQna^j9a1Ym*50~5!2AO8D=G`OHf>jz3G2O&Guk<|PTiPo
z*WF5)joQxIsO{R8t)P8$-b3>0C~dXdywTZeN12{$asm6yeRXs+-)hT8DV09+6xO%Q
z6h4~mzC~~X<thA%qla^z^y>Bvb~S+b67o-gTy03_s!MFSN{3QUR7IloHJ4}r%1g%X
z6iCh>bqwTw4vEz3F3}C-9*0EGcP?Ro+%u6l2qu#f=}2_CfdLWZ-hjlLV75_Who0Dj
zM1k)y&j7g(Bhd#;Z%TZIL^_yRl(>jQnIBxD2&lr3NQBCc_MU0$9FV)4d=H4Xg4DZ?
zDSF9_ES+r_-RP$~{q&#>j*Z$mN8Q^@Uaj%pDny)S80SZavV0L(yO*rSIqHcX;%I7)
z%4OJE6tB8U{6{l5<fT^U3FI9*NTIRjtqd7FW}u~0e~`grKy{u#mZ`7Lw2{9b<oV2J
z%aOgdvnJZrc>>8?CZE*RW6jjfvb6g^x%Y$IQ!}<YPbSCu*r<|={^$}RAitGb$#Oc<
zs+L+AHbA5HNBYm-ET<zaVAAYIo{sdZ#V#5~iiaZoPi~fBZ2*+|fIK_eJu56)=96l1
z=cSVQN0DC77HPf-rt8RjQk$$Dqux&PrYbv~jE_co+p_UDFg#Dj*V_1$ZB70C&kq-3
zUoBo$G4~s{`dDOvHwfw%s8#vNB`Sdm`D(fUL~ayvB0wIN{xSRiaP}TxRUOa&@LtY6
z_X;XvfvAa!v3G1B2#C@I8}<?l_L8V1YAi8|8l#E5L`~JinrM`$F&axyV=uwjuw%!L
zvG?~g=ggjS?ghTT|MT)Z!`+>onVs#k^|-%6^3+f>mDJqT)OkayIS-t(iTieB_QKZ+
z;**-PAQsUvgo4dH3oYh?I1I*v*JME~tSMtjBf_H1JR2|OSRR4sKEScnx+be}{ajPp
zg`ys~iZ^pklw38gV|EEpKZ(sH|IZpx1`zW*&77MhbAK@QzD}m7b;nA}_G>j|wo6wb
zJ}zi0(X4Q}C7kVx!MzaR>rSO*`#FT1A>|~Nv)!25k$z<)he#y-N;Y%8w}kcc%mgpM
zaWvklpSHamBy(K4s!2>j3(v_*jIWGS6bV7bxJ+B8?OS+mlTk!Md;^N2e5`w}cM6iZ
zo<v+7TR2}xu1~=+l9X!_l}oNqGooBX%<r{uhAd^~O<-I{%v;=BoLTGV2g&T0u3a*D
zom&+CX(?yF;|6+cfUi51mi<)_QVF0+Z1!4z#85Mh)a=s2c|oe#9-OU-yI+iJ8ns$a
zO4h9>nFVd*-Dpv`#xhoH4j88ayeULeCIh~+B(6uj+>{w;$O|BOH(NMASjNhfz3CzR
z0qVfG9F(C7Q7qW#qlh^%!T+me+ypy=vC~c21gi$inlqCK`zAR5m9b0!(O8P*PK#V(
z8D%i167#@>hA(6+o58q=V(}a|T!`6BSkQ2NFIi_L_)b_3rnw-?0K<8JuRE3fM}+3R
z<slS+eKkD8;TTMw&G1}+<0L@+hUxiPr92;tJpN_#_?MS?y3@!O`k<F>Zh~j(a#{6n
zqw3$L0(R@xjJH1GL!<>npDMB~PjEh#%%6gBB*3w^r+d>343l{zT@58BqNQh<6)sJ)
zN0==042mMQrDu;79K|0HzmD{~9`B-`bz~YDCX?qA2KKm?&V`cwK3MM%`y{veYqZf-
zM%)p^+@z)RykxF+$3s*As6}Gk;x^mphA`PirR$1JXVaF2V}9nQFbZNu0DRr4v}Umo
zA>UI(5}UnQWEpBEk($j~Iw$-r=Op0VL)?Eg&Y{ARl5N6`eu$V)wJdy8D(1WkYZBm1
zA(}F6;7b6g<HB=OW~w1CjpUtf>Gb)9m01AJxx}5nSq{oj&8XKvmX-*o!fxds{0q09
zG%y~%E8A#GW7{i$2%EQZek@~o0-^^L%j!0{#InL*P9)|wtr{+rvDCQdA*$W;V2e$j
zl~)W`2LIYBw^j<RWQ(m07+T$9i|y+OX&-*=#$#A)BSAa-9vwi5$Y!y%ZDRBvbO2>o
zLZkXCS+^g+^4&d|0|nd4rniXpJU6#;ez=lzU>AtCll*#ptwWZ!zaTflL>h5*Zq?`;
zDgG5WUKrwAb}~9a+N|BwBJU|FzI+zCT7Y`l{ZLr4(d?FWmh2hC{&UN`MOQKVNU#ne
z_6t38W%ukV+5O|eKB`&X_LBV|Sa%b9<sP}RPd3;SiTz|V&v}x))O`<844`hvF?MG<
z?<2fI#on;WX6$me(FvTlIXvIzc5#fuhZL1B`aI-NZGPI8*B0Lf>9bYlF3D@gYj5+^
z=H<0K6KF=uo;?Y6QTtbyIV-JcIZN?k4&BRc{i|gnr1yAExz$1UvZnva6R`9R#@#Fx
z^PjnP{WU_j%eEDH&7(4uUB;s6BP)@WO_iK-@q_Mz9n^`m#SKSWUV;k-w{s19XaVm2
zuf__l^PmOqx!PDwa~7>`;!CeKS9}*&H}lDvS>4R17$%~N)a`4S`t@3EDKG7blkYe*
z7J5xtZ8JJ(nWg$xw6jovslj54W<4$V%@)n>1XxP2T1`s{POoXI^Juk8^`UXWd7!4L
z&^v2#RcKf(GvYdH%q-kw!8f(wk1@VYTjYWT|4wZk-xkp=l+h(?%O9FrtsE428GlT@
zwQJZNomvg4SzI`SYMT}PuQis6t~Ufncx|()`}Ji{#u_v8Cf7DA%X1m`BCz`1=i46M
zDJFHHx+Zmb3w~i;GsWR4X3Dl$@a-)0c>+!RAd}uPC(u%v4hNb=HYdfbObvp}(p#63
zz4S&0nWc9+CD+ocRL|7mKa0*kGQJns>;A^<3z%Im6&BY@9WC;_DUM>v_bJ(H0oCCv
zV-wE5>Y1g|UW!Oz5wy7B*j>-k1>Le}GWs_|6Ti)D^ey?#(uwG&d9*U3H}^poa90|e
z)W2-~&FB`Kec13D0zHnKf}KM`O#L3Y>ZcXMD9fop=kofdcE#74LjJbkYppfQ)+f}&
z$D8zyZ$m9*n-OZ3?clX$*|rNa%XZpY_m1M*FtcRWug$e&8;6@39JFYh%J}hMFR<?a
zSIM3aH*>D06tU4-vRA_`dFR!@QvcVPC0m6}ijUV>OICl40R`vRl*4~mmqW>?=p|3t
z)v~GCqiitcI|o_thb{Pb6U_1B+B!LOiGUq#WDP>KdShXz$o9)DFub+i#Mf<W=0nhW
zmweC)JG8AO7n-*>W9_`&h}CK9VB&|aw={4IeyRn(vZI-*B^G7&TJT#;yrW(x%cv+#
zCF;5^OO3TY@@Xe?SoEvRCXxMjvqr~tHd#ylZs{W((>hyXSY{!M{@ohGfi7kYj;t;g
z9%(`m&qx=Z!Cft6lPzS6tYm&Ycx`;WMc;AVOzOi{eVr$|nK^ascQXecSn#h+yu&Ba
zVlhOpAxY<*%4{%;aZ3*qU*Cdv^fZOG-e6Y#M~v^g!BpA5m#Ol&4c1|(880h;Wm2ns
z2bk0v<qEP2wI{l^Y%rees?v!*yE8gYzsfF->bK$VUo@UY_;J6y%04<Sk*>05!sPq_
zpkHMl9XEm`Hh<zFZa<dSuRo2`t_yd4;UVh0koTv@=*X~F9>NLm3Zc8YV|C<rZ#+ce
z8+pq-Sw{wWDB^`p;rr9$;<QV^OYDl62hi_NPtcJcsfq{(==Y~T(~<M?D54iYzdt=u
zm-!&CA_fBV`_rH6$f*StQ3RmhpPm$_U2E>`r-({^3g4fe9H-r2E>cVp8ATPoKmCOs
zQN-Jdr~}aNPk*V)d<?`6LTdM?r|8Ill8W#E==Z0m>d0#TickRh{po3XL{~~HA|0S#
zm7cCgH0oVN^aJQurDw!xSEXB&QA8L(zbZXbr>t345pM(Z=P#bcE5)@}!>+(FitZ|3
zidQT5LRs3@#^)`S!S9HrgaYwLeBKAgtq+UYnkcJJ^21{Omtl-=k|(+!#__rHnJy=~
zf!0rSPqv=uUVc<Q^dnvC_?H;kY~q<)$#RN#2OykZp4NluM0fHgZOUQBq@C!VY@F!c
z!nFE{?nQSH&7bm+ZJBuOkZml4HUwygY<FCcFKA?e)>baQ@V!lZ$aXGhW&*TBwuj-^
z4{$u>Jkk%@{&K;5vci$h9{rGQ#BEf(KjneCs`1)^I`8s|umiNSe%sS^dZ!>-BGD$^
zUm$z}(a@xCH`C-5Nw+PN?b8T925=lpH($6==U#Am?gAt1SZ!k{|4fut=w?}3t>d}0
zl3hv*XuY&XSWD}^EE~i1N@Bp^v6)M&LIp*Xt3ajYb;c~M>YKT=lC7mR!YHlKGuG0|
zKngc*mZddbFRkVf8ef4+YxNmfT0T@-pT!scelwTWWYBz8flF%#9NPenO&6`DHS>(6
zv<{rHmR9ODA>P?4k3>(6*N#NnD=OkC#OOz&r^RbWd1nLpIY7&ujN``pZ|u4vG2h1L
z_20s|Qyk5+2sKfS$sjRYnG*9|eBQQ_sV^9M5|cLjH%LUnb^Ko(pLg~ap8fv_qVEB!
zGu@^9^*6TZ=x)q8`Epq@G0%)IePRnA-8}`ylf<0BG`XFOUUpu}NF^CF;`Ni!ufhA0
z_*b5H<Ii?7ItzT~x5<;yOZDswtgMK40a_ws&&qdmk~2ZFB0lf%t(?fhRTNPGpgJyO
zPo#E0`si8t8k}?qPLeGpK5wcN)C5A}NYJ&j*&hefa;s&A@%$WV@q2v5O4~TMlE65K
zn8#=2l3T_k^ljyjb2`d+RdckcS*fB;_!Z_dEoDTMMG>uw&)a7kYdIg0%%O;mW@OjW
zS(Q~M6JpFZ!{Q70i1F}zwaqkF=a}eK7W8@(z0*WHwlG>dJRQ!_>xZZPZ@@hHOZI7-
z^gitf)I3y$`!qRXcnP8<68+3&RRvmepZ1h#yhXwd>nq0yZwPQ)I%OuAVoe6sek0b+
zdaPqX`AJod)#C)e=q8AkNVHftA^dk4tCMNo7Ae+PA0Yf5#k$osR)x;_I*-c!Cgl?3
zeiP?YCza3kR;vc10HB@i?F&b5^3d7d*>Fq+coUCyp7#QLX8@`{%aiAM_0zUA+v#e=
zltD3N#ufY_mCtk)tF8!NfOe*<EgUTX-bALI=~@Ec4*<U*EMi8gxzOdy!{IXX;FTO~
z9U>8<g6&D1dM1@C-2;fZ2T(_x%%N!z^DBcnjhNfTt3|iVy@MLa5P-VzSPsloN_|ht
z1}d(A*`tXvdpj>S4+dk;8eCF^SwI1ie8o~yFA@G9z**B0!RYO#nVad>{h4QVB?lTB
z#jG@eMJ8hoP{jKHZJB#FYv^ORGETa^Ew}=-%K+-B9P-FDHiz)PirDN;lpZp+Bj7v`
z!08M;CfiElRZ9$|YQkazsA(r$W6)0RYD@SLMh;0=2mZCGO_Z}Tw)T+HwkD@7nkfn!
zF3DrWJQ}p4DCX8~MX1+PI%6++iiw$&wxw|eV|MZx`=7zN5TKp0f2WoriUPceOgm%W
z8NPM^zfV|1&`z6d1dgkmnfe)ft*T8jaxs-+S`nvC*vVDxH;DNapk|!NUgBDFI&jP|
z>xj8~eBnDgxjEee<MmqHoT}7TL}`FGk?EgAhwmGJUj~afzte0^!_T`kCmPHfA2*(Q
zg9%~l74Pr&HxJ-S9Yxsc$N{{&F@Pr$;rsE<)_-$)DubvzKz)_d0It2XV=&Jo<`3f|
zM$1@wfH6^vg=$8Z6NW)TJ>iRZ<>cR78|Hv$VjZq~Nld4Tq??u+P^~T+F~AY-(i>``
zN1c$>brD!>FXNS3yI6F8u=K3UqQ{<)-Ft>r^dAUcN22>@7yZQvSvP%dLG-J5WttTI
z04#T;=;=m3pK!|}x?vzDJ^;r%E~2%jvVd9MF<g6P7QK#FoVz)ikzgMl$W7%(rtmjh
zlE;Yh2he^ONWI;O>_w*Ug^QE2D5NW|#B7NxJbpLth3|rt?EqhQDs3-Z4N}A_glc=?
zAHvfgpzVd9g5wClk%#GNFP!UI4Jkq-Q+}q#Ise+tbuFx(B7*Bt?{YeO+tKW(HnPhz
zT(aY~?TB;c*~5Z{LC6pi)HkQWf*N6!bYt`+Ej;22f3$}i;dfwMP>&noSvdZ!M+4?9
zZiKCa710FX7r`QW?lBwTE|*5AS=9a0<;Wsk^4F%u`!C<aO=Sy2t__wAQj+8mS)^XR
zc;`!*wwfV|r~+{AJ!huv`X0m3Qh&(F2qjIn$aoExoaNaH#YfcK%bJXa@KGVM(bhRF
zb9@m^1fRz%bM|t*TnwUxAzb|>ohnkSlfiQcKLt>`pU$Z+l3LeJOSPoymc$f~Z@5>g
z<y&77h3m@<I(<f}6+yGD^mym%y_`XzAgTv&Jh5bi-c`+$Mz=^Ju95K#E9_(OL&5Qp
zA>M9GDE#lzA&GcrmwoaKK8WU%_-E%W;+;*{`k=kXVf&2H!|8S0G>50{GfK&?EVs?&
z`>ZSDw5Ha8L$<qwkgPIXo9ROmr#KE;acg?gjQfcZxBTjWTo<7|%1Zlrk8-m6l)$nz
z={K9JMdW_BRr`SMobC2mE5<sy?w5;un94ify<jHv<NanryE1;JyRh(~93n^YDt+i%
zwDV&0w@<|*Jv5&uZ!LdkJDDjL`R2v+p+&x#p^CVMvd|a#=EaO5#;uWxm;%sWp`0Hh
zU!fe7C*K!9EQon$Y-K|19pv?X91vf}l=!*^npzB6dNkOATa!5*Q<P#;W~C1H>P?UF
zeH&A(E2xGv#zX+%^(lQ2>N_2|GF}mr0A6?LTi@TuXbWbIn_}Pucx|L_Z~mYo?adXj
zq#2Np==<gib>us(6tS(P!Y@TG(vcV1Dq?3_xvco3jx5w36|}uvR$QzjM|XhY?d7uK
z5*<0M8~Wz1a#?Yyj;zxgQ~lm@S#ep6wg~roA4QDoBbODI>&S2WD`IeexvaP%Mq6tf
z_de|V_vNzU&oSB(;G}_y7&cHYEB>Ohw;zN)a*$jXT&W{%gE7+>B-aI3#c1n-o0HI*
zlH|JJuR7(Vk1%9^B-aId#qk&I2gE7)vz`kv;E-G`+8)EJMF}oX)B&xp7Bx<=tQMs|
zmOYeoo#kI*2sp$Yf!9#ffuY)Jk<e=%trm4Y#H&RK)+g$ueBlUXT79)hIBg>Ku)NN?
zCq}!@S`$L60rCeRG~<w*GwzSk=8W$nr0-DfOnb647;c~?60Pf5itrx+>J-)GD23%y
zhaH7Hh#_5FC1!7or|)4-<V8q1Ly6R`vl=9ZODbU77o%Titv*Z<l>zkr!fPS!9F|3J
zT^2!vOA%a`MNrRL1bLoH8%etI@h>r~liKw`M7=07=l(Y~qX;e><|2r&7C}9u2<$d%
z5hNnx_WvV`;ErAd(;)N<K>nEs?fH)^f-JoV_8?^EFfM}4MiCG#k?2==K1RC&jk+M$
zBKXb7P3hVoF?VA;7yQGC41=Vgk7W@UB!){WV7tdf@Fj>p|5z)66uV8tq{-FDeX-h#
z;NJ*K{g_uH178_)cF@`m#1^cQ#;cL9LG%1$UX83bToH8uj&Jhl(dny^MVVb&jcm;x
zUX4^>Kcva5`!`m5808~~7&M$$JPN<m>79aTi9~-14B;z=bM_Wxn!F-Qu^j5ZhVV<I
z&g@sN>nsUKMXe(;*7JI-{v#Ce&Ipe6gO}1|B3dHRAN@dhyAd4ghfI@CB-<^q&PDi4
zfa7<!Sd&$o_|k~=VXRh7{srZJDe=f_nO34D5=~;Qk&37eP^;NptBE#G&L82hiA#pu
z=*F7dB+&O8$#Ub~NV!ByB%0hbgdZfi=iKD#vtT-2*yNEc`Lt)Wu@GCJ%D;TP&}$UZ
z2=Jy5?Ra4nd=Z2l&Rlf7kS)IzkBlXe=QJsdQ>OjPmfx3P`D_%cD(M^|@ws&y0O7{~
z>gGo|Ek=;4XAD(mYB9tXI3ZQ7@QEVId_r^d=d5aX___cbw#QagwI)|ocI1Yugv5Lt
ztL8n*P3{k{|M-ct@oGJm=}V>9N5ra)kFt&T-Dpe!0P2c2uDWXnRp~I8@<hfM@B;r2
z#SCi-Lr?oiM>-h)1!y1XsQD=-@c`{39p#=#t1^R_I`k;g{1{&>I|rIm0PSK~sWC8V
z#?V6A3;9tz_&xz>AL&>D$0G93m9l(e;Q%-zSUBAUqNOmK>qk0Ta`0Qn+{`dXM-I{M
zd-=XL8@@W+saLWb?_<%6G^3ryIQ0?<dap;3XOy7B2>Jjz^#gcphi5e$OUSbxp32EE
zi~!!mV?P5-FZdDx_Dpzwfa4qTJc1`3j$`EUSPbiD9GC!pKXJ5|wY0P$BTfHWM|c|d
zV)8Rk+LbwHG>;7Qm{5u1mSY$urz6zEa>A^i#iPz;4}CerSjeFU(&LGo$tF_j567sh
zk8=ZQ2Q?GMaRZrT3?->AEe&Kb!hZy)UkTT?Y<^(p<0rC;W>E}BV$@s5xr*)w=WgQ8
z^DKMw(&ozZjVdZ#D<tM<jOu@a1$m4|gBUNTdw)NXjoJSd2tSBZ#-HFcRRK}C@tme%
zFXVzt;w$SxTZ9iAPph=AU9~cA^~)H%#7v4|V4QMA#_&5h*T@(?dm-0d(yTEk6BO}=
zVwmg}!<cL_cw?+X41?m7Rwp@zFmMM?;H8xLFXZxzbp7(eZ7Jnr&<+KtGQ{-_0qO~A
zOAAIMQEU%lK5Tc2dxC}F{CWcS1W)0}oWMOn+o#6-@{QgTbV%o(V994_-Jfw!a1D<0
z0B<7GdV;8lifA;EdxF7m^qt5(!BIF40Gvrr&7Od^-Q0SDaU5Ja-MuIH;;E%4IA<{d
z)YSj0C)mXVsz`dH_XNr*?g?stu810+b5Ae~j`u(3p5Q(lcL3hRqxA$;CMlxAB<=}%
z!_j>b_XG>!_;wQa1gGFQ4)D9h(cVdS?+GsD*b|hq^aK@7<=hh-v{`zBrxuS|Hn*N&
z_EXstETYsuj8Qk9;u=?CGWzn#T&FJ>Jpt7hqm~Uoct3!8C)b`}*;CmQ1c1}_Bu0I7
ziW~4Oa84ucqPg`1JB=zTT_+^wS&SNfng#8HkUb<whPsS;l+F`|7Kx-q?>J@YX-?-$
zFy5ZbEo+)h)&}WX!@owF*L<Ofp8*aT!b`5=M-2YY4C9resTNzX={ZDG2|?mZMLY$Y
zM<hJ`;7J5{1j3UB$6oT3w0a7|6FLRC1}HZbo*0%rfPW*-*o1u=0(OI92OzxfGjmyj
z&!Wy8<Upwp0#%aDCe{$k5O_SMqT2-28$+>hf0V$#_OU=#L}+<{X5%+}EsH_AVkG8L
z_xzfL(hRgsNGhUB0RJLHSMn^PYYWdu2uPyn65;90*_On=_U=F~K<GRfT`!xQQb<>S
zi8;;DZ3XRSJvyJ|;LlLFlnj?Y+nKi1?*4_-KvMV|C43kDT>@hUz~fJN@=QZf0({*W
zi`_)1r-~MQlS53GA^cGHe6^{B%Ydu~q*MWT6oscR9KA`bJBz(KLZ>6-%W1qnuS#Je
z4Vh+J*<F3>99Qh!p!pl17S6$HR$sH|h7;_<WxWky*EuX<g1qN6NISKn?*ctD3}g?)
z7!a#|A!EFQ*ltjaBW$iQj+S-&2U*KR05ONe7Tle|b-c=S*uK-bj?aN(%5<*dFW`7E
zo$Gkd8H#vs2G{X_;Mh5X>-bideT9EZpXWN>ai${L0>Ur4*KzvPSvjh48QjMSPWk!s
zT>HKP-yDGFFmwcx%5=$JTY7i@FV53c6J(n~zX{+m8J>%9Tmb0x_qJO+TK#p-LYB?q
z`uj*qG+fU;-0E*t&{m$M)!%Z|I#XC!8vlNKfm>=z5Ve@a%1bKKC4X%h-Alz>VC9E{
ze%LHl{(CsSrI@s~zQrvbt*!4w@OG*Eb}7+t?UoqX)-yqSZI;>i5{(KhU5j#WeEDZ9
zBJXT&e6``I3Gj7iG#lSQyKH;|-G!s^rDSm9>jWw7W^?144aZCp>&~JzzD)@EeKt3~
z$%gKWJoLslH$z_f1I;~vIxnZjH_o1W;~QXiX?#>gx#iiO%a)f$(S^mT%0-T@=p029
znL~E5l0(ZQW}g>wbP=>X5f-NeOXgN!Yz}a=wHTK=SFphqKwM4Zl);i~DmW$+*Ktdf
z`i4VSX;6wp;_4CSH}j&rY^lv$Q(nk<zI6T0zqVDeRd!wEnd{#WzhjQVQuDr)eaB3a
zx-mBVt|YtxqU#zV?TA-;DV6r8HIcKig}Yti9dVzzuu10fj(9vAF>}exwDYTTpTn07
z@N35+;x5_b4u$#?=ML?Nn@_)KcSm2z^!m_p$lS*2cbDYL0+4nRpw@QgP%va&{P#*G
zD}tE&#3^2v*}8b^D@7Fiimi)B2Ay>IymqtOdxEz6S5yn!W(oS@!<9(8xXvN@MGD3C
zI@b3L#b&2(e1h|HfX5Tioq^-zSF{5NGJ638zcmla0PMx#=>tb1Kr0yM8)Je`GOyY_
zCtc=(SqGZm=25|X0H5C*nFJqN-nnk~+)9L_Xqg&BCjcH3;dukc3*u52I=BsfE)$~P
zQ_#jEEkWJh$OI*k%odG(S6$%*h0Rw)(0oqNR5&KjC#&1R3EB(aj`^IRw-z9E3phbz
zjRY-n=n3j@g%i{ZG(8r`1Wh**l*S2~euWeC1&Ags-~^?>v5L6V8~-yw6!~Fe07#`J
z*wokt$7SR<AtG~uT*(PFI@>HFEYaBW^%bsl1-@29{;wtBT!YX*4+sY}_N;%E3G0BU
z7C`Ob)^B_&>vk#C=%0!C^H}Ey$^0G|+Y|F!ZgrblhO-_obJ6GGXI#}L9rP5ATsNbA
zx$ReZns(m!>~)*$R|d=Riq&dl*{Q2?_9mPo7*AVo_bqri@29i%p4UvgoFG%o^{-`%
zxuv#w=n}J>H;|;(7D=D59Wi965bs;?k1Y5J7JPH=xVIt&i?7K|Lc_*(4&ZRQi?Z{Y
zyw)?wAwMWP<heO1_4|fBx35_ya`su1A;@nthvm7REzEg@!ww=6|Lf+Rl=GIzBd%wU
z{F)_l$1C>C`wX7)FHBFs1MV^HvsMgpBwsfZzl(bux(l=5x_M(G?2U;}xo%$h8q2dm
z`qt~=>o&8MXxg5%gx+=!b(G;+tX(;g?So3MV5X5^$0t^zxfY^83sEy3g|!PWc~uLC
zY!JlJFVnmf62th>ndYUCZWh|PnMR&C_Ay?|)4~qZ;}^%C9i|kuhr^U2hmP`_DhqKv
zldp=56;&oqMkSuYyU0Ggd+clOBKNo<caf*WG}gW<j+Q&?Yq^U&B_>f@<p<(0K>vc~
zRDA<gv@zuTsBdR0573ykkMp(>qU4VQ5pp@2zZ3fLP5GVB%h5gb?}XBh^p$9BM>?;z
z+j})Szxfs1Ytfc3h-R`!+tt0n9&I=GCVRA9+*{H5w?(zx+uQ8Xwq5T;TfRDaH`?;m
z(R<OBuZ|9l;qBE?F-n>CH|4&bBKP$IT=w-8xvy7I?z_F4SKDFp)OXn4Evjv4<kNT5
z@K@zO+9*%wJc;;Iuj>D7v&rJv|3DT;dUO=gl=}vzEkOUEX?nEwQQqd?V%GAl+zvmb
z=YZFD7*zoIs7R$~w4vP~IUAkdV;ImA5Z?bg8oq(8GyVqc>1T|w&wyju_lo!qVE+!D
zl0PV-D8T+RJfFicfIJ)EIk8X?D**PL@cj9sB9;K`Y4EK62_As`96V(fE20FzeiNP_
z;P{d}PvDuoL=j^Eb~|$ShouMslqv{M+2Z(jbBnIHW)FVzr?hOPYbpQQK8o=>bjx_D
zgAAsn264(>5PTA&)W6LJ)6`{%a~T^<G6sj?dbP#PV5+oS5fzrxF~2Q27);g5K+lMM
zFi!8-_;LY9?P<8KNIg+SKE2K3baRMox}1hz+LiU&D$UWE`*gyokmuo(BE)bIeYl+V
zdk|tT0n85gQUTg=Ey?L2(ui|@*P^BG$TO3mxw@Q>Yt>t!h&n51hie}n*ZK&)K>)uR
zETYgIo3Y?IkgK77T+4@atiM&}sdTmDU)#K{g*07PLEJ9@Uw4XPq_--4#_{{<8_kjR
zV?F)qc+O_p*w%;wtee_K<I<Oyotvd`CHCWgftX=`+~XzY<Iv-u6}-e;^=Czt{F#@S
zD{Yopma<=8V%~h0mzZ~fX8X^)#H{|Jh*v*T1KH0@%zc6B{tGWLZ-gV|7hYn1XC)?A
z0A~~nrzPeAce5=qx8>l^?z%5Aci|9yvuTStpsG{2EOK39p1Dm<mBaykiMjVZUSb{%
zokpzWCFVcjSih2&n4PPT9jj=w=>RV=H-s;26)!P=0>|)Gyu|!F9KWsNCFXl@+yeOh
z%F(vCr`Ma|f>)UL$Ue+vg?TTRKCLiMzGuDiD;XVUnM7M)wr?{%YDM;BTVU?9S$1xT
zly;vOwOAIn^xD5FqS~*#z`Ss)q)R<uY2C>P9|KT--Rj!9%?0LBn`OPvq8JLtsO_@Y
zx?K*=#l)St*_GRvQcp1|sQ*Fy_l;5KNal-RJV(swZp_Bf`;uE^xh4?v$1%zynYI$E
zF$}Ecw3XW;BUyCNlD78|-WQ-Iy7gSziHvGAqNRa;|9yIA7M`V`{c$zlk@`@!ZNv4k
z#CXMcM%|akWk7#swY(!`kQlB{Bqnc+=Say^eT^b214LkNL@N%VRQkZt52#*iI8C1z
z<wfB%Y-(xx3E@8g)P~z~NRx2(<-Ya|Y_d!DO)G22pQZ&X{$rc4C?6AaeDbH++?=w=
z$doE4Ng?95&F0*o+kf1$KQ(71ikDvu>apTA-|jX?@Z4f@ew`y{EuHflch063&Z9YU
z7R)8il@`wY4|3vEa_02g#GIucm}x(>#mtjn3;w1hmLWOD60gVdox6VXxqQh;pY_1n
z8PZAJp4&{h*=2_5GQV|`iNBI`qSH1$itWt)kEESBJ}S|)GbcppcIH3v@O&0kIIFTW
zIwwY1jLy%aEJo+#DBWh%jLt9EqZyrFvPUyIr!bFZbWUZDc2sa$l;ykk)1xdF=!__f
z1v)dzVu5atR*JX!gjT$wRQ(3<eK?#*uk8pNnsK@(S}F7Jp)^iMMzeA1?_!(+tsAFB
z<@i~~4|$^-sAHq82I}}|Hc-pNKax@xN~u0BQWr|8dE89ir7jXzL>ne=Tw#O`=i*7@
zLY{xbFnNP~JlNzN9@U6ws;4L-eT_7Ehe!1z<o<Pv_-UOqc}M6OJNkD;3<cyPvssG9
zq?3A&PonaBoCCV%2J}|H)0hWrotqEzuOr!?z_EOjB9?9<Qxti5437QeDF{#VKNS%J
zu$P2qJshjaQw5%qn-%ezJoVsNvjqYG_GseS3VQ=!Zw1e!zZ6j$VDARc?H!8P4X}Rz
z&zFBgXMlYqJTrGGVidssIXr*vh5-#IH3y!u^r`nDf9pvqyA+-e_ONF)Jpb%w&mZuF
z9O8kJ$~QF)^Mj{sn3nuY4^a)*yZlQ9>Gy;?=T&=P!|joV>7f16F!ed26PA0*hUsw-
z{R8l(5X~_4--}f5Wy4f*dWeK0x?%d~6E;laKohx_4bypW%m#Q9nP!-#!FLegH;F~8
zd}11=h0?MargQeo0b06N?{_myz4j?055U)*LN`pM?|&Mm9(&ykQy;5gn#a{Jjh0y}
zk}35oqemt@XT!8M^r*Iv4b$mxjNZqFY2UwOmPP!l8>VfZv0>V5zarxHvtc?7j)?$o
zBGU}hd+^=Z&xUEl0Y%h1z=r7(IKBfo$Nyy-rpmKyhUpv*F7eFWF#Yx~i(y)Kuf;HZ
z=g9wIn0}om4Van#>W1m-XKa|-52A`4WW%%(9H9r<Fr5L%l!G+k`IimTeemr%$cCwM
zND*%ivSAtqPw*i&OoziU1mO24N1OS~%`p8`_B1YrX~Y53FfIK&N5k~HgBHVduf?Ng
z9n8frUGkS<a8lY=MXPI{v+=eWO8$O`4V@?ZC7u6Ki}9A{up%4)RXvcKVY=}zS??3T
zX<HMm-h0lrWespvA?}o&xfrI0%nC}(zeTH6UodljF!m<qMQ+T7Vfw^~Ifa<_Ml0XE
z;IwT5<HEx{y_TJk!*De_<TkxN{0|yCK$Rh``w`3Lzz|6_%-du5za*;AsMm<?2!hl!
zMcfCs$1Zs8z;h1Zu?e0PM-;ID;7vUC^T2fZR}pOi_FM3rgyRsP)Khp$*<gftZi6<J
zQ>DVvRZm8Kqla&UmxwkEWIrEOL{C8BGun0)aY{N5!_`1?-t6H!QgZ%sLJ@sVNX}|r
zh&bUm?5bC^;Q&w9Q;KK<u)hP(NjMIXrxHB<Pb;Duz#a%s1{~>ta*^<i<cNOY-@Ay+
z-WUN<XV9zw_O|e>gkv#4l<Ntf|8`Cu|GrBK^g=+svlv$aj#?aYlPqRu8kf!!_(EQp
z>yCL2n|N6}^HHH??UqeH4e7I;?@?SUu-Xt^<1820U^w1C%LTR^j-_X5fdcf!sKAO*
zL74><I0XMF&_0xweL=b(U>^rhfpeI(0JO8S`S!@lDNZ2fT0ILDd(CHOyMm?zz?(v}
zv$HGVTMkfznM=MRI>cyZ5qpeYndH^(>Dlfzx0HL}yhYsQ-5M!ztAZJ0Ket=@6z%;h
z?P&#BzuRv&7Jn#$U!n@-vw7(CyZ(8U@p;a!;0ubVaDlT+%|JJJfqKakoLySI?gVt3
z3~RkssCM?{DDsG;lX{KJ`-W@eHBhh3aH)}tKy&d8*T^@Q6!GX1*T@l<6*1^C*GR7`
zbSIo^<TyA+Uf~+Kf}=aczsYa7MqUNQxhq^Fn_g8!)Kys{Tkp_m-{;@;Z@5PO3X+uo
zNADfh8mazc*1Usnj5T&O_#f9AIYidT{C^u$@pMa#JO<HeS2>Hluc24I##vk!j+)nK
z?>GH_)JO`{YUE&$zJHBtWC|R=T;m#9>2IT>PS<PXO4KH;M!o^fGm3*kv>Ms;x*{3_
z)OLU8RwKLoEo<b=biGDql02%BGr>8PxSJo&p+=VY+qFiHHFndC8d)tBMq~!We(u2^
zkX*1s+Ktln9skm_qB&JnvK#jz*4@{Q1x>?l3^=6|c7Z(27P}9kTi3}5KgD)qXr>}U
zGUbA%VK*k7((T6oC<?M0dxNH1Cfki`;aHtXo3*FdZoCa&W+p9YvWUxIlva$I-EORJ
z*p1TF&fRV-e?t*vZ_t9K8wD?D{=e9b<M+AQjs8}<v8b!v_?OIDv4~PXG5SL~K%&`=
zEucr-4YnIsz_H*4+l?1@7^e1V-EN$!c<6Rxo13U~H`#8S3&+%(RM}3m-S`;3teb2%
z#@<pygIjDju7qPT!1;2AX*bqaJlyTZ{A?q%)q^Z{qwh|O-8j)|H`@L$yKzUFESW{8
zb-OW;a)Io|ytkp#ZMGZZ;E24<cH=xaX5Xd}|1{f;Y49Dq&32>L9dsdg*lvu1BjOI*
zjbq>#1@ODf(b7>m7rSvrj&@_B#cu3q_sGd^tZKCzJ6P?;<lOAWk~^h6m_}*;JX*a;
zX(!ui2bA1$hwa9D`-~~>8H+tt;I1O_-=*z}eYx3<wRXzfO*})38PRG5mAj8XaMmL3
zwA}2**qyS1&Lrk3(P}TroCL-Xh&eSUyOFx!Nq@^;A(fc-MHPDN<dN=AFfO~x-SAKM
zP?Yz$8*ZPah-Lt9;xR|MbfD6*vW;}}|CS@&%(MDP_lWePk#4|!^sM(?M!Hnc9B_E(
zBi(`j6tVL^9_ea4z+n4;N4n*3EPTKto##U|yN5i|rE_$z_;&yaqmix?C|W(_k#0L2
zn;y!MZtN~z_u$_jh=)eHcONOjAK;j^%R16Ev5aUN9I~DXb*$S+XV_jT2c+#4aLzK)
z#X)rRBhKOpaEyDzS^Nte%N|jeeC~gYbQGwKbXP!{@rXyda*t64k9nj!c)+My=k$^8
zD<_Y1LqRhL;7uXgNVgrntpN4ef!szqaZvVbi_YmI-M>z*ZR!(6*Z}JEoJP9T1Fj?8
zr`bn3tw#Q_OV-FNir}B9LX*9?MmB@+`cF8!N<URZ!Ka*E$KW{ll-?gXXRVRp&oJ+P
zmaRta*(Gaa%6Yv;PRheIay6)bc;-?gGeFbDlWS!6=Zfg~oNMGxIJQ3L8d>^<BHn(%
zHF6Lf172{Abh6=Hm49F6;TpLL6iZ%kjV%095qV$A8o7>X<w{b3C)dcKAo&R3*s<GM
zBde#GHLtO!hhcm5NXw;0UghrJTSQ#2)W~lkdj3n!;*)S3eaTr|@D;kTSG2@&;eXUf
z3e;+36OhKf;u<*>j?Z6ljkN8PH8SafULz}bag96!n&T7)g=jUh;%f}|0JZwQ+-hXq
zeX>TTT+nM|FE6f<AAqwTac})6hZ^~4Z%($C>ui9`t!;Z`zb-Nm!C%pSKO+Lm-gewx
zX^#aE!OmzUZ(bfCmLc|^Uh@Evuvhlf5gC>NA_L)PNy`;`vui1;(Nb~}=rbVG{tTYt
zZ!j{x;a#Ea`=m_i+AT53(Vm_1vMtyS^a*d|u8=`uxDH6nxM<HAl4&s*77|mS;}Ogs
z=wNrkaSo_cZ#Yc{j6sjWX{}mI(_26k2B^1l=nIf2TFFiW!|(Z!D7psP62#2_ntuDF
z)n~X4OU$xp&l>qyziEOltjXi428rQ1DlyBWJ$p%}(_lD3Oo1KfP}@bQ-jOyXY<A%T
z&=PgjSOKDNS}xZT)g0mR0QJ`#6XldEIJ75oD4&P1CnFbUXz#?CpAEM8*8P*U(c1pW
zZ1+7GIkuC;Qu$4Z19zGdJLV{HsxEP+yTmD6nH`ht;zO1=oOXX0Pup=bWK2bM(@8iM
z?lFx;XO+EX<R@~Bd|@uh`N+cQ?VX)dI~11vkq_s}eI{Sy9QYKkk+~%II&;#dRv&Mx
zK}=<FZ@(G(S+>v_2h3Qv<rr(I9_tkM4LeU>oB7w<EV2@Z%%Z$$!OL|xiluCUoMLIC
z$1=@5ZBHzmU327I5~Xn_yK~k!Y;t~?ozsQ3>OUs!-#NzeOD?f|WZ`_BBj-MybG#d;
z+BVJP%+B>s&RqB_ISJDM+goz8@wSf#Z#KTAZ#EYBsjB7~p>HYD&STLi%L%t)*3HJ^
z*3HIutecG`tecG`t-FY&th<Q*)?LKX)?LINQGAZAPn066_!BB0EA3xIPkMe|?z_IT
zeNk9$!R6Dp;AW!_`V8=vmYjT1owNs2JTUJ7=v#34b*+X0F%XcCw(+EB&{YSCPgH)7
z_CTLS_%VP-JUlHFyJ!gTCXzb6fKg^;jj?|S#}lCM0PJJn8Em(U{s8+Fc=o`tnLG>N
zX{KU81lX6tvlx!~<XH<(O^01n0@(k8=UX`Dkmn#gd7XBl0Lq?%XFRJ}_7XhT*rWCE
zUD)F=T>bdhmKfz1UdUxomO+Y0q15(`QdSk>L3s$G8VJx<#IG4brRy308Uu7HXtx1W
z8RD`c?pKeohYHD7&8IB&Z>b1p<059?daIDNZ>6IS2}LY@>--{?-k>nInUb4wYMFkU
zn6_SFvp3mS#O!4fOuTxnh+B&?Wuiqj)mzl4>@BLwhCZN)3eg`kPpYF`0TTZG6j?cM
zMa#+=71E2^*wQ?9aoH&=XH>{&?RoS<b}_;SNUhC9g)G_;Dnxu`jK-BvW3^rX=n!q!
zzd#M-QFXh}A3%x;;Rld54%Qz)iVe{oK>9DhF2)1&2ap<vxIKUr7oxp&bfd0aOabT*
zAjRv*N5L?f0A8(20of!(YnGiuG0g{fg^dTYsgCq(U>BL;Kqh_wWHTLEyCI4m;8lcL
zb@LFPb<po-q+L`5cwM9(p@oiY+!QuR6Fa}ao}eRpw6u!|fY;ePK(^FnK5JzcCjnl|
z=vDVtA#Xjeg7K)0T?_(vZI}dP>yTnqkg{=Y?P4&%t1cz8O-Rws_)ThO7l{C`im^bp
z4bfWulJ;ok0R5e(b~<u*XS=8c(BFA#uOoeX+Qsl5c7ErngN{7k-!1|HUO!Q{)=@_`
z{m?G@BoR9uDd?mlPmHpQA^@*VV`*VXM_xu<9t`j*J`TvvI&vONj?R;057k9a`=u}J
z;w(UaCaRlG88^i)s(oqaXQC2yO8b1fs6Nlm&qQ_Cku!d@i+hXg{7h62ojrObjL)C#
z{7h6&opML2T})54^D|MsLbPY1itMzDgFEc}OjPd>?U|^&yY1rCE;~OH)kl~4>t4Gk
z1JGZe@2ku7I*e`;puZi}Pe)D#q8}l(L7;z#HV6cyp%Vt^Z$}N_6#Wb1|A?Ijg?o`o
z<y8aVSQ?`KTu*Ocl|Q7n<*$UO6@wYksR0maA!@xQIzm5$avHo_3c&HSfqK6clMeC$
z;*$t<e=H*|7Nx-}LjA83BMMajqEUp}Igt@#N#(u~YUy5#&_=08k&0)Cj>w;S#3mXP
z_26SD$svk<3?<3s33Q<KV<`QsPoQ7m-owjq-QZthP>ZsG{^e1-n0%BbwL9wT!L&|W
zv#5u@GMQw30==K{1o{UNI<5YqQoz49an;Z=v_5N@=%OXix|SWRT9&WNIvK72i2=h(
zspT4I_^YPn><ClKlTyn>tCk&1EgM?3Tm&tr6q8zZky<9WXxT+-+1RS(KtoIE8ZI$l
zXjzQ4JO&N_)wKLG*wpgVVytC?Rm;YPmQ|yyTBe?}31@K+e!!`2sP>%v3kZDz&>nDV
z-ax0PB^#Tt1%(#AO$yKhPIZsbJHB@P0jI%mynl>dD(I^-=npv6Wp?deMIZL)4>&D4
zYZIR$ZvFA0@KEj8($5gF6req&q=f7APC>Lpq7Ctv5q{wqPv`P5O<s|9*7B4=iQ{%r
z4B)ueLJyZuDJ3Em&y84{>9Mv4W$WV{>ll`pPY^AUXtB;h__X63>jb9p5i`$OVm*NH
zJpgriOEXrvpi4L6uGvJZw`Jr#L-T5-e*!coSn%Z5GRZ_sB>Eu%g!cxhgSxs3*4CNx
z(=DN247uxdxywPnP|E$Ojg+h1C|b{QohOmY0QG>IT<zv-exIW@k?@YJ#P5f3C5~{Z
z#6a^CYt~A<-l)XVwM}Bc;P(z!;s%I3>?Bp<OHpPeZuAaU;s|Rcu4h!@rqR|)oD3}=
z8(OZHS_Zgixn62n(W>POLrdvW0~rH`EmF%~(6EQ5Wqe~(%S@?dfK|(ihL+zowrZJh
z)h3#kkY#i^OnW(O3WQEN$z{|mL6#BG5{dp%M}%*uGCI=HwTv_iHGdXTpH)JpK02IJ
z@9&a&p!r0iHT8{TS`AlIi2=i(B{=o35cvyAy<=*mnIiROyqOjHPMb9wWJKC`BW$8^
zNtyDo;aZa`n{F5W>74S{My)4WBGFRb72%!IY5S&YPAM0#3x6`?X6bUj1N~enw?SK@
zHPP*@ES76OWfw0=?vrjVa_zG+wOgP013>-2kld_+R#pSR)$0^X9%M)+S|ZUu;EeEf
z0LR5{)@~<%;xU`}x|A%WwGmuMJ}!j>G#~J^7Sb0+AxYO9i2*~mQd~&()98p#YhzY3
zvs|W>;wtK6Et@<>6{UAT%_^FRq}(qhlYKiv%g`ziTH!P&`;L)pq9qdjOYsQr4p2)Z
z=2TFrpl#wW<#uVP$z2TkZ>8LR?TrdRazUcW&3gvj6F|MzJ?DZ-L%!bkm-*`7i1Ssr
z<SWp6zCLYk$=5U^U#07`#DL)sf6mu|i2nUETD~?n^YyYn=c};htCTMsS6uQn;D$}a
zm6qx6)JRMJTnL?chSOiNgHfG8OC<VnErjo<^v~{*Q@%#rw28%r+ylDYd}mP^&a&J_
z?-||xO`Ard$sLOD4*+Ut&z$o$;y5&ZSLW;VNY2-+=GJ@#TF=)^Yreh}q>C(MxJvUc
zF%)>0^YsLxKX#V#wL%LsU+cfi`6^@5@-@@Q*CQ>g`I-VP?-^RIky>WBXt_penQqmx
ztJKMG^^+Jd{4TY80S%vNT9!*NwY(^`%&=;iZfIGzrA15an8jChq!pD28{0NCq(H|q
ze9YqAb0~g*cFZCXjt&5CBGZmp?0|0zz;7jsh%e(IM`*|QY(!f=T_MeG6eBE9+k_Bh
zUK!poDR|y4@&nY2AlKSteAQc8!w!)|%nj-*M<sI;Fvb$|<ltPGha1cp#GF`P@hJe<
zKqtS;%oD*lj+i^t&xLuL!JI&E1`Y~Snn~urz_^*1`{l+g$83j4CFVcElrJUoGcZ0P
z<^{Q_-PB+XplAFVhbwy|bL|UuQ3IgvjmU+0j={W$n17E@?B$qwAQ<}-bI~YQ<{^^#
zw888{j{%lxq%@Sw%fYyqnCnI7!Ymt=LnIUPtVm^yWWET-bHqHNaV~22Gnli8d2OV!
zSu($!fhL?m%#k@TlYK0wi;AGP`)rRRl}hD#@vS`=TW0X$+d`v>Nmn}m8us!}8ML)T
z@4C6wNd5Q(wVa1RvgOd{7;N)H3eG9dEoUD%cV%$P@w{jkZ{YDJGOgt#12Y2P=gAZ9
z&&r!EC%SpImQ$O_JVXk`^i7DGR-QBEGQ?cCNEhRxbI24@vu8b-DfGP!+oF(yAr)B7
z5|=O)xx{LAful9RJ433O2H!z|--j%sN(EER(yg+o`L&^@&q>6zI7A&@fz|ZB49nv(
z9g}XBi<&zP<_Kcm5mNA?RC5p*2V7<~SHrOc;7w$jnx(H`QU&lk!Xo~)sJSt_n$L`w
zk|?HKA!^Brtmb<V)BXze2F-I(Q?7`3h(*MFC#2xyimc{WV4QV@)w~MF8G!d9sb;6E
zcF_jl7sw(;Ry5Td-6ETsje=!MNTZmtLeyPS&0ip989+_RsTomA@aLA02UVLM!;4fZ
zRN|I!1&kS2c@!=eB4?BV>6Y1I$!m5|9H4Fp$sU0oLlq7wC=w}#r;*Bd8AAtfwz<YJ
z1TdYim}!k+Ho~W0BXiUe1B(t}RB@3?qMt=7=cMR^VA(50H(<JwBFie;aUEp<aJ<Ye
zI*w6ggg?D)_&ic+P?<$XfF<-gi*C+z6-2@*i|A1Z{}`YaaqIBS&j)p6&Z;7rVt5g$
zd?RC6f1O^h;263xU4Tfj#&8$mH%a-5^|LA8k6G%93=;h^Qh6ywSIo4FvY9M;Akzg4
zpVJo6JrLeClX`A9<wqOJk6_Ml5dluyt4O756^`LMa4wKBe9Cl<M3Oaz6A1s8Vrc9Z
zgMMs++E3n4*=a7K7>3p_xVH+oAD<hLeuLXj0vs_nsQsMg_Ol1RzW{#zEMij?v;C}h
zZ9jD2qbifBB7<W3xPHN+Rr$b2<(qa<{w8&GB%BU>^now&CJn}obS`<|!+f}@Td2{y
zoq@dJ_0_gjxjpUy=T748m($2Z$)0E=n_g42?W$k!ud1AE+bzsvZ*sC5!V`3hdbcy2
z?2YiH+@iN!SVT%yGue+@W=r-mBiYFm)1LYT3smD|zkM46D8QRSv}Cu3ujOr;z=!6R
z>@yq!ElA$p`fAf^oa~L@Tu<B?Id$s9>>nocEQ6Sj*LQv)ng0XhU1I*GWe&__2u}=?
zDe<8-wzoq4*H&ZWxAGlS`8)FAv3X%~IFBI0lA+E_8B0qLH3K-Rw6QcNP5g6%D~Y(u
zhDH>u&f>oS$0SWWJrPzTT;>3Mk<b<&>N|l5>4~rnAX){`o(QXP7yT)~o5-{$!dAfd
z6Tq(%ix^tnL!Zpd9BjOqQ=3O9%g3`m3YSB60L9oe)N@mHPS7iedj@b!wXPm&TuBXN
zX8WH9mlEcDEV+X2!H58;-FxR?v{AMBqk&9h5;6OS6^yCD)n*772i_z5<vdrLRQR@#
zxZ4d}tIfwo5^NDhwIO+>!_)~iSQ&d3GzO?G+)Cc~^w60I*;+D)d3;#GJ2kkqgo808
zi(AVWIEH3XJ3h~?<q>>$0Df64;(QIWwT#Q&T3$xTI_7@?F?|+RFf4$R-Qhk)F@QIP
zXvv-p-*kXltzmAhC8(iHb^^(p7^aR2;AEcw=fA|Alv`^#(NGq9vc_EB`G;io`44>~
zKz*E(VWORoY$Taeh<Q?d=N-u$55^dPBTu$E6V*uSn?YP()pu5|$y}d-BblPKCFBz2
z`$m*L8Ds$0cP2{aZD9P9qWm(!8YPV}dkwA#;>v=BUz5j}r{H+_ACEDT4)d-I%NSGZ
zfn8JwIBb^53yVI+EO|vTiM}7Hl&Hm`zXVIa2Q2y`(-jblE?URlhZuVSYD{GIR-)I;
z)={!%rd^~}i?D)|YH`i1_y|MrBd(eK;OGkQCNiyNUV!f;z^@;R7*WftnX#?2nSX;~
zjNXsl6<ppx{ks-tZq#GD2!Bk&Y^z+RV7p>uu|^Q{h6YYsZDyVY#%aVnvRy9BcVlD$
zB@y$+2F`HFd;pAlh`DdOT<S#ASQ+yoV&2`rIaD&MPeA*GzO>xIy&4XUl~JY<*WL!s
z-y~N9aMTB=+dE{}*OS`txHuW5bp6S{wqF|-ELMlx^GFC82Jm&K(%SZK2w6kXNNn~K
zp9hS1#APVCx}n;x4l8*MoTrF8qjfI*>uZBKfS8XrEVxW6R_v)=6n;vFUoJ~)1il^s
zwQ78B%7n%n{WZxu(NMiCmHFi<J%$bLx7y}X!WEkslNe$?9HRQyW#%hj%pm4|t+JP}
zmfgWkWz5p`5&zoWjx0F2E~l#GGfW`>zV1|73fm#14M3IH>?xdJ#FIu!z7whLl1h#T
z=NRJtEvFQck{b+WaRtngkp+DNS+Q+k-1v-!=_{Pwd7s;b6QEvkQ^xGq9~$x^NM2N=
z+A5HhX#vhA#2wK-m&sV8W^$61M9lw1Dyf0oEiDA&#OJ&$QIMCCJq=e={x!O&^)KvV
zEkLc?J$uT9=XS)lJVAC*(j|XwM<NTB4noYwKz0gJP69kG!t)xAmjGXP7W-X<mVb$!
z?WNH(-Iie@nKpxtN2*<eWL|)(2|z8_C6}saZz-*=6k<LZseUV&zX0PzVt&~<hm556
zJLhog$}a+FGiG4uTOZW((BJRe1;)Ps+WVbFULi+cQH#39?{_A^7Z1?h?_3DS*8t57
zT-RE*g+!8h)$Uoe9-D!;L38sJ^-=VG=Z@A=^O;0=-R{|(2<iRKg0JnO06=@cvmP9E
z076aY;|z<eC%rY>Pv%CKHd1C5$yCCfKiA{j7zz<d0M)-+F1fL;jm(WC+Bn@7`qqeG
z&W+Vz{N*+0MkX9rUX%THopYn?8%*)vaBd8NW8fRkjiYUhp5eNl8|8yJH&Q{f?TyTh
z%ZBD@*Y(`!9L%|K6-1ZcaBk$o0G0<J)DAi22G2by>V@r${H2YSs-X>klu^e(Kokkl
zGHqphBh!d*VYuh{V9vDnLDV0h?#-z!67%Q|k~xvKGp2^-eLIAiXM=G%F%NTVTgLa3
z7j`r%FEO7B&D%jT9|YrGV*W6P{Sb|LY$wSqXv4#&f#+9}*<n+K2SDB4BNw$Ny=P2T
zh<RWG=K;yw2#lcsM+wW0iO$uev!O3><!k7fr#^Gd0LK)H@>P#qTIyE@a~3gQuJ0Kw
znfHKk7csBRsihM0;x3Xo;1-xaZRj~(GT#N`O=3>(nM=&&x*CZk=24A2|B}oVJycN^
zpgzcrIi;JCW@5h8$n&LS?g7TG#Qb><vmoc^yqr4=_0u<0v(1#@us)q-dA+brTf3+h
zYFu)0PPO2pE%@6Od>0FTh+NQ{glcF;z}F<5a`BqZO0EdyGnhWcJyMr5&M$dVP9|w;
zs9{GseRxhw&)=q7qK;xby{~&u$J6_|-NH;U&M;F<nQ#+dI*g~RlhJJj<dxIJS;>PP
zAz{WHH0O^EOqNy_QGq<cqUUU9gjo}9pY@a;j%}$w;%lFkMZOMRV?-YRvH_LyyeTf6
zt$0F2&(LmgVfGqgA)Ccy^w!ruVV06x)6i7vx<#oyjIZC>E<D3M%<jk*K(}y^Gg(YQ
zuk)4(=N!nQr*TU(GG*2eH)YmqWXkN~BC{sTe6NuybGVDlB9Ug%uL{pr^lemR)m-;;
z?hEB{DU|7faM$YOFPwd&O+7DL^xS5_zp&taVoZGD1}46X1z*L2pKrlOTJY;*%zWtG
zz;YSZ$lJ3qW<Gq{z^tVCVoix(StJI=ni4lP@Gy3Rt$Eus)|7dqfmtnQTV&p_$Xpw1
zwozMzN&krPZBdmXBRH;%LDu@JReh9&$7p}lR~7Aoil(EAqMQpma!+G3#`hx37)!>P
z_#qa2k_A7-g1=+IFSg(Zv*F*19=40fsX-YEQuXVQZ?x7@s-vZpu?eSWVv2ok5&L!%
zGeZhBGz(>{g}!n_lm3JS-^hZm*wn;#vf!6m@E=+5<=HkKkL3K;@P8&}NcQA7q-jl0
zFFP;s^2QK&PMWfWvmslo^nCQahUT&LU5ux%1v?w*cfCoe493$%{8Egk+98csI_4hK
z$jqcGt<218(a5Y#j@Bl=uLVE4wW-fo#?#fG|19|VjSM{<k!);fZ%Rv>k(AhCQDR;j
zllfR9b8X>y8%q{dZ)+00Xk@k}h_!?ij+B>@g!7^WUnSDi={}ol+Wmp{?M<RqkruIz
zS?w*VOUsQ^A0BC{UZ{h~KEo16yABp+X}J;edJECWjus+mp%Kw33(=X5rnZj0oh%&E
zEF+G*QKn8;JDFuyCdw>3=X)l;z6D?NJu?k$qpVpl_&rN>(vYL*Mw#pm@6Ki^If6P{
zIHVCr9IGrGpIC{$vJf3HQ{kA>#X=;FG9r3xkyNm&g-9A-MD%vFNi?*ZMZpE#EF99}
zB93MzhqFbZnNz(j_zx}kPc1R*NVLRoInh#J>$_X(+5`6Z!i?GyZ8q9UY{=3R|0kj?
z!>d}Pm!-33bFa!SI`h6MSik<1RfDf)*D<a?ZEhxSm~0B}M>kBCz;avw@LEPUBmNB5
z&-^Q@r~%L~7i`v%_3f&t0?;oPY}JwZRaIOkq;|Prn~q%TP{mAue!1W;9a%IF5Cq!s
z{?uUo9sv+*38@|L-yW<T@Bh+M6{7(9@%|k;<p3{LbOPvCz3PT2`Z@m^Axi#?4nj<f
zm8X)P1@mK$X)dRdfYwhX?X{jtQftcV&eG+@zr@famS<{Z^Qz)qfN*-%HeWj#9?Pea
z(yXVF_8O;>Iy0?)b}FNj5Iq`u@OO#d1Zz)7Hi6JsKz^V1V7J7|lVu(u+R3ts2pI>^
zR(HqOmKV;5mPqu&ItbqkP_NX^;X0L;$dR?>U0&(>)WC#z1~isOuOQ_SB~ts2kx3$5
zQURMSME@>v<9wLE0x(7CwG2Z_fP8Dfrvsho3n|bw4x(ov=rd4_0eE}{&j~ov$TJ+C
zGWk_e3gAsV_V0n|246>j{TFyv!?6P3Y{0_lnU+h9*_Je(X$fe_!AP||&SITu7f{KR
za&%-0dalJ;t(NXN4^N$(>C4qNFOsQI?8)&(7b=_q0W!A|DD7oJlyBpBdiDb9KLMyo
zwX)xH))vy{1jx&E$;2EOqIkyhLRzr5Dry3>g|y6?@^YPYy^z&cE~I?}+64erhPZ5o
zYqepGQB2acPAY#gSPhTo+OQo`wtCaz1epsJWUCPV9r0fc>Hbd>ez)fhh@JqncYFF2
zP(^2e_HIuLqj9AWQ->Z!qMGo#JtskP9H711^9GI=0B<7G-t7tUQAJ&V_HIui9G%ER
z@Amu($Ik#~|C(lnco6SiA^bk(;QURjrAr%=V``ce!LhWarIb@^=3dIqWG+2=-KKLB
z(|B59!4I|I_cNXzz?s^_G|u*ORiamQ));u=n$=i;RY!fwB=l5J_F%ovOsFY)gAB@B
zM~GUpDc6}B$eznS+-v+`^coSJEcGO?pepJB)KzZ1hIS1>`*!4vn(`e6=~^T!foF(1
zs;N9%1SuU!(hqJm?o(O4BRD6VA_*$kYKAChrK+ESaZEv0Rc60aq*zt`7vYB~f}(Ei
zN9*96vgOe*{jjMy9Lq*Ulh5kSxPBzBx7^b#8=~FQ+@iS7KpjVz^Dg3X%9ciA24xom
z{>^Uu&Th3#mT$7NxZKU2U)#JhuV<P*?&}x#g(z8!`ue3jp4)CTlXtL}27jnO_)G)z
zGJS*<{i=Aw_YG5*X)cMs363U25$%!TZ-U=9uVsJBoMFA`^4jp={5D&J!8SZt`*?{6
zoBbhtgD9|z5jZGV`(}qInU~%?{vb%d(`uX7LK1us)J3}`p1-u_8K!9vJwo%$&^(np
zX`WS@XWSIcvs?4557ayt$dlk7r+I{ys08hL>jyz4b>F$NnlD86-EnHZ&bn_@kmeh$
z`wGNpzWFvY@dJbO`{kNFGdRd{Cp{_1awq-6Aj<>T9|c)1s1FIUTu>hxWVxU|EXZ;}
z{k>qN_%k$I+i&&wQR{BOifEFrIb7cd>KP|4aiw`^m}(FEOH=LpzzFS=HicA?2k_P~
zFAdp&kduHIOvvkBYREx^{Hd@irUJaQ%>N-!(|J)5Rm=u>X@#&*M>g?QMHs+KD~v@t
z@-YyZgwzV<M;-a2pDN}6ytKmkNk=w)OBLY&FRhRk>&PcS+#sY@R!el`PeoNR7vQB8
z*-{<Zte7eq0KBx4Tc#tQ0&$a&S^+NCk&BC~;wylcR*oxlWb?OG5%IP(DSr;s^867H
zx89Z}<u8F+sSJNd6$9UqCgn<<(pduI4v>0nSfwK?H=-8TE=ZyC`}9}&#V8uQf|MU6
zVs8;3ItM97xy<q>-4)_!8yKMZS|TJR@GUAjPbH!p8=yn!*6?qE1?&Snw2#nur+~rh
z1m*alz(RC&b`eyW4e)xN4CLX!q6>ixE2)Yg0-r2BqMH2srX|eC-jrqc1AVnyO`!S$
zpq62Z1(snyD1?#k@o#u5$^JxVPXX&{VsDlcdoM;#<lj#X_E$Rlaj+gG_Tf3PPiN#B
z{@r4*D?u9jbFe-o_8)U%-^j>Q{QJUS_te=-l~P3sfO;S&_DhUZ?(4rHttEQ_ojnSy
zjfnkGPVD)Zts4K1G}wK0_Woe)OYEiY=fEDw$WHvb(O`dDXP*w%sl*<a6MHvCPT=1s
z2776peH~bTBleGSVxP>&6#fltBiSqH?CD@VLG0h=!0z<m`aTLX&*p8+rIWHZP2xTl
zJbfZa(vPv=?O7&%o{3kzAL#g1EoG$o4a9QBWQy7fEs>D{)WK7!xWzQOX&{pAuYeHu
zK;I=O|L%UYQ-~qx6;kyA;PDuAW&JUG19)V@(*%w<@|=d}BRG=Ca}b`d;h0aJZSbVR
zv5h>x!E+sstK?Y%k9TR<D*%uA@YIE)HhI2;r!yR#$nz;Y6W|y}o+NnI!?6P3O^VtJ
zLBWuBRS^iVmx5<L97D)c6`s0fRZ$6G4~FM2IQ}3{3_Q{0FjoTDTf>uHUKM)*_C$ET
zsi2B40rr9L^r)zcR)A8Y;3+!+{~VcmMwOZhkG3nBc}Y$=GAQf54N_{fGamdPW9)%J
z;FCo|NRZOI9b0@wE2*Lgz!7rGG{}T96DExBWjRfVAg<qn3RLd^uGI)?2ae`|!i(YY
zreOOfdZ7@gKLOevzhpOEhQNhAJk|ER$6vQH=mFXuzgiWu4S=sZi?+vK4Ix#kYE#rA
zzY0<QvN0ne{g(9b{FH>&LQqFgwFMNe08c(z&y~b^L@E&v=;osxh?)bU8AM12qP!_c
zI|y|MsC@uOm%BQfe&|Wh&BjK;vPjg=Jv`U7=iKzHhV}<=BwBORlXBDNuGCh#%JZ-7
z`yRzhA!oJB)Ur1cA{qdE-ARj4F00aKPHlcS+L9xT1J~=vw5Wb`HVV@JJ`G4gN{bFI
z^`qZqSw9kp;7E`%v4gyO1U1G{iki994?4dx#SoiJTvvh${6k{t{E9bW^mh}%yP0w&
zm8tpMihb6KG1?IW+6_6yVP5FnASrLXf^nT8>2m~m6UIIZuFBO_Q4(PP0iM6%*hrq0
z@N}r5il%^48{sLt9sm5U=>oNic>c1SBTJY3wN>crIlUuS#Qz{6qXt*R4FRfH5Abzo
z(JJD3gq#haidb#oAiGHXPly$rJVddz!-ObTaxi8;S9w~>zk3jg{cnV-HBrF<qTCBG
zKILGk?p-3w1H+{<NGfV%=^zW>;0XTpMO^l4!)Q*fie?(w?;w-G{rESO$SOnHFpvx(
zvU+u)TQXOWjr?mr29j?OyZ}(HH7Mq}QOqVmmq7IwD7FF|OYfR9ZJ|zP-{gtb<%uDd
za!?FcRsOa4^etZIJuYNl_t0Wg;Kit*i%|h*FIZJl8g0O5t<eSoeUs=kDw5WFxDeN&
z@MVDgBY4WxLNx&>6$S}0^MP#0X&|=k>|5*+X%vDWZ^GE4;pzhFjsSZCJm14HpFCaQ
zvDH?^GkE;gvYch_nd77<oBr>E@PL8WG+k~?PES9yELc2y=$4|D8(o*BE<BL!E#LwE
z@9yhat24LKM5xjgpx%GrI<2OnP}3PnC1RA1-txY<D%S-PNoJ*b1$TCnEsro-%bNko
z6KZqIt5gRTS{-hATjBVvj<w~DykTj1)2_;vCtdQFT3((m-16GjRYi1NZh3D9s-hUc
z*PTUcd65Wd7-+OSpNB%c+f}waY6OWKztp2)7j6Utz}1g9wFbJ8gH!ppUl(qmGe9ye
zP&Uvs4$k7=8C|%6t_R85K-oZL@MHen(1jc5DUh5Dlr1lf+ew~#mX`Mh!LI_j<y~{5
z$k&xyUfCd6JpjiemzJ0A*7CHAe_G3v=~oQbj2mXl`@XAedG4XPwmeCwO3GYYUg`sG
zc}<~k;~;K%li~O*h+CdN*L8<TeyF#+!QEubBaGJac7S?Y5Vt&!da8IC#4WE6JY4~P
z;Vj3$o4G+b%hK|qyXDgIezUf`wEwH+^_BB@k?~M(d8@i{%i9Gtb^_Fq4|8aFi4SvZ
zc{F;CkR74$d4&I=^$O%ql%pqMw9)e}BxjQJWpad&qi3o<deVEf$F9j%7D1AF)+_X9
z4-frW;EutnXadmQtbGH=BS2w#v(}qvwNH(V3{l000Jk@5wda6u8A_&-=o>wJ=RryB
zIp7yyxdE_zR^;wAY2rwi{H2G4(<JBN`l{GcU$s6YoCWFMcIStLzYc{>2GAZ7E)oU<
z9iTlVJQa@5$U_ea--RO+pgkm9`MMra0{=#L=ZAzFhGWVN&>j-r3rA|W$`1*rGwmJz
z9od~960X!h6%_!E>l~szB<%R=Kc2XKPPZB@9$B*5>%qy~bUj7HV`07?oB(-E8*oW{
z3CH9HMoB#WU#|u~=2wG%1O2Z6?bYCiaNGuHHR<bnvZ*IgjJ0|e>ehqL5qFBf>;d3S
zAzF>v0^de}y6;}j_88UoBlir;nk3fl>G@R;uJ58D+9CKIeg3o9gX%2i;0J@{As>AM
zM!pzK%KBu=8YQ0K|G|0%>^)_*Cyb_KC?W|2sNtDzN~Y;blBBMNqyUn1zg~gnhNJ)~
zX(6P1O_HX%OG+POe4+j)LsBA1${(x@?&)G5ug#P>Jd+4~f|aE`Wqve5el(<x`L@;K
zC$aw+Vx=oxVu}YV|GGwzZbXqvQIrT)^7P^;LJ&nDz;V?Yg~sK$A)9^{aa9Rc!X?*G
za3m3zddHoshQa0k6kH*}%23I*8XUh6m#+(#R<UnMt_0#ru2(3$FLyIp;JDI=D|d3F
zDn>-g%1yLdH**!J3z6Bn8Li{^@|Lthr0XmGr7p*_H+LM-QK|@wa_Mp;ormEvIML-q
zO3qc_S`y{b<)lKf;(fTw@r_nR-e~S}X2LN!n!B7lG3YL0xXT#;N3R&}a*l9BPxyCZ
zZ|-uof?{0^cR5k9stAphUCvl8!MXf<yEk_^OF^<2;Fx~f(&aeoJTQA1dmnSPCBcH1
zCy4a!$M>GhN}p$z?&lz6?~UaWax{i=jb#ZDU9Q~^1!~<-HPBaT%-zo*IQli_?x(uZ
z{X{&|yPvatxck`(nm+*E6r#09uQ;R;pmucaek@;n=x%gA$<Or8r&wREoz1}+Pu!C%
zosZ;J%l|+0LC!P06jFAQU9{_Kp7D~C+1kL5Gw_-<u&4^xD1NgvnGMoLApP1D;W&NO
zv?-i&cy9@!ZI*cC>P;f>XRPti7dRep;JnY!wBNa5@yxwpk)6qFc7q|KR6kc4&OBTl
z#~?7&J@A*?X6zkZ0&59pDhJXLl#lvZj;5WlaLsVxs*O&GI|@1xqbh8V8gHp?&++AC
zG~U^3gpiB!cEj}z|JvFIDS!7zsUHW~=P2>d03LhcSp&zf<k<|*aX5~WXEi)8;CM!!
zAK@t-k4Xu@*Ija*OKWHYpw2z|X{AcE@ll+_-;LcsbBz+(zpbQjQj|^X_*eu~t!NW|
zg>AMDd280UcsstW{Be${AN=V?O;vT%&0O=TrQ-F4+a{za-=!$+rF)1<jRf5sEU)dW
zNxzq9;$IxBjqB>WPg&LUqeO$`6O!NAN(}W7Z#`?N5!GD=TwCN#Gr(Jaf2ko`O)G^i
z5s3AKY}P<S_OA)b_nTmH26(H2r-mH+RUPy)&0tD4RfX41diXG|ZsmJXh_5+%M}YpS
zYkXb(NKp$_Tx>26A2q3~ZOa@<P{qCkdHATAPC2NhDyjqYO}pkgrGDtBh3<LNS`~Ky
z`irIsI$N8zs;Jyn<rhs`>d1)puo~N|{Gw?q9huk>(~*vHgQ>MHb8shBbnhfLnA+6U
zHkeAhr-}ma$qlBqI^{_q_5t*5z=?s1{sQRKK&5MSJ)`sc9JYxMKai(_#?;kL1%29C
z6~h7fBM|EKfjkv7uC8_}=paJ&cIHj<1vM1eAV5nb`qhgrsMP>RtD5GW05&pa){s{T
zq-(CkjIHb0-~&DY5(W0qF7h~#L1MUM%(mpZ`f;EYApVIMME;aCo7iXQy{NACoZAzG
zJ?O%EuV=lSf@q0E)4OI@Ra6703u>Es+l)JFq=~GnKEnSXy?Rtv`A@3+1vvY5Rr%b3
z%wts~5aF~yrOiM-cW|kjD$aLfRU};=k$BMhSV*EOiUQO{)m>H5@A6R$y<{nhnH0nH
zKxKoBVGuY6BytS>nXaHnwZ^al;Y%onnbmVk?276#o9IKFww{6N$$>6L;GflH`THLN
zL7zZ1{~#XvE<yD9L^9{BbwCq)y}B&T1mda^s0I$=Jbb4+lHFZiN_uG!CKF-ZKy`=|
z-ws5r0BVN-SM9ZLDbWIYb*>>oq!9DRbqnqr#J7rPf^jN9yH&g&j@{kq{Ldl2Rc!A8
z1ptn7tUBKyo<0!$Pz_nE86<T?-GYw6koqHn!od;>P`fZq*NK+fN>pNdjB1=j&1GU;
zb--XQvHoD}-h)eQ&;Q5RcYtS6JP+@i%iSeFNJ0q&NF#+b(nFIHMFgaU-ZAtJp?3(1
ziXs}2rnFE61PLG=BuGaoDpf2IL=XgnbftVVcQbqUz6t-|m*<(hTc&K8+1uUO+mmK>
z`lPMLPD1`s6!3PUQ=Q#s<xH`bLPT3k_?!Y6@1&}q4W%{<=n1n~05u@7h&Dswt3+H{
zq#^Npsp`*6+#U#9186l0^`}<?t8gY#{gkR|nbe=NfMRA(?$7dssE8ay{54groyjjj
z1JV&>KiG*qp8gt?z^!%~siviNK0J(0e--bg3P&$G{q+F^CibG!U$cnFO=O^jcj!^3
z@i035^-6D5)a^~DzuttvM1YcrW}N;y1+f#o>Ganl2>jEVPJcD)ql%XS^xec9Pk-IX
zEOZ?3C(4E;>J+WiFxzV@W>0Cq6M}IFY<aSE4p%)!ks=R)Jxnq)@$lBrVRRUG!4#Y{
zDzkP>p|7I(6AR<3Xf13JeF{bJP}m9^y->T;lb6nX73ON{Z-W%6{Me}PR#U1DC;j~q
z+T~myIw}~E#68BLM)WInxpZGu_yTD4lI)KN<0xmJB(_{1ygl!5YU!vEbd<9;kW}kS
zM>#)$!1TU!l=CPAzV3@hIq@nzJjz+FABgBjM>+dIAOk>uC&}u&4Z{od-6veoiQ?37
z`}w#@d^B@elGS<oztp67l=FGf_!U!Z{mU&_RR0?1-uB9-<IrhNIhLvqA3^4_397OY
zKs{}1K3-VpJZ{c}`ET|JYyN9|Hc{V2MvkYxc8qXRBSSyw^q0OS(K>v8dW3a|-<L$<
zT+m}AwP2#0dC~&LXa=X#W?UgWE5}6*JXQyfBc##^v$-Sr{8q)(i8w_o^I@zJS#F)1
zs+4N`mPcT!{fix`_Ahp%+P~P5YC8~BJyj7g$@q;BACj9BXwGhj2hnVPk>mDgKK|sB
z+7fYog4R9*P|hfkPilWme62qWB>=A&CG#~4BTC@xm3cz#@gPx|R4=y#NX`Z9H2`jP
zAW~s~DoPDN$2_1kcpXxNdwcjl9nvNOxc7oc*?}+>18^S(kx393g^|e+xdnl%06{Y#
zVpz`RK;H7mK%r5o-aSW?<+L57iWY;&az2B=vO#1y_aIO(2#3JxbO<_OFicSgljTf-
zz&HT?Br!+Jxi+fss7Kk*@t&iLJk<O<VHlQEhuRt~r)JUkZG&uk-kCuzd)}^xpdSSC
z?o|%fJvLRz8O`qzL-CISsF6X=%W&fzRVGBe+#yRMRKFmXHBaOgOUI3`8#z)86)(R_
zmP7>JoeBt-Q%IpZj$wtqoH8C2+SK7IDK;Ixnqt%8KT>Qud@aSM!`D-6I{XaAk(hG$
zm4NdkDvL_nDp>09s&TBt=TllBPO%}-<pAZ3qnPJYj8l;#Az{!E*5L~&q{C<c%oFS%
zoAgqOmzx7B^b26011O294N8tdwXF#Mn+{b)8i0EwL@q+$JB*}4<mF6N)C6#U1tOau
zuofVw#TZiC*+Hzf2{mwMG{w8ZI8s~xVX7!SjMR1@1bPo6wcP=MF9Av-jiI*pAa;8g
zscrq?s;C2?e-UJ<?UJ#D)OJshRNK6<MXKS!Ae-6-1Y2rbP&9sOuuW~#ga3!xp5rk`
zWMbX#r6}#kk=kZM@jn1iJ%Wo+TP8%c9XifZ+Xt>{n_ft5lM1PA%>Ge;&_9K~4O8A^
zk>D?N>H7(+OZ`)Nq9UJxf*l4ZW_)dFfT=bUN2p@>2wpr7G&S}gNVq+M7te#u#DtMB
z#Ej%OcZQgWiy>kDNPcr?sL8Vc68;#;tKdu%bHFH7^ccmf;9;hnoPmUINAW6nxQY4d
zXqc4)L>qQ<C`Bnol`>bu$5NC(skX)xM@EDXe!%5;ic)R@O>x!%m(`<bio<xC3_YY@
zImNjGxW56Yoa3~F(^pXHr|^)jHi7yNza*rLc%%qzU3p83{Ps|!{RG+1`nTn6{clU>
z@?ih3ok04Yz1ep3d`XJ2YtzML*G3KUchMY+%4v5e#z?!7NDogx^Ra%rs@%QVzJQhG
zM&e*pmX%{*rUy{Y_|nde#J7=f$7C3E0E&G91Bl~hVwDGx4zcbnRb&B}pY-`F(dfg>
zw^h*(!2Bl9twcjFs=cF%%b3^(kDcE(6aRe=7Pas3md@X1;-#6Ym;_L)WjG`jn2FnF
zsbVrfv1S8t$T1U}f|9rc6#J+IB>rP2_L{GX%JW&N@0y8@PgQaE6ISZ`W@7n;s#x?X
zEA<02@wFUyye?&>erP5RU8#zFD|lz<k(qeqb5*qeoOgyEn|1HGNfj?`;+>&?&BUlJ
zst5ouzjgDUNnY+t&^JspzIF42nr@paUIj3}b@SB39J@mmu>i&H8qX3FbJT8C4BO3i
z_S{T73<>LZvz>_~!_NNQ0}FsXY-f%n1GB?dFctcWcbl4|&<Aj4CMmy`qj{w90i3%@
z$^n1HW`S)|lukjklaapLA-<c;@6s(xqIc<Xo!+H`Wb<9RHTHMu8kOfoD2JNTFA~h3
zObgPn`&2P{AHGZXew3Mw@6sKZOz+a=+TW#HBj2TK8g1gz{qB1l;<G8dYql=Q*fm=U
zOcw%pWk7D)6yAN>kYwzdU4opm`)GNeU7nZsh>Ix3coChaim*I%se~8WHG7xqB11Dc
z<?|%ZQB$aP<A8ib9`Bk-6d7X4j`d0AuGwKg{yNXtH9LLWA<kt%+lRCVge^(F>$l-|
zxU#1h<DwGDOZS9t@aF3zJv@uXMYsK`c#=nT^N8dvBm98391B|mPBQ?tY^=-H#dXVz
zTZ(8)ifojzJxTACMUTRjK)VF#b7EZR4Y#PVbc&7SX5~<G`gQC`(l;`zyTIlSvf^CH
z>L{{O3#wSFY`L8Cm?b8O${v}OaAkvUDS2fdb%@7Pxw-bbG?z~ZH&+4RIrb&#ZKhIl
z1%9oH@?TSPl?~zM3O;6QuAz|MA3$yUe>7K62sc+c&^q=f=^sy}I_3fGE~Jllr8k<(
zAg>w1&6S1ZUnl9`GkNI)pvM4eWmj^uiJk^KZ5O<#iL&-OM6Ea7M0vv!e3K2cHLC4a
zfo10b4rY}$_KlA^X}(uJ6l{WI5N=~IS{B|1)E2W$1|NhtG4T1yAwu4gA4^H5F9zf|
zjVF+7jwcK3<4KbWyn)1_boxbtYj2Xp^?+u|IDq3xrz+NXQu-|#Pjc+z$pSf^tdF#h
zC-^z-XK(R%(lpuEc&P%IzK#7*0J-zu;_;+Kvay?e0dme9ASD_u6(4aC#puOS2Vru2
z5T}pMy-0_yu#)}RKxAkzr!-5}zkQ1;nGReU9pqs}qR0>zz|kB;Bf(}sUVqRSR<fag
zlBcnqv`zNL$pPAlnjhwDXp?w{0yJm8L-cr?iMm=u3aZ@tKrTQ&;5oV_``!crrB6bZ
z+kW`>93=k-;Pxd%Y93NWDnLoZb-x5DBOo>u!2LQzHb7u4M(#u88U(Ij#BGHTA&21^
z3*dK=#GRSu#wD!VgPK%sbil+Png>n)b{O{thdfEE9d9J7#t_gE*tS1RGs%Zx{NQ@%
zf-i@I$$&c%K=llF?n&c)N#PZo=McZW%_?%hw3AIhunfTX$W?SDInDqsq8J4kcmx(y
zM@Wt038%P7&$Eq1dmw)sfSMcPB%H@0=q*6+_700bWs3Jb3Tv;UB)+{AkGP0pzJLk&
zSw~5H7b!m1F8(XX-vyu+IEy#k6y~NpPeJ`f@J?V~Jjr{`JG3eP07&lvXa@)fH|2#V
zQl0YS-AoSsLcfl(N#5s}L%=arR0Pm2**O?;@A~l=k&beMlDtd2OH{7{#Vbhl$cYN=
zr+Yc3%0{Y~BqjA-GPH$2(f622h!Y7>6M2YOJxS?S7!lXcQ_Hc+iCutLC&|0hbXq@u
z`Hd>peM9T#q;FLb`7N!VKZn4wZ*lW!7j2k^oq*}v30gldg}__@eO@_h!}OPT3$35m
za&0CGF}=tQ&~4?c4O6Xau(cbi9}2N{PwNy(tVTxs9~-9jMsmoIOi4*nKAK*r!BE%s
zmE*3@!v?FDq<lM_o_%FbLX(`ty`td4qo(0ldRmURr^Rl(Dlf^m+I!?!>JEfmPm*J4
zF$Cr#H$*cWOSd8R2Y{b9&BLm^XWi6shz3z|Hf<bi&0tlLjgnR*`5p#>(q9jzy0?{c
zUJhmO1g}s3h_~KjUtI}gmKMxvcN&@X?jPcYj9Q$6nHfL{WXL%1A7`e0`j<2rkh~Co
zZfg$3a>|J${jQW}C}m@R=9P`S&Loxo`+ZW%2_SF8DN@QS5V&-Tl(NZbRn!A0i8O{%
zo`u+n)1;I&zf(o>cliFjzonET-Y=w-6aA%9&VApmSCd&O-}ASWQhyp{>EWTG@i)X+
zdaM2x^J1km^lP?1cU&;eZ_Xv@u`@`&-htx3382=fQg|#k=CO;2xR?y(aw}g*Qb#eP
zuYk!OWc0beGo#VmUA)e+LYJ7)lO$!`3^EO`?_u5e9S=J9xamYX7TqUV{bq*jS421`
zCr0ToyK?kTR_`&V{2x?t`UmEuS7dF;Ld2oTYQP7Cm~%!IbIvg0L!MZPJVYFntiHyG
zwa&sy^(-U$Nsa}GI6PS$%7|A0=^`Q;HBXj^9IDMJqmtE?Ow{L`D!QEGQS@a=6ub{z
zyUD&eGf82u0n)GMNMT!_S4G3~q_96j;4DB%q%jos<qN8)d4Uvm6$F+7=-n$?3L7@F
zkiw3nY|w(&X1dAg5O3Il0#2=HQ`lP(mcouM8h>lFO<{kH{vQhaenmMTV%^6lt3S^q
zJ^KfWe;YuZ9#&Y-%u6jRvceW1@x)}M!iPj0dl8;E7xDUp(88msIeu4SCFRgm`gL4N
zR$F{XT{Q@p^tj0V`!=J<(EFV7OR_qRiLL;_B_uL0x|KxvI0^YJxm5R$=xW!7Kf<sB
zU|j9G76Pk&#2I5AUF~`eV!r|ySGzX8q>B0ghDPRA;z2HWzj?K*<0BG24{+vO!V=@v
zu6w0$4#|{j?w<8OqHA7v1Hn!J<C@pY5cmZ-sJYbNIr8wf;jFVQ1`o?-Ovi#;PFClC
zM12tW6Fk-dv>f~5$e6(VTZv~FX<q}?{bcVGAJGJ+9Z<AEDlNcu+7lYUBS0onJx}&l
zvWaREP)tCo$U;<g16aj!k;*g0yCzdD2Z|h|dfkZ%8+fjim5)?qQ<NUr)WD~J;>b@t
zHsl5Hv(V=Nej6c0nZbxjKdU0)XVx7?RAh*M9f2uIULhi*dGiBg^CI`C6y-rSUqJ#$
z?Ey6Js`lnxxBw=f0X$R4LaOK#eex`zItp0}fnwIrcq|YiC4W&xv0w05AViu%;8lQ<
zNaKDMQZ_?uJ%C>sT8Z?T<tCTowAxmGBI)@~OLe-MJdhhP56cmgqU@f<x8(i`Vgb~M
zs?G+Ak0YaD>j!ds6(Dil6y^6>)JAoIu=cNf;;CgIw^8sxKx~_$G@4C&9s>cX=dU!;
z?-9g{fsBK;iT)3ee*#O=sItpCgU-;S3=t$J6)2-win5VqMC8NMHlG$%V`;c4DMPuT
zE{m$+fSU=ReQFz;NQ_&MoGYQ2<|#_Ck4elYKr%O<s-g$6{fI;MszClJWPPG?A=bV@
zyv#{Bgp2hQWe~IW`b`y{zY%Lc!t)jxcGe9czdnF^%ej^4JTgiMA<8l$8zrQtC`VYr
zRG^&15+Vq%yvVal*bVvH0W^=o?UFzw0ipm|w@gu@<`C=qKyrs!rxIR>2tI6M9e-IB
zF#zh0%7vB9lrT|ta5_*r+NCHnS;9b|?0uOeyd#w;%P!$7$lrkyI=Cv)1xtw*N*TE*
zqkW2Uhh_L)QAP19Bx9A7k#CpL3-Y@GsQp}J<XbX!Nf|yz@cdDV(t0k**b20pSjIjn
zBkhPy#@~>C6J?BbX({WoQpbt1gvdk*9aEI;EFtE1RfPXe63!5wkI1o0m<;)2f5*qV
zYb}miwfIxk;xx+Wl%n|0BN?ZF_8XRQTh>AxwaM_j3j7fkxYWY>ve#o-iv-*#?VO@a
zU<vhsvffpa@J!Ys!!BVG<c~uMYg{B)hZy^Xu#M*8K4)06x@ex9&|(q#^2i|4aWAoH
zit>z$upL-$;UX}eDl(4Sif|Y5Z($LRgchOHdH}5!J>GH`W#=2?wxgQR&eB57IGFW!
zc?+l3eCvSzR+@_&cR`h-Su$QX-HjN*Ja2IY8>2lHEJkn5x32x#OEa{JFn?Gv-@GOa
z52Up;dt1Lq`7MC=-ud)!$(o`GzblmU-F&%H_4B7$!>#!?|F_A>uL<ROFL2G{<42j5
ztTINJSdJv&_cJBeT41>{2LxECEf;Xx>BlJ<FUlNfB-30-=Vukx<Lw2udZ_GTlD^IS
z?Y5hsuTOTp3EDieeq;e1Syx4q|55>YOuXsz%)jSmV4e4*sly`2@0;1_IVOGxIz7Mt
z1D=k5u+wu){5wcE|CTEJ0g7#E1&L$h4d0n^R~3K%!=BJ_@rEbV>z*pE++|PbcoTE)
zeN}9|&z{f;@rFBZ+yhm_KVVPjL^E;eV^wr~%%0FmX5yhIF#bPbPv~Sb@ziseiaclk
z<`gsWH8)Mv05JWVQ_aN2iY9)=M8m)NrkR+lYhn<9>EC?IOng*K6TJXT|K>C^F~JvX
z&_^Tx=G$hCYWRWH_-W+de8)`ux|}Aq0hs>HcTMtT<ux%5!1QlUH!*ux&_q1|)4%zi
ziCL|ZCazc1$iMl%iP<Jd6X^h^e{+VJxB(JoV4~sQ{2<=&Z>EN5qAY;v-<)Y;{#scR
zdjU-U=E+3zZ~7-FWgnQjVEQ+wBq;umD8cY=o=;TX{Lf7AN?Ys@n-;P^qG|&9H?y7m
z5s+;9Bc|K^5#vdUhYU@oUnCf_kfvlU!!*$X0IbB_R890ptXN3?h-|w*V!HH4OjJ!=
z`pz<x^4&%3kEoVl_&3J_(~$sP`H&mDh<AHyCK&$BFCpg(0P`w6Di}<g0T)q>fl>+A
z#8bf0mN@Ja3!`>BxGplZhf}I2c(z?cwQB_|ngW=P2#F#?EZI>b!Srt~1>}WDAgTu|
zv>>M6GmF^2P%l9`@6-X5%T9^O<l34dU0XQO@+$buA+9fG28|P(y?@7_n#E8=+8Stp
zCJB1u#q>nE2!%NtP7QU6@N|*6#`Z)h9ia(t0PTC-X$FQQ7m1{#$U)Z467(sHX)50g
zNE##AQ`JUhY$;tKsxmTkpMD+96ZHMe;ccLP3psGE`L66nim|)z1#RN9)FCP@VQ<~y
z1j}33`4KBb8sK1-;jKg00kmURNwdjDllYWrasdakOb=f}d(nUaFjSVZMSYh*9=<Fm
zi-Kg+qQ=@S>T@cUn+$EFUnDrTgmi8lG{~9=w5S_ymPOrPLKc-}x2UnwqRP12Eh=rT
zLtI?S7Ih)P@bH}lrY8WrG9h>PQnsi|35JKSdKFD1Rv|_CP2r^#;v$N<mk9Y;09uwu
zA&a`G@P-42e&&>m3HoPCsdg8E{8SaTD2XCNEZOm6g6Y~zkJLn?NaL&VK2R2q95#aA
z5-iu=6X9w_fS$A3A^esx`kx8TPQA`g%(jPTE8sb9B>1k*u{-s0LFRe@!>M-z0)GIM
zL|ntE7Z#<7U;x9Z*9`)lFoI6K1rV5n5p?Q(4}p^ab-$z*b8_8zIk=fQ6iL61n+c}N
zs#vrpJOGSUrk{iN9Q<7HttAiORt3-^od!K~ON3_;<%Q2e{MKK*chhCGCDI0HS|Od=
zeG|v>Ta}~~Rfa0iuVY!f_lL}30#J`b4i)Si47rh#LpsX+Jl^{tQ!NLI9HdHdqC(|Z
zd!Owk3#qopE4P-B7TpJmBheZm?jS^X+9TqDc*SpdAw=A9-Fu&HyZ{l8#e0`pK|8MB
z#R4LLvE$mJswNr$7(1>9A@CJINu)7$T+7CR5dj!Gt`i_I3_$;$nB$J?yyb;<T(5F%
zCW;-)i`??RMHq(P>ME(H;kSDF%#7gn>-{2$)l?cQUg)>tMsmoIOv#H^8m=hRV8$6|
z*>Smx@JosD%Cr?Ub{9aMZvd#dPpkn_ZseffD&+xNSOF5pB>3K5L4K<`@tUX!VEC=Z
zL108YHt-_yTOEhk*8qO65sP0}SbnRvG}77pRy;FNMHWr~;uC!5t+e~Crpvhuhd$;9
zcc1<dFRkR|nGZ5M`h*{*9LlF(>BEXi&_on~F@`agdtrQ6f7Zx{+y@+*!YLgS^aCrM
z{8<Yhayf#R;G2I5r4Ov)v-KdmMFJ`71_&%mAZ4wSsEO(TC6UHZ)(;@|P9iDm&k#5Z
zpznETDQo>zg_QNoL#eENSJ~cYHnufLU4MFLsjD7MQvlS^PhLb(fyO|?MbO&g#R_Za
z-i?P+_ptsw67<KbNcZX_f%*VwN8Ma!9`}f<m<)OFL$+6f`pRnJFbb$g0H|({3Tv;?
zSN?Ji!J$NEG(ABXvzqMXD`2u9iASQ><s&{H%e*K-U9j58nN{yGBjn-C<bHy>pE<Qj
z(Zs7M%&GljR+R!oe3YQxV8k-1Q1etq>?;w2a{%!_n74dJi2DF(3nCg78Y2-o^d_e~
zOHdmzQQK;oXi|-d=13wAE#?$QqB@C*E&##FYCOy?mqh7UB=<z$Noz=RJ66|3%j%@L
z2OzMsI%#fN4OjpIltdasbC*MGQ4P}EI}o@DpdWc`Y3|d{3Tf`|+`v;r$Qma-ye{?d
zug5mcebdd-+}1CmsG!+2w~_WgH22@fthr(t)L%<fx2z$(t6NhOwE(mQ!oGQLd{psY
z*4zZ7@<>z)m})Fgj08|SJTF39r;ZU~*uN~2LzC&((Js+<!dhT72hehX$rk`+U9sGk
zLGG`Ra~8n;3yAcnrHKvz?z<t94}o(4>IA}1nPwEA_^kZNbKE_G!#si`xb_>ErO3c~
zbV^irt)+T&dPx&)0MrZ5oa#ZICBtjBT{c5Dl6OulHFq6(&DH|xDgeW4b_D{z0+d8F
z!)q2)TNC~OhSzKe1o{COHgfS_X?4p?uUYkVq`A8RXJ>7Vyk>uJqsfp=x#sRUZXJ2e
z@`2zN0K;ph*8wSY@R;H^H05&gn$cb}w#?tMWeTtuT@uyr*HO#V2L|;3)a%a*_pq_X
zoAsRQ5WF0ZG$krkKc_X`+dw$34o%$|PZfE~?Q6WcU^@WXE}IGw>zMzTb;1f@{avCm
zomqbZBy;N$>xBP!o|Un}?tOs#Q^>l<vqG$E5lL~8jjX><RBkY9uX>vBtVgWt5uUfm
zv$Jjp`Sk(R_lsy2Q$pkac&S-{5`IWj8mwpU15i$43C;iGxo_}FyY~U|w*zP!3KzZu
zkpzhJm3X2gQORM}_krXNv+hcGAtKApIzCMkF=_aeD$JU9XcUo)tS=-gZX4L`03^NB
zi1oYw@ru2`&Uy#re+i&^xU`G4(LI|eONiiAAmL)7(u*bh1C+N}!hFK>5$UUJ5@KK0
zL?nP(-bI4t_gPMqWknWB_%TsA$`bkkWsjFh!g|8<7rAx`yCHuoN{DnF3~a8G{j#0%
zQO2c2CHf1JQQ{R?8NEU>4$F4(S#6W?8sxtMpw@7yh2_@xPPS7Tt^<EcR6bw{SwK0F
zC7hG(lxdf+3-Y(2ghnnBEQdfeZ+(a~+*!y?P&a(x<Pg{;P5U(Nv7Am+%50<}JOb7Q
zuh8=E`{!(b94aGRmVX`VYoa}X_SnhHjdfh6Cf(>1nnJ&hv5DU8Hqwf0GLTP1785m_
zbKKxCU1N^~hvqYfHxs=VFo#t@y#hJRv2!q1g6lPQ@Z{je!Uu`oCz<M7pg4|Ho1Cby
z1#fHY*Um?(1&PYTjWm8g1d6}w^JJ*9&b}9)b%3}sQ3=i^#15}&qTQ=JuVF-o49S#b
ziAvi-MCRwZbzZKgBlq=*%8XnZzo!7w1OP4HzB6Jt<-6!y_$;K_kf;~iL{9m=K(Q6T
zaLR`?&_n=$;go*^0__1xB8}mc-w(0f0DeP=-+#H*i~cQ5U!b;-+ynX62Hu-G_j(?R
z{~}RI+eC%-c@1<MK+`<!g~s+-sB=FRAl3dvrT->slSV-C+H1H!)sa?*=q}0HBwbD3
zH1Re(M0FloIIA|vODHujnkgHurZE&jSJSag($(a6Y%$WpA6ty{IC_$ze@WR)9+`a8
z=Yy||zfSq+mkHQx_b;`foW#wRe`yh=wcc#=A#uCn%*4-wjK8l%rSlMu9-c*;X(F0y
z_wwWy^7824X_kj+%Vz0eiqS0((+OLBgvuR(HIcOtG1H+0j{I2DIV4({@6mPXBVV8N
z{)U}H`LTo0Idm6#Y#@N?9LkTKX53NJR1>3`YUBs{E!OY@<+Reocz|NR;1?S%n~8nf
zXd)HB^zK}VHQXL^+G(O2K(RV+LgMeShTmdm2Tg1OD3&n@60e$xwL5Ae1;BJ8{b7>-
z2MOCTv3(rQugt`IUEs+EV0w(Mn~7`Q(8L@7(_{3fnfP7?m|O;XjBc8Vv%71ea(DI^
z{beTh?4yY*z1d@Q%S=2pP!k;ovd8GQnb;^(6ZeL)$LMdf@L!G4#HS<JV^m-!wi~61
z^ik|Fx?_^xf`px;*kkmMnV2>fY<etvjP9D`SH=V8cy<omGZR-$)Wmxe**SDS)^HB}
zH3^3MN$ebYU}81}B}kaU&Y@26O0@2d600iJ+R)pk<Iy?PBTnhj&i?vo&v+%Uy_w(@
z{EiSOxAIoD7DvvZOsB1ENH({!``Nd$SCJGC8CpxfNHAwB4HZ+fG%+O$hl<%f&1~Gt
z&f7{`*_rmO?0#}9yHYOz4?*z06PI3Afl{vA##`C`afWkf9WY%9;8g&*b+++VcBMGO
zIrJ~&+{>cpc4}LGryOw+#Tfe<PlcH!fOaFpc8{Z3yQ*#Z6=@D7a!Q3b&*9sscAo<I
z?5Vt!Em35MB|9p{na-i7fc$W(v6Y>kEySg5yf<Ar&T<HS)5D~qt!!R}nl6u=8K4l`
znJhNW*$p(YgM63x1IUhx)6=)pJfg{)nrQeYHOW-M(?!|`wz<RGkUtebTiM&*B*s%@
z29cB$naDaJPM^7*o+A5zWH*2s-rM=LW1ImQdopv0xQq;~r(Z{6oPLTKJp?BAQ9kFI
z-k=PM$-81~4HEi%JNt67Ohpx5J~M?#-oeRp;w%?Wl`gCbh=W<=77Be$;;$h#p&ez?
z9!jcyp_@s6oqpFyl+z|knsHI73l?UYuB7~K_ICA3gF-al$@ceq9J!J*oa_&hP5bL$
zx4(g1_-$|w4W(ZsD6^9^w9;EJM7)Le_iuO0{?c}m{bktguY<I|*dBKKEBHu=uw86_
zH{%RfQUhRG55OxJ^my-1w!hnPhAU|{<b3!RDO;x=+~|mlDCQLzkbe|Fo7uaN{k81D
zro^Fkobp$k{twr#*fiWnV*8UQGQ^S{x8h7!(jY+YGtIESY^YV|U2I7A;w)EE{R|iT
zdnBh7Fc<+@iQP>0#3J)V`)iZIRprnq`gJ^uQ~%z@hkT$2Tc^>SzH0`Lq+MNTq+R|5
zxIY4@qcWTg%vg%4ox8i(hpoWIoSUZy<wfqB#-Qf?%5Iu-JKomBb6~AiCLC+7A4e&w
z4Ar4uN3p8j)0jgfaEJiVYS}p$a$8Y~n<zlJWvY7bVyYHE(G02DJ5d=YoF!GlTR;_D
zRk^a8I($7)41b&F`rou-8^}P!*s4m2J%tc)JMwfZ?v@-xOseYbv6r?ZVI3nLyi41W
zlOZy4I&DYZhrlg>l1O80M|OTs6D{AP?Z|Tw_!dCF+RD1^<AXhgwj&>LZ6=B@_ShXa
zQ`qaHwzh8j&<?e?E@99&bhNJixLG8z`bD=F-}d2YZzP8d$&{$7N}auh8Vq%^WNYsF
zv}u5tQdJqhm&WKO?`xvL`?%a~SHxhCy<VP(y=15g{W|JZ_1?3WG+-VunFFAOwRY9K
z1Sy_F^_WBBs@~6-!(O1?jT~wh;?PKP;81(!(7LL3+E>Kkcc8wE9NM&Y)xt@w`G%M*
zY=SqcD*eBrwyHlv6P`0z3)i=1`^`nffmM~+jJSWMCT7lLE!@#s&O;D!SXJ*2_mLJ}
z{74h0J|Zn_pADvwO<MRZ1P*7TYit^6VZba+l$}LdI28ip0Q3{BEiEjyuaFkzx0YI%
zvad+r<8_-B>Rmfqir1@X{I@e~cg{TQ{Xevj8%dEN{&n=LsvOu?sKHPR@5oNfeH#!*
zR8>SCY2j~B=bvZcK5|EAEtI~;&O99z`AF;@=Q|*ee2*1p!zySt`5xOtpyh0I?7vN4
zHd+m_900#z#G-Sa<$D}V(^#ADkte>Y$iVrf2RtD6v+oh}x5%k7hxT*XdiM{xj-^7}
zdm!?k+2m4WOwYnJmP^sV%<Rl9%b^LKC1wO+8s%gT?jjq@SuD<Xms2^vZNrm74xP7^
zGkZUkv%<%kDE~2)^IKWBLNqSr6g)kVA)hXV%ZZr($a!=Eexkc}oPK3L>Bp-ex9-QR
zAK~q|LK%qIAWjedn)G89Ak73&v${F!hw&DWv6bD9TbM&>^y_FCr}kh*$AHNZ0IjZV
zxHEOShZN7D!OUS`oHGAwDzncVP5fn)8D|K2?fBuAjb-i<uRQyjW(70mYU1s=G%M)a
ziKp8f%IV}XD>x6hX92YLIyueOQOsc}<}`}w8n0v=ATiH?<lnh8H~Xd?KSITH8|xbL
zV6_gQ_UKr+`AiAth_bjy07^%<c;#!BFdQg{%p(bx2+vz&*d?ro{52@yeHRH+q=c*O
zc+rrJ65fbc0uGXdKY;QwOSsXFXE%9v3BmI<Q3*h++Obgc+#`|zQGl#7;+3(?x)YGJ
zn@_AC6JCf2e$U2w4&-Me>qdoH^Ws_&>F=S-IbQjRS$_{C$C-6Rd$zW0JL_5tpydJ7
zqaB>u#p$Sjnv{`;GJ3}=bq}!;0qwgBNJaxGqrfiX5ajPi85f*o*n9`+L|H-v<L%dd
z;*}hh@Ej=rV+m~u&qt)cZ<A2-6HTOkg3c@#3D&NA22qw3Sty}zyrLW?38R2==qDth
zKjHa{T)TwBke`PV9yv=e@A)@HOqR`*k0ScTD}7l+xlc9W`zeW-E}O|`hE2o($nW(j
zx>!28bj5Y6D;7%`Y548f{_)B&ma!XXx3i4pQbwj-#(l`YgEGn&@f;%`6x+SX!G(9{
zcqQftNr+#liI{~Xf$`vJX<yS1g#6wB>h?}WNx*@uQWu`;<fDX-<J2}sXz<zvlwU67
zsg8SBE=m?IpFQH$NsQ>f2qqzm7_od;9>Q}Gv3R_?ni2m7q+casRf(97h$Z9IQ;fKA
zu_l%+X2jYOG5ACH?;Ec^V#H2MG|_ws@9Vdgh#cy|DP`i-sz-^a00{nA!c(*Ek|-Uy
zmy7pJJVsNqVM{g9e<@APeultzOKEC0B1aQ_bMU;vhcq=)mTBT?4o%J4K%^;vKBKEO
zHQR8s(9~=VH|iwu!%;We0<Mj*)l1W@+^)9i*=OCY>6w1)g*5N>vQ5$QdcAmxW;{&~
zbY=Y!AK^Y*yxR8|Jp{jmYUBcFgWs@?cLvo7qADg5kg8(5vY4rE1H}!bDzNW*7`<7t
z8(U2VQZ<WL4j-eAiCC_Qu;sX8F`U*ZxKsY~F}YJdptY5J&q^*!^NuYrgD-vD&D_%X
zhA$k{uePzMqL1@CAlkb$*DyR4JK9<}Esk5C%PLJz0o<D(dfd&n2i3;#WVEGx!;`_|
zKRN|A9jD&DE<c&jMx9kq$SI)h>S8O#jV@L(&K<XI!F@<gjV_M|$H_%dV7-sYjY^IJ
z?XIJ3=p#jlCN1lO<U>)WtKjrN(`j+`P4Y=Da)jMrSHYpE-smd03GLq)pxlSiM&cwS
z{BEr#1_P8c-Xl2_HQ)GPz!#dx-=K+NhEw5il(FA^ev2j+0~8DE0*ObW4FAF8ZJH>x
zjkooWnwZyiY2ve8ysdxCOdP#e6aDt`w*EI!#(sCbuQcKP6>sZ*YbFlP(?m!fZ|k2h
z$yXoJ#O;H;t$)(Q{P$Z;?D>|r^-r0YZNAgQ^3%Mnf7(nudqERH7kFF$J2SCcz9!E7
z%G>(in~C{XHL>z4@8JJn3Yu_T6ZNn24*r=aV+a4)4Oqn8;2r$4Cg$N=n)vV*@8BPa
zrH>_?idCXUnq6aV>3<WggbbntV@tnNjM9t~vMNJ@5~DmCLJ8f#avU$kDEY(81TO&(
zmdz)4kFim-ZtgLrJMA$-vbo3D$iByTaXcT%;Ly+Xiv(j&kj45HXrfF3TI}mn&1~Fb
zTzP`_7}M>0jE&?T<2J%I_Zag*=ck|KJ;oN%#^;(}2BtLuynI0OLr(G@W2@-m#>+X7
zv$%jBes4|XgEfeYD8>+U3G&YaXx-j)a)ukPw@hWHJcp)mN_uqhb|<NJ74N`I;STRH
zN)#Dl$&QvF6A5Mm^80s;J;p4k)$x<OS=b@EG+LUm$GB~ZNkw~%^dTOnHyn&>sd9nC
zJExdKhQ-0yZah4NYt5lQ=-1IB+Oyj!nkE!LX>Q-4g~cht@Q@*<kyD1U|7fB#fXX>e
zvp2OM%S@&1#ut@6^pjJ(IsR)jZK<!9N#$Z_vp)BAhqxt^Tf|tK_4Nnwi4MfUEOQe*
za=5)Oy>ejm{rEI1_>LG-@H8g{hh$U1YuFV$X*4T1hpN*r5_CLGDo_jBqQ*a{;C_=W
z1%LZADR`P)!D~nb?={)3;K9(5{l8-c|2D=@@ZP|*D}Yxz<hp$)@3V?A6#NL}?Ei-p
zJWzHu;v$OCRepD&TLCoB!V2!kx*$UpIORl4@#^1E?fL`x8+Td3C5jBOWXH)EQ^E5A
z`NCa8!4o<=#FFn=J<rBi3SMrKlY*PKgc$eGdf`6BnD3eB7mLW4?pB$^70m-YM}CZF
zh3`p^)9z`a_C0El*h#F%1)XiDamGXbXaIFkRuQLhjFo@2N!;rkYDB+|%Q2o^zNhKS
zX5f;04;OipY)z}Kob06i_KKx9afoI=a32T98jg~Sz~U@`R~F>{@jdr(Xsn@-W$(jd
z?LJlM{2;D6;v$Oq_BZ5r1JITaFVx2;2XS|C=zC5HiPbCqKz+Og$T!^QK9(pl#F8DA
zV@*eic%X?V_f1C$%!(%dz}*!U>+Ly^9F>blxb`usM7l$~e}>T$Ep+3Zo0&sdbT;5Q
zl45-;oUy-iQyb(~dqD5p%z(h#5Ac9zI=yrABgD=;pm%Pf9%>@=A-!`m8Un)~(mOY~
z5LgdTx5-2jXMg8r?@(@L4qf0<CC8fY+*}9ZKOWMEd3Y#m+F=)bsdZkDG*KKt;~aYD
z#w)v-L-ak%DzVa3i4?$00PxC#Tyd6F;xkhvhCt4MN4)wSBCP>%5ykwH4&<+Vgu4Wp
z&RT9<^lWIx8$-CIIn;|&R>kV6XGt@D2QI%nV$F~!GQ<UNtR~G!e5{G8k2Myf4dUZ@
z9P(vd+7zuUVlk_LqAyY@arhk}set)7vJZ(VrJV!B&UoL$6HUYdxHX5!00{KM$jf;A
z6#_G#;6^Rbxc7yWZy<IAK<!WbzB6XNZD^MYcY&u<4%81#%0JdS^BnC0t4}rIcuKp#
z4IuCmKuJV1c7gXm>`MT@#l)ifIXM;AM$rt7c7d@Wx(((de0eCTPOSRLIjVg8Gfh-{
z#w*!TgSqkrh?o|ue$9x9&tdNQoEN2UO2pu%fLK4)H}5<xO3TATu_S=8DE$-yA7BI*
zrF9*;NC7B`G{&NIE5tSc7>m+!Zo2RV(3cZ)T$H|YzR;p{2iInV=zZR{|8G9*jn!oy
zp%^RD-)Jbn73sVe5R4jY;uy=(>olmoa5;K{*sCHBYu_MNeQ=&e=3Y>N3;@l;ru`<>
zd7>&N3XrN{tde|zsFnc5rvU2o;m$TAZ<V@C#6BVzjjd6vlF7sufba|wrwuP`aE7K;
z8p4{Ej>Jo1y??wwnpR4I{s1sEtrY|sVFIEVnsy9g`vLqCiN!Y;EKR#Q#!1s~{CY<k
zX#q<5JXWcFk)DvT?z)HsFfS~TV@FzZ+Y_=6<o5tje{vZ+Cd#&-JA@YxS<UgpV5~Ck
zA~i$~P%c91+9O`jiaA7FTI3?}##m(|6aNT==K!=w8?iZ#Y$2)u8QRX(+!d?*evvGs
zl&T9K0J9~U4duZnA4Q#xRl5C1E%7oSrK;2t%t{d%Eo?3EE#w~r(AU^nqS23X;ji`^
z>0C!^_dAy;G?CW=PqoJ?c`P|jgFetm@=+;Sq}wD<fc!B4>Z74W^noXik&#jYhhC;%
z$FrzXuUw+>aw~Az1YnGpe?#CFMsU2WpzERxKv`FMW9;k;IXwZ?>X}82owFChBsY^a
zx&WWm3!{D4qtwliwE`#?1Gue%NC5=?0w{@S?)xAm)<YK&0DhB*#o|kD%v@VV!@xHS
zWovT#yNTeI`1(PtQsE~)!4GUE0T@r>x+B>@Ig~Nd<w?8?aCZQx?OgiK{EA&A5PDro
z%Rp)CVq0AK1*FA8)-9m?8Nm3Um+vsfOKXKAdXF+Ces(iI==F)GF6IIlAM`p4f$soH
zBAW3*FYjWyC=OtJ(5ndq8ejxJ==CWC<^kw2!>sZ5>z`c5U%$GPeb&fogTrUTVb*x7
zbsT0JOGi)nKgLq5u^7i%n1eM*=n=f1Yy2Y=<}^SFzZDjqYMjAvB=_)fs|Lw!i|e8>
zfLnctT!+9f7)iHBq9D?zgf6-Oltg0pu8{I8#Lfb^_lHOaFI_YTa32kk?;vmlBX2?E
z^^&?s18~oV$YBWV!N_8W)b-Xy4R3sQ*&|yak`00P0sQkI;{GlC`vYP>VfF=x^zhL|
zCxEc45E($#(#wyt8ol~2u8pqur0je!h5o<Tz25Yt6=NFdaCE?b9kEYFkFz}k-=rm&
z=St{jC-N!ffztRY@hTgR%tv-6chmlbc7|*O_XE{`D1zIMa-=o<8^h!Tp*6nD9IG_=
zmCWWm)P0{14MJJN_(6cj0Hmp$@rAAjP%pcfisc5HL6n}trwvFr9;@WAgz}|yQLGe6
z$d<cJS#4|*zJ&Z-0Bx^L0<r#-NJ@!ZWc^L7;+9XW?*YjTX1$c~{De<i8|wk3b<qbv
zRYy4&-g2C*CCZ8-4JaMo#wz_;!Wy8=DNUowX2J`Sq0_@$MitL8V6p((!C_8IFg$9K
zHcAc?6ly`gj&U)iKhLM5CUHO>i!7Q_u60<Y!zea84)tXYZ^e|p#T?oKb!+6%%g(_#
zXf;um;WSotW=!eO--v1=P>e^asZLb*%-ubT2YAsAs6L6&oBqZx#R0|AGCCpN7{$*b
z^p!hS#pt6L@nKmQF#*h{I3qe_NTw{0(bp9sGA0bqN3nWlBKHk3`nBI^!ceRn6dXXU
zGO>u+20o<fj^;Y#Bk|WUrCVO6ht%spm{yJ+QhOn=6QCrb84sz)5W5TD*PU3ra@l%F
zO`hoVkTSf4qq&$q?LpGv82!V`RLth(b@4iY+S8?&#tA%Zn8-0)O!VD4ZpL_Szf6rW
z8wjVB=caBshFdTb5es5G^BJ+Gzb@ka8L_)W%t6GvF`k}R2r(Cs*7$StzB7i)eHsxT
z$9OipLgg-10gMbl&2uid=|nZCv&ZlVAUfd7#WDIcrp^G$E=WDHh|V!~S~kcsawv~e
zp2p}Wn9%}YGS4W+n8LFm<?;e};E!efPQX&^jIA8_I}qQ&H)w!xHxkz(9QmDUA>YJk
z>8beq!jDA5<SvY3h8(&^zYfpn(iy*#@!SN)e*$Q~k8?HJ0{N`u&~xTcI=b|7=1{64
zj4}Y)lR_Lk#xn;FmE-O8faub{Gl!Z$T^%`;8SiSq)5miyGO<~rqIIvUqywXYqFY7X
z1+kRKLB!N(y&5BCRno<PN^HQ4=p{q^>qv^$2NohSbY%H>sbR>yPPD%4Ds^q|09|wk
z&=%P@(aft5CUD_7#J`R~(Vpj6)GDA}7{C=_6tL`$c*AqF=kuZw7fxV<%S6QC(Vmfi
z5Mp2;OpF5=aUBa4Ifyta+Os7i&IP2Ifn3Y)C&*eN;`nIK>_7P2Iw0KvP+L21m>W)6
zBL8WEG^9>=WpT8An8{xY(#0zP+WE=$MnbAbvUD6O##>sGqjm3V#9=Z}PXthl6*U0i
z!?4pNX+bFdXsj~k8a)ix0^zbCdfYM|EW10|9=Be>z#KpuW9vt)g>8=&p3t|+wK(IN
zwSG;e-4pbUYN3OzX^qx^BF5`nlWCoVU*A1_&3Wo2v|>XoCOR+r(820`ohETLEL$)1
z8BncKrj5KcMbJx{YLY8c@bhQ?470HOy3#Vg%XQngbn(gHcY<<87s`1`IoYl`dcP4?
zk@plXveWxv?EFLA2ZeFlxQ`L&K5l8SccNS}%4$%rKc!>*?kH>e82+dEh{IbEC(`o_
zH!te^Y4zBTqpeQTJ;qo(d;Dp=`Zjuu#dPYQF8e(~=iwf|6!!^b;|E^j##`)its>4I
zZ*e<j7SZ6Ng-)=QrQHOJ__mZO^t}@-YVR9vHlLJfe=3^}e+Cwf!nkZP<py20=q_S1
z@JwzOa+2pq(($KgIv29Y@zG!GB<~W{AD!eAz#RGmm=5i(rcbze2$(W}>Co;*j$%mo
z9up0Rc7~bwQDt3>127%h-A$kH*ic=J1bD@8DfciF#Vdv{xu@w%7Oxmi<X)6#dXG0p
zk@t98lyWPI&Q_o~H;s}<d(g-INt9CiCi^!)&KCgMq$t<p86BheWTQ_5+%Jw&df%im
z@di*_59JM*t`ac~5w}MvM{d%nQZ`H%USTw<WJJj`Obu+)>d}xt96+6ED}r2s=>JAq
z2O568DYeM2Bw^pZX}!T2MrrzAmXfAKS@c1FNqVg&rO%rNTD3RII<L{^FS55C)(0$=
zVq>C=j~8xqbNP7TEgPi^mD9bRfl~s|wGc@kXnk;tKhT;SIl%Zp>xMQENr^PS$!eUL
zNR2ekOqic;trltfbZd=B^J}e!*3_hkar~hcp&7>>UZRL`+@Ut-pbFHXh;h83Zlvu)
zu=OHsAA(Jbw0#Kn<w)CyU|)?=Dj2%fG)f7bbc;Q=6C=sTyXhADVt<RI7Yg&7e6hbp
z(hG$<*jF0*1JD#VTqOTQ8n5?NHksa!G+yTej6V>=a4G#4>5C3SQQ3^TN10I(qxFDj
zBsFtJ1=Hp$RCZ$v9{4X?aAagN#Q70aZ#{tdaoWhp5tw)|LKk@e=ErHHBI)C_X#UL8
zT?7ZgGc-2R%WXL%$5he9(+J#hhgA2CkP;Q83ts^DJrHRat&1Q4_hS&b5(6tA0QYkc
zc|BGaaRBaDATqovOsN3e3m}pfr;7&|c?yv>iMj{_a4!aJFfLgaH38hqK_s%8E*_;q
zBn%@pU@!r2PlU+WnlSwXaIXuIFKX#x4uE?Th`85=#q~>2qz(`X>kj|wSEQK<n*I{1
zqas6J(66IUq%!Dl8V0J@(S<*Ns5$^R6hOsuA<KU#L=1yJRDtJdn1{+?`0mxQ6${Vs
zO~HRx;Q0}U_}5WAO1a8{ht}1_;JQ5iFp9Sb4#vAFqm(xaX#80KNVDtG_``UmL`JY}
zR&y2de*@5;Rj`WHxIjKy)Nz#xuWU@oOyMT7QF8Mr<pfI(si%vI^=NaUEmgRL3}sey
z*<2V5xB~&yelCqOLP|?u8gUw>HI7o^?~t^4K$%^S>iG(lx47^LvDNc;$j?U!9zo6$
z%<r-pAGDGZIJCYZuiPVjhuxvYNToDgQ~=O8*V=>FS&?UsX(4zwLZt6!OjRE!UPh`z
zg{aO-s!XKX7U}ylQw;!$en|D36BV|{`@u|=gH#QolxF`>dwc>EAEi-yD3y5nEGpaD
z!}n!fcmim?w*FOTI5&>{Br)T;iFDxOcr8lV$nwSlpCK=kJjR3Bvt8b8$iD%gUJopy
z{S66~h_aX{KnV?_6yLifA>kFU|5r#t2;r3!8KF*>kmzFDE9g*gkzgICk0Hv^B0Chl
zTT#jgmhc293s^$3tg8sKNtjk&7g+#mc^4hB&Jpjd#A~jEFx-oYR2SVPvpoltyXx!Y
z*?drm2ht2gJQL}=;2wE49SwBx_*L?3_J>IK2ISd127yBWC6UJPZ0fJ+;&}t|Yz~A-
zPXN7mfXN&;c`My3<k<|QY#4g#-m~BKAm40?APi$uw;|OQ9h*an#{Y?w(b$W>7Gg$<
z+>6IXx<hr>#A&Si$w+noJ!+(1q4-B$<E8i=sk<DKDc?k@4+;?(^S$^0RzMLB+|Na-
z$@gi#_iIC4Tmn!di|D|r_#jUJl8u0Fi0>Z2Lo0`R(=R^2N8Km!<r?XtEP&AWP&44!
zsAc!*Y*e28Y?OT7Yc;8rjI&XO`!q8^uGg{PHzR%hACUXBF0ilFh}@@>Autl4B%&Ga
z)B6y+1>pBKu_*RH4&Yii39>ors|2#7T$BXQ=~o_5WilG;qD^Do8E6s69gvTReo^{B
zM*IhmZZzhe>MapD)SpxQqx2jmYV*1-n!nCHH6@U3z$XH@2Sw>WKcJpk21ttm)HN<W
zW$cF;A5RM8hh-WPheW9r9un~-AUu!6sYP_NLA*#7Hxr3Nqty0HT)GKNTmaO4MGPb1
zI7{0=T%XbJhd`Qg;TE0xx=pF}TX?JD)GY@jb$tY=*KXO)dNC7sk&h+OqV(qvX-KLC
zrKr|~hjCIZ58+eAHYAON{7e9CS%`ff!q_<R3TE}?P%!;EJfieQkEp`yfqWfSm~-tT
zvpSv<t!t>EIyk>ggJQ%yhRM`6h@1!dQvil8v<TtG<xp!*xf|)Z{t@Xyou;}-ZpsQI
zQDmqCr`(J5{Edme1cLQQRP6wW&4e<zAB2EkGni{Mqo!g)cOxGs(B?iI<i7!+?RIJ^
z;Ww7%F?cN{ubV!oU~Q3fFw>1M#QV*oj6oK%-(E_~vZeh<X>)8$d6tQ*rM$;{S<bd1
z_dxnovT*+`j7$DF+6i%@TwclABk=uKUPyE?z_yQ|2U<AQ{<StIMg&^>2yOng-2-WO
z?$~PVn+UMB8y5y8I#Y$#c8~w%wcVL2J&m=Uv5Gib#kPVwU&Xe9yHLfpg1cD7wi^4f
zifuJ^sfuki_EQzxYOG8ot;WhnDk7#ho)14prSU0iu1}|xm75qNpYRgsSe4fh=PS^O
zFPiZZ=vb9Om^h-jE`~PeCD8FIv;@NS6Z3@jj)%MxRlMBr0?A!~y}mh~NrF`O8IaPs
zg)Z6xxG#Xn1_*qHkyQ|R0)Yn@*$k0E>AL6x;JyzcyCJY0Bi};gAq4JX1g~yPZmElS
zfH1s_@pURg*x$B@VMqPS@@pj=8o_lh73ml9gzsGQt4PVIPb{TPqO`_Vn%cFj%M!o(
z&LWripa^B~V;!%vBHVw%itu`s-j*UXu`5C|yCO8Fh|%{g?0uhZ@B5bazTZ}b`hI5>
z==&e*;u@X`kWB@T^^<+S_8Iqmy(*0mX96_nz?R(i^{NapzL?QU7qP9l@6)*NQE{?m
z-)Cdr*N47;7m~*Sc7K49nCd<UQYy68MJWLHWe|B20^>3A1w?K@;1`VShRBXKy4Vch
zj<+Uzw$+6K;C>b&Jt5E)AnY<k+^7m+H*FE4yEk&*%g`?F?m1OdpJ&|N=117d^6O0;
z`i7C$R#ECmWWR-!-13<<c>Pq?+DRJl%r+waK^c=RWVNiHi_)}yq0$`7g4FgAq%`k7
zXQgQ$(Fc{L%qd?ZGTBg?$c7N<5MgT2S?q$26fyd$Q-n>ox<uG?t80X9km(j-+a`J=
zqU6W!yiJr5VH<wBN7z)bM}$oUdq&t)Fp^cUY88d{Y_3L_8$lvwa13NLq}t)a8~-|l
zN{uY3E2NPPBN`*lN$B%00LqOjW+ZmU#Q65Q2n8s2?R_J03??3cgzW&uj23ESmb`NZ
zT{P*yo3D+{#IhaX$qZmj=_UlreaISUfe}hw7%Ys3>l(oMv?I>W&`>^<h^G;;MTFNa
zcR)M_Sq(brq7H!D9*FFOz%qc6h~|C{QciT%#lFtCsRNOTU0`_Yf}1)J8Qc|CGhK00
z2O`fQa33SZpwn}@>0(|t+|+?c$2W9Q{SDmIfyllLU2Ms~O&y4|>8^`cyW^$~L`wF6
zBJ{vb9f&N0z+8;r^}uy{>LL*!s5eA{hCHVU{SvBDMHyO0zm7c-YF&q7zmSr%RFPj3
z5aOyRIe=iy%uWL9gFR`w(JF-B0?(*r+tPTomoCx()Xb2gUOL4I{|~{uGo1~Tj?)p|
z#oQEg!ao@($M>QM|5p(BvKJ07wdj6^)ZV(N3gCC0So{Y?;|aePsn=@jjQl-9^N^uO
zT=AbGg6p}F0(=TA=k(^uf4LBTBlI*DFF&GYKSsO;NLLUsd<?X0Fd<f_-)Dg4J{B@U
z`{*J7z&LZxSXv=`v=^gYGXZx{AKEqw58>A;!(H%Y8?OW0)c{&`TN`toYfE|#HDY=H
zMd&e#>}(XqSunvt(|;PF_X7lT=LiJk1E?1&J9ngU?iGnQhHyV7Ao0WqbqNy(_SHoN
z0PU*1ghu%ehw#wNq3^kTiz3u-oXb}bBHtE85x!Lv4|fvL0ob<zP>&W-K10&KL|j6K
zG(vS$tfHj4vn1n%Dxb=X%%L<!j<2F@bSD$Y28kc`rLGEK3>jh?*;QKscMF!XnoB8-
z{Y1ZoRImf?3QtB=5$f^~8C$e-!P#6(h-_@3RuM`ImCE`H$i2{)%$4!HMb1mM@+I`s
zMKpk#6;ikrg;EQaKW$_!PospU5se;eAfYd0WdY?x0JlyM*#m(c7-<F(kN$Y}4@XC!
zNf`+#ZnM%-rW(JEf<A=bu=(&Wk?QKXAF48)8&8J#*YQzzUw;&O2CqN>wsisAeuGGV
z2=oOg>q_E&8($oNoR0vgCZEWf1lNZDQ@WQ}jZCq;Ujf!0WQx_g0)gN9Q?)z?=t3WW
zd;CD-k2UefYJ`1gV;F>WQFl{J9z*H3$#x7Se3$GvJ&Q2czUwYdX*`6<Z_&Gr5$0<v
zYU@xJmf0_0sWu^&<KMRQEAUTzY8QmlBx4agbj?XdLAY&ZdMDgAd$=2Jn?2kMx6K~z
zhuh`|55jG8gooj_Il`lG+Z-V|g60U-BVd~P3BJ>Ml}eLAHM?U?3Tk=sq~L0}F-@%l
z&7L}dr>R%NjcIBQBrF=hkNQ8%QeA<BivT5XV!^E4MLKr#pW$9^A&}g4AgoIU;_-V(
zb&rFTBM{pO;Qtat{2ReP_qOnF#2{Vt1aR*Gk%+;%2nKK;3XzEr7>SXI5V-+?-vPqj
zgUBx=Gi)|QR#L=xoMci&7pJi_5fRFE4|<%`9-@mHLwH;0<4_(>MI9XLBGg+RG}es=
zq|pG{u29=>>h~_Uou?wFpf_AckHlRzho)DA;n1AqR(L|%rVro@XI=TllXYcycrQa&
zjLTm~gxjW_BkhVa+O9Zb?20qit~lfDiZkA>I1@;5=2paIO}Jue(CKi}pflm1LA%o+
z)R)SLd(`;1G)!txS_#&mzTpiKCl4AecL-}x-|)ehIDV)uh74s5>Sq?uD--7|ph2jG
z%o@f=?23V)LCqj}9OMrKD2b`=oggJ(m@a$)-1|agJp`5m_>Y8$|5W(r{vrHJ7_N&z
z0C&8g`91{x#>g6oG#R0b`XlgIGemYmU<*Ll*AR)P0)%}7kt~j!fk^c*+cKy^7|+!>
z6v&M+D_jjKPI^{+Bn)9AdCQ4W6d4MYEf}u0VWRp#@bXAj&QM7taIv{GT%A>%lyd+e
z^#M@Fh7~bUz-JVfxr9hS;<Mq(-Qx6&S`CCbBk38%c-|truI(B10P+h^K;I$+2)`DT
zs+X{yp^L*@te}P63cd_CtYB<mD~LJV8W#rvw2hK!a!J`GHEdfm*05#){m?G_N9&^A
zDA2H3)s4hyUxSrb$kN5-$)I7y8sh>#z`q-;**1Kji=_bOh084h3_t&znXupnFfUwA
zHxo<G(#3&nT;jZr3;zH^L5I%KMLa;UPG~Ky0t{=ZI$sx0=Rx9ll-}CJZ15?}Qa^!2
z@7Ex)jhXn#5-2A?u^nR|v8|anXE`kS0gBzna|rFs#L&-lv3s>n7dx~!6CZr8i>3hP
zCC(kpM7J%vn7mo1i=jK3iEDSjFbiN_4Bg2rXXGATlmRd=hVE=84%-XkEP#0jbQhC+
z=~udF0bqWKw5y5vWIwbgfceqUZYJiH1G;$c0Gsg}X5z3Tu+loh2X4BXi4%^&I`SwV
zxanag?mVxHPtNIdgG5g=@!=I++`X*R4HCV~#GJo%apRUwH%Rn0i{$C>5Nly!VcsCo
z$4rdUJ;WHzgKm)MYxesCFAwn#fO&&NKa=N$k{%)!z`Q}Cze#?ttcREfVBR1xAix+M
zlPh?L^Zp)mgTz1+^UpvJF#{ml7$ob5D|N@1Dr%kuY7(y8A5M#hva@MFh<>|yD|Bun
zG0-?-VN7Ki%L*|*qVZL^!z69<K;3+aKWn!Tn`LqjGug1_J+qi4;$W8f6945{_C<?V
z!6qR(_$YL6WK19(97%9GI0DJ$!I4P&OZ<7$c&WpogY=68fj%^noviF3z6B8awIyaY
zI;vjxQOqe-g56OSDIHZiSD3iwOZ?(%A>w=$dYgB0pm9{?F)+OY;FSQmM}VLCHt$rk
zT|0+*h_(PmV@z8ipD2KfDCSBI@>c?A%fGZYicz}>D|oibp(&g)CD8K;*X}8h-vyvs
zDkKqySh6E4(7cIyWSEB-1b{a%K*tP)TA6QbzZ*zbN@q<`>wj!gu{+0be9}b^S=J>L
zVh?CVDQ57I#lToob^4eq&7tuh^W!N{f8tBefbXF&rvVH_?D;V-*?YRs$mhXBz`YNk
zagNz&YWgQ;lzlcYD04P+{;^W5aQj%{f}Ip@A1hpWyTav6;<YP>R?;sLd{m0Mq*Azt
zs1S|{H*2w_aJx&9!UfwEuDn#Z<}2+AcN)}Wb!k?(!=}PD0H*Z-yu<+^>Xl}NJ7y}}
zY{>aAoD?o-CAU4|B8vIqBjg_iQ2(_lob&7Bek)mpI8=dCjs$v+EKQXx7U3b>B3SPv
ziVSf997jp-1_5%P2t)63Ky5CSX0<sL=xg2-0D9MXPGP;HeoM;(S!I~$yp3q?g2Ek7
zL^&ITXjz7brw&2Z@KkmR@5>+#W|_m&;dxHOQ$A$QmJFua7<8S&6MMwLER(?=X9hlB
zz=WnOch&MBqpS8oJ8T6gfo8H#GD2KLG0Y;Viie1+Lfv_gaEgnxFKnhT2=e;@sPE2l
z?oRV<GOtWP{y+-<!W6y+2$okN;lE4ah>IxZH;y3x4h#QN3eT|%kB{^aF#zf+7vZB#
z;imyP$&U@~Y!DfmkCUN6vT0}@c0<d^;!<&_7yTl^qq3xfeL;HfNHnw?n=C^M^CLs^
zu^XC)G_;jl?1q+p7>ZJk4egI0!_Z~})As?qvLJVvA2;BiW&{2MIkzLJaU5UD$J}9I
zpqSrKit-SV0NTYJg+}(rTi94Q^psPs1$mzHquLDu@*YuaVG_j(kz~j9Ak)IG0P>|M
z!@}|p3elt-8_VB8zUF1+U@XtqI$4<etenYoiO*!`aWdf$bYFR9@yKFf%<0Rm<7#IE
zp5xyj{YW_)&+A9SC>2f3Q)wNK=Xr;0x-$v##{sB^w>s;Nby-WqI$jNMs1E%)o&@Qh
z<!Sk`6}W5x&^Xt;tYzkAr!nEh)%1b+$A$8&rEP*qONEn`Lb9o)kDA%EwD?=Br5y66
zUnE#kp8D}eDBXo<)Y6i+`N#3{q@}{HrOaPwk5}2XG#du-FZ@|cy9OIts>XPTr@+`N
z4{{s&vzBHA8(P{Ia=XV+H@vl)y9;p<#b~^3ke>^nb=+D=OUJKfh2zj<PU#lxInkeL
z=NaoEp2x73N)#Dl$&NRIO)bp=g0ZoNmS*i0;%|Reu|C1p{A1VL|F8K+9xymjff)?7
z7?_{;n#+~;`3ka!1?#;kkdEd<0e*_5#yK~abu{fOn~qkf>LL69v}zlj8V5=8=dyBg
z=pXuZj0o0OS0LqV1?1_-f^$vfT(ju^Yo?O7MTij<SvA+QY8EuJtLA!E&Fgm6Z165k
znq;Uk{USlliqv^yplqY6qH3;LZmDMPilmw>$xzMfQZ>7;wyS0WC{%hSR?RJ@YUTjb
zPXW9#AotITteV?Q)w~5ce^#Z|PnN2QxQJpjU6nWw5elGgbQvM6nM$-&HV(yc%9p{O
zft9F|y@5;DIMz^!B12pN$5ztNBY?a=&d|_IP>3m&Si$z#H1wr;t{RFx2I!FijD9fK
zc|P2D9@msZz3A6*I9M+oK)P8f9_GUFG#_p?k9D(^3ysv%>VTUHp!S;Q+)~C^s(R+Q
zDjRkhs8;^~p4NDVSks!<-r+$FaWKoA)*Nt}Y<p!u<~qqB$;M!oWPmuBWit3_ww*!f
zUP+uALTky>+l9CzlMmW>cACL0hd7wUOH%hh#=k&pLd(gdzbL7CF3H|SzkMW%sBEAZ
zUvF{6!c4R5Tb;`8C3Zl$g4i(2Rwl#DcQQ;!HVyNF-7pu=;Qr*$GWtb=?*mC^yFh<-
zibuozbG2od&jQIX^X-OtK^kVQ&+LX-01w=oL2Q^cDjSCRE-;+};1vwBm1#k2m@ic}
z4D%-BT!|;cT)vST9dQxGP`B0z9-;|=x?#JMy1CC<Gg)2^_31`#LJlqAl$w=2cLq^4
z_X3|S32d4YMTWQtj#`yX(@aV95V48o!y`|KkYKj8mn-|?-kf2Yjh8!_CS62ij;W`C
z>OV>Kx<zGPO}(6}oUk9Vn^x8r2a{FK0jb%E)HJ=9b1!D>w^`yz$UhFCj`^|(OEexF
zLznY|gF|oAucLWo{nuc6aA-*$!W}^4T=T*4*BU2VcB)y{XF}8tVZB~d*|MI)<Jck*
z2eVAAe$UyYb0Kq*WN^sFz;`?|Kpf068HCPtVvx2*h)t3~sZfhSkMZ2DnSg^?WWQc{
zyWr6&X(DVib>#jL;$W63w2AZnQ7$lCP?>G<rBJfP(@wSs$)+tHwcFx?@!X3XT13A{
z(5*5lX$<s3R1(_a+8oOk->*!zc-n4@N2M(uae7E*!hC#4DBEJwP{S760n_FHUOAAf
zhq5iU2sLbR2jpx{B88jt88-&vB8s6Vda{Rb0BC;}p1*zY8Cw&FvN@$$sAug^s$C}_
zPfunOlqfR9k{!)MO%wbMkdGxBCg`(Ih!vr1Ol?Db53>n2m|uAQM&D6N2cl77Ow`RH
zGT$qlFDtqaC#s=(`7pA;#1s!vHH8|a$9(R))BEgqo<n|L0PUkKh30I7=CkQ>Xfpje
zdW7no!pQVi0QoXx!MUdC4O>=t&PFv7TZPyb#yY&gro;25v*92PW|=y?+S&3FAoHPQ
zaL&fyH^~5TFw11{lC$OIL1s)iGYAc{7$m*N?OA{fAd4+8c()LPBu#Z2%^TA45C^kN
zp@W?*FJYSyr6Sn!nuhT!e@>PM$@I#f-SYaq$Gyj)LG+6R7s5$5k3u&bPC?7ty3(>d
z_Xx7QJiF!Xke0W_$?^o)%ij@l<rHRE-d$jNGX-~UA$NL&Tsegqme)4bL$pjKMe86f
z4{;I2(2|cJe+Gc+zwJfS({yP|9BRWU-NHQgMo=YB0hdFmY=9C)hPVKZH^NK<Y*Y;v
zD%A`F6nR1fR*?&+Fv|e17BWEW@^#QE5`CzJZut0qoM4iuB5NJ4W5V=NRmdjRfw<KG
z>esWKYioS^3GMcgv|A2^)2^IjSeSmj3fb^wV3J>r=C+OntOXom8fnjZbr1@mm0n=i
zJvC-k5tG_{DE5j-R>-xikhx9@xt0}jja?x-Oyr_)s0;lfLH|hVt5_&Xbahn79!o8S
zoEu3BnQK?bHBupaIJpwCVa6~niWM@~RLJ(gv_*AX%0q6cC|1ZVrb6z7oGsN!A(Nyl
z0dWz<Xeo~x9>T2#Za5WoB}7TD0Een_%BC>ShEY_z&OqL>25X{3ks+4s*i4%EJs=;i
zVQx6>fq8QjtJcmiYj^fp5nH-NEOrxMDW4F{4E9?L%;Q<sQl3JAyxu+#rh7({dL`8K
z5ODxPefIz749LtC;#@SV%xzYg94D2z%__6Nt}>6NvdVDi3H>6$qG)Q=woshbSS0=a
zLQ7?iMw80q*i~kMRGF(zyFZy<3$Z1JRp!2_GLwPn*qS(dfZV1rtTK;GmH7s8j?^TT
zxhz!%aS_E(8MPKz9)P<4h0cJBQVBTpGp9TV^PC#PhXsJkOSM>YB#I1i0UQrWb5;TJ
z(prY*q=V*MkKvAgX44$67dr#8K8JOAEE8$rlE|1uRGcFpdVuHf2-kbXl7<w3(A%}B
zU4qGbqlkp{wn3-dOCF*$fSR3M#57(l__U~*fN?JszSqj927-mp5<nOg;Jp=v8=pP|
zrp*Af1j4c2hE1asH<5-^Qv$qiGSw)c7=cs`3Q={ERGCQiUVwK<RigS7C>9{q8%|W%
zKRYB<E>g`6P+qS}9l5r)hu8~LCgK@F)I>faE(=gb6h_3?Ixl3(8N*UQ{4BtGM4V#2
z*15WYhgbw)yw(}{nun+WV7%6O3Iay}N+ON%T4!=Y4-o@kyw*7v0v`eB{}6M0t@CbG
zMYz1yS!@{9W|Alu$45YnD?p4bU*kp1QiNmNpx9uf88JSz`1)uwf^T`YdjYw6^L-QP
zg&(=&hH}V|Oj#13tcfesXomI;<L7NIHrm<%<yss)Z~uUL{{o;k8t$ZlMxp4v?PwzR
zlA&t!>-aLjJ1U;^;I&2`;#B}Gd6-QP3=Z{V0XWozIeZo1J&-vJ2I_&xq0ul`{p-qY
zFAA^<M+3Z<G1VNPn2l6DhPmqBB1!=p$pNY}0m|`sYM~X4J;e4#tbacYWBp4<#QXr|
zE+bBC?IGs1V*NWmjP)-Y5&sDA{yTy6@1-stBDo9c-wFsU>_YmdcJ&a?AyN`)4E<{d
zDb2f*{_TOlW&r)KVV3@lNGPO#&$$hzh`9+i1v1A4)INQ<rG5I|v6jLeDjNUi4=n{%
zColXTy2p*=kRh4!bAS?-Sg65J_k4zP*QYH5#Onb{_e9dY_-<f?0P5J$g`W!M6}ZFY
zsDs3>g)0XVX?X1qguT1b@Va$4cVEsj+wi&q@|U83Uq=-&yc!br5oK|48YMIgR|1nr
z!p}f?ktG})&PzJ6+&+N60RuRIR>4*UVttZG%7_FUzZ-=s<Ct|zAZhjnvHpSZ%8Lv;
z>lu*$F0x)Vst{{FbEAlCWZg7exx}mw0m*)5?J<Je@3fuubIAV>Ks`Isxm~Qg0!kAl
ztS49CIzC*flS~q7W_XCy43bcO1h-$p3Y&xxkUtbaz2zdo`Z!xCQTm7sl+Zj}S-=uD
z0OeYi5IKUIG21TT8suLA&^!t^PZE*%3%t42(IQ-V!mLBPdx(JU#JV=&1&9JW>(P*(
z380pDRvX@TG-R|K!Cer%5@e)@D{rKbjAKB1fMs-&4Vk{u?(*s3A<6)#k<K#gH$n`R
zBC=3K%W!2si|7xey?c;|aZ*ICUBoKLUxp%Tj4Etiri7VNLOx1p6|RJ*l7uTj`7=wH
zFD3Y_vPr1c(?cZm#D|A#Lmjmm>T@Y04QL&$!<Bbg#=AiKR!@?VD`jNbW$cIiy(puD
zOD(KRSa%U+36X;m+Jq}NS;AAGe8>_GN{u^hmyq7eL%a^4_H(U8j#Y~bvK9hwkZ2pO
zw5UchRsikdUOWMowMbZPKUoU-1t?>ztBhPr#zQG117)-eS2nSXhP^#R{oZ^KU?j`P
zw##@6@}~f((_h%%ej`~z9!h8*u9U7$67~V*ZkA9{N+_^PcntaXQ9_=JRa<w~@bN$}
z3*5kcHC!3R5|aCPi1<Dvq5c?Y7N6Pgse%0d0P4XpMJ*Hz-_{uJZ4TwoucJY@a-F5E
z0xm21uy1P&_k1fC8Y%fW;2s6gCfFp?gD-oW9BwJJhJGFIR8|9O(1TC!>mhCd3zO)Y
zB;wE=CfZn8ZB>ZKn1|FE&jWToHs90A>V%>Z+ekzo+~@WU)fd%}FErtoc6ozY6$OY;
zC)BrTO~w4WZkc}2EC9wAc~{G=X%2nKThqP!hg4>oUVz^N=}<UhdKRW}`6BOvY;FV&
zt;m*`PG98hJAo?{ycTi?hU%kgQqAXq-0A(e=2Ir{EF>KfhlJ`&7_nx54^j31G4>tc
zRTSUbb92ky-L#utfk;<SgMfmfL=gl54GM@L5|9o`=$(Y#A%V~Z0@7>fC?G*aIs}j=
zE%Yt{{9)Jco!vRJdvC)3BhPbk&&<5%Oxbs4XJ>b3I}vcU1ZHqx&r-@B0`3NAhXgK{
zz+4XOQ%WfyV7bn2_Dp92Zk50S4(wk_iFs83djXW%nI=6~1yEx-e1U69X=l?{#iVBq
zKr0~5yo|yO*K@f(NVWvOraV+yNuykD!|<vs&Od`>OK@ObX=ND!U+IFmXcsEZbA#y^
zr{L<-7GK7Bjf&G9pwA)Bg2{!8V>}@>n21DL7kU)&-(u0BuSwQ%aH%13!ohR8Qe1iM
zHBqG1$Yp64DtpZ#RCdOnX}exrX-mLA0eZ}V`dWI2AvED8tv{LGDXy%2P1K`GSDcC<
zPD=H;j?vGPvT&rOldF5homa`#7jV<HD;0E#G)m+JEnmVJSc5LI0LtV*b!cD4mJcDS
zleUh$*C-J-h8tx8w(xT|%Z5bwq8tm5dKf7`LL6%lc=Zc6dkNy$#_gcYhPVh{WrW^$
zc-A|I$V0@-Sf@nT9m>wp4c8!$AfBRUQ3;_6-9#3nprm&bS)7J)4B|TIm4(iN7t^SA
zq*WKcwk{={39tJ$i9QCkO{a2s)&h93M95wM&98xfo=&_Ztsgynhp}hg>tgIFo9bqz
zQ^nXrNVTwy&)Bm^K50(csVNfaHTFadrDL4L%jrx|9#DmvBHwpYi42Ws-HoMkU|@n0
z`-T8s0qCp*R+hjV4s<6dwFuatyPLh$oq(+*FrNcG2})N2{s7Ro-Kh^}4yD?7asZ4>
zP*%Pn2pic0ZPSC_Ay`(_<U%)}GnASwiJM0!I4_ZTJD9eHxcX;X&V0tZ?8B&Ga=2A!
z8AYopO1A(Ob9zuUW(<?n;J}D7N@W860?_Rq)SY(@qiT?rPo}YDl-@N(nacLWA&0n*
z4zretlZKvr1KHQ{SyDnsnIu7!hOnsDQ=HhMh7-9+D>K|A*IzY-%`D(&^c3VGq*~a<
zhg?Z?8k1W6C!E-J4yQKE;N=~ZpuCqPnr0XB-O-cU@FZo$ayc+9LFr4tKLGlzC(SH6
zj-b9sT2Fc#A+)%26&bzJ%gy3@k@uD(<v6w;z&XX069in=8$(NP0`?zC#Yo}6dBv4~
z37Fi+&ED=qz_AjT!GQ~kE9Ks#&H&JvK1AJ|k#x*+IdBQa`ZvXKZrRt(K884N6>+;q
zH~wZM9g+fWysWr$0U6JL;Z$z?hL5p4cX>upOOaMy{MsHRI8Rb>AHm6?zSO)Oq!DS|
z$teCAr~g~NMtWmh86}T0e->%ZGtMeS1CPk(<=94k(oRrX5^z|5H|y7*fVb%}I+n<R
z#}kxM1pEV_2NL*)1g3D{$pmFB0b2}kvnB)NGT<0G4jCMHHbMF2ExPRn&?1Pl=`^pV
z6sJ#P7BPm7L@qZ!pWv)eOPK!w)Bkbvj3*t5lrhw(r1cZOwi%_IDYZm_>kY&;!azC_
zTci<byT~ZFlyh1kBfU8S$5I2Q@cYm~rJdgv4J<8z85~%$v~sbQ*A$xW6gye!X1+pE
zI%M+OV$^6h$jurL5+h9?d5@X25p<6kBTYN9SqA))L1LsKq*~a<XQau=kYljWwmo5_
zsWgs|*}S}iN-JC6rYD1u@4-P-^M>PyF?k%AR$944z`=vvtovXBc9uX7e;RH?X+^6|
zPvZ`8GusdX4v@ek4jf%tsZ78w0JW3AaT1uyf#XUmpAc{>KpTh9iDKP2A}eWo$uy(1
zvZS_P-a{Dt0&#vn&Wm~C^Ah@YY2vXrT=elQzkfzKLRr3;=4Q{P(R78Lk8`r5tpJuN
z8Io2<9J_RY2BnGPy+S@&N7~l$=J9SqHhI7wP7}wQkZNHYpX2S$q!uDAEVJ<O=H=Kb
zpH)od<$b1P$cyiYynjc&zfyU>6F5a`d6x1z$);|)o7G7d<^4|9v5<{VdE+vPb)=Oo
zqP#kjCrEzs@_tlOY4(md5b4ObYdVqS&;-d(4s2dh8A`y8L*1<DPy+rUfu67Nzg0<P
z1p%uM!!&mo0sof3WDaaoQaMh*e1LwEz!DP)n9hM6ODca8Fm<?_bsSDWj|Ap&V7rn^
znYsda4xnShY1C~nk&aRU2YyjfX<Jv2_oESR)(GMpmF-1dvCycSH=RhtN#GBsrIvKg
zCi5jQT?lctvp%DvTMe2l&k5YBY8mGlvbqe5b3D@lnLe2sL%sg!awZMD8Qi=~Ddo?)
zUe|fa0-&)14tTk=5?9X)ur8B2T{3^Nr*(1V?RuhlDviV_Jd(!vM-oWd|A;;fi!1%f
zs3{B@OQVn}WJDUhOlnIkuC5`YfiURLjg$f6CK=z4Z+AWYUI_mvKw5V*`kWa}%j^85
zZuh(5K1{VD_Yrh`BNlb^k5AYKSOQM52%v8WSbLzE(>sPsKF3iGig>;uV7qr|cLn`}
zUU0r(kj2HpL8gmw@5=3nl+eMZi)Dpe+#GCi5j4bfameDL@etF+J*x|Y6v_>Youj_d
zPA@T6vbY4~o7}rLq*>~I+7eLg;sWh+6d~EL79USAHn`P1eFJc$&+~V58(wVNwryJ%
z+rHS`*t*!ZFSe6Qa<Ox<ZM^&a)xX}Vt=Z{$_L-XL?dj>6{!CAAcr)Fm>dfegg@5;1
z*1@^ZU-}~ivfQmU7DjhHnL&DoH6*r8yS8>6jwv_STK|I6-#yq4&W%RxCqqkpZnvK8
zC&l8B+ZIUJ*3K%f#V33A(a{}b3Rw1V9iBf^N<<=lKui##tT3Zux&PKDTl5cnv~muM
zX~njP;e_9NwP@Bsrf`bMd^-Sy{V?9Zj?VhG)HmLMnP>cuUhpWM%}>+b>c-l)>EDDW
z+IoJ$zRDeJ+Q=`~{vkI<D^AVD$kH>K?=|$S;d0BC$qIqV0O5wzQtXX;CYNieIZ#S1
z`Ai<BUoEQNle1CbX{r@IggrPKs?E~sYkf8kbT{Y5_@dcPH6{yB_d;&#p&LB$RC<!d
z24}mAu<B(OAIkLnpm^sfV(t#Nf~O<BwIplYv*MBq#9oKX<{<4A5l4*w+lIkSRM#8&
zHG!QyNj%aDffX~R4}AV5b-E6x$37)QcxKTuI=}w;0%*MD&WJB+`(PSAb9|eX7;1LD
zZ~Zcd#Nj49`UY&EkbN-OizceWYD!19&qwMlGC95%#{F2M#cUG#>cRH+8B}Y#ad5T_
zB&L<~hwbBvT0QDwS~`7#xWDjh&{X2-DAv??pJ;hqrfOfcMW!l2??Dpj_*So%`(xVV
zF@U<QwO&4x_)-j+G2@`yY@7t|q{$0$(xl7v&y^VUck%P{xr{Gz_&CYCxOJ>=j`XT8
z`VV7-q}Q1J8G$q@9NX6o9nuFkSf*1=N}7$_Z`BEJe4MSe9{(QfB?wo#W+f88(9$N8
zrXBvpaPW!NQsm-lZGW|n>ERFG>k+=}7dAI(Yg((Pm=_zrRK=ILHV-$}FFH!r5U%<5
z+Rt}lA(u#$HFv**+heQqZmlp&UwNCy)E)`35d<{?az2pmx@{&S1Gh*fM}ItGcyn$w
z)+vX1PWFgm{9|~76CiS2)jIwk%`^gfE*sNkC;cGSCE(6I>nGB+u%cz<*p;K<#2$nx
z_Ah#6=q`tvr>AQnbR<2))6cL#ig=d+*ife|-_=v6oF3`0WK0^1-ynITNn(OR9vH8(
zzt)e622O)Xbj$@cXPmq-MT9zJS{36sls7(&x0eBHPF&b2f**~dOx2l5u%{g_EJsar
z+ouSnD9kee35`;oy=yTmjBklto^WDOLL7GnBOk{43!0Eb**hvrLJS`v;?kD7%8M8|
zC{2w8JUj&`kuOg3PN$FZ6)YZde0FL|dU6`pT+zIHUi!S_LlhNundRh4fVvw!kJTO0
zq<ll)aJ-2u+YR~>z?>MP?{Oo!_MOAqcY89s44uCWZDcRRk1Q5p%Hule@$`uvxu5!W
z?qMEz6AgEjr0bh9`~1LEA8^M{GwkDLjcOgo_<^^c*&)MDq^~Rat0<b4dLCcwkb`qH
zfhFyEI?b~Z>MAH5FS-YGdc50|j0yJK)Ofa+^^tfUUm^HcMplrDhWYHJ!^P@mOs?Nx
zn`Mz>Iu49{3HMyvBzsAZKFv%cpM43psfRAr_VRfN_vB@B>OcC;4%zGyzFvIGlbO09
zo!_o4|CKNPqwiek!L>X&t{c|j^^WD1lL`=+nV<XE8}2cd<-btuWQ%hz^Bd1IOpjhO
zkFF`SNK4-I(~vv8oE<s=y~*=k0M6uG@l8IvhwozG#DSCG|5KA}8|OU020nY4qWuVz
zn+pV7Y+0N{Q;XlL#K0SYrFpmSxsx7av{;rx%j(&+|13ImcIf?o9~S*FhNa)>v-}4!
z+6Gn+nbZoA0(oN_Cp^6BfQbmZ$1KG(L_Y1@lujI10J9O{5)MsClJG^r*g_J=19P7d
zJ!uUz#ep!s+mH|A<|J`Ko`55KMhr@C+^nV_a)t^LP;R~M<ADlibZXi{9%X<Uz%oGu
zIP*&qLr;)O!}6VKl7fBRTTgydDdDczEd3ZO9p#zz+i&4xpxDKx0tdn0dgtWbp168l
znzVXQ(SS7O2-!k%N{wze4AR?R&W9;CmwSho&Bo@(q?{2)^`wlRII}@lif>?PPsFdF
ze*v>YhesMY0>n8+F={+i9fS6a#i@;))`I+WbB{Gzh{H5pjvL!`{B)<DOk&|36D~E(
z1&C28DC2Kkp4&qj9)9$J)8IA}LFS}?T4^9wwBG$;GssY37r@5@k2@DoCp2JY-=c5E
zQ0lR;qK%vNadeHXjzZGy_3R?EhK2R~80_VL5|UrY;EBED0M#D-&RgE-C|(*uxn4E|
z6`eWCIB?CbcTqo?wL1n(TO5212}jKwHrQu$LSopAxf9dt<#ps>A8tD)=G`)ym2Yg%
z(2makZdCb3nxAYW&os58SsIG!;0L}5bopMAPLv(p+vxm)OV*5Vc{R-b@N}))v`(hT
zXm*3Bx_Jy|5XY)#`pLEq@`dW6irScwA!&FSO^RmwO?aozujD*dTMaBROyxWzO}u2Q
zT6`LIE~t8ZH{$6Eqa9hjQqjR9*?yIi@SxCRp7dLIEvBA7y1hL}quGcW$*t9CO#8+k
z(dhisvbh;=y<IT);G@LB6mJ<Teb)xQ@amBlS$5mp*Uk6tYb~d>v%Cr<xdt};6?076
zIqs8G?xr4V-<>++js`u-1fUNrr9<l?d-!Thd5k7E)sxv8DP`W>(w2C4><!Qiwq%97
z$L6|p6$;o57%MqoCcvbT+iq5K((rLR7d|OOC9V|L7eQmOR`_<)TFCJw;9QZfB|CmH
zhN|5y4vVqdy-WZVu>YyeGVb}H_RH)%zU5rehj@wAha25CQvg4%Wr{FvNcRxNt09eN
zU`~4ye^<NOJPsL~>JWy+IfKf>dU%vy<(HjGlkCAk@s1naFZA=6MUS#+ktU`eipyYp
zrVpFegPQF+*KoXxN4O<6Q9wWfm|z3(GGf|<+`XS&{<fm{5s4oYIdGI0k@Rpe)j<;l
z)fEtwarS)V85*#R^3#PPueGS(qQ<4EqUyPsAm~lm;aZp;f<dcuRVrcr0GXPxQiT^K
zsHzZbWG{f{*9g}2d_A{MvgV#!BjysF)`IuTjSG7=<=;J1{c2ZVI+mqP$Yac*hcfeO
z(?lO}D}Opy(N{gMyt$&hpN2Dd4X>g1PAF*eEwhjdpcrV>VeRw8k8G|UYvB!P)<-^?
zd*nYN7sh0>k*bGY{>WyJXzsB`f>_4Kp?R*@Nvg?gr9h9J0@Hk<pfW<PvJg!f!q`j#
z=*FoE2rjwB)yt~+KjMIpl<~j3IXaVHP1ZvQloMu>Z8qj}LHT#UrpUd1v0)(8jrQmj
zaD2?U2?aR<?LxzZV1z_ko*IIM;(AsE<*P?jopMNpASmu^v-<mx3UrWTf!$#c5=wbH
zxFwwQ2|CnolpJ1?1i2tWn0pNH4}|3|{^>>Ow-nqWxoTG_+x{jJCq5&{O)+AizD-`D
zN}l$S80#8BNGu*OJ5Qzvst3>VOZzC=9*Soc(hab;q1ywDgb<Qa$#ix&7_l|I$h05g
zp|vQ=3bRK)q8|9xl-<T~RIVufg|MfmD-NJ{X$0zTjPOU~K3#lUsOdIJnuCADxcr9U
z&p0|-k9<?IXFOsViOTehGWhC18BPE{=TWAxdTw#1(q1l=^Du^TN*CkTIXj(p?i?L!
z6(4czGt=66Y~d&x6KfT~N}4L?;Lfnkz*#7OVqzEJjYA%U%{QLQPRdpnq=RfqwW=m*
z*1O)mABg=nn9E7ZwIxO_ZYw~TXc;rsM%b}hhlH|<S!40WBYtI9MA)fAJG4UdSRJ(S
zo|X0UBlh<w51Gqso<r+}l5TFdk@(E(=rr!9#AFjz>=<eyZ52^%)WNDRS>r_$t&g4}
zMrV%!E2*QV+G<%{xykbKq+}vtPf=s%)qez?<o?-%x@KoBt-D{hO-A~wviYQt@^Ee4
zGQxgHyt+G)Nj0P)7ioY^Y2zNUDZ#TOQ1FzxM&r>qigqc;5qGRIM<Z=X2BWOb(qx$T
zx~bvuhU`0Hmy1<cfgVQh_q93rPg~LHO#@hSo6sZXHQln*W&vbc_v4%UwuTbcSCjG%
zOJR?bBva3%o7Lr2x~|^Z(x<4t;8xD1dVy~DH`{X03(mo_mLKAHb(?VwJ?`t){C+I4
z%}mq)fboTO;BjqZEOKe}+miHQ-R6=VlR@WneUCfei0_4aUJwU}A~ZKG;r(OV77%t?
zw`mZ(z?RU*U+mzhRJRF=B;i;?Nb5sT*fzfA_m>iXlH?W0^6dnTxOUL8OVFT9Xs|op
zMrutq>V;3;Pq?KMaMvWD?p$XmS}e)4{t3&m)%H<bHi7%}H{N&#49|8w$ROuuXrw?T
z>wGqeEdrhQcAC=Dan6bQN6rb!Ykx=xD#5r&;E8arI!#A7t%5GYjV(N!n*SAX_>!Y?
zMh$XKJO<PN14m=x;JJj+tXOu+-ot6q-7S|SeRuL(XdzW=Tf-(nqzA_U)YW{qXM|OV
z$47P7I&aW~^qTw4<o6K|bg7X!IdlJR?yDq*uJw79YsSrqPX8niv~JIIsMe_y@vbV2
z(z{D9ZU$&rc?p|T#i34KW8NzOafuRBe`i{f2Z#gSXb$4uh(oE*t|VI=iRh#krcqve
z@)v(){$7$yIX;nY$pHUSTmHCU4)KWfsXFi8;=NJ@tgVD8ie~|g_fqYzFNGYpcv$bO
z>PAFvufH$p7q73d<%~<1Mn_9-jed<Y-u49w<V1ptMS@otAYjWP99x+Se~N=<H5;vA
zCa#PXo#r`Tbq~h6#>N-EWN<?dOa$o`*8C!~zOP4JoCLm^kwbS9fE_z_J&|H>2oxsq
z!vW(^AOiq0_pGR~(GLpJf`|g(L?3aCU=@9j4y@8K2FUZsLMJz$pf}OTU(8GVbwHW2
zd?Eoz|JRRoi~hj&9$NS_+w&{VzazJue|FbVN&|ZIg?zi)geV~S2c4dOCq)w}V7-F&
zpWG|m;hb8#jVGw|hdtSlC63p%*p)`yPbYB(=?yV9L+^irj!dKl>C_^g&h}1YruD1-
zpz^nW8%*)iKS_cyxD?h)u{kGEKO9qQWbY`7_50*$U}x8>XCIC(0di`uO-;;SQAQ`K
z*$71$Iw-%mI^&Ch&T?Li>ij-P7@yb7gHJ2f)>)HpZ2p;>S_1pezIq93Xx?)0XIc+p
znFdMFxU|3%PeZdw`^@}{bmpQGe)#F=iIX#k6|q`@_v^^Z#RK#;ZrLzWx*AbljC$W+
zME};h2c&i{<!RHBs1{}0V+?#xbAa|V4ah0!z%~Q;ilF<@Y?z&V*h@61XY2A4dn7xU
zJ?ge|vE?LXR`jhJAZc9&kYwNp37gMBiYHqoWv+@bOxZ=<BN5k5mUaIM%?g#1P0~!H
z)?w4DSW-}SK?PkTkd4vilbn?&oWn%G7?oLQgOg)-Ugt100{WOSak`UnE<LOr(<GmY
z>1u&Q+WjZms4XO1s{@#&sq18hS6!BoX=7^aPYS#yMBUX4!I6=;QdGP*Y&(AFGAfcF
z9_fp0S-W$``kU1tS~@mmcE9xyHz0SK*uDE3!buG=V+%8$5Rdc_DMOgaYk1Y2+DQpQ
z#w@P1T?%rA%1o<&aO|T9?VDx(%t)vRC+1d;RVt<fkL@A<K}IHwXaKo>Olv#$&4XH;
z)T-giiqK{xI9?>Ui~+)mG(x$Bd7uv`OJFk?sMS4JjBCdN>K*;WGl8btSqSah`pm@R
z6M;5K;8Kr1u~KCA=blI=eVifSe!I<Y#Dat*Ew&)K4FKscEPF}ZA6V&g;0Z+^f&CPg
z_(?UyQGM;(y=TCiQLIszaj|<EOjzj70jR2;Ffs`Ym5z03y+B6DfWDsU=Y>RNaf~{r
zc}i))?-5bT=K6jk=*uI<ERoEJsH<0O=Zy;Kt4HqM+VBO+eG&u6y;*jUOoYAYAk!2`
z012(K?=B&m0up$eqCXw4Y3UL>6#)FlGI=NUtodDLeb7SQ)7hhIE0G36V3-AL#BMNg
zSIB~{lBZbRK=4PH9PpZic@v;f-(AE$^Y{P8Uq;xyHS)4g7>@EGGJ*VjZVC2}&{qv6
zl}<HgA=XfA;{VB<KMDY{vaF)o<=0Fg1T*n(E&@T00e)X=B|ZRi3^+q^G;(xwe4abP
z7$l^f9}wJ8{Er7)7j~dk2>6^PU?W==f%u~K`2gVK9nFawbc*;-L$l|l->k1_>wXh~
z4ziE}vehdVoTkYBT%E{7*ggcjYS)d1JVD4kb1ec}dD*BhPueS+5}Vmyh$YaJXUH>=
zL*G0SdHHq#0lPI1k<z+|rc^QXcYA!fK2nB<BGvyX4ZdJ-A#h*r&5Yzg@CLt=>uyUP
z->(|K2^M0G=@DI7ECmL}T6-@L*+xhIiUJvq2FVXnb&3d1KX8;ictKJE*h|MdKcibK
zA5u=mz?;BvvMC!6{CX%s;?>64Nkb^#{rQj`-}IE}KNRQ;fIJ;I`H>)u^!hU%L`MQ3
zOGzkP%Z-GCvZ4Q{=eUFKA(5BQ!j8bX4rp?kJJHz$MfKO>FZYoK?`^SJg#R~NQNjS+
zAlnz1bHH(ogna{eebs7A`_OQ9d{Chwb!D(z=^1q$|LeekE1oMNG2om61l0a7ec$RE
z2xMUcf)^_w_ipS62h2%s=l}lUm72PS33y-16HGHQ2YZ2r>>2?J&-HN!W7z@r2hurt
z6QX7S{~AC7!AB7Q<cL~2!@I%Y;4TO|+K4QIZV~s7$jgTVrh)qImh&6v$yf!9M8a2Y
z1N=VR|JU3&IDi$I`XRP)4ETqA^|LUqZy7^`<8);iJ|wFXrWJ$!{tvz8mB$oQut9lc
z9B~Agm|{m%_Ig&ZIRK=CE>67%C5X!*ATHzMQm>W6R=$zcHQojv&|i-Vzfy`oo^ipF
zL)Ln-5MzyAyc3%UdlokslV(5S^)D+WtXU$n5Yx`DFr(1;NWuU%c!mGhYEF6l3Rb)!
zjt*u>MuPkhnKh26NT9kFB5F(3x4UIYR7i4ho0KL7R@L(qnCtgMUdUT#h6LseM8gK@
zNgbmPwK(vX3|N0k{gj4w?x&&5{P^f%2hLJN5`eET!q}5ZAM{Y*f+pZ^4%sY(s4cO7
zM}J~}VJw{TrlDtQ>R?*tj$w%Poev$Pq8y<4=@;ywDImZZhGoYz1e~Qv9g{OE@0;YR
zb}z|Lpb`S0SxPobB^bQ(papEy1$YC+JKr1HE{h=uZ<oH{J@2j}e<%I(0a>LJo>_<|
z>i@<e0~BPEWYziN+{l^$wlZrhq9NYouAC1kq%W@%>I}q1ar6u())S}D0d_*5S6~1y
zixGf@cs3dwBpE(62u@0Dx7X>qfuNBnwIGfcEA?~qmX=P7;SBt%crNWs6L6l2u(CG{
z#tEU%l7r1WYt$#nt<Ux=?^^;daSnEUpHZMaLT#rMJRs&%CHGt40dfv_9rzvG&|>E`
zcETeWNPC2<O}$J1wEtbMACTceB!-aiKaFkIAJ_zzhi$qMglA`35;4E~!^XTX93&(l
zBLi`MST{QQPKgg`r!)8)A{ii?46qN<c=#+vRjJ_L;A8pKD?VsJjJ_!-jGc(n&^c+y
z22XWW0K9Xhw0^d-8daGIKM5F|foH%P;7B60n=tSAao2FA)j<>g{KIV0_cH|CkktH8
zyFbvyg>tL`zmRQ*d_G=8FEMO1aL+|mN|z?81Gl0UkJ1K95K$+F?EiEJM}MFoSXtZx
zP6B)1$OK~9pvSVyvx(M!jOCje;g!Ma)zxd>zDY3^7My|TCj)}diq9FW8z2Zbuh_2J
zQa+bt!@}7IgBVQ}zQBoJeyM0+UJ`LYZ-gh}WB&uEUY?bB>P-;N`?3XPDDYN=7t&$y
zWYO7|Fz_!4s4k2`H$WFF;qvCcZ;-X;iFaUv05B7~+0gr0l3GkqyPJHDjgs6GO>$#Z
zxnlCms*HNv`2TN2=0>w(BeRN_f1<eoii5!qq~>?4(9H>ZaFomful&$s!1arxPcgAJ
z^E@%HofC6yOi7A>;1`kLs|E;GN(dPz9BA2emcgQY)F6&mBo@XBiu}yFqotEc;}ChH
zUgKS#2+T|Zzv#kFi1X@;RT&DL{SJr;U1)~&)xfSe0aaB2fQ%zKxQ60|AM^T8tY-oP
zBWYd5^b9dA`jEY3sqDFjeNjpra4Bq_7^k*>QO`om1KB55mlT+dF#6;uPZ6X?`FA?z
z+@4>x5w`=*a$OLNi08ham;g^id!zF@qbe2FC~j=!;#GSH7%uhS!}s1D3)`c69We+N
z{RBC01ts6fQ-?)CHn|^G@4`Z@_;pP(RUFA>4f&<Hr?Vr4vt!IMf|+1y(*G;~L42~f
znJjAaX_;)FWQL=>W|sSRV5*NP`BTpw?^m(W)UzGEvtxIE_l(n;JE~!{=;^j8&?gJw
z(q3dDTqf8@ZU1->BvD*@kj2{}?VpTO-Oet=B=)Goc0g6S*b)Lx%Bt!Ov%TE^P5<`j
z8<S9;?`AnZ<2zeP4dU7Mn3p92i9Uj2Qnd7^@nl%rS&T6kVOnyRBx|jFvNSx3*BAIv
z*LP-f{DyU<WIBI_UFxRN3L3uxoe3vz4>SC+mc4x5)Z!dFc2+{1hZ=e#O-~H)-?F%u
zW+xgnSA(Ba-{e7-0>eM6xR9i@nH~J9_R;;7ROkC@V5;c{`RF52s|&qPb?gO>5`L2u
zo-00gO?rQxim1(m=UxWgTE;(Oa|?g~jZ+407HG-^kssKgOADDtS&`86rLz=S;;eqI
zdH(umMj9>uQXI%m3bJr`iiYu_cmB$o#)atAa*7C=pxX-;soNDHjozMIm%L=>?wG{8
zp%7ktq|C$PRjd_v_a-uS6{UKiL2bJiaPzSZKR-@L?yb`aawhpK2X(_at42LNr!`MT
z_$bl(8X)1l`I0&_@%+kFz1bry99E;%yu8p8-XOd10a<gjO6XFf0Z|iwX|jDR{n<N~
zZAb-5Ob!gB#=GGSHcbE7RWFh6ZAk&1D*I00)t)ghRc95*FFCl{xzK4s%3v<d2@|!n
z-)T}0gMHQ$dcN(QYG?SE#v{i{XGyb67cM5qG-F^*5y_KW{%>KmJ{s)9P+D0%t{&p^
zVQ=@BoK!I?%!ff!kl|^kaLLSNZZ5({UrV(`CX3kLKBp*kWjxqNPB~jb?c0-g9r@+M
zV?*KwAK1AdFj=*0v|B)FvishElhcxwpv`{nl`R)(_c^^{ul+%n{7AeHG&hX@qfbqZ
z;GVR*Wen^I@G=stceFq*LqaQ4>*Dsy;NF~?IN=}_ldw4hEzOi!hg2M+r`FA!6&)wp
zc=UNfa;+O&erN8xeH9tp4c~C4CCFq8Iy!liX2;F!-ANSt=ZM%RJ375Ws47}Sw!R#M
z+Tnf5%k}KI<yh1DK<=I2HEFFMml0JSKA;V$%{!<~g;_mdRUYC#>#)X-F@VfN(iKKH
z7oXB9`7DPG*`ZX!NqLjQpYR<4n>WSDZT(1FY~kzL7c{p;^Q8?pz{xiCJG&h_q{39T
z%-{)z#Fx>96O?qv$O*4OhO!GB={z{+89sd|zgQ~$Q1kk~v{8oZMOG#I=r_faD4sk+
z0xFeH$&6BYZl7FdtFt4oN(E)vLO_;07k~Rq<8u@I!Q^A(6Ij%3K}p{Tx1JbWVU;uU
zzvL(w87reBgyY9yX;VGgq!Cg^pluAC*0{;)K@%fhR7-^t{}zhy+?ktGEg+`Sk@nkS
z8igCR^g5+~he%aLuv2d#3z5qw^$es%FRoB(?o7jD)$c~b7XEz>tPz-PhUnMDE$nW?
z)Qp10avWdA7<CWKhbl-G?_OE4i9VcQj?~+Iy^K6Mu(|k$W$A4wXM3hDOf|uHZ-Diz
z+Efqr!vj69R^R(4!l@!EDaXWWtI)`?Vg;MVl5?rE5+FI|LFX@7+z8OIxQH*ucg+h9
zFL;nER`1>J_aDAReI6wlz>GViq?hrpV|6d;f&R=wFT$}7*lm6tcUpVQUx2-AmrCFZ
zaI4~TOFAd2xn6<&c!;`ULA=Zx-XN*Hjd^lsCOa9Ce^W=|OBbQL0d+b_w~!S{EI8ij
z>D`uvVCOf1$80zr_8lIZ2<gbUYRBR>N&n2rfDI}Ah-+23sOCY524|Z~7@${D6VIq2
z?uW*0<DOK&lG88#1Lvwg%0BBS!IT<D<>%<t2s=@`?8x;>;PiwxdD_@xz4FOy*@#A{
z&}oR@3Hb&cd^0UZSW^{3j}1#fp>bIQfS=~SoRuYogWF?4xh5Eb2+)&?4pH+u;grn*
zo-bB~ofuKWQXYwxlR<-Q<IT~i07uEM`6-Q{KfTfSFVtlDj>b2$R%CrbY6~sWrj|G?
zn*2AD?0=;>E5<Y0mEYRf;5e|4{t0;P+<JzjesB5W5OZ<@KjnwsbBm{+viOLW?1ld)
zT)`s=#HR!GPf(3{hcSC2yxoqB9^sDwR9ybKOf(5nT^OJ&G2%~ZMn=uPZC@CFN(!O0
zPZ0lK#P3@Ygq4G@7?%YDFou|%m@L>yx&^SfVQY@F==LpssS|?wGW7UD!QOtT(5(n9
z5!0xBwd?AbpWhppO`#f?b0CG_zawTbXlFENnVUYsVSd7w7}Xi=&im13!Ncxx^1?@7
zY3c0y_Yb&HLlRF!p-{q?&Cm`F=#!Ddw@uxy&C)CR=h<$<Bu7jfG*CV`2#gnwyChf7
z(9wMf$rpz=%EkKIPm5jrw8XMupBYlS6{alBpIZxCi<rWc=MVM13TdB+2VogsfjR6+
z;R)yt8njFP9<A67sgSfyMEQ%2EbNy_hlFQrMM@Bl-+^~q*p59}d59GpNx!uLvo&tj
zAKg5pZHV>n=YiZpe+guMjw>`|6JZkjG0qm;9g|Y(dm|FT$i-q@<4+8&xl%_o)$>d6
z_>wz`&=<5&L;yo*;e)ubUiXdsUCLwY5lqKxyyD|q-U4V`Jc-gCkfQK;Vf4`D+76j9
zPsm7W(bDikZM~UhW?b6Oj!Z5##~vIq&dHbAq~^a#_ALIqCrJ$x&F++XnOb8ooY!Hx
zyKdfnf-$*}qKQ|mxA&0VZ;&`l{5z5~swJH_d&hm16JfsGd=+XACU?N29@C<gP3OXm
zG|84SNEmciZ)c0B5}|<!aQ+aiRE8wLphTgM@AMa35{%U23YHlh9C(lkiZ(uHi$1%N
zCi2UO9}|>Xem7gBFxJVY7?^()t?mwVS@}MxpECF}h;Cf9n&&;@zSk3RPLL;q2%Zi(
z?Eu8S-C=E?e_o^!%W>t^rznYoc@SDb2fD5qq4zAvmM?RH&^)vJWBo<P#8}t-sHPV`
zXyWDS1?0SjVhTgD|12d*rShkCgE?#7O_Oa;{ri?F#cF4tYI1RNCqY<b%*U>@ucC06
z=rH}yviNK0uKX-(RDmttabyg!|Bf2R_Dar6ox8HpMM{D&)U`p+mhd8B3wMu}r}dAU
z&n`DDrghbDU5#vv>!L5q$YtP5c2Ons1fJAOf_qvFAY3vplgUG5j_Zkl$>-Ofz2n8%
z@q(FryTrk&Q4P$1?3u*g__7=B1_B#=g3>P0z96BB>Nh2*n9}7JZ8+$WFd7=DceMNn
zRBc5FHtu@Q4A!(jd&TneWHdL33ZbBx-yQhcwDK=3KeB~6!J85H<R3dw2A~Z#+asAr
zU^DU3VO>8JMv#m=q4!>=Z(V9sT6xhbS}QJ$Q&CG(bciR?+*Hl$a*Jh~%e0oYIidYA
zOS`1{#=&Bbgg;)1O$)oOQP=QU1u#kw42dV2kpP_~bNDZn_|`wh%Uv^Exo}n$E6#<m
zJ2aJ=HAAnMJRA%8mk5-5Zj4C|u%ZMGCI%|m$$@3ZZ(}VI$NIpY_>K1kZX)4(zkS3U
zl~n-ntl--6MKIbAH3u!(3v*#WbVLnP%U^SqLRy*CTxE~mg4a?4vt_2DdVnWUBKnTD
z>YMX7`P+%$w%dO)?8$ORI`~LxoQ&u-8@s_1x_bG8iNaS_4fu%s1f|(jJ49dt34K`P
z^?{JH;WV{%Q1!zSsT>{B`)^Jliy|}*%m7Z!#*gBcAC7P|@l38nwd&dE)xx;jyR=-1
zZ(S(QTVjzfcZXBr>+R1>GHZ`9YSxX8Ur{gef)*k#X7|!d5zX7wl$0A@nK9masyYjD
ze_^88%5~U0H&4UqKBJ+S-x?<x8PTq#0ba8Qec`*Z7!W;f66Uk|Bs*TPW;tN;h+4X+
z%<%a#TID()tQAR-_$%ysncdROBNTx%V%ar*zce0C0_AO%&>c4DH!`J0oV7GCzd5Js
zm|wv0MzU5Y9XVH3>`oA=w^G(yxuw#g@JMI|3sngT=+Sg!ys`_UQCuHXxTNg#nV`t}
zK{x=cx}i8rM(=evp((|wyJ57!{xG4gP(|~5KMQnnqD<&PjOY#C|HB0@vrHT%N3_E#
zc$e;r18eD)6q9yH!{-lc&66(^rwL%dyh!^V;#K-&?Q*-BS|=|>TapfQ<pcI=0Kv7O
zW=S6c*&C~li~7f%AS4MYH(QZ#^$3hHR{0gVo<Fdp4(*ynV0H$T$4MfTH80Q}Og6D^
zEOVbF3-U^m+6R^!Gd~ganN@&b@|OGBKlC;b1e<P_gUFg8jh8XJjub0K?NkSIgmlw~
zc$*@PufW%)P_2;Yo99y3ybZS-UEOENgH(#3(}&e2%J(35V(Xq9=HGmFLa&u4+mQ|o
zm)jZV*=Natd=sbLMs>mvo+Jk~24%v9yFQ@UB_wbe{5Ne-qU*S+C~aU%5&A5v_n*(w
ziN9Hm1ShMgX;VQzi&9RZe4+E#P*>aty`~QOoK<A;ApF6VEn&~uln@8-xmjd!l={rU
z7!vzV?kI>lAw9`uSEc*Nzz7ohra=Wf*V-vAxq+t)*<KDP*STFSQ{LBvI5q8Q@J1Mc
zw6aFW5aUva^cXc=(tVj=3W<GCu<{3ejdQYW5C)LP^9-knEm+F&<QIOdHOMvcdW_y?
z4ePYgoeKXbMAXx!yOCl+_m%Xufy)NBC&4M0;xeWT$|z|+L}^~CW`_5h^x4z;B6+(f
zP&gZHTTz&NYxtJ$3oD=A=Z1)nT+=1eH{qfFxJOWVuotE-H~*Mqt=r7%9Y*boh3yv1
z-Ns1oi@4~De~YnL5O_3Jn1Vmy42M9qSx`9r78RA&=UBE{l)?tZ5A(;Lz_Sp~6a#C{
zj3*OvSu%pZ6SXf(+8gT62cPdiF#0Ij5PyJ{`K)L*L)an{8AH0oh$iiAE3UPh<?N$E
z^SoQh^8Q;!*NM~`4FplNdz_(6H=&NdfBMWN7A$E?7P>3xTBe+2=94<-HDSx>)NrGK
z_np03Vd@Vk{QKw$?+?*F3e=2&pjK=OHw*!@?|)7VfuU5GlRWg$v@Ehk8hhM=0Yq8?
zPcNyfhlRDj-0q^IBL_P+^kSXkDDOm=FQA=U=-k#m?O+vDv3vcRh$Y7h=Iz6WU*Edi
z-o=>RW{1aJc&^Vf5>gi3|NUb^0)PEh7{Gk!<JA`4Jm}U|s$XVlK$)cludeyMaC?UM
zKWyt!2uq6=vc8OMqbO;&Aojw~3UW@St5|IFa~oY@v7S84KR4qBv`A)#{-x0>OK8k{
z;It2cfqdl5VUR>4)RwUA*!dl(?UE2L=_dA1rs$)%;0Rto<69Df8#%cX;F0sr70X1H
z?GOnb^dD;AUD<b~jM7aV+1Qb1{T?CHY`^hmXzW8#y=cu>LdV}+zz)GS8}uSGwbjqC
z;k+)p>Gn5slM`00_ch*dnldmBPWcHPgCWm>=}Xk?1E(+JhMBRJLUj(pit_`huDZHw
z66f4^Px&_t^)6ore-ibI4o!4Ne)&<sLcvZ|2$>%W;wwaz_oPMm*wu-WZy>;Mb5n}_
z&+^~dF^YXV++3=-zz45Sfyj-PTRbMmIOZay%(>>cQ4jg1BOt|L3WLN2f2CREH>gjX
zxFnu1!NCTRYUpFbmUiZ?smmPvwS_F2x~OQ!k2fZs=DF4zYxKiLh358h?m0IWMbS)F
zqrwvtiMUPgx=bRqk`3|&2d%jG<B@C`%xy2ssh`nTZIoF(`e$%2?hjZeua+W|IuH|)
z<E5ioOXGUBmf9`~lguo6)ogeNBH@{5#CdvNP1Tdl+&t;lygKzW^slaJ@>HEs)UP2l
zm{d1v3=eJGC;W@5Uk_n9>JyFJFXWSMs>a<XW)f*9#h<SOi`MMZduD&w7i21j$3Lx0
zlVeC_lXy1w%--A<#wnxG?88s?#ZeUFX6m_Ld_Z}n=wuJeUy3GN=(UPt^wG(<P4ZM6
zTp5ZZ)2unoYs&59u@*np&00^)LP6E7mL^L`q>#JDwJ02BC_d_BTN(aRbiml%KTcob
ze3^GcZJwK_bXA~YvZL3_N$^_Y%(Ucv`Lk!X!M`9g8!K^b)&qJmOVL6%`#jH)cU4zh
zCU?5^e#LwhGk&y5A-;`)u!^2pz$WW_sq@OaVT7^X(~YUwv%2fgy|!uc35#vP$qgD&
zd{@k3ZzH$$Tk45f`SAE_ojeshCx!#V&%_e#VFqyXWzvOz4GJz+-qsD7RaMg_Xhr9G
zb`}`Tt8{dxkB3nPHZ;zIC8hQU(-x6;X}=r<H}u*`;+eP>a@<hUh?wV<>M<Z>ci8VE
zS2Ebde3cFyvNv8icJS6R?vfMId`)Na4K*J56hj^SOlQ(aaygiGrqVKVEqwEj)lAW3
zp1#x{nG$rDt;AbdNu@|!z=l@9*@l4#0WmO)uZS7;F(0ICC@e`*r+h~K7UClxrH%F5
zR?t(e;V%I3sjpbhQaejxs!znbZEMqs$B~hgUXs1ft7aB+Xvo!Fq|}zz5YEzfPH{W=
z7k!|gcDA|L%2`9R0-g1}?GG#yp{}snm|g2_qRMtt5#&%h$Y(!b_lTzRXyJYyZS<$w
zhEhqko@y56QPbuNf>D`Bc8cn=Cf)&NpQ@LGQ0U5$io^E6ZI;l9g9g1lAj@DiX)sUv
zEA?n6j?RQl+dQ>?jdiWR)$!p&cy2`d4vjQ%RD1`nAKNb<*!YQ}__=1|FJ5es-BD$?
zST~G+0(}N8^gH61Z?g6FLs$jPSm(<2PE7n_Z%QeuxpfGsX`i)hOm76Yqxlh3pF{LP
zBq_rYcACAfkg^-ujAgGLQ<X@#hHL>6`sQKQ65|t4ph(G2%tw;xsd?@xW~p-vE`IAF
z1_{09URzMPdBXHXc+Mu?-1dZnaB^v$=fC8PKdq)@*@ymzoa422YueUvgB?Tnxan$g
zmjUouSY;LYCa5r+#9gz%5YOsPTq9{%OP^PK^5)<W5!dk0%f?lHuvc9Z-o%bUV0Ix)
z>QZv3w%2Mu!x4S<folX?9B|DNrN^f&N+FEt4e=pM{OW47CKBvvmm0Nwjf9SY;H)0u
z0x|bS9LEde`xrl=D~eA<TK{drhEQ5$XE;FPk$&ig2Li1CVLu2QCgxqqJcJ}}4rU|7
zB@((38GC?z335+6P&h-u6mF;?yfeHJRn-I!g2KPAcRu3!>f0RgD|A$v#N5nbF$h}B
z+l`CLZ{69xaF>=hl0=NsL;X>!L{;2;w-D1QC|BS+4EbI=i$RS=GJ_u!Fb^GdDK(d$
zKALskjr_K~J`7YHsBPc|3i_+;>Z?|vT(J3bK(^8h$<S;S$z4&qx<zj8z6BNbs~jE|
z`r??!k#Klqn2xc^y-TG%zoj9;e%~f}y(}&iQZ_>i%W4?p9}O4JDjHuSIP||(*H~?$
z((!q$BkZ>1qA{U5e|jDrHh@PpJV)g-%6nUk=M`^L`%7W~Ki^BK++WZTWW{%($xUht
zb@KK@>3Vqu54i^J3%&nLa(|ULRw2xa=#H%qPsE$a3%Ri20NH-rN_>f(G!-WH0&ZD6
zK$ev>UdsCXjanf)a+{S@%#=NiuqKktnStzf6BYM|iXNKfUR&%~jXC=gw8^=I{yGrf
zz`*oMET+5s3_Gy_gPrq=N8w!JBM#+7wJ`kg&yd02pCR`JC9`t4RS+zXg|(K%Y?U_j
z=!Nz>hgY~`VRbfk2tygrf4NA{{{GQs2W8n|=0|JO9IehJfGkK>R>VhC*42DN+#m6G
zD_MptaX^;#5})%R9v#j{MMi;|4JM#_(w(<1&YTGq&)LGn%YaVc-&zoM0Xc)N6v=dJ
zeuWyQmg5S0{N4KCw4*sW`@#Ca=GOXv>6>O3kKp7;)J0)gDiz>FiOw-_AvK}Ttk_|u
zq%4&!_`WQa%*L7?yHE+qpj&QI=|5Nsv_t%VaE=YJ$<xG@)muh}s|3wd6UuKD9_8-q
zMm>n6?yV`3#UL;KxX8%D1XFkHKk!|oui55?6#e`1n|tCr>x1+4@Kj&jm&0WDgiH|3
zv4;!`KDaASGuM67$<*>&-)aw>s^U4S=_We5@%(zBmj!(G0IG#{E+Y>RBxlRRhSk$W
zb^Z*flp^#vl&!-evd11K50e@{O#P9MK03GLEN_1Z+lD%G%N>o#1*iNr%Z3`nMPBy6
zH2tU8r)i8q*Fv_p+{!MEBSrYy{~PH^xMC!Eu3JJ{5a*+qQX$98wAWvX2~7Pvry-cO
zcjD<33;(z$_|DV%(jn|rPR!t!01vjkb3N}i7=SfyS7z^fFrEP-Dyv;}yjy~)^EJ02
zAvI|4akuZEelUKs%{$WHiU35-p~FCfoL9@iIvXa(i@#3}xVh>T0{{7OZ=Zr6UFZ5-
zZSEBPz6w?=Lj3cm!E17Ucb)&8i?7b%wQP+Qcn{)zDA|EA$nJLf1rIwVb^1(Hu4efC
zahXe_wy0tLCzP$NV4>nP$WKA^^(lP?>)iceTcG%HOLm%9+%3zJ9`fNDkiX8){8fwi
z(*`yX_rR_*nEydPbZc(K_Ubr?7suSog6m;yz2DfSbL}5e7jMfJ0mK405zQ`=Li?x9
z+9I^N#5^Hro3^gs=G0*>6N~ulh2Q6>GQxnK>sA_|Mf)!8M*R=PP5QbJvT#^2NRzi%
zk8~h$NfYFpfbNtC`2bD@?0i$^#maD_ek8j<w<-~9E*86i*5pOMPV_>WD=3sI8-(QU
z{st>A%s2g+czpd|LBvmvrTW@@F%j?<43L{iF(OR*3w7_;Q#mq$1NxstiVMVH{;M0I
z+oJN#FC+gl#yOGy`PU7uvE7b!l}zo=PTZuWYEYm4+|-=1oG>35sJQjf>`K7~Y=)lw
zd#UtMAJ*Hk;}AIgEf5Uxmbkg)ZF1>-gc<u*{6Xe_u;Nd&;)9G;f<3*b=hVv_6ys4o
zTpTA;!{B#ZtdMY5Cs0^3uszHUFp+PC4Q8C!?!miiXxpHJd#4nx>!OR(kDp|3q*SQS
z4&)^B6Byz-Y<$Wb@?A-BQPzHi@;}=)-In2bhnwt78Kh?6xT)v2MN|L*pCExvJHI>-
zL(H(SeS#(=LFYRdp?Lx}>1aP8yW|5s@xo*oqGK)rJb9a1W5C`DW<%j@)gLmF^xV~x
zf;XiDgW<Su-}ZDVRi`}&IAxKF50ao6xa~N+%AW}jiIJBPtDrvwa!g49UsQzxgCT>p
z35yZ+Rzo$4UI&v^cmauHBD%rPEfi36b8jc^EY)vaWs!VFS8%{+ikoU$0Nvu#<kibf
z8~HCi^2cJ=KDmD5MI>Mwd0hXb0q`?T{NEFYCUjvh#SK!5R06R>Q7^?DosOwK$?Ff)
zvVwh)6o&zx0J*)hkFc#IY=$I}(7U(pEw6T(ZLbV^X3%d0hJ3?%DNuZOU@<X<fMvZD
zEE?H)xzA}(90>|GtcR;cB_H5*@kBG-(h-7@N{W?GbcTe;Y=t(lPTk<n9aq{%>hDf@
z38R6{aw)^m{l-{`K(RcyGp6<kcq~8IJ0Nb9`JJy2EF!!Rb#>_=Y4nc|gE3m#Jjrrj
zhebi|bN$9OKy+P)hHuYe6xZ13i+B^1V8AI#^*ujz`A-Z?EL@Zp$^*5QBpxT}`lO$K
z&Q4$<R*ET20RXyAL~o7@t(T!ekjGHH{`N{_u31Cyk2dL$&Zh;6tA6f+vCaa713%x2
z&Se7iog23MXW+yXqnen-b%(w{{4e=FBwX8S2UCa<!_vkh7bD2{wY<PLur-RHSs5d6
z=$<PTEYx~YwAfT@(IO26Sn?XoVc#7Ur9>4W?E5`Q?<!w!om@w@-4C*OTu<%h3Gcuq
zVZFH}nJ$OL8`f#2<c`Hr!UO%r-|*2{$d&^aq-#k?Fn5d#H%dn%n*#km<AC719i_N*
ztLg|aYWXp?w1ChEWq<1l=umkUVsiiDhFhXYa1!_lDB$gdxvTI>K>MG-1gVHJq)wmq
zvGgZJL(T}u^t;m4g;WBr>4x1^GKropkIT7aXvpqehfL_?<?i%R!FQllyP?WE1aQHx
z8yNo2avb?Lvn8yW5&x8FuakH-MHTyCM}8)^9Al?Qi1Y~hq>c;DJeG*wcY69K=L@rr
zjR&WA0UD+D9=K%qeecQdys?cHn9EFl)eTt0Gbj>n#AFfIbbnb;jji!c8fFXde-AYN
z8zqg%p!<8GR?R~%@+u0XyO%5&NJpjoqz~yNJZKQ2Tz+BZk*b}92O;rWe#hC@Hb?`{
zwjM-l4N)m~s{=a;FB-UbY4y0mWn5f$UonEBEnsz)+Kdte<2n`T^-c-3tfXbaBkhAn
zdxG??!p4#Ie_vtna5esZv@K`|2y#AroAQd`dh<fe9AFi-sfrXy=6^hjkK8Z_E3;u3
zDt2uZ9+Hl=Gn=Uiw1@rA{dp$yKIEjdR1>&tFRVOfIXV<+41%1A=pof<D<Swg^X$;-
zP$-5h0`n7y;v>Hu9Mo&W!S2z#lHPs~MQlNi9;5hSGqtHoPf8U~*^o|Bi@ZB~dm88x
zJCduOE1{U+@`WuBvj(^Dp~-&Q;~V>`%L(lOt6CTjzatRna4anNi=$f-(uxrJ5&<sy
zOD4wRrz-oSWEA%Fl9)~ssbtgd8V*fJ)FJ!(xpQ{WQQhdd^Hok<A3!0(Z;Ln!ws<Vu
zX^SW`w<gE<^%{86xG4x8{qY`)%$@TtQ$!P_JUiF79`mR>z5Xvt^>wFM$$0c0(H1)C
zmmMmW%2){wNm0GJA6Q)Xsrdv0vdL>GHuqN{**g2iSk)dbNK&;r0#3nKsNJ;kHZf^D
zlAh-iup-xI^*w8n$iBV8k}|P&<ozE)3mI_En>Uv&ueDrmup@BKh0DGDHhZxB(KgIp
zyKJO?ZhyGcA8L7V#=o+FFGDn|L$pa7u|o6mpE5&)H!o%c{NU{+N)evFrIx%Y|1ox~
zhRyCMx9pI9rQ+rKocf|1FK}3Fm6i!+-hxqtu<HboVg8@l`oTPeW3I!`?ilw@SxfS~
z`8AY$+uw-$VsX!BagTsfBLrO}#dYYf*Cx^Rc`rIHm)6IN@`p&R-GBVPlD*6Bb<Jts
zqi_bDckb4Q4BCuW&FUh18_zihRlp|3_pqkHU#>k7O|cPwi%VKBQj38iD`1g6)8({M
zr_rWt|2yt7UK{=JmDeN`Pe6}3=62a}_4ADdwJeV_-U#Ot`lbm3*5B#(P*<;i;gDyZ
z-$E)G4Dyv^oP7VRzmg%m)=WI-&m6`snGD=Ma0!Z(6Epv@c+>cW0abd<zj8)VMdB7h
z6`ox>gcsD}Ho1rLPC4W71%}rvWSr#{4%Yec!|Ck0&+=YaNnk<XJ-Srr^@qd5<qem^
z`YD&|<I8^p7W2p9G&ss1$2EL(@DGb=64_l39YlEO*Xc|$Qi)!g<RixpE#JS}E_Kft
zy$1$2&H<C%dtJglcKBbqXLsN;D+cct9=6nrh6f%v1$GA$RLYn)5o${S>INB&f{jqs
zB&wXiqzR;T4C;bUWsAXGkM|MXEMe!n7qk3sb;st+uS{c@Z{N73QU_?Jw5j~5`d0eG
zQ*p^q&>+y`h^0$}!7G$WU@O#yjHQ*o%lcu{0m7K<Yn(M%FP9Z=>M8>23kYVC6Uw)K
z5x$_r(=VY65|E#ca0}eJ`h9Ci9`P3|E+v|%kQB=m-Y-yeBcq$NYHj2F=eC~dV5Y!^
z`)DbSe<{z^Sc*4x&xm_A7j}6*%}kniQrUo-aI|F;G{*4x_}8fDefEO`48`zm-Idye
zsdv16aC=MsFFW&~y=lnoS|(pUit6FB)D2wKV<@YMOtY5S7Q$!$a?!J?@Q;OH7o+@~
zeJPLJfMa#H^QVNnb>xd#H}RRL_}uuhE0hMb!W3klJEUr#nO|H6$@Dh|3^&sf@A5Io
zG8SD;^35o{m5B#v`4&7cAKEF1gR%Y;bMh_e+YY%#UQb21d^$Z@z1jyvEBit*d#MTN
zcO4_2qQ)PxWXyZ;dM2X5+*3CIlS&V%J5l@x6stdwEn(chNI>gQSwgFbzMWiLTNvki
zVIz{2Il?_@v7HxxVo}3bjZCLsLizRd(=6~4Z;<SoM5^YIgjva&<{`Cq3a<O2FSs&f
zBynOePzXyan<6mpF@4h{xa%-9evm<sL6R-9Sj2t&q}R|8C%<5x3$W}8&;y_#L?wvv
z!7&*jhLNA=4521Sk?~0&m`Ir!RiP?LcCd&c97(V7zHLe5yCt+&9$2n}H;&85f#Lw5
zeLk`t4X-{<7vM(Y$(9|5K_#xKMm0dMWF^lX7~`%Z8qWp*?e5g^s(!A=6$J}lp=9WZ
zogZnkwrc#IoO4<c0H3ME+9h?vFddY#q5r;jByNP1a^<z-f&CH>;Y#A~foug;B1jJ8
zb3%u9ClS3PevE=SSGVTPo@L|Ss5Be<W~PiL(+lbP>&Gp+6y%UEtEB1l$n}Gh4|^V9
za=`1|*rzhJ3BHYCG+jLK7sQ;_8qq{J`9;I?L#H*{Who)xG5=EMAlLl&-_N2h#Wokh
z5<SBHJ@A9ublLRSfR~jqy~5EwUPt=b;X&8L6IECE`PG?bms6fD#Cuy)2}HzL7vk7!
z)(FnN(qo?dSlWFflS-90${S8vOk~awqP|yYT=)%X=@mQ}s2ejWHmgpQmSn7ZFJs=r
zLSOl*2O*XodX}plN^7^5#2Hs=lzjZ()RZ&3|CC*TRp$BTxK*=oLVw8{+83L^XKr6i
zG@l9Sw+N^#!lv1IE}wr`gqbD?2Ky*}r*+d=mn@2QRsz!#!rH-?s_hLKZ`=PJB8l}+
z1{`xafb7Eq$TqmQ=5v*DiL1X<dW%mB#eJoU$P~Z4BKJ=M(U1Li%5>{tLezaNvgL0j
z#E}aiUsXR65<x3}?jRjFNoO5NL_lIQPMRFC|EDeX8Jmcyq5Mv|b0AM4iYsD)De_M&
zxYsT>F_3M&<xpawA3T`{_U2YNl0@R4j{FQc;g|qph&IY3?Pq~1c_-tIb)Gq)&5>AI
zUo4!`q*xV*Y%o(H?TuC5M&e(DoB?T0OWtQw+-SC0Zd&cI!=+;yklY^u^EaX#K7j`3
zS*`}4QRE=?bHIGRJ<%~3{9O`gnLbRZ3<{ma1p~=k=WYZ56d<TvxKWFN_F0^|*CrDh
z$;Ga;ya$(x-b*xRRSSL6B?fcDWe5+hWlKjYMM-@X?(ua=O3X{Q>boWsBz|R?-*Hwh
zv(z79s7$j6$Bv;d+R<i(H<$J-zJsqgvPqEes|jODhcf9giE|Wp@efy9*d}6=a=ac;
zyq-jrThL`RXOOyNfScpa_AiUi8dIsdAM>ni4=w(|B4zk>aAVW6&ax4IcLYzq33W>A
zv4$Izq{g9%zqgDXgibwO<}yD>X+dlPF{0}`jMGEw4hk9<b^IV)yIX2VdJUhFWp=6^
zpHWO7yBL_V8rg@uYm)k$<BUNytVfOjR){p@3>NfVc}YYYb(Ygmz9wq)k5{Xy9ri4D
zj3xGN7JiYX_it)3rP09pQR(Z>kN_dFkYt?^={O-RRbbGo8)#W-sN?pa6$+_f<F&V}
z*_k?8he%wo(1!*z{23Raih;Td@8Jvl+bV61=<FNSXH8927Ww(=#~w>c5A*#;kw*TO
z;g{H};evR8pFOXy(os<<*s={JArI{zkBVLBE`n0X(F0)0m>&m{6X=>p@T;(57G|Pv
zH(4Qlx}YQ3MyL=%B0M9IVkpnh6GRIyqWJjSX{4p62(cRB+?=F;@MYNuS6Y%BIVu|Z
z`JJ$XB$P2l`F&w}8Tgp3{~t+L8C6%$tPk$qgS$HvcZZ_I-QC^&V8yMtyK8ZWLUDI@
z_X5T3p7*<dCVMA)WhL2@OlC59=8^7*c&givb{p;@7f;G^r)--=y!@otJlaq<2Vg$$
z{<YZ$KB;r#;@Klzp(H=y45hwY5VG0A=HfnM??7Y-m1uya^IwuU>>T(Ghfeb2=<f|5
zx^LK&A-YQ_N^4vB>yPzsi7qRYt|KT7*#U%&N^RP2&eio|$5Y~S?hu~(EF!BiwcDW4
zs>aZB(>Zss`ayT$;>W#OPizl=-Hz|5NBTsXW!z!s_pI9DwbydXry9$ii2+HSx!0GO
zN%YjoddE)7bP!Wry1{DZmbTRgcA}LnN-7peDw82>zAdDS(@FuEla>{~gVhd?tg06X
zMJtz-bfz$hGm*@Pz%QLj4r2f4HBd?ri0)S0$lt})8DFW!Zm0yMaAmRDCE`n>=%hcP
z_s(?N?zd1&oQ1+VKT1*>7nyc_xa3Qd&V33vDn{!&J`hg5(U0MbCF^CcF=E5a+ZN^q
z>n?jvFd$r=bNDnFO-o0{z<1)!Yg0h}7<*?JHZ|z<J+ks%Rkwpx4to)Iz+dI-CXyG|
z_Ng>KqG3)Hk!^b%(PJ=Db<<c)>!0-vza8O3zEIht_7)#5hwdr7%JZI29M-Hbkb0fj
z-<0~ZCpUim&lA9LO;OYe^G~~^mUp*xU0wE7BD)KA|1}yMPwO`JKp(Fbah4o6Z#+_d
z4wcK!4B&WR-Q?%nhromzX>I#b#l@YUH#N*kbD+^*Tu>jOk<=8{vU%@F6lGZdHl=*W
zb<}x7^)vo>I!o>NckyTIo;K#_=_M_<mNsTvs6#AibkBUlG<y*%dvL~UUYCP33TN$j
z>Ndu*`6s|N8Z2YpJ1)i`WA*h&>&C~PRCgQ1W6#-M^_>UR><WfVu%pg1%pn%$W!CX`
zTm|Q$SI}_A&Kq#vD!OHS!*2WCwQ0u80gNxo%qj1ujM}TiQb%kgEA2>!?iuoFI+%xI
z%jUv>ccMcj@zly6Xa+}4NGk+LOv~o??}yNNt+Uyn2%PK4bGB*ClX1gYcRa<Vx^aBc
zN>s{*99D%k%XVfY1~>gwYS+J^WZ};cHl4n~F0MNkLz-{9S`3H(oGnrXJY+U(%t1eW
z6=T?GjGX^5e4U!OD?4vkU>)bd>XJ77K-ZMrJ#R4o;0QH$U9N&m{@Dw^d~c-Un+RS<
z^M2F|RGsfiD~9kSMR(ck@!H*#owH%b5o*BEQqYDI)xTxBtXwHBn@8@Z5(bFBP~?iM
zBx(k{$*YnD<8y``JJE?$=#frwurM#J+(i#&l+q;+ffEbX<PUIiWJ{YxD!LIAQ0fhu
zc^}-92eYl|uH2uDBTm}Iv<P+u#AHQqGO3H<mhRFY%dQaqT3AXEgx3@Ly_C4nBB;5v
zDxn8?uM$)Dg!P@Qjuw+VhJDiW;Dt|~Iq5u5&@KHZ1tZwq$%c`5FY3;vCeLJp%q@zH
zDbYg7Ey@~pzEp0Ij+!#G7FEpeFI(sDKGcKN6vP{$L0sSE@cCWYWA{-6C2C+q2V=1E
zgNiZ^Q?^tgp{+hM>AU4sm$O=d1wEbqvFq|VWU}r7pATN#F57NLw%cW7Q`-mN^jcJp
z2&uD{PM_xYpB5nz@7EwFK?rKok^A*I_sYflc<Il$PU3^h%sK|QgxbdTb9)HmLE>n4
zm`4}A02Zus#5?r#|L_j{^?&~oGYw?MIY*=@CYU=(t7F*kC#^;L_PcZ&(OLg#LN+!9
zB=MAavK)4wa62X2UdyUoOqY&<dybg%L9+z(0W7+gv|T(AkF})i@rA{x9Yr=&GYGWG
znwDrHgaj%1)MB0^n(eSOSE!-r4I28>GPkin1v;d(?NFQLFPvx^IBDwF{6egfY)%u^
zhK&3hcD^_zKDN7f1mnqd$kJ>l7ilAmi88)qb>TTy0EA>B!|0**K`lyTbBWc{)MA?3
zV5Az;(&YIot;P;lu5K&AsX1OsX5Z|{c@637A4@CI+>Gyw2Np2PNQuG8ip!ac8}yjs
z#ZtXp62L&<A|XoBuB{|0f5F8LFSw7q8zN)P%`W=Jo;<OHc*;W^Vt1dB?l6j|CqF5c
zfLmcIG~cQjVuIL^!CLl&JIpQ6@~O~0EH6kP16)kLT(G%>pz5z*Kp|$o9O)j0rKa}P
zZu?Wcnt>78WQ*@ttrPZGhI><O0z)dy2a}KfZ|+q+O<J>)=GvWB1Jlo1_GREwB)Rqy
z&`PwQnbU=C8E6oe26iIu5M!YIuisAo`o@qdKWf0g$_~oKkmcok3>RP0rHJty@eoAU
zEc$PGI=?BD=M}*T;~dcs6&qKk2eGa09l|DO*o3-=_{f%PMqYsLCw&?^%1!~mea6(s
z2|YgxT@&xT&-!AQK<1q-Lzf6aNl~zrp)<CvVV(BJ!B`>(lWcs8!7AB1Rs=)QUn@hy
zRDtl$DI_Jsm)P11Beonpns0Mfd5-SySaWx6=aOOip2@X>U!D9pL~^8SL%4QT9Fm;g
z+ud@$m^$m@oH~l@>2~YiMb03f@}+e4VB{}6iOYxn_-!^q{S{*@tieAi9sV8R@CN+m
z<J~xf$$d8-f%_E$KTc`Q;w#1)!r}R(3HiZl@SFn%R)L0+jvY8bN#xL+j{Qn4R?!<x
zKLu&AhOInUljuTjR<q|^OcK-<hwadPO@1gryOa)3M7kWL>kPX}uXi1pj8&i&eeRiH
zV9O9#K0V$ngu#a|gGDwMKodMGL5orv(i#;xGo8qh{eBUWw#o$QK?cS|DSng~ahKB@
zJ6&FTF6=yaeEU#dXnr8v*Wv&3sPl?utbL;6TeaN$(7-WEacW_OkUEuhZ46?+Mynex
zh<{d9oY)0@!tm$^M&)_|fU5%xjcezSVVxyeWge;1H9d$;X|MC+_6g8ldrxvfK@X`1
zOV7<icIeB}=kK)s&UJPGcc(deCHe39{@I?`Kr?I^foPPV2feXE>W$u^#*<6;@n~I6
zlmz`Bx|fJe!qinC^(T`xT)+<HRD2N%S*}(-pq1l8n$a$`R`q+Pfqx>9Hlk6e_!$LO
z&nTOnDYrWf3l2_cSvukyY8lk!wh}6*k^Ut?BGj&0D!$`r0ot6eNH&AN3#-TWPOPuS
zl0eq+UzvQDLzb^R$9*n~+#EcHX((C4K{b#m>AjLzo3JM@++F;@!cYpO@7U2dts#&(
zj_*txX<MbgLhTQ>u%xfBc%4-88%f$fzvLgGFF%W={qYXE&5YM2LTMuT%!0MjGPB3J
zbR|!an!PYdeP|E+XS;D{QYXo}d9QxT7vCv_Z56mnvfHuXA)nTYwA@;3tFf`yK{Y45
zHD#^3a(_MNPA+dZ40UNbdXJngPqq9hy-cUE{4FscqBHmC@WuN>UI`WyzQbt27>FOt
z&x<Ad4ODh>91^2&T^R-xMd<E*m$Hpkd5tzPKvH}A01i(Fh7TnZxxK-gShfpfaYLrq
zd`9hS66AAx{&n?CckCq~uUkcGQ|}cyL~4)?85D6)U+0rzFdaNQh@3^`Ix@V&P%oW1
zaRt(4ecbzasW;;YIC9$<*%k|{Ka~O$Nq&1;VqU(%r>1o?y}y8cafsh{pj@8<!(fl3
zUP5>c6rpl)9`~x^gI~J~t#ifmUjmQ%XDkbEUs7$}B|*YJBlcO%nSK-+@x2u@fuS91
zJ|1Kv9{C|wusP<aBeo5or^I>3q1LN|IG6e$p)a;gn!+TWd_44|Y^aL6;GH+V?U>Rk
zkbV!2A)qJzr?5(?+vi6s;}~&lw$9P0-mog9aj82sZkd`L9z1#U&tA6E;&Icb&~Dsn
zsH3Q5x~C+m;VJy)t(`yc2Kqp}7<U?{<>9)II|)8dO&P5?BmPUvP3r~m{L;&YA^*8+
z;APG9yL-LRBln+e2Z0>!iR~$RHyebS3R)2t3RB_O@YsVT)~dIY(T>s&6kZG7HAe_a
zSr#4DPY(e$yRxA-GRITNw-H(((het8o>j21wCxqiNm^u|QNHi>L3|8_6V#X_7zl^w
zi0tTHFLp76M}xfn%NQZ?N>ra*Cx-^c-b!pAJgvCb4lX24e)f;#o)OP&;A(1*HNwez
zQyQZZABz%NpfBZF`Q!Yb>m7o<%+-+%GD!g{DwDSouAlhU34vxzUaa3YY8}X5!lJm4
z>0&2PWPiNyB1au$>NR#(U{Pkaq`7Tj!2V3PZ_$o;9_4aHOWK<>kg^k3P%3K+DW6xe
z9j@5_G=vZQsmcyNmnn?+)B`{9U6fRteWj4(msDn$8c7uBBiqJw@;2KB>p!9jCTHLJ
zv%s0`|2+<q=c_igTNGF!O^VGbav(`=10>4^MR}`MO@(ns(l$A7q^<1(eJkoNQGc!W
zxlCI7;oT4y#yk#Q+nOk%$1lI`J#zk{iOAYIX13mment|w>!(=j`!q1z(GK$rN&K5?
zb(8$C_qS}UXO1`XWlUGcKQ05Bxj7tnowmEg{Wx(ka7Js9<Yae7M~VSeL;_73aP0^N
z*<xdR(l=z9aipP{cF=46>|^=BIOmB-&l0w=!~5e58x-`)v4p?Z7S|X0j!yvPEFeaT
zHijn9HzV7PW`rEd1Bvl;nLp$qLih_FSumIZA)<&75*TlNait7hNm~Cx6I&C?vn8>E
zoLrQU{)q0>)Yto{XjRSkXBHz!ismbO7>^Id%;6WdkYwB+BBwV`%Y{kGt(e*Z7R(<+
zSB!i#fq6eFiGQoGKhu`NI6CpgJX#A0)%=Plt%ZOz?fE7k`-i85D<kgvH>Rh+12UAQ
zkoNFV4K$w~Ls_&{f$b?BCz!N)9pvb`wnY;b1|eEPoUiGc&Q&ZNzNQX?aKQxiE1sFe
zX@0ap#e$`f4~rM3qbG-XoY?Q|c<&70AjIdSF|bw-j-yrw+Oh6D<HyY78pdy@BCjI9
z=m2r^!6b0Tc6?Eky(Bl+S+4l&esOtf7*9B|zj=kOAkTTi)9a>8r(l1D*Kzr`Yok7L
z=BsNVaI^U%$XpxFX!%DNwlBWHxW>kIkuKSdO0!3cl{jq6PHGSiWv<ihcp9MFItc48
ztbF|+-q6tlx5`IX`F8exYg3^_X5Iq5Dr}Cfx0n~g^JPuLGY^)?+tX#ui_)3se`X9_
zg9_<q$Xh9L-oi&Ay~yC~7nC|smQ_JA^8)XkcM-Cky1)fXPZ~TLubx$`o!40K3DT~A
z$IMsx97MNi4IBCV0WJ7CFBwxRmdLQbB}zwndsSaRr%1c%EVdWg5k21p>yR#`H2O9d
ztbs}bea6+Q*N{i&<0g1j6TnztC;3wMh_v~r_Jm#;arD0e&CuV1w9B;-?lx?H)7CWi
zGy^{r+;NfGVrvV()<wbSiNVUo1{^|OE%(*-(4)Ff+T#0yQPz-_(cIyRn>sC+caD@k
zRK|ZLpXAbya3E19)kPA%)fMsmXG#(bACs<d)2~(i6kghb>Z;s(CfRZwZ+|?ZCcFGW
z2@Q`<iVg{ZNxCp22Q3DKAp=Q=&m?XoqZUZ3qJM#wq$>o`!bg#U&wh+xfE9>{Domf#
z7a4+&2jqtSd5>ww8QD3T8LO+CtE(;#7yiAyY&VP1vHH8lqIwgx`Dg#IaPIsYZPZTQ
z`%D~QFJJPsB4?1Spg}ANdi2UDbk;a;g8~zgyB5-dhtI8~%og1B0v<uGUMN8*$>OBZ
z6T8qVw=C(e3uU}aQU|JEPu~bu(Joa#5h~Ylyz*WWqeTlxCAZ29!ulGb-6Bu~KKyN{
zsv^kbz@H$GA>nxEbv%@iDqmtYj`^Rh_T{$!d0j};l6V93oKK#!K2#`%>>W^Tm7(?$
zQX=YWye@RYHtru-_6fNgH3a6pKny{?E^sD@u9>^$t?_oE@jq9bnV{(K#&T!bB(4^y
zOADT+Ec`KYsFXqHJz?Wk4`C1`$J#+MOH^1yqw}v#fc@RX@UcufA0%wKieLzcYS;9l
zdBcT-t4r7pi1X~lsxvug8|&Q8Lif6)_YLX^N$IbkRJ;r@lz0J0>p`OYAf$|f$W};C
z_w0?el^ltn9x!IQEaEdomBF8#Y{wFhwuk#E1@b2Cd&mT8TT9-8{6hLF@=i-QPT$E)
z@IQhpp!yQg%!DDYF>X;3ifu*7ckvy29Zrk<J`Bb>{JD>rT#A~;S)n-QYb%PZ{M8P_
zn10#m5R1IP0gk6cVH}12eMTK@2~~zzG8bexa9frsP5pKzignF#eTq0mjMTG5bx$<F
z+Iiz4g?s)kobK`z%3JiuW~_k1u`dpG*@^1ijHEG7r=&OXp91B(8|dGS)E%yH>hCVe
z$r<3H5k)8Oba*C1vVom{ld`SLqY_jho{ucb4;DDyB%~X&eZHnPFMWU4)s8%T<3B2y
zJ3g1LNX{kh&z#Z%w+uM8a>9)#a!iBt{|E#)`|##JNusE5Y^T$0^vejjpn1`7_6Buu
zoIJ>{o_f$+%DRFx%=_6Gllo^s1VM}tr~TVn1(My1Ua}lbF$v^%i2=zHr7#i61hRBZ
zS0k|R*-qig)^PG)>D{!{@s|jAjrFXr2-1-^^JR;winvhJh+M|mLh5M_R{L2oDv%2g
z2;2nF>Ea3_@Zju_MTn1-v$>pec+xy#okQ>JEQzcPx_&q2Y@<Jg{Xx&j-c@VEqx=b&
z{igNj+8Ff%UhQNbPWOn1JjSg{NXh-aj>k=Lknt3s%>5F|SrJkUD|KM~XYF@MQ)YwX
z%YWAlu^eL;7h@7``>B+Ojax0|wNo*OADh|d6*Kzkzqy06U;EpG4TFiR94fsVi{dMd
zfG$;WP7EX7a$o&Xe#~<(4vz}Wx0@FUtZkB7-oR7Gya-B5yg3*MnP65bxdKh^_|_Rp
zky+I~_1%+y+r&~(C;p>0cs+u@q7@fiIP`28*C_pz)i*w+)pvl2i~|U^<!v)-|JyI!
zAA^ZrTChcnH=8B+-Ef5+ePzK{%cL>unfUR_)G=6WD4LWO#}Kx(XelbpAEoe-(KB|S
zZbdC@J-WgCGurUkBca?)H^XmGv{I5Sj~m`s;@7A!YT-lcso&0>-R(K3+b>JOz<KRY
z@i9tLFVQG<AR!0IwnY+)3tZI&znkqC_#+}vGlT@UIR*{|k=UlB@U>`?BeyhXA|eX@
z7o*!dG6&{99BJe9-u{o-H*ZS!RAi1oW6r=&ix7^nSbqgg(Gr$j_a5LNunWnj%ljMN
z;VX3kqJOy#)$Dm!aeCCIr2mGxJRC3*kFU~X%qM5iZ-N5>+4PEDZtB94IZ(R9$KVx`
zBx}8ll+P_~Qen1T;sFWURjwC@QUy@EgzcKO$NtUKe+&f2sF%3*$0lNqt^1*he*6%<
zd574t{ZDbH!{n{doa1(pZ4U8;fNYa0Wp(Jui-B*I6}JAh5H{kY_P@-4%A`wuYm9f4
zxoJT5BqS`Wx5mu95X<_h_>;jbsyn~P@YctPGoikAn-r}f_W+rOM3r;6WnS$(c4^Io
zntI#b%Ttl?!#9@8^Z1V`68|ww|LCGB__W*aO>)}5Sg%!n*td37Ut&pQrJTZWGw2U9
z`6<3b<v9<6-VS;JhC=}1?aIIj$JB{B9e^PV()RJ^$m4?WS^H$aWwbY_4shv@WIqXK
zojA<E7LN}>(0T{=@(k&<X625ExnHN%UMo#s=i#{gr+jn$R#fots%C>wo{I}EHfOqt
zw39ZKBv#3J@F8+kL!dnD6DS(|n>wnU1nNj_!Kb>=1NQ!}WuY!RokRv>85muh*g}qd
z^~yW*mA(CXSH3nB@>NgSk+nkjQH$-l-*nYTX#ZDN^V6K^D(1)7e`M`HGCJVM#5`b*
zos||jgOPH4Y?1q|8lPAlKR`6ip-yvwY46Luk7AtR0Ez~RVWUmkY~}8`2FiB5O`Ev&
z6SMUba1-Vxc+9ma;}|KoGyp}D9_7<cOd{%~QburXezR_OUIS%Vhm+89(Wy&)06_!A
zk{0DS;fJJERY3k2du_y+YkpaV;ee>@fFc}(ZCUwx`od+k`^uK-*Ag1qq%gN-QT9Qu
zSu<OUnjc5>Nv4yaO*e*=J>b29r)7rBDl2JkClij{hKugmLEQT7-d^p0BzIj!_i;0I
z?Pb8eqDC0}P+4tL#fSJ)AZM#Z&t$QGj3CF~nJqqz#mX7M=KAwzr_ik0JB75wM?uRo
z3jyN9E4%ar09sXnmQKr)19o)!3VmHnVq5ejEpToN!Gwr~ymWUvT@I444vIIdk4$U}
zVvdAD#S*j+NN}5EK!hU9gTS-Bi|PRkYm;Vp)RiMRy&)g)LLXtephYb20s|rGuEfk~
ze(Y|OFUdMYGXRky8_f!s6$@Y`y><N<c(|ed-OBH8%hzcb#8w(B{64(-f?w0t12K%Z
zXQKs@`^Yx)cKs=>M@IabSttM_<K!cW+^2;##d*$@25&0x;23?I>BJT>1eIMjhC`Sz
z`HF&*L8YTG5lP%xg?rpU5W{cA%)zM?DwL=g$|>*=Fz98YB>jkp)2Ahyswwv{VUb$#
zo3$7XnrEB2Jknp3ollXrv28?V)&vtTAagiC&HRQ;%d?8{i+(ka?IiieA&?AUsd5_<
zcDSn3khwt3@eNg7;DLIOH#~L6?re|nOAhmGrml-t&_61Grmq}o#o**>rmL~Y)W`dm
zL1QdSy5maXS6%w!X|k^*r19DJ79C3L92(B_OtKx_<PbZA1PNIi)J}pLTf!B*DjV77
z6FVo(to0;O{0l_#Qway4AfNTxK7{DbO{iX6<qLU4+6VgO1!~du((bFEfX~)x`<p<^
zjlY4;ZUeLHQTB184=tU)KIaNsH{aih?K`t_jL%#8_&T1?$UG4S*Jd|GiBWhmDKNYv
z6&5r?ykyO1q|~p-6U{MKmu1NvrOiGWBMFlQZe%cdkEdUi2R<Vi?P*cOnJKOtiTArk
z3#~eDJ*?f6TRYDx72Y;yg<>Iw{P{KYFX>#8h8apBVqQIJI}R4*le!INNzf_pKUb;b
zUghgGks+W*UEcN($?admyd=>?5*VjBDQ+pr<5Y?nm)$8EzL#qjLj{{X2XLD81V^ZU
zp&NhB!obsmk3%!kyKo(#8s|sCc&Al~gXh+Fk(lZ4-qTA@V|jSq%-_J>1+qi@Q0+CB
zz>dC+@&Y;kQe<!Smn&CR9vT#4+ITpp7c;n+AF~f!w3P^@v|Etq%|z{4InJ$OU927s
z;F|UMHSMoScF&JMW>Q8ymqh5-KAp$x-LB|+umv#EyShu0Gq_S+IR@?myg#T56LS1Z
z5zTK@8Ll53m<Ep>eS&&uL~?sGV*BL9wwlS^J}ej@vk(gIxD8325O<K08K<{-in{wz
z6OJ8K&}reE=zo63A3Ii#-f?rk-C1e3P+@p@xX}MY5N=j$^>iRlv;V?Ij4^4h8`*a^
ztH*^^(BL1@*JH)JP6f>j@C*8BzKVz=C2P#AD+p}^ksWpLS!`$ci!~lED(awts-xRq
z&UMv-eE&48-7X8mtB5siQli|h4E?E^HSJOe(z62kzZ%8{y(Cw0nRN-Ebs+!03MvZq
zRkiX)dfl(Bt<HGN>vtnw-pFb8B#_s`POI{vV;&GecVG2d613|6LjJE2He^&3spCsn
zL0~Ah<InMidt+lR_9m$mrlCtF<<#*9Shg+Par0N?AVt%5JL-l}St;|*Xz-0W-F!3c
zmIh}7WxlxaCHx>pkn7~9@~U0|*$>hVbjG4;-jmKV-Mw|KJ(5GO4%+HEs(@^&fCj37
zSgL?_st*uVKo!+T6xBxpRe(ylVV-O16R;rQrSrq<nBxlSY_Gvtijz*5Q8D*;G<y6*
zwh<C1ZS}fuoEuT)vis0o!RmgqClhGh!Hzu{0;`1xU-IP}hY4o1mn31IGUA92v<Bu+
z#A3HD%`XsN>Y$3fl779-{lb&O0jnm>Wxn1H)Hia&t~+|D2`ogy^jAO<@JKM;mh4YU
zw?l#yr%tZWeYa=+Y`CEATE#Q&V|I~4Ds^zGl(H_{1#pp88j7UAMR^1K`O1*<GyF~y
zcVtkwOd6h7)4VJ|$M!RhP!ag9qNP7wpH96HDGkY=ITCU2@v$n;)a}H&A5PR4lylG3
zlmABbikzx)0H5*X+zI8}3FO=}rQIv6%yRgECEnBL2A_g;i<rKoF)vPj@pvYPY;^j;
z9asrC=;?6vX@e#_;o<d0iL#l`xlw}hnTrxCi$4vN@z7=Iz?cuGkkwdyi6{p!(5dLR
z(CErz3|9c>NLF!!K#5vr!#>32EKBEBXW`V=#oP#F+Ciz$P<4&1Gcg;Z2?`*Ru=<G?
zqNahN*()?@vP!Y?2kM0^9oN`wq`_C(#MoPGNKGsfR#~b|^B)UIF)kKt1c!g;()Cg-
zin?O@B*BWHB)+)>9wXvdx>QDoHr641z4DT%-#wdM@^Jb&vT(10MNu|f6tB6}yXJ^v
zvW>CH3bm%IX#gKXy}bj}`V!k17r(Ph9&5CHuGH<Zx%~P>gvw%8=W6}rBCrh{Gi;Fr
zkXL9;bnmpT#__|Rek^?LXjQ>3t7P0qGP1!gix=LFZoK7LG&%FKX3K8nDE&*zB#uZU
zG<aO*xL5%EhN<@Kj0lY*lr59H@W=p(&ym}os&BbX+0%}7t8_56zW>(GcdVkjr=mYd
z9%OAraiae~+9NH*d5<+xgyB5oiN-2Id?%ULS_Vz^Y6;r_KW&}&lOSC8vc}j-x_U{^
zvHRSc6ATTMBm-}L4!qq^z28g`E5qE8Se`m|DsT%%-rDTMRi+KW-l*}`c@ctJ)zG^M
z<<U;~*orphJD7FY-m4(<5LGaW_OI2y)D5_1i3fe9aq#hA22)qA67;&BA7v%_-xxo%
zQb}v;&0aVrwb+;#Q(ZZdkbP`MZERnaS9`C{HDNxsN~P5Q1)Kz8<3g9i(beUSPmBH$
z?=ELK@zpGhlX_RCnpO${+z&oW=jx7LSaFJ}e_QWdJh94Et6jd#_rcmx<*4}>CRHlx
zBb_<hh7EdS+L(193o)d3{&t>w1|(8xFQR)yr>}M7<XfYu*qEIPIf4_REg6Z!)>~!R
zNNFz;3>HZm+n8-3tuJ7+rw@DOU+h>2ccV8<E>SIk>4@$VH41TYBY#ye1+QlGng+Y{
z1{jdwDQum52NKi`i@ha=>{T}|x=;qf>fJ*Wsm%$3=j|x%vARW(0OAx{WrH%8^j(xZ
zcqj&WP{WditV@-1!)$<6^~yrwPtVqN$ut?~`~e?I8L_uCN^kH^0Yn;3=%lTra6$65
zM@w(WmHi<gZld!;H%|BiCl`k{b98A*mqE9AF5hnz2(tZL16<4MyJwg1l@DNc!}}D5
z4cdZ%4Z8W{g0BupvUe3=^Ww{~cZGvopIhbHHdCyKzOesc|Gj#w#T$x4xJ-4x(R969
zcap(I({%kJR^-vfF6$fm6FRzo@?nVvr|tY<?8CZkc;(rqC8!&_85Oem(;mIe3>8wh
z1rPPLyHWr?x$X)m1310}iGmDT`FbCLgwO~4TBhhq)R3-g7I@HnA{ug_bMELymgFNA
zgGHx6KkdLSb`~RaT*p(#3WLK^)on2Yl+9Tbn+DMfDFfZA`L4fASB{r9UXt(l8{3s;
zUXo(4kKCRL$Vzx%UgJ>hK&+s-Z|$9H>wSm5D&lPKeOE_H!uWqyV{7gv|JAa(&9=St
zXU^@)kqA9cJ?m9B@Cbis`rBN4Zw~Yz0x0(!g%CPf({O0o_*4LX1Lpm5%?4d*RJS@r
z<c7~cxhZaSmM<fuuedcf4qGSoycwY!AK({dG4qKF%?HGVhJ9ZrWj$rOvYI9jL2z#?
z+7#LGBf7F06AX=FawH(SG~>LoYCQ89jOl24@Xg|1(=c*eIE;H>fYdy5`F5^^wgm44
zJ|^H_v|S{gtC-T&gp3O$fNlw`5+$|k{0i@v`#Yr-PP+%;e=NqtwwuSkN*ho1*O;2X
zT*E)z_8l%pMdmS`?4GhnPc0|*7M*9iZdyvaE=Y3$;t5ha#&t*fbg_?Pj7h1+28C-Z
zEFy0n6nkrX)X_H`y|_vn2pHrA-3|W@4gs{on4<64I8089aeARUaTh<T9+CEqDpuqO
zvu%H&q~YeUzvFd9Z|m8tpIo+ax^IC}CjcqV+P#s4^tpmLEEddR2X>b0gdxaMTxRPV
zaeb*j?6MXoL`jXqjkB=WR=D(IyTqVERic_ETlyLZe%Z%K8c9&JOgf@JL85O)9+p_9
zH=pWQY9lmFJ3;H%U{$?d-#cCf7M_04T(aujUm<&Zj>dKuGWNCS=f8R~rhirb<{wMX
z190L%gBTMrlILd>7YQ6WM{wF~ZhMKy{ODJY{5zcXILz+}hYW$$-Xs_DR<hV_fW-DY
z7@ofyQN<C0kldH%eJ6vzSkFHB-jb3i=sO%lOQT4(LYJF`(uxq23R;j(D4}#dNxUQl
z#w}`sJ-i*PL=Wnp2l5YnD320^*t>-5w(#@@g;{67Eg*et+y2LvQiu#%Yqu9u0LvQc
zKW&A@bxlbV9PeT`mey`@CWm}`(lz86@!<CqQ?rz7bwP=+@0HaS?U#*e8oj}<KQk6(
z*sHpe7xh~G>&7Y-*m>kY1}{O?J(|IjGm7*U73&|JV>VoEWl+d>PoooOeCEyl_Gznr
z(82!6vD29-*Ef~R0;ue6k$F0<t()56k6xe9pYIl3!@8BcOBa*g@yilc@vXd&3R!o=
z*GAB=Tr}6Xq}o?EwGv}@;L=A5=!gGp<*teA<|pM$?og~_M%Raq9NrZ3IJheZ@;J^5
zwZyp>o8*Z2D$miCiw4Y+-vU<FOK=m+hpN~e#b2b|c`0(i6TFRayF}=^f$&=E^gnV4
zCSJ4V&&=-4<1S04v0$=Km3CM?JkC6>9k0qPbbiwuJ>@gQ(m%0_DIc|yw3&FM9bbq-
zSXj?EPnh=BocI@8OBy2PTHv_NN5zamq6vVzEivtW!#%5}E?X*oKt;hc4K(rnGTSIB
z*bQSpM#gn1!<G*dJNIM6vat!__Bq0oD>q!UnPf)`wpaoi8D>Wd&Wr)_9NrsCy69V1
zA%5SDP(mL1Q)WVuNUq%}Fb5FFE^<Zcl#-AKs<uA_jspfA0WxnP2LD_}1^>;PSIIA`
zTR{mo6V-~%pYg`zeXUwqW1t6bi`C+16*Cp=<a^Dj@#o{y5%j5U>e7^%9lw>&L#_Tx
zdFHPb!%04PNLXv(eC8+~A(1A4v*Q5Aq+er(Zov|3a3uRnAhNAailm(Yg>jY;g$Ul_
z-_}+s#mi4Ia}taTf)_Pei%kT&%SPUFDtN|;qiRJ`C&K(=97dv?*pWC6#Sqm~A<xy`
zse?ugWBV@ha+JI=CASV9-QO>bZqk9sJ7@T(!f4K<^8&BCZ#)e<ya=D(=z~Fv^f{JK
z{pNMLd9GWKkpyZ}`{~Tm2c=rVD^^JSa6H`52dq~?gxMyXhfZtef%=C^DB0?3x9#zG
z@;KH%G#ED39706-6I^uh6S4$~c2rV<LQn&8{uJh-6nulf^6|VYVdCMJ6)`><$#Bl9
z8p)<!5+N)_m@{aa*T>&expXe!;z2X^*gA5DD;k_iaWy4XIc_|Qqr*)mBozGqwpFh-
zruTC8H31bli!9BpFD1%jEU{F*ZUxX{C|W^&%;I**r)dFp<!>rbnplO}!E3rJ8qX!L
zLl803=r=OD?mr3&3e+X|n*<=9xv22TYzC;E6e}XG;{MS93cj3|hos|xY5+VsfM@ui
zM+EOL((=Ad?0q+s3C{2_lxFY=`|y79BhaKWL|uiHq|RLEIdVVSa7WzDUoCl*2q&xa
zOhW@QCh#zTGf{g)=ZWSxoTm41S<a+6W&+0%NtU`7GWDzFSo7v;D3y_jMRc_BB0~b?
zP1i(;5}54y%cKSGJMcyO*o6_DG_c(!?s?GbQdHK^GW0-}BDRuZ<L)2mKbbHn-qP*v
zSxzXnmWhb1M+TQ>aCruXOirp65dG;2sSkn8_EGZo)a=X})nE8Vv~-I_<)Z5lLtN>o
zS9v(xy13`y);K8iKL}6v!_3tpHNP@{%dsU*bi=Re)<wXxi>8!VSe0?>wNlRP($kK5
zmt=5!1Fa2KNb@UNThm{5$-Wjd&S|LVw8-if0omqS%E;_7N>G%nqnljVYOWJ2rL)3|
z!=%sn+TaqRzFcU0&A>c!Quu^#es!pcDYwqwEV3#qNl13^y-Zfpo%{Y&0+#^BjluyQ
z{*nE1L0x5RGH-Z-)kc2hx%uyt=S549Z@l@1W`M`wn1*jYiW+tHTBg{V=mn+Vo9}Qa
z^oz3b3L7cURR560V;ujV)Zi0!=|Bi{`gt4jBXOhGk*O@m)e*g06-z4e732!D%XI#=
zClj<ltW&rvb{2d(e`b0nIgXO}lted_eine;D@b4o!}dGqk|zNT!wYBU2~m2iDE$M9
z5GROH%t(l=7mD`>*yLo#GSKSLe~U3QIDxP!EhlL{%gx(P$h)j2K29Nc!k;~~Qwfz|
zcw#4IBq$OPzwbN2&=1jFM%yx~5Q~+_y^}m^>S%Q-DW_Wc##XjPB9l4NV=PhAX>7q=
zf!DyG_8lu;%t#KzggRmk9fzrcKLQ%=CO>vwYX!K#1!aXUK&lk6OSyq^LKQ6vxPFDj
zS)^RxZbX_Th1%zP7qO3fc-%zwA{6NH1FYx6Jly+|r0}d(e^K&TX3QnZntrK7nOXRt
z&q_3LV!vZA?$`&m2Sxh`?sNPKqafJk7=QI}J>kH#9#1$I0NJx8tkAIHL)p24x`O)f
zL8f#GI{Mw@L_1yxBLdK+5EqnhXpLRV6<vm&$N`yVNzjViGj67<IT$A*@P{23LHC;{
z>abpBusA{Q@DU}*D&h{ACAO;@jQVaeaaULI<D+U}h~@eFABba(5l=xy%P;$9TL{%n
z>btC%slHo=)@i!=M!Jcq$@{=TK+7YjE2>Xc3>C6s9(>~yijW3GD7r%-)&rqZ9j+<y
zUt3_*g%Zy~PGI6;9m!WIjd`uG?~PV9(Rmc%4|S@_G}W$UvbuK?@nT@P2+`&6ihFkJ
zn&_C`z`A=;+S9(vlu+>;?6ahw8OGO?qUopoGiFtCwGtEq+CT1b*@5HL932hgTrk$1
z`6tvMdm(UGOCL!=(7rlpD@L2xhzF^hkM|%CXkVOEH!m0klJHps_TeFFs=I<O$n4)u
zl$prQxQHFg&bGDD@T*ts*R!GP%3#-u;O+BMft10dq3{0P<ee;va{R10`UkI!ScBm6
z39dfg%z2XRr;hdrQSz9ceDBt>#(RovaV25e)p%DP+oJ?5`_WzH;#R0O2Q8NouRqyw
zd`R2$>5YV|?j)+7gByk{0})-NHM|sb>5GiMe;S5u<%MG%OJhi6iX8_^8MZ75O&UeN
z3md!@s(+koJbz=ny%tdWkWQ^zHodPh$*pcRIbcd2T-;AJRC-VS)K#|P7$lco(Cz&m
zA)wCQsz6aBw`aGW*aEB0msa_SnPB;9iU&s<fFwO%ccaKLS@zk2b|dT!()<E5f^w|R
zs0!YZE?^&c5!QGOJhRUPa)7wAUs3)=2|-y);`fnrXXB7lIp%N7lpw6|eRqvqG-Doj
z?YC&&vlSJBTwDiuGmY@gSF1@2PTGo=BKL<HqcaqsNf|@*h`3ZpNEWN%%FE&o`sH8^
zOeFaHl+slD${$iPX*9J<3mHxqE`psgpiulq?JE6DkRofCBw6&8Fita+HWO(Xx;*tM
zDshiC7VH^+3P`}}1&1NQkkYj5PQjY1;B*|hgq`FESh71<p3f<z9!0HM(HG~gO=U-T
z>bP1vh>yhTF)Ngi86-mfg=rX>6NpMi6))$gMdQuI_Ia*RhjY$3vU<VzOHh-d%9@>j
z1GO{tQC-(=zhoU9*gAeK0-dxf!3BJmjdQi);!luKGTuP<AdQ-$b3xQ49APeYglmdX
z+w5DBaeJS{UlRKqYy6O6Yftzn0di9HQYVeRdZJ&RSAKD&@o#=<c5AcY&|}70xn|u(
z!Y6V_?i~w2%hZD#*|yE&Szv&LI;d;ZBsc<A0G`h;*fG-Ktz>&|nDyke$ls-WFS*{V
zi$A&7mMie_X*ycyw9r3l?zz*01M>7gBQVxbuLC7he&Ew9x{MFaYCQ)&i9Yzeb0L7C
zuh_3L!UX0~!wBO!{M$4)LLOSQ|A|A196{LG2DuUM0&Bj_@Sq$(LJFfdgx4zLodOX+
zO%x(0KX;qv+3L+r*1YjncxP`2Ad5ujVRoJfM)-@m_S8jgb|w>c26~@8QQR@3AtEg|
zF~=d>hv^j3=9ms$AX?+cLCpZ|rJP!_>!!mVR_7+o7@|r4U43Yen9?NOu+@)is7^th
zha<I-sc&yAM()K>6`xI-3y>%3Ji|v#0YV<jhNt8uWG8ID5^BK6%p8zE;eKd?Z0teu
zVo^m*n=O&)?38CTRpl*@jD?|P@g*xB>`hU5I=>vIoEKQ<MUDvefr)^1TE6I55m=G7
zQWwE4zD+W&rp6eKTS?UWp&OU#3{dIjgiFOdAN$oahBc*sOQzt;FC)Be=t`Vebp_)2
z$zDf%xmVPg3c|S`Vqt`H75E7+rUh7iOXy%*p8=uV^=}Y#tT-ot&_9Snj5H}BQ6yK=
z2$@VZNFx3lI|QM($Pfi<a6*d66!~9HvO4X=)}TL%f1_|kE(}Ox<9p<>o$)_ANoxg3
zZv+zHHM*_2N;<cCkFOJl*Wn(d)6y!YO_q$n*A!Q3O7IsW3v@dMhRfrzd#<mGYL#QW
zmP{mANR5J7r^Jws8IfXz{flLB?hUj<D=iC)0yEVWHIY}hM0JD^Td|B@;YSp)y2(j)
zp0Gzele+ehK>LUZ-)M^FA)~e-RP=OXWS_o}Wo=+;m1L?N4A?Zw3HoiTjvvi)zwGeB
zN4!OKHHMeBvNlg5Un;$&`9AIOvmHOGvP$L@@~8$Ultcjc$mfW{K!ji$jW0x;7b!}q
zx1<87h%iAPzDq`$lk{fVOOhksO`J51r)Wkv<`@!l2^m3LWEN@X1n}p%T5|)AT=o%~
zE73ab=8j^|8xz4)gbP1^`Y3sPdhT5)-j!+__Q-E2cw`!lzkokfIqTw8{9Xent5S1k
zAJ0Reeie=0bF1x;83OMo4bPcr%GZ?j9S#Y~%d}$Gq~iA*in{5F$&Cng+-^iQ8iqR{
zZd7E5j1`|WQ0!7pwbO2)U8BVE&v86oOrFv@LMC_FJOQA1Bu~k8>MtV7j=a(C8O_4M
z(`AA4^A<_vq&lrsN{fx6;>~w~SZhSOSQ!=8GMzNcsr`wyf7;_u7K~$SR_bOdf*r25
z<A$)Ce|r^N>lO!%H<~#K=UyQWnDmy>+n^Jcuj!bx@O+~4+*WfQzvhCL@(`wll4$ay
z=1AB|$`MXXW~MSnLn3^!C(N<CwU9~Epk(P)=%;QKMII~OCTE1ArJ#uSjp^YSb1a-u
zeKA(Vd7&Fd2${(bX);0>Z=JupW)-m0haCBfeW*yH=3N5G8rw&r`W1bt>qnSG*WI`n
znjnMB0fwaQY9~;|7de+KxAEEKSp_6a`0l>h(S8t&$LgrRUAxHP|MNuQEhZ}&Bh)tQ
zh`P4?j`UTWC^@C+1gp7|-Ee#vk1!tMpxG}8JzWG|f4mhUs5x1ew708}#jcbpz8>yQ
zY5D#gfN(5LxtWW@fur&Dkwjvw>J^`&giOR>^ASh2m`!qh%Flfpp!5%7r0R8v>@Qni
zTZiJT1p^hL!6r`nMQ_J7*o8*(kw^-bWcr@oHeqr(oG#}-b9%Lq@?eM4oj%n1v}^mb
z-`&ps@hqG=1Y^VV8EMIqz*vbn3sn>|oSn7D73axFVW(Dz$6k3=zaLFwIYC2=#G2B`
z2*gSh#AxO<Q2lt`4Qj;HTMGw}$pu}=$rS!cZjSnq7Z%tFl|tkiqz5|~51Jcanpv#X
z35uD*T6CdQGX(qwyu+7`0N-0<W}*z-cniK9Pih{3O?4H{>Ar#xyaOQQA2C4ywC=^W
z31lvIurOM^8eA6^<xc!r1o18gvWEpvj|)AK@N#OA4bIZuA{!5K@?P;<Za_O)fT|3K
zc$CI#k8gy)uU#$pRU~uYGP4k2I7Hzs;0+NdSzK&2tlBA5sg4)yLDW3IiIuIdy{nNQ
zXhy~$Kp0d&*)4_o2Wau4^5*9D?ZAbSMSlblM-y{0p>VOsEbI~VASk|Df4?*R<!rMY
zQ9*^#x06QVD1`Es;H}X=H1PPhS6uQs45e|R<`<|ZNIX*(ip70D1Zt{<dj##E{&;sZ
zVmS*fL^B1l60$yQC^K@%eHlB_=pu3zL(wrg0B?W?SM)ls(%aD0l*6Xi+Z*b?Z9sO&
zV92#yPE_;90w|1mF4I}(LG4~6U$Ef*z}+qTA=KibDg_+4UhBl<3oPk1s%~5#IjD<&
zqP7BmG^Au^(^%d0>8gG_|2Y@;G)FS}xT|o~)$M{j?iw`<)((?&ZI~R>l~7h)FlV39
zGu+%}Yzur6HK(>o)B?A+<r}BN3hHm;mpA_0KkK@3t7V$Em_cdC;+$=xA>n)j?oC4w
z7bS&Z5zNnu&8AOb+YC95uB*A1C-}_KDezg)>F>8t8T@iU=p1U1>n11oZ%WiUBdbWU
zP`#p#GLiow*nAE>s*3Q%K>r!9#b=WtMZ?y7@i3tF!w+}<uMioz0X&}#ouXl?;St!l
zx~n_1FkK~ZdSGr#*{o-g+qIET8KvfPw^pR7%!f-?W%{N32UF2BayoTh-lyBG$}BDo
z%OmT9A`OeU>t2}i*)0?Nc0-J!zJd787@LrLg^NqnVsXlK#Y&#f--_|%L#N$wYoMaZ
z$-*I~5mMS+#rQPFh~ZQjvu$nP1jJ6|?-~Uf#_e<CQ~o8_RQq)4+(tqpG}@rU?2?OV
z2XhgN^6aQc?=jU1n#beAkpQ|r?TwF}49qeU^>0^)Zk=0>MWG{y$=;~*-xcqJ<&Uk%
z9>lkNLBsu0Njca=3LZMSA9DOe4w@d7VrLbL-eaz{H0#!3$K8b!cXnk(7`O=Fy_Yn<
zer&S(v>ZQBGHm6EQod$mUW`y|;~VIVAl(N^ct4^Ln>N^>PYDryQGL!JV2SJ}C#iMR
z!O%|$D*uUTLUM0NO4URG?Vshvjc?hqlvtv-^goxeA{D9h4=i=C)g3&>?<z4ZW=?%D
zGIf$`?Y^xc)D!s!am@xL>zx8`7*>%};9Ezaet8^Ktk89@AcqHm-H~p+C0CJqp*?)4
zvI_iDG~e2PPS$fLIDo9+xGfe9KDN$nPX4Z2lo_D?nj}Mwwx4nq*x)+ka{bAMPj*th
zv#jX7bv^j-^!48gn$v^JTZkaNRD(#b;N0e0CoIA3IvU0p@ns0<9bEA#i_f58f^{b<
zC5|+S$VHwAp(xTURZtFKMP@3EahO>}hI2Uy!4Sm_H+#2g_XeP1!2qpOUD_H*>Y7m9
z-d74`B2(J^SF9sJXEalyp+E26#gA$wF+%f%52|uuxRK}saTj&qC6&o=QtstD(U9aV
zhAk@<1USEnA^{biip@LG54C=H`EORzZ7D8LMX{r&!@==Nk6)zMIhGHs8DO7+WkR&G
z8VOyu!OwAmjvl_0c|8lO;<0?^*7{yrsE#QgR2~b61NS9ej1_r2u*|8d>6I9h0d=i)
zOpF^O!owGtd*C#((sL*smejUSLE5{5^n8xVS>boo%+4}xt!akbSLto}-wU(5tPRJ!
zQSG9WvjyQVpuZS7MX`?dwO;rx7Y;46iQ_{8mv7kui?zk+Ii##(CGQ>my(amA|FD*C
zGc}ccz?ws*?UsMOza<m5cBH$3GT{yqC3gTc4xPgC^KzG}`iF&8rDTzZ|0=CikogGT
z)UG)6gEDFmBU?CwbbHg3Uk+FJ{04br+ph$n`Lt-f8^ow5L>$#w@5!0$J`)QN*E>+d
zgch>>e-hFJMkTd-kL5`0J2JQUnGF8o#qgjX31g=^sxbLq!9(;Ba#whR_^?kOSL;uK
zvcdEMS9&PM%e4FB5`T3kHG^rn*YEIddf-F`J_fv+KEKQPrl=hJ7Fd`Iz@fbOufP@F
z?@p2YaIR+rmZun{tI2Shj^r<Ui7?A00jTf_)?h7Oa_1Dq#`;q<9}_0+A!ziY<Q*yo
zCiS5z@pmQ4(cG4IN=1iIn^XRNms9ZaWI&ZzY)X}<(CMng_e|!>Pk1q5=#l6%1+x-h
zLG)Q2sT0Bu(idu$8Z=+v$Gv);v$a1Tq&h-@+&Rg&e5^k4I^=;ANDErg!KUjYKSw~X
zP&WL_P2KIU6{}LGOtQiKPnhpBJ<v1iQ8(1e7S@<q1@!desGHe~ur8_LeE~}5+L?52
z>}pi3<Ax%>z@2K7(K)y5+cGHyVs^8o-i}kDTh2Q8z*yHBha(+9(AGpVtW_06b}W?3
zp~v#|9l%D<?7C}$w&opjD#dt5lcIIWT59JP`#rNnRgC&l{jL_vtw3S6!<0c4O2NBs
z@qM^d4n#Z??)S!J^#Pgt*nft68HcExzUp8VcI@GyizgyS{#J_TB=*9rg{&U<-`f5C
zh@m)pmDaMZYF7{kRjSU<75b>OjsjKbol$lB=-Aq9k2YR5Gj<_ELS1mkni9Bs>`(rT
zAl5?aokS_KR}A~cDD~V%cIZl(NBJ`$6ncSE@*3{gUt+Vw$`I96U_fzL#)+zH7i<Vw
z42LfMP6e?YQutMcphxt2KKo;|V8-{Wg}kfa0%4_*2Yc~YQP_Rl-C<>FP<;=W+0+?1
z)ft=B7&+B$a-P!KrpZ_E_K?$m{^&k6{A*sc5@(REA_TXK1c)mTxy9glft_x;%eMKQ
z24`|Pu=UIE;8vdB4J)cG(qaukV4fJpZiPD6`dY;39Gu{+UVv4hWu~$~m3OHtaq7kI
zn`{-|7e38@KmMv@V|NoBBs{s4!R^Po_&O56(f3?)M?$?4m7+5!{JXSsf}H`6PFRzz
zQ$F4}ffwC6i_DR#j|+Arg2~`3x=|MDfi3iRNW$nKj*T;5bIWb3brM4bmu7)w@`3wi
z{}xfdp>qwydo*B|j4G85lijScu~1h+?gUGQexw==WGgIU;{_EY2kyQhBi&JfU~U?H
z1(-mZUteJBdEz>LL-Cqt@cGX`?-F=MQ0#Y4eXZE7Bhwx=p)vHaU@7h$NN+_D)fD?!
zHbn84gEV>M;9~*RXdN)?tM%uj;N!g_I)!*8kIzV>6!AUZP4iW?S8Su%{$Gw9Ancd0
zd+l8Bl_G+_IhEWu?5VOZe5-2T7dj)u6tprE>xDMKp}Q4}4r(R;5;%HGe#y5^_G{Pu
zxkXl*(P``UdoMlL7$F~(>Q7?aKO)j?cqa~k%BOwZ2%xyBba{%@IUdwI3VX|DqS>P$
zh%({`ujii?&w0-cJ{iIjm}M`XbGkykZyBJ5n2NTB=?wAi381BElfcziU2V1;3EmZ$
z5JDNkSbsK}p)I|OnqW>9bs(7IR)u|rz#HL*Ihf%KQth9ZVGFR?^!YK8T`SUGaw*XC
z{cwSnz4&BOZ@{B38!#0H(T=~oI<ie@n^-!*uDM0C#!i`yABoM~+^6FX$KqfhVRVXW
zfTC|f9lo+Y*nmIh;WOwz_!m9_o8OzW7}t&cUo<`860r#-3zifp;O}<>YFgP=JQYRP
z3@6+sUys|TwIiZBE0n)5KgVzGt&3xPhI{4PYHqp3TfvG1$tcB>RDHE~xGQbTIK!Uj
z><m^PxvN!hvQ+0pS}wVMMV*+zB1S!GdqI={F5$bUb0RP-PeX8$ycc54y;G|o!Lz#`
z30$>Y*j%E@y?$UK#hf}txl*WP(L+(&h<@MPss5DlS4gD)HyZg$uTr@t^a^W)&WnY5
z^=qLh;7wK)+~xB<GS~fx>OBTZZtX8BSwa*0#|ssC^}oED%4(#O$<_GeLLCM_dM(}|
zKz{pDrFZJ(F|g)&CtJoCZ8bgJU*ugfkN)M}<4)F+5Yp76DrKtaAD~R#sRS$i!thj}
zPs^yJ5f-njt#e0iV#DpQ_CI%isw1?bc3xDF{ilONTot??Echtb%vIv@=KqL#2k1<i
zCQx`|+qP}n))U)KHrm*>ZQI%;8*I#tZQJ&J-tYhKx#vtz&rDZWRaaN{shR1nii!}p
zD>+cZSCXrIFaD&;pmOH#o+|l`GDnQM8W&5`_K-H7IT#73`c4!OAjsF)Le&O9oos7u
zL_t&L_ePmUMdI(_Zn3RM5`LL0*MmrJ`$Go?2kc}<f520SGqS{-oi;LvJ=9D0LjLT@
z#$+b7_n7z&hP$Je?CwoB4w@K}t#pV3hJX>>j5rhpco989G+;o@{i@ew2U|JkkH510
z)xMbGSx%@@J{)igLrwrX75+n)GvURzV%fJPTj|#l5(^zLCMvfiNJmH?Qiwd5>ONR~
z#U04zwaOH-VtHFxEDV1u2EoW!^>D@T?)HyaIp-*Tq1E46=1*Aq0!B~ALR2&t52rJk
zHZ~DmiV$ZTWHzLWpuWTp@UB@OApX3r$bp+7Gg1<<f)7z^M04&$0Nyu0E3^hp!Gr7Y
zqNf3#%j4^C9g-OnA%7uuus~pxUcMar?Z#nrVZY2sbB)cpDjw*=_~;N@_~dz<f9b<I
z>2Fc99KkYIg(Y3XS!i&}=V>o!z(ro=`1ws6LZ-D+%~6Z_P33~dxRBb_IV$*}S5Qy)
zF{DpqS}?@qk2%N$BlmVi2qrrIgUykN(D2_8mT0}cRaLylIV{=OLUHdSvNQBh+_pI$
zqjq~&<u;s&?*B3re7NE)(F_A_o8vt=Z<m2j8=rF?WnaK%?tkdR5G4fqbMEpNZj{4P
zRNyK%M;;~2Jp7oZ3{tFE6<7Yz4fJt6gIJ(v3g+B8NvY^t<+bqWGHh40ZkDG&4|N^{
z#?SMD7PyUcV^>5uK}XBl+dfIzNicZ#PR#ZvtS>B>KU*1oXi8aMojYc;mhxui4d*1D
z;Gj@lC5>6^%o?#)hRD?8J44{o0(|So3+PyB`6nn%x!@C0tpd<os;HDGo<dtm_eS&_
z+NKS65*`LlxIlBMRoe43fhT)Zu+RdHc0t=bpt0*qobit3CqD0>ga*3b+P^@FC&Dlu
zB8$*BvKcI(8I}&qAUYm2@J0H}{l7W`MYD2f9iv@+P5Os7c%aMw8?Is-DD@FMCjThk
z@_}-Y*~V**{E*?#wt}wmlJekWAq*^!zp>jR0N)Z6<zn`8%vGS)HV&ib$o>s7ZVLoR
zbY7qvCotFG$v#1-IabM2h%rI2eO<Lhou*t0FgXN1@QLg@Ew<rwx)Tq0rs2+pmVcV2
zBs8LD&VIqe`S5Jnu`{`b;mB4dc`R8KKOEb@j~w|^bim>ehY8INw9$a$6<$L2iiIb8
z#jjr|+v>{Q;-8Y@$Gn}%eR<ldxP-z)9TRw<eITZa#yqVOTF_3S=x$$61V&K7Y#Fw!
zZ2-Hls!YFy{4g<C!zS59qUB#OD|8f)!oO29Ef0J+otTI%>Im?P0XI@DS~G1IjNpNn
zf`=sIB6z|Zll{b(?8?wV+}V;QLRS>vB5M&IMlu<7Xf5*bpl!vBOSu7Q)*<@Rm_Y?k
zNkx5EOQ=BwItcw249brIXN2QFxtk~}P?dP_uc^UBR<Y+=B-H6Uf9%q*zL$iJA}e#I
zVYfdF=|Rp==gdi#z=;^Whn`)^Edc3bs(d}9AcNQ9qW&_4jlr3zLQ#=?GcpcXs+N{*
zJ{3h~hb?4};bFgmUUwgK-)00CsWcJqz>F0~Cc*=gC@-jk(fMY?$c>$Z#!W3&O=${*
znduCXzlgEs75Nk2K$4&|Lmhdy62C-YwU{=C`-~D)pyD}q#KDduQjA{o;aY_ZzS{H{
zF3c~o3g2&+k%OF4E3?W)k3jXq3Lr){ys0&V#=l2V<EC%|VU>&mHK$M^9K;<jS;~vg
z1TLcISj(*LL;zqRc7Qe3CrKhMV^8Fy2KLVsql}{{xrh(=DO*b`GI*&hN?S=1GI*O@
zNuS<|kch0Y?E9|(Amy=;*bp9+l`G`ZxHvInmC(7W!b6zxah;D_91>_74iYe3kO8s^
z^;xJIYj1e0AM5r-{A#etG{Umj#<p+8VxX!?709twg=s&u8PmfCsraBpW~h^@dg<&^
z3RKXI=am`2?YBwojKC#5gx3WCyKrbB#L$imUF#Sv;367XYG7ViLu8{mM#b`XtRch^
z@ua?Qv8X}BJ<=#fuP1uo=4jNH$9ba2gIHzsSS8RR%Dj2(OdFVToWdLCe1!@@z$)*`
z#ReOM0)YjOKUZte<bd?w)UqFFl~W7!nJFBYXn~@jNhR9Qg$}AQ!=v$ULiu1IwvCFO
zfyZVPId@L-Fm)q=-n%PBp@)|e_<>tX@<@e&64dv^XRcO@k%g47C_Uc240aC?*07B1
zfpCLvdXsLUD(eT=Hl@IgM-QsOX@U%&-9->SO)439i_+2r)p<A5j#mm10x^S-1MUxn
z7twHv?1`z9OmLH%hqPLARDyLvnaSgKB6p>rcGgL|d{8EVZep|@>_BZ(obhU&q%2~+
zKuvf|SFGf+?E3)GRyXGu0x!<~(X=Mxs)188`$Jnv`T-IjUt|e6a_J;26ot6DL;O2L
zlVtSlk`zOUG<hIZduZqe0Iofe13*FBb%GwpBnf>N)efqWnY%dRCj}Q-GFAPSZLkFj
zB-0CnFrWAwCeknV1EvXA_CXXk#}juG&Z;;q2ecAgTLHMA68krFlMTuf{8A?PYHOr3
zjZI#G3NwNj-Y!4Po?ugQ&|<a`^pBAC@N)g-#5AZ{BRPlKzdkVu<wr#XATYi$)$L`q
zEP2snm;Fn4SM$G`AQ5&QmSJM*5W}0V3wHZ*+$mK{?jZ%(pYM`9R`f2LZhrpm!InvU
zyJwx#cESwdKNjJxhnc#!Xf2vv&B7MlKbkjY-24nmpl3==X&kZQTI~*%gwU<bbESR|
z$g;$gx@lq4%7#I@Se*;l%CmZuHlx`cBLHI;)g@JFKbG=9wj?h$&dX0IXN#J}p1$K0
z_Kl(RFrk~NA7air&_<TYS7*yQ>&OIS51Yl!bKf<}ZH%$-dMfPBk-)Y;8YAb}!<l;e
z6Jf#|&AK+0yn<xqbeR=9gCCE0yhC63$v7*Rhw^j!pQ>Jw-gJqK@B}OG1{viKhVs~?
z6DuWt(0}N)Y>T>;GFitD^lxq;we^GLR(WcQJE<-2oc-lCc~cqeJk>U?t2x~Z@KgK5
zPOYspNrFoEb^|ZRcJkYkKMcz}E&ld$XEXQc++P$ul*KsC@V`Sl4!>Yd-LvdYwW3E}
zFYqH&Mm3i_J*j$gAnE7t+f{~6d_3D)ZM`ZpL>MHTIqdsKeSE`8^b!Y?Z}1@nN4VJD
z497ia*h8u7OWWCtU$Wb%gaFET{YEOp-A9jjT_uWCtc?>I=OvRyeMDubQ+sFhtam%T
zt7A>&DpsV8;k<BVR!dZFlBltBx9Y%D#dP{x9ue*ANd~NAd=~ncqc`D2yVW3OAeLnY
zV+^kOlRXT=?LJ{(QK$10D&5(bxtz=8?d?VCjt_{jH8Axz3!i<6c5n24!=qfmmknrl
zxPmFXEHGzDtzQL86Ey^#(3v6oUU3u|8bqC}&rS03`!Ub@3yRNa4m6Yr`DUCfE0MoB
zE$)i-XUkK*Y3d+<wmFLn)zO>`bQzT$LOaHy^y7TNt3KYuDa|ZQYCyypPIpOB=s`rs
z&teH6@Q~y(W1ml#{;Zu88JSJT$>1wt|E##Wr`bSlvs8iq429f*<rAU$e$YHg>bnt&
zN}{AX6|K0jjg?8}z9Zay^h%`E#(A)q=WN6FXjdZJGCv)B|K~pVE`xi^St0&M0WZ<C
zS)p8Zt39219uoD?4~bXw<&;#Mr-MReD~Fb*t5ED@gb~f04oStYF^>9NgM9o<AfoAr
zdd^Y_@|2A>`=Kyj;8&PGSB6a)r_CgWAU`4}svuS~l@hmaH9q<lp~fM?G%)6GI1)~*
zEbMalz`y?IzZ~eW(?RR7a7rSKySt{w^C-Ju%*OHXhA~+&u-{dzpBILM7SttB)+)->
zbA?j2;V3r`y1}E^m%alz;w8HA%YFqR1~*4uEcRtWg(XknnF%LK(DTVH;sh{r%oEk%
zN-i%{-9csYY^;(>i@fKu!WhZ_@W9v=_936}2NNnZ=PPh3LlYep>}eavdQ{h4r<$4<
z76FcdxCkw=Ww^2Ow@tz9EQ=9Qvt%4d>^E-OQ6XCPbmIrM>`=RVO_Dw?8f1Dp8ln$3
zSKXm`q!X7D5}HfZ6Gd-=W&CGjdoMZU<&_I6zu${VnjVpBbE6G*F(qX)Br%1vK7ORv
zbEV6wiX8t<KaICi;)~fOjYouQF=+{lz}^ht4+FIRe3)-Sv&{|+!Ln9pTe#L<rR#1=
zS0~l=(tT>`X9t8R*-5pfqyvj8VOHl@iB{+SF1fagiEFlG3#yzSC8aUz@|~)tF)us9
z7{8%jBFR$cN)afBB_hw;&LoQ({-y57dEJSSpTV-i`3Xm;%@J*u0V@z)v*VcwhT+A0
z^zV(<p%t4s87~Bp$vQVeo3dWrUOu*01Wy#ENyXqEPrs^1=6zOvr3lr;EV#Q;XPvpV
z9UFm7-kvX8C#IZbn8ugtIBn-tEc4ogeU^Ffc?CIn)bH8mP=Iy<3D%-xdr}p1_lFz|
zTZvDNFIA~{VoI@29nGPK2+b=*X%02@Vabsbu4<9$BhH#rJnNq4T9?_(MEdNi;Z&H-
zt#1eZuA7cPJL^?!QxF2#7Q^|%^IJ4DQPSdxw*^Fhx!G&TJMo7ck#7_xT1m_cj<r`A
zia$xT5$<jJxD5i?SJtc@N@7@L<X0_F%8fW?gN~~@!0#NA$T*GlTsV!jNH|WAJmM%$
z*nl@eUD7!+e)X}-H80`|Mp(!6Vt*6w<%QFb6tksGn(QjR%AzU8pxDl2THebr#mcZK
zM#=2R2ox>WlXrW-{8g#GwUwY%7sy|hPj7+Pvql<!GKJF!h1cu|_gRp~;<jL7iDEzV
z>Lc~KOFUhW<)_@*09!swHhtX~zrT|1E!YAVN$}YM7qG=w8N0zQp<isp?C%A<!r^?5
z#g0GtH5;*K{S#l+@>rA4IR|!3sFQWu&@3q3%~mE42#a&Zh+<SJxnkrU)+z`E>{%{O
z{m0>_<iFZ*p0LS^P#@;oqW+He^t68>SZrG~bs5?ZoXD&54#B-!ubBnQhF)|BrONKI
z+Et;CQCA<BrU1^c$v0L1_$H3&O&atuP^_ftI``s>O5)og_0PN1pjj1PV#LP46JgkL
z`2b>ei)B~dq44~6)U!;;*UoR{eQ_ksy5Wnh!+27gu^L{?x~y;46LRxNIbyJdlD&ev
z$%{<PHS35(v5aBg!gu-OE=V0hW9c1f!>-6bq2BH0+BhDw?thtk-eR1h!xtkev93JO
z{W1qc%LE!~1u~=D;;R@ot7(K{%|aQyDR_HP^Xj_uP*rinbZ)?|nZj;s=M5udU2*pl
z+_F3PXy@S`Y!W&nvgQrPW_+<bJe-TVBxp}rAv*tNn-cjtk#<SIbhARdvxJ-yG4M(`
zBG!MO$1jnx&k9~R1D3t{S|cWH<7*%b;y5tyew21Th?t0nk^++BN@o^){~)CHCYkD0
zILD?ERAG&s8mUVO*aprMSOiY11_N9ckW$kY*KhqQSmS!)GC8B29xN9wJ@MtNeTj>W
z*{MzrxuG}>&FQlrMdEPK{i6R&BjYGFdy#YvSV_r}Q252n%^(Z?E5x4>XMKV}<TzvZ
zhd&{gG?gBA9br}*mme{yPHM(6r*Q$Mdz@5NPM$56QoBTBwejqjP61qn<Si5S$@zHR
z{$G;TAElA72=;NhWi?1<D=Dq{Dpv_m*rkZt(<f7}aaG1quOaZ+lT<k7N7FbI7OZZ}
z-#eomnbQ*uV?Kc@7CnR1EaiB$zMHpUV;|W-KrSGlZVW10CSt}l4`cSEKR4`4VlTG2
z#V)(@X|otGVkL$y2@dCKKaP2uv?PrZ>ji1(2&|LF{5g+}slvYYX-Q;papwT@y~2T7
zHlK#ey*~n^z{FoVg6Z}O+inW?AZ#R<8C|}GgIfrlzE<Nc+&n|;!<9HSHi743kV{Io
z($65*ER^S;^l3%T{QgF%B}l28!x~je^7Vg#Ul2oz^VUEk3YelO`4~g)Q2o&r(8_sK
z7m|EIc0HSPM=82;BpIFmFr^>7W;D%wa>`|VwOF`rAF6VBS2kyrlQBRqJNdb@PfJ&&
zBE)<LJ`AyYtGuo7!{veXi2WiyF})A5n5j`XHNBstg4>>Y(6!4OT8KsB-AaGpv(FpJ
zgYwImzqikOb4A_7-lwuB^h&Su-+d9A%Ww1a0SKfM;IybRx@{h<D$)JRCpeY#T@i3<
z4&43~lXB|$%anOGXPvy~@0B$e+DvgyIz`X&Ri+?<hp}a_G|e{Rd_)<^fWkgtF#g~y
zigzN2%47>#bs-b2QZk+;5h;eS=%%smU@xA>k(9;9!QJ`x@BHWxQneK0*ZR`I-gyi$
zmVYx?$4gAo!Jhw>EF;jh)4|@gpbX>JX4%1>QY!^kZw-6L3rFzS(6(2I-iQ0Z*btE{
z6;^KrxUUOpV~Wq=wc_0PCx&Fa(Pv&WCj7KZ8J`<<Ic`r0*Y`waSp9X^oV>85BO@u}
zh??&ysqE7jxi4sBf~2N_<@8A*p6erQC+=O)OzcC{8*J}8V{v_)>Qz_L7Q1Z6HEpNs
z_RqA%hx{TyeQhDu&kc@8(73KPgFdI_MTWSpK!d;KCG2x>+*g!dAS0XdOgq1IPs;X(
zjf$VyOCQpV)npANSA!ocQ~04<nE}{Uj+~j{K-J|>Qh9nS#xbuK3RAgzV;Qb-3-Vh`
z;gDh4c`QGH`18fC@9EnxH6tfM*QO1`%Ol0K!+m^;Ir7^1<<Ww>$yG^tvq7cQHe{#U
zq2;NjscTPt^DFm?o;~f6PoeD=p>jRj&bfJ4p!x7BVSaU>vf`fn6Rg|Jm_uZ{9xJ1O
zh`F?;$n)<At;@7&YXuZ5?jes}ti?yC^ItaR`q_9k-0Rmk^5b(G78=V@Dp%9GeCnu!
zv?8Lwh2V$T#_>m~69_&3lsdidwpU>^a*9e8T__z{!^u}(YYlDnC$w?tU#VVmUt^DQ
z?l}~(xjx+w!?muaDne^6X-BN_%}M+GA{p<e`mXcK&!pQ+skhcy<=|eOc>~-&{-SQU
zJP)>W?bEaH+uXuWFddt8zWYX>7Ub~=hn1BhXTHAtoYICLF<))*Bao+b$8uyX>75lg
zJ)VUQZ(gVG`D*_S25V%!vWG@b%-M$apj#f!>1Ot;?mmyase4d`R85wim7_%6NLy?}
zi~G^3!E_w|zeh5qYdRw@HrdCPbCv@8w)T0+H$iXJF{U+RRQ}BhPmnxIdWCggJ?t*t
zmGSm@%N2e?$xqRDtNfp3px=t8md^*|AVTF2&E5v3`g=r=Fpa80U6#&dJ6I`#{J->;
zVjE4tVhJuQ#T}fxP|&Q^jyr*fGEA@bMF(w5neS{55BxgYxYDi$@deRQLa@lnt5TDT
zrEjH+@NAL?V!SNXn(J>{Vx4V$8xo`oz7R=ah1@6UP%G|#P{E7@rV~RIAf%t_yeAz%
zw4$K85IjezdTMg0I8%AGbFN9g?=+)mJO9pgux)rOuoD7N+*HFOy9Mb(dxx{HncP{S
zGT=cV0(TN=8PWG5>bC5p<M?N$fOT`PiEQg1+yrkAVdY-=d;7p!0_TiQcy?;d4;HZ0
zr;pm3I+F~5dA0)3gqr_c-O`%2@=wU15l)6|xbec4n811VOxbsYaCK*67kj;~9JJ-A
zoU<wGnV4QjE@T)8q7tcU(cm0I$}hw$RqRW&FHi0(Rkb}NTx8s#I5(jw?I!h%6nu@4
zh}V{oPJhDGr_E_67i+Y(dbsOV{Y#24BrZfI5S*W?DAHJVE88etxss^%U#7J?oobS(
z+L#wIaTYaK(PQw#Ky^v8rRF)hFFD#7k!OaSY)jSpvUPk$!{AM?kRNS|*lnU$*1mH@
znLSy}>yGUbj@oMj;2IBbox_ry6;PdZ?@^ArN{r%Fs>a=*vrRZj=4~A0ARtthB`lXu
zbd=zTm;B;RkCb}8e-4Yfqo6%AL6u@`B46rb?Lxg&w@qX>vmv0JRpcPMq{Hy<7hj72
zFr>%=-^S6ZwMTU^jqiykndkQaIh@pr=BafAtPe=tg>Dt_(zO{Skyh9ysijsA-SUss
z5;~zKq5xlv$Y$d5GhJvs3F1q;AC=wMz7SD>;Ic&=v$yl$%r>dA%PD!fd=>QV?8P;Z
z#kU{E61C{59aWTXc<?BnpSXx(ON%A(RkG@=xlM?Bt_rT~5O9D^&!%2p=MnZmnJOLe
zOA?g<X#l~UNPc3)oovc9ZB=Jm_=YOnz(s}`o=~(uOmnp%{uJ@1Asnn%Z%})}7en-n
zRG>!kKcyljFotZ|@mBK9I*{6#=u(vlas}g(B0!M<0mjm%xQ_mNH2Nte#_9wh6D-E^
zw7zguU$q3CCP_?t>H{(=Cck<nIwX#DmZ}HhjY9pGyQmWKTT!IO7h=V__<aE7_8x!b
zRULY|x>>d`Z;>H26dGUOo>7%8mrOr(@fr7_xt||GqRuwBx?3@45udLQrkjMC7+9@~
zqI$0QHh+25m9@=R)^_n(7}AX<!QFe_T{hMIdOytoB<{4ONS&u##m7<NV4YAw3OgR>
z%x1`(-HI^YM@3WmiAaGp3>cj3CmIB^tByEtssK_hEmF$~V3+fJwzGI40nx%rw=^s{
z!{IOT{wnC?8Vh~jxU^+Qs?Q<J;G$ND<a-%84}tfJ<*>{%d={Ba_!hQZ1Ev2&(`auD
zopFX^!YKM!V(<sdbS8|qgfp95KPB5=nxqk3R77kTPA>9po5*iP7Wt;g115Tyb_V#T
zzh5s6Nl_wbW2p=<hX7EopP^hlfqE*T*EP~V>maPnB*L^3)in+xFgi>{k^r$tEWDi~
zUq>j#Iuo<Y;Pu(kc-h{%JZ~}t>X#o^dAMRdUGbPA3q~A=mAJJbWwjP#r(&_k`$B~Z
zkK)`Ut7Q}iKYqg{!n8CNrKTLq;u<RNtIF^&Zg%v=66R9l34Dhndf(YcZ?VaJMqfP@
zh%3<6uShsQC<}d)41JG@y-tANP?aJfRJ6Mjj_dLUELU*TCe-})KoM_MRr3yiQ|v4=
zZ#o(H$niqK(5!5!`t7RiBt*;_n0D1?eJXf@stM?xYbt81h{`fmd6*jXudO%>Yto&J
zTC>{yR=CagqV|{k;Xk+gZJ@#d>Jb}N1UeQKg(d=k<2Ynttc@%?Y(7~U@IZ{@oq0=9
z!B`a6STIdjQMq01%eHB0d?wo!I*`u!SlFS{b1I$~jhaxyz!IFSe@UJD)^VCbIJ}>X
zl54%8N;m!rMmn5^-BGd;xDe9Ri~eCyyjLOIwC6(_VN+VRlo9qPE-P)S$nf}BU?Fg+
ztfuOBT+<$5Z&Xx~Im=HS%wG3Yx+-sNZIzCyq9YyjSlah`jKwi!&Sm<O^FWBtyTU*5
z5I49G6rpA!rsBw{MQQvM6_4ykBf452<z%szjrl4o&05NoqpuE1Jlnp9mW&&Z<l4XO
z{uQ?2>q%P2$M4Kixc=TY_Sarw?F6)wZz#jG$&m7lB<(2N#lyJJ-$u&V$j?aJ3CfAu
z!wpQQy&y&f4o5kV(Qo-CVQAY*2)2^uC1RFjLCB~+nsJUShI2|W74tN~aYCsV+Qs#g
zMx1q&aRyr0hO=MNNBeo9D_!`BsHM==XYD1}MR`WZ7j)xYHt1Ci8mNi&8}pFYP~`mL
z44luZnsamLjJX^BBfM%}tMV1}$Kc8k&SimGK4UeIsQt!J{o}6`(Xc;%fY9lw3J8Yh
zeW522&;ccF5-d4gQwDUAPF3Y8yWzXWJZ0la!R)XL)|s$vb`9;Fu6CkRZxzX&E{}N4
zdn#QNw2I2I&|ws>jmiVy6{sK0VNFr`<c5tm?@8Zo5if!PLNcj)LV$&i9|j!1=2*-w
zv&upnD_%e3KM^q4+JdSwY@1B({D8c>#XccMZzuyVc*y@a2h&AiThA5J0;BcJ_9lI|
z7WwT5Zr4=k!TE2(e)E!V!0#w!eQ(p9N&cumi<+=bx@|8zY^=zC(SD_*t@4eks^~SB
zVEA1b7SMZ${BxgDb26D`m|RSKQY6|WRPC$Pggu*OCL7|N2Iw6D>C&PNs8ZDlqD|F<
zQN*+o3Z8v>aBbGh+OGZc!_5QN)F=5CBEj~6nT`l~ZaQ*B)8WAFjskyNh^hUJq?DBJ
z9egnaiTe)*qe+94h(DO7^C=Z0udiG*Z6!sj^pdn1pP1;yn+7{2T2~AjG0@h?8c_mY
z+ZfSo=o1L+2)sat7i%r}n5`lC^;<=+mK3F0MSu%@8cKHxv{DnNc5N2Y5)c4Q+d(g#
z#;`K|dVNM?Q2`QI3n05KOTu?}`q!x1`wD<wot6_1I7<*A<)E+Eqra~x)2q`wt@>-$
zL=|dP8M0(qETn9+TeaG+X=7sWho$$IXgvc;wd^ak-Uz5AnIHq^qXR|U7kp?JvD;Hj
zWXJuLYw8NMw2WeBsgQNpvN4B?)?zsF&J)Wq<Hl6_$xJCAavdvN(=ljNR<W_}5Ueq>
z;u|MX)^rltFv(?LxE={Q&kNDi#SBw}dB62D`5b>klOCRp#z(f)x8kSOC@|;o6;v)2
zN3CJLWR+ERUpGF9Rb#K+V`m)^Ix<t-Ci}^@(C3OQ*3F1ag6&i%FmI{Gk;AFR^-k3>
z8`qSs;MI=0N#@CxO1yHP7i~nrH<DJ@jH1vbSucvGJ`2&0_j1s-><k80iE3DdKo^}=
zQS_eAYT#Zo^lN!dMGnt<61D1pmgO)vHk1@C=eu3eE%%N~*7;N3bh?s@=-L;P!Thac
zVsxfUcr@&&s`>8TXp@osqaAVJ&l%n3N2rlcF7qfCMLbuX_7NnrZdQ>$=G>*knn#rI
z_FDFqUGnxU@7B&QzS$hsnVixoyWy|wt}5a-P3wjxuG|Ai7aW><!ah4{+9;Zju}l^!
zxY|3D-4syWjOkTgcU@8R-j)o%tolOmA)XR^T00r~83Bz6GaUogqqK(wU0z(j1~oV4
zTLlp<9p1LhNg8XIWka<3Qd(Id6>iW1*2XB!c6P86?55g8sQ@pS*5Pj)+=6|XaH)se
z+r5OiUgKEbO2&D<ZhKjw(A`}phfzq-JPRlA9<+!Si={qdzp%g60EH*uX78r`nEATI
zu_U0oPa}z7eq^{fxL{-Dx2oHl*dNaqB++Eq<PY&+)#(qB!XJ-@S$qpwp1sNC$ulxf
z*L|AyqRH^U<jilw^~wPEi75Bs7guiotn}ebd!W0Q%(0aJl=o<pB>fen&hti5ZT?`l
zua&@sLigvo?9IMbhNG>W6)E@5$I(MU-H`OOz7nKO=e_Wc5co}0i=9R@lTf>w!i2?}
z8mAhBWkbcy0(vhW>R36|>-lF!VZDYJ`EtgdCRqt@b<)G?0DuRjKsHn)O`cZ1k$CK!
zUb_42>zDTc>bI3!vu_gM_^tgP9K#(Lo%oY6tITRRngp`jKb<=~S%yJ}Kd0um40$Yh
zpDGeMUAR?9;VYF$y%zvqR&hd+Zpe)jhtP}fiy&#xw?Jh^>Bw&+M(K>R=J1kw&DNr@
z&Q<#3i)Mb%Gi7&$FxB=70M{6V+i3*MPp|9dq0$A0uYyjBa<z8FhWUx~Q-`ZzUACCT
zS*kzK*sn3YYMV8?jxA%;FMR4h!-V`+*}ncITSaa^*Yx7%P3}}-f4vUiwxn!oo%$4c
zjjURJH?yR`?{LHf!cxW-MnD(YR8#csFV4lTsqbY^AIRiGwer=sRc*Rzcj*TME;W){
z*Z<<tpUvNT592|R>Hq3HLv_SNojeAwlG~3&f>6xYx8fit)TGv8FSusJZf8J7I5~((
zGft<n#QYuGR{hw}R?V<}mDpgU;taLxM(!7Wqh#$~RyVjD=CZEpX%+Y!xhUb@YAJtg
z-!M1-Y46)sHv4P9YTl)@xAt0V?_BBGeWO7~k{@#H;3(~-M91&VPR>Vw%s_4k)T?vb
zjIcFfx~+mOV}FFqFH#~Gs7UGb&IT=m*UdB6b)_G2Jo~t12Ws=54mWgUivl9Q(NH&G
z%*F526-%Fe-OX*h$JQn9j;3#Hu?^ORno{ylxt2IvSB=&M7jl=m;D1G1UrbqkS(;7*
z<@Ka!Ggd#>`gOspr8m1e-24+frpr>_eB-m!X*wP-EFg^QxJzxm0r_R0au)(t(%5qV
z##rlCkSo}JLQtzWwG*CcTgN^E8=BgInE2A#Z<kksqOb*<aoqeATH||nkomQir!{h|
zb2RzTeyu9^5tZrZvThe?Xc{S`Ji<PZ%l3J6UmN<NCfC+}_Ja3nE7w-&_IZoN;5`1a
zpA5MC4wodbU_T@GFUB3f+N3LBIM|IITFf`)4<9K|vEH&`KNDT8s2{12)c#1=jpDXi
z8`h?var!p?J^oN_39soo9r%R0jz2-eJMFPW^4K#9IO`@~oQPH9d~RxK<Z~K7g8%p=
z9X~Qi<K*HnSl!U!^Yxvtsi57WLu&4LoEsL6qRCz-zWp$<bHQSbo$U;mx@=?0DYkQn
z>%DbcXkOXC_uuzsW8mZ(anvoPzqO^m<zV~#?~cx%;UHh9=`!8Akw>mgjsCwDX_)EQ
zIc)j2bu7bYqd`b1R1xvmq@ju|c(ooNV6Kt0iC`M~_uO76<Hvs3`7Vxzn~_a3)Zw0v
zirM{?@ik5K)LY&8`0g3yHxSlOB41=636hS_x*JEmjM1O4$Sl8$ImS_Svj;0Z!>K%*
z3^6ju_n{Cf^(qh1*<fe>1<%tC%XX|w*#TEOs!wM!(M)VW$2u4_*+@FAov6tmouv9H
z#D2sjX?m2|O4e><Gp=jWf|K<tP2v^vHbNP-_0~<SwVgxE0iB2*xcmlu%}gzu*%%I?
z4&bNZSdr#7Z4LNfEp1ql*0E9%SPaVOVt%frh&43Y<Z2{k!}jbE?0#=5^Rbu6(r&6?
z?$7F=J@8-g$~L!aD9^iD&d!Yy%uJj3i#Twit(RFk+>9k#J;WgfN}vpZL7;pI;LTY6
zB0<#gZD&B6wEb3oby8Swvbi)I?Mn`rFL&3;_`ojy#k2EpNwAMFKG7Wj4Mh;e@dQdr
z0Pzf3gzt+x+wp7acx79f;kKAyX&SDzAMyM+R3}Ev*FY<&2W7#8z~%2MJx;gq75<>i
z=5{r)J7N@f6uXAWKAaD82?oQ>-vo_Gm7m82zxPKZmvV!_p|r<B&=0X>xxZGKluPG+
zy*O37I9&ezozadyIGy$KC$g!VmUS764l?>+8te7gwVtERj>c8*;<=iL{po%ED*Ds!
zQBLjy8Sc|D_VepkPN-l-q>$ggz3-7N_Yq5V@9*vRnyvEaaP@+eISJjj8JJRYtZ~97
z3}h4lx;TVc<qV0K2t*WcWr74iIAI)>%9}a@LL`hdf*KYUniUYT%`-Npa5b-S!)LHP
zP1O4}o1J`+lS6)-cW@-LmFUM^)vBkOQ9bA_luMD0?$!QPP7$hfEIpCC{MIH1i-Y)u
z7vOQe@1M1A`fAQZWA=7q^VqVQ(}63nX+M}G>b~UfFDADPlUd71BM(>;sEW06uNcLX
z6%FP*(ite#PU`Z;vxz+KV2n^cSdvkLc2o+@Sdjd+=qvlt&)FpRVUTG5^AAF+SUu}H
z$yz&tso|~lK-03Q&1)OUXHf%=VGtC77i^@LFQY%FBIGnnTkZ`$66^G>ToZOMBx~?h
zf~djE(60;o6VbVIH*)LHhY!51G-@W^7byY{4G$jXCC?L#(o+MCsyj8^s(%5j*(UJy
zidfAwuo%V*e{^!)Q%8B<)%P@0e^;UY>xlBktTpERxte<)5ijX8GZJPT>_;(0q}!b6
z2ZrZUB_?&PA-;Ec|I(~U%kJglJ$s_2U5q7c2A<affxCGL{B?Pfff6pr!hxcCCA@m7
zw~B6!@WQ4@=1cCi1fj=+6ltrVq>D@4z6EdqQL8h?rD@Ki+eaC1>2Wc~bTa2x#p!{Z
zL()C77i@4Nahjf_vJ4&H*p#8Z=Tx(h(r1w{Jnf@-%keUq3ZD0!8_F7yT}qO997^#`
z1;gUVvTO*nYc2MLVoAVwg*UtARppD2xa6P+hZKxAoKQs9oI;l)ILG$IJ}J8((3;)?
zd5=l%s5x!Gec_usK2vVmZcM4VV91~%_*^D9z#aVXoSQY&*wg%%jEO&^GF-2=SIjp~
zk+|pS{KKl`pto$ax4rnr!j7C9)Nkhexym(1>E4xWL@zg@2%wj%WtFCp9Y_()0XyxZ
z-TY_)+=Xb|gC83A3!o`6?3v)6Q|Nh}%Y;y)Q@)P7>b)^4PG);MJ^9Qs)3hwi`F0bf
zU<lXf67K>wMddUG_v#`F#ym5^3kN3f58hQ(%(!5iHMnM08hfW5QLlVuB?4zhW+YFs
z|3~jVOP^XCM{Wp+pJ5tEo(1G`H%m6&=g#PFxye{R*9vLOH=OV&v%>EKWNAzlX#K+P
zi<y9XJyYX$%P|Kg=dPi(UFVu12S?r|2I4OL(ub?bt`dFw9Hz@NdkVj2AM5b-lo!Wi
zIllL-JtyxqDYy~=LybE}%{?$)x#}i{6phr44nTDj)}}j@!#S1%#?Tz?&n^iv0bK9C
z?Xeot(7{}7adlf*4VIqj23Y@JD;@wgV+;_*mZ$>y|8hMUt+b&U($QCaOJj_`iq+~V
zE>~CdHU0ba1GM9Ov$RdwY}FMz7Yh<v5)$RG0!5n6RWoE>=H&r|k)kyy0)sf9Ifh(V
z8Y)B9jj%NYj0ZY3{pUV0I(^>TqShD_U84qgEy_AWm=s@?p>woxw72t^vehrKd$B%K
ze9nm%zV4ct{yC^btLi#KP|+poEoVBN>Je96VAT~z2ex^@rnoDUb<@Sw;B3$`CjBlD
z{qkYPt08UbYKVfjz`)QA!XQ?T&Kpy-5{h(n&5$9o8>=ZQyw}k*#)$Q)DQdjemEPxL
z=)8ZFQ?35j9Bp3PEfH=0NO&fx{(w(k9mU{@5lTPx9@^gvxKUzsq0Ks+@Hf~MVt9$3
zIB?t@AYxj(MeHoE1jgMZ{D8#k<hv$BibR{qNY)W~7JoqBoX>Te_N^`CL*|pZ{@b}v
zR*+4`j551xKe!P*Z`fkI>DGQfbyd`Lb$eO|j1riD`3O}tHxfxL#I-he0V_9>syyo(
z4x4(#W{|uXe<h-z{HUz0aD(g^MBn_nkNyP(@tw%p^$lY9wFLWp9@HzB`SI!V3Pt;|
z4foYye)s&m8=wEOM&RymNMz81n!efFTgFpHQc_Z9`5ah}G~%k*V%FF2kx~~oLcudW
z0Q(W%>{XlEgJ}Q^Rl?b(rj>7JA;bR7k`t`))}C=~+an=10v1O~;>1f1PYU7@5g*M&
zQb2lee{QxvzM~=-$2Kb)4>ji3O$`#iCxg(k<i+2#X*<6<#+wF857B1=aAPe{B~a=L
z-HVj1E&X}~G<W7I$V^S1wasSt&0ijBhi%&fU$BjIy9v=xwpEucVH!V(^6-yJTjoas
zBD<Jwaqqe9sU~ggaJPQS3bzhexD>4Q3k@QG-c75_gIC+vd@2Pl_Cv+|sJ5@y?z4ew
zO)_ddXNS?~(pKxUDW^4RUB#6`A#PaH<cK2`Hfqgb|7*iz9kl2?2VQ+x0;4e@gI1H4
zOsT~{rO=?GnDzev4BCPgzl<TO4>?%>zZ!9i+!-K&i(B>De{G1CYm8dkefn%BR%?w~
zr>!*_);h8<YSQLIftboE{+H~lEFh|<mVkh%my}wU^5UhJrN&D4-<22NurZ8gBIs9O
z8s6GLiw120KtdqZhp|9+Dnu*|I_&vI=uwYMT*2DEC$t=kS9D01z^f%<!L{riyI?fr
zmL!2p0(nxqK&|;zwFzE5Q~+!WI;oUNA-KkSf_~7VL-RIa4JH*As1Ik~tszwYre*q0
zb1pvRiyiG^Qt-61Y`}Dx>ICYGU4&TBw4&1o-_5E4B8*_y(yh`?GxsUxPV)%CH@M(?
zB(PZUGapj$Jvq3~5{qW1dHuKN&zsd}^qbX6RuWkzjXujMaPa)@tCXGQ6yiS1&`Oq@
zRWk@5jRUe9?K2|~LB1i86E<i;?|4u_Iz5KKY1nhion}wiml|XsB~b)OLGKNUzm`-$
z%+Wxc|KT-(@WHI6?XyhAxLNh4-)VM&eYpTy39I~cFLqQ=?m)ICWMBlNtAf&-_WfN!
zD8s1Q_Uu{svtMQ4r}2d#2JY$9dcowAf_7yXD46-HyIyxBu=DhU&<2u|Q3uev1_p27
zImyGyPdNK;&^IZW`ITN#!Ynn#Ogwbx4??C)NVZqy;Y8r4$HE40a_p$Bq>m%mS@?M(
z6>-)Bj6EEf$$`M2Qxx#it%wS2Ed2f)a2@~pVZ)B=ZAiEx21OeXuz?H}_uXt1U^-9y
z%7Hb;&b!<|9bj8Xz|Nb8kKFZKoq--;+h$<lzu%0K#fbbLa@t*c8u)>Gf@GczgXO4Q
z?PaWi=Ct0y8@mxWRu=xx7oRX@{(KjgU`qIDyR1IsFe)kqcqLZ%z}+#K$lXX>Somqm
zuZaGz58qo0MEo?d<Gm2HOH$WFpfD8tBX?=&<C*!#?!d#!nQ8lPF2p5)a%rSS8)%m6
z^Jfk_#`OonrTzfIZISlhOlr{OTrtzhW9RvTK@Z$#z-aNUuq;OH^8A<7hi?9$5VP<b
zA^}^&#qBZU70b-Op7qi=4UGU1R{m2s1jx~Uk`CGBnMz?DVgWXW=l>?np&NcHSsD{#
z2p|Au*s%yGJ0-l5B59UxPTvhZ5jhJ#OO26-^W5Og0eMftDz34|mN_et5fJ>IG4+*>
zH1SozzyHQ(*6b@V6a#)5OZ_N6Qv8S!BxJW^-K=NuzfN#SeWgttjVT*o=Fg?vI7bK{
zir*jyBCM%4@!;fK9dB$1`u`c!qQq?*y!kUi#=;Nwf*Rd-qh~X8Qvw6*xXCglW}s@A
zG8=m^wwid{0ni5S36Z{INa3eDaQ~N?+QBRi-b`W|N`~xO0~dRFltnS&^xxRwSq<H6
zShNG{d;m4gO^t=$(-U<dc^;S^SXlVWA#_;yWr%>{IZnsU8v(7w&g0iN@o?5L@z8*2
zGVyqV2A+yQs<89ef@-ky-v2xOGolMS_9a9cU|S?2fR9rH9cYHgQc$a?u%~>Vp^|Q^
z@{6wpYa?bC=p7k*T@aqQ_YU$=LiR%FEj;kr35K%S=ep3|fgOo9+XYKQ5bs22sTxy^
zNo{UsHY{l`hFBE8pB1o^u8h=xF^++vAQBguDwKLCMP#J@hu*Rf7}RoO16|26nNOv}
zo*e$#?7UImz)ZO`SO_4xnjROKhBKa=o>q=C@+2k0zF42Xki+8WgM?-pB>k5NsXIyf
zj|IVIFC8-^+-oqi$B^LUu;r$4l=I)%DnADJIyaT+fJ|xL{-BH__&oh|WR}DZG*iF4
zUQco~UchBT&funFlx|&wZefIO<^K+ey}F`bP%;~QWxs=?ev3u@9{AruMt%i?{#+a#
z{r(r2$wj@-4h^!j<?H2Ka?}7?h%Di%saJ|Vv9krULs=4=7w`7%!kG&p8r`^7b$+&)
zLeSH%>NvMiBdwW{Uyp+7klS~J2%$urlS@Y(t#H>kKIXCH_r%aPIGO2m3D+)Bo*bPI
zuH|Sw%1d2fL_D|0mq{EAISGMv6JVRfH-`w4lKkq0It*epRhcN%%VZ?4)KWRRl@-k_
z#550MGdEdJW_=yJ>rg(boJ-AI{31$;+>S_EcQFq^#WOrsQVJJV5Q1A<uvlxcT+6w}
zt{B<@s9X={tez+a>WK0?(U($bz8FBob#IG6UI(WHAn1pa{Q7J72hZCj@-OVRJWpBo
z-+Z3j+wuZrl^0YnIHDyE<?5-)J2%cw1F6n`c9Q$9B+Y!(BYw6X!3wxXq*G5kf5w(-
zZJwYPP#bR<84pVVMRO1CvCFi!I{2JMAZ8{E&nS=$hyRRzWY?G|{k)c;7G^H{sIq;d
z+$UvLJ4fQB$Hg)KeVuLnkZZjmFkc{8;k7acwb^<=C7sTm!2lV0^MnKP?cGP!+dhrQ
znkZ#`n|-^vdU>=Ye+s5?XX!hmT(76jzV5)qxqi@9n3*B9aVc5G<{oYFu@F18@<v$T
zr2WI{Kmf@V_CCdX;{@7C&4~8BRPs6hgOVwtRn&#_&6Ez`H6O8%@?s%6>*my8Aw<qw
z1<eluWD6=+^XHMo!$N(BtvU$^S7<=U7I}fCBkB!3c+0_c<yLN?KCY&5Y?-CCwVF(!
z6fv*oVs_Id;gP4E=R(vN)%ISbDM@1hRnw=ho0Y#IL1Qmd$DK2cMQVLU*hFbYFh7be
zoa!Z8)Xwapps99Vnx1KB%58Q$yyJ9xY0TWKv2cGO=NI0^YbHp|@p+x8{963=?XjvA
zR<}0C>^&P;!*TC9n81WEyamJ#T#^UVOfS6!dt9Ir7{L_1@vk4*!&5UhY??xRKaLx_
zNO;N^dkpKrjWSc;=HBN$1(;kp1s;n6uB%kH-A?3uxyqOxH}QNcub-ZWdgzF!8d)4P
z9<68O&dp68ZEQ@kj@%q)7Si_WBTa`Tm-L@ln1h%0%8l^scL?pVyD<nf?vJmPd$u?L
zEwhkEvs+hC_Wh9e2zJc%-n~C*uUX#2N>+uR^1z^)F1}_g?1KM#Bib~hbFTfF9`=8a
z`S{afUhNV1dz-3bh%aXae9+B+;yogk^I{*R%f8|@Vv3VtRZ=!D$gZ(4#h!JVGu@Id
zM2hP@0yO(*O4<3_RFUCJ0RL0xp2)ZpdHt;R;}s7eiBwIaQ{sl)CjA7aY^qVZB=Q2&
z4t|1dL17=<Fsx1po|P%XC&}fn{1W{nvSDcVPeH_0z8h?o%0+EUlz|sDH$R;fJ^Zht
zNPq8O%rMD*9WmhU>MwD=w!NjKqd&Xy{?`c8OL427lSSCFAnEr#OGm=3NN`m$&M+bg
z+XZLH<j;O&)`3N_5TwqYP`0OnqnT$21}soS=>L@HU_`pFJHC*>(2&7*=IE>+ih>Gr
z>|}t|s{qy4K(e<^oNr+AB!Po}jp&*C)@t3V<=48E5&<M=^ydV>1k)9bmy1%eL`-Zz
zqa`*GyK2k9@{%kO8>hUdw;dV(#^PaTOACW->AU>93dMN6S_CF+;vd^w`k&?WH~qZY
zf!S%W2UZpkcKbX2OzYgrh3%%pkN7ujD(4i2lCi8WGXYvda2`WcVne$1>0TS^0}G}J
zr~)%FihSK7l}a7Y=%jKaNkm)JpHFwVCRd_$XS2_xCsR#>2S{dW`E@Ef%hqE8sr(?j
z=7@M|LMcNd;nhRs)?>v&X{=r$(J1s-Qp{L_#hxQg8k=vC=<FMs$~Tm&2Xy@tEv-ok
zc^xvGeQ7_NK|VMq`g>Z@HI(G)dL$^nFdXbvuHP8a5@*_1TVDR1h=aaJ8KQJIPhaj%
z>v_;TdKZV#!5I++4aEo3dGDJ`lBrEo4FV$O1H}R@cB%uvxCb5ZXv-u6FM^#88iZ@F
zDyX2yV%3T_c1<L4F5=n7AE-jl>5d(9X$3B}J;GVlbsBTgAh^}f&J7uZ{>Wb?ADC<K
z%NQJ;Q;kgkumhVFKJHqt4<@q{JA(ZOq>Xxz_U1{X@cmwoO$so;{RV`=pv_|87tV~o
z9{vg|h{*CGEm#%2#lRlOx{-H$l1LC;_X4QZ?b&G-ZP;lzyx3`4ZCWxwkI`H}Sf}s4
z6`8T%j_`tboZwl6*d>|2-*9|ii0?_iZ=_B9{NP#Y3B)GLAzU8I16FmN+IdMZ+tjd%
zlQ!2qbPO9t91=~g3Mk4Qk_CVLEIBoGX_v9h#;w%Z;6Ac(4tOLOXG0b5nYw#uI6QUZ
zp84s#fJn0&J(~0nmJ-8y%ANYlY#XuilPFQ}>tIT$v;|kCR94QRN9xGhz>Dx2%v;u$
zv|;IuN%$B`*`{>*wV8&!`imtZN;jZVNz9fhxDNu_tcGs-naxY-qIHr}%UB>|r_S!z
z(iF=+6}E88+izJ?i;^*-n`8ayoys{Y>RmbMT5e2PZjiutk_1mg(9GqV{BF<;NLr7~
zl~y<-T(sQPzLg&w<EF5r-U9OD;)j1QxbFTuOWyW4ZG#pWa}NzCLFzXCq<0a*jMMo*
z3<Te{JFQSibqdtswE_GHga`WU%;So=+wkit^&}wI^tmiLhs}>>8^^L@8N(z?V>B>w
znTcpVSurpnn$+>tV~Z-d@_d2&`UAdpBGOtwsFL7C0d<xL9+;zNH5i6GY8U(6X-sCK
zW{Khr%ee=63{TB;Wf|dqByw+Tc7##zr_gY;lBRkQ#h^OhqgK(x4HrZB>74op+yyLX
z2CM`%O!8dgi}UM@O+~*dw3#bf?b2>EUv8<*7P>0VvXFT7;>cs2F?q?X-`9gTX4W1q
z=g?1SU!scN_|O0XBn1`-U1QEKZ-g(7ImWX!n#o9<VPVMOCL8`WWb#ter|Upjsk9z6
z;m2j^M{zKroXUgc(@Ov2jet4P2^SIz;d_mB|6`7+@BU8Q{tGfNh64WYs%4@$j3<>m
z-@nUd&9`?BIkEQ=t*{Pl6~kdgvKQ5P^~>tNCLVcVn|EnKe8=t;MlUyjLVBGb&D}>#
z#t;TO$=xS0VJk_?2glfmzC;R~Bty1(NkI}58^w#(et0)Yl(<gc$)?zshPV<-Y8atZ
zwt;2u@f&jEKzt!{3jg$VO5MGMNI^fB>@*aZOv;1a<(wAzW)J8igl`Gz3q39@?i?=K
z*xR6d7BM<ZA6Mo(p;J6CCCR*+bz*P(BgCU@8)XWIr|Fj=zc0Ijo-@g`&NLEH>2!pB
zdkk{wxE-r@JXNfa&;KZQ>i9gQ?d!1CWhnc6ed*Z%KV3rs<wtP|#bP}h=G=jB=!`dh
z$e9vt=x?ZYwVGQ3VZGJ!Uh9Zl*A(g>0M~MEox7o~yRzuzZ>@R$nW^8XzKrlSm&W-f
zr|Y$CxHbo6SB3Vs=SJ|r_{r@V1xYB#S@6ht>u=>U75`+<3FqxkxsSK?$$@+3KcS%=
zzKXCjXZxy6*uqa2yVDjkYF-26Cw;aFyjKt>!hC;36%4@N>BB7>I#CAR2bJOOP0}P1
zLRmgR|5I(8(Mdb>*l$5u2GM(&`*%hZGk%0yG(%9Fc(I)ykdVR!pMV>(3<h6R<??{>
z43uf|Lo<4_z@UwoLwe<u>_)*nJi9kc=s#QtcCRkb@R^8uQrdG{IS)j{Hwc3z-;jY$
z5P>?$y(9^}(YAwv+FZVqk@rBO=j~a67!D~@q`4fE&FYEW6;k{417|P$dBx(NmM<Jk
z1!03S^ouw&Hyt>@GZWmbH>Q4Ud4c;St45C5FnO40{6v7&s}R*!Rx<xhn$0j+7e)|H
zxZZ~zZQze!WU^3VB!UlGG1u5&moJ)>eOe@$4;pX=i-brMf8l>~plikYy{2G8`h@*H
zsFSvDqE_JZu`t&rqrLrt`G7%D#Mih;bDIdZ?I=I^D-TX+6gNE)t~c*~W!Z)B+bb_R
z=Mw#2qMNKdlEOcf7&M_z?{!J+zIL%Qj&^b)ucQMEKC_`EwLGVy#5Ow6p1R_Ntjguo
z1-Vt4MK~Ei^w{B<KGCtsc9ulPg|3SW<NMM^Mm2>{VZ#$`b}DaiI$Zt>#71^FJOe}0
z7U@&!wgO2~{u+fXr+`W=4);wZ?K%~$lL*Nlx@T!Rme(=S7cBO6Bx*)muIZ?{9z9g|
zN6(GLV<*l05q)36&NpxB_MeXt;{~4U^WM~D$TykAq5d&(u0n={OH5QSn!Q58oo}BY
zlZ(xU<A~tWn*Pkddohr?MSl!p{m<PWr)Tju%({bo;{$de*IEIt`<Wt%DBC7S2g3M!
zq^~pyuYpKlvvv_>Oh&UenneCT&=vhgkUn0SU+@Iz2+DI4-rnSYiXo8v1Od&gon6hR
z3TqwQ8Tyk^I$I<BZvhDure~E^2hK8{Y>X(y3nkZAvzP5rc=-Pi_LV_#1znrL-Ccsa
z28SSn1a}Ya?(PuW-Q5ET?(Xgo++iTN>)<<i-~G0>YJY6i?e5$5^gYkHH8a(7`W!Lz
z52o=Wn7~r}Bly7D)txgoo#!tFSrDm0sF3{R32c0ko$r-YH_xHc`}dkOiObvY5FdOy
zb1i!;3j>|s4-)2kb_SKaPnMxDRYu8K^NOdn9wx~xeC^_{4k#m!?fNQVgeWq^43sl<
zdPFA`MTKorZnCT8Lr|qYi0?Ar5Sh<NsoDC5sO-IWV977?+J3hpxC~jJ=whd%0ZD|N
zMuayYB4j==AZw<IQ(?(#;Ombsp@C}%$pnwT85&+Hs5mawm3wfuordS{7SdsxF(zf1
zCSRa$^GDA<zvlY>`b*2$O}oV%?wR!6oRIbn{sV*D>r5Z~<CSGYP9ADGUFMFE;QUQj
zB7mVdU$sba{0QZx#5kagVSM*yWr@|)*fJ{%Ucue1ZlOa<`?#I<Lyw92u1V_0HLY2X
zobMXX^@2Zr_m@~)>S&itQvS>dT<Z8Av?Pwg<DeDIVJ7P9jGFf{v{A^$_Hpc$v<bM#
ze8+_Hhtf$LotBh22c84%qWu#kO*<rA`Jc@zvYC#v8Q;BWh*2aP<{UXmB{T0DgOjfJ
z+Nrg(YP@!$r^9}U3dv1{4j-3&(Wj5DOM&E}_Z_<*|C8b&$-4EqOUt7K<vGfwp4{rU
zjICOP>7&sq8|BHb&#IcT75?9iCR8E=8I%jq$0Xxq0@qKqeAYVlKz3VSGBgsu5W_H*
zf&C`#78|0H!nlCwGJ=bD+{W!b!vs)WG7EV+lM(w9j1<0DLj8F=HpcFpnSMlR8mdVa
zUi)AlkwZ0oF`!r(4mG5$9=Kwr`fHg#AtE<gmP>mo-|P!uX(B=mv7)*!$;=rpWtYB}
z`eUY6fM<qM&RYMVQvXm``Dk3|^J{kAe5uRdS$O+29O^6S;N#PnNKSudFxhJ;DT|$C
zEzw8R(*wTyE@|j0>&J^1i2#bQkx&FJfmTJ~P6QS4sN(Z(#OFlTfiJ%sQe<Ti(Zu?h
zBz7K_Bg6#AvmZ4<RF&Uxx1S1WEh3`K>hwr_2Q*xo2a0Jbgk7MPx1M6C))SBjpir0v
zki}!klohjzB<PAHoRurzDOV*Dvnt;ODnmPz=iaD*3G~K26u?h-eOV`;=6}-IFp$KR
z&v2{Pksed#^}P#%!^Piu*z6Lq-Qc=;FUlzoGH)GM!f#Uh#P?T*+clb<z^7q|^H*JP
ziGOP=iNF{C7DG{l8%f6lXMliNH;V1lLt*^m-vxxgWP|5-#*G9mVzbF&uu1;At`V{N
z4C>mdJHF4ii1v%%>Nf?VA6_N121h^mGY@E1@-rvMvo*MD;*PdAz_8oT3T{^NT&2YN
z^Pq8@Unt{_dS+ZfZzfJj2nor}r`Jv@8FF)jKK-%F)!O+a-U8QVKXrep)FyS|s$zM}
zI6mC+ypVy$u^RPx5KT345(7mKy?jVu=Ao^Q`SIn4LjSS7EKn$tqjdVgVQt{<C(&Ry
zO9=AH4#mKM>{n5soh34Xy@+pmC@323n>jRR0Ranl`RGL(@+#vqj`71YIsmeMgj(1T
z^~T6r0%<rsKidfpNp4#H5-RYKT=2~ZJ||2#nU;L^gq0;pe%5<)=Nqcved2`y;U8#b
z8w_Szf#!%bEPbtS$&Gf=gNh<Sb)Rr_&#N~hG6JwCad5F*l7|Kb@FBGaum(Lt^XvjS
z{Fsg&F==S=KE{fjuvYhC7tpS;xno-+_AW{Re-$N?2{R|m$1>H#Hwf#xp*h}9hr=55
zeg7may|cDWrZ0(+C&9f_<KYJECpi`^+=MX|IGaqc2hx4|KzO>`Qu^laDHdhh>*eH)
z<EC28vSo+!i#mKeDUy;Y@{2CORhB_jMjl5TJ^4WKlz~#=R}+;l`8vYHVBQ_?g#)A@
zA1P3iRbt{Bl20@fN82_`+lE%%m|b^Za)n-!xOes_=>t0*Ny}ZMP0`Wx50)E;)Ox9`
zkYJYp6;7asl52gJmaNhp<{+uCI2-$(`PVK{Ug797n2a~&LuF5cJ!>)Fd(qkvLUer9
zh@MbkYwxd029T*+#E@t`uz?Eb<(<$%m_Ey8EjEUJ-W_3LJMdJchr$KZDxMub4G%7@
zm|q%I8V?b%-<r0&rV5S>@e6OZe-zoF!~0-CYLXv<Km54DYzYbpbRTKz&_SmuH`Vrn
z@;z^F!k5+tCibe{n?+ki%jeZCM{YjP%-)+@p0d8Nf;W^FIU<T(;ZADsE6mWZEYJ(O
z5|Ce+2Jmix9)E0Exw(46QS*}02o@$sY-i{r5riVG)*i>#ypOEfR9H2Shk)oDn_=g_
zwz`fp;V?N4h4)HX0|OKb(oo=(*66%1`US)@4k<w%I5$)vbLkIk6%swv&tCA5lH_Fm
z6lKWSb&tAXl+jt%`-s-R`*9Z3d^93hUvQ4_oMc=RGgv8Zt$HR#1<-+F+hLVm<X=dj
za>*QVp{B^Mu4JBL0`8Fy1?3gry!Nz|K})G>pr=$d&n9&>&kFSwMUM}<bzl87-}O97
zqgHCr8&fIkXgVQ4y1S;n((iATs|Gt`%w!qWZlipLT6%@jW`%!;_K)@nGJkZ2mQRoX
zqk>N+TY<gb{=NEwllgTl!96Mj*`eo`p+8<Mh8}nl-OG-D<#U;H;q5J0vnf>J{!fu&
z$Rq*7_2}RCT5MRYL^b@2f=vO($Okqr@%+ZcWi^k(KM6|B5ow$J2XVkqerh1KD0!03
zJJV3J_3rIf%vV}0(kuC#YN~@L8rWBgk)TxS#{K|b0YjGNb+1!2ZBfLgC%vAV{m{FG
z0hEpOsjTx-3hU<BqSbD^DUAy~+vcqC_0OsDFWGSgg^L<0gwZL<8A-oO?ncuFylPeU
zM(WM*&fdg_6~`W|BG>RrYL~H%(pjW_D%Sgj{prG+u*PU^BhU6Na7T$L&u`$46KHKC
zKi?GYh6qLx$ryj+L8bx69ZmV#UZ;n;B}65w2X%11bp)^I6_n>4LD@sy^wMyt(oy4`
zzV`Oov2amnGrM#>FZ$(YLDu@Yn-0Y79{RQ^iaqI%(Yvz16Ew90DtOb$(UM(ES-i=o
zQGvnxGP<WdF14E(n{v}jZHBg6?X&C6Wj@La<LWsXjaEiA{3#aITaq??ncU<nj_wE<
zX5&(Dgn@v0v*T8j*YdN(5uK+yr>$l7YnbgplkL&L7GKP+=(zNyIjaTm$wsB~ua+F+
zB(qu1Ph(9BGZRb300X?Y*J*@p|6%Xl6Y*3BFBx1J@4<I;8A8-+gj3;966Ob=QrSXj
zn6?I}q-~E!_jJDAfYRawnoB7WdfpV2hK=Yz94`}g!j2e&@xp!hneP}%q!6iXL@yw+
zd#7h<cr_hGO8HnDT^U*L6CK?{ZPoC2ZN<;;Yu?vUHD#!e>%HdCw11guwX@f!AZ;vB
z=LHB`=%)n!RIA`NUwSvN+yW~1EyA$nNG*(eBr=CYZFZd%aa5Y{b!>tJtC<&^@Z6!)
zN=PKked&M3tbE+lbv(eCIvg-<r#<(4z@B_)CZef&eMo*NJ@{<xnp$zkpJI1ezGnxO
zb~*&W%JM;7577}*&a+zVut^;C>!6Rq7qHwt^r&S?>8A5~WR~4YCg!iGt_O}nM+BgU
zEDVg^JquTTOJts90LQnS#AkS$&Lo;sRdm*KkR9IHk{V9vPK+^{l(=5Mli&>d+cVM9
z<K2<8nO*3${n3Tplw32{5q8+O)|5Q`24o`~BYWR<Kheo5qV91P?e4}}d+G!QFh+)^
z4SH)kqp3i)(D>O(+ZIuysba=!VG>!5o!88ol3><=?`_6p=`lQJ)var2mckhrB7da~
zx-z%jfUUAwWR1m`pUh+i--N`NB3G4uCh@K&tw8GYJWmhg;yW}xS`})wn6BI3OW##@
zQS&WIEMqz!xtKEwK8e&J^RvMEL2B&ex_*BsT^*RZ@AI_1i-~2ena$2V-kG`lq1fVq
zJ;7*U+uF$v@^cE=jX_xsafjN3gxF^gmDse42ZeFa_81*P=x%#e2R{{N=*E`R^xB;Z
z=<C;fhr3>QMMWyA*!*C6MxxiaHD`ErTZo31y?H+yn3#)GQVw(9pL?xy51D!hkD7Xb
zGiumm_!LjrhxhyHlmR>Y$F7hi^S$Aq;O!S=y3b|o0^O-3vDf77ains{%#b(!H<*L5
zJ3+JIVZf80uW)?m50h8UR@u-NNBmg{>)Icm|FX=rp}W=;R@j{YMx7BGIz_auXwmYS
z1Po-~Xnu2qSq#V@2%Uhem&1yi**0Bu=XS@*eU6azMWA&#Sn8fK;(WZtRwMVgi8tdo
zrY}r?;h5M?T->|fFS&i@=fswmu^B<%+F*9emEQfh8nI(hd*O#6kI$pCplJJ?F_E}Y
zKgw;-xjPf%O%p}rIsZY9&4V8T6QyG_6$A`(+~}sW7ti|UG_c7>6Sa;FGZd>AK&`xS
zU`Z_cLurH8s;JfJ&o`&Nl1SjNG}cgTG8lta9-BuYi_SiWQ~Cc4=r9y_>M#~}+T&vX
zZ)2<xc#3<CxwsQirIzx>`;CYbQmu~i#;}bBc8gXP&QR<;=Ko2|$_+)WT=SK5_J7a8
zPvIJ3b6WV%1|ah6BOAZ#2aIwnTGToW7_Tn~=spw#9412PqvdAD=HVoTeTuucNVvp*
zsg~E}V>AXo+JaO;>wRN3oxQ1D2ymDlYp5ztuc)=IBbYae2$njEs0@7w1&JEF<=s6J
z7<Q;>9}WyV+JqdMy6g!AhQX0QN9piK0@I|L_Q4Wj(%DBY)Q12yL`0mj?^u;Lyy@ud
zD?TuWs)R+H_@CqH>`B25#qaY<8wyC+Et)vkE%F-zyix1gFhk&YIuU;!8R+cIA&Xky
zsta0`gM^*1ehw>bbRtG&k4n<nFZ4kU*(F5*m-IxOu&UFPHbU+>uv_ZDz37T`_M#|Z
zKzB6}Cm#)PQWtU3sVHbYS6ABb*ZdEHjt5edPGb;|dprury#xlC{+Hl}P}Hk1Z#aGE
z?*+cuS8Ng39V>SRboze(<TH^pm$uZ<Qi<69e&e+{mxkD0z<h5V+sxU*zV?S@=YE;t
zF4*7Y@9~)bB&PmC`ZI!T1_N{7URLqtJ(e)Pi`EMCnpdinE4gR3%n<xC@@6cZMWvN_
z{TGd_!n#QdYQxfNZq8+j6Rr?|XbbFDrn$YuOlnpfznI(}IR|_AZ@+Q=9I5DD9-U5x
zP$c#y9xX*|9sF#LlS1QZLNT>g-}Fo`wV_PK-5suA(j!GD7(ltEWFPbln=ARS!fjjB
z-gj@1(g@9^8X71)Thip9PgNS%7o1=&Ict!iZ<gUROm$WQ$fz)sw$hwNZ}dl$9kYrG
zGR_1`r`Xi_e;OD$ATN*CpGF^k<F+xhA0%zyuIhAV3jvr-efRoPfi5(7Qby2`C%WH!
z{j6wjG?<)moGIa(q29*{H0if)!w3*F#j6q(gjRV;`(@pa7WTXi@w#(qj{wLxsOd%P
zK4RU4Q%-^e(5=P&vTVR}k@AKBjJmP!!tv4X!qt_^gZk{=G5wW5L_wt3?-Jk%K*g)z
z>Q4v&OD8*8TU@X!j44+;c)-dawCqb}C=RHP263?aRFlGqJJ7Co2QD013M7JOfqNCa
zu><e#7^yYthO4mymtG#aL57L6dH@DniG%cajL;rsURP!a=|kH>PPhs-0Lg;-&cLg*
zBG+x;zZ!ZMgpdx_LIOsmvHTN~%T+1?eP}|K?BVOo_VoQM8%YR&h*nid|0|kbV89K@
z%&Xv7$Tm_kP@g&HEe%LSA?qp_H~Mi+KAILJvY^z9rjPgyB(gsu&qa*llO`|h(PJG*
z+Q}o;kA^rw2@<InfB?|NMD4(>BX9}@kq#EgfkXzopW{PGeW|1ZNzd?^cHxF}zFh@R
zEg+WhPa<Ny8a^2Yk>=P34WPKo)%Bw({7cHaaN8(pSHWFD)URa2drW$ipuQgY>wkt6
zuLX|6&;UA#&q1X7RDEdX>B(2Y4VC{_QUmqT|4gCyM-`t{KbrHO5b(gbo;fg6W%M?T
zNQ_s(Ih<e}MY5W5#O}bIlYj{@f&o)Q^GZgWNFbjJ2F;uV)PgC?C}sbUqhjX|M)3bK
z@*gXTSHrk*-&846iFu=|VA7099%5X8bFvhczhey|0F*tZ5%*7z+Y9WBn2}~hMqo|!
zMq&ET&h$;??7$&aT?OBjQtrT60jYN2hV~Qx+a$0ER*)!onwDG&0)RJ{oEl8|)F7>3
zA6hq_Z78W6cK!}D0OV1N<L{Wfi3k|Il?7`;K9qF-uQXUc;L4v7Fan-bC@Ga6nC?6S
zFoUcX;QnJw|Acu=e@6#C#@B*%6L5=T5T<`^(+C)(I|aNVnt%qV4-p6arjkO<_3iLd
z@4(e~eSs}Afb^=RfaI_}<Pj5quH;&Yx^Txeg%9Mfy|gLNI^wUj3+!P)-$m>DhAt9-
zf5?D^XCDluWm7+4!ozF)MXpzHbaJM+b4E7}_u<nd<2`F@NQL>TL2W&OwGkU*b|5Y;
zCI7Nz&w?djp6&+og4cH3K?#G=?>6`K=@~9CO9)0tr6}X>rvi4s{+@7qLtQ3T5BrjD
z&?DK52`A!lr}QUOE|=!LA7X507kvk3p;cXcO3{4C4d`7kCIOg7+P1PLq!v01JP%eX
zrWAsJ8mfo8X7?iH>)Z|jVp{e$6a(Gs#?^Lr2FtI(nA~%!4u`IyW|-b0Yf;Q#Qv%vb
zRM;zX{1J^K+e?gbqCCiRwN>n+H~mP(GEdLQ&Mv9H2k6_8K&J|k0BZk&6s$*zp+`9*
zr-vM~2hR<$ZVVE=b3XVQEH7B1TNith(3B4-o&atL=KC#m@pRv5IrC@kqoCZC#24ZW
zcar1B%uwD7IPVSjf^=hVw&G<7Jqv+9aKum*H(2{@+hl$jPb&swf?=DSK7)a`b(5dZ
zE`Alqb%+gas*W&qYkjN%v+o^<`+1i8G!+3C<pli!p3z1<&b||{9ToiFmTCETK-bUI
z)&VDL9toLHd#f3-oa+STUI52yV#{;V&<K)<k+;v<x_m9AT7|#%R{e8zH3cr@`64aR
z>O$4R=qfNfEjKt-wb)z=GN=+GK95WtF$SMS=RIG>#i@_Rpq^84$ZU$6yOKil8ZaC$
zfIIj`zV)T|M1#69e248hd)Cy($_nm6)mtNLb<78(t01Mm8;GxM^8&_d(?|9$hw|x~
zc=d)jCrY4XIv?99=JnLaZB0hg;;Mc(yZ%1dG?YS+uaFrl-e4CxRuBDD7S6rTK1&r;
zmn*4W%B7x-`y`-!y!o}^erhn)AP&$qOZ9A1*uQjXuE71uQEPTUak(@n-W|!=G4n=3
zV|qwZt7mT7<;Gc0<I}g4$^2+^N(!&8Hdnk|p;<{|+g4*nAl@^hE3rGgt_T>}N-Pqv
zuXH#G3^c9OGOP>;CPwAq4)in0UuWDI<`sOr6}Cq^gyc=%Su$9#P^ScMcgLR@jSAI=
zYd#bT`br5Lg|w()RmGA({SG97YK$65<|ex3yi^sb2gGM(HnjqRs)Q^C#ffC_6K8y<
zBTl(Dex9%*MIopo{!s-w888RTbW%c^V#JD>U4}z5bmjlXoKh>QkwHdFsRur%bX3J9
zO1rF#L-({K-sGcDe!x$a!YyGpt89fe*Z=;$BI8B0CiCoH&{AxtW@rNopzyl`dj#X9
zvMozOv9q|rD7YSwteH$hd!Xz>wxbW3Gcoi>pGR!^-G3x+0B1dRCeiyl=E6spY)-wQ
zkbd$>BLlYVLkPmPijPL{0eN;ZO)OIg?VX8uUqQ#ntG*4gwk>!uG?>X4rZf*_0f_5W
z!Wdz(-rO{poX|$<D?YqapY_g^tPP)O;;1K2I&*}02-%b}i<rX~ndjS>JD4VId}HQm
zY?W!UvYIK){pzj*OJI!Z1e?<Rs7t2G|Cd#dv6`IN-hrsw<hTdgx=x<Kh5Y>J$v=bc
zO(>iA)QeZa6lmgy#=S&~3N@#ybQgZ+X2$0t;yNkd{v%|r<A*|fcx!s$qmL4K4B^Jf
zRc-p?@p%1b6VD)|EpAQD*4@>VW`gtl(rY4RO~z|K8^=v&PVNWnI-M3q*#S~5F$K5>
z#_MZWDkdC@5G{2tQF6ii!sd_$bc18fD>PcNSwtu}@-M_t`J#phutI^o-3E1IHpLn8
z<eYZDM2&@-L&Jh+M3j3Fl!IrI%U2Jj7p8BiPA+ecLN(IUwU>}Avc8({n{;ids(cNb
zIR0Z!?Qhunr!}7u!Alf7hz;yloOQF0ao3sCySOOEplXn(nrhF3{+cKigeCJ@|GR$Q
zMrE<pY0=Doyh0pRf>O`na9JoRT8mh^W*EkiON=6<Ld!u?bMHyMH4DYvl?yKMV&ve-
zHnDuzY*(9mZLSIQMp9mCgtmxO76(hY1ZZ)nl<sml^Ek<^WnAF5t5Led)-Bw6IzoJy
zp5QWtiL%KOYP08+HWxcG5a{#Qx{UO{uip}LI+bo1D22Z?3XO<JP+c>@_#@sDNyeks
z3wCLb*p{7V1E)yhrK6~SsjSqUaPvkmluuj0{>+__{RQmDTNh>FkA=EvKHBl#)xfjj
zYfq~``D?&FVQU9UBK3yezUx_Y4G6wa{Pyk#@B8Zs;no=ub^AFZx2W2?nCrR`w<z`-
zdHea7TYbiN>`nKSSoq@rm>awajDb?~In|bR$!{vl_gx}-El03!n-)Cfrwp(1ddqhX
z0wqewx%xPdvvrrH9Nh0+DS!1aC_8rUrB+K*ZRqvdS?e3YvDy-!|9;QILAigFG81lz
z1xF#HUtQR#Sy@*^Igpe!Qz<GDY*bINW!&3adl_dkqSQ7OvjyV5zTGInd3C+=?KnV(
z#$kM34C*on<q?-OYj~`fW1dr9J$sW`4k|C!u6wlMn5`^k7;^cgck~ObAzWNlGIuW6
zQ*yBx<~r^q65^~p6u&p_c_B=A5QE3nPPXx={K9=snRIZ1`v{+ze_TiBxSVay%pF^<
ze3@!AP8(lOLsI>5tGjqBPW2!_g}{MTd~Dm)ccU1g<+2<FB;mHdT|{3paBTYi3X>%P
z(35pllYC(I{)6%D^I{~k5tAFNvgCDWy&lV)a_*|+PKUq921Z=vKq+eQ&m~f4+sHzN
zuQp1wi%zPv_s*)cIPJfZA4G+3aeY#sM@FZQG$oIbC947)L$)a0N+N2t>k({d#zEdP
zud`I8AE}@Q>3S>41%?W*F0Zlr%fm&L7yrgHpUWgudRv#O`e#5j?^81kW?ImuR}?Ez
z=x~%-v8wHAgxebZ8Hc-v9VBG7k$*P^tn|a2hWxGM^wk61Z-@_PRrDRgBWH{Xh!@d4
z3q_*38aC!m0{<&Js^(Cdb%{{B;{FGSx^oGn=cpB3r=WAj(0>=a$)2QTeErN9|B$qP
z+c>`%1RL}|ni9bA{Hn(ERaAL?xDQQNuvWqd3lf7vI*hvM)=v@WTcpBC)*lH5%KOlm
zDu#%e1@M{W@Lmcy?CS8DA?n@VL{T$ES?EPs7)7hgMQu?riwe=vn7Lqwvlo@q2q*Yc
zPIx_CJo++S*z3%)ZO0IGqWaS$Yz<8Iy5wwUGHqEIZ8@I$&AYsqVhGwIR&~FL`QcWp
zR_}1I)?3!yUO{#qJPTz!^B5az7O3?&i)d5Qc)=i|GLx2YN!-5SJ|ecA=V9eEAw2(L
zqvu=}#k*DZ7)>k)gn`w7;Bkiea~KL^CC^r;_32xgQ5Tj9pX}UrFJ{GMHHvb??<FB(
