From 2dd6f2ebec4597630ac97de4b4e7c03a4a9d0724 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Thomas=20Sj=C3=B6gren?= Date: Fri, 7 Jul 2017 10:21:38 +0200 Subject: [PATCH 01/23] update test names MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: Thomas Sjögren --- tests/1_host_configuration.sh | 26 +++++++++++++------------- 1 file changed, 13 insertions(+), 13 deletions(-) diff --git a/tests/1_host_configuration.sh b/tests/1_host_configuration.sh index e2da4a9..3c9f5f0 100644 --- a/tests/1_host_configuration.sh +++ b/tests/1_host_configuration.sh @@ -5,7 +5,7 @@ info "1 - Host Configuration" auditrules="/etc/audit/audit.rules" # 1.1 -check_1_1="1.1 - Create a separate partition for containers" +check_1_1="1.1 - Ensure a separate partition for containers has been created" if grep /var/lib/docker /etc/fstab >/dev/null 2>&1; then pass "$check_1_1" else @@ -13,11 +13,11 @@ else fi # 1.2 -check_1_2="1.2 - Harden the container host" +check_1_2="1.2 - Ensure the container host has been Hardened" note "$check_1_2" # 1.3 -check_1_3="1.3 - Keep Docker up to date" +check_1_3="1.3 - Ensure Docker is up to date" docker_version=$(docker version | grep -i -A1 '^server' | grep -i 'version:' \ | awk '{print $NF; exit}' | tr -d '[:alpha:]-,') docker_current_version="$(date +%y.%m.0)" @@ -34,7 +34,7 @@ else fi # 1.4 -check_1_4="1.4 - Only allow trusted users to control Docker daemon" +check_1_4="1.4 - Ensure only trusted users are allowed to control Docker daemon" docker_users=$(getent group docker) info "$check_1_4" for u in $docker_users; do @@ -42,7 +42,7 @@ for u in $docker_users; do done # 1.5 -check_1_5="1.5 - Audit docker daemon - /usr/bin/docker" +check_1_5="1.5 - Ensure auditing is configured for the Docker daemon" file="/usr/bin/docker " if command -v auditctl >/dev/null 2>&1; then if auditctl -l | grep "$file" >/dev/null 2>&1; then @@ -57,7 +57,7 @@ else fi # 1.6 -check_1_6="1.6 - Audit Docker files and directories - /var/lib/docker" +check_1_6="1.6 - Ensure auditing is configured for Docker files and directories - /var/lib/docker" directory="/var/lib/docker" if [ -d "$directory" ]; then if command -v auditctl >/dev/null 2>&1; then @@ -77,7 +77,7 @@ else fi # 1.7 -check_1_7="1.7 - Audit Docker files and directories - /etc/docker" +check_1_7="1.7 - Ensure auditing is configured for Docker files and directories - /etc/docker" directory="/etc/docker" if [ -d "$directory" ]; then if command -v auditctl >/dev/null 2>&1; then @@ -97,7 +97,7 @@ else fi # 1.8 -check_1_8="1.8 - Audit Docker files and directories - docker.service" +check_1_8="1.8 - Ensure auditing is configured for Docker files and directories - docker.service" file="$(get_systemd_service_file docker.service)" if [ -f "$file" ]; then if command -v auditctl >/dev/null 2>&1; then @@ -117,7 +117,7 @@ else fi # 1.9 -check_1_9="1.9 - Audit Docker files and directories - docker.socket" +check_1_9="1.9 - Ensure auditing is configured for Docker files and directories - docker.socket" file="$(get_systemd_service_file docker.socket)" if [ -e "$file" ]; then if command -v auditctl >/dev/null 2>&1; then @@ -137,7 +137,7 @@ else fi # 1.10 -check_1_10="1.10 - Audit Docker files and directories - /etc/default/docker" +check_1_10="1.10 - Ensure auditing is configured for Docker files and directories - /etc/default/docker" file="/etc/default/docker" if [ -f "$file" ]; then if command -v auditctl >/dev/null 2>&1; then @@ -157,7 +157,7 @@ else fi # 1.11 -check_1_11="1.11 - Audit Docker files and directories - /etc/docker/daemon.json" +check_1_11="1.11 - Ensure auditing is configured for Docker files and directories - /etc/docker/daemon.json" file="/etc/docker/daemon.json" if [ -f "$file" ]; then if command -v auditctl >/dev/null 2>&1; then @@ -177,7 +177,7 @@ else fi # 1.12 -check_1_12="1.12 - Audit Docker files and directories - /usr/bin/docker-containerd" +check_1_12="1.12 - Ensure auditing is configured for Docker files and directories - /usr/bin/docker-containerd" file="/usr/bin/docker-containerd" if [ -f "$file" ]; then if command -v auditctl >/dev/null 2>&1; then @@ -197,7 +197,7 @@ else fi # 1.13 -check_1_13="1.13 - Audit Docker files and directories - /usr/bin/docker-runc" +check_1_13="1.13 - Ensure auditing is configured for Docker files and directories - /usr/bin/docker-runc" file="/usr/bin/docker-runc" if [ -f "$file" ]; then if command -v auditctl >/dev/null 2>&1; then From e8d553b4c0fdb22f518377f27b29741e4bda713c Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Thomas=20Sj=C3=B6gren?= Date: Fri, 7 Jul 2017 10:22:27 +0200 Subject: [PATCH 02/23] Update to CIS Docker Community Edition Benchmark MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: Thomas Sjögren --- README.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/README.md b/README.md index 945c3fd..a16fe2f 100644 --- a/README.md +++ b/README.md @@ -4,7 +4,7 @@ The Docker Bench for Security is a script that checks for dozens of common best-practices around deploying Docker containers in production. The tests are -all automated, and are inspired by the [CIS Docker 1.13 Benchmark](https://benchmarks.cisecurity.org/tools2/docker/CIS_Docker_1.13.0_Benchmark_v1.0.0.pdf). +all automated, and are inspired by the [CIS Docker Community Edition Benchmark v1.1.0](https://benchmarks.cisecurity.org/tools2/docker/CIS_Docker_Community_Edition_Benchmark_v1.1.0.pdf). We are releasing this as a follow-up to our [Understanding Docker Security and Best Practices](https://blog.docker.com/2015/05/understanding-docker-security-and-best-practices/) blog post. From 2226ad1b9012f7b808f006a04c8e03cd34bde448 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Thomas=20Sj=C3=B6gren?= Date: Fri, 7 Jul 2017 10:22:57 +0200 Subject: [PATCH 03/23] update versions, CIS Docker Community Edition Benchmark MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: Thomas Sjögren --- docker-bench-security.sh | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/docker-bench-security.sh b/docker-bench-security.sh index b8074f5..00e38fc 100755 --- a/docker-bench-security.sh +++ b/docker-bench-security.sh @@ -1,11 +1,11 @@ #!/bin/sh # ------------------------------------------------------------------------------ -# Docker Bench for Security v1.3.2 +# Docker Bench for Security v1.3.3 # # Docker, Inc. (c) 2015- # # Checks for dozens of common best-practices around deploying Docker containers in production. -# Inspired by the CIS Docker 1.13 Benchmark. +# Inspired by the CIS Docker Community Edition Benchmark v1.1.0. # ------------------------------------------------------------------------------ # Load dependencies @@ -56,12 +56,12 @@ if [ -z "$logger" ]; then fi yell "# ------------------------------------------------------------------------------ -# Docker Bench for Security v1.3.2 +# Docker Bench for Security v1.3.3 # # Docker, Inc. (c) 2015- # # Checks for dozens of common best-practices around deploying Docker containers in production. -# Inspired by the CIS Docker 1.13 Benchmark. +# Inspired by the CIS Docker Community Edition Benchmark v1.1.0. # ------------------------------------------------------------------------------" # Warn if not root From d93bc6b07592a849840bb0ca7cc465fdbe11043b Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Thomas=20Sj=C3=B6gren?= Date: Fri, 7 Jul 2017 10:23:40 +0200 Subject: [PATCH 04/23] update section 2, clean tests MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: Thomas Sjögren --- tests/2_docker_daemon_configuration.sh | 126 ++++++------------------- 1 file changed, 29 insertions(+), 97 deletions(-) diff --git a/tests/2_docker_daemon_configuration.sh b/tests/2_docker_daemon_configuration.sh index d8755db..c422949 100644 --- a/tests/2_docker_daemon_configuration.sh +++ b/tests/2_docker_daemon_configuration.sh @@ -1,10 +1,10 @@ #!/bin/sh logit "\n" -info "2 - Docker Daemon Configuration" +info "2 - Docker daemon configuration" # 2.1 -check_2_1="2.1 - Restrict network traffic between containers" +check_2_1="2.1 - Ensure network traffic is restricted between containers on the default bridge" if get_docker_effective_command_line_args '--icc' | grep false >/dev/null 2>&1; then pass "$check_2_1" elif get_docker_configuration_file_args 'icc' | grep "false" >/dev/null 2>&1; then @@ -14,7 +14,7 @@ else fi # 2.2 -check_2_2="2.2 - Set the logging level" +check_2_2="2.2 - Ensure the logging level is set to 'info'" if get_docker_configuration_file_args 'log-level' >/dev/null 2>&1; then if get_docker_configuration_file_args 'log-level' | grep info >/dev/null 2>&1; then pass "$check_2_2" @@ -34,7 +34,7 @@ else fi # 2.3 -check_2_3="2.3 - Allow Docker to make changes to iptables" +check_2_3="2.3 - Ensure Docker is allowed to make changes to iptables" if get_docker_effective_command_line_args '--iptables' | grep "false" >/dev/null 2>&1; then warn "$check_2_3" elif get_docker_configuration_file_args 'iptables' | grep "false" >/dev/null 2>&1; then @@ -44,7 +44,7 @@ else fi # 2.4 -check_2_4="2.4 - Do not use insecure registries" +check_2_4="2.4 - Ensure insecure registries are not used" if get_docker_effective_command_line_args '--insecure-registry' | grep "insecure-registry" >/dev/null 2>&1; then warn "$check_2_4" elif ! [ -z "$(get_docker_configuration_file_args 'insecure-registries')" ]; then @@ -58,7 +58,7 @@ else fi # 2.5 -check_2_5="2.5 - Do not use the aufs storage driver" +check_2_5="2.5 - Ensure aufs storage driver is not used" if docker info 2>/dev/null | grep -e "^Storage Driver:\s*aufs\s*$" >/dev/null 2>&1; then warn "$check_2_5" else @@ -66,7 +66,7 @@ else fi # 2.6 -check_2_6="2.6 - Configure TLS authentication for Docker daemon" +check_2_6="2.6 - Ensure TLS authentication for Docker daemon is configured" if grep -i 'tcp://' "$CONFIG_FILE" 2>/dev/null 1>&2; then if [ $(get_docker_configuration_file_args '"tls":' | grep 'true') ] || \ [ $(get_docker_configuration_file_args '"tlsverify' | grep 'true') ] ; then @@ -101,7 +101,7 @@ fi # 2.7 -check_2_7="2.7 - Set default ulimit as appropriate" +check_2_7="2.7 - Ensure the default ulimit is configured appropriately" if get_docker_configuration_file_args 'default-ulimit' | grep -v '{}' >/dev/null 2>&1; then pass "$check_2_7" elif get_docker_effective_command_line_args '--default-ulimit' | grep "default-ulimit" >/dev/null 2>&1; then @@ -122,7 +122,7 @@ else fi # 2.9 -check_2_9="2.9 - Confirm default cgroup usage" +check_2_9="2.9 - Ensure the default cgroup usage has been confirmed" if get_docker_configuration_file_args 'cgroup-parent' | grep -v '""'; then warn "$check_2_9" info " * Confirm cgroup usage" @@ -134,7 +134,7 @@ else fi # 2.10 -check_2_10="2.10 - Do not change base device size until needed" +check_2_10="2.10 - Ensure base device size is not changed until needed" if get_docker_configuration_file_args 'storage-opts' | grep "dm.basesize" >/dev/null 2>&1; then warn "$check_2_10" elif get_docker_effective_command_line_args '--storage-opt' | grep "dm.basesize" >/dev/null 2>&1; then @@ -144,7 +144,7 @@ else fi # 2.11 -check_2_11="2.11 - Use authorization plugin" +check_2_11="2.11 - Ensure that authorization for Docker client commands is enabled" if get_docker_configuration_file_args 'authorization-plugins' | grep -v '\[]'; then pass "$check_2_11" elif get_docker_effective_command_line_args '--authorization-plugin' | grep "authorization-plugin" >/dev/null 2>&1; then @@ -154,7 +154,7 @@ else fi # 2.12 -check_2_12="2.12 - Configure centralized and remote logging" +check_2_12="2.12 - Ensure centralized and remote logging is configured" if docker info --format '{{ .LoggingDriver }}' | grep 'json-file' >/dev/null 2>&1; then warn "$check_2_12" else @@ -162,7 +162,7 @@ else fi # 2.13 -check_2_13="2.13 - Disable operations on legacy registry (v1)" +check_2_13="2.13 - Ensure operations on legacy registry (v1) are Disabled" if get_docker_configuration_file_args 'disable-legacy-registry' | grep 'true' >/dev/null 2>&1; then pass "$check_2_13" elif get_docker_effective_command_line_args '--disable-legacy-registry' | grep "disable-legacy-registry" >/dev/null 2>&1; then @@ -172,7 +172,7 @@ else fi # 2.14 -check_2_14="2.14 - Enable live restore" +check_2_14="2.14 - Ensure live restore is Enabled" if docker info 2>/dev/null | grep -e "Live Restore Enabled:\s*true\s*" >/dev/null 2>&1; then pass "$check_2_14" else @@ -184,105 +184,37 @@ else fi # 2.15 -check_2_15="2.15 - Do not enable swarm mode, if not needed" -if docker info 2>/dev/null | grep -e "Swarm:*\sinactive\s*" >/dev/null 2>&1; then +check_2_15="2.15 - Ensure Userland Proxy is Disabled" +if get_docker_configuration_file_args 'userland-proxy' | grep false >/dev/null 2>&1; then + pass "$check_2_15" +elif get_docker_effective_command_line_args '--userland-proxy=false' 2>/dev/null | grep "userland-proxy=false" >/dev/null 2>&1; then pass "$check_2_15" else warn "$check_2_15" fi # 2.16 -check_2_16="2.16 - Control the number of manager nodes in a swarm" -if docker info 2>/dev/null | grep -e "Swarm:*\sactive\s*" >/dev/null 2>&1; then - managernodes=$(docker node ls | grep -c "Leader") - if [ "$managernodes" -le 1 ]; then - pass "$check_2_16" - else - warn "$check_2_16" - fi +check_2_16="2.16 - Ensure daemon-wide custom seccomp profile is applied, if needed" +if docker info --format '{{ .SecurityOptions }}' | grep 'name=seccomp,profile=default' 2>/dev/null 1>&2; then + pass "$check_2_16" else - pass "$check_2_16 (Swarm mode not enabled)" + info "$check_2_16" fi # 2.17 -check_2_17="2.17 - Bind swarm services to a specific host interface" -if docker info 2>/dev/null | grep -e "Swarm:*\sactive\s*" >/dev/null 2>&1; then - netstat -lnt | grep -e '\[::]:2377 ' -e ':::2377' -e '*:2377 ' -e ' 0\.0\.0\.0:2377 ' >/dev/null 2>&1 - if [ $? -eq 1 ]; then - pass "$check_2_17" - else - warn "$check_2_17" - fi +check_2_17="2.17 - Ensure experimental features are avoided in production" +if docker version -f '{{.Server.Experimental}}' | grep false 2>/dev/null 1>&2; then + pass "$check_2_17" else - pass "$check_2_17 (Swarm mode not enabled)" + warn "$check_2_17" fi # 2.18 -check_2_18="2.18 - Disable Userland Proxy" -if get_docker_configuration_file_args 'userland-proxy' | grep false >/dev/null 2>&1; then +check_2_18="2.18 - Ensure containers are restricted from acquiring new privileges" +if get_docker_effective_command_line_args '--no-new-privileges' >/dev/null 2>&1; then pass "$check_2_18" -elif get_docker_effective_command_line_args '--userland-proxy=false' 2>/dev/null | grep "userland-proxy=false" >/dev/null 2>&1; then +elif get_docker_configuration_file_args 'no-new-privileges' >/dev/null 2>&1; then pass "$check_2_18" else warn "$check_2_18" fi - -# 2.19 -check_2_19="2.19 - Encrypt data exchanged between containers on different nodes on the overlay network" -if docker network ls --filter driver=overlay --quiet | \ - xargs docker network inspect --format '{{.Name}} {{ .Options }}' 2>/dev/null | \ - grep -v 'encrypted:' 2>/dev/null 1>&2; then - warn "$check_2_19" - for encnet in $(docker network ls --filter driver=overlay --quiet); do - if docker network inspect --format '{{.Name}} {{ .Options }}' "$encnet" | \ - grep -v 'encrypted:' 2>/dev/null 1>&2; then - warn " * Unencrypted overlay network: $(docker network inspect --format '{{ .Name }} ({{ .Scope }})' "$encnet")" - fi - done -else - pass "$check_2_19" -fi - -# 2.20 -check_2_20="2.20 - Apply a daemon-wide custom seccomp profile, if needed" -if docker info --format '{{ .SecurityOptions }}' | grep 'name=seccomp,profile=default' 2>/dev/null 1>&2; then - pass "$check_2_20" -else - info "$check_2_20" -fi - -# 2.21 -check_2_21="2.21 - Avoid experimental features in production" -if docker version -f '{{.Server.Experimental}}' | grep false 2>/dev/null 1>&2; then - pass "$check_2_21" -else - warn "$check_2_21" -fi - -# 2.22 -check_2_22="2.22 - Use Docker's secret management commands for managing secrets in a Swarm cluster" -if docker info 2>/dev/null | grep -e "Swarm:\s*active\s*" >/dev/null 2>&1; then - if [ "$(docker secret ls -q | wc -l)" -ge 1 ]; then - pass "$check_2_22" - else - info "$check_2_22" - fi -else - pass "$check_2_22 (Swarm mode not enabled)" -fi - -# 2.23 -check_2_23="2.23 - Run swarm manager in auto-lock mode" -if docker info 2>/dev/null | grep -e "Swarm:\s*active\s*" >/dev/null 2>&1; then - if ! docker swarm unlock-key 2>/dev/null | grep 'SWMKEY' 2>/dev/null 1>&2; then - warn "$check_2_23" - else - pass "$check_2_23" - fi -else - pass "$check_2_23 (Swarm mode not enabled)" -fi - -# 2.24 -check_2_24="2.24 - Rotate swarm manager auto-lock key periodically" -note "$check_2_24" From 03974c0854633180960020558f05b5f7ce9bd52c Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Thomas=20Sj=C3=B6gren?= Date: Fri, 7 Jul 2017 10:37:09 +0200 Subject: [PATCH 05/23] update titles and tests MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: Thomas Sjögren --- tests/3_docker_daemon_configuration_files.sh | 44 ++++++++++---------- 1 file changed, 22 insertions(+), 22 deletions(-) diff --git a/tests/3_docker_daemon_configuration_files.sh b/tests/3_docker_daemon_configuration_files.sh index fb5e2ac..1b60aec 100644 --- a/tests/3_docker_daemon_configuration_files.sh +++ b/tests/3_docker_daemon_configuration_files.sh @@ -1,10 +1,10 @@ #!/bin/sh logit "\n" -info "3 - Docker Daemon Configuration Files" +info "3 - Docker daemon configuration files" # 3.1 -check_3_1="3.1 - Verify that docker.service file ownership is set to root:root" +check_3_1="3.1 - Ensure that docker.service file ownership is set to root:root" file="$(get_systemd_service_file docker.service)" if [ -f "$file" ]; then if [ "$(stat -c %u%g $file)" -eq 00 ]; then @@ -19,7 +19,7 @@ else fi # 3.2 -check_3_2="3.2 - Verify that docker.service file permissions are set to 644 or more restrictive" +check_3_2="3.2 - Ensure that docker.service file permissions are set to 644 or more restrictive" file="$(get_systemd_service_file docker.service)" if [ -f "$file" ]; then if [ "$(stat -c %a $file)" -eq 644 -o "$(stat -c %a $file)" -eq 600 ]; then @@ -34,7 +34,7 @@ else fi # 3.3 -check_3_3="3.3 - Verify that docker.socket file ownership is set to root:root" +check_3_3="3.3 - Ensure that docker.socket file ownership is set to root:root" file="$(get_systemd_service_file docker.socket)" if [ -f "$file" ]; then if [ "$(stat -c %u%g $file)" -eq 00 ]; then @@ -49,7 +49,7 @@ else fi # 3.4 -check_3_4="3.4 - Verify that docker.socket file permissions are set to 644 or more restrictive" +check_3_4="3.4 - Ensure that docker.socket file permissions are set to 644 or more restrictive" file="$(get_systemd_service_file docker.socket)" if [ -f "$file" ]; then if [ "$(stat -c %a $file)" -eq 644 -o "$(stat -c %a $file)" -eq 600 ]; then @@ -64,7 +64,7 @@ else fi # 3.5 -check_3_5="3.5 - Verify that /etc/docker directory ownership is set to root:root" +check_3_5="3.5 - Ensure that /etc/docker directory ownership is set to root:root" directory="/etc/docker" if [ -d "$directory" ]; then if [ "$(stat -c %u%g $directory)" -eq 00 ]; then @@ -79,7 +79,7 @@ else fi # 3.6 -check_3_6="3.6 - Verify that /etc/docker directory permissions are set to 755 or more restrictive" +check_3_6="3.6 - Ensure that /etc/docker directory permissions are set to 755 or more restrictive" directory="/etc/docker" if [ -d "$directory" ]; then if [ "$(stat -c %a $directory)" -eq 755 -o "$(stat -c %a $directory)" -eq 700 ]; then @@ -94,7 +94,7 @@ else fi # 3.7 -check_3_7="3.7 - Verify that registry certificate file ownership is set to root:root" +check_3_7="3.7 - Ensure that registry certificate file ownership is set to root:root" directory="/etc/docker/certs.d/" if [ -d "$directory" ]; then fail=0 @@ -116,7 +116,7 @@ else fi # 3.8 -check_3_8="3.8 - Verify that registry certificate file permissions are set to 444 or more restrictive" +check_3_8="3.8 - Ensure that registry certificate file permissions are set to 444 or more restrictive" directory="/etc/docker/certs.d/" if [ -d "$directory" ]; then fail=0 @@ -138,7 +138,7 @@ else fi # 3.9 -check_3_9="3.9 - Verify that TLS CA certificate file ownership is set to root:root" +check_3_9="3.9 - Ensure that TLS CA certificate file ownership is set to root:root" if ! [ -z $(get_docker_configuration_file_args 'tlscacert') ]; then tlscacert=$(get_docker_configuration_file_args 'tlscacert') else @@ -157,7 +157,7 @@ else fi # 3.10 -check_3_10="3.10 - Verify that TLS CA certificate file permissions are set to 444 or more restrictive" +check_3_10="3.10 - Ensure that TLS CA certificate file permissions are set to 444 or more restrictive" if ! [ -z $(get_docker_configuration_file_args 'tlscacert') ]; then tlscacert=$(get_docker_configuration_file_args 'tlscacert') else @@ -176,7 +176,7 @@ else fi # 3.11 -check_3_11="3.11 - Verify that Docker server certificate file ownership is set to root:root" +check_3_11="3.11 - Ensure that Docker server certificate file ownership is set to root:root" if ! [ -z $(get_docker_configuration_file_args 'tlscert') ]; then tlscert=$(get_docker_configuration_file_args 'tlscert') else @@ -195,7 +195,7 @@ else fi # 3.12 -check_3_12="3.12 - Verify that Docker server certificate file permissions are set to 444 or more restrictive" +check_3_12="3.12 - Ensure that Docker server certificate file permissions are set to 444 or more restrictive" if ! [ -z $(get_docker_configuration_file_args 'tlscert') ]; then tlscert=$(get_docker_configuration_file_args 'tlscert') else @@ -214,7 +214,7 @@ else fi # 3.13 -check_3_13="3.13 - Verify that Docker server key file ownership is set to root:root" +check_3_13="3.13 - Ensure that Docker server certificate key file ownership is set to root:root" if ! [ -z $(get_docker_configuration_file_args 'tlskey') ]; then tlskey=$(get_docker_configuration_file_args 'tlskey') else @@ -233,14 +233,14 @@ else fi # 3.14 -check_3_14="3.14 - Verify that Docker server key file permissions are set to 400 or more restrictive" +check_3_14="3.14 - Ensure that Docker server certificate key file permissions are set to 400" if ! [ -z $(get_docker_configuration_file_args 'tlskey') ]; then tlskey=$(get_docker_configuration_file_args 'tlskey') else tlskey=$(get_docker_effective_command_line_args '--tlskey' | sed -n 's/.*tlskey=\([^s]\)/\1/p' | sed 's/--/ --/g' | cut -d " " -f 1) fi if [ -f "$tlskey" ]; then - if [ "$(stat -c %a $tlskey)" -eq 444 -o "$(stat -c %a $tlskey)" -eq 400 ]; then + if [ "$(stat -c %a $tlskey)" -eq 400 ]; then pass "$check_3_14" else warn "$check_3_14" @@ -252,7 +252,7 @@ else fi # 3.15 -check_3_15="3.15 - Verify that Docker socket file ownership is set to root:docker" +check_3_15="3.15 - Ensure that Docker socket file ownership is set to root:docker" file="/var/run/docker.sock" if [ -S "$file" ]; then if [ "$(stat -c %U:%G $file)" = 'root:docker' ]; then @@ -267,7 +267,7 @@ else fi # 3.16 -check_3_16="3.16 - Verify that Docker socket file permissions are set to 660 or more restrictive" +check_3_16="3.16 - Ensure that Docker socket file permissions are set to 660 or more restrictive" file="/var/run/docker.sock" if [ -S "$file" ]; then if [ "$(stat -c %a $file)" -eq 660 -o "$(stat -c %a $file)" -eq 600 ]; then @@ -282,7 +282,7 @@ else fi # 3.17 -check_3_17="3.17 - Verify that daemon.json file ownership is set to root:root" +check_3_17="3.17 - Ensure that daemon.json file ownership is set to root:root" file="/etc/docker/daemon.json" if [ -f "$file" ]; then if [ "$(stat -c %U:%G $file)" = 'root:root' ]; then @@ -297,7 +297,7 @@ else fi # 3.18 -check_3_18="3.18 - Verify that daemon.json file permissions are set to 644 or more restrictive" +check_3_18="3.18 - Ensure that daemon.json file permissions are set to 644 or more restrictive" file="/etc/docker/daemon.json" if [ -f "$file" ]; then if [ "$(stat -c %a $file)" -eq 644 -o "$(stat -c %a $file)" -eq 600 ]; then @@ -312,7 +312,7 @@ else fi # 3.19 -check_3_19="3.19 - Verify that /etc/default/docker file ownership is set to root:root" +check_3_19="3.19 - Ensure that /etc/default/docker file ownership is set to root:root" file="/etc/default/docker" if [ -f "$file" ]; then if [ "$(stat -c %U:%G $file)" = 'root:root' ]; then @@ -327,7 +327,7 @@ else fi # 3.20 -check_3_20="3.20 - Verify that /etc/default/docker file permissions are set to 644 or more restrictive" +check_3_20="3.20 - Ensure that /etc/default/docker file permissions are set to 644 or more restrictive" file="/etc/default/docker" if [ -f "$file" ]; then if [ "$(stat -c %a $file)" -eq 644 -o "$(stat -c %a $file)" -eq 600 ]; then From efa3b4522f5ec7993374d177edfbb7744abd5799 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Thomas=20Sj=C3=B6gren?