zPjq!VR9Nrfy$eCZVcUBQ|8tgtPArvD56{MCzOKp_o8Q0${mS#x1Wt!C*l`dm!Ctqe
zvEPu(6Jy?l!L_dMP!p#w|2G5-9ud1TAt8u`xIj>Gfrh9${AAQ8JGLf&L?!Y>kt-tv
zu*nr$g*34w>;tz{vNaXe=&!pai9dEtTzh+bhVmOkEt>4pRccCd?O?o34VBEHa<AI0
z6(n)AFpz`r5ZKw_7Xd`hk%i~tA72sFjMH`6aghibhLNUf7_;&<I4_sJTif40TMIp)
zasu?T4&-M)HVx9{U>fIG6-0(;Meimpm0sxw17jqh0tcUAgcqX_{s5h2>|h%^C@|eI
zLl>7EyvHuqh7&gbjwEdQK?VNIh+WkS)i(49KN;74S1U?ukgbAf2RcO5^q50!*O#EC
zJduAZ3!V&FMCU~XkNzHjr-Wi0+-PnfTJVkldSp<#pAp#^X(eOkE+v_2KYGF({T=XG
zC430ZO4{ypOtG$&1yN+647cUC+UH~u;TBhGvxRFpV&8RI*Px?CGM+*{Xzit84T;Y_
zQ0nm5I=()6D;l$^4%O+3B||OQ36ad*_tNmdXondQ;b<h*CXd<NeDFB|ORlace|YLH
zsOt&kUQBq-`ykv5?GLB|4G5eUXPQ(w6{knjB^LITRse@tx>mdF?N3H)Y-$+`$M);b
zyimkE?Mr3T!ggZ!a7n`J6X>LRaE*dcfjnfh*s7=7kTQzUSZjsYQLQOJ7(^Soz3fp?
z>$C?j)A2P^bR4^go$HQ5jRpdUC-w_r_qug5Tme7z7urIx@DK`973Ikmbvx#A@*{2P
zRgs%VG%`rt>sJc0g*dD(Z)JuqyVy4J_>X+bdl_>}|Ma7Uks=u?U`$T?5x>%_*)&VM
z#^Byu)N&8bH_hxib`nL62y)rz7daz~$}O~UV?8sozb@RwP^&prod@v)=1Bf@dx-qu
zb3vrzJKvhSk;Cj;nqlD_xxM$$^lk_}!KZAX^fe7)?ZW0yO^p4zTetB^-dn+zs&m4W
zJDN)qw>WZi{uSZfcB&s^l%!|&-e<=Clzy^dD!`GJw$oM_yr{h{0i3|LyD3q5Cx#&D
zxgIRSE5?h}W_zz8zhBGiHZP8f^-G;aUY{tu$N`@Ux&Br?KVrV?&YpdMK0)XD_I6mj
z4vvLiE5QwT-}Key`F^RSB}G0R`~Osf6@-Wn!2`cOT?qo748JQ1;Xgf{{CCzB-;*II
z$M?(8{=kguO<zGWTEGg38*$)pKX}*Wrtg2ceHDc8g}@N`$!M^-zO7~)ibCZhpB*(5
zbx1s}4o5yi9<@R>Ymxyjdb1Uf_D4Q@P7nlkk9^)T9r-+K9;8I4@%1~g$9LP}@15g9
zt%FYCpT1rs#D+sMfoIAJUZ5jBfdK~a_jgA=4`1bK1-^nSx2<A)UK_hC0`?*!pRZIX
z(D*NQj7B~SoV5mzIByuSAJoi$x<wnnn$Gi@%jhBc3Zb~7H2JaUnARio4*SHZpP&*K
zC%L1Y75+K?s&)^9#9g3&AWqVA<r*H1pJdl)gi;`F4<jNJU3i3&1cEORT=`EbC5i7<
zOmub?0J<%N{6ACU|9TE4kIIfv3Q6k!Z$PFI%B{W}@OZ)lQ!wb6XUK@N01&<;4G(M{
z&=(Cf@>vtKRqO~qw|cA<JSS-`+Z=dk^jXPsM_Zr2_}`r)?PZ$>C4%QBWQMbO59%j*
z4?`KkK5KZlRZpp4@3*vb3eJOh4-Q{=&aFPe4!JEAU-0wR>FUY^b<V6lkTPZ0=k>>6
z5E{$;V%p2zyf_M_sK9=%&P@kl&#ewiMrtptcq)C?P)_sQgC81;F*1DC06ftf*38Zw
zS|x6Z9U|bmg^H!3k2rwbEMHxwPJJArA|?2lD@ldmv2hP(kG!$0i<G3dK=9nbFyo;y
zzyHg*)d(zVq2T$-PjKJoY_^bxMw2&AKwa6J*h2C{qet=kYd66D$yi-j&`R-z5>;qt
zHqTvQT=2Zy+6z2LlT6_MqU1F1LC@b=u>(stB!6XoYX<%6XTzk)W`0vFyAid<Rf9v#
zI-<t1+|v}}e<0eAjW3ac=Pm^aGE0Kz5(GYLq+DP^l+|J$8db{(!EOJf#uW$CZhsy2
zHranb<Q^wgj0xsHLv!Mh11zVi=}*CP$tQA5FdZ(z#e(O>lcLoPwOXV3-&Fo{+UNiu
zEY<oPSYY{08S)m}<?@8_)-t~yot0(!bxgy5l9S^r`mBw#bFIzWgOF0k8)|>4h*L<H
zj(;nX2>{LIJv`I6v~B{^D9-wspTLh>@rCu=YFqJSKF|H4_%~r=nczzP3j|mr17OvI
z*ZJ>0S()JZ{VLZO;|kqY%$uYjgB(#P5kqeHb+^xh^G8@2ts|i_4sDeBDsso`;oFt`
z(?%pMynrg)PBtbl#&!zE6u7CGqy2@Zcy{w+3v1Ian9lXF=RwS)r=Fnw1wbO|@j+gG
zamfcgVE@Cyo*5riu%>T?XuoX@<0n=g)|E`^tuNwU>Ier1W{(6zXOK^O4X-j|PtCxO
zzWXv46iXvw7-n6b9H5!u^eIgu>Yf_lOb_q;>oP+Q%79;PHQVdft>-chb|3c$P3!Qj
zR$}5lOnsbeC(*k}pq#V(PrHNEigsf?bwh8A{^m^D4j~8(a@%aLtW!T%62t6!y+;^C
zu~An9#c|}qLRn9!X0FaUS!8gGUr$wv)uk)k>ScL)=1^~4u;Hz=j1D;YP^`*w&$>;f
z+`uDctH5GO;|hjIHCmn-DeX#Y+9nv1jP=vpT2i0{pDP4JNyYcMmjT46;z~$wHjmq?
z;pDZRs^w2AxbmdHTRn-BSn}>&*7aRG^_^<07}B=$5vI0`dN09)h7WN^kbA5-7C4!H
z6R-tbENq9Nhz^eG2(aAT9~+kSe@*v3+1A&IC6Z<edVJ=Q3=sV_dvIM{RqfRWHu3P#
z%DGTb9j6fJsnx-@zq1c<AWKY*nK>!OqpknV=Jf@2{970St&(${tQ>mAGXD<nonNAY
z8`+#fynSNZ4dS31cD+cyPko|q(NJfBvF&FfL{(^wgeLSvq;)4eR2AbISM<0W@HoBw
zOt3F#rQ%P_D&QHv*{&0c!~K=r1RUp7*SF{)#R+p$mQ=+#XBW*yLDL|8CD|T%(8>-_
zM0+AZ)p=a~{%v4H9oo1<VCU=fLqSgokuBPz$yu%;sSfx?X*uE3bB0WBHOc8$0x42e
z+Zhm*W-eKGcrO3^@g)5D9N-vsUF^MncEr3^@T4JBh<nd$qY|KbWWr$%gd42*)?><%
zH=vjf^9^q$2FA0*0%NYh7B+jnN8(O5yU+Z-2CJ*ryu{F^OT@Ks3WRg-6@667y+`IL
zvg}-xz8YhE$78d){=)|t>jL`iU~Fz5zh%dvVff-dc7}Ii!9kMy!=!U|#{MpTL`46{
zf+ub7aLsBNr@73pdealP8%ozAM94k(+zD{Hwmb9KI}qI&9{c&oopFEn+ZzRk%i1Q1
z_TpvT!QVcPz3h`mUIITiU*)$vvV6RVt#JpsF5WA7ZmdzGzFr&+1cw=f60>|Zbk$-j
z6WoD*TUPIaIBq1u*S~#Jce9(`U)gNA3H}g>dA>=bPa8(={)#5c85_9cp!`b9d<MhR
zK>POW+K)XqA4t(yyP4q&px)+8zAW2Mrh9Obsa6)D0w|23;6geD-r3mD80_E}d+SmO
z3hBncB$P-_R`N)zFf85ST~lUez9La?_rHbm99#5wP`Bvey3S7{dE+4c7EkJCYglp~
zt!yF|IEByfIF+ZXFc42{icD%kFq;~7&ywb{vo_Bivmvb9qac#4WOFMdSn7|f6KpPd
zq)V=fFM8~fyCiJVH#3^nKsx;rw4#w^ONrf_m=kM9fiG<fFrl2LX}*+iUPW9d4z)wA
z8!AlFiDYg}GF<;%Yp0sBAz^EiSj7yWDr{k2UHeKvw63=?ojHYS&Lqkab*PhYM{U03
znaxz#EYF~kEq`Yd*02eR<Ti!307#XsI^H2!^r$VHWg3cx8uZ#Q%wfjLBe{SVD6e%f
zH_}PzZ?5mRb}kIJ<2%#5h#+&+c>ZpWYV38(DQIVc><8;RB+0I2k{Nm=_>>n%Y)%;}
zEuxLxF~OXkd;KeexI}!92uGYk0SJ889WmUHi{Vv-BMT;&wchQ>6xX7(O=#-HxFs4S
zpihv8=45uK)&_EJo#D~<a6|*T62$W(G+Q~i%Ic~;sko$~O^Dpf_~#h;=6?)pLCn(a
z3l<bR{wbI-w2&mJK;j&*3RsPtw*NXi_nG`ki{p6=x+(kAHUtjyS;Tkoj*R+>4!T_w
z?1X?K&v#$zjF`a_7b$Nj=n(#9ke}|uVyE0@zAbe{Vuj7dGgVM+QG4o%qghCe;L`O_
zU4P*BtAu$%TJHmK&0lr<A1@BIyGsoW{wu<2PEZxV7AX!B&zVSE+=YnWITGMViO;0`
z^A!ottFb|*z0oHx>kUU9VME%v$q9Ze`?2j|X7(m#aiKYp@n&NuyM7N%d_o#P&nN)Q
zHEYIo6T!2coxiHpAGT1<XvOh*ZtVA0EPf(`_Aq~66HKnzRNU9L&*RHPYB(s1vuH%t
zJ|?f!2#<0+Hv?fOE6|qagR!ql$BJ1IVb;KK6gQNk!E>tBIYg#v23C^Cj(mIay{47-
zvm1x%=(H)-Jj<zk15=pm=!-U%+)Nf79eBO=FM4YhNdF279msQW)uWSeQQAiAb~lT5
zm=?r8C!S~ARfO=Uq>+FzWOIV2zDmirD~nhRyFy4i9U1X}L>wt(Tjssbi<2Ob6m=f3
zad0y#K`oQ-_)x=|v2x^bdO*hrKQePW4FG`DyPH*-LnK*3tXLOg_Mp`C0^}f?x}rC+
z%rJ1k9WU|@s~Ng_N*2sa^BkKAOQMLr%Tz9^e2vujJ*j<cRDfmCk~Vy6!*we!>)M#u
z&M#&LC1<Bo4`ECyLXAuG`VH6Y`$it1#v|-EPPV#^t>I#|2ZVYiLn!R;q-`!K**FP$
zS>#EZ>^bV+SlU;ouuGk09<#2Wx9bPcVKlP{cca;04Uh#(xi6F}sviHSHi9M}*c(PI
zr~2{k6vO^l7TVNx)%Fsx=pz9?N}&R}Q3#JVE26bG9F3T_E+A0GFGM=W4iepbg0cj^
zj>1}N>v3-!pq6rO$erbmfOLTrW>@aO87DG%05MIJZ_E_y);aZ7%!nIth5i`|C%+zu
z7YlP)vbCnr*6e!^o~3(^BmTrT$q}}@sd2r32_-9C6F1DsT*Fsv!s$5t7*m_Z-6wWp
zR`x|p>P=_DucHSkv%z`K_+38ud}G&s!6~1<j-kB(yXTBjTIk`4FlnkBDlq}%ldd+A
z0Oi+D5&5Jv2FuYhuiEsq-Cvvj(p6Uq9@2JklhAge##cY&M1Rq$h)!O_9`^{&vk>O@
z<Il@Hg8JpK4R=w3)S8?wKAHShP!|1Fn#e{=j7_S=4;kf?rR%S#IcgGelDlpwY?2K<
zf`DJD(#0@FGj#n-xH&6{_>QwW%3^D4douLa2-++2mX1wtmU%=h=HHq!2Y&S-GX}P8
z5Ke**v5#O(Z!LVCw6b(_8m`_PLgHP@1fYrf91)4=PR=Ks9HX75qMdWe4tAojHPs4U
zk`GfzE!OZFPm67ENyYHN1lB^JgAgI7$du3;N<I)4qJ@WQIx6;0p}6e4HLWh&*7mja
za;EdC#F5&s4pZQScf+_ux~vnv!gME@Sc??AilO(uePJY5I;65h5Ayo*b4qxe0}E=@
z&6rF<HSf%rs}5sma!?}2l!hA!pYeS~E+-szetD=jt7tJewI<r|xxF<;YrC*=VzTm*
zPHWppYrqNT8>{mUgH&sr0m9{1kgYFuR7A-th+Op>RW{n<$W#DeVK5$HbU2qRX%azW
zc_RaG#vV06$#_giPPI?3kyP_tTBsq3kO#Nkkz?L?m?IkDGX5IN^Ocp(tB6$d&i@s6
zMRdrPGkUcMyFs1ayh3GCqcr1OhK)bP*j<Iqo@v-#$&Nyt&0P$4?~5rL>VFFsaA9#Z
zlN5WT#aNeL`ovjWAE+AbNW&Qt$`NMijWgbjtr;&#^lBrH<O2NRl7h|1iNpV!&RtIV
zEQ8!&*rAoZGH;}<w^shU;*|WQdkT74TPg1*^U$$9{q#i|kl0@1Q2)CkEz<Jf*O1n>
zwYvObFTbfCjG<Fkn(*Q3@ZBbFI^`HGgNDoDE0He}Y!h!;e*8k5_=j9{e~BL6Ktsj6
z@m^yk$s|yO0p(=vS55^4jZA+7Ab;+I_yTfd9(j8+b!%V52P&Rv2S?C?dF}+DX;6#N
zYRosirr$Ffn)dKH6=?h&>H@TZXjJfe>!oxT(!+to!7Gjt1-#6J%fvC&`wB{1tPd7-
z`>bT|RB4?kkmLh}rmu0QQhd>D7D>f$`;&u;ybp@9$R`Z4{!H3wx>Yvx)O*IGR5G(U
zWS5dJ7))ODgWG5@!;_)Cw(wNl1reJ+Bbc`bPQ)|6y9Reeki!hU+bV{!#2mw1Zx^k^
z9f?T@ht9f*yYBHJv6YRm3BWolp!1C=O?zi#34Jc-5-yzy7v4@3(T2*Q%_);;N@RKV
zmZVWYSpjhKjFLuHD@98@dSpa(L=36B<y1m>3H<=2CX|s#aBm=}adr#pV`lsfszk}b
zvk_UEA$vzOjeUZKRF@PnM1ck$%^@+D{Xi^tD;612#rGtHJS4w*<=A-(e+qo83AM-~
zI{<#i4;CWUtiQ+Xcu1gBdeNpR9PG8rgxN<&n+B17@oF4=fgOX)QwDaR{B(mF{iw(6
zF|D2K5sl2}QaRZEJvb7d^b|h^0tG6jR%YPF#`T<Ra_Wnj9O)k-InDl@5%WFcwH&WQ
z#}5lEM9+u}gd@L_L`B_70Qk`;DISPqvxN0FBA|N`K?>3a1~#|rG;8};mM(ICW++~?
ze@Jf1B4V^zd=UBNmxyU#QZU)06FGxVcbl&Uy!8G)Y@i9G6(rvibYg!8pKkE&#0(IR
zoKXQX#wI-9C0$=zQC7NSsI2v|p9kkbMCW*+Nplof{K<6z7FrAg@oxm&;i2olT#-TJ
z{)eOhl5&*fLeeXXVIfvgKxaTa(|SZp3ZR?m^lg{Kste;f%8h<0<JaIv^`M6`a5H}V
z0lx%%SIK5DJQ9zula-nmy8O|-MKy+EhjGgE8^tbAk|VnZT3!hO^8BYr?~h($<c&{h
zUGufdWC7lvBS=&}#U>#HZZ(k2VnX^I2%nyHC|VyG=vae91Aa-TU>f{|AlO!lRP+)a
zKmIxB;VX3zpceV@?HXz?6(k;I*2S>5$C$dr-sC88FHd@N3Ng!0Kb>*Ag74zg9UFP;
z)Qu9TgAYQ6%x4PH=<7TVfK-3uvP9l+Y~4q>3a1z0u3~82zKcS4IhU9EjSvWIA=?QR
z-eQM06*lC7KEZ}wZ@fTAXoDH-Y$VP(Tzrvr%6mjkNEE{~74Oj`UWBH8ccAv~#xyW%
zj4`MfEMvI#NdckCygtgj3RAzcQVS_Y)*Pi?-==uhU<PPM&S(G~7_J`~uGL3IK^QW=
zS(qP1nA^&c0eX=El93-uk=s>+0lx-)@)EBPQ$U1#>|6ShgllOzDqrhfyZ(f`a&mBx
zCK;rmA>bE)KI*;HdeU1>et^G-RU#eGR9|~A^NT@=n=;ftQ`uuo1k>D-lYgE@<-~68
z>rN)q{q+^O2KiZ?#4nyj>1R#3agI~a$Ujr_>%gvd=PZeR|8yu|k=8){hRO>Cm<XtA
zm5O~6BMH#Zg-AZ#H)U%Rn(!Yg2Q_Et=9~1Gb_R349PbmqsGGjZT$#+Z)i=%1YUAS3
zq%W@7xtQ5>Bu&O&NX*mc`5AEn5n8KyxVM)a#-+`itxvm@SDeKI`(ogt@{VkXf2rN!
zwbdIL$f+#g#Af5?(*CuRsaHE{t7o{g%zIV(NW3Fa?gcC%J&io;>d9`DMxe@f7dJ-%
za%k7bb=P0;0R_LYBp}U3NoVp!Dhe3kN~5YPr@NDbwlMSvhP#u~x+vS(WBeXtbYk@~
zSr>girWa(-L<K-dEAOVOsnIv7)!(w2iy1R>)H0ap%xKG$Si6-pSo22HyH>bL8}%z+
zDpPpqhg8zj$A3>0SeU7@a(Wq#SB$PXq;gd;(YgY)tT2{U#~UMV_RN~Iewms3ICd@+
z_?+YtOh;T(qm;3{|71cg-GH_pr1*m0X(03ysYD-^;U_Efa5qtj7aSW14*cKYT;8=z
zI*ELjeELlb$9ttp-yg=Z#UX=A!IDW9@32aUQum*`v=Aj>l`y5|qC0x<o_HLkS0BK^
zJA`^O62*o_x!B~=d->l>N52qc#M4SP6SE^f4ExU+gL(?_RJ+4zt}RB~loC(w3n)Cb
z{rkLgP}B!ca~=Jm17jWyWmJ(>vl`sENH{J9$6er|M%5iCJ9BwxM|rB0^`3sZ<&-a&
zOKq-qTfxze<Lc->qE-@k7SW82Usmd9Kn-ql95>sgcv=N<%IXNVRd4tdeFfh47Oj5Q
z#Ph&MrtE7u;=>~R#@a8@1^LVCQjGt2mdT&=ha2>+c@g0H11LeNpt5#Q>g{1(KVokX
zT|3-L;?7zX3|kU?U+eQ!4gEkVZ9w}@hdEuHaWUfmfntFdxIHt_ilJ~h<KKW{(X)+e
zXjH{=;WV4K$KdLf2uK$mx+@P;+V&xHdyoX(!vtQC?mgl|j|X552GB*456gL<Fxu|@
zISx+>=YgSz$ibHj{GmZxlq0{sD7=@n<nV7#2k!chy=Vc+ft5ft<_M!)K60Rtj-i4O
z5@fz88R4VLWFdRFh<;ahm5d*HCc-sTb5O}wboe!i3C?Ibi^SRbhIxxj8XqDBt)jZ<
z;{3x*L}go59R*m^Rk&+0a@k1@cxd|(adIhn0IZr~0pUA*;GJx1v<;l47ZxPiSpn{e
z6cBb!HK0H8vHdwEfUy4dm59!uZWPep)?n&CqmUSIYg+H%eG;6jDSO~xdw};;9r?PK
z>q%6j_%34ZpUCQo_?Pswv%~aVD+4em`*jbkR?+mzgIRJui9N-0^nogJaGT7a)V7uU
zQ^1n+Mgdi~g*0@})hPC{>@<Dkj%<ud7b|>D@zug)<CPj+^x+i!A1l)g0c~I&eLY1k
z$KS?hx}m*z&G-tl+64ogYH7su2gvx5{N}VLN99mKRw;3A#wbo75secMn^Mv7-wU{*
zwB3QBBg(il{-v*#u=TIo*ji9k^+D2UX-D45?1yxdPOLHq9#xZz6G~J<I*H=W!hfz0
z_YY?fN<%gd%@9OTngXg#Upo(F$5Bt!;G5rJKVbAO7nD3Vcyw<@DtPo>J*ty=`Gpjw
z`5F>Oy*KCsDnU#Clktw_x)8m>>|(FCVC&=M-aZQW!U75vZXE+AZ=ujM`#>Biq!3U3
zz+EH!4-T}RQK23>fVF2_`0bZ>Jd(WV>q9S)7qKzR)s+>~DFqr)#s?4h_~1`e8m3~D
z;DM>%EUL{CEG9aXs}3$RqOe_YPwT`<XDw|?Q?Z>!aJ8|lDnva-G95?2b;|s~LR)4#
zFGlX<Wd@zCr8+e6sz`tIE#@vlO}Q9jAo}G&F0XeBwgKH@M!k(kG;4~r+%80Ze{B*J
z0$$_`#q$UJn}}g#ChBzyc<-P*{MYeqU>1nL^R;DG+1QX7`eJop7?U#uAf=H8XDWUQ
zX#S+-A@<6VK>bq?`p+ZqM6iV0_fz>14>pOS*UoA|I5$L|9eMyp{ctB-AZ-4?ne8ZY
zR(J2WJ!g|ej}*{q#!rGKJguJu$W^u66o)JW7Mde5{Q`L9KYUOt6#i<x6eC`qO3U{x
z;%OEIu&wWIgJ!Heqf06??-mr-B)I6=1kM7_v`_kB1ZGC=bkPXr<AWP*5^@^zjGeZ{
zUPlngg=jDv@J1i+ZfS1pNV|l+14&arjL{`{<x6*Q#QL2UPSOSmVXFNsYJHO8;_=5W
z!sf^duP2wq2u7sHJJ@V+kk@F6sec*G0=zr#Sm~GvCopc1>dxa&38u<pM3sl#m4^x7
zsp5*xc=rI?3)XP*iD+G*{^NR;){bxn+#a`QI~=vLzuKJse0tPBjny1`y0LKv9VkCo
zkFtNkz+N$)(8E(b<BZmiFq#3Rt^>-R>0;}@+ZY<*(506_VmB*#SSTA^M)dn*hlb*a
z84<uZt9<xyh<|anOAkuYBZ?(052hnWLRu}Z=@q@gYSdx#%ZeNR<X<^GAWFmN>}@LT
zqN7iy<Kn#ZxsmSZj_Vrv#x7K30nw^_hj3h7PSLMLzmSjqDN*UBMCngAsjY)YUr(dp
z1}q>xXZ(w8gt|9*O5$oc<Xg0KSU}y&ahHL(7SEh&jg?QQSLCC=0EtuiJuz=p-|ZM)
z@e#Vtq;7-{9FASLRCnh=?{w6PbWwaXg~G`Ybu@3RIF-McM5MuBdUm>N_!Z{sPg4Xd
z<*1R6NJ1_`7CCM@Y9y(;sRXU(G?r3Kv%W4UuTt4xRi;`h?J30LLHQQ^GO3s!^+}~A
z&_}ATK{hv-C>ASMiQbC%uqO3{KtDf2mV2@*eCQ&lpxeKkHv%~1hp5Z`Aj22}sA~h0
zX>xRUet5962}cl_KZHp09fEL|FFb7bF?xn8egJ8B??N#zji}+!GC1G4-$P%44osva
ztA&H?>Iv>Og6DiAf!r1&dxnG8{n0x{N`8e0?fwc40jN!ZvLIK&fK(3{+O~Eq@BGoT
zD7@3K?bs;4A+k8Qd3M-f=2LqhBpKNnzOks%T{k0_EH}rjPIL5QId!lyO(XI;xlA^)
z-x}*Mfi(~5=c}h|TOOX|-aNx=Y52&xOZ1AQ|AqNOVtxk^$>v!bksEV2P?TOA*>8$B
zYvK{Px0FEAW%pYe3<V62wx*e+UHzT@mrHh%gJfFYw(kNTBSNp)r*L?C%6w}LAwFak
z^<J9Mn4j3>na{|wKN&kJRBXpaf)rf{{C0OGV!~~)$Y9He&NvycEg>TMp4D?LR6nek
z?*Uf{&&b);CMN1;$sHO8Rh=<2;o%(Cw4zrjgQVm%MHBVQ@N<9NZk8CITy)bv0!o?r
zLtc9vOV4MBSHyL#CN9n2w%h(ZL``{@R?WW$_>?mDs6571H{Q2R;u6KOH2giM1!q&5
zH|*<N$eS=I;p70Lsi_HD4D-k#jh2sjv*z4$5BE&FN<DpZ{yuwf7MPD-GGR-bam2Dn
z-7ZVo(K-3x_j1nKkZYEnzIqb(@od(-etyHQBanA}$=WbffjDT^3{qY00Waur6*Xa-
z&i{VQuA>XUNMH3o29-_NF7xf1HH+nb7^SaLun=@ix~Hk?o4<4mtMyITYV!RxYsNAa
zP3fMOi%3N9%slrh>zqu(1Y`Cute7=7rA*k0cmDyeW6#OjaPAtOz8a^((tra5FHs2F
zG5H|-mwmlX!7G!wIieLTv52mD^gV9+s<Haee<$;6u{2Z_>YDSX<QL(AC)ewnXP@uH
z<%3Bn>72w>cO!s5Jz$@O$?yo;I`x3_2>QtgqNjXK;TL(#dItY-2)_AMI+$DVmk&Fl
z6)WY`Vhdq>jQs-I4d26;_6P&euV`g5$}hr<s{&L|nioX}P%kHV1RXfTV>{8((N6J;
z@EsQtIpF(`%ZP0utc9`cQopABMa5d%{eAA!kZ{UWxq<N9r9Fy5QHLJhtJvp`?GaS1
zhSX;El7wjF5yb5>!7m~h)`{g>M1BeVMsS&92BI(Cyiu5)vllOo`j+Jp6vs`jM}h&O
zmz6(o^szh5Eokz)gs!?^y@a+KM#A(6qItQ_MBXin0sAHFF6I{*+Zf6%$Vmawmlw8T
zHCFe4v+R%a3uwKa4}(rD&g>YO4TLE1Opl;uR1jJ>mTP8@GwspBCokG^&uEz*tcA)i
zn+R*nKQ5q|xmkPPG(Cd!5yA3KBY`vHPH$RE)mx!8i;yrd8M{A@6qFRePpFWPz&yiG
zlcn;`?-As0{?E7I-~aYF|LMd^Nsee&5!*mG!K1o_zDH6qwWIw{YZ||ZPSzyc_wQ|3
zjiuwSIEka3z4;f=eoOxx3#Rgm<f~@}&|qfjz|H0s<Y!E#{~LIR^*^2kFQDHhOuKh$
zL5bP_NLtdkgqG*131uGX9|w!ic?tcODlIaM`4akkKhY!T1l9iF1B^L@ult-^Ah6hp
z)tDR}Ae`z?OV=aXG087d1NVBHTObcr<q_2F@Nvj5qTKQ^om+qf^|6^-FckQ4p)gxO
z2Il@exbh!!wOa_!z6tjVv*#j9{30KS^<dR+nrtBuj$ElY=75!AF4LJ(8-KOqOlJ`H
zeHTNMF{GYsfZym#!~X(-Kz_e9u$lGh>;xA35wLnQ{*l%j@`dN3jDGwaIW18{E#=P!
zzXxf0kMaUizaPqNa3x5KI5-XWa4_?mF(~peh(1iLm+7gGO#{BDMUZqBIHG1kpxjjm
zOol)j2Jjl*epeC5U?lOh#-&uf8;I0u8Kgp92>c7{fjZWuAN$ISde%jKv{?NXylwh4
zeky;db&=&2C_wKLB5E)VIi9~Bq}60UfKJ02Wd0#`1Qwu#3V#M^@%Wozf8f&H_RZhZ
zLUmRpn|2u99ez@HD;`7J40+>Tdrgq{{0-#0NNz((uiONZ9cJ5(pS*2u0m;s@?ZC{9
zwO}pbv7uu$eJ5uANe|ZI79cMpPun1Mh^FsC4Nux3Z3L$6M)DCyu;#@!_blV8X_al7
zUZ}rbfg1cRXE1N@Z!v%kuDgPHgC{~jtAotFm(#Cs^wc}+r-gtnE)p=xMFLg{0Y_0l
zA_~|=j44?9g@}s8dqeQX_z~|&KjJO)6NNihaNbCI>W}LKgn*-dB;ckHP~RW{4;Vtg
zSHyTp2ng4g2mzA}60pJ`0jGq3U^fV0ZRhtk{j!MKm(x!O=2SN^_jVKWI5#mbLuO{|
zImA4Vp8B<#m5Bd4!SC`X{-*xK|ERyv{!8LJC;0Ez`wIb6{YgNP5b%=_P$@uY-;2z<
z5VfzRFBHrf0mS@705Q)9Am)#eISH9_iMbe=b9BadQZPCKiLp^2F+LKA7oR7h8|d;T
z8C(c(zV=*YO-mjK(JB2Xz6i1hApQzpEl!zF@vnvO3v6T9Hk=sz{b%?oo)n{Z)zh?;
z_mrIXTXT-I<V-!P<WzEvQF4J(Py2(ig}p^T4}s7)gyqwh<2&>MR4Uc+mh>^e$M&qV
z<_)A4>Voww)^Aj%=G`1ft@MLvr5ZuhO6?$^r7T-68=_K(*$}D19c|-rZu<v&gu0;n
zAgQ~}csT|^)rHrgMKtt9;vyXMW_9^8`~|l1UY9S!bE2N!1oHWLIVL$ak^)K2mfP#;
zm*A_`k1sOls1Z+;Ino(uxltx)IiAzDY1^xrOWfCJiCa{&;%feE*W>?#miPak1}#5q
z1uZ}RzX)3Xy$@*l<^N;Q@;`0^TJ8f^eptelAGW}iA1?#0ywD0)ep!VppC{nT-Tw$z
z-sBG9$}1^w<-;Xh`EUzd`EYYV+btKg+bVG7Z`}c0`FI7c{O}#Xm9J6Y%4<6Q>u}|#
z6u5FcWc2Uh%JHf=0auQ{MgAMO^2Zz!u6&o{pWw=I5+&fue{=j3T=@Zq0$1MA`9BI*
ze#1d<<-?s4uKX<(u6&+T!j;eCi?0H%oRerLV+36JS5666{uR$H;L3;d+$G`4n+Uk_
zE6y_D%7YcS^5H66`LhaK`EV;-`EV;-`SAY+T=_!w%}Q|PyA-%`OOe~nB1?xW-^HX5
zTzQZJS8kC~Y?V?1uKYKW!r;n>C~)PyoD!}a(SihAIRY{ZxN>Y@0aqTZz?DC%z?JW^
zz?H98;L1Bve}3N|zeZUV6u9yMeDP7hl@Ab$j|5jfM1?Cqb0=`+Ta@MYTYd^$c`pU7
z{EQW@T(lii(Pm$0g)8SenQ-L;N?C3<;mQl{9IpH!0ayN|0#`o#AK}Uus>|*E3S7Cr
z6|UUh3RmuLE<5)UaOIf_T=|z)xbj`<a{EvPu6(E!u6(E!u6(FjNP$>xU#P&9XIkOP
zf1^SeT=^aau6%(4SME{Z%14=S<u(Pb+-8L<w^`xJZ6;j#WwG3zqQI3~+){-7|FQQT
z;89jt<M_O}xi1saGoiPDh`KI=N)#bON6`V@U3b+%T?H{gRyq?DS7u~riwaBt6;Of*
zgcbw~E%YABA}S;lu>zKL1!M33bI!f@EmM-{y5H~lKhOH@N8Y*bt*75}&podaOGdi#
zrIvK%2kq&~g^V)Nl{<e)x^f%EU(O7Qm+tl}qSBQwwWKS5%}7`Nuj<m3=l{P-SN<<+
zy7JOrovwVON>_gV*QG1Zw4^KFU`bd0vXQR*c1yZ)B}rwvawQF9x^krgWV-T^)^z3b
zf0K0OM=j~fkJ{6fAGN0|KWd~a&sXWnb5hN8<vFRA#$)79BVD=pX{0L`KT(seRq4wA
zYV`FeWp=luE8l2OSH97ju6(x9>@nTOR8PpCM!ItGQ>H7&cyE=iT*<v!q$|&~q$^j=
zVy7!tn2VLJe3m6$xlQQ)H`A31`E5;C{!xaRuDpftp2ta7{!xaQM(lLu=k4jrGwtch
zZ?~r_U;3M-E3b@5S3W-?U3q>)y7H3|>B`%r+S8T)HTD1B>B?uP+S8REOtq&g&-{hy
z%Fkz1pRRnHnXY^f>5fuMy7F0;bmb?|C+iZ9lq)hFjwW=i!$ptees{@i<Cq}5DTO&|
zIaEE;Q!*qq&7mDOvT5gF7roNb9L>o?+zOjCNl$aMAP+J9%%Km?W|5Ejg7g-(e6)Uo
z<23r+$?bdtZcIl*vsUDGzLB!1Wu(c3tzP`u1AaDtz@ha)7X1l+I4*KR`+ciKhsWh#
z?XheOylw=q?gnU^53S+hX@vj9$6gRse}syE#sF<}b7dbAg>BHyb@F}n<4+0BHf_+&
zr6%sU_zO$(nX37h2jexr*xvjS1;-y%(@)|yZEbHVHuVTd+SF$`k`N7-3J2S1@~K@a
z9BkspW#k;I(@WDVajXbR5t0g^3Tcjnx<x%uo^!{Qt^|F350EgdnRcb?7HvZheyi?F
z?#FLW)__|QbIlrjYDm*EHOz~s!=pny)={Nc-I?oPX`Pbuc*o=$U1*FY8NFs|S(@2z
zU0X%bf3md<?1`ue0W6ZWTXk%oh7Vwpq>3iV*yLI?fntmY)=H|SXRMZ$YiZXt#RCG$
zg|Glqp4%o-FImHmz@8Ax#IYOj=(#t94xMJRM!D2k<GMyo<PS$Oy=;0Zl;Uo@nYEGZ
zsJUBHO)g2f(Un8cYEhTE%c*afHE<Jm;Gb5>FujYCX=<&pVkZ2)I9bDoEGliIX*Uvj
zE^#|>u~WLGseXWxY_I{nbXiO2wjI3rojH5#@^bsku=8$ppYD-@9si!&mfsdf7l?A(
zha^a}YeN&iLV$EukGfb92q-yO)WDxtrCNGKl(ny?;js8FmxvOm>uMeiz-z?Vc-EjP
z09>n};c#@UZ^LgVIcl;PHP1?df-XF%wg#Q8P!QPZBG%z>bal&N47hY_CQB40c6UK@
z>xez9BO+1sYz<`6C7FTD>Sa`xK)DVVj+L&r(LEroH<xd2kZ?0N;>JYiq)RfAo;j+w
zt^qiQqfacvJ|z~=H`PXRHwnIfvPTNi<IQe|omL%=KiDt=DEgzpEF3%dleNF(<kaMp
zWSrzJwn@s>{<(pTBK{)4EXTgp1sx%NZUY;|aXUeZo0WZbz++KA0v@R5JCKsF<W4KB
z9FDt;0UVCMT47>C>D}Dc=pJqZP=BM3Stwu!m=qxadap54iHd;@Y!rB3JqN<l;mGF^
zqO>440<?pSv9RI&b}VAiU|E!G((2#1WSs{r(8L!*B1D73F*H-VIL!rw*d*;%JyW|y
z%K)YtCaDwl?88x>IUFNQq2zFkOw=N=IEthlfPHia;(9-DoMrii01v0NV2q7`fwUh4
zOgj<N52f0K%-CE<Zx{Z+<vbjXFA4C!o1~6B`iNWWni5xzjWa}&!x6ATPf6mSiBSCM
z&`cm<DS{|L0R$(>Om0pzLB|E?bfppMw1KXiCbwhPNlNYj6ks-Wh0IJ=or8WfMG4kV
zO*Mwa`e{n$rz>%uk!Y)*sqm6j-xvtAppwE^CA)#;N4-=_wfYJb_@hChZQ>2hcQ}zo
zrrd5U6jl?HS+TUKfe{Own<*~C2F<wzqAe7rqmY-wjTt5Y9$Mxa^FRt|m1}!@kuV@y
zTPo@JRd3Cl33aZ^&fA!Cz>1gT+J0VYnnssd?5p2J%~f@Gxz%d=y=hIgMK+9>0<I4g
zsRc~7b+@xj4F<i!4o_RvD{V6LswjQcUKoU+Vol|FwNfqDm^i^I9b$~5mUk_J=SEj<
z3Qnk_v?GZBI+^?@m!aC^S>HtT=TW8zcF{Qs5~^Ak3yxvnuDKSH?WRn}?%am*9^BTZ
zr-@jh|9gqia7wvQKx)`NQ&D)mwNMoGwnIo1-e4^hMK?y)vkMke`u<O}{6f*9tUD4Z
zsRsFC<K|Z0lx8-!%p=E2JT1}2ZWUMZTx6%A)^<^IvDFqKNg`D6C5qWDjVmTDvx~If
zsolusro8#RMc%ZvjzreC*ba#e6v+y!+_}QeE>~Ka>?%_xwYM`&u8^Ep=gQe%V@MG-
z>ki63zgBF6I&x`wbuy(&o?=IXwSlqK?xl;^i*?PlkU}@H!|7g)l;~lVI`J6U&W+ba
zbK~`~xVv|>6u2Rp;cv9}_CNdJH?j|6SqBCPe;FgkWwlmzR;z)ft*p|<r0PpdzP!}J
zmzPEI<?j^h+wA~5KekmY;x>7)o!wr!LJ5Q`?K0-7NWO0$VeaQfG40h#EM21*y92J^
zN*ArbQ0Ps8QadKw6nV7z&$Am#9xGpVwoFZIpM^Z>Dr7}BB|Ey?OqCvy+}zU~9`-CI
zqyG1}{5NK4J2yM++?*u1xvt60$#!l|v2$~(;^s8P&FOY-&QRQ(X=lc2nA^^#^{l*J
z-^%L^Oa^W!7`Tz0fg4-3a1*;0ZW_(J&8*DZ+{(NyknVEgYT=f4mW?#{BUz%g;=zlp
zZ-AZSiik_>A|jsAZ&#O>E57=@V&}G2o{!*d%lxmf%9txn8FN*nFlisf%TX%Y%Do+|
zTJ>6?X*=4*M<>CHc@aXxqj<A(HA=XPMQU`7<l1hrxU+jKR_qanzk5cra<6Db9A%;Z
zPZj@Ps^Vyk(88_}axB|t7`UZ{{F0?I7L<FD>2_~z;jxQNu4z+^9*W$hTlLUoiXDHK
zYunad9w{e&AIWcRBQ==YE<oA|p1Q)y=2x1s;wqDs+eh+8ZY=(|`hP0uKUP7}gxkbQ
zxJ_dbk#rz7vy*OfJGr#TwRDqXC9sx?z*^a<@S;d!Hx-eUV%k{9-D*}wlFVgM)Dd<u
zM}p&Zj;Dd&r=`NbnubIJ{~J4C=nzM{;UoO*MvV2}KYUobfg{>?Y>WT28$4{_kiz@&
z<%{<2j-uYE``g`@KgK_N_>j^0{<hb)8#R2mzg^+zQSF8dzPH_=fdkt;bnP|wT$9^&
zRQ`SU5Ae4gGI&_wL+!3ry*a3=>iXWn{?WD)`|HtTN7r_4@QxlGFbiCh(V^oW{OKNu
zs~vvt-|`3g-S-199HagB-Ireg&&=WQj~$Ue8Xgm=c<^v|1Xw{&>JcV#PyVP;Lk5rb
zi)!#=n0%)i1G)-_L52H7@t}M^%v?5yPKU|o5o1RTA0_87bb$YU*~#Fc`JxZ`#4WR}
z12ywuaras0e_#ISfupPiBgWo8VD$a!`M&&n3kQiG_m1`F4;VFSz*uYT=)yXpaCBs?
z(bgKU!hyr@%eU5vEP`4?h7TKLt%AP+0Hg9pjFSBV^;jzu3>iMaZ!H)&eCUWF`43r(
zMhzG?$TslM{Gr1~*%sw5ghufTaAtrY+sv%L>)=Pp2HM`+e#86WkrncX6%MtLRleUo
zM;qP{lf&;Tv`@02aM(cG+J_7nZNoyr;D`o;?TZ>QcHn>!qoG#?yZh`<RHb0lfT6OO
z9<3etM-3R5fA4^S56CqP89dN7;K2MLHgpa4=SPs<X#W6ze&mlj$OXf!72#+8sKEmV
z3>iGYw!#PV2Rtw;zrfC)qY4N5N9T_eKZn7TM~@g_pVx@N10NUygkE4Lo%`|!j#hI4
zMjbwCw0bklpZ}1;%<%h07mhG_QHYOGg~Q|$hssyT7DN1lhY7r?x&x8x#SaoM_d7tH
zJ~&|1u))Iy8Dj&1D)@~VFho2KxOX%{+aECs)gLmrAb;T4foc?36ug)1%pN@V77iZb
zZ##Hc7YYX9qa8^J&z%#IA?%e*jWZYTn2rBtHNt<}!81$JbS*J~bDb?7r6ocgb~;t#
z^|36Q?H#Fc-hgN6^hRgv(n@&>OV)T}7te7)AG*eKbk?7`)^rztNN0QJX+HSr!XN2e
zzX`f7;&pY+4ITWA>pH&G3tc=_cflB0Y-(ko6nal)UoF$TyuR+GktbCKaA=y)*UL1G
zH>6o&Z86JlurO86<c;(R)MA3A#kcqp=L5@nsEjA+TG(H}@6y>dZdyK@axOq~zM8<1
z3d_jS|Add1XVa<#MCOhZV||z=z_DqB9UME-y)K?oF9I6FHSwsis<|+YyLFZp5~D8v
zpf;m^FkFl}FGGwvb+~=h&oinY^~f9;^&Wkq81q1_#@s2#+$P67Gt55boXqOST#aM?
zU1uj8A%Xk9$HqNj{M};#A9S0^7Ov3zRPy$*z!_EIg}URRhlXM%CytqDU9<v5X(kBa
z^f5^Yi?OhUD11{DF0mAzQiUa0*hmzfRE0}d5FMrR=DPC_G~!Xqh|5-(gycV?2<Z`>
zt=5XgLLZ4o<e6h=X)BHfoH?|%ij~IN5Dg7=KMl9|s5#v6mF5DM9hEaYfrX7l;Zjw2
z5(`_2!V*<@3JYB@+pH157ANTC67}*;eA!$8b%ABf(<?1Y^r<C|*4fXlV$Kl}FxmQj
zcxE2d=mQK2re>n%=N$ed>V5EESB!t^(-U`6Ee*Q8iD&AX2Oc`%gU<tu0rF|Yhf+Sx
zd|0E=V0`W@g+Kjx20U_o3Qs|B4#e7FRr|GUc$E!>89b>KEJ@SZ)RzNZC~J^SG&_)e
zatPMt90NTSA-w%(Jbs?y16s}S=0LYibbq<Nkf5>RMT7=OLhhut*=)~YtpIA)b>~2Z
zB%N)1F%ZTVI@@ws3-O*h`^Sh7O}8h^pc#(B>iT#yHl`H1?hJI%K&*trGMx1H0~fBt
z%{hPoV8ZlGI5s}9={o{G0w)8Gqjxw9QHy=L6{x0xDCLdu?+v1^SHFv=QP&HIp14;p
zq~*-oVOfqp5o@rsTQ#i@V%g_&<C56I9f1Npr28u1eFl32Ub}gBoqau|6v#Ro9@BZ9
zNdmA{$E<+W*(Br%rXS*bqRZKth8+Jo4(UpS+CQz*G$4~y_Hj>5YMa!CO4aZjmK@fh
z)*zf=kw;MD&#xJ+AANyZGiMjgk7VY<e@Z2!H1;IXEj{A$@IjDcu@F=511-mFIJ<_1
zXW})SRYSwG@fyyI*RVh|JQuHFQ4I}0h}SS&L&Fb|(UBLm{XRj~AO?zcUnw9Y_CJVj
z>hGV}6l{#dgbIEi{sDT`CkS2*@oqZX7bqvX>1LsurImKNIkGH@Zq~hFV19q8q?<XP
z2BHavC54f8%8+*MM%sD5NE5{KirK}%(rSt4z_IF4`NE1gfZbn1!`1N`me<g5O}vKt
z;x&}0d@)|by)`s^DPF@pH8gyAMI`Znnk>+Lo|=hg&Wh@Yr?bxfDT${u63<0~cq)!t
ziKjCwUJ9M)U6Fn!XkKFhA!7mKE301s8j&#@K3YS=Z{julxuW`pWP}pP3VC7+0kj#F
zfeIVY3@ClHtU4%ZkLB<#pyQZVSRGveRH?IhozZAZqn)9%f4xD9K9xOL3Tjqa7w3pQ
zESB6;rJ8uNoy0{psVCI7*{n2Z>WyNLs6G{Vir3LKbDR%p95$yE^inf9%KMR{%!N77
zn=Q2(<%y_K&WhEfvuALe#&Vo@BFA}FjZ;>uab`q~^PU)|0V~FFTFG%vM~<^VjkCVm
zaSG%(Go!|NTa1&&7UDRK<TxiI$9Z0j^GdD8c`|C8H^n$Ewiw50F2|{i9A}9d=f&#B
zk=B2yFcCw7h|j-)YD2sVN4@gImIsMgjUC*qfraGC#@%8XZ*(;nS!2CC!`Tgo^!mUQ
zdC*5j6PSp+QD2^U1N}lfr#TqelL3HZse;Q@{|;$cy(E~VnC6d`Pzu(VOv`(H7n)YM
zJfB?N%AkUTSC~dWY?hkjHKVQ;ukMek?vY)QV2i5z6V&BR^oG3YL$J9WQ$^Nu3eC6=
z&RD<Mg|*?aGjFPAbJuO~*oTZ>`0IkQOnB(RTT&BNSL};-MhzT^FQ_|Zi=5_;YHLf|
z@E@x7_8R*J3k)jr6!xGOo|D`;Ic~Q={O3CZZoLXt6$-&WRifv~P+70XlW!$aCe}Vd
z+QnkizP>ignW-kYE($|2YR^)&*Vb5DE$2qA^|LJ{96`CDr1q}RN`>t094&jFJ0@lC
zJ1Z=*_nBi6T=(t@DSN*>RvT$`bVVe0&!=(N`ztK6cTVIeXI4nwuBz22l~JS26RQE`
zf#bB0<2)HT&If9o^R*i1WYjoMt8qTEjx#fIoR8HwpHw@Jl8L9I#+iLg%HB^_SY+>v
z$Z`Iy#`&mL<Gd3!PSG(bd(W@1$lfO+$GM=!IamESa!a$qCSVsIGiC3os8{i2Zzr8i
zSgt6z6Hsunq~Jbc?(bL7+>_b-<v_v83-?w<#N3OQOA6jlSsNG?EjM5!$9bnha>{ed
z0Y(kwIHw}VS-4!nXl<>=nH@FG=?aPSMav22Vw~fV<1AL=yj1--qW06vZ2-Se5y(-v
zm=X2LV*>xrI{RXo0{)-%^kVMp%5^WPwz}vPX`;J<Ua+ISGz0S;u(^-tpi<LOQ!+Ur
zUiT)hUrv=!!q#oZwZS>O?&ZZ?s|S*d-=?!wTA3K|HZ`E%9IzP-m}4E#cn3C+k6#@7
zRcm;4iI~e6oJ)!puSSf<&EZu`%d5H%#$170uHbesy3`78|IJp=0$#PMb_JI}jo<wy
zD*!4y(Vz^yMDSlD{OO0$Sc)@?yZU3V9_~WV76$`BSTZw_FwKG_eKt>Z@k|%kznZfE
zY@#kan|!E1VXtitgk!3-IlDE@nI*|^Q^2c-gkGEh<vfYq5<(ZA+edbXP|34#9%Yt!
z+z~mCyQ-asGbdsqQ2vS<cKU9qj$hg=I4sE(QQIjErYBX+m*drhejm|cZE-r*+18+j
zrbj(c;=9mk3N{XJ7=m3y{}2|oa`V(Xc~U(PKhR-)VOS+O3v8ppIANdY<V9;Isjw*-
zTR~30lxz?p*;rDDAWimo#isSmT>-zjX?3z^&;(4;AAz?n_8yozG$Po(49`_my>zxn
zn3d4OQCklg^af@-G|U^ai(&TcPB*SI+vkGkG>wqb5OI~N_aM_T6_D4QaN}g3?+BDb
zFU{GstyDw!Tt2e82i+)(fi||nFtRyWrD8T<L3ypS*$J}=Bg|4Y=F(QNtQ_ib!p>^&
zCG7rfTWN(!Y{!m34v{I8cyd&cyI7TJIUXFq=Y;{_-QbX3k(dCwc?YPy5Rz1;&K`$q
z&gXd!3k7|Ij~qRNXZD45t0VzWL?hFW8)pu@noebv!V|0A?E_iM9`^GlA)aw7nXx_s
zYGE<XG#M9Km;>d>ZhS(I_1$3cP8gSPHFVP$MaM(v&QEr_p}5c+=IJH8Q3ag<2#<9U
zl89cwu|~#3o*v?j!@RyH6b8ZK<8G*v;pOSraliVE&LcGT<=%jWBvM&uBa)7n4{%-u
zOD+Lw1T~h8^yczFK|k0YXuO>V%J1Qq<7teKUyi?E2UH*6c569u>_vFY;Nus00I&V@
zQeKa>^ig9N1^(`*zxDox{d%!imh98feksHaamE>b|Ci9?A{@#K1rKS|KMLJz{LuH^
zfaf$)<%sh7`Wg1V1NR0=AmFrqzMK$X=#K@wna}Crjaa&9jfV;KV4KqrAW=_mXZDQ(
z3FwNa)`M<S5clhX&a4{Y1H{{`oLV?HBl=QIbH0GLX8m(`OP|w?kYS^=Xh>zyc^I3T
z=)|)Qc+BK3=OEgmrOU0F{F|Na68}lkLh(3>D5~9Lq}X&n%hrS=9!M@l{uNBH-^F<&
z+{8LPIqsYgZRfy@VnsX1oc|2y8Fh%O)a^wm^a@e?G!VO)dWbjZ$FtBL=pSo<44wTM
z$hXxn-VA}!kEB|v?sVn4kY?zSH)g9CuvH@$&8IPYh?qFpM{?<@P11o1l8(J4gla?f
zJZO#zA!t7qWiIxlsEIg~TgM+zr-(Iv?jow!a2x)d+Qrf|Q}spJsA1rtkNo=w-T?ky
z=I8DFQ0*hCUaud|xSiMQ%ro-jzo?;b4JjUVd<1_h@h@ncv~lpG2f^cNATX$t0isWI
zzmRuD6QMCe<Su>%$VY@|Hj#U}AIQB?m}^%cCl9J1{KCrD1;apd|8#&%ZJ}!+B*$(v
z{UlJ!joD(53yCi3AyHpI)2ahD$qbwtd($s8(Z`zuR^c~H_v^kg^h~cjEaYn_1cGC`
zUvv6_q%Xy-57>0tJvjwH(c3_nrTBREetzxG{OWS3*x2dzmO-5ykXrXZjXOO2YGCDZ
z{MV<mr|LR|bwQRd5CcuNh$fvp-*~Kt&cv1Es7&zk<h$U-CV~^FbwcarR|HxuT8XDL
z1iIXHP$R`go=x_`D`0StyOZ3X4U8w^$Q0ozKS+nEMF6nD)MrvQJl?L6loq17pWOc!
zDpT9VlLfI5>gd!jUp??<qj{1S{jQ(`u9a&c`74)`g2!%7))UEyjS0!F3Iz;qgJJ%P
zCkAa%@n*0rP+lJPAZnU4AK<(QR!b0gISvG%=R*<(I$QEepxmn5U&plqZ&MF1$sTZA
zs5`RMteL{zIH=V7;#UGuZzR0#`48c>%7hosxGRM47_P;D2a2IHykUJ<>>&qI`Epd<
z_&!4)N22!mSFEDe#g2(d79#QEUc`}<@aWI-9Cq?(Vbk0N<!L<o=0u7nSg|GG6{@;o
zC$z1r&%tu`{1&nI12MCcU^j=fm?0;^LZBC6DcM_f3lL~Y$S1<#<UvdG!5muMP;|@C
zf$~{^*)p<fkgS`s%B`9JO#=ZU;pp6E-TFc22e*Uff$kd$)pM7}+T9vUcdy#J6OOBm
zk=^Zr?hyIFtv=qF-4zNo4q=SM0F(%+Xa>TXK-B;fM<aKY@Yig!iH}F{e3q=;t614~
zm_s`+fV7ena3-iuQr;koU|Jq8&sohIkM=_WQnrQ$Yd!rq@4%Lh1&bXhs{^RE3^v9G
zMRh&AVIQ2^D1VG2cQ+Yea$^KA_l5AdoQ)`^bNEtNLjyFSxpN6&t*_2X>IgHeFPLHV
z@8ErJ!++(;H}1v(f)wxpy}YzT9H6lMTV(_SdwB;QP3N%B|1QWrQ*1p7jlBp>ugqe}
z?Wdlx5}TAL{jpo^NBA0BzC$bU=17;`+gk$#!Vp~u6M$l{0KffvjxYgBc}q4C-{yKr
znt$<kKf<9Lf8_FRY;N6zHaOS%Xzg^<QL-hm20p>jUu?9R$WAt4uO_5$YPM9sUY)fB
zi%3}4EX9o`J2d>pfkxy%g1%xH{?8h08rc$!b{%g83Q$!yqiWA-U_r5W0zTcZiQlBH
z-V79wzkw~LtuWgbC?~35oe>P<H4U~&`W<=(D9R+<cY=+~-sP}$1v93;3i`S5Qb22v
zO+g^j{;45k$(51p#Q+u#NELfu5;z#x(u>N0*|7tioq2)S*{QQ<U(+-{Dt`9;SdEaB
zB-v!rdK*cXAW0XaHn|`*qL|<}V~Ig{V;^?+xL!tjJy{$Dc-X{;oneK5B(*tNv%wDe
zeft#TSw~I59-w;O;jBQA%?gG9EIxM*!WhV#Knx{S_;R!cPslRaqPz-!0lL8C&vfY|
zZ!RJr&QGiXh#s9S!cZ1=n*06(XqMxU+x~8c=8m-%Xo}tbjsvu6wmz}I1n1_zD{#^V
z>*!jb4gkDg^#A!`O|!zc6Z`b<CVV?Z5cuA8b}+xVU#L9+X5GtMCbV%O^?vFg>Rk}5
z5Fjkq^kM{UF>MITV9N&dSc)aj1T{gtpE$@ce=1n6ppK;<I*J9pD)868p-yA?;nUrk
z_)UCtQvo2xho%WD!+-FJ>jn5PnhQJ(jV{KCu0X84obcZ#{pI8A$f|rfg7m={3`diG
z$vA;4=<9TX-^5E1_p;L?6IyA)#PjOuyy+y~&`Wy~>JcrjusC<d(hot7JeP(Mc`i#(
z=V38Z9YinA6pEg6NzX?gAz5+DF^FGAGv9<$DImAbNDS7wkv4X;<P}1Bn>zi78p5vD
zk#KKuMJsgD=V8QPbJXYeB5O7$eSWW}6f9V_ALgF2gr~X4fq0XLck=K)US6+^^wFM?
zYNN40%?lNv*DyHjlbaKJawH!*>#%1>qv+RK4Wt*_3bUbif$Fc%uQnSHC|7GfA*w^V
z*YEeh><nLoSNI}8U#|g{h;K|3RcB1RB8&+yY)9BhG$x!r0!A%h83)nO+}T(nx(X3}
z)#r8#rJuA=D#=1AL;m_AjokDhc<xLb#YEU7xvTc937~_gF5C1f#Rv;`)uuHOdn#!Z
z>Fh;V2FRb(JkYLn*y%JfFj^H5aCFum_lPdu22B(X@95!PZw2})MtYs3<xi#w%at7g
z%1Uz8K<tt9bQwt8*T^-ubfg=`zl@zo6TdvjV?Z5(xroR6^n*DiT#}8OzuvH;yNtb?
z27qD<M!MZVG!1-FX4_C!q&chbpqvi{#!qryDMtTs6B*VZD<<qFsdYFpfqlJ638SgI
zk;RiJdW8N#x!@ctodx?9od~DhRx2e!-{0=ge0}KE_{dk^8?S!eq5?+&Hp{nYL^N5f
za%VtR{c#7-a}HZ!8gmv~Zf3MCS83XEhovny#cIn*N5f}3q_cPO)+iPD1-uK%prqNt
z(nQ??hF-`x(}i-6@<@Lav#$_&N}tE`V6+OSogoE`8z9^ot@3eK9?$5<UAL16!o7T$
z*H0r-O7c;q`s}@NrLbQrP5>K^y*my{*@6Tw)o;n(8Yd;W6u#(6s*eBy_Pt&CH$omV
zH4co^gasOcPM0SLiF|q-7<I+44^KegYsDT6L)}oPSoGQx$fTKblIgUs59AOGi<kJj
zWjSw-q&bWBgef}9_bb^^z%MP}Z9V8^N?r&9J8!1-q{%%-atD%bD8n!IqEJtQ7s%ol
zdw2?1NjLK3w&c?CLiKuXqW`*rU30^3FTc`5!wOOmOnqo$1cj~HtNC!Je%_%qlwMTl
z5Vc9_JdqkL-B{hRfJE-ReG<7P@oV1#!sa25n}}x-)GvSylD?r9V|b{^Gt`7EtFs#d
z?hwkN$@?fQ;sA+%S9Z1_bOG-s?6pGL+#^sM-NaqJ$?QVVHtNf>Z{sT7r8&?*kjxGj
z!eV7zj32R`!xVwUD~A6g7^iE3b?WL5k=fAN$Ge4jXCU4_M3xV_`w{%=@uUeZ0O~QG
z)ERzmg9)uH6ztguUZxEsTcEjKpQrzY9vcBorrb_M3eTCe32QE>mVh*GPqpX$0uie>
zNkq)8P3<+R_MF<(4kNVFMX()kq3};l4vHXZ&1L^b$DJ+v)`1M#1De+ZzN5e!uD@Vt
zPIcVY0G%U9zh{hB={g;GJ6X}jK*A;Bz~=m3GPzi$I6VG(gAyc3=+1U}%f&p$D`Na=
zL%_ZW6iGxfy4thM2nv+6v`NfK@-IsXE57Yhp!n9uFLm4aw!WQj|7_#ia`LBI`L>vj
zze32h7`Dz@3rfE{%rC`Pi|JP?^OoTa8n(lMhtV4UeI9StnP<cL=j(R@foAijog@Vj
zgCott-$AtS=S)UFBbNOfE;|k;;B`tV;vhseUn3D}u)7+bd_^y(sD&5yk~-`ui#HKN
z;Oeh{zn6CASLBf&SAZKuU{~I1AQ^$J!QO(F*=UbTC9(qs)O{63Fq8U!I(YbbkLD>y
zd-XmIapgz5?3>YsBgKncpCpcg+#akqIYpz>V=Tl?si&Mo$E>md>NXGi_a5>(33yE{
zvrrNc65cwf3j^$tTQ>B2Im?}4-RXm^8DQiJX%h=adl4)ro40uu-E}T_7Jj={^tZG8
zEzK%BVgTC50ED_$g+nY2YB6V{<{PFJJX01Z*2{I@8RWh-h=2yV2xn_0{!$-XHrnhr
zy+rr<sGqZY2xaW2(N*Gx#{*z!ycP&Y+){)8<jD(f=MwP`Q1KqzxwS0z6{Gf5wpp29
z+;rKOjC+@t(f)=_tqV_RH9QW>#?y&hu-wo}@1SeshSJdRVjFe@=#Ewndoflsp9kA*
zRPE4pOqEy19D^!vil~g{P7Bx(w~|Fo@EVo)SI_wBdf=K_VzszZ0B9eL-^^Npt;*1-
zRZDzYF7e}J&AEW~A!R|N|Gf?`JyX=db_W7ch*N)D))_`B6MA2sBC!25)urw~Ocq5?
zsiK>8gsQVOcHg+5rryb3Iq1-0#2aD^dWyC4IFg==qkhSD9odW&8E^2}=&HCAAH`m;
zOK9w7p&z6kevKrZQN*_{))a4ISx9GUp}bXCS8U>Q^$;QtuL}*ta(6L;V7Sw#(SKm_
zrfZh#bKgj`OikAGGFVHBE8?bHAG(8wVqk>Mc796;;#XOzTo5_GR8DjRd5-U3ElTmQ
zc(JC3`BF_dDU!T6#WI+Xhu?y8{1XyMKbPE4vETXB_05;RiwJkxKS?X)DGe0<rhFfe
zki+whiLkEy8mnK0H9HoAkgVjatyoP|gJC+`Jy8S$Bv<jfU}VrjV1@A@ZhoN=CpW|d
z177v5@S66$yp;9@4C>qzJwhB|9}=gOWs{&w3v`zU4e&mtvCDnjud~N`!`=%DuQ7ov
zLHv6OVyFbT?Z=wsa6cR9g{^io4=lk$OCUJAq}PWfg~h(`>z9LgVEfo1pzS-wnge<P
zAFmNB`d|w`M`M@b_Lem*cD9SAgSBF&$wGK*Y*WykgSEFiLJDc)Up69%CBuAw$U#1W
zZ9y%EFVq<5-Z45m5dcjCeO()|K<<|78$-0-k2THVW7vJTzNQiDqw{d44^ouV+GnoV
zCsus=6<YCP;AXJ_G-oF_d<Pw+B(Pq>*<oCy!{DlNY7Dd4sG5IlYmSlfhh+2l*c{rl
z@v@|{NZ=OZvhO38$0-M1yo?3g#|+qhMz9SdY!_*)U5FRL#(i)VzU^SsEQ%!By5ub*
zy2^p7ypVV{lU(<O>>f8xt&5+`^grko{LjdDw|In)P?~6$`otsX{AOgJgGQ)_0VHX9
z7eU61Juf3x(%2h-Q=?GaC1mWJ!*JYf_6pGLxf+$(+SxG_O)2V`wf_=&CJZb7cR(w5
z^Wp4jA42Ni1S!?uO4(n<)mkjhUgDLEU58cWhWTGnJDLpL9O~AIVCZ8GEq3=deir>!
zqkw>&pS{M$%|`<UH{Z-=gP;SRUKOmuE2*3B7c_rOOf3FB3X7vHSR8G~;?00XB|ZOp
zSX@6qfaO4Q#NwKj@vunOS8P}u788plvcFT!V`A~S0R|SoZuTp%XzAXDMbU5dSX|hm
zR#+UVv(P>Vp;6)OYJoQwz8eBk0OQ-hrtuU5FyJYZZ4Bc6q!{t$1zqFk{h`-;d?w!N
zkTk2saxc-uk~mv2Ps*msvkv=W7tagUuv%E&{BsUteUE_Q6{dUuj+k0gc9@9T3E*_r
z;p0O<0sOJdYTokSNwE#D9>6_jy$~P59`NFmkKY8;`X?CbkLVbkfKr+am`lUtESUyY
z2M=q8vFRcf2+=zC+$fg0`5GaCKe$0tH@~0k05DGxmJGdHbE9DazACG)zA=u8N3M|h
z9kg;`mi_AnzaoU09V8)8Jai6C^r2E`r3E6!Kmd<7uF=A@nSLecrQP7efWL8Ztca@(
z{H>GgI(Us8du!rM80`l!;FBFfVKJ$K7%gR|zSyrGV4pM(+t7BIxhYX-d%!?jUqIU*
zQDyvMv~BM%mbasYz{7j@7-*Z96M?ps{f&tqmDN}DuMTa`=P0zDyT?G=(>XPw%@_!v
zc)Z20LfeaST}N8j(Y7+qgiW-~%ZZIP%j%D`@Wp<0H+yrL78VIHezK+hFzhCNxyvF5
zXO0llJP%NA$);}8$boma&ff2be!lr_yj~yP3i@h$0Am7Zqi`N`U;uhP2vlJ7`h(_X
zp^>HMsj}y9(&KCu@`XU=b=h~=;a&RUV%~4mX5Kqw@7rnK8|1w2(%IWI?}aq)JlM?P
zyt{~b&znp0K7S78eQVr#Z;(CjuX)}}u*1Kqc`vKYyf4V!i)h{-$a()2%sra-5}LP1
zXLE4gUB$fjh<WeEdEXXy-XF-G=hZy#BiLaOtc-_=RJun@xC69lgzpC-pEq*zARFWt
zPteVhMt;kQhYCcd=oJ|)8X3L<JoiQc4c_H8dEEHun-QlQK<*P4!xpJ1V$yeLl2HX4
zFMbolqZ28X^}9uyRi*EHleSt(?2XM@2*r-a7vg`>StSg8JMtG>-6+JHkLOLq4aore
zIUnO)p!=>706;z67;JJ@fB<OhhPnlQ@dQ&k{c8a5OauTn!~np-MKuH9v;_b=>;QQ5
zbZh`DFaYpD1OWCe4@wBcCV_xS0s$)tJXPWN6(D#|>|RY6d^RWg=FzMV95uq=$+<xT
z22($<*>xM{24lkD9F8r3@LYw%3WafOx&ejQbTH1OgK<_mIQ*-iup$x)%jZTz;pDlR
zp>Ws&g(K%|Q1~nk6kaf)aNG`s2^#z9aRdYHk1Lg9a)PF(a{Ui@dQEfPyDliTb5ori
z+Yf{46X{%Z`MRLo!>`-#@B$1QTYNpHN7H5aZgx1rE^`m=7kluv>u3*tXusS<SFSZZ
z1TwB}$pHr$1?L@xRj_@nvN{{H?eJQ`OlQvpL_g22k7MYH+Zd~1JaT1x@1O&KP1t!l
z+Y<(b4{+ajUg9}Jhy6^R-S6$w+3s*qI7v+7hUbWZ*RQpD0Xjn61F(<kNv91z2FUk6
zP4fxBICXM?4#6FlB&Fwwd^+kr;pAGYfPbgX$`3e1$l->yL3CH&LPb7K){`brW2UYP
z*5r9CkZ|1q{i%6~ZHD38_-ZXtQyupB0g0D6Yi*tzsC@>;mOH4m5%5jX*_4A(*owdf
zx!pZH$s@vacH%jNu!ffIcZ9?#$wfZlE%Cu_H_XS71y+R7gKigw^<(D?*WupOeoeX(
z$y6LRO#mXy(p*vAu497kN)_FGZC@XTU*h_J>}F`u3t?M>6(Yd}-eOfSdLj}Iz%l<q
z>a=E}t5_@dW-C>*Z(fOXicLHyhR&z~gmM^6Wucr<+twQR7lAvG5Jy-a(J5_L3yNzm
z1`yzbhc~4hAc(z}zj9#EoD^jffbj8R$5Zgi!;`CcDrF$h*jqcS(bSo2E?u>v9!7-W
zcP6}T$Y%jc*G&yN(VKAKD~Csa4&<T`XitI3W1K&YV$UP6K(-yX`33eVh?N~Moez6e
z;U;WD8`C`7#?%lIY~e;)6vp>X)7S?yf^;8{&HKth7vOjUFEKZ7Of!8^&h%BBX^Bp*
z#-0BNmdA2On*PY9B;pDUS=TbGCVFtaoanl8iK2h6i|`Z9Ao)qV9=rH|DX8Q>AA?ci
z=)xiYs1F1JK4y7=F+7qn`q>%diS<E$Bx8J1ZZJk6F~)B@OP^n$b^H3DPo&>sYzp!s
z>;{?7a=_5Ws=79-vG>5(o1o7^z(T<3i*#w){h3(nUQE4|Q@{&Ze?M=^n&+4}AUCf7
zL}){VTlc$tuoCD(F#dY$+a|#G<sef{F#fdO#y(0ZK_3c|c+4z#)xzd4Y><n3W1mU1
z$J9zo%N-H>+_@X#FgS($umjKwdF*yOq)7C74AiISQ~o<+!;<@}E%dT-hs_7}l!0}x
zM__&HhM-#qvm;U9dvdu$GZ5a?itq($e(&vza8JpZz)P@BUcAavy=n4EU(+&K-QF-v
zUhONzXt@2aHcL+RMeR`1UeL&oeIjj=pW8>8B<K1V7RkKa7zWACo2s)%rna}4Bk$rN
zP&!-iU4YDyw<l@Unj^({78ctaIo(IIStG@{zuFi%(Z{q!p3fDg$Xk7+CGvc3gdwuJ
zZ*A?6nYr=IkZ1b}E99)i!&Vay!UoxzD|vixpC}9D-P{P=)Y|?S-#*Ix7zO4>VJ!1w
zU*9O}<Hhzh86V#hbxoG5n%_6V@_4&_q~W0!V6!{6<jOnZ5o-r-*pq9QMnCis3^z$O
zDYgL;`g$uj!r+JrGSl98Uv_l1&o8t#zPT#O*f{Zo_S+g8;m-r4!Y@3bRby=Y&_0H(
z@ox#J*|`SnK9NOF=Ek%$6yICTj3+d<<J*8RGqyjW#WFJ<mvj6Q=P1pLXR89g+RXUu
zCNazKRRS@yZnA6dkFNUlCdMd0L}4rw<E5LTER4NZ#Wpbh^Z6;`;@nM!ZSgJ)_C$52
z#d~tp1y_+_;jfip;WrHnf3=3ivYYL8#nCHGvtqvW9at4_UuiWe7T+AprZ{?KwI;>U
zo5f;QU1=13FV{EustA?7?dIyNiN#k&8xso2k;cStF{;&$2whc!8FA)jWkn!r-?=i5
z5wS<kYx9+M6GF@ZUOmV@IqdKl_*Exy{6U=!!-iRIs4~otPd<F|;FFgkp78*qpC5x$
z9>d_2Y2p}TlTxi1dYXY}aRo-WK?pI10_^u7yxQqT7*rc$UK7_unB#b5;8n068VQ~j
zgu~gPHPSd*`>M3WKV2;>)H;e+rXMjZaoPF$HNt`emAEWOA$ROVREQFx{>dYbuuo?G
z{d{#Wj0qb<B5Vzi^VkuG<)FkzF%M%yHu%b+gr+=*3rJ=Ud%2dI<H10N8|bj`N*N#$
z)g~Db_o^eruV?*B`5%C~wg#&r9O#N2FPHdg$==;AT;@>!(QN_E4VF=J%+>zhcD&2p
z9gG^h57Ns(5;S>RHc1Bq3|``8>UXwlULOUPV+p@rw}!73^A<q=t&B37_T-UXVemjN
zKcxwSCo~c@U~8Rym4@jmd6PcIzkOUH67Ck=$8V*c`l+5KjkNpwKt)$YU1$2I%*g(V
z%*cLzgr<(grlk|7Wf}-yH!?P-i8HW6X<C6m@#c|XiXsKvKAx_{h}OX~Uag;q_})A+
zq-X&q`0;;bf)$d4(?u6$ajHSBA?!jL-oS9O@JOFq?m^ShM`{w57)8)xC=E$*Hw6oB
z4!YI)%SCFHJMj_=1s(jZRJGn5XK*f3yWj~;8VMz~WTa2#!kQ!}zDbRo#df5X)zqUu
zcF-W+t-D4={7trjM2tT-%_of)n1QMoHHEQk|01n|+u}*DlH4;^XMdwsEvm#6%TB3V
zF7RsMVhyB)&VDbhy1aZUASKhz#Tw}{Q|E=m<z+9h$xWmtSktf=B3(ubf0Z3CQur@A
zoAQ8gL(3fs#%c?q`uI3q`_VxaETy2?{YG{Yu^%WRXL}tPpa1PiYuF#iy9rA)u|4@F
z^3B90npf>c#-FmBy-54{TUb0seG`pMITb+CY=))g1+BxU;zaBrn40PAyTxRq!|eT5
z!SUTm%V=eSoqk+wn)BbDj5rAbXwF$;zF!@4ShZpCfmt1jO;Dx8{_~gMRjFa@k905X
z(gM;eYfs6r#6vidWc@5>x9e8H9(zy~*c{T?uBhQKpt`Zhj42lRWxPe2HD&tDO01cQ
z8){Ie9tyG?O{(LX;+WH|#Od~{{d5J2XD*TWf8mr0?sSSY8=yPzZf!yt&!K`0k#!@R
zen1;h>xIqY`kDCk`Ys~SzsY-ao7L5{id}SL@N<!%)yq>UWlJh-WpY?AO<Yq-mNcCr
zZDY%2F_GwglRPg%C%{0>N_|2UtX{0iDB&5W0;NKzrLZc{b0K~oJ3Nq}x~N{2+=4V`
zv+HQ`s7H5Fx8Fr|+l;M|1f0bhNW^irUV;9=VwHzn!Fob8tew~B7(5RWYKM9C_XMV=
z!u=pY1XB*&WVwY|A|U6|*-3<4w$F*dYm0E^&SH4KbD-wIoL;P~X))dQfZlgKEKaJ@
z?&8|DP`jueW!X);%j>60M7m!O^-<miVK(hD<bjviVj*Vua#IxffC7MBibxBVP8amR
z2F#N8*eH*anL$GNTw*7Y$kK1)N%eF>CFX8Pp@4eWKP_7q^jWMKC6C8Ya*rJ50^X#4
z_B+I7PR8n*qIAKbnCFZ$E$56AZRd<()bJ->CY>&B<9;_iV%Lr*r=K|tEN`D7?aZAQ
z9K!P4s!DcUAeXw+g~47{5wT&0#r8XZwa`fu1pFtkd0{$G`QW^?S~t%?d)Kl%+I~S;
zt#6t>v#9<keblmGIl_Vh;;sjC`bOz@5rH=_)HgIyHuVBJ7<J0{PDugjixWDVHv?=+
z`zI&xUsT}TMU8iH>OJXdJ#XqFK(|u*XyUY>yoUNi6&;Kuu!<v&^8a_TVnKXa0n>eV
zwY<;rp#jSQI(rfq*h25DTzLX~RB!f-NIx7BM|1WyTFj=rfUe((?z#ngim*=S(d=U^
zw+n<aA$OnnEDlXo#v!TdW8#T!&G;?3QT$?huo%^eE;1eCnRht``J6^J@DXpa^r|R&
z-*G`w=oVvH!*#X>=La*-Dvm$zezE4ww!$U~X2F)B{EHNOlWG)ur=-~H&!*8nk0>tH
ziBz2cNJolAXdtyZK@rHG*W+IwpzYN|jtYUcB0Zs1miTfFTLU1#2e88G==GHWWn9$~
z8M1^yHEV|T`~$%H5%4L!nHl-!;|mU-GN_)hl9BRT3aS$Z)xsIU3ZfV&MYmFCD=Ec`
zKP|H>l2Eb0^r@`@jmQ*q!YX`=H`>B5Na<?a?Sl36@7EpWB1cswcOu99Rpy$?rh9$q
z{dlt*aT0<ZvRSeZ(|R<cW%a9|Z|ESQT}bjsmI>on;V~LsTFmARZlDBjsEbnZ=4czx
z2`wLm=f3i=(V861FDANSmjqRKOHGN&q4q{qdq%ajiD4@cO697-(#_Gv<l$X--wi6)
z<4qWP+FYoiV6E*5Q8%d&$&WTmmneO<p;&O+97-DU%d&@sV`L92O8jNn!~BtN;$;t0
zpC76&ZP<Kx7$nk$t;95I0I1_*2;H9~70aw(AvSpoQX2a*sW`Ew>|h~S*rp&Q(;VZm
z=N_BRW$rOI*s|<ZKRR}^;W2|J9T2P!x<M)x(hL1YaVKVx`Wvu%Jk{VQrI0O5kzT%7
znqg3U&7iS7gkm>m7H>X<HwlGBNe1hI+v6^7pPN=PnnHy_#p1h7T36wkr?e}+7=p}@
zV_vHqQz;o3$+Lgr<j`yX7v7Rh7k9>`8PiAR2Urj%KL8~i!A~q<DggX$l1K%x0LbI*
zK_SB%E_b*+q(z0V??-=a!wTMzooq-~yjBb<1%-OJAq-dFRS(bMcHr?rLy@f&ucX?9
z;C@@`5}3uyA{EO0I$Ju3T+&U1e^{{l(&LzY-+m(U8tz`9|JNF#dAE9ykM6D2hv!{#
z78t8!<WOn&izo7um<Z^=X6*eIT2#)cIN7@PM`Y^?8QHoDDE*V}K}m6?&W_%LR|7SE
zHGSrV=i;9-K8$=O-#CnWkzZBD*>{BtXpiSa5!8|$*@vD5fJ>;qbci31xF!zU#gj|L
z?gPNKkHEH3fDNHm_S-;hlLcxge?8R7;z8}Sgc{Qq2=gk&GT%3sxwRpx#GU3cU;J&B
zx!bbL*ZvF3JQuOd$73w>6LXns8=^^h&|K!S-)5QrG??*ngBi!iV8*W{Gp?k09J4Uv
z{NH9G$Bl`&T^7!Wnn*}|$rJM$wPd3)#J^wT`urL^R3~7nle`7>Rj$@|MW`|9qr=;*
z`Y4Glr{qRnlCn8$+gNy64^+t1y)xlf65ttckFo_)?xKFk=ob+(fHHipQ<)R9Y3^Ta
ziNGh+S-4E3U)!CD$E}-(VSY@uGc$f9LVsYlVHzK3Y&fv>PHMe%7zHwHucq~lI@>ag
zY)9a#N=hKmmn~X`N5$su<@HL-JTZYlb1*-ak*^=Id!a#f*j-g4c5&D6H=RwoU+oJ4
zx~q;U1^tHjDu&ZltwFuHGNRw@%QRt7Z;E`gW0__c)VnLAF|ZC-rVQ!>l>uQ;07gK$
zzpq=SnFe*y@oGGjc;ud_v-JcZe0IrQaw6NNz6_Q~^{FCl8A=6EHwd6c?jAQ=XDO?0
z5>+irwDZ8L_+DNBF1CRH0}qy=wL<QcWMmMHrONGHX=R{Fd}czXy?+C<Yfvt|3Xy&<
zjWQgfdg`x5s3+RHO<g8o`(-Shm57vz1V;X2C(>Mjbn+h)4LLQWuAYDrXQB0i1s$0u
zU&pof#&n%IG*zMe<i|4BYzSzU(ke?StxY;A52>ksp{5G^%8&^4h`)3rrK7DBubkYY
z>6I%zdOzdrbcz-eM2|&`n~2im$TmzABXhC2eX%pU63l+sM&CD1ViUJpXwsIR4e1aB
z<{^~G4?y#f7WNfTEPX?tF$fJ&{vQreX&(YNq>f@b-{!!xR&G(N^#8UKc*i~gkQmQg
z;<IF<1iMyPSL~cmGYqUSL1RP1^51qcA4N@OW}L~KkDAQt-+D4tw#f({c<Q*k)^dx^
zrlW{xT2D}D68p3=5F)05xy+=K+~0CCKgO8M<20F&N{d6@^=3MIWgqRMExBi%cSwWi
zZt}*n5^RW59muAjD3Ser3$}onT*uZe==k&K!$_*9SMZ0}vjw=-VrLo^=o57U#=HV#
z*u2{E>%&C(X9UF`$n?nr0K7Eg)cT1opDd8zg+;uUSt_ewVo>n}OMNXh&Pq?qm99Rn
zK2z~4vEqx570|gWkOYR3F~oisj#%TJ!nzc&ee!sqAVS%l@zdU;X0)BZ8z(cNW$~{`
z8XOjxQ;TRH?z3c0oh`h)5t&m72Qq0e0b|B`N&=bAJ}cKS7)$^oB8@P*!F+ME2%{4x
z<9~DiKcBmFM9zUWRE<aF8ZJVC>SSB`f!XE3z#w-15vQ9QX^*;R11Y<(+>cX9!7G-2
zyh@!yZj(xyMT*W^g=r^HM_&l^n|%X!`N+~l3p2CNZSZ^t_0xncyeN8`7bkD@ep}vX
zX9#4_0n8We!SAj<ewW6(!;2pD@m_K`)6u9%fYYA5Fu?NV^u-m6DR|-pdh8k?$QGC2
zVJ>~0jGa0Wz*K^lfoWBOg4op=J1FDbbd0^R8S`(Qh)xIw_T=0WVS3^Tw+lB9Ylq-1
zY&ITqJR<$<lNtWxE+V6lJM%0X2~15Pb2M^HZpyFI*_Q*PMNb32c0$HLu$3^Dv79K&
zwz$N!Y>&ryzkuFTv^AUDMvIaDq8m^rP()92OO%OO`1%7N2HJsfFg7qsEmPQjA|kWo
z<`Q6s-xIJ}i7;2pR#K_B0nJ$UW8?BN`iPKl;F;%CHJ(xJS05a$`HX6n>4}_Z^F$I2
zmE}v<_DPF8|8$9_j;O?GObqyzm8eaK-wLWSYt=GQb&IHKxosQSAAV7Hsb*f1I3Z2@
zH%iRHRjTl4iDr*9T6&_U1f6*DxKt(RJYm|I^OtBjMx@o%XLu8l($VkdjPf}0RI<Y6
zWsCio*2tdXv5|1ix-6e3(VbyB^DL+1AWSpy00mXY|A%K4V&In(lku|eE(#k7;>&T>
zKix@Dh$vaJdFw`IB%bMTrQ5+qJP>Bva+DjV)kUs|Z!IWJEC97VMB{^XTilO44x3b|
zvUh*KtQLVkvu(s*M`s_F$iSajk#9aKF#~^|wUU9{kiJ!73H*8fgbe(7tHcuc^HDr>
z%fO$vOJWB8JQ+!uO?CF3sOmB=ozP7H<RA%&_bL?U6)%^Nz?GL^de7yWUF!Z2>3D<n
zOtX;n7Dd6kOC$u|J}$sxgpbZ&s(J0f{*t&=h2tf5GOj+XlqVe_`Ug7vV2M^-P=GY{
z;YG#9#|AJN1Dh<h3|PNkUF7uRMpdZPm)8aCX(*j+F__2ynauLXmsY53C&U+5nB+@}
ztB(vOzE@|n0Va4($ktp$pH1+gYgF#>zg;W$_yDIDmS`TA3wGmKy0fMH1WXana?xYv
zpLkO?mOhTAisaim^+b4G9lbNlbb3)(go}9{b|13SQ)UehRl&nBT<878pw7c6qLcKQ
zq9_G;JfEaOm=6(OFoKsin=kK`F9)07bf*u%%M-zkCj+((i#126bXVZlV3(Tigcl_7
z;H!t(J4-ZD*5@6*hzilXRQ6j*W%>~5WQ{!uI>qOwyD`70%S|!5jKd4!qKDc+-N8zS
zc*#K$(h6!`F95ig(iO9mu2^M|8Dp=P{Gxdm#!yg5#bi6MwbqD^avbyRD9Uceo|KZT
zneHj&16adi{)VO}T$E*aj#@@y8k)U<-^`+hm{{*Wn{j+dV=1%>@eKA>qpB*H>_P?-
z<P4VobZ^KCy%-_4zlyki0VR-&&Irn#{fowdS^hIi-4@!evFSrGALi;{6{V=14a-mx
z;}5)P2PH2oLP9SSUkec$vR{NFx}U{NvbdXfmPkkR#>h9jEE;oXq~V0A0!l27=<*ZN
z5xt?r;%Sk_UA)K+Kec$dL>wtpHLem{EKjL8qrm41{PYrqDbzB6CX8Qy5&<+-X8;`!
zYPRMf)!Y}axnDI0Zn+*TmnIm!Q$)wl#SFNhHGW`QuidwCs@t<#zp^qL7c3WK-?%!n
zxcn|o6Lv75Hg~wOBY$zt`#Sor&O46(e7-gAv5VDA)fW5UTDiqud%&{Awtdrw%UE~d
zj{}m_BHurvhpT;GqC4e9l|%bcI>8PWzbR4A@?9h01SeDFT}O;wDA6+*DDUjo%+Dmz
z_Yj`qmTkZM%1}9K{5y(`vrvjq*n6iYwP`sIX(5bQeH;x+kFQj^36`C}?9qvI-DN-S
zb5hwVH18YXw~~QDfG86>W^u31wm+b*Hzl)&%b?!NvFnwodSI~w4%S>2>3P5qqER9+
z$}8NwB1Q^k^P}_sfFcTF(e5vFOn3o%&Y7^r0*}u`t20NV4~QUM!-%?M6LI2mClYgK
zJQmF1%CqAT5mG9cq?H0Qt6LY?@%vF?ba%XQIE+i(m#Eo%=zb{7w3iS+Onfo$D>t37
zG^9M1`i0iPFS2UDbUT+t{;D{Mp&q8hP)V$jR|>D9zhP(Bf~i*z`vhwjw{L!c;e)#E
z^3%#8_U#kwi4M6m5%4UJ1)m<G*-iz|x=N91?v)<jSBJ=e_vsqj>7p7LKKpST`Ka*H
zs>qUi5e9tU?dJEejIcAOn7^j!{@CfQKO2H$!h7~}md0np-_LeBoL<9m=dwo~U2EJ*
z`|ulzgrz25PY!DM#pJ2qI?ni^gbKuOpO5apJUu07xd0=2cuV$xzEKbVv(6S`rQ1-n
zu(!W)P)zspQ-Wox{!z2OkNeolDKy5hZyX^H#=X*S9}O|cxS7LS72`*m)$KNRKgj4T
zKY8lTEeoCzhYFPrasTJ5Wfc1i!%nGmoKg7ue3?o@bUB+^DN=(rk(31r@{45@Dw~O)
z%)!sjzdtwV<xO<D7niBCXDCk<J3BY%m!)Dq|FO|)BQ{g?Du(;O^5RMHLQmK4Lg44H
zY3Cf8`P~=WS9erEytADd5&y5bLBo3eXjyc2p6PO60pH~|eB1(?N`&aGcBCz^Rr(WX
z60GzWd!;8MG5fK?tWhc6rNdX21^x0?9dLZ5O!@S}vLFh9%XL-`$TF@R3Jk1;m65s2
zUah1wR&@nBmoB3WT?S^JpJ!r*noIt)0Q@y8CYD)V9F>R%j2=Bp7+pRu=vQbte6~ik
zRGL`9^t5WZD`H^fpBAiO<L5MtUR@NKOjL8RCh8A;jezNe(mmCWr5LWNB6@Br`4-DM
zur0x2c4q<XE53c#;RgVHQyla_@hd^P7L6&%bJ(PJ#hRksT6gN$K;w5Ct{LHG6T)BK
zLYTHR<}C!|udbrTr^g-gMuPNB1L2(hN`M(ZXVFrhFScE43~Rj<UF+RIbz@W2=9I0?
z%BVI(0$<Qz`gGX}_YJLmJkt*?Jk+u&2#sd+j{em%yu8)Z6l}!C`t?~T{1Ow`$BTnf
z=|6SKfm@G3)yBenTM`jMKH-E6F8?O-%|v)(+}2xazY6MNUmtfk=~G7aVG?f}lUR64
z+(D^Z4#mfe;+0rTp9+JGEQO~+7j?l(s-uIEjT5{AO3HX!SUY}Xq`AI|*AX7tmY}yl
zdED&fEwZu91!hkj_E4!zIa67pSfUPWC{8%EzQk$AOGt2Dq_ZU_9I!!i=~r|D=EfY&
z{aoVXNWEdi5bvdXd2bqV5WEuy3ndX3_%QV9gtT2NN}_gBZu1h|>JwrM=mX8-<#*5l
z(vw8zf`4r=#?ABzM=ACN#^Ps>BwVCT?7%O{<EicW1MEFVm@bLUN_6H><C#m0L}Kzz
z=)X_ONfnu|cyx%mG<!CjlC{It)|M{JjjHyH+SD#nwWrsn_NG&Gg<}w2;jmpxf6Ug}
zcDGG@;4UjHdf2AMn_8QdZ&$VdQJdO3RP8CY+C>qw3CSZNyql|9Ot!UH5H<fY*<hDy
zFsVjxX>1=<_WImj*b<+57ibw{$5YvJbAz5v{E`4qZO0#BuR37gmCDuzF>+yd!WrbN
zJ|qZSMLaW~yWq#|+~qurf9gn?a4#@GIll)8^<I(~;!}>>m)10;mOA?f(s^^2;+TJz
zL{z~KBw!W!{u4XX(1&?NEf7Bx(8?Z`mgR({L8r&==CnkC2wQ0LDdYB$_?%-B+qpPM
zSLK~<QMVj@2KbNlHWKV4?*;1^O^|%Mj<=a2lq09H`~uVV3Wt`5E@A=dVXPTJdXSG_
z!X5@hI3Hjsp*;98(gVdQ?mWDVFqB<_zy2yK4P}>wDMM&tNDVk^Nt|mplC{?<3Yi(7
z2%U6aeHeZf$yuN~bKp;i=DZu{+>sS}y75aM=fl}mZYaD3CNmCxv=8I_?=H>5&kTq~
zb!2(8s2jz6X^;BeIY$M;tO`N)!aM;ooDo>S%TSRjDb|`DepM?i=WW<wG^tWSXB&h$
zguN*U6O1LG(u0_ZKZDIW=fJW>K*2bk2i_cUxT&Qt*o~$j26}0E5FJW1k`%D(LFDPI
zmtRzPv;@D6&;T_|8tx-T$$L*fSX9^45(^9ZO&;8O5-%%8SqZC`#I+JSiyDWZp|BWa
zgtztb{G3HWd3pZBHy!A$*qDcdQ3xex(-sBg3ESs%=~6#J#gmNU@3FWJ-82*5)U4o{
z&Rd{ky6n&0U?7CR=Jas4G!SG!C~CHr8t>~B*Mzd!<4dfXhO?@Z4oc^eg%TQP*a9@p
zNxTQ<>Sqy+6g=?dNonIgE~;`Y@u?EGkN{smk<oaP+4vjP7&=5+&V{|0b)1k{^?Rs#
zQ*Wv~N%VV_&b|}<>h(HGr|Hj&tt)|%e>{n)FkSsHi2Xfj5n6BMCe6e>N0yMd=mT)J
zvRS;arv{Vu$b9TpW`bD~t)sqFx-}H}vZ;7!KS4}lNfjKw8bPB{=D4ho*bIOb<oD2K
z0IeWQXG2I|yhL7TJgr9BYg?%h0(35ztwktEapCMB$WAt-O8gJ^0Yl{p-p-Ps)31j}
z_C2#j#Jew;8!YYs(>!<1feiN%?*5Y4)8_!%scin-U}%DnRgbXO96ouB_QSGZnUugJ
zSIR)HbP9qvyWl|aHXE34DEq__4xyhc91N4V>Bzn(W}XUfJF>4GA?l31hJBHMPQ-6m
z?7|&IDjOdJ*_pwPib<8u3qs4=^4OOFA-YnpVpBC|K_2@q;NfK&drHG`KMMF};IBDa
zh^{Apl^`N?GW+rLl{_<{or|aA2PGE}S=>WBa~JT;J@~CKJn9wTzEG`Xl^-z{oO0x(
zu<qOGX`qGw`JSUxYT*^2OY+!H4o@C$!cLwguoTY?x`VKq=``7|0x0<&)4~D_Tb2bw
zWIvxj?x>KViA75>>yJ}@#_=$Y6@NMXX*qw@J@i?U2T6VvR3B>~WSo!gkcluN^qC^-
zpiV5{*Ri9>3>mESJx95R_t3@f>vZ%TzWAP_fZxSlogb_yr}&5jc2h`Rh3zcwzIGK?
zVSC7*{Yrfys+w3Tue@@7O0}T`OKs8$4EbY1;AFFs$Tt-yP0_x3iCq=mLK~|cCmm(5
zGl9A<iyLdz*+2ux2D%$;paJmfA@K>%8bUYHMU2OAS)XNk4A6#T?8xqM>gDEyu<^DO
z=;2U66XZOSeVKp+^4K^ZJOd4*PMjGC=do|$Z6TYVfCTm)ye(wK34+q6z3V7bp`wI}
zFN^6~ae}j4AVC-VS3pKD`7@P$GR~Qk$9{AaFc<8U*(A-4BfUG$2X@YN?AgT9kdNQZ
z+@X+9UOzZCPT|eTww`eS8Q;a;K#Fj(Rqui7&gcvUug?cwr2=08s5!O;Oayi|;O2R(
zBmoCF1vAfMOJH3gycWIr44SU!&UF^*NKuEe$0YU=bRd4=X$k&x=6HNOogI267|yFW
zE7JYUT^jVEIp-lc^acnIb`BV;H#<yFdT|^+zlu=GWU0P<e)mM2!s2l<SI@rX!3sU(
zli!czV*~>CopjU?r4z|H<c&UxoC6ZIWM0sZhTj)}t|az>5Mj&akz74~mgMU4xhUV@
z=Q%?%%z#RdYX}pN4GCp@teDH*K&W<9m#>K?tVuN0m5oy`_gbh<T&CCsW<5f0tj=D~
zpf65zjrG|}YhJdNEVNaGdqJZUI|AfTUAk2}gIT*e<JY$X^f?lhwW}q2RMsbVzei_3
zV~ws<W51~J(-upOE^PeH0D4S+-lF+E_@xl~-9>p!U53BZZ*j~GQp#}2Ff$uiRi>~y
zrVm3Cu#L_tGtnuhXZP)k$<UOK&HN0e=;B%GLRqppdxu&Hp)}X}?h>87FWw=DM1bM>
z<zg*4Y_LZ6zF@O9Wv~5$*oBSaf>@G%DDoCqpQsC0z~SdL$|)H}5A}?SfU+>{p-NRG
z)mrN1(obZ>B3&42H<g~q@(SOQi-Y;zM|dW>>GD3$qr)f<OHcM_maUgBhg$cnUdl$H
zvrv{sel;2GKGc-FPMIySTqKu-s>3iF$j_Oo^5UWBcr+5fWU>=9;EdRQFMdDNNb;hc
zH72a)^qh5N*Xis{TA4u9{Gpb-CV=|4>76jXpdDGT?`QdXs}D*Kl@6mO?7b}0e5}Fw
zraNyEt`;$oI#4IeBcS}RER446CmeEs^ACr{Ny4$vB@+Y;t#Q-8BvW|jHlu<Tm*Y!;
zix&-}j4XX&?&{`!BR!j^-(U&-?BfD-LHVQbe20Ku_21BzF0TK|H?(EnM^x?kyCWiI
z-`=E^>FBO!vm(izvv!){z#ddzKBnj_xj=?K0$F~#O!Je2EQy_hzIDIuE5m;hsphII
zO;+V>h_kdlwD1cMrPMdVCn?8j2bl@@C=v{|Qy<eF5<$CDT-DI7*pgAhsv%N3fnh$=
zC8X1*LwtgKA9I=Hdwz(We5YC7eKN$(&|w#Dj{4MwU`gtKJ0wixKgH$ICm95~C5k{f
z<#s7ET`colw%mk2kJD7dEWqmd6(X^&$48g_=nAMx0yZ?ZTf-WZJ5#d33sjf(K(A%V
z&?_oZ`=8fkX{oLBjVzT5DbJR;W|^pk3%-?omqB51M>StfGjnG7=v+BEcbjy@Jma#?
zt$NSqvo7n5<J6UbQ1e}yb5PX$mAFV|N3*1y{&<Mft%ux1eXnO?Tv8j4G;IDctO7P@
zF%rQ+<veyUOQdUDJJctChh@7hL&Ne@$6GTAP!m^ZRVYs;2rmgxz)gP3{h=b`uMt47
zd~d*#ImF2hZ={HY7kFdRCqRgeGi#T$#Fwa&mXyaxT5>i~B`u*D*g8p!N?8(>%mgg8
z%IZ><Oi=qjd&-g`m9k`lHDw84ZT;TBFCtZEG>IDT^!NV5p48jQEURMCODPf#Wudx1
zYiBv60C?{!BRKB?*-XKRuT}=)4c#vOB7m;m3dmU1Bg3kqeBRz-liXv%0_0;DQ-!nn
zFpYbipz@17lnnL;jUzHRyTzFWn*&Vi?YF(b2{;NYQ%<DFU?KF|_;hDMzi5y-vl8(J
z`cfiScKmq2kMzHEsV48TjFKi=A3f8w(K3qMbPy?X%q0~$F{U;huM8H$j93MRbl*S$
zqYfK+RFH>sHG-+s2g81Y(UY7_J|Twvwj^@cxR#-j-flXjx1(Vvo>0TKwvK9op*6e5
znZxs7L)DtOt8fkiQ4@!TEIxLjiT7>7=+s|hSCF=aUXPV&$acfTQtD8vzS6sbNtIK)
zJb4Bk?9eYCuXj7=P<EHQ%!i1o_cQ*)+Nrw8ew?MgeQ*Z)Jun1Fma99GA+{6~nsB;O
zSc_?Q!fC@JF@3DrPdh|;Eyc-G3jIA6FRjoSj1`3D9!eemVQXiBB|IfooC?o1HdUWL
zEw&BV^2`TfSM}^1&50i!ya8<X4+Da_Q`i?zi{tre9|ruY^+!(|8z|6Qy><2!*7s8V
zk7fO*KMaIb{kJXkd0+P2hqU2(=V>iO2_EQoU%l2LDxdWh5h_1-5D^XIZ;<gRKXfp{
zQ-12LspyoSIz$Gi{M_3Xn{xa+*v6Z&DJA%s4aQD>7qG{se5tx@#HL(p#zRz@#gAPp
z<5F%G0T6R0X_^@TK|bL!(<OYs<`J&I1-$c}X~lfeJIdud;aW>v$}1*N!zhv1K?LKC
zx-H~ng{=}8eaEoU4TPzc5>pixOg(4C6d?9(h1kY;NNU4Pd93a5w%&eYJA4>t%f<?v
zZR{;0RkmCk8K|<ow~SNSeyt_}E?#W4qiOE<HZ+}`i1}<8d**x4$^t{{OjPW(VCZGD
zcz*<jPE537sHPB=1>c+KSsRU>od$Zy!rjyxlaorf^$Q&|mJ()TJZ!AH3wtPxN9^~o
zPst@SFX)5ka}M+(%?bKu%ovYa<@0o>Tj-39wK&dRxKGObrM0R3ysBMNb8WT=zZc|m
zTh-X}W-~GqPwsVu$jXEM(6iev_Nn$#HSEG_hn2OLsoKxgW=YFc?FF{l@z1|ks0PKh
z2Gty~uT(AOS388?Y*DIOJX^!0N@asps=+h0S@R33_PknlzgjhzTWtf&n%Afnb7~3J
z7gd9&Ys9g})<We9x7*E|vwwf-C_vwA^AK<1DZt<YkcEO@IzGk<iD4dLmBcVF(Mj%M
zVwe|$zUecj3yb2^4NkAxJR*7{&gYMA5a;uy@Q>4PKhzId&-o*7I#uaDXR+=K>j`bL
zbQprpNo+^@`Roje?hN+qBvfi(`OxotyL7aQblU-cSqJS}_OKh)+FdL)4+`r-KbTHE
zl?^PO4nlz?Re%V=dY7@fVdnR+hdn*{B_K@l_yBeV0_JufJY9xOZu5Z@K?5N@4AM8n
zjI65`D{{BFK;dwCeAbXb6aW-o!o>iU3i#VPtJ>8JWLMzS{vcLU&*`(HSJvvtI$^Er
zpw@Im>V-*Kl@SE6=z9s(M_BhNsMWn#^noY%qK8z^v>BrRD&B_eAbMFFv`mKgXJ@E%
z2~bggc8aKIF;bC$*z&s0ELK;nf7(`Y@<X0BKd<8#{x<ZH?r``K3|HGul<)?pi{fx~
z59OF?4nV78I4s9+RnSA*5{&CqzxdKrndo%tP6_ujTWlxiI-9f8QC!V%x9UEM@wE?k
zd`tDiy|j})^(mC?`Ym)6d^Ov@(?RYj)<pF3RODRF?R0psQ~aPwL-t^q2WR3EM`a<i
zGH8P|KgL6N#G%=DJIzD0$JNZlt53wboox1&phtS^X79o>wvML74(^N@C~<sq+(3!m
zqQ)Y0OWbG=r(E`gR%1A2C!H<XCBrF&C(y_Ry}nH4g5JLek4c@Q+hQ?>SFqAD6>WHQ
zj|f6c!XU&&M)B!ADhSa@*`s|<j6zHTX;24jLznK23PK!Y1|b&7AjCQ%zGB&COW5JD
zT{7lj<>sJA93&jw<?xE=C%`Whi=fG~yD%1!jqu3e#U<8Wj;mgvZ=Z1YRf=ACi+&>V
zktGAdS)oTS6w2A!{IqJmNHo7jXK&JQGVo%)wemZv@^hkcE|{Cv%JZz1-&d9Ai{)La
zv-d>hLJ>*X3pT;MbrBW<)|wd?wxTTBas0_1$!L#9zD#B7I%w0TJ>E?SgM(>KHwgn)
zPAFs>_rxT`k2l68#Op+jqP-4Dlq!pyg{0nCuSjZDIY#WHugo(@s(ihooekwgQb(Y0
zyHU8k+#o0s)CwZOc?*CnWQ4SaVpCH;J2mayXaV>7y%OB}Hxjr3k?ZynxS`kjyw1In
zcy?JEm8nM1l~*8iqi9rUMUl|e#bsbA#`NlcwO1l%{Ki<wnTZzk46L|Bqa5>}<2Hd!
z2jjb;X!m4qyTJP3+ES2!nfSO)D;MZ|>3VGRYR6c}JbGO`T=o<dmUfb8je*K7JtZc0
zc@UBFO+>!bQ=;s!N1<_rDyr}pNUXrP$y*3uZS_)#wxYObTXUU>fPZ!p@PGL_iL*nU
zEGXlyn|YnT$cUy@mS#s}vo+UAti9UFM4F0F_C-c0zjU3|5|9_DV6EFaY39V>z3!)E
z6rD5xywEl<<P+DSLM46kMJJoO`ByK^cD99git^&9+8p)*ehx7*!Ab~IOl-ao5IH8A
z>y;p{=&*EgRBaGvd$D3RE1RKt!+fyiXNXc&>^1utB>F+9v?)fYTm(>QBVV;}k&wiH
z<+;Zjy-=0aVXN{eQeNr4J-tk&Y}dzo@??Z|FFXAn%_H64%i;yM=>97}XS9#f{m-gV
z#JA*ll8QQnmT%@EB2@4TRdR_`+^KBq--{=-r7NQc6AS1D-pxRSf1(qZBB-bOKh&!R
z;~uXVig83IWidM0UW-nqdNgIhq|lAbBy<YVI{xCtiR+k$rl6RdaJXZ}r2}i9&5Om_
zTYJ`EFKqGH%mv{UnLNvCFwBTD7=*pB&l5u&%<nG6!TVhzOof@<CGUUQ#WWPAs=}|k
zD1o42FqM^1ZpiiWTFLe4JxxwO?-86{)KdzGPce0bv=EAV3IpK>EMucR@R;hwC!drV
zk6U`Gl08lDDOLAp)RSQ)^vC-Vs^Mfy!>?t-snqad5ceLhq4Fp6v`~H>_MJyK_$E``
zRyzAu)RlK9LI{Ewl4(lMD4imvo6RQmjMOL_I%s150CvqZQY(+A%MAdVAawpuv335E
z_&UFrs8NAB|N1zJV!EO8tAx(CsEP@OdjHYX`QNWog_HI>eyzF~Z&lboD1|-I(DL8g
zw7gAa{ItQ+^k>y{yrJuVvg-P{YGcC2V5HtSBlW&Vst6rF!O)%!M7_|N^a7iYw8_qR
z3_MuA?6R##4W`%T&UVWSIC{oRD@Tuyw*}bRIR@fNx=Fm9>`E+cqV1V(5<zFXnk+q2
z6@J=PA<auHU2Ze{qi-L@XX&SVn20#nS>Rz_4~fCEoh1Sr0SApOkcQf9OOuaelc#&g
z;OGxKo4mWqZcb;;03JCxHYE4hce7V?+&fo}Ef(8sT;^J^!_<y>e1z@w{k3$rs4a9=
zpFK!fs@eOFDuBy(WPweIX@Na^eGMpmyJLJ~dQvZmpYQW5_(9F^oiev38x~lVDw^(z
z!Va0yzZ5s$SPZL4(y;no*<%ws*>Lkm_OKF>Us{^|LpJ;7I*Fetoy=WPm8Ih2vf`Iy
zxV6#QW1Ubwy1>>2HjK-HUtbp`A4Ae;`_l4CipOGfotVges*W>9A^W-Ral9jMcJV8$
z$M9DCQODb_krvDB?$tUgzUm^XecjDYV3WEQS2NU2It~{()W5n#8%N|Kh5i<F6_(Ls
zK#?KwkyrCGQ--%>Yd1QxXv=mIr*{^2PSq@wE&I*32-nHP?G7(?b77pbN`B1>rdUQ(
zw0+EKPY+}c5L~f7W%WV#8t#zJ?qa_}YUPe2+mzZ_vt6hi(<IrmO=*}-+YPm|#VFjh
z-B3GTXU;FvJG;7D_K98OHnF>ORBY_xwXy|w{R#gn*4S=ox<xkK)m^$5Hg_>uV~eHY
zc3E*djR8EgtxGMG)6VWuoUvZg-S+MgoUyJ$@yyG}U|5^t^edM5VN*Ph;iJ2S$1pcG
zrQQxqaYq!TUf5K<3vb?TxmSK;Qv|6k-z_|bafbVg?xVy5_Tl!`Fx;-)7LQ@cCL)Yn
zc5=7fV>l^tE?@5!9z%BwkKt!!aXp5Q?=d}w-<8=shCl9>9>WQn43FUwa_X=pG%fb#
z?wCf~zOuMR+x4QxE9jxS!EP=*{aCF$hU@mk_869IP&{{XA9)P#>rBxUWHW3~>~(gZ
z#bY?rDE@Sx!F3hFV^|QwaPY@gP75Lohcb%^cW#d~;pUb7f9$;nd{kB1I6OBe_hteK
zkOp=@-Bni&y1OdK;I3jF%lf+C>cxV(y9RalbwMT|Z308DnE(N#Oeg{Z15!mo?}G>e
zLO`Sw1VRs0uzXKB=gysyBD=ot|NDOb{rwg*_nvd^DNjF7Q5M5Pt8Es;k;T$tcwx1)
z7{cFmP$OvVmZ&+@KHgC^9(*N-ZHGrzN81kFcH3dTz57YkeK2<i<UX<5W)2)+Z+u2I
z&M#IGUZ?Gi``R0yQ;i3(<@R<%oLz0V9X>%D7>6DVERGRYf$qq7CQ*3V>jCD7S1{;(
zf4QgTf)l|wr^{ZScn4kaOXU3nM;`j=?kd2%6ebo-E(ymG0%4AgBg96_!dUS2(#U&8
z#k5W?BhcSPq*_c|78mq?Tv8$E|B+k#fCT=LXzh2+pvtvhnSG%5a$EL+RfDQVm^9IU
zIi(-i8kK&axYG0kqPCwC5VS$F3Sk;7ef=VZFZ0lBU;9j$t1Yu$En8{Bu=&>Gbt^3l
z^D~AuxN6aS(GnZrEnhAHZ|M?+Vat}=Fbp0uhHYI=81~<YVHt=b|E-wc0{eKY)Ohd}
zX`NrW+=gL1YB7AwB>i~}?r(;ul?{KtuW)v*eZ+NY#Q8kpErtm3h}?LVz3~^S@myX`
z5<W52lWfM>^~-H&IK$rkOVxeW5@qk-Xm32t-gt{@JcGXl6Wh!aW1Mvn(iX=<+E125
znT_GZKVPm~;_NS#go_^>nCuZ|vG`}PxE;@2JcjXvU$l4nqVAyI6qg963-a);^%UW>
zpYEVVmNPr5aTDRA0KDE5hxi>e?nR9;$Z?1kfZx8nfcW0wx?8U!4)mbbA71vlZ1<I^
zBH6_x<0f&wCx(t*Z~D~*IrY3Aonf%&Fz(qT4=-sb;tw94^&-VVzcI0`Hc2XkX)j?x
z&zCL1a~*BZk<TJ7^-bD7;a^LElCxU}^xMUT+W4g@t+UmKP&Wu)z^8Lz7IEc4x6=h9
zo^rZ9rr6aH{~aRS9`tV?u!KonWbk&H_`KY!c|<{ilN`NZyb}xa$W^i-d6?j(&b>x0
zCYOU2<oRO8;8)YbgvNU1l1bP?GbtGs5a}5Y_y#)v1`swZQHFX?ezY{Yo3D})G3BCI
zdRF?Yo?K+fF&MMPBwPwIgI0!1WL{hp$x=p8fko8%)ScAs;)+KqS{)wg+v1p!&}G3i
zWHS0Raq1y?*;4Q@oC`g~h{Pt`fA-_#^Pe2WZ$58gv73dD+dn`SWN7||Vah2N$&uF3
zNJh3?E#_|Hye~*Zsl~y^ZSe*0{KN1^jz4aPxZ<Fmd>vgSU{+nS&EXQn_9r>)Zqfth
zrU-y5QB65WZ_|_6iR^D>4$S8^B~O;{&LmP8!RpnV?ID$qc4Dywi<D-wuEve!62ERD
z!#7*#Y180ALemT@X0upt3DoCJjOb0WB6@c}u2t?a!2!KMx(_zd!VnE#9{YH}aANp_
z{D&v7X^kU1gKm1pbUm#pJns(AK+7+JDFko|e%lnj4SQ|)<(cnoQk_9$?5SBr6ksYx
z0gmWGzmWvVIMd@=wu}NC)P*7g;q>S~9aW2;Fx-^>8qg(x{~d_`<l{estiR|V5|F;F
z1vJFI{mxcu%5Rd)7Uuw_6<ez>kxu69?ZYlVrlG|^j45~Nvu4#jY^m-2@JJ;W7&1-C
z`eyblB~u@Xb8CiB*^Ge_2j2)xk)|;n4-2Mo7f&P3QGfhMrO+nFhgpnxNCBHkzAqgD
zqFq25_1+d=CSs`SqE3N<`F@2oCgFhs!^tZh;W*}Q6#jz{l<=zzJ`nsv#WBZh)1bvw
zIkUkGi&sXZb6L13-b!Gn=B{*vx2kV~8E01O<eVDwoP2SQt~jsCts}TVe<q*!R{*wY
zTOxU%bt=6J_KB?E>htl@>UB6UOl!mOwf^d%mEVR|97uc4LaSaeXvHmh3x!ras)JUG
z5=!F2`CkdnUx&>K&$^1Zel_bIa@JR@Sx?v0oHj<xx`}+hC_#k`e^K$A2a#r2F%|eL
zQGu(P@uW5?P<dx9HPdnL^TuBB#^2{NR?CrXs@P{X+Tp)Gk!9*FDDh5)Xpb@1pLEIw
z329>@rl^?K$;9znh{FV2A9XS%Y|W_spNFmet<{=~YO9qTY{QE@SHYS;wOVd#U5zyp
z&Arf5!*sJ^<P|S%CThvaq8t=tP?mdN_BwGFt}zM5lTmoh25EH+G_)tHAkh`G0kwxe
zA7%S9s%K(UZ8C&7i>(9$RQQ}PZaLq;<<@>2TwL~&=b!$D7+f0%Jk~m_eUCQ&<5+OE
zV?6kw;yEbH%dI!mh92z@sBkYqn{bPECe6N$D52R;R<q}QIG&*Pp}Ac6W4sSfTKh1i
zOXNPhE)G(%f{|S!M(Sp$ksgy>pWu<))<{D;Mveq}kd7nu>==;#mL)jdcG;x+v=STX
zo~XEk)II1kAIS;Rzk!Osb*4-7w?@fC6!a}Q+O}GuswTa(P4qw;YT-aL+l0a3i~@rw
zZhKV-Hlc$;u-(=vPwW_hV0T4A!#S(n&`O}el6IwhPj(;Lg@G#_n%ssb<hq~YZFq)%
z;=h<2W4gzu|4n>V6H#xRCopiJTz~(RlByWHO44=}7||n_7k`EqpGQAxD%#RL#V;3s
zxotFUA<CcZOplpdMnZF#+f&5nE0xa1FRg~yF==^(*zx6(C~@7Rvc!#DuH+8h_=BDO
za^EY=da|g4U#~5S2@@89tOdxSzalmn2!hiYGfI3o;csgBD$SUAV1eDD4v;W%jm((2
zKl;t6HDL|0%zoGIO!twkX%HwBIV#OcE>(ARl0p8fwpyi=82WhRmyR^yDGZ5vezb`-
zfzgl0et%b!n9n1dOe`gjgp|tXFeZArd(}paj()Sxwh<E}JPGyW7hE2i%X;1m`0)BF
z7XQU#k)zLikUzUV>iMh(t&eVfEbcc)KNx5Gky2|m`uPzMh9ojGeGst7=Xa@!N<S_^
z>`8{Wr{zyr$1QOXCPE<oD+$C`h0B+vbW|1>mxtC;xO_B5HUegb!3?FTNPPV7OX9<O
zz}y@*fqs44P7D9?(Ldx^?5G?;_C6eW3}YVR<JlASJn)cpJcl2SIvzTmz7KiKc*yZd
zUghvH?~%w4t!>5=m>cyx)XbW|;zweUV_~x}a2!jrZG|}1CHyNv?Che5{vYMpKf<7(
zSYfL8svQ!aeFR0rK0xBrLw{8)O-ACgtX*J`{K|@C-u`r4<(kAQR#_Z{WNTMT^qU*~
zCS<$3TU;DLhq8I8s~u*L?v1)s{?RpyqK5u-rTpmX=r{9MhCjM-Q5@no6}V+UPZJwD
z;TEm`zymmU7Yi(VX{V-q5Fpr06Q3ukL<I#8n`{rF&=xf5A}=R_;t5eqlF7<0VS(ae
zax6oQ=2=%EV^SLzr(hB-m6&m}k{*V%W8~!j<jL2UlhynF?QGHo3TrmG2shvfaj_N=
z9Ghq~TDMEc8JGo*(v~?R^OnUh-gC{X=DS;6cD6gNxfaJr)_{DandyR5*f9`0=|yCX
z{-SkQ2(=v#HyMb^vAEJ%uB*2A5+uG<5$c#t?Igv0LR=<3J&5@-iL>bS)I@J7Hc>LM
z&$^J$Q}`7-MEPh2ecMQfC{du5$SF3F15cuX4@3>jz1LFjRjpNTeCxN~j-aWZ?JVDx
zz~s-{5IRq9Dz@MWi#hFJa6c%THXib>_>|gi`5*v0JSqv{wDbdynuFEueX*_vwp*Hu
z?Pk=#cAImt9Vn?K0{3cZXOC^`ac*5Taf~K6R!$DuZWBIg8?X)DM(o5Ykzz($9DHdC
zQJ=Onc$zqwf`d<PYhmGgqI)W~?%7sh;mH)nLc9tv5iA%FCp?f18(T<2UuYW^W)Di-
ztB98DToOew#xIw&<m>1+6PAZ*$$=#iw1gS?Fc1h$WN3x$a59q!eGavelSvc1YvAfW
z%e7YbFHue#JuEk1HSyC3#js%ji`1&6=tIZWwSxrMs6)70D%5<*1LsgCa8rj6d_&`{
z!XJ>WuQ<$z#?8bzYTMV=)`V$%Mf&)Tw!VHmfgtVcE<6M!d-!xEd&Ji=a0Z?HN@4w*
z_%0DY)T2`%ACF~h<%Hxa^b1K1nYNwksK{Y~uAUu|T356=<72DE!HzaDMNbz)K?F?|
z-*@uxDzJ-N%pj}G?oI^c=-ZI!cjK0gtASg#wv9_}*<w2V^+W{-UQt&A-9ag8iDI%#
zi4(QO*#tWhKOwpiT=YOB#_cN5D~IA>^GHzL<YE|}7WI6y%Yxv!&Fuh8@Vm<8!!jgk
zqMMFuIh*SeZL?u1qi8Z^xd8w^zg&xH6dPs<S7y%u;@yNJYJ-pGm?eHtNJCgDhgobd
zl&R_M<pp^F-uRZU`wzMBJL@~TEc&(*4+AJMCV%{l%n7SInsjZ0w>H-2<}~BaZFmGf
z#}`2}A5f&|3GoRHv#Vpke&rLQOp8IoO{^qCj9=;CY3*5*XXcdPg6R32)s6s<UYu7#
zGCJRah|O!NO3kPQ<D;!rrp@7&vFuodW;Jd(!)m#^DzloJ(BWDo)tk?ZHflawEQ95g
z3Qe2b@~G8vd{w4RHJ^D2)tt{hn{k-GHqkN;mqZzd`TbnWIJ~tI<1qf?SF;&ftD5&#
z-P^`jWBAMcEj6Y*?mmPu0<fDQXwY(p-?Zj2GNGDKGq3{F2+!kkO*N11o*2`J{8X7y
z%>$U$K>@@zi)c=-z$_)N@~n2FD=|x1dtcp&d|$bNl)pX9`gVCG-;O*CA5~V%5Q|*J
z#8HoT)bdeWI*|}?sabYSssci&nG&&EsV%$K+KDI;n_r)?MC_sMqGpQ|n4A!Fnc`wf
z0RCN=hkuXm5=1A5fKPnWDUfZ7iJkFji6fA$Cc4~Py@~Q?FLhKi?PKw_lQG<nTNGI>
zj(3cLDo)l4Gw!Dc_4f^NVZDPZfBnv$qgAC7((jPDgrMc?nqE&d4Co?9Pr(p>-4N|^
z(9HzX^O3(5-();*lwwIFQ~xtQEl@dE#O;_|g&nhC5RqyX02_C~?sg#z@l9VWvU;sm
zgX)5+Q-%e)dQ<K<akDd9@;v`VZ^G?r0CaP^!4Sv$aKaaK&Xgs~E}v5+>w00uzFd(U
z!d$hDJ;7h9+OS?#ZS-SL@Cx=^R13^CL{T5BHaax)*|VkgyJ)LsCu_u?;FWTksXq1w
z$m7yMwd$+cOP*c1Aj`z{?i;Qh_nms!r>~|m9^M_1@i68L`~U<?8|TP0@Pn4h%E2;a
z$-1i?92PWhndTwaCz$(}PsW{kufFo=FI|vzM{}dJPajWX^VLj)GTIfZ43ZVE1Y^kZ
ze4Y{?g={{~NtvL>Ifp-P2WR{xCy5Px09mk}RHj?^!ijf7U6?(#(ebgnRlDvtKkp#p
zeK2mi%(*I?3c-pk7w3Mjm5cKlG5_A62YMZUj=*Zjy;q%0?onWA&(V$v*sKb6H%a8@
z1u7Mf`(BJHWP7%cEDGNz`pr3bqeSEaJB~=d!J~a_C2ogb^g0_PV#V5{crdEQtwhp_
zYTO2qqEB4Tsbb3Y<eo9rY@e;Nn(YRp8cvt=&G>Q&;8ci_cufUJ9E}M-A0QH`rnSj=
z?(nmPNtlNm`<BI!r}|<nlN(^YpEox3hGLLRGo2>MUS0Zc5%P|@oDJI96h?g(8~A*%
zyCa_BTJqoCPuwD)w+4>=IAsa{ZTu|Z`t6bjLCe>W2i;PFJP5ZzqaY=fCpr!v=o8Ba
z_MBIQd_21QcVIp+xyk<`ALuPNdc`HR(H#u2uy=)g;G`XdLrgaN+WEk7dxIc@(5OBU
zAT;BWDi_*23@t(Ra9i&RXyl|zHa_6*No46(Cnkz^rt8;<VvM-ER<ZmciI`7y*h0?8
zdX1r#FuIkkq9e-?h2dAKoX#puA=TLo4p+xQCo?EDYBKF7?(~FAA_b}NfdBg^y&nAc
z4v*dlsn1brp7pd|=OsO>kzVI+J*$~s2LZ7e#i^$t2=+wyql&*p@~>JS!jDJjJnwU2
zyg3Z>vi!g}N-lrTANBiP`X3tW*SX=@tLP`5qyHTs81?S%a@l9=QkV<S)448>Z9C30
z1Pxz^oBT630ZR~$y{b)Uq1Sop-`#}4Rd2%I437U6Um~d`SQ&XK79kJxjzP#C7ZgT)
zk5sM=BjkqvO@!S4IIrM{1?_EsFjkC^LodZ5<iXxHgdBV+RxtZdBV-E3`f0)PXpzkN
zKexHGLZkZ7Sm^-c)tWogD}dJ_mBK6XRtc&pD4Aep=jK>|^m~^J$NCJ|ce2=k70K%p
z*gAhJQ=JY5Lh(^eO;4mW9(p2x9>QZ1B04Ov4vKHch&Rll#n%yYHfnBS8aqAm#(R-%
zJ25Z_psz<Sm`M&E;7vw5RjdjYctc37uJHdS*jPQ1G!e0}AciF6|IAHrM{WYHyp?Si
zu8uIb_zw`~7@B0?0uK=+G?d<y$qPYX0qEc00zOrnx8l>havOxYOc&N%`QtAKq;M!d
zBFAh6K<WvAM4j#d(j%IhDw0q_?DeLaF#Jd_l@v=P2dk}Ki&a#mH^ox1x3WZ>NLA@4
z_t7}$=Ie`I7i&2mqof<wxWhyxNfh=14tz6@oF1@dCVq63#Ogl3^2eoI&iE9IwLO!x
zy|`jfeX)qCD3K7LFqy%46!WXzlH*LfRJlGF=u<IiU05+?<$0E<dB$>w`eImko<XL+
zlP`HaN{Jj+;dfKS{s(=M90O$PgtrwS>(8Ud639Qx3;mCh;VFs?V^GU*Kq`Rq^CTDq
zG^aZjV%9r;7RV%tfxR`eQoV4<r6}$1Xm6<(4vv0P);p{hj<U08sTc0;ZPN?KT~d1C
z-rhF7@Q8xB3iU$RfujpBi?J>aJWF6a=C}Wj^1Sa^sXVWDQ~*_gqg(C`;0OD#wtn&7
z($;$^ZT(jjd@o6~tXx+=5v`HuD_#9~^c%lTS3e&|SMO=p)vs8(dQZEqzM_gVfu0{A
z4$T6H#ssZmS3HQO#yGr9u`lPXqrU)p&pdv0qMG<@h2{_QAv}ctDI5hZG@+N`Lh#vv
zO#?Beik?-PDxCGmR)OUo+H3z#|0F{kc}%O8`Rjz^=gG_QNJ!=OFA~XZ_OChNS~MU#
zOl}rbf^!O-44j^`6mWZObArp4ou2rD=FcYEn2<rdtbv?kQgzQ&k6jgzH3nQlD7z20
zRD9H&#u}RtsA#P1I8=)`TjoR%^;aKV^fYlCl#Daw1eyaEd#j0RAwS(Q$EqnQGKoI!
zwNqBAS^AwfKy6dS32b_w3-6WRg1)|gf749Zw1D0iM*X)2OO=DA_|R43dY)uj8U<hd
ztc|huG~cgh)P;TcusL0_A95A*!g*-SpVLm3tkA9E70|9<@-MPM)|y6WBKRoI@vEk#
zFhy857T2q`b+D(j4nn^J+Ew&}&6^H1z)6v80l=+`$OCzkoMN+9tk-v$m~4C~$lCY0
z^i)61+9?JD<)K$F!sidLLDEMQo=lVX0?iUAm1V-8b@Us@!X#QmR2R(@HBDU;Y1uh6
zi?>{y?h$Cf>13BwLMcSX-wud-LnBkK_arGtnXDvb=)Z==H0%n0Kf^n{%zpYF2BOba
zs;jQWl@&mftrw`)`IWZTu}oH}5x%y8Nsri|Y1J#Fgv6Z-Df#0RQYuJPg_LBK32fUY
zreIQ{Dy8I!Q%b3zvQkR9YEhA;lv=1#O0DdrlrqJRb|hLHPY%cecRtap9kOw8J{i42
zG%<dzy_jN#*v6B{<wT=Su`n+iM`-7&s7#CA3(HJD;&jXEEVhCyIPH6+4I5kimG=6R
z3tp1R@X4mW8jO%GW?t~(9Sf}EH>h5}Y={$V_{Z9DRF-w6!_SthQquGY>L%QQsJHt?
zH?pj8cW^PSIsjME;@#6gWM0H9o%S?TaZ-pBo$^{KM3U%{#;HUw<VGN`e3%>V@@q0%
zu1Z10)Z$dEIc&3E8vdlZy3^sezKs8|eSX<V1ggqDFB6$8EYKnnnaIztJsJD?nFZm`
zGXweXls7svF>#Zf`C6bUH~HkW*F|NO;9J`UtE^%txRj5)s~)PJmz}7plp!XxQ>~9y
z+S;P}m{lpCgrDR05H6rGrOq>Yy$3B4l<eoCpX!jGGep6kG)luN51B>jQ&FNc*4eb5
zi6-_W$l6+yPJmQR_Cm}fP(UaxrrwTtQSuT&*~hn63}w&4X1%1@^06VxFryiB-0Q}D
zyT=d*htROjTlH%(KPa4|5u`fMoI4f;Be#CPQLZ;J+<FF<2>3y7z<c+}NoC9cp>jh3
z?P!vi15g8xni%4X0?jRl(3@ji#Bl01I~pu9#By9)lJO60P55jq#EFW*$FT$)G^r&{
z4$;u4#KJcGv4f7_j|QcT5aX?>{M8U&7f8FxWS&Y3dSvQ3ntrpmMngJQOYOw@V_r84
zI{k+d&s~>6T&^aZYAyQEMEVf&ihA_?PkhgJ!mcjWG(?ZV8hZs^jDFK!y}5iM>Ne<B
z01?cLnVhK<t$8P_0^Vc>bt{M1oGN>~A&Lew=(ML4Ww^Zln&H<6X$EJF2vK42x+dn|
z^Xq=i$kAtWeYm@Wd`Bs9&56V}T5y*rRiaR;ygCTDU9~<_oz^>4>(ddf;}vlCV8sww
zQ-rbWa=s0_l4!Y)z+bnJ&I6RYftc~27L(N)Ehdi}V$ox4A(0rAfn~{>8(fl(pV7Q_
zM`JbM=19b9#yY(Q>|BzpLH5n5NV$@=9)Q5FI7=$4<0r!R$kC+Dpla@zXaPw>dvQFU
z@?-rih+FkzLUzQFN%A-#>U7lefpN|uC!60<)>c(^)2@&lug;n6jv~|*hyKqsWJ=m2
z%QTji$#f@1;LQmTK-1}C61dgRaNPF}BpMf)(e|!{(E<s)@M3%t_`M{7H2`&y1m1)F
zoDCIi8+1w$lqTW?eKtc+x`tjAoQgu@UYaP$=b6pYit&X+rvacv>G|k729tluhhx;t
zAi{PgOxW_7uoX$VHaLQ=bvtDzCP2t8`y&XMq5>;URmsMv)N48V^gFY;WUezE{`RA1
zt`iLsFNs-x0;E7*P=8z89^zBzd)gb4y+ZIW`e42#ilJo?w{glHA*tQuYhog>n^~Gm
z#od49bv1?GVm>@d2a!q3u`2VNsK5x|iDL3+!?1(Na0uv&xuQEe%CBMR1wG{{9@Jnt
z$f;RDd#^dOgX|NIUVe#And_(+c1%_aGenu6%}Un(KWwm7?7Nfp{RcVFhm53^{JJ5U
zn2t*0!d{L3xL!}(Z2}aA=rgr)^?GaJS2N@_L6gAX=CA|}Dvq-mu}_dwS2PVsMaHkc
zW{Aa)mKq!@w^b%GT5V@9XqbwwZ%gv3OHa-LK?RLJ?ESd23oh+G{y|Le8gYFH@xDG?
zJn4;1{hE+|A3$+qB%8)`24WCpqWM`}(H%*~%>}^O)<7%CNptnO8ZE1tOTRg!KWJbn
zd3-XR+Q@e~ao*L&JG5FpoJ=eJ=7|&0#53XMbUwuW1@aKnrFBjh3-9$ibDTj8fLi?=
zmW(XEmux+#GOu|qAWn2K#gK$-*b8`LVqhpJ;m>IiBF4iK6-Qbk#^3l`Bw`euB>CZG
zdSt>YH0YW7OxVjW9L4eq0)$MHX!RQaJ3z$0Vh|z@BFCdSO&`=>6U!ahLDNO&=#wzN
z+b$mkbCfWwHPv4cD;$(LCNCbT$MgGUg{C<hAb^SG&uP)3jHnTyGMx30;55V4fmYT^
zJjtj$^LFKZq>H)9S~1qjxgPZK=QJ@-ZCfj`_*rh9e}`$AHM*KP)>g_OzA-0N;;$|F
z8fX5Q0a84#W^=yA5e6vOQ^<nP=^|J}Jgig>^?+c>Cg;(hH+Z6{uP2iF`ic5dNb5@`
zkzbLaG3K?>>vdC@2jF)9&m^YVsH~g3!t*%mNVMIquy&j)0&Dj)Hw{;aL#+BD1qv}S
zdtO{B&~k!$+N=7njYk!Nl|>*Jw)+)xY-m8pq1Q6?+fgdJUKH{XCHyg+>d5^`iw7G1
zU@>T@`=65$BfgVf(`N(>r;ps*#6?(0xn8dp9MN8&-Iz~qvgQJCeV)oqr;6d;;De32
zH*KoFDvoLZxMEx$y?zMZo%i~nU4M;}isU?)4Rqw=1XI8Hkq2}1XZ{$>#!RZ|0@!h;
zb0HO_b&7EeCBVh^4JPhDCf<&Q81|CWg&Qd{6K*Ds@ZU}|ve2r2e<myp|Drov`Um#}
z9mxSauLG=?^4>v*ADyCryT7fcXHYp<ln|=;^Xc%P-K%Qwbo>Trz9Q%E2Q@`(-Q@P2
z@w5Mdp#=RmQ@<7edoBM2ZHYcmTfU~YnUxQx-^Kr-4hUOm5g+KT8|t?Ke1MgmAu3fQ
zJnMB_ri#2gB+tW#*W<Xut^djr4}TgGD-C{k%t2L3(~-Tr=fOwG9@;2De(2YU<J%mX
z)RHx^ajD%5lq{y8WJu}kH-Nmpv;(}%!ulO+yjs0XYH<#WJ2wzT-byak5HLP;Dl8t#
zqR8UdtF2+jv6vyxEj_@@)xHG_)E2DeEx6eb^N%}B{Z4BOzKF90K^#@B7zmZK0j#=w
zzr%K`1oCJ2TB#Y%*+fOUe*i{vQBOD?c{DyUM$vqe{V-C`Jr2@hFukBvv3<>_Uej(D
zoV8B5W{D<R28eT|==WTdhfFhJQv%(4mFo?~oP7?B>|9gE<)I3a9{sh$yW@Y&UCGzn
zz^Z{JW_pk?-)D%)I5x@@O-vLr{uO}5i(Pvhz=yBJ6tqqk&{!m*lW8-Hfwf@*P3XCF
zEIheR?A(JfqeeOQ1I3LyrGw6p150Sb3s|cb0PROcZ1(iny>1570{8llQG4xdU|YWB
z$8=?@!@6IB4Y)>(T<Db<f{(7!N)n@-E@fi!N-mxlE}e~R4ws9hUk{h3PBmsl`}Mq5
zfy3ondRB{Ubm>u!J+0(bCK>DTGX><-lU=D(&pYv)dVo^@1<qh9o=P)ItM=p0)D}%?
zw_!#$)b6*hihX~`5N8nxAGYl~Znay#Q(>Wgn{B{Dd#f1GWrz_7BY%h)@Qw(y?p0ug
zA)BOYUpgsKyH5e3Hb{;aP6BoNjfL6+3u00G81&L_G|1P-)Nd3XN#IzA@Y_S3Z!$!8
zOk;bSHDK2`1L8EujR=P+CRTr!;iDRmSZ@0I484)nzuceaiSFO)l!HYQVdUbQI0O9J
z8sK1@0Sa+|`j}!szgDyh$Z@a@JZw)*GCinHry=qU-{mM}^edGp8;C&J-y350Sc&Wp
znEHEEeS0Bbx|yRH+4y=jqUi$&yM|b@$5Aekxq)V2+gcjhq|!tW1d?Q<H8R<xEQDXo
zCX)+r3A!Y-%t4@a>lpU#(NoNF{d#7*We&w4WjNM`jSk6^ueEW;y41QJzeu>h9{#5o
z{{bHIXC7(nth}n?4byW`kZIt|Rq_n*XA|!(P8@IqT)1<CaCa0)`V4flJ-XlFqj%rN
zzAM0YA(u1?Z=VIqgjoXerx}z+u15f-kh!FY^Cb>nCf!|=57UmRMA?a2?XgiScsDMZ
zJO%%!$<xzJo*Gp^o(@$)o?fn+JnbU#6fVSIB6-q9jU3vKzW~!PX&<^<EpiOG!@URR
znY_97f7k?71fZ0Wftq(ZpwW#q)rAO-H&pUx!N2)u+JEUcJn$sxB9Sk{IMB=pl+smH
z5gb%K)AH5WBJ92zLklPadOZ+>P#(kLiz4W3L?%iAk)>N4A@nvXF?x^!Ch~C;-=^=0
z^V=NG1}*q`KYae8A$~`y;PefEuVl8<Ul!Bm<dITz0I=Jmr)BuG63r-ub9_ZiAJ4D0
z?2dYs0(;(G%MAPB*j?pFbXVS>FGu^~<l1O|Lxe8nhT~IiIA-N;H~=a;(V+#Q;YCsE
zrONY{w>iqMehLIe5w1X$%pt&YSR9^1w>&>p-utPGW&yyT007ka+YVh%uA3<@Oc)qz
z0(z20dkv8*(7vQFf2aKYTmFsz;$>Cl|Ly+&iSE7%ySMlSy8HE8WcRyd_utvOCmC7D
z*ZidkX1d-&tN{}9xVXPu)MiJc)Be2j>iN_70yYOgvnr1!u6Di!os2-pY7BJaJ|D;g
z*Oi|s*WVXCrsZ))@%%2be5Es_x990s&akNsS_DsRcd#2xV|35C&xiIvbpFDRgvNyQ
z)XcDx57q3PoUEZQ=bQu}rJ0!-brqRCJzJ`!LJTBN4i@BUx{0wT`E|p?F5@*3kA?B5
zWcWkbL#=d%iliC6S<^h|-jDg}kUY``@1H}|t+puoLPJ;iMzmww=S1w-dompg%w{9o
zMah$2OzNU>bR+zz^KZ<)Ma=A9{hymX7K_;4jt>h1$y4~qYoh0A0lFSJK`sqH(FbVa
zTydVWSo(xyM0<wlcT2aB0h)@h2bvGPUeAH&4Jiuq3y0IK*TQx+XffF)$nq{w5LluX
zs$!YqVslo4yd{}LR<54e7Fb0qW)(T46qBOzupvIj%xUP1-O`PQ;UBza)20;htebRK
z)c1_^3cECj?&HozU&nPnQ<+O;h*a?@u#F^NZoseIXb9Lnkna8X=ssWM%#W=I&pcwz
z&ZjMPZSdka>Y7jbWO2EnG3V@eC+Nl9pFPII1+sOch?-737j=^WTGE#Ok&Y_$Lvof_
zi-#d~+ZnHkV>dO#v_a%S;2f&g!#fJB^A@z<`=z1z`1eLJ=@@B)DCBCew>XZ|&6e}t
zD(Z|*!Fbh(I-}v*Q;W`eW$md|SoS`bE~zk(j{fNR0Q%S@l<E!W`lt?HBW2PL7=Z7T
zRDd1-`sIV{raZ+YcdQk<oD1q&-wK25zBnK2)-$ai9hULXXR_?g=k`WKx?$s%v)w-y
zq+20K0}G0QX=?QSAZeKQor$=+{y{zO7Ww=~^}MU?xh8!1oGjp2M`w_tm1B-RSmn`w
zS;^54vyQ$DkG@Uh(eJ(g|G=aFQXc)~^S1cP?)@q}`bqXvm5DDlM<4x1=cBLaklv?*
zT%RBIZ|G~CFNaG8V#6hwX#9l3qe|Go5EJhMyse7|YVwv(CD&beElN-<s9|hUhcSM!
zx_{cUf_7_@)SGx?QvG@g>Wc+P%war_OMll83*DOj--hznqOaZqWaM|WZCu#(L>x-h
zk0}*S1D@Y0+7oq2HsMf4+^79QGY-&<LsidsUz`~a@2{ey<cv)@V+?z63ja!Js3=@4
zjS;B=xOP+hCb0^*NCVM6n^;LgHhmFoR8C*mFpXTmtv?4UHnM{k-1>i^qjN!qYH@ox
znE`rfFw?&BrU7^dK6}}t*KzBk(CQNizo{YrDxm>!;1}S(|7Avw>aW~Pw(qnz#>zD!
zU#q^EY;&9eCNo6?;9h^4j_+DAFJJSh@!&Amb;PKc`8w@q&43C7oORmH95MbXANDL9
z`4^^tH4RbD1Pz7TGhSB|lMizLHTjW5vU2B~wfT{xv+~xV{78aYnJbTs;6PH(5gc@S
zNq}6PbM!lTn8Ro7i+|J*LkDP7srNY$+tQj1h7*5HPkR$!vX`p-mTa^l&awWCbeu^M
z^9E^n(G5CxEmC0ylc4gD;b$+av+BD34MU6_Ag}B9F^ztS9=Y|u<CW1hFg@$;cl5cc
z_5+qO9frdvXoP~JpZ9x@atT%TBz6X^vmM4Dz|Icoe};X08m%VLRY3jK`Q!rm$xKBq
zMx3FQB#EPgh>lRJ+sbK^PBSbfiGuv_yZYq-+HC3agojysS`JfeYkHfXhAC3R9Iy}L
zr(teJTY3#K)$7*p5*uViAS@F&#jD9PE7r3_21@uKx>HPXBRy-ajuFNbvy8fD1F3_u
zdxEnWkrTXGS>^~|o4;a+9!vAc+XW`PPVQRYavNF0J2-K+KbP%I7KP`$A$C?m$0bCN
z#$q4xk(<Qu`<)&YKN`#Z>Wd!ztoYF!3M@;^p*DRid<2@gx39v-@fTw7k+1-n*G=Lg
z-df6!#Y$QA#h$*lk73B&{lyt9>`qzkr8EuOmyrAWLg|Als{}5!qYu!S^~*HVkQLX~
zBmbmKd5?>caBk8c<J;3-tQDuy53sA9Zm{!~(}bhi^|VINn#C7kF1iF`=L-d?Q_k9j
zI{XHv$B~eEojCZNb@`fs;q@qm{2Cbw=?)EPh#4IuRzlB>1|#L{4sP`T9c6(xPH9iK
zWyxZ@Q<IU4liTCi+-`?cbJO+uQy_I=3|*EXRy#;TtaSc6%Hzy`>_9dD!T%fcKio_D
z!t5>g2G}8uJ=+%aW6w4c8z~#Cuc87hZ}?@Om${;5^}8feheYha9%{va$aO0XAzgny
zDo}J*KN&*$dGwpv{lX!nU)iNXdCxw%pDl#+>+>pv6ds2|NXJ%^FH45?Vxej!B~~=+
ziP3Z0u4esF^qU>FSx=8M>kal<&#`8`!9HtAQYxD@r>T{v9B~2|A#*<)J={TE#<}vJ
zqDP)4NyIEkBEF0y5$t2UAeuz1L=qugAHO0I8=n8Sm@z<enaIQX2s27FkK>%_(vwFR
z9)rrA0&V<Ei3MTeh?Hg-+ROhJBUxV&1Kb$wCFYSOr6vYjmPg14e~{jtUs*E3n}+yU
z$p|}GMlk7-TYn4jc=+!F89*UsE|+&=`VG<hUQo%t=S1#19Pa=kT6n$nGEl15EJ|fO
z^r9s4UC&1Hw`6f?fW}@^ea?C@RPH+Rb;scr53F*yPs*c*TQ^V+H^1C#5)8u>7XVwp
zg??;X=+*Kd1aeT?1{0^jG?OVTF1;MEnRN>EWQj@NFZBj#Vm+2=ZVQphm&O>4*&A6R
zW4}R>_g%qwDrP+py<m$FCXRG6sk+Sl{>V9n{=GTjY+e@Y`twIV2Efzb6Tw9C^epMb
z{(gflcuTCQ1I^loN*Hc&3(WKOswEdP1`j_MMR}6MemVSy2-hSG%}+GRbwTe8$DU`{
z!^w<hFBvVYZSlp~7SJnTQv&kR^NTYiGjZH+4~_J0{8%~aebY2ilISz_-_zy!!p;G{
z5HR(3{n+L-u6LOx_F^08ySQ_JqGGWtcL`{|$SwzYi_TyVofIS7fOI#k#8>G`n#Ehl
ze1w9>MLK-;C9$9j{3k_R`pyf0X7J4<a@wINDLjLgWEZpoc_AH}O^$AMDBO&91{gDz
zbFI*Zp;Iu1$syM_8{!zqp?=*Xx@iHFe#L;_2hb!9IC5V#V`{tUabjw(b^wnke^x^Q
zuXkQR|CdMsdOu7P+hKBe=ka+bm)=&CA{WRK%QRby^%@;w&rX4+dMi<o08gJAi%(8=
zF`N2Arm5Ev(-Uy1>CH@XH=p)9Eh=)?2Ym5Iw+3=ay8fOa7UfY`rv3mW7)-?t?_fBR
z6B;BZIPia>d%rx^`p?>2JTVDhJG?Nc;UnZkq)RbGI_vvM#yCPEcCdWLQKhrwwKiAD
ziv1;J24yu;0Y79{Np!blH<C7P^<KTIrCz=7is<TyalOotc1KMt`G=f7TOC=y<<4SF
zrWxg+Srp-*=_3oyEogHh=P1@F{}E|hIG%~AjcTC7ACU3u#iGd+UQCt`_(p3FZL{0(
z>sc=Sc2H=x>uwZ(fsx?w84|?Ur$aZMr;iL;6|J^Tv;3T7vZ`f^q<}E6>bA>O+W}Ry
zz0nZgWnz}5B(#J9*q!_c>8Kd|jhEtqj(?<aKu|I}W3vlroq}w<$1C{8iv}c<!ZK~~
zTR*-VNo*U?M=<(Vr)v^wwE7=a=;@#ucF)q3v2;~6n)e7dUs+Z2x`tSorSbh!Cam)_
za(ErO*6XqS;tt?5>*l6eOpX$~DH*lai&m1Tn;V)!;kzsj8RBRb%R<B7mHw@VvrKeZ
zlXD#%wOug8t}J#~!?HA<j3R)tC6nSqS@0^MOuAN{S@;V86&%IIECi}#*j+=Mo`3?C
z@b6-fIys?2kjfDGySx}-X6k>IVpl_oGEbI(^-iSC5a9K47T-`|@Op;aF$S=e?^Xc<
z4Gqz=uBL!?MKzlD3O8R~Rr6~Nv7)X<l!7{pdq;u8?z#*P6W&2^xZV)o)HU(WRD#3D
z@5F$^rn>Awt+TH)ov?nZc#nLP(t~JgP8D5|mkL>1`E)DIa<CqB4S%n^m51jw;2KlE
z%d*5?Y!zdo>~@VtIg{!~`d%JvWut^J&W91>l*Nt%UnV0s`==v=NrfJ8x^YdyyIRFq
zghyY4;&6t3Z9W-+Ya-jRth&SB)-0p$o_f-TG~w;+_$J-i*YM5^dpo{97Nl#fF`2Z>
z-9Of-;&zpoM8kxkAN4?|SgNjv14tbtRhS6`Bg4|VzR5vHjY-#P%3<z)4i1?AwujFR
z9<8m%=eFQ&Jh!_HvAUjH&$h}=EqOb}u3219qbu~<m@5+DgzmZu>08I;x9IYh70tI5
zL|%|z>i4!JQ0MB|2~_^uF%WsQo@OQH^8g_PdERY^86RoRoN8<vNTtc*2~7q<+C2k(
zd{|SfI4sLJ4)kQ&HJX*$=x`^M+K8dy_&-cmolLPNOC#NUSArEdIp%G%N^5;k&SZ2o
z+D?~kM^&TkjB8|izLz3W(lAUDfez{_E?Grj`_w<`iQG4g`9kxodf?1va5$ae$^a<^
zR^6&n$G3X8VO0CLoiF@KPX(cO6g$RclI<YJt*5#{%r`**z21`0B3yxwPt>#+S6~(t
zlewL4Nr@na<A0nX{RJMZ+fHxw+<|Kti*)fK9QZ<YB?54GSI|;j4Wx%Hv7*EJiJH$0
z>Td(l17St#J(;2o>*I(WEB>L8#c4^VJR@l}?>k8=k5FSH)mfPClr>&k@)xJrxPYv{
zGeC6cnvNgPuS@&6d1pd#^3JSFRC#A;1`&fK#$=s|$wvc6x2`%_X9_CFI+JV9I`g&|
z67p&k%6M;%eiH?X$yB6$CSyf0U0m7$bAb2VCKI0rDTQy!n?a*Yz4nW?`}C)=BkYm!
z5IN3KOaWh{g(VDAkDnv~8i$lX(ltgPiPL(WYW>s7D(>AT85F{oBF1l^1DGoF>zJfn
zA3>r{RJ*(3G#AQ@1U?Xe*O448Iq-&eJz-{vML4spdR8Siflr!T$7k`YN&l#VbTp*4
z6v>e!&14g+(Pu(bpO321=c6pzx4IZ)=7Yo4?-WONc#&chfT)~?B@nH{_mL7Le%#^B
z!Lz?INuB*QMwVXdFLeAW#nd%$o+&T!@!tr4U-KkFfZDfi)j7**o_w(4lXq2k^d)rL
zlYb4fiwqmLAl79nvK;Hq-mM;)pnQ6o3s|B_dO_sv<Z&A(^>C*F^@v}#2Ym{JEsFi&
z>y@`{!d4?VjR@wy*EUcN5A>mA{(L8StKsJK9Aquq{kBK)SDz6Ax(i$p6G0dO_&44D
zFM<6*AY?!^-!(+PT^7--Co(PJcged|Lr=fDkr21I8h!dl^;uMnJ_G8K@tQp^ig^Q7
zyl~HnXlVSuG#qqO8x4O~6s$uUev=^{%mGX$8lFUG+-(vPxg_z^*G$7NPyCP2aKFhQ
z+LIAPPjhDLe*pwBqs+7u-!`KS2V3f~;Q&Cw;_WG7`#j3iZ6nMu`f=b)d|kzanf;c1
zFv>d8MJ0h*_m0Q9betzuvGt^i-DZe6b=@|7b5oQm20cEmtHJ5r@)9bX)TXE^Mer7Y
zGJw&$`GBZTpeneAK2xLmjHyPSX?1CviDF-w2uFOkIQ6yHBvN+^QtSp9)=^(UNi9kA
z+{qOC+{FJQDE8Ix>SF1gfRZmJOEf77f*C*>7xy2cex<4)>tB#=n<Q=j*!k+b-J$CU
zWPmB+Jwi)31YE{5a?+S3BE_xO%-2<ly{u`VFX=U3bvbhaDE()x)pb+PD#fSRBbDh_
zzjRYNZiMuIi5Z`JNg5J;=8?yTW(}8Y{8Ui}KMH<X^<K5+*8S?{Mv2<Qr+HfS=k$bF
zfMO))#5wmaX@UVdJIu@Ql<?Pum3A^j89JDNh~F$;88=wV@1&=BCn}=Tf-1<@aa$KS
z<nV?epBQOH&vU}h`AT}WrMpWz!Iv8xCh4!?0PS@2DDlFWl*IQ209xJR=;LPF<qbEF
zadd-&)1E|p&~mODqlJ{mQ1Prh_T62(Q6`?*HPecX7h}J~n5h&@vmu3$akKI&)QCGP
z?HRlAbw9V3F1yRWpbR$mI~(Y?iRXOq=Wnwy$!P}JD!$a5oB(B_trI-o2@{KOCRS6B
zMnq_`XJh2|D!^7uv~|DKWRcp6-ndPvckAOcQ7;>QzgsMS-9gC(Ry&IIhGI=OcI%-)
zg%=I6;76}U=XnFLL>juGSY&Twij~+TMJ(=ym+XHr__s-2TB$Cx?Ok3L8@S6H>hhAo
zzcJXhO^*JuCtGhLudf!)&dZ72`S;Y$k5D`RaYg4Op=_LLI5}d=Dlis|SFI<7Te~W5
zK0!5~Sn1$$Djz{>XZJV<9N+3v8a_HWshy5&bep){X@-^OTLXHU2ShU$2%&P%rO)TA
zJjr^~46%rUhD8UDn>p~TJQNb{1}3)AfkK;p<I~a&_{vEKig989##_p^h-hhI%3|~q
z5j_iF+#8LjtzPV<5}Ktj>3T7Dqm>UMQ>?bVn9nba+QzF$P#SRbIf+&*EDqLfKHtm`
zw@aUISUAV8%M6{fqK*PHbjt6FWJNG$&&rFeAM^;YJ8bnRJHc~Mh8T+>rD<Z{&^$7l
z2aY)^PR#cI7-H|xJaojgZhGydhzdT*lfLe!Heucn=lhNDaf*u#Aib>Dm+>_vW#BhI
z%usK-Z-zI?PPZ8XDHi?<OvFQy+&!kA;jto6Zi2IxE~X6u+-}kI=b&jOt=nfEK1e86
zaKRa(h6^N+b~$vYJ^4@{hG`%Gz%cb&z`w@RZKa^~gGCr&fUW?v&ptsNyUxl(dskCK
z{KOrNtR~X0;_^&;vVeO)P5qKuwBR(Fj~YJx2_y3AYG$nZctw%7?`Osy@D)Db?zZoR
z{X#$?-bf|dow)n}Mq&|)BAqbpbb=mk-xx^~6b0U~F%tWY;y5M|yq0<)vN95twk8(@
z^gY*P4ZptwKp@bzG7yjVdjWG>ixZA)rf*-)&MS>4WFc<;OZ>RO!R~cFAcJOnlJ~Qg
zf};W{fMKOK6%1Tr_@uf(c?GESdM=h;|Dc7Q_7;XEaXzRw3G`Y5=)GyM%dEU<IZ`D_
z1+{S>j(wA*PZ!RLrgPG|jO-7MP`8TDpheScQqfmAg0^{eh@977X<o0xy#9*wN;kwG
zEcQJmJT)g3ViIRy?Lb^Ghb9mJgvOSB{U&kvq@$FaU18IHV!Bu5X40s*y!XVF4IGfZ
z%Mr5o3~x7Gu23qmi0(2>WZVMHO1LgI0cioTDv56DEAt9u?r-z`+r_{SI#TqT-5VX2
zSK!C?tuMiC&k&nnX+e+@>uMq`sJB$v8VZ0(0Cb?&95oAVl<@f3EPzL6x{07ZYB61e
z{ZNqSjK;AVpy9%o_1aSiC!v=wn*h7lM&6PDg_{GxgFP|v)gl;h{9r8@5$hN~>@h+h
z#eUDDo5ekFxLEV`?h3rx!&LkkL(F(V)Bj{dg+N9p%VDA(C_}$Gaj;Ocu61sLxr?8U
zQvQA4FpciD>!S_gO*ia9eJow`CPsOn<@P#p=?q&l(lH6EZZtwI+eZcO29Z;aT>#E7
z$QyH=`qK421cYM!dBYW3wJBAs_xkgjHf@?O3)*iw;q}EAR0d6uFi^a^8i5n}s`Y~1
z6)J_ytEF7(R~<f!=ui~Z0XD`hdlaZ1^DFJ4JA<;rVAbK%>a1XhYCW&g)>1GVs#?#j
zPU}L|dQNqwu89%QK9rqJlJ@2{<Qnz;tsrNmi5{;I<-2@qMG}V_bFO!PMde(dE(IJO
zo~x{K4)?>iq73ulD<r}ks&G6PGNlo(Fi)}zFbwKDj;K(;kB3uS>bgqF(BZNu7v#c1
znKJs@=r_X(!_LX4$|8L_GeqA)EkJbQVwtyCmdzVjh|R@@BPx7w&TujqZi0uat%nQo
zA>MZ-&=psL>CDzMoG-wXeU{YZtCrNXzDzmQ0{xv`D4l9ImU)py-fD<hg&gaXVbs-=
zyp-r01Ydinc}O8Lno+;c%cwNkEryuO{n%&X37XEMFr6o?>F^zfeNUumCRivpY`y)Z
z428p&N*w+?x--0=PVYtB{QUFFD#*|8!hdl8|G*7b;UEt?q7&pVv45|azqg<;GVFP@
z9*FbhVTY>vvaAenXrvaeGQgNav0vUfGV;sEM7%Fg+F#X|Wl?}_&^u01fa&{Vzx;W?
z_T^MD&l4bGj79lMYWpn(qhCG5%?oc6ZuY5HF>V4&IR7?PKU26FM$PYcD%9*Tu^On^
ze|HoDo*6GuvtRU^a(JUqbI9%}NP{mQ9&g1BB#RGsdr@+!k59v41N(MY;CfH)Vi+A@
zh$G|WeRX061qvrxtE3?Y?2d)uW8=dx-rxSd)P<J7>y+e(%q_wh;mj_tFY+?q_J?wX
zfS*2+wlhSxLM`Z|=-0z{vN%RULQo0`siJjxepAsdyV;<ojsKwMU@%##c*D$xKO0gp
zoMW|1XqL;X!<+gj{;{k&t^2ChORL~E#heMQA8tm?by$I?*q&`+VYoY`%}y741`{BO
zo17lLOnU_A(ql&SP1+~N?I)urzu*em^J=S5wXT}ziCLIa#gE<)ZdOx~>Jsn!8#f=2
zpRZplCR3>~4751r&5@h0+$VMqVV80s-X_f96>APmW%I2W&_ZSW;1DfG3adrOy(LBn
zCdAW{2h2n7A0pHELL&+<OTtH*dK7Ms18|pKg&dRvw7Qj^)(swEPOmgQqlh#iUxX$k
zE%P&vRc<|>Bw-EoAwLce`p~^bEg4iV&fi%QH?DqTL|pxBj;sHYO$KYNxcUVgSHC_o
zuKsn+imS&EfEEbW*(4H2M%EXD=scmbMosF#l=MFuWOUJQ!h)56>1*GDKg5FTeEJ<?
z&08jBqrT4NrxygEH?ZQfvQl7{3DSEhU|vzNU@7;D66pI4XO7`4r@Zfp2wUCZ?Cij$
zza>sl>fRAvb3i`)I-&U~?i5rK{o1gT3f^@5%4vqP^c!N#8n5lp7Zp-Cosi+NPh;5T
za~2$C$mgZ{YjE~&*l@(4>N6C;DLGBwvI?^?Naj{v7-nu6Mkb7PP!?&>pC<r&7C!R4
zB_O~d-fAVeIZSK-)GPl8nN2~GeJd?f7X6pm0O}|aMLm8{655Z^Z+^5%Xua(Wp48_o
zai&lsAEvrE5pn3SS5_eyHG-)~jS#)~#(FUkU(_VgtdvDF4-8YoX$!6Wt*K{)^hTIv
z%0Nm!T@_Nf1pw$*up4f@A#s(4cu{E7(X;jd+J4~rTF>f0e^5HWO!3W8C5B;a>o6(1
z?K$d2LU$Wz*~6%!i;-=#fX$>x%g14hpE6Xy5sk9vsEy3Hb*EqY`i&YUw`JGSDDK#R
zU#i3Vr!xmnuN4ga4*Vka+=_bcJQ~H_pywFb^ExrOF?l~{p{WVe?Km^SxoftgY~V66
zd+f0%I1^<O-En7%9dV{p#DijCHJs6FxYLz`>&&BGOi)}IysjU1)$lspg4d(ff!9gV
zP+2le!t2E7H`|AW;dO?6CkR?U9|l}546Xw#s5}=5u0HF<kClLHC<0nt5?WhT39bDQ
zNOQ)u(X-ybzf9vDHqhF^^@;-5o<~V#0C2s`;F`;@sy_wa_1OTnl>*qF(NG2JI;ViO
zdmQLES1n-e76(`_SirjAf!Gwb7NBCi1+nT$1*cA#So=uqfR`*lWy1>#v6Nlf%IG!w
zTLPYB@#TkXCBqgs@xcxG*30pLCqLvs>iT%A^d^P_)%W0E<dk!74z2ZBq~_tQN<_`A
zR07)$$y5Ttk>PX!@++SnlBopN+ul(|Cn_<Kf&Spvi1q=QMu4n0VPsI>lAi<Frj%rx
zBw)fg)=eTU2d`bebC~4KhVJ|uJ0bYaPIQaa-k?~hnGNJ0ZuYn_u_qSg!D1H~$i81N
zvN1b@ss9DbF%)2clGycumao?k6O$-`W3rEH3%Ef@1HHJrX3;&`3249O1N0MKnB)qF
ztkF{deo>r+f%b2R;*MA|VVKv4{1<+oC%)UyYc_2x(p@6g5B#^a_zdtagws2~mfJW&
z)L)5aNVBcpfmF4eD!frStVx{fLcg1m2W-1+>+hyKjQB9Y#nF1~BYU2k!`$#c1Mr`G
z*>Y3@Ju8JJz@Q{jG}XPLYXUB6kk{n(c!e*4<cWu!>ERl)e!8A^*`Wz`Yo6ByLnMg}
zn#;b4OX2Z7@OYW#=h$8phm*u+PV-&#D<Hlkl(;|+D|{u;48K;Ym;VO@ku#+g3L?$9
zMZZxR*L?Z;gnh>WMc6+c6DI6#68+*)_QR!7^t*7BvK2+Y88*shD=LkZMEZ`hOClQ%
zC<;DjOay6PX}wrH#v<*3YEyNyDj}rsUlv(^g(cvKg#a!u7=^x58AXbY`zoO0Yf5A3
z_?%I42UeBF(s6uQH633OJuLK`H%ig*%fF2jI-*Ir4@r6VXB8=DO>9}5$;=;BH6=g0
zUsCcxff!1@b-$$K(*t%&?zbqp$&_4S#0x0X{KbNNSjvfeV=G*T^Zxl<xDx+!Y9)Mu
zIOkyON>+{L&1pbRj#(ldQ(?VF#68_b!(JnLdXdFk!5pDU6ul;y!u1?;g0pi;a%?g=
zmJM$AsRcZX3$W$*!v-~FYQS;(tnyxaF(vXnBrRLzz2+QHl0zmaG-G7x!ubbO>B7($
zE?tOQ@hFxqY|bY01GdGY!*wR(M9TB<S4Y%iCvY#(5gtB*neFIkhV8S;eU%kaxvxV}
z<)+xTXOcCozXLxVBL$ji2ULwAcx38tYthxe4j-t>{sB;OU<~IuX&}D7ON%LY7u5e?
zh=M<Bbgd^#?nqwuv4-VSrg5=AKJ>l^qA=oSL!2b?h0ic>BSk!eTr^)2fgGeq877zB
zDYBK`@x-Zlbx1kGu4xoeJZHi40bu-?pNN-zVSm&tYKeXb`V9<{B=AKohM8oag!od*
zzXTBVqL0~pD+ZfXaopp}cQqk%M*kBOs88WkK42(`cq{hZP%R*{tla0!c5u}%H1Fc3
zQ|U3y%C(Xzwsir<huJ4y5uXt!Ea@US;VYszLFQgT@i>vHt|pdKZt?$!+T3k_h1}{9
zZgCkm>Cvm=R!8<IZZ%?DHPn!c`=VG<&mzgJE=0fSRTO4cKkbWUR^J8e%xd=@#gitC
zi(pn?SuduK`^D7eZ~i6q<*)WdajGdr#HoxNOGEa>(~wK{#n+H06v-Xfx-XWh;>)U;
z)s}s+%xYqhVpjbcRfAcbeLj*|ZHhCQ$wgH&tL}Rwv-)vd46`cTEt%Dr@$uCTe^t!t
zhr6q0R$X6+WL7Kp#;#=USl*oaVP;kTKgg`A<W$AGEKap%LM*5HVvmhe%^W8=)uug)
zQ++Znic@is-7ojVaH@}>a{z0hJse$T_mf=~d)ho9f;~l+z+1Y<#-0|9lk8~~&*f!$
z<hHS=aFyM`yHu6klVnw|Zk64_JyBHR@Hm;ZX=wDDlj_azJy8g7E2uj}tSo-HWluHu
z<;8KfD!ZF1?GfZ2-;HAqiz|D>MAkV~!{ThyRh?a>J_0bz!>XX4;ftLZWh>ruqE^$Z
z4Jd)|L=@D<Dw_YKc%A`3_T}Bfs;aHMIfm&hw@kbu7j!96%O&3P>raRY#EMG0poRAd
zF)qPR**wZcZVqs&mSU=U&77*G2qvh+VxQ>cj!LU+ri!^AIJ24Oy(Yd+!ja~EAV+#l
ze3PW|jiocwqYg@4d{u-T*x_+*pAQe#JACrf-D*;wN{Vczid7!TZeJDaYT`(%J@V5q
zQcd;goG`z|1mbf%rrt&DukGUde}BDjLBp{v)YRS=hiPh)^VHnl7iA8412f?`mPR#|
zTRvym_LB^;ovS}&iKB&lUn7Q>c}+MRBS0SiK2!aJ$oT<l<-H55aNM`__wOsz-)SgJ
z*J9V-e~72QbIT#Dzhj-5@l9-#SBt7I_9KOMig|Q#@%dXo9-G026tp(s;YYu5l~9+m
z6>`1ZM#=U5RLbk+lCeN&eajIEvw&jk>Oy`zwT+CYp<#*}K>d9Wg>A66Y76z>Oy#V^
zcP)5M&l03Ja@NH&s~x})uT*OMjEwGiMq<Z06<4I|*CLT|`y04j*`}KkdPqmog5^y3
zK*wLAnTE?~fuRv%yCyGo`l3~-TW4fVKMA^a{;8A4mV8GBF%5=4i^Egw!3B6|7mmQb
zV4NDCIezJ6p-lUfHC@l>re`hGGqC<m!Y!=a{*7dkHw?VRridYs(OJ1ItBPpdVz3ic
z11lQnY_tUu<n$icM7}S#zYkxo-AwlzNSuBLiVVYg-!gB2oHN7lu1Jh&yF}VWG-Mi(
z82IsZ0>jhnGH;0QJ^~Ur^7ls}Lxn@O7e{EwA{?^4I3$OhRK`__1GuHVMn!IEE^jH-
z&P~&^iXt~P$F`|64pnv+>;lQm&l@{(RK&)96KxWJEgL;5ys<k=E85t?Q4t%9#-#x5
z&5B{_Vt2_=FGe;7<6qQ`(8Oxw(P9PN)WOe{5^dKVlY63EXfIU`YJaC)dDB2=CQa`|
zlqFa>{h>B4NmYL89412aPh%cL^d@Hzpefw0e<bzcMUs+*P?1Dbepg{tb)10)cL|AH
zpGa|uwtnO?-x6SqLBM!T9A>~U#7AYeL}u|o^c*p#As-Nko&m;$Ge{H{I);cp5Vh~Z
zoU^gsN*t%JOu}#b2l&mL^$#}ITZl6?Tp_gL!ZX`?0FV*aQDaOK`wO+;-Oy%27hfbm
zccpLi{(u1b2be&rA-+loMOXwLktqrTmPOz#L+n--feCC8c!eIBpaK|X4h%UfHw2U0
zpoz0QyP>&MDgK9=C09dmmh7(v!Rc2NffvW3wGV*!0YzcFDBD*NUVvt(@B#(rZ#x7i
zZMxn9baqS)*AU2Rk|kH)kW=ABfGHtrr>1IiH<u9f7z5Ok{F6{-z#)r_z<ymCtXbgo
zy7-acq$eKJ>*A**30~AA6h7f>eE5lOR!V>3VOkZI`Up%r+&;|WAHshI+R?4Z8NuvJ
z+sjXg(N4+RGsJ_u-g%{nbriE^h_%Dwlg)LpaG@tl_44A;Y5>LNNG|k|{XSTCI@A4p
z<hyO0=)(#*QOU3{V1UrpIS`4>r6li7@DMidujxm)AMeR#-0eY_Hs}M!U5V&FC7BkY
z_xQkvExT)Cyl_#@!p{By__Ij(LnsP@&Q;SDRaJaPL(DkZ&=4QD#CV+T4N;l_4G;6_
z?fjFo0Su^%Y4>2MATgz-hRHQ??~C_HsfvN;yOEli{T8Y&XB;Jn^C7)CZ1&>@uDU?4
zY3Uw4N~4Vhdh!e8f)kHho~Hd6?jhoG0%YG8#N75F+?4~JeG8g4Za$#o54hx~M83e5
zmpX?ANQ^mEvqWOdBNAgCWsG^kBEdx-zl{X96esCxh4{6W(4WZ74WVC<=Ui-C0nf=#
ziQqZiJuwom)AdSIS3d61a$5PC&a_8Mgx_bn;6T<S1}UM}&`vpx;B{GNWB|?eH^eZ3
zC;4q>yu2F;e`koGOj59VpM_46d`M_2b`msgXwT3zpR~K}?L!t<IY%28@I*l7shScp
zY4FiNf7yG-WwFV5ASBQk$?VP*@XFtazdDg2?C%Up(I0?2E}|tYgC)EsmcfGQoZ`}~
zb#abKA^(Z$ApbX!$Uia~`7wuZ$Z)z8*#!ichw3@&{p(OvFTwKkSj5b<S%r&~Re0~6
z5mw=`{|_)-<Oy44Y{`LW4@eN(3&&IFxXmIQvRj11cfORFN8Eu*;Plpk2hn`N8rSYJ
zFQ(bJkAF!shPW=s5fTrC^m;!1_po0N5dOAOCEN$cu|^ys%OqPsZhl&?i^lL=y{<-P
zaF<8F*{3&wkzCeD*1JHQceT-(u$GUED)h;Idm>0F#+#cGfD#daw6Gpd5)Z=uTqlSs
zF91sTkXh{MWV*}%KvDlZlb}eF)76AGD-ds5i4}-9(D<{O<^Fpt+r^if=u;bE-w?C&
zLJ?M^N2C>L{vMl1vr1W!7VS|Y%__7ay#*cKLG2N9l(um(#hOesdtZB?Sg`k{DV37V
zp)odAMK;sKf?--oBacgb;slguzCL`vw-ixLp)-77>Tm|jioUS&NCjU2O@0JfHEmrZ
zGtqy0xT48rh>4>#7i!pB+S9V%5c8OrY(Zl3hM4Un9=Ex@qBT=f==JWlOlu~m_(Ql&
zyV|M-R|J|n2H>&5uS<yjFNj%AGlUs2N4GCQW6Tnu6i6KZDb^-q?`7?v^*_a`WU|9<
z?i{*WX$+^fpo2WX;VC%w>9%ly0Bp%6A>8I?=~~E{4FkLM*R5R!`oJNPr3WJ@2onu4
zbhLCnJ$KL>QsmccN{{-UAP=Baabd8AezWkg%c8`m|7I;ZS^zY|O5y4IqIZoFD&+T`
zsb6pTIMNWqVAL@2ttlofMH6--+^VgAR$Dbc6_>N=ecGzIsc<g85hrt95@jA5h)X^~
zI5P?;?^EKCM45$7;xGr=Dh?CCip642TjVg~Q|Ns6x8<+25<ey42z@%4@b{%errpCp
z;H<(G<xsA#DRPk-5ndDra?$7>sNsVB25Bc39aBct@Do0P3IYe=DX!=s&h3pn2-=t)
zW3@mC7j>*19(4h799Ts;EIZ>x)U!Gh)ShLiTbYbd2aNH3wYtSMaCM*O;_5!-i40B*
zMVp63jR56+sE5YsW;jhZ<&~IrBU+W+&}yiDyODtjq;+FN9HWpt)&tAXSCtvh&C(%H
zGO7uRQIX*JzBo5l(_(=G=Xa_dZB&U_(MC-;5@(~f4c7ubLWgOc%%%^(a(C%2AN}s=
zC&6htCas8<#a)fN=5Q<~B#YT22os!Q<6)|-m@2vs!K@o%wvJo7p(D^`df!W-MYkau
zd@)y)=_XB}5Sq+uUc#oC-Y2}Q#fFiJPwJyuINZTDcv53((Tv{=RRx9T+Yl5Es1*T)
z<!#7^p%z2o`8GJ){<ZvuD7b-mhR?)%3Ni9k?W&bPnBA}J2gi%Mc*sk(CL-~=7`{@|
ziYYbR^p={~!h*b~RPV@Ke#Z+{m}4VE)4p9|MAMFJePv^;&#t5u#@a;KgupvbA)!Vw
zUP`T@0tCg^VR0_8`mIvRr)0nbO}_(v<JK)?Kk_winPih_jVg%PTC3P3_&wDL#3qd@
znKU<oHfBU66+mDq)*pmtnQPnt_1|^|5=FB)#9I|8W%H%YhN-rv_o%AO)e-x1rUE6F
zH>ogEi9Oj~ent$IN-VSK?@GP$!e_&98IUmN2nQt8#7CM>&F+fVtj6Sg@_RGcmemaZ
z8AQ{RpWh-P<~6;un%7stA3jy<A9={RVp#$}vEEL+DIst8VXtW!EJvdRSe-K&L@t1z
zec-PU4{i`Yc>&zzqQ@B3S+qKlZk`Gtwr5H##14$rs7hX;+n%#5pZHNec}<)HUFSyO
zza<1jxffBZcsBZ)Mm=Pwe5kvSDoZ1<y3hN*NFHyGed>6>CqojD1+PVRy2JG9`jGm#
znEE7(lpGZJbA2`<RN}!G(`ve2GVN5T#Dh^|VrorfzFV-miI~9#gl!(v^;u&;hYv|j
zJLxgu@4@iSM3Jckc-yaymP*9$9U<b&D96(*<CA!<*TR$^a~g(#+T9L-OICx~L~L-S
z8(WsZ>)8!WJzFem8HDeB*d`mEOuokzz-Q}Qy5QHmhS?#qFK7?IR(uDfvjITaiuM+i
znNph;tGfIgz@HQg_^eRxiUfQNZQ&QY?SPM_QDXTXF;lX$uYjG=K7Cuumu;3~Oi3HR
z%b(U*e@+~&MW8Yg=>K!@o;G_7C=M{dNKN=^5r6c(@5f(1rqb(f@AIAFK^Akzwk0Sl
zWhtqsExv3ge5v%Z8@_BOx^vI2ZMkQGoLD(d>?L|MH<8+Z*@*_52T~P7V#yK2QZvl@
zaPY6V@yt#%_|`-}jrK_=emgjs-kxbkZ-*q)r%$(2YZ_dG)>NKLYZ_DoU<l51f1*p|
z20XkKAR5z&67?R~#&kW1O~=-xaSwW6T=+STA#=Z{v?&7SbWpPB!OqsOBy8|Wl1ozV
zork#42pO905c@E~u>L|bR1$zMfA4i=yR7d%EzZ<(g^*sIvOyAlcXbC+A6^ivYtTGa
z<f18QNe%kw@?3iPnpnv%SHa8I#3FbJP?;`3D68k(hpc^SuIs_ZfFt{B<Y2!^x!M3j
z47jU=j6rUt=VK}DziIJAi53!zjqVW+)yrC!!aA4L#)T|t4WfuxQQHrbAJ^X5fTv&7
z!ReuGnM;k<w>I&|yxRUy2qu`HhX=f*jkBaF&MpM35`HgigKiS52`b?mH}Xw>s^M&C
znBs>&%l!y42!GQC_hTZ1@Xj`JKc@1_-ED9`CV-GM2|3XWu6q$xbNXJHcmbQ_U@EZd
zoH;S6z$m$-FmhEQu8_vLHV;g<=cj-dBeyt$LL~tcMgb;6e?a!VL4GNmlmV|VUo$c3
zkrFj;Ks#iPElt?QXxmPTA?AMN;Ee4u*Fw5jJ3Eic+pXB(DABJIiz&BQ1{bBle0-Fm
zp`{^~Z{Vy#WRt)e%9LA6l$T<9A2DbY=L|YsT1n2JzZzoTs635K12WwNx|m8AlY<{q
zHYNjj;C9Lhw9dLrc9L*dAme;llrEoY-#_57{kF->A7`T9^xqcF{Be0|WV)O*@#9v9
z)5KDN?3lLWV@f~-)A)EhCFs~hk2hJ5XX0Zr<~h;&k^qO`d;_NGq3LDQncN9yl5MC&
zR5btkunyoD&$v0YXQn8bDsu|~?rd|g4dv^pc`jCLCT*jPR7Tbl&#KHqU#SjMpl-1=
zyKG-UW|xNWh`Y4V8;I`@%fpJf<qn2#xfjX(T}K-nLIC=HcsRAxj;XOBxZ}1-6J5#F
zDDRmY_@(l5*%sXy-jClVVNd@Rf{+K9_Qj5Vc+^*S0atYpK%F>905xPZ1JtpDl>pS6
zplXiJ)5ydr0V)hndnZ$JCpfWjJ0jre=_q(&Psfu}qM&9_iOiRDBKl2!Nf@3kOo`p4
z9wiQ}a>6>@_fzt4e{RI5m<fgB#8*zOAm16r>D_3Eo+Y%GgrmGN>UL^M?6&tQ32*z!
z=-I&gz9kN;NP{jun<|t4t;5rhq=x!_Jtc}DO(=1=Gx*X8XB#z7x@cVQh<?r`4Q7^b
zZksWko$d&N_J>Ld+FOJ?e+A@05^<ZD-6cowEH);%0M5tc1#rYsiGHU&d3}I4(x7z6
zV%b(YX=g4Sby|U5`z65e;xa&tx=#aCtuD;VCW_Kf%r8?p*J>O19C(FTSmr=l*j-j)
zavB)LL1ma+9`awtW^d4xdCwM3t1S5-n{L^!v?p#ith$j=3#)l`k>bkt)APzz#odXx
zX;#Hueh-J@lQktlF5JYqsW7*si`0m4jV&PE)8|>F+m>AiNcZN?ZKNBMvuQaZxi~RF
zlu)uYF>SNVd6jO63nvNR0Kqc#dJk5ZIOus$9x<cWpVdTRD1X%QOGpSCzsVt+eEUhB
z%P6s6i}7cSJU<^lKcEQA=&9iZQMy%>Kt?~yU~%$C`URuKZ5fA)qGH8$=gWGn2QdTD
z(=tXpq+buB@{OW5!pQaFyE53v+r;?%Jd|E)WW$?pxP<hLT#t65q5zHJU=XHAR6F$1
zR6C4SkQ-s5YCWMkttYA0<EK^)zs20=hb@js+2kRK$~VSE<-ZdutNW+h#O2O8dMD9K
zASxg71}x~u!ffTT2nP_Wkx@JXM{M9H>rlE|AA%N@VHyos0-PhYkv?4$Q*@WC&$xJM
zUNJ%mv&aiuWu~rv(=bz4h>>VIenE~`fa4A2@s9I&(=;&z#>19(6{~iGv0WjzTgL5z
znpkRmcQSt0=fiT2n9Y2gCT4A70(epnI9tRaSFpdD#Oeh|vlO}NhN&LmR~r6$9rn;?
znJC+l)>qB&z{#Ct2k~{HG8P0nWy@y=5=k?p$O9UX%uF91;S93Qbp0{Wbp%Ybj_7*C
z0c!Ol2LFBxeXlx;7fWFuW_0qvpIZ{Cko;WD6Oqm{P$?A36bRFzXh6kKco_}(T=5hI
zMU^QIHSK<*@<PpAK)W}UIYQ-h+$)xOH7hTNGXQ_GJMGD>j*tsxKCP1vKyk8g(WPU}
zATWbdSBOGVW>yy#4)yoQ)56&|a3&4Kp@>E=0kC2tOxT(tzP$pR<0fEFJ@SfG`)|VS
zO`zD~BW%u9BAt!65#C__I-qBS^ji!U8Ix?8kS<Tlvz2qm5JR?NB1zG~rDwcOqTdN<
zkVuL8ee?>u0SW(MS{{e$4uGekgZoL~KTnf`Jmul8kAJhwb7q>7C~p+~5e$=Lj-QjZ
z7lZhPQQLS9=^{=!2lTsl)aG!H)6=3z7|3qD<&Yw7?xk<0<;4qgK^@>xZZQ`7<BhoB
zw25lRFt^?DYO$#o3^8K}Ow1N{fCKyqz4>2=T)_5eQFO9_oIqs!%={^NGJa+qvg<VG
z-ziQt#YNIpa7vzx1lWpiRWSrzOt4<;#upsbf^Otll-e{Iv<DT>;;B5aKAE+LkEi8@
zQ_63{d1i?kE&_{j)ADfs&0!J<78w14TDZ|dWi_2(oi6m<xmD^OlNg$Q4?+ibW36MX
zz430<7>2-u`mG^$apT-@guW+UWamfG+ndDGW;PTDc(zHfd&pE3aK}!IqzZFMjvZCv
z@Yxxvl|y=4B>z;;zu6YaDb@2`+ah@)aimUS#x@6YgR=)6r54p$HY`sQ?SYsy1yXq?
zF*}4RTQ@C;S$~f)*53yEI4BPdgOkrVvh^p$`k^4f>SEq8M@~S0(!k%U&V>+lv|nNk
z@Dx5olK!irU!K#%e2m?WIMB0X;E+6*T*6JF+X+VibKKnI(XV&m+rIMctKv$c%R?LR
z)iDSA*SmZ`L}#G|#v_K2Z2lMYx$b?+5o8HzIe{#kVQXh;gui$)6>p026}SFdv9I_C
z6}yU~8QOUVp?svbxHG*$b^}*7MF!OH#PJq)OK)+fz?)$pfQ5NE@Z&rRZuAQUw}~Bd
zV6i)Oml)kKJ6mrn?hL~3zkn9nNj%^p{sHLQQ0)CNih+#n7Rx}k{TRhSrgoDI#MWqi
zL?d7ubGu2lks)djk7@6>F%L@os+dR8+a73@?jaQ2JtHsRBR){L+2QZ{+%wPW8UKa-
z|J$!<UfB$V+l|EF%?{1RB*Oo4)BQ8T9AVUE8>`qe!>%@h>KfRLNgVhfaf<KI6mu}p
zEt0?On_<J}QpWn>n=4}(>u1De8SXI4n7KKUWkk^Kxk1k1ZHUj&3|3<>pI-x_&{Kkn
zLT~?yNH^Pk##xW|eibI%WcLZ_S<V+E={74P-9?e4d$P5a^~E+yaxJ&=qZu|*Te4Y_
z+Nq#fu@1RoGn4Zy<66MCc0uD+BNH8*G7T|qhK(KU!a=isOTEVcPe8E0&Y(3n2BNXq
zM%4rMPwiEof>B&d)%S4YT#Kj|$0O<!X2cS8IqysyEQX<$Y?efQw4~`pGa_mFq+gb%
zqjlw7(s!i>GGs=cye{C{8=?nvsh)^k)Jb;2y8tO-4+9aKpOq!LEWvtp8DIov0P(PS
ze?AJRpvwBCk2{9tE|W5?3ooh;4$jj8dK*!LQs=Ho2vuh@P^JAe4@PjIY34d!Ra*kv
z5a!oNAV=pZUJhtPcfo1s)_H5#iQE$rU?DSG4+>VLP~KvQ;;jz5%izK&PR&*jV3BjT
zI>;3`Rc|JW^C&oOW<p454U;M|im^MfRE$R{wZYP$$vRLHq%9>$|06P#&^2GG7~44;
znOs**lnP+f$s%ynfhPVwLx4NqCfd0uGmP(q1HD1SWwd}Mi(beiU&UYL9_hJx-mBcv
zRg^e6YXW-6pKsu$8D7_y5u>b@Pm6TwI}WmdgPi(sfM08IkLd4oL_f<1UBT+vPA+-(
zH<00yfs-x(84<pOBV&;Hrx?1GmDk=09{WZ!d0zxz=gRQ`HOEYI&~;d)0px3@+1W!)
z0MV_|Oust%&3t%c-Cfur$l1Wd9z6#)S%^FF6GU9Uo1$cv5d-g8h^g)bie72tjnk=^
z;-oVUqFd~t3cy^ZEgbMk<vQqGgf0g5xtkf-e`nM}6ZTOrK+sbnkmw@EsAHX6O#yXR
zI$R;Zz8VDMQ}yb?xXV{5kY|@FAkPq?tqzy|Mhg$1(#+0556UTH^YCV{8N&KmM^27M
z`p`sg!c_ngwV}GaM-n3^hP>Nv`KKm`9h-=NCM5hSy<$Ycq@}M_3O6ffL_x=b&C(pd
zBKl47<}lo>xAPM+#$<`<n;m$i$e5PPc;*9m*?YpFRpsK~fs-8u)VNrGL!`L~_Qa<%
z@{rcJOv-94{Wd<{T3x>JJ>VicY4nJ}MIc)52iR-kThOrJD;#z=akInYC!gG1C(sOs
zJH^+U*7pbJRmYXbBk%kH;c@lh>ruL^_yHJ`KPWy&42SOyfpHJiC!C6xd|v;(wEQ&`
z7iMr}8|-m(lUK{uQ^fF3G^g8bq6X4;vllaBpp|>O>T+CmNkK1gw-~aSis77?fr0-|
z82sB!U0SIw2kc#*5o5T^LF)39!M~recR|JC=73(?2hx*^9I(X>5_EdKPBtj<eFGo;
z?(sUOjP2Ucqt_NGCOtgYk_?G>)#gU~{HB9mze3|~uS@aiPI09H-PBx9hWqPVg#QLP
zbMk1??!G?g^+<u|QcKzKTG68+<-DiI=fjVC(_^Ey@h%sK88uqdDk}~X!V3*q9R_B(
z8=Y-cneCP_w?$p~qr9Q>Z5xVC&LV_c_>{VH;zrXW8a-x+E!gPE$VL+)8a;tBsC9k?
z)?oy!bFkfMt!ODF*V-W9<LpESR$vyjL?FBq5WJzAcJ*oQ0t9tsOEw~k<qcVKUE0ze
zJ}V)HmU`X#^~Tfk7|KRz8W1lr3<GiaF@JkOc-vRnPUF+?<2C9uWT~G2m%Q(eld4D_
zpSR6>%)+j~E(Ve!k`!3cyYmiqP|wrzZczy;4naLd#`}JMiUI>jnt@qz+$9UUvt$I9
zoQEKpB_qlJl3|e~C`-=2s_O3d-n^Z#27dqi?sFg9>DQsUs=B(my1MG%cr!Ju4~Mse
zT&V_;9$EPYJ(im2A#Ufs(dj{}e${*SpfFd?sH~)>qUMtL7xjI1)P{SF-|NS$<ZNqc
z?nJP)k=U5)ffiqxc8)!zc!rHFjbh&e+^fr_=H_U1h1%8g8D2LpX1}c0GZZzUBy2mZ
zj%GH0uQxZ|tXcy%^M_?HSRXOix*`D9SJYiwgbDW(b=MT3-~OWR>LT<zK-B%lTsKT$
zYB9ZmqWY?$RUag(uPj1!g$;W~38bZ|kFpVif$1ywkZ*>az>s_|fr`*2L+#FX+0eCT
z5ik=mUGRN-8U?S`V<wpsej6#k#XV*3XDrv0?B*NLFinelB1!(I0P`Z6lK|N(qx;7(
z6i#hI*S}dvktwu1zwk_C3t$B>d_#e&;6wH(0{uV!p~KV~gVaQOO%|U~&-kABC-npN
z1WvY<A1k0sOX&;{4GH@4+tw(&>g5tQTw*nBHKRFfh>kSPo{#_XOQl4%xUy0Y4iX%Y
z)|lchk-g0UMS#j=unq?L>oEs@|F@ri1{Lj>EYL4Fj@qyZC@)I0qvLT`1C-J4HvHn{
z?|JZLVwQsM6o&&zUmPT+PAI9)zO&i!UHLq(G1`CFAtLryC^-NpD<25L$&Rk*2Er=!
zsY7^vL3xiX_2DCprIIDGP-H)yhM!lok9z`Yu&eLk&G8_RULpbg*!N6Y8Pv~zJQq}p
zGVG|wIXE@-MH+k-5Lliodt2&Xe;mD^DE;U|tTT`3al%#rL*027hw5F$un5uRm0=dj
zc{d}%MZzn*!oe#138bFLz?4p)e@l@~;CfXh&!v`XQwK{E9XN0cnTo8MBJyoqkwt@`
zh-ceK3jW4C8@F1SFi@QNo`9DBzzZH%W7^ZMx56nrr?Fm7Py#WoKeSTxG#h=M;G5qq
zs`zJEnNK+NidRe(`-_U#TcLTUI><rl5#Kf^cZ{5h<7TT+K?iubS4A<vFv&}hCY6=J
zsV@+j_s7}YL}s>#NVly@IAh-4Rxx67PI*EP$ytbMt6K=Ft*!<NP^o1G(H2PxZPkf3
zOBQ`+5REK&8NZQo3qmQk1u6HUTKq#b`3=JJd`Y>@Cd$n<5oEg{$O0k=P;T23kyE3v
zU+lS(Bpcrh#XEY1JfRpsnQbl(abKGEgu<!uODm*C<`dzlF+3JE&KT4v3w$t5;mHVn
z`=#%6Wp-p5>PD8hgiiGxHV7*LOHM<X_Ljzf^UQ%C%f@@cHO_#>qj=+Uvhk=wjb#Ez
zUq}MTN|Yy_{?$r5)heu1E?y3*tesmMkxVX-fRmlg1#ir&j%f-XGZ<;T{Ia6D!W|o+
zaJekpP+hVTS%sWIJxO7n&P;hlVy4wCjU0t5tC~_2;$J*b<+7H-DSbs%BTFIIgx9om
z@LUexR8_?F-tv|PqphvV8EsWd!I5jK8XURQRB?l-xV)v{$n{l;Ba@?N>sisV5I?T0
z%K0(S(#(%d;duFlgA({*27;=J+=bo-{n;6^1z~Xplshctfc_&bk%K2yRl>$iY#D=v
zZ&uY=xQtd7dd}wAJ^{5(EB6Q|NZ105m0kt-zA9xPu0j`CDr=u6%oR5+^?cRRxZ@}C
zvdTKTF)B7O+z(E{LDOo$o?dEZ1H?x{3bLa7GOvcga2sV|poUT?z0+^xxUDS=j+<XC
zEXS>HA&gz~s#!U1TMNN)3#&<v+t|Wjq$SljBW-RWIBsz@gX7kjDh5QwjV%PnEvr@(
zj@#6t(55uM8t1qTmQS=Pv91|h`53GU<%9W%i|$noCkLmrh{Qy%ifyYJH)Ms|m4-OQ
zu5_t}Wmob^GTyBrccq)}h@!qV|Cn8=XN!<s=}tAvu5_=tpvY|#MeZ~=DAKb!r$|pp
zk$cr5?MjJkYgf=}dDyx2^h|MWSJZf6!lO02izE6vN=r7NdN@RnYaR*Fuki}UK*GKe
z0nzF22t?nhX+iY$W&*4IpOlFHMHXc|`Ntsosxt)9{c2bceZ?sd-M5B;=u1um(F1F6
zL|=6ZL=UJD8PRLH=!o8d55L&bE&|a9bVM&8MDGZT=snIzh;GO$fFM#|kAUb^%><&?
zK50Sp0*Te_I-<XpMSK1rM9&LF^foJ^=SoCxH6ePo3DG+RqUT9O?}&(K(6eR~)Ag)D
zZ<$1iDl=?7uCXz-^^`?`i7h>XoB%)I)Y<eW!x7;2+mQ(HFJ9pupero`0ZzUt2r$03
zg#bUiDL0bZk^sA9(d^oP3<37N9YTPqPgw}C_iaIdDNh*$*z>kQfUln71laesAi(se
zB6IrWPCBRmL@^A;brPIDp}6Gq3n)n0h#KJ#oe`1KMcm|bHT1B_g%Ew?ZGq^1PgxLs
z;cbD{;ZI3K|0s*bJ@v;R`lok75S>}mg6MPa2t;SpG!T8}9RtxLYjQ;Y^o~IEh?<cR
zz2plW(fcSy*6c3?qEG6Go<WG-7Z%Z5--#ho=GKfXQWi=?Z?htLhQ#V#9nlkI(UCt0
z(bGc_9ke2Pnnd&-6QZY>5WQa@db&jPz9@(;=&U0;n?j$Q=`0XE(=HL6k9q*ht{D!|
zeIp|J-@L+=ngZux5dHI80@0bZEQrp3OJFstmPGVHSu~~AAA{)Q%|Z}8{z(g>k2MpB
z9`~ey=p)SxMEjrQh(6v-AUgZW$cUb0Ao@5VdWuB!x2i<+N;Cto_0_^5`bb1=M3|7W
zsz){<<w<R1sZ|?UDRsPcH6@}K$)c@)klMGrc?hD{R<|HJAl1G#)lEk~liIgIsC~<u
z%cEcQ$cXN1sC@%S8@VI3k)L&r&LNII9+somG>e4jG+rU_q|gAvAbO_c=%AIOb0qs7
z(>Z#KEIRWCaddVlM<2Cvbe81kBPNa>XX5A+f}^t~M<0*E(Wi~ga5`;<N91O>s)R)J
zE|iXJ-c#WaUGP?n)9`>=k<DudnhHcutz$v-uBHO3bL&V%=gFd_b^aJc?|3T&(Q|59
z5WW2^f#}(_3`B2z%Ruz}S{%_k-V%tOS1U52zwD?Z`YMI8$>=B$onBHRdJrM{YFI?i
ziiqe2yuyxJB8_kuM30t;K5IqvAc@s0I-=8M(VagC(E~yeec6iW{u0rbOo;AlLi9C(
z=m8SZSEC^Md$*40<rI}+t6LyCPe=4dT(oR?t#F7w{bnRYizLk>YFlzNn-KkN6M^VC
zDHcR;Y$7czDH74EWYOA`KL*k3-wZ+Yvf36zuX|G<dTDI~(QDo`5WS){NA&tP1)`VN
zj*RGG2BLdXyso|y(L)jl(PZ;_O$$;^-w*@a6+A((!L`F0*v7;nKz<Yg^pphX`Ly+(
z<w|3Dsq(a>z<F6T;^{wz0+*VGP+(vk?&EQ_DdIDkW!7<ur!`He{O6`VZvPrk#~{cr
zO$~w!sly3!si~mcU{l5OrivM&;xA1F<%ZQMLKgIbriH9r2kMBIk(N*5>Lv9>taLPi
zj9f(E*MY!|tpuJ(1U?#`!0VbuBCtpajuQT*2n5b;EC~F4Ap%d7)I6dS_)A%I>JK7t
zPAGv73j$9P1U_jY@OVk!LngXqndo**&@D$2_^7Gkm!^vOqGFaL@QI=j*l(gDzGcyT
z;<je;Q{uK}6qyu$3TskW649g}{NUF=rMtlwBGd$FQaEZgDU6c#gLAq`VTdfc^aq&~
zMueIa&RR_h!=*{#jLD>sVKOP47bb-f(xmWH6qCYXV{@NJoBJNQxi3o0mkXt#7NAs3
z)+>mHn$ucdo=wMWGuE^<Xd)76YtYp`h;jB(HN;^$cNC(mm^79BP0SbTm@+6u_g*~S
z#9#`-&Zv}JdIFn-3^5tEe_-rz46&g}3?*c7imrqd_3mR$6BDJXz?PFD?miv?AiK(&
zk5zgt5$<_ain#iCP*vMu5+wkAS|h<lKh#xRARFE>cy7G>bh55->oHswUZ@-Cnytuu
z_gGo|>SBBoE)346pfLEtr6xDU|2l<l-l!%9mz_@GTsF3eV8>G_20IQnRXisuj%p&<
z@ob9u8iO8phFSlkn-mi8CsH^UjBFB4z}J5PT}3WtQEXi{^n}NcVfij)QSQ;fCp`IT
zjrwYL_AU9gFY!9z@6F^hw#e%ohJY?A71UT+;u$y{G;$)<>~xQn#M%p999UQ9#aoRG
z-y*ka4-n$|JdMs}c6O_=)5U?#K&KfNKxxi4JsplU4>pRispQlR-Bi@aSuO?&WAt<f
zDA|kKb?52{gYc&DuNs?Jm$%^IY;^gy{B<GUHav@=7|k2e+}8zP?RwT=w&}8P|FeJ8
zoo;TU5Fz(%UA`I3X~g;Oa9!lT4wxY*k>9sXY9zL!U3IPZZL_FRarRwZr?_sL-pF9T
zU|sP_sFAc=)iv3zOcnQwiqjhjXOVq%4QG*wriuqe#VIr{#)GCFW8KS5ZB&S%zZVWw
zlN(tXdO>AnXlg3GpPN$3$vz3N)&cH$gtrHc-8xIMWlyJZj$PZ>DL`Za<TK%`)wmFs
zKFB5sE<FrfO167)1c$LMJ&i9b*hp`Hb#h}+hD0{0T@ZGM57;l1Bxp3On-ADoS~nwM
z-PlvwaHp<%>=wCE4ff*p(VY!aDDY)3ub<tqIa1Zq?BsZb{JMsp@F=N&XI(RdXI6&#
zC^~pycnDazEDJvKCKcG}@w9k{o$z3yqV8-c{k-nMwcDSP<X-hShl#WW!S@5Yj<Bz;
zetq6dv*Y7(xk>SS=mSk_SGDt{N}@E8ZU5Y#%5Hfa<dc;FNV+!*A06>Ac-kN*qPvY`
zV2Zx+5EQ3y9L^OUK#Sg`$LaAF39_k*E<skkYgTcPIv6=z1PzC(S)!-S)RQLqA5=v#
zC8HCGao;sPgva2y#vnhxYo2N#SB>XaH6SC=ffnb*_Py`m0pVs<b`B+3*gr8y*h_A%
zmiZbKnUiXncQCRPvG@nX;_qn~Ur2G$)-7Dt-i+!PsQn}_iB{B+mqZ+|o0|G1NDd1~
z(<>`427%g6l;&py4}o+KrqZ({knc`>N<8R<2P2x7cH*O4gFEtvsWk>W_#i*L@8mPb
zK3^I-OtMW-^YNIBe0&;yuW9&~hS1%w-Hegq+AKl^U?n*x6d`V`J)LokTzD%gMiz=B
z5P*{1we)*4X#cavU$oIgVl9e08vAL*wT|?bg59?9|6cRZe?t;$jV&P`>s{!Go)kQ0
z;xPP&B4zI{QAE&!SbKzE!x_;K!NdP+>~Iw&r0ck+lcO`-(RYiA-lJ8_=v~Hs9eRuS
ziY%vVZ1n!3>Te;thC}b=xWN4YZA=di(j5WX)i9u4kCUJc?GX;N<;64Z2WY##hz;5|
z#U*H)z6b}}RqeijHmXZ(g5K1F%?|Do4zzjq2eco$#Kzhp9kg%5f;L^fFQDajjSbq@
z`Z72Wb{U)~d0#;L${icDQza#6Iqq<v`R@;C=iRY+ZITXJept{3#@`pvdUcKs+R%6j
z+VxK1K-*xyFQ9Gg9Gjq<?Gm(=ox_2)^ZsCMMW@)HeWzn>K_RS3{RFfYp%5Oft^5Y9
zY+rP(%(O|Kt{tkDjepZmx{(gR<hmgM#Qi0iLy)6GkQV}hc*-!mu@e0?5sbaKt_Vm`
zOn)a7^6*!r*qmDzpJP0e$N}8bNB}k@#piZvEb|K`A|*d0{JgK>qY*{z@@ptLChET4
zg>$_w(1w}?8acB^Q5}B=RI8%0K8NaCo%I))SzodiK5G&f98~MRpl)Wz*g&4tHO`40
zEvOqFe_v2{qf=~xj@FmvFP$t<O)Gg{pgI|K2jEc6)OUb`ZVOa*wfh3qkf=Hkhsvj`
zXT7^vpjub_zCe{1RcYi<ZPKCo<_il{d+!flEsQGiIaCL9zWUnASIh1X1$ReP6**KZ
zbyab*m4b8B`vTR$s9GY2YJo0Pzq1O}+i~{=s$o&jNgS%4OhVPShXtyI7O3P2_IE(E
zw@3K(CxBU^AKG?Uf$4vL_MP-EVhe=9`o43svjwUjirJkUtd3lZX~1=elhJjEc`c*p
z5Pq&hjHzbUAr7|)r{;hTky(xF5ZHUV*AL?+b4Y|XV^5C`%CuIoL77z549a&cBd9Z3
zRSi(?7LRO{_#Nb$5cSBz$@R0otBkSkDp@7&3lseu)e^;_nxN|iKU(#Ip$`bCW~pU*
z0p<2a*MtS(?lg%_xUDH>!p&?FfrmDv2*Oc#WwwLR7C99!M#}SKq~bJF|E|8zj>VyU
zGP?)9Ii?P>;&^6Kk@fNw(d<>;OPb!xdC`md0n4Ve&8K>xMgB|b?_>|>unaapams-{
zXNyYXhs~eq1N~B5ra)~dI(?mw(O4hj%Pu;kAG7nAy%`j1|1jt{NagikQa@w<Vpx8(
zo8Ix)#bf4HJ#2LR9{Y+q4t}9`(7S}}AVOH2MAoOX-obxZuM*h7osN13-|5+1Ul1++
z&O3Nn?_hC9y@Qr)7p29S?KVv<HC1)7apV*9QwRT0vU(*%F@^t*6|l2I>=m#&L9T#}
z9ry}Bh=wKFE8iE8ZncjsDn=$skP6y!kXV1ko+7dLF}pz68;jWEWErhWvPe$&Hz&($
zI#~+3>11imMyg1bvt4z%&S0{G2#ZUMqjAp*s3$+9@p`Z818p%F=p(iw9tT?6Ngrsa
z&Oi-Bix+qYFX<iJG8m{i8$=9r$sM{j+OQRg)Ny;g<AXX1A};J%1`0l4`w0b84HPW0
z%MRpXXvjNwL+{}GFZ2%DU<yqr+SWOgwWla-3#GVQ(N3q%NiC*4nB3JQ4^C*<^Y|`0
zXcP4gBt75Y9W>E9IBj(BU*@L{jv5_oE)j#gn5)wyJ2%q0UuvxTn>unNI$z@*G}1d5
zW+2DKt`Tzjg&+qzo<=Ez_jMN?7ZXz}hVS)pAz(snSbkeXGJxV*Lvat6DI;~!o^jdi
zzyrtZ{!j5sx=WVw0Z-|dbhqCQc}>-nI}==fQgJ#3C?YJEgC@L;DPqDeiW$DdC;W;&
z;Y_za;a2PlCEpy-!7mUtIU%N?Jn1$G%8AtekZ50wr4z*jI=)w;qvPnCq0`Q)&Czkh
zQl4E~N5|<m!=a;p?ZW6l0B(7r190}O(1C{6;sBhnl#i&T15of*H~{WG6&`@G-J%1q
zw|VG5Q>*hpZ9z-<wCXwlN1BHNAhWswz;xAs;NhslPqoZ*Z!JFj6ifL&WB#+k&VOAk
z93Ce8V~^+)Ue+wM=XFo=5tmxZ*FUL`xTaaS5$Bjzz?80X!XQ0*D5>lUXhEN`xs*FL
z*v$!l&m^7X`)*FTfVoa0$h0a3nRd1cg>KdpoKJRG%4a{JL%p|EIH<pTB0Qh0^hO6@
z%)6ljovgyqHri7Dqj9^RV{##|SLV($`>VLD!}C<wbbG5thhg12p<^wpDS`@G$^$ix
zkb>`oL&DUWVUU2jrDE)pd9+V1YEO9v&I#j3B*?ZqLm`+`gG08>Qa-na4%r@OILOA=
zutElk4j1qyNl$`uX7QMUc4j*vC|>|Ud$<%`C_IrL#Y+Am9V>s6e%7a5WL2?mX{ndp
z{fzLr%x+JKiqN~3)p)li=l467@_PoU`-Ua;*_uKwY>u%N%(3i%+n?ejoNX!JVeE`c
z!tRXAo)RMtiLs`$T7>p|v>Kn|cuV=QYWj#%T7(;MTeYz4e5ETX@c&@Hkc(1VwwOZd
z?&|IzI*eFhZgFQ+0Q+0G_i_ymU_VRw6@#lY!gBS|8UiK1#MlmpTXvnZ)%l2-mhyAP
zZZt0JZWJ`_MhoH%oXq-MVd;uPN6BhJ$wrP6u7CuJ$xy)&Rlc3wGg3h(n@^25ck^?<
zq!Y!0k!?r6V`WY0&Q})hDSSPh(qmTVz}~{kj^X}7e`R;045S3pjD#2qZJ0&VIbWNz
z{ZLE!1w#WGW6^+IE-u=`s6h0C2UivQ%+*dxB%9W6K~X7=qW1){*!=D$>4X2gB+&B{
zljs@V-LIqPPJ%rxDteYT4MoG6I-DT`mh!cAbo8ui8WugX>L7aFMr;7n%<mvP`Rc#G
zhABbLk1wgIY(44u0nqbliC!obeTi;q6bi@ux}1EQE#(Ug-{9S*>q~o*gF`p1u0gzw
zZezXd?&d%lqLyM`5wmaamI6S2Lwe1oZl+apHBqjbh{w|r9fWzPIlG1jbvC5E6aKzL
z8|}dMBp}8_vz`48>%rxA^qX<JMt#8);~$Xg=v+Iwjz&Eo8Rc|4iIJ;`CRHuJV{{pI
zxMe8n{Z%>39I}+>RMkoHV@oqhc!cQTRTWC5n%muBl31^@x%B!jh>ya8EFtvUI(pQ*
zu1mOYeTjZOdxZPepW+DI{UY4AEPB6swo|xo$LQPCPC@|gEEZi$I%C<`Mu-jXw55Ec
zvEf~8Va5z0re8IlV|GcmP+;y-Ae;VO!vVUTCb+E71mV+4vQ*}U#mjJ71D898`*x0A
zq>RTGDJ&r<7Rg4kFU@P8QXf{yEn@OP?fpYCoIY#wY1I5^$8cTmrD5lU9d;Sba(mcW
zULn@Vl&pc7T?w9(9r$++-D+Vw^gR%rT8o;5Qe{&Lr`AGCd7kkEW@QtL=p%wHNO2Ou
z(%U0Q#|el`0n#|a(NFFDLxZfOL%#OOBwoGJT}~2;p>!)zDu9&AaEf9qA3?;u^o6N5
z7Jo%uAGUP;Jq-`ycW4lR*-RFvMeR5+Lr_g+*FNKs!uPx%)bcbZ<~AwCeyA#?->d8b
zNx!kM^S;VX)2VJWoaz9XESoww{uv)?BK<n?nV$_cB>b!F5=r<$XvrzXb|eNR!@SBS
z5j6Sju;VNWPk*eP6Z^eY4Ac7fx;b8gZg0?#eY)xKUxU&uy9^7aprHM(ovS|9oJoCr
z*Un$K;@qlO@kTce=|Gy%ZItJFRh+s;dEtxtk56-uV{$V4wo1NJc%{#Iw@58Bc*B8J
z1G3@Omf}+`eYsaP!^!8-3qNQ)8eKB;*M%0s_lXsBh`bYo=nEf5(HFS$(+OQ)7%%h%
z{3k<>G%GGfmUp@F9Eo&8%7>Yw-;f4FZb-#22Z{xYHq0!Oj>vmHtm}whbrT3;`*a;~
zn$QtLCUvt^5hpb?>{*YGai^3Vx8LXfknZ~@7P0&E4zZon2J5E&o9zw6>0|9LQN*$4
zNA&^XV;$1(`eqdNIu`>jN+{xhd!t^h@Bx?VS1UU@gqhsX2Z}h>9gEh(dmpZAJ(t@_
z&KRs~Jr~<KLk8<*FXCW>qF%l8VS4LV@4iB=()f=PMB)@J;ARVZ1l%q*qlDAV_Q0QP
zeHZv=zKVr&;#_Vv7z?j@;GeVjWm7Tya<Qum{_S4^zK_T6+1=rv3!Ypk%qi(gak6b+
zK*9bv_-9`?_-CLJP&>e(^mDgJl3>b@U?hl#8XsY{r;7F@l{qLQnH`^_4f`0M%@v3U
z%JW>NS1wRzYdL4Kn!qR}62GoJ@u9-Qy)%|wi8ne%Mbt!LlPck-4c+Xy6j9lh!IDMS
zZTR~xwza$-;dy!+C1kig<$3yf`CJwAVxC^8hxJc$QuNg^TSfF$Q_8Z#My(8o`liMv
zVx?vpW@k9EP@$w{leT&?Wc}}r`cBo!zTQfC9QG{40IzRr{5OXFOlBoql<>?Sn()k;
zEfa%mvW`CfPVCZ0CM-U!u>lp*s7k!TI;V+DnEYYg<&XFiTsF9ZB2#2S#RUHR?Z=Ny
z*&m9tlZQOAwJ^JXB%aJwV#6yK>CjFY#iOVg^AC)eq|jUELmoFzqFI>@nN*ZK0((Us
z0YJjJLmow5+n@O;^j^O*ENB``zhRISs7E({eU-uKJgI_($fHBZ2Q)q-X`H~u2=bjZ
zk#De>e9hP;PQD>TJ|O-jgZNP9BH%A$nP~0{rT!h>Jbj^(N7TO~sZX@k$sQ?5>co#k
zEK{J|PlyB7#ZUAb|B;U~z<~;BdfHP?_(_uRCo3qdODI!J_((+esSrx;u?Ai9P2?VB
z6rZY4gfyvR3RCWA2<1l03W=O@i9kGuYEKJr;$5!5tKDdATD&#b;EFtD#^u&&yk2@m
zN62E%K!89g1O%q(5Xmvmw~ov$*%kRw^%Y>xe`)5o@Yp#$2K(L?EQYD_wzcM{TU1d#
z1E#!XHhScH;lmiQ`G!=|WAhbC+_(2XBIoLi$CNy^OcqbMn!-o@kHWt#e9Xw&w_X;m
zcueN()1&6{q<ua;->R=j`Bt}lC<u*~kV;%cZ2u5%Bx-;LP|3;j^5Lt@cnqZbAS;oE
zf61rin@r6Yi{@KCME$cqZ2Xms#C+>b6_-^~UZ_V^H+`7GM_NiFX%E&D{jT}Y#0SvT
za^97mw$B$XZQsTZLz%F+oRS#c6!(&CwJC)kIv$p(n3n?49>7hm1m$;eBR}uRQQVYm
zz6^=5S=2_Pt#Nbl);lCk3Z<=?d6d$mr1RHwCMamP+gZu)q^mDqJ=P@!U*x7zX1roN
z*U3-DCWv8x#9YpODBYnP{KF{m;f($vf}a%BJu2#+E<)X7qVB08)IDBF3CWaw!raFC
zdI6f0WG5=&q1n!|KXi&j6+epcju&CPQz3dnls5_(U`f<H8Vx3uf|V4bOdv3EBNGVn
z!@+L3Jb1|s7iu>B%Y_RFFy0j-Ai&XbdO&~#ja^(MLd|Dv@hChzz=cJoEu;y{+(KK(
z&x>#edPC#Cn`p?medj4IYJ6*l5vTsgxnbkfzrlL%q)_v>=VC_<HU1kTfRy<!^f63E
z%=nj6Et3Zl(IF(_$CdyqS6hn!1OqE#O!;1^di;TNtwpGTQ56YaB{BZMQCT>lqKH2b
zSCz+D0S%}m#{SpruCM_JE=3GLaH5S7;(J_qg(rsou}vD^62B~O1R2m;wu6nXBmA|T
zS{@XtBDS1ZUTN_!YI>v%3ZN$dMrx{+tq+Zw3-zY&WKwT#9`vMPybn}wdQRr*jSvDI
z4K0UK911nZUL`~jfN%y~;rc;C(IH?$g9>Dq=S=!Tn-HGlDJFqk4pu6Hx=d+TR(VB|
z8z0Xt&kD-ntnCfu?Lu)a?wMqZKd5oLP+Ysj?}uG6R^j8I)RZ%OU0%1$3WVmpa{8RF
z75>_@y#DoS$h1wawl~U=$0qBdkcnfc%btWE?I~!6v6GdARxSIcyqlXx*0iw~Xm&JC
zwPC?>BmwR+r%9lSImJC;O_(EO%b`MoHnJQ#Eb5+(E?cH)_R0V*^68^&9Oe$f1V(My
z4A>qx)GI&C$81D)7gWo||JVx(ikT7(Ir312oqbfOuo%k4Q$R|=7@^votq?{(S=Ks6
zxWu&;^>B%W^pi;+2>s;nqo|*JT?dCv<od~&4}>am=21gG872!aKKcjgC!<;$dc*08
zB6dw{p`V<p7)w7HZfbr`G#}Mk=qG0@8v4mFQ^gAvrG7HJwa`z_R}9rp2AlO%=<1h>
z5%d#I+*7Sxg|{2Nv_bY{R+4!)dF_G^bNK?Meeysh&iPY6^l`@LGVF9YCDM8h@qib`
zih?5Ad;r86WQA~t7~>9b%LT}53^y&JB>W`h5Xj1<6~$Ehwk{CqwNS1h@!6Jg<c{Gc
zesG5O$v`V>lMJZ^sjXP512v;2b_Z;P&*0bB9CcV%2iKAQ%bs^Qef$b)DgJ|fi!8HS
zC-Vi9Voy_FWw#Gf+Ns`?@fh~9#(!gomkMmaWW@ys;j0HdjyljS>*Y;Bi*LH(P~T^-
z+Wo@X`jsn}PX>^Fs9f|5u0F2N3xI3o_{BhPOZoM3PI*Wf;xb+1R3^jixpEmU%D6j!
zvYuq@f7s85XeODHa1(cF{P+LR_2CeYD-|T*9Duy1!Zz4IsVvXtd40q;TiX-}Q3)c5
z5_`Q5+q4s_%=Dm%{h-Iq@!poLRUBB}+J~d>jst{J!robGaxW;s>-sY4gP6CsHSu_u
ze6w>}OF2l<A<EMhp^u?{%C=H4n1vo6{JjnSF3*}%F4=76ko((tE=wcjGdoyGu?TZ}
zk{fdj!oEjR)<<W@VdWIOx%k;eQ(DVYi0${dX{w*GAfIX@Ux2_vZ~UL*py)yNsgGjd
zOzA-=85u|Q#tUr1=90okafn?9r?=bVPE{MQqrA^oeAJ~c6{hIt%`?3|V6CPB(0BVx
zrhKS3k?qv?o>$9wCGP<idlmCVLitC8@?W3b){Yk>y}Bzf=jj}negMp)?7$=?pjL3I
zkLIZr901VegPvRt2|(%t%EYsQ0IEh_66^|mMR0v09qx}Jn3NrjlW~qnj|blK;edHP
zFu~itNpMa|WH%3Z9F(^DGRGG1DPHY(eDwi?U&pzy?2gA5piME(7d4yikLF`yNsW!J
z#Mj$NOZk{e`g*%yI)jNsx&te@EqQbU_zxm!GDgKiB>50Y<=NCj9v6s?1AHpi3Qq+w
z=~tW$;OojBPWrf!WBrVWR@EKA`mbG7H}ypoq${^z1=wZST^o;Y1iD9_PYY^(5*{bY
z<+<|J|FHGUMM>JTz0N<Jqh#vvj}<cuMDPiE-zRXJr(+g{TfeA;o!2^)fLkka!p^mn
zZ>y*ic3JB}g#D%>-iMcBA0WE^<Z$L;wqs`=A#F-)x|VZNMPH>{Cz%DlM0zK}QRe`z
z=o%QjXz&zR3vJm~M?ENH_T^xjVb&9tcReWmx>$<vwqWzR=M`;_onB~<<?a<fiaoY6
zK>Tq)CP1FWd_`L1G^y(!D#oOiR1CnR%CL1de+qn?H~|)OKuk`dT-vnA$4pX?J*OP<
z<ioFn$l37i%ps4%M=b4hNKpF6y4jQ5QHHh8O;JZflW{L(7+IFhcL>R9eLc(ax0h^m
z?8OE{2YV^Ya=|5Az8gxYfd6)KOZ{vtKo!`OrgxL*0az)3w%Vmwr<oR#n0ckSj+3qB
z{jR!X<JNiljrQ46Xq_*wvCjFXWXr%sdDdjh$0mDuvfhaYZ9Lubk;&dPDw%xHh6$G+
z;6d<q@`^^r<tu)#o^ko$WUtUXYq1FjZRVWI$$EBRl)%1Y_>tZ9d);D@e5W@p$7b-R
zyw6>x54rq<k?Hs9QJcv^UpViwZk{Lml`qGupF4L?ww!+|YHX?)m#5fFW+0hfKor5z
zSfl?oX9-HO_&bySt|$nPW%2CHL7QKFfqg&8n}$b@ZGgDa8asyFmSH)Qy$(DC9!7lP
zv0GYlf%K^2In<UKR)UR2x8a7d%=|dX8|f7EcV1)EA)7c68NnJC7uaO5Mt%h|Yp%y{
zNS~@~$4({Jf!hD(A>J_YXtz)B3VX?dBR13-H%HYS4^HxiDv1*g*|^X<VEr=jkdYZa
zf08*Omz(y0kuVz<fbbB==(Q8P!VI$tp};#jG|nv5i}SFUhldPG>r4qdzP|)X6wW#`
zD?%(%?S*z)CczX40k{$@u0u9VL8P_#S6#D#C7<xZvH($NV8K+2M{E)7E75O}zJ%#W
zQ^N8|7B<D)0)P>|OH2wqgtgUzyvDXe;(gHja7INtNP;$s_>`Ir5;H0eA3)hG?pBk8
z@%7>%n;W~UhaB$09IqMJjPkse;8urg6LoZe{`UYyffQjz`y4hX*;9f>A>TN_b~a#=
z*IB@a$~kP~;^<M$56G9<hH>qMi+a6wVnnVNam|-uhkxf>Up|=xHLNzlzF+4M`)V57
z0}>-oP0VV5KqNTmq(32t_y@ioMR~%60bs0Nd>V_3o7t+2y)E?XBP6F#aNb(LQz^Qs
zktl-9@wlSCmWC%w#EO5SkYyS>a@fXC@DnF`5&MsUU^r~U;Jy4B)GgR=ywT*iYy#c5
zxXtPqZ^F;<V~wgOW!3S#>Ysr>%~eNDG&6MtIMg2oriQU!fAtw@78o8<r@F?@9=2s*
z55U^X4~MY!tjMelLPpCJybU6DC3Pz9*(QcDy&o35J<9sABL66OBsp1#-1s02;OB$-
zu!kfci?`#&8b#bJou+ozT&frC39PfIK#=ndgT?2;bVi=D6*e~e9T=)LIMU140~g33
zqhZmc!DbHUN$6>W0%RYpXdywF*G;g%4vTsr7Y3k(^quZig#1rdOTPm^G^YzwJ8H@H
z$Ek<eT?`A(4vmv?eix@KNaIp=dS}8Ve>r7WK<+>{f7jTheKsA*Yr?>?m|)?%98D-0
zuicYyp?d&Xy>L2{6`xv@wau*$f3dPDw0uF%`h=wT`lz5&HuWFFu$U`rXBDOPELnSe
zQEJbYwZ|2u_8eTvC4p3|j%I(_bjLF~YHM-%vOtbCswlM=%Gx7CYDdl?zeqM1QIzf%
z%i6<ZPF!IDsGO04;jvkN4~8qZcO>as230Xs??4qx1A(7@%!Y@IJAODht6JQj`3eU~
zbMGjL4`AC;8h%!IWj`u94N(Vv2$vKdhWcO=(6`@({RHd%2Ri6XYD`8EG;VSiBGo*X
zo2=G@ARyx+2!QOU3R(ujd8UB$*U(VZd1R`dD^1mjYz+cdfqip~A_^~t*`{J(?j1G<
zp5GUEc_`?tDPFRSfS4G2*yiW=6+$ZNQMpBhFHM`@Pf~V~ztmx|`CXalMf8lNNXKm4
zA)C0!2#M8F3lUx>+(pJL>U#3zShNNlOvS#9tBhS%9Rifl=`=k5zSE*ca9eI=Qrh@^
zMOR@D1>I9vbIB+w|KJymw6ye_Mmoan%<=k!y)I9)`^8;{Xv+WL5^1)SNYLo;A)5~s
z;sTgB>x(LT8(lppth(EAdrM>|4%n2xraqZkzX2R%D`Yr*9N;liyct>nZvD;Jr33UN
zqqPG~S&yPs>|Gxmi~pu3K9lipD5~zDNZxRu7vtoJbydiAr^efBlHH6i#7S}?`a>2X
ztT1b{o7~#wLV!MFcK{$C*$XEZON%*ZT#ckOY*&vBJBaP_)y8ZhbIF<Ro8Zk8c50AQ
zQn@NKOD)w47jk`Ew`J5aIqLhQt+WEZdS4^OTB?QVlg!YExl-nQ0gB2>>>iE?PiqhO
z)L9C~<@RAb?2FxT^}GnwV=MT|T846@JKIV>7J8laF#vwzGsGP8VRfYlXaB*6Y{Ei)
z8ClF3S0#zhWCba&N-l0|7javA84CWJ0mIcyMFZs7L(p|Awi=Wu7<J8IV4YU%n~7c|
z@6GN`iqE|D7{&?*@d~F+B6vL8h2V8(J#)Nh2kCi?0`jl+dwuY0H3xkG2YtH@2g3;c
zKJ{;GQyk6|A1WT^ObW+}SJ)a{@1@x{hw=FRlE#0(f>2jr>kkuvD-b~X<>bFo_;hDZ
z^y0ce#4<8NO+IYnhNwsn<MCgz>2`LhEm?euj~>)q@Z?4kB;jsQa*H5|$$&%l8XxlL
zP^QG>QJ+02ATo^4l`II`gYa<5lt)H>t_o2vF%9}*aYS5Z{j$y^Ti2TPLgJn>Z1G{6
z+m%5G)Ze6`Npoor&|BGBPEM~gRqev=C?w&19y-&EI*gWd^iar!!t2mATW@o*d1%1y
z$Y%4p-$LDq3fsu+X+G%gpU~U$Sn#(Lr??Y3*CUso4LGSZe)_hH;4vD%GYCM}4(htT
z`YxNV;GGY4?gs`ckZkpx!B($w)v7c*aRk}wWsU#l*FC3?*j#esQr}}I=pG`=gLe6R
zCBx|!51L*tAYA0DrADP@z_;^CE>7WpX$tRwS_ktk#YTGaX+hqe<dyf)PSf2k0Jay@
z`c@iSj<}C!8#oigFS~>PMC`%pg5`!8+*yJ8IQ!*i!$Rdyn`&%Wh8GjbhnTv445`!v
zc2TVK7Or`A>StR<0QZ$~SSA`AG#a2=<KzsodmZ}O#@!m}cQdoy%OA<^RUUOf&d#?`
z3Xrx9&=100tkkF626iEbj9s-f*6XM(O}AhbBQM0;ur+a;S#NApK{Gzx<R?eQ`eHNw
zg>!vDj$zFjc+_O(`q}hh$WdwLdV?!mumu9}c$9aD%}@vaVou?6QeWPlUhSZvt#m_B
z`<D2<xrmaD$HJSRoUk6CjvJ7WZh}bk9N<0or=Iza0rNbT<E5m{jOD-w*h!ppaGpCs
zO#j;>VrSf)V_wn>UCC@|=r~<gu_)kL26p%=JC2(ivE{)@u(Od80UzFD^HFmt%}&Cq
z5F3oK0>*os4Km!ox!X{pi>nS?ShIxuS7hCIcIF5P{rP?`AmKfBQsMUxJ75v$#`H35
zHZZr#uXZAd_{gu)Uui*)I>s$A&OD4>;`j2mEk8{3`s5=WVR6qoWQ*~r#UhkNY+f{(
zX+8w@O?K}HX*gZ;8o1R@SYxLXgv$S6B~Z3}%1Su#{-6r{RO^B4NyEvPaWqi7*QHaj
zhzBB67*uUwEv!*!_oWv(cJ}ouk79QOG5Cy+EhZ9o0)9%cC((*4m7;cH?O>H?Ifh~U
zxw6n(GS+KHb<i?<lJ<iHjn&T}-Y%|9B->nZJdyD~8glpCM5ui(S*^q-2DmpE>fG_9
zT;gNTWgfJwJj|U6?JRwxLVDN7YGT=Bx`9bd)7ay7lBmc42`;rvvgXv%P^<l`#zt@O
zpu>Zr(&GiUTA!2cakes`*nK|SA=YCROe0kZ)Zu{QEHV%cVgcbmAf5vi6-Ph=1C8!d
z>*0R_YA1waMF5}fA{-mA)<YbQoIf6pzrhJ-gUE;F;BcgJIJ!C!kmUh%I|n#6Vl7~o
z$I%Dx{WLOOJcz=WX=T-_<xuJ*(7(0I8V1LC?M;gxwEeA#Y3dXD$$M%0Lbu|p6BYGg
zR7|0dN1f`!>_a@8c1GS}@o8B82z`B+wM~;YA3oFo^H6YvxdcO1(}&6^Jk;q#1)meB
zk1)6Bo@(B1XX*!zR6QR^Q>*L!q!;ez3V>XW&Z4Yj8b1bU1i?(Yb08bD@-$zwKePuC
z<8;9B$C*q2;1w5a{+obg<$&FjHHQ{dw0scP4=8lT!hfMkS^gQm`Q<lDDQHVK*L#%Y
zWX+DpndKm~xi+7aT(m#SG*K&J3O+nshJG#nAPF)UqJail6U?KFUvJe&t@u~j##B*_
zf2b^Z$tR$Y<wgLt4gDAUeZ%<puK4&-xR39PkFH<+@jv3@$Kqpgtr3zU!|%hDGzY|r
zMlL@Mkf6Qb7YMT!Tsq_c9=Yi8hpz*RcLJ|7Az~d^SQD{MJo}g5z>Py7hr{`iAJ(Rt
z5VR+$75HZG96t>x$ud7dE{Z?=vm6!c|CFQ44yZ>T%ks-2+JfwPYE$0X@b5gao=YZm
zL>8@V?<hI7q{iO$;}MDmE|;8K4wZcngmLwf)E8h`?e-}Af53BJu!qS6`Q36Q7w<ie
zsQ`Z2vdIrg>-#VBJ<7w}$8*Sb>`-4PXu~a@p=xN6%1nk~l@$2$GL@^^NEB~rypR0Z
z9&yK$^{t|~>4N)K7exM6kK7ti5~3hf!U)36h8%RF983$9gFe0~U}OxTvh-QvQOu{`
zg<2kB^OqgE8x#6Ib)gLsofCRTXoW{R;HD9Yc#XXpMK`ThyBu$n5@tMdj00tD|0ad6
zeO~eZ5q7!n*>A*dT3GBlekXP(M8Phs!;ysDZvs%4u$vzhxk>+@A$M8~<USvv6(Sb|
z*eF8os(=#w^~fd9pGBxNaEY9!cJ=|T#$mjL2(smdE?d-+%#9vxJ!gfldEQ*JE4u&n
zjZpKHA+K<F))lqi!4WDSGb&ehJCSY!)+&4gCDCk<sl`=Ig5okEMO6wF+5Nc3tp38X
z#n@YL^mU4~5=;_<wjbwjXfM_TZB4(feF)j(*|*CT=kHz_PV>sZ4y=p9CD%kLjT_5{
zE%6{2rP#$hI!HAP3u{|C`52s??=W#TZV{#bpMxHcpy!!EZx9L1_W^V#2fcYA&|Cd#
ztfxf;Ju23*??Ipxgsy|aD<iZ-9i_0mOmAFG#qhAQxLDQGU91jW;6|WP_-s9syI9@3
zV6&&Wxl`4o%)(Ap-(4_Un%>k{Zl+hhfc^f0jogD~WqJd${^koNLz9y&&Ll(AmJ7nc
zihhSUSm}l)r`5sgzfdWOKm9!5_vRDrMjf+pcdB!Ka!i08h99#P$n(W%zu`wU@|ekw
zikn@|`04O1e6Se1Fxe}uOt{c9=$4HAGTG}6u{|B}8z!dgV<y|vLDPo`$1E;ZzJoDc
ztn5!4K2}#J8$MQt{gzwHiW>X!SfMMt=e1wsV|8V(&96Ss@}^54D;N4$o!?77RwKUR
zK2~S<M)9$NN-=z_3bMVh%SL_wHsH9eP)6Lf=L<VoWmui8oakh=a(Fl=tNr7plhyS6
zA~;!{&bGKxjXW+a=%=h-Mjf~5zNNopn=R<vOTYhdn@c)b?HDh;spjXKoUGRC#Vhi4
zC#y8w$qFNT{<?I}nxm!kvDz2{FKn8Nj~DW>${}t%_d^)Rlfq1iP9e<&Q$DJ(AyW;H
zs!iDzgDFgK{&Ar>Z7_d?KD(plgf&(l7ampbfo%Igvv^dE$&Tbvb@Dj(sQQ~0(W5He
zn7r;$B`%e395*gL220RT^qxB|E|o`Rd!532V8n@E<x#aGE38KqS`we<HD+OlFGldF
zS~5<0RBb+qR!93sW{;}eang0_`;#V*swsN$!IQd2RYr(2RW0~$ioQ058&yuI8`aD#
zGrOqlyAw8kVLvO2e5q7+1WK4YjU{j?J26Z8SnWPxOVhoerf2C6Q^6C$VG8;dzEyip
zm>j027*+Sns?)QiZ`D3?uM;iM9Xw&<(jWT3`+^D@JHYGnD}8@R{puP!d_woL+O+>y
zvpdMxdD9FhtI1h~Jx9c3C8(hS8b5|QS*aA8fJU@C3>Pb_e^nw|-`z({upZ;5m|U#j
zz#-hGM&jWk$){$b+tf(IZAvov*IBXL8=yZw$RFvs1bvP}V~d)tm;^fSET<@)%@mz+
zH<vuhX3o3e#>w$!;#7sX<r7zk*lFV}q}#;5qR8#dy((@WvN=J1mlqz9fR)mO73uSZ
zh~+}?_xXI?IAr*IEgxUl=Zl24YM>1y`mFI@hXeB(;U^CegdD#fV!aNamIHL$GDU!F
z=UQe1Al~Eb(pi)5`P*#pC{m3spT$N^HU9f;O_Y&xG-Q;aSe-d*Qmo!$qj~GIXKi_O
z0Z6~!(!>=PZ*s&uU^6y>H#tg8K$D~2&CE^cw$C4`gt3xtwbZ8w&8I%8pWGcM^`251
z8+KAG>x<*O0e<OsH^0!O-@S42(yx!Ke`}m@l<##?zwF~p_$XKOQOdD?CrxTsf$77*
zlObxCyz<Kncjb3^T;VIf^ppCP-`0cVh`eaB*NM~Jth<{xC)SHkRqeTI>C6;RmNm8z
zRY!T_S77cqKyw<3{Z`cVTY1B`V7$2D+mSCs$)0hR8@}l$ZNbnRzAwk~^$2JL4Gb0G
z;%xm1QZaOIw4n!Wb{8nj1qfG}9JLhsM}qiggLF0YAyT_9PWGk%uMUIyX`w!7iu6Hq
zInf90<m3<^v_K3~sCd^hl80$a<*nHHxD<Xx1QYvNh?j}ub@7tIr+io<W5W1Yk_T$f
zI4Nr9M6E4k_DosZUzEPTmbJ5sQakr#1gFR^Lt3X7a$Mv=OreLla=fu2Ev&ANKGmKk
zTFjFz#zbvlI7iNx4MrCQT?=IGQAO;2p=>a+DBUlTwMWFnufmo=<v@yy-~H?aX(8Pi
zGozn{KnJ;U-o|ydi0+Jj3SU2&+!<lz<1P41SQ@FdxjQ5Gd>J|ne(eISBA(rYQ)XDV
zLv!R^r|>!an1-I?FM`kEm&ZeV4i9FBVH7x+jX!Sq9Uh2KC+oQGc8ELlX;|UhA;D0T
ztcvoG6NaLET`D!Wj_*lDxmULIzH}IFhYRJVNQRqr<MCGBXAV>V8{UT+yE(bA6Jp5O
zmafCfb2qL;w&kczNqrJ1(3Vw10<=N=*BA;vD~n6}$vIwoWwRHgFM?0y?2}fXN{#Ir
z2VfQmUrHaGTlIE`j8ECAqvQqP^3`HrIL17gT5B_RZcJoOCxQXu_h>Qw$=0Otk$kyy
zF<waAg>et`tMP4(m)TA``H3g8?Ep(HeCb}hf%+MHIs?tFjnW7kpRqq@kRMws2kVUd
zT94I7AYXNEr0@0E^8#Caa?mA1L^GN$PdVJRvCML{6ozhzdy?zOt>EnQKB~cnU*oXs
zqWU$?JE8kE!g@K@!!5lT^Z3G=H96Fqv33I@EX<-h#j^ccVH<2dA9o}<Pu!$AcwEz-
zz=v?sS*Wm_IH&a4JT~6zqIucb=#@$u`Ux&X)!ojv?I#y2_>}^~Z{KeN$yo;mojuv>
zsJ}Udl)r=Mzd}2>n{{;H>rN;_gib>wU1NNt-Ot|IwzakGc8jgG?bfz!+t$=}yR~iG
zwr%S_&-;Fw4<~byE6F{-Id@L3^dkZPhFLMGRP<8FQfv?PFNDd4hQljc!uxBq=Mje+
zGkF?AO&G*1=M~q9aD>i>F8k`bJQtPw8oJxBTqY2@hb?9(bqYC*I_0m0%X^McvW9!3
z{{0>w<H?*spaR@HOFk4sO2l5*Lkt*rz=$5RUE$+^`!`y4(?`S635H0X3@b{k>3>wx
z+4?E;cajcgBJ0Ep@nn*2>Krh*+~wJjo?E%r4!%rvLc9wwkRxr=%P46{;M!Jcpy?JG
z{PBW)l|Fi;x?nV)T0aKfc1iLZk01pJ4VLO5B9myANd)IJuM|O*a??fn$sBfVx?)G(
z#&|dsNA^?3_7+ATW=-$2?jQ*GiQ@2~w4cHAGCw8hXN_!5@|E;zWCgc|zNvjzVt&9d
z>WynzL9nWI*ZZ~<xK~96JQz<ot%y|g-}HhD-9WTUZ+m!T-ndS;z&{j!h}BXa3QdZg
zWQ;JlLh(2pkF`qq=Xwo%P?{W%t@ViC!^CA}cjQ@#XLhnU{PuptaN%YM^s0-wXg-AT
z@xnP_R(>w;_yFU9CF2FnJU|=Tq`40nLr0q#x+#5#7dIxBe^KZI@SXl}QUFO4K$|YC
zT*)*)V1B*y(Qwg~4RMU?lF>(LvyXo^HTNrMvkHYe-?)1j;L|bo#DF68pfF$qE9~0}
zY$A?IV@}S@V*Jv(m&|)0<dv&2@syytWp98yC=RrhnoF6NM@23ig4b}!BMp@2%GQ1b
z$@Pv!NI!dYtXACGq&Z<gF!C}}Fg?lS9j>jG8@SU;9CKEQMX%CQl6Fa;U4Gcpa`V3)
zN7b>m^LY(1bprAKDZE$}l;|`Isc|@3;(wE~M*21mIe3%jXcx+OWmFr`E(uR^%<~pX
z5Oy#9-BFQ^Ex-KuF-~H5w|v9<D$#nhdz2AcKmc}<ETrRqgOnY!Wz>9czv)%h_3G+$
z?)awfeR0pVAisi;A<gwX>nli3DR{bh{4?~iFzRokC(#S5zc-TNHg)Dp)xSH1(oT{e
zXI(_rd_RG#K%@n`4z~?@|M+qZE?Y|m{9TvTs<q7~Gvrt2;H6Ox8$6ezpXKOs3x5`r
zqsTuduoOz>C{O2BSUEK2uUL_<CQ@4{KOqM1hr8ZJz~FkS_@dccIe`=WezVI$;TfBq
zojquXY`Aqay?GRkxapoIjBaPcY8jqdNkWz#k0lD;s+EXgc6BOsw;jgO-^vhNJD1yk
z>a<>&pC6qgtT%GfZ=c8grx;wEa{$@bSX6@jJ%Z)XMb>;1yHpvYZVLW%FYY<$sY&H<
zlzKKAN~%1#9u90enM@}Yh*`1jLK$V>4C^SWt*;-5R{w3y*gf`gm}KL4TlTnGQ)}ed
z>INIl=eziF{nqw6<rF$=+R)M8;#>^vicL1GVM8OAgUY)MeV)Qv0#6`lX{8@UC>BSA
zmQs^Al&{Iy3NIL<JF_!o%Q_tu-6OLyX-KuHADX+mzdhQgrxO*O=kh?gR1(p^esotq
z@W-FovlPU>5JR!lBS3X9IB;Yq?A;ulG$vZuFoh{|Dc3XQkC}x&t?Xg!p?wo>f#Y!T
zd;l*XngoxvlnhTU(8l;?r<^&M8PiY2tPxng0y*WO--?EK`N19R^EN9ps@fmHtkbTb
zYHpZa7xGhA>(?MZvmEUt=SAHE*xHQm>IKHfP}=ueXUx^V@04w^X)O}lg23~_61Xbw
z85jbZA+hDT#jy)x{b%a%9NcnprBROv)ydmaoBi8rv?fPo%RGT!Tx)dM`2F}XeS}uU
zUd(L%b@5v1yJ(rUTf{sDxZ>0}QL(V2ysZ8h|5TDdrQ)MCJy_`BCi6IE{`q@ctD!`n
zlE~YWIXWxy{3ur1?%SfrC^K$(TdP|`M9u8q*D^BbXP2dDVtgG_U8PoMxq@G{1XR!|
zYa;$&(?9k+xF6lXK5rB=9S^-bX48etVttw?%>(CTJlJKE;M#cE!eqv`dNIT88GJUG
zD@uR*kh#_S@VuXJmPcO!dvfTNO5_@+{G(xbuSzSxL&QfGvzD8=N(8^NZeLaSV~yEI
zjOd{ov+D0W*YHov3#fzCIvfyFkR&2vd5U%gLYF?wVfIAv)yBo6RPo!j;dK7(>aM{m
zFbqkY%(h`bWdAYu-;$xZ?k5K@ch6MP`^#F4(#zG&G@TVq+8uc;)ytFFtq84ZXO*bv
z`1OIZ*@RWp)z(EO74`g2e6@e3M?3vE0Q^&5lHJp9I)?6AeM7I8xD-=byB_%_Czw+}
z#@)&1RT}vg+t0&NJ|QWq8ky<@Ob@s%aPUji%{dz_G|V;_BIbn_a=Iy7m{)5O8aDXf
z(a@c4Z~3yZog<8JFbMl08Zu)T>@FvyoSu@=df^Fqu`((uhA*9goj9|hSj_UpS}X?H
zsUd=VEjKs1I<N#?1_QHL!}y;VI`&{LuNHZ;sv$W1dN|&{YQy?{7X_DYK%cj@;UeF;
zKjDyaT<M)&9-G4YiB7RBUm!aSmYg%f`cPOtVn1P#a@_fyUV7sty9;dp?H;l}BAm0c
zcgLM*y1htp3Wo|3;JgldV8lP|UxgHXp6UdL61i|Xy|CJ&gmybEqZz)WxDS4HqJK>>
zIlW}K@&|`>&nty<buc^RtY_y}zEqq_aaG}Ywcm^!&n1&Gw0>yT9?=WW#-3K5)Sk!|
z<g^24MfP^e7Tk|tfWKmS=J1)Pc%79ero(<8^Nzge+x0cA!C>XfcPE}hckJ_<2o1H9
zDIvCZgm=V4G9I$D>LtdF7Bw2R`Lagtnc(6zEQ}W<Lzh6Y*>#7bM5dd+oP_8im7FIe
zaTrT+_^IPDI5gg)L?=%MBYdH4RI(C*cAid9?DF~*tSO0v;^UZ%6r0t%WrQ3&`*Vf{
z5!`M4E<1HFF3v~d$H<Rv;`#tj8~}ecd+&<{C=rW0R>aoSfl!*c{R`5>u<xtSkM^W<
z(wZWz4?$lVX+{sz2@26BVN~a14j__z<>^+Cfpzh$;gm<R7)MBQWH_B}D$<VV6Ql7E
zcoB7J7Kgk`eFHhigL)Ul)27JPSAm@Iz23O9`y}aXPRIv<PgY@_wY>e_a5k_cB>Ic*
z@&1Sjd(6JC86?8EutjgF8?B+K1?@v=sY@+&3FIsu|6>_hQO{rZRFwZfkkkklG54&a
z{%$bQh4BRT7qL*Gsojm^9WWezzD~FRnu;=6$qjacBw!8SndE=i5jl?5FUNEY7%sUN
zA<cj|4-5)_^IZW>9=K1;GKGWo&bc3-mhMQ<B`waeHh)Iz?wHO#=*(2w5blXul>j}O
zV99&1jw03D3h}l{OKGo&cvQ_M_$}CGfPO6DT~h$OQ>6jF;KMe7?ppTb`LJZ$_t)Mo
zoulO@BHkWxR4CFpcR0bl3En3;oY-dL7cnF#{=g$%zTXP^-$g$=yjdZ96VO`hOmGOh
zTQ_%@NiXWN95xq_%I4|Wvjat=>D;~=xi+hwh;WsboIOpdt_M2F(GQv7ez*PCFin*^
zNDNFVrVQ?s(Xi=H+{pcKEg5{?Dp2t`3y<!*q#PtLo{9bBB+Bpl&rb7}w{r_CwsKRZ
z{v!+Hn74JXA{fLeKK|;N-F&Wd?vcphRuAGx#(jFE?)DdP8oxU%3m4nm-|rG8DIi8%
zj$b%m7ZD)0Z?`7@D)v;-igz9bvy5W=<|HsvpjHMf-FORD69+vLchCCWuJdnScm&Vm
zyrDHOF!X&}_~Ir6C(B04+Ggr*pk>Pb@exiFpr6w~kfrGC9vlC3XO(S9SB7i=8IiP_
zSCNwoDt@p$13uT!q&4;P%5=BM>m^@sP1(US-XfFq>1goV8nsFgasXB2`!{MIgTG9U
z+^M=SOwQLIIG^TEw^rNiK7RsarYww*O*|h<SPl5j-LrfLY-2Ivn#n?j5wJfm&MDv0
z^vh}5($?jj?kig};Lj-h^ZM;!*U3q*isN}TK{KxWyH|W5PN$09Gf9Oz;d1(Z^1{R;
z9h4$H2W%tE_yz11>CY*LU2IsFCJmu!r9iQ}<V-RGlpsA;K3F!-m+xxNty$Ecf1uSx
z<Q?BvjdR%eLcS&TTj02S(mXR<O%ycdo#t_qU;Zk}ZMD$^m#lHKRg+X$+d{sCk_(zH
z6By>m({(j(vZ|)v`L+71yVYuE*{%6q(=2sjh&b<;s292_f;+4>Q^KIm_1{)(!p+4i
zG5x9Pev4dP1?D-;{T0~Xu(x6Uf)0FM^S)S&s-hAV0lnDCVe30hI`xv_+<Nqq6PC2C
z0~gI4ZA)&>#-)nN*_Vjvw@LlC2h9=_)uw7ck5;~dfz#_PIl>WV<kpChlqEpU8YTO?
zwLk@<G^Imb;m)|ILyoY$QmZUih^rLuV9Ks@d#q7N?Z8Np<NGsxEiZNy(r6jvVzo%q
zq_scEk*dve78Mt|&4$=7&CUga#k@N)0LyuN&J8SFq5^QgURhWYaB{!&-#)o1*u482
z+Nd=68S?C5%?OXr-A<7>dgA3OtXkXIr<8O0$GdVoxE6-2er^sEUGGZC7NsidQnWj#
zh~>SY*V#a|gfu8yNVp2K6;A3m42d?SPH|evI79&8@_WCWz#ISezk?IjWwTL{i*hpz
z4Q=d{?cS5=ZpD5DFeYMN2-`zt8-`rh9`a_MnOf2EY<CbS2%2WyhTLy6EKvvN%&&Ci
zZE00irHP}Jx1<rtV<uW!J>qH@R;b>xH(AIgu><*9y3~twqehY}oJe|$you^ouG`Jk
zj);Coe)b3$)pncEP=5Nk714z-ONb>DU}VVq3}W^2lsyKAg&P($bf}f@GHN?*+7(g^
zj<tR1G(+6eR!eHdQ6}fN^PG>xQmf)iI*nms5f#d4vyGE<nlsWMu64@BzadVcr5*~m
zrIc9W*sq7I6MMp2)F3gb^&8rJL~e2O?I#p)^#0j~Wi20ZEJaFBW`N{(Z=cC^^)i^*
za<wYN92H7@6dLbIosktlSc?M9?kwXTkyO)C3r4=fBSLYwB!DBKoRPRlrSlD2oCxfq
zo%yG67+IMECzAI)sy$)4Iw)$8`_Px)v}`>;%ZgL0ptXNjNB)}6#SW!jI4FYqapUtt
z5IaChzQJv5&6j0-;EL9=(@FjCppJ%KR3(dUgDH~JC`->Yh36kc;lX#`4y98m)u$nL
z=@aIamjQSwK8eC*EeBmcCQ6fmf(kO0)O|QO%?M{3z|dGr?%}b^|JmP5?!pBr_%X&&
z<%kjEZZr!^Wn~HR2_3!KW$8SQzWNv4qzLPSp(a=@w(gGQJ-N5F-1S~z(P}2aT*}d;
zk4}k--oNp#<-@jxZdye$Y@g*PJiuv?Ct;UCOkOgh)8Iqf@h)vKB`(}|k1@}26}FRW
zwQ!)x21cOHfGrBZ+*^^H=U7~mCwFCHMW4I!?N_&X>AC;7^2DI12C-H8_VhdketTG@
z^R(e%fqEFZnm7HuJ@_w4s6OvWHW*3i08xiFM9FFbl)tkj2-w+%&ByT+Yo4K#vgs$6
z?wGPpi5U6f>OV-NOe7gz+AE2^rN{=^^h%4&Lv$i`3uC;m%9R)~ki4zR6QtL8G%7y&
zoPy<uEfwB_$X4>WLN(F`OQ1OjbMI0-T^>SW$<_m^Bkz!P|JE#rrk~yIdS#;;U~k}T
z{pGCx)%<&i7Q$=#^~*m%cY5O97Orb8O((2cYy;EFndCFp_=vrEAh*I33)g9mp7|tx
zt2-kt#r6|pqQfOGIn8sEdSGII-WQKGc0~i-M4&w`)%`)Gcfu4)Bh~%e8csBMMfEfx
zjW(Fc(MHXLLTV+E$_F({SI#k_6ftVEKDe~v&OTheytdihof*Dsz>CX*l=roa@$nT4
z*KV}Uld4SvFJx`Y)ez63#I@$#vP9t93+xfBiL;l4@7eab?<OqoE%^lDk(M{3ZM+!$
z*Zo#*?Hu9_x2E+zpgqG4%<oAs)UJ4Z>ty$n&G49EZEj(j0JO`e=t2@y0Ocl;hyvqr
zo5yQhAm!#W)SBwh&R(xnoB8V3c*s^iuiXPVn(A)HbHS+;u#+B0{wOKjtd$^&7`86x
z9Pt{Z^5Ru&6+nP~Y?zH0ZI~)3<T@RLb~GKG&tvxB(p3A8G|-tr{owG$5qnr{YyW0F
zoA?bog32BLL#NaEhU~x$R4)DcsI1HDOuFZ$+Drv1+V52-p+kq>u6y{2d^Gx<a4p!}
z;K%mC)&@rWub$AV2Q0G+S3Yx!<CIYA5Ip#5rW)SP<zvCFOX<WJs$+CI)+pU%KmF{}
z?zWvl=XGr3<qQv;W{Isj8-g07=VF=cwR<8M)u`wrDQLcoZOvV33)h~gms^{7o06k}
zm7Ih924cj3G+OM&Rg{R#>D6Ui%CnkAm3)V!%PesO3=f{oREX+X$DmGaF4dx^0viE+
zEO1+^bz*gx967q#lqr*1Cx)|sVpqn4?tW2x0!u5lao5Oj#;Xf>a|Or0bZr&JMS5}!
zb@PjwYQbWsqyJQo7b@LTF^_OFk4(u9Y0=dBGv-x64^RFC*ou@q7a+w8yv7{;bnG=;
z!!(y0I%iZxH)f5ecj7&@S_WvNgsr!T<;)&if$02UhwCv2AKt&DVierYH?~n=CQ3i@
zI)lRv!4P9LF4maaF|5Zxt5lycO0JOrn5HnJmuDOAY#Wi%YXJP&)crmbA!AyzM)ldU
zFB@q!g2YP^*xBmp1O%l~|KUh<{d+yhY(lf$BpL|sfJYNjwX}&$M!S7RXeJ)7ndLOL
zHGOvr^up+S+w#te@lFk2;=(gdpiD6Owm%}5dw<$J=a~9R{DsC@E2vmZ$D8r%k3TFA
zQ~}9H)M~k;eN66TO$F+HqOagkRyXc`Z_a7$aVuB1hTKIuu6)j7NzO7Ob<G<^iQk(8
zp^4;s`%x|@9-nGi=GH%fqj}7@-r?IU@5p^k@72&yw$)Uk8>4;g&PhU3;rugfoAI}`
zR#D^jcaN;T?$w{lYqe=qh%@8$L9Dpd6XzJ&s&hhr{1(}Ym1a_;V`-&ZCp<)$BWUbb
zO7!|he&-ZCb(DyUc{ieEU>rlE>gggK`I)!<%9~dtwfZ0kAmJqTU3S|EQF=p=u#ApQ
z;v^Ql#f!uId+=9K<%XTWlWjQ^B!jh`_k6Z<hrI`iO7-Nk2jFa9?pqsg`9k?rNZfmb
zZU!>|(_xGRaGPKG=lPrX_$)hkw5%4+fWB|f9At895ygrwyWLwDOP;UYU4$;X%li~X
zTl1o9Cj_D180qpHLv`ZZgLaDa%;MK^E2o*J+T3brgiPS{iLPGKJq)#zD|6K0@BKh$
zlW)u{BtjD?KlmC`z`}=U`7^NA53)(|=dQaZKczR~2yGG{n`buRVgVy#^RQpEydUj_
zwo2di4+2OPvIq3-Kd`XCj(Su#D5*Op&b?!+PAQb@cFaP7@BBCFb)uZTK6+~nO1bf-
z3(UHg{#5s>QsgQ^y<odj<$$=zL2a-OVeZ{1C)~>M%*0<1Zv%M(i_)J5=6?G0HXh@D
zs3DhlGok&s^-aIx;mgO{-_H7DWofQr{Hs!3+=TeHDt^R`7+&{zIAx?lxJTuHhN2rJ
zIdWPHW!?|TF<{Gh12)6%%PKd{>KPg_T(;XoV`Y}Cz=FNsF4t*}vgwYZS|MFRGn0cP
zq)ljT;!WEmU_v<Pn+GR`D7l)Oo$*H7jYT4IPNDAua|)!1AsL+>iaN;9BgQ%AQuS-4
zLIf0O29rwwhK9U<CR(ei-l+aomosSV6-41IEW$Wfm7+`0D)3>uL_3tSc&g9(oK;O;
z&#kx;n2+|bUC2e)8fmZk3oQXE7$TE9UE*r%uyl))JB^X6tUeAODs1an`GLQ}c5Pst
z?o6-Kt4*kgDGJ|EPfxHI?k2V#p$q3qT`-q8XR@!2b3%qC^BA?aP`2)O2dxH>Hkdui
zIrZ8|TxRBz*25`)z)8cPr>xDafYIjUp~Yw7_04{Dbd~Ix`G_>{XDcDx17rlyAT57G
zHWOWdD9@D5ad}F_+9ep*CeGzZyt{$9E_$16*LiJJZAr@Bu=ehbsXJHg)5RMYXwgLv
ze=O_4$5N{7wPeY9m%%|hn?tpWfVg8!va+$0M^sy2CD_76M{Ihf&3Hy7qex^|B_l!D
zO7^E7@~umos+n5vIfoBq>gqKowCjo9fivpWwzq%g9kn!L_`_Kbq3A@G!~WW7&k(@r
zW&wjNvM8AMHOI7j??4dMF7RMVHA3|2)%9QD%861y7<3arp@chAi2gtnZp3nW3J`zX
zci(*2$`n5-IuvxdqW}YSK_F>WbJre(7jd-NkP-!v-W%&ES{HBaU53t?S}C^!4VLd>
zm)A+tixSWZrtyavD&Tm5k)sGCEL$1ICg-mNg~tReOcZNv0a~n;xa7v6Q(=n6ej>qd
zoZnhZm_9E2(TLAaT87r$;MiZaq7etfIb4DPG2RCeJHz2%;Y88~k_vz@)n`^aT_3`c
z8zmU+MvF3eup$=<3G2+ELDV@|M;dLLTsMx`V<@jUyBy3LM|&(6+VF~^3_+;Ze{q`A
zwC)z{{Y^cq5qJ&RU=B<3a|;J~9q;iQvQQ>W&*iBgR;yl+3aClse2{*luz!ejMUdzi
z(yToN8To_x>=VHqU2?XI9b`Mg34hs*VB(H`*R4yUA0N-^Nl-R)R^2In1d+L#kA!#n
ztjDdoT0hJ|tsUFX*1TczLkMinKB5XD^&svpw0|u|MS9j~DmXgZ<`;LeJS}I^w;1e8
zJx|)WfvRpB&i^_U8|_y>ti*6IBOf7IjK<s$b%`3=n9x;p7@2d5dDDJ|MsoE0;^2et
z6knxdyYPEk-;(bA!rXZLDE@-no&6b}b&0vj^Cx@rJ`QD%1&2h>dy;C(8rd||EsL)f
z6`!<wSmXdNeGeM)hpkOaW0_y$@gm?tk#F0Im8W+W!Y4NTn16$Cz>}(naPBvf0H3<{
z&WlSug3DTRitCUzPWlu2`_rXMApywm5ORle8qICEL@)FLWKH)JYo97_#$aYIT;@F*
zA`<w4dt2cZ>tEO-&2n_@fq})%?Rav-lbFM3Q7sfd#5l)Mm<Z9@ev5PXontO5H2;7{
zWbCEQyrwd7&STr&WKdMtwdz$FmbGdWu36++yW^>~ZL`C^a!Ph<2~+{P1PKF#%C3IZ
zFO`o7|HnPAkT&Hzz^xT5Lk*v|14uYH$JmQ)6oq}@Bsr$RHgt)uZJb=(73)CWKN*sn
z?Uymp_tb)_>g1ZIQ{zu!RlN|Jpu9;y<-5cjG&k8aSHBg2*zr!nbwFknxqez0L@N1D
zFtER_Gmo*VP*#Z7!AomX-ugk1gD2K=i?ZT-PO7ZvD>NIDb0^QD@j1OBYWRM=PD>G1
z^zh>mHg=`Xu$6LfGFa@&gV4A2N4j9-<m=vtODkpNOjrJ=I9i@`l|JonX}SKe3_L69
z7QDq}sS0CVrSoN%Qsasq-y2<J%fXB$KS5?(E-P%KIG^a;cN*g4V7I+m@Fq*JJ5ru{
zh?x{bF?1xFW~(@zC4V~`E+_S)86g=xO-|w<gaziF9W(*^-MV1G@lvFmpzq>xB*98W
zI$iJ>hiSIs-LKsf2|;$k5T&w7-=#s{8OLjLCu!(DF6UR_m8)7}=w8{Gl|y&FG1+5}
zR4po<z~GI+G8*`p9qO~;UsMey{9~E0hjy=OhVr?;AGNzR!l5oJgYJc5(_&Aj-6{*-
z=p;~1+DQ1ZM6pCmj+TH|D!W6GMF^DniD?BBGB>J1*=fX@Ww6^p_zgvkR)>R!7VtMw
zVUAUsl%n>aR&rmRLI-pov+E~rx%-%KqmF4KwxF*63fN8@^sEFLl}CPYMs%QPxo)8J
z_Ddzl8=(W3i56!$ayj&#00(t@i|lR1I;2X9#@6xWfMHzSp1+uL=SJE}Qbsw6B!3(Y
zVxT(+>8ooovL?(eStpgK#9;JHtR4>11Bb8G#N;gmAvr9^FB1mKMlB!WRAfn-RXS|l
zZY)DJ?$ncGvOiYI;W?Q`sX0&-exR)+%ja!%6Fg9~{Jf&&Pdq7Z_QD}dWKE-2JIO<Z
zK>M^~S_l${PO#QIJp<9pY(v(4#%8+Ol43GZM7qy|3ScTk)1ch8Rvw@$p?hfgr~Bhb
z=Etcwu3#74$7@Vq4*alX=4lWXqpt|O*A&=pk%Guay&@FU;KFHc7%l+}D|v>{xoiA=
zKw-#g*iD1w+G^iaM+K~v5@pOb6nIMV{8)L>S;bv43;nJ`O}R3{r!o5H@97qVSwiX=
zVT_Wq)A3-fR~8qv-e=uW3PVG7bK2A=apV-Ajvd*faGh7pzjP--l!d6otrsAV@qb$A
z5*NhTIy9z>GMr^x6(B#saRct&L&Amj8+Y9lM^*96PYz-s$XdmFyYqI~d#_<|U0JI{
zzk|tRf0l*!{p0^itXAp&=2}p^NNnISBk~Qp`n@2})-L@i(@)##MEB!|V1SL_5|g14
zh4L#}(}cqLozgG9cRy4i6?^2DH#H2&RFj(?{K-X@(KECKTCZYh55G##kLBon=i-16
zwIBPRj8V_jQl@IAYKM{n3eI0SqAO}r=Kor|<t!M7>mSc~vt=vi^W|VGNmu-42K@+m
zIaQV4aY>hU4rh^M1Jtl%g>BdaqbP7xK&8tPhsXp@CTi6<2wOTzKN>_ia1;(Gq>U55
zYST~ZHJbcQ@kMAFCG!>)Nr>F)4Ror85PkMAtBZ+5|NKa(Z|N+Cc9X9yz6?{3>L61g
zyf8(2p(4jPSNC5s(|SB;p=?2}jER}$9<^sDA|;$zS&Y3CvOGcXnwK<gY$OWzCv+-j
z*9$6PgB72O46qw<tU&w|M0pFTq2L|wQ-9|MmtI(FzdmaCGyXGxS3`0MMqY!jd|0CE
z7^8sr@;-V3l|64+qeE3LGp-Y*KS4>4>>s}0?k4FobM?ly#w&{oLu?0*-{Mj6A_eVp
zqe@pqa%AFucL)w=O!9LX`6#A(->B{$uamwyq#FU{CsUXCu;BbcD6@;Bqt01~;5RMp
zPm6Dn;#4CU);k`_5pb+<h%@vw-xk0T_-hZMZ|Tj;V}!;S!tf7H;%vjzh!2wAEnY;z
z`iB(q=uxpaDMEPowf*gEUpZ_<K7*C-Ahpq^rRa1ETfvM1KVLj^cQ4Mw3<X0pg?=y{
zLi$PEW~xuf@(RPKl|;{7pnp5sauT)_Is6b!&)A|{)T@vDa}#piCPa{Ahyj{=*R~h}
zuH|TO5COuD5TSE?V-P65DsWN(GMyx5+A`PE7o9hkQ5v{pwED3{L*(iG7aa6gcoO*H
z7vkc~Ui9oNt!7sz{I*V`7a2=Wv+B-zw*-WFl>p-Q*tzaj5aT49O~U}=A*m1Z^D~c^
zCI0TZ;Lf@rnU^O@*C$zDGv|(G;`WW~9_L20>aM0nkgbEaT373CfxPZTFrEs-!{o1G
zqv*bo2A}xPPvyYaM_D4O@)#ZlxyXu~LX%<puJB`yucP$NU)IW{chEZSY}Fl!<uS?)
zKwh_nTdBM?!(5lZpZNZ5Tfknou7LplT-+KXmUkMtKi{K>r`?ou*Iu8`EnEvdQ$4mS
zm<u^rdE0ef2#^ciHBnq+C9bWZo1est!HdIs$LQ=g@?MWOC30u`m()kpIshzF7@I~O
z$9<`DGtu53<lqaH-F2w;*a#Q$|CEs58BlhlDnl%*tMMV`nTj&RWH`lS<SAh8QerHk
z5e<GkGTO1we+9p#Oy?0_<sf~IA-dbixq#<-giqc`EL`-8zgks&c|v{a<bQ9`gT8&@
zD3^6xut0}m50r@;O>LX-w}qD+2V%yRab~;T!+<`iAJ{zoJ~NS#;IyvE_!he|(JZu~
z7`Hj7_hCV}4}BYNatGDFgU=1@*L9C>Txlcp9h=TUFNzCIeh7T8xVbDJ*6zgLEBS#6
z@=clk@m(1VZuUumTH}aybKJhdgn-vYxMmkzq_4SZ=Wk~ATbg)IA~HYM*h8kl>$`pS
zj%JF1-pQq&6r_DA2(VnEUoaEGN|t9V0^Z<-VO}WvXNHA_Lc`}{)9e*%s!IRlVn`hH
z$rDXOXE-EU1TQ8!2+)Z#!@@Hs@m`Qi&QGCHwT)$igAB7mWN0V7En&uu214IS7VX3U
ztHEFs9Srb?^JUcdimvwr>RfIT`|;EULvO3sPmzbfXdCSZ&_tP0L^dzv{WIh6lR~4;
zhf|{u<<sb=UN~%i-c_uvg&QBLMhG2zETAA>47Z7iMWbn0bo^pF8ems<*e=myLLbGT
z>GE4xS`NJ7B8+WrfXYmr5RJaVms10G?_vu&YcpM<XNn{5_p=`dyA}ov{XJ=}@$bTT
zOi`ins8q96Z(YpUOo^VVnA$K0pbxac8z!RI=0d2<aL~}`U%T<>cU|%?Bzk~nNq~L)
zOdTbt#*i4Uxh;CbLwGo#;u(TIkQ5}tR#=+MYK5&q{~HJ&1BBii2%iE7-#R=P@D+Il
zrD0<g{^Md1+pM*X98|+b^w;>I1leXp0KkxWmgTA|_weuk;|=4(oMRG1)qtdjjRouj
z@zznXXt)fCN?&;kjb}^r#Au>xH(kU80WP4;R)L|)1cJo@g1v&%So#ghu^fas@hlWm
zUmQ{agaUNPzX-Ou4l1)(9tsVYO{|8ANbn09G>tDt$7>KGap%j}>#5p7X9zkh;!)3h
zRcXM6^(ygtU8TWjt&yfB*tk?XZDr$Hva5+I1RX>;;92n}9vHPmh*KPbB=m2Jq@RAW
zurMHLs1k{iBjcXPt8sEZ#~YreM^jfZNzcAS--5e=;`K^4+|L`1T_qd5OFEQek)azS
zcMWjrAsZHNS6oJ~6G29=i_|3JxtfN)|Ki9qWFOo)>pm8O>2jPaP7m!z9L|G`xZR~j
z?j)OszAQj(UXeKK@Lfs9t!>ypP4MeFT%AbkHtuf9h{ttf+t{88g#p$N`O~j^IWcW<
zhp`Ms?%S2cg0Uh1U3m#WyBv)AmWw4F5yb1BiU+WfcTdyC==G(4b(G~yW!_idLJp84
zBLR2^ip8|DKQRQ;Ej@vbMKZR=A36eenyoBuA0`=3L`yilRT2i6Zs2<62m`FXDz01N
z4|CzvvmGi<{ec$S3D<p`B*h(O*hG74kw|mI4g}g5xz7dDg>G1Qc;MH0*#HIhfC7X-
zND@E+-*G=Yb)P+9z;yfK!@T{--7U;0iwh95IZ!|tD4=wU1~jx0PW`LDvUq<V2uz%U
zbX+zz6SnT-GfdiWm?Blwmm9djv)0HRWpnx$7ovI$5HK$g$=7&gtrz-`{rTroG+nbm
zLKdBE>*B+$_{QknJk03bA`pq{Ca&i&*}i2y3TK@caQq=7P@olP#zT-1jsUrl`&4DE
zZkC^B*RdGjU3=t?pgA2eMg#yw@pBvrsG#d`X+=MnZuNtH+m39!87PpeDJu^YXs7%+
zo>3A+r)y_<fkcR-i$(xkhhs3pv8y<x1cDF*uD1i%KY@Ny0-`KAECJ?*G*+EgUuCf_
zFlK^+oG9uZg!~vrufvWE(cZ2Bk`K+tS|bj9!F0a%6{np*8#7==9o~WY<J-;-i0$KQ
zIdru#YJHu(FnX=jlx-F`lLMpx)uhP7sOz{|UR=h;REO)>lZ|Hq%>eGe3N)h~7|&Ut
z7Yb~mKko|m#{s6BBX{gTE2b-p-+}R727dn@Xl85+`_ruWa0)#VFdu5*)Vp?7=9_`*
zJHQNH1zM1@f&1Pe44{A5Q#p=&Zi_z*WiaC2QJIGW>i92be1X1t0;ZKIta=?c<{J>I
zBT&g05Gv4D-2%KQ>H<$I-^p~Vs0y}DmKWbLx#0qCOF*P{B;(uJ&Sj?qTt@Dm!gUw?
zz>p08Ur<Lw-a7HrJ&4BT0NbsLPWOgaM%)}E>RoQY+zHV%d=}v73h<eXru#2y5t_2D
zcUV(L?2QUEZWWssQ8KK}!dJV&nf-9Bq@e<(`x-;8^J6WMwm<C1KcI>@rpElMZx-IQ
zjE_upoh|8Ke8SE!w+-+Pp5^+x6V;1Se2rsV;PkvYcFRm(_vmm<82KJkUwB-n;toI=
z`T8`6<jXL9QY<tQl*HF@WGDTHOKHybqj+j(5-)e8K}_VQ$exNW86qjGLr*7Cy$A%W
z46_o!KCJk&7w_v4Vk{9ptjMy1U)6*6Tag86T{jR4vyzRu*OLxg>6cc;E9;}xtE`)*
z$}8(>&aEn)RV=cSP0fYM3Q|t5tB9J3RyA@eJFKRac{H4}9<Q7+WvlC@%7V(=T*zhm
z4GH<?{CydMX||G{MtRj89DaOjLtyPBYXH*m`+bXEssnV0^LxZQ5^Znq_S#-+Lt>cD
zb-%X{G&}7e|M)*=VJ_Bqp|oJKBChhMf?a#{YlcQ~Moy-0jKuDBgcD^XpSNGoe$W|Y
zHBwDeyx2D@hH%*)4s!_(z0~>>iAb%Y97?IVQ~XOJ8ZAZ1A<7dMJ2`{a#!tg9>Sy4&
zX^&nalL+q6Pli?>MC28}SltgcRlp|xuplC%=42nPkbQRRoHZwmJ#ydP@4fGy%G}MH
zOgn-4(nYpqheefz=v5dC8!qq|N!9%u7d9LnP?${>CI)<WkB1ApmO_8asLtkVO=a?T
zc_LQKVDu^A_v`pwBrIudh#3p^-Ocb}Y`|Ms9&eS~-F>B!d@g&!_AgI|6EP-i*kjH=
zB2h6*aWN&h-T2}A)NXug-R^5BX5o9QKYfU*BP-hC!v=68C$LUKTTo^m75b2m38&HN
zt6>HNhz%1vT2;4dVT+R-)7I8f=2PlJ1afyObNgKsi<6yJLPAG5=k?Ds?8F2_?*Y9@
z0v^TPwE@=hh%UPQ!MDGr?4Pb{GNLa6v{ayMH<_$NeVlA<f0Lik5t(4$;4qHAKULuA
zX>7`tu@Id&FY|#D97gU=R{29U+3<K+z0<rTG+%!ppd1Ar+hAvXrfdv}rS?TQp5h_5
zcEs>-#1(wx-}`T5LFtcS)9NKtH|?y1FA5~!S@lMAELP7dUCdtyZ<7%H6tCTL9!jPH
zHxXhXDn1lhzu6)fj;VgCm0rP5U3E-BT6=$6jS-TI1I%U+t^=w3>D@0*2w#|*42-wR
zDXara(;mYGp-y6(+?w8wg}*{ek7RG*j*GPQY-Ml!Tz2udg3_Gr2)x&%0_PhMwlH(1
z<idQ{Fj}9GZes~r_CUVOa<7m&qS#G)+6n1_g(m4Mvx-tR6_v?h3`OS-gzB69al2v{
z9N(Ynt$7jKwys-(BJFY8)yTH4Jl9it1sGjm(GL{>T^`8!hWk!Ajo`tYd$)Q9XOcP4
zl=B4i`Ez3YqtA?D3^M95HB`?mr?`Gnp#uH*9r{G@(Xoh#xk*VKU_BsQeeL(RDr%t$
zx1?Perz_NFODrM}!4$bV14CVOOojNsBGN+SntPpJ3cf01k}6sZXb4wpZQ8NtyS_$F
z6VLOI@_L?#=1ylKXN%6gyZ$!ePtotKe$kqg)$k#~4p*+g=$p6Nt-8YM4El}QfUJe3
z<1+&qvtS)J+!{ab@oKBN@*}H7hMf5xNv}_w2UAXhDRD*kdnlS4f9WHu9VDl6q|ET7
zp%N2+9eAbl75?apt*_qX3S7K(9TYwTXgaqy<Z4&W61Gf+FYGn)4K}L%ZWB8%=r_Ch
z-GU237kS%Nnr$foSngMD0fWFy=09r4r=Th3k)5G5V{hK$UbgQlbwb;d#t=0}&|1tP
z{ol&fSg40=n+ExNsZAraLy8YM(LEOU2{4|%p5Oaa@qIHYh)Q>P1y!zx<-(N?PaKyK
z+`4F)Ma~}N+nIx6E9x`qUe^2j7g{HJyRUXW_O`a=KR~0pSLFYu$4{%w#;&Jb+kIEy
zsa(z=x*zBM?fD9vg=+1mdUG3<T@$W9@G89PE80z<PyxwWNq2wkw9W$!!|nLHG@|J|
znOVuCta%wcvjW2<k`$l2?QSBjEq?o;r1b?)=ew=*0?j+;Thc_2mCyhAX=g&DRiV9q
z`8_!XyG^NgrqG=^II{{SvRr_CzP)Y>3vsaTlh}Q`LFu0E<`t?!k;Wq?<9%-AmDr!B
z#yo+q_sjt+Ffrbmg~s~Wtv`MLopO;D$lsQE07FMj=tZ8z%}MCLfQ?@B=f<*`G%y<v
z@*6u-GiJ;g-X+DbaV8;IGh;O@NkraV0U3i~x@4NfJp++)+{2s6`fvM<lf+X`T0bvG
z9mTfoSX{R5&pIpdtBxcr@OF<KgG*RyD~GY)$KF;h{<&`1q&_ANc}|D36TGH7zvd}L
z--t}*e_6PZe|Y*_%R(UQyN?jV*@R;6wHW|B-44q^Ra&fvcQ*4sxrMduA{>QATclq2
zjuR{ENqG7IcGQB(Op6ScpsSu%_rVgcWS*;+lr<3)KFO~7{>q?OBgr3#sw}+!z%+MM
z45eR-Zb-JCs1kX?4&g$EW=H#dzeTgkzKyfI_m{%+?RMur62zt?__;6mDY~rxWcLFT
z4D#hxXUZHz=Zp8_1<l7RnMgOtolA84LY@&^K4W4Iv#e;g7SL5*_SuYWGs<{TG*Q>+
zEAFJt6ngU%?u*h<$q8;ytFZSS)OtFxogP*QDh6HcHUzcq{VY-AjdVXHea7UR`%Kkd
zj+WkUY$r$1(Gog2moY{|^AG{sqT27?X~o95h^Q2mg!J|lwY9Bg|3dr`VY7g~4RJa6
zO(I4HEQO~*{yf`xa4<7GtY(m}tMktB%J44rkawmAGA}uOav8oB>Uyl;8p#W2jozSD
ztJXyixGRANWF?3Y`DWGyAW~CjB3B~y{@eZJOnD7TDoF9CogbyD^D(LU(|KAu7I?G6
zW`(uq`t=w2_sP1M%RK$dQdC}+W}~zt1m6@&R7QWc+aWk#yx!pr0UKntRMNJZ<mcBX
zJjW4QfN|o(@+YVqR$B%PWt_|D#`3_Z*X@sQOv5RdwkIX)S*zE7E-2mOML8~~bhkrU
zTaH0T7=4<WJwnuq)_=V&ej93;n5T>$U*Amqe$PWHM!Me?ci6casLAd_ynoInKOD%z
z?3SGbUrGcs1rl+7_*=ec`8yt<QN1`cz`3=17_~d>KuKO=R6k#Ou4v3Uklb>(%V4y`
zc5`b_Je%vcn7{+CkA>$<6K=08#vBRPOA)vLQlmOJ!xj<q>bSHukCb!#%lgLlcXa0i
z9A9$=S$C04&1gI5mV)$x5$X!oAX?WT92ftPo%TcvF=`&xCPg_2@iH!V^(|7q(^gv!
zkU8xvx3vazL~rkbqVl|8dne^|@8BHzb~6z6Z-d=E`+aPJ#X85@dH0-md2Wk9qrif@
zn<CWE9u{JMfC`?D3t7rWoes9Hxf>{n_2Tw`Gon?1>6^_k<V}HkPr|IZ`y;vD$5<vf
z{NoDcN2qs0a}?uRtV&Jp2k-vs3p_dAR`~PQR4~^SPw==I2EOs92Wqcfn=3ZPZ3t4m
zig-b34$x~dn}c`SQ?ep>G9wLD^?Oz5>q|_OLU+%UAoI^3X4nEWYL+1`sGi@MF?Q^x
z^ew+;-p>SPeSG4TghkS|NQ}4~J{#8_?*S@Ud`xESsog3pA#qL*jqNYv3zG8>chLgm
zFrMhe&vs>b^l5|NeO3(WBgnC4Sa31(Q~TQ;s4}sYS+dX-N)?Gw0ml32$XWxG?0+qm
z!)rxl$G)5L5BuaDULVGG74_@l5V-9S(3~w&Mqn9cuTXV!`?v+pI-J{{h~+{)H`P2>
zn`8S3Cc)lzVL7OZ@8BHm4qp5+1!KQo^HOX%pfnq^pfwwvb&MO_z8xBZ>vmp2JrC0A
zKb+9GKU?7{fBLvosIs98ly4qC@({)D?%TO?lBVqI&OoppK8*UG8P(fh5{8lY+kqqo
z)ZkxtG(;YrU*;4d_ADPUG4pq=(T6RKQofLKTZ`9Z>bJ~W_I$aZ<5gUVQ_;DFDJ4x9
zT`hx<<l}57R)-)~&--@?9(nVcN-T5|$Yyj5p)IFgER9$$s2mX%cZYHxAKBTAa~FS|
zcx!!(aKqfcy=@1Ex+3-7vxe@*Z;JmDdbyIRn=+Zhr}1M-RB)scZ?}*O=FURkn1f5H
z2T9fN+F|m<e{-q#a>K&V`?d*0+wVT{ZbCrGb6MT!WU3x+{>*KnZl){4IIMe>L{Ftv
ztRaV=kKbX!yPap_DA#r_c3HGCTd2At<bUJyni;#xJ$3^7n#CPrabFKHt^2^AQdD%&
zjjDS$kA1?aeg<FWzq!0(&Wr}%lb?If>3QB}-Co|YWo<$9FCweaiCGGTSDSjv4%JNj
zhpqW%qASn4j~6N7A7U{^K|t5%k2Q(<#=+y4lZ;@b+?Q8KuNI`Pc2l*AOsHq`Qe)k1
zR#4rgh}}m10=rnuuRce~r$>GQ)$Wn4WgrtwC1yxGKh@VMMMs<I55jpf$f=nn&u)<E
zYi@@fv6rf)l#Ohol&uUSUpC#WK-+xg@B=?I9qWP=_QcU(T!JnZb2B{No-Tjf5bZ~)
zfXS~#MD&dDHQ<ndC5v+h^+CvmM>El53#@DyEL^jg#a^&PvBvd|63di{f!0`KA2aZ^
zh*{iUw0Ne^h8TI;H#3hK)EYjHf^eafdCopB1A5PuH|a4>A9oM>ZrY5;hVK>g3cD1$
zBR{>^?ZLNZ8)-Xl?oTDUTx-(5B>C;c2>4<)Ka^3EIcR+t%dSs8bK#E`2=02D6~128
z?tW}61UJ^z{Z%jWng7J70i7h;cWz0kZR;G_@c!qqIA+98t4Dp=wvjCPVuGiR%9#Hn
zXAWw*A%3hIWoW0EAM!(%bqCGUL&p@06gp!q6v^v0hWBcv`#Xm5>i8R>53Qt@?+J5!
zks%#!U2ONxV1)-9EAQnOnmsEE9?Rj_K}kcombJhld+?Q3CB2Yy1gJsd^N+32X5PlQ
z=Rqj_p&uvwTrQE&JrDdZxhfn`K1?vY--6Z~R8eHg4EVuW{5Sa6H~hqj=bbKKM@Tgm
zZrEysF;4}XA~#CYCpoLzgho(02DZH=#PCQSjmkQ16-t_C!OYWCQL?z65CYzxR2{75
zR1n|$LV#7sW>=*CYko*Y<JXO44vTx!0`@9xE-?CgeYf@s8}^P<efPjXrqnb4Zu#EV
zl`?Pb{=2Gc|E)5}c0@v1gK=)RfNELN?2GO^s4vHI5Fq)vggEw<WG#xv55nQ+?i2%e
zjGKwS`Oo5Fy4?ThDL^;VjKp8awlg?7O1{G>+}(3C2xbA9?j-<0B!M)1v_|~wfYb+C
z9XdC(ul9M~z8p1{YmAm@J(0b%XXIwYK330|9&20yr#d*wZC@ucs6G)Le8|hYR_)6h
zF)YO$+kdc+Jrs=S`(Y|$9=^NA&cltuJnZlXEdo!OF5D^(<SGvB{$L~PZ_CvEYYFqa
zU`WEF8Ev&Ip950Yl#Q<mgtqeiI(6$io&3(1jn%!C8upAI=F`|8V3UH3>u_KzbS}%c
zh8hlteDkYdoU^5dU|62)pE66ab5+WkCq<pC?n)#0*oXA9m|0+yiUmwW?@v)s;_8~&
z?Y6ex`exUG``q5XUU3+GUHt!`ilYb&rHN!LuqM{$K`8kR8O`BLM6Mr2ssrQ(UKW04
zve?~tSn+=Npq{_ee>4R?Udlc7Eq73bDE8mHUXgX)gbe#>QpV;(4!ECE-5tsqO>K@4
zi`RymDHE3v57+yKvWDuLvB=#MxhSsE*04O0{PlFd=`%vdxEwFv2_ST9%_7Jfv*C%J
z%$NSnUrk9QZGmMl%BwS{GBvaW->XVtNv_kP+jNc~3cHqUYDlZIQBC=*b$^f8M6`a(
z)mR`H8r{Q7@OL+HWo^0a42>x%u<^@jP7RCCi(la3qA>5v`(G!_RDXcVBp5DfYPI#v
zTdppVpZ9!pZ*tdAMZ;w4LPBe!YNhQmU@8!-?Vu}m@|W^XfvL(S_sKnfr)oPLRt)8f
zc8lc@Q!wF5Xnfh$i6{)5ZYp1ZDZkzE0m+lCLU3kXhUnqx!ib6@4Mf;v9=a*(mdCpX
z`i|s_x+c;_um!=WGiYDIO|Q`aUX94TdycPUMOvlx@5Jd}qmjOlHuDU8@9gL(BT$!X
z8o=;eY6SN@k#XyKiL~21$&O!B-wCxK9Vt2{7{(<rs8|omAj0V!sqo>}!4W024`1gT
z2g9A~nY#CmWwm#2d$VSyAnAjQfcF?B;}=ICZQSw{LVAJ5YER8_n)i?P<HyV49KFQb
z-6kbF?Zmu>(&(|Nlr#(Wk$;;`Ph1~V-y@MaLT?ym1v?TRNTu_>{jvKl%ipszyfcvq
zQ?Ud4qsck$A*ne!{fY%>eBAShX`0UPL^oOJ6?vn|JmCpQx-|5MO*QEVxH;WQT1wSy
zvhY-F|L>>?P2puE=h{@zW@N3|NbZ;i^|rz;81z|!Af!panRWBc-Mn+J@#8zELYwEk
zhyV}E%(|35az#}=s&WbU#tY;Hfvfoi3{xBQ^3YCfdY@@VqpHN_-$`h*98uN68A=VE
zUXCeB6K+U5N=#J{k%z~XF<z{>Q08U0<;ngNm(WV9R;ZS}mL_1l$sBIlUvL;j<1PWQ
zk8(=ymFpGiy9c*XwbPW*upM@VJ>8bj3;MWEt|51)kI)Q%zb1^{v#z1=thDLE>atJE
zWw-fj1oDsOv5@BL`x=I$y5Q3(c~eB?0)xOia(nFM57fDf+$Ni+rbLJ}<@<((jjH7q
zb`Ye-#a^Kh&?8V4pQI{iGO#OK))jX4wFs@1X}h{fW0AGvM#lzIeTI)xg!d5!5(6KP
zF=UWvA^qs7Sqq28HZ5z)_{5rFX<j?we9@}1z-cmQ+)X8@djz-Pb*S#`c~?JcL*C<e
zNTg>Zj>?D1hu%%*Bz+IYI<ybOqN&Rft&d@B;S8?<f7_<08#t(4Thl$Z)6)LY&^5Pb
zCeQq4NliP%f%hF_+goDK7;QLHgkNX|rv%N9{d|+x!EY!>%TpPFkaEzzJLvqK$6G25
zRa4`O5l4Ajzi>PR$^n*;I|dvMRtmJ~(uMp3U9o#{$*(bWI!`>Hlu2)D$61|f>;^He
zf4<#xXM_hVEaQ-~QX1>E8#Uaj%nkZL3J`tRf**;Ix2j3p2n+G<ju2b=cSLp4;N)d`
zhmI_=s49?EwT`_p+|i5C`=|N(*Tf;{#8iUznD|zM=LvNl5%tiX%yp~>c;$JaSxH=>
zm-L`~Hi|ln-MgzBk1bM;L*nLz*Gf8DnH-^2NCLgu+Y!6YsRiJV>v*iK8OA1PJ9%^T
z&vPBo*K@7|T?=H8ah?tl>)mful9D60!CI}B%H^^Ca!fI{v^HZgvXN17Rdl3ytG6Fa
zDATH*M&G<MfKsJI^#FKA7(;me@|iyLRPm&0!dJfRM>v$02j&};4idq6<Ys!E*5LT!
z1N%@oYpezPnrgLJ&d+yvvzhYqcshow`Q?@Yk3H!;YS9EMe%)d>mG8)m^k@E$&Ncbi
zG_|Fxhsafdju9jgg2llkI#8yhYNqvF;2s1J20S-!5QjCDhzztL6}Q8oo;zziT-B-V
zgE|8&Ncw5+U^NAZ3^XC<H+$-b3c66=Dp7RoaO*2z!wDj5bm&bW+4()%h2NkI^Gm;k
z1&avh_uh<tT1><asLW?MeV-~PQouCcAN*x(=P!E(Tyi1uTYIm^`|Ew9<1-lrY$Z#X
z{VpVhE=U6=kVCtrlslsPsY~9<?%94ypUDwo;yRu9gsjufE#7XQIbJ}wb6zIh4E0)F
z`_+jcB+-4|D#yeXN}F8E$d-t8N)X(;o+*J=>a;+!{yau9@Uaq=cGxn7Qmrd2O77q$
zh3xFS=KOpolGtExaagPpQyaJ&i?O-%UZ<oXJOj=yr}l!U^^miWo~CQ>dM+NijIMt6
z=`hE8e(P^;3;sq$zUp4*@bIk*`1Xik-Yw88;Jz`!qaDJ#VbL*yR-f{(ZZ7c3TQ%R9
zn&P$Rl{t5}%n4IXtrA{Gc=hJ7>n2ofT%*_F<(fvk9cr{oLBF0|(z)Ez63y&~s0scb
z08>D$zlCpquD7gWAFJ@e6J0Ft{>BP;(>pxK&h0<8b?1gFw=U#u{bo1nfu}uesBBQ{
zLy<B=D?%d)VUp;W&tTW9EvvGIhdUmY(cuSHiw>Y=`9<kyNucoMntmzAG0==)Ui?0t
z|2|9n_CnJTeBL`mNhZ)1hABPA_rkQ{n^v#|kQ;{PK4>0=IsEu5?#!HYRKlmbAh++%
zJ1unL&AIbVn0W*eMk9^qs^tBwLc8BP2j1*rv*zCjU-yQO_x3+82KNQL2EX+%WBXwd
zZ6r5~#`~z{d=jSQCqu^&bbQ%67gmwsw{94U>)@ANb(<=d?O;AMvUjN5ba-D`RmC!t
zr^+qiC``iDeQ?<r-LA}hum3Y#sG{0pJ^f!w>aT3vcVe(?)ga5o9-LtPgDZP^^ay5h
z0L7V(h_4-muXT^{Ho_;pS`S*GGqFPna<2n?`3CM`+DnJe(Sf)U$a!l!S>XzgnOn5c
zdW3ig{sG_7`YwkVBY<=FBJYaFS002*hqTJGwKcP0>Hyq*gLZ{iZ@-+Y><=`8=jZi+
ze+0o44w9Hy=hod<1ZND<yV`dC;_QL4B<$i>Agb-4{0`)MWP&1I1N%6?GuW+N?X9d>
z?#m<<B>TWmeyaUm;?Nc}ypY8%@@k9DMyA6d`bsycspHxxD<lUPutt?{MShQ_70rR^
z!|>sJs2gJiJ02(CIdwE+>UHy8Oc%bxwgG7DyAy8d9D=`09)ept*+9ka#)@7s*GDI_
za*9yQ7?NH}Dfp6PYfc%yE43ooyD_z`NxRXDm}K^iK8PME6TYcN?Hh8goJ(dNPa;5p
zNA^cMxr=^Drf_x5tteTeD^_dKIa{^Dxi4zVW&qmh?d40B!5uf?!>@|&R=9Nc+#^M>
zbA%!ILo6}94}MI6`lQl>o6)MJK=`z=ii#D8X3tOKQMTHJKIaJfM0#NAk<`bqo6l>h
z-1$CjLGGix-~jb%9v-#}UtR}A`+3}6Ln{jntYaP&>=QKqJZ%0B-u&6T`M>T=YyKZ5
zXnw&;c78?&zLwsBQQ3h`(Sdh)(brK2&Kjo!C%xDKli%EWfc$o0K2)<j>;z}HTvI#9
zxX^U*8*x7WGbJp3h2h$vJK>%7A?Qcr=G}G&+x;~M*$#U>V=N2X%~IHIYwmpQid=00
zabA60+Qa>a4%;o!au7iaid-i65hvJHUcs!|W%GEw2AR6U?G&)e?SDdBJJ*t)QmN`t
zPzN=v=UOn>0K9dY*6C%wyZR{-*|>N6UhU#Ja68&tzdx-U|Az7J0Q}*GIx%!O<=Lu!
z*0fhEn1j-JSiMTas9ib-zI4MVYuvweKfE%Tq``r9G8PVKb<B7BipPULCppMdP5xYV
zP`h^aHu&0P8Y165c%glaES3f3usIA12H?k@K5P-(hWbxO^}Gb-=M#uapFyN}xSQNI
z2*vvl1=Jy%mZP{0<KF@J^<;YM;4wHG*^v465=)*jhLvwTr0vMv4!`Lj9Dg^y^%lPM
zS$yj)d}|C*GuAb)FZmcMrEU1!E7#L=-{RnyKyn!W4#3|h@ixuvgP!Zh;OCPK<~y{J
zRc?DFbP)PTWqtJq)Yii&a^Qd$t)06GJ>Pacp1nR9&z|YTv&Sak*@-SZ>-VBLAn6X@
zqiJ7J@i9(N80{KB`s|!rt6envic0t;pzPd!5KfRW121+O@cl_7Wq;X)$AfUAhNa!U
zhX-%rZ=GhA(=m8~JUaJz(TY3JF-#+Jr5E1sLj3@r>Lv+x6VUO0_7FSWrWtT@j{%?1
z^0m_tQvd7>0@?5Vi{vGQS|Wz=|0BvKWbIikk@a7hH@6MqIA6{-pfMkojlnQ-#>EEs
z@}GeG@UbK`_w0l`gDr=~p2qo`@WMO;Hjlxg0eIUxa`m#hBHwCuHlKw(ITSvc!lO)6
zau8qpShdIW4FS#X$^1Z3u40&G+_>`A%Wn2TOEKh*K}#OIpDKsDr}V&RDi1zB1*KI!
z7{xGs42(Q@N4eLB_onB=lo2-TnqGJb?;M&^w?BFJTRfTQBV}-A-QhNb>WL#auU?w+
zB|5f~+IlQCiYDcAQ_7*S9L~;%w=`C_VB^*GS8=hHBZ9^`?0gZf<v}dq7#ni*ehK`Z
z7OBHr9(9Olm3F>N9jH0;-oXPRX`(|U8^mYAnQZK)jZg3g#N)3WJ4t^JAMU;B=J%hW
zg1$+IgBHF@3YkatgGSkLS{tve6BWRLvR>H^v^jZTipQk6TMJ~An7q>e);D<1W1=Oy
zilv0*wKIHkw{}FtOU1h^oWpIGa?}+3jigWsjA!PtQnZJ)HC}ehvZ|dcgmx2F&ucPn
z=|-k<i%gQRA~4M9^z{&RauR2YNjVWZQr9O*;>qxR`&?)rb2juAU<0hklKUDna$suD
zHg1mbv@kDu6TQiUx7b%Iq@EFxaG`8wa+2^28liQn$4;i6+uj6cNc|`xn9#xddOd%M
zdlp5i21@#J#7XCQlW^t$E2$|FWeia=Fg^Qc{(GiK&zmV!E7tY!4a4Wo?`;b173{!s
z+>q}?5{cwKO5f6YdEclj8n+oj1(L38sThHrHwW+8E~rKPNTC&z;CMCwzc-j+8O)#U
z?$dkW?<nhAS@Az>EzkP@WG&~Q!aG-Ab<KN+k@0(=aR|;9SsmdaIAehIQ(A2M0DFM_
z5Ng5|H?E3k^Urz-9-U+yIF72JU%Sgoa|oWkz7BPX0nc5pwIU$RzYYdE`ucUzY?*pr
zcu)Tm&@sSGL=BQ+z_bO}?&l`;ur-%9HYQW>GY{&AZ+4F@gaxc_@3+}utR0GbSP^XM
z`!*cv9)^$9J%1Q+)}>y!8uiIV<>aHetCP(_irsq}n|1dpm>%AGPYTXvJv)!?NIv!i
zJlNH9@+5qcVn+jA_~Lt_)FLW%JC^#M2bJaYzNhxGT$T$yX1uy}C%oPs#u9sS>d;Vv
zhe@aX__Q8)upPzVk522^@$6OFrL(oG<}N#Y7*fL_L~3j{QgGmwZ)mG#ABOAl_r68$
zSgktuFnkg#yL)mE{1Rp8Njximw&YHfMR$^cG>sYiZr0Z1KE4vJF5U~L4<9<XJ)(US
z-}*6{5JOnyOH}238C9aqonqJBtX+kV?#|zv;_p1tZcylFm@<v0m!tMZ40Jl9T8`|)
zC$W+MRx)FVS3*s@<@zCb6`S@YY}!p55g3d;TLLFNBb+&hP%)1pukP?}-@9#JL1;P5
z?Ax|lyI{7qd=4TIW*`*FhX9+kSG$D12nW-9;L9BZU61+>9b}7OKe-FaN1uX6P(j`5
zt%KTur{G=!N#0Rbuor$Zxo41_+jxR4ybm$wA^5$A5XC<{EMHrl3r}?!tdaTp4<0<h
zO0d2WN{=n{Zcmmqvc~N&t?zO6!QSnI@P%%&=&nLy7h)NeWMlr9SJS=h`-kDiwqf`b
zqb!15ID-G>>A8s|nGZ{R0E_%g7gBcSDEk;op&|7#w2PPX<8#zC)NiZt&zgK_L5Q@F
zfaAa6@A`bWg>cjp-P%?!yyMY6hc8sIF~sHNY(G5Kjgts<M5R~DpAF60O?Y>yb^wnv
zhL-K>f~h0yiq#vTWB~H{z0Y*xt0y%o{kwa#U0x`|SK+%F((NLx#f!qK_XOOu2iyLZ
z2WuVB#vp{PsKYV+a@Qyv_l~iRumYcM)w;d#NEdJaMfk*yd{zsW;mNjq_$)#@_)!<m
zmhVu{p6I4~&(i5Ij^9~$Gat{l<ii^jS^a@VhRaVyQAK#8Dj$Vx9h`@!*XF}(^vqr_
zJ+lO_lv7zN@ML{H3adJJo{D`Ki(Q02=HmG-df*&93Fku(QSK{V1b#SF@cFI*c!qcV
zp*_5^ztiwSDa(VEtZvy=@P?-k9_=!qSS$4+%qAoLEiawl?A7k}dKYLH%wb7w%jw$c
zGuz(%1G^c1x(BED;cg_(asrWawC!HsNwh4Hsix4|)3xip@PS9$=sijtH0&K2WWE#d
z{tei?ziU+T8QK;vJlRd{`1&3?Vr$WcX~hA!fc3Gv*e4)}=k$A#0L^`HtcxDJ4$m&Z
ze{}mS{P*#0Jp7vKqL4GZOixzRgLzcN-@CBNA9iW?V7CV~(gv4k)m|9eLydTiTq!t;
zeK6pq7Jsh`uTq2W=^BC8NEEfxV~_2@asMPB4-a?K3(pdV4DG?+D6Wd(PhFHSaEF&b
z_3yff%y&?j{T)iIfFQN&!(<9jz!~Qx-EXE+=HSKS1{*#M2;FA&G48L+F>;Q5+cy5B
zUHo@C@cSXSx(9{o1^I9do5dDHHtcI^WM5)?d9soQ(?^7?zYJx4WJphyu~m)idB|g9
zW-Z?r2qA}Ecv7u~I}q!+K01S|eV%#EQxdO0BY76qS(MLD)H>gMAEpkmlZvY3<t$S`
zqjs@OPD>3zBT~p}(-lb5(}&sW556CIR9iCVOB73pA~k3C>}6N|?T4XX{PDkeLd@aK
zU;g$<)?Sb8+Sqgj3c>uNke82>a~2y!b{~MIayY9F+WXjB?5bsuLa{JaWc94Z!!R%F
zVQtAg7`b79twQ_NfWO_)hiLb6U@U+eaiVCe&Vf5}`rvzQJ$e%EhI05scR9-De2B5U
zAHR19zC3ws1-#o)2Vc!$1GHRW=YF`i&A^902_x+JgYeVIIOXqd3*(jFvf;|Z?CSsY
zvANo^84tme9eu2OBTN~9;T+W39erg@aC8qlq9@sn$v-6FajkD<MdOvv!_?6ghnm>Q
zio3tSBJYz%TgiS<rky_r+Qv5C13M|EcqK|Tm^B3RP|wsIItc3q*h!d*9X_88on$8u
z!(L=m3DHf5M+;v*!ZVm5uN?lW^}%fvRf7{#QG2x&9~A!`qAAt?8ruucCy&6NyLwQI
z81PvQ3;#Y+D+xb=J~(<qJ}On@{Wm(%Og;n#%ZKwuAl6sr!zP3wfg*M$+8&g$Wk9?K
z#lVGLXb4kXqx-ar&+2Cvu;0O<uAWK+Ak+H3eHW!|>_H>66Wcu-{__UJ4D2KDHDKj;
z(b7n5{=B=8(MMVGJ&q~iH#eY=U>{){@TtFe@ujw(wr!2TU-k^(g?8kq=RNrcQQlFD
z`?PX+cMpxypQiM^@fU7NjaEW)KFrC7=3<yLCXSn+31xE+C1LF@=0duy2R=N+R<Vw!
zzo=cCd+__L9nKtkYsHS^I0Dl~xyG*3N)f{N;2y4>eupZvV=P5<tT_0<-~)pP57NJb
z5BLr~Q1L)7N`<jw!~(O1zj+XOb{1=ASHpP&pSuz^viuD@Be1;(F0F&b!>d*zl(=~I
zidS&JQ{Kqq@R4!|gs+4T7vrBzZQbx;w9twnG6oA#tbL(7{Cx6w(wE!`xk&z&0pHF;
z`=N7e2P)9~Kf?I~ufmQnTs*LH6?+9@+BbRj^Hr3^iDK{yEWn5Jjc^?vM__jk+}k-s
z=;G<gIFK8VnlB?jpo{Dv{Av=7<-Yd5{-=*WaQxUe597>-4&*}Ooj0cBv-1ufhcBj(
zdcQbrj5rFu>k*#Q*OH@fKWK}+Cto;t@Q*JYYP@M<%GU*t=3oW2YzVH%hgyMzA4_qw
zfIF-X!yl%Mz@OW+QEc@C-Z6NbgNyIAAxFNFGYp42v@S0@c@VyngB?K_-luuVQT-g2
z^QK2D^4<)Oc4PNC>#ilNeGV)3X;VF3?@=KC#xMRw{2Pf-AozcDZ;ZFd!t({`%6QY`
zz4gW0uYGNmUa)^vI}&9Lbe4bV?vBI0d&>$SVEhrz8H4(A_%~#J;wwXsBr4!I+C?o#
zR>Hq)^S$4Hkjs-JIjrP|ZyeLb^2z1g;DD++p}Tr=AeSJ(jowiR3^bNiz~$w?y>ubF
z7|t7o**M(OdRFOJb8+XcgOpoX!1lohdr(ZUaQ!Ygr*D-AsGuGf<%Wx4RTyq3_1eg`
z{{xM$M)nQ%bvz(v^6&sRsv9l4i>FS17WMq_F;;ODXDQs#O$)3C*j%<2f<y4(Fq}Qs
zYpTF=*}3&k!Us1PspZfMVLZ#PfE%H_MgJ1qg(z-0ob(>iea|(vh@|%Wx@0ahUja@=
zp1J~@Tn{tD{qU@p4fR5QH;TwXcwvtq<%1}Uj(LVw>DV2dBX=OY9PAo{2f7R$Ui60X
zq__eeM%DA#u5!d)`EY0V&@n_t;_V-C7sVv(4fT2wRhmPU=3GvPope|ZQ;aJ1y{iAB
zEY}(3py$IZ;q@5EIsOke7e3Y{%KC>FF|3h<PgB)nSoNp7is27<v9Bwiw_tA<j?~7X
zBtqulvI955A@4AJMZWwB_oqyTsRn$fYk=;4UK@rdshKM(;3<;0s9#^Wf%PRfM&Lm(
z;76!43j65E5iIA=dx+MzX<<A=THk^%yyB^Ydw2oxbNqSlo^p5-|Nf~<M9rpi{}_b1
zF9psKPWb-r9-e-6z)O?)rGJsh+?I&^UwxJ76ZjWHasuah=Pb{=vhnDlimIg*RZ%#j
z56y(0&VHfT>rn58VR|v7!V8z0ZU@1oJ1j1xr8AQW(M_fx<Kzv^mzKcAbsH;JAX^O~
z9(o^Vd$rgb$WO;#!IZlCDwq~-Jbakt-bCvadn<Y?uEB@k>ai8C_Ex})ICl4<3G${#
z2=LE#b2kfnSseKo`TeaO?f$TT5%<F`_VYhW*KX$N6Mla~yrng+hx{#p)>f2b{#YDI
z=_}b(>EB$krKZ%su6pg(O{G<}{?e*-{+im7+EQ_M?H2!<Eu|$D9#MYGulvK%c$;50
zI-(&@Q$TOh15rcXZT3g#0UY0uKZsRElPxiS(6hN?Ln!92#o-ZUuCJ`#?yo8R=+@Gz
zwWU<qmRf&pbwz2FRZK}V63|Oi$S&5UhCnPHi!=nHSe)NT1R6r&WURsC*E@87D3ORp
zbi<PfM6iqTR474h^!Sspq#g<unPs&4lh|*+bavBQ@dV!6jQ2K#j4~tCQWi7tG!{xk
z8stkYA)_fC)SYBqTPlk1_`{KCC>Hm$gmgX781mo`-m1+Vo8rM_G(_dDi!>OXh7K$y
z=1(MJMx+IaL)Wn4>ehxpLsJN!FKut|i+8Hx#`<_N7A%#`qgJ%0jq5VA1^#96)=<nt
zmHM08a4H0nQJg!xg62?%9<SdOqN;c&u|EFO?5(V}BGjSQMI&g$n?o@@+h`Gch_Tw-
zK|M3es^RKUDWWlC_;Dcg2zFcOPLI(_R|AG&R+Yj#frNofnP|2Kx+b(c8HzO^9fBrd
zh;`H^HdBeAK#ND;?T=7L8sh#yqOk$Vrm|ux5RC-=Az~xH?nxr|V3B@3o=h}^Ov1Lg
zOqk`=eoh8YAW966+!yl1>ivOW(5j*>5;U4PdmA-4&>_7cA=q3rdwnE*Gy{4=B!YLh
z%C@Y<Ss6%#Jn?#eA{1_jnIpA@7`ZAG3T}!gLfZn-WJu5GKT=e7WphVuvK5)FD%2()
zs9fT&M``S@kHq4w{vb8oe2BLX>4qXu(9RyRbTX%NU6vu;+_5I0ha_9^qRkeDVnKCW
zT?t*dyfqYR7NaETR>Gw-)>5j>(6U&>SWA;7xP~H05oAvq{a9-hMFCQ;H54$Ez7XOg
zh70KUe@Cprr5W}_T1sMp=41&yjzVC20!3vg$f+;7hNIsSz<#4tz*!b)jdpkhAM(z&
zCUE*Tgo5-~RBwue&E`}VN>QV<w;>*D!1lHT{3M~Mp%I)i4aCUdNJ2MAgrZ#W>rL^5
zQJ)NZqHz>`enU2+HQp97N6GLPF0fAv?Ndwc`2%ve{3+fUtSZ#riX#@XS(%QBke*az
zxiZ{VPZnhG6-pUVtOw~3h=tk>p`iUufmkq#gbfCafF~9}smEu2I1z90(@z}iwV`O#
z!8NToa+@O!%~5J>JWS0_B4f3LTI#VOem&XHBzdGP7DR>#*j$4AjRpD3^qOS7;V3fc
zM|O&!Ea=46VBZ5#VvY_!NzM>yC&|7wQYzvwS?m;wr6LLJe?u}6!dgW~O=*f1`!__8
zaj`+6R%*(ofPoyUQ`e$6!8UQ_p~wXqXRJcUrdXv^C8=}RA)`7`8ILt?$NCz#@S))E
zkd7_#)FT7nK$0l3MlD6d7>zVU3}Qf!9%-d#C4p)>kUZ_%1Bn>TQ|yyuIaE!d7XOwI
z71bbuw)IGlX20Pw>x)!ANJe5t;S#?&Q%kGYs{$j`(rR@0>pKi2K`hjUv!&e=!Fh{Q
z11Df**&6@0(k(S*)m8pl-{w-Hd=0fENZh_2RTz<Qa~!J(B~0~FBS<B>i|Vxz1+M&Q
z1nMP!IF+*yETZ(XSZmVQ7>_r5Q1#+0w2I>LL9$Y{$w8(Z4-2|*@z3X+Kjbmh3G#be
zJQ1{J#3CF7Ir@_2`E;&Fv50yYnK<mXr&Q7i`;mP0p^OUbXOM6n6bk+ZqKb8O4UK<k
zELh7`l2nU<deL$eBc@z70;Uo+xVZNhEmCz#Z9Kjy5bID?3Rm(~)%gFqQbjeb3(=pg
zwd<EzZP+BRV-4wS6`Y~!)zd1qU*a7VN4&t<FKtrTLVFYG3xs#oNX`}<`1R3%3MrDU
zC`<79vTFbOvdU6_Ycwe_iiKV?!DJ=MLH<llE#lZs9Ke)r!)GT{Obc-;<D3&9fZsF0
zGY7voWU*w6KTO))n#?4Y+EIbk&=gk&b!|K*cr~7o6NbhU`?@|F4;blm5Xf1%&=T0i
z8I<J1mO!jAR7NUGsB(d*;v9GKj?$Q6H`i9LE34Wd8g4>fd>B<wP{q{_5n|U!B{?An
z@2EeRq{nd>P}Vn~auVvwA8%;zgoSuSNY~J8%`*~rQfx-ZGBAv&*;AY)BqUsrH7BST
z0Uc?M^yYG*H4&oQ_-;^&Fh$PGCbcB7MfD*|?U^Ip5l)aA;;K|9=Aqe%Bq6Q828C8h
zA`$42LQK9H3!xsOX-Jb)f@##hXkK7F!AL5?F{)tcY7=Wqh=vmg35JwOCK3c_#ZUy}
z4apXPNS(iV!6rU%00@bWbPpa9k&td(MmR~x1NC-1nzD#Cj$+~va6%}wI2h5%ShNOF
zvG|1KL3WOXxVYYeW*8zEl~uBuOnhpm$xy%4)70pec#t%OKP=S%@g+hZKM5fZ>W}&;
z@{u`QS@qN+s=~iSTAh9lU;GnI@}lK_Bp=~6zckU@UJ=DFb$dK!A{PgOCLM*Go1Mkm
z1i<u1Oi8sc6SX5*I94Jkgwx81w_41MxBLyL#tgRsT`VpqW39YhVhGG3ZEFf8NU32%
zR6&E{sLeFM6m3It$G;wtn^Ue;E?g|n^iVWxNuR<cYf5bal+H0F^*F93$JqL&aE-6F
z)L&6nwN3?tY1%`@_nha2<r|2_;sOimvbyS;bd$D(%LcPU{;K#^9RC^=PwOIy5Xt2Z
zi#9Dtf3(%e2f?u%^<GZy^v;;QpsQ;VRQTqIX+(*6SQSUSB}ykgM<FQY0Eyvt`KF1|
z%z5oEvf6@;jx<<Po;p&4(kqbQ*0J^cBGsTalpBjl#mFh;kWVebKM^6_5{XGV^FQ{>
zONB(DcA~sZL>ihJq`hi;64oN(ULT2ZbRFa_I05e4P=E@Cs4dxGc?>u(MJ6Wo#mCDd
zB(E;phUzpCvV=@iBpTd|&@rS-s3Q14%v{yj6GMmsPYmxwJ`=y6iyFU0G*iBeW3Sq8
zFXtW?Q`D|Csq0@K(9uARMm-IFf!q+L2up}GE1D-wggI-J@u8;MQi6z`2+?Q+Lv9wh
z4Newtt64fIgxZtnI2F-N#4QKXh{v&Ou?_-<7ErSkXcjqbYBUv>xKmSB&pnDJLPFJN
zkSWNYHL+>X941ruW!|tP%OXORLNTHML(xa2a*=4w3{iy~G@R14iDamTgRFFa7atZy
zyISTuX9T1^Ibd|0mlny=I7&`%!fe<M+hE}OG)?c<aF+lIPXUqn9N1K{c{9pF2~Sn{
zNjxC6yCU{ToC-!a{Z|cK#u2K)ey7YaL0;h+(jPa)6Za@J7*eXrrZvR<ZD`^pLSgPE
zmAu6#tBdL6-xf;LBLq+oI7e90fQi~7hP!IzyhGc*6aTgaum`*SIs!$N)ujnzBs$D#
zYIJg0ky(Ddn@*EjxK$X5{z6mDbE_83XtLc9g|~3*P$mag0LN@hQ5{3jXUknv^C=b%
zGKT6+@UN3_%~Fo)D9NYD`D$6rf^{~d3_#9V7ef5nz$Kq0^O4wf>q^&dDP2!emdigW
zqJyEdNw-in#YMqegh$yd4e7VcX(neGWgBCw9GhX*aZb$Y&^M=`uwNzbi9aShLY;wJ
z7nlBR#l+*v(40Tw*R}|n0bJDBulTu-#Pp-nu$qu#Sr*skwm>3n7S<;XX|V)w-ZYUP
zN{$>+9Btr0BY6_T;ZP#Y1C{PBqG=~xMcBNUupUszqlhK%KX!W}hlELQ{!8%~ikVF!
zNK{8dibBXwhxKHtl(tI{u|A$?3D{!I#7w2TlhhWQx+ZUspE}0d+YpLIivkvpr!iE7
z+#{x^&J%An0?KSKS)DV6oU$Qo3`e5eb<Abkn#$_66=@Pq=zCRNb6nyNIlMr!KYq(f
zsR^V)((&WKTM`6R#^cS&)^uQ(iE&#3WMSwYg;L~Y>Y(}6K&l|KVTOl$iOH8^8*pN?
zMwK(h;VMh6Y(bo4`t?norKVINt2$leA}hhu7>SBT@c0E@2rDM4pm9l+Poc1{vee<X
z<yNwuY*FKRVpPbdBcpjJ$P{;fHsNowsdP2hk85Ww^OG|{w%as?R9Lt*R+}J40MeYG
zpbC`;DQ%A!O%=in)Kv;2^iB6ciQy6`LpPy=`O}>7I1RG^8L5dV)*-Z!Lufku8@%$R
zj$g}!J08U;X(@%c(v>85U66MIyjHY?M7MNg!~}MCXrnTn;ERXMu|T4OJ9C7%;AmfZ
zoXqx@AgpXcGdt3txbTQaYSxximTZwMLQX`d{~p_bQmZxFcuI{*Y(lO}=}vbD)s*Fi
zqLB@)!O<1`oY_#Pl|gz;kH!thKoecDC}A^a5yZA*ipK~|2*w{Y)dy;Lo#GfAr3g0*
z%F|$WS!c(>X=2+GNOl~5`i&Nj5`1<34b|1_tZqkIL`$r9L_unFiadXYzeM+E`2Bd;
zJ)yE%W#K|A_AH^ekqFR8jjyO<(jInH$&GTg&Uz6Yb0}Je^D?XEQGg3qzd<Y1A^M^E
z1r&WC!U{%!qH!&9v=I>ngCaJlAT85IOi+W@snG{r7CWIzT#M7DRP_O5fomuWu`!A@
z%)`XNWDByK5GwY-bIwzW+d|+>4-q${>lp4Y7hNWKCWF|7wu2!v;%l~syaR$Fd|H-n
zDpQjx#Moi^TSB@KPlU>1szoTnbOc(hkbxPtcDORrU~yrV(5zWNZJ<##i^W(fFx+mX
zGtysHTe`{7Xh-@0_X=>AKufDg#1OoliO!NSJ<^EiDG!Gxp&~j#xJ1ZECSv~3ZW9e;
z1L(nB_3aB621s6@{0b$E4)JnJtB~!<dc7eLX*H!pnO<Ufb>vXW@Zeffm9nO_mVw0M
z%A6z;eQXJ($VEZnKt;p}=9J+Yr(fOq)8NKGkJuTua29zqtvq+7KES>I)Yz@DdO{SH
zq;;Jh_Xdg~+PNfEp|)x@or4E-kUBi(QYKuh3bs(ZlnN)CCLY=U*iq?G715|bW2TAj
zyl4xyiE;&O&9{hnGiE1q@cfzp1wz^*G+-kBDI5-ntBKdS|HO_Ig{}FVrW0gl04dE-
zJKDVDCqTnY3^Ey0Qs_+J^Ke8A^;j!TAH%LwHl4evgt+DNt0WdwVw2pAZ%<Pb+}&bN
zF9FH2&94?N@znP`mLFWPkjGKql49$*0bUbI%f%2bLuWpfNCn6Ul~9zMIK0q0E23Fu
z&#*8ygG<4NXeeOEQ+b?6_zE*3P9jalCR8w#7Pml6{?TM4B=or79C(p{AyEPM^EO7~
z^<?ny7`n$1?FgYpYHf+@hGk4xo}|p21;xHicQ~Z6aXe|L7ScqX#Uj7OVSXMfU$V%G
zmDhCW*lf=9QvPt~y)A{%$g8zv1GxpHS6~7(BZJ6sf81#SbDiY~M%Y*<4M0$6&Eh!Q
z{&ASW4bix6WgfVDM++BcMo6$LlnNyXuukNtmBt$4L0e6wxS&bvL54yOqv0U!Z&i=1
z5rEaS8tggh;r5BnkuZr}yFOdL)>yqXQDtRBcg!DC6ts|8O{`?KS^Sl0GhvaHNDd5a
zg^6`-X)c_?gcA(^x@1dBhY$^@6xNk)@t1DdQoV%`MW9trnrT|X<ftqut8yZHhyBV!
zy2zxe_{f~sWXU8#p%lJE<AF+tBk54EhEiqu#IqFdM#>_YKxAe@Q+Xwg;{pj`9Lp@1
zEtZ3uQejBwWy?WbTU}KvqxohYYKB!?y~STvwGN-EEUl?=WRqIfm}PyCZwmhpBpSJ2
zoSeM^Tbe9WlpcI?oo$@zF0;Vad4(cyZ6>vq*^z6G_BeuCXX;>wRWwnM-R}q_;5hP{
zLP0E1$vQ+SqZ?+*pcRKe=pj?$q%EKrc1mJ{GNv+XIN@n-Q<6MVPE?>vZ7gB2f(FeQ
zq6Vc>5=J@ZdbU&mC0toq<R-%{zp|Q}qQYHzAU#YjBxa0rq-}0GpqEP=w1%7r>Dd}F
zEA3L|y^8KiK|)EHI$4k*a!Of&kqJ=KGCTcrJTDB-&C+8L)RX4$SH+Dos*RjdW|TF7
zJ;BimdT<bNI!I8mt)y~msdUwuNkHNklG$`Z*p?J=22P*GM1b@~DlXjEB12K26k*QU
zebqCrC~h(ZJaNt^mcl6#=Gm25^Ea9&4vW}ffVAwQ=1kCG51Gt}QM{RoI1$daEcSvY
zVVK^PY&l3G$Ro`T;eKo(Z=ni4%3?gAYD6eW!1Utj<j2+h3)&aj7*s@ol_rZ2wb?hG
zU0H;aG^m@AW0A#T+q~2Pl<OsAx7HJeGlT*l#n2gVsgHzsa*Rhvn&vhNzj;#Jgd&%z
z?U1rX1!Zo#I1=0u(h`woYjwo3PO(L_tV1vzS=NcT0|1(RwKD=ZMrsh|SUk!zVs(=1
z*mAqMCJxPLqDUArE$(>2bj%Bvc!V+xb|*<8tD(?(G}<McwUZqxOVhHgC?cttN^bHA
zTVGRJivVE#TI3Xh+oqf}eK;+lmWEb|6C?l-6BLOR<o@)8?NnMImp|~7C36V`VbEoM
z+k?klz%&(b4jIY>=fa+cd9YgBLX|X8Y!I$4(}Ow|8n8oe{EvWWmB=K~G*6=HEhK+8
z0y`@Wrf_Mx!+|^jMJ1$w_!<X7Fp@WviH^|5mO^B-xn{K5+T2V8;1p>zDIzDW2shYs
z(3IRbZiJ9(LJbKL(x!Bv=_@_j0)3*L!Uc<-CTiL(&fq>!oPf=3@mRFOUcn$aqo!;}
zsT#JXr3XAo0Nb8IX`W$d@kCz1q?uWMJl~r*UO1txyfYeb6YgaR3n*&XJq5rr6@;}+
zA^lJk;SP^LSuT7&FLaL_d!83gT`j8;W)9*MJ&+0s|FiAVc8X#pUwShUr6d^4#w}HG
zJFe^QnkW)5EoQp~D+_V9Bsyfu2KOa#PB!DKHe{4uKh7!0=aFy(M<jt33+Ex})ry7E
ze4Mr)-z<k?!<b^Tq&p1ExQ|fR0^jOIB%z!h%?X!&S&dNo%jdndvdY0was<bNA4~ps
z$#ZBLqCmli5SS~#Hzm^At?r0acVv0wOf%tK=HJ_rNsZGiB8z5Ss6N@4p040u;xNDD
z1R?upZB3zdD;aB!#oJ;^I`%(h1tc7pF{Q>@0zo^2OBeyI9Xz#BE_^TtzeJ~GUB}v~
z$|7>T1R7K&$>F=zTvdjcnnE%5H+P@~V5J9Bu%?4+poxr@g{tqu;p`=k=w`!)8xupd
z^hz=l7i7jf8pE}UKUAdeSf2E)F``#+eIyiBbCVOcU%=C<#wmCRoc|UJ*d$g|u{t-+
zd7H$lhmbQthbO^{WpCA$>q^%-?QW9*N)m|bREr_Ug-pMOnlvfmGZLQ%%)lde`|4Z-
zNkA?aN31K`Qo6RbY+GsCsz_lBdQ9aWq9q@VvBrQS@SDC|uXc;iVH8&uE|x169PC@U
z#Ca9x2#)+VYsmOw3<nVN7cN$(nu|ZtCcR4tNmjo&%QA}0umizY<dLel<*PAiOeZwS
z^hAS<Ec$6NjD-Q*lbxK@&FleBes)SDshrkstlr`nBGn75<kOprxlCy%DsmXWnYljh
zA)Odc5Hr12-0MsD-(LM^CgzCvfuFC*GO4JVAAV~9O`-3&yVUV(*+ficP9Zzig;=HC
z%8uO<5~~%RxvrIkh1v7_#6l8VM9ZZg7Vj;h(h=$g$OEBVUt-aql~Ud%4>iPzH4p-k
zpHzk^E#oPDMX+l>*OzUnsdY@LY)(frFhJ5QxH%yb)x=T_fu==%6RKpDzUhf|uApV%
zf^3-=&S{ouY*@ftL<j^hS8_qK2cQ+~$1`n2#1!Q|0?CFzQdbgzYpls>VHg2l>;=OL
zU2Pr_%h5K;r5yI^%aR&0))j%{?rdA=KykW^z#~2~D5HWyS}DMsF+FU%yx5{!>1W|+
zK=E_ww!K)nG{XgDBegW!Uv!OjL9na_S()P3wL`Av%&91~`O0jXWF0d@*%_7hFH=Ux
zj26<1Xou)&3319AjtK}_n3f+MiP3UgN1mxAGabOK#bTpzVW7E0qwt?xqfxk&9#a!6
z&FIs(KIwWih8rBs))AH?kmM4z0U;H~ys8fce^6dfXIyyd{brtm&AFzd-X^;mTNA|J
zoQSt~WaKlp1X@jfWiJnNI*#n6X_RQFWX4hkO5BQfiip>EOM4o!Y8(n;a-R>S)A8&$
zbpgM>f-o?5{qt54Gpf4H4!){u7j^ZAp~%DSYd0cn;vRLh*&`wenP(32Ifd_tnZ_4|
z>4rymfX%tKXsMzV!hr~(fp92*Hr0gkv2dAVJ-M<D*PQjd*Xu&jGCLj4bW~@q;F-{>
z;$lZ27H8tEnVYDmW&F#W6mw|P7us>2vJ-NJ_zolSk#!9x2(VLaTjGh3pDzK>ouRRs
zXxtcgGA`!UggqCtZqPy4SMfuTTs0TJ$q9*u7Wr^YY!h)VESDq@j9WuYpwQm%FDL(t
zTpj6A@&ujsXqw~Dxga*uk|o2vIopl}3S`Y(p=Udqr4wItic;L|KG7=p4DKZFMG=xw
zH-eNS>k)q)R4|-jgY>|oy5dnd;4O<uh88^{cxbDT8q^w<rT&j@t**^(s-)zS50qtm
z>j{5b6IzmbD;4I~X<q>qUh{oVB+91zOulo8s7T%Z!}M(P<Q1F?8NLyzd1!U4z0ZK@
z-3eK%WwG1qLnynPDNxN5d&S8+%(d#afWtYQ-AN%i+^KBLD3nl|***VuA~TPIMm^l+
zB9fV~4SXH0Iv8t9s;VpnVY$}`##jl26beMfLRM2nk_#MA9X>YONVmO`0+g9RWQ}Q6
zoSU7|Xrxt-=q9aPtSYBcqts_n8nSX+2`^9RGtY?EnjI4O*+x0(8+-6Y(gE9HntePM
znO-DP8KflRtp@(jHyUt+tQ<i~>#E`hlJ#3VM(`XHYY&|W&nq)g6_Sz`3n~t#ROa#}
zSt3r-ZDL86wMsx~Sf;6$b)jau6_SlBL@?L%>p2p0H`4M>qovi(;}&Kd8c5<Ti;u*p
zI->W25H$Pc0E=LcwZn<wfG3s9Ete^8^!6=fwbndP-Ph&=n@TrTqX{J*;BLKokE$PS
zjGD6jDHK{(Yjp(xOA>)LHO1FT;I^w!V@T#$I)JrEbmpPWJS%@OqWIG@G_(m^iZZMO
zv9O>K@ez-$MQnshvXb)F{YA^i1-6PACihoZXlDgFd@^K3nl^#E!L-=Q$TM5LEYk?L
z#EY3&?QFqv>s`x(V|kKPOenp`e8rtiQY$6JU~Y$^uHoknIuXh=heZTLTKF<~4^Bss
zuSjWve3_f8vs@K2X3-f-w<dCk7G}4!9paOM4J6B}voD4rRV=dB#C(z)cc77hB2|Tb
z7B4I;%(${JWA%hRJ<^b)`g@!tEz81FQ};7sxd=M+COLwL&UFqy5oz(o-f48GQPl{J
z5>I@y;nX<$@3c`~uo9xo*!*G(UnXNGv(VcjNYo;e5I1-1h_pIqg1X$>Ol~mOUApK$
z|5_@Henje%M&{~}^bN(#9kn(q@d)W)mbYyC-LW{%>RXbdf8Hq+$F>AjU1_4xSzHay
zBq_6gS%baRTHI4_r7!ZyX2v+3i6YWo6+qKo)5fC@Jl>5eR^2~GsE?$*#5>(-?Zl0l
z3tu@&|JkslJ0~x7_lC7nM3v-;nJQ}TF~NPo!ld>~#|1eEJ@kNcbr!+A5cg;VEr}(!
zw@9<{()P|$_qDU~uQ<<I8YF!gzsNL}h?I9z*c}un^=Dq;CUZ-|Hu8BqHQAsS(E+7$
zSxxm?zv`hh*AQCNCx9d^SGPD$Rs@#jA8NKXV=y}XLERu1in&||d#ohnQe3-@Z+cN}
z$JNbnmY9`RN@_HoB^H|IidB~=Z0^`D3_w5kzc_>e?MRiLOJwC~Wrd4+8X%A!RVCoV
zp(E!ZYOW(kBYl0hZl{Dv!^J79c>Mw}PT+KqD-h!9dT(AJ7j%xj2Wej+Y%$+XE8CJu
zLoB{PQR>*JEsI<fRI`VtME6Hxswu7p_p*h%4VepPi$jZNtu?t;Vd?U>W?R`h+iH`l
z(OmFo`TBV@azaPqVuFSugHuhRRa9QsudWf|OFk9ek&AK3Xtfg*tlS?7e~K2l=bNXm
zEtW~ud<za`dn58S*p8TNOKTBUn~{nvOLsD7heci`JYeA<H&Y|sUegQJtOMF~jPLg(
zNl{r=QX^Z(?FU+$EcUJuf+uO`6rw~V(HL@gdmJl5&E4OujY{qPnH&rxGLc*@&P)>;
zOEX1}b5B+^n@pLCPHEpPSw`*wr7X!#-^I_F^gn)F$r(Sh>D}CBZj?yG5PP<%b37x%
zU+kfleUrBA?!Sd<0x3~|z)YYqwAPWPYHBOF0xl4VdQ4BhveAe+JGo>L=s%FcXC*aN
z4Q#D$QMIr&HG&dFO<?FPa&A-AtlCK~`6>dnSiT_CpmvI*xw{m({5+8uWz2R6PHu4K
z%Vb;A*-RLSXWK0-GI#Pq`p~KX(-&_$2od`GRhb}?zVROlu^53N(((@N;B*aeO+~_*
z65WJlOT?8D+ss=cwdz=Qx+pDQMW%@Hm5b@3+4e%GSxY#`={f6J(q~9{=V3qVU87CT
z0a5nxFvC}(H6jt!4#-)%%F6vGEo>nM3dJdf2!w~jk>Kr~k($Ovm5ZrHVdbV<S8{Ht
zpe@@5Uyj6r>>Xdk?OdhXq*%z2TH5X|&D8iHxlAJs&cKGBuThikSh=Kw$5S^sgjh=5
z=P2b@wwZL#lv8tql=fv?fsvVV(rlpv92j!blaJo9mzzwIbxjWuYY}2fkibN>i|myf
zPMuNXgnMQ-fcTXq)m5fZm>W?=x#YJsY;9WTFZ-}A&t{EeTjAn}6C((t{7;3YT8;GB
zrsOHgVQ^p<>0coawZo6%T>okAm6URw4{00gn2gz|?k;J`S!HQ?YlmPUKL2E9MMK;#
zlW}z=8@DwOp@p((h?>tO{<0dsab~v4twU`6;N~&UbTEs$#xry>l4$L8NX2jJ*l&9x
zm|3Xo&6TAm$`<8zT!8SgTy-p_vy7y1Ij;`5wcg8V(71%eEm6eH6)b!`>R-M`usPRE
z*`Q{-ilH?(R1l$5`lNz79UUR*ve+8A->p<ca*ysR+wYp9ovv+DNL)127qdEDQqsL|
zIuQje6cJ)MPPkz$R7oTjj;DbQ>3`$rjvWA$Rs9hema(!ZoNg^Cpyir<+S^!e^KUNK
zqvR{vR;V>SqLXE-5XwvAuZzzUm~$*G8{cw#<D3Zb=%j9Yznpuus#|bP;QC#fz72`G
zHLhx4h>t&1Z`xd4qpVI8iCnThrQ`S-ts0kF-gq(|$!oyf?l@*7@Wo!S>A+aowMGR&
zj^I4yjn{~6q|;5#?CVnGrojr?6dYp(lwCED;kS2IFS5=ST4#%_v&Hs8tc+a<<ReS1
zvt{z(EE|Inb48<>HnS11l1oc;ZfclB63#>wn5AtU!A%t!mue200#RiL9%060Y+_Nn
zo^R!tncBbu%eHjq>%R>vPkWr8tUn8))tdrJ4_j6I#M3!rEi~_&#JW^<bqpGFF1nzm
zY}4k-Qilad0?3+H3LeL@L@AXNxGJf1M$#!-(GszjMW^SDn()`&9fI%d8c6Vsp+jPe
zF2#T?Q*yJ#{ttYVlwl`&l0b<CBQ2f{Ra^7c7B0<OmcKB+Ft2Dq;qnCw3k&lu*%Auo
zZ44OV`uv5L=FM+0lCjXLMiIuxpMgX})2jAmOXe?GlsCUIZ+`W{y!l~jS_=PeE?cV%
zrZbO=*2gy4Yk=KTZI;-HSrU9ziCnjA2}&ZRm^V%ctbb;2N$EE?;#M{OQUWMjL?Txz
z#J6^I*l`}Q^et#7FNo3Psoe-o5bHZv+e}~|6fVgI>J)cuwmoaOoRqm{YI+BcsIB9M
zkvaFoZQccY3wOD&WMe>IZ>2p+)oOmHhR1;#luzL}J?^}_=Csb(q_iqt(I#M*5*iJ9
z%q?pZExae`dnsgxre@k5EpbTvQ@d5zA)Y|6Q2bda{wxxI7Aw5zwmYFSNx^<zv1cla
zGQ+Xf%17?Gu-LZE)eC0B$<_{uAEfx*5lX~~Bg^!76qzH)O)jZicPHaKuHpD#1NXgJ
z-!~vqSBu;uasjscO@0((mTe9>Q)R}Xurs<ZBL7HR;dRq#skXHtp_E%5R6wanJSo2l
zgR?}Z1RVZVkG25EsI+PZbzfce=F%#^{Jm)6wpgq33i#E0Yp<ZiE{;-naghG$CaDpX
zJz7h}2RnG2H{I)&7DG@CRl<;nM4H<SC5=+<YSJ9)_-B20jx}18=&0;Epr+-OiS1r!
zr?E99rsYbC0fmARXyRWzvG{$W52Ij3g>)$LC<)!R$!jj<Z)r7^IS<25JbvnWqm;?m
zmg&Ox*046Z$ufURH*K!<W%0x|r%P4I`6S~6r8aQjUL{<hGJm}!7!)^!UJkUYOl&P#
zqjIqHWUFZhM?_|UotDT^D1X)YQ3t{BJV}ELRy{4n-?0%Vjp7EmC5@8j(k}2R7ZK|s
zjS=CwomkH-;L!lS!I;cDLZvA-V^o7tu24H|+kU<yy|PiA(n9h1AVD~~XMci3h@Lex
zEv;2G4x7*1;Yd8lcQ`0%Z4HUdM$KTWg%LxfqR4OK?+jU?%4T)3gJUtRvbkE^g<h)r
z%=Vt~28(@y5+R`t$yhApNBRAa%BqYn*_k_hDrwr3mCQf%WNi_x`c@ZOUC6QlisQp&
zezaCQqLIcX+SJ@$(V8VyCEaO(m8%K1Q3~S~X2}${QWGhXiL`4H@oICuI;k{sBhfT#
z+uplNa%r05*L8WDp5{gqyAX(v8YSd1BOdlu{E#APHJg7qi%my!ooA=2&${oA=s@Be
z$BIOEeYewIX*NG-m*L7y>teH5F`6zuL?WHLO`}ZWBFjtVGF|Ow(-&M?OJ8c667e?0
zk+61)#k)Kcm6p6W@(n-aavmisF}q(fE#b#Bg8Wt^`PU>U$2{#D0FFI?1*II$C^GEj
z_=_8AEZDNi8`7dlsO3!CT6NT<0!TV?r>o!o5Z1k#hM0l3oqckAN5%1>mMpuMr0?uX
zMq}Apw-r5>ff@}sd|_&IEGvY`vKU+BTsbzEGZ%?PL<$jYfg!FTJp!hQC7p!IXX$vV
zgiHu<EW9FQqU^-X?R4D+8!e86U=neTR1Gc}s_7dfev2U}Wr+e^@&i{B8i<SRfIDqm
zpnlXw`Vdrqg@3WNi57u)-9s5-<m+;HeA80wGR=HZBBE^n0_EIv-w5kaz&vgMQL<B(
z^eTIa8sEbJb(l_j-$`{ZC6ma7w7<V6e-{dZJHLaMmOxoZIh-XmYs<<U3$?~ya?aOs
zN>iBpEYjPl7P~C%_i|HpY+d8BRDhPshT4OKRCL-KCV?ml2iK8kZt6d|dz(We$h{L4
zUxxXyOFQvZZvL8S#flU<HK&m_Kjra5esE;p+RL|s$fwqa;LL=?bVY0ncYMt>Ivu^^
zz&!oyVCv^h)23Q;gzpO>oo`!Z+XPCo6OhQjCOMXoh$KHin|1d9!6vrlAwFRlm?(m}
zh)1&0meQGt9?CASXcu6;Iwi6hZM2t=A|%tlI+DtWfmAL~N|xJ}XC|oF#B;D<QDNHe
zqO{)&JqF*>jM82dG;doz97j6eu@)!G%@M@3wu479sZ_Oa#drJ~411pj;zcwlYSVU=
zs9bIp&b>%2a`$TCnzMGM=fHIf4qLn>(#h3{qK5@2%k~j0xpTP{UNIC+n8j1W7vWGC
z+~G-RcCG`l60>;L9PR#JuOqt~AvHHgUAKc8xIP|81o`eGiDavcr63KG4$*Gro2N;*
zg++EOqE*=$A}x+13<T>VB#Ah!V55a<C~HLQRb-s=$!znJs<|R9JXu73sVWe4CMA>G
z#ma9mch%-=D~T%%GyZ0xl?nA#k^0F$S!`xHmqXSe^Tc#&hqWnr_Ps8}eeMNahj3^+
zaV@ERy2be>?2qu6h&nSZzhQ*z6mzfBY+rVBeB?S3^e<Q#B*mSUy<|Gx=%d;EbC@ma
z5@!|rD}aw&!G&&*ICDeNawy3xq%TK>S`+qyC;{S>&?n!~-pM%pLk*PKRe;F5pf%Du
zKM~qJpX`_5{GwnYzI=ILVtid#C=6<|^O7o}LiJk`F`i<gY*Xi)YZ;#wuxvkf-%{pQ
z0cI=I%}Z=Yh_#!8V~>ES_*R*@q+Q}fHGsfB_PB`~obhPTOktAWK$H7~q&rB>y&hBz
zAds1mX%p?$+MKCi<$85BMNKY+;-M${P$}PC8*P01D@$UrPulmt9f?Oy(=7YW20F^Y
zNV{q8S>76zNR+S@4YkX5@wHrP>bv#LC{c~@wZw69S$jaK2@m}1%X&mvQzoLdR$h`N
z!Oa*Ct$7WZQZU`=VrzV{fl6F?EN#kU*gZB%a^~Yoqtzj%#HTdUSt0YYq?|gjP#R6r
zK?{%D3R!7>v_!1uE)t)B;|mDNN=r-a%v~ut<p5e4Nj7TQ5(<yAmeUSlFHrYZB_|*b
zhnghT?3TDD9DI_%VbdF8XGK|lURo+51K!Gx_x8rg8TP80#h9KzZ6$)z=a?-bD<3|t
zRbBeD|5&EF$^5d+8haaJcS<cA?_-tR@@;YK10oIE%<o-fOB%NQq7{*t%O^L)MMtQY
z$I|42@My%jq}y@}Z0@K@rfvM_NE>P9A1x$tRT&DTLe5~IbLzN!RAQ}jmU1r)g>d+;
z@yZq;>1&sik3orXr5Mn<2z_(U{urd#(=EW2AXn`XA@sP<*i4(D(zAXk)!vO>y1Xra
zIER8XL+j+0dD(Kr$)Zz2;#?19b!ON(hmMsYrrlU%e}vj^uLqjYuaTC~Z-2&xqRQOH
zRDnv?t*V{vSSq2P0)17dq0~Hf#wf~XJy}oK(r$w@b&y9^#de;kHd3Le+9GRpvk=D-
zU0K3zF>1yd;<c6Z1#`##?O9eFSqVtymQCg!A!yVm0-nrI>*7?AORxpyoO?ghmd|p9
z6L(NLR;+O9I==hpa35K5Cc9HSC~vBBVvV(OgMZGp*miSQ%gmG^)3UIV;O$SFS_X#o
zjbIAl%LVDGPPB6btqt>ycq{jb+FuJb2Q>Xtf*DDC&aDwsY5QAc{qnRm?WDr4G1q*g
zeQ;Y59uCiqWAiVuBerUMs2hh{UmR6D80v}{PnfTOQohxgJqp74jQwR$9MAU$jIy{B
zT!I7*PH@)%!QI_8I0T0c?u6iryF-FIizm2~pbG?dcewNY{a@Vs;#NIR6;(U*_MG!M
z+NZmBdZu`um8m+vf3hJP#h6o8M>_Z*u9#sLz1MssWfC`2=6N`a{(~Rg<A}v!%|uGw
zE30!$;v&4+e`TMuUb*<HnT)c&n*ypQv3SL!UL0~~6pB^B)y;8WG;i&aU+7GqT^w(%
zTvu*wd;Yilp-U*mORkeTVNfgLxU%ea(<$YTiw!BW^KW{^G<Ks_JHhq78QjJeG2xV-
z*u08;xck{ddLp<Qed{sYQUOw8G!6gmH5|GdMe!Q=;#D=i%RhKW&6nJ9MMM9EDHSo&
zk|dL^5taxoTryiP8@9+xsmX>6EB*A|iETlmpw`tgMeBZBg1LnD>RBv##2e-@c)rj1
zQ^CY{Rfoi?8>O&4I(Qp};9eKMx?%(i+pwo3_?Oi4QuOGTcHCSwB{o!9jdI!_YX^{e
zA#t|+&(Q-@m<!8NwaKQLDzRL+xp#9Q@6QpR4Xc_$9rGG%PU|^D?2kX_HY{;6X<n5C
z{|1*@^JKxLQK_gWSF<S*p&}nEvuu_dVzG?$hiV)n3u1@C?_hY$n(UqfFBel4>OX&}
z^`YC5zm&FOVX#Zxut#fZ9MGK5{yK-@=-S{3MsXDZo%}=9vlr!ZGOT`o<Fck<V0d_0
zw{FnXoc87B${(HPJjAXzx2%6J8hLGkH9k2L^Xr0K5JHoRYEcqx<F}jIrjAh0u<uRM
z>)}ns1ncf!3G$~jGBsv$_Ffaa_`fDs3f&C*`<aorejJook)Ym;;6jBj42h{noe^D~
z&A(A93V9b&2rf?=4^%|djT<$iGbe~=aQNVm%jpnBwwM<kt-6Jmr&y?NM8h8T+SM}I
zQh8EwkZUtQclz2HRNPZ`(lXJ#Ab5)zuQ^RkP2udhOX0kk6?jlA$n7<suOuq=Ft9Xv
zxw&z(hd24_1UD%mZ|q~}6@T%d(3+VFF;SH8U)&O&D{H=I+`2uSBg(|LULRw9J`7@W
zxH0E89!&?=N%~)7OzPj98ZOpx<Tb?o3p_y9a-XU<O%!XeQ57;9k@q+_SkWJ~tcY;!
zjF<8pJS>qLV+c9Q<0e%es0h35l8c_kE;<sC^`jGOv<;Pd^O@x7=WL?j{(xRDIaSal
z^UD{f5RUH<LfTv*!OwD=E@ENG%lM_s-4V;f(+v4|L@q3>d_Om%g=mGQYiyluO}p7l
zh+@>G??rd#@X>pr0b^tD4o<4RZ8l0osu|&Q`0Op7w0;eu=JM9Ki!>6M$xc=g^?mRh
zE73xXB{oaPY`XJvw^EyRDasaRKkIIdf-SuJ$jHk%vzA%XPfR)JFjmbqR@g;7_OLez
zm+Ly?RwldC(mKL<URiWF@_Ud%?c7P3wVB=oc|NH9N`QRKcAl{GvGD_Hk&?P{Kg1F-
zMsT}2XlZzAL0!b^A1iRIecyIblI2fkU8tPVQ-hDpTU)oP(Mg7<eL3MBKV*@r1Pl&?
z-wIvw8*bH>Hp=V^rJFQu*OjHjq9v7W)xTs#%j`Oor|a1e1qDTo;3&AezK@)AV`5FN
zwEr5%97@4Y5brjV(WDfUM@+Sp<*{}hB*UCMVZO2$%H<Kv_>_8(QD|VQ-<;;OM&E(#
zobg~hM;v*R=89aYQ#vRq9B{hR0#V0=yc#(A?5E!q)uVZPKw8k~Ft1*UtM7Jw5<VeE
zU>fUC_g)DSedHHqQbskj7z;bT#%bu68F1576|k>Qy3oTaXSBpjt7@p3rkVU!W1dOq
zXy?=LUKOHvk1e{IMXVoTN>3|gspsi8dRozSR7`7P{nWdDG{8CVPPhNmySj&7r<y2<
z!=GZ&fFV`kbK8T#T(sYe4mUSz*xo_2K*JsX{;DrckxVmX^wid7I{y{Qx=re+L@?tg
z0%^<G@z=if)-P^TKg1MdwmBGbO4%Cvkk;hQIm1mUQDz71?y%EFHhMiN^o|lglAc=g
zZ6IlEtcA0ne&jyL-NO&x#4260;wO*T4Azt55Vcsxk+!D&PFAF8$`;Ad$vUwT>)2wk
zh5GYto~2TYzV;IxTJt%{Rz`9{X3$V(vL!x_Viwse+Fh)5flSJy3ZW<GcV|7G2C)(S
zs@*8rwmvOuOBO%-ZMn|c!FJ3Xdw0Ft21(P(ihic~C(GhO&Z0YAv6$-;l2eO%a<96r
zY6IpDf2HsL4BqD!{;{IF3P{^)=!X|_z9=@+a6KZuxLM7A6JC`{H$yi$$x1?9s3JYV
zxW&o3Ht<!IKi|_xP0yn*nWcGsNRRB6_oXEH^7<}0*7kkpzqAS#SyS~Z@iPZJf1`S1
zXoSbi?`ezhhp5eJKAix1#~$;AsS@1x)6(609_Mp@oMU(7>y>6d6H|{*z7d)DxIJA7
zHk2~>9R6mt?=l<o&&`nivZeo}T<3ily84P+*-O1rp5=pvdqk-aaht^rWa+og{@%t?
zIjcn%fwfG<2vcQG3mt^QIW3z`j2at<A4So3J!*RlXT#7oB*U*Sr9#Hvrbqhx>YvF*
zbn{lB2UEkfbknaS{P{n5v)B#rF0lzv;d|Dgj=M+GlNRP_xI3O`F7V_xMx;BY2Druc
z^)Jzhm1K~Or7H>=1_iOGiRXWgH$fanQ;VOuja)w9o{8d>tY7xAA3S{3!EGNociHk>
z+p$*T;w&S&!~H&9DHCR5Hc#A%8qSlt`33coSz-OhMwb?O6=9taXG6(I86i^edX#nO
zyEQ%Cr)LWayxA7g)<f}LWl*kUA)2k=-AAJPuRm_tq=gic@uE)|PiL1N8|zX(H`sLO
zl|R3ry{c3o<+e$_XnTWA@33MXU5!_GV|4Mu^k-+;&zlG7r)%@lYu~XK)l}|YR^pds
z;8sv-2+=I2B}A2w>TsCyrf3s6gkm@KE@H+sS2~?H@v@+CrzEIBt_>R2<ZNlSO^Bs~
z2vS^_C~Opx66T6AwBtDgm@hvYRO1S_uD`nmPbQb+x*pjKu3PXUE<(nmQCq!i<-=HJ
zGo!%X15vKeIQXDt7p7>})fReOkgyAVv}^oIOcZ!{D9V-1Y*Y95AS>*Iju{Tyv&URU
zg0j1rbQ<oJhD&%EQ<u>C3+Ts>Ho879X8fdAf3F?zb2U4&OUXr3zQ>RJ%gP_-ZOO<h
zN#Ao2j@Z8EI7c{=;Di1n>z3^<t5jLVl3*zc%acoaO`gU+VA}Iw9KPHoInK{rl2ol+
zyU&#sF6Up8TysFVmKFYGc$~jxhvHjBG57ZP-Knj1y+S<APm!nO@^$EH`4gFX@#9Za
z!9Ttj3y5owNBABpH2a`WcvEmm_|)T*so))3dAZ9=y8L@m3oP40owlo>cNcIzqT0oC
zeyMDv;)YhIYV4nbzGxV$p#LBapAB=xw!{s|lrEg3o6m;Cy)hO&6K>8w#?p#^&)we?
z-BF%t^_0M*CLO;P<Irg0ttDC)z%O)|*O8v+{)I$dj(o%9HQUlao?L01wyBiU$`E2-
zV?Pn8?_FDN4sE%-+j_Ls&MA)hw!JTt9Sl}Pa;iWVo^SrqaMB{=HWXqbpyL|cDTRXQ
zgVNwBRw=Jv-yZUyNvPwzh}z7!?0XM6?#tY<N%iy>Qf*fAtK4a-3nSQeuFhJ6MGq}2
zA+CJ(V4obn;`x|p5FXE$Cx>oS+OheEXaE2EM`CPxcVI%imnT5!;-5*pGY32&rDL<l
z4ZQyIhy!MyRS-Y+N-K!HMBYcQNc`^attXL`_(sx{svq4IJ{8)i%uNRgqd+}aQ_y6T
z=xz`fE#8N%VY6v0X0g8hynRl_f^*pMXM%1lVI2{R37bx*LA6g)O8jCfJ06RG3Ap1N
z8ijf^;br5k9naN%VdJ?yUs`Yw%`WjzU3s&Amzd0rH?xYxX3dr>R0N{e4l-4saqQlp
z^i+4jZ3`+NO=b0d1gE=FugQo131*>|F3n*M*MW8j)J3Q<>hERClIAw?bg+yg*HmEQ
z$kUEZec!K&;4*Dtp2<D3mior=D@2mOxhoGu&q^u+pP{@*JU3e!WZuL)s@UI;7bqim
zyx<R2=xav7GUX0v_uD|0DdX<tqD4~0Dal%Bw}*Zjp{EJ>q8a^bPdZ~~BgjcX`p&{E
ziziu%b};%Adfv`}p*iIO!+7!38^No`5%=<5?jKsEnM!8uA%COHNuUSK+Wl|~Ei#2p
zNK>408h<*MM)Ym+N3@hNG%7qlu71E6(aN%sTwdCZoJ)AQ?nmE3dO{1&dl<mz31jQU
zS<NVHA$~o8#});dO!RW-_U=C8;qZP%aTOPmuukGaBt?dhox4a8+L92Q^^^aO)TXPL
zLy47x$Jvs@u3}`FPZ10FT3`8Bs^m0zf_`>57PKcinIy}q@=yEMdm*kRO0B78D%z1C
zgZMv9Rbg7&K|M7!MiDZjKTJr|Do6T%?S0@9ii^YUZw#&03eW!>D~nC=2+_@%uq`$W
zE{ZX{!64-K_#R#sso;u^CKf7VTj{FtD|Far>A4kMD12aB-)hhzKX!10O{<y8*zf8G
zZ-c??7^o(52EyDduj=3Vp&#C~7YWg)DF417h5tSU=Rmsl6Bq;0>1&MoOVu#y`QP<t
zo%c2zb`e{T1RDLfiYODlYx$Qe8CYIN<aH&#2lmC7dRIvnHTwDLhqPxn?BYMno*lSq
zyTt!p#jQ!c)8{F=^FPNd=Z6!MC?tpBpR@>+_g~vGz<1-)rr|vJ7v~~%W?OmyFI^Lp
z#}m^P7;-AkhJSLwBW)Py=o-kx?|W}>TM<ZKyqPRoawmL9@a8RC$9M!I&Y#uirOeDL
zBw2y$vXJE#QlFs;R7S6uP}_RcGlc@QC!uL{aNf@yA(SfHBve;_JVH2}oWYkwcOT4I
z8$qA6#~Kw+qjk*T!Lg3M-jco!UThax!OEqaHAU%!=Y4`3)H?*`8UmPD%E{Opl;ANM
zI(H6S7Fch#C>Z5CqeoOIt)3PAbYh?|E&XCl3f%f{CeTxcbbQoJE`blNh3Ge#pa2Dx
zrY+S4430P=^I943auP5W@Y{gg2Md4U5dB32PRkU85tiUvEmEicBKw-u>My+s4xaSI
zZWRsZNk8~SC{@}Z&@>mTCU=>Ktw6K2Ak(<V&YZ3Z{)mVrFy7dBzy*QhFk3*X41hG>
zj?i4063c2@hZiUbcVl5izx<TLIx{Ap?9dXaI8MOBB`MjoZ&n!a5G7vrBlP0s^1MQ#
zdFa8NMhS{9dW9Ugdw{dt$>9W(+T5f6nF#R8mI&+0-~SmNnkw-)bz=4RBzF1S1pIW%
z?oE+@xDtvQ8jHLO)ox5h*Ms$8F<n<cbXCI5{{Dizyx+YTam39&@2$JCy~f>@7k+A}
zPd8F)c?fCt)h1l-AShwSml_uKhZVclUMbrK(R35$>Ylx8ueY8bjHe0@>KQFaQ5Y*=
z-eD5ok<5fsF(-nBxO@DP?n`u&nEg3RNUIN$7t0YQw0-Fko<@f|o1`0o>)r^8rN;v5
zSNIoh*|5V{<&oO3QSqq#H|T5_ttryJ&}AWWH%|k8m@(gmoORX)nQYPsJds=qN;bi4
z_@Oid{6rk?hJ!f`?3k0r2<LO(IdTxsP}m{U4c=J}32tpLP{qWO{4}bK#BmQ2u=XH3
z<DheRidFwKqxETl(=F$J7r+UQeDDeM>VDPfU>zLi+<%?Vl;L^sPYBWOQQNkxGv~jR
zFJc5lk~ay}p%)nadmsM^VP-y(X#eRRPplx>!R_bJy9!TFl=OrX_DJ%+ajzZ#9mDjG
z=I5;n^C~|V98qjr_HgAn{^(hBhIbtOZa(hHy1US_f+4<nj~f*h)f-v;R6tx2rK>L#
zx+d3B5tpY>G+CM8>;0&EU28lhJduI6)PW|15_ifQLf>{#E$Im92r}R<;casIS;_nb
z+rG9c5u<GZ-eiEHPo}cnme0p-!v-?##8tFhOzB~X`<fVE0)17-HL&os-1B=Q$9VY>
z%{u5qNe3f^%2dZgFJfV{*J#OqnQAG+bZ}R4_p*P*OS~Gsq_*Sj?M|9)#)Zf)NYrwj
zf+K^B-sGNnU31eki@bqTMetd-hoj)&r1YXhnYQ{c(w#u`1z1(<Hw@+%9u2Mo3Knhp
zXw(cP1sbF0@7AM33Q*P<X(Cs&Xm>Ebb^+(u0dlA80Piy9;%+r2;})c(^^1Icx^d@S
zdLG)#%>APw_Cbq@EQ&VCnYB&V(Y8CwFtx4l(x4KGk#ZqspKr8Gou42<6x{3YpnWNp
z*<SVsX6xA-Rt{O1$nG)+Q*rlr5ZTAfyh3;5UEdP!+jMJ>`jF36T$U6(=*Pz0o24G<
zv-*R$CM8n8sKZ+Ht$ZWuJ7Vpl<XWuc$BR*`0<apBVd8;~G3dkdYVVQn$brf^*o+8<
z!COxp;^>JogCtTIO4rAm9t~axHmBNSqOia$7SgTXa|}j9G^pOF+l&=h*?@GvGq%jg
z`KD<EF%EKjmnU7YmOObf<T@9NC^GeAN9jX(0k;ix`27ibIuEF6@eL=2kLITtq|TzE
zx$r}I26zTx`NGtnS#4^~C1A~A;qA76dDFO&O<hYR&fF6bk}4=cVL4-Uop-6PdKGir
zW2u`=S}XQYLZBq#ymVrI#3}wp&R%+q-{9crry?VmtB59tU@{|FZn`;tbrUUEAe6n>
zw!ZYE`4)3Mf2Aj-dyh*+{1B$t6mpy9QJvgJmhLO;O(6B}iwXLr32tj+AwdvJThDdO
zklS--V$+CKx2NF~Wy>IOCo3@fW4>=#k@)tM(<Vfl6RP*`6K+z6#2}r2%jFrr(O~cv
zQkD{HCJaTR5@NFJsZ;OGqRp(3d)UX_KRR$QaO6Dhp%pGxW7v?Fl%%HnL!#VK^W9Yg
zH{QcI58lHu51xS_EcYK1bKPwF+-#5+wsiT}df|mq@MzWg?*aQ9ub*$<gHN4BPpj|;
z)jI@CD{(nxJ&SPCjZ!%I!s=-|PsCHE|LBa?yZGk#F@6kN!>iAU7qaon+?z?Zh+aw4
znkTKO<krx(Ev}r9)6Pk%6r$DklC3<51HSNB+9Zd2o_=-FNQG%_pdx4td9<+NEu=?k
z6;~z6ICfeg(G)YQI`wQl?09q)Ba4WaeEp?rS8PzL^P+&qLb@8OO^_^X+~|}!`Jnx7
zs>WyMKsOe=w-_T)+`znLtNreRoB3&?uL_rbr=vmZ8<W-MrFE%^HiGtuSBoCjjD!PL
zgHX#veQj!mkX*Pei3iI&ZEdP86G}}6jpzY+lgvyMO_q1(TvmkqIWxt)6eDR1&nMTK
z<S<Qz*^IOm)684djzyRHTNgjb2Hl`;70qCM5~EnoYLlA(%(WU8cnip+0eVLD^HZ3M
z4h#_UR@vIn5qL^@V5mnsY2oAK{;66wizm$g(LLtzIE-J^F^gI_ew__Cdwd-0S3D2Q
zD<GH%HcrDoGtOUSroevS_2C*UPNzPL6K{49Z>C_<{9#OeMp_wUGA@IRLuG>tE2_48
zZxuz0X-xy;!s9()Ouu_F%O>7{<cFzZDNvrU{+^8a=gI*KxDr)CcTsQZ+d#c*T=?EP
zh0AVBGvmP@dve3YX_rpxMfSc*VtjIuU0u>3-0IV!%)|5MDgJ5b8l2BRlsDFJryf0n
zI#`Q3j!~$8oZ^8v4T(-2s0iOoL3$D!tiV0v!Yu>lxW-K7L$$Km^|IL`&S$hL{F>P_
z;B<}bi*zzK1<mZ{g8YkR5;ujnZk6Rnxn%<L2z+YU?pU&a=QaO2DNAlQ^KELm4E#RA
z9~O93DFz<~!(iw{`jDvgLGta<PR4Xp{H6<<+H!;0#&?MtKa~&v9Q;-)9O+sKk#kV^
zru2D6h$(4r)8s^g&JuEQtRUypHj46%m9$h}SQm=!VPlas!a0|{@?TY)F*+FNc*y$>
z)5GS!qPf3ZSlld$a7X{-`tRH7`+EOpzG<?lc0ct)E*$yJHHPss-%0yw>+!EDmOl3%
z#6Kt7+*Ny!H7Ok)o4sC`Gb}dBBvS>Xy3<kEJHrLoV@s1l*_>Hkh)|eXbyj7ip=;iX
zg;aKpV#<}lJ#K+pOM2|T20|;v0=kP(G__%tt1cf*;Br+8F=5+M_;)G`h)-CK@ZHQj
zUtfPiz{W)17+_GOYBZ4yd$1-VmJib`oC_fj%oLXm>5knI-udS@-mfi2ay-z25M+^L
zd$27A*_lRR2^^KVGPEU(;Y?Tw;ix^z9!g7$i*?2*iI6MbNC3O8M!U<OLJW$s2cKe)
zxh6J5BmX)5Tnb90GeCFcbA&gc<@s7?O$Kw2L@*iUfvW6&z-k>9B*1}k0tH4cE6-O|
zb277re2{oQ4|EX;%ZF_k;m2ZIF`B@p(E=jnAP=-H1bL;82l|MJbw>(->9JCVp6vc)
zI8)ih#d6Kg2XR=D!M1@uQUI7s08GUc;!B)8xNFju>@4gu8d*Sj3QUa0hUD|s5nhaq
z=W8AS#!nLA#2+*bhtmzVhvG-2!HcBxf^<=pVTKvVcOm(pMH4^^P5@<BQ-CEvwN=6n
zp2LC+MiGMi#5@ZpPQU|Oie;n(Kg*|p$b)em;i-P}KrsM_CZ!-Tb~|XDy9gYAR|XI0
zwmXCO>tP16-Wwj+pc2AUK|W|*5kUI38tu;p-U8x@585;w3Od=DRw*c#$qpJDodzEO
z<^`GJLZEe=Sgx^(naCnX8ik+*z!+Kpm^wgyZNRw1N(cdpQ{axkL_2UtaH2i59}pvZ
z0s>A)Q-;w4U#d-k#m&gfE*_N-PHqBYP++cj)^KHjjQAPIKJodW*ED-D2f!GG90z*L
zL8}ZcNC&hkse~Y+KLt+b#5%JDWHkghirXkdYh(5C@0Mc$ZAwjnRc*;&gCWSBadu45
z^`8u|M=5+CtXa4Y4s$YB2SA)ez^P^dIg9`_RpAV0mVn$^Q(*6|Y&-Cy@dOWyU|Iug
z`;)<}VG6N3+8(S5_{}DIA;{SaX%_5FZ-D+`6aw}DZX{JgFrv1D1_Ks0MZywrqaQ?Y
zRRyFNHvSEP+LwaZ0i_COBHuYmBD~N7ezU4wjP~b|8CWifw+C+_VckiUf?g!1z^8yO
zp3yHL8gcM^t*T`pgRSXuWBJg`!l?pCF#x2US%AjhK%l`EWM+|$8OS1gWQCvvA|6<@
zv?9o41OoO3^p?kkbw&s{PG^c8SeV0_?Cc$&ocDnINPszLN<p=FJg^o3O<O+5yE|<Y
z)G7{?CE<>M;z&wCCJc7a9>9S-0HyK)P)Bj(@LgdzdiXvcW&x`JfmRAyV+Q)r08ot=
z5LY&Z05L9v3PIQa#!SE}hJaN7H@-s!BATA(>pBoNi-&-7T=*4&DCzB>-2cgu%L}3+
zfIx8o^92G>-4LeX9#^3}up~f^3BZnyKo~axT4l3?I%XpO0Zvi{-L@uef&?OfOp^?#
zoJk4cGa$Du5C`q~pt@}zxXn7{@EaVIPdp6_XN;ww2>=cefc3o{bn*=Vhu#tXi|G&q
zD$GVp1`_~+{1*>&6bY*}9B__Zef%>`V7^E?3+KN+zym|$2SOGCgzSIz;9EcpFtCFc
z2a>`y5WcsO(g-4VkxB@;5{(3~wrVt=A|R^(k&tJp3?&AT87v@@`*7RWx}VLa(!mED
z^4(zioG$<7hMtJiD?`~%8Hmhu@%~bU9L9fr6@GoG^Zg;}(fp?nt~;WI5sr#R9s8_2
zyc#XwLTU!FGfi3$8q}wNBNEaAf>Whd$NrK0qYA;>wqF#+h_?-AN(_PK)ic0Utga^j
zN#nMlsts=BXWR>jokkfAUv+;7zCF_i`jw$^bDhESNg%9A0b_D+Um=D_uJRB#RxSl$
zMdy#%*IOG}4p<W12q=h==d17!eWD);0OR3sYQj6h1;isczHxFGPWV1PaH6Of$P|#1
zJNzf!9T%St{7VSX(a)R?F}H6=21*Z*IAK5Xf`0t_4%G)9DADE3%@IyU7(}3<0IvXb
zJNTYS2zZ_0Q5XBnwoeJU6EbcEcGSZ^voQYy?`+dg1hWK4P_keu0H=--Ao<_}Bp%V0
zvCjnfDF0jVC5P$sks+*Pjf;Zq0l8j*5o57|0p@I_@f-AFkf8-OHJinjtattg7yK^n
z9n|{=F5;OgV4}(oVsNHV8w_aPcSaNegA5EX#%DXY&L{wU&fo}z&$}#SxI{p`XC4J;
zok$!zAe3ZAl)G%bAcUSl2-t8&K>)?4O78=L_%93_s5gN3^UndK?uhhOFisL9icgB3
z0es$AtOnFkJ_X_Ey^b%G)`t|$2OU74GtiFND$MZ&_X+5D*AC?T6kd>bp|&RWnb^-(
z_#g<eF0e$w0Nb_@MC=Sn{|KJ^51|vOBRq$mECk&04IuwR4;L<RmmUR11IXM$i2nuF
z<=cntLkE!0=>N1pAGwal1-s^1R0VzcFKczBd*ov$04WE47H$_voYw!Bop6A(fFy|!
zlxGj72m+k^M4W~UCLxJHIm`oP0<t979=r&|H^u)&UEK$)Gfhc^wasB^grjH6QV<R>
z9QjBhh-KP?iBZX1xo6>Y(a6qb|1Y~Qa%25CL@x!Mc7@o1X%Vqnq5m5X1Au_i1!#r>
zy(Fi=>$X7F0%FqJh5G*uXQD#TO?S9G^kXKnfC-SzZOC9qKmd;MK(&G7#4`)G4kWT`
zV669JnFZf=r~W^2P6Y-S6$S{w|9_#$Z#7Fn4Zfc!lsHVrP-c5iETZ6TJhW(Kx$cN(
z0&tdHz>&(SK6(ux${m*TZ+W|_EHB;eWFm4-TPNZtg6Yy=s$|B7ibn)u)f~yfvK*`v
zHlfj)p7+XEi@U14_OszKbl8y&GjC6}g}3E!_AFB&o+V<J<?^%FU!|4FYE>~DW^NuB
z^B4lFC;!^doL*52C>zwOmfO$hKip+7SYQ8TS6<Sj>YOS5@}QN%&{dqsYCp63Ad<vj
zT#55&H$xYQ_bK^iaoCEdB37)wQ2z7)fdO(ACH7n(zj#<g3gI!#%bF_Yd{7HzxSn~B
z&9ko<NG_3_yXb!n@yuG2TP*gtW^ZBGz9wp9xL$nhhcs5Kb<P*_Urkgph~~G5^6o2i
zy{`bkMiek$Eq3@q8lUTF@C=<GS3mvl^#uXE45_N<$ie((Y{kI-mBRkmg8XmkJ9_`C
zmhPUkU4mQCEcrue1?Vi`Wen|10k0(JAIzB5Z=knD&k8ec=)+w^sKpd_gn*?4cLay!
z53UFX%XeH66qesOBM2<vI3qADT|Y#?7j5yk`xa^Px4Rbg^R?R+ar3pC6czEdYZu}3
zwks8d^0a>}y5w#bDzfBm=Pa7#YG*9^$kk3&)WF$JR7A_!9-q9LeF6WX@?k^tcU{eK
z@N6mdL#gt|E9I<+@^L4j4bfINM@#YbM(wC>`>HpAvpUocj)u=dxh@cT>2)4Opf&A{
zb|d5ku4-;p;d^t`OV@6POnQ^*W5tKYeu&{j?uu{GW9zo;?N4U6!tPYb<e&l$v#Db2
zTJ8glrKlVwqry71sp5_+b!mzfmIno-<5@S1Sh<xHvw`1T1iQpuu2n0epGNL^q)nsD
z2IQ&y=6a1wIpn6qoQ~U%C`**DB(tyN<tbJO0&zla_FW$Q5NK7L$KDLHc)5PO_Ci@I
zi@at-md(D(RH87_<+r<L?gAw#8I^IceAq0;aX)~qEv6IO<=N~Dqs0mA&*llW&Oao;
zAJ1+)9Drz59)6W$*Xo<f<Od$?N8EImwCIKi?0b|7wYEJBfsSX1A87vT<XVaCoZYP_
z@p$!m6$k=&Me9%)xdaA-Z|qCDiJ(!*V#rmYhIMslQ(`$qJum#5#gh{UFq5ekkX>HF
z0@eLnw;2>?FIVrq#1}wqdoK6!0{fcnLai8AEze73$}3m(hWpCR?^GV_>ac6`#Wxnk
zo@IhFf%(z6%b>3r#frppN%zfu&@-qT_kCcL9!g7imYIvG9|mV;t5mS9%Yb~I$U<*d
zNl(Y3SWdZk8Nff0<q$?Wm$&GchdpgN4)C|l_Htd^tJ`Z*U2e1fRa?R@7b>tHIxW<i
zd_8=zRF)X$0`tmVQFMbCpz!x~jip`gqdix20PGMAQ5KDZA8G^J^@FFK0anWky@8cI
zu8U%Uy1}hL1J%t!uV{_9)uNd7)$Kl@95gqI74+w>_8WVgXVP|nM70r0i$ri*ZD8fl
z?s7@XZ-8^do>1%g!=cCVZ17>?NW4H>Q>y^9HgwrA*b3mJ7%coBC%?sBFV`V3dkGE*
z(UIvnx)q?MWrA`W^I~Q6=$ZY3w*qM1v@X=Jqz7|R3~QPy01!0t!pk*%9|zi`YABp6
zpE&c09I$BelTa(ugRsl-?E2O2vTSztxGeeWVlUQwo`+)|<$|d_aN|1W9;{ucL$+=P
zMIfXp<%MK9D*0tf0_C>*MZoZp$59_Q+NBmin!b66NU`E@s}T@d6DVX9Y~VB?A3T#E
z>bQ_+;F#yveo8t(JO`-3`^|q|6ziburxh$xBd;y6<?A7@!BsFB!L0G9Ah%KbVCNmD
zLs|2D#7-RT{>hQ$9bw*3a!k+rTto{5SY<Nx2*R2-7yOSC<mTs5c!h0^;DTgPJzu<k
zfmy*jXB|?=PiROf@SUMF&J68CT_+zK3EnwEZns{ik<O4K(eyM;JQ9kGM<B5jow+jI
zI$Y<bC)+MjR&)4PgW^$EPt?(GweaE{G(k)OYZ>ZK&+f=}SYXEP8Q!q@SIGl?C|XLG
zNdDFIOMje@kUfjgzD{BP!8Q1kTLPuEbXoTpn#=JaB9#4~BR&jn<1oyo^&nHv1yQ^}
z`s~n1K(x)~`l=7@02lUBa%ieO)?qAtxGZy@eo5=(f@~*a$sL|Y8O-s5{Up4H1zs-{
zM@&LEItYqQ#i<ojLR?`1ma>%?(qi$&qegrZRynaJY^TGqU!r8Z1?~)qM0a89dRNh*
zU3ZhI?<$}5d8T?dSjmpf(qujf3Pj7yl4p<8h<}}je=Q@B(PR2_5Lfq(w_xWFpJQ&d
z;=(U2MUO98ymbrO!;FTCm+gFxFB*%=MKSu29_NOgs`iVwysI-$d3=sK9gA7qSo4j#
zzT-=L_M5&#&ozbKdoD!0a4%bRz!HhLSI^)MXmJzRNVuiEEDx6aa7^KZ^@uWFq~NHN
zWb*0OFgYW&d|$uhQ>?>>=FK+&8XcABa>s**Sg}sRGmmL;POCRNe++j8A~i{{igMQV
z(fg}4QJUnr0}gVAJQr3b?J+s1c78g|VCLzoZ24FJUADgh8U+7qV96P(ss1}}f5l9-
zbHQgHF{zp}<gjoA<7rR9xh(jvK~rT5YoT~SUu;agMgNk1UcY#XL4{tKS5&DnlrpGB
ze9xdpZ$3JcjXp8^<)CKs^wLE=4&>i?91<_Y)QSuoOa_(Yv~Z*rRi?Ji<C7ZEkPBog
z{%lH1=kI1w#^hAOq)dG*OI_m4Ej7cES&4m^6S<sJ$zBJ$?;>`VSYE^^2xG`id0dv(
zymKJ{QQlAk)g~^Ld*fTkhJzK2nPwd7VvQ0j@%x}RsTcxZ6v>~^Vo$uzZdv^Xdz)Al
z+Mz8)ay$XUy{xfs=H*!-o3PJBIs33S*7iTWEc#anDCrHqRP(dH|7YJn8LEq<rjia)
z<GxM{pBLyIttv~}I>#YB)Bk7RXg<g8vcppKLDq4c<?6rsx<N&yhLGh(eGjVJ2Z_=G
zh|Q=YwnH)l<(P-dhC1Ha;;B>$DB#a?d(X|GQN?Z4o_`|Keb2j$PdULoR<HSOPWI!>
zGyY@GX}RA+&v&^zcK&~C>Tf*MJdhHQv*lUxflNrSr$ddzCTHnrwb?FWGC{@ijbl*4
z3@g=+$$u6sNcckM*u4!KX07idUj){iGWSgKh8l^<1BwDNxR;Ab#V%J4Su$=KLnqU5
zF8%+zg{pPYn+xmu%6q%NvuPZ%ST#Wt&NrRt5W-0xNf~s^)Hca1Oi#756Q`g19l_){
zC^m<{=oZ+&StI$`^lj)oB_JDDBTcG3Iog|yIyLwEAx}vSPYF}8VTMmE?sral7w<Ix
zo-nQPXs=MfhL3H;Ax->qKkNJjqdb=1H&s>0-!)FL<A}62zG_Fm#1!{D*I6tfKbSh+
zxzN=|`nNgWOFuMzz=L+ADq3;KaN+;0a(Y=Ld&%;Gg&xP$xYRsi6@mnO9yeX~(-5{f
z<OLr~3XCi!o0^sW{MG{wMRqj%OVWffbaV5MDIkiy`r@i+xk4l}Nt~iv;bjharSj%2
zCm+QsN2gH>MOEEp2-+#jmmdi-;7}$Qz2>u;5R$RGSD{g(H*USL2vrq+6G}z)pW^xK
zADz-Fo(ft$J}&1Y?Aw>6=Fu&J^~ZQQCi`|lQU8ejxHxSWn@o&dsM7o<jRUXGNO#~#
z<n`C#eAKI)&_^ug1cisx*yl?}!i=df{5w62)g-gXcJAM-{@mUFM10^|kLOf5ey{mi
z698wYdFEcNMs<jUzm|0Xqak9upfPDzPK~{>m-+(PwVW!ANVU^^dqD4Ac+EGz@C(`L
zK&3<ZKAf_#f)ZK|8|0hs*Tu;jOsG#e#DwJ;IBBYN=Pu7(N4Qt;X)_#A4fUC97;$J#
zl@j@jNiXvFJxu4s<yK2)Ie5GfEYHctVJ#7Kc1o77!vOZdN3aG~zlB(zeLijWr5@b+
zbssTgCkMM|zNP{bn)e1SnojYb0ZM<JMmVnWmAw#TkvN(woV)$%Ep7QZk92}U4rlvF
z;Db9>5L;qtGVxc~oi2M8&U%hcdUGboZcz=l;W~m5feCr!qnEJQ#C&8l*ncp}HQvl(
zpM?4@T~O9V;7%~MGF!Ln*C=w>Or8t^1^EPxxPX1ntLpE#A2DKO4Fw@{VGxc+{ma0d
zN!d~Z2vv)|hvscN%dFpCeG^a1=j74=v(B8cQW5CmpEa~QM;nmXQBaQZpSI?*1`bjv
z#S43MkjOtanpY+_^gPY%i#GBR4D4?8HD{q7Wypp{fqx*yZ0?t{`wMfEc_6mzztjZ}
z@%&pp9f|Zc%;J5kC0MrR{z2Z_`VW3Vr0H_*Uc<-|{%JtN-Q%w;0!t|GNsHbm*izgu
zyF^^%_Hi`oz9c%+WBz~9Q)%sQQG=^t?_a2*xul>8k*c)tw@AhPZmk-yP|>Yup7HUx
z$fOnI<iUZc*wEhI=twIXh(dHYkn)vB82O0>*x%y~{TD`BTZMv;dq#%G3nw<g3Vok}
z)H)nA0N)ubPReLxh(k>Sll(}BTN|5+>hlpumA1f$7!(}y4#xhdXx#e1iF+oEw+*r#
z^4xep!w2QX;BG8E!O_4w2ZHJPQh}}9Fks{MEpV>~aIa|w>fIOM(*y+%*EJ7;9=Em%
z_{JD$S<gUiWtR<eOfHZ{Bp24g+Ykzk2Ja3>xf%~kL#=^rwbAH5aCdZv@M4p!P>Kj#
zj34$Hn4sEmoSk}a*N#wt(uNXZbs{eQON06&;cA{0NSsFfgtkchw?=S1#x<zTI8N-H
zVj$FJ&cY*$G*Dt;55ZlB>KpF^m>jk<C(@AhHc%q%0UVf#Dv&AN_FI<fTZveHcr@Gp
zU8Ip&)B<<Z&!MndZ)z0T+g8}0Djc)4R83nn%vlg~yZr<%WMjwm+4vOMnnih|jQooR
zZ7K#QEH+vHcVRL(P!&g%RYD{TCNpscPoLGx_K)ggaX9jHX3w8t0tZxNjk@a=_4A53
z@Hf`feW|P}e1BD3iT?VrS)Hm!@>6iez()97AvbuPm<KkQ5y8;i{|*m?O)>z1rgLGr
z0xO8Yy*$tw6kwH772<3KcZ<&h^8?o2a0d~dj1NjQz@ze764W~Ck>5c_d|{%q6k0>4
z`80?52f19}ty^H>TlzqmYtJm`ogI{)`<NYt3cqo<Gl5Z#5w;tGY@|$~V&mvCgBu0M
zAqM9CT4%O2zV?si4anL5og@5haV|rs$-!qygzhl=y`o%##`oGisppS1`O+X^9BXBm
z*xWGz91gGyf-9{UfA-KJfqy0gtnndDbAgK@Ik9r)F{u%Duvxdf&8U^VO-Xwm(Kpl1
za;>gR&s{J@_93^gMK)`m?T+ELn*E>sMtgZ#{bomR52S~$$6wDh$k8Uf?c1y}-W&*M
zzmEVOTrSzHaqJ$x_ssjHYpSdAb!tzwAn2V}OiQ&qgUaF2VkCHB4@;LC%ctNGt7hVF
zZqBoyx!g6aHoaQZrOAK;J~#g3iF!xSvW<8U1;V;ROkFkk`4-b&kS9Nz>|&SkKdf$b
zLB0FK_o`vAGOi^;CT#PUDm+zF7b7%;0q8~J-qhC)jg}R})=1!La@T(M-sF^G=IKQE
zZ2YvVNM-!68-WaFT)5b&=v6BS{V21D2u!8aG(#61q#!4??%+V_iYxUT73XT*LI5M_
zG$f7G8uJO2!x7H+d=^na+EW?Y?~4~fS-nzRrg^98<yCcEZ1j95HHQNuCk#M7L-`y5
z*BEhpK@X{@mgY`PwWD-JQAZXo#~Vj*X5b=kjph>BnsoUH5f?+`3HCv?hg$kp2<l*w
z9>kq7py{=#i}g#>l9$?OD}%QkUGdG@APp6sVTY@B<I9WOp5c&SZ7<v4O5tt4P^(P|
z-pq#f&~GT6$>pNZj-$y9cn&;L*e&$;0BFu+bQ@|jgUgP`Jn>Z}`oQ_N?RZ(iUFw46
zH}3B`I$OG)@8sW~6x<y=_U+b#5ZsyVP*SbbI;6{n8+~U+AT$l%mC!P{-!hLRfbS(f
z%8=rUS!y?o9WrFxHuc%$YC=eB>;vScbjGb3FJuB{SK^D8v%{M0iF9F~Dy=;z2yr<6
z9{lQ?7D%y9efYC@_OouI$Zh}AdFn+2a}t~7IN78Jq4*n1ln%e5VIg&|?3lV*lzGB$
zeZ*0NV_4(Dnl1I;l>)+D1D~5S-m)+@Z#Lv<z8!RYRnJYd*t0%`jQF>l(~vZ(XtQWW
zJR?vh>}oIh5Ju>W&x|xE%nGk+ch35#V(sLADrcE4Q!C_OO3+!Xb`tQia_ll@J!HNH
z&{&%Ge;PfqyC)&|ero>i;+Z?9{#jPlJu>0UiTb{jc!6ltu3DS8DvWGZ8L9XTNyBpy
z*`}?=P~VxZyO7=S?IXVTAel2#iE+S=V3T6oUz3A-5+0Ug<LF%LHQ7Wn8n=?lF(%+O
zJ2<-EA}a`)F&mhTDnzR2x{j0of##duw@sMuwDB(YnJ)0z{lS0j4W#<)kVPd;)6cLs
zTp9|E!V+rx#eCJ;@;M<a<0^<DobmlXNjhoS{L%QZJ#S7&-f{4@1rgr|aSM0R*UWGC
z)9BVg)l!*MOjWpxY4MslxMf1LDqgbL2XO-Pq;6a`shqlp{?POepLHcKcBDI!>%s<y
zXFrk=WML7=fepHAbAFS+69%yDA~R*fXnAyG&{G-Ni5&SJ{V!&uDsjD`w(Ml(U>fw5
z{1=zif&527BQw5q9q+fVIj9R))$_7zf1B*S=3x^4bXPv>G-v(T(D_}7j|rNGPG;al
z?9jyoZ4b@335=`*c7#-s*fzwE)ei2Q(n<I_)7_TFb~DSy&DtDq+UpJms-4G!2BX7*
z+GM4IHR<pw%irf|<rKT|9iFm-6McHiMK;roK3@GiXD)J?-=N2<Yn|~=#~?cEH>an?
z6;ow2C|H#Y+I3pdBNHoEQT^tOyw<p!pCBHfhMVqzm*(%)5cr4iDtphdIZ-D!YV5dA
z+P8za7YGf)I|pcDMZj*P+Ex(mkSGl%?33VHVr2l+UV!?tskT;3A!~pJm-=eA<u}|V
zC27On8Kq)2a9WdUBAX4I5PKGKsG7D##m_b)d+3h^4BGmM^y!-9KJ;i=_6d*~W`J+c
z3}iZM?Eora+_09h^YuL4+NP}};K=a~2n==NPfS#gq+&PR0Y|z8i5C5P9=VSXFZ#OZ
zE?1}vbA2sq|FTRx^;wT~3oBLV=kz?aCD2XZ$r#3JqNEZO0uGs~kkOvHZDrIk-(W(R
z^5xw3@BJO{6zke`AxWIzQU_jaZ92anB7StDwzUfBdqvm=vx#SohIxkehUK<C{k~J4
z6^GiQ%C69^DklQ2P4Z+ts&73`8N%f#zu*i>Ur(^wZ%@xNB(wzW&*$4Nf{opGQaQ0<
zQLdk5B8<3ntvD2@cdUQTlF6-oaX;S4<FWUW)McK(Ni(_+U)3zMz11Wic|sf=%oQox
zde6Tkf33mNqRe8<n5N>GleBPwF;q6tT0U!FTii4u_g{+;ZH<?#fg*>5B8O<ti`Q20
z4%xH;PS7fb=s(^dMYgK|lfU6><|gT+HFHlQiD5x4q-f8fzVt+XWmO4(_4c0AFYnC7
z(u+h2(<j|ItHMq02#j=8c8!oluJgaYL{4tR=m_X~J;`46%UZ<ImJ>!^=7aJk*+dh<
zaF|s&u$$6#^AxH#913~KrA|IJRl0akaqzk4?0l+PA;T6G>mzyB2Pc-Y6<9tJ7BYco
ziKRPby^;J~dq}P(a5Fh!bAan%D}tJyH&*kpYJPgB-6qf^O?dzP=$M$|{r{yv%L=6U
z8#k){;Xq8P+lr}SGv_^jlBj@J1$H|=8$?Hkjpg}&Sxx!V|5@81Q=$B4eg&AITO!7J
z4Jy^>#Zsk#1|-JpILDR;WrhE8kBvZ6!>{2v{oF)Jl<F>)pZS?Tr)fz%MJu_=;t)>H
zTzNU{bgDj#Rl3$*RDZu3LBcv%GBnzKYEymZw~+M^rTG9Hd-lP)SN>Qc?ELfP$d{x$
z$xZ{)88dXZDuM@G_O1y@A&WzDCBCKB3CT+S387E6vK6Tbd4vUHlhGPgRN_?sKy%I2
zK~Exg%vDq@C`Z?c6JLdBQI2?%{`bjjioZ`@9-v&j_|eq-t0kL_XK6qVMmk@e+&71(
zG=rqO&U%*b{+(hR1{!yn1ZZCTcwCY9%4<eRoh5!cmI|+>mv=7PI&{Ia*4DLhCT{xo
z?7LjB$ZcJ^|Al&Q(4?`2j0Gkl<H`G99hd>mizBt)i`aJQSZ|pX{t}`|bsJX`Ip12~
zFKb^EYX6QwG+&|Zg9}R8dj3EAIqJ%%hpQ^+kbbPWi573fqxw`Bnax>TY~$v<ws!sQ
ziO|}(;RQRfqkCL>QMV#75R2-OObkG6NA>tt?1n$!$h07__us_rhd1{xsYXek$Nm?t
zH=Fp43VKU*((^>j1w%2#@EUjUOiQ*17}E<i)e7`Vt0V4QwW|lir~k#O{%*iZ%KM8f
zKQUyAA2+oFF;=Vp4Ib0m5<P$gaqKtDQ7%3p{Q`ouAoikq=IV=w*Js=AH^`RfZF9P*
z0-ROi+qI5E#M-v8F(o}oY+e=%4+2JycEMhT6^RI#R4623*yU5h`F{d&26er-6?7AB
z-in4$2=%pyj$UaKDL$r_FX__H?Nu>T)8A!v9P<5m<Fq<bsns`E!}@+}sb;N5UDBR7
z@3)E*pEqKIC{<`gWf#k|uJYO*t`gmZMyjB7z&H+0nX4(UOt|@twk^{nv+}8$?y#(z
zY4|M9sN$`*&l9hKHq9YN7kpCB#lbHYj=)T{W-YzxWoA+bYksd9E21HYd5W^H^kS<F
zT3JL4G1lq{utM>3Oj(YDYgA=KgRq0Zf<J`?4ZbU@=k`q0VK=B|`(j8R`H@=3TSD&+
zYoVU@+MrqX+yQ>w!S7)EGh;?wl?GC3XcweMGSz~qVM!;3Vu{?EFYY<EXk{9cCsUwm
z0f#p;!*VW6u#zFn#ksPa<`L3MqNVLN%bkM%c41s^lG)42RL2yoQ_3F_WX%r}8?WYC
ztX?%~zxr;IZ@zzD5JA5kX`X6w_cXX4Fp`<iA;p-4HuW6hnZ?{8-K#>@>7U3l<8N~G
zJ^H>W=#9=upJu}l67k(TUweCe?coaue+suVJzkb@R&8rxf9plxB5Q5kwK1ia=QL=Y
zPrb~U_lJ%B|3-)MQ~4h|aU}sOi)U`8K+dRHJ~!UQGL4VDc%$al7oH!tJn_aa$<EYi
zXE@)csH~z{Q@0LT&k-rM<XJ)MKGSTBBY8gc8(yacMc3DD=R+MG4E$1OYeCXQKJ)<3
zx9FXBFq;uk-?Xl>-3m80>)+8U*ruPz|8`K5D{keI-nC(6HMgka^1E14<pY(=??JTI
zZtmLOJ;rR+immTIf8NjS$vHMeg3L>OH1e`CqWI?+q5Z%W$ccTDyRYeoT1!N>=`LcF
z*@R%v%-!;;<f-5Jy}liE)`@E*3OpcXz#9?;&I6{FPD0<Kz`+!3(XN3)kSH)p8NIqp
z`{pP~QoBE+mp-(q(;mLnru8$9E0#z~6nOt5Fv<L_glOcM0X*t+YA%f^@+A!TEn4J-
z5Q2{hFog|IS<J+U@0`#u@fOLB0&~PC0Y4zMj7AmMK$Q<W?4uR1L!pYo-5}#khyvGV
z#ABDwTPzG_bq_O+@}zFR@2`*tjbJKkMu^D@<{>{>As&(uiYpWLa1+XseH(r6lBx<B
zc`v!0jQo#g6k+7M+*|sj76lro6zMf)v_LBVnNG5?$!ELC2}k4kXnNq06gDQhhj<2>
z2P`_gLQW+r>ad`}#9FM210TkZUN5^O1xL1ea#xo_-Ar^$-_u0Ggl<aMyIIQ3cPEqx
zH$n*D`BX|9FOle}{&_8a6!81CU{7QCbyrgf@}z`if9kucB60bc{cXov2sA$812ffN
zb2$*NM8zQ=<beqmMcqV&ZrP*S`OWka>st{X@c{3NTbTB&3SB4rNJG%WY7e7Q_pq1R
zm?Q|t3E<>SE8WJfRZgv?Jr33I8YFv>B?-SBaW(b{l-anxj!1W9#t_l7`e&Bf=9SWx
z7nK698*fQ@7DQ74rA3@PC8=&)I6F@~<L`4)uIf~-{?4NqL~oz|q;Met%r;`NCBMM%
z|Dwv&VvWat<@vei>DEkIOKWG5R72+ozkOLxXsrOv&Z=P)hTmcO8^a|f{sJ@1$<UpD
zDn9&VQdUcU-OgXBLr>PxN@?wVpsxWA{e-@bT;<mMGlxt}(=Y$?+((Nds=(Wv7Jg1S
z1{<#%lqa<voPPyMk5OiAu5pu^SZQuM%VwmuG6XE;>(3_~_Z8ms)QfWqc&DJ7Yn3~P
zuvY(yH&uA;cm|PoJc`4L4I?E@figkOr&C{j3O^Mzl2NBAIeKw^+v6-%WW$K7P{&Y?
zPorcAW4Q{b7=&;%v3}T*WW(?@IrB(d^pLqE9ysd6mD*Faqb(5EWaH{u!b5u&8_Z@*
zjm^wf&VA3o5!4Bk>TH5kJ`%r}$)8`gHnp_5A_jMf*>i)<S;kE}nMn+OK9iA*T=BT8
z)R@l0pQ=r-<;&|GVAY+3LsnNI?kjo+431y98?Tf=6Ld?ROY_*?;vw2NZa&%H%$sla
z1k$?xosk`!Xo4*@$q^ZjiBU60M!)=0dP)=eba;8>(RgypZ{p^O`qn{t(%GR`n&T;?
zfH-J>3Pb$p>>7o=Q+35f*+Qj-W!cN+MLJXQDm(>E+<6txqq(Pkwe&F5cA3^MoRaWd
zWhiN_#AMjU0PQ(}{i&g7q-sFPnvd!HR`AqS+m3g>afKNBOMaWAb0y0&_bA)O-Tuk^
zXr*-NL@$DT3Vb${RZA-jKS~X>SpN&BR!Chvk5bGIOy!aF^k>$Is`2-C6fo|TkOMR@
z>uZvO?=NCOHSe&X-AJ&g-TDbZ1gI0q8x_3zS7bX<XEP3u(r&F+ET1f(mqrUgJtH!O
zy{+P{miw{A`5rsUNAWnhJr3c~47>o<exs{rOl!hgEB^Y#hmYB>&;1h0WhW-7jgemy
zVsvdt_O`4QuXw}qU~=Uwap$YjdrXbN;zZAn)#bsFk1{9df!AiPt{md5$_g{19IdR{
zRIBV8{MF9U`WEFG+Ro*2R$3T554YBpf$8_5zqSb4&J#^!P^H6D*2gr<$-KD_aVoc~
zO6W$2d)Zmuem3m4vt?jA;C)h~DWFoJyZXq?dH2^mJboRAIpv-@oJ;)Oa_Q8IDS--&
zThnDnW=EclwvkP0yTmjkXb;}-H}CLbWkSgjd@XKl&IAtskGr;Ak%VNpD9Xmbsnk^R
zQ{2pbnyfN^+!V`ps#%30|1eHN;LlnL-DLe2sZY@eaTC3vObO#i-+RJAF7}!@fwx}g
zaFb_-4(G5-g#@zG@>0>dx4dD48g|xw3<*E1(fj*5?R>zG%PD_l=hyqYjtn6w#p$7f
zhH)Dpm!ufyXkQDT4Ban2tpkeHzJFA4a4OLV4e55Uf{SM+-f1AAzYC?@!C{@jb#yaX
z5w5iwh{3`!7o%hSiQ{|zEq*jnjUM=4grUzzse~7)E^%i}#DISNM{30D{<gL(M;#Z5
zGI7di`;9^f#gG3FPgemI$I`4>+@0VMoZ#+~ki`Oo;7)J}9^9AUF2PA~cXxLuxP-vs
z4vR~WH}~HEymNNW)^u03)=t;fd|j>8kL-YO;yr?O8)9MO-tq3_3sC{r#1%C|L3Qqs
zGKaR_9@ePU)-zen*zC?$KB2hBeIWMDb9T*;<?$Y=xBH-kLB{Pi%Wr?)o0TYE{-6D-
z<ax}G>z8Y+U$@?`(2wLSd8^Dg%ROKvUQr};h9zWX9M0U*7x0GCza&Y^J$U|`%)lUi
z+nwq`iRN&s)e`^S{)cQ!{84<27FO9<MTN$oI6reSN}7Ac()-Q@8zqhK_Vq+5vaeV2
zGzfmNrN(PjAq!Ns4aO9I8aErdx<wOz&70I6?O{vy@^$rw@Igz|ZSPAA8L+KeT@IoK
z_$1sm7Oy`M+-VlxUrXkLB;Pi?KGVXqQ5H#j8b106uhDe^#yfvVfyg+!mA<?GQl+|F
zw~k%$IP#_IEQtxbHLMimBl7#|v9h_L)TynQtf|b8b#L*NXJ__LW+S81@vmDQGF0>C
z^F1XYoJ!Z4)ADK^>wBR*T|-R@*$YCK>Kuz|w2J|}c2lmbqAv}k)eWx(ctGMWh2gXK
z8PAWurpj*7Uv3H{QTx{)w%$EfNb&(h9vC2u077FpvQ97xAm~0kR;-8q!=ngfZU4ig
z{8*vG_b4dyePlCh68k0B49Q=a$7|G0nEBe!WElQb*%?9z<-<2GOd>r_CSb?$$N~_@
zV<5Qap9pY|a#rwDJJW<P830=9Z(qMhK9GY8-MiC2a5l8mOJasgCa>&^bfWap`DJMD
zizxUp6WRFTr_1Y$zgEKeT|-4`phdJ55&jFyUxzW~(=}^~{D-6MRFc{El+Rk}nEAif
zPkQnmslIGxlo)Z~Rtq??I8tK$MG|)yhg<9U9w<8JLzB0+lEyO|OvPs~40o!WJNNuW
z_lu!`nxgE|MPHY~2g{9>yX>bTX*z_-ua}7JLEvaeN<uLRhHU|we5K^nxG08@F4-Q$
z2W^-WQM1uF8V6y&n!xtJoL0RpO<qFvNF*r?XmQ<jIa0Uz`H8>-i8^05hs+7vk*Mxh
zNETrxfbyKxv>8);UH-}&#D6T)-D$3C%Z$(&n{G)5rF%r`p<4^1sJ`0f(6ImN-kiFF
zpo|+jJok`|2Lnw<U0+n;v3qlKzEu7$b}j<XT?i=k3yPgvseL#<x75s8@AlsoK=u&e
zkEF=v=k|TemxQ9OX05Mh5r3Z<r%?+=ZD$pHXdl1+yTg;GEGvKjr<-(-N8{a=8_c9b
zR6e@UFA&67WwKm0{)0*;v80Dg=9tL*BMwT-=%KF0BPVqkN<(Q!F}d^D9B~<~Pm;!%
zN8VmFx)FK&@888z)?Y4U{>E8UT(TO>9lg^f?PqZ~)3b_CSIVO(AF<eF-M-hI4q7O+
zXsG(4sghad*1(yxi1ZD`haU&u%FR2B7I8Pgl#9PBy2GmCqjO?_XXo60Rr>LTDoOys
zGt<YHn3)8oKdf)~kG4BBykbcnKSZcpbX9JGJx8ipSo_!;ihX^|p4=0S0Y9i<9Z^yy
zmrn|7Jw#Jp2WjJU3D%I3U`*JAUi3lPskGDt3)AgejaWrX<5j}bP`jC+?Vsm<p>|B^
zD);MST8DC(vD6&zi*)>IK^*0dd9yj)C^FWm(S_JSlj*6AePlvAKW;YMP79|YlNie)
zG(qHfLWw-f*_+Mp=-!ja6{y0nL4hisD6}rhjsccm?bzyR$REtaXIfJ0&Ln>NCR^xT
zgugH0QhS6LW4*1$Xr|$Snc!1p!1C}jDQ*!sfFq@j&mRID$i%^RHdmC=ROqIq#>!Xx
zWx*lUeRm7;m+HuOxAB>sF4NlEQYWPM43S;_glJDv5kY?30}>AJ@W4`CxU@N+G2?%I
z4kMcH@QDq2ew=+4Dg35BMpUEEsgs=ibs_$1+3cs?qD5VInN}jD#^@^hXPg55<HFCg
zqByMtEKdDmIU=21S_|g~925Ip&rL3x9*r(&#~+@$6U;H7B*U8Q;4?-$=jA{<jsht(
z>LoD?XAbiF#a-Lt*Ap6v+4YJQg(LMTv8U1^_HKtbYHOqoOnHEp<ENvTz3}TZ)me4a
zXqdfq+OpOarb?@lh#T-3WVg}S9?_pZ?>1wLlI#4^21d%yhiNV8PYVQV%+9pyJBW6c
z>oru7c50V2Nj@rxI=k3wsr@Xrr+%V-ik#H`!PW~x^0YE`Xpoo?6j@?!wclErlGD<s
zlb-6B*+`OV{ApQ<W{x7{^R^|P(U`u6iGiRY9Q(9OOU!HkO#;iu-q$)q5!*Cao2lpt
zj(b*=Ctu5;^rWQVREak}lg<L+)UXryuo;(8^UL0W`ww;RY)Uh{zRRRe%jRc(DZ!wn
zR%=6Dkf=xJCws~MOL+EHY+m3jh>5)N{>RL?m69`;LxzP0;g{N<Yh|`qP53*EIZN6-
zuZDi-*6N<~N^$wrUF0v!t2*WP2ss&9Q<dMUL}Mv_t_!(KyEvhXznj5x+s?@1iq^?*
zdN{L;KQTBzzjX~X@$MhnhTTO-m>W^N;lf5H(R=p8ECn`->?D0iAABQ7%Q~sQ4?aD(
zGnJ`N7<iq3_x(>II&Ts0@Rhw~f&5?Om+cC~&t)QbnL0Qr^<LC{wOJNMtR3;vUaY;f
zCZ$ndsCC%J5PSLz3gOQZrvDTRdQC@;w{aM*Th3w*CV7wP*krqZ{%3Ej`fOShx0cp)
zbn7mUO$gT2M~~W#bZ=%Q)0P}Ew>AMA#siTb6;^EZ_7R{+2aMWN$TZs#Hc6JoGj{3+
zDeN-{2&e19kdUrF;Wihl(<mG7y+<|Nj@-TDtx5|2-2e1SG8<C%vSu#AB$?gDoXrOP
zP9XpV`3hwNo0dXvX=q>fa`>0ApiCJTR8-FpE}){bic2A7HGC7azi{4#Lwx>4wJI-m
z)v$f>^Cd?AM)@aA3unYOe3wFv9BA#WaGb0zPB!y4DCNp{3gW&RX$A2<8{jjV6gI8I
zHMA35NAkYUT+M!g!W6t~LoLai&Y#M9&Q~?5yAFao{~XLGW><r<i0UmnD6nyKgi{I5
zktWr!i!KaR1DDs7qY^8fJiJ-Lq^MDb!ut`j-qp{M8d4#pVK;xYf^RCKWrMSSmrDp0
z7>8d~A*}y=7r;0l*pY_3ns)deRNa-$(9Tq!E4j^|tAx)>&>-%0{fAww=tS_xlEQkE
zuBZ0z@;AlA8o6Q+lutD~aLP<7vj?SAw*{wLP7C0TM&cdNYFb1Enxpr-_Y6?v74^!1
zuLrv;Wx2K&kvv8qs@ETG;i{Ms(m6&LyXd2JY=(kXqii^9Tib@KPfMry;BVe!5JYQ!
z+&2@{wf?aW3zphtnkmir86i1+9V!>4@gT`L+i3oUF*#ffc;Kr27W};LTB=zta8EqQ
zlDgd<R^`YV{=4vHh2r-cJ(co^sm#(tep0MSEBQ{@0bPl=o+-0yq*!V%48ze!l!elA
z_LNQat<f0><P&XQ9Bi0;xHQk?Gc8#Z;y(|-5AZy(+~%b5`0lG)s8IJ3$ovsbcOGss
zh*&s3j^F*X-DREcqhu{$r8Fyd5K0OJSl9ULfJ;<i=M^)%KgIsxs?VyT7U^$J5dS)A
z4{YMYZx?Ye`Br(A4&~EX>`sr_0CiK}eWaia`C!}OzNCKy`5fH1<GKYNV{=M^duis}
zuNPSDJP{_mZXdY6Ntv4HCSk^yIE$V^s+?j?(|FsJ<X)kJ%l5mU>h>%$it&)}FoSH%
zJP>9ed9@8LX1zv2_e`n1v1PtT!@GeDoym^UePmGV2(Ichl)84`S`*2+lm+kaqWR3@
zTe_TriH9WVG;fhUw)=0Fn|U)QG+tlc-X&^rWR+SGx(FoQ5l~Mt8<@KN&i|fG=3f*f
z8P3J)`{jsUtjhj#zRPOBgK@XD=&%L)A{(%SoK41-J%3_2@Yq5|P6z$qpN+Ob`RrIi
zF&EcGBRB^~3g6p{aB@x>5pI>c|9&4zlR+t}MRm;ig(wkgRRV0;)1iDFq6@b0@40@D
zZLZewi27o9U60;-a7WY^KQzLMRyC`I$(cH_o?613znOs(-TT9WP>sPnfy)=OX;=&g
zA^z-h_y&BY>)wZaaaL}`_eD&LY;R-qWMuP$+>g{-zlyL3pZpXiJJD<HP_$vE4ezg_
z*r7b-f|EUC7R7Al5yi)YUHk)fTHC_j5~s^&3+4-u8vV#6#qvkb@5wsBmqhBQnNG_R
zdNQ&F7+^7Gcu;T-npm1u$@dQCq@zCEv=gL79AOdsT2nDe;J8k%)^Co#LL2xgmP0l0
zsUE5uLx``8hb&ppOYU}s^SETm2h`=$=oP60*GB&H3-9+qm%Z$lR_gHWC`IP=>)?d#
zNh#y;*E-5)l4ey#tk1?Jj`a$DkL@qeUQAq0%s$MT?&SvCHvh$H_38$R(~QEo9cw(g
z5?=@}rnKSWIT|<sZmcMSaMUGxLHQt?D|;|vI~@RxOaXji)O5YBho@k~A8l>)y$uoJ
z5KbVbPR9heyV6^ZR-g0i9k_e(HWA$13Ow$hVG;?biz<qUKkxymNeQ4BUuvLe6-IbJ
zGP>Rd9e)5lGXEKWBfSUQO>PQqJ~g3*k^>MB8vvYP44_I}_x!+!k6BLuC<P$|7Y~+C
z1C*BwION)wp4{ZvTHO66hEFnR?zXrN5cH3hP`b}3=))aP{BiL>mO!)q41l`@fz92G
z5~*PjQ|x4L^Q0*)bPA{_Aru#{x(_H#%YhO8V-(&9Kj6nh2vMNb$5KRmv<G~A?-dcn
z?mhv%KLl_p?EqlqXtJ+aSNQJA7-&K>9^ezS2AAs!F9yYf5%mRB0T_!5As&b+HUa2`
zB`q`(=!IVF?uQMdu4zD^1}IGw0KG5(xET^9yY0#1=(p8J8~sQWP9Eh&&Xo!PIOcLA
zvk13cIHVbJGW0=tqt%ZM59I#}7^Y)XT6hT$zyo<rO8}CL#oIU(k0B2V+!~ap)mH{k
zIrC12u?RgSZ#LmM<mCau_;AP+0E~M284fv_ttoe@oVKQg&%~wcz1CuccPmW+H{Vn;
z(L(WnCKB`D!3F`?j$j&Uv!@LH#)|lRaQ8Hj;crUYQ%>JIpGrpytq}(1OqCJ75(wGw
zKtKRmANRb5|Mq9d*^5HVs{M+vGLi|H8%qKctlpMPBU-2|Apa+Zo)+3o_a9n^f{3n{
zKQ<h)2)JT>N5I_`|BR9sg*3SP449<}KqMLvaR<860JNox7Y~+~*KUvX&2=2<*u|xM
zM`#g}7mn&-6oslqM*x}vfJdz{;Sfn+|Na94&>Y}<g<cul{qq8t&wy}<<!%SXH|XLx
zl0M}nVWn0o>Qash{>I^q9Jt#7XaN?WWO&hrd^D+(`rWK1nZ4Jz1R(#u%vZmK5U03^
zVLPcsj=n|VVURXKV1Pq;@VNfbd2)b<7#KpP|3$orgU18KvU#9|LdkaFpU3y4s#|f(
zuqGQOz!xCLy>MX8?*UD60yHU55mAwf4p2)cOgs<@<(4$nH|JCg594vQW)TVna5rU4
z61cgu58NF941zGAj=&7J28BZ+0X@AD1zgColuY6Oj*>E<%Z6sO&^CZ^Jsk}0&SUgc
zBKpP)l$JIX3}xJfUr@Rk#s7xDL_iFS8{w&SEC4zWOgw)^ID{DJ`cqgq1P2&$ap3o6
z`FQm<PAIb(vM#c=B~?xA3>tdSM`h$8hV^clx~{cU0zZ{Lpdx<@S|}6n-Jk~S$##zb
zpkBcE9RLX_0LHTtm@g&(>b3aBup-cCsKjvL-6z2$F_75T(mgc9B5q=s>iTC?dt(l0
zX$cRJqxjBWxSk<y5&gETx6kmWzTfr`5dZQL!?FqTiySF|Mkxa0<-!PW`1M<g9xj_D
z2eeOu_*+F09<k%CH5Ku<jajpCs7SIeT)T043McOBsD8KTKNCm+Xu*wmuu&{QIEKfs
zaDWqyY4jIVB-j^D{}`x}eH`hrVoJ&9@-fT1TGEN)MA;0~l=l?g>o)idPQGEfIRtdE
zLw*j3k#%B1SSjenU0WYnBMQ)Pf4?(h2qo#LMR&xM*DR`3--y)KFP@7Lfc{bD^H(xG
zE4{-ruLk!N5fk-DbXIzsqZ_%<n@Inq_dkdd1Xm8el1XmlD&)d*6bL7Squ!Tgd)wk4
zU+@&kWc88@3#$2-E~yXyl={V1!OU83lS%P0yoNo#z%G0O85i%9{XdDcg1{qeDHBx^
zDa+wR!_2zM1ouRP5Si4QNN1%il^=L(v6Nnn9ZF@BMXLbV^fMCD8wRHT(g@anbGUvj
z6%Efw3@E4G5&V~$F?;jg*!e#iBdz&=`Q(a-$6v#M=Q{6+8ljuO&70bKW$rCp6(dKn
z$rT8v92Lb;8Va+ZaP1(YY|qN}@C@USaw;nGEk|v=J9pp>2Rg)(ijf70f_>bE`$nj?
zeu(?qjSxCrlz0r=iPH~7Z;IgW(f`tz*%guS*{fT_GgL!UX{dK5z`PITfzdaBqgLOb
zL%wd&DUefN|M$?u$RJbE>6;D|;6N9Tq6A8EG`gjo3E47Q8D)mcl$80>cTGm{nfFGl
zwtmlv;lz`$lJ8%-Cb5wRT_IXLmhHq-Y_fmoKgy-3B1+2Lbc#;Fn`&t)Y!oBLx}HcS
z)xy@^%-VU&ka5lCKWa+xv96{izF;Eyz4cVCWAT49aoSz(f7BWvwQu(?uPFz?9$5yt
z&dTZ?FTsoLe`$Ivb<DQ^E6bd*^S{)sH8#uUz~8%Iv|c9;I~~GF{u_bX`lgzDj~uL_
z#x3EsK}MNm0q)7dj_}^)|7a?U&A$IAkzXIBasq3@;|r9cgcT8e_<=RafU(o&Sjo)V
zVRJQ4Xex?5l+8}K++y>K=@^ZI9(KFvr)oEp+IrDn-Tla>?ynWv5VW|?(f^}jdCpb-
zqvp-BIMvD95Oh{3N&5P^*G}KYqb^1&`b<~fS&nS3ryTDGcV^P8Hz-a;P;01;#bhyv
zKA)Q1ava-h&(xX8zmO96TaXObnY~`me;dG=fir|#8$=x9p?R4rpufk1_lc~%&I~3I
zbi9PrZA~CuyCD?qSwtFgUT#dnsU338MmlJG74t1%tKL+Iqz^um0pre#5&i>)M=~4K
zx>k#LCd61&A>`zKDB`Z$>3tOX;-3Wcp&|-gXv~njU9%e#ubZ)ZA6F(r-<>++M}EvL
z9iFK5DRB2*48i=K@RTmqjXXAB#lRXbqjoq%GIhjq4R@Ej^2&>Oj~8`nKW8Z}?Dmd?
zJc%gW92F?)e_5)kGwTZJ5JsnnF*JK-zq*K;lD2D(vDlmr*%4Mq-YZM<XfXDiOxU^C
zVU)1Z&a5-@tYo}&$XTftvmCkb=_ZVq62i7T>BDk%Ngkix<30E3qxi|-eDz+@XP8%(
zIJ}cxBw{Kib6U8RMAmCzC(N_NSZ0!i_ba$Taaf0krcaDQ<yPRhL#OukBQ3eTaf0O;
zJN`y%X85A_prKa#BoeEA;>WT442JKgShHX;2QJJ89iF+~YBCjeR-5GVa;CVQddF{;
z=KlzVhYNZ#F3@tH`)^La0$$e%n5o#V4puW4j^ujqFQb!J3D^c(_h~K_+W|X1>C#;D
zjae1R8+&EOG*cP%Hu4mG=BkMbvGk1d%>O?fkcdvM;8JSr)vdkdUm$Dj<y%HCI+F&!
zwMJ6>P6X33L$ZBLGX9s=<~iku=QvPiw?AoT2(ji;D(rc+V9%`>Xw8G=_IlRH6s3<Z
zm2noz{TCnalP+l14Cz=_vwP4lgosN?vs?Zz0iZaKGiEUF@0fnk4rIt(e58+u!!e86
zmL&fq+ZdZf8p9O6_f#d1J4ZK!^l&O6ck!lq6atCl$XzmH&=khN^&7JY8^p(d-r4d1
z_DeWmFhqqz+OUZ=zG(Hur7*r<yB&#JL~Y*Y0xTR|o?rZiHYEEqX4&3=>EtU5*t3Dd
z35$R!nh(7Fjc4<Wh7`pBmWyUwK&4Z#Wdtk!#zR6lWad>0quwe>?EwG3HRuA$7ZVCt
zl6ncgl|avyX3UJ+zO&gzL&|^!Jrh_}HBAAti0Yq~>AL_{ohzQs5*a6tqLVexfOv1e
zET)=%x}sCY_cxVzuvsU-q(P~T=ZCjY1x$)*MX?pG!h(_1M$YA7GEl(*t5RW=m`**}
zWr#GZ(yIy%v*ItuCffBgX47AQRazQYr4>?9g_r^Rfl`LCLZ-WH2x!>Yh}S$S^Pc`g
z>F~>+*i5~71c`UKV%b0R=4V$Ab<_2Bs`z&`uLoCIs`fOmA>Y&Zms9oT$(_sE`I|}w
zJB7#e)_?r}?XIS$jlG7$c*VuSYH8-KX2!2omag#gU~O?<8aJVdii=P{&?{Z<DH-5=
zd%vM2?t90dW+8h&GRRk&S*XIA);x2US(a%b+h^sLNNq75b7<|x2LTvBgU7`{a_FyP
zX8$m5(bA&jX;D7W(Js?}S?01B#qXd0WBI3yRLc3;V=IF6v28(a3)yQv(e$ByPau0O
zm2#(ISw(yzrgc`Ias5x~)!c0Uo&qEMsI`K)l3r!evfQ(mser0-T|5mR`3S<Oyo|UK
z&uMPU`)3Z*1Qq4)QP+z44vIX7)(PA(yV&<mgY<csjHJ}O=cfN<bMTD}yK^&=UJugK
zIVk<ZcW%k}yqsz_H%o6yo^H0?^iL+=NOK|}tq}ch@tV9&4csHef{dh|HviTEEP>2S
z|8QC5%FA?){42a=1PJ2@{3|RsOHY^eAG!ZQ?VFDlP&d%1iv{|;wN$h1ihoND`9)7B
z+5excE+AXQ56C`z3_Uyqt3FL{`Y&FJFHUsvRo{`Xk%FQEdHBQY@Hg07wOX+sBN0+D
z#9Xa@cvm)62T~NVVN+10Q1AcjM18u!(G99?`;!(Cifz6OUM$&gly*_LGCrr`P82_J
z^~*UH3+>`fFfXI<0}nesgT!BNKGiIi1+PkaQEH##loN4(qzdAB>3+w2DO&KUaYa-g
z*PuX1U=2hg(a~{<L_>V1Mdcp9Xc@Gs)$tKQzqv`C+nwCO3EqBClm&NS@pn3o`94kz
z0gr9Px+e84fj!?@+>zknC%5lSlGso0)`%fA?#>PhqKP0*66!@+=ND~9OE2=J9NX+$
zN&{w_uXjOoTYjB~CsLvMMm|T#r#5SgmT`aAvx5DMcs&z`o=Tct$iLQ<h>B6~WghsB
zAqh9ydh-wNxO=ZlzKijl>A-LjZj_$7*nTc#NXlxWM7#GFz5Si}Xy<^zb12&G`_8cj
zE6kuX4nyp|S!i*+IgrBJK$Ma?#ni^;8`IFo1)@v}a_K$A@Ua@stIwGf-mF7Ea8pcK
zcXX9wq9eDIqsD5Ko${EJJ*NCehh3xfq%>}Kco6KJ6!K%j85H(D>ku&_6d`f51-oD>
z#bPXDtVM|?Zjh}1F&XZG@v2~QDu{hIV($CooIvsw!hIEHWkUFEUb($jzC+`IXz)#x
zit%fbB11x+C>6^{Cp6hzE(<h=MUUB|xKrvd0vG>NHbdjMLv~~aOqnXQWt%lK9gmt8
zcMtYa$Fs4APd7gVrLoLOoMq-&9bzvh-KGCD2nI%d`+7GPbpg**%XJZ^B@`6gBir69
zbY=R4{vIcU;v78>M~3PgJ@8W(-8^fQw9>=;^;-CwbM(+3em;p_!SCgoC@Tz&ZI>mg
z42_xP1xmGq>YbbXf<Xnc-@SsJ#rv*UDNd~ys$j;)mk&e|AO9HVdhKLQ;#E1mMtQHL
z{h3Q~LQ-bh$#A#pniW&?DMq6Trm;`>gwA9-xmX3;*;9QQmBgbnybsmxXZ^uMDyGxX
zyZAlyNK44!Yo=c?0pr*e>yM4Q+4Do9k9No0(jC3=Q92JqlVWUHrG^{O-fn_9R-Xld
z4_&?7->8+;s_@s;o*YO7xn*t+hKL9}s>$hW@QWCp36O^``{52^zvYZmKT9nSQrzZt
zajEn`LLV<=+v4=>Q~TmxRfr1oYP$uIR13J^_Q?^AKGLux8r!BPM;3XeyF-Mw9|AR)
zFJ<5Cn}(4wFUUME5sp5-LwgYPvb24Fs<XDS_$h?js>ny*zrh`qfBS(>nYk}6@GrjH
zx@Z$xi=+V99g{o|-s@Q}#(0^1%?eJEn-Eh>fFsnqReSMHmagZz&13lKneyvP_3Le{
zwdHQE@yHHS2sC&0RFr{3w#lcJ=~g-F-D%dZZ(<wb&spMs*Pq8-emjr3@3teajZ#LI
zeq_@Tq84@2I;IVJKGmncx?Pgud^)KQ3#+JGYr~+SXwK!HyQ#8?3VZg`mAh)1q@`^f
zSvVO1Lk<3-(#E`Y{UeK7!*EkdxM?;0?O7_UqEfa1w<z!s8I|UyRRr^u)Ui!8Ic?BV
z-->xLu1Qzv?rWO<wK+W1FyCT;(febTJPpN?B|0zKU3wtW^!n$Bpe2QLW*O_3z!sAn
z;i0AwjGPw+pjpv1@xNYr+3|a?9x&eYr%D<JjVtYG^Qoe8&%{zQ1d(h~$4f04Hc_(&
zksMnp(8&C4?F+`;UA!Gar8zED7(}PREN-Hp30g|`)IzVp;`R7}+w1o5ClS}A+aHY1
zz3I;qO!CZYP1C=q{P_b7BTC?5FfMPfb3U$GaD!@?UCI-$R2X}*V8O4?moid{43(qu
zl7IA#vd*PY>5i@m%os(7##F=J^nH{?r`g5XQ=nnQI*G-X(pDRiqbbCDQAU5_bfu-i
zEE!Uuv7m@7z@3e?EWo{t<M5>E&o>Jp>|OEtPH56vD}&DME?lgFdVrD2NYj7l(N1V$
z;1fgmpd~FWMPffh7=)|&n_8ZxP&z}AP|E)!AsY7^U6$a^0YUtS$Za{)jMEg=Ftq87
zA@m$cIu?QVdnC?4Hz(WPqI2Vk7}w&O4Ay->H@=~CYsc-~^)4msg?a;6$i}MxLKCO9
z6GEE)#{=y*{bq;AZ-NT$%->uU>BRraGL`NPx~(U8@%P0^E*Od|V1d2!xkD2D{u|qb
z3`P*hOhi06)VK{rNJD*GL;z;6C@Scg(VYIu9gZ%iOAK>!|7=`Z%pYTNMWU{;t9&Q5
zL5U&7;Hlq@5T^KW%oCfmU@jYRcdt+h3GKWTl|{?+XEh}mlwDg;2ZI+qYYB7TKPGm{
zkN^Fvm=n6c)%l0n#ed6=OS(6uBlbzk4hp(5_)OKYM#(m_xV1CAb<I+3`JBL+egBlC
zKk$^^88G&;@;epX`Z;$}w;ieUxs@F^C!_U)t;&JJ#KrTey4<CfD+tSAS%Xa~E12rd
z9HL)@MDD2nCi_{gr00h3Fz{P_X8d&RO}<qnuYM2jWq-l(`T#fCPicy3RN_77BbgHC
zW7WHZfwT51$%Ej}X#2r0@8~;V7yy)0T7mOXHJA7~RQIZP%EW8KlCOg~t!>S@Y3!K7
ze>&%Hi_9N$K3bc<DtTYPg`I=6e+tQ-qA<a&27HHZ)5Ward6iz#t%oIDggUK<9ovIR
zHGwT&2va#@r_Rp|3<1MkvGlk-h@Lb*O~y9B!)Pvs?0eL`sDY1-x5h5amtBh3>QBBG
zal8HjWWVBs@8USVoMQWbAl2G*`1LTASJ~Mv9q4Yr3v*KsRrRApxAtQIwtFlBz<OZ|
z=1UtO_-Gk$9RU}sJa7+O-*sElgK!FIiE&J*AyrOY4IAqWpS$d)N-gA)v7}xp!L82D
zS54qw=1Q7$YN_;Pl?OflolW=@Li6kuU-s-sHTw9T!O&5=lp;~^bDqrUoK>fc(hsMo
zd$PQNC$;fK=F~!h@kOCE$A+gB&eV&6!P$O2?Co*T^L>C{&$|m~fVv~3`D!FGRx$_k
z>2@zXXI!#l+cQvpUPrbrLQ)6a{Mnddid@n0hAp+KW>~b(?<6bt+|X3Ie(QYK=7*&4
zDfp5<CP&}0>t@XE(k#JIeemS@>Bh(>gj-G9F@Sj5o#ah7Su1808snd=U$P`hvSm~3
zK<wZ3q^HkYzWR8-;JT!9361<MKvctQsUi0W5sXhI;P21OxoB>GVsGfXBvcF6T7uME
z==2D(o8v2jkE?hOJ~S}Cbt=%sFen*BInMC8w0zBTifh9ST>pI2u)g^W?49QX*~~2Z
z@{=z5HpKZ7>Lr4vn)%9t$1^Nv^>ap=uS<iYGU%+}r_EL!=A~{Xom?*3&|tYv-$IvB
zK6B5R>2uFX-E=0osJD(ZD;5VULVVCZ5{U39TENFU4JcrcHa^SO4KZ#BB){U(e2QX}
zQcC5fkg6MJ>^=tPpl1-SC(M|whR#Uc<|r23TYYy@mXG8SM-tltj+k!E-)2cq<Uc?%
z`0nH>7YSSh&@(19!=FvE#IPuD5#8aiU}=MHUi&sH8uGc%fS>3z*-FJ-0a0wrBs}}u
z5i7m!u<A9}gj7b<Zz|p0EyGZmH**9}j9aRq$@e6|j;iZ-<iGS#j|*`IdSoz#Gudva
z`rw|u^p=zma0<$>8MCKkWvOQ}UG56jzz9BNf(0hrCpSstXtX9Rl-+11#Mt6@<-Xd;
zJ|N|7ki#B(vw1zI7C*!_pebMZTn*Bez+6{$>*^P$|Mu!+I;O7gg+Iy);=g?kHC&1Q
zt)-m^k)4TFFNt59*HEE_3dyHJAjGQc3A+2Pg7F*_8OkOG&{G#BUvyZpycBUvh;=!J
zkJ$VUArwpVr>p_CE5X{Vuvb9D?-ko6|51${Px=gntVHaSf%cqIKfv!ewLu<qEbov@
zFv^m45Y+y4-n%32{_pP``<9avV#KMHKgfOt<MxofTVpC%%2O&zJ6%%_&Th~70T7g8
zkT`St9o^YxWZZ4YEs^Cg!l1?1Vb-Ra)g9bj9lhc1460Evr~wWUT0o$(<Al<kznN0z
z;byC-;D)3gzUuYDzMF!?KvKYC)3{pYU|zCTD6ztw+RZS>k*^RX9_w-0;v}n9npXJe
zp8p)ho0PHwgIip%{{t01;Ee`@=k`8FJYYT|`tJRJCw$+#;_0}`QA!Vc5~GKEp7H}m
z!aJmz1J-v{;Dr7u3eIM)=RBl%^I5P7uSTEpGvM>a#QmHL;uKcIt)Po>xiZdwoos_;
zLR9URc^yCs%cVnfioXR}%OS3@GK4u^<>82`K|&L(;N1#h$T-zEta4+i)F4H1R`3D^
z0vWH>H<l9Ia#bN6a(tk_8Yb$7qBt?qd|sBI0sCJ-!ycnGiLf9h4b^T`6zhd}zP(Ky
z9a&cHXxPVh;8Dj_rK4aphzZKy-h0Q#2a+7jAzrh+Ojy*~L8qexMVGh=^Nas+2igxR
z>1oO5<FrUey7)08A#f!<?ps>iQ`YXfwkZi)fvHQjAi5uI`rqK?U#aMH8#UAaAWx)w
zEk}r(n61Ad!9W53_3kTkZgv=W^5shGsiL%`(vn9fm-FoG42Jgi#H+N`+rq1~tgNif
z`A|3h6V`zC--o6ac^;O@&I3{+%g>s0O`P+?22q>Gyn&0D1IvQqd7H<1%uQ+oQ35dQ
z`Z~X7KK>e_F<Ov+*!OwzxuGaIZMWJ_;l8uHrTr2S6yJ{=uLbtG^BRP-90I9$X=$`t
z4oe`ZcxX1yUQ^gTVf_;2AK;3rS$Yz08Q#PXIJwCUGbDPYto8r6!81XZagZYCJruXv
zspoqn=BC4!B;Jb7Dm$o2Js<lp&_7D4{UyfB^jUVQav;jOXSk`_t5tf!c4$kU9(q*0
zTeBq<=kb~A@J%{Uop6_L=hx8wD7h%SnqjYROcvw#^%T6c#uGkW?$t(M_*1N*VgpL<
zJU2HXnT~La@nXu?3*(;SONC;uodQ*V8w^HyH7N{P1>IjME!xKm6@%?uNqN6$h4Z)T
zhyTLA1uJZPIC4h5JmA&w`Vq#i;7?G4Ro@g2uDjwtMNPpJSLzS(vk2I?gk){|?aI$j
zffIDR(f~ecf*SJ!W7<ZxCx!mx0{8Hx+ADVZG6S61)^9+rEH03XyxMq7CBY^FqBOw=
zZsAu)m`Oz-VeF9)u}cp;%&>o`n5CJ-TjjKqB2x9H-?z`%17$ky&8o-@<Td6hHF$cj
zkp3a60Ahy>ASzf1c-q~rCur<S^sQMMGS$Dl$@su-u2xbIP&TJ3kfb|WsH*U(M6-XY
zgwJLf{!WxO3GSs=AL3p8$Ir%bMV&rfX(G9{WLY)cGLSCugBSc<O|XgrgZPUz>xrsB
zfdPEt825F5;qT&4N;V<_Pz0;eIwaT-m<3dLbgn8OZaCu{7sHO({$*M%PBnI2)|R2$
zMcfcxQLBVO+;o4boaECFtm@=X$=`Y2{KC&Bdc(-LZI9LXIo8a5G#^Dl=L*Ua^kv+T
zkAL~<Wk0D<kX+s&x$a=%t3ZbiRWsnsp3T^?^{T_{NVETx48mjGS%R!@7~#Ct^xLr=
zt@<%B$Y!agWlp)UvE-sJt8PF!4-ne2iR9V(f3fs8yQ5S+SQdZ0=IR@Pmz?S$gM>C=
z=+J9!8DUX&ZPX(8{k&cBH5hOKCy3<sX;zz4?f}xMp%{6nF7~8c25HHzQK6;?uPk@R
z(Y}e<R_F=9OYR~DP&)~3oHq##BYZ*(1Tx;4c&kVUf@?)y^)K9*zqN8MS?0_q-9^t9
zLbdpai?L}IKn=aa?H(#%!{_9sek~=NyK=ycuk{U2hKC82&M9ipn$h{&tfE=fweLuA
zC`wHu2HnS9MA@`voS8mzp*2KDHQF7)2|fvC^3Z6YI#rV=3Ymg&v>38*p79xezkpwR
zEjEgVq<d&yb&~{F7C)KfK4W*Kdcu3hw{a`~%5cquX!UUpE>0aySJ+>w9SSHwhE$t$
z5XCY>@gOD%*@8#(?;IB7zd24f&kqP_V~m`9Y)o7j>3sLo_B=X!oxR|?t!uNw(Vyt1
zt)t}0zU8MGNV@B{%~e}Lz27a339CeY>!wg!H7|$xK@|D+m))z=X0vfC82VN{cFQ{s
z<c~)Qc~Z45!%lv3<)fx~8hwVXf(<E|AI0t7=!NQ!&d>}E6uOSszz#*;PBYvVx{Wy0
z9P5>q*~J~j%!>S$6R0S&+vTRp-uLxZ^Iq@Mxq(%`Kb@GPk*yufm*Z55C?8co(bAy&
z8mK?ho+=z~m`-s23P-Vv=w^1~tJSiy<Zvy-Kd~05I&Vco!-4A3{9vl=!noY(9FGW*
zEWX#VnX3y=W%+#9)DNT9>-vn>fOZOX@vj&q(MvbdWNYh>T6O#`ABn1|#~;aq4R`F@
zh$w93B_^ckT*-OhkQ0><8srQcXS^Y_@tU7ZxS1^+m!QwB97G_Y6gf)CTbKq7+9P%y
z$eun*5?WyuuZRM5`i9k<vJAIKoU_nvy8nH&FK+b%NkTUl2c3YA6L|zD&XTs0bDI(Q
zDb^tWFy1VPxzSLU4=dats0M9SzSi?Cwy}5s?6w898^a7wPJd__v_^Yh&wX5qztYQu
zYZ&rF*7L0~)fDZe2i@io+^Xu}8(ODYuDk%wJsu9N1vj>`2|K2YS{dub=z9T31@qdO
z+MFp06p1|2B)(aG7=C>c?>ppY1`j!GPAMD<)&@RoAL!HQUl{5>ieZ%R_6?g`KHE?-
zElz>=@xru3eiW(Msgaa59Ouc}KQ9p*!}Q2B$~ZfRw?Gh6Ea!!jNM0m`dj;Nie)sbW
zK@F&rX$f*9G)@RZ$BRby5w8QC(qMz(PFE8oMR0IvRripn{8SXlK@MO7De3Miypp=j
zP`9s`VH<0$v~aJQGvJLx;gs=gyZ5-sp|0Ps?kup2kbcmA^njD_AU8pH#Euv7-`LPJ
zaY0{|%A2J%3YPl`yu$y839bp%^*K8<$|@#<@FJ1J%K8^_Znd0kMbITiv0!rC4@l2Q
zHLh?HG)oXqG?P#&LD5D>9TO@7$8}m&CaAkd|HSXP;qX>1jr_02=br*bRRAQw*0jsY
zAXWbY8nb}!QN~*3;NiztcVu7V-Qm~j>*5BmtIHy3#9=~YGkdexXLnRJuJ937N1X>E
zD<Y%Vj-)kN$HY#9D3lI~DE&8ePHs8^HnHlAP&J@WvHFNm6!763`R~>iPMj(_RVrM)
zKboeaJ|^rN_iz$ns}!DZ4_;5>ZF8*selLs^`P1<;Q{%_Cwo&AZh-gRj-(!Ig)*2Cg
zIh3!rHyFL>3<PBlH_%M#=#6ai33n_`O7h*~V!zHhoyTuGsA5ZaM*evB)1kyp$b^X<
z-#t>v^GtJyQd(NuGGpJ@%V6F7_%_JyZd-+^duaMz+OvDs)3memU?HBlTQJU+2`ZUi
zzBb3{<px<KD7o}%kbc*WZ0EZ3@O7Yf;#%XYwX2_ood5-KTT)F25zHyUNyl`G)mHS8
z00@@Me?Ke&%Gw^ltSd6@Dwn}?SZxNE5xU_fh_b1Cx|m8+IE$c&pTUlg7j-yz5~aZM
zpr7d50S&B$_|C=)=?ueX4Zg#NNYVk*v(ldW)y|Zd6KWY&aTT=!5gx^KJWG6yDLea@
zPjpt}<m<-L+O-E4($Ws7Ycyc7UDzc2KIR<8#|T=pJV|EWdKXdx5tp46eT`nVrvV<F
zef~vjgwr`r350uA_WR{yIPf5?tQPtpEKj*lId3Yz)n3P;74QA?0Kp>{{pe(hZ2LLd
zyY7}KE@j1C*H2H#+Mmv<8^^f>a^`Hm!SOCH@IB;5bd^}=`LQ%f;+g`+g>x?kW;>hG
z_%5iRPH6Rq72ipdFQRAwXzI0U5w?Xpxlg|B=3wOCOE1pTuq&lLm2%2%yo^j=S6gFS
z3yD<&Yd*VuXT}y+QIKbeKNa?BJFExZ^qosTvQ^8Mmtk8ksreev6s@w|9@|c0G`;iT
z7no#o*_-F7*7}#)kDq{B`l{a@qNk)U?#;hlthPl67%S@nem_xcTORCf?M%IXS$?6^
zOroNENxh`%#LI(ijXcun`>|G;CSzPEFK~~|SGMJ}IP88L<{#>^_Wuc>jt{mSRstFP
zXDiFif2<dfc70h_%@r6ONlbjyZuvH6_f3Ck$)jB@X-sb9%bCiiTO#=zof7_bVzbDJ
zDAn6fdfb?0$+}PHUJXC=H4b<hBJ{h|m8nD~tvI!H{EmgxZeDlAF2~n5=upAF(k6kb
z)<>J`f-~<HE22b2)r1xCC3~GO_9`Y?eTN+8uYFfKSaCd1;zuDk4mNWq2FetjKUKtJ
zTu_cJ!~{F^^wbm9P}pcs3daw?&t7zbmQr4Kenl$F4f8U@;p11Q#wr#|R@XhX@yql?
zJL$ui8JFx$Sv28}>b9=&ap0j~133c8wc>}u{@B*<A0CU_0768Q={)ZgXvXd{mX^#w
ztTowup=8Fxv-XKjj^A_LtstjK)m6k=fM|qoE5<xy++<Q|V`XuU|CjwZq_v+9h@u9>
zm*!oEzHw*OMXH>2TKJA~+sm@kn;Y?phc_@n#)B=dAHtO%N%#ky@X*F$D$Qq<#oA-#
zZ@urtzF%z!PS#@Ga81%ZZoXM7-?hehnap>0+GmV?-#ahqsXd}(izn!PC(Rhl>H&W_
zH3347G=nD?Gr$V(@@jQ<I(T`!ZhT=|-$B#p#^ZDNEb_<SO*!md9m?Ur!#}Jf)yYyw
zWn6O1R@5l4l%Fo-MPPxrmLvf@R-M#_srWlyge1{iGEybrpUEfg2%X+835ZeGMe_*I
za&(9)ximp+>^WG<qtTjf`uoyMBz7b9)X#hLxUlZ{W)KEMJCv#+6Ol-x`eDuXmjrCF
zzrYGqf3N)_bEhxYRSUuNsQhZ2j0y|SUPROnu0ZtR4-bW?OP$dko1EUx8yby5h8nNH
z^sPBrS4#=I?=A?$#RBD1$w+%b2iVd>(1J_EYK(sVDV$o0L2rP+x|+7b(@WR#<-2c+
zbWE;Nm^{vPP0nbH%N@*)b&sTXYW*!kv1m#8>s95;$dPjc-N>&o{rZnK2&W8s<;6IT
z&e3Z^801V%V$zgSc(V0k(^B+fteA^ublXH6hkd_kRri0e+aFZ)ofCdbrLMx1ZKA0^
zi@7LKdG-|2(t2HF?IaW7a7{gqoU&W9J;T;paIeg$v)69iaq{wsQww}{!*Tsp+PBvg
z{4MK(kkOh|khTYOkN6!b-JUZ3C%4gxPIbS9wb$95{(B70;}_|>_UCc>=BCCxzXnw0
z*_FBQSH=`CkRQ_0S4HN)(IG1zV&ql?+?G+EQ*#Ae0a<o5fxm`*PgP{IJ9KTToUpkq
zq@u^smie{zvgH1k4V#kH_qv2j{@ZaXtZvi@afZg5aO+@<brCpW!gAERAk;N@`|Y=~
z-9N+TkeQn%=U%DPTc6OTHX_4K>+q;z#A~a#9kH%|H$~WG{~ozv($;7jd9tFZ!NFpU
zSlNZQ*!SMhe=!7FI0W9tgDFsWB5E%M@gQt7=ix)=X(iC^UQwaJ3w%mc!GlTRsUrGd
zg%X0ka;c)g$CP(q3qy;FDYZCOd;92uxl6Fd!?0k2!1Bl)1A<@m#b6<b+w%PYDGHaP
zfdW`8^gH<9Rgf(7k?8h~R?6S?kae?+n~c$M*My+uNu<?~zL;vr6BzF&q7QbJ5lXvy
zHR$sgl0Ny;f&t_OKcRc9wgamfCH{jq$%b<GEuJ1Z)J7&zT|86-h`nC!4z(1TLv!3*
zJir5e)mB4;vEbn%Jz}`=!ubu;fw~*|(bT=Y^fv<Fph#dA!|Xxi8rlmFJ2K8~Q0xv3
zB2=FSZJgBx1G1orKw+qXSf7l5l^ZXE$K_iVz~S3n@7+u_xjhaSJ%M7l-Gc>f6pKR}
z5-4ySao}2YQrHh9>XP=&Y{;;=feFy=fX>W%9JkeHHk3|VygVr4(V0s33+1@%m`2Qn
zNYES^u*KjXX>rDTYjovNM1>_&LYeSO5OBGb&t1;k1C0%>4R$P@8wRvbGaVHLlZh>&
zHSiSh7M)p)M$8N8lKXW;+AYCrBJ<>T4*i<6!?LGv*fgqWakukR2#t{-X09`N6?m~U
zIRhq?zBv;iMfPCX?Woh2O!Rd8yyg4jxF1!>&F7I)n`2@>kdEn8OE^(0SafqVx~r<`
zp(Hgs%rFiL`=mzRgIYp+jk%%RHdHbkPDa&$*EsbcEubDp18(qV_wXBW@r)KY|1oJG
zE}Jww)o7n@w`G_*JjH09?~$B4G{O<x1L*jNAtaEwG;2276;~o$%8myQrJKbA%?FWg
zwoQ0jyfL}}97cC(!z?=jd3X-ogzl<ZdMNtwymk+&5W=%S4G|pY7DJl5qO25^Cr&$g
zRoAML@W<Q?9D_&c?pUw|HBuxW2BhqwRjK=AISGD=R*a*2xpDO=Cl0YQ0;8G5aXk?(
z7Qe=}oA+*RnDiY~7Y}9-V~)WjrZ^NUk@aCbvfcJB^tnG&75-w|(y2YvGm``aF4qqf
zyIDj}HeFYJvpSSp9BUBqK}aWfpk*9#wmA;B4qSq-a=v!!IfDPZ8qL~Svheg_s52;m
zKO@`j>7lSl!P)bSe0VENTu)Yx%n_8~Oo-<$s926<IK!UAbZ$lneMc(_wYNCZ^b;9+
zWsjyh7m6_|*FNFVih;|~DO67!KGLrRw_Px{jV_if$M81hh?V02h^|TSnf$ebqUs#^
zcQF4f$`e{_KGBmq%@CGhF-6LG$LGAwhactGM>cVxTwP-uL1)N0e$q$zYDU;cW7Iho
zlv~q<Lt0-Gp_H@NIi`~sS@``;5)Sc5!%n`^zNuf-;~krlXrT_$&t47{cj2#%gJDkX
zhEy=89%Qx!w{>m<*>mYy$U5PMr-&J+2||72l~>?uj~%2P;{)EWh@~x9JFO8fXDGJ&
zI~sRhpD`z);vouC;=7E+EB~YRPZedE&!4lh`~7Vm!jEi>Sl6e#3I^^9Je4^K*3_V}
zBi<sUj!2ojnf$(-Ssr?K$^nbCmev@rU$qX_nyQKwkHw+5^1K!+soB(3Z7OYO8137p
zu=CWuSJ-+e@Ki+68<S_xI#Aix{fT*J*OK=)HtMG?RGyMycTu)P_;%mh=6Z6<o;zu+
zqHvL}aTcqI(I=HPJk1`eG<=e}4ps`26|5<6Co630VMM6pU@X_t`o2^-c57cs95jaN
z(SmkW0bfWx%(pBQXMO5YzMAod0^BWWUWEPHqI`=uGN@tjMB!_}iqOuBQxxn*|Lt1l
z2r)Ctr*_<JlbsQ#T4_@q-DVo4^L|3k3DI_z6Uv?D@H0Eo9lh}NIQO`6)<@><EzfY0
zY$4Tr2d~hJrv8w`8Y;Hcq)OE0NLa=(zK8zBx@KkKon5i;eVAR?g=;?o+gXIRiU;8p
zrcX4#0aJc6j)V~>Lbe#6&eWW&ZCP<oyQ$4Z;Kloa^vZgbdk|k-rVoUBZ6VM`7GW(A
zW!1YF)MT0$-$;UI3VqBaIf8!)-g^dl7Uj@p^Uv%UvrAV}0{{E&9f#T_R;O!>`&kyv
z4w?hx2m=*cvgL6w|8y^qAXb`T{_b^l^t|HNC<l(*jIy+X(T3tJq=HNX`Vg@MI#%oV
z8Da}2e4}e926@6_x!APrGDLJ&7~iK{Uf{pA4(;8446Q~D&@yVnj&pC%u(hi)J=se)
zm(6J4d#CTZ`65sD`TEVph1Nt0N7LQoOhtp;z%D~~Mf(XF^bPn6QoB0x6OA#cu}(Cr
z4Ubo4gMVlPu}mJ<SBMrZU6Ct;`E9>17F*VA@D9S`D;<dnh?1$C+v!!f#Ca~4FXW}a
z5C_`G=dgkvHbJ~u`uaRR^$dYZCgkH0m-*lR+G@X<iFD1r@-#sM2UT1RQb$SBAMR!m
z_s#|STR3{M=`_C!mWUmO3t(f#^3+49?Trn?;(vOr_}QX_OI{7)1O=Z58htF<Y9Yih
zP1iTf92g8EWoI=#!PJytYwt9+G!ihSUnZ=en>UkrB#f(O3**GV*c=-z4a@BPML1?;
z+44$sLcnOzduTbN1uo^UPOrX@!hKI(WBPzVSXqK#>ytUcx~tz`LL5G}03k{GOu{JZ
zkNd1U)5<X6B69o+9V|2(JU&dcvB2g7zg)`vG}L6_xLu4$Ud780gT9Zv-5G2sY32%Y
zZN`QX@m!JvybPKtYbG8k`M#hrnhDywgb#X8T_@5dRp;(TTDmXKIwEFeS${OI>bfO!
z{oL@OcC}ds3%7N@!?anT@I$IV6o{GpG?q=4N$ha{usbFw@}U<KKXcW4HjJ*mSG_rK
zK6ux4-{Bk*pKP5A{oE3!rzUg!1pfGPjW|*}rg$Z65D96u;y`iYd^usC$cB{R^<&%C
zmS=~|FF=YsK5)K;IN96<DM>#mVS0QQnTSFjxy951M)x(SEO$=0>c2o9Wkm0Of!|+Y
zcNk7njVSlZt&uf!H8nBQjx~#0=%>@&3iZ|3w9TLEBCOY+a(JQdZzIp(9S9HZi=x!u
zEZ=3*+hbk&);hpT1dG-z&rTcbm}=Nqn6HAQNGKK43#m)cI6kzr&N7|dT6>=;m5!vH
z=x&l+yqKNA0`@5(i%=oGZUXB!i_3L|bTzRg!Jx}Vf8byD5ULKn06|{$1iXVY73@q8
zxP9hmg@+~yv*5$@egn6eMA()_YlH2N)*qsB_o*yYZjDMj+#YwahR(_lL~f==4xwGC
zc;PM%j-;QyI74yrk8T4K-=&f`P2}P&lAE{?o!WmaipU@67`Ue~X7_ryH~e<K$Fib;
z9e49vkL%PjDg=^Ywf!AM(Y<K*`jw6op4=*n%SFYPZ30(CuW)s?$o@Yje29;FR9H^}
zj+x1z*_(oh5A!iI&FW(sr9+C`rs*$Np$Xh}d1XutbokbE`Ki-nbfBvK8a{~TRFHNu
zpm^B0*h>iTD7M0O&PC*-w375QH|i0j@p8Yfm@VobYrQgZQ@Itcq{hR7cG8|`m7Y>S
z12<=Ng+(Wi&LL*?A(q{-YBZj2ZK`gOCC(5(9bZe>v>Nj6n)N-cj4fE<c$j~sOwrO@
z+inhH%ahVZdagRHvN^^v<b2NZt0;0ab#(=fEn_7eg$O~bXawzKB=Mho;^rs6_^YK*
z!loJtZe#i<z>kAb&lyBD9E*N+hgYTO0$~N5p|V#=t`3BehiRRus3^Z}(-&Fk%02O;
z=|>?+;sd;IH}%FtQU9Ra;7J>C4&1)6ZNe09PcL9RiwCoPprmae!>3RsMJyZe+34{x
zKPe2q$NkihIfo;XUrHmmJqyJRPgSEPRpG~1k5Xle@$JPGCe%PZmty@jr$m~Ot7wcr
zH~hK;9k$%X6h26!P*=D$=C6l;o>n!K#do8WMl&Da<Tk@5l9FTSH!mW?+-XTKVUYw$
z%X6S+45~rCmXHT$|MCjO$jvm1h#V;?lMwth{Vv^b*pB@${$?OD*6kx~n(-THW;}SS
z@29D6v-5smhdi0foy*j^8t%EutMb{cwUo~+5@Spl-_){n2nZVF2?(Mc96!Ra{*R}t
z0E%OYwz#`H!5xA_@ZiDS-JL*ihv19D;x576J-EBO1b2tU{=Q$oeiaL|Gk0(I^cFpH
zPM>pU2sY)7*NuLdf{e)5u|Qf#_nTDAw8PZBmET^?IpMqAHLR5HbNrNmGR6(XrcJgh
zZNbeUj8)_CfHP-@Z);6fQ-9=H-vH%i?hBnCvQ7a@AnM!oRc`EnZ6DsC-=u)@S4wu;
zLCpxlhafx6IC4&+r-092etKskzXji*pVn4NZQRFhYz+569;m|yt0=i8D6{K>?YhSH
zuS;pfAR8(NsAW2y<}0<15{WEg?%6H-Y)aZnH5RuRzRXN|ReQ<Z2G}7UdrT`oY=<$R
z|8Hkv<F)SH#e#%2QGjsJZUTTWoI4@FC4+!fQEh)L!u6M$h-w^C+-9Mziu^#E7WT`{
zzt|RpJtJ!C=wuO=#I5GY@2?*C)%BYi%6<cFe&A^INKC}9kH8o{I^GAW2Z6c=rp8SM
z%DjI#xD{lwS{d}ZeqQW(kVCz+dmDL?Vf?_SOU6S$PRBv_ym-c`>oiA6Bwsjhx(S1~
z$HFP`ciSR@4~YJvNIs7^z8D)ip_MXV?1DO`2Nd9)iE=6=<9O$x5p%GeV>h|x4Ig>Y
zE+gB;HzT!Gcsk0)x_Y-wkJv0tR!H`P`Nxl2D;14Ik?6j}Hyy6jf71m$)B$)bv@Z?E
z9HS!2F~AY35W}Q5oyN?6<fXB4f~hDOinms?9^g+bfp`DP1%CpPCIC+;ZD%?U6}*v6
z|I%PR^kCkXjluNUR?((2f1bQQ-#PH$wFFRMbNS5CQE1kBoU*NV;AF2DeS8w)wCVLM
zXDOWJaWvH|yf}^2iD|xg9JOt9Si98$G-JM0O0A>)_iJZq+O#poVbZp7v)%(7Irm@W
z&sTHqwGV#wirHpIIq=R%U(G_67A^2r(~^AoXv_o86Zyl`uVh2mZLa2u7#ZDqo8H9B
zzQ@*;Ofad(^_VoLdKsPxH5%(osu2#fC#f}mD3xD$f-|Ia?+<h`$xGCh8~k&luq5x+
z#>x4WTksEBDA#32HO0}NA!2?}9nLnpY2!Lg*{cY`guafSS`_ic4mPZN*|re;Fl7c-
z%dNi}D!PAdtO}FxH%|vTx$l6hh3zGE(uP{$D9j~Z!ts#An-|8f#8T^F_PoNtlEF^q
z2R*OLPFef;g#E<M7&Q<<0Y0Sw)VdmzU-L!c&r$ZP1*%@j(#)IM^1AVVDt|~qcZUYa
zw%ghho+Hf@Rga+?W+%OY0;!3yIU)mL<#~+$W|HWeOp2T_6CYa%htOL~qpC06_$-^d
zv@|)@iv6%_Rp0jgQVc1}gB3t2NLd-c%DXYF9aropG{%Q;?8TT@Ns|f3d@{B%FGn(%
zm{!%p)HM+#yTt9gT9YvJLT%}E7t1@1No7Y*>!E<KSMp;>(M-1-)PEVoe4)BDOq>eo
zBB2(uWm#sSr9s}>kj+PF{|9pWyqBi%(JWLYl&-6Zn64|ds`K>K$HB&Om7c?v+JFx+
zzqmy$LTx6HC?bG6k@NlsYfEHYxozQKrKEgamH7N-Q0Nkuv8)Hnk(J2sHC$}kroo7-
z5%8ZD)aZA5oe|pfVtJ3;h}oTYW<BE}L9s*mXdnqVemNEdN4x5r_N{SaK_vR^TXUSX
zL66PFB|+sG8=)SoZP_V0HrT0h@eXTv^zj{I+EDzHx#_$d1n<$z#P)T?t(RB8S$1Il
zPNyWP&lOL>&f^(8%%KBo)T>CS_lyj5{cEtFKx!-7Bt={=`bTCE>Z(Qw4`EtShhaYl
zH(IAe>#)ciI^2ua7aar|1qZAjmJDjSOYTms(dBh9R%7m=Y<I%pL#%ocDnGWp##Ug*
z+RgOQ;oKY%&o+X;8HwTA+n_S81S5e9d)gq{VOzJI@&Ya-40n$&wSvoWV<x$S&n0N(
zXiv&-yi2qQfL`9uf!|BM@4OKcOYw$b#@x7dI;A7PMTTU?dx{RQh~(|LoVuEU`e)K)
zw4Km)2!cLkC@dXd7$O=ahof3e`)kum5eDKad)I%2LKZrF^BmBi_VsMr@cIi{_}+Rw
z>&Z((+rS}d-cnr|Y_a!{0AvQ=I2|W6?vY)V_#klE`(2h@x7pDC>7AX?%z<eB(faUX
zC&C^tv6HL-3+^30u{xoL_si(e?}<zGZLHH*xKSVm{3E?nw9O_IhaM|8=NTRm9g0M~
zx8J`Q27CJhU5i%Cp1PCnsZtO$8tKkC!0$cU#69T4M!$V^@%0#X!!h>hWenEBw}h^C
zp}xN<DHlU9P;r70LXk!lUvMfj>8K5&6*r;1{$QKT5|1Er(XJphec+Fmg6b;wK{tD=
z*MiD7Ii)4S_Lg6vsRNJ!)m8{r>@i!x)BztB$8~0(1X))mxR^pj2H#`;xVe5wN2jsN
zS_os<yg1Hl7^CV==@hFfzUBS=P2|Nh)E;V|ZZqmlQO7ImF1qKJh!U<j+mj7Pou14e
zeAuKkGI{?U|9Tn0^8_?usX>#v?r~zF%~sEEhO-vCZZm{zFiqZ|k-iU4pP8I7KIb=2
z;f5^R0=3oMz0;68=_SWG?wv5pa(~$I<qp9D-}h@Z$1=K1y`jv8bYd}8*8o={m%zXa
zbYdkw)^xl%Ar_}B$9;^{CmC71x$2>izd_eL<~e&x5prO7CEIi5n1tphmZg`uF7Q%!
zbK1qR9c>&W8oz&Bl$AV-`;V96rCK4Fc^#71s=7AWz4t_dgE*eq-C*o%Pj$JhpW~3R
zK?<nUXAV{%!_6w(Gd<~L^oz_v@6R$NxWq2%Rk%?q+4``hz;kwAv*FUHg`-%~O1nMl
zZ~bt(v|&{$=zkCoIChF97(>H(Q)=Vp4;!1*5HULVxevFh?6`+H>IVYM*pJ{O8w(=N
zN)gPi`>^&fSogD-SXRGK`%iJ+BXko<B#OnYl6)HFVv@6;Qf*Ns3a<)X`kbRY{Jl+R
z6n+t+Jb~U;<5>7JD?JBVaMu!d)9y&m@9;lq@cLcPv{Ra8@{fQ=gjz;eEYTreKb_jn
zS0=tI)BMh(BC0h`YIy(@zhTwrZ~WQPyJ8eZR?iP2O)Gjev16l%_2yIznM*|dUNCY<
zOl|l@b{<b+V|S5D$~ya0?~%d0En~he745%o<t><+F8hL}8XQvQyBSEG#Nl*fIR(Da
zAE=j@V+m|cPmXL9@YPge?qa5UErG(_J=aI!+ctHBd=4@m_crM{y61cVh!+8{3jyL(
zfDmlJK2p8Ir_;HjlYK|50l$DXY{oA9dv?#6g+%T7UYmTthaO}S|LJFll}}1GbPeNZ
z2CB(tc2eBhqNa%C8Cp4hky1Xs2A`yb_U2jN(Y>8FTZ!&cO5Jv;K??3$c5I$i3cP(1
zI^@M}_Pc71{KGfuQbpqOJEn5Q^_qn)?tihT3hOyJmU|xBb4y(dL^f1eB<3Ueio{Wt
zc}xe^OIuj&y0Ky2qg@U`y!nG8!+>LHQ^9GR7_BF+k*@qh6)Mm}w$4Spit&41>XO0*
zwIickc9Gmkz~{mEnW9nVWNT=6lMS-nJl;|XOQnLIc4mg*_^De>&9vD9J`R~0dSyFB
zR=K(S!XhBDy?|Xsi<|azY-r&AR2WCS1=qPzJwVFMN@p?KLc;^7v8ki!W_MC|`cPf7
z%6MO`2hk%+K7#mL`UX`{fW;n%#R?{-;NUh-1!jq^`pM%55X<k;gz%*ynB!Ip&f+)c
zIBKkZu8%;W;%m;$i;=DG$743iV_S`^#~ji#&5d>sj_{H|u$ThrK{L?-p66UR!rRP|
zME`DIA=zXNt~30Lm_7b+l&@YM(?mQZL9BG`=C7*ofKrDa{G%ao)H+IUN7zZ2j-Z%9
z&c&nVr_51Yn|XfMU+#fx5mSO}i&^dAzxmA9_;7eCyE>}T6>~08rb91ad{cN=5J-Db
zlSgxTt8|P!gboAzH$NSw{HS=J=NCanT6^MIjKVcj@8%l*DxTkYPM=yx)yP(4|K?O5
zz8<41F6H2mq1(p7_CvSI@j>EcE-iYJvw21?%hp4~_ZUjE1OD=Lh{;rb1sW3VM471>
z>fTolQLkpW4j<VH-KykRnX$ss^?v}}g^-{R3j@5G`hAPo>Y_pI_wp07g46?$yF=*%
znhu3pBw0jTgk*dhW#}Z;v+W6^P{L07oRU|D?A%9+)h}GR2<TsV6}guZ7s-bfg%{tx
z2rq8%A$+Uku&V#mEWKCxS=_{TyfjHdm{S&O5kGux*l-`Vfxn0+#=XGjj|X29o@o*~
zUH&1_bdWZyPUHfze<Zr`x`aBDYYbhDR|-*UGb<35<fq+(Ftca3zid&jU|xnjD<Dxw
z{b$|&rQ#J_<0)l-YkPCI?QuxwP<QS<Q2ZSEpY{2`meErJxAkcjgKg%*aZ{L;X680N
z^+3?WknG-)pH$R0zQJxzLAg$~TpC01qc2HXEoC~}`j`HL$tA8^H-h9YVM9Onbmw}4
z94Z2s))S{7!P0~%ZCaM8c=U>i^n1t51r}XFg(KhXal_u?GlfQl?1q#zhsv<2zth7U
znLn56ft5A6#P*`r5-Xt{jqnbwtRB02>8Gwk{3jIH<hPyQLZRGELpoUgl$bk_w3BEq
z7_cnu_G;(c!@IP*L(nRUG&OXNeGA1G_~?=`3V=7>dsY@0r|=I2X)y)kj{oJ&OB;zr
zT|l}?W`6b6d>UnD?`}`GL-f?sWpQ2fYya@5rmNs>1SRp&7mzwne2@PTc=1t_`NQE#
z`jo>GCM(rgqWq1E9ZLA2(Olwm!YTsudeDlRN>xcj4iFgNrO83bee5xS;MsQt-f6`_
zwZo4nRpdVb2z12;$Z!iv0|G;GlK?UfQ-DBeYJvn1A}7?8+*it`-Maw<K9JXF#KOWh
zHq{PdkCGr+ZhH(N<dw`<$_GJCsO~IdiBqEqglE}c%raD?f0;MVfADFjRHeafu!Gxh
zG?VHTzyip0f!nH~AxO}DurP(u-?so~Oicrqj`%OcM5>n;98&dx#10kfE6G9GM8OH=
zm|`qpt7Hi?K}V2K{*`J65*(>$EY+(9jx+!#6Zrw|01~(ZIp7XBO{Bd}8yOb+M>g6+
zI#V-DkI9IS<H?MZ{RISq7hIf8^P-u6tgP{@{t1MTMwF@oJ3o~$@$(i|VCPnj5{Ig@
z?5xkBY|gbJ>mZ)-fw21TIt<YZ%|#bXf$NxMq|Qc%Ys<&jNK(1Vb)er+4~VYmnAc9=
z{=g-fRzp<F7rFOxr`surPvgr>iwpw5PnIS~Sj)Nhg}qMLmXj*_kQi%*;=7dupYl-A
z4Pzkq4Ahb>V+bJQ=)fI8IfTke9dXQ=>%pYj5y~Rnp_+iDcQXk3wMl!wsKvwn>%UD;
zOA@E!gy4MXJ`CF?>M}*n>jRMw!jBr_@6avtS}P@}%)?<<Psa7dYnSTH>Jm_bdxSuk
z9I0IJs+s)XN419+DSNhZbg&HJPI{q41b?`sCp7{U!(qD)a{Gm3I|YP5LVQiN09I$K
z@Q8QPq}Z-uW;!m%qCP_P%zecgTR-^F;Ni7{)0c%d)S0=lR3hB6@Qo(R%?1643ZxSn
zx9?3&gkpx;k}U!Xq$mPf8^8Zb&yK$Zt|&XqhLvZ|DSG|9s-@2J{YjPb6Sqe`?#VmS
zrZ>D>qS)QXlQ}^bLg^-8Q}7CfdWxo7a0i{Ax0k;_d56iuz2*g`vi6xZxm+gFu+-_6
zhIRHJbGZ~Si7eDo2>F@#?QzOO$e!k57Ip->dCLBxeq0szxH}imK_hO7a<)-3ty;Am
zf)`(b)jr)oy7ZDG=l<SP<n+4$WUfz+;e97z4M<`hc_5s9mb)nCTaAiYL8)?YwnS!5
zLHppdLs|Fa>@}$`rFF#%-cyEkhPB_H2)rk%#h5{ld>{4-8*iigqdXhM>HuBd$sa3R
zbXIm5DM7rGV~ISIuPeqAOI%E=8HeVDHe0q_lcOf{StLA@V@IVnTN!0G-<n2IU1+u=
zS~E%KMHYMXd3=YI^;%UrJ$Kg2{F3{h440Ia4)B)1b;GiwTkNYYhjQh@LKi!E?sKQe
zKCYaPV9DF2en+0!?_}+M*_IJeN)icqlm7IOxqRNJYkU5akDRn!^o*EmX_K!*J7UGg
zHQs69H$Z9To5&{O@WWP3UFNh#U3M=dw2F%QL7LHjZo7O;U9YIUd5lj(q(7eU!&jMA
z_$xu#9v!%hOz!;=t$!ar9JI_^kpkWgHcH}b4UCA%8z;pZ;#PL^HQlqTB3i&)Zum39
zpXyT`oS(dEH31DZfb9{|M_w1{3#Wf(i%u*rye=8<F~_lr=9MB)G%wreyPv$|eeqc$
zO57)+GIO?BE40;vu0=*4#LwD%G+-gPT0v<Cw#}Xbe&b2`U4+!K)gSHP7FWc;PpXv<
zX+LR|qc?2yZ3`^$6Wo-0CblqpP5Qn-d~guLc=guQ(ZMKxlb`FPs%T(=^ep|#jjnNM
zHGubxZv5GL8WVWPe<~h(%EN0hAe_je&}$H>J_Y}1trKv{%6XCS)4#-6-)Kp<R~Ahx
zNoiINE*b7>mh3Zd<yJ%)&Pg2tP$xdJ!2<1n4P^!A3$@yDKn|z*Q%7%5QI)9zycTW&
zUJm{o>n`nKG*YLQi5CI}R$!E69cG)t+r1F<^DJL3L`-rl2Yn9N2S%^-Aes4d-~LX9
zT*l=Qy4HTo2WXT8{K}o&x*bl|N+!&^2ST7*3^N+%$XN73M<l}wCcr`}nTUx3_$zOu
z2Y?p$?2X>;K=nD`7-=a{HOo=T_04y7@*2Srm9xxzDTJG^(mE2e;U2?SXtUwb6yL6G
zi(Kvk1u$&p(4ziP2R&I?psq|N&MclGYP1{Xh29yd0o8tK0qF!BdV30I`UDu&7|YjX
zA<Ig;DimG(^Lj>8L6`}&ensl-0*{Vi2f_${64rj%2mT@l&^61>?7Xtuh!iiFdC*{S
zO1k&n$u#q^Nxq6m*}n`2qvbz)&rskzP-{rxo~;<7;n)hRmr7bsU!=jbVkgiR^YeHv
zmHCF}3pUje)?MJnN3AiC+8sf9Wfs0c)|iO(rs`m{yS`{Wo0QsAA5XO)E!dFNW^x;Q
z<O$GOs6>rohh>_ozyH;=n(M35ilRh|anQ=>!$tDNW|wk!p*>);A0g!|{7enPu6sxw
zqX&dG1>s?%YZ&=;3e%^FowTbZ5V>%k28(HB<-2PPOZc(`SPtLkE^1*PMO+<B9EE-b
z<Qn+1MST5P9Y4SXWky#Mlbxm%5H<JM%Ztsq*WdO7Ozn2kMy>%OB0*G9M$L{d?3iKw
zT1I$#5#e6ySkmP@#L;JDB8L;O_@)XCMn<UZ?MsbAjBD%q6<w3r`IDcX|1g>h+cX6-
z1gIJ>IvV*|yGH&9vYF2Ux<Ni-f)w^-u9JtDr#q~LgA>JgoN`z(c$~|&?5<Y6EVT?B
zfD-o9j3J>!ghjrr1s$zYB0UpvvPpeuc!$%{)H47N_p-H`Z`Hoh2OihygcJUR{=aEN
zOZ&TB61(fw_AlqgP+Z#LE%t6vvm3NchfTk+m)RmLmD2uTLgMrGWIMoYS|}_PO-^jk
zSwEGr$;cD=>!A<@P3PBHe2{QA1E?YC5Q$9^K@gNYq5y9aJ%Z0v_|6C!ga0&uOgqFA
z77A4m(|d42a!s4`4dfQbE2$ODxs`?KH1_;#(Lm_VZ_~F`-RgRZ7P5MZpkJJmC-2&g
zBs;`y2O9*9SxCk@jae=;E{uU9*evj#!Yx@Z45-GmaZy%qsChJU(AvT*v_fT?K$p(w
z*h|BWGf=xHdT-SmnQq9FGE8zqYOg}28ssXuDvUi|4ekA}e~>*=MU;6DsxK9+C4P&k
z_1OV7*Q(<>hUJ3XUBe>3=~fdSi*{v@or<$AG)JCpNvjL1r=m=#UX2{(Pp}_odK<$#
z=RV6ae`GCX>|Sa%KlB}4qpgamB9KzU_KR^?Nde)Nmz|qjnie;FX&RI7mc3zbF)9ds
zIj-tIYB@TX;+cOZ9=glrn*%v2AVn3mjEi2W!!b{1r3J_4SmTK>Jy_P@P0?oI264Ye
zky(dnXbpCmgl!XBhoJ_jxmt1)^)ZV)wujR3<W)NP6(8PtEGt2Sxip*ZJ7o^JbnAyp
z@2^?LoQF*SFFYXvfXonAC>a7#S4bxrs_lI68rNNggu`S0TH`t1LJ4dWf0C?;gDuHl
zNV^A(a_Qv?vBls}6mItoGBAAJjY~IF)TSko-h&JUI|W)&9uQ(5-si(DFkj8$(-`cd
z(u1<uOGNG=5sWYZ@oA;-Dy-5wOtQHtjf3Y%kd{ovI8zv_@OI}!QvyVH7WqZZWfR52
zEZxFZu3eSic34Ao2)7cv%=<e2UUy=f?P*z?V^_jDlGTE7`|SUcbx0%!kv~^_6H$1!
z!2jmp-7|sIo7^LIpQtv64)y_j6uAE1nfd?8a$Pxfs!{1;R1Oi<qeiOF4leQKc$xo4
z{7j;i?a{>U+WwZywmp9|P{B@5PnA6ZoMNw%_VNCVC^ztP1Q{FrZqjS9;~&zuX*H*P
zZq6#gq%r&5^n1E6h*I2*-p-(!1z>(qY8k8RfLy4#-sic~?EIkWsV`<`Pz^GV8T-9k
zFITez8uDiR5lg1L6x~GbZ*aLa$jLqY8Gi@UURLeAsh;{U)BoMIjfLX?Z-e3Hj*_j=
zb=&Jke&dF9^>*fDBE><hM8mmbtcSwmRsi)|M_Ord#WJMfC4IU42YpJh2#l1K?!G;N
z7TO-0WNSL+i-pEfzVVA4h5l%oi$CPQhN{wc^24!aLsk56tvJ)%y+6;%<&pFL?Tm`A
zC&4T+EAgD)dAQWFpLHY-3EA!c8Z3NLr<HNndk6?F9hFBR-qF&{on>)x9-B)))tn)3
zh9Tv`h=}HRC(A}O{)i(C<R0?(bbV?G>CYf+LI5+&brUDl>$aO3(bGp5W78XAeo|?A
zaHAm43fYkf+Eu&-(QlU5s#<^ECK~jokzB{WfFZO;V%97(>vSKE!Hi_l^cp05U4|}B
zDFbEc))zA0WBQS_Qmy<U3DQNY%QuY*W~Lnuw11pS9lE<A?IbR1@0sI2xBE*>b}BIi
z%4w)*Do!=~GwV%iAA2yWag|h7;-{Oldt<?)DA~@6hD1CVyFa@1vz%7Z<gA?Upc1(m
z*S+$qD~XByKtp8lU#as9%uWj!+mm4U!B5`r=`lMyD65Ohg_a~PW|xY1-d<IrmMp8(
z)brwb{TwkzW*R7UV>O9K4p`p_K4fE|3I)FQB~_glI`IR(gsn3Qb!%BkYl%ZoBKaxS
zJeBj-t@`}p4D6Dyh3@SCeCT+7Uf}+umg>ciSU`L3cq(RA9cQML>RtSxAx!voD$WRV
z9fl6ZM@qi(fIwnDO2ULw&~E}r^oIcWgQ=X&&CYeA_b(Ij{{j~ta#hg+TQJH<uVa+J
zS*|##c0kr)>{P0HhqY%q0z2Da<mNX92=rN$l_~;Z$fnsrcNQ6PP`X(Nu|sWTfYH-9
zoGHvkj~EB#1GFVfC*$7;bvr6{D0l83QbpC~QoWhr1e;*MhYsqwZx>rBiu8nRaY{_5
zTpR@ihVzuki?wnkK&y)Ekw7>pg0U78IEOSoY#-+Y^0O4BTG5uNRBynkyx4QR7i6jf
zFrBi=ofC}TWWlHrmJ>?RTC+Gr+0w9=ii-_Fnv-ouHUs~+;UTObm5NRg8MyUOFn)R@
zl>nn9v_yam3pg3*Zz5({en=#y^8pN%su4IwC1f!sq!#fG3<gJV$`B_ITBX4#(=QFv
zIgyq0H*`9Ftv~{U>M$5;mVvV!f=7r$oZ75<X>q3Z?RK@@W_#B`R>%zUy7K8O9)Cy8
zD|2B7Gx(x5LFAqW+v~H1?<+H6*l2uT04w?{v958^46k%pf)2kySICg!_{LO|8c$hE
zQ#%jTnT8%odzyz7c>K>)n0knF+jDV$&^I~HzY>D4LGha6XT>or^1DnEH^LH6;WDFg
zO{hCg!{I_`HsJIgy=+;rd~+b0SJ05&8o6JJvx1ms7GKy{YA1nwh905z6`CSC^&>M5
z7L#^1C)YV_h$(jw727o9^Niq6=(N8kuYAPO87yYxE-JH-emW%BoQIA$bR<YNJJN_b
z#uX8o(5n5_uu?uG4YNz=+g+Mx+3D}>d!cf4H?I4r<8cyHzp;-HiLjZ+nOXLq$*M){
znC&-)vJ+($j*+Q<^ARs@l>FOztu<rX8m^8{q(cbl)^M*47piq<ev>^bBT+rTb1d8i
zAgr%-IyP2(D8XVPay1iO*pf9dY3Ib=EY(&`p7E?Lf)A#W62q#rpr+Df40R;l7%Uq8
zV={7#H<mDs5t~5h>@nwB8xpi7J`Tvf*EI1-m%a#n6@MaAMAe(^%)_N=UZ`l%TbOg?
zt&-bt)C5JClRsQL$wO_#>Mh$hP*~V-s`zUP)Ec%uxL0`qKfI@omN^AHg+eNtbPeYR
z4~(W13u+)PDetJaaZzTYm+9~NWcy-8hq2hEUbSxb-RQ*1ZyL?k=?ReWA)m0a2Mo*E
zVpkkB%#>cr(TeM&RM2zx2F(;k;}}fWjnda{)`^qfa44I7Qf#c-bi?_a$aDPsIGHwz
zn=)HxpQbfv3)gqfyVlsoKy!|H=%vWlq3G!sp*w}PkiN+>2D=_hroL9L?SK3#^`!Ch
zxF`d2zZl8k?+{Cj)qL92%SE(8u!x7OE8`o3{%j@=UPrhzOrY%?rLjz6twwaByu|cP
zSt>roj+sW*pK;tzO_qN~t}tuBOytTf=ZC$!G~D7#*aKzn!fqkJe^WT6P?M;dVaxFW
zGC-ichM(~O@Nso%-fBG*%>^fEu6<N?qNJ(T3_54<o2Q}&-sD$xTR40Zih#HCHHsv|
zQWWsxo#*bMo_bhJJ_TM7&~vF&586aE<l(aV%J-Ho$DuV;WYusvW!cmnZ=F5nka2ri
zDGyjQ^27ZT%y~4}`7_H)&DC&Im_vXOEDErKBldx8wTWI7T<S+@VYa1=jH~LBG~k$`
zvZ&A^@Voo(Gzx6BSf$!OjN?QR)#s7}Ym=NNi(tYSXq2Zvr=Jm1=Y)4d23ox0Z`UOX
z)@=4y8mDPZq3v<mP+PyVu^1uhN+Q-8bV~2Mp9md3X(?*A{Ql#0gYJ}GLi=?6FQQ*0
zx~(j(GV5`KafoXFrJ(cCU$V`@C(5F?QGf_-Ilqf?MWv!g{X*vHbGki0tuxVa{1;tG
z!0-LRB(j<z%-Q`Pt_m?2W@0-I*7jggt!ynMSajU26hlcR+sm-`0QGt7XWCCJVujfN
zDWae_gSFEGv);3CZ#n?ynMUvkk=t({ScAl~V`1&72Q?A7gwRRUBGudUk_opVDg$*j
zk{HOsyjq~!k<=;1?IFA0-465YLD>ZDqGSN|PiIkZ$A{eYqaPKX(m4p#uUAo1JusX@
zi?2%;N|0rkobuZ1AL|sfp+phZj@);wXBHsLn}8gYJ8}oqGgLj(k5o@jmL!OPA4QM$
zOVWtfYJcG-mZTXbLE19*FQGwVsy{eo+^HK1VA2l7V^$htOxva?d3r4*tzbIwJfs4N
zub-hc$1lHQwWiQOvMJP=GfO+F^E!+UxT!S&FN;{w>7ooVTeE!z-4~g_Hq)du1s~Kx
zC<v{Cy4iBVjfe#EjIu_KRng*<lrkI*aUWbN)?UZMQ_V2d0odn~+CN+BB}sL2maA#Y
z9!VPpF8DV34<ETbKu6J-t3^YMP26j-g_B0eoF7GdW#x8>OCuZw^N_;1pc0;5;s|vZ
zUqcz;n)X^5j`P1!f&Id!vO8cy2K+U|UpQZ^xMK+7-<I%(DFP6^4Ck+qS+vwaY*x+5
z`8(L(RiD1jc0r^4aV$V+#Y|X(xWeC@dC%`bbPjgLQbK?S2F4*YOE17!snhQ`&-O!@
z{opi(-Y~3%B=5Bk+z7>mbTVTVy{wK39FMp}@?<-WSevuFRy>%kCleihPjOk1YJ(JJ
z1XW0fI94G$3(Xoq#vOeiIR}8vFn^F`cU*ODH;jK9cH1&|o>cm?ob9|S&*nqqj!|&^
zDQ6vb5SmRsr#C(0cWyp_#7Ag`{VOVfzLN26X6kH<s$BOtV0`%xN}iLcRpupr!9<@U
zMZ|?Zt5!^nL&1K=;=$s*(eI2fMMJgHi91woq-=)8@v|SPd~3R7N;pPG13PNW(1sK%
z)d<~#^$#qkgcx@1RQ{D>{q$!iXm*bMr@>Xbwh!OYGaPtcV7Ms(L<5_QniQ0aFUt*R
z==WdAI{Q9J_jq`&HotCJZ#?M}t5^Zai%T%6=C;V(K|THDnFDdLEw4Gdkxt;EHPffU
zHFY4Wh--M1ipw&?cg+5LJrR`Crawe+)c@|~P1VIO?&Yq<<K*oJ;tD`(a&(N4b5jcO
z0vQLQg310kEmc)p1959h3U3JDnb{+foQ|HD=V$6#F`c8t>jieY?NN68yl|(4*IFjs
zKbPFyj7z;en+-}OHLA~2Gkutmm_}BFt}+tK&@KIc*vk#a4rIbpMOuQsF|svf%_L<o
zoAR4dh2>Up<@wpGVf)`GL;cS<Nam#L?+97W{K?!Qy9W$+X4tcat!*VQGa-15d#=-r
zlhx5k+m@v8&Xwg(>xnWhn1Yt08W&U~7|DwT)o-w<tYb1?xFNP|<V%^Q!`uiluo+R?
zY&bz$NS!Peq{P?>5H*$^_qMqE7(Y+6(<5L=AN1xlEPDSiDASe?%?Gt<O1bLPG?U^b
zd~Xrs|AqO_Ej~q$tB^S<0_HV%xWa;z5;x&KoV*A3VwhJ?_AM#Gm7nce^l;vghIU}%
zF?rM5ow?a-QD1w4z<cF3kjanvxsjaSovTcbyCr$|RR>uPVL<sH+*WgQ7W7{DNf;0v
zaC<FI8|u{Wj0^LiBZ>W0RVj8=trIN01KF5N2vwnU4sFcX5!n>kzlatGkdrUVo8`m{
zxv_|7xa*SKM-CX8ib71BVTB3L$edyEV9=7T`KRW&l^F^q`nM*)A*ua#5RrUIrkvX5
zNz}5@Fu}GBR~hh9qiO@pRrax22XpJx;cRDZ5Ifj(igc2vI{`gtU*JK9=43isMy5us
zC{8N3R$i$Uw%^sTKei>HD~n%o{cFcn{i0`U+4tc+&Kz?OLSFkFbwpYpJf=Z^vzzTo
zQq`BQ?J-`QE(^Xg+{2sv=8HCf*ByJu@J?L&KAJZ%1SzN4a`WAfNsy=-<rxo-R%iL^
z3a^wQzKQU9Zm1!bxsQ$a;P+2GJ$f7A^&nZzT$a;UWdG(Kf@>BO`8fls&YODDj^8FF
z`r7M)&dYc~<`l_XT4~{lI%B_19gBNOx1gr)SCe&WP5Sa6<=V-mP-N!PWu##YUq+oX
zwj~n(TIwi31AmE-2z`+y_!V)apAf>^pCE>x1?2rX^QCfv_K{ro33n)3_hq@9bZ>BK
z2czCOxE{*rgieqw^shipVMOIx=#91Jhwhw#59spI)6gr1?Aei4C(+<X{i;{WhDqQL
zl3y&_@pjg>Bcbd(k^@U41epwCf-!ZN$*-d$Y$!&IVPZTbQC?eCiTiH<uB!o{FAuw&
z1=Kefjh<EEYUJ-)T1KRLH_u3QtSlsTE+Is0Qbi`VY2;1gVz$P3elncF)<<|<wiILI
zX_D-;JF`R0JBSV!G0`#vKWc_KTS3hRZD##}WQC@>_1@giv<<A&36AFqt=WA40;mEw
z_fJY}&#%UpMbwRz7x+IIvWP;N0$6g8H~6w%zu%Zbojp5S!Wll=c}c-^hgx|ViZ3@P
zZoIj7y4=N*8LX#S%N|LftzK$Q_!i93p_l9Q>pQyU+U>p%b}Cq&d|C39R&G&!UXe4A
zv<23Q#hdVVu5yfNhYMw!5FUn+(N*A|@O)Wxs$VK8YLkFGiubz$UVm}p$2Drz$JMZq
zFo~;kxJzT~8A~gET+J}q52V>#B;L@G_CzNI{v!-B_n{}GKmR6P&){)>J6Q-^p3A9p
zjaYCqBW=nHkr-|Q+GcW?%TFAipb)zfrfr}PhpSLnH}&(2Qg!Yl_mxUbE|6?DED{&u
z=lr$vn<-Q@d!=XQN_`y)qz-3QtDqe@Vm37R%5uCuNeb-Y{4#2hTElx5q+k7Bd$<qC
z@gk6}N-tlw{6KAXbw)dMUPjca78;-y5a?dIA<XI5B_T@^VMlCOsBzsvj@stCkFg)v
zB-kJrcI6GLF_J&uKMUaOBJQ7j8X=Qg=4m3fGb-qK7uaTD?D|qgEHGnrlPwwTl{qmd
zUHQ_T=U9AQm)aM#z-*@ae?#aQZROL)Aurh=+9k7Wal)Iv6+;nzgx!U$>g2-vSi)F7
z7SU(8>v)c<;eX*MzbvfB30C11b&w%kR#J7sHxT=9#M^^u7e{$H(8musux!^_48c6%
zFJnzK1TYn9Ic7G-!q`PbA2*Du;8mBUinwF_PDJ;W%Kn-LJ@V6T#Adke*E{P^(I$5|
zJyyf<bh|bO7I=q6HQ}ApQ1nXgDko<CTKDbVQc1X6y}I?)aYD0X&LMg$fQn+NzVmy>
z6<t;3@n~V`g%?D97h@NN$9V%P{fDT(4SYG#pl_)vHhNuE#`&&YEn9dL1ljo~&w(P@
zhTtg%i%x1oj-qyOH}c&^u)O?I68iYOQvU=aG`4g?QO_a(9i%Y*$R6(PUwO;BY3F1)
zP9{<_a)T5|Wh=Lop#Ot(gP5O1Uk(TEB<)D0^^C)8HK9p(Ko`aIA}FaVi(QJ}4B#?E
zaPYevit%LIPo!!5<!K{M1E}41M^<y{rIbQeL4*@P$2Qfbwn%>{o&uW7yv^>0i>v<u
z<?Hp6an$=;Mn(6{%NO~Be>1V{t(8;aBA9oaBLn7Ll9P)wFx3@Aw#%D)^{3U_i8@s%
z^7b7?O+1IX^3bBChHPi`hABN|jByh{A%EfA1`&~wE#(xy=$a6_?1+4vGlrYB@IOL*
z`i?KgkrqC!w=-Fc&$_h(^+Ng*_%b~IP^Nn<%WHTKp(?-G=V=~F*gFSrsIRk7(X4yD
z(^9i3^<3#Y0#a9jRP)Umt1na(zku9|QO-(oHIPwc$SCJaYlX+{+C;2@_qZaw1Qhos
z{$Y8Rwh;k;0eiZFydgGY<JOeU9ACa4O`vA#hnct!awb=*q@40W*Pn&gBWv>j#v9%g
zRnVMX&o%e+R74l5DLfVcAJ^_74ELZc_E207KMG@xAppOrUW}c}a!rNhLIJ4n>nKP(
zhrfT~g8T$c7vi(A6(7%1OTX0IuDiC{7%R@)OT~&EkWqQlR|2x1+Ld;WEjM`U>s#kG
zOk@8`z>$r+6{x~yDj?nc)quMJZwSUxyLY)OCws(XkYe6zcaOEA+~~IOqvq~**O_%e
zy?Fdpv?|3W2E2637`^$O2ZvR=4_2;K3IO_Tq;aC=FX>HkO-Tv9gS-!@(2zLQ0K)p-
z@qm|p>+cw(dl~M))Q`}>3K}2V--rd@Da_grcknTn7PZ*GxOZKS45eXDW%&6?JT#u1
zAAda=VMV<fVB1%1exZlj3<=>JlPwkb&{x`Qh(E8LWtIy_=3i=oda60axkYlO8{;%?
zRF<`Ckm^ByrIy?8z1yW;X6l=&nLg1QtK+Z%(2fQn8G9DTF(+4+L7u$5=xW)w=oR1E
z90mH%qP`)hTuMgUVC%S$P#XD*i<`REH@*ry^OQj5x)N`q>_CHUo(h)GS!}kboq@Sa
z!7oit)t~MqkVev1T<FiP|D7*h9PIO>5jI$sJx{Fb=e^Vn6Vqml9Nc*HQl1A%{sX-n
z^;#WV;U<8J?8a%qERGs77u$Xs)~TSVM`9RGFlb9cFB<fX3TwwBl=@od4ehA7vww7t
z6e@Qh>bz)&6bR8Hbyb1tj1NxHLt#j9J;_Yi{g&weGK4c%OMCS%-)V?DtkL5wCy&&&
zvkM;JQL8y-CZH_X3>{*njz%uC>ixyaTaf9%wRG3Dref>;=A&DY+AUXv{g^Qr4=>?Y
zCPvLUhCjYo*$vyDGOVxz#lxoD5dtN~n?hDf@XKCjDXxfge(Q#R&o8HN>!+FHF>K6z
zOtnR)#pOK-ooXDyl=K2sG#{Hy5nf%irxA#UYATxe6@4^s5xDPDUGWNdVoohKZ*v{Z
zJ@}vr0RH*%(jXWOE+x*z?f3Zf8ER19{fX;73i^0jp*efqwoH|OI^Xku>0yfLcu&vo
z3Y$Q0T9$~@gSns^b98Ow6?Z*`(D17$m~7)+40nuGGD4eB;UxQ#`Wk#1SFoY{hFKJc
zBu!6ai?%!rrxRMijb#!0UTLuuJ;7sA$TPuw{m4y}cnJ_-vCZ~L9gjgL*B$v+E!GY8
zPd<`+SG;OJ{zT6;(syqaR>iZqFGA%+sB&SkHE{?-4I1{LO`2gr@}UU%sZ4k2Dh-lR
z968D0&!EY~zFl>+-+cLNFi~#MbK0b#{GDN<8pl$LbEK@_O1%K(t~d{1`pg<-Ldd-h
z8WIaTxUNg?f29w%NJFE1@7w$($A?$Sy^GJ2>PO+r7BKY$$6~$BtTDRuNCcKQSKqx&
zFJtOSdqP{PFIfC{wYCZCw3a3RC@Qv-l3YAEC7vZg!!=M1u*TUR7rtAbDB-l9APhDs
zOZZD1I|j&4aT~S*<pvBIg_4ynev|Y2Dx4Y9Z?fty|NW^)ZY-wV=sKtf{kE~FBNi>(
zVu(OqPGgz=`=h6S?=U*EK*DIETo{#{8G%h0DVqH4wyV%3^4qP`F%vY2i*$BPy{iQU
z_X(OQjNmD&ty^H~e~fKehlRTgYEL);q)~TjJ+yDC%tc_$hO~a56E^th+N(vr4Cyn(
zDAXf3xb{N~EH-gL$D-Q#2j)H1(lMQn#lcJ{DtW;g1X&`O$9)I~bE32T;C&Wk6jHrQ
z(qIjb2Rqe{xP&dd{)NgO)W(}iI;rXrm<OE(bGlt%QaAuC-bwMv!p#V;5Mm`v0MT+n
z<p9A#neUb``mc!KDW{b#0@Jw#+}<lV5iH`+21L#EI<xk+<=<x>WYBsgM_8`aUyva3
z(2>qeu2l+V8Ttt_i*IT73?r2)`Mk6)!~n0hg@i4UUjle$!q>@Tb5Q`zAlVTanFn=`
zIDz##25~Y{MP!9ec@Xs5))$2Mopn#|c2UF49}4FW2=kAsM#Talnz-s_L&ZZMq1@H-
zN1;W(AY0=;-622Ge?j`Zw;-362;&>{Vs?Aw`~@jDpp>lkadp*4%`o-a%@9x2<Zt<_
z4>E&GPO5R?>C2DybjR7CZ{pjwF(0TqoS40Ph=iz%oz(d>G13<Tv`RPDD&XSXIw#1)
zFlOKF-K=o;of=$s0@`&&=CH4dh)DdkR9k``AdE(-TI=zduRYqoj7HtNAqT(qZCkc9
z6=mvN^ERP3h0o2BJ%Vwt%kUFV&N3fuj{S2aov?&R)H{=yucBbt(ZamkKb|e7&TJWY
zU}hJsPOQ2j;utI&ze>r+A(qIJr`RlV+lbZ?NBh;A#pzPPnCNG=bX0vM6L!KcTtNPl
z^HYy*c4<bxJO0`yZoxaWh#aZqjn1OU*tB_7M><^R(<U{NXR|T1f7B|(wtwJiph!Ur
z@KfeNpOvq-|B2jOc1OxP$E!Dg10Rx=O4xQsLwm5YKppV*IIG7;1VZSfl}0wwA#=`B
zChlFYEm&+{u7f1+vma*kvuB_Puob;Pd^sKTLEZaNSJS9*Fb3P5L8M5$14WsFSJX(O
ztr`p0$-|w<(|Z9ne+x=+)tIR#MN>o8;Mn)_x;h4WAU1ad59vbLx96?~rgr6S-CLuh
z)2gl`k{OOu_g+N-(S7k+-n__!C5oEEgX8jHJPV%*0&}UGo9R;8@MLZECS`5SSP~b2
z8D{e(x&tLmsc)83xZ5b#DdwzA24&}r_;Y!Hay~2x9gRy-GITZ^^1S9ieJ0hzxHkw7
z>gKuFG3qGl`R-9i;JM~@(e8yVtJaYj^+L`?q!JqWs^y+q+qZ+eHbY-wJ7RLU?%>&i
zO~<nv#9(*eFmEKSm)gwASm2$cStfa7W&L7(rDbx{<ZslXtg4{oD!AY!XZt891H-4X
zpGr|Jca@&l?S=Les6u}dwx+lC49=^zlm_@K64aM3_Z-fvx0Dz9AlUHi@!`vhVOmQ(
z3+&+fi}N{&IalkMj{jgti<)~OanyeqZ-{@>$%*(keQQk}0JNe8Uk}P~ACjW>sW_Tb
zbFZ?Rx_kqU02jq+Rb4oo&8dA;={esG99aUi&b`ZaAFnhwfqLRsJ+rtYE{v6VL&Jyi
z$An^<+y%(WhlIIJ6W$4{;42B1rKJ?UwJg4Dp5(=Guxo!f9!Hy<)#vk{dNFi^PEx&o
zKf`y!w`<e-q~#^yai(X~LfM?YC45k(!|JIRth?EK0UH+;E8-;d@ny$xT{HKq6g|k(
z`tEA!GWcu&n?F=|6x*f!!{#S~TI%tmM~_I=m>9*4oA3Wm{b;-4!iCZF{cn<DgoD>H
zxcwZq&2jx9DC4_k4B<~IXyae$Qr(E1_XFOC?3|9Vn)ASOKSzolAHTJj7)h{33fM9H
z6YK_RUyyrCq!#ES{<@D*jYhpLF3X7~CI<?HX31_BK+fo2EP&q7<mTe{#^))Ts%1|N
z8tux}>xV35zeK*|JMAV{F>qbjdZ3@vB}hlWNdD}qxpnpME;1?FuGkR25uFerwP__c
zBe)c~kpc;tw0?@d07)FqX6!)S;pCCs0cr=x9*r?%6?^P)k>#Gg!Ff%uVRH=j4)3)Y
zuB8amIO&@e-Aj*fSQ{A+ZFPTrqYM9bw2%AABZpI&*;t;hN~b-l?CcS)Zy(;w28W3a
z4hOrp2VfkD3^j(5eX7jd`z@AnUEZ;IC{w}vZhtyVD0H}mv9GExJvjmfC=<KyB8r>@
zDNkOjG0818-Vw{aiFfYQAIu~dw~x^7{M>j^+nnyX_xy>D{nz@&T0&Et)<sHvCwG#n
zd?&wNg$p@8?8B0}f$q1c4W=8H)|gUjE`k%|s#R`hBNOpAGmF?%xrs6|d0M@^9iclk
zrPl?XhlKmuJ;!)K`w2?JIPIsl9SA*9PRYc*nmU<x>YoNm#V1j$z1-GYO{mU7NKo+?
z48yrlJ2I3_20Od36R>;<mYi!4(a7eAPcI9811qqe97;zJ{#S-xR-R5tFBJo&XF5FS
zki$2=p*I)b3%4hExbBY`-X!&pcNgWMvW`B{M!6>#D>J{`bTar^oPfS$Ju{0_p#=bL
zzt_wTQU4<P!-;5nXA3SAC0cZAK*nlb{orfW06QI@_sJhDyDMRnH<^X~*5D8E>2UGi
z53jC(QTTIM8$0(P@cL4(aTGhDad6)qs0<fZ7Y${^`w~1nGvL-VyigocT>;Tv4S(Fu
z5q*`AtHm7!CsjJ}@oW2Hx6m4$T+-*6-u9d+Y1|J3M-O3~{<j5=@({9oxyBHe(Ga=}
z=K-Wi;Ud^Uk$=$?0bCwR-mlP@U@*L-Q<rDjF`^&0p=wkGSij87<XGZxYDx;ES#=(`
zT+y?r+u;~*h5(z~)ExLts&rSCu0<LWa>#cZ49@bIS#Vzhf;b_VU1m*E6g;$9TjVd!
zX@9TAlxAm7m{+_edK3)KD<-C4Y)wQk^Qu`bSQ%~0qy4d|uX`u3CHW#1)2{ck5m`fN
z*O~yYMQDs`6Pb^wJ%|)mfyqxg#Qixu@9$OT*1kM4-Pem|yX|*V1tdW%6A@+|X&<eX
z*^*ze0ws^XPo7-bKiA_0x@%OlIA{xYhK6BgryBJvqIMIe@PB2yRqd*)y|I~y*Dq@K
z`%l<^`o#je?17sBBY@X{MbVC4Uch^)N#pNDyV(qCN*hV6gg(9*9O#Px-@ovxt;QNQ
zXLDl98W0A{(7z1Q2Z^o4uYN4ibCfHmkFQK2{qLBs^-HVFi>`m6Z^i(sfX6)#fa;l;
zuSvN468>(-V-MlF;5A7ADVS{YGQRK{@nWlg=bJOF!d^AaFt~p%Q00|HO7Lg|B=w9>
z<;%)RvB~?}=2m(9yK0J?+1Ru6qmp<LR>D@{$jHp9p+1!_kope0bAZ+M*d)?*l4l=<
z2if*NuR~Z+v)IM?n29^KtrZ=ojh3SVOO9n;N`Gd0{DGw<{29INg<#&&mk7}psgG8O
zaFHqfzuY_{<x5l0IVR^;EDeU{&4|NrztdL*(CJ6{&_pAbR=j#Wtq&iFKc9_uaaq$6
zul80Te%m;t3GwXE=I-jAFAZ<hM2rvoThy`V%=5(j6|wiq#{mIplIl#{FJa3$onuPL
zO@mbfCeOl)cEC5_V<n-Go%Iq=-t60Fx&4grp##eTVu(1<?iAsWzgHJgptZNG8aXV|
z;Qw(%?Vd4&SuEHi)xf5(hQ}3?2m@WT!}wdG@jt9UI79bmyoLfOqH@azkD=E(8{*)n
z#(v>M`7*&Qw{G_z>vQ>l6|nO)@EUI7Yv3^S=%ex+3iM2(f47m`pD@Tg{z?|wu4z?N
zg|N@)2(@ezGgjy%9}%<uk)Kr6>+Smni#UD@TW-moG1*2sBI-5sUs?46eMscYN|rCJ
zh@@mD(K!{+t4LA1>s&)a8w-hM_%g_52e7wnYxk^c4PE0nQTvmfkTSZp{IY>=wPjAi
zrd(3tpe3rrZaJS7OOz2jqZ6aK<hvWcn9`m1CuGWUz9$N?g%m(!>HPiRD_H?WbU8#P
zVmn&inQdS-vclaD87GNW>*Ko%t`VNY=_S>VRH?hC7x*_nZ$}oBIu=j^Kn7GHPuN=X
z?=DAD?#cIeFeAb*1ES;hkwMhy7R>{xcf=^)2<g4uuBPxOO*3j?2KsyqOD%+k3jSmN
zzdf-%w=+o2TxI7rRDms)x*z$X*}C(%i)R+ON6O_MOgj=|w=0++HP?_!Wjno)%Z5eU
zNum%(`q)KDUNbia6G+$on%Q<01JQe$<2O4$62pRY>bow(J)d;A&C=ER&JXl!WWg{5
zJ2kVJcjt?97ZdlclMqK4R@DY_T|tML7}dead&{=;Z<1|;yqJ|sZdb4DHU7gQy<DD_
zY&eI~t%tN6YQFuQXY3_5O()j6PTw*#vtsdBTXj2Me#$LXAJx_7vU_6`I%%JhLYBXU
zeG(HR#W9@G)1D#?Ni10H55vx~p4ez4qM*-v^}Ech$`NJ<sIl6}nm0oO6h8w_EZ*j|
zUKGn+40!|UqEb00!aHbSyj#34j$OMA1}{$p#g++|IZn!#O`c9cEmZqD8-K!5xI0$o
zLne^&%_qs+(o%Jkiu53!sA4$HV6IK%$ET4R#T<AaT?`%V7)x-k&Bt8U5H_#%he;Vp
zEB3qP9Bh>fr3X_p@H6J;B9??Y@tOk)>;A|d%GS%_>-M+A)DPV;nkBormV8Z@>^?Th
zg51gJl;^Khh;eMb49ZxIL2l^CcX#JViXoTTio{bovm6fPb?x7C8affFv^m)^L4DJ6
zy;AZ+d2ycgY*n4^+!yFS*cqZc*%98~6#wGG#@piq56m7hAEoKXy>Q4cI*}p<TT96h
zmivh1W<u76;!x}3>Yq+#gDmJcbX-QA`FrZ3wtVfOlP215t6-$7^({7BEKYwwpi`(~
zUh{pnwEx6V-L{nKMFu0fNh_(|-3l40!fGj0WIdw3CSGCUvdiH%I+ce2M51dtb>(%s
z^1KY<T<(&kyZ96fA-7eHa@MhKy1MZUouY?Z;E)|iD|oitZY_wz#%V`U47xj)F}}x0
z<4d_3FqNZK5vXT4kvW}c=F5FhPR#A~VbGT2<K2p$^oVFE$>59of*eB3d~&*=y}y)y
ztCaQRoIOVM@HN6@kq6fa5dT=+&0^hNH}EQ5>Or)*l}$+2Vv@iz-}t;H_{AE%)Rf3o
zT*-do-Y}e3qvbn+wXBOz5c2`cy85Q_4(G<|KsHB;y1}Gpgvu1`>77U8azDC))k+rh
zJY7@z$CZ(^gW;y+iTWq+TzO!ZUf=@U^FQEXj|OSPf}9bRRBzW1*kIA#tq2G_Km_As
zg%&!gUcZ)9fXsV5A>^xjJlHGJ2+a<qxUK>gMuF=^Ab19V6+~d?iSuMO7)A4*g9S()
zV28<?rxjQ$WoZRQ#w!M3^9)l5SX33e1~zH@0h?CZ(+MG`x5dFJHpvDMo<+eas2;%@
zFQ@bWL|p-FrZB!NU_Q?WY=ar>0yBKW7YcyDq{jrXK+B38ObiJ8NA_95yy^ZY&oTzr
zo?>DFcXnP6+)xr2f)h9X4@XxS7RS%TIh^89+#QM+cPQ?~T?!P};(kcc;_h0kxVsd0
zFAfJ3D1NxZyZ`sYKD(EjWG0hLHa9oF3=WN{-7f&RBWDROECvvhO(64EC<DaKB%H9_
z8GsK!Gl&o*O8|)61u!uN1SmKiKyLNu04iYtEjt1w%mALIpb#jCp$2-qr31u$-FE{-
zL$pAz9+LoOK>#yVE*jHr4WMZk1|Up~Uk{)furPzqHUXlrM2vT`E}&U>0KF$OP}3~U
zLdtfR?T;mScMjk@paCMlOrrn>vrK>@pFuz$TrntRdO4ARh_YM3ctVg9fC_RK<AQw^
z0Xk8S1Rz>?kN`!V0nuFqB><6ep280>4Q9fRwm0LquGC9}2B_ahR8;U%{ZHik7gmW1
z7zM>T@zkCCD!@Czk+2H#O-F???!)^1XoI1!V(Xn8<*kB=rBN56G^oWJ4`z)=czU_;
zD<#kUPdpqmd!%QAaoB*wcxhYKk4enn|08|u_hCEZ+h7PBB@Mw(jyf;EcBZ2S3B@Ly
zU<9M*E37=+lqwM2reg{3mj!rfS`x91K`dvC4U$Jz76v*nfeAp%cR=LXx(d+UkWu8C
z|1ir!kednjt}hh?Bbsm28Ao`%O&+N~<k0E*+hO_5_yF~7Pk6P~Z@wg8i{3cY_cDX$
zG}+_JyU|z1@p@nG08MWU{{a7I+2~Y26-HJltRBP!KuS3PMW<3fPQiC|ERf%!Eb0g!
z$AHQc?C}|aXn+d`h^RWEHM19EBBa*5#-e%+h;L1OfN_#b4qAvYM1+vApx$HZA>zzi
zJF9`7J&aR>7D@rpC8B|0Bq9E;3BwG8$^8eSN&@)Y;Ft@UijBh>FHt*UMy_RGLPw>D
z<hlU-(tpmQ8*&{)XD#AqO_(L?lzO=s+93~d@+d7BhQ=roi5<;-p+&+-JZsup4PZ`i
z0)x$JNYv|K?W_%2FHjz%ZbId3h9d_Kc^;;-NbspwUMI&P<Bs^{R_0=)MO@yHe!;@C
z8qFm|Ei2jZ4l?7BL8bmOv0M}8t|e294|uW80gP9bTu9eDNSL&mG;Q+-1)JhkJ>ps}
zfYAyt|KnK@BgHtjC>ER>GpW?a=a(B`TgSTpvwy&_8-Pi!130ygfxe0Y3upmZWXqn$
zt{^b~D==K<<rZekT3{K6XAy{Hod6t}0bu>Mfa+u6&BKYqhHoTxG*S@_3p5mHn%H7~
zGlL)C&G`*$V2lBT-BB9ATMDqWXa?6<as?#uAW|4iuHF7I28io*xfme0ARRFF7MJfe
zVK9L>NS<gS&;iiAPb3j2JQ-LQOqc)+T`M4;FJOcQKttsd$X<rP-2gD%T%dd!kXsRu
z+ZYf?6;MJ9O`IZvb2wmg6}>;ePe5D2><o^#a@nJEU>(}xghwFKa`V5rPo#&2(_>}R
z8%STAU`yTd`KNqaas{yb<Pd>8f$80Z$puTE3}6Jqi9o7=WbVLcQDA1<KD+>imhwUi
zM3n+QyL&(c0^r^W+<O3<-2&D=+toaZ)^OZAU`=%gdbj|5Wp&C<41=Rn&kbopu_-<S
zUQPtSe5z6i=z9kt)&SZ<0@@(bkitv2XSxDyrjKBiKTPnO2r&HuoRdIssT0r-{ed4~
zNlajUu96a+dI#ADI^Ap~BYrQxn<ZmLe>JHYuwWY|Hwlbi9zC!C0~(}I0%j#G0QmdQ
zk6AN;oG$bkKnjvP*fDo7nbdgxyI*KSijoZ)h|_(P4KrvJciisCxNzKKs{Uwe<zk42
zBRPU#2r|5-WQth;mf3ZFU@l<*<2ea*s1%U54Q0qR<w~%cAE%|^`gAPEC`HB=fFX7R
z4%j0geD<09|0^0Wen&{aD~A^ltP1F~GGI(*zyRU^`b`4#dv1C$5#O5p6I7!tM{`30
zEGqx;fs_{#(x&E&O%M0GmjH9Q8}QKL0>j$`M64zQ{D*;IX96@Z1+=CJw7T&dcq;)Q
z!uB)(ttiJ4mc)eD+cP#C5t{u41#bRzen~CpxC^0n%lFSl;afoe-6oEd4Zq6x=*A}%
z$NO3`tAEpuAj4L;23GF%HrBsWFV?dA&m+$B&GA{c<whB}_b*0=2wm$j1F628yQyKG
z4c|Mn2!9Ky*zs?D>VGg2N_W-aF{}DU?Y>OAFFcVx=TN}3!IU#0Fi7~+G_!nOJ4&r;
zuC(;Yyq$_}A3oK*37`0vf6YYp7FQT6E4RHsW3&J!kNqZoz4tU;_5rbs6Dm;`-|28R
zA5n=FYDR9+oz>KA*y+lr<^#>X^2v!04C=K|($ePJifk*!wJDcP>vR`Zi=n>zZ`qRQ
zzkYqMtVTjO2nkc3|HO;lZZZ6zT$E&ApmM3vhr%M%gMaiqgF9FnT4r267WqEeb6pg@
zYU7hW$p=mc--O0vRbx#5@7FWw0T8FTX9MhQt-zIp6^@MHGDg`B;RwSIW;?sKnN&=#
z8~sxvdg{Zt0+|?O-?)`1PE^kxc2N2%#npxn`A1(g<zkBt|B=Y9$qJZ|Da$(YXJX7b
zb8i&st%VQN{A3#+*Apb5=TLnXJmPMDlfwH)U~?h85wV!n4aWsbV^+hKhGa;&JX1>A
zMl;V59#-4Zibj@;k4sR2+>l;&P;a)A=Vx{=Y8cB2*H~sS93dcMPHd&dhtq#K5kZti
zft;Be8Tox0#YzR=-Tc#ETzT#idVKdHx?I}Gu(Uw677R#KWY|-H+MUB#!`TrA!=tTq
zUu()`%rMfkw_mtLs3(c&;eDs%)}HY?72z8McQPrxPVXVsT*fOjkTp`3xu!aa{P==5
zryk{DU?cH9_cC^9Kr%Umi#}GPdN|!H?i;Y*@8@hOTXQaAJ(9`0>v}=JevNTb#g;<5
z#S|0A;ygJ8j*N<tI4V5zU%2O_H`DaWpglTcqAy&^@TjFU`+J#4+kJ>jp-3&5v!a23
z-5;DMPkp`hAspFE#mN0ln+_STWs-M?=JsCyt%cL`mQ3VD&P7v(9J)rD!r5|wlQ*J)
zCY|-ir5dYhhg8|F^?pJ5C*+6MQmd|{!{q7g(Fnp~d4`cr7-y4Ei!3wau=T&vHW5KH
z9%D+Z3gGFBU%78}SU~1lL*d6;^Fq!S-j?C?+|0G28+o@agI}YxI*R5WY#cEgNBLvt
zJ5?qR`1Pt346%Nx)7HI1E8$odv6EK+Nt|in7*`;_e@m#c+9tB9p+C9coH}*NnH}ls
zi`KHbPA=Iqamsl;zE0kM%-zDk9Vly1o!TZ6W^Um)%@nlTyO9uE{6o+6sG`On)_u}$
z)V;4pmjGt70e$f(=Pc0CK-sU6^<JM{O~Qb4Yfcl(B`l2WQl;hQ(7>eaMq+KNde*6D
z-of9-e38^{B7LtRib(7@{A(bQ_FAKXA)rLH-HNz4j+*hWB;uo}tfmw2$wDO*UQTbG
zx{iW1!M+2yEnB$=;JS26-7{T$@z9MIGg6QHGp*<0jR(gd)e;GvrLssZek<w*(0N}p
zKP3Mlj4=E#j4&?1&#4iNXk=uaS=z!u0u@+SJshDPzAe@tg?uPYBb1_}O#I9HW&JnH
zMhM)S`>s3PKaV48>%_Li3&-yK{dyxkYri~X;(c$=BBlklP{<wE;X59NW7<45uBup%
z_{&SFLgb!d3k$apD{n8}q;E$R2Gl$&+XO7=t0})=g>yvw&)uf4Be6SBsDFfM7ie=7
z1{ltOWt&jG{18*Y+l|liOM45)=tKTmKV=~?0C{395QhruoS3Z++1d)=zt(4tyZ`9*
z8sMa{bO>aKltbIh``IMPVkxXRnWU}N{7rsPN+~%;;4@Z>_E}MS#HQPCO^HxPUkMx_
zL(k<VZj5<}HEAz%LQ$z*eibFo<QyWYGGCCKn><Oc<?|OR*n%8+J$<Qxuv=%Lq#5Fp
zs6Y88okiPSCNfDSM(G(Zcu8)O5pvdu9WzRr1pB=u94Mz|Uo+JYf3MG3(-#y7PZVdj
zA05|nv^<`R9n|RSFR29F?quf-%-`J?=0Lxbiq%s@jx$bm!g#g(wY!L&BJtQq3zC&%
zAn42+k0d9$_dC4*O+4{*Yas&>DdtkTYvxpAcXFF+?};J0Nh88dSf0K&l%?}i6|IZ=
zm*pO4bVGDM@BzURo}A8KlY=J?>xZB)4=>STd;dKvnilH2UD6w$PYhKt-_sLdRlb*i
zjMaR)8Wo}<<+53eZ{7{2W6Pju(+x>=NpTuqon7!3>{Y+>?UCN7{W>I{mtkD^uXtN*
zO}Bm6^d_4<a;9WSIaMmp%ju&PO418ffq8-FR(v<lvQp7c5_Av0I9lr9bG}66tE0R`
zWCJ^-FLa=^VqBG)?`}VO)8u59&3aO$2+adiq}*uxJK)vWe<pX01Do%c@qk2RxW5+i
zp-p$Sw4wzk-RTkVf**AFq1K}j#>WcsQaw$dab{g(5~maiKWflozpR|oV&|;o(Q#%E
zkSK5KVaf&mTk9j;w0>8zs`)7A4$)LvP*nVi<QrolMbIIR^Tnr&B{CgG3X{~y4m<N}
zbo-61)-W>CcvGTUjdo0=&)141#Mdad73v6UiazA?3B5$@%?tus;71O-93R_0&9FT6
zL^Qs9Xpjq#G`iyo+Gj|UPG*v*VoFH9ONWiftm+b5qMMRLM`NFCMax-Q-M-!{bCmb;
zX;{pjpc~Wl3)=N<{;rrIAzXO)khl}3;H#P$SX2Rh#$2YK@ZTw?;Oi!N(e63$@BlnW
zo}bR<wD5e0BTBF)*l_Y)R=v9=^#A4*cNUn_IQw#Y`>*;B@$2vp-?B5E+X}wO+&_d?
zx3~GF8$OAYg*s%+!usBL0%kFv&A!kIO69E<1k0Prh@?kGu3}^3&X#W`?c_ud&1#*Q
zU=N&saFSB;lZnYR+Zh_8z{XAR`g9HMbyAe+$^e@$oc&10HcBVt1Gw+*Z<23pjO6aA
z&940ukJr`pq^|Gr`uy<-5>MPE&W=#JNg1iXtGL%)S1>${$6a=z1FsyOGVq<UuIY1s
z*suJSVQ0MS+ka(=%a52FNL@is{ui0etTVw3aVMBOYEo$bT|LhcgaKvPoX>x#&F)d8
zrB1OTA`285sSBy<pBSj8Q1z{(&<uc!L<6`~q|i*XfGfpUq0i36o9$u|+e5`)8)??c
z9m`)N?9<sX=e3ndTmkG8%jBOW-0su}Yp<h6pWjP3*!@e?_}rb0kwbi&OXhyl{vtyJ
z3s(LTvl{PuQoA8`buF{6b)LB*G8j#qFTHQjz~gV;r;M)lkK2N)XGf6&nI8HAnE~%y
zoD+SJV@vXaiVkHV){iLZeJVjD#2UCr=Y8tE;SW6_u3K(dN3j*hNI$daKMKNdws5YW
zGq=iXeKL?`3v_7Y&padCozGjqVV0dI_tsk9aU|4Wv5R_m4{5raYe5}r=cbwmA>)2d
zsW}x*>uHW8Rrc(N4I2W|3thid5^lsTJiMVOk|Zp)*iYr)ayY$HC$D$MGp^-HV7q|I
zz5BriXDpD*1-Bm&SC4(c*@2|dR`dDV!27G%RkP@+i<%6S#A)F3kP=ZiZEDPN>`J2=
z$cgte?{5*yc}uuX9`UxqeLtE+>{HGx{L3rBhkD@Ts;u_l-4Rw3UNeA3E@&wsEk-<U
zr7<>}z%?yqIc`P7fGJOZz$!Fkf_^uTfFmsiIbo#{+?GKtHD*`leH>u{9|0g%hRm77
zi_u8lL^53%`$?L`CeKo0?g93pSC0E!pF}N_HewuEcDM?~E${we9YstdgEEwl_q-zY
zRwCYIC@W5QbyU@3Gk(lcGTe0dWj_!*QG%ce)s*s+;g`QQOkO0pAi}0^urZqF<nB=8
zg;lb=vksIRuo}poC^62~$x4m^C#^_ObSECfR=>q{@dYInRjdyAmN2ZrV_Be%;GkuR
zQwHV3Ti~tG&TwtaThMo5dAvss8UTll%E80c<MLuB@<pIV<XcOvNOK_GqXpye#)!);
z<22W@n`pU<9At|gxc&SXO3?kbwIjRV){^IXURB{cE#S#ouqL+g5RW@4lk|n_8hDE+
zEuMWO;)T<{QkcusvYu2c=J^E{s53)s{cUIdLBTF8vivKD#QS_hPPB=NCR;5#yo!{i
z9Ly}xj}0aex^u6@j_BlNd&Qrz&7*B_NlJZ-2Y<dz&Pf#xhPA$`@AxHbruO`1p)lvD
zpoG$pH4j<0mpfu{%M3$4x+}d=<3~(u{giQ@L7{}zYFlMCo%dVQ+*KocK4yac)EbLE
z>juiCGmVaS+HVNlRjXY;6+z0sd;>*H@jl0P|3gp!_*bSU%#={)+el*1HU31lUR4R@
zc3^}hh9H`8SipT{fX!^ip;FF@1ee4}$<1p6gd_lA0zfDQ5Yqfc+W8S}jf*|g7z9nF
zMC5kr)F(mabY+v3x-R78bbrmxx8d4RDy_kLtI9~|emvmbFaEjRLLqjWVxe+I>pJIM
zTF<dvQbdc(<z=<sm;bCr_#VQ-T4)cq9$q*G&Uvo|<CmlduCj<+g;BLgdxg~>5J~dN
z0jqM=SQ#cx`h?nRmp1EdSJ4wyp%GQ7h!fU)=8mC?j!K(KPMOcBueTbTTdDe%xUrgh
z0^r%q$HwGK?1?=;!LXN<WuFD#TmH(nXy)DBM1=f#znEb$>PV?i0%6TwW*yper(fyd
zJ)3}0!Fe*8U+!%eK%IW40x`yf#0{wEO@H*U{Osvl%qf&xsd?tLhS%Qf_T3Lv=awaV
zgI~~ICh?S5x%n45)cFjV%#p>=D)IaAHk)c3r%z7q>=lb4u`7OeB=;@LUvEV8C-+nr
z2J4JEmz;LgzeF|vzJFb4@_6Rs)$l*+xy`C)zeXYEFg!$CA#@lC_BHnVM68I9ouot*
z$Jhk&NJ{tsx~vX*2jQrfrR$X}7OD5Jn^0PukCMrsU#a3;b(H2yopO$u4P#DJwrMN*
z*=YFFE%jG&2`>KEtf_3RIrn~r!}c#Jw30m0(_i2_GYY@)k+^Cre6+IfP&oAY@{{)0
zwV0obsRAlD>n!X`#`KxuJZAKq;yiA2guF+jkX{NcE_d4GlA(Eug8WN0?gKZ=^k)#o
z@PRDdO0}@wPxa0822SwqL+j6rq3js>k5;&&9w{)>yA6p`T=<Sk?T$uYrDHZ#?+pv`
zmJ@mg8EA=qm-}H&YYGv!E*s^*cgBAOndFyovJ?91Db%OcFia-a;Fe;&k;Ibx8N%4>
zX&P^c>i%h%u>6+7yuoO}Ia+J1R1_~Q^iB`{IgZ29Be@p2gGZwB8nHY4L>n7wQ5QgR
zFXZOth2e~q_XTucyF7^W%s=}LoCZ}R0E@k6?hIltjJx;?Gd$O6g8ezy)RfN%4<s8U
z4e2fVH*iP|v5p#x;WZg9hs~w?QM}Qo1-~vyI4ZL6?GlXWm6m_lgaC4gsLz`1kGTj}
zf+Ovf!EtsVuUJt0^ZR<S)hfN4{2tA^9gc`7n=ntpU?$2&I}?ffoDdO`mVtQBE4{a=
z&AgEH(Ys5W4GTWGlyBKJCVCYb&iy2xQ|LL+k73*7Bi?UzqrJ@q<0K_2i49eJp91%H
zw4;;!5*>G*c`IZ9h7T*?yKw=*jEA;lHx;@UIncFd<-7{dvrywx0t?eS%vA(1Xmai0
zogddE6~2>p?vE2w3d!9G>0a-t-%n}jh^?`Nv44Ic!ewsilFVHT{sxyI)k|iQk7C>;
zUDi<-QS36Ed<I<-L{<3Qd@0LJS;M18oOmLS29tc&#DGS>Pg#mafs+tXVUxu-wjhSA
zOquq7|J%O@!(LR@`9iFY?OZNrU!IZ0dL(fdZ&_*??K2~CSvoOcujXsDnJy(hA99vE
zj6ZY2_}wU<aHjL+4+RqiTmDMjk1t#&e;w4~Cd0W!_$g+tm;Ee^7NUy5x5dPp$Tmdo
zRU~gQI*I*4^MR)+o1RahFO6=y<VI7i!^}3rBE|w#F?{&g+i{b4vG`E)6Kjy!ir;5(
zaX)d+Z-?9d4s_ZxaB=H-i6rItt4O0D<K`YY47Qc|-*j*RDMs}=i{G9p1$sj;-;a6+
z5NCfpl=W88=-8$5KKq=R<1Uc^GWb3pMCT+q+W!xBy-RW(5%#Hpp}t3dk)q7eO6|?e
z^J=4NEE;9Ek|gPBJ-s}ZD>%ho`kPEUOq_t!dxW5*h%~s9k}~1^1E1&AoK)^=*<@ze
zTqo!E4~RyxOrBJv<2TO;m8YaKub&7Y#^zGZ$fR<e>p`}q63z|IJjIv^Lti55#Z7}L
zVe^#PB$rmkqJhn>D@|vYpLt3MmcW8X;BPb6OKtAgy_3QIPm|-;2A%|zPP*w*_jMH`
za3uJfv@4{Pfmn4%4!^I2(JCd3<;Z0m3tR**!JEbco3k8D=5ZaQGDrqzpI)Uf;*EX?
z=daUSdGafbdHHUIl|qFIWy8TOMGj@88$_AE?;>J3mACyug{PlpvS<o_sD2}jE<UyH
z#4%MLy5gN{#Shu>#CrQ>6sbDEB*(|1p-}&nHdCuKiZPx%hd!PRLA0lC9sxPY@QNXg
z?6T5{JAn&wWVc1GY>)^Qz?)}{xFgLeFskOLUYQ>~w-2<;|G9UTUP1*;=Nucri2vLP
z9^#|bGtn(TlNvY89lEf|2UGv52tlkic~=QaLUaGLH_@8Gi;NKUs4+Mn-;9Uam_(zW
zq7x@0DAw{uoq?R_Gi%Pm!J3vfp+z5WUL(Q0OS9>>C$Z{@I9&-gU}Lc()CGwTKUW^`
zW`x~KTU<gl^vWOAesYgFcHP$${Y!QIsiEgBZmi4wV@ftqRE=m4RCh;T40_AFTZgIt
zSja`5G+jFiN6)t>40$bV`-d(JLg#p(%=A-V^ZH=}9&HlHtL8lbB^{fH8oi8{{tA5H
zzG0{3&49b>$MjA|uxXC<LJ6RPlGYPtc3-@<=)72{@-px4ZTUn_MCFZN9~xWN_uyo?
zf$Q{2nKTgnjAy`U*j4ZN?PW_qf$p+}AQc>LNVyVR@)7*v7Z7_KlHped;G39keM5w7
zO6y)YYaw+!XT@#Rm>(BGN^ru`GvMj3#E{cq#0lSg>zsg$v@<xfT@6MQKdRX=@ZCFN
zXm~a;1k1&TA6j?)b@u~AD;Tje-Udto{Kt9VWdMS3L{-3^G2?H*9O&XeIV9l7hq-$d
znJRFZy*BX@d-D$5OTby@L);Luh*Y@0(!U(Qy72E=8$SVwrvwBb*o_Me;dGU0Cw<(e
zey0Lna$wwB3u5Tq9W61$2_F4kv~Uk5?~8mdkkb)CG$Jk{uS_K-PR7UFkI(78b*)m-
zb{=UIiKSQIlNy}Z7`M1_*+LkPJk3BS2Xs^F7px;~81v0AI<Uc^<V2~A^F+4>4y&@h
zZ9vxQtt9*oZ=5Gf1?pg|cy}Mc|KS$<<|g!W(U7x99VMz4-zF{`zru`6`8gXrckcm^
z<F4P=3`S_slo3i>BH&BKp5GPE_wjrP&!9Vdd(=Uk^q3+>5mR%^3L~kX=*@1dzjiWL
zpS*kTG*zoN90C1as{}L_;uXXP$q@mMqL!~+e>(a%dpLUc8ULPi3Koi^f&taGEI?wN
z_Jym4;?sz4vaj;?t+<C~+#2NcZ4bAWR*Aikpr2(7ItV;6VmUFa>Y!60?ZISI;lS<h
zt?iL4{PntKJS^%d+^rU~$9i8}LyQ#bXWB5y&8I)f7v9J-!2#uXT%UpK#5)A>d?Z~@
z%ax0jdAFD*AFKrG803I~x)CFeDC;DR?{Fx4?^osWV9<8;Tb<mNlIFMI+9+l+oWc*7
zwUw1qQ^rZm!ud<!gXOb4>NjW0zCFkCg=RVk`3Jw%H@!W<zlFX18l3Vub=7A0Qm!k!
zQL1tq=t4yBe2#9;=Phoju-~ZUcEss-MsuR-Tv5{^wt+3%Wf`cyJKj{5V8Sa#Mks4!
zANXm(<X>sh#k{M_0=)^R7*)kCGkqV5%R<I&X}A`<_;aH)X%n71;y3VtnkEYLlO>3)
zpo|*wYXWvXRIG7<sNa022ab#3u2IQ}h#XJW6IV*UMtuX}BIyh>BCpYvJ)mMpZHwwa
z<jol^FTacwlKEHmV7p9pD`iXdEw`$ldn-gzk=zagI{sb@G@x)Bl!5!8d4}Rbn{A?I
z#@|!3mIs0EpvvwrNOdWyIKIl(3Hh)JHG+Ez$~tc}ul_Kz{zlkvb_yVNnQ|6VU0Hi?
z8>Zi>dxwnGHZ!JI(-bOcS2v?pn^s;|-EIgOid~%^$sv@@u?&37(Pw0G^wbtUjjf?r
zShSbgRA6Sfx)=OCj+AZ)eW^tsWnzQHuv`MtqF8Qs8ddhb9~5HBozGL4e`%xR^b0A1
z;bRc%fNwouJYd>+|6(AMku_uDhwP{q2*=9EN!hF(0S{?Aw+ak~GoeT7*5wuTM}a1W
zOw89-`v++4t)lX-UvE*^D+H%t#p#s~C%dv2L&}^oxWxKQ0*78L__lQDhoMgn+IK;N
zSMsX}n1$D}yTJ@7UewZiFsemm!lcK)bfK0!Ms$C=9rO71))dJ)SOVru%21ExPb_;h
zoNcN0D@#1niz}IP!{fRb*u|T+bQ!;}{xb+qC$M{gbZ*$@h3xt;*F=TxK3)?h(KiQF
z>VG>^4V0EjCw)l}wIV7uwPVnJE*ATPwH`$7hgk@7F1i5ZM}E{1nCL`o9i+kFBC@N|
zd4@;273*AQEvjZ&UsB>Fc_w+?N?t5}{3ZQTW#rG|^3`yhxTDa-;Ur4M_9SWwxZm2G
zM8(DySuW>Ua(hTq#1)0<>$q8)>s+S~RhN;+<BPrg_DS}M&?Sc9Vac94P;{;)w?8p-
zAn;W&*-nt`m0T`YaPEUh<lORHCAsJQV`x>iTF%1}ruCBPNEDK)Vd>L&R6b#v+>88;
zcNxbR2mkgj?t*ym$y<6i&0Or@*I&Fnm|-<dn`}YM8kGZDFEyd6_`u>G)c2ip@CPNH
zj*7vOmqZt$wGEc%c;A$8I<a0jiy?TWSEL+pFKE70(?hkGdC4<;VI(e^=Y|+hoF(eP
zItdU`Q?z5fTX_7TT6WAYH__We9-8AW7}tHnAcMTWgltwk4JQJ<NxxL)``n%+>^CuE
zw<Ae;M8m9HG=p<mlFkH_YHQ?iPuiNyTG3@!9&WO86sK3buMFQ&d?{+=TE91Dcpd7=
zWQ}R{I_n6#5L=c*5`OI}mw!7OtXW=+K1Y1LyJVku*`g}h4m!Bx7N#VviAVh5(g$pw
z^YcM*maEo0hJ>tz>H!9(DKHcS+`wTQCE?gbgOQx%V~X%FaoF4t6eYN8e9~-YOK4Ed
z4$<?kh2n0*c};xRD<4AkY@(QLBD1kaG@%A`{_p!qS3R-YIl_Zz{Mj-)QD8zn)On<U
zcx$awk}z(Fi1!(xb9K5qVnDqAFw$hDtCgMb5wETi16<&Dq{D7A`odq}Q3lM+x=!oS
z&`X7o1(<1q#;e5>H*vV@*xBXylAJ5>7EZ%_FK&c(c7FCseDmi?U8Ibof*$Lpl5ZX%
zN}wJl>n+V#CnzJR2CK2dTsX}JJdLtSu(Q{h1%0=ryilE6hCO)yz9h%2@Dkh*N(+Fb
zQ0^HOVb5s(Jb?&SVvvAs;j<QJXP6$iXdqh@Dj-~n$*(iB{~=CHxcfucIr1uf-BJ&p
z?;H3j!a;Q_=7PHfB&w+9-P`h=*4gAt5r%v)q#A5wrUeV64TA?k-6VvJZpebsU;<gK
z;|A|-N<aaO)<OetRld+=W=I^<2TZS|dy98aG8XS}!4RR=5cI|J)q>*F9Ze8Bpm^C<
zhU<u<vrul|S8ErM#hys@=nI->Jg6+rAAJ@Y{ezD@G9;6(g?WuBx}0?>M?wg92<d*v
zs^lCGXu;2273_QL^CNH=f8mhabeNOj$w#?2PT$%1@`=tu+*0AQX=sDCX!QYNmL+P4
zh4BU`-Ou6^&*bn*j?-?KY+H$70wZQC`yCR<dsvFxIYM_0)JYIWfBq9Oy~y3-2vtJD
z7Ca7*?ll-|6EXH>s&o?W49Fr&Hw6RbpXz<e&KIHPsOjM#oU_;A!{k?=0na<63(LsC
zmabV};##h_(qDq7qppK=PClcw?Sx_8{9J)CHl9b}H<p9F!cXtKtCRA@(%K}KO)wB5
z=UomeA^GNkSoqE>eVO51cITU`4_b{mK4qSV+G42@JWFrW;0~qfK_jZ@B!AxZP5Be>
z+m4X|aik;c5?pg-GYamMVya1F{9c4yj-fbJGZDh|4eWbCMdX{YlK*^9=+Qt4N$I42
zH(uQR0bd-%a2_ne6K3@h6{_P=b0SIY{~|FVuAV1}&-xm50qX317ms;8QYth<gTyb+
zQVVMwj@Wj2`y<Y9j)(#`-9sMD%4LD2sf<}p?2s0V+-|%E4}eyWnLB`e)ijL*o#;$g
z%vUd&J%W+r&h~Cnx5c64Twl{#*4DrIWEm_U#%;e&z&__LH*+x$@qI*xQf-blnE7re
z@{z*{9^{>TQuBT~&HHj)o^~9mjqvwyT-bDuVX~j!_r!}FD!6%!Hqvo^$=poyD3U-2
zMQn8Ds9{hp+S}mVj8U}%{q3K=V)iH*pPZO`st*}P=8w2j138MTk)e<@JwUrVUvq7G
z>nR*|y4Hw@DW=xW`7i!Bh)UC2#W_x|Nm_injp*qVk)%huXN?*&C*h-*%WWAR{F@jX
zy^=B9a%xr9xw~<73!jlKvLWKsV>0O5^YA%?6r#m~!VkET{8;=%H|n4d6AG=h>a6`V
zCScjiczj4pIs$);Ui7Y7BAsw5tk);ueQbAT?DSr9YTSttl&V(~p7QB5*|ZbC*g5jA
z$qb~wb(T5d?JZ5F9;3XEb+pcPR5X)8u&65y!KzpMzM|ms+Q87$WYq>@#Px5LBjUfN
z7}c4_7;%EK^w?oV2l6~dmYKaj4McnH)cUxRZBin5QL&$NevV-Y*CM@_EW`sfG)^9_
zX;@PBZbdS!Zif|;aWSqs5O}XSu&us2&*l!<VZgd!yx=k%UsS^hN}m(Q!ajSet?x}M
zpO-{voW=gdJ%u={?#>@WmNv&Q>Wt^#=cZd}?~q`!M%1gM2pF+O1fRN1FxB)^KohRy
zv0QO7T#wRSf2X@D>Bg5XF6<lDlo4vDWa>@e<!vZd%ovO}wB(#Bi0o#cH{Sek?e6`<
zHTAHrKh1xzW-GGmhF;~5xD;SiWtCn1Q?2-FqcPWIN_Ng?NFYz_nCQT7u+l2~YP23G
zyc_iyic!BQWtu<p%logCvtE2T!27?aj5^@^mft`n3dH{^ApnI<&{HCJ|GHbGt3hQq
zpXhetDc_pLaUuLZp=N}u@8OZk<-G?NdRO4fb$liN4JJ!n@Y|3v$W*NP7JM8<gbyKG
zQH5ct7puDuRUnlk53Gg}rIB&U<1A_s=;iTVxK=D5GB|9#V={xs)%A0RhrZ*?L_Q&1
zol*mG+YM5tldDJ5>m?(-Ux$S-oxEk6$*fd>`633u=QR2VAHL)gvh>3&C73C_yYCQ&
zxiR9()Os$zto<Yp3D=uup(n7*By@)D&h)SRHA$$64W;8$FASIdt$fF6n1l2Y#yh|G
zU2A=hQQ{fI>)emztoi_k0+$=|dh%>z^)bG216sIi#72KUCzP4%J2=>&b--JED5(@;
z2$GE^KeXPZ{|mzqMSdu?EBF^Csplp|@vf?d)O3!CO1bVs-Z5$8eW5Gz^}p6o^VXRw
z^Hy+?8(Y?xxWh%FAuQftWtoqv@!)6qySjmQ5MwhHS9Tt<)kGVS>hJVYak#2*xXkBK
zt)7c43Y1;?sFOvN^!gkeGAeNUvU-9KUcrQhS^0?Tu$I24Ij46Fv)Zr4tE#>0<=^!`
zt1B-nA+|Emy_uAsm+>U|Kc}wNKN8s(r~WPVwoBYv^JJKpyF#QBoAgb7=62G!obQ~U
z{F;B8QwTMAcvJ8%4GQ)by66|!VHR-8i?2V;xo(P^zwK@`SZ(%%R@<x@j~m;pZT|Ev
z_EA+{3H+55lnsh4IoZF!`E;V_AwT>}Bj~vxaU%ApLm}voOwT1N`T7+t=Ep<?W<5EE
z4EpKXM6;35>0BGhG*=Yw5eNNxlNvh7uS-2TiC>Nf1bB6z!_}1?Mstb&-~W0u(-Nh6
z*w)ZCT$uRjKrvny^2r1X*o}H7OoAm_F0o%1GN+2-<lc4$u1Qib@<Jc^0_nzLcQj}0
zL{obPLu!^S%009?=T=lzybtY0OHQ12={;oCef?Ccp4{cOG4JW+Q^Yhbb+{(&hrA!J
z_3N2B()4ZC^G$(_s7JydB6Nn5;vM^Z7$Vagry*x^iVDQp>gzulP-${?e!s=|*@|ro
zFOqM53~rlYc)0&8o=biTjqaLDv>VI)shuc<%LQ=YAD4aZ!uP*)4Y8dOlGlXujqpx0
z9>5Xt5Xt~f?a{#f)yI&ds^O8VAH4;U*bU+A_X-91tL4VJQ@EYeUgV#Gj*NT`<=o6Y
zE}Iqe>T~Y%#SZ;4>yL*vnLRjKZQBZOKXN-Ku|>Yr9gnaxLn?bI<~QM%RxW-D!30XH
z;boa3L7Luwoltc(!r)?RTUSc4akVrH%#kK6#YKC;Jm63`D3ep26Udtr7@19Si>-9S
z_;yX3W5hc(grz#S;<bAsb3vQa#XrUN-^bh{&uhUCRLO20C;S~m!tz$QahvgL`HfTE
z<W{&5sg<X7E#XtCHw6t6$s%dX{NT-prm*+MP6J|hrRduT_Ej5M_>p|}B`jNUf0@DA
z7D$i}6ZLIwFtLSYhz@BDFY#w=cLg8hT}wK8*c6t1+=q;#F`f{FmT3%gc1gQn$;lP7
zN2cFf1*17S-79$`B46&_+r)6md%&oercVBZi^rtloNgRs{We8!DVUx<(N3M}6H1XH
z5?T^<I=mC#``)VbyZ1V7sZbmRBhHimF4CBWL;M?wSVd0;t<Zi(N7=HWV1N^^S{72K
zdvta~WE<u+nJ;~<NW^fJC;vw;S;0}NwYT`yf3zx-&u4x64D3HwzhBFImj6JbiQfkY
zA{}MPG3bSTe(gi2Fo@2wS^nW({UvG9+iQ~l`767xN4;xo#T{0@OAGy^!JrPyYrCuD
zC=}1}5A&!cRUOx?AXOc>s8cxnMxkC$?nJebQ_=jMT-MwBZ1X>Y*-;9|Q(Pf(lFM*|
zE@8~06pMy<{xI4O$~pvj4{vX6AG#G5T9s|~0<;)9k3IGRFK_a#|LR@9B~D11i6wHY
zsHPv-#L&s|q@vXXU2t-c%ohY8ke0b{HQmGW!CsOi_<f~G0!9SOa>Y;(#>uYIHh(w%
zbkz@kd$oeL;B{6S#XV+fd0y-b@7lmet+B$Wlq9i2dA=5;lu<vU(OY!P)O%}xLHMWo
zuA^Oc4HV1?B@`ha{~}46&fipDT;Mxg-I{e8xy&M&@4xSc?tJC8&4m7@3KZxW8&^&w
z1M6^(@6UnmscJ@`j@p*KqCL<nE&1OB)zLWJhB+=p1h4bD`(FY|rXDt5H6FBBxKz8K
z-XA9034UpW$Eyh2Z}Zz|kd`>9V!1i2n);@9yQVj#PFQ9q!FT?>xMC^!LbRs+JuGo@
z^1Q;mP=zm?Ec4WCPE-l;FYYanGl+9MH{WQ6!Mb#ee`EG_gkPUO@fPZs<9)iyqjCf@
zbq|x`k~eYx>K~q6b`@FF<tr%fA56)Jv))d@o4bWVcL9QR2@7p_-AY1R-yaHBo{6l@
zC~PoU^<|6qbGduuEgDQ(#lgtIlQrVc^6y&Di=azQv;dKSediceN7$(z#&G^q`|<w`
zA-BnIFVdbsJ-F>Vp!CZHX%xJlQ>_V?eqyP8HqJo`84htn&|LW~U9&8a<E?CbRi7e$
zXBASuos<2$u@}{+1l02mM3vlSw^@ZLaR%B)vI#YnT;H`2h3u{i<J{%noC#M09#IY7
zBE8Kvg75zzYBNT#TUw8bcBP_SoouZp+l+<1-8i8;M+7^&Dzai6vhJKR5)v@0$Bdf0
zhZ=GQ4JMmqU1odzh7FWleY%)Kd`90z9KQN=&zvSSLWiZhOi3VQ%9*=P=IJRs4(|D~
zj%qn+_!>eOKxs`fB>8wxGBg=?;fH<a^TUL|#cD|KPN~jTr6;Ji`<Y>p>rdi#N}S2*
z>~$0>Kb|Q?=B&z$TfA5lK`z<X#1oij{04hAvZpfFLmY0hdRC3#w)zk9WruERpQ=i@
z9J$#NMzc+)tK~hPgLRI4Pgi)REPYssy4UGEl$#rVERSD_yJAfdc3iEK@z-{A1E*D=
z`3KZo%<=@T_Y_#ryZ)rUK^OifV+jfH#h>cGU4B>NCP7hr0TM9Thx?X2uWFwlkWhsw
zUSQX(7|pQKShKq8on6EvJj!}18*(D>$8nHw<$gIQ2}7xMx09N#tGN7@l;Xe?wZ<)D
z;$$fNiKU>d!u2(Z^&`XOM9>YpWHdupG2hATrztf&{ckD%`l<bcd&K>BdpKOpzqf@b
zXB{l_dVhkkU;RAX>_1)S5GT-lDxSGJ-CsPq2dOo=JT9*_p&=D&o~bjxJWi}NAz)ao
z<FVgnIkc*KyRy2#X7q0YhxV{$h}^C%{7vWSwBH}d%R(3blHxa-OZS&_!BmmNf^3Pc
z&Sr3B%QOl<1=enCKT(||=DTg&oO<mnShwozmbV|?;oG8s!k-u3SeCJV?Nm=V?K;b|
z??uG)I=(DAL!;}%Sx#pfKT$UalZkFUCf6LN*6qi5R})_?oO+oEX3uujxhH3&?Kn6!
zn-6dWN>!{!p_8WGo6)p-zcYJg-3~k=i<tGA645uAEYkE=B3Yh-S2|W8Ih(``4H2FS
ztm;3bH<>Q^X%BNm?Z@`feu|m@zgc{|0ii`{SH*2V<q1pYE)k6p=0S^&p0SnXUHPfn
zwUTTHk=(!UeVb!l8^1GTj6V0~X2H3}`yqy<t@E7_2`Hw-xZE7jS^5Gy8M~7LUe^>G
z+x%R<28Lx8O~lHezsk30=^Duy22=7_HTF8bb3&N?f95fI?REfdE@cT?QeMO0f|j<7
zaj=Q&MX*6naq&_{$@`+47&`BvJNykZ_C+kJk^B&=azBCIZq3BG-qYh~QYnzidM+;9
ztI#|Q0pODd{OpLWZx~8&L#MvBjjEkYWz8|P7u8PqF1;;tMhBqtZ6r{u7r!E`)gk^B
z7>?-!-{&rYX`85$zeNu4dXxvh$;jvxFolB@G5>Ac(@>vbYasx~p{d|`q6oY4@4+xq
zAUe9Hd$sk_JlMdHQ(DWG9pV1Xw^NmyUu57`;_TGd#Dg4{%k04fDg!QxAAZa<ZggCy
z-I)I9wQTyNIk}pr`h!=nqDka-7fM&f<B#%4ENib(hpQ&o&RQ2h*vShXXc+j<;ZR9v
zLwMmMBxwTHFII25T$X}Z<mzus&>4x;rR1>2Yp_@0<HdIuPxKa5#JFvKm%!nStn%eV
z9XHOdl6Ce<691>nL=~(XiI$mErDF%Z3OY}Ly+BibPN&JK8LfQ$j&56rf=)-rrtDa`
zg2czW9nrsMJ=~r&50ANjoovpOF6Y;`z?)sA%AP<jtH;xmu2M?gJzwHZ*NP|WvD?0R
z3$g<FZTAX?8kOAz^#Z;x2JQ2e%DJpvsrIoa{A0evEj{x-{-|9^l`pj}&)q*)28ELU
zOkEkcMG^5yZ+}9kad&v896ms)k#M0#xP`GdLnqZ8`C&<5+Q?+EiC--7&46g7kX2!p
z{=mbhn~32OjxA!B(R$QAFV*_{-C)I`g6cUrHd6m1IZv)SkID=3g`+#K|0p%;^m0cu
ziH3KYKF$)p3%#WLqG2lq5b<Uv9LHpcuX)`=uamoqz$}=;gZ$&45$T@S``Es_$_{Tf
z#wX65ZWiYGJBTJi1D|GWpm2)6_TA7^uro2XYiWk?6|X9LTemljUR~mpp{}bU?r65W
zYG_OpH@6On^nT^JvV`qawo{j~tE`&sYV(6=*}?Mh^<!j~yo$2ooPd|=((9Bz@d8Hg
zlW~3;96$T3!7&TX^)^Y&mRV8JgHkg>?_%zr@H;Ln!7o(Upe;XO{@WI+6TmF_gH)Yy
zwr@;Qe<Q!#e#Jq2J{V^~dwx`B`tkV|4+n7|sT})-VfNo_ws>3#`sYm-l8uWgx8a{T
zIUROI9V8N-OT3>pj3|#c3`sWDvvneoTd#TKrL3XHQt-*D1(S~k?phY5_u3QznRX)3
z-HR>zeZX_yZWbyfoFHTjX}y{BC6(dhx#x+U-@D5+aNW@TJXXl|su`7;LP4Quu%IKF
zQrO%$qFPnLa<rDGp!Rf~(Epw(dX;N$p3&B17EjS=!REi>o8y)p=`M%{lkMB<H)W-<
zLgUx+_wK!55VP?@20&n7V4%}kCibQoCFl(4#bZBG1`2ghZfq?OKTl9ZW`oZu)2eSO
zS=!u=Biw=#bYjY5I&^}8Q(cKN?zrjV;Z$tKs2*$-8uXQEWIhO&3%~WN{*AAh5dVjN
z%d8<<?9iQ9q5E4JV+PEB3Q9J@fTF(FLJaLmo6P>hy_?!PB`hUsbVjwipYk+VZ6kK6
z?FtU0q?lfDA^SsfYR+dxUs-K*z@g$h@FiQ>Meh07nJtnoCMu9LNh<UGo0kmEVc-sh
zlM?j?#oN6uj*Z^4`RyY7+|WgwWRl#|u$Tv3f=X0icBWMO$JdLJq2lSUhKtEjw^weB
z8Hd(srA0>ZvAnEgRSaaOr)QdtI&-u5rA4gH)_xK&GPM7!jzyiZ5ULtQn{GPK=DthD
z)op`8C`HMM-wtj<M9s4o{~hS1eN9_{Rwz0%!-*=aOb&7uHyuab<BLVS{qc`{+>>sS
zdp^y|$WFL8XZh5p*uh%eXHKBO#m^8Xwp+$(QrVZlF4#s!EKB}Cedc=q<B)xk<FybT
z+2jT%1yW5Ys-h;)8D?eTQNJb};I=j{+iFL;Y=<ItoMrx;Mwbkoz3>%D*mOFKBorN2
z^V(aRWu6wXw3X<`o`<#{XAnDVa!I`%y7KTp2}JquSA(OM-MYy81K8EyJC^shxaguW
zu*x$kx4KieKD2JWg@lJRM=I8yy6%8-DRk7IW2ny~;O;bvI8pDHV!7;g0&^7kMxZyJ
zqYWoqdVgtz3G})%RUo(4S?l)F=;1(NQsMnH<UXNyKH&_5T57FemKD^bdz;b`Mg)IG
zjCE>ym07>eaLxXWsc`>73akmI7}`9XILg~RRT@u{MWm561Kz^N(L1}T_))Fjk9gq%
z&(`gCVygd<RT?}=rko^o!yU5KOgs^4K1tHhyrDYnRMu232q7QO9FM{9d=+d=v91ke
z@B9;sx9eC;iOL9(DPDL7&Ke9vf)^OJ$`B_>O|QDDFzOf<Xl(f47&or-l@8VXa&d^b
zsV|Wc2%99hzj}GY+tq2M1V8UH+zn@m*-#DVknH}Fk34{JqFJ?h33{WJGKsqooOU67
z|E7zL^bCLkMEKcCMW<bQWGD;=Hk=xdY+i2G(DJ|mIlrLCCql(N0YwGyXzQ4%&hlTT
zD2#r$<>2b99&)GV!ad&{v$U%imh#aJvm&(~lVt157_q)wh+ZshA<j%g9}(|nJR>$x
zuw?8Vv&5qmHfoj<;YdgKC%g{Y;yhJHSJ|~BFKKluzaBGd@(vGp=Sq2do{$}Qo0@;s
z=%|kRdRFYIzLpch;nx%-QCih;-ollTgkpqBP&J!ME?@;sx1CHt{l356@L8&`AU1`Z
z@JMj|4<im92@hY?^DxQHht*Rl+7u=IbaKw#l5xDDL$mKL?V4Y**^-4^E{Ir?Y_c-q
z3d+P{5pUg$6uK-O3lQ$0?Ap4%zE7##(;F=VcUJ^w(z<gWrWd!$fYaFyOtyt6ERt+B
zriV`<O3@Sxs>Ew2B@;hYwCd!)ete6iIADG*25tG1P1AqI$~}RLB6OqD@h<A-<^9LL
z^Yt~<^(E4$$3OUP&2ywczuxIDVo|_4C8BnaT19Wn3(>l6GS*;H&mk$tV5o2a!zE02
z+PHts7_S$yAfIQ@T+eC$JZ<^dlzM<_@zZBzm4rvP#!H1lIeyHQpVT<)hqmRafka5J
z3EHDaiQlK?30Qv2@4ee~t1AS3)2iT5A+YsUxNT6U|D~?p-pIVhdXqhD?DIVXe;w|X
zSG_)SNqjU`<8JThhtNVyd*=P&{V-jOhHVMO;I0ez#q+&HS3<Exo@+&v@`oe=!GP>i
zXcD4uPNp6lox$e;aaARqrn;cS!Ew^QM(m@PTa-;FNxJAqPIXOZ(`1DY>dDUSS6Nda
z1$^%lrc2;omOb*H_2}fmQ<GZtvTNa`@=bQO>r>S+Z@<r_35(K$8vF<Z#@UBeE|14u
zQjd?HX<XC^lO3n*#o#1IO1no~G<Fnj2GnEwDVJM}cUxV}p3@`xO^0}ET-QSh?;`l$
zzKp0Fk4x@@`Pe=+<oS)i*SH2pBu@V=_-Zr~DqW`tEhAVI)5^i#NmxTrJl;*%yIxA%
zQfatv>4xuWyHhkv-wg`rtxhXuaT|(N)Pc5b=cwrB?n2+n4R-8yTRT<fs~SO~Ey%VG
z>Lus#i%xt3O^0FFQimSf*|VX?QYn}f$y3M|f_wu&&TB1YLxOU@5K*!EY{k1jU(T!g
zHw{Aig16F1-|@BuE3<8z7CGz|-xkxl`nI3j#0U7fG_r}4R-t0c@_iV>a4|M7Cp-l&
zB_ieu%e912vXzeS-L2r4%MT-lNN6nh8PK>payhTYdlq3b`C^|jM$T7#?#j;Aoh}(J
zTyntyyE0Zd#Evn3Gs4i;<GFX%_A;vb)F%9Q?_;|Q+cuBJ=uUT&SJA;N>9ZAu70E!X
z(v(Qj!zbaKmgAkr+ZYb|JUAyaa&O#UL$)6A^-cl!=`F7XW3bz<{Lv4|2#K5D1oT30
zcllgkTW0OOhEeO914Gb)X6Xz5KI`t-q#9x=3a{yY{GfW0c*SiUo|E84*TOZQPv((Y
zzg?;1bu%z+A*dYgsET-MJ!?6uJ&o<4y;j44adb$EjTHWp=H#61$yYDjRo7mA%B1w<
zr1@PuGm9zDcACF0B+a}P;^RlUMAejc6=~JK<nJP5r6%J5KIo>MoIU!QWS>=yEs<P}
zh0;B|`hh~&2N-F0$A~38w&}ZNtvwQM8Vhf3U%cB*!ILf?sK^+7c(8J{X_6vT<Q2Q8
zbWm6VPWLSr@o<<x_84|xwjFEyLWDf->O|J_4@No-50`g*^{;~Sg7Lj4@`Lg{8Fat6
zrp3!V8J`Ku+GYoi&6rrNsE>@p<u2_S>JQ{5Q3##~@E$tf9mkU0Ge{gsH=A9)nLB(d
z<yBGHeA3-hw!WZsGOO&$&`1m9($jD8eMBvDuHnNAOXsOq`s+T{!Ed=yA69DStw_cF
zizjL0vKg^oq}7;6Ut`5&GZjM!Hd_k#ZE!vqXqSbIE%-&My&*_R8===Rs=`f350CMe
z#2PlXvq97cm~TN7#?x*DQG&r^i-=xW(s&@$wL;%O;_b0!{`BLUl3P6&NZiLu7gt5;
z-WoMc5=cjX#G+s);u~jnAxvIz8E>ynIzsEz?X&foC1vC8trYxvLu|z7lt}Pf84dOI
zHHH+tuxThQ^}zYKNEOxL@2u5CW5uV`qbB%CLa2*c`Kr}2-{)qh{EhCQkCdBItO8HQ
zW4B$6aNVPod^vY>D(8EQKI?l$*~1$uaZg`?$F!W`jWc0KUs3ofoBj}^m=AZgM7@BA
zJ0fSe{WLD4oh;1H<|__9W^4GEdXrDlyH+=$RCu;|p=#J2BiU%qMPE#7uz5Ha`aLZG
z_Mx)w?ExaQ$lj-P^e<G*iD}|R?f35}#Bb&9URJcj6T##*z|Di%iyo8UI-?2|z^W*t
zrJ6jbA7|VvXW^BKvv<?DGDwarv^<0BVW!Of5U(xq5qkC<9EdWsJU=du2vA}Wd?0)c
z^Zv(+y%5;@A|(=PtVg?ppAn@C`y5>s(Tj=AdKX_&(<h0zF1w&?TK$`@cM1NKN2^L2
zZ!_h1ySf4~Jh6A{pdH0aR1wygowmlw@RvY^o9w5mO~cNAB3jCr9}zlLX21t^kJ)#T
zngQA!0=<~<=&kI5SME9Q9cVYrss7YScAUm$CJQ_Si_ROU<dQ!(NWArB1qiLDb8x$P
z_JITE#I8;!Y90Db8izkpLUkYi1boued2Zq1Cc1EnkPLb8qaR}#6T2sgu_*9<6$mOq
zXCqKrGJZwCYx?T7>vq#0Z8bt8IR_+3CeU}2=GIyt?JhKeO<QJ%=@fn?aftl{!5lb#
z4zZoXRwc>iz=WWNqZINAP+?a!#1N}8P%5c57AUS!twi~TMJt&`;=kMZv`88v^rwn5
zaZ!do*$8WQiMEc;5!vqae_VZKR2)sTErUyNcXtR08r<F8-QAtQkl^kv!5xAJ9|D2k
z4#5fT?)p04y7#TO-XE&_)T!>O9@fm%p1t>>pqfy19BX7cMLSr^hkbFZEB5{j=piAE
zItVaALrYIXAv`{Kj0-EeQtN4*fHghbkvPN<dp$s@=Rt)1pv$<oiCK+d#U<*uZ!ZKT
zLJK+|nHHq4lL(DwR)XY%*4U|6py?uV#T0epI(9B&uP~2)IH;kDUz&BhveUGesZQo*
z2eamWiE`|gb-EL&co(oZaDlb6eBf9_q=PSK_ueQqlV0wF@?0jc9sa0W$z_ah3ALLi
z_gi60vi34ERm-VWR^4hyS^ZK|xIPI%+4(dMAX9$kFJ*E(X@@ZU8gH_ap~r3M98q*T
z;coL{U7WU;y|#BHo@o<QHg5ACu&oP$?aQB}&lyx|aoRwQ>uc>A;!Ls+$+K4XX;M#q
zW$e!R*cWm-28WZXe0QxKd$TLFA}PDS^4)aoZk`Qm6^}dKcXb4<u-bF<2+b42l2vm}
zkM@rFqY6m+++<j?^v-_5H10Lj;V?KO1SeaPaA2`F1?7{Re3<6$pMfNN0CZmF9*}+;
z#g*@P1IX?=dS$P?o&(G$PhCmx*kZV^bWD5W?%LGN^a+O0m=D&<#yOs+)A4S4-2Y(8
zlZgBBS*y<DWRQmJPxryUf<@BFFkDjg<ck#ivQ4yTs0BO*%Ua@T_pdW9Qk7%^LUAMM
z4;YxFn|(@1apVIMY4|C84YrUW3$FDmvMZXMmcz2K{^a;-8od`Yq-CA1^Ud;inlQ;I
zpY*+qn~h?r95I(XwF_zofA82K2#8#gX(2BNmKMvV+{Rzl^GbI9N^Q9m4TgHl^H_)z
z|2c86Zs5-%i<S5H4*8yF<mcha<e!F-qe`92bOV^6iqrQife+HDsvdbUU0rCalrcUG
z(|!CAGWsb(7RugR$OSK&K{2D4O~vOwM<YonuceOWWfN-@&ISeA%aiRtc#mCKFC;ol
z4dbaM^^Rl{i(^{3ea*9VV>lwV*J;0yYO#>l7IVwyIkn=kbmF-}N4<Q9+@pFT_~J>e
zmj(S}Za{|($Bzy1<oicVka8vUd$uwJ#<HJZm6YIyZRv+Az9%Oq3lif2*5VKT)4ZSE
z?r4;KC7dRl`=c?z>t$HmJTcfSNteSgr}ZD@p@VX5+P-Qgc1j_lTbB-h+CI$b`?OKR
z-~=leTO8nmVeWioJ7$6K@{x>KCYfAG{n#;3v?p*suEMSI<&t>M(rKr&l=F;ctCXM|
zKGy`JWX68OoVq^9y{jRTOUDyB(^`i6F6MvGl~&^aL08E3->kN78|E&NlZLMQQ;fg=
zgmNHd!G#yIN28-M@h5fl<z0m!Z^6@-LGN%zxG}wRbF-^v1y+;9_pa?lQ^R_L{sArk
zqwh6Eo6P0hBn@^g#-{B=BQeQCCw}--7Pkg(xGSUvr&aLZ8ou@UWyjB&+FpJ|J8}#R
zM$_k}(o||Te(z>vRdtm$-I*MdZT2Ty0|{Q0uM3{<UF7P}%`n~kw;J(XvX;2JjD{UY
zQ6d`e)I`>$LL5i8TC^wYt=sAL&MzB$t}3yAI3kERHhjNYm`m;3(E(L|fe%>kLkmnh
z!+2wnci}bZ#UHb5!!UOQ%rUe{aSkS^(C!17)K3F7ODViXw%2SxkSjUPZAX$3hb#*I
z4}QW7SNHd4kkS6u#u<G(Yy7qHBr=_Bt-6;V6@Gl4!iS@F3(c;4JsZRb2Ki+Es`SUR
z)%)MpZFYqYGS?Y5Pc_ace?Lwf#)fldw-WB`r&H}ANUXq=wl}9Wa7=fuirnxFc{dgE
z4l$N-KA=V@`#uqPd)-86@P?9;h;@CAt_sMqTVBw(-#Lt*SmJWe)ziL<^R%&nb@>{L
zk&3_qY$`*fS8g3Yci4U<jCf2~1QVmh4gRJw44t(78j0xRNQzkiys2Qi%uyyqs0?CI
zL66q~pZ1j4pw=Y~EX*Z)bt-73N@}X6MJox|QD?eH#N6K!kjU)J@W}FYKvAtUA~l;l
z3h%IHfCpXBn~jb6!B|>ipMefKud{84TowN#v5S>q1LEqS1Z2>mA!5k`#SA9U7A2EK
z%$fu9{F#qRY=Ir~yq#6yHNwwN-VCNCP?j!wvc;H+YGch)B7`pk(Z>Ur;`&Fx`v*v#
z_<(ty3bfgdzi_$2j92BbF!|CW!T58Sn0_gd;4%G$x%N*@tMkBI7cepT^8TkQCK7x$
zi;219OiTqGw<Lvy*`5&z?)kT@2w;%-(J3EV4Npo07y+Hj6IIpH3MO!-0h23n5nQIv
zUHIM%D2kL8TW-uweC`dj2$`t&-oUcmN8t_B?#|isBT=|7lr6APz;%HjRZS5B$dV06
z%sG*_x_c+14?43id5A<y*=y7^c=T^*HU{Rocec!bD{;{UR`!nYkKMq>?{MtjI}%r`
zPj?CaKokDK&%7@*H$ky5@uq^&Umg0d`|D7PCIWMZE;SWrbYx@7P&Fo|-p_v8xMr4w
z=4TS!s>8h$Odysu++Q(VJr{x4H7FrsJB4g9)h!=Z`DkcaZYL44n;cs??(Luv>@bV}
zTScR1<4-yCV!3#xPq}#!vPDs?=_XfPEK@@4BLeo@-~al!h6*(nJpLQOs?hoCqaYl+
z;8AixdF@$79&~1&d4^AnxgWBH-|h$3xc?5Mk_yV>JQS3J6_k0fJ4k2LDQ2#`>7eCK
zY^9m9zjm7@ujOqUP5QVm#O7N~E`q{%@==wu_LqL(eR4L(MAB^8F-e0zC18mlmFo?a
zFtMqNDA&}LnQdpGqWV69pNZJXR?+GOQ8mVCm~<jWOT5EEh$H)nL{{TrBq0G6#Y6*L
z*OEz5Tlxq$B}HH2LuJ<JHblL-d&9;@Wi>ljX56zM)cNs@^_An5|AYG_9P5mJm^3xD
zK3(SzLj-<kzP+?}VVv4)q3u2seg+ICs`z{AhAS@LBP2FHsJf%6@3K>sR-0X6SN%aX
z#*ru!8dKKK-z}?AzQR75k&vBD`>0oD&%E~BAB7N&gNgaa6NT=y@>pF$f}*EH=HozP
zD~<%L$!D?6wc%rl{-V^#$bo<quE+?)oOWDnWlhq|hzLmR7oVaAy5_;6>i`*8BTr&o
z&?Y3pG2@fi!D~c>NIC^HIep|H<5vu<;IpLu4h>@(8g6EM{{PlyyVGjo)TbQ5-TC-f
zipqArbPnB$YM;(SRqD`(GTrhQ&WPA3p#_yqW;qPM*s%`<Yxz7k>HeGJACzhCV>nyl
z+b>P1{-R4^T@;ReK%yy-_#H_6|GOQ959fHY5cM7uJG=^l(RK5q;W{;+TN#s=<(eN#
z6_8j1Ne}PRCfC>$Y|cQeiuUL>wo85@GpvFv(otSylhaL?;Iz_MgeFc_fo~uo2AlRV
zgr;J=Aodw3Yvd(`5&~#FqGpWAX@*d6niMT;6DKm|w-QwZ5Nj+uV!l4ICWclPP80<Y
zf&oHUh&`8SVsM{09$pFq*Q1!BI8QQ-F+9a%J>iI~m0I&2B2TB6u6S2%m%JquY$x`L
zoA=y*=dlfXOi<2rkwgp7*GT5g#EPh?$3)1+UVN05*a(;+0elht&~y)W2-bNm0@BUZ
z_YxEh;|R0NM^&0EBE}o`yJWK};7$6Vq0pD0V!xrdRH2qDM0a2k$aa!!m_;!`-!3Mo
z!93@qO4>Qvz31GZZ4PPvJ&v2a)Z1(Ui30PeX`D)#qedT8n|{pYVkxzy2eDS92H104
zBuwizn`Loh0gosFctoFJIYo5SKcc&DtGHrkIPoe<nQ8495JnCq=MTvU{`y-@8j07g
zdbF=NB4dZI>x2&uSJA*dXK=y=pQ&jOCfNIPRkS!m8VL{V{2%nxo2z6s{TX?pN=jSO
zXXbA0+Lw$J&9R~N+S`p3E04@8u+j&!4viHnU(vsB!<0&DB<uCh%~B0(XG^Kw5Jh_O
zjmG89x1VJcy0t`R70y}bGQ0j6P=L+r{OC4PB<EY_jZ=r$n{7ljT#G_PN{WG}mG`@s
zdPh;`I@zaY(v~dXZ~aOuS~~i@YnJ;cDA3tZLK7;Uq(2GrR7X$70PP+1N_gJ$BM9CH
zNzon;)WMBY!#^;XWIGC4lUK!s3<Bj8PyiaR?=%B0gp08f)rH6EWOtu*7SUOXl1*@+
zQw@(&)js;0OS?9~4(8U3EQdy5K|5F!XQK^A6E=qd=c^W;>R&5bk5eHN`-k9zGtDf`
zY;@Y-1&d^a-=8~%(>4B`p)aZ7papNg>Y#mRFp%9)FJZ2D8A&Mjx5dN^4xP<re$Oe`
zioBtuk22Mn)faskanYRQQ**c#DzQ2g9nqeSkLAh3Ms*lyBm?_ePji?Dw1JXX1zy_J
z&Dk&l8HG&XGL#a8077}_*Em|x+c*n^o&l&Q;fps~ZlC&TOC-L5@Z577*+$7`BnZh7
z=^4*n9>TSN8;|yQDN?`|e8H0-I9WOQP%I|s*;u8*12HRg58PDPli}^)oW9UWN}0q^
z6XS)r;&8$H9SFs>PuzO>mr|U^9YZV2mDTPhw_j=ua=UpU1Yd<7elkWqljuj7W{iKZ
zO&xr85*)yOVEZT}GJaaDfqR9m`Rmc`J$x`LtSd^D`fk}A;}y2&aC1^dvHDt~#D2;i
zmO=6UZ2lx|lC-MZkNFV$H!J%wUc2irtNeH6t@t>SS_(lh&LTp9^3lJVVK=exhx+fe
ziqaWsDro%3Ox6wJ;zyB<_%Dbt2gfe%3hx$-jpx68`Vb<>1!<HNMkgq8S7nwmnL*9?
zVY>ywh+~2#qoF~!Tan!^XWtkCDhIly!FI+MF75tuLH)}C?c6Iwy+JF0!QqJfJQjom
z_rkVAJs&IVG(_ZQ!~?zV#_3Vzf)&iO8%MukTKyZ}gW9EF_LM_2h-cU$G|YP!d8n=H
z6o!8$%N?tXYq7LRH+y>bPl~ODdY&l?+z;G`en;^7ibf~O3BU9&ag%}!E0B>G(r((H
zhdJJgU2T{}55c>fJpV|eldnjt51HHF0QCJIjw0>j;QcZ7q?;}YX4mp7uOKxxE?h8r
zh#>r{z*x^V)RkKvcbyihl%^3Y#ybmJ8r?sJ8^PQ8d*4Nzc?Ud13qKl0mkPPr>o&H5
zN3DW=;q1BaY4pafbnwo#)wqWegvJ_xuPmVsjc(&R_nSP6gRiBR{Y6sO9XMXT&HLe2
z@3dw3I}2g37}MbCjK8;uhpxh|WjdaY52wJ}A)jCU<U;5M8(gt(pjxm;gLyx;fCQ4^
z*@waWNHfr#!r5srV<J+7-)Y`OukLEhThT^LNAFp@ZRnMP$Oayb>Qqr^PrjU9axkX&
z>ojS=<m^1i35Nr6HJxA3yRx)t&FnXi$i0TNs1Dn{+wA!tqI$*gENh+tetnhL4Je<j
ztp8d7eB8J#D~$(IE(Bgu^h`J(#zrV|9QO@$rd6Uzy*U<xYqL=kIYK}q{0NmJqPl}r
z8IJQk=}}tPd?>%-y*h<0{jZUK%39116D$zdQKGU(4G@aU`$njBQ@jmCwR%bZE~EL+
z#b8V8g%Pme=%K2fpb1FmXSH;S8hU<++WKGfmr^1ZB%<L1E0>aEMi2gv7IB1!*+T<C
z$#wlZU2k#J`SEWpR&?Bo&XtZ)QY)ylf`md_@N<GlBUwL4bkIMCMB1$44d@En-@of<
zvG`$|V7lV4_3a%GT9kt%I%1w7HTy~oUWlvL&7cbhGQq&2CuyJcA4wA64=(X7v1~y-
zn(z@0JDHkueUOz|>1`Iqm9t+DHpfi%qjST`UDY0xcBGfNqVpmzUr}Iv);`Lb-H(~>
z+byrdRCn8J(rV0?<rLdLGu|(l_wUv*)5z~J8=g<V%7a1F>vm9;r5OyDyHMOp-;;-4
za=n(<ZM`4)>n5WxCt&mB>At@h@PBEcaD{bb)NQ>j8Lp4FXtpNzB*%~;!bicnmil#h
zFwl%Q^COL<R_?Msh#^!koNtUm<D@Bfr=oW$H1oT0WE5N{^+P-@1R8Zg;gk-+t<!}m
zKXO?`nCz#|Fbmd@uJyR#j5R*hcJ-U;F!KaeN>fL;yPw0X|EgQRySdRpX@|LJiqZbA
z;+IcVOZ~_#6(p&%?tUr%)XGRA90<jHT0UvG$h(HB=wR)?1w0UPbqzR`dFYLxX%hoD
zKv-)JdWNYb1P7Ire+<&RDo|baq0|g2+8hfMFUw^X@Yw(rhcJPSv4FznGq{kX^3Swe
zM_TUzPsL{@#_VBj?68g2!lm>X7@$~6ZPC>COx;*r*;b;)BquH_+Eu$zxoNvmt+r=`
zj&3$=i4F4liF@iTjyO;bb@Ee(8<C*pV#-eM+*7~Kv7(h_1h1@>BN;Lx!g=4@7C}=f
zzQjp@=-fB}83`>C%Hndi(Ptqj_@y>0NLBFAv!b14JFIfq8|BSPbXp5r_=WxEJJ_{I
z_dK-b1%_vEPAKF>%q-LYV*(=rOyI8o6F44V0t;viEhu}h3VpI=n`w1EdHY0X8C!ik
zd9+8={3FG);fMGV-^23B%={34i}KBVq1oZye9G#?xQo4-&x=T#yy(IL;m;{GF7p`E
zHeCTVgvAO0InKEseY+9oX{p%;Cyj(Z8p++9H^aNS7uRIxuSK|9QUs9Kouu2AK}VgA
z!o9D|Y`tmiA&0vsra{&TvhPP#=oVKMGD<8CwJ;u98`?8<?4|iP6JNZnEqbOJb^Ui}
z|EQ&_tbRcq-F6<4g`QVDUACr9uGG&CTWCU})rDFy%P!u_c#%4e*!|7p=wfnHUjhH|
zBo4n-(nR9=Nj9mJ0-%NTx4O7s4>mIUJr8%XDLt6e<Kx|@*E41*zYhSVI<fQ|&<q7#
zSbXJxRM0kxUH0K7Ik?I%Tgoq&(Doe#QZJg)#+Ev{(Yk9*|Eaagdc_qa$$r+ilFy^G
zoMPD;al$zus#rOYG5o{${9Z7W{354IKHBzpFW#*O)=ESv0igQxcN<9^`tQ$_Z`-2S
z<{S7pwq9awOUJMx#9zIK?VyH`=-~viaRow~``Gf6jjxjI2oiOS^vbXM!<QJz)=IA(
zu&_uED|8M8jI{Dz@icGnXY)Sbh2OU89@z9WB%$_vP95Urk<_Mp)Ynfe+4asY@7w$l
zagakdxM{+<&Ds`%6dcG&sSj-sUby5P@t3yqi>>J0_I+@EuY59;^Cp)x&*Co$9a0Z$
z^j@gfv;lo3qm?fZL(YJ!RZ-)s7TQloYR75M-+WGYpKzB8R9i`V7Q)6?ck_N4s46pW
zv4-?r#~Co~)F@wSt@;ord7c`ac%JsM9*p+!a;17>lr*C49czrE9vc<KM01-rGB8Jo
z4d}Z#iVWC0teyK_-5h=DTfZ=iT+eLKaL~2cd1LA%gmNMGtxOnCKu>MGGiZ27IToB5
zzpe4{=aajFTQjfaKnt=N-<M2%<%<eG8Aix8@cE2E-#~Ow23?BsrV#t{<s0Ehty}{s
zIKQl1Ajv-=$-PIA9^1h*75N7fs)X_}dMDAZ+!bSdzL=Rs&Z&SEo_>cas{$$Wi*|$3
z$Ee1z5&f5dnoQIiG{xI1B)fufx(K&0A5Xe&Z>jXLGMg*LQvE1!b#gk@{`AIUpurbg
zfy57EIJF@HWPf$jq&3K#*y_DZt?ZELZO&RkIs_xHCXp;9EBZOZIj-wyvm@EGj55Ex
zU)VE=-|C6$d%H3c;|^T>p>_Kt|2Dg__jfI=JKRe3bwa02Vn}EUJrU*cK(KB?3G+6F
zBTb*fL(5IF$YAq?_4nk%Z_+tFwy6i1HHJzKeCF4rJ8f>JSXSA^JZX)VMWT~rK(IMz
zd#6IyMwaXdhxD3DiU!f%2~-n~huI3DbN%uoUYbYVC!n^&t)()$m)i3d&K_VCQ{sK#
zKk`$|OI$=%t#dTygRzJrv3`=>4NgX4Q)*6TFfIC}xU!b}x0Y@^IGK4&qX9LCSyxDi
ztH?sSS?;zoDajCP`*U1H<k_=RAhdTCl{E*wQl@EsFsZ;8-`QZ2Q!C&}puOv*`TZM?
zB8SIRj#^Vh{+=uE`5!BX>F+j**BMXWt+@vYKM|XGCGxJ9ttp-$AWmmFPe%nJcP^!#
z(k{iQO^JEdLvpG<3^-wv7tucWxrd^e>cs0J@%KG=1QiimrsV|o0?1wCsjT<@v?Mx;
ztdN|nmq6w4!g;}x!B4afrH?WG8n~U#85Zl5N@aq{i_>`)!6l-7M8frH9-alX^J3!_
zOaVG~7QQ;(OEdLd`hQ{cwB(Y;rqs(`Zp>ua(zc9xpZ=Wqk*IfNvzO`cW;0qh!;`Yk
zc=;PlBJ7iq%wd1p?n-jN!^%#uc$m`JWKH6P7aDcXHIn5<i8Q5IM2igUY+oF4zxpq*
zD%<eo%Ezf}y4`3et}CgU%V2hpxy@+&OlpTe<cQWpmu%$(moAyt-I8w6AbpmccL;73
zs27~X0!79aPj@Ttdorxhpi9G<z9xpmUUqR%VPtxGoND2oJ9-sB?A}g!1LLF%-WwJt
zd!fJj{a@-e+Nv=oyY_{wpOI<W^*=uPby@ud6HVaz?zPSB2UGJQVj}r4-z7mzk2TD?
zKb$AuxkF)f_o`_qQ4I53(nhVX^v<Pf+Ph!i(K`2`R*nTFc0k6_Z}Z)bA(NVC*qAQ!
zPe~DzOyn4tE-&abm<8UMi1!=eK<Jbl6Z0Gr4}?%M5r5bn+xF+LMT=)!oWoy%5dgf6
zXhZ^1bQFR38NlCWHhVUs)gqRPBL9Gmo!K2EQZrF~+>%*f#okP*Hln$8C2nl#xHpK#
z*mXm~*fBq70~jFz9W>cLtdNKfdc2mJD&%Gr1WcithKe&e5*+joo0CVu1l>6&N`!O+
zw`x3$Kr{r}BfU{|=~*l*m~QQK7O|>3N~(>e&%h*==%BTLlvN<54FC?MZfU7D>Oa$B
z7RWyV>!5!bt)V`Iv4W|cHwN&<+7|%&Gyu@IBLH7C2U<~>2*CLqRQfGqDQpo;%}T8L
z#6f&c0ib*YRxo6CixH1_jUf7eV4wx}MhO4{+5;fqKGXw%{#BqzRofD#1c1&XyzPUi
z&oDr?1IQKw?}Ln0*u3BA2EWtoL5FS5Hy=hGNRiZlHF{N1!(6(f7F}KVXblHg|Im1T
zF`q=XnB<OllbS^(N!FrB)=HX9YS83j5);pc^(<%C0FHQN$9T0WMYQZ%ipRCQDy1a%
z#bqT$h$^57E1Wq|4tYp8G$}Yde-x9Q5>!GHRz}m_m<?*+{?@3;!=0TYHP@st_Y5vJ
z+Q_Ja&a7f<MLbL={i;dv^~O>5rNz7f*`ncn`s_&RRFv=>e)w9-EDve4CPg&Y_xNvU
z9u8W;4)gDm+M~^zku92?5@+>EIy5Odn!SugC86fafSK$Deu;uOdTN9iCC+M-^l4J`
zHG2i=LJfN0{`N3ru2|q3s1g}CGL@Cw2<2lE8==7kRm`32-F9wup!>8M)rWo64_U|7
zLwe8Gq>qD??^8L;sY2f2Q}ZTE=$lp<Z@TO9DUfmf!{|)}hzd)~*O{>5j4gX?{?xyX
z9;x@xVr`oqH2S%0^WbAZUXh8bmFi#xqR-4z4#7FL0!)Y}k}af2h$buWRuqSVMTP;%
zpmbcdzWPy~67`;_wD-rxXDR)0_8TpVZ=VfqpY{m^OR8X&h~(&{_sD-`7$#C}7{h-!
zaUK@DNc%ECj@{pJv9`c;vEJS%;w0xof7gA6n32N~NUV2(;_2Ac+QtAeSQsw1XLC=f
zvER`}O5GPZ^i4<CAX8{MSeb2Z0D>N#H957lsWWrUmkX)rnA29-?OIBe_KkoZ7EpWF
zDU%LgJ`RfkTPoCYe(g1p%$0;vPhF7?rNzkvpm^EM<S=;Q#&pSZ_%U=Z@z-}_<I)@T
zG`4S`pN|syf~mAfHehmOq7SW8ZtdK5$_RRl<R{|Hgzxo+>MK(vzAlzkNnuL*jZrBQ
zM}&~t^Yrj5@<&A2>WN7x%-~U(WzAz?&NPKbWRyxu^m95=QI*=_Vt!QY_?IFDq;UUB
z!30v`ft1i69PeMWrti)s<w~P~Utn*SRXW-lV|^J57CV2d&UdCjC7(zQEyb$wb*Rc&
z^T-_>OEKoIGSn3CeWg6{G5^1Tl1AbZ53iz>ai^5&#s4QeEYto7-TCuFy8Aww-cP$i
zHki@5?kKxACh3AD`h|<ink`Mp_OQNUWhcQ`Bpbg^bj1f#8Q?UHL1POd6F1K)Xu5?W
zrj7bSG7!1+O*yiUfTSnXxXJuGuCSGqAs8VRyR=higd|zqbG1rcO$fQF#$f!YjSZI}
z7guru3{)ZRRJoV1Pka^Bxun1Wa8<1m<Wy<TK5S%LB;_MjRX4*?EmfICJ%<rlPszv8
z^k3BbjWK7aK7vHQ#z3zbg;C(vWQ#kK4SC54w0mP`F^}t1=edpV-Wl+n3;ZdJ8=rCJ
z(C+KJf8*<~tQK-gW{|8c25;uFx(CQGgo%owK#|MnQIy3R%fRG~cDX`?Rc3AW<6&gA
zanRM6fE_szt-@O+f&b^*DjDsVZn=sShfmSpJmnak3UB!Ez3Fvl&JwvC5ju5-$F+7j
zQ*vvMZB;}d7DX8_0_qHn9H|BG)Mg%8i$QE=MAyrXVtb&8qKZb6jop|2&y?quQwhO$
z1z|b-%FQPUxB0M|_s(jeZ9)2jso}$DSW%#R6*XI4$PkP~BBqI8*4MCS81&!IqKso3
zyt=u-hP5`>)%MShp(__GS7Wyd2ZaB77Knuf+mMwZ)u}+EJyz}Di`qpKq|0n$--sh)
z0gfT{7YEYt&lzax?+s7_;$8&J_L#Z&xUJ`7J{VqsJkSV<Ui*A}sdW2poV{j5-HJ}d
zhTtIV*lXwE?AWMq5y>Xu4Rec$(+rK1HfBTr)9JuE2M0D9pQfo=b@h`DkLJ4=m+P^L
z0rCn{>6TyBN3R6hZp&i)ONLF<8&fNBQq0Q+3vp{W4G=;*X-NqFni-J`%8lFzxGH*_
z`P^^C7w#EN9$Lu~Z=>TUC6tsf#rZB&ha?Z^K3rl1WF)J40`A$<-T$@PqkK+0jzP5b
zjth=7MPdRAb^`TWlQQ!|hJP7Q>@gmohGeJ-n+4oep#Ku2NWip%^TDX1IhnpEeY9&w
z`^<kmuUA~?W=~i%SG$^1j<r;)j&{xj7zN#8BcuChs`>B&^$^{sKiBS4PQm`*Xz~)^
z<>iIA!<`uH+{1DTHehsT5d=yz=x*5RcFzzf?YSNu*i}=ez^>){`SC(XLxEpfLqC^C
zspU{QCK5>^0z4CiPtp*cdUx3S?wrZ5?jG4H{Sfqjr{qygFh-2CT<5XJ#H-~2MKW*w
z_m-ty)qcsM@L=jtHS&s_N)fE@4A$g-HFH_0|7y|_Cwm=<XYL$LAxvC{Yl;~f3lk*m
z3T$p4Owt8mz<X`!6g&lYEIN4*yQ_d!jD3tD-k3E&nWI8zpQ7&=km^}xurRjVi?y5~
zf+S2pIPJRZ<a%`mvtQ|?H}r^~6i>qJ;c|8aB9G?)-@Pgk%5Tv7((++5E?8W;+lIr>
z@J$|B?MX`N+FF`+yoc)jKOjs$zG-+;9Nfs<P-u%Znj7%eIKrf9wKSv;*)>7mH+<`I
z7;vZpzZH}tZ%B_qJ5aLffml#1^|h!wL>15Rc%XzQn)XuZNi3jzSe0K5?G4uCl184K
z(_jVCINjh}qEuEO_>G(0IyZJOLu0w)m1LjLlq=)@h6*?!+<$1i-pJFKs*VSWcHkUh
z`_KTi!%A^t86_>bdGb{b<|p-lB^ukz-X+)VfeYh@sp#0$KosTQwyLL2I>Y^zNP0&h
zk$)n`{#xN0UDsoA<bMnZ%k3m^$_bY-&R&fE%W<sn>zvTb$n5?dKhnn)jhqkTai`p`
zA7oSV{IH)HG5V_&&tw8JXbwnCZ)UvLO03BP{VdA%XQ+F$*}|^GiyobxTa^^nA%{~v
zNb9tbYy>Mup^LCaC#?H>AHmr@l0q-fr}eHTM>{drheBUS3eUp`lfuylKJ_77t^S4C
zFqd77<JIzQnW88rwIYDYSXm~A$!KZKFQ)IT{oJk`w4ZqNfp)|88ciPDxKFBdN+)fd
zH;D?TDGal^@YdyrPe)?MjV3j82os3Zv)eW*%ox2lL9}yC5p#$3949WzlS<K?Paxd`
z+e|_F(vgaLp%|8_^&DUr@mas;0`Pf~Dk7l`;|9ln!_R{0OfBRCttXt|fF9z4IXJDS
zkUmB1vG|o9zsB7dc0Kqt?Nx;k!#|Vx+UJ6+hGoI5s*WN2C1Wy<V+tfbBAk~9F;BCL
zW(orz*a?jb2bLdb=h$K!z}DB~f7_tg{w~4(z?~~?shR!lKg+R9-<u265h_@y8n;tv
zU)K1XT4@P3kp6P>Q~$S&#tEZ_C4X7@5?So0{XoZSArE525Kw*sHpm7)92pfp;M0>L
zI2i!>17~;}@cnI(LkZ?nO6v9WnE1@@vfFIkHwN_D<)bLoi0};0!)lJcTkl0GE&AH!
z)X>hfyK>iS(%c1J`UMCUFaEs|*dQ!?%r9`zR!Q@0Xkw?aMJ&=fELM#{e;VPOiPhPw
zd9sg-HqiHe>%$NtPda$<PspFvnQ9HzrT_pXJsRP$r$j(nE(=J@nTM49%zXr9^T~C?
zg?O-xn=ynWlOA+fcS9}sldj{a920kUB>Ib6*>m;B$h_Jav6L56^2pL!7)cWZ9<ItY
zA_+aYEPJq@JXZw@$^ltVbf$N;&0h6iQ7i(g?1>_)1i@%+<$Oz$D|m8lUE86#an}Ca
zRjHxawweW=W&WY>1ny%RzX|x;k4YwyhMsG*lUT(z36qY$oIMFmh}aFWT&z>@a(J($
zbQ#5dp(Bww*Qpe(4x!9qeqt*_Hp@6}u9iLRU_tq<r1X{P$8^$G5y!>5yh0lO{KtNB
z6ze<LZA>F`vs8i1fov2Nd!FQCe=%H|i4BmW%vx@Mv3ZIsAbI!v2NoS24sOL-gr|B4
z|1tds6+M_B_zCDI7#%bX)inl8Q?R!y_XG!KJ$Z)C%^v=MH`e~6R^x<Z<Gtt!efWgz
zdhruWPWgSDmxBgh&B;E+wJ>@?pdI14O%xMIsjz(WnxN%e;qm!&P-B7ex5&hylmKAm
zQ8m5meRQ+Ztl(Eg^a1SZV4O(gmzBS_Mzz5=J0sxhiUMt1{JMEBs=cI{+og_r4Cfck
z@j-z_8>jPl^v*x~sdJTv&$~8`@9tYU-xY=29;w7Z^;d@6Mt|tsQIC&xjLp20<G-kV
zIf|6f@Ui?N={b$rd9<2%q?XBeY@IR?f|emdRY{5s7H1*1JS4;VWC<5ioz9}xB(IY>
z^+z5|UPyA5VBPz_L`9gcRK{if$QhIjDpj^F22>Vzbc<+^7e=O@o-7;r`xX$^N@%fr
zN4daHbIdy}OSB&IZzv~0%TO?{=+UzHW0jgR)f6er`5(Gz@r|Ab6@oZlqk<I{2$cgw
z<LK#PN=_ICr>D`iA4;b02sN-jXa7y9%q5*2nyZ!GvdG)OoTXPlvrMUrUa-F(x)9-$
zPj`5bV_07nIFAwVvJ?20gL}~3dj=D>%QlM<`*l*`ISp2OEyHahA;{|Z;;k;W?sXS3
z{27k?%C{q4ab5If=r#Z4C)O)VYP9^#fnXK@%~<_{OJH{O)N;FtGhnXZaHA(eq%7Mx
zIdyHVp>a^<)xIRMtaF|@hzMC1P?hC7tS-<rz$tsCI<xkhve1)s3s-Zq8qqsxr%coB
zZ(wi<Vlte=`$LnC3up5eZo1q&eX1$KAC`@#|54D|H7m_wI7XYf^#$7)F;<)TsUZ_Y
zKK7me>8nha0&7%LG#EIbWr|WThUJZTpMLIpwC(Xa)nC;}Ex$KT+MrB*r&r07QIdY*
z_1XNXXid)}*Q6yf88Z)Y*eyuCk8WE&t-AQ)>~R*?$RRUGPEas$B|0`a+Kj_{aHtD{
z!egXT5-pSjhTY@NV|5(o>&~PVw02$t@El&v@B7q9?KY@DZ~m_@OJ&EEn(9p(!kk!u
zf@(D`gAuEPG?z4(+0kAve?z!>^Wj<^dpDX(pI?2<ez1F^ekGvE;{N^risO?~FY5bo
zW7jP*_D=r;Qi^2V-q8fgCY=h5iT)RmPPW)PGmq>^DCT%1{!?ls8^+d7`&AslN8D%1
z>Gl0m?Aod8s+V_LdWQE^LdGw8IZ-olq4S}Us|F+4`H>Y?^poIOJQ_nN5+>!<3uNrh
z?bJ+*Mwxv|t=ojf)YLBRjHmw;_ju>BI0=8^<1@}LpRLV@RAXtg%@2eJhEL8qo13hW
zp`DX=kEW$Z!fwfikDZHqM{$(Y2V_T*uGt~*>qD8PTBQh0zT@;RE=Ck*0&esXKYNo?
z1)NMqlD^;wrPpPxZa8|Sw?1eg)F$!T6rrA5wEZ5-3z;fa{^{~!BODJ9%>UB6R(piM
zH$6<|^H>`5<Ruw*zH~{o{d8Q_h`8nP#dPPBU>a|H5^?M=iqAyE$7!5rPaN*e3)g$!
z?w!w@KtY-k8f52j;&wsyWfIiahm;bq&*gCulgCpMu$_hKSeU~e0MmQ*Js`^C0U(nK
zfTe|n4bmS3xI}#e0D7|y(4vH`sWy&*_RWN9Lmxmv;58xu=mxGoa)xd~#Aa1)wJ}0m
z*wPge4j?6{)d1@&xsryei3c0R4*)raKP4cGz@S%jY>+X4zj$mF0C&Dqk(Jm-FbD9G
zaUI~+LfD}Ef7r~SsRXRS+Xq>R@`=9^unvNqwMxGVVlxmw6#`QZR)8hZ2cR7?I%pvc
zpv9$weqTjRHM@t{ok>s|2$0B|n6W{3KuE)qYNH>R@B+Z^Isn=yGFb`8bRqyh(Et=O
zRbcEJ!1($L^vDAs)L&JgqgNUe^Sg%hXuxf)&R=IS?r%_^__dycrO)N=90rkbej|5!
zM11Ss{uBJA9;R7?R9=Nb{@keS8x@74Xs|=?{(Di<6P>Tnx_~AQ78hiTj%<P6k~UjI
z8m&SR?GjsTwDl(hdNG7IiEpqT8Lj~tT?6(8Bwdd$Q}3*T3&1mTMig^K3A0~{R#1vp
z%482YrMvKDy4aFtCF8!ZC4A{QQW5PMQN4guyC{ptot+`2HKw2q>L^}2Eq{QncxXn)
zo^2+TG^UVzODm?L(EJ>%@!}PZa_AM;z?RU!CTlmOdIzU==Ph$c8uybe;b)Mlnz4sQ
zV6aBuE~4nzC%GOGxgZ4D)n3&nIJGBwxx>h~O}2zhVM8@#Z;hZ}jW<eZ<U`81OSXhd
zVOce0x7ncJ**9a_o4Pm<Ljs7vBL#R0iXy=Zki4Y!GIQ8t)#ouzmkgg?-HC<QuoveI
zK^=9reJK--#7IaZt!t4Eb-b{I#9Bd$H^WK!DO_>;n^@py;*F6c1WTdTWNg^LN_7lO
z@GV-TUb3_V>^DF0&2G7^`KWRadl^`v4yp)i<}o6yV0mez!a#c6rLv}+^g-=sqIK-L
z3&9(rZ1!Kp={}&D_bO*x#ebV$<NU0EK)WgZRIQ8;jI=s=rB9n5BS7Ln+LVP+E_tuw
zY8Qo%HJM~I$X*KisTIn(Av?Rkproe7oYfh1fpch!Q^vr7lY8K5)1`%IgU*cbq1drJ
ztBqrANzEH=BuXny5jltOTnNqrFjjq3m#Y+pE8IaYl}k;koIR_MOP$uNP-|z>Y|yMs
zsr|oaa@r+w$tm90(?;z78)xLOS;0Cx77IOR8j8GF56(=sp3cN<C!2jitlRq0mrL%6
z`G`vJol5dvRt+;SNh2hm^S#)!kI+0WPh+1%s<1+H%<gEhg4)cF1B_kJdT*E~8KKsn
zF&Wg@TIUZ1E?IckmmbMTTVQRrdY1Eh<g0-)8&pa*MR!DB+a>YeFiwOc0vn9sNJcS#
z7o>KgKXy(hAapKbjxH<kmQy+l??i@mMh@@1^M$xz7NJIb?B16FZo=Zj!;H?pP1}6@
zSNbFR4+<Z+5|CJ4_ao0iWj<F<KXdK<U^H^B#*k#FQBI|pbU!B-AJrifsidE$Uo=6T
zK4w2BK)Ecfm;=C|=C}ykL(kZZLbHEq{6KUGh^_)rCV*n4-a&1ab$Igrju5<*JJ#@4
zELCRl(wX|4ESI%JIH|%z&I+hCuD0=kl6)oQ0vqfXOz9Qcgfh@+{ar`P4shi)*0Ihm
z?tgWGB0i0*vOM<`6U`e&!fbkyKUZmR-6`-BCrBM!xOiS|+sKWJm;*7go1?igwh}oF
zGGTJ00jAKFBt6P~lYlIA_rEiwpUI%L`mZ)%Yc&o2jcT;{h4Y{2`f-6bIR~6CyDq`0
zM0lu9C@un$n%{I6U2AE0$0wUXjt1}EL{xLZ?sBsp{-xihs+kWn_dLWOoTxmQT<CrO
z0Aw;0{0CZ_t*+k(r?4#FzXW#Z`)`W6fhW{8_$jI`WHZstI)xP9X@(8DpvOTU7nUnQ
z&OV^HAU8to0n;!EL%728Zmpc^Ki`!uH|?W9fJA=bRz)R*=d3BC5?0mC0hc<;W56*t
zgcL!omz8@#=E{@RK?cc%OU*Y(I&rza%YQP#Wn&8GG^Q$Ordm>lQy0r0Xg;aab@4sk
z54sK7*=iR|f}^V^qvQ%Csg)5)s5FSq>#L`sf)oIWtG-NwKf!qwRkL<1Hw!cx){;xY
z;SpRWv=a-E^?}R*YDL_m0?Z$3Q#PFyyl;vm=id1N3=yV*$$+uoANpKvv8p%Q&Q*MX
zRCaE2O`rvAZXUh3rN>&v9Vc*Lg%Y;1Gd?fL$61<zuT%<ZgOw?2@?bip?>QhUQ=%hK
zBy5}<=Qx+hZeZ(ZA<A<x%665u#eyhRKcQ;6k1M%@yIwq5J!5FC8c9;;Mw{0lbgVvB
z2)4|~9$*Sq3hh(Cq2iu$eh{yAr3@Gw_TV?IS0Pn^!y?P*(anj@5!FTk@3PP{Q~@y$
zmSFiW2m$aFGdU+6XxX3u)S23kWN*bW^Zh_ohacyd&Gu*2@8Z!acjHMy&@8@Em*mQ`
z&yZNgCXy7G1`jrdkvba;uy5FjQA3+&(b`2II#5PHI=)k_N!qSbpg=l8x#5h$Nru=r
zjQKL)pV<J@W!>JinlGf>;^?r_ci*hB1bR4S(1~sfLfR+}Dqp3_XVw{TiBo)>qLA_^
zv>{sacHk#94PRp}91=Qsfo$63Qt+P<Rv051ctWtgjANQU)+`-5clw0Zp~_=d^}%p1
z655G`nv$i6vr90pDxr&Wf$1$bnl-O2tQjF=A^S$)Pw}Qx6GE2|l@EG6aLxr50$pxd
zs$t+Xs~CVgNoeY#Ra}SXn*Cr*rYK+J@XV}5Q-*{K8^B%lt#Qu7Nxc;LN5>=!#CM*>
zw@9}V+=Gz?cW<ahs0jhNVjEM><Q@q7%)EXD%mh38O0n6ENv4CEahPai7;~YAM1u{)
zPIYduw&E6Ro$iBsHQEa+JtbuthpAfY+)|#~iYw>I6Z1_|ByrD=Lu#Ew8etCe@XDe6
zk|kJYJFC1h0{+A>+HuK=z;tSGp2=$>eBeAoFR@$K<d+eO(Xw=Tsy)1AeTm7=^m6|K
z(_1ska&|h?^XA5H>jz)yw1k{!d|O(G(I)+@P4?Cmo~46|{zy>bN8hbV;&iA@P{yiE
zP<A3sP_`aKP-g5!kj}|;p0Kevwf%S3G2GQF#^;A`ylIYR>-f;|*x#XJ{Q+eco9FZi
z8FD+Ls87j)2POLf^AXV)Mv5V6?!T72gH<vh6KaEA?>6`)vL*7CO#bGfa`y$BU%Qyh
zuKH7<t+eLU3olz+(jM4KochMq3r>7gns6t&5fE(d6E`!zPSD|`NG^`{p|Bq{&@?ZS
zp3M5@)84PKBEeOOa|!l+XB%@u;wrsQHP}p$_o4gcL80dIdiruu)2^ai4RUha(g%58
zhy2{Ip!sb?EBJjGa;GAP{Yc0Ria<in8p*~Y&K%smiEgJZY#K++Jcp&)mtR|z>F$+l
zn@%V9VGR&rTKh$~`&pgDGj*kAN3Nx5_i%UcNM_torkSG+noHQWpkrl&YtoF?@>0h3
zWw!u^k&5Aom?!9JsUT{#Uc3>?=xyJROsnB@K@?dECiR(7_%4HAIIds=RoJ57uf~+Y
z#S7^CznIRQ)ioz7Ej;t=N#Vs8dfh{+vVBa)rx~Jl2d6O(0&-n=eUm2@<Yi9I)q>M@
z$VOhNts}LU;K9gr_Z&M9*35Z_w5(OC3wAulRPqn$T<X;FhevbM3LO0!@-w%moqZ#&
zrjv}vbD=@no8~ElZby5JLGo870AFS+^_df0_cED`i|o)Xj${y*jGOG0{Jl&SsX#YY
zzH?K;k}lz;ocD0$V{eOX)nS6;jMkjxa%oMac<W6XU*~2HexTzq%k!7#33!CNcbayc
zj5B#|?CQo`%GT1!WEK1Ly7t1h4K^+zS90=bgZ_U5!yCN?189Z6q^29)k63V^a1F$@
zchKtw)cpfA#NIXAtp5>gM|wVz9X}nP2xR8I+48{zw_WVp$#Wf?C_EpA{9O1#cuifs
z%`45#A|qc%tGe!jElI}3T08o*nF8pDbapA=W4IV206&Q749<uYFAhcij&M!qDy<F9
zPu1<KqxRXiq|wp{T0FlB?yE;AN(1}LPDkbS`rIkwqo9q%+_~u4oJ2R$1#Sd?t2Q3s
zjM`iMENK#5A!{k|N`!ePVvEyVIcXwSpnX>uxg;ABo+NDu{mdlU471BvnbG=E|7*2s
zQPXH%m`$*_)SX(@o6ABj)F<x5kM;D_GudrHp#6yW<l3515@vI&p$kdG8G1DP_|ht~
z^OrK8w-XNlQfM8H0_enljFQ5f`h6+FWe3~3Ns=`oi$+$eW#7&=={?HYPd9i@wcs4r
zUu({A-fo0<^q@DEJLiMvdmBgpue909Lu)2TJU_s#S>HH?H|L8u&{DPBr6!0G*dUqW
zZFA#(``eEySmHW0zI&VR)UhW|+dhqDzRWtPiDWz5C^j3vR;AfXKGo^H;>@}^+pP!L
zPX^gz7(4vwYK~j8<8w~UZ2d5*pY+Y$x}?$_J*tw!Tk8j}{q)axi{;Sofdjv<3AvBB
z)t3mKP>kZslKVnK@anCMEu5-tq7{}c^LZOg$v({A%BDIL*dFc7brNGQDit{xb~r4w
zYUSKq>#;wZ#w-p0NnzX<j2a)ZZYHPTkF(&1qF2!{s$2F_PP$4$QD!49i^30V5=)<W
zOZYWb-%m<oyXTtCj^5uRlm)50u_skLw4o~#^&fJy(!xm3ZPwDldN!0DCvhb*jMGho
z-+AN0PB2;z(u)!Zop*{_dv>sn!@0_y@sVuKh5oQd%{}#@Az`N2DsfJ@tsyol^{0;-
z+No~&-Q7PL0n4@!h^E$Ng&r};r%*d-Ol%W1iR3G(*>XZLKj(v39ZhzqL>ixgp>ZVb
zEv@XH!lc43K#G{xbC<WGZnkyu9ZWM>FzBE0-(Cr{I-&34bq>9plI4yLaa(~4A5~Au
z0lsJ~`2TalL)$U>NMl4Nd-r=e4j@r140%MaUSaq}hb)7HG5kMu7Fw_m)^@^XA7Qo2
zIeiY(5v~k@gJ|xITld7wXjvtVQ56_p{zkHZr}gJ<B$9Xfqr=X}yIjp*@n>-x-l#1%
z^43D#VZZVvVP35RPmMm4whU^4-g#_B|KNH+YhAmsz3NT+3@r8^45W}6Jy~WHQtvw8
zR+ZJ7JxsR$mvk-h+K^&=M7PfieLZL*C8Wfnhn(5xbcxNoU?D2Ca)xnkd9_6&SE*v{
zc5P_+T1hE6v0bAXg}KdX`&ST8<t3~f0g})!`HJW5FKcCq@0T?VEpeXgy^M#NNlIqM
zqddsB7ovy)NMg|m-oER~oag;k$_Oo)EpyvV%Z<}6%2sy0IcN+3aEGxcts2zsXV&Vh
zQ>f0%Pmd;0fd6zQj7tZ01l*^XLO!SofZzJ_-uZ;nAf$yzS^{$G3hai>=%52tfNiog
zJr?G995%prFdxLmJg)=l^%Wq|13TqC8espfO9$PpCM{u8lN^b7f0O(#3m`t20mKJ?
zV9Q<xY}xnd0AW%#HbA66k^mgu;D93JPK7Cw`w`B-)z)NzJBcR)6bTJrh;`&2(4Re=
zB)FA5z`;i)GZH)qXsz0lBEcL0icsUrgbA|FWr{@XIwz$9uHv?e9WCy!L`StD1b_=@
z03W0RXuAPH*uV5KGpdcQf1ty-1Vpt=mP*X944`ZL!!TL_NZ=G`Q8Ezk1A*KAU6p_(
zS!InxBn2oQbxQweAs<5{z$HLR83*R~W@*3(Y(-oGG6rB9juR4)E8yxcfXqw#-{c}A
z!OH>4fLQF-|Jldveg+ui4d~9u%jC_he$~Z064#_ML*3GkXdImBltSy4q7H3naC@+*
z_tq=mPO#(tX1__W1WLPqRj2qm6MifM=dzj%JgWbMQ<=yXnN}RGE$06Y*e#@)2nX45
zNk%j-Sk!}AX6iB#ef*z!j+NF=b*jFY*D&QZGbJ>e&1hUGs0S;|%wq#aOYXqxz5=wH
z%YQGGC%Yo9h;2A>9BHMGSGkDSez?MOfq6KxMR*|ah=~7DTt)$5*LP%#@28X_TA*it
zV6>zH?21(b4b^qf;uF><#;BvWMQk04&0vNvh2LQ7zI{|pwuvF&iX2$XU34|HvYxbw
z89?F1gToULkx+$1t3y!w?PICJRU<^d3ZtL*>nHhO#7kf+DimI<&&{mg8TC{iI1c=}
ze|sSiZdliTsVS<eGVb#8yyhui`2D$Ws<DJrP#;aj3*PqdU0&%p1p<R++~;Ah>UAs5
z-vBKH#pfUsQ4aJT@zqN%MmC^vy)AO}@f1u^QDG;menStJa(FhW(Og_{3SdE1l$%v)
za`GTAL1`>XQUxYf&+p<Tb4hZ`Q8+4g%;9oXw5cuR*r2kI2z8d!H0YG9%K3r{wfBme
z@>zD6*!a9nYOJ;;sD0J+A>Vq!sYDJXmKf)T3I^;*?O1ly%$th`x+RwwZ&<^Ls%W{q
z5HdFzMJfjDWMe;z*|ESec*?RKBq7M87n8Z{C+SVo%F9X?LwOTYM<(2s@(4G#ic8KW
zMU|VI<xUg9Q5AD!_=NSz)zUKiGGT-2kT5A(EjGo%Qw`*`E*ljB=1plA_^P*YHpVEa
ziaRoV();dfXt%u2@M@*QFZ7Q-1geAULLw5@fPeooAme1{UJ*p*Q9vWc_bf&QErd@+
zH(S>^%HqJtv&JEmQB<igLn2(hS_88XdVzz6d|to3C<7f=@~yNa*ve3Rz-*>ot}*M(
z2%hNdXwT&lvQGCa1J*!7R8ht2MK+xFN&m4<mia^SD^!V43_7dN3?LhFh9(gcJ)pEB
zIjuL5T#;b&c%-wG^kI47ekwDlAX_gw=q<;G{gn1)+8ofs9^lR`_>10})FQF+$e&ar
zePtmF<`g7{n9lyrqC+^>Lu(gr?w}%*vNO{J4Wx~Fy%uB^)@LHmpMJ!)YK5ebeIX!{
zB94}*3K^-gWC$;?POCX0vGnTDH;}v23JZ&?u%Zc{({X%{;B)t&(4p@u6;of=)KLIZ
z2C8LYiRu?NH4brt>kyZi<#_x#Ycfz3pV&s}nNrYh<LSTaIVg3IKcmKh0>QRmd)*o6
z?!oH2l*=2Pe5Sh4!RhxX$tAbC8IEJarlvNK{0}GCJN@UEu%oeifQ5Nv8cb)BIrOVu
zKkyT|(FV!J8cxd6vK!|%)J1!CKltq@CnQK!1>ObS@5UXB;5rEV+l~eS(R0)J>br(K
z+Bupi%q!{?JNT{d<J+K`-2CyEW&`pl#@+Zw@dBHc7Qc29k9hftQ8$KE)otksP>YHR
zo?U6Y3diRZ>)z;t!=p{xB8L?2FYOl-nTY34)v-|aQb;8w0YhY{=cb}Cc|%(pnZvlp
zsi^0=1-^NjOTUjJNU^oZU&G8wgaxurVPCM7S<cLryko*jjS1sR`Q^oD##S8qRcls+
zwdA<mfr#cplY^$slu*`|+7yXnA9Dk*5mOfRhl#gsE8R40<XG;?3>_(}z};N?qkvdp
z1fEMm)U)JP_?GSUkb??@TDo^*-EnIn+kd_hPPlMdXZXEVV2keg#qYZW52|BNbQ5{h
z=0~C7-#Zso7)?TZmju3#PVCK{g=(~)GwBWB<g{^Ek3M!+vq=v6O96>zWQZm+_1Ah^
zdSdYuWWL2QalSBUCh|Ty#!0z2+{{XsBFpxptJu2BBue#A%rRHm<liiNd8V$#=(NAT
zoa(iNJtKd<L7!V%Fd(cA`zYGq7sn_Opw8Q&*^c;16Y!9+!TyCmx2EwIg-w}zPV3cI
ziXZRqm)l(0TypTC>x!cL?l+6<l(bS2dx?LhqYKx%5cZOz&B2A4Z_`uf+=Q5P${Avt
zZ|^+VfpM7F1B!wKCR`g4`$zDjko;Ts2nHoj=u{=Ah0r|-i@x)(q&F{%8P0Rpw+ra<
zz8Bk(+8{msv1Fx{{(snd%b+-dE^L&=-GfVTx8R!K?(XivgL@#j1PksC!QB@N!Gk+2
z?yv+8cISQHx^?S*_5GOIuG2lId!|o!Z}&XsIW2V(#u2FhBA*&t6BexDDFvt0o%K3e
zcF76Nf3v$9hu8T1MM#MKV|CcYesbLWN4jQxe)7}w%b!5O!XR?Eh0=LlAFH)icNVDe
z$c{?{SL0*9iO-Ib&LQ}+ft1{}h?9lhU|b_PHmy|s^L$O<A-$6DbdOQXp^*WT@yavI
zx-=1c7bAbNZhIZepmf%nY7{3VU62`)E#*ibkY)MMmtQXvf@Qh%&)lJG=Fg2*ar&vx
ze$~ANY%LzwQe}rMM_HcF4Mro(y?M19se*ezy<E8cNDtvVsIj=eZpW$U>K1u%d`00f
z!T<qWo}$SkEhImz?=|KVaxkIWTP+#G!Nh5j5TkA}t1up(53|0%{HMEiD^T_j1OYD|
zPii?}f1KaEmEmKD*5upcArr#GmJ(c!1e%$9h@?zx89t=JDw-Y?tSsIVQWsa&`CNi9
zz;0oO(2ayqlk8tHHOCT_X9*=aO{&7Wola>K$<hat!ehLarR6ZZ?<#1#JNu-Oy-v>s
zaY-T0gSV2^*6|(-TKmeG?9<Ze%_j)c)WwV9Q%)4PY2Q(r?5LgYV0TBIS;F`F5}Bsm
zOB-B34slv>gKrl`Sb(J%W(DVKsEOvN^_3LRLXc6%U>i-DQG7%hu$IN+1nv@`0xzL5
zRHGj&LZgE(YYS00g>#dUD!E$LJolClbdng+o~rq`b^p2+J%ki|i4BgO>>ak@?_=ZZ
zI^_=icKLp+j%xMeJuU%Wu^y{sU)!xbLF*xZ|31huuooHvsw>Z2WQ9=v4w(iRLs>l_
zbH77WK~v=g6VJ-c$16e8Lrq)U#x&^H{F!AK&YJ5mCNkp08Iav?-#&9JkHY|=qLu<#
zvHa-A!lrDTWwJX4LdA6SI>5SI=gf}r3J2bx=kH-=6!%n`0&B9q9HIn}+yQLF-u(EZ
zC$=>KIG+Mnf7ogIYJP4*;sJM9h_=b`->NJ;P99Mvvk%%Hun~wN`S#Z|2Pg-BEiyV5
zMZ^)I9_HF`E{gPDaKG1_Or#>eUATTIY#OBbX`QDwIh3t7d4wsa;#i-X)u7u+d#gZb
zpByyC1@gwHXL1exAkTeACa>TvPJdwkgDZO`?{lz%09ZJMD;p&8ePa=cIkIi!U)~4b
zjq4A4aKW+Un=VXk?a_~f)-2g~wkyN(pZJWpLuv&VU#&`PK)wmQa6V<6F4I~G-W+8Y
z&~-dTrZvtfhrwlFa!+`<2>EzWIZMgH(3_qiDxcQ4@lW4Bfw^?jUK7<U&%5QW+FQrH
zgC0Mq^ZK?+TX*RMkEV}7pB9Oh%=g{LFW|^1%!ltg)%gi{CcF^5N==o#3WD+<bSE%N
zniDnyo<&HtO*t+r<1|7i=Tcbc6J0~e>WU_vsQH9YpBYWKSSE?C>oVd~)o*R+0)G7j
z1=VOKGy^w68g+oXoVo{E_DPbE%9k?m$K9zL+c6sJ-YpWaTM;)x-qdSFVT0eOl@^EZ
zGh;7@Pkt?qxnJBtVvx4?iFIgDW8~3!$o+N@E~mHHVMu~|LKJEMziiJM>KI6jolG~8
zB|Y`(5dM2Q*FMO*uz;+<(Rxn)j7&%#1ACG@r|_TSR#Oc@jh{M*(4#C?yX}HkV59n}
zHD<qL?06V8!mIhOTqY+3r8@`pd%DU3Xv!wctn~wOchsu%e)TcTn<eW~Bt;xaUiDL(
zZOwH^Fg_3Z$Li(ucP#}~3HF{<Z}%UFh{4*_^w4awYvqNv>}j9M-p!$A{%|_b3W^RA
zvaOyuR{LMy%)OAh()xpNK8kKum^Zp2SZ}lPbd!Spzww!zPH;Zzo`)BCg{nncy@~1B
z>$bkXex~$xa_-d<Tbh$x|A-Bi{Hgr%F84O3tM__bZ-RIsFo(Gl3v#s{7}v(YBW54!
z+IaLyrB&#Az`Q}4u`e1YL|j4|?(Mra4}=G`Dz~h;)qVzC7c(E?P16zx3jxoN-PXW#
zrSiD2{mw5;tt$jw*REQTX`e2YDXzd?$9*!HMwWYFDT5cYZzzXXA*xJmoDOr%RjXAS
zsCAovtEYaUbhJwgbAE}^59tozwRKz*F=Hs?7S=DW=~iTtWwSSyP*;Tsup--H)N)zy
zVV8sPh5r$2@Hobe{>bPwPSZjQ(I^ZllyUqv2HzW{b$}9r=F{B*CaKJIjU`DNy;|g#
zw>|**l2Chp=Y=1K%NwStZ2GCbf}+l1Rc`$Ip4cV&r{}B866EXbLIdBqI9wgBBo$=C
z?$aEM4>WUU<2S-rMgJuf<rfKIyGy149OUkh2to|Bp9tZT;l?q+m>3)+2Nmja+cd5?
z<Wln|k{qI7r=cjAhf@)941up-Nn|SI9X;?g$#>Dv>F>NMAdHu(@>l|^)yeQ=TtHwN
z!dQMh4%hjtnL3bG5|tX!wq;JDTEH9&a^eTf)ivyP&G3y%5-IDVgARAcHBUqOLGK~E
zb76;@!_o(bj+XnCdsab;nx4z)R3wd?gg6mMPf=Z`uBVd8*Xh(bHM8KW-=QA!AO41*
z6pDqKKl-86vX-wDSB!2*EFwuCjW}|o+W(sSzDS&J2-NOrSZ{f|qaA?3hWu8=)BlHX
zZnc4G?2DpPLLrX@kHTo;oDkhd71Fe4fq3n|yFB`Uz!eZ&$N%dz;tye7O))i|eEX{s
z7~stgC}_64q}%kkywfQizkj8!`tsIe*<vuaGCW^ecloY5Hw)jAc@FPBu39O7i>3C1
zsQI*B&5Uo^=iyj~XT6(o+isEftBi@ZvZu|H2t+TsYtg*#67}`nmBa>cz4;Oj-G4b9
zWT&k-<%w`U<KekwY5mZ1>^S(WG5qSlC$uAsx=cVRnnuLMwD>eo<crU4*63c4YeYAK
za3&`%Eq1W%JnH5sL4LD06EHn#!j`jfFjm~x;=p|g#W>0+)3{@2vZ1?5wAkvT&)iCJ
zAkEU}Fyr8K+rZ_R-EP+(%2jl0@~AO)NLrkC9(`wkcX4K~P`iDc?9$qt@l8gQuAbhx
zoN4R^-LX)Kq~|j6kum&e@1Y_uF4yRn*oRSOV`;_?B<hs4uJb+S*!43MFL#Dz{?jvo
zx;EVEHcNxVz6oM(`w^v8E_Jk1CX+B_zY?e9$Nd`p^EgYYj09`;9GhXK6|UUuKE+sl
zA9J<M6kmeZy=0fd=8OY$mm7o~Qq%t70TLVEDenhT)2mIN_EVYfh8#%k_OedqbduX@
zSw1b^i9P=M9LkKehZU@m11o#GW%WiE<asS_M2xOu7#1JN&78R1tL!GvC{TrxmRlH@
z3G<ezws;hNAQh)P7OIVa$TK!DC>^yLTS98N|H;M7{_~%sRR!$T^)JKaM=Xk&%Qy(9
zFuTR;S1g@`lu&{FL*bjxHIj}Km*^}uvkCT<GS}HwxsN%miLk9eWW%6t%aTKGmL2eR
z1ODD~QT&9L&=&NIcJkk$_JmHxgI#?gOT4nCN>|o|O(mgUHOzeaD4)lwkAg05UVfa0
z480|-^>8xQue+VBDiiHzCK;Z6d995OclGE}Td30W8u{j+BE`zM>(0keL}00mZC*Rf
zH#}Ym(2E&eYWRM*qpBdzZ4o3IF+u&jPxgF))o3^xi?3@yC%@ub@_oc3;AfsN63_9I
zpy1Oljk|ckzODOkKa_6SaQ*@~ebD0jTB9LsL)x?RR+T48uAvLN5dzbtn)}9tJJmIY
z2H7u&QIwaCAS6zfoo;WjwsJe$kk9v!z)k;(<cz6Lgu{$Mxee9aoKBmY3VDG8CX!W_
zIzPzfjM{%~p6o2c6j|y-5ydjukn?HZ+Zvl69@kqrC65*qjXjfIc1z{_p}~|0ciHe9
z+HQM@8tlKTjJ(?*K*Ucd68O8(Rw9B*Cp9(=^%%MtVEEFcZ*^yOQyedM*3=aHi)RwW
z7XCS;jH_4v@Pk+&MdXUxEpghrXt&)OPyBD7;32mkA0eyr0HtPUSWSk!aM>K6GA+r1
z`^EBzt_&St1YoFmP3YGHm#OckIs)(xtM;ly7SuQH$#Si*f8w#;zZ#YpRQO{2;X%^$
zZ|3pT-}%!j|L<@)o4_S8*|I6#G9}jXW0YlIgr!GBphxu3qU4}8TkAZFijlXQF>kXX
z_HI|VHWm~cm3dYK6AM`um&>=r6K}Fv!zW5F>foPen=`fJR(L7J!+jlOG+~$F)F<xz
zZsMyn`|AL#Rbc1x?12#8oM*-^CvPmxpc=KR<2fW}qX|{JnNNW!Imaz7#ou>ko&UNC
zVtV*~uu%Qd{nwO$rEN|FH@iat1Fm6i`K5p(5H5<_>kR7t`7p-rZq0z$&@>EZi)B0R
z+Uu9Eu;uvk-d2!!#BHh@38!RyZ6;Lyu#ipFzi?lmI{bL#C$7x$`W7m#V?p;Rj4HNo
zzS&_<EuHngaogh9S|i>#^Mq{nz2J1vOz@6Rb<m+t^}4sa)OU>^7bOIo3>UPvTcgaU
z*Iv2E$1+#e-7gP?&Qlh`hpg2ClhG(T*NW_oS^1V0gCa31xjiH5=2P+<Sg9(pJ^Sko
z=Kk885PdoVQwvaxQL08*shUM43PH#CwQE+5G#%Wbc{WDf+Z0*3PK=MZ9y)H1F7L01
z$;M^=I?F6HZSqcM?S(>xp<HSEdGoB(rBoSXe=V~c6Sk!n<#=trr5DeW?%UQ}A)3va
z06&fsYnILT57HNt+9$pZ?k$QNyfYh5lnp_O4Ww%Ik>m&>v+Cd)YP1IyVYuuPtl}&5
zBppX?7vCcBbMTGbI9W5-q6(?M%zGYwg1mQ6m&%U<Wp2I6cznaB&Wh6Cf(`}_??OrM
zWDTfUdnLnsu6m{W^P}Vb>A+K}Zj((=I+U8aFz8q{-xa@CiMSWC)pGBzFlNyI!kI6p
z)Og<~c$aXTVT~gA_(In*=rcLmDbIY6p6dqnzCPrd87u4;JFFAWzdj@xPLI_ZdgQs=
z{+f_^Abd7Q=A;pSlHiE@Zo`D7vAL7AFj1Ig);F*~<qPYquP6GCUpq!5iLGNr+Fy95
z^bKEBP^p!7a&r^t+M0kt5^FzVvti+Q88~&77MrYFYmx7MlTNE(=zmfh{dU{t#J+Au
z{!`7763L9*<u_@IVr`NSzs=#3=@^lM^Y!6XbDCsLV7qvY*gE(T=g~cB!mzuI#1KBO
z+%12BXAC!g`Os#0l#pF;N?<r4?C4tDlB`7k-5K3Rj_-0GhA9V66INeB;@A>g9&bo5
zH<phxv<+%)EC&F@T)m=@?RoJ)!LmbKDZeJdn(6V$HPS_6gC2Ux{3nLkZqbV}3kjf8
zT3=~_52C647?Y5Kl`5%MT=Z&@yLDT+z9K1QY8(hv&JwovxQzot$gY$UWIWTWqw4PO
zP;<lzfc(L+r87F1+6hv&LS0YcMtIIE04;H0K;cox@(M0ChK6zzwlgf}C;hqHH2Z7_
z@_s2&H>lPy?By(;68`Dc7ipp9N^H1j+Uy05AJr)w33D{gb__gWVMsNrY7KqC^aIa`
zZDB#nhq;*utzE4+i+v`fNM$3x1xxx7Y>pq~m6XA}Ns2RporTkow9QQX<wU&!8nk2J
zco6Ww6yTK#=gEx@xt5fYd$XW6Q{<2j|6<NDB@{9zAthIxfxKKF3!EO>6H>!sV&G84
z14zINz%NqcO$@*h2I$I%YqgT%fc!7$qfthtgJ$hN5wE-oxbOc!q>C~nNqyALcB$1_
zWih?FxkP^@ak_U6S(@2Zt!*-pvQbl86ZC^27TLE!Re(*fUevo4QT_oYyrn0B4C8BI
zwGY+~!Jf&A--c{dCa|Wh_2(p!8O8l;AI0`uE32@(ev!UHs+4i*tsn-+m?*)$(zn&;
z-=ntab09+@n`C$oO}WvF!glgcX9GNtOV=<sfCaTyGyYF8h+<t9IRCp<f_v8b6Ovyf
z`yDpGMHh(9J;eid^0r)Utr8SgnoA&`xE^eJjP>CQZpdb;WK4=w`5x@0N%W4^leiCk
z2@$G;>Bkh3?}nZA==A)dnXzXVK^cwWtZrx!Q7n(bi^A0k+D6UgeAX@eb>sm>^jw5u
zW%%az-$=x?fIJ@pFyUO&@2y712c}MnOn+XfZRxMDkDkyr4~u1nce=V4m-%;ZNZO)>
zu|5(T-tI;@bq-u#)YIt%78h3T)1re1_q|{KwChCwYN={B2>7wK)`Y`c+@(gmkw$W*
zvBq=j+a-tY!#e{19BwyR65FZ%R6VCWTY}i#Nhtf`U$=99gE0HYGsNZgpd#=q-_!CG
z**hON-YcP_Cd9%D60J4|6?P1W6>1e+PA{4*>O1d9IgE$E1k?vg0O68f@5Q4YdVfCH
zJqqd#-E0v8JMVlG$MS4P7B=chG12Od;YPr?+(Rv^sW+KBkV<Xc_%UA*m{k;@I$`%Q
z;8)yj><M}zPCU+}PYp8MCKv<X)zl$QSv~&h5;(M>U8RQV&lhA(#n^eTC-U7U*f9kj
z&G6ku+r3+d&4Mu|x6<{CQ?|p8jFI)KC{4{ainl0p08y}+c(3i9IOClx@%|KXYt=q8
zHHt-v-!sNRH0s}=G2=iTljTiDAoB=aaQ+*zg?*0rU^Z*c1Wqd2fKe^;O3C?|m7X5D
z=<o{AWhz~NsIO@jfh0=PJU3`WndD*M{92bNW7ASz9sjh3N>A^q>(DC?4rBWLfk{aT
zGD?OAos5d$SlAw>M)whGS)hfm;Y$%HXkEW#E!wji)1$vCJJqr~zUn!c3pP)#Az=6j
zwkdyd{vrt0lv;!D%`(utI6=<+bxupTpt5{4ZC|{_Lh`=4nGB+EWd-=ljijtGNR;w&
zVnA7eslr<Hlnk;v;kT|~*CBxFR4sSjQW?0)KO8nZxM?7Q1`*X)J+rS&II~(nlNa6g
zvwEhm1sT_AHGj*8@6I~Kccu5n<+hx+Z!7Zbth_z;%lAWR!t*4v7S^G6aAqt2N6LKS
zQc<Ou=&LBWaAGx+*TSYN$32#lVoAM$iS~HZx#HKfNMcYX63JF|_veoGqYAk~P)=6r
zv&Jd+$>$EI-c*Cz%`}0u;~9(A!L>e$>bq|EzE3naA7;{aNIj%=DTSUHj;ix^FVLWp
zRrNo}RkU8x%X6QQ(%gBpRoEbI{aY&0F&O<Z4Dh)FXPT^&nT@;_C+(14O%XZRFE?Bw
zJ7e~{tBNc|Yvvwn1``I_#})j_RafN&WJBUr@_yp2ntv2(9j#kf8i=^YS;nQw9^DJz
z2V#i_Np*izwC(Dbpn6pH4K@l5H5O$-`8-P_KeOTSDBnSGEgjM|q%ATW`{&*FHLvVy
z5j3YOlWJs}2$kr*Dx##L(GL{6Wx6T~tYiF3^JZt|=-$ZwQFl`^^t)u;zqiahjjpxz
zm!mREm~G>1A^+B)`GfT$8&=MJtEEx(b?sk?q-s|>0mOe^l|9~!>I?m;r28AOvaz-9
zeJ-V0-f5(k?*$3I_Aj#Sm`oI}F0e<_=suZDEZ(U^J6uv*P)IQCxneb54hYX?Qv_dp
zSWq4He@x9X#%!yXbW5|l*vnpg${Zw*5+Ub`^-?wbR|Fe(68p7}-86E1w0?6&%lLve
z7fUN=YJ??u>KEE<hmW`r-bjyD%#FA8TU>6?Om1>ii}0`ttb3@Y*YQsjR#^)2n8i<v
z?B<J8G>(Vnm%*%msh>@qx62eh*BMXUHLX;Y4ye0iSp^;HX-?bw=LuSD(eI38Pv#B%
zj9U48*Nks$8uNMja51QtS>D&eO4b<PgFR-d{kJ|-bN;rXgHwWx<wk&7(PWk^<Gz=?
zbI$oYcOQQvE*wc81gFTxV#8d^r)uL-OZvFn0nhe#UeiMN96C2lbiht?*eaHO+uMj$
zTQkdKTa=UTv>lfl^VRuP1mgeFk!!?)1p52aG6^nZjZN_7bWv1~WG$B<2$n($SoOlX
z#!Dx^M*wi|A#9vkS9;h4WE?8vi6NhFD)(AkvFuCSeN}f|_w@9whsHX(nfKk<V?%n8
z3{@n2=0g2DXf9r;ME;tK^0Z(0kX8`BIA^QUdZ8dcAp}b*%6th7XFth$%&N@n9bU@D
zSE2s&?To`2|6$~gO?p9AS^LY2%<%a$!j9J?tlO=N12}gWg9sYrY#7pq$txk32oRM<
z15LtQ1K1Kq&gpPwH<jXak9Z)P)ICKUb&uMCqxYM+E=<3Sbx2jeGwz^X$tB%dQY#%=
z41D2JpEUQvezOUJ+eC#Rk=-o8ILjiauHNq~bATnOO8NvI)_C1iiY)VkBFX1mLVT?W
zt52|cF8_%i-5Y;QR<n9>{bCi~cgCL4Tl|&1e~yWe7k$E0i}X-@KHQ*$MO?%{um_i6
ze=1vT{-&%s)1r?m5Y<igzHkW@Y6Bcw*Iv+U5y-vSP($X8fo9`%0f_&=DCA=&05ssu
zFCWfh$Ir|M*}zXl2;jvhobAg*)?3iUrFyC0zyXm;3@KMbcp!C5jJJ-m2<4Su8Pq*X
zV66X>BCRM%Vpv<Tu0lv%Fj8E2wydf$0Bhr?g3gw7f1NMsrZZWr*=>94s70~-a}7i6
zO=odTsow9>TAcURzIs_GuX?6XCfw{0X)F81{Ai*6cUWh%iSaSYI1@2|xb1O#e#6Jl
z;G?;1Xn?e)j{cG0l~i3D%Y_Ff?3tWC?=3RqUI4k{;{dO7Usa{<xnJ|?Pv||WwrP<o
zjez*bwTB1`3zn()+DE_#)sayq+s|ppX3?>FRo2q&e7U^P>pNQ8jR)r>YTH{9^3!iW
zfsV?PJk%zIf1&#~<i6saxdMlIsA7;RsCu>f@QYEnpaHKLCF&T=A{QEzFd#o9;55^x
zEw8~v6z_1cdb0D)%$@5bB9Wk@SV}dPlc&=mvdUi~e3&VvLu30i?NlpTh%Umjn&K$i
znsIsUj_&1?5S;<8C0=ifSAhoq4sMo5dausc&XE1rw|CNL0tG%Gq-Jl>hD?S1pLg%{
zu1@u^DQ<smy)y^<F!b>KOF~VqW97G=EnkY&f$a`|A^{_{55v`ZH`nnC9FU$2LoHxm
zV`D+flQW!;#)TJq<cnk>8`7HR&c`Bc*VGkPs?_ttDnIi;g*42#mcJ&$IDhNxTK~+t
z6+TcK$aVY*i;x(sc}wCAQ4SFuN&$&|A6tQEWW(C%>HJJpu2>AWTai36c}k9h_$+9c
z)2Zq4uJSZpjW$&>;dm$Y+|ks*vve1~vMNmdAkC!O<cv`**MVg-_P%-dMYeA?ersB4
z%T-&jt4%60oCc|cUI~eO?m17L*=XIBPy+_%Ix^~wV0gOQnob|<fxYR>=mgZIsW$T{
zY4yZRml2?yHZ(zbQk2mlk=x+-`X^wn?I$itaLS~ASJoJdV!S>Rs+#$l!IK9zq>br!
zRuAXBwt<p|`F*lQmMr3&!cDH~GI?s?b@Y(2j<<o!eae&wIeF<uiU6YU#!tc#Hvxmo
zR(a#+;B#?DR1W*>L8sguo%6h+CF>uhVTSFd72-#oTH%}W0y}<H0r&4hnV0N;JG#yO
zt<qxH)<RB!eMSAk5`7@$X$pMsdKdLzm?>~}6x5o&zT?SEtGD5;o|$I1qSQ6-l(N21
zsh{+Y;5h=GmpiG25mF;kgk(fUvM%wDb9L0(HYu;dqLWnDcl-J%S0H-3ND!20#*GK1
z7w?k)=F4O3e3->id|Y*&)ANs5y?aa`MJsNslAVQxqfQ0?HNIQ+xkfJTp+p1eSNB!S
zP`xU%;?H=MSN@anDypurm=8wO10lBVUf1N((l|f3F`)cX*>`A=k6h=fI@{$h5`?{F
zDJuy4wA5QmQp=9a!(&pDdj7$RhYn58&8&^oe7xlqxs=92#M9%1?UA+q0y=oQ-a@iH
zQbBNYiN9S0g<2nttwlHep43}AV5w*7KE23%jDZ!1`q~&Gdy~S9JgX|m4$&tggr2Dx
z$qfpyLqrm~?CDg42h}H<i!+Y%g~n3LKJaok=%-ai)rM2jnB}e}X2U@_m}cfVv@bTR
zzqF1qIM98D;hPQ<PTT!)7gdFp_f3u1o4_04S+o`lzg+zfNzLC9wY&y09zK~C&!fFt
zb8=xFcQ;J@Gq^rix1ztbTpNl4jAr-v4SrP)e{q*utn3(dbCIhxt#7k%&3b(%Gc&**
z0taNCvI!<l9_E(1QpZNV&^1l&F`Yx>2?R}LoXRnN<`d`dnyEsU4rf^$?pXI1&cTco
zMMB#?aS4m1mO2a;-{TnC>TU<RHj&AjV())58|e!e+^iF^`Be`s;YL^76y4^iTm)a%
ztqFe1-aI9n%?n}3i!C67Pz{y_MWm9dNP%Bu6sSu^X#h|Vl~nkRARcJz^A9PxU?%`Q
zHB$`i<^~z5VK<4XCH}zy{!^l=xKx3MA^<@*fIblgOM!cS$x)ZgSVkfH4Cu*+-~7>|
zhHY&IM8|AW@Burp^5OH>{{fc-{|9EWLro2v=hHwd@o#rn3jXYaI)JzNkQ5b?mJZx-
z&Q3*bW|K@Sk@X=uD#Vdqk-Ef|0a*QJ@a4msKcnJ+giWcUzk9WRjSA^Q$DvXNRv2zz
zo7xAgl)qVkm8P2|8d*<N8<*;wCoL)@5ZIvl1N(O~VCm^nf)`<x3Qq-aFCBBVIJ52c
zfFBtdwZy8w5Do}w8hF^g3}q>BI<U*lJp{bkMmmy_?Wa2c7c<QNAZ(~1vOqmSOF&yD
zZwn*P>?v?SiFt$?{-HcE(IMl9Kts1C7^uxgNa=7i&f@_ZZ~$cE4BS?Pjia$cPYtWH
zK^y)3KOnSiKo2_L=+>=|OXU;@Fb%18N#jy&0B;fH9_WLPdtj~f1sd#05Bmyiz5mk}
zeQi>>RHf<IIQ4$Mav=EG)^WfqE&wQl5BRE4P)j%fuOS2YqhLi3TMM*SbW#corz2-!
zF<xgJ#0k?Uj%Y^0DT`=Ef5-_lX9a^v568*9Yz|X43ez2a);U3k3CF372tiVM2LD(1
zj7A)i*(ZPw<{=KbwOX=1AxAXJLI*EpK6DPkD5ZdW-miFO!u?OUJH<d<!1Eui3Dkhr
zvHvPCl1DVNDg9sBH34c^3Qh`f-%s{<Wux?G;(X?1k%RO~DasF+c%V|{4Ek(WxRvls
z49sj!Wxnm{(fRS`b@P+b(fPG~4Qf~gO%CO<O--v4YZxSB`snY7Mu4qqmIIbTXN70;
zL*VlO&r0~l=-2Tt-pk?kjVK)EJ9Pikw3YF|ANgPPm@DDL;6$KbBa_U3%(NPWBHP0P
z_6@wKz*yFHbTjuXz$yX4_QQy%R^<#(ch1+pAs(5$y7~ze<9wvtAvJT>W#4r;|Mw5(
zUJ1VYff=yzzuG{Ynnw~KHRlM}{c1}x@^PHw@hePvMAUZ^8Vf|%NMb-_%grba=C+lm
zE<v)z!BNZFvj5PhN_8#l5i|I#lJdBbG;ygU8~K<^f8F&_e<AY~^IBN>;9eQ<WAy8x
zl^~Hm@U}_)Z%Jbr9nZ1}^Puw4XNvwI9H87eXCHTn?)v-a?-zZcQ6U@7sZw%qzn`bj
zU6+sT8|P%X-I@ngR8w+aseu=rn@2Ak=>MUQdrkQ4hG*qiS?RO;e~WGPWk$gRTvu}b
z$+>x;pIA7jX_=Qepe5ib!~k4eFB&ka?g;^#v<K|XoF4YBQxcczwkIqq1OqT+5j@Z(
z+W+Q&^9!K<t_{GAvJl8nSAsVprIzpmqWGk5(nWvQS(laq*VX`Is$7Q}_LUwmY#uz2
zcaI@3RD=0(K&EeLz>IKR7lkZfTS+Tn&<v2`2kQep-Z|sLFgM9XuQ-=+MoXW!N0d@(
zuf&%VJxFfZ$P+)x4vZ*KpgyDw<aRMYsVx2L4401wD-NnWq2UjQu?wiC*JYlN@@<d}
z;m?KQ(z9NcZ{=#r2yKUaUp3vwZ@wi56ZxJCHba*tECKc#$vS$l<+L>kRG}=83>;?1
zx){E_vN0$~4^739G9&>9dtm=^EKl46FkJR_i|{^n+;bsYC87Fw?`8BN5T9w|TeI@C
zirFOL4&0PdC`Pns%O+j=GpsQ(AC(<bGhLG5Y&09?+gLveu4R0lot!)re;_9gR<1`<
zE#_N>f2ekpo-ZAP;f^do;^dcvHoxp&!K6>)iZmY-TFLXYz`LGG<A?8CdpMUC6cZ3a
zgfxPb)jYT_3JccY+LOZm>0?&Ww--%O>1xdlz-*3-Pb0YAen1^SYfm!y<e27A`Uczj
zcDkh5tqXqsXAN?};pukVD)VL|y)+)bAiVnZ9JQHo=DDbtijYISi3!O*KL5S>xsSXi
zp^b+0){C_$$%z0PP62qdbjDMkXajN%^~EdP79o?OpD(z8x*i>=7SkeDvlsOKrvLn&
zvi8qe5+(BM#p@_xz+89zXxVD{`BH0r?#<@d=cxZ=JidBquo$$|c=!Ki=~r7;8C_-u
zqZbC-lm{xmK%F~GvJwU>22AZj>(4n;OZ#u>Madwx$KM=b0s`CR*f&oXLY7Y3$Zia8
ze?4x6eB(T`P;r(C(M{o~2AQz%SiK=f10h;Sg5e<kjY!87&0oCac$Bm#5K_o;kfJlm
z?$koKn0d{?E;DMaAXl(R5*uPg`POeYt|>#A-EKrM5a_QRTWDjzEtD&E2agIO%{ep!
zQrY-r?hQ}m!AOrjM@zXiVm=D~8o_jCNH^B|g$<D@fSLEXf4(9=Pn6$YMHh2nDw@E<
zPuhH~fKOhCp{&NCqqEUf-CzEN{1fQ4Upk62S@TJ6ax<cFcC$lG>0xuMT+qUSoSeBt
zXQD7xt>?PV(`df8R4q^K*T{tHP&lHAz_=TZW>J^PWxMKx^uQ8MX9YQYVJy*U{$*!W
z|K)|ZkTXKq=%E2QAy>%r;syZuf>OSYxv3|LNDy)nw|aFHH>2F1VlS>(YiB{f1*;pp
z&@P_D8Wd^yT;hBsk~Mvja>9NL#Xg9-Z}x{W-%+P9q9C*UPDI<bG+)+YiEQnYH0sd^
zvO?YsAMnoj6w8YD8=IW(5A`_W2PrcmNilUpnFyaOKZL*{FDOY71v;RPl(>k3`bkQ3
zfK$pW<D;1RnnVP0TrZfx0c{jJ)SUTI3fV{U<tJPm;as>ec6V@noe~igbRPvz1wQ%f
ze+RS09=%Gy4Jfw;l-s>dnev)m;<aqpM1j%h)D1l%ke_pC9Z09Q@~duQRKx4lzZ8&a
zBc0#@M}6wYKa?L~b#6Em%Ht>_>Vcz1g%w-)>m57%H-8_6!VFGG*ofPD8BG4fzdfr`
zRV6L6N}(M)6g>WfWX^5@p#f--){slB^`?u39r9po@q2WRgdk|2Ii92_kqOzknU9|u
zovGhVPXys%E`PT`UHA5|?=A+%6q<{V+otzm>~$xpNlx1a^rkL_;@N2y>2l|-$mB)R
zN2_hZUd3)JMm5e}h1DYyZ~S*oyK?s{m}O-Uw*3b$EJS6mehPG<BCh|*%kl6A7QK%Q
z+sMz78iOGPFOB&sIks3{#6Zc?Qop2uE7_Pk<jiZ@aU^b@?J1>+zOB#cJ8LYDTrC}v
z%7ww2j6T8A|936o%3?f9onJ9o__M}3{vTJfC}-<c^y;bB(4C&m3I(qzn`bk9t&jnp
zE_sbxWifBk$q|OhBEkbsb#WrA=X`TYss9JejV5}H`}(3$DW<G!J?Rar<GiwrPFv-Y
zi;nM04Mr7T5-Ir=p3te!Q;4k`^Ldk2ZCR)LVWvt7A~IVg0L@f2(beA<hqUD!cbH3f
z-QLY+wWHcA8+`*R{{LsQew$z6C1QRyT$Wx*7%b+vi`B5-+EzBaI;eHO$~hJEzhFjc
zmzyva#f31~y>r6l?0+h#|8RGTCwPzq68pi2NtdWi8adG$1#{OMZV7u&W6+pyVB*k<
z4(~coo8SvX_rqlq)OBL}Yw;^vYaFB#+h25dn#JiqX^jab5$}@es1eD!GZ@`I>iCSD
zSIyH^xYFb$2#%Jpg}W{>o}!4w{PHtl;&>s+-7joO=HO;kP7+QmS4ZXm=8eh@EaIOr
z$NoWbj^aa;ElUX2v?U3r>fQdC`Z?GaJf2xbcu$<QX|y{7)1W>4=ce^tV%h!A2lDWi
zEFj{k+Mf_#_YX({t6cmZ0?K*^FdvO4c+8ZxGbW8dLu0&>r=>rBW;*#hFl82+2QI@H
z+@-;ZoUva8!9Vaf|6oD#2|e0shWk@&|CV29uNxxUBnpB%T)}G)T*KjXrQkfMoA4(A
ze=F*0w6*oPg9brFAeWo6JfD<8h=Iu7JPp}!>*6<d;E_2i7fh&vIGo8O5BT<Lt4RmG
z(zl_EkW-EBk>}ZeV->wn^1SX0N<m*YfGQx)eskJ8^Zt6Y`%Ud8+7PKr(yIW2M*h=H
zbdb?ajHGm(02`RQT{oxDPx>Q!_*T^B`8{a!ch8#4Lf1Q+Aj=yUF`TbwlRICGgZ2b+
z(^bECnjTdfNHfe={bT;<p0hc|AmQpMrI&t*M}<x>)L%97HyXQ0h$bJIsw)2~T3r-F
zC*es7Sv@dbH5_sxQ~$k#bCj}}<_akE4>=#%yyl3ms1yDt(j84cNwFq0+N~2IpQzmO
zKM6!Yhr;R85M$4lQ|5cG*uuv^3$l$%JlzqsQ{xs}8A@u+0gf`lGTz$%Tv^VZmB%_7
zbAS5i`Q|S@Bwk?q22SqZ8NRe8|8tW3)|!m!Y2P2X|F<KMhG#S8_$zWD#>>3IztK{!
z+8mB3>^#Hw%od@gUIy~#Ki{pwKRlr!;7E|Jmhjf{+0!|>SN<UbS6|{vAv<*+*0^n5
z>-bF{MlBKg+-hXr&g#{<u=MoaBkzdbovx9b-qw6!jgsIFGUhp7(iXnRBBKAe9=6!E
zv_Cbz%pQIBll_#whW#`G_~k2MFBU&@kG%en)&H|ACtbaPC0&@~w2B2wn}PW}v55N3
zPJ2&4SGu-q!gr<iw_9xt8Rz7GQ#0=b*-uQm>?chLY_;vKOqFW-m;pM|ce<x_?)ER*
zNd|9DS5n5S-CW>u6&#db^9R*C4%galEss_0s{z_ZPQA>vd_d{!x|r%o-Qk7*d$wXW
z>8<94(N1SDXSm2-KmtbhML^pJl)G8)p44I((|}5D)ChMh6;G2*T@1+lKFdOdjPWnM
zGMmurzh`Ff*GI}z<0)Yc=)ZVQK1A@^4V?TvD!?(l(21|lvt{!(S;Vp=-A9#gUi<Nb
zk=zf4@(<4RN`Ca=+4S<%D>}rys3W(un}`DAq&eHpBC?8xOoYU&c~BUxz3xw)odZia
zvvHvj$V3Zlx8#ZlRVbA4tiH8Vr*UJ{Ohgngj2pBy6x&joXAEF_4B$3+B+1$gJDY(q
z4m(oxU8-3uk7zZBZxJ<E(z{qv61jIo<XpweiYCF4B+edWPc^x75y!}xR9S=Rlo?bT
zqBzeZI`KAS(t@r<VX)IDY@Y2L-+3lo$TYNB8>5-1q$|6F^)LsCxfr7AJw{psk=7o)
zPfZgkM%o4$`^ba(z1IJ1p_XG*WzL-KY^&>12ic*(O>cK1iG9U1R)FpO1RQs>3?rID
z1SOg1-}7<!ae=H&Ar5v|caLQ-{Ay~r-|sKWU=ERoKaOZTGc~XLv>VZ1NDw8-x>PPA
z-YS_A`fC?*I!plrX^Z*+f2LAxr4hoA2skuU{|Z}#Y4;N8iR~`@JBKE~4!!<DqJipK
z9h-p|Kz&ZBm|M}B`nal)o47Xv6HIH<9Bid*S`IUfO@2zOGm-^s^ge<e9NZq~OzFBc
zetbvR@<||cO2Gj}B+Pf*fD?W|UXDI->I9kga{E~$*L*Jx6RO-G3in`HcDx(=Off0s
z_@R_xcK-`JDNbcYG!hZPW)18G+Zk$L)c5o(ik6Pa#MHb<=!ZXZ*su8US-kfaC-NSW
zb4>>aan8KD=5~Hn1I6YUzf%q>eNqk<anK@cT-sX_j5&EA>Gpk2s8GCyErRyYDMSZ5
zHCwpM#2_T-Ne9`rgXd-$A)c#agA=X~qf0jYGca8z9@M19+Oh02SxmxkE@Ju|uZ$yW
za8kMuwo<!dti)i1d=@K%Ni3TSA%Tfp4;jj`pATBY$N@nyyT|cdgHaVgui?|rkI_QX
zzbmp}#*9nAgxnae><oOmxjcIf1eHBy0M7g)@UhP{hX}&{B}WYv`bo_E=#wXY(g>^(
z{ZFX11MBeu7R2hqgr=X|af6B06Q;5SIQO@Xi|bjcv6Qg2w-p71pNSD6!)lzeK2QH&
zIE^MI1n4AzNIW>B->l$!DGTt^?C&D+{7_n?_ZU)&px5ND4xl<40wBU^YTqEqL<!8k
z-)OG``>e<gxM?UGstK?f79fHtx`W)sYVyyd(eyMznC|4+sPpGxxJ*dQFsd~|_}A%n
zB=knR(;Oc5-%V2lmcnoW`(T6v-VaP*Ui?(}JuU-OXdqWA+-6FGkONp~=BUtUjMrR&
z#m+8T2@b-Jp9*_6!s@eOz{CjGo<jrM3k2Zk`!Fu1&L4JL4lqXKpuf+r{@$p2Va3V!
zLWr;r5}tMCMQDcuF!eFfo6<Zp{vR>SHSepbe%d2~0wQJVE4}B(bP`Lw@v~2mHbW6x
zn82dL2~_9bZ|pFG_o)BM{{2t@xQUnu3inyJeFE3du^3CdbUyh$(I{|tI(Rq*XZ{=4
z(8saSlDnxhdM3s6P|V(qoY|eRxIxa@ov~Djr+7JubWJAu2-^mI0Jx>quA->E;L*sL
zQP|n6c^70Zz$r_v6^JC6L_5junLWuR_9xJYF3wD-<f|7IxynG_eZXeWs=+PS0bN({
zqdepg-NNc7lnuaK@MM{`X~I4KvP+1Waf>A)hnp@JzcB+3yX!9-hW;7Z#t>4EOAM90
zdLY6cwC}5Zzs|M;`}SiORwo|My8p;8mB<)wx@6`SQrKVM+e##7=^B_NzzNs>4RJ{x
zyvAt92^m9^mghwNsDM5YI$ctykB&$dm=x9Z0h>S-(hg>!S5t@KlDK!olDHftBYc1%
ziDUrW1`7H^92sr6xBFtY|Cuf<uPZv`n+@e=4)BP&eI6jFOzHp}ISzG^c|!^x4K3g=
zNwO{9v&$~K&b=+V<$QHK6LIUT5M81Y0F&BR<iI~?$DvWNA^rj%&O8XBM7cFn5)P>7
zdaQ#$6u?0;WoOnb+;iMlL^!YF25)YR$^9WV#I13A5iuetQ{K4od?S^`J_Kh;-3VNE
z%INGkP8`aqh&~tU_VfGWjXI1fJ_82m;}B2W0T(7e4?1|?gkgebDN24Hr60RFo#^<s
zQ6@bMG>vbW$X!D<W(Ib%IOCck;XpSz$%qxBt%oM!R<DH;vX=Q97Z7xll0eCuk;PE-
z07kkF7*qeQKg?K&uyt{&uw!uSA>KtPnkgY8n@q{1RXTsN+tUqbBCK?Ig`l=&uts#c
zGCQ2vnpO}52LUq+*?6P`Y|@irMEK7qScuOZ8PSoCZ&Ao_L7~OH1#y9Wzp;B6%2Go}
ze}AT2FE|VQSnJqDtn?aB=3V^ZadHE88k<2E)W_ySSzXC`iF2IEx)nwNS<Ce5;_X^c
zdVuSwMZY#&CW2IF!PM>D7UzjmB6IxVw1A>HSZ(W~!FM!+!Xmf;Yyt=a8<9iJ5>0Y0
z4DE9BrWTH)Z1anm#VSo~Kg#XeCPxdA=8)Lixb03bxyi#)oZbWT_Z(u6$>hM}YX>6H
z9CjHj@Zr_bwg|5u6tO8JaA+Ciqe>#o0}3((ro|m9M2G?ESe<rp!r!5KF)&ihOt{$V
z;`ogo?-5jEFoR~7$YVaXU#f>B(#KlZIGzK2lEQ57JPp$qT<psO<HG=qY2%UA9T-&(
zdNTub#1K`=$x>}gL=HG~;>B1hIB34z@9*&IDF@4ciO57)5z)bcqu^<{0cU<5$OR!b
zMtxiTTBvMFQXbOhcXt9%NvlK#kZ&F<)`O;bJRFv}V?dO3!J&C<K7H9#$kMFM9}!5N
zg$sJw96Q0BJ-F$&%`{vu{h0@Zd{hijYIRR48Df};c=Tb#cZU^g`3D`QNZLW?UrkGr
zL-i&-tR(WhV8#KXH_|y6V@;jU@`oVfY$4SHNf{W9&IEg~$j7wAtbB_>eypRc{GDsF
z>yQ~ksq2v1;Z)nXpUM<aH*-`t-5GQ#iu#m{iX*E@+dV8@55fo=Rg*oCKiXht8*kEg
zq%VTEvP~`&^)4keV)icVlWV<zQxt_&;Ng7~=d8JdKMxp>i4ldUhlLl5sE3sqML_yb
znVyZ8*k)tJvrwcc271?OF-Yc8VG^zvh(DoE;I(OO4tIU9AOdk0H>^c>OT3Hv&>5H>
zzHc!N*O}nslhAWGtzUKn_FYZAv*S)(_-rR{jpfhNvpnu?%Ivrd=prZBo+&aq>2Bb|
z^64zdt^H}4SQc+7X=tWD@L2KE_WAAr*pnAS%gvNp)8&~oS(0rs@r!=w1}0fF`^T83
zQKH|X45%UHO+^SnBJs75+8O*W58FOHM01XZs#-NYO9Am|`{)vIF7TYVMNqf{R$cqU
z$X{t1J5Ga2CZGeY%X$$$x#!1q9zOp}?PeA`K6+SW9?HK^p-RHlimBpb@jbx}Bp`W_
zS^VWg*oP60Vfvad+~#N5)0@u{UOrS0^FT*I02AZ1b846EgJr%6cVDRf2^S8QwfB10
z!mhpr`T}>^-y00ZM_4F5s|<hSNrNWIVJ^FAUGn=do2#RRHwz%6ExWNE`V{fv^{PrC
zc;#%3hzo+#rIpM^)D6kz;e9eQX4{pNJ$$%8!+;;Io$<CiS2(Q6h$dyov?=3`#6ugA
z?#mj96dh;_KNcfYcrL0E({%)8hl#H;DJ{DC<L>#Bc5MD159Z)=e~l|Vw2Mqe_dpTs
zJWC3QmxTz@diF05d2k+(>SoCIgo!H5GtK>HxzpRB`;1>u8W4mHL8GRx-wj7NYq`37
zH{fJ3i~K;9$KxkAiTy|yQ9ox*Eq<mXtPw|>sFfmR@-@U_Zng7AMRc+Ez8hAC(7(}l
z)YxHj`LX>>P&<QxO!$BY1sq+D+nZQC?*tS*GUkQ^%rtNrw&XnJkDI0h@7aSgaxVs?
z`HW?UG;STY#h8CX%3>`$E?<!Y1SUflKzx76mWzH|FAQZ|{$&i3nB%iBK=)xFnPA}Z
z*P%hY26rp*68o0Oh+e}CQ;c{vk6dvjAwdxn&>pae2?xwAR4^WF_dd(PTB!e|TzZA*
z;r{WQZM+V-+x>PAOXT5c;uqrj`QcIGp*jk!8^aeMo7_=L@?^UsoJn3KwMZT`GL3hQ
zgt@LV$wGS8`y<xcO)n4Lx9G%f&s;p9&tA9}#K6c9>&=vd4RR8j3t2%*`I6Jro-n1K
z0~P_Z&|wWo4}^LowczrjEHnOChHc7cKw-R_sVxp{wnYI($>PAW(5IzLwx-d?6nK#%
zn=(+-H3Le!mXBu$C2gGwZao^M=%{Va8Q7Wplbh6jC&7cC7#@4!H0zrxuB+qr3djaY
zO+z^3ne~RJ=3^8lv>f<)i8%sbSAA3Gr)VVMg1*~_P>!w`ovVLvyZus2xa4_9482x@
zJM&Ke4a?oNW#NJkG53yEm|@t-5D979%`^k27$F@(cV=iIwF7Ag&z|nqbf6Jvz*P~!
z+I|{*4ug>i*d=A01?2&QD=bcbpXE0o#kalvS={7jl-(hltjH{=@!0*`j!l4F=N#%D
z{`juNsH0tp;@@XYj>JnroA05NHmieUcn5^iE&)7lp&#i@^>CpKB8OcS!<!hHajO`k
zTL_A^UP>3MBO`Pz>EqQ5pO)0Cx{|7yD;b<H*l=#EE0(3wRoBke!Wtgj<3{mlaN+K6
zKX!$?y*&O?AkE&tvafjT-}=K4fW5r>RVxy)l7b=*FOf8o<q%#M`|D-FVn&bF!Z%0c
zuK3#c^+G?rfxgy-hk~Gy-Bp23g2&;?p0Mrte!Sb7L}Ur}=Gr4TmHA^vryS1@^hD1_
zLh|KLuGoK@Jxk-^kb9S}nEn+TKIdS&FKZbW{C07p;&hRg{GIt9@LAHv*Yel`8x~v%
z`sJim0blV;hh4A5UrAg}WGe+&G4EWGN$z|&hT@n5maF5#?3y20*Mj!=`+JvBaFa~&
zpDaccQ(r|Jzd67<&taB<=Vwgrmw780cuENDcR$4{|D)I6Cbe4Vf73p3;pOUOMzZnW
z@GRIZPWM<k-d_(|%8u9TniS6V;Ftc{3CW!l>@hH??ezKj995}Gqhk!!*;~H|-Sn>c
zx|!7-*0F%I*)KaPoH5vHx#SmfnG(warySU%Ck%RCFD>AO=~Zn$keZi>)*N+7YrKay
zl(q5~SCc}zW}0^$H2Q@Ux@`D)bl8o(gWFv%8(bTk)053ttZIQv`uVLN=RB;6`_5rg
z2>ouWpa2nl+3@kmA#Ou<Vy_6Xo<Eoe0gXgx?vF_1yY9r<gH^Ic?lT3;J@j9*x*BQ<
z`54xG?<%#sU(qW_X0kZXPDPB+?Y*^Fu%G$%1tttAKkp=xEHKWqph9{B4tOI<7rF_t
zCI47H{C0d{Lr6r>Qxq4B<8?WFAIHmLC+~__9Uci)Um*&tg}jdwYb#5#!3>*j5<m`{
z9ubtwk2yi;z;x;V<IG68`Lz@=)^0s*pz&*$4}<Cair$N_X>L#WdtNGw?^;u&r$u6K
zoIf94g#~}?(7{($n9t1wWbysLUY`&rlGpxIz;sB$V~!xMDkg!*f*f(pweANBHDZI1
z7@iMx9VH|Z$@Ppkx5F`s>OqT6^0v@s8@x2!^@}D@8|WtG;px`8J??5H>x%C3rKj2W
zS3Sn#6FT-Wc-jK$>T#R*A;T}ZSrxp^>C}9I=f}(K+H7Swq23UCfRqG(UO+*aFG7WN
z#rWoJl^(hiL<B~X8o_+#QT++>D(vmWaaGNe%2rLWn?d|k%m)+T=+I{-<d~_a-Z3Fm
zP=W*1ENZx_|3riZzK7Z{f#H7V*@=8oj(?;J?b$Z4IX3v%k&<BvdvGmD0@^?1;be{x
zDk-k7>~DapkXFWdsC5_zf_Xph3AwpsU_^B#%0B!iOiJwj)$m)rR(uF~)RPu;xn~bg
zM(cMcUe$JQSDX8mz(LnCo1R?s(IiPp`fSaOjeI?JAPcXy=dG4qz@h6^={Vxs^lj1a
zM6FH&5Ph-VDc(w0N5%djPVRNDq7=evmo>?)GqEPhzc6JJeS)gZ6&K>g*G!q7;9neh
zJ@&l-u#mq)h8)2=_a;i_cCTER;8i*wajAm8=0Uy2m?hq?GOs%Ef)3$lX6$v}$}BG3
zljG%To6FCZr(XuLTkT2zerXOhb8;f8rbTDfj30`3s<Te?sw+zqWPDe7hnEV*;_|3=
z&uTrRKcMNVv{y{@wGj-QKmYjkk&@Trm}{CnAIZM-PZG<*qa=mLCqeru3JDKb$!x!g
zp7CQ+*L2hc-^whLn+%536bVtSiBs~bgIke<<NXpFmZ9|R5UxL08M0~9VPBduVn7jF
zzb)_B7&wy0%Oa?ZD@uu(=a-BeW{cFWDXZ1`K5DyoY}-r32wgO|Ub?9Su+B4-RFw9A
zv;ER3DSz~C@Y^AU?MaE+wK{>=#6OA25w5@f+^PPHtN$pwmSRR<gIe#jD0!n}(to_m
z3AnzIVfJN9xcL4oKqB>b_b5s2A6Ikq-pCA7GNo*jToBm{^`l#J93bEY1iOHshXxQN
z0s?VBfF~bB7Dx*Sk^zA-AdmzEqI7^D4G`!HD;8EUzrHOj%rrjs<;LeVJKdC!%S<D=
z#pihnkMR1LEDP4oaC;uM%S=nY?2w3(dnG#F<jgVD&Ro0Zx67#Zx)>E7<^%!7^UnyD
zjvf!$f#melFt4A^O|0XM(kgJfheIDwvg|)4L&bn>&8Hz=Kg=yQKu14&1HPR8Ftevw
z?O=5D){&mA>Mvnym2zWOr=2h3j%Rzdd+j0JofRewx+}e-S0nG$kam5Px7+{ct~d(E
z^5gMSzK}Ar;xj8^rA4oheW#t{s@P&-QGzDo`RuiMDO|CI0YW9KAbl2`a}k3J>BUOk
z{V-GT_MQ*i_Lv#0W%kv3+w;0v+d~5uXp^hUU0L)jYbRKphb3!)ST~y0SM@uKBKe$=
zp0UQnz+^AZ(6I`CR>LJTfbFu-ndz*?jlMdd)wQTKe9*M#Vu^qs7R!urA%BS4`UvM@
zeRGw6WLcEhJ#U}w6}2nf)_~_<=rb{vY}wd3oE!M-sp;d|1V2mDnvw5Ky^hV{xuBk-
zaAU`x>XMAKp*M=*Cd@~s>LaoVJtyfDJ!vNpYh#SqUxCe}dZF_HO>p7Z|3lVa0L8U5
zkN+@>ySqzphu{_n1cJMJAY350`;y=m2<|c52@Zh`?gR)DAh3Aw4etCW_ddUGy;X13
z7R>gUo-^8Wc6UDAMvFsqLmqD%mUfk1h5M={(Xj8nk0j7`{<%NX{nMpd+Fh02?VRcr
ze@?U6+lz-2*1pO|_tB&^ld7F-(ch$Z-tuvpUU$1q7%K-!jWf++We>w7R+Sa|ymQEl
z`V{xNHTFjwV)hsRc31OLPdRKh?Y;n^oDGwBr)fY835sO}Si-EvzCXG}6b=1e?-Z<z
zm&IG?Eb1muj$7%$TK;s5sS*F@n<w72wM1db$v4xnv3!C(o*xTmX?pk9{2!Rb{OF%n
zy4VH`*ziaex4Nr77vzo&6YTTyE){-##(n9nr5GKTJ}}9CHXy}iQDWhbeMt@*^Yx@L
zW`el#ETb4Uxp^*$>tN_zl}?uBel-<uA4|tbO4`gXeZyZbY9k@_BULrd<oRt~hixBd
zF~v9R55j!Brh&Kb`s75vl^FHOey}QW-Nh{YB0i>h2wiJ516ZxAcT4l*nz-j~=Zoo7
zt_9|!l*To0PjV{PJ0#kJjc0ln3lFwZIdUgO%Rb77yyy9th!=B~O-q|bcIShAlQBxb
zutsIaenC2bw!z{N&jAC2vdFw^%^=$vQ2765EQaq1SD3QaRqQpk`DE0w?H@PtKTKhq
zH!&h5WC;X}cL)73S(;UPrs~p;OT87OQV&i+%M>L`_(Q9=ShTV_y~*92Dr@TcK{qjE
zUkJv8T%Qj3;K>d0_1erD(I3olO#Txx+QW>tO12r<NVS!T`RKmcxHJ}rR1;!ExF*fe
zN=W@+MK|3)DHlBI$yun2?k|_GJ6m5z+$|g&jKIeqAuF7xRQ~!L1d+im$H?nzZ{2Es
z(vt440UhDsXdjh~=U)FUhp<nY;3(Y@KC8p$=N(W)O<KN_J-~6k?v%6|iT~~1z9z8j
z_RiG_xw7azk9EQ8UC32D?HE?{#~#kkxk>UbY_N3FG#~M8#Ph^$&Qh#ot+HXsmzVCB
zKLQ%?s<05c;P7$Nuvdj?l~+X$3H}^z(nCn}YftFI=l5(+WS?;D)vDG7-Wf|aaAI5v
zgGx$=)N}AgoW#zdif4l}gKK6#2hi|iNQQ_~P-(w8C{#Ili1WC^5hM+gvKW`jK;iae
z^J5F4tUbN8n5pp!Y6}jUJp@Bn`|e55)m?c;`x~n0l@oSx$Vw`^*c~sS?91iZ@V=G{
z?@qnOhxv(aS>7@Uo1@(kN%C(sPMkmQIRi|aHVRrcTD#uK1hKZ~s?o2eNz>1nVXD)>
zW}#L~{WdT?R}z;ASv|IjW<q~?R;l{^9+Ubct*Z4j@I`Z0K4$=*Dg)WR*xA^vplnE7
zT-ia*Ajb7tz?EvQc?I*v^>2kGej50w?o~GA6z@$hIahv=|DKF0T->^eAlu3^Xs*a<
z@4Zplk8O#!Mm`0W#+9{gA3H7}tg84Wj20S}g!RiR7%)?kKbJmuQ_DHLI#0%%o*P9_
zL`a!T+%;>qKmE<u=IQC1lB>Ppr%a|%UF-W^+9vG%Cw%q`dZp;oSx6NA3Eis@${tfr
zJ*AyPEe)Fu$+6?OKOtuj!nfzI-^|+4sk}-I9>#unMRoO_xj7-2*zB1sc*!ma9X|&$
z@Y3$(Whn%&hpuO`4`R6Oy!}7P*I&hZH1&xu+UB_kjyF*{m?a1^gq|e|w-o)6sdcqg
z7Lm<qR1JQNvl0}rhmGIEwwCGOl{JnbYmxufNHsr^;<MME*WPSOhFvjQczXCIQqeq~
zS<fX%eTY~-INc*tGp;C|Q&kL_kOutO{}|xSXlJCp%qJRxbFOeNU70T!^7Yi=R$edP
zBXY2uT@FV)Y9NWnbYu(p{8!CJHy@o2^nqUIv6h$3^XGyiN(t;g2NEfz$o(90aVpf}
zO!#a&R0U~DPzBvSPDvUvvJp?DkxomezkNfwh>udWvueGt>QfNvzWLL`nDeiCC#i5e
z<pVsM+^9e*jr5Co?|h-HDC0AXawavaY#b|o&X)lkng;?OtlQD+0=4%aTZ4lf+gu5A
zFB%-)ZGQMXPLH0rpgwu67uN{ANwCgoPe?q-v~E>-iM?`MPp&8#G3B+JbfTJIMjz)x
zGhjLW+F04c9)(^?0kP!cWf8<?!bfZ>e;^z!u90RwZjd$m&Nd@@tpnC9*o9W7x#@uG
zzlHhDYi@M+T)kd8?T4KB&@6ecbMd1+q=6(tX+O?~?*-2@;v<^29ghrnV?<cnd@}L)
zd0ks$zF=^U<KllY>65QE_v4~JSzQy<aC=c0l{%&DN7gzm&)Ubset)It`AVS7IhWKI
zTUGg&Q7@U%vGsSsHZGTVt@Kh<TJuWTQz+W^=2kiGk9s_6OT?eO#OUHW3j4}21Dqdd
ze2z*LECxMwdTSH|Ue~|cl2#l((20zldSQE{_1a?Q`cpxY=s|OpqI6+XkKh`Y%8uZf
za{7q*N;!uo&YzAwf`uenBYD-g0ZxQ3NW&Hb(o`!|{6Y)TOTG$5vHL4f2YO9VwJbTZ
z27NLw_%M~nYaeSi6Wu*b^7KFw=l=Cb;n3mfmGlkEC(HNuyVl`UEqe&j>u`?~AwJst
zbS$rs6>SI7&HJBAS842q=n~T8w^gbM`^LZKu1~d@tnK%?k_>VW72|)s$h#?Xx*#1P
zc0lK+la<l`j8PIWGj{*7%~Ig5=e}XAP{ZWXwX4?*mvuRmQ&W#KgO&O~t3y;$_RlUo
z9aDBLXDfQ%rMOe5&WzFTlQoT{g%vxWbMvBp)G)ffFa6|OjXe#5orOf#sHPjr5FaP|
zSbBNt_DMg9rDt9pSB^Isw#mKa*nGw+%eT|Z2U6L)Ibys4ro!iTW{&Jsh7r4+`4uw;