= Date: Fri, 7 Jul 2017 10:56:18 +0200 Subject: [PATCH 06/23] update check names MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: Thomas Sjögren --- tests/4_container_images.sh | 24 ++++++++++++------------ 1 file changed, 12 insertions(+), 12 deletions(-) diff --git a/tests/4_container_images.sh b/tests/4_container_images.sh index 36da724..6867844 100644 --- a/tests/4_container_images.sh +++ b/tests/4_container_images.sh @@ -1,10 +1,10 @@ #!/bin/sh logit "\n" -info "4 - Container Images and Build Files" +info "4 - Container Images and Build File" # 4.1 -check_4_1="4.1 - Create a user for the container" +check_4_1="4.1 - Ensure a user for the container has been created" # If container_users is empty, there are no running containers if [ -z "$containers" ]; then @@ -41,19 +41,19 @@ set +f; unset IFS images=$(docker images -q) # 4.2 -check_4_2="4.2 - Use trusted base images for containers" +check_4_2="4.2 - Ensure that containers use trusted base images" note "$check_4_2" # 4.3 -check_4_3="4.3 - Do not install unnecessary packages in the container" +check_4_3="4.3 - Ensure unnecessary packages are not installed in the container" note "$check_4_3" # 4.4 -check_4_4="4.4 - Scan and rebuild the images to include security patches" +check_4_4="4.4 - Ensure images are scanned and rebuilt to include security patches" note "$check_4_4" # 4.5 -check_4_5="4.5 - Enable Content trust for Docker" +check_4_5="4.5 - Ensure Content trust for Docker is Enabled" if [ "x$DOCKER_CONTENT_TRUST" = "x1" ]; then pass "$check_4_5" else @@ -61,7 +61,7 @@ else fi # 4.6 -check_4_6="4.6 - Add HEALTHCHECK instruction to the container image" +check_4_6="4.6 - Ensure HEALTHCHECK instructions have been added to the container image" fail=0 for img in $images; do if docker inspect --format='{{.Config.Healthcheck}}' "$img" 2>/dev/null | grep -e "" >/dev/null 2>&1; then @@ -80,7 +80,7 @@ if [ $fail -eq 0 ]; then fi # 4.7 -check_4_7="4.7 - Do not use update instructions alone in the Dockerfile" +check_4_7="4.7 - Ensure update instructions are not use alone in the Dockerfile" fail=0 for img in $images; do if docker history "$img" 2>/dev/null | grep -e "update" >/dev/null 2>&1; then @@ -99,11 +99,11 @@ if [ $fail -eq 0 ]; then fi # 4.8 -check_4_8="4.8 - Remove setuid and setgid permissions in the images" +check_4_8="4.8 - Ensure setuid and setgid permissions are removed in the images" note "$check_4_8" # 4.9 -check_4_9="4.9 - Use COPY instead of ADD in Dockerfile" +check_4_9="4.9 - Ensure COPY is used instead of ADD in Dockerfile" fail=0 for img in $images; do docker history "$img" 2> /dev/null | grep 'ADD' >/dev/null 2>&1 @@ -123,9 +123,9 @@ if [ $fail -eq 0 ]; then fi # 4.10 -check_4_10="4.10 - Do not store secrets in Dockerfiles" +check_4_10="4.10 - Ensure secrets are not stored in Dockerfiles" note "$check_4_10" # 4.11 -check_4_11="4.11 - Install verified packages only" +check_4_11="4.11 - Ensure verified packages are only Installed" note "$check_4_11" From 88b48315bc4f0c16ef1e54beadc1a9f84c2de692 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Thomas=20Sj=C3=B6gren?= Date: Fri, 7 Jul 2017 11:16:49 +0200 Subject: [PATCH 07/23] update checks MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: Thomas Sjögren --- tests/5_container_runtime.sh | 62 ++++++++++++++++++------------------ 1 file changed, 31 insertions(+), 31 deletions(-) diff --git a/tests/5_container_runtime.sh b/tests/5_container_runtime.sh index e6962d9..f7565d3 100644 --- a/tests/5_container_runtime.sh +++ b/tests/5_container_runtime.sh @@ -11,7 +11,7 @@ else set -f; IFS=$' ' # 5.1 - check_5_1="5.1 - Do not disable AppArmor Profile" + check_5_1="5.1 - Ensure AppArmor Profile is Enabled" fail=0 for c in $containers; do @@ -34,7 +34,7 @@ else fi # 5.2 - check_5_2="5.2 - Verify SELinux security options, if applicable" + check_5_2="5.2 - Ensure SELinux security options are set, if applicable" fail=0 for c in $containers; do @@ -57,7 +57,7 @@ else fi # 5.3 - check_5_3="5.3 - Restrict Linux Kernel Capabilities within containers" + check_5_3="5.3 - Ensure Linux Kernel Capabilities are restricted within containers" fail=0 for c in $containers; do @@ -83,7 +83,7 @@ else fi # 5.4 - check_5_4="5.4 - Do not use privileged containers" + check_5_4="5.4 - Ensure privileged containers are not used" fail=0 for c in $containers; do @@ -106,7 +106,7 @@ else fi # 5.5 - check_5_5="5.5 - Do not mount sensitive host system directories on containers" + check_5_5="5.5 - Ensure sensitive host system directories are not mounted on containers" # List of sensitive directories to test for. Script uses new-lines as a separator. # Note the lack of identation. It needs it for the substring comparison. @@ -149,7 +149,7 @@ else fi # 5.6 - check_5_6="5.6 - Do not run ssh within containers" + check_5_6="5.6 - Ensure ssh is not run within containers" fail=0 printcheck=0 @@ -185,7 +185,7 @@ else fi # 5.7 - check_5_7="5.7 - Do not map privileged ports within containers" + check_5_7="5.7 - Ensure privileged ports are not mapped within containers" fail=0 for c in $containers; do @@ -194,7 +194,7 @@ else # iterate through port range (line delimited) for port in $ports; do - if [ ! -z "$port" ] && [ "0$port" -lt 1024 ]; then + if [ ! -z "$port" ] && [ "$port" -lt 1024 ]; then # If it's the first container, fail the test if [ $fail -eq 0 ]; then warn "$check_5_7" @@ -212,11 +212,11 @@ else fi # 5.8 - check_5_8="5.8 - Open only needed ports on container" + check_5_8="5.8 - Ensure only needed ports are open on the container" note "$check_5_8" # 5.9 - check_5_9="5.9 - Do not share the host's network namespace" + check_5_9="5.9 - Ensure the host's network namespace is not shared" fail=0 for c in $containers; do @@ -239,7 +239,7 @@ else fi # 5.10 - check_5_10="5.10 - Limit memory usage for container" + check_5_10="5.10 - Ensure memory usage for container is limited" fail=0 for c in $containers; do @@ -266,7 +266,7 @@ else fi # 5.11 - check_5_11="5.11 - Set container CPU priority appropriately" + check_5_11="5.11 - Ensure CPU priority is set appropriately on the container" fail=0 for c in $containers; do @@ -293,7 +293,7 @@ else fi # 5.12 - check_5_12="5.12 - Mount container's root filesystem as read only" + check_5_12="5.12 - Ensure the container's root filesystem is mounted as read only" fail=0 for c in $containers; do @@ -316,7 +316,7 @@ else fi # 5.13 - check_5_13="5.13 - Bind incoming container traffic to a specific host interface" + check_5_13="5.13 - Ensure incoming container traffic is binded to a specific host interface" fail=0 for c in $containers; do @@ -339,7 +339,7 @@ else fi # 5.14 - check_5_14="5.14 - Set the 'on-failure' container restart policy to 5" + check_5_14="5.14 - Ensure 'on-failure' container restart policy is set to '5'" fail=0 for c in $containers; do @@ -362,7 +362,7 @@ else fi # 5.15 - check_5_15="5.15 - Do not share the host's process namespace" + check_5_15="5.15 - Ensure the host's process namespace is not shared" fail=0 for c in $containers; do @@ -385,7 +385,7 @@ else fi # 5.16 - check_5_16="5.16 - Do not share the host's IPC namespace" + check_5_16="5.16 - Ensure the host's IPC namespace is not shared" fail=0 for c in $containers; do @@ -408,7 +408,7 @@ else fi # 5.17 - check_5_17="5.17 - Do not directly expose host devices to containers" + check_5_17="5.17 - Ensure host devices are not directly exposed to containers" fail=0 for c in $containers; do @@ -431,7 +431,7 @@ else fi # 5.18 - check_5_18="5.18 - Override default ulimit at runtime only if needed" + check_5_18="5.18 - Ensure the default ulimit is overwritten at runtime, only if needed" fail=0 for c in $containers; do @@ -454,7 +454,7 @@ else fi # 5.19 - check_5_19="5.19 - Do not set mount propagation mode to shared" + check_5_19="5.19 - Ensure mount propagation mode is not set to shared" fail=0 for c in $containers; do @@ -476,7 +476,7 @@ else fi # 5.20 - check_5_20="5.20 - Do not share the host's UTS namespace" + check_5_20="5.20 - Ensure the host's UTS namespace is not shared" fail=0 for c in $containers; do @@ -499,7 +499,7 @@ else fi # 5.21 - check_5_21="5.21 - Do not disable default seccomp profile" + check_5_21="5.21 - Ensure the default seccomp profile is not Disabled" fail=0 for c in $containers; do @@ -520,15 +520,15 @@ else fi # 5.22 - check_5_22="5.22 - Do not docker exec commands with privileged option" + check_5_22="5.22 - Ensure docker exec commands are not used with privileged option" note "$check_5_22" # 5.23 - check_5_23="5.23 - Do not docker exec commands with user option" + check_5_23="5.23 - Ensure docker exec commands are not used with user option" note "$check_5_23" # 5.24 - check_5_24="5.24 - Confirm cgroup usage" + check_5_24="5.24 - Ensure cgroup usage is confirmed" fail=0 for c in $containers; do @@ -551,7 +551,7 @@ else fi # 5.25 - check_5_25="5.25 - Restrict container from acquiring additional privileges" + check_5_25="5.25 - Ensure the container is restricted from acquiring additional privileges" fail=0 for c in $containers; do @@ -572,7 +572,7 @@ else fi # 5.26 - check_5_26="5.26 - Check container health at runtime" + check_5_26="5.26 - Ensure container health is checked at runtime" fail=0 for c in $containers; do @@ -595,7 +595,7 @@ else info "$check_5_27" # 5.28 - check_5_28="5.28 - Use PIDs cgroup limit" + check_5_28="5.28 - Ensure PIDs cgroup limit is used" fail=0 for c in $containers; do @@ -618,7 +618,7 @@ else fi # 5.29 - check_5_29="5.29 - Do not use Docker's default bridge docker0" + check_5_29="5.29 - Ensure Docker's default bridge docker0 is not used" fail=0 networks=$(docker network ls -q 2>/dev/null) @@ -644,7 +644,7 @@ else fi # 5.30 - check_5_30="5.30 - Do not share the host's user namespaces" + check_5_30="5.30 - Ensure the host's user namespaces is not shared" fail=0 for c in $containers; do @@ -665,7 +665,7 @@ else fi # 5.31 - check_5_31="5.31 - Do not mount the Docker socket inside any containers" + check_5_31="5.31 - Ensure the Docker socket is not mounted inside any containers" fail=0 for c in $containers; do From e1e902b3ed727b07d242e140742b0cc1e85b6bff Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Thomas=20Sj=C3=B6gren?= Date: Fri, 7 Jul 2017 11:19:02 +0200 Subject: [PATCH 08/23] update checks MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: Thomas Sjögren --- tests/6_docker_security_operations.sh | 24 ++++++------------------ 1 file changed, 6 insertions(+), 18 deletions(-) diff --git a/tests/6_docker_security_operations.sh b/tests/6_docker_security_operations.sh index de1c930..d56c87d 100644 --- a/tests/6_docker_security_operations.sh +++ b/tests/6_docker_security_operations.sh @@ -4,19 +4,7 @@ logit "\n" info "6 - Docker Security Operations" # 6.1 -check_6_1="6.1 - Perform regular security audits of your host system and containers" -info "$check_6_1" - -# 6.2 -check_6_2="6.2 - Monitor Docker containers usage, performance and metering" -info "$check_6_2" - -# 6.3 -check_6_3="6.3 - Backup container data" -info "$check_6_3" - -# 6.4 -check_6_4="6.4 - Avoid image sprawl" +check_6_1="6.1 - Avoid image sprawl" images=$(docker images -q | sort -u | wc -l | awk '{print $1}') active_images=0 @@ -26,22 +14,22 @@ for c in $(docker inspect -f "{{.Image}}" $(docker ps -qa)); do fi done - info "$check_6_4" + info "$check_6_1" info " * There are currently: $images images" if [ "$active_images" -lt "$((images / 2))" ]; then info " * Only $active_images out of $images are in use" fi -# 6.5 -check_6_5="6.5 - Avoid container sprawl" +# 6.2 +check_6_2="6.2 - Avoid container sprawl" total_containers=$(docker info 2>/dev/null | grep "Containers" | awk '{print $2}') running_containers=$(docker ps -q | wc -l | awk '{print $1}') diff="$((total_containers - running_containers))" if [ "$diff" -gt 25 ]; then - info "$check_6_5" + info "$check_6_2" info " * There are currently a total of $total_containers containers, with only $running_containers of them currently running" else - info "$check_6_5" + info "$check_6_2" info " * There are currently a total of $total_containers containers, with $running_containers of them currently running" fi From 789af6d8d60bda2358ec74e27e8205ebff99fdd9 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Thomas=20Sj=C3=B6gren?= Date: Fri, 7 Jul 2017 11:43:15 +0200 Subject: [PATCH 09/23] add Docker Swarm Configuration tests MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: Thomas Sjögren --- tests/7_docker_swarm_configuration.sh | 110 ++++++++++++++++++++++++++ 1 file changed, 110 insertions(+) create mode 100644 tests/7_docker_swarm_configuration.sh diff --git a/tests/7_docker_swarm_configuration.sh b/tests/7_docker_swarm_configuration.sh new file mode 100644 index 0000000..f44d249 --- /dev/null +++ b/tests/7_docker_swarm_configuration.sh @@ -0,0 +1,110 @@ +#!/bin/sh + +logit "\n" +info "7 - Docker Swarm Configuration" + +# 7.1 +check_7_1="7.1 - Ensure swarm mode is not Enabled, if not needed" +if docker info 2>/dev/null | grep -e "Swarm:*\sinactive\s*" >/dev/null 2>&1; then + pass "$check_7_1" +else + warn "$check_7_1" +fi + +# 7.2 +check_7_2="7.2 - Ensure the minimum number of manager nodes have been created in a swarm" +if docker info 2>/dev/null | grep -e "Swarm:*\sactive\s*" >/dev/null 2>&1; then + managernodes=$(docker node ls | grep -c "Leader") + if [ "$managernodes" -le 1 ]; then + pass "$check_7_2" + else + warn "$check_7_2" + fi +else + pass "$check_7_2 (Swarm mode not enabled)" +fi + +# 7.3 +check_7_3="7.3 - Ensure swarm services are binded to a specific host interface" +if docker info 2>/dev/null | grep -e "Swarm:*\sactive\s*" >/dev/null 2>&1; then + netstat -lnt | grep -e '\[::]:2377 ' -e ':::2377' -e '*:2377 ' -e ' 0\.0\.0\.0:2377 ' >/dev/null 2>&1 + if [ $? -eq 1 ]; then + pass "$check_7_3" + else + warn "$check_7_3" + fi +else + pass "$check_7_3 (Swarm mode not enabled)" +fi + +# 7.4 +check_7_4="7.4 - Ensure data exchanged between containers are encrypted on different nodes on the overlay network" +if docker network ls --filter driver=overlay --quiet | \ + xargs docker network inspect --format '{{.Name}} {{ .Options }}' 2>/dev/null | \ + grep -v 'encrypted:' 2>/dev/null 1>&2; then + warn "$check_7_4" + for encnet in $(docker network ls --filter driver=overlay --quiet); do + if docker network inspect --format '{{.Name}} {{ .Options }}' "$encnet" | \ + grep -v 'encrypted:' 2>/dev/null 1>&2; then + warn " * Unencrypted overlay network: $(docker network inspect --format '{{ .Name }} ({{ .Scope }})' "$encnet")" + fi + done +else + pass "$check_7_4" +fi + +# 7.5 +check_7_5="7.5 - Ensure Docker's secret management commands are used for managing secrets in a Swarm cluster" +if docker info 2>/dev/null | grep -e "Swarm:\s*active\s*" >/dev/null 2>&1; then + if [ "$(docker secret ls -q | wc -l)" -ge 1 ]; then + pass "$check_7_5" + else + info "$check_7_5" + fi +else + pass "$check_7_5 (Swarm mode not enabled)" +fi + +# 7.6 +check_7_6="7.6 - Ensure swarm manager is run in auto-lock mode" +if docker info 2>/dev/null | grep -e "Swarm:\s*active\s*" >/dev/null 2>&1; then + if ! docker swarm unlock-key 2>/dev/null | grep 'SWMKEY' 2>/dev/null 1>&2; then + warn "$check_7_6" + else + pass "$check_7_6" + fi +else + pass "$check_7_6 (Swarm mode not enabled)" +fi + +# 7.7 +check_7_7="7.7 - Ensure swarm manager auto-lock key is rotated periodically" +note "$check_7_7" + +# 7.8 +check_7_8="7.8 - Ensure node certificates are rotated as appropriate" +if docker info 2>/dev/null | grep -e "Swarm:\s*active\s*" >/dev/null 2>&1; then + if docker info | grep "Expiry Duration: 2 days"; then + pass "$check_7_8" + else + info "$check_7_8" + fi +else + pass "$check_7_8 (Swarm mode not enabled)" +fi + +# 7.9 +check_7_9="7.9 - Ensure CA certificates are rotated as appropriate" +if docker info 2>/dev/null | grep -e "Swarm:\s*active\s*" >/dev/null 2>&1; then + info "$check_7_9" +else + pass "$check_7_9 (Swarm mode not enabled)" +fi + +# 7.10 +check_7_10="7.10 - Ensure management plane traffic has been separated from data plane traffic" +if docker info 2>/dev/null | grep -e "Swarm:\s*active\s*" >/dev/null 2>&1; then + info "$check_7_10" +else + pass "$check_7_10 (Swarm mode not enabled)" +fi From cabb5d8dbc42dec4c9a23fa5d100629b0d10e6bc Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Thomas=20Sj=C3=B6gren?= Date: Fri, 7 Jul 2017 11:46:49 +0200 Subject: [PATCH 10/23] update CONTRIBUTING.md MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: Thomas Sjögren --- CONTRIBUTING.md | 27 ++++++++++++++------------- 1 file changed, 14 insertions(+), 13 deletions(-) diff --git a/CONTRIBUTING.md b/CONTRIBUTING.md index 5cb9a26..0df4a44 100644 --- a/CONTRIBUTING.md +++ b/CONTRIBUTING.md @@ -20,34 +20,34 @@ compliant shell. We try to keep the project compliant for maximum portability. You can build the container that wraps the docker-bench for security: ```sh -✗ git clone git@github.com:docker/docker-bench-security.git -✗ cd docker-bench-security -✗ docker build -t docker-bench-security . +$ git clone git@github.com:docker/docker-bench-security.git +$ cd docker-bench-security +$ docker build -t docker-bench-security . ``` Or you can simply run the shell script locally: ```sh -✗ git clone git@github.com:docker/docker-bench-security.git -✗ cd docker-bench-security -✗ sh docker-bench-security.sh +$ git clone git@github.com:docker/docker-bench-security.git +$ cd docker-bench-security +$ sh docker-bench-security.sh ``` The Docker Bench has the main script called `docker-bench-security.sh`. This is the main script that checks for all the dependencies, deals with command line arguments and loads all the tests. -The tests are split in 6 different files: +The tests are split into the following files: ```sh -✗ tree tests/ tests/ ├── 1_host_configuration.sh ├── 2_docker_daemon_configuration.sh ├── 3_docker_daemon_configuration_files.sh ├── 4_container_images.sh ├── 5_container_runtime.sh -└── 6_docker_security_operations.sh +├── 6_docker_security_operations.sh +└── 7_docker_swarm_configuration.sh ``` To modify the Docker Bench for Security you should first clone the repository, @@ -55,7 +55,8 @@ make your changes, check your code with `shellcheck`, `checkbashisms` or similar tools, and then sign off on your commits. After that feel free to send us a pull request with the changes. -While this tool was inspired by the [CIS Docker 1.11.0 benchmark](https://benchmarks.cisecurity.org/downloads/show-single/index.cfm?file=docker16.110), -feel free to add new tests. We will try to turn [dockerbench.com](https://dockerbench.com) -into a list of good community benchmarks for both security and performance, -and we would love community contributions. +While this tool was inspired by the [CIS Docker 1.11.0 benchmark](https://benchmarks.cisecurity.org/downloads/show-single/index.cfm?file=docker16.110) +and its successors, feel free to add new tests. We will try to turn +[dockerbench.com](https://dockerbench.com) into a list of good community +benchmarks for both security and performance, and we would love community +contributions. From 2f0112497aa5f230f7e2f0c71541a599d8e922e9 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Thomas=20Sj=C3=B6gren?= Date: Fri, 7 Jul 2017 12:02:15 +0200 Subject: [PATCH 11/23] md formating MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: Thomas Sjögren --- CONTRIBUTING.md | 12 ++++++------ 1 file changed, 6 insertions(+), 6 deletions(-) diff --git a/CONTRIBUTING.md b/CONTRIBUTING.md index 0df4a44..668470e 100644 --- a/CONTRIBUTING.md +++ b/CONTRIBUTING.md @@ -20,17 +20,17 @@ compliant shell. We try to keep the project compliant for maximum portability. You can build the container that wraps the docker-bench for security: ```sh -$ git clone git@github.com:docker/docker-bench-security.git -$ cd docker-bench-security -$ docker build -t docker-bench-security . +git clone git@github.com:docker/docker-bench-security.git +cd docker-bench-security +docker build -t docker-bench-security . ``` Or you can simply run the shell script locally: ```sh -$ git clone git@github.com:docker/docker-bench-security.git -$ cd docker-bench-security -$ sh docker-bench-security.sh +git clone git@github.com:docker/docker-bench-security.git +cd docker-bench-security +sh docker-bench-security.sh ``` The Docker Bench has the main script called `docker-bench-security.sh`. From 3736e0e7118250cb4d2c2d579fefe5f81337ee77 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Thomas=20Sj=C3=B6gren?= Date: Fri, 7 Jul 2017 12:03:40 +0200 Subject: [PATCH 12/23] docs MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: Thomas Sjögren --- CONTRIBUTING.md | 2 +- README.md | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/CONTRIBUTING.md b/CONTRIBUTING.md index 668470e..bae896e 100644 --- a/CONTRIBUTING.md +++ b/CONTRIBUTING.md @@ -30,7 +30,7 @@ Or you can simply run the shell script locally: ```sh git clone git@github.com:docker/docker-bench-security.git cd docker-bench-security -sh docker-bench-security.sh +sudo sh docker-bench-security.sh ``` The Docker Bench has the main script called `docker-bench-security.sh`. diff --git a/README.md b/README.md index a16fe2f..1984f0f 100644 --- a/README.md +++ b/README.md @@ -76,7 +76,7 @@ Also, this script can also be simply run from your base host by running: ```sh git clone https://github.com/docker/docker-bench-security.git cd docker-bench-security -sh docker-bench-security.sh +sudo sh docker-bench-security.sh ``` This script was build to be POSIX 2004 compliant, so it should be portable From 60afd7ec83f8dbb09a8288ab6454c8dd56b3d5f2 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Thomas=20Sj=C3=B6gren?= Date: Fri, 7 Jul 2017 12:05:42 +0200 Subject: [PATCH 13/23] 7.7 verify swarm MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: Thomas Sjögren --- tests/7_docker_swarm_configuration.sh | 6 +++++- 1 file changed, 5 insertions(+), 1 deletion(-) diff --git a/tests/7_docker_swarm_configuration.sh b/tests/7_docker_swarm_configuration.sh index f44d249..f834c8c 100644 --- a/tests/7_docker_swarm_configuration.sh +++ b/tests/7_docker_swarm_configuration.sh @@ -79,7 +79,11 @@ fi # 7.7 check_7_7="7.7 - Ensure swarm manager auto-lock key is rotated periodically" -note "$check_7_7" +if docker info 2>/dev/null | grep -e "Swarm:\s*active\s*" >/dev/null 2>&1; then + note "$check_7_7" +else + pass "$check_7_8 (Swarm mode not enabled)" +fi # 7.8 check_7_8="7.8 - Ensure node certificates are rotated as appropriate" From 125eaf90cd5a81774bf0a92f9612f8f7df784ba4 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Thomas=20Sj=C3=B6gren?= Date: Fri, 7 Jul 2017 12:07:00 +0200 Subject: [PATCH 14/23] inspect requires images MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: Thomas Sjögren --- tests/6_docker_security_operations.sh | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/tests/6_docker_security_operations.sh b/tests/6_docker_security_operations.sh index d56c87d..e2fd264 100644 --- a/tests/6_docker_security_operations.sh +++ b/tests/6_docker_security_operations.sh @@ -8,7 +8,7 @@ check_6_1="6.1 - Avoid image sprawl" images=$(docker images -q | sort -u | wc -l | awk '{print $1}') active_images=0 -for c in $(docker inspect -f "{{.Image}}" $(docker ps -qa)); do +for c in $(docker inspect -f "{{.Image}}" $(docker ps -qa) 2>/dev/null); do if docker images --no-trunc -a | grep "$c" > /dev/null ; then active_images=$(( active_images += 1 )) fi From 5bf4f824a4fecd5afc2f004e3231652a6f24379d Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Thomas=20Sj=C3=B6gren?