zM0H2XnGNP?Clz`e3J+gzeb@@_N>4b1yuv9h*mQ562p6ab{>mNBAIY=RyS8fE?{3xZ
zZbkmM;pnpc$jfp27O`k?%tb%&nqZ)#eVmei@8uXvnx_=&oWncKYNDYTJ<r55uIP_P
zZ10A&Jvlo}s)*c-bqLms>@*C9_Oxl^1yyCLid6NVrnm|9_!)0Z_e%EF_YN}V<NSVO
z<8np#K+||ss%W9I^Ym6Vjh$oU<@nRjOY{a=95P$K<P)Mfw&2nFwtehM>*x97<0|Zq
z%Ou{_m(cucQ_0TW#G1ac5nm<>j2)g2`T6HTx}3+{$2#5{MjJSA-%bLw9ciKzx5yrW
zD=srq&Gm1ND8Hq6n-5RIdNd+ke^*$3M+&naCcVAWJ(PX&&_^TljCD7gNyW1}7(2&$
zd(CqBwcRDk3Z4K$lWlRL6~UfDNite49bDu;Hja0?5U|gOM9cmQ+xMNjN{0Y1vsJWM
zH=D#QNzTSS-clXmYLL{_Q&ezRRS5d!bys?9SNaV2bO9o2{5_B90uCPEfK!oLz{zH5
z2{_*Rm7NH}Pe62bXZYxrASG66;477z$l-5cKtMh>VTBNEE@6}{<$odE+*f&W$ji(Q
z$MU`y!kYb}@*$y$_D8wXuXs#Kg95G-k5Af;Y;jZSOL-<ED;^NJzUO}r^ssGwjd+th
z8AKa_?kz5p&30!OS84gUt8%!>%a*6zzz3p0;nVpcz73pIYvZ9Ki6n4Ff4G*DE+AU_
zgVgL^)mX~TW_HTXjC(1Zge|TjEeua>T`hd|)t3_%JDT&)OpCp=ANC>tE^8$?XZVs=
z`=nW@!q$SficRNo%DPNqi2rThP>mNNv6kQ6A^q!%O??jip_($yYQ60^#Z|dSoQ>c1
zRIPGrf4vg%k8@&-@_n8VRHi9TJpGw(vbjCxjrVBPLUZ}0nEMU#&cNaua{_;EG!e)$
zSdl6Xx3=^VQq2Qz#O}yGe+nd>F+2>OmNOL82y`64ZG51!QnemGztv9mtD&bw@8C{n
zNAXX4zw?UgO&Ig81OD9G@p+u7Z1G(ivlOypN22Cw+h1#;-tpY1N1OvLEH@~D?n@}P
zOBbS8COHi8<~dc1nmg*Wc+Gm>%*zr&t;2|IU<}%_Lj;w(8hrs#A}(8d<#nZ`?KhU=
z$EXB0`#B3Bs18I{1~{98^K*D-V$yz<`QhcYwmaP2C}_ws|Cah2Yuda--u$D1uOCF<
zp$e^wW47;Scoc}d@h;_R3~64Q*Waeq8=?#?9w{w{@>fa}R!7Q_k*)1mupT0~xIaA-
z3Vix~Svzs$(;a8OmtW~fjRf|Fljd;|YUn%9n!eO4?eDVstjB>9%_FvreF~XykwIeY
z$agA>jG8-u{-kOryVo}Wp1aisDqFq;^>OJ(qgv)xaNuMvtNv~tvHJ3Pg>hSf&FEFL
zp|4ZbyLIYyhpNE-sEbDW4CEP|3KGTx)4U(EZlPTYKW=WAVgq5|hie?;Rw?>?L0ZNT
zKR;&VYB1G(eu1ONGUv&PDtCZYmsE@Z!D{v(a^RES*PD@+<j%#ycsdvZIL*ulPBSME
zdQ5YP<6Uy170LSOyXSEE;~BU+C4PE6t^Z9Juw{7P`1E++S8kb>Zw={}G(xe4xlsH)
z!>BGc?%UMQpW!!3ZjZkw)H+|MfLyXvS87yeOzPkM_{SjlAzy#<;-5CeczULYh~dx*
z5o_20R{%MyRlU?SlwrO3x1f)hB}PeM?UyH=1s8!75BvqcoqhX43c2wS|6n^w%0gcN
zw#>*&X`#lcyxHQdZ$8<*Y}u|FsVf%6_@7(aiQ(Z-?^CK)Qv1%R<0gwO&Fb49HFa6`
z9E8Xx_BFn!dRDrhOeiaVN2~s&`+$LwdIvJwGqk$p!4g&MHvH<Bp5F%Aj_;Z`DfxM<
zkwK)wr?{IC9dqRhbl{4U3br$fY~Fj(I@orm-eEQ|-&_#uwKua#|D_Vnl+d>Nd@V}n
zql;qf_uomRHXOP}DPeg++1zBEmL@f-KR5*|&CXyUV}mGYdtL25&*hReV>5c^BjhX{
z4R@cJD|pEkccs7Qv$lya(rJLA#8J3E38MHefxBl%-5^GfHM{v~JN}CAkhMSr0a<!R
zpe=u#zFDk(eJTPxTxJ2zYyxm*=k5(Pp+DAA?|5V~A-DK@?y%3FY>wL%ehn2=N+9hi
z=~Xp*7l=@w@}r7`YDctDj$$(qN`7P(e7PizNg+tke1S5%e@*Abu{tgyAO3ovt1K{4
z3c&_jN5gB$c7#qHfB#i6Lhi}=hA%iu*=}fktFdGd=ki8Bpz;3)HN!7k|NleHLI-r-
z@034Tj&DvBa>hMSIin70=+QT5y*s2MPNGfn&caVxX;O`hr;&}?gOLf-h7ruV1Q|b{
zMLF!_k;=S&ktWJ@4dEDX5_A5!T>fY?HigbdXP5-Ia!b(28t+#x&oEF}cdHL@GtvvN
zFB9Zef}sCwnr)>;6@Rz)%g3sy?=giYCuebhoj{f13YH6>B*)DbNo<$#FUPOHv?Ncw
zz0-WP)+qNM(M6S92N0CI=u$jb1%1!yR$JI|H!Eo|XfOGPoY#tOsk<wZ>veTIm%`B_
zS`Qh6(Ehk5>3fei8pRz049Zj8xgta$4_4n+$`!pnw$+@eW*UUYfbFIy>Cizd$fQFv
z61AePMuW}t{G-Kg)APgKAC-gHIH4zRasna%X;#>hg3?I>NVA2by%e|i`AXMBWM2lQ
zi%fELEq=wOwirEThqJzViQLKbk6Wq0+v1UfypG2?)eGZ4D+*crDiVaB_m$@D*4G~&
z?<%gY3<mYC#P!AyfNy+8X=+q(Z{FAUF8to$C+6zWWpXgliCT#jfKy1c<0XCki1}bg
zEzdR6V1-2Ro=XGykR7Z}k^E7~RNx!rkjFK|A>9^u1RD|xid6RLmTno0oBxsbnX2Ms
zZ)(WjvJ)oL;X(kdAfCxLol)Bm6S#}H&G_^pcSU%1y{eg^=!QFW&CghS_{&b+EQ+O~
zya_Bma=5e*V+T74$De%wt%Dm-tuo+;8=rr1v%&+8mkT<hr({V&MP=%0*)95iaWmXo
zN{%UoNm{7e3j^=m;a@@Nhq_m!R<5YE+4M^aNoETy<$V6+3ihM1?a1^!XW?t3#0@5f
z0lFL$D72?f5}fwF5AF3x`c`hNJ;w1pq2SZhUlu72!is#4o5*bVsho}9!$K`8%2R{F
zX4=5yYcZ;L&A+f&jr*w44?2m!vGM!eq8?_|?cp~o1v$ztKFfXPh;mLYgR5sszwkWc
zbhj-MEl!jUSFz3Vjr8@|Y2Qvxwt0{4D&oHTvvEHfxN6}Rk@T}K$d0U<hnDwx2GC~Q
zVS>*U11AGD*_$^n9;V%TBGK&6kKi?PEJ&_$5P1zKy9UoK@2NyGU!IC0teGEBCo8#%
zim+AS(|SrDu)#OFz_-X~5s3aJ4xEl8#zNl$!yTvrAT)x%D3~c=vk8cpzV<7^G&2EG
z!;}dEldWw6%%%?zQI{2*AXUi?Xq@qM0Gf=ZE22vK1GuNno0<rcTLKDDE&=@3j=?+3
zvgsK>rfoU_6d6v<jC|f=NX(S)%L|yUE=>Sq1=0~gYH|T-cK;acE_)7u%YuAqNr3DN
zO6m7Mk#rHw6od{;V5JKtyXN=U<HCKsp4#JnmK)m?LU+GA`yhlq1r0FoM>@}9;CjKB
zSf~Y@f|CPg2@eN&GXIVT>b6G%>U)(4Dl(#>h+5eR2r!p09PTnCdIkW^fWY<^<e+`d
z6u>2UGkA`30D!bd#Uq8?AZ}1aKrZ0{FDr3?_&Sfjsz$l&=>rYN1F_CpHHevH!hpM#
zuDkaDr|Em6h?)oZFw=3xe*q|aK*zPrsRA6YR}qE*;J7eA&m>iV&et*oJ*f!X+%SPK
zYuKQRhZSMt1fU9*1fUAF;7+aTsCguS|4WO72Hk?*61mNYfsTMOjsO|eJ_9N+2)b07
z9gJJlf6ijG0F*ZkG&>1Mh-z1DKvx5g?H6D`f$wSSW@P{s)+k>Rp(6%C9%MG;WpYq@
zGH{oE3r2wMj})K;iJ2AJfajTuNWdb!V787H0e5K;0e1n6Vgoc5+6*pOf}SV@)hGm<
zAN&*O&?_BgWJ^Mz391nW9MT;8kpuqQFXcW|qU>O@{p+I!I5LN|1D&r7EX?p1Z$UHT
z24XSi&pZIlg#xg<M~V?YKuo&lpy&Gl#{`C?JOB`fi!wyIoZ;T2BoJpnlWl``pQeHu
zEwh8M{EHa!g3>K$0wcn`7fk`<^cSQAj9XA;s-lXV3GkbbQ-Ce9^rY>Avojls{>oP6
z0(I(+A9&9{0Epl&E8r`S0r+SNdY;A#tPH=e3W~5BP)h>fkA4&M(V{x)trxhBmHMO0
zaxfRJfxr7^@C0;b!)*Nku8RRr?)l(<3LqUt!E+FR+@b-5I1WPc{dH{M4Py5JWb$v@
z7eVz$fOmTkq;JOnc<3hrJrBC`0r)*I=;(Lihl<pIJ~_z7oR<Q_39g_#?d{E2$*@Xb
z=x{Df_2b2B;SHEOUX<)`c08_5WH~Yo&Fg8;U^`m)w()p`VINUlG}JB{8LLOT-1s<P
zE>uzT%kA6$($&^$WcWv>IUUZw1}QR*w*Jj}uE%!&W7R?})$c%tt#kW7_3#eoE3E&r
zPJ^t4TZqV_Aqrp8)|O-F6h#J`)jX>aAnLBWr#5hca?Q=Jn(6qeAGfw#r*3l*a9Ef-
zdV1um7F0;T_x30n>T7goBZ3sgb8GNbH#>Mx{V(gpst~$%Tg%kOnxqdOSkqH|>1-5p
z-FvMGkhFgbTP_%|_ip(&Lm{}u$$xs5%oIlVtkM6L*0`}YT;ua^7S$zn#V0#!s;TkL
zX2<56&HqUQQ)AsE&Hq-%LaCtQ)&QTvD97AfOYjfpe+9^Hv<_c*{96Du7<)7@>0BsI
zEHK>Rw!jz?k`Q=ac2D73882_*sHO7nQyoWcLI!^E#U^(KU=TsVe4`&J1il8L5SBS(
zlV2_a{7xB+?$<-$z)8>#jG}}(YOpkz&lTx<xNyO$52PrLU{W#wGkVsR`&Z-_t&97A
zx%Q0mY?0nx8F2JH$>~vq4g6cwDk+NpsLcN~!vbmmmly;bH3a>&-!C!+1fhOln%xg6
z!g`LtR5w}zQyl{+il~8gkzWL?9RLvjekx7p2g~h#1T1_UAOLgmE*=;YzDz|GmP`=r
zAp=ZOD-djP5gW977MmIQFr*9I%17?6IdcX^YZU@m(n}~X=rOU-DS|>axm(T+%Zb7@
zL{G^O!2=};gV*Ki^hWdph$C6VAgd92`OLFs8^RADWexi^{pcQ94g8yntjmHPn?kne
zyGfwSaNs^)GGr4*LgMBrzCXQD8x|YOFF||m=sAC+a(H%|gdZJ}LwoKZ{O8qw>S02E
z3jdRxZA4F?SW*H*lMtIJA${X`yx%p}+e}w*_c-7jBZWa$ZgBOdR;t5;G+V(oV!veQ
zOIJp$^M98wnB{^)`J)}=Gz#w2vixIvz7(=e+%sffD*q>=8zLxNnfy<ELjCs3e-$Pe
z{95o3{%>05rsaf>!7nFxsba_{A0znhdgqbIIT?_Yo^m`^xp<`P)mhRrna8GlqHuh^
zMIqVo)$#be;CbiI+id)mS2@97{N9a-gq8G&<+82p6U=(bple^hoZiU&3T(6*FgpLv
zPZBW=&86n-%ch>#TsHPYf}z-440B*wP5;KwD14`=^7dV`7{TQPVan$cKqSMafi=7V
z)(2P(ZxFAOB045H1GrTg0|Sepjyfs}0vc$BM8!bofZcYrX0{&t0_^q87vLw%CI*ue
zOrSqt@&m)<Zv+ez)BpHqDgc}Z{M`~xX~A>{rivPD|J$I7n-gF&|9%4QDGs(iFu$q*
z2JNs1`0Fd2JRhW$AbCKk18euo3V^9^r+Ss|bq0EsbJ%2`O$R><ZFsT9qCvvo2R5l4
zP(K{7Opfh={ht~E`^y;_*sT(_gpZ+OV85Cb@~C>j#j2slDKqr703+>$$}wj`{B10h
z1kCbGVIudJVB=){Z{w^2+Yt?DMfgT-bJr|M-j!)Fe+<J?L!mk8<NjX2{5-U_Am$z(
zi$_$GWMKx+qsn*i5YoR3NBmxvNqK=%!^ZDM2ge~%G8Yf<%jxw9zsP<RLuiP(hP}CY
z7Q14YWcn2K9>Cx*5$6~fLg%X2X*2)WZ+C?_RAHRI(&%!6W1Qsrt}pMg0KKXSGm3wf
zzpOtgyEdM~NBZ8nOhP=L!}4L}q3D9Lj>qQhmV|JB9s6~I^niv^?Djl!H>xKs{kVAk
zSXbpj(64R|)B;_Mv#x`xMtzytXFFRT^ylXk<fJK$5+~sO5Arw>R+AmdFFGzh5V;>H
zrkMZuVxlxrOf>P*C{Q%9y?kJkRm_n#BA<`MMH=QX*(=XdjCmZNE&3QHJoI%Q(|_7_
z*w$i%B!i~D&Ir+)M6OjS2t$zM2>4^vSbei`m$%M3a-+j?=T6+9fynu5lcKSN@&pKa
z2%7r8i6Tpc8l$WaL?TXwX(_g5TDB!{$&twEvII_B=&Z;aY2h|Cp7V-Dv-#}O5xFil
zT1i*URph`Uj}BgEEJgQ#o}k7bef88T+Z-fz^C7|TlJB^No^d(fj%|^ByJ7(#R_xRK
z9Jbm)>i5w!ZVwHDPwEzNknM)-y~EZJ>J?>xL_^2lD_#sKaOa<fhCM%=E4JdgsQ7R|
z0f$_8P$E`0WL=QWz2&CKISC2_Fd-e=km6sTmVBegpWyz+(;zsMp=O*-q{^{;x;2Tk
zE&HvZ)yex{5=n6Uta+*&Qmu?qX*JLg*myel335(UBjcVCWu*b7q`#uGf@V&^im{T>
z>FM$OovDQ$L->p*9>X1GN$}hsD6*Qms1^Mm!@gMBE|?6%FaCkbxpS1Q+SQ0b=#R0d
zp<0_W%Fwsi3!jDsz%}kj@*hog%0XOFww1n|{Tla5WvwIuN(#~<nQu$Bj+=5uP{xU!
z@ckhbt!NqG&9jQU+sQib=kx-mOdF6-D`V2{_lnG5noO|YnS2D4cR3pnjQBZJf9kj8
zkV2A%?aF3O0&&w0jlj$O$+fQ<0kGfag>R?trAUQwRYNI6&nV6g^Ln4{w+%v=mgx&A
zx9|SMUgI63FfB1YV}UhK9cMp+ucs=RV`7YNx4@#O)?yzqW~g0yFqt<)*O9HX_Bh|o
zRh*HAnq%rb1^Cx0qYV^kPVI&UIl=WQYXA2kb_M@i5Cr(C@TDT=i^$#YdY!UF3P0Vl
zFcWrI0SLCqvL=Elz=j#j9N`yPhNM374Ub5nN?Qe1BF&_yZ#o=SIP?0S!qQB|n-`3m
zHvB(6dA_4z7D%&L9YXC+?51wfk>CpXC`yFu;k;RT8cQfk-1|07aFwJn=dmJu;t^3d
zp<o_F_C!fuTJMT_vt^s*d4zks_WNdz=8swt0_LUK*5bq=%n{T!&PY9v0iD)FvfwMV
ziFz7)m)@g=KmJm6O}(fB?+@o@{YmV?i|r{m-D2PCZ~Vog%Y;TWZZQ>!Vl54S(5L!?
z;#VmU%>kEZE+VtX>-|(NfTq<!;Vi_IPfCGam@&tAplgD5|HvxUCL)MRk8*|rjG2cp
z&Mut#Bj^~NPXvXO4!5f$Of6C5wfVsxML*-}nCZ&?X^qht{GEvkG?9AP`>AaI<^>S_
zSFy`q@6}O$(pYf@{sX@ll27i==?Mk&NM2Fx-Bvyod<5+%x}4$S-Bb1p-kb`}ox{<*
zU-S)0HL1M$uSEm%E1&OKC+5^Ha|+KG7Co;E74#YJZ;^C(VV?hGvdByH-FWL$X*p>%
zN1ObjjKu4dE*i|}RAosl|Kg3+p*w93_B&M2Y0i<XzEv)<E(s02mhH-fObs@%E|1hI
z@!B0<n72E!{M2wUmY^9Lb|fuEudRJ9+TZwG^qt036k46&)a$IfdPaqRKGCdDR?r;b
zYJcPJ#r>l&FN|DPI%mThK&R_3{8_SF=%JMOiXAG6&$e>x+-#*3Y36&E*ha32^GfQo
zzowzdDa8}u!zY5l)LUVc3dJpq$WawG8~^(NM1Wbv6wJlSEB-n92wp|{1L-oTAl-8A
zIB1}<WKSbbBDy1KD>*vVnGdVQ_FW4>P<Pe00(a*p+rpZfTral2J5j~#Y_E9P!L&X<
zMd@}<x_ICbd;@m&!pt{R9adK3kKw(f->D(a#WAlu%ExK+0AzJT+6+M?b1N>{gbT!L
zZa5-!7#zDZPOx;ZV09$j<|jg>)X6-UXa&>#p?IT<^T-pwsiwsV;D(;>MUkts*p6Wt
z#fv3g=5T_4<n&qKUB&S&^P8v32DB9ZjQPkvz{6XGk~uB%k4@?%oV?E#dWq1)xtNyu
z$3CNtAPZMM*$+(dJyRlzn^L~6q;(MMM8h}{%5TBGX6rn&E-cRHF1Fx0gE{Y2925V`
z(Bft64W7Fv`HCA7jl<9lo~SjQu-TFuv}Ani1`l5O^EmX4j7jDM(FG0oG<_M0aydmC
z(DhBUYG6AK=r!+Mg`&)#1O{}4f447aSwUjo{&R<3>rv3L0=v2tUj2k>sUkc44A#D_
zw}iLx>9z`?gY4H5zJ}}?@+Jm{VN+Sm-5mbr9~xs8_^Mc(&<l$Bng|M{%ef7-e~>C$
zO?o4184ehok)#s>Xok$(yJ`{PK|G(2A%}IzYoXs?6T#g2+;J&$J3Cw<?%%6E2G8$_
zD5J0a{`iLZ8HS||(hA{Yc-L{T5PXHRl)iK6nJLjUraw9Xm+1HRA8!uo2c6bT)P+{$
z<rAUY_CNekY?K$)XE3wcpCW20_D#1SeD9>c%8!CmkKmhNRP&IMn7A>U2OE00jvp5N
zc~s-~<=SVkmFM(LQFqY+Q02zqQ{)dt>C-o1`ym)vw0)E3`-k>uk3J~YUm;Ot^E|<P
zAwZ?LJiScE?&wCK-j51Vm^Tim#Z$2(dL)FLg3CrDAZ}fY^yV97t-Lj1H?c8ls`{nF
z%bTk5s>5vOgM7rr)f^%wsHC~P;;B!0^`Rib<9YNO8!JIN__$o=pX|&sx$R5bVDqU}
z<9Q=>jFyvpA=wk5GtHz4*Z?aXeq>0WH&kkcbzPWW?`ZAcj5a21Tn8*kC`(W=;w`N{
z-7~ae6my=P1{*#n+6@v#<rGPzxliwXUm0{N%daCjhjHpA+>OLG6#c~aZ~FX3{^+S>
z^$&bwZka^ub#6?4R`|(JwdX5T<S9F9J>3bAq|k_=XB8wWHm{)kIQ5w`bstO9sat;5
zWZ_;Kv!O^^B}3#!>`?pY37Whl>DL9UX_2u(m}d&G%!H`mi?4AnrMwFqXyNBwFY6Cx
z%049HBGBZ|UrS<>zJnxP;-x~gtc76Fs8k3Fb@Y}gw`^R>k^luE*b6i&1b-GT!bBcD
z0Y#FD3QlCJhj;1ChSCxK8XI_z!A8_D3&A1Y{h;Wmx57W8c9*nN&@V~k(Sv1EA@_M8
z(}e&TJQZZ>5~i}wz^5id+T;9(7S7dekLCX;71HEx2L*xM5bi`&h#hrw5SSeO(ySOc
zIJFFE#fA$;7ZK0mj?pfTtXcdX86K-%<c1T^jMABZ*NjxSI*3&0zy%{vw1a&e8gZtD
zw~^{2Eya`}y(K<Zhkwb&MZ8SHMfesYzq$maj-H=;2qbp)$V2hG1uBtRM9~samSW40
zE<h2fpaQtX$Q`!yC1jTpC(RwT0{m)O6z*ut0!ZeCulpf~<NDAs^&*#U9Z4vE`pq5!
zIq(S~a@gP>n~^&qPjYGue>pU=LnDU`1+I{Q?4^uC`NPn4q@(xmyXl-xWIs<Wy6f1%
zP&Q^|cz&_`^U0ppy5Pd{c$l7k>;z9*F>5TmCYiW)@}iazHMDTO=efiy$TPc4s^Et&
z=I-dS>hcHfrPs@a5&9kb8kUBUUwH>AJP_dp6Zpwcjg9^JB)Y-eLJDNp<~-&B8<b<2
zonzpMW`oQG$xeC5SKP92q%#$IAxKso5%fm$8QHS-GIokueRy;-i4g>WiS2~Z@w%+K
zwxg>bBHO30RfZQ=N?B*b1U5Mq*$4|hNORG9Ul<E3catdJ7VN5_@lOP9#DHSeX%cj#
zcgypLRH{ZUEp0v^pB2S}7$<WvlFEC(|31a{#oG^fLmmShe({5rj``WtC3kCU^9>H>
zc0Kx9g~ts0L5fXB)Y}gKysKPm8VlJecr+61w|@6<`Hioa+Li*@pJh1`>6QwOEVNjZ
zt^V7_DvTy31PkusZ-tETmi0#y&leBtAVS15H&M*oD-ABBwo}-62Ocpm@9F1K*wFuT
zl-ER!4LyoO@i;0!08Mo-o)1QfDpXWK|Gn^OUgwo8Qu7qO5<TKEHWyL>R}(#yzoaT!
z8lL}m0zG}jfs{EPPVJ72Mt0f^Vb+A}Ws|r^F`{%P3?X%8jf2_dIL$;bn6!ijOR*h+
zT#7Gv4x-R=`%*ybP6*#YmP43QA#!TDgaNQFU2O;gtqu($9nnN|41Lp^1VJn}yhsLg
zRxS!`UL11>i9ct^4#q!4uRsqnS|CYpcxvW`zlrc+@IT@fcR_E$ekv=FaI3R`+wo6^
zN^V;wuWD{MKj!p3&aPn-hYPwZW9236Qx>kfvrR3=a(sRqBuqgb4d#Wm-8!r!F`OR$
zCDMT5(sF@l5JmPGxDZ`!uL-Yllw+*v@*s5cp_GnMe+YnyfK?u-j($0MrjC9~?LxQ#
zx%zDgL8Q}UllT+45Ntr|SQvxbK#*%hO)P-Ph#BnBHh3eD;h{;>Rm~@wC~%ZftV@S)
zSRFAEkh%0__=2<0+RWTQB=af0(h@Q5VcMV7zDBn?t^*ZPBm&ZEEtms|$^ENMJhBj7
z(M@lD1_w^0LnYukOZJHoQiqiyh=C*lp%7$;3wTJA`O7W*97M5X8H8R5bx6a@n+2&5
zz74S{7#qAP$nc%lB$rrQsIS`choF8X7Kzeulh?TZ^r;ZhUre@oew#{lRQ?%^C<Oy{
zPz^bXy0W0-kMp?FYRQm^7ecUNDWzAtNgW)bC=<kXu#+s@+UNeukfTtFftP=axztiW
zXW#rnG0OmVU#$bYk;|J6$N(5pcZOo*jT2Ke*r#mlWd7gWNPL84NcXQLAUm|m+DNx4
z^Kp>Q^uc4O8;%fM$9w6qoT`LwG%^x9PM9-1I-3Nc2aKuOEwHY!7eZ7B8DMY~lOgNK
zUBD*S-T-?p%7$XjF$kUe(0+Lgy;+&CgNX@H!GnQT{0-3hD9%kF9Y2J$LS_f+aLd4u
z)~3BdDd@3-T7mn8H>77^Y@obBgXx70<-syRFTMeT!~YFSI<9H+7^;lr7YuI)7TsAM
zT^eCC9v&Xt(psCnP!d1=;gA4VV$R^k+atP)4-Iz+sV<-VXs5KQF&WogtZorK7#sMk
zWFLe!f5>l?hCjFE$GwzY5E?<zB+NC38BMYo(F@!)_$?nb_|dy(2n?e<g!3Q*U<VOb
z6j=lXTM%XJ9zKN5M6EVTGx4lGyl2Qe2cy@c!oOnDx<xeF4$6)h{Sr>4F8WmBX>{A>
zIyRjra+_w8<#T1j6Q~zQDbl5+9^}|$4jKN^j&%&>u(wGcwjCiQifFXM9YraY;8JGT
zAVqIeUzic!N^u=iXZUbT)6E^`)%TsuRw9&u<6%zHyeFoqNZ=#nsQ+2Rue3fMk~GkV
zd9aozT<5R))DmkWAq2J~3yk*9aFmcjS;fyp^y@G~2n+^sgcr1EUp7?MzJ=6upVt|r
z4e=~j>&~e}5+iBZ+)y%_&8kAHX+CROr)J+<7eCJa%CZy~jv|_kmO)m9n)<V%dmg=m
z<mZ5@6eqW-B6{x6WG@M@9dE#LF?e*fu@IEsux_=$7Oq9v1Km!(a1BkeXW;%u>06EX
zg?67cgj7f_DhwYRq%=g9RsmT`>IHET64+c2SH=Vz7)7d_D;5HCH4x|4p*}kuX)jU`
z_tNYY?o9?L1k%Ya9=<pz3p6d}2cQlqQZAtx_CnksdR3ldxRw0~HKW<2Dzq8v1r5Tw
z{$o0lAGzUUI5CiA*i@mmgbP$ctkh+{u)>TYZSXFwUKyj<v6y0!e`${B!}TYq4@yUR
zOX|xHpPoPT$+5@ghKORVlOgPcEYp#sB8ss6na#@CO#3TzbBf|zv{|2kaOn-dVZkTD
z^&@FWn>M1ERsH7zypTiogh%HTD5_8`Og#(%8g^A^J5B|Pz#^6^^dtg;lr^`_3OjYy
z0o9B<JE+?I?5<KwfIaX<&soq6dC8cEGCbhG5P3<xGFbG>tUBx0mvMvi4dg0CI!=P5
zDZlKif>og<F-5(cyZF&yef_h_;M=hI%n&(`Ik>Udn9qV0R)R()AmyBnq>PivZ0-Ak
z3nI&(K@1BSlqp7S$#k!Ryd=mYhI0d}0@pKlMaL%#<%jJn>#3f6YJCUR_|%A!l?qWm
zy0{6C7xd>?QQFp)P(-kr>eICL=Zff~6(5M<Www*v<(qE0$hQe|I#A`Qu|ZZ?GY1Dj
zi)27<+Nu4My1J(p>9j76l$W$#$ZOr}$=Dzs0@qH@iOwyIL4ci+?*LQc?2e9!46e5J
zT?TQ!QKXBUmWhQN)@uiKjxS;osF6_%JfPALo{<z@Yp78hMmct>LlswFI)DUA^P;Lj
zOMqR#0gpp0^5{#M9WPX&J$?1WSv7oocluW|gEI~&5~FEItN0`-5V1+-#?Li)v3N+c
z2QOJ+&R}0y*r?M*?!~}k5wi9T<AjWp+QFKEHOd9{k%a9=F`&0)_9u6*oZZ#KVTtDf
z_sV{Hz;$_BMY<0aOK*~lBQM?85rMn=uKRD)!ESZ$&}9?m;L&A$K5QJw)sM&rVS9+F
zKsskfi&GQRXuI=n$(lPo1+IevV)U!35AlI`bQ3(4O5T<$W3*=1Gu@I2E{kbOr`~lj
z==W)^&AiA>ab&`Vlb?EzDgCv4rGM&Gee9X9jk(u#N4{87^5%CYvOvw_C!d5B3bHc>
z)se2&3t3%$L?YPq5rNxcbMYCf9mJ40A2cgbB8>Lykq0}055vYteryE6JjEtPMvy8|
zZH;jXiq^+XKO%&8-7R{7(#X**&xlMB=4A`G&^2ty1KqFFMeWcKZ$cs{CJP{PcUY}M
zHn)A7{%*5Z7j@|g&r~>nu~Hxr0<(@8<6gLGFdll=9gB8pw%?097|N>zyFg`kr{V32
zhnB=|iXnJRL$@7Fs`->)dVO)UmlkX&OKLn_b&npx5t<NJ`=d0&5vd|fapTIV@RF%_
z9hl-;E%``YL$2&lziF<o{>{gdvEpZV+bPskEsA-nXtD{0hf1*1^dO?|K4OyXair6l
zg#g5K<i7A%a6;@g<nVV^=dm)^D>+3nyxTzwRYdQQk>DeRToA_J%kVrzeQZMMZ7jlt
zFlB>;-7q2HJ4dM}uQ-ML`AttLE_8jNG5gB1)d57>1%|XXE-4fc2J$9|3nu1J105qX
zisf7KyS}p@$a3^GxRysYY$)DKgM&BGN-($hDrsxk6@64`Rj?D=3&9q_8f38GLLMir
z2(Xq_)<?ZHPKKOdePD*y+2#^uP27`$?PC$9;+$KDId8>t9qz}n_yn{`a$AXc1f`h&
zIv&b^Eo8mC$b($K{0apYtX+(m)%lwrxtf{$4i=nLl;xWg>2^G3bzrZ+L0>(J=3!R5
zkEXO}ncRGUru0O%_Fc0JiqfKJ^51{3#em5gt=g9VBw#b;Q3{E7P$@b<VoDc9>E(WD
zj{zD;#mG$Kz>A0vWRWO%UtZD6;y~f^%W5#&_a{RxP8_s4H!V7a?tLjQCQ-I1Q-s~Z
zYr+&q5(SlFUd%tJy4i$aA8&BR{3L1*mmp1(Q>LO;;Bs+@VV;hPN>*Q_Vy<Vimj_RW
z(>3b+ogepc|InI&96}(+V8aKdN7KGhF}PV1%cKWVWhd964aurzEFT9OB$yxJRI*=}
z^^8`sA?)@HMf7&a)LR?QyK@pd7ZGQ}Nm6$wk_(b2HT^NAd;MK8U2SSaU02&NX+Hep
z7Iv?Z55qhUNDEbQ78Dki59u4wdF{qjJxk{o(e7W9=SBADih3$fsn$c=)6HpG2d3)l
zYQ^n;`it?>;Is%1H9FrQ|4q??lvE6PL}XzR52l%;ym3}$y;9Jmx@NA)Y^z}yzj?o-
z@QCExuG@FAyr#6Vxmj)r7f!XW@h?3VMybaer>~KD&#+s(2OFywa|oDkCGE|8L>bsG
zIqbike{WPTuEvZDGI&$?Va8;2C(VA2yJ5ec_6Obg8a_XQ<7jwYN^-ZXqn*xmak7qk
z^CR6%o##Ljmujn}vi|Ux<VRh;8KQL0!lcr)3U9@trH?FJo5*xJoPG|`3}1T6#Bsap
zx0M_AIscikjvjHN{QN7Zhw)&T2Hmmwmw-z9?<n~NIx*a->gLHroZ&H1+$p|Bn`GZY
zyf+OMuQn`7mTc+ntMQd*1yrP}KvsDX+$qiXAj2i@n<VY_nmRHim&Ru{TIC@#{@pdR
zfjaZ6PJQH&2k%AAKGnwmc*l!<^Q3BGE%Kvj!ch7gk7)o|?Xl!jp0e6dCtsd~rcY#A
zt0hiEq$xJj-jBwpv9F0AV$@gcxaWAyCSQMcw;gWV^izMPMrrz)6d|*~D}kw&y)KTq
zlJzz9O>J91=9?+srx)9AZjJwpZZTH+TW&GZ!Wo{ZWh0Zz2e}iHOTYd5r_hVAb6)b@
z>=U%$Tpwf%8<WRCPu9Pdcm)&Mr%`es5rl$a<8mSb{(RxQX>02+4ly^x_ze|r8}1@@
z;C#gGE<(_h)N~>JB=3F*_U9b0c%7~g*IdERsa@1`OFR!tjC{I3aYkP#?~7Z}_{K9k
zk{`2?d8)^(h3j;g!Q+LJBOSDS#b~hUOLIne59#B38~cH(7Bz&UV90m9xa13hVKi>$
zHv}0YPlxUG(lh;QeqYRlN9s+>&i7{)B>I^LiiVZTW)S_kU$S;2cuK)@pnXlk>GAe(
z)9~F~h;x?o-D+cu-bK~q2L_ZmV!B_Z<tI2VP||z}GbekR+&2ceou8TKq099a3LA_2
z)b+3;TMYVs#DOg5;$a1GlPCr!=`J#^2{k1Uu0!0CJNyHZcj)!|<61gxa@<2wcc0AV
zGhJY+^~wxO5*>^d2X`b^A+LuVs!yO|lx~LASSx(5y*Ax!>||r$u-ah#`A`-%84y|h
zPhd-rYm?OeOXcW0PM>+__<RcMN=v8L#oR(05dlf_!4k?Yoe^nrBgqUe<?0@g6AaW<
zBt(R1+@{f35z@uda!+r>?jl&&1!kq0HcxR|{WK}kzz3P*B>~NoS*=${kQb4px&>tY
zj?2Y3s_+2y0F5Zo<ZCP~UF*sch2e^B@v%j3c`WI-ocv?S>`roZC};^YMk)aw;LD#}
zK92Bh!A*OrYujEOTZUbZMgoIsjgGI}94iJa+9s0An#AkGh#qwb?x$uZR#>XmJe$J-
z1B-vw5UdE9i{azm#evtvlsH}WQSgI*R&{WKY4oB@qnj^KSp_m;H^Jo(Ym96NJasB3
zx@B@qpw2Y{E;Gdal7XA3Q#G-4gm7?#*P-HZvOE078H$eOgdk{(I|QDRM25v<!MbLi
z*_v$s@y(mJMD2{{?2$!v8?%kBGdU25N}F>SjKAc6eat`nMf`JK>W3S}8j{p^dq3DL
zRIXH_in%`ZHK0=JWh5V;;%ZoT^0RTnvIZm4*zNu?{qi*{59!4^*XIsi(8rFQF`MFl
zwiYDjGdOz|mPGBp7hJ}TPAZa7>+II#r>X6Df)ujcSeng{T$RH5PR+tNN3&l?QAk9U
z`H@-K_ZZz9<BX9LMv%*CZls>=rt$~6V1(LQ*m0qBR@P~aaxw0ux~^Vw&{gMgpTn24
zxpy0GvL|TIkA$6*Pi4I@K;jKZoW#Uk%Df~Y`x7+E$+dQoWuo7EB-m9Nv+^QChp217
z{1bENTPkIxTly1xpmFn8l@KIIQh+KENN|IM7YRr_{VO2_3A4Wva**))E1>|1_`eb=
zkofdhLJbn_e<idaG5uFU2NHXKB@7^e@(xHCL4pP(yqG~k_^*ToB-H*&ioP8eHJ!^n
z)KphH=g^DRHq4`EkVl7aMmQFrXZT^<P#cFzeV>EX55#q%XW(F5Q5&CAZ#Y{!{{16i
z^S&m0GxKRM9?t;YACcO9vH3aJan(1FQ{qhs9*-8@sYq?GLv2mCeLNEoGT@zy)T-00
zIa~h>N(P#7@<1qs4(@@Ddn{6$CkSpd)%LL_ylCR@-RAz@EmXJ{lv(q)O!=pv%xK&*
zk=l;>cc9FXa3CBo0{7sd+I6-L@K>@zQ9Jmnseyh?ZCqeB1nPaHZG|$@|F?=EQ9!s%
z|2L;&^4w>pR4K)f1R)adf0(7k{6ijZ$k$Zd_$+NQAWYsVAN&p-=zwbJXjddv7dw0!
znfhax_RU=Omw;b31x~z~sL-r{Foj2{GKu|bpQ>C9myb&!ySYV4?RO(u6?1d1;MX$m
z<c6(F3cB8TC6BePj>KY>mF1A^Le&#C<GK6K?K;J`T$MA2#*7Lh#!wG(Fek1otysRv
z23*gHnO}9!X>Ki~9ORFh=!vk4S#9jwc5bY#+2@&Xx|$5ZFphfDg%F-_vj^22VXm|t
z1CLq4JGx%6<v7`ktZM~#TQ@>fmX1zal#94it=8WyBXV#liFQx#b}p<s=ct43)qRP;
z#|nnpX+0|EiBzql@lk!e+*IziYcwwh*8PcA92}jsFKf!U#;HG2VDMG__QC)Ma>Q4Y
zOW!Ni@Q2u|Ga=GB#$D+O@ua%9Ua1(h?TUY}80?h|7M_xo$>vXLU7WP{#M`1p8#jGq
zI2LHRa`r{5OyUdlEvl=FSHY#O(~SN=Y`Hw!GsMpYqW@Fy`Vl=tQt>it&TmIxoOB9g
zUrMZ(xKOFd*%j9j8SM4DLa#mgzi#8zU#Zfn%t`H#{o>yUqT2?NBgXpUUyV!b80gWl
zm!oHk=MzL1E~j3tWwp~;u!$|?srJM+_LiGu-Hs`DR=Uz|T`v}03|&GuwoiD*d8Y^d
zcNbfFXYz~xH#Ye;n#gNu*0wVn9i86TBK`sv?TDX0zKL%C+Nmm*)YQilnuJvqe_%i9
z6ZDg6Q$M`eI%U;-$!0jVH?-ojiNiAR({J%_yL&?~G2%~_PRq-ZNDSVncPK3tH3te=
z(Rww1!jXFHl}0vTPExUzX;~<5+1K!Wbq9}OML)EE%bexw(~5sJq=$tYl!N}K!9KAC
z^*)MkE6s7Vv?7)>x4218MhngejvA8?{QAGH)!b5Z);b&t_89$@#FuJjo1_}%twCXM
zQnjI_eR3wUUK?e~3K}D`M<lxa{?zclE;CN$Uo!dfzt*@@TjT#)e-dgt)3J7D5vcy-
z;`tn3@W%bG0p4+s|JVFK)GMpErdnI^FAjaZS0BU7y#<bj`O06G$6lgmU=7ZhCHA!V
z`cTm2tY+DGSuQI@8<PDyHrWF?ssA>IK=C3bq$`hY7*)%-aNEmxoqF_)^s57VhW3@j
z2*>Qia~~YJX4gjy%3^p$eoWgmN!+i-!%B=ieez1}?AFX(!?ypO5%e*xNg;DxpqPsw
z!cEB<u7?;L6=LpyD350?g>D!~8{AX<HdZH}yc4@d-OU}mIx{VYW;{N=ONouY(ru3a
zUsamJCB}FTwSFjOTc@36KUG!>?KLMl*{dK?E4|Hgyj3}bx6>hA9p89RQsZm!Cs0ML
zd*+_JKUJ+xB1unB&+C~xE1dp2;er_3dPY6Y^)A~Pb2vz77e#bVdlbD87mwQ>Do_}5
z&EFoz)!pJbm2Zu1xC)>85nFY$og;hEDY<n9A}1e#-*#(K)JmbXb-9>wMcn)gat210
z`gz!L8Gf(c8tB?e8kGf;c)oAocprv{CcK~gVn6$7awf-2yU#&$-x)VwYDwd-J^0!Z
zHxno8SJSGsCf{bn>=7N*(kj5D<;OvKJllx9Ui<c%lmY|p#W_-iSivM2^7XYNDCYlD
zzP=&jyzwfe)7ks(f7ZtM)e1>v*T5<*(;N6*xwvyoD3VY3Z2!6TaaLH*?HD?VQFH3b
zT(Fb1K*(q71@~O1mMb5Y;sq7GJ}th%$TK<+)w}xQw=3$E<<+e4!(7<dgYftEV>eEQ
zJf4ShjeEJl(k=^G-Yph<lFJhUD2bN5n5?}Gp5=Hk!INA6(jFg@6(!1RVQS=1IWm6d
zR6R=?YwqbgkMf=Xf<jtp1T7JR<s}Zb3;uTf+p$P_?vxWPVfgNr+l%DAIoV3)e^83i
zH{P-}NYKWSQ(iKm`5+xTkV@8wAudRN;9ib;tB!8531VK;=%E~6;4RXQvs`AZ!cUYu
zRwL!wzHiOT4*)42VWt0S4PS$Vum7LO$asFzO8<a&)jwW&8Atw^><Qu{2A8!28ze;e
z|1kBw<tGPk-TuCvL;Q*y<0Aua`PrHzM8gn1z0ZZwxGgVH@LcdOh=LPV3r6fL$8f@)
z)s5BFgcCdt4sIQ-IHT(mjYcC{QD53u%{JOo!*{{Qq3B!?aLfSLJixVIs0_Lt4o%=)
zK(y$96K$a<rF-LVYDB#x@9!MQ6-$B(_&QRy#s5@<S+pbXi6~-=q_XBog9Oj!<yudr
zvr^Mb69(s3UOXfP!Uz#dkB;JMmPCHtwjUi!Pnr`FTjhTVkz>zKj9w%a1z6D|I%qhW
zBK7D_o(A)-mD4E2!Z$_RmK&%LOxR8+!BMaKk@(tlRPH)k`(L$7q)EbhwlO7d_DEbX
za)NRlmesM)I}Tr_z+1OA4U2;mEbeI0caC&=E5+YL-l(j9hUE!F7OT5lA2$e;?&cSi
zC%PDz4ON`~E?>AbJHxl1aosmyh$>w``{4Apu-tF9V)<M7!eYJCTz0w4OnH;8q03cy
z;E-`6ikz!Co&4cwzQK*@di6A#oz#$#i)LLH-6XnyX2ZpjgXQI$6qoDQy)7&=48buk
zb9dMAZIU~21aV)7*<7zO!A^y-p*u-yp=w??LD&H|)9Cr(ftSl+bJ0g3U7|H|rWBDo
zM~baUGc$x!Q%{xVy89@u7^SYe^Y6Y&4^WgZy=FSKCpN8RC4GgJv57a~%=WSCWE=0n
z)xOf&q0*ZD=Q|y@`vumSC`@+k2p3=3h2*ynAA%bksZv^*)db`Dg(N#a%#ZZ)bS9O4
zswm<>Hcir6G}p6#BfB*x-|(*RoLhs8u1l{FiaQkQmSR8L#Us}9e=ov4PvKEdVf9lW
z>6ITD6ZpSZZ_5%cO8@3d%HGB$+!Kv#n~WNx%&|b9s~oSZ9AV?mE%Se02?d+Znkp8Z
zTM4VjBHPCz?39@`65m>a#~fd0)JQzU&*jZu7rLJRw*36HE%BwC&3W94OlptkOU$Js
zHvArCIivQ-o`$@fI5Cy>SYN_LH(jh4ZW2!aeAiO9Fbh_$;-}?JUC&XI44)^Wq|C~D
ze%8>e<jbi2?Nb&ZPuN90Mu2VVPl-DD_7D4fqqTIG;9BT}RApDQ?$pbXf8Hc~@b;cx
zSgxrVoOctKlzQPZI3JTs{Anci@z?PgtY~QCkRVJlC<BYko@QN@vFjfwKk1LWY-3HT
z>)(1@L<3S$=H#kDlqE4FS|yAW+rP`jzr0?L-e-d(-Na4@kiI<nSHQ7GOOUh;1oj*9
z1|C~$4}~uNhtlcP(?=z1Pf5F&<kAG86M1aE&111%s|5)SSH}Dn9JZqIUw)}YWn_C;
z6(`IsUcfr;0l$n8uX>@MGCEMPHj14z7yD&ht!FZNcT)Bd_5F>PL7vICx(IQpZ*|lj
zrcX5=dC42(rAu?W&pdc=wal^|3PSe^3#Mi=8xKzk66%G@@x+I(^uCG3eSC$!wCgRu
zt+}ZxLuGHTALO2fQ}Wu)A+8?H{dDK`c>eHM=KsglTL8t;M2*@I+}$m>JBv$jclQu1
zxVuYmcMtCF&f>nf2Y1&1LGQlbck8cPf7Q&^_MD!Xp55-A?sJ|#hhsu$zA)y6;B^vk
z`Iv4~Jy%j|4Ql*u_nh|JH(0sb%&O6|<EYeFC7>)PfcY@ime+a|0F{<gx$+6ZQF0?=
z8B<MkuWHWu=R%`S3n87~2Punl`}DoItAcJ2AwQ1IL}^S=8q)!8@d!%oH!3ime(a@N
ziiKr#5v8ojYjC{5*1e?88`M;zSX*ev;x?r#DiZ!&?f(_8+s5B_8~lD)Amq}lLCuHz
zg9Q>N0Qd{NN>2n5!r5C~2?gAwQ`{h$DtJ5P!3zR)LTY{Gpjp_`NPSOeQGExyk^dFJ
z3#t+r?0s|1B>I$u9=L;W5hrfX<scsldVvyk+7TK-gsA#Ptm8K)dCp<zteU~nPN$Hr
zk6jwg{E?r^&_btxr-xlS$%MEdiTmpmGkU-^s6)6M``787b0*taTKckDiWc`+X6&WW
zvD*G+O@*~<pchczeBr&$x}?{<nM?0!JKsdMXXW$yFbQE5V4=&Ke$wcgJ?>V?_O4&b
z!SLfM@dQ!JOj3Yj^a1t(D`G~^@<?qn^TXwXfAz-)2A-C(Jt7~s(VKAUenWPmBK_=P
z$%^JFIH)-h1EI9LYvrsHlR5zo`;(088UcS}5=o{@4SXD6)fiR4#%7LT!HDVC@WHv3
zrTpKoQP9u)+iPD0BPQNWDwDxpyo<yAw&Lg0%a)vj^ESWKbVkjepX2>Ry7@1sH`+Ql
zCk14$a2Qy}T__V+M_b4Y456!qQVx*R4}?=SfXg$A{ZG`6D(FXM2T3a7MB?c!^WRx}
z{5KCp%`l$m{jO^$@slmnf(D+ybYvsV9}HY6l1dK$%<Z|LVn2H^btT%{Uxev5N$R;2
za&_%GMdi6%*2*;<7h)wcF(3cM{S7dV2V=RG%eXtD*fqN=oc7Hm7rI@E6{XW_U#j_v
zEI9{NxdP6E5kv=97-yC*;62P|0Q6V7#>U}f*2?^WeBDjNE4%#N`L0%Gx#qW@;v<Ug
zRiIQ#>a>`s3?I5qyy}w?%1%}6&1Y4)U>9*d#=?psyES*)?F(fr+wiWW&yl*LSOv{h
zX#e#$JLEV7LM`JelfTzfTXW6Z%h_Om&>C-g!^tR8?S$PbR}SB2);iKJ{$MW4rt0^6
z+RU4M_)~W9oQR~&t!Sp0^c7PoWCR2j<q@Nd7}~y})lrj4mu0I*MT<Ep$$3xyYFWKt
ztYvIFo^y{9yobC<adl5|gy5z10;M1jcYSgv4w8Mt>iB)inC{~K>t8m49weT+3enE-
zk%QumNvRw6)=QmOXkdtTVyGw4bZDTD2Kru2E&^m-&DWugWCi&4_F$D`9y|t>R*K^>
zeY07qIDV~Nww-rb4N^y3`93XK4{r*~rcm;CO>&ZFW`^fCeJw-mgb{zL?pftj?=jw0
zN}(3FRUHXy+=xXcowUM3m#)aaEFkV3OYB9+wGbH<IOt1|s7k&Kugr=<Fzb(pH?_!1
z9EC`!!Ps6RMLV}I4E~GGjQ)%C<<F{RCFF~9tD`M%pU<LyyT4W*!<2k8sp!cnoVzUK
z2oz`sLDYe5+<hh--|XFCfG`RzKn5op_obhA>C5nF=vI8+O6q8SuJf4URLd`96|TAS
zPyt{%(ytjELcPb&aaya^uMRJ!K8%tkA}c#H&rS$^4ukIkkcfNwmn-|?29z4R`nMTi
zA{}fW#^eomA{4OxD$UqKS!%n~&NfL7EBni2p3IVewTJNy4(5mW{QhwiTmd&TGPxkG
zay#ewt1Tpq=26SOgE^c5MAwTO?joV0PD$~6h+d05w&hG04(T9&Y6T@IlVHUTI0~RY
zyq9MoW9CJk7b8BbFGPpoYm#uc(A6at)%De#?YSP~9%@52-@=XeMT0l9M#WKMX=pT@
z6(f$?(8;S^EY{X3lEH8kiQ+;V8`i(67%XKu?380-9uaMLrzE=JA7!b)Xi^3|Gu^jo
zv&DwXLmLT0Z{9og{{kFt*Vd<eho<k3#a@GsvyG#4n1wwk6YH$OCDOH4?a!D0>OY|N
z-jK+V*-S37rk0@8W$3zoIk2v9ss52X8M)pie{jPhuafujHIa2kN~>6^M5fl;!!_NH
z1i`r?*)|1utxA!t%K855;e$bP_hc>Wc7FIS0iD4NC(`?OO8haba7FTiu+@e3hr0eo
zO|Z=^Q+xc27j>m@Mp4SdrUOi;+c1koCk)>^$l%YF(b}4g<}{I_|3}3cZ{Y^;>Knku
z5Tej7IWl-;1ks5vdM99|X|8I7`yWF!VohN3)b?F9jKc~C`3`+uvL?b!4i6RU)>S}=
zC*<{87uC>4b^xsyaB`c1Jn++7{%((1=UaE6AFhm8cdlHhT_ELlTBxVMUppEu$JAd*
z=nm(sRAN9zM)+Iqa0JNf!h9`Y8KdWI>wv%zQpS5Y_;UFH=;S*foKVlM5Clj(O>n!K
zp`d^UFD<VL?Bc}PS(W7A?^d)B19F0|;f{a==^N$+DN?aBtbh4~0@}c?0ep!P1^5gf
zZOlD8V3!2^^ChBKckB-_ARGhy?IR)97t{b{%)QIkYYg(86R_xVCNvQ1ziTmIeF0U2
zn{SN*{IdxR`IhzPIE?*Het?`<cMT{sFk1_K@6rb>lK{)|%*B9)Y2arh=?jI2RIUS`
zhNA%QDGwHreis8j68Ki!;9GebWA4@b^P_<N(-w^GfR%|}{{bZ%(Pk+8RSbytUwHsn
zUmibHz(s9Bi$t%#r34F?gek;;AaKdvBM=~I!5zybHVw3IBlvt)@PA;;2oLqwjA-&G
zH|C?DQW~v(&J4=*G?U_DWM$%+n2=Hc^7S)!e1yQ4HZ~zQaHenAY^I8wLr*+|{i*~;
zAq?XRnsApNvd%wyyjQEp2-_mwEBEnanNJ$U{5EBI2gPdj6#DI6Bm+4Fl&%maT4u$b
z45&~NqJsJ(oiMFx=<T~1an>WgoU1890^3vIeZcm!{miFmY_>pn!YsbhpM!#^*t;_U
zx&HDu7;?f*?kVwZj<CgB^7>_VlF%#OBX-<dsSO|EnvO1QapSjGE&w@aLD{&Z(G<g_
z(!w|z1z5p1^Da~^0hA$0uGZYUxiI_#lqDIvFmz-sY-xd0+_YVnDR1ja<4f*ugmM)x
zVQP&;a^v=NCCy<R$>Rnn)HRxdqBVsFD-3eV`Za~FVM`2h{{NeHud45}BWaByyf^j8
zYu375`A7WN&~FTqPP#MJLn%2~QHk<LDS<yB^f0LT;a70wub2;?QF}GK)UDA4-`@1K
zX{iVPIqYjw_BW^YEPrV;m3P-o7UA8Jjp2nQUrrV(`R(Yy+1H3Ednn01Zj}ccu#Hmy
zCUcYJVul~^1F28olA=b__J%(kGM-96%D=eL)GQdaPit;>g@M0wfuUBx3P;x(hh!ZU
zU0LL#fJiyqc>fea!2yQ^Tzu1ZZKRVM8%Pp==KR4r7}w{PK-50m+1-^d)wy+@3Z(-H
zC-aBz%o~P8i?1g<8OWX-r_MyK|9%!ss{FAG-TNXkGr~i6Wi09Mx(8M;H$r9IM4mQ`
z+UY2AwUxTTxPUG5tQ9i%f%@HH`Cq=D+w2H>yX|ZaJ0c0Dh3f<L>B}M7`%aPqJ3xrF
zA8>B&>E%sbN#_?Db88UB(ps}`Zq{-{&ZTa$r&ax5yepny)?T$(HD%6A!r0fsCV~k{
z6|-3>K>~|ryi+*KiELOS-gY-gW|C6@djNA52#{<hN4V9(LR5sp45L^<;BQrxUB;>=
zrgn?DqNQdEss+Z`2;^r?ipjo8nhg_cNI2CQef$H!I|~FUi}%)G4XXFl>4ZCO;$|WL
z<<Izepa>`J4kj2ld^G98+krr2Kvv;yk}2*%XDN1jWCbG?aKRT)=7dP<NbT$43b2A;
z+OQ1_y?%$&Uxb)3X8>+wASOtce%bM%z`3TsH)vj}vUPEW*hm>e46L!0wrL6L2;OG1
zv`Yu1NJrhlllxrTJLLSG8qr^Gzhwl66t*PgfnaAF5+3!`RgS>~ZXc_Dx$#A0_+muE
z8|1|{4kfH8TH=w6=f^k~)5bdmMDfH#US*-d0>Ui-Q$%>Z{BJvVpg&T=xq3G75+VEK
z)z2CNd$zHuy&}9a|I*As3Xi$Um!8@6d-fJS!VDIF&)?8Tc13kT9qIjuYjCh5e7&>L
zA0*dx0drLWB{X-cct3aaui3!3ar1rpr`YA&FLQf`SDZ_y6xiuCY%cd!LeBlY;qs1N
ze87r!mse&!)=i3JFy4l{Hj)u?iTF>tX|x8Zl~!hC;+g2j+X*Qg8c(uOeA~MH`#_!u
z_Gj1@L4<J#JhfS!nEnu}2x6p&2Hs_6<bm)WT4#riwmVJ|O3sl#!k^gP>-<d8oB9%~
z%xPY{ebFoE`p~W@(U!9(nQ*?E36KFmGqQ3>00q=mupOd)xhOZ2GSH8n4$ZSJ;=;&=
z4g^I?E7i7NUBD4gYl_}1-S$>WzrUQU@K{VZVNgZ7`%m?-lh&>|lc`h9wGN6zK8RHk
z-%;d@@;=b6nV+t?0!Dl&(x@r^1Q6t~Z*<QcFH}OOpx-aP%r!W|#$L37^|^ZWefkdR
zq;4ci*s|K00lq1q^bRLt>|shIMp60A^ss@y@XJn9@P)1oyUJJvy`Mzs@xxrr75%+O
zUNs(sp<Nu24&*EV;b3!hz?w8_lZpvL_r9*Gj8?;IiH8r_Q(Vg&D1P90T{ZQ@TyoTi
zrqU~rg#=Js=;I|5Cd9`oMF|@uL6Ta*KTs>d5k?m?m?%z1V=sv3{~OGo`YOF7e-tbS
zbDnAFDQIP_`<X=t6QWIBq)ZB?iV2}Si*oiBqBF{&>IT#uzfGN+8g+NGDu@F4@|>W+
zLElUv<Q*bT<`twiB1T$btz`?~n~TCbe@f33Hy5c3U9P?l8{l~|W}U}D+WJe=t@9n3
zCs>BOs)a&6B_=Nm8&QgHk-~ssM%7t-U==PBLI?H&ud?vyYVr(w-1u>sI(U-kgLlBA
zDU}Uwq11d&Lk4%Q>_O1I_K{zQs_)nd%BL?ecy3moU<&eV<tX1=xSEKeo@wq`GNVq9
zJUqFdNdR}lk|F7PaAIsnvD-L)_%~>4+%7q$TR(l+5C3X#fGb4a*a(EXKb6{i#S|?D
z>&@RJ6=jKiv03#w6}kMptsg)Tv@n#rGV)4z1nIC*ZoEr12u}$`Fx<v2D{V98+CB5S
zIw^f*pICk$tF%B~S3aiQMt5_77kGs{P<^sb9MwB(V-RQWd5@oZu26kvcS?Gpn?nK1
zx)Zy~4ZW&Fxl~Nw<e^5Huvk#Dmj2xaz;GBmo@`|}uz@@Lq%M^fz8XMyQ{y3_)@(h*
zae*U!YYq55<SI-GAioApaAA}V8=+%gjt8jv3=fI5{Q4TB*fl)lT3>?Z=-N})$WGF8
zaZG&Bm~?*VEyJzgRt84%3v3&OwKJ<XA5RM>g?lQB&L4EMpO~K_1}bwfK0SmCpE5s`
z^{!vS;KA-}YR1Smv<|4vBzx7Sbb@{tpIXuGod1W5<*j}}b()qijQxkofzbx_apbo5
z?rNQHJLJ6Ms3^IO8%x?AN$5v<Q-;0xp<YFXp0;%rgP|@N4k?&BT^q=%sv@vc=pk|H
zcgijhyHNd#!)JcDfP3)Fz+4GL!_s{n)Jn&W0#0JjQ7fuOkFePUvV6u(mS=+r_d`Q+
zis{o3%ht=ssn$*QCLxn7_e@0fve?Q*Xgf`maf7%}Zx>D_cB8OKg8I#lu#^+o6&;E%
zh9g>2fyTHdtW~5uQ@0T2lBt6|RojAbidlh{{&bkJpa;1^n?AL_b?k;&T@$6w{v8!r
zjZ&fBBZP>VJ9Fn2`vGhDu$wGyeU3}R7>%Vnt0J&&M0V)gB_;#*#oIJ<4kz;;79ZTO
z$yz)j{WG^D_ig07+;pG8eoP7~1MuNSI!&^^-r5dm<Dn-)<m3un=Z*DcsT(2Kuq}LM
zk?%wgKU$tHx9eTKuAyFeZ28ds&3-7ZNcTzM1m3c}RDJ#(%K`%Gu21>i>Lga{Gy?Rn
zxa@KYNCDIIHE%%-_s(THOxqQ>vnDBBW<L?$6EZM_in$rZCUQ9qyy%;9ojLrt4<_gR
z+?gll{b;1$Tl99e>QCxEo{S4{?^0Uhon^eqNWd21EQ(XV2g&)@pRvVHb6_)ZktkF%
z?9%d`@%we3SjfP#o2)VGCWcKHOJ^$C!~La}ut9&Den)AYLtCS+$hN)t9HNn2;`nr1
zoJ;(Ygr}6}<=g8e^LaZ;e58d(oV|ySxcRQe#^Vo3orMLAJH=SK@I+e~!v8ffA`z%A
zvov-qj;_^4f;Na*tD>5u93$SXM~|wHrV!#@BU}X2q~q1Bc!l+mU&<n9IHoO}uPYIL
zOr&=@l`ijMkKvwk!S#URG0jr~0yj*y;_PjXV9W+v|Ly{_@?ztNpeMc~anCt4Ohx}1
zW+ozV(5vM_m0Xi%)>p$mv|~-z5xG_sXqglLXmfYv%*0E;D?*5xH=S!J%tyveY*K$M
zG&f>mvR@ku%>1Ri%3B*}WcCkkT_QI3(F8+LV?n2vEIjf68D&&v2-1x>fIn;GNy+aA
z)!xt_IpXJ5mn;P0FON+yKS3`ew%z)>a(9tocCg^3cqP}&ud{_|nDlE_?zW^kL!|G&
zMcx$P@ieskm7|2vxXr|wcWBIz@|x>mS-b9ZQwn&^oZo!+U<9ptcZMfB?)!bFRJ7|%
z8O$_=DG=LHS8#Tgea-A`4pY$iC^w48TJIbv{xW~rk{8Vlyr(NS&Ex0^o73JzSpA47
zsgx$&AZj>R`KTgNqUg!2xv=WkS?z;fPdGXg4lyprQZD#0wW2}3=8_iDg`-{Fmw9zk
z6PGA5aI$_29MT|cHH1^#3HxejWH^e`{4k+x+Dg;)X+Xajpw=x~I;I)4&@yn!zUzu2
z16JuW?3VHVn%9_x!GS$>cFsAI$qddhAIhEl>tCCiq%=l%cZr?g#5i96`aD#Pb6Gv-
zbt1odPVj?ge}7g_N@>W4a)sUZ*O^uNa9#xrD_xZ<cSdtZ=>+)q(|340ZnMIQ6B@=`
z*Y$Yu6tFXyG4aQP!y*ZP;X0m=`8g?#JM=fe+zi9`<)lB#89M?O+*dQ15>OmnNz+p3
zdMi2JG*q%bMiNvVk0YWwsjWKsYPl4egPe&MopYU>bB&xyI2WC7e)1K3{A4#tNTayQ
zd}cNl+Ku|e#Jc|7j(stPIm+VLGse=&s)xX`iqNX0S31@{9#uabS3j-fN@ONDgJLjB
zvUDWyc*{S^&J)e4{fIV|WE$o=8whosd+;WVYuaz00&HN5WTkK;idOur`?+@3jA(R;
z(|1%I`<L{zdX<>%R&Zie0afM6k*4{V&wmQ!e>U@#j#IRy-LL9qaeU(F)fzaKT8_2~
zIs5fb4H?tLESZD<qi42@Y<dq+VBjfU<nOZqR5E~0;Fw;OsX&;^mkx7L8)wRtnWLJ+
znI$dnHNFMWB=6>rHLO{5(#P7{$5pm=6gfXHrAbwix#u-xjSG+O>t~YjH1=20c+7~)
zXN-q~UiRvFZ>-PR<nVuz2_itX=$jIk_u%h;yG+G`TL*EQ<X^Vp!&)B?@~V)TI~#Fa
z8oR1q7s#_9x)^RBbvi2I>35GFd39x-d&6xL%^9rx?#KbSIZ^vSu(C4u%?Arev~zKl
zG}5>+O$TPHP9kgn$kz3bnWl@#wsKqZZE`-hL3T!ZA}uY+Hj^a~!e!P&iGvuQG)Hgh
zRv2z8ZXvcZwrb)K70&ZeB>?Gg0ESO*2~HnQt|!`DD+teJmc*nhNBGr-QNz00L7TSZ
zD5CtDhj4hmXDp6a*BFEbo_t_>tyW14+t-`hkvhYQhKnK{d3v8<IL_95i}yj1o@9I0
zk^%M9)3_w!A}7C(g4-h5v|r&ADXN**6mHB`B)TUqWqpE7E9}ktBMe74B&Igwl_VM;
za$1$^&pRonbs2dVSmow(HvP05z$4Zzc#N7r=_i_sK+b7n7l%$SfhshNFI#icVEsWG
zSQ7wu-zI#9c_vlIPXtNyl*+zyIfp|B3q00J2=(*<YcJCOo4g;tN1)%#`7<cO<8K*{
z1h%QesUQa~z?I{p-vA*9ptcC%RFMN2QPkMKeie}c%cJ>VfmLqE@XtTs=e{hXX*R=q
zn$XRC0j)H{kJTtN2l{DiHN&s^n`a_*#~$HBAn}I*_Zw0>VQ%CLw3wT2ADQRVaDlOO
z<tUB^h)H-3`kdFxa@68R->`pX;yDzRdu~7=G0G2E->qLv*fderO>e6aAiXLGXio>i
zaW3`882|*Fmv$#Kn}p`L7N%k~j0)*-Zf=hpcs<%32=9XDV=X)6yo1~PA2!<?uiGMT
zVzw0GNiS(It`)UJ7E&fvM4EaNT6^V0Gu7~d7!8knYR!-L85XEX^!(IlPyOcclhXQ{
z_1ql|Cp5PDOFWG0);zOE?M9ovIb0s<=DRG(91sdvJz1bo`l84w`=eCZr984ZGO5RE
z+EL;uO!KY>xl|_T7c`1mghal(-bW8`IoR2LM7qL~^(4hN^_cl+FKexC`~KKD(h#<T
zBj8OBQSpv<oYgD6G?9txmH4qkMC_VFh%lI+j+~<`>IFp6l2D=Dp+lU2vhUaM0*px-
zAG4XR)pB*W2-So!jdJu?Lsxamv6_Pw3D*)<R~%V%ezKaXHyN0!#gmqjR!xPfpOzMq
ze{bF0_#jg|QA&DLV;XoWL4w5X1&x33T)*+@w(#evdt*z&`f3JHK;_7bPM?sqD|&QW
z?!1Q3!`CM=lo2?B^|O7<nVm_M?4whICjBF5Sl-&L`>Qy!JM@2A=gjI3M=D;$$|AMK
z5J6njLMv}I&k4spiif~Hfa=OqKE@|6HRWf-8Tvqebj&kjxy4<1W?$_NdNI~Y3a2)v
zBvjOBOYv+$TPP}IophuF+@BU%jU}|{Nd(0yf$H@Bl*xHwr~r^Ce#H&X9`sfSVi8Gw
zPkcfYB7dM<xodS0T{m5)4YGgQ_`Jp&<(cXRq{As~aUtuQe*gwNU`G8|LyT-F%Q#rd
zK`P650QiUiCpsQa%mAH#{BK!~0-e>kMq+BC3N*y7c&eF~uH^<cI3JJ{PywYAlTzZG
zPX<5n{o32`#`qxvR-(sin_P>rUg|?;F?K>^q~%n?NhCL~e^$uQ?liP6=P>XpYi42l
z;SZ}7gSaGLXi?gzfipUZxJeWw(jnFeB*#9BL20(rXU%{rEJtcBO8qr{JM;6<Mxp5i
zy&7wigqokZfquGkVFc~F6BOy-pwafuJ&K<xf6vNpzTs@+RKj-?p5yO)U@xM2TCmQg
z9r3z4l{O~)nwxH3Y$CbA(l?bxiY2kLvMt*@_YjNJ|HU9?T4&M|!XUh;ZMKVIlXX(@
zJGYg={l~x~9BN}r6V?qSc-<#4uL{-lva;Gp&q0Pmm1$W`95~RmD}%Q?SI2sY1>HX%
zg$1t+z2v{LKb=3KT^poo2d#sP0WizvjeQ#iOCH!^QU0+E-JXG_Lt-`Wii_*p8j4|)
zN1ez^=CkqiLD!ekDT<kEPnD5=50PY==jH=VOGCoQBx#v`nO<F)iv{IN1yiIM*2Y0J
z*NX3)P1-8zFA08OS>55GRhAa#y){#{OJz)QPmbn#o8zhCEk9CCXFD}fmwF8OU~62>
z^@JwTI7@xHIehZ-n7(mUlr`|mpJ~^~$s(z=bW-ojEU?kV6|bC81}w-?1uU#n1%xPx
z`W!f@P|^jxDOLqf@;^2YI&&K{b27{qlAfVcAnD~kNJi9eBp1D070$+9{V-wOzWUL!
z6?av*bHXAfChc*nLMH8@>gb9`-c{7q-rZKzMaSD2{rkbm?SGEIOY(I_CoInyh8DzK
zQN;BBzh9c&|Mx_2Syx3j-?XtJR2dRLXDj%_FM*FJ{176g`Hula&j6TI>lhmDS>j$7
zEKUr<VV4SKls{p?#PXew+F*=YbQ)ltnvSr3A!!soxCh^!5u8<5e~J40+vHE&`8Q^$
zmA!mnDaPe|E0_EEEQ;kHo!^Ak4sp!(UX1lbWoP_K6UYh%Kq7@N$ItG(o1&vZodR)C
zf1w3XC9XRLAu!tO#@}`sqksz<(gbj4EX=5jJsQL(_1M1rnom-PuUCu77$uNGRY=0m
z52?hAu+5OWc}`4n5vFr$L$}sq#C0^oiF$1)wVj(q%GS4LW4t4mJPvKi2h@@S`-^P>
znd#eqF@wDSWmabrb#bZdvw5o-vTKb7;ir=kUCi!I7o(cK`TfyvV06`q&jV#mhG~X#
z_)pe$OfOioh{M9piN?2{{n<r6I$5<VjK8eiqH&Ia<DOfQYsf8IA{mUJiOR#7p0Rzh
zYnU!#c7I6nK;ibRD=3_V9pyfGE@aaV-JtVv!6%XH$=KRM4BHPMT8q1S8S9PI#B^%a
z9?rxf9>6_gqv|vx1rLjq9CLtfl_*(p)^TP^m09Y-?=SD$#8<8_4&**MoN9dlWs_!2
zVdO?;^~dVjBxg)n0+%FA1H6((`)POm7ySRWPCvb}UZafqWu710Wy9O5D8Me2)j1TP
zU5*;i59Ykrz2Q_t%8c|E_TpEo^94fJ?A+zX^mSarJ)N!&?Og9-l!;!iw#u2JT4$kb
zdxgj}ug>!y0ol{ZZc=8$l$$8U^+Huyq=n}`q6bISVO?w1t7daczhtZQUE%=KlNr@a
z3ubVDuJR<r<en;U{N_#r$L8FlYMJAC>f%<4_{|v|Me%F~9uL1oeOH7{v6jQGx(PM4
zf7al9DdMyP0n!?&=y;Z9z=djrGJohcY0I6tJDW<7>@<gr;sdcwN$K!Wb7>7hVpz09
zhmqN^g%u7bM<S=W%*ckIKU8hK+K-1dAp7|ZxpUqIv&c4&M9lzo(^AyefUKZn)ma^2
zm)DEiDOdMRSnhu1)V2Ptez<PoXxiGH4WoC}OOod(gi^XcwtHw?<4dxQl+EO#8E80#
zlI4k=9=%tr;qo<#8mQ+A-T#}J;v8s?-fe-wxA<_4n`o+MV!1xI@=<iol?s?QVSE7m
zJB6PV>1VXVw-a<dfeCXI-M{=f8DA|WF;a2A8<Qu1JW4sV_R@^;c@|Y+?(CtNGk2e|
z`^@OFWx-3Tl>X1)zXNE4w*)SQ?Up5zZ<b3rjG2{}-d3k_?CtSQ?}SQ}9ZE$J)4Gj(
zH8|eX*Zf0W*Zd4bCi_w}Gz~nz7#lwuc=hd+EZqt;FQ#h-LBZ+;A>X0o&+zrnGGrO}
zErleau?(Z<!d+`lh$(-d$5b=CCLY<U{x>XdUWI9MaPF7n@TiF5lz)(Ra@v@?-WSJ)
z=8W+>Hfp?g1qQx-zaHX}nE4g9Ps%Z<3{PRHJ{{+%?>#d0Sh-c>e1Yh7@hHLYNIUtr
zb;-TbtrhFlYi8({m0SFU=%l5{x{=w)=argh;jg`WBfH_X^6SPlC&hj_m2LY;OsU-v
z@19Nyy7XRH0%e>s)}G9t47r*SyUuDUfe8iFt6xM3sK@;R;jXJT;wOE^xrKK42hM=5
zZi~`XZ5n)wRM)Pew%MGPAUM@D3Y?x~#e<Up+d@_MG7Bs|Z(&7jp)TFtD(2Qf^8s#T
z&rv7Qc=b6+eHMP<6>fzG1$E&jlTn0NAFdA8*azRz-HgG%u*b`w2fGYiFiQg+egg=n
z^|W~z8L9a%IeOi$)FSOYusp+Bbzq?FB}+Z!1<(y{46@~kv)f(VWHLHl#P7~VU+c}*
z$%*T@fCbkQUQ%-mzUA8Owg_VNFI`l`LeuVsW%MtiT@T@AHv!vbhZ;(bT=lsmuNsVX
zIT^z;s=bx}{RK7;%1k*5vwb#&ClvrxAIED{&PbC&HY)aQ)wAr%y_jS(UMV)qaYy15
z7MIIP-Xcqz!3J6vQafJ%EEbpWO1@j-;y1%|=T+ev%W%8gN<#Y|G7BWc(0o2k|DH(C
zA7mzk>5IE1N_dW_sqwW;{%<ehjrUqyhVOKYGL+z{0d=E^?d}S7Qv>coUZKzZ{@*U-
zIlEc8@)WZy|JZA(LV7*F_t>rKMevMarRj7;&Lp#}t6SOIs1dZtq}l29yV+86LEP1^
z?p^~)cAa*~)$lTz<-h(yyCO+$eRRP!^0jzL)6h<mwCi_6R+zqK2lZvLb!Vu3!TMc~
zvN?T)FTik5_|&0FE+U$9{cyf|{Iz)J@dQ~=&tGwguR<5LA~MfQ%UaJ?=~$Q^nw50S
zynQulx<R>8Jtu*KYTpS2u_LnZC`;0WN>-TSHxEFbOB2&?ZKfC_Gud&%=EA*^%d;}%
zM`3+p%gucSR6pmw7Pn5Nb!a^xycTm`;{(Yiiw@mGL5-DLyaJ1Rwk>?QO$R8*qgqpu
z1lL}tIoTS+1VUW|aZXcSnY-=Wh8DfxDJ<WrBk^cX8$q1Uf;p)X;FvnB=ttshhK<lJ
zxG4{(!tLNZ5j{J(ujeQ&K;47LxBQOFZOww+C7z_CKpkz|8~@z~>k+xO#WUM(%L4e%
zDtqnl7?*K?-96Nl7^Ac8kLzLBW;#i(%j9Kkr5tshyvA@Q4)Kh$6-9V-a#xzn(Y~gW
zMWjClUK`2#q#>51`Fl>o;d|<332$$Jd}9yS-i6J@qWHMcrgyiKt4N75!*OSrDV58f
z%-E0_=){VX_?3;81@=Xf!_tlk5AX7(grB5c<5*3Y-@=&f=nr#?!^vsA!->;Hnnk4e
zpD@_ly)#Y$q!z0j4=NX_3OC|nmz?m0992!``v2*WnjCW$U5F=L#xE>+wT=j3j*S;u
z#fyG_{LGcGUxEu5w6_Ft<-GRTfBO-t+TZhC`naD!$bm2pEfdQ!CLodJJ{MfS!On-~
zM@m8!j5Ap7C&6j5HzfsYP<hs;om1<24#-yt;BwEodWX`rhdS=(7I!5pm>qYg(0IjT
z#?UL{9J<feQ)-RqJQ$Ga_|Ut>2-a~)6$)gS_UwydRf+HMqtVC=B|C7VwoE^ZSupN6
zWH|+yx^5C}ZJCJy(HP+0sax8qS`v!WGjGhpsa_w~2u%}Z5+7z8(-zN?7GvkDCMA=;
z9(&&N=ndqSKuenRsXBEcL;Zy$s=&BT4E~UzW_+p64YK4LG9CasS@9Ht`$tty-kVQT
zmtpRX8(A-@6|<qo&J8<fNVPPA&z)U>M#Ys~`s^NKZCZ<v6?bviEn;41coO$zIVY&&
zvbD<cH`JsmvCmg4vYk9QO0b)Pg^&`l`Hcbzc-{*Yu+1DP1O4V6Y%(_wkO&QA{FDJ3
z)UmO?T&apiv@M`fiUE;OlS4iAZ{fj&z$H95KPNc<8#uq=WN2U;*s#yc83YeC8dCX!
zps9(}k6>k}wwy7C(N7N7L|TZdEs`>*rJb6A5Cu(3#j{LUZV>x1oQo!sDlnvdsAUWu
zKvX)r0RSy6%bUUkibwGDBIQS&Av)%Pti13)HXwc%=eujX^UjC4FTU1`M_@Q&{WmZ0
zgO?zc&H$96)Z@Xlh#PW)9ppqyPI|8Iq<5G@^bRJ9mYm6|ujga!`wu08As6rY)|&a`
z2xQNy!ARu#kl=O5c;1{Q|GfV6D7GEiOdQ9^uagAt_;OK;+!_@Y86H4-1sIf^K~a|!
z*sz#DtavI0;P`(to1?@Ww(nX7HUv6k?(QuXxUhwH#^ncTV$?wn6z_~{FWSK$%$SCj
zWF>ZUhY9rjgNSO4IK|K~9cqhjhOo!wwQ`+ugI^8PFph^|1DFO}*(GOaX$1Vr`(rYC
zDwZNH4y8<8?eaTDoXM6vq#G|VnF^sr1VYD!o7OEz>p$mXg%sIEX`DtvB$W6P_92AR
zM+)9LDrXQ&psr5wxoji==cH7<S5rIhyqs7lg6Sd6+!8tXwyoGEooEQUZg`l9kk`ta
za-@!kFgTFP#rayUTvmsF7(d93C_@Luzw7vsE&{y@VFT;-3EM%0fH=zTwDK=ImokHQ
zfr62AR~5l#hq?6Fx4t2)rKN(fH$v=bKmAhw3af@fD)Xgym6g|$W2@Q?OV2@)F<5`7
zR4I+-{6wJ}#Yi)p4uN&><PC?s2PVS}-JmBPF1Djb&O(X*`Lh^99dqRi;E<^Hw%D5=
z*m5F_(T=wL3ouj=+K0>X?3$I>3D?CUYkdh;0+L1FLV0o|9@6SJ<vfa17*WMADe}C+
zZ$caWI_3);47D%Z@K>z=5+GIm&svk$tOd}%KsvVG@+DlueRL_aw098=2COg!dyhJn
zSk6<=B1|Nyrjam#6&Cp;%_z{K6_!)Wt~DcJ5VcPGV%$u}z#20_V#%#fWOjl&y+|}s
zP^k>B3G;zfb@rP{(+<j2(XI8M0(D0R?4cwP;9XcUM-u1&ue38f)v>Df7RNQ5eqSX?
z9~-m+NfM|Hc5Tp6{p?cHI-9tRdw>jDzC+cYyl+iA9_6EPLt{uq9Y4~&??wfhhDsTq
z&HW2&DEZq{Jx?P1ZtJ%|A>H${GEC)H(ag7?BP`K#fqrPx0GY;|571h!%}Yn~J?GW4
z6#vLo{WDVuz7@Tsc8G_bGT!hp=PP0Tl>9eBUOzdp`6si;F;71^i(zvk4uI%FzoL;j
z=3}prE_Pz<P!Tk&s(pY=$Z*3TK$DwSvBtZxpIzLpl5ufLuvpJf-5fkx;g2T3_e){&
zW}^Yz>Oiy?{L4n7d1rVo==u1_HOD-AOAiY1?Cfg+Y&v*Uk0}Fg6!O+gsXTMw!bg{6
z&@<DK|J<k~>WmI-UUkd+b0?HAg3!|NER}JOwI`!pPNO)p>Xs`oC!m@6Nl??LIuVhA
z^3pAWgY#a0iMH~!e%F^r@+K#OT?-oyZvExu8|8`RQy3!wvdGTQElkQSoZnW6!c|*K
z>uto;6{Dy-%7?3V)mQp8N4|W<An9!HtfJRp12Q@k!3mH2BF*2}KLjh$#==UmqG=U9
z#=-`}7cDhHj{@{iSv`Q=kzR#>eJ=hEW0cBJ0F_#waokrPnkdadYrX4@VWAyzn7Oow
zmpQtf^*wv;u^><w*U&J-=U6xKdxT-lxI`f=Kot~4PdsrsI1`I}d9><PPd`WLW#v*_
z@|N3r=dnKBuwWn8I%-3SIFy(sJE>Oh`Sr!tsC~U~0XtgK<7W?Ih~Q$Spg(m<>Cdv#
zXC8T1jKX6_^qra`2bPS-bf8i^06L#cT90KXDf1A#JnJrps_5rr{+s{sewwzh^Y%C4
zB(nzt;WLiZ&C(+M3wL2c3D&-;F0=TD#iuNA(A{EFudG@Y1-tbILC^|MYI^<=s%D|A
z<v5oiOU8w8)oA3k`&oUyQK_WL!c7FjL$SJF7RznD1De)MGQ+v-Qqie%KlYPq-`8h(
z<q{By;hQSeQl^9n|G<HIko%Xai(G4O?mpQ$O(9r`8DGXu3jy%Pe;gF!Q9xbD5~v$E
zsCsS4hyzj&kr^?~VFb3tE5rz!DlUH3&9sIP9_)OvPX{4=;W8ZPAnQZOj$Rl(7uuhX
zzhG|+bJUzO3X*m<cd*%stIiDEmtBl`E#3X4z80eax)>0rvXLc$T885t8@8gYJw#_D
zL4f16+tLE&w(DG;U{-%y+ri}g^j6dfZjgG;KA|(rJyuBFE(R@7OEXD+NYxZ9T$%B=
zppTvv|B0YX7nJGP|6ZW%k)3Wl{tdqG2_6If_V+k2Q<y)>vNd%&DR+8aj4`{Us>YV)
z4>ck5iXI2QEdfb1GXcqpK1WWQ@Jo8SKgZ@CnDnu1e<S4(R3=H(;h00~`yXar!b{jZ
zy-fb-UejrB9wQuK$pqnVlc6<1>}~&GXW06St)fJIdZamPgAnJ+j?Xy!5~K-Za($fU
zk_@v@MX|?H>csL_Axxt~@*DWkj~XRknh%d~?K@)qA^y&CDy5dEQxburEU<aekvTDh
zc_r!4T2~ujN#nRW2T=Xjp?K*dkSnR*+*B@Zfi7q%dD#9(Wy1IB#(rWdYHanmbt!I&
z-&t#aCx(S(v065rU?BI2Gim)T(=aKEF@1dT#m@34NMTIZ#Zfb-g;YY9tWeLzfJgfy
zz>Z}EHNbh}e(?~;zj%;+Vg}~Tr}7+rUjzt*l9+)++lI@$*w&JFaQWwSUdCb{t$C~=
zjaOkOB<TW=#(gtsnCmG&mhfk2`Bt*em1cB=R*^U)&op^z!vD=SU(k4<Qgl)<oQQd6
zc)V%k>*|t((=$dSM-vW*$7StQb%ZT#R5iHZYpOp%<?6H5S8;{k@v>;f@x_a_m(5Z)
zTBJrOCsm|cDgIk^%86lLOGA?A(Q<hhyPS9xQe(bIAdoYd+&yY$W;5|?KTEK`>=5x$
zPm1*k0WSC8hNHC@`hq-}H2Vmd*29T`vm;Ao#jrxc*M&YwX)5<IpHHLg8vEKM{P!jX
zY8ihnNCDrwMO&_V;B@b_E$)<Nr9cikM^V%+a3!<vFxklS6$k6fM=O{@yyhg|;Xemc
zk+BBp@Q~7ALeq|w2HLg?%s{Gw8AvfO1E~bYBb&f@qdPg)nb`D*7CZLk=DFkWR?P%0
z(G)&P3_KR<w<wX9(@44QY=qB%s@l%RzJRv?>_eEs`M?0t!^BTXIiX%AouKXS%RGXW
zUA@|MbnkPY>D-bYtl8MZgFZCkh!Gk!l!dTc!9}ownZZ%C`Usm5{1Ir9s}tv1l?F_r
zR@!tXDVlxDKM8%ln(Y@&sJ<-8q8^yhk`uM(y3E@j7DL@2_j`p^)+F2qryz^Wn9b;?
z0!*80t5>m%QZ>h-3iYz1%}JKJDL~vyNdrtd`RfW27H#+&%q0ee0N){q5*=)M7~xQL
z?+8u7U(I`7nd5I!h50Qs$a>O;w6`||<^v^RMbK@_9R{;1^~#t_8fh_gy=4gC5jpF2
zx}&VbZ^V`>go-}^9ssxAI#$@DbxsXVxk8mDcvtWKQsNx=PaluC%X>46;Mg1|n;?q}
z{jzu$gL$iMzhAk@a__1t2>aHx%gKGNO~6}Gn{cLKX`^5wtBL(%#fAQq=yS4U*we#1
z#!sQACTHI4W%Sd#^{p|;IQgSuUQ+wT`d9nI>P3o#l_=xS-5?mnov)~3h#+NBe~QUO
zdo_y2l%OgDD&{Dj2`050^&eNf+fg$nqe3z`274<Le`elB8c+Sq)Is%aU;Jm0MD3t`
z(m&H^e|TnZWWz&#DuO}X^G9-q|3Z!<dMX$fetDyZY5Bqe_A?2|I99xSnS~RHe$$FW
zO}@o~uMiriCMV=EiiYR{$1sHpYyz`}o-SCl#pc{wSEgdX79V-BZaXna1BgEr;HoD{
z!&FJgh_z>z+)He_J#j{dMQVx@(69N%tnpUEh)({!0h|dBTt9=LsK~b-ix8P1NV^Nc
zL~yjib77_F(=gA~XzjekH{FP7jflR2d3#u5iD6CR1G*Iph86vc8(irQZh?uG)ib(U
z3x?Y4a_lG`KDmOmR(XvaUpf(a4FZWxoExkEUT5rnS<Ab;j&>zsPCEvgT&gL+^Cz58
zy+aByL&V#u#hnU9c#D)TgdH|2<FJRwMVfianSv~<`3~lTV=%GCGe&L3|ICa0iBHks
z(r!heU`&#Vfv%-)i+#9HTwf5?W@+9hS+k!kMHgZNqkW-COrhUGq1}iJ9$1gISFsn$
zA(>9dDR&yUL>*s4f(=%pDItzjivw?e*j*(+6r|J=4xC!bbjZqdj3>=o$)7$Xsu_P^
zF;g3U%Di}q@!$OFQISCr0QIU+(^E)fZDHuW#aZvNa~ip0RrX}7J!PP?&P4D-`I`rR
z9h&?$2OGGeql&&~-u;!hu5%SE)J7VpTG}DRI%@#TA*zyoH~j35GOR7AWcDKnSEiQn
z{@n@oj-Ux9R;;DwUo{enpDJiwj*4ngKUY4xtr-je_S^M~Zq1>vlck1)7W*}MBS75W
zh)9_$RyUQE3C=~Zb#jRGE7muac?oy=C`LF~YN&QMl}QHmL#hc`l?GCof$?0AJnEO%
zvljwrV=fQ#sIXT+jllPxS!(=iz+^Bt$Qx2&QT|VnB_qpe%3RL7+x_AuEdcmXpiE}=
zmf<h+%1wbh_@}v-*dkT&d(}*7+&f{mH76^>s~A%@!==);9_x6^-@g*HFI=4qE9C6A
zO4|yKw-B2OQr@Z^azmxgsS%}etQchDs*!<Ldywvtyi}zr5t}5ody<C?7}*n=6j=;C
z624T@)OS%rEUN!kd}(*_{}(rgoh_RGUvW>Dvx$0#oP>JG@e(bFt}b6-HBmc!XsEl9
zZ>Ryad$Hwzch@Y_X^&H`QN62qD}Dr9qHWQ&s=bn^R>k2U@4qB)XE3hB<)g;OceH#6
z&Qc-RW7JpdKhla0rA>qfMT~#^kSE(s5FQ}+3l)EX4|h!`_4vD3LLpeBxc)@>D(5d!
zqL#>*v|LVip&DZRLkq|Xz4n=*rrU-WZfAXS)oeQjMM^)$rrKi=T4RTE(SSm?di{9F
zwu<bIVFL8Y=yU6jsVZHnSqn7(BoD@Yb}Y@snk#g=P+ll~`>5=ZxJV~@6a1xUkN=$s
z_xxd>O^5vv%LEwyml7ke?5`=t3gH{#FGVYSYg-(mr(?ENR#a>gAl7R#JkaH}DWU`R
zGk2gA;JfkjECP}kc5*m~;=*Udx#9R5h~R=V8O~YlyIhCY*ZYC9TaW&(wS0~(AM}My
zs~a*{C*L4{>-_zq@tv+|)LKfJEEYTk8U79e=-kTGMd@6#%`9<dagO(Vf$uM(9s>^{
zsi{oWX0{;r9Mui2%%WT(j&*(#t+st@^5f?nhNQ8hze#g{pJb2Yk@D})5p6c(VB=3m
zU41gMK1{NDs_r@rA}67Tb0Qna+H(9EAjwnhT})=5Ql3w`^MYo(#>^cY%||c(e7_?U
zDuUY_k+_njVc1%)M_I1vhzD~eD@o{FlGU9-tjFdfv22|AIVv)DJj{?#FlISaW)Qze
zPlc5uQIMqMT~al@^w}u+jP?2}OG)^`*vA2F+8#D>mRNcXKMaZUB}Rj`UDk42o_SSh
z^P>@BmBeh_+rpw^tDz-K^!$C5GckV)7c`W_JIefj^`UdWh&S!QI!tLLf1gmH`JuCP
zG8M54E>bEQBqTHB?N>E_YQW}IE*?Mdt!Bt6KaOjx*9?H!^)z$!6F?+=T}Py*L*st^
z+o_pZ-spKTyOLDqk{PX?!z$>~j97>at-5#;n&cd1zGmfg6{t^1=5mHU?Jd7_7qa6)
z6D5MCkfM9#LVgdJ+cHu=O?a<VN>KidMBo74^u4Aj&vp%z25T+^;^3Fj8lw!bmO_I7
z1(;`$LQDeX*HV9=&UXco*X7-iBg0=NXT+`75)kzMR+1wRC>)wS+RY}vvB}Kby37%i
zS^E=G&;5(!)XvJOT5mb5)N(jW=Rq@+H>4{1Q4zg)dp*t$4Wr%g9**nua~*$PQ}|%s
z)2@MQxg%o0m8Os_H=ItvlKinul@FYT{iF4_c3xy4@dG37A>Oe#Ae8c*lK7NtSLPF5
z`X$}MB(E9ybEdlJ@=nj)=IApHrsjID<>eOx*X|q(Ze<pWTLB?7E1liMFZrG|z1+QT
zo5LePdW?JDYH<IWw>VDg?Koi6C#`cO_{vN;a~a_2iU;0fB5a%VD@l2gzh<cdl|3aw
zNbM<dL?1cYW%$8ib{@WWUbJ2M-ni6IR~F4l@MLIu)hCgvol2p@k`#xAi_Ui0Sv~Ia
zzFf2OOQB_5nAr~}<5&)OxA^`e7|LN-W(Cs0@`;Eg<_pdrDd`A(8_^Ymy`j#zl22K!
z*J<WTZ=$Wy?tjt~sS<wt@$thMM^U$uVW3lmQNG$xJT)cipZKreNogsauuF}FNsEOC
zya9>$$1VBIOQp<~q2eI;@Ei<OKCAPID`eK%-t98wI-5?d3cdMGwS|&u#%rzhbfi*b
zw{lVZ@+GiIG!b@fg~`pmn(?U-`;Yls<0R;8gp)v;vHsxKj6mskks}<`9lQ`sEDRx5
zeY0G@*f?a8oQ%;swDRS2FTc>AFV0w!T=X^E@K@}<@zkv5lZKRL!Ym5h@l~#4SIV?w
zWj3KPmf)?r`v}7gD;?{r<u*TdcEJRuWNl=9b#wR%>d)(=Kbq@BHlx@}aIU*HeTi9!
z;rm&62;ri%RgsSP#mB8C33=-y+qmIrzvX2woOQ=5&b&=3)N$c(4UpuihC1qPQ%r%9
z*1GBq^`TKiL9-VndUoq;@_G(uQ<5h94yqZTECUDbD0XQ}g<76#Y=*j~!zNg_!-*cm
z78k%kViiW5L9F9}btt7aC2<Gg?wIBZqq@;AcT)l@%jeY+Jwkt|bM9?G7E4_|>|t=9
z>^ZyQ%CNU>GsA|bXbBPzYO_xun+l!-artChuR(9^9I5^3XmQQxS1+kE?+e(fYu7E=
zqmAF|<8*bSTih)lIA}2CZ?TeX_38claOi6W>c?pRYDWjUbq4rfGvT$1BJQi`|B<II
z_pqH%Pzxi^*MR-A#jdcs9({>#pz)sdRN8%XjoMQ%EEb*O`w@i}la$zml7bmEW=Zpf
z;24Pj*u=Nll=?r_XeIUg4|R+jho?3ME7mv@U+13bOZ%SNxIC>Y9jv|@3D#(Gem(@%
zj&tmX2bGEJsMZGz)KejWgWJ7p5%$1Ez_cbqPV@7ED}8idc#6_-u$4H8H#V#_bsUsi
zvFM{+Rbo4CfL4<e@vkKmdM2#Vy_vaICa+!2Y3vJEqbvxcoNgCQe^dZ;azwpX(jLla
zHfQN{!@BE0Rs!<ppJ$A@oRTxN;O|J{eKy)QVq;7ZxY{bG2|YDRDl0<lR55s%Bl>*P
zlzZn%>ck~0we=Q;CQb!5M%9RyqP<wwLQy^zJ~7uhRs6`>JURQOHu68$_xUT2Mo;<W
zjz`x_T-J|-X)WiDTwm$~@3pz)MdCoQb+g%nZ^f-^Y9uQmFT|naSx{^NTwD&0R$$)(
zgWlid!X1~8PdlfI$m{`$e}?6K4+?l#Z<#?3bZ#@*GDb&>K`u21i{_G1^U1qO9Y9AW
zi_9J33^fW@gA+9RGLMWX<+!!pYZeBd=GKb&?yK`2sudn?%uQxuMz2i)DjM%i=@|s5
z32)~uh)yDyn{gZ`fV^viDB-=r5Btp1@2xW<EAG<HroMvc7d_es0<3}I;E3fB5W@6h
zuA#Svl1I^75$+&}Qn=pVYFT~8vS|9@xTH>B0>ZJH%j8t%wLw!P8ZtBD6hgomNAJ9b
zdG(7LGwB?3|9p6XS-FHIl+oXUb;FBzvM<Rpm^b=4#ckD8EzEXFG)@hQjcQhI8-5dH
zVOaDAU)9=ya!RB(7UYD_!Zcko;=f)Hkxx%M{>)F9OYn@#&8KN4QSb{W>hrTG>veLC
zQ+5km{kIfSp({)7aZuQ*1|jRJ?n%y^m+V$H$0gl4O?EuCSeny)R%30)eo088jbP0Q
zMj~8^+-URc>Z{XuRfl;+v6Y1#k7rZ=wT3p<k)4P3ng8)b_LVN?eQAf`rkdJT<soyn
zrV1kURcyhxWIp(byVnEZF5iD`TIv{^)9$YH;t;jN%oPuke4+zNN2orf)Wy#}@)4#!
zE{)TcmNDw&uRmpe%T~vEJrIEHR5N7LGXdm{TEJA;!hTvsG20_tye1)p@exzPRlJC9
z<^dJqguy_JvdNNGA6>8U*=b{TRWUy^$8y7UDl}Q8#)ey!l)7j-W9=Ve?lPw{?2lyS
zFf+V5@>Vfr+E(MWSmU+o)VU~99i_I0*rAM4#q4%eXG<ko#U+3j6`!6Os}^l$x}uJw
zx-K55CFY~LbEPYzubm9k41ya>OrMuJG8kX3Oh3|EFdX36$ang2LJeilisAM6Ns{zr
z=0z1e6U5c-{PbFjEz*lE!oi<ZuONmCTR+Z{w(Qj34ek@8oxB@NAouKrkDXu1oDMGh
zN_(ll5yB26KrB15IBUZjGhj;$F>6iZ|Ja*&slZkzJ~&8uxn|KSN`;qM*?;2!Iv-uv
z;VG)X|J+l1o`&ZXF0XlZWr5dP*L_vMok8FYrLcnRP6%FyU@gdhqmJWhQOT+`*|H(F
zlIwdwwc<~qu!8N*2#&(jx3YFBsmPpnCAl{`mPy{sDLR%8+miwP!-i5m_&S~1bazKq
zzJt}JYH`Z0RYYKQ>!yo&bs#ZA5_ZL7&>Ki8Qm6yj_D^Ocs?9DF-EkCg!0h(_@b%R}
zadgp_4DJ%#gFC@JKyY^n?(R+!WFWW(clW{FVSo@Ef;$XJfZzmz+jhR)KXz-YepMq~
z-7wXC-+lL-d!F1}pfG1C*hs6#1#G0P5#%JFZOE*;&VA;az*i>ty7Yj>RT3;w=pQT5
zFt_kSNt?IK0cCG<AgP?b_QP6KP=fBSGvvOhcLij(;p)}*I7|1$o6MtsNvbt7T5h}8
z(TKgMrDqEm>MdY?LZf*}zsJanpQ1Ym&ymz{V2?3>VJAMoy3mR4x3r*04;#4WGz^k+
z{^@zA|17X&z9mTEaA+yXn;NN2KLxIDBI|W5s~S!#w^f?YnS3axQ&qh84J!hwyahFd
zRCs+aLpDt^KC(=Gm|46h{C{ubvNqz!KKmUvLh$}P)o1f)nxo4%U)tfR<be6>kuS>S
zsBR-b%B@I23Hv~euWJ}8q=>+hKm^r8XKiEM*?skG-C+_#=+O!ob~9ntm4#liqWT<`
zvc1uYX_0ZVErqe;A&bRorJ+zrU95X2(@rDkWE-0aE`UI%8ZsBY#EPq%tYcy@e{|MW
zek1q*U~lh7T6yHmGQ<qH$k+f-B5jixEPoQsA6z1nU^o4<R;uaLYGM10)GQ`pCy44>
zC#fx=YNQDtC3rb%6uj?g?N!TqM&eqwvBp`s2ui&^L-&A|7;M<Hogj&xAVJq<fm$A(
z*6N0fhHw-=D)pulZ9?k;?z8;o*YA<WP9k;dRhbm{s;oNFsONoRV~o@{BD@h2+sP92
zi+@6E=C&?4<6cn{CZ!krb|gQcUr|jtJRhO>TVx{4jIg?Ayjr7*?-2k&)sNxTVWuu$
zngHqb3b7UmG>GEsTl-2K+jY_OhpiZbs7nfopb_fK8DO^T{@o-TH#Tk>m?N+z+9(#)
zD3Y{;6sZ;NxiFO2EwULmuXfyvVf0sk<^j~r-4AUg=Z6ad1$4|<wTvYO)8CGE;>?+0
zu5K)*`#x#3U6yv+6hh!(&<2NH%`DV&!kXMyEib~hWt+vfIY{QE-1Lq8hcD=s5Gmfn
zegH>@Oj-^q%`*DT=!}&d-p@ZE(A_m{Xy5hq$l|v1ImaINZPk;feNP`sb#+%)m4hT%
z-G0~VR9();Sk3|M79Qzs4bISPBOOIXhs^Q`BzzaUV`i9zbVIg%LYMEnZ%&Zit=X?1
z@W;xeEK&&iyRVJHbC+MQm{`wpiZWG{EcC|sCqba4v`gNdFnd3|;FHA=!-LA~6d-*3
zHfBW59g0D@wUoslS(nHp=DMk(S0OUXii+*f2K8iIBHe-&WG0+@-p+*0h-$6>P;kM3
z6{8Qzvf@N*6QquFh~>g>joCyZK8ttK{j$rZ=_(*3ehl7wZEXWW;n3&=ZdPq{MOd-7
zz|lwAmp-W-Ui_Lg6quyy@|<2x;?^Ck25k8dz=`(97a702Y%H&i2r!e$ur%d?W07|+
zuvolTJR{71J$g<TQLHfZ9F7e^*`RU?jH8jgM&(Z5m-VV2A=+_$K(lfxLCObGlb6m7
zwu`#`CPZE{wNaOqatfEW&0n3VlJ7#>k@SNdPFx9?s!W`TevZYth=d$8{0^)9F+%Iz
z{xX+4A`(A>K(JhAra0Cc7nKTKmh#VQ&gu+iE2a)wRyw6QHT=Twt*+G|*V*F|;f}2l
zW%?d}Lq7h^J^TI(z9$+3_dIA^Whbc2oreMSC@9~#w`C?V?BxJ`8X2ElqoF!z+9F#}
zzo0r;=RjGADA6?5khlF0v(Dx6;<CY`Pf>0c|Gu?1ChD?BYC-($Q)77%!M+DB<kp-u
z0dbwP<@EZODI2EL0TuLJ-6#>s^o%eK%vnuMK|pBc`^-Hijdo3k3*_r3Fk8Wa+yz2v
zs2&vbA_vs+=-zYtfI6@)#E8iLZ_T|wBVw*GFp%#BAVm+ll)PG#W=6!Zn98cdhm~=)
zgKi~%5<Y|IF{BiV3gRg%Wd~&A&&BL@JIpP%tSy(B-x)0HqTPg&e1Itvcn`iqokU4K
zE4g(kaSIijHkR+dmaNbc5)jP{q^8v}uL(dmpE-UT*8XtyBDfid9)4=VyXP;n!!$p4
zD}53gR3+Gt6P~~3c~eWjZYrO-ulv_sW(_kF-_o-!v$~v+oqI~;UPS=^(cr-HahG-Y
zkdNE8*+8BUGp~14%XK-7j!qF7-+{_q!Lu8)${XX@l1W8;9&4ic>l(WMB{4nzIk3A(
zXY|h#14cySpUVHjB~Y;xy7_N!0$hA}DqX+^)mgab0_cuNxg$Cz847<_%I4txlbA!(
zfm!s@vfp_|H1#-i^wha&3fV)6SVJ3A_tG07I!yy{*PnGjsaYpH_Omu$`jmqs$Nf#*
zb-n|;RqKi4B{;t=8ua1B&8NRHRXz<v?8ImNC0;h@(utqz**uMdI&<%5!xF|?it+0u
zhVfRn+e&^>E99k);_@<kY{4NFVhe5V12<UR7oDx;%`F5JE#C31zm4bbf*Ba0g~UjG
z=T!1(<qLC4QiLSfDKiM_oYvO#w61;d`df^q*VLFEMr0JaNE7}}Q86LkPnAD#%8I<O
zvb^YHRP^9q5^ZuUN+;|^gE$4B;^Ky1e7$b3&N;?^lR)3HsNzS$w|l&&I@mZ=E|(6i
z!?kGp-mJ<#uUI*h{#;2GY_biG&6iKfDW&MzJVBW>NqFGgo58Yq19=vM!Oea%slmNq
z%z)-7)meqTsh2iW+k47w4k0L&VWPV;=C^1F?yjDV6hbM*V3qI-(0%ScT?Y0japn!4
z*o|+00$KqK%pOs-9`v52umW}lC6bTRtLEIU1d|jz$H*YGao5Xxui#H;q$Xzf|7jn^
z42m9x>r=GGC*M*b3Y=V4DYseXlVp5mJOMj&b=}r++-%8hfHNGrK4;788Zfww{+mx)
z^MKra$odBV<!Cmyw^V7`gibhidNol*%R)Ion?a(Ao!?~ed8gZCq9r<c!$fk~rodu%
zoQaZuGYJ>5fOP3?^rC63{0Cl%8{!X0RBAN|Wt=3!4%jL1LBC{#Tn+wc_Ns7Hb|`Py
zG8y4HvWwLF+@nR@dZ;nMc!Byn0qIq61=W>UJ%M9AU^Ct~F!#eubnp@41p((45pNMM
zG3h#mvt7-u2OBYm!dW(bp^d7%k|8sLC_n^C0n3;`!@&9|-pK8gx3)kTt9DxPo+m@D
z7ehkj<-R}6@$#LjVuzJbTL@G?^PEsO#73%Tml<J7SiUKFqraa2IGA48C8dVep<D3#
z)!Bx6_xHzuw@JGLcU&l|0WVyG5=ySzSrk#{%XgX{vEwXfbk!_ElTTDKJCoDaN9$v&
z6Tc++z&ayoo~paa86mm+DbY>hGPBKTZrVz=c``NA&*p-cmqKczLO?kd#qK*<iLJ)~
zMET&bAKn~1JYO@jQG?P+c#MgNu5-Z%ER{&-q67=b9lmnD<^JobA3&l!CiM1|G`GRW
zy?(hmvP<GYOmouCp)2T)pDPi{^$6sWOt^|HGfz9;p26XB)f#}%7(-)XERsCl4;5px
zGOAP-W`@YhdJw+XQ9-R{W@TkXM?XB<>buI-4urVQ{66a2-lkrs-W9)EsM4MhCUpIs
zf4Vu^U@15ooe};S%dhB$QW!qEF_R)0XPRU6Z-GFbLI15v+vFp9gT3R6mlf|LqlC8T
zYY8sOH1%w_nVDr2oU+&zTz9Q>8YT5c8rXzE1ashE1bCn5cZ8PLb?3GHVtMjLs(wu2
zqqE|ZI8)g@#ktoZiI{G*<gwDJP1$!h$`q+l(QM21;EJ{uryruN+O%IMGb|^P*s$|a
zNv$%t(+BJngtgAizwT}nvXcqX%+V*Zp1}yRw!a)c`9*#&p32&9-ixam@}PBWIyRP6
zg8M}D-PJzeAnIi;y})Jvg!qYoLIanKn2K#b6T04{GZffg;}Gcl&I?$(IH+PY)M-k0
zKYhorjN6qEK{MN-#=O`su6yV*onc&(IMXT)4mRJEh;r?Xo7k$s>7+&arl3gIBgdSQ
zIL3$7!O6DBOh}MS16vp@7c88G+?9!Ga}t_77{PzMV+@cI4nOD5MqKklb0F?gjw4p$
zsWvL7arSv=y<y3T9Q9Rk{<y;#&pd;MQ}KnhKz}5YxBTeu;8Op`ddkGJ9Z__5!HH(+
z7K2IQ7BNoKGRN()q{Yc<o%mnke51Q{p%q+6{=OEcSVJDZT#vdGRWS4B*ydFwkwMO6
zE27gc{1`YIWpvFe%{ly5AMT$h@*B*X!TAA7vc=qHsB?mdEY-p}NcZ+dSD=lg<`qrv
zBOA?Yq6?V~imMn~Of*yV0%D47VH~P?@EOGFi*2g7m9(T^sq4yPzOj*dT^ZBzQp(d?
zjn!CSX%TiU#&5qHC%4C(xy!Pqr)UQFe6CkIScS@|{9nv;CW`T_k^K={TOK_mbIRi>
zc-ADR<1v5=97D3!??D}Ulo+|ndYU1WYvmulc5h7v;5fgr@qI+~77*ak+i4^^_53lN
z2xm580@^C%?|nDgvS~yhg_3a16pj>;clCpt2EO6BEW?4|0(%uSUWhZCYJW^Ow-@|W
zw=;8#Z+$&1=TolP3K7eRV|POw`km{3cegP0t=yIv^98)ByOL{)@$%c$$lvaDNAu(e
zg;%{yZP?2(W@1Zv_4u=Z3foZK%DhFO6?@5jqVea9Sj@0q7rGPl+)I~?<f+lXr1D3>
zagI1+CMldx6`E@X?QymYzmaM9+2768K}nrHnK{YL2WHDzoH-5DRkd0pE>e(&zr<ow
z?5mX^9CaJwR31jQC{Xi=wB{C5bH%ZrIV#pJoluDqsjXgHE3+L%KYg-k!5}pdS3Gat
z8M_v|qAN?X$!?)uwf6g<wqG89k=Fs)kTBNHZ#J5jyVJ?i_TMg#|K*h3g>5!)^A=p)
zbZVoqHW>lVi}99DRb!!*h8{IzYIa3pfj$ul2L7b(an&TVy?h#X#!C*)<5+yiB{=l@
z&X>oRrcTUrf<sdDlSnE1X*LAtl%St)Y11bW5J^=cQa^`Op!1B!aii;_TG4UtD_gC^
zKQR{EAAe(M5@To9Zj~nt@AAwof_RePfE~OckRG88<{45J%a#`r%pZ;^{QOg#ly=cg
zw_s7E$JDM$iS?zw1{V9Z=hTGWG1Agd_R&VQ{3$K08wuMHt&Lp%-F~ilJI^p)*=-se
zp;(?7_Sb)1Iez+Kl-+xwRS7QhVmvxC-)GidfgTZ$f}{X1HomsqjLpcTV~C$z1_vVi
z#J?#6!HcCa6T7o&rh%~@4y8ZOH9Mo;QgkCcM%BVe*sww0tU{`o6Mig#1#xw~KFc;K
zCwJz2FHn#Zlpf<l6N;}qbVzqiPIr}hS-Qcr;R#il0M);Sz+)5hgwqENr2fr2Gj{As
zmisX6rZExnOpPT{;CcGkpYMW!r7xVm^3<=mIr!2ma+>^9p=!6(9%rNcqV!InwcqA3
zIm^^ZWP$CYq<PyBs1(Kh9(1o4I(OoX+Ce*kTXwUGd%lH`BjN^Yt#C|w&9n=Cz}KBM
z8+hl;uMl-pV@kmD_E4IJ`7aGV+m0*S19_lM_P<vc=2xyEllX%=<Wq6G@zc6#cYT+x
zYJp9IAdasd(^`uqlN}vpS387;Dx;)n&IkH&4<;O!V?iJN6+TSws*>;c#PL+U)+Xle
z<|}ut4Xxne{~;-SQ54K=d9CSitr;!;JeayFKYDzRz%ZnnAdbPS@5bfLH-vyiI`tbr
z!?A0A3dQ_^oE+pjObPN8!nG}-qZ|}1D9kchYbh*Fo*DkzF0mCu;yawbVN6}R4}G2q
z^*|Sl&5d{~oZ`F0WS5l_x6MEK;qc|fyW>33YDNCE%w%*KY*5OtEQf+;`+lj+<oAug
z&z*^sGsn}X*Q<QTv*oK!WvkU!S-WTRPHwBY;!pa1B{p-;4uNo86_DqY^h62LE%q6r
zYrZ&k97(3?anhaq3(EC4!BV0D^pS?dE9Gtq986E+t6qgqa`^gz)V8E#Z+C}wcv~8C
zf)VTu!=LySyn4d>_bOA_OBYH(euoGU_;aXu7g6f-*9b6^Eom`dJ{IWTcS|xBXnTxD
z#(|9--uIxIyjW)~0~2&}n#0y;8`HO&76X>kxZ#9_2ikwra?fZch3Q(`KBroquhn#|
ze<oXgy)%^Md2cJ9_wxYM-4b_9)$e9)bJOXWwJeXUgI2Mqk_8Gk-hcN&(9vjX>UW4W
z^>FIurXJnq;;0mdcDcw=JGbS>!Ht)bU!0a}t3m3*iMV3U8YA#-`FzC<S^M+0v)bRV
zO|D+2x#G-z`o>xFKv6w$XQf9hE^=LPHWnOc{;PIeCF$x-wgkUn`BZwkU&my+?DXC2
z50jFn)?$}H(P_E~gp#`nhnW6K7<xIJVEw4@FtxrdMy1Veteo<M;X^x*NM;<n=p<7_
z($(p`k<B%o)9+TPww5iE5?Q?J-^J$j?iNAAZ~Cik#8>^$a9Cy>R$K5)-B>Blw2nC~
z^JQx{BMEay7D5R<Q>D)8ro>r+*X#(sN>*UlaaVBRug^KBydB*U7Q*D|IXv036+wPj
z6`%FYMXAUEC594|F9UcRQ@G!Amu*{*!#i1qFCkVdo2@NQ_ow$SVk8yrUq&5P0`pri
zdb^(khjJ^PU(_Q-Rjh@MPYu_?H%yEGAN!_AJK0d9-2J`#s5vMD*GTzgT2lb4yIbH>
zE#IfsEt41V-s|+KgZbci9z({d^rh~jSluff4r*;Iw{+kbi*91`N=f%lwxc3oMBpb@
zm2ATx_rIUty)C&*a6bjSM@O6M#)PDfxYq-5fjlDELr?z{&)uvT0;lcFuQI@*0y35E
z8&R>>kr??=Ss>eHg51W-M}Na7qEb9$SkC#1@*}B>#<^*E;p;>K`o$4~+*jqL%)cm$
zAJ=gegu*+X$am2H?27ir(<__Zz7h`OiIwg$8&Fkw=jYM!{;H8rDeNSlr7qi#spuyy
zw40Y0Y3p+*$+^bf59kn|D2!~1`rN(N42I7i3}te72Fu$6Z^!3B%gr37%`IBQ7jkRD
znkhrWR;e62|Ki_seaN#1Aq%)OH@O2fRt;s^86uQp5f-O7`wnnIag|D5h@3QWYUq#k
zP6D6!Y;`v@3dq<uJ}v*5`*iN}qx_Q<{^`|=<rl`PHRaY-gn)2?32^<qE!{c(S`AW=
zUNb_F+9gVl<Poud*&fcV3vg?!z*|&U4`kUJjUSNm<!Be{{H~_w?Hh0Z2)9^HFD8G1
z`q0&MD&s>7ZgS4HzvlT(--o>OJLhG;^@gA4md(@qbj4uVFrJt(G|4U2EnZ;tsF4%H
zRM&1nev?d`*c;KEB<^vY%;(sXq(3oT%+7@n2FnBk^1_%N&Igv|s0g7h$5a|OHrNYf
zB^Gl_Tw<$6{+DoZnv!We{MXyu?_W?Dnd%(79X^8sDh2GJk-H>(w}+~<bG@?78?>($
zz9Stg>wGYaed87OLvG003@<T*f;1uUJMjER!mptR!U)+_j{9EH(26Fq;=i=y@SJXX
zI9|dwUL0>b7KV5PjBO7FRDPYgcE~LTed7iN<rCs7Z8sJD4UfG`hUWn}8x%fBRnd_v
z>3irdno#oU$D*GN7!&xb?^!}WaTBAQP8qYD`%E%`Um&X>^~Fb!`usgo-@AE~jly9(
zA}4A!d1{)W7azDC7Hc2K8ff7=<!kG^0{7P2rW!TfPeS}ERGfp?65kyE*wjsz=$vpb
zG(3_d=}k~Rs_6Puq`!rIYGp@|sEkKGr*K&S7c9sTci7N)puzMe)8N}J0OKYA#{INc
z45iGBh4WjuM>;LN!q_l4A{HvY!sv-zdgE?<w2b%Wmp}K6xa8=xm!l2h!12-RM<XJh
z4T%x_3*jUWH_!H#4nK067_p&*V)=(j*$VaZNhD|4K2{?G5ml{<yp@KOGHtJzoM;tL
z8;#kb3wvHUdo-V`zRHa*_@q)-RW$a2HTKg_6TbN;T*=L4+}L`WIbukc(>%7nzRO4W
zvm#Y1m~_hl_J&zA0#)T5g18dke8qb>{>gv?@&L}aE1ZsFse1lOAquz00mI*Z=|Wh?
z{t}ZZhEv-2gYJ4FS=ST$zs5py_76o}$VuUu{xTmj>+q^ULNo1&LnOJhBy=5K?MGV*
zyU3)^9%Kz|p&=kt!Me|@kB;|1!iUSZ!U1xD>=G8@wqOf?zTHZS5D+QQ3@(@z@PXO!
zi^BH#f}wBhpWxqo{|nM5@SwKvnEGKLtUP+|)*F6f-lX`Fep9vc9F(tj6C3qtWFGq|
zV<UJX0$f`qPy9uegczkf>emx(_|`@`Ddt`(OEDRj(p$!o2-Ke@R@yR$K|7)=JE}J<
z2V2*wF(<m4e-<YF?InzL^9C<z;5XWlJTzgTNm+2a><aeEOF6;{DA9WQmL1XC_?_0g
zJ}T*!4m`W|i1~CH8f88WYzA)=mjSg=Wm*y9*i=q^tEeh*9x#RN-<`hWG58{(C`ERD
z^2&rwiF^h3Jd#~H)v%RbS`roQ!%7+1mh#(<o0v-UT<)W)^H=M=)=9_7zkHlKrfF9h
z#=_}WIa(Cj#NKLS>1*JO5fZT|CSPEY2U#U0)3azMC&w9<W-=vrKu!ieQ-Z|xa^RpN
z4!+Q4FBO7YiRehe^Wz!|*#j*B#2x{FU}ZTAX``ZbnrpNU`FBJZly=bX0^8${(hf7Q
zv^VT<5V7nbW|lbaJFX&{*4g0uhufm`xUsciT)wdEqn_u~P!#EG#9)F-Y5{ibYb6a0
zY{ncat=XZdZB+139ItmqtyBiSr|E|`S7{l<j>!F!oEsDrlT-B;q?^(h*c6lJVzE9M
zlx9wF7CGX;-o?RDS75Q9|H-C2_Yr1<dn}k7Lh@Hzaxd~GB{yY!TpuBPt8>Y$WAxFz
zDl&HU+)^25&s|l!b-r~aq~B?(5y8!Z6F$J*s11P%YK(ZRImM|mBBnMgMl&RefZ*yl
z#a%`&_^)Zq``fxKBxt^Rs+ko+h@9?2+8u#6U?l0a@Da3^lXcBpu*uqip{7y;Fdzpc
z^Lfw+uyhmfXf34?uFA0l8Kr-%hw_P7I2DCsuo9aTxb0|4y~`uUrvJ5t=WB8*`+sf0
zN!|t6uN=gJw7{ino|H_>vboyOEvpn$ifKI*0$dUm8PYvr5i6jDE<1Q(-qr(;y)V2+
z`?x*Ei*i0tll6H{N&wL~+a_v`Ou(2fY-OLebP|@uJM^!0)SGwa|J}fcNUZHf1@8SH
za=P7$6O8T;%z%?(15P?Ke?0hjh8Nzz2Mf|9N_UkxP!K?5pW%@?&=C;RMQyaB)cUdT
zJ>KYFlg~Kc+WmW~g(izyStb9ao8pMEUUscydK)fs?6!Xm#=Cm15=-EPLQ>=??}UI6
zkS5Ro)dt`)!&3$Bwm&`+<9w@TN9w>pAVBZ7J(2BWN0R)GoH7pQ6;~qGzQISXNT)1_
zN&PVPaSKi&<w+3iOAzkVF-_6Va?M{SW$B5GHptp(4J*)i*k$$^_UcOb#Rj8H1iCKj
zj=!&4`1sPWHCkJ<wP20Hsl}VCHGiFFC+i5X)NRTt49N^#YjsaBRawq|{=4{8^EYUg
z{nww*klvKEEe8kt&IVxHQ~ok2xhJ!1cX0DuaI7s2u`cBLt=@fpS&<EbPHPTd8I(@6
zK?{Zf#AUN$02=0w!8b=FRKnhWe@iAIB+x_P-E~kBST==}exGB4M(juvh^5$xe<0{A
zN-mLs#C7Iz0{FbRVO8sR#3+6F0Gr?gqWl%m2+II-_={ciWe)uNTkOThowo{+f87*E
zmedCR==-qy&S52uN1%?I=*-hHNl)yN>-r2_QxKjfOlCE|YhAD7l||~<ye>>$M^mTK
zCm&zdyV!+4#Ns$ZsaiATCc+W>B7E7H>F6iKqKZKEitbM&s=Du=U5G%L1Dr2E7F0Sj
z7KCHPiERv^o;#Ko8Vo;+4WVwETZl;LC*y7rSD?HA;xjpLJ|~k6sV}@!=o}Nk$#!mH
zr2H{s#E!05M%?g}t_De1N|rKQ!8ib&4wJ(nGv=Jg0YqM!KwbJ+xR)9X@2?or&q7ma
ze6VFvFa*iDo6ew>u<Eh~&P{*BJh{l5x*bV|-gKQ;2JTR^jy0Zfh!5uIig8P66v$-R
z9zZEX8=Oq*2f8U7WdkLJnExqW2(|PCS;^>rW509fxN`^T`^{o$u1RutkjuQkuKgOv
z?jWaU5zDTa<U{W>mLO+M*fyG+KAH@C608!%uy+o>%KETuDVP3nF0+;&jD4U0+LF?l
z;z%da0$$*Xq_ymM_GW(B=Clf1EErHq@rXSsJ5hF0q1w6>N$u%ZG_$k%$LcoX5S!!4
z4hS6afiLs#BwbBwx-R>2=E+H(JeK4y+_DzrWkrrT3ew*=*)eA3qiJSQA9-xbA8o9#
z7eJQf_Z%T^B@_!|Ew{E%yQCG7&Rz&LF)vDwYb)x+wO??`uw|UT02ba$FxTgW#+5&u
zUJ!CxW(o5axJy)D`U<g1xIc)xI>>~ti4Fq&<B6i5-~vl}))SiCxP;b=!^Ix%Gn}a6
zjp_K06&Nd951Zors(F&K;P)T#;y;I3&#0+MOz7@Omi<IcJ~6S;<CD=4H%u|Hh#A@r
z^x0q$y00*VnNDWitU)$iO^VpDI@Z++le+=`YTt%fusQy2YvSWm$3oNXE?}hc4^|aB
ze>XV{2HG4upv@K~AORo(VE|9rnm$hC0vsM5aC5vpS||ozu*DxH7LS8c)PWps@V+e;
zywdldr0_(iHRMF-H0i>qlnzwT7KI!?kVk@Sq_PP5XrN8VzXMJHG#q3)!F~;dFgoX}
zs3?}3zanW7!tXqp>?zKl2%Ln?gHN0Li~1jVtm39l2z_E(Izc_}bEKhf9K5jnqXi<t
zW)^h>w*>&J%iz^V-muGn{WkghrbKGnWCgb)t`qTm0H9yggT@rM>cFF*a1kSk$8@5)
z&$wnw-bu+(+8hUS8T`HioI%nDlL$d+{)aWHKbxil^kx<P+^P-!F|-yg&y`(uAYDcm
z{&Y|e{C1U<{a7ky7U@_;N7hbxg){t#Sl}^sRK`4N?u0-a2}TS6#*;z>=j%ZXOwAZg
zYgZLS@(YUDC_%Ii1WkU?_dis%dIXzx;?w<8;`d-opnZH@gj-oXqtqDYChH`UV<>JJ
zmGjC_GW-O2i5$8X7zJN9uz>-IWkRK1;Ik^|f}#%jF})V<1GYXw8x!l|)~l2cY!=^i
zY_Od;79_qdNYfU=+YQQ0-0FhF)pR&s<2ZCu%*6>3C^1(;UQI;l%|@j+SyVCHLu_Rv
z5Z!~<QjZGqI{Ix?BEM$_73Tz5X01rGN0ZVr`IhsepV_s_ImElh3=$iZ+fGM}=GqwM
zu#nSgr#E_i#UMSBsfd=LV;qMYx1`k4uF3)xDA?{YkyRICH_%LTgnTeq07*I5c|Bnh
z)dnicAhoE?PJ-(#YL`h2+2GFRTHu?PVz!HYf>ja2rsjoUW$c)&Tz&z~d)`?ZJ`X8V
z9jNYRfP0~E6C;Rcb_%&m>?wu3vEl>;bOMeT4zN*HAWL)N4}{LQ2!Z8&_k%*@x%JV-
zvVl1E9*ASaKttz$1z3Pxt(kn!mm9~vtx6(?3q~xM&l+;NYmeI3-G00>Soo&T5Joue
zx=X|bf9@M3IQes*8Pr(p4DXHU2yhqhZ7eHd3|$18)Wv)Vi#FoRIyzn4FL&;o9{gW~
z>0HSK-|P=tKDIFADJqjFl13~Oxnmf)G=4R|%Pq%~cI?PJ*!pm3sEo-HvjczFat)6s
zeJ;ali=4#sxf02EMDK|GU1r8BTU=eRKAx^u8bcH-x+S}hA@35Ij6QD^D{mAT)Wx}V
z>Q&eW*)O<k&}||4Xsn5xW6$RYTPW{X4TU?wSS5uG78~u*1!cB}ZXMCPUu(-|%PpWc
zRxV)TWIy6_#;FI@2-J3A+FX;*(i2n-q{N`pZ@G7`Ra%c4*}9Ywd{02EtGfQ^cgGEo
zO|yBp4gGnz09>GJf6j_UxUm9y7SG-*Xoiz7R3Au$>*s)cNpBuSOf?q4|Cj3qP^=bc
z6?tA_6sieh%-etAAO*nCmzt}iDB=rKRfP09z~<`i=%yL`5zEmXkNCNv#HZ!trp#e0
zYVPC9?uQFV6z_C)|3{1C=i<qEc4VqPqfNh(OCBUq&C^S4E9G@SqhlF52Y%btq8bSA
z>`X#*5ex3z^H2D>3=ssw?jRq-Pa#nt;B-_fsSF29q|ML{ZO}86H?$JIC#EvHn*E)Q
zCazW0e0Jl~>#po~I$7@);9RY$UD96zztsrO1AJKAF$r<M@G=R7+a((a!<dsbg~!SC
zWFpdp2T1=j_j`4B$ow+D3v}W=IV}9wCQ^^$Wl##upi2U(-3{!!C(epL@Xy`ccKI-!
zZYp5IB|h`zw~`Fq=;|~~LO_r$2i;1lBK#L*%>bx=RG-4W^#QUh9>BLhlpViOIb$KP
zCv)ckR9o#;M+okY0jMu2jV4vk(+Eo4$zg86VgRC2(qVu#IwJ{1*TOM16T;%1k#6CP
zK+{%i@;!5qLq47=IEs>ltagzRk|x%2GO|gDznZ!jAHLE;V>4sn`v-xBn>PJA9CBvK
z3Ct1#a{o<$xb!bSh93mRdZ9+S_AsBl+WP!~=E-PIvk+ofNhfX=by0Una&admADHMM
zo?xm24WE<^Q3m)%yCsn3W_N1A1b}$F4#Z<IcQ?XpUROgZ^vJWR2&g<)1{~E_fJ)2)
zR04$;=-LUL%<jTocrdz~S;S)ZV{vxeTOq*Xn7H)ObFBgLGGL4;G-XWCkqpG_KYiJf
z@_jnlM+>t#U%(1sew`ry9uZ{xS7nAgDhN^~%WYB$7;D8k-8k*K?r7~ukKq5UZ3BHs
z^{eZhKLxEs7C<%x@pRE{f0@>7xyT$0_m1Lfs3$ooCSmxC09IDMo?S2gOBBA_#}JBx
zsd=A|)i3x%u>W)|O2XlrnMJIG;-5D~w`}R}f2bS&P|yCOzw$#}>+z+$A^D~4YeDJl
zCG!gX>k+qS{|LNb^mF@UJ+Bs<y$W`VGPsn|Hb#f6JC^J_u_-6G?bobV5e#z#viF4K
zK{jzMccN5srMh6$QfO5H-)tNN{Tz7{8|iHwYmC!x@oX0KW$P?cIxT>D?BK`L9^xm3
z#ZjWm61eLok(|Vt%o~tcjtyEX6Ggml;#$oPr)gtXX|uJ6;=oAZ_`fch2f=U+gvcvw
z@8hyxBvv$qvVIQvKEJ$X($=o`{93vcpQXO6N<=QpR1q{077=x${-=&KM+L8yZJ|-t
zd=VEZM91zZ`IDUQaz*S;qaTO-H&+IfVb@j}_AcjE3*r8BPPbR_(0K=ebai6VNw33(
zDk^!e##8?!^lei2Y(~|*p4S@c#FJAMYTqooHN_NiNp4f(&DU7UZlmbO_s<xNz@+lp
zl2hEc_?1$Dh4^3jKT@00r4|qbPBi1+U?DF@+SAk%FQSMfIh8U#BIKRHh~aL-P@`0=
zPd(Sr#`5!WJ<_!o1;_6{q4V8JGL1`|4mWX7|Bhq5qqGkjkp+wXQ~LgK^FFj6KcHv;
zL_7dz07(e()^o}%bIZiRP5F$~+Fx-^-yf%rtt?nsV4uZI`F0KUoMTO7B*9*W=3O1@
z&J#g->CF~IS7MEfl^mTMU4BDwc71Pr;Mssu)UkCdjGXi`4!Q7x%f}g?q>PslOFksO
zG=YP6v6j~dR;NAU`;M~QWeASNFFVG%N<a=u?O;W^bV@lcb5A)t`P_p7r1a8$;bld;
z>TJ3$>rd}l&QB+^f*;G*d^QtPeF>+e@>QzVo?5X(aK4Kmo(>sf0u)E+oCcscH+GyL
zu`iuGu>R^2zc+$RIN_w(H0QP1(y;Z`gb+JN_>i*&cu;;B5@tX_Iti?(mp>%IpQgm_
zk47#-%dYSu*v~E=TdDp;Jp$|$tposrsvh_OFAe#4L=U_RM3>asL3okGg>Eo@Gz9#Y
zDKqr%jpE1Q2ik0NLdn24uXe6q9U@4lCfE*@$imUMO_6ZZ&)}zwuJ5_FVk*t?FsJPm
z(oemsLOhn%X-Z_Mp$|{99ctm`{Kn|~EfqdjMF(pkc$5IfXlVD7Nx=1$=11bCYQ{{D
za=3mv2(mkd=B|;90MC}jN}8q8iQ|}j%!LOtIh7-+?F6}moDu}?j2?2WHo>KD5Yf4W
z**{LPX9)cq4G~#+rAHXfABGkAez2*BkUl*p_$r1bAFmHFkQWwit=IP*wM7c~upRL^
zTmH(4?lz{57Vc<W(o*m6!Y-*!Wb{Rg7h&2856s?w%FhjYO7}$mXgf74V!W6qBLHZ}
z75}(o9^g@=|MDV$h5BEE2DmRLUxlM!n@ht`00fnoG{*GD2C}6)Af~QUR{Bt+hp+@B
z!^uc&DZ-y?`e06*G51PEI6&h!h#G!NHo-f~r+Scu)*bnup%_nIdO$7$5q$JPnz31i
z?B2*sSikSXF*nU*z8%{UYa70D$G(GPSt%OKB{!93HIYHnQwyw>lXxB;?!H_%2<(Rx
z&~@&DwW}t^4=gV}q%Ita@($~{5-3izPIGy$;t)goAPEME_L6;as!#j$7`ZTEv=twn
zqfPewf~qUH6+I=(XfvbyD)?{$Ye7WOJV&2ibGPBi>vaJc&7P4p1zX;3qGLnt1H+^X
z=Q5s$PU>};G+h)jwzD>a9W?+CtN^<02V@RC_+DjDrYp3BEEkmUl!peIa~8l}FaL1I
z8z2mH0Ac8_@dFIQvlS0Fo7hec$}dV72#TC5v(7~BNnD2)AJLmZvq^u#?!u-q;e^>2
zvm&#ijC?6UkLn7mQVyFoC;wc>H2OVI>UYzbUwI2X?BG}Rp11Niuv~^=Ds>T#)3REY
z$YC!C#i4a=3n2h|j01&2;h8OwFlDBsRBt<rrR_qzXtHfvcKEwZy;1{lmDN%Z%Ec?k
z><^r|#K(T-Zsmr-yrT;r;f^m4D^F-=V*lCW6Z_)f$APZH%4<;qr`mXHfo7+Ht+^46
zkFg3L+O)EsHXb&4Y+9w(8Nu6gZTPVERu>e1cQYXJjPL-cm;ZlI?+t&j#m5I0a<?-$
z3KbnB7}_Dpu^JQVOZrHd``MRhjN7ig2>_)61p>@E+Rq4oTVT{%L#@X2cN^2;k_n)E
z0*C?h6X$qEt1l}_p-0h5b?vAEeqZ7t*G4X-;Qo0z0{;|&3#d^m9#X!koH6{Z8(?`i
zYaoN?1$;6K@JV&ys0Y;8qYfT=`oP>TJF2))qXq6v#dhEpvJh`f#xgMczrH&L?x89)
zpc7nSO&W3a{qskKYh2+=38)R)Yei5?p&A>=PeMUZ<^WXyv4)P-zz&Z>JcaQ~*8*Z}
z7eQ4HpuX0BXI|Dvcw@y2y)t;#xX;GwCqhHT)O1uXDqAz0OD=9Xo{IPstAZ54OgRxT
zVwh|r-bHGXp2z-TQaz|6y@Sa8l|lSW)Sfw2dQ*fKy)sQPTsq6(g|cJt{xCwS>UX(l
z==R68!h|iGp$vcyDz&ZAtI(=7(Ij6?C*W~$UpcujK)#8Ng@_na8dX8KCnzont|i9p
zOGSu;=pba8BtA@Cl+EJ(LRxFBc$2MN!srv2UaRX2<Ce)HM8ZK_vx<XGUn^3AGR;p*
zxIUA;nFI>4yXdBE`x)p@j2W)hYK%;d8SbP3F28NTiQMxq1BnCza=is7=#ksY2D-i-
z&X-^$6~1EPjM{?$2rit!)w8e06#m2j3T*-;EQ5y_)Td4yH8_+l36tjwfhGdsntB-#
zer6sKUZM&OF~1%S5L!ys|8TOGd&}bm=WAoEm{5Mkf2D-tvHm%Xul_`=Xz-cneFzEa
z*>y=b>Sl@cFOFQa=a_?8UEevLOPa7kHD9EDgww&bm6`P_M>2HsABD&k_l1td+7g8w
zPNh8)LKPj|FW0u1j3d=n%Us$on{&)H5wF{YYuKKUFr_D>uj!Ljet93{+WcU$mDJx>
zQ!C<h-Y2JA)D=u8Jx%A<GiVb`>O4zx7`(eNs!HD07$~fz$Uzz(p>-LDf3s9BaIU=e
z3eL2cgAk_Q!hrM$Y5NP#a8f3?y*6k`&(O43Vi!Q{%K_5$UcflpGeEiy0*r(6PmLM^
z)To!uY)Jy-jVbsL6rKz?@i>5D0)Ybo2jHxL^ri{(1XKuZpOA}inwJDWJW2Yc?m46Y
z|Mb4t!Z5hE(on0@C9Fg|CHCcM>MFJ6YO5sepY_HB{W>F2>JLsL@W|38#g0A0Eb{$j
z5J;kc%rAEP-Q`93(D4V^%-Xz<kxm1a$1PO5?uT#3Ev63tpeEHHQ`u~_P}w|BdU%5p
zi~iIXNZ^I@VTI=i>_yu#J<)Aq*MenA==2i(x;{WNne*!{Q?ZNHoQi&?cCT);eB<L5
zpUhMKCQV;5ecVv@fpTdKTaZ;f&)ymXxrfr2DMwIrP+-K}VB=f%(bDx$EaVW`<qlyR
z;(`zLvtLI$H(6^#5K~^y2cIpqal=qrPOv+6sMdV{iF!{||C6Y9`xS*h#Derml;JHF
zYQdH>sOO0)up6k9W}c<z{^DjD0iGWV9QKa=wESZ$6DN_)Y-S^`HK+JCvAcDX&x;=c
z`R<J-|8s_U49ytd_`+z2X0JkEc76H$7sT9m4wZQpiqdn*$X4w_dRZ!+k$S7WZV@#+
z4mr~NDn|;IAM)(;&Q#c)ASe?pLKbZ?-oEppWiHqQMC}+kM@z*`HybejLXrDebU>$(
z4FQBp<N$at57^5;b;laW2<&+Dksr5G2DrVFJ`X;qH_@D<06B()H2}LDz~3bT*+;z<
zC;B6r*SGhtKQL95yc{KZHJf~3$;dx$cRBZ=xbp-pC)a1U5}ECl$li8+319$iGno;d
zVVH67?B9U)c=0=`>HJurIHM-JC;(n~akETG_#gz!Ovfz-5B9)r1%3Y7KIJxe)wE3Y
zVLL_a<47;3G_=-K;5nj@U%f6U1p|pN(!WI5p8~ic3_w-QA2o*eFAJiT*>Rb|^-tTw
zy)~(|g5B_kK&x9N!OQj_gy8bncNU)+k#Ch%G0&H?Nnmb#+|X?YOK`irB^X5_`R6Op
zkU)l-<UuFxhpiaU<N3R%S3A;pnRcihEEDc28kWMV(j)AEF5IWAbJa~m$$9X8#AVsQ
zyMu`GTldv>58gW^_&#-=sRyDPMbDQ}X=~J#pBBKl)RM&`X|6CQ3v^Ltv99eGoz0m1
zczPlMS_IV$9Za%V3jwQjuU@bcvOp*H1U3O+`u|gt=QG(5sKheLpIQP467nV@pd;Ks
z#|!~FCOz=<=s@Rn0RC+VP>Cg)6!1yXXEjs*^1Z(Q^I~i;Fy49ZSxrFsi=<)d*A~+8
z12cz~<Yuq(=?nuU;eHI&iQWDt_0%cN59=)ok0~$hq$c~41lebK2C`yi-`66S)&#?w
zV{WY<tL3iW1O1lsok>MP?IYw~5uc29i;#KrW67Ko=7k)jW=H8uzgD8Djcz%*&cn!S
z-b%+PFzGqTkMWJqJ(V%a)Vu*9hH0Dd!)(-ohTyIj4-UmFb8i25uXwpa)0~_|tQfW_
zqC&lyU2begXbpoImS&>3U4FL6C8k-So|djp`8Y4!)s)!8?+}W|Fib*~6Z~}B*E4x<
za!d*{In^h!r3o%eHN9qeL6_srO~{kq_v518y*=-7Mzr0zl%vx)tF+3Q49FFDCyRW4
zw9mo)dBeGj;SfpKWZ-Wwjgwws=Es3^BuF*{qKS0)s(H~Q=KcUF3yUj{=)EPpuw95V
z@?I8_oLM0e2Nyw|w$6I^9CaooF&RF=!dnau^mo%H_P^n-E(U8hif_|b;TO6wuyzak
z1g}CoiN^||xjm!yh=*;m>4lP8PX35q1+}E3@^Q8a{(($t8qbsjT)t{&->ktaWP!Zq
z&O!NEVzD+s6rha&o}syd7Xr<hw`slP{sgbv5Vo^6$i#RhkFoklxrjRKuEFoW14rr6
zcF0jS$#*=zh?^=Jfn$f`9MC0UsE0(P^NW?5JG=Y0J^o_YcmB|$C~fBu?S6+I71#2{
zV~ge$lwR`hoNnP8V5N26EspN~fvG<)oo=DR2JF+p*xlV}ZRtl0oyKB*<U_7QWiBa(
z9MjURN=C6u!jQv8pvsyD9<WzmEWE@&J?aB6r{fJEB=mp*T(R662cz^xMRWZVBjkHW
z0WpFX5F;i5F~S32Me4w~1|T?~8xI2s;dog#v>}cNC?u$kP)zMc0jGUPVjNfE{iwx*
zsDht{+>=~8C?lf~hH-l@VSl1p5H;wkY!I;?rFB*Y<mw}KS=krH(96F|`)E_wu|e9t
zbF`nb0UT!h?~_*4A?fWD>-ytl0gEVu&8M7lRqt`!6Vf&M3if1et)}HA#+87+4n4GI
z70N{p{1~$;E04V_b7_KI>fh{VfV_lSS=&On!)+;TU9F(Z2D!{0N3@X$PBj>-ORF07
zWKT(c7$_I^)=ek%Yxeo3yK1{JwM43KL)ynW5!byc@^exG+okpwg`B8Tc&DFE;b)Aj
z<b>x&p~{%Ps6T8%V#htKF6&ipU$S^+`=xU18Huq>jpCjs%<#o84w?&gp59-#yFeh%
zgqb>~w~lbs{%Msrrc+dW6WiL#@^UJ3wHB{M9eCK9CMM<Ry2rlE`9wI25VqQ~I!@`3
z2y+CnRA&Eub;6j)yz*>Q9Hhb38O979XZRw_UGMRU!47u}f)F-0*-fUjoJQYzYKY`!
z?HCby!)1ePZJag^etgDFy5#YKqG+VDKqXREQSEXDpVHmugJ`|$S>UNvLMkTzC}dq|
zYdvewY`?tz2KiFP;*ygaX7A2}<$E_K*ELzj^3bSK(jTRHZH<GI!r_vW8jrlM={YgO
zYn#SmbZwRNltO~5ex1s-I@hMSYOf(#VuFoIEwI`|9eeBmz_2GTC%jl5ppnG`$&H&W
zFf76bBsc9q<jWs6CUxJEXvB%j$%>SEmRQB@0KCo}54g+$5S0urVg%P=K*!<-v@W$S
zz`N>pF<d2oUk8h8b>P%(+n}`JaFU*yKxrLyO{_i63^&N#6n6r5uhz&fpal+Y8whUS
zw_qsGY7ejB-0Leomt-`>>#STl2q1370vV_{0GT&7)9*P^Ey;Tq^N?i(O>J)o@{bEh
zxB@%D9Q&Ukh|bEX7#+k{?>jTf<S!X*?H1krTvuA6xz&BO8RY>+^ix7DzW8=ed!X@a
zMWpp}p(R^oMLes9$wDK*iKxv_b=%)Ed?Lwi^y!TJJuj!b@SCO*QqS`#s`_AE)hHYK
zwuJ$+r=o2kWWpcKt#t4mpgjx#+5^aN1d7vJCoHq`XL*(8+!%m_%YOrhyI4~e@6oTz
z(sH--5qGB0pg{&Xm`b?6Na3eHnF!`GrM|b#sv6qVr=QO0LoxF1D7E4|sLXYm-7)kg
z!T6CFcR<~*yR7fLaum;4_WZM5$>xTz{6XW&$wS;b;_irQm@cjPRl)UAUi-MUgdySm
z!zH;KVWrhVW15-I^L>v>8NuSc&+4a!!)j*}jkMKa+{JJkZIYrmxxN8qH2;5uGBzs~
zG-FWCAxuDJ@+|_I_>YLr07P{Ag2IU;hH1{c95kEwBFl#^-ltMPo*0YmOzp|N(G5;a
zdKe#JKQ)Q{WJRW~*+*q<)?ckF%PW;tYuNjMy!TflSgpkWmPaM8D648`ib}|(d7~1Z
zP<tdDGVaUi)TwgKMQ?SK_o`o8=Z|Lz<o)08O1gRd+%w0PU>*@~VRdR4fT-})Q$Td{
z2cp|Qnbde1NbG_EG!~DqIB60iP+P_fnfXouUr^?Q8IZt;dn?9)3rjMDLW%98L0dmv
zRL$SZMb3sP;ot{;6qEv&q#qqQrv8R{j#zj3MMiU7=4N~ScmF?|-)C6O^+ZQpku&iX
z69mT+p}~^dfr%b{7SfX5WF!$+M!oO{YJBi7CuZ(?e$}BkJp5(@bb7ClZXcC=ktZ9;
zag2ioH0q&q>^Cp&Z)So?FzaL}jYRR6era;7VC&?3AXixoeJe+~Zr@6Xh4-DwT7UUX
z=9enuc;}XR$Wey>%WFfwvc<Q*dG!o8Kj*u+ad@@JWc4=kIK7ei!{HNGd9)van(5)@
zXk_7@@Fb-<Z3Hy2p3skv0l=KpsN9c+-HF52^CmINNQ1F24nG^17#n(1%YE+3iaSq0
zQOAQ#xgKxY3VbEdHsrg{5IN^h)kAQWPOU;7fMKKnR3J^G18i#Az$bKXMrZ^c94rH}
zx2XSsL@C4!(7AiUfR0xUbi526J4~8nKfcY#a*+BhN~H+&jVYoomjBX(H6Y4YIzp)z
zxK~Ov$@;?9;Kf^0*Tflqt)HDv!5KsI2_%tT!?U;_+QrMiJA?LQsXxiNsq;^)za0Hi
zGT{%lPd)d&RBpIXf6wfplV(Rsa~olcn#P0pz|yeyQn9*uui~yEMozIf(xM?INy$q+
z&pPucj9*!?z<pUY8~sc=T#a~FZfel~Cs~DIw6!h$HO^CH*=~^~bX~*dDf`df=}VVV
z+oiGlXirk{Io;v!{!0m}aALlpdV;?F4}0KC)9+*@-|vwG5IK!2Nqr46YsIA_9G>-3
zE^5F0$g}+JV3DBqme>2k32m`;q+2xU!6*1W4{nw`VXAP_*qv&MbI#3EO8yT_{iR9s
zU&qJ4WI{67XGiybi<<3x^f~?&=T6&y>aQ^~N%QJ#bxM@4_*&KH_}JLf%k<CRp3fhV
z<yQhr4})C>)mVp|2UPxWaxO)h7%QyTIBa5$6a|mbyKrRmoN=NiWD-9Y@b}~YP+Qwu
zaPXjjXs;Q1|6spSKXHV+#X5n2{5ySpK#%FZgz%4TzOC>*O5G5UX|>4{oJ23D(8ml#
zj0;VFTT1eOoB<x-3`!xu*ddDPSAfTJ1A%}zi}xG+n34Ra05aT7f4@)+U@jzK?7;+5
zKtzD9nAIPfeEWVaEb9FT)f^JP8VP|DB*yw4G~wqv;<8=0A`1qXs@qWnvvBn&?)e{|
zE{pj&%qygNlo3mx$qlaroKy0FR?U&6Y5$je?Zwa&mDa0?Z`vFy)jQJFts9uNx}7V<
z2^<txQ}17^X=kx`RAL-hMc+3im*~A-6VV?y(SPOB9csp{>w+nhmvzxqzl{cKrN-q~
z9r%=)T#Ow+CzM~2uqE#OaRu3~@hzmYExm}c7D8q2H$S*x;4Iyp-j-gM0fDqRDm>y_
z;iT>2Z&{xbr)}MePJ$$Eus4=fP4J=m%MGOGjnqk`u++p=%#M(bCOO#1a${Z`j1n&-
z*pDh5H`YaZB@$X%%kW{O4lAK#30N)8?KI2oQx;0id(|6S@tng9osU+6&mYnQ69eP?
z#%=Hc$+d9Xwrr$oTG5c!Fy5>dCJ>%p2(PCl9s2IZPl}=mzsRi*oFr!4D_U6;bqQM}
zE@<THu`a*;m5e6*r-=}DJB^5zT89N%oE)4EM2e`SPhJEhWROoMj0tXE1F6Ro0J*@J
zKZ|=XkU2&I<4}*-5<RA05(m2hT>1py5>87(h{OUSeElLk=ve`S<kpIV8@hRkVE_cj
znZl8d1KzM;H>Tv%&rYPPA-monGd2bN&}@@N^o^kS<=S!IU9Y(e=Y1ch90LOH7Zxtk
zJEz}XheZ+59>Z4IB&LiQDHLWw-kUQaibFI0zjJ_9buqy&q&R_}+dIf;&C!EG&I%bF
z?(5cwGUK-85-lV!j6CK9BCTWB$p=p*081L!uok8SG5Q&8VR<mQcvZG^VCk~BaIi|~
zfdXVh=*tuz+&)7fZqmIJZ32~tEeR^u`VBA3GVxmO=YmBEb(#qgK`NJjLleu+(C7Wa
z57skb<!2)EH!oU#PlhTtlLe;Bv7EfY>?8r<iN}W3$*)>iS!An|ld*4&^DxC{3`3Zy
z?mLY`%&G1+-iN#aX7LS^$FXWCF9PtXD`96@?)ftV^x><%DyO5hdv~HgImZLDXrMUL
z<(`+q3O5;wSX@M#Z*3?!fAhS!Cc+Jx7bURwDljkVr#Qy><4mTL8Y&dE3|eKz``rG`
zXJmg8<n|K2hZ|lk2x!Bi<b2WuYk^}C(DuM8(&7d=UPRLu1}(!rQ%v`KUIO<?{f$>7
zydv}Axf7%petX`F)Oqu|Q&R_!y*+QjUGEZG)JKl}zeaQwL)lsLx^202Jf8P&8rfRC
z`%LCrnJZIR=8wK~O^EXzHE<Tn)u$8#`*5{9wNc`a1131WaVgi*JM}`bzNO~J-4s0Y
zZc?~=PL-=H6gysfx3(8G_~UxE0fWiGNt5M9ZN|hQQwdNv%7$Gkm4H*x_ydM(h}iaD
zNntJOnV(~^kFthHVI4D>DRhTko(h3#heEU8XLIg14z%|s#XkvVf6_dYJ7(-*`s>=H
zen!vS{g-*QM1BnWt<tsKhf9>ryz+$FT(s%GVlQtA+MVb|y*hc`R8p+8;{772o5W#7
z@o_;ER-~kx4hvOb*gcz8w~kL0P_!P*(WwttWp&80sx#b(nAUZ0dSEpCU%b6#R2{+6
zHX1B=2<~pd-7P_aTd?5n7F+`ag1ZEl;O_1g+=2&pcX#-jbKdX%yX(Eb?pid{yQgOM
z?C$FBlBa4|m=M$MY0&XlloOL6LfwL5)j9@a6+1YyGbCrcsMH^ljE+pdOg@<<#igm&
z9r6is6&cm@1bn_e%GJCsJQ~{_$~Gd7x4Un)zdXxlKaA~i76iY$s>gbl>#ekAs8r)r
z>xIpl+<pt)Y>N&xcDoL>3q)%f?vw2i-m=iN`h7mH^owS98Ku#S#<uZ|#;-%|;+V7@
z94UvCQnvaz-v1ob4YhO?A_R5hCymtq9mdx2P-rfWnwM#Y4mKg%V{~VDODqu3GT4Zy
z09|izqsQO9%%vKbkA7j*XYRn5FNE#T!N?7iho7^23ShT=!~dm;PHhZhOj~S!rX4%$
z*v#0EQ|#IHnq4$Ebok^YZee-jz|^^pq=e1fQc~<L{<p<kyh5zJipqFoRO+1{8pg{x
zd4TQLZINRUe6n)d!MlNin9(ui(Sv#g?(Xg`9`(83;e%<8idpuiZn3o*iStB!68O@e
z=UecVt#24*7Ci)!Rz-->C^gm7KX;GcY!<wWNGBI}(xtua#mi#$dofss-EysJeX`&P
zo#Se{iz>`e;VPXCpjxdap5jS!aP-H!F!iF?kJU|4c3j@>*sK~+cR=iMX3yz9B{i6f
zRHaO_Ri#B)L6V#<9Qoo}OVcusVdF_*n?Eww_EaC=y=`r3T#XKslvF<<7U8xampH#&
zT2mSRf@eskkGLrGNPGWgoVFTv(0L|YvCc}z+m-p5REQ+wO#4lOH}?EKzw!5jdUduv
z)is%gkeo?^<|*t!@Say48-(kZ^a8?ZPr4UU<t?=7{Rdff+IH+wcA5$EcfZm&jf*dd
zNq&wDa1Q37!w(Eg?veGS(qrY-@z7Y)<0dgKpH#Ovq$v!26LK%M1)?;FGx*jHxxU^J
z2pnmzh~0*gsD*$%iHW+Xw?BvY^C2tRdEcIRUSmHq*cNm=u>n)j)c3~C0|bB?Nlgc+
zSYR^tj4>z|BIFjH*XkfdaPt0e)EVGotRBG1-g3Uj%?P>Z3%<h=YzRld8Rw!`hS9(V
z1Uo_igly9yeBx>>WL9T`ZWDHZ^ZYf#aykvH@0P$Y_fiCd#2?-Wck0pf5n~yc;k|#u
zLq98^!?mcQ!#ze*y?0Fmg&b&dvVg#A0vghG8XEGY1Q4m9!=)zlLH+<xQb=*&*}Cy*
zWqR)~@UH@?Ar7d6OhCH0d6gX_soryE!b301qr>sbVB=iRV<&x^@KFO$Fm4q>zoWOg
zwIDoC62ud?SCQ)Jr`vq}@MRVEn34<;$=E6$WlOKnCO@J_?v#pZ5U#p^pd~hB{gbGv
zmk(@DcfYi8FQP#^&BCLJN{cR6Imei#tKGbkk2ht}I|X@<kcqYkWC$S;p;hP;qYPV+
zFCb<vUy+%r@FO$Hc|&<YmawwYZHEM|EsaLvA(&<lZsVsa>iwA`vrCa7;v<DX&_iJs
zS;3pikA$JqObywOZKEFKR9vlCqY~6g5RmueNg>h8{otkQDp6X@|6u<HFJg!IGDd9}
zIy%T7u#nw+Bfkh3^CdZGY*$y%@JMhlJ_*zs?W`LJ|HMg9Mv;+oB-deT-i&jKV_gqL
zlz$Wgl$K`dQ~!BJM1IMI@E@iH`LIbs$Dh|`Ac4Ce9P}tTP_SKqyw(=V^LSn6zy%~W
z9^ltvqMd-|UH1=5mq%nl4)Qur)%bYTt!m+Tj7s=*8N>JC3NTZuoLjLjtA0~1R01!K
zdO=babEN{8Sg_xfOp0nO^wd0q<>%(O+$GxVw0i^b9bF8Sr<&mK51;JQm2l|>uTAb~
zLwbt3yQhB@ctb&Xeh3HdyGqetQ0XJ8hCS?8A2!`tMt+NK7>Jm|tWF7YrqJ5k&iT1~
zkqZ10=#+QCI~jckt-w>H+_ze-ii&Zf+-Gp*c+InQ=GSGV(?nSKCyd5NoA+Yp@B_L2
z^NhtE-3@-+13sdD{2hcH#)*RXGlU)U-~1<^hD!mJM0flH7=8TWn%bw1yrO$5P1=wJ
zq(VJraR-SfnMC(5#a%gI(VUVj+GlmT<l<Nz06I%Ka02qbVt$=~yXEB<P-`54ee9t)
zrEOSk^Y>{!mKEHiDUh9@lIUQ7w}tx@^%Xn`lwd|vFso`s(Sy3=DCyt3zS7tMrUr3T
zu*U$a17dBm0Jwsz14_djatlC%AxA>kNze|C7=6SG4ZraU!$Y_S_;~!<4e)@cjDH%O
zT7!H?K{yS?z^gSe&LAA%1D~bU!ChDyp*hu*bM37G!peh1b0L`Y={o2DAXA_Y62Rts
zQi(TyR3&9lkQgAh@hyh&!@Cyny62B-QfK)H9<A^{$Lw!Z8@LujFKUGa81BeeiPA{<
zslflM_qPe^Z1P3Ur@O^dQmAJ`R^3AFrC^ntGo^*yDFRNR1KZjU5h}nbWa?$_RFcR;
zS(H~s>Z|^@IakrCDNBc?*qz1>wvM$Z=ij6XtZBl>k{2g>MGWz{kB9HCq`AnE#6(Wh
zR1~JnR0nKMR7izB@(iX%D0uqX|C}60H*mC1jW|ZjTi!D>`L`!AuW=0>cA2@qYij`n
zQ~)GM2HK<^Q0e<vf%-|{0I!z-up9xL08lVp_CdzBJD|h+75(_?Os@z0o(?+umJ@U~
z+p9TcLKO^1xwSe;#bg8wnh99vq5x!)1>pEN!C+^D31QmD4)7lO{ecr?@=#=`&tuqh
zuFbqf#KAVP45Mt&Rts`mR&;Uy+Wts8xl`?ZgD9317pr|m=th~1y;qoBi-{N@?0^5w
z2^KgHun3w|zkWkIJ=sTXtUuD_LiH!-7#R2*S7w`?q+=V*C^^0)Z7u<MysT>3+Dy4g
z;onl$Y7){FOz5Z-*S7yVDeG@xwoS+cDItdvhSwmgn7J|a2!?-k{iLj7a%&o(j8xD2
zfax+LqqsY*&Lw7UyM*CiMXwYmHzTXa%{7FPi|?d_AvgjqT)YPMR<^oXS;Z!8F0r)?
za2*4<OMm1ZxIquQ5=K$AjA9XJNsKZMnaFLTL8v!P%3{~#a{4o*r9d;}n{1%1K(p}Q
z!;r6(I@T1%fv?ou|DOlLPvOeNJLT+S2SiF0$Z3@a!w%JFq6l;s+D-h@>}_;%qv^hq
z=wr(M4uyT}tGZ5nB_I3G2qD|2RM~zuxbksAAAe$rgR&u>p3kaa9<=_kQ#*^a6Wnuv
zpZ<Xnku{*WXW|O^htN?85T+a1@F8uFWUA_uFI>?^HXiDC>N@7X$s;TY71!pZ(^Q=-
zb&=j&X-FN2J@d15d|~kDxH=j@`c@m?JZ-RWG5p4Rf)&=&othP@r3F0&Lf(|EL%#NM
zP@t0y>W{(M$YxjN;v`ulu~{|YtphLD^y<%8x}{~62E&wt#F=^v!#Dh~`ByS5^lf~r
z%kvFyZgSV?U{e><Q)V=`8wu!E<kB;({I(W2Olv&(c-RF^Q?~4_Jo)bMNZxkYCRkFq
zQcI~jXI-J&hmU3~u)!WqOfiY`?wHfmSyR?&L+ue1<=PZPkJ?4>+zmyKEGDrD-E&AA
zTSfEMIa2kqMPhzIjutcU%jc~pJul-9UCp=SyniXVd5*@f*C*k!Yu#x`T>osyvvSqj
z+GAtG9*?aT0MQFQInEr#SFTSo=}FG0KCSpY0!1uL*p4bJV3(Mimg}Kig?;kHbY7I`
zm%sko0$0=o=;s}rM!ZY9{lq(tADKnxm@J!=MH5?{$L6?J-#qF?s_m73%(oLZ4fP|_
ze!3ngqaRcDC5Xr;)A+5!v8zNsoeuREao#@%9y7G?d!r8W{jZAaf?HGPm#rea%WY8q
zXEED8ttB*fq-Ymp{N#iGo}(9P3RQ8))rX(AnH2{mYDc_u1HwHuciw?{RBK}H>}$MZ
z9YnliLImmCf`7T>7)aB_pHAjcJ7LiIl;G`+#f|6-2qxY`_?OP_Vq>B>3u|hy|0Y7Q
z3=N^?Q|IvW%8M1dU|XM2m_*v&KN7wd>(Q;RzD8{F;*)N_S{GD0z{apasa5v5ci4F^
zS-@RVt%A1uDUBiKZ7`p_ELs7J{!`Yvut)pvzJ+^2CL6<AuTMOlZwHUDG5r^^S4xoK
z93{VcDA#0OtK+}lZPPze9A|14z@p!^(?7C%`(0>w^}AhC8Kt<+Y~lcFdGoZhYdddI
zMyJ@BKEJG*scsx`HhRpM>GLq+RIK_=WpJ(+VT0+e=TF}9JvM`G8`)pz=q<Y9Ztd6Y
z(s|Eq!TTwX9-+;u8@^DOxkn=Wzt?@P-~XQV6_6#=<VGHs@ozzA=I!M;*h&-TjmIwD
z)L4FlQ^v57dNhy9r1eZZa8ui`dKX>z@CUO=eC^T>c_qaeO@6Khf0*w!9bNO%e*x7g
z$+w+Zg$k=le2FQqek<Yv<4V-Q(K0bE5(|arB6U+r#1!q}#yID<79-aXw$6aeoeQE+
z2p#XqTeb9ZR+Dv_%rS@r#o^wa(3Dxjt&@{+iM{5}k=ym-Nu1kH+Zrl2EKBSW1(u>~
z4tS~d9pzJ%wL8V!w*i4R+W76P+j(bP94EMAszqC}S>j1Ie!V+b&Z_U4F4AcAkQF)d
z$PNEiL>>-Ayg9f#n@a^r(*oi~jp${|zRms4RjOFpk8-JF7<E|5QBUO?ak6ncu@9M-
z$t%is4<zovpNd{tgS{x=wKzEyq9x*=xN6#3dI=7&?u@B$c>x|c9$`P+8l@(-pC}6`
zE&X2fd&$|(U46Ga^3bk~KpMLPf<uNez&4`*F`?Lngb_lk8yIF@efDeMl)M2Wf+sH!
zrMEQNJLqb>e!S#fAwK5KFr6-d220Rj>aynbgBZx}x1YfFhyp;v>3txm7Xn<<l-2;i
z{mjcJ<G9SoL6<u`m_F3ShNlBRV#SX6MLJM|q@c=1Eke-@u7TxsT#U<87+T-0ekH6E
zri7C4S8Y6wR){`3Zc}#8sfYE8@z1UKE_<31LzkR7A4WySRX+^REx-6xZG`8GG9$PK
z{{nVBCMiYA)n_1(@I?0p&&e2}ed89>5m=1r&!LQ#?BHrVN{KI_WKb{Wtd58FOsrCU
zs-U!#9ExL+`}3lzPbe~B!KnI;QBftYtVjuyU<70JYX9qMs<(q60@pE|G4^oMKi5cF
zZBaip819sUWK)dAAD3!ZtRP)~z?AykvLfMh@H??TQ5#T}Y5s*SgY!7fgT6;Ln={Rn
zGN#AKF6cHIg+&($JR|#TsLpi>b@8Qo4TEFBEn6TM5O_BEV_qFaeCXJ)%LyP5`BgK*
z1$`I_0^QL;Q0;5Ldn`E0TRwNK6N_B@f%$30Wa;xzXjn0KNL}L=fc`VALjj>OtediE
zGEh>SXO(Aa5Qacr`ObAb+tk?ERO>gBf=XzOBSd>nF6ON<!&67Or8&&=5MyU$2X1`;
zLjF-#Ku7*7<~tTR(BOcK$kbOWr|=bRM-IgB0N_*{Xr=|t(#@7>{n!&Xg2vp)L2p`F
z-ttQm`dzR|z2C!yETf=BzBSRZ4MqE-PKB29efR?6R3=9Cd!AUb^h9q=CgLqyJ&e^S
z3+;|vQ57hAnKA~d1cRn@gQB-BVEjnLZBny_`(u6F6D1KY$U<n`qT$$>*~w+U<SaRf
z&}<=2+rnHaxE1<JH%{heO%A(#^O*iba|6%KUpANd?K6S!XZM{UL=|(^T1ME^()!O6
z)Xv#D>1wBzd2d{Da?~J+M2EUBoa1R1KRHWw<U8?+w_p`?U;~cCo*VBWW1<vHt4jZY
z4X1Qs#l7kmRZVKOLRR0Izu3xlq}hf1lv8ztWVOdOqny#=83xlVV{GQnd!O?DR1=7B
zD<+_WUXf-0wEYZCphWZ+%dFr$A%K7v3N%eHi69?8p_HOysNVdY`tV2!+H1j8TmV=0
zY~WIgekXj-d8z{edNT(~rzE1&IRs4<$l)2lm;IO(xO|OB%GlR$LuSsnDn?OyPZr9a
zkfSXbz^I2Gql(-hpm=;u)|fu6K~6P`6)VjmAk3lyB`Bth7e&rhXTWw&@tepbrmH2O
zOGbyh3khjNB6cAZwZgVXQ>C3+3FX%nLR(*28#V8Um6}I^FfQm#;d+rZ;V*}_J!-`h
zjuzVQZc~@>Br_`Uug=SSk3MuuzG8Qw396d6k2F-i_RB)7OdlB~#}`7ED2vx(mSeaL
zRAMrr=PlQ{I{yoYw-TDev@xf97Ht@4#MHd!Zz~jZyTd_r&K~?*52S11jug;AATaoC
zOE?gTJBj`PeMg({sr@{^3u)y2ttwbk>R;EC0bn{71l&iNtI_vCRJze{^%}qe_yAgS
z`87r%6_^9+1!^M{Z_B7%kXnMlP@sV2%iDwz;qY=D0IZJ+o#=IOF0N?>mfz0mgavRZ
zy*W|nTP5&8W8KDuJQh{P`?m9?l|c$_-VzbK9t()kqS1!S#~*!{2>%?OU59Eiury$F
zcLN--K##)QGTczD|JIkUvv!&tDGdy(R0wVMv6QX}zAuH?xR9Se5SxFLi$2R4l~J^Z
ztxRmW_;(bKK}jPP3CJTbl$^w+1!Lkpl~e8{AfG?p6+CywMCKT?;_NIp#Blmg&G6^0
zQe_p%Xsg`N+|n!g*iNRerSU3!mHlxqzu)#HcZU6oiqFI41oBIcRDO&;&uW2=2A7iZ
znt4^RdXXMqNE^cG$E-mVwNueLyyDfX8uYJnKYr2rX6_fH!@k2z8a(5#_>y=p^cmOL
z^v#0O0D}Muze>Zv9sl2nonQL-AI&X2EI%6WvN#R5q~-p{B`gnuyu1QHmsSI9RH#o2
z(v=k8CPl6hB9eseL^Iu)IHAh`no_F|fHi_&!5UyTc+!H+1r=yEw#%C6LBbo$KpUk3
z#vMMOu>xm2!7ULm``iGH)hh@LT_n6L3Bsrs{d?|6U^IXLN|YG5k0$WSGwL%UEXD(p
zyWJsxz!U>EpiltN+5iO|lmvjpWCA82`Eg+3kp%>$fM5YYG{eD>4;)?00kVDuKs7<B
z-z|j~&9t_~f&;l8ph2z&saFPq1q_69dJX1d^Xq(6#18Uxc!LN%3e-8R4zLxXf~^n>
z@RBrO)OuqulMg?EIG2_RCa(@PLZ5#Oz<ANoUSRkQCJ;@v)D-TPL~#$c=N@@J>nF@s
zEsT|jGT!?k$*0Vw#2X#Wj^c(R6@wXA>-->^J@3Lq-y4U8hn}BEfEahZ7Uob`xhXV}
z?vrL5v#VDNLLDjX(r2XX5Vc<s4B2%))M&pz1Q3WKs>CFr@;{0tws@Rmf40#`<vves
zQesf*%B49YuZL-g%oAPu-b-(1UHvCly=tg!3JYX!(dy6y3OWQ(&=X1MI*dU~CqDSB
zRtHI+Nu#7@Fsw7n>7kw6x&$&h$vDHhl4?TejH)K!PcGNWdH@s|5=cmpvb1Df0zF%Y
zrlkQtR!yq+@H9ZEm-+$w)C}Ckl&(YfA3_B(1ABe=zk;U>R+ji|OU(#IhQ3yidXF4r
zvieo}M%rwA<`>SvzuHp6gc&;*PH2MRV~|w_rXi~IO#*N|X@b}&2u%pDPF0^2aI^m)
z?q%Z;T}d<{h(K(o-yFhUkPAx*Jh)XIWJ}_I1FBa3A)KlLpH&5uI>aa?*njXeA<B&C
zItb13OQ8;XQ<z9>H=TS$g6#uC!nIlh3#G8DNLSGh-<`T0U%DCgaXmY>l+R~HZfQSU
zyx45MEcLG)x8vV=bDe`vja=uJ&kiYeM>{XA<M-Z9*-o;PH_|w1g_l0G<3SuVTOYT3
zKVZ8M|Itch8ZvjG&2V-oS!HbbV&om)NR{g`F1bZy%*$%O`T>?NHru|#>+-!_*T~%m
z0x1W_KdHgtG%9$Vr4W4wrKCptpYUjY>2;|ci|BKmP>i>v-9p!X(i&NixZn)xl)6kj
zU1QFjb>?uKVPqGbPR_D$VaAwBMhLU}>FdUhCfQMb75z~kF+BTa+$U&aDf%)2il{Pj
zrl}rP84WdcT&<eTP=YK#$zJwHwTfx!9dDILwcH$!93#qU*Zl;)xTBK&+dz~unxZ<t
z%-`3xpIvHAUjKR}vYN;Fv3yVt41aXR?&Fm7C#aai)W2OUsy{XtRe0BUG{nvaC&)cp
zvDHA%?I&L4hE1j4Hm7*><1-z3@b@s)Ug`+DgUZifIoJQ$r-Wj}Sdz9CZ;ZTB#eQ;M
zL?in=&!vIe*=AkC>TA8c^!0-A=6WB!<LrA-*Y$J@Vx#FlS{drlB7tcI1xwn3*7;NG
zoIRGU2ex$dZ;o$xXkqzv3E9w}J;(JcW{hA%<2DkeSZ*oPKZKMQ8UD#<6XHEBQc%va
zu)rhxeP1kEbI~4KLi$Ar#ybUN59$HO`V-+N6~>~EgxL|LkoBJ^`!}lTmVg@`ajG($
zs=v7Hqme}Ub-S+!@=$6U=~};*0hwn}#Iw|+@+QSa>x#YmEwGT43R1(|W7~aE>CIIB
z^4r}qGvd}5HZB{)-VMDYOunkfbgK{k>jla5o1mUH<4m1V27|8P`_OLL%wgFze0P22
zusdx=U+l@|SyuCKvhR)DrhvJ-ywr)eD&spP@vF*@7_fzgqTlH&NLeK=(>9>|o_-d-
zkmu`X#7EV|i}Ej)h_lC2BaV3B`QWF{@elVe+^mtmRAm01QC4{HAJ;CO1Al4Je%LB5
zx{B`xA?o*IA@Hb9x8PQl9P@Wh8l&tIyrRiGtd|YTw*~4tt`>DX>qJ_Xy2^1E@Rz1_
ztZvIVzRxDNg{L0t-!cYfQxCZCtV%fzQy}=?OtJLuVHYWPnSSaRy;pxfKfm3CWwqQb
zx|m}zR+@e%8|l`D)E>Y+|KFdA+Z`Rf%iA4oS!Zud_gG*m1WP5^@eD-kF!iXwE&(gp
z+dP}Vu0AX5nJqY{%Q5SY>;e$YX*2>-Zdj?7ucD10x$>ky2<uXt4p%*{vs_$+Hb<&&
zyi|`r<SQ1{3-Bot2hFm^bNa~*srIi_d_#ZaAFiLeYXG|nSkr5X_rf5?CcKW2Z*7j$
z)_is>+KFKK<sW|WtR?_)`eot~qP_eM>iOdZ?Bg#GKVQ6!(!iYY1cA+Bnu-+N%&@=v
z@~bJ9&>~%lfgG8rZv>siHGuVJ$0-!)C|lh8VfzNG)1zOE%@3SZ{`@ZyvOgRKQax!J
z|DEW~^4wkg(Yw{fBN5%<Q6Ub(@KE(>GPvOSA=@L_p)RU2%!<hbr`STGD@RlQBpuIA
zjlZRJhSXja#QCBMBZM>Oi-+eDKOwqw`TL(FAzMB5R#HYV^t76?3Ww-NZEMvZ$@;24
zy1t3~>VCYk*n~FQlYgT^T|NJK1WE<@UY+fY!pq?C*n_xSVvthq;*Yz3aVQqWq`IRe
zs!2(?v|Arr<`>1VXHK<=HeLM7J$GV)998265=b`|R+@9hnKSU>q0X0`Bt>}<qfu3+
z32PYMHN@6oLY{Phh&Dv9AC>_@0E9?DHsAw6;HJQEdrVNFK@Iq7<Q?GnH4kuZKgp7u
zc59GyT-5md_z$ot3sH1U95l*<ec2imU9dMtTubNttkorhVf^bAjKQ7vq)dz1WG3_r
zVNvCwP<b`2HbV*~!t(XAHags*2ypPEQ2j+^l4(z8Pnz_B!4P?R4E}J~-(J_4{Vk&s
z@uHpU&gBLRy`%XzjAv@E)1M+wjC6%QthSeRZM7}GuY>R65k@)-OFvQ!vK=ytE{y$n
z_~7#0EjTdgP=1K-BG&W+)ilcmpV4#@agAI^16zAQd|~uj{dM=)<9VWYl-ur4{#z_)
z<1hc3hh;VAQ~eBoBswQ=rinq$6%J=R(oS+n9Fi?35r!l%Q))gft8+;;w#4<JoVsVx
zlCDzc<z)ZdH}<xMhq#%J$NMH^EeYA4#h|^a29hSt0^M#1sM2HfM&2E!uMzcuK-YRz
z!B$?iy&c_ZSrkltx9+#MpJyVe+DR{gZm@&3AFu;*Hw5eLe}m{l10l2eGbmKqm#B>{
zLagpcgm?D#8PJb94z@ZWS^C8Hq)WqoLKrA{xtm3S2e6_4PB9iA)Ov$Vcb40K=M@-Q
z*1qx6sF?h7ereIS?IwO&uc_(xeOiNV$C9qhI;e#)PZ(BZ@9BWD*uy07<C1EzM+J<3
z-lg>8k<{4}BE!-R_5tZatro7j>=>%UWFCPN_SYr9G$Td9PCnoEkr{#hhmx|+(aHv*
z6T(h!GY1B2AI{EA;lEUg<hr-vdPiI#KM-qIKD=d|@yf>G&U*UH@(usBalx`(5s6?D
zG`dFIpDCTNT0&qFF_?&~_9aTc88ZeZ2Y8?!0Kg(dd&mEn9BgmJ<FFO<W3R~vLFWl&
zA+@MKpc=0d*AgqfT`qbGVm%$3kNg1jlJ#0`yqv5_|G1Gmu^8%|jq^VE>Uv*X?6EU1
z0uAyK38W(0FR$@O8#=ZHJ?wFD(ht=Zb%o#a;VIU!!H4)_Y#Fi)2t7=5`_j^H7-1A7
zAe14=s2)`Ea8;`kC<7>ZPFW=-+vuxIgs_tYa;yY$=+&hL=wSj(KvENiFJCghXkce1
z@-SrK^t}6&-&63n>`24@v{oB&O3>oo*fv{FT-~x$Cnw@O2i_~B_6nnN+GuuAmfF%U
zolZ6CXv(iixAeHP&P-qGMm~A<jQp?ql3$61z5}vzLr<-@DwNRjHr^&iv1P?1ec4kr
z-YvFO*;d^2c3^7L{A1LGnk6N6%M8NQ%?$IVR~jWcg){uZzd=IL1NCEyIRU<Pr<CNU
z=E-BNdawZ|`i^}!>t<a}#>*`FT$t@W_=X7BcW#A&_>K->Ji5I==>G*mJ@Q#VdJl~!
zB$sVvf8k~{PUr{_33U7_KvRQ3N&|z`2L$Lo;0|G$g2_6q0xsHMfPPc~Yl0<M4`zWd
zKLpl<Vo=yLEMA>cUWEU3PNgM7xV)-rZGLbwY|vWi#tm8@DpL<L4S9hhBx93}UQbrq
z`Ghm;&vEzz@8owh=Fj^F2Jy_X7~8KY>EJ;s0yang$_NZSSbN>2&Ma~<ULE6ZHUEg!
z(uAbDJhTl<c^OI-pR@wMWH~HKm7GluPS25;Xj<vdVZ?a1Df^eC6N(XM{QeraV{3o+
zIh~Yk4;HENWK5(>N34>6#|JTR6aZ@g;ex&OHrbm;3row2f6i4PB+1acrxrPSl&lk#
zUoq5|r*|L2s^|~KVa9!@uIT~BCK?!=@`dC!#@?hWUv)z#1m{+<a&G~Mwu0PTrKs`v
znMYdAnF+@uU3nj3BM0QF-hGW@`gu?LKbCo{jUt3kggCcyz`t|@lw%^<c1s=*UK{}Q
zn6IGiHOT{t)yT6CiZM{cD1ajN8h;g@++K03Hkl<0C0tj31QnswxBBRVcIg`6<EL>D
z;P><WQ1GT*rbw%H(xqylf#3veHR%^(>mZ+dnr6i!QpmhSuK*S$w!syQAWKTkA3P+@
zz333zNZH#+EDaXY_;jqQhf{olk>^JN<jiCBtn1J!|1>yhF_b=CdF9}|y^J_-1Shaf
zW?dy46_AMP?fxJd;$+{&n?WBJMlhuLT3iJcqiX3UW0j@S)S+AtD?7QEDG|EH*HQQo
z|BZilit&8+oBMPc=waoiz*zR`{<lmPTIB+J_z)<?py0ozx$%}Umwx?$9c5S+e!sY7
zLGn9@1XEl_Y+)<i&QjjibQ#+GU}k|qM<Xxuw4!@eY3NfE2K|nOnm>>`wUmr<i6BD8
z0C-IqUb8V}>9XIHwJG9c;X<NJ6F{n25<<-ag%dagp#+1$61@lXTjE)mEM_%;698C&
z#~i@XG=QVo07vftPDTVJ)al2EmLhm)9Z;V00Rb`~um`36f7m_6@y7=%pq|>k>aaNg
zb&v-L#n9mn|1t$dhC=SJU_&fdr%@@iRhT(vW*A6A&7i43xmE%1;4Z4jvA0W>@0cmB
zAk&u<V1FBC)uI7V1T?FB{K0?p^;lnv#J*NND-oYK`muH)5lMY^FEX&rV%wqq<Eq0c
zAdJaGxzm|TN~WD`%~+eHE)NovDlbXKm*jsq7^_@!_)q1<pxax$Dm|-YlH&YWtH%=o
zX{012g8|zkwSG<H^lKi;kqX${$i`{c)4K4<o?rABzw}`}qkO-|#18&szNQR~Nn(>X
zUexc|hP>6tdxD&}c%i{fo+i`7AH6G)XJGUb)+?73d)Q<=coFMAU<ASi^X>E*Lb2nu
z&)e2|4r;bvMZUTve64Nx6H^CIX&_|X3_(<EEe*_}e5-U|`!olM*<wL~1ljwFK?Xe8
zYQ#`|X4&maJyc)t_Q*bCYoQHMB#`n?MLj?*m;_j!@6-b>#4yq`k-7w}yk8=3Rtqxn
zhx^98(Z8;}CQ0!JT=trp%d-LGvdIAgp%%!pXy$PZkaNH?iwx$|8W{Kl%V(e0tSc+y
zK!hy5bJ&#LJ1UP@rZ`~wvK|h#N@B#^u!LC&w(8m=r)~|@pQg7jb}q|jDi|v(?U?~y
z(O89Q?$jg_AEhvIf}`Xh&3)m>DA_-W1(CG+lR@W*ihWWDhV%V^7nc_#niKp%F-iw=
z0_Jfk<tcS3t(vXTrKh}n=W3X^Z7ki>WP5lxX|5H2_~}Ov)!hq<6<7Q0`|~>Y-=#Y=
z3<TX=>d!m)j4}LOH@Db^?s(SWZ<lt8CofPqza=5Lw-s{lP!jW)1iLr!Q#b9M%R8{8
ztJxxd<rJ2OxWQg>Oj4eh3fl?)C&T?kOh7v?>8f1f`A8cJx;-T(_AoY&g6biRW^TYH
z$9s0?1NPjH04AS9s(>*`=cu&{YQCu{qB;G%>;4GlT5;!^LV+qJnWMs9@4kO;T>e$?
zuPDF0&{vQy3si5hAx(<*WsZR%8xXc6KsDkVx9s7J{)3v?hpG=pPGKjyYsYWtse4cz
z|ChcUsv-bO%H+2W9jyYIMgfsVA}LbrPpqQA_}_>k==7QDqd(AY6-7kW9U_+(Lay8l
zTI(^79jZ?2%x*9JJJN@#Jlf1*qgp#^l=|g3j^0!y;Iz#fF>!eQFe+#E{A8pH>+oE_
zq`k-tKhS1w5p}qb7ctOgh!Az?k@q9&=z}p*qLp{|j{No9m%KN7WDD=#Mt`3>g#n4P
z*NSDYIl6bq9s<@7Ngm>9K2{OlyZmaleXNkL<$&4M^N)Z0nNAl?{cqE)?IA_R(NDgm
zfwssS#*-q+&`FIxNeOvcnbW;KWOzXs#qp}{*?KnG=-qU?kzo9=@I7{gcub@C3vJ_9
zR{VpNO-#wWGbgu7qcUb?qX~YgQHBHh&rxoj|9)aqRO4iht;>C9?Q)T#A{WjGbH8Wq
z9&mh{=<hhK{PJbt8*4t|%96C&MOZl-72DTaRh^~~mbT`^;U~-y5Ug{uk4zoAt&2YK
zi)C!hGkt3(&8bL4USgX=IVLTWpN}Jx<C93f6c&lHu1}FWXF!akdeSV5y%bT?*FwHN
znStt<t<o6^`K8o*em4%9u@wTEF+JJASZ;CJ6rF?80p3>qsy*ab8QVlF_il<we5#aX
z=I`zc`;+)HGrX;AMw5IZfaL!2nAWhUeaK$x=YR>n4Ce-04jU0w${FqiZvAtp=s}qH
zkO{vA>&AE$Ze;whYmHTJ_7$#f;TWh9Wiy!XV-4of&$AlaWLkA)F`#dQk96~adm+)X
zYGFoA21b*Z<Vj^XbB;Z`lN_QMWr?IS&}mH4fA1!s!=q)a!mJDoDbVrBQ~u!${ORqd
z;_PLuY`=9xX*O+q3J_O6&WevDn5iQ#weHhch^VczZoIj#6mxQsXG718=&v`$wiJm!
zrq-}ssqvi-!>=uh-^}bc`!F*fmHPn8VtR9#id4U?%*}E7GM(*LiP=>ud9pG2$It2|
znTR<Y_m_a4>ct+!MTUSZr`}Fr2Ki62Ta6VwQb+t|lZO5l#BDnyl$-)aycJ5h?Tq^y
zZ!UEmIDM5Va^%d_1bjxKy>cr9Bkz|JvPlf*O@Xvr*I@5{-kX@<YkdU1EY*@WgLst7
z8i?~aa!FS$=@EjtFD^@eGGxtXKD!j++3$N$#kVzl^Ld^&t^9Ob6^+`9-Odou*!S&M
z&q^Uf_KW(&KfTAJzisy!?jeLh?W{FAFHoYD^?DKGFMs6@Q6J|r$?nYzN}<BEL)ytM
z9<l?9F||q^XFX-Qw`ZE@(6`~cjnhj0K_|u{&3;MrKuYlYRhBrxToS&cVtC8%-E;`!
zuEX)}rsV@=-y22w1P@UzpqY+DZJ>Y;H67n3$pWV^7fG#-*0v8&xW*tFXi(A%m>Tw~
zG`}ltrmMA-cUNjpO>W(2jm09kOO@0{!X4MrudL>!hMF-p?6H<Lg7=6Z8cFqUFhC1v
zr`vX3@@r=1hkd_M?37KgB<A4Qa6^&Zd$gfbj2x;hO-$e6z2sk6+vWjZ<q?v$C76pw
zM>sdP$)h&lB`Q=d+}r7?k^sX<?Ga2$=hKq=cvbUx568muXq|V+4nz2kdFEEy)Kif^
z{ER1R>8(9}jGcY2y8I~j!2qtQ0MAAVwQ1_rW>|H4s@+U1+o-#J??8aH0PjYLIB4Gu
zt0qdbtD>n%PqUk;o;;6~A?hoj#`kt`FE=Km_eNvDk^W0Wzb;{a+gt=YbN15wXm3xo
zCzQ%&y!hxjkD|ihj}sY1JK*@V#$r(`&1T7;(@eX1k{UkS?#EAyvr<f0=soQ`MVWXM
zelpz#djY>u?6A|#Z|+%at>lS*K(#?<MYAW!(pJKW@KSc`^n`Nw*}9k5V0h}~v!SxU
zV^8xfRa59TuX@Hsfn(yx<z{GzcwTGq%UxGNRe#>KyQ<iTU*ps_#r?%8rT%lD?u4nQ
z)465Vv&xy^$XYqi5~p>;QgmX=wA-%-fBH121!s8wms9opt<cp+zPfP}TlrKjkAP7g
z5iS=4d)?DN_gBhKO&SNn!f<Ijdq;7IL_h;pnH1y76}bz9=F*;dzZ6F!TZ~}SWTo<}
zM>s+*s|{V6yTNUuQ#N?EE^jq&=sGK9hhi}<K@ITQv&s-g<IaylsB;$^>re6tAi1%-
z)Vb+CoO=_2a^T+GJD>Cu$c8&PpA=`2Nh;qIMolgjr+v4Mbxj!ec}C2XVDzvdxvUgM
zk(A1rz{+-ZWPum9DjxSShglQuHmobhJ3`wRNP=0gfj*Bc<TI?4`~S`#%E6Ku8-v=t
zOM1g4guUuq(KQy3DkOmL5O;<nx(yS1=(}|qk-fA(fpWq<A0u$t&Br)npWdfFcENq%
zMr0~5wo$U<mU_h>S)IOPH*>*1>i++n>_eYA%GzX)xaB@TB{mgU2fXE(dKFa9Z**4|
z2H(hFSk)E=KX6EY&Ht!=G6X;KVDIZhh+cA#sHfcreZWigb(W>GDFS}RNv5LA@c;c(
z_SVYV@}4kTwsg_PpE{OQ@zj#H7iP@rw%n=d$85;6A6wFs^V{>P_~9<p@{R+8mlF3$
zHgey8ALOxU812rH7qFR?@H|bjZQ%{EDoBFG+b_faTBq2{hVlLMuEW)-=B;<*eZh0W
zpy6J%Lh9Lm0e+r)`kABhBr99xOj2;|XxJ96g@B0(jY*oI(8js8g13`M1aek7BOxYW
z0IZ^pWKwaTg8U)9aal{1Po8cf37@i3n8+7BY1X!f;JFy~{se%LH05AN?!VCbbf8^a
z2?nL3S4Mt-S<y3JB%%72k8m*V>XUCeV?8vBfIRsw%`f+$6USZF==RA>eoKnBu*{*~
zGcsc?^q2fxdmK1J@;#c#wTDKh1Pexy)AFHzZS}qKhaeMTp8`oOJMD)jlbv<~?@47J
zuhNJumhLh=The=P^#lY3zs#kia9<xJLq^!W8-w+BM<(7zdvf$>QdPOsEf0X0dH>{?
z&8w<(Ik^;Kqq6w|e?#rABI?y7d1T_{Zp&VpzFQvADy$juIC5G`GscPbbXh7^liM#Z
zzE{+n^+Hj$rz7FjMBO&>=xCVJOm?@YjoDg2CX_ZS#ASLBJR<B7@+ek$T;p=-Whanv
zM_BT={77foR+ZE!&&Q3>u<AlVC|4sTwWwE+!;7JRBX*JL&i0*bJ5m<CW3ww{lQ#d&
zB4fI<4fYs!eJFLxLeItU(K^kx^Vy+&v#WudS8$j8;L-Ztrt_K1c}u&VB&a-|JvO?<
z^MXt8#$+mf+BKJ0q7F@p+D{VsY|;2^bv8;SP=0)}k&YMygQ*0jC*%4^l;JNhluubH
zXxlQFVAXzR1pnl)58?<gMFq42f^DP*4vT#GQjBRA<4Pr`!K%>qbqOPMCoc^`ybfHc
zsU=@1)SL%Kcq&<D>;~r2)3#&e26oXivP1SE=f~|wk%Y)ZVl#e}_cg)u>}Z#cbCsx*
z7ldyGj;f5#8iN?~IZa0XVzp50@15s?<*y3jp-LAWtQ3;6iRrdF?h#$ROJvX6;fyZ)
zUCC?B`0j1pYunAKR6mX!dp6_=___qfIE;i!i2t4$)fJfaYgCl(#gEsu<h)q=-4-(+
zG&!n~C-#~X+X@_Ql;(eLxvGh*Prp8!nG{@hpYPL@e{enc|8UZc$Thy-eNnURq^}-2
zXovx#jm2oCBK4F%M8o#jZe}Z@n$acIsd1xZh|pB~nESxKPd$Nev}y5wIdx&($Z*mU
zqB^k)9qRgAO8$fum3lem7{a|h{MTDdVo3a?<|pw4BBOgV<ztj;qcX<;N^`fH_O*yR
z`RDTPpTu7@{)V!w1zt*pEeFC2<s=vi4R}f53b&_Yc}ZlfjShK9wAbcE+IOMsIS?AB
zor<{Ei`-E^M#V(y%mZ>R*Q6@qFTNAa0^k-|Cpm|KaW$6<F5rVkq!$X)V^mfAGELAV
zEOjd~hL=S7+sJ-!zpDI%0B}E-o6As-v%qf?0jPn#x}B4@d;Y`|<%bD_fTSfKWd)GL
z-qOsW0G^L8fs+zsJ<~pTp89N}w1g>d!ngG6Z^Y4VO9T(i#;x3_-8o_E#wH(E-++r%
zMC{2F0rg5Ik6as@L#n6vHus&}Fd#?-1WbTH3lP)*0)0SGZ4U^x0Kp(2hyw)FfFO)h
zrcMc*2;Ahp8|?=tGI{3Y{t6rLk@O9)34tOAia_6<UQcpc^rPy=Gs)oO#L>Fsp7U88
zn03PLI?2_Jpu*}d7*nkbDr8_DA`7gr^u+uHvv2p#6rCPoi80;F23uaRJ~Tglp$C2J
zV*W>N+Coq4=tY}vZYpRQWh05V0Ti5Lw$xvX8nyYy`5EI)(n-F?fO-#qJDEQG_FX+b
zeJjNYovXc@;O@@`q50~IXs_^yA#y60F8&vCdcw85IL~RyhCO?{-MdZB(F?&J1fgJ`
zE5lmiZ(iHReaB^d=QjR5ol<Dg6RKl`3*@LE2M4G{PZ4l{S@bjn2QUr&zyW@-MsXQ^
z$?*>LdniXK3Qt|oJ%bfUFmXe$=(*A<>v7_V4krDq3=?9n+j8G&IK040Dtn`qU)Km1
z4Y;)3f(AT>i!>JE(Ykvn5cD`Xo(|^i(z!68R&f~j_w2*ePu$MBBB6KhD#4bEx0<)H
z_Io#P$k6(0l<_wc=vvH6$GfkZSVp$oZ$sR@pgWKBazA+7o_i9J^NF;d_+Rxx7%tv)
z?MAtc=Qb|~NWuo>SFUqog?Z@zbNF|$aEY&*c*ThQIprb!xg5Hy#HEq>K$~&cJppk8
zfApwoIjPHxu4G2&K0xtv#JKkb!Dq>x@)h1Lf|3^h;006u8!!E&j`s({Kec+lUhF|3
zkxmj1Z`>inA4=V~Z{qDp*ejQAi$_@WLPwjYM)PPKoQmxFaGNyTcC_h1UC=WVC+#c^
zcrKE~@4xtn65}!C?|471ecH6+Z%Gwj+sh*6b2#TtW@HKykn~`SB=0{*-J%=H>07Gi
z=j$P?3|lzA|G~A1yMZ6i5)j=;IDCM^X~Lte#pY;)#U)rn5t-c|=5N!I%H*gc9<yRk
zR4y(7oWz_LECiK*P#J;^L$+uVpT{O)uU?o2&+B6waw^DeJ8VN<MriSO#*Lrq+p-@A
z+DvX!jaFDZA&le^X1+64QRBD0smjL@q@JS*7|S?}ls$@WT?Xa?e3_%@G<}Q6Lm?uz
zd8KfmX&moSI8+@YP&>qDk~we|JpDpw(y*PPyg>gXp@xyNxxwqNs$om#J519=7a~Jm
z1E+3=>TZUJOqzu6sD_c00q3-5kws*Uk(A=72A$NKSmF(XZCLdC21hE7XI?>I9y1_H
zW?vnBVjAB)Khw5?d((TF1YfAt$|z81ZWbvc_K@$@rZEtCAc#Fzjimc#t{NFMvcK8@
zW`SvA*#tc65vYu^0~?3EN4CK9EuF~0fF~!k%a@qODTU}pq$xCaT*O)JgkeJ8Z?K`V
z@po{gHOs1^=A5y|i^<mT48m9%KZ)k0L>gjbbDA5EV$8@d&4?$m!^zl$UBsfy!v>P?
zaFk$L`~D)tn2B7O&Ej`m(Zk6~sEu67iKJ9>ZzjnLeV^`s=UqjO2l|uk^&xeWSVIrX
zWqGUWljh0!Ca0L@{4<#6$(s{_aiY0l%^^m+>r|bnz`R8IQZhuVtILU+BxwbYmenOC
zkJX+>Tao*?spl)kd3(NbIJp6Q3Yp7<RrMcK(ok~Y$PG0S2@^Yknh%1X&R@=!f-~aT
zWy$B9WF}>uf19iK6B%d-R>jKjRs|-5Z=M6+eDONAf5F%mf^L#ys};YNQ}QS}<C>;s
ztfIm9^+*~ZFfQmPU?_Ps!zycLObUfwBg0DBB+2<pyBiaPU`4ew#6N|m@sqv=PM}6P
z+op)322Ro}{(>G|=)RME!HAf-6k$$WwpiS``d!nQm@{2B_D5&S?i~ugKc{!GOMT#*
z#}dJBF9!ywSioMb^Ppu9Jj-)GsHA|FCmHc<0a!Zr4E4`m(UOy^a_?C)rnIAtoMCD=
z_Xh(`%A~ieeNWXn8SA5loqWF$;{T)onWBP7s%w`$l`V&G$czkw{`S4shZ{JwWS>=I
zErI*~l^C}xlA=2#3Q0O?zqdkofE|{g2$mqv1rM(`IbkKbTsmbVb4%wYW4HpvuicAS
za#v)KVoh8mymU?eS^_-0M;I6?k2G`5=%-3a@oRS_4<pmWd&-A8@GDM0*FL0!$_r<0
zKHdS+cV05nif>D7qT41SV%w&9qCr~ExQHX#H;kde&-4ah2;YJsBrB=^zeDIDax0KR
zI`$IG055wEQ<KKNN$UQb%ysDbYPutR?LSmt%4#kEMy<L@VBXT6KZS{2dJ7hYU!}S=
z9Pk70I5{M)H-K%-#unJd-T~X#(g3?&m52<w$hEtJk7MOH1_|g|h?v$nP{~Mvq<BD7
z@&Ug9lENba*v3TCSz*j*-g7`L-7Sa7hGdYZ50Azn@g&Kr!G<*%EpzV2sMl4OkyS??
zhfrT&iilD5Fx>^(&g_!+Bh6?lcE;?IQ;ds$&5o@4OspR+7&1&6U=c*=KD1^NE?AR9
zF{L0dMHvt^JkmrLKU^xjR2r`zaIU`|Y2m!y9YT2_wuC9Q-JCW8R)(QicWu^YXAZ<Y
z3n?{iiEUc2sN5itCb4Iq<J&t~3VXx?V~VU=YvvLB2&7>;_F|uf1Te8?HXaNZIOkW|
z-o2FF7}eJi?kx=HSufZlVbo3`<ZCE3?J~0N9F!3mVa@IcrjE6478W8=EM02Y8GW%H
zW3njl*KwD&Goo^)oI@-V9jfXbhkUka@G`ZeeVE}*PlO?mjBvZ#-pW2O*6Sqj-fi*R
zbcMYfyZaQ=jNrDM&(~o1)BA_p-Qr8(_A?EG*79h{C;MBMZR8?@Upap5(eGMjSXGBw
z9h8(;M3j(6rl$SEQg(zEz0-ww@P6D02qo^wCq(+d@E`ZPJx5k-`lg~;Ib(M|Q4W1*
zaQoJ{d1oacu;FGHGi7TWY?ID58f4QBcFA_x<6XCB$2(<gum_8Xafvw<g#NuI9qM<O
z;$Nk*N`4|B^$d6-fS(zVsE`ZT@+Py5&{+GtaKC5KaP5c{xaF+4z=w>Dyc4(91aXnR
zwvOs(EMiA(R<l2I4$tm^bW~qtwC!*_<Mn$YW;-BLAa`O}FLr+>LbXR4_8ZQwTQ3D)
z*D23H#Onrf!|KUcWr(b6UA2LvOENcx(?(LY;5fVMRVRC$9a^`9Ogh&Yz!Y`Z_e!#W
z57uqM*CjFSbuoYcx^9bazu7a$23*LM1lX|}RD`%-B(AaZ-VBT~g9;<y)RphO7{C26
zHO|NHTe)InlHtbkp%T+RdGhLYHu@XcVE%MeA<@B(QCD#hi;+B&8WpyzK{ZOB)m}6D
zLOh=j(d4dt!jd}7=NnZ<OSLP^O2d8^Xt`gX%R+p^CdSWOAKFKnM23*%#1)?27ldi{
z=yx0t$=hOh9=*i*GZ}@l+BAr?d4=(2w=FQ?VWN$LeyH$~tI6wY#?H6odzOF$r$>f1
z-7cruG@WF1ZdDiLz$BZ7x(+S${AM$!c)YzhAw{+gbf;Ox#9!$%+RGxd)!R_r#>fKc
z!YDHvVf6t-@|oUwfo0S)g5;GYnSGif^_v<Z(6L6trnplUnOqn|CguyQurmScrN}*+
z_*J49KDcbMc}6vYNJpeIQ4e)<GFSO=lZqY!Upv;k3N9asb4yHbE@Ij@y^nLIiGJH6
z9uNnt;tddJP{w~!L_0#xO)p6ax1<nIr;JZ8+Ym?ji7Rln8Fw{$Fi@X;qfwRCVHwS<
z5m|X=-<EG=*?BM^k9tyTgr7LOk8;I3$?rZX!CNmyFEAd-DqFoKOTITiTX|Un_sbb4
zMcZCtJXmzcXF*K-Q{vjXwRgw7v+V+Hk@W)sFWWmOUH9Md-Yo9iCGP2Y`0KegQ(D|h
zJB$Z6Ri_Ejt>yT95!-74cI}F_3~v9JmpBWWAG}I#QIRnx{g6mw*T)WUQqltRwz$6A
ziS&Es0!%%2`So8Xqlvoy@$u!~PpKO@vaOOU+@wY}EC(f%IKou25)n4UDKP}pvIvw0
z5wSJ`;v;fR;W#MshNa&A#!OVF#@`{k&C1L=Y_N&T7JiL>-gf@p`*zLwjI=@9^NkHQ
z%F5Atr}Q&TDaWO&<?h+c-;L7O!HEO|W{WJajOX6M;V3;%WRU5hqyBT`BL5Ut49=!0
z$0g-9BW|}UayJjdt2*#+e+qqgX5L<K80Mnm9G9wD4pWLu!QD^ckqZKw^aHb>V_Z|7
zqifq2@3=<3cP|4Ih`0c`qh!K~0C~aQc~C*#P-s>%<4K4GES*pl<;^0ic`MUTd_j%F
zwciiuAChv(2Qa76EuTZY<iw)y+)=Vws<02*dWW#9AHTVL+;+~cMHo+>6V!0&`D3=d
zinGLlwe1pc;E~9MjGg4>fu|Vfw^WeN=z*WqsJPOi$j=9~l%#b1FVEi%&c7SXZASAG
z3$Uh#9TR;(wf&P~6yHr^&o_kTBAbp-6^PmFrbq9d<1|iw#CWgvSp}>w_Xy&g2BF7=
zlEu$0ZRyc9`ztt%8dp#O2XMoN0SC~-(g6oC@{OqGBjFO3HlojC4&>*=+X1G^Hz@>h
z@3%L1bEw53lk}rMUkJ<*c7b=c!pd73;d=;Va>wU7hK=JHcYXVQh4ukG>*|+OMVWG!
zSE4CWg3}qAy=DsoRfa9yuMS&kBHZ=_SI@`K>t|=pL4AEEm_!*@a1yIr@R4EVEt}YI
z&e&~usyyX}qj`3YieojGM)>meHu^T9w*1RY{+@33sZ}uRD9}7z-c1%fzg~`<HtL^K
z<%~iHPVRYxb>rE@clCOXeJ2D2^I4jHe?M?$9B?|*=uQ0TIR1Ghf6XWv%PrU{I^njd
zU;5ZII^hvJwB^sNn9lkE8PnYg{rP)CI(b}iZ1O8Vfn*saR+%#=YWZk}a|~T<x4|d+
z^SBp-=zMUklBc%O!He6S?aAg{Bjd6X3l*vM9~?fO-lo`{AuPAH@=*R4FD$ob@5=s*
z@7kMpZH(uSFLz|%QV}Ji(1i7a_1wj=^<41n|Eb?Lxz4n|zqDo2u_z10Mm0qH{MFg4
zz$h?p5Q}GeR!punLrm_8>A&?Wr)Z@YuF#hGhS^aZaqM>doB5T}n|a(uDyZ*9gQyc?
zS<gJQug^XlMcIv{8>`>@MA04gLWXN{n~cQfDI0)0Xw+{h70`0n+P<Uop0b~3GW3^2
ze2#euwQN*0LW15hyVgwP<alGNx7+09v;U#r{X>G;0Y0aI<`?9ID-jp=@4K8jk)o43
zC#V6Tf`KQqLXP5^pgde>HdjUxH)WUZO@EEi38(y@1920+v>+h4=)Z63VQ{F3S%|im
zJ*Pb`OGl`jQ4Sh8N=z(aGPAN9^6j1Q#Vf|vge|@<ZF8@ziRwM!G$=*HI~ZbFzY}cn
zel(z*Nl?=}cWQ4>U@-E|VKOV>z%=;o@#3q9-*dcVT$_&2dTafMygE<3d~u>XGhdvE
zl};3&^+0kwbl6mub+Dw#-Q;RLlKOnswe<sp=05zt1Ng+=lvbU%SidXiLoq5s&UEGy
zrZ*nyx^J$VtOmAqW~`34G&yhXcjgukyswf^$(5efCu<UH%|jYlLYCN(Cnwo^lk=)>
zx>?$C&BJWX@eE}rd)<=*cJHu3?W1IJ@7GE8fQd`VZsU=G-k8*|N)yfD_J_B;+wHDU
zBPe2b$gI8fj@_3Uh))+<V?ryG3oBsL)-k))GGgM~`>*WJsia-i&M{5NH>sR(h@aPF
zw8B13nesN~!h5f)%;Hw-ofu7~S|kN{H30(k1+v0JLbc;nDJg|RJxNY+3XthE!It{L
zV4%H?=MU|+6UP0*{n%xa#JTogtuOzgxvp<KdGe}w%FixBe&C3sPZmWjO@T+SF}a28
z_xe-gZdA|dSv%mxn{kXt(OeJ2TW8`|LAU%>Ey@6DQJT^1<A9(}$8N%5Y(P2ZTs~4p
z=poyy2I%lA8rK1@c5^`cIMW=*t8ih73xo@&SK;F7Rk-*FgbQa?(rjH=x|(If%g1nv
z|3lQb$20xK|GTeTllyhugvdxjE-RAys3f@*wne2<?qS&GlH5tEDVHUpB9~My4O?y%
zxkL!r7>2p*Vm7nOZ+*Xy$M5^!_TJgf`<$Kge7#=J=j;7C`4xm>o9ml^PgA8vFF?ZR
zfg#!F(DF*OCFS}k%Tk8Ykf!$~T`cFfc+Q@NT;0&iz_U2TSX|{sLfM70VmX82HLn5M
z9xl5>ALvp&?T7|PSj#m#j@<U93-l6BKdT9O+THt|?*_bgrU(0C>!Q8mrux?yJc0WD
zA+Pv*wB+Vtgzw($UGBH`I(~lIWwiaC9g_CurtU8Zp>*Y^+qy-7srCka`&N<HbmQX@
zqYXXTz2-Wyp|TNKQJ0I?$%5#um&+a6pszJ8@#e}N49e5*cb{NdbaYQdxjLR+5b;xO
zDq3-s(|DdDqyFJ>9dInd@Ijy1L5)8$vVTrL3)j{7Gba4-lgwkICw;+^*)OiU{<^WZ
z;hOGI-$t0KrE19~mKmzd><8xeLE!vA?rD!BwTm?u|HFvJj;21c{%_#bjOg`Ti|f}f
z0De=r2bF!8Qtt)0=fCJ0?pH6#M;)Etqc^n?|1fvuckJ$mH8;<CyUEmC)s2X0de`Fn
z?81ksJU!_fDYd;}U2`&@`aW*sl{X7H=Tax0w}&8#z<-{3Q$Y$wjWHp6KVRZp+5IDM
zYIWA9|08-rYcjJhr$tC6m?C=QhF6g-#^DluZy#nx`63Xxr|3H5wa2b0*PkA6P5OAI
zzQSqWwhwP5yYxQ8{Jqwn*OAZw#9>QHT<Ke6g=XrFtdP_jvd>X3t_x|8>!S?w?nZ|B
z!A3^I=e7&y(Tw3=ejZT^udh7YbNX3UJQyBZ7yRbnsGw3cNacj3L(j$3_NrK_yO5M<
zJN|I$W4x1ghdFP79Q2ss*k<}w;r8bil}E>>vd>psM7yG?j`p!LsqvZ*fE@eH<IUNv
z7lH$7^S8$-bI1Pg?d14tg6QRQABI}$^E*iU<0``B^Uktp*ql<*v*E78j?N2q?h&@K
z#}6IS$i04jbHq<kZQT6@SuhTxeew8sAb(>!K%#gjB0KeU+e$%b)#4fUkBf*K*5&(e
zxdmhezEuDGC|G5c|G9hbJv*=c)#N)8(5sETu_M30%VU{JVX^Sfmpy{Yy&AM<eP_2Q
zDm^Md^824x+LO`epKcr$Pd}~UZu{d>2>V*EVC$z=bWh6#<}$wJ<}>f;4@%gC!0rDw
zcP;Tvzv?l{t$q1#8xqJJ*DWZfG3{&DrrhNM^eJbyW}bQV<#txTUx$2mc=YB4Ee-PX
zlIw?E*f7=(PSxXwL3%P_k8}?G@;)2+JB|77b;$wG=_Z>|m`Am*QTnGn+aeI0*`*gp
zef9su`p)L8-0;wSG)nm*1EHyKpOk>gBV1ltW+@0$k(SRcJhNQWO?0tn^fh|!^Br*f
z>0FZHlBB1LreVm0&Js&l#_i#?^rI7v1JB>xDH~Dv?K>-f)I;UXCu^6NGR6a$qi@bM
zbgK954zj3htoWOE^WDDrtABthI34?1T0OciH4;6KZg3jf(+YlEVVQnMQ@r~2Tm7?|
z(@k*?$R7LWu72O~7IxGc<ovzu#y>_)2&<60v0LXiwJOka*HIzA@><8r_irZ%DT9;w
zIV-6Q_2a*r76o4;QQZfI*>(<Az^75Zv@kd_@aw}A!t=Vs=9GBf7msrL4$p~40KWC;
zT`|$@aNSe9p?swE<w3Ah)59(Jmvk5ya9`)K7z5DZ)T(?0(){?!Whh3m#Sg;LTZ+;n
z{XP0zPVSGDZtYyilZ(5yn0H29pT%31fT_>Sb($)qkvXPESVs)~v^o?>cKJ_gdY4b8
zden2*_Vl$VpS3^i)ZZvo53{w;=q}jmem4IMv0^P5`&a5+MtL~Kw#UPA^kaT_jrI4Z
zSFNQ{sxc*bYWhirKh;D3t05l`iB;qN)(A4%@FkxI?m)SB?@1}4V3*>)3XT>?<cN?>
z>2!UrB~H51iGGBa)!j@yM5UOA^KP(ZidD8m0{%A8IauA=0hv#X1M1-y0%on7`DTT&
zzvLv62hy1_OZVJeTb{#+*7dp|rMt^#8#N<~l_<0iUn@!?ZBCN^UG}-Rd^S31R8Zud
zi-z7?1}6!$x}h4iM$3#?tUYMtLNg<cl5~1Zvbk*>9vAydGBHQS-wvWVF_Ld0)pt|a
zMX<07HJmXd_vry)$3Ml*uh>Cu{`**Gs%x3{VWI-LYhl&GRHo0fkL)dM(JFfLLo62i
z?`!voCZ4%y*1hFI=*al)c-fUmw;FwvtLf6?ZnVjFrt6;(u$&(>bdS|3MTIS>q!K8d
zM?Lbj0x2D7j)N1$oNVWyk`H}%Z_muj6>>feB4mT58VzRm3W819kH-~2&_5&V$!mMq
zG6k>GQn_k)oQppg%f04~l56o90Y}1BV(DrCKbTy~G@+vHVB3jOi*b!}PvYy7{s?Rf
zq$-Ry5W=~!%vd_2%=tI8Y=FDBFE*?Gtw54L{F3sa8`m4oTR+BBd--Ljl;fCNX}iBW
zO6@pG)w#|AL;hfg0J8xJj`$&IyRFK^+g?X&+V+hJn}7i=V|YDcxbW@;JI*!l+wAC-
zF65jaM93rM)-HBB@;hL3m3kl~YH|dayk-@nihcRRl`Rm<uSw%k!@DZ%6}XZ(|CjEi
z`luVGv<%@mZ`@rD!a)JD5<t(z?*u7X(ful%J%yZm)OCsI<Zb0xdSD_Rb!UZL>5KYS
z!Iy}v#50I`!tUE$7+aOX?|a=_<`D-JRK+q6ZOnlHEjUeS#Mwg5TJoufNkc>!b^aus
zLzyA$K+3OqE=DUnW(20#2iJW=5?|oMc|a;gbRc<5h4b2R&e!Ht4N8S!B`z#0C$5%o
zJ7cR&95q~}S(uocbPq?YqH|n`1O;6YloU#`L7BO~_V$Y8!Nf8=SY@NVW~htpI?3`H
z8KBn_PSk;{xX?Sf=;#{q1<0|l0z<ZBjEZcxpxb=$q2pC~N0v;1B)@+-)nJ(-=-m}?
zau8@NrV0>OUcJ|9_~F~Vyl3oEo1G8|#;g}W4%ZJeAem4t>%bh1w~HXfmOsLixu|a^
z{cW%ZPFkuKy}Y&lB6s!hw#%Fki~|klU0}Pf->OD<1(>SutPvZ=udn@>v`LBzP8N;s
zih_sz9WIbKm>lvqp91t)R5RS@6^u41P01k@ZYHJTucvNmy=BPvf<8+AJ#V_B1(s66
zA8Wb;+oN7S2u&6oEEsbQ5K-SDwf&vazC%zYO+TW@KMYfiQQ8<Nt3Rs?N4#TM6ztUX
z+)#TMRU!^Z1|@zc9tb^drFKq|aIuq7^olnm-P*{HxgrS;tZ=}5M_#~oT3N00en-DV
z>QLS4f~Kb?QIh<lp(-&~OTj;p{cus^7p~VG>kO@o2<?+?nV$%v+KaE-Cyd)}3Af&U
z$5VXKwnqoTrASJSuYX$C5CVDr)g|xvTL<6>$UrcnhBS9$A~c(UyBs<k+RXQ>?yxtN
z!HP-|2}duB1SRJt?}b^Z%WX<1;nTO~DXZ`QA%-;RYWH!;IVRlBgC|Q>j&Tt*>NYn5
zWx(WfLKN`X#Ulw^z_K@!nY8uWNg6iEu1WPUu_n1Gw==qgJs=vlb{hp;MM=~IlE^m>
zW}=%4Xg<_9Du61Y6=;^#a3BEQt&iIks$L+^*+2aO2JgO_6*cx}4GWg3@v3$#`AXmN
z3y9z+jmK=p+(y-%M_3#a9EJ8MZ<(pA?g~tbP+qNyBqa3j(-g-?hN`jcVk*+Gh&%fE
zoYa13ss7)S)T0G{-qqyGBd&C_{&r<1^r1i{)YfX}x#odQ$}IFXPeT4sP1sTI^78J4
z$8^r$i|hHX+Lm;>xaG#8QisNOuSh&p?rlX(m((&{>NuSuDJ2tUaq;&;_qi6$+FnoS
z2kZijYiY9*u)No|P)Y?~CrI;Fk(HV0JcaF4-q@+u&m%c%2;<0|FsPH@DekJVE+j)`
z0D*+x7W*4;uHB_H<R5T8ntioa=Rm+$*gwc-)uCypCq{<bqMn^Vo>1#k|2bj!>RV&O
zt@V8|8panLs!{HW3QGnhg%A!Yj2;7rKg!OJ{MbLesR#NwG%b9Pr@+IZW<3>oFwq=$
zBO@k%2o$E-lvRJrFx#Z=ASr;T1ame$g^%f0Q|~cdJEWH@5btbE49oPlZ|&+J5oy<B
z(w%<`2fKy6*t!#@S<pY>_KEzyt&tD6gB+RBUjv~0ZFk;Gmi#Z%*z4+an+($5t`2Oa
z>ARyMkziVK9V<C4p7}J7MZho{ALTXnPLjLQk!gDPBQO!~!g_0U*>1Cg2|WA^@fOvh
zi+zcx-!BRUxZ^)%72;(jqm!Q>ZTqmVH_@aHc?BMyNL2!gPbT`|46|Htk)h@!2-P&^
zd3}s^o(g^f))P*TVSU(y+hFY=4n%!>xlK_(LX|ogV2<CPg~k=azKi6^Y4{`-<B+2C
z7*PHHw(Q3Zz{RWSFV8>@;$3aKy+2`#e&X7)@-<qS&PAdXiB-z9l2czgKdYR|@uJ=j
zwILav4&f;d46`o|K;6JvNR`?o_@O(INfsJ~UK{Tbch+n6mB2oh`Nx^co|AyWimKC`
ze^0whBc!>9`T+zX+UR7Z#^1$E_`Dko#Jh5JY{g5&%c$T#dPzL|flxm^__o)@cKKob
zWOwWcN`mj1!H0iOz_3-=a!p$C<wr*4gzGOM!l-wWkjhCZuvc7Je~rAtHaf&1>&YQ!
zeTZ>H%{pVg^GP*tEm?_FkG#fqdFH@nRVE&$4`SAqO&9;5^WkS7VytwFq%Qz!-4Sa2
zT7x?uHqWgNIJJhnON&+Wo^;_Qzlpv)1O|aRT#Kao>95EwH?pc!rX)Ydp1H10x@9Uk
zg>O>m6ALj{eRJrDdY{NZY-yS1f?PG^yge{JK3+TCc3T}@bV@(7qjV9|81i;N`lle8
zm`k)qTTP2Nq2>n_>ctjg&(y4UF6>nbyJ0x%BlB14bK9Sc&4xcM!<?IkCcNh7W6@T*
z-!u682G>%F&c?L{uE!IK@wd9-P3XULLFu>j)59dJ9-3*K3-A>U7D3&>R;Qs^J(Hvx
zy4*}})EDJg=lkG9p&^BZ)it00EM}8vckcsGi0tMj?@fTN7HloUWyb7bWC-mrb9e5$
zR-`m9kgC)!+0GJ<7OF9DXb~#D)oX<gQ!3c0`o@qhIw<-1`U<W<_V}IK)sz(BbW)#R
zrEd{QBodJXPv{yT9e6mROxoeOF)&GH!b`V6($B;wzjyU$y<e;aM0P@8{&LMo=|X`1
z#C^kwc8R~AG-o+dhq{%%jTVoNEs<gsYdzJ-W{zehTZ`m<G0&MU@FP2mq$>{1Zhd!&
z!<OSQ{Y|>uA~W$me_K(AxY3yEpQg`P)HE<87Y&>dq%+C2x4`O1e*o36PRr`Y!JY(n
zT-UMY-RA)2>L|CYN(HW?G80ZyZEs{FY5xZNR2ngM`~_H6Tkhak9wmU78*uLOqDKqa
z8ytZ@oTa7?r;X}@`dg4<Mu`k;sA7}!l*pP`Zp_T>Zhz*{XA&-nCZ+{uV&^W`0ZF~E
zBUX(iAq+S1Y9Fr}lmyaWt1j6=pv~=^AsVD04;Dt-w_~aIXBlhf*Y6=(-|N2*Fze!S
zCiu6Vu(ly-WPC3XbH9tb^E#aRVW0h%RoYj^lX1zFU~^O@{JR%)lJ%)|hbLwo(+pXz
z>~NhD3-<VF$we~FYT0Gi@N)B<i9yNyHqjcbZ_J-}m%p4;lRs^!E;D^^&o5vYAR#@g
zZPR&`u^FSW<L|9s`{gVB<IA;VrZ0~~7%u1DV5Udllch_fpm+9=WkEdJCOqyP=W>W)
zl{2X#OzJ}v|NUmn*%Xu{>CWjN`d6dXCe@y}8WMv~3r=hHCZE^(PTK0fiNaF3YXh^h
z^LCx}Dz@^Fi=C{#Gub>`Y1T6u_9ac-`{tAG<1m}h15GSMcI7m>vGSdzQar%c^gjrO
z>xF++W)U27rAA*6MOCBD)Q2N($LrmTsFNHYpnH6}YOR1uzn-lptZ*65JH~cR48(=k
z{$RQg1-qxDA(s}Nv&Ncs`AV#5gT|tZUxw|lQueh!SyRh@(VYVe3>^sy=jpJk&W*5l
zjU!(9wgdTE#KU!?2b%c^HY*97fHK;sJwMvCJ6^%|=#`q>;#XnX>_bga8NP(bcip-$
zSu6NEUufiu?$fXU(`zq$QDXe0VGC8ULRT~eoGMUfYkB)W^aTU?*~ChsVG5FXF1rCQ
zd}`Tzp0n9-bW<E7uGasUV$?r6t{N|^eZ;4xT^eQ0^%w=<a}2|I(Nw4yDA{A-8`FqL
z*ohRMzPQ-a_q$0uUTMn4t0uRgGEAAhuPMC57m8}@UV|A}1-JQP*6(M3!X1a@j?Ht*
zr~*08;lc4+iN5W+d`F@y44)FtlVy)30TX+aIf0ifE=W}-X}QmHJTs3TOmIzZQ2Wk&
zO?#dD6R!$u?+WL^*)BxTz%z--w!LE^$pYmVDdWadHBd1Dn&?S=>;U$E+nqw(CoH<s
z+(tQ)?T9NS(r<(#?sFw4|IO`_dC=sYd3mnKucP)7QLgzERtHKPD>)kLUV{SiTZsxp
zf;8f9<NRIzXJ7Cx{$8RBQ6i<S*LhzE!Z@&*N#}S_<&do>)!MAgcSYJ&o6TL@V*C{u
z(GuNsZXG&5$AJ$jf^XXX_3m%SJvg`zz9qS;{Lo&j#s980Plfb0A@-BHmgxnNVO&=C
zY?Im%T`9{_LK*RFM%i22k~N_xa6@c3(A4A<DkPy-d8)hs=z(}z!r{qBUV<dzv!W=B
zBfG=SdHggtBHdfAf)&3=z{3tT$=J%?Of)L|J}Gm3HD!Bz`ifJVt%AT5$Sl{YTFgbe
z9b@{9HyPyY=ySGZ8yAciv$k3Y9F-U8OephJ<$do8Zvf<(nH|l%TX@ot<u2#L@jJtI
zsY{<uvRib?C=99|^qrn|mG%=)Y187GLB<ti@214y9(~qSn*1>ta@(CC*%AzU^OGa4
zNS1+}cFBHzcwQJx${tK^z#Z85qJA!@%&avV+v;_9IncopP!!T&-_;C=l)7y!dGp#7
zKX<m}ebE^H3Cy}37HR*G8|xde-7`-++^7KrP0!AEjj_$~MlgF|PlP(BjA%A04+=C3
z?)UlG6{ZBdqeuV!c^|yFYr%r)mNz{S1T_92Q}9MzVSS*mWVHFxqb7w0<?Xyk5Byb_
z`Mcb(sbIaeOxZ3zyQ_jP7Kz4J9izAxmEmtyJMJrx*OhXa$y`Xr^&JZ@xx0VOrvF%$
zVeWSl1!is!iNUh82Eg|~653L26}P~ed~egl-=wZdF5`%<FsfSFcw<$IeH1L;B;qT2
z&|kOWlPbg5eMlgT^}Jrjsl@-hiO66m7d!|%$iU)}aIMufvHYa@qElpMKsXZb?Hgtv
zQYRd)?eumw8S@#v6C%oZyXMT^a-*tO^<*|~k>`&r&_F*1oV(!jDUms<nvCSvxVwFh
z@E@Sql8YOtv5GeJNIm?odn>;cP850gq`~uFse_j8Br@^OU`IJR3I{*H$**hA^Uf?n
zBznfH394aHQp4kj1oX+l>>Iw~Ql$jgGH^g68L#$-;e5PFwD0-=97{!}zdamZC8$8h
z2<;CTG!lHgNpZ@B(cAsA_u67kQV+fzCwt5lJBN?(KyLcJ_ct_6n1{df=e2$cX>6Un
zRjEDxHoGY#X0KoCvsrtja(P5k(k!<6x;sIn<si(wkZH5O|CH%2ifXlYyFnobKPV^e
ze29I7ecmW<BslHo=3BcE=2^>~eHHgT76Tm{)gwQtkQ3E@y?+^h%V?COr${-qB4;nt
zw&Ph)s%^XjNhI_?z=~rX$~n6XzXbbFKl{8*KnZTeB#m*l$lY(=nD*q`T2`&;g{2Bw
zgy~zG1t&Zr%hGX<@kx{s#s~|u=X}^YBRSmKH_&b|eJiUWfQ33XjW(U0do<P4PJ-%!
zL2do1GSx|8mY!J{HFPfHx%|x}RAPUye|vFDI%Ay@&tiqOY1LV+c6Z1C8yjhYNfPao
z;3(B}0+sQpUDuWkVxj5aJE$W;g2TW`Om-{-Cut0U^cyS~ISsYdQhLYso-}jC#!Nat
zu>=WyoNYim^kNBv(N^X!7)God4EVmeuh%RG#_g2JO^n3&cEqI6O6B)`Ir7l-p}Bkj
zc}1t&R>x`c`bHF?ZRbJ<;>)f84bU755t1doot&?M{&W3UK&#0<@zy#eb+HRKi{?{;
zguZyb8r>H4nC9HA-;z<jUC~J1b3B^<aNz=4?X&#T^~Q>EXs0v&^XeSOiVgUv#ISBi
z_H}K+6VHSy7IcmpiuXx?0~zx{+lH%it2BqOYLN!hoV#5yXBs~jTdf(V@GTcjF4>M(
zJ};i*a94^LQPX-+iexj%t!MHr-qVV=A(i#<q}R=jeD63cHKN&WcDa1qva?fve)a8g
z)kfLiI(u^#8)&$IGKuV+$ZWZrf|UDGd%b~CfIb%`m|<m~Ua`#y;7UwMM){Kon%&YF
z5hw2JYBP2N+c7jYwu|&$klsWv5ntjTsc7&OmftMf^H*V5nbAH_!8eXXD-TF^7Vc>e
zasRUP#CgS@9E2LN56M+SRlD4N1O`#*R&hC{QRd34adFc#dXo!`ev@P1v#vh|ERd+z
z5jks^VP*1_8$#bBJbyKi@7sl`Wk>8n>CO&VaQXe2?+|wed=UJiE=(qyp@`zoygst9
ztr&VZ4mtC><UC?W_sJ}gG7TZ$NL1|x;r)o#-9{N(nxX=iYTnV5X~hNox&!JWo?<}{
zzEh$Tz*+Tx0+CJ65vYXVl4)@s+ES&3DfDI_XBu~MwYi#o5}Bza?WNK%aDi%Bm`+ob
z8b`dcE2v1pM2a9mkOXI;dz^Vv33#_}`c(6cLXG{k0_kPNp5*+m^PJmMVfo2~+r;fG
zA%aN`3%NR>b>CZ1c`DRXjIMm{!YNzgrBG{j05sbfM<QOK?v4@1%JBbs>4LkMUQJfD
zS2DH`hr~!Caf$nJe8kb5wK8wu;&kS&`!XlU=9)p^{k5*l&q-$sdJJ3VVt?s~>C`Xk
zd)Cw{r6Xk5zGAn*hsP|FYmA105(4U_e|Hs<jB@_Lw5U@M!w=DB+emuiEjqAx*Evgd
zT6On$;5_r~^vQ|TZ<#|G-0^=bD)`kYzZVXIhVynyHAyCmNh+L%W6bj2Nym{CgN??!
z%SQR~eQDkHl0aO`7i9``*aZPOqxQ>j<c8sf>$s2&txtW^>$$l9AEWpgFl@NMvKCT`
zhgbJ57fJJ!|IwlZ#}P?`jgUVhXgqrw;4;%Ts9Yq2ls$&@yzWjltLtr;wf@?xzF}^6
zb=n?OD<oLg?svt+q<1&>d>`oQE1`2#!U%gj#e)pj^bh&jq?B+SamG`YYe_ZJn#r-f
z6msS;mk--nce%(HC<3n6^!6#O-63#<iFc>s7cw~SiTY6@n9GZphk_teNk-jnUxi?a
z#)K~?V{_gB>}91A-{W_M+Op-FG^ZqWMNwY1n2SYmxKpt;E{`Z@qj%V5M{p}<Z9yWa
zy>(XX1P4qua{ulw#73Dv>QV54xZtyHw(Yhlw&$euKSVr0mkef8-CS2o#0HWq4FpTg
zZZz!kw1{*o<@j36H!>$c8zvy1YLVK5!NI!!fvE}1cN6;!q|u|GyoA0U5?^c3Ptv2d
zi?=D%cr2nGU}7Y=9;Kj!t-HTniv}Wyc7t0*@%Bm>);;7Qf5<}OZ5RiZU6u-K!&4l?
zb6GP;dQ1%MSc%{`G9&OfJLxBX-H_uW5&ZcNczw)AAo$2bP3YG4eDA$hxEfdJ3VDGi
zh{gw}d1KHi1*riUTwyM-e|ZzTh5k5a^9Uz%^+rOYcbpdXV<TP|h&>7pLAjyd4u&+o
zCG;+U@_#CUw(l)Fle9I&>Dym5L-#M9LN<GsDB74+nB7cjPf7-)Z>U0B&@nOF*mI|B
z7@Tyt_qKI2QuoXH<C?b)t}P*WSeB9Qip(Zp7&n>Ri8$(!hbf2dMBZw!Ut(>&5oomB
z?G`>IOn07E5$`pn|B~aE5S{ucH>j%W2~1tF9I18yO4LVI`45^F(A};c*l@p@5Cbob
z-Qb=+9t$b6%2(bhB)+x>ZP;3=Z1gm}OJd?rzmy?&67l{J<BM~ErJzK)d!zaYH6Sy{
zRNnu16Qmxv6#+u==LcH3TbAi|V>y8XC*Sd7wgn&Ukh<<RF1WkYO%eDPY)sYqd(=B;
zmgMp1s^t5)gD_L|SrRX)Uj_BdIa!5OYq@T&3n^kxIaEtZ9kL(zm;f%Q&vyVyqg=Zs
z>VQ@!+yv*@1W`*fI=#e!W!;3yQ~PyKvN4&En0j*TVixK_w}I)R<VuLCY?egy`Qaut
zTZxjw3agMoSHI;D^--mjl&E~jqp{o*tybOBj`JKns*+dYy3xiGHADg|-Y$W<K9>?X
ziSr{usJj+BV}_lB`b2sLepxBn%9coglF;~0%Tt?xo+NkNQi#E(%&Y<UToLPf7q`-p
zrB`6K`*;d6S%?K~z=O+4%A9*bEZCMjr}2H(f8M!}6Eyf&Qbu;nTY4%5@zlZrLLdkQ
zm){S~i}$sO2=}^$hKX?7Bkl=brpT+^H%V!GD*UO3vTFAer4g>et3S0(mW2qTCPa(I
zn@w+I+!ob@8$Os3>V|$ZSUD-&`&8k}^1+aXxB7pxXI`0HDHZ$`c5%ZwtwlLyI^=<!
z-O`<;LY!<DvKHn}xcOvZUA7{z()l}c_3m;s_RW@SV(rgi_JVD5+nkFP5ci`tD1PpK
z*OrK%Or3=~_pvWf6a_NXU3ouP6?yg;v$GAdoR8XRWpkdiO$=PWGqqiVwg2s-P*HK~
zoNFFsyLClBRK$vXqq&6Jfe*{7O>|dgs&%;f%GX?6BqU?ld)f64?K_dPfv|@TLeff!
zxX`TGE*4@k;=SL4WNGvWx_)a#)SlN54#KGY@{@?Z_V<ViMa}9oqbI5O+5Q3Co5uQ@
zkX{Prl-;ZbbymHZZ^Av*?sZf(#;GP64^=Bl3M)@gSqQ2YN7j3j>;@GEUc>RTu!LFo
z?_iWLmT_pQATIsUT<?2EadvDJ)Bbds6i*GC^BR$c^X>%jBt|7D*-t5xUtRA4qAo4w
z&tN3`CD8^O(66psO|JZug6^e}0q_Nenq+T6HtxO5QGUw_2w1-5dMHV(zC;hQxS2#+
zxK(84Ttm3&juLCBB3@ebG};KfyPW*kLSPPCaMlDRyafiu3j&1vzNO|=dc@+RS=&R5
zcNm;V-LI-}yRE9E(kwTas}nDEMqdcEDjW&+wvhEql;&x(2_h~vUy)b!#`4#6LJihB
z0*2=}=N8uzz@(y<o%{#eoswO=*?AgLtS3pSyO$|5qu(Z4VYqRHiV?!A-oZTzVe(IX
z4|XqA#!SDAwZOrO@`o}QbeF|6Xrhh&Hzr_4Usn?4zUU4e<_dR%de4nem9^wA%B+s2
zbflOPzD;SKqc)?TBMx<6to-UKRCe4Jhi3?~{D%lmrGNY5U@dQ8O9f1(F8dWS_3Vpw
zAX~Cz80BeOJCL|WIy-AkFMP!lAJmb|O|Cp>*q{IXMZ38b<#2Wo?#$eLL<V;%Gqw{!
z#0%MrE9`VMu1cDBn4KPdqTMjORfgXJvy87<dd-e^6#jz;`Y4w}j~BcuSeJa$s8~MW
z2Q?UFST54f{XT>F(qcHf-*0c7`eM<cF|X8i-SJ&_UkTSPUbuE|{#(0y*it1O#}bY5
z0x^d4?B!OeU*sCU3`U*Vbh1)m(#Z@KX)Z+0zDr$x^WuomJeuv)emmGM0XEYpdNb&n
zjIoj_svL~Qtm&IduUOkf+l^&kUi>aNcm`8AkSynQ=kAwF5X|yDF&@p=^CT@^cn;{&
ztC~^=jD3eIv4_~LA^eBI0G8>RxWb`jfwUlux{rh*$~p0Ds7f+@Bi`35d<B+~TU5rO
zED!vP49*31`VAai8sWt*I}v-K@O=zqzu)XRnsyFA2``$#2$8iXp9iE~EABBIEu_EH
zP?z}ZDP-n$2~EBot^}6kQ2R^HeG#05Y1%2A-V#c`(Z+`Fuo9~>2$RN@!2(qOq+!Pm
zLUJeI>1)xMLLLT?c$R2HoO7aYE?TEe@3-Zoe>(;<Wgk%AO2^v8Dh#P<i^z*PCy|ub
zjiT`Dr;ruMeRR1{!zO9p%CyvpQdZ3uQ-urITtmrcqJFTyUG&Xc1n!CLTlw9ILgMdU
zz7Q(Dh@A!vHL2K&=!#RSySTMKTU)Eg5W~QaZ`(!v0<oyj;N4fGjm1YL#8pU@Q6-{{
zq*jP^QQ$m2114VAJc})38HB~uHp^|_1h8dd{;S8lnf9)u7Fr2#jW`y5XN*GLyBOff
zRXN|q!nVfqJc-3cyWkz&DpK|Ud9SQSh3V}!xf-#t1YokyrFo`8fbMP@T#x8p1ccof
zlsqO<h&m*kjpsYsvRJB;)5G37jK!o9Jn(^IWqi)mB#{0rgwuA6X+do+oOW4HSj%uA
zNVMob=j&5HqB&(3bM0B~zL-NBwI>^&EU6{Aw2puiVz<1~T6Cm&>w^U3q$N-M7J6D~
zxJlr-Sao7-${BIqR&AKP{8Z~`4Pnn1SoUwe{W5fq&bV~TffS@zq)S1Ymio+Vq?hej
zyDX<++X6H+sAq<-sH;bF+%JagkAWqR%YzuD+X+jcM6cEnXcEFN*kV(>KRbfxWU7VT
zx$wtWIG)>bqkgG8@fuOEh-Ct_Mrn+f;BWVa_o50h?Dg?2G+~>5EOci-^IisncX;ub
zIZt1jXE7D{E<kX%1F`*hmcI({gI5R~OBK3Xc6~`$PbkC<XGwyUu4K`!bT>oTiUp!2
zH;gx$PwRVM!D|ZL$Qszuf^SxtVR8lXYqYNoS<xp2hc(O8(dH2U6>5szrs#I^um%gc
z7b=Jzk41HkCNH$^D(tDbTQX{}kT~EBR0V;agy`e=Z!F!+Fh{5JGB(dZ#f*c5ZcZWl
zO?yBD>S9|U^5DSw`3&wY{Ors77ep-+e6ZChokALwA5%Zs?q>(~QuVigX0WM}w~)6k
z1G&8FhJZjEw3TqiQNgq$#l>;Yt93!s{g%iQT128+2otXHAk6hTyz-9VhA_E`o!*{g
z(XPBDLCViEQdfwZksEwoT2JuIyA4g}J`S@9n6Gt;VthSGyfs*Ve$Ju0c+zQYJRL5c
zxxV{~f~>@(X_Tj_MAl7hDIq1L?q#NXvxu4f%>s5jCf#h=Cl7dJ8g_2taQLwT>Cf92
z=6bT8ZqD^T%W_Q|f*mJa>(+Wnip!qY&`LZBt8d*$NzTTHc3&eJQ1i~^<-uG-XB6nX
z7@h6fLz_Lf=e&^B0sDMX{cqLAS77aavBUwB)vlb|_RBsKwxC;r^IKQjpkjI8y|9dZ
zC~a?oQyRsnPGn(gZ>W`(o0))jx4UPOoYF&jk3#0qBS^bPXWsb(cNc$|U#${G!-czg
zqC!;`t__cc^K_&7E0KpsN%K-)fU^E%^Wuii*p+yl?xu&uAq{`vodb%<k}25T&i+)+
zimiIL`u9y6kira7?ZNicwJdY3zKPQMjtgOaw}31DWX<Bh3#OXdauBKYBzHwJg@~jM
zLg3iHSFnQnf<KUjWb~`SPa;0ac-ZX`nTsP{zezks)MeTRY`~(EOq&XKq;XI7$!v-)
zAuT0k{TWE~-}Xi1@0_38|51;|sFX*v9y~+7djB^(ohCc|P90zr@P{p+#AMcQ%`tjh
zbQWI;kx_eGnwg}+^kBvausR;LXA2tjV5p)9rIV=5sRbNX*}cfQ93=Ye(-q9d`S_9A
z#w}Y{mS0OQl}y;RIkn_J@cdM4FmXUK66k4{%e!e_5>btSyg~hfQ!uESnE_s9-5ObC
zfQI&lP+z^P{bhMl`<^i1zShNS-M>BcDg8I;#)nzPm_z*9e?3jni5pw5L`I`u&oV^*
zHZHbp^s{EImHJBvOZH5aFRnw)j&S>3+V8(bXQ2KZgZpCRzjbf7=YWcT0x>{HTQXlY
z2E7*d1}w#V{D0%o`a=$%h1goIc*N@>mEpQ#50fc_1B#(~g@G*tgXETyyCwR`8&iax
z+sEDN+YP7xPR@tX!=GfY6LQE3$H4JiEc@ixuDfE#%E+N3K2>jO-}P*hSKrKTi4END
ze80jF2Tf16m)ElnVeg(S0^pQZn$hUL$C#60@&fw%CWTSM4e-QBh=cB3soaFatnW-O
zD#HgxY?~5B$+?&>o5FOY=0JDU2}PDP)sd=XDvm9^wT`5K2bKjyCn(h!ocJ0a3;w~J
zp|V6sc(oH`#q6g!-zd4sYXPP^g-J}un_S#5%Qr6a95wS5zB36YqSg9Nf9XPYw<Njp
zjD^v^^ty9AtQ*<frp$ecy8{cTBkausCi&p1JJOVF6PviXcWk!`yBY1g20oaN-VW-U
z7@PE{1}r7v{Qwra_6Gefk6-ckLzWr4<^GQI{C$OTqrRhMVEcIRvsZ{8$@hrCR4c0$
zuWS<X>DYQC&J|{$4nI+Y(&Xa-o%bX72gYg>bA%e)<sp6}RRBLxq_4&a<GwNzjn_OU
zH5pLU`lo3aZ%4dF-N8=vM_!1_OnrJOtxP<?HFQrVS}lX+*B$8;kNUu#eWZUD_PlHs
zYr*y?s*Hne1!&4#-z!iTy6pbIw%6miIz!NLH~2P|8snhCLp{-}g-Y^OiDV(kcdLXB
zLmtU%v{c!O8y1EGdiV`YXDn9v<J(H+JcYa4it(tZHu=*~@KLtGn)6=gPVOH1ePRkr
zC`qP7x~tGGwO)7Pg;lp%+AUpD;SDu=__(1|tJcpGcC3CDS+bt3n}sL!=PkqR>U0Y5
z{f8kX$-xp!^#kVkp8ECU$uhWT<?S$|iPCL)l@Mob3XqT05bk~A`U4#Yy5i6GFz|Vp
zu876*SzFGo7M*hfVRXCtE8-h)#dq$8=)&_Rb>A8*!a5$a?iHr<26()YzPHW)rHkUa
z*BkWrWvEA|3-8%AR_id)ntCMW>0kYrx128v3jSPGZr%`FjIy2DO$j_Ih3T>a33&rB
z2#<0KIJU@f*Uf!Lc+unZZuZ;dP8y)BvFVb!Pyz5$`IAVS_Sj-y2(ayRA!6ElnRD$j
z$80L=hpn62`ogy2Qxb>Xpm!VxIRO4~AGhiRPH+?!=s!tn`@KG=XAki&-7hq0Ks4n$
zc%{iIWGG`(SaBoFx33a7@Pi39q=y|X5WSgXiRb8BNC~z3>wUu&nRMHYXSo3E9HAMd
z9&!ap`d`^$66W?lvI7(sP^|;0_z?EX>M`zA(f$Vfd6-l&C~zE}9JW0S5BIo$v@cIw
zZwRA*81IRJa#Lya*&yx^F($Mvmvr_)J7_%jQ%CQuEQX({);86(3pu6mH^sdGw8Bus
zU(ebOG?gGDcNd7=tlvI~2$d+P{#FYe6j*m>>d(ivyZd8VlkJT(+J_x2A-Hus5VvC_
z)ARqMu$A!8j$<#CC<~X0#%O~-tqw20Fx&_^*|?j#%QyO}P@5#fHsOmV2L1aNk${H&
zhS+LlTw7#`;^h596Co0QndYzhUk~aB=q_N?ScrBPI@W7mqj-`#HG4yavW}cIBI!XO
znht8>-N~-W``y-^oDd#%)8G(im4W=RqXGj{aW3bDKc7f0kDUxoTj8O<wZVQtn;TtM
z;ll#iV#58oKlieK2lq11zYLPA;Jr8Fg*4j>X;|2?$S!SoxcZJLF?e%EEIcI5xN}^q
zuPxmw_?lp9*jqz(W0<p3RGe{3Ht?J{#^g<yMN<cqbPWZ^THNh+T+KB!2nosh$&YK`
z8#VB|ua!W>^^FQDycL9M8DFx~Y(}au)rTHGv*il6$)T&0&a~;*f`3(%u$-AUd3vKR
zZX>9l|MSk%XfseX(kUck`>sNa5@T&6e*krVB(9)dlH_YjsVHbnUB6?y^Ah-D?hza*
z>tn4!h``ujVfBg=|MWyw>I9)?96Wh%6O3k}9y6nNFc8YN6~yyh$cw+dmIzMTLBikd
zemxEbl<x2Ej18@k#Qe}dvbX))wB)I0Mh1`3SJSHO17x~IVMIG?$Fvpf!Gnoc;1(_P
z?<Cr&J!qOkn%CtFB=Z^MUb~X->MY+!6X!iYw#&9OY7A?*CR`bhmhXHjR3XySjLs_(
zs;I6Kl`%uxGuEXBcA%HQKuGg+dPEHuI(vNMa<#L};zZ)n9Al^La*9}Y16d!EF-24I
z7Bjx@EX?fmFx4P`efK3Ck#HWNv&flJT;E@)%rM{8f?iKsy=gE3yyFg)=1&tPP&DfY
zXy=!d?u|^30i!`VfYGe)Qn?khMtE$&X_j8!z}2WW8eKfH^29`CvGUgWmLE-o3mw)?
z*aTnbuH*iSbq{8@3b+ahH#Fc&vM8~F^rnzQv-*F<Lcz24Woanw$j+U_>%t63j8wn>
zoZfC$^GTw_RNy6gFKH>jT_74csq-rMt%KnCc^=COn!b%ohR<<4ttxfJZ4&%c$ZA{L
z$qc*`@kmq+<C0|9n5aukGZdiuW54N+EGfn_98bYm{bfBo0c-b;^`BdwJML(xK1r^7
z#DCvd!ctdflYFv#<+nZE2Hk&NJ0Wr3dNd#q`{}3ZA>r4u@oAu)D^P8cNQ2-S7LCI_
zUR)R5@RD9lvh1DRDl1Y)9W0RaL|!D>)iwFY7n<6mj<r4V59gr=1#V|X07e_aTvYie
z`Y-z~H)UhVV}{iQP|u`N$|dg={j)<*tH@TFOp0|&(>}pJ8d|yND?J5`6f#$3+;Xc5
zgALI5hz+8Tz`DY>cl*`Iol9W_G=f7`8BtbnjXn-zl)sB>E6IJ4jX@6#tqJpWR&0rS
zawK2(OGsVnWBI>mqGD7D^#i^FsSxRm|M^;Ic~%<Uf@S_54h=IDW*VdKF0Y?NtC8=y
zQAMeEz#N(8?-cj*WsrhA<CRd~b#2+9I$)a8CS=%)W%7l20;fZj)(9Atr(=YjI<z=y
z&sSj>jWRSYiKtR05A9rxQXV=ppr!0}F^uLrEv9Q?vSxJL(xA504)oy35c{UaR-25}
zmt@Ny>12s^g{l%ulV1pLGkZwQNoe}gurfz;&_cosej77;OTm7pyusK0lwWiX>1E;7
zQ*F9f<5x|%Tc1m?#{c-W({=7)!rKQ5S^OM&K3&LB3YyQ`4G?~P>sf}i9`SFx)b`1J
zPU};&OnlMrkn0Wq%qQ0+gJyAQasAH-*;)6Q$>Fsg`;6^?YlWP5gBB)-mromRe7d_l
z=`i;G<D0^o!N$h7>plI}zv1ZI;%Lm1JWL>#8nyZvGxHiTEw2xnyn>pZSQi!C3jLWZ
z%)QQ-u|HufC-vkh<vY|POhA0SH}ZXN2BpQf6g6JKKf4(FOyxe%Xk+g&Ca+Y>!*c{t
zIjHdAEl~V#74fL4r0<SjJdRBiYGFQLvCW@joPx|3a*s#@qvgxAm5*-;_%;1F9KvZX
zmJWQqZ4ehctEW(+l$L^<%^(BlfQ0XC?UGk)TZlr-%{_=<SI@<=mo5@ZJhz7qm{Y4s
z9piD;%A1gP#~1dVF#}F7GrkfEX{<nQt2zo?aVK}oYYFu*hiwycsUA5uAmtjMyU5c9
zZ4H9zcPw5OW<JyR*r}Cx_C+6z?7=Ouee=aC5|<RdQGhUJ>yqmUR-l<1x^xgz|F(Un
zAAXh|MhzdU;Ony+a3^eQ0Y>%$o@6l)DNIouCEYMyt8zcVw@yQ!vTYQW&OxiMC-zHg
zx_ByY#p>lz)Z6E(jl(TT8;AC}+LhC6z1!Z!+fFKyk)}Io2fZFqw%8LV$5i4~NiH>u
zK8O%b+&Nd?#iG~m7VO(jET+958gL&0F7#e;f(XJ2Ij%zkQB<4IT7P>5oIoo^)3$Pu
zd;@+|IqX1kzPIkVh}-cpT&*o)WdZ2RYFtn**{<HdYl?Av(gmXA!E@UdW+R^Qa#hTQ
z)MnV0fPMF6+8ua|PW47%h5FH0%d7Yj0|h_GY{VX2{l!b2EK^Eu<3Mlapkliy%V3kC
zKn04RBn2Y1$=RW6pH8*=;T-R_p{S1)!1YKIbGifX^P2-XUlRSf<rJT@Q-RPVxm{jb
zPVtx5txb0pIq<*-K6khro)fJ%R4@O=TB9lj;H*-R+T3B>(Y_8q#@3#{+#j>pPnQ?b
z7rzkid=|tsr$*g@A$^)UBZ3tdmi)Tn-FW`?%Z!$lCCmeXQ^oel(%gqA)8WcwOw3z?
zE;$%%T6b);{j)Ej`o%(s%+1lS))J7@c7o%AYI{&Q#WQ<Jnf9qsxW!JGN^*`m+1d#o
zQLudf;*E>fBD79;`Q4pYCXS_;5Fs{X|32kc;UGv9uGOfdvx9m@8<>AI_(cmhVcduc
z6t)P0?Th58a0qvoi+@|7Zr6#8E1$cQV5Rkq(sPn^bR2k2N~y54_$HlWRJvW-(v&Nv
zvVGew5}H6bv<xs<27Bz!#hKPQ%Qf@i>~u%GnlcAY1xXGs?{lU6V3zwx9xs)-ym+=T
zhf^!e3P_36KOu0o7!}FKjW`RXLddZKUoUMnP-AHoRB07l5q2;}Gt$;X7?dQP@UqLs
zGv_!xrCOp7U;aG_lZtT|0{(V6xNl%sd5ga{l7e#;x?4%Bb(o3o6vBfViQ>$H9^<a~
zg{m8_P|22M*kMVnVfaPYqCn^*;}g<labg%zq1R7&7H+q+IJNKZ?G$^J?RdR{2jry7
zT@3ssp?rY2<TLWxXk-1~3;|5bbJW#98poLDDQPXk%u@HcXwaMo^jTmJewZlf#2>QP
zQGf*N(?d+5aoL~nH&^FZ-E2Y<MbBGoN^B=5<E&v<-QjUdw^Acy0$lorNigR+8Fl&Y
zy=&9NJ=7aiM@foZsoAc0@w=lg0a~H3qHZ{`MIze<4^pyNlQPE#Wa;DFi566*eVR<Q
zjmWl2{0cmKXrPzeaEphEZhK{_V27{#!{ttr$X#R1*r^_73t{VgCss~kn9_jg`wv>k
z>97LOEk>-W8@m6%@=Y{tBJ;-9(_$U*&&LUbLu)9-LAmRkF?<(f89Zu`i_0PAXU}o$
zsqG_Y`pTHD-<aivJLDa-YYk_&L|U?mdlxUfSrZJ-%PHSSt8jh{-UpB$1Widi%l)OU
ztXB(GW7>-cMLM+Ie@sC;vUUzziWJ7Z6@-&)h4eZ}%ZQUKurqBn+Kl#UE{UYz@jCSo
z9bu~3V6nvTF4k!$?(Y{cEHQYFcg=~v{+0Zqig=)tcP!>hVfXCcd8Uuut1S%Tlq~>!
zc}l^?k#%&~RirZJE%28%*@(So;qXN>R5?ZF^T{tl?kmutv97sk;Pau)Nd+N$u4Drv
z+<!zVl-yggCk)zuc?Ba(si}x9?uy7k1AOKby;Z9JIMmcCpkz#CDDjT<)1Z^i+A<d|
zestwGAMT8xJ@Uu8-(7Bh7_3k*e!-R%W0*yznh?hZZeyjUMM9F{VHhKe6Vs4;9~lNg
z>$r$;JEoQ>^5OP!n|(Oqp#9jiC?nP14{u`SOzN0tPJaHy9Y~DJLp!N#zcz{-Fy-x~
zzCm+ZeS-LEKAGhH8(mwDEn_(JAYZ$S4+plmUd;@%eUqlI)zW@7le}=OYfEEDik7h9
zOE?_{=}QRSTOcsZR<P9@1AO|qpK3-;{~V4m;L?bNikg;A-<VY|_ah~OFMezn=dXO8
zZFZtON{E2%FBtL@mV2JD&MVQHoN0~}DInj@evSVRHaJX=xe%M4ioTW>aA<!nOREch
zns(Y${-P~3uz?Lp8#yyz<`Ng=t6&0`BFn@m#n;t#AA$u?wWzW&x>zZ`<nfZ<LIzl-
zWHmLS3cLyM)|lFXRG5}@Az|N19J^EmWtdIh$fMKf^n=}n{46XA(w4L)LJFfEW$PCX
zd@Vq~LUe7-r;M(KP?gupyi{1jK|&A9NU@rBCQ#@_Y$dHOEm@b}1em!35<y8q_0@&>
z>UbI%hS*S(uot~a)ZUgW-|oBI#d|mrGK#lE*a`RZr`0{VxoWXBd<~(_P8KTwz<qW_
zCOuW&I=6ZmhyCr)PQs@UcT;sjb=b&)Zad<Ft|n?FFAmjc!v{vJi|TrOS`*~LL?z_X
zlKj()9U~l$f4(SryHwiXg2RzVR)zr?2M(!gg;%?ss@Dmyd-KxGt-j}>!6AHx-JyM(
zX>uwwusNkcSPyLU#Q_$7jlpF_)ME12`8CnCtsIkv+l7MOD9)#lv7t@w_j?oL@=}3c
zhkGV?(J!NCV`pKb)~R0;L(>9yWy3dc4x@Hj#2#wl*#$UX>`N%rkw6aZTDPdV#}8iJ
z2qKh{R<`mBgL|xfqnEZ#tBBV&g6u+G4_|P7kWY+UOqS7EwJs)Qy@2I{8c7pNWA<=+
zg}%?*pF-@XQtszKSjH8EY4J+4{(*<D>%>eF(8m{&-P3Hw6rsVDpN7E(K1=Szk|~zW
z*FaXg%hXz5txwb1;&<MsWEiSIEcN(WJMSdc?i3cPGiJ_dLcByXJ86s+{%UpHQM->6
zKb_S$RiQ};p7`02vpIb4;V(c3*^sQDGjFE~4Sje8G+@Kczd2-o&CEF2gUY?K5Y}il
z`xo)z7ci02vZlip<&Kz5-?#T$YAr2E-93|6hbaSt4*q3QJ!ACaCG5qSh`;(eTN;q^
z4Vr2FIkU39HB1f&TKDSP8Z-fE?<-4z)j8Bxd@bRt#DhDo(ti`b5#rcwYJAGf;rHd>
z)}~~<?;_~)w$YG9)l8BncOqIeUgy{|BcxO#E@Woq(1f|{*Dh+aWCmphkaWHdo@j?U
z4qRX20#uZea_HSG>uN*uUccZ8mS6p!{tw#xHNF1`YPvhzVZ-tLfo*oYx9lI+#K}X8
zR+z6*9JSdmyG+8V^xfwD&!W16f;g|)%P-MU<}FieV{LKQ{F|R&2+p1Hk?BDn>Q4|H
zgpPG+&4hbj45mXjwl5dBU(1nsuhagCBzGq;UWavfybpdanR&9o@1tewRMMi>HJz<@
zsp9<>aM^Q7hSVn!t2EG_HUF3t;{DL4BzD==bZ}<)o5cHBj!ciJ_8N5TkZ#iaX6)lh
z)gitGO2ybVzo|~U=J(dSV{j?s#7v?}o$A5E<*gk>4CR5Ofs$IbiE;Z0+NBsBUwC2w
z*2Wyk54!pt)92df`S&xUHmqn}u*p>o*G1z`FT=I&7KDVKdHUUi`~vG2$`{Lr8XvW;
z@1D~w>JedUZy|f~1TQ@4Aj{P+v~vwm3qJTbwE6evaNFkF1iQc&<h+Yp;9ksB@IAe@
zsgJd^bBv}SA8TY1i5=_P47A??e3<+7bWgn60SsBXWc`~UfAK{K&eDelHi}>W8X_^j
zsSt~9P*zZ6q)dGT=>%6|RzMv1j6)np=?q$-%DR7F4^5TyMQRyd{%vO6#V)Ag>$x6I
z@a~oc*_am{n9Le$wUQYs$e}i+>O0G&hM&4#v9$pAwBhdjNJ_r8Zw1i$s<rnX=g)rw
z$(fS#6$r+Ib?H<=)CS<%;njJQ9%k|;BL1^=&4r|BN4wl_?`MnTrPOeYf%@$bhcT?&
z^gNZ2S<}4Rev#Uq&R5j##l9dFKtF|;`?`WT--a+7RyC8qt0kj;z|W6$5H)S)ZPDUP
zEVn2C88Kh^i6n5%WhwSpzlZ_MxI9ShkadnN4&D%pn2MFPuOF-i6xaTE!KVFE{rD67
zvY4;?v5-W>kPFF&8<QuO+C>PO24gqEhueNq4eL!FPhNQi#GIQ7cjn5_{u*<Uslw=h
z5xx3laE&0-DohH|U7)g@T$7$tty0@}w2DpdF=)KAp&4Ucox+m-@!qpjpn#Pb?O4Bt
z-`5p!jiHyJqiPh@e7Rn0iWl4^(FC-m2ge~d!agr?A?IS7^n1?w-gN~tU&%{FlnVBJ
zY2RhH!w9B=J$Es9BHE-n5skab*1gMZoF!AW*mf%s3Ou=+9k$*QF0c+nXA1BuXsv<l
zMJ6?5_Jwa8|6!gPK6V#3wnT^$gvRGzJGL4?(~A-;{zKFLu8Lax4ES|1a@B_6KRmWV
z9SEuv9En%J|K2F;c8U^w5Vl(1$~+Hk=n#0@@Fp5({AVJH)_ecqXrNkQn?$PMudqq&
zmj5t%ks1<Q3Ekd=T<2ir{~uFt9+p)1{ejkNWol|_YUV(rmR3|&;DF>5Z&{j^nK_V^
zTKOiLGYV8{<dA&J%*p|W%1RSU%@N4CasbjKM?_O`1Qi7lIQR5>?tPy7hYxbtXP>>+
zS?jZgz4zJx`EQe4$G6ZnE{6{GuTTFbd>kP*@0%n%n72QlYUYtT@5l2?Aqc<|f+0i<
zJ-=#6J4SNn^{W0Hu6o2KqhCg49aDcmw2-0-0+-|B4CJ49UBf)>q_RuDWqlb6u)!j+
z;ec`_C(s4$R8x3$+t~5-IWE-)!k=;8nLV@7>3mr2{#zExI;P^A*ht@o)2dsEp3=or
zpG!OgT_{~RXqC2H35YPDkEWmIE5|hWxcABEd4Ul%NkaEt8G<DuCO$wl5G;PG+p*6)
zxTOYc5q9}rO&@vS76CjK_k8vADI_=Cdfa`z03q|PFx+Ibfm~d%iavo>VXM$oVU|A$
zDJ8w@=wV_jud}kRFN@mmKFM63RaDPM8%^@a9^#~{I<pbSy`<Y_CC5-PI|tFF{l}69
zDW6tF_Ur+O(TsqdOS#vN-aY7)RM2xsUi_)h#WP=cof`$el{knr^bR$)9^_(90BSu?
z=!IMbiYZO-0U`5Xo5~EL*4Ig{)B=`a9s0ur1Gzhk6Tf7pjV8L-ys1)%h<P<XIth5x
z^+-vTBbWwu`1_Hf@<z%qu6wa8RYFS*gVm=C>fb~F1-w_J#sC9()ATbNH5*y+h$6Gi
z`e?&p2-T@ZohuR)P8-NnycgB08o7*WpUI3y`Jce@PRML<d;wyv^2{V|_{59yb{3s^
z%$%#FMlh5FmYT?RE74FiTKFG~MD;XMTc^<+6D)*=b=<CEaxr#%Y{AHs?iNmT{Y)$0
zVj<FSGU$OBHx6dm2dNn!73dL>^TvG;uV#1^cTcFn{tzK4@|0+Y)JPtdRv^m@l&_71
zOD$ks^5IPjZc3u7hTW~7jQaRG%Z>LBP3oXl?b+?|CU9vuk5XUoj?E1=UNMaT2ST_>
zDBYT~0{PpZ_@RoS+*nvrc|J%riTxFY_V<eIWy$}I)bdh-)cs<~na3bR23$HB4k8-j
zTkB!LOV}1pY-5f*=I5P+Y|Mq3h|EF2jD}pA4>IpnSq^#a;=r~xSPmDP<TK*+yfRY4
zyvSZ8aCOPV8&c1UvC>{wqfv~z<i_QV$(YL3!aT+UzXyw4i&Wt;-YeaPW;Ni75Irm}
zZ#>E?94a!L4dEIZC>~6J4fu)xMeoJqQI(CzVdpoDheI(P*fh`eG)F-$YAf0(k&ko{
zlfuN|1H|DwUXj)c$*{dS^!glmUF|cxhL>@aO5N<i7)dSb82`S=O3KeAC{szMYBAlQ
zai!$Z=E$m{xttK{lU7_<hxygSQF%>Uq=pn$r=0U8>#k1_sSxL4NA2X5JBMhpAIsUZ
zli@Y6x#O(~w^Elc3DIxJO1h10!1PTF?^mg_;9wMKm#l&Z`&zhOe>gc+C@KiF+2n2|
zCFc=T&@q?i(}=V9*;Q?yRve%|{88ZCx_D3CJ$*H5f7ZG}D6IefKv>PuC-Tcgz$(X6
ziYIw6Y*09cBYXeDfG;B%G%G{7!oG~1QC-B8jNm=7Gxn&M-GgJn^Px$Q1`N2j#-hbU
z60VRX(vWFgYE(gfE@V&I#Mv8N@LB^UvJvAqk*}v)m#!Nd%vI&=Kfz|d$DBK;e^pD`
z;_4%@Tq<4FGZD-x#njsyf+TVUNSD3x4OZ6ge=nVik<7m?N~mmznX6pYXNjWk#Wt>0
z|1Im~IStPSCp2;%(OeMo+<RD5tZ<JYqN;(5ao|kYj)09UM+%_#D;u@d2)iUU>KYKW
zsBan&oKl@(Nw65~$yaK%Ni8^q`2Y1pY5iq808HB<r#Gm_qbww3XPCyE9g?iPc=b~O
zFuhvJsaNik#YXL@YhXdbYH*j4Z;tTgx;C5050CNp4K4dfqx#(|I)DpSGOYLIwa|EX
zcn`shmB~exmR(1@VSDH{269212w+C~#-6#S2ybaav4DHo;C#a6J0kUylz82GGeh|*
zi|}(5Qs`|HBof&}A5JtlssV#MbmN`UMy=F&ok4Z8VLKvW&1ld*uZ_A^Eu&cBU=`Z(
zS%l3$Ih#xx^n$+>AbD_wVMei4>s=~b$(d;LLY>q5FJWLS63-~?8|VLYCTyd%4QE1L
zNR{Qn`v|JDXnQyNduxe%`@^!~Cw#M1ED~R*PrjW=|B@{an@c9E0;(DCxeR0qO`l;#
z0>1s(3)gW@FgF~nOf_F4Zwem^E-`7XKNYMatS@@sI##l5H;}_9@8G=2mWNhB^ZBE?
z7div1eynQ7R#vd+k5)HJY<i*Mh>&u6py1=p0ss*!u^HbYwMdo5-Us*@{o{NmFC64N
zd18+m!IYMGM@W9mw~0DH>-QQX@xL6GxQ})*sH^8vafV|nnlzVw9=R!0TQ-1RJ#Q%Q
z6^~c42v#;SpO&<&3HQ`R+!{_%1MsO4P`8m8jLStGVRxsK`0tK`o^Kb!FdQ++-v*r@
z{B;s&EpDr!`hO`4G?Y{3BmXM^*2G@t`aoXH+6AFT_4`f&n_?x^U*;xaETk)9oi8l9
z5}Lv8h&bNP#k6qVJeJ$fPp)3X=DZr&%eXIgzFhz)kE3xAbmc1AK(0Uk5xj71d>+-4
zIePU|BjFfrwGUj@wQ`Ow3aPwI`gTBxbD4{t7NEadOWHS-<(&S%do<;-M8dG=X{2h-
z;{BJ<YQK@p{Zcll(ewi09RJmdO)D2z3mDxIP7r?9U+tYpstE4UO<KIFu|IB_esmv9
z4@yao`Z&gqjdf2R#l(At*&Od5J)k-1xkzsa;cSUj$15X&rW_i-@HBFR+I^F+X@8x^
z#(0co)&|Ud3yy1!;J>OhKE3TLjRpAg)@o|Rf~x}E=1{I<uu`4I&_Xhp{zC)5CPW{v
zHB?5>m#NB`^ut}>XZ2%|DnVVXf#+v_-*DmRQ8R|`3(&#$cFE3!b*$MRE^cEn9_oH|
z6r8rL9=uP}G!AkV27Ows08isuOuyFQ{<kLu4iRFpu&6JQllMjB)3Ai=BK6h`^|D*U
z=F(Od|Jsz^t*E0`4bJ3#nPPsRkunIvt9gNH4=2@tN#6QH_wmog*@F}u)~kE0o9*fY
z)Qeu)*eneg_B3v&k_0pdaIaJu(NvL=UVI(JqLU$sN=a5qo&RJt`tF8H)Zy8gJW6}S
zl{J~P!_{Lksf%&4s5Z|;_7!<p%>?a8*DtG|$R2094Zm>-Tp&nGm46|CUK?!d@jJ)6
zzJJ90{a>hJ4l%KmPR<IaqkR~ohZn#69<S`8Z{rxhn|OJ@ROeu1yNTtX=z%AfEWos4
z-;5f+iPWA^6A=}IJ{NN07Jm+?EC**{w$+TEga710NH(A*s}pWLZz~fV14pg^YiNgP
zlj6_~gIgJ*hYFdqE38)BHmsiFXTwqMlXA{dX->!&t<jb%Esx1ub!4X0Fe0MZ{kf*7
zvtv2xZtW+~SFD8uZCT04T>hvtQOi0^KYHY#Y#pcf^lE~)1rTR23TUGv4_#Ktz~2#Z
z;!2{CvER6aP2P(h;`~P7fP@pgeyn><Vb_q)$~@t@Pf*R^v9In;(%qH!yW@N!`L-6M
z-rFMede~X<1q1mEzatjnP<u9{oWqzu^&|S%^i4AQQTXrl^0Z&6%Rf`-X#&ou0NPTi
zWYZK~HwA~x_A7^0zM8!f6lXD)Meew}U@<~|gn1|ku#%qTy+YRC5n!tNDa%3}>%wq|
zz=25EA=w#4${jf9NZ&TJX?pm!ZS}82u^HD?d{nA>{7#|4FjN5hT^BbhEr9!Fq-r?F
z4O;D8en@Pf1#dr-pclOHS!QR(1gv@NPk~W{F(eWA%>Xw4G*nxyzkg_b>iyo@53zq{
zZZjA+VpV(*w53B;nb&56mW7ss;lZ;JWdmbhlsP7)Nq2*OHyhE{a!zvTnnTRfl0du(
zL0~Lao#}{Pii`6#wbn6G&lH^-P!`QPSVmcA^?c8P;0DlF6=q+vSU%1}Z)4Mj_X)c1
zEH8wEsU>0Hc==Pgolr5?hQ#+Z>2u95kY$TeigAs@rwG4Ek;*mW|G`_iWMYZOrZxk4
zKMROQc9r1ctir5Dr4I!EMD45lXJ{Ruz`qw+kBf9abN^+qb=KMdeh?Iy&F}^;7BB5Z
zXSafm2=(gm(KEE`bsmZQ!@s{p^_Dk+7a@6b8KC32h>Lwi{>lK#TiGFixU0QY2Zfi&
z-w5S`DZ)(bKSrmjPdO*FS@u=y4E^$$_X8!9-HVr(NWV+J{f!F?N#^VPF9f-zE-ZfO
zqTsH}kKn@9fW*H+OA7rAI<66!2MS`QC}T1(OdL?zMOaG<%vD7HQ<ok+MnlXjMV>O7
z1QDqc@RMj7%BTA$*|Z6;4<91I@&CdkXjjIVfN~3rhhBk~3k>Cv{gW<N4PUdP2e&G&
zHYi>;v7WdL74Gzgyx6E7SEwxEHkVe26A5N$q@rTOYx?ZO#DZUC7v*KoX)IDgDUF7O
z8r{j|{CA%dJY;1s0hopi5sy#@dcY<)G<?AfhL{uGsH49Mky^IGp)dr0IwInNNm=&y
z+3eJD%LBi^pE0Rq2mlsKh#nWPLvqa4LE=e`g$85u3N`+yAJOWlXnx|5!knV|J)+W&
zS-8+u@X^`d>S^Zk*|@^`GH^<0_8<!9eUJYG(H>D#*hqJ1O@P&V8cr-)gdA`5ub&mX
zMI<Wl?+=wEQAI~y?tt5u8ZH0!Jd6^U)<0O6#s+6eGwa+Al@)%Ee&Dp8toxtNnSS;S
z+OYitjLN}Yh7V*{4HJD8;WgO2pKpMw4pi%F^C>A=n02whI$Ch(q-$L^%Xho8M)y|s
z{NSg^Mly($?6Do-7gW%l0~AZK)(meiw0bg(&%g6r^e^208NH~^L=H(8{fHQM3HmtZ
z9(1PzzzEiKUO%DF2vD4~9N}C?o2L#8=`QtI)z3ga8yF`oLn{k!6&kg)(Mo|F|61=&
zV^!}he4%9np8D!(dZN!wRWF!7;O{(C#^B@I7!NIf0ND{a^noj8>eUq$vCkVhz5%F}
zZ)XcvkJj(!BpyONt1ODul_E_!sJ@qw>Wb&c>WX7@$k*9m=mIB(E(TdA?+^rPpn}Lr
z*fTRhUkDy*Dh{j9GczJQ)G}<Ta@K6Q(U0)Q{@;E4t1G|Q=nce4;zILsP+_&trnhty
z8csj$=`pD>>J08~<wZOvf&&4cQc*X>RU5<@j_rYE&zT`?o(An~*BIlQ@>k`gAFGr9
zKW^v=EUW4sPnbhE)dFj96zD|k*%{wubq_UBBFGBtC+Cv8UW7CK{rlOghSM;1_&M{L
zCa@5myi}9Z*gzf@&>!;^Ui>~S?GV%YyHYZF0=6sW6{-GMszeIbv8cb($8q{}9U3D!
z%p3JB$sI7Zh{Z>NpXHRzI*rOvHnBRL|6bhmRdZ{6k-A%~_OiwK`R%{Cdz(8;t!7lU
ze9`dDMxoFC+Hp#Q!vaf}=4kW9;I<2JY?4MqHgbkJr6^4ELt4^f-0Zw$SYI&?IA5pi
zzf?e2E(1M$ser0*i*v|~RjgPoL$5-2qeYFTQ{gL5A_xa)V-18ijYxmO8?-{^zDl)c
z?3_buJ9(5S)Al%gl>u!XIzfMURgf%Smhxf;Hc?R*oKgKU`tYjC+&x3J(p7KTy5A=(
zsIz;a?${1QpB_Irwpa1R#AIAJt^>cl^8Z58wL#%ofC&%HlP(|bRgK_ZcLA&>j{-dt
zd;wSmXS4M`U_?mFNB6bvuM`cV1X@*kc$Lhpm0udX_q9^5B4)*B#YWP9@JjU16kSWS
zlW&JcQUwakd$=oVskvKAgKO!KQ9EO=PIyh<;T)qbXRvnFxE;b76DoEAGdSmC-Rt)R
zs}>jdOc^dZA#6HO!=s9QGRvS{UMFc&1}m%Q$%@66m*;iGib4ZBLcWhx7tLSw-2QFM
zFJgBMjFQ({J`wuWMJ>ovicG9swJi_)E!$p8*OhP|;CxNngI^=p%5Fp{XN?J<j{k3(
zF3v~Yz5Z9J?YW?{JkD1&1#J=JrYMj@62M;kyFx!z(~&B~&A&1D&!}};pxz2Qb!g&h
zEn4EwQez}|5cl~*{9TZR+4#XutFPx<-bfld?uzR}@Rr_@zrTjOGHC5D_?w~<Zsvxj
zkXI`}%p0;lgMQFRxCnwRSg;@2ZjGsa0|NQ<%3J$(Y-fmA_irN?gKLrpYJm4&R4*dF
zplu@py?+y0)8Ne?8-WP$W>M>ox0FsU@E7f;pWT!^w~|_cDXMLpE#qwpFCxzmM}dL*
z2GDva((ksrD>WhhoQtupp6z$0FZ(qVILbjAun<d%5UU8%8;(RhzmDTB90)8#FJ@i(
z$+$l7<k_fLH+B9L#dFCLmEpO~`ck<<^{=v$ocg8jM?wsL-?`_}iS-UutJ{1qq>2CU
zfDtIme|p}7W6>Y}Mjw!hh2bv)?nN6^r*mtIAIts6Jvt7?Z4qs|AtI+9e5syMKb9)&
zb63`Fyh5axX5(=Kio*p0B_etnIwd=mq;x6*a2Fq?6Fm**D+^4F3SP{*wa@p-;sn|2
zU{6U0Ql)1aVfqr^`oj^x7_YK%|A-EJ1PY3eQY^F~!*F0tCHCwk4RH7Ke0W{Y&p-~U
z^~KUmxR~A~8a@0sug7nRzPTJvHC+0*)L7?VeaT{EI^x3a%f|28E@apn4!|!TKGu8V
zK;3%$CKqSd{ii-nOiUd&qTDJ)&;~9&nR~fAhW007O9-m*$v)$;<GLKGAZA3aD%#}@
ziMnVuf13%7&uB2?p0C#*mIe2I0(brPjUpfNr?+&8G~2)DQ*ZQkO^4AN9#3|oY6j^F
zWZ18i+AZUo+`O#2b9@S|)Ov25C%udS{*7JqHKY~#j%=KYj0Z!?$Q|uHV_+oIHjhwX
zYl@s+96KM<@^1__d+yi8MYwJ2{7^%s=e9A+D<Rg!32mr;@F9a;?RSeqpG~Y4x75Gl
zCb`$Qq-j@X{|6=!JMO7=#}pLc#zs8<DQfBR89x5vP(AqcT5aPL@K~Fmws~AG2{rI0
zc$c&<#5y~utc3K$pV~HyiY5L;*POjLqlkXMcPR()YC}WryU6M{T(f&I{$|Swz^m6$
z(%s;wO6(w*s$R7}5rH)p2c;)!Z$Hc?o`aN{gw&-*p|vJr#40ndY%MN8ds8K+T3`mo
zsYj<z1x1TZhwrEDEBqb-sEX(AdpcO9_p6A99;$0q)@uOjvDxMwi|vtF7<BB*V4GRq
zPE^dchZwK77D2@k<tE-3nXlo02G>N8UQozYHE8}s&R=nVtU+^5onLPHn>T(d*kdWx
z0w>344|cp|Obf_EU;{VR!#EE$Ldaj0{Jyyh*2hINo#_+sH+*Fgn0;5|DY{rl8rQ_y
zT(&wh-{K3#QrZn!+;RB6%Ch+b@w$zk!!9X}RtBT<gW{nFiNXt%0y_Q?->E93&cgZo
zf%&MB`oM3kA5*1XDK3krqn73)fN)S~8w>B&y^jFM;-isYQ%!!$uJG5=^K%Fx-I0Y6
z5>h=(aVmO8+hKeL*E8yYg&KPH5e4U-bM^VEGHM0=+nFwM=rb9xCPiEv-bxmXDFa`k
zBj~9y$F0>5KGc#Wh5By3v@$zyv}-UjSYN6#6@E4U`rm0lfA@E6i$bd(D2fy3A*6xK
zt$w{)xl0xi+Zv4M`U)@YIc)TLR9{(zm*JKwUpYvFUTv%CX60C?czQp4NefZ~HpXf_
zd?`CY(I3<K>aGO+8kycm*CGGuFMWCUbZ{}df^YVY{TMr7czoyvFlo%rxpsH;ma!Jj
z*lZn{akzIM`%h@-8N31^o}gm%EZ}azFyle8)Oc*!!)$C93}<Mq=6ruG{6A$`L=pn`
zeQ)3N-cW<AnXT&RhDxKHQ&h0J{~WNEa~vL61J0q1I-i$>RRuj9nJ}M`E61vEKj`^e
zR)5ql5JnDrK5K)eF7)2VtYNo)Kcs52r)2d{gaOU9wC!lKePOQ**J_GT7(b_Oi^6%q
zohRMDS|zT&-X$*(AFs!7)koVy=C`$q#VRzzLoe}B3;QDIGYr687MWE5$k8J9d`jAi
zApK<$zq5Rm-YC+avGxq1_eKCE-S#HGRp%7w1q1kadh)`v{%d_JnlEB3Wk6UhdetW(
zaB&|cwifV>1-%UuLz&Yw<Lkuwu`dcZ&U=3vG~y4qUeOD#t5a`OUWD_7u;hOttR{^f
zLW2iH2CZxwh8y+c&cg!fP($I0k@VXqT92eqpkiB{{jKVds{C7Y5U3eSv}EoEGRPgy
zXn*=V4lSAVwTJ*dijVT|wHYqjuN`f%6D!H&{a&?zO|1G?H^D9OgRP`L5r-E4HLZIV
z@<#%;t`<N48vSQ_)7E$u?#`$;yMW3gsn*Ji@Hwx`>%c5S`{BiXm5cuSWXj@0G!*y3
zHR-ed(hIlfhY~^-x~*#g%~&U2-Ppman8QYGclM9|K8omkLire+xs@~a<yjc)EASO)
zNEhsAjfz$rU5FF7Ev#6^I<-UYT0ITnZWZsL9S|rU=6w5@gJ0g%&Gwl1y6E|mJayb`
zYT6$2NwOMSfA&F{(-|Ar+jpm48mqrQ6fHDO`(9MsyBL<B2nL@z*4oPh%{lU}p`?yg
zvz{ea>1)y;J)eH9aSeFX$i5Q88zNDiQ@W?|{(J62eo%g1q#5q0fub%4jLBDb%G7CV
zw0u6VT9vp;KD%!T^l>XDLK=3ld%O6~628w{WIbniIRl8CZ`B|uXRQzH0ri$bG`9#+
z%UVqWePx^r9)F+k<td#ExiFwsTYPCCpyJoucdU1F_4*-2KGCI7_v)hlGZSI4`%L9f
z4*5$9l^A8lwGUp>9}igy8MjQW+=_GDHOc*?KO<LRL1LXgt?i6K9iI1Yt_aq$mLOv4
z{#kbaYWl<{s0=JIApLx8jeJ9BkEso<^VPtjqGT#k8}@aY(^%@t<w9pC*&p4d?gb+n
z{JqZcR{sLR)g<@h&7?~A0zJ$?fFSwHN^NWjd_1(4ux`v}Bdk6dX6mB`i6%?pEAbzq
zV6j_lRAG(&FN6u#Hdu#hEh()M-ov*#%N!4@JIkErFJ4|GjqDMWs@1k2=!b(f+wT))
zw@8F><nr>bD|PivnHvKvMhJ4)m_lWJs?`XDP#+=L)xLc&i$05g$w=*PeIpP<wA-$V
zJ|>xedA0H`<c|reoXjOxe5A!BNuIB4UA@qs3L}nYD?-B!2$#%S0X85IyWFi~4|_7Z
zI!DQykZ~QsL;lT0zN7;w1;J8wl5XrB21Yex?g1%r^xIh@Q7&bx?l2nta^-SIh`RLT
zyo|p^Bp)&YZfm%cQ9DC^(vLHW*p*3u@!WwXoMupbNAMr@q;%wO5<PJ=+?d9<GN%oM
z#pFm|dXN$_XXKhKP6#~yG;(US?Ar42=4!%Tnlgg$<-m~MYdSV_5Y698A;kCF<a!}p
zXCyCsG2k5aWQ2(~tP0va3dqQPUDKmsTNWD&)quil^2?kX<BQXro9HZ{`57lIIMi&>
zmSSvPGDnmd%66>h1apxCT=wYO5>e(mkt(uZ#>t1YS-Wo_0dDhaI$^7@7)f9M)_@4N
zi6Tnoaissk3zIV?o&gJcS|y`<ZM1qJYVnngh5N?IGtILvtBE6l%zlr<)ydb^#;#xP
zzi>F*C8qAZ*BbxG3$Zbf2;s%OeeU!BM7cnlN!Z@ekH($kn0<4!%8?wwm64Krgw3$)
z$e6lHtu2(fpm8(BgLAi9(mgBZ{3Sh7da&WDy7lmy<{5<<d6Pr4?l4%O$k^!Z)_axp
z;l$q2Xwtb@2!2DRZ;xwIM*YNaC8~GyO|UItC#XKFeX>cfjDSYWaD{?)Mm_L#Odz?w
z1@n-O)dubXUpr4Fy(u*S=RUZ<g7?)a4Xw8_Hk(^pTkj)q7b{8?Bb;3gGV-GK#hP|q
zAMC@*&A37DlW@b-Cc>6Wce82@TDwA$svvi_uLM10JOLuPO<~O{!*adxmB$@NN&S8E
zH$dlbI*fRZkNC#ET=nd3l{(&Kz~~R3d1et_<8|pPk-O`TwH%lhTLx`@d)Mgt1#q&b
zOUAY6!<DhmOb~0bfCCF3r&;MP?lDvk19!-T0et(}5ZhPL114Rw^H?UQ^Ipv$F7sLo
zYxZR2BHDare$K>MRG*ZVxR~{*X!Xe)S!6jf3BR6e<I+1Pj0Q~m5(dJu49|(Kd-H3u
zXpzq{jCz3e)q|53I(KUuMyqhc-yfJvO21yX{_)AI+guw>iSt0;P!w314=4dYZB{3W
z5OJ)o9c0&KxD96Pdwu1`<0o2?z^F%g=E(WWilGti0~Kl4PMO3=^gZ0ImGy_oG5xaM
zViW(*M&Ir~9-Nh5=$qu!5=XYbSX&nJTLvkBP0NajKe>se%FalK`F8u6`EuYQmk}bi
z`ZT1!wzYoS3x}Fhpd*joF7;3Yn#Dd3vpqzHbC-cz9DlK@RKs{GJZrCsp8G`627GwF
zEXvZy+r`{Rapb7cf27F5(O8bwij`LrYf=I!fzJ!XE7L9#E$*p9_a_eJ;FSZuZrYHm
z9JMRfaIRJ2kM3FPQEV<vX>?4<EE<Lgyjtk$TTvo|e7OFl2G6Zx8)BtFD@V{bs!hK4
zI9O|7!v&Xf!g@!6j@a^9|Dh0@*|VI?yM}AZhW)%C1DWrBi_SSxhv;kk4d25R<Qq}E
zB?(KpfLjr4KE1fb`01~6?CFAF%SGvV@w&ypT{8^p2+QuVa|+YGrb}4MrD)gy37fgb
zkNWM7(%1r8yrz95df1Y6Fx*PI5pUAxw`cY|g<kk+C`M7<8O@l84X^c5;$No$8-GN6
zU^rEF6~HOmP__H>(Fa3>jNYt?e(Q6;WHER1^MiEhQwa}fC0es17xwlyuVQ_7^xZ$`
zKFEM3pw2nh44n6XbS6B0M&92#7F<?fIJnl&>gi~F2~pkG{fF!G#fsErp~l$nO|?c2
zG(BW^b&VwNV1NZ}>TZT?;Q|ZlEj!0<d~?k!efBb`=(8bYN8hJn-CjyKViNmA=EY7c
z(M6<A<3F~}s~gJfmSYel(;>0+OD*#yvj&BJ$h#epaqswNqO7v)Wk`kanEx$NrfWC<
zkjPJU^MNn4D@A1B4lXRePCfJ)KzlZNSP&w<q~BJVx)5Vj5*K4J=Po;b{_w3W6N;pS
z*2e#;wvA7#7<}?0T`DFP4Huk4Z`S^beSsJ<;#+FC6!MR@+!h(kJtD_^9&roS`|lpO
z^tLt77)|)vq?FX!Xk}tr5+CU6`~{Jd(zU6wo-n+5<VK@uRoK&!r3+gy_aKe4UN`--
z-(FU8uP@}Lm1&a@-t%XxJX1#|1-o9n=>M{)=V0?782vM#;rmY705&v7BK4DBX=CW6
zE?hx=p955>tv8zWO4s~YNXtB9(uNMQoU<?0IDYoaYPhWA{%3g@uKI^ZP{Qk4Ohmu5
zH96u#f5kyIaI3c8ySu2hFnI5O9}VT%7zW?-4`m!ET&X3k9$N}liA`TMBiqUr^R_dd
zOjVJ8u0bZCze0V@t)HzP@PTj1S<g?P)PD@tWEA8~|HmNwBZ}1I`j&EnB7n9(6L-Wp
zU|_wx9fI(M{#G<vryf4w^2(N`GOSnH9%7@yqTFZK>l@;|p&h}u&Bm~sLX0g&!X1(S
z82#!6GpGhpN_GDP-6J%F-g1Z4uNsK7Mlptn+Nho@=Oct+f}@^GsW}zTt&+iOSRK!~
z&EdkCalMGwXE}pqtObYSf&g{K@uH#cU57f}MlKh3mQ8wFKfZ)xJcq@er4|)VD10J?
zSz&9UH9tyxa=c-^LMozy^IN#iWyJQ=dKRl|u#5dcB#8PbvB}v~G}P5KxjB=Dd1uxy
zlv%5yehYna9)3DbjZAqflo{5@LjFUMWEG>S2ly~2*>)nn)Sg7`&<$#-#o{HXDXu}p
z#tLG^$k}^%HQ=gL@;F51zx<xJ#IxW9pi&3h(hfPL7aB1Swvq+u5>NGY>UrSKeT6Uz
z(`qhXxL;^0+!g8Cy7Xu?wS}`?x>nln|4LpICOt5Pk)4qE2)Eai<ms{kSqw)&4Z#gu
zf<bRa)r6gEy`$4Q%eGz7pNAb%J8MUg^>j}Z1P~~4d^Q}GZz9i?=Oh3g!dH-A9O$%(
zxn-xzTOd*>`8dU&PK3zs5s2^R9iS%~A@Ry&_mQy0x|1Vp`d(&Z*HLL(;Y+!>U>a?3
zu>c)Ew4kzXAsV;4vlIVu)cW68%1w2WmdR?s!hQK+EJAW#C{TfE0MNHKYp8m%OAF@8
z)MePnh$v5y;7)+rQfyto4K6*hKnv_n>{_#Ts+Kkvz&hCd74i(pDqPCdKKt5RcBcgr
zHx%Eg(v`CvD^pt%CG%kU?BK6EJ4LsI{v=J|(Z%tgaz$4;WSG(GxWaJ&v=K#dKNU3y
zjKO`Csi)yvWt+ofZE5<fGUgKWT#u{Tg$VbR_u8|e2eFTD5(5J1OsGA2ztD<FwIghy
zQkeSR17=H1M`8a1piFA*1)E|kxt$9yUx=9(4cJfSl$?f>w0W$UccaG-cM85T)9w$s
zcRT4|F?lZb7^A?cJv`5Nyal#rAGm7@YoY<1T0nQ%j{!G2r?rGFxM#VTl&~oW`fwp~
z6CuZzr?hIC4KaxJ&t>OxQt%ozk;pfqkt+4v0MU`9$GrNX(>IwblV`GI>G*B(`@9Op
z7n0q=ahvgIw}Jq}n^Toja65F|P*`p+=}Y9LvAX|~JUYE=_fl=!tx#dUc<XN|<_d)D
zM;GqV=dN}UROELW=$eF%9dGGM^neeOm=<!{J83_Ut~mQ%THsi_t;$5+m=4?)zU1ZX
zdWJWXIP$_#FXkcL5|)1!iB%?f6|&4by;7i_i|=A-N%nDf3cG4PNEMsKp$FwP@*hzL
zWK=a^ldH{=xGdFGp3a*F89r<2w+}y*zB2!>cHzS}JVp~^^E_ZHQpPcYQuOVRTM<rK
z>=VKY^D{U&w%{hQjFq7z+i!^CIfdaJq(DBX3HyY<c6M4xs`9;OKkJ4xt;{71oyy|V
znK3Ga4Ol9(u)t*FAc=N`r#m&Oj8l?qI!w1t_A%?6b`tutTnN8bG$wxGFfGws<QCk=
zZ;Z`CV=ht;mnk48(p<$1cB{60jQ6;KzKwc1i%+y9Hvk8)W&cemrKB}*6cKx+tpyYv
z`8;n4EPzJy;x+d{`(}>_O+D0jZ4NkUe9j&zIUklBv9PPgy=g@eVb6<+4Di`3dBO{H
zl<wf^gF88>w!HPc$970{Tm_S2OVO3ccuIEYF7L<0#Da9%8A`1%#Bl{P+bNYNzS?^!
zm_9LVl$Ej7CDophj}OQt57`@52E|7YBp_a(4xXDYt1hV3MC^E%f)Y4P>=L%zTj00o
z^SQ9MI~NCU^yt@dL-%8~C^fQFBL_B+&s{e%P)+(lxDThGSXveo2camjt39?mv;Rbl
z@CLOh<H2<FLgvtg^f;RB+cw_~c-e<xm%8@^4eW@oDbVJz1~HH(-@8z~0pVE=L^4q-
zGW~@MupVoQY}pO_m`NJUz#sJ}4-g)(gLdIr=z}NtyZidXd1rTaDuA@hEhR@-ok&~s
z!4crW(B6@-ev;fwDCe!;2{QE9PWeUQ293h4AX}jJ9ODsA@#rJ5dLBC&KF!Qfkp+fP
zUg&-)n0U0@Ri-<d`N(`T?j^G|U!*-B$_jWSp2%k>!JSyTDl%W;It^eC&PxN>CETVl
z;Vv}I<9B7scmAM5v8j6jU!JYT#6{shdF}=7iDLIWcA{7`HJSv6<}x-*0(g(}(HKXD
z=6vleV<icW$|LDWHqPpX_!k5y0UkU(JNl(ojin0BK{II}b5$9awww&FHTWvtFICJH
z>0mctpFc8RkFXUdGp&?l=Y^&k0qbi}VzeFS`1fx535rHY#B8H@pHwjqqapdkt5~RG
zX2#Pu;tH5hN6{m=C=aF#B=Z6j<QCWmkGi-gT3}p$94N{!dD#wGdc36ug0bXo9y(#j
z^NYREl8cU`o#ACNGacz-L+T~5mfE#gEy;G_(1N7~^`zLvo}ww~wWPr*fvh-C(Wxgu
z1=MoPI?J<Y0AP|$9wfyJ@|~%=2v2cqE=Z@f&{88{E%vzpP0ZOLbmRHBc0vQa#hHKU
zRFquPD4f{wEK{KFz&{}T#Pe*b;T;vScFJQxb{FbU)0lh|c?Uyxa2G=t=lKPW7H)Et
z<1}vp4de$jM_w8Wl?-p@oo)C(V)+gf-4G)bW{VugVk=Yia4+|g2i5(&H0Ab8cNJNb
z@E?r;9V}IlQ2^DI{NlOo>{JG+B`AS!oPL6{cSIWJV<x4l7a&v+s<`AwX^(w&NfUT(
zc3@HUU41J{AYWryap0fIpOxG6M~f!dQ~^H}F0<pE`YVd3G;m0l)GD<PU+Jzxg?5;%
z?LCWsdEUhJnt1zenl@c+G!XAY{t&;O2ikzi)9@7Z|I}?Bgq$o+Bj!VO!ODZ{M30H@
z;p9+i^%~%|tC|zD@=^FqHm^UP?mB_$UNu3zTPU{rxu1dl?y|f)o!rkNSw59$w{|dV
z_A*ZK*4sfHDOzJ?YY-?g#h(0^)k`}&7kR377zfN2i3#tl9WeLrlwXM{u|G<{nb_L`
zgj}n0<nI=K=NaWGGAk1&E&(So2AHYJ0*W?P0mM8G3Vl$>VQD!=8ylRp(g0;(T^>1p
z=oAkxv<w+Y;I+l$&1+Ci(d$5*qbJO1%lY6-r8=R<Q5qA$pteGihPDemctr_52}8Su
zMJ$-IY^~7mnn9EX?i1KK<%uX+vLGE(`ej2I!Ml?Pt~S@aW=TWtyz5MJ2l_#|u1J*Q
zI*%ULec>c9c?386EB$VNrQ;HKp0H1humG0?PvlX-+DD**5G=9TkI+M;)yMkX(b)}A
zcnx`9;#)vR*lb78q@Ltq3fz@&MX9@5xZbOw^!d>ACx#N;&$3C~yGE=UFLhAQ#{QQ~
zJKLm`4^xp@3;)Z5+Cn$4(6tb#XN#u7=AE5^yaLB81~>))3cgo*|C*Lld64@)+ZWOv
zg48`x=(c{*Z2ck*-?wIJ%-s#@y`<~*DD6NW_YSWhLB1dRoC(Vh*eHXgW-?!{PVtDU
zf8^%aBlJ=utN%qDoWki~(XKWLO)TKSl-*EQl>unr<dM0sM|WecOz)IWE4W1)pU;ut
zNM{XT6Km1|6R{nG7WZh^grV@49fX*(x8DMr_Kl&<vlyu}>IsRLZ>T|ax4HBB9q2=|
zTl?~u>L<}=!cpdQf{iM!n%TyR+erp%KRZ|q#1HKsDYoP66v9}U@$v(blX;QLKV6zb
zL@3VQh3KQ$xJPLTAXXFxdUs#9z-9~3sUSLt@+sOY9v??laH=43&>!dQ>Ent(9OIZL
zO0-v8P>d%G2&>F7>za^dN8g02enkI=dZ`%ZV+VRbP-b8}&5(MUr?}~@p)x`b1dueQ
zR+DvlT+S}(FP?ck9)W%MC{!2wMSzU6xx$0w#U#khu;@H~TDy3=aP8k0egs=^d14}u
zqAgkBDedfh%*&3aZ5!MrR0Ro^LRgszL;Dg!PVi890g2!$-GGg_<Jh!Ep*kRO=wu(L
zFrC+yKvSbSgD97wM71}aMe}e>T@{2D^`s9a&s_=e$Y_g%&Qgh&qlFvtV7U|>P=74!
z07KkErs!;eOa-@Dax;%)@3N%^Lak&%9T=LD4v>7pKe*(rNOpcq0$?tr*#U~wODQqb
zuJ@?C!aVjy+)iw|fjg@*alXtrTcl-K6wYd_%Z-J}4Y-6Y2v3^mLC%gJTyM~b5I}ty
zPeA_sW%(fyEQq6+qj`jf8mW^f(7b#K3)o5sMG&)e^A($8u?XyaCd8JZA<+jpCpW}?
z@k06i3`)SmvCq9g@;BmiYTQc-K)saR7CKbpPk=C60eS|&CJ<Xe2WcZ!w7D<uKL)Sk
zGok?VWLA%QikHj;71jA;a>VLZ?Bf~w6<xVH3zXc-9Ulh$Ro$>_C3CG0mx6MJDDU*O
zC2^Un1(BMPHA20>^b!K}e+jgZ$3K^d#m=^jD38gQ$pu?R3x$F@*dtjy&4$d>X;D`!
z-b|x?sP9JUAHrl-xsl8`UX20Gfp503sEeI-I*nNgo(MUOHtQ@xV$X?DxdAHR+iOS$
z@818>4uh}n&d7!CBFE--ml@zHzA?&pJ|jGJIPQ^;Q}h&hmppGVj;xM|Ubf1C=SwfJ
z%C<clS{T{}YM1;?A9PBjDP-l#2I7rg#|nwfMz-iG=gHbUBq?XdNL|t5E+Gc=_i&0>
z!-+8za%x>4U7&6&N|Izhpw0SqAzh{eJMdx0B|6}mE8M4dA}dgAL&$a%O}Q#);k|K%
zi_j@QwpKdLtGvhtL`R#g)D=f_<aL&QLJkR!Sb9fL-3HpZKE?_!S&tw-6#S>n?8#lN
zv1k}5n8;Kg@Rx0%aR-+WpO;D$?t#L&k*Y`4@dh?USxK@R=&0vE`6t*&lezo&OaUYw
zU&LI^2Nm~*Ff$(iPYp2wzZ<l+S6bX;PTfwdnB<VpYBIB_<bKB-MW%kUxXuXST3$(E
zW;$eXm~lIitLks?j`$7vx{t8d8iTc+-K_=eWW4J=Iqe%GR_L6MI|xFCgx_IFy9tnT
z71=LCa@Z@ni`|*LexJiKbS~&?KzXu96y#B+?~9+DEfc>Csa%gY)9PWWwxBg7IYKv&
zo>7xrJ8aXABG-0W&pCqLDw1kMJ^80_En@FD#f9mfyueBFF`KIF4^9PV34k~jJ8?np
z5$(#eMy1AIk`JegDaIq1s9)BUE>`Aux;$aof=5ao^-03Vziaj5<s9>`{eWU<kM?(2
z0{L0`pvM*=J}jvpsp8~|bR-bog{F{5i0!Jb%nvPWo^Fr8@5O%PLG78D=p(I<zw;0d
z_`6KL#+XOakegUHmvc~>0eXV+D0A$n)41e@wj?E^V;NAEEL8Z%tp2--KHNX6-UsdJ
z2XX`GH%q3MA>ZrjdaUQx2$k}Ej<7JA6IR=(m&*GuFcHwq3C|Q8iFT-gjXJKHM{;5Y
zJX)wzKzQ=h3u2lr1>r)67DbzH+AB}pUwbD;3`K95-ZQQti;>#$9t%;_Im2Wh5}Ht-
zw-NVpD@^Am;N(x;??};H@kpip`wY0wD`>8gY?I985906P^Dd+AoMadSk~R%*=bhw{
zSkg(6GH_XVIA7L&f}uJ35F)b<@zLga_Pm(=b6%LcwKb@#W@{zcj-exo;kk`eWwOkh
zuvhg#gpJfYYo$9jpf6*%pOx(ut_#5()x?$GWOOkJ8X*fz!e+@!p1s2g)B(DAcIvj!
z;4p9y@^O40NsQ<$`0M^Ch}MeN<W3wD)^LkAdAvAY5b*dsR!d@Y{n=31=bwR((o%*F
zot%^!^qKpm$X0ihwF*}K<m<I$>NYuXIk*_quD^=J^8^76Q)NGi2_A3>kCl%#t8NjZ
zc@p&L=obkwBj2S5ZzX8j+*q4^KSy@&C+=v|ByWjfCi6C>ZJ|CVxSj(#D?yb>-hcfO
zuo1fxxXalqB!%O}y5b&<!qLk^=3I2&YSP2I+iT>yK0$Be43kTMHyKF1VgFP=FWI*l
zlHc{&rHXs-v*=fnXr5B$S=qL~&H$vSuTWl+N>jt`&u_&86IvtPNpOyX^b<#8%DOWL
zptibpO55Hl^7xLq0otbCgv#9tR5hHj<c9E@;wigK`5{7HYFr6&04s;LJg#gH89ga%
zfptVr`3fblj_F)BGmvwX-H6Ut<Q$!#81i~Cuh@RnmNZD1EMYqoySM?w5vD%uMaXzA
zyI>k>kR9h!Ti*^;fN@8_9_;dlve=&77}$%6rT3k50j6sObCj(<Xp&36)wxT?)E7)k
zwx#;S;rB{z@jQ4nzufX;9J0(<`s~cb83JpXojEp;OR6180cbXJSabO$oR@GHQ<U{B
znwlqkt_~|;(|n&Z=6OS~j-~c6;jq5{N=AMF-M7R{XBv)qv2<4-+o11nVSRr{TB8RX
z5Vo*8mKP1NvT6UA{sWnJV+Qw=<5*=ru(lnDejA$`eqDr>jB;nc*l&)M{>P)A1s`lN
zyyEx`E!=));PNGj-u{_O1u)3FFqvM3OPJI?J(pfqzPh{RW#dcHyt;!6{MCXjIeu=I
z67R;-PTLE(bYSV%o>C1;*sTcL6<8kf!B9$Pzy)jlF#P8;GW~3F-f4mowd=-+x;s{B
zk<a4QyPjqPBfmEaYgnfNB0S)x?8X~X7hg3WMsfoKsK|ntRx{bL&S{TqveIc_4M60b
z)k^mv5%jTlzWj9ICbz}7aH~|Fbq3zf+47NGD7?}+y+!y+<r!Xk9%|=Ob#79!dR09S
zmXCIlMzZ2`GeaV>e?%WRk3BxS`0f2N7V=sa$wWUw2APh2*Y&3_T8%s##>g8CFy7Ni
zPCMmP#AC%d<46yg(=PdM{@NiU)^)mK6sKE2xK4Kww_ofj8d=3tP6~hX*Bw8rD#~VJ
z$2lMBY0fJ%$L~xal6bRgh(m-|Noj6xN4%13esIZum=kcJ@<>2Nkyz4L=bj6LG=^L1
z`d3<x6u<fsTKs6J2QI~E(jP97N<>ft`K%hXEo?PJ{iSntcHs!*1AY1!ZsM4;FrqIk
zMrud2A&Zq@@5Hf!fwFajF(#vHrlskraPX8U;2%E|$*Q6nP$|yTc|WQ%!VgOtB$V3o
zBa^5D&Tz+ON`a41ivPT;b21ekFa;0z0GGr>x?7G6Bp}UlrDMDzLwUHGER;wa%!3?l
zbhR<Rh=1@bj^+#*7ciR8=A4<r01K%uNcjAp^F+Xsh*xj@SO^&XkczV!IXq^jfdrz4
zW4xTIN?cn8EZbq^q@ODWF9N=uiOEV7Q!DoZ*TpJ^@}x(|<(RSnt-|-0noqq!ds%c1
z*<d1@2wr4%`gqlRULz1^&vDKw-l>fuQ0`JZQkTb>M7Z#inylO-Wg_GKg2(rUnkFv2
zDG!Zo^9fS7kWL#&O#ZaSAY`u=q<V;u#GjFcmbE#zNoi3Z5XgOMz#*c|;>FaMmmc(q
z`~dSDQGslKcvE#_9%ZNVo%AGgLzya(-kS%^!Z|qSvQ?7hS;NZv^GSsNHKxr70=Ob3
zVd;}|gg7AEpW%|&NXW5Ak2CpUP3TzxB}9xIuA7>Sgys?^9+k<Cu41n;dLsx>B0j|)
zGQ}*k5K4Q?8Ob+^<qRiqmxrN*+Vq`vx%vH`PH^EI0^HHtzsMvwP^wQ&s&6iAn_Pyk
zl1ro(6MKO>!h*GGz-H-Lv+gzjOCi)XA{lwm?apUESq4S6q=DO3Vhki{YO?gM+1c6a
zshPOy>P}8G%F63)m^^R23x<r4pCIB5LhAVM;hrlQr4d;M%c6xF?MK+^Wd<Rg!MtB;
zvXeyGKpv7?mchUh0WI<mx)%^TDgaJd?7mcVcNh}1ApDj$*t3snhel2O9?jx0%M7vi
z?a@3YG@J*U_}w;PO9UnjIs@}8)Q(z6Iitu|6I&$JQ)D$@s5*j5vKLtj^VDQVi9RDt
zUAQpNKr&ceY_3NUF20{IkT0pp(gp-&DLy&IeR)1^a(n4a(M4(UK430%CPXcS=R>sV
z&U1Nj9b*z|AU{IHj~VnadQAcQ?}Y3|0IaoOT?MW%{F+B-3z_B>#+ES30&@oG7^6|Z
z;|D<jtBk$=(gKn_^C<L#JrpFiiShn8g%b##FS7c0=n`l&0G}57CZ(QtaI<PTmJu>=
zRt;BlP;sFVxp{Iji(eHK&U?R7te`Ny$aGbsPrUfC@cDX@@`Qo;&2w9C?Q8v$?zTnE
zbm`BSj`qs9cE)q@53{>%rq;BnfsuUMXd^Q8viF!ur|3=mdh~4v(VG;;0TuDni50Wh
zu{{a(x%7XoJ2KrzbjM3G2IV7H9V;mLM=t+CDJ5)tp1$D@*XeF@|M05|7Lg_N;&60n
zdFku?=9_I3f|-HO3p%YH+SQ>CwEgDy_iW#ltYT(*CGm4tn&H9?cXf!H$5VILt)^1f
z>M`v`dpFkSz>zF-X|y&iO{#5gX8Pmp#hEil^FBwV(%WHgUthb{TlMp4bm6lExp^<z
z$K&GR3QHblzPTyqoMi;9ggsU5mv??yJN@Al-TLxHk2$k!t4iw{%SBn<?l;jPjGwpC
zn*G8ZD@gy_L-|J5r`I(k9R6&|fNUbWN#hs9I_fBOMYZfmKc@RQgVMgZs@%3q^$@u!
z53jM(58Jx9h0rWKH}>V|pHf?P)RTj<x}R4oDAqj2qT4e`lGCD@=S=++lT52SLI_IW
zT*&ggJd%8rarGrqh(`O$b6<B0Q#Q3XTQPF;_lx!uz{-@`d4pOPwyI@%{Jx$P_r^~<
zZsD}kk6qq@=RRa0(n3|*WGt(vHwsi?Uv4&DZN2%_xhMAhO2SzE&xPk-^e>s5{9sXe
zvzU&>-}1mmhke}=xeMa@BH)iDwb}CH>qC^I9KL?Ezu&tKRP_1thAVAMKh3oIsV9DZ
zv@~VLLPq(~Z}ZjK(d*?4?^8lP{@$?OK5jO5cXsW$Hlqt%sM^xxw?v14gLex3F8leq
zI{JQ(&mJ8$7(ABpnS6N!a^*N>j~4fxeH(5pAz&4!eg1&5s?nTnfZZ+LrqgZvWxGEt
z5jSv{1FjkeSQ%2c!&i#;QEKvY-yn%g3%{eT^xZn{yt6xD|HPrUyOB@tzxZMSzi2r&
zv-K4jS+O6+K$^f@M6drf``)JNruD!`rMn*Im%c|k;egx!Ah&~Q!31Tux!l*~fBv-d
z44)iYp_ScDHkEOy`-a|?{V+4#ucQj!!!^3~=fv5J&<|$PvDCMEFCSQZXneZGPwDKO
zU&525R8D7?EDvB^!5C(3OZCz;eRC=MdtMnsrTly5vn$W7IJ%nv)~jQPnf;8mUja63
z?gf@zXt-Mf12Pq_eP^N4KglvU%Mayq%hfMLKbC9EtSS26TLb#?)1SD{h2mK3fI7*^
zhBF+7xclx?ldjJZp3Tr{;YD(<-}P&S6_-N3pZe&3=>4zn*Mj}cR{lMG`<TPi+Zn9K
zcH!R!?z)rud(WB2;ps1XX3wferhoC6G}C^wmR{t<KWgH*z%<7A!&O+$0d1XT2h?2d
z(xgA@eq4)u?v}Qx;vqBl=lSLPxln60qFhU_dtq|Tf$N3vo45QNOFuWb|IhO&y8H8S
zrNSKarOSB}48e9Ao6k{}@85+v2f21P6+U;Be_$$`X>RsV4W%*9Z`yIxTwLc0SnZo4
z6ux<5Vp4eHt%D(=ZhNvMw2od?UTj$t!wb@?HJMRoyh;c)HIshX-IL9|_*vy)#Uxj$
zQD=`o>fNvzu3FOW)YbsBkv$D88-v&CJ}m4tH+!t6nO*w&qAJ$UhH&wW<@vkiWuJGS
zJ8wyMsMw88sQLNmNI+lvljoSjCea0%XRE=m>BmW%eRlT$ow}8PaekMa@jS~9(e>@w
zHX9_t?Pj(&>+@AM>R+A0$$+h8Spny<<(2tI%Wp6aD0!ERcbe(8Y-)UAMcOc9R<fV;
z=Qum-X87kbFZY)ZkUcN|I{mrcXSB&_LD{aN|Mb({(XTH_;|gRS{`EZdWWU^5gHU*q
z{a=KyPww8I2PYmDxIMh&&@2~>1-|=fwy2!HE%wjv@%*2(sKlnnDLba<I}S)r@2{&%
zont2KIY~F|L^O)6BJ|!+CVuR6@3u?Hayb(K7XGTf_PAKLQ2`t6_vwEHHF3{PogO^-
z#?lS@5a{4ctt<ar>^EuPJXfcjl5)igNTL5cY-N8a=xTVhzUaph<LYY8OWl*t&ZBSL
zNE~{VefZ7C2*i8GkG7sm51&UlR{PC5X>RkA?TMbXat;YPv~|wV^;U!S));%!w|_cT
z4~2RM9-n?U5mBV6nsG<?wE6s}I|%Ez=e1|@>+;MGwjWSNzy2|Dh;+#g&?Rh}zBdv}
zhyQQ&_THYr>Z&7@h4bcD-fn7h^SOyRd2w8Nt^9>Wn6!$gvD-K-OXXX4N<B;We|d>E
zoV^*}HFo$2pX)Uk;es!g3KE<XHSkI2M_OD`^^w?5+9^R}zP86!t5_FCPr4*4|37_Q
zXH-+$)}@G`G(n1Vq=<op4nc~DbP$jt9YTjt5_&I!QUgJ%(u-6T5C!Sw(lHe2#Q@R~
zk=~_z=icYN-_yanXPhKwCu7bv*IaAwB!Bi%U_qg!8A0n5bGmC^Nal$+?bUfi$Om&f
zq|~v7>gZDIpa(mJvTdj=#;VMO7~fH*{-RYHfpyKfQBT*X0bN;CrfZOLsNGwLJ$AmW
z<X~aNH@4^2;(#r%O}fSv>8Tg=9@JEB5!KXL=@i#ptds+>-Yz`j)#SptZ^6QAG?|OB
zw0xY1&;mKV6{6A^L#gG&>XGO17LgMl4GP;ziV|0%=yi2cX<xKdO!(@~>uRWkkw}`V
zm6UYG7^xMT(p4qxXv7$)77tVkzbbMMOw*7SL8#>yL{vLT{TQwuNlIPnLO6t8t18tJ
zT1#<)*kPkoP^CrXXRF?EgL9*rhVD%Ar61-yqKx?9pz_|rTyWsh+^ACOo4C>W_7YUZ
zO6?6pofk&TP+csyQfz5RPFyIg-t4Q3!%eALnu4W16axssl&1*XYOt#XxJ!EVVivQ>
zS)9l_%K|#O%0ToTIV`twRiCg6K$c8mSrC~?H`m@1VI)EKVWJ?(*ru%{KbmUd+Mn^2
z>EHq)%us#oY8U@2cHe3=gAgLg$`>MF1ZwQ5rjDmGxjFD82>Z;%p{<&))-3|fz>lc3
zQqWU9q%4yxNWHaIzln-us!A4gs-)sGtUvDF^|jQH;?`dyuzWRXUWdAF5Pytel3$9c
zdvI{;+jFvxr=y*-o%%y6AvJL#U7MRF`751m5-gFQnJ<OMvTi$eyDrQ==*f8F+?RXy
zhGc02%f~`mp>+-Y*_ML(rt6r)1Leb2NL4Ps|GeysJP-K{C-}hUb^Njdl;gb5%g`0G
z6bc);O-^m{3OW@hzqiXabjqq?@+R>)O@=j63IvCkv}(a~8Z^D`@dPxI_&wXr6KmkB
zfVLA^V6*r0>4H+iRU`c-zm_W6+N{S5)w@hu+ijTXy%XcSKAC3Ehf4h8$$X-Gl#l97
zZUdEiUnON1M#!CM6+zA#Yfex?ekaDtwU#GgtCZ-z-*-;BC|YO&UFm~@j$W%*><Qfv
z?SfOguV^=vS1;q_H@jodbai)qhivl4sG7z+;Tgszd2kek5Mzn-D#%mIR1;ofX?laP
zOgn6!KErj{DWOZkGM~C}FuN&l@lK)yaf*4C6uz>Ho+wbkb&>^|(2dKwX(<uW1@9^>
z&|hQxdN>XQ*yZ68ql~9SP)U~<ZZHVU_m)L+f??xnLIWIarR*~4V^_AdS;jxJtcGYX
zjQ4MRsKArE6s!WXqti^~%al5b&(%{{g}<(m9yuAR=1DQqGSs?ZxF!dmeJ&9_c5R7v
zNl#9??P`<69ckfWg=rXSkX>VP`6-%3sxu0#nD@#|)7;cNG_W1&8Q#Qk9MCyVXrUQ<
z|7GDsVo!1cu{d&#ixdGDMw>oQr6?36Ol$Sfc~>FU8f1t3hTP-i#H822sw3cxtLuKd
zDpt#%ujGP<UwZGDgezf4nr5kY+}~@BRap09TZ(9vy+&oX`|4uWy-eB4audVxXy`Qb
z+rFfy(jmE(oD9NVe_*j!Z?u>Peg<K74ma_wJcLj0Dla^$!h4Bxe^Ici;vI(-8EG~_
zj$@RU1{?9iARp7B;8ppQd1e<^EM|4V{fAXzD&v6`Yr8|1owoKI**y>h|6$$_!}l6h
zt{D&NjcW?dKcTB%7Q2`mn`%1o)&}hFX%&&onY_&Ne#s}b97gzRrAwflrmVjpB2K9H
zkZ0-;Q~p6oHAW~Ube}#U#op&AX;y~c|7P>h$C^;<#hh+QKE6q#b#fEO#qg1j@7`^W
z<j)^=ZvmU!x%#ec$)0ayG0=C*2C(|iv@(ySF(S>E)jYv#^;?<u^SregF-l04`uCd!
zYmAqG&FO@gH0P!&$iAyZMhSYXD5F{7TinAA)0h~QWaf>@=Ct){(any!4eH5n`XyYP
z?L1|99G%A#X%x0|#NR75{6W*+2L?bpI}{{xAnR`>E_jIKczZpQ^<!cZ=w>Ke<m9|#
zXsYE}zpAd{spF-E<%#1MOHu+}yEw+Et+cQXwH#w2CR+6#>UL!>YZK<Aw8+1!xp1hW
zKHnN*bP`;rR#MRlYjEMT?eN>Ao&2Ukv*F@rSLOm*al?9aMMJwn(ckUtziu&u!uD$s
z*fyqTgGQG*Drx#-O_?V)y2q1~2R8h^B?az2lH0{Bn*VVqV7!o-y7d}rS@J@3TyyX1
z)_Qr^zW7xRc93bX6~{!Kqdhi9bVOu0%(KmCDUw1&+@PKy2|84sy=~J`C%k1N&Z`z*
z@4{EyfM%nxbbcV{r=g)1<u}F#>P`WhD&OL~qap}eXOL5V!n8-@MWw1HXi75pJb%Dp
zrE3se8&1W*?2!YbjM6KbxjD)M+S{r7M6YUOnZ-w7kri+m9LtZt?^TUI3dP4m6E+4P
zZg5>P^x<P;g@qGGj1l0Ej-}(39>nAAS83ptcKYIurLp23w6;I~5tI1%yGg<0(*aM`
zzR!5U)n!tb<{BEVMV#MK$S%=f$J=gr@_4@7pn3ZN=!?HSE&ueD4=0<fW<E$>GoN8f
zyZO)KxEQ0SxML_oTnzr`y|tnG$BW&5&HLi!&3lr<W`1vIou%VQ#iq@O$FqtF*Z4dL
zjQe--OUFLqX+9UkJzBcYx>UuCiy;@cm=V7s2eT%ym}VuFn@S*&n+b}pJ-RVo<9~I{
zUxg~d*PqIxfytx1VMj&c(<m(ElHqxrLbI=ikQv!dux{YaHD{~=#mr@*iooX}v%2fF
zZe^loCwIYL&W;KW_h9!LQS@)?#p#`=mafX(>PeP9vDkd>RkWBYWL6)<$PY8TQgLLH
zk)DA6!LJkdN5;~<T_?=FHL2WtX~?#=220AfCokBqEqifndtq>QWMuB~3g~+zDr7uA
z89LpmdhGLj=0x7Mx!hGCkcmE`VTvW<tiiDP&`GuVa1pho7Sr6fLAPm(Vc&iHEnEw?
zle`_T1I38DleGSL%OU--cOM_GCSKh6q)o|YP&*$y(eC8FqOwgu*g3<VB?G5^kp1<e
z4TFI!4<fmlY4R7yNy46)cZ6@6tjOC=i0+#C5Q?*!iV#Iqt>gDG#0HC=JM!)mY}`xB
zWa<bQADf)-e|$n0)V$3excj1$Xs$T*yWT@wfv0QrNz8Vw<U4p<fef^Ets1*{1F>y*
z1IWWmJ<w11qchhpGxmF9rPE2OgC5iI&vajDyDJnMV1|%{kl$!(ByKxrGGn!ghzT^N
zvpd2qJLXx1-U%Mh`YNYtj$1R%V$X6UFota0&K*oHCf2~ta85{djKq&niU>Ykj`(zL
zus@_hxagy^KJw*;Jtjw2k2zEPr15c6Eq2_9#;`t%y5aMKGzMGPiXCJ}zp>F`CrPf6
zfa)7|0^j1G_X-TQnpG`da6PVjFqcirsGWn1CREzsCFN&wBLiK#wIXoj)uOw8g5&%>
zd*QbtSF9BSy(u0V+6c%eljWpTc9q>d&ef$W`O%`9s85UP9cLQgT!`v3&EoUh?kd){
zJyuXl<M&^E5qaIeQ6?@e$HzM758etA(#qIRZL?W=`plWyJW;K!cFI;AJ$!q;sFOES
z&soGje_}N@SiHhVg*wUE8_(X&>tf<Zfhxe<pxwpfq($9ub+CKPn&yn_$1*T)DH&(v
zvFen5^oOO(#2%<eSqwxm_;jnt<h9w9>_r2QU9?iC=)u!5kK{`f6BR}n<%V>`XNsC~
z8=i?SDgMvsE;XfZXq_>#F##=;9N=Vw29!t)GD-}ZfPhob_^%VVU|P<Zu8p0Fn`3h1
z+y6x7ceB8oy{g|yg01Pr+wV$Mw0=?0*32m?WI@BxCK&U9z1xKuSbPXI=+|Dk>BVv6
z*WAyq(-Pz6u4r{xdcss9WxZ*pSWd29UKOACM{y}rPG51DltBC9<tMWaJ)8P7f)sRN
zW(M%grh5NnQ@21(mPI(-hGnO7<K*>5zH2<M|Ij-hHzc+H@Z`0|?P5*ehvq&8>#Sv*
z^y~rY&YGg94o-KViq_!Cxf>IMQpRRqEk?$S>?M<Tnx@l?;*E3yKFqwRSZLg&A0N-@
zFsr!{F~v}8SY(&7-aBO>F6u?E8X3~E8AIR~@#4$6LLO5so29zS#@i%0bLB&f@8Z5?
z7~RMlk_kuM9AnzL2LdI{PMR9f;pfwrje2tTLSv&OCcdJByoas_oams8c4a(bczo+>
zD>g%$sz+S)dPhsO<E7#zc~Sln!%Gn)FJ9gvXObR-y0%1g&G(&bYfT9Tu-mBL5D)Cx
zeC9j&6y6y3vK-AUaEC*UN!pl89FA=>m+d^dg{Bv=UeK8t&S~w4*)3NeASmX&J;JHu
zP0+>@C?Sn2_UcWAw+`IE1rb`fctEK=%yrl!U(ysJksc?ZKQS_YA0syNbn`Sm<Bt|E
z%xl>n3c8C&1v=r$KJBY#p(Mkug}gRvM4Zf;)k4JD!;7O>!6s>*Z+R}3VWbD7%);Ie
z?NJba!8q0dXgwR<!<ic-gp)^_b!)3zaj5jJ23rj~0lj!VMq&JK)~1JOM72=|RR*$W
zc&jnv+xSC|r+Veu><6mvUbD|g>dcOCk#mLfhO1(_tW<f3mp{Czs9^K7D~$VknI=mA
z8X{Vo&5O7oNlrl_=uG)+oH%}SLcWw-@o6b}=TpI+nxdQCgO~i-TfJbne(Z3|wtFT^
zZ}*O@t!l=JxK&#$D<F^tQH5gL1lk(I2YT;O_vIyprKOFvYmSmR1WF=^;h1n5qe%jk
zQ_v&%!(7ff!+>z1la%`&nVKcuc1IP(F9i!$UI6<D5Jw9;agsv1V=EF@kZfVR`oue8
ztDsP7g4zAycww#JcP8x%J}Qoxd)btCHSey;2VH@NX}e-n6vBAFpXP}7kuG;YTgot6
z8QRrf9=YF1ReWSDHvCj;?+_&|Yj87VnrU^={6}9|TUf0lyhw~aKesWcSoKbm;O$8+
zxA;5673l{HE%hOr2_x7So*8LbW#QOo0p8X2Y_f8P;=PhN{y~RxyjVii3FkYc_7G%7
z5;aV!rV+C|T3UQLvwJly(SG5IbqFs@A0byd!`XBO;!)p5{5p67RPN*v&HZe1D>u`y
zy@y9%;VIHH3|QK}%-+fl3H6eb#>YU&_ntj;>xO`%K(QG!?T_$f#0c421n%#o@||QU
zm63`--izP1(iXn@Kw6kY`g&Ox1PnT$`hk*-(OY629&dRm;Ur?rE6{GOE;)KN$_b2>
zAfo<G1@lqn*Xg5n0~SB;E@qn2!htivAjdKLlzY)Lhrqu8%_{R&Cx6@i7J(dLf0&kt
zmyfT6pMsCh*lmX^6s24?P!9u^)MvQ~q34R#3l;^}C1o)lW=34}x`u{w#bo3`8Fwf_
z`b^hBlJjISyFJcL<r*eAb7i~VMwyt+6&7ideiX`Oz716mT3+szB_@(G39SpWwAy`f
z{h{}?CdA9a?jcFpraKh%pp*SXUV@ekvbVPK`T=vo=`0s?mg_2&TM>q~53=i)#=WhN
zNyaihF?m^5(mfyt+KOC-hxq74qldKo;*Leg1geSzPh^?Z(<%OdiuxP*x+Cl~iWWML
z-1@iEh8%VUqTffN2L-VeyX%|x=vT248sh0ny)C0(4PxTZm9RAxj(0>8cT&)s;S`w<
z*-7p0+xf`;h-|>Uks5Mx%p0V--;t;Rc^%#JA?_-Zo*_L^FF&NUHiUknGxVL_u%KI9
zCf@MTfHvvWfaJV0S*xN0eAeybkw_TVYQnh0^3KXF$^dJQ!n-CBe_&gZmr9P6tM?Qe
z3*V$Qu8XzGa+QW>pJX`M8Y=tD)>8%r=8;y)y@~>h-XF8gLoe_TZ?t-~m&kVYX`6Yh
z8c)8aW_0)@5O)9?c@nmA1)LtUrgTo`6{0!&kxGwX-=GZqkvb(=g#?-B%(mx1LZTf_
zr(G}Jv3Fk{&d(?<sM;|)(g(d3eN&nns_k|6vR1!x3;8@-R+65EuFlP(W?T7QbPnfz
z#M}CJ){M~=69S9c+{-#eY{EZ6c?CRrg`uwbTs&a^yR&>1t2-!&ZUbA4m7-LKeK#48
z47ak0vluVbkmk!Q*NQ8I$tdEODPbiD@yE1?eqFL6#A%W8?s5Gtft7a(|6SjtYo_aO
zp-VT8%?(T+A-sccz#DVjXg?Ttyr5nAU{kjA&e0=-miNh5W3moL{RXjXQ!a%`PxTma
zUm*;;(>F2H^DXCWa>Fg?Z*f8@#HzcFj3CMW?CsULO)pQvP{t^N<DjHO-9y4&o?=F-
zGdriV<`&>a+hrk}M9|w!wH%3B0y-vfQpfb7$K)_OSjzdi!}k-Jw1}5tfn#}<`F2J*
z@}CBIL@S3xBFtRg$>(Q_-KJ0+GIqME##X7q#YI68I``!Z2bv5`7UH}zC{N<v%@(0T
zsQF1g<jK~-a>K&(!TKcG-NQY<CfM}yfoWh9CYI+)eNwJx-fIRP2Q*T*6E<WUiOhU^
zI+A+S-vR><d9f^-RSvy>dP><w>0bhpDo<_B(|!Yfu5)!YQu(}mV6A7>+v7y5#3E2|
zfe=Mpl|0PRz8dd~m$&Y^=UZ|*7-G2g87tH@o9(cJhU-u9x+@Ev5)OF`9Nek3d0(lf
zw|eQ&HfQ7Ye%;6`f%BoHN!I*r=y%^@N1<1Hiu1O4VT2McQ$#@#yTZM_C#Mv}W#nDn
zylq)}CDh$Pyj&jm+Z%Y0qJ3x!^j5yFy6c%EZbOH^o7QRp-~9ZKGD>O1)3>aZHBGJL
zT$|q#^~m>X&=fpinBzGT55}k5Fv@jGD6@f+Ri<<*&ckj|l3Um8cB-dK#DY1;-Ksxh
zc6kF+R|+CO>}+-ma2^ep8f2N5#t)n~(p^cJA7t6cqD4=!H%d#sGFp%E<T^eGY1DFJ
zZPB2Ru2ejOEcQ!|Y4>lmybo|*n-=Kz7_*Hi8(NMXi}7hBr@z+Z1y-~_TH-wly3}Y=
zHuc`0h#~AmbaPe?ow)jmC83`1$iJ{=QgS4XxZfy{>F(pM^V~z98@6Z6(RJBD>4zyr
z-?0Q3a?fs;-S2J*M?AEU^X-5G^ojG;EU7`{?#^t+Jd4_Fm4@M&;!XCB0k26l)20%|
zip~Cnd0=n6$R-gfv)!p@*n7KDX)V$zOd^IXaSV?e2i~*WFTS=^kS6#bU7E@p9JSnZ
zmqkb&yELPJrgbfrwlat6>}$2{t{_g=IsQXcTs$g#Dx5!$#8fryzb<}0k^D2bhVxzK
z&%r|<0~xgkypC`SH@<&EQvZVF{s##W<>lwKg1fmx;0PP!zfxTOg~9|F!F<e}9RC$V
z@Czmw82ttz`YXp*G$>zx;KK>vLH`c~2PZE$4;cL?$KRCdDap$}`2URm!y}dm_PGKe
zh=B*&FFg9V|AWUJ=?rtU_Oy27b@z7volk~tJBJG&2WONJ2Z!kwzMTKXrzWo>BPXLH
z^E=gIkJjijJRBUgOE@@;zfj==CS91~17%rxb#3|InJPMy+uQ&aVn7tbe=$`A_X6)+
z$fPANtDz<LJ5m1qXr3)Vk}n{D;=hRUf_;ES`%iIUFgOD44ukPJ`}__!m;Fc-4A?*o
zxJ~v8Jcaycovl2aoUL6iz<x<knvMssq(r}C6#ylF^@t<V-0DKClI~IK1R#46s5I#>
zaW7r}iM4ihMP3w^@Q3of96;-H%iqHi(fouuo4dMQ7&edTrhztKa1_v>zot9F@e}K6
z{XZmAfa-CA0o++34i4bWKSy4$4)|}$PH=bk3j@piNY3U5@+H0cdtf}ppI~>SgEhkK
z0-rhgS7SgxuUrS5x%N-kKPQ%{@=vTK(#aWlamt*x>Aju+6{6<<9bKvR6a6p!5j)M0
zP7dgf0qXRtVK%ydC+%sCaKA`*r;@QiC=eOU{(Iyc{hwG@Yd55$=Y@_L)5}ht1KmXo
zc>QaK=$QYV^`AX<fnhL7$B_hJ#>)e4QT}3BAkZ^^H74K{+}siFdtvB_z)tWwAX=mA
z_e#sy{*AXZM<6Z)iz76BEr3eRAc2bg65JT|w{9fD&E3_*(*45zt|SS06AmPv4b13Y
z6W_@ENq|6FSzqM1VyU>fH!zbC(BEU{WdDS^S~~-#0~Nba{Cc5YW0Lh1oVPrzIH3O$
z|2<gc%};{AmK0t~XCHSvBmyFI2jVRz3KJEEIKmMg-Vj@a2d^9Qp(?>&Uo?!sDtQiE
L-J%5A9_Rl6gkq@V

literal 0
HcmV?d00001

diff --git a/salt/sensoroni/files/analyzers/spamhaus/source-packages/dnspython-2.3.0-py3-none-any.whl b/salt/sensoroni/files/analyzers/spamhaus/source-packages/dnspython-2.3.0-py3-none-any.whl
new file mode 100644
index 0000000000000000000000000000000000000000..24dacf04a1ca715b37f4f17aa2fb8c2b2942f600
GIT binary patch
literal 283679
zcmZ6yQ+Os!)GYeOwv&l%+qP}nwr$(CZB1-z;$&jmXa4=1bN2rBMc?#wRdrXbRSMD|
zpr`-<0P^1<1f=|EY4U*p0Jh)&0K&f;6FX;meSJ$iOBa28ItNc(mEHJk4n)6`dQ4M&
zFJxU;Z&i8U4hVV<DC9s|vf8R8N~ZzI8nEe2Gxw$b?@^NdvE#sLpS-uf*>?lDpjEuq
zo;;ebh@U`)#+%K&mEd=yR-HFBi=z<4puZIbP{j5NSTyeJ1aS$BfK-|gW0CUQU-+Bm
z^7+2rknsKAW<UStAs{4FXtC*D2`{6*?BJU5Lg`8ylc=>qa}oPcB#eh^rQQep^iUS2
z{4Ej>;FSas!@a~=E8<UCC6KR-szZ-GURC7G?BNvNI#a^}vR}*tFuv4t!9dtRdCCbz
ze__RCv8$!<Ew*U&PAa8nglqd4MD}{2^_EFH$2P4y>vyg##=+^tC4{!u?qQpN^i=88
zq5fU8>nj^rH2qFCL4|;n*L)|2wuFQkn%4(N3P~)=rr59}9)uVp+hQhgfXhrsB#EaG
z&dpKi3yZ0fz!1tOqIZhzkVLc_rqsOmSUjMLYZy+4yF{YmWPw?OjvJ$jzt#8MGfkpQ
zuJbAtKo{^^B!OsiXJuE2M@<Rf8ADI82xBLG0zZocNBrianzcwcd?I6~o*|HMbndfH
zgf=E1!D({BZsL17?@C)GF{ezMZeVPSbzU1_l4eINpSBF6E!GG+`b~Oxq(J+?7=NI`
zOrA+1r;s3Sd2rC^kcU)GR9MZSwLnrp$9i@6z%o2Q+fDW=&=k>`b;c%+JuUC8WFmPQ
z+MM6jEu^w&U4R8|DD1U!{E2?eYu~7mGR%!e2FtFaI=4u4?b(fcJ!%KxKg^G}XFoX8
zN%`F4fiBy5OTI2m{^%KIVW{#%^$7QyN(|L`E>GLgF2UpV-L&D(r{RuwYzFVoi%`oo
zSQk)u6n?mY=34IYhZL*;@ufj~y*}CVTDC5X@vEbRr3Y`bv?eTSELAx33Ob5CTVT2z
zeC@eq3SH+hb9qGvBlGW=DDPcaOMt`etKfVwe|{7CDJG+>;0076lGeS|V;D&Ft=#cV
z;=}>O*sT$lrS*}c6+g`94hykKwc^XARX6$vCMahp%4#)rSg2RBSA;J=Y>=Pv^m3l6
z!+_xP+IRg4Zc7!A`sw#1T$5dDn}c&_;P&<Tp4Tw0AG&_W3%<gCsD`oBqiO^U04zcP
z0RKb4|3x)JXHPq0BST|rQ#+G?e5+L*wA*5U?fsyRcwPhuG8lvd0eNX|0)d6;baf9-
z%Fw8!@kH5W`F>GMY5$_fZ88%Kpg?|`etD(PAEs*YZrjq@Gh+?r#^35)9=zzoXp_$c
zjdP9=xqUKp?f2^mmo-52LW9Kd@X!ft4)ZA~>Ik!MjV;gz-Q_e#B^oIWDJNk4-OC=(
z2P{(!HZV3qUg3z$uTJ1gry;2@*zFrXPwt+GE~<zb&N!sytj1}s8Q@2?DWIukUrJ+7
z)H(A@BEHikDmQt{^_FF-@GO}K{SeT>8$~Zx;K^ScN03os{6oH|cz)55r>;ENSK8wx
zxOS$53CCOLiAUHz$x!@g1gG&@#}$V}M^SFiC<<(%#A6Gh490rak4aFPP)~&UXpqg;
z5U{*FFk4mHQXB>~@?JZHIaRjgB5KJR-qVQsAyDC?^N5Dv5gx`5zMViiz}gbC1)jbK
zl5s1<vu~*r!Gd;{Qlg!d7QxHrAHu9<+68|<-x8NaV(mKj>lIXNd6I63qq_B{HoHSO
zw{C}4vvR{e_C~>BYTcyP{(kP#c1C{s4>-=nvvh-A*-~1(%j~_86opkcDJ(-bwrSm#
zB5iRSlwRk0*s{b8QpQA&4F?N|M+^Tc{+(Z@!t#jul=C!PE;o@oVSaR{&n(LG%XQwP
zE8DT^Nxtv;TeYPt9G@~)vzR!120jmmR{8i&N4VxO!T$3wM~SiU7n<MtuS{bnrV7T5
z*oD+#Z8I;Snw%*v5lJ8M@)LG)r24Qs$@n`HB~vdn|C<`U6#Ix*FkLTixjzRHn}z*s
zy0Ba`=BoE7|HY)U95S017yv-<50DuD!K9_V{{Mz$uZFb!A2!6kn|gvHVG@@{iLLBF
z-jX;)OxtZD_)TF&NFB=~Qkg_(NzY>Rw;SA~A`xD<LvTT`^)wCyc=JBbdG#YPwp^ol
zapA@6m>#sQvuQ<W9SpHXVe67b?INJ@Id}H<7lihbq$tc+i-?->?P0k68bG08vt&}p
zxg4s@!KR?%N+JU7p8YmktP1#9HeB@;^+J;eFiM|SW8nH(U?ZwmI`?~EQ3QoCun$cE
zqfFF{Su%5Oe#YxJcT+pG8(cZKZ0&@fJhJ$}Han>bi9cv^wHhQDo->_kve_C=P`qNU
ze`7rG5*3on7Om;8^7eop#vM(E>J*i=5S>J^g|RF>6hcYDd_i3$*f|0jh3*a194p!T
z_T_nT(Tm*_mZpS1TYu#em<MI@%CS9CW7)RmaurdFEp%JRUz7$?stP>nQffdP=QSk=
z3mRspt+j%bdr5<vq`P5nirbpndB?s2c!f7EnlH44rj$gXHCdZuqmaMM%Bs7OuVjfE
zM>5?u!J%BHWV6J$O^bC64w>1ZgEMsFHq=`k1Z=I?^<n|(o4-fD=EC-#9k8^y=ZqK5
z11=3Um#zVCkwk2aPfAw1r-2{`5i0~+0Yp5a{S4>%B>FkzY7+^x=`IM1zDnSkFL~F>
z&Rt-p*k!3C4&}Y8Un1NNa8t<pw6NfCP`~b923NXV6erx2!!Bj~>?K95N4qJo+9Oo-
zQ4RpDa1|_Da6@`D-jX|V8bNkPko9;t#wDy-_9pf_XA%oV$SsCJTKHo7eHp6iZk6V)
zwxlfx_20i9-)Atk%pL|D5aXz`v+<h>_yf%R=?TuSjN^r<9AGKrrjby47FRD(uEuda
zk?%!d@qjt-b3{)E@gidFTF)YObS!zgg@9NS)M>R~E#3HV5fuxjS%i$S47{{1Fa~2_
z{5ek^A@j=XO|>WL#s|}k*D(Gh77lqh?9{5{vl@@mv5cPh0AaJhKABTR;@JUG3Z8`e
z+C9O^*8KPn*v(`~mq;YYt*fq<?~kj3U6`I<A%ge$^$Cpb-|hwOAl{@DGNPlf6rAhd
zqylEkR(!A<j3jR9m5bIwMShypKp19|i5jL0C6a%Z%#WsBFCb$=rD;})W{3ppNS@4*
z-ygC)`8)V4SDXy{9|*2!;Su3lOr^NF$?%#+IXaniADe%eOg75}LwpVW9{>709dQ)9
zlQR3=QZ^)^@{&%5!*qw?NHVc^l*uQ2XiIQK?zp`cEp#8V=z<(ZRf~MAF-liMuWxy=
z(TQDIia|Y$xTsp^9saVoQFn%>fOYWuJu#ohUL-d*Y%w;E_9p>T&frG)`%ibczP;b%
z?)U5U41Jt&hhQz7<jdlp6}WJ0dnyGk&@vRZ50ZtyzZjzSvFC3pB%4wS*A2EoFYF@~
zl7!i1fT=${>i9D#jwR(Ijr-PDyLRlzogYcVWpo>uJT{EZ7uTrZb$vRX2>5U&LNvQ9
z9ILnJG<XuyF8ZQwj5Wf>f)~E@kkOWrW1H0reR)cA@A5DlH<+^xEL-`4<3gkKZ!d;F
z+}oYU>JFd097Cw@zavC^Q)uZ&sD<NNECCR*G~q{}B^*L`CJ>C-s~XVK(VmmswxK4b
za*$1ErD`z4UM((}!=E=P?S1QIj7<yN_*!L%6>erLb>a{K<jVYIZKUQPYJX|X8|^!q
zBzScAb|BJYo+D-6AD;B5I_5n4c!z^o&GA=qUCUthn&(6To8ePIPVs}zuWoJARevtM
zDN|_E-zVRJedI^!*~K;-VtJ2DQ|T>7G`e}<C4~A2RSy>T@)HpAN4-*O*>2tfMu4*X
ziUzfU@(S*J?Y$VEr$M$R{f&zJ=|KVcmRZ8Y>z^?Hm1}`i-r$sfzx6XX008a(lWSvF
zr~iocmHJ$K4jXFUgStjDhJv}I7jC35H+PkqCA$(?JB1LQ$Fv3`TjPwKMaoZa8>0aT
z_l%m9T<$Qi-|oZ5+lIaUKV0MzoJ0%V@d>)iu;q3+l&xhVA1zbS9idAC9#6i$Zyk6F
zqF_q)qJ?^dUdDKfN&sYpQEb_=3(!MIX}Hw$U)AkeZpa!gr_M0%^)}gIFr|))B32Jk
zB=mfN*nKr#w~5by5W9qP>~%sXGo677eWuL6t2<EE1k}DjK9mKDA<X`X47T)9QWXk%
zhu5H;M69=JBiEUiL?!+uLUx5eZ2Uk~Xw#mn-bsg2ftaqes1+fhi$hC~g{8|SnkP(h
zEz<04t>i%QBCd*Zl~y>=6gb;*l>U>HJis%Kn$QVM?TE#jE-4JH!la3>B7`Uf#LH60
zwQexKX@^@!MZrdtinwcTHTT{vl5yyDVSwm}*-SYNMUFjb0@bwD`%IwK(lyM9CCPI{
zOVH||u9Be2SHd^VgfTQMcX>wBmh&jCX?S%THqT8fA&1M#v{6^B7k!D&oqF4v7x&0z
zQf`#aW$0t%fFNZ^LUhym+(&_NW}W`#71J>CZbSOi-N7@)L4QL66MCsVg_n7+FadRR
zWN7V3g`zDFERT6cfuhEz?ma2M-?M+t_sBfAl-@{>()i&#PX*CXq#F=F3TwTt4kvX!
zW2t};$o$N`I2gWXzn-?%!d`x~V=qid^cF7?^2_t+e<E+zE>I#qgZ>J=_KtPRSPXFH
z&oCR!VSH@vnrOM5E1CLHd8=1>>pl4mEuHh5cpOdmOQ9*#TjNkZ;pO=-fNG1<ai?1_
z3(7>x5>%bX`$||#QQ&zXGyI+|KGUSat%HhmCfbi8Lt5Yzhp6A7Ql=$uIa*VmHn^Mu
zXTr~?+dp~t>+ZU}e`qxIo#%Fp<|U$$+t_Bnw?ML>LImTQWs{9kBdVtHQN)Ecyp!y@
zQ9JjT<WCPdI2Y{adhK=!3`*V9*iPOQ?cJ&cH%{153G|~BSNzQ`?%%hbq(HyzSzE3%
zYe`6F#F&JO><n;70(#!|%QUZIK38AjTks4^0r1cX-ySWg`bz$u?~X6^>H0YXmu7Rl
zVSbRTpxK@m^8x0h>ArNS2`y>R^p+g_9R!{2wJwjppkem}pcsZ(Y_!fl=K^P5;I{Mh
z6`Si~?_4d*?K4l74vyT)0i)ZxUh8XxhFu&dxcRg$prSv3|I#=V%zGv6AB}UM{tp^k
z+S<Ch7#i7_>KnUw{Idcx|E$0v8)EMTb=f_klK~`{7li_WC=fdsa7(Yr0$x<;fCO<g
zPSkReO3(KPUs4mvmTdbNG$av1IJ5oEG>@%?eOPj8_^fi{?&91g9QiI5T=%nDU(Ak1
zJMoxIKi?I;zrSC}s>c22NV4VGnWwzeY7MUWMi`&VV&Wyl2(LALj|hRsTb$vQIK3XK
z@^EV-u;ax2iK3Pp%kk$O5Mv*8|8C+u9AQc_1g*9v%+*SymvQDVx+oBo_6BK_LgTS4
zuRE%zKr7N5<8TJ?Gj69zkM<I}$h^;7;=-IlHIBKqX{J5aRpr<q#g*)aYnvp4VC#HS
zO;XoT{<G>Ryw$p6zTO`~n?!ZzvQ+;*;gMR*RR347NY7{oBr;Wb^A~)kq2!Y{n?gOm
zM6MMOZ**L?M{-C5{*_}{leCY){CTjG;E_m_WAO%?$J}zc9>#H=#M{d3%X_EDl@Q3l
zlUx0Qy|g$Vb7MC#2$v#7l3!=ysw0=Gt-&{_RHW4-rwMR)u{9vd0S~~!O9ZQp$*$t!
z%v3!P=M!*6f0<O-Ai%mu*fs{V8k!N-tE(JpHgPQ%9^!UFusyRaU=RZ8Dd-U{qirz>
zYz5G-Y4i3Qg@8}Pmj>cju~}w&e1!59!MhbAaKhJrGFgP4Fh>}c-`wCwPXC%3=$L5R
zOtD_F?ztMmRc8-<&!N$J5G%<z))@2NFJfG&2yragI?`VP-8=gKc){9Nzk^TNFUG*b
z>90ZUMD4w;wc}%G?BvlY+A>&6jhtb$;)fPF2f(y%eLgr+vl8iq>VgE)08L^YFLQ2(
ztp>60i%&Ufk;hV)Q&U9rrQJy%PX1n&QBkaBMk<_`njG_WAD`D&R)uMS<IU!)ahwtS
zBG6A0bslo+mJm#d($zSSCl&!HMH~YoUy}DSAyf<0Do*|iRtk%5E`eM1P{vW6t%Dk`
z@mRCf!?#~!hLJIp3L1{P?|^{M2GreOk#11_cKWtU8!??IaYPN#=)82ZV}H~}ol`g%
zvP){XHIyXr$qn4YM@Ey5cWYs>mxLgV6@uxto<@DCF@N2pG+ZigFviK5W=~gsLD+Qn
z^Xn=)I$$`HpfW&Ce0jP0q=Dhp?a@q(rq;JTlMV6@?HSN3`ZPaHzf}j?p*Ku!BaD-_
zLdrTU&{woOWO*#ZQk@_6%o-|Qx&*6#oY4R3aeIda>T=SNS(~NYo_w<DK#T<(+y9ry
zC})s+z@Pwt^1tZp|F`rm|9y@})TQnJ@wo3o9dUL<2-kKF+{Xg99kOc%_~K7gsDLza
zwnmhSB$a0CssByFa<CVN#OAgdg!bQQ2fbY$AK~XFD^zZMSj`(_CvumSjA&F3x)`JK
zO^H%=5s-wJmyhA$I|1m*h(P+V@t{BWFCopaAz>6+wQ3YZP%E+H<6qqf5?qv3*!SLW
zuay^7Ns|QHsEvz#$h6IK23`7UTt4zVnF%;XS<r1ExuGia(kDXXl}m0#;}rJ^0DYzk
z*kmFe6W~@+MR+ht>CGGh)*4XFY}XH5d*UDjY6<T>|1I&r%GBGi)O#o;N+m5!h29!t
zusTCBmSz^u3eI-MQGq&Rmb1~3r;@$MOfo4>cGr=>ORr`Wx_o7L`2ppu6X+H>+-S5~
z?Aefwq#R4Hg9haQydnj^XtTgBv=)&*ibEA^CviAlYArlnhc)M=QCM3MopB|y49TTd
za6OyNqmkg|41*Z499W+?VoHk%4-^C+ik)M(HNyc#UY8oW*fh)yE3ZC<=0RiIi~_cD
z9H!ZH-@MGuo}3j)rBh~8G8Qt+)Y)aYGU`c|n7dS-wn;HAt(orU?(z}znbe|_B)iB2
z5@8Zbq1TO+e$|<7EsBDT5wklr9IFCQLq6HyVghff6q;_42L3%9QIq))E<KE}$dlRq
z_Re(2%E34EAnJxm=HJSl%o)%Enl19B+7QFiLf56$G+P(-=beXr^Ksz0y?SPZZ(fOS
zn}ff&?WUR5y7MWXGb}B5h*y*SGk?!WZW%e#8x!e8qJHXB2~NIMK=w0D=5W?sD^*XN
zzt$_56@JmejCY4=1?)G>FA|;o&=qz1K3=u{j>2P)7KE&4k2;VFJY>I8>Q(XC20PsF
zJf8H|?9-okFWC7he1gF}6yL>0&k~h}djAbmJ5g&`Z7C!5zA-fKTC51N4too^LtDPx
z6_zX|N$kEGPSZMR@IoLufEF_YRXY6ms$!jI=7*G}B(QHIL$8E$VIu(Noo}l<T(|C5
zYuTO8fzWe2_`TpN?0smEXEnOfEa8Y37q463gG)*twsD@;+Iq5MfO+WQm&_h^*%eF9
z>9_uqgon?M=lAMbxBpaYZiND_EMNxSEats5&bI45UTDp~ReEevBJ<MB&f}VEqhhGu
z)BEvuxV(YhoLs9CZu&HO`*h~oaf|V8h@)qX&;Ry^Blp-k;F#x+-nHTi1G%iC%ShGX
z$7+e_UqJ&Dt)|SC-$yS8rgxW*SDrU{=qAY<jlVfZL%8oU@oGiu<ic0XxPIZ6bkZXY
zyA28YDM(d04yd(S{HO`-00-BMyO(HiwtQ~v|E*t{!g;lM+6Sn1<L>EG$1oi?bDn?1
z9bS4C^#lD^GsYa*Zt?zUMhFZ5fb#$T;s37`FjsBMZc7Z&_e34`G+c_Zv_&8vv?73d
zD>PsLtVo<VLG4IEFXWG@d%EK~!OzYH4t>%kU?F<uSZ6MW`47(ec$xC&qm4mZ=5X%3
zta)B(fwLhhf14OpZlG8Q!q&{!;WeIA<-ndgNK?p_9SGW-qJ>P7(ge25nu8;-9=j4&
z$6=>r(yany@9%m}wlL{L683o)Gz>E^u(eB#{VufHQKS7CVV;W?^DdOP#N&KLRK`ad
zp!X{h+^p#@|1nr@O11boH?jT4BYJ!?>AwJWf}?&LFa-b4XKn#krYGg4-u#q1OC5?R
zYu9TS8cpp?-x>$FcqK%FJAwLNi1M2iG=G0Y)OP!}_S#iR^#x$`(sV|zV?v0<459)$
z+0Zx3RAZMbl6w<APTRsD)HVo7JV#o>w4>J{{8VII;}?0x)lgrgBw4d%3_ZnBVi6uv
zK`IFSql9G#p+3sYf>t_!tqkF#`HeAlh-H`h6RrHj=HdSK9H}&AZ!{+fwP6b-m>yj2
zZfM*v88~n#3=9)G_dPEsO@8C!0@!MmC}dVTA5tVJmH8)F?6*M}hIm}xP8qwb44?yj
z4SSj}!<O-}$WJZ!%(U6jR#7(wfqP0A=A-6>`XVrg(|<qBuQIV+e(Nc%$J-NX7kdW6
z5K~TI)G&pHkYoJD_6oH!1nEWuG52btfpUX*`J<^|I>xy9Tt44YMbDhoX|;9%STx{W
z+}-Jm%1qiZsyG<3z!KwqSTSIgJ0f@BP4<2nRzay|cOC)KpF`jIX4uW#78Q#nPNCH#
z(-|ZvVzLFphv(h+P}#Ma*;U4G!oNu7ZEeDrzp_ctbCX+UE@w^>uW!^gZm|1fN0A_*
zf|8#@(V;OfltpFt@r}PZE%)PaS+LT=r9*Hb(DdMa=n$ZVZX24$_eY~jpJG(Cf*ut+
z$Xwt+QBSp=E>~hc5&uXA((+GQ^vq{XmydoG4r6i1g4?gz@Jc(~io!0W{Gc^~LdnyG
z<)D407wSo8YkX|j7^fO1oHllUv@&bgzP@qtQTX;(M#y=163P9wf_zASt~>an7t^?e
z&IB!mIh=V=nC{`{DzqSr_WBYVF^3q$OHtprl`%C;y+iqdBxtB)HC%Yk$`nvepVisE
zjb`?Kt3i%Q7UB`dVa<^rXLsDgH2S|4tjF47-&)9drJd`0C*Ttv)Th+0VcUq>oo4sX
z>0a)=<ps~RZ=%7Z@d;ICXuhr=eV02EXAwP?vda={B0@oyC+-|NV5!ejFy!fY^uPSK
zbIGl-NpVIp1t&+rmSxtj1Ykn@zPFs3YC7oSU~DUpX)d4dG@`%#N;)kwd*@E4)3w@&
z+UEu?Wu@b(Azx^O7%2)0w`j_zMqN;HsXR?qjvFq!soVP>te1E^tq*=c{wpV8Vdfts
z=m0>c5deVnf69rYtErRcKOb?WW9z)t*7SX?A2^90cSOxBm-YAAqmHY1)2XPEwlwL_
zj+|XsAm#W$2oYLPQ}M)6|L!)J05HkZLC;gm2?KK?6flfI;I^+D#t|X6blL?=Pp)~5
z=c>_3qfTA3C$g|-PU-#(m9)}^nG&Si2LA=zC@-6|Qd;B-mb6(7KcBH8W`ssmaPTm4
zBRM(wE<Qh}=jX0X0?m*|t3|WlFAs=tg@;lJjKUPc#}rZ<QqgR%`HmU%36`8e`uK7i
zY$;ao!6r|NOc}EcUU@KHSY{}fGRX$52#!Onq@lt)kD0V;mrRMl>tUPO0$BfK)loAB
zxB_O3$_~xut(39MjJCjOCfVzu$_ycXp5UK?=<Fl8`Hba|1Cn4*r8$-~Q%0aC$co!z
zrQ4KH#zVyrTVcW#7jk+p8=jtw&mG*S0L#l`i&yQR9`{-7ZN@+B8tx9W;KSA5d+$-X
zAnNqpU)78kdU{M2Oy}@qUpttmpF8<I2E{uM*QYtMVFKtDXf6=u>1!ungU(iK{a&6M
z;doKcHXcAEbza5)vYGj>PXCSkPeES&NAlnuk4qpZOt6cuRUDc1SFj|;;P*}loPv)B
z(|BE2ae*@K*Wg(F=h^q|DYh7oW$x^Od-!SnVI*#xA-lIHYzaYJx1HW|zA?s_ipstb
z%HC7CQQ=c3P!t?}eK`kUjN*N??q6|^)0bX<g6X=F>Da($2Q9{IE!IHl;vB}ef#6SV
z7V+U5_*{6fTpdw^cOIs`A9nU?!ezr%{F#0Uj$Aa_&6{m2`p5Xf*OLo?Zz4oeC}2IJ
z${ujh5ypg!&f@@~)OCrx4C#X1>=i6n$ap-Wv$L6>1T#v=dyy+4Od`OWSvDDLcwvpU
z)9BD7vlwq<K7V*(nhdm&UK``JZkV*j2vF1+ckpw}v)Xr{&gErw14K}d7@+NCB4vWw
ziKcFvT+oi(H9HVF3oU7Q>DC+_h6_b`TBk-n1m+nohZyKi4}7Nsvt0WTmF~66Pq(T5
zB_1piWpbe|lgxM`I+IeA4C9qqffZ7C^A)Htjmz!j1|6Ilq6?V^GKvq|QYF^P#hwFu
z_rWHOpeqN&#wOaSv>xcwp^xQ4W`;6SqP%aJ^5Q~tC<-oB0+SM7j=tab&}3y$({H)A
zCz@?O`g9&e(BKnqx1x6^^;f~@HIvhJo>KBp29=<$)aPy4Dt|&Z-Us4~U|%3Ej-n4m
zCwlQCxsl#{xMU4EeX5)s92n39^vJ4N5UXk?%nJ-uYuSeFw5sIi;Xi39IN2a_$0D$m
z;WW#hiD8M*HmG6^9~mi@G7E*XkR&aID$4AU75X*gWh*LRR2r(zTOMIusM#p<GEbOS
z&rWf#UFko+3)mg0_f0EYG!B0k`@@yTMX)7!wWY3}S!Twdu7Fb_44%R!)${|*3N?|J
z^s>k-omVwR><^FlW+P``iDFhSLGpcVTAZY^+GX7x;j47Dq7BqAUl=hv%RKsFm0Mj0
zS+?C9;`H=0yziFx`PLa~E@z>j4elk@hJUhB9qC@ZtGV4`Xg4oSUIHW?u;8_WPT#A~
zl%PoKCM-p{Jx>ad2ejx%TTG<9t_PL!slHw(7X@}w-))<-UCEBDRX37Olo#8rLcr*q
zW<IRYNqM~C9!3j;T$&E^Q<(hFMhgm8j9KXwPK}p&q^2%_3O2<7gy}?(=7a{&^N426
zxC-6GJ>0-Z|7H=F85h~?WpK0V?S+}Wp20>XkSTw^|H@{E8N@<v*idLr69ldHB0GaJ
zSvJWC!;eSr;Q<qwA0m?i0$7w=sk}z5TWnq+8)f=cB3T-+1P48Mi4UqWk(hR50(Zwr
zhyai{2|#S!`Qd{(6%J+YJX5sj$$*C<%5Een^m07ouS`)UxqGn}L)1!5&_SxuD3sIL
z&1rWYEhH@+NW9@3qO2Z6@H&kQhF%K>sLIij$sa;2O&Zg%LZLJkZ5nW2Xf7ULH_4eu
zBuOwTc}$b$bpzVHP%Y>^Mq2iy36@XP^DxjQo8KVBdxfyZnRgtBvVWLt)tUvhLUoLA
z*DqfWO(XsB%fx0I5tOJ{xd_6T{N{wgIC*$QxART8FItu4I!i0CYEO8aT12RTk%D|b
zQAPL1{pkJ{fI<`Qs$(HW+aHpICjOom04>;;ADkscTJGFS6ogRNl2^vh0ewv*s;+)e
z3$RAo)#@b#_c5JMWe@mSJ~w6RdGbTLSi6=`0umx+2G9nIid6Decr00P5QpJni7gwt
z(vZ;lAq$tP{<5I!Sdl;iUUOPuNA9V4hqS+=FTNe!tInlcD`&=>Kg<60+w)n?qIZIH
z(G|4S4EU2!si^H}K6o6ItC>QibFxB$2->KYx3G6!&FE~L{JBJ&m9>W8s#IN)e^7UO
zmUO*Bxt5aFc4jH%oS0eqAa=1*O)Yx>QS7z@@h_R0g|c)ouy$R^kj3?_<HH65zt4|w
ztxp>?b9_e&I5InKihxV1szWzjWl+@Kk%|`GB_L&Lm#b&1Buoh|U`9*vrep~EE9}?A
zP0O_Fqy61LQfb_iyJ8{DLavjbVk?P#?qctXrRq5st7%nWHPuqvRL)`%_aw7=){Wdn
zOkkjL1A_d5xyp-|zRg-F=mAy+EydTq_Z4Phzd<WVk{$I`)OxIZUxVEj6V=?Moi!78
zOFFlruDSL@{)#=6{c258shcGPMQJgQQraJrUpWE_W6TPUAsmRIj-g%ax)NM($|;Up
zfhJbwM+x%b*G{-Ks4h@WiB9OueNh6Q_c`VB*bS<HqC6xSkb23AQyeY}H8hkgYL@fF
zO#y~bVryz#%5AR_b0-nJicJX4d)7HN89jP2%hgh-W1ewxFm^_|%(xt)29h?7)M>SK
z!!5q;GPGxz#(%pOF~t>OpeBYsOG71?Pmta>x=<gi_P=d0t!Iof!7I*3WwW&8E6h$c
zFp!}59t_FE$XO+aTP71=DbFp$lvNkx=%<ZWnF`WM7}l}}50;_*JhyQa7<tCKI?}iv
zokxrjv0D(-cq$@I&U2Kn063nmwTbZbu2mKfY9@Vp2Kwomd`&EbSyq>#Xf3v~r<l4+
zgDTR*w>)uRq5VEBat#Xe$=tJ*XS4f8dZpNn<2Xl1*dtrN7%~)TUbXkB1DA`*E!gq$
zz7F#F@m=c&j_ohb+E_Q#_Teijc;=7yexnM{7yRz{X|PB0aAXK>eS%I<ZuRvGbfU@=
z>icEu{(KCnKU*=R=qRjUx^=|20}FBMb)t$GPUXfBwjzs0v)79BYtK~FoF_J2=hI~x
zx{}WR%UzGc*H}Kw($c<iAPo(KHr#cQY46r?;R`FC=#S`6Abu*<c=6mIx@JT77YE40
zyJ=!%RLIKMmO)&7`w%KF7O^&j8FQ%u5?6FHLn>8AAUC+QBdS#%RCZ49Z`&xeKvW8C
zNlLb|Pyv|-yqH|}=`Sh@h_O4>M0li0!8kZiH{jeXL94Wkuck=SXFW=05^=pJ*ukf_
zE?7>Yr@eb4jL&LQX~yM#cp{q0McLQ+xN&4L9|}GaU{_2e(3QADYeP2hb|Z`3PB!U6
zq;d&r_jW{#1=<CQ%ChNtwQrh-o|RL%MO8~gvEGhSGISmDgxEDZrHDyn3koUe!;I0$
z1sm;Gc;K)4ftNXh8b!(cK{1_dHP-x;2Q%S}bv3vA1le~nPhu6dk8nj@us-41Bb|4*
zoifK`ysUf$cq>`Ip(l$PFO@I{YGg)H5!EkYu9@IHU~;i1LsR5GVKAQ2&)_|)8#J&&
zfiP~(lK}vO*wp2jH(g}84PR`tgSri&U<O&04AEJ}1!4IV!tQbw)YovE&Ln5ta~@E`
zh3J@a$`(k2U0h$aVeO(Yd!Lu01vACyFN|0v+aubE3?(9PSW)E#UxRnBjZ*A3HZr3D
z@jYez9td}Ctz`aKh<3GchADMtXVB}qIQ3{8202f?XeaO_Hv07y{SXao6G)Zeh;3@{
zhy)w#CKXM^NI8Z>m=#XEdt@7UpHnz`od;5CBxh`fkH}oqt@4!lAqG$7IcxI>p3x=H
zdEwkS(BeWAK&Zd0ulwT-<CWr6=g6Rx#_PHsmS#4LcSq6|`^b~}q~6uNl$4jd^Wr(R
zmA3atU*k|LLrBWa71x=sQfw1Tv0L@LWcB*0l!W}sBDOp8afQ^Iea`$wUcO_i1zp$A
zJz*j}>eVX>5t=?>I53q_x!pM5Sn|$rG@Ch3<Q>9&(aJz8`Al5P(&vk8*(cQI^OTt~
zm1n&0bGF3rMi)n^U8u53n83Uy$<W3IKS`)tG&y?VCuNYDABrY9N?IiJV5sB1OzW~x
z!s_U-GI{~0i8Fj_;EYGl#MBfm3s`|IrASoAz+}A79nCBu-hNWha~13zq}dw*X^m3^
zObm)TIeJ{V5ma)?p$a5XiKuOEO+jD^MX92bzs>A0^3)weGwTK~iayDEeg?*7;@%q-
zXASNKL3y&1l?4yhla;fut?{H3-FMyw(VuwFHj8>tMOJPVs62^mm2T{n1||+JYh^ZX
z*SjcwPK0F9dz^t7{2yCK@FxmleQQSVzfAX|htjo;QnaVGi2ixwu&f7Ue!i@T&YX0?
zm^?o31ttM-LVQ?547g5y^H_)p`y*0j9z*J+s7@E70lQpr3HcIau*yO_X6H{8V?wOr
ztBcq?Dq7vdrS0EA>yRwN?YtKEr3~|H93O_XE?*bq;lCwJpkZAFAsX!w!3#60ud=rk
zWFZhy_Q*#rk2hIa)$DVxND2;5*|dAK>hMDeb_S`?#t2|Ekx3RVWJP*KF~g%*hQf2H
zR-kY$L65%KRRjEYc%Sn*Koj7u|JIp{b~YQ(1+|Of)W$xLtr(MEKjt=*vu-x(9P<lA
z2c%6kQJp&F<)>6pBmPa1wVt$U7F|7WZLihl^lgUQ%4BEaYAsZQIrzL{GAL!1)K=05
z^|>%MW3z|do336nk_ADBi)dja?z4ZTRXAKK&kx5|WT#sjP@>2VL)KlNy&<2&^Zy~;
zH$gO{8^_iT)*E|FX)O$oT}1U{BX8T&4vr7-9Ww#J4g+e!luA_ZBd*^m!M|hdlKBm$
zdS-1n_%Qg&5x5htFGEJ}tWjZB+bC^11YXW@;>21`!;n#o@zF8j`YY5v)K#Pqz-$FU
zB*(Z%q+SLTFS!rRo`N<CZJWWSK)AQg4VQU$npaPHSWN>&&JPkp5v|_-93m-&+2<RF
zTCVL$m_ef6Z|KG6v!LRQRLi1v;@%Le2;Bp|A7(mfkMW7R>jC2s*$!TjgM#;wrQvJ0
z&+a21=cGf5+__Ds7upPc5+oleukctn2vV}lVG7r$BUZ?@E-_U6;(b`W51XF})je-g
zj}f9yIf;8Go5$z%xPN#S9*@t*#*?uZWZu?lpG>e-ZvNtJ+p#=cjexIzvl0%IjEYvJ
z6=2{6)9rT6=1=P=nwgg&K0^WJ@onWHp6Km*-<5j9S$n~UZ$T~O`aqPRtVmG@H#Qc}
zUGjW-Lyr4_=2c6@eO|6B)0_NbiZ$nT1hjabPVOzC&%rpA76=}8Mc<T}UeX@_cZ0|)
zWi|*u|NHe(p~`rDOulz)$9NIuWCA97_F*UF_t&ul4-nEm40#2l4;jv$oMvQDyO!J_
zoWn-oTDTOH9-LMV2e(*kldRk3R<<}%-^^b)Casyz-y+qU=f%p4PS;iIH0Dj=D0Ons
z&mLRTJ;nZ8G6+@0LEhLZE|dF0?LSq~hI+}x^`;*4$w$olyFA`hMzC8|SYDKVI%XR^
zmM+-WCQQz0png4-1!N`4sYAJB!1^dMBTS<7_F)hRcEj9(jZjkhH#3=AOijDf8OYR|
zlgs0?;ovl^G<dO{Jwh%Yl-eJWJDY|)(k<22Zk!1q7wt)?fOIj>qgQ3#$2-Cg{7>M7
zcO#LRrTq0||L<m-4QS&7rn0;J;<BJILCK6-Lk5KgyQiOM*$~wERn&r&@S8;;D0Ppz
zR;O)_TBTl2cAMc|lyy_D6%)6aEnqjUkK7kpluc1sZ3Jx*pUC=Eb4hS?Fg7@vD4W0g
zSyzge?~rb`k6bZ^hk^JHer4>!BPSmCAQ0oAxoQ2#hq6)qt(i)(kn5>MJ)|nV+{JzA
z?H~z)1|wIkeB>5!Ckhx1;_@@%7JG@`Q#gAVseH_#dIPY4a)X`nYJmJ%cB<m4JDC!b
zhlSs21;|3<-n15s>(Ho4U#;p#wTSdpZpR4Lc=)a4SiN;|8G-!!lIXF9j&i>!ArRDE
zMd=EBjKWClspZmvD=wb0ZEYD~7xD1zJWzg8TCwP-RV-t%fqS!=ST@A(V!~RUSBW^?
z50XUD@$?<{<v~vG$DdwoQd53-3voE*d37AEydIA|S6G}Y>WYK$<DE7i8T}73vdug9
z!G;*Z5k!aqXR2|1D>j~FiP4EQr^*yu+2Wbzh}s_!vCj>6(nfkPok7F9rzBOqZD(Uu
zWc}=B2=#5|EsCl=W8R5LnZ6;Ibc8w8B^oQ`Wo_Za5&blG!fnfnk)Vk+9}Owe=7+hm
ziWj_gm&=2t_jq|*ZmFDNuMdg4GNg@@@C&kd4B2&y*gmEBwl+)aO7{24TF-@|Vah5$
zS7_zW5)IGlqle`ET6~k6izILsk|g3ks!N+CV0skQ(O=2($1rKjR<<ro*rik@Ea}?2
z95*EWY_<6{QLQanPs~IAmRUDM&8ON})`oXx>$;b<3eY$H!053i{*08-s`q7`t;Xl7
z^tm*-n$lihe(y<cheDf9wafns)pEDh)N@A57p2sHf*#b-jt4Bg?e==~?H2BJQE$5`
zWyC?<{2Bn67b$(&#?!nCxELn$IJUzMOxVQe#<gm@5R;{%_uayfX;$_<p6){>IIqZ`
zS&13C%;0BJ*9{Pa<Ca~P(~`G8>%BBPZ>_Xf?9YK;rPSYqwxHgpT_PE%*F1l+E_))W
zZ9knS)0JlA^zQ6Lp&Mk#+)z>x_T_}vWEi`79p!2Q!2{`yeA*UM+OH8X$_0*ugGl$c
z!LYgyb#FAR{#y|+(N&F^6OGKyHqar0X<uNGxxdWJo|=WdTX|Pl>ueG#b=t`ep&Oub
z&RJRnHY;w~8%?5H0jU_wHvoG?cKH1e<~@YR&-Y>P_FVfaCNZ%ju2&K8QGdIpsW*eW
zJ4-^M_P!*4cp<XSBYR*%8m&UMFu9c3ulF+dO*II%S?Mnq#kl(`#c;6yoGG@S4F}#B
zKh4qSB=mGLmt)79^DBbT(fY-1tHtb7?aOC+5LQ4`2%GWW=55jV+Og-zNFUmEVq@Hj
ztt?NeCHVZTx5b8TMH6BJX&6}yNVUK9qH2~{au1pFc+2b)OE2rp!Y|sHk{8#e8dE2I
zG83(5wOV(uUv+jzp`z1E2!B5Rt}3gQpfJm6PIVE}o^#@!xG0goLAJQdt4dwj)aT^c
zKMt;VmsjYu;MDC<(66~6*4ULGxUO}_G&8^-`z%@Jei2xrh1y9XB5rR>0{7r0Pz+e#
z%weS=gTFdj%!C=YF50>s<oaZa4F2Dd^72qwDgrD3@J{i+r`rE(Lgi%YY;WUc>hwRU
zvX-{}VF#MuOT9rd2Dt;vlI;R8xRQV|H#0agH#N8Spn>5OGOn{YdMin4P5ZymHYW+G
zA_jS$<!1RgVVVag4-dQF3B!rW@8)2Gcy7`6Vi+blQ#S?fJR$EY(5<5=7*2vDB`0oN
zS+i)U4JSd=FI}WQ(xs6I5}KmQlHMK9;C1(#-Jj$0?ic@W?#w%0>4&cXnWgcI+~IL=
zs%IG~aB509CrJpBpb3zs6UMC}`;1W%v&CD1$W2B`lHIBk1%>U26i_b4_<LSi)rthv
zCiF6hq+_DPq$Kk)H_*-7^phwXLmUBfaj@-Q<HeB5qK7~U6QKS^jIoBf3WN9>M#K3P
ze<y4xj-j6`)mM8=R={O26rh@8!h#x7LL`Hnu~N;tr{qzZGInYFAA_MFWB))r;Fldv
zWaPZTyz&u$+sK$bbe~=B$HfR%wSPa_34U&A11kgjx8=y83!IFd-J?K};eQ#(q&XA7
zv`}?5FI)|KaD7yq$lhGrmp2Hp=1<!P{N5(P^bG?48Gdx@`qZrVVb+}`iw=b#34mdG
zGi1_E8X+f9W_U6L2H*4V$W6%h1ekno%$YdyW66GP0Xh7V5tCN9sqx5$FkykPe)|TJ
z7{p|HzWIzF7cMB@l>f6x?%$a)oCIWJbLY_g8}1M21Gf{mKEd3PA!8uvXK8%0pwqyW
z5#WK0U<IK0Y(743!I?Yfz(dmm>vLqp_U6I;#gQ3H#^G8wMt=eX>!Yy_1#$qf1XjoC
zuK|pe!M`RFIB8>KVO3cS9f&eBOadVM^Okijs|%x7@9yUIcS;!h3RK>cZo;FDK<OBV
zsN!e>1r0Ce^r<cACX&m9#+Sq<-?1<vKj=7KvqT^OOUoq#c3c>mzBdoIXgx0t-;t^p
zF?};+0V8X)_IcNd3f_+Ti?=ANX)7a4VCl_n2HCM<hytqArgaG1$~l@B*-0)*y!9ss
zcPI0j`ZkyPBg*>+j5sWp@+~jzfbhOy_g2KpeFyUW_wt}bbz49#*M}uf|3i7fIM$2u
zn+#YVr9a3pfzzJ&K&RI97am;%izaqD;cytVBpb{AT(2sg`B4|400Oo*HJa<A0CB=f
z5n<qQ%}vvpFC;0g7hM=H@LVK#knocdN!eCWeSP*_BFhH+Wc{u}q_8nfK1`_>^DD@L
zcBFn)B9T~br?9lB7f>JV{)|l1NA0_Bdd!Y%betV)h}i39nTc4ysFW7L2;qi9-atb(
zL*P=uCh43g=pXd&+YP1cyJaj=A+ocm^6Hd&AzM(=-qLaHBQ*<7;RX;ekRA12s4XQI
z2J=qaA>kE01)+j?w^<IITHfjRQs%m|CIkHUcD|P&ov&iEt31XlLrE-}BkvZ0Ag?r)
z0Zhx95iM1xfn?XI$G}hsjM*`=PvFDU@q{&MC_Sw(y8TPiizi0DwF{uUiVIezZawc1
znfBxKVnq$m8n$Va2-Dld13Q`)4>Jd@p~M?_Dw1P{mVjZe4BW6Sp4hO9ECy(QDy?@6
zYY=I-mK;5C@Bmc@R(OBV2_YaMWz<AjEX2~mUqMwmB`bUb=QAc84~DaGAklH~RBo))
zoqCsDbzQ0oZmK)lUJZAD0$ryB_timMq6EVY5o)edQ|Kny+eB%Uuyt)|w@$?xgpT4>
zYHP67+G_QYQmIf+$xbowz8&B5+-V9ohtH#*z*f-N8qC~*9;n|uC=13?aSs%RPktG*
z1K6dMq8wsSu<*vQE~l{>Du7-hp54mO!u0$9DzT2MD9;kKh!bvV3mWB<qRI*<txy%7
zS(&QXPd5vS<5-7yz!wr`e8dmn?unVqtV2iPzHW!gcLeE{2!`7Gm3mY)vq;@*<iAoX
zj5wcQEl?C`0@v^W>xJU>y;wbPyX&WSXp%t_Gu-1U`&+qc>2Y^}7#9~9RwKAWkwjVn
zL@jQF^aH?(=o<pDBQYVi=5;R^z=IwS<kCJ=AF&Z(Cs!{QVBg%fOxagr!p<}#H!81M
zANBHu)kd&06|$b9TeVQ;*BPxlR^!fViTdUMiZwRg`re}jJS^aJ)hdt@Ib0S|!tCY)
zoLpqmmG>Dsp^mW2CB*sB*Pd>4c?IGhcR*HHpqwhnNWce~-_gp`EQjOu@Ghut=Ni-l
zYY<k^9<C{zOY*qwT(K3ciPj$<_aSY0(cwYjKD9;w+i!hF@%(!c72tqCzU}%8%$xNG
za4KKTTv}DOq|jWYOdrkG<H0j<vFbGI5API#Z1Z5d@e%+h;$>m2H-s+-IHMGMP@NgB
zoHf*KK|K<c!fBe^Z{?B2oHnixFc;5QKf=L4KL5??9wZ)yk{xg&Of7pL6xh-qSgJi|
zBAtQqIOs0s*?XEQ^Slt#b;jS1b^>(5caWV0bOt(lex7vv^77_*B}g&ZSm_gdQH<eo
z7K1Y4<_rm+1T>xc;P8;~9TBC;qBKYy!KI{^2nhs#0j9GCcRY);6#ymg0)%CWp|^A%
zVvTGUWa!L=2wSX-?Z-Tg%#OF@#BkYs0g4RDeXpgD@_wU9(0+gFzlk7o(jS0N-Kp#Z
zux6w``OP5+e@&S%5$)}!l`&|D6Sl&H^gtBo=$v}2@-qa_vg8HF!@yGVB)MhIjhPUN
zsB0oYcPE)+CIp<E=dlzd3kpsd!Y33=M-09{Zeivb!E{ry7^B#dK-0&W26!_b1UwdT
ze9Yhzc*OgG2!R?y_=GgTgec`;*&*kc=t#E&x?t);Yp-xQQ!-X92dDC2riBE(cw#M%
zCBf#ZhY}jeUNmvIGFZyae?He52lets3X6OnTpexJPnd^KG`q(SuwBMzdP|#UqoNKW
zM(dv_OBSrFeL~_LC9f2^bV5Yi7Pn)0^)+_I+U*z)O$vC4w=WYKRNxvN@a>SjXbIfc
zgRBmz6;RRCyXMy;m<+mkOcA+Qn{Kk#@1+>4W5`XtX_I0Y+job%wAPM+v#7`((qEl4
zVUTMLr$J%9u04_mhC&&QVgzE;lpx!oc~N{^SRQW3HUVSrvIQ=KETxg(I8w?z)Di+I
zc7O#P)s=K7`-|4f4i3iS_NK=rSXZ_(Ly>t2$=&c2QFs)()r%^-rqRMDuFU~(tSih5
zujA5+#vz_{ea?E$$yJjz>+oKIt&+>l{5335t<EIgmAdZBO>{-A<0R|cl+{F$?W2S|
zyz`Z<?1d)haBKxQ{W7_Dq&B_H)2pW_BN<EQG8PN32<<vbvBy?%RMW<$$<M?pt;E^~
z8_|kERG9scWeedmF63AO@DP9&OsqlB<`K+gZ5(Yuc{2CKL)ZMgXsG}tuQ<(&qua+=
zngEc>G++&=mx}#43bH2E%0_bskoE~wv)weNlObi4@3~BTQxUb3iG=q|tl^O%>%Zu7
zBuLejjscElm#~~#U<ljbByS8}F6?v*%{H?b549_BYI%kA!8J`-L9%s$+eyrECAJ4=
z2eNZcwl_{YaKR2BSN(}s|CX<Q&sVtnNwfNyntzq8{(Sc_zzi5P%D0%L2*^X8#2Q{J
z&&FZ0O0#f6A*mnK^+etP+eGu8IbUe%rQ9TjWJV$rg|)kQ0xwrheGltj2FSUK*a+h(
zTh<4qR(5djmfh>&3Mj7jaC)6hRz9Rv`gSh&h*)i-Z%`M|&DEV4k((LRXJyRx$j!83
zbFQwP_pA^8h`qouTo`Ns=XDF&2`t!y7V5(Y$akJpIX|;DF`L396DgjwUEr8(66SS%
zeg{Of0qe>1mw6vxnII$-i;t<}V}otU(a?pwg)w&5zGV|3V^od0r@-iiig4=^!Dw0;
z*{CWyBz#i-RX}<4AH)V+Fhc26A<99*)C%g(qJ@OEl_I+Qjrc(`6Hmtta&}cj^hM%8
zUoYEwhenP-Wi{*}Y5X}{aK~hpjDJ8NSe0w6zv#MeB@t#hQ1AB9w(SrSi|*X*nXpyK
zw>CLHiyWC?qeMasRD~hNkk`CmKIAD*w?1^IRjW;3OG5OSt*(Mu)yiv}u1H?TWS(pE
zTv}1lb{&Dn+GrfhRUT@wRO<gi;Eb)Vo~E5>IkKmfzQBY{FS|x-Ope0ZJ$&&RS5U_n
zdF?<5C!la>E*EobZHPYb5B!Gv?@mhFMYG2YF#u3o0Ra4Ks{F5}>%X?Ev#Ig_I0s&9
zXB_sV-8X8)u4kc57TSrVwdz<WQstJ~Xc|vR&W)To(fIK~7E`M*ZswL+oo)Yqzdc^e
zBrnnpDV0dcS-^IzSn<NP1pq;WK3o5I;!TuNtGA6qBKl3$GqLoRhxXyfM$yc30ZH^%
zbn&p>kH<R35)FpwXDjN4$}f0tqqLaAmI$0!2)u^c*x2&;b~d&js<`GU5?vj)--cY*
zY<L0_?T&t#sG`6b|N6F39mJywoy2s_l1!m<6uA+SN(^v~6!b|#s2eSx$j6MmGLyi2
zGEH{}Omb5dA_@{(DSDA_MET~TG<_t;p#kQvnY2=jp=N-bXpZ=~y5F97rKUV*fDF$(
zUpcZn&|4AGPY{aPra8ui-*8gR$eWTGk!hWlfPP?#1s^=|P6;KX88Z#`NEo~8vx`2=
zydIt}OaFO@vdH$}WPAjKcZi}+{*YbSMt>iIIQgAlc>UhQ@B!80AK~_4Mn9(#0;z-F
zcV~wFkPd!aJifHxU+N#hAdX(Z20&?n-ha5g+#NhVqt0>rJiT2YF=c!m?~w(1&Jeun
z_XoeDhl_`o@}VB4hL;Y%9oE4R1wv1M*7^C+hSwm)ke-SVfE#`eD(Lm{U;)$LcXLLs
zZM)om_|E|&!G1TWT`wBG+*lDiP!d!8J3tf^#PH9%m;FN6;3}%$zsY)c_;K?9lRzvs
zuh*xjIJZs?_hP?tVH3^n?A9SrKgvHeus9%=;kgy+5p-|~CO*a_6mA}Gk1(e|4weS_
zlpO!~ySltq`Tw~vUO}Pq_hJeNx(RC%62C-%507{_+NKN$d?yD*E%^0<MdpaxjYvU=
z{SIO<l<gbzv3M0~SG-`u=Dl%DDls~E=dgamJA0@J8bnqW?Godpm4F$$FAeptxl|}r
z%sBJ^aP<z%xiHbTZp@Wr#kOtRSg~!}w(Y#JZQHhO+jerleXCB@Ir~R+&)K8Lct+zt
z1>NbSCvB3{M;iKJUl>pW98^*ke$2sMacE!ubmDmP6~sXd-yFIVW(>YtMfWxHu?lnr
z2gZLhOS6+@UGlpI(zGMRA1Y+2^&h@ysP~OFCB`5qhuor3AGFZfMWX0G^aqUbIOrJ%
z>mGnX{h)kb1|EqSqayU7yw@kzzeVMP8~3XY(s1?oB?<YVzGld$Zt%uH2`0xH$H0jy
z9vnHMqWe74h-tP8eEBQRf<m3VXI=Oo{FQ+5To;qDk}U@95%AVO8NjNLRty+;J&GY`
zkY#5_IG<+9ro?kT<7yXGQZ{ctlsyBns>^ya1&?Bdf>pqTRA^4#IC9QvEm=DQu20Kx
zFSf#c_+z(}WzqoGIiCii3eC9~p&(<y)H0SY{DVq%Nnj+d9`lepJ!I%vIr#^kcbrlX
z&8R{uSNmU#=|pH5O!`9Oma)Uj7R0n{F;ZobC&>@YeNGJc1C|JK`kEb6243B2@SIAh
zv^0`L&gB&SUAmb)^gF4mdwIXv=Lez-_|VS}m&U=_Lx)!WOj3WNEv=*6L(72im6@57
z-436hKV7>!zVLSYdY{{n1f+6&L2PBEqP?}GC7J_;Wb%FSM!jI3SV``dV1~g={6e6`
zA-`7zJyubpyVwDXIFQ(<PSIR{tJ6uqg-I$V(4Ve}AgW_s@C?Vp^s~a_@PV&J<8TvM
zDiE4SVRXszi&^a<7{}mcK!KnleZSUJSR4YfU@#IpZ3{P2#0JYsTZ2v1ULuQQfX5*Z
zK;m^Q{B$bo387Tja&pF3u)lYg)$34gAGO)?9mNalBW+bKvscPT4u$6&7{YXCwp}aR
zD}t)8!_R4=q@uv@iU$H`6>^NDKvG6cM0hcv;c%e`AI4Eay@VQHI82jqc^M}HtmhHj
z+vHd0)@_x_-O++W3N(R{6|W+Z|LH4Krv7biVoI)1Ep}^AMbxS-1S?5Wl5hCtnSD@Q
zTsR1gC<@7}cod+GOO%A=Q!c%aUQ<A}X|7bSkVup-Cr6%-96D(nHG@_^jhbx42yI{Z
z9_GO#S5hvOSBBGlvy`-Ru?67c^RK`uI-sTM8Kx<-jrn`EG(I|yCTTY@2~ZQMp4HMr
zOViqra=*<**LCy$>l3u<;an@X?-IS+;rIOz^nT5D-$9ED_HKA4oI^BG6=Uw}$<HO=
zM{<_vTjq?@YUD79x4A!xSZnB5Q}$~rowJPyBf4i?6n<-d7hDY~(eVEzY8he|5Qei3
zHB9mQlLsYUC<W>F`QvqV((;B-fB#JS^)7uN^iiD=;BjI?C4V4RNFp;aU#2qDSibzg
znGxKf`~p3SDSNA2LoC+0pi1n)Gug0S^Y@HF>@;<rE)6g5Sup5Lq&wR545?F}zi}OL
z7xc^l4|H$7s80VM=odV6FZWwRQmB6LjA5O3jpml#bp|{rFKkGe(UF>H(pNd=UUw+D
zs#%b3<fCe5r9ta7b>9N61r0;=)2lotxL%4<udoTLO+}q=-Jb@P9nU5aWy$mpq~ph3
z6(MuZAlJK%9wFOXu(*>|7{L_=A&^sIozS^E?_&F1Oxe<1taoP~&mU_muc1(0=Ni%<
zuou5?%zUG1M94v(TXN2o!PU>qmq*{)*9&9!55H_JLFHwY&(6`?*w|>LU6ZPh(wO;j
z5CnsXIMc?fNvIz<HeBsHRcxc^6a))ekthudOHb=$h+&hb2+w$PfqzQaK}=P1ys<^1
zZvoJxj4Sy8H$cC~?5e;2Hbq96q+KW+a*8^+unvhnfP(SNET&A-6)S0|xm)8=03^J-
zq>@3YMKl3H6yA`+Moozng}A(6lsIOb+}#^BE!KD>V@#ebKKfGvaHBl4Jw*;RG0xrv
z{d${$hI_0bo)svqTA0pA#2icW8Z8v4vfG#~yTf<u6h>ONFo&j4AjEn-W&t^$?g^(3
znlm+3^1y%?VEngxndCFmFuqpT99B+{nBE+|U0YXCdMfo+xrQ`i_&xIEJ_ZZNK=A1P
zi>EI6;6{HMBfb}24jCaF+4R;WcftLEBW7;t3~~LA)PsLanE|LUZR8jQbPbpgqv#=)
zUG-j=odqG_br+rWIH6|>z3Oa71j&I@ES&yZ3NS$Vq)|jUUpiuw9(NOp;G6&q3rIoi
zt}AGq8J$Cu2?K)h;d=ctu4(kh3grNBu)`?#FX)Wyq8;@CaByey4hJ<B1XyFk7wG#-
zXl)0CJZbY}?DO|ovdLL!{mI_E)SxLS15}o7nnCs!2-+I)G2iO`2|Oq+Rd5zA6f|MH
zM+O%|gQzDZ7~=J?y^%u83t49{snDE?8*f%s=-+@*5>_SQcdk%z3Nb))byFKP!&LOw
z1d8+a!k7q?HvYQ8Dv+wh#j6-7(COSs5<K$ob})SJyRJ0@(8u+Fqd8p5iC*MM>)!1d
z`Nm?Sa(k#;0|<)LimG*-KR<fa!A7kA9~Z<F7H!MVX~)jp8Vg2D7J2a|9{w(!fM?=R
z;G$BwSdPj;iHu-5<KdE%(8EVAv|wOfN(sB$@{lOHuN`X*#z;+qysFfo01zu+5Z+##
zzbJG5758ykQnCbn$y7nZ7a$oquTPp0sOU!vRWIpM(R>0LRP3<}G%_Ouw!K4pzisu<
zcS8&iV#g+S2W2)GVtoWekU&vQptINRkV$pqlnKQe!`J1OU!A0xyp+mY!K)=5k5EPJ
z@6(s)^clF+%1bwGwjn0vM*e{TQsIe`)|-f_;T((oGa2%)cWs9?xB;4%6a!p_g~EjJ
z@0puREk-GAQmY44Hk(Aazj!i=4dh;gK@G2^qVJ`m?XjXBkR{`el?7_7)aLTk{Bg^;
zG8zEBy5(G)bfB^54{xDCAG^S}GpkY0FtDq3O(4rmq_T*KGaReQ+LQnODtECWqkHn_
zxeQT6S3k~E8Ed%}XY2SdWs;nkKt%Zrl7J=RJHUId6(jv?HKThJs86euVWe^7VXwB0
z-cAR@V#gkdfKQXqk~JjFWdhS7nM8i~2WuMY(HTcOqHZ|bE|t5ZfQvX*ll=7ihs3P3
z&=VPe#w*EyoQm*TR4=XA)Px=zA=MK~a@DGoDY-n6l6!ZtC!?3To01<QB8U#wrpF2A
z%3&^04V=+|(u__Jsh~Kwf#sEiq_6`NVRH(LFpfo+8cZRyn;j07Q!r5fnu-aNvZ442
z*XMkwk-?~FK`iNgPi9Zk%FX4QBw;sOSI+@r$nbX26!2MwezeT<tV{0n0vgOxZuhdc
zux^2AleypETUv8B)n}OF7cL1MREv!%<^$b1*W2L)(3oNIG~V5a`q%bXk@d*^J6haZ
zbuQ-H+ho`??iCPmXqE7!oP}+d%VU*0>I`Uh8vHy2sLL4DAw77QJYdSkN7j!u5*0sU
z!lY|x&%BX^Y?YbSL3}{YHc*d5l1@~{`OJM!*3p{`3Y5==uoE1d&lF3rT?S!4jg{X#
zSZ&Bz6cl=NB?8xvJi_~<OYL-O<F5o33G#rjQDd3jNP?sU^L2$Dj?@U=_qa$_O(|6@
zUX`DD732yJv7S~*6xxqgV?<Q<*=@p=Y(y(Dl!|q*h7uuE8~awQag^Ij`Gn>I_$)EX
zRGA`i0~9_4OY@`0vIR<Mi(X!oFyo~`8ueKDLw$PbrtHa13%SOZR|Yvt6z9|R04l5s
zH6%PrG?mswT9WQm>Z+Kqp+-LcM7~4iandXL-tyzL*S5A?jq@|E){}E6yk1bw=AeEX
z%smx{107veM!-k(%rrcAxHeIr`eYQDC{=MB3W%y3W6g6&PsL8gYRBjQG2g(gj#?XY
zONbzJ1PSIpcKJZkpKS!tkKSyuR$M`_0Og0ZqvR`-`tS7Y>h~h{*n}!3UNz{vtaF}f
zJ_tefxro_BdCME(lCFw=gr&I6As$9mg)3oobaKe^DgjT-Olqq(lVY3MkcXSIUIn}%
z!R8Tz!XDD#iNnU{OjdHzKO3K;pf@eS$3H0vDllRK$1$i17m%1tf@F*;Bmgg7bAbFM
zUmV)=`z{z(T(QWMKO;)%m&b$&iM(ZZW#?}Sn!CF`sY%KhCU79|pwyU*?`}!3(HIkg
zYNZM8+flIAwYg$KY89}AxwC@xZ-gqMnzFbMJVadmwVAw1L;8hrV;bVO>qFAHmOXR0
zXsOv|UDLEox%jh&REnI^Bk4FpEosU+MBFL+I%e(AuO5#u-7<(9)bq(XlXQ+63xx-R
z%NR$7%wW}N=XVCj&Tn_4UlGiTQsn|~a=Q%e)%_RXM((%X7X9zfChsO%oCqbJriHJ-
z)|p;QnYE2~8F)vtf#7h4QzuzrdF}KqFVtyksD1MvA<=m99s=%{4kTk`4D*63DbXgW
zx`<fUQblRtI7j&oldM(vWUREu3;ld}Sbjb`wLMRk?~*~w221s21VUHt8s6}cv+21Z
z<I4k5%)Xr2+m?(xU^M&G&~H2dmUW9Z;4<OGdGc-{JrdNv@1_#6$tIMF(csA?z0E0s
z+HWXa2mCI7O_PbEt%I3opvRyZM``ipY&Z6;;}p8w8d&01<!yQS)*S6F9r3TaF}#%Y
zBtTownVcPITLVqz;7hXs+tC>F&x=t^T$hM+b%)BUQ^a2xDxsnHHJnuXHLBB-T{m%A
zRp+8rBb2)8%Q{jE2x?*A5pcdvAxM9A55LQ$#xA_>?6KluSoGiq0sx0rPuy|;3oeM}
zdz)9U#K7XEw&%XjF-(STqb9J=wu(CqY;--$0wCMUG*(r(h`(a!zb#{k2r*myY%xCx
zq~(yNrG<Xt3xZmEgP{;uxI~o=`A0F6cJ#1~q9iI^Gou90V{Gy#dP%DO^1zexLtbDW
zb52y{sG{~<Qg<*`q_Ux9d;Z@L-Xy=Tu_Ot?G7%}KTOy1zU5J!4!*y#p3ng@jHS|Ti
zq>xuj;a7z)W{f(xnjvSWKl`(oXhIC~)}ai+*;;^vtw6D>{eVAkNHo|U51x%LN41z5
zGD@ds@lhOx$z$CFn(kSb>w&-YX5PYsHiYhc@;fL^qr8kT1Ta8f(p`AZog9yJBnX+8
zQXXnFOA>Ro@g6*R0t&-0Xazvl9C#5)pH`u-cp>y&KHsJ-!mJWw63ABTgm%%ZhgCIG
zTSlRrq`hw~6x%zK#FOJ}?yWn_q-*(LF!g0@qj9rDW^sp|QIp7+PcEU9mk)GVh_g$C
z0LJV;vv`D_=o?sIM&i&y!AXng2D#Udx8|W(zs=E}4AT~YEKiXp7w|hK0)-p%WU1N+
zt~%{)jY466R|W%$f0Hn^V5)!&a|{M_p`+TrJ6}|f)s7Ng0tr2eXZ3Qs3U&mQybO=3
zf0u}HwXHh-4pq&OgdueB;p^l!xxp7+94Syv%N-9Cmp@hjc7Hi?j?qN0M^{yrZ?=Sd
zQBf<^M&<h8?!nA*YkSa9eVQ7QRl{|o;#127uNsK<Iw0Cf8{JnZY-;BaN?zM04;|zd
zOs~?GzSCZ=4M-{!oGXagwTOl(r7@dR4D4Z!%-#`&Mkq09&63(lB$hU1z@?QAE;)!>
z5@~gr>xaM#7d%TiugR2@D|Q*<@-7o_s|Z>xd;^{pLU)%{(1e-;MyyelPMjSFE0vp^
z%VhHZfZ!LX(a9ShO9G>K9E~eRN=P{_kjU0G(33#5Rps&bYWluKJHj9Jkbem^R$&+)
zkajAU{aj{^ifsP&a>Dt;s_W#ZqxqvRJ4Q7clpWjqC}OBFOVOD_Z76H?wut;5<W8jM
zwmrjdpW35=^1aQjC=m2%rwsQ^HQT_{R$FST!JC@twKU*KF?N!?f4DG!A(0dkFRw?5
zp?uNZd?Pkn6>OnH*42UUKO#~cNRG@R?c|=iAPT`YClUKm)Md#D{ms|HdJ%su>(WzC
zRlWb5)=eFfW^Cy-@>XE6o(2}@*nO?4D*dn5hzrN#iTOW7nB#rgOI)$`JPZRpBPXZt
z#m3UrHkD+^{BnYkA#G5jkQO;c%*%%8X(f$~euhJ5v;za<3PHA=13h3bD-IFcVWON*
zDO&G=E>ve9M7bY^8#!cH+G80|kIEAjnW(+4>}11wxW9`5_SUF81LAL{+aC5Oe*PMt
zLEuV#QoSg4VTI@eZ^7~qS2(fs#kYPpA;9dpjbyA~m5saZHJ=k#W{#sbBX!*aZ<@ZQ
z1AU%852i!@l}Yfh=uB*Q`PfAJWE?}H+2Dbaea{Y<y0B5BN(J(^QYpB;iIzDgRQX^t
zkd{*;hEzdy5&Kv|#=y+`%bZmmf96GgvSNUIII5kp^;QzQqLHMoax^0A-9<m5Kpi-9
zn6WsSSLApr=l~_@j)09~<qPv?r;C%r{rh7&bH7fqfr0vvhjh_?<n!wdjG;-dVr0AX
zaM168K$sc<l`VTMjG~A$xvpMqPozIE64E+R8F<#kf{oQYrjB6u#1aqo0L3AUQ#A8;
zPa|tqFri?F&eGh_Q@Ixd&VDkMG5f#*u#s~gc_tI^Hgm1Um`e*|GjWf`aDK$A{BcTn
z=AG^WG8XDUL%U*_Mb3oaXBkD9+guekBKjiw-z)W<g`r=3+Ve`~YH=;~6G%*71$>e)
z{v!N2Uo2C<3~cC%DOR3Z8l5?7{rYEsXhT!&R6V`~F3W&WCC@22B+D-Co{7OQ%M=7d
zCITEiPbD7I`wvk1;|MkZlSC;t*AE<TOvfM<4tt@edPr8XtqX)G1(pOE)a8Z>B(?V7
z#_4tG#@6mvo@<e&s6;OZ>6yBb4#64Y9)70#ytOib85`*9Px?I_Ej5&eY>3rQ*cky4
zOJS31Jv`nWPILlg(`n8}xgHoY5|zvS)jz9<VGc9EkCsrV%0%H{S3LkN+E)X)NG`{{
z$RIdFjWc=>1j0zOuvZ&}l**|)NvoYfS_o5b#>_h&ciMA#dg1aqxut>f4k0(@46M(+
zVH7nmv)DpCgiU(3fZ6;GFB?S?NlaYSHL#%B?3Y3GkMN7PYo?H<zza`6`OPOl%c+=(
z;a0=r_CD-0ZE1N&qp{o#;UG*Kwm$hRW0I(&bwvYxKI9t(uTXrw1)-dF(wQZ5zbR>{
zhNGRTb?0`Di(c(twf4xIf;28j!%MFQUad^0s8MRl(+B55qVqXIJ6<LD$^?jY<rQsd
zo$z9Y#s<9q9cLH(rwZLI%!}Mj);A>T%RgUzO>FYDWyVRexoVNl^{As%b#Hn$_Ldek
z1&WBj%HXIlYu$QRM>`z&)r6?4i9o6P>$mU)8&d{E&{QW&c1?7Xur)~>b$b_m&cOO@
zRVt$$<Z?q!b78YB=OlWK=2hs4t!#n9BdEHsZMai+<U_VBXNWfDf$y=%<R+T}^tq|%
zUeUF}oze|BnvLYIT-E;aRR{(#z>0o7-tI+rk-yuqsC=ZSACB!LNp9)EHFFAr8ago(
zX5+PqXZDx#hEDGg4HuK8!grbjp0pa(o#%b1%TjXQjh>fxtl%rwFg-J0o>ucuLyoin
z@EhMYyv~ZugxX1(_S3i5zKUjq-BAmrR^iO=l?aoE8;n`)DWf->QHbvxOy`@K^Su6w
ztSGOUbzOFqK)JfUgzH?llVU;o7<Hp{@?Tx(>9z%As3ps=I3#FuNv)C2TV9<v_HnfC
zRuvu0#>U6(BahdGr9E;T29BkEOIkH6$*B~ml)}8PW2S6mMvS|4&kNU13Kbw5wcQm}
zk?JBCGWvGokAGFE(&bN}_ejWRcc#fK5dn7YLmSd!CXzk%jo0BIp>2XQ)8~!|Pxopz
z027*f(wynGBc9n42RgUF$1{M};Ix#3eJ0PcefAl%M=0#KcM;bhcXZ<BmTzz8`<HND
zlQFdNLC~swc?szyMGlVo7t`u`*09nRZLC{6X`h0&>wcf;DjHaO*Z1dNFu(b3-M>r2
zcw}EhJxMr+V!BqiI{G&hA$7|_EygN~Ou*J>{!_wsq#1N2i$|3fB8<7D7hqf(p9yQ$
zy}MuXHg5W9?D&DVgAAJhfgIWrh!ASr3XCP7_u4G&kB>TwA`LO=Y)Bl%r0eEEH6(@<
zu(n%`&CW3s`tijR`Q&QQ)3)K6%0L#{-8MtLFaxmwYnwed);U8WXUXRF=~x$VX>K6!
z9o5_e^ii^XNPthjDXtdEh(LpEcm*eJ%F5Vuf7zmjv+i6wUE2v9f5)$n<CdBQkVbmU
z{R@)sw{mu?oM|2-=97+w>JL(xpam_wv=$zg&@xq{lJE|a>)@~nsO5CC$#f>G9QX6I
z9(b7hn|v`Z!$0sc0H&26*9%GLy$#xCdTmLhXG0Mn+nNl{$?AQyXK9=X=}8K=7A|mr
zRDGqN-`vguc^&ABBo6eznpr91lhnMBhI<V~iL~AFOukS+<#TWKK14XtNut7VZ!~V<
z>@gY#hn^{Wmsg;`Brg3zC7{QICg24+nfjbV=g@I`ae5lAD=WxRVi>?D7$b&61!2`#
z`IRw&yD3JikK;S!2}VzL9eZfJB82`$Ln(e`(RyNm?)-y%zqM1q{fg^NQ=IJt?kY(G
z?dDB!v<rLZ*9|vxcR>X3ikr>&ZJZC*D5|(Xfr@I9${Pe$iD^_3)X!qME@4C1U;w?b
zw%ymS?)lKQw)?tXrz&0H`<8-OB<-}0@-LnudPijZL@Zq1vQ;T}C;6E`lyDkLAWujl
zMLN$_cSDZY+VJ?eT0uG=)mn{gHe3t1@S#_QK)>>>1Km)iZ!;@qF#ha9naV+kNJMWK
zHe_fQQnTnT!`k{zJ)f+G+cvsf%F4{3f^d!5I9)CCX%^GqQ=+1y8aT<#+Kbfs&Msq*
z?=+ibbB*4z*_FQO%1bRLoUN}z_=3uD56Ahm<alxZ=MV*Xt8$i7+`KX*cN$z3<oD@8
z>-%UKv7*gq|7I^nBtwan#w@Pdv=RB9|80(|KRT?2FL42MrJju;eau#ynu8H35f1BK
zG#nYxL562ZsOdOk2BdK9uO4Hby~qiQk@{zV)xL&LVNpy2*Ej%!Zyx;RS{E3POE*AJ
zXZw0`bX)MLm>3zpn<)B+w0pp?669M}7?6|o?qxZ&;NIZpYpTPOZnM;<@R<^{Sxpqc
zgT!5p^*c7dR_He^d@OZUPM^Pp<VLZXwY#|W3hx4NbNzDFHM5gxZG0`=eJ|bhxb-!&
zOF5JT6)nXZcQCRNw4ypDtnwOM#_J}%0DV5_XmtTg2@6&z6+XH&sVL%;foqQN{*<JI
zD3(>MgU@voLTjY%jJ6-P9HtczWud0d6fnPpET?HE0{9;#1e)PCYLctm_?6D;vS8Dj
z^Fkf_%XXGJIpp7txGN#V$nBtcC;%P}U&oV}CQU`zBPK1_CueiDlT#bX-<`V}+Z!JR
zu!iE?mhiwWA2ZM)6#UVYQMVC`U&Mgetx*GwBH#S=sG}5;VZv07MnFs{bP5;yFKsCt
zFsf17O&t*ZQfi-Hpr%#Hle!MCnHYvwRNT=50EvSYZM3OOQ-bD+OYM|@&W4@xLETQ&
zt&KXZ3|(^AWoL72W7NOVvn*j!#s%meDVndMPky3y1b>e!SHpgv2j?>nlUjc<{>bfq
zzb*3n{oGcUZgS85M6P1mSU<d;`oX5!RxtYGyE&BNvtF_`U6iDLtp5zjc|d?%zXX~i
zz9!6%*;o5+u2_)Eng*1Nbq?R$%;iI=r3T%dOFXw|d^}9c)0{A?)Ew_o_Y`(}64W8!
zLSj}Y^bzbwu0Cuj^MSJtM{s(Wg|?aBm%6CNHu@x{NRDo&nAMuiecmA<^jc{}t_e*b
ztaOmhR$A?*j@B)!xXs9f>Q;-(R&Ji~@dW#~EQPB&7d-LUV#*k`vP6gEt_YQ0tQTa_
z*Ij5R56!l8=HavzRqX)U)$~777e{AJa?drtivMMRmc{@owYMy?VLR1Wb`SGUV^91o
z957OEg;$Tak9xWY6!{B>+7mHFW;>CQ`NIA+N*|Hd1Bn<2SiHF`%KQPfAQHxEIB%{U
zr}mBVda$2h|0*(CzXxIGY|pqPgiA4PEqeY_4sr-dhTPa~y`6>89s*<CAJ@CT?WN#Z
z+;Z%3UGeruFf~jLZr)m?gdWEE#ghKEQUYKVutm~8*ij%;llSPYuLso3<61YsUDkeK
zcOKK4^^4SThX&c2(Jzj+`uaxaRlPxbNY~t)BBr^%<OkO|o?u)5!Dswc$)5WM_GVAl
zIF5eXoT+@s3{<D5RqdMm(-&GQks-$60dHi*I*9xIYFwP0LdAU=6MY3P2FeoUf-)+S
z4!45Ti6#q(pHys5g-|7`l1kTtj1>W%ttU1Gi+LLDyr=`>Aey(q<!sd)fKn3DwqFy(
za?!qipdm^W1UC#3h!_HAY_@7}xwc=)z99VS#D(sx+X-hZO>?OkT2pd%H|5i<(S0g+
zX^NHV^7SRHhUp5BzOfR?yUL_ec*bBp*ofp{80gX98>pa?R~Xcc|IeaXN7XJ_BQj2S
z_y_v5LsdupR%9qaBLY0#FyH;5PV+8lYi{(8@7=Avf*<*JKQQ1f?xV5Rt@<pk<3LvO
zwj((7^IFx&WI3Mnk2Bp&#oW?_;Bnpc%uPklIfcu~DR+C{MqZm0_?>t=;G>l-#;Wk_
zgQL@h#a_PYMhKG{mfd_U6mH}ArJ}M*r^Bwa^%?wiCD>1{(MLY0efGv=<@7kNLbm;V
z&kgN{2YHY0#L<iQ9t+8_l)0m|sgQcDu_GH*hrRyueJRDUYiqEvqIIM2=cxiAwSw-W
ztk+8VrwyV=Cc-OgRNMkbPVBMLVaXHYxGnAFZoicNt=cBH*~>j5GR{k_(C*=)%4ft5
z@7F3pAHfJ<q-0xOj~-$|g73yZ^?3Hhv;mHZ=v)RWU$m`^g+620!1t%6ubNXJ`VN7*
zrkp}8|5%i}qs0w)_F=*lT1(}09U-Z?swvzhK>czLCTDBM4;HFv^cn4$T+}&g<Nl2;
zg_H4A^>54Z&2HxMZ2moysX@ett-Lg1)CNKrBROwi7JFA*{RdtvkV>wm)ix{rsEeIA
z`uu5{Z^hs%mMP;<iIN|J4x}3CrWaC0(MDiyzNtEY5L~^V+Ge1c1}hc<9?xI;k6QS+
zVUMhX3h*_vjjsY3MU!NJXkkBke^lT09b|2GDP%2n+GFeK&gRb9tLH#xc@N>O)oZ{(
zW2nz+CxUdZ`5Svrn815+e=s~sP$`@brsp27ZUQ_@FBfLc$910>oLy<RdIN0lzRnpQ
zg%zEbnpY2~*En|9aC?JIhl9JfJ;&Lrw$Sq6$Y%e3+-Ipznoid1Nj;T=qx)Yf;5ZH2
zk5NeKqLbhMg|<R1_jynIk826}AK@P9|MC4ed)S*e{b&BER^GKc_^(f5R*%tAuLDU7
zm7=pdNtKJ8QC~-*jl+4lR0#%x<~Y@Gk?!}~$2IR*wZp4jSl}xCz31JOXNEOI#_Q_I
z*6y6_OGLqDqi~y@^{V;$X|kU!8#7)Z(h%`M#BqZSSL1n5v5}NenCe+`Sq!}YS<bky
zv-AFRe*2D^RHpb+n3X`G)-K3Ogib}x!ia@wJrrIH&K&N}zrwVz)gA3Qlx^b)3uV2V
z%{Zglhnnj+djspvI^#KCv6;52&~YL1L*hE$3cK)3W|O!7BxkyR0nNnUtd{H9u}DX4
zN!11-&!Y20#cm10115^U$lXFWWpxQ%nH|mLV@mhmr-HyO$iMlPiZh8-<>cZ)OOp@B
zM^5r|*~eR&Lvt+J#wSS;o&svJ`d%V{NOBQuLKPZHekCI^tRzh=bbK^v`yLX{t|(t=
z^sG9XLQWu>Hhz~RMlDgo6pt(opk5#pfu~qWp2i(*#y~%g2<^RbmIu{iptuVhT=}ox
zfuyYCjrmLg9w&r9??_gO1q2p=CrSH3zRn$J7!$z>$Iel=7&C;j<Twts?5{AQR$cmH
zyvLcvrBp_vc8NrKK0|w?lUg6kKXjDR1&flDBZ+>;lfE;YrHTK-1Ul1M#sCgM1G<Hw
zVPc0I#!{mFM)fIoBu7XYAMYGfDD81%eE}Neg=1+oPIG@bUP^VO9jA|)PU2vs+5j{2
zfk2O)^If@pHmI7Knt_rE222GaQUrdt3YseH8l$KH|IO``Eg8ffa5^<DXQ;etx|B}%
zVXH#MJ(W#oz)FV}{zSpziv;~d52eat30vzMX0t0OG!uJ$IQ{ac4#SNnmlMhNoY2JW
z*E<Ozl<ZNg#J(wnU>zN-QFuxxMET3|^tubR<>dX>la;`maUyL2v`=CFu9y>z__rcc
z)u`|E;NQznW{^UbAz#PXLH*#vr29#ex#Gji5F?g%kjcRi6DAx^M7LAtM&*+k1}@Ba
z6X+#wSB@V0X#AV~zFwy%Di4+n>Cj$|!6W0gUO)Ry-93*co%STYaVBIrn$xo?_E`Fu
z^6;*EzPpuOZ#U|Y)wvODHp_p0s>296xD}Z$7P8wexw7lRYM|U6{3#M*o~6;>rNaFZ
z&xK+MRLeDfm{Q%9D&o8khx*@dobn9=&p%>5kaE2EIqW`*A6#<PxVb()yFa-TUjehQ
zjlZc2-hZwUgI_OZRk~n*=`DXi{$Kyzi84(8+<%2Ik^f;W|D)9X|NcD_MmCoJ4sf=b
zjol^((tk85#!}z#>@p!G>rMe6{Jae*qCP-FVne4WB1wbj=vI<sHO29<@Aq_kG7UE+
zT3bO`)%+AQy|-!THxRQ%_sW;UW}iD-K)d|1RbvXsaY6Zeg^h8wwtRFyQ5LuYR-f3)
zTwN-}5yXHq1gRc#{+jvIKGfA?shl3a?~n5jwTR=WXr~h)ik00HFsq$<_o0--(~^Wa
zs*^#?2;G%&Kl|I1C@{Dh83e>MfLh*hk>`|k5#OWmZ)yCc>!?T)JD6zx@d0W@OHGmC
z-Bc!RUUW`_jed{?!3<#8`WYt9g$_%#4N7VGAp*ThfZyYPz)>mQhFoMx@$qmc<-C{b
z6+R#*$OT6#!w*<({#`WV0A`bg=^9Xp!^tZIe&{-L`=p`Xut$CP*xZ9oP+yiX3f<88
zYortP<q&*2r8{(3fuy0h1_lYl(>R9CP?ENXBu-<-0iqQ=_6%CvQv>JX>w)8GA`t{H
zuW))qLrjuJE0nk00ns#{)g1ak8kmJ8VW?=3z}+B<pr;J|j=Ual383FiBL7JaK@9#6
z_;VQs*zb@iMDl)`!NZsiJqM6RjP-|2TA_USsqbPxQAU!Dr5;78RbRl!8B_nz!ltMg
zv^Lp25}Jb)<Dd;z9xVUkI0kjtd<oqKxcYLi&<in)IUvMA<l~IvpLZk?Obyz;%HL@a
zrkG}5H1aa{OifVqFB0i-Gw)2oKO3W1C<+CA`WF?8h=wFwp#=RzG(It29_}zZ=0_Ye
zJW_;rGrd27+SCbD6T<uEP36b%8LN>|;(MJ^D{#SZm5(YBUvbn2_PQPR)OVxi#;h>;
zJTDEVACK}B54hMptJ32S5zA{4=<$SMm98Pv7NC?zbf*K@nESkgzFq80X)pG8qV96r
zysj9U9v(W!In0<bV&I$pKT;3(P<IIDIzTUFQ8FX=?QLgCZ}Y@rZ?m`^?w4*X0dc>f
zpu?~+QOyJQLFp`Oc5L1(T8!ITN6pj!EMIVY4&TNCtOaX+3@;&aTGu|XPATcNw(pka
zfa}-Dq<^Mx3SHUf-0h8#CGYF|w6ThP^7C_CSX|x;<5_25_wXM3IDbEm7gOo=X83dc
zT(yy3*W1H{5Q=lqE*<u>1~H0}1@6VEOE5!;1NTsmZM}07E0wZ*?(Y0meBA9R-~1>9
z&8%emH1SbV?8lO1@P7I1-aRW#Ae4wHa1u;_sWUu5wp*=mV)4w$_V-V1*5x@65WEa|
zc+_v9tu{2vUcJ4x6R@VKYU`Vn-W1M2DLS0}?egy07Mk(pZeAwFtcn5+4<i7}8_S*1
z&p5aA<HPEiGF*zX(}joj#E^f;f}@0CG77)^-mGbI9m==VOe$|GGi=@_!K;dB<_Rjb
zz*e(HFM1}Qj3TjI@pJrUmAX-#wm)3W&=V;)#OkJV({zKi|B6mI4#k90#|Ij+F038d
zQJ5qr?<8%sN^ba;Sg545=Xv=rb+I~%@~kjek7AR+9t{D75SJS#6Js8b_BSQLmf)3z
zcCv>hH6mlQ78pxmg5aayEY)2z(W5SyFWhIr6!L#3pN^XFT*T*YoMa<D^!Ag7?Cx6x
z6PBFAI!VDuY8X!Ey!oBO5KhDOTh?NzrtX98vrKH@v@MGq5UIBH``bUAaRhH2rWY=n
z7swrLODRYVv0QP)l%7L)D6DB-)=|J$1u&2sg>t~i$Qg)0qF}Q%<B6-vc1z1$sVgZu
z$~6^&{i*HT5!$%4yuM_<=}<s#no_Ic!Gqiw@a4>c@yr28M@K<Rm)iTT4(FSU7=!#~
zT)YBL8RM&DJ9S~;T`AN13_topUudovi95prb^P67D{=b!Gw;8!XbnR>DqBcbL$|^X
zS`b&=%Hy;r-3v#aQzF&B(m)_*n)bcj@ZrK^ZqgVFX|00(jd~c?qlP2Pl=^ggqkTE1
zO%OYxOa6lN88m{Q-Q2mm*Bwj0#Jnlj8j}1wPmcZ0j=6J(Wb#S}A0Ao#9{O5!`JXUh
z%UsuFv{ML4deFT5W?bhjr~T$o;HJnA&8xxhNx{EfTanZ$$u7{;`d=o!28s>-DtRGv
z+a)XJXz9ktmYORI#SS8}-Pd_O*A*4Z`iwoK8GE;>2yy)v?>uKk;FELy51LbL>`9p}
zj*U*yw)|n8!YBRWV4=71boX%YZ7|^QO1BHAQrvImuoz!VRkYQ~@9=DFje9t}O-M2+
ziWPekT*?^d=|cac$4iuTm#q6|*Y)V^rX*>1S8aN}!`^yfsW$A#y75_K9p5PCI<U~=
z>I!%Y#iJLg31OYEi*9QjWon0IFx<HCe=o3Jx44Ig{|&uiw*PDJ{pVc&Z}1&sTiI<$
zy>Ry$(#>xR{iB#;kx@Xd29>Rol3roEzBZ*c)R*W2&$P-cS+Dr@ndM||8O2B>vuRe_
zsDOFlnem!2GVL1V>VIH+s;MzjJy+IPjRUmayX*;f;)m_Hqe2=e8zG)n**QBeuB_8Q
zX-xGF(WEgB-qf|T@B0q@E6!%suNFIewym7^9-h+Qf3Fmc!Tc%G-3UlH<<WLmI07!=
z(60<%T>~RqT_Z~SFE8lwO_}MLkQdPSwh^U{GIfB>ezbHxjM$eBk+dB6S&vOjK{EYp
zx9*5a7Zl!zP2XcW7uwrTWy-7%x~KgZA7{6&a`wTPy8<-D^oP$&i4UB|_KzRXFvr_e
z1X+JP{!kye0huNM6SM#}uWgdlP59(}Dtp$UW|X+UW^pl{m&0Ml3IH!;bh@&aJ-^&p
zRkePnYnrica<VtY5N1{dt9WfSl0Mz!o7<1_j~Q3E6?n#L@SO1<|8f<b69f>NzKQ*`
ztlt{zlv0LSR`x4gU;MOL5HgTMiB>iqi}|S7u07x16XZcgm(3bbsJy`QTjxasSA>2N
z5!_3CpbZB-GjdSaKJybu)7(p3;mcKj!+*CNdAiIVSn5^GK>x|Ge+Bw6R+eX)l#2Qb
z${$cQE-Yesfs)Y}Oc6fend}YWX4L)kiKng2Fa3p_ShD^kf?8f<O)Uympe0tNOUREh
zLXgEm4#gG|qL%n>u*<qM79K7E$GAbD{lVFA6pFC`7!c3&&jB+q_z4IAN0!5;k+>)m
z$_ufap+W6S6St9j&@TNec5JV5lOgbl5X0=ZDrbQW0*|sw&G8%V8fJnrDtXsG(Xm5X
zJ(6(KH4?_hlOp9b-XB>VcS4coyXWwU8eArkg_Qj+n=uF}zs<>o8-2CE7^&H?KMbj}
z{Fl^@Et&{+>N-vhUDvTc%JrqXNec1nx-r!hL&tjv%56-a7+b?uB>on1l4{{3$M#z1
z!4Li@#4<?F(kqqm96L>w)DAi6!LAt-@I~cf@JYxm5%%o>FGl8hhRCHyo}JylS53$@
zOzg~tEqSY@!@v45!p%tFGsrk?Jk`E3%qmj*fcdFK8Jc671_I1yphpGKUD*iJCUz4<
zzYflM^T6;&Xk0AyZ#T{S=C0%wEPSkm6r2*DQDMmEuvQfsL5PGD?r#W>ZV2C|-}}Sx
zBx^`BI7?l<5jsxJ84)`aUU(Hlo`bp9Ui286k~Q({>%n{((*1kY2nfys8k&1Tx-gv0
zb)gVkAA^3*=}h-;o^Ue8MX~dc638=37Ds0niPZo<=Gf#UR)>LeBaDj+s_;j2(=s$3
z6g{YdUR$nv$VMfmxC4VwA>hw+7w274RW+=-9X@a<=3Cc<Yg|L@z0Fi%947?fhtEl!
zwBike6rp)CZIx7rMpQB~VlCMD1CsE}F)2|;m$F!ebw~~51yj(PI?X8#F-Go%Ikmp{
z-<Yk+kj>CO5J9lBwn4+W+P|}f#n@szB9oFT<x~pJts0yf@6S$_lu0xbhUT2)!G|gA
zxdl+l+%O}*CrN2{wuoa!&AGsTo2dSxcsj7jq8eFVoor-kH$n|?&vBhhWFXQZ8F}Ur
zWjg&*_3RY%u{tXF@Jo6%?U6;9bgU6Tm)ERs8B!)@X7y2qIrwD6QyGZih~5O&!qV@b
zz*#ZaLGa62kU=HwARshCOqs-rJSr@7r0Xd@<*P@HV^x-P2V9XsVSfPkU^q~Onrg#}
zCOBE4gyL^AcC_DMyJc4B9r{t}($bsz!#99|K7CQRenWF5Sh0}g-(QG1li%<hP(ck-
ze*+lk(6+x9O^5>sqW+Q;xMNWv^Zm9<bL?M0x{pooj11UW(M%nRH~RBE8K9h`9(FhN
zXb?Z&FZ?_g)kHjB&`V#=b5;8pAahJ4!2k;{Xijw_t%ilrx3!Q!b06~|bVm@hC06l8
zgFIHcJJfgi$ch&DHBbI(2cW;Dl~_5J9HqGY%{p_g>q6Pv2bMadBy|okj@1->>)gNE
z2ysLenn@dF9KuPoBZ5&oGDCViMC!vDd>}k87AcL#6r(PSq+a%fQ9CiS;D<r%7pRk<
zPV5l%6Srj{Dns?IPUw9<Psdfqk(pkHZ&|VvqDPyH=({kzd|*Z&>o2xz>PHcab#K6C
zq9yrzq*_<EMC6+bSig<j=O_967f@lb#};BM0}UNXG!9Y?q;tjwtk`>SPjLi`j&iG~
zQn3ybaBvM=DV#yE?iofUXsSdyMg>$hQk67Q8KgFSp<{X_TN?i*YIB674o4n;PdRe%
z?qEnW#|;h0`pC!B#C}h{Di0=AQUEF=sVz{HnF9t&fUZpu0^v8&0s^ihfwo4e8h}2k
zC(QNGGgi$gY6KC6F`hBICki)&7=FWO?8C(Na!4);fCgu*`I#~}A^__zU2ce-2`QY~
zTE@Ypx4NE}Km2;cD-NQ6O?v&tK~|K`T<fdhL3cSH<m+@IHB+zh2hOVv_%!mX>06o)
zB3NMYfGmuwM{m=B@D0v1i)518{Ek*c4@@_XTFsV}3-Tg#abp8H5mVGgeb=Hbzv(YV
z(YR_}YEDWpxR~+v&0d_yYKOJ+g`LxC=aa6K*r(8DssB>Wp!+}&TxstSiOSR|Z2jue
zEAl4Zidpoz<6{B3@W--hfnOo}2foXy15XLE_edMq`OkJ*e6qUvm7)Fmo2R|o{5x%J
z=^aIYZ8>UAEuZ!T+m6qSZ?wc}OY>#500}k!);>YuT7we5b5R*bXwGD~qaXVaAVy{;
z-Q&m@!;(C%#CP1O<PZ_oJR^-aUKohqN7<hXAo;<hH42BfJ!xlV^MTo8049yd%zuV{
zJy9gS;^Z!4uYd{TPGfyTMxTWZ3|4qz_{Y8tzIR9UO*T}T2A+hG6+8Q`EQ#TkHq8lv
zt#2iSx$3JRk(hdPUqD;-T_ztV%awpK^c19h@vmE*@z^H2j4K(t>$#Zw9W0Vom;s?Q
z1?MJe+w{{Y<vT_NOHWpIEt9><vCkEJ%d%Nh+Y4siL*RP*MEoV1fuF^qzk9uQH^=Xr
z3<VzHxFb9WbveVb;(qC2gb4NR73y(myyQ>VSsy>jB0Cw`MGh`}fsZS`GrR-$_L8Ji
z!avd$LT$ud#;&M5u~DrtF+-{lT3M4tb5M7ayr1D=79LA88F6uO>Fw4qeoH;uEqLrs
zM3N9~|M6#3#8qYoUW*m2XY}Xp)9P;WW$r%V4b-|6{$s)w{Y8nhdj<ELUi0k;n8rv*
zAX`?f>6e|iXTi>G@19=B-`n7uVNSNb3xd&zA+ci!T$ACgV^DJ;r`?gd4g<6?YbO%q
zLSaox4L=<31HKOkFs(R%6TK?i)EfzrH<OG?H$+uxWSTU#*mT#eJXxe5ddw8ALYi*o
z?!@e?={iqE>!USFkRu@kZ@N5PSbhi<C|4IDZgM{>kEAy!Qu|3kWD~o}2JG_6Z2wgp
zk-gU{iZK$*1rYRs%)19?YgqXoS|~mjCkHHiC3B%pPIF@rA}5GR^W;aa2|~;5m@+_r
zJM2Dvk{-@ZjfqDhR`gmROGqR=a!)jB(QCXiLu<pSu)@9!DS!#Anp{Fhi;aX80)^5)
zSMQ#o&?^S*%MBen0t+1f>E#~=qPw!J$Ygd^RYKCKXy{4R-Hf3<l5Yrw@52d9iWdXZ
ztPNe<d$n71d9)(*Ryu~iykmq^`Ph{YH<!o~!qrJQ)(d?TXi_9?*3!aoiS+=K$3F$?
z6ozmH<}+=o?34NNH5OA!{o$3Y;6(J^sxufq#H1VH7D&qSELD4BNm3xzj506+11D;v
zZ)P^S-^+i63Z`<1OPcNJ1~xVW8(Y70O`ixtUbV2awO{7VLqqVb`Y_;W4IZJ!Wn9WH
zlO3MqX|~<Lgg13K6Ne4?76`Mmkbpurah*lqN<R#X@5KNUj_$^$kr}uKah*fu*6f7G
zeQmi`dTa5^OXBIKU1WQQ+<jyH?1AJamE>*zkri(F9XA*8)|o#_PESu0VOKnOS@73S
z17S8<19|zyaYHUKww|ZNmyD1zXF)g7I~G12>W=aL!ho4Sn`o^JL#zmsfe|eWH1zIi
zLG%2OC42*%qoK?VF65o-21EuEDE;o@mrwrU+YJz^u1TQf_0H9wz?op1qu+w3v<W*X
zRR=n40s1ABZ#;}21c>uQZ``dAyr2|_Hjt5J)BGJl%+n0a=WKeVWzG4E!nl^PZJ7&}
zMLOkV_3i2Qa80hB?(Edrk;$!KQ6)EB`092_cv^wtgCrVpXS%3171nN!2<-rnm(TET
zT@Moo)|nx}|B5{4eQ*0OPj<3DyOGuDBBD|%$?t0mOr?p@*vRr}dS{~;R_tgb)W==m
z+ux&>32dK{G&S(3JOYk_YQC4)RntM@Jw?IFbRHtuJBJHUd4kBtRNRv9xelmi7Ergw
z{!*aO^*9AJRZ{as98lLgrnTWYG(&7U`sO$~nXHDhsjkf2+W#5%{RZpUqlDH>JRI}H
z6$$iDDI=BLHdX-Q-|gfEZqTf;U#N<1t?4Pz_NA_*G1)`yc}V^zG5c3p3uFKjhM@h=
z(3oC|a&@tSB$CS9f?FMl03Y|%h)|xOz~A13bwSQv!k^z1o&EtV8%;PVvZg?=igrB(
zD*}VOOt}H6ORF+<2jN5To4$SUzYhSgJLyk<t3kc#(@sWRwilgeX)icV;C`R3E&uuj
zt=xyK#8zsvsvBPG30)-0<so@#U9qxA#5JDsdYM;EC#nRrUln7<_QwoY)ygH9ZJqAy
z;bhHo>^-4L0m`Ut=zw~~wg<5f@TzN)v2a>$59d_vq#|OPhaSAP>jNJa9{Ne#huZ9^
z!*NJ0FasEqL^%IraR$Ek{^^f<?r_ASgjB4ISWjd4ItTTA5s|5B1(gXa2^dKj^G7Pr
zrvplwtWh1*sTyc1@<^>)@SnSEfewVTZ8v;|?UmsQEil&TdpeP&`Z?+@n{KkSE1-jq
zw$lmAlF>lY(#A?F&1!U%bnc*9+xZW-@=V(eMvrQv1{mR+QD+KxT{ceqUwjKZV2SR@
z&*pRUtN-rU^}zqYfGIPHJl6e8nd60~z`W}x_>a`H;=QyYWLU%Hx<a1!DB1%kuF2Ah
zlu0}$ZbH7XDbUrEhN>EHsNS+E6w%>y2@^mmRbY4AsK%vf^LCHe*weIN>7sx0#!^)t
z++sHlh{L9PIGrqyvcORi^iKWb&A(&-3HanT!C(~654cD^X`(0I?mJ$3fB!@~cr*w|
zb8~ZFsq?c+t6%LkF~(94_)7&w6F{`m_EySgLHIZl@>R-f-h08`D}-#UVFQN9Q7^vG
z2NU1?iSV8Oowp)ecD^+ceLD)BC*rG??MhR0uZN+olOs#HJ;;bY3<txc@|FJG6+1fY
ziO;lky-nKi`(K|~yhynA5dVqb$$x=>;Qx;ZZtLu5Xa7H~3f2GV;2RQue`ada3Kz01
zC<&V+GbPH80wrkzvKzBiRp`V1==M>$S8tO-zh2sz+C;<6=un|H>)+1sFh5RB+Ug4C
zmTDo=17M<kVId-<TP??twdIn-OR<MTtb>gIh`H`Mdc&S*`y0x^yx~~)B2>DMAdO?i
zs6py?+rA#y)OvjY<MhNPO?SY#GF`Ih<{!}_U#d@F&{D!<k8dytAG1|?pv>O0OaHgJ
zrN8$H&>BG}&Mq5Kr0qnfh-8J&vRMJj<PlNY(a5wU*olr4`;Dpq{#H+u>@X)75C=5r
z`irzQB54$8&4^^EUxcyh!LC9fdgg``_-QYcuoU|+hf9EF`g1;iYgmN=7L$B`jsW{+
zqV2SCnytMNkX>8|J(*ddg}oK0-ZfAwAeqI{SF*GjARISqZZ{(gf=c2=yifgDF@LI@
zbFh|U;u$sWHsIL~wr*fBy8jWuSI^^aAX=QNpRew($HZX0eC)%Z7+bo2;ONqFuM=>+
z7Xe|ed+I&Af>2K&RrCO4e?MUc?ovK2b)b{e1aRS1VT{Fhh@a}^)@cQ7-j^z0|8o~t
zxf)0x^vdH|?qDHIj5MRi4DY)p%O5Gi?X-Z~0!akW$6GOAaE7NX#%S$a?@;btA!Jki
zL?))Noe!I(#(0%DZ8luTGW@j~;Rkb$JL!jk`Wo?<=Hn+?MVDspJx>bv(^D852Hs8b
z%o`nlhO%2rc@c-IKT3_Vlp=CX2!Jq>Xqg!9D%1Q$^C@t>pp6oT27mW#$NWC&x}xpm
zNEU5Ytaqx^&QcSK)Jpdbui=5{H_z7+Kwt=B0V?c0)@C)MR)}I?h)<-7=j8iE!#vQJ
ze!D`*K`#R^z(zRovxDEZ@kgu-m6}W3G~_?@)d`L<rXgtX-PkZf<j}6v@Jh~06{!Ai
zJ()&4w&3=78MTX<VcuFj=SXA-LQ$2L=?HNsS(@}uUpPAkl++>oO_(A(t|Ea@{c<8F
z$i=>MpKGpB5>o`cTLT3#Ti7^>tRZVUMq>4er<7<a`1Ee6*6<Op_Wqls`lX`Pd{{8|
z5TvE}6*PFqayNx8LpglB5aGZzd^J_>9!pmI6ys9ltnZ#>!oUm^dbFxactf0!2cq*4
z6HhgAdX;*hVfT##Nt^bYxpbzVOXgiiMcb$_Sp<b407+v1s-04vTyc1Spnv6_jFxx+
z70ht(qLti28bsR_O?uynlAtBg1r2u2AROd3VuLnC;D-E|zxMgxbcl8TrX1wF!uPB>
z-z^EXDhnfIv4e_9eTBTFpbX=@StK>{8*Yc(;J$-&(c3rB0p8Du^~&Ul*p7Dpc}`%i
zfk1A!s0m-@D^97(fd{T_skM;gT#IF00zWUJ)VN4bW&3BfB9h9dl=bDCi3hGtL%DfY
zjv93$@3eYF-va+yZ7K_!A|l<&J}Fo5;88#X@s_3$xG;}N#5_;L+MuLu%X(-@+JRfE
z=%UmTbt(@UuH`$iofU7*@Pxx1jPYFG?Of`-rHi`I;r!e2f8ivP!(01>|BtJ8Y|k{>
znzds)>DabybkIr1wr$%^I<{@wwryK?Z11e+J)U<TYyX4m%N$qDIjZVR(pry6H$4_{
zcSHM?c+2_P%8<h;FQAxK1Y@<tZga(nz<$?B**)*(qt3J7Vwxb9XAojTT42_@Y|mbi
znbfu>WSlYV*#3^3EX7Zv>N`1mLZoGF))aKxRqo(Bd4ew!ldzSoXF(DVcSq@7ax!DY
zurl8(ny={w^*BAfH?{YMeATf%VLt~6!Y{z%=?W#SDZZ*$jE~jq$WC-pms@}r)d+ko
zyLM2gjrA=O6c5%pl{mX>?!IguCwtTFdi%BiA#%OnsUc1L@0KB!;dcQU7>1alJ;K6|
zNqZ^x)C>VQ-YjJypg3ZXyYRl)Znx5@|0<3N_&d_mLnly*K8Xks@e(^ThK;eSp<%%4
z>U0smds#4bJ^__c0^EF<l>N?9`piSBE$I!Ndkm0dW9HV^ZHvazMJ(FD+0m3-Qw#NU
z7kGdqi#RM+u#UMzoDZhdXi=ltaYrv@!F>B2fVJhKf~h{Fq!?R)BE59CVsjbs1%C7;
z#k=IfjH(WzduTT_@wa2?1>?WhrqJR%y6`_R^@^YF#Q%S7YU6DE^Sek=(YIaaM*Ezu
z`7x{N8I*1mJ{MYK=|Gs{@JYPI*P5r3OQ0%NB2&~$^RPbl^cYga3QCoTD*v(Cah&Pm
z?_Q}fQ%ckvyH-j6L6}AbQ@401L;ZuLd%YCHP=J?U5<|5;e2bHs5RNwyVEZL?mycZK
zJ|1L{HC;hc>uPFxz0=9#`OfhwIz2>A5KA$yfAULZn=#F?h?Dm$fIR}9GWgc-j`%?8
zgPgeFUqu8cN!NaaQr#kAxRFb|C3t3~1P2!?_Z-ByoYY|QcoZ${(5e5$ub=b}I*znd
z5OC(N1b~Z_D>HJsF=%gMed`I<#4g3$3nWI%5MM)Px!>=f8u&-6wnS;5B{aGCdZTbs
zdP?=0C_2+}7>;fiDj50$2ANZ0b0<`YoUS^a;%d~r4ykAXa)H#Jc)O&bk@LRWLRjWl
zkRA%R51<X%uG{UFE%+)4HJS<m2(}Vpg+SWGaHgl;W&6QozfZ(awvUXk*oL!x*zbNU
z!|hh};&ndKn<FB`4+z#lpu^|yT$BG=+}oir&~!<-REiK3=E%3?Tolh;<`~dF5mz)r
z&(AGQq<Km|jjs$~7)vw2-z=H|qQ>IK66mw_@B$!u5is;A@;c~UX1HQjXySo1lQ>um
z833lC5rS0#FhI+QjWrQ(2MK#fXE)=~4mUJff3HIo^?LkKyqXCf@Wu&MXNSH70qP*k
zz|0@04u`o4iH=6ut*O6WnL!7JI?)Fo7gT0w&w%Kvzj}7lNn1z`G33gf<&;GUzGsQC
z!^gr|De!iJ*MA?Q9mgWU+5n2BInS$I_b~FouWqZxpnU+fzOp{Z>wcF&52ZN3rQ?op
z^W_uIQ1STSKRpRt%FmBo0MW-wJhp})Rwd|ZBc>s790xt3|7OLgMFqR2>EfGa9Fu69
zSgaW$@Y$Q18-sCUIz1W+`vz_rv*mN*6f32E=%^@J4mG7oBdBRe516qFOd!*&Y}~{j
zCQ93u(BFSCf$P4eSer>qO8+v}l=_@42P^p$Oe)~U=#3rgBr<E``*YoZ3z+oDPqZ3)
z=27;>vq^-PJNs>6e6CcZu}~ukf81S_wu+eTOW=@n%Tw+7DRRy8rln*RGl}537;i3B
zsj$+QPQk@LdGAQ>T#r+f3C8(Xfs9egg2X3mUucqsGI6C%S>~Dy?<~J4|G@FCLoO#s
z{h}J$-mKAwwp5X6dD(|(wJu(>f1Rlr!QzO(vfqgs^q!VqX4gL#-&ehK#3o^Zdd}n%
zwrnDSfZ|-LWn&0$H#;w0c?-X)2_1`6MKHU$pDE33fun_NAIR}Rd&qXhYITjIt68N6
zvblyHy;g@7Zqva3DO%O9D5)e_-i$PFcfQ`IKr;D`OxC>SC%d|4m>Ru#wKw%d0rI)F
z_=D4!$o5dDO}}K-lagveP>E~f-mMS3=-1|{o;6WxV$o+HqQqY2AENV%?4Sl|O^Gk7
zM@qvInN)L7^R)V^-5Vx*3W42}wptfWV8a}Pw8L+HE?Y=OP}Ry!4@<mU42FA@Ri4mS
z+>f3fBFM>DDB9x?Kh7oXoJDc9M!?s&RcabwXiQ15G`R|(ZIB6@?4oa*NO07ei}eM3
zN!?UExgO??EpJZGoD4YM>fy}8x;@T$p<A|?&S>Iu<fynd3Rx4;c-vHuK+CKTr8M+x
zcMCk}!Oq%x^HycHhT0M;<(>GR)>=QsA1H!<t?{zOpM4<y_tb0{bwX{00s@-(0h<3v
z?f=hg;$~=U=VWec^PkbFrfs_~f&K$S+>~ZT`OUh;a$l>^*cG3_360{fL%4w5q@f1@
zu`ul5t#*LoIsfiHQCS-fDHI<N37Bw}&3gBal)^3t#7<mJ%ek%=WGI<JHYidpD<(`h
z>nl~i7Y66vnw`oX^II#)h;?Er;9yUMqD{yZYB+JHQ0Vn|z1&=M=<<Jj$flS6E*70H
zk;g{hPFa0bKMY^g*e5M0oz0ge3VKg0m9V)HkRXXDbioBn%UUd48U_Svt)|SI?f#~w
zMTtxAWkgeiod-1*&8DI=W0;Dr9sX9<Hv?t!Yd~#NBQVQ=EJKzjU{tTpHYO#`M8*8*
zL$-XRrKKp5D~Ee%q|l^alLvl=p%h9EC!|PIKpLT?33fTBzw%C(wZ+iwOhYV~J6U^Z
znTzrj!Pv%~!8nw*F=O_|l*T7Gg;2rsEC}UtKVT9vI+jK!@kPjFC>Y|K`rxs35s9SI
z^LHN1f*Xn9C>YC1!r}A6kFo2Q&n|B9bGtDe@T7Ii5j&XMclErxG-J9wxd$ff4fxpk
z7z;RlhEx2Rq9j0_vW7V}B`m#e2|MOrYXs4q_5}Y-zwCgYWy)<Au;5F=lD~ODU_4KU
zJ#Vg32PPwuV=CvnT2f{058)!F2u5I4c3s%Lb8nrdGtca=4xnuJ>KJJuoA3D#z0{nC
z6T6^MvFXJYpsz>zBGX1_$-lPToK9pz_#<U5zlNMbqGIk9a%H!zSWj3=Vqkj(eJq6h
znQ!rmo47lW{?bDFLXhyfp+7fY1`GXo(e0U({sfG+rcI9dLW>U1h0C4d-ox7K3<@iv
z;3Cm!$dj@&9|>YGQ#8r`Sq$)Azcy+W!5p!t2z%}mTF{84U)IMpgGVdew+LQ1A5f_P
zzCU&1&d?$=LP-1DLYnaRD5Tg$3hCLL9<Esp%_73}!nW%IVGoqnHp&W4SmXkz?8xW=
z;S6)`O^<}Xya`phNZrRskmF#1Ev?G{4yzs+*FD&&p33X88Imu3c<x<}3@dr1u2z%F
zRh~Nbz4FR|O3^%dVkzRuzZePbCPHybIE<79vfV?tZ}q$an6l6*Vx+JJ;JIHPU&lm3
z6O})xEQmwu6)XO*cBY(Bv?!n_o_pTfKO54(sZQTETpO(6_Ltze5wMq}wkQhsHx&Jy
zYt$I19Nn}@@&Vnmqtv9-eK0r<uf1%im%U=?cacHU`K<{3-?$Rab%<UI@NgU3rg}3Z
z8h3*NHl?#-=NNK>Z+_T2LS)W;-`MYsWLf36tHC#V2nEYPB><kuA0n#8Jv$fTB)qIb
z&onS{r&&7?16kMsQFg1eaOK}YbXkP^Ih`bMKTh7HI*2l{B8I4P(M~KSlqahaGV0c&
z*X9gPVd24+vB=rh)T1ZRa=_JZGd!zc>7=kkMX#oHQV2ooZ8PU-o*N2N>jkCtY-re^
zOow?j*P`;(s~0!cQr=K{GB+vD5z44-PNjwqbd$erWldX`r58d;&(X*MfOdLZU7=?j
zZ&Cz~e5s4u6~RiQz!f%(Oi4@~z>^v`6jvFcvT&HzhD<luy+Uj|x8Nuq<!1OznW_El
zleJh9s757#GZt2RuvD0x4qKd)O+L5`=9*qyd?%RdE2&Ql{rAsCab{jYV?EI6*~zgB
zBV2JkS7#ql3^bdZGkBE@m~UbeO$ZJg>B9I<C1~~YJiI{h7Z-6;y<McNd2I}xi%p&8
z!hYaE)t_#Y(C2@j(a@)^%Hlu7aM*7a@(3sa{6~~J^c4X;<gr?(21`52V9Y_S>V^bm
zEtOQm3A6P|{-1QIt!&jwWw2IcoOj!l5*D#`Ic2X>O0sGDl<m2xbu-wx!&;&J73c3J
zK_R@wK8K~JXBro-q|)h2HsP9Ie|>-XO2{~kg&dXRTUyF^5vsn+fivbO@2R3=er@)D
z7;9XD)0(>yAuMK#FvT$}bE)7K+0nW5H7LFMN%e=DyAAu$wYTLMY^%}ya@F4aJSgzA
zus)DY3z{m@$)V34)UTOkxSgMVtxlu>KY>CEI=9a|a^yNUJWZ*_SJS{S4WYZwWd*c}
z?u^bW#5gW%4M=tblwCb}Jk<Tm7hB_5uqap^$8FpkXZ&VeT&#BgmX~m<uzdTYJ1e`$
z7t9NhesS-lG8mn7Y3;l>uDQ`r&aaNZ;$oriaZ3A##K5H4<qlTHlHJKCS6i<GI$xv~
zAA1hPVf%=_FU}5h1=BjIqVA<VIW?i1)l8wH$52;Y`s>3-tC4A?gpv_BWpEyT9?D3j
z=2D<l*@D&QuWsIH{qLN1CYuzm2DYw*t&g_D<F84X6Kg=euXz$w)7N#6`kF=Dh5l#0
zYls5M_gmx1_Mq?<>1cbbL#O8naV~ab<3?;F(c?Xrs5lD-w5}3e9^3Feg+K1=+Y}qZ
zX=l_BPjmQIo-Vj~gB344bCUB0+RVf{7l@?`cJ@)UNkWrj(gk@HnAH;^J^xc$#^;|i
zhHC(t!SA4I<*J&{dW#1>8X~$(L#wv+9f^#J3W%g;EXgWr3u8Z#{GfMvf>x)qqjPQ)
zDvUfKs)VD_P<wF2NB<ghEuV~*dR3}L?V+^>)twX0hEHBq_m*(`&Y9bzM&|UxNV7?e
zFtgpOC<G&)-p=<sl2q_-G}47iM%x13;(any0E$3VJN%@o{_pXgLA0j7US|GuiEpGW
zwsro{vS=(YE7EP&h7yHV`d=W0-AVC%J`aoiaOeK5^8eZxwJ{;xZ@aK%>fT65Vc2;q
zKGesx5q-A2#081G3d-%Z=P@=?E)ivL5uswe80>#ZAguLmn;ZZcNBLHQ?9LgOGU@h@
zQNkzZ|B~^w-Su`pHIME{^0%z;8GBW&`*^Dwuwa*>apTs`=?syURZ0H^9uc8xAxWaH
z*`d46ntU7!{d}3`i&H0c;bL9hY_E0OXjFr<<hNwT#5QUvnc0}Z8~Y^V*&T-?3LZSx
zuhMXLtJJmu<Xn93``;=@$PYp@`-l460|Nx~b3ObYm1AP1Z~8x`copmanBu>(b(tXN
zp-Hjl&I`4b*Aq4e8|Q@Px%E{mmLiJvdQ~NeH_S24d_JZ)J6+mT=?H|a1nwtU3}-m4
zp~fu=mJH1EP@RZq|2EZ4)c3yjTRbXlC}iMcQt4xY^U82dO2Mo6G{{X8NrI}CmC^ot
z=zPMdukiW4+b{QhMc8+!ityM9EKPmW!HIiTs7Ydi;afwoAn{}rJ;1M=NJ~HP)tS^Q
z{#zgvpiK>0oVl^0CDl?|DU_|wRkc!I+eStmpNxT1YN4GZ)?ZOC)ywt9U<vC82kM@z
zFi`?e>!hQ`bwMOuG=agE!19ow>6IH<awp0yEiEW&&LnfPW?qH>%qle+ubMQ;Rtj>r
z6k(ObD&4w<7s`rdl#{xf%G!!CHbQww)TkD5fL_ZP#EB((>jp+-;yju!4`am%#)?ck
zO`J_UQ$pDR+Gm>vMI;rA-iFX=&xji;?{xvlpZjDKMuhZ~fRJF?CvF{pc0q+N05sh5
zhSjH*l*OQxg1m_1o5pS<PsuF8kAU{tgy2Gi3u2@DhCF0LBI7*C)$Iy}Y~WmPqW}v9
zlpN{*QwsBsjasEMN1ArxDU7{ROC~>6(9=6}OO*!#jr*sUT3CoROeKy%YiRT@O{B>j
z@siU-Io1e0A(t>RKK1656ZN0c;D-z5)*a`rQ97qrG89<!LX{9=YM8=Z+CP>;q4&W!
zVyQ_SnH1-BVWoXmJO4kJOd~v;Ti`qQ8dWNoC5-XIhp^Cr%H53oG9KGnDVDVvlD}Z(
zF3K0t)#`3LFFOXY^Oz;+@Ef#d{LGGxuH3hsl5h@2xr6Qt`sZ^!FM+?-S8n8_x`2tK
zl@++=0fByqv)@nMJJ;88mBR|N5ik%l95j;^i#AbAp_ktdy(aDS#azjwRF>$hqZObE
zqvloGOhNOMbfz}Ih-IKU*`W0)T2*%?$^%r*+wa%1i3Y|MR6%W1I8mCyPF*74Qe57}
zULoU1ng?8~zzpyB#)-Z;f70JFtoAL&K`UJ)kw|;mUKzO#7w%0Q5K!0Wp_>K}_^N?<
zRA#IX2iw|;;jj9KYF2+)iCh^W#o(;nVRcX-jBRo(Nv_GX^vUNGnam4fAAt4|5JYc!
z)%iqCiMzJz;{BD<yf7fBQ?!^6E6M02=Q{~D0E=P}mUXe{@!E>~0gb|*abvzGjA>No
z6tX9T*Hmg{$UNt&PPN4Qign~L-VDr_;pAYOF<tPw#sr!PO?-DLiJkxfYz(;*J{GhL
zm-a-Ti0fJ%7?t^xFvL{aTtYp9S75abey?qsF}#*1hfGQha;%YHbHpTF%9JY_-x&2C
zkPs6PxMp`6F4-c8%_v{VJU?sNr@x}ENnd3KW!3xsJIr10Oo}R>n>i@()p-hUR9tdU
zNp(E=^eyz#jXAlKi4;$|BZ=>!c}kG`nxID$r#sxa9K!FZDI%yR8i{M%u<lH;y{*?6
z6=uIOhZo?333P?>A#%Th$^G*!<W@b>0c@CUd0-O@o^82gLntf@&<}98>gg9|SVat|
zy`8ze->d1$QEZLe#XP~ju<1igaNINne1ZM<9NR8+LV^96V@5wWw*Rg6HFeOpF*W|r
zRZU6XHbVmG=ambSOLgoDnPV&^Azz9#U<Dc_1b0_OSvd>(r*Gd%utN&_d1Yq<e8Zkz
zL7BAX#}?Sd(ZJ#;=CcJTRI6fx|3sFiUIIL{SKH~BQ)O#tOC81UXZH7+%8#3=OU-|X
zDs~kTKAMxj=ulm8n%eeO)6>^X*L{e}cl}cCaHcAasQX#2i_^CVQvs7}D^|2hfoE#3
zFBhrp3)Dzb2cNUr&0FS4EJ=Nmq-^@2X#kg0M!HPUWLbh57alD|r>n3x?LUZ|vh7WN
ztW*_~^#e_(OMNvKBu&yxNntQXRpy9}N!=V`!%}9So7%8B11mR)WhSp#m`4LU<@m*O
zz|W9{N8C*fzra+t+ciLnne$F{yFrW0pE89DK%%ne`KK5N5Hh68q0I!C@fSeXV|(<`
zk}<$R(}!ai155eela1n2>Obo+=g~sY)<(C+5lmAEIoW;&tQlhZ?VZZrq9L&)zaVnn
zTm>+Wc557)$BNQQkNEk)804rY%D?I9J>_3v!t{2)Vo4u>G3q=d&5IvH>YNJO_kX~x
z;9TzP2Yp~J-Ob?2)#inB++Rh747NXMqRt1V6fsevf+bH6OoA~=?_&kqTd*$h8t2|H
z&v24B%4M|Q7>-&Pkb1@;ADRl`VtFE&hMOw=2JpjOsUNZ&U~9h9%II;*dP1gjl1jjv
z^3DK(ey;|AkQv|=PqnuRQ`TXt1&~hiM)L4=1=k(GK?MFuL~&E!H~uGQLZc|T#FA31
zH_T|4Syb6l=o(e3LfR}%$7XEZAVl!kQLhkvkm&Vi_(6BUL8L(owcX(NNlVrzhrD^p
z)5No7=#5`ri<dUjhKs19mGsPU7olQtquNK^N}C!G=gMYdg86u7y&TXH4Lx$onm4N)
zf%XM7R%Eazq1pWu@+;bk+%pjLN>wEqP@}vp*jdwWU3zrAfJ?`2^R|8$C^i&%Ds2vv
zqbajG%<F-R*-GfG*;nJ9s*DvL8<(wOGqUZyl@9&l&Dr3stVhp$*bn;Kj`Nx48Q83a
zX#TmGXl2@tf9v{wDYh6pXArw5f%Nakac#Xo{dm!@Qhhiq*~4cDf#<=0)F<``o8}`s
z`(JV?{-T$^z!<_QLKfVGPxO@<vWQeMay6y+68eSZn>Go*r6MiP9Xm(FZV|;Za=*I8
zC#mAI^Q43-c5~HwV|NC(P<?wpRB)Uc=1JC}cyP9V5sc<=D0MQcek>lQv^`z8D5i5s
zOVjJW3BjL&!bi@X+T~prU8l4vZw=X6CMylV)}eLcI+@qn<JmF9v|b+pSj)Aj7CInL
zDpb2a23NS4Mp`yLhwzwcx340*5{zUj|Ls6E|KR1vlP`8SmVI>#=bPEO78<7iAN4~Y
zZ3(#r0t7_&6Ab*{Hy(3qYiB2Y1FQcGjx1$q+YLszu6I?WGkup`Hy+5-TB1uo5KGrn
z8_^4D_AE1HQrY~4x1E@JJk2o$xKzY&l3Tv`7=kvxq%ut!4$T0!q~0VKXDQ8sSFMDk
zi;#cLRGhzGd>Y!jJ9<LK)d;;v7=LYU)(DP)G!0OeSFQm!H7(-AcC4!f)U-$C?{zUs
z>I==ArGz^(t)_g?q;zPD7*sJboL>6jAr?@+F@I7f+96aM3Ee^)y3kl$^Qwbr`K`}h
z<=F^a6*_vg_U=T<T`__9NLCWg6eTB~)QKn;$&E)#th$^P$OvV0>RBh(vWxYRc^R^j
zPas_9tXa9x=pY4U6T_?Jsv1V_TF@Gi)xp^`m>ss2>G8j$2Rhw+EU>?1dX$E|f~5^q
zD8Vd4)g<2=ahKucQHqmSLpIbF!0m>r(5XhHhHx2!SD6c{MHlZO9v{zu=CJo3{jLbc
zZlhJP%7=9lES4gH<Db>@G9?hfriF$)@p22m+J|17zzsVksPRq4@f~269WFqwzxfUT
zlZiiFwW8TfuDbd+Oj-H`@dxE<7{aZO9cq%8O(itC9%(;Hg!$S~@4TbNCTX$pa5dBR
zpH$hi@R-9MJO&?Ea-NG&r4}Orz<!)RSXP|E2Z0O02Gow1L2X#S(d%IU@b`K4=^09A
z4uAN~c%`p?3MEH0VSNF61AVPJ%m%dGT#Jf%t0+X%2c?;$f6FkTplg)?l9Iy$NA_;l
z+^l<6SAv{!um{>BTA!<axA@X7@tUju*Buy^yIP-SkkQg`u_h2SE&uy9zOR|nc7*5Q
zmQ$+hw##SGUz%K=@n|`%Z9QB#*u}eD4Vr1E%pQljKhvOPWy-BVqs<i7`>>YL6Woj$
z=DFK2mC)544EX6sT=&z;yyXEA@zqB!LoJ)0$kb=2*Ogxh03%Jby<S-^m%!NmZo~19
zAcqrzlSLu|9egZah&oxB0>HOYr#Xxd>@!4xmoLzN|3Hb5dswf2Yz0}U|944bZe#59
za|))^^ldjrkw2?-nJ5ZM52*uYQXJ*?yueB3*nz{H{&4pZK^-==Hli0x1au^l;J)p=
zyZniWC+;|bptAsrYua>Y;kll&Tc%*0zLO@xPl@n2;FnfNvt4ACs>?1H=1rugIrJkv
zVRasE##u!(1*iH_mPb!O{YQlin=QG0mWk_^m6P@PaP<Kg>50#%`mIq7aab6se*(s1
z>t2VV0OO{Bl@yO?27CZqRWC94Vr2e1E>;;Xb5TJeUcE9~y>Ch+kJK*TO1|2yJat}<
zn>E>nk|B~eAu~Hz17-QaRE0Xi9&VS`y^nzXL9JHl)(j}Mb99+_ANhkZ_<MJsNYfEj
z(K(k@k+bC1%3y2*R4K-<|1Ps3;I}00pT?@)dTtvxL&aU~;2hc=vH8>GXMS!}PhoAE
z-e-FCs~|1g<5pLebixY7i8OE{=@Ky19S4ySgr6l4wC!k14V|xW9;BLHQ|pzR2Z#Np
zrQyk>O$h>T<I|xwuz|_@0S>JiL1r21mkF;fSDqzg9}-en03fCrN5QT@KRuU!70K^W
z-(n%@1a#QJw_tY}pJ&<0FU;E$H$bQ5b?V+6AVl}w3X1kLJD9G%!VR&Lx~%&cXH&^|
zvpYZ17tmo|ifDJ_$&&8jADwmuf<s?9J3l;%n-33B+YqO$`-2ze&b2>vtKLQ&$+JD9
z)Oz<g*V?#RT`taEBk<s7-v)2$^P}B?Zj`;I2ZICffx@7zR5MC1vjv9@4(h#2^iMLk
zs=m|0@nqSwcupzmgn>U)yTv(((ni40H$9+GhVC<Kn+=T<vAc5H$5lyKJH+wFs~xH5
zjY`Uc=~Q#n842pAQBc;s<xQf?YFYP)^&-E%efB*^Mpuu?B2^_)#!GH2FKyai&O)_)
zeFprMCY!M$q1vyLaAzg8ei?K}fLa8N_@gSV{6QH5iOcwdQ9BKoh==ls;d~rtMV94V
zi>+=QDYA!wBJw>&<cYeUcmo^o$ZLo?yb0$A6&9AZXPZ$@elloA88Zp`#m4Au_WKmY
z+vAyr&k8N20AUZ(Toh9CKEK?gtHvlC!PnS;e3#F3XdxN1*SNi8Hc&#nj)|wQXqdZ7
zEBk!8PoceMWc&SHXo=k7-a^VScT0Jr4rh+7BZJYR!lPp*=n#cx>n|70O(hO?3?P40
z?+-Emez?&z1~Iysx?LcGQS5KaEj>qNbn{<fe`Y>EYyZeKf!?qk9vK&eQHQ>jFg|Gp
z!^0!~z0aMQ=XiH>fIHYHi;V<D3hSVB2PJ!r&XR${8yl~t?A7dMh~QQ%kVF*2+TAUs
zcNzWSs9#l{^{tHbaHfe$j~hSKToG@4>6wo}zI>(uUo-6DPQON;V9IQv3?6bMwbvne
zc-nw4+lVmiPx7fN`B1};61E`fWJ%}RwW|4ow5|M#p{07g_)V_{^ET@>SA4-q0;<p@
zs7E;8sTAsE)8sB#O3iK!qf2*-XONz3E%DO6+eW<MwJW`pe<^g`+oSR^f~Rej(*>wX
z63iGZ79V{r|I3)mREFT@J6dlf)k)&Y#XU~{vMJ1F>HGa{r1gxRdF4E8D8EaX!od9f
z3YZ{zO&Y67aq{`v{)e>G&!F~lW^0=?=>LsTScfyj5tkd7`TcS4N^|I@%UK-LoOE6R
zJ<Nud;@II+WBU`Nc%j$s4DS-qsNoL({xsO~cm-uuLRY1oOA!+hiszd_?LPi9FsOCr
z-eL+!ZuM2(5nsamz)HhCt^NcLj}qUYdTr1N$ljzq!W$qAIi>SoF_^MvDySazH0^Y5
zSu)x6=Q>m#@3XjX$BNA^dzW4<7IWOhxEE&B`r8rqNtxakS0o1@DmymWba<5N!nTuN
z`!mmYeM*IWAmk;9g?oy;!D{V|vW0#46cB-#l!iYkQFEQ2RFIV?B)*zm2P2kIsZLC+
z*eFF_F#!}Ansndl(Kk^gTd?r3+ZFD~dew9)%I(6(&U(HXo-2u=W@c^~0$FT1Rl5KK
zVwn<Zd(!pnW&AweYu~HLV+2UMgu@i}tb|2$%_?2_RBTydg#-T-HhoX$>s$Se!r>A2
zn|{w!zMLSs%tIg@IBQQA)+b*|`nxZ%ipB1BG-;cDp7Ww9<3VBiFM?(549VP+AnMRG
zi;!;~f%${+GnmPY+^7UE%+duxRgcbrDTNZ6+|26JI|E0kD&V3cBkY7q(>{r)<Ku!O
z%-OS6>2m~c;h#7+k9!}!s#Re^*C=Bl>SK1(`n&*5Yw&3-FMZN0?4%ElfdM`RK>kXL
zFssdzqruzM>i~Rj`&j4NiGMbDj$rnzb7viZ;viTk)MK@Yd+874_45iH*<t*aXfkuQ
zC-v=${*4;{@&9-y^f9bU7JjNDkbmx#|LdJFw{!WQ$horbf1bxa1#%4Nmn7wkN!GQ`
z3MI9v;30^EgQWVaRg|5B2GK5hqpeCbpB8pjp<y?+W41-13_Q0pIA#nTf%D7|;`waY
z;QERFwOJr|&~Q#W(yg^G2~#7Y6(NZe{c!-nAre|Jg*O0|$M26;PNX^K#9$b$7B4`&
zt`S%55hi~6*W!sttn)ezE=FIv$x?)AG7q95%2$d6=+jxW3hW`P$ulWm5EQaa10iF7
z)1)fXHqs!Hr7L%lZKH3>W1g4v@heV>l0)le>H^PX>B(QJ?PHELl_Jw7*p*M#T38oJ
z7mJ`!S-`$e#O`4n(%_Y^D5D93jdEU}RFQI|&ear7t~WQM^0%jS<q0%aay~+50deQ1
z>ITCSTF{Ft$|+#N3dA|&bRm)$jxD^WRG-%WS3NAmIztp@C@6tWD*D^u@D=43%jhWU
z=&)R&M5GqQHtD~V1IjcFEmqw@WE0LkqAbFpOrt$GihvHv=!hEjds1qY_!EAGTo}Tf
zKMI2UEUe=4u3$KXtv?agc{uZcLz+Wa6fq${-u}NJa2s0(FDVu%ML_aSvP3WwBf@dt
zqS+{IBSCt+iBMcgD)T`9ov~Ib2)R0UDCbm^iP|xkBABS&Pjf{16yG4S6B|o>;2;!C
zB&GCUUUK^S-cpHC*63nV=y3mH_HGFlIIUy8-ax`ghXfXFbcw*1#du;VVQ!g=_BCN8
z1GZQ==~T#M*SmZAm*|6bn?|>{Fze<4dVlE&nuV<K5%7^Ui8@GcGfZEwX4{~}+QU`=
z=O>hBchy6Tew5&w)|}V|VM#F#fU(^7L?bb<zM4$=9AX(#dI@RUm-z(;@}|$pEh2|9
zJ`uOFkbkrBH2qcqe==?@gTzd>5lask!fP#5XJ0;OX?(s$C7TcDTX3m>rCf6?DL6lS
zX<UH%e0dGRC6QnWaW6&lWi^~Vh87EdI|t_Z9u)u1l(;CCU1l9_x7+gbU?kYpuCSAU
z&rLl1S=ID<#q^p0Kjb7NS>wk4cCUCN&Qs}U{_?AtUS4Q+e(D$7KQ-~Bm~?S0w;NuS
z`rfVzt~)%tl0UDmupb-+sp20<rgY{vcXk)=jomc;^0G{LNmR`*4$RXo;t~Dko|a)R
zT7;nh1k|MCEd(}QbPU{UHw%56#!NZe^cMR_IRrc>rK#tXrSlo=Hw0{_?*)$&c?HmT
zj$|M|A#HB&Z!dzn9(L>X^a`*ICN*)5?3AIM3s9`w*_qI_yUny-Id@Wj?j35ayl%1W
zaTq_2^mYx5JnlMdU8he$AEv%tHh)9^w<J#Ju^)N+IrmJM|8@4+e<X2{+E3kt7|Pd=
zBp!J{noEWrb9Urn9}|i*7x$w*BIOd@!(<n&uC%6#KZ>+&`oYYyOt{Y3qb3TO#qr!v
z0sw%?1}~uk!cEaTn*=%6!i6$|&<-Qi7q@GQIIW^TNJD%P!MS5@M$#DQRe@nBx2bZq
z#kU5(vz>wnB4tj7@K^17zCY*eeQyZTAvDiQHt?goM@~Ea4#knJjd7*aBtaw%=SU#O
z`PLz-wGL`7I}XP=?}g;*<Cuo}xZP_>@*s>+Ku6#+ooGG=WiTVO8$R)Z&Cww0av{^K
zpsrtRW62wbS^XN2<J2xs>FYm#xAOG{$=fk#@AXG#?Lwed?CMbF)I+}t1-MgBjHlG5
z3$lZu@xTS+#XXEY@h&G3PZxK5=*=0pG=G?Lwji;-aprhq=V+7^!eh8Cn{o0LodFDZ
zyE=0fe>*ed>e8BVrXeXE51ctz(fQpkxV`!xFTdLPNKRns`77_qh$l=e+&*ZXMKSQp
z4A;t?Edbz<FqXX@fEhxrM-p!DOpRZyIx{sQgMp#kgqA5R+Y5&vL#Q%6Y>9wFt|`#7
zrjGrvWPFQ<#4TCzWjt=&Y@(9Yw#{!X*-Pf&*6zNg1cgFmLNNv$pY*Gh?!~j`L-!n*
z0>`+>n_Dw!-9b$6*TAJsV4u?HG0^|QrHH7A9qwM{L-N7OXEjU=Q1P&8M4KumhwdGD
zjq3cZx*vPlOpm5j`N6XuSt0aIh*r-Q?0I$SWi(8X>E#M2<_e~1U=>GjGZ690^Q$?6
z?HQEX&7@c8IdP{KM+t2A2&cP`qG*(K53FI~V4gZH%hwheVMu;QAF{*c2a%87<7>Ym
zojcvR#!>oI721wOCmzMZQr@11#mZkW7`yq-pKZGJyZHOucZ7j>z>*F?H|IV4=9qsA
z-KzMS^Svy1e9Wsp%aR%SWoc9?Ve>&++wsHKCXSZYxI{s|aC(TYg`7gz3wSSuc?Maw
z%2`Bnw3l&rVOhUL-@Hp!`4vEbgrvehDvDU!boTVqe7*g&sN)Giy^_7bjL!7HzotW7
zNePp`p&5T+Re_#f_syKwS25{&2l72V+9(<?=2Ho0$llT-#*_nx$C-T-*>>?z(;_%_
zJgGW3TvoribdE59l2RC=4wn3jV;}jJVR@#vAaq@2U7mTG{Lwdx$i+G9H6X|PabkeM
z1=b?%bO6E<%Aey<d78>wLik)VK73DvyNz9I53Kt1yyyo_E{>&;jXOAoj05zmG*A7H
z;t~o?<eG$l3}G0GE~wl=cEH(rBT95syLOjd(Zp@cf*e_4LtR0tf<T-OJjpfv2*g)X
zP0LMBT+{HfOs2HzR8=}iviZaj&LcYB5QZ|+x&JD*t9)$8mjCuYc`G~jr!919yzU~@
z#~0#`f+%Z|B>7D3&TQgi_bP*1O=>SEV5jb{IX;Ttbv~nR3zhzrxelll>>%=$B_6@x
zbh>B*;(=CO*8c=n?dxo3tPr)6#9OQWY-5_Kx#quXa9l8r@wUdVWVUGNT80EWb|7rx
z9>FsCv#oht7s>}sr*}*$h^I}^{c*`B|ESKi*ifTkmnFFxstDOe`E*!aJghxX>gPob
z>Q6F(da_TEryjSsWmQ8TTT$Nrv<B;8cJM{5GbIKGJv!yVW<@E9j>uHnEY{TTDpH-y
zI%n{aV|MTVw417FWTTh1eT%H7H#6K}(Iu|ahE8ewRet<Op6%JOQNKBheKp#0Y)FYk
zx{8Uqc70}|A<$Fuk4l<j*+9KJc9obL8z+0s<8(^Zk=#}?Y<d}157_+m@g8%9-3n0T
zMJ->$zB6iZvstL};w0ZFpzO^0>I`3x9IFhW?6)Aa&6TW8Y}F=t`h$Lva}?+nz{dqq
z04FNr3(sRa3N=^b_?cKc<E_{n7a(P_QA}lun|kaj?PEaUzhkVSZ=!St6IGJJwsnC&
z#v>3mC=Itv*Q*oIOJm_r%p?i0H2XWI*;?2VJ_;Ojf-5E;UV;TDRn)vPTj{A*OV|p{
zF3hTP5KaRJx?X5BYil2&7Vc&7V^K^jOjp&%0j^g>1XCd2#B(2Ek{Ux0;X<1cwd)?C
zL;x=-uglMjzP!!PCzw_s9IN8y_yy02&<s)uOjR$&^bzMi$UwDz2s*9QB;=g!0Y%)n
zgKeafU_8k?ASSMSk<MUJm0Y=K(W$)0I_pj&x$yV0UF**oHkN!u$f#torsPnVh%EV5
z(vxk~x&ZjKLOlG_p1m{oHqBI<IhprTkBtjHqNuAZkzoQnf-S8JXCFVcgL-=o=zya1
z#!0^JGCf_*U1}TC0{h>&MJMGhuA57t2A%$%xv=#!UG@dsFUXL3J)pd<8=5NJ#2I4q
z8E^#oc&f^EviVnM$l?s#&*XrW;c=+YS0Y;_<}!*>gF@q9lV_#O#TXa&;MDB_CJkAo
z?aH<DhT67VI{>_O0^fAs)E_w^(BOF>#L}9-`ln+{sj=noYgJZ4q8oAXQ*EoK$L3V!
z>U0WEWzaqxWb}mV3XwtjehSp3QSj0086_A2l;NVrXR?{S%uhaF$uScyH=b<@B=_m+
z=nK1%dz_<6G!F0M*+Nf8K%QGerS{MoXJ*5EgE<CbC5loe5YoX);HJpX^JjQUe>&TH
z3C3ra9^}(plb$EkW=Tu;@RG7uB&VrX<r^&Vc<6ZP_->d)1`C2U>(^T{p3OTddRMfL
zr`tH29jP4H?M(2R;mc~U(GrweHN9@Eyl7~_=SU^%XaUxxon6kKkse5bj$<J_Hf*@&
z_G`oX1Ef5ofjwl9eY|}mFg?U6zO6j4;G$h*cWaGZ<O@L0vu`?awMP~+kH_466=di{
zw+Zn@yL>D}yN8#`VK5f!YfCx82eDofPcB<eg@djFB8-+Q7|z9}{QspV>&h$iyhJN(
z<fPe#i4qlMUd%aQnCw_}=bia|+i=NUNxMg=ndcC^Q;!GoFWB%_uYBmzKv`s7@IC@Z
zsq6gV8(C8g=0uCulFE#LSvFG)ndKz^yl#sz<=S|Us4;aePLZD`pPMku4E*U0V?pyc
zVfb%}Bp348W5Wdm6n6W6!${V~j*j~Ovv<4nwsieLYM#1&M&Q3rrq9o6aixvukd14J
z#;EZ$A4=RAow#|QqOT=-{B>d3k{<iZ{@k+T0Zf@YM|x!R1jxe4{!QNDFAPkHRt}>a
zOfe?UrK|FKsh#i;?Gk^GpUsfbQSWyms(8c^SzLMUqhP9jcLz8<{5U5~OH`gWBFHGr
zBsEnPA7dpj7R|D@=7aY0Zf<%0STpsU`A*DCY3Nj&d>d0|!nWe`kFRO4NM3P9_*w7N
zmp1q?2aJCjsYKsHe`KH^7-g>f6G>)ub<bKnDs-2q_@{F$4R1GmWX3cRL2iwNmY<A1
zVbooEY@9`g=<b-(%kt5p#X1Jo4s3T-Pu-zT-lD9*y4H%QcdYE56Vt%dn81Dmnchlu
z&C(yvqm&5$kf1@XbzBYl0h3#J@1CskM~C#xDZ=@_^7u-phx1Q0y-ZCHPbaUxkd%(D
z&c`F*<&blYzcXNGV{Gr$-ofYg9Plw!afm7Qc(k`xQE_;4Gyztwg`cgPlcfcmc|BdN
zOPWHlgR6s2v4ZhaV8YdUBF?abo0H`$@;I&2<>L-P*ZMX#MCIq^?BM<Yf{*Lt{d5O-
zvt7J9TYG#RTUr7V1VSGh)0LgBNvObp8YX;vghuM!TVarmUx<_fa&-G@IXr(Hn_JtP
z;MenVcW{DV@U-dH)*=_j5Tx7b29}c}=i>Kreu3Y&`=fkB;c_;#_qYVk>JE+9;c<V5
z&12``eoO7{ZXe7^VOuSe8$NI$QVB-_xvKM+w+;R8oGjnVEgA|>J4ZXy(B16i?GCAq
zQ{eUZXpMv7M4UqHF<@L*S4+5$LscO!2UjOsTR#KCwi+02vFC?zbo3FVKVN!)20|V*
zFh&N~Um+6Uc|OyxXKCr_`Tp`j?Vhyc?2)l_<7jEAkknA9K7GH>K4yAfZxKHLGWx+u
z!1j4ahQ$4E4L6)K>nY)4$P0#MUmCclrMd6}N`;iR!`#O(`>^PB`LJOU9T($qm#BvM
zlP6GM+g2@l`#PrJU-}9n#lpjKg>oSaq6HU0l3@?tE_SWSLjg6dV$=e;H6Nz*Lc0xL
zFwy;miu1A?V!Z*}MBDsKy2<%x<-H~Wqi_|ZU}#|E%8GVPb<K45+WI<iXM6<@<sGq9
zUR5@SPT)d)dX|#1`X#`Y?8g7B8{*3!jZs#dpdR9@%+iR?I6#SUu<Y!TkicS`xeWQn
z&+K=4d-c2*jMLq9<o*D|;<B~|g&?<b`UjpLdH=rNVQlD$&%JE~qUfufov!S?6*oex
z-?GdkB0&sKdBWdXg@DF*UcrH0`~+&8q!!UH(A+1xlwT4P&+1FN7Q0EntH_0&K#L1T
z!<Hi=fD0!t5bGL(_yJ;n^CEVd)1OAQQfjkSdeb$~`me&EZPn3p*m7Zj5AU@5BbkIt
z?Oqg=mmkplAOsYtnhgoq;%{CUj5IQ<6NWX10xXnDGufaJ3^=0KSUU4`ppBov@GvkP
zeS|zr#^EsQY$`Ui17e|rS}h!^)KcWD*9$QF?FKiOgwJMj`1V)0?tn{dU-q;nEukpr
zW9)zmzvgs`AbZ0r>r^Cmi|OhNhUk+$LIG%%5C^_pBQP^G7zjN9#@Q?rhZpBG`IucQ
zhC2)H)43J*8AV4J;zz?o>Yo@eUA0>tP)#D*c4K`>Rj9%MKN4MvhM`jg44mm2w85{a
zad6tC3^?#u`4B1BT4PHcld1gvZu0A$gPROdBAki$XV9&mc(i;I*c>KfyzM1pPXmjm
z4*L#$y@h+)(ml#xOBA`9#<2R3a+a{B7Ehk?J0Hly>B%XA$wfP@Zt~FOFsYN1&&xR}
zmcH@;S&7^ZsF&IzVsG~N`G-I>gAQJHmMvUXGf9x81v#PKet-ltX;tu_Hp-7+JDu+8
z`u9$)#gpEZfZ^(7LO&n4)LwV!gmGnDhC;Fv;AEn%eYR~D&->j<Gnw6;r&U;v(#v=d
z<co;G#6Y7MeB5kZZ^(dYp}S1q?lvEL`|$j2p*t)AE`I(2Y{Fzb(j1n=Z|T!XW~9Us
zo3zRKm{%*Ni>P7`d8lA-e3t+*y&lWBwcB-Bz~Y0x^j|+A0Lj711VZ?V3J~olnN_5n
zwcCs?P~Jhpf(R0EXsa@uF2UF3(a;_f!jNf>Z}a2%jX((Dd-k3j-}k}tGFBJ@fxoxT
zKsI8G#JPuMa~}V*NMSaxOo!(oX>uQ#4_|*xpJgKH3tj(7irAp%hWxp<YF#ZI<xBJ}
z#-V(yR|U_a>)rhB9m-et1`2TkHmP>^P<H&sD?9BMeWp%RLhj(+<=l(O53%GoNC<@2
z{PuZ%q*v!PH{5AwVEKu09F@bUkR;YZdhp3r9T}*bd+yK-u$hY?l5h5RU5lZV=|X#h
z4gb?w1gUOEF2Jzi>B)U?e*j`>yW4w3cJuohBtMJey$`M8ZQip-G6~qWDr1jVTV}#(
zbJz;s6Ux&7oOqeP99zDY63dsGy1@zT+IDeRq((r7+RZDyUk|bif{&XaU>PtU(GvUu
zFFqx%4BL*vkU?^JP2nN^@uJu(7b}o9w!j;COq)ukRAwgu>Df=H9|@tJtFFOaY%f?W
z&Es<isCePN`whJ5|Cdj;mc{tt%6jzja+{~GPbpYc8dOpiEy>4$pk4tS`ps!)iDVmu
zV1r<dljCa2aRH|q^GTGbuAE{<_1Op*M?HySLfmy&X|q!xXYDJsy^7v_weoz)w8GPv
zEl}LmGFYar-Z5umS{<rt`&F&#eEX!_v-6kIT4#J!E}g!WZy9^KkAq956-AF!t)#5m
zGs4IAmxZQCWrmGkXZ-}xc?KU@M}|25y7#*!%l49LmGlC652UxNKpWKr6%59b@Grqf
z{hVhj!Il^}jb@*8MYrRrUF3?1>?a@;j{M38@XQl!F=q@`w9rBN48=L-@$?c(spew&
zbioy%%f&UMT0UaRSwX$9)%2S$?|uV=&~lK`(DHB`l}*cuKIOpo`L*EntcyNS+Stk#
z`1f1ek#F^%Pi1>|EJVV|j^A0<nqA8W9FEIG&Uo<fAR{Tm3NJy(Ij@)^3$2t;_;`C1
zS_Bdf@E|A3b_Z;cAxXg5dD!Z0VDsqc!$-!wO2g(NHo_VQF+SWhGrGF$LtzUIW>CAI
zmgn-}7vlXe!N)=eOE~}fSl$Na*p$67dbU2jjSXn?w{O(V^1Y(6KB=>JjFo$E;sU*>
zZ*7FP@T`69iw8ZUvR*u+XAoCgWH8dj+QVxAzwiy`dv2yNWMtpG0cg<shJ*BSyZmpF
zJomfv>cC_rj!VC04YCeL_r6hUkA`?8OBB_vN#tx#Y7bKb{pPz<*^lLZ`{SgT#d?n3
zMIdlRXexClXrB6N<cVb(6(CElzCyits~nVe9xo7sR1@}%PR&DHdLnniGvEUqzB{%1
zfj_x?r^UgfhMVqae)_2;+sd{1P{I=!C4)0lJ@AwWsgb*$d5iH?$zPLqxC=Q#&Cp`9
zt2|YmE@JeFxEWJIEaGh<ta(y&fCkOV#ILx^bC@%Ydn~4P%SVBf$NAp|n>I}PGxWa|
zzukNy|Dv<qZGUhKJeT-z-*F-kM@&&xDT2>v1r*~u1!yoyF)>wXKok0|Xc&MqFi_9x
zh;fGS{)CP@v>O{3bfhf(PM`31;&}(RbP^onoZ}l7d(qP(nJyifAW3RMhgXY%FDZr@
z8>Qnx;|p4prY&NjYe`{%7uo^M<WHcU`0ILfq*R|LvYKFB?7>j#Uy<t}-CchX8WE(7
zD=;5JMHjzhGt+j@@GxmcV5y97W47$H9kk<+V|9EU%DK`&WMO6L8Q$?~YGmlYJv`i=
z>MuTDhaT4|R<vyyWMy`=vT!?A1YTDorMukLNeeox9{f2CO9NqCEA1yr<C<haFxA3?
zM_iV;$4u@`)@1A7;rbFIH+c33f#FKov--{Yi^1YgL1LEtr^7T$tgATDT#D6+8jK^Z
zkh&UGOLT%@{D^_nq$6Kf>zT8E2<z3iNCDGC=R<I=Vz_}nBw<{A!3OM5RtB+!A<U#*
zGV3&8IR32wj~`rPPURG$i?H2&0Fxc62p^o^Zem!Y2!#EEydWaz`hHN|Jo_l#jNBpt
zB;y?uz@KXrG!WC=Q>4g^`Ck+k;M0!Zt9nyjrfF_lC&IbOTW2%;uPKSVjg=86@=j_R
zwhV!4NqAF0(1E>*iC+k%8x`ZEwd1_vOoKfC*eyU7My~}U{l_8ruOUW|OR{%0X}^PW
z>u1urfq?&}d5SE1g->J#Xfd6#jwF42ed@{&6Z2q{+O#23Q4k*+hC|sh<Z?fBB(y}v
z%F%B|_tfRa%CbVr6LM3u&>cNHj5N{!Z1=f0HrT~86%0K~q`@>|O(k~;ya?;kyhV`%
z&Suf5iFPQ(xw3-i^DGmIX$fsqQGo@BuxlZ3sFG(Zcb7v2$8capZ3;sg;j!R<_0Vby
zS_2GPvTcWY!c5qu1dRBuMr2x*ydC4b<kNvEIS+`Yey3CoR~tF6&pi(t2)LAsaQ-{%
zH1yp<Mobw>$oO0u;d{YKdRA9<MNbTbeLnu!{}^1tH(jVC!uf(Q6{h1^gnC*ZUds*R
zdV1W)Gae9)167SmBDzDQ+#&f`$n4zv7d49VY8~z1XQ1GYO!0*|aY0j!D(6iA-93en
zg;kM3N8Xu%17{)oYcYr*b8cW;%ha5$9Tci$*5ipOYpP`J>nnMr&}1Ud{EvL8hlP_A
zyB1X5V{n8EyI+y03;*sVSTQFQS}*XgxSvx5^S&y@osx{dfO`&&+`1iP$HxB)P#tRa
zyL|6pTBGyt$6DyE&o@5RI{V*X6lQF&SU5t~0FVNSx&FA7=5Cwu$}+a7Gy{PaE}bA|
z_<Sm|u{AKCJiUM^d*r6Xo8AT{8+1U_F5B3z;bJH0>XM<<s%94|bJ_<3U4K|C0l0B6
zOlPr3^ImnJzj1s}=*lh`DhKAng|~Joam}&h4UJfNMzlkM%VjtvYQ>6vtU3t9B7Z8w
zkXYk6C1etYl(a^XK<VrV4%GW_P#UW2OJ!w#|AGOS#R%`G-4t_0UWWOOCHMJIX3{CM
z2#Jt>hGL*ch_r45i`&l^cE0jVE>JhAuSFS2zWe8Z`FOb}H*4k4?L)pX!?7Q=LKW&)
z@$=X=mFvCjx~SyulSE#bLH_ZRfULNH6*=8#I#*wJA6~>?K^K^6t5dhI{s#G|g?|xD
z5??Szl(WXM2Chu~rz%8RN_$%?Ug0x`Z}s6eY{nL1zY7rsT$yqfo2+NM!1PZ9@LOF>
z!w6otgEVfllA3~N%ngFZz!2<l*g8bN7dN)*@)9(KtpPCJ8LTcUG=5#MVo&oA1o?wH
z@{40UKP#F#Tj@=D`9neYENvU?!Dh2$dXL1=;nft)7|;9L>d&(On{w=@a;&rT7xm~@
zegFVszqmLCVXmPpxsSgZJU113*sC(NeNV-PviRB>2w#mXC?2u)7sWoMN3{Q~wP%<<
zSg%ItQD>h>Q)T;1rhu~9G2edwr20L<?C94g@rWBj8W0S78yG#ixHu&tVlQe8*zkIb
zWDx1a_u0X;S$jea#n}C!33OCCc{vL8eJcM>gRDFUCTN-P1+LRUX&fV;M7Dq`WB3dH
z-@(4hLC5<sQi3BVZvH=mJS1&WBW9vtP+fTTk98yHh;CMSdi;sXO^If3+$n?|KCeKH
zU)sZ#(X!mFgqF&`E;D=U&7k*U$7ZQ|i(W!O*H}Q+(H1^L*tO^TvsI6zJy?bczAQp$
zl3?~z1$mrBD9E2m4~Z1*OwUm8mVqL0hc?2dxhG5xZ-4?>z|nJMBnM+eCpSz`cCNZ2
zJsWd#(6YT8o&20L@5X1#aEb3cVZ@7oBIckljSNdvH43*N>M~7+tQ}7#syL^5c>WIn
zW<Z(0ptCV-1l{3&-x7Xdbi=c)*Fvigcp`U0m}D@^cs_iKaTkbLHx7d+62A}E9lnSx
zJM!xN1=byfGhJTlWwxHkv63e7#}K%q?L#2!J{BLPNZfLyIV$Iw6FBE3x}D_dR6)Zb
zfS%X+O+H2E64{HXC*?x{+?^LW%mV<&v#uGL84S!tVIX8<1r|HPD~{%KoY$~8GS?c+
zAZ<0&4y_-Vempe1frUWp5m@)VUMl26B(Z{~0)Rx36b6IBq6bk1M{eb-IoyOD0lx+&
zSNnc|27p~Rlhz>tQu{=C5BZLqRH;KDd#oepEd4mF$&C}8rw)=m^$NE4yi1)~?YO?N
zA1Lktb?mGuCBHA4kD`I~YEGw(tPd*~g$PG1#FI2X1G-Xz!=ZBz4g={n^a*w268eTZ
zm(+;(-j-ImwD4gg4Z49X$&FRK=UDKsjpS#*q;f1_MgzlNVYgw(Z54~DTx3)anF9A7
z!y*@cbl$F^jfjFEVN=XtWR26Nzyt5danS&e`$9{Ld*+~jmVu^~Y^#1etrH2pumHs4
zvd_z}_#vxG(k%b@hd+G&hiwmABv(&f?qlq+@JXD`#)-$gPdlA6QJz5av}*XAkwAh5
zX-n0JT`|&!jk{(gsOhKG{o>W((e+h+Ye>Mp_~z=$JST~@@9DQ?aZ65$#K|NgzE4xb
z91bARV)y}d>!yMsoPfX?v-SEReAi|9H8l!7cQZ?dUo4c3J0mk`jjpod3PDTs5)r2g
zi0QUT$@>FcTEjJ1Mx0>G#vg_a#T|qlplGcPY?BHCQC<|yFOxq!|IDwe>cKl@ZPxX^
zVwjyZ{T3@@#FD%KgG>2hA_n@(E3$9l^kul+UZa!)dyE}Z9MtYKFwfL`Wvo<UPYa?a
z6U9L40=_e}@1Y#`kf{c+e-CYx5bK4aqtSPxpqXE!x2<Z2%|NkMoSDbYfwA+@EAe+;
z1=~2^ZVKK+xNhEp-S0MS!iLOtw1G1<%|PuilQizNt<dBP-?iSkZ75=57n;5m-}{;z
z`$?P_D)tv2vS)Lod92pmey_+Lhz>z1Z$9qGIwGEoT(zz2S7g;=0ifS{t0NFQ-Xd&J
zqS|j^EA3(Y9R=ZmeAiK5g(9{~n2o3XhW0K0aS-KTWzZ2!Y1Qj`3-e_MZRhcHWC4YB
zJEoCFW+H-T_lRPrVe;T_%MPL@OrpAK%$zi8hkbuwmgFWKW|H|uI=#iUc{l4*)|nyF
z2C9ye#Ta9>a4v+Grqdy^TZ+2uE5}B4z(f>jP96NzEA+=Fy5O_{N=AHQ?coL1_uo6z
zy~ny6-V5$hu<rz<rn~Czl+<m%ELj}vqn2LdOm=i8OI_*Nf#2hGuaq4SdxBZ=wH+P*
z+Ye__sU{o=?jJ;<g7L1cu+WegZRqp8y->BHfr!U*2ig&hPeiX`_k8U7KI=amW$X&r
zS=>)L5!cL1gzI52`=ns`To5F;??{M*)k?<6l;upMjTB}GbpWGjxnrXb%Fo$J)MQZ6
zf-n>dW#GSLOO!a-aD@looC=NAnUtQWgC0d+SbkS#cb6^Qws*T?3M91+Ien<Nn0kUt
zJ|eZ{{d<fRLbE|jA}2Ka<mR1w-pST<At14y>V_Yg$f^%(4yHUd&hCvf(DZCJAOlm3
zA)b##s6Ud{5{xKjfs>ibMiuVWQ9+#s*^Gc1Pd(<G9E4ud8I)|FeKTbi7^@(nDmD~~
zg@#C)!@{31nBVi#sGY3xqFuk7=p{<$lPQf5uB2*dHf|v2yfC)9`Fxs>Qa0NP?O}!;
zw33GFo%JKtVKWJQ9033q1)X`I<34$Qnm$(AGAjlLbW27j{(?#j>|iP)Qt%xKd&-<C
zY{!kl)s(la&6Fbwz1xH^0iYubn*|7{p)wW{#LFl9Ri}s&x7xNx$kC!Adgzd)P$qS&
z!PiWWa=JpJ;?Y&ADOpyYS^TpF(92C`CYW5qn{_aPHQLDe5-_Z?@|Qhv?ue~|x<bhg
zs6^XvLoB_kqA8N(<G>2zaS3O^;5;57PjWj#S3~qNq2LXTq1`NYy+y7uq|-YrqANOf
zxxy?(6rn)bN{&&>fu6EYz^Wi#kcZQzrd-i;f&rCFQ(&zzLAit(**eig5IFC!H&wWX
zHCLdwoY>E<CRD%8+BD6q0xX{M0&<ntSgQwx*|H;EM-D|hJ0urT9Br#H0dFcrlg0Q@
z3xorbc4hmx)7{6nQt#dB{`6U9iT6fJC789%_Ma+R>I#hEhL0Y2`;9d$(ejLUR~Ine
zYeAwL5y06P5fS^<i21UtMs3g`SnsVBr*F3Z^W)y$cCzaR1|)2<$e{OstciCU%HNKq
zM1*i+8Cnu&ZK#!SL%QxxsX7i0yi`T2&p@2|7%aMQtw?z~(C$Xhj>|s;M?B)RE&M!O
zVO}FB(rWo+)BxtsL&_0J1UJ-OJ{7afb9nqD-0spbFGh=*AKWV-@L^Ax64vVVXkjAj
z=fPgz93ULT(x&x|N5Daljtk9LZKeI<^)>$Avu6^%Iu5TaK-^w+PKQ<cuO(vifgt~9
z#(syO1==v?t?1H*@m)*lrSxYwgrw{4`K38jzOAB456zqC*r~pG*7S9{v2iGH#cTi?
zqBP*g5zTz=5ZYU%;U1O6B)>&v7V!mv^De#5OE2&Y8w%twQBtYOG`r8HP6WCl;eLr*
zl#`sT(~~w3z|&{XDSZqbZH-H#pAy_{5$g+<V#$TWMIF!63W$IlpHg*_X$0K>4RefD
zV`hl_KAqy}KRQ6VLO}fa0Px>7?eA@eV?gsC5lCqiD7`5iK<neBU76+;!^Z){APSpP
z8PeCi_+ER0=tx;k65kxZCRz3tMnjxEDI6IyeB8nCP04zI{kj7M?glpZ^+Ekq`Nos0
z1EO8g8`B9wkZD3r;@F51ZIM+4@)vNLp;n;~y!BSJW9mu%yiQ1br)bM^Vh;7(GO>q<
zbz83^>;;NHfz(|*PJLEnw|vZOqF@Q{J>ynM`1TW_W2pFrN?4nY$9iqjSg<_{`iG3z
z({O3{)R8K8d+gf^R8YQwNJfF;86W(@98s@cqm}vm8{@n~+I2d8NSC#>Ovxa(CZ<#I
zpo~Q33=_SF<u@&Je{Z8#2gx(%dqx_Csex-VT4Ar%-j}TeN#+zKaP+h9RwYVo@4`=b
zB5LG@mL||c(F8Kv)Jm}6GMGBDOi(WM5PwN$0quP}J>A<og-=JB|2mM)eThj(bs6P@
z*Qvgk0$#$xU}%&ykDI-1y6^l21WZeP3dgS#kM=;vj*C0yWYr0?Ir1Wi<1XQdHu|{l
zm^y5W%3MK)tK?r~%J%kllCQqfbJ8ic0co$m%Vi&VJaXnG<*;9ihe=IoTMbk5`RMqW
z`8rY2I8eGihX>TT?_7}q+1+<)RWj{AbBIvP4hd-ONVRa0h2U_ZEWn?Jjlf!ujZQuI
zkQU7lrm4<GGD#0~Es2*oFfPiS6l6Wc1UTaH_Y@e|)yWY6uF+NUsU%@9%!>1NI&NpB
zKR@|E8JL(iQtjo^hB0p&DWlI^6h$vWZ*15K7Ph7@=gER~k1s$}X-u+s!NCZSK?ypN
zC8!oe&|vo_CL`M>V2?Yyj6}y5KJBkqFWw&Te>@O&syS1Tr8Jeo2mf~El&AuuXUoao
zfmo9g-j!AfkWisgNpM)hY9#@*eW)>z$M&Po*zJdXiPP(qL}rCO+NB4|66<xz%A1_A
zk;0goct3k2Gh!Yh{MWcJ*u0M1Vfq=^*u35QbT9T22!o*d?}DwLH-5GCx2cP9+fodu
zO%;-*=wiN#E~HR5VR%qBAdPl%tbjHGGEkWJ1)Kdg`m0Hy)rnnxqKF~rh9w8d0lJDF
z!nysoKZR4{Eqa$iRC0rH2b2pt`cFVthE+9$ZA2VAWNRgobDeyWd}q%0Bn#s_AAQJ3
zq{0K9K{y49E}kUw<rFtX!`KfN1s*Cqv$tC~lt3}A2_f+p@$wmUh1RvKNWE654p|pi
zyx$42Vn(|bDN^pzX*Y5d?*LM1S?8N!i(3gjL#M}<eW`WU&>5hFo{)ZedgYnZmboj-
z`D5?sIN>+ylmabPUctz50Eb4)oi_e1)73*fgZc+{QAXYL#I<{P{<m0pGiz9Z16Q6U
z&o}Ni-L7PxZbpRqQV~#oFDZ{Hw_z^#;MAt%WH6!>X=S1VPU*@M85MM`ET{L`a3t`0
zJHm$$();)9;fRrh)=^wIk0d<5yu3o+0%ci{a7W1vN3bZw$%8veL1V{EY{P=j8e8yf
z2_~&{(qR1IlobMlEqS%yWO$~JUI4&Ydgk=EF{w|vI(j=hk59z1;4FUxk8dRMau%5G
z_~S8yW@n4p5VV3A((*dFzJ4i|H99xFehG6xP|z|&2a6m;NhTCLl?8FHu~^TLRkAh5
zWVqw&U;q%~ivlG3q3F55c6jhPEYqaMy1F=|cUTL)69j`P8}B%(#~6ATT<uR71sQ~W
zc4j9ZQKAZjI-QmeWN0B!x9nlxp5B3>-^c|S-d?3*Ry_*pOd%jHy4_*(DwxI1?Y_JG
zgxaFccjUzrJ9Cij-A4~y5xoa~VVS=J!PbAN(1H@`SI{8ghz-#f%P90}@A)ZrNgNN?
zzm>sa97bm8l;%~<x7<_YD?!9}&{_>RXNpdptQLfgdtnKNTZMNtxwJGcE&~^=n{kW4
zI?(!JCI`0b=A|{jT9+|7h^^a}ETpbmm)3@A*bCQOD>ip1??b}Io=0V4e{RJ-92Xz`
z49byIwXtj`;iPG37`Wzn=~H6b=P@uHeYPcSmk)fuf4nQimXY;mZw>L5ACRUjEINB{
zrUSem37BQTKtfw9kFhqa+V!VQk`H$|MId6?FB5z7lHb)<pt;xT+Gun9C??Y94!e}z
z11nFcCv>A^2&J9J$Bhnr>&Y*ZBOFJoUFD|A(huI#l@aUs$tNLdZSjj1WjrTObo|U`
zv~kqF{%kg$5ez$_wg<{$$kBU}xn~rl?g>8~GcuC=`mq@?9|`~=OBI*y9yI)zWmAm@
z4d^ymTj<xH_N;qdqy_N1gFrI&ixf>>EZRhgpS2WZK2MU9kGZIuMnasH<-D^(9PfC1
z*P|Qofuqz%<M7o%7bjq*r+1|m7dCme542UsUgF0WoDk>ej<BIdTDz5Q$$@BBf0CRo
zDiS<N5}^Z65pn5U==|vL=*5X28=o!=5B7L3ewahHPs6yWmu2}u?z1K#_VN-c;GNbk
zOk5Jf;tiGKa+c;r1Pq9$-#aN&e>!<b{b;`72W|DG)9d+$5y-<&d?9zN|Jts9^PN0{
zSXPWf>LC41mfA{=YbTq(4CZN-6-_UWgf!=5_wqFr?*{LqEjqI=&h)-F{?W|99hW3l
zt4vwGOzxW>tuE1JdJGiQ(p)}*9`8(<g(sIOaXn12^{e3f4-tITyoD4aXR<BZN1&x`
zZHdd+@+KSd71<_dzUWY#!sNcp$H^$KMvG}$$=&94a<i1%WXL9gCI-$=F)k^cOJVY_
z2%yQLkj&<_)Z<bnf7o!6j+(Msa<WQutrMNzqa#sKZwnyM%1flndO5o(r_R%wX>*F&
z*d)!Tb+X?wY8q2(m5B%bvl3MO>KUyl?iW6(^Ktg9Dd*$`)fW>ezb1g{HgO&<Y@;Z@
zPxq74-|s!Q<GP|_Vt3|I&dm{l+4#gt{q38R%fGekxLW09`_r@wz?;{{hu2E5j8Apg
zfa}+QQ&jnlY3V^~m;y#CAAXlt*(KS7CG{M}UAgQCm`!DDGoh0ux!R{myvZpLh99vh
zM{Xu1OO4?TtkNYn8M)jn@~OF6JjZM-ux$@*wWD-8y-D%v1v*8rAg~DvXi_J-W~~j;
z$A3RL1cV<lcKAn(jZMoG`!iJv4-58_*RcGvbaaP1I^A}jqqXXxV3PpXvVnU#x{5nN
z{%*rY?ug${&gem69@q=s<#Km9_hqn>vgEAxlRE?%9iD~h9Jn%`v5wIjIv>ep7B#aO
zBfkzYzdHx@VMGJ;jINv?VIq9K|2i*thGn78OH70VG7!=}fl?g4kLi#WfDq+IGekt}
z&!%qN<qJJ`wPCKP8<-3eu!9nxOw8;P3~d-H>wdKf$i4H3;~>Ze6B0rAKA6<-waouP
zkeUYPDlFQX3tb?z)A2eI{U5tJcuh|@lT=`d6Pk$Myc&)RCiiJQ^ecG-rfd}S+b<dp
zAEwp{9t8;b<B8b#PyFIufJN1MO#_WmC;l549>d{A8)W#*ufinDwh~8&c&-@S;TmQ@
z{+_n@oj@c@d3(c9mSmTU?82fSmDRX*m(Nh{8S>vCHHmY3&5UUpKb|nrx`9Va5ts<5
zYJ93t8doUl89l;?OyS)Q(m!W7LY-$wE-PtqoAp}V#*fj^6&X`#yA@?^b758w{Pb+H
z3rTYkfmAouV$}4ufAiwScB^)9NHv82cEWzP&ShI-eQScFho4@xNFsvBRRLWsbv0p<
zFdonyrCuh+1MgxWM!``n<~VS{6a6F$ISdoKG4N;}-pl&ln2#0}DnC2nVY{H-u_o3o
ziL)Q6$WNcTBvvH{_L12aZ|ttryX@VK>8qeA!A7y|1xlcVHs@2Pt(#G%m{#TE_TRi1
zEiKqgL|wd>E(3BaH@0x0UfrO$aS)q*-*R#T8VaVyS+&;VH=_EBe|08yqp|DO2JUjs
z_1q+GF^hp+$%Og|>FJnvwphcE&O(;td<LMmy-3(i+m9e}G#|I`81y<`HeP;l{jn)t
z<JJ$lFs}8gi;cEDN#drf7=P&F4OQ!TD>c8t%(nTzOJ+;G`h=|@hWn>rOmn>P3X9sZ
z(DfdB(S5A|QfTs3ERmQ+W1|x+AMuz+zxhbE>{xdCwiU0_fK4`9JtkF#NfbxTuqk`I
z?pAbZtea;aIov{cZab#bRSqadVbPDVtWIcgQ=%Q8YCPcY5u0Pk96wGf+WNY@jjk>Z
z<HHf`2`vdh8r#@U%Y6KCnEMw*sDMCT7{V>v{d}YgRX98<Yeo0f9r$4)f5TVIAzX~;
z-oC|{CQ2n_H-EWj*(ev=@i`2ydr`@=C<(|4+T_S`FIpO}C-L^4?z6E+gs`_8^}^Y`
z1|_H+C^8b)u0MXZ0o{v7b=ljf`^g5K@8%To7P_WQ()4@^wP4k!zpbApa#JB*d)|$(
zw?N`q0XmDT#9(&L?m;~#BVQ-hnp^s|kjQX#zw`-X1&{51w>~4BhqLMS$_#O~T@gw*
zgxQ@~&M)51GG{&;Os`Ii7BawKo$Yn;!7lRl&i6LaA039QM|KuiH@_=HNiNVWPU1&y
z59oZqTI9qJX}Fzl_0IN~nWGJ7{e@3b6wfe0eERq&4iz|E&1d<<b8iLlB6VOU!fH&r
zVj#ovDdUNe!_e*;LC@@dZCh?PsVen<6~hwtQD@nQo|aF4C%VpK2p5^C3a80T3|ZR(
zkm`KPWV_b6r0`Gx%jmPbSAmsM9K*s8B42=<nbWi6%Op&0%PjxuuB@6DB=_65Jxq%z
z5t-kMjsm-{d|8+;W7eR%l|ipL)C}?Ci~}kGDjzZdq?PAR@gNWr`{B*1GxQ1|=+i+y
zj+YV#IvrVc3V(aSt?M1eWN&8=N=Hn?zUmbX*l1hPI&B&%eQ&5O@gndnw}HR?w{K3a
z(BIw~Z===<|6Hj>`1;f~w50oJ7+YEB^)JbHg~B2>#Fe#OZe5|w#{y6pPYp?j<6v(N
z2rc(ES$1T_#gkd{s=F2d{|<sx+(bl1eG9%NCgB^4m3eD2vUDV04S@{w74u4pYTanF
ziaS4oGq2&walXnt)&7bQ8y{F(jh9ysev|y1yi?jE%kB#glrXj*W&qMjK0z~$-K+4J
zyBi|+FSuNxUjBKNK20*u2f0-`?|BH$gChvH&VJivTIad#A~Zud?ZEU4PWBip7CDCX
z3z2(|EKVCVb5s`hXhBYCkJNjnyGjC$*1_Srn8CwbqOCNX?JS3!B9v4Y$rj>!_VB3G
zqC}f^6zTYh{=D0)?1g>G6z-=#;oOO+e?1c|T_E@UHriJsAXp$7w(OIW0+luh0?q!6
z%N5iS{13(mW-c!<Eo^#=MsyTb!0%ho3T1T>hxYKo$}V?{%csI&7t9wplc%$w+e<?j
zp6Sjnb1#H<AB0^7!JQDI=XPET@w4y7h}?<6tRsFe#;(UXR>t2~<jX)gCFf=w#j~U3
zU+14t?S|ZEWjphgPALXtz^qn6%vbxRnA|fq?~JVTHm_SfKD67@O=4yX6?SrcBnbm#
zY-}f5d~$UH1omVxm8@e>hL?#-3IaLOFGr(A1@+O&U1a5=W^=q<5-wGhc(K^Kw~V6;
z5NvAlyPDuKeQ0Wv8HxXk%c}bRJtLum)J%3#b8%TMoA9Wd&G?E%A}l<$L*AdlCb_KH
z`EgoPSR=k74ow#h;bj9A`Ry2LFB0eAK*^{0D!1lt)g_2L4N-SWr7J}}J|#UdwEO%s
z814q+?39~k6sDF0El_gZf<FSoA5OgMs4**zH*&^=bBAbUlKl%?>tf>$OZYG21>M4%
z1o_yP{6Yn<2cV~0cZe?oPUMD(FzAjm8kN%Vn6BoKPfBy_T&9{so{sHJvH$X1Eme1C
z2A`Yz{H9~@X%%N<H=VF9IVTC_`rz@4t$IVRW+|Fxf*c2d_HMEqSgoCWROc9n$Ceom
z1#vrlQkT<ARslK!KBRc$j<>P^8hl9`OC%GoR?FV2Uy>;6%oGug)+n>Ce#Bs@@+9dz
zm-_tX0A=OY8+&n3aF`Ua1)Hy1!W(eup_Rb7XgX#26P@9@-QYSM;99P4f!Es#e>d@T
z6A4GD(=!@Qax5jg5f@QT_>rSZFYkbFH4soSg&aw`=f96c5MCecv}#4xfipzJj7xTX
z8Hzga+g+84*(rWcl1uSlO_RnzwA^rp_xurWxJxNOdMO*8+)^kY=p{zImXf~lE*pI?
zS6h|?vxsKVq3G(pT3;Rgl|v<pFzQs0XU^+R#)p3!swbUy<{Xr-L4XV$l<`^ALAfbE
zu;&hZ$qHBx)j&%&>s*t$aHn%E@?wedCO9Rt=B#MM?Kp9{{mH7y(->-N2<p>Zk&V`U
z?KA>rq51+o8Al`X@2l@z;LkycVN>pFC4+pNY?Y?`1Ycc}`rU#Z7wHf!nWJw0({j@#
zTmm;+ht`3Ac;IzLRSJFJR(Z|>$(RE<OFY-+TaWb^*OLSHH86u(Dv7r8X#d%+4MZYG
z>^vQ)LFg(3gX5JODi1q0`L$d>Y|bP<iDZyUNgs-ch0UZFj3wj^@Z)%h*kDPhL@U(7
zFXnJ?1j^n$Lkuzzf5oAHGV!`9M<~Lg9KxX}#v8Fw+=and@yfrM8;Qdhx#0&L^gCjB
zK+D7dmm2ulsxbQ*y*)^_^YM1Xl<ktl3*cey1+URTy@f#o5P(?~(YOY4g(iui)PuYp
z=3~4=caq~pSS!w=5a6OfkW}+AVSnCq>YPw&hjP~rsG;o|86?rz_zFd@7-6rdhmy)5
zrt(*E3eiqHVpC+y$?^26A+CG>B-6WcJl!<o)8V7$T6j)ux*a=OGvl8+B|aw1sscoa
ztpo`0#lbPEi?Kd68t^AlsdMFo$<$O6U87n3>@HNQ2i3|BbO^-8MTe~rr<j?$wPh0y
zSvl2NJnb2vX8*oR=cnuit&j|FH~3Vq?&xBrJfu@r1W45J?vM0VEieKQQ0M6=3s-GR
z8nI2JHG6EwIY-nBvLDJ4tp{3|z>h;&H*fLrI@Ebdj7j72y2|eJa#5e_nrryn=KL+@
zBYU+hn)IXZCHo{fLZ!qZ5FSIDv~9}Ok*`Nw!^k%1&EtCXm|jKoZdLHp#wt8c-Eg2(
zZ1$7nT6<X=H`2h1bj`^AA`wE5a|iG8yXbK0TAdwo<9MK;)h^apRlh7#G|3HA#tB6P
z9cIe9BP;Ny^3W&AdcN>0OO?<6G?uE9T(uY~d)$%3saxIsWbglD))_h>{<<ms6KqO9
zFKp>k_owx%ov^VESayzKR~eQS{4@E~buU!o;C~|QH-))x^rRSf@~Li^>s8uVv=L2h
zo3^`rs=IutP2(MJg6$$+NNpeM3cz-<>ZbLTkxLO3EgB}aNqE?!eBPse?rq=p=-9``
zJ?6I__f>EEr$;Tgu{*@qIH5=U#GQmjcXnuZTSc)O`VL3c`>2<&7#mxqBBli0IcEg<
zs^$1;AlNJ5Y~g-j@3FCWWSrS)HBk8(_cd_;=7T|Sjexx!g3n8$5UgEYm2?y;$56)W
z(oD{3FLx~$|59G=D0vV0>Oh05wrz)^vupw3%4BO{klQrM{aMZM<zpGr4Y(<O+NM8U
zmmOZ3SjB~JEgvlAbCe-k<pA7*OjIvU4v$YRx7(058Mqi&&5+_y-6HDr0msj(%#CLg
zOjR^4i>Kxk*Lkq8u16}Dy>~knE$pE2DyQRLa)kuYbX_>7I4}wo=Y(xaPS@1VKN#tn
z&xhKx(4Dd{q(m#jm^T@`Qv2v4ZbBw+5z5Avq+UnZEv#z{J76u$1%?G>iuya=@6Dq<
zjt__SgkMP#+-L7_v5PFc;*pcUM?^|&1hTV6XXsQod97;;Oc+J?Si}~dXONB7Tpa)!
zgIQH^Xscy>^MQ5PJgu1y(nPpYoD$|*yE31MktHk=%_X~D-c)_<1@@UxzU?N?fFM_{
z=rwT$PS(Y5`*=UNxXarU@K_wc+41?|5x(?2_&4#xe@t+Jc63m8bcHX;$6+13l}`Dg
z;cF9@e7*&PPmr5(Ud!zfIzt`jLcE!##Rs;siJxI!pc}B*e?VYE?>F2UOkI09r8F$r
zbbwRBTTJ7I8$RwK1i<&t<9ISC(A%-Te7o2;@xFx_Hc<kR9$N=wJN=;_yq$XT-IlC9
ze5VAyqUu?JRjYr6QuwcN_0^Yx8jn@1lYF+f_jy=}sjw#R@=x-#rW@6)(@l+@*9=qp
z->|U0)`@m?Oh8Ws1?=>#8>jQQ!TqW2%i}^W3?WDQ(~!u<u19T;|27C%3maqUV@Qz5
zy~#pDT4Yq+HL{t+1K3ywzCG3;r=~0FsM<dDGfuMNje%3nWny5Wb_eJ4N)!zcZqhNk
zn$8?HtNmGJZNGnSScCCueTp!j(#^d<5+%8j(*o>MepxH2%ojJ)yuM>W4V5sd4@-6g
zD<1bF0FlpNS>tZRxf#b<ljc*Qzj89kG4~EZm)bzASq0F@+^d%MAoL@3o^(!>2;G|c
zZO72WSgW<6x^1K0*;0Fn@7$?26GDx7+J16aEdPN!NtB!W8OdV&+@5l{bYqCLjHV%l
zn`t@vK(}85x#M-%=%snHbo|$Gbh7{_vgi<+38*1X%PR-oQ?_HC5Wa+m<x_O?Hw*(E
z`b`iJ(-<zza-J2xvgOTV8~z{TFn(4TJhp4}S>0&1Zz8Rx`OV<)rlw4<NBrnjS^#8Z
z07xahiTGN3;`Rs~vK5G8F`dd!Q-Rb`D2ExcTUmvjoH$v{Oc<6V%A<**gwwDVX3O~!
zWZ&Cn_IAGf*F{m`{9_iHXEn+_$PeEMBOx*Nd(5rOoaB3U$#pTM?)oJhDY+PlZGpO&
zvrb;(w`<M@r7Dm`u~mbQ1gOdp+t;y9?9hPW7&}-i{1vZuBAyilxvEQOW74rTpDBO<
z%7-B~wN*ued!JVomCVbkh`oVIUGN@s<CB<rz7h}Vc3zl#RO~8td2Bj8HZS*t|LYXo
zb`yAo_l&0rkx(GjUUMKHJeSN?L=<Si<D;Qjx}+<{ZuI`ZH=qe=yG!nw8>Dj#RjP6n
z-Wgg+fm`f1RkzwDDM@S^6*OGVfQgLowuwSY<Z^Q_azZpSI_s>Fup~-SkC3!ut|aIR
zTUDaJ8wM*v(h}OGyY1h<hk=gNG8YkZxE-x7TbqWkyLzNP)%ZehJ7#m?={P$#(9J6I
z!1wJI69na6oBQP{alA;kU)WvN+fQ^PuiFVvI7FMr+gz?pF?^Wf-O>Y!1~a^StWJ8n
zcI5(+yRz(dRj{*r1laD%qTAg;DT9F7t5vVE%na73%I7A_X=F!nR`?xavlKcfslEx6
zx_8eMHF^4T;L2HAC@S4mtZC&A?%z^vCe=XE<De(2F|$HJX^fev<HknUkedprQjKwx
z)zjMWK9G)JWABS4G<P!8Ed5AV4%X;455xB6_%&gA3sWVDV-XU`^At%*7Dv29@veMG
zZgNgO=Et&oLC9F~#?gIicDs6D5U)Azf^@<Mb3HdAW$$n>v+Q&(!;Jcdcxw})%*vPK
zV7KFF1v8<tzPdwEq#VcDZJc+l*O8kry-EDfmP7M#g#Y+Zng1A8+mbNFo?_}Sb=_t~
zhB`oPnYII9#QzS0_Zwt(-O;Az=g#ghXPN>sD4yA?Go=Y0w>@vb`WP05Gy@gCU{>`&
zf!pJ;*+q%aD5(Py5z1R$OfJ!<3$I6#AuOP^^RmfUzm<4w1C7o?i)TM%RY_w&1pgZI
z(VTx{qN0hNrqhRXS(6Su9@~Tkyl}m(x=WVUTmEWES~f#pnl|aoEx9`3R?4pk0s>5j
z9WEhO#vI^yO2%PbtHbxi37V!N=Sk-gf%4wPnkw<rY=cZsv*@w=%%(xIS;`fPebvj2
zyc2iCP(iyR8q+b7^nuc8m&UTh8xJc`OBR3VI$e=uQUQS^M3KXMLWnzI({Pj>aeF2q
z(n*NGI0ZqDheY-g;3o_j^qWb3yQs|h4@MiKaCw}Mnzv}<P9$f}k3SjGae)falYNHp
zcH0))#_IN$fnvD)N*E@V0U^kDQ$N^GR>KJj6TIM=fh+ubH9RRqaP)mFn0k|nknrFp
zG;~0;Z;S_<9yEe#N^JSVVTNKXbZh0B-CZtZ2wI6KJ@wr)PtCL@X|{1uCUG_G8#|BD
zltzoH#&ekTKFujNYV_D*Q8{Ib)sTOC{=YsG)nzfp_)~uT`QDyNjU)+ze8r_hXE7|;
z3N=a$G4h>LOsF#ht6-SQJPH|+4lLj4bg9AAAJ7}7EWVI+V=ucFg(fd1Rmw^47I;}T
zP!nxnWRWsZ*z#H6QdL<C$fi*Erz2b*#I`WJLT=Q%OX-f^Q8{0#Oe@v$seciWbEB?H
zUC0%nINI9el0g!`5v=YoMZVprsiKluT3HRWdPK3Z*o83#${LBUMKAG$HkXG+TMMo%
z{<D$J97#n)hfrQj$9PhebCM7%ml>E=G9yxqfTI)?n9`Mr)k_X!le5I?(92D8LYS~?
zzCclEbtL+nh&ozlHdM{DoFu34JNuZTk-RTgwpNt$H&s$n>{2XF;Uh$DG&dU#uSEoI
zDt6Iu7z5vttDv_Xtij-_JY#&2^wS%9bun7zzO@~1a(%BZE@=b-dmCR{9{BbWV;H;o
zdwFaF`eQ6mSpmHU{>!t?9Qrt*<JJcKu@VTNi)x7!wpTU#Qx)+<vw-YIu}9f?)r#s%
zZO{MA!ffXk^g!Y(-y?&owUT6buiAc#wAB1Ze$2bSP594kmcCX)HqUp=JJEK;PjJGO
zO?nf1k|Q@~Z*4t!@+A5C<eRf|tL}^g?+|40C|fu6)|PP;NjhCfwm2DPy8u7mve_;p
zCCsZWm(em(%D!XdPtK1wLH+*%P)h>@6aWAK2mk;8ApoR!deOrm004W2000XB003le
zb1!aTZDlTSdF?%GQyWQ=-}x0a^6go|LIc?2@v?>;8RRh$Soi?%#s))(mb!#`-0IeL
zw+!sY{`bpAJ^LYKd+eRNSjBjd)LB_sSy}n2tkNTKm@e+K=w?=k_F+dHCHdmMn57AP
zpA=a%UKVMVcSSCxI5|EX49^E*nr5PqcZEo&;`sbf#L+}1x!l-zR6@49y}h%wyS?+H
z7^d?mS<buSIGOY|9s%S#na!g-kD#X_70X<9#RM96#XJq8Df|tRP=ry=G)Pg*qFm(Z
zw73m2Ne`nU2RvaqS<Yor1O=i((t_k(ESA|K&84`FikX1#@Nc>-#1w`BcxEz_<9l(F
z1xX>pE}&Ut>BlIPA@maz@IUBcoPLx<6Avg!3m7N$OtdWQ0QeDL2^I?(WFksL5Xaay
zk~t6e;>|#upT55MYyWHjOcU?UPXBUzG&mBi{yBVZiT?0N3{T%458uBPN5IvS{_)#$
z(LXs6(B!N?yf_}51D?MgU%U}#gP;3nN8;iX&;l-tcX)X6{^)r4GqpQ@`|jizda&)q
z>1#moc5rt12EOROIzBnR_#5^7`uJivI6v<J3ZOy^{xTR|i1RmyMicdF00Pi|butjI
zPtO2NfA}|X{%&x1+&}38#b<-V3z*)aes_8%4o^W^{^vcQ0vK`Bf7|~VX*i>%>LU*6
zP5<Kj6uLZvft|lUxxfLuK0AFYPEOB}X7T=f0A2Ji`q&sa2h^T-q1^zudWIzThe*)j
z#qsG7;i2P;vp!NW9Q=H8{PSRVIKZZ-1b=aQ27vF+RfDeRpB<lLpQrCH01dQ1C8U65
zIAEN_b(}(=glHI?0TbT#3GZuv7J3^Styb%3crJ#)9H$>XZEQ@lbS{efMU>o#Xue3Z
zLi7`m@}p={0NV<g1>+dj!07_zIEcIAV!6OC-Y4*RV?(t;an$c&X)Gs&c_fnwteoT~
z??qt}2=NHJlY1h%Nzx1!XOZ3SZ3uWN_<AS=m<1o@2p^AN0lyIY;v!qh4S6?_i$WYz
z>p_;K*&a4uWWmim*n>3y#C?=mJ%-moj0!?^9VU5Cf;w<N-$u~A`<%MNu{&Qz^ZBws
zMr~|t9H#R{CiDCP=!YJVk(VuGd8-Qxu($${NgU)kO~aXtNkO!A*S+JU7{K2S^91Gy
z!9=Fu;7z`aL0{msO_y;zf!;vzv^zbTPHY2<8ubAD7bHTVBLy@LCLcgcg}I<sMKq4$
zsJKV9FbQ&0A@^w_6^>Z|>Ii^w{2?ixNt)yZC?*gchS`ITq)-%uB0;et79-O&#rZ5+
zpeB{U1T-Gt$$Hd!csd*ad$u(y>|q*Zc|mxHdXX<dnT6>*0182;BS<cRjF3^BzXy3g
zI(^%RMX@h-T%xL&#;fqWGFWz33=I{${QEM9xf!SsP#^o^=|kKI@Y^{|UXV;=4t9&%
zAD+H_dpg9mdJan;5ItkQ{zT$2mtYw}`XZE5F`5T=(R?{?PvTt32EH;`EHjwCIPdxB
zR-wvgAh#nVuo>Hko{vTwXgy!m3(m%{4?25rG90PNbS1in-&qKMt~@~JkqiH-3HntT
zR!@WnM_*c)3bQ@nGVjz19n2TS{YfyEaobz^z4Lo8?02MW>_Y7eRIV|CqtHog%&StN
zdliI(d=f0=TG$dH2{;6%hmveJdpEF@=K(o6*q@g1DESz~QCRNqT?#r!W~Clq1BzPe
zCrWvts#$PT{+naBC<D+@UdSNC{<T6WcS<Zn{r7OUxMrATsPA!<W>Bbk^k89t%j83n
z-X>mOLn*`lI8S5n#Bf4Svr}-2qNLO>pd9EA9*2XXz-bb<pzP)WaJfKhk$|}<fZIu$
zYy}EClT@VCm?*oQ$plpizJ=ysNYZkfHYi>4#gdy2czZ~hPd?zhNYj%vxmkCD^mHGH
z-5-7s>7<Y_H8CLY5c34oVqQmd55)7Qjkq<x!4IDVg-jg#^?3|O=M<b*us-0wf*V3c
z0{vZLFEysMq^AJQnqjf#iO<*c9q8bs_!6paB)i)S!lcbcmZof0s5QnL@TH}$M8)yZ
zu#b+$T67?=Ah!g3{)r^1A&N4vIbb$G5kSB}9g>R#@yIeJSpYYmkOUutC`K>DBLnf8
z?$)QoAtDQ+T;c=?+tPR&V51i!)B-m-Xw`qV$h$Idt$z{FbY8&23StAcC;sWT`<L-$
z{wg7q;>ZSgL9%fR<cRtG;-1u13|2kIs0f&|Oyu1{PLNk0<o#_5>Iw*>I834QyRkNL
z6eUqH8nts7PrG6hhXa2$d0>u-B$oudEz_V33Va`F#l0`ak6Qrzr(b^g>AxPE??<G@
z_l5gxV}r;b2naLVv=;Z+%f1}n7ZPLLBD?B{tpj{xCW|c!J80mq1u*ywt$|w2x3dWR
zt_1WX#HH+a{KRHHXP-;ciUDnMqX5|V=C5$3$vvNftVQGkP9)RU6-1fC9tcx1aQ1`j
z-q9!^sj>(D5>uMP1VusYQj4)GSTB%r2hmHheYd-fYwQ5t{W$HJXNrA_E|M>RnwUXb
zaunV4NORwRYVbV)gundK5>J4ztUc*?P%<Vg2TT%@J0bdheBF$#7ELZ!cK?U%r(sL{
zK}^an8N%ol0Wv`zK^=3`B)(tGVa3;tDkG7J%Q`N?*q0s)Nr3%<lz6zbBOu;E`<M6-
zdTuo~)T4)G+g>`XtFlcuQr&n=a@5`-@MdBa{TKuq_yKMU=nsa%F_TuJC{<?PLj(Mq
zTLo89501Dm0EdN&a*8dL4pA$ZR|u}!ahk>zUz?zMae7Ny1r}FU<d_s{k6U-i)>f-y
z(KCrYb{G-k#$FucsIkES6%ZB264jp!$>i5Y#-;}zd=vdf>#!KIVg}oT1{|ag(_5_I
z(>R*kgD5I|Jy(zrcTY2ly6BXqR;L5pSI)A&&qQ55+q>#1T3d@{a*yv?ok}akVyjdc
zO=(SX`oNe$v@$h|lsW3#Qs0*B%T*Fvp+%A6iYplZrzEm%BfM4j;AvS@S4b+EjA&Af
z7<7+BP-i_Hz9V{Q1v(@82b+@S-Zo6DO%M4d2in)y*vIvCPaIFhH701TyNEF{BLuZ1
zCm*z}A+g9ok`m=n6E=7XI*rm8lK`_5OJM#KyqhHiCn!cpqjAIVg^m)F8gg<~`(A`c
zB5wjroB+ma8vb?99ljk^#lYKHCE4``4ZQR|f7W6}BTmp_lK?k+9zif#CH<(WYo%)J
zn8M2XQ80cQu6L34&kv7}+octuR)aDzoK5qw(K>MBi_cOYn2D5?F*`#>y;9|O?a1_u
zsqRZ7a@jX-;NKeTvkSMvNX0DGafO$wG|PHgrKBTXJg6gHtf?bB$?lp@%OW2=d+uwC
zuEU`q$s^7NH^BrkShUdsR_iFpCsEV{w?aKJ&{|5WI$TFd@n9<23Dpy7r>?SI+NnaE
zrm>$UbpjWd$q)o0i^k|zC#Lm<oXp^D5E~Td;4X)lHhJ{yxoFRdVv+BC|NWBTduev_
zeI_xDoPS?r&z^tZv04cTWJdUA76(3uw^~Jds*M`Bqjx8(#DhJ{0@SWL)FxKD&06GQ
zJ}_Q0PU|2%d%gyJWkFdnPh>;_H>`2y38>AB9HVsdfJwJ`@leh(DMM{n;J+AVvm}a~
zcF5$-G7d5;U|kBmBbDVzB+3ECI8#dS+(|oZO8a(&?7{2=I*$eBh&(%r=<!o)lt+u+
zsF*BzE%MD}5_%Rfq1^q^5R}_=8r`Wd?lxV<p%Vj-CGJGJ1G96uitDQk_g;zPTIqaS
zv;DMDb{uuEw#{Z80Gfs0_zzuK2N3t84_KB}04{&^wOxfz^aZrPU7?(|sq+zh&tKGf
z;(A_`*WFWewx~tP-A2M>(pF76ltFBAqCMxKW&{dJ*&Fcp?&|EQO}I6ibIlTE<0>TT
zK!a>M06lv?$|UGpo$yd9xgt58x{(l)fLb;<S_DD%pQ5v>hXC}-9wwG9x36f{PdHhg
zrj(g&eKM2la}aAfA_)44p5DLFm-|fxXX#5u?WC$sR|?p&QNos=BVyJsUDiuj+ZVB}
z=i7I_z$Zlr<ml7UJG8Ro1?-pNSPnED&~vu3WjM4q4w!mg!fu|wsO#~C#bj9MeCRl>
z-(Q@wIatxu{o}SR58#C}&~jscR4+yszNM+_y-I_Fz+sES0-ZXh?Z2RqBa(xhWi#L7
zdJUaI?)7?{LLP$UHgUrtns#z#cq@aOq8CEmW)z08MBhq#UpekbBopPMD`+ZE!Yy*G
zo48bpin8FFIp&8LRJkH&C}<FlU*nzx?VdRMVb|BLzkp&IfTNM}hKKH<5s}@vWjsM?
zTNYMDPxj1?jvYpaXy$UMocCN8DbHDHUkY6|y(>gb35n*+hGs3lq0|-FM;<?~(IPEK
z3^)~w-ozG{F#Kx1MBXXFRi@DK1!51WUH6Rl$vy%+QB@I2F~K)g!@R;?V9Fo!#l)0m
z&5N}EYQFgu`{r(O28kNlt*oRc?QCzD-VXLvcaiuGh9I`YPPv_(TrK+Z;C?JeYU6fP
zq@yuyL9E_Haa=15EvHsQuCD>;`nqejf};X=1i?ebCORsKR6vl)AiO6u20;9}%nRcL
z6upu(thJNk=7*bGp`X~0Q&#R83kGxUFSrA+A`iUrlUK~-lr`D?>OC_UyCJOxNDjNZ
zmQ|7+B3$tQB^D6`b`zVHbb-nVmXV`Ka5DpIh0JsW4r5h)fKwWPlcAWx!JJx?+%@VW
zJ05=;Mx#7V!Ag%nd@ozvdF!e%m8$iru8F&>h}D&!t>Da7&hZr}zeqJiJqDAZwquY&
zC2+XcWrfU30*;lE1xg#G{jNg_<IXCJD?c7FIEd@*v8#=UA!QTdwCcEg!D_$iW{8qL
zocP9;p_B`!byv*gJZ->%a6R3?#i&|&h;L*8LI9*!$a=)}jueqXz`TeiA7UrEP(A)r
z3&5VstADv&<bD@8=kTd^Zx}#>qR0SJqgBvW&OVv#7_X_S2OeT|PYLx{&Ne#*1(ZiO
zNi+o?At}^qqP2k)15`<&>lx_TpRKT+@&2%zhw;MhioO9O<kF1$q@=^0FE6)tu9Wfc
zhIAXn;X}jG1S9O9g=in6?N$SgWl%fP$D5D;-1*8w+Eydl^m41SAfIU|#4$xl;SGsN
z!J@z*ms_CFB{_v3C6-*ywEA+?sz-kU0|1PT^v{g*fG^L1a7g#<x4(O?HzTW|%M2}h
zdnR7K6i++2QC{ZS%<{plP36@>?$e&&Qdr^)d!}w79#zP4nXJdNL&hYE+f--RxJydL
zil<wo(M*f$>vm=^rdcQ<>`By2BIj%-OoMHj{3eT)skf!_)v+vYC0Bc??hOXcqzKG|
zrPIB#GwT&Yf=A&{SP$paLZSoG4ED+ZJ&2PkArTvymwFh#0Mh3XF_5enx`N<_Y~qA&
z!lzA|)6Fie4*TH1K0x;D?;Bh$6f7MD1}40(IQ~)EqTTp5xaTA-JKaHIx$aiwu{$;f
zTyD`V75UoI>5oxy&lyeYD9@;T?0j&@GGZqks|~T@37kHD0-$r3C5dC&Nhp@{F@V9^
zt!Sd$p4>3fYga2$isjc-AMEt-2FnUj;`0=SAnyX)$4A$QZ5gMFv1JPr$O!9l#F5W}
zd<{&4RNHtg&z;`)-Pfv*>Vx^t^EVvL!J(6R8Aj7H;;>$yzab5`x3@jTxnA`n6>?j-
zq}S7?w$57`ov9{=*8#WQbrLTga0!)L(@qPjuI)|_B%)_N?y8TrjJ&s^t^aXX(UG8v
z(l6C^yV|ecR@AgTD7XFcnesQ_L6k9Bt_nqr&tn~?lp**qK|Kg&;SdU9NQAEDfGc0(
zOPR5DMRj+@PFHNNQ_Qsj#g>mF-cj+p=kA%OyXq;Avhp~Lrc;F2fe1O?b;r$*V1|9-
zC|h8&0afY=VAswAuS?gPNK63Xd<Wx%<($-3|7)PzSp;DZrU5EMZS6ZL3dNS{ce^#;
zAuT&vP?Sd&?_6p3r3$=jWJW{p)<f$w^A2#4TUO^;b7yO(@(9z;ic^&VKg71uL4<NM
zEnT{K#k(m<s2$0{gCqGJ4@6V(#HCWxP4d3R0%)StJ$~YIj__1Q-i+r}1xtC2HMQl#
zD(f@Hji8J%YV@<~qAD`brE^i#(uo6yDV=Xs-U}WkO$p96ijqmZ4ACJ$Yf3H_?tI(6
zLVau(OC4G@XR)G!*6(LTYV8C#GJ^j)S_!x@2aUzE2T6u5XZ@6+Yh3f3rloe5iB2At
zzEfujy{R#_{_`fsJN~x*^w?&fIYC~(|K=&O=f=LmB!QovQUOc!4=1a_(^DU{b0&hy
zF(SoQj1ws3xXkFR2!fc3k;n!dD%dc6QU-H%9)c2Kmv`Ds*#w_s^{%``nEboRPcehN
ztym|6Oi#PiL#LK~4HI_BiJa{fYObEwqfsKi0d3!{MH|V6Lt0#X1JYiuLz!Q-?a}xx
z*!OZR_B9iE^DT%x_);Rj#cUsZ8I8DW(wJm#y)^qMc-(@h7>#mDIb&+Bb>QVB`9VD@
zt}{sKOo!gEH%;~TidXZf7)_%jh(}>sl*-BLYJ3mX2AV#(heSJPSiLNhhkHdGV3;P4
z3nAxGq0WrEg<8;5v_px;Fu5sZxLJGpi4woe%nCuZXwEfyv|H1lxK$;Tmpn#wSzoO3
zQ|qCIJB?}QhWeMDhtg-O#pQ*~)j-hgZ*OboYK0(|z-=6lCyRQm-mfWmKUm*lN>#eT
zEtA$_=n0)FkS$dxuN1&8pY5B_nICgs#ic2ezCx#4-*2#%wCXC?dWpsA%>Lm(XZbLp
zruO7GbEsPXACPfFpJm`CA0nGZDj!~VMv4hWmUg}BVUuC5s}L&T(5Y5S#D(gu+)y_N
zQzw6lc}={AgD<a8Cy%<gHBUS6+$I<Lj8IqPDK3ipbm?#tS$&K7T3zAF8zOkLG(scL
zMR?ji<T`1rdu3t_5`Bz}s&s-}+{!rqkM8(<-GN5f$Rf&!Emtxi_IZ7^SaocyiY{$S
zU1sR*oL~9oFN|(vPUQpI2+}!zN5gQmpw&ym37@iV3G~ed`7$ExL;-iE()73;=%wW^
zW_EYP4O~J#k?Ja+Wuk9#pu*}*x}wTe6a6?=`z6qqd)I=yoxp3nQnpQs%iBKC_4$e7
zkC@{E97{SM9!I#s9X&`OM*n$RQo0NRd8w6RVF&I^tLh!cuKMJ&@TRe%Nj<!cV8B2S
zUpL@X0I2A#yyIG}PHVVqqExEZL}QW~N<c&Cd%c>%YE=YMuP0bc^x6R-#p!D^_I>`-
z^(17UOA&SZ0K@`sE@Cu_YsNM@i-sY*^*~+uX4%SC6ia7e^pktNDlCkaO9#%qF{#?%
zf%WEKb_QH~mIzm-!9pA^?=t&q)L9f=ECbA=aeQyDNWoR=xv)5Vvn7Zh@MuIPUC|($
zj%&1ycWwc#ba2+LtF-qD={i28_8k^~Ezi)%+VM`;6%>cPNfAVe_6%qUx_E-bpJ&!z
zk9tU(j5CZT1+E@768BCRR#kj49ua4dG!e-vhI&US8(VyIWW^-0>~bu1NiG;j>~b#E
zUaI>volbLE;Kp+9IU#i32D4W@D_wOz-ZJ-E`($OAoH+iGs+Cd8gUAZ}b2Q&pkD2aP
zX)<3T-6f$Wmz_<lv4Cj~3Y?pnRF$oYx_pM`j0_g!jcaZG#Iq3PUEk)^nzWM6YBFuV
z3vKI7SfhtV3%k}O!5c{S$@T|X7TlM1mDa1pQFwYhw{2VBTRq+$`RU90{TZa`$-ZCN
zQvs~s$}Bhc-7n`@#|nQ?fm*p9Ql(5rjn$1v4>ZS@Dj04MiAocX)vA{!W~))I!*Dg2
zhnZgHTqEQ0)y(`dnmU)AM7Ir4PO)31Qk89;E5z%}-51W=C(N1ISB|5+sNWB_U_FS&
zX{Hd?n_Tzobv4w`ebmMq%~f-Ca-;X}R6YM?w0Bk7LH4&Q6*slzaXqdo-@wrT^cuEz
zBa3#jPUQi&^Sn6KFFsk>C6yv03+@iLx3|R;Y*7Kq`2^!~QuG$V<U_ml-J4dIn^pxI
zm1OTWi?CL;`gEMh;KLe2YTy|kM}UQzU|r@;{o-ME5FG_X;|+^XaR-y$cTZoxuDQ-f
zzceA233{G&3~D%!QO6RGjjvjMLd>D9rewn9&031c>DN<6pQDY+xGGsZ5<e3z;Fd+Q
zsuq@R|C3yuQ*dZOx2<E_wrzXI$&PK?wr$(CZJRr`Z9BR7&pB21-qW>u^-Di@*PK1Z
z_{RV4Ep<n<sJmv*mit?m?a?Mj4iX%jpaXOfy064xuSDVqb{zl;VzAi|w?U8{m+&;6
zo#~CI9yHgTa*g;Z#UCQ*U*LFCpbuNYb6zd3o`0AspB_&4bFwXCXU@Uka>hCFILlz-
z^ZCu#bgf%1xA(_+I`YcA3*oxYEfnqEILjGSl70o6Y$``9n$1?%y_9+iuD~S+aI%10
zv{6JR{Y6_&RZ=u2!~N6VWAo708IdGY7<SgIWBF^FeJJL1Ej^Ls?sTG<Zq}iTXu}KM
zNt=yaF6cAhpQ4=)4TS3WH=gGb3F!Q7LTVdcS{;FAmdQ+z>ZuuYU9r#%{)g_3n;|0x
zrZcjrT*ct1r>l$hYTA+DOiMvx7*R<hKIoll9~DvjN+fl9FI1v~*hP8m5-fIxHvUOo
zoYKoGMxY`lvp%c}vqB}%wB1FRwAH>CUFF2T{V818Q?HxEv<6rC_(Vx{wi#bAl{(zX
zttu95aXcv1NIdJ@ZoGN>P#VhK!e(`jeNy=$u=cKrCUxB9%1>@sTi0;BR#j~QxSkQ0
zgEA3H?wEqKAU00^dw1&QPbvy`JO08T)s)R7J*qIjw!RiKZEg!wG~k8n9IiHDi+Bj;
zt3@*V4Tk88O2Cd}on-lyiT^!}w8+}(!6aGh1Lwb^sL8QZYB|;gZH-W4{|a&PIA^8n
zqZb1Gi=p!98nnszQptIvl#+IwHACX$zo+0x|6)9t&CL`eT1>n#b%G6N2?<f%1j1|f
z@pme<jBq@`F5S*aNu<XAsP<SxskO2at&zS=zzO6Rcz)KX8gDT$j!7(QfOsA0@PfIn
zu^FH8$&)H0Va_BeA)~^|xJY=Ni<Cw6EePgP`g<Kcavg<<90i;!dklrzFeu9F=xlsb
z)sR^%8E>G@ijR#QCQo;-ozGZJA|0S|QodupJw+_<3}_0mXNdc4KbfAlf3soW$yL)I
zhz4<|J+H0G^?vGwtfIzx#<HIlN+N5=Xu9pH{^`ge=v}c3ij9#qIoqTU$ftH?1XL{a
zt7ELdzjVA}!sr1bN#kDeEBmS~)_f@-8X%nBdR66|M|Lo{(0TkTFK<v`U`H(gk|>ce
zU(VbYPiu&PgUuE5_76l+dw}~s$`iR$1sm<04(w<S`R@$vR|JpPWi`GUG1-=ac4ULe
zxsI<hvUj{n?Ki#hyqUvP(Zx(QQU(&B30Q?vniRMtwH41_8wj(m{A7gmhK%Uu<!Db<
z(51yyC~+gVqnvQbDGbs`(&<R@He6&8FwwHb;(grKP8ZhM%VoU^SZk^QEeVnGM*%5o
zQ8ne%XQE*0k2RfuX;uq@`uA4<(@BI|wC7#Lv-6atVXCKKst!`!{_fZ%o|bT5`qqGZ
zNu{NKD5=$WCC)zTd|TVwN3IKJEsHlfH*MoN4RnUhLF^<XEvwbdR(ng+O;6>%cPHF|
z130L)+W;}_$&|-SCJwO3)Dno`W<W7`{j66Y?U$j=x;^?^-e+*s<!-=rOe^C7{^;%O
zFLLBG7f*R4zSVaPd6~Mg<-vwIRs(Xasyx083Fh!jQ@O(#(BCj6p%{g_DdUY*e_57w
zx_&qlY9LxL-%t}&+ttcaX0&XPxKNGGQ?g5F2NPT<VJ&lSCTss4-p+Cl8RVp*Bz)W_
zCtlUdAXyr9*<-Rx<j)?QBhJbmYAwuUj{tC08d@oDv@1oHsGe4H_t+hBS2$lTE~>n8
zc}!;yuNN(c^kfZdm6&Ta{{yTAJCcx>f{0A;J>7S%9%z{y<L)!a7NJ^j<r$v164nA~
zUUxO>sX5|zQRRrM#1&g<f1slOJ~;E%l)V9@pM4D=ou^Z;5ZlMODHDh|O&xf&iE)6G
zK)D6Do4Jlv^8GsqSw_KfvlQNOBE+P>4%)=i3Uz=ujrKCK!t?MnyQm&7vEDeaky8kt
zaG|&azqmW)x#E2g+oHgh-gb;vXN6hiC7j@6HHL4rB4~I%%pyC5mb%jqU>m-?jRV%*
zlxc&=Nzpjkd-<Cz^y9L-L-*+k^^?=zi@&?$`1(Tp=?VDr{o2;TOX^>+&nT=1niAVi
zoPbX$m_%o5VoVfI1s=&vkTEx5d%v5z9vP4c6gkoC3Lk`4biCQN|AHkO)k~2#r{CX3
zM~A_Wf+07k;~m|b88;WJ;`YSBUnqG5o<ft9HMTSKRl3c`3X&(P%MX)h(_=tU_q^)+
zV5bKP{F6;6sC<|K1VUQmtWazAi6t-aCtFq>kVXFe!|v0&{JUeuH(cM+{k<Y_C%EuO
zd{gq9vU~JBHQ)0lfF^a#@b1Mp!g%g=kYM6!A3s9XPR&~o9gKV%o{;;STPPYWsCwG>
z`P2ohHB+T=Qkyd;Z{{lvU#@w(%|)*rUAbH5y!_6@_#?65-Q=hvHww0J?vsj?JNUV^
z^r`yaD>4?lgR)o?#GPE&In_MB!^O8j)i-E3sY_Q3{$*#s@dIy+O`VK)kyrzL+FxGh
zc3{By=d5?WLS3hn!ZW5o{iB>?vI?3AZ1t!Vzvp1Zs4-Py#$8v`X<^W~*VAIR?<#%N
z%%}aw0p<S1CdE`a!YuH-g&#FX!nmFh16>BNyB#H*HN;GVm(UY6+;twDRJ&lX4oXJn
z<mcvlWxxuVXm0ZBU;CBRTYk0P^7`lk3P%5fz;fC&80c~qJA+hj^>W}lZg35rW_yCI
zIJWe2z!beAV1=S5l6vsL3?<R$(n^s4i<_G+tK17i<#1ldoH*){)3InOKt`EP_KJLG
zvLR$eYKMeWDa;x8bvcC`{-J%+$Pe++;&T)7v=#WvcsYUmSB*TbF9pq!E;yV}v*Wpn
z%0KCIl^PT?w110twNMg#9WmrpLIb6-EtG(k>sSh9e7s@A{;q)>!n<M)U1NI9$uNmm
zi<+xOb}yMU<*iT~U1ArN&h^H3U;itGdL2;UYY7wpAP*h@;P?A4i1mN84o2pN|KZm)
zt8Uoriz9fSP+N>c>qAPK6l+r|s5taV(D-LJXJbYeATqZ3Z)0pYv?lJ|yeMTx{-sOg
zp@D~VQqAU4*7ly@D-cYng>F}~IERTbPpj~%PF0V1QbKpoIIoi9RS=pR!(6q|Ti~G<
zkIc<z;N<N0L*hg(N2*?)2V6~ESm2lG$;$Z>v1v&#Z$FPuoO!QZ&Hf567NTG*)T?e%
zqimql6szk(9hRgb?H4yyqM9$n%<^oSFyI{hp@^nTso19yr!OW-o_=yvf@q{{29n8|
zo=6sVF2amZ4Ex7=WE^iQIoG%-HGuUqEBV*42s*2nV#w)lB#~run5W-(<fX(2k!Y6q
z0lbiOBe_0@GGuYOD6h29An6XdoHZcngd-v<iDE=Tkaw}1cjEt`>~?-pcJ^n>FFjm;
zJjJc4`)=6Ouj90AFWX!Vu?pUaCo#c|qD4W_{|99^{XZx>@&BOguI#t^Pi;=yRz_wq
zcVcjaS3eS6LBr~=;BD&kw7H1MKW&Kq3uPyWkDw>`thxb9*`}XHTP}qiZJ-@v)p76D
zr*`cMWpm|k8112Vxe<t9y=&9!&Iilmw8Zb~7XS-eUGF@N<8{#SHcq*vroT&A6gw2q
zDL)3O^|qZRs?(QsMpuV807dH}dep~u+CM9*>|J8jE^UUul{5Jaf%A^mXm@oH?`Yi#
zoT<%g_{*__xe18=6Z^}t<0x@O2Lk)f0R)Y(R81>6_X^T8;8^90U}%B4R(?R?v)=}W
zhui>$>H*K6F7;mH@t~XezUA|M{OgPGbvSSP3Rp5yHxJ%>4TKg9|JYC8k;j$#yIN`k
zoXkG|E_L1B_}76dom+SvfW`BY0uv@xa`N>fR8kf_GDa2ZeuNQmeUy=Zxk8afs(6cQ
zjL4*hZL8hmtLrjJ2K>r=ShC}_e&KlLTIXgNVT?^;CC~-5_nejFH(Et&kcu4fXOKh9
z(s`%YI~a0ZOBT&05=AKOuZ$oIGQUKME|FKic4eucoYboNScB>?5%<VtQ<RC4p8(p!
z**31YA&wM}!WYGUE#x-{!D1nr36KVNP1rJTzZ^>cyIPTK5t>@6!r-zbE;J%^$pxx^
zjmE4%W`w!I6N~Sf$EdO6!ldaciICcJ-kzvmSwloClP<B({A3B>sPz3<h6+u-N;CCo
zzyc)-vShfV3GT5S^7VZfS1$OuZyP0YpYo(+!Y6ILjvU*z{ms4oVDK~5EuKy`4M4c<
zRH{Z4cjCt)ik8d;DTpPBZb+aOl+yMhn=o~g;Dj>p^NdZUx1d!LDZMN}J%Gx|C4goy
z6Ff0Zr)kn~QVv@5I>sDpfHo6hT^7ZOj*`Obdm<fe9C>x@o}t^7lf4UTGpZy{1irpR
zU~{cL`1%eivv|0Z7oFGUCE5_$Xy%37*ZT8jd{0REVzTlI5hh=^;sM~e=~TGI%=3&U
z(I4)cQ}tmaHTSAu4Ut6DTvyd7b`ToLZMup*RWNft-N~@(MOLRc8eJT2ihUX;j4_8-
z>x&1E4>Y#RKfV@ei5i0hLl-q|(7k4<3nOe73&i|H%Ze66U79VT^L_cNN|(mOcP6EH
z#d{F}-Dl&&UW4|S<&fu}I>3&DIESq-qo`?CAf5&wo`Feho=5@Sq|=4Z`8|dnPHSzG
zj8o4xELJA4z60n!3YZrpQs`Y~A@|TAQ7q<Gt^)F;hxRQIda&tL0WXj@e8<fo8k^PW
z4AtriBSOmdj3+K?n%nD1CC+s*s(2o5W?KJ3Lv@OmrP0D?<r6Y;ZO^NtbW2M>;Ni!B
zYdIE&4O}zdN^rPuR1NMX|E}m=c1_U_GzzjMo({En6f^aGy_;XDFDd`aviO2i&b+y}
zLd!F6WZr`&c{{y*Zb8UKZrmtb02YyQZ&*fVF}gl_i!HHfRI}N5I%3^yaw5ON4E$(1
z{%YED>xCv(X%ErC=VE`cmmIDB`Cs(XGNH<LhhOfu2jl;vcC$75FSVP7we7(O;xDSH
zKAvB=<6dn?I}pGIHz?jb7eT#4!QtPoN1VC6v9)wOR4P}l++(k+iOcvFDe0PO5op3P
z1RYU3_szr9R06qGoUKc6n{ILy`)OmOw2jLV)$Fd13fjJn=5g?2+F@37NT3}L>>3lj
z+BknQjc&u9Q=dZpZu(*Nj6~q-#lnIry>4#Ldq(s_^H_^zENo-&4yS+ejaxmM0@SY3
zu@!auC|cc`;RO$()T?h6DGj2+c%OPZQo^{GI^PIrX=p)`0Qorj2J7rZo3H|fM%LA;
ziKdmq_*x-_D$MoX&x7@NN*>sp`dz@z)v7n5DXA<EK_lgTEYTk1ZMf7cxZ36sKIeE5
z%EUd=BgqWO<OoF`9$>Ot<DPxL@W?*PaCd-I@%5$kSV`jKTC5;S!2D{b+5O-xQJ3D9
z9@L69S`_`Nn*%S-j#eXd-8lt@j;uNZ7UL=s=)oF87Em^RXk#l4RBga%z%-cvni*!t
zLI3Ho0Y^`P_uz$VA)y_^$J!y1xK`-=F6|~n4|YsQV{X{PksTXcsUp6(9}3MUA<pdT
zBW*%?&^uia!0(RWO9v#tbiGgH%pPd)LA^u&A$g88f6vjST8SYr<gk?9Z2(HOLArp8
zT`1!)v&tUf<lny28Hk!_-s+<X%O6m>!f{sYza<pRo#`QcL}{RHm^9%3WO!H61C)tT
zI57$Z0@v)AMxOfI&_F4MIl8c5YX|NKhN_V@_%ns;ZcQrK-Dtu>6c0Ju(*ZG8`3VaI
zjB%(kjGUba#f6xH5Ha?+2s%=0&_88LH?DM|N)gZ?+j8sueDpVm<HVBKM37P$KU4Us
zuAEXtdQ6UNh#Ne~mNUC3)Z+x<w8BInOE&eaM$JnLbM3{8&s)bXHYCWr>ve1=U+IpX
zr)hM!SBAXfM-*DF1Ei}x3DP>d&1&}5fiRVwxU%1X(x>esjZQA{alw4yNPQXLYW~zd
z$PPu?jI<gfmTH%{(Cowf3-Jx;Qf<d()~H#qfhG&O4D~YH!bxb-6K~!~w`3A~6Jmhl
z8Ie(Q;?(oy@_s<&Fcd7iTmL!lduMOb4|#+8A>2{oxpfLnYaXzg<pH}DmYpN;1K0bY
zf0p~;`#d9XjJ@vR<o&{`{wML8Fuh{mu4XTRHT_@!XU3ko&lfpq-R~(Pl;I)$C2;vU
z2EE2lJOdgklI{~?R+LJNbY6Y=*+r;_@;6k~$W&x<eFZ$fXE^VnHT~6ik{g8^;2iQt
z$4DX;FZee07@iSV88F6(0+C|wjxuj$nj)-Es?;oQ)%VtLCA-Z6XIlU+R&R;ALq*?i
zMu(bcCjr6|t}chdGI0JB4<#0FtG`!7W8<`{oc=pQeT2Ksuk2}U(pIfiq1{uZ5kZz~
zawZ%YukyR;go=$y^&FMQ8;qG8l`k=ytz%g3{(!rQId?C~J(!;N3dPy^ST9z0cv{fW
z63{P1x3hCwn^JRUPUFvKMjY>jk|5UH6QG_-C5(%sAfg5!(pHJhV7PXNY?`f>m=yY)
z%rH?P&J+M23K$a*Xs}e8TM&mRh#8Rs1w>F_pCF2Gw9<f3KGHG-jP%Qx0mdKQqB+4E
zJqt<}9`$Ne3SlEpr#1Evqsvj$*(89vy&P&1ozXtPItDTwJXRT2QZY10^<WngB>Q)a
z8<Gezz_WbM%4DMr*eY<z0dVI1XlJ<Qyj^ImVm0J&F*(Sh4iLUi#jfq5Hq&vJH#9#?
zEOt^vPp$Cbi3b0p6iIejbaXfqaU`eHr=6&H0Zw_3bNlLS%TY1F>22IlGg;22M1m!V
zh@nEiZ^u|+4Yb=lrr=395kkr)%;>nWO`Y=ga~{R4%088P?%YWhaJw{MtDc)>|9@X|
z<%y1b;1UyWUF7Z^O?`VotE`SdNRhTsbet~JG@_0ryZpV|Axd7zy?x93%D;J{SYgSd
z2uQQ%*F*S&{CJ*s`+Ij$9XT&^ub!(Q-UK9m)WkRx5QC6Lg6eB1S;D}OO+S7yT+Vm&
zQT-nyZ555ROdi1IMW3KvtH3+F$Dn1(n+pPjmPF#X+yJ0fC@<Im$PE5iI&mh$2U6-6
zYb)3^_Bwer^aQ)BSJj2@SJe)7-)Vv)yVfi`n~ZHM0A!z$5YVLYz|dRU8nfpV1igOL
z!q>7=ATfJIE48`1eM%%s#o8zBb@29C_b`4c&ui?Li{9cmpQA!at7+oBOadw&O*^G=
z1ynG}RP?W&3=dLWcY6fo*E@|iz2P7KdQXl<IkxU~e!kWwRb^-lomvdlZ!W)!&&SnM
zzW|9V$dQ^`;8(V6JJ=|{Bgqaa)0!LyClV@{Q80DshJ^$+1vs>iIAOyfwgI5spGlp<
za6%_>Y5-(cJv!CiJSnJLc?PlT!aQcA!(Gjai+_w^hP~hm3qNpWMuoY?#CNh#=h!r!
zr(Xp>&T+?*I4n%djM-qr#sarT%$$#$TZFuDV^F-@jF_9h!p%*S(3XsM`pf;6xt5AV
z38>s12GNOR@`a2fA^-zp%EfXrlFEzJ_>ue*1EWC{Nq_+{O3z}>^P(l>NaGq3unX)!
z$Gkl+p3?vXz;4P=gq#`0ZJMD}W(&wkwE0BjU&z4n>(b?_1Il9t$%iXnG!4#W9-dXk
zO-F=E_3Jq~)zrTD^jGeHM<b%7eYb@i<4wJMqt!-S>=!UrA)?rD`23puTAO#Tz}jMx
zO=`-kPolql;n!Qvtt=sj9f@AH`61ptRRgueoB^@D?6-3uGK{qHO65z6Yqmc&6jrn6
zpDR5F$kGHCk-6&WjV#{_@=7`cG0LFD0&&1$%uXH3U>}rC)a6wT*A!L-jxX8m<VcKy
z8b{{iv6jGI7j!(m7TE&d?&339Wywbp?ai*}IA9=6FX?6#)g)0znGN5!!~gXkNkw&W
zF#F`?V<Gy#>janRz5I>0&6`EZG8nxcMcXLoiw`>HtsGofZpi5BCac8aV@)}xBkFjR
z`yu08(LiP7TICdy!u)b?GNTp6<Exg~9HULaSb|r?4nf=`37HY%a$_RPu&&}tw6Fz2
z0JjPiwhl*|FBJ8zFs?c*E2-0PH-_s9`tl{AioOlhU<n*8Z=>D^N*X9jSb|g3d|V?@
z`dd6zL-sIsrwy_g-V9KfceIob{c_{2of^<n>Kk49G<!yJie0FH+#XUvQt1(XMR-t;
zqUPiX<~aU`mGIA80E$I+C7h@&QHqp|y}2|&bK1)bXm6~&Lts6)m<uGg!U5I`Pk%VJ
zBs(s9nj?d`9Oh`v%);7gUo&Y-`}>qrx-GLOOoTz7V3gm@8y!sq4jKBU-brE1evp*B
zNIq9)k(Y#nO_CVg`49%W(tt{rt*yMcDNDm>Nw=JTC2bu8cP>Be9*%I@zXiYBAqku#
zQD-YlCt%64pb_pD61eCwDrgNzGV9x>B`%5xO%4rMI+ZSy*eIc8V-V4X9evbtozAWu
z%PDvn-u8mROx@nBsCxEbaTS%(#jQ-TkUz;3A$Hjexw#ZBjFWnRyCc2wtytW-x<wf@
zR}oHmC`(4quUk}NDwr0igeIg5IYNiLt)FQQOH_YyRef-TTre$?@m-IYC+G6t6_GtV
z;Bc$>VdrC)^M6df+&ciuL_rpA^cX23wSnUyJs|&Vjl2U~t0Z9C9p$2VDK6*r#PUQq
zp+qe`erOIF3TZ7)`!7NN8-BX11+7Nlt0z=RbdCSlSO7tkQ>f~L4baYSQjOpo@tm0L
zZ(&ZQ*cMX}Fp0$p-2(<x;aEo8xSPqMbGtmA-VtqjJ*orN5<sl*ap_^!*?Pndn+d84
z|17)+EtT|3ABD`Bm`q+(vav^N_`EjlA#gE9G(`falQZpJ68x7NjrrtGEo4r_d(!>;
zXwxtSxpKEbe0XYCDWMLoj8fbr#U_kQ$~gkZeNpe)1#0th!LL`|$n^}yY;Ak-c>S<$
zxpf6a0nrfE2nrIHe}fwq?X6uO-?-8&u7)T-f5t`VljJC9Rme7rEb2PlO8MgUZHt&!
z@b`wvoTy9(hBeG=5ADqZIrSAY{KmrM%-%+K?<0k)7_0lU-(c>y76!1hIbS(j<^_de
z%_cVmZ(I@zc%SCQ?W??03DvvS<m;C1J#Hjo;&^sxeL}<5y}jX9SSH_@C6>9l!rq})
zt}RzKOeuLQ^i*jb({1TBzF!0fPr-TLtxXVa4$e?){0KyFgxfje*v{$;?7t7ryN-}%
zP|gLteJa^RbVk0WsGnMrdJTdKHF+zdH0o)AYVc4iRw*vL0$3o}1xH53R%za?w}f?^
ztF1=7`>@7BKW8Rt^6M8U?(_INL)qr9BhK;h5cqWiw8)|B95rhC{-^YP_Vsm$OflPI
z1AJ`#3mhKA?oZ>9rFVnkNlM(qJF!5b?ka1mj#D|ibM{Q@OlsgVdr(C<rpn4#Q|ONw
zfR(r4ZhS0_Tau>Pgok&p&Qc%rhj{O%jex-@#PzB6q&}|MSdTZwA3(*0PrdxbpVxTy
zpshV-lEa!v<EwXG+wErRT+a14zptNM#IJWaH<^R&mY*9F8Xk*=pRuYto|s(!&PT?f
z-v3paX?$?^q=NteR6qd${8niH)ts}nGyL!3tXjp|wvYqid!`nH^&h3WabZ!%LQaMC
zi`jlr3WSsYWkoI)l#B%~M$q4l&kyX4I2P}P>ZUh<`gHeWcasrd-n5jZn&S;m(62K9
z6Co9DXI-dG^onEGXevuikZ}w*C&|ySzLF}zdUDVsFf*3mtWs(5V~%cgz0!lb!-q4s
zd(h8@-2%!G0TC_-4>R}a^8l%F#ssSTcq<4>F8F*3=AM2}BBrsnCLD}1PddRA?5DKF
zDV{?~A{mvEzx_dyNg@9hk?I30$}1I^+z!w2>|}Q)Mf<^w31)aJ*S6qVoQY5-Lm(8F
zj(}&?LhO-((P8XW`4|Srp^%D&vdJ3u6mUUS#ljMlP^Bz(ff9IDda@*_*?Wi(Kp$R9
zv5};)v_kvgxrmuL?1{B<{Vrzv;8PZLY4t<YpR_un`kr_MQs<rwC5eXKBo3${#s^?c
z5x^lL)xfoU&#O%qbusumx}GUSIbQ!Th=q|tma4Yx=_tgGu#??qjqrsRAPNyc6Yz)O
z|8XkT=Tb-o!S3sR{8f`7=xhCe6<9JA*RTtZ5T=i)>GXb}2Qk3bY4+42Kw0Y@(`^MG
zBVet#l#^<=+oR}>Aq0z1(=P)Z>(_zMhq0KdiGciRtFO#vbR1*DD!}ir3dv}=uoPNI
z1M6uS?Xy3%K;u()a}xZdoUie(j}1hCRh7SB0AVkRkHM@m2on71^COCor70Qjpd(~r
z#1RjZQ0oA5_0bBBKgi0;n({KzDK-v)^^+Ri6H#7<Vj>iSksX+Sr!-Es(H*t_#}nW1
zbm=-mOoh__u{#C$`82cZIe4C}uIDp|%@Jz<5*7ijVt9d#d}>&^4|!~!03QW<g+rG8
zXUO8w4<c5MIDcmsM2~XEjt8b=4clMIv1B%FZH@PQ!LYwzHJUO0#BSaH%?*VuB^`gr
zsfPG#jW_E`Sm72$MLC7S#6@*QO*KH&m(%1cRzjfvw#~$Z*buvoHi2A+MTCFaI1~7*
zGTp)gFcDrG`>vJ(fB1@TymjRAH{F=E<!ndwz^v6*sUC4T-6;|ce)0-x4pt5ep4UzT
ztpye5ua#ozaCJ_Bw>Kv+juY^!*L;dkY>*;GWZ`Ak5s;WMk;Z0x@|Ohvd(Z>YvL%Rm
zZK#RY*%sNjrlutpnHE#Hi^d;l2NIiZupY+i+VWNeGI@nYwc7Yu58m@KjX<_UG+U=C
zhg+==GTD{}+Zt1iHO=$!#EL{ETo!EA#Ek%nbSwKmz)s~1(Akl^+?g;}x0|;sN{_Ts
zufQX+y5D%Q;CA+ai4vuv$<-;LB(|&S7e<E!kCl>mO{WF{_CRZP$(u)0U3~#@k=3-%
z%*9|Q;??%vV%FFLX`cmVmB2kdOIR-j@CJW5buEXtKh!FpJ#*h5YM5n1dwWegk?-{<
z@hC4XrjD!)LzX8)x~V6<=rbpX@di>Vv+Z}j#bSGw7H8Kk%x>m=-OIr2e74OSVC1A~
zR|e7FfOc#&$<(q><87>OEk(qGcmDjd?@$%Kuug&VuD4v7`9__y*=TP3g^aambAQ<X
z1f(5{+;SfRtNZ}||7ObHV+#Q2Kfm7r^E-`f9O>=c>73l{jE#W**Lf%Tgj@MS0RVv6
z_kZ`=I~zN=|F`qf6?rsa=Zl(a|1x|knY{0BgSu^!_Apu=vLUiW&~yV1<8srbx+t@O
zNsztT_s4Q!?n9iho!@4pLqKu*_4)a^hqLnESz7zJYPyHl%Py3yKyCXpw93hQ9;rPK
zjpMtsj;Z?sawy8-`BObN9?S@llt_ghN|6?X!f}7`{dQ^S_Fr=;(B*bEx9?7;>&bO*
z#DNuN>4mXu)Iaw+M`#Vcls6{22n<mw=6X6K*{OU-S(-))oxUB0Xkires6dn>cdalY
z%_MYvx-%0kGyw96<BMYH$vR=VFpV^wh$Svv<6snYdw05BtncaNVzoXNfSLBGqqAa;
z$-$;1dHBAn`%7n>aflJf-<DJe$Fz>rKsb4l3F%a#D4CXu3y>FdUQlH+j3Z(xku=gJ
z_GCaQw>Jk$V&ca_Y2Y0~7#UuytPeIW9K47rgZ~aLBL^SKD0!^ts4QOipS<&Vy+<=5
zFflQpjwtZag?T$5yPTL3_+htKJqA9M1!Mr|I-1Rcz(VrS!UOO{+sD(pc?i+Eui<fT
zfIBk|J~s$-F#gyW(S;rJ!;iwVJ3A&w01!RGkY3o>QiFShezPJUJRo2gA3m&z4{}2Q
zW{z)dX*_s%(ZE7HJsvzfX?^$Dr`E)J4h}$@w<k!y0JeR*TeDjLdkjU@C*;ycJBIA6
zzBt3Q)x+_56mmOXuX}NvY-t43J0qqbLa+ru7qAJymPEWqY#`;)u=`yMM6R?LnV5QB
z7#>`Bgvf)vz{2^!y}N#d&K$XqvvCY8zVtFUUPg>qGLGZ%L`pyZZ*mZnJREpTGI`uo
z1O`H!5JQ52Lcsp+n_8i|#)UJd68(E5Om39WQRKLs&*mxMww}huvBqKwdR2Q5vi&2f
zNhwBg{~h=PcSs{mLi|t(S?QHZkf41Ds9skWrOAc5xE<e0-)TW%LAb<MCEa)eqhrsU
z()90m)OSrnWKOYsHuQ!!DfJ9p<DQ&MUE{8#_YW>vy&^r-V~UG&gCsP6FXq&s7EeYQ
zTItX15HzH3orwa7*)FNt<-5(V?AgXK%Q!K8%$dYG3JX>LJRQY6HypC-WTc>Oh!bU=
zNg_T+-(K}YZf;|r_Fm%MLYu?;B@MJZ+gmK!ydEa%MjFm!3Ctk*HY#JdKc*KrD8c7k
z`MQA=6Z!+dHjSuh4^<SVCrnXBeAE%bgPstn`2Uv155)(G{Td%`o3qTr3g}DTG_G&=
z!w{eFj@?skp#9(Jcr-&k@;dw?b*Pgp5UxWZYgl#p=_i-49p`mAO>30LMR~OjSs(^r
z=ri$N+eyjFa?k_v(JoL00kyGv;0{Q5{u=3FC7O`C^$Q{e0-h?=@&#-+Gkn$Gv>Q@S
zz_7lo%TOQIT_D78UCuGcyTAo1Q9z=N5ej7Y>Up=~#lFWQ=&@S_PW967H?m9?r-QJ&
zL!sHgTpF0HvF=bQ?Q<@A@=qTq^ys?o&H<~)Yc^-c5v?yi@|RyJ1Te-<4U5wa@uccQ
z4y8ugWhXHgV{|@%Xr*rG`-J$~^mg^xqINwnfbsXw)B*>I+AD6ZtZfPQ9)EL@PW#75
z26<$IgFMZwGb8L1NDr5zw28Xoh%kxB$P^2g0^tN0ke-yq+k_L*tsGYSS@w0CMk27@
zlQP5rl{($ez#*SVQ0)l#-YTnQJMlJS`-PX&L8oN^rsM4j0KiO`f&vHd16!mi!{>Ff
z>4}U%L2;s%PM1hVe>-ACEB{RNy)=4BRCx@S$&*1pCM=>B5WK6A;E6BSxlt0^&K+Fd
z9`30;4Bf?@@9#OiyAgHF*{W&<1*_CBaNiP`^AN}F8r2{>fC5qj87WJnM(Wmv4%f<x
zf`<*&T8jtShosm*<JiRWdt%MRI~D?=^f`cLIbxC9ySFoo1h&L+(gM`QH0b!d;^yUf
zP1RAi%`>x{ilG01x~l2tnxN0&)`Gsux~3{G2$h+H?c1kFQggJ^thiHk%r%O&wnc&v
z&;5fKea!@GtE}&UFx2~|xuGk-YXaYJjo_OFEyMX{yYSD@8FoKK_(*Y65HBF<WD?N0
zTA<Jd+6<1HwgGsiT*MKvL!1=%kFV{wLLuk~RC2mxz_t5|q{;saz8l#H?hPcRnLv`L
zm^ulv-jf2Akb$mQs(HST5~5XF#L#C7)DA2a-Pe=S#-KaMGJEjGncjLx)CJ;9C)Gx#
zxRgsCY(q2yT>gg}Q)#q|yCV)L8Y%+}s6DlKy!affL!`E#gxWSEf`fK~0TefY1^h2M
z#&o9?Et-7YFIC{c#dTPAU&dN68ZbD1Zqa;yHtaRRGp)t$Lk1NVTDJMEx93R$c-?(!
zWUxQ~x-?xs(?@o+@J!D2(4+;M1<t`8OjB|kW)v2tRTHj^xho}zPuo_{Wup(UQ5Cr&
zLhlRW5%QV^lSKDOy1jb@g_Uw9q*OQlxKfW|9@wO^ChKQGd;`MD98MF7(TxXcNMCdi
zSd$u#TdF~^O&zeLi|?nPj=DtiDz6hAO<(=k#EW4$dsIC^dhsSk@W`G{u--pd5=l=c
z?-ptZp~z7Ewr8s?s!lQC0U>Uv769K)g&@HVvrsH0K~gQmcK^tOQYUm=qaX)jm<UWh
z+=y}Z0JS3Nno1oV;+RMV2^8e=6UmE~5Ixc@W`;cc)ZNQvCN4r-7nLV@f_nj*A4b4$
z{tseK=-G;&yPJ9;njPUK3@Stx4Y-L9iZ8qm0^+Vz#i^4wnwH=tk=?lZ0|qU*El~fK
zroR%)yL6;ytC`%M%H5#$B02B2;3>XLD3)F|d=1#8zZGZ|55D?TpF*evyOy6zH}uaA
zvz2S#c`k<u;)#g)8z_BpmtyOAR)HY^bh`m&3RHwk{a8@eh&cov5*q+*7UKsHyPh5N
z5j4$Afb{5Dao9en9j{$_3mcRNohpFbXb+U(@!YUt;1av~nf4LYE?D+=I$&n0#ro_u
zPiq8KcWeF`?}C!GmX|eiJ4n;^EnA6&fLr6K)-Q;I17{syVE_8tu?xVkkG)$)VC;>v
zN+F2OP*RahdM<q_aus=IE5~3u-P!RfB4_eVimYQJSH-q@qEQ*I&{GyJ$k|Y0d#st2
z3`-clhN}>)Cc&kqHFLf#7*dnGCDKP=<=S@&3bm2+(r4dYElInSw+1EC1-yW)VFRu_
z8o_lVJ{dAkv+$yXluS`+qc06Eat0G&f{@8tX1k-T2l=!y?xzs}_w;UA@LfApe%We&
zGowGtG?;lCv|<a-+D`8DHsqW8AaW6?Of9KVv3#^NZ6IbZyWaxTCS~0MO<3(nyK|`M
zf(k_#s$h<%(d0{HN(7Bc#9Veh;l?13H+ll5H~#{^R9<y0!EVn3|5|*;Saz{IbT7tE
z@LX}aT#C85;d-zzQx!yFj@7b2C6N6<*exe27D~ZkO-jjA0d&I}Lf+qGf^%kLWZcej
zb{GnskH{!Ucb^Sp^a0I65KFCkiL-94oMv7Xe%67q_dbun#BW^n3(ITrqBq}~V0xvx
zxleZV)X@+LZ4c?$sZLBZM=s1suXiz@By6}@5!meH@}tmXLLMjIcb>~}Gg*ftN!~yn
zu!v@HMbBtiAWdX<tF#%g<26!@NW?(k+rn5-5Ij@@NJ;c&>T-%A&w!iQVU<%lSU$*a
zB6w0B!$1(Xibd88MAJI{@vC{Ah3kFGA81CKCG>BLdP3dq@+b4HIy7o&#3Ib~tmx=q
zxvYD0koP>`3*OHK$K)c=-Ul1P$4547q}D-ujFf<s8cFe}O{&@DG9{hY`dYOc*XhJH
zX`P^?@QNHB;Wd@<h>moEc9}{|uf0?=V@cgS%sbYoIGbM<qB!j)GtlytM@qJwKdH`T
z3l+@Y-bzAtH6ZX7IK#X;Hx9F6!_UN2hY=}B>v?XMD(U#sG9&zEXW6456O7~0O$cpe
zwh{(^0bEQL1lJ1-yhPk1bD%5xS(%iTg&;2cenbvm-N~=<DV9??@UsdNP7em}-zU>`
zem!ywq?DpCMiQdcv5+dNr1Zsds-gWu^j!b+o*A`%5xg1}N=vNT(<M5QwM(3$ZjMn>
zfX><}b6slyyA@Xzy4-5IUO+LSnU(fUU|czq2O4*sP+j%Z3EN*4$+@cRB^0*?$O8%W
zCIH}uv<bB|28wi$>W9rfjoXl~=W^rP=ppWp3ZcJuqO4boctf36jTfj*P*hKB0E}wy
z*Yk~+{CNBo1jCn2Oxo$T>nj{f`q7&e=;4H;-h{V(hH<zIygl|2cM8Ke$ZK;sWLtll
zimRQUwH@eF9Z%_5LBJ>2Sc902yO?ZMo#DbrEZtx*QU`#oxvKFXjsEn(@DbmMZZ2U}
zj$Aaxe$DDfxw)XUu-nwdti9>crb($W#013D6cBGz0I;=(DxuD368-j|z&&1YqjKEQ
zbL9qs!v1h%2%v7)>6spvA3$}KoHM@x%o6(CigkQqdj0TeJ@#iQ?KPLgoILc9nSaTO
zIU+NAu76f34CK1J5r`oXfom3D2xJX(7KZ;Ml3e#|r624jlMxW2;f?RZbZp_MC)B&_
z2S1VG*W+|-TNnQsC54VkA_1Sz9gw~E9Z>3|w0SpA@L3-kpfC@xwcbEqse@oX`d?yV
z!m<L%jAD36%IchOBB`luY9|DdU}%Qk>wz_glI~V4z+wMpERZMggc8AelJ?3!9!MNP
zX+V@e@0wYZpI_T|eq&|27Vk_b+r$*MB1+)HF3RYmqXs1>$!yY5&qg>qb|+<+^-Ng)
z-G%+C$pIO3l8ce(5w8^T90b4I8!3RosL@M3xw31b;GH?eKUHOMe*v5q|FWX~K*PmC
z)XNYl?EU(LPmt8On3(?+>HjSn-!I8zg+5PG$Xf?P{*EmBC05jxnSy01{@5yc9%QJv
zg;Is0jQX>*NeekDCHzH%RuwkSQgUWWDF2tj)03h=+<U#s<_X?qsn)aFW|cF=!<Q}%
zT58t4$6A+xR%1ynwx@QUrBg%E8i?bop5y?Ti722_ts74o6V-74EO)%5@JKv-EK7j8
zP#B&T_yGNVj}yob0@8bKT^>_gzYQ`V*0&K;uz+O80AR}<jr4YND%|ZRSTYS$NHkC9
z1RJ>ytP@7c9#aiHt2k<W#E}$9HC)A9BNDc+<-nE>x@-uzsrwtv8BkwNwN5LY7o9Oq
zl}}#|jaLy4KC|T#V+=!aqE!rt>yYXDWWmMNc@+$&#mG3RlTiRwT6PFj0=1$GYRoox
zGZ9K;>TZJLbh(Cv+QCI|*tVb~5Tt5aAvy}*RhD@zQnM{+`)y60Rd}+p7Rvi&kxX%)
zcv29y<z6ZQ-8m>~>RnlV!X;K(S~z{N;rd~_)9t+i$$@e;i;+J5q}RHUt|IF8{Jiy0
zJwouxdS;tb(Rs<15|#@TraFTG-bzI4hwoI2wKm`#b&YIB-;=Y~xOs714Br@9M93LT
z;`9;&TD$zJ4i4SOb&9tv#vF}lEyOT(L<Q*&elhLoOy$0C7a93U$--!^IIh-8X?T-&
zVq2MseuidTr3{UHDc`&0=NHOeT@~v@Y6Jq~R*I+PNE!vp$Tg<u-3*PrJ7;zE0dupK
zeZqS*{_-|k1K!$WzA@!>BlubJ&fmDgrli81Q(eXy39Tr8QuKftm7|K%YVLbJP%gW$
zxd_PfCz&i=KU%lYNR0E3l4JB1=k}Q2iGGBg_JUHZtxHw|u33`*uZ3>Xc7162`V;0p
z=c@tQntZLRqq^}D=ayzpVz0l93lDk-wgxA{$r^u{rTS~5e!=W0?9E}P`~?=Qv<&~a
zxT4k*r9@9CZYPV4^76omG%Mi5%-|26D-5w_MajQR>h1Q86JaWJO|Il*RL%=^{nJd_
z8J>$tkwDe%Goj7}NnQCR@}{9Q`@pG1&^a0_@0QnjnGYt-K`X(Zr*j4u>#sdp4>%!B
zzN$6a0JW4zg2~w)PWsew_BVs?!B&1R&&oI@`nDHqJN7my9>9_z{|7w|(#<i=6x)H~
zafI@6Iha9me$5QM?ufpVO6ZM^byNeneZQv7!P7mmmqI+1hYoTkUg}wH6sNO+SUN7P
z&dw*D8x0^M3msZ$e|%)pvrK0}Di%|DvuYHH_j6lW3agJWEm^Vt_hLo9g&3_y#x}sB
zI=*hq!iYI5fx4J12cNfafP0^T;H+$)pK9rPo17K$u{*#F<(H;~8!b~xNl@G$ka!Zm
z!{Wx6LXVj^D1==m6Cl#zpt9TJ1}6@8V9eQ!g3c?Ys`!|Q^N8;aI6KB$()`csl4Uny
zhiLW+2zIs#nS%QGT5;@5rDGYz+E%5E3-6|7-s0wcr}(`>Ilbm)AYeOVwVHY=CI#xh
zN8Zwdezr5WC9jD1fXGdEmTe!2Z7;SzD$VuQYYQ_Qt{om~qE_HIEJMGc0)OV-a+OwS
z0@-o3uOr{ViXkaaD*lnC_$%>=A0<8FrBk7ry_lOS0P3qA7k5n^JXZZs$?bT^kTZEV
z8gqnh%+PNXVM$)7(yx{zW2pDuXJS`C%KH;x>ISz+51@)#O;mxTY6L4<t23-GsH#~P
za63I{T;(e=*ATIwz_34!U6_Gxoz!-=EnVv4ZdZl<#KDqkqe#FLFS3`3&-&eQ;*HnK
zu9qnc`pc2Vv}E*w@I#b`X@Q&?^DtjU>VJt6NhxD`d6ZiqNfVMM+h-s^eE;6ranSEV
zGO%Tt$&O^v;$R%=!kv|+=cg_+uwPXQZiR`GYbZV$P#0kiu&CDJno%d^XyVP1=MCXw
z$P$c>tupIKo3-})LNBwq-`3?PB~S9s?5qaXru<$UAV(8V*4`OqJ;yD_^~TfoN?NYV
zf~yv}IaEqbP*T}r783*w<32Od+5zeaE<?{rM5IHf<-?|or#$_wyx$73f2cqn6$w&y
za&Y+AXhgnj4(M?SO0Y2^4>dVxarcKIPcd#nP|}%y1*49~(g4~jrC9zN@_C9_1r?MK
z2{8!BB{~Hm(lWe)MT~Wi-Bi;@{F#0tg&0Sq6#3=Utw3s7rWYg)L}T@~&`21vu1rtU
zYhFDwmGSyhzD`#i*FZMXSZU1hxsil_Sh;JW9*0yi;mJ+>rB*E^3%H&^HsqA3XsGRV
za12YVRGa7UEF~)<<f4}gAhem6{(7Qyq%bCvSfDb?I;<<MY=j}nSEv}R#Zm2$9n|o^
znzDE;zNY(7uyd5e75bpDy^84Yy)fE)A%a6t!*2RJacP!5heOs27f!95Y03B7iduk_
z9jpID?C*lF)|Arm<-~DEfL&&~55YCExyN*p2<IN{Q<Ax-)wjV3bSm-25Ney9HRlZi
ziHhP7Czp0YKoi5|cJsAs8(v5n)HC{4mMb8fLBu^=5{W5B(jw1n7-y-!wX2(wigv&O
z3yUYpZOyk!8fBjuJqoxw4V8{-wMX8W+2yTCJt1ks+PHQ;zKndb1D2iiX+G@0?swR8
zJb(48sD*^LQ=y2Z<Ap7xO(4>!kFFNZ#pDySO)~UvVUf+8ajxGJP3qn|+JHJL!PmF$
zI+o{j&&}@7!%ii2Ce-rENWE;1d%Iw75nJE7kyt-woSIDKw)d0Op(cZ|lwFA`c|;AV
zU_70lKEkAEw68_Qc0yED5s7JHQr8&DVrSjafp=|keQR4MW=HS5?0CPt+?>0pwL?Y2
zd%N*5y=_)y)xJ=KZ7qF#e^Or7>QFU~3R^ldwm^U&z*=PfL~H)UHr$m8UNmgkwjGN?
ztv@TSTTXcL&9m{MYFTUQqaHb8>R!mw`g~r4S>W4FX?J4MOHPVrlE0fO(+5aB_mD>Z
zB6KyEhT6HR@`bLBr6AL(F?}^9Uvrv+{<69*amvx^H`m;BW>%82yzj{F`d(@X1t?<P
z&FF5se}>+#op)9V*tU2$>+fsUI9^K3il)zxR?cC<IPF8(aKtck!PBwK4t7pkb(7{r
z$Cm8rkb>mWFU5+lmX)jz+?j~o<)e{w?A|f+wv0p~cbjf)mIO4Hm`brF)o|X$PqSLZ
zd|l^EG;$~(FWa}<r5ytcu>_ANr4jNsp#l0es{kzK6w2eUadN&IyS(c0xEbYk=_jm5
z0K8Ozqr!utj>eq+2A3h09(T)079l+_0>7@Yp?A0r#vJO_nlt^lboz<~D9+;D8PA$K
zg_L{xzM4Nh(~Qb7XW~2H?(^!mk3X%kn}$xcHNzlo&8riABBFuvMVOq))WDMF8#f?L
zPA(Oz4VhYcr6u7T92TO?2q4b6%<()m$~Y=5U<mFEYUK_A6E79cEYD{VQct7lC+voE
z>u%0yAVZbf+){=^JWN|>kqA0c0f~C|%tJPdi5)2!3&*oZf!vS7JZ5oM5$X&(FVgKj
z?lL-%vw_Gx9<t#rP@>#Sj+OBDzSin~uF!v9l-}z$r?dltBL{!cUm9hQ1Z9UV13y^)
z6X!*g`urzKyBL=np#kSZ3ZR|w3TmPjCazJfljy`iX<94)wBC8O?%ksh+i|ft=`{?f
zY2wH%Yh=db0^36jcsIuHvo4X&pdw{s9H3~e;z+IghKKd>yj?sp!RYW!Z9o6c2zMPw
z%YG7N<HUG1*!o^L+&RCnSTC3e;)vI4AA|Ytf_15-Grq0PAQ#x4-_Jv1s<jX`+pE&j
z@3xMt3PnNxnRA)F6<t+%f}!fCFWsBT9mO1dADvQl{Q@Y>zCiXs4&F2WrFsT4TpnSN
z6h2xEUD6&7OV7>W2N?whwb=`Feu#gsPDL=OA`zp^t5S;B!nlc&uMQ}0V<yo5?Os0X
znikKimcA~jL%~QXtoKR8f{t?JM&&$oYA^aYO!tI9<!i0Ns){KNIA!*`yWfH|)Db#W
z`AkWwR;M~#88SNriB(bjvAkmb_#$iOVSZG5e*_YJdD)*bMe)i9WgM(zq56BdHYtf$
z(e*iZ1<jh+b=BC)IF@?3DxDW*MLU$crb@SHHClcfUt#h&zG8Xq+Bcx0dA4QbfVm7)
zQI>wua^y3taA77<)59g8X0w3Z@07f&ocAipk3V%7(;|w4wbbu^!5T6rqH$S_Fu1mn
zV_(rz*Y)hMhvJ|JGY+#Q5nZx$uL5Ch-mhkPxSg|vLke|t4;xin|8~{;sU}1(c&}nc
z6`q?n{xYH$F@=Wv7g=gyk(%F<Iz*`5Hhmqk-^SLy)pCASt2F1LOjB7Pxqh))Q!K!z
zS^uNp=4>b!$KOe1(d9h7aC}ZgUnXDfey`*vWTVmBLf@{s!oF41YU#Ye<=mWkAX|T2
zGa!}mxWaFR8C#oovBZ9S>C30xbh_4NKHUw5CsYAmaVOn#=3xrI3wX9#q|1-E-Hi`S
z^thj|$HC>p!{^R`Cqu@YPshva?%?$LFhAZ;fBbJ30^ajyi*Z{O@5zc+A(%Pm5BOwm
zHAk!X+CU+u2~4OWxjzSX%qY2`Etl@wLjKqKco05+;0J-Uh#w-Qx4tU!(rWuG-ybK%
z&<5`S1ERXfToTL&QuGJexX8B)Q%M^h;9K;tZ)%%Y5@oJj*QY6PR76ZmXJtY}AD8TM
zE#-RV^Z@sr3L~-Jm7zjZAFZFG2`W5f9;RUam71sWBUqlBLRI)v?kA24uu=;-Z1ERa
zd1Yqm!~wkNjn|QwYP>^QpqH?n8hkp}EV)lBC`BF2gikg9yOK8YxpU&SBz~_RzTy|A
z3Mi@>iN$6(Nk<ir*HO0C=?7Uy?bz*)(`|ZZ;guI{-`D-FZ;@=(qA2p$jiuK#k#~e#
zWkA3n{ytMu0>AEi?bZiPPgFQY|E7(Y63ctz?hn4VBrGQ!A1-^{c^F+9iat-E4`lQc
zkA5M(r<9X`6FloY;srR}?2_%u>rGO<*BPouoXtdITh&LqOf83R@Jt`=G($G^Lx>n+
z5Hw!2oMITor*HO?Fc~X}o0i?=JO$iFrI`%~6tTx&UPKRe1m20t***o`oQ19-_udV;
z1-GB(Gj^_U6$gA|XxBr5;~Q%>cZCj~RAjIXf^zG9r*R-y*~H$*1$v)Sr0#dn)!L}X
z^MG%5$Zz<XJ8#S+fz2e}TQ)5{$F}u35{+O<%Eb{(QMk;G5kenN?;Ysp`}_4}PG^7F
znE3->`!xXxSxdLOItM*s8Mv*kSsy?<?aWhjf#a+x;|nO&jB9B>+s)N#wG~%wbL(bX
z=34{s7maJ)YsrysgLZQBF&q|$a}j7yn*BGm7binCU+YWGE_4(Bv8C*{;107xq9&0k
z_Yl$N5ic?Odk!LX16*%w*hL6>WEz__Jt`wSf|tACh?u)zh`J~jId(5AF6Fmn>j7nN
z2=V}X7a_2fgAtUhrk5eX)D$Z;_UdGlt^-j)e!ZmpX*ieP^r7?#ytvaG^c{?_FVyCw
z$eL^j4eTx3WhV_#qcPg}dM9Ak8!*HdY>HolaVoWGq8na~ir(5I_U!n>Qe$n0?B67d
ztW4$}y0Nx<ZPFNUjgZHbppw+ti|9^fojxBf5&Dixf`yle3)z)6wDc_vpY1;D!Zuk}
z<%yXcn>|xNmr{=2afPhedyXyR*OJPTj#0~hz?RM@WU=$!jbqvD*xYcJ_-)RP6Ghn_
z;!ej(m_|dkcCFJ6G<5@!{TRJ}-%wL7zusQJf1G`*^5;7DE%i>R208m`odq@xoId@B
z8S%B?pa7^S15^f-FT{}<kZKS3jRrTs65R;xWirVh2|qyV8tv1R=mJm&7oarGO$HBX
zCIvxh*cn1Kh=@{R*wcKXPnavvZ*s;_a*F^^%X51gV`~ybL~9OT{ts8@6f6p`EZJ?_
zwryKy>ulS$ZQHhO+qP}nHs-vT7cq11e}7hVW>sgcrlzU-2j@NEv=bODWI}%K!tG?8
zgM&FtUzRiWzt395!fAj57|pemB50&jJn~YujXDFf3GA1huapLt6vI3~Dt*j)>Cra`
zS-O>OZA)yk7R$+aQ(_<ypg^_V?N^*^s8+PulF@Ds78(&8)e2AD;KlmI-&XMPycwkl
z^|%ExDpuPG1V)TVQ3u^tVYMu7WaLE-P?Xx#rWt3MEce=uc!_vord<L9`KFOU#G3~c
z2gwSaH-)O-td6>gCI?Oy2X$7%=T}PZkR2;yhi8JdLtwi$>!};Th|1p~>GM;G22eT6
zq?pc!%tN(AHk}WDp8f(|E6S?c2WKd2Po905=DcQ>rflBGCb>s)qcdDc=y%-*+^Dni
z``}krNVt{<J{lhvz@+YGk<?p~TDiw1BP$Ob0`LakYyz#pf3v2XYL$XlH>>~;t5+i*
zW7fdGloM#&U^)JrV6sWV5`oHXsf7(Kh`w{dU1t-smje8gk5-aMzfy64j}a01?s=hY
z@l}C(Wj$2TLfQ<JNW1Y;O2qxGYxf!%9jo#!Sb@sm@+GGLd4)K)C2nW#`x3gI`|l4K
zFOfsx1-Qb=>bB9!h*DWiga|nbk~Vu;&(sm~6=CJkfoA(G)2AI)zPIiGHjV?{c}!f_
zJzYJSFXS+RuSt!q{a>yFU6j!c>&Z$2t<=*tw^Tr@4?AL!I#`<xES4UcTV=nmP#NXb
zpo?VhGxd_QPOD?y^SkmH7~*Z|fI(YE!w+9)&~Hn61toe<Vc%d77;oHXF`_A;X%ygP
zxKD@CQCc72nX#KrY-&W)De(+0pPy3hP9oK^=;%by4w;FvAAx+?MM=>N-a4Jrn6*uF
z8p+D;2!qR0plP=mX1{BAfCF*^+Pz*fhJ?2y7E!sSnNgxY;1U3dvvRMiJNxOu%(Mk3
z#^n(VGdUB3$=yh2ccGj9H)UUi^70PtRP^j~<9=K=z{k=4Ox&5NwiUQ-4)N_B85E*D
z8aBB>E+@B7OcDljSI?>P@7GNOgoMueUq>uYdP)hdZ}y+hn;*@L^nWwcT~s*F*Kr=Z
ztPZMAL<eLC6%C)p)Tl8A^eazCw`9N7nLOgEoRiwphW9!QPMiW+A3CfM*B$E5muqao
zoYEP)!c?y*1ik=PzCYq=-t^PY9&<meX@R}Ji+7A5Z}hgny0Od^NuD%SCOl57R38XV
zS7(*m<FL)7g7^atkv)bguSsIc9cI_b<k9gfh%empeBEdP`aq|MWQgBKM7D8@sw^yN
z^5m-JG#>r*=P&1%UQJzd5}^jw<LN41TN?Y#GfQ0qKh=AbT3$Gi(O8U|%mkeDb(ME?
ztO%&AuLu@`*gqAl`2fm3UI$X)Zwy78FNlZ#3Ii9Qe(YAW+F3&vM#A5@UdFY!kWpvX
zQFey(2mLrr$F+G)SfcR1ID6F~BKX)e?;^?`ujVBUfIQC^tJS_tSi$RlVs?SE7<cgk
zU;AVv*S2di9<wt1^tBEh@?;)rg66eD@=^FG-J%Cwqu!J<=JmDeV@Dx|KoQ``KAWP+
zZ#c5AG4MIGBlRscG)}U8&SD!k*bF_NLcJKT1yfn8`SGVUG1w{xSVV;~lhJ2t)H658
zBkvhj-F!6B7vgO`P(a-&({v0!nK#OCyMel3qN6}s5cvIAxxja)jC+n#`gpx2eX)2J
z*Q+){$VZcjmLRAXmh^2HNYgmJJp!2_=-Bn00fDxG;+Y25!Ke$zKqJ4l3Dk#1^BZF<
z_Y+|2p(<RMp>b%c<C(`Zl8e+ZV4GFcKVz0|&gweCE$mvT8ZDl%7af#Z4}&R>j(z84
zcAA%)OPj)GzE}3wF6aJ@h{LdkR<}5eFIAu!6wfeT8Wks)Q5&%q7(`w0p|wjJeIvm%
zD)~q1M!Ia4_<P8g!a1T;TuSQ)7B&35+DV$R*x{rK-MCOA0)5z*v9QX+0Z$we)%0#%
z-2tuyI~>i}pd!znS}#o`ndG2wIKF@Q=S*zEsT)SjoHMBR#i%}XJ(%woq!76S3q%$|
z<x;|b{(JfO#~^#=Rd?vzyhVl>b>Ig+rUVz>7du9o*Mof6DhQ6^hkNWv)J?)v_`vYm
z%WBQ(>+|Zzj3@nq&$y=WI|}R$Ajeo59Fsc~!||AX@E`I1L)+EV!X5+x0Xhc-$-~ZX
zo0B44C_>4pD`&PC%*Y^s2l{$b1E;xFl=x+sH#yLSvOhn~g7G+WiJmN<!hNh6T=7#I
z)x?fG0#xM!omz0Zl6g?GIO+F`ht?)YUiaFPEJ*W0Q(#C%Lb+4hubE?P0fMbAYlj$W
z^9txZX&Fium$ux62?g%&^rn5~(k}+4swoFKRge4d--nSGQoStEk*ts$H*^+x9`Nus
zmOM)4r`@Dh#(H;yoXx+-`6xH0E8ri)YP{$fT43zT;~)f(p$G!7b`DUw!O^v`E)rL=
zZ?a?mSaLKMsal(+8J3G&!<Fd6K(fVZc6ksu#a`jV<_9=e*cCr%vgB+B!6nuD1~7Ar
z@=C{80IzZ;R@!OIh54_L*C#5N7>A1-{?#~9VSKUhBWg&GXK4O*(z%w88GrGLhs!eI
zv8@%J!x?}RT$IePvSXAVF;ZC@*AmhnWq+d3#jKSEc(tEHfN&A?e4$326SQMq%(xZ>
zugk1d-$NuROuY=n^hH8MepMFirx1@q4XWX<zTVIbd%RH=L8i0~4TRE|d$yk!m06z1
zJ*KCh6S&$%#Ozx@an?#FcjQ%<CSGkQeJ7km=oS^iH7#X5sG5^9nRJ%rm`!>r){`~*
zN?;2T2`l}dOdoO}S-!NWiA~B^(gfR7psLc*-qw?#7SG#8k}&q`oHeEpWF}9;v{_Ya
ztm!g?TS`x4l9Xz+y@8@3*_k_2qLKv7g-s-VcbJ8X`B%r4&SyhSs-8>-;e0D$QkX;8
z*jSV%cG(M!$+{WaK6EhY0=Jr(wLcPd*^iC6Y;s2*Mk-2!o<>Pp#`K!VT47k&$3?ZV
zkhMP+bM6*$sgZO)8byJmeK`<UM1NEgdi0;Fkqkc;yU3as9kyZ@h$Ux1sAHyQmp+^y
z(Mp<cHR@s%J_#<uWsKDsD8}<qNcuUGC-SPa%krT7J}eZ|HZbOUSPRZ}tr3fTYR7W@
z<(`2v_|Q0a`&wQ4s{drQ2y}7nhT&&3kbF^uoJ>rp*t2BpHXE4#!vANOGOpBPpx|Gc
z(g6Yh0Ofzfl=jZ%hV;6+<~HU|y1M^@lGVza5t|GM-m|JO>*${2C%`b2Ni4y^F8N0J
z@WzZ0ye>l<3Do1;ti``N+g6s|{tGMc;qzxxS)7jdusH6EkQzFuBBL054C_u86X|^a
z2nkY^ZE@UjVRz?0ZXO)Dd3!)8Jyd(3Te-1v^DyZ{(_-Ot>wZ3F+jjYWazEY0>pMS2
zS*T4`pz=zdq1bZTfsk_v_WAXIG^P%+MxzbT<2muiD=H8=no?L99%I6q${}?o&o3>o
z*;pdJ&sDp<XN$8z@kqlq9CL0V>H6$B*~tP5^zBVF6t~@CFEQ>r+`<?J<7gt9Or3o*
zDD=a#ZrYZ(-foduWQ;f-crr)S@BZcYfZ%Q@)v0`=Kxt@<wBjYyJJIi3Nb(n8bD)+T
z5lqPfGNkQFZf5G#jJ=C5En+2NL)VXyfZvp4GGJu_%TQ=3%pQ9%hw(=AUK*W6Cqc~M
zThCL!*)v^5^FyuVZos<pP%uTMfI0XG+tnaEm-k8?_DCJcItUmBa1omLJH+$Oh)ANX
zu8dg#eAW>PsrRQVkqv(dpeoxmlc|4>yI_g2r*a9Iv;J<(AYFU<sLw0hwagcEXgb^(
z<@~8<!pyffXA$z`z_#HFQQagAF}yg&-ykltkW+Vbp2apQN9WXVV!Li`M$?32lJLOg
z4aq@!-(0y{<2yI_6Zw9flHRfGUyI2Gbz?0kBV@<;U=@~h=mZO>xSd?C+YtZDza|f}
zQS7G=E5$I<dj2{xXjOPCrBojCXG0QJ{@{FVTI6g#Y6)XlHgj6TU_a(loa#I^>)QBx
zJ--SEjr=l;wz3J~aKec<WvWNfah<HM-hH*7jlR<LZw_NJn+i!il|h@QDaYTBFu8CI
zy<+6*IU1@d>lVVmM_r~|-=CHG-@pgk|Ey^=d&>i6Z~y>#od2$AeMfg2Lv!1IH9d@J
zX}igG*XawI>J`r@EY1ys0p%ue;$~UjESv~~Er$X`EYB#P{vb{j{(9-^CE>L$GY7Z`
zzDaZ&GwQkfj#K@yowN8EEi!BoQ<JuKeOzK%H$(Ez;as(=5ePzjTyI-^@0&z#<Pb~b
zkX&d!-IxS(X&{r0S&6lF=12t%=PWn5))v(EB5?ME+k8>J%f(_R*zh7X{d(p(m-Aob
zG(Y+5sVVG1XA`&Y#<Pd*H0C4<V?-^@f|0`qN!UX)=@%4Pb@+R%s&)<9F|JIR(B8Is
zs4G@p_;dy*(z-DU-+cvvzC(1fCm?repEXN~iqO`GxfDjfrtNzUOka%h?^IX3rur(Y
zrnaW`YU%dqPMtKaSKZVhfCaxSB8s{ld_|Yc$Dt{s8Y`(N6N<0W&5=|FFF^FEG}Z52
zAP&ad8R*2Axd%bwm8C2b{|Hs+ho;P6NwygYqpAREQ44hIb9f91U`|cso3HTT!JH8%
zXU2Vj<maQLBjhPbo%`SLPy=;cgOj0$@m!bHGu>Jlr+yRclZ7;R*Cs7gLKfb|{n;9Y
zy@u#G28QG;t|oP1Z=&5l2IG$#uw#TLTpkR^;ebwoWy2{)>Ay)%V|4)_dFLZF2|7wb
zf+&!FX3%Z>oCTIVDktL(U-^Kp$;xR2uH@-|5UoO!u@DkO5~F_EI}Xi3l%-0{`jadz
zB}R?bD6aNOW7PG2DR4_{MtH_=#Hea|#-I#m1^%Ox<^A|#g=le`Gj{O&^+uVY@j_6z
zom4O&4x=j2RexY!H}r~Q09jBFaC|)5hTM~f(nmt1a+r<5MI*7#(1@d&=$RUuC28>2
z@X5)sft&T&c#8#r(uLqBd=}B;z{Uv>nU=Q+7-EsJ^q|kknhvT?XTc?R#J}SbG(0fc
zSjtvC%F(ExOdt(865e4!!p_p5NgPC8e~c<<Q{WPJ&zvXp=?K*Hu2J%s<na>F)#ZE!
zJ|^)2XOTW}6;NID%Hnb2IFr&7H9hL3YY2GbR74;<UxBPmmH#fI?RJ7jLvZwd&&<aI
zaGN7Ay#W+QJRAMmn!$2N3=*cwbrn&fOQcn0StOoZby-g=frY%knN8{I09?Tg!iJc<
zmIO`rfv0i~5pZbav}_10lLToC2vQY2xow$qaAIQw`V*}LR+CZPs5eZ3u(qK$lG$^=
z(S1bbPd7%V>zgJiL!)YuM6LE3Q&ZQw_p_yQ@g%uZJ%+hP=bSCKkek2(1GY?VF+mR;
zdAmoCDZ_%CaRi7RH}tBXg#yJhisF>(0q*f$u6zIyz7m-<>3&XA8jSVH-Saju;1<*U
z`2q8X$vLDftw8Kvi|+7dE#K*FDITf{CH6xW3Fd@`)iH?U+d$$O5Z~W)`HEN~-`TGV
z&JSc5IKg0Qb`Z=z#W2fqPM4^M)^WpeXAtXx{lHwv7SKpzXt(p)KOv`bHUhAIMzs=t
z>O3jxeO_j(Q8@ns!RCS9!JRXm-}eVH=q{tsZht@BS-nE`i=x=8PN?0nR}u!1axr+9
z7wqFoyJyv7Fd`{u0Y;}KUouh$8cXM#ls2;-^%yeaB};VB1Im1s1qzLiOu;Wc39u+y
zjC7B9`rN$7N>~52{w0zaW!xu+$I5vtSn|hX0wPCjx|>cIo9Uk9zwFVWlIz*Txs`*4
z`|2Rf*kc$vZTRcD)ftT22W`p1)p;Yc>S%!n3v#g}F#f9qf_Cq5)2Qhoh;e0k(&AGV
z3T9uTHV_IKLa$I(#~VW{ZD6ZJ%L2r!C(36nqKTBuj)1YqjhXO@Dxg>ePaQzQt50Aj
z>}t)toJ{dI>#5$C7j4P3hYhK`au3E1K3+~jmk{)d<6cs4DNLwU15_f%OQ{t1833W+
z^hH3pW^(FBfMI!MG?vb0=-O**@2yf#R4r_ckHj9%@l19xFG)^+8*)6NJqG{^6fNxI
zW1L5Pmj9LvyfB-`BbOp4%AaQxjKy;<>l!<3+z)ZPh<oYTlcawbEpM_Cu8++>cKao6
z&~~8_hUFGGXbXWYpKQ7lc`5p3t{=u*W!)E25XaUNqoXRn%*P}0>uv0J#z-fI50tSJ
zfhaBPm)R1hpBKZL<%;>un!th3OQ74T<T9%PD9bpD$z+?1z7&?E+eVaW!A_iM85+zv
z<YYrI<Dqwr70G5c!@C#JjHy}E9moEyixI{(U&(sK%t`q2eK4Cn>HXN7@*0A>FWnE*
z=HS9Ke@-*>7a)?%+w38fBJ6Nz?&+znS)J?AuC0}k7Tf^vj?Z0pn;+E(!H)PWOgx6)
z^*tRSOJTMRY3RD+2>-$F)0#2-Lnjk!d?E;-q$K43$-CFLV7}b++dF+c^Q>#xfgRK|
zR6MZ*^T8FxMU|vZD5?-Wa16!=%AviQe@#I6Xjyd*H$Y6KJeTPq1P?J(MS)(Q8@Zr-
zk(j2$eDEzL<{cic#qUC51p++a`(Il)_BBpESYQAESf~I1$p2v+4Q;KhZEgO?H>zp=
z(^wRr*;>8qP>Hfi%t;NDex*LCMb@>9d?{!c2q6D>v&=G)3X<d@jF(+kad{*O?Tt`Q
zKicq6{Ml#jKb)fIU3^d-{1hnKLua&!&+@n&fv3`t9=jBDM_3X<bNH(0sjKX%W}~1A
zM-qfR!m8}(WksC&30YZl6(>T3<B#+r&#saz?!KjFpaI<d)I~9@#-2v#Emv#6dK0~D
z{{VcdGwU%o*#4-X)pO-Le`XN3nd!#1;KUwC?*qnznC9+}jt);NBd-QuZm+Ii7GGL>
zTkz!~d^Wzmuu>k7q{8`_AC!P`DCvH^(6#xFi&p0D-ys8JVTroWYNu`fh;+)u;Z873
zlua~<Cpeh0pT+k4ZSW+99o?=~=|^(QG!8<odxJ~eXvQ_#rU+~i166U0E?aVdW7`JB
z7)<zqD8TA3VRg^Jl0&ZuekBy6@<EC&+y~@Gs3fX!8%(Ozl2AL!!75}gN6lJj0{zuF
zWJn%@Uy}epZ)+TcBsMDk9t^SeEI5%4;vwL=e3m(cqMnB~Ll0ck!r#hi6>@dNJb=_R
z-433}SbHuHBYlS$wkrhbUzV1vnU|xo)Gi~)m^Vl&mk}(UNntSW{MOjN@t7%SQ7Yh2
zvn4JyClt->-+jUcypYAd0wLLO5Gz?HTO1nvJg9f|vDgTWdkV7;uHhv1@qtat%Sn-W
zQbj2|-QLm363C#nT3O4d4fHb%8Md~@AgRI}1l~nDtx`ASvQ$*sFCAOIA7HhPW*aBd
zVX*W|Zzy++boYs{$@paBtrVl0{vs`hP$bAk{>bAECr$X1Qi#7V`D>t;HVQlqk0wtP
zMMXrqgB%GtJ+|cCw-lZUO*7hTC0P|Foa5<FJ!(ywmN#Cmi*=k~ZX^-?NI!qE{<(~m
z%=M7n<)|}L3H1Pn4yv@tj`?qtD<b9Tu!zaOG>+ZGDDxoa0p~(usM?<(#k8Fq@*oqH
zL|a2q)>LPQ`<$O$4QoBh#iQ^F5e8lWb1Wcv7N3UJ?;{uDji@{x)=cL?N|rXsy<W<2
z*XDPmM!bFOKmRWZlyEV0Wy92+V6zhU1mhrH<h>HZBi|>v>vx*fBod~AjZm-J-+?Kr
zP-q!e%d0zuW5dcGY*|C*u7>|P+nX=O?Y05S54mH^FyU+=_QD=z^><4ByC#9(gw&nD
zxRp^6cF7*aeJ0j0HCAKSl5XL~=Fu4f+yl($wo!8Tta+q7n<DYL^XlT`A(7sK#rj^c
z38-bkms&O`DblSr1z>hoxGE0txip)nroH2W16Eudf^I}74X32zu;684a)tB-wk6Z(
zhT24_cagV;pg5PawR<Uh5R>6C&4#1_T#HS_1vyA!8D>oqXkJdMq~r<QZ3O?@hBNKZ
zWeD-}=~PsQ>b?3Jn^z<E8z;Ma!-@q}-(EJk?;uR&)u~r#BnA-MfNXDGNf-pjEXYT)
zGq?iT;|M~xRuLo^IGIFB=whE?7|~~sfmwfyP@8Cu8Ggvm+@%(DR{Ov#ej_B!5DXR?
z9qSN)-VUIK8)q{1`=x-;V>zq*79Tz+SdA8!xXi4?=s-395NV>|W@QS5{!jL}{d&jl
zg-bSYTR90^88q;e*T~!b?=Xm41wj_e103jmn=P9ruio1>85TQ1r7Cx{88g+_Fm(k+
zw_D+^4mj_Zt5D=y{_#bz1WpfrSYD^0%6&jvHtps<&dy*g^tMOB?I?s!?*(4R&$5TK
zYRYo;$OVForwe^>Q6f}hmPiiaUbWj)I$utszKlYxb8Y5LgFL79TdkmhFc(j_nCV`F
z31(8}0Vln&M<>;rYMSBGEOZB_=5}@JlBBjLZ$F1qg5}GV-A+2_HX3^Rw!*^}1wAo1
zvDNAd=ErEJ_}{6{RFzi6(pudd+Gt6cqpo_>B)^P$^ilxR&#Hag)HcOz%mA>WS`TZY
z9qnOo(raTOE)Gh7D+DlL9H5BaSx{}>_jThvQxnD6RZHNt+w3r_(~Hf%Y1c)=vn1xf
zu5czn22}J}ZPfNpg)C7pQj(m}I=_oB-!d^KWDoT`EmxfD3&tpOraX72zljTvft$Yn
z*{|gyQ4FyD>(`+F^=pX#AtnFQuKg2|Zgq9rLpB7T*IK<qbWGGBBXrOR(eF6tt(yW*
zr^F_TI&Fw3kxeTjNz!tTo7&qu1b7L)252St@W0bAq0GBlPn;R6(=m(78U;ptqN~y@
z-0d}(Rm|h(-qe<K3M3GMw>vZF_%`Tf>W(Dii6YNP-QC%R5oke>OzCrf6&=Gxw0RKD
zd%`EYNl+=1cv=bEH8~{PPe4+Ws<(i)-OAHeew&)co^lIJq&h4(Q&5ydPsMMr9-!t?
zD>>Ik`}H0b$H$5F6|RVB)5j<RnPpPCcFt-usOc}J!CdN$#zFcYv7jFycXlK>cF3Yv
zPGl<GzIjdDMBCKAo<29-e||1zzdkN*E>bfqU(b!W(z6OHM>A5&^195Zr^>hTX_GB0
zVfQ;BwF_9$)Fg8_7E8~rT01Iiu3sC^sk{H|ARdVZ2MaLYR?!sUs|6_q;GpZTy+Wl+
z!%SYspzbJ1SaDXGOQcZDQWi4JF4w0}KJ@%WE%IY4EhbfsHNzfAG(TAz!Q|l;pMIeA
zA#mU9<HTWLzEhPz)m<p90eC_@=T-xtDt$y7TtVPcG3_eXBvTa0!Lrc9p{VlHZCyx1
z2->`D7t*}pOz>O3w^?l>I*Vx?nq0hu!q!=REA{}OJ$d%-)I!Rsz9*K5%2*_9_TY%8
zH4Ri1gE}jbo>H-cA~w$DTA3T<Em%!w(lelC%!WB1fTi!+=A?uOPQ+-`{8<mph~HD%
ziJLj`8Bg1GfMcCIn(3q`O7*D4Y49OB>m|vqsCE{b(pb?Gm|b_Zomp6;q$Wy4U-Ztj
z<ec5zeY0<iM?xo1Lr~FRPEk8R4Ydj>8`F1xVGiLzz)(VTQ)~cY2TDjHkr-W%#m7%r
zM{`KOS54_WWASwP1l2fhqam!pwu@e!o_CMN>G~T3xAwx|g)6B}d+vY^<|Ds6fJ2Vp
zGl#DtJB^-$f|3-p*@O-O{e>>i56YRqgW5jPezHhhbG6`|M!wv$-BOyNH+%2dVeSR<
z&_(Y%UPqLZa@!xB1wmn1aUfK;L`yIJ%FiB&t@u~A8e$f4UAW%d8|Cgfbn2^7ZDg`Z
zv-g|hm$i4L8Am$``kV`Gax2cRm5vLbe&fk{@fb4m=IWxURx*$hf2k&o99d+CT26@S
zue4SywVU4zXeJ{T2s)4vL9(;qlX%Z2y1YxOCzQHr)0dOBn#%HKS3pelMD?Y^I$N?7
zVfJqoatW~hJyZ~=If=%ZFF+Xa$Ma#aCr63jTbgmSI^_zL5&@)tNP-CMpb%>|@U4~Q
z4}iSwn4b>jef#vE8l9&_vHXYzx|HpRbKI#9*|P^Cz7F+YpAfp(&N`{b8Zb3Wz$Lsy
zL1FF-zg09%TYfr@+IPFy_?JVoL}m&$+!yX(WZey~J@1}31C3DWZ;6t8V<|h9#(d_n
z2TzZB;IiA{f|k`u^j#x@+Dd-~U8y%Hn~UaKMi{|ZRMdqBmmTRqIN$rxgF$Vd#<q@^