= Date: Fri, 7 Jul 2017 12:08:31 +0200 Subject: [PATCH 15/23] pass 7.7 MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: Thomas Sjögren --- tests/7_docker_swarm_configuration.sh | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/tests/7_docker_swarm_configuration.sh b/tests/7_docker_swarm_configuration.sh index f834c8c..c5f401b 100644 --- a/tests/7_docker_swarm_configuration.sh +++ b/tests/7_docker_swarm_configuration.sh @@ -82,7 +82,7 @@ check_7_7="7.7 - Ensure swarm manager auto-lock key is rotated periodically" if docker info 2>/dev/null | grep -e "Swarm:\s*active\s*" >/dev/null 2>&1; then note "$check_7_7" else - pass "$check_7_8 (Swarm mode not enabled)" + pass "$check_7_7 (Swarm mode not enabled)" fi # 7.8 From dac6a62ba1b5493906ad849d150e15609419b6d0 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Thomas=20Sj=C3=B6gren?= Date: Fri, 7 Jul 2017 12:10:37 +0200 Subject: [PATCH 16/23] space MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: Thomas Sjögren --- tests/2_docker_daemon_configuration.sh | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/tests/2_docker_daemon_configuration.sh b/tests/2_docker_daemon_configuration.sh index c422949..dccb24c 100644 --- a/tests/2_docker_daemon_configuration.sh +++ b/tests/2_docker_daemon_configuration.sh @@ -4,7 +4,7 @@ logit "\n" info "2 - Docker daemon configuration" # 2.1 -check_2_1="2.1 - Ensure network traffic is restricted between containers on the default bridge" +check_2_1="2.1 - Ensure network traffic is restricted between containers on the default bridge" if get_docker_effective_command_line_args '--icc' | grep false >/dev/null 2>&1; then pass "$check_2_1" elif get_docker_configuration_file_args 'icc' | grep "false" >/dev/null 2>&1; then From 00c2d6e79668520d8d5a2086927f1ebaa712fae5 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Thomas=20Sj=C3=B6gren?= Date: Fri, 7 Jul 2017 12:24:03 +0200 Subject: [PATCH 17/23] docker date versioning MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: Thomas Sjögren --- tests/1_host_configuration.sh | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/tests/1_host_configuration.sh b/tests/1_host_configuration.sh index 3c9f5f0..a5ac033 100644 --- a/tests/1_host_configuration.sh +++ b/tests/1_host_configuration.sh @@ -21,11 +21,11 @@ check_1_3="1.3 - Ensure Docker is up to date" docker_version=$(docker version | grep -i -A1 '^server' | grep -i 'version:' \ | awk '{print $NF; exit}' | tr -d '[:alpha:]-,') docker_current_version="$(date +%y.%m.0)" -docker_current_date="$(date +%Y-%m-01)" +docker_current_date="$(date --date="$(date +%Y-%m-01) -1 month" +%Y-%m-01)" do_version_check "$docker_current_version" "$docker_version" if [ $? -eq 11 ]; then info "$check_1_3" - info " * Using $docker_version, when $docker_current_version is current as of $docker_current_date" + info " * Using $docker_version, verify is it up to date as deemed necessary" info " * Your operating system vendor may provide support and security maintenance for Docker" else pass "$check_1_3" From 6f0303ef56e7c5d2bdecb5aabf4a7581080cfd01 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Thomas=20Sj=C3=B6gren?= Date: Fri, 7 Jul 2017 12:31:22 +0200 Subject: [PATCH 18/23] versioning MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: Thomas Sjögren --- tests/1_host_configuration.sh | 5 ++--- 1 file changed, 2 insertions(+), 3 deletions(-) diff --git a/tests/1_host_configuration.sh b/tests/1_host_configuration.sh index a5ac033..0fcba2e 100644 --- a/tests/1_host_configuration.sh +++ b/tests/1_host_configuration.sh @@ -20,8 +20,7 @@ note "$check_1_2" check_1_3="1.3 - Ensure Docker is up to date" docker_version=$(docker version | grep -i -A1 '^server' | grep -i 'version:' \ | awk '{print $NF; exit}' | tr -d '[:alpha:]-,') -docker_current_version="$(date +%y.%m.0)" -docker_current_date="$(date --date="$(date +%Y-%m-01) -1 month" +%Y-%m-01)" +docker_current_version="$(date --date="$(date +%Y-%m-01) -1 month" +%Y-%m-01)" do_version_check "$docker_current_version" "$docker_version" if [ $? -eq 11 ]; then info "$check_1_3" @@ -29,7 +28,7 @@ if [ $? -eq 11 ]; then info " * Your operating system vendor may provide support and security maintenance for Docker" else pass "$check_1_3" - info " * Using $docker_version which is current as of $docker_current_date" + info " * Using $docker_version which is current" info " * Check with your operating system vendor for support and security maintenance for Docker" fi From 73afde56d08eb382b0c1fe58233f574557092ed3 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Thomas=20Sj=C3=B6gren?= Date: Fri, 7 Jul 2017 12:38:21 +0200 Subject: [PATCH 19/23] date conversion MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: Thomas Sjögren --- tests/1_host_configuration.sh | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/tests/1_host_configuration.sh b/tests/1_host_configuration.sh index 0fcba2e..10c3116 100644 --- a/tests/1_host_configuration.sh +++ b/tests/1_host_configuration.sh @@ -20,7 +20,7 @@ note "$check_1_2" check_1_3="1.3 - Ensure Docker is up to date" docker_version=$(docker version | grep -i -A1 '^server' | grep -i 'version:' \ | awk '{print $NF; exit}' | tr -d '[:alpha:]-,') -docker_current_version="$(date --date="$(date +%Y-%m-01) -1 month" +%Y-%m-01)" +docker_current_version="$(date --date="$(date +%y-%m-1) -1 month" +%y.%m.0)" do_version_check "$docker_current_version" "$docker_version" if [ $? -eq 11 ]; then info "$check_1_3" From 565ef3fb3bea6f341a6b6e588ecc94b2d80c88c4 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Thomas=20Sj=C3=B6gren?= Date: Fri, 7 Jul 2017 13:03:10 +0200 Subject: [PATCH 20/23] redirect errors MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: Thomas Sjögren --- tests/7_docker_swarm_configuration.sh | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/tests/7_docker_swarm_configuration.sh b/tests/7_docker_swarm_configuration.sh index c5f401b..5b240aa 100644 --- a/tests/7_docker_swarm_configuration.sh +++ b/tests/7_docker_swarm_configuration.sh @@ -88,7 +88,7 @@ fi # 7.8 check_7_8="7.8 - Ensure node certificates are rotated as appropriate" if docker info 2>/dev/null | grep -e "Swarm:\s*active\s*" >/dev/null 2>&1; then - if docker info | grep "Expiry Duration: 2 days"; then + if docker info 2>/dev/null | grep "Expiry Duration: 2 days"; then pass "$check_7_8" else info "$check_7_8" From 84baf80b7d5e351561e50bfdc20b1f8e0c12805a Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Thomas=20Sj=C3=B6gren?= Date: Fri, 7 Jul 2017 13:03:45 +0200 Subject: [PATCH 21/23] no short forms MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: Thomas Sjögren --- tests/6_docker_security_operations.sh | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/tests/6_docker_security_operations.sh b/tests/6_docker_security_operations.sh index e2fd264..adc2c8e 100644 --- a/tests/6_docker_security_operations.sh +++ b/tests/6_docker_security_operations.sh @@ -8,7 +8,7 @@ check_6_1="6.1 - Avoid image sprawl" images=$(docker images -q | sort -u | wc -l | awk '{print $1}') active_images=0 -for c in $(docker inspect -f "{{.Image}}" $(docker ps -qa) 2>/dev/null); do +for c in $(docker inspect --format "{{.Image}}" $(docker ps -qa) 2>/dev/null); do if docker images --no-trunc -a | grep "$c" > /dev/null ; then active_images=$(( active_images += 1 )) fi From 44e46c63c33dcc9631329313a5d08d178868defc Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Thomas=20Sj=C3=B6gren?= Date: Fri, 7 Jul 2017 13:06:23 +0200 Subject: [PATCH 22/23] spaces MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: Thomas Sjögren --- tests/3_docker_daemon_configuration_files.sh | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/tests/3_docker_daemon_configuration_files.sh b/tests/3_docker_daemon_configuration_files.sh index 1b60aec..9995ef0 100644 --- a/tests/3_docker_daemon_configuration_files.sh +++ b/tests/3_docker_daemon_configuration_files.sh @@ -327,7 +327,7 @@ else fi # 3.20 -check_3_20="3.20 - Ensure that /etc/default/docker file permissions are set to 644 or more restrictive" +check_3_20="3.20 - Ensure that /etc/default/docker file permissions are set to 644 or more restrictive" file="/etc/default/docker" if [ -f "$file" ]; then if [ "$(stat -c %a $file)" -eq 644 -o "$(stat -c %a $file)" -eq 600 ]; then From bffb682ef73b3d17cbd645c0ec3733a1ed7139dd Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Thomas=20Sj=C3=B6gren?= Date: Fri, 7 Jul 2017 15:16:32 +0200 Subject: [PATCH 23/23] update png MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: Thomas Sjögren --- benchmark_log.png | Bin 399949 -> 394710 bytes 1 file changed, 0 insertions(+), 0 deletions(-) diff --git a/benchmark_log.png b/benchmark_log.png index dace2d00962208f228f1882dec72a0356a81e579..af537b7f47a6c35fb3dfd4b31d0761efb982cdd1 100644 GIT binary patch literal 394710 zcmd>mby$>J`|i*n5{gn%0!lL?9m9Zxbax{q-8r-fDgx3drKCtB-Ho(#mvjt64mr#j z-22<#{yyEm>zwQSb*=*!Gw-Z<*YmD?>b@7RRg|6*+@QPx000PNWhB)A0IWUKp9U^A zswBNiFbV*;dB<8pLPb_Wf=y1HceIx60==(UaThC@Hs z^(LzU!Nc^L^#Oj2zzkkCCMJAMbh_kprdK!iEFUsHPxt^bjO{E`_l58MFas=Z?NEu+075)I^Cu-IGIYKm z&c8t?4tP~fo-12gOP(vU&-hwVA&#g$4e&0HJ%Nq@fW_r#DJo3RsY>ixzUJ!X`-<(p zhgI%Z0b+27mzoEh>ebzD;^Z7(GA5`amwKmJnU3|c&WCWxZ;c|RN~E?|$Qml7e%V(^ zGuMqaX+<(j>DR8I+m%39rB~$Y_eHyv@uC8CuztvkM7A5fh2@5$n_0jy>^>10a5n?? z)LnHN?-SdK_Yqrk`gE6Y$kXk=gg+Mm0-2>l)iGT&%=d?U{k6P4vk&yRIeaHC`f&r1 z(PgLReI-uZCMOYfH>;~%-aEtotiIam)m^&XJC@R6-+XDwvMxfRrf?-ypACc(H_6{U zeJX4J=-6&a$0+G;@`LyIX6puI~bXg)D}vKrBo;0;iyC1@5(5K#HX{D;{P*z>{{YR%ftdH#6Ca1R~M7 z@W>iZ?Lp?*?I?x4n?LLfNIbg?_f<}hLi$NPTT{C(lirwpy^VO)*e;d<9bGm=+LFb zRJLzAwZl!_ndSNFdn-gW%Qp>3bbhFtJT$7t>FcMlX|iIbT!-6p1f(eUonQEx`(U|Z zK`6rG_JPaX4##G9(qZGTFfQKFa+JnTs_xKxkk-9TZKp&d5q`mI3Y}!(qA3o^jgccy z=8$XUAn9C+n9`ZhJ<$)iGIdC>^WXQuJFGrDXa~O-Oi4LIH`4Q=8NuJ}G_WL2x95Fr zZEL@b8|dYj=s@jA5d*qsYH*g*Yme4kgULG5xT%8;Nb$l3_?;#XEE2GvxC2tQ%)>Fy z)Ka~Ku`$Ka-s}~B2M9F-l3IQ3f-s!0(wd1dU*HmB+-_m7{;^4S&m|3?G}z)Jd0eo& z3CSe3N8p?ZtpILhptRHN6fCl4&F^>)K{zFx=gsnua6?;ggXtJULciZ4kR;=J!cMH; zj_3UJ@|_Cf4Oz*UXr7R$SMOeabIH2HB2jt2?w#I>_6nv8Y0X==`zP;cvS__u_&(u^ zd-Ek@`ZJdhh5M6+@5DUVsjqWB)jUVj3n>z>`Z%_MR*nV=HE@Leu^|;f3bfQnVcgrS?q$lB$pjidS7f>_o_n-xhaP zEnVzk*Ap}aoh-gM)kcr_C{;pNO&pAi7sAtO@PzAAN=c$qiWAKhzh8(cee^fF55&|< z0qPzmM9H{X*nS=A&FY0Ee1cj-dOkU zO7j4h+wYY*853hqVwGcyW7A`wuEedpT`^dpUlDLQTpjO$M%yOTJ)B_Tf1;X`q%zCQ z6?e1eaSv(F{T}Zgi5`7#Z*MpQbzOB2X(*C+@I;UC~XKT zUiw6xCrD>fjEGpvmWxbN>Ty7+pj^-w=!PwF_ho`IOC&!%`6Rwn+sY;-D8(QJ?9hFK z^=9?W)4Rnigv{M66l`bArE#Qen#`#xwV6Cw3fh&bktzdPMuqjpXJrTYcVpg^zDd9F zG+V}^sz)&1NJyIhqtzqO(czJ(X2zG-Ht%dgZSuCn#|X#7dGA)R*f`r9j49DjG&C-aaMHgxBlSDo6j?7OQ@icx*-$|DmDKR{raRrg~PRwxe!aQu41|(wA{TM zqujN;$|ik;=DX>J*OvK)-Kb#UNU{8c`^4&|!zd{80!KY!v!m~sgJ~rf&T;t>`mv-> z-I36d^pWC`*)jg{_AxDm%FUFUY6N_g<&-xmwm3=bR?OoZ%BMCmh9G7n z%U;WOJ0m)Q3Zsg_3O5wC6lgvSD}WSS74sDxKiuk1>3iH?ne6@{a}B<>xpsGLf?Wk4 z2S2UDBfLm9M0OzdH1-SATxph`kM5fOxGr3WtKdoDjY7&oBSpTH6drHHN_cFO-i*GL zF09nwB=Z@Go%-_;yTi`$*#vuiQ^-i9<+@{4dr|l9@tts%Sr$$8-RTi%+m7~R)pUTf zlN+%BmCJ@FkDG!=fm{7@*4CZP^6AYO?v|+;@7IU2>rtG9oZg&I4X#`&-1^<-VCT=i zbZhL6g47{%M{_z3b+ff|?{~X*h3D!(MHSl1R{cI5Kubgy|;xI^`6hFJ(Ocl zbQdw-)nOH_91dK&x2XSPW-0dv*>+VwthA{y;6p$v(j?HYIXEyu?1_oY;(4>M__X-W z$LWtPCS8kCE%x_E-)+3JzpwnHUjpk>zv*)wr^(QguqElG%e_uq;#+r0@BdKEk~Mc& zaU6LyLZ7Rt03o#?sd%*Yj0fc7adfq@L=H=;;39gaXeL!!=={c+`-jc)eAh*1VuvS_ zf|5?06R#?FbmC;3q}&_%>0}s2$(s>!yO*;YQ0 z0V>ljp6ylc8(Cpm?tJq~r-;^#75s2FT{B&AKxsg&DmTNizf{$jH8jJ4zshFhjHus>lK6i=}k6Qhv>*) zW70+ZNqjxBEe?aq607Km48!o~4wi8JL~?c(z2Pbzlg&npIE(ka{=jlhb~fKC5r1#j zXpf=cjQMnQ|1WG>%%pb~beC$Mb;vM)^b(CKs z@_Ri=JlA3Vl}rwU9mXmCd2{(SRc^3EN`J+Z#?OBC6_FJc7Zvd0LWyljcLa_l)rQCh zq-68m>Ledo*U`u@fKE&T)HZ9B2LZz?@z3 z__(v^%4IhG71@B{QLWcn%uIG{q9JE`^$)k~{V#1}p&l3T<)#^=e|_7h%%u;@6*)@l z18YTjhPlNM12ClRr1NF6IDhf{jixboVK{tFn0wc4VRhEe8Mr;aeQ|d3l!o0;#!Kfw zW>fXdtgveg`RL-QUzNm39?e1;oM}jz=BNx}EP7WIF{^#_7G7{!vwJvARtZ#sUz~Ve zaUr4_69s`!vELvyuD%|`Z|0i?cwdc)COw)w(cAMm>ffrObhMpU^qvs9BY5N`0P$M! z>&A&7x)2ret3PGA8aa%vNtaEp^5wc1zT{omZX4Pe8lp-Fd?0wkq~udx9-uxCEieIh zkT4aXawp3Z_?m9`A_FrB8Ipa%{aOH^vWzFTqXu}gM3H@ikKt8b2^npJnFyMV75}_B zy+Xy;_|A;hdpDQbHa7I_0W$pn-&=1ZBkgFZ5oI_r4LD-*MMncnr1T;Su=3lP1C82? zPtTY-nC$j2t#R2FbN4^38$5fwq8rCV$0xalY=2$?zBbDEkvKC|HT zvUft=4FHIE3860SE!<4$yzK29T!p+q^gr(qLS0`M1L^60-r{BpqSsMWp_6cQv7qDS zabE6_86%P!Ra&G4SzY z4%8hSuHFuArd}Klt_*(&`Ij6?3s*B2YbQ5rM+drVxu(w?-Q7U+^w$si>*tSlT6kIi z`$-P2e|8JiLE!Z_KrYTlz`taps)}5f3aMCoS=i}FTH9MVxT2mR%EkNmk;u;qzkK!Y zNB*s>fgTlv#JR2x(k2n(jVjXvlKO8qBlf0?=Yv1w&gX>7R; z-)&TPuL5z;4ff`y@4i1f9vO_?+LrJ#kU*#QZn)w&OH3XA+~<8J-@)yozqG=u5w@(M zArdt*|B)S+&dDC{5{%4X3V_pIK2ASpW2rd?E1dyLLICKvbb-yzq?6~L47{$8@3cPA zogEm*A$KBAdW0v+x@y|v2+%Nz#Qr((xB9&Z zF~I*`Qy6gRWanOGjZ*xpUDt!~9}Ny# zK`+HPMZo#ZT`%@c@rI+moxg@;*Z9?q&a@>Suq9@xeSQeM&+<>5KurtAjdsFC&#iTH zD`YmBuH~k89%rJt=dy$KNot~!{MkyZ+DDu#g2}AUkFV$HcVp2kg82+*@1$y=N8C!k zS0#RU`hl*TpEe&qnBm2#pEP8pc!8}Qwq6=8gYjRj|LfzT^qp74%`lnV;}34UPtp^5 z)fW6TY8gsfd$77I(i5gzN}e`m(Y}*geVg?a_RdZS!ceRBkK>Mpc^fZ;Xz|22x<4W; z6tp8@`M!8V;8d!!g{Zs3<{vtN>X;Y$62@smqQzlP8|EHJi1a@O`md&5&wzkX&>os^ zp6u7F7{cVQED?xY>7dImD{|>^3Mbyy<^BTf7F&cY2?MW=^kX;>8FwCcWU_%+7=Al? z*CXnbdP5R-u?{`a!fKgj^QL8fgM`+Ci_vgIanJbt*B5t(JJ!t$U1IB8f}04e`Hf@K z%q0{;XQDOEQ)7DLdBK&3L(cmgeGd#22m&a`7FrEjJ4W{s{|}4KY-&%lP4Is9Gw2)I zrT@itSq) zOQ4pHOkDQG+lzZ?i$7E`NuBVVyp)~xnbGm9F$L-^Ld)k|1Uu=g^tI;0#D4qjVjl{5qVyi{GL6qxGra*c+VmvPlg=)pWgFvH6k8|7%=*k)w zZ1Kve?C`SMl-Rk5x@-_R39?*6NtESmluAzO_CN2p*+ukQ=%)lz3%*TMZq%h;;>J0< z)wZOjW_>lnYKES!-GW936caajKJxm#-nrg6?-b~s00Jc7c;tdwf|5tLAWTR!(dX%dcFLAr)UA_;kW4mo0zQ+#Q)n4{3Vnw z7-g1lbqe16UI0pRa|R~vB2eyw?|(e}F9Fw*U(tyH!04p;^#9Nd-2WJoX5tN=CLq+o zZ%>XD@l}nvQBke)g8jF3#Q*^`_8*%#pabK~*#+ihjzge`P^G?lF%j+RjEAygyr@L_;G%TvUqyEis zHSd$k5H}ag)}1kI%Id3arbqi0u{OZBhj*!;NATi)Xp(yTI(U-WdMrKB(sPhRA^V`# z;GNsr!)~&xGIMSzSVMlzcUynWN{{s8H}8yV7~@-yZ+qFxe1)f!*Xn^F0b5rxxeGZL z=f!gOJ%{s=6_v!Z0h%o7)r>E(q}7CR2ERE#S)9#k(iV7WMxhnP35atfec?d9UiQJF zF)LzZ+Gw7s<44``kC4OZi1W{~&>q9#ortY;f3b0;*#HTgJ;+?|uyq4#Av{XD>xnue zVj|n1(SBz%_Vd^gf7a9~ID76~ebWtTaNfYr+w|e#nR-n3+=Gtnro8p9f|dPJ>xsBw z5x4%nU9YEiu^JC$>Q81C-t|Mf!j5IZ^xI6k@oR9X+5}&f7*!7J zGJOF2kS*Wp!E%$EW`a+@6;B{CF46O#79vai;$_>(3-xarYs+P2@Q>zDIwaTU7E>wQ z-KJ#TKxE$!^wT+5&)S+*=Zh1iPsK|Be^(fP*7)hX!ue%S)$x-FDvWGyS78T7y)Mlp zzqtUzN`BFY0~I{$(VYHL{XniL6HNM4s6<@7?j1pB2$Q6ZC3vIKZZ;C>-ea z7&=odx>fwk0&A{dB^C}`$V-n+MI>S$53qxPW2-Sc4znCk@n%GMoU$m(OUV`k0;l&N zjaots2p6&xa`~uvEO3Wxs=YXCsb{RE<@^S=ow>%bbZ< zp1*9&MZG((sGAoSgz{T*?F(Hs>e{v!JpiVc&-Rq94Uh`sIE&<=B*XEfGBECXtv{1_ zc~NWEaK;4=G`=*11_ku0T2_B7Kc?b_I^;9pEfR%^$Zt!<8Z4C)t{!Pc&m-9)5DU>t zgN{{smn3D4KKjovPUz<{4&)6?ZvXdMMLEw8i0=n33sE_fW`ME!>}Sn|+>jS74lH!u{<=-1EV)23Iwrn}g0_1t}undHkjev%HD4ajtlz z21aPxCn2@>Co*}LRoS1-;DbI#!o@NTSCHC5ZvU!7=4~Bhl}+865QTtLqCN{C6k&GAjc5%eSSmKVVJVYN$YA zb3AjEY*z4V`q^>5Ow)zEy;+g5X4y-ki0On8t@%Rx)$x4?HcHHph&L@dTrcvs5e?{LQ_9JqI zy9&Q8d;qwsWG?)Rffh)(cIpw@=B~@1R09PK3=i(6_EiW7tB8WKO%^BdFwZ4ec-;C{ zPH;LED!WE@`GDUBc1hHGlUYRX=f`))GE{D@TR0;1)x#5d0;C|8=Mvg)arVN@AfE6h zX5r)TAh#Rw;c9%rL35!Au8ux}4-NwhisrzgmGy+VrFm`EI{XZn2QF!hFe%DeA`d`Q z1*B<*cMfpm1pq4{W@+-x;_>R8q*nOIx|G70Hpp z9(9d!P^p!-?8T|+RG-rq@8&jCcT3K}`saw`3eP&9AFBJDe8X?6d+Gz+E9 zc_vHq%&@?`HzKv&KVuS1dZZ_Y3cr0rxUIsTN^vvx9V!qdoH4nXNi54sE`ZW%6Dt*A zh#Yu{C#@x*snk_#i^GiFj6f)n4Hj#(Y)$QB#nU%vB0*r&&_QJLnvkHp&Ux@T{k&?= zCd9nvz?AxiOc=4vm8+oBmP15@9Zt&EGYC($J@$()Y6jlo2^cLOLw6hzJZm-@7(AoSQ>~|WmSR3VxcNx&N-EjJX_V!=FMQ!qQy1gNu<56_ z@W*NC5yS^IgiXVCSHjR7gW(~`M$2;9hHvWr1}@f$xeMc_n*Mq>ypibYmmbh8{>|V) z)p9a>lz(Gxdy>~pE+p${x;bIt-AySi7uNYEK%{*J79_TBfPNYV@o-BjD59Cj8%-{A zyeVOszTjIQTAqxQ1CGWYv3AhP7hV;dBzSV!JBf?U$gcshINxEuSfiI}D5*~I9Owc^ zr}Be&c&lL+#Lo9Otg$!wd8z}dXlIqd?6yq1_nKx*;*9B1GjA>qRtv-!H`2vtcYESW zn(u2HyZQSMu;2f0SG<{*9c3V4;|FE%o%*LjFFp=YQv$%i%}}Kq0$cWJoT9lTZ1XEc zDT~E-1uD@6J>Gr4xBC(K1+IV$S>T@A@}8bN`-puqXUbi^o;TDxoTf5L(VF$8O%GG( z4V*t~j$^Am%->P7j{Sw4@Z2hnbZ%Dp`CIm>2K~Y%62?Pa!O|=FM(vAxE*2NgFz=#E zMO_w(hQu!PGX8Cq2ZPT6b2E};Lc=4E-$otV6}e89RnX=Xrd_=%&;YXtlCg;+?39~! zr{VLXmHey{tQScIg{jB83P}@JhllvsLeR?`RY`AgK zmEpkU$;n)onR`8w4=cy;t>Xiz$hZ0+Y~8IHhw^G#l~Vs5fd!c{5DNygk&?azZ)4K>1;cn*z*k(LLZX(}%8-CGgh^YnIp&4^<8kq5Nz=!)+>z36lwZBIU zoRssICU9wvh2K@ubQi772xltoX?@Z&TrhUQ}!0!ztiR_BR=dVu-XHoZ9NIJir`r0z=DOytTxhZ zkDchX-P@d#+)m6|G1^Fer)ts^;{5)d^yfskq)(uRX0B@TIpm2?=?Hj1XlA{aEc=IV zPTzLv#^su(!|*RLZcsieDkD@30(<_<2sxwoU1x;8`sz3^eH({efTpFsP z=OYR_zhvC?EkhRsWll83)|0ta_~fne;Bw>cMD={1aBi=9yT5ORwFiCeoU6$|9zt#0 z%a**K(4Z)nd6ko2x@F?bu0tl6WR*(}_jUqLHuyu+#vL5z8ISQDY_Tg|SVT*ppYFqr zPcK_<4Cp!f7#0@ZF5ecH!?y)$)uiT9lH2nd#UaiUvu#s^Q}7(-UcY)lsI(_~xo_fl z&!Y(ky#o*9)U0bAGjvg2OTTi!vBmxA;IkbGh(lm&k9Jnm$vbe0;@T};;2%a7QmGfq!dmwq_Eo$v=vWxL@8_^zRvI>w zbhkPEj@QZU$D})ejQ#QF`xru_-vu4fyIaEVGcmf4lwquU5M6GdN%F6@U16WJ>4<8X zOhLfnh~P9!{Tm4#ge6#2+?-ofY8{InONYXYQ!0+igEP}2;&n7x=8oxJE@t_@pVEvH z8rV)`dK*BUH$My(HiRs|3L7pgiuc=8yCV=ZoveLA+=`Y}tFMzgyT2l9?Hqj-fQ?H2 zlVk!+#doj97WYJ^XByAJGLUt%`Fi?YtVUfHqe4KVdQJ{usn%hr4)=6>0XmbHFNw{}hqc)ML^%ok{f&9ngEc%-7Paf4s=(p%&UaUE(O@vbrBEkvc=L?51Z`n!tw znM;iV6NAb6ddvc7Lvu}4YdvZ3g(-Ww^=gSxlv>lrTnb72gw+y&|D?$B8b8s}rni0` z$~AcrSAgKEq%GX}0fugvPfYKI(|*S*z#w^iGsX^v_^`w0|443rvP$c$byt|_)5lNn zc_Q!GO51hwlV%WEk_FyCCf868E3DmJx+3MW%cggHj*+D5_4{1E(h=pECXChqj!iYE z`B!dhZ;$F04t**TzaXC^xGY0k`*^=gzddZMiENmKHL~L11mp;VbE_Q6AEZLk@8EZ) z+=pYUr{OTY;hPSrxXL*ETDH#eOAcmM>}PiI9V)w++3Yn!PV=e6MYacvn#hlnh^;xh z%|4Emmed*?v%S8bKn){&%&TCzt4OR6|2(eQ?LM#w4c}|cpor5x` zaF43lTpQQc-1_19w&5dk1AAUIML$U}h(N8U#+3MU>Ul2hU}@m2o}VxhsM-xo_iPcDjQgv+LH$LMj~O?T>r$Fg-s&jAZJ9}|69>I?t0 zuWcKna)GWe3;$t$%c|)ldGOoXt~%OAoYFVD#1YYXoO|s8SLhOLm@cV%=07Hnv@WXn zN9@PlL@xI8o>q2oJ`_qO)oLmviA;oQ+y)a>T7zp|M-I&VfgVXO&MtHs9fZn#oi8~| z`H<*$t6h$1k0;;LvGB~(@jZ+~2+Zx6@T)W5c^d_SIexoZyI3`Ol;rY9n&&vf&Oub@ zX1&5qfd?%jj5@qB=awvmmkI0<$LAAe4#+oD)g(+x?43B}o~t$c^YPOpUMD?%^GW@& zd=(JS=@u&fz+w#ex0dm_vIS?1{plCwM=2V;{1Gu@M%BsF_@2{%F{8EIEZ-kkEJ@Kd z8X0_3cpGy|UmK-Z{U9z~XTI@w?q_14{j2aKW5(Y7_}mG1U&Gu)r%Mm&l&)t! zfv#$esz&+NC8tHrsZ1l4oHhV&L1MAU2_x*yu1VNqXJ4;%!i=T;Eu}2sA=b`)GL}H_ z(vLXx!AQ8$f^#VIhohvjh_73d9@CJ3d^x|r%0VxQq|Go9M0Iy%cZOjf}(dh&~Vc2Dvr zQh?#=Nrd5=xu~4uEe?4tH2(YAzI_9U2EEn zscApmN-;ZmMYFJk$;*Lc?tJ@C0qsv++U0&>o)|iHz{Q&b_yHn$xE%g@xMt4t*TX zE8QSSQLn1zQJPadlmaW&Ojjz1RWB9_UB87rV`#zz0n*$RF-64^Kwc z?Jn#Ok}~zXU73Ow=5r-T-V0(TlBF6y@=W_Rnu%aUMKb{rWgDkGsql1LjU0N!d|Fl+ zEJ+~rpncjpFn8{XNQmp1RF{dvb4tgdCHse1)JzW4`yHWfGl|*x;%#oM!nn*iyiE$0 zPol5IB2L;XJF?=}l7R@79g%sYd!fP{(fZk?Q2#9MS?D< z8|~6G;6No0$R3Ba`%LDEix35zf(6Cp zt75Wim;d!q0Q4>e6pY0+bN|ji<5*}<0|BDY|K5QA2AG1(m{IK|-@WtZ5AMfrkt#Ib z>ED+BVR*V!u3It7a_0}c`roquc7=Xg{@>%Ipo_FSIx}| z<3tabSpNHXJCvc!iZqR2x&4cw`wNe#t zFMA&3-T5*BK$DXE$AMTpy~bnyq+WtRZdLkI0eEzsmj z{%$6ImQ9498gX?st}D1^VouyN_!Ay@d5Yj2!e(atr=B!({f>K) zdE>4Yr%Vx|e3UR0bnpNXsKIK*nCcg1J~CydWB)(Q9140vrKDg@^vU;#2q2ST1?r6% z%Zp?bIABJy{9pF{Uvs?pld@ry(9cFh(tNU^^9vyG*IX`cV7B7yWk2jcmlv`d$l-yf zQ(_(D$FTXSJ)T?79y(ttiOUnt(h*`9c9g9=3RnAfC#vWu>+N4p`X!O#&U&3lxnYoy z8Ue}TPAY^G>iYG1%knp}qLPq=S~6tmu@yavyFHh`#QcA?2@ph%9(~QjnXquZ=xr+~ zOHU-R^^`Nac%kOl#N}0pN@}vKZ@SZ(8JGMdH~hXaX=2p?f28JA%>f>@=z5&PY3LD7 z11!usOD*^4?2#APH=8wYv@WaO-{`;^Nc%tVQ^e?k#l8Wq*vcyQ-yJ<+^8Fg8EW&_= ze)_3H=hna5{NGpVi?7g6b5RH$Bbu-Jhks;Pp<&YFhTtzo-M;xYAl+MGd}2_}^`am$ zpb4atdF|uBv^Pnuh|Fp%5oc^`by=Z?okD4m*wUk z$jn_&UW@l^{%|eRsPPe_lL`pHYB3 zZ9MztZ&dZ4g8%;%GAL2`cdCG!4GmswX9VMSTcl3yiyLGQk|Fthb$G{h;Ao}dOhI#A zL{&csanIUVRr_zN?cd9X^!_`#K;u}C!>7Zsm081JhBE_AALvB(obY!S+rUQw;pVrc z=!A#AfPwwHY3nGmnR^Z0W}jjV@Y15&^36O%+x64LsLOXW#EyV(~AMz(L2GD~qXxix)#uB*6T|CtJWC zwbcUi;NpXuzuO8yFLD3I33#dSZ%%+Ck+B?2dy%aDGN&~mgEI-&@L89+#qk!-#GhmU z?ameVlbG5ZvK{<;BdoDK;QQP8Rf>=cY%f0vINxr<_~$|^xk1?q-;vpEY5~jDxa&Mh z2g54`eoruS#o9gY-gF=s7(YDIIkAb<@hF~Ug1+wZ)07({GiTARtjw47JLI%}%c+Dp zui$4et|ZF5*&Lq9)SzvC*dvi?g3P*`GNB}U){d{1l+;{q??wIF?wwtC?_VaC<7Dk!NkJ%Im8*NPPF&~;QzWLFp$NTyOk3LRc zsc~(GR5;un=~KKfTvl;Xp$b}e-cew{r%}(lbliFwJCj>Tb#XjCU)*i9j1y*OJcf^( zSb&d9K+xV4;6gVq4}Ghl&eURi=1P)*^+ z+_Sp1PxBjV-5h=GFTfmA<6jI^k}5ztiVS12M?EcE54qds3n-w`P5!VIQ?@7C79z}v z11Zt|Fo+Q2(?`+e*nty8&j6Ez8Y371)dA;FG7C>w6wj+K64b~1*(1jfl2%Z&VB(PNE}J*lZ8L#pfmo)+sW9DgBXVB8xk#zX}E zFzgEDaQI6Lb(RYAy;WY1F+io)RZm9LSOauwagbtqhU*60zUIflOIu}A5MzSexk3`5 zK;y9*ws~HUfvsNQY=Z{lvLJkH2ieo`-gpb-BT~$!zBQN5u=%C|_AH-M@$cM+K!tR+^mTlWxNXVCN?6Ny_0#VW#6y6eRnNTFCPBY~Sc~ zj#j<_ULN_naJi({X);1%4Mch8az<^G>%t0jo~rG3311koH>NJs8ZW(aj5k;!q;9)_ zH=ka8ML&h2dc48&fEO1~c?U*j?tPYE@=@g{6JXe`;W6bvW{!7iwC`qSnT8L<$*}7C z!08-{2Qc5}-SBZJ#$ex3R>`f;n_$4h$8k%~;y9q{P9pe=dqo(PGl}lv!d3qC%o&N1 z<9ch4XO=;dNSJuj_9XH(_Em+$f%=x;*K#*7-*mBc5OuO~!s-}~yU5YzYE&6AC)ec& zb~Kad#>@(SZm4rsSxeQ}^lV~qn&^EtzRyXYFEH)sC}}e%z{5A?Vj#S%=6K_C#P%l> zLoeHHLr`62oe$NSuhe=B^Op0MHg`kkux*$5Z@yYU;;R^E1Gg+)WWv#7Fw@Ic;Vi?8 ztkGFvKr8m%2+{W0swjgZ69dg}ZJ&YRHA9x#;hB0^@*|<|Goj^@L|-TSRA%X_{#h zvcDpwrt<0sl7E*_ z`|&pCODD5+WlA}V=Tz=U#knDTuS`QE0fAl=r*!sDw%|C+M=Nm5cyZ~WcwUvX*=Q72 zo7H;ihN11Z4~ySr;at$&1=;19I+!A-q6uz#vv-@`0=x3oa+%K$m|X3;LZyCOxvM8G z(QhqIQJL5&z#nFjy0^cShqfrNJoz+jq(h{r?j=&^`XF>NcR>8w=PBCqm?NAH&YVG_8W_J zvULIKR#`e%kTL_Fur23>72t1_6pEvG>n}*!Z8AmCdItqbuV_EeKF>0*9hA>JZZmzY z?kQ91Cf&vNr-R-O?Y6->Do88$gPJzwfp+G?D2N?)QpRXHuac%%pdCg<^~ydGx$YaO zLyy2O2r9Y`_4{ZB6W!_OA<`uKk!nf{488G0+bUv0Au5OIy+P`p`Py~VP6KPOXou|# z=h95pj(9TjscH!^H|CFsLSu@4hDUvD`j^3Ryb;&E{1M{V7O^n`tc)I4^TFv>k|yL=N#= ze;<-Q{Tak0ESK#(e+LnuSp5SG?$mCWUqkt_lp*!qhJr1|Y#*;NFS=rWsxaQpDxJ0% z%uu4C;rC{dC;C3BCS6U;bV3Ev$15*xliM^j-G@4;GOZnTu~hXw{#?$zhM?2)mXpgL z{H8W<9I)5OoAs8v=md{?Vg{nK?7!Z#5Enlz3$rgp|Dp5_;ti!>q2%&!P!{*m3w2}N z%Si8}Pb@f)##_8_pQt>^sccZKQJ?BEw}%#x8AQ|}NxO-^_1a*V#nxhLc@(|wuua!` zY_{1qO$M(lP4jF5>L;fkgetoXf3t-YB|&w8&&Q4(LP8<@Pu7-w_F>AQWZ1{#oNGw1 zHP4(kaP3ZW)n)EjVTnt3wQJ6O=$frwV!_02j{Q1SK;Dt?15c{8k4Z){^S>aBC>KJY z^UpxeeYhV;l%FM0m-79SA?1uvjt4{_r;^)OL6Ej;qJiZuM_@Xe@hG5bS%rAOyx=Nb#<(Q-Vr{jg5-4-J0;sF+v zi(%+ddG&gp?A`WrAhF%wFam_HlRe@RmIusJzhq zwe@Yjv0*`xWNZuhObtiz9C9`BYmj}l@VerjmX`E0&YBb1Qj@@a^WO}PC zjk6Mu2n2)R^V6Vxan2w*L?t%SAa-z=H#Kcj#`5w{ulws0?n+^p(@ zDDx>?(i7gM@hh0TAJVw@pc^RL(r{zRF7{EN<4LP%Olj>!V)oP}5#`MZlicZX8)Yvt z!?F&b3`>)cSK7daWV$*N7T-zq*uw%qBM2GPcE=JaxLp(Vvby^H=7QMZK_7!p>826v zS#0UF6PM*h`G_?P5eny|Rm8PbJg_Uihd8TLl7@^YzxAj_;AGXG-IjgR`AM`JB?r2P;T zppUc#`aqER!yAaZEb&()-5aMTFT!6m^bUXaGlC~Oz#zFFJIPO#TD@{=0gl60Dz?Q$U7oh-g48DA1y!99Efg;F-4c#;(-7abJ(Hy7kq zn?8be7VhZ)iB;SehPo|A^oorf$?ue7yjn)PlviWX=%6WjTE6b22_dwS-kkQtxM`%6 znqX%sd+4KytRb=fAiguy`5NPNaN`lHat-gDI;Hu0c%(Zfr{!5Y;W*;TUw5^VOE6A9 zh^HW|64;WeIvv~(Ob(w#)a;5Rys$ss6V{FyAAHYPQ;DL)*R>5R3t`_LlV|dtt37b~ zyi~b^;4~wvc$nBOI{%=xy=-1Z|AU(?%zw(Z8g!LfBb?&RJZm;EcrmFQx_FqsEKowP_QyE%>vYA|yW3y5j#Krs{Z z*Z~b%xPz_!q9$ojX;Wtrh{*&^aRnfmJGUwg`zYV{db|^cml=&BOPoR0vXd8cx`Xhls#Jl$a&akIOr3?8yPPm65k$4hvy|{>s)29lOddkplR@H6D?>=zOR4& zrXT_FDZjp)0dub(4-?_c>w*Z2o611iN% z`>@8WIx;e9&Kg-G{fuoG2HmWlhV6AWiZ{EXq2C5Khose47^jD%bu`0YLj_s3R%&~9S869D5JfFQm_AEZ zw6Vt(UtNjlP$?%1s{kIfqgkfn2J9i0-yfdsGPs7Z7Q~;b*86Xxj$0nCnhsMCkQNVu zb$suvHWrPH-jDVuy6iOBc;8qr&&o6~==|jQ(*cT@E$!8hx%_b(Q0kXsR_0UGYn!#9 z*)D(Ab$_8826d=YWyN!TiJw;xjf8kBB5EBqCr307`;foA{aSI#qVmy9LuUHFQ5Aoh zyhs^T!*8|3u>W?DehU77O9<*elQlhru0>@r*~?}JNFUUEIhrn(uk-vU)i1|~GCXSk zi@W#!XY+mg$2)1Os;aG0M60M$YH#U6(NbD_q^hW0dnZ*bwQJW%v}Wzr-l2+`v17&v zB7z_yl1O~gzTThv^L~8q`+ffb-{0gRk2BYGUdMSJ=W#s8rTN@3;eTo2D{(ReI`~@n zwT$UFHvj)ghHZrjdd~JgoEZLr2Sak${|xZwJVn` z2FwHctpuvxB7Og_7l7e^dO{&MD}Dx734$x(@v6D>?N(m3PDK)>%-I#J!L&_{-un%L z8-JVwkv785{72A%C!V2;1ZyglGWu@plq!o9%4W_m@1>&e9``&p3i5pJtj9}WnR5*k z1+eSNH!=qJ^oO)A|K}UT8S@7nfgeUXyQ;{nTLXp#Ktt|ZQPH7*gs8Fqc8vNj%yjDy z))y$zyOJD!dOpxg?0?Mbe`EcP*B_;aL82W^kXO$B88=lg<`~(qJ6TO6ZIdwkn)b$| zhoMaogR*05ZXo??9*OFjt>ZV0cN(a#QYAP;zOr zJ+o+T6r$T~S;*Ix{vT(M|Lxtg|0bojHkw5AMpP^3{h%>gO>d4`x$tk}_0be;c=TX|yA_gfq(!9v zf8NOc{wDj0pC`98PcwBg5I7+m&YodIVAKVl<15iOslTy&U-tgq|DsAgaxC%0^^;rE zM9+%G!(o2t`Y@v6NPV2M=NsZ9lg?~YZyuEVkDcbf1Gl~kId$}ab#er?cU#yjt3lI9 z4{RpY&r(rO{l&lRwXMiNZDbTVt^V^~a3ti>A7n9p*!F*cP|rX5Be6Zo_umPr|8;wB zo-;P?IPDa#|3(!1uhsGY??GCtg$EtLps88PmwARYhW6KeIW5b;u`j=xLn%6jQvP*iWj*<5U z>^Ti%n?yFP(WM0vxw}*+IVjOe$%=&sZ|nlG7=e41rB8XMNOsKy`QC&Ph-dSCoYmYy zJG8f=_Y#i8Jz-~v*G?bXmvxYb+)#DUxkZysKp5sB!Io3a$4kF4^%H6z*_E}erpw?Y ze&0j0$-cH2QRzv?LvCREZX4X3z1?x3#a8zZVyPTpmAn(7W1tWQ?+abN*j;XspuMoq z-1?7Hxo{icj>Gkw4mwo!FfLt0Oj=^^LI1uQqLX&j~f$%%FQLjM#312G*7>CiN`Hb-O^PHXN zs}rYF2veu#<7jVnpyOXfQR0Q*XE**4G4rz8SOmyFvzPb|)mWjB(bAiTf>__45ly7WhrY`v@jn@eIJiPFcq^cclCTmU-G5JF3YJJgF2XEmF@9yue*c>@VHb7XGkBWJ5FiY7}Z473PL z<{FJ((hQfVJ!mQsYwk~6uNLoiZ59`GA_bt4Oz=Cf_#MW%ww7KcGgXfDk>yoBOttkV z-s{$DtgWKjOqL%$bEvW6V!ecR_SD$Pi|aAa3d{(skCXV9NP5^2t`soBReWgFeQER4 z@bE^6|Iv5LXTd*Q{w0yVXLnou@UKGplW#dKcyjKLrf+52{OPNI9@s4K*I_||1Z*gZ zhu(AqEy#MP4abdQ^<-#~3<1LU!Hku$VfSSINM|;@Ahk9_ZRNx+ohq-i>{dDA=8gfb?v=@2)~U!ErA|^E3HUE5b>x3 zGHW=h;m{~iKW9BW*P@e4N~=yL27&Ihxyi%h}hOw znelGy*9qXGk|?HM9P+`sk$G9eo*4@XLkM^>yf_QOQP$L{g5TRElnw3MKvn3MuvoJH zl?NVb)J#MU30uFb+dZ&9e-^?cxV^rrqJ+>XF32htAD_oZd%C<(bwRVM%{4zEDnxp; z_|!&?56qM<(qftqU)H4F6A^%c0{S`gPzT-f%0u&>B|$!;`8CTg@L5`#aM9e|#`{W# z^0p3Md|o?RK33XW&HUqKk3NBZ`J}9>NWL9Yj+A>jqkqvF&b(I-d%n{PzxAQjzgHEo z+LF4USXDBY7#`=>6$w;bm z?xwia4m;^V(;k*jc)KP17d5DkyDO_myslYn)01+`KY&$s=6*IJ`9_z^FZ64ZjMc2# z5X21($?G@%TE5jj;b8(=&MI)bhigb0<=@>KbCThga`U{}A0CGsv6r$H?q6rYP?;xH zD+u1bdi^vtD(e;B2#jW53YbHmj&YH1iEQ!sNAW!`;g6LQ|2=@>7{R6a-!(#RW?hMX zJ%;E-(QAcPR+?Vx?bxPD!