zbcj^&;GsXfG&D^Py{pRU!wRquQgcMY;i|{TlDkX!NF6xaYxc^BnnWM&(!6s~R#z;E
zn5f9)6humn_74IsloO?Osron`pcG7?4LUO%h#geHN<$R98^5lyp@#c#*m*nMQ^wVm
z;z;?Pc2xK%CuT9eWhWFZ-9I%heK~_Vb)GV!Z5}i8DFkE19x`Ghd=QPe0Yfx-;;~Gu
z0Qd21BO0sHzw$uQyIB~gf4nP(qdCLk$<5g=`$4EG^#c;PXi6_IB_jJoK#heARN_P)
zOATLf)6<)3`{~)qI6h(TB}x}wmJ+-^R&|5%sGoG!$F^|GEO+pbvO#gX;>|wX9@SaJ
zLTXaEDif{mOQ=^IH7iH0>T7E%PbfIMo;ff^obR>oardz&^b)9ue<%YOyklZ*A<W*E
zXPnp3aH{n1wH({_t2;Hq$s78M+$Knl4u#xCFA}n&t{Kl%y)&(lX1~{UWzkbj1-%|q
zo&z`FqbdfeN5xKvvomf-Z=Om;4B!A6pv&Q1JP}CJCK=$ZQO2gy|4h7bpga$chpPh8
zQH>@fRHSe*?*Ead_R>Y<&y7`<Nd@+J^&sQ|gCv+h&&8cbcjN}r1v9Kwk3PMg6FW=|
z2%XkD9aKwEeZvm<46MWQPiYO$=8RS_W<bAqVR`d-H=ZgAsfJ#Qf8CikWS*{<i#RvH
z_|;Z)Hr&Afy{2_t=zQkmc%y$_){ek~ES=QuDVJhGE|@rp#9n3;g12jI<6}CfCw_4{
z;yPGw?cA^1=@d-+ejA*;dFi9V*CL&wlL3{vUBN;cY{D-ZzpsoGWX~ssmB)w?r@hqg
z7t1L<2NmHo39XIjX5w4;b;ow8@x=npMP43veC`B&`eq#{3!ntk_fHac-lbW+Q|&9S
zfU?$r99DO9e+&~SQ*vj94zc?KvZIuc=)(~)1xGGuTGR2cM^1~yRk)gjA9i`>aKrzf
z8cWf^OK<b9U86z&Z;f?w_`d^Dj7^(Owx?~~epY%E3yAX&Kw&`mu`Dav78A1sK;Vb~
zJ(3ABszf}A_3<8`P;?0t%F_oHUJ^9-o7Y0-rj*Y=!|a-YcO3$$Lbv$SDo`BgV)vgj
z;>D@r%pw1%<vkre-9phyV|CzxMuB`gHS&|xWGtFAZ#MMFf*LBjX_z}s++Qpel_AiB
zuEcQ154ka_#h;22^LKws%k~K%xP(vaXLpEu5EbebF#?q7!A!x)qWD0eEG7l(G|m#B
z<x1rpPIn-dV+%S;^NPyk0XlCsRy1Iyn1r}=iV`|;$4~+8f%+ezm#>(&cCd!eY|dxs
zXw*I1@RB6x_~ZrIrQa84eZ933Wzl^TCnGx}cWvnSXwioa>dQ1LSUZ4G#Xj67YTRxi
zmZ}7U?D}B|)f!vW3+AJwE@}KoyWsX-=C^YwwUU50cm^Qgm82Ysb}`Oh%#LX^13Xw;
zDKL(j<z{kZvWP(|5Of4_Iuf%P5PuI-T49nd*W66-cR*BLwHFzbZO;AoVLE+Ln6r@*
z4P&SAUQ{sa0p)pLK*lEBk4(6gX-);Ii4^k|@b(WdYfj5WQ7SROjk^S`CdOu}YKryZ
z4f1^21ht4gIZ?|W{2`wT8HQuV07f;uktW-%$>F2K1<eczz<_!YchgDpq|Zf0Fup#&
zmk`t*eb*ZRRC+{`ve$%t_Stv6-5RqxTn1tE&}SX$P)g-?t~puZ)7P|xZNLjxm*%1a
zXh08<ICQ=x`&HuKY5h>QJr$LlYCBV~LOiGBV>lQ_wkTsGux}3&V9bv=U$vMaA*(IL
z2fa;+IKj^(?4G`?a3khq2%@ZXkS-Pp&=>Ab7-g?2k~gR^RFUaZI-xL3$5JVx%M1W}
zV+XTqeYluG^5v$}p_FM15Zt}s&Iv2LuJVam(BE{yH$n>kt#TZ7>71>uUj|hp*=xHQ
zCwo~zxs}LwRTTwZqAt!&TayQLC1h8q{pP+6>K!)?@u<J+3bJ3r`ly^)M)^Yj3h~XE
zV3I{Vyv#n|9xXg`Iq4iB-eAgD<1Kcd#w~dZ(`&ku&`JZ*LOvibUT+e@dXfeph*G_$
zL}=Jn(-YPM%+~2dQgdtXq3AdVEa@$k=Eo>_2g<D^Z)u8O2Gcn4N@HEwn?rtp;e$rM
z(6IH|79#`#7SD8mg^Ub+!+<Fdm|zr%GNN!%WDmIj8aEajVtqDn5bh%luzOQct?Xzt
z+o=d!h+U$2H8|ucm!hPNAdZ51aNp(Zq3XqBW*&o9&=0hfo{|Opc=WAPC}&YP%8$cE
zr#~ItuaSv4`f~nWWV)Our(6Cy;?3q;H8oFR^EgZ;>Cp$^WuZXwXdw}YTiTL?HUj$;
z!Bh5u65p4OX7dHp26p`x&k54<$DUdfx62asG$3bSXM7|oKIRYRGDrB09F&t6VlJV?
zvT)0-o0>#`kkqu#jev2xyiK+b7e4*HL7H+r9HhAJow<iIi`(e6U~k}HI-csol{m0<
zY>0=(5yAWml2ell{q>JKwZ~&Tuz^nfnNOc|DMxOa%qy=*7^kpWRK=_zJI3TP#a-f}
z)t96~ZVYPh%PP~QPp~f$EY#nM=nhmszdSCWkB`4=t9qu5W&Cqu`gFr%>J@^=X?c0Y
zGn?{rKfi}<Jh_IKdm6dUkoV%b<FqqnazL~AgdtI5a=^*N%<HXyM~G=XI)Tg-N=v<J
z|BwOX%|T0Y7-rQiCo4hjj`!DN#-L9UVV-gtWy+z2GB}ko*$#qJDjBd;%HJ?u78aWD
z3mMggO}OhjCj-c&fl^&46pBd|+d9zoIUbL~_S}1NWShkLMYvj$k7o#x`O%nQsfixA
zPqi0lK#FbXb20S_b#KPLCf%{T7ZSN#wi}CFo7=<t)w#yjv#I@PhK4hBs}|-i{>CeA
z)Xp9T#vg?zw+3}T5lN<(F<Xa1h@^A6z}|8I2{$c3IpoS{T1BJv_~YUvW=pGI%h}QS
zeF|+}dM=e2S{92{5QxG1tr^28ntaEIUj6&&5dK>RX($FQY1y5`<Ut*psYM(agunMu
zIx@YO2|buOm@tQlJN`QK@cFj|GPk{UWXy`tz(2R1R}mwe!lIq61wtd?B{5}vKo|D8
z!Fs-idCnGhr7SQe3`^5!!mJ0|ukR~`Nk&mBRsTJVOpUu+Y&X!|s@}-$IsHMTL`LP|
zzk$)qo73%6|HO$0;r~&39R3$dHmqv>Z;1F0N~UXX=hsiCHT!q788$&L;xD<7HD%(F
z(>eo5gebQV$;6zLPQ>@yc03X(`M=j=4ZgMZ!|lP-o3TT8c(U~u%2@VR(kF7@v<ZVx
zr5zKb=Z2}n%!;W81BhS*hF0>ed(Nsx9Lak%p%$>sTmhuoAQ})u&)L40(L-0;*U?)(
z|HR_@ss+L|2UY`5Gk3ZNmVaCxS1RT*D8?XEE_lM}0=MYh{3wD5=xIR#cWiVyqss@v
zsbGz$Ng(?IE9GLL6nzOf5!xi#y6OjO6$rPmNlgJ<Z&PJROBi5#8&Nu&9KFQQ29$XO
z{T6o@{69nk-UCSdc9EG^IutTo1nJ2br5oz@>n(t1q#}^5nusR|QV@wjUWW2#c7e=r
zJ>1Ye>Ug6?{q3hZYl?iqImd-tz?10#hjdn^?S7Od&Nl1N_*L&XbHj~UeJ6YeUX6jw
zcW>p#e+lgn(dsp{Oqq0LtWTBR*CQX>qq&=Y_GS<a`n$(5sj84YZNO74PSbHYwqE~0
z_|y35+K~hNM(JTGkmJDnIWwIyIPwP7XGz`7z7MsW2pe79OZXi-XZ&ixlhNg*?502j
zvoSQItx($EC0Wuch?}bHb+#3U`oB-Q3jj{>xB@z^lF!sVaoXsEqH!9Y#8vZ)@W-e>
zhcz4{<V)yv!mS^U_?sd^hvv>)E8a+Rw0BJK+3~VyeKZdu(9FJ=%erC`z<hK<p~&OZ
zFe<N<2aSo?@8OZ@>r-y6+n|a?J$rPQ9|n>~P*L8?h`2$?jjnOcDp2IM)Ncu7*)(<q
z<!z9;Ia^RB42$oHuE*o68c3C9GPXz#6ad%;$9<2u7)>S|zV7(}{#@hkSp&zPs@E8e
z9_NH+#p-QU%{K51EADK_F_;Cj-C|+u9=#HUI%AM4(<QB(?hH>goSL=Rwm>QRyUL+B
zK??931PA-bnsfHQo-w&KLUv)_`VQ6jyNa1ew76qMv2^a1-V6*_;rD;0_(-fvfNWbL
zF3W?s<;-6Q8y<(Vy1;f{++(VkL`>qlhEehb@0>SmpQ8uvqZW9X9J}+u&z&vS%-cl4
zzK^^)rh2OBH;x-xNW2;>&9$bug~aSl!U+Nmfq2gvS-yo{+EoNmt}eOmf~B5n`ESl5
z1x7ZVtQ{FtxFU)5ox>QwmW!I-AzMbYPLWF`2K2Sc_Q$d_(bUf{TrOcxo7Y=@EAvp!
zw5u6oWBQ`U3;s;dk1rKf4;PI@%8Fu^F2xxq@nVqER75;Grn(8pLGv7pSnbOsr%UXh
z*#7N;y4P+a7E6;fyi|j7*e#lsWK)XXRAQvBpxv&5v$vFCytzH18>4Plkd4s4pv{I{
zzjnRyQK1LWIr(UjZn&aj8_#UJQPs3}pG~?^b@o>D9~DNYN3v{_9317SUihJ+yr7o$
zZSUKXcw_i^xbMxPb|-HHcQ?)$N@nuJwJMKR{$!Xgs=T^=%0$E?*nwchYGH&v(>pej
zwKbm>VCN7kDx1`v_nRw?1@2?_0<evB-eh9n(AAre<dqmg3iXq-Sc->xgRSoB7X+xO
zMLhWMDBCe!P|;UFmb>L`kBpXsw{46{6wm;6*Vo!R?(Qi$dxG1}tF0x}p*Dj}my9=I
z(s2%~^jE@y9xfZM5ET2Xx6vZgu7PuHVl+3s$OXwRs_Ts>ha-#tu{}|1B(r$N&;y?c
zm6=UK2!vym)QP1Gqn4;dDyKpU=KuCrqr7Cp8aI-}Vk-KVn(oUPKk){-pjZbm+rZHX
zPG35h`zGrKU!ofB6~bv{j~s(PX7q3!;3vdq7a`=(&<Y5+nI|(EoW3$4#I>NdFC!vJ
zT^qibch02(=py|`aT%Qd$3rKwj%=}f2SD<{KXlX0Srfg~EOLcJ?OG}K0o@;7ckNft
zAs1h(La#U6z%M7_u<?s1L&hGq7!-ExoN@?61M6GI+nWjp&}I$~9L^a8J~qizR&@^#
zx)e}ZKS?I8VRzo3eebUBeBXKg<27yjQ>J_=_(BD0QF$m6xNW=v1kqGq;p{^H({0}M
zB1ry_Fz>e%@2{n&I$(rIaV_8VpXdDQ-8=N|?o!>$ok_!<L`uosogF-x$5IX`>mU@)
zo`QI`VO^RAihFkXel>13izE$`>$0-v<|(ehd>u2CD&~V_x#ocM{F?Oukrg;c4eiOR
z2Tqwnz3aIZ8j5tz*(aGo_QkaIG@}(bT`^gv%NaF~VKX&u#p|We^!@QNc_R}UCJhvI
zZU{`)@v3aEs2rme8P0zPnFpif3&*$yrJ!Y@R<h-%5?0O>2mZbH_2$O={ui5W<V#c$
z6BhtL%<2DAJtKW5{eKhBYu<0yO}2#I&su@x*4hMW$L!b+P2J?yis~Yd%Q4RN^_?CT
z*?bZ4gA5{NpP~8Z7vJ7@00_S#qxET*#mz@c!*CEV=D_s+DLnvwB-3$^#E?j1x(!oY
zdpy(2zdh0hZg{8W9JCK4(;Y;K3R*C;V1<?bY2@W&$D>*#j*MMg$nqSC_GIvIc*=gf
zoP0iBPe*U}>;_3y18r)~!wfm@;IVnfmgzMEG|>7*Jcy!Xod#gpod(Gu`#3(I_5=Y8
zhB!rIsrqCMMmf75<wdFbIe=LN>8RA0r#>-x2(0`&Vb1Y2iPHa4Wx7yqA-#!2=#B)y
zdo;#WrP%f2-yEre=zUd-N5U9m03-K~|JZbCWcVceLm<Nva83(jL6aK@eYF4)y*g6-
zsQNTt6azi^Q)ye5_+SSY55v!~-}eA%WID0*zg#@{S&=HgP(7_8zD{&vskI@6?6pIj
zcFzU;Ue2T+=;;60bf1Nn`+HD(UmRUOf>Ge~pNEe2-jI5LDgNACoo<eNINe1)gQ~Uk
zAq)ZM^mMuaVXA@m>+pAZzu$KTZr|)!@56T<ENvYR{{yE3^Tmy-8D55m5F>v61_1eY
zW>}!B4F@>w=gjut;(5<%t@jLQ<gkC8Rr*%kw*x1#Q7SIw*9$l=FPh`F_o7z>XJkp)
zTQtGvOjlQXAkL8B>SB7B73t2v>s?YyONVggV0sxK<V^Rqp4kqruKPl$7tqc*isJQ8
z*xdT_okP&I{@$fMemw@Pjt-12oR}%_m50Q2E&b@+-E{KB9P0P|9n@%-mm{oR-Y+R2
zC`BRQAW6+33J_V)pdO60+cJ3@{g(P29Gph=%KMpQk$>(do);%aTIsmtQKmBny-1q|
zxjEejBgDHq$E3fiC5jIJMZ~26u0L5<_<rZb@N}VF1@}WO<e3EGIPkOGh3UhQ`a5mZ
zw-s8*hi6(+u0ZcG4Snwk({v)q#1rsb7=b$OS*>7}d#gUx_3gu<G}6G!pj|VSgD(~*
z?cj5$Y4R=k%j=ph=XJP#<JfG&hT>lKB8#kz5zbGmbatq_lO01kZR8tSplbnn4xeD<
z6Y-gSe2E@u0j!0I19V5b#;182slAw3Aeg>m`~*Z4<QZSVsBP)b71))GA6Tfz$v#We
z0FDVl6!HbPMwELzx?ZNu{FUEFpfUh;%06|S2)jOxkr`ukJYoiZr1%FQR)1C6Njykc
zq;$|41A!r^U7kACsVK<VZi#-*q?$S^Q-t5M)wq)}8<ArB6Mv9d74jR+o;nN|+?8?)
zgB^}ngbQ^l=9(ZG|5SG%Bw(hQjI@=_^N_QKUp;?bIM5`YO7+Otz$8l?rMUZMJPQ1h
zeqOJW3_Qq}pUzXi3=m_bGo6jUJT<-@kX9f_6^)v;ABcE*eY~dx&3sNRQk+CkgYym#
z;Ff<2;~mUS5Je`#1em`O0Yh2%QhFZ%wmT}2&FCK}q%gU>q&I;=7$<NCI<i*39hT&u
zzu3Ej8^ysjrbqCqe+9NfQJdJU!&3;qJg+Fd78ad|?c#+85rE;gGC_)y4%d<LrUaCk
zVG$8BZ6Gq}8=CnOa|Gkg(i_*z5O|mvr3-K%3aH{Jz^-Tfp9@6RKRuB~t{ZkWukP7U
zN{LW(G5c=C`Gu4K8E~Q3`ECMuMu(DPhEry^1C|&K3k+)55fQv2E_r5TYs2)R0*Lvw
z=Q3*2yOZ$yN!!3nI}h&ePFC))z0%?J&N4XRd_Xur@PnfOncbkcvJ0FMhc|MN0-9%=
z_L7pMok~UT*Anoo%X#|<7DP6p8pSWoeCq0d$s2>f-_h-ZM_x+EXU*K)(N&{J#@p26
z$dJ>gzgY7YkQeDS`M;lvO~`ov==@CKFwkJh!8eql$)9b7=SG5zEAVt`hv@kkQqEI8
zTam&rtJyj7=SaZzL}qh|;V&BsNO?b?jN@v?XYNU}b8=*s_nHT(^w6Fg6ph*60=hrJ
zCcB1^l#78O(Fwd27-hLD2fY8gc%Bp^uLL)8oF~xqZ0kQCb2xt9j?%nN(%;~EydDcM
zrK^3(T4P>A4@(85z67VN_WNHw#2%Z%ObJ{P&C_bXoIlaDJeVs_nf}c3o`eT0V=Cc;
zxB&))P7*N26#6kl_D+o_g7XuPQ;^t?1pV-UwB`y99S!oxqkBN+F)@T<(oOnQ<sF2f
z!j`ScvE&6caUjKZ9)$heaySOo?uOhBq4yc2DnfBu*i}tEAG(4!tCrp&u%1#0#*&K1
zsobHPfu;zir7GPaNmcUFRN}dT3z($@PWa()_T-l80_^d3+D7?~*#L7woA82opCWPu
z1jb8&V{MyYv>q)RC5TGo{3T=f*i^xiV`s3vL)3gAx5JXV)x2$k4<9Cp8uVf^H)YCj
z4ZaA&uge_P#xRGV73LRm1Y0!e1bA~S`@ky@346Wmzw7dqr3*SiO9WB~mK}M%;W&8N
zd23l%AD9LZ65{y>5DM&(`LZ&QGplUPw!p_K*Z{?ELFKjxWDw4uh0tP%tb|T4Y#mD!
z>bhRaie{R)>x&7g54E2L!7mVK!aWDI+d~Rq4AZmFIMy1h>hWIHcSMbcHCZAT*)amj
z{r7otdQu(N%Mh>}LyjH-nKB3^TVF9yF<+>%Tzl>wjW9t-qF;l!xZHxk`)4~SfjG%J
zq*}Ml+_oyuGR?foQ6Rq9QQ(J*DZ$*{3Zi>k!d{yXy}z7skN|r>6LWxiOf0GcT9T1X
zQvhR8jUdKaSnx4&2=IY%zn+o5u71^urJ7Y8q2~fYt^^1iXZsw~6pna9J%z(W5(601
zh!qqE^ik%ZMl=*?Pul}g!uc*COfYB4&OoD|pZO+9FvWp0M`t(y(3!Yy)M(hZwStJC
zc}dgW;lY5ArN1C%K^LN?^-YBkWZk3>g7s9{kZ;_T?vFg5kf3l3hJ@pB*Wrd%z#W=y
zH!z1r$okygqKq<eSs-meI(31zjXrE4<3$9#kBFH*Fnp7lvT$hnC8E;M5Wq43jL<~C
z+DCeDqp=`$9)9?$g~1w!V#GnX>y<YObvD`I`@JY+Q6yq1J_xEfLoo+e+h3-;7vesl
zDyfvQg-3NDxN0WBgR}Nb?z^!#ok8-^x!7q*8M1lPz)C%JG3?aB%KgcIe)o=kF-O0H
zo+!~@FfA+i(N0Y7Cy+S^gmH?>adtyghLjk_1ojIRDlr&irkYh1P#`Boz|IW;bf8c(
z-`<H6OV5)xZbj=2-fF8WOz%9^9?~L&P8Jiq5X6Nu(r;FhW{)$WEDIa1%-l&BBSS*v
zULEnBa(_Bwns&3WGG<uHgsTo-rI$AG>E}CzRW`JiwIdqGk6e6YRAWgpy$>T_|Hu3O
zX&kZ5Vak3k7U=E|oX7%rDg!h+qf8Av^xh%z)4QEL{eIo&ZKK3+7bv(A1=AGd4CbIv
zqfQ_wD}wYa5*nLjyq>t7LpwJ`IKFKLhS~>wXS*m`RZ`1sk1)#5s0%2}<AYH^O_O?(
z#O;)HU@-jQB9q~}O6h$U;@6{0JGeG9V73G&s^T4h(#sf2U*1#FLY^%l(7Az%k};HB
z$6h?Mw(%U6C9DJo6ToHL!y_#dm|TnF7<~UT4(Yocs3jE^8YavF3XAk!iC?eUdug6;
zRb@&)7@xk56L#*2J_#)yq4EhSoiHT`=wB-y#alVZi>ogBPeFr3j3c%N^1WdAdF54x
z^n#>C-O2b*=AxKu)9F;&gHVxMH2wf!IzGF*Z_gpaN``;}<lKw{&KDt;)Oz(+BQ;gV
zyi0@@>Z}~#Zv6xA*fLo9P25vs<FfD3`nhb+J<xbUYgZgX^)a=Q{VF1I&zZdRER}X3
zH+oE>YFt{^9*&Ywbu*iPU+sxPh#Tk$-=o!JC!1B<*E{4Xl{OB9pU7NujZTIwF-=`W
z=0Kk)#QI|PbmG7bfO6cRXl#eJx{i5K-t{E7#G?{M3)N7<Pe6(|k)<k(!ise;G6KaA
z(An3q>A=oJVIWRze>9FFt&WkYs(H43arEm`t(x;P94#w^j(J==H5gWi*7jrCCtIJK
zY~7XC#2Xi~oh)j_dB~p-a^LkVmyf4Y%U9pdeVcL4_EcCkB->fvUn+GpwE)}OH3qdn
z1&CMrlOmL|o~1(xS-A1ovW{~HLAVb-DHjDWG<i;|SXSc@#F&>7J>Za~nB)klArM(r
z;FUi~gFzJ)%rbF{A2Ku3hWqT>FePAL%Qlh>9Dr@qI~)tTm+XccqOc92@-c&1bjqL0
z6}W75loSI)fFyO)V}EP~yk_aTZQ6n0n*O4*Z*Oh0qOV>u8T4m2OG|V5`UhilO1KpE
z;1hDpGkVDBci{0J<HAo(+`Uv?^Blrk6QvZsH6=n3upOXjSpbupawn0QB(4B9${;^2
zuLqs|O9F=<5;oL<JSH&y^Ga-;HWZpN@FAV)7}`3KqWg-+kfzQh4dz_hD=^o%CS<zo
zTlLA>>S@{5)*A&O`SzEvhJ4&0t*Z4r+e!)0q7~Bxooh}N(-Yr@*IJm5e?0pKs)YL@
zdNP=`66qGDbQ*Eu7!tYJO14|L8EHp{&v(PwtetI*L8T?agzK=b55StgR38n|JGj*p
z2DkMmyyN^@;Cy?}l>JuieMH0{jdfF<I7v~epfs&ifEoTk%Hd9*L|I<nvZ%m5E!B_W
zH>2S4)^t~M119s8KwFn_b{W=K9cRZJU_~-tjT4i~Kh9ye;jG5_1si%gVxLmEhoG)}
z(E8FfdM-D&^}Ls>Fcp+6LToA1G%qE0lIWV9ufj7_T3Cmx-8z!1wmAo7yWGGv`-WM2
zr<K1+OYaZH{hF><f36jbw5!5fqc)Ior{pR%RG#@d^t*t`%_2xOFN;M?1g$BFz0*-`
zml>f?qt=?UyK7>x$6FMHEC!NQY)h*ef(Y&dA&0`X3xCgW{&bc7f(*TCU7-J}Eb-SW
z{BkFJ$qIB!@tnA|jBLL(c%NDnPL1V;*CbD+O31+pkOJMvfTVyZ0beazNCt9vh`F;=
z(x!J=V+Z{6$6Hw)%fma(KTon-z>KhD?hW`_GyW=yIq>4!wx)b03uJpHrcB?or+$BU
zXsKtrSD*IuuYQfJgldW$aNn7;m4>6K`LzL_zugvjVsOPAsWje*Qd%uy)v<vqnu<EC
z=)@Iem+jOrt*0cv0FMwiJq*OpK_J2#5EAR$fvSK#5rZDvhZJ0oNEm`F&>n~C;LRil
z1(I3G%&8ikkqm=NC)|(nX{1sS8a2L==BQ8dqkt?IxfzEgyFw?5k2AsqREse(iz@Rd
zsFhWe824a01Bb149%wj?PWRl-s?sV7;-qm7cyMjTvG|ebjce2Z_7)6M2A{BF+*^1o
z=w6=AA>rAByrqYml5K~Ijd5o!U=8d3Z7Ef$w2t5nspnsMQX~%somnhTWuO~fgY!cH
z4`X(!obbp$hmTj+ZSgf@*qNBO3`Gn8xHcvl)U#|eDmoFfr%5XXXu&Su)3!CMjEnNB
z4OjRv&>1Q2rcIi{NL_5JBY$?Ng(lT$TZ%Tm9@GE6DJ%!?Jp_EHqrF3Ttv|Tw7PRyK
zEJ=>cS?CR;=xwf*D|&926QP7zv7->V_@H*176BI3xE%$Wf33z@g>R*=pvjD%m7~h1
z9pjP574vI0)VZ7sfU*@u3+yF=h6lr`hiOJCkrYjmEUDuzM{dPx?q$YnU#ufrhxl_x
zTj!N(Qg#LW$&R5t6+_a_7-Ml&pFTrQPD-C3U|Fvq8rPVec#xRhejzkitS8V-^xhwk
zNERBgz)J3IrGZBkr)7YFb!@5V(N+iN!V!^?S)&_kYTHZt)1I6;vy*&YGdDo`ID^%|
zQih_(3ZQBw1$@GA=cf`_oVC4&B%Hk0R45Kkp30;lrK}$oT4c8xe2w8rVm5|~GqLZO
z?2v;(U@(DZcaJxq{f^z_R<Qs%g)b4a6KL+_M77+Y<Rqz}>T2Hl!Lc*Z8*hEnJS(RZ
z*R(2L6X_IdZ#L=_xhMuOX3jYKHYBJ>2=Y_)6^n2(66s~msjZ*2%B#&Y-khF?to`Vi
z>5?jl;BLe>V_86~?01Zp)R#+{8HA^}pOZuYLi9Qn47B8=FaS6Tqu8|#tk!}|4=qFs
zED7DGTaSwUi)MlEZ^emak@kP+dIuiS!Yy65Y};66+qP}nwrz8jZQHhO+qSFLsolA`
zC*A4u2WB#p@ePmXwXGy)fRY2h^T$ZmXmlDC_ecyUk3g^1yf4jZ#d_2Ib{2r8c2O0>
zHBX9mOVVV??Bl;h(9zD#Xg);ryqd63>~u;VYMqkEl!RMOx7%nF3Jg6h>;WAf1wN{u
zYJhW8^%V}Q*$Rh_AIBHm9m-XOJ>HF)s@Vo}V;TYgVgu}N+81n0f#fA%(?M6*fHMUE
zoThHIio+JEqJ2xT$dexp9+eT)l3*n-lg&~N*(Fcqb!g*F`jj>XL_3h1W@<+jI%~k!
z#Q-^SBvevM(SUZC#Brb2%ZVb>^Xta14!$3Z@bP}&koS6cUX{BQxIIh?L;iXiKjpt`
zB-`cvd^yS_+uaGeD3!yLeQul;D*N~Jw$3)&^L=uZIXX)Aig;%RpKO0-Ilmnea?~Og
z)vF#FMdI^ClNOL~>%y}H6X@m^a8lBSU`nN4s=X#YhPF3*e*7~>bT@`?&UQZ&9Dxs_
zZr84|@S?$ZXB!ayrT@^w(FN(mcD2~b>~0W!s`WrzLrc!`^gQU*Cbn{60v7c+R9mb2
z$stXEH@J$Q136r}q65dE%YC28^nBE6d@){Xcrm^sErS0KZ))gdnwWda;svtc>5vO?
z`tfsbUB3WB24LSpscZw!?YWz1r}D>7rlywe1_s~t!xh3j%&L{n2q3OAJ<tpSHwg~D
z5~jlD(TM{tc#Yz7+W~?B17AUb1CKHYc$Y1aV|Ptp)O>)twl5*eLrqNER>@BW)Ulp-
z=ZxjPtlB}j>wHBLdO}OI!d>rzSy8Q=_PCrG4NA_3R0Rj=YY+;?FJQFO$)RkX-Fhfd
z!%F^`cnO?%25$E^Gq+#_mKhWesCajkS?{ps%5ULz!7|V)yB8)1E*N`secz!Laqf>x
zrHOjSsViD(4vEa!@d@9gFkk%(4N|#mS)NMCBv+2)E4GgUycc8<pwc29)_u;E8`JUE
zJA;1YjvCw&Lb#00*4xLLmTi_%N0vfU#2cBcwH_m`F=b4DM{PMuacl9YDWLH+{l2CQ
z#mX2|xcFMO9e=LIxh$)KG|&s=$jt#j>hwjEj|a&Q0%WJ(e>^Y|jaquutvMNfxtr*9
z_oCW~OV0Mm0PNTc>!Pft_tLibWhw!2vS|MP5bviX*@6aB5Vi~9${Sz+Wkx7Vk+QWA
z-TI{G3=vyX=4Gw>{mc?r@grf{X+yD8FS+h;-eCsn)HlQF0LULJSsAQsC}joj5zDT6
z-%UUIek2M*4x!W$)D#LfB%i=)u|3RlM0#A`16Bs{GRl0f_0scF%P0Qr8ng6zNiAIL
z=shSm;9IT_f^n&17v?}-g{0UEmh3@YWgA#gQX6O8K{iBwVv*MdcAICzt$yf}m+NF2
zX^IY4_~Lz6)UusyoS&oDrYetpuj)Z~dp2J=9hRm>$gb6H#%_|imx#*#E;eqcGU`Mh
z@RzTCEQ8zqN2>aE@J|;E9?RgU@WC=H&;B22Np-7RZC~JRS)0W=&`>EEzo%BHCL4r^
zXYL<i++XUhY{`8%Oq{~yIZmtvC;H(_V~<D2T%JpCXGBuUX6;GRKKvA-t=uLXu<g3q
zlcsn5s+OB>CmeJKEAQ>i1{lj?0oxux6L7)KPIg}_3n2eKaGEUN@d0dvWCH~(%Z<#|
z`bhrulzG5g6Qy<;@;$;pW_WFQCQXNo_ZtiMR%+Z^<I1t==JVVOz@*x1|Ku9Ci3H^i
zzlM>pn&Azj>0U({(@Mum*+Q|RgRx6q2i;;v`NyQC4?ene>F2Y5M=gDLKz&{CY{tf+
z>?mdrbM{zNrFM&Qu!4RpSDBA;PkxhYN=}xG4_`=6bpovv3@bfpP42v?a0EQUUnRNN
z&dZWUshWw9iB6%ZZyIKnkB2DbZIApE7;`5Oo7lQ(1r3KIQ2=j^Ag88P6sZaVAw=hh
zzd}6`e5RAcNe-zsT}%zD4lViRxCj*$#N%>K7x;`d{tfEIqQH@G0$Fezw5n=|2rVdQ
zmiI`<6b*S*fqT&F)=+Oq_+8)TI%n_ow*?Jy<Z91CxqNI8>TD{Q>K}#`I&4nNzy+#M
zaEjLc%w@>H^*5$_zEv8ktBTNhLYtg?yXPs*#+HS0+dC2gMPBe_CDqETp!my(p{C`9
zdjT!T&+Y7&aC4jxbF1C;&J4zY1Lt)425+^s)VMP)e<5C%sTI~yW3otQ!$yde6)2|x
zWs_BTRfiqrl7R!C;=F0hD&E7@V%2|Z^(W(wg6QMqcoKvR?GX&?Ha%gE7=LtszG~R~
z=Y-!m3m|JGzZ5Kd0dq*JLO!24f6A0#Z&y_c?F~gOkZOmZbljxWm$mIRIgzoDJOyzR
zt*;7n{@?jR_oeC6exhR#R&gFT`p0D^e6ANmH8=jsWztw8&7G5$M*AUG0jXS*(pg*U
zZ0yCq6fO8lUANpecChbPYoeeTM4#GtIR$ZLL))y|%TwE$6WH9VZ19WHA*VG$T`UD^
zc7$car%N@eeXBS(Nr){6-?~O!a&ODI;l1(;5vIjs&ba=uzDx)3;{W!HV%;KFV)2-w
zA9N9$8CMCCpB?ojBijH4F_R1}9MV?f=vEZ;&MX>E2d%{C*7!Ofm|aCn60_Hd%I4OR
zldmEGlJXbiE(8rPHN=cs!J%Xpxs=sH)Y+6CN&Fs8f#@7oS)ti`DH&aGH<TwzBo;8C
z=*_)pwNSw|S0|iRD4B^HNfhckVB_8U%8QPP0d+t9F-RKg#nExOoHvT_;+ehh)5RhG
z=5%0)m}y*O4KxT^LS0xhcufMXayg2`WZ#vVFi5M+tJTEYYj#o&el!(wP=jXC(@vW^
z9ZE8g>?g3GC|ClHR2SlEK2b1_<tf*PA*TyB?FYqeJCkX(h5ZdowB=aNgKG+nl$UhE
zx8~D($PD)6ic7u1Uf-rGYfygQWhpUCx{oldm}NXNXm8k4A1LNJzoN^0w3cv7lwICs
zh{w1+mlSpaB`zJh#V1HtFL0h+UmR&3?*<(Du>#LH=AH}6HZ4X0|L4}Vfu7gPlDo15
zx<tK!TmDaW8R;jK6d{c3I1$M=Z$>N2@H{9K($UQ4pWon{7gO}{be<b_Pf1COg%FO*
zOmMB?WeV*@LI*V5mBb0%1g&HNRvy`7J15X!LIkH7xj>g;MNpa*)A81jn>f-sfZTOF
zB|EER`MTP_?RA;Ma&lnvYEql8tz}88b*5&KGBqUow~e9Zj$zO6W<x|=t9=Y_m`3i+
z%i6DGw)aOG3q)bkeo=8C{hH_5$Y;+2xRB=|I@r_mH`kkYsMg77_-)42I7DwlP@>N$
z*3y2yDy@Ng1`TO<%dXE_;mSzN?!{0}P{?WicT#8XQ5JS%)G8vDjXzo^O<M?@B0^P;
z@9Ra>$(Ed6POtYDABmhe6hzit?pc77o|c0AsP41SCaG{~>Cm^<*KXy+sEXecY@CDr
zt13=kn#KrFM6O?}AR3b2(?2WV^9yYq-QjVPsWhoDxo8)p64j<Imee_19{N?E(EcLc
zA;((<qcrALVL6n9SaJ6wzYso;v-Cip4jw3_c&hdcpr7oF0N0oX*y70<Qy)2mf07_t
zVqb?imoCENTfzU9@-`scc<2B)+I#Uu9^#IP+}M@DJlnNyovVwU<EhcX)1v<>gC9`q
zF9&_7WELWvsYI*RM#eRw!i?D%`13GVLo06?SyW-q|D#M^nyD;bWA2-rUa9UZMWg?$
zg~33g(w*2Q0sX3-L|>gtXTWvW8FhDo`$7NjTdkLy2bB<@003ps|97j^@joL}BWnXE
zr{6hhv#O5Vp(u*aYi%18UEPFeUy7=riOQjLc=1q4%b;a$-w-mRC3njRD}u`REf3Qn
zF`S0^=N$J?&LzjG?@YIou&zSQUw6$F=d0{FdDY_%T{I*|4XXRKrI3mbWd~X0T_b@h
za|QB>cPp9Uz^}E!ziCby4x=2NLax4^o-glTPgm$rk=kRVw@GxTz^4#gcI^`)Dv;(C
z(3X@tr5t@e6H(ICchV-J>19>0Sr^4+Wt3>oQWb6Q<QGuf8Vq)hw3kgQ${S6}HRaaI
z8p>I^!rjDUPmSi5ntiZ$)a?gxR-TIGRURwgGUbtG3HLCb3s`>g_v+kEMoBK>Xe?jM
z88I}+Gk~9v)D{{K$_eqwHL6%t?k3wZBhd%;$=*&xp?UK*C_C>$tVKE4M%zSe7>Wq8
z-}<b@gaw=q-xkt0#)AIBw()P&V6$v|m`X#oTjt^t5SsSa?!b18*dP5d{qKvL5%92F
z+#y8r(i%rGg!Z-H5xL%M8DhRjb?kWlK&l9xMgoHO>WkLV9j4>}ubu<uD57}|LANNo
zjI(ZJKI%9ObON41(^?n_=mna-xdBjK=4Z0o*fv7OdDn`a%&tl7!4nX%!;KOJxELb)
z$)pBVHYFNUc>^-qu%bu$He2AagcS*_>#$7%x(8taJMhC2N0wATu1xoK>U#{Zu+u-p
z(RB`Jt^U023HVmo`_zE2clm^%Qhn5=5goFG)C{b35CUl(p>9pNApwU^p4|orO3B48
zk~@^ul*xd>u|y9I@+>9|SoT?A-Ora<sU6|Cqv=-B!`N^4VDxt;(|6qM&JevqBBD`0
z!SW4fv9NOIk+Lx$v^w(|pBZ)J`j8;L`oudJw|X0DY|-@(Bc>cHw|whrXrKEClMdD^
z0vPmFGjvyG*{a<gb!cCvU1J=wx~3qQdUHNGJ&|4Gai^6PE`tA1YOzVqPotvf@CzzQ
z23+VCv;L*!naOv@kxLGvA3Wo-$LiqtLD(JPH@GLfZaQyg+VGuZu1}NlnPNM7!Hah8
zp$<Hs(oO>7&iayF0}DUZ+Hl~+<KF(A2Kd{@8l~gYRzx+#m}k{|vT5nuBnGW=^xBb)
zf7vS~ILebhtH)((-A<2`!!fbU>_<4?sx(+5{jGsJdtR{*jNK1nqdeANf%vGrK*U)F
zR}_ENT;f`YmL`>ht~fPc1FJq(AxpwZTM~UU>iLMAs%;P@qHNXly{ftjp_9{F;?X`p
zeEu#l>ui}h*N6uOfc0P$V3Fs(TxGdfSY5B#uQB;6&RKfAFA%oUrcx`#%MS592n=bp
zB4E6Wux)`VT`qV{4}QPk4ukj+*=Tw7^E{Cg0-H%u3WerI&Ggn!D+3Q7BvU|LK{FuB
zbA9?zRPEnU$7nQRV%A#@yfi2P*p=kUGtQ!9)oj<@oSRb4x*KesdBJPyo{3pg3!sr3
zPgtXizy-@feS7Q!|JEyptMG<?za4c%+EuWD`)>3%{Zt?sKgzHf)~TS$VdbLY$f+KI
zon})~%3^Yr!~9W{Vk=1X^7{UQ70btB;aj7#d{Y|wYiZ+g{NX3{BG89MJ-66ajmtb}
zBiD9F^juO8J-e`wNSn%*K217MX=|9%q5pfl2|)WX>xTJq$cxH#%Kp;3U;PrMy&GQj
zA}wO|-QS@#-P=nsJnJ5t;$+tq&2?Dxq{--B#>nl;ee3py6%2;0&M&-g_rJT%*@8b)
z)JVT7uz~;p@c-Yz-G8}FCllvir#Y=<<8&a3^s57#R@dCTH#U^1?5HA}#c9~sxwIY+
z%-Wtj8)9NXpM;8(Focvi;n#bU<0hf+#g@vI_z*cSEhpE@yU4_Cbh_@D8ue*1&Uvci
znt*nx(>|qWE;p&YWivrd2c&90LmPG)H1FJprZFS=V>R9YiY+^<@#jwtTGz6tD&fof
z`1s`EteoyoOiaUHakgKHk;SrAPcWX|(|1Xf5dZXvXd5WJItVau>%YT>fd4`*rVJIt
z@z|+S3-m==$Xg9&&Wp*R^L_z~ro)Sj)CnjJXeC@NJ4csQd)8DFBtfiSY@5l}fRg~6
zQaO*ExSg|uO-Bv@#w#8#x<lNd9s@`}eJF10Ub5Wdpv4-HmqqCjsm(h6-k{0@&lzDH
z$P~~?Afr&aW5+W)Fux2k%NHX*Mu7bKTe3s^Q1l?^l^eNzugqsLbZh1wtk@mhdg%BI
z6F+wrlkZ6>Fd@?Kd29AGpltlGMmB3k_w8Kmx^;{(AQ~w*XW#c1Lv~M@!%($dJvaj}
zuACS>z=+EJqc2$Ir(SGbI5WQasoK!Sd40}nK*+s7SYM22Q|k|~ar2Vjty{pS-cFo4
zwL{4G^Eh9_#ar;x!5<R<967L4Ci&mVdkoo?H_XbzY%4$1M_ts9%0HF|`uzM0D%x`y
zKUUnqWMuWVr|V-F^gBz&9>df_iifEkS#Ww0zm?H`0**abtiCotahE{qSFy3VcWZV$
z1HUwP)^j5C!v4$2{mcF{Z-1fDB|p|2{?S$?76Se6ar;Q8*xea_m}q=tg*-+q@eE=Y
zWkP#FZWvO6;7Z<kpJS{1Rm<kh>!|tUV+Zw6P&()pNTo;EYdYgMfEyz0dkW*%10Ha*
zwd&#o5ean^9fD;`ng{C;I$_V*A<OJzlFQP)KMLx}fN$D~cM#L~!Nh;e+fmkdb&a&r
zK(1_{;Hy)xC>g&&PVmjBzG1a(kpGrwWufu>SPex)Zj!53%3$u0Y}rT;{(a3x3$-d|
zS?I8=wgny=`PNK<3{6R+6P{Q{*&+6ZIuIfw4eNz2bVEQr0OGc74&}EeLsGcWY`IJ?
z*$lF)R*iB8FrY!>2G7q4Dm@h$)pCGmW}nmRD5U|zmlws??xcRV)M=n0w?!SnIaI?K
z%@a`maDMw}90&PnxJDw94{l<p$)k>kD8oMh4M_tE9`T17#;F6ep4^kGxdsA)Y_V88
zPhcUxAxx}TCiMmz;>++m@?|t&N5?dVTKsLc0OA27537tO&`2Ab8rHy%CA?Yk(j`_=
zpE%7;xNyZqsB`Jxg)8kLk4JCtzg}Z=z&*hmiBL|wcL~wFQMfliOtFbvHyPUS7(V0R
zZ}+fom)li0kVP)KCU0F`mqkzZV8)06b7B2nVg?Fhb0<_wVoFM%a=;UIhfp7DVG|`Y
zpjhEWgzQmbjUD|K!Y~m;%_l@-X;&|<w*z)|z*bTZ#bO}ie`1zM4r-T(6ikF9&l6CZ
zl$aHPA}kmQ*m#UtJFnUu8-XKXiw<O4&7uo`%OyET2$Z~>idy&$Kv<?3D^VV6l!h=q
zs1z_e@;uC>*hK1MT<>cPQP)={XJ)D-pN<<VGmRTcDjmu3s7CqPpd$shGW%#;;=v5J
zORlc1BZ`+g==CatdvCaHbB2KWFIui2Gywexo=)&D@OrNhPZNLGVaYF1gqeDf=q<_T
z4Z`Rk{;7_`rR2K;|L}62&{R4Cc<Tq8-?t)+@(?MNFT%jee8_JEKqL}*uOWjX-+9pA
z;k?3s?hkml)Y=-aYiH+!%nBkgLAm;@y3e%}0A6WZ@2^s_Ai9PLf<!eAwzx3O9pJF`
z6?5)jpEXZR90X_NAK?ah=NCziv-qu%wu`((8*4O?6<`BkAw(PXT?ZrRj3dk$#t0oF
zQ)3W_orXUx1U4#abUx}JawM#1H9(A62~xZwJx%m?V8sB=Iz^whEq$$O6>_fNEioe@
zk0LqBXr>H$?m!iw1iUZ`U=tYpQaevV;YL{B6yyHTl7&`^!9D-Up?=mmBe-BML<%`o
zHwd_|K3?#Sus9#t3`AJf0Fws$Lq+FC0FKhWg0WY)`+ygg(0PsA_{4b;h-CzmjvI_d
zw1K*P$GC^PQO+D(>j%g!T2TrP9#ArGOm(8FPduehT(Dyb2WdW0?Dnc>E?Nz7=MP6a
znx%c{Dj;t7Ko!3RB{QUi1>r-1va3M^IROL_P^bo68)~luRTI$2J@F087(nt~alagW
ze!89hfUF}u9R-PJ{~xjJRe@42*ifVpTOarlxg;f)J91=IR7DAXo&Dw&=#Mw2j3+Rw
z#93K5mB){OztZy(q0bTs+wYBO%jxHo5h#2p(c8MYXSObeic6?&jwZ)W#E~9=+eo^m
z7Nh31Qd0GmpDhel!jSMz==2mr0TcvrowBZ@G)LMOa>s6r*5HlGzuSCXIXNsIaT!HM
zrGb6mmw&l7_-sZ<3zj3`XNnsTR$Qv+q;^Ab__Np@vUHV&_&z#!m^~l?1i-HETcr?b
zbg~FFHo(1e3GPl%XDvQFW>!5=0}d`#+B$(3-hV|;=(iU|Zv_rLJscPG$B;<TR!i?b
zLVYGSx^-)}EiVk!iZwS@XQMJ%y=LsO*FHIrElR(q9}l#wD;`u%vbk?v%Q51W-eb@X
zZ?GLA>R8IC8xE3O%uyAxAEP<+W5_^v7t0qzSw3boOr5+p9ZJp%2s*AW0=e*}U)b8b
zUQC`XT(m9`)eyV2Fc)^@ie~blaQ^}}^<Zh(w3jwRh9_HTvgGtM3vtr~kX}kIkP4cs
zI9$dY^p**@)PjN<aUvlQL@`Pe9RmeW=qgKVPCrwEkaP-rA1gnWJ9k~c!SFplReXAS
zF|<}r!#7xwq;rQF&@ePIkU}nJ`Q<!x2PzTEyDMf-GdJ<REE(A=?fLuYkYB~@#f5&i
zxTQpSCGht6%^>stxdnvCZs?>Q^qHdGZ37W-Y!83mS_<J_h;d2$VBVysIR)@CFEuj#
z6R{~PCU)CWs_fehMg&*K>xI0A3)}Rrl1mM`BgqHKA3ITI{(?OP?@ycmK-#BgCpV=c
z$q;xhGD%IPpCE~I4420iI-mkZpi-0whUO5Xt=KZv5??I7Cl-tnTg4p5-%OHYTZCj_
zJBVwsfJKPcfA^PM3XiL+KLgUVl4g~wXVa9UNV;39$iOO|f#2KX%BYn;W8}Kp!9gAL
zYB?pHYZ&oi|44-hWK9z}c?1kr(9TXFA<ZH|jWr#`8BUq71c7U^h2qHZ&l#yBMZpN>
zagXk-0CQREl#pW9)+1=|i76=Uc%jL;%hpZ-1(6Px8EdX<{I+!v0ZT64CF-SLo8TGk
zm|^UG!JlcF{MbWdfT6jGL3O(sXJeoIola_x8fW|EB8F`xsHH|^LCHD;FFDeVz<s7P
zY(d2~iL>zImlW<MO~-r2AS0@0Sm<t^Brt`?y4Ym5y|Y0%$MOM?aGChvf3C0xoR5l5
zxGF_1XZtYCF>U(@8g`lox(4hw?wu7CuvdCDG-RryID7X2SVzDvm1aL|tm@U1*-n<B
z`-VaNhWVCmz1Hpmqg^4qw*^jnO@d)BPxo*`w0}bK>JwAzX;e`c&`G2?R52N=_KQdc
zgZ3?B<P<N&nSk@F-P0CGqblyWAR@MR0)|n#ZD;{9RtOwEU-|C%UOw^v$!_vsW?XjP
z34Oq0=>@<t_pSxOvoL$>&*^fj<DX_az4}LpuP&!`^@#bmKh)Wtya7JmJJ}I^8s=YM
zHmEs~xs`}y`h0hC9mRbtc|C{azB~f`M6Evx{`~6#&|!V?p2?utJN5UyZ&Vu{%Bk48
zxxE)i*@N{CWI2O}P=SxXzpuh0oxL*RFFOa|Sx|qxya7ydzVzdBgy}bgUAM@;unL#?
zZMx(M9&h0^q8c_R+pm%2wJTZ!q}mZw-n-o9q}~o14{~i^E*_?`;nD6yX5o(v<7L&+
zA--iV0QOo86ll#@0i=NCR=TOje!5G4lL?*}wrfx)l3L5gtN-5M!XpVqi*l?u+yN4l
zQI(_3m1B$E*rPloRJQ{y?JW2JeN{LF2)0!PsnN|z1MFZy?Oqd9!i+MvT;c~y`k0^S
zOZoeY$`tP|beG1@ER)!U`{AHa*P}_>D9Ef12Br<)QuDxvW9!R_yau%`=lGYasJW>%
zaMt?Uz^WgPM`X(eDR+VW9pM#3Jr-J9;&}4+Ait+F-w9@_wqwRqCBRD-aUp10BQD!P
zSpl&olx-j%ys?P<6D1rDRjOr#3ZM{FKhXtWppF!`g)wvzy)c&`o^Go2>=Tn6L%dAP
zz)fe*W`?$xGa}DSX;~_IZt6ltHtmtT|BTUS;<Pm*G~`FAT?GczZSiBz9nrHw#qPJt
z0SWO42lg)wUKBl!mx6?Bt{$@-bR+=C<j~iULQ-F6;7vyPWyRpBX7T4}I&(kMb?;Xc
zecH3nzZp3fqMqg+Wd8A2K;q%SUp-ODBji$ZGpy^tMTbMVtNmWo;;rb=p2o;fUe-Sr
zMeVw|3wK3nkSk)haHg0vV(EpyuZZ_xoU(rwylj}iq{20PFbFG=DU{=8q|9tQsc4a)
z?rj_z(9PGMJVi?1^vb=e?Jd;j`8ZY2d$|kB5q|wP&F9B_K42@0f>&4&o{MZ;T(i?b
z5jy=W?e*WeVQP>HeTSF6$f!2%#j!%GQyo?6U{r~f_RKMTg94``nQlgHn6jMx?34_t
zm$t>M@UqgNfa#(~;R1L~0hFCd9qWh2sYY-gNq4RitC9d((IQ3^*3dCdRtSuJV>oUB
zrAR1Z38e>^9W8v9eT{;Ig6KmHf>A9&%blK3*BNGArC+)-`U%v~BWNFI@KYi$UL&TV
zM9VQ~z*KRY-a+9tysQ*G0JX2l9w_ePCT|MW-;(UA=xD-US)|eq>wMb!(B_cN(txop
zl9*I=w;32O>Ld9LC8+L}_k6<V4W*RJq|BYJ5?h4e1rBzb%iA3p{ZrYxj;xB_OsRsG
zKG0T^ai8`M-CN#5?5Fc@hJPl&E3QU#aX>3e#4p=K#ZnGVuo%qWp_2t4jETIpmh7Jn
zw1yo_pQVkkZ1LQ&;yTNd;i%q)BWX=XO=rQySVgUzus7Q^6R2VqMP@(GS9m$1&Qtam
zN?g}3x0mhU{LYYohkFFGja`eZ&YN(EU1WK~QYbSBl)ULvM7HSMv2%yFaNLRYabyg+
zquc`f*itBR1%%llb;5$J$b(!eb-@7`O7S2g3B1Oq$C0Uj{wM-=CT%-5RuAU3--VBI
z(?BL$oYfp+BP5g2&K!d^C`B8lAE_WR;#6W$;~^Kok{)Dl3Gdz`-L9{Hp5+*sdORP^
z$3SH!|AX=c)B0<a@u*%jdJ(%)Z+v$$E{V{0qQ__UwK}U|ee<)yag1AVk^fD!KD?`T
z&GS%ehKQ@{pk8{(7yyee6LK)Ok9_~VbfnK=EhqjVzknCB0rS903zP_7d@En3K<7$T
z7o{!y7?)d`kdj^>vS?6JjP#JzQX;&W=hqIs(+l3G6T|7c+UY+L4>jZlc6NDjf$d1(
zbXxuhU1_zcH)H{Eg8f)l-oe?0@jQE9tcT+x$?>xH4EE`$YYM+elvT5A;0t3+7zfB1
z?2-9GJ)>*F+L;W0!n}>|AL-<~71~V0J@I7OCZ_7WOj(17i`Kxb(w;D&#*704?s=3e
zK=-AFs?aM+aFsiDiEMxq(JS^{;LujVX1N20_u-axVZlZZ%A-Q~H`<*IpeyO$VCfIZ
zg_^1%Hr&@GG5>4a$--$od3i=zK`4e`gXPRu`BJcvOhjrd7mQQvoHVNAzZkKvZiqGo
zxlBE&&6%y0@0X93FO6WgahX`^Oy3|AZf*F+*9}Lr#<|}s8XV6GvqK*fPPPTnYN22y
zZ+nmPbaT~paCU5fpf4#MQpdPSpxs4avMXk5Fh?hcRmf2fmWH3%z>5TQmGj_BI#}s2
zpat;F+C)bZI}U8_VjXIp19(@iW$Od1#9XjrRLKG}ka4U;#pag>20<T1do?5qUe(YF
z-+W{Fa(!{~cVIBQ5R%{N$GD|Z@&`4H-*ShQ79ATOWdrD0Md!gWVDt|xIF4;v9bX#6
z)h!Wa$aFWK?OnFwvXj%Rxk+s+QfKT<9M0~$9p$^6O3fufkH{)+f#vwdRzKYj@PBVC
zN%$dOmO}vmRQ{5jes6gJjBTCh{;RR%>|t;6pLV>uj#8mCTF<TCJgVIj4QX+NDX*oO
zD+8fqIs#gFA=k6&5Qvy1vN&KmL-X^`D-S*_bDG18sZ+iWUdODPTQ0AdW18)&#@Bay
z{OBMuhvdU`kGm{#U(%l_d^eGd<It%>aoMZ<<F^!VNhS?px)AByqHFkLPF+z6JV=Kn
z!xb(b9<Nm{9xu9VXJoR@7{Y7gbyP9>#h3<}tWySYO2zg`A|YCXdP25yO5ebL1`Uao
z>}I%sG`L6Grxr^O%+f@j7-${$8YNRZWs*@00;=Sj>DMQ(X*Wwei2X)}8$n?Hm39j9
z24MD`a!eGAc7NrBNFY|j=r>L;;NMef24vOw^AQ{{d?O~vTFWP*>61y2>a;WienGYc
zZ`z=kGRhja=^k#dPpoh4Z6y9!<9M_1KxdKa*tuH8RV7@d@y_8|a1xzQm9#MBP9VCw
z7;Y%(Wh6xeljNL(v>XHH*1Fo$@LWzji87`EYVD~!x`ZaZkGa;EXY;s_v5J?iPOf99
zOVil7!}@zz$X)H_5XW8j)qD3sQ}aVxY-`FAd|MeSQMy<N0HviOOU0Vu)iGpyop-Lx
zv66wAUug^i3|uA`rjvy+jiva_1fWhO5II@u=ELF9s1Rp3+kpMR2z%<M@#TV;_pN2h
z92=h$&N$v^5e&dcYs2IK+xP&lXzZ!LtFYoKn`5jofu9EL^)V?xk9K6NsiiPA*`G(B
zfHT39&iFL<#g~|Uk~^`&`@>e{A}Z}2s81zz#S((Zh=Wf8lS#`QaM_CHQwf(YVsi96
zsTv?o==X*Y1Bi#0Qg4qL_QoXLGVWL}R>c>(Ye3|Ot0cM+t&zfhm|)s4w1yx|x}=>>
zp|#_sK6bh)s^9%PN{YYpBFPCpOx@dQmOVD}kW6NBs*0pHaQ;=68^nVxCBk^|U=Q8r
zfDMb~7!E-ferM9=+>=P9_nsZ3!tmY82Oo@^@`A$z4OBl_#YS-%G28|y&92|G+QgiV
zS00c`L`~b-Pa6hz14N?Ub#j=3N;C2czR0Raa_fdBR)^ih=P)O(+$RjvwdjiA_Uw+-
ztTW_U8ET!c!Mk+$oyYV?wv{QzJ-0cU9SIjhe#IM#kTwz`P2d;#<UZeZYZ0r*8#Qe4
zI`s<N_?+-Ii68bH@b)o0;+2m*rGHKhdz@OQpBJ3YuGb+}xYbBM)Q*}za$uWu_OKXF
z&S<op)-Rs|AEQ9iu=~{te^@ps?t7XWtz`LCk-jph$yzP2@Hj<cP@zeCJI{hzoyc96
zi#Y3<0A0BDXRuSk(<T#*MMuR&lCxlDQC`xFb~~buG=%<i2Tj1Mul4GK%g4eeQ`v^4
zF#^8~xgfNW>*pbD57XQw6i?%Ff0F-I=^DFeRMO=<e+@tQo7B&tQ1u*~_>{bDHhujF
zFYHHd!IFLqLOGhu1^m}<BKu`K%~8o?fm)*3OUBDl!nwDA0+CK#f;%+9kmNK+CfSju
z^eSYcUTb0<`d5n&EQf``qW;0fzwxvC75Fbml9q_yQP3&Av$M^gwh%Rtssgh1wP3n?
z(^d}M8YdU$eY&VfofQ97I)c|-^=!UD%y#hs8Rs;C(!Ro58n{hr&qzJrdaT(AHZ>v8
z<Pd1?MRavoLhPW6KQS6#!s4$KvZ|xmZrRB1pm19sTtAW4yCBRo{-<n)@gkcpZPD>z
zgj`WG<GC>;-cn<k=5{6;8QmwXpuiiXv<+umDC+Xi)o5{Ej0K-Ol(FNXyIQ(M8QXjV
z&u~(0Iw=ASE$-J~-_R-gvKhiMEbvw$(GoOR*<X>Rj`s(7QBrmnk5qBAbA<>QEnZLS
zb{<BlUtAJ?q)`_ox^qo~7A&XZ&TK}$1J%9+Fu7&4Z(zf<3VN@811TS~de`Sis4Tr1
zP|uzT<?n`oP)Sud0hY4pw%}hGLM#ojk<9tC-g|0JdyZ_H2-+Gp;WgQ6k9%cyMnXAn
zYATaW+YVdg9{%-qe}x;{#tXQ&P2}Uu<{76|)m0QsY6JV9Q~KVPu#<V9b2t)idzLg+
zy!VG6i2@s<l$Zm|B*-PuP!)*-8Wn!855&Whu4QR{6*|3xUja!)vihU~E$QP{Z4%9s
zNbiw${xq@5KKzm9_i-28Hv&HOjY}jCqG%%69ZWhAk-!>+CiR45+hh@LIqb6n)FX5j
zeCE7s31}TLf`Z4jpRm=LdkkU`dEprzf<DAi+}j7#$@&X-+d_1A#~+4vw&ZFNHBAGR
zw^*XP@Pa}cHi~#HzVL3B`>suwK3_5>u-&4m;*5vaVdCu`vmx%H$O7zLFrb?wYw4%F
zNbwR6TwCDFzVgOid>9zAX-($m38&!XD2u8OoKsBs2eHReE%cX1ur7CpMN4B<A~bJX
z_377%t$pXU%9^F_$vRVse9W%3-`nDazv!&<&Ne2`pvt~0I{8Ksd-07mk(j!04{!Po
z?&r-!Q=wBPd-2?};q{ylwhcsG08^0-Lzxa!kqko{9^IkJSVw#?1B??3o)sGUJz+H}
z&pA$)xIBuG^~{^4e=9&(M|GLh=4#^d^+VUw^eAKtV=^4<-`l9`3p{o1FNtiw;Ph7b
z3rT{QjSe35P{t^8;}GfwTtb-*y0!b@wHqIXxa*(2MGn#h1ncn`Tdlg9;!XyDWXF{~
zpxo$%1tZQlx&5&9azQlGyx7MMv$8fYpfc|TOUSKzN8zn0oVA~CFu7g8)$Y8lJ19E)
zi+&&20>orBIwwC@(BT~|y2Pj8zkg!#j`GmKJTPes|8QW^1_qxBR4I?U#x}CqIZ_4>
z_ke_BN3u#vq^Ryt*chnxrvrL*&3rRCb(KoR85k8B4s9)`sxK{&lVI9PboSt|4ckR!
zN1)@lm^dTKLz+T*9Hu95yT=3MTP~yAKCkAZWIgm4F)7S+F`~3&m8l&~*<%I5=&!Ek
zjLYD%<h3O?S6poDQL&2&m-kB;=+$3JM#pqT3HiQxc~^@Ir!<884;IY`P=9*tc#1Ng
z!c>Dm-8L3RTu93k^D*^go@~`>(zeb;atKftkEZ3+zziNNN0PGBLc$#RYJ3?c0FYLH
zO9b=&m^dt8&1BeoED~X9y?v#T+l;;JJ<)`d#ZG?t-m*|`wPYQl>B4XbTl{76IYE~M
zO9a4umSOh*c^(oT(h{ns9mPlJz`))2jNNOh{%Zf<kG08gZFA*&%CUs{%kz*=Q@=sp
zh%6J#4OqNGn)hc@$Y9^9Cc{$Nkp4L+DW9Ltmj9-tX$C-8YF&8344<#WAr`jBuDrKL
z+?rlU=|pC*+~9c-S>IS-785q-p{4PJLNV!;g8uVIkfkR>4o9Im+qoGL$%IP!(?6Wt
z%TPwtXWl%vnHPy#xl&rn5I}gDadC=R-2PE|mnq(@))j`(aLo~a&d|M&JtRWZO9oyR
zGOA&{q*_E+S*P^_SV-`BmzfIy!31Bn5g4%_mcyoj3r$6@CKMA%mI{p@+IG?6efJj9
zcEw_CPg^>}Hmj}RYIB)@u;6N!#eNT=={wjTVk6@Bzjb(Mm;ez>u|@ckd3dkOgoKm3
zdq{1eZr&}Vv%LDV`KAqWXhN$Gfz11L_-(GQ<;}bKuY-U@<|b5??9Jpi5tFofFlo%5
zGQIA5|9e_HQ?4NI1`Gh;`^%`o`2W+||KzkzbON#(bONGE!h*l)t&j3#VkSGv_9JTR
znFyy!6ID93;y9&cyiJAs6M!t46sEBji)aDyyzRelZOE;g9Eky-xx*~4n@2E1maOJA
zeCn-{TfziW_RXNgHo9uG&3Q_jKlE8bDI-l~6j#Y$lesiyxJ527V)Kp`?g(37VOO>A
z_`KWumrh5%y?eK#aq?xlWA$+af3N?v3CsbncGHXIDOBn+a|fb%{5ex0bA2;u2$D^c
zfCKkJ0E^yOM_$~*hq8(<Rk~htvPgGPmL*9t!w}^mAKWLt0<@p?SvEHa!y}vxu<GF%
z)Mc{pKqs8eTTVK24|7c$M$cHQAiH6a>5(v*H?do{!mNRl78@G~4Pb&51meQORkdeo
z->jloI&SbFMjd|Z7gF(+L(bqAx6}^fj|7Qil#7yqg9KwIvd{${XXF<bi6kv%dEhRY
z#-i-_qXHxo(KP0AOmkqJR5UzsxbQ_NH9vp~e~d)os5xx4Meu5o!phfuY_fsURD&)a
zK<V#WDgykxF|RGWtyBf-n5&?kg1QiYK(++WEGvPQe-JqWThiM0^%r%B1Z`#)yJ&zb
zK0d1|D|ABWwAjf)CZj_*36)dTu3?0uu4)3Op}{r7KuL*N0PCO+gF{(MEW8k7c|w9T
z1Q~_RLZj`|ysbQ3NnuVUrN$gl37qEpyQJ#wpd<$nF`lwId)jf40QNviE|MBFo84zg
z2TCDgm7fYmP?r1l!3GUYfZ#*G0y>)+dVBrRUu2HY4%2nA5_$f$&}5USMgH!3dZe=O
zWh@%7p(^Qf^WP#3YlF&nUOPjV)RIKY6h!;1U)Mh@5Pvz0P(0|2R!O(EtQR|dqqbVd
zDlckduh5)UaMF--9j=!ve7Jnf))~!kmbho?wDi!vfLR<u%^d@>@s;g*r&8H$Y`o<9
z#OGdqp|RZTY94sA0`x1xjkH$mRZ}rr*jVr@3TsV<<`b*dM|^()o`*{q{y%XU8aR2w
zu16a(n5zY64QMcC6Hz+$lC?lCqtw8spIQQOyt-ObQ<$-~T^P$wY!C=*OfbOQ>7exH
zVqReaZP;n`sruchm>z$9W3$#UWpPf^yv@Gb`qkLP=3xun(8XRPU7{%bc4;jhD`Ri<
zXO^q?M{!N@Psp5aq)F_@PbSk(T$hk=3>~JAZeg?^-oc^iDE<{kNG$~YPcS`#xO?dX
z2mk;pEC2xZ|MpmAlods!1vGx&>#(Z9f7nvrH+l|AbN#f;gy&)HR2g}ZG-N==zicVA
ze)?aoFqyE40>L>c-pip|5sp+tcF7tqHH7iynAhvgeZmu@w0k$=)sH~GJ!7B+$z_b^
z9_k1c$=bH21EEcPvf!Rv7yZ5dI4Jo?kw0C(9I1RmmTDp#7@3#;t*o41^Rtt6PVe`_
z&C?Z(V2|Olr%90B@ys4bqivZw0|ln43eHO6Mm$kGER}8@iEm<sf8cm1Jm_;Dv3QSi
zoUlC8Sh8?d;OQl5HHre3<RbAh*hO<$d(qw460p9s-$QdCNlP$0yz*Qp>=v{lh2|QB
z67)|DYEvJl@IJ8A*1g@5y=6va+dz(t$zZW9ws|N*$Px<)kUD4)wF_-wg9Tgn3qgeG
zIXc^mJbzn6;q1>+X5caDn{5ELEMfGCZ(G_R3M!noUyeUEh(AR=c1cev!3;WIcj#KD
z;~_;6;=mu(C~Vol;U)N5=^VaZNbjn-6Cq}y@OE^$8iqaHkAU2rj0q+_*luD61RxFn
z*L7$m@fwyXrgACx={;RAyr}{VgRMKXL~Of*&VZO`BfG?dhtS#G0t`|_&eK;=!F`;x
z4yRX1r*N5z7nN4$>k^4z5+iGB4UlqMeKavAhyr1!P>}-zNH!N2M#?a2Wb8+7WtNrX
zZF%I3B43n?cXjp{o#{VMH9-F+pviJ%W2U~CBOMO@tdp+ojrbN=iAJFq(DO0og(G>w
zmMG}Z5i&C1bYY03b%MFA=z*Hi>sMw#gPv`>)VS7)kl=nKFKTi%V;fg4YbJCix&{@<
zXJTzPs#f8^fO$w11*fGLGi~9!)`S<t88dy*1AJAEMGkOaS>=rA?(GE5X{_|Y_zD&l
zIxUZMp*pWe!;#RWZhC){m1#ynIWM)_%_R(#;%&m+hHg9c(+CuVBVUpoVChd@I8L;a
z(=WhepADV>5B*}L@Z&~h=qHWG|4uPpoxoR)plHrfmZrd><-l;<$kmUx%_k*uT6&H*
zF?O<D&i2<VQyZZwX|QfRmt!{xpp*c9i=1xEtu*Y{CBoWdU%LUX&CAs&9PN*-t87s*
zT#(0{ujw~7f%g^Ssg#n0QjjJhrdMke@4#=?cNY!9b&R`Zr49~Kcwx{mOtH|#`f@N@
zu<bxJBJ15t>k$l!I>v@kR?Z0N+Hk2{VSh&Dlp4kawA%IZzHF^6o5#g%m-9I0R5HKm
zoXz*NSF?dy|0@Qy%X1k<Y`-4tCmLbTTH0U7X1-@--nfx9N<<x=tXP9=Me$x{ZqCd}
zeF(Qg{r8bkXG5U0CB5NhJ8KYrwx!g}qF%YDAlA*CP7^oX>)#0PBLXo9-RUOIISxkm
zLM8`68;a&rVNs**0$=(e$=9g6|5#D)mGcAlInxEr?t?Y^!{VU0ZwD-LTkaosYX4$u
z-EEJ+eqG>}y`!;zqj^((8L&7{>*MtA6?oPnt~=ImnlMW1E&;M*`%FqTBiEIRn(%lf
zl_%+>=m2$6qTGg)sJQ4;>z_x=i(Emk!P^4h>pfAl7A_t+h5X~=_1~){;(we?z8zgn
zS3xm56zf1|v{_>PD7dWZ*K={WlA;McXxEaisP50ibK)8@!9&m|Zya+lFUmLMoZk6r
z%B2#_n|X*8^Jii&8g6mg&c(MdU*5K^v#&V2HZ_%|y~Y2A_x>k$?*Z1n&g@tG4e-}p
zqWy2KQdQ{JOWGs}*c}oegxvn179K4~sy20o@jNvRkwPZIYV=*doDCHTM8<#?+5CLN
z$yT;hP7|`y-+I~gP37Ak4sVtk1!o?hO%O(>x;q2Uz|U`Pb8zB2LX7YaLrtKD1U({5
zTY<O%lt8hscVh;QH@x%J;qUhR1G(|!%KF4vtJ5=fqTayT-9(_y5C%WhcU&u^4cl>f
z@t<`)%WK@Xv?IW?@!x~HFMc-FY+@iNb^3I&3tbxtmMq`c2RdAjqs4HqzlUH?&AGwZ
z_s1nTHSb#2*&A;aV%CXGo9{H+Oo#K?2=_CucbYYwaK1LNN7Ty7Dy2RY170O5YC1I6
zgm?9SahBAy8fez(&d(c?<U^2f=+&nh=Ap8HWGb-d1|E>wD=_UU&mV%VhNwi1uK-FG
zA7Ckj;((X7<6mG&ATbY6H}<jjP+%cByp$Nduo<4)7lJno3D1}?3_>;@r!2uIJ4Id0
zqHN{|DFN`5YX@tVNPCr+iZqi;K@IsEA5Qp%xRinxt;|81(lqDZ_4O?yP7dNr-is}4
z0GnJydYLRByU=Q2X(7~vWKL1fu&m6<QkPf|Dp{6{i6t^0Xr4IK=9H#-Tvpgt$tXg~
z4NA$3%)MM#pF&)`=d4rDattb?$gpfhSYM}L7l;#XOz9CRN(A<782Be-k;-Y~**Q4P
zc!HnAR#1lY=Hilqx?$?2@DZ_tklGuaj>s3}p5;cf3okdtdN<dolWRYF+}9`lt*MEx
znGm3z&h|%0>x|DcVs^8W8u)A4l&K2D?q$Y}y=`Vj0MiLP+CI_Sz}jas)7(3)2AZ<r
zf27<F2~NY-zh*fH`M;Z{kbuCiX=bb1*ky_%{M_g<h@mXkuvgx$R?;d$j{KS?$1gN_
z5z<D#UJVfKnpR?4&#y7crY@;dbrf9J)GWv2WSJK@l})RE1sl}J4X9C*RjYZQWx|SN
zP3KpfkX2mLV82rr!AssAFw$445BkmsT{2}}b7B7M3gl|KQq9h9c+;-M_ZwGFuQ$|R
zt;&`P`-?L(c4qD@G%`|Re6IXpPSR2+l$}+X+YFRfB3o$2SS&1XgB~&w{UQOv5-vS4
zJn6Bj+Ppe^K|X_|ymhXrU_WtyNC}%i-S<INAOMkYCKSrEHKduKxu89UK4uS|x|HLC
z5X$cCAeK*luso{z1WJfC2R5|?K95TfWq~;vLZ2nRVW}m0f_Cd@BZxhVOfPF}@T*@2
zW#@y*4lD)vuoYC6K8Qg3qu&yeN&0T!K9zwz3N%mR2qfZmIQ(%~u7>cTCd(X5BD^kq
z`4H^JkmWIm%IK8N4vp9I?3yr(XlNm7%L;`(^=Ck?2W!@e53-9r=MP8&!0ie&Qg|)P
zRL)XySofYbEq7WN;sATUTDTqesv8<BV=OmY{{z@(D?Jd~(8#+}h<q6^li9hp1zZBd
zw$DX;O*S#yyh(7taHU8AaGKaY5}H93#~|g)Tu2i81_o1@wGs9;_mpK31y=y+5vebR
zxsP*}aI7h!yBhRw;MSJQ3>D>rBvRHM<^smf8jEY5wf{>1vk?Y{q5xDo$gHtSB1{?@
zgl>S865F4RuV%oBRbR0$2>4=~Sw3i{J4x}KGB4_OAwO18p>kAHB$PiE@kc1&;I+wg
zw;UrzG&k-SOR6DJ1hVQd0v>Hqbekksh`48>ftGWSr<kwa-(YK<g*GZg-@M)H!}b6P
zk>QX~s9@$(qBcMlenRX0_I9H~Cat95NV14RyGK_^KCY?BsvcSOd>D{S)BJOz?4+5;
zS(z@mSYKpf5HtpB_Fd2dYYPah51g^7ADzH?MZ12m6hpQMJQDF-v?_d89w4ZCLPWx7
zqfyNp8}lZNx($nZ+Y&iZzaJltrqS*3ucuW%1kXdpVS<>#p*{wj_?ZM^@Y<>J+)MCR
zCGdPMQ*1M#VI6_FAkbt55+3<piB#v$2Qg*Ng-O>WA)58{MU?;QnDQJ_)T@8C<Gh03
z`@@d|znuJXB$jSgt37Q$XX*+xd)PhVH?P-ALYG}d@<cRqTiNL6lZ>xoGjy@qj>z*m
zN<+b#?>pg?;9UjuQ(n&BhxC&E{Wk?HPl1Xy1;(_XsjE%U{t~MS*X;%Lvde_;@*k6m
z)wSrR8FyK5&rhr$btg6G=<}we+{~bU7=v&8^t{dw^eSe)++Vm%awiCm2@w%Xt;2>?
zb{q%Av3*6;`xD|Q{{7TM1}kwVzE-cc=1U$bDbFoZA(h4U>W_UO;hw2L2%o(%?^jlo
zqd&K@H;}I<yYyu5Yn-g|213Bl$gG>3n|pGD*+#+QN8AhsxpCL>KWf*-&n6bIia=G6
z)^ywWf1Bw4Gju*mCKGl4hR%s!ABFY5giayhU;eGge~Jv3Bn7!&_0-YbM+(_%Xz~0Y
zNDHimqV|YQ%_3K`QUccdcvjlxl{JlnzK?4+*-8J1W5V{epMN)gW?m2xm9H@#Yo6>9
zvV_ex-LG0^4qG21Rh+jOtf8t_W9owK1$7Rv?%$h1n*d6XS5umss$%nZ_-mt&kCRN^
zK9NFin1fN!do_$Lm4^DRJdvT~nr9`9HdgfIZgb6?p)8JuW!e_3Z#34B#TM|c%x~2e
z`7YT1l$kqnnR`TJ&sTJctLeP?K~qDvg|=Cmtys7*dqHua^;SLB^hL(jFGOo!?&eTd
zE*V9ox7);&E|4Bk@buCQkMUe?&*d{+@T6{-UUe^0f#8(HDK0e8VKJbGZPA-VTf-b5
zF+oX4-)Rz1KEa_WY}F-|Fc3oi0TXb8(w;=qoyHpmF%6tRiKhTc67O^TM$=a6+<+pb
zKT2buh6&FD#}X~ln7J>Uta`>UOkHOJ(g+NtjOqITn2piLZaycFlN>6R!4S@XPoWPu
zOVs)~GBFf6po}x*(!s(o`)+w?%m&0!^Yuj%v73{*M1+Kh?)E)2h#^)4Bu<R5c*b-*
zKcR`H#A-lFlGM^Pjoc{o35Ia#^8HNIsKY44WCGFILamgdxWhFQ`ssK2<m2gk20WxQ
zB#^Z1*{0T#9)dy2PnS-F4*QC@pbQA(%3~BM9ES3Ap5%(`JoKM6VKl;I-Qbk<kWLFu
zWOi-_C?X{lI*0j9*JTvnJtIQ?_j28OsP3c&5S`$9-(|1(aL}`N(%HC!GKUqPs{l$W
z*>tL%KPAhb+4Vn^TT%2+#f|O`In4@lKXm5_?nr>Vk+cWA@lT@Ki$Y&I_R+FIJeR(x
zYV_^gz5czbyG0#-HlmwuUBdILY&Uw#^*g9G&=M2NEZtllySHcbTqAc+lo#KyU_pgo
zSlzBN5y12K|Gf`3D0Oz$_-pjh|Brl8NLcB=3|_}>gB~UH_K_;~Oh(Hj+&24zP$okH
zMqLueG)%QyFaV<t#KAbz)qKNm*TH<%6~8^4Z}+t8bd5J)s0qAs6&t>E9J46K3f|WU
zE6c8HIjWm&Wq2<+Fq$M;3X008zw#FEcaSEnUzu9rKp83f<L`q5!|T(xtAf+Pw$|MS
zVC&kkeru>d-GHB+XI^n7%T>xy##ZM>8A{@4xR$P2TUVWdWqBRzit-lYx;Hh!r=sc-
zwZV0?WZJ%4KBC5(7dTnL!Qa_h?Esb2v<om3vU0^!MNf2OovacCTxGNDt}+^KQSGtR
zT)`lF{D0Vcr^n3ytx2?F+eXK>JL%ZAZQHhOJ006e$F^-d>6r8MZ{|I7_CEW)n2U2a
zH_u;CpZcz+YE`Y<P$KjrdFPy%Hr64-G3|pX$+wIidniif_42U*o4hrfKox3Nsg^9c
zxWTec@&JPmJ*o)qlsQxnp}kg!pwgbmtXp+>N_39zG^s!9VdaP+>9LYW+Ds2YLGe)H
z1=I=A)oZkJj2e<|?Mn?`SPU_Dl@SIZkvP#tLCHtrj4QoPh-1}8e<gVf<-z2+CZ!UR
z1N||u5WA&|(-+ZKf*e5n{N^BmB2tfu2a}Nmm>-K(A;q9OIkrv0`hLVEWJLu+%!=oR
z5*0&H8v7H0k&&6IV<BUP6NgsD^)gS83?deh@JA&JwlDzzUmo!f;3?I6`+Z=wppmug
zxTaRp?t;M0XD{ht{Bcb0)Dc0Dq(agLD}`XsBH<%YWnw3)&vqea#gF}=X#`}ru1-EE
z?+eAQH4J|&M4zv(5omORHfbt7Yiw1XY}#B`45H`C-9Ky&WELMbJHRI><$S`OmpX(^
zu3Do4`E=<ZJozh28d~DwnjSalP#+&_E>?b+baPCA0C)Gq+HiUuAAcD?ebL7HT0*qg
zA%W~LD`_6y!bQphF9%jw##yX}N^&etI&{=HH-KAMA5!a4df{trWjROX&eH!Y%nO_O
zfV2Rq!YP1)1UQ%RzqT0ux7;fzte^zIc@tpxEEM@?_$1{T<(02+Z_}EZ6BlKOk+&8D
z+I~<{hU{PC_XoSIPIRpJe43(L=^U6<uEM5tGd;dcH#LQr>Y*9?A=!ce9C8F%l9cLs
zD<`*68c=+mO@X=Wj{*#{-iW&$Al>^j&K5WVZlxPa9UEnARL^b+#^rWiHkEI0zl$!F
zz|P$VUM9ZODfL`$-i?Ptu++2fF6j?yVg#^D)(N5^F5VrnIQuisENDWKsvTrlXc7oL
z+a9NZ5T#--qm05pN0uBC6qZCm)Cv9=9yN^24ksFdpXXi63KW3jF^~Nj>bLq+gq7li
zh8akybLN6b(#VmYdr;5!!YQPbts4>5>c=W;lca%?p$mnK#fiZwgDJ*~Y$e>3Z5Ud5
zTupm1`Wxc-TAwzi9~UwLOr9w$^*9vmHi|DRQy7E;FhaWSd(~*ZY4h|$S&a{K=w9f-
z=Qx|XDMD(&M%HDt#<ZzPTOZ53td740M`L08+L>Y+n7be0vPWrp>O<%%9|4NVQ?6qf
zK?}Z}HyncQOdF?xlxf0v_O@!P0h-BS4LNjsf44}jtDS_cG)#PpUFNLRLXg71IZj0j
z5x_~qmfV*y_}ffAmT)Ap(~&mU-}k;q90vwyCWnGqPEFH4)J*GxgguR#Akxqk<%3aw
zATjEX_nYW(!84By2bqqez&*Fo-&T(?7gtqXg{Te<q5kbM(|cp3d*q}F6vFST3N}a)
zqdcfoIsRRU1Um4L2uf0LFxy#Hp9izZU7Z1FrK3X)x5#;5^kGpxU5=M*+dyHg+uF9o
zy&Gkg>-(kj`!NanTf)sFn<Oz(6T8r@nAt0YejtC@ME?V?S42IYf9%cix0`D(;I)tG
z$C`}l0T@*8B+FX`i|Z@PQ)to-<9C@c+H=cdzKq|ZvkaP#><ZhfZEobul>iHV9Jl(1
z@JkJw8TKLE5%dk{6m==!m(D_-IIYK+cD3ntk-xfX8}DK4y&c`s4aLoOhQQV43=hhc
zIDff5i29H^*gY-|ZlQ<0azv1mEOeSfR0PHNE6CXi2FF(1Iv;ipZf!@bmop$SAz@7V
zlabgZs&77zwCH|kU7R-JnncC=CYQ-jkbv3u?B1fna-U`oS85z4WEdUK^DexM>XSvf
zoY6w77PQ#nO{&YbGaX7bmB6OFi{U_>$PLqg^tU;qKJjLeJxQ%rrNlhHC&`<fkY-y{
zy>+kM%&~&ms>N^BUQ~5`2}Puke#87MBOE-n0=x0xs3`hE9Xh--sb>?egHyF%euW`F
zyZhM(>{xhBE{ZXo5u@H-YW123M0hrK<8yTp-pINjS-VkUno3N4X$r6HnR&`}AXZ&8
zuEBP#-3mi)1T|Gy3>T~=_{LNO@x?-HFUfIL2|$|rqg!kVay4Od@`{$v$<uKjJk>n=
zccp>vMp@lJCRcOE3S1klO*%5R)bMd2riSpG;F9S#D>{%=Y{B18+~sAZ#rFXXPU6lA
zGB<@}oJ^Y&IU&7Kxn|aYGvwDK8E^+0SP$!O5B=tLdc>Tz0xw9SE&cM2Owu*@R%a^K
zQfrqlT+3f1tFN!+GN>3zz$M5m-`#`Q6Kw?FuL|qY`#82#1@?)FXbCq<YTzxS7*Psf
z?H>yE<DNd9zc5gWog<Bg`AVY}mdz4P&OABkv35Io2d2V@kZ37HMi0`b3ZfF1R`Zw1
zKFDlqUj?vI<=<DjP}dOtyi}Fs0&ZqJsoa-{SEwRTL%F_3X)skP<SIQldbcc-66s?x
z#yCDYm8y=xv(jSgz%D3~GYMprGlX6V427Wa)jWuef36t!e^rTpg8wTakN*D3p99Pt
zEr7Y>KlyKhGW^oQ07f=Wl8#;HfDHjCRYFH|z&10n{RW;IgYw8A%{-Rev>r-U#>71-
zu;S^f?{D74QjC{2@Xb>32)YtR_+_=@lc%MUd9H(=YuLXx`UbIAr0rgv;FeypIu(?X
z!7%Vj8=O%W`1~)@$Ex$h5ysq-jS;^5y+5CC$02w=NA~YzY52T}^-Zm-9c7BKmR3Om
z@RKu}p0LFOiz`$);dTyK*5z|=Q%s8F-#T!GcME>Fd&1Mt{c8Lb2w~dT@2o;Lf+#Ov
z%)+iwZBwT+8wrmQK-+!EI)jDg?<g;mZF7H61Z6Sdub$<-REQlf3eFR^XOycv=TtMf
z;+LR!RAlT<z0(aAp@mM0XD;ZFVNj{^sbk~2v%uQ%$!*Cw6^p-qq}g_;sZj^NO>JNx
zS@28JzS2Arq*_hgb)Y-~agJ#=wG-snbCsa%&~wS=m#rVzc{FvzSu5=z?_lzSp)zs5
zCJ!q&p~V(D1m;Rf<=Cg_SSPh-Z-)&Ws1oAWkg)6~k%3Rdn%zC{x>A;lGz=^XUzz8D
z@Mt-1gr?4YtIn<CVxtm^S=R5^pS_{Yl_qax`O^6{xphS#=N;gbny5>76};%RmYEsl
zC6O7YEA~ZtKO%cMILj^_2JEvea7dYvz|g!`!%kucyvGZmd!Llsjth1e8^u4p=lgC~
zy1)+x*6JfUGYt`7_cB4jgm1W+vpqTmD8#YdA_dFT_pW??2Ro;ny4TUon7yw>?>6T_
zMe&JCjni{`<kaxzkVVNoF58CaHiw9N$Oh}N`abz?XgJ|?Zuw3!_1QLQkjgq()Y^37
z1jC(CuQ5J;%^$`@eAk;c{bAO48cpJEokNDUM+2NI>RsatX;(|n8z03=u!XD39L@BT
z|HernZ~!&&H#|T=iX3>)N@Btca&I<iCxy)t>ASI>p*GK;DVdCqZ@3%#L47=rDyz~b
zEi(r@(k5cP`fs9G4Sqs78{iFu0YtI?_zo1+W&SF*#mVx2CzIjr56Tju_?z&8acyU1
zYGJMb`=}ryFt5_G@)_`@(KA2c4oR=m((4NYoQn-gghQYd{Ui3TboCngp5x6(y;xaj
zD_{6X6&L!m@D?-MWIcqgJpnF4z!&~LkOM|<9AIi`18obWy~s5rG$%}%V3^h-TyK9p
zQg8XV-rpf;>1dxGE|Q12_pf!^6Iw~Sy7=e2DzQjOg#1Da)lq<uDB_&CiLkyEUxTJ1
zgOEpEKuIKgQMnAuJNmAO%!x+-7SbF+5k03N{syc~&qYUhk>&y1cuIbaW>rUbz$4F3
zptB<%r!qUnFGc>$TwxaM9@d9b;<hurV1`X))z;T1ZBkf_1B1y+6zqftaJ68Hs-0;H
z9Vpm!!Qx2A-z!qVSA<(76X|z})%*^P0j?GXJ)z8!ey4gr@H(#hE*A)W#5X|&`l)_G
z!Kq~iU4HBhk5k|~(7F-qwmJf9bbT+&y}k!+RD%#k`~*_sCH}LTnVrob`LylKiE)P5
zKpICRe=5Rf<N;12YQVj|b|^bhH+K1N<0QgS7~6s_7|;0_oMjwv@3_M_1S;atJ^|~;
zHE;zp5a?TL9gElsDDA$Bq*a|fk_^TX!N!>s%V0F~MsV^8=99Ifz*4)1Iq*YM`D+us
zt=~E_EJk%I!Cu_c2G$5rj(?RZ5A*^m9l+}dPG$z4kHsTmGOY-9{8B^Gr_!w)2K2lP
z^2EXe{mt8}MZ+YbLI?-RDu48A=g9PCPpZw^=YM;$(JkM%T$D)lp*JseJzE&bC{aDg
zFHtNk3nQ+9JuBwEwGekiFaA-qPOUO+(lAZ_EM8DgrqBnc2zPq%=cjA!^j8*;&YI2%
zj~!e}?&fg!1KaBJs_3ds`86bq&^R^+q1mW#a7|zrh0$a(4fMo)3+XStqGsIMW>)tk
zk2*u^LD#ug)0>(TbVIdqCHa+vB~1t+<Gb_Vr78p_Y5N`q+!d6^;#0}TXTj#<D<r3o
zwAh@qUOYF7nNBnz^dFXs!w8QzyA$h1KU}+Cjd0#h#+zRudjrFp6ylqU9(77V$O}2N
z-fAGXWN+k_%pYf^AGE!L+C{GoG0^Dmp?=#E4}-)uEi>BI`3EeyHS#w2o;uTcuylGp
zS+ma?eqzN4l(-*X0db!pD?Jo|o!1A9pDAeAK|L1LOchzj@Lvo2urZrc<m@fVKd9W8
zh}j*aHof<f$-S>@Do2M1*zX&q%||<=@yu<Amcs`UL~=`cp856T<Kass#%wwa12Y^b
zC)TF?nS8e3Ll_t(k@v1M47d_)Gj4h@wC3V3-oWsk3r}e5G$#G!OrKJe;-t_3@9G*r
zd63>eaVhpP+3W+QngYUywc%BHVA|0~v2epaT=63^22#rK%dNG4II)}zZG{{z)9@O?
zmpL!LBtMJ2gk_PD=X1I9-&eW4QA(VZ0N>noz~0M$@`i+@RQ`T(6Q%!pLw~=xh4*t3
zTV<ElPyfprBCPUoGMFPA90K03`NtaasYDp+>74Fl-l3-0uzP%b!Q5?c^{+?h=fu~J
zJ@>wMVHY_Tgzv>HQ{!(du(QK2c){t#^ZNxX<6`@&SATJabMg83cpUq--od?7-SDw;
z*z@|q)6q8)eVYx}Yfy5c2TK<EBf{}S%MyWu%^Ri)4g&#vZx$T#3Q-rwwnQ2S#6hEl
zfO~$Jj7+J1=^n7@!q=*|vpDp9M+18kbJx%KAA2Z!ca`0n#X2Ufw*zB61N{#R5<t;9
z)|ogsRgk+TUg9*)>4YT!(`t^JgAFw2S;5bkr!=pEN_BY12tbzn5F;5Z=@p59P?<wE
z5!&?v4@&J3o_uZ&LGI8%QlTbP2BU}%vJ^pcz)#l+ETSfsoB^&IdEL1ySWAhjA;YU+
zN9%_r@IaIlT2Ml_)FOmYVf<h*)?u3brQrDY|2;yIrQCUtJ9|@}8_-BWK`kmWV-TPJ
z+Dt$^mFRE+I(BU8Z(k^=;GXq6(@2Ua|AYmjWS$Z6S2k(Vs&JKm^ek)YY-lwJc|lU8
zJ6KI&MzC3u@H)qnzy8pQayku44lG&*RL&kFz#nScaZ;{B`^O&|v?OA*tJnhN1jt!q
zl+D<TWf&-^lvz4yip%pz1&N~|$tyt_QX7ZMifN|lm*B_W8@<!s*m58`L9JI<pCi52
z>a^L1OkDfE$lgATcjuQr7lOVSKiGZnS?QF6!L$FahrLOkG{J<}y2!S*Px$z^NP!l)
z_f07Phra*K>?ibJvtOdN?K&Yqb^4%=nafnUD{$#ZWBWB%CXGyjW4hCLrhK?k#9!YF
zTu=A*z|HY%&8EA@t83bQ8i<atVSo1Y*xPUX0@`7J*l<NN@DCYB*ALKhFK8V~3N?|o
zqS^-dfLFYpE5A`#k4>t5<piyFkT);yk3$qT-T9S|kj+e-9haFShN2!RZdp3HMirZx
zElXHz8r)8ad|?^rz{`91ujtdf`A;KJ{uN7vt*buC{e{M|Kv5af_5M65GXWvt)M(B=
zH@m_IXdR~&kg37nKR{RXMMhSsOPfXAT%w`MC6So9-XvYi`#Ge0zy+-?=~>;m4o$3j
zl1fJsQ*UYg=aCgM?3JQHtn*Ia$`;3R=c-gujhe~;$H>+A)FRJv4p~C6;yH4Fb~$g#
zjl2{EV!-GisY&Asz9m8SS&EQ4;Hz~3^QQ_O$f<@2FX5z`4w9LAah|HR(P4_X%?mdD
z6cQJ1?t^j|hF0N|iN~lsQX1nVo&lTj9J7q82y<t376nL79RYm>$bT)%gA9`>R7x&%
zmWo@q7fZl>3S~EY9~;DAPeO81brA%Egq%>uVzghz!G9$uc40gewXpJ_f`nOStG|*H
znfyPJlki{3$t?ZGjG{t)a33H!!60kfwbQI5+(n6)vtHIv`{S_R(TMp&k{M1|C<0u|
zMNnbrQt~6E2e+UTqr0DA==mfluD7?SN8$ycv+duqZylF|_rp?qo~;9G4mTt4Lj=v5
zfAHoX42OohN?LEbA#jqDcD)m@Z>KH67b<R5#Ee&5ivvGTnly+5$uuoFbMQ>MT0qG5
z@^+b((siA=QeHUm{pdtFNYM-wjKt8%{F7%L#oBJ|@gcfNm$5|+3vx^^aFlO9O*Nt0
zOMc)vCpw~h_iz1G-2qiZe_ezT0JyRKgVOYWZX)#kH4(=Cnh2cS|Bs1)@V`w2?;C)L
zumvy?9=BMnVXKzn>Vh1E_4l!FURxkqfJ%^8(wmyAVhVQoYGaR&Q%#>=QA2N-LohIU
zw2d#iBm7q%D6k96@-xR8t9pyJdb<}HE8|fF4<#CUZS^H7q}SJHcUnq<m#p6vXHTw5
zZ)qJQTDDZzUi%=F?9^947T!u+szS*3Tl^e%&mZyG)Q}vS+h;34cvylT+M|#Z*{^1k
z+6Q=ohcQaj+C(?q&nz3J3`ez(rX)WUetyAF3TvMi02$`5Tm~$iG}E)^%F7ufY$J=;
z`PRnmg%q;{1IcsXf7_+BV+3F~6cr~6iB0t%Q59+$OL?Tt_yv|E8#!Ho4l%M4gHE>I
zc<i}xzV3zCFl|>D!5|=vGkFx2d?d}7=Jz?1tlHEsh3|h!mp$n?&jjd?m4(zTO`N@m
zJ~4>_<ZqCsJgD#LQ8A>_4jVe3xKL2xJ%N9$!zr{tDAN<oZwR?h?J*@X;<ccpDC-!S
zChp{Vgd#YN1i+?il~5JqvOpPK;5W-Lol!fe0*(6u^GQqtLLbsNQb}5OoHFVt524@`
zW~-)y2ZAM?Q3rmKC=!*b9fk3Co#ct_Hk!I<BWQ-na3Lrepd1zL%K*rPB0@^JV@S|^
zU0(53Fgo<xe(q~6)s0jiq6<Rzt2_bk{lA$Ap1PGTo6;2s+=d^@tr+@e<6C=!?n@&4
zZ@-H~_ryV;DcZw2e$L_8OTRsL>|kbtdoF!YRqHvp`vCb?b&ETHtwl9oyM-6j*lzqT
zH|(NbLszJ-KHVIBa}oX6W(+A+l{d9zz`ReKIcc(#z!mlVx3gDNUwWnL0L&i%1`D+R
zg!#W7g7JS~^X3YqOcF6Rqn{cNbK&BFs5mfo9q(^=St{1-x@pr-oY$N^Xs9+Eo^MW3
zcG??1S3`GkW2=W>cs)9B3jYv=>cJ{i=4r`ua3IXShws4mC;^douzNG8yF4IVoL^qH
z&_BQBlwKiRY;6L$W?v4|K`dP#ucAe;4Y{&`M)DU1GN$1^j*R9zR{hXhzo%_v)4IS6
z6U8BH74$OiOh>nd9WmeZxsW2rOp_Zmp3l|C{MZTb$H0m8bNuCO7zAPxlvQ|Z;u=D}
zeLvgCX#jqmV{NGsH81q8AC~ROmRKrj(-oO^hw6UE)JblqE+D}STXL)CX(m%z)I_E=
zw`d71LGu6-k9rP)LwThxE}4cDypM&b1B}7Czm6?IV<)Uu<)?&}Cxl!LK)So02V6pR
z7!5zn0P%VDc%+3UQ+I|_<(3lc_s(;E8YFo|^-B8y8nwaueN^{RmQsmHB!4=;EyZg7
zDwLzig@8S6!pMj|1u=ko0BIozBT|lwC#hk^qw~3hf(-4Car}fX-wGk2kf?k|NPc?G
zP~1qS0R>CR$k<fnB%wzs43{i7%4~%;h$xguGBlR2nOqoSpln<(<;J9BM&`B_>)%8&
z3RYSXQAI&-mJnh78y%V5X0d`0f;e4*aZu&I)=yv@%RRURoS5A6kR#<1!#m!+p#RV`
zZ0>jkH6u7~5B>2=&4cRz*BuW<TX#0Jav}E;SgnyoAxL>FB?F~ceE6z#|AoG?@jk)S
zW6PGA4BffPy=}nv2J^4N5^p3v{|Eq!e*evIA*?LU!U2GzwbDP9miKf`D;0t@`OlBM
z+_jPny&eSvX70wbc~oS@0)E`p6521H<$TR`bN8_QbH}M4Piry|2J;tI4~=(rs096G
zE|XI=Qqi|->lSqnL+x}NRYdxXhY@{qYB#Tof$G4DjFlAv%QB+!#{_i^iSsaV?Lp>O
z9X)3Sv557;?w&Brm$YSM^!N17Ypsv_Q)dpzZ$A2L+lBA}rfW7-$5i+Ga8}t@0{)ck
zwT#A11B^A26x1!Q<-Ijj5K}ZCk~YpAYVM(2#gxrB+HV^WzvO=ET<5K>4ROHHC+h+Y
z^_ex}r>N1KRW>e0;_<9@KDJ*JNEuE#DjV?QYwy7*(o8hi{J0#ijvlsYOxL8J^aOe%
zRT|9{IYuwXzI))ZqrQB#Zd*+XK;FOb7mKJ0PDg#R5)!o&L!CnKzd;hqk`)L4e&H>k
zR_;dvMJSA%!&okN>~E|%ARUIwPbP=nwB_ucH6a=$tAQ_R3MDw`${WTgQKU4a2pdNv
zsrI;Hg5MCOSo}%>r1h<<lm~<rj!CO1YFZIffrrc}O%4+V%O#U9AY(Qyz9=$=G@6+Q
z>U}yj4iSb&k?)8i7!xx-Nh$zhRbjg%pM*yJA5vzOt(WUji$F!r4=_!mj-V710mkAE
zwNb`!|1VPJFbsg;A)6xk>+F(P3AjsvC^tS!iGfZn;^e~!F`+p`xQ8%}U{q0*+qExS
zb>KH6W;f!O4UiQTE#moZ1^b{XXAY?$7+=0N-*<o`_;0C1;@ZxI7F#r|zIxRSouh4f
zLwl)FEwwrRJhrm)z9;D7t%kMd>5eAuIo{dH8w^+st|OIsx|L}?YSBv_TpZo$yw?5T
z?Ot*JaICU?22TZYcJOfFZEfvr?;gdl3p#cy){WIPdZz6p`by~T;k@5*lD){zegenn
z8n4)Tkfzra`VI82=tnJ1E1m|RKjObfKO4*cMgRXr|Np<}zi_boKSuxZzo1|ESE^l*
zsr%mt;PlMeng50S`+q)wtABX__Yw7_sk65K`UsxH+u}L^X0HO$e>QtX<z)X3Bvq>F
zw(A^-K2J4i$~qU-)FhPco9LMZf1?6cl+={85e0}w;WA-k1wR$UyCOfXxr-{tMQy*^
zjqFaaZ{zZK0i&o`addU0GGs;RWkec$zgCaA({gC1A>B8C4M0reMp=imQe%Wq@Ji`X
z*#SivF%xj$2M<idtNk-SZz_9xKBxw#yLWQ|tJMtX%)}2&BtO~#jkbZ*RV1R|N`{r-
zABrQK!d#*$rhX?lrYurYa)KQ3r21K#>=ng18>s|6Ag-=ZEly|nD-U&?WBaH4T>unt
ztkM?9*n+Q$gqprkn4>I*y3J0^a2v@fratr(zL|u=J&NSJ0EXn_PnJ@u<}7hob<ZWO
z2sS?pDEYktLPm%T!7Ssk6lD2e9G!JUw}zYS!}T=2*4wU@sfC;XeJ~F89*5E$518RD
z?H*JVo|Y`(Z%bbAW_y}8Co4dEosNB$H<#4oxdJCdGzLwrS4KYE&KuO$$22xa@E&HD
zy_rM<eUIeJ6t#5OZ7AK#Ii@lvYy5hD_YL2wE<+HtsM9hQile*qw5P1o+<E)dt~?=a
zF2W5bheuXg$ca*xt3-1UP!MpAuQh`N@X|D3&L!+`noeEH1=^eYdIVE>!O;PoFlap!
zPv{I!z=K#eAUN7;`NdI;jw5WCh1t>S4`{~Y%0XoL`)v{gc%j|JYORlp8*TNQ;Z;&U
zst7!IskXp10~yu2Q7Ce^tiu@0uFd6y>@T4eO|_E|)6L+UW5w0fuw9pG0yr^eoO@eA
zFE*LtCs`(g#d*n#<g(Y$<{sLUZkfJo6UiE4xq>Bl6LWrq-t_9lC7=l**o(-A3spo7
zGAVGA{>I@o_=?ei`^M)4hBZnJrKQzlPO3tHuegEtL*yvxwrP@czp0Mt-R@OBoi4gG
z1iQRyA^Eeqh_+HAFjC_1VsV%*PFz^xx(qjlizW<E@l={%tMS6{othK8>smyUM-dfE
zgC1@k(|j<3qcgf8!E9|CEBj6!O#eh$`|?iWCR?uc>uJX#Jv||)*ocEG&Cgc&I>B<M
z>4y9UA`p-eIcG6Q7!>GPjK+Y?G-2_6h(5vIVt{RmVwJ*_wO0w3T`0bVeqRNh(#gtJ
z?V~`(N+gb`O(BSajkQoO8NdvTuY0dfA6RwSH8d{i;3?otmS;gF(bShL%1Fl^kp^7I
zh6^dghOUXBl_N(f82E#oxUh3c7>zAG!GXqt!8C=!WOe&Mhw}^1&My6^eqYA>j1?C9
z$)wO@L2>-6w!-DZug0U!MP)kHy+YAxK)s{$x<Y5Y-6CO=!Wm?^JYAlq;7|m4R$O&N
z@}1ZBv(s=XT7S4Y`om8@Rc^Z)Zr^V;9>nRl%rNScqnD5)pKyjLx$J|TXntb6$%g9b
zfDQsquyTp4VU_Cbs$-yZe$!__DZT8Z;v$&GC-y?4?h`#enV=z7sWj$LnILfZb?pj_
z@VuPI$o|E2NLWHAIPJ3!)#NCXg)GV_@k7WaJ{c^6T!wBd&G6EWP`qys%wxe>GPx}8
zkE=~(z4teQ6Tbd|mLsl|e*8Ke?aV^=PQ|Is;C6@T&fX0N-@@r~)?QJoHPD7VEA8O<
zGV*i|JCVKdUCZ9)05PVjB1Z08*9^4V3GO+kr(HZRrC;-PqR!2uLv}9Hr#0En*_j}b
zA7Y%V=$^vNA1H>}cEkg02wg=a_EQcSJMcq|6MIrl*RfL8{9aNI&>K(^kO9|?usF}}
zF9g<q3KjpvD~8kD8_v+|9n8->Um{<3Sg~-GxvdE1_I%F%8OOTlIFVoBoA+T2%+A2y
z1}PttM{;!H<LLw`AJpkWXmKen%Vg3oezkAy5{GAhVJ~xC`@m`RZNA;!xmNQ!8IjJ+
z-|DSlUWe*(kJ5i2tWL707U;d%3Wa!RW^)-eFWzMPsDH}1?tUXn=R5jsJx7mR*3fwT
z`_~jgn{DD3-@o#GzU$;01YqD9gZ$4PnwYqZi0og&SC;>q4FeE<D<wh`%%qrxQGWzj
z8S#AGH}x@+Hep8C0ODCjq;OO*s&MX$-`8TC_1Q&g_(u@wTwC5x-mao&pkA{!q#c`P
zm~SX)_KP+TB6f|Aw5!sk!Af)#5=5|G$i<*b0s$ql*aO%B3!xdwNz`1}**qX`b{?;{
zre5!78Hcv5Jlug|EK#n}FhKOBg($G?CH49ej8f%bP7&>L#4#|@Wh>ZUFgpB$O0uB=
zTMS?ll@EeMzc!6Dh-65|s`Irl)_!88fNcw`kE&2W12PHUtdDe^u$Rgp?b(#(GHEx)
z0xUJ!Am=3jB9(@Ij=(;M;zpRK1?R(B>kP%JNwd~km!A)ed_;3`Fz8TznI+12+1a59
z46r%Rbhigo?`y9!vM-d05qM1MUI&N{OCW^~_$*+%oW|}1Y#g<d0TfoelLAI8f<rgZ
z3J9w0E&<Dkv5$BOpZ%_XktVF#N~^XL9%Q06Hq<Q!Q8M8fhQ%$FAJb^t>c~A#m_)i1
z(x1l9i%1^)w6BLJzMX^vX3JPi51$-zUwE6ai_B*yn2t#%ELY#Nuv9tAk6?f2y-tAQ
z-aozNz8W@kAmmCXx+plcn6X4kPOTl9`MX}ufF$Jpf?bHR1VeDDI~gW*sFfndKBNjO
zV^Y@$;#~t_OcWp46!LU!*oZQwR{RJ#8B6o0dRE>()h1Z$4k^Ed!%zjRJ_BzvAQBdj
zKd-Xch?uShPtr?F^COa*@2by<#Xy?62s~@EdZFKPa50HDrI9t!!^}u}{&cUTBveEl
zt(}9#%wCl9P3F*y<<$$-<(u46utF_lfjbYrTuHdQ3~#iEAK$S31+SO}wEC{4Eg$3X
z2MUQJ!ITVN&eIT&YSRqW^e*tH(^#{kmR*p;=UEGNy9mZm`qZDgf`>IQb#-`?{FW-t
zMeE}LxiowizQx^DEZGvlgNC%xEfk_sNWaxfCVC~GhDD`lS_?96shiz*KxdI0JxCDO
z9l?oZe5R%Ku+EOU={qqpE*@#stxDT)hVFg*_4f7;+><yZ*MxrV<7;1BhFDj{PTvfH
zSO|<v;}by{W%Wk4j_BMV=?wx~!%6Tgyxr+$8MwjmN^I21Vlxl8Ku`4wRW5&&dtK<K
z5G|N<BSr+Fr%gZ!9_?aVTh7a6D<%G)j62P)Hjc9p>j4~Z*F~YT>0^C9K?ucAZ%@61
ztJh|erVl@ssv?QY1w3(D7&;E>$hEL+jHUvJ0*j*XtVe4smpJf25Vihm4)))$CW*GM
zgy|x{k4duY1)VtDeA;_JzsM6+@pSzNiho!=ePugSY{o*2pfcOSgoh8;#LE75S6aew
zoPAqyNiAR|Sl+z#WJ9sN@to&*|2Ms$Yr1id5HKue!~SPeOiWx3KpkCxSScWt0*I9Y
zQYla^kj3(f*;I#02K$(!A-Fp#$~E;2mHR*X16)!`u4;a-f>~XVjBTbm5;JtXZFRbH
zH$20N7&q<T`+V=kh0~u9YD&yZ*yTvfs<u#f(Dx?<HQ5?@_>Qqe3L&0Dl4N;PfONn@
zDiznea}jiLx7QzBTusnJ4>NYw2OL}cxC5KIg`^`#L=loex)7iiN4yqLFmZx?4K+?!
zSb)U;)28g3eD$GWUwBTD0->x*i8FtiR8fJ#8gg@B`H?auB#%NH5U%1=eM;>RPn@YB
zhx+AC4!Kmqgg{0_Dgw)QtRZm{9fpB&FG3B)L?mibvhweiw2MUkCeZ2$<-|}BV}zrQ
z!No!>r$dSu1$xN7jsh6kfgKFbXVIICm@+}r;2fWr?|N4+k(^PpOX>TQ-|bA8e~O(v
z*By(D{F#g_MQm@8;RxaQsd2z{^IEuSaPiWDeLQ(>f-l0cLzG51xB(}sh-+ulnU3MR
z98a!u(IId29jyG@Q^ol(qBNQ``PtAQw4IF!om2p#Iqny?kn7cmqX{|{{HA==`nl_N
z0HO#`%6KkJQ6DRV%h6QT9HNEUTbV)zmp!W92qH=(dV?A%15_aAM1Yuii12{{B)JPJ
zX0~8cd@u)wHe9mNuxfxv9mcc85AYa4(O);4>*=oNuisVqLArS11+-ejH2lD1PK2pU
zYQy5eZ~e)H(YLKRn$9g?<inSCLd^O$W;+x2wQC_jG?YkF{hBmO>pe9{1H4{aeG6!i
zD2v|)u~69DCB%!*TKU8x3sOd@$UpdVNSWN(2wl;dcX!5-Dn;Xt!VwuBt|opAz%M#K
zy91J?m?8cRJ>nX7uml;i%!{A7L|IWgXLoz$SXy+#IudnSeXQ>cY)aVZnBqRV4pvP9
zKdeS&HbHk0f?)Pd1II_O>yqT#v@!w?EMeSAf`8FdfxyJUz5U*=|CYXhROBv4)kq+3
zh>#)ZDeEf0!c#fG!B$_O^5L8wc4$E!&fr{@wv733cXkF^mpU`Nm^8XQ`LO^6TFi@3
z@K8ZW9=V?M`b}MxlW`sDoM9>fc-9lbxJ^ma&XSO-t@L7z9;>8RJjQev<U_bRvvaF!
zo%d18((2@FdMmCJcUrTd!OYCG^$m*=K_fFO<F!dOmlwGN!|4UyTBe*wJiLwR)1dW`
zy5G%T_%~B^-GB$a)9Kf98-WtJ8*_flY`1hMs)wE?UK@=iUc<a}`0!`_pPyF~Lz&&Q
z{efidAz8IkS48hX7{l_7Cr@SAUt1LwAFkr*=De$|AgqPbF&g)Zg)RDAK|4ZAS^oAq
z{cSy8j`}^EX~PeTDV^0QX!V<?^zB(N0oT=5zaK1h&?k?s4U5{`@*|DfyenAXK_u1B
zgfkjcX+O|^3cTfvG=qfHC@W32XPkXIBb~acQ(Paz>ekV;UVVo-s8|eC>sv5!BFRF9
z%0Y}cF2=TCw#=MZxS4A07AALr+ol^fRrbSi_7Ll`UweR;u51+@6JP&hnQ@*gB|I38
zcnMB$>5@^4OwBU7=p&n;6{qw10zPkJ@%!?vf1#PL82eq19=wS_p1gd9p1nh2uFCw~
z#gTb%Xqp{83*Ds~uRF>Y{mJQ$<Ia~0{bH(OsJNRGokgW{Q6IXy5;-R5X#8VQ3O{{|
zc}2+t_sy@FEv>q7wr8nh-sG&xQitf}sL?csezkiRHx|dKu>T=r@1?HAHcAI^6IZ(W
zOY!vU-wfW@B~2<jz(AG(=#BeN+t%WWLNWkSE&hK+{gePvKh&19E~V7+fgvd5e@In1
zpS3bk`R_^-^7iTH+hl-Yk3F3$mv7I-)dcf24>R{8)P!3T+Qq9#uN#}cJ7q;x`!4BK
zszj}GRcjoXm_)CmX$%2p?Jh8?w_FeVjtKLJx`d>-Xkj8qZA)qCwa>utbcxRgnr^A$
zjeGA{J3}w6qNP)SjH(hUV55m2EmT7RMPYz3e+O%Qhn<pnB+cqnPL5qF-~h*27S#Hm
zyx(mjo!PH{@_v*pa*G9f34K2l+5J3UGnb*+(vbEx<oK60ThWV@SeTJYkl$mBS^7Bu
zL4Co>7d!xKv?Xilk4YbdNG_7j;1farqLKiuMHb7k)D<z#wDCIqiAu9a56Hy&*r9>v
zZniN)^vBp)`&~}=BBWIR*670pd$e-J^1pNk6dPX-SECS3VX$`x&9v3_a}EFjg8HH7
z)18YO5A@i4uI`6znE8J~_52Yf$+NWgLcFg$Y~Gu~JM9d&!--*t;=nj^@%Tbc6#97*
zxLj*7E*z)*g%OFPE`5Vf#?srGO^Nqs(g)RazHVtD_0jeA-@64U8vWb48tGX=Ywb5_
zoh4FTaKSK{1_la}G0s8J^=m=t!&pq!gyBPK4K=w79Y)xgW~cd;1*KOXS@YE|z`L7=
zd+g0D(YqaY+c0AI92+fXR)+b*LMqIT^#btP<72QY4TAW;@_>X<x6K)G7M-Eu#ru1q
z<b#Sgcj!WtYel}RC}~mjY*i^X>6#Qbo(M`%Z~pp_RzYndKF@k&7ZyQ1wWaWplzfCh
zE1W%<@2P@_I}(z(C~f203RKJYk>QOJ@gwMGxMzgSaERY6-{hT5{QwDy#F8rg-D%05
zD0HMXO5)G_Y!XL<q9oA|D!6n$y!f=lQi#K1N~$Q%l)|!|Mpz#b?IXVqef=~Ac09I)
zr`~(@-Lg}DKfFnl^Cs6R1=9BNTbz1>RG8F~rtqN~0Vz5wxcA%VhrcPt$1g`$wwvwJ
zGPi=z9Xi37ME_({Uiw+N8C=sDJe8Bm2d_UzkKL&R>$oA;Q}?2B%8|%AIKH38em<Se
zb{S|w(GVtZiQeWYREi3_ow!fJ>1orM_l*QQF4P&4udq$3b8c`oIx*YOkH3ED^4s5=
zc!IG9U{r;?A)3?0I>9`?NkY5ggzrVm2d<)YQM2@^FDsG0LKJu6yPmQ=mD>`T@z;XQ
zmJuR|dwQ{D-@~NOJ8a-f?d)Sog*w1tSF*mjyl$3{i_k>;@DaVs_zc_u0qrb+2>#g%
zZ##UuzSxnu()J`ZqkU|nw)MV)p4_~C%8kfPN=mOT;XwNoKscCF$vHQN4I9~wp)C<1
zNFBO;^Z4Gly~J4M*^8QBMpmdCfA3=TZWr^NG*>DH8y}7V(zi0-Ieh1P7QC`|$g=OA
zOVl<>Z?3JEc0ds^aClT~i?=5S#n7ye&1FW2w0qUp(1pm#&){t3<+;Stdf1Fh-Jb55
z>hrJp8sC2-DQUcBJ1~G$4gnbc{?j&;6f+Zmqp}ryEjAbsyWXfvrUv1MW~9Z4Y7tjT
zSP&h|JgE68?%cjFrA(M*Nn_t#Ctp_4X43k<)>ewz=4@xObNNSG>xkRtVkSsK>qcAZ
zyo_S&vP-?z8B5ZEghIBkXP$SwSyIpf?ZX7p?jHGoB&(R=io{prNW#YaQs(JKA3AKW
z)=Y^-3lXLw8K;P-HVOMyL3N6|kyDj`l=F4sGe1rN{54>IA?q)vPW3)6_v3Uy2RQj`
zZ~TSo7z6)IpmnSs1$gO(+6GdRgavvZc5jU8G&`qiFBC{i?-ZwTmPTl=mWnyA0At}}
zcNv^Hje-dis*{a_r`kF$frY>w9riTno?wKWi@vr7@>Hk-&bM2vq+fXXdAC-aefn4c
z9W38*l*GDzNW}>WKTG}hx3$Xa%3B#o>d{yAub~H73-8@~rxpY)BnL_Gv1jZ2SG=vG
zh%E$vt%qvMdr##kXo>oVJbfdTWNs$o=8jlY8L-}Fh=(lylU1u9hTX!S+-v4}L+E9Z
z-|}HtDkV1uTXFqVJ7Ar<kwG*WoakjPSa<c$imQ1fR@+YvxB%CEl;_k6lPkF@wv7%M
zY8RT0J?Ac7UU5>{6)qE==btz<>69|?EzhsBx0AGRt`|*B65RdFU*-L>@n*#wd<2H~
zao|mdK9k44{lJ%QJpziUP5E?4zw|vo*@*l%xdGWnR$dtZ98N%W)PDrdKMqT=lD1{`
zPeku0RjG+ca3qaB>oz+gyUe+tBZ7*r3K3RLQYn=kOx$E`a4*+*4@2}eV)>C_Q&YIp
z6P)LaR@z<Py*-B!tqq?Iyu0?fO-XIi@1^@=ynykM=;)h|RhN(DxPXVq!BzVPAJC(w
zW<6kmwHISBc@z`>+-Rufo|RjuZDMAD|Ju=x=CxMKB!rwY2~SMept#<3aK?U6j!=H>
z>KZ;L{HCstIYx(g6a(#kS~yI5$|{#$!<+3R^%DN(mg2s@Vv1$8qpF6IB4*|Yivk%v
zp3Kt81?T%T3YMafS9L@a$&<kZM8zd=DLBsOk3{Sb^s}|s=cPm>V$Z2Zop8Xg#ETGb
zH%Jd-G-(>!`lX)=n|+u{JK%B6Lj^eo92{!n0`ntigm*O$ufc$0t>@TXrbEm;_C_%s
zd^#LgIKLTT?8Lx|G0IdKZ&6>dHP*t|^|@$#Gf7jDUQ3p6#w}}J&4Z*0&3$6PC)r@A
zKv?_d7%Rw+5lc6GQj^rCm@Vpy10J)EHU||{QkIB^z|X);f(5aigM&|dCM5xz5dkb-
z`UOw_<Cjw1$045cg&MgSbw&n?QRN?@K%DHKe(NinzlZH$jV{`Y;2i}#ju`o+Y~yul
z*<@_F8kb45^Nh96mS)GXAa{#fwz=>U=SdrU7lPhaQ`f`{uBd+f@!8(3+|*Jxb*9rv
z3i(Y{H(6BI%;QZm8L<2jGQjfUjf(FLlX!R=u`g)+b<o~ct9U+mZNBlC;hctwr_#Ee
z<@}N2<bC#bCVdB3>iQz`eDi(%0Q*<nOK_BwiV^U)^_}j&0ix{R&GAiaU)!~jJ73;G
zT;<#gR4=mAbM106DpDEC@Sg;6kJ;sroV6q>(a~0d2`V2~><y3AuGS#p+a2Ux4dtlU
z?>U?4+1U@wC&Cq>E5F;Mdr#8s(8(%7@7bX3c>pV@9@!%Ha{)n&Cmlab8C>*`2IK1A
zPz%6X_whkLqk^F<S#pxo@YWvXalYP{3UY^^8|MA_8}Iuc>cMO{8nCD1PQFK``XoG4
zute)+*P>6v$-<<}Zs_iO>2QR$<r<wah}nLCCYZ%<xijwn<dcq@=E<l^rIG4NQj1T~
zdHz=6+!=uk?&{+K!y)n|dX9>2hIH3v%-G@Mm$?F?$Yx8Fsf=s=&Y4+=OFzg*vB$N>
zP_1a9iCJvMlse(8js|W-c(7NcG7;H}&<g`x@SvWM&i%5}<L1WuvVq5W!uQO9?c*?=
z#cbv>{Ja%(wF3*@594a*4rF?=<Fnj_DcG_NL4xHBfwGMCJ$L%*03<5wX>%4!Dr5xR
z9nA}(>+>+3+im)EBQn+-gB10ifkzY_W2)>42%`OZqnrCBP?Fb`9K@8TIS$MMXo}pF
z!T%P*;CqtC@s7qx_c^y6FD_B$)eZutuak#O%eFwYsElpEJU8O+knbmO_Pg)r$m&G!
zS<dwB*W#f_<deFiMF^XtZehftW-HJ2d_*8qqWv%@2*X9pS}}O2v)NAJm_I_-Vl>5$
z^HfEP99(}wKagG7{d}fyV>(Mf2RZiM_P&PofRBgg{50Ya7#O#gnF+WW!AqRjJp^4P
z{D@-~rUN10AMKJ+49l>?%R=JXEf{~vId9No#r||a8>HM>)1Fp%;X*)(+?-yCP$}m+
zp-(+u=zve-!kq3}uw=oWS9VJ6fhsyz?um-=w%hrmd^Jzi|KQmV+X0pxW3E6kwc4i%
zL21>gH;J4l$IlYAu%KI?G$?MEQ7DD-g(KLFx88hVaPNZFpw1>03%y1`hzqE1hY+FD
zqoCb0<LvrlXp$CvD*UuP@8h~BLpO~}QhV(?-MV@M9AnMlSE%}q#<<ywKH-9u=mrmQ
zZJF-kQ{zxIY@KR{1IL0;a^Zs(d{S)Q$Z*8~(m0biI^nhX&FdX(1~ZGW)G8<^t@xY+
zG!udF#~2nN!ly(G<2(A!Mmh@+tRq2WR}z*N*JMEC&PRw{<ZeKzES2T{GUK0a=s`%R
zL?rPN9?=?G7TO;K<YJm0OV2>_hg~Sc@>VRl<f{fi60vFPHHFR`vKco#e|`!wqNT(5
z(guu3mYTCnrjVw~Ii!>b?*R_jNp>&<?c<IRp_5bw<oGi!3rcxlVWp>aNp)~`gku$A
z-uAQfKR>AA1tT=el2|Z)ffiR$Rx!9KlVXHHV8!(#vqjG6lkUj`r{n=Y<-yX2v4-Nb
zb<+~Hkq$HwY8D?*DoR1;!epTGa-S6$F?#`n?L>MTQ{`b`S2`L4bN1A?6yQ3b-tEB`
zeGfO1?A%}hJ0~^3GrDKO?N?_p<q=lyuUj%C_Cu<rP1_|%gPh`gY)Xye9<b6s(KoRc
zC!?~crZ4Sr_Y7VY$%C>!whC>IFwnxaZ=O!RnanG->*O|@E_6!|y=Y>GfYs!$7`Cv<
zAPUZ2C(Fv|lO#&`{vO0pP$3P|W=SQ3dX>Iezq))%6S3DuU;v*5uC|Ef)vbvr<VxE*
z2wWjXfE#d*q6jHKSuq-~7^AWDj^fX3j3He)crXR2+x<P1fc9C&h_5=MgsxDK=|Vst
zl;pi(4=b3@HAD;~t8C&=?ZBTKdmdqnvO{;JJ$E6V*jR#mGr#Vw!Iwj{_ki#e)uuDC
zj)vGL+Ws?F;o!!D4YSV0F|6X+bTFL+y&ucWM%ISWC-gGh7z<WxND-12A>*LB^|Pi<
zpzd&mfADSAe|L?6m(G)f%^7hG8h;8~tis-a##J9zt||-_+>|h#fGG<_Xg_?gMSR%0
zq2C2iD*xb3exdT}H=ud3%u|i_lI;uTdl2NymWejdHS7hbZ_{n63;y@|gAuO!@l3=Q
zlp#T^gOIBZ1<CGUQK_!v9!;u0*}0q)e<nwOkq--Zc+uwp&jlK+F<d1qz?e>0h+RPC
z6shQ37%!5yZU@WrJ!ka0>dzslc_7$L`t7Pm?=r&cG{3}<x$8Rzi05u178(Wn=<+=8
zPEKhnM1N~wNSdl|x!@N&$V95s5T^KvIvoMYg<t^X8f_sAGfJ9jY5)Cub)x~*;#L+T
zag;f7o|+P2YBW<kYQRf9)lQalN%-_pvB6e?f8Vipw5S5$Twgm142`Z@iG~yLAFq1Y
zwuzCB5}iQkv`V~z9v>52U+xYED0Smb<9!N}##s9f&Sq)aZW`eswkgtNW4T4npWk2*
z!s115Djxj%>h^-DuB~+_f*Nmy<_ip^SCJy}sxCN7Mu_G_80GrLW23O(yOMUC)fM;t
zXeknxmB@#8kIopgkrLE-mgh5u8hm?W_i+;#2IR@3O56m^ZIKn_?d@(JWcUotsRJKd
z6(8IZ=qG>GmuCNToJoRwy)DA`-l&8|{j5$6n?Xh}EghlyJO<8vI<h<AM7O-3_OKzi
zZLi|e(+rIyO?C(w(tV2eUR(pZya>X-3c^p$Yo|V^D8@NYPT29NB5Bp3g{nR&e(MNP
z8Jet7$0`2F7}+RAD{+QsAX7Rid_7YpSz^NG)}zl^a(RS}ePy&RC|i86t17915=6Bt
z@|}j1x%=#9W;y7(#$5eFO~sd`3Jjl&p@>ytb0`9YHA!RNC2;{$SyGOq=$%Cn-8k_n
z<vOQzeoMqLJ;W_HlAKta1LhgM;<AZ$LRI&v_?N*qS3i_h9tEw+3u9e|;c?&W3JdX8
z5c28uhYB&L_vXqZX{@ZO(1-{p9&VzFDx4IVQ#+kjHf6$v83bEc>pxPoeCdUyaV6b4
zd5P*Sd$Q8rAD4Ssj<y=o<(YHK$;k!_%i#m_5-LDvfsH1?u<i;x$0zGf7}HzuxY;EK
zLd)4p7C#&)c!(RT3y1}J1OywZrqcXe*(eD>TP5*k5$a`&->$LS9<(${)k<~tn9hY%
z^=J@-LOUQWPsZM=L~6Z>W6X$C?0U!zTWX%FRjS{Y%w`7gZNkI49K?XzAYf8xdmry4
zt`|)-W=s57<7NIdy4RdziJgv-ePNIw7mGY+nj*ImTu75j=-+>(N*1O2Mj92M=6}sw
zDQE)&o+EGSe7MK+YKm-D?ijhll`CmdmxiyoBHd5Y6jD--LyR|PP0D;K(SwDFYI~YY
ziFeXQS^Z|EB2iuSGzzK#tJ4=E^Sb-1Qmp3#vH37y8jv(Q4fTpWc=G-p8uKc_l!;C>
zW-029AM&%tk*=A^RMVZk)#_5QE<49!O)9AeDHml>*$K4SKbm>ga)wugV$0lf4b-~q
zMLUv5;CQ@({AHQ$>OvekMX@Wg)W~l^Zn#@JU&0x&L|o&9?1t|!iy;fpsUFA~DI$H6
zJzR$~r`=sQD@8{&W-Nxg%zSJLR}WYgU4CVJy92?)pB~GeQJK|H)i@KT#$)PoTpY`$
zuvosO$E#Oa=tFpJk(3mYOn9#>#d|l=!3-`U$NQN2v4NAMRB5eC?y1349BFymS>|Ng
zNPT8)7OMIpeJ@j4XrMe>Pw6^$HdVgXf>rJ>Tc=S4;hI^s<kE4W!rp-wLhWfEeK=OF
z;t9TO+fkov#F{!M&U9*+lGW|twM;D8C{w;mig1ti-p)JrIkRqcsA^qr1tZZLxd*Op
ztSh2UZTqO4`+7uwePgfPGU|!B$gzRaE&(F*Uhv#_Wx!_)F3$eM>I!MzezzAiDB^8N
z4r0My4ccgf=pp#~2nnS;Hi>Qzkc`Woo72v1e!bs48zjUNW!e;$4@%TSrCW}O*Rn64
zyZB(uxNG~i2?1?D_3^uoV@`cs>K6PSq32|QP_H!4TjY@hZ9(uDeYR90&!(#|K~;1{
zWhU8HBPpTzDBx$UxhsPw=9;M4olJQM#xF{g2)p?AjA$>C{62BuS10;W7>5R(Pk25`
z@tRikS1eh|s5326`YMZ7>)&k!(??b>NQFK0T={PisKvCe2L{H9q8$xp@rsWa3pBQ>
z_KgDh2*Nr0EinNE(}!nZzqQ(RfORep-5M(GUe=kbBvwj8YfH+*w6MN@kqr(W=l<)T
zjNc`>*zZ8!zHtL&lK-^ZE%nzP%U0C41Qa6uZC!PQS{cM-69Gs<MCWQmN%dEnSOUq@
z(P6airGM5gmSvk0)m$3Tju3h|yF5Lvw_adXnpfj}))+`CP<e5dFWd~HYjDUuR_aMp
z{RM*_CeL0UKd~hwd!GCBBwO2b`HRu8L*<LkhmZpeEzk(Q{y!oK+5Z$tDz6j1bA2s+
zl%&doeunS6c|!z^DeP{C?x~kPAeSj&<nsEAyab1~BUaa61o@Hj48ZA!2Z`us@oRn3
zNWB~Ops9IOvSkE|;i?#eE8R=9V{Eae^{!;|FQ0?;e%f0HCKbKJ8!TnTh)rk5O6jQR
zBF%-X;Q08)M};<2Uriy}8byoK8{PM)I1ydasu9$&jcZzV8udxke-``h-*Go}+xc{R
z!}A2)Z+cd<EpefS@@|oW=!&sQkQ}7I4nzW@(}jSMFju_g!)esK-Y%S^R&zwqk1hqi
zf3GOt2q#&w*=Ax#2VKWsa0K@uCvqElhkA+Q=gJ-1?aX~SXPmh5WJR+z>_#Skq*N2m
z-ESb<I959wGfb-Tj&$_=AMCwjo1|;Eu32eS+O}=mwoz%b(l#q?XI9#-th8<0w#^;&
z&R%=<o;_!G|A6%&zDFF#6XU+0F|P9*qsX69SXK@3s_g#sb>A__PFHWu{<KP}S?mf{
z$gW$f9oW7N-Sy4vL$E62LO{)~ZhmbtLW&|e>`a}#h6_aw^&PeG`(SSQf>iL>iTM7v
z04kkS<e@g8Ir48PfUE}Karu8BhU>f)F7ndW@dV4Uz{i8rf1v;ptAC*YuHFnem&})6
z?SX=^<u>@viFMG_6&?&Y`rA((I$}0#qo<!^g&Dx9)D)^H&N4&I^@y8r8C1KvZDsLg
zl63)Cmyh@RF7}7dLFp?@D?59auGy<m3drg2*)w2K>RoQ^fd1U+ZU73<_#YHt-QYhc
zK;}6{m?r=Q&;_6XnCSmO0Unmp_}CbK#*Y^9ciZ0u!hq{puYpVyF5nWM0aQX~QS2GW
zJkLcjMdOIfZjaX5vxb>uJMhBRYxS7CS&pZ=eTjoZ`6=7P{<i?G%YY#YVpZ6YgQSvm
zJF`kpNx`t{GQ0r5bxAr5N@?{3QQ*k?T_H7<V18RvF!ZPHu>>n9`$8ITKVBj<!8<D*
z>m+Clr3Ekv;p^zBoW@`Gml)lb8DjhqQAYm}QHCQM4**1zgF}u*0CQHvA9GgpcUa3b
zhRY&TluO_=Rg?oEqL3?b1!^q@rTrs~8KK?lo5$=}1;{pz-&P{qcodSdXv2Xxg?7D(
zGx6r63<Z6Cb1gHJ{>><?Dng`_HEJlr2(s~jz=f@9G*^Ub(lFEZu)@!@Een3|g?JM5
zOggH@+_qdvD!}SpiM1xRzf6?<C{|Gzb3YIP8llOt+LL3*>ER=PDH<VJv5U7;N}2jG
zm%v-Z6+RhnY<Up9fD7l@Evx4S!`2IojB%hGg@?n@zT(33pHM(2p`)Lgvo8iA<MWpQ
z4<%WG<olNm>nyw4oWFNS=+_d)lmSm8)W5Xq<RnD^k7J?ArSzHr!h3e7VdOU?D1WqC
zQ4Rz->ENAEt(U^Y8Zu;D8JFHOk@kpBPjdb?l0|B?794S=SJQ{_w%?pVzpU6~e!Bus
zbA>pbW<;%VmOD_(uvc<CK)H!LeQ)k)YU%KsVT9y^YC@u`UQ|$wUNAyXSm!{y>an3)
zUF>;DJZV97RNm$p3bw|&v!GT16SQyqGNE)c;s&ptayT7p(pT`U_4A1ZQa~Leqy;9j
zc~|IL$dQ5g3rf?NJReS{{Jvy}Tk`Wr_#~4?cT9}|P2BVW1{s2uIsxkTB#@?lsd*iV
zCYpQ22x!yMvJ*V+GicEpXo$55*zS!@AWr{r<B*&O58*Elu6ZR(ZxUuctKpH>1oM^5
zx)RVE<8};K@!o5wHEYoK$o{a3spwb?IJGMWs3SD&8^}%B`5mx&z+L=RpNeW=qQ@<6
zh8f2t@v=bHB~)I;w$Up(Ny&{%dSGPt=1!NpAj%*njjNK4NW+Qr@c!<1$rE|jw!w^|
z&Vsv3;&kcma8*^N>M{m3@tr`Y{e6@+EDr8E|HQ!{1+6wk?;&oI-j=(|(dbcYz1|Mi
zJsRrjuC&X&fW9_c^&1|4c&qP^4V0n2``ivdezHeGi?LnQ{eGII;k-f*Q6(1@(2hH^
zeH?LFZ1)`JZ{_5=5jVsU*HbDiS({JadtX}3n_kl}qg3y;D9?#ZH(pRm$>w7UUpVcg
zw~Tw^gNEk|9lkgZ-}Scm+^bE?cFga$lU!v@zX#)7p+Bo>Hh;E@fSqC&$?(Up%E!m>
ze8sPO|C{W@*P*%94e%Hu{Yxre?*9s?+5F$oYk-zlF7ctJ{M;fOz`H`!39Ov|sf&pi
zFcPb0)tlWG^De*m{GQ!%+|B$5QL4B-UmIfVRds}yLoRS0tNNeWJX$$L{~Nxpam34W
zkJ@qpFj5e$tTqgqY;O=Q+-Y8;%CGHqzLB=%fWo*w-B@e{SFs*lPgtflfNukdmM;cT
z3^4Q(QH17Oox#1f*yPr3?+gm8t$yh~-;q9-?KC$MklSr6&bKhaMW$M=SY>u1-)z?3
z>L1|U(m7eD?157jn%How=j=_WUNuk0Va#%!Y-EHTC?#gYFx<_Sy*!TBIVCz+6TfJ8
z!iUmHj#YBaD&<{5JLx6-gJ3(|2LvE7zYCD`1NTTpcmfb?aFK1dF8~C)KmPh2NvgtL
zbV&)Qlu96+M2ER7_O|N|m?R5XGXM<$yh5a)&$k$RZJaKBS7nU6`U$}(+!sG$=#OkX
z0;r6yL(G3FW8|O8m<_0mae&HLghCIJriNnr50#Oh@F#+sqfaGbuxBobG?P5QDd>$|
zl!zum?N3NbR<w{L2Q^lpA@qmAwi0Co{lj2?{||$$@!t&ggONV1<oE95Hbch|nDm0Y
z&FbL3D64z2A%BS?C7IfVKQ!P^iS4_dv-0d{gseLNctS)YIhp0n8|;w0Y;@=qR0M0Z
z+2<IVLeMcF8+Exq8_$a;U%P>Gg=oUxDdVNJf_H-8$IOSU{<$4>Z^zsJ@j^HHrL$Xq
z>JrSZae|$rZ47?as3UM-v6bUyfQ>k4+Y#>_Dt}n^;co;h#$e+8{~OIG_dhh>|ImEF
zv;RM6KKOs5`L<48d>1my!PwaO>%U%QjGOBCvwI$DpPBuA^TRHJ!8Zj!)vN&MasDYu
zBBw0+XU37Fsv85?(((u9Gt`TZ5S_iSeiX(k{YuCz0cz^sP^Lz`2V`c5Y8^CQuw3@(
zT`h|wF*9%O{>8ERaLtjwrn(Dxyvk$}8%)^_+>tILYXvgerAq5zj&fQGo1_o{JR84|
zuR;_i!bg>00igiz4|F;+ymu0Lwtjy<F7Ng_zc9M#@cck40uYCn+d#T)%TyuUNvx(z
z4l|S>O-Wh``}45P<r!OfA?XPX8`J;C8m&|@pWHC#Wh_M`PZ?2Fq=Q&k+91{AI^|?T
zOcG2ButsP2M96hxF$-nG+8ocqWo!4K(%KYQXkGV6X&K_=U4;;4_rb8HzpOPWq}GL7
zH?Rl;zmppi$_h)uM1qu3MVY8P9Gk-P6<ia&?ve2=z~d!688JK_>Nit%Xm5!*hV7Uj
zR3<YF0*Bhx$aKRB3rOsUX>Jt{-BJ$W5nNxc8^dWvHVm;|iRm?^Lrk}KgN+U{bU}jP
z?SLuKy!Uwu1bU(e2|g@~=z(hP6_*C0lmNfQ_#_Ix<XXVxU3g`JJ<{D7Ad*Y$iscY`
z-?ewa+Nfkc>4ls}!Ig6W(GPS3q|quzAdarb8&<I4{ukezrQmIo2QZkr`({*Ak3rES
z+kzP6ewk_%@`czls|VJ8FJb$Icxa@GOuHP_KtK<(Bk^jqMdR=*VyF{7(3Ahh3pOgs
z7mfU=N$T+n_8N(V^O#!_A?%Kka0E@<rek{9DOw&<ez$xLr1atyom}gd3|WP(NO|tw
z%+GHyD@W5f*qXYo5j?6+*4EN_L&1XQ>B#hQC(MZtv2w*4tZ6cQnNu;qsHkyB7pY~E
z%)Ag>?cNWApjR^wI)nb&H8p|R_gu9u8F-@H;T^<T+x0ZPz_hd?+B@2I6ONitq_;S|
zZzc|FS~S=dw7Z2%Qh)`wr3F?_#+ju&IZ|4cHs;dEO7sm%*er7)y!JVP9mb)ZM@|Pg
z*JeY@Tj71tMS_&3S;!Vt4D$osF_rh#(b$l?N{D(>$9!e5<fuFV^UY8T{hQ#P#a_3p
zv#c|TbM(fb5=Go8uiG~$e{6syJZ?)PI9aU;tfR*F$Y#OC-0k*Y)TO{IGh2_lUu+95
z4d339{rq`AB~W3$_t8DlWHK|bth=?a%!*TEv%~k*ma~a+QAGBYk5XB2_qn?vzo>~d
zWe{btvc$86SX*%zzd<*gzB);tVNVK!yw_b5b?<w2>4~S0W(ac;;p8nicc4c>TL}c&
zcfO#*U2ZH-n$zT8PMc?}<ztAN?6gVWbFL*{z_tVG15{eRz$i&_N!>xm=sQO29GiZK
zMGn9OB)oa$b`x7cux8tVPKtExGHSZnJHFqJhl$MeWY%A1xz>;(A(vk#@_2N9o*%p%
z-Tt^;XnyO@6xQ+<+U2o6QpFeiWVI20D-SH-y$xwVat*+bQT)6vNKCn%=FW;4BDfod
z<i!qjIQzKv1<xzal>PYIoHb3{i)R?n{&0r>XTIQ15n={Zp<n9%t*%#vQb!>@KFvZY
zT^e9?Wh?MoJ<XCs3vq6Pwlhp=X$Gk4VGhRSW_>uQp-o*5(#%YAG_RObO`nAYFCTE`
zjxkIrNAaKdq^GlQ0&JzTQDs2HAZaQ~Ej-E2>VP?(2MAaF_hku-2qiHwqq1SUs_5wS
zI@?;BydYeXry68fYGxGhd4(snl}Hj9BhuW!Nr|z7Fe(J&MV&$y38Dz{Ds}|?E-68h
z&z}e>!gLBU3FQ)lO@x&2?14y2z>Y!oOybNUyZmo>b7ghv<9p#o1u}UlhaP|~A_(?L
zW)R5e>#A9Z5D%a@K6+7B&#2=v%K~O1jk1{P_u_wpsYr(*?Qudu=Td??&=^u0s5XD}
zfKH~p=D;rY6?Iphdexa8d`0Q)^#uFs3Eo&=cXkhLx-?&CP|3rPEZv2$SmQl<hj3WG
zPv6CA_th1=BM>03-&vX6_b^>%XPVGjr=uO48VF<-4@)|hLpNt2TbQ}&92#>R{Vh8=
ziwM{{^E}+(eT4>mAYo~k_a$<8Ca8IrDAK?e=yD-bYd}eOpo;U}!Sj5VeK5E*(DJ!S
z><?g2%VY}*p&qjEJFg&k+Y_$Hsg}X6{Z16faZ$5-<{H#Y!;`Ft!Als_=rFdj*dQ}p
z*BQ*D7cHo$V}Gd!ANjS4P-E#}e5Qr*yp&Q1_xO^Vj;pGjO8}(z7f;-*<|}02bu_3b
z%4!9J$znem5%O@iQ!Ny=@Xo|*Yi^7f%W!=_FPr|}`RPG)5fBU|??!&zXe|4L;)v4?
zElKl~!=gk&!Cp5TnXVBc7!L>IRjAh%DUA$0XOwvU^uzqTseFfxTccz>5tLz5$T^63
zC`l7JPN;t=ao40;b5ong{mb~O>!mL%*=!nTr=~{dXRXfi#JTw5?P3lJY}N$5_s8w%
zH`N*@tkFzWrZ}{E{_I;xj&t!a1G%+6@2&@qKvzxwz??0TqR8EfdPK_?BuX9VVqKgy
z=j2Rnd{hP6XudnG&E+5lIE+B3eaYDJUb539@3#yZ$t8A+ScE<mdz7N;#NxQZoE7WR
zi-=E13PjYx9{+$KO~h>*lTB-lOozs0{i4pKBHOc6q6p(1nEis-(1JE2!LfeUen%Z0
zc$TO-5ao~3FT{1i3h7E6%POzLe35<Jun`hWsNY0_wN}k!8&T9(be{IQWU#_`u;w&L
z^w&wkwRa54qVLIe3HqA`1?(R0TbQhY8!0VDHp|Cn2t;nUoKp_`twz0%e4o{9&><A_
zMyfjJnzZIG&`Dj6PsTF@BaenHWadkm8J)=SSe~BplxhhTPhBjh64tMks|`c6Dt{St
z<vH(~;IZd=?5;xsLul|k%u9hU9df7Zt!hSyz#tiEcg*+>JNLi!|9BM+mDja&COUDW
zh-Dcg%474!IK80}K*`I_#5CfafKwtwj5BC2a(aouL@C@1_Ap9JkuoA<BsR;67H^2=
zH1dK{#6Dt9b5~VbU$v#KO>R-HbQN^dEXd`d|M_9`^q5I`g)_&OlHK=f_Lt>=+<Ded
zZptdVIHXfew@IbTX9&(9sBZP*62$JRq4=_<0p7^vG-ZFYNBQsq)-5sV;_cxnTxZa^
zOUP>R-!|tCjriJ^uuh9mht13|NubfEJMGNv*pQVA7?#IvUWqx=8fk1)y{PSYkfL-{
zyVv$kA$=i09%<^K=DyJ$lds5AE_hb%ql(sTjY_LgL-#J1apU2Qir~G0uV&e>s&x|%
z#BTWJf+x48;zrNdgu^gB8nmU^9X$l&N?72v3QIg)xJML{ZD)NX=aEj-1R@LYLrBWQ
zDNMZZJ)Wx1CQO<#C^j5%>y$icJYj=}{_?XA828wp9K`#tm@f=5S+aHIM0dl2=-C-O
z6c|#cZ>j1(+Ov+Fbl*2VVrqd@pA?rh0PoKG#thui25J#GHutwTB6Iv(?rMMyU*)5p
zq}PAn3!viSQ)B?RgUSHX%((wxH~CNbR}fSZlm(mtm1@5K**~_Kvs0Aor&}U4TlESC
zT0%4WzZtU-8bvt8v_Fj5<FRXjwX{o}GngqTQ-3R9``CKi1gcxxGE7UmI>Q4QgHhdb
zx#xs^4y7P_<&Mw_0hB+()f>hA&mCYCccm_BNF{hnEd;V*b0=q@hl}%7{LQUhGi`d`
z{{4Ga5ifDg)_OwyVCI&dTy7#46{!eG)KE1fZ0NpPgF$JnZPy7Yiqf+q1cgVHfW0J-
zF)&84GLoIdHgngYQXLD5aV9fQbFFE6$*s6D&o18gacwYEwIGg1k=Sv(Mk2F_M7AE5
z0RE}?#8h&1fIJ%eL*Q$1725!6vNaPno$NOOGoi#b3kf<urlC`<K_#Nr@Abj(0LF~3
zH9Y2}TNlX}+VtZq4ST;U%$hm4V%yiec_dQ``y=pCl(j#M*%}4R8;S!T#4<3_=Yp(h
zY(L}=4PM*5;Brlb_4FovcXaU7pMNoC{MTqr+j4;nLmjDOw*)`lSe*ZC9{U`QVUj?{
z0-OOSyEIL+Q=#se1d-U@{&y3P!0Zii4m+NhjqF@iJD_bC5QmSbfC0(aTA^n-Ckffz
zRhhI_lO~qY2q=uSx<L_4D)}{15666_LDEZV&$te5<Ot#F+yDo@sw|5M`%F+9O&IZc
zOn80YJPpw&+gIE7p<8Ej>$iFi!9i6I$eM210F}c?b<7@pFKYor(i?7>{1)3kd&k~D
zMKxLg$)yc2GnTy85Ew9yR-2#EcGx4|H5ELVQe?RHN(rK}*S5*l&$W{5ESc6&Osa0C
z&F`+qjJCArniKsZJTEWT`gEh^73K1B5;nz%yJAc<+mRua>=k$P%yg<v#*=iax4}PZ
zZahZ8vNN+x0#)aq)lL8rgVb5m4P!m((@DA(5>z4uv3U>P<bo<|gu?AYbj!^xLVkl4
zeFU4M>#G4l782;t80+iADDnxYJ7C)xPeZoDps2I)0j`wOWTyMkC*u}KMx5-{jB}X9
z?8Cy(d->fBH^f3}tQWh7h@skzUxdiCR5usBp_0`(J67J~czePV+9S3^6H|(@Sjs$8
zokOzd&oB3jgZ^3#SVe9AQ6~3d!X>+g?X_~N1<8A&#k);hk9(y9Fz#Lf*&L*BvXTSd
zg#jgM3^jVc?4J_Q+5)cK)zAF*9tw*>H(Z6hSadfK+Zsj_n3A?y<ua5v@{;KzQ+K{~
z7V31?s;zNgj`^qdY6=OMNzWOuz0}3@-pW7JhhuVWcYPfwKz=h{>~yo{7Af6YQaoE5
z#eL5XX*`=#YTyWR9`{<1MR~kwdoSMQZi2B-#V;iYHK;PT@!5BcB2dE9a$G1TGRvGM
zs&+0u;7n#Zl86$W3xWl&wF4#Mjv0bcPLp1=xY;>fdNJVAm7&G%u!1`s9_{j8u^TI)
zb6?*R+F8H9333^z-+>5@{*>K=Dw_(%F9sVur}~vWKG#*dRr&Gl(Ejtycl-nU|D4WQ
z{z56u2UwSQApW^F$t#G;DTpilwYDTl#Q^Y@4Cr%zV_bQUS3$Hax0J7JP}1BXIfC5t
zYgmyV@*f`1s)@5<8-IVn7G@i+qEZb_)DKB}+-PI$2p0GyPMiIJHqZ@fI@2KDsvf^H
zV_AD%F=Gl1j+n=w?=YZW%%bsTB6v<P23#T<KC@-+^a^)&J1FmpP%bu9l_o?XZRaE{
zX*CzcAchdGI)#}jB<ZYdu0rbKbXXT4mFkbzeGv?l@AA;a`amDd8l+rWXQiNJi<_w2
zzmK>g_j`l@Cukj{e@)jJ&1DW~`%H270a89)`p0~tzE-84NHFTPy|k}Ltt$PJ6_!Wb
zh|&*U$Lhj%7KSz=l#RwAR!FF}D&0x}=7tP<Oygmm&*S3Aw*cq#H%K#UaCRTDN%pNl
z=CA}+3_CRjVqs!_9g{6_L<Px{LH8l1o@dMhX^G_?d9zq@P-zYHHI6X0dIr5a=WR>e
z;6D4(P-8g+>SS<f=qGpsl!F-FTb?naWD`8WSZIBIjZEQ2Cx+@gJdE)T-!P1^ghc(f
zC&W5d7$N@j_?<*B&M0;tT~bO=D4RrIHc(MchFkTI9t(-rnb~|Ri{nF0p+rj7WShJ-
zRtEV5R1wJomR>R=k?q3{YO+HK8@56&v8p1uI(%+HK|HeBQSu$0`>cpm+C2O29lz$8
zg2~B*L?rg*QhjJ2EYoP_<vmd0dr5dH3Px-O&&72}Ny%#eLgSv1ONT?d;;ksLJd32p
zntkxgj!b-N3!XPs!&8?NX9X5nv**Tv)7+}2{Y9YiY{dv)#Tc>tOS_S(FC*#LAj9eX
zr~QEcI|rYzd+BSA7j~3iRYpdJG?F<@QWXVTTbncf3%kT2(A)j}?INMZHe7^|guxF(
z>zWN&L3Q3N?Ij~={3~X>@Go*H$4AJR@@<aut#8Am30pi=A+H9S_R7{VXyZ$SdQX*9
zYjKWw>UX-(?)cP_b68efKzc(tuR5+MPgmQ|_M~F@=M8Nfr>MP7M<tk@GqX?)mwWXN
z1R$31Ojo{_zX0Ds!Wpe$whWUbD|}?-Z2%K%BM0;waImVkQjGh2@52QQr-*`Hsqrwa
z)C(#WwjB6qaliz<MZa7wn=$u@k}5|>6AuPY!#Sc_us3ie*`-Y$*@nDT>czZXt^rQa
zz$}AH-i7>C(Y*Os=^#67iVhW}lwND{VH=y<d^+_boR$WU{BBGK_e0+P$`sve`)The
z;0WS?;19vMggWmZzW!v``&-hS27bGw32^fO0o*+PDQPaR@Mmd-vzp?czqQX~b!tAm
ztQzIYL!nY3Z<6c~IHf-?L1kGPk)AzU2U4VUy~V}iW~2e~l8d{9q31!yWd^3a8wj&z
zPNLfyHpV0wL$#APlc(mkk4d7Nd8CR5bh@Jk7&E_&*ODYy$R`tlD*_2Kh3EwJxOhH0
zeHWk3w@%;3?U#3P$bCVTaRX?<q}F_PbN9)4L33J$__!%^zF?fJV*A+OrET_dXo?_P
zPJ0H=pMs-VoJ{@aKN+wbpwrkP^e{~!BT8ydK%Mg~OF40Zmq9M3e_MY&QvlyNYu<q;
zcT=fgYD*=OsoYDTaPxOa?S}t)O_0;HKL=e_AehBgx3BaKv_U+q=OmpOEDu;Md5^lu
zcE3m(ACMXLxi`d50DpA2BTapEv~L4lgmc@*=`qI*%3vL1ET^W|Am6G~^P{UpFY?bJ
zm{=sx6*}8=zs8w?G(bEJz@AXca7WnC?9}(}gl6dJ$Ik;3s(5#6?1Q~z(*QeW$96|7
z_?bgOCqw{q)%j!qJshu}ExG=(^kw6GBvcfII1=3_aBm|AY{N1l(#SX2(7pHYo8s4c
z$kzQFSfQV=W9`3O#c>QzS7;??W~37!g$F2TmMfHyYQpkaEAoOkddaRCgHk;9BGZH$
zhf&_W#w=wL+hZXCZ!XZocp$~K;xs~^wy0~*+hgR5Lo3CKks%ocj;R6Y5K#S*Y?M8@
zzQ%%xq<7jf8O~IMOtm;~7zs5GG#7>%V6H4kp;}ZRORciD6Qg-Ebb~P;S~ze~2Joc#
z81EzQvgd1?DqzgkBCcoDgGJRFSY5O6%9p)z!@^?f-&gL*neAAIa_F2NN>P%YMO?#y
z*J~j5`oG^^bY07#Kt8*76%10+r!63?7w<BIuoq1Z7f(Z8Ip9FZ3tsD#0i&PWCLb$d
zWtrH6Y~orJnjeaLYFy!Bg-NB-U|Z>36y-u=hxw!`M+N3Oc2i98hT-P^&@X(7xgc1o
zNuD~gcA5v$RYcQo6<uDX)pc!|SZG2GGWy|C5r4e=+Jyd`U7=Z8$Xc>onpp8AiZRq6
z?BG=K$O)m~a?OI+jsX@emge_rXu`Hf>p4sZ$1!;5xZ6(l?E{ff!Vk*Al;eshCfiOA
z_X6=VbA3W1MT_3DOjpxc$IzDPoVO!InJty~o{^AODM{9g5$PAGL|ujz5HqGOg*BG4
z6X-SMFz+c&b8D>DF@+FW1#$TK>|j}sc4K1~lnB@M2IRtba?ZI3D{thHh!-gGrji!X
z2`bI-HJ6!j;2-0jTmXDhcnb8=5sOSniKieu^uqD(r;On?UJ`@EC>+pl)91<B+r{t4
zOAjt4tH-2+M2KC+H&jBNK8lfq$7QYo5GyG3*S=TbiG^j|QRU@1gV}9#?{FL!ok~j|
z_Bq>R)!~;yzKyhtuu*1oE>{Sh6{b=~2?vEAy}`Ed5XPPrbitn=`M$W)8=Nf>_!x~o
z_hB@jA*TkM1G;piWR3v@S(C)<ni+3wm%VQ*=z+{!?IwHR+7{M=K9`<SqvN9+6F$oH
zuiry~xZ~*BiB!N$d~WJ!Qd?8lUzuQ9iMBkUCx9Kf)N`?w8nItM>iOF;Q{t@MTNUy@
z{~jD6=#bL_%t#OZMNX}tq6DaQ|09w7ABp7ur$q8!$4*P;?f^yg#5{0DMvf*pKm*LY
z_LrhM_V2-wqu5)rZorcm4p7ScQ|e9WKdCp>&A$%bZ;XcD>QJLv7DHRh8<g7nhKUe|
zFlWlRvJimGj8GZs#xD-aJ}z;E*$5>I+x75<j8iW&?0lA*f#un_N%0!N2R2w`tk%!Q
z)E17aqmWJ)Bnow>GKIH1St2Q|3xIobV25CzY9R`T+$)~}@A_g7tF5k=n>)L%i|M|3
z?v5ZoD@4}S=$@SUFm(ydhgC@%&{F3l%voIt#qrRoG{azh%$$LOr`mDgOsQGSn;GTP
zcGjg0SZ+|5?5OoJ#x$tPnaW+K8p`6*dlMM61#;e#EB#^Bf_Sv6o;)DnsmfvLbqXvJ
zy->jD8RSi`{3#c1;#|{TRxB-Q_UIgo3pvrII)#!eEZm9&=3<iy`=P5|zbAM?JFrOe
zA&UV#zQ)t!zEZ_ou^7JG0zH&L(>?I&FsX)tAUpJi1cF~64M=3Xu!twk_?scb4ufO~
z!(-8!quYL>R}}ehT-tvaVm_sAhlQGlpumi@c{;^%^Is*<>mH=#1hGVuOZZdy`Q#Y@
zU$+;!BRY#apbzN^7@#p05N@M~rOe$*Zsi$@wSx{~cW5Aj(D(E|TLr6NfGF1yIF|c6
zPrb`)&+tm_Kq@oQ(CC4M)9Mf8fq^Pov-VOIr3R4n1=Kp0u(=?L*Ore-k^My7BlSU9
zag)hpFjNh4!h3SW@|Y9Kr{fF90I%BN?E>q0TRMnTgPI}WJCTSZE#Ng<bmkUPnX$<I
zno&c5dwJ#roiHt-5~Ttjp(X$1IDy@oE(}=Nv0!`}51&;wB*W%3rx`qGb$1QQ*mYo1
z#9Fie<d@Cx+V;VK1>}P>Xdtb?lTs$o>Z-Ra{0_7<7MPL2zwtQ1GGEBTCA*FG;ZpX?
z%SFe2tlr_{7zDbbn?MmJp~z@_GzzBd=tjHu42!27?EpA{f&YxZrC*t;BO9m2tmM>)
zBwmgNOzP;2Ww!LZYl&-ehhbPWRn`l|%Gi>=yj?AvTx0I{&kDuj9nuZdn4NDv86{}A
zb{k&aSmt;UH4h}4Qf*Q*=$Xq=o*jhqidzEM>79^jYYk=KhpVnn59?`LHfkmsL5kk!
zS7KtbYAy8lMvLPSyZdT5mYWos_w)E}w@RPJhGIV6mF(i;md5CF4tk9+&1CRvclAv)
z*OA9<x}WInm*~l^9h$w~IA;tO{Rs+Qo#@z#F23BV`ArM2c$q9Dla`u4c&KfpO*KoO
z?OWlgZ-iEn;oRjY=^mfZbE{?6>I!6wShAaPCR=^omA3Z@UUP3PGU3mDm3(rf;{TuT
z($w=t)TMx+7!UG4k9m}olqJOhXV9N9&k6^Q?_}{+YHUy952@;t^Rn^=lo=!_A$m!6
z*;y1!!!Aoa1?z?HIUgS`cxOQ>tL;r?g-@SvPmVWuvbVjZxvjk715S~qnB199e3O3J
z*8x>AJoKsI7=-5Aa=7&NQ*87I<kdL)+I!&2iBqt{7?@u-TqAY$badXq@qJTwPIIoD
znFRH+XU<a7hsN0!ws<Lc<B19*741hHos9cLuxpI+SYnRRK6Yuu7)?w#K(BdC!uGX4
z0$_;J5}9j|4>OFUn4+5*Nb~xZp>U)73C%#;6*|NPkUwvU#kGeZ&(0(T7swl^?FS^S
z1JZ=!K64qvyWtP6fan&U;fai>97n&yQA$rTB?n678vCPqaUkdrq!VV62&EvY6=6@{
zqEuY;(l=fTyietKzMM^DVq&cTWrhwtm=0;v>Rwuen<{JtpVNUD)1yJEc&)<dl7Hd;
zwq_sgb=du2Mxo=cSyOoCG21^oc8^z(-Rh;&v?X|)KhK-0!S&$;2l_gp+qA8I{Ja6n
zOAblH0HjE8Sic)gkqX1?tl$ba7U2Ece(HS$g1PY#6)a|A?iV_l$Qk!6!piCVrW#**
zmA?Il53n*ppy|Vm4+7(p(l4%v!~++MimpQVa4`8F3MBTI)yd|y&>~|;l=fZ0xGO@K
zR1nkPWJjC|s^5aFJ&AHHj;eSF;iH8&(G=Y#dV9R>+e(R5)Rp*jo(Y~%RG`V~yx9@>
z)a40Nf!>o?pw)Pa8z{@^v>@Y#FmUiAY8ndHUtQ2Ey8Vhm+qTT3Fq=Ed<gqhjX$C~S
zLx%Zm-Mn{LNTUoh8DTy!mak_08M0(%?}o0q2)W|gY=;ELI^}2#$F4C2F>t<uXMi$?
zT-f7G=|WaTC1YBFN0r0xW^{k)p0wvci8pNWj{<%aq)EQ~K@Vo|T<dpEF+@ghI0P`Z
z30MWdHR+Qy3ShPk82`Xn57!~i7O(kvr-~DauEBLhyf#G}z?Fn@w@90=Gn9mE_M<NK
zf`Xk&@md+dhlU9<B8BRZZNoo`S{6vT3oNPGIJ0kIgH5eNcTLBeUbgT{m}i!=v!iaU
zq1O!NB0D}cIDzcw%3#K@s12L~LYIt@9Gxv$3Mx8Qwr~~K<Bh3Os8XTUWE?5gZ)sRz
zP`hORbRr66aDBCov5~THx{=N6rV|lmpXncEv>xPCz5&+VHMXR_94}l_;@9SUTG0VN
zHNU%-&Y&*v{~}Y(SpI&tH--UFyLCLx4OC=PGD>~72jz{>h<8L2RmirJWe+vX&W9y%
z7Toz+dc?8359a4nhK$@s1~p4bP@j(}M>K()C8r195UU;`SE%_5nd>?&lPKDi3o0Tl
zE>F5!K~4#=Get6-O$2eAB8DhG&Xi=CYMm%qbry=q!g)bDw?q~QrBvoy*8Lu;YGIYR
z>`sJAVI`!=%z3>`Gl>QFXtcd6mQnd|n_R7w&01Md;UUC$N&{qlNjI}_$`J*-$(M1s
z3N4rMdZjm+NU;W^JerJ)XUNy*X^LZ9z<j6$8V5FOQBhg+^5yw`Mqw;kZ8jONFl2GM
z^krc_RR<fjnD|?xD*7bDnTO;>ToUbK|020u>U7P3<&DXpA6Wchn9qVoA%s0?wn$-~
zrtEcPikY7?m}IU3{}KNl8%?yppH9mD+LL|X6h)OUW?A&kC_+@MmguokCpYc7J9S6x
z@{FbYH~8w-sCMEx(?=o~GoOLZvOMqt@{s!Ti?P68%ZFE9xbyc1#g;AiXii_LyJAMj
ziQUH7R~(h^rH@r-ZzOkwrM3w9YzOqU_birwh<PPQAXxl_T2p+!og5HB%#~9rfziT6
zv4jtX2J_P7?jgS3h(C|4U5WiBocFDE?u!yF5gs~9D~RB)SOEgkIq=L5v%25!zx4rf
zK&rdrn0CR8blUC%uLdq$W$=YX^&~c)J8K4V1`R_Q<*%-?jX$<<>35x^!LA}{<85wI
zo!%B9)!<6O(2R)sw^o~ekT5vdG;p+5NgKY7T)?Sh+=5%)0S&BbOuI(?PG2N@r1v_M
zvQs^>mfY|CI@S$CD-k@doj&yVa`(j!vO=q4fvhJ(C|l932({HM23f2jYZVzM#WluD
zy$;UpcCG5+YW?kE!g>9<2BK`E>gp3{0vG4PphNM+r%N?~EW*59prDTeX2w%k+j)O9
z{j|_ly?N0dJH$7lrALwE+c|VTzN55h`LcHuZNFuWA0BpDK5t2GxK-CwXGgkq{fF4)
zM>g2!&&bIN^e+}k&wq>cG49u{ngd?29{xqr|DOe@CJ6vVA^}S9<~w!OOv;~?E1s#1
z#fpC<{S$r-r};(+;FREi1nS$X?jK1%{}KkrCg&s8H-YVe1ooI$$drE6M7GG{CRemW
z8-RKwav~HbU_qfa;Jc*3A&<yAQun#vFfd%vEZY%H>l4Jo{maWLdYkv;>=gu@ovmMM
z_tI`GNc}obtH89@Yj=?T6blyzc$RQzCJy*w1}>lWs<2%TXLLvtJ5a!C|KY-^#dM!v
z=7#g2;Of#qkQAl1XTbH5I64bYMiWG)w7hF%O>abO{i2?o{MC^*wsQ`#>D|TfU5j`Q
z+YT&k<AtPr+QctS^xC~)_YtNJbbCD^DemZ&dwrUQP~jOY+==}%RIp{5IbKA-PHU^_
zwc7Y(24bX5GXXcKwo=T^IR(Q&KrkQbPcT2gzQ06df>)Uu!AVjCs!WikZlk%agpG7}
zRC4gdxqoU~7k(TVkrlNcntX`1Jk=vL6J5rEY99wN75E5uA9|0<U_)qKi3et{F|WoP
z)DY75OLGwzv1)WU7%hsA-Upi{C<-iI<|g)E$^2x>z|?~3>e2#K#X3Q0|KMTSLM0%W
z={W^fCX<k;0&_tWNy9Uoq9o1}3K!Lap`c=cU_)5>*J%x?cqRLm3c$LR05S{abM>gM
zDC}pdA;7wo1haa@FhOr-!ML8|G)`w;Zy^~blU(48KbHQdH`D`7(~#+B$aYxA&B58Q
zP<^-M#;4z28jQX6k>?M7oeB@9vwfk37gHf$gmgb9)9tJeL#9s=oW8Y~t^Vp>8hn|Y
zpQHh4Gp$ck*m6GfirGE;+jidJiGjRSz+`m;@cE~mDax{vvZ8{3tC!6WLAU@01kp#{
zeo%Hm7JW;qf<~eXRxh_JS5|6u>}&Yi1{Qnjllo`po9h?c9kGXNlp$vz^+|^Wv#W4V
zLhcHru$Zo}DYll5d)6_3fh$r3Q-IBIBKin3sZRPU34=S`d0mAec&MjDf;D0@%AhF&
zzHpZB1h<V-2<A)G@d?!@dCFsBHC-tRIT)p8viGI{2YC97+TZ-sOlr{vDS)=E)W0YN
zmF55ZmP$1nt6dI+55P3$ur3zm+mS72v^GV>DMw{@t!HEX=y#lfUrAzfjgch3|BPcK
z-D?wYg1-~?&6ppgEs9ToHC3$JzceH>xR5hgiL}O9E#$VvW%9YiI~W8KfC6vc_w)s#
z?h*`VfHng2JN(Q8vjD}6qKoe8(9zZXjNtEFwS0!4<M$1Too_g{#C|JEji#GA^1n)l
z7Mw0Mo`NzI_UB-mt0<uMI*^4TMJ2-l{w@m!*%)8VN&XTm<<CJ%-IC72lmaa!n#PW8
z&b`4TxRo@*nk&PrNp28~NjQ;if79eop3NQ)7!)^TwgU#mN8~9_fpmDwFw=}_YglBA
zCg+-iGk8c0;$iW>X@@zdz;DWw8WSNCY&|Xok;Z57<<1P=w+N#<UYYH{lM}W!fXOoj
zF=*fHoBc4+IPBj<f#ndsr1#0CzUT#T@W0*R8D36=o5hL&CdCkIQ?SX*{B5%?A3KCs
z)4knzd7MHtZA<Oq{*I>*J}=6i*{>Eyq{AqL4A55{o`B|Ud%!Z7^XWDX$8Ud#TM97@
z@;9jAz{3|geWSkG!=j}P``;0U_QW`u{3(#ZTnvtA6Il_23q`AyQpX#T36Q!2sTy@(
zm6E!6qR|jU!Xq$~!$avZ=M)DtI3w9=rzd*L2B?h5Re+jH@q+>C>Ehb_JjnLeuFhMb
zMdhNn1^Ijo)Rf_cE^zV(<b7tXBFMmpIB?O#DdyCcld@op@aXOzwU994yAz?hsnKE$
zwwNh?^{c4gJ87{QN$tQa<_jKz8>+a|_|*#N_e|(+J93Auj8~6VyYkGmRhkhnf|)lm
z<c;pRpSb|<k~E_|%3B5cZGBO3dKAgN!EP5lhvlc6kqo0E{RKlzP5zw~TFs5tHBYvL
zkj3tWqQ?E<8X1Lq*uMzuX!o_?CFM`68b8=-NHqyrMvRlAeu;R4ma4H`DUs)*eV^U2
z$!*_R;E5Dp!}7KC->_!rP*`=F$xXe&YZXq9CZBCzBxX+#L{UCRc3jAyK~GzW`E@6e
zkTbt$#v;4tJs-_>^D?@GgR`6d_Hv@6wp;lmf@x)67STg2s$6I!OUz5>Pq|lnp~l0>
zqEsi-4nI)j{gqyFWi6;ek(U@%Z;<{D|9ip>99T-qWOaMh*O3bLS;O(GjtQ6K@62pr
z-ZjDnfhV^yUl5kB!7Jo}=YF60(msKP9<L2r!Hc}9%$+`@1+H&pb1NozQEf&)9CtUO
zhbGvlcN|YwL3NyrcxR|(&KD_q-sd5iJ&`TndfM<nG7UG(FmAeJiPjt=$AzF4M{xvj
z*_?@=KN_zBSvN0SzD4VEqq1%U4o_ur`L>YHJnw?Ie<15b;j-y-=zs3+FJ?e^uM^3B
zQ?!ttMXkKUuWS(|s6D^UJr>=l2|;r&T;ZFf7JOMe_OIbyBiw<r4s*P?cq8bF=s;*2
zEmSyLyj--%K%eaWuGRT;Vzdk*2j{+YxZ!695`8b_5%%R<Yjvg+>I++{D^v;7_)4Y`
z#qRALb7-Jx=62FFSJ42a@5Vg$*B$P9*X2MaF#O9A?zG6iM<0g`bxf@Rmxj-O>B=fA
zi2W(c|0lPyK~Y)ueq>P^g-n9|U)%}`_Gqlj?WL=|)-T;kczwPNvkgpr=(JP$K<^cZ
zrXf1QOD|t&&&6#obnsSAaP}vZHb#ZINWdPeLvY9g`7gggikLW-Dv#SF<B$1kPM_bb
zuvYDiUUx_D-%g;LtZZDZmG#$Ml4TTsF$r6>|HfeD;P6Q3K@+5GsH){YJFW5`c&Wz+
zF|gxx`wc^XuRkD)&GQ}WH*aGRjB{9tdHsdl6n^N2J7ACc8PK8OWi*gWD$@4{Qw9Lh
z2kVS3lR#92zgBM}6X<Z_2OF}~WX9~lMZVbV#~BkRPXF!+d`Ma_=WTZaWDRk@jqq#X
z$+5*lQZQVIA3?I#uO@!y&!#pgMULz*+nn}_j2%@3gU~5Ks?ZXez)~dJ>59Rb5Jf2j
z#{ok)4FZ2I4m{M0oV!012g_848G2grMEt`dMy$h;_o9<z_@m=s{%|WH|HZ9fGTIeg
z036NV)s-lMM80mv<N~%=7syQ47NiaA?%Vka36WhLylD|bKMKfE)rH~hQF!AHBqskC
zw^A4lg`%XQ0FBDqtEKo=kR{x(0;ffl@`OT7Rctg!TsX}%VDKG7L;BB}Hj3o{z?!yF
zj7KX%hh439XeEO9QVit^Rzn4PF$yIPUgp8FL1Gc|d<d#qNL0+`{zK(d(r_D3c2ILJ
ze(ZGnlWU|PegoxQ&*vKB)d!4|aUgufo7+G4hV!2fc&9o#Z=r0no%gs8DZc?5+GNR)
z*PsHITYh$TySrfF-_Q;b0h(UVk9&W+IW)`1@*4t<+TDLypR24aA@-+L8>MPsm;YDv
zLHrkzu7jesuCph(s+N?*50P95WA$>?U`UQ|R6zD2{Xf|UV9Av-^k02$rT}{{vkP6<
z_PyNHyq5p5PEXLVNAW`DHlK0;9aevEg8&k6$6=G;Sx-ES!d?n+2PnNuZULu3e54q<
znLfL^`tQ!&U3qEx&mKS~3t-BtD5bg5;KS3^pF&1NO^P>E>i-$n7l7kHQ{pC=@|0Bz
z3{Az&1v-~573)>nm_|?;M-|QiHklE@kVFYvsA*~q;Y@5v2W4HV1#)q0w?Uy{C>mBz
z7C_@tgM_JEP=io}_7;p*(8ZJ115u=Lg+BBB#L`H|VA$p$S(+DRDh+|O+$tU__iJ6<
zTy5e|)!N>4Fh?fY=J}B5`xYg1r#rGMa0u>hE07C=KS8E@w--1v%F^$4&99A@AR!_y
zv2M1J9GmTXh(wRw(PXhffRh%)cI)Xj9G$1ZVdHH0k)am>ejA0*)OL>tAep>;*1O3c
z=edvXirQraj7jY~n+1Wd^FugeTU;H`&OA4REiecpao_x&hMjp<f5$rPaX~e*b5!&|
zW+Ffw=5PW+Su$s7@41{JHb)<-DR<`N4q=qUG&I?-;dJ^~!OT~^8jd0EXNJ(+wayGw
zq1Hw)yE-bYGl}N{$lsCZzc%ob$q{MSL#{z=dfI~w&i^zx%?U!}n%MRB19REy=Q87v
zM*!dLMMF^p{@rV>x=1TRMhn3%glOvWgPZrf$BiXVbvzh2bDc~*^f#DE+8E{eI9P&_
zqA?ZsMy~37iM3+9x}K%_t_8L??={!W<fx2P*zVwQ!ZJh@@q62wCkrq@+dI7?7@PS6
z_*?5cOxU%Kh%&@SQ*-<I!;DI@&M-?b_mhS3egq7UaFT(4ZH2OIk*-oBQ65?%<!&<!
z%@9%`Wj>XxtmH@`Sf2UtaWGt8y|-VzK77azAn50w4`OT{vxEI6ah~2593IB`CJ3>G
zbFuW{2EieEQ#&r0Wn?$p8urXqc$OGpG;YxXcjE>EL|E|0bc*bgS4Vm%B~3*abo-D(
z7^R*2d!bKKSFWLe$sG1oVnjA=nP1D%_a?@0UN_FYY)JWBR^wK)M~^k!i|pUP%>-45
zF)(tVr+jDp<n<pG7J;>@Z9>(uG(r@m7x&ON)()Cw76k69zMWg))I3Oe+q7yUwpIPm
zYbo4PCErl+q})uU?q|oB<hCw|_$^0!5VtbO9OSo)s`wg?F^3a!pc|9GIjzTO=3WHZ
z`>7I3)$4Csj^gW-nkOw4)W=9pa|q^+eqbLOi5+5?qIJG&<hWsta{Sij<@FFP#~6K<
z3|)u6OiH_oe_VzpGSc2bZg_~f8+o8vx}R-YNFrWWC8>t+b5h2WHu{uiGj+i3@iD}i
z&x3r|r2<UPP1}jk6yl-i*z1iChep>>%S>oT^!7o+c_6`Xld8hes`zL5G)qm(qlf$6
zx_sdCr`D3moBRD5eRa-c`qSTf$+%>{G?@UIED=C2`JcEYmA?{M{TengD-uW_6V)Ze
z5umMK(;rod#w~Ce^l_K!8_7MVkB!}BdK(N|mM=`n96No=SLtoA$(G-pD7u?kPD&r^
ztTwuXF28}T^HE~RgfN(V|18Vq5av=2;KM^f{|*|Dpy7eM7^Aaf4;1003^3q|A`e-J
zrINI7w8AazKR@4N`n)sE@bhm?{(!l9j;`yq1;ra3Xm_P>lJAR_l2k0+v5z$d#oUS1
zA6#?_TuiJqkTo%Y1G*O>mFQ5UFC{pL1ym=iY+RS1QWXmd8<P<|178GBI;b{<dr*m4
zbsvQq!5D<YaLAh{Xze&A(FNk5Wtb0{MdK(BrQmNRJ8}HTM#|gRyU@C9=~1+vrveT^
z6vsaDN<fK%>4#d$NSaO9^g3Yyns2ShEg1Yw@PU&Xb6G;0;a45-(fnZi8txyx&_x(q
zg}aqR_Q}!$aZ}eulTiqVuJn2WM-y50&<=hzVI~gm!#4&e&yK{0l@}>^mNhpBV+e-(
zAqikenerPmKRPkSndu+aDX@q^wSX?n7Gnst%u`27<mnayZY_>`Xdn>>t~&*sF6DU4
zIE8))yCNBRyq~Be^pJG*Jf8#ojD;wg7)i6j79!T#uuMUd!vQN{5*f@3HL1W&4eo|c
z7A&v{2^|tel{+&xh{Vytj#8NDF9}&O9$W;MHKe~{<);Ez#<jOwZwuL7-^0sAL3;5a
z2$}dq3cDaPr+zd{Y!QlKB*K5C$O9}hx5%qf4ok+sUPB11`Tq5yA}iRTTHMu>4uz*E
zeoar^Rbx0*W<J!4Y|!a9cgY<ixh&Cha$Gyz0hwZja?*oG`!{VvSU(#1!l0*b7b$|{
z{BZY=S4PzkPsfk1FBn4c4z&ZV0huIBhf-uvYu&zI`x%O#lVPmWb$yM)6O)Qq!}nIR
zBO0Xp>Bwm52%F52I^q`(Xa|$aCqA_`8p*I5qM6F#jTIcF;_WIjHLwRWK<`_~A37d-
z<1OiFhF|n8Rsz988#g!d?jHu0d>)tR#|Qlu2k`8rzJ~0sM2&3BOc;z-I@r)0^dQ8m
zkkPEi33|`Om3Ui7;ZP{6rv$!K5F2Ij5*ovED{<lIe*9SVCv&}aE|IIj@(4xWUE1^V
zQWb%VT{2)s<TGX2`&o(BkNh5nm5S9}EB`xj{W){HUNjb`-J|G}*tM2}V7oY{ql1Mh
z38%k<EV7<FdNRHsK%qJixFy^YmJNQG`=~SJ>SOAO{PhaY8W(#r5ksTDSMjwbX%pG3
zIHEDBN}1`LiOs)!P*mwFjn@lY*<R#Un?bU3ye$E_wSEF~kZ;fPAX*Jn-y}x($m4HT
zOvuV|nW7KKJh%YN#DJ%Ai!9u3^5+)0XR#~YxH~O|QCZ(#ST;ewuJ6T34WPnzLP}RB
z$B6{Hu9Hjh_^~zWSyH0Do4c5kDm|o|SpM3}&@q8wo2;$GqA=NQANGTi#j~r%rg^!K
zuyGJVOeXZmK!1+liBdF|{VEJ)@GNtJRf1`zSq7-5ON^~35csQPPnP{C>k34B0uZl3
zJ!OM2DhpWAKR}e%FG}(oR-ZRhU&r0QjXi(w$Y|Enn4$1^W$6LB6#}D#7z;T#sC52~
zE;3SArbU`u7|EPo*i0K4b3SZZEEBvgR{6yy^X~Zx%w%Yqq5JX2HQ#s#+{@=xTYnz^
z30z!$_cR7t6c8iN^fl}+8(A$`UYNThylk|x=ua|3M%@r!yE~_QHhdJj7)0C;;~ePl
z$+KDE0uF1^=cr=^`xT(+@tv3-wXjMeB~sSEWw9eM`H!-SyoB`d9v2_oK4abs7bVD0
z>5S`^SRKHaLEuBhIzpHeh#<|7o8IhIi(YYcqU{L8CXx;^Ehctyc?RUy2I4&9k2y)A
z0%#3H3OI+(!q370i)+(u!3aG{`$V)!Xcf+rnm|vrZ-sd8iI)t@i?o@*!@}GKD9s*3
zto5@`xnTnAf?f*o%nX~S(H@NZufFk$Fm74->X|Q66*&bSWYbDyUn&)i*Xu9H?Hbgk
zBklI2@AV0wb>tiQ;)G3|Quqb7mX7-i&ghsk+b(psZ@6U^9`wfLW?5j_@UU^$5n%qD
z)EYscO(rOjDl>ePg8`waV#INGP_CL9!J<aG9!{$YDAi6JZpvzhopk)jOX4r)BvS8Y
z=R8a!8o`LRk-?<9jpZw5S(KhGN#c_Uc`$vi)h6setRGn5FA^~gK*QDuJ(Tf1!S62~
z1vzAOt*m>Jjvz@J9-<c~Lf`-Om7NV^ohfUPcw+Qsr4)J%Ge@bBRQyeS-x*KTY@!_^
z(z-eCnDTI|rA<xsm6zLg#HxO-Mdr8JZ+3R|MKYwQOfPm6t(^mU5&G}FleVcGihJYl
zNgqc2xH_o`rR*8*wsrO?(rc5*kDD)cxQ^(P^qwXp3<%+u6M;*PV=lfB>IW1~`TFjl
zo;DLTJqe|)PSXAv8-J4%K`$UGCIOm;tANix9<wsaf3*!6;Q|@Hiauuc<iSX&!cCRh
zjQ9n$Ou>LMkSa+KtxD`az+xwz9KXJQ%IO=f47Hp2&!}8MX0oLj4e>xW`y@$tfr|w-
zGTzsh8$^Hx;QMn3&SGBKc6F5`0uVcY#u}H=x`=aLJi@3tQe)a|8#`BFUEcu+o2z6@
zJsVf*&r%P&3r-dELV|CKDBQq3gfpr9_kUvy*R+RasR6_17^HvsC4bGH*ERk(Vpuo>
zRh*f0P_|L3RF=;c9cMiRWUHDbm)f<W8H^6IAnB$0`8rMq?ozwH=FQ8u^oKHhT$a@9
zZCbjJZfQ2ljR|EKE<ev+N9UYzRGVqVr5+jai$F+SH5$F9)j%g@xEagU2t1D=EMy#}
zX2NK@@YmJV>v(@YxjC=iLctt&O#^blivh2WyG>5StfY!a*8pmbz(B~a0n&_{V)YSs
z2ZpM&#D=W#)Dl#!SXNd+a*)sr=8#0ZWQwm3bD*%*O1v~^rT#4{x)omMDS-7!=kj&o
z2z+M^U@1N~P!{7P4)<qRt#d1Yl2nlIy8=;NLyZwxQsGWS|N4%S9!$GB;r{}un0KBm
zLOO+$$Fg6SsPe0|dklCp3;dhRWKV8)<)Kd_`2r}*?4T>Gj2UorYfaWZFd4>tvjx2u
z!=a-9;-nMs>J8%I58Sb?dRrMgVE-Qg&~Te;_xZaaH@nb;-r9uC+|+O&w`f@Kew3L6
z1OKuk_Y)P1{CQWcmv0b)IhaNcE%_JU0RyajK241;2gS``%8SAnv(L~Um8^~9&HiYf
z3mjc{T;ueMfwe#8Zw8S7*9EeJp0;f^H=(<$5#97O|I0inc--5RTR(1w`!%pJ-JI30
z(wjo4ruyIiTo+EUDgGCG?-ZSh)^+Pv#kOtRw(X>1+qP{xso1L6Mx|ogwoyqcId9hb
zvDZ4^xjUCTt>rE^N!~H%9DR)bbTb1LUfcQ;`=H@~3$AQ@RPfx<YWu3JHXkESqo}C%
zKz@5(W9=94ufQ@>k8N^pm;^AtI)G3VaVm#V6ptuHq=R8o!vr<bf!r!g4OlRyt+kS2
zE(;<%{gyfnNUsbR@yI+_iKZA=Zrf8LSjJpw+NC38X!eK{AteV3`t+|mh=?FZEL2nx
zo*!d2Z{v90Io}vCzVKz1+!#?vY9~W>FYGf^%?7F(KrCIC=0O}%Y@m?3Dwbg4Cd@<!
zqi*bzB#fTv)DtohMj8G_4Pax5n~kS3ETV~0+8N-phVWZhBsGpfo6W9gnAe(&EIN~`
zkqN$I3b<$~^0M<ekw_%RReYZ5DnQ?e+7}i_!IR)we}6#@+H5bjU|W?hOn#5K134uL
ze}mC1i3&nS_eSWq6m@FWyqOsiPtvbJjwVi5?lf|^y!Ei~^;Bz(flm{6&=v4VPDlvC
zuS^-I8j@8cy9;OdReDPZ_K<gAJ0;PiDQTt@jcOkuD)P3TAMOXQ^Gj&t+l77R*?^+f
zH(5wrDYG(_)v_4)=5T^wMbz6bCl`|PLQqLG4Z=}de@diFc{vf=y9d{v+Vh^=855aG
z?KQ*=<7A;uA@xrh$;pXgkS;i|Ja(C*@WScfUL)P_<7kog4VEUVAbvCDN8#}`E;K3c
zw<08y3|aj_T-)cOaFb|lb$3tXI-!84H9*-ycmD{31zN-BNfHdR+@k6pRa>aR?zK5K
z9t3lS-9Xr#(tKT9y~gc+aN3F&dFc)+`PscQOF8;LmL+U_W$LD(N8XCv1OuiGCtq-n
z93#*V{$`6h@A14T=~gq-l-vgo)p`9g!AkWz!RBFmZ_(wN)S!b2{fo=3A3AL+;`(@E
zGuEO>!a{-_=$^`b{%ky0>coKb!YrbY8brxEMJhDJS8?qAQ@+%?5=G5X3w5qGL@pM`
zkwuo8asP`2M*SC|@gZm$ckM7&=cjiaA$N;YSbn{jyBI!|+u^w}X>eT~cB*-hRK%gK
z<*mKpH|v|sY1T~sU7h6KejF>@bT0BqERS_A9jGZSDyV(ZkC~j<D`M@6SeCs5{z36b
zMV&u9Qq@qX?;#oss~$Jfgv1(@X3_JpSYO99b8yA2q-9mq(ciN*^q!p@Lw4ltVs_%{
ze?bV#S2OpMyA)gGoJ!2njPOB!H<yGP@Rn7+G1F<Ll~l!DRXJJV_!X5sY>3L`tcl*c
zDPdP<rGh!`ubbqUI)faE$U67{$G0kW6Xct0bFna<JHfJdEWqF1&+i+oR}*@Ttj#BX
z!->Y3Xs+Sc>q{j2rf3WD;LgGEPTIC9mBW)P6p-sQ688uUynj~f<^(f!mR$RMr<_a9
zye?)EQn_@3sfSNR>SXG^l)drB$6ia?-9X$i;$%o7jpOiR??Z^=oJ}3Kv}W+fW}M0l
z7ckMYrXAC}H10=_<SqO^mz$tPft<AgLhi}`hmfnH@o6Qn`D^@(FtYWBQf^e5+C#B}
zS7vQ48~`A~W+J$FIUXz$jEn&-vg!T<SE{;Z;aj(}{n7D(>kbuyJ-Nw;N2HCq^hstL
z2|8ok6t`<BJ@)=dhyjdBO`(qRI4R6RkGPJPPPJ|BRsv5pR`Su?y}9oF8d!Vff%V?I
zb3tprwDLZG(EGAMlT~1D<83BfmkyZ!f+h{XadJA>G<m(T`9N30qH}}o_JKjz;(y1s
z1L(NGj+!mpE+uiYGG+VqCsPdBZ-9_?Gi-SOANMY$5MEUfoZx#Ck1%oFCxsSHgD{)C
zD~pZkr4i5lC|Xa(V)ALLo`3-`<K3}|JN<TjaIz_e%wFH)G)|nPm27Krr8-Ko#<3R>
z<s<x}(q98$LZ~BTf=&=R%VBob<mK(iI?ey(4>?WULy_np{mmcZ2JnYUjJ-KeHM(jr
z0RO-s4T6G_dJO~r@oz)-1L+=ppCRoCpCRpvfRJ`1KuCKwAf){+vR~*kr2UJfEcE||
zw6h`o9nuc=cSyU*ErIyS8B0ndk>+2)*G=WlRQiPf71E9}gz_2EKKXY@yZZkT(jM_w
zNc&hME#+rOyTe~0?el+!v~v!LeTK9L6MbS`&OJXv+CB4-0OQ|;j%RPEhW`#}XZ|as
zouGTrCa7mDjC9SVblE!Y8Q!Fa50sDQB32e6@8h`gW7-ts``*)wS?X85q)`y!?TN|X
zXyhw;|NK1KgrRf%1PHg5(Er)mqN*eb_&gT>A8uNLGHr9AdLn8z0s&O5SkPr9vQgSd
z0|X2}M6X1Vl#)ZId{5y%e*IqKvMETj$Yz(9+mrh^X0%9G>iLdh5HD7LdZlMIKIn)`
z4QYp6WBjkLqLkx-3HW4uG$A0edMx3jAfpgcsme9S`u46Mk7GkaVc%~63lDgH10!S7
z5TZlw%A5$->%2RT9-xf0`cn6cATgI^Rq0AF9u{9?3gGsSj|51eng{jzp()Z&F_fp{
zWCD<+yND8-vt+0TDMdC_lC270lO=<%S?6P_LJH~(Ul8pl-Xg^Ykdnl*#i>sIVBrC#
z0cddj^GZAoK;KTq3vQr=*Q3l<9Zwy1gp5>If6}ITeivv7p(v`MOz7o^uV?9wuAtj+
zJ{3liou$`3H;UMyi{%41@`FiD+wK6><p^cS1m7`)Gdk}ZhdzXKZ@|oxJ`b_jCJ(<O
zl_*7cZPDckWf9UCT-^%=<gnocw^Zvf^kjiz7+k^6fDj(~@?`D?x*?AT-dkaNApMWo
zh5r>WFP-nTmfU!zK)*6Q93Y8A9ER=@ay*IyvO6T$TgER2%u8QUh8Q9hwESogpltNd
zC%Uu-2yJ!PYsres)5s7*qZxk~GfK+>C2?d9&`80UX^`-RUMo#;7#+mh?B;!sQ;mT&
zp=Svevp@(L{&c&TX#~Gt(6l}bB-m*eF7m|~vS^cFgM)W+NXU$vClJBBh|^LO1p9`q
z{FUI?2(Y_EF+6Fmj~bw__xY<f#bYUS$kw>kf~wQ`j9S<vuj(1AE|@#&&Au1Vgp-9q
zd+HQsV@>>e=ORbNo9`<HF2Xa_MJm=u1b>8EjG1`4e(L*jZS)Q8GO(yE9<<xJ((J-N
zoSgXC-Q^))Ym7-1s=6MgW=Fm<RYsy@DHV7zGLzXbmn8vSMa$0x4^*cBeNV<LquRX9
zSpbce_)Z_mQ9o)=AZ%A4EZ|N5P7yYj&FlCwFIFJbOFDYT7BRu}H5W03HTrB!@8V)H
zK^*;euuqGF@y5-W)>bX6s%y)o096(qX>)L*W5*F^@R?QXa;X_#B15)1IF>^a>tqwU
zo)qClvv^i7=MIPCb}mr0rFE~po;58K^H27sVHJFg9yrhuE@{o(cyCj`IV<7mfTyeP
zYF$Lq71*OY8y;Vu&2p&EaI=Ga6ckJK=t}iqTLk`~%;VYq^tQxSQOxcbirr9(tk`Rb
z%1k>ACTnzmL45rqR3d6MZ}^CGI{M{Co22dHw41YIxX0p$)#EUb$+CTgqmuG#-e?Ia
zHe{=e$re_Co3tq%!@EBG1a0HiU}dOPv$5F1zz1D$g<>@fgtI}_jsyFT&XKT#3*;ld
zq*)3#KW9ZbYO)hCIcc@#C1+LXiun>oa2+8Ns7XhqOg>qOa&vm_E+lu~CMNJw+!$Ng
zTk^FR3$7*{cP+EmBABmkAz<^HfjR5v-<$A9XZF(;M5xY(EErw0z%w4}>*FdTO1<`G
zp(>=C#%_ZvJW~_ZK#sB$$8N5l-JFbwj9r9ijA6x%_CCUk>5<>AD8)qy9;~f4AGaTz
zIgf8Gg6YPe-ngT#SeoI((pH-rC}1rv2bbzb(9g+0a<|kaxa0fy|9STP;LC&R2i(IM
z0D<^F+4?k?SOI5WimHuWHef%byT>rL?9_HBpG@^q7QH<9flPvC-`}Q|D<>X!a}a9z
zC!1tT&--xbrEP&k>Fw9^oAEmyW}__RaN{23x69359?f2*V_&n&Vu22Z$SpWAs*4~~
zm_!aD3qgHqRE)<3|8*g4k?Gq^$O+SiBy@eVt1Z80Oue2L*Jo}xd3nMVTy)_hVVYBY
z*FZsb85eD<*dnq1ybO5O-RJ4iP`evxQDE4mLL9KeT&rnEtK2d}+XU<wj+m;jSV-ZR
zkb0`}WkLQjT}v?e^>yIYb9Fed=Fea><{?`*`_eLosvE=-_1gsYDnUHU>kyQd+XPNo
zBU>RXnH5HE+CPK=4v>oGTg(;y(0MjiMx1j-?FXy@L|Q4|2eS45Y?Dp#4N2F7(9_so
z3Z~N$PAodKe;Yu8&JMn5_h*p&B7Dn0YotUldDPk&nynr38|fDez}e@YB{ph`S*i{o
z=4_ELGU4nJY7q`*?$5Ad^^b8xjM2w>pr%n$Mt&hw0F9R?q0Mh?X4n$dL0X62F%i;F
zIe<Ve(aUQkRKy|UqneadG4z_dDx?Xc7>K!B0?VHUPu=0_tjBUh=aRLNS~B=%ERkVk
zI7CKi160YQC7g(=#%v80h+=@bs$YduLF*k&tg)~z1*c3+LA6KI^e&-&n6H|USV_`N
zWFca0e)u*<BR(R_2>Oh0=wQIvAREDe@tspaL~=Czq{3D!Tq+wZ(Fk!de?W)#N{Aur
zrY7yzm&=WOwpR;c=ictcsuu2t<)0n44EN0@BVr2*!f~)-d<=a(jI3D`e0<Q{KxJAL
ztZzQ9d|O5!Z9eqx=@Vb@r|#@gQ7Vfq?U^*?*A=JK5wmmO9}OB+Q*4W8R6)_N<HWPX
z7^}PdMutLdW&)sXD=cfibvy{N#;(JS*Np7(gb*;x#Nk~}kE8eT-HMLyZb!uTf%w1K
zYAWh%T*A!VS@eY|!Ady0`gU{tWU8-!nlF;t-8tALN&&(}wYtf4A0*O^PPp3S<-t8s
z9*2?Y)w+s#-0aU1#t)1<$$WIDpNLD5t-{wq!X2P4Ss7cVT8R;QymqP7qeOmu_%OzU
zNlBO-HNd0fPlnnF<Tj=9a)|8sy=&q~v1_sdU(IDnmwFRH&6eUYrsXE+*7cC(%!jO_
zObA+QVP#TlUb&Lci5Ai%(@C+Z+qnqC?g8y*NbR?hMQe6l)GCO0NdgK;i9g(wPs@eB
zFubYQi*p`1RDVz*e0_V^jE<UO@@YCQ{9frr3;rsf;d%<6`th%-f3RQ6Rs>YNCSX+k
zpO)M-<>f?WKXJ4%s%y6M3<y43wHSf%^%Rj(hzeBID$8h!kdY#Y@Oi%+lSYSE2V<?n
zE*{S?M^@I^%0#+2nD>mnw`KE$HB~%nT027TctWPls(58lOS)P#wboY8k^u!l=+!K#
zv$v?nQ^KO*)0Dx~*exl9gB14-2_>h@qD3#b7{c2<2{|S~%(N+67%HYV9Xx@;#c&;@
z;$xn7V~O%oMNFEaMGXx>Sovq7tYbVsTpXUBnJfzqZEb8F{5Jf04<fh?EMQdNEOoVc
zgJT<U@g#4>;q`G@-NI-JWddtd7q}H5Nb8O$f{;!!g0w+(L}u2xOhId{%Oy?4W^QeN
zgs3zQAu3^j2@Q+(4TQ_)@&qk5VXS_j_yg7w#AqCXhX~RCk<lfDOM4ji8pLr$d^Y08
z2szXQ_Fm|M(CSiYzMD*8mX^Xj#l?+@Q^eXZW}0_YK795$-qs&{itm)i1BAmtF;B7r
zK0u)$mrrQ2%VefAqEXi42B73eHT75#r}#33HQg%bB%$m#7A;G>nb1MkN$9M)7S+zn
zYFKgt>2RbPc(@$JfA0HgzjL?;a&!r_tPSP!NwM6u8Eo3@!mipMmJpNCqNG`L6roue
zM7xW)HwOZla8Qiqksp0)OewU%&I*c;NEE|}n(dFBw3`g@^-ldWtud6n+Q=;Y9ur@Q
zy(=yo3)->^uVe8bykzYD+pz;%+oYq=+1kxP2n+oYCaE)ZEmUH!S_Ks>Cx+~4;p7{B
z)y$%%&^1xWCy)-PA91VCS(F)$e{v*t)H@EybHR|4FWj16#%<n7!=*CS7k-ZHrXV30
zNpf+Ht};Wdc*^Q~YX7)-qUu^{{U&z0s;oi~=X`n4HA3cDZ_p*o@GAk^KzM^-Z$j=H
zb=@2Ux`0ip{VCIn36``R6D7M$(YzZGG7J3tio`_vE>8c>8tPJ_r9vwaPO|ANUUEnI
z<9kasd^i038F&7Viw7B$MruV9(L3AK^Ejyl`|=_Q_npX_2y`%T$*F|W7=mYbN9`M9
zY_O>seqWdZ#gW){=Ne|O_DiXo*l3b@*taSx3K;o^yuC51niIMmZ*b3}@ZUJn_=}Cf
z<m-+(<!1zqR*}~qmZx#AK8{PYdJkiB9o=RBMoO}wH0QnpI^h)n(G44*8ynj?(K{MD
zd)S*e(F@9bqu0~3u(fd3(*snZPGX<!8V5q?m1kstlf_q?X)+tPr#f)40_y^la?)~^
z%>oFNtXR;&M1q-%mkT!v@#F@+pC1a$TW`#}s3bOSr)Ni9L2jd75?T4&Z9Z$;9(yk@
zC&#P4;RbbR9MWaeD6Tf}lkaDF8(-%jJLj?2VAvvS-oZP5U++A!d%xj%{U-kvhcDO|
z*3OA%s6TPY)!tvw{}|?pVQGD;$pOa}3hQXd(YWRr_MzGkV#Aw#p<(~(>7T#Rrl)E*
zlGcPB-(bT&5@e%&!1Jr4Dihgxq}vJ{y2r8woagT2Vx|v{9Khy%d^`b}@>$^Mh(Vlt
zxR~;^YFRFIeC|b)zmVtl<eFM+gcHZ(j?-=T@V}!jQqeK1#5)D6NJH1tTHE2N`KCC{
z#Jm+=(8^Dd+-XKBYaqxn3{5};O6WxP3r9(tft+SZfCHRHQ3OMb)v=qg0Z24Wq*$NC
zFoD%cw0|r);y`2MHjw$8VJT=FAwfB%>e_#uadO=AJe!fYY;h@E0A1j!oFPvgk2#~g
z&>j6JZfU$^2nNw&9&{!{zmap5x#9I)q@*Nh#9-8&TLi^;K=Quv32)htd)9m6>hKvP
zEh-$DwDsq&Or%cRN?ub6mXWmKgxwhIVYV*OE+{P(ohC$``GX9U-h6Cqk?!b$bevjB
z2?}~tBi_WQWT`Jr1YiZ}kGv)p2tf~y!9=3d%ueg=AHm1Q_X4PNgyh8RUazP%h2}pr
zNaz<BqJz4<nqw}`CcKVYQYw3MxH{F|SvO(FqYFmFJ89$MuF<{YzW6~Wp4{6a_JFl1
zCMUUsUnNPB1%qTj{Yj}gQUI4sfz*u84i%^s6)1k=`#DzBvYa6${df`=wLMl!se#61
zT%G=N9|tALm<u)Ou!UW45``{^74O$=m?UKC<ZVINbVI>takmdLib#StR{|*NP<?B<
zGMa%&h+>jTU${~xtuTV4%cLU~UqosHO+CQ_6*P|1%$z;$?F8s14~TF1G6}vdpZqO8
zrTOL34e`sr1SE3dHiHMi^;HgV!~&KY{!uo<67-*AmK@cqzn824FV+gBcEg!Rxz!Gx
z@>wMzED|7If)33bxu0K4e?YO-%XYMVK3Q4#H7$xK!a%av?KZP8xzQ2AZOK;#)CO2u
z12NS%<m^C4d}>Iwo-`#60t--fDIk(~f@9+IPT*k;ffext2B?0a=E%@Z{`CF0-idp9
zekirV<KNkPU?nLq>9o@ccR!G&V>r(Jl}b6pP>wcDeJT{fL)Tbfiv32~8Jbxx2nX6_
z0+qacY(`Y>GukMWtEu86-A1;mfSD3}m3L-BjuK*4(&F!RsD6*db`0UstTOum_t~N^
z(#<+6@%+eKOb;`E>qoJ=5veZe!$!xVT^m=Ec4J`Z6hfPINtV#Zk(f)@5L?i1(Fl$&
zz1z+D9-_hDIyGB6Lz5k_chu_ID{mTKG)D1_)*uu#_K$f+5dMfiVa9h9#dPASmNE?i
zw9VfuFp(%031_`oAUBq1q;70<nwuktrW}L9T;h=?>7dZ-*ML7bRrlKXU718b&r>{*
zs=za=4Af8bP*eI-w!v@Lc6$hi7NIP@x45^j4B>CfqC?*>P?k51Kax!mia0p@YU808
z8Sc{Fb7taKrX4J3Xy1tB8BIcmZ&kH1fbVE@gt8CCn5%9Pl%GTF0zWCNZj5w;6{ceK
z-!TLQ5sM@GjCP6cVj@X8qY671Acc@KHN6u|A+!&S{Gol(4#>>fsp7%*l%*qSBsuI?
zE3yC-)=I*00EKnyc2d4$Tb8WqB6uFK&8+@n^3CaBRP%}}JK}L9b9;x=b6~Z3$#`Qs
zBGa35g~L;oRfO`o6c}}8aBTc(;b;`(dXFO(K2c3*@sR{XiwLC@>j~VSlaAKlts&=n
zX9dTc`^ts3T#49L8@Bf>?rKS<hk&MtMwPgcO1d?`FFW9uLm#H#WDjsv33f2kr1Lj9
zR2w$BpR213@Ff_RWdj>`h1eMU6(h=QUAMXzlZLf$5=D<<!t4VTBo+Hb#d8L)Fx+I^
zU{BF!XK`~~(LrBnrJNpOUO+d&qqj%`3tc6#J3Vrj{q9TRd2Ktro}Rt;w^e5AZY!#L
z$I917PB)ylc}lo{rl>q6204{)D{<IE&iVAk#zZ^zEWb3O)ONgxeuzc7+FuK4vYy7s
zncqA!`-R0QK||MP+kF#by9zkXhpffTb-;ze*K9Du;5M2ZpU|tN3euef-+NHNjUjHn
z%aG)1b{fEX-I{X+V_)Sf7Zh#Xt|E#l@6Tq5#EUyt)O#8%P4;S5E(n4Ku^IPYUh6-T
zc;ImH)#5n1*cgCqd!orGQAYkf*NrV|B3{&=bnm(pmPTH(WqI_4`|4QBhFd5$=XEIe
z&%aKI&`efuVZh~@1vn|N{@<s>KknB5(`h7oTLEwyJ=TF+CV`BG!bntFW)iWJ#S{-}
zggTG)0BHBBHokR?_T5gGA=FfF_IMpfK1J|D;#98;*?XH$=~sKpyg3E<!g76_6(W7b
zJB@e5qEF<BTL}!Hxb4+vL1XomANt?zY`eYt&#ZDow-`FRNKfK){J0KDUM^f*L1%u&
zjL-$cmCVdhwq`eP?>pbyv<$SIXjyjHN9<8tb_n!c?OvHW&l#cvb5w8T#@2kw&B*|{
znI(I;4_v&bqm_KTxRzgZHJ`}-(bies%o8t*ubmCt6yuNdQac)->>xCn{QHn>23^ww
zU%_8~qfT`DZ$QPEU`x^S5A!&1l51`DluLA+n5-@EGEVn#YML8SiD@iGU?0qe^(5t%
zgiEX`=JrD(HsPwMf(03kf!OwV!8(bD&?VCKP#SfcZS`e~#qm*+<fp2n+t)SZtl$NQ
z?HY!G8xc~=BcmR4Rr|x*zyT<OS8a{PsgQSQr?Go<bsdp&+7|lh-XsmXA^NJZgPG`P
zBh*`BQp)-E4!%_Z{diR0CeSE@a*Jwv%8N)F#QKy985(M=sq|}9WmA|anX6&LKpSWx
zW;lyjIh}EI7ATpLC>0Ds5-s?nt4%3G_M@a|T4~%9D=d0cv9Om8RpXK8`bp%QntKIm
z$tWli_0pA><`9WSlLM?+@=cN5-mfUN%~q`0sNrNGRA?-$vz8Tj;9I3F;Lw4_zBR9G
zM_RMp=lGfin+=<KJW{_x|5H_ga_*V;1AOez0jkQsFDOa5zb>f%2B1yWVwm)hpoXn>
zBvs^o0vjabA*=zIa5?gQ(1y?ZX`%!`=r#Ijo46pgaPujtc-iH~*b%7wQH&bt3h`+5
zFJ}2ObD1*O+Nj9`qh_%ew1cxtQ6wpsuZTtSVIjzha6s5tusdr%)!_m9`1<<f_ZC_k
z*NyGlzY_)@Unci6|Bf(Gb$dg9hIc84L5!eWl>y^YID~`GxdIK=H=`;a%`|b~FBlq@
zmwskkR6o{Wxhku(wx%fnhBms7_#*i9%bo+G13bE|7K?^u84<urI)oQ@pO?|peTA5_
zdLXgXC5CT!7K#La7!;RPwp03M?O}}9bbka^LMme5GnD~G7|>K*iMlRxfrbs`(N5K!
z5MAJB|GikRkW{BXdY|L_SIN})qBV*Y8-ob25t7wIfnAI`5@Jcj861ah(IGIVcCr<u
zNECpc5}g%%V~a_8_JeK}a5ph!pAqU14yKy!fC2B*MHcS9{_Kp53_kSmM<@e2R?kF<
zx5F84DC3Sa3s@gQQL_kTAo&gVn-`WC>9vfb&>&zfizjXtrXK}<G7VSA0FGufwJImn
znub?aM;cpcpHj(mS))4&da0L6x&@)MZ4Ra*n+TLLoLcNi!RFEkS5%#uJcC3|K|{o1
z_co#RXSj00v<ptP1(K3_X6$d#OoLrIe$;1ydJ4DflNtexDtU2$nsOY>*?!rKkP?k$
z9!h3C8s5>q8Pa<vvP5l@pGvmPPrcbu=z)o%!>;i-eOsyjaes86y)<4w=C8`%it^!j
z;jwu{oetewVKV$BqlW+_!;Aj?mZ#T@EemnFQ>h)!o(FVnw((bHeX!QE*YK&Plac9%
zOcbjfgP?@Ln4_)x+H>An!Vv8Fj}d$Th?B(LbKJjY#2c|wrMu!=HZvj<$5(<64%!UL
z9NYs+K0h)J>G}%imKn)}em#|+Ya)^=g&t99eaKucTE}03uQva1Xq(Ti!)fXw%C~+O
zkH8(NEbt|?Y&<2aK=-d;wM+M3yQ3yN60lfEXED?@=f)1O?;~y@)s>o!6yxC5Yw;J-
z#r6V-85hD0a6)%U-(t*1#+uJ`HYLwet|KK$MTa!WeTFm#=t<gdxAQ^{?v9MGAtIzQ
zR2_X!P7QCU^>Qle%~ti@>^it;bx*wJYAEfTW$t2k%9G+gmg@eERb34I<`w{`SKR-g
zf_~O3;OkQb{V!(W|CB8E$^R|c|68*Ef0b;X**g%D@nzTZ*xi@!E7pgpf_G9UT)ihK
z^wM)wR=<#JcdjrittMhJ{xH)ncJ_e~hR}|+?bz%E)rixv*Nx!$Z7D<E_MR{TzmwdF
zUMu~sFm;#|`MC|yJog%nOPouROP}8|wrNHyW;Z0sMWOsu2<?zb6=M!*bs^=Cmu&LE
zVF1s=J^OrFCvI~OQJx)NJW^L2`skOCvYCpkGTko~i=74l?rLptHgK`3(QLR!{)IJ2
zKWN-~synMBHP+6#_XZG@ht0VMGhH+M1Q*1FyeVq|ZtZ%Fn+JKddOtN;3JR)K&ONFX
zY)}00ub?2b)T!_Ab_66;CTgR<iz}msYQ0@5e&t#OZFF6nHo6yI$##@<&M;1JhnC9m
zz3UCU1OM}qC7t#+0|gZ9IpBu<Hy7!%Xcc4tHCwIW^~pf~05Fg%^3vBUGB4095NQTb
z#3eyE9LcG1LunYyBVyZrB@4`Yz`R~_pBhM}&an)Ekfi?X*y44kKlw6j@kp_JAr-)R
zIY61VQm9#sv($!U{X?-l9!)~ZU^hm`@35Z<HSahm&>3>m8U`|oBCT<Wd-*FiEZEgn
z4A?;2cB$1cyA?DK-bxp6(VNT=Ac{jFQObb092AjBt4_}7b53g%o<ZZBm!~EZD3f-Y
z3z2EZM2bi*S2&UBD4HBPTY>lvu_9(%USvNt4`na=QGyLB%>wM8rZPQ5ybjfm8bcdA
zD&jd}h*by(<G_#9C~{+2DrX2Ug}N9gJ!&^@`Z|PG5KmJm@?}pTQRI$^3fgG^8r^iR
z;ToRYe#YXOGu`(_ZbO+N8<P)v`?+*mo}TyP6iIHT5_zN}JAgUkOFc*|zUL*3!~1nV
zG{m|SIY)?nWL>!G-pk(TLiy46Bk#?FqlhphOW*Wd!ogzfXnOlT&Kok_XEVCr<Ip~C
zYz>G&O<$g(&cYZvrWsO{$mziRotPYUtg#59_dXySrY@JA$j~ftTK5p*mTE6czDAc~
z(DvvNqRjS|JDp@(;Ra?mdC!ySaO_w|5&^SVyRt$yeKqU5M*?8v7cpy0=_2ig#F-0^
z6xK3Ayy-kyr>VHR)y#1`mG$Ndw;Ajk(Yn3(ZYFj7&Mg-$<nZNyNjfuAV9+=M*yor^
z)d~9vK3Kp-QMPCqoNCXAMPwau*T3Z0pX|4qT`1Ri@itE?<?HuxBp@0sI3*9WBrYI}
zJ(4MD?WRj-@rkg^Ijn0NpFM~rhze;%t!#wl91R>cghvoffTs8sXa5lvtzCMp23<oy
zAQh3aXRt=m!GG}dPcy)PTe3<&R5F;IX^OELI`pPXQW^b?6T7pjk;p2I2MY}&XLsj4
z|3nfCnxeF28c4Si<e<zj;vDfMnwj-`Rw9`+G!zIlm2VXgXbUK)-3Nu)LfT;+G+1&s
z>nhyshZE5e_VB{>G>!R-&9GEIa#a+I?095}smWOLvJu82l+6$6obUdN;_UR2<F_qa
zpp@r6P(joU1a<oQeXokJ0!cNAg#bg`wV#?J$IJY@(kwc4le>y@B`h1%ErUEok80)K
z&hegf(_G(8`F!mbjKugD6CQS-+V4iFh~~?{ikNNvPETC?u2lY>RIpC41_ubWF`mlu
z%@%K^op*%uMUs@stBgF=$REL%jOU}_w)hcnx>*htha$!6)&QU@gsTF453tJ;FRO&A
z#RaV13^>ZiGssUtAMpI;>+o&!1cks9*?O(XRGR*TFLiPy@nKnAVXQOzBMi%Q$K^pM
zHF0-?w5*I2Eu6qt`sRHdZ?#)$_&F*{It|$FA^sPCLMg!P43<~4A*8x()vfGQ%7Ta|
ze3j2)yks{l)hH<+BS3s-zP;oKe(&umyB#Q9g{77<q*9QWSv`*y(UaX<7#fW*5M;Nm
zT#cWPJl<}+0%gN&__Ef~wD94jnbDT?_D4)_poGjkIkNTA9Ncr3H*nh;<|?f4>2)>R
zHsBUpR%Wox-lq_cIorx9)bwa|``rBTf_4i|ya!j~XSETv_=yNYY%a$%6CLUfA}ecx
zs>`)6doG9p2dW?8XlT1oQU7@Ls3Jt|b99bwhP2q+0+}=vV!e*;{g{A-cjN%m-iYt7
z8GAuwm~3tw?pVeZ`<;ob+9%lRiWjiZKW@KT+sHB^ei*S1K1xgW9N=jx<LvEK9~Vn3
zg<R7bC;#Ln_n(_`s#t(_N;wqaG;L5xwQcRT$dTv!b^_dw{fcIlo@W&ZK4v$u5xi8x
zM~6|Tq==aiZHTje0%&_RWW9M?XPV~RO`PTH8GFrvxn7Iwa7^8u=T@&$XK@Fa15s#!
z8l-f_c^2pcY%)k?GKLWkpXxUJTY@rjfn3S!aO~acg*9Vz4Bpp=)*tUY>yNLT>@kNA
z@8*odv{qkGV@Eua)ACDenUomYU6Y!muEaQx*|h)Ic1$)NGrej42&W}KSawIkjcGf>
z4w$3)>Z0ikJXTY52>aevG?RQ64N>)a_?}G3rj@By>~vP;%Cugq;5cf=p7_Og<HCAP
zOcCj<iqcbTg>DsGIF+%PmW2MfMx4E4R7vSA^5Sf7Ou2a9*KPgO_vIx(q<qbOpw-cF
z;-JyStDZb9HH8d4M1Oe!RML6veR{)!>JCkuWUn@?uh*Yl-?ulP<m3vYo!aWYsA^{i
zunG(RB)N997<360{2~pV^hO>+DS=c)F*JgKbkZENQ_PQdQp>trN2_6d4}FS<aejhP
z4PAi}nxkn@sZ5=)Y318ltJm>ey_|1z*JiUsdux7Sy!Wef?iJ=1jhvR*Rki%V<@MnT
zlB$i5c*wuiQ_rXR#d5%7R}gS_{(Dg!aBqr82>+EtnWA!KwI%_`(d{v`@8%dHPejtJ
zK`0}tH430PAZaVc3Dc0?GcIqWc3qP6@%uATqp}7W;s_>Px#D5B+4;xeYr-kKCJ*1Y
zbkVfB_!9nQa#BjVYP7X3)z$Gn0wE-E8d{9=WUwfHnlju$QIP5~MXYQYy3P2mp7s|8
zx2d@I-$(dYwKcVbsyXqmws1eHf<{5}@f6(pF$7hs1H1Y-=S5h;<X8>G?dY)0gE8+3
zmdOoz%W`~nu>KU)g}P&@UU4U<YKb2hJ9_y0)_R#B=mz@$MYgr9YAq{D58ef1wSc?N
zYin8`iU3+v8Z7HFxR(1oB&~;N-MQ&(l~m8il&;kG`CbN5n$D{PD+DC>HLfZEuUo4I
z17)TD4eKx(COC}e6^VWssKh{UOBrGgv}lD(j@?Qlen1kV78)W61R^oa0<$5|y?gio
z%Fz}75SoIyfV2kL4vREPG<(xayVF;~u)@AyxS1r9b*vB-w7&x|^0({0WujA7L;0!*
z;C1V1XbSysWZ@UxU|faS(dpOEI1oWD*~)X*2aNokl(HMjiVkG`V(W1VqFpETunP)s
zG=k5rH!XhhI=?y7R`=KcEHjpiLCq?1hNZc)hLu#~n5d(~NP!re4jAQB(i(>x`MIzz
z38zf{Ir4Y;t<pL!TuNl}B<Vdh8_sEdcsE8<Iw;EsbO;#v?^v2<C7MHg_fRsFT<Ja0
zag&yi>I9%LAkU`n==5rZ7&5|Z)K~jcvES^S-mHrtuf=1!*2<3rXI#9-T4-~@T?S~s
z%aDE7Gs!+!q-6&~tEA8!kM$>Tn;Mf(f}FPF%6aja)}Y>)K0@fR7k@?GAA_*v)763R
zt6-|GFR9o@d(Y*{JmDXZ3F6K~Ra&md#I$yEnvS8r0(+dETfrUce`faL!fP1YhVTMz
z<uO6h+n!cgjH9-#xacd$@R&>jsiblPj)6kSks`EHCM|CtPM!Q{ct*FA?ker=aNE+G
z+&6FZqLuFkTc~4mo*9n?5}Q}JZb(}r)WM!m?31gsowhfw(Yk|XuX=gs4k;BdNs+(J
zHY;esxBZD+0A)#PWve*bGrR0?tHP(|tRqS73e-ecs<>Fuw=%jsGnYT({}byTlcn9;
z3dZHeHDs8SckS!`N7OXOOAm5&Pko1OA)`@Rt!7P|iqd?ii!8l|)pZpoIJ|CSox7(0
zmgdzjb>5}W$Hm$hd@?;qPHHYqCKAv%b9vjz_c-!@vuk%)$4@c<YUeuO`#)5-go=v7
zXJ(>JbRQJJh7x+^6S++XH2}VBu?&f93`5nirfDX)mN>|`<!eF?K6WzoMEdd7I2^nE
zXfS>Zh%R?`SQ$XC5i3=PlMpAc%C|B0QD%+)8gP+C7(Gn^*}%M*gxXKbNHDNnJ{Ztq
zUS5<o(=P9Lv|eAee#Yq&eh0ry$^0Z@f6?CY>jO3Ql(3R2WS4|MHq~UyNWcmR&H@$x
zpKtt5R$k;Az-s0i0AKTO4Hs}$Nh$#1uKu>K7ONT9Wqlr3dW_;Kqct4KB3+w0#Zshf
zatby8HwvmMVt<{h+E=s-I$58dcT;rhURTr&oqhfE6_2Zl^YLBi^m@yYlSj#ZcdmeM
zlodJNhNP>~qbKdD(a^{sgmw0%vFKcN1~??Y2?K0;VN2uZl9K}g#(Hu6rL?pwS(iUL
zdLM5OFSn;qJZjVRbTam1^H@6i^SnEtsDVV4#tP7eLXiSwC^UuGZ*sq2n5eLLLH3bR
z36{mWNwUq!Q-B<pQWrrfO^8sF6El*z%Pe&n1-C<fkqczKm^KB&mIQOi2PZwiHS<uC
zj>-g=bG*tiClbmN-2|doJ?5Cp$~uxJr8k%^YF5w%42MuiswM;j(-Mw4p-M-X&&FKh
zK>YEzUx34*Ay@~0M|V3M@2wN|X6t=4-Tp1Tqy?Dypz1DPGJ$yg_yPlIP4Ae4;LzPZ
zg9|cQjXO?oi-`7vOWUqpV?z5%ZKQ4NH6#i~hv(TTSc9wY9uD>~ro+Ave1gY~cnVS&
z8nCFup@%~scrDj=F1o?74D&eAAJB$R5PiWb;C>~e<7H5=+nXWQ+O_#U39o-@boACF
zM4=7L>}9b<1secogRd&(=8EznfvIn}V~JP}av0DP9D+|ZQ3r)vR7b1@YILArV{Vuo
zqzapCyrvvjl5pl_$%`Z&P_5!VdC}kH(pg?8<kQ7>3#{D=we|)1ycZU=v?mhat@nYA
zq{yAqKdq>w6(Q9OLe@u2Z63~nck9E7F;`@y`|8yqckphJ19AJl(U+0ZPsFdJRNj4o
zZJ{{N^zEp~Za-sPby>Qp=(jnG)SU=Kt1O9!r0d=usM=Y&H^$fZ6iLBtVvI|lV;O#K
z_&S?)Fd!c+hR0UyP#+2Dgr9>@^QZ}|jRwwT*+tQ2<`&xMr_aw{`n;j8=xY6}q8(@)
z$wYAqbM3@J2uX-dq+pPv)l{o)6{aM+O>jn<k2x1Em{&04V70~AAS9)!_S~yzPvzsi
zjew?{p-#mJGpB!KOds_pnNB&|r~A`j)m7&YS3B&FAfNTRi!gFlSt~M({y~F<Tq_+F
zs9%5_6tIavMqFx4_KW7;QdGdl7+4jT=7mGYOXLCNZ=E!H(qFsUVWLsRcj`(KiJsv&
zVUw)a=;9fkSR`0UO~vO`Go<Ahy*YlD`yj(7)-Bw*SUXD7U68l(NNnMZ=l=0%4J-e>
zKsp}z+Z|FgJ7yz(06y@hz><WS>oAWCTyl1M#~~KLz{AGis*J{73fc`Z@`}}xazeEF
z;yWv=f#BU|5*BF3L7hp2lUmxw!Hk;7+tW;#LzpT<&y^c3ctljtL|T7Qos_@qb~=^%
z@OqD0RzqIJ{2R{+&hf&`CE1|1`?cfY)vY=+Ifc?N^%>tuiNqZ#c@4vlBRSEQVh3mn
zyb5?sLf)2{U?NsCJO#1q%az;<BD+O;-v`%lRnlJ768p>bprS{9c4JUme%m{y8bJht
z4L?jKv8<HZEX$~>*Lae4ye>9R0tvBp4(Q8}nX2Rq51VgWTN~qek{}l|k2vrgs`yF0
z?zF@(toYFjdsyJ4v%-c!zmC)W9M2p)FYoJ#w+jZUhc>D9HuwG;1>2-x-xO-gx00iR
zawo0b?{b>Rzb{U2ntq>1<D@!LT(mZLMZz&NzQb2<Ky`WZT%IpF{CT!C`}mg_GHX!h
zZV4E6eG>Ih{x$3Z9F)?3N8L|2eggHLJR`X$$ubmqB|DBAE0G}AWJr>MCa08A?Z=}*
zv3e!{Ja+vYC9!CVNBA6ap>hTF$B5hIx*|?SK~vaZ#5o+%Os*YI93tevbAnXo8-gAr
z_Ah#bzsQ5MfRaHkXUVPQHJqR0FE5Ra+38(B^2!h3b9A-?U4j|G3&V}O-krmUwyeUF
zfdrMz^bsE8aP99iv~F78tgPaBBFj0j4CX*0th04D>dHrvf$iVdaKo$)vyrJtt*jD9
zgY&oN?F<d#ZfkqC3kTDx1!w0xdO8J@Z>^TS;xHDvO_eP1zBD4*ng4K@^8DpoG0`4Q
zDnF^5deh}UhorRXFkcOBl)rJ6w0LY!rCv?((=`7wB5#?$6?Foa+5(c9=*9;O5a^th
zdE)|0%GOF$l`2pHr9cFs9xb)M&fEkfm?n~(hc!ramNOP*sl(Kr?OfGejltD<mj4Z4
zs3_3b0ckTuRgO!#3#61Q&L##@{?b*b9iUA*u2p6Qm@;UqqoBnI0Khl|b{2gSDMp5Z
z&>`Q`dSbA?iUxrnJz@Qqqv96<*~ys|m4#@s^|X?{ful~jO0N(Lt4fSah5;?5CW2@p
z26vc+2_WlU2bGd(hf*P5V_?pgMJ=!hC7X`Axd@PTzbf;pN^HNU*$w4L5IDNOQiW=$
zuqC5VWbbJxrz8IzAxQ?ate0%wc$bdPFT^7?!@!wO$ZlZ$>4syM5aZoi^G%DdD&2r%
z(6wPikK*;gVs}8P#ZK5iE9~y$+g;PeI)f)};HC7FVFw$=s|vsN+c;CN6<gK@kN;B6
z9dB$y&p$75pN>LzeZYoODcpa2lE?}E&C{>`-^j`%3Mv(xUt>+Bl{HEcF-9cVj{aJz
zs=*LdIjW3N%cK!kOIzoLFwe!KVGTt3W@fn_-#4=R!cnslYw$qLiE)QH>DhJ@4kV^T
zCGn~Hq-?*CgP2bKbOpvvtpX9$1*s$D=!0O&jL%N$+qQ;3Ki%DZar1t&_&L>ceRqqb
z-CW|)#MV2C>|`G*<W{7uJV{A~3PU9aBY`mD&nkU_wB?X1B;{cP_w`1C)4myH%0Y6T
z3>C*gDOJTPF-k*%!onomF0brYpaam93J=iiewHdw>M`OjPhujEwZ7_b8$o#hgXn0k
zxs=j8GPHMIB>1C9vTTzbC-QOqY?U>oCip3>NJLcNAizwzOOsTee7(A1Zz;Sj+i#a@
zXY{r``P9v2<OL&4-TQz*;|5d1?zTRJGmNpFaWD>CXUZ&qxaBB30*7#vg)G<CVn^!-
zlOOh(TG<ZpRh+lBNKIyJP2kK={|aIk3~#%LE0L(P&CWpfRnH`sJ6;vkCjzi19@W=i
z3Dc$0hs&_Bt@_$CRv2!)gMX}FA*`<uk7Qz+|FDY_lBr$u_TY==p~?0`g9zbaXg*x5
zZtPPpSSxn6unY+Zqw;a4(HIvx=^cDJWVi#eV5R}WR@KNS4PkUNx6#kbj!}Fl9!;f&
z#R`c%lJZr-c}Z>TZ?ZF+tiFh~raYy5pT0|QK(q#hsq-d}=jsv-XP~&ER1k5vz)}{~
zDM6rBWLxF~Gq9yxm*j^&)E8I+r3Tf%P>Wcmoy*SJCnXH2nx{*sSxO1VXPPBFylHQt
zo6{Kd30y|e&`rr((PxktMJhN-ghCq49aUdVG+kEF{$Tm?W^#?mlxU@`K9=qjD1i9}
ztB%h{mAKE28mOjai{@~vjQ#G)%tA2t08ECv;CsS3?La!J0NT2!b8N-^DyzpgLlnY_
z1Gm7JOk!XXIhN^520lf8O-|hUzPH;>CWbhbzO5MS`-VZpO*vC#pqNO?=9G)jrfGT;
zIR@{18L`-ySoKp{(GT@oHUcMY=o4#2q^5`yRe^*u%I`fAEi8qSU*Nw9iEaFqECniO
zzZ5ILNfpC=OJVvA@LZRzkx*Pik%yIJaW{E+-sfVL%=+_HilW>d8xTV*HAfEA3snPt
znR7`SSgz!?Z=O>1kJ}1$H|NROP;%;31#PWwWt1;?cG!KyKo^GrCLQUnL&k;XIlNsH
zRr(1$^^IKLVU9Q^_&aFSBYs^Ex)*#TPBn>NZGCuO8lQyM!;Q+|VdBv%1`)Ao#%zKv
za_bjRIk~&#0=>gd{jR&?IJ(-#S=~JopXVrYJFRV5as4LZj)d+WX=wv_VrRUG_ET%+
ztbTd#Qlw&I`S2i$>XEhYj$?z=@>{)2P6e)4;teq^#q!h=(h3q$AIh9BI9qX~{$XTz
z$@QxD!|5G~`dkL=fa|$yWwS+p5>1EgE2wx20ydlKeHdxW(H}ujLxtCnN59Edxx@vH
zp-Zn4(iK-dA1qSqnCWc0q@^)qq$8SA$?Q>Wx!vd_xyeE10T0S~l5<?Sxs&PR$1&eH
z=i3E59azl{kNacmtRt815<A_a_2%)>9aFY|v#_cNHGYL!*A$V+$X1cp#ywtDyT`;C
z$WB)UM6ScUR0}G!IYqOAy<|tNlCu$?tgoFB;<v8RPnW1OHQbiTGWZ+@DV;fXQ}|s|
zngdz4{W+yr{0sEBt#V_XUG$IPRQkND34}hDe0DbP4i0|Vz8-<TE+3C46<F{eX_9sN
z3K;y9?KGzb8{C`8TdVZgN6scLsuU;fjdh#S9>2L&8vP7du?OH1TnU2yJ@QPXPQpb6
zbXKl_9lC!TKL8H~Ic335R@tZV1HdZ#1cQn<Db?>PtR~qurBKn5$^lqq(0{SYaO|<H
z`ox;&*q+YpVD_sk8r{4JOnL6c_cBJ3pdpMql;13j^l@bL$(%cwu_>qNqIWB+6Qnxw
zFoP&yB(f1Tq(MWwu;Q&C8opTSGUczBJKunvTXOw5llS&<ytrkiqo*fKg+*T*4pB(n
zJO&EFOSf!Y#7V+})SA$yKpY7XQ}d4L0W`G^8*>KwY}!GoR(C?EXKZaV;mV_qYYYZu
zKNM0)QMt`qDpE50pxFUg=6_POfUS5CcdgS6D{*-!sbDI#gDq0L4^b-_;8_7)OzPj`
zTylR_f?3=FnGz$#ym)zALMW@v(Nx<&<~nN{lg@tYZ@B`g<9AoSQgy!9@nl>5m>B_k
zX3rP?_)`ROXa=3yy)e)?zjug$`6IswEAdYXClXFRG4zBbum3)Qxdj1iDuiQ$&p4tD
zyXk1Rx`zvm+ee2P$09%{f<2jE+YL~R`#EPE8Q>+++yMe4zx)>4#i{p#ZXkD&R)BuD
z5z)^rg4i43C-5Q=JQk;8l9P-#^4j}DB}piuz@Z0#g7Pukp}*%G#JlDXl=9AYeK&(F
zk-5=dVfuCP_0Xc;pJJ58Ov4mJ`MJ#wkY)ap&51EqUsYLpC5|?q06uB?#R!nwMjMsB
zF1mvo0c<FoG|4Zo<g9Hf4A`Q>GG#NXA4de+OM*jDG@LbZRc!&F%5cFG4H40N!?^jc
z0@<-{N>YCHMnYFePr`>vna6ddRyAqzvfh@gV6|7Qlq;&vPb&u{^rUZpFtB39bZ3X;
zd`V_qz}g-6!@w8lobM)IDn#4{?9*+44M~+#!Sj2)hICym#ZLmazOnr2U`Gq7DV`Di
z%6>hUuUeeGIBC@L?FTEDeV?piG;8G&U0DUOKDz1BZZVz^11C(}=I#O@!%cWUD}8hZ
znXv2YmpixbpbJBmX6blW331xdH0R-1WfGk&+UtW#1h7Mv*$7h_U0K>TGuJnJwQ0yo
zkr~xU+cJ9m=HPrdo<}yzRxx+x-oH$CRW&*yW5U+;xZYt0FqLtCR;5^ba)ptYRBx3d
zG(Wf*$A$L)oGc&U+3~AF>i3WzM{#wGEWP=W>D~48!r9gB8O(2c?vO()rVjqg!8#Xm
zVa%07S1&?IDJBOGZG>*l^)i4B<zQvv8%S2Cu=)4<)0Y|Ls%neT;n<^Aia};aR^+f;
zL+~1!zLO8*unjB-+cL0ks%Q_R)|;fR$2V%{9X!^aGWUOSI#D5-ud8+Au=v|hDTdH%
zmI;PfYdbz#N}7Cy)21|al?XxUEo`#*N}Ei{Cz^IPqjp1c#;)B?8(<<+sbZckd@dfc
z%(ORARj-y#q<)0%4)G=}`cX~(>vfkARiymM@_q(%9{)k2`8-JU{yQ+~bItB=NB4;|
zb=%*L?y|oe-M!T>ES!uM@rFiUEz<0I1^}_RcR?}m?>(<uU(pp>Z}u<d`1(y8Ko1ax
zmDfAI?g`(!I{iiTX8a_21JIm2B6sA0YhRT?an2WE`ixhG`0MD|+4X8~9%$tUt~ffo
zKrcPHab9tj>vGJ{DKxRS)(~jOV&G!?_UlCD;JVJv;d(Bn1<eLlVgp)RK9SyOi&+-4
z!~WTmHgR2;hS<ndZPsDP(c=8=`rAXpy!tdg8;t#M)PS{h_Xf_sB)c&4_P;uiW@g+&
z3*v4Dz|Ulj&b2l7iPCud;_<-Tg65DXEXEa|^Q;5@WO{2NPad42f|8=W1V}{w32H)l
zswyHK5AXlLM9>97XWf(iy8}`Cs{?^til*A<Vdw&qOcP1X12s%|m^=_&NRFl_$E{pK
z9e}y=M1U5VS3#qOiRV^h{KH|Q%P>){<ODdP^PZBe6e@!~m|etgXyQBm%hC<;zn1QG
z0Mh%@(hYv39t4nLNXti=JmQn?AK3rL(!HR<g<2P15Gqx+kBKG92s%R&@x$p@?Vzl1
zSv7+OITr>s6Eb(v$dFdjvG1hbQ2G~iW|5(0ZOC9qj3?^80EseXsW}UP%t`hanX|N}
zlvad12|(tAWX))en(APfVp@xv6h97Sc+%mCafb-4v$$#YPXFQK7kzQ)uTJs$oATPg
z(#u@<OU=)hC(W_3kBB?d<#ykDGLSh3mj~jp&t-{JktGTsyXHwZjL~<Xe|8^ZSg6l3
zfQxPj5M1~lI%9>;&KSVIwks4vcn64wq>;woDWn`1ns_N^5u=SrVCc5J6jcd<&fHP;
zXD$;5|2*XAyanoc&ZssKX@q6~dJk9AQBaPmZ%!|*i44wS3^k$+snlwPU8&i8jQ{|4
zAOVQ?lta*R2q^%7T?x|sH<Ys+6cYvjz_zWa+5Cu3)01s_!%bUSLa2*ev@r=(KU&-d
z3OWo{SAhU*It8gAAUh5+0{U#7UEWG)in8Nlgm`Kyfx2SvQH~k<a+Gl8y3T3|TITXR
zl(8yZ;knyTNFaKZnlCn|lbVpyRS*tp!AW7PJhxS;MGS}~JLegHQ8@>pOWgIRM4V17
zD>DWYT}&s6SJ0=sgp#W)B!&YP0pUrJ#UjoJWXkBf_KDs<h|wQ{JWzZehc7W;xQESv
z&-GyhIqm|7V1_B`?7SK<thc~nBF+hJ)-fEq-A7S~o;G8L|Dtkwt@qxb8_~BeIc!>A
zdZioS!|#B6QaNR2^tU{^)4b<0$aRrg9jpmK>c2cSV3Q!oqmHM}=R|esZ~dl|>4z{l
z-^LzvTDq~`5*bc7BWdmGb43-~4qoQ?v~&CDTTh*P4H3@fXNjxM&dcp0D2r)mbY3H?
z_L4xEZHN8Xg^5}oLUA>$)K`I9873QUE3+)3SPLN9C(*^A@RP|FX*NV`ed>0*0*kE_
z62AC^a?<U}`a=SsoK$A55&+>)7$6)5tQlA?ET9n~PxQqo1ZPw`kcV~X!-6$hVx;+Z
ztsOc(Y0UQ%)pA;>ls?8ZR%mAMCIb{hQL+Z%AZ_+#x#}X5EnPEIxt;B~uS)RD^vs0%
z?=G#vO++rZ{|{a7*q-UyF70+~I~}`Y+jcrOJGO1xR>!t&+crD4weBACne$z9tap9L
zKe)Eac^_4^mlqD~H=khriEdzWj{Tq@gscZaxG%9#GWZQGAJ=WHd8I_@aONP*=Xq0h
z^*x+L4hCuZvWl0BBjbAakHgck=W-az5o8cE8KZP~upcR8*MbQOFv<x~9u%2Aa0OS;
z;AVYC<Qkc+yCZA4xVw>$*{MTo0YutX5=?PT4av*+!EY&I^4hQ7fyk~aX>wj@gAP;a
zuR7mG6`WkHPfc9&W?otKSeC{m!c3N#J~B4QIz;;0UF7IG%MhTP<W#y0TssQa)mrhK
zQ@vW`@$;q~?w$h(GDnh^^|a7!e_T)dN@3zbd9`_Df&RYdRR%@aH7Fj9uP;+HN+G5j
zOuLLdKcSg?3|3;iC}8kl#B&58(ufhZ&d_(Hd|VQ`IxeLa!<v@(&_!b9%tsym`1s&B
zk@@bt4s&QYZzZL18e<VOD`<(z9m_Ort}@R}m6VfEfqEd$zR2-PU!P9xgN@B619#^-
z@`zRvxCB!i|A&E#OK&Op*Kn2GY3%e%+?(Gu8}`rK0+}H&JeuS6Y7aMp)$Rx7<5y9O
zhfMcQyQ-kA+jo2ou&=ApS}N0zP^oaJYt)~DPm~*m9BY?Xf7T!dW5!g}&LOJ0#EWN!
zf3sOg9io~+Fg`>4Z}r)+l-M!@sLvcgef}>YB}E05|Hu!(yZ9?V0PmudeW76Pp-Q0u
z`LFzN^puv(Lm{aRmw$_JPHE}V^{IzhS+UD_vsD=wKc8Tl=4NU?0LEE5XZKnYPvuOZ
zFBhp#`2Jt|)Aaw=9~OZAxIkIL>74URI4Hm{rfFsRYWqB2->7zYGA{1p0~i8eK;@>J
zDrBxs*8j9suEU`P7ytl%Xam7$b~2@k9E%RXdK(xTE-tXW5CFiRydH_tDPG8*>3?V?
zVxA@eR;XtD0H2=BCXKkF&<fO0%4I=XQA;$iiYSZcay?M55#J}A8eET|5es~0h)kEd
z7uSh6Sz2Ccj4ZX3#*%XMlfOBTLVZ3q5~PxlN($gz{27x$rybbkelZuLJ%xCZf8Lqg
zz`}HnyaHe8h4r^R0V^k+_^G%3n9Q)!g@B2?DzMkeu;=*@4<>w>g*!<A1+XsQTm1H`
zjdg5`_d5<duk?e3xB~&!MO$1we}LB+fC?;QlI<a}GgKRdI0C!@!6r_iLy_vYP#ICL
zxBW^x(f?oi^HjCJ+7%W_yev`E*?Wx&&>uiurRuN#7}H&F{nek3a!ND(|3HCtUcxB#
z@PecOP++@Y<$s{S%Kt!tQT{@K6#!6Rq`y$$#DAc`wU8TJ+wBe@!^*k2k8*vGxT<#e
zdj7a>wPRRS$br4jKLdy)cbro-oE8NQ^Eg_N0GmxLm+vhwONN5w!FEu9rFPn<Y7rXh
zTORVL^o80u6=kaW;rPg?juAs=%h-1C;nJiAob|JcK5h0F`#|QtiE(Mj(EN}SyruAk
zhub?t;AbXS5LLf~%o|``&a<GkkKcspT(%!4PiIr9MR|q_1wS@=bVd7r>?>UYj0qa~
z3}K!h2B)-4pTY$<E*R>uETZ%2W6W953RN;YK}AJ)N=9U`u4Im;rUKL`oFoM>A94*X
zFGVR!c-Nq(w>x2J6+jpgXHU#1W>OYz59^L<oMC@%f8Si8%ibtcP3h&o4Ahq!o|m_=
zUBGZtkgAtWt?5u0J`0~^_%2c)lat~({R7s&Mu)rF=Ccu7!zuo=RpHrx%`6?F)|%m*
z`l|&*S=Mmef_@8a<_ijBtM^`9+My!R4bfn`sw$nXjRCE9zj-C4`KSW0lzKcNWoJx8
z;^AHX9zd8R&1E(bN0k3aoE@|g438_h#r7V8=at~o(zWb$J(J}{a|gArT9%Jky#IbQ
zg=xi*nMre4@H>-*=E0@WoE<4I<yw52yIfu7u0kn%s$L=XhT4jquw}U5=UssuQ~Bua
zap}#tK`p)XvmA;Yh5T%7)1L_9?hxK~k&4{teQ5C8;f`$_mY_sdEDTrkO#BAx8}W=d
z`1!k6-8@R|9BWtdpVgCTy_l`h#`|A*-`>T@#0pJ665$2hF+~sW!=lq&@N%Ud>z}9g
z$>A{jcb|;@e4F~F`n!0!rg*!J7wm@)@r3}{*S}symE>Q2e~E=_fWQCC2|!UrNbn!0
zSODM@19nb02KCsWNg@7}rM4kTvI#zsMYH5cq+&^RdhJgMnml}YymR=4nGt`bgGws)
z(%7yUh7;Zq99&SwJ;O#qJ}oiFRQWL=LwbYmL0XyUJ;H<JD|k!9fd==agRdgj9W~cC
zP2cXk*Hz4|bI>h3K;R^1co_f5E~5SVm~St2D4~VEMH8t-A#jWf-dOn8oREg9q}w#$
zz$^kdF#lgfR#ob+<6Q`N;{lSO0Fkv*j1{nEVN-8sp-RpRry=jN{E={gE+P-vAWUv~
z4<0Xhs?X;wCfQ^pCc!6-ZyDzDv;h+{eFHgU)Od7$q~gzk*H?hJsIip{R)rB?Z$u+S
zOO2S=H-XEg^QWimfZ)Uh>JWOv78Xm&ln?;$as2jpHadEydwpD4sPomcJg;~?mWk$M
z?WakS-;0E;t(eV3h{>5my5O%7OArm_mR5)MnLrej7)FKzeVYu0cqqw>DBBn-;m2;4
zw!lF{5(n5hkqBo|VyTuC*!3IL>|uG(T|!p*OR`XqO|fX%Er?}qL@e4n<dHH9_YNJv
zcdVtpDvd53t)w6=s^B?OE7Jy!f|M6mmhbaJ<FAumWu#1Z%%_47^uhM31A#b$SoQ+|
z&Dc@s&k?)fYC54@KQ|uG9a8oDOq#e5db20L$pEiMXpswN%2_*t0jkIlD50K#A{Dq*
zY}qtqRW79$8!rzNA_!a_*Ts+wF8()Yv?~~w6H&Yt(~4}jne;e>prSxiV#5&x9SZar
zIkY(EU~dLTJqrkkLyx>dt{0Ko9>)3ueoWD}9-WgJ_&qDbLoXhFKTAMRJgjxgFoCVs
zyvq`+&MEF^jeNs`BGe0zQ^7xRjJ-<?f<^x1z;M+iF{r@j!_hQ2)Rg%_uRbdA?~gq2
z6vjm7_ox6S@(w3D9Xo3CrM)WgUw|lS`<8luxom|F=XHevQzu>EBB;}5^iF`so&gCb
zIC&4zgjE#R=62AmUe9gW0dhM_Yrg#(saw`aB|XhRsPdD|W7l0rvSHfnC6QbhNr2zM
znF~k{`H)JI5p@FelqN?0cglxTd+pfFba3b>ebsi^-?O5G=JQujl_bx({cfY*b;anF
zqdG`Nvp5TXXvc9T2(q{eUb}YYF}fAj#xtUv8ZLshl2a>6MB;_Kz3r#UZo`8IAb700
zoW>doLq6ZDnp#USKrdWfZ}R`b3ieajVgBJ3jvv5kT~OtMC_QZJe*4;N%n&W2B8fEo
z=OIF1E>V#X7A8^#_|$9EP?mDv;+H>EJ{DDK<S)e;OCumTC+Sm>Dk{TD^bvo!NHDmO
zn$lc%;V4Uecrnciki=bCl&nY%@y1`LOk_kVmB`I!#&14)jW^pY<?4jf6Hx~}IZ*ZG
zU0PC<6RhvrPz#@g56x&4aR};mmq}p8(`LaF9@C$>$4J$7yMqz!A+krIg}2YQPVIRV
z>H1MKNvFi&zx?cpN>{^5L24LYiW1|hZA#n>dRP5|-B-$hKCmVdu1v_UKY2XQ<ky8+
z6b!Ws$g-spdSTcDQcAk1;_#f0^?Vs#Rq6zl3l;5TjV58}qrq^BZK+||!Ry=ImOhKr
zu&XOiAUa<-2GbI)BRckswi4aWNJfR_`bTds#WHF%Lybz4n2n3E+tG#C2O(?I8wR6V
zrE2Hp<WBV_+02Q_6e1<kAy}?@^q3y+i6%k4<_dn-;RRTFs5gGw&8*;(KW&$C6N6b4
z%Ftq;gvu68n(BJ;h+k}wNJr0a%ON5}8=Nl(^C(O0(($Bpd4L?dTHk2Aw3XYpyM-_c
z`aRViSXzb8LsYQ*DSI49DCbe=ct@FknkTF%bA6QjNKhRVNE&47S$QcLG1|!B$y#t{
zE&k!n)^>A*SxR^(UeEWY<H0hQU3O6=u^_lk+_tjBJL9b(t%y(5;SOfvfxPI3Mbjkh
z`ZE;vQ+Pkc_Lbdv(flU5?0Umuu-FaqhE3YB?y3aITVGdM)n@x^vo@nNfKQb1oCBiW
z4QqceUp!WSU-X%xJb66U3jTP`VZM@yuoejqv-rYOtyWt1=uT3-3AJ%p73#;BKPib~
zWDpyy0M~>3Q9i_!Es^D=II+r(A88%+BZc$Ixbh^Ah0<=;AhUNHJ$$I^%JCm{eHYq~
z&~9a{y>QzNtoq-b-*<Hc+|62N=cN~=57|0bofp#8x96d8v*1rYwlBW^)%A=qIM(t6
z9HF=XPwoH95$b<+JpmkrzriPOXrfL_U)6?n{S|!(5f$XzrUMDdHUmsxHWh4;Fe5d|
z_KpvVV%hc=y@dGB7(O#?Ag9ezfDI1BI};Pz*u@o;WntF|=XK`_TlMtA)q?Oi5o%KJ
z%pLL(un+@Q_2WDv%BoW){(rij%gfCFbUnd#;blCy3wqWko$Q11<{m?a-oPWkA;fGH
zR|v?10?IRJyvv({+ipy_(EF-xb~af%lsa))Gj`$>+b3`I)_(?thSQcmf^ODcWj0^W
z1>){#ytn=GrEvyW;TISCP}#3#a80rRe!^vIsa2FynJ*pn&7bUxos$jCGvFp}CA<zt
z8@SBoSOur7N_SI@lE=3as|vnm3v}3q%ruWY%qav(QdRC>Skj?Gp1{I}1ctqXb-u6=
znJ7A@1a9yY0DQs}v;AeOy03vl9wR++?TGt6bUGaq?NLB9hS5}QUk2U*EE1TaqaTdn
zn1eN5@EDUd==>`-(jVZJa3~OWB!>LbAN}q8MH~TXN}+^%K#rpn<Zj{7X!+ni)tJPk
zzLFj6e957GOtEqP6ZsG<;=1!IbN-k#wFP}c_l#_{erfSw2MS`-H4Cs(h(dXo<N$s`
zIA^e;@+>3LEFz0mxGNsacac1p-Xo6ROakhOW4j%3&<L~-<pf}PEzvB8a|GZI_P#_S
zHB1hv?(ac=46l1o;d2Q<Tpq7<0S?iqq2N=}Q{3FLatT2uXNQy>937}N`KWu8s$pmF
z)io86Cz)Y<7x=T*9wUCgrGOhN8O$$99<q*w$gSEChVC~GQU63yZDg6Tr<>PJ9k)2s
z#<oBzPTc*scC|~F+kd@UxR@H->;c~_1K^wecT(?veX#O28T5dw=?g0PYn?=ed2@&v
zf`@Id1hrq*YLPOF3=)*=FPdJ+jH;JMt^{M5VUP{1FQ2FG`f37~54#$<_HX#NF+Ux<
z_=2;}Y&&5Bv}1bVctLDn6RC@}<X75&{N12-ntGJrJ=z(v*d**9@XzliCsX8}U(*M#
zzXvxr_iXk$?-PP7Syd%aq0&s+)@*4~W8*|_8P*8Mf<r8?(RgQ61ueZM;DYFz049y#
zeA0WR`K+!-%r=d=Q)!tA^YX@vxCHs&JMX|hS871CB6QinR}92PR?~VbVy>B)wdt*b
zQ@w4cn^<U;%z(RU2G;%_PD`7oz%1R$xZO^+vDrTaCFh@tuzH+l&Y$EhqWBuiF;Ejz
zPaueXOd%vIY}EUs$07&0K?h>=0MLlq0)8O0Q01txb)bpjeJuIV90<~M{Bs;}V5WX*
zhMjh9I!j>tcM`*8Mx!-=&vgJ6Fn;p_3?O<?rFmykPNyCzm0JAw;WQ$YBjX?3hqi=1
z83|wu5wx*@gV-oInskx{kB(1FP>}X|@4W;m$RmdUElmu;KEA7{wh(MqQcof*s<dqZ
z@V%m<B?^j6|D*~h4JDJ0Ob}|O6v7=W9Wzb4Hl<jWzHY&Xv5?4vkv%5OP|TjEK%4ib
zA+fGlEGGaVN(*NZsYD8JXZX8>7{(z3V0v?=asLbxDj6Bb>f{SLBaxVI*ntjif`SYD
z6|-!*?P|mQDIUKFO*d=~w!Lct{9M2u&CC@P`8(g!E_!Y1i*?v(f3h3RCoOGOrzj+4
zyuzb-k<Vr+#ck#7Nc$6+cAjB{XQ(^=U-$iaR9tNsz~h=2K*#(yD+<7?u`qHo(04Eb
zJg}owzHBnsQNOaf_i$%PIPEAZi?nU#3T6WvOrh?5E!Skw?0Y5TdySjwX`hz2>-_?a
zc`ot-SEjGLwwhzC$msVkbd=U1z^2Y&kEEMC9(u6G(vTNFWbFvGV-x!rGr{DsdxBwp
z-iH8p0fvYLw9yhJ%+(W6Y9dbVC$FBL`xpE9>|DL!k!&cNEVLlichymt+Y0ka3o2$x
z_i7Rrf`IL`OkLHju7B4ck4ZZ3{``rM1Ukxg8U|^OPDP4Td@xv*D~(i`>zEjLk-Hg|
zECnr><o+%3#HUNKrZ*Dt*bmyhJEW38dUj4ERpt6hSwiYw2$gqckmpNQMq1lCl1h5j
zm9@5E7_^O4n9xcp%r_jU)WS+rezh=T6Et=x;=KMhD1f;kvnRL9of>da%--A^bA&ip
zPOnj|7Y(NKx=RV>(+bKg@lF8~fNIAZvI<Ai+xUBeFamJIh;Es+Y|RdtZLEb+Z5~JD
z!MPyRAsC<(H)f-_uI@8R^<v1z&_@R|JN^5%?ky%5Bj}u^7y79RWZ&DZ0bUb|5_pqO
z7rO;sKcm}*X@@+)XlcV7xd&>@fP7rdBA5$5@sZ?H`Aa;~jBoMB=Ce9>{x~R#)bhAA
zd5!oU8uh-?FzgvKKZf^_#jgq+(Tp}z3_WEO+&cUdUt@JlF%5iNld$UiQ2#R{S6tzG
z{){0}z6ca0t>R8U7;ogFHIt4hMDUAWAmJ49Gy3UeXMm?QSujB_QH5tfyXzL%bX{4|
zp<pjh-2Fv{zG&Q6Kc;#o)q+5+;aol+^qM(*Opx;YIcjV5iCQS11Wcn%DNcll1nTVi
zO=;P<Kja31@$8rb$*=5wk7x7Z-pUJqz_oEN#t-iUSIo}~f?fdGhxkg*&dp9=T}2+{
zhrWD5W&Zx7VA1`-c^25S0IG1tXR2)RvFOb1L*003oY{e_J#QA#L5K-dl){<kWd8lH
z>qBU%Bb>S$<PYIu@R=s7PS~ujtrOAG_1YG~vs0vI69iCybge|wd935siq?29EY{SB
zg_Hdz)sCG;yae}guxym5Z0@;EujRC4zz_pkxl%S){L*&}+zf(y{-<6rkUxFjLW-Ba
z9RUkIIL+g?_6PKH+`)&EtC@(&I38l@MXpNQ6WwVKF1%<CkH|SfTos?DOx4&M*g_)H
z$fh2?^rtV!ik;#p$q~@E*0#TO=FQDw;ae2DR?$UwIfm9%uDpdZQD@|^WUp_R`}}#6
zKL2_B`mjG=qUK+grKi_TnfoRAUB}Pir>hS6lgUdiF&`bS=Dp>`NLR;tkL!01p(?LH
zu?XI2grX3*LCqp=k}jl<69v8!j7CpCo^Za;GI}wAsup?1)O-y%X#sj0sYU+8U)`ej
zm}gqiN<)E|j`wgAO~i$7%{H%x{`LM8W7jD#Ylw!->qo9pjLKG&lq9#Ab^a-ihFc6p
zRFxrWq%6?voLm=NDrb%!@9yPMtTc>QrN|8?TSaA)fU*-brIGF*6J<Kc{R&F)%Cjzl
z#)AA;-k%Bzxue$bHr1qq`M<uL9h{8Xf5B&8Uj|wX<2bQzp+J|;3v{<IBVMI&&xak+
zAR)`8q^K{^@JhWD-g7qQKBSucJ}`q2a}U|#`l=4fs;-`I@4tR$?`Zk{Y6@6?^So#o
zYIl{wLKCl_+mKihCPV9Lml!|2B%*n+HN~|iB0e!z@j=6i!*dw{>Uw%7zx<bi+O5<h
zw*Ea&!2N&E6NV1|qn`h>rr@L$rWCjmjY67Cl(a%3U?K!BUS1ZC=-1e30&D6Lw$HWc
z)2-g)i+iSVfZ^<NlxCu{3p!-hWaL<jniDCfAAfC0m2Bq!7N&R4g7IUY(pFH<JQ{AC
zMK7BX@j#oO6Jj1$NLnb~cJ3q-#~051Bb(CaO|Q@*{lEfkf@Fb{oZ?k@CEZ?jHc_1L
zSU3o=QCY1RDQn*+Rv1xUC!T;HIT1we*Z_rI0Y{-1iChvuC`U$ugd%MP8%3|nH2Oha
zlWPFgLjE<c)r0fFpGm5J-~<DMPU0_2*=I=Ym5&rQBTH}%A=6Q0Q?R4to>%~kOGAyJ
zRX5~!3n}kUO$-E*&W|{(kb<n!cE*Ffv-Y&*vdKVietodAJrTy>S9Q792Ghm@G@hNd
zbO%d@xm0RBr8QHm$d4x0%sp?5bliTz<Nu5M&lD*4cYUPt-o~N%<1jNGRQIEEGxNM4
zQT%g{z*MZMXC$_JE(ddWKIrkMA``5t^1t@eeulo=4zFY?ZYdWC6@PaIwyg~pWWFX}
zj~C-m5wCJw?XO54>FUPzdR)wPHCi8DV$`u7;om0+@d1h@DpDtN`IoJ%>5elDPj06Y
z5SO?f;EL->nY*hjGl7>U3RuJ;mfC0!u#siNKhBa#m>;Fr<8Mt@92`gc81agZ0`#Nc
zO3g8DvoCUX>NS6q<Zu;HS*=au_2qPF`x1p4C8mlj7(vHL^!D1)Lo#*tbZ$@kFP+Rd
zB{Kr4wYyO`m#e0Oau+o4Mk814rX>8dWa?XAckG-JxyDX-B#Qt>@?42+%aT1l%hrG)
zhy<C^-`fJqq-ab&8rhzgF9vaSYS(syEvz`t6)ZUiqkc%Os<}o2#e`Bs&-E<*^TsU;
z_T<$P^m`L+^_57?QTY$}4Uy4`gGFoTAAj3jsiMicHwD4Wo&q%?Bv9s>Se|ZN<q#>r
zbQCAwwk0bzTs*(j>K=~zoCr~S_HVKG$l7|rR<G(#x<O7_36;lR@zeuzKAY&$u{V5!
zwH>d-IErNrAuK*is=clF{ez2#EG;ApdO2_wv%QeC;EjKFZp%>dbRMmp`vNqc^U%F(
zv=MMxFwH+cS0`(f+B#ZWD3XHhjRVbYRkH&J38=tTfw((PE_~luu5Cg4&(a46oxoh3
z7TYTVVP<{CF~tm{OY@-6x~grFr<J8`<1F2X^K%80xHH?^7fNR&H>~YA%Q&ua#B%J*
z7Dpgbi=#-=7brn6pA1eQHm1#pUR5QX><M)5_@e?;X74xCn&4H0OGOX}G~N*=b*L))
z^UbZImMaN5=1c?67&o;Y;nfT!VGdAvFZ7~ScBh51>E1$b4S)u>-q8m*7%-*M6r2zf
zf2wh)vE#IZzvWhBl$?}U3#D{~kf2;ctfJH7m-xW0(%g&I4PovEcJ2n;`n>L?Si+2C
z<B)T)AE=}hi+jDu$}5u_I|w9bQpwa@V}{-Aeu{pPHRFxj?T@D{7Ac36!xfn~&K~4z
zm~FtNxYg~IC}$g+6*->qWD0%sIuTEVj;I4~P9rJdZv{=~oVPC1{(9J#m}keIUdw85
zS(7&Ok=VK!EY{{R-yg8@QhnL(QIdbxVBSvOiI7zaahjTQ!dfAtW#F6pB+~w%Jf94v
zn-eVQu{6oEwhNp`7e43gfO2dvcM-hBrBiPRe0*z)a{3S`L+(L`1Udiq{u)^Uf+I27
zH_X;1Ji|d6xt~L{LV?5)T;suN;pVR%YJ?4+(OHHVxwV`5_OZH}KBRW_eN0^W$^jeW
zs{0JqBR~~uWn2`K#7wZCAo-;Q!9Z5SPB)%_NE*IkFG^_K-?q?^k7sMsY4M|sr(ywN
zah08#!|XdMv1FLfeF@K*w{pmwJ|7IGbGLm5^msqda!jjw_=PzHPgN#Q{A#kPHu~6=
zQ6uwH{gcA>W5#-~RKnuFV|BU22a;!iA9P{>zwh5Sbt5OU|A>9k|G7mw05AoXxiYWV
z)I$FUC7*|AdV+%zC*oIt?a}QmHg+SmMwr2?M&k6e;ZS{#1uN2-^ln|)i}kqkzIfJ*
z_zMW7=nYY+b)5sGdX|ciZWp~Vu)vsOs~^9yE<z4D0&U)!cFD(iO8go9Fr8{p1WbcJ
zzXpLL?N7f3s;7jF3ffQGLQ-93Y=P<)VAAAQKZyqXR+T`-&<^!qg=wrmr3g>f(N9H}
z1PQrqJApZwY-UZ>h=6x1e(o8-xWp@CNAUJ8D7^20aTJ7+e#C|aJ^Ljqo;i~;Piu}R
zOL^Jmd<auiRK-c`pw-kdx8WpNY|4=HlFYJy><#jQLTwDq9_t;%?6}b7eq8MY5r>-b
z-6&v!joO}q)q{4Npo)_|_Ay_h^t~V#pv1S|>>(8(^&&3;vEj%b=M!|)y7!(tV<YYf
z;O8+2OuW0Y=Ym{urh=cSTDal-gNYa5$MpMJMNkwc11F0#7GVF~+lVmV)1LiGA8n9u
zaZN?i{7HXZ<Yj>K)}Kg8=&2>b0Gm&L^OcT*I@&Xm;l>s$WU1_;xsTkMDQw6{HXQ%L
z%mN>|Zwfw7!H}t+{cPAL#gi``N8BXw``$C$+>*j0mylUHfP(qfkUfg0pXlDEs5c59
z-YXwl{e?MP!Z!OH^>t@Zz`#=UE>TaMuP!GL`IV+9s!f8Bp%&*o)t~;3`tq3>#=5wF
z8GwpM?=YY|_VoFwG?oN5fBx)Sy&Pp6fy|XPRh$rzFXuLz2<(HW#S}D!Hykx-b5%DF
z<leSPD`Ck>z<^PgW98uu4t;}s!07XJIvG^X*2XjaA3pq!CdT)zkFEqd+fk}{2XP+Z
z#ftPGBVTj!nica2$qMnitkrIJFYlY9i}ojc-a0V$g4#YA8}f3ye3v?p#uQs15ZBEz
z_$fMYn=SaQPJGX2cD;yX9C-r&jy=wCoS?%xgt{7%2|*hRY)s)a&ydZ0Y;%d?<IBeE
zktg_g(BpVUhPv^{(utpn(E=M0H>8NF$MS6u-4_S=fW{bWjA3S;k$pf0js;W9Ms2JG
zfFPfRBA-Dswg>~p8dGC17TJrIA14%&ERCV#>tGPm_n7M=nd{=e&NUz#F#+n0!70EL
zsj8Y=LScz4m7dJ^yzQDa77VY`)#1YqT_C(Ua{9B<T6DD_ts@3B>Qq^AlPbX08gfyZ
zk>+4AkL%Cnjt1FpOYkM}`Q{ZxP03p8(F>WQ!dDUR#ulIG*Ik17K4|p`Vw*@pNoM_4
zml7t2TqTz&IdxV8)_&nZFY47}luXN$)75v)@PM)+sbNMnHp#2IjA{zKR#CGAPs<w#
zPJGoPo&6$|lc6@D5P$2$>?TEgTKD3_QI3H3C?B>ed1qQ5qL)n7O(aFC9+@cNmTzsi
zC&q`5O<wvZ_)ZhQDoze1E2P?9a5a%PFXLi2vg>MaZ5#1ZtQF-ulZtkz5mj0#W=?Ps
zHS%^mjg115jqnx9Fx$_89+0g+bx+$+Hhx;g6H>zSJ2<yG#6S<_>Mwb$;U)SOqZHX_
zbC?U3jh_2SZ8+`5r##wBwI!D<R29gba+xHRxK2qb?*3At<d!UvcfluFc1@L-ZcMAq
zmiM5<j_S6qd)$YLA<no+v^28(YH+x1dHvKhq+a#;_P^s0Ys`!X`2czJ0rWZl?bKPh
z{zn}L0aZ>w8tZSBlQjGwlil$|qEZ8p#`;b!&RXDmWnV@qtY=jX+zxmPPydZ$MfS?h
zl`KjeBVZ<{v0Y70Oxc5@=v;wn+n`30W6&GbZI!~Av`i)DAVlp6t`R`_wesEguLPiB
z<czR^d4hR!`^6sxN-$z)W%+)*@AeNrxxOqeHFxh`9FqRCl5Bacei=D6a}pgIE-ArK
zvNt1cAQa8cs??D~^**fz1eQdD3v4a~*dbL|mqxsc|NmJ@Ui(&c;<H7emispkA%N#x
zgZ_6V840kG90tf^v8VOH1iS9Y4cMADGF1Jn3$tul==6O=%QJM6VFZkjswA(aAg_+e
zSo4JTtKSYraZlg_0=gzXr!u|vzdW0I;EE6fVffT&^}?aD+dqlGU3eiJ!!`(RIstjC
z=TRErt*GxZgn#o8?i+fHy0RZTL(eY}?X59L?mmzvkhRx&qcpTF%by!^UFjoCd{7<i
z&Vb~x@6##_a;Oc9wAkrdzm9G7G2R3qkhQTxHQ=%};Bw5$7~LV^e+bvsPVX-f8g&O4
z6`KJsy6o$m#Ua{n^I3?u-Xwu%FbwS5JLH}PHkNPkb;Gons)^)*-6gAX9-1IrUlHX)
zsK+)Nv(AB%LFR*P-~pE<Qmu#V$Y}N12Sbr-4<6!$B4*Ya@__ihF%si6VVgz(`x*ic
zm`Sc4WL94$6($P~z|coVuj<XhRqe%!q8``S=%za%_6vb+r>A53QHx^h^<Ue`mgj)&
z<Y9k_5YKUm%5~Qkzz-_<RUwJsh`bRcRxLesCxaYk7Ew!78nOJ@V&VdzB7N|PH;V!e
zUIMPTE}eH?Y@pBBhX;Y6RsEro%^xjDkyDX`(2(&C@(rAg7U^U0RB1)FU_Kg+1XLTY
z)a1!<=w+LRmNFIH8teWQGuez~bB@#!t#u61VWl<=IN#ktzjOK&K)wC8v{j6z%LJK#
z>JhOCdzOs}zMqf;3@7JGYkx9c>Snt-*@f_Oe(Zzf>cs4oW~X^@;6OkbsREgZ>&7CB
zEunm5Xp!di2Dx0}HG|L;>$jPZZ`)>CnjKd=@1wgwt}3Dnv-tZt>GZTV?BEQM&q0J)
zy7@5vD2Iff*ds6`bzPL?AUH1c%oPmh>mqH?6-Q$e1$W5#D4`GiQxSH0YJZ~;%=uk0
z<oJX=?1h?(;;=zk=cG}f+`y_?Db~wMwSk#jEy!BovJn4}a2nHud0H|nOkG9NK2J?`
z4Hm3;>UOyHVZPGnH><gvHiTo7Kc#`jLlT)2XY%knr}=QjmgTpo#HF;@mT?_gpSN4_
z7YipVnQiKe9?PGbSBiq%_YM=_Miw1~p^+I9#WwtI2tEqIJ`xLvs3!U;KPnPtP@XvM
zPg<NgDW~J$32b8SNzcq>!UsQEvaY{8^45K~^=dZ%$Wb~hn4&TdAmIPm&jIR{w0#r~
zocpbSQzQV}X5ko1sd%B9)oX?#x-5*nHk1=U{hWL#ZVSjee$lwFQ%5(CAPxmDopcv^
ztkn(IeZ&rQ$3Eg`5AFZB`<MIVIaz6W4~Rdb0dV^NRyFJY{(;|_qz%X)pax$(P{C(@
zFa8<j+>Xf!*bhpR1szfP@BN_YFv$Y`IlE5XZlN)Jdu)Og+9MeCys5X$CmioT&<2ZF
zjjn5IsYA>3DMj1sQSs~mq(+Qpc>`3hExZ{riUy(@6<qRHP0ms*Dnmow(cCpbi#yQU
zVSkA3_Woh>%%*qWdJMi_ne2!ah9J?Ix@}M%L=~5QWKV%g@6t7*`9a`Jsc6N`?@@4U
zeQ++Eb5Trsb1N5Vhc5-SfK1WF^=PT_3L%aZ>C4>hQynaLE`2uNUzfU8G=PxTfo024
zjEC!-w8mCo=t-kHI-CtXLcMD*YRqYxhn$d=f;#o8$)nDz15iIzK~2}ObU<v++L9R<
zn^5Z^4`4<kQ8zzR?`wx}x{JhtF+@UX=MI#J6C#}krA?y`=X<8;D4@6?14Qa3JRXQT
z@{*qT6r0da@mna35MAAbHfny6JJ&@gg&KbjlqvHemIkqw#LY7XWY#L4?2zrZTU=ry
z>L4t@gBrmQl%lxAJu*E_-q8rPRs@cq7Lyk47P#TxBaswx%uHw*I4K-%rw(E754szM
zmIrW$O|dpP5L#34@U$hK<kbyR8HfAAl{MOc(cPK?nW-{O)X+c`g^dmdRyZ6r151ck
z7B|$ROPEkoBt*5j$!PCJT5}F)WiBD3!V-*myC&>mwa_30Amy`BX-%3akpf;PgyIB8
zd+xPe6hmb@AmV?aB*z`o(wgX_gC>jyqF-s=Wc3sGE2}k6U}{0J<ALU#B{j{6Gwt)4
zZ?!vd;h}0bH=frX?h9<vj}L*wJGDIdPh*6~Efs@mY#4l=gwc<0KD<5=e0$H$T2J8V
zcJiF50kaKy15Oo&Hr1ipgau<aQ%+M+S5&qI@sXvTm)ns2#NJ}@jJgU!Z7M4YZazb7
z<qc`CeZy;h&EY4ueNLmfEIxTSC-Ed~<rO2cWBtR>>Qk0lswGqealRU&oW#`t&x(3!
zNN7_MZz^zyJ{@Ut!`A)d0Ucti^R4SUN1HSQ_vC3*->*VW^9yfI`r(#(<;e>bsUD{D
zxm6Qgjo}+<b6J&T4X1$Bgf8nzi%!MuZOTLLpX!GJ+;@$qv8?^=xjuXtcm5BGR;D+H
zN?FD(4LG)V&VqOS+!Z2cF>h7N8>vD_7-);qlt0Xu+S1W0SUfvaL{aQPb%|mcq-HWU
zT?)!f)^-#CO^p6=nEGlKCrFRgWuMiKX4WT3yzxUgnxcN4uW1i1(D#Wx>;10uPg^@w
z*a4gGnRj~M#I_}Q9k@fU`+3BCEi$BL8Mr)~c#KRdUH67E9)ZO4@}28MJ@QcwzqH7H
zDL@9${yPgggwl3vhw$wih2a0!@N;nfW$>Tp&jrqh&3e=A(>q$GKhdo@jKusa59VDB
zv)yuz_S$k0O)xWHXe^p#Jf3RqMQ!%W%cVd#F7JJo6^3=kP0d*T;Kp^^h1(_r=jd*o
zs5KLE58ru2e(1Q_Al`&NJB+AREwp1tyAO+)E(Sr2+(yhW6GOP>yTC02hqs6L9Ekyz
ziKgbLWj2Pt*3YTem~!%D8so($lIkuyd1|8ElmRS+iLl!jG6RRWgEWrR31b)mIt636
zscJm7?6)HaQIn;2q9Xq_kUi%q*BV3#^XLfAvAP2}mDGS`2_TbAvMa_^nSnsGNRrH%
z$PPE>l^`J3)WaL1r2cc`sc^#~MghfClmx6!QjADplyvR7R1z#-$vTSPlcnN2dI#xS
zw|W*9RFXfAYsQ(!tLv8=a_TY8mzpV1aDe#ALZ<X0dWP>h?BU$rKCge2s`Ryhn+t)o
zK@6v1_WD?0UTS#WtoM%2_MVipbte$6CJ{r>>HhBN&-P?@L&J;8#_jNM!%p6hIe0!(
zwUOP`*X70O_WpW)xq*V`P6o;EKfeBuc&O9uIxna3iKCdtgfyatFkmIyjoc!sADoC$
z(AkUp?H?u*7x$S!{wAkVd4!^89BMEN&!4S>?~PXA);lyhiA+H!+Fh;H@zWEUg-?j1
z5?4bAk(o}6NiCg0ZK-c0VfJnIdw?oFythwztJC%EVL3uR@n~TsP1r1&49ZV<bXfuR
zoo!@TQ_q1usboJ2G5Rko8G-E^8AfnIIYwGjbOx<iQjBK*v}c<H1lXzXhYZ9-<Uc~)
zmez^6$(JLw7zLa?VzRjj6H!{*mEzeU)H%UA5i7nS!+@-`&zp39`2))HdNriWHhMNa
zu%F=OblX%ex18hjV8n(yP$;%e>ALlOSD^H@i0_<8DBA&c)2XYX@$&|~6;RL{tDid?
zz>Q~42T+R162J-g{BV{tr<tzVP>7^P%(8V-z$z5SQyu<fnQ>3d+BNd>2Vj|NnFy#P
z$S>%OXqMRu1VPJpZ38gl9EA-pNts|woJj|#ju%WWl4*Xbxg$c3kii3qdd#Q}qMZ(*
zTu&XcBKI^6<#Y)@i06b+hKM=khA5O^a<ehXxi)bT3vetAOM(s9X9uH~Kc4N1kq^uZ
zzo1fK4=85itt}uQE0Hab3B$%DlBq{97QtBqND@Q79qo(7aDyu9Jj=`ICyy=i1uSiH
zuO&@HkH}qL|2DbM%Y4YB*}Uq#^gfS+AYm+xyebc%V+^YE31XDT`;HhNV;E}UA|2sL
z4pF`spGTUc@Eko?_KnhYtw2i-`QE{{s{uUXmB8dT=`oAM4X6ieP)K-iK+ztFc&DSU
zIX&H<!$^4X<OGUt12E}p;`9s1pV2RwK(|n&fN@!#8?G!;bAz`j7p&JK@fz2}!KHAO
zcg?AvS;XS5nObBu_2nZEW|^wGF{#3rvyA7-de2XKwO>|hh8zQFv-#-;l6;S6e(2b=
zLN^yQ!pdxOm#vWgFsa8o{NLoBVW365Nj%!ybE<D|;@qq7p0v{hrpyWWP_E@&0@N#i
zA;^#7371TFZH<YL_=|Io!af-YgcA5Bd`{JEyGt5jJadDcri<zq>X7?SvU6u;(KW(s
zSH8L-y_I}s`P6^X?H29Bm)$vM?GqJ(xFxSF&u~hymX22Iv1t!VI;vPHk40qyGu}lc
zSz?)`#PR>p+T8(uCy!D(5?g@1uVf5K-B$v)!&z1rwqTxc#97DwJf&xgWw>xh^-<Oj
zA5aoua<W(KvLGnANq|NnQzz=1Ii|*S2`goP?w!rKFLjc|>WK3Z8WX|-quM+j+o^HD
zFrgEAM9Ucx;e|PDf*cpo3IUGI$UeXVDP^ws7JgDiBTov??h>?-RIex1jpgrXo~I&D
zpfJsI6x|GR)Iw&AJFvKL*#n!}9Q`ddKcq(uUcQhd;B_l#-alnD*fl-6j;{F!<|a@W
zN^~F7d(Hax`f{o=j><Sl4K3-faX<e_iV?sF5;iWu&89*_!webLjc=i8bT6#WL$9s8
zt+sDl#(;LUa<^Z55fPoWcBlC)cIe}UG<|xFDW#QA$F~qvfig2A+duZ~2S?P8(;J5O
zmQPw$gE*q3tnVFUZyn;dM47;#5q0(gESopXiU)G7b52*X&Mc42TgVa9^8)XK^-)ey
z!wpVsStut4W8mLC%=-K&)vSr?!y%Bt#E~9+{lX5+CFFtF$8n;o83oU%#h}hD%Rr*j
zo9wM~3}7AYj%7AQ8CVfl7BIh6>>z}Ozt<b5n?d{Yp1ts7goKkk*y)QQmEp9jLO@e0
z*;|1JCc&-eBx4^L1Fc^@d_)sV(%+DGZZbmE5oepYF;ERc2?s9;4j5_4x`Fxu5iB8^
z?n_@chgHE-#8PF{ezZra!km3y#Om)Dm2{vlo?UqIcD<A+Us&x~&<ArMrb-#;z{2X8
ziErUQ$(x+SB%v>?k4TNr=nXgB6BR+$o)Bp(gH%;~_fT5D-;xZ&CGXO)qtaDBv%Kg@
zQ2SwtY*Ex(I*se5jt5Kuqo|(kvE(o)D>TWb`iG?Hfny8<3-dNUKdXp9X)JM|vMn&r
z`MAuG$w)}V9XdQv9-d%rq&bq*HN4T?IUc{3LAxMNdspd&eK;~k|FbxrwSuJFph|oO
zYg`ipN^TLl8fz3YLJD$W;hVC3PF0{|o00r$3>b!NViOI9I7G#@3h=N1Isr`3N4=D+
zY41omM(<|et6D|(zIb;dw5eq`EtykaJoVLJxCc-A6qCP*wJn)C!n9lY;~lH*EAq7j
zZM2CV-c1v1o&82`C8({92A}o(HU5UHcT%|(qng4qEz2{NL^ErB$R7{l>X4^gnP&1U
z@%0ZKtl<&mZNi15gx<U?`4&dV4ibG0B=cyOj%n-<x~F4hN%KnR$4Dlu#JBJE{N&<u
zpsOTGoZem!&m89saXT~Yv^_lx<fe0UtO!~6@z!V1mavfH94^QdX%qms0c+8s$;VK~
zFxdo82+xsOH_dZe^CF-LvgW2X$g3<R_AMGvrWz^zJ;9|bwA~IkuFP;U&uP-Y#aea{
zwvJK0vo7R*@+pP9el6$vq{Cl4uqoz!b}NOwZWjpy{u_TkL5Luene@v|D)e;i?uzXe
zkfzN5FN<GoyVf||VaLrVC^KzK*98+Q+of&!!$+&Bi#>Yl5-9#{ek~_ZUA`he!-^s%
zen43-vQlrAM^t%Rsjhq5fD0MkP~FKR=vM{$`01KSYhEGm21UEeg<C2c!l}LTzEwWC
z%}l%vn~GlZR*ozvwoUnCryuSEi?Lq|d;@D6;w!e`w(s?znNYy55PIOIo|I)rEtM<F
zPK8b_XB%Y1`7Yj)Gxf4pRmxxLB1$zGCna`aS1~T<ecex3<y8zLjs9Tq0UjDSBCCoc
zX)bZ*U9=!Qlxp7>jDVstk~%cW2GqDMbt0S8QSS({fxpkfN_AmK1Gif-P=+SyPemGz
zSHXPaMZd5D#W5{PSKVyrwRqT2aIDyAX$*aErL5YU>~%vkuXrMGC4EPo$lAUJC9p&;
zId+rV)V$Q8%vkC{N4N8u?u@dU*F%NoMDGj?vqSJby2I-Zr*%gmJnCp}E-nftlym6q
zN9+fc(;+17Nv6F4rQwgh&ftu3>AH_^3mu0}JvF(Ehn7vDpxBHjE4tF008EB~FMgYA
zkuM|I<H6<4DD`?Ns};PkoJ#R(HgCzMvUtr|Y2*a2!^mA#40<w;+7dpt1|?np^U!fx
zhE{g%5=0rqWZ789GSqgPkm7k7EDU6>Q~$$r{7)`=Wj+aV;c6L%WdIF?{BDFl5NET~
z6VMNv=ZQCNVJG-ngmKV05$RMQF$v8au~X&#aDP)@Ef<4Lr88w&4+|rlhsb0P^q^4*
zc$J&<IH=BenyyTLzeMQ~Zf>~;NfpA~G;G`uR+8*~snvc(bTcYZr0X4jt>Xx0(R?TE
zgH@xQZxl3bYiqTq7AqB(4u#6Y&WDNU)U2W5%0{4CxBX1&?wtAs>QI$fnl*ATHTGId
z(HAa$qv1xh9;@mTr1o3s4%O9L$tH@VjvS0q?5b@3m2r7!(0-$OD-K>s@1wz|d8fnp
z#mm9K>rMPTfZFXe2TXb6-jXW4jO`GOPoae<qtO;b*%6QsP2mEkRZ!9sJ(;A~EXg%8
zx#h248@?JY3rzre5T<vL>Z!(J*GBNUQ)uNNWo)%htCv;OM|CDy;@o?S8R_qN@vWse
z<qJc16`s;pyZ(Sw?w#kDbNc#Bp$qGSS6b^lg&X9o#vh5?Ra**0AkhveFOFHyiy-`4
zxm_FdhP~G&->N$y%L|**32{@Y3Zg!!br#;(mm%uhYJ)Fz9`ZHDB?S6}l8Xrg0YA{2
zoxV2@csPCGo(>D7|NQ)JXc@)jz2O<R`)FT`?)COwDBr=4>~ko=$~~xHST-%vTQaYe
z?+b$p-%(KO-HnEWA0;ar^Bb29<iJU|+#f7Gjs$!@H4;UI*%aa^YwTKAKgSW>K6wR#
z)Y<gsq{?LTP(1ueTqo;O8wi<x3o#uz(>tjz5z}v_sn~eA2pl1Z2P$wkh!i?u7!p|a
z0~_-yH8K-ff}wcM(^rM0c<kpaICl^0a+ieTWo8upm+y(Wlqt+975j@{Tb-P^xIs2@
z+c>}9+s3>!smrGY2{yo|Sj=L6kDY%XHedOZE)+eg#4K#w5JE?Ts+gly*0^J*V*M6-
z9@qP#P@(mfJA=)t>9981peW^>20VsOUh1KVxSS>9xzscdvEcq*Slnctc2jTGx2;mW