*^VuziPywG>INv+Dm@u{pD=VOi$G7wS9!F+X1Gvs9o5T z$L5W*Ny6z#R;%<+_O*qu#t~KN4&hhT9@G13V^Q)MN;AK#H*PcBnuK*5UCbixw}4Ie z%4Tvxpd!V}F26*6GYY*-ir`N4kXrk)JlW6Wm9pn9=LU9(i^NX!^WBLsgTJ8;l-@H; z8E+BEb2ef`bpFNa%mJT;oy?hmnV_5l;_>|f`)E)3iQKOKiY7YH>4@N!lGs34T#(AH z)i`0IJsj4>B$)Mvp7}hd-HJtbQ`yDE+w>Wyi)e^uCc*U^o~ghacrY*lezOzn#Ur>g z`XyCSq~3J<{9b&IqIRJ5Mqi1}=<*G!gl^!_PKP4=#B{Z!L-m-@I{w5qLT4M!`Ed4R zI}wfHEP$R=ElBq3@&9RRIsIhx2zZo+Qr*vXb}C>c#n)__t^Luwy9YBg?>DIaia&fX ztNu-BRdArgZ~9(&&pj$DT!kYwx<+}Mc1ObO=s~ORNZ6?S9Nt%DXlZ8dvTKh%DYOwv zkYDq^(~Zwm*a&z!{uv`!3DZx_X;8p+O|t!%D)5fYG?k}T-r2*nXU74F(c9G5FW4)a zAJWwnIOyNyIr07`5kk#btDb@@;E$d>5k3!N2#r7!Alkx}*Jh7&9(iln|EKoI6Pra4 zwQfxJu{#{!xgG6om2Sdr_3%i@oj-N1zV3~j%tWRwW$yEHlE)V7cjRsJy!^^Ns4Qri zkA1@@c^ertfoa;FAWd>h5lO)Nu{vmXd?45Y zbH{J6@mW_HBnjglOHv@RG~#C}?0W;ml2Ju%UY^(8NV8bT>;{w5FBIFt4v&-lNR%vr z7x)(FDcdZ)YHh0Qo>e=C=F|KU8-6n@V~a0oV-w4%dEG7$o^1Msde%U)$AS3p4q*?mg{?jKlpTw zlg;ag#RnlxRd=lsANKr3_DJs>PK7t|$;0b5#8wq^-i(t+%n9dx-Bf+A4S?|s-kRLz zNTaAmT+)D{`_9Osm5=ium?=L{^V=h9;n@oaxb^ zA>F%_>B3E4p`P;B_P0p#4>M_ZZh<~4@%bElpg}omE!iR+tNR_Ad`t^UeJ6147K=du zuO9Z|U?K9%SqDWrxn%CbY$I2(H8 z>1pRvn`F##B!-m4?lPDfftad4J(K3yYK6uV(kPcrY$_pad)XrJTWWPU#X4@At>h0C z;`1vrr9M3ynZ7uo3o31n_%sI9A_fQSyY~O67G8^Gdf35Bt^;5_(-0Qm{`H`4X*k^*Uit-i`$H4pqZ@-) zLS{LD{Savm{A%H!wacw{)j`3ElCyrB9w&uK?hXlgrW752E;wmKCE!qlo7k0?p)++H zRQ?m!A|0xPJ+LtlzuimUw9mC+3M}E*Tc;46hFxjq#6H%dqT>&+-;V&}XEzX6s8(}5 zYrMivo4mr?(*?5w4>QpVo(T@Xf_5u1aOYiDDB;0EaYZ$C{aZ8zz5j9AG>CCD7%4Vc z`oKtknUs@zmTLkP1~i<(T)@QD7BS-%e)2eGSK%s5_?gnVZAwpR8^E8v#`ET4(#WLv zQzOiWPaDqP9ithJ$GOlGnS`O#8^}N{M=D6#Kqapk4wqY_L6;OFJym2FUX#X37frNs zS|KG5>{W5ey@~*Fi9=acq@o0tEKNvVky@Xu>lIP;IsAH&a+t9`esG}9lgc^TA!^V> z*jx>dTAh*6(K+mxKTx?sDLv#UbW!E+FQan3m&4n0W$dy(t zUt{tuM!Fh+2Lp6Q_&o*#tMPL(L8@j8$v09Po3pPG@=z}^K9G!1T^vy)8S_S?%wwCUz z4c9CaJ5*PkpuIomiAm}VzT$!m7TE!b0&$HFAbim5s4|GbEozNx1Z46RM^T|1a7(r| z=j#5i?dyaDr%N<9mDD=wH7n}lt$HphAvnHkZgINzC$ON}T6{C;GVSJ@+DE(f7tnPv zzC4VzHKzQjs(lWIT==`h0Ea5kp0G!Zh371>t-^UoMYy;fsLyNs?IK2qJH>qt)ClQU zme~rh8fIm6j%E;=7_ic>Ao+SxVain%eOSs)xA21}2CpG)+kuEyiWE)o(lyh;$)5EG7)w^wJEa!a`nIjt8 zt5@R+hu5SlmWV<-6?`m7c?7oJo#DApnX$rds7v#1lJLA2miFr$PVc0D1n5pCa&WFk zNsotrxhbPitm_<9+EVi6XUuI6BLkR~qp;~17_2v>);PcL7>wy=(nQizPGZXG`!v zw8ue*5}PA!z2a<9&;*`mTKXsc$32SCv`WPsTe_(jXXBHH`@ydQHRv$gWmRh6@4KG+ zpiBg_8{s4X!tz>T5B%{Uc(5{}^35-pd!)=%Cw*OE7@uWielA$862Zne{)ZB!2bPV} z_b}Eag!lD;l7=ufS7wLz&Jsp^UsYwo*pu&SAP^QfEeoP z44*0AZmgmV{(tB6@j6l5&$KJox%{X#04o6(QFJ8U+2B$B?!hrW+4{=Qgyy z;bQ_Cl-#DsWMOf)kqDMOAC#||y$dh?@O>-^h-IH(4!KmM^aBSG|FGC>p!BL@w$+Xu zcB0og$ZyiY1l0OO!hY<9QrqbuW-U`{J8j6$K5^F{82nf>S*#M7?O#5~oOl0@vh`-wl%+U6sh6Wm}Ju`T~Ooa-Ab z-lUI`=FbZM-aK-OQ8Y3gJ^15^H_Gox(y^J@SZ7h!k2ROpE4X7lJ$be|&Fv%*P!jAi zYlP!Po{r7=)fJjt+gL7SB-K+|nf}%voQWN#m7RmH%wf^>bsxU>yw1m!N$nX2P9c2{ zLr@>=9}g;Nb-EA*?mPGf|@y$b}D)g{?#OLN=r(;>}=KQmKbLL?L}2JW2sL8x5Y%w;U4Cq%Cc zit8#1B{s`0jmpJ-aVMy=H#P?pWAB$xOuapZmDlzvwh#^+*l!5?kfv-^ zt=;;U8(k0LrayP-uOrO!KAQoH*Z16QYjIC8rxWR)cKZ#xQXlX^BvqjY>lAf0i5Sjw zV}_bBjG>`wu}Yr)qoJy4JN+7dEm;0bAtIBl8$6d;r4<-bfD&9L5)$-A+kdI)>z>-t zEi~DB_!4Ydqx(|h2(T{ZnFI~>a&%;%M@4aZdWu71a=HPru`z?3h0{+D26xb=hpffb zvQ=xI_>!83KpUlvHQ;jj%}S!{dO@31MvYOzc(Mha`PXY%>T$1wC4E)L46dKnDJ(V)$aYei374(UwH(;r7@4s*qD7;vO`1;DR4V#2LHim8UY}r} zJF_CGc5mj_(#vr~pOfDJd2;n=Q1e7x%>`HG#&D}7^tf2@2)Z9{>t~{zanolt>KXiz zviY7D?2{;6>uQL(^=6Ym#Sr^``Ze6^uR)r$n$QNZQg3+InB} zTn#>jRs(TY-tw7`m=x-SZ-vulb`zp4jNEiAzfa}*yUH7nEHg5-Z`1U&SQXTCIg2Jk zXN22TZ@@1VHYNWjF39ktYjqNRa<8k8q6rdpPu}BCR{khxxhf9~Y`nSQTvYI^M+Aeo zd$I&Tl}21Tz1Nsnpz8C+dRcUMF7P*i@)V9Q!;vh76;#O98@R!)z`8w#sq_Y-KmVMt zDIqLTW+c;MsvQKi%!0WaS0$#9%&)hBzfYS@5UQJ@mh$D!omcnd^rwjYX%7ZYYZygv zZd8PMq)mhGOec&9MH5WFB*Z&k0IT_NncHR%w(aqu9aX9C=a^M96j(HITm=s|yDeDaZF z)+^Y&_pGw4?C}n~O(h!8RhbZL3Y0GIII$Iq38>^%9Lw;YNw#n2QT#tvch}JfAGaZ`YnC5sOb|?|a>1A8qTbtHy-xLrXPlkJZ z?Vb)yc2a)go00~=7LgskI&$WW6Tw_!m^>4B%kOMW>Zh*w#1QI7Gb7)|wz)SLHTyA> z<)-uvv8RX!up1MQ(4?HrA1$0b zKUFt2Cdh)X?IQ*_bk(aEFQ8E14GfD*!<-2Os88TSN2%pbRsg~dw=I_TB~Va;qQTvSd%WC60VLY=fQcuCiOE+SGV#2HBvmRtJ1 z6lFT_=`K#`#;55AMbCi3%GAwQbsU>z-}k!u0O3aC@h~&;3D?O=h)jA&*Lxxkw@+c1 z;MA4rrV#=%JUi<9{fBKzGTo;O>Jj(B-x`+{dwfy`M{d7d-NU+`N4wpL`_vWqCrRGE z@fJ{-c`nCvyn}g5J<E8ACUvBoW16iz255+uUWwpJ(&28KJ_VBb0P7@Yj`n zT1#w5)~z-8f(3sY;3?%n+m-P$-!J0Tr^Q{Dvr~qY;_^JQQi*F&SH}yPZ--S#6B~j{ z?n`+kEbP6Gu1Y@cK4xy}vo|No9;A%iGM~VoXp@SCsk_*7aHJh%(-be-9?ODc0*&L_;h(wJt;Z*z)9(~&{+s+z1xxd)MY=KW=$ZxsVB ze`9SyU}C~WWCs(P%Ew%Ad&I zZLd9yYZ4d({y^Nz^spN9vE$~g$b5CEsHN#5aav7&I$#Kb ztXs{pZ1|FB1h-5NgkP%;n{#iYqd0I)7pZ}5*H9y<*bLCSzs>mxl27^mNQDJ0+<@mv zK5vO*69On5vwcpr-S=6&#HxBbDZNUCRZSrJ31fqqqYJy&I zyvB(4CA8d%`$ZDL=;R`ptzNDL-?{rd)xWCJiclPYL04KSvsjpHTiG5xdV+_+`wb%e zO15nH284N3G`f>+KK1xZDQTMS2+(cWJE|&aS}gx$h9hEDH0YD@TGcCQonhP`pCNZ} zzr>UF3s2U0a|y?D$8zMk7wz`gbTCn+sFfnlyX)4sey#VTU)cv)|6zs7`9{5x$$pfr+Y6K7SBHAFyn0B!TCbp(1<}GL`VsSL@LP2{e^v^`x*T^U&Ri+X zvun0CN2(Ar!EU@f^`|*#Ee~g;IZ3+c_HR*#v6#S)sh&&vGz;nx=rUWWO99M6e&BX*^ss%Uf&J*`mj zo@k?I6oEdW{(DH{5EzI*X5XdH#{j=k(&=2y>rebF`3EWnJmT907<}y0q1RZpr(W_V zzP)|<_k-{29XG9y4_UT9xrl!m&wTlYhR~I?j(5MVTRa5w@4Z|o@r&q?GCBA0?Wx6g z&Y$w)W$ySY0_wx20GX~L$8ycv%wekw2p0o)ja0q8I zPU(mV^-lJ5&TPp@7=a#1GSnkcTqAEvozw8QgA9mFl^5U4bnoZoFnDuG>G^w|A)k*s zeM+#&F~?!wb?W)>ocIJH1%)M)qiK2V2ufc5Wx46L58ov?>T)xi zRkFn1N{;@ZEt;JmA4*o#>xKv(2plw=@zc_bk6^E09p`K85$en#D)I`HJ$DQH z7-6+f`?f$+%M%+>4X1`{w>L}lfYosCIUx<=SvTkYml0+9_2%}k%L(?c&E?Ovtk-SK zH%P2L-q{=2j9zoDj2XF0?W>1KR2H)ESc&GO&faR?jLJI3xud{Z@vA;7LT*X2fh+1o z`-cJ(niR<7YLDnRFmbx1`$ILFR&qtJu{isF6oZd9wzNLz-5xJ@h} zN0utQW4J}qccl~STO}0YMn4LB3&0>nQ;XclVAM{%l9A@Yld^%k7 z@o&{RmYPPvs)ZnlS$-!8Ds93$`yIuU%n>?HwyJ`E#;vTAk-z)yD?|vjsHExy744c} z(z!GCwYhkLVcCS zmb;WeGNHWvpK!rA_(rZT+(leRCLbeZsUvcJBB$Sxt{J}j&>8V57)FqL9eyX!=PbWw)Al8sW`_n%QgA_*@i)+U+~evvJf_$ zGyWnc|B#0#{`LUiQ+GFS#TBTTY4XVIA*RA-_oSh(tk8AJQ)?=b_v>Mq*@p&8#ewV z50K0X$!qp;?A0eV%LgT$OVq-~F1v1s;uL~fYR*?O-n}stbS*6?AU&viJ!7}>`=G_w zlipBCY~#R9%iA;>Fc0@N==${>`>oKm^jj7x$|@!=GTnN~Pvdv`f&*gqGsVPd3QBB<+I-QfnvaB`}Fk@#L-rSEE}RD)2M&R2I|?G+*V(|in6vec`TQa;*M+?p2} ze7mODa7kr{V2|NiUc~54bfT_a9P-SgnBH%GnPdJMexKHHGaeEoS)X!wS1DL60J^!^ zY}C|KU|Wc4qe%|t%EOI1^A<@bt1Ad}2`ei)__8X%BbLLcBjxfYGLX=iYj8L$qjC`% z0*aCt-wf$fcN+er(cr?HJ94)QychrZyLU_NFerLyXI*owe+BcrK4z?3A&?m)(VVQB zl2M=_E~%8KQ5bJ)A>4I><$ZWWzj1x=@$!VPUonR8Bj@5Kz8Xzkn^Sl_7j=bI3W#|= z)<0KXJb5NgXKd!=;WFAl^aez^Y6?j6sGJMG*r-<0M@F{Mhf}C+>y|FIes)NN9@m&O z#yfAzKjTnEigLLbb-A8xoBa7Sv;X=-Yc-CwQJO0lws9pjTWYu*uP?rSZ+=+dQ~O&u z_x$rwJdJJaNi=L?RyDwLMqpM|?@_&$i#kTpR19boY(1D4bv)g^y{xP^PkGT(?Ow|O z)9qBf!XfZO(5*g)&fYQBI10#>s^>4JTNnk?x~=0q>QYFJ=zVS!)st}&+!J>zDn1>i z3KURv*`v*5hmDywE${qsMApU;+}HhRW~*8C_e$>qaSDi;r$5iC50F^$z?_jV;`mmI zZtvntQSBab)Wi-!2LKybr39rb!Yn3X_^!@BIc=%r*3 zFH&=Ns!80hkWc@PL&0zVq#I6(XclZeg=*TnVf@}de!F9Im8(a*yX-tNN4qW76}WQI~tm{6~(S zx_jizT^+}aq7rpSo-nF@7A6zsTsvN?_M8ejLo0i`oY6etMml( zHO5bscpSU3W$b_aE8mH~zsxUsl@u8Q`rUP+Hl4EmOV08o7u@%X+PuP1Yz3Uhr5!OT&!LzrCAr%Hj$#S+AO7{Y{@b4+GK_g0S$%VsacTeYTi@@WxHDgV-Y@dQfBXvL5#_SCzRl7IxA|WN zIudf}I%B>+w02!GPdkiE;w&f**S0*oPho~#&#Qa?>)xLkI&wnl{Cq>gQG?hU(3MH- zj>i{%k^k@Yd;Ph$b0Mx)eMygD;6gD!Vp1Nmo6?Kox9pcLdmWkA0q9vY$jg7=(7d}> z;$#YN+mUvbxlrt)O5n8J;9Vm8bC^u+&#zcd7IGw}=jPAl&X* zEbb7PR}jdrP?Hey8p4jfs>&}wD}~=Q?^Y5_g*Imi_Rc?gG=IOT?EO^NhrWHOJkrT0 zb89JdHZE?ke;D?yfEPzAmxL4G8Toz?oW>qFY;m_Rup0$?E@t$ z7RlK|R8`)1O*1+qzV3c}%5*A>PsZD<0^VbTO__VL0@qWx8Z&^}Y>~V{h5T?bdd@0#+9#z@EI)n0En!zF? ze`tLMAzNKdfgXk~!YhZv2Yj;gkT2k+W8dZ$Lp|v08F`EFZ|=CIpxeVe{>ngdmaU_B z(0T7DDQa*|*0bY2#Tr4FpeT`V#dxSxgAwan$u1?XOB)i!b1w`&KN$cU)n)43${9gG zJ!LPe4{VDWbxLX2@q!*!v>fz%^5SF=$ChskP{-AkiCX7P*1*u{GDzrdod*5=Zn21x zk`?F(l9aiXO*HRE=7^;6K??iG@^(I|mC>O-l*bFYsRi2pbEy&1@>+^}C}-%|vT5N5 z&7~+&+ai^Sf7>LK?tb}x6fPB9oSCI)V)!F)Rn4^4?x~P2$QT|URC5;OQ?OgRzqPD( z^Tzf~B0hyRr<-XcH>g+?th*xQnmE~$IdCSO9ouqmyezo8qVK#TsF}B2Qwz>rS3)dj z5?44*A8z;9>$^&HN@CDjsc1?P{mKTi_~0lgrpUf)j%W0C4PF5h^$^FIk;9FJ)tVBj z(aT>xj`${yidl;0Ty;xEUGA#5v2D6&DZWt%Nl8%toX<$pUwk;<=$|YTRqU$NZFfh6 zFYQ#umJXPF3ixN*1dp4Z)Z`g=;3m?4IGfZ?;X}AZ&u?UzQeWg`j&XC8&aKJKYqmI6 zhvdW1K0j3!l3JR@miw_Rkw5l1FNRDR_x`qp+zJ-;JG}7i{y#g_-x>R2d+Y=2zO+54 ztaHV)=k8iDkTeFl8wbQJ&X1T_SM#mZrEqS7UFa9hT>+i26zKU+C6Y)VAz1o}cmU<>< zqurd@Qrj~)@0r)DEU^56`IYM?$JlnBDwA^o-Z9>C);OwmS8zLX(z)O2_dZ1&DK`Z& zs%*pHetE6&*ChRWBf5tYeHoJkm4H2)Yw6 zmsD8*QNEL~7pKPGPTN*1YVHUh^QBuiYvG@T&gu2e4<=XK@viMlKGe@})Q&kU|0L@) z_l159ZSGola49W~Y)(uwCAC=^K;{IAZL?ICVfi=Sp^)(o@^LBYLz^d+Uu@}_XV22B z`ksLA#$*7$B_m6hW9UZFz@A9TCAi+@loe@kYu@IQ zSl)eB>?KR-7i$~_rU4cl=R^-Ny{+jPwym`HKHJnao1k(vF`xzMwBu)s+rgpo#cjLT z)3&e?CEADakve%vI--0y{6mJV`&#}Rrl%Qvk=aZK#bc)`4SPl|BVeG^g?OY+`50J- zK}Mx><4wNv)gDsUJc9={;lt>F{pb$>8b{(4@X#I4?~ z<%FcNcsgBljqGS!I#hAsdwz)dMd=*n@J7_gB(>n8BmBK%uDY_c`;%dmEUA0->HeL% zsyBCq@(adh+hVqHvai(Kc-v$5@>nUd;fRv_d~7I0Kx*HNYc&E$8Y$vXT}dji8E3Ne z%)X(7_TDi{i>=$P*U*q?EOo!!Qqx`)E6QSPS?~aHnjq>8e~O4Y{DPTjcYeY4T z^*L3}D$sCcD?kJRe$=JIdl&%G(Fl{r8b9^@wvDD1?da*uZ9x(jC{wr8326A^9<{jHsR+(OODjzC=raX|JG|G~T=9w|Cxz-{nGc%}&eq5ubZ|&QR+B`&h1g z^)eeM+Em#%GRe5tl$M1Kx`T}(Nf-C^wXN3STGnB}!+M|ON%{E|1xgg?C@gKHZup`7@J#@e}Q9x|2J7}56Z77$e z7vn{!5se1pC5NK2DpL|N!*=UUy0b$~*HAYde~HAodrun#K9y$Q2KolS?Wm9IA$OAm zF*wvMCuC#gWk6!LwESvR*uGSe9+O7Aoa)67OhGm$SnV&U>lnkXCfUzEf-6vkJ#;}< z`#|KK`D9?3liWcX!~|(dx0$S?3od|BgTtXchyC3=F8;b%?tr%&xz-9TkjqZ+r;f0v zp|Dx}D05pXCh&Y;5K4np`MNQV>|uWOEKy6=rzdK6wo`A!5>AaG1n@n%k)=6%9G_S% zfQYiKz7w4BcpykgOEMV$O}uS9OuTKzXUn^=?;s*G>m0R-eFC@>(Yorq$3jYdhmI1F z#v@9zmR9Zkr>{*{x0SakahVasMvIRzU1ok3i<6B%HGLrOZ%#Pj~Y z8sbIA=~wde82{FCG4;I zON(CPqzqeHXNFkLLDJ(j;T9Hmqy5hw*Ry%~;%&xbH|Xu6fTsdAwC>X6!E;6KfuY>B zv`K_*aG~S^!lGiNe!)(u5zDd1vOU_-G?3MzWnVcC5wv_TUoppd=-u7K&6Izv{Vlf= z6093WH8YtJMUY=`HAVYu9{*lm(dbRJAKLR=wwo>g_LbaZ`+Ad?uFS=|YhP=dw75I6 zL>Ld|FYU$~$t#6EkZ{~z6STpKbZ3X%AceF@<#;0}1L+dkzRO@PAT@T^{l4^G3Hf~q zZ@@c=>;`XESbQjvmzpW7?+U?!sBh2S4mKIkMLk1U%i(e%yEYU<0|f#+kG@!yVfggM z>KeD=XZM0PK+(Z-;=Oja_Rcz8J*W2dD{IAyG&UQZCR;pVyf5 z59RYswomF!%!BM3VR6H!>wI!nb$#ayDJNfCF+ETkzXvn)W=XQ&xugJiTys;8gX7R? z-F_Q8Y?Fg_)e=5iVoKoYH!w>C*!| z=e&WIk|%^v+IN&_xrTu6m+^^;hn4o;0I55E-bBxFSR16+^>GQp(!6a!<@Lj}jcB~d-M>av$39QNJDH;+8-AFM)?UaPMoZb$3wp3drhGCRTv+JEUww|e z+w3S~p(O4(Qrr6yPxX?+6Lz;U`!Z=HqBo0UVIY%F&(;<^!C)CDrMMlqrk#D+EjonW z_e|ecE3v?Pui2JumN4>vy#RQzYk>u4*~;{T=fp3GwiFJu>CG$?AZWhfJe`_4$ZhIG~5z1yLQUb35I~o|(9F09<9sy9Zr4P)|#55&nJk zieQm*kE2$A*{>tKbHF)~S(ddh$Fj{Z?L75Aq0Tbe!}~dFG?mYj?))ei`&D`)jOy94 z`-bAsLKruw-*v_UD0&rkH@(zf@!me~#rGD<9H3`E5r;b)cxaDP^`$R2h~M3}{pf&S zi0AAco|#<>5OxN#2S<4M?_cQ7)ZqvaPu}p%$1#~o@7$7=DT=CKh^kDbYxc+(=Tfg) z`0noPm(H@OfFsoxaj#x@WtBu!J&B@qIMkXc>KVzKYoVj`ZXMRV28s@!V^4A9=dmP} z+fvpuj{Cl8ZU-c{eBhmGsRrW_`(o*c!H==_DUu!5JgRf(v&EBTHu-%A$mB(|seRY1 zf_Q#s41D#(yKzSLU2M&TQh?5ca-VGPiGh|K5W4lpIs%hwE^%=SKp&fX$~0Czv9O$=Ol?!;L1 zYT3nhzkO7-9amSjhqgyr!qrMi`N$8Xd{&NE*%bmFnYdsX+rYh)S{00nl=s}0N;BNg z<;`stCu>X3pO5bUThD}(KZJ)V2<{VyeT=!f7B=lPde=L{tAF-VAJYc+{&(?t@>!re zwPqkR%;l*ki#y=X&$RX;D!M38^+6#9S^*ATz3{6aIYzRRy+SYAEdn}0dl?r`Vt_(oZyGrFPokN;hUaQ zC{112K?lWlQ#$bn9wA=hcdq?z&E%oUG?a2aB^paCZ|m`D8P?}VlW@HZ*bR3Zb8XA z@lx8IRcOl2;@jQ5_Y&F`mPOSv#|^4;fTm2y&G>61rvxKv)QIbou2hv(Xw?UbX`9c- z@1q^#@~(a#VjCq&;u;-SpZbagv-o0rGXjguC>q3Ua`dOyG%=gV_6dn%v+wk%q(bU~ zLOht4KtR?gmWv7{w%1Jh3GwpzT8a-*!UE%ebXvREm0WI&^?qw_a+1|n4B=3zf==kI zGyz84gjS%V8?{6l`+BR*e|o!`T|q>Sms_H}e@iRHx3;usdi6<)t8e)~YnY%47?h1# ziKjM9Abg3byfno?ngGlGfDD z6UH4D^2cLLDFJ?Y&mF1Csw{IK811!kNn)G#VfoofmfyDQE2~f+6lJlg z1OIz{6oM?bT%TO0>yvul-%$ho#)=LcZ=Tj@{y*%!XH-+&wm&SQppO(4rHZHssPvAs z*Z>g$6$GhKdXMxTLoR011lp-b)|>Lhm&RDe%Upoa4Bj!@XbLZ~rm) zkdbWG-fQ+b*Kf|f^uSWrB)>}Z`_Tq)-AmaF6CnQC^S3sit5QV2#((r%5(Q_KX!LBj zR;6I8iD9wGMMB@FTe!D(C>`PpmX7o(mYrh$!MoD~vXkqNY4_<1&Tn+j{wgc&0@jJP z(`Ba3WO9Y04N1HjlML2VrO^cT$d^d-UMg>vhvv4WjgCbWq%oZBUZ$8GqZ_$3RXl+51d) zbxemgi)<+4ek#q&LW-+pTj3fZK_7#S1<*N7DB{uL!Ir83anUL65`!jhBYm9*xyz4J z<&&_Vfp-WcuRgCu>=gDg(p!ja$tW7$vbfOYf>wpjqm9s8soO1mT~(ngK(CaC9Yo4E z_}sI_6Tc?gUdPHfHrzdi_au?U8CIM@>rp?p87tw|7e6aPtZE@of!2kI>4FVhPKCrA zN3OH;w;N=_t1a*Gh^?gP&*#FX0?R*VWFieG1V(n9vzJ%C>~cAUcN~cv|58Io=G!d{ z;NK|(F6rahvzl@uNUm=7xK~pfFCzdYJJ(qHorvSs6xEi{PDkw5Gq@>WUN{XRfm;T}jYg->CF`ObXZ-7jJ_ zLO7jS=hhOF76Gx1_kj`4$3Lj$*^TWWYApPpTEx(+vRmicKOcc4u5S9GE8dw_x&g*pone9PAxiS3f#IuQu1@oS&gXseFX99o zO%jhPHW*q6K_>T}x4kPXCFZsBRb&Kn=7oOVbw;keMAmO16T+50QucG=iPe^@ToCAH zd3&3r2nRkAI$si-ROUU^yJEfkMBC^SXbj#I&+e)8UL#RJWGQ#q(7_YF=;&nkum9@q?Bv7ZG~Ev6NlZ#YKF-+K4Dmzdgk4u~$#Sxa7%fqCbFPP4 zqb~>{mX*JTz^(g*@2_vz*gbc(Dxr5ddlZqbv2=>;@LF`kFC^;CYqQV&-gZDm77?qJ zWsbL-2;O-!%B!I#RdmCbfP#Ukj*q_tusR_13eFEgCp$btHOIVDiVBGk<*a2f!dlLF zqD3o*PGoils6;TeKBH2H2X;{H#I{0&D?&Nt$NeJW;d&-X6P!XL#!6_r0Ow@`X+z-P zGdC`?aiTPL`@^IXFfEVnuwyqvxw;*FO_5?q8CB8moPsC(u=twr#$Cx}c~Y#h{h{=v zfN`^(SRcvzNC%TtZ@U)f8wI&Fe%F)bwkOKh<%ce(-)59Zn6ETw+WvMfwnNfcpib2almHy?@puym=w zXwri)f5UXWNMVq7@Aj8mYeM6LoqfLC38Q>=@1F;1f4c$dC~paljRvmP%E1orugg47 z^_3`_r)E_DQQ1+=TH?84U4+24Bu{U5Eb^Rgqxc_*nm0X!QqxiPb{FhUMGX}X!o?MHb(ZrxS357ZpC=?}LyyWC4F(jDjyXLp=%Z|_UpN_{xb z;qO&y2{WIo6oy>%U_Y)J`Z1fo;HRZ;83&(~w|M8_->quQdF*IcD|y^tk;}`6tk0O# zje0KPwNm|3_;{~q)R4nS zUKn4YOl097*zZFdmI$g& zy>`UpQ#CuR#Hh#3ktt8>jQ-{767#jH7khoOE7M@DQ746F%ad4%1pN&^v015&@h^%I zsN{1&(3^%UY{lBNVORCE{Dw;V7oPnT4*6vOR!K*SYD)4p%C~1Y5*6nSXS?fhD1Ld@ ziJ_eI?^9zv7ZI22?U(I7OPWL#ksDw4?$W~H5LVEpM&JSIn>+9k9vp#Z^e~9_Jz=sl zh(x1o$G^e|nn`I&xe=H`teFAa2Y8j1l33kphEJ@iwLulg)@70`CX(~Mh&)cbYejv* zFMLRAH_k)KF$WxZ&Epr@k-v2*g$7x2|A(62#7k+Af72L5L?&b#K61Y>n_AE8&ge^- zzj%F-c4=UM^qLEo9+)OE0;_~$2K`mqK1bp1YV1rsHV%T~{gaaAu232dwAi$vK&FK| zE_v>Oqi`-}{N-k8xiFFXN{aT(*I3q*JJ-pRHO z)Pi)M78|Em+?e0Tw73=)O%Qx$_xzLOTy?~j+fGDcM{Q0QI&2$3DgSl4gZOtGF|USxdNC>iVMcCRs{Q!~vO8tQIaF}7ic zJb25#xT~m?wXA#$Nc)B6E(II)CBRR6SJ9K&+YE91tg0VB!#OHd;JMHsQ8vd>!A9@1 z->HevNi6mY;>0$LuJ!Iek^C6Gqi^wKIOEw@<5P@FVI|KaUh9!G(3^aW?)~OYMjshE zi3X(}Uk&EOzNK4O*Y8#W*PTXrf5Ylm-3VVTvnS%xjvsmME~iOB^bwQC`;lQYdx9pR&sq=17f*Bdv?i8ng>~D1Vgr zthib#tqmyT1;O973GJ>9l&%36{f$*DHXkP?kwqndCy{;({2JwA>E}y;Mor5OijLgd z;TqFLrB{{U{B1;H^0ltvj9&3<^rPcHgBso(nd>>NyI*XPHtCnVZnHbXA$t!XLyeQ5 zcOrD4A5YnKDWTMkZ2zpf;Xx7XPATx9!#XSW>$ z&NOE5EP@n_(@{)+ry=d1UF)17f(W=(N+H-o_4_Xwn&6#Fi8L6QdpivNcOp*LNjMYX z@Y}ni5}!-ViRAn*j$a~uU6Zc%)#XQ`N348b6|_}e9C=`(zdUW%9p_Z6okQlx7YbpH zH=$jk^}Z_gRhm6D_ME%2a96taaX12XO3|wt8dPYPkS?q=aks2|N0YKm`7+iq(7a@@ zTWYu&HF$$9D!2tkx@0Zv|^vq#sDVbso~Z zHUMBA%^wteq@aAgnDay<29v+%*dpe8i>z-~4Q)3Yiw?8|K@$?hX zL8cMo+eKBF=v7ZB=nbD)?DG*BH1Vir9`D^ZW8kl-IAJU+Zk0PBpJqE>Lkr4Bo?{2D z+?ZvwUXs-MnX}8Z|LHXu=t0WH=Z5E>^aaaLfYZ=xxQ{D4Ci8x8c>t7{v|?YA{EHql z3I-h&EhhB23E7g^k_pxlyIzXG@|7>7C1`6HuvxwnYU8caMc*LUCg}?ZE9-&}XM=8< zImnu;G(+{4hKXKj5qZVt>CUYb!=}mQCEr2@oJh;c4t45w>)hMou+d>)pfh@C@NJ8a zl7y|%UiB=oY}~m&ip@Vzykt!<3m^Wi_x`1q(QNPByCe9WjwzU!HfRW|?Ga0S56tph zlK9KYCC~iCjr{F0pNSv6$v|+GkW}V}hN%v_OH}Q@Vu)W$+}!jWaQa}*NK-u6URV7v zW)AJ9x;@G)+|`g}PI#MgnM*&HRPD4;U#!ZJ&&Ad0%YgrOdBPKHtge?@Xdg%~dL}JL zwgehl=xEdGbYd)oxj1w?$>XjIvaBSM@g!8`+^nqzWWk|uyNNICK=3c<;+Kq<2hX@F z8D~c&xJ80V*57c@r`OM#K4QBR8+hsi`^heWv0h?hHbhOO8+F}(ajUN-d@DPZmUzBB zc?9w-#^pz&g86OZv(jD+kqEUAPQ;DA(v5Lyl_r3uZlrd&ZNU=u0CH1yB}3V*1{ggO zswqb_%j$hQ$@Q?{6uZ3WFq|GBv>cN0n9X3t4`L-Eg%}7Eu4+Yf-$OoaK{0t?igu9> zVZE%K`sN%kkx)~?9X}bsfu+rk-%FGd$z6yYP}rA3c5UJZxTkM+bemT)?j^h!uRwhl zsS$UO6a@b~v7Mfs1@JIHuW6?wNviVi#H+5^ibr;oXHS5J*i>Ww2V53Y|sbPj&Onda}h(V>!yEcIys7!~HP?eife+guk04j~6lc;#c>L zVA}au!bt{QKvySlPxqbjOJM$f{XtILyz-goUWJ|8940IxWj4p|ZL8dqS(92IYMK=7 z!uYh4Y={mNT>t)E3=lrD1nS2`s9%rqNbWgUnpPg0U zc^IqWZMAOA58BV*+}OP+;tQ!N)Cgc z9Y<%B%lc;r&zqzkRHbGRpe=RPHwPrEjMk$YM1xm-_NI(?w4^AS?yT4MKuR>B{`#o9AdGj{DIFgHWi_`J83>WN$7 z1`7is*WmTTf58*|F;_gkpOP{DL@_KWOlOPdu|p2=KiW?p&T2{!$Y!rT#k$bBSdFhj zoalAR4Y{YSV4axIKXG2Nz2x~B$95}LxCo%&kH~?hcZ%~qyM7Y(e&IGs^SVv5?Os~N z_X4gzsJ;cT&*6SwkR+R7yZ$~hV@~0doe|{wekx2$i+IXx+~nKx#~}MX579T65yY^@Cg1I^mo=0r0ssJHNTA)89Tz z{@ebWP@!BzSo$8KyhKd{Uf(wNn5U#XR@8KwAKhTc2-XX)e? zCr#6Yl>CLDe>;)C@k!-cM`*#z4BYy1;$T(OBf2ZeXYS)N(|5exB;Q>K{dqYRoflqX z>n8Ur#_X@u&4!+af#CQ_4zT$kDf!^B$rCr45t+AY_xO))hGdKEb|XwF(Ct5O8R)_C zeB4p?@yy@gx_>+w^&yO@*gumi$8l`)>xrYscP$;k@Dr$>4bh6)5B8eu2T+zC6*g-? z@u?+Fz~0<&Vc6!<(JKEbvriRXKf#Jrz@hI6v9-!j-Y37T`S-_GDwzbJQz!mKxL+_? z|9pJjc;b0IP<-bc!@tte-xoT4pZ^sNAc;}!Km7F1LPw4Ysve=;f1jE6{GYt`KV5xG zf=aVi2f3q%-Hxg+RG=w?((ylc_#4muPMc#+mOro0h}k0JE!5kdED;SBmrVpTX4mg~ z+v;g7N2epKA9!A`ejfR+V(Wjr<%fqwYJ4>z`SA|)x@qdhcWHQF|(gX z$-d0(ghkmQtC8mScHt{rj{yW)!Z*;>y9|d3*rl{v9#o`RkOX+HlZtZnb~*QNXZ}wW z{NGgRVf_hWkf7ox=?5LVsyaITJ~_1j1?qxe_wm#I60nWca-- zcrur(JbrU1k45-?#*4}c%`@ahuIwi!#W+p_-#y1ZY0t#ewA#GnPxg}yW#AbO@HA_s z>yz{YHG`ORhOjBU>;d=S9UPOr_sprx20n`yp_69)CmLR!G#I&DH6rz0%=iwg#|aUc z2r-7l55e58!!&sr4!x{4#`uo#iN8&N3)e>7R;L`oI$ec-G@vrx&4lfB%TcnG4^T zjE|m+K4N@D?lpJSv1?aos_wl!rttFQqkBhRzMDMZF?sgW+hdbwznxjB=eu?0WD$Gf zTh^67X;z=3MJ*s;NV%ziZPb$Td~4gX+VoRv%y3Wq1MMM7@+N{6s`VgezHK7}l?^F8 zUJJKbGcb|zyq@*8WPhRzymP~S;;u3mhp_|a3wDvqrxcE{rKqxpXtaE1`qr3xCS>Yt z+1I--OKso0sCpx`a{AEA1e+T5UW@%HOvYQs9%yK21l~mG-e{z4wLQmH{e+5ekKSkE z+|aPA$2_WkrAmOFHUV1Y>D&aDk)|WUL+?@E0^)N*{5;*tMOw3zYksBrSO`dvCQK*1RcXLRV zeq`>YIn{s(&>+X2>>oJNT#x$CR)F7i^>4Ffqe|_dJ1Bpcjxc2%Fa$2aZx5N`NPS8N zk2x~DfED4?{-}0hw6&CA6!w?={XcxPxI}F@;fbFkHAXd+(I0lpSGN>SP!Yu`-^Hh4 zStman{&-h=VrVdL8{T40#Iql=jaRn{j~U8Lavc|&hK(`I{K>Qb_6+w-_5m?Ew;m;>FL%RAaV)A!tzGtzip~2`KH%Dj&{iOoGU-PFtTv7WmB|b&I!$>?cqoss26Jh6#av$K=Y&AuhK*=l=6S zj*V5-`j4RgONRvviDv_!I@aU4j^0IRzZO2kJs96OCUSxnVapIsNPLi(o&L|W|A);# zKM}{u##VQ#Q4XBBpg#Qizl8-qsZ{>plU+S5xX6Qd&u+NeO8qZA{}1}~lWLFRZUxa` z*vgX`XA2EvGkA;+l@h^YXBi2Iovs_@54zRNKtPnGNfmjP2_eCUTgTN)J%wu%4gAlT3+vG~R(A>HAJ>CLTA=Z_{a5WqC;jut?tz1)jw z*Bbs$0t0Mu;ry1U;~}tvZ-0LH;{@NzHx}_#iI`K_me%pAo*A3<_{>nF`27$aJrbyR ztbooBaQAT*6+a2Cc1F#9SWM`DCowMZmlynR`?t7!T6~hk@t(ahY-Y1P3{`1lYRti3 zqBDCnUR&`nE?$bfRYZfiDr7by5+k5>9Z)i{x13_-*iTKw7rjAZ+0)ZfK;qJlrC3~ z<^%^H7mb?osqW*yzR*mX?Mn041xq|m$n4FCX&+`LgrX{U+c%GkczVZ1fwd7N>~
L$n3lo$veY|=z)!U9wf zo0Y(D&0#x>FYDRkyVH-ov#x{YUwC_QwD~Sf=(oCJz)}TUxh4|(8^UGEoGE26vXAPi zbvN(czC`o&XzdAJdaZ}|#{@HPRzCz|HDz0M8cHVkpUVH(Ug34=1}a@*apIf5myX-g zZ{O{P*J|#bvDHR8rO21QE-SBYN!tD3-)R=3&Ti$VDGA@w$|I!o4i{)ni9D8DYF3bSo=&q@1_CjOp1ZF z@X8AF#podB3m-(e$z_TTi+g3jfI5fjsm85)u=R@UN$ggBjWWMLOo^JS>(&n-`iktn znc{G@8c#G5fxo-e+6^{Eh;qf}M{bLPlg7y@Ml+V(@4I#GO{gJ>&eiw;s&c`trg|Oo$nmA>Iw`oDdG5&i$3T z8cTe@L6skH8Rm>tch#1~3QMXlM?1@@#ck-v?QQAWwo|Ky(T33pcL2 z&CDxXl@6mzj;P8()QsyyEh?quY17s+$J4z2SrrY?f$6i19fZ;xch|5O$5Y03OzlHT z$2AFO3+ribh05)hswPlAdu?Qwo?fXg7G0vbh<(<>CbPQJ6n6e>Y~f0pTp0#cdDGB? z^WYtC%~@1&E|wp(-ixz+rX!C`Z^jKY8wOmkABprPMOADbOO{)Skd8YuTOev`K32c2 zb@8Dx8$*97H+`LpLl-$(&BL(-1{^1xNhg)r>epq=E~MP1$a;rfD2EC#c^SRNJ{B1S zXU*O;*wWW>EgxFLqSK4T;ZJwbOWf)!L*687rd&tr%!12&EWgwB&Ls(2AkPvPc*?;| zNq0|RFHCm*1E}q}^h7=c{78BC?MY<~r~S0~_75ReR`;C7HZShMPU_5G*(!LlMNWyO z-?vC14<9%irym#vTtC>&6-==L&y*Zo(x){0sx+ZRt(g#+&LL*6-z2BIZtZy@Rh&pG zp0j&M|2#5`VV3W0`#H+0uPHA8?~}FcltdtNT_t6YbuHOi@p;B*@OugKCCB-iir;`> zKyMskgpKU|N6+7sbPXmaB7IVflV0e3Ns;wON-7FQfla{&tG*UiEvfm$l)VzaNi==I zZGY!W8MU)F2Vd44oL?Va9r}@=A1zvo$IsGYQu8B?aAzJXOL~r9_TkqHNb%&>lW`=B zt)-**^7#wN zzV}Tf3FCGOj$^ed=?6Ny;8lH9QC0nMa_ClNqRCYAK&3VE24rNzFW>e?nftu5cf;<% zo!o;dn!NziJ=V>q6W$APwX4Csds~lhkK!&?FH4s#M&!ymCh)Rk#LeFuYvJ^L?F>MG z_GdQevxmkb%m>01)tpG}vd4h*Nv;(AbT`dMiJC?pZC%AkA^(0r9Q{Fa-4;%v99NCp zc@F^zuI>kWBACCXC+lLi#5F|OQ zC)KQ{)J(mEmb-cJb*T+Rks`3*w+*L>;=4sDC7%+|Gi2$C78}V>zl&-k&icjP7c9 z*B@`bm3!~}!1j-QZgc{-ZygpZ0yzmb{Kd~=|vU+CZ8G) z9=rBu`c)IW6o(p5#RVBCx@1yOoYJ^B9PM|rD=V(jFkxFMN0I6G!s^y(8+lp`m~XNx z{U8+Slcq@0^i?r+%S$DWuOEY=CfuHQ>+a+31_(xVMYWA2aAnU2_}}rE*gdni_M<91 z3iJUufeYQDhxotv9`3q(h77>9>Vs=9Q4kW_+htP)0RqGMAZ$ok_M8qOuz4;AC`rbu z?PrZ|zG{`@hanH7%k=D+VxPVtr|2IfC^l~m0$Ct?0N)J1S%Fy_Z$LnramJ*^=uCjfF}ix8ztm?r^UfPjg@ z88)t+hxPHC+-b)ZN`QbOZA~7fXWrz?)g*IZ+}?g(KF`v!LuX*>)NFQpSmSG?KccM%m&`2zdWxvL`DerZBzSphMA5+O18v``vnV6kzB2-Uu5{ zVdT5*Z7$30lmVod_9Z^fXLL&Q7ppbsWa~-|BRM-~c_F@f2zUqY(cw?Nus|%n~V9eANcasfXXpkFzUy3`Gtcd>q&*9OErNP>Xfr1A4dh4nv%Ph zpzE-e=+UTJ5qHNZLf;rm%FvoMlIS$LL5As{8gt%=tHn0%ir?D}2wp-WOTLeE-QC)Q z)rskTS*5rpb>SbG-}x=13miJp(cRrltdB|wUT@xmZX&_f{&f3cYdcNc8GF&Acx&X) zxaYo+@}g!lu@$gN9VOM&Kc;7WAF+TFrB~j~lHBb6k&E9RMFEIyN$fnt&Aom<-9pdJ z-2HOcYDCvgxNrN}jsXV=7HER!IEtfz&!n56D8s^nUhMKJVr9>etx!z6KH8yH;eg^% zIJGk{HSz7?Gkrh+(or(9f?}8y$kVmJys(nN;hQT!|-%yGw#?d2o<1s13lKBlQ$UPc~N;WUZAN?Cr`^8%d!aFY}l5bvp*8Q z7{Dh!l)HQF^*&~rfqY9VcDbQ+a{0`r#|1^(-c>)b;)$p=TyvZF`XjMcQ{>RdG~vfE zkuKD{u*dLVWqj{qpg$pjd)c18&lyHm{1+rMHkI=?2azOYtUtcvPB=}#H?o)n+-Kc`c%M6(Hy0U0Zdb%gM2Mk(Qjujv)ynGIP zq@86Q)c)Eo@OT@P!QrVnF1HwsxT{v%K<{BR+gNq&UDf^5AXGXny3|~)b^_(VYY~&K zN%DL6y64E%vPP8eHQR2R?h9`);`+@S8+E+J#NjlO_)zXQu2s!goSCn?8$0@hr{k zttGbpUWxe-b?e8gjNuOlJwUXs??_});Cgo-gmcr8b|1Q5PYTU{@O(Uj*fjBtmb3~~ z<`!=YRV62PlNuYn*U`)N&~0N{ggO`JX5#CYk9i2v0D>h5G$HE)fANVL`uYqgoF{Bl za8Atx*0)r8dlH4nMRc4RK1v^-b~mN+TTQoI1nCTZ&2xaQ*h-*!XIh@6J3dF1PbgSv zhNmfUcD1-$d-7n|I7y!+KShA7F;#G5IzMY%UbhM?Le;C`&YlVbA*EJH?SgA8CtXy= zLm5M>IRn8G|AS)OyH(84rbg2%0Qj05P}UL9qdZg^CDg5smwEfE{1s4WGI_7+MScP{aJM8OnQUDS;QxH09^E=EojS;^AscA zDu9I8DV5j4XIDKpUhiQb?`*}C8;1}EJb3UPQG+O3S4v~>AQHB~X5ajJ`4)74?9Rc; z!XAPl{LIP!naL*}3w%Zk*1HR4r3Jh5BP{C!+A(DF=d}<{{5)ccqBU{NokGfjE^#pu z=4+XA*f+4@1ZE@#$d03+_b!Bu3^5Q?7-%g)X5=_eJHK(RVdUsL7IYUp^UBbDJ9lXP zMxRAUPJGTqq0iPzg}bkBTNwRlK|hP+i7i!ZKT_+Mft9(-_GmXEI>nP`^Z2q%oN$@a z$D~DpuO<>wobeQ0Z$1xj zaVf?|6hW7bYk}4UDn=~9VFtO~=Rn$-qa1qe{kXTD>J<|T$zr49!`lSJ>Qmm`xy}^# z!o}i5TX6D>qm~kN1`rE6l6a@CNenUnY%ENOa_3qU)lRydnbbr_DiPf~qO;KNVg+_p zmTrUQ6E^sOyOt^!Qr?+U|H)mTYXf=U1yA=lpAsCjkD(rcz$>??A%QR?snSs%T|UvE zY>7}5o7n7O3Q*mTT&fD_01njID%~+C#XfrwFYk-UyY~I^Z^hDEe+25%BE)C%s{2ne z5&{;}44!R}4e*Sp)`Rm^J=NP>)>(AqHiPvw_~ZS#8f32p9oUr?VgCcv_zGF>ro0h> z9uO0A9!J4kjpX{Jn&iqYN3AB=q@Kq``J!l*%#BB{dZdQW8qiIu!ZMYS!I0u`eH)RB(5;I(n^{D%%*WdFTCn2IhP`&75Ld%kMtwKo*QJ5 zW-?#@Dv8vn+xz}}r>BIJ45)zPOxT0A1W|>CTd!yCxM#Zd$i9)4_7l~Yw6OJDR%uA68-w7F1E*K>Yo7hl#8})sHGscP?GDWA z#?MYi82?Y=R*jr&86Quz-lr0jIvn*b!oFVCmNOjRWDTXNK=<%PZK+A%LHdyOBngW1 z_mt-rpKPvn=}F2=DG10^2z|zzKiF_INX6-{^%>d_5!Nc{0bz_;C`Y@X#gR&jnh@EB zrGdcuo_-tM%I9-`gjjOYf=v}{Z0hwh7FAa8L;Ccc#QP<7(i#pG+78u2o2o;Xp(C|= zqm85rzHHjtsA8R+oIaQH>1i)w=meNU!bT!jEOi<}7F0Z0<{D6HeO-Tu;<@Q+y9ms~jm>Rpt`W ztFi4s86P|_?~e?+E&hV~4y-N9XVLqM-e~|#P{FVBX8x`t&s;gpz5!+5GT{ZM(g23u zg19yghV!Yi>0F5An&N^{#R>)8PyeA;6>9M1ZO(KE~wl-qj<8ua-@)52_e7 zQ|%75s!>~#>4K-mu^&zDj4FJc@T@CqRhSeq|6rn(9=B@anbx{OIxD)dbv>ohdv}0i z;`!d27Bym~msLqAYY^!Mb~6N?)|=((XCjt#jE#qHW}z-Y{f2rs>7U%VGL= zrr3W^Gn1%CAb@TM@>N=J&>4*Qq&{W3FcYyvi*d;`x0)QDjtM7F&*c$k0AiD%u60^K z$|>&lOW7qyI2oQMe5+1!zAR!?h@|Jo?cl zc;cGE&v|Xnm*t*f1})nc16!TgBtnG3%?SfNS7yt3U2+ zEqZ$;0%(nq8>4X9VM1SWy58}#q&#VaLnIIBJ6qYR%;a)7A>^Bk1faYJx5ZwKyyK z-%dq7BvFgefMo}=nzEP9Dh(OV?8CC8+?!UK>Wpuv+{q#sk zWiID_9&bQv^;<_7+I=rMT90-FUB;>aE>!isRa0=!hQu7Vo!Cxxg)I|pQ)^H{#{4RJ zlTKjUc9zggZD445weB65`5;0b0kA;M-2JxlY*TEKr2C{2{&6PVgv4q3=HmrysK+t7 z@@EMN_Fsy9v%*emUpNUoDhxzwal&gHhB))`M+13?#UpYTjTr5AKkTsYS?_l(m0WBacypjgpsuboTZ(O|Z3iD|xHXw2mVSVbuDCA8w zJ{wlR)Z#sl@_rjqP{vXgIylyA_tS2=qK)24E{Jw`&39)EBRN1X=1Ax+A8&I7W^d@M z0m#hkGf~!lG?Iy~MAnUU>Nck5<}x>mhnOcL$&kV!zdAZw=AGv`^Fv*_EOkRGRc=s@ zR=me@NU%G-B|A@i#>P%|bCx!FZA)jb4glgvS7>T)6CBHkQ zg(^=kZGyy)jc{ps`akARz7f5e-1#~p*3gCyd?wvFST;FMTs<0buoNS5PgB2=J` zHG29W4vqdU9+tvDTr^s2dvM@*BKVzG3+nd4iXE*(aoI3-mO0>PFvtb~$1#qqj z(5&Mkipx02qTge^XH#de!py2U%GVbbEUH(zqBJLU$4&Nm|G+Bn}3j{C=_=eDW9_`C$mTAGiUowmTxB`e_DvfNRXSXN65saezSb0-}iZ%vN(L z$DP`-=(OQsi)zV@P9ZX6!r9->0C7MT^X}XM{e2t=xR!Nqu{Z0 zqPCu36yHBSr~_8&T-lrRZyfN}d2f`c=wr2*g2FYjH}Z<+E(y7JL{>KEzDZg>Q^esJ zLqtwQqLPIM?EI7BzP(z{zfOJx#q}7hNAUVL-7si1w8a~cPQ`pwMmT01+!?>|C`g5v zCz=^MUjyX-{jmO);4w}Hf-Q7&zDsF=;?Z%}V_@Slnx03VMSN29q2kPhaknRaxS5NA z;E6Gov>5lp%O2$+AVkR^YIW88S!u+@7lb){0Ivrf!a2)zEn^=|$|_EwzR-2F1cBi3 zA^1^8f=w|S?5F4~!7cHP1CcW zFlzc{2%n|E+=Z5a62@=>kiuU zWx%6Q9LGjPV6juZ#zxrc@;MkIaMDJh(Yx?%tL|It@YK1-Ea*%nh1yOn3?Ajv-bK+Q zXGZywDnp@f?Dy;_KH6ypPe>~6?L&|(Z+WPv&`VNTE6P{VoR(Erctvn(WEQ4URbc{) ztK%hk_!!C5&{+Wv_(7!fpfh-0=YmlYt$Uo!EV9~QB_+|Bg=JP`M7X-vH>yq|0PA=d%?k#`rUP+MGlKVBNz$E@op*~XYm%JTfdYQ~RyD2x9qoy5c`A2-v5zpb01QQ9 z^q1D>zd<2}mmf*c`T9SLq{KhSsr-Su6JwDqr4lu|)&JdgtA8uWJZVdhf0iB~$0squ z8$W8gXRYo3IebSdwqw)n=y{X8+u3S2aUTO>fgjkS_G1)3B@Mh1g(+J5`*=js9pmp- z7QtdA`xKrAXv-8Kp0Kwg^<(Y?MxC$Mci`=ORr+mG;s zXGtF(bbnD?RM(CR)PM`$knqM8J)|CgR(n1weR#inLAzBaaoSIga8v zZgPHJE6Xsm5HNO0db&3@&ko+TRK3%k9=CTvsAPcp@`pMWiOl(R8*LTpNKNf0%7ulf zg^F#IK+fmYN6M0yxiUO*T&|m%yZlZe5&ok&Nl6@#Bxm_WFSHkrakQVhw_lP$WpRrQ zABc70J`10iCystA_C4pcNEBy3f{4~{*~XLsSwJzg0#PmP=~eKKN4;@yDcZ7(ZGjSn9K+%GqW4Fy?&;C|6_*YeL@(y3m^Lo5sjMdjj z1y(j|3%*8KL4oVQC$*xY?Ui4`Kkt<-+)KU|*fxW8Sus+ZX^}uI%1)R>MQ8$RId%JX5eBlpPL<@;myJ7W_5##hicg zw=t!;wG@}>>Ap5lf8{Vj$z_ZFMD?=WG#_eegld9;K-hk^TagGUv$OC zwryC>Xks3wi^|$^>6<g;b3_fC<{L@z`(+yu+T}yFuc6Q!$UYwqeX^V_q z%-e<8Zjq&&QJ?pW4OU~YZI*|jphPr}=Cro9KI0+Kh1$n?;IVz>oQVQRb^C+q9cYw5 zaM&Dlw&HGxaMWSgKI5^U;F+LHtw&ayYDntd(Cjb`tZb-n#{|BA6eVQ4vIDNNQ3fE9 zj)@n57k~GB|3<`BxlzN9zgLn);hnA2=X2HDQgSmg1nfB#{CgEk!adsF#cE#oEff4V z%+uKLr_$-{7SXxOrq!&QyJ1sSNqf_7&f8|R4e{fGcnW<0GF6c7Q%FoA245wWv88e^=j{U;67El>YK9HV7m(0-NsFwQCdDFec&4TsPPbLFE75!_ud z$|4bhyds*$qu^93!Lk2Wf{O;dLrA7A(F+ih{^Mg$FpTn#{-PCJL& zzRC^5V*8Tis0_#T*Vr1qgKfj7vdbpiI;j-RGr0LzYt;X&%KznF1H+6i&L=`lqxCyF0!$bU1{s){$`b9Oi@+2t@CP3tRCHAO)ZntS053F zV2D{pX6E+#`d2$UJGzWhg3_lj(q1(rFw2j|=EkHQ^-V-km1DGG`*i^=8Rvib`hT0W ze^A9Qoms9aZME>CTUzc9zFM#86{m9;ew$XAvHLNl>ytZn#b3ce_HNCzW0HrQIwFl< zqsqjkEKY^j-(o% zNAfN+Z(&XoaH?%JUKj}*fvej10p-EDof5L%^lGh#T)we_CiJC( zg_K~>VXXl#ozH&Z+~{N=OWP0Wnk)#xXfV&+7*V#QHSrpb>Bz>$#(3NIcc%ne-)W?r z8~$HIhp?2Nh*9=*M=X?EMs9_Y{W9In)^@_&3Ue@ONpiO0V&h@6o_B8W?yuSF1S?ql zXys!%j78w1fixH)Gt}^~zI%o_LwDuoC==IJ9QcWxHoUxiO&q#@uu?{mgGPi!g+aHg zrfL@_$W};hiRqcM|2@2>Iw(NkQ`>sk5l1YH+au-b+B4%+!Txycnn3Hz{+w0VUDag2 z|IMuJOa?KlvX=f7neh2anlUD>3pg79t7|0X{J{tQGEN&Wm5nQ%6-M12kn0H#YoK z2O1g@k_~}Cs1PFdbbl-qDb2p}wFblkZSa6+d&M@9`yy+a?QYr~VE+`r7wygs>JsB_ z>ZIa1?HG+iV@~q1WX=u7qnOjHAb%mMoQ!m3uyzUdYp=ICu!5Ft^CC{otJhrE!&)3F zABl8<)KlG{A2N2vOt{V4VQ4RIb# zuQHB?-u;bXfd`#vRDJW)!My`awyj2~rfsQmIZ^N}{1t!>Xj%I7x}3YpX+D#g+cxio znXea~crg(Sbeo0rKBecefeYoTT=+rvW^!y&qoE{4@3l>jR&@T^@escAESE0FdTfcs zc3hngSR1d#r;|Qb&-2Gx5!Hb(JbK#?jdATxBUR6*(;mHapjnXeZEZ_`992 zEI`0hKvtN08Lj<{&k1)T3k?Q8%FNAf1QKx)hRL2f{u_W37Xps;QR)UHKTM~E7~)mh z^?Tba1-xG0XU6@1)V+65lUw`mEeO&Skg6geB1i|NcM*|ZlwL!T-jrTK0w^6siXb&~ zr1xHeROwB6ub~)v3u!0&*?T{~=e%b>XWoC$%srV*a!)36ueGl7y*}4k6OR42GYk+m zM$Z%sMnA2lu-?eDBmU0?_&@Ij8i#;j&^{--q7H~= zTIu4b=^(B!pIGPU6Vf>At=l?_6W(gl-hzJgXWykD(LEeY`Z}oq;VTrif9aDnUcr=^ zr|%=xb9mUeGSCWnoOieeN+H~K>5MRhH)8a^9@I_|?p)hexRqf)P1AiwjelQLiGyS60i(bNI^lx*fe zewN;>!ZKI)+Js(sob*4{-YWJUCz1h@1XS<6lz@MuYC-O1^Dio;wU1i{(?@!Yxi?e@ zH>GHX+QC9qn(dj#e_0Ga`>_4$hE&G)jynV|Zv4ab*&2TWA2cIxcXvSzs04U>&%dImw_*vGY!2ZQX?!uId_BRAu?%ER zGZWy*L>i*v2KYmryFZ9TwC(m?a*8?FE}gPdc-~$g zQG0A~(o>HPBVyfE-CP6>Z^5E7Og%+>54FV9YF(LeaF;zSsV1Fu%Os{=Yl<>gx}o%# z*dOS#%acEU--n60jG&GHkMhR0V2Qn`X9l+&dlYXu_f*?RBAP$7s6}pzSEb z117_AidtKwmk8SliuqbATsSKF*6mOvjWXc;W8TW<4ME2hACRxQs@kA>;Sg5#3yvEYLO$;1Y6K7N@^x7!Z}DPxM7iii!Tiw*K3)Xay4#DB$R; z0$&|yKjrdp?r+3zG3jV87g+GMa{B7Mapp_MCxdq5_SR=34JW5U<7u*QHT1(`Je=@l zDD)PF6z92jukIe{CylSP3nqJN{GM@RhWVNywtUY%qaO0MVa4SDjjDGsQ?gq<9bqm! zxj_NZU$CoiEX;J7aoj`PR#c!2iz!OgZR9n2Ch7`R7S6gKo;XNwB0yxlt7!bF6UoLA%C8|w?cV*2IPk_lT^&wT-#UA4iZhFk1 z6e^nJYL|YezD|GK80tZ>)c8S~w?xT3&f|^7laRoQ*?j@&dPm76f2>*Y?GTRpv6IDj zW+sR0jP2nLv1`}zVY|m+OnKXi7jJ-pqugKzwlcrdB98-Pm&Y0#{lqT!D?_u467UMQ zRqcD0aWabKR}1c4>s>VVtw~8-uEkd?_f|5z&(CXZ6ci4m#=vNQ`>wQ;+{2RG#Ot_G zdO}dsJOAA(By;X^l?tgV=E*R4`>BWb#zzkh@fSC5KAmK12ngA$FKq~5kwf_0to?$O zRPlFdmJgVtDbDU)Sgv@vX0Bo8FK*gC-E4LfcHNzOmZsn5yNF_@XhF3>vQ(Wd>Tc|T zc6ti!kftlyeG+B^Wh9jjOS&El^-*@4m&hGom(femx^}HszPY^FNS`-0x;cT26X+?N zVO{+um0aq=>e}=0UYjHkcO*tqKz@i57Oxq*2AG`f)V31@M6vYG*v$Hly6lBNjnFVv zu!Z>Y1?<@@Z|gm9cKMDa^t(>he2Ywg7QiUZDJlA~T)V%IdOYT6lgFIS@f0~~6kF%$qe|Il>k-4vuTbLj!I)fl!6J7DlcEItE^aT zl4e7o?9lgehsUCq0p&ujyt$0(v?k%Y*wWJl@TNgL!)5SvU3roQRDm0ACl#+XIiQWd3T30vimBy#E}3d z*IeQxzQoel$T;o&WJlHUqh|4Gr~JZBwEEr=^17bsdg4~e6dz#DbOWi7zpF8NAwq&&}fLnB{%$sujs z<5Jj`1TWo}81GCT=C%EBrA))fQo)(us9^TvKd!_Z#IwXSfDRaIJk~QeJ+R^{<^;*L zW94df))S@sBcNFP2)jMGp0do*R31dxP$qs`b+%$>*N-M zr?5rVk>|U=kceEvHvPITie;6X#%6ug=f0edx_X(hy?6}6ecnfriicT}Uff*YJ;_mK z*DvR|u3yV|=msS2iDb&N5?zjki7ush-+AMx8O>+J`8j-aVwpc(o*5HbTsr+Kb*DLM zG>2L+_Y8KGQ0u?Xct!oPsT|1uzu$;IqvmBEP4)%i zwZXc;iiNz?r-Sr8u!Gf+7~lbTYw8s(pw&Azw#T2XDUV`oTLE@2YU||g+3=-PZbK|8 zbC0i`lmBntWqDq?57@Fku2s)m71(4;c2ro{%uJd1R$R?l$Z^*D1um2_C zXVwwGY)hDg8QVx*@`2KJR`5k%n#75>1Iq}e*= z=&{0g$Z#y#)x6Pd7hej-#eV3K095FEv18W$h-^qG7AAg;Df6BPELyU|2ZcMZLb7Aq zv2C>uJrTdKeF0~6K8qRnZ6!Ua1Y<#7J7X-opSbJR$`pqIGx|uPeFlD_Sfp6_PCnMA=0&7SG4^~D*ka#lutXv?3E_mC_ZEohZ z-$6g?Do2kswxf40Lm~J0yrm?591Ml%uD_c-kgdFrQLVP4m&2Ir_c__B8u6HWcr@oDd|*Q%6idL<>_Q4@kR!XjBy8H zbTP*%xqbJsKaJ}UOm5px^Xq4!WSwYTM-k$wDvfN*A|D-CzhZ?y4U2W{aBric*wc#J z8;1&R2%ozB^6dw0Jf3AsFJE#_n@~@n8K zQkE6xsyW6Fc(W{@IG)VJSEyK_2g`>z5VTXtW2v`i!TVFEI}D=VSx;*CH78*8YHzui zwT_Y7F}{$Q` zzrGCKrDw`guyq=4nteS-hBJ}0UmC>lSJHyC9-#$Pv3741;=Ob-UV0y0 z?24=dA|8}x+%IiC6=**@@?<2D+FFPrCnoxzH0$3n+rQqB1~om$$F9Np=GGM7Hr>4% z;6NQ>g@)T7yeGh9s2c_lU<|xNr>^b=K{x2BuXj-KOhJ&}V~V#K5D$Y^7TJKA=A6O1LUTQ-taZ`QB)7JtV(HhbM2@z%xcQBTT>PJncar>< z$#zMw9UX}6g7wb%0E{573$HhFua9-KcciXbcm{2z)FICm(7TaUQK}OR`ns=Uj8~o;C^f84GxCqg zAMQgMe0Rl;l~F>}@rQa?&7Kr)e1X>5+dYuC9kN=1fnXuW)SKYb;rmHc+Z~54^+Q3} z-ya^Y(xWAwz3P2QU~5GVv~E9bCEjC4IiCK~F2g~hxsjaHjE=U$N6=j8kJO0gZ9 zm7ypy#s)VA{C0#YC9GMXU=%Q_fJzP3n@*rv>AZLTeo#|c)IgH^N$i{pzsuR`e^JT$ zo(8RxT`8YFu2(0DCUpAR<5Y)xZEFmNQ=H;sN;L0J?$|xX)DmA=8P?0=CUFY?OJwJF zmI>@{_g?(^0n2*LhaxByKhlgG0Db7s9nB8#3h6U&Z=2A!rl!T2nqkTDt>Hwc0OqRnfNLO5#qx6F5^K&m6~@=A2HC% zk8y!UuJvHv&R0}!2@(i-=Orq4*$M z?HIo4*Ai6QMyE|EVY#Gq0v&hU5iHcMW0Ovm1w~{(PFm>U0UjP0pqs| z2&;S6IG1A%l8o9inzjmQ1Pmkv%XurLY#Q3W4FyvFLn@Aoki`y2XcRgQH>f`YYA|*# z+9Ce(9V;FfO8V0&cxa1a!NZ^mwcHx$52=`u+UO1#etY$ovd4>#Y0oE??U8y>efaf} zm9i2)V3YdmT$2ZXxYwZ&WHC2uOE zEI+vuH(n7qN(Ju>ZW(AjFaDCD>`@&q01e1nYW>8kO~+G4er&IvYS`MMNw5Fa=gy*O z2DR+a{PiMi?5@J-;u%K-f$9lwoYLN|I?>ZNJ8Yyib}bGYYFz!z8_uQeMkyzSK`Bpw zhI}Qq)d(d!84$(DgU$zt79a_kcc;rL#NnJ%~}T=qfGBP0N2vGJRM0)rX!? z5j@#RwpPk#^Qt*DJw9_?8%+^Q7y@AL{9bMSE1rphHUXuok)&|GW$rDHLCvD7L$3nC z(;x173sL6!4}4X6x@7@05rA*i)6rQw3eNBI>?Kq zVAGsb#M+8({AH%k6)LR;{KLImO7qf;e6lGVDIAXx?%sIhDF3^<@IuF@%V~-8et)IaS;o|B=DqYkXqfpW8g;y0fZL ze0wSHQ)QieVQ?P6Cy*|qYU*g+nWuZ<+t`2`$OW+_6;Ll|pZR=dytbD9CdKD}HYGO* z#PDz;pvMj+#49)K{PMCUCh|U->iho&jPXZrX1^cDo^c5E~TpW4!asc;8)gUE5R}E2ow~2P{9LVSs#e17rCZtA`;UoaM<*?*S_c z>2lv!!H_|#S``jz- zVEL&e!prZIcH8ZRNY83!eMvQ1Yb&a9>tSc!Qg(30?CVunwOZwNb7jBTE0*c8`H>ui z*N&d-#)DFv->#@R@Os)(gb?1Ev3p;fMm(Y^N!ID^H6LZ5joVoEpJNTRL1N%KYwM_Z zMS5@it9{pRijK>cOosfQ{k$comkSyZQ3pl_&WGEu&4bN?e5?7w2s2Pb3lEGHL;WfW zCyJ$MJP)bNIFk{UqiDFxyUBWViPbpP6Cdg(1{!a_7oh%0KE77Ylrx~B!j_=Zw3kuq zrW_(34d?kINEAvOdJmyttD&uRICn^Wp30kHDV|q!+2f)z@wmA3=UW?$n^B$Hec$P~ zk*ZaDf{ciFoWm7Mq~zHz5w1I&^IE>3gF)iLyH`e^KZXJF2w(zk2p>|h^f~jDp+O=Scdnnw~=1AXn)qk!-Byg za_5(VMwyT(fNxpc9@}+yIcf8zX`dste4Cv4Hp#=;s-V#fXl${=p8Wqq`deynf8Fg&gu5ZsI zuE0|0QF>fRT7ro3Z}8|5Fzb`s@Xx;^i}QdV1KC#@_&VR{-tiOczw)9|)&FX61J zuFzt$t%Ee|pGWEjzB`V*1X36i(yo5&z2tb%`rk~-pP#Fw|8e(CqW|~q4r~pSJ<_-A zGMsqj;3*qBpx2f$u$`PzX>UQJ*kHvQoCe(~51G1f0cjj)xEM)Hw?QhK8Wqi0rjsA1 zRuts*R%BH-V3~7B9rwik683_ul3(~$CY!0+>~s%^PDWZk9rBTj%2Z)$I zKBg;7xrsLeIAC9Ex$SyBsrx?f@9KCTBc44TMEZy`6_}SMRAjaSMndh(>{3Xdqp8$o z&fNLt`8Q#MMZZ%Ai-2)-Z)r{^yDv~*W^Z^8Ccc^LN&Eggv4_11lIa^g%j|mt?y4L< zP;vd@V2G#IHUbTc4R4bwNam%tW8v>w-_mKfq#aLT;quQtrzhp_0>5&%)~fO0{tCFf z)G3hWd55&GE=sXeJC;rvC~p}!(q^Sx(Cz6$xniPc*uXj$u9|NUbH41&hi8muOpB_} zNOVZAZ~UM<{Y1W_o(5o@oRd~kHtg|328}s0zu(J!-)Cxs?2Q^v@S8Cwbv|Jm{Un*V z`PxSp#4_KM9q%%)Nb_f5EMsk*RuX!@{4*~C*m7pJ zs{4U8-k%avP$0o3Au7xzyPp|7LRoZ5$Vp9zibD$>Ut&8#e0olKxM29c2rBhyIzp61 zYU>5Qr3r~HaPYt(_ryJk1RwLLYM8+dgK)Y!(BT533U%rY)D(}m>~+Ck3}RE0?wUzY z^kBH#RZnG*-oc`=-or#{zKMr+qMt6;R>r&8W?)^=j|1T4_(5Z(te^OxBy#2}Lg$K# z9C$Dj<@U?L<@X?+*gqA5oy6 z-1X#J1^=QvI^4#WVeY9wQeZRLOB|e@47S&eK0f1?Yor9T(jT=HP#%5Ff~?4&${dq# zg=3F>MBn2<`X(_0GH2?kmpH+8@~lSac--;S40wheO~VzM7!hQUmrqp_fvN1W;N)XB zt7gSjTR>ig*_B4K_Wk&G2yPv_s#m8nyk4N?d~q*e2y+`SnrrG;IqQQux>(6pXKG>K z?&E6Esl}ZLcS^Bkl81}9s$N>74z){O_p-CkE^Vb8!A43!oA;6mz<-^xtYyvY`dYY9 z(=heVN1JjZG+cEm<`?zSYi{n(DV>a>ge224*3S^o&+pv1`h7YNd5Evr?AJEh-_}g> zlgz53A5a%Z{%!KV?GqFzc0ff`Xw#N+YsNynC0-^#5X9qA#rkvJn1ydC}!;MJ~56cK_PE$qv5=D2XHtv*z z$g|k1s*|>*^S1XnR^8v!w}$kIM-cJ9>X;!-LbIv^ul7=?j}Si(V}P3t5=Sy>cZNmB zQ~^t`7B+yZ4neGJbvbmk{9YhJ+P!M42wUZZf`OGQfe4#?Nsdg}L{;<6$>a14j$z?Gf4b4iD?m&n;#B zBfiJm#{H^UgBjZ|XBrRZw0aU?TCQgBE_F-dCcx}oTVK0FYlTF#5Y!7rJcU%^(H;81 z0qr5%rUQz*$h$|U7Ipo>1p(x!Gcu2b`I4P7Ky#SOVq<2KZeEjECC5|pq3}S!ZXK-C3FI^}G5C=>8=%)$?q zO;m)43!q_M<$j)Sq+GHLkwtDMT=vDKEXwhLu@9;9vKJ>C!jDGsa88}^1L#?1bL5E3smb-P zVO&j6W&fkFCi0khVuV@hB_rxYI>pCAo?%B&bY^19QGeltWL@AF7GD}Y__PS!512d+ zOC&r@gsMnL0-u?B^;p+pJp9{&HYAof#GMMg2bj~ri64F5lkNJwN`?iSAw;e@aAe|xPn;7zyu7;fjM>lH zFMj&!12i4gob^kJG&7Baph$6xuq-KG)KjMXl~xIjfdSzrS#mJKUsf);+|$T7e->dM zvW`5n@N=5+YQDs@>D(uM^PH(rm!Z5c&CwT7J3mi4<~$HSUF-Rbv)uVHY4;5AJkl;PCss!8Lw*J9 zrT~|IhC02z>FeYGVB2XzLuYyT$F*Z4toc?A zt}YrQk z_9t1CA*-x2ri{QSG@GiLC}I{2D?!RVPi!x<=^;6A?|?9-4cP(BZN~FrPyKP{nM`HL zQ89?u@h6tm7U7qTeKF{&%08zr;9;C*=EH zJ+p3cpdYlULBMH~46#fi<*pFRxm;=|%a?PXtB3S@4uMOu?*0A-+uE0v{r$=!;tvLU zbk}XC0mJO^i|QY|=T9tZq)MyRQ7k`fF8KR%bh~{LEKQU$=Stm*=p~_#b(GnobfS;- z<+(08Dc#n-+3GHAcF7RF zdNXmK5Lo>b@l88=Us2MS{lfSs&oP^kCrJtTV&EO_sG#?oH z)t-OiQuaov~OQ;8PsQl?mTxUzw{=5vwiug(~RBh%f)Wra#H1Uv}$>z z0&b^TV;L z_kGEC2KtKJj@vWJ+^(8&4)7ntPHnsdiwx&s zp7~!xsUiD)=$`jgr`iLvU3&y;b;UBN`$P+=dm$jMZXH5_d>d0WwGBMLPk7&ylv86a| zlT$XS2EDx?n~<@-7QBitxF9KA9qcWdbK?dP&@{_@S07n#m+kWc2fvqi(FuOn(?ge38HLK$S&Ta6p^@_80CX`3eBkhDh+`Iq~;9+e< zL}UggAfg1QU-XwgWLL0&^q50Xcno%R!6_P7blLIe`voqGiEVB8+@Y_yX6vA9l zIo)W~^?VE_pKGF=R;1x@UjTR91}}&`=$Ag!ap2|26YE96!kw_Z{bc?W?7m*Lij>NQj2A$$xG^yh0x(+Y0T(d2R+%oaub zrMRIT6{VvQ6Iutj|7P_t>!d2C$~5j z7@cw`@Y~133+V!4DtjbUs>*$$dlK*NYCBim+pql`nao*mWnM&lp8X|YP+7(tJx8>4rersJ<758sn!c}|CQh{V~yRc4Q36`Uk zQF>OWPcHid$#Z6sjeX|jP_?Bfb6GIDoSFgZ5>k^`4ro{UQEn`Iz9-WDsj~V)>2)(` z(p(mC!8rpdx<^{urh^W?{D@hI8bXie%BgL!_4K5EXGRX2q0>RRwKHL-osP8oW3)iS zmciZ)slpy|y%wL0!E=72NX)$F4L+mLrZ$L|%`2W(Ks;~ZIMLmyQ`f8^Fy|V#F;XyC zoacY4jW)?0Lu6OdP+WZNCjy-G#aVhPk+%&~ltDqCQeqJS&%t+fp^J#L2q6`2&^HM(PjsFQ+{3 zPXC%10GN0*k!8LFT`*jQ>oB6E`D+Pvuc~dO zGFbZLly)?bS4#H2Bymn4fR7z%xIkuQsy_dd>lhCp7$!vz_M*sy#J^mlsK)czj@t7V zP5%9*!emV`IP=Hh5(7!_YM)tqad^8G=&1^^2&`< z{Eo$|>NxK&9x!V3tIW7Q_-$JoQ)EWzAh3nh%sn8SH!BAHK+0j^3fmalv7>+|J#67< zn+njyiY+ks2|6m5%fh3*bjf<-L#EvC)rB3Y;CI*@>#Yh?qSc&t_l_=Y*U<4!;xRHD z-7`^@0i|5C(?xe2)T;gsoqY?y7vx`sUevOz!ssi8dCiea;e7MlQ8Nw;J2e%!^$GEY zybH>S;0+?ft)5n6OK*_E&d+{r>Cr9joW;iyWG+&ndrXiWBG+=>Z3h<#RjT{rmM8f ztw2~Gx2qKK@n}oo#391*)Ax(7fsb`01HOK7*EW0csWI?S%S?ZjkE!!xrVW4-1lt^$S0KYDgua0bojNZ)B|XYYWE=Y>0k?k3#_ZASi8Ni<=Vi29DlfX`&qp01A#z=paivQiXAi#>F$365 zAn{tQ(7}0A5vGRJQbr(y6tmn=#VV%f=MbQUyn{_ia*)2^2&7z}{#vRpq*h_NzJ1C( zlJ##%H)!su0Iq8NUX-DE{Wjk^B$@hz_81h-Od;Cex&inyUWfX%lo% zq?peqZENz7W1*W_jrn9Wa4Lq`HiVS-2k9GJHvZMC*OE-uFW>|HdOz_VN;%T=Q~^IN z_fBcOQJTg}>S9NOWKW+MTTpKzwTq_!)2D7CCDG#73t8_!`jV10aNsSS`^F&1KK@n3 ze|~T4LkR?U0s3v8*dgPIr639t?z(#15kx= z%KYX!?vXMC0T|&t0x37nsjuY>kqCRptD7ox;9`%|Aa2Vl^=8fCKRD4G=FPS zumRFRU5hX2r^8ttz2|%u1>(KlKev~2k&?xtqvEOsMY~pjPe!dJt|M@u@0{C%<8(rl zSjhaM{WT#Slz!F*kd1wWx)PjcBk zbQ-w&;Nt&+hADn=Z}n163Gx!RJ!A2a@(0g^fHm#x1DEr(@&cGMQFc10i5Q+=KGpu) zwN$RAO>EuZr)GRq?GhVqOtNHuHiy@QmVLTLY}r3qKeW@B{b7>d>6^MyWQ#%OSZ)@= ze$fA@Z!6tQxLNxv^n{GXm;m$xG&z1Kao63OJ3Ze6eUgG~aamH8%8wmu2;DO(yj@QC zrF=zbR&#Vg6HApPtG#cM1<&83Z)Hv|zgQ2zPL}dlQ4FwEqJKT7&jr=-ULaeRZPWoY z{eP?`+eg+!B>s+Xo*?OYo1tF3g9_pFSsA+`7nA&m>m^nYVpE{9pimbAngF@}3dill z@mEdbJr5;EFpicDg}Ub(c0kw7LH{Nr1DH^?&qo7F`DIC0p5p^3k7_C!(g;!K5bD=!EyPzF8SXDSGiekHhvpb4`5XL;L)&)5-f4k(AwouceU@S1x2Ab3&mL}ns3}>waez-eN zrmMiq&*^6%4Zfe8CKDt(b{_{{!Tz**kM_t+Lia+NcYM@|CZyDhuEbKPy#!|ZC^X&G zwuZm}ooJNAxiE9Mf>VHLn2bY0X>g=Dba&4iKD1~;`Y+EkjVU*7IH6k~QJmCw1b{*e zOFXT+fmB6_O}WW`j9bOgg}5|2B{J*9g6cHCovc^}yk{SyuN38Wo3+PU0&bh=P_VBk zf;+TUp>tkXZ}gQfVEUl?IFfJm6d>^&9c9A{g&TbyJgcq2ttZ6F%=J8LH_~Av%#u9W zz#G~2hBflP40qK87zU5W7^L9te>*lCB8^_jmp*?mo+sGt7gty451t5HlZ?W$x&*PYpjtAXUUBM&339;+dnG z?)543^N;hL@xKNaoPEUoRb;SNlnTr2C;;mCOB3_61kjMjWef#A#~E7HgLaJ``i^cz zV$nXolNtL^Hl&1MZ76t`epjH7(->-B34vVP|1LXOLCZW7=Y+<;_#*<{M2{|#lFBA* zK6Zu9l|bCU6%KZjhlge7^D~|(3{y;6${!0nGmmj7&*?p^K}~qA#*$g(1dmotWTn&G+IDE{J&!sXmEA5Fl7X+9M>y zjrK^}8^A_g?;DW&Hp#>P&ZqPpJdqQ#Q=A%AI?pn7-XHs)>W+ z-N9E+`_cnlF%~5;V^s%T+X|@K3-;)rd^#NziI61MA~@n^jEG|4!1w?_k|G8EFAFRp z(_cq6vZ%=%lV8BN9yOhEQf@!p<94?}rZWutLNtVa1db@;45xTmpuo~|o2PHd+2(kW zQ?sv0jCYsDEp;zCb-z31( zWcr-%Up&d*OV;c?^mH6uid7A*Q@9;BKChAJUI@ZPnv)i?%y2;^FuNxs;dj87eOA=C=Wo3lmk<2w4 zTT&wWDnTwvV78~MOdLHzrSk8}#f>0Cb^&R8kQEWbg9j50YZfxjpDSa!4`>O1?Sb%9 z65S5Xw$9fwyh9(cOKsPv%UrDa5LnjF`lIhzfLS+l%VqH*2P!=fygZEXJwnh(K-PlW zpO<~E4!FPzz!8dksECMXN$6Bx8qjviOjCeBxh5Jf=aL|0sUXc4v-`FLujXLeU?j7bb`}-`8k?_M;_Z4VF>g+?Zji3dn^x3Hp zHGW;Kdb!^n%sgnfHHwjWe5)x>&x_>Ox_75jJotPl`JQ`G#6$ExzVntWsVK5!adyaR zHHFVaKIjtFQ{Lzkg@h&-YsdVaeTS%dBwK#jr(%QJt|rK(Db&6iw~jd%Aj+nSc>7Nm{!jyc z9Dt3|IDMD{qtgFKMC#(gK@~G#QQhP53BF73knGZ>fIc$wuwZ96l~w`xc%^)5D8PMf zd~-gfsTzcv83k(MzC6>K~-k#vy9uTuVF2kRqZJYPKQF*cUn8=ERkHm_JK!#_VX7)u-zN%k9wbIy2XoLPE{ghB7h^l|3$cq3 z$6ov{a=}nKl7FPP8mVyzQQZ^aIOG5S=uXhar;af^96Ch~-r`On`AvVVL7Z{_B@|Db^WsW131&zaTz2Qwt_{{O+dajoJ`Ibqca ze^EQzx~(zWU;ppaj*5xMF{$;_iPm@r6$cdQ$R_-qoaHbn43{h@JpEFzOz+R3{4Yw* z=|dCE=g-97m#8`!uC<&anM}VnQ6`7a&%Mnb$^W$vbDG-d5>`crQB1yw z+}YID$faeQsr%}O{v4|pY4qFHsxOP64_1VflRgT(>d0<2POEkmpy_( zh-Nnn<^tFk4Voa1^@2O~y@kEqJ9n?&qbWC(xVmz2fFI;iFZdp}%DhFmtd4#$#Z>0`pES?+Zl)&b5-HoX&MzD*e*NKWh}+ z#?1xk6%vz{ItWq5k5)C)=74h+^KQZfsN&Fj@Fwfw+I*=(s??A0W)8SDx!dv7fl3>w z-P|rHMkdJQ0C)I{Q=YqvF6dQA5o=TOwBNE&tw&TVzvn`dA3Ac;2at1~r<$XmWQ=0qF`^Z$en7kgm9s zu_1iX$#3Wx1JHg04##esvshz~3GgHX-S>@RAlVh!VgA-vTNqWwL;pastIOT{jbvAa zr*4=R{DpKu>aA)iBr;`Vo35PV9nxvs|p z8{??_8+@TccYhP%$%^?uBLsL+vfh%=m|Sjg$*++95I(*1o<9JcI(ai+#FlmRhnH#M z#dD&jD~FFbo(v#R+aZ6}(W^3_ItgRo>^~&Y3ovu_*HNh2WHPe4lf@>ShJ4%LTr}e< zvOs=v>pv_w$NfLH97u+|r{FbqDH<@+>Gn%X&7iGY^=ae5BKNZ81_KNPPXW`Y}zg6$W_?Eayp=3t}HG!@pLPo1XM>tUT9yQqeMR9c87l%`zkdo1HHeS3l%a!w+p$L@|YeCl*HdE-!RIbkd4ZrQ6`2&^$G-f2}hMtuc&>cmP z!6?R*qcqPckHQeYB$LO!3AlmRCIAzb)_KzYnV(zRW7to`lfJek$A&}uL>|lNlQZev zofK}ve#-Z^KYnRzILfmMP3F>HR3&>z0Bp-~A^I(z36mYd2^63p7h`|gwsY0Xu^5J# z$?8ZUX6t$m(E%rR0$_s!*TL>bN&7cD1twqi?9xHCTVhmIgg?6fFXRtD@B8PbZVUR~ zT?YLYl;oDk|F_nBeh2UWZ)^TE?ST&{_7HR5^C|t?t33w^$B-*3c6A~qyAxg&mgm%rN+rv9p6VI3OkAIY z7NV~x>|qp4*`Jer#3SfMYJ+6l-FZ#hz3R*|%!&3M_94yg=Z26)nE4#B&u99>=nIrK z>S_~v-TGsXm;OcQbT^Y-MD_aH1z^GBrjo$fpvX6}WEoDf@Bkr|aYaa0W9QksoB>_i z$sXP0acgG4VQZts^*`@XuxL|KCbEH0t{c7KwQ5Ly4t=4CJyCW5pUj-0Sgb89wkqOB z$N_4}rXTK?$u2GPxyxN$8WKT#5<#bXVjoURz>BkkD@c-NkFr6dM>zO_O8>&mD;fH^ zyOm6ge7+oAPhY0gew}X)R~Vd_k-0&Sxae2iiHfRtkaCmk+|em^vc+ssUXp21QQ5jJ zH9_8E3JQ#?cNSZE*yq7MQyu`I2&(vB?7j6@lwbG%uOmoFD+3ZkBRNVp(hW*?NQrcJ zcS|=23P^W1NK1(@bR!Kz4=^yF@pZrM_Z@HFYkmKK?=ROiYq1tH*FM+T=j^>7`*}oE z^NM&e=vUFITMsUT&yh+4cNNDICh$TJ_TyE}^43V()=PzXkN)erD9DU{*Og^wmn$^g za9QQ_BD3cw^xvJpg8&tV|8EVp?E6u$S6R74DRkqQgf%@ePXTxMG#u${TI^b||>uZ5lCS>!n*Bc5jq%4Pp)be=uPHp=2%8zK}L6#WoDIIjWnMhS-*SN<1iAv zJbq)KpSmJEszR7(?WpoD(>(>dts%C3xyW|toHBE+lQv3YD+S-^FBFHRxQPFAv>{D% zc|*a-y6$>WF>&b_Bs;DP+*UJ0jJ3UCd0>4zPn6;)^J;2p7*@)j-OOe1V%^A(s#8X~ zC*i|yBIg`-gFz&6!HFbtwt?pLF6yx!XOiNh4vE=i!nqao(Ze3;A-?6 z9;2RaK2v6YmM$~1-kvcI6!&-ixEm6Z@Yc(JYKs?4*|h;In&JIR?MDIZ&zD$!zL zq^GxYqkERV-(IBO3Te3t)9V6a6;l8gaM-U;667G`1}07a>EIls{UaGxnW;ONeqU@UX+M1Nb}E)e+Cs9N}w69ao*ETA!wYmm~(fUL!&x(Pi9>W8UEA>Mv1;}qBuHi8$-cFf`DCH_3`?+^)rj1a6VDfg zOLvCS%|C7s%1D~70ciUOai{X}avdbg7Rm`!9K2W%HfxfZQH(Gz2dUToid9-Z=1wc5NOjVsg`5o#$c~AhX|U3Y0YC(A&-ZhSJOq! zycA9p0V1bgEK%;QDvx=vVB%NlsBo%OeAo}bJ^#$O^rV1|v^3!|%~>2$4u=ezBGSGY z%6nUji65v{g0VEbOkWmxBIZ)2O8g-=lGKoMR(gcteDXA}g&S=aDHwo9FeQe5JqNnS z4(L@p=fuMQjk=(GQUmSpy)sat<)?0Wtw&hzi$5{&{LC;4Z@SvHJbJ1QBCXmI-N0!^ zV^0NgO^dm4k%$I^K4c0gPQOuN7a}jK@AXE#tS5E-8d;aQe(pj{Bh*VIl8Cnx6qObL z7O;QVl-U`+SKB5%Sb)?>J+w+L?sOcgDirIG$e?SzZI6}6>4>Gkz^bk=WfHQT@H|)&c%;;<`)}<`k zWsz>H0aozBKYU6TFxTX*QpQYS^2$u&MopKcpTGR`x>+O(rdZ?~5at}uk->r~zFvrX z{b&lK0=t7oq96X7>G#h%ubp`^VEWTtE#!5c10T?@wL$mSVfU&^owS(vm+ab33e~@! z+dTCSufKp=)+9tM*69uZ)WZt#nmRUuFt3upON>-6!TFVtJNro;^FQzq3yecd8kT0Kd9#E#5bdWGik&XA*%_7&7x zdIHx!e#f_O6GWxbqiO%k%f0%LGBeluPJ(om_&-O+4$udL#+_H2u9V;C!F(!3_*s#4 zJ?Z;Kq>2c8vf!BXDuV(|PnHx4@UCV(*TRa%B?iq=QKsS825Ejw7Ib{2zzC}ZWRkZ| zyg!J|@ab%VL}>j?#=eR^&{&bR9Ns6H+G@nQY2gdgOyD_nDh+xe!Re-WG4mR){1i;x zb}&in>uXe8{=FDX^=4J2iQGKT*L&=}&5;)mDPQ%6xJ^`n)KrqkrRW?!s#JY_dH|Y3 zfWem+Zxi*)_*C|rJH#)N_7xPCQk)8sN(}8=Z(C!(3;JZsPRG64z3h?xDt{p_R^W{^ zs%>{zf}Z29eEs;U9%e-*!JDtS?YS1;VLf6`OU#fa6?EdmI(GAk#{-c10Gcm@`lFPl zG_mBER9rP{uiV;6x1O9_NLqtvn&%s4T|bU0H~0oJI-vivO!}7+!~kDFJ{GJJn|^j@ z!f&f^a)?#$7J{W+*^3T$-t+gs%nlGqE1V#yRmkJu733WS+!tvxarEh3*fC*E)B&!$NWN28 zS!2^9iQ;)q{m7WF+?F2eMNE|0!rJ_>IflJ^u?VB3$yxpK%snYvpFGU@-xVE#~~#Amvo z&3?L4U>{;SbI;#(L1~5dJERliE6p;b-?NGHLstEuL9_an+&5o6{H_!SP@DAAF)q%` zL=0X-IG?#nwfyph*k3_#pP#^|l^L<_|4z95GZ*(1P)oUbRsB{t%-e7LR%?6&c&a$p z2?nqK&u;9i2mXSl!QCs;jVK5c)-2P4%sTfO8LW3o2u&CWEz&8wY(n;9Cgw(zJuBMKg0xA0KROyPxpUCrE*J?YT49td%hv$|4nefa*zav8WWP> z2u6?UTGLY85Y6tvMpeFAPfH5^%+}w8bmVlqLw#Sv(xcW4>TXUPKhQu+KW7&*HRYnK zk~d*!zE$k1imsq|x6OyggeC3{bXf&oQ#QgGrWe({iHq|-- zOJDYYpW1i&PUpb8CrP_r-U>c+-_BfK^o3Nf9;)UGMdEJ%uK9}L7;^&9%plg2@0 ze&BRy?F95W-Vj2A=9gA3Y?G$6S7U4U;6R&SD^H{Z{Vo&hgRFg#A15F+IVtA;-O;H*DW^A_!;laUv6O3G8*=@7M?r0B>jy-{${toUZ zqrfwqW^~w(D_uqbbUp8S;M|ReF0kWoqT(OwG4_J^XCjw^LSll$TH(&a9{C<;4L;A=geL@e5bkyKoewC0_f*TJAA`|WOT?P2-iNqP z(HWVpW4HJ`FPkbuzpSui2WMnPlbkG~sQ8Hmdwl!ASy7qtb=qL%Y{X?AaUQ}ee(}p= zDcdojE{K=CmiJ=g^XJlfFiTHa{Xj9h9#B3#z?GW>V*PD~p8p)kWBTkXZF6`5(;`k_ zl`0a(xNSzl7|^sd-CNF6u5bL~RY*kkgIgyg{w+9Hy5=I$229a+c90tE9)fh!2`l1^ zY*TZ>F#zCjU-;Xu_%|Xo?Y#R_z##e(i~Kh5LWSAJDE32M!6lm9`DhJwT~d=Bb@0BDMt3XVuG=UU!33iT0Hd zux=E%OBsTz@zC*j*Ci5(&UP zO9VQ1`rPtOdGGMBqp02h7?v!UfB1@MkPbK3$32}0C<9AVclV-xX=gYAr@ zj7i}5A{8p|9GW{bcXlL`f@HJ!p5LwD5V8epQgMTS2=-&pg({ck!-KIa z&Y!$edgf4nRs}6?oA3<5pZnl$hdklbND!Vm1v!0t#r^Q@U=1y9GhUve$VQ)}cG+}V zjejEE`W!`n^JcyefgO;gIhV4H$%AQ%@^5G%zFD{@dEnJQnFX=nVv2W-85EkY%qFI_MJ_LGNOy*R~V zUz-(~uq-hTRhUavZ&~W>*xOk!-*i&CrZ&eq=lJ3Pekzx=zwk*h?fjxSBJDM~0TcT8 z+s;J+QMvq>7gH4^x63ullEOa7;Q1NS{go?Uwjr(q@7;aX+=TVr)&l4aT_@j+d!yQK}k#3V8XeZbk@-SDL4NWWbq3BZWUa)eew?| zVa?dwy0RJqqpk;oG#WdQ1i`}OVv1aQhT(UOOtGT=ztk)=QM}DaDcZu?_g>!I*F$u* zGr;dlF)nA?k>tte&(d?>z6EcjkSvWN6Cp)*M>J58@gD|f8_Hy+kG#+C_kH$K6mXTi z_G^Un_|Xl97cU(ggk;K}dK>KiCJ@H?paLPgPKy*w&#pd*Obxy_OCRwv_O%7GaSNcI z9H>^k_{=?x=CU9od;ef@=FP?nTc&FWciqeVRj)^Ofn1P~Q87lp>ItM=g|uBM_~F5I zadk{X|3ZYS7d!haa=O-eN1DUz+2GO-uosRagLbOc*NOk23D&_p-}CEZ>g&jV){IKs zwan*_fn&tfS?1Ti*Vfi|SC6Vm>yV?eI*g)_a=e}`jo69G*}JoQ2AV!RiO;h3`z4U`W{mPKO2g*3y@uE6p3Y4@>B`_zNt@?*`wnvSA-f7 znTnE@v`f99=Jlj(Sm|(REBLE*0Uefd4Sk#w-bdPx1$o_~&*jYB;r|ro(8)Kz$+5(t z@Qo*^3ume!DcN*Ld4@N@(G3s`yTMf*f1QF<;CYdpu59Odmic}NLvpamzeZ8|<2nTV zR{`=tqnDXv3OfT^kvelqJj3Jx9{JI_kE$76L4s_F-i4BmwoFhu&g+oEyrdI*&}2U5 za_XsTji;HYP0Pe)k$~RGq3{wHR0cU42e0HQ==faQzAS9BI1DB8h@N?X;`4ul3Xy?Y z!wpt*?x@c`a6gh=(C?VA^c_D?Iz7s8+dE6G%zq|)vxiJ&(05W^Bo;-c{l|{sWg`X( z9#o_k6^@vc{GhmDSOqJpGmY0SBl=yy$Nu~Wkp;QM>P;6;!OOs$=rI&P#~2FQfBeUP z>_qyL^TJ&YAWTT36Q682^d5(7<{qGs`)6 zne{XBs~Qh_XbFb*eal15jWu!A0~vT75Lb`@9s#IYhx;;<9oi1!eza zTk@R@y_ATou$ZzbvRGXgOf*IMzOSwE?R(=iHeLtTcCY()ubO-X1@FDMmcQjjyKmWj zt|jsf7j|Cfhq#Yp8;J6pdG7gnOx~B6A!KuPP0jPe(nEv(maU)QRkr$Dx871lU50u| z8O;~;8CKg_v~qfvmqR<*^;0^)m0t)qXV^W_1pU)o{8z>!b1=b><*d8H>)~&1#cD`;O{cM(yto;-Lx~mA_I#L>D`JGl5H7E&13j<)nY# z{C@1Vy{y|PtaP`pHht)q?Ny>p7dm9IEmUgUS049BBH@kq4UrZZeJzdfA-c8J5+={d z9(@h;{E#`$JwmpNp5|o(p$1s*;a9-NL87(GWGCH?%xDTTX>>e5@B^yX|8;wh{(=xT zP7Y&PO#CEfaN;l!N$qLyKS~ac0Z1!?EJXMH>n7$1YdKumG@!Rg+gYewGY~X*uhe0RTdA>VO1|lmL{&DKP5;k2!E7NlFWaPzA&# zh_h=3>!$Fy#irFaDHJ!n`Sk~D;Q^em0}AnA-}1NK2t9#r4`d%X=AE_vu(3be zv2!^vRnhDCrM#_=nz`)F!Sd=25z74tve2{TNE`11(ZS_h|5kPn@j%{9dD7La=24mX z$&^9Hx>up@x7QCoU%t@k$}JDs)MVq!XX(yX8C$-^hfQvk+h;d~huBP1KOTq^5xuPN z;wm+)H8|V_cw3Cl{W^@!MhyT-0{j;A7@z}23rmeXBGx_>V~B58tNWl#54c6ynm7^5 zz9RlbVKb+@%-SAZYX2Z36?7E!)q!#?W~yh}B!`$k9wiF;!~eQ<1-w>8hu12>D7+Ea zc7(`-{rGU531G}|2$VJ#UsQvv!7ebvRg^P)eS^U!#0A;zePS+rD~&)ER`Z-Cid$h3 zI?9Aj$R1b4pYB9ZG_<>tc-sKZxX@vZpesJuxBb-KlQQ&95P}ZLV3hv4+@z6NU134@ z&N+GnosM{vpVbH&pDOncu?7qBTw=MSPvuQf!q5p|F8b?Lh|uviZy`amq!niXh_w?e zJz^JA8~lQHD%T%)tcSH9FQ1DE0F}_ZMvjT}2O}TV()N$5(mBpUpBK2a6jj z1g$$x$npf7U+JUEpa|&KfgrTyZ5aJ@4H<`v#{X85X;d{@k9|yS(8Bl08tC=NtlB5Q^Ku* z;#1OiZ_PBMcl1!JNGel6?W(I`K;@&SHS?wi`N>({jM;Y2?R!0>7d z0UOzPfYxtpcAy$ww5ZgE`N6%UF;}kDNT@;hai_0Y&wQn+H<^;>E!tX5GWO*!^b!cu z`Uz*ro#^=jkC^jltI8JfkmZZA7*JEK;!fpb3t$PaU#bmoIKD;1q6e&m%8sgyHT0met&4&}VCB=cMEjv&-S- z%33%0!(5U9F0h?N6Gnk+bX;8R$%*J?O!wKWK+HyMD}qOt<_P>w7gw=Lu7H~ScGky_ zeI0>6?$;J0q%AyHGF{?|JU^TLc;i8<-<4slTe~SmW3^#STupBnE}BS*z+4d``1;B2 zKnklD{0A^Q?xYIQXgI^+Y3(F$v1zYGD)g;tMeF+ z%1oM{O2I6f8ibVk+C&(P-^{UzEe-xt3xMOq$zoSnqE%}s{fml`10gtWdnP8Y>FnNCbZ5v{NTHbwCOTO{D zck=nX0@-=lJm`zF0sm<4e1gySIcL$nsSU4<9d+BHQe_SzsY>-t@;#1$@aG#O?}AV| zX!Z%@r9KR7yVxAN#+I(x8&loHi@Ueb{qM!#_vja5KTPugATk5nwrM+}xy+*~<%fwTZnes)<=W9r5E`D~m*s2Lhr zT}@VOVs<>Q{MD9LLy>$BM-Mw2QDcv%0CnK&IEEH&?p%v&J!C2vBSyg$f0yieu^^a$ zb=v5pDCwBMECc18u5^N#CwrN|T=9@K*e#8Y?o^mSxoVkgcrMlWP{mz({0-sriiZJl zNxrFXMf`b37BnP7wa^Auc<1?5pXanMWm7*9Au$pXr%1AX#a#ca>b+OO#R>nf8@xnU z)^>8j_7e7hN;jbORB+u30_9h3JeXk?&`Yc-mS<$ZA1u?^=DW@+MrwY>Z{Jp`_o*G? zs_-jXRIQlTp#I#qT@Z_HjVngiF}|ClNa;WMjCQL{ZN6toD!)dY*lm9(b5(VpuPP$G zQy=-Ypsf6!e5t+c&0vk`;`35o16w@>fJo0gp?+Brc;qxha6kDxw5T>N$k-kO5~ubl zkMoaPrr_5ccxev-2*;G=E40fW0V}nKUMdIAhi-BRVJpi5rnOy&jb-F{eT?XE*UQ_8 zw+(%?JI!?W6GR%^vSu4?mFMD1?+k0ZAQ;|C>t`GKek~D8ew5?=LM$h^WNped|M-K| zzy!nGU4g!JPn_hv9vyVVV#n4?*Nfp@(vD3WAB^VvYf{pzwQfAWuufVe8u40bKb0mQcmGx<(X#Ql zxuFhT$ev^-qek?zTQ&EKIu{Pm1TSs-Ag=}s^CEzZ}fqsLL=o->i2 zHC!RMc(?WCX2>v!6{m1@6y1Kq?4`3doj|ujnwPv#O)1cn`eb0DuwxHLc)V9ulW%9Y&V?y&Vy@= zxsX`jJL?nD=f-vfSHI?*}Pw9~O=AgKQ*G7UG?1d3{7DJ$V!PU}iEFg$a0lz^h$5Ny32lA8xZY>U^E%zF>tuyUmVNMYn6%vF_7}2I$!U(5ypm9wr9%* zC>44qlaf;L#~mDcz^=q#()MokYhr=c(YvBwX)P3xs!U2dwZ0Cj`Vvp zVNzta&dvmW)(6^`iEB8d@pc3-xc8wIpK>by#s+GGhjN&$2RQz!kn7&X%WcN3m_rl8 zyN;QB4_qbYC&IjWt5wolg*nYKKG`xi=BQLe!4YaprVyn#MJLx@JHlijsgpi|RdeN^ zRKX0+JaMFA5o1Yl)XCA%Qf`%v-QU)d4s@~bv|r0#nex;vO;O9ql&Bppl}s8!v2W>| zED4b4pMg<}+NRoGpFK+E{s=ui4~X;lMVoIx54|M_HS6dFwKIlF;?SoZ-V&UL*xrm* zhNP#5ow1xc8%?R!9tRI_Xx;MB;W({mHJ&db&9BZmeQzYceb5+v;g*@Qa|sqw>r0x# zXfMtyb<{I!PvJQ6v8i`JxjM8bnOb;x_U2SYM4n-O|7ah-)Fj~ex6KE6XrIRaDG2e$ zd(RHwP+B!)$Fp#2uStJ~6Z<|Bsf{#ydKM5L=6t$L3+?+=FS92P$@MwZRtBsrHZ|~{ zJYR5G#lLJ$od}7Y{X(R_(dJCLpk7>Gd`K&x$68|{MPZh^ojExl4j-?vC~@I#%&tZ0 z(7g@yWOZYl{L-r)EpYQQL`EWB0T0rGBiH7M$(Bs=LWEJ@NUZ&cKH7#w)t)eF^eg~m z(kumUSNQ6bFuz}l!Ws>JEuqzz+LmJk!K_1pw>wmvR^ zS4)y9$?zX#+U8q5jZ5k6F}&BK%$WKSK3M(o$Hw? zazvBXb$4B~yqu8=^?wD*e@D+Wt3~vUH@ncp1g6r~u&UdRLr{`L$ola1x z6jGkM)l}^YSmk?0y-TD?%c`#EhcNxf7m&-WLxU4Sd3Nl?VNGMZiV})jyB(RER0gdy z?#v!V@onzn|M-*Br=gYG^js}jC&0{Hr_52_9G3y3o?z_WK4PL&n!TBcslX{ghuwIe zXB_h;>gcE{9L_eU`~*zK1LBtD1fGP~q?tOGp9bQ0C6q>5QVpBF8&mwIc{7z#;3a5t z#sMA_*|7(Ee&YD3&}vL~ObeqEq#+lo_*D+19DXWs@L-=4Nc?e7p}9i_Jrcr)zsPv1`-0QNd@}A`T4Hxp|3dJ#dyRl!b#Pz=LU{8zKOKVUZ3V5;)HaU z$NQgP!SA*hW>cG)$=0N#8@fcgjwH*x1D7#UHuh_QG6}o$WC!?9)9Tz)DFq~ z#_1CvOH$8P%O~MAHOAD%j+mJ5yrLfnI9DlUBt4ui#Hi1`*KF4*3#=XojMtWLCI)_0 z;$Lc!IV3-Bu*^mGSTFMx*wKDHW@@hP0&p+(4JdE=Q z>En2Ri~68bRISuzFTU!6y|@%|K``T0h}{4C?*HIg>`-UA6&zb<|( z)T4C2-p^w*t!G=<$k1L*Z$|%Civb@|U1#M>GMGlH51~kHdJmt0h}Amdbij zzyG_riQ-*zhj7ZMxi%YQWFDJ&S*9(@%!!XxFmu0=Fr%34c%vR&M$MD6(!TW(GD|4#o9p=R-Ncfd_lxcBpWks z6<-#Bv6|nOXP@M9K@?1(F)XPuXs#tqTJ`>8jGqp3nzJBcU+?>NXYu=S~^JCOLd-T(Aa^?>oUt4faw-7hT1|@@{{} zzPqP`jum0CdRZD#ABUFA&YUdgo}^tMNVy1iJb`4xb`pK!fFY|g$Hr#cZ`an&6)qKla*_upRLQZQ^Q5+DkWt5Uf{V7IeZqxPb! znGzj7gbM>wxae+tiHT@hsiXWWl>0WBkUitLJjs@*x>SriOG@Y=O1>rbfuMAOq5vIT zJj)xG9}u*FIEhG##(olg;wDR_;_uDw5y3gTzJ+YuP1>bSglZhwi9gp-e1QoI%iof# z)2QoF-GWS+Tl+QfdQ{ZqtmHMrUL;}|=?d-D?fTa>SJ#rAEl*jvW(&51wB6IM`Nt;ubV6LAk}Kvjc=aKFke@?r3@Xn?=cXSI!JBG}wRXUQ(CKGZQ1u z%EPXqFIZj8y8LzD#U!H5s2Sx$YG)_3?^P9J6Wc^pE}5 zDkSkEEHv>a`A-J4Hj--fWab9gI;zWPu*XX&0>%OB1cjhtN^#5oBO_x@IY97Y>;f&+_Kc-+`aBT5I855yf|IOs7e%;x^Q_t)U^df_x5c!7GEy znn7Kir&|{XLp2J^`x>yySmEv#gZ7B_ap&p{%43n!Vb9Cb>c^Wx45tik)yijei-$NA zq*7O0pUbU1ng(%k*Mn{w#uvOJiM2oZtu?XwM)NHd>V~Lmv1J=obECaw`5~<(T>`N+ zwx!Ei&`ikvrSm13;^;jZWA;LFkmP0y4;O3gvgu;t=K5A01IKquZ#%Bn@dW}b%*Of^ z=<=86dG$@p4M(TvKT|65a@=nX-e-J?Ks!94mT&*Cpn)nD*IpS%^RB<|HJ?_=aFv{W3spJ0>F2DqSz0 z_f5-IdmF$&Zs?>Zf?>s_!6A^b|Pl zyUCU=_J0iJuBg#+EV;mJzGT#DFrkvaNt_VTukl>mvtOfAIJC=kBEEL_>5#uGLr)+0 zaUO$L*Ehz3t9u7}SJ-Yi%LH8mNc06VEn$k~Rve<`+m1~n5J8A1H*UW%Vv}Oljo64v z?Nji1Pl8EmH|aLWj{ZWp_7&@rFSqg+0n6?mp}PkBNr9l~dyH5Uk69fb*@4IMP39+^ zqTXwyZ6g_ydDGSST_Mk3#N8}sHG zm{s>g>2fNpDLSZ^SGMtWee_1JrMyp!S$9EgQCjQWpn-A=&7a&{+8uf@CDcv~fVc|$ zG869oZKF4e9XbS=8~TuLROw?$iGDX&r2;HfFr=4Jz&LfFIYM5o+xEZ zI5THXTrvXTX8Zw43^KM{}Ig@J;x`W!zk6& z?Ap*WrPd8b&VJN;&U|IbzfADol}|i?G%G-26=Hc)h2lMX?jrG7`tS7BRK#l+9_u-n zs=EhV!hKs>7_hA{@R(pqTZAd<&v7HN;v$0*-c>opVvGT++T9PAiu?1l`;TJHFW$et zfAzn=|Ib;pf7EWB$R1Kd_c`sg0K(Qc{P~kKe~u6S4io;m1@Of_z=yd!=Vf^a;`Sk* z+`<2|;s4!0U1ZY8QR2rYOYz6e?1+7T9{ztl_`jahD3<1v!fM>H8T3@tANB0lE*{A? z-N>)*eIjDx$L{R$`up?WnrEE&7Nf0ltc1=muP`~z9CCubZCRGyk{m1t0a-nj%x@(9 zgmH;TjBf~Ul+iiS0;+vl*QQlamEH?IQ!?=Oc49BkLl3Z&Gd zE0@f?%8VmuxLU*8fRO{cGZe$0ry>g%$eLTZbn4g24GJxaY?ASZOnaQIC3I%u7Nu<} zC3k}a&@Yqz^IltGV}?-#>29Bz(5YHPU^DWIJ#X-H#N{r2#hvk(w(w%v!&8op)A z>pQt?e-V?~J=7qlZVX9@nc#T&WT5jzEZonUjx*N)6o6f-yH+^xkUD}z(C1bz6Q%af z{HnqR8npS$3)-LK9o_%N5S|zq#amHP| zXfL;4*IfqCjEmq}=$$gY?=-{Cn)y^M{kT#5!=2k&hmD6no&0L_jG29ZOr*@W9hlpv+bX^d^QXp1J361jtOp)pwU?>ByvkTiE1V^6oAF|MkYE zsh}XUZTDd%&{5l@QPEXHe-z*EqN{PjPQ>$_U3HOzDEvjxtv$fx^ z(M)GmkA@t#w8N3OqlO6h7&_n3)dgB#@#=7WqSrc1W9Y3B)zwLi0k4->wStWn_z4_0 zlW8nwbTdg(>CQi9R!*|Ah_}I$6+7A0eVv?=#r@e|eS55r5%Y(P}?Y89F{+RsC1xu$cq4O*#5lSumOX7ArzRNFD zb`|)s3lR+nh|{=RxnGcd+58#|$dz~63MFbfXARZ+VM)e{K${Fvl8+GG2I6cGX74Zn z3;~un`bYEro5PA(uGT?%mK-dN)yy=|&m+2P{4p!Xfj=5Zi~PMwf^6JYFcDQ39=r&` zm7q$$gM+yk+Y8jDv-R55*ny?#ukEkjhAcjdI*c6!wb$P8>NG;_g+Cop11*9 z5jF%J&O8kF7a~flo!g-vRaXv=Tfc{(-0xIw_u_UMv(OSd*f1c)=J)y%U%p1^z)soi zC_b7)B?b8+3&d9$8AqBugS3OmBs9=o89$Ul@;Qvu#)=2ofH*PsI}G=evHB_s&7U6# zVHf)+J>on)+E&f!-YD#k_?iytQf`p>tNNk2hj+=9z3Dm)CidfPA@-&5VG9}FcpaR_ z&Q0=O6ahzY@T$r7VA3M-!JKM9qH;qy%60spKx|Fc@|>df*BD}O9;$ER-imdAMO4;k z1IRV5N%#5hiQk&Py=VK_So10Fkp$LoHSI|EB$r_;t0e-t~x<)Z?Ls_EKOMH_fG}jow zT6v)Pst0V_DVJI^`p3D!E820ZSh_l^ezFyAU!-;5mG8W%p*CL?Zbt{lygs?