z%6-CcThx>X{|Sn67Fozt%MCL_IZf~;H``n?l#x#TeIsAFRNlfGRcVESd*ULC_IFaQ
z>>auJSw_xUOFbjW8rf~JW&(GVK;TfB+cUD^@UXcJ3BPE0oE9487}>Y2Rh;I{=wB?$
z1Nu{PB-it_9g<ri&>+2Y4Wt!w`YFBWgNQD)pgI;gevXVULVqx+JJvqQU%oGPF)91+
zM#^}xREy!YUbm=44v$cT*bbpzGDaMH(;tOxeX~v>al3YAc1Mbqja~}2kiA$^9&0kN
z)<kVOWz~W(7$PA?*Tl0OHN1WE;9!L+TH7nEBYxg$6MXR2-9#_*5ZHBeL*mMfc8f1U
zXpuA`sDU4USx%N@X`K-<GuN*`fucX)y<A5YKK1Zjn#-q&frHgN4NmvoK5;z~!DC2M
z2wA)*O-W7OSNlM5gj1-KHX|r;^HZk4u)Xtf&0(`6G$YXb_a<K{A3kOvz@i`pIJp0g
z<vLnA=>K<K2S7&opU!5OQf88Hn~vrWh1w{Tzn#s>vNFN%fX-$Q?V9%Kk@v?WZPSfZ
zS$5Knkxq7+o3XPekm78Y_+!J;jx3%2kn&sJvVVT2#V8&ZO~Ea{JhVJJ+#a=W5@26U
z4$c5fpEW2wDUpg3TRYQtQ%n2fft>gAapDF9uezEL9d2KHUtnbX<_~ZdUWp}O0zAMR
zC@T*yF?3&mn6jzQrjM#5^>jWrXBjX7PSr^muR%HwZAU5Z40o7r3Sv}8@(#8p+axHz
zLf;9Vm}WC;rlv0vT3-~;+trgmqBTDzl&TVrUy+A4M2L-#xhMag!&=<MO3R#VNxZJL
zmg}nnSOB;BX92v86|ex_weimDOPzMC`_9b&xkD(!8&a<a9{qc_9mJbEfL%TC#vX`?
zg#ET(1l$`HsI9;|GejVmUAONYZ*FHw&Lox`GC~c+nma1Fp1!Nzdv}iznxSt8VHAfD
zU4XMw%#RN$pZ?37c)Fh(zRofdF%=B-cL00H`Bu+)d^#vQ%qI!-f1y!y2|XZ-a`D|#
z?XaaCENwctNPkG9;AHwFLk6+_!$uh;Y^+*WRs4sI5-eR?V~KTG<m;ABO(4mbz(igD
zO$fk7$&BNeV7;56<5y8ksKd_)EOJX701SX1m)g{Y2DDRj!0egnX`xvBCjWs=TVELf
z0f3{B8UKZ&e4xODQ`pV?(pZv#VL-_ciY0=A+1{IqX{X1FQk#b^1u|)-dbqrZv&)kl
zdOQs;udM*=egiKtXOYFQ@YK)I(QGvVEQoTDw>mOO0X(D6K#J4LkD*dG9dDedZ+y}F
zm@M~8M{Sr0T#KtjTA;k*8qn%Ln9q4=C$OI(PXJKKEicz?m<Yi|!SXy`&F3S>aBlfw
z5V6_x<QA@pRtBgHA&Elgt|xCa?OeKjX^fzVB`O3%BL@bE{ars1rt#w8zNndTIQV3s
z^_bIZ@V1nFo(-s(L%lG&A#}9*MmjKgk>M8aD~+456WZI>2U&+bJrwR{YaNMxR6Em`
z=e$yTD>D!w4OHVrYbfLvAI$D3FfnA3O1t?Fy|1}-EoTbXw?{XJp0PXd+23rx>YFzR
zom(%T>jkTI*29;a9vLm?9wy&<)f6@*;HNU6n|#Ln*mf@Aq9p*pi?^+;@>gTL(GYo>
zrF(K(9~ZeKHbd`rKC1{k{-y=5x(^$Qs#o*rL&@+W69<BPmFmbW^y%(>cSKYTHR1?2
z{x9n>M9X*K2WP}+V?8#FZpKx(`Re<1D8^HT>v+?#o9@^KLRX|`ML)h@TJ>o83cC+E
z9jItLPurFGcEfS^Yc*SPyQ8QC>cwnlY^wJ=Mf(IcsRio-I<;$`V{DZLl2#JD1|1|?
zwkq*!w!Gwxc@P^_KT1nF6P>H0H5GW<r|=U-2X5epZwx^ZhO8;33K+M<i%Qq~yUNyL
zc5NUgl++u9DYYc3V^piT%bpt7+?m#&yQG&Hz_J^!daSqIp1xSBV;(L}-#%S=aBRA+
z+Me<Mx3|j0%6<n0{_PtbpauEw=!v7N<9~Fk5kT4dPYu$6Z{Sjk@N5R29#Dg<Bmu?&
z)F7Qj5ZM7WNMRC%{1W!9ny)Udv0Cb8k#+=tvJzcodt4?>z@(Pg=MQdn`t=$@Dyk=a
zcc><*lFA>fW0h1TE@2Nz`^Q~Pn$vqu0BQv0%jTz5przV6>tz4t;pO@MxOld&>m9(4
zCb%>R>6ymai9z8u=tNj1nM0bNQ}qm~poAxo%UIi|OU5)JylA_lcPRpvq>;ulzhMon
zNGMx0*S0eUh&BsHjlv~1(kc(?(@gN}V1JaY^+0d(XL?k<*n_yFOZ3+x^(AWXgadG^
zAz1H%C{hn2G{r-NrLeDNG@7(VXZ-a+6cyAQ^8_R{+~nH5<wKhXeF5y;QoL<(Ap!yA
z6z@B7oj>k3F}L4#z!f3;r1(;G`%v>a9X`e}H&$VPlG+ChJQ)nU{2|9cbUU_Y4k8g&
z8!)#E7`5bm2yiGr*43HxY?wI}at%gI(P3`w0ef2b{W3~!@iHL?Oc#wC$dA6`b?pzj
z2jlNX=5(qL)KbiZF!hhMiZY-IuvSfo4RPEOK<B@6^93PE3sxla9YF>$(mT;@I_x2;
zFJ4f!I_{F$g_03FQfE&i+wV|A)9IrR4PYJBhLCLxkQzne)J2Jv9P29)=beKKo5nxu
z^WU1XhiMrgxgIlpZNQM>l?JN-tX0&^Va*_<mN@)`N!x4!*wYa7zt(DRgM2Y65z2UP
z1U+O*)gaHAaqr2)>xcKP$t@)Y0!}jQIQ^u$GDpkCS!DxdkEJBx6+dd>9Jp54Aun2K
z?=x1_D&w#*q!guTatuMKlt!wQ=hZ_K=L&|CxpQ?|1<q%peR)GSMR*=-U`uxilkv)@
zzdV9gcz5gNgZmYixyQF9DE?vD*}`7<;jlj*?3WMUzGjB!vxb{+D}T<btgx_>MgHW!
zQ#yeKXV%E8hkCbvKg-ZZAraJ|F4Iaguk}S~xtzy|by5B*TAg@?1`9+ruEktIdo6eE
z!oJvYG?s|eOvzwY>q2qgNEuAL=8<=|B0=#q2W#dYYM0ht@6e)S3!YD9emyFR8w%y7
z%9Z0)K%*YUWZPmJoCU3EM)7Pte2*W(-`IjSv$pwR$sDVJVR}6$dEd%;^V!CF;jQd;
zhHVy*n@&8su6ee4anZ$O#cZDGACOxwHJJQm`h7;9oMnpk{~_xfqBHA)H5^+V+qRvK
zZQHhOb!^*CI<}oJwr$(Iz1E%F_20=^XK-d`u&Z{}`#c^k#aZcF23}XkL8`FUEmJ3Y
zed6(rMj1>V*sc5M2Dc$}h1QqxEB4z>5Mj0jn9cbI=hm);4n443+pe2zXn`i+?jWDU
zeu0VJWci-4VN)cfPH@sCPN;Ry8xlP}8gaJ5`XnE}o?c{?k#EoOxE9s^^eaDtJriqL
z^&rb{v7Hx2BBaP6@hB2!=gIG$=J|iTaycoK7?{oG$E-KFp?67XMnGQXV<Ye&)tH{%
zyjfY%LH9tPcxP<~9av^w?Mstf5e``DeeH@3C9qvj(^Gi*y$812f}@N168xQd?{Bkd
zY?Y;eZ_kn&snJh%^>Mgv)3nfIv|;h&z{Drrk;-N5m7}wbjM!-r?C>1vgmU{y(7@|Y
zJh74m4LY)J>E{aks})5VzpQo848y>L)q<|qZ!m@Ea7vu&{461!(T!a4!t48QtX1p+
zvrGM!y3OJ_diSj6Ft$2!wi}MNm6yNq#M6qaNcUZdwmpw7TMQxWfq-zemm`Z^kIedq
z8)}eAk(RBKW)+hzpCrzs2M>ErhHz&3?raFBOYXO)77gF&Ls?>(1%8;3a6Uh8ah@}m
z1r%RH*RimNc#*~Dk1ZR-EEjnD`{aC!5^jgdc(rl8d!HE%cSsTn=QZ*hazwk&^L)~p
z;f*m3LG05UOIkOP^id0XCgP<-Xv)}COiy3Ek}5?DPRmxCuVjXbQt`74FPE|B@XPo+
zj~M<_=~FWfSux;FEoty3J)|{<ZvU{lnbBufCoem(1TpwqzRZ_b4`F1l=k`{6Fb-Eg
zS*GX=IOg{&t-+KT1=yfHT;LO*(keB#_f*`GYrL}3=J;H`gsSY%vQPa7Vx$Fw$4<)i
zfA<!%oD{k){*AAxi2uK_(ACA#=3l<&NYmDNqwUxCU;RKzXS$`a=u4fg#Tu3p)AhM*
z+LFZVESd8;1yU2DQYd(+wYjaMUUv*2$@pYio{Y0Ja+ZehG;{Yn-~J#k$qt|9Uzct~
z5ev2n52U)bhd~sKxf1<m)&S9Ua;lQzos0M2dii4=B*|W>fs<m6>%{a>R!PgEy9N-q
z#WUR2y9fL8hZ{)ooIzpcUFp>7G~0P;q1HQOH{X0Cz<hF`3IM=eVv7u-kVWe`bbQMp
zL5y6lav>a{Q<q%qLr(xAxI~&nwJXA_!(d4a8lg~b7H>0VMW@DFau^5z4`lkBSV^4h
zC+*Wz5H!beq6re2FNbHO>A%qwA&Ezkcm?{!;wPUXx84>aU8gCj)=>=u`iPnjR)q!+
zW(W<vkNLu!Y2{3D<I9Y%C*$`d_8Up!ck~|u?~`vXOD|&&J7jwYIf%ik?cMjtY|ug9
zT6Z>by<T~Pi7^}*uWw8Tzbo18qy+!7m}!6sR9%4TE<(rG#l!Zl($$5o@9B$xP<<X8
z1JM3Bf$Pp-fcx^r3wd7hVbr$CZrmunKmhvC&nY6g$tS)cbIG(16vR#SO;XezltEWN
z1@rf=ySH91Ja*jYHP|N4SP#5-F;B?Y+Y6gOKep4gu4h{LpoA@3oW;DiJu`mL*e^`>
zo@@EpfT+3K$j30_#SEP|U!*-*-c7j4z?K8{%ZI?FUzL~e3I*529Jsq)NW55{<->iw
zmoM~Rf-9pn!p(lnxcvhc^=q@_+vOZ$8G{$leSO~rAmGV?wM=Lir$VzLXS;C$AvE%P
zddc0p?ASK#`$9oK2kCz>(=6G+fHCe&pTYXO5lnl2ODU!K!Jomjt_It<{x~1Kt@_CY
zku~RuqK@UyS%f&ommV_5KN78GvqF9TgAn6~_`}UfKQ@iqguiTu)$e=_|A^Q<d7+(c
zFPR*^bjyp(V*WXf9#MqBga`lQ1fT-olW<ckP)Vm}%jG1GJg_HZp^>%-^5Wfwv^3$r
zBBr&qfiOBXZza5EL!7xxA-^s6gV)^W$_y^Rwe#}9W3YBPYiU*aQ?aC>!U(980}?;}
zC6Z9*av0^D$(F)Piu0Z5^6OZq5bk-Z)uR2CmviEGu5xy4=$r7%lfcK0TlUI|m1Wiz
zGGY|8>vB0|TcP)K$Qf6d3=}R#aLR-9eTmu}XkF1Vm(|;`hut!3kR?J@QIlpC+A8l1
zHG|Vc)+%TylKkZWw`uc1v?02w3S97{^0?Xt7rzw6cPP$Zc|^J^-UJo%8c0(Fk>`;W
zcxHIqfe3bPlKd&D0;NhyYxJZh(p`D+E=mNZ;jNk@8Iye?DOv#%2xVB(D%35iYSL~q
zenn*{^`-K0N=ax)$(@+P>3kvR`OU6HQ%4KFiMFYQhj1J^4xE=|8Ej4m7Bse?+8=-~
z%pvP{R68alb>cQ%2#Vd`<qt0^yh=95LI37MP6f@8pe2breE%{M2Gnnsxh1BpYvtpx
zIqYlu;lvw)b>6URK{aYl7b;H0VCwFYcn~C>us>*5FWyBi*d1=WD^Bn<PHUPaMtWMk
zTb?OUpaNx=Ib8weB>{C2doJAl2yE%Yk1ja^usC>N`)aO5ZufkQg0lBhn$_={M^dw_
zY<Bc-yl}|5bx5?pwfbOvQwvE>-~}&_4KW>Uh(VI)mo&38<+HAfInA$F!)?h|SS6V<
zS%d6z(O(SA-B7@pHZcKwPe8Kie?bzI6mR&~MP`zN4iZ>vM+c0<JY6sL{?;6|NsuDq
z)}%>2u8GYrzO|o^QoqmPKOT(EBF4S+-&BjEr>Z9AYP-|7X`BnJDVu1`R1lT2@Ebc}
zRX?*GJ4BrKjKp!&b{@zF|FzpQv$CIyI@opb7yj<s1-Xw`1BC$_ugDGlf($$Qvu+cF
z^+1;=hKI+u%1+&UJ6qp+by3xD6)(f{K}lnHGNl>ctk6EU6KxjxN6Hx%dFqf~-d5OO
z10CZR8c%39iMT)Cw;>k5i>nHn%3IohO}OD1{uOHB9Ma;rpqP0}&{+nB0v3c;^7VKa
z-&=ee_pAK$ICgruL9)9{Ni#l%mtV&4*T~07*8SNZPMOAXAj;P;n6Zn=kq*zc6WG6@
zoj-KLc9&PFs(%E*$o+$IuP!zaJYQmc*6LO6&@(z4BSLx&`V!Pb`deFXUnZt=EV83+
zDig;54BJr0X3<ucYHNd$E9wHYpZ=kF*BH~u?h9H^gU#|*5ld^3-9^4fY6CQnRaRp+
z7C|az-KF^xK;t-WH7QEDj>_z{NLBfpu0jip0ZQ9WH%#AFzjF2#r`5?!<ny@gE8W3M
zic?`tdfk9I{$2PnJ*s0lD$^G)<)4t{Cn08hHifALIWkRQQIWfh4Iqi>5{lG0noa$<
zWFqm~|I^90v<(UvSy+ErrS#;_s1;6|jG+J$+2~|d9+&l{Xpr9(k_8)YpR8qqwb*FY
zdd84T|3c8Res-^(J4D4yDvPQrenpl(I-iIfY&KC-J;JR|fEaoj3R}YG%_vjDg7{Ug
z)kcn6wje=yY16q5U&^Ndcym$5Xq+^*B9Hes;s4eX{7_b6Mq{|~iQT^>S+nUv6#K}j
z&>O0?dwj1MY&kyS=(wYWxXV2ZuW7Pe)U7}Ft3!iW_iEl=P6U11{R5^-5}*@OS%=hU
zK||iD?N8`7`hBgh@88~c#Mj=bqb}69<{m2uPab?*mqVy60h1R*jd-VmHqkXAn6&`R
z1t~6kJ7IZ(U1>?sr6|lQBKUQicUc7>Y4U?0U@sc|P~c~HL%g{iQsud7vI->ziDRsr
zS_z}?+pp1+t^Um{0-rIZlbH=b&$TAmWCjdqEjwvm*hn;{Yz<9#+^q`cgTzGp2szxT
zZ};L05{!x3-CaO)>G0+ZI_Y7-t=&Zr&vv*rUFvgZ1pn&kd2B$1IV&H_l#)?T!Q?w;
z3Op-4q2MmUzRWUKg%MtU&!ng5KrqRaU6d#zDo??faE3R9(+vAAVRc9m{xX9Y7d}b}
z=sOVYbje{9&^98dQmII0r!9TmmOm0}7iK?wGG=?ZR=!$ubHIsr7qQ`QH4lPte?pJN
z%}%7t&pf(v*1Sy}?|XI+LMo>%m=m0QJKz0{1UD*e@GB-p_%{W|4rqgH*1sQZCeB__
z7}D$=sRu`DHv13Zd|$?{$5pmxl(X5-RrD>V{PfLUQpXg}%i|{Ve8{8ik&ls8kmDG6
zwaVQzCP+0{`O@?Gl7O2SU?tL<#tz?TwZOzPd4&LKr?vSP=1wiU0(doPPzYAhLajJ;
z<PR(Yr$E&<dDtjj7wTE#6f@+;B)jGGYRwV=!)s$8QkNpMn%mQXyedzJj?O-QF8i5}
zfjMtr+l~w|#*W+o6)on!oG9{4(QfB|*~JDbAfSKiOF;ip-waNsb|$7yrcVFr!Yi$R
zHwt6F{(+V1%kpCmXG5~nE|xg)D#se=vgz6refo*u!K8EmA#a88$);OR-`;r{x{1<C
z%Vc5C!co|PvQFmaW+%R84?>THPxQ}fFBKNgTKl{*%bkzEVea^3jO}|Qi#Y2=h)de=
zAKwQh^=XSVitnk==9J*b`S!eFvB>XFPesAkF5EsI4_!YV8H_N&_1d6mnV>M9=U@f4
z$2o5khd@hMk+Vd!i~^@pp@>(s_iIr)2A+_IgHg}A)51x$O0_9cyG~1>Z`<aKP{tTt
zm4rmAx%T9$IqtZnidVhPy8AfZacq_9hnNCR^hTU|P^wm;mCv*U8e@yZXHw`-IjQ^t
zhj_h`CzH4pFiSWol+E;(hk+N7>o_l(U5xfZ2kv~=F90HV?p{k6Npr)G!tR@4vqM)N
zj|;n9{`A;e(AzkLJiHi#b5jN$?j+MhOBdI>X2cyUD<Ik<TYE0Ec|bE^{f|=7A8A{6
z?dh=r=xs1vgWFGAZw4NK4+xId6;K7r=cqYwh0Vv&ZW^D{9s(W2Qht`BsD78#JQ<sO
zAdJEvWq(ezBpRV4rl%f6(9@pY>!_$XOpA`eyy3%^9UPZhItSkCmr{irMsMsGQF}1!
zw+}o8V6kj>`;N4s!SvR1b?$jpcW$h}Lrlo5O<nmjAdG{#m^OUbaC1kFvtSYT^^&Q0
z+_oHz)s--n(IF>y3Am@y;JNr+K@aY0WQ@V@qo>^l{>vxJi}1a&A|{|4a<5>rj)VRX
zi`eT@f#5F^F&Nsxo&kUo1zHfwaRL7yB)g92m%?iBkJIuw3mr-Ssb$U`kDiNA8pq$+
zeQ<`Iuh@MfAQ`07Qsh9tx$lEqQOoMm<8dcmj@K|4#&dU}vqUqy`<=EZ$F`Li;<=DH
zWNhA=;;rwY9*i?Rs)~w8EKCN<&cmM--8tWYGF*nv6kqJT*szmCU4|}-uHW7Q^7Gqc
zJ%VjvcO;RSQVU>DB4%R2{2m2OX&2A8LGx4);DG10vnVA2hDdy??kM#RLNH*LzAv|2
zSb4AaitqdH>PGrEt@evMJD5?0RfE99fM`l~Z9<4JcdDjp6G~%>l$l#0iPFOvn4~g<
zz$t^`p{?g_?ae3!Vlmq8_*fZW=6ftqA<;=6Yb#VVBs?1N-0Nk5lLexg=|zh72qHsn
zgKAT2b0Iq~yOTv^=^ah7oaY61TM_XS%T$lvvFXl*l^T%XtG4UQ2QhMy_BSpUkfDW{
zGdo%TR}<A;PC1ix+62`W18BX>9KWYnY~c?#6EU+0Mnxd~1{w~rLvZ*zQ@HC5jRR#P
zd6a?S-qx#LKWln>V}_JQ?=v9%#*R4L$~QuHsm%zTA?D_xEcV-M=9V-DA{>BM2KaR0
z>P%ohC@alvk<7mn+<<CXK=vC{Sx58{h$L5<8GD5o2X<{%tW`N*Po$p4?wVX#;MQ-S
z13bJ@#xUVF7jrE;UV;GPs-jyY01mtqs&q|5wU2PaoE3~M2aaBJL0d`4))H0>LDybM
zYC2rz`9qgFsedfUUSM5FQn&Fhmf{BQOSGbue_!YObgHi2zPuG%qbvL_uV+6w(qpL4
z#A>mpaPG4Zcy+F;so-TOgnRwtUV+5FK1SC17x)F{>f-ZdOcjdxwKa^EhPlrtqp9s7
zvW|^Wyu=rtN<n!Yd<WLIY&uA1TqOAcKKLB2)WC*EcD!A2FjUc<DX|7+tX)U9jrJc-
z46L*8lxA0C_9Qj*Y&2wb`eB>nP(AJ}Hk304I?8;OXrYWzbdoxskL#^0_taEE;pS<l
zPVi~qTaQ?IEe9loR$}*-?EJ)(-lmlHzFAmfrfeu1Z~8TuUsM){o%O485!0poNL-#&
zEE)zxgMM}_m(`C6@=-VAV^Y#<Z}pjcYSV=>l|^LAdXsPv6TRPRdgGTxBn?B_TT-ck
zM{(33bG`B(L*+(_&fBk}%AH$CqXUyb?{KiYf#_2D{b|tzB@=HwO(5PGicNdXu%q(D
zhKv%n-<z7e7Ey*64B7*%+aa(Ns?ge1UOk%hh6@N-Z^->>xDO-7sxza^`GwfPWTVQ?
zY(y0|@e!3nE8zi@b9>62;WYLN$|eADW>PrQtgb6IkyD}HtV@#5f2|ki8I?j_O#XBX
zr1Z!DxPPOM7f9{(BgY+flCjhkloMLEjJrX5`=j!^BvVdEyGpS?As1};Sfl`c)i9f2
zq4cD9zP;W8W~q<(Z4<QW-)pMZBV?vDP<mw=UQ_!wLPIFdrHO;!gElt96~^Q!(VPdx
zD{5f>6vB<wqgJf5D{`aChr%tNO%rmtb%Bv9QM+EjF1mej{z>Mv?1xfbA2nnW04Z|`
zcsP;B=5^!e{uYDD!^Ko9OEkIa@~(kRmeTu{rI<lh-Adc_TSXM(XUe&1FIocC{iQFJ
zabPdXV0baw2c1B_KY%%p`8`z-YunElNb0(utcX2L<h$b#okQWP4!m5fxZZEhMtqrT
zU<-ybutF_(nKa58xvk8Sgjb^SP2IUH>Tp>}&FR(-ckSSL%3U#7`)r`W{`vP}fSy^!
zgh?!?o?<Wsm%7opaa#I@EuZL8O2<I%s@k0i%p!$vjTuF;ihfurQ{k$xo4kO%r@g~!
zQDm-iNFXKrw^`ULsh*;`26BC6owTDc#!o8eZ@<-LQ-ELy5VIn=b^C29evmL<yvrco
za0?w;vs~AHJ3{6^!>0AE^d0F6R27niKDMmBVvaDf#T)`zh!mj;(e1^e82zaDht`s%
z=2c3MS!gJMT1ai2PKv+TiPcj+G3#VwN1eiNr%^-t<Mi-&2jrCN)<uxUy>Imk`No7Q
zM(d;Rq{!&y41_xq#a?l6&RkXCSaU1dCu!ZJ(E#4*Lk;^QT72zGi5O3ccCah3QD<9h
zH`GvDh`J{qf~A$<>h$4E?nxk}J{GoY9YSTI(JP4Fg4@W*=#Je59CD`Uw%;OTt)g&o
z18Eg)?)ViVw|sw}TO@8RZ14vxq_a20wV7Vj!u!*b0MJQ}-Dri5u}r&`m)T9Izmz^<
z8-QyBcw{pOeC@-nhUB}O^Eje7tE~e1Cqbl6EOHH>+HUA^Br@Msu4@hPD)hC8ti}8$
zRm4QM&McvWQdiqh|HO$&&ZGwEvhXG6nrf}4*$r0(jaLoOk3%a##EPR~7_NrB%Dc2!
zaV6eVsuPk{#8P6%ko$5{xg|TxcLTFHvQ`@HHT)fnabQVHtijOw$Zu3imj-%wl@w;T
zXWBp7Z}iF|9$jlykwsuwYu92c_S#m%qFiqT!tdLL_SFuBvCUzmt52Koq6r--pXWsf
zEM!Xn>sH}ndmxt>f$~-EY}U*xy7?Wpabb9SIserYnk$>DVj|>L8SX-Iu}ZKpI{NH-
zQ5@NfpOYar7T~PXC_Fx1mC}zw;Dvl+(V8raigNn^;rCwtS=+<7`+C`b-0=C5W_1!k
zsOc!T6xVIz{YwLku_ewv%#!Mvsm`j8<8DgpZFe`RM^(Yi&?6de%1d%V)q|DPw_kKn
z8!t2ek)ITEYI}P@=r(mv2Hst(u;l20#!W?YtI)0$!2p%A`D~IT{(DKugAzy~Bn+0?
zd{KbK{8GHV>QEtEmJPptPJIb92!!QsakTW!Qk$$FzbU#wOqLJ*)T6MlNqjHdOh2`P
zSy+{;G$@o@P|IkU`Hdow!!UxdRDq~VI~h95<(Kh7ty$I6<f(cJnbqIPPa2rayGVc&
z0*^&o)Z>}|X5_H$sW)PS!(M8Moxxd;g&vqzrcWiT0d5wBgv6(XFHtajoHtbi;8yW{
zPD{z6S-s`Y4|qZolE@|D@~lBBy=!T=_MM~8ocGt(hI^`qb?=vn3I|3)$CIX)V<P&(
zl>*`)BFfhUGBpvr$o+8J2YT!$bglJCG>2H>n>{X(_hMMe<ZXpxa)h&NN7PxTg20C6
zCPKVL7wIWNn09f7b<!V1_@C!lps&SX;dX)7N{N2V8YlR>qdAgb<v&8@(R+FIvP+mp
zQ|6@&G^(<imLqN679DcB-4G@faon?0XlV25>@M%P9~*c4tRfYv%}W*I0msyD5)mUb
z?BFa1S=cPDVf<A9zYHVOS<%}@2F&g`#EtdbBy9SsYam3UO88M(d^wS)puO1;=pY3!
z`N?2j787ch>QR{)W|#GEZv5N=rK3So;BJouzOxtq?5D63F$j9yZ#D8_sC)v8j6oXH
zRN8kM2NFpn4R)0Z(D^TnccY3>aY1b!p*@mKrWsSe2uX~7=MI~M@SFE{)0#4%BONUd
z7vj~p-p9nl{KW}9<MRAthC`Cag}U><#dc@8nhMR|-)uFyBJ;r)Wxb8x@9xVxD$B4D
zpTD%n8Qw44Sk>w?7u!zwp;DBaV=uxQ*c2Ds{npCk8RimPwe}Cg#%*a9%ncl697c`g
zFq)V4pb!arFs_`2REys7!nt?kSaIG=i%{ZGA7}~~VdRC{_q|`ls{Xv~q6y}}Q1fR#
zTNn{5=;brmP5w~MmX}kT-=tutB&$F0?4opAjV+|f5u301l?<B~1M=VBWs<5Unq+QO
z%O-bNbQa*Rd;b%v)j<^1IpPKas(Jap{h719jobhBXTBfKIHPmBH=i^k21j6&ghFc_
zn`n54A4rJ}o_QkFq-dkVMuO4?f_81Iq3#&PNO?am7o%O~=s;v0PVFq?=z&`qx$5rn
zy`|>rxT#U9DO=lYh2E<u;-cLeZ0@GOGf}1EcB!(OOTLO_6&~JB9zI@<v}UGcnUBgO
z;~AXooT#4cl2P1SYimydzTLe)Q`;*awclZ!bSIki*)PMAOjwtfLVy=bwwZJ8;M7bd
z+KVOza)ow=<0ICr{+;6VNJ}+m0;Rc4)8_IC&4+Xqs_w~5>|L1&fKx8I>^vdmrIu3l
zkdY?cI5%3HrZdGZ);C>ROnN^f(6p{r2?vd%HkoLW+y{`EVhZ9KYmN|)B<PO-3dfPK
zl<z(;nknc(acTtvEDMkyxI*GEu`G208Zp4RI;(^Y@#X%**wOL%_&#jzjY%fc!{6_@
zHL2);WDZNW?<N*A2R~w=(Ve1<U^{{&eW|r5$sNP!@wp~|`lM)KBIy7&;9(GO^s@i?
z+Bx@@(8dc|2Q<;g$LI60cY659Q|W$x{k4H&(Z7gcZVxondGIiJv)6yhKw&RW?_Zp{
zldY4Budf3K1okL|`*ZdBsHEc)XP{E{?F0wK_&%{=e0O|_+ZQe8kBV^<hbS**|1o>;
za4;yXv90`cb*Y1!3*7Sg1R4;;yl?Sn_lWnrmt8rY$60(Mo`zvQd&mWMxj(oejoX*?
z(CEH@wFdsI>C?vfhg>X;q#BL|vb+0KxZ5~=$@%jB6qU!t!_&zv@~B{M;^Eix{^M(B
zE5#089zMSD5(~AzryBw|zs?wpFB3O^dmsDEZygZKa(^)a;PEr2!D7u(vXEQ_g4h{D
z<n0)!YaDkp2p*n)7@E^Zp~b0tF%?VQV?;}~fG{4O#>(s{v*xi#?Sv@|)1`1l;4!~s
z*~}gf*i!_SRsj{c`<^x(dZ+v-MDWj4*EH2!bB<t9C15vcsM~12o3R~~d>ul0%Cg+W
zqr=~}kF}~bJ?!qPnKA_&?}F?r4guVyM>=019W?m{-9`8^QC{(WnZ=8`Cq$pdKe<PM
zng>D}8S~SZ{k`UwkGSU>PpuVztrb6YV*A5KnW<LICFD|ZHaA(N<veK;Z^gwf6>YdS
zYbbb?a&JuOw4LE2OLkvBu{`$fKa&z}<g~Gx&x7lUfq36&r9fPoZ0gPBrNYGi<Bhoa
zjTl9luK7Jg0Nv=hcw9eFhYkpa5N}~U^d-DQXOoy4$-I03O|-H`haNrpfwxBCh8EoL
zOio^%%hp*G!tPEX*tL$kUqND{Cn%ZR1TmVCI&bMdJutgEJ&odTbR%AfKRoycg!d|q
zs&=61htxBX$3SaNPDy3L7O@`o-H^22scMy*h^vaniIQ|uyQNFU5U<?&bZP-PKs<m*
zY%bcmL(>F5tzwkj!TsO5e5p$+lx@g5>~x9s{j5HmvgWfZ)nl1=ZQ5mT)eL(3yL&Uz
zxe#12PEPZc8#t#hesg%B&Q57^*GDo^eY|PD1?EoSjpqH3(S2k9D@>In)TE}WN*CwC
z(?4fza#^{m@cgPl56o7F^zJ&Urb{VR6vq=Czc}iSpkU#y&49`m8nb2=gj&{weK!5A
zNXD3uH=D76Qu;te;*y#AY$fGE?20%M^_1V)4E7k_RWrk!i=&=_^T?;vP>lPs+WW_O
zUkkjp8sDoU29m47_7czSOU+W)Co1ECXi*K3i4GkS1QhY&nvgV%`j);liN_!qunH};
z{!Yz8IF|J3x7K{-4b!ydc>2OJa{oJ`tJ=GY&G6^z(JSPNo;dCc<W?O`_=5eDHRp0D
zqUfXL=M)*zcc*81ae*3KAjag9N?~ix2Y9c3py#n<R2%1`7$qYc#>gdqk2rm60crD^
zuTqZD!L~!n%d%mE*U!vo@e55$ud<Qq4LrlL0jvK&$5_aLgMM0OsGcnfiK8l1VATRQ
zb~pyzJNDN-UC>l|Ua44Drock-qgc6@8zOXRUV^h3D7DS23tziJEow<npQG+pAbHut
zRxOwTe<A${1j$K0Pg_|d7=i+@ndDJc868M~Gk#Z)7@Q-c?;;#kj#du&E8dSDtrWpi
z(<z|ejv(nKR()A#eJ7o%+;E?@y&f8ETX;s<C<pif%Q8HaqLa4w>lptuLm7;m?h>`O
zBTj_K^jbfeJ7lrzHa6<(@)VQK8R|QB<QMj*|5nhhzNRUUI?z<76FF252MDrtW?ff;
z$^pC*ClAAgH{%%~%2m;n&75n!==vH4uqB`-WRQ|3s;r}s&ehKg;t;g-oY`Z)PN(bb
z0l#$U2hzmyF+ga<hD_8X-;YW5+3Mn4xL4;&GD4S}K1Q_&_^IdI9bkTZJ~`_I?L)^)
zqdIo#^<Z|_qg%!v3-l{nDVP6!I*cvTbP^s36@{8hiVFlH<HF}hSMt@*^Zk*msHMY%
zTTVCKKG@x~3P!?y<-$;LI&s>U+gKGDNJF+a%AkVGtW&0RI0liV3CeqN>hgGvc^H$`
z0mv*l=HlUL@=wTwJ{0h;g{qqutTj04xsJ+e0CPn(@vn&1JBtlaktTBq9c$9L*<B5H
zFJ0B+vm0l!D%bt?6o|Y@Ih$~mzx>J|Aa-F<%N`C<wZaZH021H^fVry-k;~Gp2AS2o
zf*vK(kUQ#_luK7fedJ?ANm1t>+$KzmY6TiW*&zLp&>?;gjD#HWG>fJOd<l@$MFhyW
zc)s=o>%bBKAqr(kyZpxOhLnql>*+b}-D%rsH}v|HB}R2sEt=Y}NiBT$gZ>FNIx>v&
zIVX-~OKPu%-<St6MK99UQrca=PxV@R)1_m&Ir+1}hv~!e0Zs|T8bd|<I>UR>>oRnM
z^u5%dd)VDWOjA|F2~ZV?`FdGlHcZvQV}Ypk!W>-OWqma%@(9mPxDY5__N~WuIug!Z
zE(j_v&6q<BK;YS-2G(;O5)*2A8u$z*1w-LxFnq}@%@;f#oB0R5H!wsOh#1T<CY$ww
z)uEgL24N%>(p}XE&?|bCO7=>UsViE@Ol7ld$fBLeToO<qxbFbdc(Lq=AHlJ7P)0Hs
zX$0wLN0^VL=6wW=rQ41FQhZNpYuHw88You15^_RlFCzx6g*R`pIHRiL-hU}P00y%v
zn%YZ~OCCU7{jrC#hL4%$h5w@KaOP8RUbFs1L%eI8<$JO&M3Ed|wXS$x;{YQ%I<WYQ
zC7;7ZBN;ovW3DPCS!40Kl3hggmoDZiiAM7!QOa;RL?Je|aDCIJ7K@+r($V_<A)gYT
zO6|v?C6)a*umcj>9^EX81oAA2%LZy|w{>cm+=LNB4nt-Nh!md}7<oXQ10*1c*is6~
zp!k%qnEBjZNIo6ZpFdILHl!PJ$z9`l=Q;Oe%iD+eK$4xc<q5qQssd|kHa5vlT&$1Q
z)Kg=S>t3FWjm8`PN{!O|7+Mjk+dm{!O;3o5uL>bM&D7bEecjExyu7{;RY5#E5BAJ~
z6dy5ul^wh(9AT!@DI@qk6am^%T<A>QZsW#a#}v<&hd!ugQWkGL&XGa#zRL$roSb7}
zup!;Fbs};TSi8B%irAb{bq^z^jP!u+J$Eb@elcN6VuIH8-i>>(vz7&6w4a<S;Lw+1
zep08g1zs7TV3#_Ks<G%)U?V({?O_b!!4tUuWRr0qCBdXE$&7rS)nFv2ZbAig(^!<w
z6=xE%?i|E^4#-h@wia<N7cu~f$#e>$MjIogjLmn0<E0IjBH&k3&0){SrWk*PcbdN2
zP1QUbjXT^Y$6#rO1)tM{2>*ybv~UOE6f6h~sW7-*sJi6V+xROII)-zz#P>R?)?AUE
z{hM$p86H2ZJbt<DS^SfZ2G=+zoq~q>-O&+3l5u(l_%bTf(&;bnL%3|_6AN(rN7$eo
ze4a4GY34RUh;bpKeHGPpH00kE2Zz|5S!5dwQWc)tu2`K%q+Tu4BM(Fy{*&EWPM8Yb
ztcE{~2s&Rn?+-GPDzY`q`52w1Hga)B<MQ*2pGn4jCF;CZO(}C2KV&FN3NdTmwl*v0
zRoZ>gP?6~bc0}`yVXWjY!-ohS917DKO7*6zsl0~Oks778v5G{_^#zQ5LuB>91f@kR
z8jQGCfnd~8bZ}jM+-h#7V=r3wQl2Og#fxflh48w8E>31`!b$@Wukx*s>w>5wxPDV<
z4~`3m?CqNazvnE>)$@+4+y!!XsoQfXAjfJcO1e$fqNNhlaUtg;yn7zYA*L+=^5qx8
z_Uvk-_@ma!z2`ANZ5ps}5z9D%uctS{g7a%2;lhRmJoM)%C2aK=@R*LLIdEDe*`g-}
zo{Pe6T{m?T<S`!H2X%GTh|#$TD;*mbp5fp($Jq7ED+yMCvECV$#B!0A?-Aq$-PU#9
zYgclHhJG<_z<+njleG|%0J>g*hNy%aa#nObv(AQkLmbrCM|fl4gI_&;4vnZiZ<jbb
zpg9KwFW~9{>Yu}Nx(g%v>Nv}Ou!OLD<Xn@8g96sJqd1ln0+_V|>a8oSIA`t3FKHr*
zf{aXlD-TXiahGzTtnk|dpivLX1zN3$qF?w=U0B#FcJ`L}^jdYrS&5&tw7Z1RUo16J
zqs`*<l3S`6&0W**9--9;dm<Tf2AHv1VK)=vNErfnWlx>bW9ro8AtvsCNB)+pKe7U9
z_E60(>K+9xr_mx=<~Ol%)2-7=F&D&|0sD*T_+k|b4Elq1;H&-C9&t|9K?0e;w6v1{
z2xbRJ+`uxL=%S^#)6T21ERUs(=pa_+l-1kCvLtlA0ADN5E*D|KV<p1Np+OQCtF#5|
z<|H0gHYDuFCeB!bc3eJ<FiVK@Gh~74{n+xEbZc_wVyVobA1U>9<wKb9njptc+{=2v
z-%^hvF}?WTWM$5^a%R;O(m7F#R&}xNa!v}w3iH6E;Csvf#35P+l;qN$wH<=X&e*;*
z!MikHr)NbxHTN;s&g`B1aSmmCc%8jbR=Q{?gmqW0De?}`=1$_PQk*!$Jrg_ypVJhr
zfS$$B+ATtw)XPs`fsEY@iqNvW%zA3$QVMc*h=9qa-~qQJ=5)5Mdq(pdIVR9mmk5Ee
zB(PI{IzeUvP81a&4o5GP%hhS1p}apD!^2k}E~4nPt7Qx1Y<2=qf=s>MI~a(3c&Wh;
zzXc3|DQVy+0!j&NsCbqwx*U%*yKcbw+D1pV=7~h;tPCJ)ueThVW>kHe!Ck$hj=EF!
zg$O>}2~o-CiLLpRjY=AKcS>SxNrAN(C^Umg74}6LfORJO<%q0NS<0;n!6CIx`4NIb
zD%E6zhKAO^j7AneUKK%)%O^&8c;$ec8<N>sR@P_J-kAur6};-18cwR%6v5Vw*_6=n
zF!x5|I3fK+`kxy@gyZS)c_~#B9dOgokLkm!JQbK3pGU;qV26cJW9(P<Uxe?dDXaEv
z@^hN+kpOJKV45HOgy%+BqKm&7wgL~c9gkU+#v)uTi7FBsWbe!#>?0f*prbEsP>*bs
zk81;*&_|`z+w2v?CL5;iO?}N7vdyTiz*E3!dR*-5{9IB5go;9qlDvz~DjCL!_3J%<
zt?~Ah=@l;oBAKrj1v3hgPEtd!U;Zxr>_w5|^|TB`Bjg%8gH18&jBa)xc@eUI2{Lt!
z3}r`z^wjYj^}MpT-jHOVb~^q9Em*VUl5IY$z#ph9yD**fp3?V8dCV;~eO>XLv=RLk
z_(1*FpP^EP=}N&(nZf1dzPgP-`8DQ}Ft+a|6D*>(kkE4RbqjguFv-IGaU-8+0)z)u
zb<Nk}k?*n$KJDYMR!7FQjg=cztd1_qlKbl6?N2v#4v^wWRktZTvS_}d!wCSC;z*@v
za7z-n#cV2M$Nj9y01?_ym0n+kw@ivnX2{r!gk1GLy=YmXeh_m@;MCCwUqlcuVodVv
zaDDwl1#y+FRuP%)9L(iX-lDm=>6cDOX2s8)oD~TcR-@SjuQ~pWTtGf_pVuW&P8#B+
zd|pwZ76bA>OJ<l-!tedLc-J1Z5zf=~w&`zZ9C{?2>dh+OPml3b>JYd_pjc?p1O{om
zDpQwg(m_%mYfi_axZur!#0%ARf4P*2<6lg}uv4N|0=iGb9KZL(l#26%*Jl}z$KKb-
z_~CC{@6Hj1%fskIZO7+CpDMX>Vyksb8o}YzMThc&Kq<~+=*sIIXSx*i{TJwmdW+l?
z8OQC^2vL<IqTpr<NG~H1n_7X6<P*v8U*rOxB3VhEy|krTx$jxoHw@xTTsEtzqeg<s
zeV+tkn9V8^k=V*LLm|hq1Q|&{+b2ZL135m+$`$@*i!g#1p0%4L<a;y!Ltp=5@+(pk
z16rZBF;mhZq5r4Z0FO1StHJH(;LsNDp420<omz#?qnSOfA(4xpZe>gGLq8`$_r*sZ
z1FXC24T+j~>**SQ*~8rRiV*oRS2oe8UtNZ-c(9atbWPkZdU)5H$bWjCUQZehwmuW$
z?vd!ZY{+eocx#H75J@+`6X%*{;Y%F7P2J!A{5dk@;ZB-mU&tJ(QByJNT9a{h{EbIJ
zB|f#xA}lh2)^l&w<dSXrwV~jO*iq-_Q<<iSnad_-xqskX^VbUg^Mh4CUrrWWq0Wu7
zCK5?iUVy~7t8QAt%`TM<4zu#)$d>(V*ZIN+T8sca$wZOCd40#yIPurTqE+63mZFz-
z;<>~ceN&oR>m^y20o3Ya&F&)lDcbM1!Hn`iq&vc5Daw$yK#AcM-{TP`Fy1VMvhtHy
z$-rY!;Zad@HB(EbtN0rlb}kY5hvG4G)}eI`h+8r`;VqR3Xq%teDk{b($)fNp$^JN)
z<G|B=EYap2=mC;9p!`vzQ>6SrGGQ{=Im(Ya8bF<7tr`;V*^)JR6zK1K3jxFI={DLC
zQLbaWO$Nm>Nw)UJbiSS*ghG-zzBALO{9`^t*<tx}$^N89TzZC!wsl?ufCi*mi_8oV
zJfklCQ5)~py(Zs?h27^in?VtPHCw~6mVr99(REqX{nWFIUq{p}+|Pw>SN;@PT!{*o
zz-rM2_BO(dJ58acS_w3o9*4*NX?(8o#mE6w-tAl$Psck)Dax#Logv?B9=k&u>=sR5
z9$jw=$lOt;UwFpvJwl!_`pMGBvNciysD9UICcc?QE<oHwGWHL4i=vVg_;GgMWFQXN
zTjeq6h$mi#L>A2HSlo&s%BH^o!fOYDC;Ku3&0+gN4NVgsSuE-ns>D@l>fPu^KXq(U
zX+P1x1c&7HD0{G&TFpqCY_#Wak?HB=gy836Q?G*I3L|rS_EeoaC=GL*4-v9k^i~q#
z1QBl*&NU=@TN`w22;v%L4p6XdOo^aW1!_usOhqM)^>fL{l5suC;hrMNaml2FNEUyq
z0l2=DRl$MDJ!M}7yV8W-wFc+6aOL8W2u$nP-Wlb%jNNbQXT9My2joOv+e=Ibe8pJu
zufu}L(r2}~MzJ$XeRA!%wEF=f;wnmm-NLFw>Gb0`smX2ExH}v%<u64205^}b0CYlB
ze74?*Wb#06YBH_CvyIF8o4Nsof#}HN5rj@X&K1!uPF<lU^xxQ!Aq36PfZ*=P2n1DF
z>KqkR0iC{;e5}D@CVk?kTBf_doQ&LGcNwL5W{X)+a+ND3xW?S0+X5vZ5%ME{nX9Xe
zb_O<OZsAOp%Y#w!7ia;D8<kC$TIOD#@)L3%re@IXWgN+rq)TXdi{A~C_Z7T(BA26$
zmdw)F+#9sx(#A^h{9$q+<KSOPIZ8GZNNY*`$do`yXd`nJK+)o^9~)?N*(8e36af1P
z7`M(h#`0qQP&V)SjN)%&WI){yy$vnO0NjKE$ha&x27sC&$x@@b_^THGkHZm8>-eA0
z;vSpUXq`oKglt)sO|DDhIX}FM9J&QD9*vYfX`}8!oBZH+JFcvwOS+~#v1q$rSaLjf
z8$2eG&W8D=>T79{E(xyt8T3tpB8}rzAaM!)gc05AJ9l-Ntsr#!b<7r|(BkZ#cZ4j0
z(7X?w`^jcw6aWhk?SXt5EowNp)9*f|0Ps*DtBNlAaAFxH35R6Y;{>_=M7|L3bU8XC
zj<f3Gr2e>Iz2Y*blg9?*Q0(L!%BoQL7vBD*>c0^rW`-#ZP)f+e)8Zlt<14W(_?qe%
zNlY71rF~DgV}+x#V=kI>{D^6&_#U<|F`07|yS|37-hZR*;n6-eDyiQ{|CY#S8Ie>7
zdEU*uG8WH$8QAEHVuDD^yWzt|90+IGJ$m{@HRQ!;r=QiIIp76Ovv8rE&q?38>igKr
zdXAZ_bC-)amzAnuZgAdW?yMBJV2Hyu@~xfdccbfqsm9SRY?}=|>^&|`u1j7iWG0A<
z@paF0k9D!5VD1i3RE1CDIBZp>OQA(uZWFs@S*uCKg$Po66RZS3N1kyqNL!Mqc$tDt
zqHuy9-@G3pPydy4qAHb6E+5m;QA-v@#1uXfKbUxaB(kgkG+l+xMVq`@YO0yj)r89N
zXAC>>phD3bYN!5*a@gcWvLCmS`;(?H*w>hEw{+0Rp`FIpx!Q4Rxt2{S?Z+LX64kcm
zzD9jh%XQg&)HDOxBA`lzCO=dSnkOVXWUc}lTk@bjdIg_@5-U?ljI)XW<3v0Zm;Va8
zRT?PC7@l=#-^uG^AH#Hbna78ZubicayF(fLwWyk7Nzfd3^AoVg83XWqN|Enp7X>e-
znGm^GXw{aiLFGVki++QtpTaW15*Pl>^P8Wa$K9MPvrruetXQ(p7vJAXeb@%iSvN2u
zD{4R&l#6O(cO+A2$eG>3*DuikRdoYog#A|NlQ)H+rGBuk=yk0`VACJGwr@sjzHg=l
zy*IrZnk2NPNp*-$YsM(+gElKWGfl+qeN0&fdcT3GAsYLy+i;etXir=i=}f6)Qb&fR
zof;<2lvYLpGk$er9vt|(j|`Jap~qZ0kPw#KwJ6eWScdQn5WbU5Kt=!aPB}AsvVJIa
zYome~#<4WC*OZZsrGQ#fk0F-ZFi*C*e(24bVHr@n3Vl)*wd}RE;Yqatqo!h?HR{?L
zFWj*8O34zANJO6YYV4zbbmBMl7uZGq0)sgEou}#DQp*4*izuZX{A5~#Teqi*Q{vhL
zRSg~_YmrXK*`XRY>2lSSb1E8e)%w$1lC+=c%=Pfy+s<~h+_uxH^#Km1B*+l-z~#R}
z=2L}x)5^6+A-z8Bu7ViRZxXD+B=WK9Mdg<bUFncVLgZWnsP{U`Sw^E>h)4!B^e*m4
za$1PqgiwF80JZR3u1t4l7*{}}Wk*<DF<+oZL7Gj>_G>CK)?9wHzYWzcoOwp{uKFDB
z;lH}y$?}oHA>(e!3NA+~)pHO6*sIn_rBO5izv6NEndOX{tB!A<`CPt3tXjRsP^lxx
zEvh=AqOjrAiZOTz0sbZ7QB;F(wlT04@>8RQ-WLx7<c8V<1M4gKHV4j$2f5p3olTjt
z8{$}yi7pE$gq_TDbl6NY_x^J!okiN^JDxp>pHT>bG0>!}_CaD?toZm8k4ibfgp^j`
z;DP>C$IRk#V%HyGqliPymxl30ib=Mz;<l5Jv-Lv&;toKgud$r|0GMB!#~mbo;K3h2
zVQ`(HLTwAwo6rVRF0lU<jBztVFZXRH{+Q{-i;ep{8V4FlJ5moDU5kvI<LygU+EK40
zHB&+&2eYdZdW*qXsxz7RE~lFp9(UK0Q`~R8hnnuCYFys11%`*2Oo2NA!uN|J*ro3!
zR{?~aW=57Xqlpk4QA_A#a>z#%zu7rzh5v6g6&k-ufO=eWrNJBdCW@ca;9Pa2nUUF^
z0-;Gw=ls;S#4Nz2`h6v4)rD24wkB?YY2>%7swY3F>Z2J+ik%cgNS2W*zC)siBH}<s
zf~9>J{R^An0l7~C1A>V0lddMmYs1EcZZ~(ETj^3ZEny$isE~AL`pxoHmi4zi;@18Y
zkrR?~=FZOt$F=eC&#(BoDI)yZrBl*7eZ(#gMqfOTrpw->4>8sd>9;5C?K3_hIc%>d
z$c8xMulbrkm-vx4-7o|+arb_&Qr84`NSxdB1CiBJBbDW;102`r^T?Ruosyq;wzMz}
zqICG8fSAzdrdL4B%l+%q#G3SdEVF!KbbZbT=tE9L_37)}hm1acb1BLa^AT1}jS4q3
zFA@dg%Dy&@xrZ5LKucJ1;RqSfwX!ftYiz0kL@@YdF|A7Fza2ac7Xz5<H7TYaBtc^L
z&Nk9HK83#9Oja7f7F{Xiq;H`zGRFr2`g-x201)?Hoz)c7KUa!{uK7xsC0>6hq&((6
zq_8iNG#Y1^LYhu_p3kpV;l`Lxrj3Bt?=EHqZkg3f5X3mx^hg$P?~B|e6E+jyz*nkx
zqO`<|&54hdp^%^uUyG>1?Ite{a?BZAkZmxnS)l2V$I;Pe2KX+3;8besg7;6>{#j*i
zo|Xoo8<4EqhM8xM<h>n=5ri}adNW{w(m2HL(?xxMwLu<EzA5gG*FM);5^P;@^7qEr
zR4nqLc^&myjDIArD*Z0U@GNyE?r4M;iM3=<awUV97ovBjLEX0o2N!K76<2Br!s`-r
zn9F@ldi4@kH%4k}!LA|dNi~G*_`9e}mae{1&>V3H+lo~>?<yO@Q@eJs(lnezL(_<r
zc8Ui;lOWVzUK8d`{_8rU%K}Hg%?uaYI(6ry1dWcV=kaS-&GrCtu3c~1Y>mR`%?SbF
z??H{X!4mT@DS6P^KOAHSCkPcmC?{Ke^Cnk(y5-B58QoHIF<Bh50qPyQGR>RK#OA(^
zK!hy?NWQV9l&uVJCwMiBqn9+|r?21&n#2CjM&I&X(4FQ=z!RG|=X}GIe&z2uS(5dh
z1X#g|D-Z)fB{yV_9*yo<?w#8F7fx<X@l~;X31%#(-&dS-j44pgi0sCRbDS2m(a${-
zKT(h6SM0iDZQki4$eWUt4>uzn5_KGZ0@7S*mgSKeRRc_MQZS*$zcs0pM9&MJVMQvO
z!6c@h%ja<6`HId<^rrW|sDP41_B!_W#Vv+vtAgJr=T<6<UZ|-nycv=A3?vPVa&2c*
z2UQqD9;+B0X%FCw_|lm+Jl9b3MkR25#})POmYryjSTH}4;I5lv%`KWIv0XSANSaWK
zg0tx`YxBLo@}At!giGROpHzY^W?r~-&p&@OEaD(-lA?QdsDdEtZ?$>P%L2XuWi&5G
zdWRs(x`7y#lH%p<f8bH9$vm#V{0$+>w7YE0+bxnpzHkth=-etT@hmZ6nWINb#_ag!
zW4bHVFR6%N@%1RySY41MOF?Of8DGutE&LpKkkT!xkr5xnlM^L!>79K*?$7R%+T^Q1
zI*<_@)w>`==}T1JjWT5wB@EgOHLYD=ieMj43i^+rpnac3q+UQq6s%CUP)akq@z$|^
z21zpLbw_UWe%%>&{3#@c@TU=qSC5|7T%lUG7X04zSw9W)IrJ_|1DA0Z4qHCW#1Esm
zinPkmF6({^qI5diDX9*{s5l}dv8TIhqtvwgUa|9-Kl(bTp(mTy=C!W++i?Fd%DI$-
zle|I|0c3lr0})(F1Cfs=X}ktGXN3{LQ_yUsT;)^I%%&#06_>I)0)CIn0MIZ(jq^bZ
z{b!}LK^FEtxce7PLP!qNwe!^XT$V)XZkRd-7{3x7wRv@zK){fQ&f_T~gOz;~S_5Hq
z6ky>Rz_N1LSRyr$mt1is^L^4(UDVIDj-GQV3{-aR!)wk{RR<}hOq$&b38KSwjwi#Q
zJX51Wy58GSZ)TFi@k`CZDQh*q=r1wZf(`4y&tf~^8u5r41}QGTugB*>BhKb_8(o#p
zpmR&ztU8p6aUp+}F|4I_p(4BqnQ$0syhrj(&oNI_vimrWf^)lSvFWmQQt90$Bgxw%
zjesq1!^9nQ^p$TMu2NgHxy-7@RDX#WxKwD3pb$*7ARYRhqP8;UL7d#`5UKDaiw}=`
zb~H0^#Y?w3QrA9_Y1~_-Bie9-le>93-sc2#)KL(Aag<1)>`FXO6}<|I%*rXX+!ij6
ztcez_lw~<bb;l9(HXldR?gsECl}yhLoSB?X?=5Gc>Fh*(qIack<otWK@G*|;?bFtK
ztIX*dJ#Tr_RLn5Wfn0Z%#Mtlnntxn&H<pTz+KUlv>&3>!$uW%Fi1YXG;oxONZiqpI
zz({-e2H)qw*hp;_*G-w4n)1~AGT|+tQ3WWkw*CS&*cT}6nf>bl-(L)Pe@)orPiBHu
zR=e*0_pWormdTsa9KGwdDognA6JTKO88cQe1?{fuVj}8!?gE-A2#TirWSBbKzBda)
z0K}eAFw<G|UcYm95|p}-g~W&RszkojZ~-XMV~I)EC92U|grNygE`4i?YlqNyZ6fJV
zA=e%6jpRaz-Bv!%*G`A0QjQ-F+Go5yr?TWZoahBzx+7=#XAlOgPRJA>`WP~(^*A;F
zOLZ0Pg1dq<Ep&&vVde@NVm0TaF3Kdt4bwHnzF#)YI)M!+^+Jd7KC$1%Ct{Xc5rT-&
zh-{YLqW*+1B!jB>yGLQBRequiG2&~!O-*e`3#4QzKSXnG<?;m(rzt+0pkVbiYY6M6
zOh_fig?9VdrdO$DS4k`B4F)aAXh5d@I4c^4M@%9Ji}TkAhpcy$K6Iz|uePGDQQVR0
zY@{eD4_q&!zdxhUw95EEOf_jVo9G}AbL`hI{K+{6bG7SQTT16i=$+KjD1InM>7af?
z$aSjcBxyzM-2k`-YsG(v_~!bBZ<OIN=yEpxN-|E^BHl79zbiZjOdD5~pm$zrMKJ^E
zsc|tLuU|Xc_jxWW;9P97O%+Z#7yQ0T?bop6Z}C<BgVbnuhotnBp^3nM*ZB4wrG#zB
z#bZt660M&5SGOMpDu`Ubhtq#Uj{_O*0<Sm*%WUIsx(>&7EWBEYZW>&Vv@t6G&-?`(
zr(U6S1i+@Ki=eC0NI6Bc#~QMtV@0i1q+;BFO6qWhIP{CU;v#6%wrEDy41-*chbxA(
zP5F*76%A+gnRLqq&q14;_bmFMKgQLeh9<zy9yc!QO6W~V?+ovMxH<<O(ZViSx4Tc<
zwr$(CZQHhO+qQk$wr$(SobS%$CNs(Y2|I6At*Z4@3_-1}#9G}e`)}d&!%yYnKjU<0
zYAXY}B6-x*7&*IBc}GcF_lLMhSnnb5ukrhRiFR9BYk9bu!fyGQf)F=jCAhQD+9c&f
z;uKlQT=kr?w=*sb4>iU;Xg`Ws#SnS^b>BKx<3-biMs<Svv2&V%_>agMSRjjfOBokS
zO{MRlrD<!$B)hc=7;@}TJ*7gIoFO-^q{^$TxjZZUh%8^Dnpq=Rylw6_*1#W%^4xAV
z!|J1Y<XkE^r*Y!onRwt%4K4^uTbmVGUOAWi7&hOn?M1W}7eE27&fey7M#30{cA^dx
zjhD2FRcnc9u+s3gp4ED}MBeT73R-6ABTY#rnHJ_$(hMw+zWDM+>+BuGYc8Z?$rq*K
zN)A$&;rBF0*^7JF9k~H_lh{umg|;`fX-J`8@<gEHY|3dQR%yb?xz(cbQkH78mOJj8
z#3w+#HS2xB#I{CtS6LoOm;kg8TQdFqET(cPOEwxUccf>iKI#i2l(i%*Ts`Rt=ewE5
zC;AVI=D~P-?QN`R0&PvV$jb8-iwBe)YioI&%B67I2EyJWFpK2CJ=TE_2OMfyL5c@N
z;Ayj%77^^6*d3fGPY>YYC2Af=%kvhYT!x9ZYrqZB{DHR`+xam|NBlxi<kF8XY$KoQ
zqrNvl9crQOQtv|Nnd!p}n{RHG&0O87Lh2V=%IK~6<?C&P2m%lBMr=1#VccP-18B2H
zP(sPcdP)w<e~2*;bFxraq+IdQJPEv7*^;8A#W-<VpIv?H5<vktw<xY`C;HGxpL91z
z^Jm{ZTrOwJo5I$BSR;kvDQru9)Esl#9@x?PfjU2GtKS6#rIMms1_k_NMx`pR?F<hZ
zektnj$C2b;$ALB!rThoDxvpRtRYj{4qVc25g>xis@{4F`Rp|#3oC5$={}bke6%;MQ
z0;)EcjEol@;IGsOY`5uW?1W}PMmDoGuAJR~MThlqNCp9X>Y&cQ;1Q7vu^XWxU(yZs
z)Er1e5a;dlv|60fdUxkC1M(>(WPxli6l>{%G*zwS)8RudxusFHvO`Ezg9c{Rckcys
z!tg%Rou967MhJ)?O)?s38M%4Y-;<pJgtWg!Fj3V|4Nu@LD^^?DNfPcx{W4+P*Kv{I
z^8II6RQR&co3p+fc&KNgUuK&J#J?~#x0h74QNh}2ZODA{CF-(%T9LC_kY8sp)$<kZ
zp|v+SpWeC$>thEApyO9AtaOj2YzJ2{B!O?pxBO_V<rF$82lYZ^4(NH(vP3hEU(LC|
za~(Xa{cNM#+r^(3kJ4CdL7utOSq40#U^DT()<~nXNQ{hKpDnFp4i}rdR}R0HUfTNR
zRf(G(j{cT|#oq3wgP8BY6n(LauIZmDW0Oz!L{PUvCX57mHS<-dD(~?W1T#b7h1$T>
zkED}LqNLU8${3lW1yM(YRMQ@R)Y(hvoi9tRB_WBxsgJQZ$v(N8wm_LOfXOip^LvF}
z?}`<8`si+M)-?2=U@6YCY<m>WPq}VP?UQLMliMQk+Hqca#NCp-9LwPTvf2gCA#=Tk
zZVrosHK;Gto9EIe`)uzByUvBbpjIHQ3$zSfaJyI(p`rh_NKZtXwD#>LE9BGZlA>^m
zGt7u~dq=pF_-z~+)ZK#{AB{`|Q@d--AqjKhsDhS1{XA%!GS~TN_R)V|<t^MH<zw|}
z7o*^?%RxZmWegeJ#0p4n>POp+v9{l{+cc45fywRgb&F17eSH_Ty4OyW>?qkPH5D0v
zGQne~ErV>23NPi?Jj9x820ynSW(SlXsvj4V3$S)nw0f6wDUC@dtd_WNKbe}`I1R)F
zqLYb1b`yU(5S|<>@7#)8;Z%koYssidJu4K>k2=tp*DvoJD0r<=+BJzPbcx%_pKB(&
z<ZK^NZN=PMu;W7|GMA0_PK|p;_HHLelUHV6JgV=PNq7fFh;B9A=<fGB22@ORepRii
zUR4f$Uj=uOQ2%ynG8fA_TW#eY(~}WHGLD`guQL+95;qX$cy7}--{QG;1g?6$?P-$K
z-hWG|SRNNjRPi_!VsJp<J8Br$n<XsRhJaTmD1<w)&*FeN7Ef(G<ifA}^CHOh{-)(>
zO;Dw3gpK7)VHwMaCco6l5(<%%gs~G7krxtW2~lM`I7%kGxhIu^a%MeD^@!X_=}6Z?
z%ZrCGa-upHs-NKC@mY!j)?XW;D3{oU@i${xAx)ZYTZZczZ8ndfol*qw5PO=4sbMk%
z!PudXgPjs)bz~0s+%Qd_tr1GR1D#o5=}Xk?XvO&gSZ$1(nZ5Si`=9+>m)9#gRb{6t
zqyQAxF>kCZtp0wqbP5{@j8M89$M0J29#tM_Lm1=AF^mft=F|&GrLM}O`^m1W5#kgA
zEx=<09S~=yFkPi35!qS^#yw^unT{W6?Gr0;D4IqTV#Ds^a$PAV8^$LB?0B>DymR#@
zV7Pczhbrm@@^C*vcwTYm6!LMltKPBF+0lyy^KpBlO-;`UyFX2Vq|+F3rQBgG^`9z&
zYAy9mQ|_r==yhGR<!rPOfEX32maBe1DGNG%L<-_XQV%mLO9mTdFWV~Mb^QU_WY8=E
zlJ9v;@2%76M-A8{me6)TLpDl0V~$N|kSPue+e!31jHXDo<93-)D*<AeP$=+zw#d0a
zR>=}fiD2Nz1SB5T5Y5;<yIw!Dp+cHunp-%{RP9}=et;%TDd!Ne8KW^xRz;E=azt!O
zWk*Gn07KRJ)syQ3<LH4|TujfkK6n#+96_~Kd%jaM`@5s8-dUs=>~X>kddsBJRaWV8
zX*zK|pF|qD4Posk9;5r*{3m)UJhR#lNDWH}?+vDZ!?7toyEkQ&FQdz@fR8&uY834`
z=Ahpa<(_LM5OVjRSg{2S$)uuJ(~frPeQ0(rzepj~Rf9|NEUJi7uX4Qw`3FGZ`;JF!
zvL4P)e$ka8!ujIORCr8j{XyApBM_;<R*9A0G}#`2D4l*kXUDY|ML5)-o;QVbPM+>m
z--wRl6qpw*dQ5*&n>2eq#f)$E<c#An@O3P@@T8f>`m&okE2=30<%hy)X;8?)m$vw)
zRF-=`!G5Z|(%Ae$EqA+Ytw-@BgkQeO@jcKGN8xaoot`TWAV*KFQB?JgB9G7pck)7a
zxVC2OhI7^u$(rM=21|;$a1K$Qy)d5c;J62m2rA_dGFq+0fd4>DD8}^4fD^6n2%p7U
zIPvMhLIO9~`jo&#A8Nky8atB;zWp3XI|)M&ZwaF!-L%C)>siawBB2otuf9#C2A78P
zSrrSwoViHN*UmKYAs90IaSKJzVNrEAZGb_wrAfamLnoIM+_=XvzrbY5`M54~<!qqE
z#W#g#MGoBNbS5fXMg1hWno|bXhED^tzft`RxfuV8Z~ecvN_9{V-#erpo~gffB%Tok
zZgi9W=Rt8G!?t)N4gCx#2WG318Xw`mfSdS4kH~D{L_ebYh>X=h+ZqS7T|G_NQ<V2=
zOPTAh(b)@An^Ec<JyuO$nTYzt#M6**63-@#EMr3MczIr}c^_C}(dh89{l}j;k&bbM
zy|4Op8;gY5e5jyA){)*OQ#~pL0*xTsl|UsmEQ)mlT1aaIEKkdhTlQm8A|`9kU?ItO
zsGt#fwtxrE=s!h!S(5jvl0=Y^#wntuvzMw06*u%=;K>|(zFwTYZ+Aa$-rFP#7eZ*o
zs^vb853anTk+6f!i5)6$t?$J=M7V<qUZ@E`1&$v`SI^;V#}6;H`!X*CDQLB}Kr3h0
zF&%<Ai7}T{k^A#v(<VFlFn#LvW+mF2F3*WX3BWsK-ZcxQzRRi*bJ#D{&~{yB5kcQ#
z-tCk$2W_@k;*~y}1WmQ&inS!Z?${tsv<2>c9`+ncxx9~%iTL_SIlnrJ8fgob`z5Wo
z?ZG;oyJu16FfX8+Nyv~8_wZU!T=|<14fLj|w-w@25B#aebH5EuRJ3ba(-O?@*)5Xr
zBuOV$?|@PHcCj@Sf;tU>><v{)=XC5e&j9|n(feXbvJ>5;KG01KObStXCCiZuO?ufl
zKdWzNU61o!zz!vOJve^so_^bKkh<Erc%LK!GX9Bw`J+<ng|NoaQ@>e*rm>ye3u0-U
z5HhFkE()}ePZ`K7aXUrK_++5U(0T2n^mWg%QYr^!BxmC`Bje5`^VDJ7k*b1=B9{6_
z6?t0!O;KLdjLB%&0nIrwitkpbQ%&A1$$g@BBY3iOJ9v06A)4d+zIt<*hiIJmd|SH-
zo2a@({9>oSSr^l1#@-)*?kD5>uV!dz?(7?h&HzZa@Ni@rEE<ZC9gywtXHd>ta~#|z
zaQR{Zp>&j7cLA~YvhR>#h9q&+>m4i~ieCJeKSCJ>xP0=sk<|s=yHH$D0wN-r`b%lV
z1WVpnnDRl3ScM3X8h|0j24S~{EOinwrm(Tm!fYrZQPRhNe>eW!`9@+Af=X-RmzJM$
z*Xw0)P}Sn#^{fgo_IWN+j>8lsNz+I|>VV|0>d<s(7<BYHx_JFexK1y`#>URT&C2d(
zdz1aNwH)|)ecL|$eBUe3soTjDOD9ttGX!`fz`8kP86zLc_0#kf7zfK9th~lePHGRi
zS@f14%jmRB{V7cR7Yqkis|K#h2Z3^MQC#(>>Dul7C_?z!rkXLqi!-oymP+0f^7g(z
z96rA1is6#fbCqABHQ$CV-0*|BevBT|j%+JI+G~?~{$=F!d~|)<4v}q>n<S*W?&=@9
zsy8vXqBFB;wY-cN^>l(#Gq;ZP856mK<-M0;`RP3aXj>B^qS7bLnIFhPNHvB$@|hgs
z%o+oUk%SDY=|cU3Mign?Y^UlbJ1b8*2%A7qy^tSIv`6w7GR5$FCpP3qC3H4ubt?cL
zmOpcDjgm3w<gNI)r!1KkFZvrq&FL~eLYp-%0Z&^MC8H6qb+kUVl^{^Pw2Kt!+@%ol
z$Zng12r^@yrN(-#tGBaq0+M%&s51couJ3neHynzYj*Db$6r*UG8xI(OiqFM7r(e%|
za_9oy54vA6%c^nB!QotMwze<%M3qnx)e0|!rWe8#tDTA|S~6(ePgXXX=2y&BKuG7|
z=Q_-rUQ~b%Zpj-r@8mIHwn?9_L*)#tv@9=8SgWqN#Q(|Si0grjH;)-XPN;C`${~33
zEFK-}H#o|Qi};&J25|Mb9Kar9K2Cvcr+T99)Ii%fq$Vgnl4n*fxZSsx_@%4somuWB
z=H546xuVFGH#qwhlz?8QS@nqV0BLgc$-Y^OD7eTP9CE-#lj8=67pQo{<b##x<x(t6
zK#r@frn%&Ng)W;`iMVP)a;Yo<TCu{vpl*kC<b!zAyMyb-$K`vy|Ga4W^t@>H^t^%L
z(_<mJIz0D{xoO13^mvpv?-u?`yhHv+*!G+88DNK1Lp8z$YNK{349Ug0N-V3F1jfNs
zqoYc*alS9mAWC9W4!{L%#IM4$MOJaYB7W7uqNuoyA~(J}!=9m~VpDmJa!S1~hJmel
zb)3*$A^@btB4XuS$GyqoNHgH9LSwygp18qhg=f3=Y{pJns-#Wuj40q2MWh>SaZL*d
zr#7UOkDVzWS82bGcs>ptua?L+3;=S}sjYTwA0kw+V7gY9IYFBO@%e(a95S<hjt&)V
ztS<-*WCJvuD#T*-iP~_*faQ!Gn3&<uWD9!W6n9HDVHu0I7XzDb=Z-y5;zn=|x=w84
z9`N1go!+DfTaS#=hX&Kf$F7TLTjrdMl0=%4!sE|0>8#k3V&$nRwO1PB7J~duW3#G+
zQ3`VZ(q)y8lU&{R+j0vJ=5zYU<Axz<l4HWgaxa5dvLI%juo1RMpaZrc&9hD_nu00%
zv5m}#iNy*NV;P~%km}8BE7GzCyKYM?W^-cuIC){rt75f;Rfqn9_V}E^N}aA=RR>(h
z$$3OGBG$I#ec!S3e1vp?@2>QbmkUqdMiF;&`E^cxOgb%T8(tekh<XM`>Eq8s_hDje
zXVp@64gNU-sp%XsO0`Xt|A)rTcpn1>1|3J|k0<gyF)!Bf$Ve=!Roy>UlNE^_%>HZr
z&EHFX*H5sIU=%L|WD6^MCnGE@%`k5A2#sP|GZS(A@T?K^K#Jo(ChA3##J%*k(k>aD
z7v-!LPt+^nGmwrxiPO7lH_Lx$-L@3az#@VXvJ#@z6lB#_CH6bC+=jg#D0|9PzG%Ay
ztrCtfaK7y(6m_kes)H}N8TjA0aViL%QY!p3570`Axl22kW9$qX8-o5!C1<31z=ON4
z_xTN))b^5&paK_8(qpse(sWqnTHp?I^fXBl?+&%z%Xsq<79#5FQXw%~I@xse7X$~Y
zwI|Mp=w@;(7s(HRqZ+&JCY?0={r$e((4B^=ARQDi+YagV+-95e>PJRuG=bvif(=Zp
zu)n_(Yef5(<)N<6Ct8?<fy{j!{@qFwJWTEKpz;OX489t>OpUExt<FvR6Be|?zJ-&u
zhEgIXTx&0O&cijrCo=F3Bu&NzA;MC5c!pgOzai?21BuTSr@%K2m9*uXHeI;jD0tub
zc8OajC;Hg=^eg_0A68+^f;kE`1yfl~*=3w3%tzY6r6N5<TvCsfjO6c(>aH!9>lUAi
z48Smhs)%|pq#o`AHN?vj0|~{Zz?w<U%yY@M7U<no3PWVG56%=d9t*<)AXomN5fO0L
zEiF7ERBZGzksd!zbI{qteWi-}X>Kh7dMP6zqH-ZQAjADn6~1G#0u{}++8eh$Nz*N@
zoa59gtM!gMXQAf`qAMh|^v-0G90o~O8JVf|rQcT`of+8hoo0t$Y(P7|uNB~5q%veE
z00eB24BJ#11h31L9OkF83j79}$;A;tY^Z{X;>`Tikk%DiXRn!e+%$G_;#q>)W&yYB
z;fmUhzWZ8;*K+4y<Vv>?X=kGu2uF?5^eCzZM@`rDC^EK-NJQ>vk=2@DLz>V8Pze}7
zn?|IhO$}~OO<NR#m2>4!$KUZHE5+jPbM=w~<;F#}AiCS_;UU@Tf!5@Ws^Om)Xg47@
z;1{Q|+y}+4(8_Z6nlDneh?3Ok)VixL%=`lWZxnLD(uGtUC;-6IKNK?J|0fpxJBM{L
zu{E$U`3EiPQS+1A6o>!j%QHk)-hYY)g(y)ZmUTn|PDRXW%28EO=_lQZ@8RrP@x&SP
z`N-1QbO0(4akCU4T+8)%JXzH`g$O0w6@RH$)`#(;KM?6vkm|qZRZE<fBr!G+5}=6w
zE<hW?r49xW$wLkYeY=NeWG(B?&zYHLs()Nu{26~gUk8U6ioAC;37S2XJ%ymLtI%#J
z)JK>2Lk?v*h@E4j9+6CQmvo1$sH%)jUQR-l4-fS$PRs(AK?zTW^5`hiK`1F?VHs?P
zPiI042^l9%19*Ebr$DK$j~U)noH)aJhyO>7xdnkV&2U;V(-6Dx4lXo3f`ui!GPqqn
zz3gAT?2!%7GLbNWhinAMNPuz1i%E0&f{ZP9_+Zsh6PAZMb9>By+|L-6z-r8WCzLIH
zAb$2+zcUa~^~KsV8AJOaL%!4zSj6pc_~W{qE&fC8wmFDIczyWt0odTZ^AY&!$ZXzL
ztWWgZhmd;+JQ5w|&K}Hb5#LJ^9qB_#9*8bB7eoMc-{%qNpCLBPQiA9CK|p)HSe|xB
zqF{$0I`~~rp<SHKG4_YhKdo%$KTt&Iq3kq%G6;}1`bV-`R?`HGwa+E8=OZ!)@Is>L
z>fAVFoB>tj*?sKMEN1B=|1w`lYFtLg@ix{)d0{Fs%qDDe!J!d&U>mr=WC>LoAUn@%
ze_sL%%5;Q`@`4dCWe+#{!Pp**aG0`5A%cDi07a7fs_12wU7!*o_V+~8gCnf$>t4F{
zoH@5`-H?ai=UGzNgOL)2_*K~<-|`m?s<g#HnMNcS%&fhLjzb3LtzR>bFMpaYp`82v
zx-|;^l^TxR>(jCQ&Iv)T;_As)O}j@*EL|XAB$I6`<N36En)=kLlO-#GqK9L_q=Bpg
zek-B@_ouSVk|HLtS3}2Z4(GIsw)c0qUi?j%b*gnO11Iyl(Sn7BRYe7bvO%#We`~vh
z>Unuv56f)ak(6mC&Pa_w(Ji`zU&MfK`g^Y3e~2hjbRg2WARdw$m^m~KiKT%SgH<O|
zf~*2y-TmTS7t}5G9r)=*J^kHNW3VGWfv>*gVZZlw^%dk4`PXce6&nuBY_x~7uXV;H
zxyNy9*NSIZusB2#JrE;fzM7vW5uFK*+vE!{Pld-C37~cDueHT$8$F6Hx#R+=OE#3E
zX=Py#o3&Qs_pWs7uV~}6_o^__0Ho#;$oXRS$p^o~0SqpUTy8QDmk0hybn*H~b8P7|
zfUt5(B3f9ZOQuE*b;_3VqLz(dPlV?U&PYWkk)*v;oS2<e2()I_fo+LZn&zc%9q0ld
zM?xikcipy|1=>!(b&yy&FZMJayYuDGYSUwXo1K@gO3|DRm%--f8sdj!I2rI)v4X=+
zjp%ANiO<9x@#;}_@{EXNjqYuW|M#}P%6q?6=N#CNg>H;EFP%QtYYK76`Gx?6bLY%%
zphHz^z!D?1Cr{T%XEiToj<TU13Ck9f%jdLbgpEf<VoYVflL}MkTDT(9h35cPz@lnc
z+xkz!%ynfs$0_p~?ai#S%mQ}9oz5&d&`km2yF_TY#vtB2^ir+qyjsW}ALR;N{yksw
zSTi+>d8}PQJ@MO&<VAq(WRKFZjtk@HB9n}udJ=V{l)_A9aJ7w@t8u8Bl36s#^xe1D
z^iKg-sg~5E&OV|k9ojg%THvnLbsT@HJ2h<yIbNzhDu!61I**U=RGRY-4x|#~BV#Y&
zE=6yzQVHt}s-any77IOo-5+6;T+^_}+rK=&KT%(oNY{ve$x$xM#_dpQRj6z1rmW%j
z;g&dC2#U5Ud2HI*i@#-E$~Bv8bsi_asDc0uzX8#9J;5=V%VVelK3!nW|5}el5!G3Y
z-E<H=8}?Oc8MsLO<V217)T~RQYcyB~)iwQJ;M|XaV_WsV`i(sz0Dyl*;r|Vs`}cM`
z|9iNXHUCkFSrPw3A*R$LPMbgW#IqHx@fsX+F2u-?B>9(fA0?V6HhvUL;Dm21{Q2-g
z#sA}<h(os8)!|9n3SqeGmZ!t-F)TX#g1_(yKJHn>+ch?MEx?P+vEoFr(3L|ieBO}g
z#EKCYXpdX(LXduxM?$q?&5hSU9pj<<AbYA3wGL;u^L70UXZH^pfr^^NylcbFI&&y+
zisI_KXPA^~0x8j`-<9Y^4c0KqDw0@x&o+UST3oUc!1NxUT1~y;i1(*fx3m!?uQ=Qd
zD|b>HkxG$f0?xV%X|wRiI&T6zl;uO~idbt9`p#o7a2IE-C){xy3C_B;&|MlSmtU6n
z9*XcLQmoc_0qi&=I7hN^!NdxBuC9+{!`6dXJ+p~?GMx3egw^eySO4++_(07Mwa?;e
z(E7u{8$r9imT%N4?R_5<s!Z+h?jusCuL{Y}o5k$Mcz~brad4PDJ!rP>aM+6#YUjNP
zsx>{3#vP+~-`vrM0d|+7^L{yO932swCrdYQScM*|XEgBFl^cW3S1FNhG>Sfb7F-{Y
zM*Z#|cF+1JcWp_s2PPiiXH%k&wv4I%esFi~ONbux6A2D;HgFzjALdeS5d%vmf#$Dv
z5XwtE)bE6!80QqS#j`kR&nwy^h4762+Lvb|J}|A>A{A@KjD(ph4;=o0-kUJ=tiWam
zcqf2vPQrw*IAjd!p@sM-fjh&aL=?R{8^&L#0R{eIr4~Pi9D~E>Zo<2CKCD@ZlP6C=
z*8Dum(mh15%(4g05co`ToIs3h`(vu!G+Sh_9ND(b9*9$GR;mta4Z4YEv5D^R<9RR(
z(nN7l^-CkWvL@8w(D6am>06D?byPt{J~5af1qvQymDKz62P|E2qiX54Cu9@cu9^FS
z#ftF6ZftnJ&yG~*W>hl;4bCcVIeGNL#q)AE&CA?rWBRIRTvtwLKKWg<n1<@rM%#Qh
zm6OwQE@c{}la*}e61CpQ{VFcxt~~_EB#{!*y4F->jjY1tBXng{BdAJaFyXs3p@!2q
zZGW6fZ#fo>Z4>SJ$5{q7T%ttD1)<;zu!ZV=e6eA)Ngqo0x;m(Cb;Q1Xi$Or_hy%n3
zuMlQ_q5f4$LI^a0Va~`Bu-HhC<m)0K5@1x6Pi$Qh+@oB9Yxe7`<HjjS4cfG;>}_WY
zp;e>pV6*HuH@oNB;JOB;X{8SBmnF#WWNt05X{34BENt}PHxu1R;bG^s$iJ{>;k+AO
z2~k@cl5w7=KzUOm=<pO1WNZV3uQKc~z(P8k?A8zOClbfD{Z!NslB|t&ra*kL%B}Ji
z1UHmGK_gugQe65jb$sSuYVQM8(9e`yAF+BVNCYa&NsomqSyNTKngWqb<?BT;sj0);
zd<|U+!nfy}byf~B=BFhj3kv<g(UUo27Iisvfp(x*HWW#<EJ!viTzqDBQ&K3Z%iFX2
zo2D6NBz}fUb(6hz!yUDFQqp)?o!>VJi2pKFVoTMKja1|npcZzIPGY&T$YT1_jla<^
z;|&ohP+l|th}a;uI%d~ip%uleAeFnG>pUAj*^Mf+zMx4)aF@)sP4a-2OdJg>%PdUX
zt%>e*DbgttJwzmati(QCw|jYq%~fAj?W_P+O80&$!njlbRRc2X&C-vGq8?LT7d2(e
zH(d@ji;^mfZl{?Eo{p~?kUFAcuv992fr$72$R06wQQTIOSlEiGmRK>stO?P0l%KP6
z*8WwN5bRu^&33q-SI@Iowd9QiMs?|-=TE$JAb$%Ok<tz9Y^=M<-78L22+F~!2r4a7
zv~bHVlRK-cL$4n2z?gR(FLcdKNU&_-2A^r;!m6HWCsQ?Ne<HnWI`t^$5-xAbL$gCC
zEsvXvmL=W1!p<eyU@a-Yz{Yhxn~#8tjO_$cw-YKUO21q_GMGczq~3xJxYOpzuz{B1
z^Q}i5gVpUhJLA<bWjkksRHP%4P8=H655xoh2<8zeyMZIb{JRn9OkM^Nbc7)ir@rLi
z#}F`r(6BB|{}zfYso5hziwpK~Q;=qmjpl9nVwO5Km}?XI5LS?n-0JRl-U8fn_N+u~
z2&`C`HrD(lZ>#^vM76Eqv=FkSn*5vTqy&*_=$9&S3Ws5txzJj~qohltAOY1N1bANQ
zbg7Zjt}}mxBF$1;^HQ#aQ<qZ9-bWZ>%#xNX&L}9vRw)M~PuDlV%3t-jT*nRlZ6;ck
zZdA=Neugmn6iy?vsEouy;@NEn`nK+Q%C51-R)nrkiR}+m!cLh7)r<^pXT!3lY5Cdc
zlUsN`y%Dg5HLH9A^zxruFqkEx_P;C{0VHl0G>+uux0Dx;Db!0ES8ijV<bXyiA^bzs
zL)lI{V8;Sq^2j85D<9*)jnTA<tam`^mblJS*3`4-&BHUz;4{j!IT(*KdukGGL>;0!
z*&)j5FrD)#u)D>GX53P2Ym<e<5-nWoWWH-?gbb&&BCR4j1cT2l2o7o~CM?;e&HgBu
z%QOfr6V8&{7c$AARVbh_AISGBT`5eIkL^JMCDR*@{-$yQx;1k|BbTM#JThUWi6+hq
zEW!~KONH}`HREMqksHQkikXy;luX=G>8C4MU}vtN*_qcDP7i8oP$fmU=GnMmxazr-
z1q#oxeJvCvWGG)7ir&2o5bU{i%);T__S(9>FCpEa#}hg3nOR}W7h;{JEEfDk;4$LU
z)1(uWl1yCZ7dP<7`cOTWL(^_qT(su;2;8BJB@}IF|H|vmD}oF4J!QV619{Sv%bX_g
zS!Vx2FSRT_%?BE~IJ$FV@Hjz<(M!m&tp9Oq4N|@p;mEs6O!>ve>^!cNmBS!a@KH`;
zd{lp23q#|yJSyl>9`v+wQe$31^S0&nT7t55VGY`ir(TeoJ~Jwph2uvJ^8~R>Xg<Nx
zBCe>Y!Paz3Vlx%XJep^uMa0dc9KRPii#sdPO4CysoNZNnbfk!)dsMP0mg~#mG^vCt
z;WVm5>bnnaQJ218klMwfRGTLwoZoRABk!!FO!++HRN59|XLmH+TD?(<xh$Wts`Y#;
zQj5$!6{h?N)Ol+Aa6J~o?A|&F?T&KIP)@$6%1k;+XBN<Xojd(Bo3+gMAsLFaE(u?h
z&LREq22MfN<Dtnt%NeDH|3tGow=8GhpGwC9WKOhHNujmGFU_(lv?<LWCEvt2rY^%N
zh?I|KRB{(ob0yDTDXI5rp1dq<1G~EDtY@edh_`IBO(#v6nI84cNuPwIyYkv#Rfay}
z-*mFAU@qZy>E8qpl`*9)1!29ULv9XC^`14<u))1*)ej+`s1Eb<RPni2N0WgOSkahK
z9d!)%@<&e}oXqF#9b05dOp<A3s-ZP~GjtB=Px<M@3uo>A^&|Ss0KP_#{IR$9hQ-Po
z9I_)Xpad!7w88<7t8n%9&Wx#V+FrjZUKDW6Y+FA2%QGUzvs~N+xz_fwY6n*YnI3s0
z)uo9N^B^}jt(&Uyt7KejV$6N3(y{UpC@M_Rc_wDb8UP=1=F+mM0?*o|_$>!|!SCIa
z5>^YSm$=zS-iH{n5-Ja&%FFqKSQ@iK*kI4h@eVU&0nIle$%$^ji}u3CFBe$8(EeI-
zz!(ye(AT%_*8weC^6LkojasShzdTY#lw1xJbvXR@|12eth<fVrfc|we{aZ@>qbdKt
zsn*HF(Zb+A<r>$j3Rau+@V>8g?ViwAQ-7Gf)+KS!bs+;1!b+}K*6ukF#uQ1%O-r8s
z%B98-waAWxt?NhWC7#Ldy1DJT_1od^e}W6Na)AmU4w#X?!dZ@H@R~`+S1W3dK@byq
zYY;ykTf%~(<==$?>Gm0>0FYoABl66?expDpDyplRgaYyYX(1w^Yzz>*L+srlvH!jw
zR3`JxZ7Zlqp4(}^=jY=<t=B~oUGl^cFBSoDk)-Md98d<qP+0H|LEn)Ze35-*u0Tqv
zAi6%)N{<zt24$<@nCBqXSAg7#id_gqDW~kuzjGobTUg?-n1sQFOO`|6ep!<%usb|>
z?M0|{C8xGm1V{*$NNI!tBgJIt(V&<%0_r@7ZJWG&AK=BP5H;3@$!~QNn(NF+a)ng8
z2OK%R`p|W3A%8`dGKPFSRcbK9b!$H<+vXemE%>b}`c`_reXg^p-m$x0Au#E9^tvjQ
zHDC_hs}DD7hXt>=4aqH9%m`uf60iUrm9<|{;KYXY!{excj|kFmqe!W}8TGMSFVo8w
z#c-OFSq$CKr8buO9i?&pOrvi8mVuhq)g+&OEK+9~QoXIys$vSz@{3h2+4}+JG~ydB
zgdMXQl#CF5TZx|v*&C>3n>N<B7vu@jA0rbo<p5J3>}sc(#8BDpRex%qWjS}Pc72)j
zZR;?1@TJ*W?JsC)AW2YhRX9pR!N@b=qSegSi$ZEWB>Ug%ty&A6LXm%EEdl@Z(Lb5=
zKY!AH)X}!aZ`=ku>Tk~90mEj>a|Ug<+pr|cXIYA*4ADt`xb#}pWe90Quv=n>6;>1W
zYrMa=>jVz|@}<i!wrDCL{l0mxUmkimwBmY4TH|=Cna&@$9TUpE%Tx*duNkS{4J(3`
zv<lG)0&8%gN&eI!#F;!6gsH^YPZ9$}sT3=gI#&VTcNfciw0`c--+bfp#oStDI*6tU
zbuNHhyG$95CG6%4fz>FNi4ehE#3&4U16<RFh)yOp`oeYXgp$<Hp^~Pk9jg9FQRX>~
z(n>M%=9ts1#Cnt3<f5$Fbr9ZRw}v(2h_Qg|RHW;MQn<v^%u!tcNmBO_qtswL%7cFS
zh6KC}MoB#Kq|Dii=B%wp%Yavi`E%T6%80oLnZ)Fi8I7Yky-;Ju&OG1ac;Nh)9(=ey
z5Osl63om4MZdq@GRE*f$p@Usoj-b`BUw5v8U;Y06V{3S_gZe=1d?AZ&#@JhLhg6I>
zfYkab?SnsiH<Z{r=pA=2-}oRfDcl%3z(Y3lH-CfZzS{Qjvwy6a^}-en=rf)GfU5EP
z!}QrnlH4Ggm@aGp0QdglfE;-;gQ5GqF=ceaeH8GW1r8tP^MSs?y5)%)E#L_>f1SeS
z>%(<C*nML)8(0fR@!gBxew`bGP>$Nyk8kTog16(w*^cWo3uKLN69b_9EQuND!&c`w
z3(x|nj+!^}2?u>F+A|M*=eu*h%tsp7GeOt|8u0PYC#>_~#26fI7sH<+`eDn;pPt!5
z(&O_n=KC{3Q<oax=s={RV+AtA+h1aBU3Q{*)}YEc5wL)eCuxQYw`kUo7f2@jS*+8d
z0jhKDx<&%ULIUe3iO{%RZ=ncHLs^pt-JisB2Lo&wW{zOcF%(6@+QhFK3%tJyNH-65
z%f&#>6v2K7^fp8cQZ{JaSh_(RBS%cj=-nq(XM&-ah_nVdq=_6bmY<>=SkjVb1{y*X
zmo<3+{JT=s0<_HFRTvfQGRfUQ4wY-)GrY9PpL#6|<e{hm*Z~|eRLlUcU~l{<V_KQ8
zIdggp>!AUrxwO*9F3qqt*d*71C(8v{DpkjDWfxjxq<hs=E&yeKR2Jz+&-4KcR{1Wb
zE=}};WW(kwG^}rcA&+RzdxwQ_OAtK{Fh{iX^r9SKJ~ek8Ky;LQ0jEy;FogU8uq7xz
zazfeL0B4X!JYii^Z)7zj2B|vIc|3YZ(t0cu<24{;WjbHV{~Qq;yNL+jvWLE41OReC
zzB&p0AVNN|9-Q4;l0{Xz#k2?5z)2W$6sLJksQyTx4Da!JH=%42LQqxb=FaLTkvc8p
zFE*Y;=_(_UO?U*ZCwODYW6s0I5mz7(4s^Thu+?pXjmqd_HzY<(MPUAoFJCOwX({?)
z7koKKjeWEOB)#5w<)WU?FT(F%aJV8UDlTHF0uSa)M%Kv^7AcB_!x!_88mrJPjyYXh
zeK~|lmiGi3V2Y4xDai=}YTh~H=_yMSYUcIu3DW~v^{C)u#0jBRv-ZOh?ITkD&QPLJ
zjrMvpKo%Qi+V)gsTP*dBKQ6dk#wP)A7n1iuNlqg6Je&sTB>M3z0op%N%>+9eELyhb
zM5cmbHTcQHBTS0`q(27V>Hp-wxcE3!P!v)KYJ#}#TEf6M6L3A%J&Flcl2?2;k3SM|
z%fz*O^O2%}>w$6uiq#);df#sOE+*wsX$<7WwN$-oVDk#~uK_|GdH|Ev73ahT7?6&I
zIr8WUlu1f-WnJv9bR*Z((oXbo<i;^3tx*`FVFat@y<%m00qAU?E_y(=#LGs+!3E$a
zjvmRB0;^q{+L}mb_1glm6^v#`I8FuS<}9%hM}SdWi2Czd1WZS%7pw^ukcUW0Zmk4x
z8>#E5@RlA=Mv;h(;jAtgsr;RjE0%q@jChp}lL*6U2vv7hDmMQ?eT3FN%xr8*67QF-
z<I)*L+UFGy=#ou}H1G-lukFm}09W;-+3`Tk1km<DnbC0%<nJJr^!jv;(c29$^;LJX
z6}LB?D{OQ&cQ^e%gHR!jD5I>i(~)9SOsD)-<PPS97%^=oUq&M4k+h47OSGX}V69QW
z1#X?PZW}9s&M=^T%qM?Vwt>oYuqf}E)q|pktl9{~2&XHKB#qNZ1!y}u>#A6?Q}sF?
z!vw6XgG_$wxcl}MNl=or=^TPBa%SB?*E-;bxxdsL20&q*WU<yrKxPE&QCfXKTZQMS
zuZI+(Q^rz*6eq51`=KB<M+>DlEYN7*dx~auvpQbfH?q<&iH1c-66S|71XHEX^7~Hk
zFc@UT-kQj&nXZKY6fIZ)g>9cyJJTw-0q^T-R@p!<h8)dbRb`h@Y{B+v5lUgZ2`v9C
z>+)7H|4?~>B&v`y)0L@~8E*u6gsrvAtTdm`v4vEAqpn{yHC)#%N$ap@uY(-8S~Cx*
zN1iwdr_WAbvE*Upzi(muP{*byGMj|DX2)HDM6#`pfHV`y_Y8Ack#(@M?k++63?y}-
ze}W{F?`DP@O}{|%R?>U0VjVZoRSgdGG=Qgt7v>c&*MLFFcKluGFmMk<HBJ3XV<3ij
z^yrLJ<uglK>lDoq_Z12?tVc3oB9H|>HQ-Z7jEZ5jmE43l&0R_fP+e&$NHaE4=C#yO
z<)9IDVki7v0qYowWXeP^S?2xO+?58TwF@aMhW+qF{cg0p77{TVWWfkbTVyuQRp1Ko
z;7p1pM)V3Fo9F*&{pj$tOfPru!~f*eAjiHR1;cxsQF`Nv`#|Bw@^Q|=`D2E*<9J_^
z;BAqYEJi3%DQh8>_TE1LbQlNi1-1;OCfR1HJlVQ@=w2-dlX9xx$8%e1dD<L$iqIvd
zL_Pi7`Z9DsR($%F`R%Ej&>&~O(+=DLmDDiXuWvw?i;s~Lrjb)$eb2yEy_^f%F%KEd
zHnDG*v<JNSX7a2QO%&@kZ0UZgQ+Vfg_&wiK4`Y{eJZr{d+sY~Fumyl$aSfjE4|nWU
zW_t6Waj<yWw~zOZ^}bVu14~=4=f)1Ln0mI+@<H_X6}Ha6%gqG7lh2{HXB)KIsbgf<
z4i$c4dYPcwlPj9Wm5tOkVeywY8;*Pm8wwx(lokAJQ+I8v+3us^gkzRG5~3q?J^6a{
zTe(&vX93%5l}Wti^VhhU^}*%D&SbWP<>Uel&`AKe=GSfXccbVR_J0psZ*VRld&mF)
z_}Tyf@c%PxIony8*jjl0H(r<9%4w55arc>uUb2Mxnv!$V!)&BO(V9acg~o)$<Fu7j
zNi#B-T9;f=NYH^<?Q^#d3l0chK=Ofoy|ZfnhMW|T8S`7vt!P~Ah+D&M@y>Nz{IXky
z_Q1NwWRf`altF6nJ(R>^g#e@E$kKiXPxiw&p*VQHE}9sMF+Dqp{K+DFUi44_aP9p5
ze(_(ng^X^TUL)k*beSM%?Uof+U^b3fCqx5vK$@B$E7~<2E{MxG1!N!S=lQ@N#DLU3
zKbU4P+IT#0+k@gbhF}svHvTOOB_?AO9=Y&jSgUcT_>#Ejh}KvNX!dT`cyJ6T70^DF
zx#W?iL#8KvJ|9^B-&Fz$v^l_|JG8HUq{l;uWA;$sL2y6k`xJIsi>|*p5c!U$Oiyw!
z!+jydXecw%WRCAy()gL<hm+kFcws`^;ruQ*+Bej~mCRnRgy$d>Beo7)DBJ20P`T$a
zmbRSu?L}l?yn`J(&J!8H>1qEHFvjcd>j;`LCr~|r)F4i--nKS$=<R!Z|MO@S;8gx-
z(maWO`%T;|UtiEpSO2p92ORI?u|DUO9H|ZfpnCkz?&lyyhBrSwWQCg#y#G#D6>kT2
z44|~#8yw^N8Xw+MEvNr|yB{y;3+%F95d#NaK=ao%7{36X<9ydmj~ModcX{_PiO-n~
z8Bw|;G*s4>wu}Q{+TlD)2c`_XnIqHrAaaid960bXz@`NF$a6rYk#Gl_aPUl7&^-L-
z;LxH2Tm$;ct{%+JYuKp|Hs`_jzbX{x?u;=&oCPd6Qufm`Q%HUNuW(>c^1)vJ@rqb#
z5NUSUZwC1N&e46{4ec{l%xP1nOz%>MH!c#i!9VXj5fmE12qN#=9?%<DF(R4O5Sz7w
zZ>hmmE{Ti_Q35w&R>{V67x7f_Kd>3LD+p()SBRt+b=FzOazX5u3w6B5LepUlZG|U1
zMhZm?U1xeQwcv|C?t(L8zswR%LYaB!zcKf(VqX^fa#+5xnPR_|Q$Mauf+NTy53Qnj
z=Juko`@2+cuf_L|;AiyjYrq%T35#H39N~S(0Oo$8xvcPtzlN+Cu?c5pM;eFT&OR|f
zZlbwtj&Js_h4bcb327!rq`f6q+olcq=f|Xxnk#`_{D-}r7Jn_^+x>@l<^)I1ET_kE
z(h^e8<ZUhCk?;59_TW3T2H+~Y+__Jc?tY-s%O*KU9QLS}=W?=9<OM+L(SUCj*o-@i
z9T~e%Y4p0yjau%&yDiR5m@?mSW4p!8M-rGg15^Nwz)?k=Cw`O&h)<x;0;fz3up8H_
zhx7JQ=FR8FZ;5pcrk<E05XAB4de)a<NO>QLBl6!DqWZK?dA^K8z}{qNJO295|Db%p
z1h5xo8AlE|1FVJU25%Is!H-}(8s@n^hLAURVQcx1I9?pf1mc^4JwK4fur^;}btMg9
zdyf5Oh7m$fpw?Wgk;&~omRgMxr`RlR2-(E|q#=)vgT?kUiTSG)8f|JdTLvC5KVc>i
zG)-f=Pgr~|FxPyeIp@1cT<<Vr?-pwZ2V`#X7gXtC58r&jQQaO0GlU9X$Dts2kM(xD
zwwtZq2zc_Ze`(tdc{}_)g3{gNJjS}>N^Kr5o2tmjY~mB{gHuSYWQ_c@=@Xm0RqZq}
z;9xvvBns^uT)=w@ZHs$cY`vDK7%*V%__MkL{sXEHp3=Q?)f^x2bUH72=AyGw*fAVy
zYGf$TI38sJ$bO1?t5i0JCwBbFVYP=aZc=J)r4hfam3o%CI@+{t!!MiEB<&jMsbz!Q
zk9GiTyT%M&5k{=}7UTSQ*@0I>ComOImy)<IVFFJU-1gI*-hf`sO8gg!o8#p?&?o?A
z9xscHd?O379UxU(F2ceCk8%^q$5?$@2yOsO+p=vMzJsDWf&1+Xtsl~2oz+Fq_W7uQ
zh4Qx}WomKiGE5VGHw<9T!@$)rN7ii^!{~=I*#=9wpVm??FMuWaBh9b!V%jGBZ-uYC
zz&&L*nbw_e@5>^y#I`yapbi<q?$UnSaof1w*!VredsRCR%In2Th1QomsUyGL`1#{0
zTr^21_GEL4oMBNx3a<Gjnhg>gO{&7gCztg?G)dDtDs}|sAqWHdFg$mBK|8Ct4X%RR
zuhj=JB%e}WpWFierGMU(JF>O^9S<xZ(7A`O8U`TRM=b6=I4|hyKZobMiSQcf?p#Ql
zudEp`Y?0^?m*5#_iUI#)V04m`@dpelu=Wso5#FEJInaz0o`GTy$$g5*ZJZRcoql1L
zRd>ke0%YI=zFQ^TqQ^i-kQT<2hw!PYEwHajh&Ly<w=W!b6o7yjhIp*xH3XHOLEoFx
z<NIrIJW7eNESr-bUK&A|V9$lA$NM324qY`4VGq_5p1-gPZzDS@i3`>>Yf%l|Cmgx&
zi4g=Z*q=2BmmV%HG!}5+Gcg$G&y*F&I2d}m(MhgLBo9aHo&Yg_D0{fR?(XE<6>|w=
zIil17u_)UX00P;4($0}L{hod9ku@1Xuz?oRd%VK~e!ss=A24uaviLy>vKw0b7d_ZT
z;gY1MrNQtNoFPjYMsV;_qK^F+Vzx=nLUd{063VloHg8&#HfHuvpH%{J9&6d?=wnA3
zCszxIiZI#Gka3&w!@Zidby637B!JX_;zd9Rt42zJ&437bBG{ZlXgz4cfg~V7h5dp|
zsF5oEMsI}<G{ja}(xO_PY;LbB-T0IAiC-t_zi$_zg-<8R?j%#aceML`&CU=)dB1#5
zgdo_t=q?-@DYpZhDEJS%G(WL<j)!FrQ8OxaL7BAyDDt2nDOPHTJsGPv;Y-|7lpP>8
zQU&)QMMHm|=UZvYEfqEcFnjthd@H`KD3$)v2#QHa7L;$>hA?&Tx4=~mK)Ip2?ADF#
z#-|Q1#+$yX9$SZ7Otmvkh*dexSZmG=v|rh|E`{6``C=|l#-h~8FN|h1bDo#RnHNGk
z9<D`%$M6V0I%%7OlAa?R9r8!4&Rc5ic^oXMD5t1ql@W0Xrz@|7wId@1vG*{y2vLL3
zl*ma+T>uHkPoWReE@||<`w3l-va>b`MroLLyq<dC1%G`IxGCke{sdrB&NdJPYzHdX
ztpfIJ2?Y?JDD*R%MWn{W7lU=3p7~G(*bs^Z?31k_-dBk92h^S*K~cULq^@4OAlq}f
zOYx%?JIDw4LvhSR|8W2|Hnc4lm{c?a4ut2Os6lcl?nnHYT}k+spjm^0d^>KWipXYY
zyqsJ)3POg+d9(N(v&Iz+X0~)~Nf!DX2tU4n4hl-eRIZF#PdWaR2N>7(1cCUqMz_Ya
zg=O5nH9U-F^<0f7@Il=VDwrsTlOQN)0D{R4+(2zpp>+niV5q>=w7i=SNU^MaXHb;E
zEq0!(IG7eusY3`=6ilG7_Tl2MKkpkI#Hc<2;$1i1+c0i8-0f_fiB3>_Ir^YW%D}B(
zalO14_&V#QDYUyq^Ko$nFFtuK&#eY&zX2JP;MUT);GpoD32-rm;?V$+Sqr{RV+V1q
zz<YoTfX}gw2r~1iMoC*t0Q6hiPvWR>YqTXex=4@*ym}b-lR%s<HWckJ2i$PH_>D`d
z=$iAeDXo2D6^*}%K@$Repanp08~lzIyc=W@Nj&ywNQR)Ub38YwpG|<T>OzivCyZ!K
zNKXP#aJDQxTA})m+9NK!))z7RooX1TK6|A3-M2Fup-#hyVemaZI!aGakG~<A)Y>+z
zj)Co&nY2z!pcDHJdQpemK+AnJ^;KC2&bo;(CD_<E8(zN-<|}$nM<xQLU1C-i=UX$D
zft4d0`l-0t5Iako7X}tIgAs~-U!Oz^d)U1shFwtUg`AX_qlzn2-XQ&RPxUpxx+i;6
zOY6`zka+U<*T|YY{=f<JvW3K6naR{>`p;u?7KwDx*b0h`fQJ0mrHamck^RWIj8^{k
zKsNZ3_yg?+ZB3G+eli&eHbq3Xyr6G2FfC7;tksYUy);21;SS>q#|di9#8;DqhCDik
zH2N0urqqmtZe!p_#3ue{OP>mFdd7_MLDU6Jh6xJw$`^_dy{z^5cFKDHAfa@BKbVhJ
z1+`u+hNvWK7%giN^b|d6q6sVKMqAaI_doh)DwwO}6n*18ldf(dXs;0es{N#(<GLXv
z)Akr*iuMzXp>$LWW%|Vw*8{d0qS!##Y9*4#In6f$Q-!Ge)o`#Ou0I$5`3iOHJkd5N
z;{dLOfL6`=zpytNZ$xMzzZIgPWufxwU|7l4mIuPcGHOCIVXdTFpAAs*a`W<D0yUX-
zq!VDYi}A}XcvYTwK61P>34)a?HTT7QV7w3P>dXXeytx$EOcMKMwQ??6VFo==@4sYn
z94iF2roumq??UvxIzo`0PdDMg?jjZnK&}iwGXMfYB-m(**Iw8+|Jbul=N_6zjIh-0
zO&sLMlQoQ>9-g^D;G&kwM|AySOrYqyhCbP|h?2vK7Zr_p-;dj2%#N4A?Wcnz>(CS{
z=(`)4KkQ@qWV;#1S437*6*e4n<3yV_(+;`=-OyKSt$>Tpv`IX8Hw2PyJ~hoP!)9RW
zGLT*3@>Mw)i$N7UtHeHgX+;_zL;N{*V4I1NyOMm0cNvLP7m98JJef>LS#lmrtTkMy
zw~!I`pBW4WIA2Wqs(ik7(=j@5v`pN!D{fQf&?l#OJ^|cq-n<PsG<Hr2uinr83bY16
zF9puHza~=_C;;|r30+w%o+7dx{!-}HpSRMEW|@4fH}(!XR;%;pbZlHmO{)2V*;q+5
zyi3EARwYE0DIqa0h|KXl@#bek*})UVEv9vx%;~;RSPIrxDt7x=nH$QQRJlLgB0iEV
zl&ad2KE{%N*%(E0!(k4usb<Sb)ad*$Rw2A1drHCRfsrL8)tTvHuZWBpJdpLB*#j^$
zCA5~i0tvm9GTWmYvfum|P<5wGlR5IA^*OMHV7_Mpf_07gl&mp_{^P8g+<4%Ur&R9k
z;aNzwn};kmU8JdawCP@xufcv{9LRJ+_1v}yaZLE72_b27ow?bG&=TBV#o49QAiYU^
z)iJ}f>W07SMr)rJjzu>a`>;rHvwj`;ZUiH4K=lv#*tKYnO6SBeki2q4G-U<*Gkxm0
zevmp>Dd#lR>-AT8wYRpmlN$Gk%on@rA^?oZ6~4gu%yrQ^EXV2^#9z$`X|@NVX&exj
z0bo598N1gpv&9{UpT@VGGQ+VIZWy*;h{t(h-@d&Tyk5q3csmOHxo<j>{exvnm;{UO
zqXWsTLK`Jq4Ok#gsBws!euxN}Gzs~V`420vOBy=_{Y6UVm;bVkm46zccMD_{j_}{J
zdOn?(`Lo8Hd7!cvcm$pQ;_94&GmF}F8{4)z&KGoS+qP}1V|HxYPCB-2+qUiG<Ui-^
z+O_xXx?ELruJz72p7E&R9O_suC;kC94s~hS0AQ#tsKxP6^8t6^nQ%u9;p^)!48xNX
zyI_Ft>;KwB;i48IIE90jn<=|D^p*IW_Om|top#tR6HipEp=xT5-HdZ@{pUiK-niO(
z$aPN3Bd2!|lcykDvAo~QemMQ=H2&IP-Zfk$IIju1=mAo1f0Q^wR6KcigcE5Jry^d<
z%t~1Vx>>2Qb>Hx5Fpcdf>msw3=s53nuPuej?I8Rx{=q8x&%c(`2X=slHROUXW$Ugq
z=(+l4+APxiv9z$1yw~ywFZ^zkAfEm}3(^MkOKs>qX(64PQIVlLnU#cI+ui5T-n*(-
z9%^zWq~%lo3eI`ob4OR*DqL|NU!^57mhP(~x^Hh7pO-N2j5)k)cT!qraBciE$3^ak
zj0!hCk1P4u>+ifQXS5v19_1ID;sXc{)VjFfX7zwTo93n3v40)uFwd_13Lm}ofF?H2
zwl{Cs1SNL8Dcb!{8H#yJKvGSKAq^RhY`r0)uDq&>tJjWkfZ(JeF^S_!stiM$jZ`lL
zXJ<Jt5r^M(b@qf%^1V#;Ta36r{C!tl?v}o4U6082Uc|{QD#wtH>IQqc4`MV=dJL$^
zwR9Xtg`)MZ7}#pneU&|v-9gF0wgk*={*ckp2*_g-<fFhl6ii?8AWuvsJ#OExhd-lo
zy|pKs9h@5?4sF_#!(qKI17^B~YIIZz<GxxDH|65i+lX8x>IBhhoz}cOpBQzo4-dO0
z^+5OAWEs=4dVHRrdxxjzcE)Z8jD!O>+@6oLsqYuNY;hzLzL-vOdRg3_uNRNwnDlbd
zdR`S-hpV7Av_ljWoW_UVSt86`CQ=1sh*Hr9afU8BtGe9uNgG$wnk)~oaYt&p1Le*$
zU`FP#*s$cZk%q?jwll5}&?2N)*MFNbeJB-(f9QRQ*u8P3ke8^#4>)~;O1!jSJ1iUo
zW88riq`&>e81uc7C@5r09i|gXAAVqJ%)??TPe{$t0Qi(gF?BXu&ZB21@y-2ie}Gp`
ztTE<kEjvl1jS|ruHcK&3cPUwgUq#;y-apA`(mf8-FwSxW8dXB8UV1$PV(dmoT5`HT
zk!<B2l1F2i4)Ez)!!C8q-(gp>QzCv1t3~O7?ygS}KA3f9AD!fUM61>ZP<L{x?27Kx
z_W~vi&2m0!{{%a@j&UI7kH@kaXCGNcT8%)I%p)@cat6AF&EdW+T7M6)B`_X{C^)k1
zLsN^jDis+nM@TCyMp+;#JI7u1owcx2$&_ywtPUXi*zM*FSx(7AeTBt);QG`GyX5@2
zk8y?;z_d#`(CT1Ce8(bsd}TB^VKJ)tQ0wZ9ubu#ICHiV5S}PHIhwU1lkRbl}%URP+
zJa``a76v!JUpxtrUS$jl@TEMB!Lt3*DbhT*Imu0#tdVTH%WxJo)Z#<mKC$maU=7N-
zqcNt6;!o@f>Q?iqlzj$Ds3X+>_o3Qu0#QtY`ma+gYxGE#w2Nt6Y->0QfH2WG+BaN<
zw(ZiMe4Tq>zT1womqDqTF2~TI<Rwu^%8vK9TRI+&wn-m*y$NuY_d)I6mKQ5rnb7(T
zJJ;x2bGLa|Iphgg1-4eeAo4wK9chb}=?0;gg#(33?(Wl72-Ft&O?=?~w@AEKFSaiW
zj_->YuMIEO$7ZE?*x%N<h*8y!8WM6t?5tzKUXtqo!<327kiwKT1~-DxY<KR&xkxgy
zG}KkvHbs5O_0Mgj2x9E+aUEZlE<VZIjqj_##uXR6UoU5(;|u=ECZOcY*Z!!W%Z(~*
zhk504=zpWR1lG(vm_LyUZ{`0^RyaEv*g6>)Ia}D-{)c41v$ESCx^4Fz6s40NorO-R
z7R~B$p^KW0pugb|`8i;qbTFwEi-RFtq7wP`Jg&8)Gg&>hiYNKfUpctCn7HV0OCH|K
z-?%8h@L3Gq9TfM{TFB6;r-pUcWmaLe%cv_K&QDhC=<INJdi;t~PfjvF7#2;Ga(Mj`
zJXjUPXyoS9R6W#WZkJKrh_LRYsu0b@Y_Dw*zvE6jb_8shx-el}v&yJqNbq8?T|y9k
zEBAbhiCIqNPdK&q5I6ow#&{I=(H2iX<psnyK77$DU4K){q#MUkxNQE>9523yt9dR_
z>n+t()rfDGODE^!<jf}<kV!&w5p4O6MH}s`l#K!VD0HNvPAja#Sz^?S9;m1u?7`;V
zF?eCZg8QPrt`{U_-dE8$;F?{@L&egEP?J!Va!_GSvC==##E6pKRz|muWyi>%Zq=hG
z$*1%$LagItEVZtvR49!!NRr70nBSG9rkK!84Y*0@j)T?;>$kKM#EY38gn@n=!|j_f
zX&bX<KsmIc)n}9^)z_M<qSSzWz{b<OEc4s%^dXTp#Py(pH)BZDf@(4mX#(qy2=}iD
z`h)vD6;9%6R)qpiX%}tziGVsH!atxuBKNA)9I@}p+7$zEOb3~1_<NV2_ZXOoEGka;
z*3joNw5r6KHId2HZq99`+szjN?%v0jdyUp><v`@&5C&`B{W%7V)#DvD2Z;_s2BX0B
zAs3i4nyuRT>AWY+zqnor{sN`M7U2Z(!!hS9ic-dp=J(KPLfla^{L`kmAt+e_`~s~n
zPv-_oqgJfdk#N_+Mq(COsHmG%`kjKXM-@6OgBCyXvB_FW!(3kk3ISOkI{Oxyp>3Cr
zKc7Y`WVnzBF@TSRMFK$#^5UbEgs4HSL`-PB3uU*uRV@rL^qVRcZvnIifNt%C&s#Cc
zUua0_$MFj|dt78LAQ5EbN3yJ#=+{9iqMi%AsH7AdZY?m!?!fvI|6EIQ3e23kDM2=P
zQ4UBH#H2j<Q7ta=7n|G)#mCv%1BNDHUUp(I{iv<?qwP`G>)!mBt?Nw>%K`Sy4YBtf
z8zg_=sWml<G=R^nHF`;FDPJ&#@_4P}Z-o=QfX<pK3I+V0>&gZhGJ1H6$++qLY$8+?
zH|itZTDC4k5nSl?DS`Z{UUAQ*z0}xRhxq7k<m6W4R9%&kJ)2EK9#Ou)gB{x@sc9oI
zrU^0*3|^zjAfBSY8ftd_{)+wPuI9me#w|OA+Q6pc3rk&&+cZ~el;im|!botI;sUJ?
zl8-8nD6M}}C0q?2>2;61!t>CVHrkA&a_TDz2Mgs@;0=FOBwn8g2G5{Z`J&Jn7h#=N
zYv`vD3x)F%LxUXhu(ymP))C0Cmuq529RxK|LInK1f*E>3Hsyp@@2TW>>aoVyGVJHo
z2c#<zgros6XbEFr3M-gYwM-j~r-VNY|43*FydnDtRt0Gbjz#jqL~}+?g)t|M<$1ev
zpcvTo1kCwvX()EQ>Vt*Rt}Do3jlV}P1@v`H67wxrw<e3@>Oj+Q>v)s@2cm?g9%;w1
zHa-H8uPI9O0U}>d9uvQM8>Li>9t;mw&I$C%f*&a`_GSAP1@K8<2Lo}^0T*!U?J(Sn
zLh}2mmfxKi!V^=iVPi1B3wKklx5jwV83%UtMoeRQUOb$^)wPxa%`JrV6iwwfYY#FM
z;~z@}tirE5J+ARyq~mV;RLyvZvhGh}B~`6p=^I=Bi5$Te!-dC0l-~8!mrdZ<^>#|I
zCTj&E9biv91Y3K|zZi%tIY4;#cIc_{k(8>jj1hPN4ceLC?x*meG>ERKfx)yb>rLf;
z1wGu%&LSEejBgQTbpztV&_yR{rS+arsy%`yen+W+%n$X@2RZsZ4Dw)DR!|X#2R;E1
zfp^$Q7ArR@0k?RwN2LcI&8q@4iN{EvR5doWlB_pq#dh!r`q5mh)_cK(-ilM)EV9{m
zZ|nR?=f!R9PGFoO@p8fVxQkAiCKL)C3WUtiPqV(hk5^|=36dh0YNR52GIO%v7yPXw
zD3Lu>FgyYv#GO0_j<W1j>;~L&fIa<T4t`VEZT_?QA72lF=I-sD)p7<laJX5{ztRNF
zH-qSXP}m<a2A^LZ+|k4j*WF#SS71s6T%ZriWzD({q<RASrsc&6<9bu8!9AuURVy&)
ztOOS<gVeKfD`_;FHoopIj<g%Hc97Ak+IM#e?MzxJ5)$FVnrt!O6mJzmyQB!Z4su%k
z3!I#W{=)VifJT&@t08xr7b7hM;S}`?fwYHMEi9_`j@5pcOiqX6PDcm{SZOV{Ulx{E
zLTPX$p|B0|lZW0F`GkM!4-6wcW^B`<t|^pt#g*2B0?SJSK31JlxACo{{V1J#sff_&
zt1$}U409_^u#n-!W{J)f*LdFz52FAkf*&-(a}p$PtjIEVIt?PHS`9=vJX9Iu@#sy?
zC>AFSi)b&%#D_ujD)BQ2f<=aYpB2Uh(A%RcjiDg$xy~xc6nGLab&8P)C^XsWLMlX=
zqQaRnk}_RUg2~=t-9Q`2u{Je>UJ5$bR(c)T$`&#=LSWnOi4zQ(ssh*DzzHFxEZ&!J
z;#GVm!W;F(Z>m?ZM|v9;xyigc#AqdC88J~^Mee6iIFZvcJ6G`L3)rh{DzltbqEegi
zbujcwMceN(u2-&umdDT&MN3|Lhj36Iogy)YD$!wZW~7Pfx^@L{5yO%okxOu_P6s9%
z_9O4FzbRhQyI8h$Dqyb}dMvC5`avl!Wko&xi~-Y{#a=B-Dcanme_$s@DYZVwWWrt>
zdW;7K&WR{)Q-8{5L_8@7PfF+If^hFsZcs(qv&YAH_DL2fPcWH!>{vw;!g{r8OWC_2
zuCmRA<!-8YU;6r$pC=4v8*0FSh28Qq?HE$52P-QG>buAB7tPF;j1q1!uD7#1dx1l;
zk)ghOl4#*Xa0KF>!#JyEPK$+d7VFy3IH1~|dSf9H%nt8=<VKDa8qjD{WCyb>F!qY>
zl{-v4n%^2}2=_PidoBR>Mq>oXzYKbCVsHjGt@9<rN;rIC0ab8>2D0av^}iOUwJ}%+
zk<H8;hRmVwaxLKRhbm~fou&pUuG3sR($<&V&L+jZMlYC&+Jf(SfGo<bG#ABL!kabm
z_FDljS)vmOgOF(dCa6pm=KAhA8*u&fUU37-=tD4Y^Y(9;MABJU9JySc=4ohS(Pn)A
za-rh(K<Elp_pe_ExFj@EW$($AWEN%-6k=ox44sB4DO7|YIP=a*+CZ#0aBWkRHaHib
z;^o{jPnhlMIDAJnGHm<9iOQiY%-WJ!aifZkr`aXwOiU1ms&@-Of@rBpR^lQ+r(0iU
zTdKZ!aZV>QI^rF<k?JoMP<pme-MRl;J#%c+uC6bpU;L{=XU-p*mvXCYHNxjrtk@uQ
zTpY@ca#uU+vXefh)KR0AQBKrOyeP3&JRrm<ZRKk8+io=0X#|Qx(Z3g*0M1N(bwDvW
zv1~lU>32qOEe<}yq-h@>{HZ3XR<?49m5fQn_?zEILai}$K*WoFniHK#9%Zj(CJ6{C
zb8f-;_DQC6b#+AX#I{NNp?eLidsW>a3|{h`+SJ-oYHngc$vwt-3S2BS4DhD4-mS;<
zkly*_OQ&6@C-=*_gkQ0J99k-PA{L>|?D6gtUz6ts%Hi7Zjj~Yi&BLDZ00NuG0xlM<
ztoa%=QvHA<NKes(u{s-BdO0$Ttz4AJDhBK(g}~$Yf~prMMifu@mHMf_c#C>V%d<<}
zKrv0_*c=svDmt`Kbud3`#T-UTDS00Xb4tYlaltS3*#I;^eL%A(A|8qnV(RH8G?H>7
zE`q)wJR}v>@ppX0kQJi9ng8en3=K36O2)-!(o)xal|<cY?!Zh&^Z;0iI&$7Afhj&6
z8yNoTYyO_0aB#e5Mg=8RzP6qkEEU10P$sWTCI~Tyc)opwN09`f)mJ&j2ozkAi0{Zq
z#0b<aBMIRf^P6XyU5^^|+X79-&*nF8%>f?6UZfcsPn?}Ask$|acog@b>@}Mplwasz
z+lj}2qCjStpzLQBxC_bt;LCLL4Yy$}I=+<1NTyBHBfQ>(Ad5uzqTb^v-fh2NtYquh
zYMp7Xt*}da$6#;W-bt~%?6Vz{H)-n1U^JJw6#716vIWV<ZT3?z1Z11~n?{q_tc^a5
z2cEpCn(KOR$72OF%o$9>Hw<YTh!o*Xvw1?!hyDBb;poVQPx|9@!7>??ma7EBG=o!v
z>S*;-9}Rp-u0*FVNxdBetSxr{OLX6mXNM4-Rm7*7zlQn2{@KqFL<Jeh*lp2g46&dM
zDM*vwy%I56^%p87UGI_)X=zE`)Z=*BI@2pV_%K5@<w+k$5FKX?6C`mqavjA&Iha#y
zZ7(mx@zNM+5?^z?jqwNwc#{-r0kj{)QIEYn5X}WMr#oIyDbFf`>v<Z6Vqu|#(?_@|
zqJFnketQsg#!#eqi73u3`kIvcusQE{w%KDv%WqeCQy|^z<}Z$;l*~A%UVhAVc1eE*
z{Sb}E9NbDb%qTVBW_e5PFqCJo5W%5H1MDHDjfXI`21%XI%nKu;U+vR>1_uBO6{QNb
zV-SX4P8lldb_&nD)B<oAptoe9)P!oZ_2ssaBnX@g?PCR1dP$BnN0?^11^WZ8L&L6h
z+iCLn0wLC9y0O&6ybU@Jf!?L|?@BA94_}*qFoSoU0mVix6n)Oca?ef0ToEWV{-y-o
z({;~EVQ~#@3BZ&PK~$G#LqWRCSa%>1RGqGqcy(7ct9PlV+)x=UnJV!5i&;BnEWP?-
z*N+_(&ORZ0@UC2$gF<aBmO&dcDBP|&43|g1^INcV1X1P><X*`prI&=4*7ExV$?bg6
zpA09B?&6mZ6RrDM+#<z3aTD7PT$gbtdFLw*(<TDXKcF>Thc4DxvAe~zEdMiyd3Dl$
z*pyD*x9{0@XW^aIZ92D(cHD=``OmhSnE|%UHNi#Ne6GG%?rlA8c8~97h)Pm)b~WMl
zt5%E((JJWCjpko6G2a{Qtbt8KNM$RZ)R_k4bXI{=_O3V_2_#3PdyHL=@UqB5J0uf(
zdG{3}Zr%=EN`_%&eVgk#Lrzj$o43$3ai&vQ32C4lRP`n=IpG`Zg7VYQc;{^MQ%@Gq
z2OI7fFZ~1~rk>%`{k)*jcuERXOxSaGSj{zZ7Q`^{c#WN#5bpCIxgb=)fxz3I^|Y>w
zhEEO8X)Sr}4q!4_N<-qgcwbkozM6jI^A@yyM)Z>GsfNebu*EZ!%v%x568IW3N6rPj
zvr)TiFv0;+(oOF8fXRX6Jy@R)?XW2{RLR-%R6h)t75*uQP2KI?Jm84j`#xxUDA~mm
z9xv6MH(z$RRAr~<ZyCkE5<M43Xi(#`Oip-oYSRP80)~1s>dhKqNW3~~G~0Eli_jME
z@SOFX{mRM{p1~)F+-HXtVBBX*4b1Bo2Y2Qb4nMz}@RI`Ofr7FUVf{{0j^kSYDc--l
zE`V#1PDm9oB@4gS7Mv%DU>*TfmJJl9K|3Ddbl5CYR=WqWwvWpB^FifhMvQsLj~P^+
z^mh;IOD*B%5fsMMuahj(il<hg37Tisv#tu+5CT2jCyrz7*TL(sRNQW(Mbai)E9zm>
zCs6EE?xoAj0NOHH?cbJd4!A9XKAyX?0+Kg;ZE0r!v)9Lt=>YCg@m`PX+JVbws!lMB
zn6r{jp+Ils1qi(3vx4TriN@ded02OQ^y7<WX)}Qq7YUhx=4^_u9H%kc`OxM?kC#QM
zBPv>!_C6XD9Rz1)53=202nHjwsGz%$X39TaB)1KB81KF)_Q4#xebMu@zbls{Oi^^n
zC=5L-B&ZE$x@WTHi`~ht9!`s5MdrNC<rqz%6rnOvao%N}1CF8hEWeyW_q70{csp*p
zY*oq}%NFq@jzk`$;e*9Ni3YMcO-zI|_0e6{6~UI9U@S^v?2T`kYOTGhK4|%lwdTYP
z1aoS{Uk_JrcXlaiOXqu#?>@Z*TPDfl*|=rXhw{&y0%}*)lbGc0%$q)vIJM)(*&s{)
zTstvyi}Z$1ztmnmJ5P5p9}qi}zMTtQpzfMBx)=>0wT=e7_@{&Lp{;PO85*l7$U*YH
ztnq{S`+{MWHK^N(#ShRJSNL%ee`08#3an@8q1$dVizO$}$G-n73o{Er&-MHhg6RbS
z0m1$kROe)2_H%wT_!ID66G!=)s!rWmgDnTIx*X`LycVbJT~QtUi??H4q)2DU54xlw
zt|>8aTXeTw-F__c3wqu7xjb5O&~U+SeslhF0?xCNkOI-7rfpKA;<{#@Qi|Yioju@|
zQZDe7JZ8Rfl970&Xqga>0<<YoDLJB=BO+xY<3R%pAe<N`YE(^fVek8$3;O-p85Psr
zx8DnlJ9JL8R=GYAfnodet>z7N#y8dglDto~VVpIEjh#0=UqMX1NfG0{50p;-rS5}k
z42Vd1<&gvLgu8<~c)2yK$55DZLJL;CJMkyWU=CyIy$bwD?#23wV&l;2i{ziG5+D5V
zuTms9?6V6@C5`F^>$(v@oZjV={~gl}RVOh;8}5|KXhE(OZwPXSF1{;4;yxA-ddncZ
z#c%A`HXi|;5jj=d{X7JEL-@`>;Qb&ASyH*0(eq4x4llQA?|cYfUA;oZ{!(|WBcpzO
z7Y{t%!j|a~2tD$;nW0;AyVJqOYch`<3a$~nVeozTwt$<Bn&bAkI|m96&WD@jA6n7d
z;tLGg>9$qG_9>h`-EnHqkk&#3QmG#p6S$iwLnj}}dbSDVnD>0;*fS++gfx%qW0-&#
z*tOhl9XPlz;0v>he^xS^`Y0C5{@n(lz~3+Hsn+S#U?5$2Mk9Ng&z2R*e~3lS+S--5
z2R1cSK;z1ho;!Kr!3c!@!_uYoI_X~)!h3<<oMFja!O!M?E#Sh(5unKp^E4Q;vv)sC
zLH2(EX^08`#2Wl>Jo2&DD%qaMOP!o~z<>Afk>nAXu*Wivo?{8t1X*K6_Cl-i#Cxhn
z2dtYjXH3rT2FXxtag4J{pp>-28byiL44JVWr?LA~b#LBXu)-Z3ou|`3Fd2WF#^Lhv
zjcMPy5Ti`EcrrZxnZhKVX7ps<vr@>{9N-14Kp@w-ZR9{$%~C_V^j`UY?PW6K!13z8
zp<xUdCKT7qs3T~%gc6-w=m<3Jd-Se$O{`!NK={P+A*E%y<k_QCl4RS>5zbI&mA<aT
zLmK==-;WT_lU7FWz(nMu<V25Pf7I|I3`@)#&drD7Xl0qkY-VoeQkY+WRdax;*Za=p
z{rBoRdoK{`99!(rmJ#n3t0wKJNF0PC%n2SovLe}o$AQKT(TKQMWQZ?hA;T}FQgK)G
zJC_mN*#GQ8jNZu=bMSf1!<D`!`CV%Oy>?r~9BTs_MKg#%*euppOIV5EJ63sYmjbLf
z!(0I0#I4o~-;TsGrghhJX^paCJ;8`PqE2*wuY5U2CySu=pGM~uW7IN}b$b<g*Hw=d
z<_l-%xD#fZ-#L7VjF_WfBd>c9x|AeE`ynL8<?imeS*d?tF(0Q-^w&v?G#?kc*FCo!
zWGSFa%`UqhmU8T&K2Q%a=lB#TY0%C21`km_@ziYk9jKIZ4)Hi)G*Yl5%OJ@l3(pak
z61PkJP9}9ad~U`h85b8GiFZ8Uo4@s>&Mq;Ce2)UCZmozI3Ky=c42}Rlr$#NLQ2=fh
znv0#T8^|uJX4%d%@Wed!v+V=q$g3~<Jg~k^QG8o4;|VF!uQjqao?jdM`wBVmN3M$w
zy@F8jsZF=;NomBP#h>Om`(leh3zaVD!ZACpBy}D8efksT$zx!cHBm%YE{{AQakvhI
z45cNBq^ZlC?k8$T=Y^ghfBD=&)rtV@(*WCW-4XA(8562feL@^U%#J~+^h?UqsZuqG
zT?_)%0*l0-+-htmJq|_y)x5FeF@2FCcn#%E@n?)Fkia~MkdWvJ!}5=oUlo_$up)fI
zl`7SeN)YkOAhhnib}NWdf35g2cTeV`Z^XM2q}{=%Y6eLyyT=m{@vT~82n+CLG~Re;
z2)x~qrc(KG%ssvkKiz4Guif#dVdcTbPN-~5us`n6(WpuqOppVU=Sd5El>?LBAJcWx
ztT2cV7{^`j;+|TMt4UGrw63KSr4Y-3H{_eI12&UJ%!)M{Be7-k^aL?XnqJcR*@Ns>
z<4X_+Q#K<LNTj6YQYp)tH7r(*f+Sjc;buzLFa}$-lW;W=XI|Kew9FU4g=tp@LHQ|I
zkxJ=yvZoWY3n^mAvc~Q$Yh2#kSp2gZVSxlh{WQZ!e_mxg8sL$L&Q;6y&svLkThVh4
z`nF6M!U4EEcy6>X>?}w;D=7Ej%oDOgw#s?C2pJ$u-Y{|Y(d~uGb4tcNJxl`u#x&PF
z`H&>8&5CI|nepZyluxRPGIhQI9`xzXHl@22FqhS~yH^Hy1jDaEIS75k<M7qOb1T21
zNNU@!SRmLOGY3w#Bp7}sV<to!;5bdnwwn=7X;${{*mhTqM{nwX29*94WQNEP4TE6<
z5KVANyOxI{hTvS@VHZarM63;^+?ZD4t|M)N;TowBy#YhY#u9iY3v}+SNj(AnBpoO*
zY5`~+;laudE#p9$Qh`;Py5=|pCeI`+UAAhj;dB>$Rll9<B2<$OI2H@ZvmUi4_PLP#
zy&vB0zoM*;<G&WxK<I*`0Yvqd4b<z@;E{q7ZI&i5s+heGbvDqpVJ>L`P>PT+>}{yx
zM1n4|P0^n+;(5YYNH7VaSQmQAH~V1CT13<p%nR7Iue8i1lk%am_)smOE9)#EeQp?|
zc|%5IBtg2Yv$MCVBw^p0=#pT@vRT>sc_J{|%_tJ7E9LTxSeqn?GX?+e0rTpA9#p}Q
z#g?5eeZ_fwekuTjl13NyOWuCNz~`G(a`}btoArCuYpIT@vPU|}nPuJ_vUWEiBu|c&
z^|IZ+WU;JHSC+{dE^we)chbPF{If0FDbH76RJ&DgwK!b`8QJhlll_Bm0JQO>evaMU
z7T1!(GmHoXdt9T~rip?EQ9=ji#yV0Nh5(>nYMaSXcyE!lG%dn}aamdz>1Q5S5S_qy
z7l-PZHmSd#obld9?pb@OGWItt_Z#~`76vujiVo3k;$$BjN=&#-!A9b$d}bV7Z-V1U
z2zmSOXfwaZ=`W(3l(HHNH}Dy+fsMpY1<ZqWaEVK~H^=nVvamH%gR_x2s+hsG1rx<2
z`=lpP|29#RXEYOQQZt0V60mBPcNL<T?6)dm*8h{i{ryAXK(N$}beET~U=hsJ8>KI*
zdxYXT2l{d-Gy1U~MTRYuj*!I5uyP18j)?I~&7pS}t(?h~-tTvfE!rSoOHAZ~BwH?*
zVmWkSzmN1s#i~U8**4q|o|3<G15^8hSI?koF79Mq<~(AlQfG-w^E_@6t4KgB0ox&*
zM@~43CHN6q2!)8!+l1O=Jf@|ND+%1Zp%+bEb5=wivkk05f2BEzi8;v%E3#0>jz9b-
za=F-&n<i!ND1c2>V4z=Phl_<=x_CN-f=y0ZBZ1^!K4=NIYT3wfp1H;luZ1)|#Z})a
z@Nt(><$N<(>VT>gd}+tn>0U~j@USpYZ-}xYDec?)6RoGqNlka{XSLZ4F(dyaIQHjk
zH9WKg26A@oOUu!?(t~|`a9tCbf|z0Jt(s*5DJnOqyVPz<UY`QfYQPaK7cZxWi*b?@
zHOgSR#pqw&{Q49n?W!Hp!NDWM){%5B(G@_BWhyZG3c?E6nFzw1jzD`VvSfu!>qZJ~
ztxIQl4QLcywAB|wNXs$zq)T36h7h39Q6(e)n0B%W9yT2SW*QQ@7>mW}LD{bYxg%o8
zI|t0{2k*S-{H+PUkO8rgQm~grGgYrrq$mUMP!gcNs)WpM5V6B@zQJ6d!G<K$dXtCE
zVpc+-a_>16uTi&=9VCx9F;Vd?lxl=U04d|vwifiZ8B8Gcl2??FJoK3Xgg3R7sYNLm
z1XXGHAp^%<5=ufIe{Z0gbn!$nOU@SEG+Z`O0VA8H2Zz{~7Ymk<K)(voT50@T;V~4$
zk`;H3Q2kots<Ia&qtwAPN>0GD!f__HGDRJHP8yZJiwhTHY*Hw^5GxY?0fLiZlYt8p
zf>U3@_q#%%C_Nf0l}qk9z04fiR0WvS+L3BFp8FvuE*ft(Q3BhFN$-?T8r1D>jxasd
zT_Hs*>Fzv<4;(r;!xc3E=V{`=NXrK}FBYqcl~8;)R51-D-_F3yWy^bCAlIDhva?!j
zaVpbL<#-o4cz77*BDXsZ$3Bf*$@I-pR$-F&E^QZn5V@(-^1vtLJh`Ud5b4UDmDH*i
z`g8gH2_#mw4F;;~M)Z<HD!Q)igVmH9Zk_XM{#BXMk8SH~6TH7}K6mC(LAFz5&2o@g
z9{)kejr2)>02}O|8+=n)9Cf{iMS1q->Cce&5h4gL(W9NnMt&Z!t;#j=h`>zNtHN{C
zAz(m45+w$2ltY`!X=Fc)^KcGioK0YOT-u80;`MaQ49>#Y?6N+;X<0VP?l^Y-bJ_Rk
z9FnYJ9hd_Ngj4?XZn(j5{3WNlO|4zV{0dhtcUm~|aFHLH?}Ss7uE?eNrq|e^N!g^E
zMX6W1wn#md+AN?ZQdyBBvPpODI6=ioI#j@>e3z*M%P_II2JicNG|K6$gmTy5xRg6p
z)bx><>y>3hXs8lX31C?pXd`)rpf^4hv;0SIuQE3z?9hs`y}mB-r!=2~M(oXG5`({j
zrr8&`)}&mOSu)**_1-$?Ih;>A^nk878Tc?kZCp1$CB@A|DUV)j>PoWr(5Me3%QdEW
z!|~R@T#AZr^iNs-&Ty?6lsK)5Qv=2D4bolCi;-{#lhA$}eK&S}cenLC_FbJuVY!D6
zU@S$3D<1t`m)rGE+St8ZCl-I@Sjp?HRT5va8eWnq?XapCW4c|&qIyx(|Hcd~s%sPI
zz<_{cf8y=`C2(~9nGdZ@{y19L{%1@qO0u(C|0#pnK3BqvXJgHUu~BPK_k%YwUc(@l
zN+WHi49Lx;T_ZPC0+FC#`s@9SPc`}-Pe+xG87^|~^Sp7(@rKe@zC~55jeQdAjU}#g
zJy9OtLKlTnUsaa)B;bVLfHp^3Qd5eC_0{Ze39LZSr#aEOuyIc}t$)4U^?3--%lrDY
zU;T2s$t7MM6}ujV7?%mTMFz2H--xUUD{V==VtLh%$H8k|t_Zl{OCU=WWOHOsO`6HA
z2>xRn-cBDpJ3>|Q>e^pqFqB^@N$w_Zr=nwl5Ytx)w0!YxX{GOvPHZ-ao^z>Rmdf1m
zfUHz;CXm=Mz&)`8sx(m!dBx1qI69_3N>@LxNC;!zB?wbtHH8KRZQa>a8*pB{VJJ;3
z7cz($uW&)QVSIXQ&JSrX;ONy26c0xvL7~8y)dPf!mtY<b8fMfJ8%Zi6>~!E27XI7V
zS-1`ujmj|2Wry5=8((;IWKbj_gS`(f#9cfjG<61mw-3@9y;u5j#)w!zlJ|#z2t)<w
zQ#t|Uu6EEl{~wiyzxFWNUyHw3@m|3nfBzzfc`Ikm*7WSlw8>dO7=#bKT7^??fPyj-
z|EeH%%Db$fwU7?y9!$i>NS530!(f=0gC4N3W$9-wNew_7fG|3ix4AOH8~kUg$|zBp
zTN64ra5X$2B3c<96uoCIoDjP<vv5g22gfFR&)NeSFVZ@hCJQ^D?{$_dE@9s9tkWzO
zDwzq9Zh%TY;1E($g5<t6I0)|VF*!qbViVOrkT+6*ym6m}aHBP?RcZ-pss`H%R$E46
z;wSF>$v+Ww+(^Sz{5p*IzN~o0UkA_U!=?$~nWlLK0o-Na&t`j5lIn46&`!nLow|9u
z-+R_C<OP5cer2P5jJmn05$q6_4~*~l8xj0<VsG9bTtJYCswXd8yu7ns#etAOnDfUO
zba$9QXY+<EPm{+H1L5k`C&vSO*MIEYmz+?mF~spO3peHJcj<<HatOdbgA96D@z9{k
ze4A`7%~5dKC{fkkvG=9qmhw4#XuWTYz`tgDIo4~|w=2;txc0AV?y$29zp4Q-coBVm
zlX=(a*bJZbL=Hi1s{Z^Gt?iML5w}Uryw4WeKeSmuJ{O;^+TUv2`Iou%SzD89vBaBM
z&B7Oq&(?AYK+$=Kp|AmRKX#iaX4PJ&UM1Gd$SAiEX!m%m%#+*fBJ^9<dOr+wD_!Eh
z3c1C8=iVQ;J)Pl&<h(!WeW^}fk)BX;>egK^`-^$GiQRnLtW|f+^#0;M{zv6b7nbv-
zm}i<?Zsx+VuDwcNRL7W4{wbvU>ap{_x3w9P=&9J9lchKdXE}Weu$_Tk=$ysX=%%(&
zb?W6=IxhK=GwL2sd~)%rolm#gY&!oZf9Hkz(`Tv#?P6Qv19q{s(^HP%?TFAwuDH&~
z{eSCW5uYuhe*frU3x1BC{>z`??ED`MOOmRu-P(^9c00#VSOwe>fkYyyqFjm$Qrd8I
zg=4)zElYN=7E^t(vTD->YP*Zc3N&w~+)M=N`l{oPoe!;@zPc*zD5ezrrU9a;pbBm$
z0Q?^;?W<CiRGGDWr2jSiCXuUwuH?*xh!6)PJ%L~^6FFLaB^#fg4m`v%rdr@QA2Fqx
z_5uwqcidwYoBLhdD7spB0fmlWRVq9-&Uy{C6Yub~@<FWAqP>1@inc%Xu}7AqDQl~0
zXhMocr=eg;dTyvDHLLt$9W{C&%d%7t%Nv~)yi=k-yA=8AJOl<Kdio)2pK_ho5y$wf
zT=^}i4tLV@guNwLm|}tK{;GZ16G%F(utY_85lV|+1La6E)8dE>fp%!W!`*6_HXIJO
z=q`obL3Hl^z{?ge1(pDkY==IlKeFheTZaT(^fhR@uxzZmZ6te6=K(Ou^H!K>Y!Fn0
zy61-eiJX|Oz1>B}Xu)+}NGDH_QBZ2j><utxCfD?HJpIu9iWCT2^!tC5u%8DI&;y8I
z^<*x`hQRD@U9kHMf>;zUAh!iv4|v-@`Ef33hR)unZiWDZ(8arFw7eU*$jmS&IXn`h
zwXXO=NQy8aXY9Nh_cIDoeY{}QoBmYxerDI%-~@K#$T*><+9+2#Q5KRhS^gg(EGC3A
z0X{{X5CG(P>-lO^|0LeRe2T&#2(rY%N<R?w&+k{b66n5MZ*zWRGJ9NUR2NBN#@~1w
zP=O2%a91x3u-@Zm&YT5Ae@Sm^AqJQdl*zoc8!KA@YPoFan6Nt)<%u}OAa1l3-s8b%
z^(m1mYn6tFHP%$_f597xg~64-%m0;jIh|!u{Pp#iO!f1pny$FNKbLCplWH&fK5i(*
zejF35Q)ZH2p-UG$R{ySxhieB?1P8^fS=FDcsVXgp7g=Q0Q!y;ClfITOtH8kIy}}nv
zGifaIeNgUcO9W?iD4#Ee=4GN(57!xFK_0dh5T0)d-)f#J-Hbg{(umLo&JmhIO95PK
zp&sW{qb+Lf--T;yCMThnDcYwTwJh?4>hW#u7`r<Z0Zgs~!CyMYqITu>{SyCaC}{7z
zsOJ$TP|=t<<vM#8X)G7TAo}f>LShn9*>bhyNjNYuPpFfkrAL+B3JL~8KLkhs5b7jv
zPVk>#Izlve@IX!6({D{2H%vZ72&d?l*<RZZAI}_fr#uE04s<NTgMm3ILXO!12CPE1
z^=X|23PvDE6+Bo)+6MnjnZje1M7p7utwnFiQ1d-V(5hJG8wW`9VprjcCQLu8-j0C$
zbEkRLIP~l{Z31Ot=vWwAi=a}8o+c1zW(xK5H3HVPur6ds<7`mZvQ;mz9BQ<B^Ap@5
z@hYK*?yCR7(^1r!w*OR;h>BP`wrSbA7?%itoSb}M&_VKTeikTXJVwjn#p0Aup6`t0
zO{o<=xel*W{Bq@o^)~s;*JfJfDHe{W`pR-SW_CrjU1&f>WD9h=h8%vAQN*qJc<$ZW
z?s#Wex_hquXXgXo_{N9h3ts4hdIC07hBklC8L}x$+ZE<WJK^P5-+WdHYPTyal12S_
zd4G?Q8{a3pjZN6F{Tn-~I=Hni{rA%8W!u)tC#)U8n}WG6uOL^k9Gi2qP=V;~^zRN_
z*)1K@e?ln{m8IyurkzVa6GrLn+|;qkTa?Qr-uKK#!8eIe#?XUrh!akk<6!Vy*@z}=
zhO6GAJFMN)6VusB_?6$Uic9rPJ*=Y#*OktxKd6y%4K{SewiHsqqoSU1%+DxWxLA~l
zU-<tsD~|?KtuX(yscz8!x8lmh-q^tTKg#V*oOQ?bmPZ{u{~^RAZn$$}Le9r%*W_CB
z5GKaMqJvEd9)dJ-Vr+O3M*+%c*SA|9NFaJ7Dh=07>te51@tvIwd)pSgxO%|0eUleb
zp)V^@LBj~!9<fv&4|?Wiwa5@`1X^Nzt=rL?QVM`k7VMK+yoqS*A(9l3Zz15>SwL%i
zEhp>a4$J4;eDg?n^LB-QTaPZaOcUX5Vf-AeKZAZqqlyL>8Xj2*YZ(W1qi&ouXbt>r
zfRm7l9*!?L07@esM>}9NQg&gS55(<&QKiO=p2x2|Vv=er-gWdxRsL>d0MwuLV|pn7
zz)#Y1&(G1h9ZQC&Bwz$PbHM%HXNUuuCEtS>+cMoHKbjCvI|&vFppw$P(*#-sSMTF4
zA*KM38N~0Xi^7s!T@*+aC)}^v$?gPvji@lZF5<TSx*JOCd&b>+`L!oU$MgLbAIaZq
zG~Ax~<N70KAhrKUJC+5Ww%fY+1-$`Fffct3HUshxr`ngbi{Q^!Fy66_ZWK?hd<;c`
z6TibLgc)I8@9R!f=PHH7>qf@wm9r%%%uYZ{ciUH_G#^QNd>JC$O2ECrMf|-4kU8Er
zYMO4VSvFIX-+m8IM(@Mh;W{ai87f1j-alaUp4d32Q*9zdf4p)&g~FIAYfj*JU?|p3
zf@yibdwoZVp#-Ws>3=13vG%422oRIN%}TICt+|Up8m?Z(C)P(YUO|w3^*sV~UeAUX
zIxSym5keFwKCI9{Hy-7X>I2XnRCAfy(?IZ%IpT$WgKp@uWiFY5JHmH65V=88VtYJn
zX1!OBTOEIx?n;asB>K@KMqCI&^n2%Bvdy&l&8nMsR>MPOrsl{DXspR)VMO^L0wFgK
z%_j^D<Id4^J$T?zN`gD{MUd$%>Y+=qwlxS$YG?cW{c9GH$P5%3H2o`{RszCJGbmT;
zmd_=?G&`uGVo!NpmF!*CrGjC<1Lq0+Aq$r*Dbe(aAN_Q`GhgVi<56E7&|Cc9VZFK%
za+cK?E?3@leK-r^LQp}Dm`V9cclo5~RMGIbli`2s#J*C0jH#Zh@JYf<0`q2uv&cCV
z_P!U*S#;;=X*I*kLUWLeDpuOwO>P(Vmy9<*JiDZ#HHZ8E>Pxm5DvQLakm({$bPDCb
zG8R{l6*Dg~z&;X(Qn0D@>-xdN5(j=SYo-~&j+maHN$gZ+S_*b*PH;%2rB1&m1%b<8
zs6IZ5CHIxiW!e_9Y$lQ$z2ATe=-#Yr5uJis^TZD;3Y2Iq8A85zkh`#LT-|?oe3-!)
zFzK*{26{J-0%6t70Wr0l;~|lcM+$N4WyNQKSRBpB+Q=)n$PRSis2LeK1TsnmOH>=M
z>sJz(rw2p7gO)H9#enH(uRFVb)2C9mtM$s2F+wtN37idx+Gq-=<w|SB(y0Cs1g~Nk
zXb5E=&)9E}?e!_t2=bcGb&quNhO<c6*u;iuZLiOTP7I*uKfgjC8$cWgE1<@UK?Hd8
ze7MWSO=-elt{376!HncfNY^p10wJwANfX5lnE>A|=L<Gb7lG+vdf}JFgM1Jt3dg}g
z@)_dEkL>LU^!emb6<7%4y3hPvII#07>61q8fANnFSY!twtK=vP%h;H|iv$+}!8pNg
zNS!v4lX7qXYqpOlgZ9IvM>h@ukJmOW7^$S<v0dJz9uSA{3UG)+%I1J-0?6uM);IA>
zEu)V@H@+xoXiD`s%TrRrW69)Mn5C<qu2_`uKmB!Hc_Kmp1Xx>k^zrr@vA&47tvwj4
z+N{sGHq=c^fvX@#LA}PoxnI2HLT`%wuw$|Lol@yorga<`e;o%fXmWGN(1e8MCmuE$
zK*jO3FH~OAo>+D;6bD$U9Zs5yvEbLp?<M&FQOB7=lIOTt5Wp4fQp7fHmgH;rqMD5*
zs3q_y4luT?nYS*GDhy$vQ_EEE-kact6S~-hJ@vUHN&b~WA7e-?Eh-QOH5YUFAu{&_
zC)}`PjOsZn%Bzr%3u2j|cTW@=Z6opk6)Q;Kk1ZTz=i<&v0Psbz#rXn210WTYftvMW
zVV#18>K$A=puH<HC|t+t5$?K(CpuOh$_)rJllrl;v<P3@(&(P;uE#g7tWoT?ccPSI
zeQB>QiIzPzC|^sJE%ey@!I8d5IPexi(b(j#gcMucPYi<rR{0%63*_eveZ=*klB+0w
zkdoG%#r`)j&_qj60!bg6yiJ5zD3rRhC#CH}+y$XgOhOr580=j1A4x*h)_Y@yWMc}b
zn+Qo%cVa90qdX{*3PYiKx^@*(#0UeiFHNNu+)Ap5LPYMAf0=!iO_o-bjc&A17hnzM
zh<VIi8w*?AfL#<lzweRFluLVGiIS!RoOH;kw6GShOf*1d3;;7RLK=>p=>y(AxIzy9
zB$k=i&XrgreOT9--IGs>SwRZ~M&*c83m!;L$pluTutGf<7^;Dz7APQ?mLN4WzA7qf
zXe^G1iWoVJ?wsJ7%KaA?;B5R?c?LUo58YXSB=(Hpq8$BpJKk~7WZhM**%jDt6)|@L
zludq)OpvvBg5gngPHr5;gXYx8(``=em)Eby4E9-lA~>xfL&YKw_f?W0bflHI4FP|L
z653Os=Im8hLf$#GLYl<6Tn%ayIL%*Z9EA|_o=C}Yr9<k2d5kwF-{}zG^{fi{!nuQB
z(i)b72apVc6lmpj(^K^wzKje4*@~5OXFDtn#c_nWtyh26^4dxkm#R3u&}b&h6_%70
zkFdK&(;Z6gbc;j0@2-C<4ca9v|DARoa=NTit)H?^@NUwqSkVn}ZQR*vbzb`Yg~nEB
zJgR@xodrx7xDjwGhz0CyMrj?qeoaoQ`gS?KV9b)xkp^LPX_@hd3_OOk$*yYOsBLWU
z=mq?2yW~~zlr3q=uG@lK(!4x?78_x7R4O^p<47wje&-52M{|zztE2=Y7}D<rb=w=e
z>`LXZE0|Q~E9Ldw1p8Td`J=d}G|Bswbv4Ic=68Zw;k;((fyU}J((g8r-s75&6z(LT
zS>kvd0t1HbX(qTH9Rfw(&1}P5hPho?d3<TtC&E1z+7+HHCEiWl2WLA^khT(xobvn?
zBc+!M0F7&O&oQ>7s_+wyW`08xBDt;Kee;U_J2QQ|>)cpL`%~Fp!Yg%^Xu9SIJt_%E
zn9XkqGG&3cG;V7|@S$*-Ch{2K8$>I;D&AI72y*Po871{0Efnz_*n!7rw^FNoM^7E{
zE0JW<)dEhYo+y5XSM=;m5rcR%5C2bNmEtBg1j;c-S=gP2M{@0KRm#I2Fq0Un%9A2(
zZ*J6)2LZ*pUR@5zfd`TY`$lMFm3wx1PuyTm?BA^Di?S+NJ6&_;o7{+V88*{Q+@LRy
ztYipOz~7lwq2FCV*0N)6>JV>P!|3#Y4{3BfT?m~1o+-rDk`)4_=>@sB7d=LES?rt8
z5L|j%`CASWOSzYz3DbSmYg82@a6?eg#0cJl?1Ww>MuX?OxtdzWY%-g>&BuNw`*h0n
z6NGIO;4H+hUv_IMbzZQT<!%~RCPTmLRN+6AVakD$09kBooW+Ib2*c;aHNeKMnuN9a
zpktMdOcs~Ys@o)cR;XJJ&i7H)4`F2Q&nS1zn}o%dKI%{>YuKL&jap3K6e0ev@!_r7
z*0+CTTbKUwe#0fW+=t$Y>ygZb=$5Om6KIJ+xO`9}K3h8ef#PT1@&EgqR!+J(`l^XF
z0~e4e7Qz{@aO960FhiLjIp1FnI#ZQl$+~rDb$H%{Z9Pd&b3{|lx0b>?CT80vKK?P@
zWFbo-i|O8Y!g5?@WJP8Sp2U8-96Cm1o@3^9_|quEvy~qa7d|ER+e-Ve2qQV(M{Mj|
zd%H=3)zs<TR(epy#k1H@2mi@AFvWGIb5MTXO6R0EqRWxMH8rB`a<z|hh4tCzJh$+t
zc6`GB`Z0RM8_U}V&fy!mdOkQ{vpy(HMs9l!H+`AMU|<&cbw}5oS3^-e$bHr3{HUm-
z0|Is@e|dgcdHrdt;;QmTxvFEp;;G^^-7;$_xS$iRv`mQKbL<QBKmYz^p_sBrK!Je%
zLIMH(IBx&1mh?ZJJO3{i)~RG*^`FL_e|o>!!8GN)Wj(ZGW_(sgtUMzcGOos`4qFhz
z8>7LSNDEzX`afSh+a0Gy71+(kvFqm|O}9GOxST{K<_X%)eD+UN?$V20wh1<h%XX`E
z)HW}5<{y7QE-6x@(7~6u%*WNoM5nVrC(JZyuC_HRI6u+XjE^2%W{i&xa>Y;nD}QcJ
z74F0lGYjpg-TZg<4wIxU^u9IJAm}LFUR=54j^QF<vWSQWXq8!1+OFJO&adA!I`r5{
zoV4t&Z=}f#xmyT-<G<{(%GjD)9<zbs{kDFJUWx_IjJmwo^uKD)cWsIUo_C!TQdvWB
zfe8U6yGn<|Wrq(q8xk-p#cOGx0Pd&AMYFMrh%QeLzg#+2Z6Z84f|V7WyqlJGVve$H
zXhT=xEkb6h5gRy2EF25^=_wXbQzB;+0?0s9rH^XcgJw>X=*1p66_+H^^njcP(Ihx?
zpgR)W3A-l1D6=0Xqyv-eb87VT{u80TqtCmOK8VL<f&f!T>ON$osJ~&5EBwa+;iprQ
zX(|c&ca+}P)}2HhC$RQNBKkZ@&Q4M(pMf?f*-sEoMq}tGI}o8vY+g#UW`i<u0m(Gk
z;tG7CVT@8`$f>w!m$KLKC}EbPhUNDids{h=2{}(5DW>F`JK7Y>J%BW)#Bj=_&$}Gv
zwsj6lJKac7S{ioWs@wzt>!1P%25l5_V#dWcSRaMmK8oBJursB*)yEz#TA=VcP2l2c
z1sk~+c-dE@%<|V6bI2u<-+B_=<l>hHj_ezMN-tTV+bin7=0KWRY8VP_)ayC!!-<`i
zLyL!v8{n9Pw3y%81>dtbe%~bF<t&|W1o_pWALMAy?RzjnQNR!u`InvRpR)u$tIJum
zsz3cPR@)Ei?B~x{)1fy)X$4*SycVDQ1^144U%xm@)C3H;%_AUrs=X(_OZA(#$+=&B
z`nL7e*Ft_xBJKKuZYN;7^D*^)8zaCITo5WGeJHDJp7~-duIG$>f82(=@LgX&SKL`O
z)W*pD^6>zlH?Z37E*aN5t@e*<rt^VK-d0iX?ss=sym`IZxBY_upQ~xyWvegjKkX-U
z|LvXo|EtNw`2Ua7`%V8Dr^m9w8W!u?t8Eiy&o-U8C*6Nkh8Fv`BWTbXrBnfA;^Sk>
z&zXU+z({vw8K*)I`VmC-_E&0IHB75`nhwpED;L&NybI+V&RQD%9-EDZn{IU~u*K|V
z+c`Pj9W5UttaT>%z89$*HTUC8s$l`k;d12jrw{#uWbbj!k|XIU7iKRNjOy9atW_Je
zS2Lk+(P28j)}ylyRg$V{y7UQOd_7;D%T9N+b!k_~t}!k`aI(o!>)T^h24OdHFBF??
z{^)`TH<wka3=zW0`hAGhu0P`I9?>to()|FzHyg=+QZQBiEtsp^+BQHehzvW3m~88Q
zaJ7FtRDGXe>Q5N|pnMmQgVk#tsvHVzu;wFvd4!k!AI^O{pdTIafNIXIx=bE++g~%_
z=jb7ewm_w?d>jV8;}P%PTgfo)tyXukl_F$q{Rbc;rcxnlM+YJF<j2WQx2(@38+O?!
zKooq9eSAB1VY)JgJ90YQw=Kul_sRIx3ct*3A$cd|u(=Etb(-645q!6xi}>@l0tAne
z+R~8v)o4^kWvf(yKGRjj;b{6jSae7+)RF*Kfoz_+an)_ZoV9J!yLJ^Qb}yjS?fRV-
z?>P3_EGU3$qz*w(tRAcfg(@{%{UB>Zeqf0(-9#_YhA>U%ip2>5g^o2i2C^3jg&fZH
z4)ThQrlSO%9zuIW9Zx4FJWHv)CktbdRkIHd(E#<K>nZw<`woytFQo1prKaS%fK4@8
zcc^A!WB-t>N2=vzCA2GNgU;E>9o>J(2a}WVxB0B{Q8w7`oRHa}9sh@`b7~JI+>&r?
z+qP|M$F^<l*tX3b+qP}nw(VqcF6No%OkZ^Wf?nNURjqn~K*Z3758wHBL+isge#9P5
zVUeM<k=SX3Z^GmX&7-nhtyA$=u>iNX!7e+xa3Ka#d!^NZ7;bS9JG+J+uwNPlTAP5s
zlk3^9MO8S(?U6YsoB3vkqs>*o5x!r~9^Q6l=xy!#tbl3lDOQwiM25UGq9Ar?)O80q
z6<m)EJ;}pk=8Ah}xy+Te)o>jIH`d=o0cOWg41Swofcj}T&A(+4X1`K^OH+~^Qh{wp
ziH7b|$XN=Evv3{&IGj=U9Xun;fq5S78P5kA-x2sSyO-e#CvNUg4PTk-urcK43+6}~
z=I^WR5G4t?rIaZ;C#o(h5^7n;gZ2e!+}>8?o8dBM6r)doR*55Mw_zp$BQ5}O5TIgu
zCcQ}UXxi=ExHHYBmsxAjmSxfLv`+l-NB?niFA2V{XCPz5qQ^HN=}pJrkf}j{Yj;j}
zhl1L*tcsvTKN1Lo72x=Zai^ND-BNj6O+QF>!K}wWc(gd~Wl!AoM>$iDDIJb>IRdlu
z?PrqDWZdcp$8o%OGDur<3>{L5Vet%^^OHbw&!SNebc<2mJD@Sd<4{EAzeEW^P^c&!
zf$ji?NHzAo^<$I;GT`sW4bw#kNhjeA4EB;pi)-1>p0%v!HMHz7#7aXwOaX4<LFA!8
z-RT@(>BPR4wG^#dyIoinQYb)MtszR+yL*@Q;FK$8LXUR)Ojcz3T5GLM7mMm1s4m?K
zS@(WT*hcz+>o53Uc>>apgdpoO3ek8)=YXd&fxa8_r*-q^p4f3-gM^2q@Zk%ypz|Bs
zKRJXeO4vfu`*O6K!S;9KcMU;<*`<)d@@I_w?1B#%dO~2<$9wB|&<w%X0Ngt!Fhd}a
zcU}^Q`wi9_BVj=8d#yNy&MnuC)ZyE=;XnblPX^h-*OA{mPJiYc%H|i&i<`Lal0hWC
zF`|~mT7jYANvRUYC0FIKK+(Z~7NIOlpLtH|K*SOKEvw$yG8P-0D0+hZGZQk&RbBG>
zX5+lH>!z)uM8%wo1$Fs;^^vL1JV-j86soD{Id_wr1ej_u9jpdcM>sLz04Cp0%e5eQ
z8rV@>yBLGpHL-Fw9S@J!&p2GAu0+^X#$obKh^%{vap%}S-Q1b`Ii+2T6RJOKwbX*+
z_=JN8LiP_*yr~exDo0oqY7X6?nsXI_=C2DlQ04pnw*ZuQ{vfcE6cAc%jAB189vFl&
zDZy<O44r^Jga`c%Vc$(A4d8_(G}cO^NQ9wMVl|p~NpTwAN+p1Sr8yRUr#H+fR|jEH
zU52zej+vh3od3hKCdsrFe{Q?q>_4=?rI#s04CZ))D&^5*eZu$ye>a)h`)39-@2zmC
zS2vL1EVtcWF0Lp|pt69)e6VY~B8dS?;;AJ>49m#qjDOBR|L8_b;w2$R(M#I_*dQyF
z;UH>9yAr5D>WL()hNq8n`I0wdN&R!wQSwmno#lxiv;^YaXVj`UMBUZy-PRl6E)%^c
zUX2u<pwOKH5uoTm;G^!esAuL9S)6|ofA?uG6|XtYi9JLO-K{DMg<PEp`tn5umnNDy
z_1DHgP#UX1wO&YmymgT=i|BCu1MoH(Z2<$gNhRy2Ku{J_>rQDb6!`eCnc3qf&D<Am
z+y5cP-3AS3OcBVMyC#NmeTABPI=zxV(xIM`LqT(vQcYuDqG=Y9ZHL2+n{Fk6G>b5d
z8uk`hAhC|;Ua?XH_fAuf8i6;p)2v0Axng=ExPt()p?CHxLm9%o+3VlQvxUk?-p3q{
z6H$z-1*{Se2WkBpVi|#nN%}zCxO~->VXLw!-b2xo%9kK<4nF#1c6yG&VDwFJsLG>8
z=-^*P=WQX|O+sS&e!2OfCSc*yUGvqLA{MN2xaa+EB4<G7JVbF>1%EalY6!aRw;li>
zMo|y|5tPC|DAb2}&enw+{l62mnUgMPeo?z#WEu6$v?992`kfSXIjwdcCv^Okb70q;
z9Dm{}8AJ2BqvrbHj}+wM(hHA+yyKdq`!~>9(Fb$=7vf*03}>#Kb10A_o;{})&B6x?
zbn{^qTKAu5_Hd6cv7hOdY9X>L$7@*X%U;P+E>4|_BfrB<RkSf*Sf3NO*MZy#7`MzA
z({u3zS4AFJOmRdDPK9*IZ?NeK+16%Ne`y&?%CMJC&ae(l@)7S9aID2kxUG2u6W0u(
z{?7J3hw<i6er%z55WM-|WbCxi5WEo*w})(;=C$l*^dlZtBd)9ND{EEwy0SD7d4x0+
zPY!sPJZ?kWTS{!$f6=*Q#SuGyx7bR%DOwfP4=@cI^}t{|4p{AEB-I-pe7#@R9+=4S
zlAvMOF<$*|Rw-Gk%l6yORbNh#3CdFGe3!Rjwn$zv_+PUD0De0?+cHYZ8{AARj@VJf
zg|50TQmx4?Y2=xprIS2x!q2R5(U=3@V<*Z1j$6xtY84cauG~YlR#yP6N{g6nDW}C$
zTQP*OxeO^2Td;X2T#f<7V02IBt{6j3=|yFjsK)yfoVl`e9dMbxhFfKUtUE9t;IHJI
z*`@r1t3I~YE3ylzBa`7bQd?tJOMB2dKQp>~t2@9xz@;{xB7j`BE$V7t7T%QDt<XT&
z3525;8_Bh%5^V;O9AOxiu462BB??1kblqUE)}de%fo6`CSbNF31ed~`6n-KXPtv+A
zW#01<H)g|SsBoy13LT86T&&p;f`qf!O|_9HE$#URH_eALCn<`-`3XG0hwyt#t7MKI
zam2WHv=Y{66IW4J1H1jzRthk|K}Otush-`W1lumsfdw2HizsdT;eyk-$u5=$s^1o^
z3aflzBz2%9J`rd5^7?=R<2GXgg<F1h1SrsIn$49C(sLl^3fUc^&h-i$CWF=s@Cxg%
zp^M?ge+9nz_z4c6)%Qeq45CZz&jHp9J-|pS^GmQzYp{<yDeidKb|3|Vxs}{Q%xI}g
zS139$=p(D@7xV&?uUeYouy}6&PFy)-oE6fEM;UH@rZnuBsVi#HcP`rrlaMLWi|-<z
zdQ*-dIU%itRK!eGY!1;eHaSwjCsNF2%zG^|ddt%F@olwhwhxA8dk2Pr0sH~WHXUHX
z%T~~emvpcfK@l=Y#l36yNW@|@zhEg8Co?F1NyUr$<ht&OI;%nWVca9LyPfSf5T3#h
zP24}jqM^XbAJcNDQ8V^6yvY$~JKL@83vv`^#LbAaNu^ef<#^q%JW9g-8k-Vg_jF%%
z#t*3eQqT(Nd4r^2J3)F=d9`X(IJ5GRWYDi15sX2}db?1g&nJw>B|(HtKLQgc9N1iN
zjKaRo$3J`13I#;@(msRg9twqe6G(hS$GP`C6}h43)A4#FAU$k>05z9birbq&hng1<
zG<gm_<IqG-Wzj<mSyX@~5t#fUm@(vNsNorc820J0D{G_SpzO}v(e?qf%0a`AmVxy<
z;5TwBin?m6yI_u^hz!#iyb;9Iz3QB-JjS@2;r`TL&RDEbBYfun?_&!migc01FPp^R
zmre4&b=j^Kw#-b<P8R=3SY-XK_v~{ZeP`?Ckv5^10;5aVx}LO-t4sl;=aJc^9+EY*
zq&rZm`>}~VOFAIgUVMKzPxRBPvoVZ^Vr*JAW&5P=PH-e-lqPd=>@t7e3=u9hh|`U&
zVOn%K{Pmc}!ofknV8)~k*B#QHgp?!iMz46x`oe)Yf^0WFOZEAk=n_B9V`G?YsgTr&
zz>Z_bK{yF+s1AAHB)buO!Iw0or;L=u>9U+8Ihc{Ogm1)q(uv{-h~ap(kojsym|V1K
zzz=>0gx<_zY(dlxsF25+bP6=5yo{@?7YaqM+BE62A+VmA_38ur)B{B!FPNCvTzKJu
z<rpp<9>2yWK<5<tog_UGBdC3gU>zgk-z`Yqf+$dL15p)}=2QuO`-GeYd5tAdYq3uY
z5>u~h@VNwsIoTiQ`?AnOI!&gjRO$G+l08@j>28KH2v{JYv3OUJS%z2aImF!lI7%6z
zTD*ZWsZt22Nt*e?7ZLv=OZfyMs&u+hXjo*o<9-G}rF|%Sa+@Ix&d;|kdfb{`lUDr&
zGaxE3Lk3XwfLsvm6OmnjGLY<fWy`1Wr~IvZ&EP6b2pHJj1inufp4XJFRB3WWW82-l
ziPwy-Gge8;hy{ensHmWfFpVTf_T6`F`>T)INc-kGCZ8jdi2_zNy@PtI&Y4lWopO{2
z1<2F%RB)G_^k(q3zCxjQ_|(K$X)CggbU@FSV+-U|+Ieii1Pl!4&Zuf7QbA14U7+9n
zll82?aY-gb=Sbu4L)ZdHngNT^p9vhP<jzKt0Z9umL<HVRU;rG)zqzdbCybm0N+B+3
z(+_wImhWoPJ!1E7-U3Dhm{>UyB%<tA+=aUEvtq*wnVV6d?@szKY(G9u&g@Js@-rnt
zCbq2D(--<@+g8aYYx6?(-Apaq57*P`8%;22)~4F)u4I!sOu+243>Mq=8vUE|EwcS}
zfKyrxofrOMw;|&@qVH8WJ*<j6{u{h%6sFp<43&&W`OKeMxB1-4UY65NS#p9Hra>V!
zPDQg%_B|+ZF_aiA4P~$coZjIaSQk+DRsE+?f{T5y#Lu_yOmY#%n4mO|n|r;32kq*2
zo*?7p-3@sh4Ixe)FiaZ4QP>!3s*KnOr9cErNvp#G+AzD{Ra2ZU_dfoee8cHyfWRqI
zbZIsF2pBTx%2>KOKtti$Hnlu7zC<qowN+8~i=#z{SVVDYq0~SyLpUr!<pMXL*6OM+
zhfxC5USoo2i*Lw-EW;q20sK+of3}F{heOf%On6~H8v~u_mG3DOuq$tQMfgSYF)3AS
zu4M#77`UH$djnk}8@Ud1%nENtsW1in$Y+xw1U{K^u4BB~GreXV*h&PRNDIgz=BOXR
zK~m1dKY<mY3o_(`cZLy=J*@N~VV2>z?bZj@Q<yVgwd(vU5aO$fP`cMx`u07B@wU*^
z4&@CAlI$vvD_g_NOq(CxjyN%>gUePgFR5~KX>t+b+1?hDtt}OsBNq$)P70g|*?6Ri
z(o7+sRXz^5?i-WawQ~BjgiwAp0t-=Xd9bY*lrD)>mm?xzw^Joh9@r3Q8qoSU-x|1o
zOsb;syPdD&>;-nbB@Y9HHXPTVpCjR0(Ji2P{79y0d-oyvelD|BYN_R}HI|zvyIO6e
z8Oo`4gjG0*6`n^?FSRWU;ONFX66KCTVW>Peu~JB{hWybqZrpU1T%TG@mD;cpepNH+
zLSE#MuBVxD0-Jru@?y`#pe_DerE^JYALzYnULWuD&gW9^{K4VE2)OD~fT=!*EklUx
z>+9HC$K20BWvYOT!0>6k;iajrClL18?WW%W?8?DFf0Z|<YuXWcSlX<4_R{YZs$(5)
zp#dk2tj;;>cm&P&q_G~nE`T4PF^$~q4qz`%mw)Q+jn}}}tg$k>iff#n*hz<hAR$aS
zFXkSowyiElOqm`*Z14`^Y07d!FCUtZQc6Otr^M<mzAkLe=!d-+@JZRHcxfSOYmSs4
zMU_K1Z(bUfvjm?7Mkm{4)C4Oezy$B1qz-J^X>N(-Es#NrI{s;_stN$Qm>);R3W=$*
z-Zz2MP(8<e_VTexB0A<J*xhTbNsH@Wqpzer4Sq3xb&cilVm3N0+X0Bn)stG)p?7mV
zk{UYzB9HD7W-q#jyAb<)H-~54XnD;4{nj#fHgnMP<1mk%ll{5K&4(A`i9a1W()Hcp
z^K&@x+Uo1^dF|V@;H%u4u%!_BX`ZBw>Qdl4q;QdB!R<u69}WOAlq4fY64I=Iy(C|$
z-Mftf{(uo_e0De&BYGJ~AY$aZTK4y5y;V&WDabE@#g+j_YY;HT#+ZQLm}xVH|K0Vc
zEVljEgcGMK<g8<hhR&it1E3N?fMZJXtn)LlY6&&i>jjw87Y}1B#dOXLXrH;pW<DnL
zSN&ILW^+QARq;8<z9oJ&`3y7GV$Kc@jH0eyq(V#`gJlzqS8exait_CvIYsEsp9(@0
zA!t==l4N9i8>EQNeLv%IC#LTh7|wqj2S~m%uXN;O7AS0PS(gQ5Nj^z|{r2ts>Eh~(
zoQaT1fw2|DeQ3awr;n&c+5B;|C(Vc$q0U!Qd9imQjJLC!E60nc$L;5Cx(8QJ*B3Lk
zvUb)-il<pIo_G51VEjMKLy)*52-8x~9E(hAJUa5#5p<h~%;s|cM9F;)q1%Pt*cYiM
z^|fO>Y*wSdTF=>Nt-9zx-W(3lPa%Y1yBru+hYD~?vUthd#3ee*m-Y6^NfBC}=c|@Y
z!*-gA3<#s&3J}s`jc#GKH^k6I!|(ql0^3YJ`%SLr*xD*D64=mWx1J{Caz=XI(N_ju
z(7%s9_DaT<T07m%9_JQTM;5Y*)_LF921n3L1uxBJ1MqK37-RA6;&@f%$}^~*+g2&i
zd@ine(R-|H!CqL>y*#SMOqw?F0IoE$7E_Qt0W8d<nJl!b>kI0CxN7gt8*jWG+II<=
z)mJ<njIsv|EO%gJC(9tr;G9!$Y1!!xYs?N?;|J59Bc;;Va^r`Vy)hI_$-aw@+vXe>
zov@vOFFffI-ld!IWc3)zwm`~`b!=b<FXm9fSB!8KhM-g9->&*n$goCSH$jgg93zyu
z*|oXOw%BRDH?>1vk0XrreFzPg>9m<LD+2ptg`s-5C}f9;!!AvS<C0?Is0NQN(muhV
z1x~<)-ZnQI4q=*$F%rd>7tbtPW&dsgk)g#tR)tzrIo|sI_iq^j{h+?*uQvn#o6h>*
zg=<#}hyUcVx>Ob9HUwaNZfY2g{Kb+WFocv?XIX|DEs>=S=kXBAtIHO$Gd4wC(Fs1D
z9(3kOQX7GvYxx?ZuRg4OpV!txsnby-=+(f))BwHExTq&3p%S1AUU}FR&lt@`UirG(
zyW2WK)TtO=tp$b|x;g@a{!p;Mfz>5YrV$+&Lh?)%GBL20VhBd<u`z2yr9|zSWs@4~
zXowt!_9F4^h&L*@8(Rhj&l2+eIh}3^4k!X)4nrzt{nVE%$bj+VgN`y_I|#^Jvo2%|
zAGsYwmDSh9C^XL3rbICX(#B}@JILiR<zMD%942Yu@6P8kpLvBsfkq;u5MvdP*Sc+e
zR-ZUe6uI<JE(6AAnNHToYrdum6wJ!*Pf`dlJi`IAcd|&dxJAv-4kv3RruPRk3pYJh
zFLRs!WarYwDO_O59b{gAkAu~2=FEkWGB_)Oq`PHSjk0=##`1}$>Qa>~UspUPo3L4C
zO?|=pK<>c^oqid3mc-TNxRNzgdgi$|HoEbeC2fqFI-yVCY`X0~h}Sf*P;JPNb#Sha
zo}Z6tG)7+kSP+8D+;7|sV1zmG;=BxQeiGjeZ7;In0<;0YNNEDjRC>J8I~8#)8_+hU
z(Tol8%n3QDPD~_d<@Y%y&iU5^`)-B*?gakWvCtwY_c3e6ojapTaCigCZ#RBPm<p&O
zBNoVE!ZIv=y4l+IE(CX!u8WqeFqkmPreT8S1a0%j_DFkve%DZO=ILY4lq{6}k<}}=
zxH}$5#~4=!xghyhQgVq}rRJa56rks{hR+zUVOOI<3C(3N2;pBRkzCjorF<DCqh<H2
zAgvQx%J5-(AD-dk#Rh3G9L}nfnilsEs|8N6YW->kXUG_qAH|8Hs?;RZY9vsX{y=cT
ztMcPas$=C7N1C8x0DRIeG?0SF6l2j4iUmL?_3|^y&-ZAp1pn%p+?cj>j3ed8&pg6W
z^;IHUMN+XsRJgbuos8OS7h<Ca`0<W3e->wM)1Jh3u_RS7o1nAB{FoSGrsW`mmaB*F
ziDMgEcL9GAZ0t9Ot!9Wq2xb`!u}Vr?5S4(^+91Capef{FxE&lVyTVQ_sA9uY|2N2{
zxHs5*cS)U=Vu3E4fNbI^i%gn5?XWRzbz}HvqBDD!Dt(K`7V5TGH^J$Ny`vQ~_lxda
zWj1+eYfVjL)v2T96a4@Cr{$+Sv-0o&0Bg+u7fW|Db@+WntF%7sHpGy=w|+}C#S}Q>
zAlYd(7uC?^tvM0(rK(BTSEzx)$<){oBa+&vH^%qAUp`Fn5AX9r9ZU8N!#A_CPS_h7
zJVP&ebgCOpzXj``-w->*2OVhf=RszW(?wmW(@paSKu#{peYdfrJgu`$rSH+l<~c87
zXEbm?c@RH$cWZ?%x5ma|M{Z<&UV~xhMUyJgaF^wPZgvrf?cAEfg2HMOq}L>G;h-7X
z2GA@prtVhcgwVu<9(vQg!a$JEwD~?T)#!;S1<0iXmjcM=Q$-@w9}-!AXRZkqhiA+o
z@Bs6BW;IEsFwCs`E@qEb!^fl?2|PDJ!{mGk#UbJH9qD%;lIt0=8jpp4g0hfoQ~kb)
z21Kr&e?*VA1HX|%|0hRr8zQ>q=GX`xHatCfPJ01f(y*=A0RIPi7xeOZ%w5M&dmuC$
zhVBb^%gQB?X4m<1%}AxE^ALl{BChm%7vrhdxg1};!i})2Qy-ad9B5U*_3r2Sb3XrT
z?(tKNUG=+qUfN8^FJoj2JIi-4@cQFh#rHl{^R1pA^KsY+o}?G_;%g0Cdi9k!zD~O9
zrVp_FrpDvafdeT0dY7K9`z-6FLk-uS=R8YJf7}0y4X5sbu=6NZE3O~IWv=VmhX7B^
zviwbg$oo=uSeS-0K>uK)0us`m6HB+DVlU0jwB@%G=Tx?x1v3M<<pA#ZDR&96ZW9+l
z_$2Y$Uf`ha)_9SW4y+4a?F+uE&poynZs~Q*KFGhth&gYdz2G}-8E0Eo0PG<&f}#}0
zBcphpD;?n<1)c{n#a?^GscuTuE-ubwgHzw32PWwYjV8^4biFN5YIgv)Fte0{3jcNO
zm?h@GjUDnQ9|r^RfQZ{C>8@qchkal0?M>SU#T|Oljz(Na5qN-EJbr3OQ1>HfYLnS+
z3yTU7M-aYpTO3iltFNyNvdFg}!iP{T<W%}YWvYqAGM&V}PA}$VY{3F>h+M_eITKND
zVfrW&T?%Dy&{j#pTUh1cEA@<GG06kNp1>5$+dr8S1*EaFMp`$Xn^VLP2Jfi$RZOd|
zibfFfW7##={Go2@#^W(3$=u~-CkH0OU;#UP_czOsYG$AbD=c*>t=@B^%EceZ+sAGA
zZh$r+g}HH)4BDh-sAOpXzCNl6hDeJKMu8Jt4)F6q^(+P|1q>5ie#d80iJT^n$@!K5
zxoNxS`o5su%Ac7DMCeZt_2FxX7qnX$zk-n2jmS)-Cm)B@>I4SzyziJjk$<$GyMzJV
zkP%YNph)X;&e$o9Yh%7+smATM$fww76>dfBl-+t4jKAegB))vK9WCtncF10VMdNnu
z2t5Z3f*!n6!cR98@i~lU0PYbA@oCllN0c2>3mEkDU+QTsG1x+zd?Fxir_?6!B;ZBu
z^|qaXUj15sj$4c!a<b@FN+fSe8n(F7+8P_Nwi67-${X5enI&VBPY$7(LnBl}4MRGw
z;a(N)q?y>JkhtuO^oQ})6u^GM6Z$ifw16jFG!`|zBEzlOh*hRd(~!jsP<pdKB99Nf
zMebvebMuuUoFRc)rpEMbW|rJJxp0&F<)>@b8Agt^lx@880stk~K!DDr_Q)Mg^;EWE
zoK#;UFs+rL!!4rkt&TQ)K!88bMyRX(n~#_YzoZj9CJ%=sOF6*2Xb(osr8P=b2+(8e
zGVXr;f9g{OX&QHgDO%q9992+=sduxG_<Jegqe+^K9&0&n>-9M!#Uw2S2j%8Occ{kR
zc4(E0rV8ki??tkf2-GVh+@IHZ>z+8G`N6+$u)hAAh1+Ltt2TH@4gnKqLM4E_1fiVD
zsepc-mJXp~>c=Z(nOj{}iMp$IH&E)5;tmC842FxxE#f5sU?h1WhJPTFdj5{$eUeu*
zgHwSIn!~8@iRwAuT|z%c{h+e>`0U!=Vtu-$n`QU?q-P))<HTcmL{kePmgzpna4$~c
zWa*g3nPr$L8Eby}dry<CMa(b|-y&WMlp^>;H%KLmIuH@lsc8_cO2daTcVy%O)LTdo
z%uA<(hJ_leIf`%`QmjO)L4!{Trrnubg8ysA9iPiuwHv1{YU4a=z+!Qq(Ex$mfP3p7
zvGF(f68Um5^b-(+b$2{QVGT5}W5J5a$nVguP$|zI*vI}DtQ(W;PDPssT#TirOPYYF
zzO5ao{X>jKB!Q)sA3?mu@#<y%CAfq}VGDG|S_y{4C}$mgwB{VMdUIJAlDMSco8zU5
z%2?LxpCAL!o`+!7lHGtJkTD@nf}6Ba-}*OzoiyiFFLlOyY!5KSQ>>Ce<{tfZP-4ni
zhr#-JZ{VK3I6@$C_e3G&(ty<X*6+sP83&{+f)MA?Bp7UJiR-1g5)`j&wDGWsMmabs
z=d-7hQ(U8N&|Cy6@95!PIk5^uJueQ~hEwWDL3O~)Lr7(k=LRK4K@8mdZt33qz+6zD
zK0$P&fJkWQk56fV{FuZvlx^9`Ts7yXYFfn#<28*dAyY*a;`C-h9$yw;=#*Tv)H~z6
zc&ll}QJr*b9ng!e;E>FFlAvXvvbVBz0dH59m0kQ<*jIC?bR~VA8L+_in$BM4u>U$T
z7F#^*zX-70yx1mx$}S4nb_gq+4d;}FnLoxEiKZTzOJ$;&@^;Y*v2+q^L{p{X0K1`!
z!qUzs(gl-fShVR?Naf!Hs@n(vFwtL4XQ)ipHa-5_RdQX-KFKYxiq_USRurY@5TL;b
zu$lJjCc&j_KyCgp<?@%N+;+~hc=QTGk9BbuY3NKn%jp%)mSYuL|7@WpmQEK>%@sMV
ztjg~3gbQ73B&E&hUDan${>Wfv*{c>%LM>J4sy(xVeu1eu=S+BaK)XN8`mlCdX6whd
z6?)qwna@@1QX%ZtE0ZB1C}of?#mz=OIdoAIF4`*>sRWg#`25+g;O-~9;Jt%UK%yPh
zQ(3_?T?9!2-LjEP(yy%yl*qbn>ErjtdKN1zJwNC&zQ{Z!<P?+r8(5DbmQZ#OPtx(T
zDF7^tggjPjLxN|%V+eU6pxpO1xinq$3m)$cq;F5oI};cK0dH&#;p!k=m>V4cBa*sY
zK6@3BTSvKy4x!NgsU(a}d}w6XGQ6>g`09<{;FhUTt;%>T6}vfgrtH>^&*1O^1-)n_
zmETNQG%s+hsi5puA8&F20le9l=*?ti@pb`_1g=umVGr3eU6?Z~L1derj5ZptW*03}
zL!paqV8^hA&r=I`_8G3@!9}^w1As2cUIT1_1mosx;U+Vv=?OFT{3x|NC}A`8<ZUe*
zUq2cMa^E>0@pQ`FoM|y?;@*HfoC=&^DsN6;={5bUJU5pWaGXD?(P|KRYZ^-%@UeEC
z!d<dZQuONLxfv-=<Aur7=<@q%;eEGu!Tngv6X%C1=t9xB?!U%7D;leb?!Bs~)D~r8
zD{*%RNyF>j@~aSb)B$Br?Rs3pcm9_^E?FLJ`2jf(LZ|}y$h#n><bNM7+ar{{5rt){
zeOh?Qeuax=Ub=5uh;3QO8c)X&fjmjbik?ZavHOw;Mx^8FTPLTZz}K@{z~%-@VPhT3
z4yQbwI?QMjja};%`%Ee5>TQ_VHQ6k?W_mqRM|V)~<op9r!w6brS-yS8VM9f3u@fp8
z$3HjMRMnT{UCQV)L)z^}J(j4W>Nh9kpp|A5pFzfpXuZ8=EqtOKZHnT12i(RQmkG>K
z0(`p0(UsRFzxd+Gj_d6_n3|fvAb}CQ=+I5>T)gPZM*I1x5}beqkxbj*1gXX1jL>X<
ze{MNkf8i%t3`Yz#_QV*hdoqic27P1|#O>re&QZ;Y!S571#3^QcY#XQ)!Wo$)*295L
zNYI}Iq~`mJjwU;w%Mu>p+^5ho*Mi9ynp#^1r0u%xxuq1K)4Di(mpOULl--bfyh!$g
z4@_Ye*h<SYz;zaTZu4T33p}awrEkXFrT=pN_rBLm2-aQV2_v(F?JC%QQ2>V@jxEPu
zeft(%!z?gOsRLKuo$FTd&v2gD&d=9U`STU;O_q;F_DLuI-u@6K-J7jecEuF{#?cpb
z!h)~HF?Sk!$-A&;YhjdswDDNHUMc0r(dX>|OIF{Joq1$ZnlqTQ!m4$iVdI2spt8VL
z0o3o9bwRxJMB!k&K#P~zbEB`T06^80xt3$W726b;H*Svar?5Z^z#|cVh%r|OF?T@p
zauH#l+MwkjQhByaO};0*z|Jk5%v7S&H;tJgnX8v$rW+kCAiskmrqI&xUZj#K_&!}j
z&sACl&L~Eg0PedyNFbGb5mPgXpq$v!^@N9jtpUP<f+fn*!h6EyZ(Znn;u?{p+v*&c
zW3pcYjXZdp@Dgwk9H&mYTYe+}R{Q<>Vw+X2XMJ{E>~b?1X+(l-S66sjb%l&i#nx6~
zCY>WeOZTZ^SFJ!gCMlq3xqIPXl~{&AZJj$orVj<_k>mDV<$l^Pm_9-BajZ6J9Z{BK
ze#@9EL}s4mDvnc(vRG4T#a5Kmj8nTz9>?-XIp?Ci<Q7c73Ao_*F`X|%Ft1{tsHP*N
zv1%f@Ecdt?5eQ&)td6JV;w3^~j`d-wx?;{`COG3(#lpx2{1ZRHEg*YTkr6JZtC(w&
zMTew?&m!sI#hqp>yCtor>EZga;Wgi!MnT7>?TKQ`@yf+jpVbMfkinbF!AGaXnVnU+
z8=tSUl^kF9mx~$hsZDx_h$>r?uo7zbf77vme_om`5`*8N^w$aug33H>ao*-=bl~?4
z(XWRkga5v?5NYw$9tqqHwz-vvG@SLg88fvCH~m|WL??^SwDNk=uh;QWTad4=Fpo_L
zY?HD~Tk%;lct{!HdA5_e=C3VypP?n1YI`UM^>!$wA4u9ji_PvyfKO@$6eVpOL$AQ4
zbeeR|Y*19Is4u5_SZajh9wTLEm25bT<(zJwYK^JVk+0g=-=D0KkFjpfm#qIvD<~@?
z&ufHvvn|h&O(ttvDfMO7OQuRDb2ph^I7B(GFlzTeQge!|pmy&71uSk`%n&F_-@&TC
zOk}ct%NtEwH&p^GQfh4oYZEf-nk&YE5;L%4#{6~=cP3Z#$ouQwKzkJ6BIC3riH-{S
zrH52Y8nBv>xgEe6sr1KpIr;KTk27<L*<ZpxlVmdkw~<5==2({LI!DiqlewwDv0>Q3
z2;YWxr1UDqVNiuavq+&MNx?SGHld(4OzRm-L*)F#kOj2f=K#cEIw=M>bVP>n3Lt3<
zrMNq>>l^yNwK1aoQa4dj004)P|I@}i>}>y|ja~8n!hOa51NSAnS4np;uWtC*yG~lT
zW~#StP%U=I|F=1OkuP9KVE_uG4ZtE}cjepTGl`55m$Yx36;v(>1H{bxdwpf3XaCt}
z(W{I+JZ?tHS|GmTp+>(rXPepeRz)2%);JPfLoG_$_p<k3!^sNQ&<&IHDHY*E4xB3!
zPb{01bhp1P1-pEi$^P1-{Ji1sczxZueO*#BOq)rx=DdjzWV^!U36R_wH_T2l0g6^_
zQ%|X<E(R!}K6d{%`P*O>Df%xdDh6fAMlpgZN2Q`P?vb%f(hvD$;Yiz5MVXLdkZF9`
zu#N`JopOk(%oenB!1uv~)O42E&ygCMQzJ5yXq*bu6>u_tbcehyDle-v;71TS@w1EM
zU#p#lu3&1JNxz8!cW(}WWTX0MDS`x9KFd&hI89rJTFvy}>Hg5t%hv>RZqDoT{eDN^
zL&M2_Eq}mHXg<FeT?l#&_yBv&kR!pZyYH<B$@|F(P`UPVs9InHV(*)e{gb42cGsmI
zAG#Vk0Ghr=>%hVT`waL%s<Pef`^E!cqy9x?Bs#$U)7sG)wcFf}sXbroJ9X2ip*<@P
zcC-foP%VPlP8Mv<;3;aroVd3mSm*4|@uzfWYbyxD*Ph<c=|;nX;7=zshF*4-Zr?53
z)51^@M;E~G+YUPb)Ogs**UDFF*Z`@D3V)qc&AVCwwD~;}7n_HpPcW|AU-vuBe|k{}
zW_PAeU^0(2@9LNo;Hxq1@;5N09^n)(p<%OUOS^_)M|pb{6MTk@Jf7}+ZtiS6yaVOv
z%HQYvNKoCFWl%bEJvdRdQ<3ay0AS~O2=abRJVt3E&NxE7LG~OSAVi(l$eZZj6pwIl
zaPaUs@PGD0c>?!B@xj3xh;kw=yTt3U<0sMG6~cYMq`!I6RRx+P(GaCMpI9UenEnA@
z0HdOhE-S2~5<~LWq(FZ@lLe-NgG0@t9MecovZSA~OH}9FEAsb=Xv$J6QBIF%e=;P4
z?0Bb7o=iX~*z1|jZT@79Y~K*Yl$&RWnXI`%XW63JbW)fc^$b{=z+)7#x1Y9nzwa5k
zJ-@fTG?faL-*cyv;+yPs1-a{qEqJU{P&xbNJGI`~|3Cn9N%^s`{CkJpEBN!|?m#?Y
z$<meVxTeyhD|%$Z-!%q}AVdH(!q|no({H7b1P%@^!g(iyLOkNsnRf<AoOOo(X9OG^
z=-aQTT0n>}mJo<y?pOh;-j2@bm>tw14fu%*%3jN+7nlU&)=p1b7b?z&KwZ$3j9o$%
zm<{I&0@_Dcw_n`a@0qM);$Fo?P_Nm~yOK~}E>*h@tWujU?wiR4T;Ej@>7IvfR$Zd0
zjS<+*F>o7$zfq?panB``ll=vNOhI_S(e&cho_S}CD4kSkzKTAdL<j99x6Cr!liXAu
zcgc!wn|QWqC1cOi%=EeX^5KFa($;v7WtJWH;;y5+wOfo~WktLPf^0CLkXA+|NsqKS
zI-ueb(!e}N?whUzHAy!zoJ2r{keGlQgTpoVYN*8;V+fKE36-GH<fa(B%HXR7;tjX4
zO;TVF9jOxaO}EdVtd<iHcd`VskHj&E2Bxy))-7O04h4!Re|%*{^YS_5mOuFT$r(L5
zy^twbp;DM0aGn4eDR)9hS}?-}Qj*DthRF0-sF)!^e-QxSwTv5!Q_oLCU6|33kD1p%
zl6s$csLt^K6GmRQawvQbx{HtsoQe@I)j~J<fYHmxQ+<$SHB{&C=<QuN7zjQJ6hS%s
z&fhEbX#k-F(j~XeJoZ<$ai?Y09*o(#xkNh&*6ydU6;YxtPcv#tkr=D;3fJ)1lEFCg
zC%eErrJY<48Z!56p|c9ZGIKbd@(I8qFh6gkB6*bIaRZK_#@CmikK3S-!J@7r?x<?!
zL)LA8VuspVVkgzRv8SgvGLYq*bUmG*Ow3)?O9E(Y@mVA&2!@2;&SXk`C_TNOk)fmA
zBYlX^Y_d{UrY-8l2-_T#@SI#s_@{(QMc50r@WucrZ<!l|#sU+`s4*r3hDQLb3}R`3
z@Ss0wb(OOS<hd1E63hhCCy2Yl4S1Wuy`w`JOT1X6m}k2V-qFI)EKYxx_Cc8^p=|7d
zLFQK-{HPL=Bve%u*phMSWN6$EQyVTT$&q6iB5D{jT+5H+)&3L%;AX-$?lMZ`RuM_|
z3ck}xrruXl+~*gV7O9JXE&`NCydjBs2gu5U33W*JQi;@yl6WFM?<sUughl0>D8>{>
zq?hb=Is0gT^a^7sc4?r1^9r;1-11YY2GyL8{YV3yror5`uilcZa|7JY_$~=xy9k{g
zhf;SR@(Z}dPa<*N7t`Zat8y|D{4I<7Q5P#iTDO{Ap@{XzmQn<;R4xNQ#KGpMT%eKD
z9k<jlE@GBiPj8v#4l`7vP@2T11)|awv7poez^zI8b4xGVI?=_obq7C~$n8{YZ3D8E
zzbL1b;FA&1kz1j=ALJ5Bk(e1$3J<K5ZXo0_$MAIq_^5hC409g04`;jBcgjlvgAnTw
z)mh3gFk&=Uz7;dL!2izty^2d}7RIboBF4ys6c7+<m8;*dKu6-n#BHHD2q*W}Guo7K
zyLdb>2+I~*WsSfjKWI`{2m@jE=?TJwZzR?7#uUwnzykQ<O3TD>2$dEb32H7?8}GnY
zJ)3`#3yR^#Oc%jOHB8I~t}+O5Vvi+rBVQCqqI4=v@@l0>W56Vrq5`lA1@V_UZ+$18
zMjrU8onCXWRCqyq4YPQqSIJKaCuJ!k?8u>Cv*BR2QpM5^SBOEHRbVASL7i2hEPTPV
zBZ3!FM{8QRdF&r{9v{+<6k2_Jlkb|cSOeKaL&-7gK3pOhxTdCk7x>=|;gJbazev$E
z5Y0vX&0$1m_IgPwPWJn2+3GCD5WQKTNHRSzgElT}>cpLXvl&zR%qgcK&&9_VyQ*av
zWkLa4M@E>}*lSdPwMA0%TzOcITI|Bp^n@4zaP_0-4CV1M(XGwAY^sw*5yMOQ_(;wt
zKW;usy+;HB)V~nnbCPjTN922gG+C`O>nZwhLq=X|j<_uriVSt5^la5xO@x&ROJaFu
zl%0NP683{6LXDFb5u&;&kmV==(uDdmfFwUZtL^8K`bY$`zN^U8R<rzhggd(k`D4b~
zg3sTL2_)o`88NGyXz5p6e-6bGq%1*apPE$0m-QSvr7eR{h*<XB^ywhej<c;src_SV
zwH(YDlu$baHj06KXX-%4L_Xq@=)&n0PKg{euMLw%;bZh!p=joz;0MqvMnkpe4q4Jk
znT|Q4fDKR?!vGLbpZdWHMr5l}3Xs0@Ec}1C9pa*71i8V#m<n->FjW;K9m_duMLpl3
z%9k7AV4b~qk4M!bvhrjH{NgPHvB&BjNfzW7Q)L!MUmiO(zK{kAUvd_W6$50PGDpPC
zp~!UgwDO#Sl!69INBe>e!wG{Q`tnoaop1eO<E~f1R%6MYEnngP4p8cA?A$ZZ{Wa%k
ziTFc~WNHd%8%0Cyi*-#pr;9`>aR`bqpjbw=JW@r}ThH|oya_)dZnnK*3<1=?%nl7!
z`|FtrS(~~3Swr`1)s)ibSkH&7IOc(+jy7z|p}dyHRL;;)p!mhBAc*s;)=;|cus?fc
zmto!(YFi%X>RQ@r$*dO3($LQnHEJzZIzLeLqw*|K%RIc)Q@EBNR`buk><!&c`lHNR
z>g<Rt>6nb(?%sX4XYZ7CF$twEMk;OpYIzGW=mPx<zF=5BDoP8WWDORL6sZ>Stdd$W
z72~V7NLQ_In$mWE@3NLJ6Cya{^)$|mREs95X{F8Uph0aeCB!!Sg1&myshe3RQrC39
z-p*q=waR+X@Rr5}t5{S#c+%S$-V*YQmBJrx0F(3;X~#Ov#=eWS#Vp#7dDW$T&utvL
z32YNhiqv!2T!oXx0#mUfu@X`r%P#J9P5&;sna?jn1n}p5-#|#pV3mTFu%x3X)E$$q
zDX!$Ui8g`UFal0htAfL%B@b@d8=_4i6F@mYrzl%3Dz_}~pO=^Hjq=3Mz5k)3UqDOX
zHV@<*h&_5#9W9kM_OI+2kK}IfkVzp=edq{O;*~XJ?xn22K}v#}%FGnnu5C(E&_}mf
zUxb5wSqiJ}QaNVGr=HlLt=C%4<~~!VsU#ED*-Fz`6D~frr|c=-|D<JYQ(on7LdzHH
zups3U)0<J-yH-?MIg?uHo9=($8QTfN+;wk(#q)TvfDPEv))Rh{JN?FT;tz-ZT)-sv
zyx4cFqigqkFtpRXoQi}!9uf}V7qe_X--7T`z0nk1S!xKWW287_L4f+z6b_$uXKMtv
z>|nJp_a_T1JtCP!p|uPts7b<2a086=rAmqE2M<)&<d!8Zcv;R5YAy0wH+N6uRSd2P
z_SjAZ)U?u^VS7D8GU41l2;zV!Hd(Pa%k0zsHZ$RGZY=ERfMd5_wZ8&#t@^Le4)wU<
zUP@xf;cEc~CgWGeR^hpfy2*KWYQTFo>t^!#gyA*ku@=Po{=*~tvdZNXfp0n2vukWV
z-3$44CRw9j3}(GZz`EF_vU1a77;9^fSRbmevCft>Sr#<^vwtYUV@0=)B=1@@XlUhR
zLWpj`Vxy9>p{9unz!Tw)6C+?JZ=9;V_Q3Z<7>?@{t3W41%kf$gxY~oGk6r;|?w(20
z2;j4i;*~!WJj)nPLG6D6?K|_j;!?=m#ExJpCtYCrrB?tyK~;ho1xM0++GJ|hsp4Na
zTB@oc9F3|K8Bs~C&v%}8xzxpeZY302z9n;9JMY*0%0`$nxjBCwW9}Ld$~Myev8N@#
zK)Gm;VUx$&+!4>?Gp1|Q&t1jo;9vE+zoO5V`H;uU_4)ij6L!bh5nW;6(<t3fFtJ9H
zPBv;*7y=m#!s2V}x(Nbg*?YENt}%Z{mwj6_Bmlbf7*B@<FNB2H4;D4ZQhAlll~M4R
z@4be(Z=z2yHtrSkk(S3g`=E3-{9xa~3_ZVO1C%lhVy{~APyX|rNDy+x&-Z#B0&yP#
zuUUdf!+j!M`%VKQNo4p>tpk>X5-~Q`ymVTZ`6o<Pkaw;ve(47I`K43cxK#<l*2m0x
zZ21VZ`v%<J=QW^}H{5PO-m>_z`%LpJu-{V(bfNYi;zjkG!$#y`^L)`^z2K?C8bVD&
zpZ%qQoH368$b+gMJkIuCqG#EVxh2CB*?*qpcZ;eAXD2Kf=gJ#eGB33mLQ>TH^QP-S
z4t9)Jv}6MUo{<)=k!5YA8Z4?Tk<CYwI;o72uvTf^xbgD34A=#f8<*jpX^^ndJNVyE
z<czpZiVZDEjWkJGd2QrpI<!=iE&!`am;;I#_F1DS%6XWeCduJYT2u->nw~%l_i0Z;
zBZu<2)+wMyMdpmxYb2To51Wiu6@VHLkBbiKM~Gz-{P?82H={|b6^UJ3Z#YZg%#`rw
z2d;9VcLvi$8IzXn50a^T5czP7A4D!<%``GEliWoWKMZ^|weVrWhn=zoaIPBU1cMRh
z;o4}gxt=ch@2h?Y;w65*BvX|P)UoR*y)}Q{fmb-G{0#V|U)5B~S$fg#e%i*qyLNY=
ze{VlB(BJ8BZ3Nu_6xvWf=T!M8VZ0Tz<z7+luj`A0muU`g8#PI~EOGsDT%D97gx@A*
ziOvcZL3!xoTA~`P*~gCB3UtCHDAI&kLv=?4!bTmVFQ8G~vb^Hf+B5td#1f%)5*fMD
zO7ou2K@Wir`;*l<&<hb?^U%hW^0Ug_an%EFLE#woH8oM5RjmHW8cD*d@&aR(s7~bx
z>Cu^n2Sr$<hjAwZbElUm@5q57y^q>pB2b3;LYKB24&i$v(3=VM{j{KHs$G=ibL;15
zREGW3V0wSSxW>If?Io1Rbmzr05u8I=qBAA>WxLR)na{cOR3lALp*lg4Io1ibrOnK5
zXY>o9=o=vajzY32fRFw*xhJj9AFC7vVSoknn9U8@mWg)(z%ZgR?<OfcQ(&Ww?w7n>
zQugKi8N!`yOMJ|IdO#<d8Eio>==*UVIwSr0<Qv=fQo(CG^;Dt~Fu-m}a^z{gW+}C5
zqv;NV8b68s%oSc|Nkn1D2y+eu3z;Z@XaWH}h80mUT&OY^6FNdQng4^vhG~}Ef6upy
zs1H1RSgmqDuu*zoT$>q;bRcswA{+6f>kA~BZ{a*%qikw8$qVTSN{CZUHeHPa$+5f_
zj*PC~EUom^z|8G12owfL0X@J{K~A?&XPZGx(4{)pPHoDYF7tpff@pM3HG?!^Z0wY_
zr2#9ee71r54-{x!?!-!k;2pycc$>YxUvg1yYtw+2Gnc5cY&ipZ3ec;y(p2te0uvLI
zM2emCI+KLL?{*yG^x&Y!B-Xi8!SwC^xLJW%Y6Kalygu}w>Nw~EjF_&014?PY>K85d
zW4C<7?>W|BJ!M{nHN7Y^)ABxCjWY@jAet1A*Aih`r80V5L1R3>oV;@3Lm7K09K<6A
zFM@t6g143{%r&#n=&;2J=LgF`?Th^)&pZLwZ?W<SZ8U&X83(OO3T}{ShM+#p%=y|B
z7mBUDYK&|ySz-x?R?$KrvQW8V?cWt`udRB0s67`qV;In7uQkSC`fOWV=97}ji_P;i
zjB)LX2K#G<`|jXgs6A&zi`=DAYiY@WY^UB7)Qf(*9_9*V;0`|H&hF0;#w!3X&WA!X
z?iRNQ8K<N(*IwXuC7V$oUhg);4)(F<z^57WWcn^V%aqOQm`2Z$4Sx2Tt!C=OkX!vA
z1G;!3$xU<^B^Y|lGjVbuF_CO=bw;aBs7VLV6}#S2Yd}T!j@9JcFfuwK541=PF3#r6
z0t@|?oyX7$pgAZvsgG*3Bhkw3+swZg#N;ur_;RPYQMx{FdVf|=7{56_jCS(T%FWCJ
z7BAAco;(6&cMi+tB{hJnMz!8W#bJsZKv>wXX6-r4i2@BfKg3e&%4Q3ZtpOw#S0%RK
z3{H5{X9<&UA$IUq`u9Hup&_xpvjUs=m-daI=k|v;vNR8+KK&K%yW0f;w_0=ub0L09
zJ5ex0=}*ZzuX@C>#TveX!}~=!azn|{%vZ410JEg*ZwTG{fcQJ9T`n_%HGhu6WI2_5
z5-gJTlO=LLSA@hw%jraoHRWOabe;hkDTtXs&D5A3y~AEIvfvo`^u0Q1=c1&HjG1a6
z0sI^ug~h@xv%rLz&4BYTWgVL@q2m9wn7@>jCF-2aZJ62S+t1?X{>Bgvs-~DmDt3nB
zyXh`D+~odMNw&n}da6wb>TTt8A?iM#R`<v*Ctutc1WK??<mq0$bLMx%%3UE?nOKI7
z*1wUl#CAu$p$jg$0!^{P`J795!e`ZbhcKk?6_6R4P3)sRwH#FcU9y{_sD(;HedhwG
zb#RluTOYpl254t(;NEB+43)V#d?$%MPUOf>rkJav*3~hKuZW2>MLPcp{{z?Fvy^Fn
zF2rHpZWI5D2w1v47NQCjXC^^#IcLPnFrFx`rHRnE2OPW%ZzpPK2`hFr0D<pud$P1&
zwIMj~mOp`-#O_qC_cug_+(x!1+OF5M#-D#LH_#b9=dVe_vZUJ*%FP!yQ7r&+!f1~?
znQ*US#L3i0V-F>P@$|7U|0oLhF4ApaiLS>`K}ec)BErdu<fz&}nH)dQF#@k53RhG^
zjF-H*^Hh@72``m9UgSD^DXu`UowX*Gyjo#eY9dIzp;~md(oq-*h-cQ{iljQ_`|V$j
zZ)1<eW)p&5msyx!8Qv6g3{9}IyIpG2TEB}z3NHA=w1hM*{%vjbNfGSdfh^<_fh`Cd
zBX8s${LE?HZ6daVwm#47w_8Rulp<kzdZ_|4EQNYAY%@9e^Vq++SkchDzzh8<l6vf`
zS%@wJb(0t|kZ~cAiHd$*Wh`C4>?xPNgCBleRd^m3?f4>2SfGx!{FmQ}3YV?g_%B~M
z&M^)?s-LKZp3jo=^q8}bDYpX|v1mB7%Fx8v-mosa0cbPFP{4(_`y1fDe%{V&vo?$#
zwN*9{)TFvsN@zgXJVV(>SV-soSXa1rSC&)Spquu^oNDv8%S+OvhV*}itv9Vzx6{vs
zfX?_<^HnHJ2&l<kkn+L>R(XpK=?T(1PAjq9UNvLgGTpdRJi7ps8;pd2;OG5*j3(|f
zhN1l!s!~(~#M(xisOO?;EOa=I)t}sRLzb@JSNqx>pp##5X!Mf1#QYeO!xGx$$Hctw
zOQg}zC>o&V?kx6y`N>CijqX&kzV&c%aCVOzkPe|>fgVNidk&U7jfs|+#7O?ukO*c5
z+F(Q9Z%+KP4FC?sD+l7(erQ$apK2%(@lkLWjtCb|bdUw|PEc#vkBNajt~{3PrsMz;
z2=3I_PZ#f=2I-@c7RfHM%EF}6MdSJ%B}PDqUM>i^gcd9!8CdURke#f1@uwHUVt(?*
zSd#XU<?TT4+%jO5i+2Jzb5NQdN>e*@%RQOoq_&z~k}C`;JnmnSA&DGr!S*)VeJvn@
z?u*PjvHu8f4tV`;aYvHT5d9Q3q5q;b^R<xuM!f}NzoSmcAKnrsT|Wxjxn_I5_&j@1
z@}uD><o=e}suzYONnHBYnaRt#T{POUye}vBX=G}g65uVdYip*dma-*`nFG)ce?D)d
zXL9fS0&Ft_Jj^_$`f?t-L0L?JRw(Pb3{=CpLqlZXu&I>c>*WMS)|_VYC_nbHC2D-#
zjdwVEp2%?kViUL*d`CnIbJh?*K5L>$94B`)EzA5^v2Yr|Thfw@9=0>KM%e+au+i7O
zijd=)XoZ8u@6)dThp%r65+&M}Y}>YN+qP}nwr$(CZQHhOcb~@TcW%r?Ox*c+AN5}m
zYwfDFGjnB%x7{N-*gpzHdluHEuzh#_*j=9OMU9QV^-W%-)@#eQj0|}W0d);10#k__
zZswING!OY)QzHbsL$BXY*|iUD)pNgn_MAo;dv*82elT~ya#-@#_x?Z~XsLzCd%{16
zE%f(J2gqJ6%_7@fqegO{V?gP{YfB4veZAuJ@%)^4JrcT!F)-U$t8EN$5i3{Ru5}9x
zEXaax%7`1R9`n+JsBIy}Z*tg0xhZVvB8zj|Meugky{0BX@!kfcAG3f{mb-WCA9a#H
zbUv95P9K8GOB}OsH}H9Fe@m`2UL+*ndq}#1N1eMPv8M^{(y^9;o4TEr2t?OOlB?{B
zrFH-|2G;TCwinlO-S8P#oLXYen!s*R6$OVl#?`fx!F=sd6PMW)86oW&bPJ&MSf;)K
zPq`=pw~6HAKM>dB&2MDp@Kg07;97!o9Be%g%Jof;a5qgBeA{x0@J#bs{Rx+lv)A$0
zl2(`DDY-n6;^I-ad?KyXHdv`^ABxoHZvrG1jp3NbQ*Tj+HY|p$KsrKxF;yd_yp)UL
zf8~iZl0_Qo>}v*;W*{Bt!=9|N3{+$y8BYLwA<q!BX^lo)?h*1bm;4Nn_Hz^_9TewV
z6Q^*!_gN)UH*N=H&ZB+*BP86eC>bu~vRXHQATyvtz}J!NRH%^+SFcb21yiIN5(onG
z70i@PVySfKm!9O-N74iVKztnyWYuNb;^3O3>mjl*0Ugc=y2v!y*uMPz#g7YiPzl>L
z>=Ro0+NLN<8ufPp&xFSz8Qq;!yqRGPE#OpaUCKy}xJiYePLoom{)9|;Ie}yvs|=33
z?_b7fB@|Fdyry#>UJgQO%FyZi=S35B!DWaqdF`YvEA6nX=M3heXP!TyiraOJI$_pY
zrR8o&q!&S&=~y<x&Gs$37`4ExlU0kCBF?%Q$X`oat@^ze(>vE~8|SDmlPym({+Fy}
z+zA7&Mvb;C4Z-E98^#WEEqC<@j-p1&DWJ*<SDu4F_s(yhwnO1=oSCow%`9gR6Xl`b
z2iA^vSV{Z#*Ax!!I_=0jPw=Daq=PRi?C9FU5-**kY}4gRV=fr^bn?16_gJvjPf1if
zW3gb#K9W`ZbC}$845sp~%jyAv7-QfSSpMFr5wL=M<{!jK|0(LkogJW{M|3>sCV^E1
zq;)#dQ1j)~)(wI#tJ($PM=V*k+7OkFv6wtMw&hP;14{|R*EyOi+6vGaa8XW%$%^(j
zHQs+_VzFE<9(>O0aY9wam2^F8u?qH@XoO<#9#G@CT;^(J3<;Mf*)H&d4^&teC8JFm
zC#0Tta4o9QLA9AtTvey@L?`8O>zJc#u(4ITRPLI-!)VvDbZO^0nVB9#<i3kT?Sl)+
zUDKg-;~6@E$lWmL8`VoksGhLc8m*+{u<s><s4tu22vUFOHO_uB*Y{VZxR8JlH%^A<
zJlVsH<G;R;tW<Y-x#0+Xh(3BNzlOyuvR^+JV4;q~w&%Rs2oHyMmu^rwfETXr<9YuX
zuvfBJ2P2TlnTfGVgyn&EfvpS*WJ~!;ydTbXm8s7bV1}n$s$uch{N#!Q^v8R`^6vb$
zF}Cr(oRx;wjCked-|nHV#uxBP9~pFSMuUZgXIi~Td?TWFz|wVqmss7P7@2#!@6<dV
z+Y3~RI$_fMQNn(N9{=$rT&_w6@|v)=Oc&lnOVMtwogS=ZB%3*WZNfaLV~3A3&nvr-
zvoC7cZF4?}mVTemG?0%gD~+EIi)C*O3LMQhi(1CgZzl_2YE$zjqUc`dwFzHYqGB!8
zAdv8@r@RS(vhk^YZ82`v4tMvn3{%RgLkGC*gv82&1Ug)?#2jd_|ApAQM9Ae$6M>07
z+sAU>HaY>cd3;Bb=U%p*TuI>^(E^rGgx+C`h&;&>gbIF^gjoKZ*=td188+jkLdzMl
zGmTa9-D!_Q*YIt*E}b}^<Mj368q<Bd5o1I1(zXYEK=*C8M{`Jj`?GCOab?H#6>lUo
z{z+ks;nNDe=aG|^d-JvfpqO<=Z7^-w6%)M8zH?j)2$RGSJ%+K99k$jFJ|F(0{EcD7
zA_qm*w@Ey=EkcP)8u8Mem9T^L=Yb!ijh~0-+blCcLZNb0<<l2O;3w)S;L&GUe9<$B
zf6&o&zQNrVW2-jB#6wPN^%2f!eQDpjU}t63hioqsVeaZ`-K%zJvfOs)0zfGDysvL;
zc^j2`|7I|=(cH#zk_#-kJmYxL{<^QL_R@|*uf{yRhPgyKdAyV>S17d44L<6cn_Jby
z$U+OUoZ&)?1@PiZZE31U%i}BsG%?E3PFkrz!upW`{D>9q?!@CLj-g+u0)zc6JUVWK
zdlS-QB`5eFpv#^t4Jf?TyMPPHfSyUgSs#{(03gaY(~H>gP&YN3HG5Hak*PD^eL$|X
zP}*Rgf^1Ow2yXALMS}b?sD5IcEsgnn=@Pk4x+ab)!2cINkHz1|2JvxZbgTqq76x@-
zG5GNEPxiU_6%aTzfQ9rG5GJszDh0D(7<=>y!GLA7^$Lg>@R0S(hil7R)kQF0C*5l&
z&@Q}s)owGkDTv(L*3{V2yu-cuMZWlhaT6Kb0wRK$@u<4q8$eHOFuRvEPpwBSG#;@Q
zqBN}_2Qrag(N&Im`3Ej}9u?4ytr*UA#6G|GTeuf#+EWka);SQj4<0D!K5a4urJRqg
zGgla8H5phLqvauFcXa1iutgUDFV)szvZ{d+_F$2O4JPQ<;+QFvEfW{alhs7?&XK49
zx+q_2OKawvuZ1@(c`xM$i|idq`7mRp-KsAv;<$?E>f~OX`0<o``2t-U0UZi_QLN-a
zJrGT}0d8635%ccX^))dOY2s|mVX*uIKSTM5@3W*sscvZr6U574<haD^cncyv82fp(
znF5y;v_@z>`ZT1%W11*a6{xDd{_}GN-CLn9K!xw5jW{eCY316Di@##ZmW@cfgMT57
znTIG{T}F|hq^GP499F8WynX)@tmpHo2#(dGx5esDr1_)k3nWT69HP{&YsrbR>vUKE
zm)pqTe8tQBAN4=EO`?aAW(vI*x|ii}ORd%kH(YD`k-jeNh=-e0pzzyeJsjyiM^nwm
zg^a&04R=ZUSHiTWndDIa?%9PwZgn{;`Wr|8Y);2ui9<L;#c=Lrb9J9TKgf!;Rp@{?
zfADOzMBlTCZOt-vgDX8?*ZVywLy2xlA`y6{(y^;kn3F4H$_8VYd1n*zQtcB8i2A~m
z+Auj)TP#-}vu%Wo*?k}F$1Iy@ea85Z<@o0Lg?d>nxs=A9UXq!+(S2?c@;uX5X8MK3
zp=@;*fV#gFynik4`EP&9dw*Nr^WXk1_wV{|C7Jsc{~l>67=&(shJKlvnKLiLzuzZB
z^X7!>YF4){^bM}LqX<PN2KPy5TbZa^y9K*!9t?ft>ujF+HyYVCXDh#3tq5_+YHmSB
zeWh9u!{()FK|4EmXAY`l?;Z7cTE&#O*ERkcmg#VKIMn>ij=hR?`vkA<v>3}jM(q_j
zAx|U)POirsFtL;2w7x4=Qo8`5(H+P?t*5a%gWOaieKfsi{fZKfcRzG@7*hzAwz%D7
z`_q^<-Vqwc)r|eVYdLB73)~k#GlXDN5dcTIjbjdU7}gzaLp%ggyE;3b?X-<zg=w>=
ze1>WQ_rqk?Qu~IVH7LVMQTv&!%0VA7t!ctt1wS!t{w~U1i9kPJU>>5lpZ<<F9PBqu
zShJ!1bKW_6*s4<oFME+fv(N7({-Px*upV_`Lv249$43@oW}#e>1KrJve;04He=cq|
zPNr|Sz1voayBdGU1IJgIE`+11Xfxk3V*q<-Y`pzTT;5Uy{|W*cnvY!n;B<y6ht|Jk
zrwyx)ONI3h%?ub+rl=-Vtb16Z^Kfv$_bHTf3C)b%Md23Y3b(nk?DV&wY9DE318s%-
zi~rwhD__&M+fz&c03GXp+lc?yCGtOND>F-*|0u3b|D(8)aQdgXI-{_UY_ZJ2$4^=o
z%XT2$GRqaQllWvquN4X&Q5eDm!2nqKC-Q%HdFNqZ{-?OQQK>^x%OncO^plr&pEvNC
zkZXPw#?#+Vsqx)1G`DQ@qp)v6xhprtn`bvoL)TSvn41GH|2Zs~Pt%-}^3!j!nFLE#
zP8)&FL;JVyv;g>awp!gze|U}G_3<qK@ce4cHlya)rRlm!pbG*XzHo`2SASF#0ce@o
zC_C6~1L)9YlPda%^f%0Mq^JYo#6fLu1eChT)D!(I2k)N&wL_6jqvm4^j5J87O4uc^
zw*8Z<nu8m9Iy=nW;l7P>6R87;gPq6RIs6S5{Bn}GE<p2K^ESs3;sK=e2N25hO&YRn
zP&*5Cpy`lIOAR&H2yp;X-8#>VW=<1>WP|+-^x)l#aK5bAeOdq8m~R69mnqNZ^g)gP
zm{u>OPP>M^$5>c#^x(rWC^s-*{yP{t@)|e4`GV;VwjB5m<iH<ShM$44pZDHJ%<MP-
znt`eVIQe=0JlL@N%Kd|*^k+bWiqGanZUDzc{CvLv?B0Cv^WaN;$mi}smyLWGAOJv>
zhQIos!<5-R0t`_V`CkUmz4`NBH@g-v242JcO_TIL%Yyek&?xa=<;n{83O`t}o0kwU
z=lc9W6c)pCUg*8=62lo?Q_?1v!uDL4fK!YNY=1oXM8WoA#nEqkSOl{+$0hL<UdniH
zV3L5X$aOE)!7JkuPxcTXxpLvegl*s>%8&7s7;pOd@q6y!<-ayuMQ+QB8CkwL5^=j~
z*zsf#&M%Hp1_XW)0YNE-`vN4D#8H7rMTGrfggPz|cih|1f`Wt9s$JP~8vN&#6!>*;
zaA=-wMyJAEbM%@$TIZgUUX>W01Sg*z@&X?7gDZnq)-1*hmrRl2(wAqk@_l6v&jtf;
zGMrzlJt$swDQJQG`VT+`dNRYP?f&6UuDRldm~=@E6jttm2VTlwU~H5?3Kk5QuQlSH
zgVN7pnZ9S1-`w-H*$hC@4u?xRX_20h$1hkqvw(?^M;|$6?w1f_ra5i2W55aC`noQ0
z@EAS<fKA{YKsQ2Ii4Ah$z0rR3v0@A-&&&q)^d7unN+#@vgF=8o-$G#m7*LW05g$pj
zXzV_Zo^1lGGX;w=ShEd^-97T%F!(N*k!U1jjuq3J=NJch7NelTAD_%S&=EckDa@-a
zwSovBL=Pc=Q3qHD2d3DHk>!s{ECBp$Ak?T5kIoYxR=Ru($_8*cwo~i{r6dcoPI`7v
zD#VH;NS;wuZDPx7KQUu`VG=Q2j8V&oLG{QUL-FUmjIP%zIwyuObNzMOX+V+2i5=kU
zuzp^x|BgghVFrDQ6r!p$!%*^ggOSoJgc%j&&0v(B02w93+72sI+Viz65)?M-w<SlA
z;)8$05nSSsNXA1$044t^$L(>Agc|XgfZZ{&8IYhb8DOYl$laW6hHqFRBc#123n2V(
zc|`>B;U!&V`6*3M<>zW?_>`a?)jAr?;dNCs1bQ}4xP$?j*q^yGgDM8P1#T_cLHg~3
zG)JPW5lc;15%f^@bImjjck>gg8n^@SA=#rB&JHKM$+#t38-f%7_C(SGI)i>)iEIi1
z4N(F4?J<q8Ndk%~272ffm+sdZ(+z~TK<*n*YPc#y81yOVI8Thn?+<}L>^)%CgOWGy
zDtu7@os$P;hfSk9VqC&W=8jnD&6=iJpz>+DzMx#Zdv!WRv_wg9xt)|4$MeeHmI6KU
z@w=8J8EXC2X$Wzq?gINnn<C#CC;&{J=wt})T(LzQ=L=tHz_2WjdQhm<m7hpLOV!jY
zn?A-aVH3`SlR0tOHE^E=&8}YoSFv;ir)6PUENDLUF<F8I$IpTTUqAqH6JGwq3hj#4
zTDTVYuCdJsFkY_RvhRyECjz%oX`J!{>bpU#E}J#P<#nnVVe1AIMWhr68ybog^s)NH
zP2l`+NZ_%%I<aaNA5*^~Fyf}9U9d51wQQ&6x0EZ1XaWnkG8AUXTP!t|jexydTLpne
zaOm8G-E>yua4mlE2Mb%N54?Xh*vUpEg2UdP(v7*_D;a>l+yb4)YX&BdGltHjz1akV
zdwQO<!MU1@x7VegTep*`0cgsY10r(9`YJ`%O$*2rneaT<1%b}!Yt0jKU&eba`&U8n
zd9mR4;KN>=xp?h;TL&zBrs6f_+X<iysKO`(OTvHD#u;M4@Fs$6KEm0Y+`tFzeR9n>
zNoE-i2<~N#BK!<7gl7U2coGWZft5Q9Ah0%Y$+j&q%dzDoJsQd(7+-E}7~g~y>?sA7
z8md2yT&C~WC3_;KPXbY``y$dA<GV1LOW3;MCN!S^VlY`Jd#w~kiIPx*r8VIEs?E}G
z6<%zNTCSY9#E`8{G}ryeN+T9!rnd%SMX;FnQdWnUNM9{84uRpNHIvA3%EF9&JGuue
zj$3PIqi|Dz1EXi`U|fyEQ)Fs^Ix-$>0^NcCrP<E?bjUpC`L<CAid4c0%okvu(DiaF
zNHfe3vjuQch)&p>WB!+uj=A^#%rl)UA}zpDG2>j{L4fu}I**3a5=Ds3W~k!kaKr(%
zrISYk4?#TELSrz~Ixyxr@A8XBTpKS3x|7-0i)=*7T@BQ*&37jh0AmOFoQUi)&l=pw
z0v@LRWQ0rCF>mqhj9UZ+-L*<4po_21w%5gi#d)!kb!&h6!5Pw!8|@R9)TB?&kQ171
z^bEd+pZnX$?=>#uw9O!eKY$zTp7IV%FH;PskPN@nE1Bp-)U<3t;)Zl)5h7%MP`@!#
zY=b&xN$X~_B!8-MmGrz&ThkCFc<n&CDx$nvC$|{L7-s-yk0GXAEPgm}yY^~124UFF
z_a1KJdfW^%{~C%5ADFgWu>B`^JWtezvdRn4s|2%-7-AU0Zg>PY?u(&=Jekg#H7XQ%
zZRH0?te}YtUdp{yV1s`P=7)83HH1ge!IsVqs1*u<HF0Gu&oH5UjmAE^BnlF1wh0RB
zs<$s$_YX{k&~-_-_eN5o{=LpN!{CR(1=9l?ly&DU@(!_uDByQ6xY2UX#)NS<D;~3S
zE5uy|!n;=6Fq1L&zrTD|<vf>3j>h#fzZEu8rSAB~K2w{eYq|!zld9mcsW?B1IPDv7
zbA#Go+O!~EW(u|nyQW6FAi(R_)C^YMhM}Y|aWT=cy#bnI4VoC=TLmBl92E^Zdy&DM
zB%s@kVf@@J7mrCVi6NFXq0)d2V2^QMsOx1bL<S?#RGLt{-5j(cLZ}=9g`kTH!f6cg
zrRcy0ih9s#!a(U2C`l4rh-jLz)Vk?2EJ=Y1P<lJTskW)8r1fZ1kKPz{__6RCHR)J8
zPr2(QDqXs^iNTXhjUgDW5LsW8H24Ut{Mxjv&?A2;1ts@@RaR_`E}zS$ZNzH(Q6P&L
zX}jC`)5ol;E}}M=_^g3ev_tUpMHlDS(<{c`Rv^VC>);On-|}cD8(>)6@uD4(>Ov;c
zHLVbJhutBQ6=zu!DYXIpxc%Hd&#x=|N^ZSh9*n%7$k{)#9@yp<^a-6~rh-yMDpE#n
zgR=9YOQE*_xZ0zXp<WWq!&z{}L#THe0@45~pnr3m6M)btcZ7h42L2_td04}`q0+|#
z31HN-Rg<GUme^olCk7E%0J@=#Dtf6fCBTJ$BW+G8jWV0@SzP*CK!Cy$-6~`%_5z5l
z)_1gE6&CJ?G8nNj5Rwq|bN3*d8hwdsSYXDFi-!V2Y7$#8pq-hVGRPTxB<U%HBY7KW
zsSvMon+HZ~a3E0X3(4l~=V-cSf>1jejiNIgHPvfE64K6(fMH0{2&6F9sShMvG^F!S
zsxoyHDK4Qx%e;h!N;;#y1DDyKAS~oNJ>bC;u<iIJG!@f}-&|ZHqULV6=Gm@Q{RKms
z{=*eGla9%EqELf}hl`0sZO|k)D4hPyT9pFcu?DeMn%n-D*yHbZ^IQ6xJ^kP7Q-1fY
zeo=ZZ-9NZ4eQrVL^D$5*fETlP0c|e+-R!t@2pFcDQN`D!*+aLY5AiDih7yHj(bx~G
zDL;kF6bqEXLKt+?dDsaJg%$UKS9Qu(Ujh##C@*f~H=F4;ogs!!o4wJ+PiIZs@X&s)
zudECLx*_?TrP-;D`o#^ho8Z(d_Sm%}RU*3FrpyLq(jcyx0z0N57-pmbFaq`Z;3klw
zy%}M<3+ZiIc_!I;jcd_WB`!Z>WskDNvG#5Y5hlHV^h^%JHR@=KB_Lafg2UU{;O((J
zJ-YLA5>wmvlTm{$+>LC4QwLH&y$0^vbFo4<=EK$kM5+&0k4HQdfC2cbXz8fVP%(VO
z`foY&EQI_F4s?J_b=SN$ySz%A<CGmn9ZMhxGx$+3ijL)_Q$_m6&<Xos`tKgE_aCT7
z>kpGH3o=9q#C5>hn-;o#6SQ2d4Ab_w9tewfm1sICH%Mie)Nh;!(?TKxaO{ikix5hn
zu6$07b>blnn^L+tR-{r9hg3k#U?=n~{A6<1)sJhFDsE2~h1tmNwmE<2Wnq^6UjJ=s
zF8V>{a5b~~J-5z`jkq=YCQbaP5x?o6Z476;&G@(pGM0p@HT|>s*^SIx|BIg-tXWyh
z_<MnL=3X)Xmp8&yTT?}rjZe*B@39;wp4`&g=N6&GKGrS%^X6~srmd@H`@vNu0B>*G
zpLYXX?-iH6Wre-sk<W^u%XTzbYE*4j<@m6Ct-|m9wfp6qtK;dSaFk>Zvcev=^9yk!
zbJq+SHpnqSN36%MH=^y5gjn3@7>y7G=9uz0(Ked91>>o*!}?h)5Snr*GEp9ocB%^r
z5Tkl_z-A+yN<?5r&{uk1#oie4{QQRWdfUq=1qDMdLT#>`=%h@O>^{<E3<@bbN|&09
zP;XYVeMF34<*Db#C$2uwZDETe(VTtHyxx!kIzu_z#+jJ6kR@`YsM;UL*VJ*jP#6>4
z1PbIF*P#8xFs(L%nur7gNMh+^@S5)h5tfp4-<mS^Z$6OWCke$Q(!*@uB@aG%3u1X{
z3sC>*qn20$y7+kgzP>9RJmqw1`h5#v;dodTf>U~H^?G8M&5|R|LK{NFOQE8tP!Tei
z$bVJoic(b%l9<CV0wG0LZ~`SwS9mg`=!67)XBe%}hsxO&(}4y1)*4xh<L5G=*9(qA
zI|O5xag^pkTXL*dMcj|VJ$p)J>41+D+i6$LgDB>$^bXocjUisP#kDo$P)iE{tm;eq
zL$c(D#At>T4|yu<>%7U1?(3ZIIlT*B&?BIBu~lnMlxb5;>C%<O22O4J$}ecHb)OlX
z*Lk;zP%3rf#r>R?N~O5-Ld&Fztcg>4Xp<=FW9a((+bIpg4{M$MRR<Tf21^}sROp|o
zzyo~oSKONx^(t&T4cfJMj8ypB=X&dB?o{~b9TNI`-;h!<;LqBr2;eDpItplly`CD1
z!JDqu$o${wXf4HfO`{Qc-^|DGBMr4(HyXyH@pC|T+U)=?V#SbQj%hk`)?VpgG_L&-
zNWQ}E&2RgHz5=0N`Vl|DZ{ui#jKe3=fplxV7C>)EN23uF7;=D3Zz5iUFytVhmzZ&k
zkULQE{>$L}tnMef)zY*+oG`r{!&l#okH&UZwmWl|>Bu9{(z04g*3_)sAkie$K1_il
zz-GJddt8?d`5RScxPD756pwZ@mZi?wcP-o(kv|Xz6d}HX#jp4KDk(B=7X~VZc<Wy1
zVR22o!k&X%+U@#%Z`3&aSF9lRz>VfRz0#*d&ir=ChipS_gcF}W$SBSnkT&vSVv(<>
z)znhTd94%7mdW+~lMSO!v*@%2a|JXs`z5Q`=w~>c1?}<apSa6l5iQF?@8hQaotB(q
zCv-tDm}RsQuV;rx&$=1np^tOb`Xp|mgV|1%@Coe-)IzfMpsZMn$!7Ggnr&5;MMl3D
z(?IICq3OvjEm^YtndC~WefldhfAhK*U>o8oL^AVpPfIvu@<nWz-S)q1;<xR0KrFx7
zjH=h~4ke1^r1bkPTF-e*`&TL$7N^0uJvL=g{Z?G8M9ycu1FSe^^tSbXo|7RSS7E5l
ziX6Sqy^*hsr<8lQ-*#!VMw_+OdiwyqrtV3sW9^~smDiBRG(#QdMfRo(6NZqVz2BE<
z@V<G5d?pcSew)8yF<v*Pe=7(RndYTaT&;ZSUo-Hf(c|&x%_xGw;Yt_XPH)w2{SYhd
z{$y0BxNk8t)e>&v=5A5Ag(b9}eTh_dE$<~()sORKWZhbYm$xewBBuo!wxl9oH>vem
z|3$ICV$YdhsJj;Np5VP)0@K(0m8-AYkKJRG=i)ZXDvP!~e!@OxbsbVL-g(;)sAY89
z{{f1$E7eEc_2=hPD<#qkb2N&cVjvCSkY=yuoaa7^aSw;4eFc>QtmVu}m>1kN`!k7#
zjyj9qy!jn|^bszx?%UJiPHN_!-|4A3cU?+#FXrKgf3US#Gcyc2Zc?H<$8B_&u*bO!
zUTZK~iZEV_0iN2@j$=f0PJbPO+Q_bf7q_VD?Z#+)qr_<yHkr=&2xwLFe27wse;qy=
zrc@vxybs!bC26Yvr;8oe{9)BITdN<MjzY~`SCJJ<<~!{?)N?J7Cw&Y^I#FeNyZP9l
zSh$W#hRh^b;@Ad4r(@~dEOIk)_TeM(N`Nl+TNPxKR3Ft&ClC=LG@5({=%V_XTEOY8
z4gM}^fB}4+mK$PCvb(gQMjh+4P=9SvX)L0|yNu$+ULDj$LWfl6y46oRb*<6VwYbA(
z8y2`!$XEF4X^LQc0Ov6z{fO47-wb}Un}dF#P92jLhp%B2mQMJ{>Bu&1r)oEP?J3bl
zmpN?yyRhydtEe!wCWFNyqk#HV=(@|SGPFFy2!U|x1IO$L3e!txHT11xP@Ve9>)|8Z
zkW`4X`#Y20L(O8XL%p0RNiOu@-BA(EZ+7WG<}_eOnEH|}G(lBcvZsf9ZmMzuX$-lu
z+sf2h7n3=R>|%jumMGRNj6A)@ke8lK9CD1qB_7Jos7<Y6_n7FZ>$vLVnU+slSRFd{
zgS&up3jcm(tVzRphqKFifakh4#Jf2xZs!=$*3e=;a~%tD|7wH6WvD3JLMwwgOxfw8
zY0Ie5xY3c)NQQPbD^Y=lVP<O3DtDn}k{D5yk;jm&M=x~z0}lgoGy;;0i>w17#6B9_
z1X*9h;E%!Re5Bkz`EaqP4()Q@#ISn_mV6FvL@?o?vu=0XvF|vS>cFKfj_aWuoOZk~
z)2;4vMzTlAK=08`WeC)UZd_H07JCp5VS?9=35y~)PiI^qWdkzDNK|@&USc32^yB`4
zjf|mcFOPU3=dSy$^1*cJj7*Fa0`8Y4=aW{Qi5t_+KxwBf&oj<VSs{iI16bus1V)ve
zMB$9kcfvV|k_wf#vNw$x?($)m%O%bPIowM#l<m<j=NC#hZurhB{89D6XFSachm~<n
z^@)He5UeMC!0dz7`8Vgo&GKI#qKEu<@_`F>xLZ2a&3W||oE%v1@{ff(mFgfn)x_Ir
zkm}S_?sKjsFCJWka~V6Q`9iH6^yyujQ2PTZ>Sb-d*Fpmm4c)f6D5AV$OG9j}M)b2J
zKvbiCusgWK>W}%x@n<?{QC@+X2jZfHH@A{?T^BN=XHt+22vNEON`MJUK!sa=-=>qN
zOJpw3j_9KiXh`~QX-~SPL>o$qp2Ql^7+8_omMhWnT+SZ=rRX__0od%P9`!<#BG*<*
z5iZJ;=K+W9(mUD&4hROO`YecidGXF^R9+DwgL9pJG}`wy1UcGOCc(@S0Q?(-LF&r`
zJNccX1M|echtt4~1GF8<*Wv%Z$rH8mowi39fswp)cxI5xR3*L@s0PvaSLoHlUXTgi
zAh>LPb}=L8H*oI<Kr^ttaC9U@xnP=64G8t~4kD!#WLzQjFWRAdp!$+C#C1P4A^^`@
z;e=NTxMSpGB%9JTG|SN$2|K**I%m!RRyZ%^^8#tWXm{q|V?3neoVFfuMj5G2TB%|Z
zJs*mN<K9s+kNgA_o)E612u3^*&}hW)D?-vsnJ;D!DQ*MQXhO4~nqamAQpOCfLGIyB
z8a7i%k4tD94Fmg9i*(c6sB-p42~(ENnUdW*xMU-MQYnG0Y?LJ1q6YI=+c%QhE#i|`
z7@7Bmaw3WT07zKlg%yGG9vvNl8MCN2YWqsY3!|9oeQF<=RwSD+qiE+*KF%q_z=zH^
zhqS?+SXp8yMQ&6D6T6XJjR9v01t1EtyJ2&;mf0nQUy#P*;w!o38?3*?Ekpfyp%?A#
z4e&qcgm&bjc#d{(rbSf<+mZyg!-%Pz&8zVk=o7a`ie%?#C(KhILMoiITq^2?u=P&>
zkvewR$hQq%^2x0cwW%&5F;69#8YI$B{iKY?sCtMcy!i}X5PD3_%%bRAwL#RD=JVCv
z^N9Q9@)>3UzIZEm#HSe8l(P|Gx{^S1L#oESM5x>RYHkvNs2!-hh4zMGI7J9Yj*rho
z(ht85nbQ7pligL*lq`W!lPFys5z9p|%b@nxK1DOJEe6|8ZC8gR{i(U`JQhl*)>sl*
z?S0W}P>XI8E!HbwJ00?+GCl}1q2l06b-DCo&aj@>hV}(%n#b9ZtKUd9L-QKdg<n^{
zk`!2n7gDTyZe>lo7CCTW#Ixf`kl%an_b)VM83Wz3JQ5gLpqd6j+I?5CO_0pbuS@cW
z;Z$mqRUo&~r1viNHzNCeT+~j<Yy67?UzMg>$C1_<L*Rs+61^1F8kv5!!~x>^a>3r_
zirc)?A0wQW`24Gn4dk!3fS()F$y-9*t~UpfhDLwQDms&;BHf6MO>#Wc-*gi}TQ<9m
z#ge3an`j>Q|C<p43}8Sp0t5hP0{VZJ;s0TTTs$32o&QlnrHR_oz>El?`_I&2Z>6DK
z3s!<qL8jdcLe)aPPo*W@%VY`DNi$Z}AN#qxdLoFv3^XCk&Tl8vC9swB?}GNIg5<YD
zBco38Q`~jjP+q!;@QvVzh-b|#-P&dikAM*FAb!Bjrch$%7er8tR;^0*w7=h1xOyNg
zNeuv7=@`g%P>W&WrNj^9oJ}c#unmh~fjkrD_0S7#FM$N>g!M5nS#J$uUV<(P9T_W=
z1iFKYB@J%aEf*3=XU>@wb$q+~rqPnl4n!l2ijx&Fdik!oVRcPH5jztYhDGfdmYLLW
zH#uFCGm2y0?j!-|`$rgl53KD~*wdRwhIxaqFYupjlPwd?G+9D{*czIh%WX}$J0r#h
zy+BH+I51(u_B6_3c-gh*loVg=O19z6zsR;+eLa0v3vo^x_zgJU$u6oa3DsT=7)0cK
ztYi2a$-u)GFA$O{Nv`+o{K9^Z&3BRRkAVMO595;P;eWIaz#Aw40O9{(=o~y<EbQ%Q
zndq4580btaon2@x?ab`yWh8|~<&;HJm1X6(88G_3)O(IvBr$>MxU)xWX*u1@xe4M5
z9V<z(#3P}v`uDF>s;G@4BovXR=hOM|?3@t%PPYaTlfv!xzshAp?Ekn^Y!z;g%UTe^
z+ur;f(}npFm|T9=;)BH_GY;4}VAdpL46?EK#qM|6`i0?P@#AQ~9gV>=gt+?DdV^p8
zlltrmw_kTNaCp2r0!v8jH$*qM!6EcJ_ImFOE9<u}vSPaUdOXHjE7Zn)IF<Op(A%-_
zm)Hr9l#=`g8@o$+<y>*8zaMB<<mW>&^<vXOHbR4m&ED{?!gK_ds=4<Vfa)j&A43;3
z1%MQ#>QcahvUe8run2?_Of0Er&B5$AcLU6xsSxWCf{w}!F`=stp7JyXq)QKKKC)}i
z7MO79A0+HK4c-o0@Eof#8Ph2OlmNMnmw+})5M@O6n0A>GaP*?Wm~j+60nQ|y=0w39
zTcvHo{2AvLIg!G8>lUINNeD`F$s@w47(e_8(kfn1Jg$-<wUOdqt^z5X!RTOufvqT&
zAnmZnSTmV0#*i%^LCN27B1OiMtu3PrG;tn0mpP;HtO_AhvjkB)i%kGr-60WI-5gOX
zCa{ulQ^0BG&V??+_{kg_O?Oer&9&#pd;Y@qb9Qz8IX=7kM4xDQy|s(hUa6zoFFYgU
z;q4xtNvHe$wfD<<aU_t{xNWP8b(Im?0MFP1f0D;HaKfL^#5d5wFQMwJnR;d#xa3N{
zG!1BGN{BS&0OPU-%G?0?=zuiQLOwVqOQ2^1<g*6)BZPeLO!oc%wc`9C?TyO67S#Cn
z;Qz0!s4gKYDg!$u2o*qp0J_jy{s4q5TH7Pg5*?wX?IV?tiQ#&9>-@9#2PhHF0%~Xu
zPS@UyVZ~h0oL_KFs+|H$7M49xM!Kk#!l)x>R?EQcw?#+X$S~pD%J09=#(0z-;oHA_
zLmm_W0HXi(g=9rl1Vsc@1Zy>PmA56(eAnwQNLyJw*3$+|l5p)aU;y2Ysf09cZ15^p
zI%r#K@k;DUyF-t^KRMgAhuFY?w53Z2(mwOPeD7|35aP^t9{2o18<na7ugAX@Iq63O
zOsCYO)2&f!dwC+>ixhR!c4)wFPJBjk)<#=h7QJ<&^hVDSW^$`<2qe*>MSY-=teNBI
zOsG;u6Av#qxT+p^U^cjUP47JwBTSzw$ff9@4?e>CZH08A>RVZc-srxY0l!`!2>f<^
zpOM0F(RZ{slYuH?sn{?Y;)@BntEh_YMcN$ChAuh}O(|D%avfRg4f!BJEIwTxcAg)v
z&85GOH<9{zw2l1l{}6p4#_dkPH1hqN!QeNvuqoN|iu%<^wBuiY=b7ub=S|8y)`s8l
ziAF2cE%_7GVl&XO_LbYbuMhWrq<8eM8~&OE#WfELw*mWdyNfC{*Wh&OpGqfPkJl^k
zdOzwa-mkW?ga(Yf9s9k@{??`V_mZZ(OCFi_;K$vEIsNrjLm$0oFKkyBvpFa5Lw$GW
zim8sdt@BR2cWGl-G}#Z@|M~Iw{SA}8gfQHEmu<bo@7;BpKd5e)18d}?DEb2HZzF<o
zg^zrT5GyNkuq7+>fhYYyfvG;RStB$3os@KxB`Q24rM$+sk?Q;kQ3w*8pN}o;?s6~)
zhkA!k?Aj}zW?s<dH8&n!wl?f)U*Slnt1ow~njYyGaGs={CtcDKF-1NTDR-qzIfm2J
z1+1M|gvjgEG2v=$T!~bOboJ4SFhM?7QrVI!pM8p48}Y!-g~-OzOuXA`RD%n98JmWZ
zxjXO<a&*YO42>#6w>Bp3`kY?v)<VO?9=zG|+w{%);vwZ_)3k8rrG6PAI|Ln*_JS>o
zN;gfE@eGrHGu!i|vkAZ1f;dm}y>1*?kgP%w><&A7CAZIJ<EH5l#;xCc(l8o2JgFVG
z5S^@wJ{?V9O`xtgxT;~3PO4vXZod2-2Iu|!e9?uRbi&)#i6VMF1MSZ$=FPd0jm<f?
zvkU2{mRIK}u}+4<FC~K51X0pEWF)H-98yE7oD-?Cmr#^g^Np0kW?Xu6v+9s~9!}CG
zmpS*8h(*jaSfhpJ;G<O#<afvo_}$unM&hMk*nZ}RN7ptrkL2GJ1nw~yettY1PnI7)
zJ{*6h=xPm<oc{Qn8!_8rA!aud9=Fj|-3k!*RJ6K&C<hQM+cKFcT&KZ}QmWffY1oRI
znGWWUMQNMvvnCa=`nT8*RdGGZr%k12#IvR<CfZhM%7gWn`)H$M0gP$%D<*YF3uMph
zP&uOuy`Ecv6*yD2by_p7=>dGPs0QI5lfok#2=F^Gn-S}bC>PpJX-ja>Dutn;*H-4u
zZUJfP6$UVS8mj=~7G3Ag?Qvu}EKaOri^6x5uM2^!c^FieN*GH8MVM!5@UYUDM6J0h
zYT<cNq@u7Au+6m>EAd!M6xAyVF_xuCXs{zgBZ0(d4Bgj4-DGU-c{zmOJ6rN}PIiP%
zUkzl-7#T!(u;)?zk3@yOOhe&5;%yV~Obpd!lMIng#z8eCcR@2X&s>_jj@s;JAtI0j
z26Y-#q&>mNR8W5q>B>)FI9%WZfg@yV#5$fBb>8~ROuQ;{??whAU~MmPm~th4up8Ek
z6+)0ok8!urIfkW~Zj%U2TmTy=s6zo=5Ka>`g(*MD4)GCyu)TP+X)<t?8N5pL*6aLo
zcU;bh-H#u)aeBFVxp;xHIDgox1K-vkKC&oE$gx8h6kEr4p2Ne79$lX3z>JHI&@4rB
zw38|tE`*`TBZD~=BJX<JvuPP8ib;C93}qejuytH^Dt=tt++4iy<Zq1Mp;dH4lNMol
zI}T^Z%x*LrYL*sCrgzm9EwG?(=B$gZIZ~idvR;B^m@8?l3v+Ndga2fZT4MnF4RBp}
zalxr-Shi_$yDD`~GNF9=tr)CtVT7J#zSlc&tPsLgbX33UKIEY5Rh?0ZDwDN=brB10
z(cKkQZCV|1ut-s>1q53hI~zmy^FDAy<KUGpz%C0~{`Y56dXgkcZtI?3adOrp7PM&)
z>T<dTqBjY0rYc5JEHP8boRurdGK!Aon5xJN-FBYsodBRR2CFK80aJH+Lhy<pdYf(n
zKs)%+CebwM<*_I<PAcj_r3MMau!Tyx6{ugbP>BKiPhGVFz6IcuU{x8Jfw;-gn`AW9
zqC)aFsCu2Psf$AVnCbnGhY#ZuVeH-fUsShq`eblLvGQ>nwQ80QKr%0!>HRpopkxh%
z*dy2#ca9WGolD^A<17XqPW~$q_ZGwm_$^|q%g;wsr+PW5?F=<9yL1Y=;#4qMxa4@-
za^5R=+Anxd;fe9rUzl5ae0W3uzYHZ=-!!OMi|}(Y1a1Z^1?g^U*oYoTC~#XXh?M}@
zt<Dv--o$4k?9yg}Kv58FBuMjktZ?h8UoylPLumU9)usE%(W;d{=gSWni&-zhPG47r
z^R4H;GEr#-Tg@wx7Wb7Z?Zlg3JfUfH$d5dDJWA8M3c<T=WO@N%h0xp;u|?5taz57Y
zxM6SNgrAL4TK`sLN;_ElhBypwOl$`Z%)*_;)}MKXO5I>92FFUdZ1@j2fDehKHQdcq
z*cb9tnrfyi1OqT(#k?i;B|N~JI3o0cFPSTP1#%J~UdD6^=_AeUU@d$jpg57?E-i`I
zwbqW1%x&~soMz6F{^G+NEUpS4KaK;p0H5&x_ZTCQ1{j^<gAM>dO$h)%@V`zCN}|H@
zN+P~l<7w4W$)V>zG)Mg&%ol)iKq2fx7DGeah9Tne`zySz_R3}64s%tKzNwjrjmF|+
zj?CYuU!uw}eZTp3+_0Vi#vlI1@v!)MpMS(k=8xq5`L5vvACZCHYNb7LB&J)Kl~KUx
zzd#Nt-t-^A%Q4u<qJSx;vOEHoJ<O{c1HkG?b=niwC7rR?7-UvLbLfHyA<DFWfzV!q
z<QX7@z&8}V`ahj~b>8kF;=5z8x0__GEU_5~aQ(65>+%YStiSEGcxZ?shZ*AYTwM8;
zvZl@Hy5`9k-#L;X88$Z9fU;Uui$DFzs>|L?ntA53;qw(@!1)yZ2kBu2KV*I^cHmhg
zZgu*J>WLCwIh8bvU-t|O%C-Y6oRktyqO17ZH3vQqLy9>*z}tTNT1FD&feY&rD+#jJ
z;EvcCQDN`>0%hcYrZV2kIaks$gjFL84NmMg{1QV1f%Isq6|(#H#;%*h@#4dPZ8+1r
zXekLrN^1mW<CtlkK$a;y`D@lwUbX{MK5K#?)1xI-o_AhfKr;WSdCyiyHN!ECX7ASL
zc;%syaSLM1;Gn6N4}0Sz{|QVR#)Uj1W_!95Dl(*7O_!DitN5KEQMI9*JVAPgia6Hf
z5hRfM;cWcbPY?l@5hRByOWnLd5+fgIHq5$V6ZQ?>I|sim+^hD830yfx@Df6d2!YFR
zyiPhCFlsmH+DO}{p7`2Jh8FKd$)>7)_mQ@RPur<*Dq`zSfbb83i2B4%y)kt#co<HN
z!LnUZD`FC;YfB@FNxRxTl&tD7wLp6#<6&6>Na1xE$v>8R`-OuEf+_KSKO*1MLbaM6
z9aRX*QfAVtYG_1I*b>d&qt8#j04XH+HkX%VezSFl!6<`o5&pVdJ@;hwprH(tL+<#+
zTg;K}h#f)jcPl~o6XPLdi1ITc^BNe~c8Jmo)trV5n6Xsn49yy7#p<!@-rF6il+GKa
zU~!wkPss2|em03kx~tJL3pipz2vd)Bz<wTk^7_>}GtcIMIvR9HXprjsz~qg<-OlMh
z#P9@9;S09;Xp$1Ma>pTuXg9tEDzejHty*c5tylIDHwsUCi-FWX6TiYa2=aDr(8Ooa
zbfSU80!KUrvkqUkR>$|Oz)4qOqcG-ar~ni0l{b$nKeq0-PI}Qy@|X7e*h%XH_DO8{
zJ&K{Vu4NXET1@~DQa;E}@)g^d#FP~Cx{n+t62V_UmI)7|ov;gmw6GHfZ1+)4=`oHG
z39^;rAV*30V`-}+kMLp%mi#7P1AW&=hHHixlhUy5YgjIt*|ypozE_PW0a#mohPP)g
za3}Bti)~xi!tn+l%+DYOnfqU5xQ~W!@s%OU32NmX#b!Fm)|FH#Z)oRJV+se6;S~Lk
zl*xw?d^op3@UdsYO2<_%ra}kO!Jc7mlaedzCWd|KjL^l2I6{>j#}g*-6YYXNAp|$l
z6NEW#94TLPD&cB;lrRkOl4ZEBOl@tH+7JOBaBoFJiWna0N$84>56_Y=UDro49Ld5?
z2NqwjDZT(Rc03)uOf}2)fdOL?x^?9!ApS09l*PtJd+v*ZqhAtuFU8cB#@d0@&mP^+
z$sA)`V#3)EvBeAL>f{n&j6e1h+M@f8Ms&2unu~*77sB|ARX;xXqAxMX=*wY$ahSqh
zV9lOfVR>H>`KL9dKZi?<{;ClVK8mR)0U3h^*hjZQ8z5!Nh#9G|mQm%N@X<-w-TGg=
zgg@wx$dafAE8y+Wn(E{Z6?3^klpTkw==aVjbWBbYa!ugdxCl{35b#lozGUkXh)%8k
zuq#-n$B6>sdh3ZP^l=r&dZ^}j&^w}6mB&d_cc~-6;Tz=J{smZ8&W?Mn$xdop8LFKQ
zQS{R{Bwwh>nPhPG1}ns%;MsX32NJ6Urm?#IjNZDy*%0%6*ILOkqlcGD4;h>gGu{(U
z7nJ-rqhh1!+Ot=38B%!YY>aool{}dlT}OyL@**h(6gYgqy>)rQou;E3n~7*HHnYBp
z2Bso6x`zT^7I))IK!ZOGAbg(m&`>U@;KhQ_G+;-fRZ$je8`QL}m{~8h@*1v~o4)KX
zNsN{@p~oi0mfF5kt3L`4RKsFh@2At+MR484zVz^$%t3}W@K0`x4`SdD)QLG?6Uebb
zi?cAHI~$0MWy7<t`$w*SWk{25@(1Zrx;G0Uegq=%1|L>TyrH@-+8PpU_9K5Es}81n
zS&|vW#n$;^na5zmx+_!L?4!seUi>D7(KBr@+_SiXB)Wy_ZcIbJwh=@4WhG2GGX&(z
zp7ByqJJJ@o-S-|iO5&qBwNM(}@D2zu<ZBu}V<p7dUMyJQF1T8<TZKr?D?z$QSjQj-
z60DG4*fT$%*LwLcnnxSM2~0<t<~jQSie-qsQrjmq<{)EzOU_%Cnn`$f#(#8j?!URk
z_>=uXFEGmPk?{sED=)m4-b+MtrW?|EC4=xIxE8KCmqzTY#HB?e(hAM<T!a*y(9d9h
zyNC&89wIfO*oD!>2tjpX^mh*j3zj`;BBJ3A*D>iw?V5071~uk)ppnIQxSYOX_EPa?
zPfS^8I2Fp;xIWV%6PIk$12HyaErzb}TD^NI$gei$T<v-qhef|}VYZcseR<BA6h5&l
z<|!j2TVYX=MkaoczUn2?ntm4!G5kg^aUHOIa_#|mlVP|%PRxAsIaYXsosfNEI^8XH
z8l)y1)SeF?hTOv4lE<;%0@owhTV0Uw1wwVEVdcKig^~pO3V1K5fO2mVS`BIf<}z;Q
z#CU?1FGc+euwqv2*bbi8`l=uTlwI2+s+&;BTz@F4cS`MsZOG_;w>a)6ctpPNv|=1F
zkE>uc0$L%$Ra_`>l<PNpd~(_V{Rb_)JT&TnR}Sww{7X#n0X!ku9vnv$+wR&DO%)*h
zgEIp54sb$>@=jH*gQJZ7?yrNb5=PXONFsmwxbMFGBMD~zoE_Mm_w!UFyQ=VoVS%qR
zPTPqhKgqV?T@L&mCWJ3nbNzrlCbRVxD`re7J>?r(aSmA`-f-fzcJFi&+;Tg#t7<z`
zF7hX_v0vDU^pMW3&t$!TZ*EB^%%T%jHVfs9Xh-V3nMZ=ul!Sm*zo0sg;>!HXF)ku$
zyqjCxM^B`ksfpTgUI;WscXhu97n!b|%<`hW>APO_Ez<P3pMTl}+&2?P&r-UkI%30)
zb+7Uw+;Bw|@&X}HDKr~nt|A=uhXOD-AV1S5`9qPlK3k1oN5CEtGoeezXk?Nw@+lbQ
z@~u=C-@icSr-mHsrTbx+sJ}^zK^1wezz$y2rHf(=k?SI!ad;regd~+w+oR+8y~PFT
zeibS{jwq)f!yEG;C?Y=`8a3UREK*-THFa8n6J8iE@FO`-OtoWUoauj2w!^Th@jBqq
z9^^C8XytextYk~PqKPxrQR$n#T+yM41)G7}&_j59fEDd(A;8|p_F1C?{O;7n4uI+S
zigT)VS}0T64q-f%sh#TYlKMT<6gVEG-ZF?ZGrW`EKZg2IBECtxVg`vEARlm4%&Js)
z$$;ZsE>>5&7Nz6v>GGoJ+`Xu_eU%3Ic3;tR+)#koy;;nOU&pZgTn>}2@S<`nHTK#%
z9LL#9-RX7F?XHF>@UMW9`8~%qbcm)-O~j8(-o{X7WGsUi7SQO&842@975ccTE=N2B
z?n>XZr&aF6DIJs}%U8#LU`*BNyZ2?guJ*c5ee0?P#jq_*)Om^O3?zQFtg0q(!K2(+
z*p0nK=fdd2kH5xL<En)VKdSV%pv_t*0zCZE?aa}YV172YR_r}}>>%QB?#~wxF_(|(
z=LyRUvXy*bwOXgIx!^Z(;gOQ#w&J71^Fzz<re&gm1KWaKBI$KP7g><INa7uenBO+M
zk;K(mF@xNg4wnA*X-4ydtzqX>R%6o7qvOi`cu3U+!GO3m>CO95imgC70w0xaHpxR$
zJaWTx&UGn{x@L%3JOAh@QJd&ni?+;{>lYYD4p5<-!3%G~dpgTOg#OGN_Xl#>E=?^?
zi4iHSd+vN52&5=63R#BnLpP)i-jzvr3AZ=3odACAM8k^v(J3!`s`g*#qxR1ehgD%6
zn~AGg6K12WytiNVsJk`^%`XVHAK|{nsQld%p3rAeU5@AF-Kr5m6vFIPCUPg+Lr+8{
zhox@woxT;Se%$ko{qlB1b8=_=n9o|aebyl9y?wlScmZ*OT+-NC;aSs*E`wlANKO<p
zq%fzOkX3BvUE-&n<5APmqFO_qzf9Q$iY$rF>4n^IrU+V0*<HL4abCE8|AQ3wFZd;q
zzj=#=_VKCoVuu?R(23MA{W@90wbh?;{U7Mtyy`%@bA5edGil}p_}+P!Zue&tPO(Pe
zQN_o1IM$x8>oTa1b#@hs#Wj&}V*Px%CtnglbSHkgQ-5SdNhFkCOUj2j^m43}Xn!n5
znAUniPvb67w65I-&(DmSz+;eo74SU~_%EiGH22b7QGA938VbzQ3vF5#V~KeFaBRiO
zDB7iawrt~ycq3^mIf#(|S$=7L{3Q*{`i8^%;ZEe%jz^ejshZKJgN2<*;IlC@sVm{C
zGrbr7+aL2XjWh?oFm{Iw!)_}%K`q>U{anl~hq9X*1f>V4ZnhLA5y1o=Gl3mt_&=9n
zH}$E8{n@P)CK>zU^WH4)@+Z2(xa<^1raN>1(%>E?Q=I2+CwRIi=Z~9Bt~~sE%aEUQ
zCl}h7nKhF8Br<(VYISo=+Qyii*#LWczIVrJ@L_&ey+5pf_I~)Lx_s596S9GZafCA)
zisk??sbKp=CZfZzdqbC(tK=viqyIGDkKYiBXwfu-XYBim&io*hbicdmopu{&8}O5n
zHOyC35P-MuLIobk=NL!nhZTz{EHMKCwd@}ffwSAQ1RDNNVP^sj<@d(%K`Uhskrqn&
zDYB$w--;L}YqB+#gc;kA5z<8KPsoy#B8@0XrL+jqg2<MlNJ@&dSbs?Je+H>{=IVcI
zj&q#z{oH4}&%N`$<DKg<%@T`+^jbwMyV8n7KRfA<#s&w9sEW!A6P+W=rOBoam2N-H
zvM)ql8zg5HXO|`LS==zpIJ~IEGyHq{GIgZ{>!>x{TOA#GNh@t_Ut4p`_P~qE*ziV<
znuL6MHMiTgam0JCTcFzkf@ap2#M284?B^O7%r3lRCt^^vLHgC2P{+h9Sus;l-Uq5J
zB0G&9<m+l(%(+|5877{qpDp?I=v+B?=8@4y>CU_e6$|xdZI0At>X(*>hr;b@IlXi2
zJ7#w!w%c!bVszW{wzX^nJO7J8(%wUYiAAKxp$e;rq!P70F4HKJ`dj-2p37x*In*DZ
zs_i+^zR+4VKi5vUZ^Q9(rs^HJ(keSVHymAR+*7(@b;Rh7TF0GlDo9#ZTuuv%G|qXk
z9kA5BCHsZE&-Aod{@PnjGPxgw|GTn#(Y(?7oxMGG@k_e~)=Ad>d-eOSI&yzfV?6$y
z)k&cvQUleA))D_bYfToIMQaTdU3t~9xrWmq%c`50sv=c%|M8jQIem}5rnu_Xk7`{I
zwL4M0QOCXKygvV%p#9{o7l~%MTl%D)o}{&M)Ce}LG}G&Tu+9In2iub({QPZq?o&5u
z>WnxCr4{Cf=a@ZLsU+8GiHYMS(h_E*t#7+&TPW4RclpQ%VPU^Sn#|X?vQO6zwEeiU
zStjWwg?rELx(8aX(}zE;=8F+s_Fh>o{au!@)zO_?;dt&I&5;^z^UfS~JDZj1fi|!7
zHaZFQQx-*g;Y=TId_x}HZdJ_xs_=#vPmIR0HwQk2yVY(^;yGZM{p65v;o9^ZyYLnI
zcW#bYH(c^obPW!yuS&Aa6aCo}v#+h_?T;Lp$}blTcI9SR&u_dyN%OZqA{(6lD0ks{
zn;5#E%E|9+K9SMlV_Kg|+a#Bn=>!Fvcn{3FI2==!C?7V%%pgF%PD6p9Sn|@gcDD3h
zwZtD~LKSKb3*Xyt)BFqD_eIGx`&(_3_c$4>uGlF3nkxaX`eJ@nr1IxA$xHVx|2M!n
zy1^rHbD6zof_C{}!kMo_N~R}V>YUb5<nD8doos#IU>lfLQTkeb_{;}~=%7Uo-U`V@
zq0K?O@$9ZwmXp53U-5jpRm5ku<wl9Snbh?KfjT~)52gN)*s3EPTdXtJ>&?;I2|ayr
zH>`dvvTnY5^|SrlHI!K8%PZQW4PqRR7j;|YP%{!guSy^G?3a78%VsdXJ2JnFi`~|s
z@M97C@Cm_JhcYAzd;d$xa^VVpOMNz6<5eK%mUGD2*F@oLkk*AQc>;ShA1yI1$<j#H
z;!x5!*)b#T&2^Q<g|*b%oz8}7mluCMWUJIBWHvK5)gj>9_S#N?r6Y+8UhAFNWI8f$
zXq`>$#i4^)Ep(w1{M@U|UkZzFFZ1@4R1tkyP?6hVFRtylY;nMT`H;vtj>6VCZ*~O~
zylg$DYfCy^EnO!0ss3Tw(gPcwN{>`Wy98IbQ?eZ@yoNG!qSA*8pRb|O#p;)yFDN)q
zv6j>&Uo$>h=|H|qjd-)iVfT^tgo{-zK1KG4+!VpRj<4tA%D>2G&E1!@Ahq1D;yPc;
zn}vc86np~apFMVdo?cUdTWkHTpj{!{#p_cK*>(!PcEAfJDr}VC$b9?rPGddid;SNd
zr83`Vcv6+j_6$b9agx8%w%)F$v1^-@faOEQrz5sa8()0zJ(jmowl>_qIkwS0p{%2A
z>-XT*7p_qkZzFK184f1XYPSzn?A*BFHgBSoTEjXjw_Ikbr?DYTE@zR+@}B5X!&4hN
zi|&mz(bje+2gD@^U5!zQbUH-l?YG)=pZ|13ZYsCv@R>-f5j&oD4>R({e#Gpk`sab$
zH~YLtYeHTcaD+RhuPGJ_Yx0aqZaSwQv_hs;HLQeB@Q0hes;fbvx>~H9$l}&{QTXbZ
zry>RS7Lj-d8b(|2#GwxLO%<8V@6B8_rF&C66MlA?KQ`+xv751)^S-^(gPi2fEc$g>
zo}(NK0#=ZEYp;HC<sy97(@rs!(5(|L?n$Qcbp;4tm2?kM-15(sHAGF?5it($&koz4
zwA@QLny}AVQ*i!6%~hobPSP*O?rrVQJuyr1zd46(T?TyF{CKx*34fkd&OgYvN^a!g
z-M|w?e9pEj@I62M9{SVI$9>oYPm>t<RPlO<#Fb>0#(S>n2%*J3Xy!Nf(}wxso32)`
zITl(oPrLt%DsIP;;CEL}sxApWx&KY?9zGXBv$@RD(|KyozXhfq|E6S;P?R!H(|VoY
zOEw90hsyk&HoHS#)+WiH>g&#Pqw0Kh3k>S#F?y1#O6xAXI>J6@^fPHmjJ^Iyn#%PW
zt~8JHmGV_L+J#k!>d8VUW~uAOm&VVp%5JqZ5$=?<%O{K;8Q!qiIpOX{kC(GEIhU~K
zOP;+^sBz<n?xKgv4X0K9eVwaxiVLUnt~B^n${M`=qR7(sl!zCUY7e`EqsG1qf}V}s
z+!&~r@SfUzc~#`$`zGx=u@aiH_cXt0YSayN%?<AkPk80#=E$~|l%G{>>J??xp1q@c
zM+9esn36y(DX}SAb6~i>_lRLs3U|`Y<IltE+ZqGbZ}td_!oOYkB6@SL*Qvuha|3f^
z+C2^h<)<k01c}`goX;L6Fn=K3O@`dgu0zV<@7t2Lj6h%Hh+8PO_ukr%Dr))KYHlrO
zkEFbP)zv{&+ue|LjzdWM@L5VjXd%6;G0=wknzZavMgP1Zi@LUodXeB;BZAk~seicE
z9&b(#T;Emh+TC}Iz@N9<z)~VxV@3ag(3Lk*qP#749u$c9(Kqv1u;z)jn`R%HZOSs$
zy;oIR&E79}N!#2$&Oh>f;`$$jb^<0DUQMURuJ(%z%Pn717@{6a)E?WnKTyldn#O(Q
z{m`c>-mR4)LGGUnazY|R*9nEZ4&=~FO|cwc`~LH7Y>n6_=g^@fnS6-_JeJpZ!UhNg
zqjvjivRw<M>UGPcb_++34aZ(;dVG(J8`3NbyFd2u(OP!>xV*4(iHa<tv7C4|_%vMp
zroal0<u8<k<Z`WL1r@dr41YeGJ^Q}r`MvAYLitO7((A^wch5YVIQIOrm}=tI0+T9=
zad}zA3ZEFkxVYdBjgDte{*~|a{pQp3=-BeHC6`K?lr}f@7nQU+Sp736Nb!-^D!Xs8
z^*t8*7b(5#y~JMLc%@7zPh*b5A@vRK#{vbVsy(CvH;y)p;Rr@-?1CI{dmlFkUdwRt
zW7};s;G1*FvnKvt9ez1J=rqO;7cYvOqocc*yT79&d{l{9Ed1=Ar4xLVrVc(bz(D>Q
zbebn1$HhcSke9O)(b?10%LPH8nD8s_fe+#=1v%V7m>P8282t7(!QI<&dWcqndU!lc
z*f}4ETQG&d;pnt0@MXZ`5a$5DzakFI41RtB5Xp0y5drX5{No6BGC9DX=tOdLboQqr
zToLG;)5<;rhcgEOHW(TLlL-I68&T@3+`SkG5nwe)rUsqn2eDxo@qeOu@Sxksav>b<
zjuQ^YHzj8TqFC$?fNy}SUl78B`jQI?Jo9k4@6ya32rB#`_j9FqlXkl@zPXjTAo99$
zsZS+wxa>?E4w5l7=rl`>2?BUQadk#W7hDV-J_#9^4YkBSC1lu+2X7e8Pe^}#Y>s*A
z4;GxoHBiJyA^eQ5fc`b;v;{jS^se&CN{ESrzlpcCf#{JkvyhuSDTJ93LUn#|pII<t
zJTDH%{cAe-NvDa1P71yJ{k(lpp`N>0)p0&lcou{kYprqkFKqxBF==j@zrbx+y46tV
zFz?i$)Ak>p6jGgC;hUYky%1{ceY0%OLWLD^;&3qY)S%OL9iLF|BoW<E&bDOw^K*gH
z1?I+PcI}A?rJEno%Z>4j3+BwoMtRPD4P9alWEN}k&QlZ8silQbFXJmx`U+7#11ka>
zDc>`bYWOTALP!)QXFP*~;scAZ!o&1Qq0eqqLBtjLmVO73ya=-}B6CWpjF^#daJ0xv
z1&2G_!(0#<*CvEyR|<uQ3=*BXr}n{894`1E^Q78c6Iw4K85P}EY+9qwp^{RegyH|x
zpwrgOV;f&L455p=Gb%=zI$3x8Af0>UnP-*bpA>t$pl01ZqFR^)<!}iK30n?NmP`n}
zeVox!hJ{cK;{#iRQOhT!uwodi+=aQ2whV}84NBv13-2>m@7+n|be%0GV^2vMOzH<|
z#rEbV{KTBT0q)L!+v<dTJ>Mxp0dHNzOvoYpNf__Y?%s&%@V(-{R}>0a6jm;_y9;jn
zli=)4CL<Sb3cqy8Ixv9?OyHXgAmay}=IHPzfU)Bu=9j*!F6RaFuZFz@D}Uhnr<}1#
zA>_}Sp5Cbhxf(2CY}$5^Cggt8B>eFYee;FlINT<GW~CKnQt3kUCnDzTYI>J72WmSL
z)-TrNq?kXH&LkoQ)w8P8Bq~?KUUEr?d1=%n{2`|x+lOJ8K-Wd6?ktElwrj1*{6owr
zRD|VK7q=1uq515Eh(Q~f8gQ)2{iPn?$>g+6Y~-{znd|8wD7*&Lj9yq}%CN*>1D_gn
zT6P|Sg10c!H`ca6fO_ZqTy=x`X9F0V52gm4)|ig~S?MAezQ-w#NT9EQBNCQDDP(2n
zYHK4HeOuxs3&4&iz!9CYf>FW(4-gDJ6LTYdls^xQIy!QJ6UpMwoX04RIl`9nd75l?
zP+V0IT<p>FTN#3(Z)SmjloySis{=!Bfg#vD@2f&UOtkU(2ujZ4*h|VlI1Hi1QV!Q5
zDCRaMs04)yTnMlLTbiKmunFpa&PvfUwnA89w=%Rl0~lc}{)99l7}NMuxIcRtBh6(%
zfoEY&4LZ%H2}PME%m0k+$gly-dvFMQuE)0^FsLMJ{JU7Y3=sQR{CU~RiqN+-RN8=u
zieUQ5^lG3SWuY{*At}g%=Ahx7n0zQWGiYVlf@}W3O4&>>MLBdX@af2GFyjgAWY|)v
z{LBh5Ff`d@ig2i)`o_DZV9FWj<k(V~+k>JI5RC6HZ2$2AOHM(P#JXeuA1lMqT+ajn
z!Hehl%!J6!24k>>u#d1pj1?6S4F0{QTP=a10=*W?P#r}ukh#$<U-6GT1mlM+GvnbH
zf?<kUe?=EkM1Qd1aH`-7wp>@uV;?_>`MLb=`NpW2%5I7LXbY~eR{S<@Rs?<<A{uhd
zah2wPn9CB454@}h6GJ@&Bh2?sJ{1`JEcH$nKrzroCQ=$dfL^|0LI?_~+S_=Ejs!5`
zGBiePjb(_S5c;URByA2+D~Fsg-pON^%xZBoL=h1ai`{!K5Wy5<D0eu_Obt3sMsgYo
zLEB6lk3f0c6ufvIdYT#>=CG*Jm8>XJg1!l1GXcF3uI720c^j<a0IRUIpDu$!q4qG@
zrG+NjA=@8V_Ko9fSs4TiGlWYWF?~|Spg#g_30wP16j>Q&sM?o#?ksbWalnMbF*Z#C
z>k$YubHmLDL*(19HSGdt{$trQdespWR6NS79;cmz{I<XgyL%neVnvwa4e|P@vyOsQ
z6fqG}vxTL{+G!&&rYJ_alif}dcr(V5nw6Un48kTvMDCczXgYx%Z7he2QUe6T++Y(b
zJK|C|Z4{th^&mUgmFS3PrC6Y=mGcGP)&z)Z6TGmH$8d0AT;ut(Ls}S{qhiu*TaK53
zI*EppJr)uJy8sIWT_#-m?EZET*iM$fc0>PVfowz73Hgxl2F3};1Kyor*WNw{R)(dS
zAtE`~G*UTBz=k9UEtV1D%*xoNunxf(@M%ik3XJWLU~Ikm!I_`gm+ht|`gl~+R~F1W
z`x8R)5?Uqp&Bk{RR?J_n3a`|?LmU8mE<!KBzR{KU!h&=S<WLztcxqjUE?9CJAlP>a
z)_yF2zZk;lUsN9k3}FZ^){r`XEXU9UX~>I%Hi0w%h_hs8KWvYGMwS79fymB^ntg6F
zLH`*nz;?#<A*>97F#@q?@cN63V1_neuodqe&VtZ0&_(X)Z`W0JCc(OEW?6gqLo5&j
z3kw2jKfbq4U7!a_z6p97HZx*}Ss;c4bA4TOBd8-@r9x4ScWLbP7`<aG93#{*Cp7;&
zbq7>x23&c?#-ufxg<ztM-nC+7;=~t#JG-G$v8yj2ffZt|jcSZZ|I*DF8_p0*u@)vF
z8IEXMDnu6y8G|j4U?<0h#37l5LqLV3m1NlB4um=&U@NUTm4#q#hI;##y>hIC(V$<!
z3mXt>IxE6T7j@BMyY-f!YRHT}WCm-7_5~J(wGpb!qMbh4!Q#NFf;ZSQ)4j}s_)7y&
zRlIo@ItET2IM^Z?yn^NY1@cT#+@1^kk%TsnZLepqVIj~EJY9pFh!oTnA>YPa-aCx2
zz~u&PSX%R#FqCN!=Oo{6=>k_avmEv+?_m+H0q)Z<UMVTOKM#yBSix8`x{9$3GIbh6
z$kS|6KUDhy*l)0i;>TEo*L0pd7P#B%3&(M39p=PzJi#I;yPch;vE!oV5|IdSWd(!-
zo872aScpG~LYxMos=T3(@m5I=suf%Do8K@&sQ%M1PWut=bwMyzNigp-5$#w;fWJEl
z(cq;{=@(F-F0QX)zEGL^Z4v;tPhI_x_uTAw^zGU=!acV^X0g`jFY&ZD?9SDHGKz+(
z><9O;ciqf3a7^rQu5hc5;yTUUho3~hTbCjJt&+^wcKP70^7sx3Vt<6s0+Iz+m%!Q-
zf|<efsX?cGG?-9QT>adMsBm3zw@=fDc++4~n0so_Y4S$Dq^K!}cmfWzLT_Da$9zfm
zti^=R-y7~zyYE59c`->zT^M2%YQY?;%kGnExC2HZI!|-&t#+22>L7Spyqfu5OJDG$
zp5pF?h?INIwK!R*a})3tn<IgvzlG3w{M@}zdY(b|WAc#W^U%Ps;qr}|)cd2tEXbL&
z^%-cI<(M<{ByK_%-~$)#QO(X|j^Y^!Xb}hD!~*%98gyD&%7m0rROow@6#*?JN1!|5
zWSO%h1aF!dB{ivaMSY+^MbJ3i9cqIJwSm2C|1@Vp9q8_*s4&e!<du841CoK`0k`4*
z)S%N`?)*~wp&Y){p;kkHhW1jCImUAeCWO?Ts2k=I?=q?SE8xadDf5K;DkpS|N5vqD
zg86#}ewj+AeeL-zocz`S<{N3ukEHo6#?6~C9^yYAP{XWdet^nvb<F&6_1_<-!i-~n
z2*z)m81LV3<B!B(hA}_D;y3K_Utzx<XTii{`P0@Z9@{&SzZp02hpq&pnXt9Mbz}HP
MhJs993(FYyKlVxW;{X5v

literal 0
HcmV?d00001


From d1b6ef411b3a3bdb2f276c54a679baea375edb2a Mon Sep 17 00:00:00 2001
From: Josh Brower <josh@defensivedepth.com>
Date: Thu, 9 Nov 2023 09:01:57 -0500
Subject: [PATCH 377/417] remove state file

---
 salt/manager/tools/sbin_jinja/so-elastic-fleet-reset | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/salt/manager/tools/sbin_jinja/so-elastic-fleet-reset b/salt/manager/tools/sbin_jinja/so-elastic-fleet-reset
index 203b2e76e..558590601 100644
--- a/salt/manager/tools/sbin_jinja/so-elastic-fleet-reset
+++ b/salt/manager/tools/sbin_jinja/so-elastic-fleet-reset
@@ -72,6 +72,9 @@ if [[ "$RETURN_CODE" != "0" ]]; then
     exit 1
 fi
 
+status "Removing Integrations State File..."
+rm -f /opt/so/state/eaintegrations.txt
+
 status "Starting Elastic Fleet Setup..."
 so-elastic-fleet-setup
 

From 33f538b73e26c53d762e78611bb6448746f644c3 Mon Sep 17 00:00:00 2001
From: Josh Brower <josh@defensivedepth.com>
Date: Thu, 9 Nov 2023 11:52:06 -0500
Subject: [PATCH 378/417] Upgrade Defend Integration policy

---
 .../elasticfleet/tools/sbin/so-elastic-fleet-common | 13 +++++++++++++
 ...-elastic-fleet-integration-policy-elastic-defend |  8 ++------
 2 files changed, 15 insertions(+), 6 deletions(-)

diff --git a/salt/elasticfleet/tools/sbin/so-elastic-fleet-common b/salt/elasticfleet/tools/sbin/so-elastic-fleet-common
index c0b4db53a..48ff3518a 100644
--- a/salt/elasticfleet/tools/sbin/so-elastic-fleet-common
+++ b/salt/elasticfleet/tools/sbin/so-elastic-fleet-common
@@ -68,6 +68,19 @@ elastic_fleet_integration_update() {
     curl -K /opt/so/conf/elasticsearch/curl.config -L -X PUT "localhost:5601/api/fleet/package_policies/$UPDATE_ID" -H 'kbn-xsrf: true' -H 'Content-Type: application/json' -d "$JSON_STRING"
 }
 
+elastic_fleet_integration_policy_upgrade() {
+
+    INTEGRATION_ID=$1
+
+    JSON_STRING=$( jq -n \
+                    --arg INTEGRATIONID "$INTEGRATION_ID" \
+                    '{"packagePolicyIds":[$INTEGRATIONID]}'
+                    )
+
+    curl -K /opt/so/conf/elasticsearch/curl.config -L -X POST "localhost:5601/api/fleet/package_policies/upgrade" -H 'kbn-xsrf: true' -H 'Content-Type: application/json' -d "$JSON_STRING"
+}
+
+
 elastic_fleet_package_version_check() {
     PACKAGE=$1
     curl -s -K /opt/so/conf/elasticsearch/curl.config -b "sid=$SESSIONCOOKIE" -L -X GET "localhost:5601/api/fleet/epm/packages/$PACKAGE" | jq -r '.item.version'
diff --git a/salt/elasticfleet/tools/sbin/so-elastic-fleet-integration-policy-elastic-defend b/salt/elasticfleet/tools/sbin/so-elastic-fleet-integration-policy-elastic-defend
index c4a7d39fd..636942490 100755
--- a/salt/elasticfleet/tools/sbin/so-elastic-fleet-integration-policy-elastic-defend
+++ b/salt/elasticfleet/tools/sbin/so-elastic-fleet-integration-policy-elastic-defend
@@ -14,12 +14,8 @@ do
   printf "\n\nInitial Endpoints Policy - Loading $INTEGRATION\n"
   elastic_fleet_integration_check "endpoints-initial" "$INTEGRATION"
   if [ -n "$INTEGRATION_ID" ]; then
-    if [ "$1" = "--force" ]; then
-      printf "\n\nIntegration $NAME exists - Updating integration\n"
-      elastic_fleet_integration_update "$INTEGRATION_ID" "@$INTEGRATION"
-    else
-      printf "\n\nIntegration $NAME exists - Not updating - rerun with --force to force the update.\n"
-    fi
+      printf "\n\nIntegration $NAME exists - Upgrading integration policy\n"
+      elastic_fleet_integration_policy_upgrade "$INTEGRATION_ID"
   else
     printf "\n\nIntegration does not exist - Creating integration\n"
     elastic_fleet_integration_create "@$INTEGRATION"

From 193c9d202eb4005388db7a191a9c284211138c0b Mon Sep 17 00:00:00 2001
From: Josh Brower <josh@defensivedepth.com>
Date: Thu, 9 Nov 2023 14:30:00 -0500
Subject: [PATCH 379/417] Remove unneeded datastreams

---
 salt/manager/tools/sbin_jinja/so-elastic-fleet-reset | 9 +++++++++
 1 file changed, 9 insertions(+)

diff --git a/salt/manager/tools/sbin_jinja/so-elastic-fleet-reset b/salt/manager/tools/sbin_jinja/so-elastic-fleet-reset
index 558590601..068b3ce8f 100644
--- a/salt/manager/tools/sbin_jinja/so-elastic-fleet-reset
+++ b/salt/manager/tools/sbin_jinja/so-elastic-fleet-reset
@@ -59,6 +59,15 @@ do
     done
 done
 
+status "Deleting Fleet-related Data Streams..."
+DATASTREAMS="logs-suricata-so","logs-kratos-so","logs-soc-so","logs-zeek-so"
+JSON_STRING=$( jq -n \
+                --arg DATASTREAMLIST "$DATASTREAMS" \
+                '{"dataStreams":[$DATASTREAMLIST]}'
+                )
+curl -K /opt/so/conf/elasticsearch/curl.config -L -X POST "localhost:5601/api/index_management/delete_data_streams" -H 'kbn-xsrf: true' -H 'Content-Type: application/json' -d "$JSON_STRING"
+
+
 status "Restarting Kibana..."
 so-kibana-restart --force
 

From 551f7831decf0d0d73fa2dd9e2814fa37d1fabe0 Mon Sep 17 00:00:00 2001
From: Josh Brower <josh@defensivedepth.com>
Date: Thu, 9 Nov 2023 15:01:56 -0500
Subject: [PATCH 380/417] Add more clarity to message

---
 salt/manager/tools/sbin_jinja/so-elastic-fleet-reset | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/salt/manager/tools/sbin_jinja/so-elastic-fleet-reset b/salt/manager/tools/sbin_jinja/so-elastic-fleet-reset
index 068b3ce8f..564156af9 100644
--- a/salt/manager/tools/sbin_jinja/so-elastic-fleet-reset
+++ b/salt/manager/tools/sbin_jinja/so-elastic-fleet-reset
@@ -13,7 +13,10 @@ require_manager
 
 # Inform user we are about to remove Elastic Fleet data
 echo
-echo "This script will remove the current Elastic Fleet install & all of its data and rerun Elastic Fleet setup."
+echo "This script will remove the current Elastic Fleet install and all of its data and then rerun Elastic Fleet setup."
+echo "This includes data previously ingested with Fleet such as Zeek and Suricata logs."
+echo "Deployed Elastic Agents will no longer be enrolled and will need to be reinstalled."
+echo "This script should only be used as a last resort to reinstall Elastic Fleet." 
 echo
 echo "If you would like to proceed, type AGREE and hit ENTER."
 echo

From 4bb1dabb8921087ca95d53d56662712fdd9b7947 Mon Sep 17 00:00:00 2001
From: weslambert <wlambertts@gmail.com>
Date: Fri, 10 Nov 2023 10:14:59 -0500
Subject: [PATCH 381/417] Add elastic_agent

---
 salt/elasticfleet/defaults.yaml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/salt/elasticfleet/defaults.yaml b/salt/elasticfleet/defaults.yaml
index 61ae5999f..004dea94d 100644
--- a/salt/elasticfleet/defaults.yaml
+++ b/salt/elasticfleet/defaults.yaml
@@ -43,6 +43,7 @@ elasticfleet:
     - cloudflare
     - crowdstrike
     - darktrace
+    - elastic_agent
     - elasticsearch
     - endpoint
     - f5_bigip

From 583ec5176e41f852f2f1bed3cf41de9dafd81ab1 Mon Sep 17 00:00:00 2001
From: weslambert <wlambertts@gmail.com>
Date: Fri, 10 Nov 2023 10:15:52 -0500
Subject: [PATCH 382/417] Add package check

---
 salt/elasticfleet/enabled.sls | 11 +++++++++++
 1 file changed, 11 insertions(+)

diff --git a/salt/elasticfleet/enabled.sls b/salt/elasticfleet/enabled.sls
index 320b6d6b6..fef85d24c 100644
--- a/salt/elasticfleet/enabled.sls
+++ b/salt/elasticfleet/enabled.sls
@@ -96,6 +96,17 @@ so-elastic-fleet:
 {%   endif %}
 
 {%  if GLOBALS.role != "so-fleet" %}
+so-elastic-fleet-package-statefile:
+  file.managed:
+    - name: /opt/so/state/elastic_fleet_packages.txt
+    - contents: {{ELASTICFLEETMERGED.packages}}
+
+so-elastic-fleet-package-upgrade:
+  cmd.run:
+    - name: /usr/sbin/so-elastic-fleet-package-upgrade
+    - onchanges:
+      - file: /opt/so/state/elastic_fleet_packages.txt
+
 so-elastic-fleet-integrations:
   cmd.run:
     - name: /usr/sbin/so-elastic-fleet-integration-policy-load

From fe7af49a829ae820907442f4667ddfbbc325cfd6 Mon Sep 17 00:00:00 2001
From: Mike Reeves <mike.reeves@securityonionsolutions.com>
Date: Mon, 13 Nov 2023 08:37:46 -0500
Subject: [PATCH 383/417] Update soup

---
 salt/manager/tools/sbin/soup | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/salt/manager/tools/sbin/soup b/salt/manager/tools/sbin/soup
index 7c3c85256..42ea7e764 100755
--- a/salt/manager/tools/sbin/soup
+++ b/salt/manager/tools/sbin/soup
@@ -823,11 +823,12 @@ main() {
 
   if [[ $is_airgap -eq 0 ]]; then
     update_airgap_repo
-    yum clean all
+    dnf clean all
     check_os_updates
   elif [[ $OS == 'oracle' ]]; then
     # sync remote repo down to local if not airgap
     repo_sync
+    dnf clean all
     check_os_updates
   fi
 

From bc178a9784ee57e72525e4da81ab17ef12a9b63e Mon Sep 17 00:00:00 2001
From: Mike Reeves <mike.reeves@securityonionsolutions.com>
Date: Mon, 13 Nov 2023 13:11:49 -0500
Subject: [PATCH 384/417] 2.4.30

---
 DOWNLOAD_AND_VERIFY_ISO.md                 |  22 ++++++++++-----------
 sigs/securityonion-2.4.30-20231113.iso.sig | Bin 0 -> 566 bytes
 2 files changed, 11 insertions(+), 11 deletions(-)
 create mode 100644 sigs/securityonion-2.4.30-20231113.iso.sig

diff --git a/DOWNLOAD_AND_VERIFY_ISO.md b/DOWNLOAD_AND_VERIFY_ISO.md
index 539dd9e8e..a6b5469f0 100644
--- a/DOWNLOAD_AND_VERIFY_ISO.md
+++ b/DOWNLOAD_AND_VERIFY_ISO.md
@@ -1,18 +1,18 @@
-### 2.4.20-20231012 ISO image released on 2023/10/12
+### 2.4.30-20231113 ISO image released on 2023/11/13
 
 
 
 ### Download and Verify
 
-2.4.20-20231012 ISO image:  
-https://download.securityonion.net/file/securityonion/securityonion-2.4.20-20231012.iso
+2.4.30-20231113 ISO image:  
+https://download.securityonion.net/file/securityonion/securityonion-2.4.30-20231113.iso
  
-MD5: 7D6ACA843068BA9432B3FF63BFD1EF0F  
-SHA1: BEF2B906066A1B04921DF0B80E7FDD4BC8ECED5C  
-SHA256: 5D511D50F11666C69AE12435A47B9A2D30CB3CC88F8D38DC58A5BC0ECADF1BF5  
+MD5: 15EB5A74782E4C2D5663D29E275839F6  
+SHA1: BBD4A7D77ADDA94B866F1EFED846A83DDFD34D73  
+SHA256: 4509EB8E11DB49C6CD3905C74C5525BDB1F773488002179A846E00DE8E499988  
 
 Signature for ISO image:  
-https://github.com/Security-Onion-Solutions/securityonion/raw/2.4/main/sigs/securityonion-2.4.20-20231012.iso.sig
+https://github.com/Security-Onion-Solutions/securityonion/raw/2.4/main/sigs/securityonion-2.4.30-20231113.iso.sig
 
 Signing key:  
 https://raw.githubusercontent.com/Security-Onion-Solutions/securityonion/2.4/main/KEYS  
@@ -26,22 +26,22 @@ wget https://raw.githubusercontent.com/Security-Onion-Solutions/securityonion/2.
 
 Download the signature file for the ISO:  
 ```
-wget https://github.com/Security-Onion-Solutions/securityonion/raw/2.4/main/sigs/securityonion-2.4.20-20231012.iso.sig
+wget https://github.com/Security-Onion-Solutions/securityonion/raw/2.4/main/sigs/securityonion-2.4.30-20231113.iso.sig
 ```
 
 Download the ISO image:  
 ```
-wget https://download.securityonion.net/file/securityonion/securityonion-2.4.20-20231012.iso
+wget https://download.securityonion.net/file/securityonion/securityonion-2.4.30-20231113.iso
 ```
 
 Verify the downloaded ISO image using the signature file:  
 ```
-gpg --verify securityonion-2.4.20-20231012.iso.sig securityonion-2.4.20-20231012.iso
+gpg --verify securityonion-2.4.30-20231113.iso.sig securityonion-2.4.30-20231113.iso
 ```
 
 The output should show "Good signature" and the Primary key fingerprint should match what's shown below:
 ```
-gpg: Signature made Thu 12 Oct 2023 01:28:32 PM EDT using RSA key ID FE507013
+gpg: Signature made Mon 13 Nov 2023 09:23:21 AM EST using RSA key ID FE507013
 gpg: Good signature from "Security Onion Solutions, LLC <info@securityonionsolutions.com>"
 gpg: WARNING: This key is not certified with a trusted signature!
 gpg:          There is no indication that the signature belongs to the owner.
diff --git a/sigs/securityonion-2.4.30-20231113.iso.sig b/sigs/securityonion-2.4.30-20231113.iso.sig
new file mode 100644
index 0000000000000000000000000000000000000000..1fc98e60ac02b9d9827e0b52239aa16d74ed532f
GIT binary patch
literal 566
zcmV-60?GY}0y6{v0SEvc79j-41gSkXz6^6dp_W8^5Ma0dP;e6k0%cM$SpW(N5PT3|
zxBgIY6R?aA{ya7VYS9#C4^L=R!FB1)Jym;jvF+#h#OuB6UcPWsyO}3zH1ZB^w<wcj
zBNq}vHI1Stj0h)Ybtfe!6!Vg8Cvx@IAWc3Tb9pJkWliGDCpu;OxT}8wrrCvBHNAiw
z{u{Q?cs=b>=^~=1dwBN2O&g5JdLGIxcMDt5PG5=@J#dzrm52#(R?2loeqA3Rd}@)r
zS%12SBo!b}D#jgz#>wyo|J%(u0y@qn!9g%U-}&R(dxeYcNU5D537)KaBB;KhQ)cno
z_LnTABqBjCz-^*0SmS7TXf-}VZW;*_(^N+Z#3Fa4%$7Arn8Kh(<-?azDLT_c(XVca
z=aJls#~4TP)tPl_Z6B<9mzB1wT4+i#tTsOp5LJW7c51`DD3Y$L(hw;X*o@ABf`-~E
zVJX-YdA~>uLF5S7083x>xGGrd5E~$`jPaPQWPhOSS5@@hqoWb80`ycT8Xjm5AZx4m
z$Epp0fDu}fgGCe~=|5*W42RQiIf-1D^JFzbL0~+rZ1y%|M=qjZGp@SU<*5vzl!1$d
z0L979NHOgrq!|XP`PU1Gi$jH$j!+M$L*+h4g**$|IOEBJJKp+*l)p(m%K5amwu^7A
zI52vhXnin>OQr|Mb}^HP^*c6ESk^X&sPQK#LS+{+{5Vc&jTa+G#$tgA@1nj~nQKgw
E2z{{s=Kufz

literal 0
HcmV?d00001


From 567e19e5d7fa1e79e793c317350f1d01a826937e Mon Sep 17 00:00:00 2001
From: Mike Reeves <mike.reeves@securityonionsolutions.com>
Date: Mon, 13 Nov 2023 15:38:23 -0500
Subject: [PATCH 385/417] Update VERSION

---
 VERSION | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/VERSION b/VERSION
index 8ea99f559..29630cd6d 100644
--- a/VERSION
+++ b/VERSION
@@ -1 +1 @@
-2.4.30
+2.4.40

From 4666b993e57693033280bf769660ebfdb4a6daaf Mon Sep 17 00:00:00 2001
From: Doug Burks <doug.burks@securityonionsolutions.com>
Date: Tue, 14 Nov 2023 09:58:45 -0500
Subject: [PATCH 386/417] Update defaults.yaml

---
 salt/soc/defaults.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/salt/soc/defaults.yaml b/salt/soc/defaults.yaml
index ceca9ef31..4e6406d3e 100644
--- a/salt/soc/defaults.yaml
+++ b/salt/soc/defaults.yaml
@@ -1240,7 +1240,7 @@ soc:
               showSubtitle: true
             - name: HTTP
               description: HTTP with exe downloads
-              query: 'tags:http AND (file.resp_mime_types:dosexec OR file.resp_mime_types:executable) | groupby http.virtual_host'
+              query: 'tags:http AND file.resp_mime_types:*exec* | groupby http.virtual_host'
               showSubtitle: true
             - name: Intel
               description: Intel framework hits grouped by indicator

From f7fa4d05fb0c00a9a6394935208a974c951f1d7a Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Tue, 14 Nov 2023 15:40:52 -0500
Subject: [PATCH 387/417] avoid startup error

---
 salt/common/tools/sbin/so-log-check | 1 +
 1 file changed, 1 insertion(+)

diff --git a/salt/common/tools/sbin/so-log-check b/salt/common/tools/sbin/so-log-check
index dc84ba5bd..d2582ff94 100755
--- a/salt/common/tools/sbin/so-log-check
+++ b/salt/common/tools/sbin/so-log-check
@@ -109,6 +109,7 @@ if [[ $EXCLUDE_STARTUP_ERRORS == 'Y' ]]; then
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|timeout exceeded"             # server not yet ready (telegraf waiting on elasticsearch)
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|influxsize kbytes"            # server not yet ready (telegraf waiting on influx)
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|expected field at"            # server not yet ready (telegraf waiting on health data)
+    EXCLUDED_ERRORS="$EXCLUDED_ERRORS|connection timed out"         # server not yet ready (telegraf plugin unable to connect)
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|cached the public key"        # server not yet ready (salt minion waiting on key acceptance)
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|no ingest nodes"              # server not yet ready (logstash waiting on elastic)
     EXCLUDED_ERRORS="$EXCLUDED_ERRORS|failed to poll"               # server not yet ready (sensoroni waiting on soc)

From 3ed7b368659a913e5f37ce90d7822209c775174a Mon Sep 17 00:00:00 2001
From: Wes <wlambertts@gmail.com>
Date: Thu, 16 Nov 2023 15:45:38 +0000
Subject: [PATCH 388/417] Discard corrupt integration

---
 salt/kibana/defaults.yaml | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/salt/kibana/defaults.yaml b/salt/kibana/defaults.yaml
index 282521d12..90b75b8c4 100644
--- a/salt/kibana/defaults.yaml
+++ b/salt/kibana/defaults.yaml
@@ -21,8 +21,10 @@ kibana:
         appenders: 
           - default
           - file
+    migrations:
+      discardCorruptObjects: "8.10.4"
     telemetry:
-        enabled: False
+      enabled: False
     security:
       showInsecureClusterWarning: False
     xpack:

From d5dd0d88ede1d931916d4c764e780c076a1b7760 Mon Sep 17 00:00:00 2001
From: Josh Brower <josh@defensivedepth.com>
Date: Thu, 16 Nov 2023 10:58:23 -0500
Subject: [PATCH 389/417] .30 hotfix

---
 salt/manager/tools/sbin/soup | 8 ++++++--
 1 file changed, 6 insertions(+), 2 deletions(-)

diff --git a/salt/manager/tools/sbin/soup b/salt/manager/tools/sbin/soup
index 42ea7e764..9a2ae890d 100755
--- a/salt/manager/tools/sbin/soup
+++ b/salt/manager/tools/sbin/soup
@@ -735,8 +735,12 @@ apply_hotfix() {
     . /usr/sbin/so-elastic-fleet-common
     elastic_fleet_integration_remove endpoints-initial elastic-defend-endpoints
     /usr/sbin/so-elastic-fleet-integration-policy-elastic-defend
-#  elif [[ "$INSTALLEDVERSION" == "2.3.110" ]] ; then
-#    2_3_10_hotfix_1
+  elif [[ "$INSTALLEDVERSION" == "2.4.30" ]] ; then
+    rm -f /opt/so/conf/elastic-fleet/integrations/endpoints-initial/elastic-defend-endpoints.json
+    so-kibana-restart
+    . /usr/sbin/so-elastic-fleet-common
+    elastic_fleet_integration_remove endpoints-initial elastic-defend-endpoints
+    /usr/sbin/so-elastic-fleet-integration-policy-elastic-defend
   else
    echo "No actions required. ($INSTALLEDVERSION/$HOTFIXVERSION)"
   fi

From ff8cd194f1f2adc269d7aac2a71039256ea2bd37 Mon Sep 17 00:00:00 2001
From: Josh Brower <josh@defensivedepth.com>
Date: Thu, 16 Nov 2023 11:21:34 -0500
Subject: [PATCH 390/417] Make sure kibana API is up

---
 salt/manager/tools/sbin/soup | 13 ++++++++++++-
 1 file changed, 12 insertions(+), 1 deletion(-)

diff --git a/salt/manager/tools/sbin/soup b/salt/manager/tools/sbin/soup
index 9a2ae890d..a4bd6a4d5 100755
--- a/salt/manager/tools/sbin/soup
+++ b/salt/manager/tools/sbin/soup
@@ -737,10 +737,21 @@ apply_hotfix() {
     /usr/sbin/so-elastic-fleet-integration-policy-elastic-defend
   elif [[ "$INSTALLEDVERSION" == "2.4.30" ]] ; then
     rm -f /opt/so/conf/elastic-fleet/integrations/endpoints-initial/elastic-defend-endpoints.json
-    so-kibana-restart
+    so-kibana-restart --force
     . /usr/sbin/so-elastic-fleet-common
+
+    echo "Checking to make sure that Kibana API is up & ready..."
+    RETURN_CODE=0
+    wait_for_web_response "http://localhost:5601/api/fleet/settings" "fleet" 300 "curl -K /opt/so/conf/elasticsearch/curl.config"
+    RETURN_CODE=$?
+    if [[ "$RETURN_CODE" != "0" ]]; then
+        echo "Kibana API not accessible, exiting script..."
+        exit 1
+    fi
+
     elastic_fleet_integration_remove endpoints-initial elastic-defend-endpoints
     /usr/sbin/so-elastic-fleet-integration-policy-elastic-defend
+    salt-call state.highstate
   else
    echo "No actions required. ($INSTALLEDVERSION/$HOTFIXVERSION)"
   fi

From 109ee55d8c6f84ce27a2e44dff3cfb29ad15be87 Mon Sep 17 00:00:00 2001
From: Josh Brower <josh@defensivedepth.com>
Date: Thu, 16 Nov 2023 11:37:38 -0500
Subject: [PATCH 391/417] Add to pre for .30 soup

---
 salt/manager/tools/sbin/soup | 16 ++++++++++++++++
 1 file changed, 16 insertions(+)

diff --git a/salt/manager/tools/sbin/soup b/salt/manager/tools/sbin/soup
index a4bd6a4d5..18a436c01 100755
--- a/salt/manager/tools/sbin/soup
+++ b/salt/manager/tools/sbin/soup
@@ -529,6 +529,22 @@ up_to_2.4.20() {
 }
 
 up_to_2.4.30() {
+  rm -f /opt/so/conf/elastic-fleet/integrations/endpoints-initial/elastic-defend-endpoints.json
+  . /usr/sbin/so-elastic-fleet-common
+
+  echo "Checking to make sure that Kibana API is up & ready..."
+  RETURN_CODE=0
+  wait_for_web_response "http://localhost:5601/api/fleet/settings" "fleet" 300 "curl -K /opt/so/conf/elasticsearch/curl.config"
+  RETURN_CODE=$?
+  if [[ "$RETURN_CODE" != "0" ]]; then
+      echo "Kibana API not accessible, exiting script..."
+      exit 1
+  fi
+
+  elastic_fleet_integration_remove endpoints-initial elastic-defend-endpoints
+  /usr/sbin/so-elastic-fleet-integration-policy-elastic-defend
+  salt-call state.highstate
+
   determine_elastic_agent_upgrade
   rm -f /opt/so/state/estemplates*.txt
 

From 6b8e48c973567c775919fcefb7c10e811d4ad0b7 Mon Sep 17 00:00:00 2001
From: Josh Brower <josh@defensivedepth.com>
Date: Thu, 16 Nov 2023 11:41:20 -0500
Subject: [PATCH 392/417] Remove highstate

---
 salt/manager/tools/sbin/soup | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/salt/manager/tools/sbin/soup b/salt/manager/tools/sbin/soup
index 18a436c01..67b291ddf 100755
--- a/salt/manager/tools/sbin/soup
+++ b/salt/manager/tools/sbin/soup
@@ -529,6 +529,8 @@ up_to_2.4.20() {
 }
 
 up_to_2.4.30() {
+
+  # Remove older defend integration json
   rm -f /opt/so/conf/elastic-fleet/integrations/endpoints-initial/elastic-defend-endpoints.json
   . /usr/sbin/so-elastic-fleet-common
 
@@ -543,8 +545,8 @@ up_to_2.4.30() {
 
   elastic_fleet_integration_remove endpoints-initial elastic-defend-endpoints
   /usr/sbin/so-elastic-fleet-integration-policy-elastic-defend
-  salt-call state.highstate
 
+  # Elastic Update for this release, so download Elastic Agent files
   determine_elastic_agent_upgrade
   rm -f /opt/so/state/estemplates*.txt
 

From b6e2df45c76860e51f328eb533f7ebe88aeb8b28 Mon Sep 17 00:00:00 2001
From: weslambert <wlambertts@gmail.com>
Date: Thu, 16 Nov 2023 14:48:00 -0500
Subject: [PATCH 393/417] Update HOTFIX

---
 HOTFIX | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/HOTFIX b/HOTFIX
index d3f5a12fa..57030dc85 100644
--- a/HOTFIX
+++ b/HOTFIX
@@ -1 +1 @@
-
+20231117

From de99cda766115eb9b41ef231a6921b419ab4a073 Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Thu, 16 Nov 2023 15:51:17 -0500
Subject: [PATCH 394/417] improve timing of responses

---
 salt/soc/files/bin/salt-relay.sh | 10 ++++++----
 1 file changed, 6 insertions(+), 4 deletions(-)

diff --git a/salt/soc/files/bin/salt-relay.sh b/salt/soc/files/bin/salt-relay.sh
index fea81728d..783018b3a 100755
--- a/salt/soc/files/bin/salt-relay.sh
+++ b/salt/soc/files/bin/salt-relay.sh
@@ -37,12 +37,14 @@ function poll() {
 
 function respond() {
   file="$QUEUE_DIR/$1.response"
+  tmpfile=${file}.tmp
   response=$2
 
-  touch "$file"
-  chmod 660 "$file"
-  chown "$QUEUE_OWNER:$QUEUE_GROUP" "$file"
-  echo "$response" > "$file"
+  touch "$tmpfile"
+  chmod 660 "$tmpfile"
+  chown "$QUEUE_OWNER:$QUEUE_GROUP" "$tmpfile"
+  echo "$response" > "$tmpfile"
+  mv $tmpfile $file
 }
 
 function list_minions() {

From c09e8f0d718a2559673ace48e7bde7e113bbdac8 Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Thu, 16 Nov 2023 15:58:48 -0500
Subject: [PATCH 395/417] improve timing of responses

---
 salt/soc/files/bin/salt-relay.sh | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/salt/soc/files/bin/salt-relay.sh b/salt/soc/files/bin/salt-relay.sh
index 783018b3a..4b183b20a 100755
--- a/salt/soc/files/bin/salt-relay.sh
+++ b/salt/soc/files/bin/salt-relay.sh
@@ -37,7 +37,7 @@ function poll() {
 
 function respond() {
   file="$QUEUE_DIR/$1.response"
-  tmpfile=${file}.tmp
+  tmpfile="${file}.tmp"
   response=$2
 
   touch "$tmpfile"

From 5920a144788f23d2ae38d92854cf7b541bf9d15f Mon Sep 17 00:00:00 2001
From: Josh Brower <josh@defensivedepth.com>
Date: Thu, 16 Nov 2023 20:34:01 -0500
Subject: [PATCH 396/417] Move API check logic

---
 salt/kibana/tools/sbin/so-kibana-api-check | 20 ++++++++++++++++++++
 salt/manager/tools/sbin/soup               | 19 +------------------
 2 files changed, 21 insertions(+), 18 deletions(-)
 create mode 100644 salt/kibana/tools/sbin/so-kibana-api-check

diff --git a/salt/kibana/tools/sbin/so-kibana-api-check b/salt/kibana/tools/sbin/so-kibana-api-check
new file mode 100644
index 000000000..15cd85b19
--- /dev/null
+++ b/salt/kibana/tools/sbin/so-kibana-api-check
@@ -0,0 +1,20 @@
+#!/bin/bash
+#
+# Copyright Security Onion Solutions LLC and/or licensed to Security Onion Solutions LLC under one
+# or more contributor license agreements. Licensed under the Elastic License 2.0 as shown at
+# https://securityonion.net/license; you may not use this file except in compliance with the
+# Elastic License 2.0.
+
+. /usr/sbin/so-common
+
+echo "Checking to make sure that Kibana API is up & ready..."
+RETURN_CODE=0
+wait_for_web_response "http://localhost:5601/api/fleet/settings" "fleet" 300 "curl -K /opt/so/conf/elasticsearch/curl.config"
+RETURN_CODE=$?
+if [[ "$RETURN_CODE" != "0" ]]; then
+    echo "Kibana API not accessible, exiting script..."
+    exit 1
+fi
+
+
+
diff --git a/salt/manager/tools/sbin/soup b/salt/manager/tools/sbin/soup
index 67b291ddf..0de956da1 100755
--- a/salt/manager/tools/sbin/soup
+++ b/salt/manager/tools/sbin/soup
@@ -534,15 +534,6 @@ up_to_2.4.30() {
   rm -f /opt/so/conf/elastic-fleet/integrations/endpoints-initial/elastic-defend-endpoints.json
   . /usr/sbin/so-elastic-fleet-common
 
-  echo "Checking to make sure that Kibana API is up & ready..."
-  RETURN_CODE=0
-  wait_for_web_response "http://localhost:5601/api/fleet/settings" "fleet" 300 "curl -K /opt/so/conf/elasticsearch/curl.config"
-  RETURN_CODE=$?
-  if [[ "$RETURN_CODE" != "0" ]]; then
-      echo "Kibana API not accessible, exiting script..."
-      exit 1
-  fi
-
   elastic_fleet_integration_remove endpoints-initial elastic-defend-endpoints
   /usr/sbin/so-elastic-fleet-integration-policy-elastic-defend
 
@@ -756,17 +747,9 @@ apply_hotfix() {
   elif [[ "$INSTALLEDVERSION" == "2.4.30" ]] ; then
     rm -f /opt/so/conf/elastic-fleet/integrations/endpoints-initial/elastic-defend-endpoints.json
     so-kibana-restart --force
+    so-kibana-api-check
     . /usr/sbin/so-elastic-fleet-common
 
-    echo "Checking to make sure that Kibana API is up & ready..."
-    RETURN_CODE=0
-    wait_for_web_response "http://localhost:5601/api/fleet/settings" "fleet" 300 "curl -K /opt/so/conf/elasticsearch/curl.config"
-    RETURN_CODE=$?
-    if [[ "$RETURN_CODE" != "0" ]]; then
-        echo "Kibana API not accessible, exiting script..."
-        exit 1
-    fi
-
     elastic_fleet_integration_remove endpoints-initial elastic-defend-endpoints
     /usr/sbin/so-elastic-fleet-integration-policy-elastic-defend
     salt-call state.highstate

From 089a111ae83129503bad90086df960d79a392338 Mon Sep 17 00:00:00 2001
From: Josh Brower <josh@defensivedepth.com>
Date: Fri, 17 Nov 2023 11:20:13 -0500
Subject: [PATCH 397/417] use updated code

---
 salt/manager/tools/sbin/soup | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/salt/manager/tools/sbin/soup b/salt/manager/tools/sbin/soup
index 0de956da1..7123a36e5 100755
--- a/salt/manager/tools/sbin/soup
+++ b/salt/manager/tools/sbin/soup
@@ -532,7 +532,8 @@ up_to_2.4.30() {
 
   # Remove older defend integration json
   rm -f /opt/so/conf/elastic-fleet/integrations/endpoints-initial/elastic-defend-endpoints.json
-  . /usr/sbin/so-elastic-fleet-common
+
+  . $UPDATE_DIR/salt/elasticfleet/tools/sbin/so-elastic-fleet-common
 
   elastic_fleet_integration_remove endpoints-initial elastic-defend-endpoints
   /usr/sbin/so-elastic-fleet-integration-policy-elastic-defend

From ca1498fca160cebebdaad028566e4c90f7e99e5e Mon Sep 17 00:00:00 2001
From: Josh Brower <josh@defensivedepth.com>
Date: Fri, 17 Nov 2023 12:19:22 -0500
Subject: [PATCH 398/417] Dont update Defend Integration

---
 salt/manager/tools/sbin/soup | 1 -
 1 file changed, 1 deletion(-)

diff --git a/salt/manager/tools/sbin/soup b/salt/manager/tools/sbin/soup
index 7123a36e5..5168918d2 100755
--- a/salt/manager/tools/sbin/soup
+++ b/salt/manager/tools/sbin/soup
@@ -536,7 +536,6 @@ up_to_2.4.30() {
   . $UPDATE_DIR/salt/elasticfleet/tools/sbin/so-elastic-fleet-common
 
   elastic_fleet_integration_remove endpoints-initial elastic-defend-endpoints
-  /usr/sbin/so-elastic-fleet-integration-policy-elastic-defend
 
   # Elastic Update for this release, so download Elastic Agent files
   determine_elastic_agent_upgrade

From 7aadc3851f90d0e61a5f13773e9b9c8eb993441f Mon Sep 17 00:00:00 2001
From: Josh Brower <josh@defensivedepth.com>
Date: Fri, 17 Nov 2023 13:08:15 -0500
Subject: [PATCH 399/417] Remove state file

---
 salt/manager/tools/sbin/soup | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/salt/manager/tools/sbin/soup b/salt/manager/tools/sbin/soup
index 5168918d2..c9d4b1936 100755
--- a/salt/manager/tools/sbin/soup
+++ b/salt/manager/tools/sbin/soup
@@ -530,13 +530,14 @@ up_to_2.4.20() {
 
 up_to_2.4.30() {
 
-  # Remove older defend integration json
+  # Remove older defend integration json & installed integration
   rm -f /opt/so/conf/elastic-fleet/integrations/endpoints-initial/elastic-defend-endpoints.json
 
   . $UPDATE_DIR/salt/elasticfleet/tools/sbin/so-elastic-fleet-common
-
   elastic_fleet_integration_remove endpoints-initial elastic-defend-endpoints
 
+  rm -f /opt/so/state/eaintegrations.txt
+
   # Elastic Update for this release, so download Elastic Agent files
   determine_elastic_agent_upgrade
   rm -f /opt/so/state/estemplates*.txt

From e226efa79903d9e257c5a3ba4df76363cc722417 Mon Sep 17 00:00:00 2001
From: Mike Reeves <mike.reeves@securityonionsolutions.com>
Date: Fri, 17 Nov 2023 16:35:12 -0500
Subject: [PATCH 400/417] Update soup

---
 salt/manager/tools/sbin/soup | 10 +++++++++-
 1 file changed, 9 insertions(+), 1 deletion(-)

diff --git a/salt/manager/tools/sbin/soup b/salt/manager/tools/sbin/soup
index c9d4b1936..9b27ec82c 100755
--- a/salt/manager/tools/sbin/soup
+++ b/salt/manager/tools/sbin/soup
@@ -450,6 +450,8 @@ post_to_2.4.20() {
 post_to_2.4.30() {
   echo "Regenerating Elastic Agent Installers"
   /sbin/so-elastic-agent-gen-installers
+  stop_salt_minion
+  systemctl_func "start" "salt-minion"
   POSTVERSION=2.4.30
 }
 
@@ -753,7 +755,13 @@ apply_hotfix() {
 
     elastic_fleet_integration_remove endpoints-initial elastic-defend-endpoints
     /usr/sbin/so-elastic-fleet-integration-policy-elastic-defend
-    salt-call state.highstate
+    salt-call state.apply ca queue=True
+    stop_salt_minion
+    mv /etc/pki/managerssl.crt /etc/pki/managerssl.crt.old
+    mv /etc/pki/managerssl.key /etc/pki/managerssl.key.old
+    systemctl_func "start" "salt-minion"
+    echo "Applying Salt Highstate"
+    salt-call state.highstate queue=True  
   else
    echo "No actions required. ($INSTALLEDVERSION/$HOTFIXVERSION)"
   fi

From 4fb9cce41ce34a19136c1d06bcead0a2777c4912 Mon Sep 17 00:00:00 2001
From: Mike Reeves <mike.reeves@securityonionsolutions.com>
Date: Fri, 17 Nov 2023 16:38:50 -0500
Subject: [PATCH 401/417] Update signing_policies.conf

---
 salt/ca/files/signing_policies.conf | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/salt/ca/files/signing_policies.conf b/salt/ca/files/signing_policies.conf
index cb57cc640..6f1b1f172 100644
--- a/salt/ca/files/signing_policies.conf
+++ b/salt/ca/files/signing_policies.conf
@@ -37,7 +37,7 @@ x509_signing_policies:
     - ST: Utah
     - L: Salt Lake City
     - basicConstraints: "critical CA:false"
-    - keyUsage: "critical keyEncipherment"
+    - keyUsage: "critical keyEncipherment digitalSignature"
     - subjectKeyIdentifier: hash
     - authorityKeyIdentifier: keyid,issuer:always
     - extendedKeyUsage: serverAuth

From 9c371fc3742196d33065dd229f88ce2e13b31160 Mon Sep 17 00:00:00 2001
From: Josh Brower <josh@defensivedepth.com>
Date: Fri, 17 Nov 2023 16:52:34 -0500
Subject: [PATCH 402/417] Remove state file

---
 salt/manager/tools/sbin/soup | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/salt/manager/tools/sbin/soup b/salt/manager/tools/sbin/soup
index c9d4b1936..5d98dc453 100755
--- a/salt/manager/tools/sbin/soup
+++ b/salt/manager/tools/sbin/soup
@@ -752,7 +752,7 @@ apply_hotfix() {
     . /usr/sbin/so-elastic-fleet-common
 
     elastic_fleet_integration_remove endpoints-initial elastic-defend-endpoints
-    /usr/sbin/so-elastic-fleet-integration-policy-elastic-defend
+    rm -f /opt/so/state/eaintegrations.txt
     salt-call state.highstate
   else
    echo "No actions required. ($INSTALLEDVERSION/$HOTFIXVERSION)"

From d89beefc8cdc65f1ac4d684aba4537da8ce1020b Mon Sep 17 00:00:00 2001
From: Mike Reeves <mike.reeves@securityonionsolutions.com>
Date: Fri, 17 Nov 2023 16:53:11 -0500
Subject: [PATCH 403/417] Update soup

---
 salt/manager/tools/sbin/soup | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/salt/manager/tools/sbin/soup b/salt/manager/tools/sbin/soup
index 9b27ec82c..dc28cffd1 100755
--- a/salt/manager/tools/sbin/soup
+++ b/salt/manager/tools/sbin/soup
@@ -450,7 +450,10 @@ post_to_2.4.20() {
 post_to_2.4.30() {
   echo "Regenerating Elastic Agent Installers"
   /sbin/so-elastic-agent-gen-installers
+  salt-call state.apply ca queue=True
   stop_salt_minion
+  mv /etc/pki/managerssl.crt /etc/pki/managerssl.crt.old
+  mv /etc/pki/managerssl.key /etc/pki/managerssl.key.old
   systemctl_func "start" "salt-minion"
   POSTVERSION=2.4.30
 }

From e71ee97717e00d6bfc90d80617b4e206ded24344 Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Sun, 19 Nov 2023 19:03:23 -0500
Subject: [PATCH 404/417] ignore libwbclient upgrade warning

---
 setup/so-verify | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/setup/so-verify b/setup/so-verify
index 8133c0bf1..3c20d22b4 100755
--- a/setup/so-verify
+++ b/setup/so-verify
@@ -38,6 +38,8 @@ log_has_errors() {
     # may be requested by dependency only (it is configured to refuse manual start/stop).
 
     # Command failed with exit code is output during retry loops.
+
+    # "remove failed" is caused by a warning generated by upgrade of libwbclient
     
     grep -E "FAILED|Failed|failed|ERROR|Result: False|Error is not recoverable" "$setup_log" | \
         grep -vE "The Salt Master has cached the public key for this node" | \
@@ -53,6 +55,7 @@ log_has_errors() {
         grep -vE "code: 100" | \
         grep -vE "/nsm/rules/sigma*" | \
         grep -vE "/nsm/rules/yara*" | \
+        grep -vE "remove failed" | \
         grep -vE "Failed to restart snapd" | \
         grep -vE "Login Failed Details" | \
         grep -vE "response from daemon: unauthorized" | \

From 45dc1ce036acbaa2d3e82ffdbed0db230afe953d Mon Sep 17 00:00:00 2001
From: Mike Reeves <mike.reeves@securityonionsolutions.com>
Date: Mon, 20 Nov 2023 11:32:21 -0500
Subject: [PATCH 405/417] 2.4.30 hotfix

---
 DOWNLOAD_AND_VERIFY_ISO.md                 |  22 ++++++++++-----------
 sigs/securityonion-2.4.30-20231117.iso.sig | Bin 0 -> 566 bytes
 2 files changed, 11 insertions(+), 11 deletions(-)
 create mode 100644 sigs/securityonion-2.4.30-20231117.iso.sig

diff --git a/DOWNLOAD_AND_VERIFY_ISO.md b/DOWNLOAD_AND_VERIFY_ISO.md
index a6b5469f0..7f71cd7ac 100644
--- a/DOWNLOAD_AND_VERIFY_ISO.md
+++ b/DOWNLOAD_AND_VERIFY_ISO.md
@@ -1,18 +1,18 @@
-### 2.4.30-20231113 ISO image released on 2023/11/13
+### 2.4.30-20231117 ISO image released on 2023/11/20
 
 
 
 ### Download and Verify
 
-2.4.30-20231113 ISO image:  
-https://download.securityonion.net/file/securityonion/securityonion-2.4.30-20231113.iso
+2.4.30-20231117 ISO image:  
+https://download.securityonion.net/file/securityonion/securityonion-2.4.30-20231117.iso
  
-MD5: 15EB5A74782E4C2D5663D29E275839F6  
-SHA1: BBD4A7D77ADDA94B866F1EFED846A83DDFD34D73  
-SHA256: 4509EB8E11DB49C6CD3905C74C5525BDB1F773488002179A846E00DE8E499988  
+MD5: DF7E2540AFF2A233A9B0EEC78B37D0EA  
+SHA1: 93DB33A46C6F9C7D7CB8031C0A4F8738F4F14E89  
+SHA256: 48C7BD1C664F545554490B8F191BCD7808C519488DCC85984760400F4F68E2DA  
 
 Signature for ISO image:  
-https://github.com/Security-Onion-Solutions/securityonion/raw/2.4/main/sigs/securityonion-2.4.30-20231113.iso.sig
+https://github.com/Security-Onion-Solutions/securityonion/raw/2.4/main/sigs/securityonion-2.4.30-20231117.iso.sig
 
 Signing key:  
 https://raw.githubusercontent.com/Security-Onion-Solutions/securityonion/2.4/main/KEYS  
@@ -26,22 +26,22 @@ wget https://raw.githubusercontent.com/Security-Onion-Solutions/securityonion/2.
 
 Download the signature file for the ISO:  
 ```
-wget https://github.com/Security-Onion-Solutions/securityonion/raw/2.4/main/sigs/securityonion-2.4.30-20231113.iso.sig
+wget https://github.com/Security-Onion-Solutions/securityonion/raw/2.4/main/sigs/securityonion-2.4.30-20231117.iso.sig
 ```
 
 Download the ISO image:  
 ```
-wget https://download.securityonion.net/file/securityonion/securityonion-2.4.30-20231113.iso
+wget https://download.securityonion.net/file/securityonion/securityonion-2.4.30-20231117.iso
 ```
 
 Verify the downloaded ISO image using the signature file:  
 ```
-gpg --verify securityonion-2.4.30-20231113.iso.sig securityonion-2.4.30-20231113.iso
+gpg --verify securityonion-2.4.30-20231117.iso.sig securityonion-2.4.30-20231117.iso
 ```
 
 The output should show "Good signature" and the Primary key fingerprint should match what's shown below:
 ```
-gpg: Signature made Mon 13 Nov 2023 09:23:21 AM EST using RSA key ID FE507013
+gpg: Signature made Sun 19 Nov 2023 08:11:53 PM EST using RSA key ID FE507013
 gpg: Good signature from "Security Onion Solutions, LLC <info@securityonionsolutions.com>"
 gpg: WARNING: This key is not certified with a trusted signature!
 gpg:          There is no indication that the signature belongs to the owner.
diff --git a/sigs/securityonion-2.4.30-20231117.iso.sig b/sigs/securityonion-2.4.30-20231117.iso.sig
new file mode 100644
index 0000000000000000000000000000000000000000..debbc8364fc1d32819aa51ef4ae7ec401a29dcd6
GIT binary patch
literal 566
zcmV-60?GY}0y6{v0SEvc79j-41gSkXz6^6dp_W8^5Ma0dP;e6k0%cmVSpW(N5PT3|
zxBgIY6Gz<-|8W@g6Ox7~bt1Y4vT%C@Ct|3Ve%);i7fE8@Bbwe^Og2myTQ@+NB_>Fw
zh4yPFq|Q<AFC)F4AUkngt{^?tHJyV)VCX{;TrKgokH8O*kqaGV`KxX_CC;@6pe*Ij
z)bQq$xMQ=r#X`x<XOC<gw7ez<eG%@vcdan#$-1+{=9&DeY}}8Iv%6cv6(+sAr$_`u
zOx9;N%SJb5WUq)C1XHrGzjQesT3Qik4n+a^mQa_*u^}t_iAsPn1np)=3tnxZGHKYp
zPJ^V90s>rcRBuD^KgN1-jQ5Pe;kY9sTnu+}SSSTnKyCLc&&hVZg~;W(WThaa{kY%R
zzDeXLdY-(NEf64tuVq6lW-G5KYMM4NxEH+^yxhn}J~bLvFj`<h6}ive)8^||roRvZ
z!jN`eITZOT&Y|xfG)tmyy(`-!7HERT3W+(&IBEW&3_A0|+6PI-l?=^6`?maZ8scdW
zho>Yt(=ywzEAdLBZZcX1S%<foMtqN}W}ymed*{)q;6mjf4j~Mac)*M8<95Aju+Yx#
zQM@wGVOUqX9WTvG7B((4>8qvxkFBI*J=DOY&LLGl4XOZP_H~&iMdy@$tF9a%^<9^S
zvE)le0in{)PU^AnN6TPdTm;SLC)4`Po`3KwDe~-ZV?ef(P@rZD^4vmbfSaK4>)sg*
Em78@5>i_@%

literal 0
HcmV?d00001


From b2ea7138f31b9ddcfe56ddc3cc72c1b08a2119f5 Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Mon, 20 Nov 2023 15:28:56 -0500
Subject: [PATCH 406/417] remove hotfix

---
 HOTFIX | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/HOTFIX b/HOTFIX
index 57030dc85..d3f5a12fa 100644
--- a/HOTFIX
+++ b/HOTFIX
@@ -1 +1 @@
-20231117
+

From 6356a0bf9555c17cad2d917bef1b90635156831d Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Mon, 20 Nov 2023 16:18:30 -0500
Subject: [PATCH 407/417] add support for nested keys

---
 salt/manager/tools/sbin/so-yaml.py      | 18 ++++++++++-----
 salt/manager/tools/sbin/so-yaml_test.py | 30 +++++++++++++++++++++++++
 2 files changed, 43 insertions(+), 5 deletions(-)

diff --git a/salt/manager/tools/sbin/so-yaml.py b/salt/manager/tools/sbin/so-yaml.py
index 68f9b43fe..406e4ed45 100755
--- a/salt/manager/tools/sbin/so-yaml.py
+++ b/salt/manager/tools/sbin/so-yaml.py
@@ -16,12 +16,12 @@ lockFile = "/tmp/so-yaml.lock"
 def showUsage(args):
     print('Usage: {} <COMMAND> <YAML_FILE> [ARGS...]'.format(sys.argv[0]))
     print('  General commands:')
-    print('    remove         - Removes a yaml top-level key, if it exists. Requires KEY arg.')
+    print('    remove         - Removes a yaml key, if it exists. Requires KEY arg.')
     print('    help           - Prints this usage information.')
     print('')
     print('  Where:')
     print('   YAML_FILE       - Path to the file that will be modified. Ex: /opt/so/conf/service/conf.yaml')
-    print('   KEY             - Top level key only, does not support dot-notations for nested keys at this time. Ex: level1')
+    print('   KEY             - YAML key, does not support \' or " characters at this time. Ex: level1.level2')
     sys.exit(1)
 
 
@@ -36,6 +36,13 @@ def writeYaml(filename, content):
     return yaml.dump(content, file)
 
 
+def removeKey(content, key):
+    pieces = key.split(".", 1)
+    if len(pieces) > 1:
+        removeKey(content[pieces[0]], pieces[1])
+    else:
+        content.pop(key, None)
+
 def remove(args):
     if len(args) != 2:
         print('Missing filename or key arg', file=sys.stderr)
@@ -43,11 +50,12 @@ def remove(args):
         return
 
     filename = args[0]
+    key = args[1]
+
     content = loadYaml(filename)
-
-    content.pop(args[1], None)
-
+    removeKey(content, key)
     writeYaml(filename, content)
+
     return 0
 
 
diff --git a/salt/manager/tools/sbin/so-yaml_test.py b/salt/manager/tools/sbin/so-yaml_test.py
index 0f2ac7d81..7d0ed1a8e 100644
--- a/salt/manager/tools/sbin/so-yaml_test.py
+++ b/salt/manager/tools/sbin/so-yaml_test.py
@@ -57,6 +57,36 @@ class TestRemove(unittest.TestCase):
         expected = "key2: false\n"
         self.assertEqual(actual, expected)
 
+    def test_remove_nested(self):
+        filename = "/tmp/so-yaml_test-remove.yaml"
+        file = open(filename, "w")
+        file.write("{key1: { child1: 123, child2: abc }, key2: false}")
+        file.close()
+
+        soyaml.remove([filename, "key1.child2"])
+
+        file = open(filename, "r")
+        actual = file.read()
+        file.close()
+
+        expected = "key1:\n  child1: 123\nkey2: false\n"
+        self.assertEqual(actual, expected)
+
+    def test_remove_nested_deep(self):
+        filename = "/tmp/so-yaml_test-remove.yaml"
+        file = open(filename, "w")
+        file.write("{key1: { child1: 123, child2: { deep1: 45, deep2: ab } }, key2: false}")
+        file.close()
+
+        soyaml.remove([filename, "key1.child2.deep1"])
+
+        file = open(filename, "r")
+        actual = file.read()
+        file.close()
+
+        expected = "key1:\n  child1: 123\n  child2:\n    deep2: ab\nkey2: false\n"
+        self.assertEqual(actual, expected)
+
     def test_remove_missing_args(self):
         with patch('sys.exit', new=MagicMock()) as sysmock:
             with patch('sys.stderr', new=StringIO()) as mock_stdout:

From 14b5aa476e4b03dca8fc7c56e3e7f790e58f13b4 Mon Sep 17 00:00:00 2001
From: Mike Reeves <mike.reeves@securityonionsolutions.com>
Date: Tue, 21 Nov 2023 09:55:44 -0500
Subject: [PATCH 408/417] Update soup

---
 salt/manager/tools/sbin/soup | 35 ++++++++++++++++++++++-------------
 1 file changed, 22 insertions(+), 13 deletions(-)

diff --git a/salt/manager/tools/sbin/soup b/salt/manager/tools/sbin/soup
index b073f4a57..5b52b54f0 100755
--- a/salt/manager/tools/sbin/soup
+++ b/salt/manager/tools/sbin/soup
@@ -455,6 +455,8 @@ post_to_2.4.30() {
   mv /etc/pki/managerssl.crt /etc/pki/managerssl.crt.old
   mv /etc/pki/managerssl.key /etc/pki/managerssl.key.old
   systemctl_func "start" "salt-minion"
+  salt-call state.apply nginx queue=True
+  enable_highstate
   POSTVERSION=2.4.30
 }
 
@@ -751,20 +753,27 @@ apply_hotfix() {
     elastic_fleet_integration_remove endpoints-initial elastic-defend-endpoints
     /usr/sbin/so-elastic-fleet-integration-policy-elastic-defend
   elif [[ "$INSTALLEDVERSION" == "2.4.30" ]] ; then
-    rm -f /opt/so/conf/elastic-fleet/integrations/endpoints-initial/elastic-defend-endpoints.json
-    so-kibana-restart --force
-    so-kibana-api-check
-    . /usr/sbin/so-elastic-fleet-common
+    if [[ -f /etc/pki/managerssl.key.old ]]; then
+      echo "Fixing 20231117 not enabling highstate"
+      enable_highstate
+      salt-call state.highstate queue=True
+    else
+      rm -f /opt/so/conf/elastic-fleet/integrations/endpoints-initial/elastic-defend-endpoints.json
+      so-kibana-restart --force
+      so-kibana-api-check
+      . /usr/sbin/so-elastic-fleet-common
 
-    elastic_fleet_integration_remove endpoints-initial elastic-defend-endpoints
-    rm -f /opt/so/state/eaintegrations.txt
-    salt-call state.apply ca queue=True
-    stop_salt_minion
-    mv /etc/pki/managerssl.crt /etc/pki/managerssl.crt.old
-    mv /etc/pki/managerssl.key /etc/pki/managerssl.key.old
-    systemctl_func "start" "salt-minion"
-    echo "Applying Salt Highstate"
-    salt-call state.highstate queue=True  
+      elastic_fleet_integration_remove endpoints-initial elastic-defend-endpoints
+      rm -f /opt/so/state/eaintegrations.txt
+      salt-call state.apply ca queue=True
+      stop_salt_minion
+      mv /etc/pki/managerssl.crt /etc/pki/managerssl.crt.old
+      mv /etc/pki/managerssl.key /etc/pki/managerssl.key.old
+      systemctl_func "start" "salt-minion"
+      enable_highstate
+      echo "Applying Salt Highstate"
+      salt-call state.highstate queue=True
+    fi  
   else
    echo "No actions required. ($INSTALLEDVERSION/$HOTFIXVERSION)"
   fi

From c78ea0183f0865d70194480ad44f43ab2e05c6d3 Mon Sep 17 00:00:00 2001
From: Mike Reeves <mike.reeves@securityonionsolutions.com>
Date: Tue, 21 Nov 2023 09:59:51 -0500
Subject: [PATCH 409/417] Update HOTFIX

---
 HOTFIX | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/HOTFIX b/HOTFIX
index 57030dc85..ac1f7a840 100644
--- a/HOTFIX
+++ b/HOTFIX
@@ -1 +1 @@
-20231117
+20231121

From 9aa193af3bc357ac4f03569d76f4dfd3f0c29501 Mon Sep 17 00:00:00 2001
From: Mike Reeves <mike.reeves@securityonionsolutions.com>
Date: Tue, 21 Nov 2023 10:18:02 -0500
Subject: [PATCH 410/417] Update soup

---
 salt/manager/tools/sbin/soup | 5 -----
 1 file changed, 5 deletions(-)

diff --git a/salt/manager/tools/sbin/soup b/salt/manager/tools/sbin/soup
index 5b52b54f0..bab581932 100755
--- a/salt/manager/tools/sbin/soup
+++ b/salt/manager/tools/sbin/soup
@@ -755,8 +755,6 @@ apply_hotfix() {
   elif [[ "$INSTALLEDVERSION" == "2.4.30" ]] ; then
     if [[ -f /etc/pki/managerssl.key.old ]]; then
       echo "Fixing 20231117 not enabling highstate"
-      enable_highstate
-      salt-call state.highstate queue=True
     else
       rm -f /opt/so/conf/elastic-fleet/integrations/endpoints-initial/elastic-defend-endpoints.json
       so-kibana-restart --force
@@ -770,9 +768,6 @@ apply_hotfix() {
       mv /etc/pki/managerssl.crt /etc/pki/managerssl.crt.old
       mv /etc/pki/managerssl.key /etc/pki/managerssl.key.old
       systemctl_func "start" "salt-minion"
-      enable_highstate
-      echo "Applying Salt Highstate"
-      salt-call state.highstate queue=True
     fi  
   else
    echo "No actions required. ($INSTALLEDVERSION/$HOTFIXVERSION)"

From 458c6de39d6f80d48db93b3b86282522d3880d0e Mon Sep 17 00:00:00 2001
From: Mike Reeves <mike.reeves@securityonionsolutions.com>
Date: Tue, 21 Nov 2023 10:30:21 -0500
Subject: [PATCH 411/417] Update soup

---
 salt/manager/tools/sbin/soup | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/salt/manager/tools/sbin/soup b/salt/manager/tools/sbin/soup
index bab581932..5b445dae4 100755
--- a/salt/manager/tools/sbin/soup
+++ b/salt/manager/tools/sbin/soup
@@ -754,7 +754,7 @@ apply_hotfix() {
     /usr/sbin/so-elastic-fleet-integration-policy-elastic-defend
   elif [[ "$INSTALLEDVERSION" == "2.4.30" ]] ; then
     if [[ -f /etc/pki/managerssl.key.old ]]; then
-      echo "Fixing 20231117 not enabling highstate"
+      echo "Skipping Certificate Generation"
     else
       rm -f /opt/so/conf/elastic-fleet/integrations/endpoints-initial/elastic-defend-endpoints.json
       so-kibana-restart --force

From fa9032b3231918a9e7985adb0766fec17e563682 Mon Sep 17 00:00:00 2001
From: Mike Reeves <mike.reeves@securityonionsolutions.com>
Date: Tue, 21 Nov 2023 14:28:23 -0500
Subject: [PATCH 412/417] 2.4.30 hotfix

---
 DOWNLOAD_AND_VERIFY_ISO.md                 |  22 ++++++++++-----------
 sigs/securityonion-2.4.30-20231121.iso.sig | Bin 0 -> 566 bytes
 2 files changed, 11 insertions(+), 11 deletions(-)
 create mode 100644 sigs/securityonion-2.4.30-20231121.iso.sig

diff --git a/DOWNLOAD_AND_VERIFY_ISO.md b/DOWNLOAD_AND_VERIFY_ISO.md
index 7f71cd7ac..202e00de1 100644
--- a/DOWNLOAD_AND_VERIFY_ISO.md
+++ b/DOWNLOAD_AND_VERIFY_ISO.md
@@ -1,18 +1,18 @@
-### 2.4.30-20231117 ISO image released on 2023/11/20
+### 2.4.30-20231121 ISO image released on 2023/11/21
 
 
 
 ### Download and Verify
 
-2.4.30-20231117 ISO image:  
-https://download.securityonion.net/file/securityonion/securityonion-2.4.30-20231117.iso
+2.4.30-20231121 ISO image:  
+https://download.securityonion.net/file/securityonion/securityonion-2.4.30-20231121.iso
  
-MD5: DF7E2540AFF2A233A9B0EEC78B37D0EA  
-SHA1: 93DB33A46C6F9C7D7CB8031C0A4F8738F4F14E89  
-SHA256: 48C7BD1C664F545554490B8F191BCD7808C519488DCC85984760400F4F68E2DA  
+MD5: 09DB0A6B3A75435C855E777272FC03F8  
+SHA1: A68868E67A3F86B77E01F54067950757EFD3BA72  
+SHA256: B3880C0302D9CDED7C974585B14355544FC9C3279F952EC79FC2BA9AEC7CB749  
 
 Signature for ISO image:  
-https://github.com/Security-Onion-Solutions/securityonion/raw/2.4/main/sigs/securityonion-2.4.30-20231117.iso.sig
+https://github.com/Security-Onion-Solutions/securityonion/raw/2.4/main/sigs/securityonion-2.4.30-20231121.iso.sig
 
 Signing key:  
 https://raw.githubusercontent.com/Security-Onion-Solutions/securityonion/2.4/main/KEYS  
@@ -26,22 +26,22 @@ wget https://raw.githubusercontent.com/Security-Onion-Solutions/securityonion/2.
 
 Download the signature file for the ISO:  
 ```
-wget https://github.com/Security-Onion-Solutions/securityonion/raw/2.4/main/sigs/securityonion-2.4.30-20231117.iso.sig
+wget https://github.com/Security-Onion-Solutions/securityonion/raw/2.4/main/sigs/securityonion-2.4.30-20231121.iso.sig
 ```
 
 Download the ISO image:  
 ```
-wget https://download.securityonion.net/file/securityonion/securityonion-2.4.30-20231117.iso
+wget https://download.securityonion.net/file/securityonion/securityonion-2.4.30-20231121.iso
 ```
 
 Verify the downloaded ISO image using the signature file:  
 ```
-gpg --verify securityonion-2.4.30-20231117.iso.sig securityonion-2.4.30-20231117.iso
+gpg --verify securityonion-2.4.30-20231121.iso.sig securityonion-2.4.30-20231121.iso
 ```
 
 The output should show "Good signature" and the Primary key fingerprint should match what's shown below:
 ```
-gpg: Signature made Sun 19 Nov 2023 08:11:53 PM EST using RSA key ID FE507013
+gpg: Signature made Tue 21 Nov 2023 01:21:38 PM EST using RSA key ID FE507013
 gpg: Good signature from "Security Onion Solutions, LLC <info@securityonionsolutions.com>"
 gpg: WARNING: This key is not certified with a trusted signature!
 gpg:          There is no indication that the signature belongs to the owner.
diff --git a/sigs/securityonion-2.4.30-20231121.iso.sig b/sigs/securityonion-2.4.30-20231121.iso.sig
new file mode 100644
index 0000000000000000000000000000000000000000..4feba8dad80947b7f51e23f8fefbc42699f9cc48
GIT binary patch
literal 566
zcmV-60?GY}0y6{v0SEvc79j-41gSkXz6^6dp_W8^5Ma0dP;e6k0%ctFG5`t*5PT3|
zxBgIY6HiAE{yQ3|3U6k$$-{iAayb=S>&z>f8bIV;^BHD}m$Ote=EAm}f9DwSO+#&g
zTSjPqYP6Drh#tc4hx=~Kcn8z`kI2eO*S2Mdm!)pUJ*55ac;iF7G4A>{YXpNRNAJ$a
z>PV$ev#*CuH$m1%W@3nH8a3Lm73*>o@*$58aM<6^xut^$zphN6Z))E9n~(#2)k<_T
zSm1ziDL;F5AXP6miVK@x%wHQqJJ87XsrTK0$<G?LiwE9Y<0@Z2RqQiLDo<yZ^#FB`
zg4T(JIh_2~Bt7ZNpSXuzVV|RaVsp%I(E(8`;i{Xh^q7a?HJ_t>+&tik!C+!1r0-9A
z`3dWHdCRR*%m3P2j-4E3dT3eZpEU0l?QSA2G@9m=x7{pM=aV~IEv%;HNSe%U9xd{~
z4gJp_XkZ0#1#0{P?&sgOaqK!DFLBIBr_<XDh!Am*01;VuZ6MxIXE1E^;Zy1ml+qIU
z`);%iy_2FJSpgGAMJ2aJfFtMPIQzhuilf9|Ev(iW;+gyo>3M{}A4mKj9E_dle>ki5
zk$AwRaqUzWJRPx$Eu$QXv?lfxR~xLKZIy|Pyx$FL$X<5M!hf8(@7Ia~4h2qRe|8Gq
z)p?#g1CEgzOE+8n$8==INo>F+^u3P8?@N#H8qwe@Q1>-ju>E03MdeO+*k!Nj9VN>t
ETQ~$3s{jB1

literal 0
HcmV?d00001


From 7d759a99fe94cc821d56c9f5f5413a4db4cb471a Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Tue, 21 Nov 2023 16:40:54 -0500
Subject: [PATCH 413/417] remove hotfix

---
 HOTFIX | 1 -
 1 file changed, 1 deletion(-)

diff --git a/HOTFIX b/HOTFIX
index ac1f7a840..e69de29bb 100644
--- a/HOTFIX
+++ b/HOTFIX
@@ -1 +0,0 @@
-20231121

From 0603e96c0827b2fd7fd2528a9ff838eafa84f588 Mon Sep 17 00:00:00 2001
From: Doug Burks <doug.burks@securityonionsolutions.com>
Date: Wed, 29 Nov 2023 09:46:11 -0500
Subject: [PATCH 414/417] FIX: Update NIDS rule.reference in common.nids
 pipeline #11846

---
 salt/elasticsearch/files/ingest/common.nids | 24 ++++++++++-----------
 1 file changed, 12 insertions(+), 12 deletions(-)

diff --git a/salt/elasticsearch/files/ingest/common.nids b/salt/elasticsearch/files/ingest/common.nids
index 53a3f7b79..84d170c93 100644
--- a/salt/elasticsearch/files/ingest/common.nids
+++ b/salt/elasticsearch/files/ingest/common.nids
@@ -1,17 +1,17 @@
 {
   "description" : "common.nids",
   "processors" : [
-    { "convert":        { "if": "ctx.rule.uuid != null",                "field": "rule.uuid",                   "type": "integer"                                                                               } },
-    { "set":            { "if": "ctx.rule?.uuid < 1000000",             "field": "rule.reference", "value": "https://www.snort.org/search?query={{rule.gid}}-{{rule.uuid}}"     } },
-    { "set":            { "if": "ctx.rule?.uuid > 1999999",             "field": "rule.reference", "value": "https://doc.emergingthreats.net/{{rule.uuid}}"                     } },
-    { "convert":        { "if": "ctx.rule.uuid != null",                        "field": "rule.uuid",                   "type": "string"                                                                               } },
-    { "dissect":        { "if": "ctx.rule.name != null",                        "field": "rule.name",                   "pattern" : "%{rule_type} %{rest_of_rulename} ",                                "ignore_failure": true  } },
-    { "set":            { "if": "ctx.rule_type == 'GPL'",       "field": "rule.ruleset", "value": "Snort GPL"                                                   } },
-    { "set":            { "if": "ctx.rule_type == 'ET'",        "field": "rule.ruleset", "value": "Emerging Threats"                                            } },
-    { "set":            { "if": "ctx.rule.severity == 3",   "field": "event.severity", "value": 1, "override": true }  },
-    { "set":            { "if": "ctx.rule.severity == 2",   "field": "event.severity", "value": 2, "override": true }  },
-    { "set":            { "if": "ctx.rule.severity == 1",   "field": "event.severity", "value": 3, "override": true }  },
-    { "remove":         { "field": ["rule_type", "rest_of_rulename", "host"],     "ignore_failure": true                                                                  } },
-    { "pipeline":       { "name": "common"                                                                                                                      } }
+    { "convert":        { "if": "ctx.rule.uuid != null",	"field": "rule.uuid",		"type": "integer"							} },
+    { "set":            { "if": "ctx.rule?.uuid < 1000000",	"field": "rule.reference",	"value": "https://www.snort.org/rule_docs/{{rule.gid}}-{{rule.uuid}}"	} },
+    { "set":            { "if": "ctx.rule?.uuid > 1999999",	"field": "rule.reference",	"value": "https://community.emergingthreats.net"			} },
+    { "convert":        { "if": "ctx.rule.uuid != null",	"field": "rule.uuid",		"type": "string"							} },
+    { "dissect":        { "if": "ctx.rule.name != null",	"field": "rule.name",		"pattern" : "%{rule_type} %{rest_of_rulename} ", "ignore_failure": true } },
+    { "set":            { "if": "ctx.rule_type == 'GPL'",	"field": "rule.ruleset",	"value": "Snort GPL"							} },
+    { "set":            { "if": "ctx.rule_type == 'ET'",	"field": "rule.ruleset",	"value": "Emerging Threats"						} },
+    { "set":            { "if": "ctx.rule.severity == 3",	"field": "event.severity",	"value": 1, 	"override": true					} },
+    { "set":            { "if": "ctx.rule.severity == 2",	"field": "event.severity",	"value": 2, 	"override": true					} },
+    { "set":            { "if": "ctx.rule.severity == 1",	"field": "event.severity",	"value": 3, 	"override": true					} },
+    { "remove":         { "field": ["rule_type", 		"rest_of_rulename", "host"],	"ignore_failure": true							} },
+    { "pipeline":       { "name": "common"																} }
   ]
 }

From 5f79644aeffa6f077eb9052869a20b78c02733df Mon Sep 17 00:00:00 2001
From: weslambert <wlambertts@gmail.com>
Date: Wed, 29 Nov 2023 10:02:13 -0500
Subject: [PATCH 415/417] Ignore analyzer log

---
 salt/elasticfleet/defaults.yaml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/salt/elasticfleet/defaults.yaml b/salt/elasticfleet/defaults.yaml
index 004dea94d..7d3883895 100644
--- a/salt/elasticfleet/defaults.yaml
+++ b/salt/elasticfleet/defaults.yaml
@@ -10,6 +10,7 @@ elasticfleet:
   logging:
     zeek:
       excluded:
+        - analyzer
         - broker
         - capture_loss
         - cluster

From 7001e9066791188d04814ab93d114a06cd7fa335 Mon Sep 17 00:00:00 2001
From: weslambert <wlambertts@gmail.com>
Date: Wed, 29 Nov 2023 12:00:46 -0500
Subject: [PATCH 416/417] Client and server fingerprints

---
 salt/elasticsearch/files/ingest/zeek.ssl | 54 +++++++++++++++---------
 1 file changed, 34 insertions(+), 20 deletions(-)

diff --git a/salt/elasticsearch/files/ingest/zeek.ssl b/salt/elasticsearch/files/ingest/zeek.ssl
index 8ae7c8728..87174d3d2 100644
--- a/salt/elasticsearch/files/ingest/zeek.ssl
+++ b/salt/elasticsearch/files/ingest/zeek.ssl
@@ -1,26 +1,40 @@
 {
   "description" : "zeek.ssl",
   "processors" : [
-    { "set": { "field": "event.dataset", "value": "ssl" } },
-    { "remove":         { "field": ["host"],     "ignore_failure": true                                                                  } },
-    { "json":		{ "field": "message",			"target_field": "message2",		"ignore_failure": true	} },
-    { "rename": 	{ "field": "message2.version", 		"target_field": "ssl.version",		"ignore_missing": true 	} },
-    { "rename": 	{ "field": "message2.cipher", 		"target_field": "ssl.cipher",		"ignore_missing": true 	} },
-    { "rename": 	{ "field": "message2.curve", 		"target_field": "ssl.curve",		"ignore_missing": true 	} },
-    { "rename": 	{ "field": "message2.server_name", 	"target_field": "ssl.server_name",		"ignore_missing": true 	} },
-    { "rename": 	{ "field": "message2.resumed", 		"target_field": "ssl.resumed",		"ignore_missing": true 	} },
-    { "rename": 	{ "field": "message2.last_alert", 	"target_field": "ssl.last_alert",		"ignore_missing": true 	} },
-    { "rename": 	{ "field": "message2.next_protocol", 	"target_field": "ssl.next_protocol",	"ignore_missing": true 	} },
-    { "rename": 	{ "field": "message2.established", 	"target_field": "ssl.established",		"ignore_missing": true 	} },
-    { "rename": 	{ "field": "message2.cert_chain_fuids", 	"target_field": "ssl.certificate.chain_fuids",		"ignore_missing": true 	} },
-    { "rename": 	{ "field": "message2.client_cert_chain_fuids",	"target_field": "ssl.client.certificate.chain_fuids",	"ignore_missing": true 	} },
-    { "rename": 	{ "field": "message2.subject", 		"target_field": "ssl.certificate.subject",	"ignore_missing": true 	} },
-    { "rename": 	{ "field": "message2.issuer", 		"target_field": "ssl.certificate.issuer",	"ignore_missing": true 	} },
-    { "rename": 	{ "field": "message2.client_subject", 	"target_field": "ssl.client.subject",	"ignore_missing": true 	} },
-    { "rename": 	{ "field": "message2.client_issuer", 	"target_field": "ssl.client.issuer",	"ignore_missing": true 	} },
-    { "rename": 	{ "field": "message2.validation_status","target_field": "ssl.validation_status",	"ignore_missing": true 	} },
-    { "rename": 	{ "field": "message2.ja3", 		"target_field": "hash.ja3",			"ignore_missing": true 	} },
-    { "rename": 	{ "field": "message2.ja3s", 		"target_field": "hash.ja3s",			"ignore_missing": true 	} },
+    { "set":      { "field": "event.dataset", "value": "ssl" } },
+    { "remove":   { "field": ["host"],     "ignore_failure": true } },
+    { "json":             { "field": "message",                 "target_field": "message2",             "ignore_failure": true  } },
+    { "rename":         { "field": "message2.version",          "target_field": "ssl.version",          "ignore_missing": true  } },
+    { "rename":         { "field": "message2.cipher",           "target_field": "ssl.cipher",           "ignore_missing": true  } },
+    { "rename":         { "field": "message2.curve",            "target_field": "ssl.curve",            "ignore_missing": true  } },
+    { "rename":         { "field": "message2.server_name",      "target_field": "ssl.server_name",              "ignore_missing": true  } },
+    { "rename":         { "field": "message2.resumed",          "target_field": "ssl.resumed",          "ignore_missing": true  } },
+    { "rename":         { "field": "message2.last_alert",       "target_field": "ssl.last_alert",               "ignore_missing": true  } },
+    { "rename":         { "field": "message2.next_protocol",    "target_field": "ssl.next_protocol",    "ignore_missing": true  } },
+    { "rename":         { "field": "message2.established",      "target_field": "ssl.established",              "ignore_missing": true  } },
+    { "rename":         { "if": "ctx.message2?.cert_chain_fps != null", "field": "message2.cert_chain_fps",      "target_field": "tls.server.hash.sha256",         "ignore_missing": true  } },
+    { "rename":         { "field": "message2?.cert_chain_fuids",        "target_field": "ssl.certificate.chain_fuids",          "ignore_missing": true  } },
+    { "rename":         { "if": "ctx.message2?.client_cert_chain_fps != null", "field": "message2.client_cert_chain_fps",       "target_field": "tls.client.hash.sha256", "ignore_failure": true, "ignore_missing": true  } },
+    { "rename":         { "field": "message2.client_cert_chain_fuids",  "target_field": "ssl.client.certificate.chain_fuids",   "ignore_missing": true  } },
+    { "rename":         { "field": "message2.subject",          "target_field": "ssl.certificate.subject",      "ignore_missing": true  } },
+    { "rename":         { "field": "message2.issuer",           "target_field": "ssl.certificate.issuer",       "ignore_missing": true  } },
+    { "rename":         { "field": "message2.client_subject",   "target_field": "ssl.client.subject",   "ignore_missing": true  } },
+    { "rename":         { "field": "message2.client_issuer",    "target_field": "ssl.client.issuer",    "ignore_missing": true  } },
+    { "rename":         { "field": "message2.validation_status","target_field": "ssl.validation_status",        "ignore_missing": true  } },
+    { "rename":         { "field": "message2.ja3",              "target_field": "hash.ja3",                     "ignore_missing": true  } },
+    { "rename":         { "field": "message2.ja3s",             "target_field": "hash.ja3s",                    "ignore_missing": true  } },
+    { "foreach":
+      {
+        "if": "ctx?.tls?.client?.hash?.sha256 !=null",
+          "field": "tls.client.hash.sha256",
+          "processor": {
+            "append": {
+              "field": "hash.sha256",
+              "value": "{{_ingest._value}}"
+            }
+          }
+      }
+    },
     { "pipeline":       { "name":  "zeek.common_ssl"                                                                             } }
   ]
 }

From 9d63a477929e72e9b4aaf923ecee98620dd23904 Mon Sep 17 00:00:00 2001
From: weslambert <wlambertts@gmail.com>
Date: Wed, 29 Nov 2023 12:01:43 -0500
Subject: [PATCH 417/417] Certificate hash

---
 salt/elasticsearch/files/ingest/zeek.x509 | 79 ++++++++++++-----------
 1 file changed, 40 insertions(+), 39 deletions(-)

diff --git a/salt/elasticsearch/files/ingest/zeek.x509 b/salt/elasticsearch/files/ingest/zeek.x509
index 640ea81e3..64d06131a 100644
--- a/salt/elasticsearch/files/ingest/zeek.x509
+++ b/salt/elasticsearch/files/ingest/zeek.x509
@@ -3,44 +3,45 @@
   "processors" : [
     { "set": { "field": "event.dataset", "value": "x509" } },
     { "remove":         { "field": ["host"],     "ignore_failure": true                                                                  } },
-    { "json":		{ "field": "message",					"target_field": "message2",				"ignore_failure": true	} },
-    { "rename": 	{ "field": "message2.id", 	 			"target_field": "log.id.fuid",					"ignore_missing": true 	} },
-    { "dot_expander": 	{ "field": "certificate.version",			"path": "message2", 					"ignore_failure": true 	} },
-    { "rename": 	{ "field": "message2.certificate.version", 		"target_field": "x509.certificate.version",			"ignore_missing": true 	} },
-    { "dot_expander": 	{ "field": "certificate.serial",			"path": "message2", 					"ignore_failure": true 	} },
-    { "rename": 	{ "field": "message2.certificate.serial", 		"target_field": "x509.certificate.serial",			"ignore_missing": true 	} },
-    { "dot_expander": 	{ "field": "certificate.subject",			"path": "message2", 					"ignore_failure": true 	} },
-    { "rename": 	{ "field": "message2.certificate.subject", 		"target_field": "x509.certificate.subject",			"ignore_missing": true 	} },
-    { "dot_expander": 	{ "field": "certificate.issuer",			"path": "message2", 					"ignore_failure": true 	} },
-    { "rename": 	{ "field": "message2.certificate.issuer", 		"target_field": "x509.certificate.issuer",			"ignore_missing": true 	} },
-    { "dot_expander": 	{ "field": "certificate.not_valid_before",		"path": "message2", 					"ignore_failure": true 	} },
-    { "rename": 	{ "field": "message2.certificate.not_valid_before", 	"target_field": "x509.certificate.not_valid_before",		"ignore_missing": true 	} },
-    { "dot_expander": 	{ "field": "certificate.not_valid_after",		"path": "message2", 					"ignore_failure": true 	} },
-    { "rename": 	{ "field": "message2.certificate.not_valid_after", 	"target_field": "x509.certificate.not_valid_after",		"ignore_missing": true 	} },
-    { "dot_expander": 	{ "field": "certificate.key_alg",			"path": "message2", 					"ignore_failure": true 	} },
-    { "rename": 	{ "field": "message2.certificate.key_alg", 		"target_field": "x509.certificate.key.algorithm",		"ignore_missing": true 	} },
-    { "dot_expander": 	{ "field": "certificate.sig_alg",			"path": "message2", 					"ignore_failure": true 	} },
-    { "rename": 	{ "field": "message2.certificate.sig_alg", 		"target_field": "x509.certificate.signing_algorithm",	"ignore_missing": true 	} },
-    { "dot_expander": 	{ "field": "certificate.key_type",			"path": "message2", 					"ignore_failure": true 	} },
-    { "rename": 	{ "field": "message2.certificate.key_type", 		"target_field": "x509.certificate.key.type",			"ignore_missing": true 	} },
-    { "dot_expander": 	{ "field": "certificate.key_length",			"path": "message2", 					"ignore_failure": true 	} },
-    { "rename": 	{ "field": "message2.certificate.key_length", 		"target_field": "x509.certificate.key.length",		"ignore_missing": true 	} },
-    { "dot_expander": 	{ "field": "certificate.exponent",			"path": "message2", 					"ignore_failure": true 	} },
-    { "rename": 	{ "field": "message2.certificate.exponent", 		"target_field": "x509.certificate.exponent",			"ignore_missing": true 	} },
-    { "dot_expander": 	{ "field": "certificate.curve",				"path": "message2", 					"ignore_failure": true 	} },
-    { "rename": 	{ "field": "message2.certificate.curve", 		"target_field": "x509.certificate.curve",			"ignore_missing": true 	} },
-    { "dot_expander": 	{ "field": "san.dns",					"path": "message2", 					"ignore_failure": true 	} },
-    { "rename": 	{ "field": "message2.san.dns", 				"target_field": "x509.san_dns",				"ignore_missing": true 	} },
-    { "dot_expander": 	{ "field": "san.uri",					"path": "message2", 					"ignore_failure": true 	} },
-    { "rename": 	{ "field": "message2.san.uri", 				"target_field": "x509.san_uri",				"ignore_missing": true 	} },
-    { "dot_expander": 	{ "field": "san.email",					"path": "message2", 					"ignore_failure": true 	} },
-    { "rename": 	{ "field": "message2.san.email", 			"target_field": "x509.san_email",				"ignore_missing": true 	} },
-    { "dot_expander": 	{ "field": "san.ip",					"path": "message2", 					"ignore_failure": true 	} },
-    { "rename": 	{ "field": "message2.san.ip", 				"target_field": "x509.san_ip",				"ignore_missing": true 	} },
-    { "dot_expander": 	{ "field": "basic_constraints.ca",			"path": "message2", 					"ignore_failure": true 	} },
-    { "rename": 	{ "field": "message2.basic_constraints.ca", 		"target_field": "x509.basic_constraints.ca",			"ignore_missing": true 	} },
-    { "dot_expander": 	{ "field": "basic_constraints.path_length",		"path": "message2", 					"ignore_failure": true 	} },
-    { "rename": 	{ "field": "message2.basic_constraints.path_length", 	"target_field": "x509.basic_constraints.path_length",	"ignore_missing": true 	} },
-    { "pipeline":       { "name": "zeek.common_ssl"                                                                                   				} }
+    { "json":           { "field": "message",                                   "target_field": "message2",                             "ignore_failure": true  } },
+    { "rename":         { "field": "message2.id",                               "target_field": "log.id.fuid",                                  "ignore_missing": true  } },
+    { "dot_expander":   { "field": "certificate.version",                       "path": "message2",                                     "ignore_failure": true  } },
+    { "rename":         { "field": "message2.certificate.version",              "target_field": "x509.certificate.version",                     "ignore_missing": true  } },
+    { "dot_expander":   { "field": "certificate.serial",                        "path": "message2",                                     "ignore_failure": true  } },
+    { "rename":         { "field": "message2.certificate.serial",               "target_field": "x509.certificate.serial",                      "ignore_missing": true  } },
+    { "dot_expander":   { "field": "certificate.subject",                       "path": "message2",                                     "ignore_failure": true  } },
+    { "rename":         { "field": "message2.certificate.subject",              "target_field": "x509.certificate.subject",                     "ignore_missing": true  } },
+    { "dot_expander":   { "field": "certificate.issuer",                        "path": "message2",                                     "ignore_failure": true  } },
+    { "rename":         { "field": "message2.certificate.issuer",               "target_field": "x509.certificate.issuer",                      "ignore_missing": true  } },
+    { "dot_expander":   { "field": "certificate.not_valid_before",              "path": "message2",                                     "ignore_failure": true  } },
+    { "rename":         { "field": "message2.certificate.not_valid_before",     "target_field": "x509.certificate.not_valid_before",            "ignore_missing": true  } },
+    { "dot_expander":   { "field": "certificate.not_valid_after",               "path": "message2",                                     "ignore_failure": true  } },
+    { "rename":         { "field": "message2.certificate.not_valid_after",      "target_field": "x509.certificate.not_valid_after",             "ignore_missing": true  } },
+    { "dot_expander":   { "field": "certificate.key_alg",                       "path": "message2",                                     "ignore_failure": true  } },
+    { "rename":         { "field": "message2.certificate.key_alg",              "target_field": "x509.certificate.key.algorithm",               "ignore_missing": true  } },
+    { "dot_expander":   { "field": "certificate.sig_alg",                       "path": "message2",                                     "ignore_failure": true  } },
+    { "rename":         { "field": "message2.certificate.sig_alg",              "target_field": "x509.certificate.signing_algorithm",   "ignore_missing": true  } },
+    { "dot_expander":   { "field": "certificate.key_type",                      "path": "message2",                                     "ignore_failure": true  } },
+    { "rename":         { "field": "message2.certificate.key_type",             "target_field": "x509.certificate.key.type",                    "ignore_missing": true  } },
+    { "dot_expander":   { "field": "certificate.key_length",                    "path": "message2",                                     "ignore_failure": true  } },
+    { "rename":         { "field": "message2.certificate.key_length",           "target_field": "x509.certificate.key.length",          "ignore_missing": true  } },
+    { "dot_expander":   { "field": "certificate.exponent",                      "path": "message2",                                     "ignore_failure": true  } },
+    { "rename":         { "field": "message2.certificate.exponent",             "target_field": "x509.certificate.exponent",                    "ignore_missing": true  } },
+    { "dot_expander":   { "field": "certificate.curve",                         "path": "message2",                                     "ignore_failure": true  } },
+    { "rename":         { "field": "message2.certificate.curve",                "target_field": "x509.certificate.curve",                       "ignore_missing": true  } },
+    { "dot_expander":   { "field": "san.dns",                                   "path": "message2",                                     "ignore_failure": true  } },
+    { "rename":         { "field": "message2.san.dns",                          "target_field": "x509.san_dns",                         "ignore_missing": true  } },
+    { "dot_expander":   { "field": "san.uri",                                   "path": "message2",                                     "ignore_failure": true  } },
+    { "rename":         { "field": "message2.san.uri",                          "target_field": "x509.san_uri",                         "ignore_missing": true  } },
+    { "dot_expander":   { "field": "san.email",                                 "path": "message2",                                     "ignore_failure": true  } },
+    { "rename":         { "field": "message2.san.email",                        "target_field": "x509.san_email",                               "ignore_missing": true  } },
+    { "dot_expander":   { "field": "san.ip",                                    "path": "message2",                                     "ignore_failure": true  } },
+    { "rename":         { "field": "message2.san.ip",                           "target_field": "x509.san_ip",                          "ignore_missing": true  } },
+    { "dot_expander":   { "field": "basic_constraints.ca",                      "path": "message2",                                     "ignore_failure": true  } },
+    { "rename":         { "field": "message2.basic_constraints.ca",             "target_field": "x509.basic_constraints.ca",                    "ignore_missing": true  } },
+    { "dot_expander":   { "field": "basic_constraints.path_length",             "path": "message2",                                     "ignore_failure": true  } },
+    { "rename":         { "field": "message2.basic_constraints.path_length",    "target_field": "x509.basic_constraints.path_length",   "ignore_missing": true  } },
+    { "rename":         { "field": "message2.fingerprint",                      "target_field": "hash.sha256",   "ignore_missing": true  } },
+    { "pipeline":       { "name": "zeek.common_ssl"                                                                                                             } }
   ]
 }