~mA_fI zljDsSBZSceRc+;=QQhrqd|ZjDm>7Q_Vpf#%aJ!ub6KLr9D$Az^s2|jE(fC(s9uUjX z2Lgp9F5inbS({<6>`pIL?RF?ud9^*u-xq#@)qr63F4`A$@2CS_9_a&8moK??nq1XK z!6;G&?tqzR-^MZ)yciEWPqz9yS3 z>9tYAYqmxEYbLEl_E5uDEI&Kmy`h29^|WDk2F@;KRZ?EsbdoCZBcgN)_`Sl`m`kw* zZiNxwftWX$VCV{-`2{h`I>G&{yC6YcN_ctf%jd_)VJE=rZ>qPRV*e!(1~^u zcWf@lEhNA&oVd@D@QKY!6J z{V6Y5*dw?T?lQ_gXq#7>YSIOpWt|8Q7A7v-MtVE%NNPS$bMr^0?j;a^w%P>E>;8Is zZejv&q1FO-q16q{OcZ6k(&4i{+vz955%&lU=cVsvM`x=3ovon8vpJh9G9wxqnsr`x zC}m=tco@#BGh%Y#ZynyE5#`gd_$l)S=36x`(J?Wv&Sd=Hcv1RBWWd-OQsI}w?=+L= zmVx0d29^tJV)7qLfBQWHn}*yvXY4&LyhaAP|e#XH7}hT z@^YWZ^T}Vv<~$UU_3j&Tt0!ra)Xx3t8R0TOE6B$^d$j)QSC)Ln?z^&2$!h)8u4&k~ zxV7(^F)(*O8mKEtbH~`pYv&n~w~JqF;9g<213gv8s?)*@=A0`+ec2^=?fqWTvRqhb z>1I3X`@Brbx-c%jQ!Dq~+mN@BeJ+F%UBt=}GJtZsa;P(wgCI7}2}x z2w{>gfZW6j_$=Iu7Aie32lOU@A?y(-Uap!UTW+VHnPP#4$%Allb=oClYJbMB0v!oE zoZb5N4!Ki9$hSn0TjazXO=G|@_YcE~ zHwmlU^E1uPJW|HZwE2@KWF*1svZ+NqnC+G+drGy={EXpKEhvqN?$O`0TfhS~Li*G~ z83{Gt{evW=0CM!a3#vlM@_%*3<=2ndgz`H~h4^Zb|xC?>Q#9a*cC^oZAZ@-Zk?DF<>FdPB~2(Z^vJMen52o4b}}*0 z`mi*!ElrV_xBgYPNXcH2MuM2%>Tcvr{-Xhr`5aRpzGbvqEw>u|#K~zi@gZ$s3O}y; z9?;yom`1K$n(D+kjw`!ySG&_1)iQ-k9+HBmU?euJSq%oC;o^i z1~dnBl~F+<3?m1RgQ_~|`1fH^QA6QoK_Gg)>_lKk<+yK8#60`sW zX-$_%Ld$DE9flwWwcYz_@&5rik?~f@w3TTwxW8a7i`e;`34if`h=@_ z@ppF|0KoO-4+8HwI?7&bYm=R95cjv7l~LM@C+K*41`zfA0+LASscIf>XsG)Xf#1qi=E^ z%l^;|m8tj;W9rk*dAqx^23(#FSSl+^&Kd@ili1qaVoz%SjY>$MJx#7AgvCs0M=3SU zW;ptiaIswM!1iT>?#8M$jak32%1;IyX@TX;5|M#Zq4Fs&gNfMlENHWNE&s+7KYx^ zYSX-$S%QqS$i3B9a{(AqJ1rzwzoz~fBs(=Lr#_-goiIOjcS+4ebiEjgMLv_8%=0>| zijyZd6^rQPn11EEmhpJX6BpnM!N}d?1|m?)sV%`cO~g2*JpB=M7>~YTk!Ac!@tPXc zxtz9u105cF#KN5Nag$=K_DfY=pQOLqauLf#zU&riLajkgeJ=J@ddkHN1V{U%AW(Ks zmt9hTPX7N9_m)v{wadC_a0o6zgS%UTLk9>>kOa5JC3tXc2o3=P1lN$@?(XgccNz#D zELbDmeLCN__S);*{oOOhxqt4@?$Kk;x8GT_-l}?@dMbb!dX+dZ+SS>KQ;p|FIIy)h z%&AMb@Iq8B4vF`1p-O)z26)lCb4Vjgxv0&uePW>-&=OLx6O+8x>l}KG_qDC-t)`pc zurV&_4=7NYi>675r$Hl}k|G{m6jFVGvVQdt`7I)5$E`Sj5U>laE_ukXs6 zx5L$Ir;635s`z8O4=4mLW0iO+w3!%2-dG#@EJayxN_-5=Fvg~_^>Di9_DXV|m_bts zzYi_1Yo}kZYXrS!ozLc)bfhq9C_H<@*QkS~YDo zIm_v$j+QAI<%fQYG-huq+Y{4Y&otO0d7p_{0q>OW51EV90}_m6(PqjDM-G|Wa`|$v z`!-gxE(YRN$&0YOTZcXmdL&0d+`Hh~)24^t11)c+#P*$5_unjR;K7EB#rMp)=#e+^ zaMu5!NQ9`G@!4ZOV&uqo-S%1Z#;V~6*S|DAda=@f(*yrq6IIcNfe>VE!_Kbl3!D5l z^%*;xv92l)f2-3;nrDm@LVeIjjmwsK!@5R=%5tt5+M3DGSfkp5AGVtIbB2SHFdh~q zz<$PqA9KD%BW=`n=|I|_h!YnZd7MnwhE~g~Jg2gItG~QbE<|MII4C3iefC2blcI2> z%4zh^H%_|~&J`cR{3s%8{B0$*5psvDOUVtkMC#ud6B6YPE~S=6ydJ0p$ix}S6+CaM zzUP|E+|7}-NNh!Jasm|6vL+kOLZ)h|_0ijKHRRt7lI6~fG^;Y^kP^lN15gimduH_0 z?A?@@dKq#sfRVA)PCjcXu9|aX{3!&%XYVN3DgU8_iZi|a;aR;PGFBIq-SaiCodIq9zb=|%_Rip~_HR(eJ& zS{f{86~~yzzfLVCmf-52IXO@}!!^=z!G-CET8RxqIJDcnt%9e0WUX>M^9@Wo42k9K z--txHDQ_Yhx)qKsYNYvy2Jo7eWMBkjI&GOi&84XOFNb(TR|(EvtP1Qe*R*s4o%B!3 zu;1^Jsj4*)Rm8r#GnWVDc9u9Zm9~*Z=Z$3r*8FgG1a6%U(5c`bA2qYoPc<*mj!&dp zlzfCAaa=RPmxbdF>jD|RRqw;lK z4Im6i!}O=nZ)N$Pg-zHXoaXu|N#x zMIDU#3+Gwo4i@XpNLD4&75Y(boWGR$r-=CNceGEt*5YIRI-)T@pm7(vRgPP34*~U) zXPzAYh2(n`;<=U!yiYJPKxSr8`an&n#K($nLcv#25?}qsK}BDB61lbc!Ya*>$Cf8m zb8a<-x!JFv zCz@!(V@M3cK_eKs@Bx@U{!+ZlD<<;NS0G3dKI+_+4ZqSRl3z5WYT@;W_3 zsgx9=Aq4~Nrrri8;1B#EdYLg?i15txbvv_rwfl^SND^wN1^;v@?%yTv|14+zshvK@ z#Z<))?z*L0y{%zERo!YwX`NHj@e|hgsx@E^=I_9I@nfM=;uJrM>cddfnV&>~u z)hE}t1uuZ>7pG5BnqI!QK)iK4(pd>ysSN%#PpBgy_hmnm#IT}0l!V+BwvwjbG0{|@ zJvA)^dDRgGU?n-^C?j``zjbWA_RdVDqJ2kxDDl~j46^)KuHtHxnuzZVRl#-sxUQ;8 zF&rsCmsrn@ii^$ZW_q%g{OL;faFOhbH^qh1kace}wBmdfr~)ihQd9c*Dpkk`lFF2T z=eSkW)Ypjs;Tf&upzhfFbpUX!^2(z!az0If?o^AB=dVXZS!q4-0sF$RYo!H^3iy8C z0+b(F^nGd)rZK9&lP3{4wwtjd4y>+d0<#otElSUh#Pm(NYD~6mYmoU68_x5p{NBr_ zIo+k_CLSG_dHD~XBD7mGsJos3(szKrZBd42iy){WDo#}$rl=Jc*E__UqH}583c_OI ziJrn@Z)&;~kU{===8WfW?EUudas@nus&_-B2qA(q9vpbR6HM=oPzeOM)hgxWz_n&u zRSBJnIycw&bx-$P(_J;u9D6$R>+l@1#nAx_jXyD zcTARRadGI6wA`+*e%qmi)W$$Or>xW*T?)?hUxkd|{z#cVe1T zgod=1Vj&niR&!s9`ptBzOw-+bT&IYn7FR71&49VmI8|eK9@RgUaDzpox~~Wzwlw<@ z-SD-pPxlPx3UI!{mdOO}bGL`jUv~SsXdW&tG7Pi-PD!WZ@%@?3TY!%;zA~R7YTG7l zT^$CS_c@5TqwrhW_r#b;`;1UqpXk@QYWE9bO)6CB8ED@O(WPG;A2vUb8cN~aa#|~o z9d+sW_%_F?$}o%|UM9KEp6NQLYRFHqCsa@q-$+TfzfA2GUM<(r_x1kba~GLPrqw*< zu?b3KuFe55BGYy(UlkP$;CdN0myhF`Dc^nR$o?_$siU&_9QH{JP!FY1YcP#W@D@w|F~ zKNejEV<~b@T1Yit>L9U=A%y(yWFoQw0;_-#1}nI#rbI_uM``zdt@ZN#xSt=eZYDzugY+K|fqjWhgOnAzCxJ zzHF>)@*h`N)7db2CfG+nTgM|7_|ktm^CDKTsX5+Xz)F@pcb!)nf~XOXdL$v9l-Sk z^Jf>D1eC3k0^XHQsUHutf!Q;&5kTpK7{i7^X8ZD2#+MDtVLa9ETi=4JtnHlRYJQ8Z zkPcOe6v_jYQ3A>ZHwGC77Zt5rPHWb_NwfVU3}&iE$LEabRB`x`FXz&Ws6y8a(O_Th zPeu4#?%83$5aY)o9d|Y+w*aj$XHN?@kS9ZTwAWO`1yOgY`g4@AP0NA(!|@l_m3M+L zGN#I$-kd=kw>_)yvAayOoPGYFRFi&IRwS*MCsjZ(d^MjC8&$&QhbSfQW-@RyKe{+9 z2IE-7sJ#n$AHo6JTc_9i14qq2>gBQnXRN1MV7z0N=Sx|ndPPwIlDHW35D`J zsh;PG-87$mh*8m=>$AaX^?K7}14vf_tEtB^+PMg6II7fIt^dUwiC_P|7;?xIu5?4g zGY&tM>YrD2HS17J$?(IRh~K@;)zzO+_7kmKGP*(o1#Tn1aTF=&xbYM}^+U%no1RuwaBEa@1-(;~L{pQ1 zVUj|Ib+r;d{}b|MWdhW6bgFqDm4a`OHWNqdfWgXd3iS z-u2%r0V~S9O79ltG&3m4w4vbvil6P;{B98J@;w}H-dpCRwYisfo!I}~qSN^y%XiUi zc5y5-hY)!-I7kWXmolFc3R7?j7Cafe%h6>2$DRETy!0dEE7U;h@m`{H#AOI$X%LtB z_{zf)pCo5O`m|)T@BEyzx=T;K>%=+Sb~R!P$~na}_F!j+#u55YkL+I;2HVR0L6*5` z|L>4x#7eT!@l?7a-T)O|_`d$9!omL@@bL{1(jj-Lp+qo)`wFWVDJ2>HXY~Ca|Mf4x zIBf@$AQ)H_-1p!A_#eTu|NL^?^)KMR`~MR7A4P>hOwf60QT6zobMO*eO==xz+MR+4 zt%F#Jmm4bIWZ6rm_DwYJwJZo$xm589((a2Y8s#*$=JuRQdjH7Zw=4u+?O&QE5EcTy z!WD#(Evg^F=-IyJbBUk45V^oyh^;}qQq@g3*aoRR=_=}3FDHZ=orT*CO1rTtih4(4 z;+<>P>WZKlMy{i$Y_g{BAAV?}vuJza(QAZBhJ*yYW8@Nrs*1EMzZ=J4c-d$pjB^pq zJsqa!JtLsEawY1H&Z#Izj2ujeps+~tkqCYc+K|n_7Ta1jl86sqJLoXIH}q-z%{v=E z_d`ElAQ%_><>w9Cb04UhefVgM?|-_(vu=LVyzfPBlk zMZI%aN+zo~*?Qy_4Gz82ZiENH`?s{=6#xvjE*e>vuiLmbQz0*NrO;?%2HnurR9-3bttFqS_j<0J%9MWr!rn6N%;u%P;rKf< z$g%!h;1;Kf=<^OtRabzRZ*W1zlqc$-XYWxM=ar~Lj2mQhnO|@rA^>0Fs({M$#F)ac zo;_XGk$D=I-X)ZgkM-e!Fs_9lenS?O^IQi2+2; z_`K_23Je!@W^Q-8OJ{ggwB1-9>3WVeOie9-@L*7U?XApp%tQnQ?+MmpT1Yo-z#d;c zDA+D?^#3n(eE?(;Vz?DPyNN+%uZ=fyMwGbO8%PbpDet3&O9T>OJsQTDB7+vg5y&cm%`Wmm;P6lBj#&=XCB9#a>L5Xx@*mB7o!w+{K)C__)5F2%?nxz|_Nx zQMWbT&F%6mSI?$woEQ{mF0JPR=Sv4k`ieBNMT$wZ(2JkB>t|>w2+2%^|4n}YvE8bI ziVCi-Z|Kj-I_;&_NHg)ZACEi_^_|GX5Cz?M8kEiUjoNPbVG#@ctaCjc>xS+`gx^_O zm0z(m=bbn}1dDguLaiQzpgK3DqXr^jJx;M9;_7+C6yogAcKz>*$WNr&KFDGl-IFpV zx>G8Q!KK~5&b~FDz6P~%?VUaq&z6##90)5lpz9^M5$5QO)4Yk1UKoy5M zGWxqp8q|qaEZY2tN8%5DozT50WQh65zvOvaagJ}88*vG^kc8Y1O*$2Oe2|RMn`*uJ zQdbP6)X8EPw?jofY`~5JLx+>m&_ZSCj2^-`GKdysO(!RiX7E?_$Z!grNPzVVA;CG+ z*_h8gc4o4U&+3$%L%JfKd)!kLi-zn_u=%kIG=!iImbYiwpP~H=_&;In!|WGd=q7>? zTb{M*x`?!=ugs!BCNl=xd$fd0)@B)Wn3y{V^r{avsjGV~3%K8d9Vkr3lO8D!Aa;^kJvCLbx$ zr{+dt9#sG9Z6$I#pTFzGH6#8!7{|urH|6 zxy;3?xK(ydg)XQ9(-pD<)oAO3mGeC@Q5OlxeJVT15F!MDlGe}#+J6fWtk6B}=vy_t z#-ZA#<$fF^EQZv{eBUF0=rRO@vgO*vvHb4>H<-Esfk8>DkIpphwCiI=7dj{M_z6a9 z-h>c%9h4lhU0}OR6V%;x)y7>t$R?XIz@gnW+Fy2_L{>hH@2K}A)lJ2Z>$vh(z4xqK z;XI6+`@D;3QGAAx8>Y*T$mfN$3Zd4P`;ybG+d7f?v{#N3HzAYubr=|scR0rnu zr&o^|2mu8b4ghM|&7=5Qz|>zF0KeAT{;dHZ=43Qzx}Sn!+6Rr7Aq7b5BOkZ}YAK~W z+{DZEeKPc;Zz%$Mt~rU*VlITG5GDZ)aamTb8lX~v?eO*d3r;@F|9sGjPI{3n|JcU`UT2&ApkFwB zQe<^5+tpY?_YTVV`H@An(+F)W;>3z{B9jX78FsH z?hh0;$U-CM+%@E!r=N_%y`u@^y#6&s$ELXIkB68PAzWZ^(Xdf)m}ITbWgq z`g!&S-~+IBhO+UFo!W7fSA~222UKpcJh4Ke|20s|#5wdJ!>eanUHH}FH+{B~fk5}c zJC})lCk0_Un*}@C23XO@vEiJ3ur2`3dKI~lR*{mv@=bFO^wn9tfx#v zcRa8Xi{f;1n9jlHKw1%SFY=Qg&TLcPTl;P*=yHQFEQYs(e6sOGaU~Q+R@`2FGV~QI zKiAI`JB}CSTwWw#1oL~>ZE^U>k$M2`Y4bMjc}N%hsk?pB_e)MY>Sl&z_BE;MXHJm z1&@WfPo_V)j*u+DMInzxO}SEC!md)kXE&j`V>E)rfzfkFL(&O&ydNL&G*0m4ectcr zPu~(~Lmhe_d3ILL#n$}G=4fA}f836W>Tf3bPFvC#f@AcmLnrYauR7Kg!ETfR`XPux z^Oe!-)*v!@=-wV~7wG1{v;h2qUxUBtBJD5U{FgEXZgs|~*Ry>??%ALdnmCZ=ELp>a zSYDjw)gE27#Sq@jUS}pcT%^mL0T2B(h|zb}G#Gf#O&^B?K)h}D z>)z!YwX3J1-SYDC{jTR=X%^ZDJZkejelh>ZfV+=GhGo=@Tn!!LqgKb=xXfuj-vNP< z13Y|j*b2+IwB%MbWuw26qp*ZDDQ$o~)#NnCJY01}x7vCI`Lu}2k-<_c_MOis$=b5f zQf+8jR+eSXP%sA~0NruO_A!#|xuKRC$DQx2}xB7BnX1a>^+tFYQ%ogZaEu zYH>PF-tW4<=yh#Q-4Y@ln8PJ=W-8fLIfIy-{IKK1xWt?dti|lCjL<96 zuTo4Lc`1~X`a$Wd!igk`b+soC{?(l07y9AgEW$sg?#FhemRGt) z?GR`I3ThV1aQyTz>f(8jf`q^6-0QD7Yi4o^?`rCo#cyWl-J0&kX?*3Ujy5O6p8S-_z&xJkYWv4hr5by|aNO z&CK`Cx|wLciO5$2iibW=#aYMme47scb)s8Foi_rN)axi;QobKaD*F^7UlR<%P(*|i zfV5q-z_Tr^j_ZmWzeq3ts+*>%%&k4IZ_zOIuX~0Auso&xSanAU{)D+x6Os33m4QEv z<8*!f#K{Rt4;m7)+9l*9lE-F`$(!MJ`K9pFMFce#q}E0DMXz+i`^?RSl2Ru5<8|QC zg~Xh{c=ltAGC)Afa%BU6Qp_ZGE&rr2yPLO^7?M@KKeV^W7z_}b>;xxu!y_J8m+IO$ zxVn;PwO!jGrLXsBOBoKG2q8@{H@VNZS!tWMRBD67!Dking0uz*CI{gD+lg_x##~8L zZA>?BP3I||q{$5Q+Y4Ln-^MJW%Y(H7ZR>1|tVqwJ>fC{GR(`FhuF)*lTs!6i5&CZ# z&KNHceJH#7oxFW31?O=z@dKgxa*3CzC4b3A)VD}2WY1v{^S;$)IrqrO@AW0N?r>%J zR3xFaD^IYLOD5NmA0_p`IAqM9$u~^hzc!eurT0~M;_bR!iW)0g+~fciXWP@`shetd zmOfu!0WLzpku0Hsx=N$Q@(BDv5@vj!UaJ~6-&cBm!x+K*c#jp6JdgP1sxTPBLb0bUbXM+ zsd$aCQKLyk{h==?YT#D2XulNJ8wc>b)@82%UxYV`Ot9j_m(?zCt zDeO&fWyIS5z}m0Bannj=-l_fGs|~3D1Y_=h47$%3GT~&WWPTd;|AqX5U*h-X4Nq6- zMQZG%dmQfWTS`Kb(ql)1`c(b%>h$0TX@Ml*69(#Xx;I3-?L2~2 zA+sw33{?sK%Ays!5d~30j_m2lie77Z1KJm(8Y$P7>-}BD7KX}oDZftYhZ_|A#9o9K z(#dodzh2QAE!X1MA`>I+;Tq1hMF!fxhidCJNh8lQq-V2Zv+t;&lo!oCpR~R2Fn{o| z*<;jVNHii9Y_z!q^S|7K`c9>saY*S>0xun5{>`g)Zze7~QaKRtPstaJG1hz^}fekYY$xXe~y1`c~ z38W{w&}&8|AYHfjLT+QH=}~on=v!;MC?=2NJQa;xB)N-g#qZx18Q(4HHd3=5g6-jwZt$jTU3!{c%l3;f_Ap?Dk1Xd&=BJ}K^ep~7570y$sd*9R*1x7>F zXULj54N-%R*JYH+EKO<-ZG!G>Syt(Xo4=PQion?>Kp(`}CKaUb+kByOSMPkDzm^{G z6M}V~L&ab93TlA(g0KKNcmDVZlnkE(SN6{7F59&7HdV03z?T)~AeWInVs)hjy30Z% zqtBii3-(r`&n~oh)GOfZI}F01zpst_c&qoEosntDw9$slg!!-pH#uV4maMmpC7!^E zbb!6_i=(6RSSSpCs2Fd=2bWQF4@n{X?&+6p>pQ>Ha!DZ#nEq-rh^|i&1Mwl|4_$=8 zo2PV;FobT&hX|tsRIR?f*Sz?<(_)hhX)nu=)E34RmE{KOZ6)DS2tUvSe(S9wgg=SW=K6vl2aEOw^EL17BN~4eF zZ4!mWw9?Zm_GV0}9(?x8PSxFS?||C&O&q^;u{AM*g}=zZ@RRDqJ<;kzr;fy8yn|?l zyW{-qDTiXTxv?^@3v6{tndY&y*EcjdK>Rorb3OPIOb%<&waBCMF)Y%Uwi$In7ynUi zu#osIv=?StckFVWv8eLn)4k7#jlSI&qOayY*97}+V7P3}*JIbx7t0ugd)XPM(DI_2 zXi!)9+Fb%s{Xjimj%NzE*rY9QM-rP(nS<%_=wYWjQP&S$gIHsi*G^I~bkDL=4d8Y9 zm#7?5iM^l)_9KLuu}tQV3%POCuZ(`OP%8fLa-3+-T#V=Y*o0|IK}@a5YHO}JwAuSD z_54-cY(?(iVu1gehk3pP4+Ww#j#X$?(2sxFk zqRWduw63M@C*QIg7;gB!3_{uiU`-t!oE^Q?{xLA(@qbZNzgeXb0lCc@H_ug(@ncT29i z2%48NWiBR*DosxXMQQJc>34e*7$v@L=^ z^s~Mxwdx*)u?%eLQ~CV}00s6N@aB&SHSp$Tol<5PB3s=esYx&SLys~eLM8IqoHwja zKr0CEM^~ArXDJi+%(~BF1GB{C$cQ7q z2=mqr4MN1;v9En|_M6QYDHw73EMXune~pGU0?1yM8P(4T`?`4_?JMN}qrdjc$`rdr zwV%)1H&^N7qy{eY?!rBKxh+rLepA!QexqV2%Tf|(2C5b%d-id@HSpKo+|)9h{Fuzo zaF~>w{ytX|w*@y~=k1Zr;cGu*;Czi3DMW`V)6yY8^+Y}32H~4NezIYg^ z!d|xA3L&Q#Hh&ok;E$mkr*^CRwiEbHaW0uQ{(hWPpx?V?IY{^Wq@mM(kEQ)DTe;@c zI4g+``>*EZq3qCYs>5Nvi{>*%xCUUMF-X8??(9K|$mlH6G{ znYou}TZoA+7Brw-x^cnO2OOi(nRXTHdsSh)(+0rA7u|W8K>8L9WefNc4>V^NFf%!WyaM_v7_3(6&da#(b5tOI=J%i%sa+GgiS-!jTSR5|)ezP@Fw zAEL!C_W_`-9``6ee|>Y5B% zj;?inAO}=k30VEXV|G46S8H~n9N{!lWs1v>9(9|j-ygO-qbcu-D5h1X)B|vf%EpFB z2V$^o*=;fG5o=ISm5VLXW|j+t92adrIz2l)Q#Q3Tqd&KMu~~Y9k!mS*K~jsJE_@Pp z=Zv9JsNqZf^EQnmr?h$a(Es+ooD4@-;AZCX-7sjk{NB5(OL5AvD@GRaUaVhJM!`b5 z9_jYBa*~2TO`TOYk{4gJ>6~XGN)f2fw>jwumYTLq0=dL>| z@3jG{siKva!KD)zu+~h@^6~X8@}XBNTPX0R1wp|$ktFPF7lV>CU$#^;S35!7)gT)@ ze?=!R&s+Ze&hH#@PeH%ZnkKfZG_8LJoj!!gQl?n}E@DTwr)nhJ1UvOg!K`7Cj4TA@ z77DHL*NUB2CqT?drf9N-aFc{d6Qj@{!UnOgJ%q&w-P30`?VUQ0ZZ4d8=Xy(FDiO)b zbMM+;8%`PNDxd6+GP?vhG-M2*eUrgeL6WpMd?$8cSJ^S#et1iZ(9z+WV`bptTsBxT z;C&*1goF%LRb?4V&33fK7McfrIXmGV3t>(Tu0=gk=3J@ zELZOX=!wjYW;i(rA^$e64eyVp29=K=CpiUmx`Lopm7R0x@bB)h{b#6h?Cax=AqQpV zpKLqdb4-DVa!xNwQ*sQqdhY!MkEmZGY)pGlx?mH@{(2rHM~d*f#YTkT0ylB;?XA_<35Z|?V>h8=!!{g|u3{=` zq9Mo`3h9|Rf35%^I;{h^c!121v zl8N|_9%t#MQ?Uk2P<4P{Ph}6^<&v1KByoR-5`;LIm&Bo!=jRCd=O+h)xcVw#PLA`5 z#1qNpIn3rW9M;5v-d{c#n`_Tq7If+CCYwC@uKw*KQ6v!s>ES^MbFxiy+ACBO6mwZw zHSdD=2Iaoiy238SL+AS&{~`$H$vK$t@~%u0QHw3_9e(Ibse2hU4?3(S`s3r6%hS9I z<^mg^&pAa0^iF8_aZHHC4wM==avX(94O(^G`EET+;fEfHA9EeX#6*5Jk$-Q-8Ti?o z$o0MUtukWZ@fb8L;8LrD#NJE|CP4ohE*Od*9;1~rmW^r6)}UG82_AU*Da+AeSPTBM zj+Xrzqa@J0PD>?YH0Z7&b}?Ro(?qZmF<$Cb6My45e}xLnNr#8d6rPkcy4X3^_ZqgU z-YYo#NVmcx@|A8;Y1fx-)@eNVfWgr_l6hjli#JtS5whq;rqkrFslaPoTCh_)kUWG> zzxG<}V{7mAfD&b-5VqJUWiqCa+FXTCP(*`^iw(c{vCaH9GkDVA!mG>N?=}cK{G!6Y zuG$#FW@u+pvyy+4JhvG#iLk}VPW^`%s%w}@8{T{MqvN7bmCvp@F${+u6<+e{Q3dXZ z(=tIHaxo5HvK&S5gWqIqzM+tqk`WG>YBNQZLe(%^e?&hA28`obGLN_ethhn;`t_-`x>74uzo#={; z00o|l*w3u)_kg{}Dv%2U&3QI`Q`EwU?oGeXC*DNyzoc)jc=2j8nUUdC_|MJnvcGXP z1$>c=X&X)dDGBgHOt|{Cu-EX0`J9ziKd?{4kTn4!yrF4T^#!la81MMOUP{O8LA7?{ zSQRzUR1POI&-^iOFQv55qeGNn1XULVRA!XkS?}Tc(XpE(#2U;t=6xEihnP5v*F+S} z`{Xx++~}_OW@7cWC)>mf|Lm^(munHPPcITv#wtS>zH>n}l8mW?W_?$Q7|)X>fv`K> zh(_d%RkO{srG~GGWlZ*oDXSaL-aI9sntLr)pzX!}(Z6IV@B``l#l++gX&Spw3tZ!B zuIM1(#gW)9cx$>^oB`=Mz zmMt#Ymh}OCl1Ddy`8)NQI=ai~@?7be2}|+NOx<6OTLEO|u%wlqW#MDO_)_S)ABXzbr&1_5?{Qe5-bF^s}jbh|;3N^D9&)#3( zmo$i1CDEOuob#GpGe3HtbiHJ=7C|ix>!y{*7^5}xcqQ&W<~N26IzeN!jjf{1g-m`O zM3rj&v7Auf_QNh3O^OJzgYt|j*x6uJdW<$0tLFFVBg zn5my6#!?^w9U=>uU#z-gt@@(kK({$2)_}EY)>CwktTFx++rcEIo!z+rp*-sl?g1YB zteMFR?64NN7>$~DcN*@_>s9VUONmB_VXEaJ??+`Ael8g;kuIuRYMc(iExxMrj7k$S zw#T_;?oY+@H-9M%sG?Y7i(`=}N9cU1Dh*UDCBf!0GiYPTStv9PH(J7@MrdEU z56BEMKrdR#fD|JWfx`2sogbjzZ+7lURBpD^DPg*n>1y^hYL?BMq8f%W;FP7A z7@$d6m3$pT6fSM*i|PNO?@AU7It9uH5JJ9z$Y+iAhe;tV0g9s^%t_;+cl;9-lYiqN z2SXSLD_!Faq?e>u^k;RgTHiFOa1KyM4J1bhP8+yQUojMB>S}~tGiL{WiB;;(!eMYi z-n&lLt3?die_-^RO$z?PYwBR(Y!fpB^ha%Sh8wmGf8lIDTb3Hp<$4$enw@HUi|N z*9NBO%Nx9|JB<2XWRk`ft0F&8TS-HMt%M645WOSd(@tvfwyWtxIzzZ zwmeLSbMD?bqu;l|4MzCq5v7CYbJ03b>S?erUR*@OAa3%7>Y?Q8a2$oScZV5utE zaYSH;B=@fOT??&}9;yQdbBE5CcNFRazumRw?sJKF-U=22CmU{&%cL4M_VcON8+og& ze$DM0HhAjp0(%c)M!mT$UN6o@ymG^QtVH>5%`N^cstY+V=nkU+>+y~HapuzRSckid z^C50T`#2h`2f4MkrMf)fHme(CnHvAb0TpU}GhR_8J^YGEV}iZm+MZjk?I>*az%;tw7GHmejmS1)2-#lUVlZ6>KA{ z84tvIG2~TplPULpFID`iu-H~e6^?y}Zeees_kQm_`ZpHD*Vkw*WUHy_9azgXy-gA5 zOVxC{q>I%{ywEYw8xLl;9uhWL61c{;Wzv-yAyfKg&WJM)|e_o`-6r1isR z%nvycWwA1iKmv*OZR>MR><%ZwRC|mnNLbEy7j=3IB9**0_9|2Zy@Uel${0uv>PU{% zqk$}|r2S#hwfQH{M>f?De#_bJcXity2lT?ch* ztR&9S;fsjjCKC&zfE%YJ)~~g1n4>=JNe0zvk5QR<0R|%9GBO^g`@p{($)$D@rZpkZ;6~dY3?f^h#NZ{1 z_^`Xn{l0de%X$>h+18r%qa2x*@fHXN)$g?BqC=}DBFJL z-&;)=Ko3;(hlnT1Xrl#02zdhRl$<3!-5cD_CvtQ9Deut?)Wva0h1F*CQc5BTzXw`~ zZ^3QOjKM#PN8917W-^#Ebg$c)?$OECo^2K^zgZAIpvSM#X3d_|)`b~h5d=n`r>MWvp0TyXz_H^Ua9ikK0!1*A}x*wpX zoh??xv;NMbwP-)F2#|Z!ntgn0RC?s4CfVRRLg`H~`y-vR*Tb2!Cx`5JHRh@VVM=dF znHt^~8R!ieoA+VlzT*^KcOnZLSxt780TNQQ+I=pup%r&;Kn=^g3ez}}EJx^81`mzA9G&2O7xt==Q4khE7lzgF%OpbeW_oZ3}T$CgV$i0m+c1!O*`tXyVX^U>*(I-bxr7h&=Emx;*RGrU5LeC2|?`_!NK(k@CXN z^^5OXaAI5c`BC37U@89=n!5t@kaADKBtT-y`}1%VrlXz^7N%Jja zw%8DcZ1a>>y~~}WMn9lrkyBe=*`9jyGy5)=HCWLH&dIW4<*ibuQpd%kE`ufaI0S*3 zF{FFAQrz?~V@gyYb9is7RPe}7r=Rfgaf4zxY)^lId{6&ecEn}OU|ZxJ8iGo<3CR@C zJKLh#(%S#&4=kGX`Mk2}K2uN~)h$8)*V=^Dt2KopyH$zujvrKKikcBCr9*!GD&h$i zM7wyNqZ@H+<(UH##Fq+Bg9D~|WaD9|ETp{Q-{K#D)i+g>gXyDnecy+(xIX?iS%QJ_ z!MhhbTgJ5a1X8r*= zo#r$;;s(z!4@`93q1uY*)GWxa=}?hcJ0pVR)c#(PsSp7jQkOFO+^~K$8It=KFr#5?XqBaek=CL z@U*Etw`YTX%~n8`2&V3Ri7e71W}WjD^k)qM!3iC_-IrC*gXCgJ^_SVqY#`_&P)E+! zm$_rh-|8b+G{V11`k6LkRzH4uxAoIP2ICb?WcMe+>60mU=!Bm9F)4q;ZR^+XLEvFW zg?Vg{gDw8mj-1DjnPiuv=$$h099^3dP`d7bQab&=wp>F2c?CJ}6ei#<5zSr``haE{ zeRI6?#>J_%r|nVieS70<}+(16IZ>_dhjtJk_KOZlDALi&Ls#?RbN!W7Z?nT>>3rVeD~z*=;g zq4vR9pJprW`HzfWm-ba?JRSs%L2fxz4Y#7e&^mUMSbGJlr4FdH;x*Z;PyF$*u|52( z?O3oYYWpqYGWCY|DRil}Qv-Z^r{1!o1W#u<=$J!s;1~2i{^gHF)g=Zs25sJIP;@SY z`Fy~F*nA73b;E*un|dC;FeQKz#F6KQ1%z@xfMp;nn>1Fm_f2IiTM;tU1KyJlzQjg^ zHEOgHIJtLVvsVF|@>N8{yX23O)RM3PNz;E1-U_wdUwfv zF30H4$-5ngo}d7ty4iP0AeZ{@5dK#=YZLNtFS9O`t5 zwdM@eM}yHMgi>>m6R7aGs-`6~e5tUdW6B#Oggb04FuXij=Xzp`DpUo0x_Fsjy$Qrg zOn2@sC{w?YTs;VB6W$3JyMFAny4f&%gPmk|3M^!vAYnsn^xuABngH2@@I3W#SEgCC zkzmwT%5=cagjg&X?Gc|A4cI0>*$wX*V*T1SwcQw&$Mvr3vFnC_bLmOtsek4@M}fCyw5>q}Jsta*4WT-+|&Ri`>IZO6f93;$)t zh_sKu7dOfI(xgg&GI*oEF|;@LsLP>nqPeEPgNRI<{@^f+e*Tm%e5uM&7j|ta2ha2#;(5cOyFwo@? z2Kr=&ClU@|(zJ7ihy7!EzfK<@O0Fd#fj%e>y>{KP1m|AU<1VTMo6WG@9$vz&gVDUc8g2O`6A>uJz(+X%ug2#{f6n+_jU zDn#b$hxH~ZPE!Q@;b=ZrA(>=71OA1QgB}kLEL)4eN&G$ih##E?uHrt7y1?b!0glM9 zB{!GL75qLbXDEx2--Vdo!i(^__bKFc?+XnP1L;o15lxL{{B0AT6)PjedD}+3Ew&I_ zrG*3-&%|Hzgmu`8gZ$ZF3&UP=`5yVX{4es}GAs(V>-(i!kOqk{=nm-^6%mzE=`QK+ z8W2+_Ko(3<(dnI$Qee{gaznkjq5eMhSufuyYalMqgHpbO5QbThv8NnS3qz!O}5D zys#pnq^U18UG6+tR@>#>uQh}r^`#NwD;UZKR8)yY+4ch~rt|Y_i<6+FM_0;f+~$@K z;H&FWwH@Ca^<+M&nfUaaL#G2J+m|j5LcYBxp{q8~Z^Ybb_)I?u8R)H4FWWTdl$}-D zx-Ad!Cr1$xi|CcM(48EfOpz@M=>?ey2<&DmOe2^P79@I)!_6Zkre< zPy{6yDPC|GsVdY=Fx^t-ku^DzXQMFLZy|U|dqfByjc{zF+!wY3CmgUh6|!J(;w%Ku zbsX7dgqho_x)&%+jjpTAu1~fY^y^=;{rFWflVE@7{d+X**y~=2eZ4$^9J~6XwejA& zgB3@ERT5?Lw95-1QsZNcHwJJ*nWb^v#IzM$?2|jcui%6+CcNFm)`-$u(IEik)lZ!( zp8M-xE-xh9vWG|;zgc%c`3Zkci+Reo83#V5L{fAN7ZRf z0$C4o1pZ{uFi^znZw83w%1nb%s%{IM+#U5d2fDw-Tn>&5MBL>{eNXEdLMzXdOInD( zsUQ4xN@6$95I&xq@4?$q;Eg;B6O;L$fp~s?8Jj2m5Z4vOz&Wg|9PMBzJ~5M-*vcIn zy`L=U-u^x(Cd9LSeeYUW<^7V22R|!CXXrm8rm7OoHZf<3w~pY<<*T-QErfi`$(6RD zf;AeMoAwytX+B362>AHFZxIu1=OSC*)0JoFv|g7{K0j@x;ZGg12Kx+2LylNm*{!G! zg=#$JjJdeEGY>uThg@WQvz_S%>1mx-Ry+49>-LuA+sozkgjUdz^4yEFaIC3Z)+!_- z_~l-^S+zZeUjGX-ldejX)Y2r=431-x{*f1U8ilY$SO2>5xWk?GoNtdA#Ra1Lr5YY2 zLED~0DGP!ZD-I{-hhr6S(}>& z4-vN!i}9%r3+Sjya8~&$Jkh@R4Vv?E1Zt>-rd(O|Jr)pJ%d%WLD5kY>5>vn(G+AYa z_Ix7w+XOFGHDgUY-hMycXH-+mwKogLEIIfS0dR-z3((yC%## zsoT&jY}K}W&v0QZUpCBE+O{#!WD~gk`S-_W{&Of6>r=gj2I&jETrsNJkGaBg9txWI zp<`A%A85X@k^HZ60h-N?bBhsia)qbJ2*0e}m*RmXCDx1*(IIYDTS?FN4rm4s)>P+A zO+h-;Cse7gz0&b8>Nm#K-GM?whu1QU>q$SQ&u#Q&r|ik;rFC+=19M-#EG-nY6nBmBt@4r_ ztj>I>%C*+hS*!AVTRs)}bCUz`o9`Be?xP2T)X}grTdCaCaFgtO!b7=rwzq7tegONJ znp}$SHT79_e7y^AwBCt^!aHyrYXJA%ZkH%nxb5sX)El_x7URxn<#u%U>A^hQxJoCK zzE9Fy1@-I7DfBB|Ak<>K>tm~(EoAiGELo_xm{|tx(5YIYvG<2=t0!(QHl(EmOMZ*` zA9$zJFOmej8u{frr^IstOjI!s;oOQtKf<3nnk6ZQZyMbi7wL(ATw-v&?;28=<5XNDhSwt(gX8xEP zk8D1V^um&D(QFnY>uRR?<;ave=TJ5;(J07CJZ1d@Hg?9&O;y1RX@$Z~Zp0@ZuOiLl z3d-0@)6Le!Tl_T5O}Dcz2;}{S|HKjk?j{T8oi@Tgy)b2S)<~VUr^g>}6ZCqGVtKj6Z-?YxSJTkTm*yiR$Sm2| zJww&XwkoT5bv1&#P+^-j7Dwf;u8-d@=OzG+J%*rd)}C|sU`g`pGzf5T#4uFPCb<5B z;?Dl#mhrMIJBf6|PuI`1sNW~BXgaQ(+%36^tF6lR7&RIisK3K1PI61gKM(@?TGkt_ z9eQgk6&gX#spu-xPuygV7aYMUW^)+_GjLBnyVduYjQ0!dR&WRU88rVmIq=n2gNjt+=>9wx^qwkY7GGpPF%vo)wTJsbwl(4FuTi&s-K0Vx z#@7^|;p8uc*Y@*Xp)=o!oHlh`xkEk2Tz`^PxUQA)pmJke`z%iM_%&CaYAfg)VV;hK zUW>1`8xo%tPMQ@)+A-=ZoAS{ce0~L$lC}=Dkri+kzSFzPb5dwTdCT>XY*YlDNvX-n zSEk-9k6;ioLg`n{PZkiGnHA zw@?9x($^kPW@IV>NN9o_7tCraSI@JC(Z&ldQH9kHZ@Z<)os2|Kk_lSsQZ7G_3k*1W zrq|-0mAPy7HfWAw5W&2oC74Mu*l61g=P+y;?;@Ui&aq~K#CJ)D-xXB+1=?nn(6e|(OgFv`EJk%2eRdn4Q!v}QPNwu__djcq03#}&9rGrdyz_YrIi-yg8sNqkk7XL zK^8oDEcr&sf7jzZ>ysHqZ-{LMM(vqFr)~`WakwV#(t-FJ&zTGA{eN?YRaNZKbh%Kgz=YvlEF z!Yh8BW?Cf#U$qXNx&0jkhEh`-(fgydCxy>q7i8_d313_570=L@r~07Aoa!am^Mf&` zyK&5gBAT;3vJ1)zy;6$vTJ&7^u@Mj>;MAy^X94->QM40$-ws&OuWTQ(pM~D2Q2tbYRi`WvN1hMd~LK59ATG_?;k+xuPsSWN8L?{UN zrW~LlYx8^57S}8`&Td*+ROw5sZq8b9z;_31g~TAvGc|XZ3Q?$8^PVVMT-2or0)^|K zyluMO-nsF*Mp?y_O52q+;s|uPd$Kvk)s!F5Q5v7l;qwb=N|2P;Jm1A1{^?1{qe* zx!P%r-RDzg1tC9SFMCj&s}jOIm6}$DG=xu%c>yc-;*Js7Gud zg5(ThDhK{_7HQjIv)YudCSzk+G&kjZC>CG2DHIen_hB=Csx9JRTcVN2xnfZ4+AcjN zsEz;R%kqW&3?rw;(mDHgjy}PE@_Xa6Kl%LvnBa3r-0LJRD~if56Dby-QgH$x^KbxF z-gD44&eeyXwY)ON{5LWmbVX>0ayzp_INXW6+q2b8c&ah%_EtY{0ci}OnbQLcdkN0u z1L}EsJnM=KTkSQL&pt{kMHV8pT>XaqHij!*GjxDYriPk44{&iQ>e7&7&7l1Dxg@QT ztMnbIjO&(EbJlhI+thT3pa~=Dh80r#sDcUnVl*^Vd|<-COTvS?xT>=rVAsXmRtH*Q zvV7smF!!ilkO$(^48-4Je1^1Iov@1nlrN5J3d(!$)`i{k!+609Pq#(EU6ZdR4qra$ zbke=0^}SFL9YLX4zZ6w2oUNR&$xg%_oHNG2z7G#w0``Z#Hp`VSKCgddV+HJ^#intB zL74Lkq{vJ=YUg~Wdd2C5CBPs#Oi_5y2g5h>XadqL(B}KasN!2&RGlxOtw`EpxR54i zb!C=A+sE>vuT4+N?&Uaun0-Oj*?e_Ixydkj>*~(Bi#x~M1rH%!6T4(z2Ff=!!EIl& zeHVqNl7V$7yctGua!K;N!hOZ8xXXbo=*ZBIoo#%OqH8zyM!W)!;`g=PYrl9at8^i3 zi2fNb{OfEu0eVcryJ&TQt+Qmnb2lIgH=<3Wr+NxP+UUM+RNS+H=5a`Ehe`pcZvb7QV{MW+*+Q%s} zLFW;8XA68yn|IOJWKEvj02wqNz!;_%(iqID@1=K9p!DxEj``l&DV?Vp@c8k|#UC&H zOAy5lI9%zH3q#F2Wj!lRE_b*vScS)B zg0cv|7Yfb|zF9M3Y5<)4{5*gzy3}e-e;pdNvg)>Z!1yHDN-W3Xnz1F=w1;sw;4Su2 zr_sMns=U=B*3sni zIl-wmPB5*iO7x$ibIYTR^N+jb!-7ur9mF>wJd9uF(zjXYir)bNcI0U6DG<3q&`gsQ zvstBZoGrLW-VTP4Bc)4PZ<#4DN-p3UvOAc)d{%~?!aBrj; zAP?83JiaI1Q+f!xOmCL{bXd2b?RdX`UT|UIJ>;X?>x;UaXHwyOqLKW*6h%D&TN(o& z&kT=l%Yz3>Ha_nb$`%Z%FuhVd-Vge%{dZ(|H}+9PmJ3gmSn;bh%E{|4y*_4yAJ1#* z>W>ZwSDvFtK|V%dA?VCa(IViEkTF;xxw@5hVzFnf%(y`%CAd+*aofi0OPPR+34RV2 zFP%_L3-;)S)(!JK0y{U~3jA|?*A>^Mip&V?drhy(I`^`L6q-{*fHmtyRjhBNSLgGd z`<~U&Jwg+p-sJhkVF!b>x|dM84|qj7*6#*A&baD0vFNpr>qgrI))Op8Y~R8rZ=quB z1#U-tDD40p@uBV2jA*x6M(~(Rpami5+g=BRSZ?G>9uUb(@1gp)kpI+N=(b&a2oRLK z528sw#S)!KRMjkWxHtS40LwX(0)dlXSbxp70p6~_)^l2{zvgDIBb@J#zvkYSJLEO> zQAKmvkSQ;#O|wbOVFl`W%s#DU%SzKKUhsR)(xf3ty~-7MQGBk!nb72Y%3joi7XvEK zyU(4(Kd(Rc4EOoSGW=*!xtb1aTBWIIu0!+TsmN~A$Nfq((F3=(@1-AoRnt!j8Y8g| znY^u)R1bG4K1cNSw5fUbTVY+5$ZN1}0{C%($GH$<9w-{BRp`OPVind)Y7DHJ&*FaE(UhQ)-Iw$VI#SK|E;W=b@hkCoNv$^KmD&v7IdrMJ z9&MbXn$88{3WLBlR}{ON^=(3Dz6;iG)$YElWezgX%sLY_DiQVu|JJTImHPQ71iXtd zL%{|78)up^!i!v{ZI)XU2C$&d*Ky0b=E~^`%1a&<7#qFH>u)0RgmIPVOdrhCh-p~` z1741Qya4RvJp9QU`2F3*AO3hWdMwRkqt1nB28@s9nFg&gR}+G)Vcm07wPL+SslQd~ zTgXE!22GIU&C_tR(`$c0p>qWfKU}ls)>-!tApnTR`@p~ZI?`e!51&E-Pdg_82EI`J zq09>pB1}|`ikoC>BWQ0#NsAn5_srHddNN+a#0FLn0$eupAVFF}S_08i2Yi6a&9LAH z1gJHf!PE0h!zk2-OfD=BH&I2zpHR!cU0d@d?$7w0%IWa?u;bURgwg zLE7tS@!uZ`Uj~&9GsHILfF={26lVmxo#hV`MhO_MLb)n}Ur7(h2734?2+*Ghq#xKg zOT*}HS@{$h&hd)R|2k;KU~g5}+sK941L zgL2OXK&b>6uTTTrgC;sJTrjf=w5zMI@~)0p z(@WlKN0Z!_APcFfP;l_Dx(!h&oJ0f3G*tDJd^xUXa>U$w(jXe{#gnW1L+Qe{>C*EJ z*>a*WCTxG;S~Wy>It6ak==6zGuC(6h>Gg4qsF@O`c9-0yj{&jIjI&u+kZC<+#>#Dl{``| z82HNU89uf%*v2NVwp}ES5Wjv|8le?%Sq+r4$(Wk+qclsZA`Y8{s^I1=bdPd!J5jF) zF0x$Le=HeobxjUA{CSU|=JTRsZPmWi1O3c7gSZgamA+N=w)LKU5_@@&O@;{2%ERk~ z@tWFJh6nR=aigT%^fB8gZ`i}6l&r@dUHbw126T}M`0Dccm!&O7nXT3`dVyL>U2n^; z1GB%xK1k4AY=r=G+6k6Z&h-dAXJpf$qv*!q`ArxZv30q6TPnkJCcs_HIMk9Pm939|HOPUF6xiWaW6iXs7Fw#=qHL2nFF5%h9uk|lR zX1lKr?&&jllG>W}18siWRoFCVl%UPaE>n2Cufz}J8h~Y(dHPl~gdP&)&*owwGlP`S z%rtFr0R?W`O9bD$7FWo zsd#aZ9o4?@z8C(Hcmw^-ER%V2dRpg5P@(KteB!HtnXF(g4};v{3KCZFGs(TpyI^Kn z-A{H?k<-VF7^@}JMN#_THS(G$?)p^)bA3(7C0Org7 z$I$fL1M3v>T_`;B{UdQi8)AO|4>MgjoHTn(HFs=1sIn;lx}ZRX%RG$q)EK{g*cfty zIKUPRbyz`Qtqo~LTS}YwJ7c?TvLA@`<5+GvE80MTQ6m9`mw_I2W;2lM+Do!@X#oB8Xi z7|D8AsX{s%%|hYwGoh)~K`sW(Ms`doqHeHVILJS3*Ur1!ti{CJ$fm+ira`?L+5HM$ z^#m;J=xX2d7;p(29PBY79?m!&Fe%KPdQ-ufT6sBHl1GS2&ei*BpHRPW|I0QDomk8r zqlE3^UcyZyqq|h|n!gGcJ0ESjs`|C|mP(UJ|=H`$i`K0(@CHq-WNVl;X!%y|@~`w?BH0JTVe5$bIa z&KrE8_!+L6Gaoqn;qJxX`yY#fkcATd>3nc!yWz10?p3*+j;nNbM3P&yhY|LKNp18b z9meI&9t0Lqn87;=P>V-6j>|2#d&qI%iavCu!Qoz`Xj0%5n3;kz;2*NCD-bf1^BX>)*l-c^Vs-+*(l5S!lG&Vz8v&p4`jxkUV7A;r0o_R`J7t)MMlHzS7d zM9zG~Qi-3GtZQ(9(w<$I?w;py)Q=HDoZjSvvXAjGt+@U~p$-QNouOW^) zQhaN##r(22mw;c>lt`xnA^t&w`-lBf0ZOO6dy{Dv9_! zhw5dHNn#}dVW$>mjb^75+%JF8cfMke|G{vuD$xHy8nOQ&b8gOGAO{$T22HJEe;Mxy zwNki^*MEX36tZUGVO+r?r27|Q(mT@a%$a+HNT`Ck+p1Bws3Dg1bK{`lq1q2?mb)RR z+yE2RJMThn*FFYbbL)F^;C+_I{=~ogli27}d-2E!%6Ko%VApausbt|G=q$TwpR(c; za8~#kYT_wJ8qXRvwX3(;{pzQ#|zeKP95n5x<|2JXwqV7KuX0~ts17Su? z>el?z{GKsFihR}k2_2s}@+hqnA$GOCy&S%+tH0fl+5qMGs)<7lB?* zF?->@zvllUz~cWR!1k+|hmZe8OhqK#Q}zLa9t=4-*w862-3R!uk|L+24nuo=-dfC( zc*|tht*#?3S%f2Xbcme1&jtAC@{qkEp`tw=M(7QME zV~r6Nn6x0bd!T*Sq-rYkf=&vevt?SS$8&im3l{sX4vY{1ZG}hUo&{Om&G$B2O2>nr051DIHQ^yn@LA%QAbvrdX$}IENVTyz*_kji`T*aoX{OHjyAzF&_68S&c}nA2L?2J**(jf#PAJ zlfo)Y9@xTeVCyMkOSVU_j_amKw^3(u_4j19{oqTiUlZ*V-8?WH53>*%lBa}wlX3@7 zab)+V=O!nj^xcFj4$i0vr11}zy!qT9VSVUE!R|?6F*F}t6MYoVdzunb@ksWKq-|z~ zJvs6<9l{rjovKO*9L`b3Y1l);?NqJ(3OLod0wH6b z7sI<`qqP?e2Va1pN~7|WVDOxJPrNU?{ZA~OZQxs-Qy%3yR4ohOxN&Iivue)wB?^1> zK5RA2{@uUXjM1D4EHVVfw^;t1f_C zt0%s0t1GA@X5_YMGfou1w$g}#1EF7AwY4&@RZ-a1^~$D${e*`cG#GX@g)c?76WFj*yu1y2xU^45NHJUV&=?>ObZnWhcAR^S(dPX-Eb(YNl{-F* z4bzG$0s zFCjn(F=V-h^q|$3SRmnPe)4d~z}XD+R+(PsypGnpyv=*FM|OBLNs2@Upj(6mk>B`7 zBQ7M(@X~*RbG8c_ch#)6DNtg2%b2_J7_r1sHm2yhs-#ZCBT>@kt{(H5znLl=8|tzO zD$jK|;)um?b)v4sN$()xcuc6lcQ8ey6-hVix1{{a&w<|wvlX5^!ho|}O)~?E!-LOo;HD?y4%68W@WK>xCmP>EVzsO2{#ce)6%$S+Ku+x8q&N}ICPe+zfb*2RN zt|k?v=kEt`Uc6kE3#>s*GeX);sN^XlElPz4A0SrSuJMfPG0r0qM+!^Gv6bn-`i|wJ zZ?~6_GnK!K58HEcsGuj27EJ7>l#I(LPP=A@oI!!a(!-xF3K!6`${qLIcmD##NW}jJ z#mYmc9G1N&?IWIp|5NCVaa4M4Yy4$485)W!`S4*^RCKg~VxH~w`F>40`uak=idEVz z%=iyfWgs#aSjDd2K)H;hQ28Qaj`vZ&5`CW{fa~5NRUNCFa zhTm#J#V)~)u;kU;+W6jE`>1c(y~wxy{Jlz-R%#vu)9>9wd2IHYZhKF8zL#pH%msQG z_f;0@NFCu1If$S*;I+H>l<_j77KWBOyANFf(nalyI%;x?oH?oU?6p44ySBOAh0hB} zN|thbIa^;DXMeOy`uC^QUA)gEk2(oaKU+gay8~LCu5Xbc3)c5)a0yZ12G=l!=H{;I zX5<@4I-{9R7fQ*RZs}VHcoLZIbd*bu9fLX2?MH)9nkpxf720Z|_$)a;-|ykCbzdNW z0EGwNcMxClZs=0Usb!de_zftxLCUd?Mc)imRG-H7_$~6os469upE|i{R$?KdfTnqR zFm>7;#Pgi^%}Gdu1IZUGA0w4wJ*OrN-?fuKUB|5b2yuN`%{fi0_w+0+;=Uv~Q+TNo z_2C0S_vy~{-F=&~fg{MT5Clv=4wvrUyJK%pBVxFQx0T^S0topnmDsXy2KH-cv8nFC zeKr5W+f(;Cn!0(O7Hh694lM?h-g$;VzJfBiOK`J>-?Q=a?;pDN3x3u4>a{c^^2m;5 zkit-jtNU@9Qwly?jv~JD{iODjXhphv%SOJNk0Jui)y{0w{Np(%WlDuj5`89?;dh=D z>w(@gr0oq?di~I{fABI$#QdYanQZrmr6qyLGZA*$aIIm1_b;nlEJb2)a|c^ z&3J@-aB3g_o676YRt-h`MP(Eh^p)2UT(ija%yvCRFe5FwTB~%QUNO+^?9U-PIeRHk zMw01lc$hwMA>5nohxkB{ca|a`=!Mo#221xqu}&f}Ql+s(Z<|?jv)JzYPfD?+B(P;=pxC+m>I&gNgRqjJm{{RFmz7&f5D;^<18mZJ@%x zNR>|vlQDv@FTaPP2?MaEmn`<`SJi!m*0M%42L|ZyH+@l()2`3fk-lU|>a@Ow$c4w# zQm{|2T_ThBwTT#Ux_!a6Vv4M4Rmv`QQa1A!wf&(V6CHLHqG;q5dCk`uW%NfBdc=|~ zsYRv3UFG^N;Z2w!fvuVs(Io6K1IO#$t%8}U0w74(HkHDR@~b2nViTf3>np4B(4>Ga zMtdunO`T-RX{YP#1YgKcf{&{DuHVg@U;R`i-c56nof5Ij`cJ#!9_bJ>E*L)I?sK!b zMS)`aG<12k?0&u(B97oEMH+u)#KTCB%sapCLKhRDbkm`(S);35zI_oIeGdA7?e0*D zkzil4tS4jjGw+$;yZa}fj!1F{bdsHIUHXlOFxy8>w(ystb(v=`BWGTQiiI!S!#SBm zdpv90Ha?@6#a{Mc2Ttj0ezgiZj~fK4-^MW^-c{z}KJ?V-W7(=}z|zT|S_bCAxq>gD zG3(PT*ymH?lwTq)&o~#D7>l#AvfP(?siS=R#A$i$b_Qu_O-r?LW3;Xg=Ly!th!I%wQIgAYw`jY80G_6qOB^4 z`OxC-nA~oiWEvr?+}$u~BlqbIwa*Ef;LYlat8?@YO{i8bF2Smi=;hk+I`>`Q;>oPQ{CSR!Y6Om1l^rlhh>p|EC)8caeXWHB{ySY~|+Rd<%fJX83m(A{^53 zbwnFb6$At0fx4!x@o&;1CL=V)t)Fbax5Wlj!;fj68N2m6&MvB+d}$f69kxdIyWQ^l z=LEm0JOK@*^uBt%rxdu~5ey<6A7h|55pQ6#(6FHC$$23+^zI?Q70FSn&tju%Ca{z3 zDh?@>?Hb{|xrp~e79TKN{41eZ&bAzFIWMW%HMu1DZJ#auCZxF=!@eR*gp5*g9J-V5 zJ`0t?pFXlpXWQalh6l`8Rra#~3MD(^HBb9m6YHHW_x`NofwtaRFL33qn%I;XbcX(y zGvx8C&afH1&<6qM|MX<-?!(Z=2e8AZxPN9;UPp)&Sd}-v1AYrh0+b7;4=ZO39hFjj zWRpZlEx)oQZt8;lh(d!EEW9sv&VYruAFuNnAl^r*{Z_+Y^4jMol zskV=pLDOq$bJo6Ce(F(yZSM4uH7_pqH1UB7LU?Roy)=!lUO*yW3OR5G8oaFfb_i55 z*rNKvW>_=3NdZbXXW`qlU`^M5d0A8K%J*fq=Wrh@u!f(9O??n-wnG;Y-^qnENE^3 zR@l)#cBzm1M2O-u{)n_o`A-SRg7l#&RG8J$Ou88=$uvj;pO1vpjpsu2|CmJSe*h?S zS=wd|qSHcd252YZDW$%3ren*^b!(q=OMLKp%W z4WbkKG<9hKQ1CF~+GaWu;32rtL_wWL{_7hkt=no~@8oWn$&_}n_)ZXk%cj+L7x!_7 zTSw~^rtXbhO-5y2O@zVS1gc*JbtJqGQhc&~TCWY7Ep2#KGam!%-1ZVXTg>7@@($tF z{cok<2M0F&2d0utk0P+syDur{k)NbJICZ%d^=@yKi}lf9r!9G}1y+6meq-hPDR>Va zY>f-l#(WIeqFzh&3W#u5e&@P>9y~o;9-b?ux?!H~0y>anFogQnOSCjvuXa?^utXGddsT#v!pUTe^x+ ze$FO@sQwpeOY$R$lhO;Lln_AW)zqj#Kh2Pl?3?qw zfO~gKo>-Z=c2u$~Ptdzy-@w0gHafp;UHrI^ocBin&@v0|P!+k=ut2AA&v~>uT0ecz z1~{@@5Bw18-c(xrj*c$Qv~Gbxlm2t{uNCJ){6%b95|N-HO-gX5X0hUQ_3C-io(CS1 zSg)&mfRC6P@G1g4NR(A1g0E*E{e0SG#5k?yEhEmBk(XZ@MJuT|Rk7G3g|kOhho>rS znwMPu(`X7sub*zR6$~Ix6K}&c~hh)5MmnioaRyeS=+}yvS`S&eD*>nZNs=mfH{S7Bzx+obpU%noWek zbE_pgv~6{dIy=Et2+({o_6tw()A-!n>cax9bY>)$R=-GR#cR!QJ~Rc_H4hLwHRfyL z1tUM{69YKY-2@5VCXKy|^&}jY(dLT{+M)n=YO7+KuY%3;=$0HvU;n6oS2w8Q_-Nc_ zI!7E>V>qx)_daDo&NqR~d{-Mcm3+N_C?qwVhM!_f{|li$NACGX=U<)A@3h_`xP~7_ zaKk}{FKj;+18{}@)kGeKeqm$Q1ffD;6%SwwJ9W!NMT$6Mz4H-%N#VQ-k`P>m`W3Nv zl`c*zsllsjo$U$blG8Mr)r-)(tqO0eTy==p_%fQuk7m+8;w#>Ew%Wnfx+6?aq+h*6 zlkbmFz*iKj|9q_X#(&@{bJTmVoil!PvRoT?MS8_52I}aOVN6;ELfX^yaiJo`?pa0><`W zM_${)Y|lUQ3`QClpWF6Q)X1`ouEIsnAKhlbF283pvT-9qaIHBq(CQ}5<81DN0~TEj zp4`=aw-g-a6Lepw`arTZ#=eDQKISn|>t zmyrBvtn6z&tr2(VeoKnNDt-6rT(Jr9y;t63VOm)uG zvF-PEO(^4v9YT!ytoO`>n7_TQXWQ9o;xw5%hmWK8ZtC-b#`CC{eckA|JAgmF0+0UP z75Xm6A4MhSzdpq=x8X<*xrubuV?fj^ItO>9f&0>gjTHH8SDS5NfT7R4*`Bdcexrn_ zXkTLFyE0CgC-qJD%_nm~yO+I!uoXz-&@+_URzs4yTJ-`&;3cZFp7R_gtdvG3Q$ZE_ z1PE9ErvH7E*I+56&^`mDn^F);qp z>i`-bBxTjZi6I*MK(eO&1&oN$$b`=)$;aGwcQ|Z%SJqH&LcpaNtD#!oE~~~QY>U$f zXBp|&)ot9dMq`yZFfZo2dudHOQ0n>UCiiKUY3#HwrQiG)qzTSwslAtEvP1n~;Y2Su zyoZ}+enzlUyYZ=!tbti%tw&oEM!zc0yDkvUoFqr%*lTb(g&RE#=)99b2UxFzKa24G z8gL{?y>cgs-+O?jC+kQsHP*=?Zq#w@1*Mw*1TWdRA>&n`L7=L5+^nl( z#?Dz(zk=P@NqWHkKP~6~nMm$Z{NFVe*OHIcuh+OC*X(?qGffB{pszgildo{Z5gxQD ziH)#ie)%D5cc#ZRj)$6@oR?DKSn=cjym59UG<>tF^Za~;%*;ENq-E@2>&{=YC~`$En?jB zRq}CFEs5#H)lB-VO3KwS*gCykhZ8p-b(#8VP7YW9bdZn&JUeR0X6rNrWS6hxJnlW3*PLe z-3{K!*IFR0C{rM@Cuh#tplBqvZ}m@#_^(@Gi0)7PX9RpiCCF!^lhkh;DNqrBa=EQx z_n+gUcNeUYy9`sDq)5J7^H@)X|Cwz5>u50!@$U*=Hk$U8u(mp%z)eUPc>2h}M{F;PB;a6XFf7`WgS0onU z5lcwcG7|Ykn!XJ%@R)e1FREor0m2SEBxg1ji2;U5j{dhC6Cfo;fkO$Nxq_q zkckN`^*gt((~|l)3>Y~Zb4VcMUmVRrR0KFhff?93b!tSzC^|m|0HVT#r-gm#2 z-kz;P^u{G>k;a1J!_t;i&mpQejn}xrMKV8(7d*dIR}`Y0}%b3 z8eEVpS*N|F7X0AsOExugeQxEE=s4YqBBdgS+e(!|Ck(#48gtJwpU$>0g@HfZTiuo%)xkVu4)4~S$NmkF+cjOnVeGF0slAv2y zQ^x==)|kT89iwSoccUb&gv1JVdrI0K(5M*`!lFRJAL~S6tBwe5aC<}HW-(Le^$#lzKU&m| z+;m5?Zk_`mubA$~(Ls}=LTO`+S%d7|o6`glmY5$qWeYw^^Uh0eRB``XB{?Mi=QHyp zRwR^4z)U=V-AIrj!EhQxp3Lp=thhF*@nZ4u)P35-CRU97B{yte{Wza)>!K5D#Q|LG z)xL5Kt7yYe>(`8#K}Yv)1VBHKT2tXwf}I4j4SOnX`!t2`+B|P;VOj-gz)U(7X_j;} zV{HSM#s3=WTHG9B7NyV}Op-O9Ws&lw;^}LW#n-O)UistrguL?k&frbgdt&WL z&^`a{yS|Zxs>-~Qiw@HXibE0R`V{x(@sJI1tg@6YecacvxyARP&Qj&MG$VgIQZNO0 z;*l+scUbg`v>}cnNrSeQMlMhiX_Y23rFIX-d7$e_od(z!J*~U(d@-Lritu{n>3`&9 zh&?nTzS`VoSuB;c+ZKEdoW+^0>wNFr11x3Y5MK#V)yvxhH?^zyy7s`w&QP+yVrD+W zpO{A9$({{(CdIw`MnPQ7;=ivi*I)J&LQT|b+@(>+79mo?irANx+cS|_t5M@-8JD`s z?%r8>CT=oLLF>0F7w^A~+mH5rGHA{(@5;tlGN^&{MG{al%pR1|UdLT1owN>nxIOlR z*6sSNSJROpJ#0{zHDB2M15MQ8PEDe#@p(qYU7+M84GLl$_Pzfm%JKZBh7G(#h&m=m zY@TR_FCZV9%?KCW{(Y<)q~~uJ^RO3IIs<@v0cFVwU6A(|J=%*$)=z>oSHrZ%^S_-5 zguM3segw^ueAHXUIP`p*)VIERGC+tL9SOyRTWPK)Za8tpUyG_zoK9=K+SQA6Bl z_9IY<@Fyc63c$)o(oZ^+TY;E6q(;_41NH zYLGH=m$)#;TLBgi^%XKD(_={yMVNlsfAfjG8rN>1&l6LPh=AHMd@0T>;D;d9MjMwlDIAU!vK- z4J54(Lst#)PBzgqwFA2n4yWg|Ln0v2~)$ zLOGq7a#^lLDI z_(jtx&H;E#^6~X6;iruMD6@+9nHkV(Y*Yxmj#grfA~k? zoe)<+xyg}`+soa!g&{ZFh+!!&=njvIr*9*EUbtpFMol`h#xx~lLDR3KO1R?%l^Lb; zx0MB#jUM`*cyvk`)y}70st){$T&fF=HFm}^MpNROOCnycOpAl)Wpq--@J1{IqIMOx`2(05W_Az zL@20)qsd({G_@vm<;SIv_X?Hh&%}2x`__}$dXm1iTJx5I&_*z}!}yL%##|~_Pp}OA z`U2LJE5EIh>5E<$EIwtbxYmm2wmgOA0b4XM(G-s{dsT;MK&ctFEU4Kb-D*;E)D)MG z_@z6G8YaG%BZ%|UnltX{V*sL>g{^6MeeX6cHBW*xszDYsXMfI zyg6vGX#j}IssPD3DWaVkh^;Od5#!TGR!JSBrkTkrCrp6o6wDsJ+xtT)4z-28q&9iV zxFh_#qY7>cPGZYHW1jpxc`1!MM5SeZ8*#voZG$FOZ&Gyh^tSxc1qL-5`{J@*U9KYp zbVGsH&`o{4r)`6i`h%Je!1tRf_n#w6tWDU%*pj&J9{sjT-gL$@lQL>LR`YW`;dJZ2 zp1A~{`Z-ZKwb;@w1|3rB--&s2FDo(?UJ=S-ST$UBO#Q%naP(LzUcyt9HN<%aJi^M6 zSo>&u_>cgWik&;^D13Ig91|>qb>WbJEIhlgZN1E@&KoOwE0GH5VT9xwy!f@v%#|c@ z8b07H`<^YtTj_?>caeTAfIOigkr%IZbU`N&a4la7I@~9!jJ>$?Y15YAPPN$&0ob5N z82);t&oA-tsH4J3m%0O`J)Tats#aCPib$=rq({dGD)E8sXMh`; zMW6l{#C}^deN%i^`I(#TnvZ_lz;*x&q!nwrwuc)3W5D*m>Vrqa1U?6g{kdR_zodu= zG%6};7J(2M+&*zyX$?BB#!e>WO2a3n6ls+|Yj&J97%j7~MF-r9Lm#}56ce))CZ=M4 zyZd1-P%zMT#VlixoMl#vSY___ZytVzxV_X>u;n32Ft;X+-z+$GwYNFm8U)HtNIJAI zn>(RA7jnG(wcKW#K7YMk)k~>f`KI`*!1ZiPTm9k<Z>YYrk(3?4^p&%TT=Wzl<;d zy58Svpt1!vcM#X4<(^wE_a-gAi4GVpd`LwRkdg)0-<5dBb zy-zP~SZde|8YmxN{f+nyBwRA1&eDP5*X?X>_i5!dT=oV&Q z*N?oC$v8MI12{-8%l;1MMchk3SYEAi;|MN_@H!p7Ap}+>V>Sp~h^Wis8LV-ibtN-m|uk*ls!cC%>S* zdv;-6WB6IRF>`UKt<`QOmVoyu@&CWrddsjVzpj0l?i3UO=@RKwazLbGB&1bg z?h+V~5&`M%?(PQZlA(uzfp>oQ6aV{ukLS~M%zU_F@3mK+>s&NF1$d+AtFV;2gdZIe zlqc>lgEf6sVe3<8LoWgUnIt$Q4#*^fbec!s>G$1XK{3@&gZ${Wz=I9(k85;?{;Zv{ z#OKWkfF5c$EU12;Kjy>rRnN?<21JI0NiW1_URa2cD_J zsamQdMj&)p1U=o-2J>Xkj(#@U?&tj0j;++%4uXzD`t_S^JK*cH_L4FLyNYosvR3m+ z8V$kiweAgT>hV{Oub=TA8thwtGwC?kf8JHlu}KNG_f@?_q~&UV0?JCkpQkW3<~RW3 zUgkw?k2iFVVWi;*1*YJOJrAyyF&s2)zj+B!ojI>#wnD0_DmQWI47;2?PJgYA?sN5* z@L{frw`nt}YoiZd7K;!a@?xFVb?c4r!#Tbp71^&;>^XlMSe7Be8#BwjUac$TC!a!? z9_DchbU-N|dg~e7#qxarBL`@J!biIW8cTZc8#NS$P~Ogc4l*bm>o`DpdLM@Qh7aQZ z{_*bA06~B^;>X7`(tsP7JK0CGG!Yd?4rOYngjDXw_?lpJup-ibU@rgrhm&Pr%o^J@ z3+AW5;JbHx5M^X=G<1L$(sEmZDFm*k0~VfgaOA0^klc zHac=^mv~>pKT$AEJ+~riIfP@v(;|KUZ22;=ftuzsx?qMD3JGTl)S9e~o;~p!wnsmr zWKN68dU@286P_0G5E~#V9RZoZBatU)T0-Sl7 zGcmGH8XZ;seWwBVIhW22*D^%VS-d(^1c{y@aRsgN^pu69A6X!asWAIQAwL&!*t&cT zf}8)G7c9N{E%r>~?e|e2-^3p9{W*$m33uDDJTx-5_+ZF#kH?(!`QPz^5Od%i`d(O=AtKC!U+sbi#Iz`MeZYC4BlB)Nko-%eK#f- zXYl>Slx!??R}M8w{9sT@$p3ajHX+fXd#A#Hvs>j~#28&~5yTjK|3!>}8{e7xw_sj` z#PW>wqLk2SUx)P#8gW~jmDAu*zb=oWXpa|0RCxq*dXo;PiDa!#bD_}AYe4gu*NLHp zLU{sBUmzY|$Jcyte}&F-?xWSW#5Sar3*zN_ws#I}9y$o_4GjQm5(dAo87>RwEc)LB z_#Ns%i6gclz-%d?^3=O&ceiV9PXAFIaHE=u0n`x@wP|3GeQoRp+f(vlZ_N85zRGG| z2dhtR^BL`@D%QMjz9LB}TBX?}{G-)^Z2(Gn^gKzzYgD899NKksGHEJoea`au8tAGt z0E!I8l5EY@K@Qnr{aRs1^@~R17{QZWKE24JWB7#9K|l4!m9GE`3fn7Loeq7bI zXgw?mkX}`PiIHY=u$s+~7bfxI|tYh^h@-x-xwiE*=pKx&m zK=79R;mPQ`)DRhpI0$qT9#biwb8+!zRdCLHqD`yMn}_oGc-vrJ`FQL-a_3jJZykbX zncMo)oBY{WW+W-AQFpaFZ+Hzxq~A!ZfFjN>FIV<|hS5QRimmYP*R^Cn> zo@B6BDxmnukWV4h{Mn`YMtSzHxTd3(M}tMEM*sBiil<<4?y%F8bz}ay6o2zu*Ot*1 zmfF$24#T0gpT05wFxB8~#H|U0-~LD2g*6@b4$2ccoa6LXtD$P>;*f=m=({Qr!F^Qcy~6wh%xa& zqDP<(fnL7GT0%duh}}F_FGi3F34t7(H9kH7G(7<&cWP7Z+`8r*-G`0vYa9Y!Ld=*- zYwCBQ`ET3_Qy_JC#kRFl8^Y(`wPS-7D2k7xT~-ohqVTxhO}a>jj=pT+zfzZoDt9L z`dE2r4V%vK^>yp4*S_z_oT@wmj_3`#s*k-*o9ROAoY_ zObbWQ&u22X8Uo0hf~kC6!XQoQN4Di>L@$75wHl30y}9uhG8~kJq2}E&zla_}B~7Ae zpV|UwGNEQqkaeB0EfKRD_0{>)Qh z^!<}#%ShBYokZD=2!*q97oh>@*TUrT40yOj+Z(XWerM#(`*duVANG$GUAv*vJ}z;3 z`HQAp7xeC1(jcWXmHN(=cbQQ@|5?0(ySCtjP!VFM%0Rq|1N-rdYYnDcimaPZNQcl6 zf>~m=mCI5|Ecpm;)&AzMl&Metai&2@kr31OcwYzF-n6^S`uX$>*GjHlzLQ|xj`;`5 z?c9a`jr;zoFbSiXf9mo-&STwb?f35BLVpBQJ$xHzGZwdqB8Q%@I8%+r;EF({(}w*C zEpW(u(H?n6@j;biJ)1*r%LoMBYW?$r?IN_vPV=COV~fUoa_?C)Gt{5ypZ|8N1AhU}0to~gH1&z}B%@H4Dm z3AS&3V4@vD7(zdXwG^1?Gd73(pzDM=aSJ#h_?Iz^DVI`2MUVY&BOqhMB8f%RVPSrv z7IF9**Wcaay3+iB;?8z1x$52;3(~YIndYcfHoGk&8rSE?{Dzx?Hb&8`UjAnrOP9RS zEdmG(tUd{ad+UQ>Ba=&LeqC;)c3W3B8}LoXjOlw#<00OH+W7U+P=EgFtI+&su$bQ3 z@g^mz9q`BK!UERD z6wJTcGbYI$oq9gpixvse$i|3yH0oS^XiH?h zNpV+qR3}zOvlf(SelK+O8F$pk58;lQx4yi$(eT&o^!r#SIwq`54k4;P$xO|z67Ajn zk+k|5o@eg;`N7HEzqq(e{2!-h4KEf(Kt5`r(|SYa=GVDTT{pu8X!naeShsH-K~gB~ zTA2l5t1DdE!v?AXh*BuV&BxJ-Y$a zfjVqk&&HeY_fEY@A?IrVORPKnw)bg&CYOq$s2)4XA070%{I~AXVjnlRSF|Tg(&0~{ zCVEkKZx;yHMhTQ~D5023!30;rYo-(T2>jusmifk&Nz-Y2`pcB%`(q_vlU8CuNHi+@ z?CR*u5&x*Emv-5Wmuq2BauFZ-j)(B>!)U7gmLzsX>c4_Tqej~r?N8{&c!>S z8KX3h#|eHc$X9E_B<1tg|5{8j(6**2G$73A&Q4;;`SnQoAluFOrT;c{2!xLHl_Vd} zzo;bokN<~CqU}xgM_MU9S-XXDM+xE%5sQ`WiG!9RtcU|PF^^C`$BB}&b9#u^^m20T ziE(L$MYGF$n_eB*G`D&9FO9rh!9;hX3u+z-Rnz9bP4sV}yTD|{>Pp2hN;`|?w&B*! zMs;f0+>M%krIe`h&u_QX`o{fM*+24cj7Hryqu4)KX!}A1$I$n#$^#U|K~*Qgy(LuU z5m1*CmX&5Q2O5aexx$?ZDAD35Jw|a%x<2CNIq92Zs;e9h=ij8KqVHOS4c9Lbjje^W1?mJXH`2B1QKtgG{)xMZ zBIgam-vZVVaW@A)@Jv)bJ|8BzemgaVaK5-W{qA;Q+MM6bhvNhX1^O2UeDL>5=DCb{ zmQXsxR#(|6>-E?Bg;`D(UZgxaWLIIkf`nts2Vg2pn$?nFU){%G(}k7;$Vp|jA?sonFC6Nxa* z`vtlHMuSL>cBiRIF0Zo%CA*z}l5ig#=Rx6YfC_|_R|zli>tF{P!@4O}q;`Ir)U=&8 zoVBQYT5WmP;aUXp%Yv&}jJ3t(2b@2$zsG65U6pz4_>A}S`<^E5%yPMvquN;B~ zLagn7XdrBUYx zjdCgtCpXxXP7x6|VS7y^+{G3L(Li#a+`7!t1hRL-{3rQ(Y`88;i2FNS?24``)Qsx< ztKP5#WzRnx5x)c>4=t-~(Q(tS7IMCgBfhZS$7mq|2j-6YxLhiqf82#F<3gO?g* zC-#R7(HM8g1_Ee@x`X7FF2h4)X59O+o=Snk9CD{nmybKV*KJMY<00c zeqGjEI)^SUsW>x6D@Jjym7w#WwN!_B!HeR|I8dTgx-l&(*u4$Ec&NAM6m~RZb+qwd zxK=bU$^%!#zdU&fE44%n94?C3wM_D0lHkegTzw*#q`etp2`=6hqZ)7VeSIuln8iPM zb|U5OU0|0}X=V8yeUkqxGGazh5BzgQc&Pi{b)H&ME!nb{VmjJ12pYOQx%(J0Y|E$u zKLXNitxoX&HoZt88cFC!xL(>cJywG${nE-@J6Cp+A#;5ca782YQCpzl=JhShBV^ znF)I7XV6=n!!>N*hE|OFVb@1b)|3d?{N6XR^>{s?#yX_Q9`!&E?gkHVvg4}2E z7+wR@QaLNRy;ohwR};Z}WTa`1P3LxUYGsBAqaT^ZYsaK=dx~00UQ?b1KjpvC(Buqo zX+RNoyv5uan=KA>w8w+NFf7eLNX`63&KvK58E@A{|0Lzt+!Q1IwESG{BT#<*1I@i@ zWY?a6mplNSG#!0pa|ySqNuFC2BEyXd7F{s#J#kLDOIfpHif5~oP(jh*K+7KKHN5`jb?@Lw0&P>BGfCpU^Ne?>yI1JwJJ z(37-=?nRaN7-juPt+PBk8%G@;IYnmPCEjj}XTPhR#=HSmscn_`n`n(CgpjXwchq~t zT?b#ciT`y+H!Rbzhb@n|jwL-SANiK^K;^2x6M|VxC}(i&rKS-9eLF3FLpCY2DZ`P^ zrEg#S&s+TW%lzviF-@F6uyt2>yxkC~WiqbDa$ z2czWSk84`mSscY4ZI)7ylB| zz?zRn&!{KHXF1;aEe+Iy2EN$YK+Kir{R{8yzu~FXch_V#!Kc29P4R+S>VKZ!NFbe= z5xgar{`7AW{@;R*M2r;^;DQ8JHJ7w+(E1%cxbJ+C>tV||$w8wydh52AaYd#u`ZwCU z#HpX(eo*qNH8u9`U&rLF0GhVMLR#gq%%SHc!H3NcA2tP94YMh+^4iDn#R^jX-|qa| zx^xqDA$8#TNuoj!cd80&{I5F+p*fiZPr=PmUQ~9VqoNKPF=mEc|8b_(^`&|=o4@~X z*|EznSc{k6KF0neNA(})^uNEt$c;7t*@sLF9lr~6{Je)^1wk%-?qqj3kE z|JceyhUVQHX!q*-|!>R@OR?cc;NnDFY~`E`>*HajS(ZhIXWm9 zV=H*y-5B42?%xFW-}zQxYKXs+fFhd5kjff5854=|&MmcW-Z;xwAM`pVGh_L^ z zv-WrNaI!+QP3v{wm=VqOjIg?DGsOhR)qESzEaBt8L>nx!n!%yB+oa&LYQ7NNkedIs zWD_LlOI03T6&n?C&z0h@v8O}N`t+IZT2UcMv6K=+3*BE|?>!xEGXohM?xdm`Xv-!= z2q&_q!}`E9+4f@N{ZFGVCQ*9~DE%^sC3+q}3|lpC0TF7}=G~-ES_fCM3ypSJSYK*E zKEa6Ce@NO=lUC*hKJjgr-&F(wbUo;NY`158sQo}nxKn_O^C`j95b5$=PjE<9EhjqD zF4MkoV=6q-7R4{u3&-tXBjDQyl8Jy>{e@MuLdLVuNSJl*PvmxX^n-ZhC4?9j086Y-?>cyI7j{FYOk?0}Zw|HoizRwB z#pl?U8jHuSd!y52=KNCJvgMBk^LxGrWB8x?s`RK?B4AJBue4??K@5>atsb|m4>LsJ ziydF~k{Vt&_7rR3<-$``|6bmA|9EYMxgF`SiSvGA*8FXGRmBf#yny8#=p~68x<@l} z8Gy?yJck*x5^(pS?ymUKS3J~2qyScCacCP@O&b=zvR1TtZC9MW(>39jPX%;Wsu#Xe&Hr-JgWPB)Xss}%E6MjHmF&}S5tAyqF$iivS@wJ zc`ly|aHy>?Z9i7=q&RKV8$=Z7NbGUHmp+VWCztp42avyc!-$x)!I-I(w7qTYOG!>n zXG=*%#Wd1zzOFaaf@(9|vT3ub=K^f>r}&^WFgS>>*XB>sTz4>gd@HzKdq(9|Zb$jx z_vtpi1l#xRY~%2-{15xVVc2g=Tx52?O-0%6am%n0s!G&I0B}dq7*^sS+zT2l4WcpQOWx`+d)RfW1wYnCuVL7x{zr z;|A!jCB;aQB8WhKKa8vzuy=1P^w#h|yMkt$6AK9oeO-80L&NR@Jb-n^?GjI++HJXw zi6#}?dVjIA*uvuCw7#$Po-`?qfybAFf-dmzt#mxz`yU7EhIstu-I0djg)moRTG$h0a)ry13WWR=l{@2Y*W z9Urg+QH5?8+Ni*2(Iz*l2fP@zQW?DckjkDk5gkzxn$VL-OQFqG=Ckb<`V3wFiuzFwlvgY8Ew z;Q_<)ddk16`b+UO*R%CxaF;09(PhpjmWZ6;`$*Jy`#@X=&DE~U0k@X&*`hV8J4NP| zj>F;Q=*X|~xlvC&{+*n*i6dHs#tc@)cRhp)y%v{*xAR0mG2Aa^3y#o4;KrnP9T3zp zSkC(347em$$iOhf+j|fth7&hbi+A_#Mo4I5k(!|SjpzHC+S)2@jxj(;WbFlFy5eu% zC+5gLr#>2Nf=?JA%W{wYl%A8kD9=zxXNJsX8Nb+|f0CVbQ2)%?D)+ zjK_G)+d(Pp;#V74TJK*{r0NDeGAQ=T2CSf!eGir0dSKb)i0J}8OvVWjA;)8x%Gchy zYAHK64vJfZc+M;4=B&^+uekMJ)tfxtx3PV zukD-c{w#WJxR$){6;lMH0W9|V!tDcEPL0Lz0Z=u+z9$7cI)fY72T?a4)Kg*k$rR%2 ztHy4BUkJ1Bb*=6`mP?!{{>u`FP(`+-p2Qu}zQ-gl-EQkoV=(vh?UVgPPc!56*u$9{@E!x{SJhu0B6-1kIW_atokINwIAm zQ*DN~eE;o8UH^Uob5iW$b)9%USxeZV8X8S$$h?I=8fP;<4(0C+B(e-Gm7?oh??*u1 z`+BS&pkIN}no&|#d{xhxEZhAI$&ib~`l^c`sjpo3G46VQgWIu^uTQc#R(}W1byyf3 z1jkFYv7ti}=N&ItI0Gr|JIQ~sN8e1>fFD>-eRf$Ro&ztjQ?O}_i!Eb?bw4!moKeraS;&crx{p}=u)OwD>140K7dIQZpU!}DF=6cJLljy} z>Q#cfgH8m1QEFCG8z%&yx<&;-Z2Z!SGHl6!^gnU_n$bNiDP@NbKl8(=|@h`2N&dfh}<(;C}@Oc6f7g6EP z18GIv=X;P4qE*c0C&dImQ%gU2_3$@hp5BR-gh{tQhK`njjsV)l%7QvZc;*|kmhcF7jE4$aRA^FiZ+m`NsUOkqIEz4 zov5n|-p^T+Wj;=R2`G#@n^#j_w~D{$vsbnMHk#W#_YW*UUeI&15x*V5dUOZP$!@YS zT&&A(ZOYxo0uv%5v6ECvhO6^wC}g%B#9Ai#Q99!v3%Kv#2C`4NwhNP$jIF?ogDx88 zRstL6y#v{;b6T$AL3z&fQHOn@^ZWa^p1W9Jn&(R?ks-xolD`aRcKh9v@qLqL;0ML5YF}OEcQ` zzrN4eT(z!V=&ny0vw^FLDlJ%Ne)rkffy=3V^jcO zImI^6>EUdb3#VGtb1B=h0B>eekJE4Uj5M55ojTKQ>{@;=$1B74ny)nw#=f`YQM(z6 zYm2uj%@u^7;Dv=YHI}s=ZMZFp;-86W5}4kkN43IUT(D{*%xO<`BO@FCH+PLs&n3xLpR@+a)cq(p5IxZlL} z=q=>7qG8?(%zSPad*pkbM*S2^QGx9=DNBKi_};#brv3N|pZ)9WwRCWLH4xdk)vH85 zdcl3^tDUjd+fik49l-0K9S@g^zf4t@(xspKe~7jrhSaH`8SSG&0ZxQl@r}u`?Y0*y zY{SkbodRgro#0bG4kHnnTz)jje5h@wkVMIJ<_Bh_OcVXK+udQ3T`MUhkU`h2!)C$k zp((~A`sJuV0BBZDc!h#PGB*qMYR2K{+t>uocC=0YbeN@>)%hXq+1c4ZMMZ3%w=(!3 z@;(K#LXN}gOew*`JNXHli7Hfbg&laOGowm2En-!V&%wAcFWvIu+sw*Z0^zj|%2AXA zikQvkOiY<7WQa>?c67MYoa4H;dElPgimBZ34OIuDvsJ6bC25epUr7o8@<#f@`Z z`-8snU<$hGFy@&Jau$PigTjJ()h?29kC8tgQD56;y(vo8TAYz=Y27KTPCJolw(r+X zq*ZJY(Uo^rWV3n+b?z~g-z0HhshEpfVcozNI1QB)uqtj?kf}UqTyUF7t}6@iJ5qgx zu763TS9vRsT1L-Vz3&#K7{uTIqh(xp=TEu8oydzzRi&ciL=lF+?#bVRIb=*?3)M?W zB2{$5=PKhvqbZ^ySU=4!n z3y7}t#`QN$FT4`!$t1;XsMzTIUkw49z9+*Cbl~zUnFArux81qkcV+sO4ahzeg_bkL zJ}5t#48A^oY@lYvlb_c!fk^tAsrae{LoQnzG8Y7|xU^fzjB>3A-P-o>q=%;bd$h=#^-f!7t9D1`?iOv^HERc@6;LLeP7XCtVrB8jmo8XB=Hf z9m}D8>HNb`g_s-M<0Dj}#rnm2F|~J+UhVK`!K{^6^3U`J@#T)5iIdr*tza!Dg{6|I z_^}6|utc@MhB8=P4{ws^CdUnKz|fexn|vFLeBA2LSvbP<732peEBFh+BhIM68k0cs zC$XaP3x7l58+}S?%dEF~Uq=`4%q0a6BZi(6z{Q%C2)71@^wddqgBRSQkSqAE}likF_W5=`2ZsOdD>4?=_ zyGMID3iRWk1h$}vy=!0oCXe2UjBy7C6_U3Pd!P^xs4&h2w>!*5t2VCM)x|1_-wGKb zXAq9>&&r!Xietix=GBdANIa9x?P@uLT37s)1iVKOlA)|g<_m5 zFYp1bmtGonStPEs6P-xaW9jco0SxL^z7yXR+j*GlgszG)t^TDBUl3jk&$F5sS->7M z--5US#;D)A6*q2J>?|k<{Vv#tTI^7MYds)|v*z+Q7(TbTXQ0t=S&>@da{9o3;T+=JQbqp@avNxC|_tXNdJ@gyorNX!XV!%%p#S0j?KlzH%3frvF?LkX7-uY zJh+TK7>of;U#{oaujFNdM`L_6^1gTrCU>s%+sFoD?|XawegR7yIYq&K!YXs=@FeOi zUT$b#IPyvXE)Zgro-g@N*N0$6NG#KFqaw~smA~GqQul-6W^-bj3q1oG1UO{`2VWsQ z<%1I=OIa@$jFhzJZqJ9hSxt}til{IL=I6wSKyNpn=7xZ?FN1!PVYWfgbq0LV2rdjr z{Z6Oo6K)b|@QvG`*{d#x1=)sD{A6rllT%Fc^;nhE?zM+ylcy!7o; zX>tknS3f<-C-A9|U`EuD+V59*qU$qI+&*?_mzCD0p3MMK%k6nFJ44f1M-J`;tG)Di z(7Ys34K;JeNK=hCyc3D(sNhyfDojTyiYqcD=Z)6yID6d4me6P-xgam$hFPd0E{ILLTCn(w%y?Cc+4gw0hDiGP+&grSLYA#R>*Aiv z5}+|{$D@6&Vw{~nv_9RV*_iI4Oed<6Fcs_&=`O3O;W9)fp_;hW?S^r<(}^dYwFtm> zZdlEKpgz&QyJzLI8chqHPxEM25u_DQPyqvWd?btj#^K-cZL&K^2+Gl{L}qay;VcEm z?vs1fgj=|h&OZf3V@5|=v>aXzH-UdMDBqM*vw?RTMbIpR8ozHJc9*~Zo&M3yeBx*v zsO|jC)~;A>CKgr|E{%a*ak;+?Nqbo=R^3x#!xJ z>#}q=z@_)_?Vb;$cZSzQXp`J0n|Pw{qdw2x?5?XU@?D379l&HLR_NoSENgc|r+$XDqBO}Y`8r}?gUY=m?owT-r{w$?? zKlhg_i^`&z6QVG^?0P=9BRKAUP-2#1=EIcB;f3YKb^&Hol3Wa7?qTP|DA4o-7GMmy z%oZE6kJ+f{24m;zpL}SSI!K`9&1=IRH-((xVf)KdBPyzjN|geWjZM+IO<#o^Ufit{ z@cy(>9n%(Fhc72Ly|r!`I$Sh1w$ANIApkwis%l--q7}~>T^K1&8t1;8N^oOJ4-{c4 z?;SImH>9J!D51Nuaugj+eV~eh(w>K0soA?0<@N$6$3gH{pV=n8pP!Ld_M%NG^~?%U ztWe+gYbUMYb5=oUq%6h3g>J52LP1;P zP7it9Z>pZv+T2=}{32In9RWk5mtSq3j-`;ivA0+;&ZWd}yGizXl~Rc)!;+!i_&}1mGkQsv7UhSbWE{@i-WM$32`({+ zI!m8V?&`}$zd|T_`8SDx#5ApYkDQAW%%T%-q|QPU&@IB|30@#$2a>;u14r}0 zQf(o^@^t>Jc+q6BdbmVl4ar4^-1OTlXG4#le&21>;cwN3+BmD9Coal@88<~gl}t^` zY?VDw?cS8TzN2cWIxE#rYU8;jy7s0_A|cefW76VI}?^6l?W& znW!vi>UFfFUWo}8Arg8snI-HUaOgk;X|H8SQ^4w^fxMeIgc?22ee2L73|$s}6{kS$ z-CFtLaxsOBn0V&vpo8R=GImH@)Nh9zPXBG==|qHxh_8kk8I1B@oUu+>jTN|;>j#q! zh(5+#*>?xA@Wv=z*n>YV?~^epEMJp=iYaX}=`UypQ3yj{U8R-E)|5vI61&H2Whxwi z6GhP3UG?%9;_#h+L|wly_cG+U%$n$Pdzw=;q>BZ4W4{G`c#0V%TLUf`>mO2-oa-)z z9u@kmW)1`aL~$?9T)?9ylO>LupJ}2r;zbwrQvKWQXWSz0+aGgPN=;@z&MMJA*NxAt za$RZpPW%&Ja-W1>o!MLL`;0W}8&c^l3MQoI46bwK8aEKuHaveVQNI%S9lqt4kiOTy z@HmfY*x=wzyvhLf3(DUcFHW69e$12^qv4E^`ZihZw15iSp#+9%Xx{**403_$T{Ax8 zI)=nF=YxN)-!8DK+l>$xk3`m&&T5!@uU-od@Yctvg_QeG4`Ei5ZC+y2dsmWtEPkYG z6w~s>ZfW#p-d2|o!i2PsB6Q6GChDBKsyNtBelWM;dzkQNH#k}C*_IGJw>MEnAktIp zZhtj4FAtC8z@ZC;)$Bmf-N;kyj=LAm7RU{1VX95(Iw`Zs<}DTg9<>?_mrFLzU*RwX z>mh-_)Fohks+Yk~z2WEYe8@iA%1uYJF6R3!weLkg)V7+nkx|Gk#s!h1(1GiBx+uL4 zcxMaKIsKMb*5tklJYMn247aXVv%cyrtp+FpPWZyxM3&3S(&h-HgG7rxQXFf35%R+q+;;{K9Ja zWWsH5bXQHK)I{)mQQrjyP#abxYp(6L%`Ed-7u}D%JNXdomfoTA-}@95&QyHm1$2HC z><1uHmB+8FPUlQqz@1e?{j*w)$4pxA`l8{iA zBXrBw-cC7eTChg@7qb~Szg_aNu84eV6^2agnMUvrpM7bp_HEKQ>ajM*j`g!KgtAH> zEi*aUBKxAyW_#}^_u;Jf`Wn>qDANu(K{(ZJ!U7;RW--GwRc1crag^&LyprZkiY_4c zgzI-@Su>6HXM^~U>Tv-tbHm+&RrN_ROO?Rf5~z=$Ub zTn_7sL4(}ImLdB%LkxuukRR`cfJYJckJm!zGFza9##lz?Wl^YAlH5~v9I47G8pOHK z+p?7##~*jO5);BQ{FDevfF~!z>V!+Kk)BwcXzvA#6>=(eQw)bkt%+_u5%<&yCXsNnZrVygAh85?RpDGHv2&Lv0ZCUir@> zvH~xiw&~GNtk||>yigI|Y_h$4eXtX23Q~u}k@J)RB?! zH@I%EN^S14)fWW})Vo?FJksj=>!x|k^%7>lnH99!Uc;1KhG?Sgi+Y?0g;Jj37j*R( zJ`_zbH&b|~WHLaLyTQa=ynDHX4(UgK%4?YCo@}f03Cg)IZN%9WRu-dO94%4EJCmy2 z8|BLvmuvXPRr&ccQ!pmI3o(Ea&S#`ZMt%BXbN(vmNYzmkzkfRU$chF{-1iQ&R^0ln zN6@xYL&-~pH&dV}_o0k1i28A%6Ui^=+wTWlXT6CRSl(h4n|^_sVE}!!9#}q^7#d;> znu%yeF3h5kcwgt;bYZ-G1C`Kumy&~?(x_}_1kK@r4c)Tx5i3lx^GUjZ%Z97wlBc>k zr}f@5O?S;3;k+0gveZ_R_o;pGeP{{?-0#9^4|>m?5w-D9IGJj#M+{a9CQ1=y7kEjw zq4xg#$nUBel+4-^aE6wH3R7p>)lVN&grUr>b0LrsB1+Ty*k2qvT6s zpENj`=tp4=;mz16{fPa1g^vDn%K{mH)EsVs()gZmj&~u86}YWH9#w<6-5rPFGw#lx zKL7j^>OE)HfqLrZUFS||*=elVg!=DV(0SgH*#VsH0}=GE_ib4d>mxEZ!S~%tYW_0h zK}JU$m38fM3wq2T?Wb}N#CHC*I9JA0h@5dNuHGR70@NUN`qWc0)W>&828D)tKlSf% z#vj#W4aJ+i${L>ls3rd-pCYo~4(fBI-OgvvIdP_^ zW2#spjrxiI5G~5{&|NAbi`o=NJM5H$-B-cYE)MT&$vSTkiend!R?7o`3w!z(t6fFo z?j)YKA4yUJRfc^u9$^;6L<>UwpU+7ah+Pp(`*oompcKEraSS{iSj7Dw6ew9Nm5?_! zElojL=a%E$l_tWKE_vOBnV+LMT7Zjj;v3~f35TX50<4imch63KcNmxENjFNH_2+|7iUm9`8QaA@x*v&m8p!_!_?SIq zV4ho5b@-E!iw*C0(J;kR7B8w6k1b1dIGP4?Um7;cG%~cxDZI|%ikq9H3FpD|YXLI~ zi^z*ovqXNvjI_et{$%}KPBd`{6wl&?$1v?uKq~xnT*nqF&Qm1mWv5Zi>)>f38&C1J zNVIOj3YTN%;fZF;CC>aHFv3KcVKC?T(=_g?@Xq=*j}{dBzPwwhaUy)iDq_m&tFFA( zc>s0!1aqrA!b~0WDhOl51WJ4)qxe00Q!XBPc?1zci-Q+GZ81v9=T)8CQy*N!8^i7v6ZYdfCPYEM<-Y$x@V(NY|5wQ|t-D zvb{3J4~JJuxB)Cv>69E7hQiXiNqyg!Bj{YkQ1tZilpa1LCIYdAhvyh*Y%`OixJCl} zj@Pmd7q3&9N(1d@^lfUZ+-lUdGrlkC6?I&N<62+k6gSG%!1%b&_QUb8=Sj%LhE}3Y z+s*XD_a;&9u?NbpH^QGx&y;q?-{-3Fe)CM(a+h@{Jo+1zyf7df9IqAh5Z0iX|58G{ z)JswRn6L|m<@3dI+W&heDJ}BqxZ`!+NcVHIA^RB{urJ>95p6OD@S<}+=olmE@Qeix zZ!b*0jl@H}EV?M<4P6qKy8|)8eU|)KiQ18F|FnwBt>XH|GU0_>taaeJalk@@;4Mf` zN_0n*WK791)P)y#jZdt9Lg9+;xWRvPm-(W#I4zCRZpr2k#2PA@)(Ix@5H{6BcEB)b zxa7s{=|So)?=347cynJRbt1wj?=ANHqkX`9M1=gl5N;Fz<2*^ zQobCjwXB+cCnXVlCtYa60)E43HN)J-Ph=G_sJZ^4hs>v;mc(!TVlQkvKcYnI@KtPX zo$pN77u@gmqeFUh`Zz~RM;&i+FK>n-<9ils3#Fhql6}EctMi!RlkKRv0^3OE3{-nzF`sjobeuufDLGbS!&^rnPENuyu6^IS-~AV5jGp(5 zCw9pV;-PzGpO`-MpE!+?wqeiMhZSJf?l&2pu4p-1>i~?|2RQ?ZjI7VjN4Dk7l1?qi z@2}mM*ZmW3uZ$mE?%p5FlSKV$v_C4Zw#1X}>)%yP*xYXu1I|N?KyN zz@)^GfZ*@=4pi+tbey@r>Vk<|T}$eI6vCs^HvPqLIKc`lt>E+;V7GtP!;8l?SW&jx z;@&mO`9HCLHs}Q^bU^3jNX7G?iVovM)zPl+Rj927h3?CgA6GZga*C+g}< zCCx>B7P}02;bWnG*!Dn6K81QGn(%yiK|$Sh9-YW(NBvl^le0T0+n8AP1_ioE(++OS zcolqi{PuB&ge#$VXLb0CZ4{OI))VgFUluMi9JKRPq^IG(R=!tYW~$iwhHk4+&GPEl49rdExumd4CXJ25MbiI2VmW@o{8tGBU?z8`t2$D1 zaYl8hII%ZdXH$0M@a|{7;Fo*dy5=4m+Y+IqekN%$X4B{hr{=HtH!wx2QC&2RUqMtn z$`}a5vbNekh~+dt;WA&>UP%2)5~G;agU0>I5%&>21w#cD0ZE)=<&R?f!(;7mX1COxYN!3%o+DM&6?fo=hXnMjC zD(k;Z76wSZB6-Iv`Gf#0=kFo_%eST%*DN`g+zwtkId`eVY9uzaR0g-MvW0YPU^N+F zc&As{BBpSA>RvRGa6r&q!Qqg+`uBIM|HvS*>fRDK=cq}0#d;&`-P2SBTwN%yfRWOK zxzlnp{wCf6dKRql%#;8oT;&>`#{J4wbJN|~4iVm71VXawnC}l4S?^8ZnRuL%*IP7` zkpGXpyAF!$UH3$fOMn2uA-EHugFB4`cSx|{5+G=R;I1JAcWvB)yL*DuxO;GI+!~nX zxA#8h>^b|MxpVJK)va6eCskb(#d_A;YrXI1`924rqR>6j(W{0%pP|{QpERbm$Khaz zi?=UFQ@ro^3y3v9Dn`X(CGBrD_?wh8h*!rtyku{7I`MZ}$O+<}$|yFAL;s8`eFY3x z|IvZ%EFhCZVJjA%zdN7<%Bj=r%*?7&jYP<$f9}p)N zMXn^Sj?OW4)@0SgIsy5T4t?%mOz~>RYA@(NYv?&(l^9U_&7;j;6xcuw`j z$E1f>pNT-`D%LalBVw!mfzbx72!w?i_+!%!D}!7X8Td76>#u)cVfSdWDEyL@WNCoY z1i4bAH)U16@A0;mjMcpi&?98A$~31q!)Kos`85YqiP&3N)sFCaH3Sg<8X%lSCNEZy zlj+zjpV*swg#LWyjB`!*?sw}3gh`kQWl5TdETr#Q4YA&|F?Erbb2g;~Dxw&{|1$SK zG>(G zp9NskfzKcoeLLF|LAiX7OXy;p*`ev*|GyLGtC5mnR~0UPNA{k#wWjBAcbO zZ$}k6ggHp`-q+nLR#p6d)2b-w9Q@Hr!{p2JNs9lz=Qp1)nw^gJ#m6WiM8MIw3$dpL^ zuO5+X^tMRL3B!B;a7x1+<^M-Sx3`|DgaKSI#`~AwM0BX*S`DfxG&!aM&3{akA#oDC5qbli|57@Aly@GV_TmrVNBP-X5j2A zta%BJJ@Q4ZVz>fJfAHsYXp@@HSJ-HA|L@AZLC z0vzYsdHcKTwqEXZW9gZA+wGF%|7+qM^30YY7^HsKsjI;}t-*i&rUB|`GP0m!KD=nR zOEzL+eiYgPZhgR?*WWY^QGIp3ibl2q1R_RQB`pD5;Xrkne9pGgb5$~sihe_JH%jDCfJLlX*{FcL^a5&B@ZTiu z4fY9vG!@qzYFq8-`}gG`=UN#${E{Sj(N$a(J|>6#iw=-EruXkHmC>rFD7|smTa5@< znGg@SAX`#$qrh9~0hbwz$e<yew4;fBPBHPgW+xuO)}YSdeA*)_;nSm!>%To0FoOx|KTHL} zziq)Y^yw~#1I(IT?&Kd&4&glrax~tRyH0FKith zV~ZBQoW;2UsFNsD3R&DqGz@rO@2?KHwelA)8yJXUy-WUkgow?lq6nhpgskjNsOm4Y|8q#lf;K^D{{RED&jDNTL#nwp+URo6!8IGnm z3B;tGYK!3hFi*(WL)4@+-%!Jo$HVcqN7(U9Uujr{PwvLbVAO^`wt=gBQsT%^#gn$U zxR}05+ja$Y%QmYST7{+mM14aasMx;i-av#Hq2rJ*#dTh&zglg> zH}&FH`)qhX5~9qGfua0}Vn=eTmGP)4h_K2oGPL6f@+9-AT+fBHwauhoh@)k;nMPcO zTqL}1g>*ilVn5j-Bqk4OS0gbTcTiHymTU3-W;`fPdt z$1n^X!`N9ti&$OOR;NW8(c5s3!NIW!K!L1B^4OUIxGHy6gw`otD1*KldZYQ=Y+=0M zJiQxb!Qg}oFCfvEUf!ac8Jtpi4%QxdL zg*wBr`tx|yTG&=nD#DGx-1!O*^}b1Ph{2o(k%4G>wv zJ-LYBRBYbAxiQqp70gh{DA@dn5k7$Px*y6XEPg&N7r2JO?RO$b|MHgH>(4G5q(r)7 z7am&mP+1Hc3*RLSyIc4rJ zMcKO7?B|RX7uoFxSTrOo!p8H-ljV1@)`cluYRQj^6+Lk#^chk$Xu)a16i zK_aWoumNSmMH$F36}?cTdT}W}B~~0*Q&wjG2)FcCbmx{ zE_+^=ExrEr?y|#TZ-tJ!wyOu%Qq6_wt&^s**DgxY5XHigC zud_VvLJ>U+yo&O4DNeDgKJ?muG^Q|nQkXvB)gid^NyATZ z;2MAAnomNMzG~0)Z<>0Ns1y9!kNksSkW>3T)l&1`3+;L;Ny-_boj|sA6v+MB;<+g1 zHPeO`pZNZ~BZbwci7H2VAp#qucED0X)4A(-(>dcC>gFxMqPc6Q#)>@-{$$dC>}&#u z%g7VSWhE{Cs0Ffvz@1DtOkL0dhQ6e8)l}5`?)@4dLXsY7FqW3RAI9*TLUj+Y$Rp)g znl92fV7gQ4&95X@5>hz#R|dkI=#)_g7-WEIX;H_(d*fNKL6F?t*O5fqS+UQnT$Sft zebg%n2sizo8*lKEIHiF&_h1a=*lX5s6N7Bqrr1s=`#Z8 z4vICUnY=nuL%F6RAu2s$FJf{VaOf0RxwH4l(#M0(nfYsgkDX@Iok?TKoo?e*MR}#+ z1^*-}SlA0FTx*T}UYaI)e?MUQz}|n+w01PZwIG2^=fUbWq{y5-K+VnNetBPEL-v1& zsXvs#q}~K2+j2#Q73RPn9aS1?f1J*S+q>QVWBZ={pJyVtJK~tJXIm){9s3MQNE0x0 zT&}3(R`4>|#Isa2&YG`h9MK#QoiT79)=IGp;;Ls2b_awq2F;1~Ul|5m&`O>wqzZ2C z4lIUyc}Le0NhyPU0`B3Pe8}_Z_rRMDF|&cCK#ZD4D+a;bmIrK`oPz=;Nne^VQ3$C` zt-F~T$%QFMs*)?X$f8A4p!WWn1(XiT!lyrw%+vy%2{eemKG9ihUu4FvfW0J&?NO`# z5P(>(c*p#Rh}cVWe+li4`4}t!v8TKL&Dh`DizHV#xj8q6ed!KKxP>%OEL)@^{+A|t zr(;#zKrt##k3DI1*lFebTvZQqo*sA8wFJqnr;fc#>P zSI^T)!vLYg{vw<7NSEiv{XBkKR^H~SYn5QO-refujMVN*_?L&KwMu(c?@(8E=$g+zUYBV6fU(c@D4HBS7CnNb!KJ`2(Z|e4-fj3D==2 zH?Cvb2!#0M7%%-y*LLh@=Fx;)zf5>ciHyspx1PdfZOmt~Wv=wYeY@s{WgZnt&!_}M zornC5^7i0U^viG04;=FmBCT&ki3P^fbL{Gi0I1< z(P6;~ulls9>Sl8%V6@k(OHB~%Y_CH4NJIrhcUjh>hCu+a7Iwzze@50hnzulU_wIkO zg681E5Oi%n;!4h7b~e8&6YMzb%=N1Fp;7gQe6auEpT3Y)ZMm8<>JSBc9j1?f8}@>G zk~xNlp1M?5C9xTJ(!1LoHiY;+UdMSCAlvly$A!SPH%A}wp=Q$EGe(jSmTq-Cey$NC54pK&ccOd5}gKA}O&u3?AOSfW; zATwMjY$^3w&e|fNcQGwU>I-e&$eA;Up8PAOQ**MJBu1F)*O>Bm>9xFkn~2_tV$C$) z#K5HQxBYPolYqtS)~fZ*wrcX2d)-v=y1pWU?{=XY+DI`h?}Pb=RH& zO%60yaIgQbNV5r5eR+PMvumH6Dcfws8Pz8kXr}w00nGTv+@l%l5G~{ohfuN%r4S^G~*f zXduQWV{1wRM?&c%-H{^gafkO?$D^Yk2h+TMDw20f3sfk6x)bJZ_vC*aBN1Vk`FoId zY8j?zfF`M0q2;zS<>3>k&x=`LcSUIivpYRBC|2nvY%bM9Q-Wnnl@MIH7`paA4$d3VV^$$(X0+XHh=tlDXMQB zRSYbwVFV+ z9|?Ai<1Lvrvg;(u6=e#NBbqqIgsiqNWaO(->_EC7-CEM)HD!M{%llKs-CfWooK6*& zefVNoeb2DeYwj9)q}W60(Ms#Y&h%t}x=eGhk!15vos)hYnIs0eI6}CnsjqWrNi>LZ z*>4jivWSG&2&hNUHQ)duVjg$5xz3y`SwpIeHjgw$VraEfF&kbDG5;i%1F{k;=;*%e zS#4z;-Mu`eN5bOVgLf%}6V>=$4UQ!Q8IC&h%@)mR@+o+At;J;eVcb-z;1a=xwpvZF zv@TUHWPOv1HjO$Phl_tN@}g7sUz_FSF{^$qoE<~Iv0HVlYfONV*Dm-y+Ed98cvk9G zqIFMv!2s#LcH!AAx8ZZ4ye$BO!p@M-@uWxGgcLkyK(!fGKW=_al09v|*Q>aKA>WH) z3&4w?a_M|BXP4iqsWj{fMlVsl_6rj}g`K0&y|S+J5f__8vVE=~nv9!sI|~!`%eger z+nvcO9`9u%WyUCrxg$x)W4MhFd59rPCgp_%z~>;awXOdi{Zoz4-B+%Yis#dGSm97k zc4HpZh|v8;`8-w2e|4~Ry6JdZ#YLZFbKl22K^t{8a2G~(DXuBnhQ)G!wVWj@q+-v4r1BzC#~6lN!rIQZ{j54snC3SEdt0=7 zm$*&A=l@9|1OK%`Msb1F$`?_pN>F7_;~0j}aqV1eGnO{-*Yj#H?+pa5 zk+|GvaVcSM-T@qsoW~x+`x_=X8lwIU3x-l%(VQ?6e_pZCRbo2OJEQbZovKla7i)43<=<(fA`9Ccg@VxBUIH&}X&(uz?|5bz+>bBzWMRp^gn{EbNq zNq}pwHs`dDHN>1ELAc#OyH8tD(3W0*BM$vLGN$wfAVCsvZ~3r~Tq%PMui&9R>fi#c zZ`zaypL!ejc3f@pc*t&#>l=Q2Pcqg;qjPu98k0l&ixpBZDI>X-A14f_P>4eO8%h z5%A?6?HJWv$G~O;wt-;;fQKU0*xB=z6(n9+kaGAozJ2+t?U{7NU6tf#I=v%oqX73h z<@)oj>ohNvsZb)RD33*DFk2f}F>|y{@hM9QpRpU(T=7&J0;%;W5&8@NXkQ(*6e$Qx z!`2aX38UYLH)NjH10sEy^vi!tZ>4M#Iz<+x`!ZDnVJM*jV4x6q*L|vg(q={0X@N1j zU9du15hW_u?!NmjUZ`1mL>wgyw#&SRl1SMyzqZJInrFnb zZ`yELhfHm+KS(^Lo*~dk=pNn>P+d7QIrk>}h!+kSx@kMp1!MTSRq3P6)G5|*x3Xf` zZ|5yEt$cCDGT=8Obp9g`{(!=m8GHa!!!LvokM5Xge~t*jV0m+=WHx}*Y(K`(McV@x z+-Qmvl|OR@<#H_a%eTXD?ycfC|HdC2Nnl+;?5<>CBILVIUlIMgqV1a-!?4?nEx|c4 z7$82!{htHGvi5QDq26}`ZAutQTw%~jXODaH#}aVUU)KELpIqny%2{>(9rgcPKb+B} zl7>)om|4?GBf1jxYtOJ$qu~1%Qm@9F!Iq41Oa$JDSQj>05D?^9R^_h=sKD;=VAzV?O|atY_d zUPw+!qZAVSxdGN54DaP#lI}C%{2p_|p8m;x6a})k`%UmlRh~$d8}osce)6S1Q8wb* zPgBOtIE>1CIePM!F^4pyA&?t(`?xUTtHCwR0-5_#Ookys+156nHb zdZBl6<|9VZY7vo-h}+XI<-%?2UwM5)oP%Zs#X5eX8SC8F9}#cRe>d4pBHw>~hU2V_ zAV>~sX2BHfDMI|l(^zfc+uj>_46a|D8aJG!Ss7|52#a;;UXM_9zdIZ;(YE$P?|VCr zcd*`0*jrG*{|4lX|EPI3X!CNdutkpCd(Pac9&w6v`^VQhr7!tzNyx5xLrh6&wTPVs z$fsvw+2L%k5?DK+-@>kT&b&?(r0BPQwS%pyj@CspR5&BS_*)Lem)vJvLuC)uBG>EK z0zpK`6W^?%pK<9tGMs;-hha>DXe7cC)-2G>qtGq1MYu97SLf9BXP30qq5qJ_h{hZg zKw(26UENl8Cp*;*s|Ul~W?$i7uP|n4IjTUWU87Leo3ew{a%LlUW*H!teYh1seWac$ zA6O$MUU?DA=huej=26k0*X{t-;dnsWS-y`UA}`99gEb5M01CG$7%2{HRbi}IcsBa_ zFKG4%pHG~jyKEP(uy`GCUy8{AKrYes*dvJmaL^sq{4@Q?)ieu)d}h`wG*|>8)~iZ3 z_qtx9%mn2<=Bi(TX>TY|+yFu)6t9LkAEBo9-?cRKg)PEgB7E`G-O^%-`L|}rj!YUo8keYfhTUoT#e7PkV!8N#g;v^;h9gjX0zPL zfdXv~D~rDgsgTuI)ruym%~<;+sZ}*$emBHF8hjr}G-T5OcH!C25Fgr!3~0Ch_#=F~ z;FU0FQnGgSWe0yw>AbnW>0OK>u8%}tMZq*DW1D3K;Vs>l@g2ROqAd)3HJ6`uBO4y> zIGo$#L^e6rDiF1T-`t}X6nkGjelLEBQCYui>rJ<)*2&?d$ZhyV;@`VWU~dt%IL3!~gF z(2YHr7nzAexr&me-xe8KWZUXho6ZPQZ}THty&Nw!*L50fsa0c-Y$q2j-}?T;?K-}; zq?+GlxcIofE6!L*?$D+UBWvnIu>KMX;_tD__qX59;sZ9UjFSwQeC~0wo@n-Vdae|H zPC{#@8^Z0br!@an*nWQ>ELUK&L*e@NNZ#>b{mprwu$xNYfR(HSW7U^>2Aq}&!b34B}(D(K4*Ef4UvAc(Kr*7$VugK{NyhSOB zZD~&5(fEpF?sACka+2Zwg>nrnjDV(~6t19>;+wsF^0C0_c{4t%yx9->(sF%%d+5ML$^BZjb+H{(y8}(e zdYHrA)9_?+&!Fh^cD;%FPZU>%i1oYRuo@fH)?TF~XaZeU64g^Y=Go#(boNS%%IQsr zu(d8(itNdkxLv!P;qtu5)Ld5oQf(D0pTC<}5ZZQEi#;Bq96NK8zgyL|Yhu9z)K}${ zQ+HNi&}bGRcHB3=%VM+!IcIuaUBdrIjC-p9l=+9my?rHKKyhm{l>XjJtzfEa=3PfY z1*;sEbKJJ>om9MgNrG8ngbbgYW0EZqWA&g@f0oo5F{q7hK7?Z8SeX@-@*!_SSySKlk2Iz88t%Q5Z ze80OHKTRw{Npk8FL~8KYBuG^Z$^k;T^JYi7(xO(+4=nwIe69}b2dc9YBVQSvZ>2ZuQa&fR~BrN4)HTY@ZDVRZ%nAJu+h7CJGvT>W+RsNfC0<2%mCzP?4SwxQA`4L#PAV(9$UBNdDGyTnqkJ~Mt}ffB ze7yyUuaHsp!f(%{C-2rmbD5j_3)HI3dOW6nIuOKzzv$a?IF}SA5Q?3A-jSI8n6LiF7d;(57CE&=zX zsqXd?*13cy56Mum|x0&iutARpv|jli;H~xV2Gf-SKQQ8rY3Znef3Wnzw_LV$y^8bvLp`_ zJae@H9V~|7yjpG%N8B>ijd{D>LAue>S!C8lvxfWHGc;N11c#QN&F9Zcx?}f`=q~G~ zFSa5qO=qmEDD7}km-JPa=dggG~3`^ ziJa3?yQp&m-@?poYKV)5gX$latj8(!M#_@QN=SJ+#e4a`B3}1G*Y7Yo-a=E-LD6-9 zOfcv%-m4w9Q_B#}xHCNz^QxAot#tH$5Un_jCpwb-zL_?W73O9`R{v776;100LiulD zZni8Vw-h*K`&q;MFZz#0^$49$i3}h6L<-Fcy;8}~q&te>h%>A`>AUOWf?kQ2JiY3F zUS&3Sk*kR2@77ig+`J(NjBd*NgkBd1@m|%BiYQ4`9uSzZy;Pa%ai+AmUv%!+vflp? z!SUoqN`Gc;A#VqCAy*WInQsWwM@r~mVczV4Jc*e zngTju10FgJSje%~ddRI46a3O)$-up<0fz-P8Z-_RjTFeAW4Vp0ZtbXes+++9V9&a8ADtw85INApP$AKXozOZNT zIs+p{O6}$_mgUCn7m11EgPYfW!{_$6jz72CAPge5yVqWJ1A={C6(UH>Qdgv`KeelDbl7#m|JKbV@k@zW1%)qz)*9b() zP9yP(#~$>*SiXX_yel`^?}D4AA_>S_W8dH$*bWpUkw_pRP*I5>Jaz8sJM8rSyv4mq zAaE7ync#^QLWX2ZQP#uW{_dwpSRXzy2gtx;$<8#B6A?7gm=MbANV12rv!FiOvM9$YL(n+Na7b38cRP6Ndsm0 zK6H=VDx=w2AMj54Y#4uAJ+EAOQq}%Z=hEYyhH*c>M<{bK$-G}U%BOmnZzD0=h;6RBKFn}@9@binc9V4*kZ0B{MWs@%4 zqegf;x}k_ER=RX7WM=bxjPvvyS_?}Lg@-O)inYd`RIK?bMeI9^eoc+FXJciMbf7w4 zg&>W{Fk%G&#^Bly;`ujSArZL^oj*w*a!?_CS3L!Tb-H3A|3q7b$)D9Lw%FE!(0St& zw=1ksd5?xXci5lN=rovb8=M>QWzMP3Sp_jCF7p;KyXM346f)TEPvfw#Q-9YFDluCV zJn!P%-jo+G=jv4SUpUudFz7a`h_T*6A;;JvG50k5Pm`&XG&kzUmFCi67Rzko!El!E`2C?-eY_X*T+QSX-uno15i$0! zzMoEb{|zJv5np#yl74BNk-w`;7jfs4sT(9P!hssg?#*7a%t^>1gU?88ck^W0dS*W5 z5U9p+Ly}KS|Ee-Ggwl%{XyTh+A6@R@{hC6k9o{7)&q5x~`;iyMXU@cu{wWlkiz|D}MWaT7WMN!A!or(6YS)_l!AAsY9cpn=jH9)DGvf4R=^{N0WZOjJiIf zq}5rCOmbJ*&JXKKPlS6s5X$DP76F)9+Y|DF7+?PKB5M~p$#uYP6C$rw>Q9_uKC-F8 zy=gbo+8$k%+8G6v2JI#uWSOjj*V_yF){H)*g@kB!P7AeTf92C(7yfKtik<1X!C~qB z8Q?tr6;0DC@0BL#0k?5;g2|@Q15wY&KpE5dPPv6sU2~1tJfIb0ogUn#APb&l9Qp z|Ijd*6SG5*9al^AqoYkH5P)wLOdgHmd7r~XF%+XhIv^ff2SB&O>m@OKR^tw2~3H+REaft@+0p^{z0p8u29bJaI}7jY>zGLZS2Kxh1ZR}_WNrs zTOP1yJs=5j29$5*TmHSExn~~H;8=hA)j=VmRBZ*pU5oiW2fJ-8sP7h??cUT>pY%;~ zuH=d9(%0yvhtX)hW-SA1mB=UBww-0UD@r#p5|!jRHe^{1!`HH38XdmOwMli-MC17T zl=_1_|LADz=$!I?#e(ivVar*stzv{~&KlX;V(FF6oH;s4P+csZ9jf zzeksN)M3KJ4z5=M+U!*{=mg@rdb=h_yNJF|f3XENl$)qw`0*)+!}y4RL1NR?Pr+Mv z?j5l&E1MS<6a`;$lPFkZtb#FU3)|X>j_PBGq1)~5l_f5EQl(3?74BV=Dhb9kc2j27 zONIm|ZBZoOTGDv(V4jMYne>bculygVz?U`4GkOB`idDj7d2nw!KGDxKI0z1WGda+I z;ovB?7v5{An#7v~?70ui()KJM?#IrzU>7fX%x2{JjKc9ddngonHo<|zAdFhz?y7eC}-B4*`O)hy4y{9_ZL;1g43vqlAphp`qx#zn7alO%)b~h-qkJGqqJxWHi^c6)53lC)6x9;A zcjc+6z^};=9#L1ltO-$8J}k!>1`^E>T_D^d5_Vd^i#!@D z$C8Ka2Q13f5@vCyUkXN5Wl|n3-J$&XBlcn~?hq}$upmp1{k~y9u4ovU(!eqEHhRb=JsVa!F-EN@eZs*U%=OG!d)iTg(*E??ZADY7|L@F~V6OnH>PdOvLs}R)$t0jNpRm&*g-NfvC;O%`eW1Ng?vg>1M z)@psCfk&H(O+|;e)lB1B3f)z@tNp36b%wNgE6K6H$RMKsrpuY_&@>xO!01wH17K;I z)(;}NMK9+U^elx&du+!RtO9o-z2`5QLQo)9vcAI^y<)NypS-TCP@vg|gkmqf_@jo4 z!OZg59k8?Hg(;BEb72yXXp5Md;#QAX65BAFs{(4#EROnb<0}|8k@ToSdD@!`vdVwi=g>mb3F!Q}GqYwzk!8VkdY~ftbNLGS zG%3|EU~#_g7}M+NF)|msJ1NOx?a-aD_S$~vr%ETeOrFk-4WY>DKBYf^57v@H#D4K| z8(S9+RN`S;u!%8hUj3N0~%^24*M zY3*Qa0iAwYujvd3WCXD;~%`u30XF-DGJ}%GY59HoY0#>U|l&QH)xb`H}=j- zH$8J~xl0&cs=$$EdT}y;#cX`9K)-E{BfiNP#6QZ9^s`(|@lNT(Dn(nuHVF-6Q(kVu zlgE_9eSkS1L9C7`Ah4(q(0t`LO9WR6S`+-qRnB#4Q7WRZ#~)z=QhW*fa6Pa~hg3$} z^KFcfCQ!ssDEfg|84U3_vP>#}sIyR5dH7^Bu^8Y+3zJi4yyYs{ar10%0>+6n^t|#G z@WTD1vKXIB33m2f(UOMW=!$T2-R)#ClMnYuLR$I+pz-tFv^PFl5^(!kwT86YqOb>r zZ*>`^?6jZsdmM@YVq>qhz~5cB-zxFvBSCb;I$WBW0&axe07t%iy?oi@Z@vNj;GxGq z)o|fI6P9MC6TmNJ>NZf5=)M)w2xdu(S+V}9nO!jYy>E;TIhGhDMUkO#{GvPPRb|{D zfxLX-V&;CG~++2OLbCpru0BU@Lk$6!rfn)7! z;PHk&AP+qWbcQk|5Vbs0*icT-~ps*+{dYy`$=hUc#k9~dWTA6?w$?WLOk6Kzo zazREX69$olkLn2^5#uZ2|9H8;m+h{8HxHRF-%EY|M7 z!0*ejOZD4_2J?@BRn7y`Yd0)Q5vMm}J#h^sEkw{DR7if7011M7K2X?~zr{Qq9Vmin zO1l(^ZYDE`i)}D+KjOTZHK^2|pOjflA9ovO#O!a|uP$%kg7;i7!Z~~JcF=%>LZvR$%>sLE3Qm3;Kk$ z1}g%gKR*)h2iO;)O8YkQ$?WXx`r+N1x5J-S&q;3j2FJ1vCY~Jj;?!Y>n{NBV-|bOE zG1h8qy&uePw!13<(ExDe(@5NOC#x6iq}#I|WmWezVa-WCoM>8%?^AKlX$=IG%?|*` zmPDMm9Y;?tf4}>RUdrBu3&Y58ir#tGI?St}PWWDApa1O}(NX!FaykDzIzD^@9`&Xw zlFP18;V6jlz4O;i7a4hNV+2Mm4V|05j6-?-;nq19w^sgE5>a#)-(vO*w^My^~w^M$NmUOp$Kdw9eVGMB&js zOt*4dEunH%?}w_+>CB}lY`tS{F!p1M_+D5G_*H#*R2;({1!*U;_e&BNH2qUYoXm95{p*z8 zyuRX9z88niNAPT}hz}PRj#T#?KQdEx>vH3X@8b|JO*o^t!(`A8Lw|ORwP`mo$s^s7Kiq&V`Cm6g9d*XW($y7z0KI1?ZrvLn`0YdY z35~&e9}#}=hn#0^BeBC~)`HVaM^;C;@7zc9Wp2VHaOXSXHo4QC+dTMCMyCq>Qygk4 zT733^jxlWbUo!)+2zE6sKi*8KdC&T9)pbEfzs_(zgvOVPG8qexX^Ax11PE5V4HHeU z+`W`W{2f{8Jm98DL+d7gv~jsoIK~wI--v02+54-x~9qymmM7O&>AAVeP5CC%Uj4r=F?D7NZfL|?^Np@JI)lzQw zRJ0T-;09fc)kZ4u#Se+ zJczD^JwrZAS1Ej3>o?=E_F9ewHi~1C+v~cAWJCT14~EUq3G0G|m5&Q@$A$Wi`T347 z;zrN%j+*4`ZE&@9`@s3043<&Trt$6HnyVUvVr}r)U`vQB5<84P7`VBZW6jLW7zML? z6E%jw!I6;5y%T?5IIhl1(Q0v@q%0iE1Pl}|DH&pY z3ykgEK7hiXT-E-tSy;a3CyGzgR_j$qVTCtpM`7@xzE%hcY&&{mDl`}Lt*=F=KLX=l zwx8#k7x8TsVg_Ww`7-If^Ik`E$Vl1FDTlMgb)f4Q$M{KQ>{-?LZkl?chL(EO!g6oz zm9%Fpx40yy@PA|LtplR`wzgq9qy<58KuRSAq+tjtNk!?DmhPUR5lKNh25F?bVF2mw zhCxcYVPF{e#@~6L_dCyd&!6|)vumwu?|ZMc*S^;4!{_+;rryu9?l#(+oGnDkD(_YV zb`z(6oHTG*!mmjcJFn@9rf@xom6~-1qgY;WoLTQHmx3H9!EC46rTsABK3WHo9Hf^% z?>K)lN83FUo?JCWr#dP;gxiR}5Edv=$uDk}tYuD`??7s{3 zk17{>yW20FFFQ_OVf9(WBZgz&ly;peGwIC=+*wf++1(pujP(F&`r>wes+^)SQwyqR z-#a_ctKa<`K=phH=3Ej8fqnNCrAKId-4Z-OEfw3KXAyL7vPK-h1~|J1*xWu>R*e5z zA+iy#=z%<&;WM@wNTtK(H6VGl((kntk4Vu^NcOkJZ&q{+CaZu;U*$}kNE@G{!eL6( z(2R*zYh1~oKzy*Q)v#ys*zPOLhpQVB*-K7i+z#xS-nEI;uCh2Z5bozfhVPc^fRJt@ zvYRMnTQE5qamDnJp)fW4B7Oz?Y*7Re*{w) zW*`@06bv}-KiztIyv4Aa*3;PB*Ow9CHge`Lb6 zBfDG35*}5ZM^M%x!7llWV%odOIbkE@PEKHAD(2bXrApETC%?f_YNpkRxoXD?Qm^L< z#{3Y@#v0#`hEfBu4TINgI&3d&vw0q84ICz&%ay6|SMqOzhP97-^B^FZ@vOV&5ri3w z<38JubHlA%i0?$Ofu`twH?oc_#%E>Zk=yE%{PZmrZoc+D=uIL|*Z1cq?@h%|wo}bX z`a%5kBJlj6-R?I;G6hx0Z_mdi&MH|&QoccE5ND|yyCpGMb}A2y6U7ps&M4-oD`lje zy1MbjfpmOuIg%RnxiHI8EAbZ@V?1nYZQj6WAeJ!53v26Uap8qd+4g}eUtR4unr)1o zTm>Yx1cH3*9YR4W9OYzOyIvCfbGD_(5mm}%>TBH;qoPPhlTfZLnn9z-E&13e11CoL z`GDZWGZV5eZ%oc{PUeU^gZ+@c&A^jwV7JIE`qJxW9LXhs7*f04!mWMWz%6+~H;7#a z2H~zckLYhiEn?QWhe($ z|6pl!P0DxaG_mYbOPbp{TH?=L-FFL|V`23!G5+bOCD&AxZoPsY?v*Wz`6Tf5J@)zq zYpUd39=dZmg-(JIp${GwT=w_xGC8Gc4N6Ukme&4OT#J(G5+2)QS*=tuo1|hr$7$65 zGwybm=t?)>?KecN0A`&K_q&Vhx9a`IDzB?NC^Wh6A7@Hz-Dv#eAAD)vYFDx)gjaRM z8klpt$8Xq@IJU?B8HW1;s1{x$)XAr-Tiecvf=_Z1a36x2zWWCW0|7HAw?{Iap}2b^ zsW&$8S7zY0q3tmA3*v{%6=mA31}=&!(Sh19%Rw1kl(lB*NMAAq@#Huf217zr-cQ5jM$KaXeoR*J z>=sc(k@;g03)d({xZNp&6{rNks%OJ2up8Zm{%%bNo<#+HSW{SeeYTd3IJ#nhLnp4? zV&zVb~V7Xy#zZK&azXB2C*!BItdS2`_(nLjIf!b+d{J zzU4M$tBHHdyWn?eNB!~s(W?NwkSk8YmYObnLx5NHc4_xYk?L1Q#x@3b%yJ2sbw7Y& zv}^vu$W*sS33}Zi3*nS**@DsjcjdSqdNm@~Rhw+r&$Apc3 zFrQ^`{^ylMZQ3+~*H6c$gmR|ywP>a$!<#}^_28*?)Z%$d@rk%&di=5MzFEwcBDce&nolPC_X->kc z^#>tT@DodJQI(;4eSb|f!hbBNN9z5o;~hVB7esp1pI`Pnx_-q@Ky8ROK0_sw#{DgFl5ng2p zSC?Ak7}CBX*$^4DwPTYee(h`Bhd!bvtq}3z7y=jq6Y4;Fk!x}v!-ARM+P=iTx(GYk z4d_hA-pB6$NL_gzWlW3$WSn;ESISnVg1I~>eK&+Fcrzim+7AtPEq$F_)~ZsXuvQ#) z;?J3&%}@~-2Uy|SZbYV~vPQkpW!r8a*MMlr2QV$3vK+=etTIAz)33C6=c}z9qlniH3*A(f9 zGyN*$1{1E-cdjD>J5iat7pKni2x!1}(1Thq%GEJD?J=Pux zwR!M&XFKpU6X#zsJEYtnQ*rv%UmyP0g2KSMC5HlC@U*nFTJ7E4pKKl?`T$87a6r(i zEesM;Q4JF_mf49O>kOi5qzb&-QQv%n25v{=KN5xaX&0^&^Z^Nvqw!#17~BfBkVMz& zX}J#3L2yT9dXcUUCC|SLy6!mJwt_WXGIaV<_5&ZDiT@g`w($IO1z&uR@$QcWKH+U* zy6z5}&?hC@=3d>^WC)08MMzFOgi=)B>(j5c7nh0o(wob8nTg;C>|^RTlX}kYq(e1C z6t{vZ1|w}ad z4=sNuF+u9;>hV)-N|G@BKqG5ZM$3|z;8R`f{K0i;PVzw~{)S_hA%{3s^Dr4@G8>ZD zbe!Q)583e#HJCou_mV73r{r)aJ$juq*D2ok!U~PIwlDdkf}2C^NXj6@{xzCkIjgas ztE&1)7DCYd=(5;6^2*ZMF={k7vOw^IXZ%acoze|2WN$?3@POad zPu2}H=rWR=ZiDLd_v+hlK{jyy49Lj~qP;ijpi+E$3D@1O-^G2D1dA_8N?O|aFq>q^ z3M{+q6&x^!041_>4idiEL;BcZS_0$Hj==6D`qCHvFYEtWX?!^cI_hKM1{nTzUPYaE zp9~&$G{ytYtffyQ*Ee+h#ixz|8XHv1e;1>!I;$KW9pCXeDpT@ikj(eIq`X(r`@vxP1 zZ|~hecAz=9q=cu`o|BtzT3?9d;s^!glFI`X>$rFaSTcYfi>dRUt z0^P3rMsH#P9o2VFz0D61A(hHYtI|h{-sHL+PS`g+DsZ6;5)+>?))fgTG_TCL#>vn^X{-GUX%bz)anoSvJ* z!Z*gY3Il2>Ok-{_!t>*lM@#1-P3l)1$YKQz2r~^~Z~Hq9bfgXZDWlzSkE} z*T~bxn}Nf)#C+E3NjuH=`gscrYF8^>%uPPNj)TeD#_U8tXO_h5t0R*Z60%i}^)_5f zIY$$2i-{NNY*ASnJ>weM56d?9I0UoTM<1m^jI(>&Gu`xRGik5cxl(A0i}hHDA@py!n_TC{z8z~ES))P3{m!#gq3o+M!(Wc$ zdTzX3zAhe?AJR{@@99+^-%7B|K1*>Jn=Q^ce8#os>3N7ys`kuwBPv8CFns+D&J1lxu}ELge?(|F0v5u$MaBM8#`|q5AUi*cKpEVJ7rr!e7oNBJ0o=JbB{-w!a*y24s;hxIx2k6o zvm7}z*G+wl*eBSoSN$m9RN}$Obd1y3*+m_hg^Z5DMV^0ZuH%*%Qu9*z^9(BDTdsS< zN|1?*HGy)_y&>q=Sw2ft867N?6A>NdhKBxA#otH&H)!-wh`K#X}n33z*+|PnX39Wi-_GBRL?BEAl@&`ah3RD9-FL{cUN7cB|d9Dj#m+gxHze z--D+p!D+?nwQC!J3|AFqICdh$1i1j(4Q>A#w;(NsI3w-bx$)9 z4Wr5B)?{4G*5v;c$p5tSkGO_OE79+s-l<@o6l|F()+GNUK4^h#c1^Y7XC7^(OGHI{ zXsFP@u6$%|`JHn-y$|pvA1SnudY!KJi7J_~gola>ywv<}^8UB#?TE1K(17x41?XN= zXRq=Wl>hDBf6>(cdCLpKn@0mh1*rb7KK;8&|64UCP_n-xK~KklsSfqUS@P)qzfkyp z%RvK}O;GGI7=lF5^rTp(5u@t=2BH5f7l^I^#W^v11I%ovnr zJ64Mma;X+K&+M0)NkuyM4mbNemZer*QWJWs5-=Cu^`*3$T6obc4cVVwR0@DpSN1n8 zEW~zV6PPn8?dOXJUUUQ>ES!>W(g0aLYhEp*wE7eeOVr#Ml$DX=0BdeodsE)=EUWl3 z-)!?ujcWPgrJxHkiy?KRh++Gkq$-qsD+AZw*kOdiCDwQCs&5m#sQP|0+ZC z=dE!9BMIO{Nqyt~)0>_dtBOl`6MyHd;dki^Rkna8o8y@_0zxU`s4Uh?a*jSD_KLP9 z6^{d_Oi~+7@CBg1Wwj~U4uEzbNJ6lC!y0bYb``%jwB6~-`=ZKa{&~~hLbv?8&iytD z#H&$+<)Xfb9h;4g9w$aRCORstIDZOvpij@8M`t8>7SL)Le>eMa4&G>+g#>SwlrfvL z6Mc%zh7;5L=}0p;XZ9Tcx850U7ILqxa50w;dE*yXAOU>d<i zYEbIoSZ&GXahfsnn48hFlFiR&lxMk{w}7TVa}UdbG2=Q&t687^=E3UeUK7}TF!SLd zXW2q1?xFUas-MTeUEjP3!08|0_x)@axtxuxIJ&_-TPwdX`@OZ>-C0G|p?Y6@izA}2 z-z?}#<-IoIi_oyG{F*q|q1=Ab#1n7TE+MPt&SR|L&~okB-v^MCa#)7Xo5f{EW=@L8 zx1ZiP#+g;Ql_q5Rg0sY(Ogh>oqIztkxXS@-o<`mTH^df&IyP}@OC9WCRZq^~nJxXn z0Zsk zeZr#DJ;uasYx7^YhdS~OZ?@ra0S$St+Y(D4}Dw27tivZi(2su<21K~Q!TzaKdr zByk{yp+)Q;{$0Dsf~0l4_mHOyWVhiYP_{7GNg=Jj`iwUKPyFHT{AAI#Lb}Z;yr)M_ z*nN*efQCp%Pw%XLs!$zsEh#xU&^~ZTawHbK%m1f$*b}l9Kka_Z_&a z5{R17E76tn!|;pwm7}Z&0^!z03?I#Hd#kZ5Y%4KzW1kJJMt`H#dk#NGBwdD>C-LH; zhe-)1CCo!he&I;?3=-&QRx;#tf9JjC@n<@B^-?TmvXyCRK9$X&(TSJ#mL%Gu_e8E((+05<11+c zgC=wNA63QFRlhEY0=1sFl&eK)`6{*Ho9QYjgvpmgD5g-4iFgPL5RbfJ-Bh_f9LN`X zIL$s!F2@o#biEWw7?BBM*y*$KA^o&9j>(9|1)Qj3DxraMjombdR-&({38`N zUv$n*>Z_x|K2nh0bj_2P6CXD7#gd0~u2>oF7AX4vWuu|nN!u_QoHT!25*r%Yn}UMp;XGm`a?XIWKQ~tawY_f z0a<|$gJ))&-|CJ%tzgHCr@SwY+Ed-QNzcf|))-LMj9p`>`b}jBlejn1l*nRRm*mrPK zc5)a#RmMJm&=I-U+;yEIIr0wM%y$t-+}<#6hGz;cfbM-a1E;`;bznedARq~nJhkd+ z#13|uQ;!GUs#UVIkv&`Ufp5dGgTIg7O_}#Cg}2g#^$l&#IeK#xgKR^V9~AsNw(*L) z0rAnPh~w97O~ilfB7)uOFSVOLSSYqT(K6Y-j1X84^BwpDSZyn|#QXVS@m!LLaTkjS zmJse3lkVH3){ZPz=!Zz2(=;760M+jgf{zcBenrLtSW=nJ-UC651l>epb5tdGX>OoyHNeoe>lt<*=8#7FpJ@LWIN88uR5$m~G0K**Z{TOM-Z@ zDc?|2N;{`Aaw?N!|Hy4=&QJme<=_PP&4=uY5|{v^LMvj+xmfUlE{`v-{StM zbPJJY4^iqOoJ!bLDzKVN$T0r6rr)r4zu*3`VP{mO&_~kqsN<*Tj^9|Z=Et4cvX;#S zD@e~wiFUVhA3bg#ohu=yVKYS%r|$bT=-tHM6dYpg?Su^~5+qU%ZP$%0uyA(20M@Fl zd@8W!0-=zqgw-K2?Q}ayb9bZx5O??LNQ`B;+fs_{?loJ}>gcsTgxrE*V;m%l zlM@Mb9PPLy8E)mltDNGe+pH&tvUvsxha_e2M|U$zqakKhggj&7*ln7?Pzja?E4ATH zRStFDq5K<3d@$I$OB@$IUL~-mTlu)pWapxz3zKEdNn&l|gp~u5m;r!+p~+W9xMS%T z6_Teran|3nb_hKLn&`O=-6=0-H2at`ksR<9&+?$9NHqFg47;|QVUsN^mAb^vX$Fqty!{xua1IuBM-ElWTL9}!Uel(58)(#wkK0R8TP(6gPN zs4xL0sH&X?r&$)heOs=mHR^ z44FrgD(@%IZYODB53LEf%~5>U-OzgllN*(`nzwc-R*O8uv`*?8^ zek2Kg5UR6@UomUncGi^|lnqX%8DIicf_eI5xCH3LCaoCc2l;H6nq&PP)M zYGKD5vH_h(@<#BN^S!-!-JL=6r$->K-|4h;Cbg%=z6z55^`%)fm4a`ynJ*ttuLW0{8*qSn9{Af!BRJ!303-DF=y_gFhaP zh|WS&%bpg~4WeWzi>2Jktx*J%aVc7>6@A8OV9okqdU@!jZKmm?_g7}uT}i$SVRy%P z5UG@C`v9KR?;%5TkY^{P_f9Tu?BeHydlVtqd8j_Q~iV)2q+69E`Du=5v;>1AR)`Y--FvQXQjowjZSgl%=;@inGM9W?P*%xr^o3H(MgN^6o|LKN^xuUOlc}l|LL4 zN8P7pr-gnYAR3CW&M1p(E( zB+>Ibf3Ai#xuuv__9eI8J+}>&m(a_f2gy&%eJaSt@rJoDP=_3Y92KyW6W*AZnBVjB zPm_i$=m3C*dL-hSd5MjUEzV)dsD*fJ!J9JcJiVs!yspsM#bt7lm`*t0x7NI?M3xxb z)Xewt<+6v#qr!rMO1-k*?Nwl?D_Hp`b!o=8Vg2I5%|AUgwKFx<5FXny+8dj)lze?h zZ{&~(iH!w_ht%n*&i9@k&5c}Cd_&r%pYHCVXJlrUIfjz}sUsMk<|F4+yxHHom1g>YLK>SaIAS zn8EOPJiOm{O%Y6>_rhd(SmE5qVL-Cf=erK=sOc~dNfU#z_aEcz_=Y=Qoj+Ww)UwC+D##eVbdBgB0+{gExZCu zf2${Bok$4tm<`H;LG#ST?~Hcacn>{xlj5&OkJV$%$(&AeG&{DIl*y=cR01 zl|Y^s{R)FxKNSMK&(w6N54wp-R`~5&_Z-}x&+)3i6#Bzf@U!D>`wvG`KbeMPh{jZK zd>h_blf8}U4Zk~ZUCVZggXyBs+=@;1?V+ruX$Jl;P?!QRPpb>7MBn)usd4sVdg+sT z;W{pT>*j*{psfN;_-A4f+1m7pKY=H-U8CO@nQ`BM=0)SF3%`2FFG+?Rcj&aI&Y;&{ z+Y~ZiD!(D$yO>^l^3yN>HrtxV-RC{1OP`xZ!sl{d=7vAPetS7C7(tg@#4^qTD zbf3`g&QGfbjF&KO*SL=#2VD!q0V7BjP-LH9z=9x)O{QhZx-oVXx6Uo@DVaVR1Zz!+ z^uA)v? z;HK9B({?UqnGQw`Cid`-PY4u5h(H~%&|G=;l%m-@n~A*nL>3t;ZpmNllRfrCvG9c8 zVj0C={q)oquKA)lxSHP3=3wa3)Uml`v?lWiuL1v=G3U3gdyIA0Y?6dwt^UjMWv9rf zV4?uC6qQR82gcZ*_hg6~8+3K2jpDBa_$FTh=gU_?oQY>CYECQTfhn}MFCB=Kk-Ebd zmajNYcETl8fhl9AN%QYwV3~X7B!r^8vUX*$1{IDAbi_%S6O2!MSYlD3_)^ra&L`nbg&$)5j1C-%dOOuGHZ8crgJOe=W_UjK(?kCJB^*EPF9EUWUjkyEqOVrd zhqCbdNCPqYf`{J$!u>YSfkh5HXP2nP@$gU#1}YugAwcHR!3~+j(j456;<@GE5AAs1 z!Aqu))%?RLsO&}E;ap7dqORCJQ?j6fAE0)VB|kr;tYUP;q)qTihPoLK8nYV zX?vYr8*Q6Ps`yD-u%eBFmwh|Z-Bbxr@Ixduhwx68psrPOi{aGFP1CgSf}Spk7|cm>Cv9u}&(I_*ma#Ro2(hCD2B_knG5G);s&hoSkD2-(XG#^4!K-KUg-c0Z*>lG~QX~Ri zdETph=Ruuu1T^mE!)`U}`4ez;#nY>gQUms9!~)cDHdYR#O>wuqUGt1$@c=I`ld2uD zCBHxlMjr1(i;t^WN-#)`KV_^qetBpq;FCQW(E;;d+vbZ2zQMPWB+wtj6%nr!&3e~B zvX0>SdFVy~Ds~5HjG}TF1~<1Ap?HVO_>j#v*K?g0*)dkrm$5cXX>FhV@p3&^V!U^? zMn+>OB{Y7S-^EjP-KNP)G4p!j4a=fIIFrwRHi-mX@7!O#^xMv^@*_5sx3b)3#Gie5 zK>|AlkrooucO@$%%*KlX7A_m$gG|o&^c(Q}GvF-d6{pkKm0d(e zKbdYHijkC2^SkY$Quq6;^CC75 zml|i}vjv{!b}3j}N*$kyDGqDJJf;?@{bW_k$;@6|d0Xa`(FU4d5ro5&@jdE107W<) z^bg_iP_%LcFy(Vhq|o(9g$sj0bG?ODsX{%Uxmp-p#U~;>qlZDzY_22=&rwoj=))vL zGb>w1^nBu+5k)U)<4d;by7ZW5ZVcxabaeTKe-t<5irna_P)qMFVjcQcqn^J8O+=jf zLy|ZEzFBkRol;Ql;$lfcHRq}|k_{smeei;oD!lc=JRlPo$@@HM)bB!E z(I`tEMNfXST>oq6vRjYPWH=MJ;pa8f*8%yR)JdSZV4KknATE7lA;wP-ha#O$Tygcj z!+>M22PQv-YA31d{4S;rQ?n^;-nGVbZ6_)1Zb0p2I$yk)i{z9?=|90}JX_|eII{zw z=nE5qr_8oc|1i1HKjb>NwUn`*O&cIHuZ#!mEL}RIlC+mlR=6I#ALe{RO!bXVj5sHp z)az%A>r-DoM1Nm2o!G){cIh?gmCb^Me!bae(7p8pW|@4_Jtmwr^>g9WXO#Ze$x^P- z?n7nqTiw^RIO$VL!P80p(4-@FHUMuBicZ+kzcmT#GIWEd<0jq;4dUPEaW$UaX!e`w zZqT7RB}M*D6lF}-j-k!Ol_QDf8xC4K>#BcDj(;fyBqNQo^1QvYomXY*43G+M=AF_jgDaEHJn#zCvBex8&h|=?*u;{L@18xdGy<#OLo0Aru4GD zk`I0>5x?Cx%=kO?IvOVOcBkU{7Mqhx->LnEWzyAOQRKP2^pwbaIRs~bBkx;Xa@?8R z##p1@Ix>W+cck3;mT14ZGUIz~W-4d@`a+ar2f~2CQ8E-!e>Rc!mPcAH%p;TsDv-!+KjWHhU|DScak}`nQhrvx3#0 z{_4!xWGNh2+o+3GPb4KoLNzrtg_V+~ibMrp1w8zwZNPd218-j9IxkldgQ7F^(eD;? z&%K1M<|RM0kTtx11k+dEip&3W^;P<=onlF534x3}mBvLE(|D52-2#`F-4C-HX-PlAJXkpUkCIpaUCH`@4r`6ye#O_a zIW~apf`_iH2D71x@Z%1z-D&T##0xK7kJJnSRf5VS{)`QfEo#mSH`q1XWOIf9`6EKF z$)zu#Q=AvKeQu;9St!*$$o!EA@z?WMm_1C1f&hIkr1pdJ9|}M((iU@ztx;2*F3=kv z<|t-@b&}cX>obZ8cl_OE-s|UolflM+0<7N0;T*1XKPl09{_uU6qTC1T#Hvc5UMVHC zgRB9iY3k+n2dhSZ%U(ULoi9(Iz#y?9V^Yg? zp5!u$^1l7M1*C4eVrs;?`fk8bfd;aVLr^K2+aCs0`vqkVOzRIe$W76}iA{xkp;EVm z)N|=pGX8PZ{4wtZd|($*%;i+th&`1(QSBjHQ-Vw#3V^}lAW3XtnXn6=&|xsN(Cs1g z8n|Nr6HxySk*_s*o-k1SV#A;u#U>nA24=d$+E}i(vC0xR5O#gv0mBHGu(wqpEyxo3e z{Rm}X1bl&Z5y8~$yH)LwzSSLmYZWJ?Hvxwfx|ooo>w||td+JPpmi&l?Tkoj@4V+#1 zz|ZUgyskWh6t*9Qt{Ed)LBZUiW?Z?qsb*Jm|AvmA}3hdDvu4rMwFvcD9ppIDdi6+n9%ErTjarPn#A3xY4p`| z4SqSC%Whq83GB$yyWdRjacwPB+nd7lY4>XO_=VTfn7n`0ckcp4h*{$7JjrLvtS?Ny z@sl(f861}I7w;QzIp&X>{eIeq9{U87Iy1uJ3lj#`uqBVS7 zF1dy+B`@)(XcNda+hMTe8ti-f2W8WdQk-|*(E-V=_*M+-kUo%;2zn6hY~ zKiw;2V%k_K#bPhFf(9*0AICUQo1=UOh7e z$V>x20y|aoF9=i-?o4;o`RvgIBY8Qv7UH>O;18|O|K%0=_zyyZfaYc^z0O2(Vq$Mm zU$l_##$T%++vxrEjmT3#9|*)fPr7@rUg}~3p^rt!4%*)0!90IU%@8ivpxyr&w82#{OMOHKJugxsd#$172K1IRBm@Ui{no{;%t$>f4W5OO&{4OXaVRhe6Z$gk7 z9THv+8xxzIu0)DIqO!wh-uK3!cZT4`H)R-|6|cYVkzD@~m~3~Err$8KN47I_y&h(- z@oTE#dsel7JT#Hl)&M6tyV;|__8?hU(nEY^|62m+#PzIJ0W|3At|+kG>;S?}?ed$adiQd^rmf6a^O?u|F-}^A$n9SV$enc$9VK;_PjA#Zzl_ zT5hz~5I?=8S=u0xDWCoZ1AaB8HIMBO3e}cM`v&+N4^) zLjzw6W@Kd4)??xlXE#c8Tw9_xtrCL9m=CIc0XS<5k3}n1BAB&cS-58q|J(%J6HnGE z>+;}^Ybe^i(=n0PH+8g!uWbz*Qy*V>ISzM$&GwS#&wJTgzi?G;;H`o!*AC&sZV506 zqD{bRpwMKi+X8*HeJYJ(Q*o0hvP&w7#P0E`ZAg6G{NwtIOw~Ck;9&piDepJkY4hHP z>^a$>B;{5#0*cw%jTB!ZPI?r@bdz!74(8pc$^?_!6T}q$7)&4^qH_J?!Sy?z!zyWOq$E($!WylGoPKki zC}C>8#a`(f3PCh?L|0;NWa^)i{O;0j=qhk&`I;%Gey&p&Fhopm#o{9PllC>94!X%&MPc|0BI1Q!G;Kb7d;p!P?SUy_bg>HYPerD@Mf za<%b2tJ;+4$>jY!0>1UFNZxn(>XDy7WUh zMjHUyESLP| zQ#GgkiAFkMa-*~l+hlxeO{kr|oEf@n6JUXrY;m!+$z$66Gqy9~jp$=&c>0*QGkSlq zQEb;MAVF>mikPgpp(JTU=CCorWMzO|rkh6E-q$JR>Eg>Gt(TRbSA0$F^%v68P?}ug zz12LmitJUdZOIIcSO2jZ#w+kdj6k~lux4LF)VQES#$XI}CK4>^II@^Vd*A(Or#S4w$_b1g(Ucxp29sk5?Jw-YP^7=O?0Ww1_! zzMJe5V==rzrjw0uD_3E!%cHCF?X*l|tl9iOt+j&7m z%O6$-B40s#YgN%8$_251D~k>w2;4n2Jn20U>kpPd$WGdO8a&!ro>Z9ZV-zw7Aea** z)NUD^p;{zIx92%5*5*n??Xa>@2bh0Nv%kgv&tokm`WD)~Nj|MZh7a*9_iHPY1d~f? zz9}Tn+}%@dqpHc?{HJ)=VwTkZy>kXP#0H)x)H)3zW-b9HE{ACl=oZK7Hm4EfueXmT zuwKRlK~D=S)z1ovc_U=tbGqR4GS&LQ@fu9ke#I<$opl%QuhDWC-&->h{r&dgT|hv6 za<0^X-kbm1!T;4?yyyTIG{`$kX@~m4xgN8fCNFhykEFTh0Og@8qb=ccA?2Z?NZ$^Z z9)akX?rp~p_3efK44IM!gOhQ8KwE(Z2hdEdR;NCCt@4wHfgaD=S48xpG=KU(#qv+9 zflhdT&_I}XT{tjQWze+t{C`zOhf$M|tKn0O7P?~`_U)U0WrsoN-k_&+>&Dbc#AV@L z>NSCy+4)dheez8YDrMP!ue&EOfEXq;t~rn9H-AT@Gu80F)bhVZ{clRk9w8e?zr%S% zOdCLw-hpm=oAlq+`XA+MMKDAI)}%U3F;7g-g-le}CjV=v{(o5fYy5%=Qn)9y&xP&K zB<=2TN_X}D4LJYN!oNL^Z~r4U>~JDz_{dtoYk%ec2E2bO@Gn>{()~r^#Q|?CC=aI( z6~7eTkEg{GyrzGTIH}L?eI1thwEs#>OKCqb+%VVo8)eIpd-RIyk;UX>Yfbod*U`dD zCcE$Eo5sZK+z*(-ox~9d-zERbei0*3_vuOPUY=DROyk}ZEX zA+~-oHQQA!2z6NhLYisJXP%TxHEl#moOL)5F)Qo4=f3`yb%(vH|HouZ=npEE|C{pYDfu0YrpLoafeOby6juVA zRy10rNMQrd8y|^ryDysQ%NeW0v|3r%>W`h@-|+dlBO{2g(nGjtwL012g_8!m35*Tb z80|S6L!Xq3q2JQ)3ZjfKew-JVL$z##_2{;83(s1jmhOEC zRCoRgx^gm|PF{JtLe)u>>^I&##enq z_|T%7ed*z;H$4fRu*uR{ck=J1V1Qt~_CS_>2W#K9$9nnk`W5C!mS8?xRIrJ(nJ*^z zZgBzr&G7ft4%~4n{AB!xtWL>{fj&qe0`S9|Zb`xOfvmc02a3fY={H|*PrGEd^6+P$ zrL1q(wK7N{hR)f3EZToD3zV|SzLZq#Y=^7}lMR(r@j!c=P*d;qa?R)c<>QaLiLVl1 zcM+`^ER`Br%pSSV>)%5g1KJD)rMGoxsA^K)Ni7Hp{KP&Guz$8P-N-RdE_9H`Y>0;? z{c6f)`Z9)43j@VJJTOJ>%5%5jk<6n& zo4mUaf*C0)PP;rrOW;?M#OHPhs{zW{4o(x~0Ggk`<(RqCgbfuH#`ssXd+d%jDhTaT zUX}~^?mip@j5yyn*CIVts90cKzix}N>4XYKXucOP&3^8NwL0o>x=lov9yw}pW zLOFW{3*iA9{sKg>p3aP;saB6f+fC9vlg(}1;W0nQ6kC3!c)3Bj-)8JG{CQ$>f>EFE z=H9ljYQx~?!fddk&&WiQrD?v*3>A?^g3kxkt#57R)bN@D`H>+5>(tAY*MN<+<69+5 zG@+ER2f4d7r;&DmArw7w;aU>m;mljk9R*wjId9orLW1adZ9ZT20ULYmi%{1^=7OI% z68kK|j}Ge4YqoD?_62P2bwMa``r&UkOSYf+^rn8#xWWW#Rh{9Tv{RTbHo%hwlh&wa z+uuj-Td}@2bl`N)J(BpD&a6j*t0|iKHjnupF$JA3xBfdz#dyKq9)qNmnv!Nc27ZdZ zvm?vV;z4sv(zDyF@y_=FJ!2XpPZC{Bh$ZEnP7U9FWb5-ms#v+8M*&;6miY%+acAHo z*dOU3a3V#fBYwSbakup&knI}dO_^WYKXxCN@4;(Le+?=J<{*T3F6ZHkG3WBT z%T)Js;jXk3nXdgE4@hoUS;u#!wyzrNsdXm6*_o3fcoy)Pp_-T)$e9sG7(yvM3Gms+0RvXuzt;#AD(v`>&Ocx<0S;&EjvZ<-?*5@st7(6n zkeoEm4oa~ij{n1>lDS$vLb03~a8sMnX)So&!T6J% zltK%c#P*)cNym};#v)+M)`3Les@*%<8}jK*WK2|U>%Y3yQPz9{kEoRgRyJh~#M3e7 zPINh9;X5vzB^qyx^i@velPEnj5})zu7!eN_C;nv^aEh&JW2O8wSUR&3q%iNW3yWq| zMOdxE9fcp)Vz>QeuG3?#@Al(D)C!i?u{-Hm+ek>}9$tvy+{ z9TK^Yb|twk=`w8O^$4hH2ia*ju#%A_;9S;m2=%#rlGkN|-JNS2UKGLlY_SIN;ph#M zRqHKs`SwLrM-+zhpUsz3sgKO8gAep6WTsUd>PgMXX*U@ngql!%ed`ibadjT+X{wKU zgV6t%ttu{TL?1Met9D@vA}XRlPj^cLIISCVU5)l9nAVS`2ooq+0t4E72y|b(24~6X ze6k9<(HS&M%<%V$NVO9DdeeDiDzzRa#S!hkW&dW9uOe7|zmXG|9XSN7luO@*O>FM# zfcK(oLYj_!kW_oV$}ol$lLTb zd%9X3f^OaA(rhFXp1#3QUKGPh8@yZOh-;S~p=)I}! zi%Zsg)EF3^Sw}J}a?_V0_cw+^iaggAZeoF;0E>rLGQu1jZAOLS-_zkhXAWJ$Gs^+( zif|e4_vIl5vjiY7IJ}Ws8Kx0;IreVCeZ{(MQ}Jx&8Q)UHWLZtpM`FzrfY8AWoMEqobp<+`GxwP%pSs?V9U**gGD93=hZcD)P?C zct$yc53fz?#z5F!a{*LB{MNGZ;|e)yM+VZ{-S+JstkwQ4X`Q!Vr`N5M4zw(J*=-^w zsO6WVxh6n#4SwN;UEZ!n$=S?bhw_AVTMa#m)RqNU7yThBR6M6@=&;rddAL#4w3qod zM1v_1jiYP{)V6da;IZqjMYg}Cot=Sx*$)Q4^_MS34O(yeWpCw$ed!$F&=QsYCt`N;nH zvOm1JyJk>7)O_B)>HHlPQn0q#}Li>R-~2lC}@VJ2?d3yYAr zxyX088n&-E*k+aU?CIK<*7k`_(1&ePFP_Cu`jHeS{uw4Nd^wfV#{{o)jSLDD~m2=z#-m~Ep!T*gbO zG0V~OT3NyN=_T3cgNXe?JGB{(xr8}3qPigv{AJ zd)t3`8$YtHzfiQqDjik+2B=6Qk5(f`piX4}$;1IA0qKfvp)p<3`?^;`<>txRQ<k})>G9fD^|*0-N3NEAhW3%_^Xy?Y+_uVe&G#U&8?8;G70g}V>rRC9vh8YT>Z$;Y zqJ{Jqm00G&F|Xt!Ahkk6vz0vZXPUo0h{C%$FZy?Db5Xb8Ip&y!fQ5`duGL7c)jRrU zc;2qZB{nejPH>j|29s%VmIUiBYDEw2ed!2CtyW^lrvYKu1=gc_^)8&`g7WDqpokq6 zFyXrtFkyxBMRB0=g*?&N@1+nhjHJPZPv)Tq(LQ=g-ba2#ck3{qumvAK2lgS+M+XBS zss6Js=&c64z2qjT^YGj2{EqSRb+NrpeA)X${m-alY%Y@h(n~b~#^>*%y#{^6P)P<8 zE%=F7^@=XE$SOM)+oC;8yN6-R2dsg@O4V{tyRHs1c;oWrmWch_;ivq4TR2_YI1Wp& zUot~0y9b3>BSL8+aF$GfZCqEbkf)5k8QlqZU)BwoMC432@PvbBG)IWLX>2c^F3oYT z3ld7C^2!8UU0G*ONLhva#jelWG_E(CsoLp@@*)J8)RzoK6N`vTG#t{5B%K(B_?R8f zJJNZ}YQ$&@gnSA7tv4F}3w3-Ll=i}3ox zTXFCQJYdxt8_kHlKQyi>Q0TtQ|EZq+Zaq7GLPxSbxM1VV2rB7IA^xiAEI@Rp@xs1f z6JA0yE__egrul^5n6g%0imvF&7kHC=`H-ha(wm`>Tv;FLMc(%h=Q_r0kfUZ1kZ5Gs zH>$hF9XoTnHQ7H;Hj=w|Z~txUO{Q0&Pc~6~w1zYRYz2I;nY%W~hO>BIapA;TDR|uC{~}^LrK}%_^>~f& zfO8*39v(rg>FU(N^~ROLIdUxt=#DIs7jC9A^%gTWXe!?eYu+jRb+N|m>L<>{$dH`m zdGzIX#a7-O0<$_9F?yA{^e62|Q4eobEB=+ms{DT9M@L>B)${fEySCg_{828}%@2(} z0@C;Q(Z7E6kwJ+~$R_7b1ixOoi0vea$mMR*x2M`{W<;lihgqyH?5BE zHHkl{&nvZ?d1I4zRr`K@0(bIzJ{DOAC^i9S+_=TQ3-UW25>T*HU#?y0IVx@_Ky(OUhMVF`z( z$Pb>&rca^j&j}gLVCCUc;^I8Q_M+o@;mNe@6azd@YGUE zGiVHS0m+>2^x41QPT#UxfSl&Rg|_>{ecZ!{ zS}_ow5&Ldb=A@g2?=F3$eJ!?&LnGn7ZnN$QBDCr>DL zE=aQkMna7{wLo=$neq~J_L-aDf34E2FY_J#CTbL4A%es4a!SYv8 z|8QvO|N3lLj%Pm%Pl_BB46hOUI}r)&1pwypZbNJKsdPzB-_VnKFn<5zXm3cl7a(4wh9*{;+PNu$3$q^ZgE^Q`?MBczXVqJgk>>&A?EfYqnxbN*@! zLFmp7bd<$y-`6b;`MF|xzHoV&1WB=%8flG)tS=soS>R~pxnaA%EU%yz!rOQhw}Klq z-E)r>QwTMzso-%*Op8`!cJ(`GWsB;_r`Tz#NiizcTkJt>)wc zwumPC7o|VmWS^R9w}O2-u{KTScwoWKI_k2Y7e{4?x4>4tb!*-%QQR4w-df&f3W86x zZE@~P8b2*QFZz-lAaOQWD~0uiBMchrq?k!zPo7M@D5C6(Y_^I%^^pAEQ`%)}^9cAs}hO`mI7eAXHp{%B=zaq|#rfX7>7} zOZ>-OyZRSG#z1KOmQrU>!tTmMT$1_d5FBB@Y*fi7M`QKkK*vdZ*WD9k>LbV^kWnr>yG}uR%zbD^tsqqM_(;Q3({p2EWjgBRl4N|Q zIe!b02q4&%ZlNLga>vFEBVlQy(()1X`dcQC%Sz?YR*t!*Z%yht<+YYL1hconc=tW%Ol&?sNNVYN?1T5gri-|~E)rx3mlV;<6r7%Z zj&Psi#+t;grzey@fDMg0YDC21w4#E(B_0%h#TisYjR@6X`fg2NvToZAQbhou)tx+$ z*<>VD#Lw`4MFmFzN6$zCUpbfd?h-p9v}ty-aLgN9)*{ncS@v>qJFJ>BEFv3ko9?Lmz@;c^**1hroP#-^w21;QdcWAcZhGFe1DVY zdzeM(KGOW(yWW_rWF!6jKCc=r7W|3N!X55-KF>a&OPUY5m~gxdF}1@yVrUT1MT91o zf5@m3&SJ{YH|4mDKeL{wMjICQVnCb}GSaq9$GjA+cw9bQO8QZRQh8O*HRr|XiF-^h zxscXRtBIs!ck;aPA#ulT;QRchFWZ+rt0!TLtTjKhs_)V&q;9bg~3jThaTb zg>6bMTtz*3NuN=eVTQxfvGl?(y}E5DHc|PuWLSiWip%Oj-NMjz8#CLL)AHRd;qB+j zd#1p(n#X%k(hBZ{hUfEgJ7kE`k{zMeL;4Zx+BKuV2O)iaiCOqmkKi3ZUrTZ~yEG(PC3BFbXgso-L+pz=mQrhp_w`x+XU1w|Ed}{0S@L~%~2zz#{cA2_F_>uS&ISeb>&B$PrtNIV)~~1 zgbF+fdFuWt4^=p8b1uob8oM6OGT21>MGHn< zcF>$XH-o=L6dSAZy?6$iI(RmL@N?5p8@Ur3ZpPg>Xn(LKRifGj7fnK zG^OPJX>ibx1IFhJFp-b#2|De+e%x2l=WhvEc*7hOLl08*%`P#U`geI!9yI;(Bhn^} z?Nn|{g6YoA3U0$xfdm4+G@W`OM|B)nn18ob`L4+?#b5=Ij$-q>6H~&!8mHS_B=kGb zz-yFkv16_D@G}{&qNb6r-?{0n6}EK_1v!I-h0knN5guCSM&6(4y}Y}15z;-qy}2}` zZl>?JU2n4Y_o|*%zxF{osbek^PZ(}M5U$!qGT0Gpk*pPTHIzt9V;!9?qmimW^KmA{ zLPky;+pUn_>!Z^$6q*RQ5zF!s)FZ9Nb4nt@q5>FNw;_}zzMa@C3sT_IS@u zrfij0<+l`p6>sdf|HQ$6ku-|?%fW`}&+a1N*o!-2$(Gzp!B;3u*0x*?->8*A5*4c)wZG0xv!E!3s_v{=!Ycfn?yH4&iXuFYC{)t(fWUIf9E;@w!%9*^nl z9B0GD!&}GSCtRR8`h6uHD)Sb`gq|TP_w$bR+oR)q_DvVVGo}>p`2l=k)8~3|8kWE9nY9Qq{+6c<ewGu`BqR0UmFc z=JFUR(drgUW_8|5h|<0Gt~WR=UbHSXzK8?G0vU$$z_DZDVXdy{ozv*=J+o#DcIcU!;*aJE?l?UWgv|iD zDtH!dl3EW;R3BVK;)ScBYS|qe`ZmGS;Aev|)tv8}RDa5?$OZNW$sC;0xMD$K#Ek)8 z&Vu*r99aD80IJjsEmCE|&Ty>i+JoTZc|FF2HI8l_Dq@KQ`A1KhipLJ22XxcIjfDt3 zthgbEk4quHgN(wf1SCsYfpjep{cuE)Cg9t~7$)IJ1#Lk`1BZCpwugHmLDY^~s4_~w zb$A*Q-%}{Hb*FQ4txH&iQAq*sIqz)xO!HDuPT-lNVBF@Io!p`0XzQVAx1le6God_a zRlUI8d`FR4TA+6!7QF3|5p4!3iQk9uU}?Z+R`-QBwO6(d$^b3V!~2;tnL-BC4$(z7qE znck$TqJd|?*h*2@WGWAMSEfvN